@mcp-guardian/server 0.3.0

package/dist/config-parser.d.ts

@@ -0,0 +1,24 @@
+import { McpServerConfig } from './types.js';
+/**
+ * Parses MCP configuration files from various clients.
+ * Supports aggregation across multiple config files with deduplication.
+ */
+export declare class ConfigParser {
+    /**
+     * Find all known MCP config files on the system.
+     */
+    static findConfigPaths(): string[];
+    /**
+     * Parse a single MCP config file into an array of server configs.
+     */
+    static parse(filePath: string): McpServerConfig[];
+    /**
+     * Parse all discoverable configs, merge with deduplication, and return unified list.
+     * First config file takes priority for servers with the same name.
+     */
+    static parseAll(): {
+        servers: McpServerConfig[];
+        sourcePaths: string[];
+    };
+}
+//# sourceMappingURL=config-parser.d.ts.map

package/dist/config-parser.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-parser.d.ts","sourceRoot":"","sources":["../src/config-parser.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAE7C;;;GAGG;AACH,qBAAa,YAAY;IACvB;;OAEG;IACH,MAAM,CAAC,eAAe,IAAI,MAAM,EAAE;IA2BlC;;OAEG;IACH,MAAM,CAAC,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,eAAe,EAAE;IA6BjD;;;OAGG;IACH,MAAM,CAAC,QAAQ,IAAI;QAAE,OAAO,EAAE,eAAe,EAAE,CAAC;QAAC,WAAW,EAAE,MAAM,EAAE,CAAA;KAAE;CAuBzE"}

package/dist/config-parser.js

@@ -0,0 +1,96 @@
+import fs from 'fs';
+import path from 'path';
+import os from 'os';
+/**
+ * Parses MCP configuration files from various clients.
+ * Supports aggregation across multiple config files with deduplication.
+ */
+export class ConfigParser {
+    /**
+     * Find all known MCP config files on the system.
+     */
+    static findConfigPaths() {
+        const home = os.homedir();
+        const candidates = [
+            // Cline — VS Code
+            path.join(home, 'Library', 'Application Support', 'Code', 'User', 'globalStorage', 'saoudrizwan.claude-dev', 'settings', 'cline_mcp_settings.json'),
+            path.join(home, '.config', 'Code', 'User', 'globalStorage', 'saoudrizwan.claude-dev', 'settings', 'cline_mcp_settings.json'),
+            path.join(home, 'AppData', 'Roaming', 'Code', 'User', 'globalStorage', 'saoudrizwan.claude-dev', 'settings', 'cline_mcp_settings.json'),
+            // Cline — VS Code Insiders
+            path.join(home, 'Library', 'Application Support', 'Code - Insiders', 'User', 'globalStorage', 'saoudrizwan.claude-dev', 'settings', 'cline_mcp_settings.json'),
+            // Claude Desktop
+            path.join(home, 'Library', 'Application Support', 'Claude', 'claude_desktop_config.json'),
+            path.join(home, '.config', 'Claude', 'claude_desktop_config.json'),
+            // Cursor
+            path.join(home, '.cursor', 'mcp.json'),
+            // Windsurf
+            path.join(home, '.codeium', 'windsurf', 'mcp_config.json'),
+        ];
+        return candidates.filter((p) => {
+            try {
+                return fs.existsSync(p);
+            }
+            catch {
+                return false;
+            }
+        });
+    }
+    /**
+     * Parse a single MCP config file into an array of server configs.
+     */
+    static parse(filePath) {
+        const raw = JSON.parse(fs.readFileSync(filePath, 'utf-8'));
+        // Normalize different schemas
+        let servers;
+        if (raw.mcpServers && typeof raw.mcpServers === 'object') {
+            servers = raw.mcpServers;
+        }
+        else if (raw.servers && typeof raw.servers === 'object') {
+            servers = raw.servers;
+        }
+        else {
+            // Assume the file itself is a flat map of server name → config
+            servers = raw;
+        }
+        return Object.entries(servers).map(([name, config]) => {
+            const cfg = config;
+            return {
+                name,
+                command: typeof cfg.command === 'string' ? cfg.command : undefined,
+                args: Array.isArray(cfg.args) ? cfg.args : undefined,
+                env: cfg.env && typeof cfg.env === 'object' ? cfg.env : undefined,
+                url: typeof cfg.url === 'string' ? cfg.url : undefined,
+                transport: (cfg.transport === 'sse' ? 'sse' : 'stdio'),
+                packageName: typeof cfg.packageName === 'string' ? cfg.packageName : undefined,
+                version: typeof cfg.version === 'string' ? cfg.version : undefined,
+            };
+        });
+    }
+    /**
+     * Parse all discoverable configs, merge with deduplication, and return unified list.
+     * First config file takes priority for servers with the same name.
+     */
+    static parseAll() {
+        const paths = ConfigParser.findConfigPaths();
+        if (paths.length === 0)
+            return { servers: [], sourcePaths: [] };
+        const seen = new Set();
+        const allServers = [];
+        for (const p of paths) {
+            try {
+                const parsed = ConfigParser.parse(p);
+                for (const server of parsed) {
+                    if (!seen.has(server.name)) {
+                        seen.add(server.name);
+                        allServers.push(server);
+                    }
+                }
+            }
+            catch {
+                // Skip unparseable files
+            }
+        }
+        return { servers: allServers, sourcePaths: paths };
+    }
+}
+//# sourceMappingURL=config-parser.js.map

