@tuteliq/mcp 2.2.0 → 3.0.0

package/README.md

@@ -14,8 +14,9 @@
 </p>
 
 <p align="center">
-  <a href="https://api.tuteliq.ai/docs">API Docs</a> •
-  <a href="https://tuteliq.app">Dashboard</a> •
+  <a href="https://docs.tuteliq.ai">API Docs</a> •
+  <a href="https://tuteliq.ai">Dashboard</a> •
+  <a href="https://trust.tuteliq.ai">Trust</a> •
   <a href="https://discord.gg/7kbTeRYRXD">Discord</a>
 </p>
 
@@ -202,7 +203,7 @@ The message contains direct exclusionary language...
 
 ## Get an API Key
 
-1. Go to [tuteliq.app](https://tuteliq.app)
+1. Go to [tuteliq.ai](https://tuteliq.ai)
 2. Create an account
 3. Generate an API key
 4. Add it to your MCP config
@@ -232,7 +233,7 @@ Enable `PII_REDACTION_ENABLED=true` on your Tuteliq API to automatically strip e
 
 ## Support
 
-- **API Docs**: [api.tuteliq.ai/docs](https://api.tuteliq.ai/docs)
+- **API Docs**: [docs.tuteliq.ai](https://docs.tuteliq.ai)
 - **Discord**: [discord.gg/7kbTeRYRXD](https://discord.gg/7kbTeRYRXD)
 - **Email**: support@tuteliq.ai
 
@@ -244,6 +245,26 @@ MIT License - see [LICENSE](LICENSE) for details.
 
 ---
 
+## Get Certified — Free
+
+Tuteliq offers a **free certification program** for anyone who wants to deepen their understanding of online child safety. Complete a track, pass the quiz, and earn your official Tuteliq certificate — verified and shareable.
+
+**Three tracks available:**
+
+| Track | Who it's for | Duration |
+|-------|-------------|----------|
+| **Parents & Caregivers** | Parents, guardians, grandparents, teachers, coaches | ~90 min |
+| **Young People (10–16)** | Young people who want to learn to spot manipulation | ~60 min |
+| **Companies & Platforms** | Product managers, trust & safety teams, CTOs, compliance officers | ~120 min |
+
+**Start here →** [tuteliq.ai/certify](https://tuteliq.ai/certify)
+
+- 100% Free — no login required
+- Verifiable certificate on completion
+- Covers grooming recognition, sextortion, cyberbullying, regulatory obligations (KOSA, EU DSA), and more
+
+---
+
 ## The Mission: Why This Matters
 
 Before you decide to contribute or sponsor, read these numbers. They are not projections. They are not estimates from a pitch deck. They are verified statistics from the University of Edinburgh, UNICEF, NCMEC, and Interpol.

package/dist/server.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=server.d.ts.map

package/dist/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../server.ts"],"names":[],"mappings":""}

package/dist/server.js

@@ -0,0 +1,29 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const express_1 = __importDefault(require("express"));
+const cors_1 = __importDefault(require("cors"));
+const index_js_1 = require("./src/index.js");
+const transport_js_1 = require("./src/transport.js");
+const app = (0, express_1.default)();
+const port = parseInt(process.env.PORT || '3001', 10);
+app.use((0, cors_1.default)());
+app.use(express_1.default.json());
+const mcpServer = (0, index_js_1.createServer)();
+const mcpHandler = (0, transport_js_1.createHttpHandler)(mcpServer);
+app.all('/mcp', (req, res) => {
+    mcpHandler(req, res).catch((err) => {
+        console.error('MCP handler error:', err);
+        if (!res.headersSent) {
+            res.status(500).json({ error: 'Internal server error' });
+        }
+    });
+});
+app.get('/health', (_req, res) => {
+    res.json({ status: 'ok', version: '3.0.0' });
+});
+app.listen(port, () => {
+    console.error(`Tuteliq MCP App server running on http://localhost:${port}/mcp`);
+});

