@kryptosai/mcp-observatory 0.20.2 → 0.21.0

package/dist/src/validate.js.map

@@ -1 +1 @@
-{"version":3,"file":"validate.js","sourceRoot":"","sources":["../../src/validate.ts"],"names":[],"mappings":"AAEA,SAAS,QAAQ,CAAC,KAAc;IAC9B,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,aAAa,CAAC,GAA4B,EAAE,KAAa,EAAE,KAAa;IAC/E,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;IACzB,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,+BAA+B,KAAK,IAAI,CAAC,CAAC;IACpE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,YAAY,CAAC,GAA4B,EAAE,KAAa,EAAE,KAAa;IAC9E,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;IACzB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,+BAA+B,KAAK,wBAAwB,CAAC,CAAC;IACxF,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAa;IAChD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,QAAQ,GAAG,aAAa,CAAC,IAAI,EAAE,UAAU,EAAE,eAAe,CAAC,CAAC;IAClE,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,EAAE,SAAS,EAAE,eAAe,CAAC,CAAC;IAEhE,IAAI,OAAO,KAAK,MAAM,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,eAAe,CAAC,CAAC;QACxD,OAAO;YACL,QAAQ;YACR,OAAO,EAAE,MAAM;YACf,GAAG;YACH,SAAS,EAAE,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;YAChF,OAAO,EAAE,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAA2B,CAAC,CAAC,CAAC,SAAS;YAC1F,SAAS,EAAE,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;YAChF,QAAQ,EAAE,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAA2B,CAAC,CAAC,CAAC,SAAS;YAC7F,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;SAC3D,CAAC;IACJ,CAAC;IAED,IAAI,OAAO,KAAK,eAAe,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CAAC,0CAA0C,OAAO,wCAAwC,CAAC,CAAC;IAC7G,CAAC;IAED,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,EAAE,SAAS,EAAE,eAAe,CAAC,CAAC;IAChE,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,eAAe,CAAC,CAAC;IAC5D,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;QAClC,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,qBAAqB,CAAC,CAAC;QAChE,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC,CAAC,CAAC;IAEH,OAAO;QACL,QAAQ;QACR,OAAO;QACP,OAAO;QACP,IAAI;QACJ,GAAG,EAAE,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS;QAC9D,GAAG,EAAE,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAA2B,CAAC,CAAC,CAAC,SAAS;QAC9E,SAAS,EAAE,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;QAChF,QAAQ,EAAE,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAA2B,CAAC,CAAC,CAAC,SAAS;QAC7F,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;KAC3D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,IAAa;IAC/C,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IACD,IAAI,IAAI,CAAC,cAAc,CAAC,KAAK,KAAK,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,iDAAiD,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC;IACrG,CAAC;IACD,aAAa,CAAC,IAAI,EAAE,OAAO,EAAE,cAAc,CAAC,CAAC;IAC7C,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,cAAc,CAAC,CAAC;IACjD,aAAa,CAAC,IAAI,EAAE,eAAe,EAAE,cAAc,CAAC,CAAC;IACrD,aAAa,CAAC,IAAI,EAAE,aAAa,EAAE,cAAc,CAAC,CAAC;IACnD,YAAY,CAAC,IAAI,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;IAE7C,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;IACtE,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;IAC3E,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;IACvE,CAAC;IAED,+EAA+E;IAC/E,2EAA2E;IAC3E,OAAO,IAA8B,CAAC;AACxC,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAa;IAChD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC1E,CAAC;IACD,IAAI,IAAI,CAAC,cAAc,CAAC,KAAK,MAAM,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,kDAAkD,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC;IACtG,CAAC;IACD,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC;IAClD,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC;IAClD,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC;IAClD,aAAa,CAAC,IAAI,EAAE,eAAe,EAAE,eAAe,CAAC,CAAC;IAEtD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;IACxE,CAAC;IAED,OAAO,IAA+B,CAAC;AACzC,CAAC"}
+{"version":3,"file":"validate.js","sourceRoot":"","sources":["../../src/validate.ts"],"names":[],"mappings":"AAEA,SAAS,QAAQ,CAAC,KAAc;IAC9B,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,aAAa,CAAC,GAA4B,EAAE,KAAa,EAAE,KAAa;IAC/E,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;IACzB,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,+BAA+B,KAAK,IAAI,CAAC,CAAC;IACpE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,YAAY,CAAC,GAA4B,EAAE,KAAa,EAAE,KAAa;IAC9E,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;IACzB,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,+BAA+B,KAAK,wBAAwB,CAAC,CAAC;IACxF,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,cAAc,CAAC,KAAa,EAAE,KAAa;IAClD,MAAM,KAAK,GACT,KAAK,CAAC,KAAK,CAAC,kCAAkC,CAAC;QAC/C,KAAK,CAAC,KAAK,CAAC,8BAA8B,CAAC;QAC3C,KAAK,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC;IAChD,IAAI,CAAC,KAAK;QAAE,OAAO,KAAK,CAAC;IACzB,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAE,CAAC;IACvB,