package/dist/config-parser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-parser.js","sourceRoot":"","sources":["../src/config-parser.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,MAAM,IAAI,CAAC;AAGpB;;;GAGG;AACH,MAAM,OAAO,YAAY;IACvB;;OAEG;IACH,MAAM,CAAC,eAAe;QACpB,MAAM,IAAI,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC;QAC1B,MAAM,UAAU,GAAG;YACjB,kBAAkB;YAClB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,qBAAqB,EAAE,MAAM,EAAE,MAAM,EAAE,eAAe,EAAE,wBAAwB,EAAE,UAAU,EAAE,yBAAyB,CAAC;YACnJ,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,eAAe,EAAE,wBAAwB,EAAE,UAAU,EAAE,yBAAyB,CAAC;YAC5H,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,eAAe,EAAE,wBAAwB,EAAE,UAAU,EAAE,yBAAyB,CAAC;YACvI,2BAA2B;YAC3B,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,qBAAqB,EAAE,iBAAiB,EAAE,MAAM,EAAE,eAAe,EAAE,wBAAwB,EAAE,UAAU,EAAE,yBAAyB,CAAC;YAC9J,iBAAiB;YACjB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,qBAAqB,EAAE,QAAQ,EAAE,4BAA4B,CAAC;YACzF,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,4BAA4B,CAAC;YAClE,SAAS;YACT,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,UAAU,CAAC;YACtC,WAAW;YACX,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,UAAU,EAAE,UAAU,EAAE,iBAAiB,CAAC;SAC3D,CAAC;QAEF,OAAO,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;YAC7B,IAAI,CAAC;gBACH,OAAO,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;YAC1B,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,KAAK,CAAC,QAAgB;QAC3B,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;QAE3D,8BAA8B;QAC9B,IAAI,OAAgC,CAAC;QACrC,IAAI,GAAG,CAAC,UAAU,IAAI,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;YACzD,OAAO,GAAG,GAAG,CAAC,UAAqC,CAAC;QACtD,CAAC;aAAM,IAAI,GAAG,CAAC,OAAO,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC1D,OAAO,GAAG,GAAG,CAAC,OAAkC,CAAC;QACnD,CAAC;aAAM,CAAC;YACN,+DAA+D;YAC/D,OAAO,GAAG,GAA8B,CAAC;QAC3C,CAAC;QAED,OAAO,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,MAAM,CAAC,EAAE,EAAE;YACpD,MAAM,GAAG,GAAG,MAAiC,CAAC;YAC9C,OAAO;gBACL,IAAI;gBACJ,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;gBAClE,IAAI,EAAE,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,IAAgB,CAAC,CAAC,CAAC,SAAS;gBAChE,GAAG,EAAE,GAAG,CAAC,GAAG,IAAI,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,GAA6B,CAAC,CAAC,CAAC,SAAS;gBAC3F,GAAG,EAAE,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;gBACtD,SAAS,EAAE,CAAC,GAAG,CAAC,SAAS,KAAK,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,CAAoB;gBACzE,WAAW,EAAE,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;gBAC9E,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;aACnE,CAAC;QACJ,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;OAGG;IACH,MAAM,CAAC,QAAQ;QACb,MAAM,KAAK,GAAG,YAAY,CAAC,eAAe,EAAE,CAAC;QAC7C,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,EAAE,OAAO,EAAE,EAAE,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC;QAEhE,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;QAC/B,MAAM,UAAU,GAAsB,EAAE,CAAC;QAEzC,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;YACtB,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBACrC,KAAK,MAAM,MAAM,IAAI,MAAM,EAAE,CAAC;oBAC5B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC;wBAC3B,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;wBACtB,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBAC1B,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,yBAAyB;YAC3B,CAAC;QACH,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,KAAK,EAAE,CAAC;IACrD,CAAC;CACF"}

package/dist/container.d.ts

@@ -0,0 +1,12 @@
+import { SecurityScanner } from './services/security-scanner.js';
+import { CostAuditor } from './services/cost-auditor.js';
+import { HealthMonitor } from './services/health-monitor.js';
+import { HistoryDatabase } from './database/history-db.js';
+export interface Container {
+    db: HistoryDatabase;
+    securityScanner: SecurityScanner;
+    costAuditor: CostAuditor;
+    healthMonitor: HealthMonitor;
+}
+export declare function createContainer(dbPath?: string): Container;
+//# sourceMappingURL=container.d.ts.map

package/dist/container.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"container.d.ts","sourceRoot":"","sources":["../src/container.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,aAAa,EAAE,MAAM,8BAA8B,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAG3D,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,eAAe,CAAC;IACpB,eAAe,EAAE,eAAe,CAAC;IACjC,WAAW,EAAE,WAAW,CAAC;IACzB,aAAa,EAAE,aAAa,CAAC;CAC9B;AAED,wBAAgB,eAAe,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAY1D"}

package/dist/container.js

@@ -0,0 +1,22 @@
+import { CveChecker } from './scanners/cve-checker.js';
+import { AuthProber } from './scanners/auth-prober.js';
+import { TypoSquatDetector } from './scanners/typo-squat-detector.js';
+import { SecretScanner } from './scanners/secret-scanner.js';
+import { SecurityScanner } from './services/security-scanner.js';
+import { CostAuditor } from './services/cost-auditor.js';
+import { HealthMonitor } from './services/health-monitor.js';
+import { HistoryDatabase } from './database/history-db.js';
+import { PricingClient } from './clients/pricing-client.js';
+export function createContainer(dbPath) {
+    const db = new HistoryDatabase(dbPath);
+    const cveChecker = new CveChecker();
+    const authProber = new AuthProber();
+    const typoDetector = new TypoSquatDetector();
+    const secretScanner = new SecretScanner();
+    const securityScanner = new SecurityScanner(cveChecker, authProber, typoDetector, secretScanner);
+    const pricingClient = new PricingClient();
+    const costAuditor = new CostAuditor(pricingClient, db);
+    const healthMonitor = new HealthMonitor(db);
+    return { db, securityScanner, costAuditor, healthMonitor };
+}
+//# sourceMappingURL=container.js.map

