npm - @machina.ai/cell-cli-core - Versions diffs - 1.0.13-rc9 → 1.0.17-rc1 - Mend

@machina.ai/cell-cli-core 1.0.13-rc9 → 1.0.17-rc1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (312) hide show

package/dist/package.json +4 -3
package/dist/src/code_assist/converter.d.ts +2 -1
package/dist/src/code_assist/converter.js +2 -1
package/dist/src/code_assist/converter.js.map +1 -1
package/dist/src/code_assist/converter.test.js +13 -10
package/dist/src/code_assist/converter.test.js.map +1 -1
package/dist/src/code_assist/oauth2.js +8 -0
package/dist/src/code_assist/oauth2.js.map +1 -1
package/dist/src/code_assist/oauth2.test.js +97 -7
package/dist/src/code_assist/oauth2.test.js.map +1 -1
package/dist/src/code_assist/server.d.ts +2 -2
package/dist/src/code_assist/server.js +4 -4
package/dist/src/code_assist/server.js.map +1 -1
package/dist/src/code_assist/server.test.js +9 -9
package/dist/src/code_assist/server.test.js.map +1 -1
package/dist/src/code_assist/setup.js +1 -1
package/dist/src/code_assist/setup.js.map +1 -1
package/dist/src/code_assist/setup.test.js +2 -2
package/dist/src/code_assist/setup.test.js.map +1 -1
package/dist/src/config/config.d.ts +37 -9
package/dist/src/config/config.js +84 -29
package/dist/src/config/config.js.map +1 -1
package/dist/src/config/config.test.js +95 -24
package/dist/src/config/config.test.js.map +1 -1
package/dist/src/config/flashFallback.test.js +23 -47
package/dist/src/config/flashFallback.test.js.map +1 -1
package/dist/src/config/models.d.ts +1 -0
package/dist/src/config/models.js +1 -0
package/dist/src/config/models.js.map +1 -1
package/dist/src/core/client.d.ts +4 -1
package/dist/src/core/client.js +82 -22
package/dist/src/core/client.js.map +1 -1
package/dist/src/core/client.test.js +188 -38
package/dist/src/core/client.test.js.map +1 -1
package/dist/src/core/contentGenerator.d.ts +2 -2
package/dist/src/core/contentGenerator.js.map +1 -1
package/dist/src/core/coreToolScheduler.d.ts +1 -3
package/dist/src/core/coreToolScheduler.js +25 -16
package/dist/src/core/coreToolScheduler.js.map +1 -1
package/dist/src/core/coreToolScheduler.test.js +76 -1
package/dist/src/core/coreToolScheduler.test.js.map +1 -1
package/dist/src/core/geminiChat.d.ts +2 -1
package/dist/src/core/geminiChat.js +9 -11
package/dist/src/core/geminiChat.js.map +1 -1
package/dist/src/core/geminiChat.test.js +2 -2
package/dist/src/core/geminiChat.test.js.map +1 -1
package/dist/src/core/geminiRequest.js +2 -37
package/dist/src/core/geminiRequest.js.map +1 -1
package/dist/src/core/logger.d.ts +1 -0
package/dist/src/core/logger.js +24 -4
package/dist/src/core/logger.js.map +1 -1
package/dist/src/core/logger.test.js +60 -9
package/dist/src/core/logger.test.js.map +1 -1
package/dist/src/core/nonInteractiveToolExecutor.js +11 -3
package/dist/src/core/nonInteractiveToolExecutor.js.map +1 -1
package/dist/src/core/prompts.js +41 -17
package/dist/src/core/prompts.js.map +1 -1
package/dist/src/core/prompts.test.js +118 -1
package/dist/src/core/prompts.test.js.map +1 -1
package/dist/src/core/tokenLimits.js +1 -0
package/dist/src/core/tokenLimits.js.map +1 -1
package/dist/src/core/turn.d.ts +3 -0
package/dist/src/core/turn.js +3 -0
package/dist/src/core/turn.js.map +1 -1
package/dist/src/ide/detect-ide.d.ts +10 -0
package/dist/src/ide/detect-ide.js +27 -0
package/dist/src/ide/detect-ide.js.map +1 -0
package/dist/src/ide/ide-client.d.ts +40 -0
package/dist/src/ide/ide-client.js +152 -0
package/dist/src/ide/ide-client.js.map +1 -0
package/dist/src/ide/ide-installer.d.ts +14 -0
package/dist/src/ide/ide-installer.js +109 -0
package/dist/src/ide/ide-installer.js.map +1 -0
package/dist/src/ide/ide-installer.test.js +55 -0
package/dist/src/ide/ide-installer.test.js.map +1 -0
package/dist/src/ide/ideContext.d.ts +279 -0
package/dist/src/ide/ideContext.js +102 -0
package/dist/src/ide/ideContext.js.map +1 -0
package/dist/src/ide/ideContext.test.js +265 -0
package/dist/src/ide/ideContext.test.js.map +1 -0
package/dist/src/index.d.ts +11 -1
package/dist/src/index.js +14 -1
package/dist/src/index.js.map +1 -1
package/dist/src/mcp/google-auth-provider.d.ts +23 -0
package/dist/src/mcp/google-auth-provider.js +63 -0
package/dist/src/mcp/google-auth-provider.js.map +1 -0
package/dist/src/mcp/google-auth-provider.test.d.ts +6 -0
package/dist/src/mcp/google-auth-provider.test.js +54 -0
package/dist/src/mcp/google-auth-provider.test.js.map +1 -0
package/dist/src/mcp/oauth-provider.d.ts +5 -1
package/dist/src/mcp/oauth-provider.js +44 -15
package/dist/src/mcp/oauth-provider.js.map +1 -1
package/dist/src/mcp/oauth-provider.test.js +94 -14
package/dist/src/mcp/oauth-provider.test.js.map +1 -1
package/dist/src/mcp/oauth-token-storage.d.ts +3 -1
package/dist/src/mcp/oauth-token-storage.js +3 -1
package/dist/src/mcp/oauth-token-storage.js.map +1 -1
package/dist/src/mcp/oauth-utils.js +2 -2
package/dist/src/mcp/oauth-utils.js.map +1 -1
package/dist/src/mcp/oauth-utils.test.js +1 -1
package/dist/src/mcp/oauth-utils.test.js.map +1 -1
package/dist/src/prompts/mcp-prompts.d.ts +8 -0
package/dist/src/prompts/mcp-prompts.js +13 -0
package/dist/src/prompts/mcp-prompts.js.map +1 -0
package/dist/src/prompts/prompt-registry.d.ts +26 -0
package/dist/src/prompts/prompt-registry.js +47 -0
package/dist/src/prompts/prompt-registry.js.map +1 -0
package/dist/src/services/fileDiscoveryService.test.js +101 -60
package/dist/src/services/fileDiscoveryService.test.js.map +1 -1
package/dist/src/services/gitService.test.js +67 -86
package/dist/src/services/gitService.test.js.map +1 -1
