@aiwerk/mcp-bridge 2.8.0 → 2.8.3

package/README.md

@@ -27,7 +27,7 @@ Most AI agents connect to MCP servers one-by-one. With 10+ servers, that's 10+ c
 - **Graceful shutdown**: clean process termination and connection cleanup
 - **Direct mode**: all tools registered individually with automatic prefixing
 - **3 transports**: stdio, SSE, streamable-http
-- **Built-in catalog**: 14 pre-configured servers, install with one command
+- **Built-in catalog**: 14 pre-configured servers, install with one command (bundled servers deprecated — use [MCP Catalog](https://catalog.aiwerk.ch) with 104+ recipes instead)
 - **Zero config secrets in files**: `${ENV_VAR}` resolution from `.env`
 
 ## Install
@@ -109,6 +109,56 @@ const recipe = await client.resolve('todoist');
 const results = await client.search('email');
 ```
 
+### Catalog & Auto-Merge Options
+
+Two config options control catalog behavior:
+
+| Option | Type | Default | Description |
+|--------|------|---------|-------------|
+| `catalog` | `boolean` | `true` | Whether `bootstrapCatalog()` fetches recipes from the remote catalog |
+| `autoMerge` | `boolean` | `false` | Whether `mergeRecipesIntoConfig()` auto-merges cached recipes into your config |
+
+```json
+{
+  "catalog": true,
+  "autoMerge": true,
+  "servers": { ... }
+}
+```
+
+- **`autoMerge` defaults to `false`** (opt-in) — cached recipes are **not** automatically added to your server list unless you explicitly enable it. This prevents servers without required credentials from being silently activated.
+- **`catalog` defaults to `true`** — recipe discovery from [catalog.aiwerk.ch](https://catalog.aiwerk.ch) is enabled by default. Set to `false` to skip all remote fetching.
+
+> **Breaking change (v2.9.0):** Previously, all cached recipes whose env vars were present were auto-merged. Now you must set `"autoMerge": true` to restore that behavior.
+
+### Multiple instances of the same server
+
+Auto-discovery uses the recipe name as the config key (e.g., `gohighlevel`). If you need **multiple instances** of the same server with different credentials (e.g., two GoHighLevel subaccounts), configure them manually:
+
+```json
+// config.json or openclaw.json
+{
+  "ghl-client-a": {
+    "transport": "streamable-http",
+    "url": "https://services.leadconnectorhq.com/mcp/",
+    "headers": {
+      "Authorization": "Bearer ${GHL_TOKEN_A}",
+      "locationId": "${GHL_LOCATION_A}"
+    }
+  },
+  "ghl-client-b": {
+    "transport": "streamable-http",
+    "url": "https://services.leadconnectorhq.com/mcp/",
+    "headers": {
+      "Authorization": "Bearer ${GHL_TOKEN_B}",
+      "locationId": "${GHL_LOCATION_B}"
+    }
+  }
+}
+```
+
+Use **unique env var names** (e.g., `GHL_TOKEN_A` instead of `GHL_PIT_TOKEN`) to prevent auto-discovery from adding a duplicate third entry. Manual config always takes priority over auto-discovered recipes.
+
 > **Note**: The bundled `servers/` directory is deprecated and will be removed in v3.0.0.
 
 ## Use with Cursor / Windsurf

package/dist/bin/mcp-bridge.js

@@ -4,7 +4,7 @@ import { join, dirname, resolve, extname } from "path";
 import { fileURLToPath } from "url";
 import { platform, homedir } from "os";
 import { execFileSync } from "child_process";
-import { loadConfig, initConfigDir } from "../src/config.js";
+import { loadConfig, initConfigDir, warnDeprecatedBundledRecipes } from "../src/config.js";
 import { StandaloneServer } from "../src/standalone-server.js";
 import { PACKAGE_VERSION } from "../src/protocol.js";
 import { checkForUpdate, runUpdate } from "../src/update-checker.js";
@@ -554,6 +554,8 @@ async function cmdServe(args, logger) {
         logger.error("HTTP auth not configured. Set http.auth in config or use stdio mode.");
         process.exit(1);
     }
+    // Warn about deprecated bundled recipes (v2.8.0+)
+    warnDeprecatedBundledRecipes(logger);
     const server = new StandaloneServer(config, logger);
     // Graceful shutdown
     const shutdown = async () => {

package/dist/src/catalog-client.d.ts

@@ -78,6 +78,7 @@ export declare class CatalogClient {
         limit?: number;
         category?: string;
         sort?: string;
+        hostedSafe?: boolean;
     }): Promise<{
         results: CatalogSearchResult[];
         total: number;
@@ -93,7 +94,7 @@ export declare class CatalogClient {
      * Bootstrap by downloading the top N most popular recipes.