package/dist/src/formatters.d.ts

@@ -0,0 +1,8 @@
+import type { DetectionResult, AnalyseMultiResult, VideoAnalysisResult } from '@tuteliq/sdk';
+export declare const severityEmoji: Record<string, string>;
+export declare const riskEmoji: Record<string, string>;
+export declare const trendEmoji: Record<string, string>;
+export declare function formatDetectionResult(result: DetectionResult): string;
+export declare function formatMultiResult(result: AnalyseMultiResult): string;
+export declare function formatVideoResult(result: VideoAnalysisResult): string;
+//# sourceMappingURL=formatters.d.ts.map

package/dist/src/formatters.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"formatters.d.ts","sourceRoot":"","sources":["../../src/formatters.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAE7F,eAAO,MAAM,aAAa,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAKhD,CAAC;AAEF,eAAO,MAAM,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAO5C,CAAC;AAEF,eAAO,MAAM,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAI7C,CAAC;AAEF,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,eAAe,GAAG,MAAM,CAuCrE;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,kBAAkB,GAAG,MAAM,CA2BpE;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,mBAAmB,GAAG,MAAM,CAoBrE"}

package/dist/src/formatters.js

@@ -0,0 +1,104 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.trendEmoji = exports.riskEmoji = exports.severityEmoji = void 0;
+exports.formatDetectionResult = formatDetectionResult;
+exports.formatMultiResult = formatMultiResult;
+exports.formatVideoResult = formatVideoResult;
+exports.severityEmoji = {
+    low: '\u{1F7E1}',
+    medium: '\u{1F7E0}',
+    high: '\u{1F534}',
+    critical: '\u26D4',
+};
+exports.riskEmoji = {
+    safe: '\u2705',
+    none: '\u2705',
+    low: '\u{1F7E1}',
+    medium: '\u{1F7E0}',
+    high: '\u{1F534}',
+    critical: '\u26D4',
+};
+exports.trendEmoji = {
+    improving: '\u{1F4C8}',
+    stable: '\u27A1\uFE0F',
+    worsening: '\u{1F4C9}',
+};
+function formatDetectionResult(result) {
+    const detected = result.detected;
+    const levelEmoji = exports.riskEmoji[result.level] || '\u26AA';
+    const label = result.endpoint
+        .split('_')
+        .map(w => w.charAt(0).toUpperCase() + w.slice(1))
+        .join(' ');
+    const header = detected
+        ? `## ${levelEmoji} ${label} Detected`
+        : `## \u2705 No ${label} Detected`;
+    const categories = result.categories.length > 0
+        ? `**Categories:** ${result.categories.map(c => c.tag).join(', ')}`
+        : '';
+    const evidence = result.evidence && result.evidence.length > 0
+        ? `### Evidence\n${result.evidence.map(e => `- _"${e.text}"_ \u2014 **${e.tactic}** (weight: ${e.weight.toFixed(2)})`).join('\n')}`
+        : '';
+    const calibration = result.age_calibration?.applied
+        ? `**Age Calibration:** ${result.age_calibration.age_group} (${result.age_calibration.multiplier}x)`
+        : '';
+    return `${header}
+
+**Risk Score:** ${(result.risk_score * 100).toFixed(0)}%
+**Level:** ${result.level}
+**Confidence:** ${(result.confidence * 100).toFixed(0)}%
+${categories}
+
+### Rationale
+${result.rationale}
+
+### Recommended Action
+\`${result.recommended_action}\`
+
+${evidence}
+${calibration}`.trim();
+}
+function formatMultiResult(result) {
+    const s = result.summary;
+    const overallEmoji = exports.riskEmoji[s.overall_risk_level] || '\u26AA';
+    const summarySection = `## Multi-Endpoint Analysis
+
+**Overall Risk:** ${overallEmoji} ${s.overall_risk_level}
+**Endpoints Analyzed:** ${s.total_endpoints}
+**Threats Detected:** ${s.detected_count}
+**Highest Risk:** ${s.highest_risk.endpoint} (${(s.highest_risk.risk_score * 100).toFixed(0)}%)
+${result.cross_endpoint_modifier ? `**Cross-Endpoint Modifier:** ${result.cross_endpoint_modifier.toFixed(2)}x` : ''}`;
+    const perEndpoint = result.results
+        .map(r => {
+        const emoji = r.detected ? (exports.riskEmoji[r.level] || '\u26AA') : '\u2705';
+        return `### ${emoji} ${r.endpoint}
+**Detected:** ${r.detected ? 'Yes' : 'No'} | **Risk:** ${(r.risk_score * 100).toFixed(0)}% | **Level:** ${r.level}
+${r.categories.length > 0 ? `**Categories:** ${r.categories.map(c => c.tag).join(', ')}` : ''}
+${r.rationale}`;
+    })
+        .join('\n\n');
+    return `${summarySection}
+
+---
+
+${perEndpoint}`;
+}
+function formatVideoResult(result) {
+    const emoji = exports.severityEmoji[result.overall_severity] || '\u2705';
+    const findingsSection = result.safety_findings.length > 0
+        ? result.safety_findings
+            .map(f => {
+            const fEmoji = exports.severityEmoji[f.severity <= 0.3 ? 'low' : f.severity <= 0.6 ? 'medium' : f.severity <= 0.85 ? 'high' : 'critical'] || '\u26AA';
+            return `- \`${f.timestamp.toFixed(1)}s\` (frame ${f.frame_index}) ${fEmoji} ${f.description}\n  Categories: ${f.categories.join(', ')} | Severity: ${(f.severity * 100).toFixed(0)}%`;
+        })
+            .join('\n')
+        : '_No safety findings._';
+    return `## \u{1F3AC} Video Analysis
+
+**Overall Severity:** ${emoji} ${result.overall_severity}
+**Overall Risk Score:** ${(result.overall_risk_score * 100).toFixed(0)}%
+**Frames Analyzed:** ${result.frames_analyzed}
+
+### Safety Findings
+${findingsSection}`;
+}