package/dist/src/services/loopDetectionService.d.ts +51 -5
package/dist/src/services/loopDetectionService.js +140 -36
package/dist/src/services/loopDetectionService.js.map +1 -1
package/dist/src/services/loopDetectionService.test.js +105 -99
package/dist/src/services/loopDetectionService.test.js.map +1 -1
package/dist/src/services/shellExecutionService.d.ts +70 -0
package/dist/src/services/shellExecutionService.js +155 -0
package/dist/src/services/shellExecutionService.js.map +1 -0
package/dist/src/services/shellExecutionService.test.d.ts +6 -0
package/dist/src/services/shellExecutionService.test.js +264 -0
package/dist/src/services/shellExecutionService.test.js.map +1 -0
package/dist/src/telemetry/clearcut-logger/clearcut-logger.d.ts +4 -1
package/dist/src/telemetry/clearcut-logger/clearcut-logger.js +97 -34
package/dist/src/telemetry/clearcut-logger/clearcut-logger.js.map +1 -1
package/dist/src/telemetry/clearcut-logger/event-metadata-key.d.ts +6 -1
package/dist/src/telemetry/clearcut-logger/event-metadata-key.js +19 -0
package/dist/src/telemetry/clearcut-logger/event-metadata-key.js.map +1 -1
package/dist/src/telemetry/constants.d.ts +2 -0
package/dist/src/telemetry/constants.js +2 -0
package/dist/src/telemetry/constants.js.map +1 -1
package/dist/src/telemetry/file-exporters.d.ts +28 -0
package/dist/src/telemetry/file-exporters.js +62 -0
package/dist/src/telemetry/file-exporters.js.map +1 -0
package/dist/src/telemetry/index.d.ts +2 -2
package/dist/src/telemetry/index.js +2 -2
package/dist/src/telemetry/index.js.map +1 -1
package/dist/src/telemetry/loggers.d.ts +3 -1
package/dist/src/telemetry/loggers.js +33 -1
package/dist/src/telemetry/loggers.js.map +1 -1
package/dist/src/telemetry/loggers.test.circular.js +2 -0
package/dist/src/telemetry/loggers.test.circular.js.map +1 -1
package/dist/src/telemetry/loggers.test.js +8 -3
package/dist/src/telemetry/loggers.test.js.map +1 -1
package/dist/src/telemetry/sdk.js +17 -6
package/dist/src/telemetry/sdk.js.map +1 -1
package/dist/src/telemetry/telemetry.test.js +2 -0
package/dist/src/telemetry/telemetry.test.js.map +1 -1
package/dist/src/telemetry/types.d.ts +24 -2
package/dist/src/telemetry/types.js +40 -2
package/dist/src/telemetry/types.js.map +1 -1
package/dist/src/telemetry/uiTelemetry.test.js +3 -0
package/dist/src/telemetry/uiTelemetry.test.js.map +1 -1
package/dist/src/test-utils/mockWorkspaceContext.d.ts +13 -0
package/dist/src/test-utils/mockWorkspaceContext.js +24 -0
package/dist/src/test-utils/mockWorkspaceContext.js.map +1 -0
package/dist/src/tools/edit.js +27 -3
package/dist/src/tools/edit.js.map +1 -1
package/dist/src/tools/edit.test.js +104 -1
package/dist/src/tools/edit.test.js.map +1 -1
package/dist/src/tools/glob.js +53 -17
package/dist/src/tools/glob.js.map +1 -1
package/dist/src/tools/glob.test.js +32 -6
package/dist/src/tools/glob.test.js.map +1 -1
package/dist/src/tools/grep.d.ts +1 -1
package/dist/src/tools/grep.js +81 -29
package/dist/src/tools/grep.js.map +1 -1
package/dist/src/tools/grep.test.js +76 -9
package/dist/src/tools/grep.test.js.map +1 -1
package/dist/src/tools/ls.js +4 -3
package/dist/src/tools/ls.js.map +1 -1
package/dist/src/tools/ls.test.d.ts +6 -0
package/dist/src/tools/ls.test.js +356 -0
package/dist/src/tools/ls.test.js.map +1 -0
package/dist/src/tools/mcp-client.d.ts +31 -3
package/dist/src/tools/mcp-client.js +503 -57
package/dist/src/tools/mcp-client.js.map +1 -1
package/dist/src/tools/mcp-client.test.js +133 -7
package/dist/src/tools/mcp-client.test.js.map +1 -1
package/dist/src/tools/mcp-tool.js +104 -45
package/dist/src/tools/mcp-tool.js.map +1 -1
package/dist/src/tools/mcp-tool.test.js +314 -2
package/dist/src/tools/mcp-tool.test.js.map +1 -1
package/dist/src/tools/memoryTool.d.ts +17 -2
package/dist/src/tools/memoryTool.js +130 -13
package/dist/src/tools/memoryTool.js.map +1 -1
package/dist/src/tools/memoryTool.test.js +88 -3
package/dist/src/tools/memoryTool.test.js.map +1 -1
package/dist/src/tools/modifiable-tool.test.js +51 -62
package/dist/src/tools/modifiable-tool.test.js.map +1 -1
package/dist/src/tools/read-file.js +8 -6
package/dist/src/tools/read-file.js.map +1 -1
package/dist/src/tools/read-file.test.js +125 -68
package/dist/src/tools/read-file.test.js.map +1 -1
package/dist/src/tools/read-many-files.d.ts +0 -1
package/dist/src/tools/read-many-files.js +29 -20
package/dist/src/tools/read-many-files.js.map +1 -1
package/dist/src/tools/read-many-files.test.js +35 -2
package/dist/src/tools/read-many-files.test.js.map +1 -1
package/dist/src/tools/shell.d.ts +3 -23
package/dist/src/tools/shell.js +173 -300
package/dist/src/tools/shell.js.map +1 -1
package/dist/src/tools/shell.test.js +278 -384
package/dist/src/tools/shell.test.js.map +1 -1
package/dist/src/tools/tool-error.d.ts +22 -0
package/dist/src/tools/tool-error.js +27 -0
package/dist/src/tools/tool-error.js.map +1 -0
package/dist/src/tools/tool-registry.d.ts +13 -1
package/dist/src/tools/tool-registry.js +46 -2
package/dist/src/tools/tool-registry.js.map +1 -1
package/dist/src/tools/tool-registry.test.js +13 -5
package/dist/src/tools/tool-registry.test.js.map +1 -1
package/dist/src/tools/tools.d.ts +8 -0
package/dist/src/tools/tools.js.map +1 -1
package/dist/src/tools/write-file.js +7 -5
package/dist/src/tools/write-file.js.map +1 -1
package/dist/src/tools/write-file.test.js +56 -2
package/dist/src/tools/write-file.test.js.map +1 -1
package/dist/src/utils/bfsFileSearch.js +51 -27
package/dist/src/utils/bfsFileSearch.js.map +1 -1
