npm - @opentabs-dev/mcp-server - Versions diffs - 0.0.66 → 0.0.68 - Mend

@opentabs-dev/mcp-server 0.0.66 → 0.0.68

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (123) hide show

package/dist/browser-tools/analyze-site.d.ts.map +1 -1
package/dist/browser-tools/analyze-site.js +3 -1
package/dist/browser-tools/analyze-site.js.map +1 -1
package/dist/browser-tools/extension-get-logs.d.ts +2 -2
package/dist/browser-tools/get-console-logs.d.ts +2 -2
package/dist/extension-handlers.d.ts +2 -1
package/dist/extension-handlers.d.ts.map +1 -1
package/dist/extension-handlers.js +22 -1
package/dist/extension-handlers.js.map +1 -1
package/dist/extension-protocol.d.ts.map +1 -1
package/dist/extension-protocol.js +6 -1
package/dist/extension-protocol.js.map +1 -1
package/dist/mcp-setup.d.ts +1 -13
package/dist/mcp-setup.d.ts.map +1 -1
package/dist/mcp-setup.js +4 -96
package/dist/mcp-setup.js.map +1 -1
package/dist/reload.js +5 -5
package/dist/reload.js.map +1 -1
package/package.json +3 -1
package/dist/browser-tool-names.d.ts +0 -14
package/dist/browser-tool-names.d.ts.map +0 -1
package/dist/browser-tool-names.js +0 -55
package/dist/browser-tool-names.js.map +0 -1
package/dist/discovery-legacy.d.ts +0 -32
package/dist/discovery-legacy.d.ts.map +0 -1
package/dist/discovery-legacy.js +0 -415
package/dist/discovery-legacy.js.map +0 -1
package/dist/manifest-schema.d.ts +0 -14
package/dist/manifest-schema.d.ts.map +0 -1
package/dist/manifest-schema.js +0 -51
package/dist/manifest-schema.js.map +0 -1
package/dist/mcp-prompts.d.ts +0 -71
package/dist/mcp-prompts.d.ts.map +0 -1
package/dist/mcp-prompts.js +0 -248
package/dist/mcp-prompts.js.map +0 -1
package/dist/mcp-resources.d.ts +0 -53
package/dist/mcp-resources.d.ts.map +0 -1
package/dist/mcp-resources.js +0 -139
package/dist/mcp-resources.js.map +0 -1
package/dist/permissions.d.ts +0 -59
package/dist/permissions.d.ts.map +0 -1
package/dist/permissions.js +0 -144
package/dist/permissions.js.map +0 -1
package/dist/prompts/audit-ai-docs.d.ts +0 -6
package/dist/prompts/audit-ai-docs.d.ts.map +0 -1
package/dist/prompts/audit-ai-docs.js +0 -155
package/dist/prompts/audit-ai-docs.js.map +0 -1
package/dist/prompts/build-plugin.d.ts +0 -3
package/dist/prompts/build-plugin.d.ts.map +0 -1
package/dist/prompts/build-plugin.js +0 -455
package/dist/prompts/build-plugin.js.map +0 -1
package/dist/prompts/contribute-learnings.d.ts +0 -12
package/dist/prompts/contribute-learnings.d.ts.map +0 -1
package/dist/prompts/contribute-learnings.js +0 -107
package/dist/prompts/contribute-learnings.js.map +0 -1
package/dist/prompts/plugin-icon.d.ts +0 -5
package/dist/prompts/plugin-icon.d.ts.map +0 -1
package/dist/prompts/plugin-icon.js +0 -147
package/dist/prompts/plugin-icon.js.map +0 -1
package/dist/prompts/setup-plugin.d.ts +0 -3
package/dist/prompts/setup-plugin.d.ts.map +0 -1
