0nmcp 1.4.0 → 1.6.0

package/engine/platforms.js

@@ -0,0 +1,254 @@
+// ============================================================
+// 0nMCP — Engine: Platform Config Generator
+// ============================================================
+// Generates MCP server configurations for all major AI
+// platforms: Claude Desktop, Cursor, Windsurf, Gemini,
+// Continue, Cline, and OpenAI.
+// ============================================================
+
+import { existsSync, readFileSync, writeFileSync, mkdirSync, copyFileSync } from "fs";
+import { join, dirname } from "path";
+import { homedir, platform as osPlatform } from "os";
+
+const HOME = homedir();
+const IS_MAC = osPlatform() === "darwin";
+const IS_WIN = osPlatform() === "win32";
+
+// ── Platform definitions ───────────────────────────────────
+
+const PLATFORMS = {
+  claude_desktop: {
+    name: "Claude Desktop",
+    format: "json",
+    configPath: () => {
+      if (IS_MAC) return join(HOME, "Library", "Application Support", "Claude", "claude_desktop_config.json");
+      if (IS_WIN) return join(process.env.APPDATA || "", "Claude", "claude_desktop_config.json");
+      return join(HOME, ".config", "Claude", "claude_desktop_config.json");
+    },
+    generate: (opts) => ({
+      mcpServers: {
+        "0nmcp": {
+          command: opts.command || "npx",
+          args: opts.args || ["-y", "0nmcp"],
+          ...(opts.env && Object.keys(opts.env).length > 0 ? { env: opts.env } : {}),
+        },
+      },
+    }),
+  },
+
+  cursor: {
+    name: "Cursor",
+    format: "json",
+    configPath: () => join(HOME, ".cursor", "mcp.json"),
+    generate: (opts) => ({
+      mcpServers: {
+        "0nmcp": {
+          command: opts.command || "npx",
+          args: opts.args || ["-y", "0nmcp"],
+          ...(opts.env && Object.keys(opts.env).length > 0 ? { env: opts.env } : {}),
+        },
+      },
+    }),
+  },
+
+  windsurf: {
+    name: "Windsurf",
+    format: "json",
+    configPath: () => join(HOME, ".codeium", "windsurf", "mcp_config.json"),
+    generate: (opts) => {
+      if (opts.mode === "http") {
+        return {
+          mcpServers: {
+            "0nmcp": {
+              serverUrl: opts.httpUrl || "http://localhost:3000/mcp",
+            },
+          },
+        };
+      }
+      return {
+        mcpServers: {
+          "0nmcp": {
+            command: opts.command || "npx",
+            args: opts.args || ["-y", "0nmcp"],
+            ...(opts.env && Object.keys(opts.env).length > 0 ? { env: opts.env } : {}),
+          },
+        },
+      };
+    },
+  },
+
+  gemini: {
+    name: "Gemini",
+    format: "json",
+    configPath: () => join(HOME, ".gemini", "settings.json"),
+    generate: (opts) => ({
+      mcpServers: {
+        "0nmcp": {
+          command: opts.command || "npx",
+          args: opts.args || ["-y", "0nmcp"],
+        },
+      },
+    }),
+  },
+
+  continue: {
+    name: "Continue",
+    format: "yaml",
+    configPath: () => join(HOME, ".continue", "config.yaml"),
+    generate: (opts) => {
+      const cmd = opts.command || "npx";
+      const args = opts.args || ["-y", "0nmcp"];
+      const argsYaml = args.map(a => `      - "${a}"`).join("\n");
+      let yaml = `mcpServers:\n  - name: 0nmcp\n    command: ${cmd}\n    args:\n${argsYaml}\n`;
+      if (opts.env && Object.keys(opts.env).length > 0) {
+        yaml += "    env:\n";
+        for (const [k, v] of Object.entries(opts.env)) {
+          yaml += `      ${k}: "${v}"\n`;
+        }
+      }
+      return yaml;
+    },
+  },
+
+  cline: {
+    name: "Cline",
+    format: "json",
+    configPath: () => {
+      if (IS_MAC) return join(HOME, "Library", "Application Support", "Code", "User", "globalStorage", "saoudrizwan.claude-dev", "settings", "cline_mcp_settings.json");
+      if (IS_WIN) return join(process.env.APPDATA || "", "Code", "User", "globalStorage", "saoudrizwan.claude-dev", "settings", "cline_mcp_settings.json");
+      return join(HOME, ".config", "Code", "User", "globalStorage", "saoudrizwan.claude-dev", "settings", "cline_mcp_settings.json");
+    },
+    generate: (opts) => ({
