@streamblur/mcp 1.5.13 → 1.5.14

package/README.md

@@ -1,37 +1,86 @@
-# @streamblur/mcp
+```
+ ██████╗████████╗██████╗ ███████╗ █████╗ ███╗   ███╗██████╗ ██╗     ██╗   ██╗██████╗
+██╔════╝╚══██╔══╝██╔══██╗██╔════╝██╔══██╗████╗ ████║██╔══██╗██║     ██║   ██║██╔══██╗
+╚█████╗    ██║   ██████╔╝█████╗  ███████║██╔████╔██║██████╔╝██║     ██║   ██║██████╔╝
+ ╚═══██╗   ██║   ██╔══██╗██╔══╝  ██╔══██║██║╚██╔╝██║██╔══██╗██║     ██║   ██║██╔══██╗
+██████╔╝   ██║   ██║  ██║███████╗██║  ██║██║ ╚═╝ ██║██████╔╝███████╗╚██████╔╝██║  ██║
+╚═════╝    ╚═╝   ╚═╝  ╚═╝╚══════╝╚═╝  ╚═╝╚═╝     ╚═╝╚═════╝ ╚══════╝ ╚═════╝ ╚═╝  ╚═╝
+
+                         ███╗   ███╗ ██████╗██████╗
+                         ████╗ ████║██╔════╝██╔══██╗
+                         ██╔████╔██║██║     ██████╔╝
+                         ██║╚██╔╝██║██║     ██╔═══╝
+                         ██║ ╚═╝ ██║╚██████╗██║
+                         ╚═╝     ╚═╝ ╚═════╝╚═╝
+```
 
-**StreamBlur MCP Server** — Automatically redact API keys, tokens, passwords, and credentials from any text or file your AI assistant touches.
+> **Stop leaking API keys. Protect your secrets. Ship with confidence.**
 
 [![npm version](https://img.shields.io/npm/v/@streamblur/mcp.svg)](https://www.npmjs.com/package/@streamblur/mcp)
 [![npm downloads](https://img.shields.io/npm/dw/@streamblur/mcp.svg)](https://www.npmjs.com/package/@streamblur/mcp)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+
+---
+
+## What is StreamBlur MCP?
+
+StreamBlur MCP is a security layer that sits between your AI coding assistant and your files. Every time your AI reads a config file, environment variable, or any text that might contain a secret — StreamBlur catches it and replaces it with a safe placeholder **before it ever enters the AI's context window.**
+
+Think of it as a bouncer for your secrets. Nothing sensitive gets past.
+
+```
+┌─────────────────────────────────────────────────────┐
+│                                                     │
+│   Your .env file:                                   │
+│   OPENAI_API_KEY=sk-proj-abc123xyz...               │
+│                                                     │
+│                   ▼  StreamBlur MCP  ▼              │
+│                                                     │
+│   What your AI sees:                                │
+│   OPENAI_API_KEY=[REDACTED:openai_project_key]      │
+│                                                     │
+└─────────────────────────────────────────────────────┘
+```
+
+**77+ credential patterns detected.** 100% local. Zero data leaves your machine.
 
-## What it does
+---
 
-When your AI coding assistant reads config files, environment variables, or any text containing secrets — StreamBlur automatically redacts them before they appear in your AI context window. 50+ credential patterns detected including OpenAI, Anthropic, AWS, Stripe, GitHub, and more.
+## Quick Start
 
-## Install
+### Step 1 — Install
 
 ```bash
 npm install -g @streamblur/mcp
 ```
 
-## Usage with Claude Code CLI
+### Step 2 — Auto-Setup (Recommended)
 
-One command — StreamBlur is added globally across all your projects:
+One command detects your tools and configures everything automatically:
 
 ```bash
-claude mcp add --transport stdio --scope user streamblur -- npx -y @streamblur/mcp
+npx @streamblur/mcp --setup
 ```
 
-Or auto-detect all your tools at once:
+This will find Claude Desktop, Cursor, Windsurf, and Zed on your machine and add StreamBlur to each one. Done.
+
+---
+
+## Manual Setup
+
+Prefer to configure manually? Pick your tool below.
+
+### Claude Code CLI
+
+Adds StreamBlur globally across all your projects with a single command:
 
 ```bash
-npx @streamblur/mcp --setup
+claude mcp add --transport stdio --scope user streamblur -- npx -y @streamblur/mcp
 ```
 
-## Usage with Claude Desktop
+### Claude Desktop
 
-Add to your `claude_desktop_config.json`:
+Open your `claude_desktop_config.json` and add:
 
 ```json
 {
@@ -40,14 +89,18 @@ Add to your `claude_desktop_config.json`:
       "command": "npx",
       "args": ["-y", "@streamblur/mcp"],
       "env": {
-        "STREAMBLUR_LICENSE_KEY": "your-pro-email-or-license-key"
+        "STREAMBLUR_LICENSE_KEY": "your-email-or-license-key"
       }
     }
   }
 }
 ```
 
