@vistal/mcp 0.1.0

package/README.md

@@ -0,0 +1,111 @@
+# @vistal/mcp
+
+**Point it at a database URL. Claude talks to your data. No SQL, no code.**
+
+A zero-config [MCP](https://modelcontextprotocol.io) server for any database
+[vistal](https://github.com/vista-libs/vista) supports through Prisma
+(PostgreSQL, MySQL, SQLite, SQL Server). Give it a `DATABASE_URL` and it:
+
+1. introspects your live schema (`prisma db pull`) — no `schema.prisma` needed,
+2. generates the typed tools an agent uses to query it,
+3. serves them over MCP — **read-only by default**, scoped by your policies.
+
+No SQL ever reaches the model, and it can only do what the policy allows.
+
+## Quick start (Claude Code)
+
+Add it to your `.mcp.json` — nothing to install or write:
+
+```json
+{
+  "mcpServers": {
+    "db": {
+      "command": "npx",
+      "args": ["-y", "@vistal/mcp"],
+      "env": { "DATABASE_URL": "postgresql://user:pass@localhost:5432/mydb" }
+    }
+  }
+}
+```
+
+That's it. Claude can now discover your tables (`list_resources`,
+`describe_resource`) and read them (`query`, `get`, `aggregate`) — all
+policy-gated, all without writing SQL.
+
+You can also run it directly:
+
+```bash
+DATABASE_URL="postgresql://…" npx @vistal/mcp
+# or pass the URL as the first argument
+npx @vistal/mcp "postgresql://…"
+```
+
+## Defaults & safety
+
+- **Read-only.** Out of the box only `query` / `get` / `aggregate` are exposed —
+  never `create` / `update` / `delete`. Writes require a policy file (below).
+- **All tables, opt-out.** Every table is exposed; narrow it with allow/deny lists.
+- **No SQL, no leaks.** The model calls typed tools; vistal turns them into scoped
+  queries server-side. Fields marked sensitive in your schema never reach it.
+
+## Configuration
+
+All via environment variables:
+
+| Variable | Description |
+| --- | --- |
+| `DATABASE_URL` | Connection string (required; or pass as the first arg). |
+| `VISTAL_PROVIDER` | `postgresql` \| `mysql` \| `sqlite` \| `sqlserver` \| `mongodb`. Inferred from the URL when omitted. |
+| `VISTAL_TABLES` | Comma-separated allow-list. Only these tables are exposed. |
+| `VISTAL_EXCLUDE` | Comma-separated deny-list, applied after the allow-list. |
+| `VISTAL_POLICY_FILE` | Path to a policy module that takes full control (enables writes — see below). |
+| `VISTAL_CONTEXT` | JSON policy context passed to your policy file. Defaults to `{}`. |
+| `VISTAL_HTTP_PORT` | Serve over Streamable HTTP on this port instead of stdio. |
+
+### Enabling writes / richer policies
+
+For anything beyond read-only, point `VISTAL_POLICY_FILE` at a CommonJS module
+that receives the configured vistal instance and declares
+[policies](https://github.com/vista-libs/vista#policy-reference). It takes full
+control of access (the allow/deny lists are then ignored):
+
+```js
+// db-policy.cjs
+module.exports = (vistal) => {
+  vistal.policy("orders", () => ({ read: true, write: true, delete: false }))
+  vistal.policy("users", () => ({ read: true, write: false, delete: false }))
+}
+```
+
+```json
+{ "env": {
+  "DATABASE_URL": "postgresql://…",
+  "VISTAL_POLICY_FILE": "./db-policy.cjs"
+} }
+```
+
+Use `VISTAL_CONTEXT` to feed runtime context (tenant, role, …) your policies read:
+`"VISTAL_CONTEXT": "{\"tenant\":{\"id\":\"acme\"}}"`.
+
+## How it works
+
+```
+Claude Code ─MCP─▶ @vistal/mcp
+                     │  prisma db pull + generate  → live schema + typed client
+                     │  @vistal/core               → policy engine (read-only default)
+                     ▼
+                  @vistal/prisma → PrismaClient → your database
+```
+
+The generated client lives in a temp directory and is removed on shutdown; your
+project is never modified. Requires network access to the database and the
+ability to run the bundled Prisma CLI.
+
+## Need policies-in-code instead?
+
+If you'd rather define your adapter and policies yourself and embed an MCP server
+in your own app, use [`@vistal/mcp-sdk`](../mcp-sdk/README.md) directly.
+
+## License
+
+MIT

