@jshookmcp/jshook 0.2.5 → 0.2.6

package/workflows/signing-lineage/tsconfig.json

@@ -0,0 +1,15 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "NodeNext",
+    "moduleResolution": "NodeNext",
+    "noEmit": false,
+    "outDir": "dist",
+    "rootDir": ".",
+    "strict": true,
+    "skipLibCheck": true,
+    "types": ["node"]
+  },
+  "include": ["workflow.ts"],
+  "exclude": ["dist", "node_modules"]
+}

package/workflows/signing-lineage/workflow.ts

@@ -0,0 +1,120 @@
+import {
+  createWorkflow,
+  type WorkflowExecutionContext,
+  SequenceNodeBuilder,
+} from '@jshookmcp/extension-sdk/workflow';
+
+const workflowId = 'workflow.signing-lineage.v1';
+
+export default createWorkflow(workflowId, 'Signing Lineage')
+  .description(
+    'Traces the full signing lineage from ciphertext back to plaintext: intercepts signed requests, locates the signing function via initiator stacks, extracts the parameter normalization chain, hooks intermediate transforms, and captures the complete plaintext → normalize → concat → hash/encrypt → inject pipeline.',
+  )
+  .tags(['reverse', 'signature', 'lineage', 'crypto', 'trace', 'hook', 'parameter', 'mission'])
+  .timeoutMs(12 * 60_000)
+  .defaultMaxConcurrency(3)
+  .buildGraph((ctx: WorkflowExecutionContext) => {
+    const prefix = 'workflows.signingLineage';
+    const url = String(ctx.getConfig(`${prefix}.url`, 'https://example.com'));
+    const waitUntil = String(ctx.getConfig(`${prefix}.waitUntil`, 'networkidle0'));
+    const targetParam = String(ctx.getConfig(`${prefix}.targetParam`, 'sign'));
+    const requestTail = Number(ctx.getConfig(`${prefix}.requestTail`, 30));
+    const traceDepth = Number(ctx.getConfig(`${prefix}.traceDepth`, 5));
+    const searchKeywords = String(
+      ctx.getConfig(
+        `${prefix}.searchKeywords`,
+        'sign,signature,encrypt,hmac,md5,sha,hash,token,digest,secret,key,iv,nonce',
+      ),
+    );
+    const maxConcurrency = Number(ctx.getConfig(`${prefix}.parallel.maxConcurrency`, 3));
+
+    const root = new SequenceNodeBuilder('signing-lineage-root');
+
+    root
+      // Phase 1: Network Setup & Navigate
+      .tool('enable-network', 'network_enable', { input: { enableExceptions: true } })
+      .tool('navigate', 'page_navigate', { input: { url, waitUntil } })
+
+      // Phase 2: Initial Request Capture
+      .tool('capture-requests', 'network_get_requests', { input: { tail: requestTail } })
+
+      // Phase 3: Parallel Source Analysis
+      .parallel('analyse-sources', (p) => {
+        p.maxConcurrency(maxConcurrency)
+          .failFast(false)
+          .tool('search-signing', 'search_in_scripts', {
+            input: { query: searchKeywords, matchType: 'any' },
+          })
+          .tool('detect-crypto', 'detect_crypto', { input: {} })
+          .tool('collect-code', 'collect_code', { input: { includeInline: true, limit: 30 } });
+      })
+
+      // Phase 4: Deep Function Tree — find the signing entry point
+      .tool('extract-signing-tree', 'extract_function_tree', {
+        input: { targetParam, depth: traceDepth },
+      })
+
+      // Phase 5: Inject Function Tracer on signing path
+      .tool('inject-tracer', 'console_inject_function_tracer', {
+        input: { persistent: false },
+      })
+
+      // Phase 6: Hook the signing chain at multiple levels
+      .tool('hook-signing', 'manage_hooks', {
+        input: { action: 'add', targetParam, captureArgs: true, captureReturn: true },
+      })
+
+      // Phase 7: Interceptor injection for XHR/Fetch to catch signed requests
+      .tool('inject-xhr-interceptor', 'console_inject_xhr_interceptor', {
+        input: { persistent: false },
+      })
+      .tool('inject-fetch-interceptor', 'console_inject_fetch_interceptor', {
+        input: { persistent: false },
+      })
+
+      // Phase 8: Re-capture after instrumentation
+      .tool('recapture-requests', 'network_get_requests', { input: { tail: requestTail } })
+
+      // Phase 9: Auth Surface Extraction
+      .tool('extract-auth', 'network_extract_auth', { input: { minConfidence: 0.2 } })
+
+      // Phase 10: Evidence Recording
+      .tool('create-evidence-session', 'instrumentation_session_create', {
+        input: {
+          name: `signing-lineage-${targetParam}-${new Date().toISOString().slice(0, 10)}`,
+          metadata: { url, targetParam, workflowId },
+        },
+      })
+      .tool('record-artifact', 'instrumentation_artifact_record', {
+        input: {
+          type: 'signing_lineage',
+          label: `Signing lineage for "${targetParam}" on ${url}`,
+          metadata: { url, targetParam, traceDepth },
+        },
+      })
+
+      // Phase 11: Session Insight
+      .tool('emit-insight', 'append_session_insight', {
+        input: {
+          insight: JSON.stringify({
+            status: 'signing_lineage_complete',
+            workflowId,
+            url,
+            targetParam,
+            traceDepth,
+          }),
+        },
+      });
+
+    return root;
+  })
+  .onStart((ctx) => {
+    ctx.emitMetric('workflow_runs_total', 1, 'counter', { workflowId, mission: 'signing_lineage', stage: 'start' });
+  })
+  .onFinish((ctx) => {
+    ctx.emitMetric('workflow_runs_total', 1, 'counter', { workflowId, mission: 'signing_lineage', stage: 'finish' });
+  })
+  .onError((ctx, error) => {
+    ctx.emitMetric('workflow_errors_total', 1, 'counter', { workflowId, mission: 'signing_lineage', stage: 'error', error: error.name });
+  })
+  .build();