package/dist/prompts/setup-plugin.js +0 -197
package/dist/prompts/setup-plugin.js.map +0 -1
package/dist/prompts/troubleshoot.d.ts +0 -3
package/dist/prompts/troubleshoot.d.ts.map +0 -1
package/dist/prompts/troubleshoot.js +0 -191
package/dist/prompts/troubleshoot.js.map +0 -1
package/dist/resources/browser-tools.d.ts +0 -3
package/dist/resources/browser-tools.d.ts.map +0 -1
package/dist/resources/browser-tools.js +0 -100
package/dist/resources/browser-tools.js.map +0 -1
package/dist/resources/cli.d.ts +0 -3
package/dist/resources/cli.d.ts.map +0 -1
package/dist/resources/cli.js +0 -217
package/dist/resources/cli.js.map +0 -1
package/dist/resources/plugin-development.d.ts +0 -3
package/dist/resources/plugin-development.d.ts.map +0 -1
package/dist/resources/plugin-development.js +0 -596
package/dist/resources/plugin-development.js.map +0 -1
package/dist/resources/quick-start.d.ts +0 -3
package/dist/resources/quick-start.d.ts.map +0 -1
package/dist/resources/quick-start.js +0 -210
package/dist/resources/quick-start.js.map +0 -1
package/dist/resources/sdk-api.d.ts +0 -3
package/dist/resources/sdk-api.d.ts.map +0 -1
package/dist/resources/sdk-api.js +0 -199
package/dist/resources/sdk-api.js.map +0 -1
package/dist/resources/self-improvement.d.ts +0 -10
package/dist/resources/self-improvement.d.ts.map +0 -1
package/dist/resources/self-improvement.js +0 -91
package/dist/resources/self-improvement.js.map +0 -1
package/dist/resources/status.d.ts +0 -5
package/dist/resources/status.d.ts.map +0 -1
package/dist/resources/status.js +0 -27
package/dist/resources/status.js.map +0 -1
package/dist/resources/troubleshooting.d.ts +0 -3
package/dist/resources/troubleshooting.d.ts.map +0 -1
package/dist/resources/troubleshooting.js +0 -167
package/dist/resources/troubleshooting.js.map +0 -1
package/dist/sanitize-tool-output.d.ts +0 -20
package/dist/sanitize-tool-output.d.ts.map +0 -1
package/dist/sanitize-tool-output.js +0 -52
package/dist/sanitize-tool-output.js.map +0 -1
package/dist/skip-confirmation.d.ts +0 -15
package/dist/skip-confirmation.d.ts.map +0 -1
package/dist/skip-confirmation.js +0 -16
package/dist/skip-confirmation.js.map +0 -1
package/dist/skip-permissions.d.ts +0 -11
package/dist/skip-permissions.d.ts.map +0 -1
package/dist/skip-permissions.js +0 -12
package/dist/skip-permissions.js.map +0 -1
package/dist/skip-sanitization.d.ts +0 -17
package/dist/skip-sanitization.d.ts.map +0 -1
package/dist/skip-sanitization.js +0 -18
package/dist/skip-sanitization.js.map +0 -1
package/dist/skip-verification.d.ts +0 -11
package/dist/skip-verification.d.ts.map +0 -1
package/dist/skip-verification.js +0 -12
package/dist/skip-verification.js.map +0 -1
package/dist/verify-plugin.d.ts +0 -53
package/dist/verify-plugin.d.ts.map +0 -1
package/dist/verify-plugin.js +0 -123
package/dist/verify-plugin.js.map +0 -1