package/dist/cli.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":""}

package/dist/cli.js

@@ -0,0 +1,21 @@
+#!/usr/bin/env node
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const config_1 = require("./config");
+const index_1 = require("./index");
+async function main() {
+    const config = (0, config_1.configFromEnv)(process.env, process.argv.slice(2));
+    const server = await (0, index_1.startVistalMcpServer)(config);
+    const shutdown = async () => {
+        await server.stop();
+        process.exit(0);
+    };
+    process.on("SIGINT", shutdown);
+    process.on("SIGTERM", shutdown);
+}
+main().catch((err) => {
+    // Never write errors to stdout — it's the MCP transport.
+    process.stderr.write(`[vistal] ${err instanceof Error ? err.message : String(err)}\n`);
+    process.exit(1);
+});
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";;;AACA,qCAAwC;AACxC,mCAA8C;AAE9C,KAAK,UAAU,IAAI;IACjB,MAAM,MAAM,GAAG,IAAA,sBAAa,EAAC,OAAO,CAAC,GAAG,EAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAA;IAChE,MAAM,MAAM,GAAG,MAAM,IAAA,4BAAoB,EAAC,MAAM,CAAC,CAAA;IAEjD,MAAM,QAAQ,GAAG,KAAK,IAAI,EAAE;QAC1B,MAAM,MAAM,CAAC,IAAI,EAAE,CAAA;QACnB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;IACjB,CAAC,CAAA;IACD,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAA;IAC9B,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAA;AACjC,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,GAAY,EAAE,EAAE;IAC5B,yDAAyD;IACzD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,YAAY,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;IACtF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAA;AACjB,CAAC,CAAC,CAAA"}

package/dist/config.d.ts

@@ -0,0 +1,24 @@
+export type Provider = "postgresql" | "mysql" | "sqlite" | "sqlserver" | "mongodb";
+export interface ServerConfig {
+    /** Database connection string. */
+    databaseUrl: string;
+    /** Prisma datasource provider. Inferred from the URL when omitted. */
+    provider?: Provider;
+    /** Path to a policy module that takes full control of access (optional). */
+    policyFile?: string;
+    /** Allow-list of resource (table) names. When set, only these are exposed. */
+    tables?: string[];
+    /** Deny-list of resource (table) names, applied after the allow-list. */
+    exclude?: string[];
+    /** Policy context object (JSON). Defaults to `{}`. */
+    context?: unknown;
+    /** When set, serve over Streamable HTTP on this port instead of stdio. */
+    httpPort?: number;
+}
+export declare function inferProvider(url: string): Provider;
+/**
+ * Build a {@link ServerConfig} from environment variables and CLI args.
+ * The connection string comes from `DATABASE_URL` or the first positional arg.
+ */
+export declare function configFromEnv(env: NodeJS.ProcessEnv, argv: string[]): ServerConfig;
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,QAAQ,GAAG,YAAY,GAAG,OAAO,GAAG,QAAQ,GAAG,WAAW,GAAG,SAAS,CAAA;AAElF,MAAM,WAAW,YAAY;IAC3B,kCAAkC;IAClC,WAAW,EAAE,MAAM,CAAA;IACnB,sEAAsE;IACtE,QAAQ,CAAC,EAAE,QAAQ,CAAA;IACnB,4EAA4E;IAC5E,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,8EAA8E;IAC9E,MAAM,CAAC,EAAE,MAAM,EAAE,CAAA;IACjB,yEAAyE;IACzE,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;IAClB,sDAAsD;IACtD,OAAO,CAAC,EAAE,OAAO,CAAA;IACjB,0EAA0E;IAC1E,QAAQ,CAAC,EAAE,MAAM,CAAA;CAClB;AAUD,wBAAgB,aAAa,CAAC,GAAG,EAAE,MAAM,GAAG,QAAQ,CAQnD;AAWD;;;GAGG;AACH,wBAAgB,aAAa,CAAC,GAAG,EAAE,MAAM,CAAC,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,YAAY,CAoClF"}

