fix(mcp): merge workspace MCP config

[cyq1017]

Summary

• merge workspace .codewhale/mcp.json servers with the global MCP config, with workspace servers overriding same-name global entries
• default workspace stdio MCP servers to the workspace root as their process cwd
• use the merged MCP view in the TUI engine, runtime API, doctor, and codewhale mcp read/connect/validate flows

Verification

• cargo test -p codewhale-tui workspace_mcp_ -- --nocapture
• cargo test -p codewhale-tui mcp::tests -- --nocapture
• cargo check -p codewhale-tui
• rustfmt --edition 2024 --check crates/tui/src/mcp.rs crates/tui/src/core/engine.rs crates/tui/src/runtime_api.rs crates/tui/src/main.rs
• git diff --check

Closes #2749

[greptile-apps]

cyq1017 has reached the 50-review limit for trial accounts. To continue receiving code reviews, upgrade your plan.

[github-actions]

Thanks @cyq1017 for taking the time to contribute.

This repository is currently observing a maintainer-managed contribution gate in dry-run mode, so this pull request is staying open. When enforcement is enabled, pull requests from contributors who are not listed in .github/APPROVED_CONTRIBUTORS will be closed automatically.

Please read CONTRIBUTING.md for the expected contribution shape. A maintainer can grant PR access by commenting /lgtm on a pull request.

[gemini-code-assist]

Code Review

This pull request adds support for workspace-local MCP configurations (.codewhale/mcp.json) that merge with and override global configurations, and introduces a cwd field to McpServerConfig to run servers in specific directories. The McpPool is updated to track both global and project-level config files for lazy reloading. Feedback recommends canonicalizing the workspace path to prevent failures with relative paths containing .. components, resolving relative cwd paths in project configs relative to the workspace root, and skipping the merge process if the global and project config paths are identical.

Important

The consumer version of Gemini Code Assist on GitHub is being sunset. Starting June 18, 2026, new organization installations will be blocked, and all code review activity will officially cease on July 17, 2026.
For more details on the timeline and next steps, please review the Help Documentation.

[gemini-code-assist]

If the workspace path contains .. components (e.g., when specified as a relative path like --workspace ../project), workspace_mcp_config_path will produce a path containing ... This causes mcp_config_mtime to silently fail (returning None) and prevents load_config from loading the file due to strict path traversal checks. Canonicalizing the workspace path first resolves these issues.

pub fn workspace_mcp_config_path(workspace: &Path) -> PathBuf {
    workspace
        .canonicalize()
        .unwrap_or_else(|_| workspace.to_path_buf())
        .join(".codewhale")
        .join("mcp.json")
}

[gemini-code-assist]

Ensure that relative cwd paths specified in the workspace-local MCP configuration are resolved relative to the workspace root rather than the process's current working directory. Additionally, canonicalize the workspace path to ensure robust path resolution, and skip merging if the global and project config paths are identical (e.g., when running from the home directory).

pub fn load_config_with_workspace(global_path: &Path, workspace: &Path) -> Result<McpConfig> {
    let workspace_abs = workspace
        .canonicalize()
        .unwrap_or_else(|_| workspace.to_path_buf());
    let mut merged = load_config(global_path)?;
    let project_path = workspace_mcp_config_path(&workspace_abs);
    if !project_path.exists() || global_path == project_path {
        return Ok(merged);
    }

    let mut project = load_config(&project_path)?;
    for server in project.servers.values_mut() {
        if server.command.is_some() && server.url.is_none() {
            if let Some(ref cwd) = server.cwd {
                if cwd.is_relative() {
                    server.cwd = Some(workspace_abs.join(cwd));
                }
            } else {
                server.cwd = Some(workspace_abs.clone());
            }
        }
    }
    merged.servers.extend(project.servers);
    Ok(merged)
}

[greptile-apps]

cyq1017 has reached the 50-review limit for trial accounts. To continue receiving code reviews, upgrade your plan.

[Hmbown]

Thanks @cyq1017 and @yekern. This is the right problem and the tests are useful. I’m leaving it open for maintainer review of MCP pool init/reload behavior across TUI, doctor, CLI, and runtime API before harvesting.

[Hmbown]

Thanks @cyq1017 and @yekern. I harvested this into #2770 (95e24194e) on codex/v0.9.0-stewardship rather than merging the older branch directly.

What landed preserves the intent from this PR: trusted workspaces now merge .codewhale/mcp.json with the global MCP config, project servers can override same-name global servers, project stdio servers default cwd to the workspace, and the merged view is used by the TUI engine, runtime API, doctor, and codewhale mcp read/connect/validate flows.

I also tightened the trust boundary before landing: project MCP is ignored until workspace trust is recorded in user-owned config, checked-in legacy trust markers do not unlock MCP subprocesses, trust changes are watched for reload, and project cwd escapes are rejected.

Verification run locally on the harvest branch:

• cargo test -p codewhale-tui workspace_mcp --all-features --locked -- --nocapture (11 passed)
• cargo test -p codewhale-tui reload_if_config_changed --all-features --locked -- --nocapture (3 passed)
• cargo test -p codewhale-tui doctor_mcp --all-features --locked -- --nocapture (6 passed)
• cargo test -p codewhale-tui mcp_pool_call_tool --all-features --locked -- --nocapture (3 passed)
• cargo fmt --all -- --check
• git diff --check
• ./scripts/release/check-versions.sh
• cargo check -p codewhale-tui --all-features --locked
• cargo clippy -p codewhale-tui --all-features --locked -- -D warnings
• python3 scripts/check-coauthor-trailers.py --author-map .github/AUTHOR_MAP --range origin/codex/v0.9.0-stewardship..HEAD --check-authors

Closing this PR as superseded by the harvested #2770. Thanks again for pushing the project MCP path forward.