@drumbeats/mcp 0.1.0

package/dist/auth/scope-map.js

@@ -0,0 +1,32 @@
+/**
+ * OAuth token scope ↔ tool availability (the Drumbeats API key-scope model), reused
+ * verbatim from the stdio account-key model. The hosted transport reads these
+ * scopes from the verified OAuth token; stdio reads them from the account key.
+ */
+export const SCOPES = ['read', 'manage_monitors'];
+/**
+ * Tools unlocked by each scope. `read` is always granted; `manage_monitors`
+ * adds the write/lifecycle tools.
+ *
+ * Scaffold stub: the tool-name lists are populated in the tool phase. The
+ * structure exists from day one so the least-privilege gate is real.
+ */
+export const TOOLS_BY_SCOPE = {
+    read: [],
+    manage_monitors: [],
+};
+/** Returns the set of tool names available for a set of granted scopes. */
+export function toolsForScopes(scopes) {
+    const tools = new Set();
+    for (const scope of scopes) {
+        for (const tool of TOOLS_BY_SCOPE[scope]) {
+            tools.add(tool);
+        }
+    }
+    return tools;
+}
+/** Type guard: is an arbitrary string one of the known scopes? */
+export function isScope(value) {
+    return SCOPES.includes(value);
+}
+//# sourceMappingURL=scope-map.js.map

package/dist/auth/scope-map.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scope-map.js","sourceRoot":"","sources":["../../src/auth/scope-map.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,MAAM,CAAC,MAAM,MAAM,GAAG,CAAC,MAAM,EAAE,iBAAiB,CAAU,CAAA;AAG1D;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,cAAc,GAA+C;IACxE,IAAI,EAAE,EAAE;IACR,eAAe,EAAE,EAAE;CACpB,CAAA;AAED,2EAA2E;AAC3E,MAAM,UAAU,cAAc,CAAC,MAAwB;IACrD,MAAM,KAAK,GAAG,IAAI,GAAG,EAAU,CAAA;IAC/B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,KAAK,MAAM,IAAI,IAAI,cAAc,CAAC,KAAK,CAAC,EAAE,CAAC;YACzC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;QACjB,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAA;AACd,CAAC;AAED,kEAAkE;AAClE,MAAM,UAAU,OAAO,CAAC,KAAa;IACnC,OAAQ,MAA4B,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAA;AACtD,CAAC"}

package/dist/auth/verify-token.d.ts

@@ -0,0 +1,29 @@
+import type { Scope } from './scope-map.js';
+/** A successfully verified OAuth 2.1 bearer token. */
+export interface VerifiedToken {
+    readonly subject: string;
+    readonly scopes: readonly Scope[];
+    readonly audience: string;
+    readonly expiresAt: number;
+    /** The raw token, forwarded as the Bearer credential to the REST API. */
+    readonly raw: string;
+}
+export interface VerifyTokenOptions {
+    /** The MCP resource identifier the token's `aud` MUST match (RFC 8707). */
+    readonly expectedAudience: string;
+}
+/** Raised when a bearer token is missing, malformed, expired, or mis-audienced. */
+export declare class TokenVerificationError extends Error {
+    constructor(message: string);
+}
+/**
+ * Validates an inbound OAuth 2.1 bearer token: signature, expiry, audience
+ * (RFC 8707) and scope. Hosted transport only.
+ *
+ * Scaffold stub — intentionally not implemented. The hosted path is gated on
+ * the `id`-service OAuth upgrades (audience + scope claims, public-client PKCE,
+ * discovery metadata). Until those land this fails closed, so the hosted
+ * transport never accepts an unverified token.
+ */
+export declare function verifyBearerToken(token: string, options: VerifyTokenOptions): Promise<VerifiedToken>;
+//# sourceMappingURL=verify-token.d.ts.map

package/dist/auth/verify-token.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify-token.d.ts","sourceRoot":"","sources":["../../src/auth/verify-token.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,gBAAgB,CAAA;AAE3C,sDAAsD;AACtD,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;IACxB,QAAQ,CAAC,MAAM,EAAE,SAAS,KAAK,EAAE,CAAA;IACjC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,yEAAyE;IACzE,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAA;CACrB;AAED,MAAM,WAAW,kBAAkB;IACjC,2EAA2E;IAC3E,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;CAClC;AAED,mFAAmF;AACnF,qBAAa,sBAAuB,SAAQ,KAAK;gBACnC,OAAO,EAAE,MAAM;CAI5B;AAED;;;;;;;;GAQG;AACH,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,kBAAkB,GAAG,OAAO,CAAC,aAAa,CAAC,CASpG"}

package/dist/auth/verify-token.js

@@ -0,0 +1,23 @@
+/** Raised when a bearer token is missing, malformed, expired, or mis-audienced. */
+export class TokenVerificationError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = 'TokenVerificationError';
+    }
+}
+/**
+ * Validates an inbound OAuth 2.1 bearer token: signature, expiry, audience
+ * (RFC 8707) and scope. Hosted transport only.
+ *
+ * Scaffold stub — intentionally not implemented. The hosted path is gated on
+ * the `id`-service OAuth upgrades (audience + scope claims, public-client PKCE,
+ * discovery metadata). Until those land this fails closed, so the hosted
+ * transport never accepts an unverified token.
+ */
+export function verifyBearerToken(token, options) {
+    if (token.length === 0) {
+        return Promise.reject(new TokenVerificationError('missing bearer token'));
+    }
+    return Promise.reject(new TokenVerificationError(`token verification not implemented in scaffold (expected audience: ${options.expectedAudience})`));
+}
+//# sourceMappingURL=verify-token.js.map