package/dist/permissions.d.ts DELETED Viewed

@@ -1,59 +0,0 @@
-/**
- * Browser tool permission evaluation engine.
- *
- * Classifies browser tools into three security tiers (observe, interact,
- * sensitive) and evaluates whether a tool call should be auto-allowed,
- * require human confirmation, or be denied outright.
- *
- * The evaluation order (first match wins):
- *   1. domainToolPolicy[domain][tool] — per-domain per-tool override
- *   2. sensitiveDomains match → 'ask'
- *   3. toolPolicy[tool] — global per-tool override
- *   4. Tool tier default (observe=allow, interact=ask, sensitive=ask)
- *   5. trustedDomains match → override 'ask' to 'allow' (does NOT override 'deny')
- */
-import type { ToolPermission } from './config.js';
-import type { ServerState } from './state.js';
-/** Security tier for browser tools */
-type ToolTier = 'observe' | 'interact' | 'sensitive';
-/**
- * Browser tool → security tier mapping.
- *
- * - observe: read-only tools that list or inspect without accessing sensitive data
- * - interact: tools that modify page state (click, type, navigate, screenshot)
- * - sensitive: tools that access credentials, execute arbitrary code, or modify auth state
- */
-declare const TOOL_TIERS: Record<string, ToolTier>;
-/** Default permission for each tier */
-declare const TIER_DEFAULTS: Record<ToolTier, ToolPermission>;
-/**
- * Match a hostname against a domain pattern.
- *
- * Supports:
- *   - Exact match: 'example.com' matches 'example.com'
- *   - Wildcard prefix: '*.example.com' matches 'sub.example.com' and 'a.b.example.com'
- *     but NOT 'example.com' itself
- */
-declare const matchDomain: (hostname: string, pattern: string) => boolean;
-/** Check if a hostname matches any pattern in a domain list */
-declare const matchesDomainList: (hostname: string, patterns: string[]) => boolean;
-/**
- * Get the security tier for a browser tool by looking up the TOOL_TIERS map.
- * Tools not in the map default to 'interact' (safe middle ground).
- *
- * @param toolName - Browser tool name (e.g., 'browser_execute_script')
- * @returns The tool's security tier: 'observe', 'interact', or 'sensitive'
- */
-export declare const getToolTier: (toolName: string) => ToolTier;
-/**
- * Evaluate the permission for a browser tool call.
- *
- * @param toolName - Browser tool name (e.g., 'browser_execute_script')
- * @param domain - Target domain hostname (e.g., 'mail.google.com'), or null for tools with no target
- * @param state - Server state (for skipPermissions flag and permissions config)
- * @returns 'allow', 'ask', or 'deny'
- */
-export declare const evaluatePermission: (toolName: string, domain: string | null, state: ServerState) => ToolPermission;
-export { TOOL_TIERS, TIER_DEFAULTS, matchDomain, matchesDomainList };
-export type { ToolTier };
-//# sourceMappingURL=permissions.d.ts.map

package/dist/permissions.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"permissions.d.ts","sourceRoot":"","sources":["../src/permissions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAClD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAE9C,sCAAsC;AACtC,KAAK,QAAQ,GAAG,SAAS,GAAG,UAAU,GAAG,WAAW,CAAC;AAErD;;;;;;GAMG;AACH,QAAA,MAAM,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,QAAQ,CA8CxC,CAAC;AAEF,uCAAuC;AACvC,QAAA,MAAM,aAAa,EAAE,MAAM,CAAC,QAAQ,EAAE,cAAc,CAInD,CAAC;AAEF;;;;;;;GAOG;AACH,QAAA,MAAM,WAAW,GAAI,UAAU,MAAM,EAAE,SAAS,MAAM,KAAG,OAOxD,CAAC;AAEF,+DAA+D;AAC/D,QAAA,MAAM,iBAAiB,GAAI,UAAU,MAAM,EAAE,UAAU,MAAM,EAAE,KAAG,OACpB,CAAC;AAE/C;;;;;;GAMG;AACH,eAAO,MAAM,WAAW,GAAI,UAAU,MAAM,KAAG,QAA8C,CAAC;AAE9F;;;;;;;GAOG;AACH,eAAO,MAAM,kBAAkB,GAAI,UAAU,MAAM,EAAE,QAAQ,MAAM,GAAG,IAAI,EAAE,OAAO,WAAW,KAAG,cAsChG,CAAC;AAEF,OAAO,EAAE,UAAU,EAAE,aAAa,EAAE,WAAW,EAAE,iBAAiB,EAAE,CAAC;AACrE,YAAY,EAAE,QAAQ,EAAE,CAAC"}

