@frontmcp/utils 0.8.0 → 0.9.0

package/README.md

@@ -1,110 +1,51 @@
 # @frontmcp/utils
 
-Shared utility functions for the FrontMCP ecosystem. Provides generic, protocol-neutral utilities for string manipulation, URI handling, path operations, content processing, and more.
+Shared utility functions for the FrontMCP ecosystem.
 
-## Installation
+[![NPM](https://img.shields.io/npm/v/@frontmcp/utils.svg)](https://www.npmjs.com/package/@frontmcp/utils)
+
+> **Internal package.** Used by `@frontmcp/sdk` and other `@frontmcp/*` libraries — most users do not need to install this directly.
+
+## Install
 
 ```bash
 npm install @frontmcp/utils
-# or
-yarn add @frontmcp/utils
 ```
 
 ## Features
 
-### Naming Utilities
-
-```typescript
-import { splitWords, toCase, shortHash, ensureMaxLen, idFromString } from '@frontmcp/utils';
-
-// Split strings into words (handles camelCase, PascalCase, delimiters)
-splitWords('myFunctionName'); // ['my', 'Function', 'Name']
-
-// Convert to different cases
-toCase(['my', 'function'], 'snake'); // 'my_function'
-toCase(['my', 'function'], 'kebab'); // 'my-function'
-toCase(['my', 'function'], 'camel'); // 'myFunction'
+**Naming** — `splitWords`, `toCase`, `shortHash`, `ensureMaxLen`, `idFromString` for string manipulation and case conversion
 
-// Generate short hashes
-shortHash('some-string'); // '6-char hex hash'
+**URI** — `isValidMcpUri`, `extractUriScheme`, `parseUriTemplate`, `matchUriTemplate`, `expandUriTemplate` (RFC 3986 / RFC 6570)
 
-// Truncate with hash for uniqueness
-ensureMaxLen('very-long-name-that-exceeds-limit', 20);
+**Path** — `trimSlashes`, `joinPath` for URL path operations
 
-// Sanitize to valid ID
-idFromString('My Function Name!'); // 'My-Function-Name'
-```
-
-### URI Utilities
+**Content** — `sanitizeToJson`, `inferMimeType` for safe serialization and MIME detection
 
-```typescript
-import {
-  isValidMcpUri,
-  extractUriScheme,
-  parseUriTemplate,
-  matchUriTemplate,
-  expandUriTemplate,
-} from '@frontmcp/utils';
+**HTTP** — `validateBaseUrl` for URL validation and normalization
 
-// Validate RFC 3986 URIs
-isValidMcpUri('https://example.com/resource'); // true
-isValidMcpUri('/path/without/scheme'); // false
+**Crypto** — `sha256`, `sha256Hex`, `sha256Base64url`, `hkdfSha256`, `encryptAesGcm`, `decryptAesGcm`, `randomBytes`, `randomUUID`, `generateCodeVerifier`, `generateCodeChallenge`, `generatePkcePair`, `base64urlEncode`, `base64urlDecode` for cross-platform cryptography
 
-// Extract scheme
-extractUriScheme('https://example.com'); // 'https'
+**File system** — `readFile`, `writeFile`, `mkdir`, `stat`, `fileExists`, `readJSON`, `writeJSON`, `ensureDir`, `isDirEmpty`, `runCmd` and more — lazy-loaded for Node.js environments
 
-// RFC 6570 URI Templates
-const params = matchUriTemplate('users/{userId}/posts/{postId}', 'users/123/posts/456');
-// { userId: '123', postId: '456' }
+## Quick Example
 
-expandUriTemplate('users/{userId}', { userId: '123' }); // 'users/123'
-```
+```ts
+import { matchUriTemplate, sha256Hex, fileExists } from '@frontmcp/utils';
 
-### Path Utilities
+const params = matchUriTemplate('users/{id}/posts/{postId}', 'users/123/posts/456');
+// { id: '123', postId: '456' }
 
-```typescript
-import { trimSlashes, joinPath } from '@frontmcp/utils';
+const hash = sha256Hex('hello world');
 
