@szc-ft/mcp-szcd-client 0.17.0 → 0.19.0

package/scripts/lib/common.js

@@ -209,6 +209,15 @@ export function encodeClientConfig(config) {
     return Buffer.from(JSON.stringify(config)).toString("base64");
 }
 
+/**
+ * 获取 MCP_API_KEY（从用户本地配置文件读取）
+ * 用于通过 X-API-Key Header 传递给 MCP 服务器鉴权
+ */
+export function getApiKey() {
+    const config = loadExistingConfig();
+    return config.MCP_API_KEY || "";
+}
+
 /**
  * 获取 X-Client-Config Header 值（便捷函数）
  * 返回 Base64 编码的字符串，或 null（无 CODING 配置时）
@@ -216,3 +225,20 @@ export function encodeClientConfig(config) {
 export function getClientConfigHeader() {
     return encodeClientConfig(loadClientCodingConfig());
 }
+
+/**
+ * 构建 MCP HTTP 请求的 headers 对象（包含 X-Client-Config 和 X-API-Key）
+ * @returns {Object} headers 对象，可能为空对象
+ */
+export function buildMcpHeaders() {
+    const headers = {};
+    const clientConfigHeader = getClientConfigHeader();
+    if (clientConfigHeader) {
+        headers["X-Client-Config"] = clientConfigHeader;
+    }
+    const apiKey = getApiKey();
+    if (apiKey) {
+        headers["X-API-Key"] = apiKey;
+    }
+    return Object.keys(headers).length > 0 ? headers : null;
+}

package/scripts/lib/qoder.js

@@ -29,7 +29,7 @@ import fs from "node:fs";
 import path from "node:path";
 import os from "node:os";
 import { execSync } from "node:child_process";
-import { getClientConfigHeader as _getClientConfigHeader } from "./common.js";
+import { getClientConfigHeader as _getClientConfigHeader, getApiKey as _getApiKey } from "./common.js";
 
 // ==================== 路径工具 ====================
 
@@ -150,14 +150,19 @@ function syncQoderSettings(deps) {
     if (!settings.mcpServers) settings.mcpServers = {};
 
     const clientConfigHeader = deps.getClientConfigHeader ? deps.getClientConfigHeader() : null;
+    const apiKey = deps.getApiKey ? deps.getApiKey() : "";
+    const headers = {};
+    if (clientConfigHeader) headers["X-Client-Config"] = clientConfigHeader;
+    if (apiKey) headers["X-API-Key"] = apiKey;
     const desiredConfig = {
         type: "http",
         url: mcpUrl,
-        ...(clientConfigHeader ? { headers: { "X-Client-Config": clientConfigHeader } } : {}),
+        ...(Object.keys(headers).length > 0 ? { headers } : {}),
     };
 
     const current = settings.mcpServers[serverName];
-    if (current && current.type === "http" && current.url === mcpUrl) {
+    const needsApiKeyUpdate = apiKey && (!current || !current.headers || current.headers["X-API-Key"] !== apiKey);
+    if (current && current.type === "http" && current.url === mcpUrl && !needsApiKeyUpdate) {
         console.log(`✓ Qoder ~/.qoder/settings.json already up-to-date: ${serverName} (${mcpUrl})`);
         return;
     }
@@ -366,10 +371,14 @@ function setupQoderProjectConfig(deps) {
     if (!settings.mcpServers) settings.mcpServers = {};
 
     const clientConfigHeader = deps.getClientConfigHeader ? deps.getClientConfigHeader() : null;
+    const _apiKey = deps.getApiKey ? deps.getApiKey() : "";
+    const _headers = {};
+    if (clientConfigHeader) _headers["X-Client-Config"] = clientConfigHeader;
+    if (_apiKey) _headers["X-API-Key"] = _apiKey;
     settings.mcpServers[serverName] = {
         type: "http",
         url: mcpUrl,
-        ...(clientConfigHeader ? { headers: { "X-Client-Config": clientConfigHeader } } : {}),
+        ...(Object.keys(_headers).length > 0 ? { headers: _headers } : {}),
     };
 
     writeJsonFile(projectSettingsPath, settings);
@@ -444,16 +453,21 @@ function syncQoderSettingsDirect(targetUrl, serverName) {
     if (!settings.mcpServers) settings.mcpServers = {};
 
