Skip to main content

Turn harness internal tools into a standard MCP server — compatible with Claude Code, Codex, OpenCode, and more.

Project description

harness_to_mcp: Expose harness internal tools as a standard MCP server

Contents: Features | Install | Demo | How it works | Notes

Turn any agent harness (Claude Code, Codex, OpenClaw, OpenCode, ...) into an MCP server.

How: harness_to_mcp sits between the harness and its LLM API, grabs the tool list from the hijacked request, and routes MCP tools/call back into the harness tool loop.

▮ Features

  • ☑ One command to expose claude / codex / openclaw / opencode as an MCP server
  • ☑ Co-locates one MCP HTTP server and one hijack LLM API server on the same port
  • ☑ Extracts the harness tool list automatically from intercepted LLM requests
  • ☑ Mirrors captured harness system prompt into MCP initialize.result.instructions
  • ☑ Forwards MCP tools/call into the harness tool loop and maps the tool result back
  • ☑ Compatible LLM API protocols:
    • OpenAI Chat Completions (openclaw, opencode)
    • OpenAI Responses (codex)
    • Anthropic Messages (claude)
  • ☑ Isolated harness config — will not pollute the user's own config and logs
  • ☑ One harness process per MCP session, the harness process is stopped automatically on session close
  • ☑ Plain server mode for bringing your own harness
  • ☑ Pure-Python, clean dependencies — easy to hack and vibe-code on

▮ Install

pip install harness_to_mcp

The target harness CLI (claude, codex, openclaw, ...) needs to be installed separately and available on PATH.

▮ Demo

1. One-liner to expose a harness as MCP

harness_to_mcp claude
# or: harness_to_mcp codex / openclaw / opencode

Each command starts a server and launches one corresponding harness instance. The harness is started with an isolated config, so it will not touch the user's own config or logs.

The MCP endpoint is then ready at:

http://127.0.0.1:<port>/mcp

Point any MCP client (Claude Desktop, Cursor, your own script, ...) at it and the harness's internal tools show up as standard MCP tools.

You can inspect the exposed tools with python examples/list_tools.py.

2. Only run the server (plug in any harness)

harness_to_mcp

This mode starts only the server. It listens on MCP plus all hijack LLM API routes, but does not launch any harness by itself. Configure your harness's LLM API as the hijack API, send one request, and its internal tools are exposed on MCP. This is also how you plug in claude / codex / openclaw / opencode with your own custom config.

Exposed endpoints:

Purpose Path
MCP POST /mcp (alias: POST /harness_to_mcp/mcp)
OpenAI Chat Completions POST /harness_to_mcp/v1/chat/completions
OpenAI Responses POST / WebSocket /harness_to_mcp/v1/responses
Anthropic Messages POST /harness_to_mcp/v1/messages

3. Python API

We also provide a Python interface:

from harness_to_mcp import HarnessToMcp

with HarnessToMcp(port=9330) as server:
    print(server.mcp_url)          # e.g. http://127.0.0.1:9330/mcp
    print(server.hijack_base_url)  # e.g. http://127.0.0.1:9330/harness_to_mcp

▮ How it works

sequenceDiagram
    participant C as MCP Client
    participant M as harness_to_mcp<br/>MCP Server
    participant H as harness_to_mcp<br/>Hijack API Server
    participant R as Harness

    C->>M: initialize
    M->>R: launch harness session
    R->>H: send hijacked LLM API request
    H-->>M: extract tool list from request
    M-->>C: tools/list

    C->>M: tools/call
    M-->>H: resolve waiting request as tool call
    H-->>R: return tool call payload
    R->>R: execute internal tool
    R->>H: send next request with tool result
    H-->>M: match tool_call_id and deliver tool result
    M-->>C: MCP tool response

In short:

  1. MCP client calls initialize → we spawn a harness.
  2. The harness fires off its first LLM request (with the tool schema in it) → we intercept the request, extract the tool list, and reply to the MCP client with tools/list.
  3. MCP client calls tools/call → we complete the pending LLM response as a tool call, the harness executes its internal tool, and sends the result back in the next LLM request.
  4. We match the tool_call_id, extract the tool result, and return it as the MCP tool response.

▮ Notes

  • The LLM API layer is split into reusable adapters: chat completions, responses, messages.
  • The harness launcher layer is split per-harness: opencode, openclaw, codex, claude.
  • Plain server mode (harness_to_mcp with no subcommand) never auto-launches a harness.
  • Intercepted waiting requests are kept alive with periodic heartbeat bytes until MCP receives the next tool call.

▮ License

The MIT License

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

harness_to_mcp-0.1.7.tar.gz (36.3 kB view details)

Uploaded Source

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

harness_to_mcp-0.1.7-py3-none-any.whl (26.3 kB view details)

Uploaded Python 3

File details

Details for the file harness_to_mcp-0.1.7.tar.gz.

File metadata

  • Download URL: harness_to_mcp-0.1.7.tar.gz
  • Upload date:
  • Size: 36.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.1.0 CPython/3.11.7

File hashes

Hashes for harness_to_mcp-0.1.7.tar.gz
Algorithm Hash digest
SHA256 30304f7d5c403985b5401a1c71d3499aabe0ae9c9465c2dd276f09c00163f30b
MD5 5eaad8ca9133f1f1960b346160a72af6
BLAKE2b-256 532a678542cadb27e73139b6dda7d04043de8dc31521abd31598ff8416ef4ae4

See more details on using hashes here.

File details

Details for the file harness_to_mcp-0.1.7-py3-none-any.whl.

File metadata

  • Download URL: harness_to_mcp-0.1.7-py3-none-any.whl
  • Upload date:
  • Size: 26.3 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/6.1.0 CPython/3.11.7

File hashes

Hashes for harness_to_mcp-0.1.7-py3-none-any.whl
Algorithm Hash digest
SHA256 11741b3127fdd01e12a7fc4eb08c4004a3f3cb6bb5000ce2e177f97183360baf
MD5 00378154698f22b376b42f31a98a3486
BLAKE2b-256 8576920643b1efc7297315650b3c961792ab1c7aa7061a5fde3e360ba31f9d78

See more details on using hashes here.

Supported by

AWS Cloud computing and Security Sponsor Datadog Monitoring Depot Continuous Integration Fastly CDN Google Download Analytics Pingdom Monitoring Sentry Error logging StatusPage Status page