npm - @opentabs-dev/mcp-server - Versions diffs - 0.0.19 - Mend

@opentabs-dev/mcp-server 0.0.19

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (309) hide show

package/dist/audit-disk.d.ts +23 -0
package/dist/audit-disk.d.ts.map +1 -0
package/dist/audit-disk.js +74 -0
package/dist/audit-disk.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-apis.d.ts +36 -0
package/dist/browser-tools/analyze-site/detect-apis.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-apis.js +383 -0
package/dist/browser-tools/analyze-site/detect-apis.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-auth.d.ts +72 -0
package/dist/browser-tools/analyze-site/detect-auth.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-auth.js +384 -0
package/dist/browser-tools/analyze-site/detect-auth.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-dom.d.ts +65 -0
package/dist/browser-tools/analyze-site/detect-dom.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-dom.js +45 -0
package/dist/browser-tools/analyze-site/detect-dom.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-framework.d.ts +48 -0
package/dist/browser-tools/analyze-site/detect-framework.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-framework.js +31 -0
package/dist/browser-tools/analyze-site/detect-framework.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-globals.d.ts +41 -0
package/dist/browser-tools/analyze-site/detect-globals.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-globals.js +42 -0
package/dist/browser-tools/analyze-site/detect-globals.js.map +1 -0
package/dist/browser-tools/analyze-site/detect-storage.d.ts +39 -0
package/dist/browser-tools/analyze-site/detect-storage.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/detect-storage.js +34 -0
package/dist/browser-tools/analyze-site/detect-storage.js.map +1 -0
package/dist/browser-tools/analyze-site/index.d.ts +52 -0
package/dist/browser-tools/analyze-site/index.d.ts.map +1 -0
package/dist/browser-tools/analyze-site/index.js +827 -0
package/dist/browser-tools/analyze-site/index.js.map +1 -0
package/dist/browser-tools/analyze-site.d.ts +17 -0
package/dist/browser-tools/analyze-site.d.ts.map +1 -0
package/dist/browser-tools/analyze-site.js +41 -0
package/dist/browser-tools/analyze-site.js.map +1 -0
package/dist/browser-tools/clear-console-logs.d.ts +9 -0
package/dist/browser-tools/clear-console-logs.d.ts.map +1 -0
package/dist/browser-tools/clear-console-logs.js +16 -0
package/dist/browser-tools/clear-console-logs.js.map +1 -0
package/dist/browser-tools/click-element.d.ts +10 -0
package/dist/browser-tools/click-element.d.ts.map +1 -0
package/dist/browser-tools/click-element.js +22 -0
package/dist/browser-tools/click-element.js.map +1 -0
package/dist/browser-tools/close-tab.d.ts +9 -0
package/dist/browser-tools/close-tab.d.ts.map +1 -0
package/dist/browser-tools/close-tab.js +16 -0
package/dist/browser-tools/close-tab.js.map +1 -0
package/dist/browser-tools/definition.d.ts +26 -0
package/dist/browser-tools/definition.d.ts.map +1 -0
package/dist/browser-tools/definition.js +16 -0
package/dist/browser-tools/definition.js.map +1 -0
package/dist/browser-tools/delete-cookies.d.ts +10 -0
package/dist/browser-tools/delete-cookies.d.ts.map +1 -0
package/dist/browser-tools/delete-cookies.js +19 -0
package/dist/browser-tools/delete-cookies.js.map +1 -0
package/dist/browser-tools/disable-network-capture.d.ts +9 -0
package/dist/browser-tools/disable-network-capture.d.ts.map +1 -0
package/dist/browser-tools/disable-network-capture.js +16 -0
package/dist/browser-tools/disable-network-capture.js.map +1 -0
package/dist/browser-tools/enable-network-capture.d.ts +12 -0
package/dist/browser-tools/enable-network-capture.d.ts.map +1 -0
package/dist/browser-tools/enable-network-capture.js +42 -0
package/dist/browser-tools/enable-network-capture.js.map +1 -0
package/dist/browser-tools/execute-script.d.ts +19 -0
package/dist/browser-tools/execute-script.d.ts.map +1 -0
package/dist/browser-tools/execute-script.js +51 -0
package/dist/browser-tools/execute-script.js.map +1 -0
package/dist/browser-tools/extension-check-adapter.d.ts +11 -0
package/dist/browser-tools/extension-check-adapter.d.ts.map +1 -0
package/dist/browser-tools/extension-check-adapter.js +22 -0
package/dist/browser-tools/extension-check-adapter.js.map +1 -0
package/dist/browser-tools/extension-force-reconnect.d.ts +9 -0
package/dist/browser-tools/extension-force-reconnect.d.ts.map +1 -0
package/dist/browser-tools/extension-force-reconnect.js +19 -0
package/dist/browser-tools/extension-force-reconnect.js.map +1 -0
package/dist/browser-tools/extension-get-logs.d.ts +24 -0
package/dist/browser-tools/extension-get-logs.d.ts.map +1 -0
package/dist/browser-tools/extension-get-logs.js +34 -0
package/dist/browser-tools/extension-get-logs.js.map +1 -0
package/dist/browser-tools/extension-get-side-panel.d.ts +8 -0
package/dist/browser-tools/extension-get-side-panel.d.ts.map +1 -0
package/dist/browser-tools/extension-get-side-panel.js +17 -0
package/dist/browser-tools/extension-get-side-panel.js.map +1 -0
package/dist/browser-tools/extension-get-state.d.ts +9 -0
package/dist/browser-tools/extension-get-state.d.ts.map +1 -0
package/dist/browser-tools/extension-get-state.js +19 -0
package/dist/browser-tools/extension-get-state.js.map +1 -0
package/dist/browser-tools/focus-tab.d.ts +9 -0
package/dist/browser-tools/focus-tab.d.ts.map +1 -0
package/dist/browser-tools/focus-tab.js +17 -0
package/dist/browser-tools/focus-tab.js.map +1 -0
package/dist/browser-tools/get-console-logs.d.ts +18 -0
package/dist/browser-tools/get-console-logs.d.ts.map +1 -0
package/dist/browser-tools/get-console-logs.js +30 -0
package/dist/browser-tools/get-console-logs.js.map +1 -0
package/dist/browser-tools/get-cookies.d.ts +10 -0
package/dist/browser-tools/get-cookies.d.ts.map +1 -0
package/dist/browser-tools/get-cookies.js +23 -0
package/dist/browser-tools/get-cookies.js.map +1 -0
package/dist/browser-tools/get-network-requests.d.ts +10 -0
package/dist/browser-tools/get-network-requests.d.ts.map +1 -0
package/dist/browser-tools/get-network-requests.js +27 -0
package/dist/browser-tools/get-network-requests.js.map +1 -0
package/dist/browser-tools/get-page-html.d.ts +11 -0
package/dist/browser-tools/get-page-html.d.ts.map +1 -0
package/dist/browser-tools/get-page-html.js +32 -0
package/dist/browser-tools/get-page-html.js.map +1 -0
package/dist/browser-tools/get-resource-content.d.ts +11 -0
package/dist/browser-tools/get-resource-content.d.ts.map +1 -0
package/dist/browser-tools/get-resource-content.js +31 -0
package/dist/browser-tools/get-resource-content.js.map +1 -0
package/dist/browser-tools/get-storage.d.ts +14 -0
package/dist/browser-tools/get-storage.d.ts.map +1 -0
package/dist/browser-tools/get-storage.js +28 -0
package/dist/browser-tools/get-storage.js.map +1 -0
package/dist/browser-tools/get-tab-content.d.ts +11 -0
package/dist/browser-tools/get-tab-content.d.ts.map +1 -0
package/dist/browser-tools/get-tab-content.js +29 -0
package/dist/browser-tools/get-tab-content.js.map +1 -0
package/dist/browser-tools/get-tab-info.d.ts +9 -0
package/dist/browser-tools/get-tab-info.d.ts.map +1 -0
package/dist/browser-tools/get-tab-info.js +17 -0
package/dist/browser-tools/get-tab-info.js.map +1 -0
package/dist/browser-tools/handle-dialog.d.ts +14 -0
package/dist/browser-tools/handle-dialog.d.ts.map +1 -0
package/dist/browser-tools/handle-dialog.js +30 -0
package/dist/browser-tools/handle-dialog.js.map +1 -0
package/dist/browser-tools/hover-element.d.ts +11 -0
package/dist/browser-tools/hover-element.d.ts.map +1 -0
