@smartbear/mcp 0.18.3 → 0.19.2

package/dist/package.json.js

@@ -1,4 +1,4 @@
-const version = "0.18.3";
+const version = "0.19.2";
 const config = { "mcpServerName": "SmartBear MCP Server" };
 const packageJson = {
   version,

package/dist/pactflow/client/ai.js

@@ -8,7 +8,8 @@ const GenerationLanguages = [
   "dotnet",
   "kotlin",
   "swift",
-  "php"
+  "php",
+  "python"
 ];
 const HttpMethods = [
   "GET",

package/dist/reflect/client.js

@@ -2,7 +2,7 @@ import { z } from "zod";
 import { MCP_SERVER_NAME, MCP_SERVER_VERSION } from "../common/info.js";
 import { getRequestHeader } from "../common/request-context.js";
 import { ToolError } from "../common/tools.js";
-import { API_KEY_HEADER } from "./config/constants.js";
+import { API_KEY_HEADER, REFLECT_API_TOKEN_HEADER, AUTHORIZATION_HEADER } from "./config/constants.js";
 import { SapTest } from "./prompt/sap-test.js";
 import { AddPromptStep } from "./tool/recording/add-prompt-step.js";
 import { AddSegment } from "./tool/recording/add-segment.js";
@@ -34,7 +34,7 @@ class ReflectClient {
     this._apiToken = config.api_token;
   }
   getAuthToken() {
-    const contextHeader = getRequestHeader("Reflect-Api-Token") || getRequestHeader("X-API-KEY") || getRequestHeader("Authorization");
+    const contextHeader = getRequestHeader(REFLECT_API_TOKEN_HEADER) || getRequestHeader(API_KEY_HEADER) || getRequestHeader(AUTHORIZATION_HEADER);
     if (contextHeader) {
       let token = Array.isArray(contextHeader) ? contextHeader[0] : contextHeader;
       if (token.startsWith("Bearer ")) {
@@ -47,16 +47,30 @@ class ReflectClient {
   isConfigured() {
     return true;
   }
-  getApiToken() {
-    return this.getAuthToken() || "";
+  isOAuthRequest() {
+    if (getRequestHeader(REFLECT_API_TOKEN_HEADER) || getRequestHeader(API_KEY_HEADER)) {
+      return false;
+    }
+    const authHeader = getRequestHeader(AUTHORIZATION_HEADER);
+    if (!authHeader) {
+      return false;
+    }
+    const headerValue = Array.isArray(authHeader) ? authHeader[0] : authHeader;
+    return headerValue.toLowerCase().startsWith("bearer ");
   }
-  getHeaders() {
+  getAuthHeader() {
     const token = this.getAuthToken();
     if (!token) {
       throw new Error("Reflect API token not found");
     }
+    if (this.isOAuthRequest()) {
+      return { Authorization: `Bearer ${token}` };
+    }
+    return { [API_KEY_HEADER]: token };
+  }
+  getHeaders() {
     return {
-      [API_KEY_HEADER]: token,
+      ...this.getAuthHeader(),
       "Content-Type": "application/json",
       "User-Agent": `${MCP_SERVER_NAME}/${MCP_SERVER_VERSION}`
     };
@@ -99,7 +113,7 @@ class ReflectClient {
     this.mcpSessionConnections.delete(mcpSessionId);
   }
   async registerTools(register, _getInput) {
-    const tools = [
+    const apiOnlyTools = [
       new ListSuites(this),
       new ListSuiteExecutions(this),
       new GetSuiteExecutionStatus(this),
@@ -107,7 +121,9 @@ class ReflectClient {
       new CancelSuiteExecution(this),
       new ListTests(this),
       new RunTest(this),
-      new GetTestStatus(this),
+      new GetTestStatus(this)
+    ];
+    const oAuthAndAPISupportedTools = [
       new ListSegments(this),
       new ConnectToSession(this),
       new AddPromptStep(this),
@@ -115,6 +131,7 @@ class ReflectClient {
       new DeletePreviousStep(this),
       new AddSegment(this)
     ];
+    const tools = this.isOAuthRequest() ? oAuthAndAPISupportedTools : [...oAuthAndAPISupportedTools, ...apiOnlyTools];
     for (const tool of tools) {
       register(tool.specification, tool.handle);
     }

