@evantahler/mcpx 0.18.3 → 0.18.6

package/src/commands/auth.ts

@@ -1,114 +1,110 @@
 import type { Command } from "commander";
-import { getContext } from "../context.ts";
-import { isHttpServer } from "../config/schemas.ts";
-import { saveAuth } from "../config/loader.ts";
 import { McpOAuthProvider, runOAuthFlow } from "../client/oauth.ts";
+import { saveAuth } from "../config/loader.ts";
+import { isHttpServer } from "../config/schemas.ts";
+import { getContext } from "../context.ts";
 import { logger } from "../output/logger.ts";
 import { runIndex } from "./index.ts";
 
 export function registerAuthCommand(program: Command) {
-  program
-    .command("auth <server>")
-    .description("authenticate with an HTTP MCP server")
-    .option("-s, --status", "check auth status and token TTL")
-    .option("-r, --refresh", "force token refresh")
-    .option("--no-index", "skip rebuilding the search index after auth")
-    .action(
-      async (server: string, options: { status?: boolean; refresh?: boolean; index?: boolean }) => {
-        const { config, formatOptions } = await getContext(program);
+	program
+		.command("auth <server>")
+		.description("authenticate with an HTTP MCP server")
+		.option("-s, --status", "check auth status and token TTL")
+		.option("-r, --refresh", "force token refresh")
+		.option("--no-index", "skip rebuilding the search index after auth")
+		.action(async (server: string, options: { status?: boolean; refresh?: boolean; index?: boolean }) => {
+			const { config, formatOptions } = await getContext(program);
 
-        const serverConfig = config.servers.mcpServers[server];
-        if (!serverConfig) {
-          console.error(`Unknown server: "${server}"`);
-          process.exit(1);
-        }
-        if (!isHttpServer(serverConfig)) {
-          console.error(
-            `Server "${server}" is not an HTTP server — OAuth only applies to HTTP servers`,
-          );
-          process.exit(1);
-        }
+			const serverConfig = config.servers.mcpServers[server];
+			if (!serverConfig) {
+				console.error(`Unknown server: "${server}"`);
+				process.exit(1);
+			}
+			if (!isHttpServer(serverConfig)) {
+				console.error(`Server "${server}" is not an HTTP server — OAuth only applies to HTTP servers`);
+				process.exit(1);
+			}
 
-        const provider = new McpOAuthProvider({
-          serverName: server,
-          configDir: config.configDir,
-          auth: config.auth,
-        });
+			const provider = new McpOAuthProvider({
+				serverName: server,
+				configDir: config.configDir,
+				auth: config.auth,
+			});
 
-        if (options.status) {
-          showStatus(server, provider);
-          return;
-        }
+			if (options.status) {
+				showStatus(server, provider);
+				return;
+			}
 
-        if (options.refresh) {
-          const spinner = logger.startSpinner(`Refreshing token for "${server}"…`, formatOptions);
-          try {
-            await provider.refreshIfNeeded(serverConfig.url);
-            spinner.success(`Token refreshed for "${server}"`);
-          } catch (err) {
-            spinner.error(`Refresh failed: ${err instanceof Error ? err.message : err}`);
-            process.exit(1);
-          }
-          return;
-        }
+			if (options.refresh) {
+				const spinner = logger.startSpinner(`Refreshing token for "${server}"…`, formatOptions);
+				try {
+					await provider.refreshIfNeeded(serverConfig.url);
+					spinner.success(`Token refreshed for "${server}"`);
+				} catch (err) {
+					spinner.error(`Refresh failed: ${err instanceof Error ? err.message : err}`);
+					process.exit(1);
+				}
+				return;
+			}
 
-        // Default: full OAuth flow
-        const spinner = logger.startSpinner(`Authenticating with "${server}"…`, formatOptions);
-        try {
-          await runOAuthFlow(serverConfig.url, provider);
-          spinner.success(`Authenticated with "${server}"`);
-        } catch (err) {
-          spinner.error(`Authentication failed: ${err instanceof Error ? err.message : err}`);
-          process.exit(1);
-        }
+			// Default: full OAuth flow
+			const spinner = logger.startSpinner(`Authenticating with "${server}"…`, formatOptions);
+			try {
+				await runOAuthFlow(serverConfig.url, provider);
+				spinner.success(`Authenticated with "${server}"`);
+			} catch (err) {
+				spinner.error(`Authentication failed: ${err instanceof Error ? err.message : err}`);
+				process.exit(1);
+			}
 
-        if (options.index !== false) {
-          await runIndex(program);
-        }
-      },
-    );
+			if (options.index !== false) {
+				await runIndex(program);
+			}
+		});
 }
 
 export function registerDeauthCommand(program: Command) {
-  program
-    .command("deauth <server>")
-    .description("remove stored authentication for a server")
-    .action(async (server: string) => {
-      const { config } = await getContext(program);
+	program
+		.command("deauth <server>")
+		.description("remove stored authentication for a server")
+		.action(async (server: string) => {
+			const { config } = await getContext(program);
 
