@agentwonderland/mcp 0.1.34 → 0.1.36

package/dist/core/file-upload.js

@@ -94,9 +94,9 @@ export async function uploadLocalFiles(input) {
             throw new Error(`File not found at "${value}" (for input field "${key}"). ` +
                 `This MCP server reads files from its own filesystem — if your client ` +
                 `sandboxes attachments (e.g. a web session with a /mnt/... path), the ` +
-                `bytes aren't reachable here. Fix: pass a public URL for "${key}", or ` +
-                `save the file to a real local path first (e.g. ~/Downloads/${basename(resolved)}) ` +
-                `and retry.`);
+                `bytes aren't reachable here. Fix: call upload_file({ filename: "${basename(resolved)}" }) ` +
+                `to get a presigned upload URL, PUT the bytes to it (e.g. curl -T), then pass the ` +
+                `returned GET URL as "${key}" instead of the path.`);
         }
         try {
             const url = await uploadFile(value);

package/dist/index.js

@@ -12,6 +12,8 @@ import { registerWalletTools } from "./tools/wallet.js";
 import { registerFavoriteTools } from "./tools/favorites.js";
 import { registerTipTools } from "./tools/tip.js";
 import { registerPassTools } from "./tools/passes.js";
+import { registerUploadTools } from "./tools/upload.js";
+import { registerProbeTools } from "./tools/probe.js";
 // ── Resources ────────────────────────────────────────────────────
 import { registerAgentResources } from "./resources/agents.js";
 import { registerWalletResources } from "./resources/wallet.js";
@@ -73,6 +75,8 @@ export async function startMcpServer() {
     registerFavoriteTools(server);
     registerTipTools(server);
     registerPassTools(server);
+    registerUploadTools(server);
+    registerProbeTools(server);
     // Register resources
     registerAgentResources(server);
     registerWalletResources(server);

package/dist/tools/index.d.ts

@@ -8,3 +8,5 @@ export { registerWalletTools } from "./wallet.js";
 export { registerFavoriteTools } from "./favorites.js";
 export { registerTipTools } from "./tip.js";
 export { registerPassTools } from "./passes.js";
+export { registerUploadTools } from "./upload.js";
+export { registerProbeTools } from "./probe.js";

package/dist/tools/index.js

@@ -8,3 +8,5 @@ export { registerWalletTools } from "./wallet.js";
 export { registerFavoriteTools } from "./favorites.js";
 export { registerTipTools } from "./tip.js";
 export { registerPassTools } from "./passes.js";
+export { registerUploadTools } from "./upload.js";
+export { registerProbeTools } from "./probe.js";

package/dist/tools/probe.d.ts

@@ -0,0 +1,2 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+export declare function registerProbeTools(server: McpServer): void;

package/dist/tools/probe.js

@@ -0,0 +1,35 @@
+function text(t) {
+    return { content: [{ type: "text", text: t }] };
+}
+export function registerProbeTools(server) {
+    server.tool("probe_roots", [
+        "Diagnostic tool: calls roots/list on the client and reports what filesystem roots the client exposes to the server.",
+        "We're using this to discover whether Claude Desktop surfaces attached files as MCP roots — if it does, we can read attachment bytes over the MCP transport without burning context or hitting the bash sandbox allowlist.",
+        "Returns the raw roots response (or the error, if roots/list is unsupported). Safe to call repeatedly; read-only.",
+    ].join(" "), {}, async () => {
+        const lines = ["=== roots/list probe ==="];
+        try {
+            const result = await server.server.listRoots();
+            lines.push(`status: ok`);
+            lines.push(`raw: ${JSON.stringify(result, null, 2)}`);
+            const roots = result.roots ?? [];
+            lines.push(`count: ${roots.length}`);
+            for (const r of roots) {
+                lines.push(`  - ${r.name ?? "(unnamed)"}: ${r.uri}`);
+            }
+        }
+        catch (err) {
+            const e = err;
+            lines.push(`status: error`);
+            lines.push(`code: ${e.code ?? "?"}`);
+            lines.push(`message: ${e.message ?? String(err)}`);
+            if (e.data !== undefined)
+                lines.push(`data: ${JSON.stringify(e.data)}`);
+            lines.push("");
+            if (e.code === -32601) {
+                lines.push("(-32601 = Method not found — client didn't declare the roots capability.)");
+            }
+        }
+        return text(lines.join("\n"));
+    });
+}