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IACnC,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,6CAA6C,IAAI,IAAI,CAAC,CAAC;IACjF,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,oBAAoB,CAAC,KAAc,EAAE,KAAa,EAAE,MAAM,GAAG,KAAK;IACzE,IAAI,KAAK,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAC1C,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,wCAAwC,CAAC,CAAC;IACpE,CAAC;IACD,MAAM,MAAM,GAA2B,EAAE,CAAC;IAC1C,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC/C,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,IAAI,GAAG,oBAAoB,CAAC,CAAC;QACvD,CAAC;QACD,MAAM,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,cAAc,CAAC,GAAG,EAAE,GAAG,KAAK,IAAI,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC;IACtE,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,mBAAmB,CAAC,KAAc,EAAE,KAAa;IACxD,IAAI,KAAK,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAC1C,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,+BAA+B,CAAC,CAAC;IAC3D,CAAC;IACD,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,CAAC,EAAE,EAAE;QAC5B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACpD,MAAM,IAAI,KAAK,CAAC,GAAG,KAAK,IAAI,CAAC,+BAA+B,CAAC,CAAC;QAChE,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAa;IAChD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,QAAQ,GAAG,aAAa,CAAC,IAAI,EAAE,UAAU,EAAE,eAAe,CAAC,CAAC;IAClE,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,EAAE,SAAS,EAAE,eAAe,CAAC,CAAC;IAEhE,IAAI,OAAO,KAAK,MAAM,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,eAAe,CAAC,CAAC;QACxD,OAAO;YACL,QAAQ;YACR,OAAO,EAAE,MAAM;YACf,GAAG;YACH,SAAS,EAAE,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,cAAc,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,yBAAyB,CAAC,CAAC,CAAC,CAAC,SAAS;YAC3H,OAAO,EAAE,oBAAoB,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,uBAAuB,EAAE,IAAI,CAAC;YAC7E,SAAS,EAAE,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;YAChF,QAAQ,EAAE,oBAAoB,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,wBAAwB,CAAC;YAC1E,oBAAoB,EAAE,mBAAmB,CAAC,IAAI,CAAC,sBAAsB,CAAC,EAAE,oCAAoC,CAAC;YAC7G,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;SAC3D,CAAC;IACJ,CAAC;IAED,IAAI,OAAO,KAAK,eAAe,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CAAC,0CAA0C,OAAO,wCAAwC,CAAC,CAAC;IAC7G,CAAC;IAED,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,EAAE,SAAS,EAAE,eAAe,CAAC,CAAC;IAChE,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,eAAe,CAAC,CAAC;IAC5D,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;QAClC,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,qBAAqB,CAAC,CAAC;QAChE,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC,CAAC,CAAC;IAEH,OAAO;QACL,QAAQ;QACR,OAAO;QACP,OAAO;QACP,IAAI;QACJ,GAAG,EAAE,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS;QAC9D,GAAG,EAAE,oBAAoB,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,mBAAmB,EAAE,IAAI,CAAC;QACjE,SAAS,EAAE,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,SAAS;QAChF,QAAQ,EAAE,oBAAoB,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,wBAAwB,CAAC;QAC1E,oBAAoB,EAAE,mBAAmB,CAAC,IAAI,CAAC,sBAAsB,CAAC,EAAE,oCAAoC,CAAC;QAC7G,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS;KAC3D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,IAAa;IAC/C,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;IACzE,CAAC;IACD,IAAI,IAAI,CAAC,cAAc,CAAC,KAAK,KAAK,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,iDAAiD,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC;IACrG,CAAC;IACD,aAAa,CAAC,IAAI,EAAE,OAAO,EAAE,cAAc,CAAC,CAAC;IAC7C,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,cAAc,CAAC,CAAC;IACjD,aAAa,CAAC,IAAI,EAAE,eAAe,EAAE,cAAc,CAAC,CAAC;IACrD,aAAa,CAAC,IAAI,EAAE,aAAa,EAAE,cAAc,CAAC,CAAC;IACnD,YAAY,CAAC,IAAI,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;IAE7C,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;IACtE,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;IAC3E,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,mDAAmD,CAAC,CAAC;IACvE,CAAC;IAED,+EAA+E;IAC/E,2EAA2E;IAC3E,OAAO,IAA8B,CAAC;AACxC,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,IAAa;IAChD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC1E,CAAC;IACD,IAAI,IAAI,CAAC,cAAc,CAAC,KAAK,MAAM,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,kDAAkD,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC;IACtG,CAAC;IACD,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC;IAClD,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC;IAClD,aAAa,CAAC,IAAI,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC;IAClD,aAAa,CAAC,IAAI,EAAE,eAAe,EAAE,eAAe,CAAC,CAAC;IAEtD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;IACxE,CAAC;IAED,OAAO,IAA+B,CAAC;AACzC,CAAC"}

package/docs/architecture.md

@@ -0,0 +1,32 @@
+# Architecture
+
+MCP Observatory is intentionally small. The core data flow is:
+
+1. **Target config**
+   A JSON description of how to start a target via the local-process adapter.
