The latest articles on Forem by Manjunath G (@manjunathgovindaraju). https://forem.com/manjunathgovindaraju https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3870857%2F2488e47a-f641-454b-878c-9e0fcfb64a12.jpg https://forem.com/manjunathgovindaraju en Manjunath G Fri, 10 Apr 2026 21:48:37 +0000 https://forem.com/manjunathgovindaraju/building-a-reliable-langgraph-workflow-plan-execute-validate-pev-automated-retries-and-mcp-1pik https://forem.com/manjunathgovindaraju/building-a-reliable-langgraph-workflow-plan-execute-validate-pev-automated-retries-and-mcp-1pik <p>Most LangGraph agent examples stop at "hello world." A basic planner, an executor that calls a search tool, and a printed final result. That is fine for a demo, but the moment you try to ship an autonomous agent in production, you immediately run into the same four problems:</p> <ol> <li>How do I prevent an agent from silently hallucinating missing details between steps?</li> <li>How do I build a self-correcting loop that catches bad tool outputs before they poison the final answer?</li> <li>How do I optimize costs so I'm not using expensive reasoning models for simple bookkeeping?</li> <li>How do I safely integrate this orchestration layer with enterprise data and capabilities?</li> </ol> <p>I spent time solving all of these in a real production environment—a regulated life sciences platform automating scientific workflows over tens of millions of research records—and packaged the result as a template anyone can fork: <strong><a href="https://github.com/ManjunathGovindaraju/langgraph-plan-execute-validate" rel="noopener noreferrer">langgraph-plan-execute-validate</a></strong>.</p> <p>This post explains the decisions behind each piece.</p> <h2> What is PEV and Why Does it Need a Production Template? </h2> <p>The standard LangGraph Plan-and-Execute pattern has two nodes: Plan and Execute. The gap between that two-node quickstart and a deployable, reliable service is significant.</p> <p>In production, execution quality is not binary. An agent can technically complete a step while producing output that is incomplete, hallucinated, or missing a critical detail. Without a quality gate, those failures propagate silently to the next step.</p> <p>You need:</p> <ul> <li>A structured <strong>Validator</strong> to score outputs</li> <li>A deterministic <strong>Router</strong> to handle retries and replanning</li> <li>An <strong>Audit Trail</strong> to debug what actually happened</li> <li>A <strong>cost-effective multi-model strategy</strong> </li> </ul> <p>The template gives you all of this wired together and working out of the box.</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Feature</th> <th>Standard plan-execute</th> <th><strong>This template</strong></th> </tr> </thead> <tbody> <tr> <td>Planning node</td> <td>✓</td> <td>✓</td> </tr> <tr> <td>Execution node with tool calls</td> <td>✓</td> <td>✓</td> </tr> <tr> <td>Validation + confidence score</td> <td>✗</td> <td><strong>✓ 0.0 – 1.0</strong></td> </tr> <tr> <td>Per-step retry with feedback injection</td> <td>✗</td> <td><strong>✓ configurable</strong></td> </tr> <tr> <td>Automatic replanning on exhausted retries</td> <td>✗</td> <td><strong>✓ with failure context</strong></td> </tr> <tr> <td>Multi-model cost optimisation</td> <td>✗</td> <td><strong>✓ haiku/sonnet split</strong></td> </tr> <tr> <td>Full audit trail (every attempt)</td> <td>✗</td> <td><strong>✓ operator.add accumulator</strong></td> </tr> <tr> <td>Structured outputs (no string parsing)</td> <td>✗</td> <td><strong>✓ Pydantic models</strong></td> </tr> </tbody> </table></div> <h2> The Architecture </h2> <p>The graph adds two nodes to the standard pattern: a <strong>Validator</strong> that scores every step output, and a <strong>Router</strong> (pure Python, no LLM) that decides what happens next.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>START │ planner ◄──────────────────────────────────────── (replan) │ executor ◄─────────────────────────────── (retry) │ validator │ router ─── score ≥ threshold, more steps ──► executor (next step) ─── score ≥ threshold, last step ──► END (complete) ─── score &lt; threshold, retry left ──► executor (retry) ─── score &lt; threshold, retry gone ──► planner (replan) ─── all limits exhausted ──► END (failed) </code></pre> </div> <h3> System Overview </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fti6zhlljkm0jf2u60b4j.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fti6zhlljkm0jf2u60b4j.png" alt="System Overview diagram showing Caller, PEV Graph nodes (Planner/Executor/Validator/Router), and Tools"></a></p> <h3> State Machine </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8dzh1lycle3k690xvjt0.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F8dzh1lycle3k690xvjt0.png" alt="State machine diagram showing transitions between Planning, Executing, Validating, Complete, and Failed states"></a></p> <h2> Problem 1: Silent Failures in 2-Node Workflows </h2> <p>The naive approach is passing the output of the Executor directly to the next step. If Step 1 returns "I couldn't find the data," the Executor often just moves to Step 2 anyway, hallucinating the missing context.</p> <p>The template solves this by introducing a third node: a structured Validator that scores every step output (0.0–1.0) against the original intent.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">cfg</span> <span class="o">=</span> <span class="nc">PEVConfig</span><span class="p">(</span> <span class="c1"># Quality gate </span> <span class="n">pass_threshold</span> <span class="o">=</span> <span class="mf">0.80</span><span class="p">,</span> <span class="c1"># score &gt;= this -&gt; step passes </span> <span class="c1"># Loop guards </span> <span class="n">max_retries</span> <span class="o">=</span> <span class="mi">2</span><span class="p">,</span> <span class="c1"># retries per step before escalating to replan </span> <span class="n">max_replans</span> <span class="o">=</span> <span class="mi">1</span><span class="p">,</span> <span class="c1"># full replanning cycles before marking failed </span><span class="p">)</span> </code></pre> </div> <p>If the score is below the <code>pass_threshold</code>, the system doesn't move forward—it recovers. The validator produces a structured output with both a numeric score and a one-sentence explanation, which gets injected into the next retry's prompt.</p> <h2> Problem 2: Automated Retries and Replanning </h2> <p>When an execution fails validation, throwing an exception or failing the entire run is brittle. The LLM needs a chance to correct itself.</p> <p>The template uses a pure Python <code>Router</code> node that implements deterministic recovery logic. When a step scores below the threshold, the Router injects the Validator's feedback directly into the next prompt and triggers a retry:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># The Router decides how to recover — no LLM involved </span><span class="k">if</span> <span class="n">score</span> <span class="o">&gt;=</span> <span class="n">cfg</span><span class="p">.</span><span class="n">pass_threshold</span><span class="p">:</span> <span class="n">next_idx</span> <span class="o">=</span> <span class="n">idx</span> <span class="o">+</span> <span class="mi">1</span> <span class="k">if</span> <span class="n">next_idx</span> <span class="o">&gt;=</span> <span class="nf">len</span><span class="p">(</span><span class="n">plan</span><span class="p">):</span> <span class="k">return</span> <span class="p">{</span><span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">complete</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">_next</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">complete</span><span class="sh">"</span><span class="p">}</span> <span class="k">return</span> <span class="p">{</span> <span class="sh">"</span><span class="s">current_step_idx</span><span class="sh">"</span><span class="p">:</span> <span class="n">next_idx</span><span class="p">,</span> <span class="sh">"</span><span class="s">retry_count</span><span class="sh">"</span><span class="p">:</span> <span class="mi">0</span><span class="p">,</span> <span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">executing</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">_next</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">execute</span><span class="sh">"</span><span class="p">,</span> <span class="p">}</span> <span class="k">if</span> <span class="n">retry_count</span> <span class="o">&lt;</span> <span class="n">cfg</span><span class="p">.