npm - @misterhuydo/cairn-mcp - Versions diffs - 1.0.0 - Mend

@misterhuydo/cairn-mcp 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (31) hide show

package/LICENSE +21 -0
package/bin/cairn-mcp.js +21 -0
package/how-to-use.md +61 -0
package/index.js +141 -0
package/package.json +43 -0
package/src/bundler/bundleWriter.js +113 -0
package/src/bundler/minifier.js +69 -0
package/src/bundler/vueMinifier.js +39 -0
package/src/graph/db.js +69 -0
package/src/graph/edges.js +21 -0
package/src/graph/nodes.js +30 -0
package/src/indexer/buildParsers/gradleParser.js +14 -0
package/src/indexer/buildParsers/mavenParser.js +15 -0
package/src/indexer/buildParsers/npmParser.js +17 -0
package/src/indexer/fileWalker.js +40 -0
package/src/indexer/parserFactory.js +35 -0
package/src/indexer/parsers/configParser.js +17 -0
package/src/indexer/parsers/javaParser.js +31 -0
package/src/indexer/parsers/markdownParser.js +17 -0
package/src/indexer/parsers/pythonParser.js +25 -0
package/src/indexer/parsers/sqlParser.js +14 -0
package/src/indexer/parsers/tsParser.js +45 -0
package/src/indexer/parsers/vueParser.js +25 -0
package/src/indexer/parsers/xmlParser.js +25 -0
package/src/indexer/securityScanner.js +103 -0
package/src/tools/bundle.js +30 -0
package/src/tools/codeGraph.js +111 -0
package/src/tools/describe.js +51 -0
package/src/tools/maintain.js +103 -0
package/src/tools/search.js +27 -0
package/src/tools/security.js +53 -0

package/src/tools/maintain.js ADDED Viewed

@@ -0,0 +1,103 @@
+import fs from 'fs/promises';
+import path from 'path';
+import { walkRepo, BUILD_FILES } from '../indexer/fileWalker.js';
+import { parseFile } from '../indexer/parserFactory.js';
+import { scanFile } from '../indexer/securityScanner.js';
+import { parseMaven } from '../indexer/buildParsers/mavenParser.js';
+import { parseNpm }   from '../indexer/buildParsers/npmParser.js';
+import { parseGradle } from '../indexer/buildParsers/gradleParser.js';
+import { upsertFile, upsertSymbol, clearFileData } from '../graph/nodes.js';
+import { insertDependency, insertBuildDep, insertSecurityFinding } from '../graph/edges.js';
+function inferFileType(filePath) {
+  const fp = filePath.toLowerCase();
+  if (fp.includes('test') || fp.includes('spec')) return 'test';
+  if (fp.endsWith('pom.xml') || fp.endsWith('package.json') || fp.endsWith('build.gradle')) return 'build';
+  if (fp.endsWith('.yml') || fp.endsWith('.yaml') || fp.endsWith('.properties') || fp.endsWith('.env')) return 'config';
+  if (fp.endsWith('.md') || fp.endsWith('.html')) return 'doc';
+  return 'source';
+}
+export async function maintain(db, { roots, languages }) {
+  const startTime = Date.now();
+  const stats = {
+    repos_indexed: 0,
+    files_by_language: {},
+    symbols_total: 0,
+    dependencies_mapped: 0,
+    security_findings: 0,
+  };
+  for (const root of roots) {
+    const repoName = path.basename(root);
+    stats.repos_indexed++;
+    // Index source files
+    const files = await walkRepo(root);
+    for (const filePath of files) {
+      try {
+        const content = await fs.readFile(filePath, 'utf-8');
+        const result = await parseFile(filePath, content, repoName);
+        if (!result) continue;
+        const { language } = result;
+        if (languages && !languages.includes(language)) continue;
+        stats.files_by_language[language] = (stats.files_by_language[language] || 0) + 1;
+        const fileId = upsertFile(db, {
+          repo: repoName,
+          path: filePath,
+          language,
+          file_type: inferFileType(filePath),
+        });
+        clearFileData(db, fileId);
+        for (const sym of (result.symbols || [])) {
+          upsertSymbol(db, { ...sym, file_id: fileId, language });
+          stats.symbols_total++;
+        }
+        for (const imp of (result.imports || [])) {
+          insertDependency(db, { from_file_id: fileId, to_fqn: imp, dep_type: 'imports' });
+          stats.dependencies_mapped++;
+        }
+        const findings = scanFile(filePath, content, language);
+        for (const f of findings) {
+          insertSecurityFinding(db, { file_id: fileId, ...f });
+          stats.security_findings++;
+        }
+      } catch {
+        // Skip unreadable/unparseable files
+      }
+    }
+    // Index build files
+    for (const buildFile of BUILD_FILES) {
+      const buildPath = path.join(root, buildFile);
+      try {
+        const content = await fs.readFile(buildPath, 'utf-8');
+        let deps = [];
+        if (buildFile === 'pom.xml')       deps = parseMaven(buildPath, content, repoName);
+        else if (buildFile === 'package.json') deps = parseNpm(buildPath, content, repoName);
+        else if (buildFile === 'build.gradle') deps = parseGradle(buildPath, content, repoName);
+        for (const dep of deps) insertBuildDep(db, { repo: repoName, ...dep });
+      } catch {
+        // Build file not present or unreadable
+      }
+    }
+  }
+  // Rebuild FTS5 index
+  db.exec(`
+    DELETE FROM fts_index;
+    INSERT INTO fts_index(fqn, name, description, path, repo, language, kind)
+    SELECT s.fqn, s.name, COALESCE(s.description,''), f.path, f.repo, s.language, s.kind
+    FROM symbols s JOIN files f ON s.file_id = f.id;
+  `);
+  stats.duration_ms = Date.now() - startTime;
+  return { content: [{ type: 'text', text: JSON.stringify(stats, null, 2) }] };
+}

