@modelcontextprotocol/express 2.0.0-alpha.2

package/LICENSE

@@ -0,0 +1,216 @@
+The MCP project is undergoing a licensing transition from the MIT License to the Apache License, Version 2.0 ("Apache-2.0"). All new code and specification contributions to the project are licensed under Apache-2.0. Documentation contributions (excluding specifications) are licensed under CC-BY-4.0.
+
+Contributions for which relicensing consent has been obtained are licensed under Apache-2.0. Contributions made by authors who originally licensed their work under the MIT License and who have not yet granted explicit permission to relicense remain licensed under the MIT License.
+
+No rights beyond those granted by the applicable original license are conveyed for such contributions.
+
+---
+
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to the Licensor for inclusion in the Work by the copyright
+      owner or by an individual or Legal Entity authorized to submit on behalf
+      of the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+---
+
+MIT License
+
+Copyright (c) 2024-2025 Model Context Protocol a Series of LF Projects, LLC.
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+
+---
+
+Creative Commons Attribution 4.0 International (CC-BY-4.0)
+
+Documentation in this project (excluding specifications) is licensed under
+CC-BY-4.0. See https://creativecommons.org/licenses/by/4.0/legalcode for
+the full license text.

package/README.md

@@ -0,0 +1,62 @@
+# `@modelcontextprotocol/express`
+
+Express adapters for the MCP TypeScript server SDK.
+
+This package is a thin Express integration layer for [`@modelcontextprotocol/server`](https://github.com/modelcontextprotocol/typescript-sdk/tree/main/packages/server).
+
+It does **not** implement MCP itself. Instead, it helps you:
+
+- create an Express app with sensible defaults for MCP servers
+- add DNS rebinding protection via Host header validation (recommended for localhost servers)
+
+## Install
+
+```bash
+npm install @modelcontextprotocol/server @modelcontextprotocol/express express
+
+# For MCP Streamable HTTP over Node.js (IncomingMessage/ServerResponse):
+npm install @modelcontextprotocol/node
+```
+
+## Exports
+
+- `createMcpExpressApp(options?)`
+- `hostHeaderValidation(allowedHostnames)`
+- `localhostHostValidation()`
+
+## Usage
+
+### Create an Express app (localhost DNS rebinding protection by default)
+
+```ts
+import { createMcpExpressApp } from '@modelcontextprotocol/express';
+
+const app = createMcpExpressApp(); // default host is 127.0.0.1; protection enabled
+```
+
+### Streamable HTTP endpoint (Express)
+
+```ts
+import { createMcpExpressApp } from '@modelcontextprotocol/express';
+import { NodeStreamableHTTPServerTransport } from '@modelcontextprotocol/node';
+import { McpServer } from '@modelcontextprotocol/server';
+
+const app = createMcpExpressApp();
+const server = new McpServer({ name: 'my-server', version: '1.0.0' });
+
+app.post('/mcp', async (req, res) => {
+    // Stateless example: create a transport per request.
+    // For stateful mode (sessions), keep a transport instance around and reuse it.
+    const transport = new NodeStreamableHTTPServerTransport({ sessionIdGenerator: undefined });
+    await server.connect(transport);
+    await transport.handleRequest(req, res, req.body);
+});
+```
+
+### Host header validation (DNS rebinding protection)
+
+```ts
+import { hostHeaderValidation } from '@modelcontextprotocol/express';
+
+app.use(hostHeaderValidation(['localhost', '127.0.0.1', '[::1]']));
+```

