gspencergoog
diff --git a/‎docs/specification/2024-11-05/_index.md
Lines changed: 115 additions & 0 deletions b/‎docs/specification/2024-11-05/_index.md
Lines changed: 115 additions & 0 deletions
diff --git a/‎docs/specification/2024-11-05/architecture/_index.md
Lines changed: 162 additions & 0 deletions b/‎docs/specification/2024-11-05/architecture/_index.md
Lines changed: 162 additions & 0 deletions
diff --git a/‎docs/specification/basic/_index.md renamed to ‎docs/specification/2024-11-05/basic/_index.md
Lines changed: 9 additions & 9 deletions b/‎docs/specification/basic/_index.md renamed to ‎docs/specification/2024-11-05/basic/_index.md
Lines changed: 9 additions & 9 deletions
@@ -0,0 +1,115 @@
+---
+title: Specification (Latest)
+cascade:
+  type: docs
+breadcrumbs: false
+weight: 10
+aliases:
+  - /latest
+---
+
+{{< callout type="info" >}}
+**Protocol Revision**: {{< param protocolRevision >}}
+{{< /callout >}}
+
+[Model Context Protocol](https://modelcontextprotocol.io) (MCP) is an open protocol that enables seamless integration between LLM applications and external data sources and tools. Whether you're building an AI-powered IDE, enhancing a chat interface, or creating custom AI workflows, MCP provides a standardized way to connect LLMs with the context they need.
+
+This specification defines the authoritative protocol requirements, based on the TypeScript schema in [schema.ts](https://github.com/modelcontextprotocol/specification/2024-11-05/blob/main/schema/schema.ts).
+
+For implementation guides and examples, visit [modelcontextprotocol.io](https://modelcontextprotocol.io).
+
+The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED", "MAY", and "OPTIONAL" in this document are to be interpreted as described in [BCP 14](https://datatracker.ietf.org/doc/html/bcp14) [[RFC2119](https://datatracker.ietf.org/doc/html/rfc2119)] [[RFC8174](https://datatracker.ietf.org/doc/html/rfc8174)] when, and only when, they appear in all capitals, as shown here.
+
+## Overview
+
+MCP provides a standardized way for applications to:
+
+- Share contextual information with language models
+- Expose tools and capabilities to AI systems
+- Build composable integrations and workflows
+
+The protocol uses [JSON-RPC](https://www.jsonrpc.org/) 2.0 messages to establish communication between:
+
+- **Hosts**: LLM applications that initiate connections
+- **Clients**: Connectors within the host application
+- **Servers**: Services that provide context and capabilities
+
+MCP takes some inspiration from the [Language Server Protocol](https://microsoft.github.io/language-server-protocol/), which standardizes how to add support for programming languages across a whole ecosystem of development tools. In a similar way, MCP standardizes how to integrate additional context and tools into the ecosystem of AI applications.
+
+## Key Details
+
+### Base Protocol
+- [JSON-RPC](https://www.jsonrpc.org/) message format
+- Stateful connections
+- Server and client capability negotiation
+
+### Features
+
+Servers offer any of the following features to clients:
+
+- **Resources**: Context and data, for the user or the AI model to use
+- **Prompts**: Templated messages and workflows for users
+- **Tools**: Functions for the AI model to execute
+
+Clients may offer the following feature to servers:
+
+- **Sampling**: Server-initiated agentic behaviors and recursive LLM interactions
+
+### Additional Utilities
+
+- Configuration
+- Progress tracking
+- Cancellation
+- Error reporting
+- Logging
+
+## Security and Trust & Safety
+
+The Model Context Protocol enables powerful capabilities through arbitrary data access and code execution paths. With this power comes important security and trust considerations that all implementors must carefully address.
+
+### Key Principles
+
+1. **User Consent and Control**
+   - Users must explicitly consent to and understand all data access and operations
+   - Users must retain control over what data is shared and what actions are taken
+   - Implementors should provide clear UIs for reviewing and authorizing activities
+
+2. **Data Privacy**
+   - Hosts must obtain explicit user consent before exposing user data to servers
+   - Hosts must not transmit resource data elsewhere without user consent
+   - User data should be protected with appropriate access controls
+
+3. **Tool Safety**
+   - Tools represent arbitrary code execution and must be treated with appropriate caution
+   - Hosts must obtain explicit user consent before invoking any tool
+   - Users should understand what each tool does before authorizing its use
+
+4. **LLM Sampling Controls**
+   - Users must explicitly approve any LLM sampling requests
+   - Users should control:
+     - Whether sampling occurs at all
+     - The actual prompt that will be sent
+     - What results the server can see
+   - The protocol intentionally limits server visibility into prompts
+
+### Implementation Guidelines
+
+While MCP itself cannot enforce these security principles at the protocol level, implementors **SHOULD**:
+
+1. Build robust consent and authorization flows into their applications
+2. Provide clear documentation of security implications
+3. Implement appropriate access controls and data protections
+4. Follow security best practices in their integrations
+5. Consider privacy implications in their feature designs
+
+## Learn More
+
+Explore the detailed specification for each protocol component:
+
+{{< cards >}}
+  {{< card link="architecture" title="Architecture" icon="template" >}}
+  {{< card link="basic" title="Base Protocol" icon="code" >}}
+  {{< card link="server" title="Server Features" icon="server" >}}
+  {{< card link="client" title="Client Features" icon="user" >}}
+  {{< card link="contributing" title="Contributing" icon="pencil" >}}
+{{< /cards >}}
@@ -0,0 +1,162 @@
+---
+title: Architecture
+cascade:
+  type: docs
+weight: 1
+---
+
+The Model Context Protocol (MCP) follows a client-host-server architecture where each host can run multiple client instances. This architecture enables users to integrate AI capabilities across applications while maintaining clear security boundaries and isolating concerns. Built on JSON-RPC, MCP provides a stateful session protocol focused on context exchange and sampling coordination between clients and servers.