package/dist/src/utils/bfsFileSearch.test.js +163 -134
package/dist/src/utils/bfsFileSearch.test.js.map +1 -1
package/dist/src/utils/editCorrector.js +2 -2
package/dist/src/utils/editCorrector.js.map +1 -1
package/dist/src/utils/editor.d.ts +1 -1
package/dist/src/utils/editor.js +9 -0
package/dist/src/utils/editor.js.map +1 -1
package/dist/src/utils/editor.test.js +21 -1
package/dist/src/utils/editor.test.js.map +1 -1
package/dist/src/utils/errorReporting.d.ts +1 -1
package/dist/src/utils/errorReporting.js +2 -2
package/dist/src/utils/errorReporting.js.map +1 -1
package/dist/src/utils/errorReporting.test.js +44 -38
package/dist/src/utils/errorReporting.test.js.map +1 -1
package/dist/src/utils/fileUtils.js +13 -2
package/dist/src/utils/fileUtils.js.map +1 -1
package/dist/src/utils/fileUtils.test.js +42 -1
package/dist/src/utils/fileUtils.test.js.map +1 -1
package/dist/src/utils/flashFallback.integration.test.js +8 -0
package/dist/src/utils/flashFallback.integration.test.js.map +1 -1
package/dist/src/utils/formatters.d.ts +6 -0
package/dist/src/utils/formatters.js +16 -0
package/dist/src/utils/formatters.js.map +1 -0
package/dist/src/utils/getFolderStructure.test.js +11 -13
package/dist/src/utils/getFolderStructure.test.js.map +1 -1
package/dist/src/utils/gitIgnoreParser.js +5 -11
package/dist/src/utils/gitIgnoreParser.js.map +1 -1
package/dist/src/utils/gitIgnoreParser.test.js +58 -61
package/dist/src/utils/gitIgnoreParser.test.js.map +1 -1
package/dist/src/utils/memoryDiscovery.d.ts +1 -1
package/dist/src/utils/memoryDiscovery.js +69 -79
package/dist/src/utils/memoryDiscovery.js.map +1 -1
package/dist/src/utils/memoryDiscovery.test.js +119 -370
package/dist/src/utils/memoryDiscovery.test.js.map +1 -1
package/dist/src/utils/memoryImportProcessor.d.ts +19 -12
package/dist/src/utils/memoryImportProcessor.js +241 -82
package/dist/src/utils/memoryImportProcessor.js.map +1 -1
package/dist/src/utils/memoryImportProcessor.test.js +595 -50
package/dist/src/utils/memoryImportProcessor.test.js.map +1 -1
package/dist/src/utils/nextSpeakerChecker.js +3 -23
package/dist/src/utils/nextSpeakerChecker.js.map +1 -1
package/dist/src/utils/nextSpeakerChecker.test.js +2 -2
package/dist/src/utils/nextSpeakerChecker.test.js.map +1 -1
package/dist/src/utils/partUtils.d.ts +14 -0
package/dist/src/utils/partUtils.js +65 -0
package/dist/src/utils/partUtils.js.map +1 -0
package/dist/src/utils/partUtils.test.d.ts +6 -0
package/dist/src/utils/partUtils.test.js +130 -0
package/dist/src/utils/partUtils.test.js.map +1 -0
package/dist/src/utils/paths.d.ts +11 -2
package/dist/src/utils/paths.js +24 -7
package/dist/src/utils/paths.js.map +1 -1
package/dist/src/utils/paths.test.d.ts +6 -0
package/dist/src/utils/paths.test.js +153 -0
package/dist/src/utils/paths.test.js.map +1 -0
package/dist/src/utils/retry.d.ts +3 -0
package/dist/src/utils/retry.js.map +1 -1
package/dist/src/utils/retry.test.js.map +1 -1
package/dist/src/utils/secure-browser-launcher.d.ts +23 -0
package/dist/src/utils/secure-browser-launcher.js +164 -0
package/dist/src/utils/secure-browser-launcher.js.map +1 -0
package/dist/src/utils/secure-browser-launcher.test.d.ts +6 -0
package/dist/src/utils/secure-browser-launcher.test.js +149 -0
package/dist/src/utils/secure-browser-launcher.test.js.map +1 -0
package/dist/src/utils/shell-utils.d.ts +78 -0
package/dist/src/utils/shell-utils.js +306 -0
package/dist/src/utils/shell-utils.js.map +1 -0
package/dist/src/utils/shell-utils.test.d.ts +6 -0
package/dist/src/utils/shell-utils.test.js +200 -0
package/dist/src/utils/shell-utils.test.js.map +1 -0
package/dist/src/utils/summarizer.js +3 -32
package/dist/src/utils/summarizer.js.map +1 -1
package/dist/src/utils/textUtils.d.ts +13 -0
package/dist/src/utils/textUtils.js +28 -0
package/dist/src/utils/textUtils.js.map +1 -0
package/dist/src/utils/workspaceContext.d.ts +51 -0
package/dist/src/utils/workspaceContext.js +139 -0
package/dist/src/utils/workspaceContext.js.map +1 -0
package/dist/src/utils/workspaceContext.test.d.ts +6 -0
package/dist/src/utils/workspaceContext.test.js +209 -0
package/dist/src/utils/workspaceContext.test.js.map +1 -0
package/dist/tsconfig.tsbuildinfo +1 -1
package/package.json +4 -3
package/dist/src/core/geminiRequest.test.js +0 -72
package/dist/src/core/geminiRequest.test.js.map +0 -1
package/dist/src/services/ideContext.d.ts +0 -178
package/dist/src/services/ideContext.js +0 -105
package/dist/src/services/ideContext.js.map +0 -1
package/dist/src/services/ideContext.test.js +0 -111
package/dist/src/services/ideContext.test.js.map +0 -1
/package/dist/src/{core/geminiRequest.test.d.ts → ide/ide-installer.test.d.ts} +0 -0
/package/dist/src/{services → ide}/ideContext.test.d.ts +0 -0

package/dist/src/tools/mcp-client.js CHANGED Viewed

@@ -7,10 +7,15 @@ import { Client } from '@modelcontextprotocol/sdk/client/index.js';
 import { StdioClientTransport } from '@modelcontextprotocol/sdk/client/stdio.js';
 import { SSEClientTransport, } from '@modelcontextprotocol/sdk/client/sse.js';
 import { StreamableHTTPClientTransport, } from '@modelcontextprotocol/sdk/client/streamableHttp.js';
+import { ListPromptsResultSchema, GetPromptResultSchema, } from '@modelcontextprotocol/sdk/types.js';
 import { parse } from 'shell-quote';
+import { AuthProviderType } from '../config/config.js';
+import { GoogleCredentialProvider } from '../mcp/google-auth-provider.js';
 import { DiscoveredMCPTool } from './mcp-tool.js';
 import { mcpToTool } from '@google/genai';