package/dist/config.js

@@ -0,0 +1,65 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.inferProvider = inferProvider;
+exports.configFromEnv = configFromEnv;
+const PROVIDER_PATTERNS = [
+    [/^postgres(ql)?:\/\//i, "postgresql"],
+    [/^mysql:\/\//i, "mysql"],
+    [/^sqlserver:\/\//i, "sqlserver"],
+    [/^(file:|sqlite:)/i, "sqlite"],
+    [/^mongodb(\+srv)?:\/\//i, "mongodb"],
+];
+function inferProvider(url) {
+    for (const [pattern, provider] of PROVIDER_PATTERNS) {
+        if (pattern.test(url))
+            return provider;
+    }
+    throw new Error(`Could not infer the database provider from the connection string. ` +
+        `Set VISTAL_PROVIDER to one of: postgresql, mysql, sqlite, sqlserver, mongodb.`);
+}
+function csv(value) {
+    if (!value)
+        return undefined;
+    const items = value
+        .split(",")
+        .map((s) => s.trim())
+        .filter(Boolean);
+    return items.length > 0 ? items : undefined;
+}
+/**
+ * Build a {@link ServerConfig} from environment variables and CLI args.
+ * The connection string comes from `DATABASE_URL` or the first positional arg.
+ */
+function configFromEnv(env, argv) {
+    const positional = argv.find((a) => !a.startsWith("-"));
+    const databaseUrl = env.DATABASE_URL ?? positional;
+    if (!databaseUrl) {
+        throw new Error("No database connection string. Set DATABASE_URL (or pass it as the first argument).");
+    }
+    const provider = env.VISTAL_PROVIDER
+        ? env.VISTAL_PROVIDER
+        : inferProvider(databaseUrl);
+    let context = {};
+    if (env.VISTAL_CONTEXT) {
+        try {
+            context = JSON.parse(env.VISTAL_CONTEXT);
+        }
+        catch {
+            throw new Error("VISTAL_CONTEXT must be valid JSON.");
+        }
+    }
+    const httpPort = env.VISTAL_HTTP_PORT ? Number(env.VISTAL_HTTP_PORT) : undefined;
+    if (httpPort !== undefined && Number.isNaN(httpPort)) {
+        throw new Error("VISTAL_HTTP_PORT must be a number.");
+    }
+    return {
+        databaseUrl,
+        provider,
+        policyFile: env.VISTAL_POLICY_FILE,
+        tables: csv(env.VISTAL_TABLES),
+        exclude: csv(env.VISTAL_EXCLUDE),
+        context,
+        httpPort,
+    };
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":";;AA2BA,sCAQC;AAeD,sCAoCC;AAnED,MAAM,iBAAiB,GAAyB;IAC9C,CAAC,sBAAsB,EAAE,YAAY,CAAC;IACtC,CAAC,cAAc,EAAE,OAAO,CAAC;IACzB,CAAC,kBAAkB,EAAE,WAAW,CAAC;IACjC,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,wBAAwB,EAAE,SAAS,CAAC;CACtC,CAAA;AAED,SAAgB,aAAa,CAAC,GAAW;IACvC,KAAK,MAAM,CAAC,OAAO,EAAE,QAAQ,CAAC,IAAI,iBAAiB,EAAE,CAAC;QACpD,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,OAAO,QAAQ,CAAA;IACxC,CAAC;IACD,MAAM,IAAI,KAAK,CACb,oEAAoE;QAClE,+EAA+E,CAClF,CAAA;AACH,CAAC;AAED,SAAS,GAAG,CAAC,KAAyB;IACpC,IAAI,CAAC,KAAK;QAAE,OAAO,SAAS,CAAA;IAC5B,MAAM,KAAK,GAAG,KAAK;SAChB,KAAK,CAAC,GAAG,CAAC;SACV,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;SACpB,MAAM,CAAC,OAAO,CAAC,CAAA;IAClB,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAA;AAC7C,CAAC;AAED;;;GAGG;AACH,SAAgB,aAAa,CAAC,GAAsB,EAAE,IAAc;IAClE,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAA;IACvD,MAAM,WAAW,GAAG,GAAG,CAAC,YAAY,IAAI,UAAU,CAAA;IAClD,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,qFAAqF,CACtF,CAAA;IACH,CAAC;IAED,MAAM,QAAQ,GAAG,GAAG,CAAC,eAAe;QAClC,CAAC,CAAE,GAAG,CAAC,eAA4B;QACnC,CAAC,CAAC,aAAa,CAAC,WAAW,CAAC,CAAA;IAE9B,IAAI,OAAO,GAAY,EAAE,CAAA;IACzB,IAAI,GAAG,CAAC,cAAc,EAAE,CAAC;QACvB,IAAI,CAAC;YACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC,CAAA;QAC1C,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;QACvD,CAAC;IACH,CAAC;IAED,MAAM,QAAQ,GAAG,GAAG,CAAC,gBAAgB,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;IAChF,IAAI,QAAQ,KAAK,SAAS,IAAI,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC;QACrD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAA;IACvD,CAAC;IAED,OAAO;QACL,WAAW;QACX,QAAQ;QACR,UAAU,EAAE,GAAG,CAAC,kBAAkB;QAClC,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,aAAa,CAAC;QAC9B,OAAO,EAAE,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC;QAChC,OAAO;QACP,QAAQ;KACT,CAAA;AACH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,16 @@
+import type { ServerConfig } from "./config";
+export type { ServerConfig, Provider } from "./config";
+export { configFromEnv, inferProvider } from "./config";
+export interface RunningServer {
+    /** Disconnect the database and remove the generated temp client. */
+    stop: () => Promise<void>;
+}
+/**
+ * Boot a zero-config vistal MCP server against a live database: introspect the
+ * schema, build a policy-gated vistal instance (read-only by default), and serve
+ * it over stdio (or Streamable HTTP when `httpPort` is set).
+ *
+ * All progress is logged to stderr so stdout stays a clean MCP channel.
+ */
+export declare function startVistalMcpServer(config: ServerConfig): Promise<RunningServer>;
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,UAAU,CAAA;AAM5C,YAAY,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,UAAU,CAAA;AACtD,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,UAAU,CAAA;AAEvD,MAAM,WAAW,aAAa;IAC5B,oEAAoE;IACpE,IAAI,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAA;CAC1B;AAED;;;;;;GAMG;AACH,wBAAsB,oBAAoB,CAAC,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,aAAa,CAAC,CAuCvF"}