package/dist/tools/run.js

@@ -85,7 +85,7 @@ function buildCreditPackOfferLines(agent) {
     ];
 }
 export function registerRunTools(server) {
-    server.tool("run_agent", "Run an AI agent from the marketplace. Pays automatically via configured wallet. Returns the agent's output, cost, and job ID for tracking. If spending confirmation is enabled, first call returns a price quote — call again with confirmed: true to execute. Local file paths in the input (e.g. /Users/.../photo.jpg) are automatically uploaded to temporary storage and replaced with download URLs before execution.", {
+    server.tool("run_agent", "Run an AI agent from the marketplace. Pays automatically via configured wallet. Returns the agent's output, cost, and job ID for tracking. If spending confirmation is enabled, first call returns a price quote — call again with confirmed: true to execute. Local file paths in the input (e.g. /Users/.../photo.jpg) are automatically uploaded to temporary storage and replaced with download URLs before execution. If a file you need isn't on this MCP server's filesystem (e.g. a sandboxed /mnt/... attachment), call upload_file first to get a presigned upload URL, PUT the bytes to it, then pass the returned GET URL as input instead — that keeps the bytes out of the conversation context.", {
         agent_id: z.string().describe("Agent ID (UUID, slug, or name)"),
         input: z.record(z.unknown()).describe("Input payload for the agent"),
         pay_with: z.string().trim().min(1).optional().describe("Payment method — wallet ID, chain name (tempo, base, etc.), or 'card'. Auto-detected if omitted."),

package/dist/tools/solve.js

@@ -105,7 +105,7 @@ function buildCreditPackSummary(agent) {
     ];
 }
 export function registerSolveTools(server) {
-    server.tool("solve", "Solve a task by finding the best agent, paying, and executing. The primary way to use the marketplace. If spending confirmation is enabled, returns a price quote first — call again with confirmed: true to execute. Local file paths in the input are auto-uploaded before execution.", {
+    server.tool("solve", "Solve a task by finding the best agent, paying, and executing. The primary way to use the marketplace. If spending confirmation is enabled, returns a price quote first — call again with confirmed: true to execute. Local file paths in the input are auto-uploaded before execution. If a file you need isn't on this MCP server's filesystem (e.g. a sandboxed /mnt/... attachment), call upload_file first to get a presigned upload URL, PUT the bytes to it, then pass the returned GET URL as input instead.", {
         intent: z
             .string()
             .describe("What you want to accomplish (natural language)"),

package/dist/tools/upload.d.ts

@@ -0,0 +1,2 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+export declare function registerUploadTools(server: McpServer): void;

package/dist/tools/upload.js

@@ -0,0 +1,46 @@
+import { z } from "zod";
+import { apiPost } from "../core/api-client.js";
+function text(t) {
+    return { content: [{ type: "text", text: t }] };
+}
+export function registerUploadTools(server) {
+    server.tool("upload_file", [
+        "Get a pair of presigned R2 URLs to upload a file without passing bytes through the conversation.",
+        "Use this when the file lives in a sandbox the MCP server can't read (e.g. Claude web /mnt/user-data/..., any hosted-agent environment).",
+        "Flow:",
+        "  1. Call this tool with the filename and content_type.",
+        "  2. PUT the file bytes to `upload_url` over HTTP (e.g. via bash curl). The bytes never touch the LLM context.",
+        "  3. Pass `get_url` as the input value when running an agent that needs a URL.",
+        "On Claude Desktop with real filesystem paths (/Users/... or ~/...), just pass the path to run_agent — it auto-uploads. Only reach for upload_file when auto-upload isn't possible.",
+    ].join("\n"), {
+        filename: z
+            .string()
+            .min(1)
+            .max(255)
+            .describe("Base filename, e.g. 'photo.jpg'. Path separators are stripped."),
+        content_type: z
+            .string()
+            .optional()
+            .describe("MIME type (e.g. 'image/jpeg'). Inferred from filename if omitted."),
+    }, async ({ filename, content_type }) => {
+        const result = await apiPost("/uploads/presign-put", {
+            filename,
+            content_type,
+        });
+        const lines = [
+            `Upload slot ready for ${filename} (${result.content_type}).`,
+            "",
+            `Upload URL (PUT, expires in ${Math.round(result.upload_expires_in / 60)}m):`,
+            result.upload_url,
+            "",
+            `Public URL to pass to run_agent (GET, expires in ${Math.round(result.get_expires_in / 3600)}h):`,
+            result.get_url,
+            "",
+            "Upload the file with:",
+            `  curl -X PUT -H "Content-Type: ${result.content_type}" --data-binary @<path-to-file> "${result.upload_url}"`,
+            "",
+            "Then pass the GET URL above as the input value (e.g. { image: \"<get_url>\" }).",
+        ];
+        return text(lines.join("\n"));
+    });
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agentwonderland/mcp",
-  "version": "0.1.34",
+  "version": "0.1.36",
   "type": "module",
   "description": "MCP server for the Agent Wonderland AI agent marketplace",
   "bin": {