-trimSlashes('/path/to/resource/'); // 'path/to/resource'
-joinPath('api', 'v1', 'users'); // '/api/v1/users'
+const exists = await fileExists('/path/to/file');
 ```
 
-### Content Utilities
-
-```typescript
-import { sanitizeToJson, inferMimeType } from '@frontmcp/utils';
-
-// Sanitize values to JSON-safe objects
-sanitizeToJson({ date: new Date(), fn: () => {} }); // { date: '2024-01-01T00:00:00.000Z' }
+## Related Packages
 
-// Infer MIME type from extension
-inferMimeType('document.json'); // 'application/json'
-inferMimeType('image.png'); // 'image/png'
-```
-
-### HTTP Utilities
-
-```typescript
-import { validateBaseUrl } from '@frontmcp/utils';
-
-// Validate and normalize URLs
-const url = validateBaseUrl('https://api.example.com');
-// Throws for invalid URLs or unsupported protocols (file://, javascript:)
-```
-
-### File System Utilities
-
-```typescript
-import { fileExists, readJSON, writeJSON, ensureDir, isDirEmpty } from '@frontmcp/utils';
-
-// Async file operations
-await fileExists('/path/to/file');
-await readJSON<Config>('/path/to/config.json');
-await writeJSON('/path/to/output.json', { key: 'value' });
-await ensureDir('/path/to/directory');
-await isDirEmpty('/path/to/directory');
-```
+- [`@frontmcp/sdk`](../sdk) — core framework
+- [`@frontmcp/auth`](../auth) — uses crypto utilities for PKCE, encryption
 
 ## License
 
-Apache-2.0
+Apache-2.0 — see [LICENSE](../../LICENSE).

package/esm/index.mjs

@@ -1435,7 +1435,7 @@ var init_upstash = __esm({
 });
 
 // libs/utils/src/regex/safe-regex.ts
-import { analyzeForReDoS, REDOS_THRESHOLDS } from "ast-guard";
+import { analyzeForReDoS, REDOS_THRESHOLDS } from "@enclave-vm/ast";
 var DEFAULT_MAX_INPUT_LENGTH = 5e4;
 function analyzePattern(pattern, level = "polynomial") {
   const patternStr = typeof pattern === "string" ? pattern : pattern.source;
@@ -3492,7 +3492,12 @@ function base64urlEncode(data) {
     const binString = Array.from(data, (byte) => String.fromCodePoint(byte)).join("");
     base64 = btoa(binString);
   }
-  return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  const result = base64.replace(/\+/g, "-").replace(/\//g, "_");
+  let end = result.length;
+  while (end > 0 && result[end - 1] === "=") {
+    end--;
+  }
+  return result.slice(0, end);
 }
 function base64urlDecode(data) {
   let base64 = data.replace(/-/g, "+").replace(/_/g, "/");

package/esm/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@frontmcp/utils",
-  "version": "0.8.0",
+  "version": "0.9.0",
   "description": "Shared utility functions for FrontMCP - string manipulation, URI handling, path utilities, and more",
   "author": "AgentFront <info@agentfront.dev>",
   "license": "Apache-2.0",
@@ -29,7 +29,7 @@
   "dependencies": {
     "@noble/hashes": "^2.0.1",
     "@noble/ciphers": "^2.1.1",
-    "ast-guard": "^2.4.0",
+    "@enclave-vm/ast": "^2.10.1",
     "zod": "^4.0.0"
   },
   "peerDependencies": {

package/index.js

@@ -1457,7 +1457,7 @@ __export(index_exports, {
   NAMESPACE_SEPARATOR: () => NAMESPACE_SEPARATOR,
   NamespacedStorageImpl: () => NamespacedStorageImpl,
   PkceError: () => PkceError,
-  REDOS_THRESHOLDS: () => import_ast_guard.REDOS_THRESHOLDS,
+  REDOS_THRESHOLDS: () => import_ast.REDOS_THRESHOLDS,
   RedisStorageAdapter: () => RedisStorageAdapter,
   StorageConfigError: () => StorageConfigError,
   StorageConnectionError: () => StorageConnectionError,
@@ -1617,7 +1617,7 @@ __export(index_exports, {
 module.exports = __toCommonJS(index_exports);
 
 // libs/utils/src/regex/safe-regex.ts
-var import_ast_guard = require("ast-guard");
+var import_ast = require("@enclave-vm/ast");
 var DEFAULT_MAX_INPUT_LENGTH = 5e4;
 function analyzePattern(pattern, level = "polynomial") {
   const patternStr = typeof pattern === "string" ? pattern : pattern.source;
@@ -1632,7 +1632,7 @@ function analyzePattern(pattern, level = "polynomial") {
     };
   }
   try {
-    const result = (0, import_ast_guard.analyzeForReDoS)(patternStr, level);
+    const result = (0, import_ast.analyzeForReDoS)(patternStr, level);
     return {
       safe: !result.vulnerable,
       score: result.score,
@@ -3674,7 +3674,12 @@ function base64urlEncode(data) {
     const binString = Array.from(data, (byte) => String.fromCodePoint(byte)).join("");
     base64 = btoa(binString);
   }
-  return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+  const result = base64.replace(/\+/g, "-").replace(/\//g, "_");
+  let end = result.length;
+  while (end > 0 && result[end - 1] === "=") {
+    end--;
+  }
+  return result.slice(0, end);
 }
 function base64urlDecode(data) {
   let base64 = data.replace(/-/g, "+").replace(/_/g, "/");

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@frontmcp/utils",
-  "version": "0.8.0",
+  "version": "0.9.0",
   "description": "Shared utility functions for FrontMCP - string manipulation, URI handling, path utilities, and more",
   "author": "AgentFront <info@agentfront.dev>",
   "license": "Apache-2.0",
@@ -29,7 +29,7 @@
   "dependencies": {
     "@noble/hashes": "^2.0.1",
     "@noble/ciphers": "^2.1.1",
-    "ast-guard": "^2.4.0",
+    "@enclave-vm/ast": "^2.10.1",
     "zod": "^4.0.0"
   },
   "peerDependencies": {

package/regex/safe-regex.d.ts

@@ -4,7 +4,7 @@
  * These utilities protect against ReDoS (Regular Expression Denial of Service)
  * attacks by validating patterns and enforcing input length limits.
  */
-import { REDOS_THRESHOLDS } from 'ast-guard';
+import { REDOS_THRESHOLDS } from '@enclave-vm/ast';
 /**
  * Default maximum input length for safe regex operations.
  * Inputs longer than this will be rejected to prevent ReDoS attacks.