@frontmcp/sdk 0.4.0 → 0.5.0

package/src/transport/legacy/legacy.sse.tranporter.js.map

@@ -1 +1 @@
-{"version":3,"file":"legacy.sse.tranporter.js","sourceRoot":"","sources":["../../../../src/transport/legacy/legacy.sse.tranporter.ts"],"names":[],"mappings":";;;;AAAA,6CAAyC;AAEzC,gEAAkC;AAClC,wEAAuC;AACvC,6BAA0B;AAE1B,iEAA4G;AAG5G,MAAM,oBAAoB,GAAG,KAAK,CAAC;AA2BnC;;;;GAIG;AACH,MAAa,kBAAkB;IAWT;IAA2B;IAVvC,YAAY,CAAkB;IAC9B,UAAU,CAAS;IACnB,QAAQ,CAA4B;IAC5C,OAAO,CAAc;IACrB,OAAO,CAA0B;IACjC,SAAS,CAA+D;IAExE;;OAEG;IACH,YAAoB,SAAiB,EAAU,GAAmB,EAAE,OAAmC;QAAnF,cAAS,GAAT,SAAS,CAAQ;QAAU,QAAG,GAAH,GAAG,CAAgB;QAChE,IAAI,CAAC,UAAU,GAAG,OAAO,EAAE,SAAS,IAAI,IAAA,wBAAU,GAAE,CAAC;QACrD,IAAI,CAAC,QAAQ,GAAG,OAAO,IAAI,EAAE,4BAA4B,EAAE,KAAK,EAAE,CAAC;IACrE,CAAC;IAED;;;OAGG;IACK,sBAAsB,CAAC,GAAoB;QACjD,+CAA+C;QAC/C,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,4BAA4B,EAAE,CAAC;YAChD,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,qDAAqD;QACrD,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxE,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC;YACpC,IAAI,CAAC,UAAU,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;gBACpE,OAAO,wBAAwB,UAAU,EAAE,CAAC;YAC9C,CAAC;QACH,CAAC;QAED,yDAAyD;QACzD,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5E,MAAM,YAAY,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC;YACxC,IAAI,CAAC,YAAY,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;gBAC1E,OAAO,0BAA0B,YAAY,EAAE,CAAC;YAClD,CAAC;QACH,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,KAAK;QACT,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CACb,6GAA6G,CAC9G,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE;YACtB,cAAc,EAAE,mBAAmB;YACnC,eAAe,EAAE,wBAAwB;YACzC,UAAU,EAAE,YAAY;SACzB,CAAC,CAAC;QAEH,0BAA0B;QAC1B,2DAA2D;QAC3D,uEAAuE;QACvE,MAAM,SAAS,GAAG,kBAAkB,CAAC,CAAC,uBAAuB;QAC7D,MAAM,WAAW,GAAG,IAAI,SAAG,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;QACvD,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;QAE3D,iEAAiE;QACjE,MAAM,sBAAsB,GAAG,WAAW,CAAC,QAAQ,GAAG,WAAW,CAAC,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC;QAE5F,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,0BAA0B,sBAAsB,MAAM,CAAC,CAAC;QAEvE,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC;QAC7B,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACxB,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;YAC9B,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;QACnB,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,iBAAiB,CACrB,GAA0C,EAC1C,GAAmB,EACnB,UAAoB;QAEpB,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,MAAM,OAAO,GAAG,gCAAgC,CAAC;YACjD,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAChC,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,CAAC;QAC3B,CAAC;QAED,wDAAwD;QACxD,MAAM,eAAe,GAAG,IAAI,CAAC,sBAAsB,CAAC,GAAG,CAAC,CAAC;QACzD,IAAI,eAAe,EAAE,CAAC;YACpB,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;YACxC,IAAI,CAAC,OAAO,EAAE,CAAC,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;YAC3C,OAAO;QACT,CAAC;QAED,MAAM,QAAQ,GAAyB,GAAG,CAAC,IAAI,CAAC;QAChD,MAAM,WAAW,GAAgB,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAS,CAAC;QAEjE,IAAI,IAAsB,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,sBAAW,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC,CAAC;YAChE,IAAI,EAAE,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CAAC,6BAA6B,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC;YAC1D,CAAC;YAED,IAAI;gBACF,UAAU;oBACV,CAAC,MAAM,IAAA,kBAAU,EAAC,GAAG,EAAE;wBACrB,KAAK,EAAE,oBAAoB;wBAC3B,QAAQ,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,IAAI,OAAO;qBAC3C,CAAC,CAAC,CAAC;QACR,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YACtC,IAAI,CAAC,OAAO,EAAE,CAAC,KAAc,CAAC,CAAC;YAC/B,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,EAAE,WAAW,EAAE,QAAQ,EAAS,CAAC,CAAC;QACjH,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,oBAAoB,IAAI,EAAE,CAAC,CAAC;YACnD,OAAO;QACT,CAAC;QAED,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,OAAgB,EAAE,KAAwB;QAC5D,IAAI,aAA6B,CAAC;QAClC,IAAI,CAAC;YACH,aAAa,GAAG,+BAAoB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACtD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,EAAE,CAAC,KAAc,CAAC,CAAC;YAC/B,MAAM,KAAK,CAAC;QACd,CAAC;QAED,IAAI,CAAC,SAAS,EAAE,CAAC,aAAa,EAAE,KAAK,CAAC,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,KAAK;QACT,IAAI,CAAC,YAAY,EAAE,GAAG,EAAE,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;QAC9B,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;IACnB,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAAuB;QAChC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;QACnC,CAAC;QAED,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,yBAAyB,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAClF,CAAC;IAED;;;;OAIG;IACH,IAAI,SAAS;QACX,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;CACF;AA/KD,gDA+KC","sourcesContent":["import { randomUUID } from 'node:crypto';\nimport { IncomingMessage, ServerResponse } from 'node:http';\nimport getRawBody from 'raw-body';\nimport contentType from 'content-type';\nimport { URL } from 'url';\nimport { Transport } from '@modelcontextprotocol/sdk/shared/transport.js';\nimport { JSONRPCMessage, JSONRPCMessageSchema, MessageExtraInfo } from '@modelcontextprotocol/sdk/types.js';\nimport { AuthInfo } from '@modelcontextprotocol/sdk/server/auth/types.js';\n\nconst MAXIMUM_MESSAGE_SIZE = '4mb';\n\n/**\n * Configuration options for SSEServerTransport.