Refactor: Extract duplicate MCP session validation into requireSession() helper

[Claude]

Six MCP method wrappers (listTools, callTool, listResources, readResource, listPrompts, getPrompt) contained identical 3-line session nil checks, creating maintenance burden and risk of inconsistent error messages.

Changes

• Extract validation helper: Created requireSession() method to centralize session nil checking
• Update all callers: Replaced inline checks across 6 methods with helper call
• Add test coverage: Unit test validates helper behavior for nil sessions

Before/After

// Before: Duplicated in 6 methods
func (c *Connection) listTools() (*Response, error) {
	if c.session == nil {
		return nil, fmt.Errorf("SDK session not available for plain JSON-RPC transport")
	}
	// ...
}

// After: Single source of truth
func (c *Connection) requireSession() error {
	if c.session == nil {
		return fmt.Errorf("SDK session not available for plain JSON-RPC transport")
	}
	return nil
}

func (c *Connection) listTools() (*Response, error) {
	if err := c.requireSession(); err != nil {
		return nil, err
	}
	// ...
}

Reduces code by ~12 lines and ensures consistent error messaging across all SDK method wrappers.

Warning

Firewall rules blocked me from connecting to one or more addresses (expand for details)

I tried to connect to the following addresses, but was blocked by firewall rules:

• example.com
  • Triggering command: /tmp/go-build1651638344/b275/launcher.test /tmp/go-build1651638344/b275/launcher.test -test.testlogfile=/tmp/go-build1651638344/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true -c=4 -nolocalimports -importcfg /tmp/go-build1651638344/b235/importcfg -pack /home/REDACTED/go/pkg/mod/github.com/spf13/pflag@v1.0.9/bool.go /home/REDACTED/go/pkg/mod/github.com/spf13/pflag@v1.0.9/bool_func.go rev-�� go 8AG1CVhJp /home/REDACTED/wor-o wright" --viewpo/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/compile 5519/field .12/x64/git git (dns block)
  • Triggering command: /tmp/go-build4267259821/b275/launcher.test /tmp/go-build4267259821/b275/launcher.test -test.testlogfile=/tmp/go-build4267259821/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true 1638344/b190/_pkg_.a ache/go/1.25.7/x64/src/crypto/in-nolocalimports 1638344/b190=> -p l/ascii -lang=go1.25 /opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linu-I go_.�� 64/src/net Wvey/P0HIK0znqdopQQs2Wvey x_amd64/compile -I ions =0 x_amd64/compile (dns block)
  • Triggering command: /tmp/go-build4134285178/b275/launcher.test /tmp/go-build4134285178/b275/launcher.test -test.testlogfile=/tmp/go-build4134285178/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true se 1638344/b069/vet.cfg .cfg --gdwarf-5 --64 -o ache/go/1.25.7/x64/pkg/tool/linux_amd64/vet (dns block)
• invalid-host-that-does-not-exist-12345.com
  • Triggering command: /tmp/go-build1651638344/b260/config.test /tmp/go-build1651638344/b260/config.test -test.testlogfile=/tmp/go-build1651638344/b260/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true go ternal/fips140/a--64 64/pkg/tool/linu-o nner/.nvm credential.helpe-I /home/REDACTED/wor/opt/hostedtoolcache/go/1.25.7/x64/src/net 64/pkg/tool/linu-I rev-�� go HEAD x_amd64/vet list (dns block)
• nonexistent.local
  • Triggering command: /tmp/go-build1651638344/b275/launcher.test /tmp/go-build1651638344/b275/launcher.test -test.testlogfile=/tmp/go-build1651638344/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true -c=4 -nolocalimports -importcfg /tmp/go-build1651638344/b235/importcfg -pack /home/REDACTED/go/pkg/mod/github.com/spf13/pflag@v1.0.9/bool.go /home/REDACTED/go/pkg/mod/github.com/spf13/pflag@v1.0.9/bool_func.go rev-�� go 8AG1CVhJp /home/REDACTED/wor-o wright" --viewpo/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/compile 5519/field .12/x64/git git (dns block)
  • Triggering command: /tmp/go-build4267259821/b275/launcher.test /tmp/go-build4267259821/b275/launcher.test -test.testlogfile=/tmp/go-build4267259821/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true 1638344/b190/_pkg_.a ache/go/1.25.7/x64/src/crypto/in-nolocalimports 1638344/b190=> -p l/ascii -lang=go1.25 /opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linu-I go_.�� 64/src/net Wvey/P0HIK0znqdopQQs2Wvey x_amd64/compile -I ions =0 x_amd64/compile (dns block)
  • Triggering command: /tmp/go-build4134285178/b275/launcher.test /tmp/go-build4134285178/b275/launcher.test -test.testlogfile=/tmp/go-build4134285178/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true se 1638344/b069/vet.cfg .cfg --gdwarf-5 --64 -o ache/go/1.25.7/x64/pkg/tool/linux_amd64/vet (dns block)
• slow.example.com
  • Triggering command: /tmp/go-build1651638344/b275/launcher.test /tmp/go-build1651638344/b275/launcher.test -test.testlogfile=/tmp/go-build1651638344/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true -c=4 -nolocalimports -importcfg /tmp/go-build1651638344/b235/importcfg -pack /home/REDACTED/go/pkg/mod/github.com/spf13/pflag@v1.0.9/bool.go /home/REDACTED/go/pkg/mod/github.com/spf13/pflag@v1.0.9/bool_func.go rev-�� go 8AG1CVhJp /home/REDACTED/wor-o wright" --viewpo/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/compile 5519/field .12/x64/git git (dns block)
  • Triggering command: /tmp/go-build4267259821/b275/launcher.test /tmp/go-build4267259821/b275/launcher.test -test.testlogfile=/tmp/go-build4267259821/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true 1638344/b190/_pkg_.a ache/go/1.25.7/x64/src/crypto/in-nolocalimports 1638344/b190=> -p l/ascii -lang=go1.25 /opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linu-I go_.�� 64/src/net Wvey/P0HIK0znqdopQQs2Wvey x_amd64/compile -I ions =0 x_amd64/compile (dns block)
  • Triggering command: /tmp/go-build4134285178/b275/launcher.test /tmp/go-build4134285178/b275/launcher.test -test.testlogfile=/tmp/go-build4134285178/b275/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true se 1638344/b069/vet.cfg .cfg --gdwarf-5 --64 -o ache/go/1.25.7/x64/pkg/tool/linux_amd64/vet (dns block)
• this-host-does-not-exist-12345.com
  • Triggering command: /tmp/go-build1651638344/b284/mcp.test /tmp/go-build1651638344/b284/mcp.test -test.testlogfile=/tmp/go-build1651638344/b284/testlog.txt -test.paniconexit0 -test.timeout=10m0s -test.v=true in.so /lto-wrapper /usr/bin/base64 WebFetch,WebSear/opt/hostedtoolcache/go/1.25.7/x64/pkg/tool/linux_amd64/vet a20 rgo/bin/git base64 ortc�� 64/src/runtime/c-errorsas 3-Nd5vpBC ache/go/1.25.7/x-nilfunc --oneline -n /usr/bin/base64 04.o (dns block)

