@dayby/mcp-server 0.3.1 → 0.3.2

package/README.md

@@ -17,14 +17,14 @@ draft_post → sanitized locally, never touches network
 
 | Tool | What it does | Touches network? |
 |---|---|---|
-| `draft_post` | Creates a sanitized draft from your description | ❌ No |
-| `edit_draft` | Modify a draft before publishing | ❌ No |
-| `check_content` | Dry-run: see what would get stripped | ❌ No |
-| `publish_post` | Publish an approved draft to DayBy | ✅ Yes (sanitized only) |
-| `list_posts` | List your recent DayBy posts | ✅ Yes |
-| `get_post` | Fetch a single post by slug | ✅ Yes |
-| `update_post` | Update title, content, or visibility | ✅ Yes |
-| `delete_post` | Permanently delete a post | ✅ Yes |
+| `draft_post` | Creates a sanitized draft from your description | No |
+| `edit_draft` | Modify a draft before publishing | No |
+| `check_content` | Dry-run: see what would get stripped | No |
+| `publish_post` | Publish an approved draft to DayBy | Yes (sanitized only) |
+| `list_posts` | List your recent DayBy posts | Yes |
+| `get_post` | Fetch a single post by slug | Yes |
+| `update_post` | Update title, content, or visibility | Yes |
+| `delete_post` | Permanently delete a post | Yes |
 
 ## What Gets Stripped (Automatically)
 
@@ -35,30 +35,11 @@ draft_post → sanitized locally, never touches network
 - SSH keys, JWTs, GitHub tokens
 - Database connection URLs
 - File paths with usernames
-- Plus anything you configure in blocklist ↓
+- Plus anything you configure in blocklist
 
 ## Setup
 
-### 1. Get a DayBy API Key
-
-1. Sign up at [dayby.dev](https://dayby.dev)
-2. Go to Settings → API
-3. Enable API access and generate a key
-
-### 2. Configure Sanitizer (Optional but Recommended)
-
-Create `~/.dayby/sanitizer.json`:
-
-```json
-{
-  "blockedTerms": ["YourCompany", "ProjectCodename"],
-  "blockedDomains": ["internal.yourcompany.com"],
-  "blockedNames": ["Your Boss Name"],
-  "customPatterns": ["JIRA-\\d+", "INTERNAL-\\d+"]
-}
-```
-
-### 3. Install
+### 1. Install
 
 **Option A — npx (no install needed):**
 
@@ -80,7 +61,25 @@ cd dayby-mcp-server
 npm install && npm run build
 ```
 
-### 4. Add to Claude Code / Claude Desktop / Cursor
+### 2. Authenticate
+
+Run the auth command to connect your DayBy account:
+
+```bash
+dayby-mcp auth
+```
+
+This opens your browser for a one-click authorization. Your token is saved locally at `~/.dayby/credentials.json`.
+
+To log out:
+
+```bash
+dayby-mcp auth --logout
+```
+
+Alternatively, you can set the `DAYBY_API_KEY` environment variable (from Settings > API on dayby.dev).
+
+### 3. Add to your MCP client
 
 **Claude Code (simplest):**
 
@@ -101,10 +100,7 @@ claude mcp add dayby -- npx @dayby/mcp-server
   "mcpServers": {
     "dayby": {
       "command": "npx",
-      "args": ["@dayby/mcp-server"],
-      "env": {
-        "DAYBY_API_KEY": "your-api-key-here"
-      }
+      "args": ["@dayby/mcp-server"]
     }
   }
 }
@@ -117,15 +113,25 @@ claude mcp add dayby -- npx @dayby/mcp-server
   "mcpServers": {
     "dayby": {
       "command": "npx",
-      "args": ["@dayby/mcp-server"],
-      "env": {
-        "DAYBY_API_KEY": "your-api-key-here"
-      }
+      "args": ["@dayby/mcp-server"]
     }
   }
 }
 ```
 
