@kya-os/mcp-i 0.1.0-alpha.1 → 0.1.0-alpha.2.0

package/dist/index.js

@@ -0,0 +1,324 @@
+"use strict";
+/**
+ * @kya-os/mcp-i - Ultra-light MCP Identity auto-registration with challenge-response authentication
+ *
+ * Enable any MCP server to get a verifiable identity with just 2 lines of code:
+ *
+ * ```typescript
+ * import { MCPIdentity } from "@kya-os/mcp-i";
+ * const identity = await MCPIdentity.init();
+ * ```
+ *
+ * Now with full MCP-I Handshake support including cryptographic challenge-response!
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MCPIdentity = void 0;
+const axios_1 = __importDefault(require("axios"));
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const crypto = __importStar(require("./crypto"));
+// Re-export types for convenience
+__exportStar(require("./types"), exports);
+class MCPIdentity {
+    constructor(identity, options = {}) {
+        this.usedNonces = new Set();
+        this.did = identity.did;
+        this.publicKey = identity.publicKey;
+        this.privateKey = identity.privateKey;
+        this.timestampTolerance = options.timestampTolerance || 60000; // 60 seconds
+        this.enableNonceTracking = options.enableNonceTracking !== false;
+        // Start nonce cleanup if tracking is enabled
+        if (this.enableNonceTracking) {
+            this.startNonceCleanup();
+        }
+    }
+    /**
+     * Initialize MCP Identity - the main entry point
+     *
+     * @example
+     * ```typescript
+     * import { MCPIdentity } from "@kya-os/mcp-i";
+     * const identity = await MCPIdentity.init();
+     * ```
+     */
+    static async init(options) {
+        // Try to load existing identity
+        let identity = await loadIdentity(options?.persistencePath);
+        // Auto-register if needed
+        if (!identity) {
+            console.log('[MCP-I] No existing identity found, auto-registering...');
+            const response = await autoRegister({
+                name: options?.name || process.env.MCP_SERVER_NAME || 'Unnamed MCP Server',
+                description: options?.description,
+                repository: options?.repository,
+                apiEndpoint: options?.apiEndpoint || 'https://knowthat.ai'
+            });
+            // Create persisted identity
+            identity = {
+                did: response.did,
+                publicKey: response.keys.publicKey,
+                privateKey: response.keys.privateKey || '',
+                agentId: response.agent.id,
+                agentSlug: response.agent.slug,
+                registeredAt: new Date().toISOString(),
+            };
+            // If no private key was provided, generate one
+            if (!identity.privateKey) {
+                console.log('[MCP-I] Generating cryptographic keys...');
+                const keyPair = await crypto.generateKeyPair();
+                identity.publicKey = keyPair.publicKey;
+                identity.privateKey = keyPair.privateKey;
+            }
+            // Save for future use
+            await saveIdentity(identity, options?.persistencePath);
+            console.log('[MCP-I] ✅ Success! Your agent has been registered.');
+            console.log(`[MCP-I] DID: ${response.did}`);
+            console.log(`[MCP-I] Profile: ${response.agent.url}`);
+        }
+        return new MCPIdentity(identity, options);
+    }
+    /**
+     * Sign a message with the agent's private key using Ed25519
+     */
+    async sign(message) {
+        return crypto.sign(message, this.privateKey);
+    }
+    /**
+     * Verify a signature against a public key
+     */
+    async verify(message, signature, publicKey) {
+        return crypto.verify(message, signature, publicKey || this.publicKey);
+    }
+    /**
+     * Respond to an MCP-I challenge
+     * This is the core of the challenge-response authentication system
+     */
+    async respondToChallenge(challenge) {
+        // Validate timestamp to prevent replay attacks
+        const now = Date.now();
+        const challengeAge = now - challenge.timestamp;
+        if (challengeAge > this.timestampTolerance) {
+            throw new Error('Challenge expired');
+        }
+        if (challengeAge < 0) {
+            throw new Error('Challenge timestamp is in the future');
+        }
+        // Check for nonce reuse if tracking is enabled
+        if (this.enableNonceTracking) {
+            if (this.usedNonces.has(challenge.nonce)) {
+                throw new Error('Nonce already used');
+            }
+            this.usedNonces.add(challenge.nonce);
+        }
+        // Create the message to sign
+        const messageComponents = [