package/dist/reflect/config/constants.js

@@ -1,8 +1,14 @@
 const API_KEY_HEADER = "X-API-KEY";
+const REFLECT_API_TOKEN_HEADER = "Reflect-Api-Token";
+const AUTHORIZATION_HEADER = "Authorization";
 const API_HOSTNAME = "api.reflect.run";
 const WEBSOCKET_HOSTNAME = "recording.us-east-1.reflect.run";
+const WEB_APP_HOSTNAME = "app.reflect.run";
 export {
   API_HOSTNAME,
   API_KEY_HEADER,
-  WEBSOCKET_HOSTNAME
+  AUTHORIZATION_HEADER,
+  REFLECT_API_TOKEN_HEADER,
+  WEBSOCKET_HOSTNAME,
+  WEB_APP_HOSTNAME
 };

package/dist/reflect/tool/recording/connect-to-session.js

@@ -43,7 +43,7 @@ class ConnectToSession extends Tool {
     }
     const wsManager = new WebSocketManager(
       sessionId,
-      this.client.getApiToken()
+      this.client.getAuthHeader()
     );
     try {
       await wsManager.connect();

package/dist/reflect/tool/recording/get-screenshot.js

@@ -13,17 +13,25 @@ class GetScreenshot extends Tool {
         type: z.string(),
         description: "The ID of the Reflect recording session",
         required: true
+      },
+      {
+        name: "format",
+        type: z.enum(["png", "jpeg"]),
+        description: "The image format for the screenshot (png or jpeg)",
+        required: false
       }
     ]
   };
   handle = async (args) => {
-    const { sessionId } = args;
+    const { sessionId, format } = args;
     if (!sessionId) throw new ToolError("sessionId argument is required");
+    const imageFormat = format ?? "png";
     const wsManager = this.client.getConnectedSession(sessionId);
     const id = randomUUID();
     const responsePromise = wsManager.waitForResponse(id);
     await wsManager.sendMcpMessage({
       type: "mcp:get-screenshot",
+      format: imageFormat,
       id
     });
     const response = await responsePromise;
@@ -36,14 +44,15 @@ class GetScreenshot extends Tool {
         {
           type: "image",
           data: imageBase64,
-          mimeType: "image/png"
+          mimeType: `image/${imageFormat}`
         },
         {
           type: "text",
           text: JSON.stringify({
             success: true,
             message: "Screenshot captured",
-            state
+            state,
+            format: imageFormat
           })
         }
       ]

package/dist/reflect/tool/tests/list-segments.js

@@ -1,6 +1,6 @@
 import { z } from "zod";
 import { Tool, ToolError } from "../../../common/tools.js";
-import { API_HOSTNAME, API_KEY_HEADER } from "../../config/constants.js";
+import { WEB_APP_HOSTNAME, API_HOSTNAME } from "../../config/constants.js";
 class ListSegments extends Tool {
   specification = {
     title: "List Segments",
@@ -34,13 +34,11 @@ class ListSegments extends Tool {
       offset = 0,
       limit = 25
     } = args;
-    const url = `https://${API_HOSTNAME}/v1/segments?type=${platform}&offset=${offset}&limit=${limit}`;
+    const urlPath = this.client.isOAuthRequest() ? `https://${WEB_APP_HOSTNAME}/api/mcp` : `https://${API_HOSTNAME}/v1`;
+    const url = `${urlPath}/segments?type=${platform}&offset=${offset}&limit=${limit}`;
     const response = await fetch(url, {
       method: "GET",
-      headers: {
-        [API_KEY_HEADER]: this.client.getApiToken(),
-        "Content-Type": "application/json"
-      }
+      headers: this.client.getHeaders()
     });
     if (!response.ok) {
       throw new ToolError(

