Cortex CoCo / Cortex Code Integration

This guide covers the full agent-bom flow for Snowflake Cortex CoCo:

add agent-bom as an MCP server inside CoCo
scan CoCo MCP servers plus Cortex-specific config state
wrap third-party MCP servers with the runtime proxy when you want live inspection

Use agent-bom as an MCP server

Add to ~/.snowflake/cortex/mcp.json:

{
  "mcpServers": {
    "agent-bom": {
      "command": "uvx",
      "args": ["agent-bom", "mcp", "server"]
    }
  }
}

Or, if agent-bom is already installed:

{
  "mcpServers": {
    "agent-bom": {
      "command": "agent-bom",
      "args": ["mcp", "server"]
    }
  }
}

This makes the same 36 agent-bom MCP tools available in CoCo conversations.

agent-bom does more than read mcp.json. It also inspects:

That gives you Cortex-specific audit visibility that normal MCP discovery does not provide.

agent-bom audits:

Use the CLI when you want an audit of the local CoCo setup:

agent-bom agents
agent-bom agents -p .
agent-bom skills scan .

This discovers CoCo MCP servers, package dependencies, exposed credential names, and auxiliary Cortex config findings.

When you want live inspection of third-party MCP traffic, wrap the real server:

agent-bom proxy "npx @modelcontextprotocol/server-filesystem /workspace"

Or auto-wrap eligible JSON MCP configs:

agent-bom proxy-configure --log-dir ~/.agent-bom/logs --detect-credentials --apply

That adds runtime monitoring for:

For cross-agent correlation across sessions, use the broader runtime protection engine with agent-bom runtime protect --shield.

agent-bom does not need write access to the target MCP server to scan it.
MCP server mode is read-only.
Proxy mode is opt-in and is the path for runtime enforcement.
See MCP_SERVER.md for the MCP tool catalog and RUNTIME_MONITORING.md for deployment details.