+2. **Adapter**
+   The adapter starts an MCP server over stdio and establishes a client session.
+3. **Checks**
+   The runner executes `tools`, `prompts`, `resources`, and `semantics`.
+4. **Run artifact**
+   Results are normalized into a stable, versioned JSON artifact with a top-level `gate`.
+5. **Diff**
+   Two run artifacts can be compared to classify regressions and recoveries.
+6. **Report**
+   Run or diff artifacts render as terminal output, JSON, or Markdown.
+
+## Design Intent
+
+- keep the adapter boundary obvious so more target types can be added later
+- keep checks isolated and typed
+- treat artifacts as product surfaces, not incidental output
+- keep the Markdown report strong enough to stand on its own in issues, PRs, and CI
+
+## Stability Surfaces
+
+These are the most important surfaces to preserve carefully:
+
+- artifact schema
+- diff semantics
+- `unsupported` vs `failed` interpretation
+- Markdown report structure and usefulness

package/docs/certification-campaign-template.md

@@ -0,0 +1,167 @@
+# MCP Observatory Certification Campaign
+
+Use this tracker for outbound PR waves against MCP server repositories.
+
+## Campaign Goal
+
+Open helpful PRs that add MCP Observatory CI checks and a public compatibility/security badge to popular MCP server projects.
+
+One-shot campaign target:
+
+- 50 researched repos
+- 25 PRs opened
+- 10 accepted checks or badges
+- 5 public proof points added to launch materials
+- 3 production/security pilot conversations started
+
+## Qualification Rules
+
+Prioritize:
+
+- active MCP server repos
+- clear install/run command
+- recent commit or release in the last 90 days
+- 100+ stars, meaningful npm downloads, directory popularity, or enterprise category
+- developer tools, security, CI/CD, database, browser automation, SaaS, cloud, or finance servers
+
+Skip:
+
+- servers that require private credentials to start
+- repos with destructive default tools
+- abandoned repos unless they have major download volume
+- projects that already have equivalent MCP compatibility/security CI
+
+## Tracker
+
+| Priority | Repo | Package/Command | Category | Stars/Downloads/Listing Signal | Activity Signal | Risk Notes | Status | PR URL | Accepted/Badge/Proof |
+| ---: | --- | --- | --- | --- | --- | --- | --- | --- | --- |
+| 1 | `owner/repo` | `npx -y package` | Security | | | | researched | | |
+| 2 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 3 | `owner/repo` | `uvx package` | Browser Automation | | | | researched | | |
+| 4 | `owner/repo` | `docker run image` | Database | | | | researched | | |
+| 5 | `owner/repo` | `npx -y package` | Cloud | | | | researched | | |
+| 6 | `owner/repo` | `npx -y package` | SaaS | | | | researched | | |
+| 7 | `owner/repo` | `uvx package` | Finance | | | | researched | | |
+| 8 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 9 | `owner/repo` | `npx -y package` | Security | | | | researched | | |
+| 10 | `owner/repo` | `docker run image` | Infrastructure | | | | researched | | |
+| 11 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 12 | `owner/repo` | `uvx package` | Data | | | | researched | | |
+| 13 | `owner/repo` | `npx -y package` | Search | | | | researched | | |
+| 14 | `owner/repo` | `npx -y package` | Filesystem | | | | researched | | |
+| 15 | `owner/repo` | `docker run image` | Browser Automation | | | | researched | | |
+| 16 | `owner/repo` | `npx -y package` | API | | | | researched | | |
+| 17 | `owner/repo` | `uvx package` | Security | | | | researched | | |
+| 18 | `owner/repo` | `npx -y package` | Database | | | | researched | | |
+| 19 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 20 | `owner/repo` | `docker run image` | Cloud | | | | researched | | |
+| 21 | `owner/repo` | `npx -y package` | SaaS | | | | researched | | |
+| 22 | `owner/repo` | `uvx package` | Data | | | | researched | | |
+| 23 | `owner/repo` | `npx -y package` | Security | | | | researched | | |
+| 24 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 25 | `owner/repo` | `docker run image` | Infrastructure | | | | researched | | |
+| 26 | `owner/repo` | `npx -y package` | Browser Automation | | | | researched | | |
+| 27 | `owner/repo` | `uvx package` | API | | | | researched | | |
