@businessmaps/bifrost 0.0.1

package/LICENSE

@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

package/README.md

@@ -0,0 +1,95 @@
+# @businessmaps/bifrost
+
+[![CI](https://github.com/Business-Maps/mcp/actions/workflows/ci.yml/badge.svg)](https://github.com/Business-Maps/mcp/actions/workflows/ci.yml)
+[![npm](https://img.shields.io/npm/v/@businessmaps/bifrost)](https://www.npmjs.com/package/@businessmaps/bifrost)
+
+MCP server that lets AI tools call functions running in your browser.
+
+The daemon sits between any MCP client and your browser tab. It speaks JSON-RPC over stdio on one side and WebSocket on the other. Your browser app connects, registers tools, and the AI can call them. No dependencies, just Node 18+.
+
+## Install
+
+```bash
+npm i -g @businessmaps/bifrost
+```
+
+or without npm
+
+```bash
+curl -fsSL https://raw.githubusercontent.com/Business-Maps/mcp/main/install.sh | sh
+```
+
+Then register it with your MCP client. For example:
+
+```bash
+claude mcp add --transport stdio bifrost -- bifrost
+```
+
+The MCP client starts the daemon automatically.
+
+## Usage
+
+Install the client library in your browser app:
+
+```bash
+npm i @businessmaps/bifrost-browser
+```
+
+Or use a CDN:
+
+```html
+<script src="https://unpkg.com/@businessmaps/bifrost-browser"></script>
+```
+
+TypeScript types are included out of the box — no `@types` package needed.
+
+Then register your tools:
+
+```js
+import { BifrostBrowser } from "@businessmaps/bifrost-browser";
+
+const bridge = new BifrostBrowser({
+  port: 3099,
+  token: "TOKEN", // printed to stderr when daemon starts
+});
+
+bridge.registerTools([
+  {
+    name: "get_selection",
+    description: "Returns the user's text selection",
+    inputSchema: { type: "object", properties: {} },
+    handler: async () => window.getSelection().toString(),
+  },
+]);
+
+bridge.connect();
+```
+
+Handlers run in the browser -- full access to DOM, Canvas, IndexedDB, Clipboard, `fetch`, etc.
+
+There's a working [live demo](https://business-maps.github.io/mcp/demo/) with five sample tools you can try right away.
+
+## Auth
+
+The daemon generates a token on startup and prints it to stderr. Pass it to the client — the token is sent via the `Sec-WebSocket-Protocol` header during the WebSocket handshake. Auth is always enabled.
+
+## Multiple tabs
+
+Each tab registers its own tools. Calls route to whoever owns the tool. Disconnecting a tab removes its tools.
+
+## Configuration
+
+The daemon reads its port from the `PORT` environment variable (default: `3099`).
+
+## Dev
+
+```bash
+git clone https://github.com/Business-Maps/mcp.git && cd mcp
+npm test  # no install needed, no deps
+```
+
+[Architecture](docs/architecture.md) · [Client API](docs/client-api.md) · [Contributing](CONTRIBUTING.md)
+
+## License
+
+Apache 2.0