If you need me to access, download, or install something from one of these locations, you can either:

• Configure Actions setup steps to set up my environment, which run before the firewall is enabled
• Add the appropriate URLs or hosts to the custom allowlist in this repository's Copilot coding agent settings (admins only)

Original prompt

---

This section details on the original issue you should resolve

<issue_title>[duplicate-code] Duplicate Code Pattern: MCP Session Nil Validation Checks</issue_title>
<issue_description># 🔍 Duplicate Code Pattern: MCP Session Validation Checks

Part of duplicate code analysis: #970

Summary

The internal/mcp/connection.go file contains 6 identical session nil checks across different MCP method wrappers. Each method performs the exact same validation before executing its SDK call.

Duplication Details

Pattern: Repeated Session Nil Validation

• Severity: Medium
• Occurrences: 6 instances
• Locations:
  • internal/mcp/connection.go:
    • Line 821-823: listTools()
    • Line 833-835: callTool()
    • Line 867-869: listResources()
    • Line 879-881: readResource()
    • Line 901-903: listPrompts()
    • Line 913-915: getPrompt()

Code Sample:

func (c *Connection) listTools() (*Response, error) {
	if c.session == nil {
		return nil, fmt.Errorf("SDK session not available for plain JSON-RPC transport")
	}
	result, err := c.session.ListTools(c.ctx, &sdk.ListToolsParams{})
	if err != nil {
		return nil, err
	}
	return marshalToResponse(result)
}

func (c *Connection) listResources() (*Response, error) {
	if c.session == nil {
		return nil, fmt.Errorf("SDK session not available for plain JSON-RPC transport")
	}
	result, err := c.session.ListResources(c.ctx, &sdk.ListResourcesParams{})
	if err != nil {
		return nil, err
	}
	return marshalToResponse(result)
}
// ... 4 more methods with identical session nil check

