Big News: Socket raises $60M Series C at a $1B valuation to secure software supply chains for AI-driven development.Announcement
Sign In

@frontmcp/plugin-codecall

Package Overview
Dependencies
Maintainers
1
Versions
43
Alerts
File Explorer

Advanced tools

License
Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

@frontmcp/plugin-codecall

CodeCall plugin for FrontMCP - AgentScript-based meta-tools for orchestrating MCP tools

latest
Source
npmnpm
Version
1.3.0
Version published
Weekly downloads
2.7K
-19.08%
Maintainers
1
Weekly downloads
 
Created
Source

@frontmcp/plugin-codecall

CodeCall plugin for FrontMCP - provides AgentScript-based meta-tools for orchestrating MCP tools.

Installation

npm install @frontmcp/plugin-codecall @frontmcp/plugin-cache

Note: @frontmcp/plugin-cache is a peer dependency and must be installed.

Usage

import { CodeCallPlugin } from '@frontmcp/plugin-codecall';
import { CachePlugin } from '@frontmcp/plugin-cache';
import { FrontMcp } from '@frontmcp/sdk';

const app = new FrontMcp({
  plugins: [CachePlugin, CodeCallPlugin],
});

Features

  • Meta-Tools: Search, describe, execute, and invoke tools programmatically
  • AgentScript Execution: Run JavaScript code in a sandboxed VM
  • Tool Discovery: Semantic search across available tools
  • Configurable Modes: Control tool visibility and execution patterns

Meta-Tools

  • codecall:search - Search for tools by name or description
  • codecall:describe - Get detailed tool descriptions
  • codecall:execute - Execute AgentScript code
  • codecall:invoke - Invoke a specific tool directly

Configuration

import { CodeCallPlugin } from '@frontmcp/plugin-codecall';

const app = new FrontMcp({
  plugins: [
    CodeCallPlugin.configure({
      mode: 'codecall_only', // 'codecall_only' | 'codecall_opt_in' | 'metadata_driven'
      embedding: {
        enabled: true,
        model: 'default',
      },
    }),
  ],
});

Modes

  • codecall_only: Hide all tools except CodeCall meta-tools
  • codecall_opt_in: Show all tools, opt-in to CodeCall execution
  • metadata_driven: Use per-tool metadata for visibility

License

Apache-2.0

Keywords

mcp
codecall
orchestration
meta-tools
plugin
frontmcp

FAQs

Package last updated on 27 May 2026

Did you know?

Socket

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

Related posts

pnpm 11.5 Adds Support for Recognizing npm Staged Publishes

Security News

pnpm 11.5 Adds Support for Recognizing npm Staged Publishes

pnpm 11.5 now recognizes npm staged publish approvals in release metadata, preventing those releases from being mistaken for lower-trust package publishes.

By Sarah Gooding  -  Jun 04, 2026
Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

Research

/

Security News

Mini Shai-Hulud Campaign Hits Red Hat Cloud Services npm Packages

A mini Shai-Hulud campaign compromised Red Hat Cloud Services npm packages to steal developer and CI/CD secrets during installation.

By Socket Research Team  -  Jun 01, 2026