@enactprotocol/mcp-server 1.2.1 → 1.2.2

package/dist/index.js

@@ -238908,7 +238908,6 @@ class EnactCore {
     }
   }
   async verifyTool(tool, dangerouslySkipVerification = false) {
-    console.log("=== VERIFY TOOL CALLED ===", tool.name, "skipVerification:", dangerouslySkipVerification);
     if (dangerouslySkipVerification) {
       logger_default.warn(`Skipping signature verification for tool: ${tool.name}`);
       return;
@@ -238917,32 +238916,22 @@ class EnactCore {
       if (!tool.signatures || tool.signatures.length === 0) {
         throw new Error(`Tool ${tool.name} does not have any signatures`);
       }
-      console.log("=== TOOL SIGNATURE DATA ===");
-      console.log("Tool signatures from database:", JSON.stringify(tool.signatures, null, 2));
-      console.log("Tool command:", tool.command);
       const documentForVerification = {
         command: tool.command
       };
       const referenceSignature = {
         signature: tool.signatures[0].value,
-        publicKey: "",
+        publicKey: tool.signatures[0].signer,
         algorithm: tool.signatures[0].algorithm,
         timestamp: new Date(tool.signatures[0].created).getTime()
       };
       const canonicalDoc = SigningService.getCanonicalDocument(documentForVerification, { includeFields: ["command"] });
-      console.log("=== SIGNATURE VERIFICATION DEBUG ===");
-      console.log("Original document for verification:", JSON.stringify(documentForVerification, null, 2));
-      console.log("Canonical document:", JSON.stringify(canonicalDoc, null, 2));
       const docString = JSON.stringify(canonicalDoc);
       const messageHash = CryptoUtils.hash(docString);
-      console.log("Document string:", docString);
-      console.log("Message hash:", messageHash);
-      console.log("Reference signature object:", JSON.stringify(referenceSignature, null, 2));
       const directVerify = CryptoUtils.verify(referenceSignature.publicKey, messageHash, referenceSignature.signature);
-      console.log("KEITH DEBUG - Direct crypto verification result:", directVerify, "publicKey:", referenceSignature.publicKey);
+      console.log("Direct crypto verification result:", directVerify);
       const trustedKeys = KeyManager.getAllTrustedPublicKeys();
       console.log("Trusted keys:", trustedKeys);
-      console.log("Our referenceSignature.publicKey:", JSON.stringify(referenceSignature.publicKey));
       console.log("Is our public key trusted?", trustedKeys.includes(referenceSignature.publicKey));
       const isValid2 = SigningService.verifyDocument(documentForVerification, referenceSignature, { includeFields: ["command"] });
       console.log("Final verification result:", isValid2);

package/dist/index.js.bak

@@ -238907,7 +238907,6 @@ class EnactCore {
     }
   }
   async verifyTool(tool, dangerouslySkipVerification = false) {
-    console.log("=== VERIFY TOOL CALLED ===", tool.name, "skipVerification:", dangerouslySkipVerification);
     if (dangerouslySkipVerification) {
       logger_default.warn(`Skipping signature verification for tool: ${tool.name}`);
       return;
@@ -238916,32 +238915,22 @@ class EnactCore {
       if (!tool.signatures || tool.signatures.length === 0) {
         throw new Error(`Tool ${tool.name} does not have any signatures`);
       }
-      console.log("=== TOOL SIGNATURE DATA ===");
-      console.log("Tool signatures from database:", JSON.stringify(tool.signatures, null, 2));
-      console.log("Tool command:", tool.command);
       const documentForVerification = {
         command: tool.command
       };
       const referenceSignature = {
         signature: tool.signatures[0].value,
-        publicKey: "",
+        publicKey: tool.signatures[0].signer,
         algorithm: tool.signatures[0].algorithm,
         timestamp: new Date(tool.signatures[0].created).getTime()
       };
       const canonicalDoc = SigningService.getCanonicalDocument(documentForVerification, { includeFields: ["command"] });
-      console.log("=== SIGNATURE VERIFICATION DEBUG ===");
-      console.log("Original document for verification:", JSON.stringify(documentForVerification, null, 2));
-      console.log("Canonical document:", JSON.stringify(canonicalDoc, null, 2));
       const docString = JSON.stringify(canonicalDoc);
       const messageHash = CryptoUtils.hash(docString);
-      console.log("Document string:", docString);
-      console.log("Message hash:", messageHash);
-      console.log("Reference signature object:", JSON.stringify(referenceSignature, null, 2));
       const directVerify = CryptoUtils.verify(referenceSignature.publicKey, messageHash, referenceSignature.signature);
-      console.log("KEITH DEBUG - Direct crypto verification result:", directVerify, "publicKey:", referenceSignature.publicKey);
+      console.log("Direct crypto verification result:", directVerify);
       const trustedKeys = KeyManager.getAllTrustedPublicKeys();
       console.log("Trusted keys:", trustedKeys);
-      console.log("Our referenceSignature.publicKey:", JSON.stringify(referenceSignature.publicKey));
       console.log("Is our public key trusted?", trustedKeys.includes(referenceSignature.publicKey));
       const isValid2 = SigningService.verifyDocument(documentForVerification, referenceSignature, { includeFields: ["command"] });
       console.log("Final verification result:", isValid2);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@enactprotocol/mcp-server",
-  "version": "1.2.1",
+  "version": "1.2.2",
   "description": "MCP server for the Enact Protocol - enables AI tools integration via Model Context Protocol",
   "type": "module",
   "main": "./dist/index.js",
@@ -41,7 +41,7 @@
     "node": ">=18.0.0"
   },
   "dependencies": {
-    "@enactprotocol/shared": "1.2.1",
+    "@enactprotocol/shared": "1.2.2",
     "@modelcontextprotocol/sdk": "^1.13.0",
     "zod": "^3.25.67"
   },