npm - @elliotding/ai-agent-mcp - Versions diffs - 0.1.26 → 0.1.28 - Mend

@elliotding/ai-agent-mcp 0.1.26 → 0.1.28

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (186) hide show

package/README.md +330 -30
package/dist/api/cached-client.d.ts +48 -0
package/dist/api/cached-client.d.ts.map +1 -0
package/dist/api/cached-client.js +126 -0
package/dist/api/cached-client.js.map +1 -0
package/dist/api/client.d.ts +295 -0
package/dist/api/client.d.ts.map +1 -0
package/dist/api/client.js +385 -0
package/dist/api/client.js.map +1 -0
package/dist/auth/index.d.ts +8 -0
package/dist/auth/index.d.ts.map +1 -0
package/dist/auth/index.js +26 -0
package/dist/auth/index.js.map +1 -0
package/dist/auth/middleware.d.ts +36 -0
package/dist/auth/middleware.d.ts.map +1 -0
package/dist/auth/middleware.js +194 -0
package/dist/auth/middleware.js.map +1 -0
package/dist/auth/permissions.d.ts +60 -0
package/dist/auth/permissions.d.ts.map +1 -0
package/dist/auth/permissions.js +262 -0
package/dist/auth/permissions.js.map +1 -0
package/dist/auth/token-validator.d.ts +52 -0
package/dist/auth/token-validator.d.ts.map +1 -0
package/dist/auth/token-validator.js +215 -0
package/dist/auth/token-validator.js.map +1 -0
package/dist/cache/cache-manager.d.ts +49 -0
package/dist/cache/cache-manager.d.ts.map +1 -0
package/dist/cache/cache-manager.js +191 -0
package/dist/cache/cache-manager.js.map +1 -0
package/dist/cache/index.d.ts +6 -0
package/dist/cache/index.d.ts.map +1 -0
package/dist/cache/index.js +12 -0
package/dist/cache/index.js.map +1 -0
package/dist/cache/redis-client.d.ts +45 -0
package/dist/cache/redis-client.d.ts.map +1 -0
package/dist/cache/redis-client.js +210 -0
package/dist/cache/redis-client.js.map +1 -0
package/dist/config/constants.d.ts +28 -0
package/dist/config/constants.d.ts.map +1 -0
package/dist/config/constants.js +31 -0
package/dist/config/constants.js.map +1 -0
package/dist/config/index.d.ts +71 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/config/index.js +190 -0
package/dist/config/index.js.map +1 -0
package/dist/filesystem/manager.d.ts +45 -0
package/dist/filesystem/manager.d.ts.map +1 -0
package/dist/filesystem/manager.js +246 -0
package/dist/filesystem/manager.js.map +1 -0
package/dist/git/multi-source-manager.d.ts +105 -0
package/dist/git/multi-source-manager.d.ts.map +1 -0
package/dist/git/multi-source-manager.js +677 -0
package/dist/git/multi-source-manager.js.map +1 -0
package/dist/git/operations.d.ts +27 -0
package/dist/git/operations.d.ts.map +1 -0
package/dist/git/operations.js +83 -0
package/dist/git/operations.js.map +1 -0
package/dist/index.d.ts +6 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +122 -0
package/dist/index.js.map +1 -0
package/dist/monitoring/health.d.ts +35 -0
package/dist/monitoring/health.d.ts.map +1 -0
package/dist/monitoring/health.js +105 -0
package/dist/monitoring/health.js.map +1 -0
package/dist/prompts/cache.d.ts +69 -0
package/dist/prompts/cache.d.ts.map +1 -0
package/dist/prompts/cache.js +163 -0
package/dist/prompts/cache.js.map +1 -0
package/dist/prompts/generator.d.ts +49 -0
package/dist/prompts/generator.d.ts.map +1 -0
package/dist/prompts/generator.js +160 -0
package/dist/prompts/generator.js.map +1 -0
package/dist/prompts/index.d.ts +13 -0
package/dist/prompts/index.d.ts.map +1 -0
package/dist/prompts/index.js +24 -0
package/dist/prompts/index.js.map +1 -0
package/dist/prompts/manager.d.ts +213 -0
package/dist/prompts/manager.d.ts.map +1 -0
package/dist/prompts/manager.js +587 -0
package/dist/prompts/manager.js.map +1 -0
package/dist/resources/index.d.ts +6 -0
package/dist/resources/index.d.ts.map +1 -0
package/dist/resources/index.js +10 -0
package/dist/resources/index.js.map +1 -0
package/dist/resources/loader.d.ts +88 -0
package/dist/resources/loader.d.ts.map +1 -0
package/dist/resources/loader.js +492 -0
package/dist/resources/loader.js.map +1 -0
package/dist/server/http.d.ts +57 -0
package/dist/server/http.d.ts.map +1 -0
package/dist/server/http.js +435 -0
package/dist/server/http.js.map +1 -0
package/dist/server.d.ts +13 -0
package/dist/server.d.ts.map +1 -0
package/dist/server.js +201 -0
package/dist/server.js.map +1 -0
