@opentabs-dev/mcp-server 0.0.67 → 0.0.68

package/dist/resources/troubleshooting.js

@@ -1,167 +0,0 @@
-/** Troubleshooting Guide resource content. */
-export const TROUBLESHOOTING_CONTENT = `# Troubleshooting Guide
-
-Common errors when using OpenTabs, their causes, and resolution steps.
-
-## Quick Diagnosis
-
-Before diving into specific errors, run these diagnostic commands:
-
-\`\`\`bash
-opentabs status      # Server, extension, and plugin state
-opentabs doctor      # Comprehensive setup diagnostics
-\`\`\`
-
-From your AI client:
-- Call \`extension_get_state\` — extension health and WebSocket status
-- Call \`plugin_list_tabs\` — per-plugin tab readiness
-- Fetch \`opentabs://status\` — full server state snapshot
-
-## Error Reference
-
-### Extension Not Connected
-
-**Error:** \`Extension not connected. Please ensure the OpenTabs Chrome extension is running.\`
-
-**Cause:** The Chrome extension WebSocket connection to the MCP server is not active.
-
-**Resolution:**
-1. Verify server is running: \`opentabs status\`
-2. Check extension is loaded: open \`chrome://extensions\`, verify OpenTabs is enabled
-3. Reload extension: click the refresh icon on the OpenTabs card in \`chrome://extensions\`
-4. Close and reopen the side panel
-5. If still failing, run \`opentabs doctor\` for full diagnostics
-6. Check for stale auth secret: \`opentabs config rotate-secret --confirm\`, then reload extension
-
-### Tab Closed
-
-**Error:** \`Tab closed: <message>\`
-
-**Cause:** No browser tab matches the plugin's URL patterns, or the matching tab was closed during dispatch.
-
-**Resolution:**
-1. Open the target web application in Chrome
-2. Verify the URL matches the plugin's \`urlPatterns\` (\`opentabs status\` shows patterns)
-3. Call \`plugin_list_tabs\` to verify the tab is detected
-4. Retry the tool call
-
-### Tab Unavailable
-
-**Error:** \`Tab unavailable: <message>\`
-
-**Cause:** A tab matches the plugin's URL patterns but \`isReady()\` returns false. The user is likely not logged in.
-
-**Resolution:**
-1. Log into the web application in the matching browser tab
-2. Refresh the tab (Ctrl+R / Cmd+R)
-3. Wait 5 seconds for the readiness probe to complete
-4. Call \`plugin_list_tabs\` to check the \`ready\` field
-5. Retry the tool call
-
-### Plugin Not Reviewed
-
-**Error:** \`Plugin "<name>" (v<version>) has not been reviewed yet.\`
-
-**Cause:** New plugins start with permission \`'off'\` and require a security review before use.
-
-**Resolution (AI client flow):**
-1. Call \`plugin_inspect({"plugin": "<name>"})\` — retrieves adapter source code + review token
-2. Review the code for security concerns (data exfiltration, credential access, suspicious network requests)
-3. Share findings with the user
-4. If approved, call \`plugin_mark_reviewed({"plugin": "<name>", "version": "<ver>", "reviewToken": "<token>", "permission": "auto"})\`
-
-**Resolution (side panel):** Open the side panel, click the shield icon on the plugin card, and confirm.
-
-### Plugin Updated — Re-Review Required
-
-**Error:** \`Plugin "<name>" has been updated from v<old> to v<new> and needs re-review.\`
-
-**Cause:** Plugin version changed since last review. Permission resets to \`'off'\` on version change.
-
-**Resolution:** Same as "Plugin Not Reviewed" above — call \`plugin_inspect\` and re-review.
-
-### Tool Disabled
-