package/dist/auth/verify-token.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify-token.js","sourceRoot":"","sources":["../../src/auth/verify-token.ts"],"names":[],"mappings":"AAiBA,mFAAmF;AACnF,MAAM,OAAO,sBAAuB,SAAQ,KAAK;IAC/C,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAA;QACd,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAA;IACtC,CAAC;CACF;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,iBAAiB,CAAC,KAAa,EAAE,OAA2B;IAC1E,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvB,OAAO,OAAO,CAAC,MAAM,CAAC,IAAI,sBAAsB,CAAC,sBAAsB,CAAC,CAAC,CAAA;IAC3E,CAAC;IACD,OAAO,OAAO,CAAC,MAAM,CACnB,IAAI,sBAAsB,CACxB,sEAAsE,OAAO,CAAC,gBAAgB,GAAG,CAClG,CACF,CAAA;AACH,CAAC"}

package/dist/config.d.ts

@@ -0,0 +1,16 @@
+export interface AppConfig {
+    readonly nodeEnv: 'development' | 'production' | 'test';
+    readonly logLevel: 'fatal' | 'error' | 'warn' | 'info' | 'debug' | 'trace';
+    readonly port: number;
+    readonly apiBaseUrl: string;
+    readonly requestTimeoutMs: number;
+    /** Present only for the stdio transport. */
+    readonly apiKey?: string;
+    /** Present only for the hosted transport (canonical MCP resource URL). */
+    readonly resourceUrl?: string;
+    /** Present only for the hosted transport (authorization server base URL). */
+    readonly authServer?: string;
+}
+/** Parses and validates process environment into a typed, immutable config. */
+export declare function loadConfig(env?: NodeJS.ProcessEnv): AppConfig;
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAqBA,MAAM,WAAW,SAAS;IACxB,QAAQ,CAAC,OAAO,EAAE,aAAa,GAAG,YAAY,GAAG,MAAM,CAAA;IACvD,QAAQ,CAAC,QAAQ,EAAE,OAAO,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,OAAO,CAAA;IAC1E,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;IAC3B,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;IACjC,4CAA4C;IAC5C,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;IACxB,0EAA0E;IAC1E,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAA;IAC7B,6EAA6E;IAC7E,QAAQ,CAAC,UAAU,CAAC,EAAE,MAAM,CAAA;CAC7B;AAED,+EAA+E;AAC/E,wBAAgB,UAAU,CAAC,GAAG,GAAE,MAAM,CAAC,UAAwB,GAAG,SAAS,CAY1E"}

package/dist/config.js

@@ -0,0 +1,32 @@
+import { z } from 'zod';
+const DEFAULT_API_BASE_URL = 'https://api.drumbeats.io';
+const DEFAULT_PORT = 3000;
+const DEFAULT_TIMEOUT_MS = 15_000;
+const urlString = z.string().refine((value) => URL.canParse(value), { message: 'must be a valid URL' });
+const envSchema = z.object({
+    NODE_ENV: z.enum(['development', 'production', 'test']).default('development'),
+    LOG_LEVEL: z.enum(['fatal', 'error', 'warn', 'info', 'debug', 'trace']).default('info'),
+    PORT: z.coerce.number().int().positive().default(DEFAULT_PORT),
+    DRUMBEATS_API_BASE_URL: urlString.default(DEFAULT_API_BASE_URL),
+    DRUMBEATS_API_TIMEOUT_MS: z.coerce.number().int().positive().default(DEFAULT_TIMEOUT_MS),
+    // stdio transport: an account-scoped Drumbeats API key (dk_…).
+    DRUMBEATS_API_KEY: z.string().min(1).optional(),
+    // hosted transport: OAuth 2.1 resource-server identifiers, see src/auth.
+    MCP_RESOURCE_URL: urlString.optional(),
+    MCP_AUTH_SERVER: urlString.optional(),
+});
+/** Parses and validates process environment into a typed, immutable config. */
+export function loadConfig(env = process.env) {
+    const parsed = envSchema.parse(env);
+    return {
+        nodeEnv: parsed.NODE_ENV,
+        logLevel: parsed.LOG_LEVEL,
+        port: parsed.PORT,
+        apiBaseUrl: parsed.DRUMBEATS_API_BASE_URL,
+        requestTimeoutMs: parsed.DRUMBEATS_API_TIMEOUT_MS,
+        apiKey: parsed.DRUMBEATS_API_KEY,
+        resourceUrl: parsed.MCP_RESOURCE_URL,
+        authServer: parsed.MCP_AUTH_SERVER,
+    };
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAEvB,MAAM,oBAAoB,GAAG,0BAA0B,CAAA;AACvD,MAAM,YAAY,GAAG,IAAI,CAAA;AACzB,MAAM,kBAAkB,GAAG,MAAM,CAAA;AAEjC,MAAM,SAAS,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,OAAO,EAAE,qBAAqB,EAAE,CAAC,CAAA;AAEvG,MAAM,SAAS,GAAG,CAAC,CAAC,MAAM,CAAC;IACzB,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,YAAY,EAAE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC;IAC9E,SAAS,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC;IACvF,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,YAAY,CAAC;IAC9D,sBAAsB,EAAE,SAAS,CAAC,OAAO,CAAC,oBAAoB,CAAC;IAC/D,wBAAwB,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,OAAO,CAAC,kBAAkB,CAAC;IACxF,+DAA+D;IAC/D,iBAAiB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC/C,yEAAyE;IACzE,gBAAgB,EAAE,SAAS,CAAC,QAAQ,EAAE;IACtC,eAAe,EAAE,SAAS,CAAC,QAAQ,EAAE;CACtC,CAAC,CAAA;AAgBF,+EAA+E;AAC/E,MAAM,UAAU,UAAU,CAAC,MAAyB,OAAO,CAAC,GAAG;IAC7D,MAAM,MAAM,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IACnC,OAAO;QACL,OAAO,EAAE,MAAM,CAAC,QAAQ;QACxB,QAAQ,EAAE,MAAM,CAAC,SAAS;QAC1B,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,UAAU,EAAE,MAAM,CAAC,sBAAsB;QACzC,gBAAgB,EAAE,MAAM,CAAC,wBAAwB;QACjD,MAAM,EAAE,MAAM,CAAC,iBAAiB;QAChC,WAAW,EAAE,MAAM,CAAC,gBAAgB;QACpC,UAAU,EAAE,MAAM,CAAC,eAAe;KACnC,CAAA;AACH,CAAC"}