     const current = settings.mcpServers[serverName];
-    if (current && current.type === "http" && current.url === mcpUrl) {
+    const _apiKey = _getApiKey();
+    const needsApiKeyUpdate = _apiKey && (!current || !current.headers || current.headers["X-API-Key"] !== _apiKey);
+    if (current && current.type === "http" && current.url === mcpUrl && !needsApiKeyUpdate) {
         console.log(`⏭️  Qoder ~/.qoder/settings.json already up-to-date: ${serverName} (${mcpUrl})`);
         return;
     }
 
     const clientConfigHeader = _getClientConfigHeader();
+    const _headers = {};
+    if (clientConfigHeader) _headers["X-Client-Config"] = clientConfigHeader;
+    if (_apiKey) _headers["X-API-Key"] = _apiKey;
     settings.mcpServers[serverName] = {
         type: "http",
         url: mcpUrl,
-        ...(clientConfigHeader ? { headers: { "X-Client-Config": clientConfigHeader } } : {}),
+        ...(Object.keys(_headers).length > 0 ? { headers: _headers } : {}),
     };
 
     writeJsonFile(settingsPath, settings);

package/scripts/lib/qwen-code.js

@@ -23,7 +23,7 @@ import fs from "node:fs";
 import path from "node:path";
 import os from "node:os";
 import { execSync } from "node:child_process";
-import { getClientConfigHeader as getClientConfigHeaderDirect } from "./common.js";
+import { getClientConfigHeader as getClientConfigHeaderDirect, getApiKey as getApiKeyDirect } from "./common.js";
 
 // ==================== 路径工具 ====================
 
@@ -314,13 +314,17 @@ function injectClientConfigHeader(serverName, clientConfigHeader) {
     if (!manifest.mcpServers || !manifest.mcpServers[serverName]) return;
 
     const entry = manifest.mcpServers[serverName];
-    if (entry.headers && entry.headers["X-Client-Config"] === clientConfigHeader) {
+    const _apiKey = getApiKeyDirect();
+    if (entry.headers && entry.headers["X-Client-Config"] === clientConfigHeader && entry.headers["X-API-Key"] === _apiKey) {
         return; // 已是最新
     }
 
-    entry.headers = { "X-Client-Config": clientConfigHeader };
+    const _headers = {};
+    if (clientConfigHeader) _headers["X-Client-Config"] = clientConfigHeader;
+    if (_apiKey) _headers["X-API-Key"] = _apiKey;
+    entry.headers = _headers;
     writeJsonFile(manifestPath, manifest);
-    console.log(`✓ Injected X-Client-Config header into extension qwen-extension.json`);
+    console.log(`✓ Injected X-Client-Config and X-API-Key headers into extension qwen-extension.json`);
 }
 
 /**
@@ -343,10 +347,11 @@ function syncExtensionConfig(targetUrl, serverName) {
 
     const mcpUrl = `${targetUrl}/mcp`;
     const clientConfigHeader = getClientConfigHeaderDirect();
+    const _apiKey = getApiKeyDirect();
     const entry = manifest.mcpServers[serverName];
     const headersUnchanged = clientConfigHeader
-        ? entry.headers && entry.headers["X-Client-Config"] === clientConfigHeader
-        : !entry.headers;
+        ? entry.headers && entry.headers["X-Client-Config"] === clientConfigHeader && entry.headers["X-API-Key"] === _apiKey
+        : !entry.headers || (!_apiKey && !entry.headers["X-API-Key"]);
     if (entry.type === "http" && entry.httpUrl === mcpUrl && headersUnchanged) {
         console.log(`⏭️  Extension qwen-extension.json already up-to-date: ${mcpUrl}`);
         return;
@@ -356,9 +361,12 @@ function syncExtensionConfig(targetUrl, serverName) {
     entry.httpUrl = mcpUrl;
     // 清理旧字段，避免冲突
     delete entry.url;
-    // 透传用户本地 CODING 配置
-    if (clientConfigHeader) {
-        entry.headers = { "X-Client-Config": clientConfigHeader };
+    // 透传用户本地 CODING 配置和 API Key
+    const _headers = {};
+    if (clientConfigHeader) _headers["X-Client-Config"] = clientConfigHeader;
+    if (_apiKey) _headers["X-API-Key"] = _apiKey;
+    if (Object.keys(_headers).length > 0) {
+        entry.headers = _headers;
     } else {
         delete entry.headers;
     }
@@ -396,10 +404,11 @@ export function setupQwenCode(deps) {
         extensionInstalled = installExtensionViaCopy(deps);
     }
 