package/bin/bifrost

@@ -0,0 +1,276 @@
+#!/usr/bin/env node
+
+import { createInterface } from "readline";
+import { randomBytes } from "crypto";
+import { fileURLToPath } from "url";
+import { dirname, join } from "path";
+
+const __dirname = dirname(fileURLToPath(import.meta.url));
+
+const { MiniWebSocketServer } = await import(
+  new URL(`file://${join(__dirname, "..", "lib", "websocket.js")}`)
+).catch(() =>
+  import(new URL(`file://${join(__dirname, "websocket.js")}`))
+);
+
+// ---------------------------------------------------------------------------
+// Config
+// ---------------------------------------------------------------------------
+const PORT = parseInt(process.env.PORT || "3099", 10);
+const TIMEOUT_MS = 120_000;
+const MAX_MESSAGE_SIZE = 1 * 1024 * 1024; // 1MB
+const MAX_PENDING_CALLS = 100;
+const MAX_CALLS_PER_MIN = 120;
+const HEARTBEAT_INTERVAL = 30_000;
+const HEARTBEAT_TIMEOUT = 10_000;
+
+const ALLOWED_ORIGINS = new Set([
+  "http://localhost",
+  "http://127.0.0.1",
+]);
+
+const AUTH_TOKEN = randomBytes(32).toString("base64url");
+
+// ---------------------------------------------------------------------------
+// State
+// ---------------------------------------------------------------------------
+const connections = new Map();
+const pendingCalls = new Map();
+let connectionIdCounter = 0;
+let callIdCounter = 0;
+
+// rate limiting
+const rateMap = new Map();
+
+// ---------------------------------------------------------------------------
+// Utils
+// ---------------------------------------------------------------------------
+function now() { return Date.now(); }
+
+function rateLimit(key) {
+  const bucket = rateMap.get(key) || { count: 0, ts: now() };
+  if (now() - bucket.ts > 60_000) {
+    bucket.count = 0;
+    bucket.ts = now();
+  }
+  bucket.count++;
+  rateMap.set(key, bucket);
+  return bucket.count <= MAX_CALLS_PER_MIN;
+}
+
+function safeParse(raw) {
+  if (typeof raw !== "string" || raw.length > MAX_MESSAGE_SIZE) return null;
+  try { return JSON.parse(raw); } catch { return null; }
+}
+
+function safeSend(ws, obj) {
+  const data = JSON.stringify(obj);
+  if (ws.bufferedAmount > MAX_MESSAGE_SIZE) {
+    ws.close();
+    return false;
+  }
+  ws.send(data);
+  return true;
+}
+
+// ---------------------------------------------------------------------------
+// MCP stdio
+// ---------------------------------------------------------------------------
+const rl = createInterface({ input: process.stdin });
+
+function sendMcp(msg) {
+  process.stdout.write(JSON.stringify(msg) + "\n");
+}
+
+rl.on("line", (line) => {
+  const msg = safeParse(line);
+  if (!msg) return;
+  handleMcp(msg);
+});
+
+// ---------------------------------------------------------------------------
+// MCP handler
+// ---------------------------------------------------------------------------
+function handleMcp(msg) {
+  const { method, id, params } = msg;
+
+  if (method === "initialize") {
+    sendMcp({
+      jsonrpc: "2.0",
+      id,
+      result: {
+        protocolVersion: "2024-11-05",
+        capabilities: { tools: { listChanged: true } },
+        serverInfo: { name: "bifrost", version: "secure" },
+      },
+    });
+    return;
+  }
+
+  if (method === "tools/list") {
+    const tools = [];
+    for (const [cid, conn] of connections) {
+      for (const tool of conn.tools.values()) {
+        tools.push({
+          name: `${cid}:${tool.name}`, // namespaced
+          description: tool.description || "",
+          inputSchema: tool.inputSchema || {},