\n */\nexport interface SSEServerTransportOptions {\n  /**\n   * List of allowed host header values for DNS rebinding protection.\n   * If not specified, host validation is disabled.\n   */\n  allowedHosts?: string[];\n\n  /**\n   * List of allowed origin header values for DNS rebinding protection.\n   * If not specified, origin validation is disabled.\n   */\n  allowedOrigins?: string[];\n\n  /**\n   * Enable DNS rebinding protection (requires allowedHosts and/or allowedOrigins to be configured).\n   * Default is false for backwards compatibility.\n   */\n  enableDnsRebindingProtection?: boolean;\n\n  sessionId?: string;\n}\n\n/**\n * Server transport for SSE: this will send messages over an SSE connection and receive messages from HTTP POST requests.\n *\n * This transport is only available in Node.js environments.\n */\nexport class SSEServerTransport implements Transport {\n  private _sseResponse?: ServerResponse;\n  private _sessionId: string;\n  private _options: SSEServerTransportOptions;\n  onclose?: () => void;\n  onerror?: (error: Error) => void;\n  onmessage?: (message: JSONRPCMessage, extra?: MessageExtraInfo) => void;\n\n  /**\n   * Creates a new SSE server transport, which will direct the client to POST messages to the relative or absolute URL identified by `_endpoint`.\n   */\n  constructor(private _endpoint: string, private res: ServerResponse, options?: SSEServerTransportOptions) {\n    this._sessionId = options?.sessionId ?? randomUUID();\n    this._options = options || { enableDnsRebindingProtection: false };\n  }\n\n  /**\n   * Validates request headers for DNS rebinding protection.\n   * @returns Error message if validation fails, undefined if validation passes.\n   */\n  private validateRequestHeaders(req: IncomingMessage): string | undefined {\n    // Skip validation if protection is not enabled\n    if (!this._options.enableDnsRebindingProtection) {\n      return undefined;\n    }\n\n    // Validate Host header if allowedHosts is configured\n    if (this._options.allowedHosts && this._options.allowedHosts.length > 0) {\n      const hostHeader = req.headers.host;\n      if (!hostHeader || !this._options.allowedHosts.includes(hostHeader)) {\n        return `Invalid Host header: ${hostHeader}`;\n      }\n    }\n\n    // Validate Origin header if allowedOrigins is configured\n    if (this._options.allowedOrigins && this._options.allowedOrigins.length > 0) {\n      const originHeader = req.headers.origin;\n      if (!originHeader || !this._options.allowedOrigins.includes(originHeader)) {\n        return `Invalid Origin header: ${originHeader}`;\n      }\n    }\n\n    return undefined;\n  }\n\n  /**\n   * Handles the initial SSE connection request.\n   *\n   * This should be called when a GET request is made to establish the SSE stream.\n   */\n  async start(): Promise<void> {\n    if (this._sseResponse) {\n      throw new Error(\n        'SSEServerTransport already started! If using Server class, note that connect() calls start() automatically.',\n      );\n    }\n\n    this.res.writeHead(200, {\n      'Content-Type': 'text/event-stream',\n      'Cache-Control': 'no-cache, no-transform',\n      Connection: 'keep-alive',\n    });\n\n    // Send the endpoint event\n    // Use a dummy base URL because this._endpoint is relative.\n    // This allows using URL/URLSearchParams for robust parameter handling.\n    const dummyBase = 'http://localhost'; // Any valid base works\n    const endpointUrl = new URL(this._endpoint, dummyBase);\n    endpointUrl.searchParams.set('sessionId', this._sessionId);\n\n    // Reconstruct the relative URL string (pathname + search + hash)\n    const relativeUrlWithSession = endpointUrl.pathname + endpointUrl.search + endpointUrl.hash;\n\n    this.res.write(`event: endpoint\\ndata: ${relativeUrlWithSession}\\n\\n`);\n\n    this._sseResponse = this.res;\n    this.res.on('close', () => {\n      this._sseResponse = undefined;\n      this.onclose?.();\n    });\n  }\n\n  /**\n   * Handles incoming POST messages.\n   *\n   * This should be called when a POST request is made to send a message to the server.\n   */\n  async handlePostMessage(\n    req: IncomingMessage & { auth?: AuthInfo },\n    res: ServerResponse,\n    parsedBody?: unknown,\n  ): Promise<void> {\n    if (!this._sseResponse) {\n      const message = 'SSE connection not established';\n      res.writeHead(500).end(message);\n      throw new Error(message);\n    }\n\n    // Validate request headers for DNS rebinding protection\n    const validationError = this.validateRequestHeaders(req);\n    if (validationError) {\n      res.writeHead(403).end(validationError);\n      this.onerror?.(new Error(validationError));\n      return;\n    }\n\n    const authInfo: AuthInfo | undefined = req.auth;\n    const requestInfo: RequestInfo = { headers: req.headers } as any;\n\n    let body: string | unknown;\n    try {\n      const ct = contentType.parse(req.headers['content-type'] ?? '');\n      if (ct.type !== 'application/json') {\n        throw new Error(`Unsupported content-type: ${ct.type}`);\n      }\n\n      body =\n        parsedBody ??\n        (await getRawBody(req, {\n          limit: MAXIMUM_MESSAGE_SIZE,\n          encoding: ct.parameters.charset ?? 