woods 1.1.0 → 1.3.0

data/lib/woods.rb

@@ -31,19 +31,113 @@ module Woods
 
   CONFIG_MUTEX = Mutex.new
 
+  # Console MCP secure defaults — Layer 3 column-name redaction.
+  #
+  # Columns named here are replaced with `[REDACTED]` in every MCP tool
+  # response. This list targets credential columns that appear with the
+  # same names across Devise, Doorkeeper, Rodauth, has_secure_password,
+  # devise-two-factor, OAuth integrations, and hand-rolled auth code.
+  #
+  # Intentionally omitted because they cause over-redaction in apps that
+  # use them for non-secret purposes:
+  #   - `key` — ActiveStorage blob keys, EAV key columns, translation keys
+  #   - `name` — universal non-secret identifier
+  #   - PII columns (`ssn`, `tax_id`, `dob`) — org-specific compliance concern
+  #
+  # Host apps extend this by reassigning `console_redacted_columns` to
+  # `Woods::DEFAULT_CONSOLE_REDACTED_COLUMNS + %w[extra_column]`, or
+  # override entirely to remove a default.
+  DEFAULT_CONSOLE_REDACTED_COLUMNS = %w[
+    password
+    password_digest
+    password_salt
+    encrypted_password
+    crypted_password
+    salt
+    otp_secret
+    encrypted_otp_secret
+    two_factor_secret
+    backup_codes
+    consumed_timestep
+    reset_password_token
+    confirmation_token
+    unlock_token
+    remember_token
+    invitation_token
+    access_token
+    refresh_token
+    auth_token
+    api_token
+    api_key
+    bearer_token
+    client_secret
+    webhook_secret
+    signing_secret
+    session_secret
+    private_key
+    encrypted_private_key
+    key_hash
+    token
+    secret
+  ].freeze
+
+  # Console MCP secure defaults — Layer 1 table-level blocking.
+  #
+  # Tables named here are rejected outright before any SQL reaches the
+  # database. This list targets authentication and credential storage
+  # tables that carry secrets or session state across all major auth
+  # stacks (Devise, Doorkeeper, Rodauth, has_secure_password, Sorcery,
+  # OmniAuth, and hand-rolled token systems).
+  #
+  # Intentionally omitted to avoid over-blocking benign apps:
+  #   - `users` / `accounts` — many apps expose safe columns from these
+  #     tables and operators should decide explicitly.
+  #   - PII-heavy but auth-unrelated tables (`payments`, `addresses`) —
+  #     org-specific compliance concern, not a universal default.
+  #
+  # To keep the defaults and add more tables:
+  #   Woods.configure { |c| c.console_blocked_tables =
+  #     Woods::DEFAULT_CONSOLE_BLOCKED_TABLES + %w[extra_table] }
+  #
+  # To replace the defaults entirely (including removing entries):
+  #   Woods.configure { |c| c.console_blocked_tables = %w[only_this] }
+  #
+  # To disable Layer 1 (gate becomes inactive; other layers still apply):
+  #   Woods.configure { |c| c.console_blocked_tables = [] }
+  DEFAULT_CONSOLE_BLOCKED_TABLES = %w[
+    sessions
+    api_keys
+    credentials
+    oauth_applications
+    oauth_access_tokens
+    oauth_refresh_tokens
+    identities
+    active_storage_blobs
+  ].freeze
+
   # ════════════════════════════════════════════════════════════════════════
   # Configuration
   # ════════════════════════════════════════════════════════════════════════
 
-  class Configuration
+  class Configuration # rubocop:disable Metrics/ClassLength
     attr_accessor :embedding_model, :include_framework_sources, :gem_configs,
                   :vector_store, :metadata_store, :graph_store, :embedding_provider, :log_level,
                   :vector_store_options, :metadata_store_options, :embedding_options,
-                  :concurrent_extraction, :precompute_flows, :enable_snapshots,
-                  :session_tracer_enabled, :session_store, :session_id_proc, :session_exclude_paths,
-                  :console_mcp_enabled, :console_mcp_path, :console_redacted_columns,
+                  :concurrent_extraction, :precompute_flows, :extract_navigation_edges, :enable_snapshots,
+                  :session_tracer_enabled, :session_tracer_allow_production,
+                  :session_store, :session_id_proc, :session_exclude_paths,
+                  :console_mcp_enabled, :console_mcp_path, :console_mcp_token,
+                  :console_mcp_allowed_origins,
+                  :console_redacted_columns,
+                  :console_redacted_key_values, :console_embedded_read_tools,
+                  :console_blocked_tables, :console_disabled_scanner_patterns,
+                  :console_credential_defense_enabled,
+                  :console_credential_rotation_warning, :console_unsafe_eval_enabled,
+                  :console_unsafe_eval_confirmation, :console_unsafe_eval_audit_log_path,
                   :notion_api_token, :notion_database_ids,
-                  :cache_store, :cache_options
+                  :unblocked_api_token, :unblocked_collection_id, :unblocked_repo_url,
+                  :cache_store, :cache_options,
+                  :dump_retention_count
     attr_reader :max_context_tokens, :similarity_threshold, :extractors, :pretty_json, :context_format,
                 :cache_enabled
 
