npm - @neverinfamous/mysql-mcp - Versions diffs - 2.3.0 → 3.0.0 - Mend

@neverinfamous/mysql-mcp 2.3.0 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (347) hide show

package/.dockerignore +1 -0
package/.gitattributes +18 -0
package/.github/workflows/codeql.yml +2 -10
package/.github/workflows/docker-publish.yml +15 -13
package/CHANGELOG.md +287 -1
package/DOCKER_README.md +100 -265
package/Dockerfile +5 -0
package/README.md +124 -59
package/VERSION +1 -1
package/dist/__tests__/mocks/adapter.d.ts.map +1 -1
package/dist/__tests__/mocks/adapter.js +2 -0
package/dist/__tests__/mocks/adapter.js.map +1 -1
package/dist/adapters/DatabaseAdapter.d.ts.map +1 -1
package/dist/adapters/DatabaseAdapter.js +50 -9
package/dist/adapters/DatabaseAdapter.js.map +1 -1
package/dist/adapters/mysql/MySQLAdapter.d.ts +6 -0
package/dist/adapters/mysql/MySQLAdapter.d.ts.map +1 -1
package/dist/adapters/mysql/MySQLAdapter.js +8 -0
package/dist/adapters/mysql/MySQLAdapter.js.map +1 -1
package/dist/adapters/mysql/SchemaManager.js +16 -15
package/dist/adapters/mysql/SchemaManager.js.map +1 -1
package/dist/adapters/mysql/prompts/index.js +10 -20
package/dist/adapters/mysql/prompts/index.js.map +1 -1
package/dist/adapters/mysql/prompts/proxysqlSetup.js +1 -1
package/dist/adapters/mysql/resources/docstore.d.ts.map +1 -1
package/dist/adapters/mysql/resources/docstore.js +10 -7
package/dist/adapters/mysql/resources/docstore.js.map +1 -1
package/dist/adapters/mysql/resources/events.js +11 -8
package/dist/adapters/mysql/resources/events.js.map +1 -1
package/dist/adapters/mysql/resources/indexes.d.ts.map +1 -1
package/dist/adapters/mysql/resources/indexes.js +12 -15
package/dist/adapters/mysql/resources/indexes.js.map +1 -1
package/dist/adapters/mysql/resources/innodb.d.ts.map +1 -1
package/dist/adapters/mysql/resources/innodb.js +20 -17
package/dist/adapters/mysql/resources/innodb.js.map +1 -1
package/dist/adapters/mysql/resources/locks.d.ts.map +1 -1
package/dist/adapters/mysql/resources/locks.js +9 -6
package/dist/adapters/mysql/resources/locks.js.map +1 -1
package/dist/adapters/mysql/resources/performance.d.ts.map +1 -1
package/dist/adapters/mysql/resources/performance.js +15 -15
package/dist/adapters/mysql/resources/performance.js.map +1 -1
package/dist/adapters/mysql/resources/spatial.d.ts.map +1 -1
package/dist/adapters/mysql/resources/spatial.js +9 -6
package/dist/adapters/mysql/resources/spatial.js.map +1 -1
package/dist/adapters/mysql/resources/sysschema.d.ts.map +1 -1
package/dist/adapters/mysql/resources/sysschema.js +12 -9
package/dist/adapters/mysql/resources/sysschema.js.map +1 -1
package/dist/adapters/mysql/tools/admin/backup.d.ts.map +1 -1
package/dist/adapters/mysql/tools/admin/backup.js +170 -121
package/dist/adapters/mysql/tools/admin/backup.js.map +1 -1
package/dist/adapters/mysql/tools/admin/maintenance.d.ts.map +1 -1
package/dist/adapters/mysql/tools/admin/maintenance.js +106 -57
package/dist/adapters/mysql/tools/admin/maintenance.js.map +1 -1
package/dist/adapters/mysql/tools/admin/monitoring.d.ts.map +1 -1
package/dist/adapters/mysql/tools/admin/monitoring.js +183 -101
package/dist/adapters/mysql/tools/admin/monitoring.js.map +1 -1
package/dist/adapters/mysql/tools/cluster/group-replication.d.ts.map +1 -1
package/dist/adapters/mysql/tools/cluster/group-replication.js +164 -120
package/dist/adapters/mysql/tools/cluster/group-replication.js.map +1 -1
package/dist/adapters/mysql/tools/cluster/innodb-cluster.d.ts.map +1 -1