'utf-8',\n        }));\n    } catch (error) {\n      res.writeHead(400).end(String(error));\n      this.onerror?.(error as Error);\n      return;\n    }\n\n    try {\n      await this.handleMessage(typeof body === 'string' ? JSON.parse(body) : body, { requestInfo, authInfo } as any);\n    } catch {\n      res.writeHead(400).end(`Invalid message: ${body}`);\n      return;\n    }\n\n    res.writeHead(202).end('Accepted');\n  }\n\n  /**\n   * Handle a client message, regardless of how it arrived. This can be used to inform the server of messages that arrive via a means different than HTTP POST.\n   */\n  async handleMessage(message: unknown, extra?: MessageExtraInfo): Promise<void> {\n    let parsedMessage: JSONRPCMessage;\n    try {\n      parsedMessage = JSONRPCMessageSchema.parse(message);\n    } catch (error) {\n      this.onerror?.(error as Error);\n      throw error;\n    }\n\n    this.onmessage?.(parsedMessage, extra);\n  }\n\n  async close(): Promise<void> {\n    this._sseResponse?.end();\n    this._sseResponse = undefined;\n    this.onclose?.();\n  }\n\n  async send(message: JSONRPCMessage): Promise<void> {\n    if (!this._sseResponse) {\n      throw new Error('Not connected');\n    }\n\n    this._sseResponse.write(`event: message\\ndata: ${JSON.stringify(message)}\\n\\n`);\n  }\n\n  /**\n   * Returns the session ID for this transport.\n   *\n   * This can be used to route incoming POST requests.\n   */\n  get sessionId(): string {\n    return this._sessionId;\n  }\n}\n"]}
+{"version":3,"file":"legacy.sse.tranporter.js","sourceRoot":"","sources":["../../../../src/transport/legacy/legacy.sse.tranporter.ts"],"names":[],"mappings":";;;;AAAA,6CAAyC;AAEzC,gEAAkC;AAClC,wEAAuC;AACvC,6BAA0B;AAE1B,iEAA4G;AAG5G,MAAM,oBAAoB,GAAG,KAAK,CAAC;AA2BnC;;;;GAIG;AACH,MAAa,kBAAkB;IAaT;IAA2B;IAZvC,YAAY,CAAkB;IAC9B,UAAU,CAAS;IACnB,QAAQ,CAA4B;IAC5C,oFAAoF;IAC5E,eAAe,GAAG,CAAC,CAAC;IAC5B,OAAO,CAAc;IACrB,OAAO,CAA0B;IACjC,SAAS,CAA+D;IAExE;;OAEG;IACH,YAAoB,SAAiB,EAAU,GAAmB,EAAE,OAAmC;QAAnF,cAAS,GAAT,SAAS,CAAQ;QAAU,QAAG,GAAH,GAAG,CAAgB;QAChE,IAAI,CAAC,UAAU,GAAG,OAAO,EAAE,SAAS,IAAI,IAAA,wBAAU,GAAE,CAAC;QACrD,IAAI,CAAC,QAAQ,GAAG,OAAO,IAAI,EAAE,4BAA4B,EAAE,KAAK,EAAE,CAAC;IACrE,CAAC;IAED;;;OAGG;IACK,sBAAsB,CAAC,GAAoB;QACjD,+CAA+C;QAC/C,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,4BAA4B,EAAE,CAAC;YAChD,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,qDAAqD;QACrD,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,IAAI,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxE,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC;YACpC,IAAI,CAAC,UAAU,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;gBACpE,OAAO,wBAAwB,UAAU,EAAE,CAAC;YAC9C,CAAC;QACH,CAAC;QAED,yDAAyD;QACzD,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5E,MAAM,YAAY,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC;YACxC,IAAI,CAAC,YAAY,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;gBAC1E,OAAO,0BAA0B,YAAY,EAAE,CAAC;YAClD,CAAC;QACH,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,KAAK;QACT,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CACb,6GAA6G,CAC9G,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE;YACtB,cAAc,EAAE,mBAAmB;YACnC,eAAe,EAAE,wBAAwB;YACzC,UAAU,EAAE,YAAY;SACzB,CAAC,CAAC;QAEH,0BAA0B;QAC1B,2DAA2D;QAC3D,uEAAuE;QACvE,MAAM,SAAS,GAAG,kBAAkB,CAAC,CAAC,uBAAuB;QAC7D,MAAM,WAAW,GAAG,IAAI,SAAG,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;QACvD,WAAW,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;QAE3D,iEAAiE;QACjE,MAAM,sBAAsB,GAAG,WAAW,CAAC,QAAQ,GAAG,WAAW,CAAC,MAAM,GAAG,WAAW,CAAC,IAAI,CAAC;QAE5F,2EAA2E;QAC3E,MAAM,OAAO,GAAG,EAAE,IAAI,CAAC,eAAe,CAAC;QACvC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,OAAO,4BAA4B,sBAAsB,MAAM,CAAC,CAAC;QAEvF,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC;QAC7B,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;YACxB,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;YAC9B,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;QACnB,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,iBAAiB,CACrB,GAA0C,EAC1C,GAAmB,EACnB,UAAoB;QAEpB,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,MAAM,OAAO,GAAG,gCAAgC,CAAC;YACjD,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAChC,MAAM,IAAI,KAAK,CAAC,OAAO,CAAC,CAAC;QAC3B,CAAC;QAED,wDAAwD;QACxD,MAAM,eAAe,GAAG,IAAI,CAAC,sBAAsB,CAAC,GAAG,CAAC,CAAC;QACzD,IAAI,eAAe,EAAE,CAAC;YACpB,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;YACxC,IAAI,CAAC,OAAO,EAAE,CAAC,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC;YAC3C,OAAO;QACT,CAAC;QAED,MAAM,QAAQ,GAAyB,GAAG,CAAC,IAAI,CAAC;QAChD,MAAM,WAAW,GAAgB,EAAE,OAAO,EAAE,GAAG,CAAC,OAAO,EAAS,CAAC;QAEjE,IAAI,IAAsB,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,sBAAW,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC,CAAC;YAChE,IAAI,EAAE,CAAC,IAAI,KAAK,kBAAkB,EAAE,CAAC;gBACnC,MAAM,IAAI,KAAK,CAAC,6BAA6B,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC;YAC1D,CAAC;YAED,IAAI;gBACF,UAAU;oBACV,CAAC,MAAM,IAAA,kBAAU,EAAC,GAAG,EAAE;wBACrB,KAAK,EAAE,oBAAoB;wBAC3B,QAAQ,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,IAAI,OAAO;qBAC3C,CAAC,CAAC,CAAC;QACR,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;YACtC,IAAI,CAAC,OAAO,EAAE,CAAC,KAAc,CAAC,CAAC;YAC/B,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,EAAE,WAAW,EAAE,QAAQ,EAAS,CAAC,CAAC;QACjH,CAAC;QAAC,MAAM,CAAC;