package/dist/browser-tools/hover-element.js +24 -0
package/dist/browser-tools/hover-element.js.map +1 -0
package/dist/browser-tools/index.d.ts +7 -0
package/dist/browser-tools/index.d.ts.map +1 -0
package/dist/browser-tools/index.js +81 -0
package/dist/browser-tools/index.js.map +1 -0
package/dist/browser-tools/list-resources.d.ts +10 -0
package/dist/browser-tools/list-resources.d.ts.map +1 -0
package/dist/browser-tools/list-resources.js +29 -0
package/dist/browser-tools/list-resources.js.map +1 -0
package/dist/browser-tools/list-tabs.d.ts +7 -0
package/dist/browser-tools/list-tabs.d.ts.map +1 -0
package/dist/browser-tools/list-tabs.js +16 -0
package/dist/browser-tools/list-tabs.js.map +1 -0
package/dist/browser-tools/navigate-tab.d.ts +10 -0
package/dist/browser-tools/navigate-tab.d.ts.map +1 -0
package/dist/browser-tools/navigate-tab.js +18 -0
package/dist/browser-tools/navigate-tab.js.map +1 -0
package/dist/browser-tools/open-tab.d.ts +9 -0
package/dist/browser-tools/open-tab.d.ts.map +1 -0
package/dist/browser-tools/open-tab.js +18 -0
package/dist/browser-tools/open-tab.js.map +1 -0
package/dist/browser-tools/press-key.d.ts +17 -0
package/dist/browser-tools/press-key.d.ts.map +1 -0
package/dist/browser-tools/press-key.js +43 -0
package/dist/browser-tools/press-key.js.map +1 -0
package/dist/browser-tools/query-elements.d.ts +12 -0
package/dist/browser-tools/query-elements.d.ts.map +1 -0
package/dist/browser-tools/query-elements.js +30 -0
package/dist/browser-tools/query-elements.js.map +1 -0
package/dist/browser-tools/reload-extension.d.ts +13 -0
package/dist/browser-tools/reload-extension.d.ts.map +1 -0
package/dist/browser-tools/reload-extension.js +35 -0
package/dist/browser-tools/reload-extension.js.map +1 -0
package/dist/browser-tools/screenshot-tab.d.ts +9 -0
package/dist/browser-tools/screenshot-tab.d.ts.map +1 -0
package/dist/browser-tools/screenshot-tab.js +22 -0
package/dist/browser-tools/screenshot-tab.js.map +1 -0
package/dist/browser-tools/scroll.d.ts +23 -0
package/dist/browser-tools/scroll.d.ts.map +1 -0
package/dist/browser-tools/scroll.js +56 -0
package/dist/browser-tools/scroll.js.map +1 -0
package/dist/browser-tools/select-option.d.ts +12 -0
package/dist/browser-tools/select-option.d.ts.map +1 -0
package/dist/browser-tools/select-option.js +25 -0
package/dist/browser-tools/select-option.js.map +1 -0
package/dist/browser-tools/set-cookie.d.ts +16 -0
package/dist/browser-tools/set-cookie.d.ts.map +1 -0
package/dist/browser-tools/set-cookie.js +42 -0
package/dist/browser-tools/set-cookie.js.map +1 -0
package/dist/browser-tools/type-text.d.ts +12 -0
package/dist/browser-tools/type-text.d.ts.map +1 -0
package/dist/browser-tools/type-text.js +25 -0
package/dist/browser-tools/type-text.js.map +1 -0
package/dist/browser-tools/url-validation.d.ts +13 -0
package/dist/browser-tools/url-validation.d.ts.map +1 -0
package/dist/browser-tools/url-validation.js +23 -0
package/dist/browser-tools/url-validation.js.map +1 -0
package/dist/browser-tools/wait-for-element.d.ts +12 -0
package/dist/browser-tools/wait-for-element.d.ts.map +1 -0
package/dist/browser-tools/wait-for-element.js +29 -0
package/dist/browser-tools/wait-for-element.js.map +1 -0
package/dist/config.d.ts +99 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +344 -0
package/dist/config.js.map +1 -0
package/dist/dev-mode.d.ts +14 -0
package/dist/dev-mode.d.ts.map +1 -0
package/dist/dev-mode.js +15 -0
package/dist/dev-mode.js.map +1 -0
package/dist/discovery-legacy.d.ts +32 -0
package/dist/discovery-legacy.d.ts.map +1 -0
package/dist/discovery-legacy.js +415 -0
package/dist/discovery-legacy.js.map +1 -0
package/dist/discovery.d.ts +28 -0
package/dist/discovery.d.ts.map +1 -0
package/dist/discovery.js +97 -0
package/dist/discovery.js.map +1 -0
package/dist/extension-install.d.ts +27 -0
package/dist/extension-install.d.ts.map +1 -0
package/dist/extension-install.js +75 -0
package/dist/extension-install.js.map +1 -0
package/dist/extension-protocol.d.ts +130 -0
package/dist/extension-protocol.d.ts.map +1 -0
package/dist/extension-protocol.js +869 -0
package/dist/extension-protocol.js.map +1 -0
package/dist/file-watcher.d.ts +75 -0
package/dist/file-watcher.d.ts.map +1 -0
package/dist/file-watcher.js +616 -0
package/dist/file-watcher.js.map +1 -0
package/dist/http-routes.d.ts +88 -0
package/dist/http-routes.d.ts.map +1 -0
package/dist/http-routes.js +545 -0
package/dist/http-routes.js.map +1 -0
package/dist/index.d.ts +45 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +187 -0
package/dist/index.js.map +1 -0
package/dist/loader.d.ts +100 -0
package/dist/loader.d.ts.map +1 -0
package/dist/loader.js +402 -0
package/dist/loader.js.map +1 -0
package/dist/log-buffer.d.ts +33 -0
package/dist/log-buffer.d.ts.map +1 -0
package/dist/log-buffer.js +64 -0
package/dist/log-buffer.js.map +1 -0
package/dist/logger.d.ts +34 -0
package/dist/logger.d.ts.map +1 -0
package/dist/logger.js +81 -0
package/dist/logger.js.map +1 -0
package/dist/manifest-schema.d.ts +14 -0
package/dist/manifest-schema.d.ts.map +1 -0
package/dist/manifest-schema.js +51 -0
package/dist/manifest-schema.js.map +1 -0
package/dist/mcp-setup.d.ts +131 -0
package/dist/mcp-setup.d.ts.map +1 -0
package/dist/mcp-setup.js +673 -0
package/dist/mcp-setup.js.map +1 -0
package/dist/permissions.d.ts +59 -0
package/dist/permissions.d.ts.map +1 -0
package/dist/permissions.js +141 -0
package/dist/permissions.js.map +1 -0
package/dist/registry.d.ts +78 -0
package/dist/registry.d.ts.map +1 -0
package/dist/registry.js +187 -0
package/dist/registry.js.map +1 -0
package/dist/reload.d.ts +52 -0
package/dist/reload.d.ts.map +1 -0
package/dist/reload.js +326 -0
package/dist/reload.js.map +1 -0
package/dist/resolver.d.ts +53 -0
package/dist/resolver.d.ts.map +1 -0
package/dist/resolver.js +272 -0
package/dist/resolver.js.map +1 -0
package/dist/sanitize-error.d.ts +8 -0
package/dist/sanitize-error.d.ts.map +1 -0
package/dist/sanitize-error.js +25 -0
package/dist/sanitize-error.js.map +1 -0
package/dist/sanitize-tool-output.d.ts +20 -0
package/dist/sanitize-tool-output.d.ts.map +1 -0
package/dist/sanitize-tool-output.js +52 -0
package/dist/sanitize-tool-output.js.map +1 -0
package/dist/sdk-version.d.ts +11 -0
package/dist/sdk-version.d.ts.map +1 -0
package/dist/sdk-version.js +23 -0
package/dist/sdk-version.js.map +1 -0
package/dist/shutdown.d.ts +28 -0
package/dist/shutdown.d.ts.map +1 -0
package/dist/shutdown.js +68 -0
package/dist/shutdown.js.map +1 -0
package/dist/skip-confirmation.d.ts +15 -0
package/dist/skip-confirmation.d.ts.map +1 -0
package/dist/skip-confirmation.js +16 -0
package/dist/skip-confirmation.js.map +1 -0
package/dist/skip-sanitization.d.ts +17 -0
package/dist/skip-sanitization.d.ts.map +1 -0
package/dist/skip-sanitization.js +18 -0
package/dist/skip-sanitization.js.map +1 -0
package/dist/skip-verification.d.ts +11 -0
package/dist/skip-verification.d.ts.map +1 -0
package/dist/skip-verification.js +12 -0
package/dist/skip-verification.js.map +1 -0
package/dist/state.d.ts +290 -0
package/dist/state.d.ts.map +1 -0
package/dist/state.js +111 -0
package/dist/state.js.map +1 -0
package/dist/verify-plugin.d.ts +53 -0
package/dist/verify-plugin.d.ts.map +1 -0
package/dist/verify-plugin.js +123 -0
package/dist/verify-plugin.js.map +1 -0
package/dist/version-check.d.ts +35 -0
package/dist/version-check.d.ts.map +1 -0
package/dist/version-check.js +111 -0
package/dist/version-check.js.map +1 -0
package/dist/version.d.ts +10 -0
package/dist/version.d.ts.map +1 -0
package/dist/version.js +22 -0
package/dist/version.js.map +1 -0
package/package.json +28 -0

