npm - @kya-os/create-mcpi-app - Versions diffs - 1.7.38-canary.1 → 1.7.38 - Mend

@kya-os/create-mcpi-app 1.7.38-canary.1 → 1.7.38

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (67) hide show

package/.turbo/turbo-build.log +4 -0
package/.turbo/turbo-test$colon$coverage.log +755 -0
package/.turbo/turbo-test.log +200 -0
package/dist/helpers/fetch-cloudflare-mcpi-template.d.ts.map +1 -1
package/dist/helpers/fetch-cloudflare-mcpi-template.js +43 -912
package/dist/helpers/fetch-cloudflare-mcpi-template.js.map +1 -1
package/dist/utils/fetch-remote-config.d.ts.map +1 -1
package/dist/utils/fetch-remote-config.js +2 -2
package/dist/utils/fetch-remote-config.js.map +1 -1
package/package/package.json +77 -0
package/package.json +1 -1
package/ARCHITECTURE_ANALYSIS.md +0 -392
package/CHANGELOG.md +0 -372
package/DEPRECATION_WARNINGS_ANALYSIS.md +0 -192
package/IMPLEMENTATION_SUMMARY.md +0 -108
package/REMEDIATION_PLAN.md +0 -99
package/dist/.tsbuildinfo +0 -1
package/scripts/prepare-pack.js +0 -47
package/scripts/validate-no-workspace.js +0 -79
package/src/__tests__/cloudflare-template.test.ts +0 -490
package/src/__tests__/helpers/fetch-cloudflare-mcpi-template.test.ts +0 -337
package/src/__tests__/helpers/generate-config.test.ts +0 -312
package/src/__tests__/helpers/generate-identity.test.ts +0 -271
package/src/__tests__/helpers/install.test.ts +0 -370
package/src/__tests__/helpers/validate-project-structure.test.ts +0 -467
package/src/__tests__.bak/regression.test.ts +0 -434
package/src/effects/index.ts +0 -80
package/src/helpers/__tests__/config-builder.spec.ts +0 -231
package/src/helpers/apply-identity-preset.ts +0 -209
package/src/helpers/config-builder.ts +0 -165
package/src/helpers/copy-template.ts +0 -11
package/src/helpers/create.ts +0 -239
package/src/helpers/fetch-cloudflare-mcpi-template.ts +0 -2393
package/src/helpers/fetch-cloudflare-template.ts +0 -361
package/src/helpers/fetch-mcpi-template.ts +0 -236
package/src/helpers/fetch-xmcp-template.ts +0 -153
package/src/helpers/generate-config.ts +0 -118
package/src/helpers/generate-identity.ts +0 -163
package/src/helpers/identity-manager.ts +0 -186
package/src/helpers/install.ts +0 -79
package/src/helpers/rename.ts +0 -17
package/src/helpers/validate-project-structure.ts +0 -127
package/src/index.ts +0 -520
package/src/utils/__tests__/fetch-remote-config.test.ts +0 -271
package/src/utils/check-node.ts +0 -17
package/src/utils/fetch-remote-config.ts +0 -179
package/src/utils/is-folder-empty.ts +0 -60
package/src/utils/validate-project-name.ts +0 -132
package/test-cloudflare/README.md +0 -164
package/test-cloudflare/package.json +0 -28
package/test-cloudflare/src/index.ts +0 -341
package/test-cloudflare/src/tools/greet.ts +0 -19
package/test-cloudflare/tests/cache-invalidation.test.ts +0 -410
package/test-cloudflare/tests/cors-security.test.ts +0 -349
package/test-cloudflare/tests/delegation.test.ts +0 -335
package/test-cloudflare/tests/do-routing.test.ts +0 -314
package/test-cloudflare/tests/integration.test.ts +0 -205
package/test-cloudflare/tests/session-management.test.ts +0 -359
package/test-cloudflare/tsconfig.json +0 -16
package/test-cloudflare/vitest.config.ts +0 -9
package/test-cloudflare/wrangler.toml +0 -37
package/test-node/README.md +0 -44
package/test-node/package.json +0 -23
package/test-node/src/tools/greet.ts +0 -25
package/test-node/xmcp.config.ts +0 -20
package/tsconfig.json +0 -26
package/vitest.config.ts +0 -14

package/test-cloudflare/tests/cache-invalidation.test.ts DELETED Viewed

@@ -1,410 +0,0 @@
-import { describe, test, expect, vi, beforeEach } from 'vitest';
-/**
- * Cache Invalidation Tests
- * Tests various cache invalidation strategies for security and performance
- */
-describe('Cache Invalidation Strategies', () => {
-  // Mock KV namespaces
-  const mockKV = {
-    get: vi.fn(),
-    put: vi.fn(),
-    delete: vi.fn(),
-    list: vi.fn()
-  };
-  beforeEach(() => {
-    vi.clearAllMocks();
-    global.fetch = vi.fn();
-  });
-  describe('Short TTL Strategy (Recommended)', () => {