-import { OpenFilesNotificationSchema, IDE_SERVER_NAME, ideContext, } from '../services/ideContext.js';
+import { MCPOAuthProvider } from '../mcp/oauth-provider.js';
+import { OAuthUtils } from '../mcp/oauth-utils.js';
+import { MCPOAuthTokenStorage } from '../mcp/oauth-token-storage.js';
 import { getErrorMessage } from '../utils/errors.js';
 export const MCP_DEFAULT_TIMEOUT_MSEC = 10 * 60 * 1000; // default to 10 minutes
 /**
@@ -40,11 +45,15 @@ export var MCPDiscoveryState;
 /**
  * Map to track the status of each MCP server within the core package
  */
-const mcpServerStatusesInternal = new Map();
+const serverStatuses = new Map();
 /**
  * Track the overall MCP discovery state
  */
 let mcpDiscoveryState = MCPDiscoveryState.NOT_STARTED;
+/**
+ * Map to track which MCP servers have been discovered to require OAuth
+ */
+export const mcpServerRequiresOAuth = new Map();
 const statusChangeListeners = [];
 /**
  * Add a listener for MCP server status changes
@@ -65,7 +74,7 @@ export function removeMCPStatusChangeListener(listener) {
  * Update the status of an MCP server
  */
 function updateMCPServerStatus(serverName, status) {
-    mcpServerStatusesInternal.set(serverName, status);
+    serverStatuses.set(serverName, status);
     // Notify all listeners
     for (const listener of statusChangeListeners) {
         listener(serverName, status);
@@ -75,13 +84,13 @@ function updateMCPServerStatus(serverName, status) {
  * Get the current status of an MCP server
  */
 export function getMCPServerStatus(serverName) {
-    return (mcpServerStatusesInternal.get(serverName) || MCPServerStatus.DISCONNECTED);
+    return serverStatuses.get(serverName) || MCPServerStatus.DISCONNECTED;
 }
 /**
  * Get all MCP server statuses
  */
 export function getAllMCPServerStatuses() {
-    return new Map(mcpServerStatusesInternal);
+    return new Map(serverStatuses);
 }
 /**
  * Get the current MCP discovery state
@@ -89,6 +98,121 @@ export function getAllMCPServerStatuses() {
 export function getMCPDiscoveryState() {
     return mcpDiscoveryState;
 }
+/**
+ * Extract WWW-Authenticate header from error message string.
+ * This is a more robust approach than regex matching.
+ *
+ * @param errorString The error message string
+ * @returns The www-authenticate header value if found, null otherwise
+ */
+function extractWWWAuthenticateHeader(errorString) {
+    // Try multiple patterns to extract the header
+    const patterns = [
+        /www-authenticate:\s*([^\n\r]+)/i,
+        /WWW-Authenticate:\s*([^\n\r]+)/i,
+        /"www-authenticate":\s*"([^"]+)"/i,
+        /'www-authenticate':\s*'([^']+)'/i,
+    ];
+    for (const pattern of patterns) {
+        const match = errorString.match(pattern);
+        if (match) {
+            return match[1].trim();
+        }
+    }
+    return null;
+}
+/**
+ * Handle automatic OAuth discovery and authentication for a server.
+ *
+ * @param mcpServerName The name of the MCP server
+ * @param mcpServerConfig The MCP server configuration
+ * @param wwwAuthenticate The www-authenticate header value
+ * @returns True if OAuth was successfully configured and authenticated, false otherwise
+ */
+async function handleAutomaticOAuth(mcpServerName, mcpServerConfig, wwwAuthenticate) {
+    try {
+        console.log(`🔐 '${mcpServerName}' requires OAuth authentication`);
+        // Always try to parse the resource metadata URI from the www-authenticate header
+        let oauthConfig;
+        const resourceMetadataUri = OAuthUtils.parseWWWAuthenticateHeader(wwwAuthenticate);
+        if (resourceMetadataUri) {
+            oauthConfig = await OAuthUtils.discoverOAuthConfig(resourceMetadataUri);
+        }
+        else if (mcpServerConfig.url) {
+            // Fallback: try to discover OAuth config from the base URL for SSE
+            const sseUrl = new URL(mcpServerConfig.url);
+            const baseUrl = `${sseUrl.protocol}//${sseUrl.host}`;
+            oauthConfig = await OAuthUtils.discoverOAuthConfig(baseUrl);
+        }
+        else if (mcpServerConfig.httpUrl) {
+            // Fallback: try to discover OAuth config from the base URL for HTTP
+            const httpUrl = new URL(mcpServerConfig.httpUrl);
+            const baseUrl = `${httpUrl.protocol}//${httpUrl.host}`;
+            oauthConfig = await OAuthUtils.discoverOAuthConfig(baseUrl);
+        }
+        if (!oauthConfig) {
+            console.error(`❌ Could not configure OAuth for '${mcpServerName}' - please authenticate manually with /mcp auth ${mcpServerName}`);
+            return false;
+        }
+        // OAuth configuration discovered - proceed with authentication
+        // Create OAuth configuration for authentication
+        const oauthAuthConfig = {
+            enabled: true,
+            authorizationUrl: oauthConfig.authorizationUrl,
+            tokenUrl: oauthConfig.tokenUrl,
+            scopes: oauthConfig.scopes || [],
+        };
+        // Perform OAuth authentication
+        console.log(`Starting OAuth authentication for server '${mcpServerName}'...`);
+        await MCPOAuthProvider.authenticate(mcpServerName, oauthAuthConfig);
+        console.log(`OAuth authentication successful for server '${mcpServerName}'`);
+        return true;
+    }
+    catch (error) {
+        console.error(`Failed to handle automatic OAuth for server '${mcpServerName}': ${getErrorMessage(error)}`);
+        return false;
+    }
+}
+/**
+ * Create a transport with OAuth token for the given server configuration.