package/dist/session/manager.d.ts +91 -0
package/dist/session/manager.d.ts.map +1 -0
package/dist/session/manager.js +251 -0
package/dist/session/manager.js.map +1 -0
package/dist/telemetry/index.d.ts +3 -0
package/dist/telemetry/index.d.ts.map +1 -0
package/dist/telemetry/index.js +7 -0
package/dist/telemetry/index.js.map +1 -0
package/dist/telemetry/manager.d.ts +151 -0
package/dist/telemetry/manager.d.ts.map +1 -0
package/dist/telemetry/manager.js +367 -0
package/dist/telemetry/manager.js.map +1 -0
package/dist/tools/index.d.ts +13 -0
package/dist/tools/index.d.ts.map +1 -0
package/dist/tools/index.js +29 -0
package/dist/tools/index.js.map +1 -0
package/dist/tools/manage-subscription.d.ts +47 -0
package/dist/tools/manage-subscription.d.ts.map +1 -0
package/dist/tools/manage-subscription.js +317 -0
package/dist/tools/manage-subscription.js.map +1 -0
package/dist/tools/registry.d.ts +40 -0
package/dist/tools/registry.d.ts.map +1 -0
package/dist/tools/registry.js +85 -0
package/dist/tools/registry.js.map +1 -0
package/dist/tools/resolve-prompt-content.d.ts +35 -0
package/dist/tools/resolve-prompt-content.d.ts.map +1 -0
package/dist/tools/resolve-prompt-content.js +99 -0
package/dist/tools/resolve-prompt-content.js.map +1 -0
package/dist/tools/search-resources.d.ts +35 -0
package/dist/tools/search-resources.d.ts.map +1 -0
package/dist/tools/search-resources.js +159 -0
package/dist/tools/search-resources.js.map +1 -0
package/dist/tools/sync-resources.d.ts +54 -0
package/dist/tools/sync-resources.d.ts.map +1 -0
package/dist/tools/sync-resources.js +793 -0
package/dist/tools/sync-resources.js.map +1 -0
package/dist/tools/track-usage.d.ts +63 -0
package/dist/tools/track-usage.d.ts.map +1 -0
package/dist/tools/track-usage.js +90 -0
package/dist/tools/track-usage.js.map +1 -0
package/dist/tools/uninstall-resource.d.ts +30 -0
package/dist/tools/uninstall-resource.d.ts.map +1 -0
package/dist/tools/uninstall-resource.js +186 -0
package/dist/tools/uninstall-resource.js.map +1 -0
package/dist/tools/upload-resource.d.ts +81 -0
package/dist/tools/upload-resource.d.ts.map +1 -0
package/dist/tools/upload-resource.js +393 -0
package/dist/tools/upload-resource.js.map +1 -0
package/dist/transport/sse.d.ts +29 -0
package/dist/transport/sse.d.ts.map +1 -0
package/dist/transport/sse.js +271 -0
package/dist/transport/sse.js.map +1 -0
package/dist/types/errors.d.ts +60 -0
package/dist/types/errors.d.ts.map +1 -0
package/dist/types/errors.js +112 -0
package/dist/types/errors.js.map +1 -0
package/dist/types/index.d.ts +7 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +23 -0
package/dist/types/index.js.map +1 -0
package/dist/types/mcp.d.ts +50 -0
package/dist/types/mcp.d.ts.map +1 -0
package/dist/types/mcp.js +6 -0
package/dist/types/mcp.js.map +1 -0
package/dist/types/resources.d.ts +109 -0
package/dist/types/resources.d.ts.map +1 -0
package/dist/types/resources.js +7 -0
package/dist/types/resources.js.map +1 -0
package/dist/types/tools.d.ts +274 -0
package/dist/types/tools.d.ts.map +1 -0
package/dist/types/tools.js +6 -0
package/dist/types/tools.js.map +1 -0
package/dist/utils/cursor-paths.d.ts +84 -0
package/dist/utils/cursor-paths.d.ts.map +1 -0
package/dist/utils/cursor-paths.js +166 -0
package/dist/utils/cursor-paths.js.map +1 -0
package/dist/utils/log-cleaner.d.ts +18 -0
package/dist/utils/log-cleaner.d.ts.map +1 -0
package/dist/utils/log-cleaner.js +112 -0
package/dist/utils/log-cleaner.js.map +1 -0
package/dist/utils/logger.d.ts +59 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +292 -0
package/dist/utils/logger.js.map +1 -0
package/dist/utils/validation.d.ts +58 -0
package/dist/utils/validation.d.ts.map +1 -0
package/dist/utils/validation.js +214 -0
package/dist/utils/validation.js.map +1 -0
package/package.json +1 -1

package/dist/api/client.d.ts ADDED Viewed

@@ -0,0 +1,295 @@
+/**
+ * REST API Client
+ * HTTP client for CSP Resource Server
+ */
+import { AxiosRequestConfig } from 'axios';
+declare class APIClient {
+    private client;
+    private readonly maxRetries;
+    private readonly retryDelay;
+    constructor();
+    /**
+     * Build an AxiosRequestConfig that carries a per-request user token.
