npm - @danielblomma/cortex-mcp - Versions diffs - 1.7.2 → 2.0.3 - Mend

@danielblomma/cortex-mcp 1.7.2 → 2.0.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (79) hide show

package/README.md +4 -24
package/bin/cortex.mjs +679 -32
package/bin/style.mjs +349 -0
package/package.json +4 -3
package/scaffold/mcp/src/cli/enterprise-setup.ts +124 -0
package/scaffold/mcp/src/cli/govern.ts +987 -0
package/scaffold/mcp/src/cli/run.ts +306 -0
package/scaffold/mcp/src/cli/telemetry-test.ts +158 -0
package/scaffold/mcp/src/cli/ungoverned-detector.ts +168 -0
package/scaffold/mcp/src/core/audit/query.ts +81 -0
package/scaffold/mcp/src/core/audit/writer.ts +68 -0
package/scaffold/mcp/src/core/config.ts +329 -0
package/scaffold/mcp/src/core/index.ts +34 -0
package/scaffold/mcp/src/core/license.ts +202 -0
package/scaffold/mcp/src/core/policy/enforce.ts +98 -0
package/scaffold/mcp/src/core/policy/injection.ts +229 -0
package/scaffold/mcp/src/core/policy/store.ts +197 -0
package/scaffold/mcp/src/core/rbac/check.ts +40 -0
package/scaffold/mcp/src/core/telemetry/collector.ts +408 -0
package/scaffold/mcp/src/core/validators/builtins.ts +711 -0
package/scaffold/mcp/src/core/validators/config.ts +47 -0
package/scaffold/mcp/src/core/validators/engine.ts +199 -0
package/scaffold/mcp/src/core/validators/evaluators/code_comments.ts +294 -0
package/scaffold/mcp/src/core/validators/evaluators/regex.ts +144 -0
package/scaffold/mcp/src/daemon/client.ts +155 -0
package/scaffold/mcp/src/daemon/egress-proxy.ts +331 -0
package/scaffold/mcp/src/daemon/heartbeat-pusher.ts +147 -0
package/scaffold/mcp/src/daemon/heartbeat-tracker.ts +223 -0
package/scaffold/mcp/src/daemon/host-events-pusher.ts +285 -0
package/scaffold/mcp/src/daemon/main.ts +435 -0
package/scaffold/mcp/src/daemon/paths.ts +41 -0
package/scaffold/mcp/src/daemon/protocol.ts +101 -0
package/scaffold/mcp/src/daemon/server.ts +227 -0
package/scaffold/mcp/src/daemon/sync-checker.ts +213 -0
package/scaffold/mcp/src/daemon/ungoverned-scanner.ts +149 -0
package/scaffold/mcp/src/enterprise/audit/push.ts +84 -0
package/scaffold/mcp/src/enterprise/index.ts +386 -0
package/scaffold/mcp/src/enterprise/model/deploy.ts +33 -0
package/scaffold/mcp/src/enterprise/policy/sync.ts +146 -0
package/scaffold/mcp/src/enterprise/privacy/boundary.ts +214 -0
package/scaffold/mcp/src/enterprise/reviews/push.ts +79 -0
package/scaffold/mcp/src/enterprise/telemetry/sync.ts +73 -0
package/scaffold/mcp/src/enterprise/tools/enterprise.ts +1031 -0
package/scaffold/mcp/src/enterprise/tools/walk.ts +79 -0
package/scaffold/mcp/src/enterprise/violations/push.ts +102 -0
package/scaffold/mcp/src/enterprise/workflow/push.ts +60 -0
package/scaffold/mcp/src/enterprise/workflow/state.ts +535 -0
package/scaffold/mcp/src/hooks/pre-compact.ts +54 -0
package/scaffold/mcp/src/hooks/pre-tool-use.ts +96 -0
package/scaffold/mcp/src/hooks/session-end.ts +73 -0
package/scaffold/mcp/src/hooks/session-start.ts +78 -0
package/scaffold/mcp/src/hooks/shared.ts +134 -0
package/scaffold/mcp/src/hooks/stop.ts +60 -0
package/scaffold/mcp/src/hooks/user-prompt-submit.ts +64 -0
