@vorim/mcp-server 1.1.2 → 1.1.4

package/README.md

@@ -2,7 +2,7 @@
 
 **MCP server for AI agent identity, permissions, and audit trails.**
 
-Gives Claude, Cursor, VS Code, Windsurf, and any MCP-compatible client 13 tools to manage AI agent identities through Vorim — register agents, check permissions, emit audit events, verify trust scores, and delegate credentials.
+Gives Claude, Cursor, VS Code, Windsurf, and any MCP-compatible client 17 tools to manage AI agent identities through Vorim — register agents, check permissions, emit audit events, verify trust scores, and delegate credentials.
 
 [![npm version](https://img.shields.io/npm/v/@vorim/mcp-server.svg)](https://www.npmjs.com/package/@vorim/mcp-server)
 [![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://opensource.org/licenses/MIT)
@@ -102,7 +102,7 @@ Add to `~/.codeium/windsurf/mcp_config.json`:
 
 ## Tools
 
-The server exposes 13 tools across five categories:
+The server exposes 17 tools across six categories:
 
 ### Health
 

package/build/index.js

@@ -28,13 +28,27 @@ if (!API_KEY) {
     process.exit(1);
 }
 // ─── HTTP Client ──────────────────────────────────────────────────────────
+// Read the package version once so the User-Agent string and the MCP
+// server's advertised version stay in sync with package.json.
+// require() works in the CommonJS build path; for the ESM-only build
+// we fall back to a constant that must match package.json.
+const MCP_VERSION = "1.1.4";
+/**
+ * URL-encode a user-supplied path segment. Agent ids, scopes, and
+ * chain ids all reach the API via path interpolation; raw slashes or
+ * other special characters from a misbehaving caller would otherwise
+ * either escape the intended route or be sent verbatim.
+ */
+function encId(s) {
+    return encodeURIComponent(s);
+}
 async function vorimRequest(method, path, body) {
     const response = await fetch(`${BASE_URL}/v1${path}`, {
         method,
         headers: {
             "Authorization": `Bearer ${API_KEY}`,
             "Content-Type": "application/json",
-            "User-Agent": "vorim-mcp-server/1.0.0",
+            "User-Agent": `vorim-mcp-server/${MCP_VERSION}`,
         },
         body: body ? JSON.stringify(body) : undefined,
     });
@@ -64,7 +78,7 @@ function text(data) {
 // ─── MCP Server ───────────────────────────────────────────────────────────
 const server = new McpServer({
     name: "vorim",
-    version: "1.0.0",
+    version: MCP_VERSION,
 });
 // ─── Health ───────────────────────────────────────────────────────────────
 server.registerTool("vorim_ping", {
@@ -96,7 +110,7 @@ server.registerTool("vorim_get_agent", {
         agent_id: z.string().describe("The agent identifier (e.g. agid_acme_a1b2c3d4)"),
     },
 }, async ({ agent_id }) => {
-    const result = await vorimGet(`/agents/${agent_id}`);
+    const result = await vorimGet(`/agents/${encId(agent_id)}`);
     return text(result);
 });
 server.registerTool("vorim_list_agents", {
@@ -129,7 +143,7 @@ server.registerTool("vorim_update_agent", {
     },
 }, async ({ agent_id, ...updates }) => {
     const body = Object.fromEntries(Object.entries(updates).filter(([, v]) => v !== undefined));
-    const result = await vorimPatch(`/agents/${agent_id}`, body);
+    const result = await vorimPatch(`/agents/${encId(agent_id)}`, body);
     return text(result);
 });
 server.registerTool("vorim_revoke_agent", {
@@ -137,8 +151,9 @@ server.registerTool("vorim_revoke_agent", {
     inputSchema: {
         agent_id: z.string().describe("The agent identifier to revoke"),
     },
+    annotations: { destructiveHint: true, idempotentHint: true, readOnlyHint: false },
 }, async ({ agent_id }) => {
-    const result = await vorimDelete(`/agents/${agent_id}`);
+    const result = await vorimDelete(`/agents/${encId(agent_id)}`);
     return text(result);
 });
 // ─── Permissions ──────────────────────────────────────────────────────────