YACP,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,oBAAoB,IAAI,EAAE,CAAC,CAAC;YACnD,OAAO;QACT,CAAC;QAED,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,OAAgB,EAAE,KAAwB;QAC5D,IAAI,aAA6B,CAAC;QAClC,IAAI,CAAC;YACH,aAAa,GAAG,+BAAoB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACtD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,OAAO,EAAE,CAAC,KAAc,CAAC,CAAC;YAC/B,MAAM,KAAK,CAAC;QACd,CAAC;QAED,IAAI,CAAC,SAAS,EAAE,CAAC,aAAa,EAAE,KAAK,CAAC,CAAC;IACzC,CAAC;IAED,KAAK,CAAC,KAAK;QACT,IAAI,CAAC,YAAY,EAAE,GAAG,EAAE,CAAC;QACzB,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;QAC9B,IAAI,CAAC,OAAO,EAAE,EAAE,CAAC;IACnB,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,OAAuB;QAChC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;QACnC,CAAC;QAED,2EAA2E;QAC3E,MAAM,OAAO,GAAG,EAAE,IAAI,CAAC,eAAe,CAAC;QACvC,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,OAAO,OAAO,2BAA2B,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAClG,CAAC;IAED;;;;OAIG;IACH,IAAI,SAAS;QACX,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED;;;;;OAKG;IACH,IAAI,WAAW;QACb,OAAO,IAAI,CAAC,eAAe,CAAC;IAC9B,CAAC;CACF;AA/LD,gDA+LC","sourcesContent":["import { randomUUID } from 'node:crypto';\nimport { IncomingMessage, ServerResponse } from 'node:http';\nimport getRawBody from 'raw-body';\nimport contentType from 'content-type';\nimport { URL } from 'url';\nimport { Transport } from '@modelcontextprotocol/sdk/shared/transport.js';\nimport { JSONRPCMessage, JSONRPCMessageSchema, MessageExtraInfo } from '@modelcontextprotocol/sdk/types.js';\nimport { AuthInfo } from '@modelcontextprotocol/sdk/server/auth/types.js';\n\nconst MAXIMUM_MESSAGE_SIZE = '4mb';\n\n/**\n * Configuration options for SSEServerTransport.\n */\nexport interface SSEServerTransportOptions {\n  /**\n   * List of allowed host header values for DNS rebinding protection.\n   * If not specified, host validation is disabled.\n   */\n  allowedHosts?: string[];\n\n  /**\n   * List of allowed origin header values for DNS rebinding protection.\n   * If not specified, origin validation is disabled.\n   */\n  allowedOrigins?: string[];\n\n  /**\n   * Enable DNS rebinding protection (requires allowedHosts and/or allowedOrigins to be configured).\n   * Default is false for backwards compatibility.\n   */\n  enableDnsRebindingProtection?: boolean;\n\n  sessionId?: string;\n}\n\n/**\n * Server transport for SSE: this will send messages over an SSE connection and receive messages from HTTP POST requests.\n *\n * This transport is only available in Node.js environments.\n */\nexport class SSEServerTransport implements Transport {\n  private _sseResponse?: ServerResponse;\n  private _sessionId: string;\n  private _options: SSEServerTransportOptions;\n  /** Incrementing event ID counter for SSE events (MCP 2025-11-25 spec compliance) */\n  private _eventIdCounter = 0;\n  onclose?: () => void;\n  onerror?: (error: Error) => void;\n  onmessage?: (message: JSONRPCMessage, extra?: MessageExtraInfo) => void;\n\n  /**\n   * Creates a new SSE server transport, which will direct the client to POST messages to the relative or absolute URL identified by `_endpoint`.\n   */\n  constructor(private _endpoint: string, private res: ServerResponse, options?: SSEServerTransportOptions) {\n    this._sessionId = options?.sessionId ?? randomUUID();\n    this._options = options || { enableDnsRebindingProtection: false };\n  }\n\n  /**\n   * Validates request headers for DNS rebinding protection.\n   * @returns Error message if validation fails, undefined if validation passes.\n   */\n  private validateRequestHeaders(req: IncomingMessage): string | undefined {\n    // Skip validation if protection is not enabled\n    if (!this._options.enableDnsRebindingProtection) {\n      return undefined;\n    }\n\n    // Validate Host header if allowedHosts is configured\n    if (this._options.allowedHosts && this._options.allowedHosts.length > 0) {\n      const hostHeader = req.headers.host;\n      if (!hostHeader || !this._options.allowedHosts.includes(hostHeader)) {\n        return `Invalid Host header: ${hostHeader}`;\n      }\n    }\n\n    // Validate Origin header if allowedOrigins is configured\n    if (this._options.allowedOrigins && this._options.allowedOrigins.length > 0) {\n      const originHeader = req.headers.origin;\n      if (!originHeader || !this._options.allowedOrigins.includes(originHeader)) {\n        return `Invalid Origin header: ${originHeader}`;\n      }\n    }\n\n    return undefined;\n  }\n\n  /**\n   * Handles the initial SSE connection request.\n   *\n   * This should be called when a GET request is made to establish the SSE stream.\n   */\n  async start(): Promise<void> {\n    if (this._sseResponse) {\n      throw new Error(\n        'SSEServerTransport already started! If using Server class, note that connect() calls start() automatically.',\n      );\n    }\n\n    this.res.writeHead(200, {\n      'Content-Type': 'text/event-stream',\n      'Cache-Control': 'no-cache, no-transform',\n      Connection: 'keep-alive',\n    });\n\n    // Send the endpoint event\n    // Use a dummy base URL because this._endpoint is relative.\n    // This allows using URL/URLSearchParams for robust parameter handling.