package/dist/adapters/mysql/tools/cluster/innodb-cluster.js +212 -145
package/dist/adapters/mysql/tools/cluster/innodb-cluster.js.map +1 -1
package/dist/adapters/mysql/tools/codemode/index.d.ts.map +1 -1
package/dist/adapters/mysql/tools/codemode/index.js +6 -4
package/dist/adapters/mysql/tools/codemode/index.js.map +1 -1
package/dist/adapters/mysql/tools/core.d.ts.map +1 -1
package/dist/adapters/mysql/tools/core.js +152 -29
package/dist/adapters/mysql/tools/core.js.map +1 -1
package/dist/adapters/mysql/tools/docstore.d.ts.map +1 -1
package/dist/adapters/mysql/tools/docstore.js +340 -163
package/dist/adapters/mysql/tools/docstore.js.map +1 -1
package/dist/adapters/mysql/tools/events.d.ts.map +1 -1
package/dist/adapters/mysql/tools/events.js +284 -198
package/dist/adapters/mysql/tools/events.js.map +1 -1
package/dist/adapters/mysql/tools/json/core.d.ts.map +1 -1
package/dist/adapters/mysql/tools/json/core.js +11 -39
package/dist/adapters/mysql/tools/json/core.js.map +1 -1
package/dist/adapters/mysql/tools/json/enhanced.d.ts.map +1 -1
package/dist/adapters/mysql/tools/json/enhanced.js +15 -33
package/dist/adapters/mysql/tools/json/enhanced.js.map +1 -1
package/dist/adapters/mysql/tools/json/helpers.d.ts.map +1 -1
package/dist/adapters/mysql/tools/json/helpers.js +13 -24
package/dist/adapters/mysql/tools/json/helpers.js.map +1 -1
package/dist/adapters/mysql/tools/partitioning.js +3 -0
package/dist/adapters/mysql/tools/partitioning.js.map +1 -1
package/dist/adapters/mysql/tools/performance/analysis.d.ts.map +1 -1
package/dist/adapters/mysql/tools/performance/analysis.js +89 -60
package/dist/adapters/mysql/tools/performance/analysis.js.map +1 -1
package/dist/adapters/mysql/tools/performance/optimization.d.ts.map +1 -1
package/dist/adapters/mysql/tools/performance/optimization.js +151 -127
package/dist/adapters/mysql/tools/performance/optimization.js.map +1 -1
package/dist/adapters/mysql/tools/proxysql.d.ts +1 -1
package/dist/adapters/mysql/tools/proxysql.d.ts.map +1 -1
package/dist/adapters/mysql/tools/proxysql.js +289 -176
package/dist/adapters/mysql/tools/proxysql.js.map +1 -1
package/dist/adapters/mysql/tools/replication.js +75 -49
package/dist/adapters/mysql/tools/replication.js.map +1 -1
package/dist/adapters/mysql/tools/roles.d.ts.map +1 -1
package/dist/adapters/mysql/tools/roles.js +224 -182
package/dist/adapters/mysql/tools/roles.js.map +1 -1
package/dist/adapters/mysql/tools/router.d.ts.map +1 -1
package/dist/adapters/mysql/tools/router.js +168 -67
package/dist/adapters/mysql/tools/router.js.map +1 -1
package/dist/adapters/mysql/tools/schema/constraints.d.ts.map +1 -1
package/dist/adapters/mysql/tools/schema/constraints.js +21 -3
package/dist/adapters/mysql/tools/schema/constraints.js.map +1 -1
package/dist/adapters/mysql/tools/schema/management.d.ts.map +1 -1
package/dist/adapters/mysql/tools/schema/management.js +61 -14
package/dist/adapters/mysql/tools/schema/management.js.map +1 -1
package/dist/adapters/mysql/tools/schema/routines.d.ts.map +1 -1
package/dist/adapters/mysql/tools/schema/routines.js +27 -4
package/dist/adapters/mysql/tools/schema/routines.js.map +1 -1
package/dist/adapters/mysql/tools/schema/scheduled_events.d.ts.map +1 -1
package/dist/adapters/mysql/tools/schema/scheduled_events.js +24 -3
package/dist/adapters/mysql/tools/schema/scheduled_events.js.map +1 -1
package/dist/adapters/mysql/tools/schema/triggers.d.ts.map +1 -1
