npm - @yawlabs/npmjs-mcp - Versions diffs - 0.5.0 → 0.7.0 - Mend

@yawlabs/npmjs-mcp 0.5.0 → 0.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -65,7 +65,7 @@ Add to `claude_desktop_config.json`:
 }
 ```
-## Tools (37)
+## Tools (63)
 ### Search
 - `npm_search` — Search the npm registry with qualifiers (keywords, author, scope)
@@ -103,6 +103,7 @@ Add to `claude_desktop_config.json`:
 ### Registry
 - `npm_registry_stats` — Total npm-wide download counts
 - `npm_recent_changes` — Recent package publishes from the CouchDB changes feed
+- `npm_ops_playbook` — Canonical recipes for npm operations (call this FIRST when unsure which tool to use)
 ### Provenance
 - `npm_provenance` — Get Sigstore provenance attestations (SLSA, publish)
@@ -114,6 +115,7 @@ Add to `claude_desktop_config.json`:
 - `npm_whoami` — Check authenticated user
 - `npm_profile` — Get profile, email, 2FA status
 - `npm_tokens` — List access tokens
+- `npm_verify_token` — One-call capability check (call this FIRST when debugging write failures)
 - `npm_user_packages` — List packages published by a user
 ### Access (requires NPM_TOKEN)
@@ -130,9 +132,48 @@ Add to `claude_desktop_config.json`:
 - `npm_check_auth` — Auth health check with headless publish feasibility
 - `npm_publish_preflight` — Pre-publish validation checklist
+### Write Operations (requires NPM_TOKEN with write scope)
+These bypass the CLI/2FA friction that causes `npm deprecate` and similar commands to 422 locally. All use the HTTP API with your `NPM_TOKEN`.
+- `npm_deprecate` — Deprecate a package or specific versions (validates message format)
+- `npm_undeprecate` — Clear deprecation
+- `npm_unpublish_version` — Unpublish a specific version (requires `confirm: true`)
+- `npm_unpublish_package` — Unpublish an entire package (requires `confirm: true`)
+- `npm_dist_tag_set` — Point a dist-tag at a version
+- `npm_dist_tag_remove` — Remove a dist-tag (except `latest`)
+- `npm_owner_add` — Add a maintainer (resolves user via `/-/user/`)
+- `npm_owner_remove` — Remove a maintainer (prevents lockout)
+- `npm_access_set` — Set public/private/restricted access
+- `npm_access_set_mfa` — Configure 2FA requirement for publish (none/publish/automation)
+- `npm_team_grant` / `npm_team_revoke` — Grant/revoke team permissions on a package
+- `npm_team_create` / `npm_team_delete` — Create/delete a team in an org
+- `npm_team_member_add` / `npm_team_member_remove` — Manage team members
+- `npm_org_member_set` / `npm_org_member_remove` — Add/remove org members, set roles
+- `npm_token_revoke` — Revoke an access token by key (creation requires a password and isn't exposed)
+### Webhooks (requires NPM_TOKEN)
+- `npm_hook_add` — Register a webhook on a package, scope, or user
+- `npm_hook_list` — List webhooks (optional package filter)
+- `npm_hook_get` — Fetch a single webhook
+- `npm_hook_update` — Update endpoint/secret of a webhook
+- `npm_hook_remove` — Delete a webhook
+### Operation Decision Matrix
+| Operation | Preferred path | Why |
+|---|---|---|
+| Read (search/view/stats) | These MCP tools, no auth required | Fast, zero friction |
+| Deprecate / dist-tag / owner | `npm_deprecate`, `npm_dist_tag_*`, `npm_owner_*` | HTTP API, no CLI auth issues |
+| Publish | CI tag-push workflow | Version discipline, provenance, org token |
+| Unpublish | `npm_unpublish_version` (with `confirm: true`) | Safer than CLI; irreversible within 72h |
+| CLI fallback (only if MCP returns 422) | `npm login --auth-type=web` then `npm <op>` | End-user interactive path |
+Call `npm_ops_playbook` at the start of any session for the up-to-date matrix.