\n    const dummyBase = 'http://localhost'; // Any valid base works\n    const endpointUrl = new URL(this._endpoint, dummyBase);\n    endpointUrl.searchParams.set('sessionId', this._sessionId);\n\n    // Reconstruct the relative URL string (pathname + search + hash)\n    const relativeUrlWithSession = endpointUrl.pathname + endpointUrl.search + endpointUrl.hash;\n\n    // Include event ID per MCP 2025-11-25 spec for client reconnection support\n    const eventId = ++this._eventIdCounter;\n    this.res.write(`id: ${eventId}\\nevent: endpoint\\ndata: ${relativeUrlWithSession}\\n\\n`);\n\n    this._sseResponse = this.res;\n    this.res.on('close', () => {\n      this._sseResponse = undefined;\n      this.onclose?.();\n    });\n  }\n\n  /**\n   * Handles incoming POST messages.\n   *\n   * This should be called when a POST request is made to send a message to the server.\n   */\n  async handlePostMessage(\n    req: IncomingMessage & { auth?: AuthInfo },\n    res: ServerResponse,\n    parsedBody?: unknown,\n  ): Promise<void> {\n    if (!this._sseResponse) {\n      const message = 'SSE connection not established';\n      res.writeHead(500).end(message);\n      throw new Error(message);\n    }\n\n    // Validate request headers for DNS rebinding protection\n    const validationError = this.validateRequestHeaders(req);\n    if (validationError) {\n      res.writeHead(403).end(validationError);\n      this.onerror?.(new Error(validationError));\n      return;\n    }\n\n    const authInfo: AuthInfo | undefined = req.auth;\n    const requestInfo: RequestInfo = { headers: req.headers } as any;\n\n    let body: string | unknown;\n    try {\n      const ct = contentType.parse(req.headers['content-type'] ?? '');\n      if (ct.type !== 'application/json') {\n        throw new Error(`Unsupported content-type: ${ct.type}`);\n      }\n\n      body =\n        parsedBody ??\n        (await getRawBody(req, {\n          limit: MAXIMUM_MESSAGE_SIZE,\n          encoding: ct.parameters.charset ?? 'utf-8',\n        }));\n    } catch (error) {\n      res.writeHead(400).end(String(error));\n      this.onerror?.(error as Error);\n      return;\n    }\n\n    try {\n      await this.handleMessage(typeof body === 'string' ? JSON.parse(body) : body, { requestInfo, authInfo } as any);\n    } catch {\n      res.writeHead(400).end(`Invalid message: ${body}`);\n      return;\n    }\n\n    res.writeHead(202).end('Accepted');\n  }\n\n  /**\n   * Handle a client message, regardless of how it arrived. This can be used to inform the server of messages that arrive via a means different than HTTP POST.\n   */\n  async handleMessage(message: unknown, extra?: MessageExtraInfo): Promise<void> {\n    let parsedMessage: JSONRPCMessage;\n    try {\n      parsedMessage = JSONRPCMessageSchema.parse(message);\n    } catch (error) {\n      this.onerror?.(error as Error);\n      throw error;\n    }\n\n    this.onmessage?.(parsedMessage, extra);\n  }\n\n  async close(): Promise<void> {\n    this._sseResponse?.end();\n    this._sseResponse = undefined;\n    this.onclose?.();\n  }\n\n  async send(message: JSONRPCMessage): Promise<void> {\n    if (!this._sseResponse) {\n      throw new Error('Not connected');\n    }\n\n    // Include event ID per MCP 2025-11-25 spec for client reconnection support\n    const eventId = ++this._eventIdCounter;\n    this._sseResponse.write(`id: ${eventId}\\nevent: message\\ndata: ${JSON.stringify(message)}\\n\\n`);\n  }\n\n  /**\n   * Returns the session ID for this transport.\n   *\n   * This can be used to route incoming POST requests.\n   */\n  get sessionId(): string {\n    return this._sessionId;\n  }\n\n  /**\n   * Returns the current event ID counter value.\n   *\n   * This is the ID that was used for the last sent event.\n   * Useful for testing and debugging reconnection scenarios.\n   */\n  get lastEventId(): number {\n    return this._eventIdCounter;\n  }\n}\n"]}

package/src/transport/mcp-handlers/call-tool-request.handler.js

@@ -3,15 +3,41 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.default = callToolRequestHandler;
 const types_js_1 = require("@modelcontextprotocol/sdk/types.js");
 const errors_1 = require("../../errors");
+const common_1 = require("../../common");
 function callToolRequestHandler({ scope, }) {
+    const logger = scope.logger.child('call-tool-request-handler');
     return {
         requestSchema: types_js_1.CallToolRequestSchema,
         handler: async (request, ctx) => {
+            const toolName = request.params?.name || 'unknown';
+            logger.verbose(`tools/call: ${toolName}`);
             try {
                 return await scope.runFlowForOutput('tools:call-tool', { request, ctx });
             }
             catch (e) {
-                scope.logger.error("CallTool Failed", e);
+                // FlowControl is a control flow mechanism, not an error - handle silently
+                if (e instanceof common_1.FlowControl) {
+                    if (e.type === 'respond') {
+                        // Validate output using MCP schema
+                        const parseResult = types_js_1.CallToolResultSchema.safeParse(e.output);
+                        if (parseResult.success) {
+                            return parseResult.data;
+                        }
+                        logger.error('FlowControl.respond has invalid output', {
+                            tool: toolName,