-## Usage with Cursor / Windsurf / other MCP clients
+**Where is that file?**
+- macOS: `~/Library/Application Support/Claude/claude_desktop_config.json`
+- Windows: `%APPDATA%\Claude\claude_desktop_config.json`
+
+### Cursor / Windsurf / other MCP clients
 
 ```json
 {
@@ -55,15 +108,15 @@ Add to your `claude_desktop_config.json`:
     "command": "npx",
     "args": ["-y", "@streamblur/mcp"],
     "env": {
-      "STREAMBLUR_LICENSE_KEY": "your-pro-email-or-license-key"
+      "STREAMBLUR_LICENSE_KEY": "your-email-or-license-key"
     }
   }
 }
 ```
 
-## Usage with Zed Editor
+### Zed Editor
 
-Add to your Zed `settings.json` (macOS: `~/Library/Application Support/Zed/settings.json`, Linux: `~/.config/zed/settings.json`):
+Open your Zed `settings.json` and add:
 
 ```json
 {
@@ -72,56 +125,150 @@ Add to your Zed `settings.json` (macOS: `~/Library/Application Support/Zed/setti
       "command": "npx",
       "args": ["-y", "@streamblur/mcp"],
       "env": {
-        "STREAMBLUR_LICENSE_KEY": "your-pro-email-or-license-key"
+        "STREAMBLUR_LICENSE_KEY": "your-email-or-license-key"
       }
     }
   }
 }
 ```
 
+**Where is that file?**
+- macOS: `~/Library/Application Support/Zed/settings.json`
+- Linux: `~/.config/zed/settings.json`
+
+---
+
 ## Tools
 
-### Free
+StreamBlur gives your AI assistant 9 security tools. 2 are free forever. 7 require Pro.
 
-| Tool | Description |
-|------|-------------|
-| `redact_text` | Redact secrets from any string. Returns text with `[REDACTED:type]` placeholders. |
-| `scan_text` | Scan text and return detected secrets with type and character position. |
+```
+┌──────────────────────────┬────────┬──────────────────────────────────────────────────────┐
+│ Tool                     │ Tier   │ What it does                                         │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ redact_text              │ FREE   │ Redacts secrets from any string of text.             │
+│                          │        │ Returns text with [REDACTED:type] placeholders.      │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ scan_text                │ FREE   │ Scans text and reports every secret found —          │
+│                          │        │ type, position, and character offset.                │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ redact_file              │ PRO    │ Reads any file and returns redacted content.         │
+│                          │        │ Supports .env, configs, source code. Never modifies  │
+│                          │        │ the original file.                                   │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ scan_directory           │ PRO    │ Recursively scans a folder for leaked secrets.       │
+│                          │        │ Returns file paths, secret types, and line numbers.  │
+│                          │        │ Skips node_modules, .git, dist, and build folders.  │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ scan_repo                │ PRO    │ Full repository audit — scans every relevant file    │
+│                          │        │ in your project and produces a security report.      │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ audit_env_file           │ PRO    │ Deep audit of a .env file: detected secrets,         │
+│                          │        │ placeholder values, formatting issues, and rotation  │
+│                          │        │ recommendations. File is never modified.             │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ check_gitignore          │ PRO    │ Verifies your .gitignore actually covers .env files, │
+│                          │        │ key files, and secret directories. Returns a gap     │
+│                          │        │ report so nothing slips through to GitHub.           │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ explain_detection        │ PRO    │ Given a detected secret type (e.g. stripe_secret_   │
+│                          │        │ live), explains what it is, the blast radius if      │
+│                          │        │ leaked, and exactly where to go to revoke it now.   │
+├──────────────────────────┼────────┼──────────────────────────────────────────────────────┤
+│ generate_env_template    │ PRO    │ Generates a safe .env.example template with          │
+│                          │        │ placeholder values and security comments for common  │
+│                          │        │ project types. Safe to commit to GitHub.            │
+└──────────────────────────┴────────┴──────────────────────────────────────────────────────┘
+```
 
-### Pro — requires `STREAMBLUR_LICENSE_KEY`
+---
 
-| Tool | Description |
-|------|-------------|
-| `redact_file` | Read a file and return redacted content. Supports `.env`, configs, source code. File is never modified. |
-| `scan_directory` | Recursively scan a directory for leaked secrets. Returns file paths, secret types, and line numbers. Skips `node_modules`, `.git`, `dist`, and build folders. |
+## What Gets Detected
 
-## Detected Credential Types
+77+ credential patterns across every major platform and service:
 