-**Error:** \`Tool "<name>" is currently disabled. Ask the user to enable it in the OpenTabs side panel.\`
-
-**Cause:** The tool's permission is set to \`'off'\`.
-
-**Resolution:**
-- User enables in side panel, OR
-- \`opentabs config set tool-permission.<plugin>.<tool> ask\`
-- \`opentabs config set plugin-permission.<plugin> ask\`
-
-### Permission Denied by User
-
-**Error:** \`Tool "<name>" was denied by the user.\`
-
-**Cause:** Tool permission is \`'ask'\` and the user clicked "Deny" in the approval dialog.
-
-**Resolution:** Do NOT retry immediately. Ask the user if they want to approve the action. To skip future prompts: \`opentabs config set tool-permission.<plugin>.<tool> auto\`
-
-### Too Many Concurrent Dispatches
-
-**Error:** \`Too many concurrent dispatches for plugin "<name>" (limit: 5). Wait for in-flight requests to complete.\`
-
-**Cause:** More than 5 simultaneous tool calls to the same plugin.
-
-**Resolution:** Wait 100-500ms for in-flight dispatches to complete, then retry.
-
-### Dispatch Timeout
-
-**Error:** \`Dispatch <label> timed out after <ms>ms\`
-
-**Cause:** Tool handler did not respond within 30 seconds (or 5 minutes with progress reporting).
-
-**Resolution:**
-1. Check if the tab is responsive (take a screenshot, check console logs)
-2. Refresh the target tab if unresponsive
-3. For legitimately long operations, the plugin should use \`context.reportProgress()\` to extend the timeout
-4. Break long operations into multiple tool calls
-
-**Timeout rules:**
-- Default: 30s per dispatch
-- Progress resets the timer: each \`reportProgress()\` call extends by 30s
-- Absolute ceiling: 5 minutes regardless of progress
-
-### Schema Validation Error
-
-**Error:** \`Invalid arguments for tool "<name>": - <field>: <issue>\`
-
-**Cause:** Tool arguments don't match the JSON Schema defined by the plugin.
-
-**Resolution:** Check the tool's input schema via \`tools/list\` and ensure all required fields are provided with correct types.
-
-### Tool Not Found
-
-**Error:** \`Tool <name> not found\`
-
-**Cause:** The prefixed tool name doesn't exist in the registry. Plugin may not be installed.
-
-**Resolution:**
-1. Run \`opentabs status\` to verify the plugin is installed
-2. Check the tool name (format: \`<plugin>_<tool>\`, e.g., \`slack_send_message\`)
-3. Reinstall: \`opentabs plugin install <name>\`
-
-### Rate Limited
-
-**Error:** Tool response includes \`retryable: true\` and \`retryAfterMs\`.
-
-**Cause:** The target web application's API returned HTTP 429.
-
-**Resolution:** Wait the specified \`retryAfterMs\` before retrying. The \`ToolError.rateLimited\` metadata includes the exact delay.
-
-## Diagnostic Tools Reference
-
-| Tool | What it checks |
-|------|---------------|
-| \`extension_get_state\` | WebSocket status, registered plugins, active captures |
-| \`extension_get_logs\` | Extension background script logs, injection warnings |
-| \`extension_check_adapter({"plugin": "<name>"})\` | Adapter injection status, hash match, isReady() result |
-| \`plugin_list_tabs\` | Per-plugin tab matching and readiness |
-| \`browser_get_console_logs\` | Browser console errors (requires network capture) |
-| \`opentabs status\` | Server uptime, extension connection, plugin states |
-| \`opentabs doctor\` | Full setup diagnostics with fix suggestions |
-| \`opentabs logs --plugin <name>\` | Server-side plugin-specific logs |
-`;
-//# sourceMappingURL=troubleshooting.js.map