package/src/core/file-upload.ts

@@ -117,9 +117,9 @@ export async function uploadLocalFiles(
         `File not found at "${value}" (for input field "${key}"). ` +
         `This MCP server reads files from its own filesystem — if your client ` +
         `sandboxes attachments (e.g. a web session with a /mnt/... path), the ` +
-        `bytes aren't reachable here. Fix: pass a public URL for "${key}", or ` +
-        `save the file to a real local path first (e.g. ~/Downloads/${basename(resolved)}) ` +
-        `and retry.`,
+        `bytes aren't reachable here. Fix: call upload_file({ filename: "${basename(resolved)}" }) ` +
+        `to get a presigned upload URL, PUT the bytes to it (e.g. curl -T), then pass the ` +
+        `returned GET URL as "${key}" instead of the path.`,
       );
     }
 

package/src/index.ts

@@ -14,6 +14,8 @@ import { registerWalletTools } from "./tools/wallet.js";
 import { registerFavoriteTools } from "./tools/favorites.js";
 import { registerTipTools } from "./tools/tip.js";
 import { registerPassTools } from "./tools/passes.js";
+import { registerUploadTools } from "./tools/upload.js";
+import { registerProbeTools } from "./tools/probe.js";
 
 // ── Resources ────────────────────────────────────────────────────
 import { registerAgentResources } from "./resources/agents.js";
@@ -82,6 +84,8 @@ export async function startMcpServer(): Promise<void> {
   registerFavoriteTools(server);
   registerTipTools(server);
   registerPassTools(server);
+  registerUploadTools(server);
+  registerProbeTools(server);
 
   // Register resources
   registerAgentResources(server);

package/src/tools/index.ts

@@ -8,3 +8,5 @@ export { registerWalletTools } from "./wallet.js";
 export { registerFavoriteTools } from "./favorites.js";
 export { registerTipTools } from "./tip.js";
 export { registerPassTools } from "./passes.js";
+export { registerUploadTools } from "./upload.js";
+export { registerProbeTools } from "./probe.js";

package/src/tools/probe.ts

@@ -0,0 +1,41 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+
+function text(t: string) {
+  return { content: [{ type: "text" as const, text: t }] };
+}
+
+export function registerProbeTools(server: McpServer) {
+  server.tool(
+    "probe_roots",
+    [
+      "Diagnostic tool: calls roots/list on the client and reports what filesystem roots the client exposes to the server.",
+      "We're using this to discover whether Claude Desktop surfaces attached files as MCP roots — if it does, we can read attachment bytes over the MCP transport without burning context or hitting the bash sandbox allowlist.",
+      "Returns the raw roots response (or the error, if roots/list is unsupported). Safe to call repeatedly; read-only.",
+    ].join(" "),
+    {},
+    async () => {
+      const lines: string[] = ["=== roots/list probe ==="];
+      try {
+        const result = await server.server.listRoots();
+        lines.push(`status: ok`);
+        lines.push(`raw: ${JSON.stringify(result, null, 2)}`);
+        const roots = (result as { roots?: Array<{ uri: string; name?: string }> }).roots ?? [];
+        lines.push(`count: ${roots.length}`);
+        for (const r of roots) {
+          lines.push(`  - ${r.name ?? "(unnamed)"}: ${r.uri}`);
+        }
+      } catch (err) {
+        const e = err as { code?: number; message?: string; data?: unknown };
+        lines.push(`status: error`);
+        lines.push(`code: ${e.code ?? "?"}`);
+        lines.push(`message: ${e.message ?? String(err)}`);
+        if (e.data !== undefined) lines.push(`data: ${JSON.stringify(e.data)}`);
+        lines.push("");
+        if (e.code === -32601) {
+          lines.push("(-32601 = Method not found — client didn't declare the roots capability.)");
+        }
+      }
+      return text(lines.join("\n"));
+    },
+  );
+}