-      if (!config.auth[server]) {
-        console.log(`No auth stored for "${server}"`);
-        return;
-      }
+			if (!config.auth[server]) {
+				console.log(`No auth stored for "${server}"`);
+				return;
+			}
 
-      delete config.auth[server];
-      await saveAuth(config.configDir, config.auth);
-      console.log(`Deauthenticated "${server}"`);
-    });
+			delete config.auth[server];
+			await saveAuth(config.configDir, config.auth);
+			console.log(`Deauthenticated "${server}"`);
+		});
 }
 
 function showStatus(server: string, provider: McpOAuthProvider) {
-  if (!provider.isComplete()) {
-    console.log(`${server}: not authenticated`);
-    return;
-  }
+	if (!provider.isComplete()) {
+		console.log(`${server}: not authenticated`);
+		return;
+	}
 
-  const expired = provider.isExpired();
-  const hasRefresh = provider.hasRefreshToken();
-  const status = expired ? "expired" : "authenticated";
+	const expired = provider.isExpired();
+	const hasRefresh = provider.hasRefreshToken();
+	const status = expired ? "expired" : "authenticated";
 
-  console.log(`${server}: ${status}`);
-  if (hasRefresh) {
-    console.log("  refresh token: present");
-  }
+	console.log(`${server}: ${status}`);
+	if (hasRefresh) {
+		console.log("  refresh token: present");
+	}
 
-  if (!expired) {
-    // Show TTL if we have expires_at from the auth entry
-    const entry = provider["auth"][server];
-    if (entry?.expires_at) {
-      const remaining = new Date(entry.expires_at).getTime() - Date.now();
-      const minutes = Math.round(remaining / 60000);
-      console.log(`  expires in: ${minutes} minutes`);
-    }
-  }
+	if (!expired) {
+		// Show TTL if we have expires_at from the auth entry
+		const entry = provider.auth[server];
+		if (entry?.expires_at) {
+			const remaining = new Date(entry.expires_at).getTime() - Date.now();
+			const minutes = Math.round(remaining / 60000);
+			console.log(`  expires in: ${minutes} minutes`);
+		}
+	}
 }

package/src/commands/check-update.ts

@@ -1,70 +1,66 @@
-import { green, yellow, cyan, dim } from "ansis";
+import { cyan, dim, green, yellow } from "ansis";
 import type { Command } from "commander";
 import { createSpinner } from "nanospinner";
 import pkg from "../../package.json";
-import { checkForUpdate } from "../update/checker.ts";
 import { saveUpdateCache } from "../update/cache.ts";
 import type { UpdateCache } from "../update/checker.ts";
+import { checkForUpdate } from "../update/checker.ts";
 
 export function registerCheckUpdateCommand(program: Command) {
-  program
-    .command("check-update")
-    .description("Check for a newer version of mcpx")
-    .action(async () => {
-      const opts = program.opts();
-      const json = !!(opts.json as boolean | undefined);
-      const isTTY = process.stderr.isTTY ?? false;
+	program
+		.command("check-update")
+		.description("Check for a newer version of mcpx")
+		.action(async () => {
+			const opts = program.opts();
+			const json = !!(opts.json as boolean | undefined);
+			const isTTY = process.stderr.isTTY ?? false;
 
-      const spinner =
-        !json && isTTY
-          ? createSpinner("Checking for updates...", { stream: process.stderr }).start()
-          : null;
+			const spinner =
+				!json && isTTY ? createSpinner("Checking for updates...", { stream: process.stderr }).start() : null;
 
-      try {
-        const info = await checkForUpdate(pkg.version);
+			try {
+				const info = await checkForUpdate(pkg.version);
 
-        // Save to cache
-        const cache: UpdateCache = {
-          lastCheckAt: new Date().toISOString(),
-          latestVersion: info.latestVersion,
-          hasUpdate: info.hasUpdate,
-          changelog: info.changelog,
-        };
-        await saveUpdateCache(cache);
+				// Save to cache
+				const cache: UpdateCache = {
+					lastCheckAt: new Date().toISOString(),
+					latestVersion: info.latestVersion,
+					hasUpdate: info.hasUpdate,
+					changelog: info.changelog,
+				};
+				await saveUpdateCache(cache);
 
-        spinner?.stop();
+				spinner?.stop();
 
-        if (json) {
-          console.log(JSON.stringify(info, null, 2));
-          return;
-        }
+				if (json) {
+					console.log(JSON.stringify(info, null, 2));
+					return;
+				}
 