package/dist/server-http.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=server-http.d.ts.map

package/dist/server-http.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server-http.d.ts","sourceRoot":"","sources":["../src/server-http.ts"],"names":[],"mappings":""}

package/dist/server-http.js

@@ -0,0 +1,83 @@
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import { StreamableHTTPServerTransport } from '@modelcontextprotocol/sdk/server/streamableHttp.js';
+import express, {} from 'express';
+import { DrumbeatsApiClient } from './api/client.js';
+import { buildProtectedResourceMetadata, PROTECTED_RESOURCE_METADATA_PATH } from './auth/resource-metadata.js';
+import { TokenVerificationError, verifyBearerToken } from './auth/verify-token.js';
+import { loadConfig } from './config.js';
+import { registerTools } from './tools/index.js';
+import { SERVER_NAME, SERVER_VERSION } from './version.js';
+const config = loadConfig();
+const app = express();
+app.use(express.json());
+// Liveness probe on its own unprefixed path (for the reverse proxy / orchestrator healthcheck).
+app.get('/healthz', (_req, res) => {
+    res.json({ status: 'ok', service: SERVER_NAME, version: SERVER_VERSION });
+});
+// RFC 9728 discovery document, pointing clients at the authorization server.
+app.get(PROTECTED_RESOURCE_METADATA_PATH, (_req, res) => {
+    if (config.resourceUrl === undefined || config.authServer === undefined) {
+        res.status(501).json({ error: 'hosted OAuth metadata is not configured' });
+        return;
+    }
+    res.json(buildProtectedResourceMetadata({ resourceUrl: config.resourceUrl, authServerUrl: config.authServer }));
+});
+function bearerFrom(req) {
+    const header = req.header('authorization');
+    if (header === undefined) {
+        return undefined;
+    }
+    const [scheme, value] = header.split(' ');
+    return scheme?.toLowerCase() === 'bearer' ? value : undefined;
+}
+/**
+ * The single MCP endpoint. Per request: verify the OAuth bearer, build a
+ * per-session authenticated REST client, register the (currently empty) tool
+ * layer, then let the Streamable HTTP transport handle the JSON-RPC exchange.
+ */
+async function handleMcpRequest(req, res) {
+    const token = bearerFrom(req);
+    if (token === undefined) {
+        const base = config.resourceUrl ?? '';
+        res
+            .status(401)
+            .set('WWW-Authenticate', `Bearer resource_metadata="${base}${PROTECTED_RESOURCE_METADATA_PATH}"`)
+            .json({ error: 'missing bearer token' });
+        return;
+    }
+    try {
+        const verified = await verifyBearerToken(token, { expectedAudience: config.resourceUrl ?? '' });
+        const ctx = {
+            api: new DrumbeatsApiClient({
+                baseUrl: config.apiBaseUrl,
+                auth: { kind: 'bearer', token: verified.raw },
+                requestTimeoutMs: config.requestTimeoutMs,
+            }),
+        };
+        const server = new McpServer({ name: SERVER_NAME, version: SERVER_VERSION });
+        registerTools(server, ctx);
+        const transport = new StreamableHTTPServerTransport({ sessionIdGenerator: undefined });
+        res.on('close', () => {
+            void transport.close();
+            void server.close();
+        });
+        await server.connect(transport);
+        await transport.handleRequest(req, res, req.body);
+    }
+    catch (error) {
+        if (!res.headersSent) {
+            const status = error instanceof TokenVerificationError ? 401 : 500;
+            res.status(status).json({ error: status === 401 ? 'unauthorized' : 'internal error' });
+        }
+    }
+}
+app.post('/mcp', (req, res) => {
+    void handleMcpRequest(req, res);
+});
+function main() {
+    app.listen(config.port, () => {
+        process.stdout.write(`${SERVER_NAME} (http) listening on :${config.port}\n`);
+    });
+}
+main();
+//# sourceMappingURL=server-http.js.map

