Summary

Implement MCP (Model Context Protocol) validation rules. Rule IDs are defined in SARIF output but no validator exists.

Rules to Implement

• MCP-001: Invalid JSON-RPC version (must be 2.0)
• MCP-002: Missing required tool field
• MCP-003: Invalid JSON Schema in inputSchema
• MCP-004: Missing tool description
• MCP-005: Tool without user consent
• MCP-006: Untrusted annotations from server

Deliverables

• Create crates/agnix-core/src/rules/mcp.rs
• Add MCP file detection in lib.rs
• Add test fixtures in tests/fixtures/mcp/
• Tests for each rule

References

• knowledge-base/VALIDATION-RULES.md
• https://modelcontextprotocol.io