package/workflows/temp-mail-extract-link/.jshook-install.json

@@ -0,0 +1,14 @@
+{
+  "version": 1,
+  "kind": "workflow",
+  "slug": "temp-mail-extract-link",
+  "id": "workflow.temp-mail-extract-link.v1",
+  "source": {
+    "type": "git",
+    "repo": "https://github.com/vmoranv/jshook_workflow_temp_mail_extract_link",
+    "ref": "main",
+    "commit": "84c14de",
+    "subpath": ".",
+    "entry": "workflow.ts"
+  }
+}

package/workflows/temp-mail-extract-link/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 vmoranv
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/workflows/temp-mail-extract-link/README.md

@@ -0,0 +1,71 @@
+# temp-mail-extract-link workflow
+
+Declarative workflow for extracting activation / verification links from a temporary-mail detail page. It is generic and driven by selectors plus href/text filters rather than any Qwen-specific assumptions.
+
+## Entry File
+
+- `workflow.ts`
+
+## Workflow ID
+
+- `workflow.temp-mail-extract-link.v1`
+
+## Structure
+
+This workflow wraps generic browser primitives into a reusable mail-detail routine:
+
+- Optional `page_navigate` to a mail detail page
+- Initial wait after navigation
+- Retry-aware `page_evaluate` extraction step that:
+  - waits through redirect/challenge style titles
+  - checks optional `readySelector` / `readyText`
+  - extracts matched links
+  - optionally returns fallback link dumps
+  - optionally auto-opens the first matched link
+- Optional post-open wait step
+- `console_execute` summary step for downstream orchestration
+
+## Tools Used
+
+- `page_navigate`
+- `page_evaluate`
+- `console_execute`
+
+## Config
+
+Prefix: `workflows.tempMailExtractLink.*`
+
+- `detailUrl`
+- `waitUntil`
+- `initialWaitMs`
+- `retryWaitMs`
+- `maxWaitAttempts`
+- `readySelector`
+- `readyText`
+- `titleBlocklist`
+- `linkSelector`
+- `hrefIncludes`
+- `textIncludes`
+- `regexPattern`
+- `regexFlags`
+- `maxLinks`
+- `includeFallbackLinks`
+- `fallbackMaxLinks`
+- `openFirstMatch`
+- `waitAfterOpenMs`
+
+## Example Use Cases
+
+- Extract `/api/v1/auths/activate` links from a temporary mailbox
+- Extract generic `/verify` or `/confirm` links from a magic-link email
+- Run on a page that briefly shows `Redirecting` before actual content loads
+- Return fallback link dumps when no verification link is found yet
+
+## Local Validation
+
+1. Run `pnpm install`.
+2. Run `pnpm typecheck`.
+3. Put this repo under a configured `workflows/` extension root.
+4. Run `extensions_reload` in `jshookmcp`.
+5. Confirm the workflow appears in `list_extension_workflows`.
+6. Execute the workflow on a mail detail page and verify that the extraction result includes either matched links or fallback links.