      * Skips already-cached recipes unless they are stale.
      */
-    bootstrap(limit?: number): Promise<string[]>;
+    bootstrap(limit?: number, hostedSafe?: boolean): Promise<string[]>;
     /** Synchronously read a recipe from local cache. Returns null if not cached. */
     getCached(name: string): CatalogRecipe | null;
     /** List all recipe names in the local cache. */

package/dist/src/catalog-client.js

@@ -110,6 +110,8 @@ export class CatalogClient {
             params.set("category", opts.category);
         if (opts?.sort)
             params.set("sort", opts.sort);
+        if (opts?.hostedSafe)
+            params.set("hostedSafe", "true");
         const qs = params.toString();
         return this.fetchJson(`/api/recipes${qs ? `?${qs}` : ""}`);
     }
@@ -147,8 +149,8 @@ export class CatalogClient {
      * Bootstrap by downloading the top N most popular recipes.
      * Skips already-cached recipes unless they are stale.
      */
-    async bootstrap(limit = 15) {
-        const { results } = await this.list({ limit, sort: "popular" });
+    async bootstrap(limit = 15, hostedSafe = false) {
+        const { results } = await this.list({ limit, sort: "popular", hostedSafe });
         const names = [];
         const toDownload = [];
         for (const entry of results) {

package/dist/src/config.d.ts

@@ -29,7 +29,7 @@ export declare function loadConfig(options?: LoadConfigOptions): BridgeConfig;
  * In v2.8.0, bundled servers/ recipes are deprecated in favor of catalog.
  * They will be removed in v3.0.0.
  */
-export declare function warnDeprecatedBundledRecipes(config: BridgeConfig, logger: Logger): void;
+export declare function warnDeprecatedBundledRecipes(logger: Logger): void;
 /** Get the default config directory path. */
 export declare function getConfigDir(configPath?: string): string;
 /** Initialize the config directory with template files. */
@@ -45,6 +45,8 @@ export declare function bootstrapCatalog(options?: {
     catalogUrl?: string;
     limit?: number;
     force?: boolean;
+    requireCleanAudit?: boolean;
+    catalog?: boolean;
 }): Promise<string[]>;
 /**
  * Merge cached catalog recipes into a BridgeConfig.

package/dist/src/config.js

@@ -159,9 +159,7 @@ export function loadConfig(options = {}) {
  * In v2.8.0, bundled servers/ recipes are deprecated in favor of catalog.
  * They will be removed in v3.0.0.
  */
-export function warnDeprecatedBundledRecipes(config, logger) {
-    // Check if install-server.sh was used (it writes source: 'local' or references servers/ path)
-    // For now, just log a general deprecation notice on first run
+export function warnDeprecatedBundledRecipes(logger) {
     const catalogClient = new CatalogClient({ logger });
     const cached = catalogClient.listCached();
     if (cached.length === 0) {
@@ -227,14 +225,31 @@ const noopLogger = {
     error: () => { },
     debug: () => { },
 };
+/**
+ * Extract the depAudit value from a catalog recipe's metadata.verification field.
+ * Returns null if not present.
+ */
+function getDepAudit(recipe) {
+    const meta = recipe.metadata;
+    const verification = meta?.verification;
+    const depAudit = verification?.depAudit;
+    return typeof depAudit === "string" ? depAudit : null;
+}
 /**
  * Bootstrap the local recipe cache from the catalog.
  * Downloads top N popular recipes if cache is empty or force=true.
  * Returns array of recipe names now cached. Never throws on network errors.