+### 4. Configure Sanitizer (Optional but Recommended)
+
+Create `~/.dayby/sanitizer.json`:
+
+```json
+{
+  "blockedTerms": ["YourCompany", "ProjectCodename"],
+  "blockedDomains": ["internal.yourcompany.com"],
+  "blockedNames": ["Your Boss Name"],
+  "customPatterns": ["JIRA-\\d+", "INTERNAL-\\d+"]
+}
+```
+
 ## Usage Examples
 
 **While coding:**
@@ -143,7 +149,7 @@ Claude will use `draft_post` to sanitize locally, show you a preview, and only p
 
 | Variable | Description | Default |
 |---|---|---|
-| `DAYBY_API_KEY` | Your DayBy API key | (required) |
+| `DAYBY_API_KEY` | Your DayBy API key (alternative to `dayby-mcp auth`) | (none) |
 | `DAYBY_API_URL` | DayBy API URL | `https://dayby.dev` |
 | `DAYBY_BLOCKED_TERMS` | Comma-separated blocked terms | (none) |
 | `DAYBY_BLOCKED_DOMAINS` | Comma-separated blocked domains | (none) |
@@ -170,6 +176,10 @@ Then restart your terminal or run `source ~/.bashrc` again.
 
 Restart Claude Code / Claude Desktop after adding the MCP config.
 
+**`Not authenticated` errors**
+
+Run `dayby-mcp auth` to connect your account, or set `DAYBY_API_KEY` in your environment.
+
 ## License
 
 MIT

package/dist/auth.js

@@ -45,11 +45,12 @@ exports.clearCredentials = clearCredentials;
 exports.getStoredToken = getStoredToken;
 exports.runAuthFlow = runAuthFlow;
 const fs = __importStar(require("fs"));
+const os = __importStar(require("os"));
 const path = __importStar(require("path"));
 const child_process_1 = require("child_process");
 // --- Config ---
 const DEFAULT_API_URL = 'https://dayby.dev';
-const CREDENTIALS_DIR = path.join(process.env.HOME || '~', '.dayby');
+const CREDENTIALS_DIR = path.join(os.homedir(), '.dayby');
 const CREDENTIALS_FILE = path.join(CREDENTIALS_DIR, 'credentials.json');
 const POLL_INTERVAL_MS = 2000;
 // --- Storage ---

package/dist/dayby-client.d.ts

@@ -42,6 +42,7 @@ export declare class DayByClient {
         title: string;
         content: string;
         visibility?: string;
+        tags?: string[];
     }): Promise<{
         post: DayByPost;
     }>;
@@ -49,9 +50,14 @@ export declare class DayByClient {
         title?: string;
         content?: string;
         visibility?: string;
+        tags?: string[];
     }): Promise<{
         post: DayByPost;
     }>;
+    updateArticle(slug: string, htmlArticle: string): Promise<{
+        post: DayByPost;
+        message: string;
+    }>;
     deletePost(slug: string): Promise<{
         message: string;
     }>;

package/dist/dayby-client.js

@@ -53,6 +53,9 @@ class DayByClient {
             post: params,
         });
     }
+    async updateArticle(slug, htmlArticle) {
+        return this.request('PUT', `/api/v2/posts/${slug}/article`, { html_article: htmlArticle });
+    }
     async deletePost(slug) {
         return this.request('DELETE', `/api/v2/posts/${slug}`);
     }

