<?xml version="1.0" encoding="UTF-8"?>
<rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:dc="http://purl.org/dc/elements/1.1/">
  <channel>
    <title>DEV Community: Yogi</title>
    <description>The latest articles on DEV Community by Yogi (@ybear_81).</description>
    <link>https://dev.to/ybear_81</link>
    <image>
      <url>https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F4001074%2F73badd85-7b88-4fe3-b220-ada950af9cb9.png</url>
      <title>DEV Community: Yogi</title>
      <link>https://dev.to/ybear_81</link>
    </image>
    <atom:link rel="self" type="application/rss+xml" href="https://dev.to/feed/ybear_81"/>
    <language>en</language>
    <item>
      <title>Anatomy of an enterprise AI agent: a vendor-agnostic walkthrough</title>
      <dc:creator>Yogi</dc:creator>
      <pubDate>Tue, 30 Jun 2026 08:38:36 +0000</pubDate>
      <link>https://dev.to/ybear_81/anatomy-of-an-enterprise-ai-agent-a-vendor-agnostic-walkthrough-50ib</link>
      <guid>https://dev.to/ybear_81/anatomy-of-an-enterprise-ai-agent-a-vendor-agnostic-walkthrough-50ib</guid>
      <description>&lt;p&gt;Most enterprise platforms now ship some version of an "AI agent studio." The branding differs, but the architecture underneath is remarkably consistent. Here's a breakdown based on a recent build, generalized so it applies regardless of which platform you're using.&lt;/p&gt;

&lt;p&gt;&lt;a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2Fr8uerj6dnnwylzt31cli.png" class="article-body-image-wrapper"&gt;&lt;img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2Fr8uerj6dnnwylzt31cli.png" alt=" " width="799" height="464"&gt;&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;At the top level: a user prompt enters the platform, gets routed to the right tool based on intent, and the tool pulls from live backend data rather than a static export. The response is synthesized back in natural language — with an optional export action if the user wants it as a file or email.&lt;/p&gt;

&lt;p&gt;&lt;a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2Fuhjzugca82oyc0xdvi8z.png" class="article-body-image-wrapper"&gt;&lt;img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2Fuhjzugca82oyc0xdvi8z.png" alt=" " width="800" height="422"&gt;&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;Zooming in, the agent itself is composed of a few consistent building blocks: metadata describing what the agent does, an LLM doing the reasoning, topics and guardrails scoping its behavior, and a set of discrete tools — usually mapped to business objects — that connect to the underlying data store.&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;A note on portability&lt;/strong&gt;&lt;br&gt;
This pattern isn't tied to one platform. The same skeleton — router, scoped tools, guardrails, triggers — shows up in Oracle AI Agent Studio, Salesforce Agentforce, Microsoft Copilot Studio, AWS Bedrock Agents, and MCP-based integrations. What differs is terminology and how much orchestration each platform abstracts away. Understanding the underlying pattern, not just one vendor's UI, is what makes these skills transferable across ecosystems.&lt;/p&gt;

&lt;p&gt;Happy to discuss this further in the comments — feel free to reach out with any questions.&lt;/p&gt;

</description>
      <category>ai</category>
      <category>agenticai</category>
      <category>architecture</category>
      <category>mcp</category>
    </item>
    <item>
      <title>How I Connected Claude Desktop to Live Salesforce CRM Data Using MCP</title>
      <dc:creator>Yogi</dc:creator>
      <pubDate>Wed, 24 Jun 2026 23:15:08 +0000</pubDate>
      <link>https://dev.to/ybear_81/how-i-connected-claude-desktop-to-live-salesforce-crm-data-using-mcp-3p50</link>
      <guid>https://dev.to/ybear_81/how-i-connected-claude-desktop-to-live-salesforce-crm-data-using-mcp-3p50</guid>
      <description>&lt;div class="highlight js-code-highlight"&gt;
&lt;pre class="highlight plaintext"&gt;&lt;code&gt;
&lt;/code&gt;&lt;/pre&gt;

&lt;/div&gt;



&lt;p&gt;I recently deployed a real-time integration between Claude Desktop and Salesforce CRM using Model Context Protocol (MCP) — and it changed how I think about AI in enterprise operations.&lt;/p&gt;

&lt;p&gt;Here's a practical walkthrough of what I built, the security architecture behind it, and what I learned along the way.&lt;/p&gt;

&lt;h2&gt;
  
  
  The problem I was trying to solve
&lt;/h2&gt;