  */
 export async function bootstrapCatalog(options) {
+    // If catalog is explicitly disabled, skip fetching
+    if (options?.catalog === false) {
+        const logger = options?.logger ?? noopLogger;
+        logger.info("[mcp-bridge] Catalog discovery disabled (catalog: false), skipping bootstrap");
+        return [];
+    }
     const logger = options?.logger ?? noopLogger;
     const cacheDir = options?.cacheDir ?? join(homedir(), ".mcp-bridge", "recipes");
+    const requireCleanAudit = options?.requireCleanAudit ?? false;
     const client = new CatalogClient({
         baseUrl: options?.catalogUrl,
         cacheDir,
@@ -249,7 +264,7 @@ export async function bootstrapCatalog(options) {
         }
     }
     try {
-        return await client.bootstrap(options?.limit ?? 15);
+        return await client.bootstrap(options?.limit ?? 15, requireCleanAudit);
     }
     catch (err) {
         logger.warn(`Catalog unreachable during bootstrap: ${err instanceof Error ? err.message : err}`);
@@ -266,12 +281,18 @@ export async function bootstrapCatalog(options) {
  */
 export function mergeRecipesIntoConfig(config, options) {
     const logger = options?.logger ?? noopLogger;
+    // autoMerge defaults to false (opt-in) — only merge when explicitly enabled
+    if (config.autoMerge !== true) {
+        logger.debug("[mcp-bridge] Auto-merge disabled (autoMerge is not true), skipping recipe merge");
+        return config;
+    }
     const cacheDir = options?.cacheDir ?? join(homedir(), ".mcp-bridge", "recipes");
     const client = new CatalogClient({ cacheDir, logger });
     const names = client.listCached();
     if (names.length === 0)
         return config;
     const servers = { ...config.servers };
+    const requireCleanAudit = config.security?.requireCleanAudit ?? false;
     for (const name of names) {
         // Never overwrite manually configured servers
         if (servers[name])
@@ -279,6 +300,18 @@ export function mergeRecipesIntoConfig(config, options) {
         const recipe = client.getCached(name);
         if (!recipe)
             continue;
+        // Check depAudit security policy
+        const depAudit = getDepAudit(recipe);
+        const auditOk = depAudit === null || depAudit === "clean" || depAudit === "not-applicable";
+        if (!auditOk) {
+            if (requireCleanAudit) {
+                logger.warn(`⚠️ Skipping server "${name}": has known security advisories (depAudit: ${depAudit}). Set security.requireCleanAudit=false to allow.`);
+                continue;
+            }
+            else {
+                logger.info(`ℹ️ Server "${name}" has known advisories (depAudit: ${depAudit}). Set security.requireCleanAudit=true to block.`);
+            }
+        }
         const converted = recipeToServerConfig(recipe);
         if (!converted) {
             logger.debug(`Skipping recipe "${name}": unsupported format`);

package/dist/src/index.d.ts

@@ -18,7 +18,7 @@ export { ToolResolver } from "./tool-resolution.js";
 export type { ToolResolutionResult, ToolResolutionCandidate } from "./tool-resolution.js";
 export { convertJsonSchemaToTypeBox, createToolParameters, setTypeBoxLoader, setSchemaLogger } from "./schema-convert.js";
 export { initializeProtocol, fetchToolsList, PACKAGE_VERSION } from "./protocol.js";
-export { loadConfig, parseEnvFile, initConfigDir, getConfigDir, bootstrapCatalog, mergeRecipesIntoConfig } from "./config.js";
+export { loadConfig, parseEnvFile, initConfigDir, getConfigDir, bootstrapCatalog, mergeRecipesIntoConfig, warnDeprecatedBundledRecipes } from "./config.js";
 export type { Logger, McpServerConfig, McpClientConfig, HttpAuthConfig, RetryConfig, McpTool, McpRequest, McpCallRequest, McpResponse, JsonRpcMessage, McpTransport, McpServerConnection, BridgeConfig, RequestIdState, RequestIdGenerator, } from "./types.js";
 export { nextRequestId } from "./types.js";
 export { pickRegisteredToolName } from "./tool-naming.js";

package/dist/src/index.js

@@ -20,7 +20,7 @@ export { convertJsonSchemaToTypeBox, createToolParameters, setTypeBoxLoader, set
 // Protocol helpers
 export { initializeProtocol, fetchToolsList, PACKAGE_VERSION } from "./protocol.js";
 // Config
-export { loadConfig, parseEnvFile, initConfigDir, getConfigDir, bootstrapCatalog, mergeRecipesIntoConfig } from "./config.js";
+export { loadConfig, parseEnvFile, initConfigDir, getConfigDir, bootstrapCatalog, mergeRecipesIntoConfig, warnDeprecatedBundledRecipes } from "./config.js";
 export { nextRequestId } from "./types.js";
 // Tool naming
 export { pickRegisteredToolName } from "./tool-naming.js";

package/dist/src/transport-stdio.js

@@ -132,20 +132,15 @@ export class StdioTransport extends BaseTransport {
                 reject(error);
             };
             const onFirstData = (chunk) => {
-                // Validate that first data looks like JSON-RPC (starts with { or Content-Length).
-                // Some servers write banner text to stdout instead of stderr, which would
-                // cause a false-positive connect (we'd think the transport is ready).
+                // Some MCP servers print banner text to stdout before they start speaking JSON-RPC.
+                // We already parse and ignore non-JSON lines later in processStdoutBuffer(), so any
+                // stdout activity means the process is alive and its pipes are working. Resolve here
+                // and let initializeProtocol() validate the connection with an actual initialize request.
                 const text = chunk.toString().trim();
-                // Accept empty/whitespace readiness signals (common in lightweight stdio MCP servers),
-                // JSON messages, or LSP framing headers.