package/dist/index.js

@@ -0,0 +1,52 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.inferProvider = exports.configFromEnv = void 0;
+exports.startVistalMcpServer = startVistalMcpServer;
+const prisma_1 = require("@vistal/prisma");
+const mcp_sdk_1 = require("@vistal/mcp-sdk");
+const prepare_1 = require("./prepare");
+const policy_1 = require("./policy");
+var config_1 = require("./config");
+Object.defineProperty(exports, "configFromEnv", { enumerable: true, get: function () { return config_1.configFromEnv; } });
+Object.defineProperty(exports, "inferProvider", { enumerable: true, get: function () { return config_1.inferProvider; } });
+/**
+ * Boot a zero-config vistal MCP server against a live database: introspect the
+ * schema, build a policy-gated vistal instance (read-only by default), and serve
+ * it over stdio (or Streamable HTTP when `httpPort` is set).
+ *
+ * All progress is logged to stderr so stdout stays a clean MCP channel.
+ */
+async function startVistalMcpServer(config) {
+    const provider = config.provider ?? "postgresql";
+    const prepared = await (0, prepare_1.prepareDatabase)(config.databaseUrl, provider);
+    const vistal = (0, prisma_1.createVistal)(prepared.prisma, {
+        schemaPath: prepared.schemaPath,
+        defaultPolicy: "deny-all",
+    });
+    const { resources } = await (0, policy_1.applyAccess)(vistal, config);
+    process.stderr.write(`[vistal] Exposing ${resources.length} resource(s)` +
+        (config.policyFile ? " (policy file in control)" : " (read-only)") +
+        `: ${resources.join(", ") || "(none)"}\n`);
+    const options = {
+        context: () => config.context ?? {},
+        toolOptions: { resources },
+    };
+    if (config.httpPort !== undefined) {
+        await (0, mcp_sdk_1.startHttpServer)(vistal, { ...options, port: config.httpPort });
+        process.stderr.write(`[vistal] MCP server listening on http://localhost:${config.httpPort}/mcp\n`);
+    }
+    else {
+        await (0, mcp_sdk_1.startStdioServer)(vistal, options);
+        process.stderr.write("[vistal] MCP server ready on stdio.\n");
+    }
+    const stop = async () => {
+        try {
+            await prepared.prisma.$disconnect();
+        }
+        finally {
+            prepared.cleanup();
+        }
+    };
+    return { stop };
+}
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AA0BA,oDAuCC;AAhED,2CAA6C;AAC7C,6CAAmE;AACnE,uCAA2C;AAC3C,qCAAsC;AAQtC,mCAAuD;AAA9C,uGAAA,aAAa,OAAA;AAAE,uGAAA,aAAa,OAAA;AAOrC;;;;;;GAMG;AACI,KAAK,UAAU,oBAAoB,CAAC,MAAoB;IAC7D,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,YAAY,CAAA;IAChD,MAAM,QAAQ,GAAG,MAAM,IAAA,yBAAe,EAAC,MAAM,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAA;IAEpE,MAAM,MAAM,GAAG,IAAA,qBAAY,EAAoB,QAAQ,CAAC,MAAM,EAAE;QAC9D,UAAU,EAAE,QAAQ,CAAC,UAAU;QAC/B,aAAa,EAAE,UAAU;KAC1B,CAAC,CAAA;IAEF,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,IAAA,oBAAW,EAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IACvD,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,qBAAqB,SAAS,CAAC,MAAM,cAAc;QACjD,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC,2BAA2B,CAAC,CAAC,CAAC,cAAc,CAAC;QAClE,KAAK,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,QAAQ,IAAI,CAC5C,CAAA;IAED,MAAM,OAAO,GAAG;QACd,OAAO,EAAE,GAAQ,EAAE,CAAE,MAAM,CAAC,OAAe,IAAI,EAAE;QACjD,WAAW,EAAE,EAAE,SAAS,EAAE;KAC3B,CAAA;IAED,IAAI,MAAM,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;QAClC,MAAM,IAAA,yBAAe,EAAC,MAAM,EAAE,EAAE,GAAG,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAA;QACpE,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,qDAAqD,MAAM,CAAC,QAAQ,QAAQ,CAC7E,CAAA;IACH,CAAC;SAAM,CAAC;QACN,MAAM,IAAA,0BAAgB,EAAC,MAAM,EAAE,OAAO,CAAC,CAAA;QACvC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,uCAAuC,CAAC,CAAA;IAC/D,CAAC;IAED,MAAM,IAAI,GAAG,KAAK,IAAI,EAAE;QACtB,IAAI,CAAC;YACH,MAAM,QAAQ,CAAC,MAAM,CAAC,WAAW,EAAE,CAAA;QACrC,CAAC;gBAAS,CAAC;YACT,QAAQ,CAAC,OAAO,EAAE,CAAA;QACpB,CAAC;IACH,CAAC,CAAA;IACD,OAAO,EAAE,IAAI,EAAE,CAAA;AACjB,CAAC"}