package/dist/state.d.ts ADDED Viewed

@@ -0,0 +1,290 @@
+/**
+ * In-memory state for the MCP server.
+ * Tracks plugins, tab-to-plugin mapping, tool config, and pending dispatches.
+ *
+ * Fields that must survive hot reload (file watcher handles, timers) are stored
+ * here rather than at module scope, because module-level variables reset to
+ * fresh empty instances on each bun --hot re-evaluation.
+ */
+import type { BrowserToolDefinition } from './browser-tools/definition.js';
+import type { PermissionsConfig } from './config.js';
+import type { TabState, TrustTier, ManifestTool, ManifestResource, ManifestPrompt, WsHandle } from '@opentabs-dev/shared';
+import type { FSWatcher } from 'node:fs';
+/** Timeout for tool dispatch and browser command requests (ms) */
+export declare const DISPATCH_TIMEOUT_MS = 30000;
+/** Absolute upper bound for a single dispatch, even with continuous progress (5 minutes) */
+export declare const MAX_DISPATCH_TIMEOUT_MS = 300000;
+/** Active file watcher entry for a single plugin directory */
+export interface FileWatcherEntry {
+    pluginDir: string;
+    pluginName: string;
+    watchers: FSWatcher[];
+    /** Last-seen mtime (ms) for each watched file path — used by mtime polling fallback */
+    lastSeenMtimes: Map<string, number>;
+}
+/** How a plugin was discovered: auto-discovered from global node_modules or explicitly listed in localPlugins */
+export type PluginSource = 'npm' | 'local';
+/** Plugin registered in the server */
+export interface RegisteredPlugin {
+    name: string;
+    version: string;
+    displayName: string;
+    urlPatterns: string[];
+    trustTier: TrustTier;
+    iife: string;
+    tools: ManifestTool[];
+    resources: ManifestResource[];
+    prompts: ManifestPrompt[];
+    /** How this plugin was discovered: 'npm' (global auto-discovery) or 'local' (config localPlugins) */
+    source: PluginSource;
+    /** SHA-256 hex hash of the adapter IIFE content (from manifest, set by `opentabs-plugin build`) */
+    adapterHash?: string;
+    /** Source map content for the adapter IIFE (from dist/adapter.iife.js.map). Undefined for old plugins. */
+    iifeSourceMap?: string;
+    /** Filesystem path for local plugins (used for file watching) */
+    sourcePath?: string;
+    /** Original npm package name (e.g., 'opentabs-plugin-slack') — only for npm-installed plugins */
+    npmPackageName?: string;
+    /** SDK version the plugin was built with (from tools.json sdkVersion field). Undefined for old plugins. */
+    sdkVersion?: string;
+    /** Optional SVG icon for the plugin */
+    iconSvg?: string;
+    /** Optional SVG icon for the inactive state */
+    iconInactiveSvg?: string;
+}
+/** Tab mapping entry for a plugin */
+export interface TabMapping {
+    state: TabState;
+    tabId: number | null;
+    url: string | null;
+}
+/** Pending dispatch awaiting extension response (tool.dispatch or browser.*) */
+export interface PendingDispatch {
+    resolve: (value: unknown) => void;
+    reject: (error: Error) => void;
+    /** Human-readable label for timeout error messages (e.g., "slack/send_message" or "browser.openTab") */
+    label: string;
+    startTs: number;
+    /** Timer ID for the dispatch timeout — cleared when the dispatch settles */
+    timerId: ReturnType<typeof setTimeout>;
+    /** MCP progressToken from the tools/call request's _meta — used to emit MCP ProgressNotifications */
+    progressToken?: string | number;
+    /** Callback to emit an MCP ProgressNotification for this dispatch */
+    onProgress?: (progress: number, total: number, message?: string) => void;
+    /** Timestamp (ms) of the last progress notification — updated by handleToolProgress for observability */
+    lastProgressTs?: number;
+}
+/** Resolved tool lookup entry for O(1) dispatch in tools/call */
+export interface ToolLookupEntry {
+    pluginName: string;
+    toolName: string;
+    /** Pre-compiled JSON Schema validator for input args. Null if schema compilation failed. */
+    validate: ((data: unknown) => boolean) | null;
+    /** Human-readable validation errors from the last validate() call */
+    validationErrors: () => string;
+}
+/** Cached browser tool entry with pre-computed JSON Schema */
+export interface CachedBrowserTool {
+    name: string;
+    description: string;
+    inputSchema: Record<string, unknown>;
+    tool: BrowserToolDefinition;
+}
+/** Tool config: maps prefixed tool name → enabled boolean */
+export type ToolConfig = Record<string, boolean>;
+/** A plugin path that failed discovery, with a human-readable error */
+export interface FailedPlugin {
+    path: string;
+    error: string;
+}
+/** Info about an outdated npm plugin */
+export interface OutdatedPlugin {
+    name: string;
+    currentVersion: string;
+    latestVersion: string;
+    updateCommand: string;
+}
+/** Resolved resource lookup entry for O(1) dispatch in resources/read */
+export interface ResourceLookupEntry {
+    pluginName: string;
+    /** Original (unprefixed) resource URI as defined in the plugin manifest */
+    originalUri: string;
+}
+/** Resolved prompt lookup entry for O(1) dispatch in prompts/get */
+export interface PromptLookupEntry {
+    pluginName: string;
+    /** Original (unprefixed) prompt name as defined in the plugin manifest */
+    originalName: string;
+}
+/**
+ * Immutable registry of discovered plugins.
+ *
+ * Holds all successfully loaded plugins, a pre-built O(1) tool lookup map
+ * with compiled Ajv validators, O(1) resource and prompt lookup maps,
+ * and a list of discovery failures. Built once per reload cycle and
+ * swapped atomically on ServerState.
+ */
+export interface PluginRegistry {
+    /** All successfully loaded plugins, keyed by internal plugin name */
+    readonly plugins: ReadonlyMap<string, RegisteredPlugin>;
+    /** O(1) tool lookup: prefixed tool name → plugin/tool names + validator */
+    readonly toolLookup: ReadonlyMap<string, ToolLookupEntry>;
+    /** O(1) resource lookup: prefixed URI → plugin name + original URI */
+    readonly resourceLookup: ReadonlyMap<string, ResourceLookupEntry>;
+    /** O(1) prompt lookup: prefixed name → plugin name + original name */
+    readonly promptLookup: ReadonlyMap<string, PromptLookupEntry>;
+    /** Plugin paths that failed discovery */
+    readonly failures: readonly FailedPlugin[];
+}
+/** Confirmation timeout for human approval (30 seconds) */
+export declare const CONFIRMATION_TIMEOUT_MS = 30000;
+/** Pending confirmation awaiting human approval */
+export interface PendingConfirmation {
+    resolve: (decision: ConfirmationDecision) => void;
+    reject: (error: Error) => void;
+    timerId: ReturnType<typeof setTimeout>;
+    tool: string;
+    domain: string | null;
+    tabId?: number;
+}
+/** Decision from the side panel confirmation dialog */
+export type ConfirmationDecision = 'allow_once' | 'allow_always' | 'deny';
+/** Scope for "Allow Always" session permissions */
+export type ConfirmationScope = 'tool_domain' | 'tool_all' | 'domain_all';
+/** Session-scoped permission rule created by "Allow Always" */
+export interface SessionPermissionRule {
+    tool: string | null;
+    domain: string | null;
+    scope: ConfirmationScope;
+}
+/** Check if a tool+domain combination is allowed by session permissions */
+export declare const isSessionAllowed: (rules: SessionPermissionRule[], toolName: string, domain: string | null) => boolean;