+            challenge.nonce,
+            challenge.timestamp.toString(),
+            this.did,
+            challenge.verifier_did || '',
+            (challenge.scope || []).join(',')
+        ];
+        const message = messageComponents.join(':');
+        // Sign the challenge
+        const signature = await this.sign(message);
+        // Return the response
+        return {
+            did: this.did,
+            signature,
+            timestamp: now,
+            nonce: challenge.nonce,
+            publicKey: this.publicKey
+        };
+    }
+    /**
+     * Get MCP-I capabilities for advertisement
+     */
+    getCapabilities() {
+        return {
+            version: '1.0',
+            did: this.did,
+            publicKey: this.publicKey,
+            conformanceLevel: 2, // Level 2: Full crypto with challenge-response
+            handshakeSupported: true,
+            handshakeEndpoint: '/_mcp-i/handshake',
+            verificationEndpoint: `https://knowthat.ai/api/agents/${this.did}/verify`
+        };
+    }
+    /**
+     * Sign an MCP response with identity metadata
+     */
+    async signResponse(response) {
+        const timestamp = new Date().toISOString();
+        const responseWithIdentity = {
+            ...response,
+            _mcp_identity: {
+                did: this.did,
+                signature: '', // Will be filled below
+                timestamp,
+                conformanceLevel: 2
+            }
+        };
+        // Sign the response content (excluding the signature field)
+        const contentToSign = JSON.stringify({
+            ...response,
+            _mcp_identity: {
+                did: this.did,
+                timestamp,
+                conformanceLevel: 2
+            }
+        });
+        responseWithIdentity._mcp_identity.signature = await this.sign(contentToSign);
+        return responseWithIdentity;
+    }
+    /**
+     * Generate a new nonce for challenges
+     */
+    static generateNonce() {
+        return crypto.generateNonce();
+    }
+    /**
+     * Clean up old nonces periodically to prevent memory leaks
+     */
+    startNonceCleanup() {
+        // Clean up nonces older than 2x the timestamp tolerance
+        this.nonceCleanupInterval = setInterval(() => {
+            // In a production system, you'd track nonce timestamps
+            // For now, we'll clear all nonces periodically
+            if (this.usedNonces.size > 10000) {
+                this.usedNonces.clear();
+            }
+        }, this.timestampTolerance * 2);
+    }
+    /**
+     * Clean up resources
+     */
+    destroy() {
+        if (this.nonceCleanupInterval) {
+            clearInterval(this.nonceCleanupInterval);
+        }
+        this.usedNonces.clear();
+    }
+}
+exports.MCPIdentity = MCPIdentity;
+// Helper functions (inline to keep package standalone)
+async function loadIdentity(customPath) {
+    // Check environment variables first (already loaded by process)
+    if (process.env.AGENT_DID && process.env.AGENT_PUBLIC_KEY && process.env.AGENT_PRIVATE_KEY) {
+        return {
+            did: process.env.AGENT_DID,
+            publicKey: process.env.AGENT_PUBLIC_KEY,
+            privateKey: process.env.AGENT_PRIVATE_KEY,
+            agentId: process.env.AGENT_ID || '',
+            agentSlug: process.env.AGENT_SLUG || '',
+            registeredAt: new Date().toISOString()
+        };
+    }
+    // Check JSON file (most reliable for programmatic access)
+    const filePath = customPath || path.join(process.cwd(), '.mcp-identity.json');
+    try {
+        if (fs.existsSync(filePath)) {
+            const content = fs.readFileSync(filePath, 'utf-8');
+            return JSON.parse(content);
+        }
+    }
+    catch {
+        // Ignore errors
+    }
+    // Note: We don't manually load .env or .env.local files here
+    // because that should be handled by the application's environment
+    // loading strategy (dotenv, framework, etc.)
+    return null;
+}
+async function saveIdentity(identity, customPath) {
+    // Save to .env (standard) and .env.local (for frameworks)
+    const envContent = `
+# MCP-I Identity (auto-generated)
+AGENT_DID="${identity.did}"
+AGENT_PUBLIC_KEY="${identity.publicKey}"
+AGENT_PRIVATE_KEY="${identity.privateKey}"
+AGENT_ID="${identity.agentId}"
+AGENT_SLUG="${identity.agentSlug}"
+`;
+    // Save to .env for standard Node.js compatibility
+    const envPath = path.join(process.cwd(), '.env');
+    fs.writeFileSync(envPath, envContent.trim());
+    // Also save to .env.local for framework compatibility (Next.js, Vite, etc.)