package/dist/policy.d.ts

@@ -0,0 +1,14 @@
+import type { Vistal } from "@vistal/core";
+import type { ServerConfig } from "./config";
+type AnyVistal = Vistal<any, any>;
+/**
+ * Apply access rules to the vistal instance and return the set of resources to
+ * expose as tools. When a policy file is supplied it takes full control;
+ * otherwise the default is read-only (query/get/aggregate, never write/delete),
+ * scoped by the optional table allow/deny lists.
+ */
+export declare function applyAccess(vistal: AnyVistal, config: ServerConfig): Promise<{
+    resources: string[];
+}>;
+export {};
+//# sourceMappingURL=policy.d.ts.map

package/dist/policy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy.d.ts","sourceRoot":"","sources":["../src/policy.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,cAAc,CAAA;AAC1C,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,UAAU,CAAA;AAG5C,KAAK,SAAS,GAAG,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,CAAA;AA4BjC;;;;;GAKG;AACH,wBAAsB,WAAW,CAC/B,MAAM,EAAE,SAAS,EACjB,MAAM,EAAE,YAAY,GACnB,OAAO,CAAC;IAAE,SAAS,EAAE,MAAM,EAAE,CAAA;CAAE,CAAC,CA2BlC"}

package/dist/policy.js

@@ -0,0 +1,44 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.applyAccess = applyAccess;
+const node_path_1 = require("node:path");
+function loadPolicyFile(path, vistal) {
+    // eslint-disable-next-line @typescript-eslint/no-var-requires
+    const mod = require((0, node_path_1.resolve)(path));
+    const fn = typeof mod === "function" ? mod : (mod.default ?? mod.applyPolicies);
+    if (typeof fn !== "function") {
+        throw new Error(`Policy file "${path}" must export a function (default export or \`applyPolicies\`).`);
+    }
+    fn(vistal);
+}
+/**
+ * Apply access rules to the vistal instance and return the set of resources to
+ * expose as tools. When a policy file is supplied it takes full control;
+ * otherwise the default is read-only (query/get/aggregate, never write/delete),
+ * scoped by the optional table allow/deny lists.
+ */
+async function applyAccess(vistal, config) {
+    const all = await vistal.resources();
+    if (config.policyFile) {
+        loadPolicyFile(config.policyFile, vistal);
+        // The policy file owns access; expose everything it permits (vistal suppresses
+        // tools for resources it denies). Allow/deny lists are ignored in this mode.
+        return { resources: all };
+    }
+    // Default: read-only everywhere.
+    vistal.policy("*", () => ({ read: true, aggregate: true, write: false, delete: false }));
+    // Table scoping: allow-list first (if given), then deny-list.
+    let allowed = config.tables ? all.filter((t) => config.tables.includes(t)) : all;
+    if (config.exclude)
+        allowed = allowed.filter((t) => !config.exclude.includes(t));
+    // Authoritatively deny everything not allowed, so a model can't reach an
+    // excluded table even by passing its name to a consolidated verb.
+    const allowedSet = new Set(allowed);
+    for (const name of all) {
+        if (!allowedSet.has(name)) {
+            vistal.policy(name, () => ({ read: false, write: false, delete: false }));
+        }
+    }
+    return { resources: allowed };
+}
+//# sourceMappingURL=policy.js.map

