feat: enhance MCP tool execution with unique ID generation and improved file handling

liuruibin · liuruibin · commit bb665b5196f3 · 2025-08-13T11:49:37.000+08:00
diff --git a/apps/application/flow/step_node/ai_chat_step_node/impl/base_chat_node.py b/apps/application/flow/step_node/ai_chat_step_node/impl/base_chat_node.py
@@ -16,6 +16,7 @@
 from functools import reduce
 from typing import List, Dict
 
+import uuid_utils.compat as uuid
 from django.db.models import QuerySet
 from langchain.schema import HumanMessage, SystemMessage
 from langchain_core.messages import BaseMessage, AIMessage, AIMessageChunk, ToolMessage
@@ -27,7 +28,6 @@
 from application.flow.tools import Reasoning
 from common.utils.logger import maxkb_logger
 from common.utils.tool_code import ToolExecutor
-from maxkb.conf import PROJECT_DIR
 from models_provider.models import Model
 from models_provider.tools import get_model_credential, get_model_instance_by_model_workspace_id
 from tools.models import Tool
@@ -280,18 +280,26 @@ def _handle_mcp_request(self, mcp_enable, tool_enable, mcp_source, mcp_servers,
         if tool_enable:
             if tool_ids and len(tool_ids) > 0:  # 如果有工具ID，则将其转换为MCP
                 self.context['tool_ids'] = tool_ids
+                self.context['execute_ids'] = []
                 for tool_id in tool_ids:
                     tool = QuerySet(Tool).filter(id=tool_id).first()
-                    executor = ToolExecutor()
+                    executor = ToolExecutor(sandbox=True)
                     code = executor.generate_mcp_server_code(tool.code)
-                    code_path = f'{executor.sandbox_path}/execute/{tool_id}.py'
+                    _id = uuid.uuid7()
+                    self.context['execute_ids'].append(_id)
+                    code_path = f'{executor.sandbox_path}/execute/{_id}.py'
                     with open(code_path, 'w') as f:
                         f.write(code)
-                        os.system(f"chown sandbox:root {code_path}")
+                        os.system(f"chown {executor.user}:root {code_path}")
 
                     tool_config = {
-                        'command': sys.executable,
-                        'args': [code_path],
+                        'command': 'su',
+                        'args': [
+                            '-s', sys.executable,
+                            '-c', f"exec(open('{code_path}', 'r').read())",
+                            executor.user,
+                        ],
+                        'cwd': executor.sandbox_path,
                         'transport': 'stdio',
                     }
                     mcp_servers_config[str(tool.id)] = tool_config
@@ -338,10 +346,10 @@ def reset_message_list(message_list: List[BaseMessage], answer_text):
 
     def get_details(self, index: int, **kwargs):
         # 删除临时生成的MCP代码文件
-        if self.context.get('tool_ids'):
-            executor = ToolExecutor()
+        if self.context.get('execute_ids'):
+            executor = ToolExecutor(sandbox=True)
             # 清理工具代码文件，延时删除，避免文件被占用
-            for tool_id in self.context.get('tool_ids'):
+            for tool_id in self.context.get('execute_ids'):
                 code_path = f'{executor.sandbox_path}/execute/{tool_id}.py'
                 if os.path.exists(code_path):
                     os.remove(code_path)