 ## Features
-- **37 tools** covering search, packages, deps, downloads, security, analysis, auth, orgs, provenance, trust, and publish workflows
+- **63 tools** covering search, packages, deps, downloads, security, analysis, auth, orgs, access, provenance, trust, publish workflows, write operations, and registry webhooks
 - **No API key required** for read-only tools — authenticated tools opt-in via NPM_TOKEN
 - **Zero runtime dependencies** — Single bundled file for instant `npx` startup
 - **Agent-aware publish tools** — Detects non-interactive context, provides human hand-off actions instead of unworkable retries

package/dist/index.js CHANGED Viewed

@@ -21081,6 +21081,15 @@ function registryPost(path, body) {
 function registryGetAuth(path) {
   return request(REGISTRY_URL, path, { headers: authHeaders() });
 }
+function registryPostAuth(path, body) {
+  return request(REGISTRY_URL, path, { method: "POST", body, headers: authHeaders() });
+}
+function registryPutAuth(path, body) {
+  return request(REGISTRY_URL, path, { method: "PUT", body, headers: authHeaders() });
+}
+function registryDeleteAuth(path, body) {
+  return request(REGISTRY_URL, path, { method: "DELETE", body, headers: authHeaders() });
+}
 function downloadsGet(path) {
   return request(DOWNLOADS_URL, path);
 }
@@ -21616,6 +21625,43 @@ var authTools = [
       };
     }
   },
+  {
+    name: "npm_verify_token",
+    description: "Verify the NPM_TOKEN and surface its capabilities \u2014 username, 2FA status, and whether writes are likely to succeed. Call this FIRST when debugging any write failure to rule out auth issues before trying other fixes. Faster than running writes and interpreting 401/403 errors.",
+    annotations: {
+      title: "Verify token capabilities",
+      readOnlyHint: true,
+      destructiveHint: false,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({}),
+    handler: async () => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const [whoami, profile] = await Promise.all([
+        registryGetAuth("/-/whoami"),
+        registryGetAuth("/-/npm/v1/user")
+      ]);
+      if (!whoami.ok) {
+        return {
+          ...whoami,
+          error: `Token failed /-/whoami check. Token is invalid, expired, or revoked. Create a new one at https://www.npmjs.com/settings/~/tokens. Raw: ${whoami.error}`
+        };
+      }
+      const tfa = profile.ok && profile.data?.tfa ? { enabled: true, mode: profile.data.tfa.mode } : { enabled: false };
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          username: whoami.data?.username,
+          tokenValid: true,
+          tfa,
+          hint: "For write ops, token must have 'Read and write' scope on the target package. Granular Access Tokens require 2FA for writes; Classic Automation tokens bypass 2FA. Check your token's scope at https://www.npmjs.com/settings/~/tokens if writes return 401 or 403."
+        }
+      };
+    }
+  },
   {
     name: "npm_user_packages",
     description: "List all packages published by a specific npm user. Shows package names and the user's access level for each. Requires authentication.",
@@ -21905,6 +21951,195 @@ var downloadTools = [
   }
 ];
+// src/errors.ts
+function translateError(res, context) {
+  if (res.ok) return res;
+  const pkgPart = context.pkg ? ` for ${context.pkg}` : "";
+  const opPart = context.op ? ` during ${context.op}` : "";
+  switch (res.status) {
+    case 401:
+      return {
+        ...res,
+        error: `Authentication failed${pkgPart}${opPart}. Your NPM_TOKEN may be invalid, expired, or lack write scope. Create a Granular Access Token with 'Read and write' permission at https://www.npmjs.com/settings/~/tokens, or use a classic Automation token (which bypasses 2FA). Raw: ${res.error}`
+      };
+    case 403:
+      return {
+        ...res,
+        error: `Not authorized${pkgPart}${opPart}. You may not be a maintainer of this package, or the token's scope doesn't include it. Check current maintainers with npm_collaborators or npm_package_access. Raw: ${res.error}`
+      };
+    case 404:
+      return {
+        ...res,
+        error: `Not found${pkgPart}${opPart}. Check the exact package name (scoped packages require the @scope/ prefix). If the version is specified, verify it exists with npm_package. Raw: ${res.error}`
+      };
+    case 422:
+      return {
+        ...res,