+        });
+      }
+    }
+
+    sendMcp({ jsonrpc: "2.0", id, result: { tools } });
+    return;
+  }
+
+  if (method === "tools/call") {
+    const { name, arguments: args } = params;
+
+    const [connId, toolName] = name.split(":");
+    const conn = connections.get(connId);
+
+    if (!conn || !conn.tools.has(toolName)) {
+      sendMcp({
+        jsonrpc: "2.0",
+        id,
+        error: { code: -32000, message: "Tool not found" },
+      });
+      return;
+    }
+
+    if (pendingCalls.size >= MAX_PENDING_CALLS) {
+      sendMcp({
+        jsonrpc: "2.0",
+        id,
+        error: { code: -32001, message: "Too many pending calls" },
+      });
+      return;
+    }
+
+    const callId = `c_${++callIdCounter}`;
+
+    const timer = setTimeout(() => {
+      pendingCalls.delete(callId);
+    }, TIMEOUT_MS);
+
+    pendingCalls.set(callId, { id, timer, connId });
+
+    safeSend(conn.ws, {
+      type: "tool_call",
+      callId,
+      name: toolName,
+      arguments: args,
+    });
+
+    return;
+  }
+}
+
+// ---------------------------------------------------------------------------
+// WebSocket server
+// ---------------------------------------------------------------------------
+const wss = new MiniWebSocketServer({ port: PORT }, () => {
+  console.error(`Secure MCP bridge running on ws://localhost:${PORT}`);
+  console.error(`Auth token (use as header): ${AUTH_TOKEN}`);
+});
+
+wss.on("connection", (ws, req) => {
+  // 🔐 Origin check
+  const origin = req.headers.origin;
+  if (origin && !ALLOWED_ORIGINS.has(origin)) {
+    ws.close();
+    return;
+  }
+
+  // 🔐 Header-based auth
+  const token = req.headers["sec-websocket-protocol"];
+  if (token !== AUTH_TOKEN) {
+    ws.close();
+    return;
+  }
+
+  const connId = `conn_${++connectionIdCounter}`;
+
+  const conn = {
+    ws,
+    tools: new Map(),
+    lastPong: now(),
+  };
+
+  connections.set(connId, conn);
+
+  // heartbeat
+  const interval = setInterval(() => {
+    if (now() - conn.lastPong > HEARTBEAT_INTERVAL + HEARTBEAT_TIMEOUT) {
+      ws.close();
+      return;
+    }
+    safeSend(ws, { type: "ping" });
+  }, HEARTBEAT_INTERVAL);
+
+  ws.on("message", (raw) => {
+    if (!rateLimit(connId)) return;
+
+    const msg = safeParse(raw);
+    if (!msg) return;
+
+    if (msg.type === "pong") {
+      conn.lastPong = now();
+      return;
+    }
+
+    if (msg.type === "register_tools") {
+      conn.tools.clear();
+
+      for (const tool of msg.tools || []) {
+        if (!tool.name) continue;
+        conn.tools.set(tool.name, tool);
+      }
+
+      sendMcp({
+        jsonrpc: "2.0",
+        method: "notifications/tools/list_changed",
+      });
+      return;
+    }
+
+    if (msg.type === "tool_result") {
+      const pending = pendingCalls.get(msg.callId);
+      if (!pending) return;
+
+      clearTimeout(pending.timer);
+      pendingCalls.delete(msg.callId);
+
+      sendMcp({
+        jsonrpc: "2.0",
+        id: pending.id,
+        result: {
+          content: [
+            {
+              type: "text",
+              text: JSON.stringify(msg.result ?? msg.error),
+            },
+          ],
+        },
+      });
+    }
+  });
+
+  ws.on("close", () => {
+    clearInterval(interval);
+
+    for (const [id, p] of pendingCalls) {
+      if (p.connId === connId) {
+        clearTimeout(p.timer);
+        pendingCalls.delete(id);
+      }
+    }
+
+    connections.delete(connId);
+
+    sendMcp({
+      jsonrpc: "2.0",
+      method: "notifications/tools/list_changed",
+    });
+  });
+});