package/dist/src/index.d.ts

@@ -0,0 +1,4 @@
+#!/usr/bin/env node
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare function createServer(): McpServer;
+//# sourceMappingURL=index.d.ts.map

package/dist/src/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAUpE,wBAAgB,YAAY,IAAI,SAAS,CAsBxC"}

package/dist/src/index.js

@@ -0,0 +1,39 @@
+#!/usr/bin/env node
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createServer = createServer;
+const mcp_js_1 = require("@modelcontextprotocol/sdk/server/mcp.js");
+const sdk_1 = require("@tuteliq/sdk");
+const detection_js_1 = require("./tools/detection.js");
+const fraud_js_1 = require("./tools/fraud.js");
+const media_js_1 = require("./tools/media.js");
+const analysis_js_1 = require("./tools/analysis.js");
+const admin_js_1 = require("./tools/admin.js");
+const transport_js_1 = require("./transport.js");
+function createServer() {
+    const apiKey = process.env.TUTELIQ_API_KEY;
+    if (!apiKey) {
+        console.error('Error: TUTELIQ_API_KEY environment variable is required');
+        process.exit(1);
+    }
+    const client = new sdk_1.Tuteliq(apiKey);
+    const server = new mcp_js_1.McpServer({
+        name: 'tuteliq-mcp',
+        version: '3.0.0',
+    });
+    // Register all tool groups
+    (0, detection_js_1.registerDetectionTools)(server, client);
+    (0, fraud_js_1.registerFraudTools)(server, client);
+    (0, media_js_1.registerMediaTools)(server, client);
+    (0, analysis_js_1.registerAnalysisTools)(server, client);
+    (0, admin_js_1.registerAdminTools)(server, client);
+    return server;
+}
+// Direct execution: stdio mode
+if ((0, transport_js_1.getTransportMode)() === 'stdio') {
+    const server = createServer();
+    (0, transport_js_1.startStdio)(server).catch((error) => {
+        console.error('Fatal error:', error);
+        process.exit(1);
+    });
+}

package/dist/src/tools/admin.d.ts

@@ -0,0 +1,4 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { Tuteliq } from '@tuteliq/sdk';
+export declare function registerAdminTools(server: McpServer, client: Tuteliq): void;
+//# sourceMappingURL=admin.d.ts.map

package/dist/src/tools/admin.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../../../src/tools/admin.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,KAAK,EAAE,OAAO,EAAsG,MAAM,cAAc,CAAC;AAGhJ,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,OAAO,GAAG,IAAI,CAmU3E"}

