I regret to inform you that you are the victim of quality control, Sir @kiitos:

1. MCP specifies two transport layers: stdio/stdout + HTTP w/SSE [^1]

2. MCP specifies JSON-RPC as the wire format [^2].

In my opinion, this is a schema on top of a pre-existing RPC protocol, not a new protocol.

I implemented the stdio transport, the JSON-RPC wire format & Tools support of the spec in Modex[^3].

- [^1]: https://modelcontextprotocol.io/docs/concepts/transports

- [^2]: https://modelcontextprotocol.io/specification/2025-03-26

- [^3]: https://github.com/theronic/modex

Re: Auth, you are correct that MCP does not specify auth (aside from env vars for e.g. API keys which is host-specific – another gripe of mine).

However, practically the host (e.g. Claude Desktop by Anthropic) asks for permission before calling specific MCP tools.

It is not part of the MCP spec, but it's part of most host implementations of MCP and one of the big practical reasons for MCP's existence is to avoid giving models carte blanche HTTP access.

IMO this should be part of the MCP spec, e.g. "you can call this GET /weather endpoint any time, but to make payments via this POST /transactions request, ask for permission once or always."

Aside: just because someone "defines <X> as something" does not make it true.