package/scaffold/mcp/src/loadGraph.ts +2 -0
package/scaffold/mcp/src/plugin.ts +150 -0
package/scaffold/mcp/src/server.ts +218 -7
package/scaffold/mcp/tests/copilot-shim.test.mjs +146 -0
package/scaffold/mcp/tests/daemon-client.test.mjs +32 -0
package/scaffold/mcp/tests/egress-proxy.test.mjs +239 -0
package/scaffold/mcp/tests/enterprise-config.test.mjs +154 -0
package/scaffold/mcp/tests/govern-install.test.mjs +320 -0
package/scaffold/mcp/tests/govern-repair.test.mjs +157 -0
package/scaffold/mcp/tests/govern-status.test.mjs +538 -0
package/scaffold/mcp/tests/govern.test.mjs +74 -0
package/scaffold/mcp/tests/heartbeat-pusher.test.mjs +154 -0
package/scaffold/mcp/tests/heartbeat-tracker.test.mjs +237 -0
package/scaffold/mcp/tests/host-events-pusher.test.mjs +347 -0
package/scaffold/mcp/tests/policy-check.test.mjs +220 -0
package/scaffold/mcp/tests/repo-name.test.mjs +134 -0
package/scaffold/mcp/tests/run.test.mjs +109 -0
package/scaffold/mcp/tests/sync-checker.test.mjs +188 -0
package/scaffold/mcp/tests/telemetry-collector.test.mjs +30 -0
package/scaffold/mcp/tests/ungoverned-detector.test.mjs +191 -0
package/scaffold/mcp/tests/ungoverned-scanner.test.mjs +198 -0
package/scaffold/scripts/bootstrap.sh +0 -11
package/scaffold/scripts/doctor.sh +24 -4
package/types.js +5 -0
package/docs/MCP_MARKETPLACE.md +0 -160

package/scaffold/mcp/src/core/telemetry/collector.ts ADDED Viewed

@@ -0,0 +1,408 @@
+import { readFileSync, writeFileSync, mkdirSync, existsSync } from "node:fs";
+import { createHash } from "node:crypto";
+import { hostname, platform, arch } from "node:os";
+import { join } from "node:path";
+export type TelemetryMetrics = {
+  period_start: string;
+  period_end: string;
+  total_tool_calls: number;
+  successful_tool_calls: number;
+  failed_tool_calls: number;
+  total_duration_ms: number;
+  session_starts: number;
+  session_ends: number;
+  session_duration_ms_total: number;
+  searches: number;
+  related_lookups: number;
+  caller_lookups: number;
+  trace_lookups: number;
+  impact_analyses: number;
+  rule_lookups: number;
+  reloads: number;
+  total_results_returned: number;
+  estimated_tokens_saved: number;
+  estimated_tokens_total: number;
+  client_version: string;
+  instance_id: string;
+  tool_metrics: Record<string, {
+    calls: number;
+    failures: number;
+    total_duration_ms: number;
+    total_results_returned: number;
+    estimated_tokens_saved: number;
+  }>;
+};
+const AVG_TOKENS_PER_RESULT = 400;
+function generateInstanceId(contextDir: string): string {
+  const idPath = join(contextDir, "telemetry", "machine_id");
+  if (existsSync(idPath)) {
+    try {
+      const existing = readFileSync(idPath, "utf8").trim();
+      if (existing.length > 0) return existing;
+    } catch (err) {
+      process.stderr.write(`[cortex-enterprise] machine_id exists but is unreadable: ${err instanceof Error ? err.message : String(err)}\n`);
+    }
+  }
+  // Note: hostname|platform|arch may collide on machines with identical defaults.
+  // Consider adding a random salt if fleet-wide uniqueness is critical.