+     * Pass the result as the `config` argument to get/post/put/delete or merge it
+     * into any existing request config so that the caller's token overrides the
+     * server-level fallback set in the interceptor.
+     *
+     * Usage:
+     *   await apiClient.get('/some/path', apiClient.authConfig(userToken));
+     *   await apiClient.post('/some/path', body, apiClient.authConfig(userToken));
+     */
+    authConfig(token: string | undefined, extra?: AxiosRequestConfig): AxiosRequestConfig;
+    /**
+     * Sanitize headers to hide sensitive information
+     */
+    private sanitizeHeaders;
+    /**
+     * Execute request with retry logic
+     */
+    private executeWithRetry;
+    /**
+     * GET request
+     */
+    get<T>(url: string, config?: AxiosRequestConfig): Promise<T>;
+    /**
+     * POST request
+     */
+    post<T>(url: string, data?: unknown, config?: AxiosRequestConfig): Promise<T>;
+    /**
+     * PUT request
+     */
+    put<T>(url: string, data?: unknown, config?: AxiosRequestConfig): Promise<T>;
+    /**
+     * DELETE request
+     */
+    delete<T>(url: string, config?: AxiosRequestConfig): Promise<T>;
+    /**
+     * Get subscription list
+     *
+     * @param params   Query parameters for filtering subscriptions.
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     *                  When provided it overrides the server-level fallback token.
+     */
+    getSubscriptions(params?: {
+        scope?: 'general' | 'team' | 'user' | 'all';
+        types?: string[];
+        detail?: boolean;
+    }, userToken?: string): Promise<{
+        total: number;
+        subscriptions: Array<{
+            id: string;
+            name: string;
+            type: string;
+            team: string;
+            subscribed_at: string;
+            auto_sync: boolean;
+            resource: {
+                version: string;
+                hash: string;
+                download_url: string;
+            };
+        }>;
+    }>;
+    /**
+     * Subscribe to resource
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    subscribe(resourceIds: string[], autoSync?: boolean, scope?: 'general' | 'team' | 'user', userToken?: string): Promise<{
+        success: boolean;
+        subscriptions: Array<{
+            id: string;
+            name: string;
+            type: string;
+            subscribed_at: string;
+        }>;
+    }>;
+    /**
+     * Unsubscribe from resource
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    unsubscribe(resourceIds: string | string[], userToken?: string): Promise<void>;
+    /**
+     * Search resources
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    searchResources(params: {
+        keyword: string;
+        team?: string;
+        type?: string;
+        detail?: boolean;
+        page?: number;
+        page_size?: number;
+    }, userToken?: string): Promise<{
+        total: number;
+        page?: number;
+        page_size?: number;
+        results: Array<{
+            id: string;
+            name: string;
+            type: string;
+            team: string;
+            version: string;
+            description: string;
+            score: number;
+            is_subscribed: boolean;
+            metadata?: {
+                module: string;
+                tags: string[];
+                author: string;
+                created_at: string;
+                updated_at: string;
+                downloads: number;
+            };
+        }>;
+    }>;
+    /**
+     * Download resource — returns all files for the resource.
+     *
+     * GET /csp/api/resources/download/{id}
+     * Response: { data: { resource_id, name, type, version, hash, files: [{path, content}] } }
+     *
+     * files[].path is the relative path within the resource directory.
+     * Single-file resources (command, rule) have exactly one element.
+     * Multi-file resources (skill, mcp) have all their files included.
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    downloadResource(resourceId: string, userToken?: string): Promise<{
+        resource_id: string;
+        name: string;
+        type: string;
+        version: string;
+        hash: string;
+        files: Array<{
+            path: string;
+            content: string;
+        }>;
+    }>;
+    /**
+     * Get full resource metadata including script files and content hash.
+     *
+     * This is the primary endpoint for hybrid sync — returns enhanced metadata
+     * with has_scripts, script_files array, and file permissions.
+     *
+     * Fallback: If the server hasn't implemented this endpoint yet, falls back
+     * to downloadResource() and infers has_scripts from file structure.
+     *
+     * GET /api/v1/resources/{id}/metadata
+     * Response: { data: { id, name, type, version, content, has_scripts, script_files, content_hash } }
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    /**
+     * Get resource detail
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    getResourceDetail(resourceId: string, userToken?: string): Promise<{
+        id: string;
+        name: string;
+        type: string;
+        team: string;
+        version: string;
+        description: string;
+        metadata: {
+            module: string;
+            tags: string[];
+            author: string;
+            created_at: string;
+            updated_at: string;
+            downloads: number;
+            file_size: number;
+            hash: string;
+        };
+        download_url: string;
+    }>;
+    /**
+     * Stage resource files for upload (Step 1 of two-step upload flow).