package/dist/resources/troubleshooting.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"troubleshooting.js","sourceRoot":"","sources":["../../src/resources/troubleshooting.ts"],"names":[],"mappings":"AAAA,8CAA8C;AAE9C,MAAM,CAAC,MAAM,uBAAuB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAoKtC,CAAC"}

package/dist/sanitize-tool-output.d.ts

@@ -1,20 +0,0 @@
-/**
- * Sanitize successful tool output before returning to MCP clients.
- *
- * Applies the same path, URL, localhost, and IP replacement patterns
- * as sanitizeErrorMessage (from sanitize-error.ts) but operates
- * recursively on all string values within an object tree. Numbers,
- * booleans, nulls, and object keys are left untouched.
- *
- * This prevents internal system details (filesystem paths, local IP
- * addresses) from leaking to AI agents in tool output. Error messages
- * are sanitized separately by sanitizeErrorMessage and are not affected
- * by the skipSanitization flag.
- */
-/**
- * Recursively sanitize all string values within an object.
- * Leaves numbers, booleans, nulls, and object keys unchanged.
- */
-declare const sanitizeToolOutput: (obj: unknown, depth?: number) => unknown;
-export { sanitizeToolOutput };
-//# sourceMappingURL=sanitize-tool-output.d.ts.map

package/dist/sanitize-tool-output.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"sanitize-tool-output.d.ts","sourceRoot":"","sources":["../src/sanitize-tool-output.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAsBH;;;GAGG;AACH,QAAA,MAAM,kBAAkB,GAAI,KAAK,OAAO,EAAE,cAAS,KAAG,OAerD,CAAC;AAEF,OAAO,EAAE,kBAAkB,EAAE,CAAC"}

package/dist/sanitize-tool-output.js

@@ -1,52 +0,0 @@
-/**
- * Sanitize successful tool output before returning to MCP clients.
- *
- * Applies the same path, URL, localhost, and IP replacement patterns
- * as sanitizeErrorMessage (from sanitize-error.ts) but operates
- * recursively on all string values within an object tree. Numbers,
- * booleans, nulls, and object keys are left untouched.
- *
- * This prevents internal system details (filesystem paths, local IP
- * addresses) from leaking to AI agents in tool output. Error messages
- * are sanitized separately by sanitizeErrorMessage and are not affected
- * by the skipSanitization flag.
- */
-const MAX_DEPTH = 50;
-/**
- * Sanitize a single string value using the same patterns as sanitizeErrorMessage.
- * Does NOT truncate — tool output can be arbitrarily long (truncation is only
- * for error messages where brevity matters).
- */
-const sanitizeString = (value) => value
-    // Windows absolute paths: C:\path\to\file or C:/path/to/file
-    .replace(/[a-z]:[/\\][^\s,;)}\]]+/gi, '[PATH]')
-    // Unix absolute paths: /path/to/file (at least 2 segments to avoid false positives like "/")
-    .replace(/\/[a-z0-9._-]+(?:\/[a-z0-9._-]+)+/gi, '[PATH]')
-    // Full URLs with protocol
-    .replace(/https?:\/\/[^\s,;)}\]]+/gi, '[URL]')
-    // localhost with port
-    .replace(/localhost:\d+/gi, '[LOCALHOST]')
-    // IPv4 addresses
-    .replace(/\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3}/g, '[IP]');
-/**
- * Recursively sanitize all string values within an object.
- * Leaves numbers, booleans, nulls, and object keys unchanged.
- */
-const sanitizeToolOutput = (obj, depth = 0) => {
-    if (depth > MAX_DEPTH)
-        return obj;
-    if (typeof obj === 'string')
-        return sanitizeString(obj);
-    if (obj === null || obj === undefined || typeof obj !== 'object')
-        return obj;
-    if (Array.isArray(obj)) {
-        return obj.map(item => sanitizeToolOutput(item, depth + 1));
-    }
-    const result = {};
-    for (const [key, value] of Object.entries(obj)) {
-        result[key] = sanitizeToolOutput(value, depth + 1);
-    }
-    return result;
-};
-export { sanitizeToolOutput };
-//# sourceMappingURL=sanitize-tool-output.js.map

package/dist/sanitize-tool-output.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"sanitize-tool-output.js","sourceRoot":"","sources":["../src/sanitize-tool-output.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,MAAM,SAAS,GAAG,EAAE,CAAC;AAErB;;;;GAIG;AACH,MAAM,cAAc,GAAG,CAAC,KAAa,EAAU,EAAE,CAC/C,KAAK;IACH,6DAA6D;KAC5D,OAAO,CAAC,2BAA2B,EAAE,QAAQ,CAAC;IAC/C,6FAA6F;KAC5F,OAAO,CAAC,qCAAqC,EAAE,QAAQ,CAAC;IACzD,0BAA0B;KACzB,OAAO,CAAC,2BAA2B,EAAE,OAAO,CAAC;IAC9C,sBAAsB;KACrB,OAAO,CAAC,iBAAiB,EAAE,aAAa,CAAC;IAC1C,iBAAiB;KAChB,OAAO,CAAC,qCAAqC,EAAE,MAAM,CAAC,CAAC;AAE5D;;;GAGG;AACH,MAAM,kBAAkB,GAAG,CAAC,GAAY,EAAE,KAAK,GAAG,CAAC,EAAW,EAAE;IAC9D,IAAI,KAAK,GAAG,SAAS;QAAE,OAAO,GAAG,CAAC;IAElC,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,cAAc,CAAC,GAAG,CAAC,CAAC;IACxD,IAAI,GAAG,KAAK,IAAI,IAAI,GAAG,KAAK,SAAS,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,GAAG,CAAC;IAE7E,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,kBAAkB,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;IAC9D,CAAC;IAED,MAAM,MAAM,GAA4B,EAAE,CAAC;IAC3C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAA8B,CAAC,EAAE,CAAC;QAC1E,MAAM,CAAC,GAAG,CAAC,GAAG,kBAAkB,CAAC,KAAK,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC;IACrD,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC,CAAC;AAEF,OAAO,EAAE,kBAAkB,EAAE,CAAC"}