package/dist/server-http.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server-http.js","sourceRoot":"","sources":["../src/server-http.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACnE,OAAO,EAAE,6BAA6B,EAAE,MAAM,oDAAoD,CAAA;AAClG,OAAO,OAAO,EAAE,EAA+B,MAAM,SAAS,CAAA;AAC9D,OAAO,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AACpD,OAAO,EAAE,8BAA8B,EAAE,gCAAgC,EAAE,MAAM,6BAA6B,CAAA;AAC9G,OAAO,EAAE,sBAAsB,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAA;AAClF,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AACxC,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAA;AAEhD,OAAO,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAE1D,MAAM,MAAM,GAAG,UAAU,EAAE,CAAA;AAE3B,MAAM,GAAG,GAAG,OAAO,EAAE,CAAA;AACrB,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAA;AAEvB,gGAAgG;AAChG,GAAG,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC,IAAa,EAAE,GAAa,EAAE,EAAE;IACnD,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAA;AAC3E,CAAC,CAAC,CAAA;AAEF,6EAA6E;AAC7E,GAAG,CAAC,GAAG,CAAC,gCAAgC,EAAE,CAAC,IAAa,EAAE,GAAa,EAAE,EAAE;IACzE,IAAI,MAAM,CAAC,WAAW,KAAK,SAAS,IAAI,MAAM,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;QACxE,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yCAAyC,EAAE,CAAC,CAAA;QAC1E,OAAM;IACR,CAAC;IACD,GAAG,CAAC,IAAI,CAAC,8BAA8B,CAAC,EAAE,WAAW,EAAE,MAAM,CAAC,WAAW,EAAE,aAAa,EAAE,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC,CAAA;AACjH,CAAC,CAAC,CAAA;AAEF,SAAS,UAAU,CAAC,GAAY;IAC9B,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,CAAA;IAC1C,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;QACzB,OAAO,SAAS,CAAA;IAClB,CAAC;IACD,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAA;IACzC,OAAO,MAAM,EAAE,WAAW,EAAE,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAA;AAC/D,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,gBAAgB,CAAC,GAAY,EAAE,GAAa;IACzD,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,CAAC,CAAA;IAC7B,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACxB,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,IAAI,EAAE,CAAA;QACrC,GAAG;aACA,MAAM,CAAC,GAAG,CAAC;aACX,GAAG,CAAC,kBAAkB,EAAE,6BAA6B,IAAI,GAAG,gCAAgC,GAAG,CAAC;aAChG,IAAI,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAA;QAC1C,OAAM;IACR,CAAC;IAED,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,iBAAiB,CAAC,KAAK,EAAE,EAAE,gBAAgB,EAAE,MAAM,CAAC,WAAW,IAAI,EAAE,EAAE,CAAC,CAAA;QAC/F,MAAM,GAAG,GAAgB;YACvB,GAAG,EAAE,IAAI,kBAAkB,CAAC;gBAC1B,OAAO,EAAE,MAAM,CAAC,UAAU;gBAC1B,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,CAAC,GAAG,EAAE;gBAC7C,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;aAC1C,CAAC;SACH,CAAA;QAED,MAAM,MAAM,GAAG,IAAI,SAAS,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAA;QAC5E,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;QAE1B,MAAM,SAAS,GAAG,IAAI,6BAA6B,CAAC,EAAE,kBAAkB,EAAE,SAAS,EAAE,CAAC,CAAA;QACtF,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACnB,KAAK,SAAS,CAAC,KAAK,EAAE,CAAA;YACtB,KAAK,MAAM,CAAC,KAAK,EAAE,CAAA;QACrB,CAAC,CAAC,CAAA;QAEF,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;QAC/B,MAAM,SAAS,CAAC,aAAa,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,CAAA;IACnD,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;YACrB,MAAM,MAAM,GAAG,KAAK,YAAY,sBAAsB,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAA;YAClE,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,KAAK,GAAG,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,gBAAgB,EAAE,CAAC,CAAA;QACxF,CAAC;IACH,CAAC;AACH,CAAC;AAED,GAAG,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,GAAY,EAAE,GAAa,EAAE,EAAE;IAC/C,KAAK,gBAAgB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAA;AACjC,CAAC,CAAC,CAAA;AAEF,SAAS,IAAI;IACX,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE;QAC3B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,WAAW,yBAAyB,MAAM,CAAC,IAAI,IAAI,CAAC,CAAA;IAC9E,CAAC,CAAC,CAAA;AACJ,CAAC;AAED,IAAI,EAAE,CAAA"}

package/dist/stdio.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=stdio.d.ts.map

package/dist/stdio.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"stdio.d.ts","sourceRoot":"","sources":["../src/stdio.ts"],"names":[],"mappings":""}

package/dist/stdio.js

@@ -0,0 +1,35 @@
+#!/usr/bin/env node
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import { DrumbeatsApiClient } from './api/client.js';
+import { loadConfig } from './config.js';
+import { registerTools } from './tools/index.js';
+import { SERVER_NAME, SERVER_VERSION } from './version.js';
+/**
+ * Local fallback entrypoint: stdio transport authenticated with a Drumbeats
+ * account API key (dk_…) from DRUMBEATS_API_KEY. Same shared tool layer as the
+ * hosted server — the only difference is how the API client is authenticated.
+ */
+async function main() {
+    const config = loadConfig();
+    if (config.apiKey === undefined) {
+        process.stderr.write('DRUMBEATS_API_KEY is required for the stdio transport.\n');
+        process.exit(1);
+    }
+    const ctx = {
+        api: new DrumbeatsApiClient({
+            baseUrl: config.apiBaseUrl,
+            auth: { kind: 'apiKey', apiKey: config.apiKey },
+            requestTimeoutMs: config.requestTimeoutMs,
+        }),
+    };
+    const server = new McpServer({ name: SERVER_NAME, version: SERVER_VERSION });
+    registerTools(server, ctx);
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+}
+main().catch((error) => {
+    process.stderr.write(`fatal: ${error instanceof Error ? error.message : String(error)}\n`);
+    process.exit(1);
+});
+//# sourceMappingURL=stdio.js.map

package/dist/stdio.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"stdio.js","sourceRoot":"","sources":["../src/stdio.ts"],"names":[],"mappings":";AACA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAA;AAChF,OAAO,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AACpD,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AACxC,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAA;AAEhD,OAAO,EAAE,WAAW,EAAE,cAAc,EAAE,MAAM,cAAc,CAAA;AAE1D;;;;GAIG;AACH,KAAK,UAAU,IAAI;IACjB,MAAM,MAAM,GAAG,UAAU,EAAE,CAAA;IAC3B,IAAI,MAAM,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QAChC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,0DAA0D,CAAC,CAAA;QAChF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC;IAED,MAAM,GAAG,GAAgB;QACvB,GAAG,EAAE,IAAI,kBAAkB,CAAC;YAC1B,OAAO,EAAE,MAAM,CAAC,UAAU;YAC1B,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE;YAC/C,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;SAC1C,CAAC;KACH,CAAA;IAED,MAAM,MAAM,GAAG,IAAI,SAAS,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAA;IAC5E,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IAE1B,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAA;IAC5C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;AACjC,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAc,EAAE,EAAE;IAC9B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IAC1F,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;AACjB,CAAC,CAAC,CAAA"}