&lt;p&gt;As part of my work, I was spending too much time manually navigating Salesforce to answer questions&lt;/p&gt;

&lt;p&gt;Every answer required logging into Salesforce, running a report, cross-referencing opportunities, and building a mental model of the data. I wanted to just ask the question in plain English and get the answer — against live CRM data, not a stale export.&lt;/p&gt;

&lt;p&gt;Enter Model Context Protocol (MCP).&lt;/p&gt;

&lt;h2&gt;
  
  
  What is MCP?
&lt;/h2&gt;

&lt;p&gt;MCP (Model Context Protocol) is an open standard from Anthropic that lets AI models like Claude connect to external data sources and tools through a standardized interface.&lt;/p&gt;

&lt;p&gt;Instead of building custom APIs for every data source, MCP defines:&lt;/p&gt;

&lt;ul&gt;
&lt;li&gt;A server (the data source, in this case Salesforce)&lt;/li&gt;
&lt;li&gt;A client (Claude Desktop)&lt;/li&gt;
&lt;li&gt;A protocol for tool discovery, invocation, and response&lt;/li&gt;
&lt;/ul&gt;

&lt;p&gt;Salesforce now ships a Hosted MCP Server, which means the connection layer is managed for you — you just need to configure authentication and define your connected app.&lt;/p&gt;

&lt;h2&gt;
  
  
  Architecture overview
&lt;/h2&gt;

&lt;p&gt;The integration has three layers:&lt;/p&gt;

&lt;p&gt;&lt;a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2F4lt3r4msdmvar3eaeugj.png" class="article-body-image-wrapper"&gt;&lt;img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2F4lt3r4msdmvar3eaeugj.png" alt=" " width="800" height="598"&gt;&lt;/a&gt;&lt;/p&gt;

&lt;p&gt;&lt;strong&gt;Request flow&lt;/strong&gt;&lt;/p&gt;

&lt;ol&gt;
&lt;li&gt;You type a natural language question in Claude Desktop&lt;/li&gt;
&lt;li&gt;Claude identifies the right MCP tool to call (e.g. query_opportunities)&lt;/li&gt;
&lt;li&gt;The MCP client translates the request into a Salesforce API call&lt;/li&gt;
&lt;li&gt;The Salesforce Hosted MCP Server executes the query via SOQL&lt;/li&gt;
&lt;li&gt;Results return to Claude, which synthesizes a natural language answer&lt;/li&gt;
&lt;/ol&gt;

&lt;h2&gt;
  
  
  The security architecture — OAuth 2.0 + PKCE
&lt;/h2&gt;

&lt;p&gt;This is where most guides gloss over the hard part. Getting enterprise AI-to-CRM security right requires careful attention to token flows, scopes, and least-privilege access — especially when an AI model has live read access to customer data.&lt;/p&gt;

&lt;p&gt;Why PKCE matters&lt;/p&gt;

&lt;p&gt;PKCE (Proof Key for Code Exchange) is essential for public client integrations where you cannot safely store a client secret. Claude Desktop running locally is a public client — there's no server-side secret storage. PKCE solves this by:&lt;/p&gt;

&lt;p&gt;Generating a random code_verifier on the client at the start of each auth flow&lt;br&gt;
Hashing it to create a code_challenge sent with the authorization request&lt;br&gt;
Sending the original code_verifier when exchanging the authorization code for tokens&lt;br&gt;
The auth server verifies the hash matches — proving the token request came from the same client that initiated the flow&lt;/p&gt;

&lt;p&gt;Without PKCE, an intercepted authorization code could be exchanged for tokens by a different client. With PKCE, the code is useless without the verifier that only the originating client holds.&lt;/p&gt;

&lt;h2&gt;
  
  
  Salesforce Connected App setup
&lt;/h2&gt;



&lt;div class="highlight js-code-highlight"&gt;
&lt;pre class="highlight plaintext"&gt;&lt;code&gt;# Create Connected App in Salesforce Setup with:
# - OAuth 2.0 enabled
# - PKCE required
# - Callback URL: http://localhost:{PORT}/callback
# - Scopes: api, refresh_token (principle of least privilege)
# - No client secret (public client flow)
&lt;/code&gt;&lt;/pre&gt;

&lt;/div&gt;



&lt;h2&gt;
  
  
  MCP server configuration (claude_desktop_config.json)
&lt;/h2&gt;