package/dist/container.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"container.js","sourceRoot":"","sources":["../src/container.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AACvD,OAAO,EAAE,UAAU,EAAE,MAAM,2BAA2B,CAAC;AACvD,OAAO,EAAE,iBAAiB,EAAE,MAAM,mCAAmC,CAAC;AACtE,OAAO,EAAE,aAAa,EAAE,MAAM,8BAA8B,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AACjE,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,aAAa,EAAE,MAAM,8BAA8B,CAAC;AAC7D,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAS5D,MAAM,UAAU,eAAe,CAAC,MAAe;IAC7C,MAAM,EAAE,GAAG,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;IACvC,MAAM,UAAU,GAAG,IAAI,UAAU,EAAE,CAAC;IACpC,MAAM,UAAU,GAAG,IAAI,UAAU,EAAE,CAAC;IACpC,MAAM,YAAY,GAAG,IAAI,iBAAiB,EAAE,CAAC;IAC7C,MAAM,aAAa,GAAG,IAAI,aAAa,EAAE,CAAC;IAC1C,MAAM,eAAe,GAAG,IAAI,eAAe,CAAC,UAAU,EAAE,UAAU,EAAE,YAAY,EAAE,aAAa,CAAC,CAAC;IACjG,MAAM,aAAa,GAAG,IAAI,aAAa,EAAE,CAAC;IAC1C,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;IACvD,MAAM,aAAa,GAAG,IAAI,aAAa,CAAC,EAAE,CAAC,CAAC;IAE5C,OAAO,EAAE,EAAE,EAAE,eAAe,EAAE,WAAW,EAAE,aAAa,EAAE,CAAC;AAC7D,CAAC"}

package/dist/database/history-db.d.ts

@@ -0,0 +1,28 @@
+import { ProxyCallRecord } from '../types.js';
+export interface CallRecordRow {
+    tool_name: string;
+    request_tokens: number;
+    response_tokens: number;
+    total_tokens: number;
+    duration_ms: number;
+}
+export declare class HistoryDatabase {
+    private db;
+    private dbPath;
+    private initialized;
+    private dirty;
+    private saveTimer;
+    private isInMemory;
+    constructor(dbPath?: string);
+    private ensureInitialized;
+    private scheduleFlush;
+    flush(): void;
+    getRecentSuccessRate(serverName: string): Promise<number>;
+    addSecurityScan(serverName: string, score: number, cveCount: number, details: unknown): Promise<void>;
+    addCostRecord(serverName: string, tokens: number, cost: number): Promise<void>;
+    addHealthCheck(serverName: string, latency: number, success: boolean, toolCount: number): Promise<void>;
+    addCallRecord(record: ProxyCallRecord): Promise<void>;
+    getCallRecordsForServer(serverName: string): Promise<ProxyCallRecord[]>;
+    close(): void;
+}
+//# sourceMappingURL=history-db.d.ts.map

package/dist/database/history-db.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"history-db.d.ts","sourceRoot":"","sources":["../../src/database/history-db.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C,MAAM,WAAW,aAAa;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,MAAM,CAAC;IACvB,eAAe,EAAE,MAAM,CAAC;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,qBAAa,eAAe;IAC1B,OAAO,CAAC,EAAE,CAAiB;IAC3B,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,WAAW,CAAkB;IACrC,OAAO,CAAC,KAAK,CAAkB;IAC/B,OAAO,CAAC,SAAS,CAA8C;IAC/D,OAAO,CAAC,UAAU,CAAkB;gBAExB,MAAM,CAAC,EAAE,MAAM;YAMb,iBAAiB;IAoE/B,OAAO,CAAC,aAAa;IASrB,KAAK,IAAI,IAAI;IAcP,oBAAoB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAazD,eAAe,CAAC,UAAU,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IASrG,aAAa,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAS9E,cAAc,CAAC,UAAU,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IASvG,aAAa,CAAC,MAAM,EAAE,eAAe,GAAG,OAAO,CAAC,IAAI,CAAC;IASrD,uBAAuB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC;IAkB7E,KAAK,IAAI,IAAI;CAOd"}