-    test('should use 5-minute TTL for delegation cache', async () => {
-      const token = 'test-token';
-      const CACHE_TTL = 5 * 60; // 5 minutes
-      // Store with short TTL
-      await mockKV.put(
-        `delegation:${token}`,
-        'valid',
-        { expirationTtl: CACHE_TTL }
-      );
-      expect(mockKV.put).toHaveBeenCalledWith(
-        `delegation:${token}`,
-        'valid',
-        { expirationTtl: 300 } // 5 minutes in seconds
-      );
-    });
-    test('should use 1-minute TTL for verification cache', async () => {
-      const token = 'verified-token';
-      const VERIFICATION_TTL = 60; // 1 minute
-      // Cache verification result
-      await mockKV.put(
-        `verified:${token.substring(0, 16)}`,
-        '1',
-        { expirationTtl: VERIFICATION_TTL }
-      );
-      expect(mockKV.put).toHaveBeenCalledWith(
-        expect.stringContaining('verified:'),
-        '1',
-        { expirationTtl: 60 }
-      );
-    });
-    test('should re-verify after TTL expiration', async () => {
-      const token = 'expired-cache-token';
-      const cacheKey = `verified:${token.substring(0, 16)}`;
-      // First check - cache miss
-      mockKV.get.mockResolvedValueOnce(null);
-      // Verify with API
-      global.fetch = vi.fn().mockResolvedValueOnce({
-        ok: true
-      });
-      // Actually call the API
-      await global.fetch('https://test-api/verify');
-      // Cache the result
-      await mockKV.put(cacheKey, '1', { expirationTtl: 60 });
-      // After TTL expires, should re-verify
-      mockKV.get.mockResolvedValueOnce(null); // Cache expired
-      // Call API again
-      await global.fetch('https://test-api/verify');
-      // Should have been called twice
-      expect(global.fetch).toHaveBeenCalledTimes(2);
-    });
-    test('should handle cache miss gracefully', async () => {
-      const token = 'no-cache-token';
-      // Cache miss
-      mockKV.get.mockResolvedValueOnce(null);
-      // Should proceed with verification
-      global.fetch = vi.fn().mockResolvedValueOnce({
-        ok: true
-      });
-      // Should not throw
-      expect(() => mockKV.get(`verified:${token.substring(0, 16)}`)).not.toThrow();
-    });
-  });
-  describe('Immediate Invalidation on Revocation', () => {
-    test('should invalidate all caches when delegation revoked', async () => {
-      const sessionId = 'revoked-session';
-      const agentDid = 'did:key:z6MkhaXgBZDvotDkL5257faiztiGiC2QtKLGpbnnEGta2doK';
-      const token = 'revoked-token';
-      const keysToDelete = [
-        `session:${sessionId}`,
-        `agent:${agentDid}:delegation`,
-        `verified:${token.substring(0, 16)}`
-      ];
-      // Perform invalidation
-      for (const key of keysToDelete) {
-        await mockKV.delete(key);
-      }
-      // Verify all caches cleared
-      expect(mockKV.delete).toHaveBeenCalledTimes(3);
-      expect(mockKV.delete).toHaveBeenCalledWith(`session:${sessionId}`);
-      expect(mockKV.delete).toHaveBeenCalledWith(`agent:${agentDid}:delegation`);
-      expect(mockKV.delete).toHaveBeenCalledWith(`verified:${token.substring(0, 16)}`);
-    });
-    test('should handle partial invalidation failures', async () => {
-      const sessionId = 'partial-fail-session';
-      const token = 'partial-fail-token';
-      // Some deletions fail
-      mockKV.delete
-        .mockResolvedValueOnce(undefined) // Success
-        .mockRejectedValueOnce(new Error('KV error')) // Fail
-        .mockResolvedValueOnce(undefined); // Success
-      const deletions = [
-        mockKV.delete(`session:${sessionId}`),
-        mockKV.delete(`agent:test:delegation`).catch(() => null),
-        mockKV.delete(`verified:${token.substring(0, 16)}`)
-      ];
-      const results = await Promise.allSettled(deletions);
-      // Should not throw, handle failures gracefully
-      expect(results[0].status).toBe('fulfilled');
-      expect(results[1].status).toBe('fulfilled'); // Caught error
-      expect(results[2].status).toBe('fulfilled');