package/dist/permissions.js DELETED Viewed

@@ -1,144 +0,0 @@
-/**
- * Browser tool permission evaluation engine.
- *
- * Classifies browser tools into three security tiers (observe, interact,
- * sensitive) and evaluates whether a tool call should be auto-allowed,
- * require human confirmation, or be denied outright.
- *
- * The evaluation order (first match wins):
- *   1. domainToolPolicy[domain][tool] — per-domain per-tool override
- *   2. sensitiveDomains match → 'ask'
- *   3. toolPolicy[tool] — global per-tool override
- *   4. Tool tier default (observe=allow, interact=ask, sensitive=ask)
- *   5. trustedDomains match → override 'ask' to 'allow' (does NOT override 'deny')
- */
-/**
- * Browser tool → security tier mapping.
- *
- * - observe: read-only tools that list or inspect without accessing sensitive data
- * - interact: tools that modify page state (click, type, navigate, screenshot)
- * - sensitive: tools that access credentials, execute arbitrary code, or modify auth state
- */
-const TOOL_TIERS = {
-    // Observe tier — read-only, low risk
-    browser_list_tabs: 'observe',
-    browser_get_tab_info: 'observe',
-    browser_query_elements: 'observe',
-    browser_wait_for_element: 'observe',
-    browser_get_tab_content: 'observe',
-    browser_get_console_logs: 'observe',
-    browser_list_resources: 'observe',
-    browser_get_resource_content: 'observe',
-    browser_disable_network_capture: 'observe',
-    extension_get_state: 'observe',
-    extension_get_logs: 'observe',
-    extension_get_side_panel: 'observe',
-    extension_check_adapter: 'observe',
-    plugin_list_tabs: 'observe',
-    // Interact tier — modifies page state or captures content
-    browser_clear_console_logs: 'interact',
-    browser_click_element: 'interact',
-    browser_type_text: 'interact',
-    browser_select_option: 'interact',
-    browser_hover_element: 'interact',
-    browser_press_key: 'interact',
-    browser_scroll: 'interact',
-    browser_screenshot_tab: 'interact',
-    browser_navigate_tab: 'interact',
-    browser_open_tab: 'interact',
-    browser_close_tab: 'interact',
-    browser_focus_tab: 'interact',
-    browser_handle_dialog: 'interact',
-    browser_get_page_html: 'interact',
-    browser_enable_network_capture: 'interact',
-    browser_get_network_requests: 'interact',
-    browser_get_websocket_frames: 'interact',
-    browser_export_har: 'interact',
-    extension_force_reconnect: 'interact',
-    extension_reload: 'interact',
-    plugin_analyze_site: 'interact',
-    // Sensitive tier — access credentials, execute arbitrary code, modify auth
-    browser_execute_script: 'sensitive',
-    browser_get_cookies: 'sensitive',
-    browser_set_cookie: 'sensitive',
-    browser_delete_cookies: 'sensitive',
-    browser_get_storage: 'sensitive',
-};
-/** Default permission for each tier */
-const TIER_DEFAULTS = {
-    observe: 'allow',
-    interact: 'ask',
-    sensitive: 'ask',
-};
-/**
- * Match a hostname against a domain pattern.