package/dist/adapters/mysql/tools/schema/triggers.js +23 -2
package/dist/adapters/mysql/tools/schema/triggers.js.map +1 -1
package/dist/adapters/mysql/tools/schema/views.d.ts.map +1 -1
package/dist/adapters/mysql/tools/schema/views.js +47 -7
package/dist/adapters/mysql/tools/schema/views.js.map +1 -1
package/dist/adapters/mysql/tools/security/audit.d.ts.map +1 -1
package/dist/adapters/mysql/tools/security/audit.js +102 -34
package/dist/adapters/mysql/tools/security/audit.js.map +1 -1
package/dist/adapters/mysql/tools/security/data-protection.d.ts.map +1 -1
package/dist/adapters/mysql/tools/security/data-protection.js +264 -205
package/dist/adapters/mysql/tools/security/data-protection.js.map +1 -1
package/dist/adapters/mysql/tools/security/encryption.d.ts.map +1 -1
package/dist/adapters/mysql/tools/security/encryption.js +137 -104
package/dist/adapters/mysql/tools/security/encryption.js.map +1 -1
package/dist/adapters/mysql/tools/shell/backup.d.ts.map +1 -1
package/dist/adapters/mysql/tools/shell/backup.js +71 -59
package/dist/adapters/mysql/tools/shell/backup.js.map +1 -1
package/dist/adapters/mysql/tools/shell/restore.d.ts.map +1 -1
package/dist/adapters/mysql/tools/shell/restore.js +61 -47
package/dist/adapters/mysql/tools/shell/restore.js.map +1 -1
package/dist/adapters/mysql/tools/spatial/geometry.d.ts.map +1 -1
package/dist/adapters/mysql/tools/spatial/geometry.js +19 -5
package/dist/adapters/mysql/tools/spatial/geometry.js.map +1 -1
package/dist/adapters/mysql/tools/spatial/operations.d.ts.map +1 -1
package/dist/adapters/mysql/tools/spatial/operations.js +42 -17
package/dist/adapters/mysql/tools/spatial/operations.js.map +1 -1
package/dist/adapters/mysql/tools/spatial/queries.d.ts.map +1 -1
package/dist/adapters/mysql/tools/spatial/queries.js +109 -57
package/dist/adapters/mysql/tools/spatial/queries.js.map +1 -1
package/dist/adapters/mysql/tools/spatial/setup.d.ts.map +1 -1
package/dist/adapters/mysql/tools/spatial/setup.js +103 -50
package/dist/adapters/mysql/tools/spatial/setup.js.map +1 -1
package/dist/adapters/mysql/tools/stats/comparative.d.ts.map +1 -1
package/dist/adapters/mysql/tools/stats/comparative.js +128 -79
package/dist/adapters/mysql/tools/stats/comparative.js.map +1 -1
package/dist/adapters/mysql/tools/stats/descriptive.d.ts.map +1 -1
package/dist/adapters/mysql/tools/stats/descriptive.js +174 -102
package/dist/adapters/mysql/tools/stats/descriptive.js.map +1 -1
package/dist/adapters/mysql/tools/sysschema/activity.d.ts.map +1 -1
package/dist/adapters/mysql/tools/sysschema/activity.js +50 -25
package/dist/adapters/mysql/tools/sysschema/activity.js.map +1 -1
package/dist/adapters/mysql/tools/sysschema/performance.d.ts.map +1 -1
package/dist/adapters/mysql/tools/sysschema/performance.js +121 -66
package/dist/adapters/mysql/tools/sysschema/performance.js.map +1 -1
package/dist/adapters/mysql/tools/sysschema/resources.d.ts.map +1 -1
package/dist/adapters/mysql/tools/sysschema/resources.js +101 -64
package/dist/adapters/mysql/tools/sysschema/resources.js.map +1 -1
package/dist/adapters/mysql/tools/text/fulltext.d.ts.map +1 -1
package/dist/adapters/mysql/tools/text/fulltext.js +18 -32
package/dist/adapters/mysql/tools/text/fulltext.js.map +1 -1
package/dist/adapters/mysql/tools/transactions.d.ts.map +1 -1
package/dist/adapters/mysql/tools/transactions.js +48 -23
package/dist/adapters/mysql/tools/transactions.js.map +1 -1
package/dist/adapters/mysql/types/proxysql-types.d.ts +15 -0