+    const envLocalPath = path.join(process.cwd(), '.env.local');
+    fs.writeFileSync(envLocalPath, envContent.trim());
+    // Also save as JSON for programmatic access
+    const filePath = customPath || path.join(process.cwd(), '.mcp-identity.json');
+    fs.writeFileSync(filePath, JSON.stringify(identity, null, 2));
+    console.log('[MCP-I] Identity saved to .env, .env.local, and .mcp-identity.json');
+}
+async function autoRegister(options) {
+    try {
+        const response = await axios_1.default.post(`${options.apiEndpoint}/api/agents/auto-register`, {
+            metadata: {
+                name: options.name,
+                description: options.description,
+                repository: options.repository,
+                version: '1.0.0'
+            },
+            clientInfo: {
+                sdkVersion: '0.2.0', // Updated version
+                language: 'typescript',
+                platform: 'node' // Always node for MCP servers
+            }
+        }, {
+            timeout: 30000,
+            headers: {
+                'Content-Type': 'application/json',
+                'User-Agent': '@kya-os/mcp-i/0.2.0'
+            }
+        });
+        return response.data;
+    }
+    catch (error) {
+        if (error.response?.status === 429) {
+            throw new Error('Rate limit exceeded. Please try again later.');
+        }
+        throw new Error(error.response?.data?.message ||
+            error.message ||
+            'Failed to auto-register agent');
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,kDAA0B;AAC1B,uCAAyB;AACzB,2CAA6B;AAC7B,iDAAmC;AAWnC,kCAAkC;AAClC,0CAAwB;AAExB,MAAa,WAAW;IAStB,YACE,QAA2B,EAC3B,UAA8B,EAAE;QAL1B,eAAU,GAAgB,IAAI,GAAG,EAAE,CAAC;QAO1C,IAAI,CAAC,GAAG,GAAG,QAAQ,CAAC,GAAG,CAAC;QACxB,IAAI,CAAC,SAAS,GAAG,QAAQ,CAAC,SAAS,CAAC;QACpC,IAAI,CAAC,UAAU,GAAG,QAAQ,CAAC,UAAU,CAAC;QACtC,IAAI,CAAC,kBAAkB,GAAG,OAAO,CAAC,kBAAkB,IAAI,KAAK,CAAC,CAAC,aAAa;QAC5E,IAAI,CAAC,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,KAAK,KAAK,CAAC;QAEjE,6CAA6C;QAC7C,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC7B,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC3B,CAAC;IACH,CAAC;IAED;;;;;;;;OAQG;IACH,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,OAA4B;QAC5C,gCAAgC;QAChC,IAAI,QAAQ,GAAG,MAAM,YAAY,CAAC,OAAO,EAAE,eAAe,CAAC,CAAC;QAE5D,0BAA0B;QAC1B,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,CAAC,GAAG,CAAC,yDAAyD,CAAC,CAAC;YAEvE,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC;gBAClC,IAAI,EAAE,OAAO,EAAE,IAAI,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,oBAAoB;gBAC1E,WAAW,EAAE,OAAO,EAAE,WAAW;gBACjC,UAAU,EAAE,OAAO,EAAE,UAAU;gBAC/B,WAAW,EAAE,OAAO,EAAE,WAAW,IAAI,qBAAqB;aAC3D,CAAC,CAAC;YAEH,4BAA4B;YAC5B,QAAQ,GAAG;gBACT,GAAG,EAAE,QAAQ,CAAC,GAAG;gBACjB,SAAS,EAAE,QAAQ,CAAC,IAAI,CAAC,SAAS;gBAClC,UAAU,EAAE,QAAQ,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE;gBAC1C,OAAO,EAAE,QAAQ,CAAC,KAAK,CAAC,EAAE;gBAC1B,SAAS,EAAE,QAAQ,CAAC,KAAK,CAAC,IAAI;gBAC9B,YAAY,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACvC,CAAC;YAEF,+CAA+C;YAC/C,IAAI,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC;gBACzB,OAAO,CAAC,GAAG,CAAC,0CAA0C,CAAC,CAAC;gBACxD,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,eAAe,EAAE,CAAC;gBAC/C,QAAQ,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;gBACvC,QAAQ,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;YAC3C,CAAC;YAED,sBAAsB;YACtB,MAAM,YAAY,CAAC,QAAQ,EAAE,OAAO,EAAE,eAAe,CAAC,CAAC;YAEvD,OAAO,CAAC,GAAG,CAAC,oDAAoD,CAAC,CAAC;YAClE,OAAO,CAAC,GAAG,CAAC,gBAAgB,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC;YAC5C,OAAO,CAAC,GAAG,CAAC,oBAAoB,QAAQ,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC;QACxD,CAAC;QAED,OAAO,IAAI,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CAAC,OAAwB;QACjC,OAAO,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,OAAwB,EACxB,SAAiB,EACjB,SAAkB;QAElB,OAAO,MAAM,CAAC,MAAM,CAClB,OAAO,EACP,SAAS,EACT,SAAS,IAAI,IAAI,CAAC,SAAS,CAC5B,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,kBAAkB,CAAC,SAAoB;QAC3C,+CAA+C;QAC/C,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,YAAY,GAAG,GAAG,GAAG,SAAS,CAAC,SAAS,CAAC;QAE/C,IAAI,YAAY,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;YAC3C,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;QACvC,CAAC;QAED,IAAI,YAAY,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;QAC1D,CAAC;QAED,+CAA+C;QAC/C,IAAI,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC7B,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,CAAC;gBACzC,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;YACxC,CAAC;YACD,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QACvC,CAAC;QAED,6BAA6B;QAC7B,MAAM,iBAAiB,GAAG;YACxB,SAAS,CAAC,KAAK;YACf,SAAS,CAAC,SAAS,CAAC,QAAQ,EAAE;YAC9B,IAAI,CAAC,GAAG;YACR,SAAS,CAAC,YAAY,IAAI,EAAE;YAC5B,CAAC,SAAS,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC;SAClC,CAAC;QACF,MAAM,OAAO,GAAG,iBAAiB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAE5C,qBAAqB;QACrB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAE3C,sBAAsB;QACtB,OAAO;YACL,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,SAAS;YACT,SAAS,EAAE,GAAG;YACd,KAAK,EAAE,SAAS,CAAC,KAAK;YACtB,SAAS,EAAE,IAAI,CAAC,SAAS;SAC1B,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,eAAe;QACb,OAAO;YACL,OAAO,EAAE,KAAK;YACd,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,gBAAgB,EAAE,CAAC,EAAE,+CAA+C;YACpE,kBAAkB,EAAE,IAAI;YACxB,iBAAiB,EAAE,mBAAmB;YACtC,oBAAoB,EAAE,kCAAkC,IAAI,CAAC,GAAG,SAAS;SAC1E,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAU,QAAW;QACrC,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC3C,MAAM,oBAAoB,GAAG;YAC3B,GAAG,QAAQ;YACX,aAAa,EAAE;gBACb,GAAG,EAAE,IAAI,CAAC,GAAG;gBACb,SAAS,EAAE,EAAE,EAAE,uBAAuB;gBACtC,SAAS;gBACT,gBAAgB,EAAE,CAAC;aACpB;SACF,CAAC;QAEF,4DAA4D;QAC5D,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAAC;YACnC,GAAG,QAAQ;YACX,aAAa,EAAE;gBACb,GAAG,EAAE,IAAI,CAAC,GAAG;gBACb,SAAS;gBACT,gBAAgB,EAAE,CAAC;aACpB;SACF,CAAC,CAAC;QAEH,oBAAoB,CAAC,aAAa,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAE9E,OAAO,oBAAoB,CAAC;IAC9B,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,aAAa;QAClB,OAAO,MAAM,CAAC,aAAa,EAAE,CAAC;IAChC,CAAC;IAED;;OAEG;IACK,iBAAiB;QACvB,wDAAwD;QACxD,IAAI,CAAC,oBAAoB,GAAG,WAAW,CAAC,GAAG,EAAE;YAC3C,uDAAuD;YACvD,+CAA+C;YAC/C,IAAI,IAAI,CAAC,UAAU,CAAC,IAAI,GAAG,KAAK,EAAE,CAAC;gBACjC,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;YAC1B,CAAC;QACH,CAAC,EAAE,IAAI,CAAC,kBAAkB,GAAG,CAAC,CAAC,CAAC;IAClC,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,IAAI,CAAC,oBAAoB,EAAE,CAAC;YAC9B,aAAa,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QAC3C,CAAC;QACD,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;IAC1B,CAAC;CACF;AA/ND,kCA+NC;AAED,uDAAuD;AAEvD,KAAK,UAAU,YAAY,CAAC,UAAmB;IAC7C,gEAAgE;IAChE,IAAI,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,OAAO,CAAC,GAAG,CAAC,iBAAiB,EAAE,CAAC;QAC3F,OAAO;YACL,GAAG,EAAE,OAAO,CAAC,GAAG,CAAC,SAAS;YAC1B,