MCP 已死，CLI 万岁。

MCP 已死，CLI 万岁。
When does MCP make sense vs CLI?

原始链接: https://ejholmes.github.io/2026/02/28/mcp-is-dead-long-live-the-cli.html

## 反对MCP：大型语言模型不需要特殊协议作者认为，旨在让大型语言模型与工具交互的模型上下文协议（MCP）已经失败，且在实际应用中益处不大。尽管最初业界对此炒作不断，但MCP引入了不必要的复杂性，而现有的解决方案——命令行界面（CLI）——已经表现出色。大型语言模型非常擅长使用CLI，因为它们接受过大量相关数据的训练。CLI提供卓越的可调试性（直接命令执行）、可组合性（管道和链式工具）以及利用成熟的身份验证方法。相反，MCP需要自定义文档，使调试变得复杂（不透明的日志），并且难以处理需要工具链的复杂任务。此外，MCP引入了运营开销，包括服务器管理、不稳定的初始化和持续的重新身份验证——这些都是CLI避免的问题。虽然MCP *可能* 对缺乏CLI等效工具的工具有用，但作者提倡优先开发CLI，因为它们天生就能有效地服务于人类和机器用户。最终，作者认为我们已经*拥有*了一个良好的工具使用抽象层——CLI，而MCP是对重复造轮子的误导性尝试。

## AI 代理：MCP 与 CLI 的争论 Hacker News 上的一场讨论突显了微软的 MCP（微软能力协议）和 AI 代理中使用命令行界面 (CLI) 之间的持续争论。作者宣称“MCP 已死，CLI 万岁”，但评论者提出了细致的观点。有人认为 MCP 的价值在于其封装性和令牌效率——这对于对话迅速扩展的代理 AI 至关重要。它允许轻松集成现有的安全和管理工具，使代理能够通过简单的 `curl` 命令与服务交互。然而，也有人批评 MCP 是一个设计不良的标准，由产品层面的需求而非技术优点驱动。人们对允许非开发者通过 CLI 连接到任意数据源的安全风险表示担忧，认为 MCP 在这些情况下是一种更安全的替代方案。最终，这场对话表明，两种方法都有其优点，具体取决于使用场景，一些人提倡更简单的 REST API 作为一种可行的替代方案。

原文

I’m going to make a bold claim: MCP is already dying. We may not fully realize it yet, but the signs are there. OpenClaw doesn’t support it. Pi doesn’t support it. And for good reason.

When Anthropic announced the Model Context Protocol, the industry collectively lost its mind. Every company scrambled to ship MCP servers as proof they were “AI first.” Massive resources poured into new endpoints, new wire formats, new authorization schemes, all so LLMs could talk to services they could already talk to.

I’ll admit, I never fully understood the need for it. You know what LLMs are really good at? Figuring things out on their own. Give them a CLI and some docs and they’re off to the races.

I tried to avoid writing this for a long time, but I’m convinced MCP provides no real-world benefit, and that we’d be better off without it. Let me explain.

LLMs don’t need a special protocol

LLMs are really good at using command-line tools. They’ve been trained on millions of man pages, Stack Overflow answers, and GitHub repos full of shell scripts. When I tell Claude to use gh pr view 123, it just works.

MCP promised a cleaner interface, but in practice I found myself writing the same documentation anyway: what each tool does, what parameters it accepts, and more importantly, when to use it. The LLM didn’t need a new protocol.

CLIs are for humans too

When Claude does something unexpected with Jira, I can run the same jira issue view command and see exactly what it saw. Same input, same output, no mystery.

With MCP, the tool only exists inside the LLM conversation. Something goes wrong and now I’m spelunking through JSON transport logs instead of just running the command myself. Debugging shouldn’t require a protocol decoder.

Composability

This is where the gap gets wide. CLIs compose. I can pipe through jq, chain with grep, redirect to files. This isn’t just convenient; it’s often the only practical approach.

Consider analyzing a large Terraform plan:

terraform show -json plan.out | jq '[.resource_changes[] | select(.change.actions[0] == "no-op" | not)] | length'

With MCP, your options are dumping the entire plan into the context window (expensive, often impossible) or building custom filtering into the MCP server itself. Either way, you’re doing more work for a worse result. The CLI approach uses tools that already exist, are well-documented, and that both humans and agents understand.

Auth already works

MCP is unnecessarily opinionated about auth. Why should a protocol for giving an LLM tools to use need to concern itself with authentication?

CLI tools don’t care. aws uses profiles and SSO. gh uses gh auth login. kubectl uses kubeconfig. These are battle-tested auth flows that work the same whether I’m at the keyboard or Claude is driving. When auth breaks, I fix it the way I always would: aws sso login, gh auth refresh. No MCP-specific troubleshooting required.

No moving parts

Local MCP servers are processes. They need to start up, stay running, and not silently hang. In Claude Code, they’re spawned as child processes, which works until it doesn’t.

CLI tools are just binaries on disk. No background processes, no state to manage, no initialization dance. They’re there when you need them and invisible when you don’t.

The practical pain

Beyond the design philosophy, MCP has real day-to-day friction:

Initialization is flaky. I’ve lost count of the times I’ve restarted Claude Code because an MCP server didn’t come up. Sometimes it works on retry, sometimes I’m clearing state and starting over.

Re-auth never ends. Using multiple MCP tools? Have fun authenticating each one. CLIs with SSO or long-lived credentials just don’t have this problem. Auth once and you’re done.

Permissions are all-or-nothing. Claude Code lets you allowlist MCP tools by name, but that’s it. You can’t scope to read-only operations or restrict parameters. With CLIs, I can allowlist gh pr view but require approval for gh pr merge. That granularity matters.

So when does MCP make sense?

I’m not saying MCP is completely useless. If a tool genuinely has no CLI equivalent, MCP might be the right call. I still use plenty in my day-to-day, when it’s the only option available.

I might even argue there’s some value in having a standardized interface, and that there are probably usecases where it makes more sense than a CLI.

But for the vast majority of work, the CLI is simpler, faster to debug, and more reliable.

The real lesson

The best tools are the ones that work for both humans and machines. CLIs have had decades of design iteration. They’re composable, debuggable, and they piggyback on auth systems that already exist.

MCP tried to build a better abstraction. Turns out we already had a pretty good one.

A plea to builders

If you’re a company investing in an MCP server but you don’t have an official CLI, stop and rethink what you’re doing. Ship a good API, then ship a good CLI. The agents will figure it out.