+      mcpServers: {
+        "0nmcp": {
+          command: opts.command || "npx",
+          args: opts.args || ["-y", "0nmcp"],
+          ...(opts.env && Object.keys(opts.env).length > 0 ? { env: opts.env } : {}),
+          alwaysAllow: [],
+          disabled: false,
+        },
+      },
+    }),
+  },
+
+  openai: {
+    name: "OpenAI",
+    format: "json",
+    configPath: () => null, // No local config file — HTTP only
+    generate: (opts) => ({
+      type: "streamable-http",
+      url: opts.httpUrl || "http://localhost:3000/mcp",
+      instructions: "Start the 0nMCP HTTP server first: npx 0nmcp serve --port 3000. Then add this URL as an MCP connector in OpenAI settings.",
+    }),
+  },
+};
+
+/**
+ * Generate config for a single platform.
+ * @param {string} platform - Platform key
+ * @param {object} options - { command?, args?, env?, mode?, httpUrl? }
+ * @returns {{ config: object|string, path: string|null, format: string, name: string }}
+ */
+export function generatePlatformConfig(platform, options = {}) {
+  const p = PLATFORMS[platform];
+  if (!p) throw new Error(`Unknown platform: ${platform}. Available: ${Object.keys(PLATFORMS).join(", ")}`);
+
+  return {
+    config: p.generate(options),
+    path: p.configPath(),
+    format: p.format,
+    name: p.name,
+  };
+}
+
+/**
+ * Generate configs for all platforms.
+ * @param {object} options
+ * @returns {Record<string, { config: object|string, path: string|null, format: string, name: string }>}
+ */
+export function generateAllPlatformConfigs(options = {}) {
+  const configs = {};
+  for (const key of Object.keys(PLATFORMS)) {
+    configs[key] = generatePlatformConfig(key, options);
+  }
+  return configs;
+}
+
+/**
+ * Install a platform config to disk.
+ * Merges 0nmcp entry into existing config if present. Backs up existing file.
+ * @param {string} platform
+ * @param {object} options
+ * @returns {{ success: boolean, path: string, backed_up?: string, error?: string }}
+ */
+export function installPlatformConfig(platform, options = {}) {
+  const { config, path, format, name } = generatePlatformConfig(platform, options);
+
+  if (!path) {
+    return { success: false, path: null, error: `${name} does not use a local config file (HTTP-only).` };
+  }
+
+  try {
+    const dir = dirname(path);
+    if (!existsSync(dir)) mkdirSync(dir, { recursive: true });
+
+    let backed_up;
+
+    if (format === "json") {
+      let existing = {};
+      if (existsSync(path)) {
+        // Backup existing
+        backed_up = `${path}.bak.${Date.now()}`;
+        copyFileSync(path, backed_up);
+        existing = JSON.parse(readFileSync(path, "utf-8"));
+      }
+
+      // Merge mcpServers
+      if (config.mcpServers) {
+        existing.mcpServers = existing.mcpServers || {};
+        Object.assign(existing.mcpServers, config.mcpServers);
+      }
+
+      writeFileSync(path, JSON.stringify(existing, null, 2));
+    } else if (format === "yaml") {
+      if (existsSync(path)) {
+        backed_up = `${path}.bak.${Date.now()}`;
+        copyFileSync(path, backed_up);
+        // Append to existing YAML
+        const existing = readFileSync(path, "utf-8");
+        writeFileSync(path, existing + "\n" + config);
+      } else {
+        writeFileSync(path, typeof config === "string" ? config : JSON.stringify(config, null, 2));
+      }
+    }
+
+    return { success: true, path, backed_up, name };
+  } catch (err) {
+    return { success: false, path, error: err.message };
+  }
+}
+
+/**
+ * Get info about all platforms and whether configs are installed.
+ * @returns {Array<{ platform: string, name: string, configPath: string|null, installed: boolean, format: string }>}
+ */
+export function getPlatformInfo() {
+  return Object.entries(PLATFORMS).map(([key, p]) => {
+    const path = p.configPath();
+    return {
+      platform: key,
+      name: p.name,
+      configPath: path,
+      installed: path ? existsSync(path) : false,
+      format: p.format,
+    };
+  });
+}
+
+/**
+ * Get list of supported platform keys.
+ * @returns {string[]}
+ */
+export function listPlatforms() {
+  return Object.keys(PLATFORMS);
+}