-OpenAI API keys · Anthropic API keys · AWS access keys · GitHub tokens · Stripe keys · Twilio auth tokens · Slack tokens · SendGrid keys · Database URLs · Bearer tokens · Private keys · `.env` assignments · and 40+ more patterns.
+```
+┌─────────────────────────────────────────────────────────────────────────────┐
+│  AI & ML          OpenAI · Anthropic · Groq · Together AI · Hugging Face   │
+│                   Replicate · Cohere · ElevenLabs                           │
+│                                                                             │
+│  Cloud            AWS Access Keys · AWS Secret Keys · Azure Storage Keys   │
+│                   GCP Service Accounts · Firebase Web API Keys              │
+│                   Firebase Service Accounts                                 │
+│                                                                             │
+│  Dev Tools        GitHub PATs · GitLab Tokens · npm Tokens                 │
+│                   Netlify Tokens · Vercel Tokens · Railway Tokens           │
+│                   Doppler Tokens · Pulumi Access Tokens                     │
+│                                                                             │
+│  Payments         Stripe Live Secret · Stripe Test Secret                  │
+│                   Stripe Publishable · Stripe Restricted                    │
+│                                                                             │
+│  Databases        PostgreSQL URLs · MySQL URLs · MongoDB URLs               │
+│                   Redis URLs · Supabase Service Role Keys                   │
+│                   PlanetScale Tokens                                        │
+│                                                                             │
+│  Messaging        Slack Bot/User/Session Tokens · Twilio SIDs              │
+│                   Twilio Auth Tokens · Discord Bot Tokens                   │
+│                   SendGrid Keys · Mailgun Keys                              │
+│                                                                             │
+│  Other            JWT Tokens · OAuth Refresh Tokens · Bearer Tokens        │
+│                   RSA/DSA/EC/OpenSSH Private Keys · Notion API Keys        │
+│                   Linear API Keys · Airtable Keys · Shopify Tokens         │
+│                   HTTP Basic Auth URLs · Generic token assignments          │
+│                   .env variable assignments (PASSWORD, SECRET_KEY, etc.)   │
+└─────────────────────────────────────────────────────────────────────────────┘
+```
 
-## Get Pro
+---
 
-StreamBlur Pro is **$2.99 one-time** — no subscription, no recurring charges.
+## Pricing
 
-[Get Pro at streamblur.com/pricing](https://streamblur.com/pricing)
+```
+┌──────────────────────────┬──────────────────────────────────────┐
+│         FREE             │              PRO                     │
+│      Forever             │         $2.99 one-time               │
+│                          │       (launch special, was $9)       │
+├──────────────────────────┼──────────────────────────────────────┤
+│  redact_text    ✓        │  Everything in Free           ✓      │
+│  scan_text      ✓        │  redact_file                  ✓      │
+│                          │  scan_directory               ✓      │
+│                          │  scan_repo                    ✓      │
+│                          │  audit_env_file               ✓      │
+│                          │  check_gitignore              ✓      │
+│                          │  explain_detection            ✓      │
+│                          │  generate_env_template        ✓      │
+│                          │                                      │
+│                          │  No subscription. No renewal.        │
+│                          │  Pay once. Own it forever.           │
+└──────────────────────────┴──────────────────────────────────────┘
+```
 
-Once you have Pro, set your email or license key as `STREAMBLUR_LICENSE_KEY` in your MCP config to unlock `redact_file` and `scan_directory`.
+[Get Pro at streamblur.com/pricing](https://streamblur.com/pricing)
 
-## Example
+Once you have Pro, add your email or license key to your MCP config:
 
-```
-// AI asks to read .env file
-// Without StreamBlur: OPENAI_API_KEY=sk-proj-abc123...
-// With StreamBlur:    OPENAI_API_KEY=[REDACTED:openai_project_key]
+```json
+"env": {
+  "STREAMBLUR_LICENSE_KEY": "you@example.com"
+}
 ```
 
+---
+
 ## Privacy
 
-All pattern matching runs **100% locally**. Your files and text are never uploaded anywhere. The only network call is a one-time license key validation on startup (Pro only).
+- **100% local** — all pattern matching runs on your machine
+- **No data uploads** — your files and text are never sent anywhere
+- **No telemetry** — we don't track what you scan
+- **One network call** — Pro license validation on startup only (to streamblur.com)
+- **File-safe** — `redact_file` reads your file and returns redacted output; the original is never modified
+
+---
 
 ## Links
 
 - [streamblur.com](https://streamblur.com)
-- [Chrome Extension](https://chromewebstore.google.com/detail/streamblur/ikbeaahlgjhcpmnmoephpcoabconahim)
 - [Pricing](https://streamblur.com/pricing)
-- [Discord](https://discord.gg/628jYn5TwC)
+- [Chrome Extension](https://chromewebstore.google.com/detail/streamblur/ikbeaahlgjhcpmnmoephpcoabconahim)
+- [Discord Community](https://discord.gg/628jYn5TwC)
+- [Changelog](https://streamblur.com/changelog.html)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@streamblur/mcp",
-  "version": "1.5.13",
+  "version": "1.5.14",
   "description": "StreamBlur MCP server - 9 tools, 77+ patterns. Auto-setup for Claude, Cursor, Windsurf. TUI welcome screen. Run npx @streamblur/mcp --setup to get started.",
   "main": "dist/src/index.js",
   "bin": {