package/dist/index.js

@@ -54,6 +54,7 @@ const dayby_client_js_1 = require("./dayby-client.js");
 const auth_js_1 = require("./auth.js");
 const visibility_js_1 = require("./visibility.js");
 const fs = __importStar(require("fs"));
+const os = __importStar(require("os"));
 const path = __importStar(require("path"));
 // --- Auth subcommand ---
 async function handleAuthCommand() {
@@ -76,7 +77,7 @@ function loadConfig() {
     // 3. Load sanitizer config from file if it exists
     let sanitizerConfig = {};
     const configPaths = [
-        path.join(process.env.HOME || '~', '.dayby', 'sanitizer.json'),
+        path.join(os.homedir(), '.dayby', 'sanitizer.json'),
         path.join(process.cwd(), '.dayby-sanitizer.json'),
     ];
     for (const configPath of configPaths) {
@@ -137,7 +138,8 @@ async function main() {
         title: zod_1.z.string().describe('Post title — focus on the technology/skill learned'),
         content: zod_1.z.string().describe('Post content — describe what you learned, built, or solved. The sanitizer will strip any sensitive data automatically.'),
         visibility: zod_1.z.enum(['published', 'draft']).default('published').describe('Post visibility on DayBy'),
-    }, async ({ title, content, visibility }) => {
+        tags: zod_1.z.array(zod_1.z.string()).optional().describe('Tags/project names for this post (e.g., ["playflow", "rust"]). Used to filter posts by project in the public API.'),
+    }, async ({ title, content, visibility, tags }) => {
         // Sanitize both title and content locally
         const titleResult = sanitizer.sanitize(title);
         const contentResult = sanitizer.sanitize(content);
@@ -150,6 +152,7 @@ async function main() {
             sanitizedContent: contentResult.clean,
             strippedItems: allStripped,
             visibility,
+            tags: tags || [],
             createdAt: new Date(),
         };
         drafts.set(draftId, draft);
@@ -158,6 +161,9 @@ async function main() {
         response += `**Title:** ${draft.sanitizedTitle}\n\n`;
         response += `**Content:**\n${draft.sanitizedContent}\n\n`;
         response += `**Visibility:** ${visibility}\n`;
+        if (draft.tags.length > 0) {
+            response += `**Tags:** ${draft.tags.join(', ')}\n`;
+        }
         if (allStripped.length > 0) {
             response += `\n⚠️ **Sanitizer removed ${allStripped.length} sensitive item(s):**\n`;
             for (const item of allStripped.slice(0, 10)) {
@@ -183,7 +189,8 @@ async function main() {
         title: zod_1.z.string().optional().describe('Updated title (will be re-sanitized)'),
         content: zod_1.z.string().optional().describe('Updated content (will be re-sanitized)'),
         visibility: zod_1.z.enum(['published', 'draft']).optional().describe('Updated visibility'),
-    }, async ({ draft_id, title, content, visibility }) => {
+        tags: zod_1.z.array(zod_1.z.string()).optional().describe('Updated tags/project names'),
+    }, async ({ draft_id, title, content, visibility, tags }) => {
         const draft = drafts.get(draft_id);
         if (!draft) {
             return {
@@ -204,6 +211,9 @@ async function main() {
         if (visibility) {
             draft.visibility = visibility;
         }
+        if (tags) {
+            draft.tags = tags;
+        }
         let response = `✏️ **Draft Updated** (ID: ${draft_id})\n\n`;
         response += `**Title:** ${draft.sanitizedTitle}\n\n`;
         response += `**Content:**\n${draft.sanitizedContent}\n\n`;
@@ -240,6 +250,7 @@ async function main() {
                 title: draft.sanitizedTitle,
                 content: draft.sanitizedContent,
                 visibility: (0, visibility_js_1.toApiVisibility)(draft.visibility),
+                tags: draft.tags.length > 0 ? draft.tags : undefined,
             });
             let response = `✅ **Published to DayBy!**\n\n`;
             response += `**Title:** ${result.post.title}\n`;
@@ -332,7 +343,8 @@ async function main() {
         title: zod_1.z.string().optional().describe('New title (will be sanitized)'),
         content: zod_1.z.string().optional().describe('New content (will be sanitized)'),
         visibility: zod_1.z.enum(['published', 'draft']).optional().describe('New visibility'),
-    }, async ({ slug, title, content, visibility }) => {
+        tags: zod_1.z.array(zod_1.z.string()).optional().describe('Updated tags/project names'),
+    }, async ({ slug, title, content, visibility, tags }) => {