package/dist/src/tools/admin.js

@@ -0,0 +1,206 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.registerAdminTools = registerAdminTools;
+const zod_1 = require("zod");
+const formatters_js_1 = require("../formatters.js");
+function registerAdminTools(server, client) {
+    // =========================================================================
+    // Webhook Management
+    // =========================================================================
+    server.tool('list_webhooks', 'List all webhooks configured for your account.', {}, async () => {
+        const result = await client.listWebhooks();
+        if (result.webhooks.length === 0) {
+            return { content: [{ type: 'text', text: 'No webhooks configured.' }] };
+        }
+        const lines = result.webhooks.map(w => `- ${w.is_active ? '\u{1F7E2}' : '\u26AA'} **${w.name}** \u2014 \`${w.url}\`\n  Events: ${w.events.join(', ')} _(${w.id})_`).join('\n');
+        return { content: [{ type: 'text', text: `## Webhooks\n\n${lines}` }] };
+    });
+    server.tool('create_webhook', 'Create a new webhook endpoint.', {
+        name: zod_1.z.string().describe('Display name for the webhook'),
+        url: zod_1.z.string().describe('HTTPS URL to receive webhook payloads'),
+        events: zod_1.z.array(zod_1.z.string()).describe('Event types to subscribe to'),
+    }, async ({ name, url, events }) => {
+        const result = await client.createWebhook({
+            name,
+            url,
+            events: events,
+        });
+        return { content: [{ type: 'text', text: `## \u2705 Webhook Created\n\n**ID:** ${result.id}\n**Name:** ${result.name}\n**URL:** ${result.url}\n**Events:** ${result.events.join(', ')}\n\n\u26A0\uFE0F **Secret (save this \u2014 shown only once):**\n\`${result.secret}\`` }] };
+    });
+    server.tool('update_webhook', 'Update an existing webhook configuration.', {
+        id: zod_1.z.string().describe('Webhook ID'),
+        name: zod_1.z.string().optional().describe('New display name'),
+        url: zod_1.z.string().optional().describe('New HTTPS URL'),
+        events: zod_1.z.array(zod_1.z.string()).optional().describe('New event subscriptions'),
+        is_active: zod_1.z.boolean().optional().describe('Enable or disable the webhook'),
+    }, async ({ id, name, url, events, is_active }) => {
+        const result = await client.updateWebhook(id, {
+            name,
+            url,
+            events: events,
+            isActive: is_active,
+        });
+        return { content: [{ type: 'text', text: `## \u2705 Webhook Updated\n\n**ID:** ${result.id}\n**Name:** ${result.name}\n**Active:** ${result.is_active ? '\u{1F7E2} Yes' : '\u26AA No'}` }] };
+    });
+    server.tool('delete_webhook', 'Permanently delete a webhook.', { id: zod_1.z.string().describe('Webhook ID to delete') }, async ({ id }) => {
+        await client.deleteWebhook(id);
+        return { content: [{ type: 'text', text: `## \u2705 Webhook Deleted\n\nWebhook \`${id}\` has been permanently deleted.` }] };
+    });
+    server.tool('test_webhook', 'Send a test payload to a webhook to verify it is working correctly.', { id: zod_1.z.string().describe('Webhook ID to test') }, async ({ id }) => {
+        const result = await client.testWebhook(id);
+        return { content: [{ type: 'text', text: `## ${result.success ? '\u2705' : '\u274C'} Webhook Test\n\n**Success:** ${result.success}\n**Status Code:** ${result.status_code}\n**Latency:** ${result.latency_ms}ms${result.error ? `\n**Error:** ${result.error}` : ''}` }] };
+    });
+    server.tool('regenerate_webhook_secret', 'Regenerate a webhook signing secret.', { id: zod_1.z.string().describe('Webhook ID') }, async ({ id }) => {
+        const result = await client.regenerateWebhookSecret(id);
+        return { content: [{ type: 'text', text: `## \u2705 Secret Regenerated\n\nThe old secret has been invalidated.\n\n\u26A0\uFE0F **New Secret (save this \u2014 shown only once):**\n\`${result.secret}\`` }] };
+    });
+    // =========================================================================
+    // Pricing
+    // =========================================================================
