rails-active-mcp 3.1.11 → 3.3.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 4838199f9074adc409c21a05e2ba54fa081d92d19492293f0958de3aca0ad43b
-  data.tar.gz: 1717009443494a6d2790436b5c6831c30e149c5b0450abae0af848c4b1ee1c0c
+  metadata.gz: 5483e7e72b7d2ebd1e94669b20bd447fd1bd0b337a95f83b8a2f077569076e81
+  data.tar.gz: 0a5440105d9f5e11c92cbbfd6637f1dcf8e5264b7c8386de42e8969a44fa2871
 SHA512:
-  metadata.gz: 47100e8a9e667123d5465aa1e165392009055e8c084665a19e756c1cd07a609febcfcbeac74d5cf2dba0fc7be703d476911819b64c66143a6489cfff462ca8ca
-  data.tar.gz: ab592ed13aea076cb83b8a70969fd85f37ae3283fe01edb301fa0e748eaa4a7b830a34225ce368b73ff426c5e4239357517a99de5d9267d0f2594fa734f80064
+  metadata.gz: 12c56e9f36dd7f378232ba005b9431a6e9b88c31f44dd42f25ade608bf12d9ccf65eb49df8ab3b715a5149e81394ee6714630648c0217805a5c07d22de123e31
+  data.tar.gz: c57f0243963f7a74b528b240055f51925553d5fce3a85412bec19b41485dc06cc8d12412f90c6857eeceb13b983775311ebed1651147b5cf7e87937720331d75

data/README.md

@@ -332,6 +332,9 @@ Execute safe, read-only database queries:
 
 **Example prompt:**
 > "Get the 10 most recent orders"
+> "Count active users"
+
+You can pass an optional `where` hash to filter records before invoking the method. For example, `safe_query(model: "User", method: "count", where: { active: true })` runs `User.where(active: true).count`. The same applies to `sum`, `average`, `minimum`, `maximum`, `pluck`, and `exists?`.
 
 ### 4. `dry_run`
 

data/changelog.md

@@ -7,6 +7,10 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Added
+
+- `safe_query` now accepts an optional `where` hash to filter records before invoking terminal methods like `count`, `sum`, `pluck`, `exists?`, `minimum`, `maximum`, and `average`. Example: `safe_query(model: "User", method: "count", where: { active: true })` runs `User.where(active: true).count`.
+
 ### Changed
 
 ## [3.1.0] - 2026-02-09

data/lib/generators/rails_active_mcp/install/templates/initializer.rb

@@ -24,6 +24,11 @@ RailsActiveMcp.configure do |config|
   #   { pattern: /YourDangerousMethod/, description: "Your custom dangerous operation" }
   # ]
 
+  # Replace the safety checker entirely with your own implementation.
+  # The class must respond to .new(config) and the resulting instance must
+  # respond to safe?(code), analyze(code), and read_only?(code).
+  # config.safety_checker = MyCustomSafetyChecker
+
   # Environment-specific adjustments
   case Rails.env
   when 'production'

data/lib/rails_active_mcp/configuration.rb

@@ -9,7 +9,7 @@ module RailsActiveMcp
 
     # Safety and execution options
     attr_accessor :safe_mode, :max_results, :log_executions, :audit_file, :enabled
-    attr_accessor :custom_safety_patterns, :allowed_models
+    attr_accessor :custom_safety_patterns, :allowed_models, :safety_checker
 
     def initialize
       @command_timeout = 30
@@ -23,6 +23,7 @@ module RailsActiveMcp
       @audit_file = nil
       @custom_safety_patterns = []
       @allowed_models = []
+      @safety_checker = RailsActiveMcp::SafetyChecker
       @enabled = true
     end
 
@@ -41,7 +42,8 @@ module RailsActiveMcp
         [true, false].include?(log_executions) &&
         custom_safety_patterns.is_a?(Array) &&
         allowed_models.is_a?(Array) &&
-        [true, false].include?(enabled)
+        [true, false].include?(enabled) &&
+        !safety_checker.nil?
     end
 
     def validate?

data/lib/rails_active_mcp/console_executor.rb

@@ -17,7 +17,7 @@ module RailsActiveMcp
 
     def initialize(config)
       @config = config
-      @safety_checker = SafetyChecker.new(config)
+      @safety_checker = config.safety_checker.new(config)
     end
 
     def execute(code, timeout: nil, safe_mode: nil, capture_output: true)
@@ -47,7 +47,7 @@ module RailsActiveMcp
       }
     end
 
-    def execute_safe_query(model:, method:, args: [], limit: nil)
+    def execute_safe_query(model:, method:, args: [], where: nil, limit: nil)
       limit ||= @config.max_results
 
       begin
@@ -61,11 +61,15 @@ module RailsActiveMcp
         execute_with_rails_executor_and_connection do
           model_class = model.to_s.constantize
 