</span><span class="n">max_retries</span><span class="p">:</span> <span class="k">return</span> <span class="p">{</span> <span class="sh">"</span><span class="s">retry_count</span><span class="sh">"</span><span class="p">:</span> <span class="n">retry_count</span> <span class="o">+</span> <span class="mi">1</span><span class="p">,</span> <span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">executing</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">_next</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">retry</span><span class="sh">"</span><span class="p">,</span> <span class="p">}</span> <span class="k">if</span> <span class="n">replan_count</span> <span class="o">&lt;</span> <span class="n">cfg</span><span class="p">.</span><span class="n">max_replans</span><span class="p">:</span> <span class="k">return</span> <span class="p">{</span><span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">planning</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">_next</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">replan</span><span class="sh">"</span><span class="p">}</span> <span class="c1"># All recovery options exhausted </span><span class="k">return</span> <span class="p">{</span> <span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">failed</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">error</span><span class="sh">"</span><span class="p">:</span> <span class="sa">f</span><span class="sh">"</span><span class="s">Step </span><span class="sh">'</span><span class="si">{</span><span class="n">plan</span><span class="p">[</span><span class="n">idx</span><span class="p">]</span><span class="si">}</span><span class="sh">'</span><span class="s"> failed after </span><span class="si">{</span><span class="n">retry_count</span><span class="si">}</span><span class="s"> retries and </span><span class="si">{</span><span class="n">replan_count</span><span class="si">}</span><span class="s"> replans.</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">_next</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">failed</span><span class="sh">"</span><span class="p">,</span> <span class="p">}</span> </code></pre> </div> <blockquote> <p><strong>Design note:</strong> LangGraph conditional edges are read-only—they can't update state. The Router is a real <em>node</em> so it can both update <code>current_step_idx</code> / <code>retry_count</code> AND write the routing decision to <code>state["_next"]</code>. A single <code>_dispatch</code> conditional edge then reads that field to pick the next node.</p> </blockquote> <p>If <code>max_retries</code> are exhausted, the Router escalates to the Planner, regenerating the entire remaining plan with the failure context. Nothing moves forward until it passes the quality gate.</p> <h3> Request Lifecycle </h3> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fz9n53yxqzygrjispi124.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fz9n53yxqzygrjispi124.png" alt="Sequence diagram showing message flow between Caller, Planner, Executor, Tools, Validator, and Router across a multi-step task"></a></p> <h2> Problem 3: Multi-Model Cost Optimization </h2> <p>Routing every trivial check and structured output through your most capable (and expensive) model destroys the ROI of autonomous agents.</p> <p>The template uses a 3-model routing strategy initialized via the configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">cfg</span> <span class="o">=</span> <span class="nc">PEVConfig</span><span class="p">(</span> <span class="c1"># Cheap model for structured JSON planning </span> <span class="n">planner_model</span> <span class="o">=</span> <span class="sh">"</span><span class="s">claude-haiku-4-5-20251001</span><span class="sh">"</span><span class="p">,</span> <span class="c1"># Capable model for complex tool calls + reasoning </span> <span class="n">executor_model</span> <span class="o">=</span> <span class="sh">"</span><span class="s">claude-sonnet-4-6</span><span class="sh">"</span><span class="p">,</span> <span class="c1"># Cheap model for scoring + generating one sentence of feedback </span> <span class="n">validator_model</span> <span class="o">=</span> <span class="sh">"</span><span class="s">claude-haiku-4-5-20251001</span><span class="sh">"</span><span class="p">,</span> <span class="p">)</span> </code></pre> </div> <p>The planner and validator only produce structured JSON—a cheaper model handles this perfectly. The executor is where reasoning and tool use happen, so we invest in the capable model there.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Cheap (claude-haiku ~$0.25 / 1M tokens) ├── Planner — JSON output only └── Validator — score + one sentence Capable (claude-sonnet ~$3 / 1M tokens) └── Executor — tool calls + reasoning </code></pre> </div> <p>This design cuts per-run costs by ~60–70% while maintaining high final quality. A typical 3-step task costs ~$0.01 vs ~$0.027 if you route everything through sonnet.</p> <h2> Problem 4: MCP Integration for Enterprise Capabilities </h2> <p>Reliability doesn't stop at orchestration; it extends to your capabilities. Standard tool calling often means hardcoding database credentials or API integrations directly into the agent code.</p> <p>The template is designed to pair with the <a href="https://github.com/ManjunathGovindaraju/fastmcp-production-template" rel="noopener noreferrer">FastMCP Production Template</a>. By separating the Orchestrator (PEV) from the Tools (MCP), you can expose enterprise databases and internal APIs securely via a standalone FastMCP server, and pull them into the PEV loop with just a few lines:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">from</span> <span class="n">langchain_mcp_adapters.tools</span> <span class="kn">import</span> <span class="n">load_mcp_tools</span> <span class="kn">from</span> <span class="n">pev</span> <span class="kn">import</span> <span class="n">create_pev_graph</span><span class="p">,</span> <span class="n">PEVConfig</span> <span class="c1"># Connect to an MCP server (e.g., built with fastmcp-production-template) </span><span class="n">mcp_tools</span> <span class="o">=</span> <span class="nf">load_mcp_tools</span><span class="p">(</span><span class="sh">"</span><span class="s">uv</span><span class="sh">"</span><span class="p">,</span> <span class="p">[</span><span class="sh">"</span><span class="s">run</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">mcp_server.py</span><span class="sh">"</span><span class="p">])</span> <span class="c1"># Orchestrate with PEV's quality gates </span><span class="n">graph</span> <span class="o">=</span> <span class="nf">create_pev_graph</span><span class="p">(</span><span class="nc">PEVConfig</span><span class="p">(</span><span class="n">tools</span><span class="o">=</span><span class="n">mcp_tools</span><span class="p">,</span> <span class="n">pass_threshold</span><span class="o">=</span><span class="mf">0.85</span><span class="p">))</span> </code></pre> </div> <p>This is the <strong>Full-Stack AI</strong> architecture: PEV acts as the <strong>Brain</strong> (reasoning, planning, validation) and MCP acts as the <strong>Hands</strong> (standardized, secure access to enterprise data). You can update tools and data integrations without redeploying your core agent logic.</p> <h2> The Audit Trail: Observability at the Step Level </h2> <p>When something goes wrong with an AI-driven workflow, you need to know exactly where the agent struggled and how many attempts it took.