package/dist/tools/context/list-projects.d.ts

@@ -0,0 +1,21 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { CallToolResult } from '@modelcontextprotocol/sdk/types.js';
+import { z } from 'zod';
+import type { ToolContext } from '../types.js';
+export declare const listProjectsInputShape: {
+    include: z.ZodOptional<z.ZodArray<z.ZodEnum<{
+        channels: "channels";
+        groups: "groups";
+    }>>>;
+};
+export type ListProjectsArgs = {
+    include?: Array<'channels' | 'groups'>;
+};
+/**
+ * Core handler, kept separate from registration so it can be unit-tested with a
+ * mocked ApiClient and no network.
+ */
+export declare function listProjects(ctx: ToolContext, args: ListProjectsArgs): Promise<CallToolResult>;
+/** Registers the `list_projects` tool against the MCP server. */
+export declare function registerListProjects(server: McpServer, ctx: ToolContext): void;
+//# sourceMappingURL=list-projects.d.ts.map

package/dist/tools/context/list-projects.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-projects.d.ts","sourceRoot":"","sources":["../../../src/tools/context/list-projects.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAGvB,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAuD9C,eAAO,MAAM,sBAAsB;;;;;CAOlC,CAAA;AAED,MAAM,MAAM,gBAAgB,GAAG;IAAE,OAAO,CAAC,EAAE,KAAK,CAAC,UAAU,GAAG,QAAQ,CAAC,CAAA;CAAE,CAAA;AAoBzE;;;GAGG;AACH,wBAAsB,YAAY,CAAC,GAAG,EAAE,WAAW,EAAE,IAAI,EAAE,gBAAgB,GAAG,OAAO,CAAC,cAAc,CAAC,CA0CpG;AAED,iEAAiE;AACjE,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,WAAW,GAAG,IAAI,CAM9E"}

package/dist/tools/context/list-projects.js

@@ -0,0 +1,73 @@
+import { z } from 'zod';
+import { toToolErrorResult } from '../../api/errors.js';
+import { jsonResult } from '../result.js';
+export const listProjectsInputShape = {
+    include: z
+        .array(z.enum(['channels', 'groups']))
+        .optional()
+        .describe('Optionally also fetch, per project, its notification channels and/or groups. Their ids are needed to wire alerts when creating a monitor.'),
+};
+const DESCRIPTION = 'List all Drumbeats projects the configured account API key can access. Returns each project id, ' +
+    'name, plan, and basic metadata — use it to find the target project id before creating or querying ' +
+    'monitors. Pass include=["channels","groups"] to also return each project\'s notification channels ' +
+    'and groups, whose ids are needed to wire alerts when creating a monitor.';
+function toProjectSummary(project) {
+    return {
+        id: project.id,
+        name: project.name,
+        description: project.description ?? null,
+        plan: project.plan ?? null,
+        created_at: project.created_at ?? null,
+        member_count: project._count?.members ?? null,
+        owner_email: project.owner?.email ?? null,
+    };
+}
+/**
+ * Core handler, kept separate from registration so it can be unit-tested with a
+ * mocked ApiClient and no network.
+ */
+export async function listProjects(ctx, args) {
+    try {
+        const { projects } = await ctx.api.request({ path: '/v1/projects' });
+        const include = new Set(args.include ?? []);
+        const wantChannels = include.has('channels');
+        const wantGroups = include.has('groups');
+        const summaries = await Promise.all((projects ?? []).map(async (project) => {
+            const summary = toProjectSummary(project);
+            if (wantChannels) {
+                const channels = await ctx.api.request({
+                    path: '/v1/notification-channels',
+                    query: { project_id: project.id },
+                });
+                summary.notification_channels = (channels ?? []).map((channel) => ({
+                    id: channel.id,
+                    name: channel.name ?? null,
+                    type: channel.channel ?? null,
+                    enabled: channel.enabled ?? null,
+                    is_default: channel.is_default ?? null,
+                }));
+            }
+            if (wantGroups) {
+                const groups = await ctx.api.request({
+                    path: '/v1/notification-groups',
+                    query: { project_id: project.id },
+                });
+                summary.notification_groups = (groups ?? []).map((group) => ({
+                    id: group.id,
+                    name: group.name,
+                    description: group.description ?? null,
+                }));
+            }
+            return summary;
+        }));
+        return jsonResult({ projects: summaries });
+    }
+    catch (error) {
+        return toToolErrorResult(error);
+    }
+}
+/** Registers the `list_projects` tool against the MCP server. */
+export function registerListProjects(server, ctx) {
+    server.registerTool('list_projects', { title: 'List projects', description: DESCRIPTION, inputSchema: listProjectsInputShape }, (args) => listProjects(ctx, args));
+}
+//# sourceMappingURL=list-projects.js.map