package/dist/skip-confirmation.d.ts

@@ -1,15 +0,0 @@
-/**
- * Confirmation bypass detection — determined once at startup.
- *
- * The --dangerously-skip-confirmation flag (or OPENTABS_SKIP_CONFIRMATION=1
- * env var) bypasses all browser tool confirmation prompts. This is a
- * dangerous option that disables human-in-the-loop safety for sensitive
- * browser operations. It exists for CI/testing environments where no human
- * is available to approve tool calls.
- *
- * The config.json `skipConfirmation` field is checked separately at reload
- * time and combined with this flag in state.skipConfirmation.
- */
-/** Whether the CLI flag or env var requests confirmation bypass */
-export declare const isCliSkipConfirmation: () => boolean;
-//# sourceMappingURL=skip-confirmation.d.ts.map

package/dist/skip-confirmation.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-confirmation.d.ts","sourceRoot":"","sources":["../src/skip-confirmation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAKH,mEAAmE;AACnE,eAAO,MAAM,qBAAqB,QAAO,OAA8B,CAAC"}

package/dist/skip-confirmation.js

@@ -1,16 +0,0 @@
-/**
- * Confirmation bypass detection — determined once at startup.
- *
- * The --dangerously-skip-confirmation flag (or OPENTABS_SKIP_CONFIRMATION=1
- * env var) bypasses all browser tool confirmation prompts. This is a
- * dangerous option that disables human-in-the-loop safety for sensitive
- * browser operations. It exists for CI/testing environments where no human
- * is available to approve tool calls.
- *
- * The config.json `skipConfirmation` field is checked separately at reload
- * time and combined with this flag in state.skipConfirmation.
- */
-const cliSkipConfirmation = process.argv.includes('--dangerously-skip-confirmation') || process.env['OPENTABS_SKIP_CONFIRMATION'] === '1';
-/** Whether the CLI flag or env var requests confirmation bypass */
-export const isCliSkipConfirmation = () => cliSkipConfirmation;
-//# sourceMappingURL=skip-confirmation.js.map

package/dist/skip-confirmation.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-confirmation.js","sourceRoot":"","sources":["../src/skip-confirmation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,MAAM,mBAAmB,GACvB,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,iCAAiC,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,KAAK,GAAG,CAAC;AAEhH,mEAAmE;AACnE,MAAM,CAAC,MAAM,qBAAqB,GAAG,GAAY,EAAE,CAAC,mBAAmB,CAAC"}

package/dist/skip-permissions.d.ts

@@ -1,11 +0,0 @@
-/**
- * Permission bypass detection — determined once at startup.
- *
- * Set OPENTABS_DANGEROUSLY_SKIP_PERMISSIONS=1 to bypass approval prompts
- * for tools in 'ask' mode (converts them to 'auto'). Tools set to 'off'
- * remain disabled. Intended for CI/testing environments where no human is
- * available to approve tool calls.
- */
-/** Whether the env var requests permission bypass */
-export declare const isCliSkipPermissions: () => boolean;
-//# sourceMappingURL=skip-permissions.d.ts.map

package/dist/skip-permissions.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-permissions.d.ts","sourceRoot":"","sources":["../src/skip-permissions.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,qDAAqD;AACrD,eAAO,MAAM,oBAAoB,QAAO,OAA0B,CAAC"}

package/dist/skip-permissions.js

@@ -1,12 +0,0 @@
-/**
- * Permission bypass detection — determined once at startup.
- *
- * Set OPENTABS_DANGEROUSLY_SKIP_PERMISSIONS=1 to bypass approval prompts
- * for tools in 'ask' mode (converts them to 'auto'). Tools set to 'off'
- * remain disabled. Intended for CI/testing environments where no human is
- * available to approve tool calls.
- */
-const skipPermissions = process.env.OPENTABS_DANGEROUSLY_SKIP_PERMISSIONS === '1';
-/** Whether the env var requests permission bypass */
-export const isCliSkipPermissions = () => skipPermissions;
-//# sourceMappingURL=skip-permissions.js.map