+    server.tool('get_pricing', 'Get available pricing plans for Tuteliq.', {}, async () => {
+        const result = await client.getPricing();
+        const lines = result.plans.map(p => `### ${p.name}\n**Price:** ${p.price}\n${p.features.map(f => `- ${f}`).join('\n')}`).join('\n\n');
+        return { content: [{ type: 'text', text: `## Tuteliq Pricing\n\n${lines}` }] };
+    });
+    server.tool('get_pricing_details', 'Get detailed pricing plans.', {}, async () => {
+        const result = await client.getPricingDetails();
+        const lines = result.plans.map(p => `### ${p.name}\n**Monthly:** ${p.price_monthly}/mo | **Yearly:** ${p.price_yearly}/mo\n**API Calls:** ${p.api_calls_per_month}/mo | **Rate Limit:** ${p.rate_limit}/min\n${p.features.map(f => `- ${f}`).join('\n')}`).join('\n\n');
+        return { content: [{ type: 'text', text: `## Tuteliq Pricing Details\n\n${lines}` }] };
+    });
+    // =========================================================================
+    // Usage & Billing
+    // =========================================================================
+    server.tool('get_usage_history', 'Get daily usage history for the past N days.', { days: zod_1.z.number().optional().describe('Number of days to retrieve (1-30, default: 7)') }, async ({ days }) => {
+        const result = await client.getUsageHistory(days);
+        if (result.days.length === 0) {
+            return { content: [{ type: 'text', text: 'No usage data available.' }] };
+        }
+        const lines = result.days.map(d => `| ${d.date} | ${d.total_requests} | ${d.success_requests} | ${d.error_requests} |`).join('\n');
+        return { content: [{ type: 'text', text: `## Usage History\n\n| Date | Total | Success | Errors |\n|------|-------|---------|--------|\n${lines}` }] };
+    });
+    server.tool('get_usage_by_tool', 'Get usage broken down by tool/endpoint for a specific date.', { date: zod_1.z.string().optional().describe('Date in YYYY-MM-DD format (default: today)') }, async ({ date }) => {
+        const result = await client.getUsageByTool(date);
+        const toolLines = Object.entries(result.tools).map(([tool, count]) => `- **${tool}:** ${count}`).join('\n');
+        const endpointLines = Object.entries(result.endpoints).map(([ep, count]) => `- **${ep}:** ${count}`).join('\n');
+        return { content: [{ type: 'text', text: `## Usage by Tool \u2014 ${result.date}\n\n### By Tool\n${toolLines || '_No data_'}\n\n### By Endpoint\n${endpointLines || '_No data_'}` }] };
+    });
+    server.tool('get_usage_monthly', 'Get monthly usage summary.', {}, async () => {
+        const result = await client.getUsageMonthly();
+        const text = `## Monthly Usage
+
+**Tier:** ${result.tier_display_name}
+**Billing Period:** ${result.billing.current_period_start} \u2192 ${result.billing.current_period_end} (${result.billing.days_remaining} days left)
+
+### Usage
+**Used:** ${result.usage.used} / ${result.usage.limit} (${result.usage.percent_used.toFixed(1)}%)
+**Remaining:** ${result.usage.remaining}
+**Rate Limit:** ${result.rate_limit.requests_per_minute}/min
+
+${result.recommendations ? `### Recommendation\n${result.recommendations.reason}\n**Suggested Tier:** ${result.recommendations.suggested_tier}\n[Upgrade](${result.recommendations.upgrade_url})` : ''}`;
+        return { content: [{ type: 'text', text }] };
+    });
+    // =========================================================================
+    // GDPR Account
+    // =========================================================================
+    server.tool('delete_account_data', 'Delete all account data (GDPR Right to Erasure).', {}, async () => {
+        const result = await client.deleteAccountData();
+        return { content: [{ type: 'text', text: `## \u2705 Account Data Deleted\n\n**Message:** ${result.message}\n**Records Deleted:** ${result.deleted_count}` }] };
+    });
+    server.tool('export_account_data', 'Export all account data as JSON (GDPR Data Portability).', {}, async () => {
+        const result = await client.exportAccountData();
+        const collections = Object.keys(result.data).join(', ');