+                            validationErrors: parseResult.error.issues,
+                        });
+                        return (0, errors_1.formatMcpErrorResponse)(new errors_1.InternalMcpError('FlowControl output is not a valid CallToolResult'));
+                    }
+                    // For handled, next, abort, fail - return appropriate response
+                    logger.warn(`FlowControl ended with type: ${e.type}`, { tool: toolName, type: e.type, output: e.output });
+                    return (0, errors_1.formatMcpErrorResponse)(new errors_1.InternalMcpError(`Flow ended with: ${e.type}`));
+                }
+                // Log detailed error info
+                logger.error('CallTool Failed', {
+                    tool: toolName,
+                    error: e instanceof Error ? { name: e.name, message: e.message, stack: e.stack } : e,
+                });
                 return (0, errors_1.formatMcpErrorResponse)(e);
             }
         },

package/src/transport/mcp-handlers/call-tool-request.handler.js.map

@@ -1 +1 @@
-{"version":3,"file":"call-tool-request.handler.js","sourceRoot":"","sources":["../../../../src/transport/mcp-handlers/call-tool-request.handler.ts"],"names":[],"mappings":";;AAIA,yCAcC;AAlBD,iEAA4G;AAE5G,yCAAsD;AAEtD,SAAwB,sBAAsB,CAAC,EAC7C,KAAK,GACa;IAClB,OAAO;QACL,aAAa,EAAE,gCAAqB;QACpC,OAAO,EAAE,KAAK,EAAE,OAAwB,EAAE,GAAG,EAAE,EAAE;YAC/C,IAAI,CAAC;gBACH,OAAO,MAAM,KAAK,CAAC,gBAAgB,CAAC,iBAAiB,EAAE,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC;YAC3E,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAC;gBACzC,OAAO,IAAA,+BAAsB,EAAC,CAAC,CAAC,CAAC;YACnC,CAAC;QACH,CAAC;KACoD,CAAC;AAC1D,CAAC","sourcesContent":["import { CallToolRequest, CallToolRequestSchema, CallToolResult } from '@modelcontextprotocol/sdk/types.js';\nimport { McpHandler, McpHandlerOptions } from './mcp-handlers.types';\nimport { formatMcpErrorResponse } from '../../errors';\n\nexport default function callToolRequestHandler({\n  scope,\n}: McpHandlerOptions): McpHandler<CallToolRequest, CallToolResult> {\n  return {\n    requestSchema: CallToolRequestSchema,\n    handler: async (request: CallToolRequest, ctx) => {\n      try {\n        return await scope.runFlowForOutput('tools:call-tool', { request, ctx });\n      } catch (e) {\n        scope.logger.error(\"CallTool Failed\", e);\n        return formatMcpErrorResponse(e);\n      }\n    },\n  } satisfies McpHandler<CallToolRequest, CallToolResult>;\n}\n"]}
+{"version":3,"file":"call-tool-request.handler.js","sourceRoot":"","sources":["../../../../src/transport/mcp-handlers/call-tool-request.handler.ts"],"names":[],"mappings":";;AAUA,yCA0CC;AApDD,iEAK4C;AAE5C,yCAAwE;AACxE,yCAA2C;AAE3C,SAAwB,sBAAsB,CAAC,EAC7C,KAAK,GACa;IAClB,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAE/D,OAAO;QACL,aAAa,EAAE,gCAAqB;QACpC,OAAO,EAAE,KAAK,EAAE,OAAwB,EAAE,GAAG,EAAE,EAAE;YAC/C,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,EAAE,IAAI,IAAI,SAAS,CAAC;YACnD,MAAM,CAAC,OAAO,CAAC,eAAe,QAAQ,EAAE,CAAC,CAAC;YAE1C,IAAI,CAAC;gBACH,OAAO,MAAM,KAAK,CAAC,gBAAgB,CAAC,iBAAiB,EAAE,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC;YAC3E,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,0EAA0E;gBAC1E,IAAI,CAAC,YAAY,oBAAW,EAAE,CAAC;oBAC7B,IAAI,CAAC,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;wBACzB,mCAAmC;wBACnC,MAAM,WAAW,GAAG,+BAAoB,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;wBAC7D,IAAI,WAAW,CAAC,OAAO,EAAE,CAAC;4BACxB,OAAO,WAAW,CAAC,IAAI,CAAC;wBAC1B,CAAC;wBACD,MAAM,CAAC,KAAK,CAAC,wCAAwC,EAAE;4BACrD,IAAI,EAAE,QAAQ;4BACd,gBAAgB,EAAE,WAAW,CAAC,KAAK,CAAC,MAAM;yBAC3C,CAAC,CAAC;wBACH,OAAO,IAAA,+BAAsB,EAAC,IAAI,yBAAgB,CAAC,kDAAkD,CAAC,CAAC,CAAC;oBAC1G,CAAC;oBACD,+DAA+D;oBAC/D,MAAM,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;oBAC1G,OAAO,IAAA,+BAAsB,EAAC,IAAI,yBAAgB,CAAC,oBAAoB,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;gBACpF,CAAC;gBAED,0BAA0B;gBAC1B,MAAM,CAAC,KAAK,CAAC,iBAAiB,EAAE;oBAC9B,IAAI,EAAE,QAAQ;oBACd,KAAK,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC;iBACrF,CAAC,CAAC;gBACH,OAAO,IAAA,+BAAsB,EAAC,CAAC,CAAC,CAAC;YACnC,CAAC;QACH,CAAC;KACoD,CAAC;AAC1D,CAAC","sourcesContent":["import {\n  CallToolRequest,\n  CallToolRequestSchema,\n  CallToolResult,\n  CallToolResultSchema,\n} from '@modelcontextprotocol/sdk/types.js';\nimport { McpHandler, McpHandlerOptions } from './mcp-handlers.types';\nimport { formatMcpErrorResponse, InternalMcpError } from '../../errors';\nimport { FlowControl } from '../../common';\n\nexport default function callToolRequestHandler({\n  scope,\n}: McpHandlerOptions): McpHandler<CallToolRequest, CallToolResult> {\n  const logger = scope.logger.child('call-tool-request-handler');\n\n  return {\n    requestSchema: CallToolRequestSchema,\n    handler: async (request: CallToolRequest, ctx) => {\n      const toolName = request.params?.name || 'unknown';\n      logger.verbose(`tools/call: ${toolName}`);\n\n      try {\n        return await scope.runFlowForOutput('tools:call-tool', { request, ctx });\n      } catch (e) {\n        // FlowControl is a control flow mechanism, not an error - handle silently\n        if (e instanceof FlowControl) {\n          if (e.type === 'respond') {\n            // Validate output using MCP schema\n            const parseResult = CallToolResultSchema.safeParse(e.output);\n            