+        error: `Registry rejected the request payload${pkgPart}${opPart} (422 Unprocessable Entity). Most common causes: (1) invalid semver range \u2014 validate with npm_package versions first; (2) deprecation message format \u2014 em-dash form works, period-capital form sometimes 422s; (3) account-level 2FA policy requires interactive CLI session. If #3, CLI fallback: \`npm login --auth-type=web\` followed by the npm CLI command. Raw: ${res.error}`
+      };
+    case 429:
+      return {
+        ...res,
+        error: `Rate limited${opPart}. Wait 60 seconds and retry. Raw: ${res.error}`
+      };
+    case 0:
+      return {
+        ...res,
+        error: `Network error${opPart}. Could not reach the registry. Raw: ${res.error}`
+      };
+    default:
+      return res;
+  }
+}
+function validateDeprecationMessage(msg) {
+  if (msg.length > 1024) {
+    return "Deprecation message exceeds 1024 characters (registry limit).";
+  }
+  if (msg.length === 0) return null;
+  if (/\.\s+[A-Z]/.test(msg)) {
+    return `Deprecation message contains the "period + space + capital letter" pattern that has triggered 422 Unprocessable Entity on at least one scoped package. The working form uses em-dash and lowercase continuation: e.g. "Renamed to @yawlabs/spend \u2014 install that instead". Pass force: true to bypass this validation.`;
+  }
+  return null;
+}
+function versionsMatchingRange(versions, range, maxSatisfying2) {
+  if (range === "*" || range === "") return [...versions];
+  return versions.filter((v) => maxSatisfying2([v], range) === v);
+}
+// src/tools/hooks.ts
+function classifyHookTarget(target) {
+  if (target.startsWith("~")) return { type: "owner", name: target.slice(1) };
+  if (/^@[^/]+$/.test(target)) return { type: "scope", name: target };
+  return { type: "package", name: target };
+}
+var hookTools = [
+  {
+    name: "npm_hook_add",
+    description: "Create a registry webhook. Target is 'pkg' or '@scope/pkg' for a package, '@scope' for a scope, or '~user' for a user's packages. Endpoint is the HTTPS URL to POST events to; secret is used to HMAC-sign payloads.",
+    annotations: {
+      title: "Add webhook",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: false,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      target: external_exports.string().describe("Hook target: 'pkg', '@scope/pkg', '@scope', or '~user'"),
+      endpoint: external_exports.string().url().describe("HTTPS URL that will receive POST events"),
+      secret: external_exports.string().describe("Secret used to HMAC-sign webhook payloads")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const { type, name } = classifyHookTarget(input.target);
+      const res = await registryPostAuth("/-/npm/v1/hooks/hook", {
+        type,
+        name,
+        endpoint: input.endpoint,
+        secret: input.secret
+      });
+      if (!res.ok) return translateError(res, { op: `hook_add ${input.target}` });
+      return { ok: true, status: 200, data: res.data };
+    }
+  },
+  {
+    name: "npm_hook_list",
+    description: "List webhooks. Optionally filter by package name.",
+    annotations: {
+      title: "List webhooks",
+      readOnlyHint: true,
+      destructiveHint: false,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      package: external_exports.string().optional().describe("Filter by package name"),
+      limit: external_exports.number().int().optional().describe("Max results"),
+      offset: external_exports.number().int().optional().describe("Pagination offset")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const qs = new URLSearchParams();
+      if (input.package) qs.set("package", input.package);
+      if (input.limit !== void 0) qs.set("limit", String(input.limit));
+      if (input.offset !== void 0) qs.set("offset", String(input.offset));
+      const q = qs.toString();
+      const res = await registryGetAuth(`/-/npm/v1/hooks${q ? `?${q}` : ""}`);
+      if (!res.ok) return translateError(res, { op: "hook_list" });
+      return { ok: true, status: 200, data: res.data };
+    }
+  },
+  {
+    name: "npm_hook_get",
+    description: "Get a single webhook by its ID.",
+    annotations: {
+      title: "Get webhook",
+      readOnlyHint: true,
+      destructiveHint: false,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      id: external_exports.string().describe("Hook ID (UUID from npm_hook_list)")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const res = await registryGetAuth(`/-/npm/v1/hooks/hook/${encodeURIComponent(input.id)}`);