</p> <p>The template preserves every attempt in <code>step_results</code> via <code>operator.add</code>. Nothing is ever overwritten:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">result</span><span class="p">[</span><span class="sh">"</span><span class="s">step_results</span><span class="sh">"</span><span class="p">]</span> <span class="c1"># [ # StepResult(step="Search for X", score=0.55, attempts=1, feedback="Missing Y — result was too generic"), # StepResult(step="Search for X", score=0.88, attempts=2, feedback="Good. All required details present."), # StepResult(step="Summarise X", score=0.92, attempts=1, feedback="Complete and well-structured."), # ] </span></code></pre> </div> <p>This is the operational signal that matters. It proves the system is catching failures and self-correcting before returning data to the user. You can see exactly where the agent struggled, what feedback it received, and how many attempts each step took.</p> <p>The state is defined with <code>Annotated[list[StepResult], operator.add]</code> so LangGraph handles the accumulation automatically:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">class</span> <span class="nc">PEVState</span><span class="p">(</span><span class="n">TypedDict</span><span class="p">):</span> <span class="c1"># operator.add means append-only — nothing is ever overwritten </span> <span class="n">step_results</span><span class="p">:</span> <span class="n">Annotated</span><span class="p">[</span><span class="nb">list</span><span class="p">[</span><span class="n">StepResult</span><span class="p">],</span> <span class="n">operator</span><span class="p">.</span><span class="n">add</span><span class="p">]</span> <span class="bp">...</span> </code></pre> </div> <h2> Getting Started </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://github.com/ManjunathGovindaraju/langgraph-plan-execute-validate.git <span class="nb">cd </span>langgraph-plan-execute-validate uv <span class="nb">sync cp</span> .env.example .env <span class="c"># add your ANTHROPIC_API_KEY</span> </code></pre> </div> <p>Five lines to run your first agent:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">from</span> <span class="n">pev</span> <span class="kn">import</span> <span class="n">create_pev_graph</span><span class="p">,</span> <span class="n">initial_state</span><span class="p">,</span> <span class="n">PEVConfig</span> <span class="n">graph</span> <span class="o">=</span> <span class="nf">create_pev_graph</span><span class="p">(</span><span class="nc">PEVConfig</span><span class="p">(</span><span class="n">pass_threshold</span><span class="o">=</span><span class="mf">0.85</span><span class="p">))</span> <span class="n">result</span> <span class="o">=</span> <span class="n">graph</span><span class="p">.</span><span class="nf">invoke</span><span class="p">(</span><span class="nf">initial_state</span><span class="p">(</span><span class="sh">"</span><span class="s">Research the top 3 vector databases</span><span class="sh">"</span><span class="p">))</span> <span class="nf">print</span><span class="p">(</span><span class="n">result</span><span class="p">[</span><span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">])</span> <span class="c1"># "complete" </span><span class="nf">print</span><span class="p">(</span><span class="n">result</span><span class="p">[</span><span class="sh">"</span><span class="s">step_results</span><span class="sh">"</span><span class="p">])</span> <span class="c1"># scored audit trail for every step </span></code></pre> </div> <p>Run the included examples:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>python examples/research_agent.py <span class="c"># web search + validate</span> python examples/code_review_agent.py <span class="c"># strict threshold, shows retry flow</span> python examples/data_analysis_agent.py <span class="c"># no tools, LLM reasoning only</span> </code></pre> </div> <p>The template also includes a <code>benchmark_reliability.py</code> script that uses a "Flaky Tool" to prove the Validator catches generic results 100% of the time, forcing a retry that retrieves high-fidelity data:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>make example-benchmark </code></pre> </div> <h2> Full Configuration Reference </h2> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">from</span> <span class="n">pev</span> <span class="kn">import</span> <span class="n">PEVConfig</span> <span class="n">cfg</span> <span class="o">=</span> <span class="nc">PEVConfig</span><span class="p">(</span> <span class="c1"># Model routing </span> <span class="n">planner_model</span> <span class="o">=</span> <span class="sh">"</span><span class="s">claude-haiku-4-5-20251001</span><span class="sh">"</span><span class="p">,</span> <span class="n">executor_model</span> <span class="o">=</span> <span class="sh">"</span><span class="s">claude-sonnet-4-6</span><span class="sh">"</span><span class="p">,</span> <span class="n">validator_model</span> <span class="o">=</span> <span class="sh">"</span><span class="s">claude-haiku-4-5-20251001</span><span class="sh">"</span><span class="p">,</span> <span class="c1"># Quality gate </span> <span class="n">pass_threshold</span> <span class="o">=</span> <span class="mf">0.80</span><span class="p">,</span> <span class="c1"># Loop guards </span> <span class="n">max_retries</span> <span class="o">=</span> <span class="mi">2</span><span class="p">,</span> <span class="n">max_replans</span> <span class="o">=</span> <span class="mi">1</span><span class="p">,</span> <span class="c1"># Tools (planner and validator never see these) </span> <span class="n">tools</span> <span class="o">=</span> <span class="p">[</span><span class="nc">TavilySearchResults</span><span class="p">(</span><span class="n">max_results</span><span class="o">=</span><span class="mi">3</span><span class="p">)],</span> <span class="p">)</span> </code></pre> </div> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Parameter</th> <th>Default</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td><code>planner_model</code></td> <td><code>claude-haiku-4-5-20251001</code></td> <td>Structured JSON output only</td> </tr> <tr> <td><code>executor_model</code></td> <td><code>claude-sonnet-4-6</code></td> <td>Tool calls + reasoning</td> </tr> <tr> <td><code>validator_model</code></td> <td><code>claude-haiku-4-5-20251001</code></td> <td>Scoring only</td> </tr> <tr> <td><code>pass_threshold</code></td> <td><code>0.80</code></td> <td>Minimum score [0.0–1.0] for a step to pass</td> </tr> <tr> <td><code>max_retries</code></td> <td><code>2</code></td> <td>Retries per step before triggering replan</td> </tr> <tr> <td><code>max_replans</code></td> <td><code>1</code></td> <td>Full replanning cycles before marking failed</td> </tr> <tr> <td><code>tools</code></td> <td><code>[]</code></td> <td>LangChain tools available to the executor</td> </tr> </tbody> </table></div> <h2> Project Structure </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>langgraph-plan-execute-validate/ ├── src/pev/ │ ├── __init__.py # Public API: create_pev_graph, initial_state, PEVConfig │ ├── graph.py # StateGraph wiring, router node, _dispatch edge │ ├── state.py # PEVState TypedDict, StepResult, Status │ ├── config.py # PEVConfig dataclass with validation │ ├── prompts.py # All prompt templates (one place, easy to tune) │ └── nodes/ │ ├── planner.py # Structured output, replan-aware │ ├── executor.py # Tool-call loop, feedback injection on retry │ └── validator.py # Confidence scoring, audit trail append ├── examples/ │ ├── research_agent.py │ ├── code_review_agent.py │ ├── data_analysis_agent.py │ └── mcp_agent.py ├── tests/ │ ├── test_planner.py │ ├── test_executor.py │ ├── test_validator.py │ ├── test_retry_replan.py # Router decision tree — 12 routing scenarios │ └── test_graph.py └── docs/ └── architecture.md # Full architecture with Mermaid diagrams </code></pre> </div> <h2> Testing </h2> <p>The test suite is designed to run without API calls in CI:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Unit tests — no API calls, runs in ~5 seconds</span> uv run pytest tests/ <span class="nt">-m</span> <span class="s2">"not slow"</span> <span class="nt">-v</span> <span class="c"># Integration tests — requires ANTHROPIC_API_KEY</span> uv run pytest tests/ <span class="nt">-m</span> slow <span class="nt">-v</span> </code></pre> </div> <p>The router decision tree is the most critical test target—<code>test_retry_replan.py</code> covers all 12 routing branches:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Test file</th> <th>What it covers</th> </tr> </thead> <tbody> <tr> <td><code>test_planner.py</code></td> <td>First-plan vs replan, state resets, step injection</td> </tr> <tr> <td><code>test_executor.py</code></td> <td>Context injection, retry feedback, tool-call loop</td> </tr> <tr> <td><code>test_validator.py</code></td> <td>Score/feedback writing, score clamping, audit trail</td> </tr> <tr> <td><code>test_retry_replan.py</code></td> <td>Every router branch — 12 routing scenarios</td> </tr> <tr> <td><code>test_graph.py</code></td> <td>Config validation, graph compilation, <code>initial_state</code> </td> </tr> </tbody> </table></div> <h2> What This Is Not </h2> <p>This template is opinionated about the things that are always true in production agent workflows: quality gates, retry determinism, audit trails, and cost optimization. It does not make choices about your domain logic or the specific tools you expose.