You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: README.md
+6-9Lines changed: 6 additions & 9 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -26,7 +26,7 @@ MCP is great — standardized interfaces, structured data, extensible ecosystem.
26
26
|**Composition**| Tools combined through LLM reasoning | Native Unix-style piping between tools |
27
27
|**Data scale**| Limited by context window | Streaming/iterator model handles datasets larger than memory |
28
28
|**Reliability**| LLM-dependent control flow | Deterministic shell pipeline execution |
29
-
|**Permissions**| Complex tasks push toward full shell access | Sandboxed execution with whitelisted commands |
29
+
|**Permissions**| Complex tasks push toward full shell access | Sandboxed execution with allowed commands only|
30
30
31
31
## Real-World Example
32
32
@@ -65,18 +65,15 @@ Once running, MCP Shell is available to any AI agent that ToolHive supports —
65
65
MCP Shell runs in a containerized environment through ToolHive, so commands have no direct access to the user's filesystem — only through explicitly configured MCP servers.
66
66
67
67
-**Containerized**: Runs isolated from the host system
68
-
-**Command Whitelisting**: Only safe, read-only data transformation commands are allowed
68
+
-**Allowed Commands**: Only safe, read-only data transformation commands are permitted
69
69
-**No Shell Injection**: Commands are executed with `shell=False`, args passed separately
70
70
-**MCP Tools Only**: All external operations go through approved MCP servers
71
71
72
-
## Roadmap
72
+
## Usage Tips
73
73
74
-
-[ ] Open source release with documentation
75
-
-[ ] Integration with ToolHive ecosystem
76
-
-[ ] Video announcement and tutorials
77
-
-[ ] Additional shell commands based on user feedback
78
-
-[ ] Support for Python/TypeScript code execution (exploring)
79
-
-[ ] Authentication and enterprise features
74
+
**Connect only MCP Shell to your agent** — For best results, don't connect individual MCP servers directly to the agent alongside MCP Shell. When agents have direct access to tools, they may call them individually instead of composing efficient pipelines. MCP Shell can access all your MCP servers through ToolHive automatically.
75
+
76
+
**Some agents need encouragement** — Most agents will use the shell naturally for complex tasks, but some may need a hint in their system prompt (e.g., "Use MCP Shell pipelines to combine multiple tool calls efficiently").
0 commit comments