package/dist/index.d.mts

@@ -0,0 +1,93 @@
+import { Express, RequestHandler } from "express";
+
+//#region src/express.d.ts
+
+/**
+ * Options for creating an MCP Express application.
+ */
+interface CreateMcpExpressAppOptions {
+  /**
+   * The hostname to bind to. Defaults to `'127.0.0.1'`.
+   * When set to `'127.0.0.1'`, `'localhost'`, or `'::1'`, DNS rebinding protection is automatically enabled.
+   */
+  host?: string;
+  /**
+   * List of allowed hostnames for DNS rebinding protection.
+   * If provided, host header validation will be applied using this list.
+   * For IPv6, provide addresses with brackets (e.g., `'[::1]'`).
+   *
+   * This is useful when binding to `'0.0.0.0'` or `'::'` but still wanting
+   * to restrict which hostnames are allowed.
+   */
+  allowedHosts?: string[];
+  /**
+   * Controls the maximum request body size for the JSON body parser.
+   * Passed directly to Express's `express.json({ limit })` option.
+   * Defaults to Express's built-in default of `'100kb'`.
+   *
+   * @example '1mb', '500kb', '10mb'
+   */
+  jsonLimit?: string;
+}
+/**
+ * Creates an Express application pre-configured for MCP servers.
+ *
+ * When the host is `'127.0.0.1'`, `'localhost'`, or `'::1'` (the default is `'127.0.0.1'`),
+ * DNS rebinding protection middleware is automatically applied to protect against
+ * DNS rebinding attacks on localhost servers.
+ *
+ * @param options - Configuration options
+ * @returns A configured Express application
+ *
+ * @example Basic usage - defaults to 127.0.0.1 with DNS rebinding protection
+ * ```ts source="./express.examples.ts#createMcpExpressApp_default"
+ * const app = createMcpExpressApp();
+ * ```
+ *
+ * @example Custom host - DNS rebinding protection only applied for localhost hosts
+ * ```ts source="./express.examples.ts#createMcpExpressApp_customHost"
+ * const appOpen = createMcpExpressApp({ host: '0.0.0.0' }); // No automatic DNS rebinding protection
+ * const appLocal = createMcpExpressApp({ host: 'localhost' }); // DNS rebinding protection enabled
+ * ```
+ *
+ * @example Custom allowed hosts for non-localhost binding
+ * ```ts source="./express.examples.ts#createMcpExpressApp_allowedHosts"
+ * const app = createMcpExpressApp({ host: '0.0.0.0', allowedHosts: ['myapp.local', 'localhost'] });
+ * ```
+ */
+declare function createMcpExpressApp(options?: CreateMcpExpressAppOptions): Express;
+//#endregion
+//#region src/middleware/hostHeaderValidation.d.ts
+/**
+ * Express middleware for DNS rebinding protection.
+ * Validates `Host` header hostname (port-agnostic) against an allowed list.
+ *
+ * This is particularly important for servers without authorization or HTTPS,
+ * such as localhost servers or development servers. DNS rebinding attacks can
+ * bypass same-origin policy by manipulating DNS to point a domain to a
+ * localhost address, allowing malicious websites to access your local server.
+ *
+ * @param allowedHostnames - List of allowed hostnames (without ports).
+ *   For IPv6, provide the address with brackets (e.g., `[::1]`).
+ * @returns Express middleware function
+ *
+ * @example
+ * ```ts source="./hostHeaderValidation.examples.ts#hostHeaderValidation_basicUsage"
+ * const middleware = hostHeaderValidation(['localhost', '127.0.0.1', '[::1]']);
+ * app.use(middleware);
+ * ```
+ */
+declare function hostHeaderValidation(allowedHostnames: string[]): RequestHandler;
+/**
+ * Convenience middleware for localhost DNS rebinding protection.
+ * Allows only `localhost`, `127.0.0.1`, and `[::1]` (IPv6 localhost) hostnames.
+ *
+ * @example
+ * ```ts source="./hostHeaderValidation.examples.ts#localhostHostValidation_basicUsage"
+ * app.use(localhostHostValidation());
+ * ```
+ */
+declare function localhostHostValidation(): RequestHandler;
+//#endregion
+export { CreateMcpExpressAppOptions, createMcpExpressApp, hostHeaderValidation, localhostHostValidation };
+//# sourceMappingURL=index.d.mts.map

package/dist/index.d.mts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.mts","names":[],"sources":["../src/express.ts","../src/middleware/hostHeaderValidation.ts"],"sourcesContent":[],"mappings":";;;;;;AAQA;AAqDgB,UArDC,0BAAA,CAqD4B;;;;ACvC7C;EA2BgB,IAAA,CAAA,EAAA,MAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;iBDYA,mBAAA,WAA6B,6BAAkC;;;;;AArD/E;AAqDA;;;;ACvCA;AA2BA;;;;;;;;;;;iBA3BgB,oBAAA,8BAAkD;;;;;;;;;;iBA2BlD,uBAAA,CAAA,GAA2B"}