package/workflows/temp-mail-extract-link/meta.yaml

@@ -0,0 +1,4 @@
+name: temp-mail-extract-link
+description: Declarative workflow for extracting verification or activation links from a temp-mail detail page.
+author: vmoranv
+source_repo: https://github.com/vmoranv/jshook_workflow_temp_mail_extract_link

package/workflows/temp-mail-extract-link/package.json

@@ -0,0 +1,23 @@
+{
+  "name": "@jshookmcpextension/workflow-temp-mail-extract-link",
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "typecheck": "tsc --noEmit -p tsconfig.json"
+  },
+  "type": "module",
+  "dependencies": {
+"@jshookmcp/extension-sdk": "^0.3.0",
+    "@modelcontextprotocol/sdk": "^1.27.1",
+    "dotenv": "^17.3.1"
+  },
+  "version": "0.1.0",
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "devDependencies": {
+    "@types/node": "^25.3.0",
+    "typescript": "^5.9.3"
+  },
+  "private": true,
+  "packageManager": "pnpm@10.28.2"
+}

package/workflows/temp-mail-extract-link/tsconfig.json

@@ -0,0 +1,16 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "NodeNext",
+    "moduleResolution": "NodeNext",
+    "lib": ["ES2022"],
+    "strict": true,
+    "skipLibCheck": true,
+    "esModuleInterop": true,
+    "resolveJsonModule": true,
+    "rootDir": ".",
+    "outDir": "dist"
+  },
+  "include": ["workflow.ts"],
+  "exclude": ["dist", "node_modules"]
+}

