A knowledge graph-based orchestrator for Model Context Protocol (MCP) services with advanced tool discovery and symbolic reasoning capabilities.
Unicity Orchestrator is a sophisticated system that manages and discovers MCP tools through a combination of:
- Knowledge Graph: Typed relationships between tools, services, and data types
- Vector Embeddings: Semantic similarity search for tool discovery
- Symbolic Reasoning: Rule-based inference for intelligent tool selection
- Registry Integration: Support for multiple MCP manifest registries
- Async Execution: Parallel tool execution with dependency management
Unicity Orchestrator is designed to operate with minimal reliance on large language models during planning and execution. The LLM is only involved at two points:
- Initial Intent Description – The LLM (or user) provides a natural-language description of the task and optional high-level steps. The orchestrator does not require the LLM to name tools or manipulate schemas.
- Fallback Assistance – The orchestrator asks the LLM for clarification or reformulation only if:
- no semantically relevant tools are found,
- no valid type-safe tool chain exists,
- or a runtime error cannot be auto-resolved.
All core decision-making is handled internally by:
- Semantic Retrieval via vector embeddings
- Type Normalization from JSON Schemas
- Knowledge-Graph Traversal for compatibility and chaining
- Symbolic Reasoning for rule-based inference
This design ensures fast, predictable, and cost-efficient orchestration while keeping LLM interactions intentional and minimal.
- Multi-Registry Support: GitHub, npm, and custom MCP registries
- Tool Discovery: Automatic discovery and indexing of MCP services
- Prompt Forwarding: Aggregate prompts from all MCP services with intelligent conflict resolution
- Resource Forwarding: Aggregate resources from all MCP services with automatic discovery
- Semantic Search: Find tools by meaning, not just keywords
- Type-Safe Graph: Enforced compatibility between tool inputs/outputs
- Symbolic Rules: Define custom reasoning rules for tool selection
- Async Planning: Plan and execute complex tool workflows
- Typed Edges: DataFlow, SemanticSimilarity, Sequential, etc.
- Graph Traversal: Find optimal tool chains for data transformations
- Usage Patterns: Learn from historical tool usage
- Alternative Suggestions: Find equivalent tools for the same task
The orchestrator aggregates prompts from all configured MCP services and presents them through a unified interface:
- Automatic Discovery: Prompts are discovered during service initialization
- Conflict Resolution: When multiple services define prompts with the same name, the orchestrator creates namespaced aliases (e.g.,
github-commit,gitlab-commit) - Flexible Resolution: Prompts can be accessed via:
- Namespaced names:
github-commit - Original prompt names:
commit(resolves to the first match) - Service-prompt pattern:
github:commitormy-service:commit(sanitized)
- Namespaced names:
- Case-Insensitive Matching: All resolution patterns work regardless of case
- Argument Validation: Prompt names and arguments are validated to prevent injection attacks
The orchestrator aggregates resources from all configured MCP services and presents them through a unified interface:
- Automatic Discovery: Resources are discovered during service initialization
- URI-Based Resolution: Resources are accessed by their unique URI (e.g.,
file:///path/to/file.txt,git://github.com/user/repo) - Conflict Resolution: When multiple services define resources with the same URI, the first service's version is used
- Security Validation: Resource URIs are validated to prevent path traversal and injection attacks
- Resource Templates: Support for parameterized resource templates (e.g.,
git://{repo}/file/{path})
- REST API: HTTP endpoints for all orchestration functions
- CLI Tool: Command-line interface for management and queries
- Real-time Updates: Async updates to tool status and availability
Unicity Orchestrator can be run fully containerized together with SurrealDB.
The repository includes a docker-compose.yml file that launches the orchestrator in development mode:
- In‑Memory Mode (default) — If no
SURREALDB_URLis provided, the orchestrator automatically uses an in‑memory SurrealDB instance. - External SurrealDB (optional) — To connect to a real SurrealDB deployment, set
SURREALDB_URLand related env variables.
version: "3.9"
services:
orchestrator:
build: .