-                if (text === "" || text.startsWith("{") || text.startsWith("Content-Length")) {
-                    settleResolve();
-                }
-                else {
-                    this.logger.warn(`[mcp-bridge] Stdio process sent non-JSON data on stdout: ${text.substring(0, 80)}`);
-                    // Still listen for valid data — don't reject yet, the next chunk might be valid
-                    this.process?.stdout?.once("data", onFirstData);
+                if (text && !text.startsWith("{") && !text.startsWith("Content-Length")) {
+                    this.logger.warn(`[mcp-bridge] Stdio process sent banner/non-JSON data on stdout before ready: ${text.substring(0, 80)}`);
                 }
+                settleResolve();
             };
             const onProcessError = (error) => settleReject(error);
             const onProcessExit = () => settleReject(new Error("MCP server exited before stdout became ready"));

package/dist/src/types.d.ts

@@ -165,4 +165,22 @@ export interface BridgeConfig extends McpClientConfig {
     http?: {
         auth?: HttpAuthConfig;
     };
+    security?: {
+        /**
+         * When true, only load MCP servers whose depAudit is "clean" or "not-applicable".
+         * Servers with "has-advisories", "skip", or other values are blocked at startup.
+         * Default: false (advisories are logged as info, not blocked).
+         */
+        requireCleanAudit?: boolean;
+    };
+    /**
+     * Whether bootstrapCatalog() fetches recipes from the remote catalog.
+     * Default: true (catalog discovery is enabled).
+     */
+    catalog?: boolean;
+    /**
+     * Whether mergeRecipesIntoConfig() auto-merges cached recipes into config.
+     * Default: false (opt-in). Set to true to enable automatic recipe merging.
+     */
+    autoMerge?: boolean;
 }

package/dist/src/validate-recipe.js

@@ -7,6 +7,8 @@ const KNOWN_CATEGORIES = new Set([
     "development",
     "communication",
     "data",
+    "database",
+    "crm",
     "finance",
     "infrastructure",
     "analytics",
@@ -151,6 +153,26 @@ export function validateRecipe(recipe) {
         }
     }
     // ── §7.2 Warnings ──────────────────────────────────────────────────────────
+    // Warning: metadata.verification field validation
+    const verification = recipe.metadata?.verification;
+    if (verification && typeof verification === 'object') {
+        if ('tier1' in verification && verification.tier1 !== 'pass') {
+            warnings.push(`metadata.verification.tier1 should be "pass", got: "${verification.tier1}"`);
+        }
+        if ('tier2' in verification) {
+            const tier2 = verification.tier2;
+            if (tier2 !== 'pass' && tier2 !== 'skip') {
+                warnings.push(`metadata.verification.tier2 should be "pass" or "skip", got: "${tier2}"`);
+            }
+        }
+        if ('depAudit' in verification) {
+            const depAudit = verification.depAudit;
+            const validDepAudit = new Set(['clean', 'has-advisories', 'not-applicable', 'skip']);
+            if (!validDepAudit.has(depAudit)) {
+                warnings.push(`metadata.verification.depAudit should be "clean", "has-advisories", "not-applicable", or "skip", got: "${depAudit}"`);
+            }
+        }
+    }
     // Warning: metadata.lastVerified older than 90 days
     if (typeof recipe.metadata?.lastVerified === "string") {
         const lastVerified = new Date(recipe.metadata.lastVerified);
@@ -187,6 +209,71 @@ export function validateRecipe(recipe) {
     if (recipe.metadata?.maturity === "deprecated") {
         warnings.push("metadata.maturity is set to 'deprecated'");
     }
+    // ── §2.9 Origin cross-check ────────────────────────────────────────────
+    // If origin is "official", verify that metadata.author matches the npm package scope/maintainer hint.
+    // This is a heuristic — not all packages have matching names — so it's a warning, not an error.