+| 28 | `owner/repo` | `npx -y package` | Database | | | | researched | | |
+| 29 | `owner/repo` | `npx -y package` | Search | | | | researched | | |
+| 30 | `owner/repo` | `docker run image` | Cloud | | | | researched | | |
+| 31 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 32 | `owner/repo` | `uvx package` | Security | | | | researched | | |
+| 33 | `owner/repo` | `npx -y package` | SaaS | | | | researched | | |
+| 34 | `owner/repo` | `npx -y package` | Data | | | | researched | | |
+| 35 | `owner/repo` | `docker run image` | Infrastructure | | | | researched | | |
+| 36 | `owner/repo` | `npx -y package` | Finance | | | | researched | | |
+| 37 | `owner/repo` | `uvx package` | Browser Automation | | | | researched | | |
+| 38 | `owner/repo` | `npx -y package` | API | | | | researched | | |
+| 39 | `owner/repo` | `npx -y package` | Database | | | | researched | | |
+| 40 | `owner/repo` | `docker run image` | Security | | | | researched | | |
+| 41 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 42 | `owner/repo` | `uvx package` | Data | | | | researched | | |
+| 43 | `owner/repo` | `npx -y package` | Search | | | | researched | | |
+| 44 | `owner/repo` | `npx -y package` | SaaS | | | | researched | | |
+| 45 | `owner/repo` | `docker run image` | Cloud | | | | researched | | |
+| 46 | `owner/repo` | `npx -y package` | Filesystem | | | | researched | | |
+| 47 | `owner/repo` | `uvx package` | Security | | | | researched | | |
+| 48 | `owner/repo` | `npx -y package` | Developer Tools | | | | researched | | |
+| 49 | `owner/repo` | `npx -y package` | Infrastructure | | | | researched | | |
+| 50 | `owner/repo` | `docker run image` | Browser Automation | | | | researched | | |
+
+Statuses:
+
+- `researched`
+- `branch-ready`
+- `pr-opened`
+- `accepted`
+- `declined`
+- `needs-maintainer-input`
+- `proof-captured`
+- `pilot-lead`
+
+## PR Checklist
+
+- Add `.github/workflows/mcp-observatory.yml`
+- Use `deep: true` and `security: true`
+- Keep `fail-on-regression: true` unless the repo is noisy
+- Add README badge only when it fits the repo style
+- Include the maintainer PR body from `certification-distribution.md`
+- Do not include raw telemetry, private evidence, or sales pricing
+
+## PR Templates
+
+### Workflow-Only PR
+
+```md
+This adds a lightweight MCP Observatory check for this MCP server.
+
+Why it helps:
+
+- verifies MCP tools/prompts/resources still respond correctly
+- catches schema drift and common security footguns before release
+- posts a readable PR report for maintainers
+- gives users a compatibility signal when evaluating MCP servers
+
+It runs in GitHub Actions and does not require an account. If the check is too strict for this repo, `fail-on-regression: false` can be used while keeping the report visible.
+```
+
+### Workflow + Badge PR
+
+```md
+This adds MCP Observatory CI plus a small README badge so users can see this server is checked for MCP compatibility, schema drift, and common security issues.
+
+The workflow runs on PRs and pushes to `main`. The badge links back to MCP Observatory for context and can be removed if it does not fit the repo style.
+```
+
+### Issue-Only Fallback
+
+```md
+I tried preparing a small MCP Observatory CI check for this server, but did not want to open a PR without confirming the safest startup command.
+
+Would you accept a workflow that runs:
+
+```bash
+npx @kryptosai/mcp-observatory test <server command> --security --deep
+```
+
+The goal is to give users a visible compatibility/security signal and catch schema drift before releases.
+```
+
+## Proof Capture
+
+For accepted PRs, record:
+
+- repo
+- PR URL
+- category
+- accepted date
+- badge added: yes/no
+- CI status
+- quote or maintainer reaction if public
+- whether the repo appears in Glama, PulseMCP, Smithery, or awesome-MCP lists
+
+Use accepted PRs as proof for:
+
+- README traction section
+- launch posts
+- enterprise outreach
+- directory listing copy
+- weekly MCP safety report

package/docs/certification-distribution.md

@@ -0,0 +1,125 @@
+# Certification Distribution Loop
+
+Use this when opening helpful PRs to MCP server projects. The motion is simple: run MCP Observatory, give the maintainer a useful security/compatibility check, and leave them with a badge/report they can keep.