package/dist/skip-permissions.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-permissions.js","sourceRoot":"","sources":["../src/skip-permissions.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,MAAM,eAAe,GAAG,OAAO,CAAC,GAAG,CAAC,qCAAqC,KAAK,GAAG,CAAC;AAElF,qDAAqD;AACrD,MAAM,CAAC,MAAM,oBAAoB,GAAG,GAAY,EAAE,CAAC,eAAe,CAAC"}

package/dist/skip-sanitization.d.ts

@@ -1,17 +0,0 @@
-/**
- * Output sanitization bypass detection — determined once at startup.
- *
- * The --dangerously-skip-sanitization flag (or OPENTABS_SKIP_SANITIZATION=1
- * env var) disables path/IP sanitization of successful tool output. This is
- * useful when raw output is needed for debugging or when the AI agent needs
- * actual filesystem paths.
- *
- * Error message sanitization (via sanitizeErrorMessage) is never affected
- * by this flag — errors are always sanitized regardless.
- *
- * The config.json `skipSanitization` field is checked separately at reload
- * time and combined with this flag in state.skipSanitization.
- */
-/** Whether the CLI flag or env var requests output sanitization bypass */
-export declare const isCliSkipSanitization: () => boolean;
-//# sourceMappingURL=skip-sanitization.d.ts.map

package/dist/skip-sanitization.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-sanitization.d.ts","sourceRoot":"","sources":["../src/skip-sanitization.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAKH,0EAA0E;AAC1E,eAAO,MAAM,qBAAqB,QAAO,OAA8B,CAAC"}

package/dist/skip-sanitization.js

@@ -1,18 +0,0 @@
-/**
- * Output sanitization bypass detection — determined once at startup.
- *
- * The --dangerously-skip-sanitization flag (or OPENTABS_SKIP_SANITIZATION=1
- * env var) disables path/IP sanitization of successful tool output. This is
- * useful when raw output is needed for debugging or when the AI agent needs
- * actual filesystem paths.
- *
- * Error message sanitization (via sanitizeErrorMessage) is never affected
- * by this flag — errors are always sanitized regardless.
- *
- * The config.json `skipSanitization` field is checked separately at reload
- * time and combined with this flag in state.skipSanitization.
- */
-const cliSkipSanitization = Bun.argv.includes('--dangerously-skip-sanitization') || Bun.env.OPENTABS_SKIP_SANITIZATION === '1';
-/** Whether the CLI flag or env var requests output sanitization bypass */
-export const isCliSkipSanitization = () => cliSkipSanitization;
-//# sourceMappingURL=skip-sanitization.js.map

package/dist/skip-sanitization.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-sanitization.js","sourceRoot":"","sources":["../src/skip-sanitization.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,MAAM,mBAAmB,GACvB,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,iCAAiC,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,0BAA0B,KAAK,GAAG,CAAC;AAErG,0EAA0E;AAC1E,MAAM,CAAC,MAAM,qBAAqB,GAAG,GAAY,EAAE,CAAC,mBAAmB,CAAC"}

package/dist/skip-verification.d.ts

@@ -1,11 +0,0 @@
-/**
- * Plugin verification bypass detection — determined once at startup.
- *
- * The --skip-plugin-verification flag (or OPENTABS_SKIP_PLUGIN_VERIFICATION=1
- * env var) disables npm registry signature verification for official plugins.
- * This is intended for air-gapped environments where the npm registry is
- * unreachable.
- */
-/** Whether the CLI flag or env var requests plugin verification bypass */
-export declare const isSkipPluginVerification: () => boolean;
-//# sourceMappingURL=skip-verification.d.ts.map

package/dist/skip-verification.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-verification.d.ts","sourceRoot":"","sources":["../src/skip-verification.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAKH,0EAA0E;AAC1E,eAAO,MAAM,wBAAwB,QAAO,OAA8B,CAAC"}

package/dist/skip-verification.js

@@ -1,12 +0,0 @@
-/**
- * Plugin verification bypass detection — determined once at startup.
- *
- * The --skip-plugin-verification flag (or OPENTABS_SKIP_PLUGIN_VERIFICATION=1
- * env var) disables npm registry signature verification for official plugins.
- * This is intended for air-gapped environments where the npm registry is
- * unreachable.
- */
-const cliSkipVerification = Bun.argv.includes('--skip-plugin-verification') || Bun.env.OPENTABS_SKIP_PLUGIN_VERIFICATION === '1';
-/** Whether the CLI flag or env var requests plugin verification bypass */
-export const isSkipPluginVerification = () => cliSkipVerification;
-//# sourceMappingURL=skip-verification.js.map