+      if (!res.ok) return translateError(res, { op: `hook_get ${input.id}` });
+      return { ok: true, status: 200, data: res.data };
+    }
+  },
+  {
+    name: "npm_hook_update",
+    description: "Update a webhook's endpoint and/or secret.",
+    annotations: {
+      title: "Update webhook",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      id: external_exports.string().describe("Hook ID"),
+      endpoint: external_exports.string().url().describe("New HTTPS URL"),
+      secret: external_exports.string().describe("New signing secret")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const res = await registryPutAuth(`/-/npm/v1/hooks/hook/${encodeURIComponent(input.id)}`, {
+        endpoint: input.endpoint,
+        secret: input.secret
+      });
+      if (!res.ok) return translateError(res, { op: `hook_update ${input.id}` });
+      return { ok: true, status: 200, data: res.data };
+    }
+  },
+  {
+    name: "npm_hook_remove",
+    description: "Delete a webhook by ID.",
+    annotations: {
+      title: "Remove webhook",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      id: external_exports.string().describe("Hook ID")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const res = await registryDeleteAuth(`/-/npm/v1/hooks/hook/${encodeURIComponent(input.id)}`);
+      if (!res.ok) return translateError(res, { op: `hook_remove ${input.id}` });
+      return { ok: true, status: 200, data: { id: input.id, removed: true } };
+    }
+  }
+];
 // src/tools/orgs.ts
 var orgTools = [
   {
@@ -22357,6 +22592,72 @@ var registryTools = [
         }
       };
     }
+  },
+  {
+    name: "npm_ops_playbook",
+    description: "Return canonical recipes for common npm operations \u2014 which MCP tool to call for which op, CLI fallbacks when the MCP server can't handle something, and message format guidance. Call this FIRST when you're not sure how to do an npm operation. Prevents reinventing approaches that don't work.",
+    annotations: {
+      title: "npm operations playbook",
+      readOnlyHint: true,
+      destructiveHint: false,
+      idempotentHint: true,
+      openWorldHint: false
+    },
+    inputSchema: external_exports.object({}),
+    handler: async () => ({
+      ok: true,
+      status: 200,
+      data: {
+        read: {
+          search: "mcp_tool: npm_search",
+          view: "mcp_tool: npm_package",
+          downloads: "mcp_tool: npm_downloads",
+          securityAudit: "mcp_tool: npm_audit",
+          auth: "none required"
+        },
+        write: {
+          deprecate: {
+            tool: "mcp_tool: npm_deprecate",
+            requiresNpmToken: true,
+            messageFormat: {
+              preferred: "Renamed to @scope/pkg \u2014 install that instead",
+              avoid: "Renamed to @scope/pkg. Install that instead.",
+              note: "Period-capital form has triggered 422 on at least one scoped package; use em-dash."
+            }
+          },
+          undeprecate: "mcp_tool: npm_undeprecate",
+          unpublishVersion: "mcp_tool: npm_unpublish_version (requires confirm: true)",
+          distTag: "mcp_tool: npm_dist_tag_set / npm_dist_tag_remove",
+          owner: "mcp_tool: npm_owner_add / npm_owner_remove"
+        },
+        publish: {
+          method: "CI tag-push",
+          neverRunLocally: true,
+          steps: [
+            "Bump version in package.json",
+            "git add package.json && git commit -m 'vX.Y.Z'",
+            "git tag vX.Y.Z",
+            "git push origin main --follow-tags",
+            "gh run list --limit 1 to confirm CI published"
+          ],
+          why: "Local npm publish bypasses version discipline and often fails on 2FA. CI uses repo-level NPM_TOKEN."
+        },
+        auth: {
+          verifyToken: "mcp_tool: npm_verify_token (first step when debugging write failures)",
+          envVar: "NPM_TOKEN",
+          tokenTypes: {
+            granularAccess: "Requires 2FA for writes. Most common.",
+            classicAutomation: "Bypasses 2FA. Ideal for CI.",
+            classicPublish: "Requires 2FA for writes."
+          }
+        },
+        cliFallback: {
+          when: "When an MCP write op returns 422 despite valid token (rare, account-level 2FA policy)",
+          sequence: ["npm login --auth-type=web", "npm <deprecate|unpublish|dist-tag> <args>"],
+          who: "End user runs in their terminal \u2014 MCP server cannot initiate browser auth."