@@ -59,20 +153,50 @@ module Woods
       @pretty_json = true
       @concurrent_extraction = false
       @precompute_flows = false
+      @extract_navigation_edges = true
       @enable_snapshots = false
       @context_format = :markdown
       @session_tracer_enabled = false
+      @session_tracer_allow_production = false
       @session_store = nil
       @session_id_proc = nil
       @session_exclude_paths = []
       @console_mcp_enabled = false
       @console_mcp_path = '/mcp/console'
-      @console_redacted_columns = []
+      # Accept token from config or env var. Nil by default — the railtie
+      # refuses to wire the middleware in production without a real token
+      # and only warns loudly in non-prod when unset.
+      @console_mcp_token = ENV.fetch('WOODS_CONSOLE_MCP_TOKEN', nil)
+      # Origins allowed to reach the embedded console MCP. Loopback only
+      # by default; override in host initializers for tunneled or internal
+      # dashboard access.
+      @console_mcp_allowed_origins = %w[
+        http://localhost
+        http://127.0.0.1
+        http://[::1]
+      ]
+      @console_redacted_columns = DEFAULT_CONSOLE_REDACTED_COLUMNS.dup
+      @console_redacted_key_values = []
+      @console_embedded_read_tools = false
+      @console_blocked_tables = DEFAULT_CONSOLE_BLOCKED_TABLES.dup
+      @console_disabled_scanner_patterns = []
+      @console_credential_defense_enabled = true
+      @console_credential_rotation_warning = true
+      @console_unsafe_eval_enabled = nil # nil = fall back to env WOODS_CONSOLE_UNSAFE_EVAL
+      # Required collaborators when the opt-in is on. Both default to nil;
+      # the server refuses to boot with the opt-in set unless the host has
+      # wired them (fail-closed — see Server.build_embedded).
+      @console_unsafe_eval_confirmation = nil
+      @console_unsafe_eval_audit_log_path = nil
       @notion_api_token = nil
       @notion_database_ids = {}
+      @unblocked_api_token = nil
+      @unblocked_collection_id = nil
+      @unblocked_repo_url = nil
       @cache_enabled = false
       @cache_store = nil      # :redis, :solid_cache, :memory, or a CacheStore instance
       @cache_options = {}     # { redis: client, cache: store, ttl: { embeddings: 86400, ... } }
+      @dump_retention_count = 3
     end
 