- *
- * Supports:
- *   - Exact match: 'example.com' matches 'example.com'
- *   - Wildcard prefix: '*.example.com' matches 'sub.example.com' and 'a.b.example.com'
- *     but NOT 'example.com' itself
- */
-const matchDomain = (hostname, pattern) => {
-    if (pattern === hostname)
-        return true;
-    if (pattern.startsWith('*.')) {
-        const suffix = pattern.slice(1); // '.example.com'
-        return hostname.endsWith(suffix) && hostname.length > suffix.length;
-    }
-    return false;
-};
-/** Check if a hostname matches any pattern in a domain list */
-const matchesDomainList = (hostname, patterns) => patterns.some(p => matchDomain(hostname, p));
-/**
- * Get the security tier for a browser tool by looking up the TOOL_TIERS map.
- * Tools not in the map default to 'interact' (safe middle ground).
- *
- * @param toolName - Browser tool name (e.g., 'browser_execute_script')
- * @returns The tool's security tier: 'observe', 'interact', or 'sensitive'
- */
-export const getToolTier = (toolName) => TOOL_TIERS[toolName] ?? 'interact';
-/**
- * Evaluate the permission for a browser tool call.
- *
- * @param toolName - Browser tool name (e.g., 'browser_execute_script')
- * @param domain - Target domain hostname (e.g., 'mail.google.com'), or null for tools with no target
- * @param state - Server state (for skipPermissions flag and permissions config)
- * @returns 'allow', 'ask', or 'deny'
- */
-export const evaluatePermission = (toolName, domain, state) => {
-    // Bypass: if skipPermissions is active, all tools are auto-allowed
-    if (state.skipPermissions)
-        return 'allow';
-    const permissions = state.permissions;
-    // 1. Per-domain per-tool override (most specific)
-    if (domain) {
-        for (const [pattern, toolPolicies] of Object.entries(permissions.domainToolPolicy)) {
-            if (matchDomain(domain, pattern) && toolName in toolPolicies) {
-                const policy = toolPolicies[toolName];
-                if (policy)
-                    return policy;
-            }
-        }
-    }
-    // 2. Sensitive domain check: if the domain matches, force 'ask'
-    if (domain && matchesDomainList(domain, permissions.sensitiveDomains)) {
-        return 'ask';
-    }
-    // 3. Global per-tool override
-    if (toolName in permissions.toolPolicy) {
-        const policy = permissions.toolPolicy[toolName];
-        if (policy)
-            return policy;
-    }
-    // 4. Tool tier default
-    const tier = getToolTier(toolName);
-    const tierDefault = TIER_DEFAULTS[tier];
-    // 5. Trusted domain override: if tier default is 'ask' and domain is trusted,
-    //    upgrade to 'allow'. Does NOT override 'deny'.
-    if (tierDefault === 'ask' && domain && matchesDomainList(domain, permissions.trustedDomains)) {
-        return 'allow';
-    }
-    return tierDefault;
-};
-export { TOOL_TIERS, TIER_DEFAULTS, matchDomain, matchesDomainList };
-//# sourceMappingURL=permissions.js.map