</p> <p>Fork it, define your domain-specific tools (or load them via MCP), tune the validator prompts in <code>prompts.py</code> for your use case, and you have a production-grade orchestration engine without building the reliability layer from scratch.</p> <p><strong><a href="https://github.com/ManjunathGovindaraju/langgraph-plan-execute-validate" rel="noopener noreferrer">github.com/ManjunathGovindaraju/langgraph-plan-execute-validate</a></strong></p> <p>If you found this useful, the companion post on the MCP side of this architecture is here: <strong><a href="https://dev.to/manjunathgovindaraju/building-a-production-ready-mcp-server-async-postgresql-opentelemetry-and-kubernetes-in-one-37co">Building a Production-Ready MCP Server: Async PostgreSQL, OpenTelemetry, and Kubernetes in One Template</a></strong></p> langgraph aiagents python mcp Manjunath G Fri, 10 Apr 2026 04:01:50 +0000 https://forem.com/manjunathgovindaraju/building-a-production-ready-mcp-server-async-postgresql-opentelemetry-and-kubernetes-in-one-37co https://forem.com/manjunathgovindaraju/building-a-production-ready-mcp-server-async-postgresql-opentelemetry-and-kubernetes-in-one-37co <blockquote> <p><strong>GitHub:</strong> <a href="https://github.com/ManjunathGovindaraju/fastmcp-production-template" rel="noopener noreferrer">fastmcp-production-template</a> — fork, rename the tools, ship.</p> </blockquote> <p>Over the past year I built and deployed <strong>20+ MCP servers in production</strong> inside a regulated life sciences environment — powering AI agents that search 57M+ research records, automate scientific workflows, and surface real-time data to LLMs via 150+ registered tools.</p> <p>Every new server started the same way: copy the FastMCP quickstart, then spend days re-solving the same four problems:</p> <ul> <li>Async database connections that deadlock under concurrent agent calls</li> <li>No guardrails against prompt injection via unauthorized tool invocation</li> <li>Zero observability — metrics defined but never actually recorded</li> <li>Kubernetes deployments cobbled together from unrelated examples</li> </ul> <p>After the third server, I extracted the patterns that actually held up in production and built this template. This is not a toy demo. Fork it, rename the tools to match your domain, and ship.</p> <h2> What Is MCP and Why Does It Need a Production Template? </h2> <p>The Model Context Protocol (MCP) is an open standard that lets AI agents call external tools — databases, APIs, internal services — via a structured JSON-RPC interface. FastMCP is the Python framework that implements it.</p> <p>Most MCP examples stop at "it works on localhost." The moment you move to production you hit the same set of problems. This template solves all of them.</p> <h2> Problem 1: Async PostgreSQL Connection Pooling </h2> <p>Under concurrent agent load, naive database connections either exhaust the pool or serialize requests through a single connection. The fix is a bounded <code>asyncpg</code> pool initialized once at server startup and shared across all tool calls.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="nd">@asynccontextmanager</span> <span class="k">async</span> <span class="k">def</span> <span class="nf">lifespan</span><span class="p">(</span><span class="n">server</span><span class="p">:</span> <span class="n">FastMCP</span><span class="p">):</span> <span class="k">await</span> <span class="n">db_pool</span><span class="p">.</span><span class="nf">initialize</span><span class="p">()</span> <span class="c1"># creates the asyncpg pool </span> <span class="nf">set_pool</span><span class="p">(</span><span class="n">db_pool</span><span class="p">)</span> <span class="c1"># exposes it to tools via module-level singleton </span> <span class="k">yield</span> <span class="k">await</span> <span class="n">db_pool</span><span class="p">.</span><span class="nf">close</span><span class="p">()</span> <span class="c1"># graceful drain on shutdown </span></code></pre> </div> <p>The pool is exposed via a module-level singleton (mirroring the pattern in <code>db/pool.py</code>) so tool functions never need to thread connection state through function arguments.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">class</span> <span class="nc">DatabasePool</span><span class="p">:</span> <span class="k">async</span> <span class="k">def</span> <span class="nf">fetch</span><span class="p">(</span><span class="n">self</span><span class="p">,</span> <span class="n">query</span><span class="p">:</span> <span class="nb">str</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">list</span><span class="p">[</span><span class="nb">dict</span><span class="p">]:</span> <span class="k">async</span> <span class="k">with</span> <span class="n">self</span><span class="p">.</span><span class="nf">acquire</span><span class="p">()</span> <span class="k">as</span> <span class="n">conn</span><span class="p">:</span> <span class="n">rows</span> <span class="o">=</span> <span class="k">await</span> <span class="n">conn</span><span class="p">.</span><span class="nf">fetch</span><span class="p">(</span><span class="n">query</span><span class="p">,</span> <span class="o">*</span><span class="n">args</span><span class="p">)</span> <span class="k">return</span> <span class="p">[</span><span class="nf">dict</span><span class="p">(</span><span class="n">row</span><span class="p">)</span> <span class="k">for</span> <span class="n">row</span> <span class="ow">in</span> <span class="n">rows</span><span class="p">]</span> </code></pre> </div> <p>For paginated search tools, <code>asyncio.gather</code> runs the data fetch and count query in parallel — cutting round-trip time roughly in half:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">results</span><span class="p">,</span> <span class="n">total</span> <span class="o">=</span> <span class="k">await</span> <span class="n">asyncio</span><span class="p">.</span><span class="nf">gather</span><span class="p">(</span> <span class="n">db</span><span class="p">.</span><span class="nf">fetch</span><span class="p">(</span><span class="n">sql</span><span class="p">,</span> <span class="o">*</span><span class="n">params</span><span class="p">),</span> <span class="n">db</span><span class="p">.</span><span class="nf">fetchval</span><span class="p">(</span><span class="n">count_sql</span><span class="p">,</span> <span class="o">*</span><span class="n">count_params</span><span class="p">),</span> <span class="p">)</span> </code></pre> </div> <p>Pool configuration (<code>DB_POOL_MIN=5</code>, <code>DB_POOL_MAX=20</code>) comes from environment variables via Pydantic Settings. The min-5 floor means warm connections are always available; the max-20 ceiling prevents runaway connection exhaustion under burst load.</p> <h2> Problem 2: Prompt Injection via Tool Invocation </h2> <p>A malicious prompt can ask an LLM to call internal debug tools, admin endpoints, or anything the MCP server exposes. The fix is an explicit allowlist — only tools on the list can be invoked.