package/lib/websocket.js

@@ -0,0 +1,329 @@
+// ============================================================================
+// Hardened Minimal WebSocket server (RFC 6455 compliant core)
+// Zero dependencies
+// ============================================================================
+
+import { createServer } from "http";
+import { createHash } from "crypto";
+import { EventEmitter } from "events";
+
+const GUID = "258EAFA5-E914-47DA-95CA-5AB5DC65C97B";
+
+const MAX_PAYLOAD_SIZE = 100 * 1024 * 1024; // 100MB
+const MAX_BUFFER_SIZE = 200 * 1024 * 1024;  // 200MB total buffered
+
+// ---------------------------------------------------------------------------
+// MiniWebSocket
+// ---------------------------------------------------------------------------
+export class MiniWebSocket extends EventEmitter {
+  constructor(socket) {
+    super();
+    this.socket = socket;
+    this.readyState = 1;
+
+    this._buffer = Buffer.alloc(0);
+
+    // fragmentation state
+    this._fragType = null;
+    this._fragBuffer = [];
+
+    socket.on("data", (c) => this._onData(c));
+    socket.on("close", () => this._handleClose());
+    socket.on("end", () => this._handleClose());
+    socket.on("error", (err) => {
+      this._handleClose();
+      this.emit("error", err);
+    });
+  }
+
+  // -------------------------------------------------------------------------
+  // Public API
+  // -------------------------------------------------------------------------
+  send(data) {
+    if (this.readyState !== 1) return;
+
+    const payload = Buffer.isBuffer(data)
+      ? data
+      : Buffer.from(String(data));
+
+    this._writeFrame(0x1, payload);
+  }
+
+  close(code = 1000) {
+    if (this.readyState !== 1) return;
+    this.readyState = 2;
+
+    const buf = Buffer.alloc(2);
+    buf.writeUInt16BE(code, 0);
+
+    this._writeFrame(0x8, buf);
+    this.socket.end();
+  }
+
+  // -------------------------------------------------------------------------
+  // Core frame processing
+  // -------------------------------------------------------------------------
+  _onData(chunk) {
+    this._buffer = Buffer.concat([this._buffer, chunk]);
+
+    if (this._buffer.length > MAX_BUFFER_SIZE) {
+      this._fail(1009, "buffer overflow");
+      return;
+    }
+
+    while (true) {
+      const frame = this._decodeFrame(this._buffer);
+      if (!frame) break;
+
+      if (frame.error) {
+        this._fail(frame.code || 1002, frame.error);
+        return;
+      }
+
+      this._buffer = this._buffer.subarray(frame.totalLength);
+      this._handleFrame(frame);
+    }
+  }
+
+  _handleFrame(f) {
+    const { opcode, payload, fin } = f;
+
+    // control frames
+    if (opcode === 0x8) {
+      // close
+      this.close();
+      return;
+    }
+
+    if (opcode === 0x9) {
+      // ping → pong
+      this._writeFrame(0xA, payload);
+      return;
+    }
+
+    if (opcode === 0xA) {
+      this.emit("pong");
+      return;
+    }
+
+    // fragmentation handling
+    if (opcode === 0x0) {
+      if (!this._fragType) return this._fail(1002, "unexpected continuation");
+
+      this._fragBuffer.push(payload);
+
+      if (fin) {
+        const full = Buffer.concat(this._fragBuffer);
+        this._emitMessage(this._fragType, full);
+        this._fragType = null;
+        this._fragBuffer = [];
+      }
+      return;
+    }
+
+    if (opcode === 0x1 || opcode === 0x2) {
+      if (this._fragType) return this._fail(1002, "nested fragments");
+
+      if (!fin) {
+        this._fragType = opcode;
+        this._fragBuffer = [payload];
+        return;
+      }
+
+      this._emitMessage(opcode, payload);
+      return;
+    }
+
+    this._fail(1002, "invalid opcode");
+  }
+
+  _emitMessage(opcode, payload) {
+    if (opcode === 0x1) {
+      // text
+      try {
+        const text = new TextDecoder("utf-8", { fatal: true }).decode(payload);
+        this.emit("message", text);
+      } catch {
+        this._fail(1007, "invalid utf8");
+      }
+    } else {
+      // binary
+      this.emit("message", payload);
+    }
+  }
+
+  // -------------------------------------------------------------------------
+  // Frame decode (STRICT)
+  // -------------------------------------------------------------------------
+  _decodeFrame(buf) {
+    if (buf.length < 2) return null;
+
+    const b0 = buf[0];
+    const b1 = buf[1];
+
+    const fin = (b0 & 0x80) !== 0;
+    const opcode = b0 & 0x0f;
+
+    const masked = (b1 & 0x80) !== 0;
+    let payloadLen = b1 & 0x7f;
+
+    // MUST be masked (client → server)
+    if (!masked) return { error: "unmasked frame", code: 1002 };
+
+    // opcode validation
+    const valid = [0x0, 0x1, 0x2, 0x8, 0x9, 0xA];
+    if (!valid.includes(opcode)) {
+      return { error: "invalid opcode", code: 1002 };
+    }
+