environment:
# Optional: If omitted, orchestrator runs with in‑memory DB for development
- SURREALDB_NAMESPACE=unicity
- SURREALDB_DATABASE=orchestrator
- SURREALDB_USERNAME=${SURREALDB_USERNAME:-root}
- SURREALDB_PASSWORD=${SURREALDB_PASSWORD:-root}
- MCP_BIND=0.0.0.0:3942
- RUST_LOG=info,unicity_orchestrator=info
ports:
- "3942:3942"Start the system with:
docker compose up --build
By default this runs with an in‑memory database. To point the orchestrator at a SurrealDB instance, set `SURREALDB_URL`:
SURREALDB_URL=ws://localhost:8000/rpc docker compose up
The MCP server will be accessible at:
http://localhost:3942/mcp
A multi-stage Dockerfile is included. To build manually:
docker build -t unicity-orchestrator .Run with environment variables:
docker run --rm \
-e SURREALDB_URL=ws://host.docker.internal:8000 \
-e SURREALDB_NAMESPACE=unicity \
-e SURREALDB_DATABASE=orchestrator \
-e SURREALDB_USERNAME=root \
-e SURREALDB_PASSWORD=root \
-p 3942:3942 \
unicity-orchestratorBy default the container starts through an entrypoint that:
- Uses in‑memory SurrealDB if
SURREALDB_URLis not set. - Validates required database variables when
SURREALDB_URLis set.
Unicity Orchestrator provides multiple server interfaces, each designed for different use cases:
Runs on a public-facing port (default: 0.0.0.0:8080) and exposes only read‑only endpoints:
GET /healthPOST /query— semantic tool retrieval with user‑supplied context
This API is safe to expose externally and is intended for user‑facing applications.
Runs on a restricted/admin port (default: 127.0.0.1:8081) and exposes mutating endpoints:
POST /sync— sync all MCP registriesPOST /discover— rediscover & index tools from configured MCP services
These endpoints modify orchestrator state and should not be exposed publicly.
Use firewall rules, Docker port‑mapping, or private network bindings to restrict access.
The orchestrator also runs a full MCP‑compatible server on its own port (default: 3942).
This endpoint exposes the Model Context Protocol for agentic LLMs and MCP clients:
http://localhost:3942/mcp
This server is the primary interface for LLM‑based workflows and tool execution.
For local development or integration with tools that expect an stdio MCP transport:
unicity-orchestrator mcp-stdio --db-url memoryWhen using SurrealDB instead of the in-memory database, you can provide full database configuration to the stdio server through environment variables or CLI flags. For example:
SURREALDB_URL=ws://localhost:8000 \
SURREALDB_NAMESPACE=unicity \
SURREALDB_DATABASE=orchestrator \
SURREALDB_USERNAME=root \
SURREALDB_PASSWORD=root \
unicity-orchestrator mcp-stdio --db-url ws://localhost:8000This mode is typically used with local MCP client tooling rather than production deployments.
This example demonstrates the full lifecycle of task orchestration — from a natural-language request to tool discovery, semantic matching, planning, and execution. It shows how Unicity Orchestrator handles tasks without requiring the LLM to know any tools.
The LLM (or user) sends an orchestration request to the /query endpoint:
{
"query": "Summarize open GitHub issues from this repository and group them by severity.",
"context": {
"repo_url": "https://github.com/example/project"
}
}Unicity generates an embedding for the query and performs a vector search to find relevant tools:
github.list_issuesgithub.get_repojson.structure_datatext.summarize
These are ranked by semantic similarity; irrelevant tools are discarded.
The orchestrator inspects each candidate tool:
- It loads the normalized
input_ty/output_tyfrom the database. - It identifies type-compatible sequences:
github.list_issues→ producesIssue[]json.structure_data→ acceptsIssue[]and produces structured JSONtext.summarize→ accepts text or JSON
It eliminates incompatible paths and keeps only the valid dataflows.
Symbolic rules reinforce expected tool chains:
- "Listing issues" is commonly followed by "filtering" or "processing" tools.
- Rules may recommend grouping, summarizing, or transforming steps.
The planner generates the final sequence:
github.list_issuesjson.structure_datatext.summarize
The orchestrator executes each step through its rmcp client:
- Calls GitHub MCP service → retrieves raw issues
- Calls JSON transformer → groups by severity
- Calls summarizer → produces a clean summary
All arguments are derived from context + prior tool outputs.
The orchestrator returns the final structured output:
{
"summary": "12 open issues found. Critical: 2, High: 4, Medium: 3, Low: 3.",
"grouped_issues": {
"critical": [...],
"high": [...],
"medium": [...],
"low": [...]