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="c1"># config/allowlist.yaml</span> <span class="na">allowed_tools</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">search_records</span> <span class="pi">-</span> <span class="s">get_record_detail</span> <span class="pi">-</span> <span class="s">get_statistics</span> <span class="c1"># get_pool_status intentionally omitted — health is always reachable</span> </code></pre> </div> <p>The list is loaded once at startup and enforced via a decorator:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">def</span> <span class="nf">require_allowlist</span><span class="p">(</span><span class="n">tool_name</span><span class="p">:</span> <span class="nb">str</span><span class="p">):</span> <span class="k">def</span> <span class="nf">decorator</span><span class="p">(</span><span class="n">func</span><span class="p">):</span> <span class="nd">@wraps</span><span class="p">(</span><span class="n">func</span><span class="p">)</span> <span class="k">async</span> <span class="k">def</span> <span class="nf">wrapper</span><span class="p">(</span><span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span> <span class="k">if</span> <span class="ow">not</span> <span class="nf">is_allowed</span><span class="p">(</span><span class="n">tool_name</span><span class="p">):</span> <span class="n">logger</span><span class="p">.</span><span class="nf">warning</span><span class="p">(</span><span class="sa">f</span><span class="sh">"</span><span class="s">Blocked access to tool </span><span class="sh">'</span><span class="si">{</span><span class="n">tool_name</span><span class="si">}</span><span class="sh">'</span><span class="s"> — not in allowlist</span><span class="sh">"</span><span class="p">)</span> <span class="k">raise</span> <span class="nc">PermissionError</span><span class="p">(</span> <span class="sa">f</span><span class="sh">"</span><span class="s">Tool </span><span class="sh">'</span><span class="si">{</span><span class="n">tool_name</span><span class="si">}</span><span class="sh">'</span><span class="s"> is not permitted.</span><span class="sh">"</span> <span class="p">)</span> <span class="k">return</span> <span class="k">await</span> <span class="nf">func</span><span class="p">(</span><span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">)</span> <span class="k">return</span> <span class="n">wrapper</span> <span class="k">return</span> <span class="n">decorator</span> </code></pre> </div> <p><strong>Decorator order matters.</strong> The <code>@instrument_tool</code> decorator (introduced in the observability section below) must be the <strong>outermost</strong> layer so that blocked calls are counted in metrics — giving you visibility into prompt injection attempts, not just successful calls:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="nd">@instrument_tool</span><span class="p">(</span><span class="sh">"</span><span class="s">search_records</span><span class="sh">"</span><span class="p">)</span> <span class="c1"># outermost — records ALL attempts including blocked </span><span class="nd">@require_allowlist</span><span class="p">(</span><span class="sh">"</span><span class="s">search_records</span><span class="sh">"</span><span class="p">)</span> <span class="c1"># inner — raises PermissionError if not on list </span><span class="k">async</span> <span class="k">def</span> <span class="nf">search_records</span><span class="p">(</span><span class="n">query</span><span class="p">:</span> <span class="nb">str</span><span class="p">,</span> <span class="n">limit</span><span class="p">:</span> <span class="nb">int</span> <span class="o">=</span> <span class="mi">20</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">dict</span><span class="p">:</span> <span class="bp">...</span> </code></pre> </div> <p><strong>SQL injection</strong> is prevented at two levels. All user-supplied values use asyncpg parameterized queries (<code>$1</code>, <code>$2</code>). Column names used in dynamic queries are validated against a hardcoded allowlist before the query is constructed:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">allowed_filter_cols</span> <span class="o">=</span> <span class="p">{</span><span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">type</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">category</span><span class="sh">"</span><span class="p">}</span> <span class="k">if</span> <span class="n">filters</span><span class="p">:</span> <span class="n">invalid</span> <span class="o">=</span> <span class="nf">set</span><span class="p">(</span><span class="n">filters</span><span class="p">)</span> <span class="o">-</span> <span class="n">allowed_filter_cols</span> <span class="k">if</span> <span class="n">invalid</span><span class="p">:</span> <span class="k">raise</span> <span class="nc">ValueError</span><span class="p">(</span><span class="sa">f</span><span class="sh">"</span><span class="s">Invalid filter column(s): </span><span class="si">{</span><span class="n">invalid</span><span class="si">}</span><span class="sh">"</span><span class="p">)</span> </code></pre> </div> <h2> Problem 3: Observability </h2> <p>This is the section most MCP templates get wrong — and where I spent the most time getting it right.</p> <p>The naive approach is to define OpenTelemetry metrics in a setup function and assume they get populated. They don't. Defining a counter and incrementing a counter are two separate things, and many templates (including early versions of this one) only do the first half.</p> <h3> The fix: <code>@instrument_tool</code> </h3> <p>Every tool call needs to be wrapped in a decorator that records the metrics. This decorator is placed as the <strong>outermost</strong> layer on each tool function:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># src/server/observability/instrument.py </span> <span class="k">def</span> <span class="nf">instrument_tool</span><span class="p">(</span><span class="n">tool_name</span><span class="p">:</span> <span class="nb">str</span><span class="p">):</span> <span class="k">def</span> <span class="nf">decorator</span><span class="p">(</span><span class="n">func</span><span class="p">):</span> <span class="nd">@functools.wraps</span><span class="p">(</span><span class="n">func</span><span class="p">)</span> <span class="k">async</span> <span class="k">def</span> <span class="nf">wrapper</span><span class="p">(</span><span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">):</span> <span class="n">tel</span> <span class="o">=</span> <span class="nf">get_telemetry</span><span class="p">()</span> <span class="k">if</span> <span class="n">tel</span> <span class="ow">is</span> <span class="bp">None</span><span class="p">:</span> <span class="c1"># unit tests — zero-overhead pass-through </span> <span class="k">return</span> <span class="k">await</span> <span class="nf">func</span><span class="p">(</span><span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">)</span> <span class="n">attrs</span> <span class="o">=</span> <span class="p">{</span><span class="sh">"</span><span class="s">tool</span><span class="sh">"</span><span class="p">:</span> <span class="n">tool_name</span><span class="p">}</span> <span class="n">tel</span><span class="p">.</span><span class="n">tool_calls</span><span class="p">.</span><span class="nf">add</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="n">attrs</span><span class="p">)</span> <span class="n">start</span> <span class="o">=</span> <span class="n">time</span><span class="p">.</span><span class="nf">monotonic</span><span class="p">()</span> <span class="k">with</span> <span class="n">tel</span><span class="p">.</span><span class="n">tracer</span><span class="p">.</span><span class="nf">start_as_current_span</span><span class="p">(</span><span class="n">tool_name</span><span class="p">):</span> <span class="k">try</span><span class="p">:</span> <span class="n">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">func</span><span class="p">(</span><span class="o">*</span><span class="n">args</span><span class="p">,</span> <span class="o">**</span><span class="n">kwargs</span><span class="p">)</span> <span class="n">tel</span><span class="p">.</span><span class="n">tool_duration</span><span class="p">.