-        if (!info.hasUpdate) {
-          if (info.aheadOfLatest) {
-            console.log(
-              yellow(
-                `mcpx v${info.currentVersion} is ahead of latest published release (v${info.latestVersion})`,
-              ),
-            );
-          } else {
-            console.log(green(`mcpx is up to date (v${info.currentVersion})`));
-          }
-          return;
-        }
+				if (!info.hasUpdate) {
+					if (info.aheadOfLatest) {
+						console.log(
+							yellow(`mcpx v${info.currentVersion} is ahead of latest published release (v${info.latestVersion})`),
+						);
+					} else {
+						console.log(green(`mcpx is up to date (v${info.currentVersion})`));
+					}
+					return;
+				}
 
-        console.log(yellow(`Update available: ${info.currentVersion} → ${info.latestVersion}`));
+				console.log(yellow(`Update available: ${info.currentVersion} → ${info.latestVersion}`));
 
-        if (info.changelog) {
-          console.log("");
-          console.log(dim(info.changelog));
-        }
+				if (info.changelog) {
+					console.log("");
+					console.log(dim(info.changelog));
+				}
 
-        console.log("");
-        console.log(cyan(`Run \`mcpx upgrade\` to update`));
-      } catch (err) {
-        spinner?.error({ text: "Failed to check for updates" });
-        console.error(String(err));
-        process.exit(1);
-      }
-    });
+				console.log("");
+				console.log(cyan(`Run \`mcpx upgrade\` to update`));
+			} catch (err) {
+				spinner?.error({ text: "Failed to check for updates" });
+				console.error(String(err));
+				process.exit(1);
+			}
+		});
 }

package/src/commands/deny.ts

@@ -1,134 +1,131 @@
+import { bold, dim, red, yellow } from "ansis";
 import type { Command } from "commander";
-import { bold, dim, green, red, yellow } from "ansis";
 import {
-  type Client,
-  type Scope,
-  resolveSettingsPath,
-  readClientSettings,
-  writeClientSettings,
-  execPattern,
-  readOnlyPatterns,
-  allExecPattern,
-  removePatterns,
-  removeAllMcpxPatterns,
-  getServerPatterns,
+	type Client,
+	execPattern,
+	getServerPatterns,
+	readClientSettings,
+	readOnlyPatterns,
+	removeAllMcpxPatterns,
+	removePatterns,
+	resolveSettingsPath,
+	type Scope,
+	writeClientSettings,
 } from "../lib/client-settings.ts";
 import { formatOutput } from "../output/format-output.ts";
 import type { FormatOptions } from "../output/formatter.ts";
 
 export function registerDenyCommand(program: Command) {
-  program
-    .command("deny")
-    .description("remove permission rules for mcpx commands (Claude Code or Cursor)")
-    .argument("[server]", "server name to deny")
-    .argument("[tools...]", "specific tool names to deny")
-    .option("--all", "remove all mcpx-related permissions")
-    .option("--all-read", "remove read-only command permissions")
-    .option("--cursor", "target Cursor settings instead of Claude Code")
-    .option("--local", "write to local settings (default)")
-    .option("--project", "write to project settings (shared)")
-    .option("--global", "write to global settings")
-    .option("--dry-run", "show what would be removed")
-    .action(
-      async (
-        server: string | undefined,
-        tools: string[],
-        options: {
-          all?: boolean;
-          allRead?: boolean;
-          cursor?: boolean;
-          local?: boolean;
-          project?: boolean;
-          global?: boolean;
-          dryRun?: boolean;
-        },
-      ) => {
-        const formatOptions: FormatOptions = { json: program.opts().json };
-        const client: Client = options.cursor ? "cursor" : "claude";
-        const scope: Scope = options.global ? "global" : options.project ? "project" : "local";
-        const path = resolveSettingsPath(scope, client);
-        const settings = await readClientSettings(path);
+	program
+		.command("deny")
+		.description("remove permission rules for mcpx commands (Claude Code or Cursor)")
+		.argument("[server]", "server name to deny")
+		.argument("[tools...]", "specific tool names to deny")
+		.option("--all", "remove all mcpx-related permissions")
+		.option("--all-read", "remove read-only command permissions")
+		.option("--cursor", "target Cursor settings instead of Claude Code")
+		.option("--local", "write to local settings (default)")
+		.option("--project", "write to project settings (shared)")
+		.option("--global", "write to global settings")
+		.option("--dry-run", "show what would be removed")
+		.action(
+			async (
+				server: string | undefined,
+				tools: string[],
+				options: {
+					all?: boolean;
+					allRead?: boolean;
+					cursor?: boolean;
+					local?: boolean;
+					project?: boolean;
+					global?: boolean;
+					dryRun?: boolean;
+				},
+			) => {
+				const formatOptions: FormatOptions = { json: program.opts().json };
+				const client: Client = options.cursor ? "cursor" : "claude";
+				const scope: Scope = options.global ? "global" : options.project ? "project" : "local";
+				const path = resolveSettingsPath(scope, client);
+				const settings = await readClientSettings(path);
 
-        let result: { settings: typeof settings; removed: string[] };
+				let result: { settings: typeof settings; removed: string[] };
 
-        if (options.all) {
-          // Remove all mcpx-related patterns
-          result = removeAllMcpxPatterns(settings, client);
-        } else {
-          // Build the list of patterns to remove
-          const patterns: string[] = [];
+				if (options.all) {
+					// Remove all mcpx-related patterns
+					result = removeAllMcpxPatterns(settings, client);
+				} else {
+					// Build the list of patterns to remove
+					const patterns: string[] = [];
 
-          if (options.allRead) {
-            patterns.push(...readOnlyPatterns(client));
-          }
+					if (options.allRead) {
+						patterns.push(...readOnlyPatterns(client));
+					}
 
-          if (server && tools.length > 0) {
-            for (const tool of tools) {
-              patterns.push(execPattern(server, tool, client));
-            }
-          } else if (server) {
-            // Remove the server-level pattern AND all tool-specific patterns for this server
-            patterns.push(execPattern(server, undefined, client));
-            patterns.push(...getServerPatterns(settings, server, client));
-          }
+					if (server && tools.length > 0) {
+						for (const tool of tools) {
+							patterns.push(execPattern(server, tool, client));
+						}
+					} else if (server) {
+						// Remove the server-level pattern AND all tool-specific patterns for this server
+						patterns.push(execPattern(server, undefined, client));
+						patterns.push(...getServerPatterns(settings, server, client));
+					}
 
-          if (patterns.length === 0) {
-            console.error("error: specify a server, --all, or --all-read. See 'mcpx deny --help'.");
-            process.exit(1);
-          }
+					if (patterns.length === 0) {
+						console.error("error: specify a server, --all, or --all-read. See 'mcpx deny --help'.");
+						process.exit(1);
+					}
 
-          result = removePatterns(settings, patterns);
-        }
+					result = removePatterns(settings, patterns);
+				}
 
-        if (options.dryRun) {
-          console.log(
-            formatOutput(
-              { scope, path, wouldRemove: result.removed },
-              () => {
-                const lines: string[] = [];
-                lines.push(bold("Dry run") + dim(` — would remove from ${path}:`));
-                if (result.removed.length === 0) {
-                  lines.push(`  ${dim("(no matching patterns found)")}`);
-                } else {
-                  for (const p of result.removed) {
-                    lines.push(`  ${yellow("-")} ${p}`);
-                  }
-                }
-                return lines.join("\n");
-              },
-              formatOptions,
-            ),
-          );
-          return;
-        }
+				if (options.dryRun) {
+					console.log(
+						formatOutput(
+							{ scope, path, wouldRemove: result.removed },
+							() => {
+								const lines: string[] = [];
+								lines.push(bold("Dry run") + dim(` — would remove from ${path}:`));
+								if (result.removed.length === 0) {
+									lines.push(`  ${dim("(no matching patterns found)")}`);
+								} else {
+									for (const p of result.removed) {
+										lines.push(`  ${yellow("-")} ${p}`);
+									}
+								}
+								return lines.join("\n");
+							},
+							formatOptions,
+						),
+					);
+					return;
+				}
 
-        await writeClientSettings(path, result.settings);
+				await writeClientSettings(path, result.settings);
 
-        console.log(
-          formatOutput(
-            {
-              scope,
-              path,
-              removed: result.removed,
-              total: (result.settings.permissions?.allow ?? []).length,
-            },
-            () => {
-              const lines: string[] = [];
-              if (result.removed.length === 0) {
-                lines.push(dim("No matching patterns found — no changes."));
-              } else {
-                lines.push(
-                  bold(`Removed ${result.removed.length} permission(s)`) + dim(` → ${path}`),
-                );
-                for (const p of result.removed) {
-                  lines.push(`  ${red("-")} ${p}`);
-                }
-              }
-              return lines.join("\n");
-            },
-            formatOptions,
-          ),
-        );
-      },
-    );
+				console.log(
+					formatOutput(
+						{
+							scope,
+							path,
+							removed: result.removed,
+							total: (result.settings.permissions?.allow ?? []).length,
+						},
+						() => {
+							const lines: string[] = [];
+							if (result.removed.length === 0) {
+								lines.push(dim("No matching patterns found — no changes."));
+							} else {
+								lines.push(bold(`Removed ${result.removed.length} permission(s)`) + dim(` → ${path}`));
+								for (const p of result.removed) {
+									lines.push(`  ${red("-")} ${p}`);
+								}
+							}
+							return lines.join("\n");
+						},
+						formatOptions,
+					),
+				);
+			},
+		);
 }