}
}The LLM can present or further refine the result, but the entire orchestration flow — discovery, reasoning, planning, and execution — is automated.
# Clone the repository
git clone <repository-url>
cd unicity-orchestrator
# Build the project
cargo build --releaseThe orchestrator requires an mcp.json file that lists external MCP services to load.
When running inside Docker or directly from the binary, the orchestrator will attempt to locate this file in the working directory (./mcp.json).
Automatic Behavior:
- If an
mcp.jsonis present in the project root during Docker build, it will be included in the image automatically. - If no
mcp.jsonexists at runtime, the orchestrator will create a minimal default file:
{ "mcpServers": {} }This ensures the system always starts cleanly even without external MCP services configured.
You may add services to this file at any time and restart the orchestrator.
Create a mcp.json file to configure your MCP services:
{
"mcpServers": {
"filesystem": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-filesystem", "/tmp"],
"env": {}
},
"github": {
"command": "npx",
"args": ["-y", "@modelcontextprotocol/server-github"],
"env": {
"GITHUB_PERSONAL_ACCESS_TOKEN": "${GITHUB_TOKEN}"
}
}
}
}# Initialize the database
cargo run init
# Discover tools from configured services
cargo run discover-tools
# Start the API server
cargo run server --port 8080
# Query for tools
cargo run query "read a file from filesystem"
# Sync with registries
cargo run sync-registries- SurrealDB: Multi-model database with graph capabilities
- Schema: Typed tables for services, tools, embeddings, and relationships
- Queries: Optimized for graph traversal and similarity search
- Nodes: Services, Tools, Types, Concepts, Registries
- Edges: Typed relationships with confidence scores
- Traversal: BFS/DFS with type checking and compatibility rules
- Models: Support for multiple embedding models
- Caching: In-memory caching for frequently accessed embeddings
- Similarity: Cosine similarity with configurable thresholds
- Rules: Forward and backward chaining inference
- Facts: Working memory with typed predicates
- Planning: Backward chaining for goal achievement
GET /health
POST /query
{
"query": "read a json file",
"context": {
"file_path": "/path/to/file.json"
}
}
POST /sync
POST /discover
SURREALDB_URL=ws://localhost:8000/rpc
SURREALDB_NAMESPACE=unicity
SURREALDB_DATABASE=orchestrator
SURREALDB_USERNAME=root
SURREALDB_PASSWORD=passworduse unicity_orchestrator::mcp::registry::RegistryConfig;
let github_registry = RegistryConfig {
id: "github".to_string(),
name: "GitHub MCP Registry".to_string(),
url: "https://raw.githubusercontent.com/mcp/registry/main".to_string(),
description: Some("Official MCP registry on GitHub".to_string()),
auth_token: None,
sync_interval: Duration::from_secs(3600),
is_active: true,
};TODO
Implement the RegistryProvider trait:
#[async_trait]
impl RegistryProvider for MyRegistryProvider {
async fn list_manifests(&self) -> Result<Vec<RegistryManifest>>;
async fn get_manifest(&self, name: &str, version: &str) -> Result<Option<RegistryManifest>>;
async fn download_manifest(&self, manifest: &RegistryManifest) -> Result<serde_json::Value>;
async fn verify_manifest(&self, manifest: &RegistryManifest, content: &[u8]) -> Result<bool>;
}use unicity_orchestrator::knowledge_graph::symbolic::*;
let rule = SymbolicRule {
id: "file_operation_chain".to_string(),
name: "File Operation Chain".to_string(),
description: "Chain file read with data processing".to_string(),
antecedents: vec![
SymbolicExpression::Fact(Fact {
predicate: "tool_selected".to_string(),
arguments: vec![
SymbolicExpression::Variable("tool".to_string()),
SymbolicExpression::Literal(LiteralValue::String("file_read".to_string()))
],
confidence: Some(0.9),
})
],
consequents: vec![
SymbolicExpression::Fact(Fact {
predicate: "suggest_following_tool".to_string(),
arguments: vec![
SymbolicExpression::Variable("following_tool".to_string()),
SymbolicExpression::Literal(LiteralValue::String("data_parse".to_string()))
],
confidence: Some(0.8),
})
],
confidence: 0.85,
priority: 100,
};MIT License - see LICENSE file for details.
- Fork the repository
- Create a feature branch
- Make your changes
- Add tests
- Submit a pull request
For issues and questions, please use the GitHub issue tracker.