package/dist/database/history-db.js

@@ -0,0 +1,154 @@
+import initSqlJs from 'sql.js';
+import path from 'path';
+import os from 'os';
+import fs from 'fs';
+export class HistoryDatabase {
+    db;
+    dbPath;
+    initialized = false;
+    dirty = false;
+    saveTimer = null;
+    isInMemory = false;
+    constructor(dbPath) {
+        // ':memory:' means in-memory DB — never persist to disk
+        this.isInMemory = dbPath === ':memory:';
+        this.dbPath = dbPath || process.env['MCP_GUARDIAN_DB_PATH'] || path.join(os.homedir(), '.mcp-guardian', 'history.db');
+    }
+    async ensureInitialized() {
+        if (this.initialized)
+            return;
+        if (!this.isInMemory) {
+            const dir = path.dirname(this.dbPath);
+            if (!fs.existsSync(dir)) {
+                fs.mkdirSync(dir, { recursive: true });
+            }
+        }
+        const SQL = await initSqlJs();
+        if (!this.isInMemory && fs.existsSync(this.dbPath)) {
+            const buffer = fs.readFileSync(this.dbPath);
+            this.db = new SQL.Database(buffer);
+        }
+        else {
+            this.db = new SQL.Database();
+        }
+        this.db.run(`
+      CREATE TABLE IF NOT EXISTS security_scans (
+        id INTEGER PRIMARY KEY AUTOINCREMENT,
+        timestamp TEXT DEFAULT (datetime('now')),
+        server_name TEXT NOT NULL,
+        score INTEGER NOT NULL,
+        cve_count INTEGER NOT NULL DEFAULT 0,
+        details TEXT
+      )
+    `);
+        this.db.run(`
+      CREATE TABLE IF NOT EXISTS cost_records (
+        id INTEGER PRIMARY KEY AUTOINCREMENT,
+        timestamp TEXT DEFAULT (datetime('now')),
+        server_name TEXT NOT NULL,
+        tokens_used INTEGER NOT NULL,
+        cost_usd REAL NOT NULL
+      )
+    `);
+        this.db.run(`
+      CREATE TABLE IF NOT EXISTS health_checks (
+        id INTEGER PRIMARY KEY AUTOINCREMENT,
+        timestamp TEXT DEFAULT (datetime('now')),
+        server_name TEXT NOT NULL,
+        latency_ms INTEGER NOT NULL,
+        success INTEGER NOT NULL,
+        tool_count INTEGER NOT NULL
+      )
+    `);
+        this.db.run(`
+      CREATE TABLE IF NOT EXISTS call_records (
+        id INTEGER PRIMARY KEY AUTOINCREMENT,
+        timestamp TEXT DEFAULT (datetime('now')),
+        server_name TEXT NOT NULL,
+        tool_name TEXT NOT NULL,
+        request_tokens INTEGER NOT NULL DEFAULT 0,
+        response_tokens INTEGER NOT NULL DEFAULT 0,
+        total_tokens INTEGER NOT NULL DEFAULT 0,
+        duration_ms INTEGER NOT NULL DEFAULT 0
+      )
+    `);
+        this.db.run('CREATE INDEX IF NOT EXISTS idx_security_server ON security_scans(server_name)');
+        this.db.run('CREATE INDEX IF NOT EXISTS idx_cost_server ON cost_records(server_name)');
+        this.db.run('CREATE INDEX IF NOT EXISTS idx_health_server ON health_checks(server_name)');
+        this.db.run('CREATE INDEX IF NOT EXISTS idx_call_server ON call_records(server_name)');
+        this.initialized = true;
+    }
+    scheduleFlush() {
+        this.dirty = true;
+        if (!this.saveTimer) {
+            this.saveTimer = setTimeout(() => {
+                this.flush();
+            }, 1000);
+        }
+    }
+    flush() {
+        if (this.dirty && this.db) {
+            if (!this.isInMemory) {
+                const data = this.db.export();
+                fs.writeFileSync(this.dbPath, data);
+            }
+            this.dirty = false;
+        }
+        if (this.saveTimer) {
+            clearTimeout(this.saveTimer);
+            this.saveTimer = null;
+        }
+    }
+    async getRecentSuccessRate(serverName) {
+        await this.ensureInitialized();
+        const result = this.db.exec('SELECT AVG(success) as avg FROM health_checks WHERE server_name = ? ORDER BY timestamp DESC LIMIT 10', [serverName]);
+        if (result.length > 0 && result[0].values.length > 0) {
+            const avg = result[0].values[0][0];
+            return typeof avg === 'number' ? avg : 1;
+        }
+        return 1;
+    }
+    async addSecurityScan(serverName, score, cveCount, details) {
+        await this.ensureInitialized();
+        this.db.run('INSERT INTO security_scans (server_name, score, cve_count, details) VALUES (?, ?, ?, ?)', [serverName, score, cveCount, JSON.stringify(details)]);
+        this.scheduleFlush();
+    }
+    async addCostRecord(serverName, tokens, cost) {
+        await this.ensureInitialized();
+        this.db.run('INSERT INTO cost_records (server_name, tokens_used, cost_usd) VALUES (?, ?, ?)', [serverName, tokens, cost]);
+        this.scheduleFlush();
+    }
+    async addHealthCheck(serverName, latency, success, toolCount) {
+        await this.ensureInitialized();
+        this.db.run('INSERT INTO health_checks (server_name, latency_ms, success, tool_count) VALUES (?, ?, ?, ?)', [serverName, latency, success ? 1 : 0, toolCount]);
+        this.scheduleFlush();
+    }
+    async addCallRecord(record) {
+        await this.ensureInitialized();
+        this.db.run('INSERT INTO call_records (server_name, tool_name, request_tokens, response_tokens, total_tokens, duration_ms) VALUES (?, ?, ?, ?, ?, ?)', [record.serverName, record.toolName, record.requestTokens, record.responseTokens, record.totalTokens, record.durationMs]);
+        this.scheduleFlush();
+    }
+    async getCallRecordsForServer(serverName) {
+        await this.ensureInitialized();
+        const result = this.db.exec('SELECT server_name, tool_name, request_tokens, response_tokens, total_tokens, duration_ms, timestamp FROM call_records WHERE server_name = ?', [serverName]);
+        if (result.length === 0)
+            return [];
+        return result[0].values.map((row) => ({
+            serverName: row[0],
+            toolName: row[1],
+            requestTokens: row[2],
+            responseTokens: row[3],
+            totalTokens: row[4],
+            durationMs: row[5],
+            timestamp: row[6],
+        }));
+    }
+    close() {
+        this.flush();
+        if (this.db) {
+            this.db.close();
+            this.initialized = false;
+        }
+    }
+}
+//# sourceMappingURL=history-db.js.map