@@ -148,8 +163,9 @@ server.registerTool("vorim_check_permission", {
         agent_id: z.string().describe("The agent identifier"),
         scope: z.string().describe("Permission scope to check (e.g. agent:read, agent:execute)"),
     },
+    annotations: { readOnlyHint: true },
 }, async ({ agent_id, scope }) => {
-    const result = await vorimPost(`/agents/${agent_id}/permissions/verify`, { scope });
+    const result = await vorimPost(`/agents/${encId(agent_id)}/permissions/verify`, { scope });
     return text(result);
 });
 server.registerTool("vorim_grant_permission", {
@@ -168,7 +184,7 @@ server.registerTool("vorim_grant_permission", {
     if (rate_limit_max && rate_limit_window) {
         body.rate_limit = { max: rate_limit_max, window: rate_limit_window };
     }
-    const result = await vorimPost(`/agents/${agent_id}/permissions`, body);
+    const result = await vorimPost(`/agents/${encId(agent_id)}/permissions`, body);
     return text(result);
 });
 server.registerTool("vorim_list_permissions", {
@@ -176,8 +192,9 @@ server.registerTool("vorim_list_permissions", {
     inputSchema: {
         agent_id: z.string().describe("The agent identifier"),
     },
+    annotations: { readOnlyHint: true },
 }, async ({ agent_id }) => {
-    const result = await vorimGet(`/agents/${agent_id}/permissions`);
+    const result = await vorimGet(`/agents/${encId(agent_id)}/permissions`);
     return text(result);
 });
 server.registerTool("vorim_revoke_permission", {
@@ -186,13 +203,14 @@ server.registerTool("vorim_revoke_permission", {
         agent_id: z.string().describe("The agent identifier"),
         scope: z.string().describe("Permission scope to revoke"),
     },
+    annotations: { destructiveHint: true, idempotentHint: true, readOnlyHint: false },
 }, async ({ agent_id, scope }) => {
-    const result = await vorimDelete(`/agents/${agent_id}/permissions/${scope}`);
+    const result = await vorimDelete(`/agents/${encId(agent_id)}/permissions/${encId(scope)}`);
     return text(result);
 });
 // ─── Audit ────────────────────────────────────────────────────────────────
 server.registerTool("vorim_emit_event", {
-    description: "Log an audit event for an agent action. Every agent action should be logged for compliance and traceability.",
+    description: "Log an audit event for an agent action. Every agent action should be logged for compliance and traceability. NOTE: events emitted via the MCP server are sent unsigned because the MCP server does not hold the agent's private key. For tamper-evident audit trails sign client-side via @vorim/sdk before emit.",
     inputSchema: {
         agent_id: z.string().describe("The agent that performed the action"),
         event_type: z.string().describe("Event category: tool_call, api_request, message_sent, permission_change, status_change"),
@@ -233,8 +251,8 @@ server.registerTool("vorim_verify_trust", {
         agent_id: z.string().describe("The agent identifier to verify"),
     },
 }, async ({ agent_id }) => {
-    const response = await fetch(`${BASE_URL}/v1/trust/verify/${agent_id}`, {
-        headers: { "User-Agent": "vorim-mcp-server/1.0.0" },
+    const response = await fetch(`${BASE_URL}/v1/trust/verify/${encId(agent_id)}`, {
+        headers: { "User-Agent": `vorim-mcp-server/${MCP_VERSION}` },
     });
     const json = await response.json();
     return text(json.data || json);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vorim/mcp-server",
-  "version": "1.1.2",
+  "version": "1.1.4",
   "mcpName": "io.github.Kzino/vorim-mcp-server",
   "description": "MCP server for Vorim AI — AI agent identity, permissions, and audit trails",
   "type": "module",
@@ -9,6 +9,7 @@
   },
   "scripts": {
     "build": "tsc && chmod 755 build/index.js",
+    "prepublishOnly": "npm run build",
     "dev": "tsx src/index.ts"
   },
   "files": [