+    const origin = recipe.metadata?.origin;
+    const author = recipe.metadata?.author;
+    const installPkg = recipe.install?.package;
+    if (origin === "official" && typeof author === "string" && typeof installPkg === "string") {
+        // Extract npm scope (e.g., "@cloudflare/mcp-server-cloudflare" → "cloudflare")
+        const scopeMatch = installPkg.match(/^@([^/]+)\//);
+        const scope = scopeMatch ? scopeMatch[1].toLowerCase() : null;
+        const authorLower = author.toLowerCase();
+        if (scope) {
+            // Check if the scope relates to the author (heuristic: scope contains author or vice versa)
+            // Known mappings for official packages where scope ≠ author name
+            const knownOfficialMappings = {
+                "playwright": ["microsoft"],
+                "browserbasehq": ["browserbase"],
+                "anthropic-ai": ["anthropic"],
+                "twilio-alpha": ["twilio"],
+                "perplexity-ai": ["perplexity"],
+                "pinecone-database": ["pinecone"],
+                "neondatabase": ["neon"],
+                "doist": ["todoist"],
+                "webflow-bot": ["webflow"],
+            };
+            const knownAliases = knownOfficialMappings[scope] ?? [];
+            const scopeMatchesAuthor = authorLower.includes(scope) ||
+                scope.includes(authorLower.replace(/[^a-z0-9]/g, "")) ||
+                knownAliases.some(alias => authorLower.includes(alias));
+            if (!scopeMatchesAuthor) {
+                // Also check common patterns: "modelcontextprotocol" scope = Anthropic community, not official
+                const communityScopes = new Set([
+                    "modelcontextprotocol",
+                ]);
+                if (communityScopes.has(scope)) {
+                    warnings.push(`origin is "official" but package scope @${scope} is a community/ecosystem scope — verify that ${author} actually maintains this package`);
+                }
+                else {
+                    warnings.push(`origin is "official" but npm scope @${scope} does not obviously match author "${author}" — verify npm maintainers`);
+                }
+            }
+        }
+        else {
+            // No scope — unscoped packages are harder to verify, just note it
+            warnings.push(`origin is "official" but package "${installPkg}" is unscoped — verify npm maintainers match "${author}"`);
+        }
+    }
+    if (origin === "community" && typeof installPkg === "string") {
+        // If community but package scope matches a well-known official org, warn
+        const scopeMatch = installPkg.match(/^@([^/]+)\//);
+        if (scopeMatch) {
+            const scope = scopeMatch[1].toLowerCase();
+            const officialScopes = new Set([
+                "cloudflare", "stripe", "mongodb", "sentry", "datadog",
+                "supabase", "notion-email", "slack", "linear", "playwright",
+                "brave", "hubspot", "twilio-alpha", "perplexity-ai", "upstash",
+                "pinecone-database", "grafana", "e2b", "browserbasehq", "brightdata",
+                "letta-ai", "sanity", "contentful", "neondatabase",
+                "shortcut", "webflow-bot", "doist", "replicate",
+            ]);
+            if (officialScopes.has(scope)) {
+                warnings.push(`origin is "community" but package scope @${scope} looks like an official org — verify origin`);
+            }
+        }
+    }
     // ── Build result ───────────────────────────────────────────────────────────
     const valid = errors.length === 0;
     const result = { valid, errors, warnings };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aiwerk/mcp-bridge",
-  "version": "2.8.0",
+  "version": "2.8.3",
   "description": "Standalone MCP server that multiplexes multiple MCP servers into one interface",
   "type": "module",
   "main": "./dist/src/index.js",

package/scripts/install-server.sh

@@ -58,10 +58,15 @@ if [[ -f "$RECIPE_CACHE_DIR/recipe.json" ]]; then
 elif command -v curl &>/dev/null; then
     echo "[mcp-bridge] Fetching recipe from catalog..."
     mkdir -p "$RECIPE_CACHE_DIR"
-    if curl -sf "https://catalog.aiwerk.ch/api/recipes/$SERVER_NAME/download" -o "$RECIPE_CACHE_DIR/recipe.json" 2>/dev/null; then
+    ENCODED_NAME="$(python3 -c "import urllib.parse,sys; print(urllib.parse.quote(sys.argv[1]))" "$SERVER_NAME" 2>/dev/null || echo "$SERVER_NAME")"
+    if curl -sf --connect-timeout 5 --max-time 15 \
+        "https://catalog.aiwerk.ch/api/recipes/$ENCODED_NAME/download" \
+        -o "$RECIPE_CACHE_DIR/recipe.json" 2>/dev/null \
+        && [[ -s "$RECIPE_CACHE_DIR/recipe.json" ]]; then
         echo "[mcp-bridge] ✓ Recipe downloaded from catalog"
         SERVER_DIR="$RECIPE_CACHE_DIR"
     else
+        rm -f "$RECIPE_CACHE_DIR/recipe.json"
         echo "[mcp-bridge] Catalog unavailable, using bundled recipe"
         # Fall through to existing SERVER_DIR
     fi

package/scripts/verify-signatures.mjs

@@ -0,0 +1,121 @@
+#!/usr/bin/env node
+/**
+ * Verify Ed25519 signatures on all recipes in servers/.
