LLM development quickly expanded beyond simple experiments. Today, AI systems are not just text generation, but full-fledged production applications that work with APIs, databases, files, and internal services. MCP (Model Context Protocol) has become a standard that unifies the interaction of models with tools and infrastructure.
But with increasing complexity, a new problem arises is manageability. The more MCP servers, tools, and integrations there are, the less predictable the behavior of the model becomes: the choice of tools, sequence of actions, cost, and stability of results.
This is where the production-grade LLM gateway is needed. The combination of Bifrost MCP Gateway and Code Mode transforms MCP from an experimental integration layer into a managed, scalable and predictable infrastructure, where orchestration is transferred from promptness to code, and LLM begins to do what it does best, reasoning and decision-making, rather than "juggling" tools.
💻 From MCP to production via Bifrost and Code Mode
When LLM-based systems go beyond experimentation, the management of tools and integrations becomes critical. MCP provides a single standard for working with files, databases, APIs, and internal services, making it easier to connect and reuse capabilities across different workflows. But in large production environments, models spend a significant portion of their resources trying to understand what tools are available, rather than solving real-world problems.
This is where Bifrost with Code Mode comes to the rescue. The MCP Gateway centralizes tool management, and Code Mode translates orchestration from promptness to code, reducing tokens, speeding up execution, and making results predictable. With this architecture, workflows become manageable, secure, and scalable.
Enabling Code Mode in Bifrost:
- Open tab MCP Gateway
- Edit a client
- Enable Code Mode Client
- Save
⚙️ How Bifrost and Code Mode turn LLM into a Managed infrastructure
When building production-ready AI workflows, managing dozens of tools across multiple MCP servers can quickly become overwhelming. Code Mode changes how LLMs interact with MCP tools by exposing only three meta-tools: listToolFiles, readToolFile, and executeToolCode. This minimal interface keeps the model’s context lightweight and predictable, while all orchestration happens inside a secure execution sandbox.
Instead of calling each tool step by step, the model generates code that orchestrates the workflow. This approach reduces token usage, lowers latency, and ensures outputs are deterministic. By moving orchestration out of prompts and into executable code, developers gain full control over complex processes and can debug workflows at the code level.
For example, a single TypeScript workflow can search YouTube and return structured results entirely within Bifrost’s sandbox:
const results = await youtube.search({ query: "LLM", maxResults: 10 });
const titles = results.items.map(item => item.snippet.title);
return { titles, count: titles.length };
This illustrates how Code Mode lets the model focus on reasoning and generating outputs, while the gateway handles tool execution safely and efficiently.
🔎 Why AI projects don't scale without the LLM Gateway
As AI projects grow, the number of tools, APIs, and data sources a model interacts with can increase dramatically. Without a centralized LLM gateway, each model must independently discover and orchestrate these resources, which leads to unpredictable behavior, high latency, and excessive token usage. Production environments quickly become difficult to manage and debug 👾.
For example, listing available MCP tools via a single Bifrost endpoint is as simple as:
# List available MCP tools via Bifrost Gateway
curl -X POST http://localhost:8080/mcp \
-H "Content-Type: application/json" \
-d '{
"jsonrpc": "2.0",
"id": 1,
"method": "tools/list"
}'
This approach dramatically reduces complexity, minimizes latency, and allows AI projects to scale efficiently without the model wasting effort on managing tools.
🖋️ Why MCP makes complex Workflows predictable
Managing complex workflows with multiple tools and services can quickly become chaotic. Without a standard, models may repeatedly receive all tool definitions on every turn, parse large schemas, and make decisions in an ad-hoc way. This not only increases latency and token usage but also makes outputs unpredictable, especially as workflows scale.
For example, using Bifrost’s Code Mode, a model can list available tools, read the specific definitions it needs, and execute code in a secure sandbox:
// List all available MCP tool files
const tools = await listToolFiles();
// Read a specific tool definition
const youtubeTool = await readToolFile('youtube.ts');
// Execute a workflow using the tool
const results = await executeToolCode(async () => {
const searchResults = await youtubeTool.search({ query: "AI news", maxResults: 5 });
const titles = searchResults.items.map(item => item.snippet.title);
return { titles, count: titles.length };
});
console.log("Found", results.count, "videos", results.titles);
With this approach, the model doesn’t need to handle all tools manually. It discovers, loads, and orchestrates them in a predictable way. MCP combined with a gateway like Bifrost transforms complex, multi-step workflows into manageable, deterministic processes.
✅ Basic Tool Calling Flow
The default tool calling pattern in Bifrost is stateless with explicit execution:
1. POST /v1/chat/completions
→ LLM returns tool call suggestions (NOT executed)
2. Your app reviews the tool calls
→ Apply security rules, get user approval if needed
3. POST /v1/mcp/tool/execute
→ Execute approved tool calls explicitly
4. POST /v1/chat/completions
→ Continue conversation with tool results
This pattern ensures:
- No unintended API calls to external services
- No accidental data modification or deletion
- Full audit trail of all tool operations
- Human oversight for sensitive operations
💬 Feedback
If you have any questions about the project, our support team will be happy to answer them in the comments or on the Discord channel.
🔗 Useful links
You can find more materials on our project here:
Thank you for reading the article!
Top comments (6)
This is a good idea since MCP is trending these days.
Yes, I also think it would be useful to implement this in AI Gateway.
Insightful read! MCP is quickly becoming the 'USB-C' for AI, and seeing how Bifrost acts as that central hub for tool management makes a lot of sense. The way you’ve explained making multi-step tasks manageable and secure through explicit execution flows is very helpful.
Thanks! I think too
How do you rate the new features?
The explicit tool execution flow you outlined in step 3 is something a lot of teams skip when moving fast, and it bites them later. Inserting a review checkpoint between "LLM suggests tool call" and "tool actually runs" is where you catch the weirdest failure modes — especially when models hallucinate parameter values that are syntactically valid but semantically wrong.
One thing worth adding to the predictability story: gateway-level observability. Centralizing through a gateway is great, but you need trace-level logging tied to specific model turns, not just aggregate latency. When a multi-step workflow goes sideways, you want to replay exactly what tool schema the model saw, what it returned, and which execution path was taken.
Also curious about Bifrost's handling of MCP server failures mid-workflow. Does it support partial rollback, or does retry logic get exposed to the orchestration layer? With stateful tools (database writes, API calls with side effects), this becomes the real complexity pretty quickly.