package/dist/permissions.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"permissions.js","sourceRoot":"","sources":["../src/permissions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAQH;;;;;;GAMG;AACH,MAAM,UAAU,GAA6B;IAC3C,qCAAqC;IACrC,iBAAiB,EAAE,SAAS;IAC5B,oBAAoB,EAAE,SAAS;IAC/B,sBAAsB,EAAE,SAAS;IACjC,wBAAwB,EAAE,SAAS;IACnC,uBAAuB,EAAE,SAAS;IAClC,wBAAwB,EAAE,SAAS;IACnC,sBAAsB,EAAE,SAAS;IACjC,4BAA4B,EAAE,SAAS;IACvC,+BAA+B,EAAE,SAAS;IAC1C,mBAAmB,EAAE,SAAS;IAC9B,kBAAkB,EAAE,SAAS;IAC7B,wBAAwB,EAAE,SAAS;IACnC,uBAAuB,EAAE,SAAS;IAClC,gBAAgB,EAAE,SAAS;IAE3B,0DAA0D;IAC1D,0BAA0B,EAAE,UAAU;IACtC,qBAAqB,EAAE,UAAU;IACjC,iBAAiB,EAAE,UAAU;IAC7B,qBAAqB,EAAE,UAAU;IACjC,qBAAqB,EAAE,UAAU;IACjC,iBAAiB,EAAE,UAAU;IAC7B,cAAc,EAAE,UAAU;IAC1B,sBAAsB,EAAE,UAAU;IAClC,oBAAoB,EAAE,UAAU;IAChC,gBAAgB,EAAE,UAAU;IAC5B,iBAAiB,EAAE,UAAU;IAC7B,iBAAiB,EAAE,UAAU;IAC7B,qBAAqB,EAAE,UAAU;IACjC,qBAAqB,EAAE,UAAU;IACjC,8BAA8B,EAAE,UAAU;IAC1C,4BAA4B,EAAE,UAAU;IACxC,4BAA4B,EAAE,UAAU;IACxC,kBAAkB,EAAE,UAAU;IAC9B,yBAAyB,EAAE,UAAU;IACrC,gBAAgB,EAAE,UAAU;IAC5B,mBAAmB,EAAE,UAAU;IAE/B,2EAA2E;IAC3E,sBAAsB,EAAE,WAAW;IACnC,mBAAmB,EAAE,WAAW;IAChC,kBAAkB,EAAE,WAAW;IAC/B,sBAAsB,EAAE,WAAW;IACnC,mBAAmB,EAAE,WAAW;CACjC,CAAC;AAEF,uCAAuC;AACvC,MAAM,aAAa,GAAqC;IACtD,OAAO,EAAE,OAAO;IAChB,QAAQ,EAAE,KAAK;IACf,SAAS,EAAE,KAAK;CACjB,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,WAAW,GAAG,CAAC,QAAgB,EAAE,OAAe,EAAW,EAAE;IACjE,IAAI,OAAO,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IACtC,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7B,MAAM,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,iBAAiB;QAClD,OAAO,QAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;IACtE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC,CAAC;AAEF,+DAA+D;AAC/D,MAAM,iBAAiB,GAAG,CAAC,QAAgB,EAAE,QAAkB,EAAW,EAAE,CAC1E,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC;AAE/C;;;;;;GAMG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,QAAgB,EAAY,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,UAAU,CAAC;AAE9F;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,QAAgB,EAAE,MAAqB,EAAE,KAAkB,EAAkB,EAAE;IAChH,mEAAmE;IACnE,IAAI,KAAK,CAAC,eAAe;QAAE,OAAO,OAAO,CAAC;IAE1C,MAAM,WAAW,GAAG,KAAK,CAAC,WAAW,CAAC;IAEtC,kDAAkD;IAClD,IAAI,MAAM,EAAE,CAAC;QACX,KAAK,MAAM,CAAC,OAAO,EAAE,YAAY,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,gBAAgB,CAAC,EAAE,CAAC;YACnF,IAAI,WAAW,CAAC,MAAM,EAAE,OAAO,CAAC,IAAI,QAAQ,IAAI,YAAY,EAAE,CAAC;gBAC7D,MAAM,MAAM,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;gBACtC,IAAI,MAAM;oBAAE,OAAO,MAAM,CAAC;YAC5B,CAAC;QACH,CAAC;IACH,CAAC;IAED,gEAAgE;IAChE,IAAI,MAAM,IAAI,iBAAiB,CAAC,MAAM,EAAE,WAAW,CAAC,gBAAgB,CAAC,EAAE,CAAC;QACtE,OAAO,KAAK,CAAC;IACf,CAAC;IAED,8BAA8B;IAC9B,IAAI,QAAQ,IAAI,WAAW,CAAC,UAAU,EAAE,CAAC;QACvC,MAAM,MAAM,GAAG,WAAW,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAChD,IAAI,MAAM;YAAE,OAAO,MAAM,CAAC;IAC5B,CAAC;IAED,uBAAuB;IACvB,MAAM,IAAI,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;IACnC,MAAM,WAAW,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IAExC,8EAA8E;IAC9E,mDAAmD;IACnD,IAAI,WAAW,KAAK,KAAK,IAAI,MAAM,IAAI,iBAAiB,CAAC,MAAM,EAAE,WAAW,CAAC,cAAc,CAAC,EAAE,CAAC;QAC7F,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC,CAAC;AAEF,OAAO,EAAE,UAAU,EAAE,aAAa,EAAE,WAAW,EAAE,iBAAiB,EAAE,CAAC"}