package/dist/tools/context/list-projects.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-projects.js","sourceRoot":"","sources":["../../../src/tools/context/list-projects.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAA;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AAwDzC,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC,OAAO,EAAE,CAAC;SACP,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC,CAAC;SACrC,QAAQ,EAAE;SACV,QAAQ,CACP,2IAA2I,CAC5I;CACJ,CAAA;AAID,MAAM,WAAW,GACf,kGAAkG;IAClG,oGAAoG;IACpG,oGAAoG;IACpG,0EAA0E,CAAA;AAE5E,SAAS,gBAAgB,CAAC,OAAmB;IAC3C,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE;QACd,IAAI,EAAE,OAAO,CAAC,IAAI;QAClB,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,IAAI;QACxC,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,IAAI;QAC1B,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,IAAI;QACtC,YAAY,EAAE,OAAO,CAAC,MAAM,EAAE,OAAO,IAAI,IAAI;QAC7C,WAAW,EAAE,OAAO,CAAC,KAAK,EAAE,KAAK,IAAI,IAAI;KAC1C,CAAA;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,GAAgB,EAAE,IAAsB;IACzE,IAAI,CAAC;QACH,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,GAAG,CAAC,GAAG,CAAC,OAAO,CAA6B,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC,CAAA;QAChG,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,CAAA;QAC3C,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAA;QAC5C,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAA;QAExC,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,GAAG,CACjC,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;YACrC,MAAM,OAAO,GAAG,gBAAgB,CAAC,OAAO,CAAC,CAAA;YACzC,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,GAAG,CAAC,OAAO,CAAe;oBACnD,IAAI,EAAE,2BAA2B;oBACjC,KAAK,EAAE,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE,EAAE;iBAClC,CAAC,CAAA;gBACF,OAAO,CAAC,qBAAqB,GAAG,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;oBACjE,EAAE,EAAE,OAAO,CAAC,EAAE;oBACd,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,IAAI;oBAC1B,IAAI,EAAE,OAAO,CAAC,OAAO,IAAI,IAAI;oBAC7B,OAAO,EAAE,OAAO,CAAC,OAAO,IAAI,IAAI;oBAChC,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,IAAI;iBACvC,CAAC,CAAC,CAAA;YACL,CAAC;YACD,IAAI,UAAU,EAAE,CAAC;gBACf,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,GAAG,CAAC,OAAO,CAAa;oBAC/C,IAAI,EAAE,yBAAyB;oBAC/B,KAAK,EAAE,EAAE,UAAU,EAAE,OAAO,CAAC,EAAE,EAAE;iBAClC,CAAC,CAAA;gBACF,OAAO,CAAC,mBAAmB,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;oBAC3D,EAAE,EAAE,KAAK,CAAC,EAAE;oBACZ,IAAI,EAAE,KAAK,CAAC,IAAI;oBAChB,WAAW,EAAE,KAAK,CAAC,WAAW,IAAI,IAAI;iBACvC,CAAC,CAAC,CAAA;YACL,CAAC;YACD,OAAO,OAAO,CAAA;QAChB,CAAC,CAAC,CACH,CAAA;QAED,OAAO,UAAU,CAAC,EAAE,QAAQ,EAAE,SAAS,EAAE,CAAC,CAAA;IAC5C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAA;IACjC,CAAC;AACH,CAAC;AAED,iEAAiE;AACjE,MAAM,UAAU,oBAAoB,CAAC,MAAiB,EAAE,GAAgB;IACtE,MAAM,CAAC,YAAY,CACjB,eAAe,EACf,EAAE,KAAK,EAAE,eAAe,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,sBAAsB,EAAE,EACzF,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,GAAG,EAAE,IAAI,CAAC,CAClC,CAAA;AACH,CAAC"}

package/dist/tools/diagnostics/check-dns.d.ts

@@ -0,0 +1,13 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { CallToolResult } from '@modelcontextprotocol/sdk/types.js';
+import { z } from 'zod';
+import type { ToolContext } from '../types.js';
+export declare const checkDnsInputShape: {
+    hostname: z.ZodString;
+};
+export type CheckDnsArgs = {
+    hostname: string;
+};
+export declare function checkDns(ctx: ToolContext, args: CheckDnsArgs): Promise<CallToolResult>;
+export declare function registerCheckDns(server: McpServer, ctx: ToolContext): void;
+//# sourceMappingURL=check-dns.d.ts.map

package/dist/tools/diagnostics/check-dns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-dns.d.ts","sourceRoot":"","sources":["../../../src/tools/diagnostics/check-dns.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAGvB,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C,eAAO,MAAM,kBAAkB;;CAE9B,CAAA;AAED,MAAM,MAAM,YAAY,GAAG;IAAE,QAAQ,EAAE,MAAM,CAAA;CAAE,CAAA;AAM/C,wBAAsB,QAAQ,CAAC,GAAG,EAAE,WAAW,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,cAAc,CAAC,CAW5F;AAED,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,WAAW,GAAG,IAAI,CAM1E"}

package/dist/tools/diagnostics/check-dns.js

@@ -0,0 +1,25 @@
+import { z } from 'zod';
+import { toToolErrorResult } from '../../api/errors.js';
+import { jsonResult } from '../result.js';
+export const checkDnsInputShape = {
+    hostname: z.string().min(1).describe('The hostname to resolve, e.g. example.com (a domain, not an IP).'),
+};
+const DESCRIPTION = 'Resolve a hostname and report its DNS records (what the domain points to). ' +
+    'Works with no Drumbeats account or API key — useful for "what does this domain resolve to?".';
+export async function checkDns(ctx, args) {
+    try {
+        const result = await ctx.api.request({
+            method: 'POST',
+            path: '/v1/tools/check-dns',
+            body: { hostname: args.hostname },
+        });
+        return jsonResult(result);
+    }
+    catch (error) {
+        return toToolErrorResult(error);
+    }
+}
+export function registerCheckDns(server, ctx) {
+    server.registerTool('check_dns', { title: 'Check DNS', description: DESCRIPTION, inputSchema: checkDnsInputShape }, (args) => checkDns(ctx, args));
+}
+//# sourceMappingURL=check-dns.js.map