package/engine/validator.js

@@ -0,0 +1,257 @@
+// ============================================================
+// 0nMCP — Engine: API Key Validator
+// ============================================================
+// Verifies API credentials by making lightweight, read-only
+// test calls to each service. All calls are non-destructive.
+// ============================================================
+
+import { SERVICE_CATALOG } from "../catalog.js";
+
+const TIMEOUT_MS = 10000;
+
+// ── Verification endpoints per service ─────────────────────
+
+const VERIFICATION_ENDPOINTS = {
+  stripe: {
+    url: "https://api.stripe.com/v1/balance",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status === 200,
+  },
+  openai: {
+    url: "https://api.openai.com/v1/models",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status === 200,
+  },
+  slack: {
+    url: "https://slack.com/api/auth.test",
+    method: "POST",
+    headers: (c) => ({ Authorization: `Bearer ${c.botToken}`, "Content-Type": "application/json" }),
+    check: (r, d) => d?.ok === true,
+  },
+  discord: {
+    url: "https://discord.com/api/v10/users/@me",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bot ${c.botToken}` }),
+    check: (r) => r.status === 200,
+  },
+  github: {
+    url: "https://api.github.com/user",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.token}`, "User-Agent": "0nMCP-Engine", Accept: "application/vnd.github+json" }),
+    check: (r) => r.status === 200,
+  },
+  twilio: {
+    url: (c) => `https://api.twilio.com/2010-04-01/Accounts/${c.accountSid}.json`,
+    method: "GET",
+    headers: (c) => ({ Authorization: "Basic " + Buffer.from(`${c.accountSid}:${c.authToken}`).toString("base64") }),
+    check: (r) => r.status === 200,
+  },
+  sendgrid: {
+    url: "https://api.sendgrid.com/v3/scopes",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status === 200,
+  },
+  resend: {
+    url: "https://api.resend.com/domains",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status === 200,
+  },
+  airtable: {
+    url: "https://api.airtable.com/v0/meta/bases",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status === 200,
+  },
+  notion: {
+    url: "https://api.notion.com/v1/users/me",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}`, "Notion-Version": "2022-06-28" }),
+    check: (r) => r.status === 200,
+  },
+  linear: {
+    url: "https://api.linear.app/graphql",
+    method: "POST",
+    headers: (c) => ({ Authorization: c.apiKey, "Content-Type": "application/json" }),
+    body: JSON.stringify({ query: "{ viewer { id } }" }),
+    check: (r, d) => !!d?.data?.viewer?.id,
+  },
+  shopify: {
+    url: (c) => `https://${c.store}.myshopify.com/admin/api/2024-01/shop.json`,
+    method: "GET",
+    headers: (c) => ({ "X-Shopify-Access-Token": c.accessToken }),
+    check: (r) => r.status === 200,
+  },
+  hubspot: {
+    url: "https://api.hubapi.com/crm/v3/objects/contacts?limit=1",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.accessToken}` }),
+    check: (r) => r.status === 200,
+  },
+  supabase: {
+    url: (c) => `https://${c.projectRef}.supabase.co/rest/v1/`,
+    method: "GET",
+    headers: (c) => ({ apikey: c.apiKey, Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status <= 404, // 200 or 404 both mean auth works
+  },
+  calendly: {
+    url: "https://api.calendly.com/users/me",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.apiKey}` }),
+    check: (r) => r.status === 200,
+  },
+  google_calendar: {
+    url: "https://www.googleapis.com/calendar/v3/users/me/calendarList?maxResults=1",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}` }),
+    check: (r) => r.status === 200,
+  },
+  gmail: {
+    url: "https://gmail.googleapis.com/gmail/v1/users/me/profile",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}` }),
+    check: (r) => r.status === 200,
+  },
+  google_sheets: {
+    url: "https://sheets.googleapis.com/v4/spreadsheets",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}` }),
+    check: (r) => r.status === 200 || r.status === 400, // 400 = auth works, no spreadsheet ID
+  },
+  google_drive: {
+    url: "https://www.googleapis.com/drive/v3/about?fields=user",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}` }),
+    check: (r) => r.status === 200,
+  },
+  jira: {
+    url: (c) => `https://${c.domain}.atlassian.net/rest/api/3/myself`,
+    method: "GET",
+    headers: (c) => ({ Authorization: "Basic " + Buffer.from(`${c.email}:${c.apiToken}`).toString("base64"), Accept: "application/json" }),