package/dist/index.mjs

@@ -0,0 +1,98 @@
+import express from "express";
+import { localhostAllowedHostnames, validateHostHeader } from "@modelcontextprotocol/server";
+
+//#region src/middleware/hostHeaderValidation.ts
+/**
+* Express middleware for DNS rebinding protection.
+* Validates `Host` header hostname (port-agnostic) against an allowed list.
+*
+* This is particularly important for servers without authorization or HTTPS,
+* such as localhost servers or development servers. DNS rebinding attacks can
+* bypass same-origin policy by manipulating DNS to point a domain to a
+* localhost address, allowing malicious websites to access your local server.
+*
+* @param allowedHostnames - List of allowed hostnames (without ports).
+*   For IPv6, provide the address with brackets (e.g., `[::1]`).
+* @returns Express middleware function
+*
+* @example
+* ```ts source="./hostHeaderValidation.examples.ts#hostHeaderValidation_basicUsage"
+* const middleware = hostHeaderValidation(['localhost', '127.0.0.1', '[::1]']);
+* app.use(middleware);
+* ```
+*/
+function hostHeaderValidation(allowedHostnames) {
+	return (req, res, next) => {
+		const result = validateHostHeader(req.headers.host, allowedHostnames);
+		if (!result.ok) {
+			res.status(403).json({
+				jsonrpc: "2.0",
+				error: {
+					code: -32e3,
+					message: result.message
+				},
+				id: null
+			});
+			return;
+		}
+		next();
+	};
+}
+/**
+* Convenience middleware for localhost DNS rebinding protection.
+* Allows only `localhost`, `127.0.0.1`, and `[::1]` (IPv6 localhost) hostnames.
+*
+* @example
+* ```ts source="./hostHeaderValidation.examples.ts#localhostHostValidation_basicUsage"
+* app.use(localhostHostValidation());
+* ```
+*/
+function localhostHostValidation() {
+	return hostHeaderValidation(localhostAllowedHostnames());
+}
+
+//#endregion
+//#region src/express.ts
+/**
+* Creates an Express application pre-configured for MCP servers.
+*
+* When the host is `'127.0.0.1'`, `'localhost'`, or `'::1'` (the default is `'127.0.0.1'`),
+* DNS rebinding protection middleware is automatically applied to protect against
+* DNS rebinding attacks on localhost servers.
+*
+* @param options - Configuration options
+* @returns A configured Express application
+*
+* @example Basic usage - defaults to 127.0.0.1 with DNS rebinding protection
+* ```ts source="./express.examples.ts#createMcpExpressApp_default"
+* const app = createMcpExpressApp();
+* ```
+*
+* @example Custom host - DNS rebinding protection only applied for localhost hosts
+* ```ts source="./express.examples.ts#createMcpExpressApp_customHost"
+* const appOpen = createMcpExpressApp({ host: '0.0.0.0' }); // No automatic DNS rebinding protection
+* const appLocal = createMcpExpressApp({ host: 'localhost' }); // DNS rebinding protection enabled
+* ```
+*
+* @example Custom allowed hosts for non-localhost binding
+* ```ts source="./express.examples.ts#createMcpExpressApp_allowedHosts"
+* const app = createMcpExpressApp({ host: '0.0.0.0', allowedHosts: ['myapp.local', 'localhost'] });
+* ```
+*/
+function createMcpExpressApp(options = {}) {
+	const { host = "127.0.0.1", allowedHosts, jsonLimit } = options;
+	const app = express();
+	app.use(express.json(jsonLimit ? { limit: jsonLimit } : void 0));
+	if (allowedHosts) app.use(hostHeaderValidation(allowedHosts));
+	else if ([
+		"127.0.0.1",
+		"localhost",
+		"::1"
+	].includes(host)) app.use(localhostHostValidation());
+	else if (host === "0.0.0.0" || host === "::") console.warn(`Warning: Server is binding to ${host} without DNS rebinding protection. Consider using the allowedHosts option to restrict allowed hosts, or use authentication to protect your server.`);
+	return app;
+}
+
+//#endregion
+export { createMcpExpressApp, hostHeaderValidation, localhostHostValidation };
+//# sourceMappingURL=index.mjs.map

