@skillsmith/mcp-server 0.5.2 → 0.5.3

package/dist/src/middleware/telemetry-consent.d.ts

@@ -0,0 +1,88 @@
+/**
+ * Telemetry Consent Gate — SMI-5019 W2.S4
+ *
+ * For MCP-only clients (Cursor, Continue, Copilot users without a CLI install)
+ * we cannot rely on a CLI first-run prompt or a VS Code toast. Per user
+ * decision U5 in the implementation plan, the consent surface is the web
+ * dashboard at https://skillsmith.app/account/telemetry.
+ *
+ * This module supplies the MCP-side half of that flow:
+ *
+ *  1. On every tool call, resolve the calling anonymous_id's preference from
+ *     `user_telemetry_preferences` (RLS-scoped via the same anon-key client
+ *     used elsewhere in this package).
+ *  2. If the row is missing, signal `consent_required:true` + the privacy URL
+ *     in the response envelope so the client can prompt the user to open the
+ *     dashboard.
+ *  3. Cache the resolved state per process (Map keyed by anonymous_id) so
+ *     repeated calls within a session don't re-query, and so two parallel
+ *     calls from the same unrecognized anonymous_id observe identical state.
+ *  4. Suppress telemetry writes (consult `shouldEmitTelemetry`) for that
+ *     anonymous_id until the preference resolves to `enabled:true`.
+ *
+ * SMI-5016 (`packages/core/src/telemetry/wrap.ts`) and SMI-5017 (tool /
+ * command dispatchers) are wave-sibling deliverables — this module
+ * deliberately stays out of those files.
+ */
+/**
+ * Canonical absolute URL of the consent dashboard. Must remain stable across
+ * surfaces so MCP clients can deep-link to a known landing page.
+ */
+export declare const TELEMETRY_PRIVACY_URL = "https://skillsmith.app/account/telemetry";
+/**
+ * Result of resolving the consent state for a given anonymous_id.
+ */
+export interface ConsentState {
+    /** True iff a preference row was found AND `enabled = true`. */
+    enabled: boolean;
+    /**
+     * True iff there is no row for this anonymous_id yet (the user hasn't
+     * visited the consent page). Surface this in the response envelope so the
+     * client can prompt the user.
+     */
+    consentRequired: boolean;
+    /** Stable URL to direct the user to when `consentRequired` is true. */
+    privacyUrl: string;
+}
+/**
+ * Resolve the consent state for `anonymousId`, caching the result for the
+ * lifetime of the process. Concurrent calls share one in-flight query.
+ *
+ * Passing `null`/`undefined`/empty triggers the no-id branch — telemetry is
+ * suppressed but no prompt is shown (there's nothing to link the user's
+ * eventual web-dashboard choice back to).
+ */
+export declare function resolveConsent(anonymousId: string | null | undefined): Promise<ConsentState>;
+/**
+ * Convenience: true iff telemetry may be emitted for this anonymous_id.
+ * Wraps `resolveConsent` for callers that only need the boolean.
+ */
+export declare function shouldEmitTelemetry(anonymousId: string | null | undefined): Promise<boolean>;
+/**
+ * Invalidate the cache entry for `anonymousId`. Called by the consent page
+ * after a successful save would, in a future iteration, ping an MCP refresh
+ * endpoint — for now this is exposed for tests and for the explicit
+ * resync-on-rotate UI in the consent page.
+ */
+export declare function invalidateConsentCache(anonymousId?: string): void;
+/**
+ * Augment an existing MCP tool response with a `consent_required` envelope
+ * when the user has not yet visited the consent page.
+ *
+ * The MCP `CallToolResult` shape is `{ content: [{ type: 'text', text: <json> }] }`.
+ * We parse `text`, splice in the consent fields, and re-serialize. If parsing
+ * fails for any reason (binary content, malformed payload), we return the
+ * response untouched — telemetry consent is a soft signal and must never
+ * corrupt a successful tool result.
+ *
+ * Idempotent: calling this twice on the same response is a no-op once the
+ * fields are already present.
+ */
+export declare function annotateResponseWithConsent<T extends {
+    content?: unknown;
+}>(response: T, consent: ConsentState): T;
+/**
+ * Test-only helper. Not exported from the package index.
+ */
+export declare function _resetConsentCacheForTests(): void;
+//# sourceMappingURL=telemetry-consent.d.ts.map

package/dist/src/middleware/telemetry-consent.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"telemetry-consent.d.ts","sourceRoot":"","sources":["../../../src/middleware/telemetry-consent.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAIH;;;GAGG;AACH,eAAO,MAAM,qBAAqB,6CAA6C,CAAA;AAE/E;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,gEAAgE;IAChE,OAAO,EAAE,OAAO,CAAA;IAChB;;;;OAIG;IACH,eAAe,EAAE,OAAO,CAAA;IACxB,uEAAuE;IACvE,UAAU,EAAE,MAAM,CAAA;CACnB;AA6ED;;;;;;;GAOG;AACH,wBAAgB,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GAAG,OAAO,CAAC,YAAY,CAAC,CAS5F;AAED;;;GAGG;AACH,wBAAsB,mBAAmB,CACvC,WAAW,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GACrC,OAAO,CAAC,OAAO,CAAC,CAIlB;AAED;;;;;GAKG;AACH,wBAAgB,sBAAsB,CAAC,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAMjE;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,2BAA2B,CAAC,CAAC,SAAS;IAAE,OAAO,CAAC,EAAE,OAAO,CAAA;CAAE,EACzE,QAAQ,EAAE,CAAC,EACX,OAAO,EAAE,YAAY,GACpB,CAAC,CA8BH;AAED;;GAEG;AACH,wBAAgB,0BAA0B,IAAI,IAAI,CAEjD"}

package/dist/src/middleware/telemetry-consent.js

@@ -0,0 +1,177 @@
+/**
+ * Telemetry Consent Gate — SMI-5019 W2.S4
+ *
+ * For MCP-only clients (Cursor, Continue, Copilot users without a CLI install)
+ * we cannot rely on a CLI first-run prompt or a VS Code toast. Per user
+ * decision U5 in the implementation plan, the consent surface is the web
+ * dashboard at https://skillsmith.app/account/telemetry.
