@crypto512/jicon-mcp 0.5.0 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (2) hide show
  1. package/README.md +18 -10
  2. package/package.json +1 -1
package/README.md CHANGED
@@ -70,7 +70,13 @@ Jicon supports a flexible configuration hierarchy with permission control:
70
70
  "url": "https://confluence.example.com",
71
71
  "username": "your-email@example.com",
72
72
  "token": "your-api-token"
73
- },
73
+ }
74
+ }
75
+ ```
76
+
77
+ **Note:** This configuration uses the default `readonly` mode. To enable write operations, add:
78
+ ```json
79
+ {
74
80
  "permissions": {
75
81
  "mode": "full"
76
82
  }
@@ -81,19 +87,20 @@ Jicon supports a flexible configuration hierarchy with permission control:
81
87
 
82
88
  ### Permission Modes
83
89
 
84
- Control which tools are allowed to execute:
90
+ Control which tools are allowed to execute. **As of v0.3.0, the default mode is `"readonly"`** to implement the principle of least privilege.
85
91
 
86
- #### 1. **Full Access** (default)
92
+ #### 1. **Read-Only Mode** (default)
87
93
  ```json
88
- { "permissions": { "mode": "full" } }
94
+ { "permissions": { "mode": "readonly" } }
89
95
  ```
90
- All 39 tools are available.
96
+ Only read operations (26 tools: 10 Jira + 8 Confluence + 8 Tempo).
97
+ This is the **recommended default** for security - users must explicitly opt-in to write access.
91
98
 
92
- #### 2. **Read-Only Mode**
99
+ #### 2. **Full Access**
93
100
  ```json
94
- { "permissions": { "mode": "readonly" } }
101
+ { "permissions": { "mode": "full" } }
95
102
  ```
96
- Only read operations (26 tools: 10 Jira + 8 Confluence + 8 Tempo).
103
+ All 39 tools are available (read + write operations).
97
104
 
98
105
  #### 3. **Custom Mode** with Virtual Actions
99
106
 
@@ -251,11 +258,12 @@ Generate a Personal Access Token (PAT):
251
258
 
252
259
  ## Security Best Practices
253
260
 
254
- - ✅ Store credentials in environment variables
261
+ - ✅ **Default Read-Only Mode**: Jicon defaults to `readonly` mode - write access must be explicitly enabled
262
+ - ✅ Store credentials in `.jicon.json` and add it to `.gitignore`
255
263
  - ✅ Use API tokens with minimal required permissions
256
264
  - ✅ Regularly rotate API tokens
257
265
  - ✅ Never commit credentials to version control
258
- - ✅ Use read-only tokens for search/read operations
266
+ - ✅ Start with `readonly` mode and only enable write operations when needed
259
267
 
260
268
  ## License
261
269
 
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@crypto512/jicon-mcp",
3
- "version": "0.5.0",
3
+ "version": "0.6.1",
4
4
  "description": "Model Context Protocol server for Jira, Confluence, and Tempo integration",
5
5
  "main": "dist/index.js",
6
6
  "type": "module",