         if (!(process.env.DAYBY_API_KEY || (0, auth_js_1.getStoredToken)(config.apiUrl) || config.apiKey)) {
             return { content: [{ type: 'text', text: '❌ Not authenticated. Run `dayby-mcp auth` to connect your DayBy account.' }] };
         }
@@ -343,8 +355,10 @@ async function main() {
             params.content = sanitizer.sanitize(content).clean;
         if (visibility)
             params.visibility = (0, visibility_js_1.toApiVisibility)(visibility);
+        if (tags)
+            params.tags = tags;
         if (Object.keys(params).length === 0) {
-            return { content: [{ type: 'text', text: '❌ Provide at least one field to update (title, content, or visibility).' }] };
+            return { content: [{ type: 'text', text: '❌ Provide at least one field to update (title, content, visibility, or tags).' }] };
         }
         try {
             const result = await client.updatePost(slug, params);
@@ -362,6 +376,45 @@ async function main() {
         }
     });
     // ========================================
+    // Tool: update_article
+    // Let the user's AI generate or edit the HTML article directly.
+    // ========================================
+    server.tool('update_article', `Set or replace the HTML article for a DayBy post. Use this to write custom articles with CTAs, rich formatting, or any content the user wants.
+
+DayBy article HTML rules:
+- Return clean HTML fragments only (no wrapper divs, article tags, doctype, html, head, body)
+- Use <p> tags for paragraphs (no classes needed)
+- Use <h2> for section headings, <h3> for sub-sections
+- Use <strong> for key terms, <em> for emphasis
+- Use <blockquote> for pull quotes
+- Use <pre><code> for code blocks, <code> inline for references
+- Use <ul>/<ol> for lists (prefer prose over lists)
+- Use <a href="..." target="_blank"> for links and CTAs
+- No CSS classes on elements (the page stylesheet handles typography)
+- Target length: 600-1000 words
+- Keep the author's voice and perspective from the original post`, {
+        slug: zod_1.z.string().describe('The post slug to update'),
+        html_article: zod_1.z.string().describe('The HTML article content. Follow DayBy article HTML rules in the tool description.'),
+    }, async ({ slug, html_article }) => {
+        if (!(process.env.DAYBY_API_KEY || (0, auth_js_1.getStoredToken)(config.apiUrl) || config.apiKey)) {
+            return { content: [{ type: 'text', text: '❌ Not authenticated. Run `dayby-mcp auth` to connect your DayBy account.' }] };
+        }
+        try {
+            const result = await client.updateArticle(slug, html_article);
+            const post = result.post;
+            let response = `✅ **Article Updated**\n\n`;
+            response += `**Title:** ${post.title}\n`;
+            response += `**URL:** ${post.url}\n`;
+            response += `${result.message}\n`;
+            return { content: [{ type: 'text', text: response }] };
+        }
+        catch (e) {
+            return {
+                content: [{ type: 'text', text: `❌ Failed to update article: ${e instanceof Error ? e.message : 'Unknown error'}` }],
+            };
+        }
+    });
+    // ========================================
     // Tool: delete_post
     // ========================================
     server.tool('delete_post', 'Permanently delete a DayBy post by its slug.', {

package/dist/sanitizer.test.js

@@ -6,8 +6,9 @@ const sanitizer_js_1 = require("./sanitizer.js");
     const sanitizer = new sanitizer_js_1.Sanitizer();
     (0, vitest_1.describe)('default patterns', () => {
         (0, vitest_1.it)('strips API keys', () => {
-            const result = sanitizer.sanitize('My api_key=sk_live_abc123def456ghi789jkl012');
-            (0, vitest_1.expect)(result.clean).not.toContain('sk_live_abc123def456ghi789jkl012');
+            const fakeKey = 'xk_test_' + 'a1b2c3d4e5f6g7h8i9j0k1l2';
+            const result = sanitizer.sanitize(`My api_key=${fakeKey}`);
+            (0, vitest_1.expect)(result.clean).not.toContain(fakeKey);
             (0, vitest_1.expect)(result.stripped.length).toBeGreaterThan(0);
         });
         (0, vitest_1.it)('strips AWS access keys', () => {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@dayby/mcp-server",
-  "version": "0.3.1",
+  "version": "0.3.2",
   "description": "DayBy MCP Server — Post your dev progress from Claude, Cursor, or any MCP client. Local sanitization built in.",
   "main": "dist/index.js",
   "bin": {