-    // ---- 注入 X-Client-Config Header ----
+    // ---- 注入 X-Client-Config / X-API-Key Header ----
     if (extensionInstalled) {
         const clientConfigHeader = deps.getClientConfigHeader ? deps.getClientConfigHeader() : null;
-        if (clientConfigHeader) {
+        const apiKey = deps.getApiKey ? deps.getApiKey() : "";
+        if (clientConfigHeader || apiKey) {
             injectClientConfigHeader(deps.getMcpServerName(), clientConfigHeader);
         }
     }

package/scripts/lib/trae-cli.js

@@ -14,7 +14,7 @@ import fs from "node:fs";
 import path from "node:path";
 import os from "node:os";
 import { execSync } from "node:child_process";
-import { loadClientCodingConfig, encodeClientConfig } from "./common.js";
+import { loadClientCodingConfig, encodeClientConfig, getApiKey } from "./common.js";
 
 // ==================== 路径工具 ====================
 
@@ -89,8 +89,9 @@ export function syncTraeCliYaml(deps) {
 
     // 读取用户本地 CODING 配置，生成 X-Client-Config Header
     const clientConfigHeader = deps.getClientConfigHeader ? deps.getClientConfigHeader() : null;
-    const headersBlock = clientConfigHeader
-        ? `\n      headers:\n          X-Client-Config: ${clientConfigHeader}`
+    const apiKey = deps.getApiKey ? deps.getApiKey() : "";
+    const headersBlock = clientConfigHeader || apiKey
+        ? `\n      headers:${clientConfigHeader ? `\n          X-Client-Config: ${clientConfigHeader}` : ""}${apiKey ? `\n          X-API-Key: ${apiKey}` : ""}`
         : "";
 
     if (!fs.existsSync(yamlPath)) {
@@ -147,10 +148,12 @@ export function createTraeCliConfig(deps) {
         // 读取用户本地 CODING 配置，生成 X-Client-Config Header
         const codingConfig = loadClientCodingConfig();
         const clientConfigHeader = encodeClientConfig(codingConfig);
+        const apiKey = getApiKey();
         const jsonConfigObj = { type: "http", url: mcpUrl };
-        if (clientConfigHeader) {
-            jsonConfigObj.headers = { "X-Client-Config": clientConfigHeader };
-        }
+        const _headers = {};
+        if (clientConfigHeader) _headers["X-Client-Config"] = clientConfigHeader;
+        if (apiKey) _headers["X-API-Key"] = apiKey;
+        if (Object.keys(_headers).length > 0) jsonConfigObj.headers = _headers;
         const jsonConfig = JSON.stringify(jsonConfigObj);
 
         deps.safeExecSync(`trae-cli mcp remove ${serverName} 2>/dev/null`);

package/scripts/lib/trae-ide.js

@@ -13,7 +13,7 @@
 import fs from "node:fs";
 import path from "node:path";
 import os from "node:os";
-import { getClientConfigHeader } from "./common.js";
+import { getClientConfigHeader, getApiKey } from "./common.js";
 
 // ==================== 路径工具 ====================
 
@@ -74,7 +74,9 @@ export function syncTraeCnMcpJson(deps) {
     if (!config.mcpServers) config.mcpServers = {};
 
     const current = config.mcpServers[serverName];
-    if (current && current.url === mcpUrl && current.type === "http") {
+    const apiKey = deps.getApiKey ? deps.getApiKey() : "";
+    const needsApiKeyUpdate = apiKey && (!current || !current.headers || current.headers["X-API-Key"] !== apiKey);
+    if (current && current.url === mcpUrl && current.type === "http" && !needsApiKeyUpdate) {
         console.log(`✓ Trae CN mcp.json already up-to-date: ${mcpUrl}`);
         return;
     }
@@ -84,9 +86,10 @@ export function syncTraeCnMcpJson(deps) {
         type: "http",
         url: mcpUrl,
     };
-    if (clientConfigHeader) {
-        serverConfig.headers = { "X-Client-Config": clientConfigHeader };
-    }
+    const headers = {};
+    if (clientConfigHeader) headers["X-Client-Config"] = clientConfigHeader;
+    if (apiKey) headers["X-API-Key"] = apiKey;
+    if (Object.keys(headers).length > 0) serverConfig.headers = headers;
 
     config.mcpServers[serverName] = serverConfig;
 