+        }
+      }
+    })
   }
 ];
@@ -22795,8 +23096,845 @@ var workflowTools = [
   }
 ];
+// src/tools/writes.ts
+async function fetchPackument(pkg) {
+  return registryGetAuth(`/${encPkg(pkg)}?write=true`);
+}
+function highestVersion(versions) {
+  const parsed = [];
+  for (const v of versions) {
+    const m = v.match(/^(\d+)\.(\d+)\.(\d+)/);
+    if (m) parsed.push([Number(m[1]), Number(m[2]), Number(m[3]), v]);
+  }
+  if (parsed.length === 0) return null;
+  parsed.sort((a, b) => a[0] - b[0] || a[1] - b[1] || a[2] - b[2]);
+  return parsed[parsed.length - 1][3];
+}
+var writeTools = [
+  // ───────────────────────────────────────────────────────
+  // npm_deprecate
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_deprecate",
+    description: "Deprecate a package or specific versions. Shows a warning message on install. Uses the HTTP API with NPM_TOKEN, bypassing the CLI auth friction that causes 422 errors on accounts with 2FA. Message format: prefer em-dash form ('Renamed to @scope/pkg \u2014 install that instead'); period-capital form sometimes triggers 422.",
+    annotations: {
+      title: "Deprecate package",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name (e.g. '@yawlabs/tokenmeter-mcp')"),
+      message: external_exports.string().describe("Deprecation message. Empty string to clear deprecation (use npm_undeprecate instead)."),
+      versionRange: external_exports.string().optional().describe("Semver range. Omit to deprecate ALL versions. Example: '<1.0.0' or '0.3.x'."),
+      force: external_exports.boolean().optional().describe("Bypass message format validation (default: false).")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      if (!input.force) {
+        const problem = validateDeprecationMessage(input.message);
+        if (problem) return { ok: false, status: 400, error: problem };
+      }
+      const pRes = await fetchPackument(input.name);
+      if (!pRes.ok) return translateError(pRes, { pkg: input.name, op: "deprecate (fetch)" });
+      const packument = pRes.data;
+      const allVersions = Object.keys(packument.versions || {});
+      const range = input.versionRange ?? "*";
+      const affected = versionsMatchingRange(allVersions, range, maxSatisfying);
+      if (affected.length === 0) {
+        return {
+          ok: false,
+          status: 400,
+          error: `No versions match range '${range}' for ${input.name}. Published versions: ${allVersions.join(", ") || "(none)"}.`
+        };
+      }
+      for (const v of affected) {
+        packument.versions[v].deprecated = input.message;
+      }
+      const putRes = await registryPutAuth(`/${encPkg(input.name)}`, packument);
+      if (!putRes.ok) return translateError(putRes, { pkg: input.name, op: "deprecate (write)" });
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          package: input.name,
+          affectedVersions: affected,
+          totalAffected: affected.length,
+          message: input.message
+        }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_undeprecate
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_undeprecate",
+    description: "Clear the deprecation message from a package or specific versions. Equivalent to npm_deprecate with an empty message but more explicit about intent.",
+    annotations: {
+      title: "Undeprecate package",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      versionRange: external_exports.string().optional().describe("Semver range. Omit to undeprecate ALL versions.")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const pRes = await fetchPackument(input.name);
+      if (!pRes.ok) return translateError(pRes, { pkg: input.name, op: "undeprecate (fetch)" });
+      const packument = pRes.data;
+      const allVersions = Object.keys(packument.versions || {});
+      const range = input.versionRange ?? "*";
+      const affected = versionsMatchingRange(allVersions, range, maxSatisfying);
+      if (affected.length === 0) {
+        return {
+          ok: false,
+          status: 400,
+          error: `No versions match range '${range}' for ${input.name}.`
+        };
+      }
+      for (const v of affected) {
+        packument.versions[v].deprecated = "";
+      }
+      const putRes = await registryPutAuth(`/${encPkg(input.name)}`, packument);
+      if (!putRes.ok) return translateError(putRes, { pkg: input.name, op: "undeprecate (write)" });
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          package: input.name,
+          affectedVersions: affected,
+          totalAffected: affected.length
+        }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_unpublish_version
+  // ───────────────────────────────────────────────────────
+  // Mirrors libnpmpublish/unpublish.js single-version flow:
+  //   1. GET /{pkg}?write=true
+  //   2. mutate: remove version, fix dist-tags, delete _revisions/_attachments
+  //   3. PUT /{pkg}/-rev/{rev}
+  //   4. GET /{pkg}?write=true (fresh rev)
+  //   5. DELETE {tarball-pathname}/-rev/{newRev}
+  // The tarball DELETE is best-effort — if it fails, the version is already unreachable
+  // via the packument (step 3 succeeded), so we report success with a warning.
+  {
+    name: "npm_unpublish_version",
+    description: "Unpublish a specific version of a package. IRREVERSIBLE: once unpublished, the version cannot be re-published and will be blocked for 72 hours. Only works within 72 hours of the original publish for most packages. Requires explicit confirm: true to prevent accidents. Follows the npm CLI flow (mutate packument + delete tarball). For full-package unpublish use npm_unpublish_package.",
+    annotations: {
+      title: "Unpublish version",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: false,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      version: external_exports.string().describe("Specific version to unpublish (e.g. '1.2.3')"),
+      confirm: external_exports.literal(true).describe("Must be literally true. Guards against accidental unpublish.")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      if (input.confirm !== true) {
+        return {
+          ok: false,
+          status: 400,
+          error: "Unpublish requires confirm: true. This op is irreversible within 72 hours."