+ *
+ * This module supplies the MCP-side half of that flow:
+ *
+ *  1. On every tool call, resolve the calling anonymous_id's preference from
+ *     `user_telemetry_preferences` (RLS-scoped via the same anon-key client
+ *     used elsewhere in this package).
+ *  2. If the row is missing, signal `consent_required:true` + the privacy URL
+ *     in the response envelope so the client can prompt the user to open the
+ *     dashboard.
+ *  3. Cache the resolved state per process (Map keyed by anonymous_id) so
+ *     repeated calls within a session don't re-query, and so two parallel
+ *     calls from the same unrecognized anonymous_id observe identical state.
+ *  4. Suppress telemetry writes (consult `shouldEmitTelemetry`) for that
+ *     anonymous_id until the preference resolves to `enabled:true`.
+ *
+ * SMI-5016 (`packages/core/src/telemetry/wrap.ts`) and SMI-5017 (tool /
+ * command dispatchers) are wave-sibling deliverables — this module
+ * deliberately stays out of those files.
+ */
+import { getSupabaseClient } from '../supabase-client.js';
+/**
+ * Canonical absolute URL of the consent dashboard. Must remain stable across
+ * surfaces so MCP clients can deep-link to a known landing page.
+ */
+export const TELEMETRY_PRIVACY_URL = 'https://skillsmith.app/account/telemetry';
+/**
+ * Per-process cache keyed by anonymous_id. We deliberately use a single shared
+ * Map so two parallel `withConsentGate` invocations for the same
+ * anonymous_id observe identical state — the constraint flagged in the spec.
+ *
+ * Stored value is a Promise (not the resolved ConsentState) so concurrent
+ * lookups share one in-flight Supabase query.
+ */
+const consentCache = new Map();
+const DEFAULT_CONSENT_REQUIRED = {
+    enabled: false,
+    consentRequired: true,
+    privacyUrl: TELEMETRY_PRIVACY_URL,
+};
+const DEFAULT_NO_ID = {
+    enabled: false,
+    consentRequired: false,
+    privacyUrl: TELEMETRY_PRIVACY_URL,
+};
+/**
+ * Look up the consent row for `anonymousId` and translate it into a
+ * `ConsentState`. Falls back to "consent required" on any error so we never
+ * silently emit telemetry from an unknown identity.
+ */
+async function fetchConsentState(anonymousId) {
+    let client;
+    try {
+        client = (await getSupabaseClient());
+    }
+    catch {
+        // Supabase isn't configured in this environment (e.g. offline CLI run);
+        // safest interpretation is "no consent → no emit" but also "no need to
+        // prompt the user" because the network surface isn't reachable anyway.
+        return { ...DEFAULT_NO_ID };
+    }
+    try {
+        const { data, error } = await client
+            .from('user_telemetry_preferences')
+            .select('enabled')
+            .eq('anonymous_id', anonymousId)
+            .maybeSingle();
+        if (error || !data) {
+            return { ...DEFAULT_CONSENT_REQUIRED };
+        }
+        return {
+            enabled: data.enabled === true,
+            consentRequired: false,
+            privacyUrl: TELEMETRY_PRIVACY_URL,
+        };
+    }
+    catch {
+        return { ...DEFAULT_CONSENT_REQUIRED };
+    }
+}
+/**
+ * Resolve the consent state for `anonymousId`, caching the result for the
+ * lifetime of the process. Concurrent calls share one in-flight query.
+ *
+ * Passing `null`/`undefined`/empty triggers the no-id branch — telemetry is
+ * suppressed but no prompt is shown (there's nothing to link the user's
+ * eventual web-dashboard choice back to).
+ */
+export function resolveConsent(anonymousId) {
+    if (!anonymousId) {
+        return Promise.resolve({ ...DEFAULT_NO_ID });
+    }
+    const cached = consentCache.get(anonymousId);
+    if (cached)
+        return cached;
+    const promise = fetchConsentState(anonymousId);
+    consentCache.set(anonymousId, promise);
+    return promise;
+}
+/**
+ * Convenience: true iff telemetry may be emitted for this anonymous_id.
+ * Wraps `resolveConsent` for callers that only need the boolean.
+ */
+export async function shouldEmitTelemetry(anonymousId) {
+    if (!anonymousId)
+        return false;
+    const state = await resolveConsent(anonymousId);
+    return state.enabled;
+}
+/**
+ * Invalidate the cache entry for `anonymousId`. Called by the consent page
+ * after a successful save would, in a future iteration, ping an MCP refresh
+ * endpoint — for now this is exposed for tests and for the explicit
+ * resync-on-rotate UI in the consent page.
+ */
+export function invalidateConsentCache(anonymousId) {
+    if (anonymousId === undefined) {
+        consentCache.clear();
+        return;
+    }
+    consentCache.delete(anonymousId);
+}
+/**
+ * Augment an existing MCP tool response with a `consent_required` envelope
+ * when the user has not yet visited the consent page.
+ *
+ * The MCP `CallToolResult` shape is `{ content: [{ type: 'text', text: <json> }] }`.
+ * We parse `text`, splice in the consent fields, and re-serialize. If parsing
+ * fails for any reason (binary content, malformed payload), we return the
+ * response untouched — telemetry consent is a soft signal and must never
+ * corrupt a successful tool result.