-    });
-    test('should invalidate when API returns 401/403', async () => {
-      const token = 'unauthorized-token';
-      // API returns unauthorized
-      global.fetch = vi.fn().mockResolvedValueOnce({
-        ok: false,
-        status: 401
-      });
-      // Should trigger invalidation
-      await mockKV.delete(`verified:${token.substring(0, 16)}`);
-      await mockKV.delete(`delegation:${token}`);
-      expect(mockKV.delete).toHaveBeenCalledTimes(2);
-    });
-  });
-  describe('Batch Invalidation', () => {
-    test('should invalidate all tokens for a user', async () => {
-      const userId = 'user-123';
-      // List all user's tokens
-      mockKV.list.mockResolvedValueOnce({
-        keys: [
-          { name: `user:${userId}:delegation:1` },
-          { name: `user:${userId}:delegation:2` },
-          { name: `user:${userId}:delegation:3` }
-        ]
-      });
-      // Get list of keys
-      const result = await mockKV.list({ prefix: `user:${userId}:` });
-      // Delete all
-      const deletions = result.keys.map(key =>
-        mockKV.delete(key.name)
-      );
-      await Promise.all(deletions);
-      expect(mockKV.delete).toHaveBeenCalledTimes(3);
-    });
-    test('should invalidate all tokens for an agent', async () => {
-      const agentDid = 'did:key:z6MkhaXgBZDvotDkL5257faiztiGiC2QtKLGpbnnEGta2doK';
-      // List all agent's tokens
-      mockKV.list.mockResolvedValueOnce({
-        keys: [
-          { name: `agent:${agentDid}:delegation` },
-          { name: `agent:${agentDid}:session:1` },
-          { name: `agent:${agentDid}:session:2` }
-        ]
-      });
-      const result = await mockKV.list({ prefix: `agent:${agentDid}:` });
-      // Delete all
-      const deletions = result.keys.map(key =>
-        mockKV.delete(key.name)
-      );
-      await Promise.all(deletions);
-      expect(mockKV.delete).toHaveBeenCalledTimes(3);
-    });
-  });
-  describe('Performance Optimization', () => {
-    test('should batch verification requests', async () => {
-      const tokens = ['token1', 'token2', 'token3'];
-      // Check cache for all tokens
-      mockKV.get
-        .mockResolvedValueOnce(null) // token1 miss
-        .mockResolvedValueOnce('1')  // token2 hit
-        .mockResolvedValueOnce(null); // token3 miss
-      // Only verify uncached tokens
-      const toVerify = ['token1', 'token3'];
-      // Batch API call
-      global.fetch = vi.fn().mockResolvedValueOnce({
-        ok: true,
-        json: async () => ({
-          results: {
-            token1: { valid: true },
-            token3: { valid: false }
-          }
-        })
-      });
-      // Make the batch API call
-      await global.fetch('https://test-api/batch-verify', {
-        method: 'POST',
-        body: JSON.stringify({ tokens: toVerify })
-      });
-      // Should have made single API call for multiple tokens
-      expect(global.fetch).toHaveBeenCalledTimes(1);
-    });
-    test('should use stale-while-revalidate pattern', async () => {
-      const token = 'stale-token';
-      const cacheKey = `verified:${token.substring(0, 16)}`;
-      // Stale-while-revalidate pattern test
-      // This test verifies that:
-      // 1. Cached value is returned immediately (fast response)
-      // 2. Background revalidation happens asynchronously
-      // Simulate getting a cached value
-      const staleCachedValue = '1';
-      // In a real implementation:
-      // - Check cache first, return immediately if found (stale but fast)
-      // - Trigger background revalidation without blocking
-      // - User experiences fast response with eventual consistency
-      expect(staleCachedValue).toBe('1'); // Immediate return
-      // Background revalidation would happen asynchronously
-      const backgroundRevalidation = async () => {
-        await mockKV.put(cacheKey, '1', { expirationTtl: 60 });
-      };
-      // Verify pattern is conceptually sound
-      expect(typeof backgroundRevalidation).toBe('function');
-    });