package/dist/adapters/mysql/types/proxysql-types.d.ts.map +1 -1
package/dist/adapters/mysql/types/proxysql-types.js +33 -1
package/dist/adapters/mysql/types/proxysql-types.js.map +1 -1
package/dist/adapters/mysql/types/router-types.d.ts +1 -1
package/dist/adapters/mysql/types/router-types.js +1 -1
package/dist/adapters/mysql/types/router-types.js.map +1 -1
package/dist/adapters/mysql/types/shell-types.js +2 -2
package/dist/adapters/mysql/types/shell-types.js.map +1 -1
package/dist/adapters/mysql/types.d.ts +485 -21
package/dist/adapters/mysql/types.d.ts.map +1 -1
package/dist/adapters/mysql/types.js +546 -19
package/dist/adapters/mysql/types.js.map +1 -1
package/dist/auth/scopes.js +1 -1
package/dist/auth/scopes.js.map +1 -1
package/dist/codemode/api.d.ts +3 -2
package/dist/codemode/api.d.ts.map +1 -1
package/dist/codemode/api.js +80 -5
package/dist/codemode/api.js.map +1 -1
package/dist/codemode/sandbox-factory.js +1 -1
package/dist/codemode/sandbox-factory.js.map +1 -1
package/dist/codemode/types.d.ts +26 -0
package/dist/codemode/types.d.ts.map +1 -1
package/dist/codemode/types.js +2 -0
package/dist/codemode/types.js.map +1 -1
package/dist/codemode/worker-sandbox.d.ts +4 -2
package/dist/codemode/worker-sandbox.d.ts.map +1 -1
package/dist/codemode/worker-sandbox.js +66 -7
package/dist/codemode/worker-sandbox.js.map +1 -1
package/dist/codemode/worker-script.d.ts +3 -0
package/dist/codemode/worker-script.d.ts.map +1 -1
package/dist/codemode/worker-script.js +128 -75
package/dist/codemode/worker-script.js.map +1 -1
package/dist/constants/ServerInstructions.d.ts +1 -1
package/dist/constants/ServerInstructions.d.ts.map +1 -1
package/dist/constants/ServerInstructions.js +37 -31
package/dist/constants/ServerInstructions.js.map +1 -1
package/dist/filtering/ToolConstants.d.ts +1 -1
package/dist/filtering/ToolConstants.d.ts.map +1 -1
package/dist/filtering/ToolConstants.js +1 -2
package/dist/filtering/ToolConstants.js.map +1 -1
package/dist/pool/ConnectionPool.d.ts.map +1 -1
package/dist/pool/ConnectionPool.js.map +1 -1
package/dist/transports/http.d.ts.map +1 -1
package/dist/transports/http.js +6 -0
package/dist/transports/http.js.map +1 -1
package/dist/utils/validators.d.ts +1 -1
package/dist/utils/validators.d.ts.map +1 -1
package/dist/utils/validators.js.map +1 -1
package/package.json +4 -4
package/releases/v2.3.0-release-notes.md +20 -20
package/releases/v2.3.1-release-notes.md +34 -0
package/releases/v3.0.0-release-notes.md +81 -0
package/src/__tests__/mocks/adapter.ts +3 -0
package/src/__tests__/perf.test.ts +6 -6
package/src/adapters/DatabaseAdapter.ts +58 -9
package/src/adapters/__tests__/DatabaseAdapter.test.ts +89 -8
package/src/adapters/mysql/MySQLAdapter.ts +17 -2
package/src/adapters/mysql/SchemaManager.ts +21 -21
package/src/adapters/mysql/__tests__/MySQLAdapter.test.ts +1 -1
package/src/adapters/mysql/prompts/index.ts +12 -22
package/src/adapters/mysql/prompts/proxysqlSetup.ts +1 -1
package/src/adapters/mysql/resources/docstore.ts +13 -10
package/src/adapters/mysql/resources/events.ts +12 -12
package/src/adapters/mysql/resources/indexes.ts +17 -19
package/src/adapters/mysql/resources/innodb.ts +23 -22
package/src/adapters/mysql/resources/locks.ts +9 -7
package/src/adapters/mysql/resources/performance.ts +23 -18
package/src/adapters/mysql/resources/spatial.ts +9 -7
package/src/adapters/mysql/resources/sysschema.ts +12 -11
package/src/adapters/mysql/tools/__tests__/core.test.ts +126 -55