package/dist/database/history-db.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"history-db.js","sourceRoot":"","sources":["../../src/database/history-db.ts"],"names":[],"mappings":"AAAA,OAAO,SAAwC,MAAM,QAAQ,CAAC;AAC9D,OAAO,IAAI,MAAM,MAAM,CAAC;AACxB,OAAO,EAAE,MAAM,IAAI,CAAC;AACpB,OAAO,EAAE,MAAM,IAAI,CAAC;AAWpB,MAAM,OAAO,eAAe;IAClB,EAAE,CAAiB;IACnB,MAAM,CAAS;IACf,WAAW,GAAY,KAAK,CAAC;IAC7B,KAAK,GAAY,KAAK,CAAC;IACvB,SAAS,GAAyC,IAAI,CAAC;IACvD,UAAU,GAAY,KAAK,CAAC;IAEpC,YAAY,MAAe;QACzB,wDAAwD;QACxD,IAAI,CAAC,UAAU,GAAG,MAAM,KAAK,UAAU,CAAC;QACxC,IAAI,CAAC,MAAM,GAAG,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,sBAAsB,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,eAAe,EAAE,YAAY,CAAC,CAAC;IACxH,CAAC;IAEO,KAAK,CAAC,iBAAiB;QAC7B,IAAI,IAAI,CAAC,WAAW;YAAE,OAAO;QAE7B,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;YACrB,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACtC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBACxB,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YACzC,CAAC;QACH,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,SAAS,EAAE,CAAC;QAC9B,IAAI,CAAC,IAAI,CAAC,UAAU,IAAI,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YACnD,MAAM,MAAM,GAAG,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC5C,IAAI,CAAC,EAAE,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QACrC,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,EAAE,GAAG,IAAI,GAAG,CAAC,QAAQ,EAAE,CAAC;QAC/B,CAAC;QAED,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC;;;;;;;;;KASX,CAAC,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC;;;;;;;;KAQX,CAAC,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC;;;;;;;;;KASX,CAAC,CAAC;QACH,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC;;;;;;;;;;;KAWX,CAAC,CAAC;QAEH,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,+EAA+E,CAAC,CAAC;QAC7F,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;QACvF,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,4EAA4E,CAAC,CAAC;QAC1F,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;QAEvF,IAAI,CAAC,WAAW,GAAG,IAAI,CAAC;IAC1B,CAAC;IAEO,aAAa;QACnB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACpB,IAAI,CAAC,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC/B,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,CAAC,EAAE,IAAI,CAAC,CAAC;QACX,CAAC;IACH,CAAC;IAED,KAAK;QACH,IAAI,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,EAAE,EAAE,CAAC;YAC1B,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;gBACrB,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC;gBAC9B,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YACtC,CAAC;YACD,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;QACrB,CAAC;QACD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC7B,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QACxB,CAAC;IACH,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,UAAkB;QAC3C,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC,IAAI,CACzB,sGAAsG,EACtG,CAAC,UAAU,CAAC,CACb,CAAC;QACF,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrD,MAAM,GAAG,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACnC,OAAO,OAAO,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3C,CAAC;QACD,OAAO,CAAC,CAAC;IACX,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,UAAkB,EAAE,KAAa,EAAE,QAAgB,EAAE,OAAgB;QACzF,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,GAAG,CACT,yFAAyF,EACzF,CAAC,UAAU,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CACvD,CAAC;QACF,IAAI,CAAC,aAAa,EAAE,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,UAAkB,EAAE,MAAc,EAAE,IAAY;QAClE,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,GAAG,CACT,gFAAgF,EAChF,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,CAAC,CAC3B,CAAC;QACF,IAAI,CAAC,aAAa,EAAE,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,UAAkB,EAAE,OAAe,EAAE,OAAgB,EAAE,SAAiB;QAC3F,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,GAAG,CACT,8FAA8F,EAC9F,CAAC,UAAU,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,SAAS,CAAC,CAClD,CAAC;QACF,IAAI,CAAC,aAAa,EAAE,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAAuB;QACzC,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,GAAG,CACT,yIAAyI,EACzI,CAAC,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,aAAa,EAAE,MAAM,CAAC,cAAc,EAAE,MAAM,CAAC,WAAW,EAAE,MAAM,CAAC,UAAU,CAAC,CACzH,CAAC;QACF,IAAI,CAAC,aAAa,EAAE,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,uBAAuB,CAAC,UAAkB;QAC9C,MAAM,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC/B,MAAM,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC,IAAI,CACzB,8IAA8I,EAC9I,CAAC,UAAU,CAAC,CACb,CAAC;QACF,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,EAAE,CAAC;QACnC,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAU,EAAE,EAAE,CAAC,CAAC;YAC3C,UAAU,EAAE,GAAG,CAAC,CAAC,CAAW;YAC5B,QAAQ,EAAE,GAAG,CAAC,CAAC,CAAW;YAC1B,aAAa,EAAE,GAAG,CAAC,CAAC,CAAW;YAC/B,cAAc,EAAE,GAAG,CAAC,CAAC,CAAW;YAChC,WAAW,EAAE,GAAG,CAAC,CAAC,CAAW;YAC7B,UAAU,EAAE,GAAG,CAAC,CAAC,CAAW;YAC5B,SAAS,EAAE,GAAG,CAAC,CAAC,CAAW;SAC5B,CAAC,CAAC,CAAC;IACN,CAAC;IAED,KAAK;QACH,IAAI,CAAC,KAAK,EAAE,CAAC;QACb,IAAI,IAAI,CAAC,EAAE,EAAE,CAAC;YACZ,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,CAAC;YAChB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC;QAC3B,CAAC;IACH,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}