package/dist/skip-verification.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"skip-verification.js","sourceRoot":"","sources":["../src/skip-verification.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,MAAM,mBAAmB,GACvB,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,4BAA4B,CAAC,IAAI,GAAG,CAAC,GAAG,CAAC,iCAAiC,KAAK,GAAG,CAAC;AAEvG,0EAA0E;AAC1E,MAAM,CAAC,MAAM,wBAAwB,GAAG,GAAY,EAAE,CAAC,mBAAmB,CAAC"}

package/dist/verify-plugin.d.ts

@@ -1,53 +0,0 @@
-/**
- * Official plugin verification module.
- *
- * Verifies that plugins in the @opentabs-dev/ scope match what is published
- * on the npm registry by comparing the installed package's integrity hash
- * against the registry's published integrity value.
- *
- * This is a best-effort check that catches the common case of npm package
- * hijacking. It does NOT provide full supply chain security (that would
- * require signing keys).
- */
-interface VerificationResult {
-    /** Whether the plugin passed verification */
-    verified: boolean;
-    /** Human-readable reason when verification fails or is skipped */
-    reason?: string;
-}
-/**
- * Read the installed package's integrity hash from its package.json.
- *
- * npm and bun both write _integrity (subresource integrity format, e.g.,
- * "sha512-...") into the installed package.json. Falls back to _shasum
- * (hex SHA-1) if _integrity is not present.
- */
-declare const readInstalledIntegrity: (packagePath: string) => Promise<{
-    integrity?: string;
-    shasum?: string;
-    version?: string;
-}>;
-/**
- * Fetch the registry metadata for a specific package version.
- *
- * Uses the abbreviated registry endpoint to minimize data transfer.
- * Returns the dist object containing integrity and shasum fields.
- */
-declare const fetchRegistryDist: (npmPackageName: string, version: string) => Promise<{
-    integrity?: string;
-    shasum?: string;
-} | null>;
-/**
- * Verify that an official plugin's installed files match what is published
- * on the npm registry.
- *
- * Compares the _integrity or _shasum field from the installed package.json
- * against the npm registry's published dist metadata for the same version.
- *
- * @param packagePath - Absolute path to the installed plugin directory
- * @param npmPackageName - The npm package name (e.g., "@opentabs-dev/opentabs-plugin-slack")
- */
-declare const verifyOfficialPlugin: (packagePath: string, npmPackageName: string) => Promise<VerificationResult>;
-export { verifyOfficialPlugin, readInstalledIntegrity, fetchRegistryDist };
-export type { VerificationResult };
-//# sourceMappingURL=verify-plugin.d.ts.map

package/dist/verify-plugin.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"verify-plugin.d.ts","sourceRoot":"","sources":["../src/verify-plugin.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAKH,UAAU,kBAAkB;IAC1B,6CAA6C;IAC7C,QAAQ,EAAE,OAAO,CAAC;IAClB,kEAAkE;IAClE,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;GAMG;AACH,QAAA,MAAM,sBAAsB,GAC1B,aAAa,MAAM,KAClB,OAAO,CAAC;IAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAA;CAAE,CAanE,CAAC;AAEF;;;;;GAKG;AACH,QAAA,MAAM,iBAAiB,GACrB,gBAAgB,MAAM,EACtB,SAAS,MAAM,KACd,OAAO,CAAC;IAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,IAAI,CAiCxD,CAAC;AAEF;;;;;;;;;GASG;AACH,QAAA,MAAM,oBAAoB,GAAU,aAAa,MAAM,EAAE,gBAAgB,MAAM,KAAG,OAAO,CAAC,kBAAkB,CAgD3G,CAAC;AAEF,OAAO,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,iBAAiB,EAAE,CAAC;AAC3E,YAAY,EAAE,kBAAkB,EAAE,CAAC"}