package/workflows/temp-mail-extract-link/workflow.ts

@@ -0,0 +1,221 @@
+import type { WorkflowContract } from '@jshookmcp/extension-sdk/workflow';
+import { toolNode, sequenceNode, branchNode } from '@jshookmcp/extension-sdk/workflow';
+
+const workflowId = 'workflow.temp-mail-extract-link.v1';
+
+const workflow: WorkflowContract = {
+  kind: 'workflow-contract',
+  version: 1,
+  id: workflowId,
+  displayName: 'Temp Mail Extract Link',
+  description:
+    'Navigate or reuse a temp-mail detail page, wait through redirects/challenges, scan main document and accessible iframes, classify fallback links, and optionally auto-open the first verification match.',
+  tags: ['workflow', 'mail', 'temp-mail', 'verification', 'link-extract'],
+  timeoutMs: 3 * 60_000,
+  defaultMaxConcurrency: 1,
+
+  build(ctx) {
+    const prefix = 'workflows.tempMailExtractLink';
+    const detailUrl = ctx.getConfig<string>(`${prefix}.detailUrl`, '');
+    const waitUntil = ctx.getConfig<string>(`${prefix}.waitUntil`, 'domcontentloaded');
+    const initialWaitMs = ctx.getConfig<number>(`${prefix}.initialWaitMs`, 1200);
+    const retryWaitMs = ctx.getConfig<number>(`${prefix}.retryWaitMs`, 1000);
+    const maxWaitAttempts = ctx.getConfig<number>(`${prefix}.maxWaitAttempts`, 5);
+    const readySelector = ctx.getConfig<string>(`${prefix}.readySelector`, '');
+    const readyText = ctx.getConfig<string>(`${prefix}.readyText`, '');
+    const titleBlocklist = ctx.getConfig<string[]>(`${prefix}.titleBlocklist`, ['Redirecting']);
+    const bodyBlocklist = ctx.getConfig<string[]>(`${prefix}.bodyBlocklist`, ['Checking your browser', 'Just a moment']);
+    const expectedContextHints = ctx.getConfig<string[]>(`${prefix}.expectedContextHints`, ['邮件', 'mail', '发件人', 'subject']);
+    const linkSelector = ctx.getConfig<string>(`${prefix}.linkSelector`, 'a');
+    const hrefIncludes = ctx.getConfig<string[]>(`${prefix}.hrefIncludes`, []);
+    const textIncludes = ctx.getConfig<string[]>(`${prefix}.textIncludes`, []);
+    const regexPattern = ctx.getConfig<string>(`${prefix}.regexPattern`, '');
+    const regexFlags = ctx.getConfig<string>(`${prefix}.regexFlags`, 'i');
+    const maxLinks = ctx.getConfig<number>(`${prefix}.maxLinks`, 20);
+    const includeFallbackLinks = ctx.getConfig<boolean>(`${prefix}.includeFallbackLinks`, true);
+    const fallbackMaxLinks = ctx.getConfig<number>(`${prefix}.fallbackMaxLinks`, 20);
+    const openFirstMatch = ctx.getConfig<boolean>(`${prefix}.openFirstMatch`, false);
+    const waitAfterOpenMs = ctx.getConfig<number>(`${prefix}.waitAfterOpenMs`, 2000);
+
+    return sequenceNode('temp-mail-extract-link-root')
+      .step(branchNode('maybe-navigate-detail', 'temp_mail_extract_link_has_detail_url')
+        .predicateFn(() => Boolean(detailUrl))
+        .whenTrue(toolNode('navigate-detail', 'page_navigate').input({ url: detailUrl, waitUntil, enableNetworkMonitoring: true }))
+        .whenFalse(toolNode('skip-navigate-detail', 'console_execute').input({
+          expression: '({ skipped: true, step: "navigate-detail", reason: "detailUrl not provided" })',
+        })))
+      .step(toolNode('initial-wait', 'page_evaluate')
+        .input({ code: `new Promise(resolve => setTimeout(() => resolve({ waitedMs: ${initialWaitMs} }), ${initialWaitMs}))` })
+        .timeout(Math.max(10_000, initialWaitMs + 2_000)))
+      .step(toolNode('extract-links', 'page_evaluate')
+        .input({
+          code: `(async function(){
+            const settings = {
+              readySelector: ${JSON.stringify(readySelector)},
+              readyText: ${JSON.stringify(readyText)},
+              titleBlocklist: ${JSON.stringify(titleBlocklist)},
+              bodyBlocklist: ${JSON.stringify(bodyBlocklist)},
+              expectedContextHints: ${JSON.stringify(expectedContextHints)},
+              linkSelector: ${JSON.stringify(linkSelector)},
+              hrefIncludes: ${JSON.stringify(hrefIncludes)},
+              textIncludes: ${JSON.stringify(textIncludes)},
+              regexPattern: ${JSON.stringify(regexPattern)},
+              regexFlags: ${JSON.stringify(regexFlags)},
+              maxLinks: ${JSON.stringify(maxLinks)},