+ * Usage: node scripts/verify-signatures.mjs [--ci]
+ *
+ * --ci: exit with code 1 if any signature is invalid (for CI/pre-commit)
+ *
+ * Requires: public key in keys/aiwerk-public.pem (or set AIWERK_PUBLIC_KEY env var)
+ */
+import { readFileSync, readdirSync, existsSync } from 'node:fs';
+import { join, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { verify, createPublicKey } from 'node:crypto';
+
+const __dirname = dirname(fileURLToPath(import.meta.url));
+const ROOT = join(__dirname, '..');
+const SERVERS_DIR = join(ROOT, 'servers');
+
+const SIGNED_FIELDS = ['id', 'name', 'description', 'transports', 'auth', 'install', 'metadata'];
+
+function stableStringify(obj) {
+  if (obj === null || obj === undefined) return JSON.stringify(obj);
+  if (typeof obj !== 'object') return JSON.stringify(obj);
+  if (Array.isArray(obj)) {
+    return '[' + obj.map(item => stableStringify(item)).join(',') + ']';
+  }
+  const sorted = Object.keys(obj).sort();
+  const entries = sorted.map(key => JSON.stringify(key) + ':' + stableStringify(obj[key]));
+  return '{' + entries.join(',') + '}';
+}
+
+function canonicalPayload(recipe) {
+  const subset = {};
+  for (const field of SIGNED_FIELDS) {
+    if (field in recipe) {
+      subset[field] = recipe[field];
+    }
+  }
+  return stableStringify(subset);
+}
+
+function loadPublicKey() {
+  // Try env var first
+  if (process.env.AIWERK_PUBLIC_KEY) {
+    const pem = Buffer.from(process.env.AIWERK_PUBLIC_KEY, 'base64').toString('utf-8');
+    return createPublicKey(pem);
+  }
+  // Try keys/ dir
+  const keyPath = join(ROOT, 'keys', 'aiwerk-public.pem');
+  if (existsSync(keyPath)) {
+    return createPublicKey(readFileSync(keyPath, 'utf-8'));
+  }
+  // Try catalog repo
+  const catalogKeyPath = join(ROOT, '..', 'mcp-catalog', 'keys', 'aiwerk-public.pem');
+  if (existsSync(catalogKeyPath)) {
+    return createPublicKey(readFileSync(catalogKeyPath, 'utf-8'));
+  }
+  return null;
+}
+
+function verifySignature(recipe, signature, publicKey) {
+  try {
+    const payload = canonicalPayload(recipe);
+    return verify(null, Buffer.from(payload, 'utf-8'), publicKey, Buffer.from(signature.value, 'base64'));
+  } catch {
+    return false;
+  }
+}
+
+const ciMode = process.argv.includes('--ci');
+const publicKey = loadPublicKey();
+
+if (!publicKey) {
+  console.error('⚠️  No public key found. Skipping signature verification.');
+  console.error('   Set AIWERK_PUBLIC_KEY env var or place keys/aiwerk-public.pem');
+  process.exit(ciMode ? 1 : 0);
+}
+
+const entries = readdirSync(SERVERS_DIR, { withFileTypes: true })
+  .filter(e => e.isDirectory())
+  .sort((a, b) => a.name.localeCompare(b.name));
+
+let total = 0;
+let valid = 0;
+let invalid = 0;
+let unsigned = 0;
+
+for (const entry of entries) {
+  const recipePath = join(SERVERS_DIR, entry.name, 'recipe.json');
+  if (!existsSync(recipePath)) continue;
+
+  total++;
+  const recipe = JSON.parse(readFileSync(recipePath, 'utf-8'));
+
+  if (!recipe.signature) {
+    unsigned++;
+    console.log(`⚠️  ${entry.name}: UNSIGNED`);
+    continue;
+  }
+
+  const isValid = verifySignature(recipe, recipe.signature, publicKey);
+  if (isValid) {
+    valid++;
+    console.log(`✅ ${entry.name}: valid`);
+  } else {
+    invalid++;
+    console.log(`❌ ${entry.name}: INVALID SIGNATURE`);
+  }
+}
+
+console.log(`\n${total} recipes: ${valid} valid, ${unsigned} unsigned, ${invalid} invalid`);
+
+if (invalid > 0) {
+  console.error(`\n🚨 ${invalid} recipe(s) have invalid signatures!`);
+  console.error('   Run: cd ../mcp-catalog && npx tsx scripts/sign-recipe.ts <recipe.json> --output <recipe.json>');
+  process.exit(1);
+}
+
+if (unsigned > 0 && ciMode) {
+  console.error(`\n⚠️  ${unsigned} recipe(s) are unsigned`);
+}

package/servers/apify/recipe.json

@@ -36,7 +36,7 @@
     "pricing": "byok",
     "maturity": "stable",
     "subcategory": "scraping",
-    "origin": "community",
+    "origin": "official",
     "countries": [
       "global"
     ],