package/src/adapters/mysql/tools/__tests__/docstore.test.ts +459 -88
package/src/adapters/mysql/tools/__tests__/events.test.ts +281 -103
package/src/adapters/mysql/tools/__tests__/proxysql.test.ts +128 -28
package/src/adapters/mysql/tools/__tests__/replication.test.ts +48 -2
package/src/adapters/mysql/tools/__tests__/roles.test.ts +15 -18
package/src/adapters/mysql/tools/__tests__/router.test.ts +32 -5
package/src/adapters/mysql/tools/__tests__/security.test.ts +126 -2
package/src/adapters/mysql/tools/__tests__/security_injection.test.ts +84 -76
package/src/adapters/mysql/tools/__tests__/security_integration.test.ts +47 -50
package/src/adapters/mysql/tools/__tests__/spatial.test.ts +11 -10
package/src/adapters/mysql/tools/__tests__/spatial_handler.test.ts +54 -38
package/src/adapters/mysql/tools/__tests__/stats.test.ts +285 -152
package/src/adapters/mysql/tools/__tests__/transactions.test.ts +13 -13
package/src/adapters/mysql/tools/admin/__tests__/backup.test.ts +171 -25
package/src/adapters/mysql/tools/admin/__tests__/maintenance.test.ts +240 -4
package/src/adapters/mysql/tools/admin/__tests__/monitoring-summary.test.ts +274 -0
package/src/adapters/mysql/tools/admin/__tests__/monitoring.test.ts +94 -5
package/src/adapters/mysql/tools/admin/backup.ts +193 -143
package/src/adapters/mysql/tools/admin/maintenance.ts +118 -69
package/src/adapters/mysql/tools/admin/monitoring.ts +201 -125
package/src/adapters/mysql/tools/cluster/__tests__/group-replication.test.ts +69 -0
package/src/adapters/mysql/tools/cluster/__tests__/innodb-cluster.test.ts +141 -0
package/src/adapters/mysql/tools/cluster/group-replication.ts +172 -132
package/src/adapters/mysql/tools/cluster/innodb-cluster.ts +231 -157
package/src/adapters/mysql/tools/codemode/__tests__/codemode-tool.test.ts +227 -0
package/src/adapters/mysql/tools/codemode/index.ts +5 -3
package/src/adapters/mysql/tools/core.ts +152 -38
package/src/adapters/mysql/tools/docstore.ts +422 -205
package/src/adapters/mysql/tools/events.ts +334 -233
package/src/adapters/mysql/tools/json/__tests__/core.test.ts +20 -0
package/src/adapters/mysql/tools/json/__tests__/enhanced.test.ts +82 -50
package/src/adapters/mysql/tools/json/__tests__/helpers.test.ts +42 -3
package/src/adapters/mysql/tools/json/core.ts +21 -42
package/src/adapters/mysql/tools/json/enhanced.ts +22 -37
package/src/adapters/mysql/tools/json/helpers.ts +21 -25
package/src/adapters/mysql/tools/partitioning.ts +3 -0
package/src/adapters/mysql/tools/performance/__tests__/analysis.test.ts +98 -5
package/src/adapters/mysql/tools/performance/__tests__/optimization-coverage.test.ts +515 -0
package/src/adapters/mysql/tools/performance/__tests__/optimization.test.ts +187 -0
package/src/adapters/mysql/tools/performance/analysis.ts +95 -69
package/src/adapters/mysql/tools/performance/optimization.ts +182 -153
package/src/adapters/mysql/tools/proxysql.ts +314 -209
package/src/adapters/mysql/tools/replication.ts +84 -57
package/src/adapters/mysql/tools/roles.ts +274 -226
package/src/adapters/mysql/tools/router.ts +181 -85
package/src/adapters/mysql/tools/schema/__tests__/constraints.test.ts +13 -0
package/src/adapters/mysql/tools/schema/__tests__/management.test.ts +60 -25
package/src/adapters/mysql/tools/schema/__tests__/scheduled_events.test.ts +11 -0
package/src/adapters/mysql/tools/schema/__tests__/triggers.test.ts +25 -4
package/src/adapters/mysql/tools/schema/__tests__/views.test.ts +46 -14