+        };
+      }
+      const pRes = await fetchPackument(input.name);
+      if (!pRes.ok) return translateError(pRes, { pkg: input.name, op: "unpublish (fetch)" });
+      const packument = pRes.data;
+      const versionData = packument.versions?.[input.version];
+      if (!versionData) {
+        return {
+          ok: false,
+          status: 404,
+          error: `Version ${input.version} not found for ${input.name}. Published versions: ${Object.keys(packument.versions || {}).join(", ")}.`
+        };
+      }
+      if (!packument._rev) {
+        return {
+          ok: false,
+          status: 500,
+          error: `Packument for ${input.name} missing _rev \u2014 cannot unpublish. Try again; this is usually transient.`
+        };
+      }
+      const tarballUrl = versionData.dist?.tarball;
+      const latestBefore = packument["dist-tags"]?.latest;
+      delete packument.versions[input.version];
+      for (const tag of Object.keys(packument["dist-tags"] || {})) {
+        if (packument["dist-tags"][tag] === input.version) {
+          delete packument["dist-tags"][tag];
+        }
+      }
+      if (latestBefore === input.version) {
+        const newLatest = highestVersion(Object.keys(packument.versions));
+        if (newLatest) packument["dist-tags"].latest = newLatest;
+      }
+      delete packument._revisions;
+      delete packument._attachments;
+      const putRes = await registryPutAuth(
+        `/${encPkg(input.name)}/-rev/${encodeURIComponent(packument._rev)}`,
+        packument
+      );
+      if (!putRes.ok) return translateError(putRes, { pkg: input.name, op: "unpublish (packument PUT)" });
+      let tarballDeleted = false;
+      let tarballError;
+      if (tarballUrl) {
+        const freshRes = await fetchPackument(input.name);
+        const freshRev = freshRes.ok ? freshRes.data._rev : void 0;
+        if (freshRev) {
+          try {
+            const pathname = new URL(tarballUrl).pathname;
+            const delRes = await registryDeleteAuth(`${pathname}/-rev/${encodeURIComponent(freshRev)}`);
+            tarballDeleted = delRes.ok;
+            if (!delRes.ok) tarballError = delRes.error;
+          } catch (err) {
+            tarballError = err instanceof Error ? err.message : String(err);
+          }
+        } else {
+          tarballError = "could not re-fetch packument for tarball DELETE rev";
+        }
+      }
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          package: input.name,
+          unpublishedVersion: input.version,
+          remainingVersions: Object.keys(packument.versions),
+          tarballDeleted,
+          ...tarballError ? { tarballWarning: tarballError } : {}
+        }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_unpublish_package
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_unpublish_package",
+    description: "Unpublish an ENTIRE package (all versions). DELETE /{pkg}/-rev/{rev}. IRREVERSIBLE: the name is blocked for 72 hours and cannot be re-published. For single-version unpublish prefer npm_unpublish_version. Requires confirm: true.",
+    annotations: {
+      title: "Unpublish entire package",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: false,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      confirm: external_exports.literal(true).describe("Must be literally true. Guards against accidental full unpublish.")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      if (input.confirm !== true) {
+        return {
+          ok: false,
+          status: 400,
+          error: "Full-package unpublish requires confirm: true. This blocks the name for 72 hours."
+        };
+      }
+      const pRes = await fetchPackument(input.name);
+      if (!pRes.ok) return translateError(pRes, { pkg: input.name, op: "unpublish_package (fetch)" });
+      const rev = pRes.data._rev;
+      if (!rev) {
+        return {
+          ok: false,
+          status: 500,
+          error: `Packument for ${input.name} missing _rev \u2014 cannot unpublish.`
+        };
+      }
+      const delRes = await registryDeleteAuth(`/${encPkg(input.name)}/-rev/${encodeURIComponent(rev)}`);
+      if (!delRes.ok) return translateError(delRes, { pkg: input.name, op: "unpublish_package (DELETE)" });
+      return {
+        ok: true,
+        status: 200,
+        data: { package: input.name, unpublished: true }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_dist_tag_set
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_dist_tag_set",
+    description: "Point a dist-tag (e.g. 'latest', 'beta', 'next') at a specific version. Common uses: promote a beta to latest, roll back latest to a prior version, maintain separate channels.",
+    annotations: {
+      title: "Set dist-tag",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      tag: external_exports.string().describe("Dist-tag name (e.g. 'latest', 'beta', 'next')"),
+      version: external_exports.string().describe("Version the tag should point to")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const putRes = await registryPutAuth(
+        `/-/package/${encPkg(input.name)}/dist-tags/${encodeURIComponent(input.tag)}`,
+        input.version
+      );
+      if (!putRes.ok) return translateError(putRes, { pkg: input.name, op: `dist-tag set ${input.tag}` });
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          package: input.name,
+          tag: input.tag,
+          version: input.version
+        }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_dist_tag_remove
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_dist_tag_remove",
+    description: "Remove a dist-tag from a package. The 'latest' tag cannot be removed, only reassigned.",
+    annotations: {
+      title: "Remove dist-tag",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      tag: external_exports.string().describe("Dist-tag name to remove")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      if (input.tag === "latest") {
+        return {
+          ok: false,
+          status: 400,
+          error: "The 'latest' tag cannot be removed. Use npm_dist_tag_set to reassign it to a different version."