+        return { content: [{ type: 'text', text: `## \u{1F4E6} Account Data Export\n\n**User ID:** ${result.userId}\n**Exported At:** ${result.exportedAt}\n**Collections:** ${collections}\n\n\`\`\`json\n${JSON.stringify(result.data, null, 2).slice(0, 5000)}\n\`\`\`` }] };
+    });
+    const consentTypeEnum = zod_1.z.enum(['data_processing', 'analytics', 'marketing', 'third_party_sharing', 'child_safety_monitoring']);
+    server.tool('record_consent', 'Record user consent for data processing (GDPR Article 7).', {
+        consent_type: consentTypeEnum.describe('Type of consent to record'),
+        version: zod_1.z.string().describe('Policy version the user is consenting to'),
+    }, async ({ consent_type, version }) => {
+        const result = await client.recordConsent({ consent_type: consent_type, version });
+        return { content: [{ type: 'text', text: `## \u2705 Consent Recorded\n\n**Type:** ${result.consent.consent_type}\n**Status:** ${result.consent.status}\n**Version:** ${result.consent.version}` }] };
+    });
+    server.tool('get_consent_status', 'Get current consent status.', { type: consentTypeEnum.optional().describe('Optional: filter by consent type') }, async ({ type }) => {
+        const result = await client.getConsentStatus(type);
+        if (result.consents.length === 0) {
+            return { content: [{ type: 'text', text: 'No consent records found.' }] };
+        }
+        const lines = result.consents.map(c => `- **${c.consent_type}**: ${c.status === 'granted' ? '\u2705' : '\u274C'} ${c.status} (v${c.version})`).join('\n');
+        return { content: [{ type: 'text', text: `## Consent Status\n\n${lines}` }] };
+    });
+    server.tool('withdraw_consent', 'Withdraw a previously granted consent.', { type: consentTypeEnum.describe('Type of consent to withdraw') }, async ({ type }) => {
+        const result = await client.withdrawConsent(type);
+        return { content: [{ type: 'text', text: `## \u26A0\uFE0F Consent Withdrawn\n\n**Type:** ${result.consent.consent_type}\n**Status:** ${result.consent.status}` }] };
+    });
+    server.tool('rectify_data', 'Rectify (correct) user data (GDPR Right to Rectification).', {
+        collection: zod_1.z.string().describe('Firestore collection name'),
+        document_id: zod_1.z.string().describe('Document ID to rectify'),
+        fields: zod_1.z.record(zod_1.z.string(), zod_1.z.unknown()).describe('Fields to update'),
+    }, async ({ collection, document_id, fields }) => {
+        const result = await client.rectifyData({ collection, document_id, fields: fields });
+        return { content: [{ type: 'text', text: `## \u2705 Data Rectified\n\n**Message:** ${result.message}\n**Updated Fields:** ${result.updated_fields.join(', ')}` }] };
+    });
+    server.tool('get_audit_logs', 'Get audit trail of data operations.', {
+        action: zod_1.z.enum(['data_access', 'data_export', 'data_deletion', 'data_rectification', 'consent_granted', 'consent_withdrawn', 'breach_notification']).optional().describe('Filter by action type'),
+        limit: zod_1.z.number().optional().describe('Maximum number of results'),
+    }, async ({ action, limit }) => {
+        const result = await client.getAuditLogs({ action: action, limit });
+        if (result.audit_logs.length === 0) {
+            return { content: [{ type: 'text', text: 'No audit logs found.' }] };
+        }
+        const logLines = result.audit_logs.map(l => `- \`${l.created_at}\` **${l.action}** _(${l.id})_`).join('\n');
+        return { content: [{ type: 'text', text: `## \u{1F4CB} Audit Logs\n\n${logLines}` }] };
+    });
+    // =========================================================================
+    // Breach Management
+    // =========================================================================
+    server.tool('log_breach', 'Log a new data breach (GDPR Article 33/34).', {
+        title: zod_1.z.string().describe('Brief title of the breach'),
+        description: zod_1.z.string().describe('Detailed description'),
+        severity: zod_1.z.enum(['low', 'medium', 'high', 'critical']).describe('Breach severity'),