+
+## Core Components
+
+```mermaid
+graph LR
+    subgraph "Application Host Process"
+        H[Host]
+        C1[Client 1]
+        C2[Client 2]
+        C3[Client 3]
+        H --> C1
+        H --> C2
+        H --> C3
+    end
+
+    subgraph "Local machine"
+        S1[Server 1<br>Files & Git]
+        S2[Server 2<br>Database]
+        R1[("Local<br>Resource A")]
+        R2[("Local<br>Resource B")]
+
+        C1 --> S1
+        C2 --> S2
+        S1 <--> R1
+        S2 <--> R2
+    end
+
+    subgraph "Internet"
+        S3[Server 3<br>External APIs]
+        R3[("Remote<br>Resource C")]
+
+        C3 --> S3
+        S3 <--> R3
+    end
+```
+
+### Host
+The host process acts as the container and coordinator:
+- Creates and manages multiple client instances
+- Controls client connection permissions and lifecycle
+- Enforces security policies and consent requirements
+- Handles user authorization decisions
+- Coordinates AI/LLM integration and sampling
+- Manages context aggregation across clients
+
+### Clients
+Each client is created by the host and maintains an isolated server connection:
+- Establishes one stateful session per server
+- Handles protocol negotiation and capability exchange
+- Routes protocol messages bidirectionally
+- Manages subscriptions and notifications
+- Maintains security boundaries between servers
+
+A host application creates and manages multiple clients, with each client having a 1:1 relationship with a particular server.
+
+### Servers
+Servers provide specialized context and capabilities:
+- Expose resources, tools and prompts via MCP primitives
+- Operate independently with focused responsibilities
+- Request sampling through client interfaces
+- Must respect security constraints
+- Can be local processes or remote services
+
+## Design Principles
+
+MCP is built on several key design principles that inform its architecture and implementation:
+
+1. **Servers should be extremely easy to build**
+    - Host applications handle complex orchestration responsibilities
+    - Servers focus on specific, well-defined capabilities
+    - Simple interfaces minimize implementation overhead
+    - Clear separation enables maintainable code
+
+2. **Servers should be highly composable**
+    - Each server provides focused functionality in isolation
+    - Multiple servers can be combined seamlessly
+    - Shared protocol enables interoperability
+    - Modular design supports extensibility
+
+3. **Servers should not be able to read the whole conversation, nor "see into" other servers**
+    - Servers receive only necessary contextual information
+    - Full conversation history stays with the host
+    - Each server connection maintains isolation
+    - Cross-server interactions are controlled by the host
+    - Host process enforces security boundaries
+
+4. **Features can be added to servers and clients progressively**
+    - Core protocol provides minimal required functionality
+    - Additional capabilities can be negotiated as needed
+    - Servers and clients evolve independently
+    - Protocol designed for future extensibility
+    - Backwards compatibility is maintained
+
+## Message Types
+MCP defines three core message types based on [JSON-RPC 2.0](https://www.jsonrpc.org/specification):
+
+- **Requests**: Bidirectional messages with method and parameters expecting a response
+- **Responses**: Successful results or errors matching specific request IDs
+- **Notifications**: One-way messages requiring no response
+
+Each message type follows the JSON-RPC 2.0 specification for structure and delivery semantics.
+
+## Capability Negotiation
+
+The Model Context Protocol uses a capability-based negotiation system where clients and servers explicitly declare their supported features during initialization. Capabilities determine which protocol features and primitives are available during a session.
+
+- Servers declare capabilities like resource subscriptions, tool support, and prompt templates
+- Clients declare capabilities like sampling support and notification handling
+- Both parties must respect declared capabilities throughout the session
+- Additional capabilities can be negotiated through extensions to the protocol
+
+```mermaid
+sequenceDiagram
+    participant Host
+    participant Client
+    participant Server
+
+    Host->>+Client: Initialize client
+    Client->>+Server: Initialize session with capabilities
+    Server-->>Client: Respond with supported capabilities
+
+    Note over Host,Server: Active Session with Negotiated Features
+
+    loop Client Requests
+        Host->>Client: User- or model-initiated action
+        Client->>Server: Request (tools/resources)
+        Server-->>Client: Response
+        Client-->>Host: Update UI or respond to model
+    end
+
+    loop Server Requests
+        Server->>Client: Request (sampling)
+        Client->>Host: Forward to AI
+        Host-->>Client: AI response
+        Client-->>Server: Response
+    end
+
+    loop Notifications
+        Server--)Client: Resource updates
+        Client--)Server: Status changes
+    end
+
+    Host->>Client: Terminate
+    Client->>-Server: End session
+    deactivate Server
+```
+
+Each capability unlocks specific protocol features for use during the session. For example:
+- Implemented [server features]({{< ref "/specification/2024-11-05/server" >}}) must be advertised in the server's capabilities
+- Emitting resource subscription notifications requires the server to declare subscription support
+- Tool invocation requires the server to declare tool capabilities
+- [Sampling]({{< ref "/specification/2024-11-05/client" >}}) requires the client to declare support in its capabilities
+
+This capability negotiation ensures clients and servers have a clear understanding of supported functionality while maintaining protocol extensibility.
@@ -36,22 +36,22 @@ These protocol layers establish clear separation of concerns while enabling rich
 See the following pages for more details on the different components:
 