+ *
+ * Idempotent: calling this twice on the same response is a no-op once the
+ * fields are already present.
+ */
+export function annotateResponseWithConsent(response, consent) {
+    if (!consent.consentRequired)
+        return response;
+    const content = response.content;
+    if (!Array.isArray(content) || content.length === 0)
+        return response;
+    const first = content[0];
+    if (!first || first.type !== 'text' || typeof first.text !== 'string')
+        return response;
+    let parsed;
+    try {
+        parsed = JSON.parse(first.text);
+    }
+    catch {
+        return response;
+    }
+    if (typeof parsed !== 'object' || parsed === null || Array.isArray(parsed)) {
+        return response;
+    }
+    const annotated = parsed;
+    // Idempotency: if the caller has already added these, leave them alone.
+    if ('consent_required' in annotated && 'privacy_url' in annotated)
+        return response;
+    annotated.consent_required = true;
+    annotated.privacy_url = consent.privacyUrl;
+    const nextContent = [...content];
+    nextContent[0] = { ...first, text: JSON.stringify(annotated, null, 2) };
+    return { ...response, content: nextContent };
+}
+/**
+ * Test-only helper. Not exported from the package index.
+ */
+export function _resetConsentCacheForTests() {
+    consentCache.clear();
+}
+//# sourceMappingURL=telemetry-consent.js.map

package/dist/src/middleware/telemetry-consent.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"telemetry-consent.js","sourceRoot":"","sources":["../../../src/middleware/telemetry-consent.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAA;AAEzD;;;GAGG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,0CAA0C,CAAA;AAkC/E;;;;;;;GAOG;AACH,MAAM,YAAY,GAAG,IAAI,GAAG,EAAiC,CAAA;AAE7D,MAAM,wBAAwB,GAAiB;IAC7C,OAAO,EAAE,KAAK;IACd,eAAe,EAAE,IAAI;IACrB,UAAU,EAAE,qBAAqB;CAClC,CAAA;AAED,MAAM,aAAa,GAAiB;IAClC,OAAO,EAAE,KAAK;IACd,eAAe,EAAE,KAAK;IACtB,UAAU,EAAE,qBAAqB;CAClC,CAAA;AAED;;;;GAIG;AACH,KAAK,UAAU,iBAAiB,CAAC,WAAmB;IAClD,IAAI,MAAoB,CAAA;IACxB,IAAI,CAAC;QACH,MAAM,GAAG,CAAC,MAAM,iBAAiB,EAAE,CAAiB,CAAA;IACtD,CAAC;IAAC,MAAM,CAAC;QACP,wEAAwE;QACxE,uEAAuE;QACvE,uEAAuE;QACvE,OAAO,EAAE,GAAG,aAAa,EAAE,CAAA;IAC7B,CAAC;IAED,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM;aACjC,IAAI,CAAC,4BAA4B,CAAC;aAClC,MAAM,CAAC,SAAS,CAAC;aACjB,EAAE,CAAC,cAAc,EAAE,WAAW,CAAC;aAC/B,WAAW,EAAE,CAAA;QAEhB,IAAI,KAAK,IAAI,CAAC,IAAI,EAAE,CAAC;YACnB,OAAO,EAAE,GAAG,wBAAwB,EAAE,CAAA;QACxC,CAAC;QAED,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO,KAAK,IAAI;YAC9B,eAAe,EAAE,KAAK;YACtB,UAAU,EAAE,qBAAqB;SAClC,CAAA;IACH,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,GAAG,wBAAwB,EAAE,CAAA;IACxC,CAAC;AACH,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,cAAc,CAAC,WAAsC;IACnE,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,OAAO,OAAO,CAAC,OAAO,CAAC,EAAE,GAAG,aAAa,EAAE,CAAC,CAAA;IAC9C,CAAC;IACD,MAAM,MAAM,GAAG,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;IAC5C,IAAI,MAAM;QAAE,OAAO,MAAM,CAAA;IACzB,MAAM,OAAO,GAAG,iBAAiB,CAAC,WAAW,CAAC,CAAA;IAC9C,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,OAAO,CAAC,CAAA;IACtC,OAAO,OAAO,CAAA;AAChB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,WAAsC;IAEtC,IAAI,CAAC,WAAW;QAAE,OAAO,KAAK,CAAA;IAC9B,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,WAAW,CAAC,CAAA;IAC/C,OAAO,KAAK,CAAC,OAAO,CAAA;AACtB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,sBAAsB,CAAC,WAAoB;IACzD,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;QAC9B,YAAY,CAAC,KAAK,EAAE,CAAA;QACpB,OAAM;IACR,CAAC;IACD,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,CAAA;AAClC,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,2BAA2B,CACzC,QAAW,EACX,OAAqB;IAErB,IAAI,CAAC,OAAO,CAAC,eAAe;QAAE,OAAO,QAAQ,CAAA;IAE7C,MAAM,OAAO,GAAI,QAAkC,CAAC,OAAO,CAAA;IAC3D,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAA;IAEpE,MAAM,KAAK,GAAG,OAAO,CAAC,CAAC,CAAmD,CAAA;IAC1E,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ;QAAE,OAAO,QAAQ,CAAA;IAEtF,IAAI,MAAe,CAAA;IACnB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;IACjC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAC3E,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED,MAAM,SAAS,GAAG,MAAiC,CAAA;IACnD,wEAAwE;IACxE,IAAI,kBAAkB,IAAI,SAAS,IAAI,aAAa,IAAI,SAAS;QAAE,OAAO,QAAQ,CAAA;IAElF,SAAS,CAAC,gBAAgB,GAAG,IAAI,CAAA;IACjC,SAAS,CAAC,WAAW,GAAG,OAAO,CAAC,UAAU,CAAA;IAE1C,MAAM,WAAW,GAAG,CAAC,GAAG,OAAO,CAAC,CAAA;IAChC,WAAW,CAAC,CAAC,CAAC,GAAG,EAAE,GAAG,KAAK,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAA;IACvE,OAAO,EAAE,GAAG,QAAQ,EAAE,OAAO,EAAE,WAAW,EAAE,CAAA;AAC9C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,0BAA0B;IACxC,YAAY,CAAC,KAAK,EAAE,CAAA;AACtB,CAAC"}

package/dist/src/middleware/telemetry-consent.test.d.ts

@@ -0,0 +1,12 @@
+/**
+ * @fileoverview Tests for the telemetry consent gate — SMI-5019 W2
+ *
+ * Mocking style matches analytics.supabase.service.test.ts:
+ *   vi.mock('../supabase-client.js') at module scope, then
+ *   vi.mocked(getSupabaseClient).mockResolvedValue / mockRejectedValue per test.
