@dollhousemcp/mcp-server 1.8.0 → 1.9.0

package/dist/elements/memories/MemoryManager.d.ts

@@ -0,0 +1,136 @@
+/**
+ * MemoryManager - Implementation of IElementManager for Memory elements
+ * Handles CRUD operations and lifecycle management for memories implementing IElement
+ *
+ * FIXES IMPLEMENTED:
+ * 1. CRITICAL: Fixed race conditions in file operations by using FileLockManager for atomic reads/writes
+ * 2. HIGH: Fixed unvalidated YAML parsing vulnerability by using SecureYamlParser
+ * 3. MEDIUM: All user inputs are now validated and sanitized
+ * 4. MEDIUM: Audit logging added for security operations
+ * 5. MEDIUM: Path validation prevents directory traversal attacks
+ */
+import { Memory, MemoryMetadata } from './Memory.js';
+import { IElementManager } from '../../types/elements/IElementManager.js';
+import { ElementValidationResult } from '../../types/elements/IElement.js';
+import { ElementType } from '../../portfolio/types.js';
+export declare class MemoryManager implements IElementManager<Memory> {
+    private portfolioManager;
+    private memoriesDir;
+    private memoryCache;
+    private contentHashIndex;
+    private dateFoldersCache;
+    private dateFoldersCacheTimestamp;
+    constructor();
+    /**
+     * Load a memory from file
+     * SECURITY FIX #1: Uses FileLockManager.atomicReadFile() instead of fs.readFile()
+     * to prevent race conditions and ensure atomic file operations
+     * @param filePath Path to the memory file to load
+     * @returns Promise resolving to the loaded Memory instance
+     * @throws {Error} When file cannot be found or path validation fails
+     * @throws {Error} When YAML parsing fails or content is malformed
+     * @throws {Error} When memory validation fails after loading
+     */
+    load(filePath: string): Promise<Memory>;
+    /**
+     * Generate date-based path for memory storage
+     * Creates YYYY-MM-DD folder structure to prevent flat directory issues
+     * @param element Memory element to save
+     * @param fileName Optional custom filename
+     * @returns Full path to memory file
+     */
+    private generateMemoryPath;
+    /**
+     * Calculate SHA-256 hash of memory content for deduplication
+     * Implements Issue #994 - Content-based deduplication
+     */
+    private calculateContentHash;
+    /**
+     * Get all date folders in memories directory
+     * PERFORMANCE IMPROVEMENT: Uses cache to avoid repeated directory scanning
+     * Cache is invalidated when new folders are created or after 60 seconds
+     * @returns Array of date folder names
+     */
+    private getDateFolders;
+    /**
+     * Save a memory to file
+     * SECURITY FIX #1: Uses FileLockManager.atomicWriteFile() for atomic operations
+     * @param element Memory element to save
+     * @param filePath Optional custom file path, defaults to date-based path
+     * @returns Promise that resolves when save is complete
+     * @throws {Error} When memory validation fails before saving
+     * @throws {Error} When path validation fails or file system errors occur
+     * @throws {Error} When atomic write operation fails
+     */
+    save(element: Memory, filePath?: string): Promise<void>;
+    /**
+     * List all available memories
+     */
+    list(): Promise<Memory[]>;
+    /**
+     * Find memories matching a predicate
+     */
+    find(predicate: (element: Memory) => boolean): Promise<Memory | undefined>;
+    /**
+     * Find multiple memories matching a predicate
+     */
+    findMany(predicate: (element: Memory) => boolean): Promise<Memory[]>;
+    /**
+     * Delete a memory file
+     * SECURITY: Validates path and logs deletion
+     */
+    delete(filePath: string): Promise<void>;
+    /**
+     * Check if a memory file exists
+     */
+    exists(filePath: string): Promise<boolean>;
+    /**
+     * Create a new memory with metadata
+     */
+    create(metadata: Partial<MemoryMetadata>): Promise<Memory>;
+    /**
+     * Import a memory from JSON/YAML string
+     * SECURITY: Full validation of imported content
+     * @param data JSON or YAML string containing memory data
+     * @param format Format of the input data ('json' or 'yaml')
+     * @returns Promise resolving to the imported Memory instance
+     * @throws {Error} When JSON/YAML parsing fails
+     * @throws {Error} When imported data is missing required fields
+     * @throws {Error} When YAML content exceeds maximum allowed size
+     * @throws {Error} When imported memory fails validation
+     */
+    importElement(data: string, format?: 'json' | 'yaml'): Promise<Memory>;
+    /**
+     * Export a memory to YAML string
+     */
+    exportElement(element: Memory): Promise<string>;
+    /**
+     * Validate a memory element
+     */
+    validate(element: Memory): ElementValidationResult;
+    /**
+     * Validate and resolve a file path
+     * SECURITY: Prevents directory traversal attacks
+     */
+    validatePath(filePath: string): boolean;
+    /**
+     * Get the element type this manager handles
+     */
+    getElementType(): ElementType;
+    /**
+     * Get the file extension for memory files
+     */
+    getFileExtension(): string;
+    /**
+     * Validate and resolve a file path to prevent security issues
+     * @param filePath Path to validate and resolve
+     * @returns Promise resolving to the validated full path
+     * @throws {Error} When path contains traversal attempts (../)
+     * @throws {Error} When path is absolute or invalid
+     * @throws {Error} When file extension is not allowed (.md, .yaml, .yml)
+     * @throws {Error} When resolved path would be outside memories directory
+     */
+    private validateAndResolvePath;
+    private parseMemoryFile;
+}
+//# sourceMappingURL=MemoryManager.d.ts.map

