npm - @sanctuary-framework/mcp-server - Versions diffs - 0.5.2 → 0.5.3 - Mend

@sanctuary-framework/mcp-server 0.5.2 → 0.5.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/dist/index.cjs CHANGED Viewed

@@ -293,6 +293,12 @@ async function loadConfig(configPath) {
   if (process.env.SANCTUARY_DASHBOARD_AUTH_TOKEN) {
     config.dashboard.auth_token = process.env.SANCTUARY_DASHBOARD_AUTH_TOKEN;
   }
+  if (process.env.SANCTUARY_DASHBOARD_AUTO_OPEN === "true") {
+    config.dashboard.auto_open = true;
+  }
+  if (process.env.SANCTUARY_DASHBOARD_AUTO_OPEN === "false") {
+    config.dashboard.auto_open = false;
+  }
   if (process.env.SANCTUARY_DASHBOARD_TLS_CERT && process.env.SANCTUARY_DASHBOARD_TLS_KEY) {
     config.dashboard.tls = {
       cert_path: process.env.SANCTUARY_DASHBOARD_TLS_CERT,
@@ -5715,26 +5721,26 @@ var DashboardApprovalChannel = class {
       const protocol = this.useTLS ? "https" : "http";
       const baseUrl = `${protocol}://${this.config.host}:${this.config.port}`;
       this.httpServer.listen(this.config.port, this.config.host, () => {
+        const sessionUrl = this.authToken ? this.createSessionUrl() : baseUrl;
         process.stderr.write(
           `
   Sanctuary Principal Dashboard: ${baseUrl}
 `
         );
         if (this.authToken) {
-          const sessionUrl = this.createSessionUrl();
-          process.stderr.write(
-            `  Quick open: ${sessionUrl}
-`
-          );
           const hint = this.authToken.slice(0, 4) + "..." + this.authToken.slice(-4);
           process.stderr.write(
             `  Auth token: ${hint}
 `
           );
-        } else {
-          process.stderr.write(`
+        }
+        process.stderr.write(`
 `);
+        const isTest = !!(process.env.VITEST || process.env.NODE_ENV === "test" || process.env.CI);
+        const isLocalhost = this.config.host === "127.0.0.1" || this.config.host === "localhost" || this.config.host === "::1";
+        const shouldAutoOpen = !isTest && (this.config.auto_open ?? isLocalhost);
+        if (shouldAutoOpen) {
+          this.openInBrowser(sessionUrl);
         }
         resolve();
       });
@@ -6266,6 +6272,31 @@ data: ${JSON.stringify(data)}
   broadcastProtectionStatus(data) {
     this.broadcastSSE("protection-status", data);
   }
+  /**
+   * Open a URL in the system's default browser.
+   * Cross-platform: macOS (open), Linux (xdg-open), Windows (start).
+   * Fails silently — dashboard still works via terminal URL.
+   */
+  openInBrowser(url) {
+    const os$1 = os.platform();
+    let cmd;
+    if (os$1 === "darwin") {
+      cmd = `open "${url}"`;
+    } else if (os$1 === "win32") {
+      cmd = `start "" "${url}"`;
+    } else {
+      cmd = `xdg-open "${url}"`;
+    }
+    child_process.exec(cmd, (err) => {
+      if (err) {
+        process.stderr.write(
+          `  (Could not auto-open browser. Open the URL above manually.)
+`
+        );
+      }
+    });
+  }
   /**
    * Create a pre-authenticated URL for the dashboard.
    * Used by the sanctuary_dashboard_open tool and at startup.
@@ -12112,7 +12143,8 @@ async function createSanctuaryServer(options) {
       timeout_seconds: policy.approval_channel.timeout_seconds,
       // SEC-002: auto_deny removed — timeout always denies
       auth_token: authToken,
-      tls: config.dashboard.tls
+      tls: config.dashboard.tls,
+      auto_open: config.dashboard.auto_open
     });
     dashboard.setDependencies({ policy, baseline, auditLog });
     await dashboard.start();