package/src/tools/search.js ADDED Viewed

@@ -0,0 +1,27 @@
+export function search(db, { query, limit = 10, language, kind }) {
+  if (!query?.trim()) {
+    return { content: [{ type: 'text', text: '[]' }] };
+  }
+  // Build the SQL — FTS5 columns are: fqn, name, description, path, repo, language, kind
+  let sql = `
+    SELECT fqn, name, kind, language, description, path, repo,
+           bm25(fts_index) as score
+    FROM fts_index
+    WHERE fts_index MATCH ?
+  `;
+  const params = [query];
+  if (language) { sql += ' AND language = ?'; params.push(language); }
+  if (kind)     { sql += ' AND kind = ?';     params.push(kind); }
+  sql += ' ORDER BY bm25(fts_index) LIMIT ?';
+  params.push(limit);
+  try {
+    const results = db.prepare(sql).all(...params);
+    return { content: [{ type: 'text', text: JSON.stringify(results, null, 2) }] };
+  } catch (err) {
+    return { content: [{ type: 'text', text: JSON.stringify({ error: err.message }) }] };
+  }
+}

package/src/tools/security.js ADDED Viewed

@@ -0,0 +1,53 @@
+export function security(db, { paths, severity = 'HIGH', language }) {
+  let sql = `
+    SELECT sf.severity, sf.cwe, sf.rule_name as rule, sf.line,
+           sf.code_snippet as snippet, sf.description as fix,
+           f.path as file, f.language as lang
+    FROM security_findings sf
+    JOIN files f ON sf.file_id = f.id
+    WHERE 1=1
+  `;
+  const params = [];
+  if (severity === 'HIGH') {
+    sql += ` AND sf.severity = 'HIGH'`;
+  } else if (severity === 'MEDIUM') {
+    sql += ` AND sf.severity IN ('HIGH','MEDIUM')`;
+  } else if (severity !== 'ALL') {
+    sql += ' AND sf.severity = ?';
+    params.push(severity);
+  }
+  if (language) {
+    sql += ' AND f.language = ?';
+    params.push(language);
+  }
+  if (paths && paths.length > 0) {
+    sql += ` AND (${paths.map(() => 'f.path LIKE ?').join(' OR ')})`;
+    params.push(...paths.map(p => `${p}%`));
+  }
+  sql += ' ORDER BY sf.severity, f.path';
+  const findings = db.prepare(sql).all(...params);
+  const byLanguage = {};
+  const bySeverity = {};
+  for (const f of findings) {
+    byLanguage[f.lang]     = (byLanguage[f.lang]     || 0) + 1;
+    bySeverity[f.severity] = (bySeverity[f.severity] || 0) + 1;
+  }
+  return {
+    content: [{
+      type: 'text',
+      text: JSON.stringify({
+        total_findings: findings.length,
+        by_language: byLanguage,
+        by_severity: bySeverity,
+        findings: findings.slice(0, 100),
+      }, null, 2),
+    }],
+  };
+}