+/** Record of a single tool invocation for audit logging */
+export interface AuditEntry {
+    /** ISO 8601 timestamp of the invocation */
+    timestamp: string;
+    /** Prefixed tool name (e.g., 'slack_send_message') */
+    tool: string;
+    /** Plugin name (e.g., 'slack') or 'browser' for browser tools */
+    plugin: string;
+    /** Whether the invocation completed successfully */
+    success: boolean;
+    /** Execution duration in milliseconds */
+    durationMs: number;
+    /** Error details, populated on failure */
+    error?: {
+        code: string;
+        message: string;
+        category?: string;
+    };
+}
+/** Maximum entries retained in the audit log circular buffer */
+export declare const MAX_AUDIT_ENTRIES = 500;
+/** Append an entry to the audit log, trimming oldest entries beyond MAX_AUDIT_ENTRIES.
+ *  Also persists the entry to ~/.opentabs/audit.log as NDJSON (fire-and-forget). */
+export declare const appendAuditEntry: (state: ServerState, entry: AuditEntry) => void;
+/** Server state singleton — shared across hot reloads via globalThis */
+export interface ServerState {
+    /**
+     * Schema version for detecting structural changes across hot reloads.
+     * If a developer changes the shape of an existing field (e.g., Map → Array),
+     * bumping this version triggers a warning on the next hot reload indicating
+     * a process restart is needed for full consistency.
+     */
+    _schemaVersion: number;
+    /** Immutable plugin registry — replaced atomically on each reload */
+    registry: PluginRegistry;
+    /** Tab-to-plugin mapping from extension */
+    tabMapping: Map<string, TabMapping>;
+    /** Tool enabled/disabled config (in-memory, synced from ~/.opentabs/config.json) */
+    toolConfig: ToolConfig;
+    /** Browser tool enabled/disabled policy (in-memory, synced from ~/.opentabs/config.json) */
+    browserToolPolicy: Record<string, boolean>;
+    /** Local plugin paths from config */
+    pluginPaths: string[];
+    /** Pending tool dispatches keyed by JSON-RPC id */
+    pendingDispatches: Map<string | number, PendingDispatch>;
+    /** Extension WebSocket connection (single connection) */
+    extensionWs: WsHandle | null;
+    /** Outdated npm plugins detected on startup */
+    outdatedPlugins: OutdatedPlugin[];
+    /** Browser tools — updated on each hot reload so existing session handlers see fresh definitions */
+    browserTools: BrowserToolDefinition[];
+    /** Active file watcher entries — stored on state so hot reload can clean up the previous iteration's handles */
+    fileWatcherEntries: FileWatcherEntry[];
+    /** File watcher debounce timers — stored on state so hot reload can clear them */
+    fileWatcherTimers: Map<string, ReturnType<typeof setTimeout>>;
+    /** Shared secret for WebSocket authentication (loaded from config) */
+    wsSecret: string | null;
+    /** Cached browser tools with pre-computed JSON Schema. Rebuilt on each reload. */
+    cachedBrowserTools: CachedBrowserTool[];
+    /** Maps each MCP session server to its transport ID for accurate stale session sweeping */
+    sessionTransportIds: WeakMap<object, string>;
+    /** Async write mutex for config file — stored on state so it survives hot reload */
+    configWriteMutex: Promise<void>;
+    /** Per-plugin active dispatch count for concurrency limiting */
+    activeDispatches: Map<string, number>;
+    /** Periodic timer for sweeping stale MCP sessions between hot reloads */
+    sweepTimerId: ReturnType<typeof setInterval> | null;
+    /** Timestamp (ms since epoch) when the server process first started — survives hot reloads */
+    startedAt: number;
+    /** Generation counter for file watchers — incremented each time startFileWatching runs.
+     *  Debounce callbacks capture the current generation and bail out if it has changed,
+     *  preventing stale closures from the previous module evaluation from executing. */
+    fileWatcherGeneration: number;
+    /** FSWatcher for ~/.opentabs/ directory, detecting config.json changes */
+    configWatcher: FSWatcher | null;
+    /** Last-seen mtime (ms) of ~/.opentabs/config.json — used by mtime polling fallback */
+    configLastSeenMtime: number | null;
+    /** Timer ID for periodic mtime polling — cleared by stopFileWatching */
+    mtimePollTimerId: ReturnType<typeof setInterval> | null;
+    /** Timestamp (ms since epoch) of the last mtime polling tick, or null if polling hasn't run yet */
+    mtimeLastPollAt: number | null;
+    /** Running count of times mtime polling detected a change that fs.watch missed */
+    mtimePollDetections: number;
+    /** Timestamps (ms since epoch) of recent mtime poll detections — used for stale watcher warning */
+    mtimePollDetectionTimestamps: number[];
+    /** Discovery errors from the most recent reload — used by config.getState for the side panel */
+    discoveryErrors: ReadonlyArray<{
+        specifier: string;
+        error: string;
+    }>;
+    /** Circular buffer of recent tool invocations for diagnostics and monitoring */
+    auditLog: AuditEntry[];
+    /** Whether confirmation prompts are bypassed (from CLI flag, env var, or config) */
+    skipConfirmation: boolean;
+    /** Permission rules for browser tool confirmation */
+    permissions: PermissionsConfig;
+    /** Pending confirmation requests awaiting human approval in the side panel */
+    pendingConfirmations: Map<string, PendingConfirmation>;
+    /** Session-scoped permission rules set by "Allow Always" actions during this server lifetime */
+    sessionPermissions: SessionPermissionRule[];
+    /** Whether an extension reload is pending (set when extension files are updated but extension is not connected) */
+    pendingExtensionReload: boolean;
+}
+/** Increment when changing the type of an existing ServerState field */
+export declare const STATE_SCHEMA_VERSION = 3;
+/** Frozen empty registry for initializing ServerState */
+export declare const EMPTY_REGISTRY: PluginRegistry;
+/**
+ * Creates a fresh ServerState with all fields initialized to their defaults.
+ *
+ * @returns A new ServerState instance with empty collections, no WebSocket connection,
+ *          and default permission rules (localhost/127.0.0.1 trusted).
+ */
+export declare const createState: () => ServerState;
+/** Generate a cryptographically random JSON-RPC request ID */
+export declare const getNextRequestId: () => string;
+/** Get the prefixed tool name: plugin_tool */
+export declare const prefixedToolName: (plugin: string, tool: string) => string;
+/** Get the prefixed resource URI: opentabs+<plugin>://<original-uri-path> */
+export declare const prefixedResourceUri: (plugin: string, uri: string) => string;
+/** Get the prefixed prompt name: plugin_prompt (same convention as tools) */
+export declare const prefixedPromptName: (plugin: string, promptName: string) => string;
+/** Check if a tool is enabled in config. Tools are enabled by default — only
+ *  explicitly disabled tools (set to false) are hidden from MCP clients. */
+export declare const isToolEnabled: (state: ServerState, prefixedName: string) => boolean;
+/** Check if a browser tool is enabled via browserToolPolicy. Browser tools are
+ *  enabled by default — only explicitly disabled tools (set to false) are hidden. */
+export declare const isBrowserToolEnabled: (state: ServerState, toolName: string) => boolean;
+//# sourceMappingURL=state.d.ts.map