+              includeFallbackLinks: ${JSON.stringify(includeFallbackLinks)},
+              fallbackMaxLinks: ${JSON.stringify(fallbackMaxLinks)},
+              openFirstMatch: ${JSON.stringify(openFirstMatch)},
+              retryWaitMs: ${JSON.stringify(retryWaitMs)},
+              maxWaitAttempts: ${JSON.stringify(maxWaitAttempts)}
+            };
+
+            const sleep = (ms) => new Promise(resolve => setTimeout(resolve, ms));
+            const normalize = (value) => (value || '').trim();
+            const regex = settings.regexPattern ? new RegExp(settings.regexPattern, settings.regexFlags) : null;
+
+            const classifyLink = (item) => {
+              const combined = (item.href + ' ' + item.text).toLowerCase();
+              if (/activate|activation/.test(combined)) return 'activation';
+              if (/verify|verification|confirm/.test(combined)) return 'verification';
+              if (/mail\\/view/.test(combined)) return 'mail_view';
+              if (/login|signin|signup|register|auth/.test(combined)) return 'auth';
+              if (/privacy|terms|policy|contact|help/.test(combined)) return 'navigation';
+              return 'other';
+            };
+
+            const getDocuments = () => {
+              const docs = [{ label: 'main', doc: document }];
+              const frames = Array.from(document.querySelectorAll('iframe'));
+              for (let index = 0; index < frames.length; index += 1) {
+                const frame = frames[index];
+                try {
+                  const frameDoc = frame.contentDocument || frame.contentWindow?.document;
+                  if (frameDoc) {
+                    docs.push({ label: 'iframe:' + index, doc: frameDoc });
+                  }
+                } catch {
+                  // cross-origin iframe; ignore safely
+                }
+              }
+              return docs;
+            };
+
+            const collectLinks = () => {
+              const docs = getDocuments();
+              const allLinks = [];
+              for (const item of docs) {
+                const anchors = Array.from(item.doc.querySelectorAll(settings.linkSelector));
+                for (const anchor of anchors) {
+                  const href = normalize(anchor.href || anchor.getAttribute('href') || '');
+                  const text = normalize(anchor.innerText || anchor.textContent || '');
+                  if (!href && !text) continue;
+                  allLinks.push({ href, text, source: item.label, kind: classifyLink({ href, text }) });
+                }
+              }
+
+              const matches = allLinks.filter((item) => {
+                const combined = (item.href + ' ' + item.text).trim();
+                const hrefOk = settings.hrefIncludes.length === 0 || settings.hrefIncludes.some((value) => item.href.includes(value));
+                const textOk = settings.textIncludes.length === 0 || settings.textIncludes.some((value) => item.text.includes(value));
+                const regexOk = !regex || regex.test(combined);
+                return hrefOk && textOk && regexOk;
+              }).slice(0, settings.maxLinks);
+
+              const fallbackLinks = settings.includeFallbackLinks
+                ? allLinks.slice(0, settings.fallbackMaxLinks)
+                : [];
+
+              const fallbackSummary = allLinks.reduce((acc, item) => {
+                acc[item.kind] = (acc[item.kind] || 0) + 1;
+                return acc;
+              }, {});
+
+              return { docsCount: docs.length, allLinksCount: allLinks.length, matches, fallbackLinks, fallbackSummary };
+            };
+
+            for (let attempt = 1; attempt <= settings.maxWaitAttempts; attempt++) {
+              const title = document.title || '';
+              const href = window.location.href || '';
+              const bodyText = document.body?.innerText || '';
+              const titleBlocked = settings.titleBlocklist.some((value) => value && title.includes(value));
+              const bodyBlocked = settings.bodyBlocklist.some((value) => value && bodyText.includes(value));
+              const selectorReady = !settings.readySelector || !!document.querySelector(settings.readySelector);