+
+## Offer
+
+MCP Observatory gives MCP server maintainers:
+
+- CI coverage for tools, prompts, resources, schema quality, and security checks
+- A PR comment report on every change
+- A README badge they can show publicly
+- A local-first OSS path with no account required
+- A paid production path only if they need hosted history, private repo reporting, support, certification, or fleet visibility
+
+## Copy-Paste Badge
+
+For repos that add the GitHub Action, suggest this README badge:
+
+```md
+[![MCP Observatory](https://img.shields.io/badge/MCP%20Observatory-enabled-2563eb)](https://github.com/KryptosAI/mcp-observatory)
+```
+
+For repos that generate a score badge, suggest:
+
+```bash
+npx @kryptosai/mcp-observatory badge npx -y <server-package> --output docs/mcp-health.svg
+```
+
+```md
+[![MCP Health](./docs/mcp-health.svg)](https://github.com/KryptosAI/mcp-observatory)
+```
+
+## GitHub Action Template
+
+Fast path:
+
+```bash
+npx @kryptosai/mcp-observatory init-ci --command "npx -y <server-package>" --badge
+```
+
+That creates:
+
+- `.github/workflows/mcp-observatory.yml`
+- `docs/mcp-observatory-badge.md`
+
+Manual template:
+
+```yaml
+name: MCP Observatory
+
+on:
+  pull_request:
+  push:
+    branches: [main]
+
+jobs:
+  mcp-observatory:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v6
+      - uses: KryptosAI/mcp-observatory/action@main
+        with:
+          command: npx -y <server-package>
+          deep: true
+          security: true
+          comment-on-pr: true
+```
+
+For repos with a local target config:
+
+```yaml
+- uses: KryptosAI/mcp-observatory/action@main
+  with:
+    target: ./observatory-target.json
+    deep: true
+    security: true
+```
+
+## Maintainer PR Body
+
+```md
+This adds a lightweight MCP Observatory check for this server.
+
+Why it helps:
+
+- verifies MCP tools/prompts/resources still respond correctly
+- catches schema drift and common security footguns before release
+- posts a readable PR report for maintainers
+- creates a public compatibility signal for users evaluating MCP servers
+
+It runs locally/inside GitHub Actions and does not require an account. If the check is too strict for this repo, `fail-on-regression: false` can be used while keeping the PR report visible.
+```
+
+## Comment For Passing Repos
+
+```md
+Nice, this server passes MCP Observatory checks. If you want the signal in the README, you can add:
+
+```md
+[![MCP Observatory](https://img.shields.io/badge/MCP%20Observatory-enabled-2563eb)](https://github.com/KryptosAI/mcp-observatory)
+```
+
+That gives users a quick compatibility/security signal when they are choosing MCP servers.
+```
+
+## Targeting Order
+
+Prioritize repos with:
+
+- 100+ GitHub stars or visible npm downloads
+- active releases in the last 90 days
+- MCP servers used by developer tools, security, CI/CD, databases, browser automation, or enterprise SaaS
+- no existing MCP compatibility/security CI
+- clear package command that can run in GitHub Actions
+
+Avoid drive-by PRs where the server requires private credentials, paid services, or destructive default actions.
+
+## Directory Follow-Through
+
+After a repo accepts the check or badge:
+
+- ask the maintainer to mention “tested with MCP Observatory” in their MCP directory listing
+- update the MCP Observatory launch/story docs with the accepted repo
+- use accepted PRs as proof in enterprise outreach
+- invite production users to hosted reporting or certification pilots

package/docs/compatibility.md

@@ -0,0 +1,164 @@
+# MCP Server Compatibility
+
+MCP Observatory supports two transport adapters — **local-process (stdio)** and **HTTP (Streamable HTTP + SSE)** — which together cover ~95% of the MCP server ecosystem.
+
+This document tracks which servers work, how to configure them, and what patterns are not yet supported.
+
+## Tested and Passing
+
+These servers have been tested directly with MCP Observatory and produce valid results.