+  const fingerprint = `${hostname()}|${platform()}|${arch()}`;
+  const id = createHash("sha256").update(fingerprint).digest("hex").slice(0, 16);
+  try {
+    mkdirSync(join(contextDir, "telemetry"), { recursive: true });
+    writeFileSync(idPath, id, "utf8");
+  } catch (err) {
+    process.stderr.write(`[cortex-enterprise] Could not persist instance id: ${err instanceof Error ? err.message : String(err)}\n`);
+  }
+  return id;
+}
+function emptyMetrics(clientVersion: string, instanceId: string): TelemetryMetrics {
+  const now = new Date().toISOString();
+  return {
+    period_start: now,
+    period_end: now,
+    total_tool_calls: 0,
+    successful_tool_calls: 0,
+    failed_tool_calls: 0,
+    total_duration_ms: 0,
+    session_starts: 0,
+    session_ends: 0,
+    session_duration_ms_total: 0,
+    searches: 0,
+    related_lookups: 0,
+    caller_lookups: 0,
+    trace_lookups: 0,
+    impact_analyses: 0,
+    rule_lookups: 0,
+    reloads: 0,
+    total_results_returned: 0,
+    estimated_tokens_saved: 0,
+    estimated_tokens_total: 0,
+    client_version: clientVersion,
+    instance_id: instanceId,
+    tool_metrics: {},
+  };
+}
+export type TelemetryEvent = {
+  tool: string;
+  phase: "success" | "error";
+  result_count?: number;
+  estimated_tokens_saved?: number;
+  duration_ms?: number;
+};
+function subtractCounter(current: number, pushed: number): number {
+  return Math.max(0, current - pushed);
+}
+function hasUsage(metrics: TelemetryMetrics): boolean {
+  if (
+    metrics.total_tool_calls > 0 ||
+    metrics.successful_tool_calls > 0 ||
+    metrics.failed_tool_calls > 0 ||
+    metrics.total_duration_ms > 0 ||
+    metrics.session_starts > 0 ||
+    metrics.session_ends > 0 ||
+    metrics.session_duration_ms_total > 0 ||
+    metrics.searches > 0 ||
+    metrics.related_lookups > 0 ||
+    metrics.caller_lookups > 0 ||
+    metrics.trace_lookups > 0 ||
+    metrics.impact_analyses > 0 ||
+    metrics.rule_lookups > 0 ||
+    metrics.reloads > 0 ||
+    metrics.total_results_returned > 0 ||
+    metrics.estimated_tokens_saved > 0 ||
+    metrics.estimated_tokens_total > 0
+  ) {
+    return true;
+  }
+  return Object.values(metrics.tool_metrics).some(
+    (bucket) =>
+      bucket.calls > 0 ||
+      bucket.failures > 0 ||
+      bucket.total_duration_ms > 0 ||
+      bucket.total_results_returned > 0 ||
+      bucket.estimated_tokens_saved > 0,
+  );
+}
+export class TelemetryCollector {
+  private metrics: TelemetryMetrics;
+  private readonly metricsPath: string;
+  private readonly clientVersion: string;
+  private readonly instanceId: string;
+  private dirty = false;
+  constructor(contextDir: string, clientVersion = "unknown") {
+    this.clientVersion = clientVersion;
+    this.instanceId = generateInstanceId(contextDir);
+    const telemetryDir = join(contextDir, "telemetry");
+    this.metricsPath = join(telemetryDir, "metrics.json");
+    // Load existing metrics or start fresh
+    try {
+      const raw = readFileSync(this.metricsPath, "utf8");
+      this.metrics = JSON.parse(raw);
+      this.metrics.client_version = clientVersion;
+      this.metrics.instance_id = this.instanceId;
+    } catch {
+      this.metrics = emptyMetrics(clientVersion, this.instanceId);
+    }
+  }
+  private bucket(toolName: string) {
+    if (!this.metrics.tool_metrics[toolName]) {
+      this.metrics.tool_metrics[toolName] = {
+        calls: 0,
+        failures: 0,
+        total_duration_ms: 0,
+        total_results_returned: 0,
+        estimated_tokens_saved: 0,
+      };
+    }
+    return this.metrics.tool_metrics[toolName];
+  }
+  recordEvent(event: TelemetryEvent): void {