package/dist/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.mjs","names":[],"sources":["../src/middleware/hostHeaderValidation.ts","../src/express.ts"],"sourcesContent":["import { localhostAllowedHostnames, validateHostHeader } from '@modelcontextprotocol/server';\nimport type { NextFunction, Request, RequestHandler, Response } from 'express';\n\n/**\n * Express middleware for DNS rebinding protection.\n * Validates `Host` header hostname (port-agnostic) against an allowed list.\n *\n * This is particularly important for servers without authorization or HTTPS,\n * such as localhost servers or development servers. DNS rebinding attacks can\n * bypass same-origin policy by manipulating DNS to point a domain to a\n * localhost address, allowing malicious websites to access your local server.\n *\n * @param allowedHostnames - List of allowed hostnames (without ports).\n *   For IPv6, provide the address with brackets (e.g., `[::1]`).\n * @returns Express middleware function\n *\n * @example\n * ```ts source=\"./hostHeaderValidation.examples.ts#hostHeaderValidation_basicUsage\"\n * const middleware = hostHeaderValidation(['localhost', '127.0.0.1', '[::1]']);\n * app.use(middleware);\n * ```\n */\nexport function hostHeaderValidation(allowedHostnames: string[]): RequestHandler {\n    return (req: Request, res: Response, next: NextFunction) => {\n        const result = validateHostHeader(req.headers.host, allowedHostnames);\n        if (!result.ok) {\n            res.status(403).json({\n                jsonrpc: '2.0',\n                error: {\n                    code: -32_000,\n                    message: result.message\n                },\n                id: null\n            });\n            return;\n        }\n        next();\n    };\n}\n\n/**\n * Convenience middleware for localhost DNS rebinding protection.\n * Allows only `localhost`, `127.0.0.1`, and `[::1]` (IPv6 localhost) hostnames.\n *\n * @example\n * ```ts source=\"./hostHeaderValidation.examples.ts#localhostHostValidation_basicUsage\"\n * app.use(localhostHostValidation());\n * ```\n */\nexport function localhostHostValidation(): RequestHandler {\n    return hostHeaderValidation(localhostAllowedHostnames());\n}\n","import type { Express } from 'express';\nimport express from 'express';\n\nimport { hostHeaderValidation, localhostHostValidation } from './middleware/hostHeaderValidation.js';\n\n/**\n * Options for creating an MCP Express application.\n */\nexport interface CreateMcpExpressAppOptions {\n    /**\n     * The hostname to bind to. Defaults to `'127.0.0.1'`.\n     * When set to `'127.0.0.1'`, `'localhost'`, or `'::1'`, DNS rebinding protection is automatically enabled.\n     */\n    host?: string;\n\n    /**\n     * List of allowed hostnames for DNS rebinding protection.\n     * If provided, host header validation will be applied using this list.\n     * For IPv6, provide addresses with brackets (e.g., `'[::1]'`).\n     *\n     * This is useful when binding to `'0.0.0.0'` or `'::'` but still wanting\n     * to restrict which hostnames are allowed.\n     */\n    allowedHosts?: string[];\n\n    /**\n     * Controls the maximum request body size for the JSON body parser.\n     * Passed directly to Express's `express.json({ limit })` option.\n     * Defaults to Express's built-in default of `'100kb'`.\n     *\n     * @example '1mb', '500kb', '10mb'\n     */\n    jsonLimit?: string;\n}\n\n/**\n * Creates an Express application pre-configured for MCP servers.\n *\n * When the host is `'127.0.0.1'`, `'localhost'`, or `'::1'` (the default is `'127.0.0.1'`),\n * DNS rebinding protection middleware is automatically applied to protect against\n * DNS rebinding attacks on localhost servers.\n *\n * @param options - Configuration options\n * @returns A configured Express application\n *\n * @example Basic usage - defaults to 127.0.0.1 with DNS rebinding protection\n * ```ts source=\"./express.examples.ts#createMcpExpressApp_default\"\n * const app = createMcpExpressApp();\n * ```\n *\n * @example Custom host - DNS rebinding protection only applied for localhost hosts\n * ```ts source=\"./express.examples.ts#createMcpExpressApp_customHost\"\n * const appOpen = createMcpExpressApp({ host: '0.0.0.0' }); // No automatic DNS rebinding protection\n * const appLocal = createMcpExpressApp({ host: 'localhost' }); // DNS rebinding protection enabled\n * ```\n *\n * @example Custom allowed hosts for non-localhost binding\n * ```ts source=\"./express.examples.ts#createMcpExpressApp_allowedHosts\"\n * const app = createMcpExpressApp({ host: '0.0.0.0', allowedHosts: ['myapp.local', 'localhost'] });\n * ```\n */\nexport function createMcpExpressApp(options: CreateMcpExpressAppOptions = {}): Express {\n    const { host = '127.0.0.1', allowedHosts, jsonLimit } = options;\n\n    const app = express();\n    app.use(express.json(jsonLimit ? { limit: jsonLimit } : undefined));\n\n    // If allowedHosts is explicitly provided, use that for validation\n    if (allowedHosts) {\n        app.use(hostHeaderValidation(allowedHosts));\n    } else {\n        // Apply DNS rebinding protection automatically for localhost hosts\n        const localhostHosts = ['127.0.0.1', 'localhost', '::1'];\n        if (localhostHosts.includes(host)) {\n            app.use(localhostHostValidation());\n        } else if (host === '0.0.0.0' || host === '::') {\n            // Warn when binding to all interfaces without DNS rebinding protection\n            // eslint-disable-next-line no-console\n            console.warn(\n                `Warning: Server is binding to ${host} without DNS rebinding protection. ` +\n                    'Consider using the allowedHosts option to restrict allowed hosts, ' +\n                    'or use authentication to protect your server.'\n            );\n        }\n    }\n\n    return app;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;AAsBA,SAAgB,qBAAqB,kBAA4C;AAC7E,SAAQ,KAAc,KAAe,SAAuB;EACxD,MAAM,SAAS,mBAAmB,IAAI,QAAQ,MAAM,iBAAiB;AACrE,MAAI,CAAC,OAAO,IAAI;AACZ,OAAI,OAAO,IAAI,CAAC,KAAK;IACjB,SAAS;IACT,OAAO;KACH,MAAM;KACN,SAAS,OAAO;KACnB;IACD,IAAI;IACP,CAAC;AACF;;AAEJ,QAAM;;;;;;;;;;;;AAad,SAAgB,0BAA0C;AACtD,QAAO,qBAAqB,2BAA2B,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;ACW5D,SAAgB,oBAAoB,UAAsC,EAAE,EAAW;CACnF,MAAM,EAAE,OAAO,aAAa,cAAc,cAAc;CAExD,MAAM,MAAM,SAAS;AACrB,KAAI,IAAI,QAAQ,KAAK,YAAY,EAAE,OAAO,WAAW,GAAG,OAAU,CAAC;AAGnE,KAAI,aACA,KAAI,IAAI,qBAAqB,aAAa,CAAC;UAGpB;EAAC;EAAa;EAAa;EAAM,CACrC,SAAS,KAAK,CAC7B,KAAI,IAAI,yBAAyB,CAAC;UAC3B,SAAS,aAAa,SAAS,KAGtC,SAAQ,KACJ,iCAAiC,KAAK,oJAGzC;AAIT,QAAO"}