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,gBAAgB;YACvC,UAAU,EAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB;YACzC,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,QAAQ,IAAI,EAAE;YACnC,SAAS,EAAE,OAAO,CAAC,GAAG,CAAC,UAAU,IAAI,EAAE;YACvC,YAAY,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACvC,CAAC;IACJ,CAAC;IAED,0DAA0D;IAC1D,MAAM,QAAQ,GAAG,UAAU,IAAI,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,oBAAoB,CAAC,CAAC;IAC9E,IAAI,CAAC;QACH,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC5B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YACnD,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC7B,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,gBAAgB;IAClB,CAAC;IAED,6DAA6D;IAC7D,kEAAkE;IAClE,6CAA6C;IAE7C,OAAO,IAAI,CAAC;AACd,CAAC;AAED,KAAK,UAAU,YAAY,CAAC,QAA2B,EAAE,UAAmB;IAC1E,0DAA0D;IAC1D,MAAM,UAAU,GAAG;;aAER,QAAQ,CAAC,GAAG;oBACL,QAAQ,CAAC,SAAS;qBACjB,QAAQ,CAAC,UAAU;YAC5B,QAAQ,CAAC,OAAO;cACd,QAAQ,CAAC,SAAS;CAC/B,CAAC;IAEA,kDAAkD;IAClD,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,MAAM,CAAC,CAAC;IACjD,EAAE,CAAC,aAAa,CAAC,OAAO,EAAE,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC;IAE7C,4EAA4E;IAC5E,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,YAAY,CAAC,CAAC;IAC5D,EAAE,CAAC,aAAa,CAAC,YAAY,EAAE,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC;IAElD,4CAA4C;IAC5C,MAAM,QAAQ,GAAG,UAAU,IAAI,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,oBAAoB,CAAC,CAAC;IAC9E,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAE9D,OAAO,CAAC,GAAG,CAAC,oEAAoE,CAAC,CAAC;AACpF,CAAC;AAED,KAAK,UAAU,YAAY,CAAC,OAK3B;IACC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,eAAK,CAAC,IAAI,CAC/B,GAAG,OAAO,CAAC,WAAW,2BAA2B,EACjD;YACE,QAAQ,EAAE;gBACR,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,UAAU,EAAE,OAAO,CAAC,UAAU;gBAC9B,OAAO,EAAE,OAAO;aACjB;YACD,UAAU,EAAE;gBACV,UAAU,EAAE,OAAO,EAAE,kBAAkB;gBACvC,QAAQ,EAAE,YAAY;gBACtB,QAAQ,EAAE,MAAM,CAAC,8BAA8B;aAChD;SACF,EACD;YACE,OAAO,EAAE,KAAK;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,YAAY,EAAE,qBAAqB;aACpC;SACF,CACF,CAAC;QAEF,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,IAAI,KAAK,CAAC,QAAQ,EAAE,MAAM,KAAK,GAAG,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;QAClE,CAAC;QACD,MAAM,IAAI,KAAK,CACb,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE,OAAO;YAC7B,KAAK,CAAC,OAAO;YACb,+BAA+B,CAChC,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,78 @@
+/**
+ * Type definitions for MCP-I challenge-response authentication
+ */
+export interface MCPIdentityOptions {
+    name?: string;
+    description?: string;
+    repository?: string;
+    apiEndpoint?: string;
+    persistencePath?: string;
+    timestampTolerance?: number;
+    enableNonceTracking?: boolean;
+}
+export interface AutoRegisterResponse {
+    success: boolean;
+    did: string;
+    agent: {
+        id: string;
+        slug: string;
+        name: string;
+        url: string;
+    };
+    keys: {
+        publicKey: string;
+        privateKey?: string;
+    };
+}
+export interface PersistedIdentity {
+    did: string;
+    publicKey: string;
+    privateKey: string;
+    agentId: string;
+    agentSlug: string;
+    registeredAt: string;
+}
+/**
+ * MCP-I Challenge structure
+ */
+export interface Challenge {
+    nonce: string;
+    timestamp: number;
+    verifier_did?: string;
+    scope?: string[];
+}
+/**
+ * MCP-I Challenge Response structure
+ */
+export interface ChallengeResponse {
+    did: string;