+
+| Server | Package | Transport | Setup | Tools | Prompts | Resources |
+|--------|---------|-----------|-------|-------|---------|-----------|
+| Everything | [`@modelcontextprotocol/server-everything`](https://www.npmjs.com/package/@modelcontextprotocol/server-everything) | stdio | Zero-config | ✅ pass | ✅ pass | ✅ pass |
+| Filesystem | [`@modelcontextprotocol/server-filesystem`](https://www.npmjs.com/package/@modelcontextprotocol/server-filesystem) | stdio | Path args | ✅ pass | — unsupported | — unsupported |
+| Context7 | [`@upstash/context7-mcp`](https://www.npmjs.com/package/@upstash/context7-mcp) | stdio | Zero-config | ✅ pass | — unsupported | — unsupported |
+| Puppeteer | [`puppeteer-mcp-server`](https://www.npmjs.com/package/puppeteer-mcp-server) | stdio | Zero-config | ✅ pass | — unsupported | ✅ pass |
+| OpenTofu | [`@opentofu/opentofu-mcp-server`](https://www.npmjs.com/package/@opentofu/opentofu-mcp-server) | stdio | Zero-config | ✅ pass | — unsupported | ✅ pass |
+| Ref Tools | [`ref-tools-mcp`](https://www.npmjs.com/package/ref-tools-mcp) | stdio | Zero-config | ✅ pass | ✅ pass | — unsupported |
+| Promptopia | [`promptopia-mcp`](https://www.npmjs.com/package/promptopia-mcp) | stdio | Zero-config | ✅ pass | ✅ pass | — unsupported |
+| GitHub MCP | Docker-based | stdio | `GITHUB_PERSONAL_ACCESS_TOKEN` | ✅ pass | ✅ pass | ✅ pass |
+
+## Compatible (stdio, zero-config or env vars only)
+
+These servers use standard stdio transport and should work with MCP Observatory. Most just need an API key as an env var.
+
+### Zero-config (just `npx`)
+
+| Server | Package | Command |
+|--------|---------|---------|
+| Sequential Thinking | [`@modelcontextprotocol/server-sequential-thinking`](https://www.npmjs.com/package/@modelcontextprotocol/server-sequential-thinking) | `npx -y @modelcontextprotocol/server-sequential-thinking` |
+| Memory | [`@modelcontextprotocol/server-memory`](https://www.npmjs.com/package/@modelcontextprotocol/server-memory) | `npx -y @modelcontextprotocol/server-memory` |
+| ESLint | [`@eslint/mcp`](https://www.npmjs.com/package/@eslint/mcp) | `npx -y @eslint/mcp` |
+| SAP UI5 | [`@ui5/mcp-server`](https://www.npmjs.com/package/@ui5/mcp-server) | `npx -y @ui5/mcp-server` |
+
+### API key via env var
+
+| Server | Package | Env Var | Command |
+|--------|---------|---------|---------|
+| Brave Search | [`@modelcontextprotocol/server-brave-search`](https://www.npmjs.com/package/@modelcontextprotocol/server-brave-search) | `BRAVE_API_KEY` | `npx -y @modelcontextprotocol/server-brave-search` |
+| Sentry | [`@sentry/mcp-server`](https://www.npmjs.com/package/@sentry/mcp-server) | `SENTRY_AUTH_TOKEN` | `npx -y @sentry/mcp-server` |
+| Tavily | [`tavily-mcp`](https://www.npmjs.com/package/tavily-mcp) | `TAVILY_API_KEY` | `npx -y tavily-mcp` |
+| Firecrawl | [`firecrawl-mcp`](https://www.npmjs.com/package/firecrawl-mcp) | `FIRECRAWL_API_KEY` | `npx -y firecrawl-mcp` |
+| HubSpot | [`@hubspot/mcp-server`](https://www.npmjs.com/package/@hubspot/mcp-server) | API key | `npx -y @hubspot/mcp-server` |
+| LaunchDarkly | [`@launchdarkly/mcp-server`](https://www.npmjs.com/package/@launchdarkly/mcp-server) | API key | `npx -y @launchdarkly/mcp-server` |
+| Notion | [`@notionhq/notion-mcp-server`](https://www.npmjs.com/package/@notionhq/notion-mcp-server) | `OPENAPI_MCP_HEADERS` | `npx -y @notionhq/notion-mcp-server` |
+| Stripe | [`@stripe/mcp`](https://www.npmjs.com/package/@stripe/mcp) | `--api-key` arg | `npx -y @stripe/mcp --api-key sk-...` |
+
+Target config example with env vars:
+
+```json
+{
+  "targetId": "brave-search",
+  "adapter": "local-process",
+  "command": "npx",
+  "args": ["-y", "@modelcontextprotocol/server-brave-search"],
+  "env": { "BRAVE_API_KEY": "your-key-here" },
+  "timeoutMs": 15000
+}
+```
+
+### Positional args required
+
+| Server | Package | Args | Command |
+|--------|---------|------|---------|
+| Filesystem | [`@modelcontextprotocol/server-filesystem`](https://www.npmjs.com/package/@modelcontextprotocol/server-filesystem) | Directory paths | `npx -y @modelcontextprotocol/server-filesystem /path/to/dir` |