@@ -121,7 +124,9 @@ export function syncMcpUrl(targetUrl, serverName) {
     if (!config.mcpServers) config.mcpServers = {};
 
     const current = config.mcpServers[serverName];
-    if (current && current.url === mcpUrl && current.type === "http") {
+    const apiKey = getApiKey();
+    const needsApiKeyUpdate = apiKey && (!current || !current.headers || current.headers["X-API-Key"] !== apiKey);
+    if (current && current.url === mcpUrl && current.type === "http" && !needsApiKeyUpdate) {
         console.log(`⏭️  Trae CN mcp.json already up-to-date: ${mcpUrl}`);
         return;
     }
@@ -131,9 +136,10 @@ export function syncMcpUrl(targetUrl, serverName) {
         type: "http",
         url: mcpUrl,
     };
-    if (clientConfigHeader) {
-        serverConfig.headers = { "X-Client-Config": clientConfigHeader };
-    }
+    const headers = {};
+    if (clientConfigHeader) headers["X-Client-Config"] = clientConfigHeader;
+    if (apiKey) headers["X-API-Key"] = apiKey;
+    if (Object.keys(headers).length > 0) serverConfig.headers = headers;
 
     config.mcpServers[serverName] = serverConfig;
 

package/scripts/postinstall.js

@@ -34,6 +34,7 @@ const deps = {
     getMcpServerUrl: common.getMcpServerUrl,
     getMcpServerName: common.getMcpServerName,
     getClientConfigHeader: common.getClientConfigHeader,
+    getApiKey: common.getApiKey,
     safeExecSync: common.safeExecSync,
     isCommandAvailable: common.isCommandAvailable,
     ensureDirectory: common.ensureDirectory,

package/scripts/update-auth.js

@@ -18,6 +18,12 @@
 import fs from "node:fs";
 import path from "node:path";
 import os from "node:os";
+import { fileURLToPath } from "node:url";
+import { syncMcpUrl as syncTraeIde } from "./lib/trae-ide.js";
+import { syncMcpUrl as syncClaudeCode } from "./lib/claude-code.js";
+import { syncMcpUrl as syncQwenCode } from "./lib/qwen-code.js";
+import { syncMcpUrl as syncQoder } from "./lib/qoder.js";
+import { getMcpServerUrl, getMcpServerName } from "./lib/common.js";
 
 // ==================== 工具函数 ====================
 
@@ -86,6 +92,31 @@ function parseArgs(argv) {
     return args;
 }
 
+// ==================== 同步 IDE 配置 ====================
+
+function syncIdeConfigs() {
+    const serverUrl = getMcpServerUrl();
+    const serverName = getMcpServerName();
+    const results = [];
+
+    const syncFns = [
+        { name: "Trae CN", fn: syncTraeIde },
+        { name: "Claude Code", fn: syncClaudeCode },
+        { name: "Qwen Code", fn: syncQwenCode },
+        { name: "Qoder", fn: syncQoder },
+    ];
+
+    for (const { name, fn } of syncFns) {
+        try {
+            fn(serverUrl, serverName);
+            results.push(`  ✓ ${name}`);
+        } catch (e) {
+            results.push(`  ⏭️  ${name}: ${e.message}`);
+        }
+    }
+    return results;
+}
+
 // ==================== 命令实现 ====================
 
 function cmdGet() {
@@ -116,7 +147,10 @@ function cmdSet(apiKey) {
         console.log(`\n✅ API Key 已保存。`);
         console.log(`  MCP_API_KEY : ${old} → ${maskKey(apiKey)}`);
         console.log(`  配置文件    : ${getConfigFilePath()}`);
-        console.log(`\n  提示：重启 IDE/CLI 后生效。\n`);
+        console.log(`\n  🔄 同步 IDE 配置...`);
+        const results = syncIdeConfigs();
+        for (const r of results) console.log(r);
+        console.log(`\n  提示：重启 IDE 后生效。\n`);
         return true;
     }
 
@@ -139,6 +173,9 @@ function cmdClear() {
         console.log(`\n✅ API Key 已清除。`);
         console.log(`  MCP_API_KEY : ${old} → (未设置)`);
         console.log(`  配置文件    : ${getConfigFilePath()}`);
+        console.log(`\n  🔄 同步 IDE 配置...`);
+        const results = syncIdeConfigs();
+        for (const r of results) console.log(r);
         console.log(`\n  提示：服务端若已开启鉴权，清除后客户端将无法连接。\n`);
         return true;
     }