if (parseResult.success) {\n              return parseResult.data;\n            }\n            logger.error('FlowControl.respond has invalid output', {\n              tool: toolName,\n              validationErrors: parseResult.error.issues,\n            });\n            return formatMcpErrorResponse(new InternalMcpError('FlowControl output is not a valid CallToolResult'));\n          }\n          // For handled, next, abort, fail - return appropriate response\n          logger.warn(`FlowControl ended with type: ${e.type}`, { tool: toolName, type: e.type, output: e.output });\n          return formatMcpErrorResponse(new InternalMcpError(`Flow ended with: ${e.type}`));\n        }\n\n        // Log detailed error info\n        logger.error('CallTool Failed', {\n          tool: toolName,\n          error: e instanceof Error ? { name: e.name, message: e.message, stack: e.stack } : e,\n        });\n        return formatMcpErrorResponse(e);\n      }\n    },\n  } satisfies McpHandler<CallToolRequest, CallToolResult>;\n}\n"]}

package/src/transport/mcp-handlers/complete-request.handler.d.ts

@@ -0,0 +1,69 @@
+import { CompleteRequest } from '@modelcontextprotocol/sdk/types.js';
+import { McpHandlerOptions } from './mcp-handlers.types';
+export default function CompleteRequestHandler({ scope }: McpHandlerOptions): {
+    requestSchema: import("zod").ZodObject<{
+        method: import("zod").ZodLiteral<"completion/complete">;
+        params: import("zod").ZodObject<{
+            _meta: import("zod").ZodOptional<import("zod").ZodObject<{
+                progressToken: import("zod").ZodOptional<import("zod").ZodUnion<readonly [import("zod").ZodString, import("zod").ZodNumber]>>;
+            }, import("zod/v4/core").$loose>>;
+            ref: import("zod").ZodUnion<readonly [import("zod").ZodObject<{
+                type: import("zod").ZodLiteral<"ref/prompt">;
+                name: import("zod").ZodString;
+            }, import("zod/v4/core").$strip>, import("zod").ZodObject<{
+                type: import("zod").ZodLiteral<"ref/resource">;
+                uri: import("zod").ZodString;
+            }, import("zod/v4/core").$strip>]>;
+            argument: import("zod").ZodObject<{
+                name: import("zod").ZodString;
+                value: import("zod").ZodString;
+            }, import("zod/v4/core").$strip>;
+            context: import("zod").ZodOptional<import("zod").ZodObject<{
+                arguments: import("zod").ZodOptional<import("zod").ZodRecord<import("zod").ZodString, import("zod").ZodString>>;
+            }, import("zod/v4/core").$strip>>;
+        }, import("zod/v4/core").$loose>;
+    }, import("zod/v4/core").$strip>;
+    handler: (request: CompleteRequest, ctx: import("./mcp-handlers.types").McpRequestHandler<{
+        method: "completion/complete";
+        params: {
+            [x: string]: unknown;
+            ref: {
+                type: "ref/prompt";
+                name: string;
+            } | {
+                type: "ref/resource";
+                uri: string;
+            };
+            argument: {
+                name: string;
+                value: string;
+            };
+            _meta?: {
+                [x: string]: unknown;
+                progressToken?: string | number | undefined;
+            } | undefined;
+            context?: {
+                arguments?: {
+                    [x: string]: string;
+                } | undefined;
+            } | undefined;
+        };
+    }, {
+        method: string;
+        params?: {
+            [x: string]: unknown;
+            _meta?: {
+                [x: string]: unknown;
+            } | undefined;
+        } | undefined;
+    }>) => Promise<{
+        [x: string]: unknown;
+        completion: {
+            [x: string]: unknown;
+            values: string[];
+            total?: number | undefined;
+            hasMore?: boolean | undefined;
+        };
+        _meta?: Record<string, unknown> | undefined;
+    }>;
+};

package/src/transport/mcp-handlers/complete-request.handler.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = CompleteRequestHandler;
+const types_js_1 = require("@modelcontextprotocol/sdk/types.js");
+function CompleteRequestHandler({ scope }) {
+    return {
+        requestSchema: types_js_1.CompleteRequestSchema,
+        handler: (request, ctx) => scope.runFlowForOutput('completion:complete', { request, ctx }),
+    };
+}
+//# sourceMappingURL=complete-request.handler.js.map

package/src/transport/mcp-handlers/complete-request.handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"complete-request.handler.js","sourceRoot":"","sources":["../../../../src/transport/mcp-handlers/complete-request.handler.ts"],"names":[],"mappings":";;AAGA,yCAKC;AARD,iEAA4G;AAG5G,SAAwB,sBAAsB,CAAC,EAAE,KAAK,EAAqB;IACzE,OAAO;QACL,aAAa,EAAE,gCAAqB;QACpC,OAAO,EAAE,CAAC,OAAwB,EAAE,GAAG,EAAE,EAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,qBAAqB,EAAE,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;KACtD,CAAC;AAC1D,CAAC","sourcesContent":["import { CompleteRequestSchema, CompleteRequest, CompleteResult } from '@modelcontextprotocol/sdk/types.js';\nimport { McpHandler, McpHandlerOptions } from './mcp-handlers.types';\n\nexport default function CompleteRequestHandler({ scope }: McpHandlerOptions) {\n  return {\n    requestSchema: CompleteRequestSchema,\n    handler: (request: CompleteRequest, ctx) => scope.runFlowForOutput('completion:complete', { request, ctx }),\n  } satisfies McpHandler<CompleteRequest, CompleteResult>;\n}\n"]}