+     *
+     * POST /csp/api/resources/upload
+     * Body: { type, name, files: [{ path, content }] }
+     * Response: { upload_id, status, expires_at, preview_url }
+     *
+     * The server validates path traversal, total size (< 10 MB), and name conflicts.
+     * All file types are supported — mcp packages may include .py, .js, package.json, etc.
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    uploadResourceFiles(params: {
+        type: string;
+        name: string;
+        files: Array<{
+            path: string;
+            content: string;
+        }>;
+        target_source?: string;
+        force?: boolean;
+    }, userToken?: string): Promise<{
+        upload_id: string;
+        status: string;
+        expires_at: string;
+        preview_url?: string;
+    }>;
+    /**
+     * Finalize staged upload — triggers Git commit (Step 2 of two-step upload flow).
+     *
+     * POST /csp/api/resources/finalize
+     * Body: { upload_id, commit_message }
+     * Response: { resource_id, version, url, commit_hash, download_url }
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    finalizeResourceUpload(uploadId: string, commitMessage: string, userToken?: string): Promise<{
+        resource_id: string;
+        version?: string;
+        url?: string;
+        commit_hash?: string;
+        download_url?: string;
+    }>;
+    /**
+     * Report AI resource usage telemetry to the server.
+     *
+     * POST /csp/api/resources/telemetry
+     * Body: { client_version, reported_at, events[], subscribed_rules[], configured_mcps[] }
+     *
+     * Called by TelemetryManager.flush() every ~10 seconds and on reconnect.
+     * Throws on non-2xx so the caller can apply retry logic.
+     *
+     * jira_id in each event entry is optional — it is only present when the user
+     * explicitly passed a Jira ID during the Prompt invocation.
+     *
+     * @param payload   Telemetry report payload built by TelemetryManager
+     * @param userToken Per-request Bearer token from the caller's mcp.json configuration
+     */
+    reportTelemetry(payload: {
+        client_version: string;
+        reported_at: string;
+        events: Array<{
+            resource_id: string;
+            resource_type: string;
+            resource_name: string;
+            invocation_count: number;
+            first_invoked_at: string;
+            last_invoked_at: string;
+            /** Optional Jira Issue ID (e.g. "PROJ-12345"). Absent when not provided. */
+            jira_id?: string;
+        }>;
+        subscribed_rules: Array<{
+            resource_id: string;
+            resource_name: string;
+            subscribed_at: string;
+        }>;
+        configured_mcps: Array<{
+            resource_id: string;
+            resource_name: string;
+            configured_at: string;
+        }>;
+    }, userToken: string): Promise<void>;
+    /**
+     * @deprecated Use uploadResourceFiles() + finalizeResourceUpload() instead.
+     */
+    uploadResource(params: {
+        name: string;
+        type: string;
+        team: string;
+        description?: string;
+        tags?: string[];
+    }): Promise<{
+        upload_id: string;
+        upload_url: string;
+        expires_at: string;
+    }>;
+    /**
+     * @deprecated Use finalizeResourceUpload() instead.
+     */
+    finalizeUpload(uploadId: string, hash: string): Promise<{
+        resource_id: string;
+        status: string;
+    }>;
+}
+export declare const apiClient: APIClient;
+export {};
+//# sourceMappingURL=client.d.ts.map

package/dist/api/client.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/api/client.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAc,EAAiB,kBAAkB,EAAc,MAAM,OAAO,CAAC;AAK7E,cAAM,SAAS;IACb,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAK;IAChC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAQ;;IAiHnC;;;;;;;;;OASG;IACH,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,SAAS,EAAE,KAAK,CAAC,EAAE,kBAAkB,GAAG,kBAAkB;IAWrF;;OAEG;IACH,OAAO,CAAC,eAAe;IAavB;;OAEG;YACW,gBAAgB;IA6C9B;;OAEG;IACG,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,kBAAkB,GAAG,OAAO,CAAC,CAAC,CAAC;IAWlE;;OAEG;IACG,IAAI,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,kBAAkB,GAAG,OAAO,CAAC,CAAC,CAAC;IAWnF;;OAEG;IACG,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