+ *
+ * `_resetConsentCacheForTests()` is called in beforeEach so every test starts
+ * with an empty process-level cache.
+ */
+export {};
+//# sourceMappingURL=telemetry-consent.test.d.ts.map

package/dist/src/middleware/telemetry-consent.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"telemetry-consent.test.d.ts","sourceRoot":"","sources":["../../../src/middleware/telemetry-consent.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG"}

package/dist/src/middleware/telemetry-consent.test.js

@@ -0,0 +1,291 @@
+/**
+ * @fileoverview Tests for the telemetry consent gate — SMI-5019 W2
+ *
+ * Mocking style matches analytics.supabase.service.test.ts:
+ *   vi.mock('../supabase-client.js') at module scope, then
+ *   vi.mocked(getSupabaseClient).mockResolvedValue / mockRejectedValue per test.
+ *
+ * `_resetConsentCacheForTests()` is called in beforeEach so every test starts
+ * with an empty process-level cache.
+ */
+import { describe, it, expect, vi, beforeEach, afterEach } from 'vitest';
+import { resolveConsent, shouldEmitTelemetry, invalidateConsentCache, annotateResponseWithConsent, _resetConsentCacheForTests, TELEMETRY_PRIVACY_URL, } from './telemetry-consent.js';
+// ============================================================================
+// Supabase module mock
+// ============================================================================
+vi.mock('../supabase-client.js', () => ({
+    getSupabaseClient: vi.fn(),
+}));
+import { getSupabaseClient } from '../supabase-client.js';
+const mockGetClient = vi.mocked(getSupabaseClient);
+// ============================================================================
+// Helper — build a chainable Supabase query mock
+// ============================================================================
+/**
+ * Creates a mock Supabase client whose `.from().select().eq().maybeSingle()`
+ * chain resolves with `resolvedValue`. Returns the `maybeSingle` spy so
+ * callers can assert call counts.
+ */
+function createQueryMock(resolvedValue) {
+    const maybeSingle = vi.fn().mockResolvedValue(resolvedValue);
+    const eq = vi.fn().mockReturnValue({ maybeSingle });
+    const select = vi.fn().mockReturnValue({ eq });
+    const from = vi.fn().mockReturnValue({ select });
+    const client = { from };
+    return { client, from, select, eq, maybeSingle };
+}
+// ============================================================================
+// Setup
+// ============================================================================
+beforeEach(() => {
+    _resetConsentCacheForTests();
+    vi.clearAllMocks();
+});
+afterEach(() => {
+    _resetConsentCacheForTests();
+});
+// ============================================================================
+// (1) Default-no-id: empty / null / undefined anonymous_id
+// ============================================================================
+describe('resolveConsent — default-no-id branch', () => {
+    it('returns DEFAULT_NO_ID for empty string without querying Supabase', async () => {
+        const state = await resolveConsent('');
+        expect(state.enabled).toBe(false);
+        expect(state.consentRequired).toBe(false);
+        expect(state.privacyUrl).toBe(TELEMETRY_PRIVACY_URL);
+        expect(mockGetClient).not.toHaveBeenCalled();
+    });
+    it('returns DEFAULT_NO_ID for null without querying Supabase', async () => {
+        const state = await resolveConsent(null);
+        expect(state.enabled).toBe(false);
+        expect(state.consentRequired).toBe(false);
+        expect(mockGetClient).not.toHaveBeenCalled();
+    });
+    it('returns DEFAULT_NO_ID for undefined without querying Supabase', async () => {
+        const state = await resolveConsent(undefined);
+        expect(state.enabled).toBe(false);
+        expect(state.consentRequired).toBe(false);
+        expect(mockGetClient).not.toHaveBeenCalled();
+    });
+    it('shouldEmitTelemetry returns false for empty string', async () => {
+        expect(await shouldEmitTelemetry('')).toBe(false);
+        expect(mockGetClient).not.toHaveBeenCalled();
+    });
+});
+// ============================================================================
+// (2) Unknown anonymous_id — no row in DB
+// ============================================================================
+describe('resolveConsent — unknown anonymous_id (no row)', () => {
+    it('returns consent_required: true when Supabase returns no row', async () => {
+        const { client } = createQueryMock({ data: null, error: null });
+        mockGetClient.mockResolvedValue(client);
+        const state = await resolveConsent('unknown-xyz');
+        expect(state.consentRequired).toBe(true);
+        expect(state.enabled).toBe(false);
+        expect(state.privacyUrl).toBe(TELEMETRY_PRIVACY_URL);
+    });
+    it('shouldEmitTelemetry returns false for unknown anonymous_id', async () => {
+        const { client } = createQueryMock({ data: null, error: null });
+        mockGetClient.mockResolvedValue(client);
+        expect(await shouldEmitTelemetry('unknown-xyz')).toBe(false);
+    });
+});
+// ============================================================================
+// (3) Enabled preference
+// ============================================================================
+describe('resolveConsent — enabled preference', () => {
+    it('returns consentRequired: false and enabled: true when row has enabled=true', async () => {
+        const { client } = createQueryMock({ data: { enabled: true }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        const state = await resolveConsent('user-abc');
+        expect(state.enabled).toBe(true);
+        expect(state.consentRequired).toBe(false);
+        expect(state.privacyUrl).toBe(TELEMETRY_PRIVACY_URL);
+    });
+    it('shouldEmitTelemetry returns true when preference is enabled', async () => {
+        const { client } = createQueryMock({ data: { enabled: true }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        expect(await shouldEmitTelemetry('user-abc')).toBe(true);
+    });
+});
+// ============================================================================
+// (4) Disabled preference
+// ============================================================================
+describe('resolveConsent — disabled preference', () => {
+    it('returns consentRequired: false and enabled: false when row has enabled=false', async () => {
+        const { client } = createQueryMock({ data: { enabled: false }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        const state = await resolveConsent('user-abc');
+        // User has answered — no prompt needed, but telemetry is off.