package/dist/reflect/websocket-manager.js

@@ -1,13 +1,13 @@
 import WebSocket from "ws";
-import { WEBSOCKET_HOSTNAME, API_KEY_HEADER } from "./config/constants.js";
+import { WEBSOCKET_HOSTNAME } from "./config/constants.js";
 class WebSocketManager {
   sessionId;
-  apiKey;
+  authHeader;
   mcpSocket = null;
   pendingResponses = /* @__PURE__ */ new Map();
-  constructor(sessionId, apiKey) {
+  constructor(sessionId, authHeader) {
     this.sessionId = sessionId;
-    this.apiKey = apiKey;
+    this.authHeader = authHeader;
   }
   async connect() {
     if (this.mcpSocket?.readyState === WebSocket.OPEN) {
@@ -26,7 +26,7 @@ class WebSocketManager {
       const url = `wss://${WEBSOCKET_HOSTNAME}/websocket/v2/recordings/${this.sessionId}/topics/mcp?sid=${this.sessionId}`;
       this.mcpSocket = new WebSocket(url, {
         headers: {
-          [API_KEY_HEADER]: this.apiKey
+          ...this.authHeader
         }
       });
       this.mcpSocket.on("open", () => {

package/dist/swagger/client/api.js

@@ -623,15 +623,18 @@ class SwaggerAPI {
   }
   /**
    * Standardize and fix an API definition using AI
-   * @param params Parameters including owner, API name, and version
+   * @param params Parameters including owner, API name, version, and optional newVersion
    * @returns Standardization response with status and fixed definition
    */
   async standardizeApi(params) {
+    const searchParams = new URLSearchParams();
+    if (params.newVersion) searchParams.set("newVersion", params.newVersion);
+    const queryString = searchParams.toString();
     const url = `${this.config.registryBasePath}/apis/${encodeURIComponent(
       params.owner
     )}/${encodeURIComponent(params.api)}/${encodeURIComponent(
       params.version
-    )}/standardize`;
+    )}/standardize${queryString ? `?${queryString}` : ""}`;
     const response = await fetch(url, {
       method: "POST",
       headers: this.headers

package/dist/swagger/client/registry-types.js

@@ -57,7 +57,10 @@ const CreateApiFromPromptParamsSchema = z.object({
 const StandardizeApiParamsSchema = z.object({
   owner: z.string().describe("API owner (organization or user, case-sensitive)"),
   api: z.string().describe("API name (case-sensitive)"),
-  version: z.string().describe("Version identifier")
+  version: z.string().describe("Version identifier"),
+  newVersion: z.string().optional().describe(
+    "The version to save the fixed definition as (e.g. '1.0.1'). Omitting this will overwrite the current version — prefer providing a patch bump (e.g. '1.0.0' → '1.0.1') unless the user specifies otherwise."
+  )
 });
 export {
   ApiDefinitionParamsSchema,

package/dist/swagger/client/tools.js

@@ -140,7 +140,7 @@ const TOOLS = [
   },
   {
     title: "Standardize API",
-    summary: "Standardize and fix an API definition using AI to ensure compliance with governance policies. Scans the API definition for standardization errors and automatically fixes them using SmartBear AI. If errors are found, they will be sent to SmartBear AI to generate a corrected definition, which is then saved back to the registry. Returns the number of errors found and the fixed definition if successful. Use this tool when users ask to standardize, fix, govern, or ensure governance compliance of APIs.",
+    summary: "Standardize and fix an API definition using AI to ensure compliance with governance policies. Scans the API definition for standardization errors and automatically fixes them using SmartBear AI. Optionally provide 'newVersion' (e.g. patch bump '1.0.0' → '1.0.1') to save the fixed definition as a new version — omitting it will overwrite the current version. Returns the number of errors found and the fixed definition if successful. Use this tool when users ask to standardize, fix, govern, or ensure governance compliance of APIs.",
     inputSchema: StandardizeApiParamsSchema,
     handler: "standardizeApi"
   }