package/dist/policy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy.js","sourceRoot":"","sources":["../src/policy.ts"],"names":[],"mappings":";;AAuCA,kCA8BC;AArED,yCAAmC;AAqBnC,SAAS,cAAc,CAAC,IAAY,EAAE,MAAiB;IACrD,8DAA8D;IAC9D,MAAM,GAAG,GAAG,OAAO,CAAC,IAAA,mBAAO,EAAC,IAAI,CAAC,CAAiB,CAAA;IAClD,MAAM,EAAE,GAAG,OAAO,GAAG,KAAK,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,aAAa,CAAC,CAAA;IAC/E,IAAI,OAAO,EAAE,KAAK,UAAU,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CACb,gBAAgB,IAAI,iEAAiE,CACtF,CAAA;IACH,CAAC;IACD,EAAE,CAAC,MAAM,CAAC,CAAA;AACZ,CAAC;AAED;;;;;GAKG;AACI,KAAK,UAAU,WAAW,CAC/B,MAAiB,EACjB,MAAoB;IAEpB,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,SAAS,EAAE,CAAA;IAEpC,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,cAAc,CAAC,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,CAAA;QACzC,+EAA+E;QAC/E,6EAA6E;QAC7E,OAAO,EAAE,SAAS,EAAE,GAAG,EAAE,CAAA;IAC3B,CAAC;IAED,iCAAiC;IACjC,MAAM,CAAC,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC,CAAA;IAExF,8DAA8D;IAC9D,IAAI,OAAO,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,MAAM,CAAC,MAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAA;IACzF,IAAI,MAAM,CAAC,OAAO;QAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,MAAM,CAAC,OAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAA;IAEzF,yEAAyE;IACzE,kEAAkE;IAClE,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,CAAA;IACnC,KAAK,MAAM,IAAI,IAAI,GAAG,EAAE,CAAC;QACvB,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1B,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC,CAAA;QAC3E,CAAC;IACH,CAAC;IAED,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,CAAA;AAC/B,CAAC"}

package/dist/prepare.d.ts

@@ -0,0 +1,17 @@
+import type { PrismaClient } from "@prisma/client";
+import type { Provider } from "./config";
+export interface PreparedDatabase {
+    prisma: PrismaClient;
+    schemaPath: string;
+    /** Remove the generated client + schema temp dir. */
+    cleanup: () => void;
+}
+/**
+ * Introspect a live database into a throwaway Prisma schema + client, returning
+ * a ready `PrismaClient`. This is what makes the server "zero-config": no
+ * `schema.prisma` and no generated client need to exist ahead of time.
+ *
+ * Diagnostics are written to stderr so stdout stays clean for the MCP transport.
+ */
+export declare function prepareDatabase(databaseUrl: string, provider: Provider): Promise<PreparedDatabase>;
+//# sourceMappingURL=prepare.d.ts.map

package/dist/prepare.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prepare.d.ts","sourceRoot":"","sources":["../src/prepare.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAA;AAClD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,UAAU,CAAA;AAWxC,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,YAAY,CAAA;IACpB,UAAU,EAAE,MAAM,CAAA;IAClB,qDAAqD;IACrD,OAAO,EAAE,MAAM,IAAI,CAAA;CACpB;AAqBD;;;;;;GAMG;AACH,wBAAsB,eAAe,CACnC,WAAW,EAAE,MAAM,EACnB,QAAQ,EAAE,QAAQ,GACjB,OAAO,CAAC,gBAAgB,CAAC,CA4C3B"}

