Add ValidationOptions for lenient output schema validation

[lorenss-m]

Motivation and Context

Currently, MCP clients raise RuntimeError when tools don't return structured content matching their outputSchema. This breaks integrations with servers that have schema/implementation mismatches.

This PR adds optional lenient validation that converts these errors to warnings, allowing clients to continue operating with imperfect servers.

How Has This Been Tested?

• Added test suite in tests/client/test_validation_options.py
• All existing tests pass
• Tested with real MCP servers exhibiting validation issues

Breaking Changes

None. Default behavior unchanged. Lenient validation is opt-in:

from mcp.client.session import ValidationOptions

# Opt-in to lenient validation
options = ValidationOptions(strict_output_validation=False)
session = ClientSession(read, write, validation_options=options)

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)
• Documentation update

Checklist

• I have read the MCP Documentation
• My code follows the repository's style guidelines
• New and existing tests pass locally
• I have added appropriate error handling
• I have added or updated documentation as needed

Additional context

• Added ValidationOptions class following existing patterns (e.g., TransportSecuritySettings)
• Modified ClientSession.call_tool() to check options before raising validation errors
• Fixed workspace config issue with structured_output_lowlevel.py by creating proper package structure

[ochafik]

Hi @lorenss-m, thanks for sending this!

Seems reasonable to add this option given the spec only says clients "should" validate structured results against the output schema.

I'm curious tho, which examples of non-conforming outputs did you find / how bad were they?

cc/ @bhosmer-ant since authored initial support in #993

[ochafik]

What error would None produce here, do we need the two branches?

[Kludex]

Let's not introduce parameters that are BaseModel's please. The best experience is usually to have flat parameters.

[lorenss-m]

Added the validate_structured_outputs suggestion!

[dsp-ant]

We should make sure that this matches how other SDKs behave before we merge this. @modelcontextprotocol/sdk-maintainers .

[jba]

In the Go SDK, currently all schema validation is done on the server side.

[mikekistler]

The C# SDK delegates the validation of the structured content to the MCP Host. This is mainly because there is no standard, built-in JSON Schema validator in .NET, so doing this in the client would require pulling in an external package, one of potentially several, which adds bulk to the SDK and usurps the MCP Host's choce of validation package.

[lorenss-m]

Anything else we should change here? Would love to get this rolled out, our library is forced to depend on our fork otherwise!

[felixweinberger]

Looks like there isn't necessarily a single approach across SDKs. Go does server-side validation, C# delegates it to the host, with neither currently doing any validation within the client.

This PR allows optionally disabling client side validation specifically in Python, which thus seems like it would enable behaviors like in Go & C# at least (no client side validation).

Also matches the spec as pointed out by @ochafik above, so this seems OK to me to merge.

However, left some comments - especially the change to auth seems unintentional.

[felixweinberger]

intentional? seems unrelated

[felixweinberger]

nit: remove redundant comment

[felixweinberger]

nit: getting quite heavily nested here, could at least partially simplify with

if output_schema is None:
    return
    
if result.structuredContent is None:
    # raise / log depending
    
# handle the base case of try / except with raise / log depending

[felixweinberger]

Hi @lorenss-m are you planning to come back to this one?