+    let offset = 2;
+
+    if (payloadLen === 126) {
+      if (buf.length < 4) return null;
+      payloadLen = buf.readUInt16BE(2);
+      offset = 4;
+    } else if (payloadLen === 127) {
+      if (buf.length < 10) return null;
+      const big = buf.readBigUInt64BE(2);
+      if (big > BigInt(MAX_PAYLOAD_SIZE)) {
+        return { error: "too large", code: 1009 };
+      }
+      payloadLen = Number(big);
+      offset = 10;
+    }
+
+    if (payloadLen > MAX_PAYLOAD_SIZE) {
+      return { error: "too large", code: 1009 };
+    }
+
+    // control frames rules
+    if (opcode >= 0x8) {
+      if (!fin) return { error: "fragmented control", code: 1002 };
+      if (payloadLen > 125) return { error: "control too large", code: 1002 };
+    }
+
+    const total = offset + 4 + payloadLen;
+    if (buf.length < total) return null;
+
+    const mask = buf.subarray(offset, offset + 4);
+    const payload = Buffer.alloc(payloadLen);
+
+    for (let i = 0; i < payloadLen; i++) {
+      payload[i] = buf[offset + 4 + i] ^ mask[i % 4];
+    }
+
+    return {
+      fin,
+      opcode,
+      payload,
+      totalLength: total,
+    };
+  }
+
+  // -------------------------------------------------------------------------
+  // Frame encode
+  // -------------------------------------------------------------------------
+  _writeFrame(opcode, payload) {
+    if (this.readyState !== 1) return;
+
+    const len = payload.length;
+    let header;
+
+    if (len < 126) {
+      header = Buffer.alloc(2);
+      header[1] = len;
+    } else if (len < 65536) {
+      header = Buffer.alloc(4);
+      header[1] = 126;
+      header.writeUInt16BE(len, 2);
+    } else {
+      header = Buffer.alloc(10);
+      header[1] = 127;
+      header.writeBigUInt64BE(BigInt(len), 2);
+    }
+
+    header[0] = 0x80 | opcode;
+
+    const frame = Buffer.concat([header, payload]);
+
+    if (!this.socket.write(frame)) {
+      this.socket.once("drain", () => {});
+    }
+  }
+
+  _fail(code, reason) {
+    try {
+      const buf = Buffer.alloc(2);
+      buf.writeUInt16BE(code, 0);
+      this._writeFrame(0x8, buf);
+    } catch {}
+    this.socket.destroy();
+  }
+
+  _handleClose() {
+    if (this.readyState === 3) return;
+    this.readyState = 3;
+    this.emit("close");
+  }
+}
+
+// ---------------------------------------------------------------------------
+// Server
+// ---------------------------------------------------------------------------
+export class MiniWebSocketServer extends EventEmitter {
+  constructor({ port }, cb) {
+    super();
+
+    this.server = createServer((req, res) => {
+      res.writeHead(426);
+      res.end("Upgrade required");
+    });
+
+    this.server.on("upgrade", (req, socket, head) => {
+      // strict handshake validation
+      if (
+        req.headers["upgrade"]?.toLowerCase() !== "websocket" ||
+        !req.headers["connection"]?.toLowerCase().includes("upgrade") ||
+        req.headers["sec-websocket-version"] !== "13"
+      ) {
+        socket.destroy();
+        return;
+      }
+
+      const key = req.headers["sec-websocket-key"];
+      if (!key) {
+        socket.destroy();
+        return;
+      }
+
+      const accept = createHash("sha1")
+        .update(key + GUID)
+        .digest("base64");
+
+      // subprotocol (used for auth in your daemon)
+      const protocol = req.headers["sec-websocket-protocol"];
+
+      socket.setNoDelay(true);
+      socket.setTimeout(0);
+
+      socket.write(
+        "HTTP/1.1 101 Switching Protocols\r\n" +
+        "Upgrade: websocket\r\n" +
+        "Connection: Upgrade\r\n" +
+        `Sec-WebSocket-Accept: ${accept}\r\n` +
+        (protocol ? `Sec-WebSocket-Protocol: ${protocol}\r\n` : "") +
+        "\r\n"
+      );
+
+      if (head?.length) socket.unshift(head);
+
+      this.emit("connection", new MiniWebSocket(socket), req);
+    });
+
+    this.server.listen(port, "127.0.0.1", cb);
+  }
+
+  close(cb) {
+    this.server.close(cb);
+  }
+}

package/package.json

@@ -0,0 +1,39 @@
+{
+  "name": "@businessmaps/bifrost",
+  "version": "0.0.1",
+  "description": "Bridge any browser web app to Claude Code via MCP",
+  "type": "module",
+  "bin": {
+    "bifrost": "./bin/bifrost"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "start": "node bin/bifrost",
+    "test": "node --test test/*.test.js",
+    "release": "npm test && git tag -f v$(node -p \"require('./package.json').version\") && git push origin main --tags --force"
+  },
+  "engines": {
+    "node": ">=18"
+  },
+  "license": "Apache-2.0",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/Business-Maps/mcp.git"
+  },
+  "keywords": [
+    "bifrost",
+    "mcp",
+    "browser",
+    "bridge",
+    "claude",
+    "websocket"
+  ],
+  "files": [
+    "bin/",
+    "lib/",
+    "LICENSE",
+    "README.md"
+  ]
+}