package/dist/prepare.js

@@ -0,0 +1,79 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.prepareDatabase = prepareDatabase;
+const node_child_process_1 = require("node:child_process");
+const node_fs_1 = require("node:fs");
+const node_path_1 = require("node:path");
+// The node_modules directory that holds @prisma/client. We generate the throwaway
+// client *inside* it so the generated runtime resolves @prisma/client normally —
+// generating into an unrelated temp dir makes Prisma walk up to "/", fail to find
+// the installed prisma, and attempt a detached auto-install.
+function clientBaseDir() {
+    const pkg = require.resolve("@prisma/client/package.json");
+    return (0, node_path_1.dirname)((0, node_path_1.dirname)((0, node_path_1.dirname)(pkg))); // .../node_modules/@prisma/client/package.json → .../node_modules
+}
+// Resolve the locally-installed Prisma CLI entrypoint so we can run it with the
+// current node binary — more reliable than relying on `npx` resolution.
+function resolvePrismaCli() {
+    const pkgJsonPath = require.resolve("prisma/package.json");
+    const pkg = require("prisma/package.json");
+    const binRel = typeof pkg.bin === "string" ? pkg.bin : pkg.bin?.prisma;
+    if (!binRel)
+        throw new Error("Could not locate the Prisma CLI entrypoint.");
+    return (0, node_path_1.join)((0, node_path_1.dirname)(pkgJsonPath), binRel);
+}
+// Run a Prisma CLI command. Child stdout is routed to *our* stderr so it never
+// pollutes the MCP stdio channel (which speaks JSON-RPC on stdout).
+function runPrisma(cliPath, args, env) {
+    (0, node_child_process_1.execFileSync)(process.execPath, [cliPath, ...args], {
+        env,
+        stdio: ["ignore", 2, 2],
+    });
+}
+/**
+ * Introspect a live database into a throwaway Prisma schema + client, returning
+ * a ready `PrismaClient`. This is what makes the server "zero-config": no
+ * `schema.prisma` and no generated client need to exist ahead of time.
+ *
+ * Diagnostics are written to stderr so stdout stays clean for the MCP transport.
+ */
+async function prepareDatabase(databaseUrl, provider) {
+    const dir = (0, node_fs_1.mkdtempSync)((0, node_path_1.join)(clientBaseDir(), ".vistal-mcp-"));
+    const schemaPath = (0, node_path_1.join)(dir, "schema.prisma");
+    const clientOutput = (0, node_path_1.join)(dir, "client");
+    const schema = `generator client {
+  provider = "prisma-client-js"
+  output   = "${clientOutput.replace(/\\/g, "\\\\")}"
+}
+
+datasource db {
+  provider = "${provider}"
+  url      = env("DATABASE_URL")
+}
+`;
+    (0, node_fs_1.writeFileSync)(schemaPath, schema);
+    const env = { ...process.env, DATABASE_URL: databaseUrl };
+    const cli = resolvePrismaCli();
+    process.stderr.write("[vistal] Introspecting database schema…\n");
+    runPrisma(cli, ["db", "pull", "--schema", schemaPath], env);
+    process.stderr.write("[vistal] Generating client…\n");
+    runPrisma(cli, ["generate", "--schema", schemaPath], env);
+    const { PrismaClient: GeneratedClient } = require(clientOutput);
+    // Pass the URL straight to the client. The schema's datasource reads
+    // env("DATABASE_URL"), which isn't set in this process — and this also avoids
+    // ever writing the connection string to disk.
+    const prisma = new GeneratedClient({ datasources: { db: { url: databaseUrl } } });
+    return {
+        prisma,
+        schemaPath,
+        cleanup: () => {
+            try {
+                (0, node_fs_1.rmSync)(dir, { recursive: true, force: true });
+            }
+            catch {
+                // best-effort temp cleanup
+            }
+        },
+    };
+}
+//# sourceMappingURL=prepare.js.map