package/dist/verify-plugin.js

@@ -1,123 +0,0 @@
-/**
- * Official plugin verification module.
- *
- * Verifies that plugins in the @opentabs-dev/ scope match what is published
- * on the npm registry by comparing the installed package's integrity hash
- * against the registry's published integrity value.
- *
- * This is a best-effort check that catches the common case of npm package
- * hijacking. It does NOT provide full supply chain security (that would
- * require signing keys).
- */
-import { log } from './logger.js';
-import { join } from 'node:path';
-/**
- * Read the installed package's integrity hash from its package.json.
- *
- * npm and bun both write _integrity (subresource integrity format, e.g.,
- * "sha512-...") into the installed package.json. Falls back to _shasum
- * (hex SHA-1) if _integrity is not present.
- */
-const readInstalledIntegrity = async (packagePath) => {
-    try {
-        const pkgJson = await Bun.file(join(packagePath, 'package.json')).json();
-        if (pkgJson === null || typeof pkgJson !== 'object')
-            return {};
-        const pkg = pkgJson;
-        return {
-            integrity: typeof pkg._integrity === 'string' ? pkg._integrity : undefined,
-            shasum: typeof pkg._shasum === 'string' ? pkg._shasum : undefined,
-            version: typeof pkg.version === 'string' ? pkg.version : undefined,
-        };
-    }
-    catch {
-        return {};
-    }
-};
-/**
- * Fetch the registry metadata for a specific package version.
- *
- * Uses the abbreviated registry endpoint to minimize data transfer.
- * Returns the dist object containing integrity and shasum fields.
- */
-const fetchRegistryDist = async (npmPackageName, version) => {
-    const registryUrl = `https://registry.npmjs.org/${encodeURIComponent(npmPackageName).replace('%40', '@')}/${version}`;
-    try {
-        const controller = new AbortController();
-        const timeoutId = setTimeout(() => controller.abort(), 10_000);
-        const response = await fetch(registryUrl, {
-            signal: controller.signal,
-            headers: { Accept: 'application/json' },
-        });
-        clearTimeout(timeoutId);
-        if (!response.ok) {
-            return null;
-        }
-        const data = await response.json();
-        if (data === null || typeof data !== 'object')
-            return null;
-        const record = data;
-        const dist = record.dist;
-        if (dist === null || typeof dist !== 'object')
-            return null;
-        const distRecord = dist;
-        return {
-            integrity: typeof distRecord.integrity === 'string' ? distRecord.integrity : undefined,
-            shasum: typeof distRecord.shasum === 'string' ? distRecord.shasum : undefined,
-        };
-    }
-    catch {
-        return null;
-    }
-};
-/**
- * Verify that an official plugin's installed files match what is published
- * on the npm registry.
- *
- * Compares the _integrity or _shasum field from the installed package.json
- * against the npm registry's published dist metadata for the same version.
- *
- * @param packagePath - Absolute path to the installed plugin directory
- * @param npmPackageName - The npm package name (e.g., "@opentabs-dev/opentabs-plugin-slack")
- */
-const verifyOfficialPlugin = async (packagePath, npmPackageName) => {
-    const installed = await readInstalledIntegrity(packagePath);
-    if (!installed.version) {
-        return { verified: false, reason: 'Could not read version from installed package.json' };
-    }
-    if (!installed.integrity && !installed.shasum) {
-        return {
-            verified: false,
-            reason: 'No _integrity or _shasum found in installed package.json — package may not have been installed via npm/bun',
-        };
-    }
-    const registryDist = await fetchRegistryDist(npmPackageName, installed.version);
-    if (registryDist === null) {
-        log.warn(`Could not reach npm registry to verify ${npmPackageName}@${installed.version} — loading at original tier`);
-        return { verified: true, reason: 'Registry unreachable — verification skipped' };
-    }
-    // Prefer integrity (SRI hash, usually sha512) over shasum (SHA-1)
-    if (installed.integrity && registryDist.integrity) {
-        if (installed.integrity === registryDist.integrity) {
-            return { verified: true };
-        }
-        return {
-            verified: false,
-            reason: `Integrity mismatch: installed=${installed.integrity}, registry=${registryDist.integrity}`,
-        };
-    }
-    // Fall back to shasum comparison
-    if (installed.shasum && registryDist.shasum) {
-        if (installed.shasum === registryDist.shasum) {
-            return { verified: true };
-        }
-        return {
-            verified: false,
-            reason: `Shasum mismatch: installed=${installed.shasum}, registry=${registryDist.shasum}`,
-        };
-    }
-    // One side has integrity, the other has shasum — can't compare directly
-    return { verified: true, reason: 'Hash format mismatch between installed and registry — verification skipped' };
-};
-export { verifyOfficialPlugin, readInstalledIntegrity, fetchRegistryDist };
-//# sourceMappingURL=verify-plugin.js.map