,kBAAkB,GAAG,OAAO,CAAC,CAAC,CAAC;IAWlF;;OAEG;IACG,MAAM,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,kBAAkB,GAAG,OAAO,CAAC,CAAC,CAAC;IAerE;;;;;;OAMG;IACG,gBAAgB,CACpB,MAAM,CAAC,EAAE;QACP,KAAK,CAAC,EAAE,SAAS,GAAG,MAAM,GAAG,MAAM,GAAG,KAAK,CAAC;QAC5C,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;QACjB,MAAM,CAAC,EAAE,OAAO,CAAC;KAClB,EACD,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,KAAK,EAAE,MAAM,CAAC;QACd,aAAa,EAAE,KAAK,CAAC;YACnB,EAAE,EAAE,MAAM,CAAC;YACX,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,aAAa,EAAE,MAAM,CAAC;YACtB,SAAS,EAAE,OAAO,CAAC;YACnB,QAAQ,EAAE;gBACR,OAAO,EAAE,MAAM,CAAC;gBAChB,IAAI,EAAE,MAAM,CAAC;gBACb,YAAY,EAAE,MAAM,CAAC;aACtB,CAAC;SACH,CAAC,CAAC;KACJ,CAAC;IA6BF;;;;OAIG;IACG,SAAS,CACb,WAAW,EAAE,MAAM,EAAE,EACrB,QAAQ,UAAO,EACf,KAAK,CAAC,EAAE,SAAS,GAAG,MAAM,GAAG,MAAM,EACnC,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,OAAO,EAAE,OAAO,CAAC;QACjB,aAAa,EAAE,KAAK,CAAC;YACnB,EAAE,EAAE,MAAM,CAAC;YACX,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,aAAa,EAAE,MAAM,CAAC;SACvB,CAAC,CAAC;KACJ,CAAC;IA0BF;;;;OAIG;IACG,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM,EAAE,EAAE,SAAS,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAapF;;;;OAIG;IACG,eAAe,CACnB,MAAM,EAAE;QACN,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,MAAM,CAAC,EAAE,OAAO,CAAC;QACjB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,EACD,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,KAAK,CAAC;YACb,EAAE,EAAE,MAAM,CAAC;YACX,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,IAAI,EAAE,MAAM,CAAC;YACb,OAAO,EAAE,MAAM,CAAC;YAChB,WAAW,EAAE,MAAM,CAAC;YACpB,KAAK,EAAE,MAAM,CAAC;YACd,aAAa,EAAE,OAAO,CAAC;YACvB,QAAQ,CAAC,EAAE;gBACT,MAAM,EAAE,MAAM,CAAC;gBACf,IAAI,EAAE,MAAM,EAAE,CAAC;gBACf,MAAM,EAAE,MAAM,CAAC;gBACf,UAAU,EAAE,MAAM,CAAC;gBACnB,UAAU,EAAE,MAAM,CAAC;gBACnB,SAAS,EAAE,MAAM,CAAC;aACnB,CAAC;SACH,CAAC,CAAC;KACJ,CAAC;IA8CF;;;;;;;;;;;OAWG;IACG,gBAAgB,CACpB,UAAU,EAAE,MAAM,EAClB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,WAAW,EAAE,MAAM,CAAC;QACpB,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;KACjD,CAAC;IAgBF;;;;;;;;;;;;;OAaG;IACH;;;;OAIG;IACG,iBAAiB,CACrB,UAAU,EAAE,MAAM,EAClB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,WAAW,EAAE,MAAM,CAAC;QACpB,QAAQ,EAAE;YACR,MAAM,EAAE,MAAM,CAAC;YACf,IAAI,EAAE,MAAM,EAAE,CAAC;YACf,MAAM,EAAE,MAAM,CAAC;YACf,UAAU,EAAE,MAAM,CAAC;YACnB,UAAU,EAAE,MAAM,CAAC;YACnB,SAAS,EAAE,MAAM,CAAC;YAClB,SAAS,EAAE,MAAM,CAAC;YAClB,IAAI,EAAE,MAAM,CAAC;SACd,CAAC;QACF,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;IAIF;;;;;;;;;;;OAWG;IACG,mBAAmB,CACvB,MAAM,EAAE;QACN,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,KAAK,CAAC;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;QAChD,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,KAAK,CAAC,EAAE,OAAO,CAAC;KACjB,EACD,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,SAAS,EAAE,MAAM,CAAC;QAClB,MAAM,EAAE,MAAM,CAAC;QACf,UAAU,EAAE,MAAM,CAAC;QACnB,WAAW,CAAC,EAAE,MAAM,CAAC;KACtB,CAAC;IASF;;;;;;;;OAQG;IACG,sBAAsB,CAC1B,QAAQ,EAAE,MAAM,EAChB,aAAa,EAAE,MAAM,EACrB,SAAS,CAAC,EAAE,MAAM,GACjB,OAAO,CAAC;QACT,WAAW,EAAE,MAAM,CAAC;QACpB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,GAAG,CAAC,EAAE,MAAM,CAAC;QACb,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,YAAY,CAAC,EAAE,MAAM,CAAC;KACvB,CAAC;IAmBF;;;;;;;;;;;;;;OAcG;IACG,eAAe,CACnB,OAAO,EAAE;QACP,cAAc,EAAE,MAAM,CAAC;QACvB,WAAW,EAAE,MAAM,CAAC;QACpB,MAAM,EAAE,KAAK,CAAC;YACZ,WAAW,EAAE,MAAM,CAAC;YACpB,aAAa,EAAE,MAAM,CAAC;YACtB,aAAa,EAAE,MAAM,CAAC;YACtB,gBAAgB,EAAE,MAAM,CAAC;YACzB,gBAAgB,EAAE,MAAM,CAAC;YACzB,eAAe,EAAE,MAAM,CAAC;YACxB,4EAA4E;YAC5E,OAAO,CAAC,EAAE,MAAM,CAAC;SAClB,CAAC,CAAC;QACH,gBAAgB,EAAE,KAAK,CAAC;YACtB,WAAW,EAAE,MAAM,CAAC;YACpB,aAAa,EAAE,MAAM,CAAC;YACtB,aAAa,EAAE,MAAM,CAAC;SACvB,CAAC,CAAC;QACH,eAAe,EAAE,KAAK,CAAC;YACrB,WAAW,EAAE,MAAM,CAAC;YACpB,aAAa,EAAE,MAAM,CAAC;YACtB,aAAa,EAAE,MAAM,CAAC;SACvB,CAAC,CAAC;KACJ,EACD,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,IAAI,CAAC;IAQhB;;OAEG;IACG,cAAc,CAAC,MAAM,EAAE;QAC3B,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;KACjB,GAAG,OAAO,CAAC;QACV,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,EAAE,MAAM,CAAC;QACnB,UAAU,EAAE,MAAM,CAAC;KACpB,CAAC;IAIF;;OAEG;IACG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;QAC5D,WAAW,EAAE,MAAM,CAAC;QACpB,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;CAMH;AAGD,eAAO,MAAM,SAAS,WAAkB,CAAC"}