package/standard-skill/local-api-tool/SKILL.md

@@ -1,6 +1,6 @@
 ---
 name: local-api-tool
-description: 本地网络 API 工具，专门处理 10.x.x.x 网段的 Swagger/YApi 文档拉取和联调测试。当服务端 api_tool 因 LOCAL_NETWORK_UNREACHABLE 无法访问时，此技能在用户本地环境执行 curl，再将结果交给服务端解析。适用于内网开发环境、VPN 场景。
+description: 本地网络 API 工具，专门处理 10.x.x.x 网段的 Swagger/YApi 文档拉取和联调测试。当服务端 api_tool 因 LOCAL_NETWORK_UNREACHABLE 无法访问时，此技能在用户本地环境执行 curl，再将结果交给服务端解析。适用于内网开发环境、VPN 场景。**仅限 10.x.x.x 网段**，172.16-31.x.x 和 192.168.x.x 服务端可直连，不要使用本技能。
 compatibility:
   tools:
     - run_command
@@ -20,6 +20,19 @@ compatibility:
 - API 联调测试目标为 `10.x.x.x` 网段
 - 用户在 VPN 或内网开发环境中，本地可访问但远程服务器不可达
 
+## ⚠️ 网段区分（重要）
+
+**仅 `10.x.x.x` 网段需要走本地解析，其他私有网段服务端均可直连，切勿误用本技能：**
+
+| 网段 | 是否需要本地解析 | 原因 | 处理方式 |
+|------|:---:|------|------|
+| `10.x.x.x` | **是** | 用户本地可达，服务端不可达 | 使用本技能在本地 curl |
+| `172.16-31.x.x` | **否** | 服务端可直接访问 | 直接调用 api_tool，无需本技能 |
+| `192.168.x.x` | **否** | 服务端通过弹性 IP 映射访问 | 直接调用 api_tool，无需本技能 |
+| 公网 IP | **否** | 服务端可直接访问 | 直接调用 api_tool，无需本技能 |
+
+**禁止对 172.16-31.x.x 和 192.168.x.x 使用本技能！** 这些地址虽然也是 RFC 1918 私有地址，但服务端网络环境可以直达，不需要在用户本地执行 curl。
+
 ## 工作流
 