</span><span class="nf">record</span><span class="p">((</span><span class="n">time</span><span class="p">.</span><span class="nf">monotonic</span><span class="p">()</span> <span class="o">-</span> <span class="n">start</span><span class="p">)</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">,</span> <span class="n">attrs</span><span class="p">)</span> <span class="k">return</span> <span class="n">result</span> <span class="k">except</span> <span class="nb">Exception</span><span class="p">:</span> <span class="n">tel</span><span class="p">.</span><span class="n">tool_errors</span><span class="p">.</span><span class="nf">add</span><span class="p">(</span><span class="mi">1</span><span class="p">,</span> <span class="n">attrs</span><span class="p">)</span> <span class="k">raise</span> <span class="k">return</span> <span class="n">wrapper</span> <span class="k">return</span> <span class="n">decorator</span> </code></pre> </div> <p><code>get_telemetry()</code> reads from a module-level singleton in <code>observability/context.py</code> — the same pattern used by <code>db/pool.py</code> for the database pool. It returns <code>None</code> when telemetry is not initialized (unit tests), making the decorator a zero-overhead pass-through in that case.</p> <h3> Four metrics recorded on every call </h3> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Metric</th> <th>Type</th> <th>What it tells you</th> </tr> </thead> <tbody> <tr> <td><code>mcp.tool.calls</code></td> <td>Counter</td> <td>Total invocations per tool (including blocked)</td> </tr> <tr> <td><code>mcp.tool.errors</code></td> <td>Counter</td> <td>Failures per tool — allowlist blocks, DB errors, validation failures</td> </tr> <tr> <td><code>mcp.tool.duration</code></td> <td>Histogram (ms)</td> <td>Latency distribution — p50/p95/p99 per tool</td> </tr> <tr> <td><code>mcp.db.pool_size</code></td> <td>Gauge</td> <td>Live pool size at each export interval</td> </tr> </tbody> </table></div> <h3> The pool size gauge — a subtle fix </h3> <p>Observable gauges require a callback registered at creation time. Without it the gauge exists but reports nothing. The callback uses late binding via <code>get_pool()</code> so it works even though the pool is initialized after <code>setup_telemetry()</code> runs:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="k">def</span> <span class="nf">_pool_size_callback</span><span class="p">(</span><span class="n">options</span><span class="p">):</span> <span class="sh">"""</span><span class="s">Called by the metrics SDK at each 30s export interval.</span><span class="sh">"""</span> <span class="k">try</span><span class="p">:</span> <span class="kn">from</span> <span class="n">..db.pool</span> <span class="kn">import</span> <span class="n">get_pool</span> <span class="c1"># lazy import — avoids circular dependency </span> <span class="n">asyncpg_pool</span> <span class="o">=</span> <span class="nf">get_pool</span><span class="p">().</span><span class="n">_pool</span> <span class="k">if</span> <span class="n">asyncpg_pool</span> <span class="ow">is</span> <span class="ow">not</span> <span class="bp">None</span><span class="p">:</span> <span class="k">return</span> <span class="p">[</span><span class="nc">Observation</span><span class="p">(</span><span class="n">asyncpg_pool</span><span class="p">.</span><span class="nf">get_size</span><span class="p">())]</span> <span class="k">except</span> <span class="nb">RuntimeError</span><span class="p">:</span> <span class="k">pass</span> <span class="c1"># pool not yet initialized — skip this cycle </span> <span class="k">return</span> <span class="p">[]</span> <span class="n">db_pool_size</span> <span class="o">=</span> <span class="n">meter</span><span class="p">.</span><span class="nf">create_observable_gauge</span><span class="p">(</span> <span class="sh">"</span><span class="s">mcp.db.pool_size</span><span class="sh">"</span><span class="p">,</span> <span class="n">callbacks</span><span class="o">=</span><span class="p">[</span><span class="n">_pool_size_callback</span><span class="p">],</span> <span class="c1"># ← was missing in early versions </span> <span class="n">description</span><span class="o">=</span><span class="sh">"</span><span class="s">Current DB connection pool size</span><span class="sh">"</span><span class="p">,</span> <span class="p">)</span> </code></pre> </div> <h3> OTLP or console — controlled by env var </h3> <p>The server emits standard OTLP and is completely backend-agnostic. Whether it exports to a real collector or falls back to stdout is controlled by a single env var:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">telemetry</span> <span class="o">=</span> <span class="nf">setup_telemetry</span><span class="p">(</span> <span class="n">settings</span><span class="p">.</span><span class="n">service_name</span><span class="p">,</span> <span class="n">otel_enabled</span><span class="o">=</span><span class="n">settings</span><span class="p">.</span><span class="n">otel_enabled</span><span class="p">,</span> <span class="c1"># True → OTLP gRPC, False → console </span> <span class="n">otlp_endpoint</span><span class="o">=</span><span class="n">settings</span><span class="p">.</span><span class="n">otel_exporter_otlp_endpoint</span><span class="p">,</span> <span class="p">)</span> <span class="nf">set_telemetry</span><span class="p">(</span><span class="n">telemetry</span><span class="p">)</span> <span class="c1"># makes it accessible to @instrument_tool via context.py </span></code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># .env</span> <span class="nv">OTEL_ENABLED</span><span class="o">=</span><span class="nb">true </span><span class="nv">OTEL_EXPORTER_OTLP_ENDPOINT</span><span class="o">=</span>http://localhost:4317 </code></pre> </div> <h3> Multi-backend routing via collector configs </h3> <p>The <code>collector/</code> directory provides three pre-built configs for routing OTLP to different backends — swap the one your infrastructure uses without touching application code:</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>File</th> <th>Routes to</th> </tr> </thead> <tbody> <tr> <td><code>collector/adot-aws.yaml</code></td> <td>AWS X-Ray (traces) + CloudWatch EMF (metrics) via ADOT sidecar</td> </tr> <tr> <td><code>collector/otelcol-grafana.yaml</code></td> <td>Grafana Tempo (traces) + Prometheus (metrics)</td> </tr> <tr> <td><code>collector/otelcol-datadog.yaml</code></td> <td>Datadog APM + Datadog Metrics</td> </tr> </tbody> </table></div> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>FastMCP server → OTLP :4317 → Collector (adot / otelcol) → X-Ray / Grafana / Datadog </code></pre> </div> <h3> Local observability in one command </h3> <p><code>docker/docker-compose.observe.yml</code> adds the full Grafana LGTM stack alongside the MCP server:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>make observe-up <span class="c"># Open http://localhost:3000 — traces and metrics appear immediately, no login</span> make observe-down </code></pre> </div> <p>This starts: OpenTelemetry Collector → Grafana Tempo (traces) + Prometheus (metrics) → Grafana (dashboards). <code>OTEL_ENABLED</code> is set to <code>true</code> automatically. Datasources are auto-provisioned — no manual Grafana setup.</p> <h2> Problem 4: Kubernetes Deployment </h2> <p>The Helm chart handles everything a production Kubernetes deployment needs.