package/dist/api/client.js ADDED Viewed

@@ -0,0 +1,385 @@
+"use strict";
+/**
+ * REST API Client
+ * HTTP client for CSP Resource Server
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.apiClient = void 0;
+const axios_1 = __importStar(require("axios"));
+const config_1 = require("../config");
+const logger_1 = require("../utils/logger");
+const errors_1 = require("../types/errors");
+class APIClient {
+    client;
+    maxRetries = 3;
+    retryDelay = 1000; // 1 second
+    constructor() {
+        this.client = axios_1.default.create({
+            baseURL: config_1.config.csp.apiBaseUrl,
+            timeout: config_1.config.csp.timeout,
+            headers: {
+                'Content-Type': 'application/json',
+                'User-Agent': `csp-ai-agent-mcp/0.2.0`,
+            },
+        });
+        // Request interceptor for authentication and logging.
+        // Every request MUST carry a per-request Authorization header supplied by
+        // the caller via authConfig(userToken). If none is present the request is
+        // rejected immediately — the token must come from the authenticated SSE
+        // connection, not from environment variables.
+        this.client.interceptors.request.use((requestConfig) => {
+            if (!requestConfig.headers.Authorization) {
+                return Promise.reject(new Error('Authorization token is missing. ' +
+                    'Ensure the MCP server is connected via SSE with a valid Bearer token in the Authorization header.'));
+            }
+            // Enhanced request logging
+            logger_1.logger.debug({
+                type: 'api_request_start',
+                method: requestConfig.method?.toUpperCase(),
+                url: requestConfig.url,
+                params: requestConfig.params,
+                data: requestConfig.data ? JSON.stringify(requestConfig.data).substring(0, 500) : undefined,
+                headers: this.sanitizeHeaders(requestConfig.headers),
+            }, `API Request: ${requestConfig.method?.toUpperCase()} ${requestConfig.url}`);
+            // Record start time for duration calculation
+            requestConfig.startTime = Date.now();
+            return requestConfig;
+        }, (error) => {
+            logger_1.logger.error({
+                type: 'api_request_interceptor_error',
+                error: error.message
+            }, 'API request interceptor error');
+            return Promise.reject(error);
+        });
+        // Response interceptor for detailed logging
+        this.client.interceptors.response.use((response) => {
+            const startTime = response.config.startTime || Date.now();
+            const duration = Date.now() - startTime;
+            const method = response.config.method?.toUpperCase() || 'UNKNOWN';
+            const url = response.config.url || 'unknown';
+            // Enhanced response logging
+            (0, logger_1.logApiRequest)(method, url, response.status, duration, response.config.data, response.data, response.headers);
+            return response;
+        }, (error) => {
+            const startTime = error.config?.startTime || Date.now();
+            const duration = Date.now() - startTime;
+            const statusCode = error.response?.status;
+            const method = error.config?.method?.toUpperCase() || 'UNKNOWN';
+            const url = error.config?.url || 'unknown';
+            // Enhanced error logging
+            (0, logger_1.logApiError)(method, url, error, error.config?.data, statusCode);
+            // Log response details if available
+            if (error.response) {
+                logger_1.logger.error({
+                    type: 'api_response_error',
+                    method,
+                    url,
+                    status: statusCode,
+                    statusText: error.response.statusText,
+                    responseData: error.response.data ? JSON.stringify(error.response.data).substring(0, 1000) : undefined,
+                    duration,
+                }, `API Error Response: ${method} ${url} - ${statusCode}`);
+            }
+            return Promise.reject(error);
+        });
+    }
+    /**
+     * Build an AxiosRequestConfig that carries a per-request user token.