package/src/transport/mcp-handlers/get-prompt-request.handler.d.ts

@@ -0,0 +1,87 @@
+import { GetPromptRequest } from '@modelcontextprotocol/sdk/types.js';
+import { McpHandlerOptions } from './mcp-handlers.types';
+export default function GetPromptRequestHandler({ scope }: McpHandlerOptions): {
+    requestSchema: import("zod").ZodObject<{
+        method: import("zod").ZodLiteral<"prompts/get">;
+        params: import("zod").ZodObject<{
+            _meta: import("zod").ZodOptional<import("zod").ZodObject<{
+                progressToken: import("zod").ZodOptional<import("zod").ZodUnion<readonly [import("zod").ZodString, import("zod").ZodNumber]>>;
+            }, import("zod/v4/core").$loose>>;
+            name: import("zod").ZodString;
+            arguments: import("zod").ZodOptional<import("zod").ZodRecord<import("zod").ZodString, import("zod").ZodString>>;
+        }, import("zod/v4/core").$loose>;
+    }, import("zod/v4/core").$strip>;
+    handler: (request: GetPromptRequest, ctx: import("./mcp-handlers.types").McpRequestHandler<{
+        method: "prompts/get";
+        params: {
+            [x: string]: unknown;
+            name: string;
+            _meta?: {
+                [x: string]: unknown;
+                progressToken?: string | number | undefined;
+            } | undefined;
+            arguments?: {
+                [x: string]: string;
+            } | undefined;
+        };
+    }, {
+        method: string;
+        params?: {
+            [x: string]: unknown;
+            _meta?: {
+                [x: string]: unknown;
+            } | undefined;
+        } | undefined;
+    }>) => Promise<{
+        [x: string]: unknown;
+        messages: {
+            role: "user" | "assistant";
+            content: {
+                type: "text";
+                text: string;
+                _meta?: Record<string, unknown> | undefined;
+            } | {
+                type: "image";
+                data: string;
+                mimeType: string;
+                _meta?: Record<string, unknown> | undefined;
+            } | {
+                type: "audio";
+                data: string;
+                mimeType: string;
+                _meta?: Record<string, unknown> | undefined;
+            } | {
+                uri: string;
+                name: string;
+                type: "resource_link";
+                description?: string | undefined;
+                mimeType?: string | undefined;
+                _meta?: {
+                    [x: string]: unknown;
+                } | undefined;
+                icons?: {
+                    src: string;
+                    mimeType?: string | undefined;
+                    sizes?: string[] | undefined;
+                }[] | undefined;
+                title?: string | undefined;
+            } | {
+                type: "resource";
+                resource: {
+                    uri: string;
+                    text: string;
+                    mimeType?: string | undefined;
+                    _meta?: Record<string, unknown> | undefined;
+                } | {
+                    uri: string;
+                    blob: string;
+                    mimeType?: string | undefined;
+                    _meta?: Record<string, unknown> | undefined;
+                };
+                _meta?: Record<string, unknown> | undefined;
+            };
+        }[];
+        _meta?: Record<string, unknown> | undefined;
+        description?: string | undefined;
+    }>;
+};

package/src/transport/mcp-handlers/get-prompt-request.handler.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.default = GetPromptRequestHandler;
+const types_js_1 = require("@modelcontextprotocol/sdk/types.js");
+function GetPromptRequestHandler({ scope }) {
+    return {
+        requestSchema: types_js_1.GetPromptRequestSchema,
+        handler: (request, ctx) => scope.runFlowForOutput('prompts:get-prompt', { request, ctx }),
+    };
+}
+//# sourceMappingURL=get-prompt-request.handler.js.map

package/src/transport/mcp-handlers/get-prompt-request.handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"get-prompt-request.handler.js","sourceRoot":"","sources":["../../../../src/transport/mcp-handlers/get-prompt-request.handler.ts"],"names":[],"mappings":";;AAGA,0CAKC;AARD,iEAA+G;AAG/G,SAAwB,uBAAuB,CAAC,EAAE,KAAK,EAAqB;IAC1E,OAAO;QACL,aAAa,EAAE,iCAAsB;QACrC,OAAO,EAAE,CAAC,OAAyB,EAAE,GAAG,EAAE,EAAE,CAAC,KAAK,CAAC,gBAAgB,CAAC,oBAAoB,EAAE,EAAE,OAAO,EAAE,GAAG,EAAE,CAAC;KACpD,CAAC;AAC5D,CAAC","sourcesContent":["import { GetPromptRequestSchema, GetPromptRequest, GetPromptResult } from '@modelcontextprotocol/sdk/types.js';\nimport { McpHandler, McpHandlerOptions } from './mcp-handlers.types';\n\nexport default function GetPromptRequestHandler({ scope }: McpHandlerOptions) {\n  return {\n    requestSchema: GetPromptRequestSchema,\n    handler: (request: GetPromptRequest, ctx) => scope.runFlowForOutput('prompts:get-prompt', { request, ctx }),\n  } satisfies McpHandler<GetPromptRequest, GetPromptResult>;\n}\n"]}