+              const textReady = !settings.readyText || bodyText.includes(settings.readyText);
+              const contextHintMatched = settings.expectedContextHints.length === 0 || settings.expectedContextHints.some((value) => title.includes(value) || bodyText.includes(value) || href.includes(value));
+              const linkData = collectLinks();
+
+              if (!titleBlocked && !bodyBlocked && selectorReady && textReady) {
+                const firstMatch = linkData.matches.length > 0 ? linkData.matches[0] : null;
+                let opened = false;
+                if (settings.openFirstMatch && firstMatch && firstMatch.href) {
+                  window.location.href = firstMatch.href;
+                  opened = true;
+                }
+                return {
+                  success: linkData.matches.length > 0, attempt, title, href,
+                  titleBlocked, bodyBlocked, selectorReady, textReady, contextHintMatched,
+                  contextWarning: contextHintMatched ? null : 'current page does not look like a mail-detail context',
+                  matchedCount: linkData.matches.length, firstMatch, opened,
+                  matches: linkData.matches, fallbackLinks: linkData.fallbackLinks,
+                  fallbackSummary: linkData.fallbackSummary,
+                  allLinksCount: linkData.allLinksCount, docsCount: linkData.docsCount,
+                };
+              }
+
+              if (attempt < settings.maxWaitAttempts) {
+                await sleep(settings.retryWaitMs);
+              } else {
+                return {
+                  success: false, attempt, title, href,
+                  titleBlocked, bodyBlocked, selectorReady, textReady, contextHintMatched,
+                  contextWarning: contextHintMatched ? null : 'current page does not look like a mail-detail context',
+                  matchedCount: linkData.matches.length,
+                  firstMatch: linkData.matches.length > 0 ? linkData.matches[0] : null,
+                  opened: false,
+                  matches: linkData.matches, fallbackLinks: linkData.fallbackLinks,
+                  fallbackSummary: linkData.fallbackSummary,
+                  allLinksCount: linkData.allLinksCount, docsCount: linkData.docsCount,
+                  reason: 'ready_or_match_conditions_not_met',
+                };
+              }
+            }
+
+            return { success: false, reason: 'unreachable' };
+          })()`,
+        })
+        .timeout(Math.max(15_000, initialWaitMs + maxWaitAttempts * retryWaitMs + 5_000)))
+      .step(branchNode('maybe-wait-after-open', 'temp_mail_extract_link_wait_after_open')
+        .predicateFn(() => openFirstMatch)
+        .whenTrue(toolNode('wait-after-open', 'page_evaluate')
+          .input({ code: `new Promise(resolve => setTimeout(() => resolve({ waitedMs: ${waitAfterOpenMs} }), ${waitAfterOpenMs}))` })
+          .timeout(Math.max(10_000, waitAfterOpenMs + 2_000)))
+        .whenFalse(toolNode('skip-wait-after-open', 'console_execute').input({
+          expression: '({ skipped: true, step: "wait-after-open", reason: "openFirstMatch=false" })',
+        })))
+      .step(toolNode('emit-summary', 'console_execute').input({
+        expression: `(${JSON.stringify({
+          workflowId,
+          detailUrl, waitUntil, initialWaitMs, retryWaitMs, maxWaitAttempts,
+          readySelector, readyText, titleBlocklist, bodyBlocklist, expectedContextHints,
+          linkSelector, hrefIncludes, textIncludes, regexPattern, regexFlags,
+          maxLinks, includeFallbackLinks, fallbackMaxLinks, openFirstMatch, waitAfterOpenMs,
+          note: 'Inspect extract-links output for matched href/text pairs, contextWarning, fallbackLinks, fallbackSummary, and docsCount.',
+        })})`,
+      }))
+      .build();
+  },
+
+  onStart(ctx) {
+    ctx.emitMetric('workflow_runs_total', 1, 'counter', { workflowId, stage: 'start' });
+  },
+
+  onFinish(ctx) {
+    ctx.emitMetric('workflow_runs_total', 1, 'counter', { workflowId, stage: 'finish' });
+  },
+
+  onError(ctx, error) {
+    ctx.emitMetric('workflow_errors_total', 1, 'counter', { workflowId, error: error.name });
+  },
+};
+
+export default workflow;