</p> <p><strong>Horizontal Pod Autoscaler</strong> — scales 2–8 replicas at 70% CPU:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">autoscaling</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">minReplicas</span><span class="pi">:</span> <span class="m">2</span> <span class="na">maxReplicas</span><span class="pi">:</span> <span class="m">8</span> <span class="na">targetCPUUtilizationPercentage</span><span class="pi">:</span> <span class="m">70</span> </code></pre> </div> <p><strong>External Secrets Operator</strong> — pulls <code>DATABASE_URL</code> and <code>API_KEY</code> from HashiCorp Vault (or any ESO-compatible store) without ever putting secrets in your Helm values:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">externalSecrets</span><span class="pi">:</span> <span class="na">enabled</span><span class="pi">:</span> <span class="kc">true</span> <span class="na">secretStoreName</span><span class="pi">:</span> <span class="s">vault-backend</span> <span class="na">secrets</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">remoteKey</span><span class="pi">:</span> <span class="s">mcp-server/database</span> <span class="na">data</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">secretKey</span><span class="pi">:</span> <span class="s">DATABASE_URL</span> <span class="na">remoteRef</span><span class="pi">:</span> <span class="na">key</span><span class="pi">:</span> <span class="s">database_url</span> </code></pre> </div> <p><strong>Kubernetes health probes</strong> point to <code>/health</code>, which checks the database pool before returning 200:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="nd">@mcp.custom_route</span><span class="p">(</span><span class="sh">"</span><span class="s">/health</span><span class="sh">"</span><span class="p">,</span> <span class="n">methods</span><span class="o">=</span><span class="p">[</span><span class="sh">"</span><span class="s">GET</span><span class="sh">"</span><span class="p">])</span> <span class="k">async</span> <span class="k">def</span> <span class="nf">http_health</span><span class="p">(</span><span class="n">request</span><span class="p">:</span> <span class="n">Request</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="n">JSONResponse</span><span class="p">:</span> <span class="k">try</span><span class="p">:</span> <span class="n">pool</span> <span class="o">=</span> <span class="nf">get_pool</span><span class="p">()</span> <span class="n">pool_status</span> <span class="o">=</span> <span class="k">await</span> <span class="n">pool</span><span class="p">.</span><span class="nf">health_check</span><span class="p">()</span> <span class="k">return</span> <span class="nc">JSONResponse</span><span class="p">({</span><span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">ok</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">pool</span><span class="sh">"</span><span class="p">:</span> <span class="n">pool_status</span><span class="p">})</span> <span class="k">except</span> <span class="nb">RuntimeError</span><span class="p">:</span> <span class="k">return</span> <span class="nc">JSONResponse</span><span class="p">(</span> <span class="p">{</span><span class="sh">"</span><span class="s">status</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">degraded</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">detail</span><span class="sh">"</span><span class="p">:</span> <span class="sh">"</span><span class="s">database pool not initialized</span><span class="sh">"</span><span class="p">},</span> <span class="n">status_code</span><span class="o">=</span><span class="mi">503</span><span class="p">,</span> <span class="p">)</span> </code></pre> </div> <p>For AWS deployments, the optional ADOT sidecar annotation in <code>values.yaml</code> routes traces directly to X-Ray without any application code changes — just enable <code>adot.enabled: true</code> and point <code>OTEL_EXPORTER_OTLP_ENDPOINT</code> at <code>localhost:4317</code>.</p> <h2> Production Safeguards in Settings </h2> <p>Two validators in <code>Settings</code> catch the most common production misconfigurations at startup — not at 2am when the first request fails:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="nd">@field_validator</span><span class="p">(</span><span class="sh">"</span><span class="s">database_url</span><span class="sh">"</span><span class="p">)</span> <span class="nd">@classmethod</span> <span class="k">def</span> <span class="nf">validate_database_url</span><span class="p">(</span><span class="n">cls</span><span class="p">,</span> <span class="n">v</span><span class="p">:</span> <span class="nb">str</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">str</span><span class="p">:</span> <span class="k">if</span> <span class="ow">not</span> <span class="n">v</span><span class="p">.</span><span class="nf">startswith</span><span class="p">((</span><span class="sh">"</span><span class="s">postgresql://</span><span class="sh">"</span><span class="p">,</span> <span class="sh">"</span><span class="s">postgres://</span><span class="sh">"</span><span class="p">)):</span> <span class="k">raise</span> <span class="nc">ValueError</span><span class="p">(</span><span class="sh">"</span><span class="s">DATABASE_URL must be a valid PostgreSQL connection string</span><span class="sh">"</span><span class="p">)</span> <span class="k">return</span> <span class="n">v</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="nd">@model_validator</span><span class="p">(</span><span class="n">mode</span><span class="o">=</span><span class="sh">"</span><span class="s">after</span><span class="sh">"</span><span class="p">)</span> <span class="k">def</span> <span class="nf">validate_api_key_in_production</span><span class="p">(</span><span class="n">self</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="sh">"</span><span class="s">Settings</span><span class="sh">"</span><span class="p">:</span> <span class="nf">if </span><span class="p">(</span> <span class="n">self</span><span class="p">.</span><span class="n">api_key_enabled</span> <span class="ow">and</span> <span class="n">self</span><span class="p">.</span><span class="n">log_level</span><span class="p">.</span><span class="nf">upper</span><span class="p">()</span> <span class="o">!=</span> <span class="sh">"</span><span class="s">DEBUG</span><span class="sh">"</span> <span class="ow">and</span> <span class="n">self</span><span class="p">.</span><span class="n">api_key</span> <span class="o">==</span> <span class="sh">"</span><span class="s">change-me-in-production</span><span class="sh">"</span> <span class="p">):</span> <span class="k">raise</span> <span class="nc">ValueError</span><span class="p">(</span> <span class="sh">"</span><span class="s">API_KEY must be changed from the default value before running in production. </span><span class="sh">"</span> <span class="sh">"</span><span class="s">Set LOG_LEVEL=DEBUG to bypass this check in development.</span><span class="sh">"</span> <span class="p">)</span> <span class="k">return</span> <span class="n">self</span> </code></pre> </div> <p>The second validator is deliberately bypassed with <code>LOG_LEVEL=DEBUG</code> — so local dev still works with the default key, but a misconfigured production deploy fails loudly at boot.</p> <h2> Testing </h2> <p>A production-ready template should have production-grade tests. The suite has two tiers:</p> <p><strong>Unit tests</strong> — no database, no network, runs in ~0.5s:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>make test-unit <span class="c"># 28 tests</span> </code></pre> </div> <p>Covers: allowlist loading and enforcement, <code>@instrument_tool</code> decorator (call counting, error counting, duration recording, span wrapping, <code>functools.wraps</code> preservation), <code>setup_telemetry</code> console and OTLP modes, pool gauge callback with uninitialized pool, all four tool functions with mocked database, and SQL injection prevention.</p> <p><strong>Integration tests</strong> — runs against real PostgreSQL:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Start postgres first:</span> docker compose <span class="nt">-f</span> docker/docker-compose.yml up <span class="nt">-d</span> postgres <span class="c"># Run against it:</span> <span class="nv">DATABASE_URL</span><span class="o">=</span>postgresql://mcpuser:mcppassword@localhost:5432/mcpdb <span class="se">\</span> make test-integration <span class="c"># 21 tests</span> </code></pre> </div> <p>Covers: real <code>DatabasePool</code> lifecycle (initialize, fetch, fetchrow, fetchval, execute, health_check), <code>search_records</code> pagination and filter behaviour, <code>get_record_detail</code> found and not-found paths, <code>get_statistics</code> grouping and totals, and SQL injection prevention against a live query engine.