package/dist/index.js

@@ -0,0 +1,247 @@
+#!/usr/bin/env node
+import { Server } from '@modelcontextprotocol/sdk/server/index.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import { CallToolRequestSchema, ListToolsRequestSchema, SetLevelRequestSchema, ListResourcesRequestSchema, ReadResourceRequestSchema, ListPromptsRequestSchema, GetPromptRequestSchema, } from '@modelcontextprotocol/sdk/types.js';
+import { ConfigParser } from './config-parser.js';
+import { ReportGenerator } from './reporter/report-generator.js';
+import { calculateOverallScore } from './utils/scoring.js';
+import { Logger } from './utils/logger.js';
+import { createContainer } from './container.js';
+const container = createContainer();
+const reporter = new ReportGenerator();
+const server = new Server({ name: 'mcp-guardian', version: '0.3.0' }, { capabilities: { tools: {} } });
+// ── Logging capability (MCP spec requirement) ─────────────────────
+let currentLogLevel = 'info';
+server.setRequestHandler(SetLevelRequestSchema, async (request) => {
+    const { level } = request.params;
+    currentLogLevel = level;
+    Logger.info(`Log level set to ${level}`);
+    return {};
+});
+// ── MCP Resources: expose latest scan report ──────────────────────
+server.setRequestHandler(ListResourcesRequestSchema, async () => ({
+    resources: [
+        {
+            uri: 'mcp-guardian://latest-scan',
+            name: 'Latest Scan Report',
+            description: 'Most recent security scan results across all MCP servers',
+            mimeType: 'application/json',
+        },
+    ],
+}));
+server.setRequestHandler(ReadResourceRequestSchema, async (request) => {
+    if (request.params.uri === 'mcp-guardian://latest-scan') {
+        // Return the most recent security scan data from DB
+        const latestScan = { timestamp: new Date().toISOString(), note: 'Run scan_security or full_report to populate' };
+        return {
+            contents: [
+                {
+                    uri: request.params.uri,
+                    mimeType: 'application/json',
+                    text: JSON.stringify(latestScan, null, 2),
+                },
+            ],
+        };
+    }
+    throw new Error(`Resource not found: ${request.params.uri}`);
+});
+// ── MCP Prompts: pre-built template for auditing ──────────────────
+server.setRequestHandler(ListPromptsRequestSchema, async () => ({
+    prompts: [
+        {
+            name: 'audit-config',
+            description: 'Generate security audit instructions for an MCP server config',
+            arguments: [
+                {
+                    name: 'configPath',
+                    description: 'Path to an MCP config file (cline_mcp_settings.json)',
+                    required: false,
+                },
+            ],
+        },
+    ],
+}));
+server.setRequestHandler(GetPromptRequestSchema, async (request) => {
+    const { name, arguments: args } = request.params;
+    if (name === 'audit-config') {
+        const configPath = args?.configPath || 'auto-discovered';
+        return {
+            messages: [
+                {
+                    role: 'user',
+                    content: {
+                        type: 'text',
+                        text: `Please audit the MCP configuration at ${configPath} for:
+- Known CVEs in the described servers (via NVD/OSV.dev)
+- Authentication weaknesses (missing API keys, unencrypted transports)
+- Overloaded tool definitions (>15 tools per server)
+- Suspected typo-squatting in server package names
+- Hardcoded secrets in environment variables or command args
+
+Use the \`scan_security\` tool with the config path to get started.`,
+                    },
+                },
+            ],
+        };
+    }
+    throw new Error(`Prompt not found: ${name}`);
+});
+// ── Graceful shutdown ──────────────────────────────────────────────
+const shutdown = () => {
+    Logger.info('Shutting down gracefully...');
+    container.db.close();
+    process.exit(0);
+};
+process.on('SIGINT', shutdown);
+process.on('SIGTERM', shutdown);
+server.setRequestHandler(ListToolsRequestSchema, async () => ({
+    tools: [
+        {
+            name: 'scan_security',
+            description: 'Scan MCP server configurations for security vulnerabilities (CVEs, auth, typo-squatting, secrets)',
+            inputSchema: {
+                type: 'object',
+                properties: {
+                    configPath: { type: 'string', description: 'Path to an MCP config file. If omitted, auto-discovers configs.' },
+                },
+            },
+        },
+        {
+            name: 'audit_costs',
+            description: 'Audit token usage and estimate costs per MCP server',
+            inputSchema: {
+                type: 'object',
+                properties: {
+                    serverName: { type: 'string', description: 'Filter to a specific server name. If omitted, audits all.' },
+                },
+            },
+        },
+        {
+            name: 'check_health',
+            description: 'Check health, latency, and reliability of MCP servers',
+            inputSchema: {
+                type: 'object',
+                properties: {
+                    serverName: { type: 'string', description: 'Filter to a specific server name. If omitted, checks all.' },
+                },
+            },
+        },
+        {
+            name: 'full_report',
+            description: 'Generate a complete security, cost, and health report for all MCP servers',
+            inputSchema: {
+                type: 'object',
+                properties: {
+                    configPath: { type: 'string', description: 'Path to MCP config file (optional)' },
+                    format: { type: 'string', enum: ['json', 'markdown', 'text'], description: 'Output format (default: text)' },
+                },
+            },
+        },
+    ],
+}));
+server.setRequestHandler(CallToolRequestSchema, async (request) => {
+    const { name, arguments: args } = request.params;
+    // Load servers: single config path, aggregated all, or auto-discover
+    let servers;
+    let configDescription;
+    if (args?.configPath) {
+        servers = ConfigParser.parse(args.configPath);