+    signature: string;
+    timestamp: number;
+    nonce: string;
+    publicKey?: string;
+}
+/**
+ * MCP-I Capabilities advertisement
+ */
+export interface MCPICapabilities {
+    version: string;
+    did: string;
+    publicKey: string;
+    conformanceLevel: number;
+    handshakeSupported: boolean;
+    handshakeEndpoint?: string;
+    verificationEndpoint?: string;
+}
+/**
+ * Response with MCP-I identity attached
+ */
+export interface SignedResponse<T = any> {
+    [key: string]: any;
+    _mcp_identity: {
+        did: string;
+        signature: string;
+        timestamp: string;
+        conformanceLevel?: number;
+    };
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,MAAM,WAAW,kBAAkB;IACjC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,MAAM,CAAC;IAEzB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,mBAAmB,CAAC,EAAE,OAAO,CAAC;CAC/B;AAED,MAAM,WAAW,oBAAoB;IACnC,OAAO,EAAE,OAAO,CAAC;IACjB,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE;QACL,EAAE,EAAE,MAAM,CAAC;QACX,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;IACF,IAAI,EAAE;QACJ,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,CAAC,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,cAAc,CAAC,CAAC,GAAG,GAAG;IACrC,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;IACnB,aAAa,EAAE;QACb,GAAG,EAAE,MAAM,CAAC;QACZ,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;QAClB,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,CAAC;CACH"}

package/dist/types.js

@@ -0,0 +1,6 @@
+"use strict";
+/**
+ * Type definitions for MCP-I challenge-response authentication
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";AAAA;;GAEG"}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@kya-os/mcp-i",
-  "version": "0.1.0-alpha.1",
-  "description": "MCP-I auto-registration client for 2-line MCP server identity",
+  "version": "0.1.0-alpha.2.0",
+  "description": "Ultra-light MCP Identity auto-registration - 2 lines to agent identity",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "files": [
@@ -11,41 +11,32 @@
   ],
   "scripts": {
     "build": "tsc",
-    "test": "jest",
-    "lint": "eslint src --ext .ts",
-    "clean": "rm -rf dist",
-    "prepublishOnly": "npm run clean && npm run build && npm run test",
-    "publish:alpha": "npm publish --tag alpha"
-  },
-  "repository": {
-    "type": "git",
-    "url": "https://github.com/vouched/kya-os.git",
-    "directory": "packages/mcp-i"
+    "test": "vitest",
+    "test:watch": "vitest watch",
+    "test:coverage": "vitest run --coverage",
+    "prepublishOnly": "npm run build"
   },
   "keywords": [
-    "kya-os",
-    "mcp-i",
     "mcp",
+    "mcp-i",
     "identity",
+    "agent",
     "auto-registration",
-    "agent"
+    "did"
   ],
-  "author": "Dylan Hobbs <dylan.hobbs@vouched.id>",
+  "author": "Dylan Hobbs <dylan@vouched.id>",
   "license": "MIT",
   "dependencies": {
-    "@kya-os/core": "^0.1.0-alpha.1",
-    "@kya-os/identity": "^0.1.0-alpha.1",
-    "axios": "^1.6.7",
-    "dotenv": "^16.5.0"
+    "@noble/ed25519": "^2.1.0",
+    "axios": "^1.6.7"
   },
   "devDependencies": {
-    "@types/jest": "^29.5.12",
-    "@types/node": "^20.11.24",
-    "jest": "^29.7.0",
-    "ts-jest": "^29.1.2",
-    "typescript": "^5.4.2"
+    "@types/node": "^20.0.0",
+    "@vitest/coverage-v8": "^2.0.0",
+    "typescript": "^5.0.0",
+    "vitest": "^2.0.0"
   },
-  "publishConfig": {
-    "access": "public"
+  "engines": {
+    "node": ">=14.0.0"
   }
 }