Skip to content

CLI.md

Latest commit

 

History

History
318 lines (220 loc) · 9.55 KB

CLI.md

File metadata and controls

318 lines (220 loc) · 9.55 KB

CLI Reference

The opencontext CLI manages the full lifecycle of an OpenContext MCP server — from initial setup through deployment, monitoring, and teardown.

Installation

Install uv first.

git clone https://github.com/thealphacubicle/OpenContext.git
cd OpenContext
uv sync --extra cli

For development tooling (tests, linters, pip-audit), use uv sync --all-extras.

Verify:

uv run opencontext --help

Global behavior

  • Commands that modify infrastructure (deploy, destroy) require a TTY and prompt for confirmation.
  • All commands that interact with AWS or Terraform respect the environment set by --env.
  • --env defaults to staging on every command that accepts it.

Commands

opencontext authenticate

Check all prerequisites and print a status table. Auto-installs uv and awscli when possible (uv first; pip only as a fallback for uv if neither is installed).

Checks:

  1. Python >= 3.11
  2. uv (if missing: auto-install attempted via pip; preferred: install from docs.astral.sh/uv)
  3. AWS CLI (if missing: auto-install via uv pip install awscli, then pip as fallback)
  4. AWS credentials (aws sts get-caller-identity)
  5. Terraform >= 1.0
opencontext authenticate

opencontext configure

Interactive wizard that creates config.yaml, the Terraform .tfvars file, and initializes the Terraform workspace.

Prompts:

  • Starting point (example template or scratch)
  • Organization name and city
  • Environment (staging or prod)
  • Plugin (CKAN, ArcGIS, or Socrata) and connection settings
  • AWS region, Lambda name, memory (MB), and timeout (seconds)
  • Optional custom domain

Outputs:

  • config.yaml — plugin and Lambda settings
  • terraform/aws/<env>.tfvars — Terraform variables
  • Terraform workspace <city-slug>-<env> (created or selected)
opencontext configure

opencontext serve

Start a local development server for testing without deploying to AWS. The server uses the same MCP handler as the Lambda adapter, so behavior is identical to production.

opencontext serve
opencontext serve --port 9000
opencontext serve --config path/to/config.yaml
Flag Default Description
--port 8000 Port to listen on
--config config.yaml Path to config file

The server starts at http://localhost:<port>/mcp. Use it with Claude Desktop (via Claude Connectors), opencontext test --url, or any HTTP client. Logs are written to stdout at the level set in config.yaml.

opencontext deploy

Package the Lambda deployment zip, run terraform plan, show a summary, prompt for confirmation, then apply.

opencontext deploy --env staging
opencontext deploy --env prod
Flag Default Description
--env staging Environment to deploy to

What it does:

  1. Runs all validation checks (same as opencontext validate)
  2. Installs Python dependencies into .deploy/ using uv pip install -r requirements.txt (pinned list for Lambda size and reproducibility)
  3. Copies core/, plugins/, server/, and custom_plugins/ into the zip
  4. Copies the zip and config.yaml into terraform/aws/
  5. Runs terraform plan and shows add/change/destroy counts
  6. Prompts for confirmation (defaults to No)
  7. Runs terraform apply
  8. Prints API Gateway URL, CloudWatch log group, and custom domain details

After deployment, the API Gateway URL includes /mcp and is ready to use with Claude Connectors.

opencontext status

Show deployment status for an environment: Lambda info, API Gateway URL, custom domain, and certificate status.

opencontext status --env staging
opencontext status --env prod
Flag Default Description
--env staging Environment to query

opencontext validate

Run pre-deployment validation checks without deploying. Useful for CI or before a deploy.

opencontext validate --env staging
Flag Default Description
--env staging Environment to validate against

Checks:

  1. config.yaml exists
  2. Exactly one plugin enabled
  3. Plugin required fields present
  4. terraform/aws/<env>.tfvars exists
  5. Terraform installed
  6. Terraform initialized (.terraform/ directory present)
  7. terraform validate passes
  8. AWS credentials valid
  9. ACM certificate exists (only if custom_domain is set in tfvars)