</p> <p>CI runs both phases automatically — unit tests first, integration tests in a separate job with a <code>postgres:16</code> service container. Unit tests alone reach <strong>82% coverage</strong>; <code>main.py</code> and <code>settings.py</code> are excluded (covered by integration tests) and documented as such.</p> <h2> Getting Started </h2> <h3> Two minutes with Docker Compose </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://github.com/ManjunathGovindaraju/fastmcp-production-template.git <span class="nb">cd </span>fastmcp-production-template <span class="nb">cp</span> .env.example .env docker compose <span class="nt">-f</span> docker/docker-compose.yml up </code></pre> </div> <p>MCP server at <code>http://localhost:8000/mcp</code>. PostgreSQL starts with sample data from <code>docker/init.sql</code>.</p> <h3> With full observability </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">cp</span> .env.example .env make observe-up <span class="c"># MCP server: http://localhost:8000/mcp</span> <span class="c"># Grafana: http://localhost:3000 (traces + metrics, no login)</span> make observe-down </code></pre> </div> <h3> Deploy to Kubernetes </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>helm <span class="nb">install </span>fastmcp k8s/helm/ <span class="se">\</span> <span class="nt">--set</span> image.tag<span class="o">=</span>v1.0.0 <span class="se">\</span> <span class="nt">--set</span> externalSecrets.secretStoreName<span class="o">=</span>your-vault-store <span class="se">\</span> <span class="nt">--namespace</span> mcp-system <span class="se">\</span> <span class="nt">--create-namespace</span> </code></pre> </div> <h2> Adding a New Tool </h2> <p>Three steps:</p> <p><strong>1. Create the tool</strong> in <code>src/server/tools/your_tool.py</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">from</span> <span class="n">..config.security</span> <span class="kn">import</span> <span class="n">require_allowlist</span> <span class="kn">from</span> <span class="n">..db.pool</span> <span class="kn">import</span> <span class="n">get_pool</span> <span class="kn">from</span> <span class="n">..observability.instrument</span> <span class="kn">import</span> <span class="n">instrument_tool</span> <span class="nd">@instrument_tool</span><span class="p">(</span><span class="sh">"</span><span class="s">your_tool_name</span><span class="sh">"</span><span class="p">)</span> <span class="c1"># outermost — metrics + trace span </span><span class="nd">@require_allowlist</span><span class="p">(</span><span class="sh">"</span><span class="s">your_tool_name</span><span class="sh">"</span><span class="p">)</span> <span class="c1"># inner — blocks if not in allowlist </span><span class="k">async</span> <span class="k">def</span> <span class="nf">your_tool_name</span><span class="p">(</span><span class="n">param</span><span class="p">:</span> <span class="nb">str</span><span class="p">)</span> <span class="o">-&gt;</span> <span class="nb">dict</span><span class="p">:</span> <span class="n">row</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">get_pool</span><span class="p">().</span><span class="nf">fetchrow</span><span class="p">(</span> <span class="sh">"</span><span class="s">SELECT * FROM your_table WHERE id = $1</span><span class="sh">"</span><span class="p">,</span> <span class="n">param</span> <span class="p">)</span> <span class="k">return</span> <span class="nf">dict</span><span class="p">(</span><span class="n">row</span><span class="p">)</span> <span class="k">if</span> <span class="n">row</span> <span class="k">else</span> <span class="p">{}</span> </code></pre> </div> <p><strong>2. Register it</strong> in <code>src/server/main.py</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">from</span> <span class="n">.tools</span> <span class="kn">import</span> <span class="n">your_tool</span> <span class="n">mcp</span><span class="p">.</span><span class="nf">add_tool</span><span class="p">(</span><span class="n">your_tool</span><span class="p">.</span><span class="n">your_tool_name</span><span class="p">)</span> </code></pre> </div> <p><strong>3. Add it to the allowlist</strong> in <code>config/allowlist.yaml</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">allowed_tools</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">your_tool_name</span> </code></pre> </div> <h2> What This Is Not </h2> <p>This template does not include:</p> <ul> <li>Application-specific business logic — the tools (<code>search_records</code>, <code>get_record_detail</code>, <code>get_statistics</code>) are placeholders. Replace them with your domain.</li> <li>A specific LLM or agent framework — it is the tool-serving layer. Pair it with LangGraph, LangChain, or any MCP-compatible agent.</li> <li>A database migration tool — schema versioning (Alembic, Flyway) is intentionally out of scope. Add the migration tooling your team already uses.</li> </ul> <h2> Project Structure </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>fastmcp-production-template/ ├── src/server/ │ ├── main.py # FastMCP entry point, lifespan hooks │ ├── config/ │ │ ├── settings.py # Pydantic Settings (env / .env) │ │ └── security.py # Allowlist loader + @require_allowlist │ ├── db/ │ │ ├── connection.py # asyncpg DatabasePool │ │ └── pool.py # Module-level singleton │ ├── observability/ │ │ ├── telemetry.py # OTel setup — OTLP (prod) or console (dev) │ │ ├── context.py # Telemetry singleton — get/set │ │ └── instrument.py # @instrument_tool decorator │ └── tools/ │ ├── search.py # search_records │ ├── detail.py # get_record_detail │ ├── stats.py # get_statistics │ └── health.py # get_pool_status (no allowlist) ├── collector/ │ ├── adot-aws.yaml # → AWS X-Ray + CloudWatch │ ├── otelcol-grafana.yaml # → Grafana Tempo + Prometheus │ └── otelcol-datadog.yaml # → Datadog ├── config/ │ └── allowlist.yaml ├── docker/ │ ├── Dockerfile │ ├── docker-compose.yml # server + postgres │ ├── docker-compose.observe.yml # adds Grafana LGTM stack │ └── init.sql ├── k8s/helm/ │ ├── values.yaml │ └── templates/ ├── tests/ │ ├── conftest.py # mock_telemetry fixture │ ├── test_security.py │ ├── test_telemetry.py # context + @instrument_tool + setup_telemetry │ ├── test_tools.py # tool behaviour, mocked DB │ └── test_integration.py # real DB — skipped unless DATABASE_URL is set └── .github/workflows/ ├── ci.yml # lint → unit tests → integration tests → docker └── release.yml </code></pre> </div> <h2> Summary </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Problem</th> <th>Solution</th> </tr> </thead> <tbody> <tr> <td>DB connections deadlock under concurrent load</td> <td> <code>asyncpg</code> pool, min/max bounded, module-level singleton</td> </tr> <tr> <td>Prompt injection via unauthorized tool calls</td> <td>YAML allowlist + <code>@require_allowlist</code> decorator</td> </tr> <tr> <td>Metrics defined but never recorded</td> <td> <code>@instrument_tool</code> decorator + <code>context.py</code> singleton</td> </tr> <tr> <td>Pool size gauge silent</td> <td>Late-bound callback registered at gauge creation</td> </tr> <tr> <td>Locked to one observability backend</td> <td>OTLP app + <code>collector/</code> configs for ADOT, Grafana, Datadog</td> </tr> <tr> <td>No local observability stack</td> <td> <code>make observe-up</code> — full Grafana LGTM in one command</td> </tr> <tr> <td>No real test coverage</td> <td>28 unit tests + 21 integration tests, 82% coverage</td> </tr> <tr> <td>Kubernetes complexity</td> <td>Helm chart — HPA + ESO + optional ADOT sidecar</td> </tr> </tbody> </table></div> <p><strong>GitHub:</strong> <a href="https://github.com/ManjunathGovindaraju/fastmcp-production-template" rel="noopener noreferrer">ManjunathGovindaraju/fastmcp-production-template</a> — MIT license, fork freely.</p> <p><strong>About the author:</strong> Manjunath Govindaraju — Principal Software Engineer with 23 years building production systems. Currently focused on AI platform engineering: multi-agent orchestration (LangGraph), MCP servers, async data pipelines, and enterprise Kubernetes deployments.</p> <p><a href="https://www.linkedin.com/in/manjunathgovindaraju/" rel="noopener noreferrer">LinkedIn</a> · <a href="https://github.com/ManjunathGovindaraju" rel="noopener noreferrer">GitHub</a></p> python kubernetes mcp opentelemetry