+    const resultCount = event.result_count ?? 0;
+    const tokensSaved = event.estimated_tokens_saved ?? 0;
+    const durationMs = event.duration_ms ?? 0;
+    const toolBucket = this.bucket(event.tool);
+    this.metrics.total_tool_calls++;
+    this.metrics.total_duration_ms += durationMs;
+    this.metrics.period_end = new Date().toISOString();
+    toolBucket.calls++;
+    toolBucket.total_duration_ms += durationMs;
+    if (event.phase === "error") {
+      this.metrics.failed_tool_calls++;
+      toolBucket.failures++;
+      this.dirty = true;
+      return;
+    }
+    this.metrics.successful_tool_calls++;
+    switch (event.tool) {
+      case "context.search":
+        this.metrics.searches++;
+        break;
+      case "context.get_related":
+        this.metrics.related_lookups++;
+        break;
+      case "context.find_callers":
+        this.metrics.caller_lookups++;
+        break;
+      case "context.trace_calls":
+        this.metrics.trace_lookups++;
+        break;
+      case "context.impact":
+      case "context.impact_analysis":
+        this.metrics.impact_analyses++;
+        break;
+      case "context.get_rules":
+        this.metrics.rule_lookups++;
+        break;
+      case "context.reload":
+        this.metrics.reloads++;
+        break;
+    }
+    this.metrics.total_results_returned += resultCount;
+    this.metrics.estimated_tokens_saved += tokensSaved;
+    this.metrics.estimated_tokens_total += tokensSaved + resultCount * AVG_TOKENS_PER_RESULT;
+    toolBucket.total_results_returned += resultCount;
+    toolBucket.estimated_tokens_saved += tokensSaved;
+    this.dirty = true;
+  }
+  record(toolName: string, resultCount: number, tokensSaved: number): void {
+    this.recordEvent({
+      tool: toolName,
+      phase: "success",
+      result_count: resultCount,
+      estimated_tokens_saved: tokensSaved,
+      duration_ms: 0,
+    });
+  }
+  recordSessionStart(): void {
+    this.metrics.session_starts++;
+    this.metrics.period_end = new Date().toISOString();
+    this.dirty = true;
+  }
+  recordSessionEnd(durationMs: number): void {
+    this.metrics.session_ends++;
+    this.metrics.session_duration_ms_total += Math.max(0, durationMs);
+    this.metrics.period_end = new Date().toISOString();
+    this.dirty = true;
+  }
+  getMetrics(): TelemetryMetrics {
+    return {
+      ...this.metrics,
+      tool_metrics: Object.fromEntries(
+        Object.entries(this.metrics.tool_metrics).map(([toolName, bucket]) => [
+          toolName,
+          { ...bucket },
+        ]),
+      ),
+    };
+  }
+  acknowledgePush(pushed: TelemetryMetrics): void {
+    const nextToolMetrics: TelemetryMetrics["tool_metrics"] = {};
+    const toolNames = new Set([
+      ...Object.keys(this.metrics.tool_metrics),
+      ...Object.keys(pushed.tool_metrics ?? {}),
+    ]);
+    for (const toolName of toolNames) {
+      const currentBucket = this.metrics.tool_metrics[toolName] ?? {
+        calls: 0,
+        failures: 0,
+        total_duration_ms: 0,
+        total_results_returned: 0,
+        estimated_tokens_saved: 0,
+      };
+      const pushedBucket = pushed.tool_metrics?.[toolName] ?? {
+        calls: 0,
+        failures: 0,
+        total_duration_ms: 0,
+        total_results_returned: 0,
+        estimated_tokens_saved: 0,
+      };
+      const nextBucket = {
+        calls: subtractCounter(currentBucket.calls, pushedBucket.calls),
+        failures: subtractCounter(currentBucket.failures, pushedBucket.failures),
+        total_duration_ms: subtractCounter(
+          currentBucket.total_duration_ms,
+          pushedBucket.total_duration_ms,
+        ),