package/src/tools/run.ts

@@ -123,7 +123,7 @@ function buildCreditPackOfferLines(agent: AgentRecord): string[] {
 export function registerRunTools(server: McpServer): void {
   server.tool(
     "run_agent",
-    "Run an AI agent from the marketplace. Pays automatically via configured wallet. Returns the agent's output, cost, and job ID for tracking. If spending confirmation is enabled, first call returns a price quote — call again with confirmed: true to execute. Local file paths in the input (e.g. /Users/.../photo.jpg) are automatically uploaded to temporary storage and replaced with download URLs before execution.",
+    "Run an AI agent from the marketplace. Pays automatically via configured wallet. Returns the agent's output, cost, and job ID for tracking. If spending confirmation is enabled, first call returns a price quote — call again with confirmed: true to execute. Local file paths in the input (e.g. /Users/.../photo.jpg) are automatically uploaded to temporary storage and replaced with download URLs before execution. If a file you need isn't on this MCP server's filesystem (e.g. a sandboxed /mnt/... attachment), call upload_file first to get a presigned upload URL, PUT the bytes to it, then pass the returned GET URL as input instead — that keeps the bytes out of the conversation context.",
     {
       agent_id: z.string().describe("Agent ID (UUID, slug, or name)"),
       input: z.record(z.unknown()).describe("Input payload for the agent"),

package/src/tools/solve.ts

@@ -137,7 +137,7 @@ function buildCreditPackSummary(agent: AgentRecord): string[] {
 export function registerSolveTools(server: McpServer): void {
   server.tool(
     "solve",
-    "Solve a task by finding the best agent, paying, and executing. The primary way to use the marketplace. If spending confirmation is enabled, returns a price quote first — call again with confirmed: true to execute. Local file paths in the input are auto-uploaded before execution.",
+    "Solve a task by finding the best agent, paying, and executing. The primary way to use the marketplace. If spending confirmation is enabled, returns a price quote first — call again with confirmed: true to execute. Local file paths in the input are auto-uploaded before execution. If a file you need isn't on this MCP server's filesystem (e.g. a sandboxed /mnt/... attachment), call upload_file first to get a presigned upload URL, PUT the bytes to it, then pass the returned GET URL as input instead.",
     {
       intent: z
         .string()

package/src/tools/upload.ts

@@ -0,0 +1,65 @@
+import type { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+import { z } from "zod";
+import { apiPost } from "../core/api-client.js";
+
+function text(t: string) {
+  return { content: [{ type: "text" as const, text: t }] };
+}
+
+interface PresignResponse {
+  upload_url: string;
+  get_url: string;
+  key: string;
+  content_type: string;
+  upload_expires_in: number;
+  get_expires_in: number;
+}
+
+export function registerUploadTools(server: McpServer) {
+  server.tool(
+    "upload_file",
+    [
+      "Get a pair of presigned R2 URLs to upload a file without passing bytes through the conversation.",
+      "Use this when the file lives in a sandbox the MCP server can't read (e.g. Claude web /mnt/user-data/..., any hosted-agent environment).",
+      "Flow:",
+      "  1. Call this tool with the filename and content_type.",
+      "  2. PUT the file bytes to `upload_url` over HTTP (e.g. via bash curl). The bytes never touch the LLM context.",
+      "  3. Pass `get_url` as the input value when running an agent that needs a URL.",
+      "On Claude Desktop with real filesystem paths (/Users/... or ~/...), just pass the path to run_agent — it auto-uploads. Only reach for upload_file when auto-upload isn't possible.",
+    ].join("\n"),
+    {
+      filename: z
+        .string()
+        .min(1)
+        .max(255)
+        .describe("Base filename, e.g. 'photo.jpg'. Path separators are stripped."),
+      content_type: z
+        .string()
+        .optional()
+        .describe("MIME type (e.g. 'image/jpeg'). Inferred from filename if omitted."),
+    },
+    async ({ filename, content_type }) => {
+      const result = await apiPost<PresignResponse>("/uploads/presign-put", {
+        filename,
+        content_type,
+      });
+
+      const lines = [
+        `Upload slot ready for ${filename} (${result.content_type}).`,
+        "",
+        `Upload URL (PUT, expires in ${Math.round(result.upload_expires_in / 60)}m):`,
+        result.upload_url,
+        "",
+        `Public URL to pass to run_agent (GET, expires in ${Math.round(result.get_expires_in / 3600)}h):`,
+        result.get_url,
+        "",
+        "Upload the file with:",
+        `  curl -X PUT -H "Content-Type: ${result.content_type}" --data-binary @<path-to-file> "${result.upload_url}"`,
+        "",
+        "Then pass the GET URL above as the input value (e.g. { image: \"<get_url>\" }).",
+      ];
+
+      return text(lines.join("\n"));
+    },
+  );
+}