package/dist/state.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"state.d.ts","sourceRoot":"","sources":["../src/state.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,KAAK,EAAE,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AAC3E,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AACrD,OAAO,KAAK,EACV,QAAQ,EACR,SAAS,EACT,YAAY,EACZ,gBAAgB,EAChB,cAAc,EACd,QAAQ,EACT,MAAM,sBAAsB,CAAC;AAC9B,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAEzC,kEAAkE;AAClE,eAAO,MAAM,mBAAmB,QAAS,CAAC;AAE1C,4FAA4F;AAC5F,eAAO,MAAM,uBAAuB,SAAU,CAAC;AAE/C,8DAA8D;AAC9D,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,SAAS,EAAE,CAAC;IACtB,uFAAuF;IACvF,cAAc,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACrC;AAED,iHAAiH;AACjH,MAAM,MAAM,YAAY,GAAG,KAAK,GAAG,OAAO,CAAC;AAE3C,sCAAsC;AACtC,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,SAAS,EAAE,SAAS,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,YAAY,EAAE,CAAC;IACtB,SAAS,EAAE,gBAAgB,EAAE,CAAC;IAC9B,OAAO,EAAE,cAAc,EAAE,CAAC;IAC1B,qGAAqG;IACrG,MAAM,EAAE,YAAY,CAAC;IACrB,mGAAmG;IACnG,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,0GAA0G;IAC1G,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,iEAAiE;IACjE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iGAAiG;IACjG,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,2GAA2G;IAC3G,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,uCAAuC;IACvC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,+CAA+C;IAC/C,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,qCAAqC;AACrC,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,QAAQ,CAAC;IAChB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;CACpB;AAED,gFAAgF;AAChF,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,IAAI,CAAC;IAClC,MAAM,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;IAC/B,wGAAwG;IACxG,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,4EAA4E;IAC5E,OAAO,EAAE,UAAU,CAAC,OAAO,UAAU,CAAC,CAAC;IACvC,qGAAqG;IACrG,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IAChC,qEAAqE;IACrE,UAAU,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,KAAK,IAAI,CAAC;IACzE,yGAAyG;IACzG,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,iEAAiE;AACjE,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,4FAA4F;IAC5F,QAAQ,EAAE,CAAC,CAAC,IAAI,EAAE,OAAO,KAAK,OAAO,CAAC,GAAG,IAAI,CAAC;IAC9C,qEAAqE;IACrE,gBAAgB,EAAE,MAAM,MAAM,CAAC;CAChC;AAED,8DAA8D;AAC9D,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrC,IAAI,EAAE,qBAAqB,CAAC;CAC7B;AAED,6DAA6D;AAC7D,MAAM,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;AAEjD,uEAAuE;AACvE,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED,wCAAwC;AACxC,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,yEAAyE;AACzE,MAAM,WAAW,mBAAmB;IAClC,UAAU,EAAE,MAAM,CAAC;IACnB,2EAA2E;IAC3E,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,oEAAoE;AACpE,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,0EAA0E;IAC1E,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;;;;;;GAOG;AACH,MAAM,WAAW,cAAc;IAC7B,qEAAqE;IACrE,QAAQ,CAAC,OAAO,EAAE,WAAW,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;IACxD,2EAA2E;IAC3E,QAAQ,CAAC,UAAU,EAAE,WAAW,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;IAC1D,sEAAsE;IACtE,QAAQ,CAAC,cAAc,EAAE,WAAW,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;IAClE,sEAAsE;IACtE,QAAQ,CAAC,YAAY,EAAE,WAAW,CAAC,MAAM,EAAE,iBAAiB,CAAC,CAAC;IAC9D,yCAAyC;IACzC,QAAQ,CAAC,QAAQ,EAAE,SAAS,YAAY,EAAE,CAAC;CAC5C;AAED,2DAA2D;AAC3D,eAAO,MAAM,uBAAuB,QAAS,CAAC;AAE9C,mDAAmD;AACnD,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,CAAC,QAAQ,EAAE,oBAAoB,KAAK,IAAI,CAAC;IAClD,MAAM,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;IAC/B,OAAO,EAAE,UAAU,CAAC,OAAO,UAAU,CAAC,CAAC;IACvC,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,uDAAuD;AACvD,MAAM,MAAM,oBAAoB,GAAG,YAAY,GAAG,cAAc,GAAG,MAAM,CAAC;AAE1E,mDAAmD;AACnD,MAAM,MAAM,iBAAiB,GAAG,aAAa,GAAG,UAAU,GAAG,YAAY,CAAC;AAE1E,+DAA+D;AAC/D,MAAM,WAAW,qBAAqB;IACpC,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,KAAK,EAAE,iBAAiB,CAAC;CAC1B;AAED,2EAA2E;AAC3E,eAAO,MAAM,gBAAgB,GAAI,OAAO,qBAAqB,EAAE,EAAE,UAAU,MAAM,EAAE,QAAQ,MAAM,GAAG,IAAI,KAAG,OAYvG,CAAC;AAEL,2DAA2D;AAC3D,MAAM,WAAW,UAAU;IACzB,2CAA2C;IAC3C,SAAS,EAAE,MAAM,CAAC;IAClB,sDAAsD;IACtD,IAAI,EAAE,MAAM,CAAC;IACb,iEAAiE;IACjE,MAAM,EAAE,MAAM,CAAC;IACf,oDAAoD;IACpD,OAAO,EAAE,OAAO,CAAC;IACjB,yCAAyC;IACzC,UAAU,EAAE,MAAM,CAAC;IACnB,0CAA0C;IAC1C,KAAK,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;CAC9D;AAED,gEAAgE;AAChE,eAAO,MAAM,iBAAiB,MAAM,CAAC;AAErC;oFACoF;AACpF,eAAO,MAAM,gBAAgB,GAAI,OAAO,WAAW,EAAE,OAAO,UAAU,KAAG,IAOxE,CAAC;AAEF,wEAAwE;AACxE,MAAM,WAAW,WAAW;IAC1B;;;;;OAKG;IACH,cAAc,EAAE,MAAM,CAAC;IACvB,qEAAqE;IACrE,QAAQ,EAAE,cAAc,CAAC;IACzB,2CAA2C;IAC3C,UAAU,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACpC,oFAAoF;IACpF,UAAU,EAAE,UAAU,CAAC;IACvB,4FAA4F;IAC5F,iBAAiB,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC3C,qCAAqC;IACrC,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,mDAAmD;IACnD,iBAAiB,EAAE,GAAG,CAAC,MAAM,GAAG,MAAM,EAAE,eAAe,CAAC,CAAC;IACzD,yDAAyD;IACzD,WAAW,EAAE,QAAQ,GAAG,IAAI,CAAC;IAC7B,+CAA+C;IAC/C,eAAe,EAAE,cAAc,EAAE,CAAC;IAClC,oGAAoG;IACpG,YAAY,EAAE,qBAAqB,EAAE,CAAC;IACtC,gHAAgH;IAChH,kBAAkB,EAAE,gBAAgB,EAAE,CAAC;IACvC,kFAAkF;IAClF,iBAAiB,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,OAAO,UAAU,CAAC,CAAC,CAAC;IAC9D,sEAAsE;IACtE,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,kFAAkF;IAClF,kBAAkB,EAAE,iBAAiB,EAAE,CAAC;IACxC,2FAA2F;IAC3F,mBAAmB,EAAE,OAAO,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7C,oFAAoF;IACpF,gBAAgB,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;IAChC,gEAAgE;IAChE,gBAAgB,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtC,yEAAyE;IACzE,YAAY,EAAE,UAAU,CAAC,OAAO,WAAW,CAAC,GAAG,IAAI,CAAC;IACpD,8FAA8F;IAC9F,SAAS,EAAE,MAAM,CAAC;IAClB;;wFAEoF;IACpF,qBAAqB,EAAE,MAAM,CAAC;IAC9B,0EAA0E;IAC1E,aAAa,EAAE,SAAS,GAAG,IAAI,CAAC;IAChC,uFAAuF;IACvF,mBAAmB,EAAE,MAAM,GAAG,IAAI,CAAC;IACnC,wEAAwE;IACxE,gBAAgB,EAAE,UAAU,CAAC,OAAO,WAAW,CAAC,GAAG,IAAI,CAAC;IACxD,mGAAmG;IACnG,eAAe,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,kFAAkF;IAClF,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mGAAmG;IACnG,4BAA4B,EAAE,MAAM,EAAE,CAAC;IACvC,gGAAgG;IAChG,eAAe,EAAE,aAAa,CAAC;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACrE,gFAAgF;IAChF,QAAQ,EAAE,UAAU,EAAE,CAAC;IACvB,oFAAoF;IACpF,gBAAgB,EAAE,OAAO,CAAC;IAE1B,qDAAqD;IACrD,WAAW,EAAE,iBAAiB,CAAC;IAC/B,8EAA8E;IAC9E,oBAAoB,EAAE,GAAG,CAAC,MAAM,EAAE,mBAAmB,CAAC,CAAC;IACvD,gGAAgG;IAChG,kBAAkB,EAAE,qBAAqB,EAAE,CAAC;IAC5C,mHAAmH;IACnH,sBAAsB,EAAE,OAAO,CAAC;CACjC;AAED,wEAAwE;AACxE,eAAO,MAAM,oBAAoB,IAAI,CAAC;AAEtC,yDAAyD;AACzD,eAAO,MAAM,cAAc,EAAE,cAM3B,CAAC;AAEH;;;;;GAKG;AACH,eAAO,MAAM,WAAW,QAAO,WAwC7B,CAAC;AAEH,8DAA8D;AAC9D,eAAO,MAAM,gBAAgB,QAAO,MAA6B,CAAC;AAElE,8CAA8C;AAC9C,eAAO,MAAM,gBAAgB,GAAI,QAAQ,MAAM,EAAE,MAAM,MAAM,KAAG,MAA6B,CAAC;AAE9F,6EAA6E;AAC7E,eAAO,MAAM,mBAAmB,GAAI,QAAQ,MAAM,EAAE,KAAK,MAAM,KAAG,MAAuC,CAAC;AAE1G,6EAA6E;AAC7E,eAAO,MAAM,kBAAkB,GAAI,QAAQ,MAAM,EAAE,YAAY,MAAM,KAAG,MAAmC,CAAC;AAE5G;4EAC4E;AAC5E,eAAO,MAAM,aAAa,GAAI,OAAO,WAAW,EAAE,cAAc,MAAM,KAAG,OAC/B,CAAC;AAE3C;qFACqF;AACrF,eAAO,MAAM,oBAAoB,GAAI,OAAO,WAAW,EAAE,UAAU,MAAM,KAAG,OAC/B,CAAC"}