package/src/adapters/mysql/tools/schema/constraints.ts +22 -3
package/src/adapters/mysql/tools/schema/management.ts +60 -15
package/src/adapters/mysql/tools/schema/routines.ts +26 -4
package/src/adapters/mysql/tools/schema/scheduled_events.ts +25 -3
package/src/adapters/mysql/tools/schema/triggers.ts +27 -2
package/src/adapters/mysql/tools/schema/views.ts +46 -8
package/src/adapters/mysql/tools/security/__tests__/audit.test.ts +90 -4
package/src/adapters/mysql/tools/security/audit.ts +113 -39
package/src/adapters/mysql/tools/security/data-protection.ts +293 -233
package/src/adapters/mysql/tools/security/encryption.ts +172 -139
package/src/adapters/mysql/tools/shell/__tests__/backup.test.ts +29 -0
package/src/adapters/mysql/tools/shell/backup.ts +90 -73
package/src/adapters/mysql/tools/shell/restore.ts +62 -48
package/src/adapters/mysql/tools/spatial/__tests__/operations.test.ts +22 -14
package/src/adapters/mysql/tools/spatial/__tests__/queries.test.ts +65 -51
package/src/adapters/mysql/tools/spatial/geometry.ts +23 -7
package/src/adapters/mysql/tools/spatial/operations.ts +60 -31
package/src/adapters/mysql/tools/spatial/queries.ts +142 -65
package/src/adapters/mysql/tools/spatial/setup.ts +121 -55
package/src/adapters/mysql/tools/stats/__tests__/comparative.test.ts +12 -10
package/src/adapters/mysql/tools/stats/comparative.ts +150 -98
package/src/adapters/mysql/tools/stats/descriptive.ts +204 -127
package/src/adapters/mysql/tools/sysschema/__tests__/error-paths.test.ts +222 -0
package/src/adapters/mysql/tools/sysschema/__tests__/performance.test.ts +45 -0
package/src/adapters/mysql/tools/sysschema/__tests__/resources.test.ts +6 -3
package/src/adapters/mysql/tools/sysschema/activity.ts +52 -27
package/src/adapters/mysql/tools/sysschema/performance.ts +132 -68
package/src/adapters/mysql/tools/sysschema/resources.ts +105 -67
package/src/adapters/mysql/tools/text/__tests__/fulltext.test.ts +45 -17
package/src/adapters/mysql/tools/text/fulltext.ts +27 -38
package/src/adapters/mysql/tools/transactions.ts +49 -24
package/src/adapters/mysql/types/proxysql-types.ts +38 -1
package/src/adapters/mysql/types/router-types.ts +1 -1
package/src/adapters/mysql/types/shell-types.ts +2 -2
package/src/adapters/mysql/types.ts +632 -19
package/src/auth/__tests__/scopes.test.ts +2 -2
package/src/auth/scopes.ts +1 -1
package/src/codemode/__tests__/api.test.ts +417 -0
package/src/codemode/__tests__/sandbox-factory.test.ts +158 -0
package/src/codemode/__tests__/sandbox.test.ts +301 -0
package/src/codemode/__tests__/security.test.ts +368 -0
package/src/codemode/__tests__/worker-sandbox.test.ts +179 -0
package/src/codemode/__tests__/worker-script.test.ts +226 -0
package/src/codemode/api.ts +89 -5
package/src/codemode/sandbox-factory.ts +1 -1
package/src/codemode/types.ts +34 -0
package/src/codemode/worker-sandbox.ts +74 -7
package/src/codemode/worker-script.ts +157 -86
package/src/constants/ServerInstructions.ts +37 -31
package/src/filtering/ToolConstants.ts +1 -2
package/src/filtering/__tests__/ToolFilter.test.ts +9 -9
package/src/pool/ConnectionPool.ts +4 -1
package/src/transports/__tests__/http.test.ts +15 -3
package/src/transports/http.ts +12 -0
package/src/utils/validators.ts +2 -1
package/vitest.config.ts +3 -1
package/CODE_MODE.md +0 -245

package/src/adapters/mysql/tools/security/audit.ts CHANGED Viewed

@@ -4,33 +4,49 @@
  * Tools for security auditing, firewall monitoring, and compliance.