-  });
-  describe('Cache Consistency', () => {
-    test('should maintain consistency across DO instances', async () => {
-      const token = 'consistent-token';
-      // Instance 1 invalidates
-      await mockKV.delete(`verified:${token.substring(0, 16)}`);
-      // Instance 2 should see invalidation
-      mockKV.get.mockResolvedValueOnce(null);
-      const result = await mockKV.get(`verified:${token.substring(0, 16)}`);
-      expect(result).toBeNull();
-    });
-    test('should handle race conditions during invalidation', async () => {
-      const token = 'race-condition-token';
-      // Simulate concurrent operations
-      const operations = [
-        mockKV.put(`verified:${token.substring(0, 16)}`, '1', { expirationTtl: 60 }),
-        mockKV.delete(`verified:${token.substring(0, 16)}`),
-        mockKV.get(`verified:${token.substring(0, 16)}`)
-      ];
-      // All operations should complete without error
-      const results = await Promise.allSettled(operations);
-      expect(results.every(r => r.status === 'fulfilled')).toBe(true);
-    });
-  });
-  describe('Monitoring and Metrics', () => {
-    test('should track cache hit rate', () => {
-      const metrics = {
-        cacheHits: 0,
-        cacheMisses: 0,
-        get hitRate() {
-          const total = this.cacheHits + this.cacheMisses;
-          return total > 0 ? this.cacheHits / total : 0;
-        }
-      };
-      // Simulate cache operations
-      metrics.cacheHits += 8;
-      metrics.cacheMisses += 2;
-      expect(metrics.hitRate).toBe(0.8); // 80% hit rate
-    });
-    test('should track invalidation frequency', () => {
-      const metrics = {
-        invalidations: [],
-        addInvalidation(reason: string) {
-          this.invalidations.push({
-            timestamp: Date.now(),
-            reason
-          });
-        },
-        getRate(windowMs: number) {
-          const now = Date.now();
-          const recent = this.invalidations.filter(
-            i => i.timestamp > now - windowMs
-          );
-          return recent.length;
-        }
-      };
-      // Track invalidations
-      metrics.addInvalidation('revocation');
-      metrics.addInvalidation('expiration');
-      metrics.addInvalidation('manual');
-      // Check rate in last minute
-      const ratePerMinute = metrics.getRate(60000);
-      expect(ratePerMinute).toBe(3);
-    });
-  });
-  describe('Edge Cases', () => {
-    test('should handle KV storage limits', async () => {
-      // KV has 25 MiB value limit
-      // Use a smaller token for testing (1 MiB instead of 26 MiB to avoid test output issues)
-      const largeToken = 'x'.repeat(1024 * 1024); // 1 MiB
-      try {
-        await mockKV.put('large-key', largeToken);
-      } catch (error: any) {
-        expect(error.message).toContain('too large');
-      }
-      // Should use token hash instead
-      const tokenHash = 'hash-of-large-token';
-      await mockKV.put(`verified:${tokenHash.substring(0, 16)}`, '1');
-      expect(mockKV.put).toHaveBeenCalledWith(
-        expect.stringContaining('verified:'),
-        '1'
-        // No third argument expected
-      );
-    });
-    test('should handle KV operation failures', async () => {
-      // KV operations can fail
-      mockKV.get.mockRejectedValueOnce(new Error('KV unavailable'));
-      try {
-        await mockKV.get('test-key');
-      } catch (error: any) {
-        expect(error.message).toBe('KV unavailable');
-      }
-      // Should fail open (allow request) in read failures
-      // Should fail closed (deny request) in write failures
-    });
-    test('should handle clock skew', () => {
-      const serverTime = Date.now();
-      const clientTime = serverTime + (5 * 60 * 1000); // 5 minutes ahead
-      const skew = Math.abs(clientTime - serverTime);
-      const maxSkew = 2 * 60 * 1000; // 2 minutes tolerance
-      // Should detect excessive skew
-      if (skew > maxSkew) {
-        expect(skew).toBeGreaterThan(maxSkew);
-      }
-    });
-  });
-});