package/dist/tools/diagnostics/check-dns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-dns.js","sourceRoot":"","sources":["../../../src/tools/diagnostics/check-dns.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAA;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AAGzC,MAAM,CAAC,MAAM,kBAAkB,GAAG;IAChC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,kEAAkE,CAAC;CACzG,CAAA;AAID,MAAM,WAAW,GACf,6EAA6E;IAC7E,8FAA8F,CAAA;AAEhG,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,GAAgB,EAAE,IAAkB;IACjE,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,qBAAqB;YAC3B,IAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE;SAClC,CAAC,CAAA;QACF,OAAO,UAAU,CAAC,MAAM,CAAC,CAAA;IAC3B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAA;IACjC,CAAC;AACH,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,MAAiB,EAAE,GAAgB;IAClE,MAAM,CAAC,YAAY,CACjB,WAAW,EACX,EAAE,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,kBAAkB,EAAE,EACjF,CAAC,IAAI,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,EAAE,IAAI,CAAC,CAC9B,CAAA;AACH,CAAC"}

package/dist/tools/diagnostics/check-http.d.ts

@@ -0,0 +1,20 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { CallToolResult } from '@modelcontextprotocol/sdk/types.js';
+import { z } from 'zod';
+import type { ToolContext } from '../types.js';
+export declare const checkHttpInputShape: {
+    url: z.ZodString;
+    method: z.ZodOptional<z.ZodEnum<{
+        GET: "GET";
+        HEAD: "HEAD";
+    }>>;
+    follow_redirects: z.ZodOptional<z.ZodBoolean>;
+};
+export type CheckHttpArgs = {
+    url: string;
+    method?: 'GET' | 'HEAD';
+    follow_redirects?: boolean;
+};
+export declare function checkHttp(ctx: ToolContext, args: CheckHttpArgs): Promise<CallToolResult>;
+export declare function registerCheckHttp(server: McpServer, ctx: ToolContext): void;
+//# sourceMappingURL=check-http.d.ts.map

package/dist/tools/diagnostics/check-http.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-http.d.ts","sourceRoot":"","sources":["../../../src/tools/diagnostics/check-http.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAGvB,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C,eAAO,MAAM,mBAAmB;;;;;;;CAO/B,CAAA;AAED,MAAM,MAAM,aAAa,GAAG;IAAE,GAAG,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,CAAC;IAAC,gBAAgB,CAAC,EAAE,OAAO,CAAA;CAAE,CAAA;AAMhG,wBAAsB,SAAS,CAAC,GAAG,EAAE,WAAW,EAAE,IAAI,EAAE,aAAa,GAAG,OAAO,CAAC,cAAc,CAAC,CAW9F;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,WAAW,GAAG,IAAI,CAM3E"}

package/dist/tools/diagnostics/check-http.js

@@ -0,0 +1,30 @@
+import { z } from 'zod';
+import { toToolErrorResult } from '../../api/errors.js';
+import { jsonResult } from '../result.js';
+export const checkHttpInputShape = {
+    url: z
+        .string()
+        .refine((value) => URL.canParse(value), { message: 'must be a valid URL' })
+        .describe('The http(s) URL to check, e.g. https://example.com'),
+    method: z.enum(['GET', 'HEAD']).optional().describe('Request method (default HEAD).'),
+    follow_redirects: z.boolean().optional().describe('Whether to follow redirects (default true).'),
+};
+const DESCRIPTION = 'Check whether an http(s) URL is reachable and report its status code and response time. ' +
+    'Works with no Drumbeats account or API key — handy for a quick "is this site up?" before signing up.';
+export async function checkHttp(ctx, args) {
+    try {
+        const result = await ctx.api.request({
+            method: 'POST',
+            path: '/v1/tools/check-http',
+            body: { url: args.url, method: args.method, follow_redirects: args.follow_redirects },
+        });
+        return jsonResult(result);
+    }
+    catch (error) {
+        return toToolErrorResult(error);
+    }
+}
+export function registerCheckHttp(server, ctx) {
+    server.registerTool('check_http', { title: 'Check HTTP', description: DESCRIPTION, inputSchema: checkHttpInputShape }, (args) => checkHttp(ctx, args));
+}
+//# sourceMappingURL=check-http.js.map

package/dist/tools/diagnostics/check-http.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-http.js","sourceRoot":"","sources":["../../../src/tools/diagnostics/check-http.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAA;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AAGzC,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,GAAG,EAAE,CAAC;SACH,MAAM,EAAE;SACR,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,OAAO,EAAE,qBAAqB,EAAE,CAAC;SAC1E,QAAQ,CAAC,oDAAoD,CAAC;IACjE,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,gCAAgC,CAAC;IACrF,gBAAgB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,6CAA6C,CAAC;CACjG,CAAA;AAID,MAAM,WAAW,GACf,0FAA0F;IAC1F,sGAAsG,CAAA;AAExG,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,GAAgB,EAAE,IAAmB;IACnE,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,sBAAsB;YAC5B,IAAI,EAAE,EAAE,GAAG,EAAE,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,gBAAgB,EAAE,IAAI,CAAC,gBAAgB,EAAE;SACtF,CAAC,CAAA;QACF,OAAO,UAAU,CAAC,MAAM,CAAC,CAAA;IAC3B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAA;IACjC,CAAC;AACH,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,MAAiB,EAAE,GAAgB;IACnE,MAAM,CAAC,YAAY,CACjB,YAAY,EACZ,EAAE,KAAK,EAAE,YAAY,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,mBAAmB,EAAE,EACnF,CAAC,IAAI,EAAE,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC,CAC/B,CAAA;AACH,CAAC"}