  */
-import { z } from "zod";
+import { z, ZodError } from "zod";
 import type { MySQLAdapter } from "../../MySQLAdapter.js";
 import type {
   ToolDefinition,
   RequestContext,
 } from "../../../../types/index.js";
+// =============================================================================
+// Helpers
+// =============================================================================
+/** Extract human-readable messages from a ZodError instead of raw JSON array */
+function formatZodError(error: ZodError): string {
+  return error.issues.map((i) => i.message).join("; ");
+}
+/** Strip verbose adapter prefixes from error messages */
+function stripErrorPrefix(msg: string): string {
+  return msg
+    .replace(/^Query failed:\s*/i, "")
+    .replace(/^Execute failed:\s*/i, "")
+    .trim();
+}
 // =============================================================================
 // Zod Schemas
 // ============================================================================
 const AuditLogSchema = z.object({
-  limit: z.number().default(100).describe("Maximum number of records"),
+  limit: z.number().default(20).describe("Maximum number of records"),
   user: z.string().optional().describe("Filter by username"),
   eventType: z
     .string()
     .optional()
-    .describe('Filter by event type (e.g., "CONNECT", "QUERY")'),
+    .describe(
+      'Filter by event type (e.g., "Execute", "Ping", "begin"). Uses LIKE matching against performance_schema EVENT_NAME.',
+    ),
   startTime: z.string().optional().describe("Start time filter (ISO 8601)"),
 });
 const FirewallRulesSchema = z.object({
   user: z.string().optional().describe("Filter by username"),
-  mode: z
-    .enum(["RECORDING", "PROTECTING", "DETECTING", "OFF"])
-    .optional()
-    .describe("Filter by mode"),
+  mode: z.string().optional().describe("Filter by mode"),
 });
 // =============================================================================
@@ -54,11 +70,10 @@ export function createSecurityAuditTool(adapter: MySQLAdapter): ToolDefinition {
       idempotentHint: true,
     },
     handler: async (params: unknown, _context: RequestContext) => {
-      const { limit, user, eventType, startTime } =
-        AuditLogSchema.parse(params);
       // First check if audit log table exists
       try {
+        const { limit, user, eventType, startTime } =
+          AuditLogSchema.parse(params);
         const checkResult = await adapter.executeQuery(`
                     SELECT TABLE_NAME
                     FROM information_schema.TABLES
@@ -70,36 +85,59 @@ export function createSecurityAuditTool(adapter: MySQLAdapter): ToolDefinition {
           // Try performance_schema alternative
           let query = `
                         SELECT
-                            EVENT_NAME as event,
-                            OBJECT_TYPE as objectType,
-                            OBJECT_NAME as objectName,
-                            CURRENT_USER as user,
-                            HOST as host,
-                            TIMER_START as startTime
-                        FROM performance_schema.events_statements_history
+                            e.EVENT_NAME as event,
+                            e.OBJECT_TYPE as objectType,
+                            e.OBJECT_NAME as objectName,
+                            t.PROCESSLIST_USER as user,
+                            t.PROCESSLIST_HOST as host,
+                            e.TIMER_START as startTime
+                        FROM performance_schema.events_statements_history e
+                        JOIN performance_schema.threads t
+                          ON e.THREAD_ID = t.THREAD_ID
                     `;
           const conditions: string[] = [];
-          const queryParams: unknown[] = [];
+          const filtersApplied: string[] = [];
+          const filtersIgnored: string[] = [];
           if (user) {
-            conditions.push("CURRENT_USER LIKE ?");
-            queryParams.push(`%${user}%`);
+            // Safe: escape single quotes in user input for LIKE clause
+            const escaped = user.replace(/'/g, "''");
+            conditions.push(`t.PROCESSLIST_USER LIKE '%${escaped}%'`);
+            filtersApplied.push("user");
+          }
+          if (eventType) {
+            const escaped = eventType.replace(/'/g, "''");
+            conditions.push(`e.EVENT_NAME LIKE '%${escaped}%'`);
+            filtersApplied.push("eventType");
+          }
+          if (startTime) {
+            // TIMER_START is a picosecond counter, not an ISO timestamp —
+            // this filter is best-effort and unlikely to match user intent.
+            filtersIgnored.push("startTime");
           }
           if (conditions.length > 0) {
             query += " WHERE " + conditions.join(" AND ");
           }
-          query += ` ORDER BY TIMER_START DESC LIMIT ${String(limit)}`;
+          // limit is Zod-validated as z.number(), safe to interpolate.
+          // performance_schema does not support prepared statement parameters.