+ *
+ * @param mcpServerName The name of the MCP server
+ * @param mcpServerConfig The MCP server configuration
+ * @param accessToken The OAuth access token
+ * @returns The transport with OAuth token, or null if creation fails
+ */
+async function createTransportWithOAuth(mcpServerName, mcpServerConfig, accessToken) {
+    try {
+        if (mcpServerConfig.httpUrl) {
+            // Create HTTP transport with OAuth token
+            const oauthTransportOptions = {
+                requestInit: {
+                    headers: {
+                        ...mcpServerConfig.headers,
+                        Authorization: `Bearer ${accessToken}`,
+                    },
+                },
+            };
+            return new StreamableHTTPClientTransport(new URL(mcpServerConfig.httpUrl), oauthTransportOptions);
+        }
+        else if (mcpServerConfig.url) {
+            // Create SSE transport with OAuth token in Authorization header
+            return new SSEClientTransport(new URL(mcpServerConfig.url), {
+                requestInit: {
+                    headers: {
+                        ...mcpServerConfig.headers,
+                        Authorization: `Bearer ${accessToken}`,
+                    },
+                },
+            });
+        }
+        return null;
+    }
+    catch (error) {
+        console.error(`Failed to create OAuth transport for server '${mcpServerName}': ${getErrorMessage(error)}`);
+        return null;
+    }
+}
 /**
  * Discovers tools from all configured MCP servers and registers them with the tool registry.
  * It orchestrates the connection and discovery process for each server defined in the
@@ -99,11 +223,11 @@ export function getMCPDiscoveryState() {
  * @param toolRegistry The central registry where discovered tools will be registered.
  * @returns A promise that resolves when the discovery process has been attempted for all servers.
  */
-export async function discoverMcpTools(mcpServers, mcpServerCommand, toolRegistry, debugMode) {
+export async function discoverMcpTools(mcpServers, mcpServerCommand, toolRegistry, promptRegistry, debugMode) {
     mcpDiscoveryState = MCPDiscoveryState.IN_PROGRESS;
     try {
         mcpServers = populateMcpServerCommand(mcpServers, mcpServerCommand);
-        const discoveryPromises = Object.entries(mcpServers).map(([mcpServerName, mcpServerConfig]) => connectAndDiscover(mcpServerName, mcpServerConfig, toolRegistry, debugMode));
+        const discoveryPromises = Object.entries(mcpServers).map(([mcpServerName, mcpServerConfig]) => connectAndDiscover(mcpServerName, mcpServerConfig, toolRegistry, promptRegistry, debugMode));
         await Promise.all(discoveryPromises);
     }
     finally {
@@ -136,35 +260,33 @@ export function populateMcpServerCommand(mcpServers, mcpServerCommand) {
  * @param toolRegistry The registry to register discovered tools with
  * @returns Promise that resolves when discovery is complete
  */
-export async function connectAndDiscover(mcpServerName, mcpServerConfig, toolRegistry, debugMode) {
+export async function connectAndDiscover(mcpServerName, mcpServerConfig, toolRegistry, promptRegistry, debugMode) {
     updateMCPServerStatus(mcpServerName, MCPServerStatus.CONNECTING);
+    let mcpClient;
     try {
-        const mcpClient = await connectToMcpServer(mcpServerName, mcpServerConfig, debugMode);
-        try {
-            updateMCPServerStatus(mcpServerName, MCPServerStatus.CONNECTED);
-            mcpClient.onerror = (error) => {
-                console.error(`MCP ERROR (${mcpServerName}):`, error.toString());
-                updateMCPServerStatus(mcpServerName, MCPServerStatus.DISCONNECTED);
-                if (mcpServerName === IDE_SERVER_NAME) {
-                    ideContext.clearOpenFilesContext();
-                }
-            };
-            if (mcpServerName === IDE_SERVER_NAME) {
-                mcpClient.setNotificationHandler(OpenFilesNotificationSchema, (notification) => {
-                    ideContext.setOpenFilesContext(notification.params);
-                });
-            }
-            const tools = await discoverTools(mcpServerName, mcpServerConfig, mcpClient);
-            for (const tool of tools) {
-                toolRegistry.registerTool(tool);
-            }
+        mcpClient = await connectToMcpServer(mcpServerName, mcpServerConfig, debugMode);
+        mcpClient.onerror = (error) => {
+            console.error(`MCP ERROR (${mcpServerName}):`, error.toString());
+            updateMCPServerStatus(mcpServerName, MCPServerStatus.DISCONNECTED);
+        };
+        // Attempt to discover both prompts and tools
+        const prompts = await discoverPrompts(mcpServerName, mcpClient, promptRegistry);
+        const tools = await discoverTools(mcpServerName, mcpServerConfig, mcpClient);
+        // If we have neither prompts nor tools, it's a failed discovery
+        if (prompts.length === 0 && tools.length === 0) {
+            throw new Error('No prompts or tools found on the server.');
         }
-        catch (error) {
-            mcpClient.close();
-            throw error;
+        // If we found anything, the server is connected
+        updateMCPServerStatus(mcpServerName, MCPServerStatus.CONNECTED);
+        // Register any discovered tools
+        for (const tool of tools) {
+            toolRegistry.registerTool(tool);
         }
     }
     catch (error) {
+        if (mcpClient) {
+            mcpClient.close();
+        }
         console.error(`Error connecting to MCP server '${mcpServerName}': ${getErrorMessage(error)}`);
         updateMCPServerStatus(mcpServerName, MCPServerStatus.DISCONNECTED);
     }
@@ -185,22 +307,86 @@ export async function discoverTools(mcpServerName, mcpServerConfig, mcpClient) {
         const mcpCallableTool = mcpToTool(mcpClient);
         const tool = await mcpCallableTool.tool();
         if (!Array.isArray(tool.functionDeclarations)) {
-            throw new Error(`Server did not return valid function declarations.`);
