npm - @runsec/mcp - Versions diffs - 1.0.78 → 1.0.79 - Mend

@runsec/mcp 1.0.78 → 1.0.79

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/dist/index.js +57 -8
package/package.json +4 -2

package/dist/index.js CHANGED Viewed

@@ -3093,7 +3093,7 @@ async function runUnifiedScanPipeline(opts) {
     `[runsec] unified scan: engines=${concurrent_duration_ms}ms merge+cognitive=${merge_duration_ms}ms | raw=${allRaw.length} primary=${findings.length} suppressed_cognitive=${findings_suppressed.length}`
   );
   console.error(
-    `[runsec] X-RunSec-Verdict: ${cognitiveResult.verdict.http_headers["X-RunSec-Verdict"]} (blocking=${cognitiveResult.verdict.blocking_findings_count})`
+    `[runsec] @runsec/mcp cognitive complete | X-RunSec-Verdict: ${cognitiveResult.verdict.http_headers["X-RunSec-Verdict"]} | primary=${findings.length} suppressed=${findings_suppressed.length} blocking=${cognitiveResult.verdict.blocking_findings_count}`
   );
   return {
     standard,
@@ -5823,8 +5823,10 @@ function isRemediationTool(name) {
 }
 // src/hubUploadUrl.ts
+var import_node_fs17 = __toESM(require("fs"));
 var HUB_UPLOAD_REPORT_PATH = "/api/mcp/upload-report";
 var DEFAULT_PRODUCTION_HUB_ORIGIN = "https://runsec.io";
+var DEFAULT_DOCKER_INTERNAL_HUB_ORIGIN = "http://frontend:3000";
 var LEGACY_TELEMETRY_INGEST_PATH = "/api/v1/telemetry/ingest";
 function stripTrailingSlash(url) {
   return url.replace(/\/$/, "");
@@ -5856,11 +5858,24 @@ function colocatedHubOrigin() {
   if (!port || !/^\d+$/.test(port)) return null;
   return `http://127.0.0.1:${port}`;
 }
+function isDockerRuntime() {
+  try {
+    return import_node_fs17.default.existsSync("/.dockerenv");
+  } catch {
+    return false;
+  }
+}
+function resolveDockerInternalHubOrigin() {
+  return stripTrailingSlash(
+    process.env.RUNSEC_HUB_INTERNAL_URL?.trim() || process.env.FRONTEND_INTERNAL_URL?.trim() || DEFAULT_DOCKER_INTERNAL_HUB_ORIGIN
+  );
+}
 function resolveHubBaseUrl() {
   const candidates = [
     process.env.RUNSEC_HUB_URL,
     process.env.RUNSEC_API_URL,
     process.env.RUNSEC_HUB_ORIGIN,
+    process.env.RUNSEC_HUB_INTERNAL_URL,
     process.env.NEXT_PUBLIC_APP_URL,
     process.env.PUBLIC_APP_URL,
     process.env.NEXTAUTH_URL,
@@ -5871,6 +5886,13 @@ function resolveHubBaseUrl() {
   if (candidates.length > 0) {
     return stripTrailingSlash(migrateLegacyIngestUrl(candidates[0]));
   }
+  if (isDockerRuntime()) {
+    const internal = resolveDockerInternalHubOrigin();
+    console.error(
+      `[runsec] Docker runtime \u2014 Hub upload via internal origin ${internal} (set RUNSEC_HUB_URL to override)`
+    );
+    return internal;
+  }
   if (isProductionRuntime()) {
     const colocated = colocatedHubOrigin();
     if (colocated) {
@@ -5910,6 +5932,20 @@ function localhostAlternateUploadUrl(url) {
     return null;
   }
 }
+function dockerInternalAlternateUploadUrl(url) {
+  if (!isDockerRuntime()) return null;
+  try {
+    const parsed = new URL(url);
+    const internal = new URL(resolveDockerInternalHubOrigin());
+    if (parsed.origin === internal.origin) return null;
+    internal.pathname = HUB_UPLOAD_REPORT_PATH;
+    internal.search = "";
+    internal.hash = "";
+    return internal.toString();
+  } catch {
+    return appendUploadPath(resolveDockerInternalHubOrigin());
+  }
+}
 // src/complianceScores.ts
 var SEVERITY_PENALTY = {
@@ -6085,14 +6121,27 @@ async function uploadScanResultsToHub(payload, apiKey) {
   const url = resolveHubUploadUrl();
   console.error(`[runsec] Hub telemetry upload \u2192 ${url}`);
   const attemptUpload = async (targetUrl) => {
-    try {
-      return await postHubUpload(targetUrl, trimmedKey, payload);
-    } catch (firstError) {
-      const alt = localhostAlternateUploadUrl(targetUrl);
-      if (!alt || alt === targetUrl) throw firstError;
-      console.error(`[runsec] Hub telemetry retry \u2192 ${alt}`);
-      return await postHubUpload(alt, trimmedKey, payload);
+    const errors = [];
+    const urls = [targetUrl];
+    const localhostAlt = localhostAlternateUploadUrl(targetUrl);
+    if (localhostAlt && localhostAlt !== targetUrl) urls.push(localhostAlt);
+    const dockerAlt = dockerInternalAlternateUploadUrl(targetUrl);
+    if (dockerAlt && !urls.includes(dockerAlt)) urls.push(dockerAlt);
+    let lastError = new Error("No upload attempts made");
+    for (let i = 0; i < urls.length; i++) {
+      const tryUrl = urls[i];
+      if (i > 0) {
+        console.error(`[runsec] Hub telemetry retry \u2192 ${tryUrl}`);
+      }
+      try {
+        return await postHubUpload(tryUrl, trimmedKey, payload);
+      } catch (err) {
+        lastError = err;
+        errors.push(err);
+        dumpHubNetworkError(err, tryUrl);
+      }
     }
+    throw lastError;
   };
   try {
     let response;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@runsec/mcp",
-  "version": "1.0.78",
+  "version": "1.0.79",
   "main": "dist/index.js",
   "files": [
     "dist",
@@ -30,7 +30,9 @@
     "test": "vitest run",
     "test:gold": "tsx scripts/qaValidationReport.ts",
     "test:gold:parse": "tsx scripts/qaValidationReport.ts --parse-only",
-    "simulate:output": "tsx scripts/simulate_output.ts"
+    "simulate:output": "tsx scripts/simulate_output.ts",
+    "debug:pipeline": "tsx scripts/debug-pipeline.ts",
+    "test:e2e": "npm run build && tsx scripts/debug-pipeline.ts"
   },
   "keywords": [
     "mcp",