package/dist/zephyr/common/rest-api-schemas.js

@@ -411,10 +411,7 @@ const UpdateTestCaseBody = zod.object({
   precondition: zod.string().nullish().describe("Any conditions that need to be met."),
   estimatedTime: zod.number().min(updateTestCaseBodyEstimatedTimeMin).nullish().describe("Estimated duration in milliseconds."),
   labels: zod.array(zod.string()).max(updateTestCaseBodyLabelsMax).optional().describe("Array of labels associated to this entity."),
-  component: zod.object({
-    id: zod.number().min(1).describe("The ID of the entity"),
-    self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
-  }).strict().nullish().describe("ID and link to the Jira component resource."),
+  component: zod.number().min(1).nullable().optional().describe("ID and link to the Jira component resource."),
   priority: zod.object({
     id: zod.number().min(1).describe("The ID of the entity"),
     self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
@@ -423,16 +420,10 @@ const UpdateTestCaseBody = zod.object({
     id: zod.number().min(1).describe("The ID of the entity"),
     self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
   }).strict().describe("ID and link to the status resource."),
-  folder: zod.object({
-    id: zod.number().min(1).describe("The ID of the entity"),
-    self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
-  }).strict().nullish().describe("ID and link to the folder resource."),
-  owner: zod.object({
-    accountId: zod.string().regex(updateTestCaseBodyOwnerAccountIdRegExp).nullable().describe("Atlassian Account ID of the Jira user."),
-    self: zod.string().url().optional().describe(
-      "The Jira REST API endpoint to get the full representation of the Jira user."
-    )
-  }).strict().nullish(),
+  folder: zod.number().min(1).nullable().optional().describe(
+    "The ID of the folder, to remove folder set it's value to null"
+  ),
+  owner: zod.string().regex(updateTestCaseBodyOwnerAccountIdRegExp).nullable().describe("Atlassian Account ID of the Jira user."),
   customFields: zod.record(zod.string(), zod.unknown()).optional().describe(
     "Multi-line text fields support HTML and should denote new lines with the \\<br\\> tag.\nDates should be in the format 'yyyy-MM-dd'.\nUsers should have values of Jira User Account IDs.\n"
   )
@@ -1110,20 +1101,14 @@ const UpdateTestCycleBody = zod.object({
     id: zod.number().min(1).describe("The ID of the entity"),
     self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
   }).strict().describe("ID and link relative to Zephyr project."),
-  jiraProjectVersion: zod.object({
-    id: zod.number().min(1).describe("The ID of the entity"),
-    self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
-  }).strict().nullish().describe(
+  jiraProjectVersion: zod.number().min(1).nullable().optional().describe(
     "ID and Link to fetch information about Jira Project version. Relates to 'Version' or 'Releases' in Jira projects."
   ),
   status: zod.object({
     id: zod.number().min(1).describe("The ID of the entity"),
     self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
   }).strict().describe("ID and link to the status resource."),
-  folder: zod.object({
-    id: zod.number().min(1).describe("The ID of the entity"),
-    self: zod.string().url().optional().describe("The REST API endpoint to get more resource details.")
-  }).strict().nullish().describe("ID and link to the folder resource."),
+  folder: zod.number().min(1).nullable().optional().describe("ID and link to the folder resource."),
   description: zod.string().nullish().describe("Description outlining the scope."),
   plannedStartDate: zod.string().datetime({}).nullish().describe(
     "Planned start date of the test cycle. This field cannot be blank. Setting it as null or excluding it from the request will leave the field values unchanged. ISO 8601 Format (i.e., yyyy-MM-dd'T'HH:mm:ss'Z')"
@@ -1131,12 +1116,7 @@ const UpdateTestCycleBody = zod.object({
   plannedEndDate: zod.string().datetime({}).nullish().describe(
     "The planned end date of the test cycle. This field cannot be blank. Setting it as null or excluding it from the request will leave the field values unchanged. ISO 8601 Format (i.e., yyyy-MM-dd'T'HH:mm:ss'Z')"
   ),
-  owner: zod.object({
-    accountId: zod.string().regex(updateTestCycleBodyOwnerAccountIdRegExp).nullable().describe("Atlassian Account ID of the Jira user."),
-    self: zod.string().url().optional().describe(
-      "The Jira REST API endpoint to get the full representation of the Jira user."
-    )
-  }).strict().nullish(),
+  owner: zod.string().regex(updateTestCycleBodyOwnerAccountIdRegExp).nullable().describe("Atlassian Account ID of the Jira user."),
   customFields: zod.record(zod.string(), zod.unknown()).optional().describe(
     "Multi-line text fields support HTML and should denote new lines with the \\<br\\> tag.\nDates should be in the format 'yyyy-MM-dd'.\nUsers should have values of Jira User Account IDs.\n"
   )