+            // This is a valid case for a prompt-only server
+            return [];
         }
         const discoveredTools = [];
         for (const funcDecl of tool.functionDeclarations) {
-            if (!isEnabled(funcDecl, mcpServerName, mcpServerConfig)) {
-                continue;
+            try {
+                if (!isEnabled(funcDecl, mcpServerName, mcpServerConfig)) {
+                    continue;
+                }
+                discoveredTools.push(new DiscoveredMCPTool(mcpCallableTool, mcpServerName, funcDecl.name, funcDecl.description ?? '', funcDecl.parametersJsonSchema ?? { type: 'object', properties: {} }, mcpServerConfig.timeout ?? MCP_DEFAULT_TIMEOUT_MSEC, mcpServerConfig.trust));
+            }
+            catch (error) {
+                console.error(`Error discovering tool: '${funcDecl.name}' from MCP server '${mcpServerName}': ${error.message}`);
             }
-            discoveredTools.push(new DiscoveredMCPTool(mcpCallableTool, mcpServerName, funcDecl.name, funcDecl.description ?? '', funcDecl.parametersJsonSchema ?? { type: 'object', properties: {} }, mcpServerConfig.timeout ?? MCP_DEFAULT_TIMEOUT_MSEC, mcpServerConfig.trust));
-        }
-        if (discoveredTools.length === 0) {
-            throw Error('No enabled tools found');
         }
         return discoveredTools;
     }
     catch (error) {
-        throw new Error(`Error discovering tools: ${error}`);
+        if (error instanceof Error &&
+            !error.message?.includes('Method not found')) {
+            console.error(`Error discovering tools from ${mcpServerName}: ${getErrorMessage(error)}`);
+        }
+        return [];
+    }
+}
+/**
+ * Discovers and logs prompts from a connected MCP client.
+ * It retrieves prompt declarations from the client and logs their names.
+ *
+ * @param mcpServerName The name of the MCP server.
+ * @param mcpClient The active MCP client instance.
+ */
+export async function discoverPrompts(mcpServerName, mcpClient, promptRegistry) {
+    try {
+        const response = await mcpClient.request({ method: 'prompts/list', params: {} }, ListPromptsResultSchema);
+        for (const prompt of response.prompts) {
+            promptRegistry.registerPrompt({
+                ...prompt,
+                serverName: mcpServerName,
+                invoke: (params) => invokeMcpPrompt(mcpServerName, mcpClient, prompt.name, params),
+            });
+        }
+        return response.prompts;
+    }
+    catch (error) {
+        // It's okay if this fails, not all servers will have prompts.
+        // Don't log an error if the method is not found, which is a common case.
+        if (error instanceof Error &&
+            !error.message?.includes('Method not found')) {
+            console.error(`Error discovering prompts from ${mcpServerName}: ${getErrorMessage(error)}`);
+        }
+        return [];
+    }
+}
+/**
+ * Invokes a prompt on a connected MCP client.
+ *
+ * @param mcpServerName The name of the MCP server.
+ * @param mcpClient The active MCP client instance.
+ * @param promptName The name of the prompt to invoke.
+ * @param promptParams The parameters to pass to the prompt.
+ * @returns A promise that resolves to the result of the prompt invocation.
+ */
+export async function invokeMcpPrompt(mcpServerName, mcpClient, promptName, promptParams) {
+    try {
+        const response = await mcpClient.request({
+            method: 'prompts/get',
+            params: {
+                name: promptName,
+                arguments: promptParams,
+            },
+        }, GetPromptResultSchema);
+        return response;
+    }
+    catch (error) {
+        if (error instanceof Error &&
+            !error.message?.includes('Method not found')) {
+            console.error(`Error invoking prompt '${promptName}' from ${mcpServerName} ${promptParams}: ${getErrorMessage(error)}`);
+        }
+        throw error;
     }
 }
 /**
@@ -230,7 +416,7 @@ export async function connectToMcpServer(mcpServerName, mcpServerConfig, debugMo
         };
     }
     try {
-        const transport = createTransport(mcpServerName, mcpServerConfig, debugMode);
+        const transport = await createTransport(mcpServerName, mcpServerConfig, debugMode);
         try {
             await mcpClient.connect(transport, {
                 timeout: mcpServerConfig.timeout ?? MCP_DEFAULT_TIMEOUT_MSEC,
@@ -243,29 +429,280 @@ export async function connectToMcpServer(mcpServerName, mcpServerConfig, debugMo
         }
     }
     catch (error) {
-        // Create a safe config object that excludes sensitive information
-        const safeConfig = {
-            command: mcpServerConfig.command,
-            url: mcpServerConfig.url,
-            httpUrl: mcpServerConfig.httpUrl,
-            cwd: mcpServerConfig.cwd,
-            timeout: mcpServerConfig.timeout,
-            trust: mcpServerConfig.trust,
-            // Exclude args, env, and headers which may contain sensitive data
-        };
-        let errorString = `failed to start or connect to MCP server '${mcpServerName}' ` +
-            `${JSON.stringify(safeConfig)}; \n${error}`;
-        if (process.env.SANDBOX) {
-            errorString += `\nMake sure it is available in the sandbox`;
+        // Check if this is a 401 error that might indicate OAuth is required
+        const errorString = String(error);
+        if (errorString.includes('401') &&
+            (mcpServerConfig.httpUrl || mcpServerConfig.url)) {
+            mcpServerRequiresOAuth.set(mcpServerName, true);
+            // Only trigger automatic OAuth discovery for HTTP servers or when OAuth is explicitly configured
+            // For SSE servers, we should not trigger new OAuth flows automatically
+            const shouldTriggerOAuth = mcpServerConfig.httpUrl || mcpServerConfig.oauth?.enabled;
+            if (!shouldTriggerOAuth) {
+                // For SSE servers without explicit OAuth config, if a token was found but rejected, report it accurately.