+          query += ` ORDER BY e.TIMER_START DESC LIMIT ${limit}`;
-          const result = await adapter.executeQuery(query, queryParams);
-          return {
+          const result = await adapter.executeQuery(query, []);
+          const response: Record<string, unknown> = {
             source: "performance_schema",
             message: "Using performance_schema as audit log is not available",
             events: result.rows ?? [],
             count: result.rows?.length ?? 0,
           };
+          if (filtersIgnored.length > 0) {
+            response["filtersIgnored"] = filtersIgnored;
+            response["note"] =
+              "startTime filter not applied: performance_schema uses picosecond counters, not ISO timestamps";
+          }
+          return response;
         }
         // Query actual audit log
@@ -128,7 +166,8 @@ export function createSecurityAuditTool(adapter: MySQLAdapter): ToolDefinition {
           query += " WHERE " + conditions.join(" AND ");
         }
-        query += ` ORDER BY timestamp DESC LIMIT ${String(limit)}`;
+        query += " ORDER BY timestamp DESC LIMIT ?";
+        queryParams.push(limit);
         const result = await adapter.executeQuery(query, queryParams);
         return {
@@ -136,14 +175,28 @@ export function createSecurityAuditTool(adapter: MySQLAdapter): ToolDefinition {
           events: result.rows ?? [],
           count: result.rows?.length ?? 0,
         };
-      } catch {
-        return {
-          available: false,
-          message:
-            "Audit logging is not enabled. Install MySQL Enterprise Audit or Percona Audit plugin.",
-          suggestion:
-            'Install audit plugin with: INSTALL PLUGIN audit_log SONAME "audit_log.so"',
-        };
+      } catch (error: unknown) {
+        if (error instanceof ZodError) {
+          return { success: false, error: formatZodError(error) };
+        }
+        const msg = error instanceof Error ? error.message : String(error);
+        const stripped = stripErrorPrefix(msg);
+        const lower = stripped.toLowerCase();
+        if (
+          lower.includes("doesn't exist") ||
+          lower.includes("does not exist") ||
+          lower.includes("access denied")
+        ) {
+          return {
+            success: false,
+            available: false,
+            error:
+              "Audit logging is not enabled. Install MySQL Enterprise Audit or Percona Audit plugin.",
+            suggestion:
+              'Install audit plugin with: INSTALL PLUGIN audit_log SONAME "audit_log.so"',
+          };
+        }
+        return { success: false, error: stripped };
       }
     },
   };
@@ -203,11 +256,16 @@ export function createSecurityFirewallStatusTool(
           plugins: pluginResult.rows,
           configuration: variables,
         };
-      } catch {
+      } catch (error) {
+        if (error instanceof ZodError) {
+          return { success: false, error: formatZodError(error) };
+        }
+        const message = error instanceof Error ? error.message : String(error);
         return {
+          success: false,
           installed: false,
-          message: "Firewall plugin check failed",
-          suggestion: "Ensure you have privileges to view plugin information",
+          error: `Firewall plugin check failed: ${stripErrorPrefix(message)}`,
+          suggestion: stripErrorPrefix(message),
         };
       }
     },
@@ -232,9 +290,21 @@ export function createSecurityFirewallRulesTool(
       idempotentHint: true,
     },
     handler: async (params: unknown, _context: RequestContext) => {
-      const { user, mode } = FirewallRulesSchema.parse(params);
       try {
+        const { user, mode } = FirewallRulesSchema.parse(params);
+        const validModes = [
+          "RECORDING",
+          "PROTECTING",
+          "DETECTING",
+          "OFF",
+        ] as const;
+        if (mode && !validModes.includes(mode as (typeof validModes)[number])) {
+          return {
+            success: false,
+            error: `Invalid mode: '${mode}' — expected one of: ${validModes.join(", ")}`,
+          };
+        }
         // Get firewall users
         let usersQuery = `
                     SELECT USERHOST, MODE
@@ -280,10 +350,14 @@ export function createSecurityFirewallRulesTool(
           userCount: usersResult.rows?.length ?? 0,
           ruleCount: rulesResult.rows?.length ?? 0,
         };
-      } catch {
+      } catch (error) {
+        if (error instanceof ZodError) {
+          return { success: false, error: formatZodError(error) };
+        }
         return {
+          success: false,
           available: false,
-          message:
+          error:
             "Firewall tables not accessible. Ensure MySQL Enterprise Firewall is installed and you have appropriate privileges.",
         };
       }