package/dist/state.js ADDED Viewed

@@ -0,0 +1,111 @@
+/**
+ * In-memory state for the MCP server.
+ * Tracks plugins, tab-to-plugin mapping, tool config, and pending dispatches.
+ *
+ * Fields that must survive hot reload (file watcher handles, timers) are stored
+ * here rather than at module scope, because module-level variables reset to
+ * fresh empty instances on each bun --hot re-evaluation.
+ */
+import { appendAuditEntryToDisk } from './audit-disk.js';
+/** Timeout for tool dispatch and browser command requests (ms) */
+export const DISPATCH_TIMEOUT_MS = 30_000;
+/** Absolute upper bound for a single dispatch, even with continuous progress (5 minutes) */
+export const MAX_DISPATCH_TIMEOUT_MS = 300_000;
+/** Confirmation timeout for human approval (30 seconds) */
+export const CONFIRMATION_TIMEOUT_MS = 30_000;
+/** Check if a tool+domain combination is allowed by session permissions */
+export const isSessionAllowed = (rules, toolName, domain) => rules.some(rule => {
+    switch (rule.scope) {
+        case 'tool_domain':
+            return rule.tool === toolName && rule.domain === domain;
+        case 'tool_all':
+            return rule.tool === toolName;
+        case 'domain_all':
+            return rule.domain !== null && rule.domain === domain;
+        default:
+            return false;
+    }
+});
+/** Maximum entries retained in the audit log circular buffer */
+export const MAX_AUDIT_ENTRIES = 500;
+/** Append an entry to the audit log, trimming oldest entries beyond MAX_AUDIT_ENTRIES.
+ *  Also persists the entry to ~/.opentabs/audit.log as NDJSON (fire-and-forget). */
+export const appendAuditEntry = (state, entry) => {
+    state.auditLog.push(entry);
+    if (state.auditLog.length > MAX_AUDIT_ENTRIES) {
+        state.auditLog.splice(0, state.auditLog.length - MAX_AUDIT_ENTRIES);
+    }
+    // Fire-and-forget disk write — errors are logged internally, never block dispatch
+    void appendAuditEntryToDisk(entry);
+};
+/** Increment when changing the type of an existing ServerState field */
+export const STATE_SCHEMA_VERSION = 3;
+/** Frozen empty registry for initializing ServerState */
+export const EMPTY_REGISTRY = Object.freeze({
+    plugins: new Map(),
+    toolLookup: new Map(),
+    resourceLookup: new Map(),
+    promptLookup: new Map(),
+    failures: [],
+});
+/**
+ * Creates a fresh ServerState with all fields initialized to their defaults.
+ *
+ * @returns A new ServerState instance with empty collections, no WebSocket connection,
+ *          and default permission rules (localhost/127.0.0.1 trusted).
+ */
+export const createState = () => ({
+    _schemaVersion: STATE_SCHEMA_VERSION,
+    registry: EMPTY_REGISTRY,
+    tabMapping: new Map(),
+    toolConfig: {},
+    browserToolPolicy: {},
+    pluginPaths: [],
+    pendingDispatches: new Map(),
+    extensionWs: null,
+    outdatedPlugins: [],
+    browserTools: [],
+    fileWatcherEntries: [],
+    fileWatcherTimers: new Map(),
+    wsSecret: null,
+    cachedBrowserTools: [],
+    sessionTransportIds: new WeakMap(),
+    configWriteMutex: Promise.resolve(),
+    activeDispatches: new Map(),
+    sweepTimerId: null,
+    startedAt: Date.now(),
+    fileWatcherGeneration: 0,
+    configWatcher: null,
+    configLastSeenMtime: null,
+    mtimePollTimerId: null,
+    mtimeLastPollAt: null,
+    mtimePollDetections: 0,
+    mtimePollDetectionTimestamps: [],
+    discoveryErrors: [],
+    auditLog: [],
+    skipConfirmation: false,
+    permissions: {
+        trustedDomains: ['localhost', '127.0.0.1'],
+        sensitiveDomains: [],
+        toolPolicy: {},
+        domainToolPolicy: {},
+    },
+    pendingConfirmations: new Map(),
+    sessionPermissions: [],
+    pendingExtensionReload: false,
+});
+/** Generate a cryptographically random JSON-RPC request ID */
+export const getNextRequestId = () => crypto.randomUUID();
+/** Get the prefixed tool name: plugin_tool */
+export const prefixedToolName = (plugin, tool) => `${plugin}_${tool}`;
+/** Get the prefixed resource URI: opentabs+<plugin>://<original-uri-path> */
+export const prefixedResourceUri = (plugin, uri) => `opentabs+${plugin}://${uri}`;
+/** Get the prefixed prompt name: plugin_prompt (same convention as tools) */
+export const prefixedPromptName = (plugin, promptName) => `${plugin}_${promptName}`;
+/** Check if a tool is enabled in config. Tools are enabled by default — only
+ *  explicitly disabled tools (set to false) are hidden from MCP clients. */
+export const isToolEnabled = (state, prefixedName) => state.toolConfig[prefixedName] !== false;
+/** Check if a browser tool is enabled via browserToolPolicy. Browser tools are
+ *  enabled by default — only explicitly disabled tools (set to false) are hidden. */
+export const isBrowserToolEnabled = (state, toolName) => state.browserToolPolicy[toolName] !== false;
+//# sourceMappingURL=state.js.map

package/dist/state.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"state.js","sourceRoot":"","sources":["../src/state.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,sBAAsB,EAAE,MAAM,iBAAiB,CAAC;AAazD,kEAAkE;AAClE,MAAM,CAAC,MAAM,mBAAmB,GAAG,MAAM,CAAC;AAE1C,4FAA4F;AAC5F,MAAM,CAAC,MAAM,uBAAuB,GAAG,OAAO,CAAC;AAyI/C,2DAA2D;AAC3D,MAAM,CAAC,MAAM,uBAAuB,GAAG,MAAM,CAAC;AAyB9C,2EAA2E;AAC3E,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,KAA8B,EAAE,QAAgB,EAAE,MAAqB,EAAW,EAAE,CACnH,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;IAChB,QAAQ,IAAI,CAAC,KAAK,EAAE,CAAC;QACnB,KAAK,aAAa;YAChB,OAAO,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,KAAK,MAAM,CAAC;QAC1D,KAAK,UAAU;YACb,OAAO,IAAI,CAAC,IAAI,KAAK,QAAQ,CAAC;QAChC,KAAK,YAAY;YACf,OAAO,IAAI,CAAC,MAAM,KAAK,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,MAAM,CAAC;QACxD;YACE,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC,CAAC,CAAC;AAkBL,gEAAgE;AAChE,MAAM,CAAC,MAAM,iBAAiB,GAAG,GAAG,CAAC;AAErC;oFACoF;AACpF,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,KAAkB,EAAE,KAAiB,EAAQ,EAAE;IAC9E,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC3B,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,iBAAiB,EAAE,CAAC;QAC9C,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,iBAAiB,CAAC,CAAC;IACtE,CAAC;IACD,kFAAkF;IAClF,KAAK,sBAAsB,CAAC,KAAK,CAAC,CAAC;AACrC,CAAC,CAAC;AAgFF,wEAAwE;AACxE,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC;AAEtC,yDAAyD;AACzD,MAAM,CAAC,MAAM,cAAc,GAAmB,MAAM,CAAC,MAAM,CAAC;IAC1D,OAAO,EAAE,IAAI,GAAG,EAA4B;IAC5C,UAAU,EAAE,IAAI,GAAG,EAA2B;IAC9C,cAAc,EAAE,IAAI,GAAG,EAA+B;IACtD,YAAY,EAAE,IAAI,GAAG,EAA6B;IAClD,QAAQ,EAAE,EAAoB;CAC/B,CAAC,CAAC;AAEH;;;;;GAKG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,GAAgB,EAAE,CAAC,CAAC;IAC7C,cAAc,EAAE,oBAAoB;IACpC,QAAQ,EAAE,cAAc;IACxB,UAAU,EAAE,IAAI,GAAG,EAAE;IACrB,UAAU,EAAE,EAAE;IACd,iBAAiB,EAAE,EAAE;IACrB,WAAW,EAAE,EAAE;IACf,iBAAiB,EAAE,IAAI,GAAG,EAAE;IAC5B,WAAW,EAAE,IAAI;IACjB,eAAe,EAAE,EAAE;IACnB,YAAY,EAAE,EAAE;IAChB,kBAAkB,EAAE,EAAE;IACtB,iBAAiB,EAAE,IAAI,GAAG,EAAE;IAC5B,QAAQ,EAAE,IAAI;IACd,kBAAkB,EAAE,EAAE;IACtB,mBAAmB,EAAE,IAAI,OAAO,EAAE;IAClC,gBAAgB,EAAE,OAAO,CAAC,OAAO,EAAE;IACnC,gBAAgB,EAAE,IAAI,GAAG,EAAE;IAC3B,YAAY,EAAE,IAAI;IAClB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;IACrB,qBAAqB,EAAE,CAAC;IACxB,aAAa,EAAE,IAAI;IACnB,mBAAmB,EAAE,IAAI;IACzB,gBAAgB,EAAE,IAAI;IACtB,eAAe,EAAE,IAAI;IACrB,mBAAmB,EAAE,CAAC;IACtB,4BAA4B,EAAE,EAAE;IAChC,eAAe,EAAE,EAAE;IACnB,QAAQ,EAAE,EAAE;IACZ,gBAAgB,EAAE,KAAK;IAEvB,WAAW,EAAE;QACX,cAAc,EAAE,CAAC,WAAW,EAAE,WAAW,CAAC;QAC1C,gBAAgB,EAAE,EAAE;QACpB,UAAU,EAAE,EAAE;QACd,gBAAgB,EAAE,EAAE;KACrB;IACD,oBAAoB,EAAE,IAAI,GAAG,EAAE;IAC/B,kBAAkB,EAAE,EAAE;IACtB,sBAAsB,EAAE,KAAK;CAC9B,CAAC,CAAC;AAEH,8DAA8D;AAC9D,MAAM,CAAC,MAAM,gBAAgB,GAAG,GAAW,EAAE,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;AAElE,8CAA8C;AAC9C,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,MAAc,EAAE,IAAY,EAAU,EAAE,CAAC,GAAG,MAAM,IAAI,IAAI,EAAE,CAAC;AAE9F,6EAA6E;AAC7E,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,MAAc,EAAE,GAAW,EAAU,EAAE,CAAC,YAAY,MAAM,MAAM,GAAG,EAAE,CAAC;AAE1G,6EAA6E;AAC7E,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,MAAc,EAAE,UAAkB,EAAU,EAAE,CAAC,GAAG,MAAM,IAAI,UAAU,EAAE,CAAC;AAE5G;4EAC4E;AAC5E,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,KAAkB,EAAE,YAAoB,EAAW,EAAE,CACjF,KAAK,CAAC,UAAU,CAAC,YAAY,CAAC,KAAK,KAAK,CAAC;AAE3C;qFACqF;AACrF,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,KAAkB,EAAE,QAAgB,EAAW,EAAE,CACpF,KAAK,CAAC,iBAAiB,CAAC,QAAQ,CAAC,KAAK,KAAK,CAAC"}