     # @return [Pathname, String] Output directory, defaulting to Rails.root/tmp/woods

metadata

@@ -1,29 +1,63 @@
 --- !ruby/object:Gem::Specification
 name: woods
 version: !ruby/object:Gem::Version
-  version: 1.1.0
+  version: 1.3.0
 platform: ruby
 authors:
 - Leah Armstrong
 autorequire:
 bindir: exe
 cert_chain: []
-date: 2026-03-15 00:00:00.000000000 Z
+date: 2026-05-13 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: mcp
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.9.2
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 0.9.2
+    - - "<"
+      - !ruby/object:Gem::Version
+        version: '1.0'
+- !ruby/object:Gem::Dependency
+  name: msgpack
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.5'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.5'
+- !ruby/object:Gem::Dependency
+  name: prism
   requirement: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '0.6'
+        version: '1.4'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '0.6'
+        version: '1.4'
 - !ruby/object:Gem::Dependency
   name: railties
   requirement: !ruby/object:Gem::Requirement
@@ -69,6 +103,7 @@ files:
 - lib/generators/woods/pgvector_generator.rb
 - lib/generators/woods/templates/add_pgvector_to_woods.rb.erb
 - lib/generators/woods/templates/create_woods_tables.rb.erb
+- lib/generators/woods/templates/woods.rb.tt
 - lib/tasks/woods.rake
 - lib/tasks/woods_evaluation.rake
 - lib/woods.rb
@@ -91,15 +126,27 @@ files:
 - lib/woods/console/adapters/solid_queue_adapter.rb
 - lib/woods/console/audit_logger.rb
 - lib/woods/console/bridge.rb
+- lib/woods/console/bridge_protocol.rb
 - lib/woods/console/confirmation.rb
 - lib/woods/console/connection_manager.rb
 - lib/woods/console/console_response_renderer.rb
+- lib/woods/console/credential_index.rb
+- lib/woods/console/credential_scanner.rb
+- lib/woods/console/dispatch_pipeline.rb
 - lib/woods/console/embedded_executor.rb
+- lib/woods/console/eval_guard.rb
 - lib/woods/console/model_validator.rb
 - lib/woods/console/rack_middleware.rb
+- lib/woods/console/redactor.rb
+- lib/woods/console/response_context.rb
 - lib/woods/console/safe_context.rb
+- lib/woods/console/scope_predicate_parser.rb
 - lib/woods/console/server.rb
+- lib/woods/console/sql_noise_stripper.rb
+- lib/woods/console/sql_table_scanner.rb
 - lib/woods/console/sql_validator.rb
+- lib/woods/console/table_gate.rb
+- lib/woods/console/tool_specs.rb
 - lib/woods/console/tools/tier1.rb
 - lib/woods/console/tools/tier2.rb
 - lib/woods/console/tools/tier3.rb
@@ -123,6 +170,7 @@ files:
 - lib/woods/embedding/openai.rb
 - lib/woods/embedding/provider.rb
 - lib/woods/embedding/text_preparer.rb
+- lib/woods/embedding/token_counter.rb
 - lib/woods/evaluation/baseline_runner.rb
 - lib/woods/evaluation/evaluator.rb
 - lib/woods/evaluation/metrics.rb
@@ -159,6 +207,7 @@ files:
 - lib/woods/extractors/rails_source_extractor.rb
 - lib/woods/extractors/rake_task_extractor.rb
 - lib/woods/extractors/route_extractor.rb
+- lib/woods/extractors/route_helper_resolver.rb
 - lib/woods/extractors/scheduled_job_extractor.rb
 - lib/woods/extractors/serializer_extractor.rb
 - lib/woods/extractors/service_extractor.rb
@@ -168,6 +217,8 @@ files:
 - lib/woods/extractors/test_mapping_extractor.rb
 - lib/woods/extractors/validator_extractor.rb
 - lib/woods/extractors/view_component_extractor.rb
+- lib/woods/extractors/view_engines/base.rb
+- lib/woods/extractors/view_engines/erb.rb
 - lib/woods/extractors/view_template_extractor.rb
 - lib/woods/feedback/gap_detector.rb
 - lib/woods/feedback/store.rb
@@ -183,8 +234,15 @@ files:
 - lib/woods/formatting/gpt_adapter.rb
 - lib/woods/formatting/human_adapter.rb
 - lib/woods/graph_analyzer.rb
+- lib/woods/index_artifact.rb
+- lib/woods/mcp/bearer_auth.rb
+- lib/woods/mcp/bootstrap_state.rb
 - lib/woods/mcp/bootstrapper.rb
+- lib/woods/mcp/config_resolver.rb
+- lib/woods/mcp/errors.rb
 - lib/woods/mcp/index_reader.rb
+- lib/woods/mcp/origin_guard.rb
+- lib/woods/mcp/provider_probe.rb
 - lib/woods/mcp/renderers/claude_renderer.rb
 - lib/woods/mcp/renderers/json_renderer.rb
 - lib/woods/mcp/renderers/markdown_renderer.rb
@@ -210,6 +268,7 @@ files:
 - lib/woods/resilience/circuit_breaker.rb
 - lib/woods/resilience/index_validator.rb
 - lib/woods/resilience/retryable_provider.rb
+- lib/woods/resolved_config.rb
 - lib/woods/retrieval/context_assembler.rb
 - lib/woods/retrieval/query_classifier.rb
 - lib/woods/retrieval/ranker.rb
@@ -230,13 +289,23 @@ files:
 - lib/woods/session_tracer/solid_cache_store.rb
 - lib/woods/session_tracer/store.rb
 - lib/woods/storage/graph_store.rb
+- lib/woods/storage/inapplicable_backend.rb
 - lib/woods/storage/metadata_store.rb
 - lib/woods/storage/pgvector.rb
 - lib/woods/storage/qdrant.rb
+- lib/woods/storage/snapshotter.rb
+- lib/woods/storage/snapshotter/metadata.rb
+- lib/woods/storage/snapshotter/vector.rb
 - lib/woods/storage/vector_store.rb
+- lib/woods/tasks.rb
 - lib/woods/temporal/json_snapshot_store.rb
 - lib/woods/temporal/snapshot_store.rb
 - lib/woods/token_utils.rb
+- lib/woods/unblocked/client.rb
+- lib/woods/unblocked/document_builder.rb
+- lib/woods/unblocked/exporter.rb
+- lib/woods/unblocked/rate_limiter.rb
+- lib/woods/util/host_guard.rb
 - lib/woods/version.rb
 homepage: https://github.com/lost-in-the/woods
 licenses: