npm - @exaudeus/workrail - Versions diffs - 0.0.12 → 0.0.14 - Mend

@exaudeus/workrail 0.0.12 → 0.0.14

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

package/dist/infrastructure/storage/git-workflow-storage.d.ts ADDED Viewed

@@ -0,0 +1,65 @@
+import { IWorkflowStorage } from '../../types/storage';
+import { Workflow, WorkflowSummary } from '../../types/mcp-types';
+export interface GitWorkflowConfig {
+    repositoryUrl: string;
+    branch?: string;
+    localPath?: string;
+    syncInterval?: number;
+    authToken?: string;
+    maxFileSize?: number;
+    maxFiles?: number;
+}
+export interface ValidatedGitWorkflowConfig extends Required<GitWorkflowConfig> {
+    maxFileSize: number;
+    maxFiles: number;
+}
+/**
+ * Git-based workflow storage that clones/pulls workflows from a Git repository
+ * Perfect for community-driven workflow contributions via GitHub/GitLab
+ *
+ * Security features:
+ * - Git command injection protection
+ * - Path traversal prevention
+ * - File size limits
+ * - Repository URL validation
+ */
+export declare class GitWorkflowStorage implements IWorkflowStorage {
+    private readonly config;
+    private readonly localPath;
+    private lastSync;
+    private isCloning;
+    constructor(config: GitWorkflowConfig);
+    private validateAndNormalizeConfig;
+    private isValidGitUrl;
+    private sanitizeGitRef;
+    loadAllWorkflows(): Promise<Workflow[]>;
+    getWorkflowById(id: string): Promise<Workflow | null>;
+    listWorkflowSummaries(): Promise<WorkflowSummary[]>;
+    save(workflow: Workflow): Promise<void>;
+    private ensureRepository;
+    private cloneRepository;
+    private pullRepository;
+    private gitCommitAndPush;
+    private escapeShellArg;
+}
+/**
+ * Example usage and configuration
+ */
+export declare const COMMUNITY_WORKFLOW_REPOS: {
+    official: {
+        repositoryUrl: string;
+        branch: string;
+        syncInterval: number;
+        maxFileSize: number;
+        maxFiles: number;
+    };
+    personal: {
+        repositoryUrl: string;
+        branch: string;
+        syncInterval: number;
+        authToken: string | undefined;
+        maxFileSize: number;
+        maxFiles: number;
+    };
+};
+//# sourceMappingURL=git-workflow-storage.d.ts.map

package/dist/infrastructure/storage/git-workflow-storage.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"git-workflow-storage.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/storage/git-workflow-storage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAgBlE,MAAM,WAAW,iBAAiB;IAChC,aAAa,EAAE,MAAM,CAAC;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,0BAA2B,SAAQ,QAAQ,CAAC,iBAAiB,CAAC;IAC7E,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;;;;;;;;GASG;AACH,qBAAa,kBAAmB,YAAW,gBAAgB;IACzD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAA6B;IACpD,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAa;IAC7B,OAAO,CAAC,SAAS,CAAkB;gBAEvB,MAAM,EAAE,iBAAiB;IAKrC,OAAO,CAAC,0BAA0B;IAmClC,OAAO,CAAC,aAAa;IAkBrB,OAAO,CAAC,cAAc;IAQhB,gBAAgB,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;IA6DvC,eAAe,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAMrD,qBAAqB,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC;IAWnD,IAAI,CAAC,QAAQ,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC;YAoC/B,gBAAgB;YAyChB,eAAe;YAqBf,cAAc;YAcd,gBAAgB;IAsB9B,OAAO,CAAC,cAAc;CAIvB;AAED;;GAEG;AACH,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;;;;CAmBpC,CAAC"}

package/dist/infrastructure/storage/git-workflow-storage.js ADDED Viewed

@@ -0,0 +1,284 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.COMMUNITY_WORKFLOW_REPOS = exports.GitWorkflowStorage = void 0;
+const tslib_1 = require("tslib");
+const child_process_1 = require("child_process");
+const util_1 = require("util");
+const path_1 = tslib_1.__importDefault(require("path"));
+const promises_1 = tslib_1.__importDefault(require("fs/promises"));
+const fs_1 = require("fs");
+const storage_security_1 = require("../../utils/storage-security");
+const error_handler_1 = require("../../core/error-handler");
+const execAsync = (0, util_1.promisify)(child_process_1.exec);
+/**
+ * Git-based workflow storage that clones/pulls workflows from a Git repository
+ * Perfect for community-driven workflow contributions via GitHub/GitLab
+ *
+ * Security features:
+ * - Git command injection protection
+ * - Path traversal prevention
+ * - File size limits
+ * - Repository URL validation
+ */
+class GitWorkflowStorage {
+    config;
+    localPath;
+    lastSync = 0;
+    isCloning = false;
+    constructor(config) {
+        this.config = this.validateAndNormalizeConfig(config);
+        this.localPath = this.config.localPath;
+    }
+    validateAndNormalizeConfig(config) {
+        if (!config.repositoryUrl?.trim()) {
+            throw new error_handler_1.StorageError('Repository URL is required for Git workflow storage');
+        }
+        // Validate repository URL format and security
+        if (!this.isValidGitUrl(config.repositoryUrl)) {
+            throw new error_handler_1.SecurityError('Invalid or potentially unsafe repository URL');
+        }
+        const securityOptions = (0, storage_security_1.validateSecurityOptions)({
+            maxFileSizeBytes: config.maxFileSize || 1024 * 1024 // 1MB default
+        });
+        const localPath = config.localPath ||
+            path_1.default.join(process.cwd(), '.workrail-cache', 'community-workflows');
+        // Ensure local path is within safe boundaries
+        try {
+            (0, storage_security_1.assertWithinBase)(localPath, process.cwd());
+        }
+        catch (error) {
+            throw new error_handler_1.SecurityError(`Local path outside safe boundaries: ${error.message}`);
+        }
+        return {
+            repositoryUrl: config.repositoryUrl.trim(),
+            branch: this.sanitizeGitRef(config.branch || 'main'),
+            localPath,
+            syncInterval: Math.max(1, config.syncInterval || 60), // minimum 1 minute
+            authToken: config.authToken || '',
+            maxFileSize: securityOptions.maxFileSizeBytes,
+            maxFiles: config.maxFiles || 100 // default 100 files
+        };
+    }
+    isValidGitUrl(url) {
+        try {
+            const parsed = new URL(url);
+            // Allow common Git hosting services
+            const allowedHosts = [
+                'github.com', 'gitlab.com', 'bitbucket.org',
+                'dev.azure.com', 'sourceforge.net'
+            ];
+            return allowedHosts.some(host => parsed.hostname === host || parsed.hostname.endsWith(`.${host}`)) && (parsed.protocol === 'https:' || parsed.protocol === 'git:');
+        }
+        catch {
+            return false;
+        }
+    }
+    sanitizeGitRef(ref) {
+        // Prevent Git injection by allowing only safe characters
+        if (!/^[a-zA-Z0-9/_.-]+$/.test(ref)) {
+            throw new error_handler_1.SecurityError('Git reference contains unsafe characters');
+        }
+        return ref;
+    }
+    async loadAllWorkflows() {
+        try {
+            await this.ensureRepository();
+            const workflowsPath = path_1.default.join(this.localPath, 'workflows');
+            if (!(0, fs_1.existsSync)(workflowsPath)) {
+                return [];
+            }
+            const files = await promises_1.default.readdir(workflowsPath);
+            const jsonFiles = files.filter(f => f.endsWith('.json'));
+            if (jsonFiles.length > this.config.maxFiles) {
+                throw new error_handler_1.StorageError(`Too many workflow files (${jsonFiles.length}), maximum allowed: ${this.config.maxFiles}`);
+            }
+            const workflows = [];
+            for (const file of jsonFiles) {
+                try {
+                    const filePath = path_1.default.join(workflowsPath, file);
+                    // Security: Ensure file is within expected directory
+                    (0, storage_security_1.assertWithinBase)(filePath, workflowsPath);
+                    // Validate file size
+                    const stats = await promises_1.default.stat(filePath);
+                    (0, storage_security_1.validateFileSize)(stats.size, this.config.maxFileSize, file);
+                    const content = await promises_1.default.readFile(filePath, 'utf-8');
+                    const workflow = JSON.parse(content);
+                    // Validate workflow ID matches filename (security)
+                    const expectedFilename = `${(0, storage_security_1.sanitizeId)(workflow.id)}.json`;
+                    if (file !== expectedFilename) {
+                        throw new error_handler_1.InvalidWorkflowError(workflow.id, `Workflow ID '${workflow.id}' doesn't match filename '${file}'`);
+                    }
+                    workflows.push(workflow);
+                }
+                catch (error) {
+                    if (error instanceof error_handler_1.SecurityError || error instanceof error_handler_1.InvalidWorkflowError) {
+                        throw error;
+                    }
+                    throw new error_handler_1.StorageError(`Failed to load workflow from ${file}: ${error.message}`);
+                }
+            }
+            return workflows;
+        }
+        catch (error) {
+            if (error instanceof error_handler_1.StorageError || error instanceof error_handler_1.SecurityError || error instanceof error_handler_1.InvalidWorkflowError) {
+                throw error;
+            }
+            throw new error_handler_1.StorageError(`Failed to load workflows from Git repository: ${error.message}`);
+        }
+    }
+    async getWorkflowById(id) {
+        const sanitizedId = (0, storage_security_1.sanitizeId)(id);
+        const workflows = await this.loadAllWorkflows();
+        return workflows.find(w => w.id === sanitizedId) || null;
+    }
+    async listWorkflowSummaries() {
+        const workflows = await this.loadAllWorkflows();
+        return workflows.map(workflow => ({
+            id: workflow.id,
+            name: workflow.name,
+            description: workflow.description,
+            category: 'community',
+            version: workflow.version
+        }));
+    }
+    async save(workflow) {
+        try {
+            // Validate workflow ID
+            const sanitizedId = (0, storage_security_1.sanitizeId)(workflow.id);
+            if (workflow.id !== sanitizedId) {
+                throw new error_handler_1.InvalidWorkflowError(workflow.id, `Invalid workflow ID: ${workflow.id}`);
+            }
+            await this.ensureRepository();
+            const workflowsPath = path_1.default.join(this.localPath, 'workflows');
+            await promises_1.default.mkdir(workflowsPath, { recursive: true });
+            const filename = `${sanitizedId}.json`;
+            const filePath = path_1.default.join(workflowsPath, filename);
+            // Security: Ensure we're writing within expected directory
+            (0, storage_security_1.assertWithinBase)(filePath, workflowsPath);
+            const content = JSON.stringify(workflow, null, 2);
+            // Validate content size
+            (0, storage_security_1.validateFileSize)(Buffer.byteLength(content, 'utf-8'), this.config.maxFileSize, workflow.id);
+            await promises_1.default.writeFile(filePath, content);
+            // Git commit and push
+            await this.gitCommitAndPush(workflow);
+        }
+        catch (error) {
+            if (error instanceof error_handler_1.SecurityError || error instanceof error_handler_1.InvalidWorkflowError) {
+                throw error;
+            }
+            throw new error_handler_1.StorageError(`Failed to save workflow to Git repository: ${error.message}`);
+        }
+    }
+    async ensureRepository() {
+        if (this.isCloning) {
+            // Wait for clone to complete
+            let attempts = 0;
+            const maxAttempts = 60; // 1 minute max wait
+            while (this.isCloning && attempts < maxAttempts) {
+                await new Promise(resolve => setTimeout(resolve, 1000));
+                attempts++;
+            }
+            if (this.isCloning) {
+                throw new error_handler_1.StorageError('Repository clone operation timed out');
+            }
+            return;
+        }
+        const shouldSync = !(0, fs_1.existsSync)(this.localPath) ||
+            (Date.now() - this.lastSync) > (this.config.syncInterval * 60 * 1000);
+        if (!shouldSync) {
+            return;
+        }
+        this.isCloning = true;
+        try {
+            if (!(0, fs_1.existsSync)(this.localPath)) {
+                await this.cloneRepository();
+            }
+            else {
+                await this.pullRepository();
+            }
+            this.lastSync = Date.now();
+        }
+        catch (error) {
+            throw new error_handler_1.StorageError(`Failed to ensure Git repository: ${error.message}`);
+        }
+        finally {
+            this.isCloning = false;
+        }
+    }
+    async cloneRepository() {
+        const parentDir = path_1.default.dirname(this.localPath);
+        await promises_1.default.mkdir(parentDir, { recursive: true });
+        // Security: Escape shell arguments to prevent injection
+        const escapedUrl = this.config.authToken
+            ? this.config.repositoryUrl.replace('https://', `https://${this.escapeShellArg(this.config.authToken)}@`)
+            : this.config.repositoryUrl;
+        const escapedBranch = this.escapeShellArg(this.config.branch);
+        const escapedPath = this.escapeShellArg(this.localPath);
+        const command = `git clone --branch ${escapedBranch} --depth 1 ${this.escapeShellArg(escapedUrl)} ${escapedPath}`;
+        try {
+            await execAsync(command, { timeout: 60000 }); // 1 minute timeout
+        }
+        catch (error) {
+            throw new error_handler_1.StorageError(`Failed to clone workflow repository: ${error.message}`);
+        }
+    }
+    async pullRepository() {
+        const escapedPath = this.escapeShellArg(this.localPath);
+        const escapedBranch = this.escapeShellArg(this.config.branch);
+        const command = `cd ${escapedPath} && git pull origin ${escapedBranch}`;
+        try {
+            await execAsync(command, { timeout: 30000 }); // 30 second timeout
+        }
+        catch (error) {
+            // Don't throw on pull failure - use cached version
+            // This is intentional behavior for offline scenarios
+        }
+    }
+    async gitCommitAndPush(workflow) {
+        const escapedPath = this.escapeShellArg(this.localPath);
+        const escapedFilename = this.escapeShellArg(`workflows/${workflow.id}.json`);
+        const escapedMessage = this.escapeShellArg(`Add/update workflow: ${workflow.name}`);
+        const escapedBranch = this.escapeShellArg(this.config.branch);
+        const commands = [
+            `cd ${escapedPath}`,
+            `git add ${escapedFilename}`,
+            `git commit -m ${escapedMessage}`,
+            `git push origin ${escapedBranch}`
+        ];
+        const command = commands.join(' && ');
+        try {
+            await execAsync(command, { timeout: 60000 }); // 1 minute timeout
+        }
+        catch (error) {
+            throw new error_handler_1.StorageError(`Failed to push workflow to repository: ${error.message}`);
+        }
+    }
+    escapeShellArg(arg) {
+        // Escape shell arguments to prevent injection attacks
+        return `'${arg.replace(/'/g, "'\"'\"'")}'`;
+    }
+}
+exports.GitWorkflowStorage = GitWorkflowStorage;
+/**
+ * Example usage and configuration
+ */
+exports.COMMUNITY_WORKFLOW_REPOS = {
+    // Official community repository
+    official: {
+        repositoryUrl: 'https://github.com/your-org/workrail-community-workflows.git',
+        branch: 'main',
+        syncInterval: 60, // 1 hour
+        maxFileSize: 1024 * 1024, // 1MB
+        maxFiles: 100
+    },
+    // User's personal workflow repository
+    personal: {
+        repositoryUrl: 'https://github.com/username/my-workflows.git',
+        branch: 'main',
+        syncInterval: 30, // 30 minutes
+        authToken: process.env['GITHUB_TOKEN'],
+        maxFileSize: 1024 * 1024, // 1MB
+        maxFiles: 50
+    }
+};
+//# sourceMappingURL=git-workflow-storage.js.map

package/dist/infrastructure/storage/git-workflow-storage.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"git-workflow-storage.js","sourceRoot":"","sources":["../../../src/infrastructure/storage/git-workflow-storage.ts"],"names":[],"mappings":";;;;AAEA,iDAAqC;AACrC,+BAAiC;AACjC,wDAAwB;AACxB,mEAA6B;AAC7B,2BAAgC;AAChC,mEAKsC;AACtC,4DAA6F;AAE7F,MAAM,SAAS,GAAG,IAAA,gBAAS,EAAC,oBAAI,CAAC,CAAC;AAiBlC;;;;;;;;;GASG;AACH,MAAa,kBAAkB;IACZ,MAAM,CAA6B;IACnC,SAAS,CAAS;IAC3B,QAAQ,GAAW,CAAC,CAAC;IACrB,SAAS,GAAY,KAAK,CAAC;IAEnC,YAAY,MAAyB;QACnC,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,0BAA0B,CAAC,MAAM,CAAC,CAAC;QACtD,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC;IACzC,CAAC;IAEO,0BAA0B,CAAC,MAAyB;QAC1D,IAAI,CAAC,MAAM,CAAC,aAAa,EAAE,IAAI,EAAE,EAAE,CAAC;YAClC,MAAM,IAAI,4BAAY,CAAC,qDAAqD,CAAC,CAAC;QAChF,CAAC;QAED,8CAA8C;QAC9C,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE,CAAC;YAC9C,MAAM,IAAI,6BAAa,CAAC,8CAA8C,CAAC,CAAC;QAC1E,CAAC;QAED,MAAM,eAAe,GAAG,IAAA,0CAAuB,EAAC;YAC9C,gBAAgB,EAAE,MAAM,CAAC,WAAW,IAAI,IAAI,GAAG,IAAI,CAAC,cAAc;SACnE,CAAC,CAAC;QAEH,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS;YAChC,cAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,iBAAiB,EAAE,qBAAqB,CAAC,CAAC;QAErE,8CAA8C;QAC9C,IAAI,CAAC;YACH,IAAA,mCAAgB,EAAC,SAAS,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;QAC7C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,6BAAa,CAAC,uCAAwC,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;QAC7F,CAAC;QAED,OAAO;YACL,aAAa,EAAE,MAAM,CAAC,aAAa,CAAC,IAAI,EAAE;YAC1C,MAAM,EAAE,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC;YACpD,SAAS;YACT,YAAY,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,YAAY,IAAI,EAAE,CAAC,EAAE,mBAAmB;YACzE,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,EAAE;YACjC,WAAW,EAAE,eAAe,CAAC,gBAAgB;YAC7C,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,GAAG,CAAC,oBAAoB;SACtD,CAAC;IACJ,CAAC;IAEO,aAAa,CAAC,GAAW;QAC/B,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;YAE5B,oCAAoC;YACpC,MAAM,YAAY,GAAG;gBACnB,YAAY,EAAE,YAAY,EAAE,eAAe;gBAC3C,eAAe,EAAE,iBAAiB;aACnC,CAAC;YAEF,OAAO,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAC9B,MAAM,CAAC,QAAQ,KAAK,IAAI,IAAI,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,EAAE,CAAC,CACjE,IAAI,CAAC,MAAM,CAAC,QAAQ,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC;QACpE,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAEO,cAAc,CAAC,GAAW;QAChC,yDAAyD;QACzD,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACpC,MAAM,IAAI,6BAAa,CAAC,0CAA0C,CAAC,CAAC;QACtE,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;IAED,KAAK,CAAC,gBAAgB;QACpB,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAE9B,MAAM,aAAa,GAAG,cAAI,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;YAC7D,IAAI,CAAC,IAAA,eAAU,EAAC,aAAa,CAAC,EAAE,CAAC;gBAC/B,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,KAAK,GAAG,MAAM,kBAAE,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;YAC9C,MAAM,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC;YAEzD,IAAI,SAAS,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC;gBAC5C,MAAM,IAAI,4BAAY,CACpB,4BAA4B,SAAS,CAAC,MAAM,uBAAuB,IAAI,CAAC,MAAM,CAAC,QAAQ,EAAE,CAC1F,CAAC;YACJ,CAAC;YAED,MAAM,SAAS,GAAe,EAAE,CAAC;YAEjC,KAAK,MAAM,IAAI,IAAI,SAAS,EAAE,CAAC;gBAC7B,IAAI,CAAC;oBACH,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;oBAEhD,qDAAqD;oBACrD,IAAA,mCAAgB,EAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;oBAE/B,qBAAqB;oBAC/B,MAAM,KAAK,GAAG,MAAM,kBAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;oBACtC,IAAA,mCAAgB,EAAC,KAAK,CAAC,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;oBAE5D,MAAM,OAAO,GAAG,MAAM,kBAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;oBACrD,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAa,CAAC;oBAEjD,mDAAmD;oBACnD,MAAM,gBAAgB,GAAG,GAAG,IAAA,6BAAU,EAAC,QAAQ,CAAC,EAAE,CAAC,OAAO,CAAC;oBAC3D,IAAI,IAAI,KAAK,gBAAgB,EAAE,CAAC;wBAC9B,MAAM,IAAI,oCAAoB,CAC5B,QAAQ,CAAC,EAAE,EACX,gBAAgB,QAAQ,CAAC,EAAE,6BAA6B,IAAI,GAAG,CAChE,CAAC;oBACJ,CAAC;oBAED,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBAC3B,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,IAAI,KAAK,YAAY,6BAAa,IAAI,KAAK,YAAY,oCAAoB,EAAE,CAAC;wBAC5E,MAAM,KAAK,CAAC;oBACd,CAAC;oBACD,MAAM,IAAI,4BAAY,CAAC,gCAAgC,IAAI,KAAM,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;gBAC9F,CAAC;YACH,CAAC;YAED,OAAO,SAAS,CAAC;QACnB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,4BAAY,IAAI,KAAK,YAAY,6BAAa,IAAI,KAAK,YAAY,oCAAoB,EAAE,CAAC;gBAC7G,MAAM,KAAK,CAAC;YACd,CAAC;YACD,MAAM,IAAI,4BAAY,CAAC,iDAAkD,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;QACvG,CAAC;IACH,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,EAAU;QAC9B,MAAM,WAAW,GAAG,IAAA,6BAAU,EAAC,EAAE,CAAC,CAAC;QACnC,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAChD,OAAO,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,WAAW,CAAC,IAAI,IAAI,CAAC;IAC3D,CAAC;IAED,KAAK,CAAC,qBAAqB;QACzB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAChD,OAAO,SAAS,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;YAChC,EAAE,EAAE,QAAQ,CAAC,EAAE;YACf,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,WAAW,EAAE,QAAQ,CAAC,WAAW;YACjC,QAAQ,EAAE,WAAW;YACrB,OAAO,EAAE,QAAQ,CAAC,OAAO;SAC1B,CAAC,CAAC,CAAC;IACN,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,QAAkB;QAC3B,IAAI,CAAC;YACH,uBAAuB;YACvB,MAAM,WAAW,GAAG,IAAA,6BAAU,EAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;YAC5C,IAAI,QAAQ,CAAC,EAAE,KAAK,WAAW,EAAE,CAAC;gBAChC,MAAM,IAAI,oCAAoB,CAAC,QAAQ,CAAC,EAAE,EAAE,wBAAwB,QAAQ,CAAC,EAAE,EAAE,CAAC,CAAC;YACrF,CAAC;YAED,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAE9B,MAAM,aAAa,GAAG,cAAI,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC;YAC7D,MAAM,kBAAE,CAAC,KAAK,CAAC,aAAa,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YAEnD,MAAM,QAAQ,GAAG,GAAG,WAAW,OAAO,CAAC;YACvC,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;YAEpD,2DAA2D;YAC3D,IAAA,mCAAgB,EAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;YAE1C,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YAE3C,wBAAwB;YAC9B,IAAA,mCAAgB,EAAC,MAAM,CAAC,UAAU,CAAC,OAAO,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,QAAQ,CAAC,EAAE,CAAC,CAAC;YAE5F,MAAM,kBAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAEtC,sBAAsB;YACtB,MAAM,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;QACxC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,6BAAa,IAAI,KAAK,YAAY,oCAAoB,EAAE,CAAC;gBAC5E,MAAM,KAAK,CAAC;YACd,CAAC;YACD,MAAM,IAAI,4BAAY,CAAC,8CAA+C,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;QACpG,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,gBAAgB;QAC5B,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,6BAA6B;YAC7B,IAAI,QAAQ,GAAG,CAAC,CAAC;YACjB,MAAM,WAAW,GAAG,EAAE,CAAC,CAAC,oBAAoB;YAE5C,OAAO,IAAI,CAAC,SAAS,IAAI,QAAQ,GAAG,WAAW,EAAE,CAAC;gBAChD,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC;gBACxD,QAAQ,EAAE,CAAC;YACb,CAAC;YAED,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;gBACnB,MAAM,IAAI,4BAAY,CAAC,sCAAsC,CAAC,CAAC;YACjE,CAAC;YACD,OAAO;QACT,CAAC;QAED,MAAM,UAAU,GAAG,CAAC,IAAA,eAAU,EAAC,IAAI,CAAC,SAAS,CAAC;YAC5C,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAExE,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO;QACT,CAAC;QAED,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QAEtB,IAAI,CAAC;YACH,IAAI,CAAC,IAAA,eAAU,EAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;gBAChC,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC/B,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,CAAC,cAAc,EAAE,CAAC;YAC9B,CAAC;YAED,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,4BAAY,CAAC,oCAAqC,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;QACzF,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,SAAS,GAAG,KAAK,CAAC;QACzB,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,eAAe;QAC3B,MAAM,SAAS,GAAG,cAAI,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC/C,MAAM,kBAAE,CAAC,KAAK,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAE/C,wDAAwD;QACxD,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS;YACtC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,OAAO,CAAC,UAAU,EAAE,WAAW,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC;YACzG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;QAE9B,MAAM,aAAa,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC9D,MAAM,WAAW,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAExD,MAAM,OAAO,GAAG,sBAAsB,aAAa,cAAc,IAAI,CAAC,cAAc,CAAC,UAAU,CAAC,IAAI,WAAW,EAAE,CAAC;QAElH,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,mBAAmB;QACnE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,4BAAY,CAAC,wCAAyC,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;QAC7F,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,cAAc;QAC1B,MAAM,WAAW,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACxD,MAAM,aAAa,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAE9D,MAAM,OAAO,GAAG,MAAM,WAAW,uBAAuB,aAAa,EAAE,CAAC;QAExE,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,oBAAoB;QACpE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,mDAAmD;YACnD,qDAAqD;QACvD,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,gBAAgB,CAAC,QAAkB;QAC/C,MAAM,WAAW,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACxD,MAAM,eAAe,GAAG,IAAI,CAAC,cAAc,CAAC,aAAa,QAAQ,CAAC,EAAE,OAAO,CAAC,CAAC;QAC7E,MAAM,cAAc,GAAG,IAAI,CAAC,cAAc,CAAC,wBAAwB,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;QACpF,MAAM,aAAa,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAE9D,MAAM,QAAQ,GAAG;YACf,MAAM,WAAW,EAAE;YACnB,WAAW,eAAe,EAAE;YAC5B,iBAAiB,cAAc,EAAE;YACjC,mBAAmB,aAAa,EAAE;SACnC,CAAC;QAEF,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAEtC,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,mBAAmB;QACnE,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,4BAAY,CAAC,0CAA2C,KAAe,CAAC,OAAO,EAAE,CAAC,CAAC;QAC/F,CAAC;IACH,CAAC;IAEO,cAAc,CAAC,GAAW;QAChC,sDAAsD;QACtD,OAAO,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,SAAS,CAAC,GAAG,CAAC;IAC7C,CAAC;CACF;AAhSD,gDAgSC;AAED;;GAEG;AACU,QAAA,wBAAwB,GAAG;IACtC,gCAAgC;IAChC,QAAQ,EAAE;QACR,aAAa,EAAE,8DAA8D;QAC7E,MAAM,EAAE,MAAM;QACd,YAAY,EAAE,EAAE,EAAE,SAAS;QAC3B,WAAW,EAAE,IAAI,GAAG,IAAI,EAAE,MAAM;QAChC,QAAQ,EAAE,GAAG;KACd;IAED,sCAAsC;IACtC,QAAQ,EAAE;QACR,aAAa,EAAE,8CAA8C;QAC7D,MAAM,EAAE,MAAM;QACd,YAAY,EAAE,EAAE,EAAE,aAAa;QAC/B,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;QACtC,WAAW,EAAE,IAAI,GAAG,IAAI,EAAE,MAAM;QAChC,QAAQ,EAAE,EAAE;KACb;CACF,CAAC"}

package/dist/infrastructure/storage/plugin-workflow-storage.d.ts ADDED Viewed

@@ -0,0 +1,102 @@
+import { IWorkflowStorage } from '../../types/storage';
+import { Workflow, WorkflowSummary } from '../../types/mcp-types';
+export interface WorkflowPlugin {
+    name: string;
+    version: string;
+    workflows: Workflow[];
+    metadata?: {
+        author?: string;