package/dist/prompts/audit-ai-docs.d.ts DELETED Viewed

@@ -1,6 +0,0 @@
-/**
- * audit_ai_docs prompt — workflow for auditing and improving the AI-facing
- * documentation served by the MCP server (instructions, resources, prompts).
- */
-export declare const auditAiDocsPromptText: () => string;
-//# sourceMappingURL=audit-ai-docs.d.ts.map

package/dist/prompts/audit-ai-docs.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"audit-ai-docs.d.ts","sourceRoot":"","sources":["../../src/prompts/audit-ai-docs.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,eAAO,MAAM,qBAAqB,QAC5B,MAqJ4E,CAAC"}

package/dist/prompts/audit-ai-docs.js DELETED Viewed

@@ -1,155 +0,0 @@
-/**
- * audit_ai_docs prompt — workflow for auditing and improving the AI-facing
- * documentation served by the MCP server (instructions, resources, prompts).
- */
-export const auditAiDocsPromptText = () => `Audit and improve the AI-facing documentation that the OpenTabs MCP server serves to connected AI clients.
----
-## Core Philosophy
-OpenTabs is a platform for AI clients. The MCP server is the primary documentation layer for AI; the docs/ site is the secondary layer for humans. Three MCP mechanisms serve AI clients:
-| Mechanism | Delivery | Purpose |
-|---|---|---|
-| **Instructions** | Push (initialize) | System prompt. Concise rules, security, capability overview. Always present. |
-| **Resources** | Pull (resources/read) | Detailed guides, API references, live state. Fetched on demand. |
-| **Prompts** | Pull (prompts/get) | Task-oriented workflows invoked by the user. |
-**Placement rules:** Instructions are expensive (always in context — keep under 120 lines / 6000 chars). Resources are cheap (fetched when needed — can be long). Prompts are workflows (user-triggered — include specific tool calls).
----
-## Phase 1: Audit What Exists
-Read the current AI-facing documentation layer:
-1. **Instructions** — read \`platform/mcp-server/src/mcp-setup.ts\`, find the \`SERVER_INSTRUCTIONS\` constant. Assess: concise? covers security? mentions resources and prompts? under 120-line budget?
-2. **Resources** — read \`platform/mcp-server/src/mcp-resources.ts\` and the files in \`platform/mcp-server/src/resources/\`. List every resource URI, check if content is populated.
-3. **Prompts** — read \`platform/mcp-server/src/mcp-prompts.ts\` and the files in \`platform/mcp-server/src/prompts/\`. List every prompt, its arguments, and assess quality.
-4. **Tool descriptions** — sample 5-10 browser tools from \`platform/mcp-server/src/browser-tools/\`. Are descriptions informative enough for AI?
-5. **Capabilities** — check the \`capabilities\` object in \`createMcpServer\`. What's declared? What's missing?
----
-## Phase 2: Verify Accuracy Against Source Code
-Every fact in the AI docs must match the actual codebase. Cross-reference:
-| AI doc claim | Verify against |
-|---|---|
-| CLI command formats | \`platform/cli/src/commands/*.ts\` |
-| Config key formats | \`platform/cli/src/commands/config.ts\` (SUPPORTED_KEYS) |
-| SDK utility functions | \`platform/plugin-sdk/src/sdk.ts\` |
-| ToolError factories | \`platform/plugin-sdk/src/errors.ts\` |
-| Lifecycle hooks | \`platform/plugin-sdk/src/plugin.ts\` |
-| WebSocket methods | \`platform/mcp-server/src/extension-protocol.ts\` |
-| Health endpoint fields | \`platform/mcp-server/src/http-routes.ts\` |
-| Permission model | \`platform/mcp-server/src/state.ts\` |
-| Browser tool count | \`platform/mcp-server/src/browser-tools/index.ts\` |
-| ToolDefinition interface | \`platform/plugin-sdk/src/index.ts\` |
-| PluginPermissionConfig | \`platform/shared/src/index.ts\` |
-**Common drift patterns:**
-- Permission terminology (enabled/disabled → off/ask/auto)
-- Config key formats (tool.X → tool-permission.X)
-- Health endpoint renames (confirmationBypassed → skipPermissions)
-- WebSocket method renames (setToolEnabled → setToolPermission)
-- New SDK utilities not documented
-- New ToolDefinition fields (summary, group) missing
----
-## Phase 3: Identify Gaps
-For each actor type, ask: if an AI client connected now and the user asked X, would the AI have enough information?
-**Normal user:**
-- "Install OpenTabs and set it up" — quick-start resource?
-- "What plugins are available?" — knows about \`opentabs plugin search\`?
-- "This tool isn't working" — troubleshooting resource?