+        configDescription = args.configPath;
+    }
+    else {
+        const result = ConfigParser.parseAll();
+        servers = result.servers;
+        configDescription = result.sourcePaths.length > 1
+            ? `aggregated (${result.sourcePaths.length} files)`
+            : (result.sourcePaths[0] || 'auto-detected');
+    }
+    if (servers.length === 0) {
+        return {
+            content: [{ type: 'text', text: 'No MCP servers found. Please specify a configPath or ensure MCP configs exist.' }],
+        };
+    }
+    switch (name) {
+        case 'scan_security': {
+            const results = await Promise.all(servers.map((s) => container.securityScanner.scanServer(s)));
+            for (const r of results) {
+                container.db.addSecurityScan(r.serverName, r.score, r.cves.length, r);
+            }
+            return { content: [{ type: 'text', text: reporter.formatSecurityReports(results) }] };
+        }
+        case 'audit_costs': {
+            const filtered = args?.serverName ? servers.filter((s) => s.name === args.serverName) : servers;
+            const results = await Promise.all(filtered.map((s) => container.costAuditor.auditServer(s)));
+            for (const r of results) {
+                container.db.addCostRecord(r.serverName, r.tokensUsed, r.estimatedCostUSD);
+            }
+            return { content: [{ type: 'text', text: reporter.formatCostReports(results) }] };
+        }
+        case 'check_health': {
+            const filtered = args?.serverName ? servers.filter((s) => s.name === args.serverName) : servers;
+            const results = await Promise.all(filtered.map((s) => container.healthMonitor.checkServer(s)));
+            for (const r of results) {
+                container.db.addHealthCheck(r.serverName, r.latencyMs, r.successRate > 0.5, r.toolCount);
+            }
+            return { content: [{ type: 'text', text: reporter.formatHealthReports(results) }] };
+        }
+        case 'full_report': {
+            const [security, costs, health] = await Promise.all([
+                Promise.all(servers.map((s) => container.securityScanner.scanServer(s))),
+                Promise.all(servers.map((s) => container.costAuditor.auditServer(s))),
+                Promise.all(servers.map((s) => container.healthMonitor.checkServer(s))),
+            ]);
+            const overallScore = calculateOverallScore(security, health);
+            const fullReport = {
+                timestamp: new Date().toISOString(),
+                configPath: configDescription,
+                security,
+                costs,
+                health,
+                overallScore,
+            };
+            // Store results in DB
+            for (const r of security)
+                container.db.addSecurityScan(r.serverName, r.score, r.cves.length, r);
+            for (const r of costs)
+                container.db.addCostRecord(r.serverName, r.tokensUsed, r.estimatedCostUSD);
+            for (const r of health)
+                container.db.addHealthCheck(r.serverName, r.latencyMs, r.successRate > 0.5, r.toolCount);
+            const format = args?.format ?? 'text';
+            if (format === 'json') {
+                return {
+                    content: [
+                        {
+                            type: 'resource',
+                            resource: {
+                                uri: 'report://mcp-guardian/full-report.json',
+                                mimeType: 'application/json',
+                                text: JSON.stringify(fullReport, null, 2),
+                            },
+                        },
+                        { type: 'text', text: reporter.formatFullReport(fullReport) },
+                    ],
+                };
+            }
+            let output;
+            if (format === 'markdown') {
+                output = reporter.toMarkdown(fullReport);
+            }
+            else {
+                output = reporter.formatFullReport(fullReport);
+            }
+            return { content: [{ type: 'text', text: output }] };
+        }
+        default:
+            throw new Error(`Unknown tool: ${name}`);
+    }
+});
+async function main() {
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+    Logger.info('MCP Guardian running on stdio');
+}
+main().catch((err) => {
+    Logger.error(`MCP Guardian failed to start: ${err}`);
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AACA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EACL,qBAAqB,EACrB,sBAAsB,EACtB,qBAAqB,EACrB,0BAA0B,EAC1B,yBAAyB,EACzB,wBAAwB,EACxB,sBAAsB,GACvB,MAAM,oCAAoC,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AAEjE,OAAO,EAAE,qBAAqB,EAAE,MAAM,oBAAoB,CAAC;AAC3D,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAC3C,OAAO,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEjD,MAAM,SAAS,GAAG,eAAe,EAAE,CAAC;AACpC,MAAM,QAAQ,GAAG,IAAI,eAAe,EAAE,CAAC;AAEvC,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,OAAO,EAAE,EAC1C,EAAE,YAAY,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,CAChC,CAAC;AAEF,qEAAqE;AACrE,IAAI,eAAe,GAAG,MAAM,CAAC;AAE7B,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;IAChE,MAAM,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IACjC,eAAe,GAAG,KAAK,CAAC;IACxB,MAAM,CAAC,IAAI,CAAC,oBAAoB,KAAK,EAAE,CAAC,CAAC;IACzC,OAAO,EAAE,CAAC;AACZ,CAAC,CAAC,CAAC;AAEH,qEAAqE;AACrE,MAAM,CAAC,iBAAiB,CAAC,0BAA0B,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;IAChE,SAAS,EAAE;QACT;YACE,GAAG,EAAE,4BAA4B;YACjC,IAAI,EAAE,oBAAoB;YAC1B,WAAW,EAAE,0DAA0D;YACvE,QAAQ,EAAE,kBAAkB;SAC7B;KACF;CACF,CAAC,CAAC,CAAC;AAEJ,MAAM,CAAC,iBAAiB,CAAC,yBAAyB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;IACpE,IAAI,OAAO,CAAC,MAAM,CAAC,GAAG,KAAK,4BAA4B,EAAE,CAAC;QACxD,oDAAoD;QACpD,MAAM,UAAU,GAAG,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,IAAI,EAAE,8CAA8C,EAAE,CAAC;QACjH,OAAO;YACL,QAAQ,EAAE;gBACR;oBACE,GAAG,EAAE,OAAO,CAAC,MAAM,CAAC,GAAG;oBACvB,QAAQ,EAAE,kBAAkB;oBAC5B,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;iBAC1C;aACF;SACF,CAAC;IACJ,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,uBAAuB,OAAO,CAAC,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC;AAC/D,CAAC,CAAC,CAAC;AAEH,qEAAqE;AACrE,MAAM,CAAC,iBAAiB,CAAC,wBAAwB,