package/dist/tools/diagnostics/check-ssl.d.ts

@@ -0,0 +1,15 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { CallToolResult } from '@modelcontextprotocol/sdk/types.js';
+import { z } from 'zod';
+import type { ToolContext } from '../types.js';
+export declare const checkSslInputShape: {
+    hostname: z.ZodString;
+    port: z.ZodOptional<z.ZodNumber>;
+};
+export type CheckSslArgs = {
+    hostname: string;
+    port?: number;
+};
+export declare function checkSsl(ctx: ToolContext, args: CheckSslArgs): Promise<CallToolResult>;
+export declare function registerCheckSsl(server: McpServer, ctx: ToolContext): void;
+//# sourceMappingURL=check-ssl.d.ts.map

package/dist/tools/diagnostics/check-ssl.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-ssl.d.ts","sourceRoot":"","sources":["../../../src/tools/diagnostics/check-ssl.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAGvB,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C,eAAO,MAAM,kBAAkB;;;CAG9B,CAAA;AAED,MAAM,MAAM,YAAY,GAAG;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CAAE,CAAA;AAM9D,wBAAsB,QAAQ,CAAC,GAAG,EAAE,WAAW,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,cAAc,CAAC,CAW5F;AAED,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,WAAW,GAAG,IAAI,CAM1E"}

package/dist/tools/diagnostics/check-ssl.js

@@ -0,0 +1,26 @@
+import { z } from 'zod';
+import { toToolErrorResult } from '../../api/errors.js';
+import { jsonResult } from '../result.js';
+export const checkSslInputShape = {
+    hostname: z.string().min(1).describe('The hostname to inspect, e.g. example.com (no scheme).'),
+    port: z.number().int().min(1).max(65535).optional().describe('TLS port (default 443).'),
+};
+const DESCRIPTION = "Inspect a host's TLS/SSL certificate — validity, expiry date, and issuer. " +
+    'Works with no Drumbeats account or API key — useful for "is my SSL certificate about to expire?".';
+export async function checkSsl(ctx, args) {
+    try {
+        const result = await ctx.api.request({
+            method: 'POST',
+            path: '/v1/tools/check-ssl',
+            body: { hostname: args.hostname, port: args.port },
+        });
+        return jsonResult(result);
+    }
+    catch (error) {
+        return toToolErrorResult(error);
+    }
+}
+export function registerCheckSsl(server, ctx) {
+    server.registerTool('check_ssl', { title: 'Check SSL', description: DESCRIPTION, inputSchema: checkSslInputShape }, (args) => checkSsl(ctx, args));
+}
+//# sourceMappingURL=check-ssl.js.map

package/dist/tools/diagnostics/check-ssl.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-ssl.js","sourceRoot":"","sources":["../../../src/tools/diagnostics/check-ssl.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAA;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AAGzC,MAAM,CAAC,MAAM,kBAAkB,GAAG;IAChC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,wDAAwD,CAAC;IAC9F,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,yBAAyB,CAAC;CACxF,CAAA;AAID,MAAM,WAAW,GACf,4EAA4E;IAC5E,mGAAmG,CAAA;AAErG,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,GAAgB,EAAE,IAAkB;IACjE,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,GAAG,CAAC,OAAO,CAAC;YACnC,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,qBAAqB;YAC3B,IAAI,EAAE,EAAE,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;SACnD,CAAC,CAAA;QACF,OAAO,UAAU,CAAC,MAAM,CAAC,CAAA;IAC3B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,iBAAiB,CAAC,KAAK,CAAC,CAAA;IACjC,CAAC;AACH,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,MAAiB,EAAE,GAAgB;IAClE,MAAM,CAAC,YAAY,CACjB,WAAW,EACX,EAAE,KAAK,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,kBAAkB,EAAE,EACjF,CAAC,IAAI,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,EAAE,IAAI,CAAC,CAC9B,CAAA;AACH,CAAC"}

package/dist/tools/incidents/list-incidents.d.ts

@@ -0,0 +1,25 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { CallToolResult } from '@modelcontextprotocol/sdk/types.js';
+import { z } from 'zod';
+import type { ToolContext } from '../types.js';
+export declare const listIncidentsInputShape: {
+    project_id: z.ZodString;
+    status: z.ZodOptional<z.ZodEnum<{
+        OPEN: "OPEN";
+        ACKNOWLEDGED: "ACKNOWLEDGED";
+        RESOLVED: "RESOLVED";
+    }>>;
+    monitor_id: z.ZodOptional<z.ZodString>;
+    page: z.ZodOptional<z.ZodNumber>;
+    limit: z.ZodOptional<z.ZodNumber>;
+};
+export type ListIncidentsArgs = {
+    project_id: string;
+    status?: 'OPEN' | 'ACKNOWLEDGED' | 'RESOLVED';
+    monitor_id?: string;
+    page?: number;
+    limit?: number;
+};
+export declare function listIncidents(ctx: ToolContext, args: ListIncidentsArgs): Promise<CallToolResult>;
+export declare function registerListIncidents(server: McpServer, ctx: ToolContext): void;
+//# sourceMappingURL=list-incidents.d.ts.map

package/dist/tools/incidents/list-incidents.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"list-incidents.d.ts","sourceRoot":"","sources":["../../../src/tools/incidents/list-incidents.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACxE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AAGvB,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAK9C,eAAO,MAAM,uBAAuB;;;;;;;;;;CAMnC,CAAA;AAED,MAAM,MAAM,iBAAiB,GAAG;IAC9B,UAAU,EAAE,MAAM,CAAA;IAClB,MAAM,CAAC,EAAE,MAAM,GAAG,cAAc,GAAG,UAAU,CAAA;IAC7C,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,KAAK,CAAC,EAAE,MAAM,CAAA;CACf,CAAA;AAMD,wBAAsB,aAAa,CAAC,GAAG,EAAE,WAAW,EAAE,IAAI,EAAE,iBAAiB,GAAG,OAAO,CAAC,cAAc,CAAC,CAmBtG;AAED,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,EAAE,WAAW,GAAG,IAAI,CAM/E"}