+        };
+      }
+      const delRes = await registryDeleteAuth(
+        `/-/package/${encPkg(input.name)}/dist-tags/${encodeURIComponent(input.tag)}`
+      );
+      if (!delRes.ok) return translateError(delRes, { pkg: input.name, op: `dist-tag remove ${input.tag}` });
+      return {
+        ok: true,
+        status: 200,
+        data: { package: input.name, removedTag: input.tag }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_owner_add
+  // ───────────────────────────────────────────────────────
+  // Mirrors npm CLI owner.js:
+  //   1. GET /-/user/org.couchdb.user:{user} → resolve {name, email}
+  //   2. GET /{pkg}?write=true → packument with _rev
+  //   3. PUT /{pkg}/-rev/{_rev} body {_id, _rev, maintainers}
+  {
+    name: "npm_owner_add",
+    description: "Add a user as a maintainer of a package. They will have publish and write permissions. Resolves the user's email via /-/user/ (no need to supply it). Use npm_collaborators to verify before adding.",
+    annotations: {
+      title: "Add package owner",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      username: external_exports.string().describe("npm username to add as maintainer")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const uRes = await registryGetAuth(
+        `/-/user/org.couchdb.user:${encodeURIComponent(input.username)}`
+      );
+      if (!uRes.ok) return translateError(uRes, { pkg: input.name, op: `owner_add (resolve user ${input.username})` });
+      const userRecord = { name: uRes.data.name, email: uRes.data.email ?? "" };
+      const pRes = await fetchPackument(input.name);
+      if (!pRes.ok) return translateError(pRes, { pkg: input.name, op: "owner_add (fetch)" });
+      const packument = pRes.data;
+      const owners = packument.maintainers || [];
+      if (owners.some((m) => m.name === userRecord.name)) {
+        return {
+          ok: true,
+          status: 200,
+          data: {
+            package: input.name,
+            username: userRecord.name,
+            alreadyOwner: true,
+            maintainers: owners.map((m) => m.name)
+          }
+        };
+      }
+      if (!packument._rev) {
+        return {
+          ok: false,
+          status: 500,
+          error: `Packument for ${input.name} missing _rev \u2014 cannot update owners.`
+        };
+      }
+      const maintainers = [...owners, userRecord];
+      const putRes = await registryPutAuth(`/${encPkg(input.name)}/-rev/${encodeURIComponent(packument._rev)}`, {
+        _id: packument._id,
+        _rev: packument._rev,
+        maintainers
+      });
+      if (!putRes.ok) return translateError(putRes, { pkg: input.name, op: "owner_add (write)" });
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          package: input.name,
+          addedOwner: userRecord.name,
+          maintainers: maintainers.map((m) => m.name)
+        }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_owner_remove
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_owner_remove",
+    description: "Remove a user from a package's maintainer list. Refuses if it would leave the package with zero maintainers (lockout prevention).",
+    annotations: {
+      title: "Remove package owner",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      username: external_exports.string().describe("npm username to remove")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const pRes = await fetchPackument(input.name);
+      if (!pRes.ok) return translateError(pRes, { pkg: input.name, op: "owner_remove (fetch)" });
+      const packument = pRes.data;
+      const before = packument.maintainers || [];
+      if (!before.some((m) => m.name === input.username)) {
+        return {
+          ok: false,
+          status: 404,
+          error: `${input.username} is not a maintainer of ${input.name}. Current maintainers: ${before.map((m) => m.name).join(", ") || "(none)"}.`
+        };
+      }
+      const after = before.filter((m) => m.name !== input.username);
+      if (after.length === 0) {
+        return {
+          ok: false,
+          status: 400,
+          error: `Removing ${input.username} would leave ${input.name} with zero maintainers (lockout). Add another maintainer first with npm_owner_add.`
+        };
+      }
+      if (!packument._rev) {
+        return {
+          ok: false,
+          status: 500,
+          error: `Packument for ${input.name} missing _rev \u2014 cannot update owners.`
+        };
+      }
+      const putRes = await registryPutAuth(`/${encPkg(input.name)}/-rev/${encodeURIComponent(packument._rev)}`, {
+        _id: packument._id,
+        _rev: packument._rev,
+        maintainers: after
+      });
+      if (!putRes.ok) return translateError(putRes, { pkg: input.name, op: "owner_remove (write)" });
+      return {
+        ok: true,
+        status: 200,
+        data: {
+          package: input.name,
+          removedOwner: input.username,
+          remainingMaintainers: after.map((m) => m.name)
+        }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_access_set
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_access_set",