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;IAC9D,OAAO,EAAE;QACP;YACE,IAAI,EAAE,cAAc;YACpB,WAAW,EAAE,+DAA+D;YAC5E,SAAS,EAAE;gBACT;oBACE,IAAI,EAAE,YAAY;oBAClB,WAAW,EAAE,sDAAsD;oBACnE,QAAQ,EAAE,KAAK;iBAChB;aACF;SACF;KACF;CACF,CAAC,CAAC,CAAC;AAEJ,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;IACjE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IACjD,IAAI,IAAI,KAAK,cAAc,EAAE,CAAC;QAC5B,MAAM,UAAU,GAAI,IAAI,EAAE,UAAqB,IAAI,iBAAiB,CAAC;QACrE,OAAO;YACL,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,MAAM;oBACZ,OAAO,EAAE;wBACP,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,yCAAyC,UAAU;;;;;;;oEAOD;qBACzD;iBACF;aACF;SACF,CAAC;IACJ,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,qBAAqB,IAAI,EAAE,CAAC,CAAC;AAC/C,CAAC,CAAC,CAAC;AAEH,sEAAsE;AACtE,MAAM,QAAQ,GAAG,GAAG,EAAE;IACpB,MAAM,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC;IAC3C,SAAS,CAAC,EAAE,CAAC,KAAK,EAAE,CAAC;IACrB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC;AACF,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;AAC/B,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;AAEhC,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;IAC5D,KAAK,EAAE;QACL;YACE,IAAI,EAAE,eAAe;YACrB,WAAW,EAAE,mGAAmG;YAChH,WAAW,EAAE;gBACX,IAAI,EAAE,QAAQ;gBACd,UAAU,EAAE;oBACV,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,iEAAiE,EAAE;iBAC/G;aACF;SACF;QACD;YACE,IAAI,EAAE,aAAa;YACnB,WAAW,EAAE,qDAAqD;YAClE,WAAW,EAAE;gBACX,IAAI,EAAE,QAAQ;gBACd,UAAU,EAAE;oBACV,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,2DAA2D,EAAE;iBACzG;aACF;SACF;QACD;YACE,IAAI,EAAE,cAAc;YACpB,WAAW,EAAE,uDAAuD;YACpE,WAAW,EAAE;gBACX,IAAI,EAAE,QAAQ;gBACd,UAAU,EAAE;oBACV,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,2DAA2D,EAAE;iBACzG;aACF;SACF;QACD;YACE,IAAI,EAAE,aAAa;YACnB,WAAW,EAAE,2EAA2E;YACxF,WAAW,EAAE;gBACX,IAAI,EAAE,QAAQ;gBACd,UAAU,EAAE;oBACV,UAAU,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,oCAAoC,EAAE;oBACjF,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,EAAE,WAAW,EAAE,+BAA+B,EAAE;iBAC7G;aACF;SACF;KACF;CACF,CAAC,CAAC,CAAC;AAEJ,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;IAChE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAEjD,qEAAqE;IACrE,IAAI,OAA0B,CAAC;IAC/B,IAAI,iBAAyB,CAAC;IAE9B,IAAI,IAAI,EAAE,UAAU,EAAE,CAAC;QACrB,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,IAAI,CAAC,UAAoB,CAAC,CAAC;QACxD,iBAAiB,GAAG,IAAI,CAAC,UAAoB,CAAC;IAChD,CAAC;SAAM,CAAC;QACN,MAAM,MAAM,GAAG,YAAY,CAAC,QAAQ,EAAE,CAAC;QACvC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;QACzB,iBAAiB,GAAG,MAAM,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC;YAC/C,CAAC,CAAC,eAAe,MAAM,CAAC,WAAW,CAAC,MAAM,SAAS;YACnD,CAAC,CAAC,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,eAAe,CAAC,CAAC;IACjD,CAAC;IAED,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,gFAAgF,EAAE,CAAC;SACpH,CAAC;IACJ,CAAC;IAED,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,eAAe,CAAC,CAAC,CAAC;YACrB,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAC/F,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;gBACxB,SAAS,CAAC,EAAE,CAAC,eAAe,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;YACxE,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,CAAC,qBAAqB,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC;QACxF,CAAC;QAED,KAAK,aAAa,CAAC,CAAC,CAAC;YACnB,MAAM,QAAQ,GAAG,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;YAChG,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAC7F,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;gBACxB,SAAS,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,gBAAgB,CAAC,CAAC;YAC7E,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC;QACpF,CAAC;QAED,KAAK,cAAc,CAAC,CAAC,CAAC;YACpB,MAAM,QAAQ,GAAG,IAAI,EAAE,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;YAChG,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAC/F,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;gBACxB,SAAS,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,WAAW,GAAG,GAAG,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC;YAC3F,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,CAAC,mBAAmB,CAAC,OAAO,CAAC,EAAE,CAAC,EAAE,CAAC;QACtF,CAAC;QAED,KAAK,aAAa,CAAC,CAAC,CAAC;YACnB,MAAM,CAAC,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;gBAClD,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;gBACxE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;gBACrE,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,SAAS,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC;aACxE,CAAC,CAAC;YACH,MAAM,YAAY,GAAG,qBAAqB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YAC7D,MAAM,UAAU,GAAe;gBAC7B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,UAAU,EAAE,iBAAiB;gBAC7B,QAAQ;gBACR,KAAK;gBACL,MAAM;gBACN,YAAY;aACb,CAAC;YAEF,sBAAsB;YACtB,KAAK,MAAM,CAAC,IAAI,QAAQ;gBAAE,SAAS,CAAC,EAAE,CAAC,eAAe,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;YAChG,KAAK,MAAM,CAAC,IAAI,KAAK;gBAAE,SAAS,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,gBAAgB,CAAC,CAAC;YAClG,KAAK,MAAM,CAAC,IAAI,MAAM;gBAAE,SAAS,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,WAAW,GAAG,GAAG,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC;YAEjH,MAAM,MAAM,GAAI,IAAI,EAAE,MAAiB,IAAI,MAAM,CAAC;YAElD,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;gBACtB,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,UAAU;4BAChB,QAAQ,EAAE;gCACR,GAAG,EAAE,wCAAwC;gCAC7C,QAAQ,EAAE,kBAAkB;gCAC5B,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;6BAC1C;yBACF;wBACD,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,CAAC,gBAAgB,CAAC,UAAU,CAAC,EAAE;qBAC9D;iBACF,CAAC;YACJ,CAAC;YAED,IAAI,MAAc,CAAC;YACnB,IAAI,MAAM,KAAK,UAAU,EAAE,CAAC;gBAC1B,MAAM,GAAG,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC;YAC3C,CAAC;iBAAM,CAAC;gBACN,MAAM,GAAG,QAAQ,CAAC,gBAAgB,CAAC,UAAU,CAAC,CAAC;YACjD,CAAC;YACD,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,EAAE,CAAC;QACvD,CAAC;QAED;YACE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC;IAC7C,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,KAAK,UAAU,IAAI;IACjB,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAChC,MAAM,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;AAC/C,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;IACnB,MAAM,CAAC,KAAK,CAAC,iCAAiC,GAAG,EAAE,CAAC,CAAC;IACrD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}