+| PostgreSQL | [`@modelcontextprotocol/server-postgres`](https://www.npmjs.com/package/@modelcontextprotocol/server-postgres) | Connection URL | `npx -y @modelcontextprotocol/server-postgres postgres://...` |
+| SQLite | [`@modelcontextprotocol/server-sqlite`](https://www.npmjs.com/package/@modelcontextprotocol/server-sqlite) | `--db-path` | `npx -y @modelcontextprotocol/server-sqlite --db-path ./db.sqlite` |
+| Redis | [`@modelcontextprotocol/server-redis`](https://www.npmjs.com/package/@modelcontextprotocol/server-redis) | Redis URL | `npx -y @modelcontextprotocol/server-redis redis://localhost:6379` |
+| Git | [`mcp-server-git`](https://pypi.org/project/mcp-server-git/) | `--repository` | `uvx mcp-server-git --repository /path/to/repo` |
+| Nx | [`nx-mcp`](https://www.npmjs.com/package/nx-mcp) | Workspace path | `npx -y nx-mcp --workspace /path` |
+
+### Python servers (via `uvx`)
+
+Python-based MCP servers work with the `local-process` adapter as long as `uv` is installed:
+
+```json
+{
+  "targetId": "git-server",
+  "adapter": "local-process",
+  "command": "uvx",
+  "args": ["mcp-server-git", "--repository", "."],
+  "timeoutMs": 15000
+}
+```
+
+## Compatible (HTTP/SSE remote)
+
+These servers expose a hosted HTTP endpoint. Use the `http` adapter:
+
+| Server | URL | Auth |
+|--------|-----|------|
+| Cloudflare | `https://observability.mcp.cloudflare.com/mcp` | API token via `authToken` |
+| Exa | `https://mcp.exa.ai/mcp` | `EXA_API_KEY` via `authToken` |
+| Tavily (remote) | `https://mcp.tavily.com/mcp` | Bearer token via `authToken` |
+| Context7 (remote) | `https://mcp.context7.com/mcp` | Optional API key |
+
+Target config example:
+
+```json
+{
+  "targetId": "cloudflare",
+  "adapter": "http",
+  "url": "https://observability.mcp.cloudflare.com/mcp",
+  "authToken": "your-cloudflare-api-token",
+  "timeoutMs": 15000
+}
+```
+
+## Compatible (Docker)
+
+Many MCP servers ship Docker images. These work with the `local-process` adapter — Docker's `-i` flag attaches stdin/stdout, which is standard stdio transport.
+
+```json
+{
+  "targetId": "github-docker",
+  "adapter": "local-process",
+  "command": "docker",
+  "args": ["run", "-i", "--rm",
+    "-e", "GITHUB_PERSONAL_ACCESS_TOKEN=ghp_...",
+    "ghcr.io/github/github-mcp-server"],
+  "timeoutMs": 30000
+}
+```
+
+```bash
+mcp-observatory run -- docker run -i --rm ghcr.io/github/github-mcp-server
+```
+
+All official `@modelcontextprotocol/server-*` packages publish Docker images that work this way.
+
+## Known Incompatible
+
+These servers do not work with MCP Observatory due to transport or architecture constraints:
+
+| Server | Why | Workaround |
+|--------|-----|------------|
+| BrowserTools MCP | Custom WebSocket transport between Chrome extension, middleware, and MCP server | None — non-standard transport |
+| Google Drive | Requires interactive OAuth browser flow before first use | Pre-authenticate manually, then run Observatory |
+| `@modelcontextprotocol/server-map` | Times out under stdio harness | May need specific startup args |
+| `@modelcontextprotocol/server-threejs` | Closes connection before init | App-oriented, not a pure stdio server |
+| `@modelcontextprotocol/server-pdf` | Times out under probe setup | May need specific startup args |
+| `@jsonresume/mcp` | Closes connection before init | May expect different invocation |
+
+## Transport Coverage
+
+MCP Observatory covers both standard MCP transports:
+
+| Transport | Adapter | Status |
+|-----------|---------|--------|
+| **stdio** (subprocess, JSON-RPC over stdin/stdout) | `local-process` | ✅ Supported |
+| **Streamable HTTP** (POST to endpoint, SSE response) | `http` | ✅ Supported |
+| **HTTP+SSE** (deprecated, separate GET/POST endpoints) | `http` (fallback) | ✅ Supported |
+| WebSocket (non-standard) | — | ❌ Not supported |
+
+Per the [MCP specification](https://modelcontextprotocol.io/specification/2025-06-18/basic/transports), stdio and Streamable HTTP are the two standard transports. The deprecated HTTP+SSE transport is handled automatically via SDK fallback.