package/dist/verify-plugin.d.ts ADDED Viewed

@@ -0,0 +1,53 @@
+/**
+ * Official plugin verification module.
+ *
+ * Verifies that plugins in the @opentabs-dev/ scope match what is published
+ * on the npm registry by comparing the installed package's integrity hash
+ * against the registry's published integrity value.
+ *
+ * This is a best-effort check that catches the common case of npm package
+ * hijacking. It does NOT provide full supply chain security (that would
+ * require signing keys).
+ */
+interface VerificationResult {
+    /** Whether the plugin passed verification */
+    verified: boolean;
+    /** Human-readable reason when verification fails or is skipped */
+    reason?: string;
+}
+/**
+ * Read the installed package's integrity hash from its package.json.
+ *
+ * npm and bun both write _integrity (subresource integrity format, e.g.,
+ * "sha512-...") into the installed package.json. Falls back to _shasum
+ * (hex SHA-1) if _integrity is not present.
+ */
+declare const readInstalledIntegrity: (packagePath: string) => Promise<{
+    integrity?: string;
+    shasum?: string;
+    version?: string;
+}>;
+/**
+ * Fetch the registry metadata for a specific package version.
+ *
+ * Uses the abbreviated registry endpoint to minimize data transfer.
+ * Returns the dist object containing integrity and shasum fields.
+ */
+declare const fetchRegistryDist: (npmPackageName: string, version: string) => Promise<{
+    integrity?: string;
+    shasum?: string;
+} | null>;
+/**
+ * Verify that an official plugin's installed files match what is published
+ * on the npm registry.
+ *
+ * Compares the _integrity or _shasum field from the installed package.json
+ * against the npm registry's published dist metadata for the same version.
+ *
+ * @param packagePath - Absolute path to the installed plugin directory
+ * @param npmPackageName - The npm package name (e.g., "@opentabs-dev/opentabs-plugin-slack")
+ */
+declare const verifyOfficialPlugin: (packagePath: string, npmPackageName: string) => Promise<VerificationResult>;
+export { verifyOfficialPlugin, readInstalledIntegrity, fetchRegistryDist };
+export type { VerificationResult };
+//# sourceMappingURL=verify-plugin.d.ts.map

package/dist/verify-plugin.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"verify-plugin.d.ts","sourceRoot":"","sources":["../src/verify-plugin.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAKH,UAAU,kBAAkB;IAC1B,6CAA6C;IAC7C,QAAQ,EAAE,OAAO,CAAC;IAClB,kEAAkE;IAClE,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;GAMG;AACH,QAAA,MAAM,sBAAsB,GAC1B,aAAa,MAAM,KAClB,OAAO,CAAC;IAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAA;CAAE,CAanE,CAAC;AAEF;;;;;GAKG;AACH,QAAA,MAAM,iBAAiB,GACrB,gBAAgB,MAAM,EACtB,SAAS,MAAM,KACd,OAAO,CAAC;IAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAAI,CAiCxD,CAAC;AAEF;;;;;;;;;GASG;AACH,QAAA,MAAM,oBAAoB,GAAU,aAAa,MAAM,EAAE,gBAAgB,MAAM,KAAG,OAAO,CAAC,kBAAkB,CAgD3G,CAAC;AAEF,OAAO,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,iBAAiB,EAAE,CAAC;AAC3E,YAAY,EAAE,kBAAkB,EAAE,CAAC"}

package/dist/verify-plugin.js ADDED Viewed

@@ -0,0 +1,123 @@
+/**
+ * Official plugin verification module.
+ *
+ * Verifies that plugins in the @opentabs-dev/ scope match what is published
+ * on the npm registry by comparing the installed package's integrity hash
+ * against the registry's published integrity value.
+ *
+ * This is a best-effort check that catches the common case of npm package
+ * hijacking. It does NOT provide full supply chain security (that would
+ * require signing keys).
+ */
+import { log } from './logger.js';
+import { join } from 'node:path';
+/**
+ * Read the installed package's integrity hash from its package.json.
+ *
+ * npm and bun both write _integrity (subresource integrity format, e.g.,
+ * "sha512-...") into the installed package.json. Falls back to _shasum
+ * (hex SHA-1) if _integrity is not present.
+ */
+const readInstalledIntegrity = async (packagePath) => {
+    try {
+        const pkgJson = await Bun.file(join(packagePath, 'package.json')).json();
+        if (pkgJson === null || typeof pkgJson !== 'object')
+            return {};
+        const pkg = pkgJson;
+        return {
+            integrity: typeof pkg._integrity === 'string' ? pkg._integrity : undefined,
+            shasum: typeof pkg._shasum === 'string' ? pkg._shasum : undefined,
+            version: typeof pkg.version === 'string' ? pkg.version : undefined,
+        };
+    }
+    catch {
+        return {};
+    }
+};
+/**
+ * Fetch the registry metadata for a specific package version.
+ *
+ * Uses the abbreviated registry endpoint to minimize data transfer.
+ * Returns the dist object containing integrity and shasum fields.
+ */
+const fetchRegistryDist = async (npmPackageName, version) => {
+    const registryUrl = `https://registry.npmjs.org/${encodeURIComponent(npmPackageName).replace('%40', '@')}/${version}`;
+    try {
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), 10_000);
+        const response = await fetch(registryUrl, {
+            signal: controller.signal,
+            headers: { Accept: 'application/json' },
+        });
+        clearTimeout(timeoutId);
+        if (!response.ok) {
+            return null;
+        }
+        const data = await response.json();
+        if (data === null || typeof data !== 'object')
+            return null;
+        const record = data;
+        const dist = record.dist;
+        if (dist === null || typeof dist !== 'object')
+            return null;
+        const distRecord = dist;
+        return {
+            integrity: typeof distRecord.integrity === 'string' ? distRecord.integrity : undefined,
+            shasum: typeof distRecord.shasum === 'string' ? distRecord.shasum : undefined,
+        };
+    }
+    catch {
+        return null;
+    }
+};
+/**
+ * Verify that an official plugin's installed files match what is published
+ * on the npm registry.
+ *
+ * Compares the _integrity or _shasum field from the installed package.json
+ * against the npm registry's published dist metadata for the same version.
+ *
+ * @param packagePath - Absolute path to the installed plugin directory
+ * @param npmPackageName - The npm package name (e.g., "@opentabs-dev/opentabs-plugin-slack")
+ */
+const verifyOfficialPlugin = async (packagePath, npmPackageName) => {
+    const installed = await readInstalledIntegrity(packagePath);
+    if (!installed.version) {
+        return { verified: false, reason: 'Could not read version from installed package.json' };
+    }
+    if (!installed.integrity && !installed.shasum) {
+        return {
+            verified: false,
+            reason: 'No _integrity or _shasum found in installed package.json — package may not have been installed via npm/bun',
+        };
+    }
+    const registryDist = await fetchRegistryDist(npmPackageName, installed.version);
+    if (registryDist === null) {
+        log.warn(`Could not reach npm registry to verify ${npmPackageName}@${installed.version} — loading at original tier`);
+        return { verified: true, reason: 'Registry unreachable — verification skipped' };
+    }
+    // Prefer integrity (SRI hash, usually sha512) over shasum (SHA-1)
+    if (installed.integrity && registryDist.integrity) {
+        if (installed.integrity === registryDist.integrity) {
+            return { verified: true };
+        }
+        return {
+            verified: false,
+            reason: `Integrity mismatch: installed=${installed.integrity}, registry=${registryDist.integrity}`,
+        };
+    }
+    // Fall back to shasum comparison
+    if (installed.shasum && registryDist.shasum) {
+        if (installed.shasum === registryDist.shasum) {
+            return { verified: true };
+        }
+        return {
+            verified: false,
+            reason: `Shasum mismatch: installed=${installed.shasum}, registry=${registryDist.shasum}`,
+        };
+    }
+    // One side has integrity, the other has shasum — can't compare directly
+    return { verified: true, reason: 'Hash format mismatch between installed and registry — verification skipped' };
+};
+export { verifyOfficialPlugin, readInstalledIntegrity, fetchRegistryDist };
+//# sourceMappingURL=verify-plugin.js.map