+        affected_user_ids: zod_1.z.array(zod_1.z.string()).describe('List of affected user IDs'),
+        data_categories: zod_1.z.array(zod_1.z.string()).describe('Categories of data affected'),
+        reported_by: zod_1.z.string().describe('Who reported the breach'),
+    }, async ({ title, description, severity, affected_user_ids, data_categories, reported_by }) => {
+        const result = await client.logBreach({
+            title,
+            description,
+            severity: severity,
+            affected_user_ids,
+            data_categories,
+            reported_by,
+        });
+        const b = result.breach;
+        return { content: [{ type: 'text', text: `## \u26A0\uFE0F Breach Logged\n\n**ID:** ${b.id}\n**Title:** ${b.title}\n**Severity:** ${formatters_js_1.severityEmoji[b.severity] || '\u26AA'} ${b.severity}\n**Status:** ${b.status}\n**Notification Deadline:** ${b.notification_deadline}\n**Affected Users:** ${b.affected_user_ids.length}\n**Data Categories:** ${b.data_categories.join(', ')}` }] };
+    });
+    const breachStatusEnum = zod_1.z.enum(['detected', 'investigating', 'contained', 'reported', 'resolved']);
+    server.tool('list_breaches', 'List all data breaches.', {
+        status: breachStatusEnum.optional().describe('Filter by status'),
+        limit: zod_1.z.number().optional().describe('Maximum number of results'),
+    }, async ({ status, limit }) => {
+        const result = await client.listBreaches({ status: status, limit });
+        if (result.breaches.length === 0) {
+            return { content: [{ type: 'text', text: 'No breaches found.' }] };
+        }
+        const breachLines = result.breaches.map(b => `- ${formatters_js_1.severityEmoji[b.severity] || '\u26AA'} **${b.title}** \u2014 ${b.status} _(${b.id})_`).join('\n');
+        return { content: [{ type: 'text', text: `## Data Breaches\n\n${breachLines}` }] };
+    });
+    server.tool('get_breach', 'Get details of a specific data breach.', { id: zod_1.z.string().describe('Breach ID') }, async ({ id }) => {
+        const result = await client.getBreach(id);
+        const b = result.breach;
+        return { content: [{ type: 'text', text: `## Breach Details\n\n**ID:** ${b.id}\n**Title:** ${b.title}\n**Severity:** ${formatters_js_1.severityEmoji[b.severity] || '\u26AA'} ${b.severity}\n**Status:** ${b.status}\n**Notification:** ${b.notification_status}\n**Reported By:** ${b.reported_by}\n**Deadline:** ${b.notification_deadline}\n**Created:** ${b.created_at}\n**Updated:** ${b.updated_at}\n\n### Description\n${b.description}\n\n**Affected Users:** ${b.affected_user_ids.join(', ')}\n**Data Categories:** ${b.data_categories.join(', ')}` }] };
+    });
+    server.tool('update_breach_status', 'Update a breach status and notification progress.', {
+        id: zod_1.z.string().describe('Breach ID'),
+        status: breachStatusEnum.describe('New breach status'),
+        notification_status: zod_1.z.enum(['pending', 'users_notified', 'dpa_notified', 'completed']).optional().describe('Notification progress'),
+        notes: zod_1.z.string().optional().describe('Additional notes'),
+    }, async ({ id, status, notification_status, notes }) => {
+        const result = await client.updateBreachStatus(id, {
+            status: status,
+            notification_status: notification_status,
+            notes,
+        });
+        const b = result.breach;
+        return { content: [{ type: 'text', text: `## \u2705 Breach Updated\n\n**ID:** ${b.id}\n**Status:** ${b.status}\n**Notification:** ${b.notification_status}` }] };
+    });
+}

package/dist/src/tools/analysis.d.ts

@@ -0,0 +1,4 @@
+import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import type { Tuteliq } from '@tuteliq/sdk';
+export declare function registerAnalysisTools(server: McpServer, client: Tuteliq): void;
+//# sourceMappingURL=analysis.d.ts.map

package/dist/src/tools/analysis.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"analysis.d.ts","sourceRoot":"","sources":["../../../src/tools/analysis.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,OAAO,EAAgB,MAAM,cAAc,CAAC;AAc1D,wBAAgB,qBAAqB,CAAC,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,OAAO,GAAG,IAAI,CA0M9E"}