package/dist/zephyr/tool/test-case/update-test-case.js

@@ -57,6 +57,14 @@ class UpdateTestCase extends Tool {
           }
         },
         expectedOutput: "The test case should be updated, but no output is expected."
+      },
+      {
+        description: "Remove test case  from folder",
+        parameters: {
+          testCaseKey: "SA-T15",
+          folder: null
+        },
+        expectedOutput: "The test case should be updated, but no output is expected."
       }
     ]
   };
@@ -64,7 +72,21 @@ class UpdateTestCase extends Tool {
     const parsed = UpdateTestCaseParams.and(UpdateTestCaseBody.partial()).parse(
       args
     );
-    const { testCaseKey, ...updates } = parsed;
+    const { testCaseKey, ...rawUpdates } = parsed;
+    const nullValuesObject = {};
+    if (rawUpdates.folder) {
+      nullValuesObject.folder = { id: rawUpdates.folder };
+    }
+    if (rawUpdates.owner) {
+      nullValuesObject.owner = { accountId: rawUpdates.owner };
+    }
+    if (rawUpdates.component) {
+      nullValuesObject.component = { id: rawUpdates.component };
+    }
+    const updates = {
+      ...rawUpdates,
+      ...nullValuesObject
+    };
     const existingTestCase = await this.client.getApiClient().get(`/testcases/${testCaseKey}`);
     const mergedBody = deepMerge(existingTestCase, updates);
     delete mergedBody.createdOn;

package/dist/zephyr/tool/test-cycle/update-test-cycle.js

@@ -72,8 +72,23 @@ class UpdateTestCycle extends Tool {
     const parsed = UpdateTestCycleParams.and(
       UpdateTestCycleBody.partial()
     ).parse(args);
-    const { testCycleIdOrKey, ...updatesRaw } = parsed;
-    const updates = { ...updatesRaw };
+    const { testCycleIdOrKey, ...rawUpdates } = parsed;
+    const nullValuesObject = {};
+    if (rawUpdates.folder) {
+      nullValuesObject.folder = { id: rawUpdates.folder };
+    }
+    if (rawUpdates.owner) {
+      nullValuesObject.owner = { accountId: rawUpdates.owner };
+    }
+    if (rawUpdates.jiraProjectVersion) {
+      nullValuesObject.jiraProjectVersion = {
+        id: rawUpdates.jiraProjectVersion
+      };
+    }
+    const updates = {
+      ...rawUpdates,
+      ...nullValuesObject
+    };
     if (updates.plannedStartDate === null) delete updates.plannedStartDate;
     if (updates.plannedEndDate === null) delete updates.plannedEndDate;
     const existingTestCycle = await this.client.getApiClient().get(`/testcycles/${testCycleIdOrKey}`);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@smartbear/mcp",
-  "version": "0.18.3",
+  "version": "0.19.2",
   "description": "MCP server for interacting SmartBear Products",
   "keywords": [
     "smartbear",