package/workflows/temp-mail-open-latest/.jshook-install.json

@@ -0,0 +1,14 @@
+{
+  "version": 1,
+  "kind": "workflow",
+  "slug": "temp-mail-open-latest",
+  "id": "workflow.temp-mail-open-latest.v1",
+  "source": {
+    "type": "git",
+    "repo": "https://github.com/vmoranv/jshook_workflow_temp_mail_open_latest",
+    "ref": "main",
+    "commit": "c0c067c",
+    "subpath": ".",
+    "entry": "workflow.ts"
+  }
+}

package/workflows/temp-mail-open-latest/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 vmoranv
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/workflows/temp-mail-open-latest/README.md

@@ -0,0 +1,61 @@
+# temp-mail-open-latest workflow
+
+Declarative workflow for opening the latest relevant message in a temporary mailbox.
+
+## Entry File
+
+- `workflow.ts`
+
+## Workflow ID
+
+- `workflow.temp-mail-open-latest.v1`
+
+## What It Does
+
+- Navigates to a mailbox page
+- Waits for an inbox-ready selector
+- Optionally clicks a refresh button or trigger
+- Waits for inbox updates to settle
+- Scans mailbox anchors with configurable selectors and matching rules
+- Opens the latest relevant message by navigating to its link
+- Emits a small summary payload for downstream workflows or operators
+
+## Tools Used
+
+- `page_navigate`
+- `page_wait_for_selector`
+- `page_evaluate`
+- `console_execute`
+
+## Config
+
+All config keys live under `workflows.tempMailOpenLatest.*`:
+
+- `mailboxUrl`
+- `waitUntil`
+- `readySelector`
+- `timeoutMs`
+- `refreshSelector`
+- `refreshWaitMs`
+- `itemSelector`
+- `hrefIncludes`
+- `hrefRegex`
+- `textIncludes`
+- `textRegex`
+- `openOrder` (`first` or `last`)
+
+## Matching Strategy
+
+A candidate anchor is selected from `itemSelector` and filtered by:
+
+- href contains `hrefIncludes` (if provided)
+- href matches `hrefRegex` (if provided)
+- text contains `textIncludes` (if provided)
+- text matches `textRegex` (if provided)
+
+Then the workflow opens either the `first` or `last` matching item.
+
+## Notes
+
+- This workflow is intentionally provider-agnostic and is not tied to Qwen.
+- It is designed to pair well with a separate link-extraction workflow on the message detail page.

package/workflows/temp-mail-open-latest/meta.yaml

@@ -0,0 +1,4 @@
+name: temp-mail-open-latest
+description: Declarative workflow for opening the latest relevant message in a temporary mailbox.
+author: vmoranv
+source_repo: https://github.com/vmoranv/jshook_workflow_temp_mail_open_latest

package/workflows/temp-mail-open-latest/package.json

@@ -0,0 +1,23 @@
+{
+  "name": "@jshookmcpextension/workflow-temp-mail-open-latest",
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "typecheck": "tsc --noEmit -p tsconfig.json"
+  },
+  "type": "module",
+  "dependencies": {
+"@jshookmcp/extension-sdk": "^0.3.0",
+    "@modelcontextprotocol/sdk": "^1.27.1",
+    "dotenv": "^17.3.1"
+  },
+  "version": "0.1.0",
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "devDependencies": {
+    "@types/node": "^25.3.0",
+    "typescript": "^5.9.3"
+  },
+  "private": true,
+  "packageManager": "pnpm@10.28.2"
+}

package/workflows/temp-mail-open-latest/tsconfig.json

@@ -0,0 +1,16 @@
+{
+  "compilerOptions": {
+    "target": "ES2022",
+    "module": "NodeNext",
+    "moduleResolution": "NodeNext",
+    "lib": ["ES2022"],
+    "strict": true,
+    "skipLibCheck": true,
+    "esModuleInterop": true,
+    "resolveJsonModule": true,
+    "rootDir": ".",
+    "outDir": "dist"
+  },
+  "include": ["workflow.ts"],
+  "exclude": ["dist", "node_modules"]
+}