Impact Analysis

• Maintainability: Medium Impact - Error message changes require updating 6 locations
• Bug Risk: Medium - Risk of inconsistent error messages if updates are missed
• Code Bloat: ~18 lines of duplicate validation code (6 checks × 3 lines each)
• Consistency: Error messages could diverge over time if not carefully maintained

Refactoring Recommendations

1. Extract Session Validation Helper (Recommended)

Create a helper method to centralize the session validation:

// In connection.go
func (c *Connection) requireSession() error {
	if c.session == nil {
		return fmt.Errorf("SDK session not available for plain JSON-RPC transport")
	}
	return nil
}

// Updated methods use the helper:
func (c *Connection) listTools() (*Response, error) {
	if err := c.requireSession(); err != nil {
		return nil, err
	}
	result, err := c.session.ListTools(c.ctx, &sdk.ListToolsParams{})
	if err != nil {
		return nil, err
	}
	return marshalToResponse(result)
}

func (c *Connection) listResources() (*Response, error) {
	if err := c.requireSession(); err != nil {
		return nil, err
	}
	result, err := c.session.ListResources(c.ctx, &sdk.ListResourcesParams{})
	if err != nil {
		return nil, err
	}
	return marshalToResponse(result)
}
// ... other methods follow same pattern

• Location: internal/mcp/connection.go (add requireSession helper method)
• Estimated Effort: 1 hour
• Benefits:
  • Single point of truth for session validation
  • Consistent error messages across all methods
  • Easier to enhance validation logic (e.g., add logging, metrics)
  • Reduces code by ~12 lines

2. Alternative: Method Decorator Pattern (More Complex)

For a more sophisticated approach, consider a decorator that wraps SDK calls:

type sdkCall func() (interface{}, error)

func (c *Connection) withSession(call sdkCall) (*Response, error) {
	if c.session == nil {
		return nil, fmt.Errorf("SDK session not available for plain JSON-RPC transport")
	}
	result, err := call()
	if err != nil {
		return nil, err
	}
	return marshalToResponse(result)
}

// Usage:
func (c *Connection) listTools() (*Response, error) {
	return c.withSession(func() (interface{}, error) {
		return c.session.ListTools(c.ctx, &sdk.ListToolsParams{})
	})
}

• Estimated Effort: 2-3 hours
• Benefits: More DRY, but adds complexity with closures

Implementation Checklist

• Review duplication findings
• Create requireSession() helper method in Connection struct
• Update listTools() to use helper
• Update callTool() to use helper
• Update listResources() to use helper
• Update readResource() to use helper
• Update listPrompts() to use helper
• Update getPrompt() to use helper
• Run make test-all to verify no functionality broken
• Run make lint to ensure code quality

Parent Issue

See parent analysis report: #970
Related to #970

AI generated by Duplicate Code Detector

• expires on Feb 23, 2026, 10:32 AM UTC

• Fixes [duplicate-code] Duplicate Code Pattern: MCP Session Nil Validation Checks #972

[Copilot]

Pull request overview

This PR refactors duplicate session validation logic in the MCP connection code by extracting a reusable requireSession() helper method. The change eliminates 18 lines of duplicate validation code across 6 SDK method wrappers (listTools, callTool, listResources, readResource, listPrompts, getPrompt), replacing them with calls to a centralized helper. This follows the established pattern in the codebase of using helper functions to reduce code duplication (similar to marshalToResponse and isHTTPConnectionError).

Changes:

• Introduced requireSession() helper method to centralize session nil checking
• Updated 6 MCP method wrappers to use the new helper instead of inline validation
• Added unit test for the helper method (though with an implementation issue)

Reviewed changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 1 comment.

File	Description
internal/mcp/connection.go	Added requireSession() helper method and updated 6 SDK method wrappers to use it for session validation
internal/mcp/connection_test.go	Added unit test for requireSession() helper (contains a bug in the positive test case)

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The test logic is broken for the "session is available" test case. Line 788 unconditionally sets conn.session to nil, even when tt.session is non-nil. This means the positive test case (where session should be available) always gets skipped.

To fix this, the logic should be inverted: only set conn.session to nil when tt.session is nil. For the non-nil case, you could use a mock pointer value like &sdk.ClientSession{} or accept that this positive case requires integration testing and remove it from the unit test.