&lt;div class="highlight js-code-highlight"&gt;
&lt;pre class="highlight json"&gt;&lt;code&gt;&lt;span class="err"&gt;json&lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt;
  &lt;/span&gt;&lt;span class="nl"&gt;"mcpServers"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt;
    &lt;/span&gt;&lt;span class="nl"&gt;"salesforce"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt;
      &lt;/span&gt;&lt;span class="nl"&gt;"command"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="s2"&gt;"sf"&lt;/span&gt;&lt;span class="p"&gt;,&lt;/span&gt;&lt;span class="w"&gt;
      &lt;/span&gt;&lt;span class="nl"&gt;"args"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;[&lt;/span&gt;&lt;span class="s2"&gt;"mcp"&lt;/span&gt;&lt;span class="p"&gt;,&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="s2"&gt;"start"&lt;/span&gt;&lt;span class="p"&gt;],&lt;/span&gt;&lt;span class="w"&gt;
      &lt;/span&gt;&lt;span class="nl"&gt;"env"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="p"&gt;{&lt;/span&gt;&lt;span class="w"&gt;
        &lt;/span&gt;&lt;span class="nl"&gt;"SALESFORCE_ORG_ALIAS"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="s2"&gt;"your-org-alias"&lt;/span&gt;&lt;span class="p"&gt;,&lt;/span&gt;&lt;span class="w"&gt;
        &lt;/span&gt;&lt;span class="nl"&gt;"MCP_AUTH_TYPE"&lt;/span&gt;&lt;span class="p"&gt;:&lt;/span&gt;&lt;span class="w"&gt; &lt;/span&gt;&lt;span class="s2"&gt;"oauth2-pkce"&lt;/span&gt;&lt;span class="w"&gt;
      &lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt;
    &lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt;
  &lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt;
&lt;/span&gt;&lt;span class="p"&gt;}&lt;/span&gt;&lt;span class="w"&gt;
&lt;/span&gt;&lt;/code&gt;&lt;/pre&gt;

&lt;/div&gt;



&lt;h2&gt;
  
  
  Authentication flow
&lt;/h2&gt;

&lt;p&gt;&lt;a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2F6ltr8pyvn5o31xlb3yd7.png" class="article-body-image-wrapper"&gt;&lt;img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.us-east-2.amazonaws.com%2Fuploads%2Farticles%2F6ltr8pyvn5o31xlb3yd7.png" alt=" " width="800" height="360"&gt;&lt;/a&gt;&lt;/p&gt;

&lt;h2&gt;
  
  
  What it enables
&lt;/h2&gt;

&lt;p&gt;Claude queries the live data, reasons over it, and gives you a synthesized answer — no manual report-building required.&lt;/p&gt;

&lt;h2&gt;
  
  
  Key learnings
&lt;/h2&gt;

&lt;ol&gt;
&lt;li&gt;MCP is becoming the standard for enterprise AI integration&lt;/li&gt;
&lt;/ol&gt;

&lt;p&gt;The pattern MCP establishes — standardized tool definitions, structured request/response, discoverable capabilities — is exactly what enterprise AI needs. It's analogous to how REST APIs standardized web service integration in the 2000s.&lt;/p&gt;

&lt;ol&gt;
&lt;li&gt;Least-privilege access is non-negotiable&lt;/li&gt;
&lt;/ol&gt;

&lt;p&gt;Only grant the scopes your use case requires. For read-only pipeline reviews, api scope with read-only profiles is sufficient. Don't grant write access unless you specifically need it — an AI with write access to your CRM is a very different risk profile.&lt;/p&gt;

&lt;ol&gt;
&lt;li&gt;Token lifecycle management matters&lt;/li&gt;
&lt;/ol&gt;

&lt;p&gt;Refresh token rotation, expiry handling, and re-authentication flows need to be part of your implementation plan. Salesforce's default refresh token expiry is org-configurable — make sure it aligns with your operational workflow.&lt;/p&gt;

&lt;ol&gt;
&lt;li&gt;SFDX CLI session management simplifies operations&lt;/li&gt;
&lt;/ol&gt;

&lt;p&gt;Using sf org login web to establish authenticated sessions and letting the MCP server inherit those sessions reduces the auth complexity significantly compared to managing tokens directly.&lt;/p&gt;




&lt;p&gt;Follow for more posts on enterprise AI integration, MCP, and operational AI tooling.&lt;/p&gt;

</description>
      <category>mcp</category>
      <category>ai</category>
      <category>claude</category>
      <category>security</category>
    </item>
  </channel>
</rss>