+          # Build base relation, applying optional WHERE conditions
+          relation = model_class
+          relation = relation.where(where) if where.is_a?(Hash) && where.any?
+
           # Build and execute query
           query = if args.empty?
-                    model_class.public_send(method)
+                    relation.public_send(method)
                   else
-                    model_class.public_send(method, *args)
+                    relation.public_send(method, *args)
                   end
 
           # Apply limit for enumerable results
@@ -78,6 +82,7 @@ module RailsActiveMcp
             model: model,
             method: method,
             args: args,
+            where: where,
             result: serialize_result(result),
             count: calculate_count(result),
             executed_at: Time.now
@@ -90,17 +95,19 @@ module RailsActiveMcp
           error_class: 'SafetyError',
           model: model,
           method: method,
-          args: args
+          args: args,
+          where: where
         }
       rescue StandardError => e
-        log_error(e, { model: model, method: method, args: args })
+        log_error(e, { model: model, method: method, args: args, where: where })
         {
           success: false,
           error: e.message,
           error_class: e.class.name,
           model: model,
           method: method,
-          args: args
+          args: args,
+          where: where
         }
       end
     end

data/lib/rails_active_mcp/sdk/tools/safe_query_tool.rb

@@ -22,6 +22,11 @@ module RailsActiveMcp
               type: 'array',
               description: 'Arguments for the query method'
             },
+            where: {
+              type: 'object',
+              description: 'Optional WHERE conditions as a hash (e.g. {"active": true, "status": "paid"}). Applied before the method is called.',
+              additionalProperties: true
+            },
             limit: {
               type: 'integer',
               description: 'Limit results (default: 100)'
@@ -38,21 +43,25 @@ module RailsActiveMcp
           open_world_hint: false
         )
 
-        def self.call(model:, method:, server_context:, args: [], limit: 100)
-          config = RailsActiveMcp.config
+        def self.call(model:, method:, server_context:, **options)
+          args = options.fetch(:args, [])
+          where = options[:where]
+          limit = options.fetch(:limit, 100)
 
+          config = RailsActiveMcp.config
           executor = RailsActiveMcp::ConsoleExecutor.new(config)
 
           result = executor.execute_safe_query(
             model: model,
             method: method,
             args: args,
+            where: where,
             limit: limit
           )
 
           if result[:success]
             output = []
-            output << "Query: #{model}.#{method}(#{args.join(', ')})"
+            output << "Query: #{format_query(model, method, args, where)}"
             output << "Count: #{result[:count]}" if result[:count]
             output << "Result: #{result[:result].inspect}"
 
@@ -64,6 +73,15 @@ module RailsActiveMcp
           end
         end
 
+        def self.format_query(model, method, args, where)
+          prefix = if where.is_a?(Hash) && where.any?
+                     "#{model}.where(#{where.inspect})"
+                   else
+                     model.to_s
+                   end
+          "#{prefix}.#{method}(#{args.join(', ')})"
+        end
+
         def self.error_response(message)
           MCP::Tool::Response.new(
             [{ type: 'text', text: message }],

data/lib/rails_active_mcp/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module RailsActiveMcp
-  VERSION = '3.1.11'
+  VERSION = '3.3.0'
 end

data/lib/rails_active_mcp.rb

@@ -34,7 +34,7 @@ module RailsActiveMcp
 
     # Quick access to safety checker
     def safe?(code)
-      SafetyChecker.new(config).safe?(code)
+      config.safety_checker.new(config).safe?(code)
     end
 
     # Quick execution method

data/rails_active_mcp.gemspec

@@ -63,7 +63,7 @@ Gem::Specification.new do |spec|
   spec.add_dependency 'rails', '>= 7.0', '< 9.0'
 
   # MCP SDK - Core protocol implementation (MCP 2025-11-25 spec)
-  spec.add_dependency 'mcp', '~> 0.9.2'
+  spec.add_dependency 'mcp', '>= 0.9.2', '< 1.0.0'
 
   # Core dependencies
   spec.add_dependency 'json', '~> 2.0'

metadata

@@ -1,13 +1,13 @@
 --- !ruby/object:Gem::Specification
 name: rails-active-mcp
 version: !ruby/object:Gem::Version
-  version: 3.1.11
+  version: 3.3.0
 platform: ruby
 authors:
 - Brandyn Britton
 bindir: exe
 cert_chain: []
-date: 2026-04-02 00:00:00.000000000 Z
+date: 2026-05-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: concurrent-ruby
@@ -47,16 +47,22 @@ dependencies:
   name: mcp
   requirement: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
         version: 0.9.2
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.0.0
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
-    - - "~>"
+    - - ">="
       - !ruby/object:Gem::Version
         version: 0.9.2
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: 1.0.0
 - !ruby/object:Gem::Dependency
   name: json
   requirement: !ruby/object:Gem::Requirement