+        expect(state.consentRequired).toBe(false);
+        expect(state.enabled).toBe(false);
+    });
+    it('shouldEmitTelemetry returns false when preference is disabled', async () => {
+        const { client } = createQueryMock({ data: { enabled: false }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        expect(await shouldEmitTelemetry('user-abc')).toBe(false);
+    });
+});
+// ============================================================================
+// (5) Idempotent under concurrent calls — single in-flight query
+// ============================================================================
+describe('resolveConsent — concurrent call deduplication', () => {
+    it('issues exactly one Supabase query for two parallel calls on the same id', async () => {
+        const { client, maybeSingle } = createQueryMock({ data: { enabled: true }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        const [s1, s2] = await Promise.all([resolveConsent('user-def'), resolveConsent('user-def')]);
+        // Both calls must have resolved to the same consent state.
+        expect(s1).toEqual(s2);
+        // The DB was only hit once — the cache stored the in-flight Promise.
+        expect(maybeSingle).toHaveBeenCalledTimes(1);
+    });
+});
+// ============================================================================
+// (6) Fail-safe on Supabase error
+// ============================================================================
+describe('resolveConsent — fail-safe on Supabase error', () => {
+    it('returns consent_required: true when maybeSingle rejects', async () => {
+        const maybeSingle = vi.fn().mockRejectedValue(new Error('network error'));
+        const eq = vi.fn().mockReturnValue({ maybeSingle });
+        const select = vi.fn().mockReturnValue({ eq });
+        const from = vi.fn().mockReturnValue({ select });
+        const client = { from };
+        mockGetClient.mockResolvedValue(client);
+        const state = await resolveConsent('user-ghi');
+        // Fail-safe: consent_required must be true — never silently emit.
+        expect(state.consentRequired).toBe(true);
+        expect(state.enabled).toBe(false);
+    });
+    it('returns consent_required: true when query returns an error object', async () => {
+        const { client } = createQueryMock({ data: null, error: { message: 'permission denied' } });
+        mockGetClient.mockResolvedValue(client);
+        const state = await resolveConsent('user-ghi');
+        expect(state.consentRequired).toBe(true);
+        expect(state.enabled).toBe(false);
+    });
+    it('shouldEmitTelemetry returns false when Supabase errors', async () => {
+        const { client } = createQueryMock({ data: null, error: { message: 'db error' } });
+        mockGetClient.mockResolvedValue(client);
+        expect(await shouldEmitTelemetry('user-ghi')).toBe(false);
+    });
+    it('returns no-id state (no prompt) when getSupabaseClient itself throws', async () => {
+        // This covers the "Supabase not configured" offline branch.
+        mockGetClient.mockRejectedValue(new Error('Supabase not configured'));
+        const state = await resolveConsent('user-ghi-offline');
+        // Offline: suppress telemetry but do NOT demand consent (no network surface).
+        expect(state.enabled).toBe(false);
+        // consentRequired is false in the offline/unconfigured branch — matches DEFAULT_NO_ID.
+        expect(state.consentRequired).toBe(false);
+    });
+});
+// ============================================================================
+// (7) Cache invalidation
+// ============================================================================
+describe('invalidateConsentCache', () => {
+    it('causes next resolveConsent call to re-query Supabase after invalidation', async () => {
+        const { client, maybeSingle } = createQueryMock({ data: { enabled: true }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        // First call — populates cache.
+        await resolveConsent('user-jkl');
+        expect(maybeSingle).toHaveBeenCalledTimes(1);
+        // Invalidate.
+        invalidateConsentCache('user-jkl');
+        // Second call — must re-query.
+        await resolveConsent('user-jkl');
+        expect(maybeSingle).toHaveBeenCalledTimes(2);
+    });
+    it('does not affect cache entries for other anonymous_ids', async () => {
+        const { client, maybeSingle } = createQueryMock({ data: { enabled: true }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        await resolveConsent('user-jkl');
+        await resolveConsent('user-other');
+        expect(maybeSingle).toHaveBeenCalledTimes(2);
+        invalidateConsentCache('user-jkl');
+        // Only user-jkl re-queries; user-other is still cached.