+                const credentials = await MCPOAuthTokenStorage.getToken(mcpServerName);
+                if (credentials) {
+                    const hasStoredTokens = await MCPOAuthProvider.getValidToken(mcpServerName, {
+                        // Pass client ID if available
+                        clientId: credentials.clientId,
+                    });
+                    if (hasStoredTokens) {
+                        console.log(`Stored OAuth token for SSE server '${mcpServerName}' was rejected. ` +
+                            `Please re-authenticate using: /mcp auth ${mcpServerName}`);
+                    }
+                    else {
+                        console.log(`401 error received for SSE server '${mcpServerName}' without OAuth configuration. ` +
+                            `Please authenticate using: /mcp auth ${mcpServerName}`);
+                    }
+                }
+                throw new Error(`401 error received for SSE server '${mcpServerName}' without OAuth configuration. ` +
+                    `Please authenticate using: /mcp auth ${mcpServerName}`);
+            }
+            // Try to extract www-authenticate header from the error
+            let wwwAuthenticate = extractWWWAuthenticateHeader(errorString);
+            // If we didn't get the header from the error string, try to get it from the server
+            if (!wwwAuthenticate && mcpServerConfig.url) {
+                console.log(`No www-authenticate header in error, trying to fetch it from server...`);
+                try {
+                    const response = await fetch(mcpServerConfig.url, {
+                        method: 'HEAD',
+                        headers: {
+                            Accept: 'text/event-stream',
+                        },
+                        signal: AbortSignal.timeout(5000),
+                    });
+                    if (response.status === 401) {
+                        wwwAuthenticate = response.headers.get('www-authenticate');
+                        if (wwwAuthenticate) {
+                            console.log(`Found www-authenticate header from server: ${wwwAuthenticate}`);
+                        }
+                    }
+                }
+                catch (fetchError) {
+                    console.debug(`Failed to fetch www-authenticate header: ${getErrorMessage(fetchError)}`);
+                }
+            }
+            if (wwwAuthenticate) {
+                console.log(`Received 401 with www-authenticate header: ${wwwAuthenticate}`);
+                // Try automatic OAuth discovery and authentication
+                const oauthSuccess = await handleAutomaticOAuth(mcpServerName, mcpServerConfig, wwwAuthenticate);
+                if (oauthSuccess) {
+                    // Retry connection with OAuth token
+                    console.log(`Retrying connection to '${mcpServerName}' with OAuth token...`);
+                    // Get the valid token - we need to create a proper OAuth config
+                    // The token should already be available from the authentication process
+                    const credentials = await MCPOAuthTokenStorage.getToken(mcpServerName);
+                    if (credentials) {
+                        const accessToken = await MCPOAuthProvider.getValidToken(mcpServerName, {
+                            // Pass client ID if available
+                            clientId: credentials.clientId,
+                        });
+                        if (accessToken) {
+                            // Create transport with OAuth token
+                            const oauthTransport = await createTransportWithOAuth(mcpServerName, mcpServerConfig, accessToken);
+                            if (oauthTransport) {
+                                try {
+                                    await mcpClient.connect(oauthTransport, {
+                                        timeout: mcpServerConfig.timeout ?? MCP_DEFAULT_TIMEOUT_MSEC,
+                                    });
+                                    // Connection successful with OAuth
+                                    return mcpClient;
+                                }
+                                catch (retryError) {
+                                    console.error(`Failed to connect with OAuth token: ${getErrorMessage(retryError)}`);
+                                    throw retryError;
+                                }
+                            }
+                            else {
+                                console.error(`Failed to create OAuth transport for server '${mcpServerName}'`);
+                                throw new Error(`Failed to create OAuth transport for server '${mcpServerName}'`);
+                            }
+                        }
+                        else {
+                            console.error(`Failed to get OAuth token for server '${mcpServerName}'`);
+                            throw new Error(`Failed to get OAuth token for server '${mcpServerName}'`);
+                        }
+                    }
+                    else {
+                        console.error(`Failed to get credentials for server '${mcpServerName}' after successful OAuth authentication`);
+                        throw new Error(`Failed to get credentials for server '${mcpServerName}' after successful OAuth authentication`);
+                    }
+                }
+                else {
+                    console.error(`Failed to handle automatic OAuth for server '${mcpServerName}'`);
+                    throw new Error(`Failed to handle automatic OAuth for server '${mcpServerName}'`);
+                }
+            }
+            else {
+                // No www-authenticate header found, but we got a 401
+                // Only try OAuth discovery for HTTP servers or when OAuth is explicitly configured
+                // For SSE servers, we should not trigger new OAuth flows automatically
+                const shouldTryDiscovery = mcpServerConfig.httpUrl || mcpServerConfig.oauth?.enabled;
+                if (!shouldTryDiscovery) {
+                    const credentials = await MCPOAuthTokenStorage.getToken(mcpServerName);
+                    if (credentials) {
+                        const hasStoredTokens = await MCPOAuthProvider.getValidToken(mcpServerName, {
+                            // Pass client ID if available
+                            clientId: credentials.clientId,
+                        });
+                        if (hasStoredTokens) {
+                            console.log(`Stored OAuth token for SSE server '${mcpServerName}' was rejected. ` +
+                                `Please re-authenticate using: /mcp auth ${mcpServerName}`);
+                        }
+                        else {
+                            console.log(`401 error received for SSE server '${mcpServerName}' without OAuth configuration. ` +
+                                `Please authenticate using: /mcp auth ${mcpServerName}`);
+                        }
+                    }
+                    throw new Error(`401 error received for SSE server '${mcpServerName}' without OAuth configuration. ` +
+                        `Please authenticate using: /mcp auth ${mcpServerName}`);
+                }
+                // For SSE servers, try to discover OAuth configuration from the base URL
+                console.log(`🔍 Attempting OAuth discovery for '${mcpServerName}'...`);
+                if (mcpServerConfig.url) {
+                    const sseUrl = new URL(mcpServerConfig.url);
+                    const baseUrl = `${sseUrl.protocol}//${sseUrl.host}`;
+                    try {
+                        // Try to discover OAuth configuration from the base URL
+                        const oauthConfig = await OAuthUtils.discoverOAuthConfig(baseUrl);
+                        if (oauthConfig) {
+                            console.log(`Discovered OAuth configuration from base URL for server '${mcpServerName}'`);
+                            // Create OAuth configuration for authentication
+                            const oauthAuthConfig = {
+                                enabled: true,
+                                authorizationUrl: oauthConfig.authorizationUrl,
