KiroGraph’s MCP server provides a structured interface that lets AI agents — including Kiro IDE’s built-in agent — query the code knowledge graph directly. Rather than reading source files, the agent calls typed tools that return pre-structured, token-optimized answers: symbol lookups, blast-radius analyses, vulnerability reports, memory observations, and more. The server starts automatically when you open a project in Kiro after installation, or you can start it manually withDocumentation Index
Fetch the complete documentation index at: https://mintlify.com/davide-desio-eleva/kirograph/llms.txt
Use this file to discover all available pages before exploring further.
kirograph serve --mcp.
Starting the MCP Server
In Kiro IDE the server is launched automatically by the installer. For other MCP clients, add KiroGraph to your MCP configuration and point it at your project:.kirograph/config.json. Disabled flags reduce the tool list (and the autoApprove entry) to keep the agent’s context lean.
Token Budget by Feature Flag
Every tool that appears in thetools/list response costs tokens in the agent’s system prompt. The table below shows the approximate cost of enabling each feature set. The totals assume all flags are true.
| Flag | Tools | ~Tokens |
|---|---|---|
| core (always-on) | 3 | ~170 |
enableNavigation | 3 | ~120 |
enableMemory | 16 | ~746 |
enableSecurity | 15 | ~675 |
enableData | 10 | ~519 |
enableWiki | 10 | ~319 |
enableCodeHealth | 25 | ~935 |
enableDocs | 5 | ~241 |
enableAgentUtils | 4 | ~278 |
enableArchitecture | 5 | ~205 |
enableWatchmen | 3 | ~140 |
enablePatterns | 3 | ~93 |
trackCallSites | 2 | ~84 |
enableGitContext | 7 | ~410 |
enableComplexity | 5 | ~660 |
enableEditPrimitives | 5 | ~280 |
enableBranch | 3 | ~300 |
enableShellExec | 1 | ~71 |
enableGeneralCompression | 1 | ~68 |
| Total | 126 | ~6,240 |
Auto-Approval in Kiro IDE
After installation, Kiro auto-approves all KiroGraph tools so the agent never pauses for confirmation. The installer writes the followingautoApprove list into .kiro/mcp.json:
autoApprove list. The installer trims the list automatically when a flag is false.
KiroGraph tools carry two MCP protocol annotations.
readOnlyHint: true is
set on all graph-query tools to signal that they do not modify project files —
MCP clients can use this to apply looser confirmation policies. Tools in
enableEditPrimitives and enableShellExec are explicitly marked
readOnlyHint: false. The alwaysLoad: true annotation on the core tool set
tells compliant clients to include those tool definitions in every context
window, even when tool use is otherwise disabled.Tool Groups at a Glance
Core & Navigation
Always-on context builder, symbol search, caller/callee traversal, status, and file listing. Start here.
Code Health
Dead code, circular deps, hotspots, type hierarchies, snapshots, complexity analysis, branch diffs, and edit primitives.
Security
Vulnerability scanning with EPSS scores, attack surface mapping, secrets detection, SBOM/VEX export, SAST, and supply chain health.
Memory
Persistent project memory: store decisions, search observations, manage conflicts, review stale facts, and trigger Watchmen synthesis.
Git Context
Semantic diffs, commit context, PR descriptions, changelog generation, test mapping, and coverage parsing.
Architecture
Package and layer detection, coupling metrics (Ca/Ce/instability), community detection, and manifest inspection.
Data
Indexed dataset queries, aggregation, joins, Pearson correlations, quality triage, and drift detection.
Docs & Wiki
Documentation TOC, search, section retrieval, code↔doc cross-references, wiki ingestion, and synthesis.
Minimal Configuration Example
Enable the most commonly used features in.kirograph/config.json:
enableSecurity also requires enableArchitecture: true because security
reachability analysis traverses the architecture layer graph. Both flags must
be set for security tools to appear in the tool list.