+        await resolveConsent('user-jkl');
+        await resolveConsent('user-other');
+        expect(maybeSingle).toHaveBeenCalledTimes(3);
+    });
+    it('clears entire cache when called without argument', async () => {
+        const { client, maybeSingle } = createQueryMock({ data: { enabled: true }, error: null });
+        mockGetClient.mockResolvedValue(client);
+        await resolveConsent('user-a');
+        await resolveConsent('user-b');
+        expect(maybeSingle).toHaveBeenCalledTimes(2);
+        invalidateConsentCache();
+        await resolveConsent('user-a');
+        await resolveConsent('user-b');
+        expect(maybeSingle).toHaveBeenCalledTimes(4);
+    });
+});
+// ============================================================================
+// (8–11) annotateResponseWithConsent
+// ============================================================================
+/** Minimal MCP CallToolResult-shaped envelope. */
+function makeEnvelope(text) {
+    return { content: [{ type: 'text', text }] };
+}
+const UNRESOLVED_CONSENT = {
+    enabled: false,
+    consentRequired: true,
+    privacyUrl: TELEMETRY_PRIVACY_URL,
+};
+const RESOLVED_CONSENT = {
+    enabled: true,
+    consentRequired: false,
+    privacyUrl: TELEMETRY_PRIVACY_URL,
+};
+describe('annotateResponseWithConsent', () => {
+    it('(8) splices consent_required and privacy_url when consent is unresolved', () => {
+        const envelope = makeEnvelope(JSON.stringify({ result: 'ok' }));
+        const out = annotateResponseWithConsent(envelope, UNRESOLVED_CONSENT);
+        const parsed = JSON.parse(out.content[0].text);
+        expect(parsed.result).toBe('ok');
+        expect(parsed.consent_required).toBe(true);
+        expect(parsed.privacy_url).toBe(TELEMETRY_PRIVACY_URL);
+    });
+    it('(9) returns envelope unchanged when consent is resolved (passthrough)', () => {
+        const text = JSON.stringify({ result: 'ok' });
+        const envelope = makeEnvelope(text);
+        const out = annotateResponseWithConsent(envelope, RESOLVED_CONSENT);
+        // Same reference (or at minimum identical content) — nothing added.
+        expect(out).toBe(envelope);
+        const parsed = JSON.parse(out.content[0].text);
+        expect(parsed).not.toHaveProperty('consent_required');
+    });
+    it('(10) is idempotent — does not re-annotate if fields already present', () => {
+        const alreadyAnnotated = { result: 'ok', consent_required: true, privacy_url: 'https://x.y' };
+        const envelope = makeEnvelope(JSON.stringify(alreadyAnnotated));
+        const out = annotateResponseWithConsent(envelope, UNRESOLVED_CONSENT);
+        // Must return the same reference — no mutation of pre-existing annotation.
+        expect(out).toBe(envelope);
+        const parsed = JSON.parse(out.content[0].text);
+        // privacy_url should remain the original value, not overwritten.
+        expect(parsed.privacy_url).toBe('https://x.y');
+    });
+    it('(11) returns envelope unchanged when text is malformed JSON (no throw)', () => {
+        const envelope = makeEnvelope('not-valid-json{{');
+        expect(() => annotateResponseWithConsent(envelope, UNRESOLVED_CONSENT)).not.toThrow();
+        const out = annotateResponseWithConsent(envelope, UNRESOLVED_CONSENT);
+        expect(out).toBe(envelope);
+    });
+    it('returns envelope unchanged when content array is empty', () => {
+        const envelope = { content: [] };
+        const out = annotateResponseWithConsent(envelope, UNRESOLVED_CONSENT);
+        expect(out).toBe(envelope);
+    });
+    it('returns envelope unchanged when first content item is not type=text', () => {
+        const envelope = { content: [{ type: 'image', url: 'https://example.com/img.png' }] };
+        const out = annotateResponseWithConsent(envelope, UNRESOLVED_CONSENT);
+        expect(out).toBe(envelope);
+    });
+});
+// ============================================================================
+// (12) Privacy URL literal
+// ============================================================================
+describe('TELEMETRY_PRIVACY_URL', () => {
+    it('equals the canonical consent dashboard URL', () => {
+        expect(TELEMETRY_PRIVACY_URL).toBe('https://skillsmith.app/account/telemetry');
+    });
+});
+//# sourceMappingURL=telemetry-consent.test.js.map

package/dist/src/middleware/telemetry-consent.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"telemetry-consent.test.js","sourceRoot":"","sources":["../../../src/middleware/telemetry-consent.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAA;AACxE,OAAO,EACL,cAAc,EACd,mBAAmB,EACnB,sBAAsB,EACtB,2BAA2B,EAC3B,0BAA0B,EAC1B,qBAAqB,GACtB,MAAM,wBAAwB,CAAA;AAE/B,+EAA+E;AAC/E,uBAAuB;AACvB,+EAA+E;AAE/E,EAAE,CAAC,IAAI,CAAC,uBAAuB,EAAE,GAAG,EAAE,CAAC,CAAC;IACtC,iBAAiB,EAAE,EAAE,CAAC,EAAE,EAAE;CAC3B,CAAC,CAAC,CAAA;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,uBAAuB,CAAA;AAEzD,MAAM,aAAa,GAAG,EAAE,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAA;AAElD,+EAA+E;AAC/E,iDAAiD;AACjD,+EAA+E;AAE/E;;;;GAIG;AACH,SAAS,eAAe,CAAC,aAGxB;IACC,MAAM,WAAW,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,aAAa,CAAC,CAAA;IAC5D,MAAM,EAAE,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,EAAE,WAAW,EAAE,CAAC,CAAA;IACnD,MAAM,MAAM,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,EAAE,EAAE,EAAE,CAAC,CAAA;IAC9C,MAAM,IAAI,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC,CAAA;IAChD,MAAM,MAAM,GAAG,EAAE,IAAI,EAA8D,CAAA;IACnF,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,WAAW,EAAE,CAAA;AAClD,CAAC;AAED,+EAA+E;AAC/E,QAAQ;AACR,+EAA+E;AAE/E,UAAU,CAAC,GAAG,EAAE;IACd,0BAA0B,EAAE,CAAA;IAC5B,EAAE,CAAC,aAAa,EAAE,CAAA;AACpB,CAAC,CAAC,CAAA;AAEF,SAAS,CAAC,GAAG,EAAE;IACb,0BAA0B,EAAE,CAAA;AAC9B,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,2DAA2D;AAC3D,+EAA+E;AAE/E,QAAQ,CAAC,uCAAuC,EAAE,GAAG,EAAE;IACrD,EAAE,CAAC,kEAAkE,EAAE,KAAK,IAAI,EAAE;QAChF,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