package/package.json

@@ -0,0 +1,66 @@
+{
+  "name": "@modelcontextprotocol/express",
+  "private": false,
+  "version": "2.0.0-alpha.2",
+  "description": "Express adapters for the Model Context Protocol TypeScript server SDK - Express middleware",
+  "license": "MIT",
+  "author": "Anthropic, PBC (https://anthropic.com)",
+  "homepage": "https://modelcontextprotocol.io",
+  "bugs": "https://github.com/modelcontextprotocol/typescript-sdk/issues",
+  "type": "module",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/modelcontextprotocol/typescript-sdk.git"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "keywords": [
+    "modelcontextprotocol",
+    "mcp",
+    "express",
+    "middleware"
+  ],
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.mts",
+      "import": "./dist/index.mjs"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "dependencies": {},
+  "peerDependencies": {
+    "express": "^5.2.1",
+    "@modelcontextprotocol/server": "^2.0.0-alpha.2"
+  },
+  "devDependencies": {
+    "@eslint/js": "^9.39.2",
+    "@types/express": "^5.0.6",
+    "@types/express-serve-static-core": "^5.1.0",
+    "@typescript/native-preview": "^7.0.0-dev.20251217.1",
+    "eslint": "^9.39.2",
+    "eslint-config-prettier": "^10.1.8",
+    "eslint-plugin-n": "^17.23.1",
+    "prettier": "3.6.2",
+    "tsdown": "^0.18.0",
+    "typescript": "^5.9.3",
+    "typescript-eslint": "^8.48.1",
+    "vitest": "^4.0.15",
+    "@modelcontextprotocol/server": "^2.0.0-alpha.2",
+    "@modelcontextprotocol/tsconfig": "^2.0.0",
+    "@modelcontextprotocol/vitest-config": "^2.0.0",
+    "@modelcontextprotocol/eslint-config": "^2.0.0"
+  },
+  "scripts": {
+    "typecheck": "tsgo -p tsconfig.json --noEmit",
+    "build": "tsdown",
+    "build:watch": "tsdown --watch",
+    "lint": "eslint src/ && prettier --ignore-path ../../../.prettierignore --check .",
+    "lint:fix": "eslint src/ --fix && prettier --ignore-path ../../../.prettierignore --write .",
+    "check": "pnpm run typecheck && pnpm run lint",
+    "test": "vitest run",
+    "test:watch": "vitest"
+  }
+}