+
+## Ecosystem Stats
+
+Based on analysis of the top 30+ MCP servers by npm downloads:
+
+- **~85%** use stdio as primary transport → covered by `local-process` adapter
+- **~10%** are HTTP-only remote services → covered by `http` adapter
+- **~5%** support both stdio and HTTP → both adapters work
+- **<1%** use non-standard transports (WebSocket) → not supported

package/docs/decisions.md

@@ -0,0 +1,23 @@
+# Decisions
+
+These decisions exist so the repo does not drift into vague feature accumulation.
+
+## 2026-03-19: Semantics v1 stays intentionally narrow
+
+`semantics` only checks advertised capability, callable endpoint response, and minimal expected shape. The first job of MCP Observatory is to explain drift, not to claim semantic correctness it does not yet earn.
+
+## 2026-03-19: The project stays CLI-first
+
+The durable product surface is the artifact plus the report. A dashboard can wait. Until the evidence surface is boringly trustworthy, adding hosted UX would mostly be theater.
+
+## 2026-03-19: `unsupported` and `failed` remain separate
+
+`unsupported` means the target did not advertise the capability. `failed` means the capability path or startup path should have worked and did not. Collapsing those states would hide useful ecosystem truth.
+
+## 2026-03-19: installability is part of the credibility bar
+
+The package stays scoped as `@kryptosai/mcp-observatory`, and the release flow should be able to publish it. Until npm credentials are configured, GitHub release tarballs are the honest fallback. The repo should never imply a one-command install path that does not actually work.
+
+## 2026-03-19: Every release needs a reason to exist
+
+Packaging-only churn is not a release story. Every release should include at least one real-server learning, one report-quality improvement, or one schema trust improvement.

package/docs/demo.svg

@@ -0,0 +1,59 @@
+<svg xmlns="http://www.w3.org/2000/svg" width="820" height="320" viewBox="0 0 820 320">
+  <defs>
+    <style>
+      .bg { fill: #1e1e2e; }
+      .title-bar { fill: #313244; }
+      .dot-red { fill: #f38ba8; }
+      .dot-yellow { fill: #f9e2af; }
+      .dot-green { fill: #a6e3a1; }
+      .text { fill: #cdd6f4; font-family: 'Menlo', 'Monaco', 'Courier New', monospace; font-size: 13px; }
+      .bold { fill: #cdd6f4; font-weight: bold; }
+      .dim { fill: #6c7086; }
+      .green { fill: #a6e3a1; }
+      .yellow { fill: #f9e2af; }
+      .prompt { fill: #89b4fa; }
+      .line { stroke: #45475a; stroke-width: 1; }
+    </style>
+  </defs>
+  <rect class="bg" width="820" height="320" rx="10"/>
+  <rect class="title-bar" width="820" height="36" rx="10"/>
+  <rect class="title-bar" x="0" y="26" width="820" height="10"/>
+  <circle class="dot-red" cx="20" cy="18" r="6"/>
+  <circle class="dot-yellow" cx="40" cy="18" r="6"/>
+  <circle class="dot-green" cx="60" cy="18" r="6"/>
+  <text class="dim" x="350" y="22" text-anchor="middle">mcp-observatory — scan</text>
+
+  <text class="prompt" x="20" y="65">$</text>
+  <text class="text" x="35" y="65">npx @kryptosai/mcp-observatory scan --invoke-tools</text>
+
+  <text class="bold" x="20" y="100">Discovered 2 MCP server(s):</text>
+  <text class="dim" x="30" y="118">github (from ~/.claude.json)</text>
+  <text class="dim" x="30" y="136">filesystem (from ~/.claude.json)</text>
+
+  <text class="bold" x="20" y="170">Scan Results:</text>
+
+  <text class="bold" x="20" y="195">Target</text>
+  <text class="bold" x="230" y="195">Gate</text>
+  <text class="bold" x="300" y="195">Tools</text>
+  <text class="bold" x="400" y="195">Prompts</text>
+  <text class="bold" x="510" y="195">Resources</text>
+  <text class="bold" x="630" y="195">Invoke</text>
+
+  <line class="line" x1="20" y1="203" x2="750" y2="203"/>
+
+  <text class="text" x="20" y="225">github</text>
+  <text class="green" x="230" y="225">pass</text>
+  <text class="green" x="300" y="225">pass</text>
+  <text class="green" x="400" y="225">pass</text>
+  <text class="green" x="510" y="225">pass</text>
+  <text class="yellow" x="630" y="225">partial</text>
+
+  <text class="text" x="20" y="250">filesystem</text>
+  <text class="green" x="230" y="250">pass</text>
+  <text class="green" x="300" y="250">pass</text>
+  <text class="dim" x="400" y="250">unsupported</text>
+  <text class="dim" x="510" y="250">unsupported</text>
+  <text class="green" x="630" y="250">pass</text>
+
+  <text class="dim" x="20" y="295">Checked 2 servers in 3.2s</text>
+</svg>