Exits with code 1 if any check fails.

opencontext test

Send MCP JSON-RPC requests to the deployed server and report results.

opencontext test --env staging
opencontext test --url https://my-lambda-url.lambda-url.us-east-1.on.aws
Flag Default Description
--env staging Environment to test (fetches URL from Terraform output)
--url Override URL to test against (skips Terraform lookup)

Tests run:

  1. Ping
  2. Initialize (MCP protocol handshake)
  3. List tools
  4. Call first available tool with empty arguments

If a custom domain is configured and its certificate is ISSUED, the command also tests against the custom domain URL.

opencontext logs

Tail CloudWatch logs for the deployed Lambda.

opencontext logs --env staging
opencontext logs --env staging --follow
opencontext logs --env staging --verbose
opencontext logs --env staging --since 30m
Flag Default Description
--env staging Environment to fetch logs for
--follow, -f False Stream new log entries as they arrive
--verbose, -v False Show structured per-invocation view with duration and error highlighting
--since 1h How far back to fetch (e.g., 30m, 2h, 24h)

Without --verbose, log lines are printed with START entries highlighted in cyan and ERROR lines highlighted in red. With --verbose, invocations are grouped with request ID, duration, and status.

opencontext domain

Check and manage custom domain setup. Shows certificate status, DNS records to create, and (if the certificate is issued) tests the domain is live.

opencontext domain --env staging
opencontext domain --env prod
Flag Default Description
--env staging Environment to check

When the certificate is PENDING_VALIDATION, this command prints the two CNAME records that city IT needs to create, plus a pre-filled email template to send them.

opencontext architecture

Print a human-readable overview of the AWS infrastructure in the terminal — request flow, API Gateway settings, Lambda config, supporting services (CloudWatch, SQS DLQ, Terraform state), custom domain, and resource tagging.

opencontext architecture

opencontext plugin list

List all built-in and custom plugins and their enabled/disabled status from config.yaml.

opencontext plugin list

opencontext security

Run a pip-audit vulnerability scan against installed packages and display results grouped by severity (CRITICAL, HIGH, MEDIUM, LOW). Exits with code 1 if any vulnerabilities are found.

opencontext security
opencontext security --export
Flag Default Description
--export False Write report to security-report-<timestamp>.txt

Requires pip-audit to be installed as a dev dependency (uv add --dev pip-audit).

opencontext cost

Estimate AWS costs for an environment based on CloudWatch metrics.

opencontext cost --env staging
opencontext cost --env prod --days 7
Flag Default Description
--env staging Environment to estimate costs for
--days 30 Number of days to look back

Reports Lambda invocations, average duration, API Gateway request count, and estimated costs. Uses AWS public pricing — check AWS Cost Explorer for exact figures.

To break costs down by tag in Cost Explorer, activate the Project, Environment, and ManagedBy tags in AWS Console → Billing → Cost allocation tags.

opencontext upgrade

Merge updates from the upstream OpenContext template into your fork.

opencontext upgrade
opencontext upgrade --upstream-url https://github.com/thealphacubicle/OpenContext.git
Flag Default Description
--upstream-url upstream repo URL URL of the upstream template repository

What it does:

  1. Adds an upstream git remote if not present
  2. Fetches upstream/main
  3. Shows new commits and affected files
  4. Warns about protected files (config.yaml, terraform/aws/*.tfvars, examples/) that will not be overwritten
  5. Prompts for confirmation, then runs git merge upstream/main --no-commit --no-ff
  6. Auto-resolves conflicts in protected files by keeping your version
  7. Leaves the merge staged — run git commit to finalize or git merge --abort to cancel

opencontext destroy

Tear down all AWS resources for an environment. Requires typing the environment name to confirm.

opencontext destroy --env staging
opencontext destroy --env prod
Flag Default Description
--env staging Environment to destroy

Runs terraform destroy -auto-approve after confirmation. This is irreversible — all Lambda, API Gateway, IAM, and CloudWatch resources for the workspace are removed.