-**Plugin developer:**
-- "Build a plugin for X" — build_plugin prompt + plugin-development resource?
-- "What SDK utilities exist?" — SDK reference resource?
-- "How do I handle auth?" — plugin-development resource?
-**Platform contributor:**
-- "How is the codebase structured?" — architecture resource?
-- "How do I run the dev server?" — dev setup covered?
----
-## Phase 4: Write or Update Content
-**Where content lives:**
-| Content type | File |
-|---|---|
-| Instructions | \`platform/mcp-server/src/mcp-setup.ts\` (\`SERVER_INSTRUCTIONS\`) |
-| Quick start guide | \`platform/mcp-server/src/resources/quick-start.ts\` |
-| Plugin dev guide | \`platform/mcp-server/src/resources/plugin-development.ts\` |
-| Troubleshooting | \`platform/mcp-server/src/resources/troubleshooting.ts\` |
-| SDK API reference | \`platform/mcp-server/src/resources/sdk-api.ts\` |
-| CLI reference | \`platform/mcp-server/src/resources/cli.ts\` |
-| Browser tools ref | \`platform/mcp-server/src/resources/browser-tools.ts\` |
-| Dynamic status | \`platform/mcp-server/src/resources/status.ts\` |
-| Build plugin prompt | \`platform/mcp-server/src/prompts/build-plugin.ts\` |
-| Troubleshoot prompt | \`platform/mcp-server/src/prompts/troubleshoot.ts\` |
-| Setup plugin prompt | \`platform/mcp-server/src/prompts/setup-plugin.ts\` |
-| This prompt | \`platform/mcp-server/src/prompts/audit-ai-docs.ts\` |
-**Writing for AI consumption (not humans):**
-| Human docs | AI docs |
-|---|---|
-| Friendly tone | Direct, information-dense |
-| Progressive disclosure | All facts upfront |
-| Narrative | Structured tables and lists |
-| Screenshots | Code blocks and exact commands |
-| Conceptual overview first | Working example first |
-**Size guidelines:**
-- Instructions: ≤120 lines / 6000 chars
-- Guides: 150-400 lines
-- References: 100-250 lines
----
-## Phase 5: Verify
-After making changes:
-\`\`\`bash
-npm run build         # Server must compile
-npm run type-check    # TypeScript check
-npm run lint          # Biome lint
-npm run knip          # Unused code detection
-npm run test          # Unit tests
-\`\`\`
----
-## Phase 6: Write Learnings Back
-If the audit reveals new drift patterns or common issues, add them to the Common Issues section at the bottom of this prompt (\`platform/mcp-server/src/prompts/audit-ai-docs.ts\`).
----
-## Common Issues to Check
-1. **Stale permission terminology** — codebase uses \`off/ask/auto\`. Search for \`enabled/disabled\` or \`allow_once/allow_always/deny\`.
-2. **Config key format drift** — actual: \`tool-permission.<plugin>.<tool>\` and \`plugin-permission.<plugin>\`. Search for \`tool.<plugin>_<tool>\`.
-3. **Health endpoint field renames** — \`skipPermissions\` not \`confirmationBypassed\`.
-4. **Missing ToolDefinition fields** — \`summary\`, \`group\`, \`icon\` often omitted.
-5. **WebSocket method renames** — actual: \`config.setToolPermission\`, \`config.setPluginPermission\`, \`config.setSkipPermissions\`.
-6. **SDK utility additions** — new functions in \`plugin-sdk/src/sdk.ts\` not in resource.
-7. **Browser tool count** — currently 40. Check \`browser-tools/index.ts\`.
-8. **\`reviewedVersion\` field** — part of \`PluginPermissionConfig\`, often missing from docs.
-9. **Confirmation response** — \`{ id, decision: 'allow' | 'deny', alwaysAllow?: boolean }\`.
-10. **Resource content accuracy** — resource content drifts just like human docs.`;
-//# sourceMappingURL=audit-ai-docs.js.map

package/dist/prompts/audit-ai-docs.js.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"audit-ai-docs.js","sourceRoot":"","sources":["../../src/prompts/audit-ai-docs.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,MAAM,CAAC,MAAM,qBAAqB,GAChC,GAAW,EAAE,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kFAqJkE,CAAC"}

package/dist/prompts/build-plugin.d.ts DELETED Viewed

@@ -1,3 +0,0 @@
-/** Prompt text for the `build_plugin` prompt — full plugin development workflow. */
-export declare const buildPluginPromptText: (url: string, name: string) => string;
-//# sourceMappingURL=build-plugin.d.ts.map

package/dist/prompts/build-plugin.d.ts.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"build-plugin.d.ts","sourceRoot":"","sources":["../../src/prompts/build-plugin.ts"],"names":[],"mappings":"AAAA,oFAAoF;AAEpF,eAAO,MAAM,qBAAqB,GAAI,KAAK,MAAM,EAAE,MAAM,MAAM,KAAG,MAqcjE,CAAC"}