package/dist/verify-plugin.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"verify-plugin.js","sourceRoot":"","sources":["../src/verify-plugin.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AASjC;;;;;;GAMG;AACH,MAAM,sBAAsB,GAAG,KAAK,EAClC,WAAmB,EACiD,EAAE;IACtE,IAAI,CAAC;QACH,MAAM,OAAO,GAAY,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAClF,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,OAAO,KAAK,QAAQ;YAAE,OAAO,EAAE,CAAC;QAC/D,MAAM,GAAG,GAAG,OAAkC,CAAC;QAC/C,OAAO;YACL,SAAS,EAAE,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS;YAC1E,MAAM,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;YACjE,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS;SACnE,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC,CAAC;AAEF;;;;;GAKG;AACH,MAAM,iBAAiB,GAAG,KAAK,EAC7B,cAAsB,EACtB,OAAe,EAC0C,EAAE;IAC3D,MAAM,WAAW,GAAG,8BAA8B,kBAAkB,CAAC,cAAc,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,IAAI,OAAO,EAAE,CAAC;IAEtH,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,MAAM,CAAC,CAAC;QAE/D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,WAAW,EAAE;YACxC,MAAM,EAAE,UAAU,CAAC,MAAM;YACzB,OAAO,EAAE,EAAE,MAAM,EAAE,kBAAkB,EAAE;SACxC,CAAC,CAAC;QAEH,YAAY,CAAC,SAAS,CAAC,CAAC;QAExB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,IAAI,GAAY,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC5C,IAAI,IAAI,KAAK,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE3D,MAAM,MAAM,GAAG,IAA+B,CAAC;QAC/C,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC;QACzB,IAAI,IAAI,KAAK,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE3D,MAAM,UAAU,GAAG,IAA+B,CAAC;QACnD,OAAO;YACL,SAAS,EAAE,OAAO,UAAU,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS;YACtF,MAAM,EAAE,OAAO,UAAU,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS;SAC9E,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,oBAAoB,GAAG,KAAK,EAAE,WAAmB,EAAE,cAAsB,EAA+B,EAAE;IAC9G,MAAM,SAAS,GAAG,MAAM,sBAAsB,CAAC,WAAW,CAAC,CAAC;IAE5D,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;QACvB,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,oDAAoD,EAAE,CAAC;IAC3F,CAAC;IAED,IAAI,CAAC,SAAS,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;QAC9C,OAAO;YACL,QAAQ,EAAE,KAAK;YACf,MAAM,EACJ,4GAA4G;SAC/G,CAAC;IACJ,CAAC;IAED,MAAM,YAAY,GAAG,MAAM,iBAAiB,CAAC,cAAc,EAAE,SAAS,CAAC,OAAO,CAAC,CAAC;IAEhF,IAAI,YAAY,KAAK,IAAI,EAAE,CAAC;QAC1B,GAAG,CAAC,IAAI,CACN,0CAA0C,cAAc,IAAI,SAAS,CAAC,OAAO,6BAA6B,CAC3G,CAAC;QACF,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,6CAA6C,EAAE,CAAC;IACnF,CAAC;IAED,kEAAkE;IAClE,IAAI,SAAS,CAAC,SAAS,IAAI,YAAY,CAAC,SAAS,EAAE,CAAC;QAClD,IAAI,SAAS,CAAC,SAAS,KAAK,YAAY,CAAC,SAAS,EAAE,CAAC;YACnD,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;QAC5B,CAAC;QACD,OAAO;YACL,QAAQ,EAAE,KAAK;YACf,MAAM,EAAE,iCAAiC,SAAS,CAAC,SAAS,cAAc,YAAY,CAAC,SAAS,EAAE;SACnG,CAAC;IACJ,CAAC;IAED,iCAAiC;IACjC,IAAI,SAAS,CAAC,MAAM,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;QAC5C,IAAI,SAAS,CAAC,MAAM,KAAK,YAAY,CAAC,MAAM,EAAE,CAAC;YAC7C,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;QAC5B,CAAC;QACD,OAAO;YACL,QAAQ,EAAE,KAAK;YACf,MAAM,EAAE,8BAA8B,SAAS,CAAC,MAAM,cAAc,YAAY,CAAC,MAAM,EAAE;SAC1F,CAAC;IACJ,CAAC;IAED,wEAAwE;IACxE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,4EAA4E,EAAE,CAAC;AAClH,CAAC,CAAC;AAEF,OAAO,EAAE,oBAAoB,EAAE,sBAAsB,EAAE,iBAAiB,EAAE,CAAC"}