docs(constitution): shrink MCP allowlist section to load-bearing boundaries

[mobileskyfi]

June-gloom Phase 1 — CONSTITUTION clean move (MCP allowlist)

First of the CONSTITUTION clean moves now that the MATRIX restructure is done. The full MCP safety model lives in commands/mcp/README.md (dedicated "Safety model — the CDB is the allowlist", "Tools", "Resources", "Transports" sections), so this is dedup.

What changes

• docs/CONSTITUTION.md MCP section: keep the two load-bearing boundaries — authorization = the CDB allowlist (linking the __default__-never-widens rule kept in Identity and CDB), and stdio-only (HTTP is the proxy surface's job) — plus the mcp=ro|rw + confirm:true write-gate mention and a pointer. Move the mechanics (ad-hoc rejection + --allow-adhoc-targets, the scoped tool list, the centrs:// resources, validate dry-run) to the mcp README. ~28 → ~13 lines.

Verification

• bun run lint:ci: markdownlint 0 errors (MD051 passes), cspell / secretlint / agent-lint clean

Docs only.

🤖 Generated with Claude Code

Summary by CodeRabbit

Documentation

• Enhanced MCP surface documentation to clarify and refine core architectural boundaries. Updated descriptions now emphasize key authorization enforcement mechanisms and transport specifications, focusing on essential load-bearing constraints. Removed granular implementation-specific technical details to streamline the documentation, providing clearer architectural guidance with improved focus on critical system constraints and policies.

[coderabbitai]

Warning

Review limit reached

@mobileskyfi, we couldn't start this review because you've reached your PR review rate limit.

More reviews will be available in 42 minutes and 22 seconds. Learn how PR review limits work.

Your organization has used up its prepaid credits, and credit purchases are no longer available. Enable the review add-on in the billing tab to keep reviews running — you're only billed for reviews past your plan's rate limits ($0.25/file).

⌛ How to resolve this issue?

After more reviews become available, a review can be triggered using the @coderabbitai review command as a PR comment. Alternatively, push new commits to this PR.

We recommend that you space out your commits to avoid hitting the rate limit.

🚦 How do rate limits work?

CodeRabbit enforces hourly rate limits for each developer per organization.

Our paid plans include higher PR review limits than trial, open-source, and free plans. In all cases, reviews become available again over time. During sustained high-volume PR review activity, CodeRabbit may temporarily slow when the next review becomes available.

Please see our Fair Usage Limits Policy for further information.

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro Plus

Run ID: 4a95f99b-d0f9-4060-b596-8c3516827b0a

📥 Commits

Reviewing files that changed from the base of the PR and between dbce811 and c04f128.

📒 Files selected for processing (1)

• docs/CONSTITUTION.md

📝 Walkthrough

Walkthrough

The docs/CONSTITUTION.md MCP surface section is rewritten to remove a longer bullet list covering tool verbs, write-confirmation semantics, published resources, and per-device write policies, replacing it with a tighter two-point description of the CDB allowlist authorization boundary and stdio-only transport constraint.

Changes

MCP Boundary Documentation

Layer / File(s)	Summary
MCP surface section rewrite docs/CONSTITUTION.md	Replaces the prior multi-bullet MCP description with two concise boundary statements: CDB allowlist as authorization gate (unregistered targets rejected, adhoc escape hatch off by default) and MCP transport restricted to stdio with HTTP/remote handled by the proxy surface.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

• tikoci/centrs#19: Also modifies the MCP allowlist/CDB boundary description in docs/CONSTITUTION.md, touching overlapping identity and __default__ behavior with MCP allowlist implications.

Poem

A rabbit rewrote the MCP wall,
Two clear rules now standing tall:
CDB allows, stdio flows,
HTTP to the proxy goes—
Less words, same law, that's all! 🐇✏️

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title accurately describes the main change: shrinking the MCP allowlist section in CONSTITUTION.md to focus on load-bearing boundaries.
Description check	✅ Passed	The description is well-structured with clear sections (What changes, Verification), explains the deduplication rationale, documents the verification steps, but lacks explicit response to the template's structured format (Change type, Validation run, etc.).
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch docs/const-mcp-allowlist

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[Copilot]

Pull request overview

Updates docs/CONSTITUTION.md to de-duplicate MCP safety-model details by keeping only the “load-bearing” MCP boundaries in the constitution and pointing readers to commands/mcp/README.md for the full model.

Changes:

• Shrinks the MCP allowlist section to focus on CDB allowlist authorization and stdio-only transport.
• Moves detailed MCP mechanics/tool/resource documentation references to commands/mcp/README.md.

[mobileskyfi]

Good catch — reworded. The flag is parsed (src/mcp/config.ts) but commands/mcp/README.md confirms it's reserved (no inline host+credential schema today), so the line now reads: "reserved for future inline-target flows — today no RouterOS-facing tool exposes an inline host+credential schema, so the CDB allowlist is the only active target source." No implied current bypass.