package/dist/prepare.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prepare.js","sourceRoot":"","sources":["../src/prepare.ts"],"names":[],"mappings":";;AAgDA,0CA+CC;AA/FD,2DAAiD;AACjD,qCAA4D;AAC5D,yCAAyC;AAIzC,kFAAkF;AAClF,iFAAiF;AACjF,kFAAkF;AAClF,6DAA6D;AAC7D,SAAS,aAAa;IACpB,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,6BAA6B,CAAC,CAAA;IAC1D,OAAO,IAAA,mBAAO,EAAC,IAAA,mBAAO,EAAC,IAAA,mBAAO,EAAC,GAAG,CAAC,CAAC,CAAC,CAAA,CAAC,kEAAkE;AAC1G,CAAC;AASD,gFAAgF;AAChF,wEAAwE;AACxE,SAAS,gBAAgB;IACvB,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC,qBAAqB,CAAC,CAAA;IAC1D,MAAM,GAAG,GAAG,OAAO,CAAC,qBAAqB,CAA8C,CAAA;IACvF,MAAM,MAAM,GAAG,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,EAAE,MAAM,CAAA;IACtE,IAAI,CAAC,MAAM;QAAE,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAA;IAC3E,OAAO,IAAA,gBAAI,EAAC,IAAA,mBAAO,EAAC,WAAW,CAAC,EAAE,MAAM,CAAC,CAAA;AAC3C,CAAC;AAED,+EAA+E;AAC/E,oEAAoE;AACpE,SAAS,SAAS,CAAC,OAAe,EAAE,IAAc,EAAE,GAAsB;IACxE,IAAA,iCAAY,EAAC,OAAO,CAAC,QAAQ,EAAE,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,EAAE;QACjD,GAAG;QACH,KAAK,EAAE,CAAC,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC;KACxB,CAAC,CAAA;AACJ,CAAC;AAED;;;;;;GAMG;AACI,KAAK,UAAU,eAAe,CACnC,WAAmB,EACnB,QAAkB;IAElB,MAAM,GAAG,GAAG,IAAA,qBAAW,EAAC,IAAA,gBAAI,EAAC,aAAa,EAAE,EAAE,cAAc,CAAC,CAAC,CAAA;IAC9D,MAAM,UAAU,GAAG,IAAA,gBAAI,EAAC,GAAG,EAAE,eAAe,CAAC,CAAA;IAC7C,MAAM,YAAY,GAAG,IAAA,gBAAI,EAAC,GAAG,EAAE,QAAQ,CAAC,CAAA;IAExC,MAAM,MAAM,GAAG;;gBAED,YAAY,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC;;;;gBAInC,QAAQ;;;CAGvB,CAAA;IACC,IAAA,uBAAa,EAAC,UAAU,EAAE,MAAM,CAAC,CAAA;IAEjC,MAAM,GAAG,GAAG,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,YAAY,EAAE,WAAW,EAAE,CAAA;IACzD,MAAM,GAAG,GAAG,gBAAgB,EAAE,CAAA;IAE9B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAA;IACjE,SAAS,CAAC,GAAG,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,UAAU,CAAC,EAAE,GAAG,CAAC,CAAA;IAC3D,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,+BAA+B,CAAC,CAAA;IACrD,SAAS,CAAC,GAAG,EAAE,CAAC,UAAU,EAAE,UAAU,EAAE,UAAU,CAAC,EAAE,GAAG,CAAC,CAAA;IAEzD,MAAM,EAAE,YAAY,EAAE,eAAe,EAAE,GAAG,OAAO,CAAC,YAAY,CAE7D,CAAA;IACD,qEAAqE;IACrE,8EAA8E;IAC9E,8CAA8C;IAC9C,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,EAAE,EAAE,GAAG,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,CAAA;IAEjF,OAAO;QACL,MAAM;QACN,UAAU;QACV,OAAO,EAAE,GAAG,EAAE;YACZ,IAAI,CAAC;gBACH,IAAA,gBAAM,EAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAA;YAC/C,CAAC;YAAC,MAAM,CAAC;gBACP,2BAA2B;YAC7B,CAAC;QACH,CAAC;KACF,CAAA;AACH,CAAC"}

package/package.json

@@ -0,0 +1,49 @@
+{
+  "name": "@vistal/mcp",
+  "version": "0.1.0",
+  "description": "Zero-config MCP server for any database — point it at a DATABASE_URL and let coding agents (Claude Code) query it safely, no SQL and no code",
+  "keywords": [
+    "mcp",
+    "model context protocol",
+    "claude code",
+    "database",
+    "postgres",
+    "mysql",
+    "sqlite",
+    "prisma",
+    "ai agent",
+    "row-level security",
+    "cli"
+  ],
+  "author": "Nicolò D'Addabbo <nicolodaddabbo@gmail.com> (https://nicolod.com)",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/vista-libs/vista.git",
+    "directory": "packages/mcp"
+  },
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "bin": {
+    "vistal-mcp": "dist/cli.js"
+  },
+  "exports": {
+    ".": {
+      "require": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc"
+  },
+  "dependencies": {
+    "@prisma/client": "^5.0.0",
+    "@vistal/core": "*",
+    "@vistal/mcp-sdk": "*",
+    "@vistal/prisma": "*",
+    "prisma": "^5.0.0"
+  }
+}