+     * Pass the result as the `config` argument to get/post/put/delete or merge it
+     * into any existing request config so that the caller's token overrides the
+     * server-level fallback set in the interceptor.
+     *
+     * Usage:
+     *   await apiClient.get('/some/path', apiClient.authConfig(userToken));
+     *   await apiClient.post('/some/path', body, apiClient.authConfig(userToken));
+     */
+    authConfig(token, extra) {
+        if (!token)
+            return extra ?? {};
+        return {
+            ...extra,
+            headers: {
+                ...(extra?.headers ?? {}),
+                Authorization: `Bearer ${token}`,
+            },
+        };
+    }
+    /**
+     * Sanitize headers to hide sensitive information
+     */
+    sanitizeHeaders(headers) {
+        const sanitized = { ...headers };
+        if (sanitized['Authorization'] || sanitized['authorization']) {
+            const key = sanitized['Authorization'] ? 'Authorization' : 'authorization';
+            const value = sanitized[key];
+            if (value && value.startsWith('Bearer ')) {
+                const token = value.substring(7);
+                sanitized[key] = `Bearer ${token.substring(0, 10)}...${token.substring(token.length - 10)}`;
+            }
+        }
+        return sanitized;
+    }
+    /**
+     * Execute request with retry logic
+     */
+    async executeWithRetry(requestFn, method, url, retryCount = 0) {
+        try {
+            return await requestFn();
+        }
+        catch (error) {
+            const isNetworkError = error instanceof axios_1.AxiosError &&
+                (!error.response || error.code === 'ECONNREFUSED' || error.code === 'ETIMEDOUT');
+            if (isNetworkError && retryCount < this.maxRetries) {
+                const delay = this.retryDelay * Math.pow(2, retryCount);
+                logger_1.logger.warn({
+                    method,
+                    url,
+                    retryCount: retryCount + 1,
+                    maxRetries: this.maxRetries,
+                    delay,
+                }, `API request failed, retrying in ${delay}ms...`);
+                await new Promise((resolve) => setTimeout(resolve, delay));
+                return this.executeWithRetry(requestFn, method, url, retryCount + 1);
+            }
+            // Transform axios error to APIError
+            if (error instanceof axios_1.AxiosError) {
+                throw (0, errors_1.createAPIError)(method, url, error, error.response?.status, retryCount);
+            }
+            throw error;
+        }
+    }
+    /**
+     * GET request
+     */
+    async get(url, config) {
+        return this.executeWithRetry(async () => {
+            const response = await this.client.get(url, config);
+            return response.data;
+        }, 'GET', url);
+    }
+    /**
+     * POST request
+     */
+    async post(url, data, config) {
+        return this.executeWithRetry(async () => {
+            const response = await this.client.post(url, data, config);
+            return response.data;
+        }, 'POST', url);
+    }
+    /**
+     * PUT request
+     */
+    async put(url, data, config) {
+        return this.executeWithRetry(async () => {
+            const response = await this.client.put(url, data, config);
+            return response.data;
+        }, 'PUT', url);
+    }
+    /**
+     * DELETE request
+     */
+    async delete(url, config) {
+        return this.executeWithRetry(async () => {
+            const response = await this.client.delete(url, config);
+            return response.data;
+        }, 'DELETE', url);
+    }
+    //===========================================
+    // CSP Resource Server API Endpoints
+    //===========================================
+    /**
+     * Get subscription list
+     *
+     * @param params   Query parameters for filtering subscriptions.
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     *                  When provided it overrides the server-level fallback token.
