Skip to content
SCC CLI

Project Schema

Schema reference for project-level configuration (.scc.yaml).

Location

Section titled “Location”

Place .scc.yaml in your repository root:

my-project/
├── .scc.yaml
├── src/
└── ...

Requirements

Section titled “Requirements”

For .scc.yaml to take effect:

  1. Org enables project delegation (delegation.projects.inherit_team_delegation: true)
  2. Team has delegation.allow_project_overrides: true
  3. Resources must not match security blocks
  4. Plugins must match defaults.allowed_plugins (if specified)

Top-Level Structure

Section titled “Top-Level Structure”
additional_plugins: []
additional_mcp_servers: []
session: {}

additional_plugins

Section titled “additional_plugins”

Plugins to add for this project.

additional_plugins:
  - project-linter@internal
  - react-tools@claude-plugins-official

Requirements:

  • Team must allow project overrides
  • Plugin must match defaults.allowed_plugins patterns
  • Plugin must not match org’s blocked_plugins

additional_mcp_servers

Section titled “additional_mcp_servers”

MCP servers for this project.

additional_mcp_servers:
  - name: project-api
    type: http
    url: https://api.myproject.com/mcp

HTTP/SSE Server

Section titled “HTTP/SSE Server”
additional_mcp_servers:
  - name: context7
    type: sse
    url: https://context7.com/api
    headers:
      Authorization: "Bearer ${CONTEXT7_TOKEN}"

Stdio Server

Section titled “Stdio Server”
additional_mcp_servers:
  - name: local-tool
    type: stdio
    command: /usr/local/bin/tool
    args:
      - --config
      - ./tool.conf

Requires:

  • Org to set security.allow_stdio_mcp: true
  • Command path to match security.allowed_stdio_prefixes
  • MCP server must match defaults.allowed_mcp_servers (if specified)

session

Section titled “session”

Session settings for this project.

session:
  timeout_hours: 8
  auto_resume: false

Project session settings override team settings.

Notes

Section titled “Notes”
  • Unknown keys are ignored; scc config validate will warn.
  • mcp_servers is accepted as a legacy alias for additional_mcp_servers.
  • .scc.yaml does not set team selection or entry directories.

Complete Example

Section titled “Complete Example”
additional_plugins:
  - project-linter@internal
  - react-devtools@claude-plugins-official
  - team-formatter@internal


additional_mcp_servers:
  - name: project-api
    type: http
    url: https://api.myproject.com/mcp
  - name: local-analyzer
    type: stdio
    command: /opt/tools/analyzer
    args:
      - --project
      - .


session:
  timeout_hours: 8
  auto_resume: true

Validation

Section titled “Validation”

Validate your project config:

Terminal window
# In the project directory
scc config validate


# Inspect denied additions
scc config explain --field denied

Common Issues

Section titled “Common Issues”

”Team disallows project overrides”

Section titled “”Team disallows project overrides””

Run:

Terminal window
scc config explain --field denied

Look for a “Denied Additions” entry with reason team '<team>' disabled project overrides.

”Plugin doesn’t match allowed patterns”

Section titled “”Plugin doesn’t match allowed patterns””

Run:

Terminal window
scc config explain --field denied

Look for a “Denied Additions” entry with reason Plugin not allowed by defaults.allowed_plugins.

”Blocked by security policy”

Section titled “”Blocked by security policy””

Run:

Terminal window
scc config explain --field blocked

Look for a “Blocked Items” entry showing the security.blocked_plugins pattern.