MCP: Principles and Practice

Transcript

1. MCP: Principles and Practices 🇮🇹 Python Milano (2026/03/04) 👤 Luca

   Baggi 💼 AI Engineer @ xtream
2. None

3. Mandatory XKCD Standards Reference *You are absolutely right! *

4. 📍Outline ✔ Memes 🎯 Takeaways 📏 From tool calls to

   MCP 🔬 What’s inside an MCP? 🐘 Contextual problems 🤝 Enter: skills, code mode, etc 🎬 So what?

5. 🖐 But f irst, some well-deserved aknowledgments Check out the

   original talk and code from Fabio, Gabriele and Lele

6. 🎯 Takeaways • MCP is more than a REST API:

   it has resources, tools and prompts. • It’s designed for agents, and it should be built for agents - i.e., you can’t just port your REST API into an MCP and call it a day. • MCPs were historically context-hungry: we’re working on it (code execution, progressive discovery, skills). • MCPs still have a place in enterprise environments.

7. 📏 From tool calls to MCP In the end, it’s

   all (JSON) strings • Models only emit text, so how can they “use tools”? • Simply put, we train an LLM to generate valid JSON when the user prompts it with some “tool de f inition”. • Then we just add the function call output back into the LLM and have it synthesise the f inal answer.

8. 📏 From tool calls to MCP In the end, it’s

   all (JSON) strings

9. ⚠ Dangerous live coding ⚠

10. 📏 From tool calls to MCP What if we create

    a class…? • This three-steps process is quite easy to abstract in a class. • Pair this with reasoning models, that can interleave tool calls in their reasoning, for example to gather context, and here you have a powerful agent. • There, you just (re) invented an agent.

11. ⚠ Dangerous live coding ⚠

12. 🔬 What’s inside an MCP? A high-level overview

13. 🔬 What’s inside an MCP? An analogy with LSP

14. 🔬 What’s inside an MCP? An example work f low

15. 🔬 What’s inside an MCP? An Overview

16. 🔬 What’s inside an MCP? Server-side

17. 🔬 What’s inside an MCP? Server-side: Tools • "Tools are

    schema-de f ined interfaces that LLMs can invoke. MCP uses JSON Schema for validation. […] Tools may require user consent prior to execution, helping to ensure users maintain control over actions taken by a model.”

18. 🔬 What’s inside an MCP? Server-side: Resources • "Resources provide

    structured access to information that the AI application can retrieve and provide to models as context.”

19. 🔬 What’s inside an MCP? Server-side: Prompts • Prompts provide

    reusable templates. • Prompts are user-controlled, requiring explicit invocation.

20. 🔬 What’s inside an MCP? Client-side

21. 🔬 What’s inside an MCP? Client-side: Elicitation

22. 🔬 What’s inside an MCP? Client-side: Roots • Roots de

    f ine f ilesystem boundaries for server operations, allowing clients to specify which directories servers should focus on.

23. 🔬 What’s inside an MCP? Client-side: Sampling • “Sampling enables

    servers to perform AI-dependent tasks without directly integrating with or paying for AI models. Instead, servers can request that the client—which already has AI model access—handle these tasks on their behalf. […] Because sampling requests occur within the context of other operations—like a tool analyzing data”

24. 🔬 What’s inside an MCP? Client-side: Sampling

25. ⚠ Dangerous live coding ⚠

26. 🐘 Contextual problems

27. 🐘 Contextual problems

28. 🤝 Enter: skills, code mode, etc

29. 🤝 Enter: skills, code mode, etc

30. 🤝 Enter: skills, code mode, etc

31. 🎬 So what?

32. 👤 Luca Baggi 💼 AI Engineer @ xtream