package/dist/elements/memories/MemoryManager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"MemoryManager.d.ts","sourceRoot":"","sources":["../../../src/elements/memories/MemoryManager.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,MAAM,EAAE,cAAc,EAAe,MAAM,aAAa,CAAC;AAClE,OAAO,EAAE,eAAe,EAAE,MAAM,yCAAyC,CAAC;AAC1E,OAAO,EAAE,uBAAuB,EAAE,MAAM,kCAAkC,CAAC;AAC3E,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AAavD,qBAAa,aAAc,YAAW,eAAe,CAAC,MAAM,CAAC;IAC3D,OAAO,CAAC,gBAAgB,CAAmB;IAC3C,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,WAAW,CAAkC;IACrD,OAAO,CAAC,gBAAgB,CAAkC;IAI1D,OAAO,CAAC,gBAAgB,CAAyB;IACjD,OAAO,CAAC,yBAAyB,CAAa;;IAO9C;;;;;;;;;OASG;IACG,IAAI,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA6F7C;;;;;;OAMG;YACW,kBAAkB;IAyBhC;;;OAGG;IACH,OAAO,CAAC,oBAAoB;IAQ5B;;;;;OAKG;YACW,cAAc;IAkC5B;;;;;;;;;OASG;IACG,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IA0F7D;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;IA4D/B;;OAEG;IACG,IAAI,CAAC,SAAS,EAAE,CAAC,OAAO,EAAE,MAAM,KAAK,OAAO,GAAG,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC;IAKhF;;OAEG;IACG,QAAQ,CAAC,SAAS,EAAE,CAAC,OAAO,EAAE,MAAM,KAAK,OAAO,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;IAK1E;;;OAGG;IACG,MAAM,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IA6B7C;;OAEG;IACG,MAAM,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAUhD;;OAEG;IACG,MAAM,CAAC,QAAQ,EAAE,OAAO,CAAC,cAAc,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC;IAIhE;;;;;;;;;;OAUG;IACG,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,GAAE,MAAM,GAAG,MAAe,GAAG,OAAO,CAAC,MAAM,CAAC;IA0EpF;;OAEG;IACG,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAuBrD;;OAEG;IACH,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,uBAAuB;IAIlD;;;OAGG;IACH,YAAY,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IAqBvC;;OAEG;IACH,cAAc,IAAI,WAAW;IAI7B;;OAEG;IACH,gBAAgB,IAAI,MAAM;IAM1B;;;;;;;;OAQG;YACW,sBAAsB;IAgCpC,OAAO,CAAC,eAAe;CA0BxB"}