+                                tokenUrl: oauthConfig.tokenUrl,
+                                scopes: oauthConfig.scopes || [],
+                            };
+                            // Perform OAuth authentication
+                            console.log(`Starting OAuth authentication for server '${mcpServerName}'...`);
+                            await MCPOAuthProvider.authenticate(mcpServerName, oauthAuthConfig);
+                            // Retry connection with OAuth token
+                            const credentials = await MCPOAuthTokenStorage.getToken(mcpServerName);
+                            if (credentials) {
+                                const accessToken = await MCPOAuthProvider.getValidToken(mcpServerName, {
+                                    // Pass client ID if available
+                                    clientId: credentials.clientId,
+                                });
+                                if (accessToken) {
+                                    // Create transport with OAuth token
+                                    const oauthTransport = await createTransportWithOAuth(mcpServerName, mcpServerConfig, accessToken);
+                                    if (oauthTransport) {
+                                        try {
+                                            await mcpClient.connect(oauthTransport, {
+                                                timeout: mcpServerConfig.timeout ?? MCP_DEFAULT_TIMEOUT_MSEC,
+                                            });
+                                            // Connection successful with OAuth
+                                            return mcpClient;
+                                        }
+                                        catch (retryError) {
+                                            console.error(`Failed to connect with OAuth token: ${getErrorMessage(retryError)}`);
+                                            throw retryError;
+                                        }
+                                    }
+                                    else {
+                                        console.error(`Failed to create OAuth transport for server '${mcpServerName}'`);
+                                        throw new Error(`Failed to create OAuth transport for server '${mcpServerName}'`);
+                                    }
+                                }
+                                else {
+                                    console.error(`Failed to get OAuth token for server '${mcpServerName}'`);
+                                    throw new Error(`Failed to get OAuth token for server '${mcpServerName}'`);
+                                }
+                            }
+                            else {
+                                console.error(`Failed to get stored credentials for server '${mcpServerName}'`);
+                                throw new Error(`Failed to get stored credentials for server '${mcpServerName}'`);
+                            }
+                        }
+                        else {
+                            console.error(`❌ Could not configure OAuth for '${mcpServerName}' - please authenticate manually with /mcp auth ${mcpServerName}`);
+                            throw new Error(`OAuth configuration failed for '${mcpServerName}'. Please authenticate manually with /mcp auth ${mcpServerName}`);
+                        }
+                    }
+                    catch (discoveryError) {
+                        console.error(`❌ OAuth discovery failed for '${mcpServerName}' - please authenticate manually with /mcp auth ${mcpServerName}`);
+                        throw discoveryError;
+                    }
+                }
+                else {
+                    console.error(`❌ '${mcpServerName}' requires authentication but no OAuth configuration found`);
+                    throw new Error(`MCP server '${mcpServerName}' requires authentication. Please configure OAuth or check server settings.`);
+                }
+            }
+        }
+        else {
+            // Handle other connection errors
+            // Create a concise error message
+            const errorMessage = error.message || String(error);
+            const isNetworkError = errorMessage.includes('ENOTFOUND') ||
+                errorMessage.includes('ECONNREFUSED');
+            let conciseError;
+            if (isNetworkError) {
+                conciseError = `Cannot connect to '${mcpServerName}' - server may be down or URL incorrect`;
+            }
+            else {
+                conciseError = `Connection failed for '${mcpServerName}': ${errorMessage}`;
+            }
+            if (process.env.SANDBOX) {
+                conciseError += ` (check sandbox availability)`;
+            }
+            throw new Error(conciseError);
         }
-        throw new Error(errorString);
     }
 }
 /** Visible for Testing */
-export function createTransport(mcpServerName, mcpServerConfig, debugMode) {
+export async function createTransport(mcpServerName, mcpServerConfig, debugMode) {
+    if (mcpServerConfig.authProviderType === AuthProviderType.GOOGLE_CREDENTIALS) {
+        const provider = new GoogleCredentialProvider(mcpServerConfig);
+        const transportOptions = {
+            authProvider: provider,
+        };
+        if (mcpServerConfig.httpUrl) {
+            return new StreamableHTTPClientTransport(new URL(mcpServerConfig.httpUrl), transportOptions);
+        }
+        else if (mcpServerConfig.url) {
+            return new SSEClientTransport(new URL(mcpServerConfig.url), transportOptions);
+        }
+        throw new Error('No URL configured for Google Credentials MCP server');
+    }
+    // Check if we have OAuth configuration or stored tokens
+    let accessToken = null;
+    let hasOAuthConfig = mcpServerConfig.oauth?.enabled;
+    if (hasOAuthConfig && mcpServerConfig.oauth) {
+        accessToken = await MCPOAuthProvider.getValidToken(mcpServerName, mcpServerConfig.oauth);
+        if (!accessToken) {
+            console.error(`MCP server '${mcpServerName}' requires OAuth authentication. ` +
+                `Please authenticate using the /mcp auth command.`);
+            throw new Error(`MCP server '${mcpServerName}' requires OAuth authentication. ` +
+                `Please authenticate using the /mcp auth command.`);
+        }
+    }
+    else {
+        // Check if we have stored OAuth tokens for this server (from previous authentication)
+        const credentials = await MCPOAuthTokenStorage.getToken(mcpServerName);
+        if (credentials) {
+            accessToken = await MCPOAuthProvider.getValidToken(mcpServerName, {
+                // Pass client ID if available
+                clientId: credentials.clientId,
+            });
+            if (accessToken) {
+                hasOAuthConfig = true;
+                console.log(`Found stored OAuth token for server '${mcpServerName}'`);
+            }
+        }
+    }
     if (mcpServerConfig.httpUrl) {
         const transportOptions = {};
-        if (mcpServerConfig.headers) {
+        // Set up headers with OAuth token if available
+        if (hasOAuthConfig && accessToken) {
+            transportOptions.requestInit = {
+                headers: {
+                    ...mcpServerConfig.headers,
+                    Authorization: `Bearer ${accessToken}`,
+                },
+            };
+        }
+        else if (mcpServerConfig.headers) {
             transportOptions.requestInit = {
                 headers: mcpServerConfig.headers,
             };
@@ -274,7 +711,16 @@ export function createTransport(mcpServerName, mcpServerConfig, debugMode) {
     }
     if (mcpServerConfig.url) {
         const transportOptions = {};
-        if (mcpServerConfig.headers) {
+        // Set up headers with OAuth token if available
+        if (hasOAuthConfig && accessToken) {
+            transportOptions.requestInit = {
+                headers: {
+                    ...mcpServerConfig.headers,
+                    Authorization: `Bearer ${accessToken}`,
+                },
+            };
+        }
+        else if (mcpServerConfig.headers) {
             transportOptions.requestInit = {
                 headers: mcpServerConfig.headers,
             };