@@ -54,7 +54,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "2eHbBy6v0MMBTdnIusU9oNReuNjg1CKKA7iknkS7FxQNTuisjZFAW2x5DFjUgN9FqjWmlwwhSLnk/qhwfV42Cw==",
+    "value": "00uinemhL7iVz+e7EZ1mFhYwXB3SHhFeyKQ6nop2FhCqqykSuojLriDjx/sX8M+xAAG/C4QOPfL8qJCgNxq+Bw==",
     "signedFields": [
       "id",
       "name",
@@ -64,6 +64,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T14:24:25.196Z"
+    "signedAt": "2026-03-24T18:32:28.206Z"
   }
 }

package/servers/chrome-devtools/recipe.json

@@ -41,13 +41,13 @@
     "pricing": "free",
     "maturity": "stable",
     "subcategory": "monitoring",
-    "origin": "community",
+    "origin": "official",
     "countries": [
       "global"
     ],
     "audience": "developer",
     "selfHosted": true,
-    "sideEffects": "read-only",
+    "sideEffects": "read-write",
     "authSummary": "none"
   },
   "capabilities": {
@@ -59,7 +59,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "fo/w/oYgd8T4ecaOnSUq3vE5nl82RVB31Mj+2v5W/j6qM+wK17xstVMdiZuiqH+a6YDQXXe30S9enRjLK0y/CA==",
+    "value": "pjNR/z4SN6fffrfYbT8rFak6dyqqoQHu5FzHraRf3Lq1eTwEt6Gu82vo2Fa0lpbeTkrZ4wS6LDRaKQpWl2SXBg==",
     "signedFields": [
       "id",
       "name",
@@ -69,6 +69,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T14:24:32.876Z"
+    "signedAt": "2026-03-24T18:33:00.640Z"
   }
 }

package/servers/firecrawl/recipe.json

@@ -51,7 +51,7 @@
       "global"
     ],
     "audience": "developer",
-    "selfHosted": true,
+    "selfHosted": false,
     "sideEffects": "read-only",
     "authSummary": "api-key"
   },
@@ -64,7 +64,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "s2daVrlfMhaE5+Tk/Y0CnXtG/S6qIVzP0/iHobQ4edC2RmfZFOfiaBUfOL+p6745VSoiiO8nMLDhuiRrUGQrDQ==",
+    "value": "eQvGxgLGN6NVFD5KnjYWTN37ulE0rwTamMkLSHnK3Z2b8uDJz0gGIatCaN6qTCX707g75zY+COQqbpltf23NAw==",
     "signedFields": [
       "id",
       "name",
@@ -74,6 +74,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T14:24:35.540Z"
+    "signedAt": "2026-03-24T18:33:33.007Z"
   }
 }

package/servers/google-maps/recipe.json

@@ -2,7 +2,7 @@
   "schemaVersion": 2,
   "id": "google-maps",
   "name": "Google Maps",
-  "description": "Google Maps integration for places search, geocoding, directions, and distance matrix via the official MCP server",
+  "description": "Google Maps integration for places search, geocoding, directions, and distance matrix via the @modelcontextprotocol MCP server",
   "repository": "https://github.com/modelcontextprotocol/servers",
   "transports": [
     {
@@ -45,7 +45,7 @@
     "pricing": "byok",
     "maturity": "stable",
     "subcategory": "search-engine",
-    "origin": "official",
+    "origin": "community",
     "countries": [
       "global"
     ],
@@ -63,7 +63,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "nc+tSwZmwP+MHs9z8VtyL5ZNf/iAsItoHdlygRezoZ5TjR2H++3nOlMmvp5JKC+Fq61P3iYFDRXTM0/VO6a3DA==",
+    "value": "xS+v0iMoG9mJ7RJErekW+Kww/7p18SNL5VxnxGz/haObs2hqrg85CJgTvgXKqnVkdRD9OuQRu0oRxtQgAzzOCw==",
     "signedFields": [
       "id",
       "name",
@@ -73,6 +73,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T14:24:43.129Z"
+    "signedAt": "2026-03-24T18:34:05.383Z"
   }
 }

package/servers/hostinger/recipe.json

@@ -44,7 +44,7 @@
     "pricing": "byok",
     "maturity": "stable",
     "subcategory": "cloud",
-    "origin": "community",
+    "origin": "official",
     "countries": [
       "global"
     ],
@@ -63,7 +63,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "Btxn49bVCENtq5hgKDhSvYjU8KtbcxFKIAjclBfxl2W87YDFH68q2vkXzkqd1B9QHE74P0djp8KWt5hR0m7lBA==",
+    "value": "7OV7oq85Z/TQkt4GzU82cAUDul+MvWRAqVaNBXY8xjRRsOwBkGTQcWxFo+8ZYbmEH+D8C0wRoragBxSonhXPBQ==",
     "signedFields": [
       "id",
       "name",
@@ -73,6 +73,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T14:25:53.457Z"
+    "signedAt": "2026-03-24T18:34:37.697Z"
   }
 }

package/servers/imap-email/recipe.json

@@ -17,7 +17,7 @@
     "homepage": "https://github.com/AIWerk/mcp-server-imap",
     "license": "MIT",
     "pricing": "free",
-    "maturity": "beta",
+    "maturity": "stable",