+    check: (r) => r.status === 200,
+  },
+  zendesk: {
+    url: (c) => `https://${c.subdomain}.zendesk.com/api/v2/users/me.json`,
+    method: "GET",
+    headers: (c) => ({ Authorization: "Basic " + Buffer.from(`${c.email}/token:${c.apiToken}`).toString("base64") }),
+    check: (r) => r.status === 200,
+  },
+  mailchimp: {
+    url: (c) => {
+      const dc = c.apiKey.includes("-") ? c.apiKey.split("-").pop() : "us1";
+      return `https://${dc}.api.mailchimp.com/3.0/`;
+    },
+    method: "GET",
+    headers: (c) => ({ Authorization: "Basic " + Buffer.from(`anystring:${c.apiKey}`).toString("base64") }),
+    check: (r) => r.status === 200,
+  },
+  zoom: {
+    url: "https://api.zoom.us/v2/users/me",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}` }),
+    check: (r) => r.status === 200,
+  },
+  microsoft: {
+    url: "https://graph.microsoft.com/v1.0/me",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}` }),
+    check: (r) => r.status === 200,
+  },
+  mongodb: {
+    url: (c) => `https://data.mongodb-api.com/app/${c.appId}/endpoint/data/v1/action/find`,
+    method: "POST",
+    headers: (c) => ({ "api-key": c.apiKey, "Content-Type": "application/json" }),
+    body: JSON.stringify({ dataSource: "Cluster0", database: "test", collection: "test" }),
+    check: (r) => r.status === 200 || r.status === 400, // 400 = auth works, bad params
+  },
+  crm: {
+    url: "https://services.leadconnectorhq.com/contacts/?limit=1",
+    method: "GET",
+    headers: (c) => ({ Authorization: `Bearer ${c.access_token}`, Version: "2021-07-28" }),
+    check: (r) => r.status === 200,
+  },
+};
+
+/**
+ * Verify credentials for a single service.
+ * @param {string} service
+ * @param {Record<string, string>} credentials
+ * @returns {Promise<{ valid: boolean, status: number, message: string, latency_ms: number }>}
+ */
+export async function verifyCredentials(service, credentials) {
+  const endpoint = VERIFICATION_ENDPOINTS[service];
+  if (!endpoint) {
+    return { valid: false, status: 0, message: "No verification endpoint available", latency_ms: 0, skipped: true };
+  }
+
+  const start = Date.now();
+  const controller = new AbortController();
+  const timeout = setTimeout(() => controller.abort(), TIMEOUT_MS);
+
+  try {
+    const url = typeof endpoint.url === "function" ? endpoint.url(credentials) : endpoint.url;
+    const headers = endpoint.headers(credentials);
+    const options = { method: endpoint.method, headers, signal: controller.signal };
+
+    if (endpoint.body && endpoint.method !== "GET") {
+      options.body = endpoint.body;
+    }
+
+    const response = await fetch(url, options);
+    const data = await response.json().catch(() => null);
+    const latency_ms = Date.now() - start;
+
+    const valid = endpoint.check(response, data);
+    return {
+      valid,
+      status: response.status,
+      message: valid ? "Credentials verified" : `Verification failed (HTTP ${response.status})`,
+      latency_ms,
+    };
+  } catch (err) {
+    return {
+      valid: false,
+      status: 0,
+      message: err.name === "AbortError" ? "Verification timed out" : err.message,
+      latency_ms: Date.now() - start,
+    };
+  } finally {
+    clearTimeout(timeout);
+  }
+}
+
+/**
+ * Verify all connected services in parallel.
+ * @param {Record<string, { credentials: Record<string, string> }>} connections
+ * @returns {Promise<{ results: Record<string, object>, summary: { total: number, valid: number, invalid: number, skipped: number } }>}
+ */
+export async function verifyAll(connections) {
+  const entries = Object.entries(connections);
+  const results = {};
+  const summary = { total: entries.length, valid: 0, invalid: 0, skipped: 0 };
+
+  // Run in parallel batches of 5
+  const batchSize = 5;
+  for (let i = 0; i < entries.length; i += batchSize) {
+    const batch = entries.slice(i, i + batchSize);
+    const promises = batch.map(([service, conn]) =>
+      verifyCredentials(service, conn.credentials).then(r => ({ service, ...r }))
+    );
+    const batchResults = await Promise.allSettled(promises);
+
+    for (const result of batchResults) {
+      if (result.status === "fulfilled") {
+        const r = result.value;
+        results[r.service] = r;
+        if (r.skipped) summary.skipped++;
+        else if (r.valid) summary.valid++;
+        else summary.invalid++;
+      }
+    }
+  }
+
+  return { results, summary };
+}