,EAAE,CAAC,CAAA;QAEtC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACzC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAA;QACpD,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;IAC9C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,0DAA0D,EAAE,KAAK,IAAI,EAAE;QACxE,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,IAAI,CAAC,CAAA;QAExC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACzC,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;IAC9C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,+DAA+D,EAAE,KAAK,IAAI,EAAE;QAC7E,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,SAAS,CAAC,CAAA;QAE7C,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACzC,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;IAC9C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,oDAAoD,EAAE,KAAK,IAAI,EAAE;QAClE,MAAM,CAAC,MAAM,mBAAmB,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACjD,MAAM,CAAC,aAAa,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAA;IAC9C,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,0CAA0C;AAC1C,+EAA+E;AAE/E,QAAQ,CAAC,gDAAgD,EAAE,GAAG,EAAE;IAC9D,EAAE,CAAC,6DAA6D,EAAE,KAAK,IAAI,EAAE;QAC3E,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QAC/D,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,aAAa,CAAC,CAAA;QAEjD,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACxC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACjC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAA;IACtD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,4DAA4D,EAAE,KAAK,IAAI,EAAE;QAC1E,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QAC/D,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,CAAC,MAAM,mBAAmB,CAAC,aAAa,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IAC9D,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,yBAAyB;AACzB,+EAA+E;AAE/E,QAAQ,CAAC,qCAAqC,EAAE,GAAG,EAAE;IACnD,EAAE,CAAC,4EAA4E,EAAE,KAAK,IAAI,EAAE;QAC1F,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QAC5E,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAE9C,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChC,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACzC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAA;IACtD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,6DAA6D,EAAE,KAAK,IAAI,EAAE;QAC3E,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QAC5E,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,CAAC,MAAM,mBAAmB,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAC1D,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,0BAA0B;AAC1B,+EAA+E;AAE/E,QAAQ,CAAC,sCAAsC,EAAE,GAAG,EAAE;IACpD,EAAE,CAAC,8EAA8E,EAAE,KAAK,IAAI,EAAE;QAC5F,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QAC7E,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAE9C,8DAA8D;QAC9D,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACzC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IACnC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,+DAA+D,EAAE,KAAK,IAAI,EAAE;QAC7E,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QAC7E,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,CAAC,MAAM,mBAAmB,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IAC3D,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,iEAAiE;AACjE,+EAA+E;AAE/E,QAAQ,CAAC,gDAAgD,EAAE,GAAG,EAAE;IAC9D,EAAE,CAAC,yEAAyE,EAAE,KAAK,IAAI,EAAE;QACvF,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QACzF,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC,cAAc,CAAC,UAAU,CAAC,EAAE,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC,CAAA;QAE5F,2DAA2D;QAC3D,MAAM,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAA;QACtB,qEAAqE;QACrE,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;IAC9C,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,kCAAkC;AAClC,+EAA+E;AAE/E,QAAQ,CAAC,8CAA8C,EAAE,GAAG,EAAE;IAC5D,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,WAAW,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC,CAAA;QACzE,MAAM,EAAE,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,EAAE,WAAW,EAAE,CAAC,CAAA;QACnD,MAAM,MAAM,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,EAAE,EAAE,EAAE,CAAC,CAAA;QAC9C,MAAM,IAAI,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC,CAAA;QAChD,MAAM,MAAM,GAAG,EAAE,IAAI,EAA8D,CAAA;QACnF,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAE9C,kEAAkE;QAClE,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACxC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IACnC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,mEAAmE,EAAE,KAAK,IAAI,EAAE;QACjF,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,mBAAmB,EAAE,EAAE,CAAC,CAAA;QAC3F,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAE9C,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACxC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IACnC,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;QACtE,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,UAAU,EAAE,EAAE,CAAC,CAAA;QAClF,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,CAAC,MAAM,mBAAmB,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IAC3D,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,sEAAsE,EAAE,KAAK,IAAI,EAAE;QACpF,4DAA4D;QAC5D,aAAa,CAAC,iBAAiB,CAAC,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC,CAAA;QAErE,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,kBAAkB,CAAC,CAAA;QAEtD,8EAA8E;QAC9E,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QACjC,uFAAuF;QACvF,MAAM,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;IAC3C,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,yBAAyB;AACzB,+EAA+E;AAE/E,QAAQ,CAAC,wBAAwB,EAAE,GAAG,EAAE;IACtC,EAAE,CAAC,yEAAyE,EAAE,KAAK,IAAI,EAAE;QACvF,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QACzF,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,gCAAgC;QAChC,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAChC,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;QAE5C,cAAc;QACd,sBAAsB,CAAC,UAAU,CAAC,CAAA;QAElC,+BAA+B;QAC/B,