     "subcategory": "email",
     "origin": "aiwerk",
     "countries": [
@@ -88,7 +88,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "IJQAle97X6wb3x+b6tPne74fwOUhif34GLkd4QII9ziwPyYI7r4Tv6eiV8gBc06d+H2mxMcqn/LE7qxMrxpDDg==",
+    "value": "m6cRcAiimoEXyt9wl+69O5z0JeLWo9bUzgfo+/33H8WJamz9RTacywypQasBbBNDBjYn2QrXSnvEDOVJa1/JBg==",
     "signedFields": [
       "id",
       "name",
@@ -98,6 +98,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T15:15:39.408Z"
+    "signedAt": "2026-03-24T18:35:06.321Z"
   }
 }

package/servers/index.json

@@ -7,7 +7,7 @@
       "description": "Web scraping and automation platform with 3000+ ready-made actors for data extraction, browser automation, and crawling",
       "category": "automation",
       "subcategory": "scraping",
-      "origin": "community",
+      "origin": "official",
       "countries": [
         "global"
       ],
@@ -57,7 +57,7 @@
       "description": "Control and inspect a live Chrome browser for automation, debugging, and performance analysis via the Chrome DevTools Protocol",
       "category": "development",
       "subcategory": "monitoring",
-      "origin": "community",
+      "origin": "official",
       "countries": [
         "global"
       ],
@@ -104,10 +104,10 @@
     },
     "google-maps": {
       "name": "Google Maps",
-      "description": "Google Maps integration for places search, geocoding, directions, and distance matrix via the official MCP server",
+      "description": "Google Maps integration for places search, geocoding, directions, and distance matrix via the @modelcontextprotocol MCP server",
       "category": "data",
       "subcategory": "search-engine",
-      "origin": "official",
+      "origin": "community",
       "countries": [
         "global"
       ],
@@ -157,7 +157,7 @@
       "description": "Web hosting management via Hostinger API — manage domains, hosting plans, email accounts, and website settings",
       "category": "infrastructure",
       "subcategory": "cloud",
-      "origin": "community",
+      "origin": "official",
       "countries": [
         "global"
       ],
@@ -206,7 +206,7 @@
       "description": "Linear project management — create, update, and search issues, projects, and teams via the Linear API",
       "category": "productivity",
       "subcategory": "project-management",
-      "origin": "official",
+      "origin": "community",
       "countries": [
         "global"
       ],
@@ -375,6 +375,32 @@
       "maturity": "stable",
       "toolCount": null,
       "authSummary": "none"
+    },
+    "firecrawl": {
+      "name": "Firecrawl",
+      "description": "Web scraping, crawling, search, and structured data extraction — turn any website into clean markdown or structured data for AI agents",
+      "category": "data",
+      "subcategory": "web-scraping",
+      "origin": "official",
+      "countries": [
+        "global"
+      ],
+      "tags": [
+        "scraping",
+        "crawling",
+        "web",
+        "extraction",
+        "search",
+        "markdown"
+      ],
+      "authType": "api-key",
+      "transports": [
+        "stdio"
+      ],
+      "installMethod": "npx",
+      "maturity": "stable",
+      "toolCount": null,
+      "authSummary": "api-key"
     }
   }
 }

package/servers/linear/recipe.json

@@ -45,7 +45,7 @@
     "pricing": "byok",
     "maturity": "stable",
     "subcategory": "project-management",
-    "origin": "official",
+    "origin": "community",
     "countries": [
       "global"
     ],
@@ -63,7 +63,7 @@
   "signature": {
     "algorithm": "ed25519",
     "publisherId": "aiwerk",
-    "value": "Q3yXbOmJTN7V2+fUmXbxjtxv4ScPMGsQRbffDYYzsAjQGYllz8DwmuvZeHpLSGtP1Fl6g2X0iVnzlxfTzl3FCg==",
+    "value": "qmaBgrxT3lNFEjQ4MOBeyDC0Cs7pCG487so8PU89JU6MqHUj3foZHGH40BLVcb+nIjp5N1P503LphZCQIC0jBw==",
     "signedFields": [
       "id",
       "name",
@@ -73,6 +73,6 @@
       "install",
       "metadata"
     ],
-    "signedAt": "2026-03-20T14:24:58.098Z"
+    "signedAt": "2026-03-24T18:35:38.635Z"
   }
 }