+        description?: string;
+        homepage?: string;
+        repository?: string;
+    };
+}
+export interface PluginWorkflowConfig {
+    pluginPaths?: string[];
+    scanInterval?: number;
+    maxFileSize?: number;
+    maxFiles?: number;
+    maxPlugins?: number;
+}
+export interface ValidatedPluginWorkflowConfig extends Required<PluginWorkflowConfig> {
+    pluginPaths: string[];
+    scanInterval: number;
+    maxFileSize: number;
+    maxFiles: number;
+    maxPlugins: number;
+}
+/**
+ * Plugin-based workflow storage that loads workflows from npm packages
+ * Workflows are distributed as npm packages with a specific structure
+ *
+ * Security features:
+ * - Path traversal prevention
+ * - File size limits
+ * - Plugin count limits
+ * - Safe package.json parsing
+ *
+ * Example package structure:
+ * ```
+ * my-workflow-pack/
+ *   ├── package.json
+ *   ├── index.js
+ *   └── workflows/
+ *       ├── my-workflow-1.json
+ *       └── my-workflow-2.json
+ * ```
+ */
+export declare class PluginWorkflowStorage implements IWorkflowStorage {
+    private readonly config;
+    private pluginCache;
+    private lastScan;
+    constructor(config?: PluginWorkflowConfig);
+    private validateAndNormalizeConfig;
+    private getDefaultPluginPaths;
+    loadAllWorkflows(): Promise<Workflow[]>;
+    getWorkflowById(id: string): Promise<Workflow | null>;
+    listWorkflowSummaries(): Promise<WorkflowSummary[]>;
+    save(): Promise<void>;
+    private scanPlugins;
+    private isWorkflowPlugin;
+    private loadPlugin;
+    private loadWorkflowsFromDirectory;
+    getLoadedPlugins(): WorkflowPlugin[];
+    getConfig(): ValidatedPluginWorkflowConfig;
+}
+/**
+ * Example package.json for a workflow plugin:
+ *
+ * ```json
+ * {
+ *   "name": "workrail-workflows-ai-coding",
+ *   "version": "1.0.0",
+ *   "description": "AI-powered coding workflows for Workrail",
+ *   "main": "index.js",
+ *   "workrail": {
+ *     "workflows": true,
+ *     "category": "coding"
+ *   },
+ *   "keywords": ["workrail", "workflow", "ai", "coding"],
+ *   "author": "Your Name",
+ *   "license": "MIT"
+ * }
+ * ```
+ */
+/**
+ * Example configuration for different environments
+ */
+export declare const PLUGIN_WORKFLOW_CONFIGS: {
+    development: {
+        scanInterval: number;
+        maxFileSize: number;
+        maxFiles: number;
+        maxPlugins: number;
+    };
+    production: {
+        scanInterval: number;
+        maxFileSize: number;
+        maxFiles: number;
+        maxPlugins: number;
+    };
+};
+//# sourceMappingURL=plugin-workflow-storage.d.ts.map

package/dist/infrastructure/storage/plugin-workflow-storage.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"plugin-workflow-storage.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/storage/plugin-workflow-storage.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAYlE,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,QAAQ,CAAC,EAAE;QACT,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED,MAAM,WAAW,oBAAoB;IACnC,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,6BAA8B,SAAQ,QAAQ,CAAC,oBAAoB,CAAC;IACnF,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED;;;;;;;;;;;;;;;;;;;GAmBG;AACH,qBAAa,qBAAsB,YAAW,gBAAgB;IAC5D,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgC;IACvD,OAAO,CAAC,WAAW,CAA0C;IAC7D,OAAO,CAAC,QAAQ,CAAa;gBAEjB,MAAM,GAAE,oBAAyB;IAI7C,OAAO,CAAC,0BAA0B;IA8BlC,OAAO,CAAC,qBAAqB;IAiCvB,gBAAgB,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;IAmBvC,eAAe,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC;IAMrD,qBAAqB,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC;IAWnD,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;YAIb,WAAW;IAqDzB,OAAO,CAAC,gBAAgB;YAIV,UAAU;YAkEV,0BAA0B;IAyDjC,gBAAgB,IAAI,cAAc,EAAE;IAIpC,SAAS,IAAI,6BAA6B;CAGlD;AAED;;;;;;;;;;;;;;;;;;GAkBG;AAEH;;GAEG;AACH,eAAO,MAAM,uBAAuB;;;;;;;;;;;;;CAgBnC,CAAC"}