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAChC,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;IAC9C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;QACrE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QACzF,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAChC,MAAM,cAAc,CAAC,YAAY,CAAC,CAAA;QAClC,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;QAE5C,sBAAsB,CAAC,UAAU,CAAC,CAAA;QAElC,wDAAwD;QACxD,MAAM,cAAc,CAAC,UAAU,CAAC,CAAA;QAChC,MAAM,cAAc,CAAC,YAAY,CAAC,CAAA;QAClC,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;IAC9C,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,kDAAkD,EAAE,KAAK,IAAI,EAAE;QAChE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,GAAG,eAAe,CAAC,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;QACzF,aAAa,CAAC,iBAAiB,CAAC,MAAM,CAAC,CAAA;QAEvC,MAAM,cAAc,CAAC,QAAQ,CAAC,CAAA;QAC9B,MAAM,cAAc,CAAC,QAAQ,CAAC,CAAA;QAC9B,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;QAE5C,sBAAsB,EAAE,CAAA;QAExB,MAAM,cAAc,CAAC,QAAQ,CAAC,CAAA;QAC9B,MAAM,cAAc,CAAC,QAAQ,CAAC,CAAA;QAC9B,MAAM,CAAC,WAAW,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAA;IAC9C,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,qCAAqC;AACrC,+EAA+E;AAE/E,kDAAkD;AAClD,SAAS,YAAY,CAAC,IAAY;IAChC,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,EAAE,CAAA;AAC9C,CAAC;AAED,MAAM,kBAAkB,GAAG;IACzB,OAAO,EAAE,KAAK;IACd,eAAe,EAAE,IAAI;IACrB,UAAU,EAAE,qBAAqB;CAClC,CAAA;AAED,MAAM,gBAAgB,GAAG;IACvB,OAAO,EAAE,IAAI;IACb,eAAe,EAAE,KAAK;IACtB,UAAU,EAAE,qBAAqB;CAClC,CAAA;AAED,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;IAC3C,EAAE,CAAC,yEAAyE,EAAE,GAAG,EAAE;QACjF,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAA;QAE/D,MAAM,GAAG,GAAG,2BAA2B,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAA;QAErE,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAE,GAAG,CAAC,OAA4C,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;QACpF,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAChC,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAC1C,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAA;IACxD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,uEAAuE,EAAE,GAAG,EAAE;QAC/E,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAA;QAC7C,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,CAAA;QAEnC,MAAM,GAAG,GAAG,2BAA2B,CAAC,QAAQ,EAAE,gBAAgB,CAAC,CAAA;QAEnE,oEAAoE;QACpE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QAC1B,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAE,GAAG,CAAC,OAA4C,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;QACpF,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,cAAc,CAAC,kBAAkB,CAAC,CAAA;IACvD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,qEAAqE,EAAE,GAAG,EAAE;QAC7E,MAAM,gBAAgB,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,gBAAgB,EAAE,IAAI,EAAE,WAAW,EAAE,aAAa,EAAE,CAAA;QAC7F,MAAM,QAAQ,GAAG,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,CAAC,CAAA;QAE/D,MAAM,GAAG,GAAG,2BAA2B,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAA;QAErE,2EAA2E;QAC3E,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;QAC1B,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAE,GAAG,CAAC,OAA4C,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;QACpF,iEAAiE;QACjE,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAA;IAChD,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,wEAAwE,EAAE,GAAG,EAAE;QAChF,MAAM,QAAQ,GAAG,YAAY,CAAC,kBAAkB,CAAC,CAAA;QAEjD,MAAM,CAAC,GAAG,EAAE,CAAC,2BAA2B,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAA;QAErF,MAAM,GAAG,GAAG,2BAA2B,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAA;QACrE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,wDAAwD,EAAE,GAAG,EAAE;QAChE,MAAM,QAAQ,GAAG,EAAE,OAAO,EAAE,EAAE,EAAE,CAAA;QAEhC,MAAM,GAAG,GAAG,2BAA2B,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAA;QAErE,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;IAEF,EAAE,CAAC,qEAAqE,EAAE,GAAG,EAAE;QAC7E,MAAM,QAAQ,GAAG,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,EAAE,6BAA6B,EAAE,CAAC,EAAE,CAAA;QAErF,MAAM,GAAG,GAAG,2BAA2B,CACrC,QAAoE,EACpE,kBAAkB,CACnB,CAAA;QAED,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;IAC5B,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA;AAEF,+EAA+E;AAC/E,2BAA2B;AAC3B,+EAA+E;AAE/E,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;IACrC,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;QACpD,MAAM,CAAC,qBAAqB,CAAC,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAA;IAChF,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/src/tools/__meta__/telemetry-coverage.test.d.ts

@@ -0,0 +1,25 @@
+/**
+ * SMI-5018 W2.S3 — MCP-tree telemetry coverage snapshot test.
+ *
+ * Scope: `packages/mcp-server/src/tools/` only (v1).
+ * CLI + VS Code trees are NOT checked here — they are blocked by SMI-5040
+ * (anonymous-closure incompatibility). When SMI-5040 lands this test will
+ * be extended to cover those trees.
+ *
+ * Risk guarded (plan line 798, risk #8):
+ *   "A new dispatcher ships without a telemetry wrap."
+ *
+ * Strategy: explicit allowlist (40 entries) cross-checked against the live
+ * withTelemetry import-site count. Allowlist chosen over heuristic-walk
+ * because it is trivially auditable — each entry maps 1-to-1 to a
+ * `grep "= withTelemetry"` result, and the SOURCE_FILE_COUNT sentinel
+ * independently guards against drift in either direction.
+ *
+ * When you add a new dispatcher:
+ *   1. Wrap it with withTelemetry in its source file (as SMI-5017 did).
+ *   2. Add its export name to EXPECTED_DISPATCHERS below.
+ *   3. Update SOURCE_FILE_COUNT if the dispatcher lives in a new file.
+ * The test will fail in CI until all three steps are done.
+ */
+export {};
+//# sourceMappingURL=telemetry-coverage.test.d.ts.map

package/dist/src/tools/__meta__/telemetry-coverage.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"telemetry-coverage.test.d.ts","sourceRoot":"","sources":["../../../../src/tools/__meta__/telemetry-coverage.test.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG"}