 ### 流程 A：拉取 Swagger API 文档（fetch）

package/standard-skill/local-browser-test/SKILL.md

@@ -0,0 +1,153 @@
+---
+name: local-browser-test
+description: 本地浏览器测试工具，在用户本地 Chrome 中执行自动化测试。支持设计稿还原度对比（像素级评分）、功能验证（点击/输入/导航）、DOM 结构检查、JS 错误检测。通过 puppeteer-core 连接用户真实浏览器，天然继承登录态和微前端环境。
+compatibility:
+  tools:
+    - run_command
+    - read_file
+---
+
+# 本地浏览器测试工具（local-browser-test）
+
+## 触发条件
+
+当用户说出以下关键词时启动浏览器测试：
+- "测试一下"、"帮我验证"、"浏览器测试"
+- "对比设计稿"、"还原度"、"看看效果"
+- "功能测试"、"能不能正常用"
+- "检查页面"、"页面渲染"
+
+## 浏览器模式
+
+支持两种模式，执行器自动检测优先使用 connect：
+
+### connect 模式（推荐）
+连接用户已启动的调试 Chrome，天然继承登录态/微前端环境。
+
+用户一次性配置：
+```bash
+# macOS
+open -a "Google Chrome" --args --remote-debugging-port=9222
+# Linux
+google-chrome --remote-debugging-port=9222
+# Windows
+"C:\Program Files\Google\Chrome\Application\chrome.exe" --remote-debugging-port=9222
+```
+
+### launch 模式（回退）
+启动新的 headless Chrome，需要用户提供可直接访问的 URL。
+
+执行器会自动检测 localhost:9222 是否可用，有则 connect，无则 launch。
+
+## 测试计划 Schema
+
+AI 直接构造测试计划 JSON：
+
+```json
+{
+    "planId": "<uuid>",
+    "description": "<测试描述>",
+    "steps": [ ... ],
+    "options": {
+        "viewport": { "width": 1440, "height": 900 },
+        "timeout": 120000,
+        "outputDir": "/tmp/browser-test-<planId>"
+    }
+}
+```
+
+### 支持的步骤类型
+
+| type | 功能 | 参数 | 返回 |
+|------|------|------|------|
+| navigate | 导航到 URL | `url`, `waitUntil` | `{ url, title, loadTime }` |
+| screenshot | 页面截图 | `fullPage`, `clip`, `filename` | `{ filepath, width, height }` |
+| compare | 设计稿对比 | `designImagePath`, `threshold`, `regions[]` | `{ fidelity, diffPixels, diffImagePath, regions[] }` |
+| click | 点击元素 | `selector`, `waitForNavigation` | `{ clicked, tagName }` |
+| type | 输入文本 | `selector`, `text`, `clear` | `{ typed, value }` |
+| waitFor | 等待条件 | `selector` 或 `url`, `timeout` | `{ matched, waited }` |
+| evaluate | 执行 JS | `expression` | `{ result }` |
+| checkElement | 元素断言 | `selector`, `expect: {visible, minCount, maxCount, hasText}` | `{ passed, checks, elementCount }` |
+
+### 场景选择策略
+
+根据上下文自动选择步骤组合：
+
+**场景 A：有设计稿 + 功能验证（最完整）**
+`navigate → waitFor → screenshot → compare → 功能步骤`
+
+**场景 B：无设计稿 + 功能验证**
+`navigate → waitFor → screenshot → evaluate(JS错误检查) → 功能步骤`
+
+**场景 C：仅视觉对比**
+`navigate → waitFor → screenshot → compare`
+
+**场景 D：仅页面检查**
+`navigate → waitFor → screenshot → evaluate(JS错误检查)`
+
+### 构造步骤的指导原则
+
+1. **selector 必须从用户代码中读取，不要猜测**
+   - 读代码中的 `id`、`className`、`data-testid`
+   - szcd 组件的 class 可通过 `get_component_full_profile` 获取
+2. **API 路径从代码中的接口调用读取**
+3. **checkElement 的 expect 从代码逻辑推断**
+   - columns 定义了 N 列 → `expect: { minCount: N }`（检查 th 数量）
+   - dataSource 有数据 → `expect: { minCount: 1 }`（检查行数）
+4. **compare 的 regions 从设计稿分析结果或组件布局推断**
+
+## 执行命令
+
+```bash
+node {client_install_path}/local-browser-executor.js \
+  --plan '<测试计划JSON>' \
+  --output /tmp/browser-test-result.json
+```
+
+也支持从文件读取计划：
+```bash
+node {client_install_path}/local-browser-executor.js \
+  --plan-file /tmp/test-plan.json \
+  --output /tmp/browser-test-result.json
+```
+
+### 可选参数
+
+- `--cdp-url http://localhost:9223`：指定非默认的 CDP 端口
+- `--page-url http://xxx/page`：connect 模式下指定目标页面
+
+## 依赖检查
+
+如果执行报错依赖缺失，引导用户安装：
+```bash
+npm install puppeteer-core pixelmatch pngjs sharp
+```
+
+## 结果解读
+
+### 还原度评分
+- fidelity >= 95%：还原度优秀
+- fidelity 90-95%：还原度良好，有优化空间
+- fidelity < 90%：还原度不足，需要调整
+
+### 功能测试
+- passed = total：全部通过
+- 有失败步骤：根据 `step` + `error` 字段定位代码问题
+
+### 结果文件结构
+```json
+{
+    "planId": "xxx",
+    "mode": "connect",
+    "steps": [
+        { "index": 1, "step": "navigate", "status": "PASS", "duration": 1200, ... },
+        { "index": 2, "step": "screenshot", "status": "PASS", "duration": 500, ... },
+        { "index": 3, "step": "compare", "status": "PASS", "fidelity": 94.7, ... }
+    ],
+    "summary": {
+        "total": 5, "passed": 4, "failed": 1,
+        "fidelity": 94.7
+    },
+    "outputDir": "/tmp/browser-test-xxx"
+}
+```

package/standard-skill/szcd-component-helper/SKILL.md

@@ -19,7 +19,7 @@ compatibility:
 
 **重要说明**：这是一个客户端 skill，通过 MCP 协议（SSE 或 HTTP）连接到远程 MCP 服务器。服务器由管理员维护，包含源码和数据。
 
-**版本**：v0.17.0 - 新增 10 段网段本地网络兼容：api_tool 新增 parse_swagger_json action，客户端新增 local-api-tool 技能，遇到 10.x.x.x 网段自动在本地 curl 获取 Swagger JSON 再交由服务端解析
+**版本**：v0.18.0 - 新增 MCP 鉴权支持：postinstall 自动同步 API Key 到 IDE 配置，szcd-mcp-auth 命令支持 set/clear 并自动更新所有 IDE 的 mcp.json
 
 ## 架构说明