+        total_results_returned: subtractCounter(
+          currentBucket.total_results_returned,
+          pushedBucket.total_results_returned,
+        ),
+        estimated_tokens_saved: subtractCounter(
+          currentBucket.estimated_tokens_saved,
+          pushedBucket.estimated_tokens_saved,
+        ),
+      };
+      if (
+        nextBucket.calls > 0 ||
+        nextBucket.failures > 0 ||
+        nextBucket.total_duration_ms > 0 ||
+        nextBucket.total_results_returned > 0 ||
+        nextBucket.estimated_tokens_saved > 0
+      ) {
+        nextToolMetrics[toolName] = nextBucket;
+      }
+    }
+    const nextMetrics: TelemetryMetrics = {
+      ...this.metrics,
+      period_start: pushed.period_end,
+      total_tool_calls: subtractCounter(
+        this.metrics.total_tool_calls,
+        pushed.total_tool_calls,
+      ),
+      successful_tool_calls: subtractCounter(
+        this.metrics.successful_tool_calls,
+        pushed.successful_tool_calls,
+      ),
+      failed_tool_calls: subtractCounter(
+        this.metrics.failed_tool_calls,
+        pushed.failed_tool_calls,
+      ),
+      total_duration_ms: subtractCounter(
+        this.metrics.total_duration_ms,
+        pushed.total_duration_ms,
+      ),
+      session_starts: subtractCounter(
+        this.metrics.session_starts,
+        pushed.session_starts,
+      ),
+      session_ends: subtractCounter(this.metrics.session_ends, pushed.session_ends),
+      session_duration_ms_total: subtractCounter(
+        this.metrics.session_duration_ms_total,
+        pushed.session_duration_ms_total,
+      ),
+      searches: subtractCounter(this.metrics.searches, pushed.searches),
+      related_lookups: subtractCounter(
+        this.metrics.related_lookups,
+        pushed.related_lookups,
+      ),
+      caller_lookups: subtractCounter(
+        this.metrics.caller_lookups,
+        pushed.caller_lookups,
+      ),
+      trace_lookups: subtractCounter(
+        this.metrics.trace_lookups,
+        pushed.trace_lookups,
+      ),
+      impact_analyses: subtractCounter(
+        this.metrics.impact_analyses,
+        pushed.impact_analyses,
+      ),
+      rule_lookups: subtractCounter(
+        this.metrics.rule_lookups,
+        pushed.rule_lookups,
+      ),
+      reloads: subtractCounter(this.metrics.reloads, pushed.reloads),
+      total_results_returned: subtractCounter(
+        this.metrics.total_results_returned,
+        pushed.total_results_returned,
+      ),
+      estimated_tokens_saved: subtractCounter(
+        this.metrics.estimated_tokens_saved,
+        pushed.estimated_tokens_saved,
+      ),
+      estimated_tokens_total: subtractCounter(
+        this.metrics.estimated_tokens_total,
+        pushed.estimated_tokens_total,
+      ),
+      client_version: this.clientVersion,
+      instance_id: this.instanceId,
+      tool_metrics: nextToolMetrics,
+    };
+    if (hasUsage(nextMetrics)) {
+      this.metrics = nextMetrics;
+      this.metrics.period_end = new Date().toISOString();
+    } else {
+      this.metrics = emptyMetrics(this.clientVersion, this.instanceId);
+    }
+    this.dirty = true;
+  }
+  flush(): void {
+    if (!this.dirty) return;
+    try {
+      const dir = join(this.metricsPath, "..");
+      mkdirSync(dir, { recursive: true });
+      writeFileSync(this.metricsPath, JSON.stringify(this.metrics, null, 2));
+      this.dirty = false;
+    } catch {
+      process.stderr.write("[cortex-enterprise] Failed to flush telemetry metrics\n");
+    }
+  }
+  reset(): void {
+    this.metrics = emptyMetrics(this.clientVersion, this.instanceId);
+    this.dirty = true;
+  }
+}