 {{< cards >}}
-  {{< card link="/specification/basic/lifecycle" title="Lifecycle" icon="refresh" >}}
-  {{< card link="/specification/server/resources" title="Resources" icon="document" >}}
-  {{< card link="/specification/server/prompts" title="Prompts" icon="chat-alt-2" >}}
-  {{< card link="/specification/server/tools" title="Tools" icon="adjustments" >}}
-  {{< card link="/specification/server/utilities/logging" title="Logging" icon="annotation" >}}
-  {{< card link="/specification/client/sampling" title="Sampling" icon="code" >}}
+  {{< card link="/specification/2024-11-05/basic/lifecycle" title="Lifecycle" icon="refresh" >}}
+  {{< card link="/specification/2024-11-05/server/resources" title="Resources" icon="document" >}}
+  {{< card link="/specification/2024-11-05/server/prompts" title="Prompts" icon="chat-alt-2" >}}
+  {{< card link="/specification/2024-11-05/server/tools" title="Tools" icon="adjustments" >}}
+  {{< card link="/specification/2024-11-05/server/utilities/logging" title="Logging" icon="annotation" >}}
+  {{< card link="/specification/2024-11-05/client/sampling" title="Sampling" icon="code" >}}
 {{< /cards >}}
 
 ## Auth
 
-Authentication and authorization are not currently part of the core MCP specification, but we are considering ways to introduce them in future. Join us in [GitHub Discussions](https://github.com/modelcontextprotocol/specification/discussions) to help shape the future of the protocol!
+Authentication and authorization are not currently part of the core MCP specification, but we are considering ways to introduce them in future. Join us in [GitHub Discussions](https://github.com/modelcontextprotocol/specification/2024-11-05/discussions) to help shape the future of the protocol!
 
 Clients and servers **MAY** negotiate their own custom authentication and authorization strategies.
 
 ## Schema
 
-The full specification of the protocol is defined as a [TypeScript schema](http://github.com/modelcontextprotocol/specification/tree/main/schema/schema.ts). This is the source of truth for all protocol messages and structures.
+The full specification of the protocol is defined as a [TypeScript schema](http://github.com/modelcontextprotocol/specification/2024-11-05/tree/main/schema/schema.ts). This is the source of truth for all protocol messages and structures.
 
-There is also a [JSON Schema](http://github.com/modelcontextprotocol/specification/tree/main/schema/schema.json), which is automatically generated from the TypeScript source of truth, for use with various automated tooling.
+There is also a [JSON Schema](http://github.com/modelcontextprotocol/specification/2024-11-05/tree/main/schema/schema.json), which is automatically generated from the TypeScript source of truth, for use with various automated tooling.