package/dist/verify-plugin.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"verify-plugin.js","sourceRoot":"","sources":["../src/verify-plugin.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AASjC;;;;;;GAMG;AACH,MAAM,sBAAsB,GAAG,KAAK,EAClC,WAAmB,EACiD,EAAE;IACtE,IAAI,CAAC;QACH,MAAM,OAAO,GAAY,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAClF,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,OAAO,KAAK,QAAQ;YAAE,OAAO,EAAE,CAAC;QAC/D,MAAM,GAAG,GAAG,OAAkC,CAAC;QAC/C,OAAO;YACL,SAAS,EAAE,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YAC1E,MAAM,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;YACjE,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;SACnE,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC,CAAC;AAEF;;;;;GAKG;AACH,MAAM,iBAAiB,GAAG,KAAK,EAC7B,cAAsB,EACtB,OAAe,EAC0C,EAAE;IAC3D,MAAM,WAAW,GAAG,8BAA8B,kBAAkB,CAAC,cAAc,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,IAAI,OAAO,EAAE,CAAC;IAEtH,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,MAAM,CAAC,CAAC;QAE/D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,WAAW,EAAE;YACxC,MAAM,EAAE,UAAU,CAAC,MAAM;YACzB,OAAO,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE;SACxC,CAAC,CAAC;QAEH,YAAY,CAAC,SAAS,CAAC,CAAC;QAExB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,IAAI,GAAY,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC5C,IAAI,IAAI,KAAK,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE3D,MAAM,MAAM,GAAG,IAA+B,CAAC;QAC/C,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC;QACzB,IAAI,IAAI,KAAK,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE3D,MAAM,UAAU,GAAG,IAA+B,CAAC;QACnD,OAAO;YACL,SAAS,EAAE,OAAO,UAAU,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;YACtF,MAAM,EAAE,OAAO,UAAU,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;SAC9E,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,oBAAoB,GAAG,KAAK,EAAE,WAAmB,EAAE,cAAsB,EAA+B,EAAE;IAC9G,MAAM,SAAS,GAAG,MAAM,sBAAsB,CAAC,WAAW,CAAC,CAAC;IAE5D,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;QACvB,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,oDAAoD,EAAE,CAAC;IAC3F,CAAC;IAED,IAAI,CAAC,SAAS,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;QAC9C,OAAO;YACL,QAAQ,EAAE,KAAK;YACf,MAAM,EACJ,4GAA4G;SAC/G,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,MAAM,iBAAiB,CAAC,cAAc,EAAE,SAAS,CAAC,OAAO,CAAC,CAAC;IAEhF,IAAI,YAAY,KAAK,IAAI,EAAE,CAAC;QAC1B,GAAG,CAAC,IAAI,CACN,0CAA0C,cAAc,IAAI,SAAS,CAAC,OAAO,6BAA6B,CAC3G,CAAC;QACF,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,6CAA6C,EAAE,CAAC;IACnF,CAAC;IAED,kEAAkE;IAClE,IAAI,SAAS,CAAC,SAAS,IAAI,YAAY,CAAC,SAAS,EAAE,CAAC;QAClD,IAAI,SAAS,CAAC,SAAS,KAAK,YAAY,CAAC,SAAS,EAAE,CAAC;YACnD,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;QAC5B,CAAC;QACD,OAAO;YACL,QAAQ,EAAE,KAAK;YACf,MAAM,EAAE,iCAAiC,SAAS,CAAC,SAAS,cAAc,YAAY,CAAC,SAAS,EAAE;SACnG,CAAC;IACJ,CAAC;IAED,iCAAiC;IACjC,IAAI,SAAS,CAAC,MAAM,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;QAC5C,IAAI,SAAS,CAAC,MAAM,KAAK,YAAY,CAAC,MAAM,EAAE,CAAC;YAC7C,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;QAC5B,CAAC;QACD,OAAO;YACL,QAAQ,EAAE,KAAK;YACf,MAAM,EAAE,8BAA8B,SAAS,CAAC,MAAM,cAAc,YAAY,CAAC,MAAM,EAAE;SAC1F,CAAC;IACJ,CAAC;IAED,wEAAwE;IACxE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,4EAA4E,EAAE,CAAC;AAClH,CAAC,CAAC;AAEF,OAAO,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,iBAAiB,EAAE,CAAC"}

package/dist/version-check.d.ts ADDED Viewed

@@ -0,0 +1,35 @@
+/**
+ * Outdated plugin version check.
+ *
+ * On startup, queries the npm registry for each npm-installed plugin
+ * to check if a newer version is available. Non-blocking — runs in
+ * the background and stores results in server state.
+ */
+import type { ServerState } from './state.js';
+/**
+ * Query the npm registry for the latest published version of a package.
+ * Uses the abbreviated install metadata endpoint with a 10s timeout.
+ *
+ * @param packageName - npm package name (e.g., 'opentabs-plugin-slack' or '@scope/opentabs-plugin-foo')
+ * @returns The latest version string from the registry's dist-tags, or null on failure
+ */
+export declare const fetchLatestVersion: (packageName: string) => Promise<string | null>;
+/**
+ * Compare two semver version strings (major.minor.patch only).
+ * Strips prerelease suffixes (e.g., "1.0.0-beta.1" → [1, 0, 0]) and leading 'v'
+ * prefixes so that version strings with hyphens don't produce NaN during parsing.
+ *
+ * @param current - The currently installed version string
+ * @param latest - The latest available version string
+ * @returns True if `latest` is strictly newer than `current`
+ */
+export declare const isNewer: (current: string, latest: string) => boolean;
+/**
+ * Check all npm-installed plugins for newer versions on the registry.
+ * Runs version checks in parallel, logs outdated entries, and stores
+ * results in `state.outdatedPlugins`. Skips local plugins (filesystem paths).
+ *
+ * @param state - Server state containing the plugin registry and outdatedPlugins target
+ */
+export declare const checkForUpdates: (state: ServerState) => Promise<void>;
+//# sourceMappingURL=version-check.d.ts.map

package/dist/version-check.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"version-check.d.ts","sourceRoot":"","sources":["../src/version-check.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,KAAK,EAAE,WAAW,EAAkB,MAAM,YAAY,CAAC;AAS9D;;;;;;GAMG;AACH,eAAO,MAAM,kBAAkB,GAAU,aAAa,MAAM,KAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAoBnF,CAAC;AAEF;;;;;;;;GAQG;AACH,eAAO,MAAM,OAAO,GAAI,SAAS,MAAM,EAAE,QAAQ,MAAM,KAAG,OAqBzD,CAAC;AAEF;;;;;;GAMG;AACH,eAAO,MAAM,eAAe,GAAU,OAAO,WAAW,KAAG,OAAO,CAAC,IAAI,CA8CtE,CAAC"}