package/index.js

@@ -27,15 +27,19 @@ import { Orchestrator } from "./orchestrator.js";
 import { WorkflowRunner } from "./workflow.js";
 import { registerAllTools } from "./tools.js";
 import { registerCrmTools } from "./crm/index.js";
+import { registerVaultTools, autoUnseal } from "./vault/index.js";
+import { unsealedCache } from "./vault/cache.js";
+import { registerEngineTools } from "./engine/index.js";
 
 // ── Initialize ─────────────────────────────────────────────
 const connections = new ConnectionManager();
+connections._vaultCache = unsealedCache;
 const orchestrator = new Orchestrator(connections);
 const workflowRunner = new WorkflowRunner(connections);
 
 const server = new McpServer({
   name: "0nMCP",
-  version: "1.4.0",
+  version: "1.6.0",
 });
 
 // ============================================================
@@ -51,6 +55,24 @@ registerAllTools(server, connections, orchestrator, workflowRunner);
 import { z } from "zod";
 registerCrmTools(server, z);
 
+// ============================================================
+// VAULT TOOLS (machine-bound credential encryption)
+// ============================================================
+
+registerVaultTools(server, z);
+
+// Auto-unseal sealed connections if ON_VAULT_PASSPHRASE is set
+const vaultResult = autoUnseal();
+if (vaultResult.unsealed.length > 0) {
+  console.error(`Vault: auto-unsealed ${vaultResult.unsealed.length} connection(s)`);
+}
+
+// ============================================================
+// ENGINE TOOLS (.0n conversion engine + AI brain bundles)
+// ============================================================
+
+registerEngineTools(server, z);
+
 // ============================================================
 // START SERVER (stdio transport)
 // ============================================================

package/lib/badges.json

@@ -26,7 +26,7 @@
   "total": {
     "schemaVersion": 1,
     "label": "capabilities",
-    "message": "693",
+    "message": "703",
     "color": "00ff88"
   }
 }

package/lib/stats.json

@@ -1,5 +1,5 @@
 {
-  "generated": "2026-02-15T00:13:31.784Z",
+  "generated": "2026-02-15T01:13:33.591Z",
   "catalogVersion": "1.2.2",
   "services": 26,
   "tools": 290,
@@ -792,6 +792,8 @@
     "mongodb"
   ],
   "crmTools": 245,
-  "totalTools": 535,
-  "totalCapabilities": 693
+  "vaultTools": 4,
+  "engineTools": 6,
+  "totalTools": 545,
+  "totalCapabilities": 703
 }

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "0nmcp",
-  "version": "1.4.0",
+  "version": "1.6.0",
   "mcpName": "io.github.0nork/0nMCP",
-  "description": "Universal AI API Orchestrator — 535 tools, 26 services, natural language interface. The most comprehensive MCP server available. Free and open source from 0nORK.",
+  "description": "Universal AI API Orchestrator — 545 tools, 26 services, portable AI Brain bundles + machine-bound vault encryption. The most comprehensive MCP server available. Free and open source from 0nORK.",
   "type": "module",
   "main": "index.js",
   "types": "types/index.d.ts",
@@ -43,6 +43,12 @@
     },
     "./server": {
       "import": "./server.js"
+    },
+    "./vault": {
+      "import": "./vault/index.js"
+    },
+    "./engine": {
+      "import": "./engine/index.js"
     }
   },
   "scripts": {
@@ -107,6 +113,14 @@
     "teams",
     "onedrive",
     "mongodb",
+    "vault",
+    "encryption",
+    "machine-bound",
+    "credential-storage",
+    "portable-bundle",
+    "ai-brain",
+    "credential-import",
+    "platform-config",
     "0n",
     "0nork",
     "0nmcp"
@@ -156,6 +170,8 @@
     "crm/",
     "webhooks.js",
     "ratelimit.js",
+    "vault/",
+    "engine/",
     "lib/",
     "types/",
     "README.md",
@@ -164,12 +180,14 @@
   "0nmcp-stats": {
     "tools": 290,
     "crmTools": 245,
-    "totalTools": 535,
+    "vaultTools": 4,
+    "engineTools": 6,
+    "totalTools": 545,
     "services": 26,
     "actions": 65,
     "triggers": 93,
-    "totalCapabilities": 693,
+    "totalCapabilities": 703,
     "categories": 13,
-    "lastUpdated": "2026-02-15T00:13:31.784Z"
+    "lastUpdated": "2026-02-15T01:13:33.591Z"
   }
 }