+     */
+    async getSubscriptions(params, userToken) {
+        const response = await this.get('/csp/api/resources/subscriptions', this.authConfig(userToken, { params }));
+        if (!response.data) {
+            throw new Error('Invalid API response: missing data field');
+        }
+        return response.data;
+    }
+    /**
+     * Subscribe to resource
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async subscribe(resourceIds, autoSync = true, scope, userToken) {
+        const response = await this.post('/csp/api/resources/subscriptions/add', { resource_ids: resourceIds, auto_sync: autoSync, scope }, this.authConfig(userToken));
+        if (!response.data) {
+            throw new Error('Invalid API response: missing data field');
+        }
+        return { success: true, subscriptions: response.data.subscriptions };
+    }
+    /**
+     * Unsubscribe from resource
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async unsubscribe(resourceIds, userToken) {
+        const ids = Array.isArray(resourceIds) ? resourceIds : [resourceIds];
+        const response = await this.delete('/csp/api/resources/subscriptions/remove', this.authConfig(userToken, { data: { resource_ids: ids } }));
+        if (!response.data) {
+            throw new Error('Invalid API response: missing data field');
+        }
+    }
+    /**
+     * Search resources
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async searchResources(params, userToken) {
+        const response = await this.get('/csp/api/resources/search', this.authConfig(userToken, { params }));
+        if (!response.data) {
+            throw new Error('Invalid API response: missing data field');
+        }
+        return {
+            total: response.data.total,
+            page: response.data.page,
+            page_size: response.data.page_size,
+            results: response.data.results.map((r) => ({
+                ...r,
+                score: r.score || 0,
+                is_subscribed: r.is_subscribed || false,
+            })),
+        };
+    }
+    /**
+     * Download resource — returns all files for the resource.
+     *
+     * GET /csp/api/resources/download/{id}
+     * Response: { data: { resource_id, name, type, version, hash, files: [{path, content}] } }
+     *
+     * files[].path is the relative path within the resource directory.
+     * Single-file resources (command, rule) have exactly one element.
+     * Multi-file resources (skill, mcp) have all their files included.
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async downloadResource(resourceId, userToken) {
+        const response = await this.get(`/csp/api/resources/download/${resourceId}`, this.authConfig(userToken));
+        return response.data;
+    }
+    /**
+     * Get full resource metadata including script files and content hash.
+     *
+     * This is the primary endpoint for hybrid sync — returns enhanced metadata
+     * with has_scripts, script_files array, and file permissions.
+     *
+     * Fallback: If the server hasn't implemented this endpoint yet, falls back
+     * to downloadResource() and infers has_scripts from file structure.
+     *
+     * GET /api/v1/resources/{id}/metadata
+     * Response: { data: { id, name, type, version, content, has_scripts, script_files, content_hash } }
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    /**
+     * Get resource detail
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async getResourceDetail(resourceId, userToken) {
+        return this.get(`/csp/api/resources/${resourceId}`, this.authConfig(userToken));
+    }
+    /**
+     * Stage resource files for upload (Step 1 of two-step upload flow).
+     *
+     * POST /csp/api/resources/upload
+     * Body: { type, name, files: [{ path, content }] }
+     * Response: { upload_id, status, expires_at, preview_url }
+     *
+     * The server validates path traversal, total size (< 10 MB), and name conflicts.
+     * All file types are supported — mcp packages may include .py, .js, package.json, etc.
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async uploadResourceFiles(params, userToken) {
+        const resp = await this.post('/csp/api/resources/upload', params, this.authConfig(userToken));
+        return resp.data;
+    }
+    /**
+     * Finalize staged upload — triggers Git commit (Step 2 of two-step upload flow).
+     *
+     * POST /csp/api/resources/finalize
+     * Body: { upload_id, commit_message }
+     * Response: { resource_id, version, url, commit_hash, download_url }
+     *
+     * @param userToken Per-request token from the caller's mcp.json configuration.
+     */
+    async finalizeResourceUpload(uploadId, commitMessage, userToken) {
+        const resp = await this.post('/csp/api/resources/finalize', { upload_id: uploadId, commit_message: commitMessage }, this.authConfig(userToken));
+        return resp.data;
+    }
+    /**
+     * Report AI resource usage telemetry to the server.
+     *
+     * POST /csp/api/resources/telemetry
+     * Body: { client_version, reported_at, events[], subscribed_rules[], configured_mcps[] }
+     *
+     * Called by TelemetryManager.flush() every ~10 seconds and on reconnect.
+     * Throws on non-2xx so the caller can apply retry logic.
+     *
+     * jira_id in each event entry is optional — it is only present when the user
+     * explicitly passed a Jira ID during the Prompt invocation.
+     *
+     * @param payload   Telemetry report payload built by TelemetryManager
+     * @param userToken Per-request Bearer token from the caller's mcp.json configuration
+     */
+    async reportTelemetry(payload, userToken) {
+        await this.post('/csp/api/resources/telemetry', payload, this.authConfig(userToken));
+    }
+    /**
+     * @deprecated Use uploadResourceFiles() + finalizeResourceUpload() instead.
+     */
+    async uploadResource(params) {
+        return this.post('/csp/api/resources/upload', params);
+    }
+    /**
+     * @deprecated Use finalizeResourceUpload() instead.
+     */
+    async finalizeUpload(uploadId, hash) {
+        return this.post('/csp/api/resources/finalize', {
+            upload_id: uploadId,
+            hash,
+        });
+    }
+}
+// Export singleton instance
+exports.apiClient = new APIClient();
+//# sourceMappingURL=client.js.map