+    description: "Set package access level: 'public', 'private', or 'restricted'. Unscoped packages are always public. Private access requires a paid npm account.",
+    annotations: {
+      title: "Set package access level",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      access: external_exports.enum(["public", "private", "restricted"]).describe("Access level")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const res = await registryPostAuth(`/-/package/${encPkg(input.name)}/access`, { access: input.access });
+      if (!res.ok) return translateError(res, { pkg: input.name, op: `access_set ${input.access}` });
+      return {
+        ok: true,
+        status: 200,
+        data: { package: input.name, access: input.access }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_access_set_mfa
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_access_set_mfa",
+    description: "Configure 2FA requirement for publishing: 'none' (off), 'publish' (2FA required), 'automation' (2FA required but automation tokens can bypass).",
+    annotations: {
+      title: "Set package 2FA publish policy",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      name: external_exports.string().describe("Package name"),
+      level: external_exports.enum(["none", "publish", "automation"]).describe("MFA level for publish")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      let body;
+      if (input.level === "none") {
+        body = { publish_requires_tfa: false };
+      } else if (input.level === "publish") {
+        body = { publish_requires_tfa: true, automation_token_overrides_tfa: false };
+      } else {
+        body = { publish_requires_tfa: true, automation_token_overrides_tfa: true };
+      }
+      const res = await registryPostAuth(`/-/package/${encPkg(input.name)}/access`, body);
+      if (!res.ok) return translateError(res, { pkg: input.name, op: `access_set_mfa ${input.level}` });
+      return {
+        ok: true,
+        status: 200,
+        data: { package: input.name, mfaLevel: input.level }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_team_grant
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_team_grant",
+    description: "Grant a team read-only or read-write permission on a package. Scope and team are passed as @scope:team (e.g. '@yawlabs:devs'). Requires org admin or team admin.",
+    annotations: {
+      title: "Grant team package permission",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      team: external_exports.string().describe("Team in the form '@scope:team' (e.g. '@yawlabs:devs')"),
+      package: external_exports.string().describe("Package name"),
+      permissions: external_exports.enum(["read-only", "read-write"]).describe("Permission level")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const m = input.team.match(/^@?([^:]+):(.+)$/);
+      if (!m) {
+        return {
+          ok: false,
+          status: 400,
+          error: `Team must be in the form '@scope:team' (got '${input.team}').`
+        };
+      }
+      const [, scope, team] = m;
+      const res = await registryPutAuth(`/-/team/${encodeURIComponent(scope)}/${encodeURIComponent(team)}/package`, {
+        package: input.package,
+        permissions: input.permissions
+      });
+      if (!res.ok) return translateError(res, { pkg: input.package, op: `team_grant ${input.team}` });
+      return {
+        ok: true,
+        status: 200,
+        data: { team: `@${scope}:${team}`, package: input.package, permissions: input.permissions }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_team_revoke
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_team_revoke",
+    description: "Revoke a team's access to a package. Team is passed as '@scope:team'. Does not delete the team itself \u2014 use npm_team_delete for that.",
+    annotations: {
+      title: "Revoke team package permission",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      team: external_exports.string().describe("Team in the form '@scope:team'"),
+      package: external_exports.string().describe("Package name")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const m = input.team.match(/^@?([^:]+):(.+)$/);
+      if (!m) {
+        return {
+          ok: false,
+          status: 400,
+          error: `Team must be in the form '@scope:team' (got '${input.team}').`
+        };
+      }
+      const [, scope, team] = m;
+      const res = await registryDeleteAuth(`/-/team/${encodeURIComponent(scope)}/${encodeURIComponent(team)}/package`, {
+        package: input.package
+      });
+      if (!res.ok) return translateError(res, { pkg: input.package, op: `team_revoke ${input.team}` });
+      return {
+        ok: true,
+        status: 200,
+        data: { team: `@${scope}:${team}`, package: input.package, revoked: true }
+      };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_team_create
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_team_create",
+    description: "Create a team inside an organization. Team is passed as '@scope:team'.",
+    annotations: {
+      title: "Create team",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: false,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      team: external_exports.string().describe("Team in the form '@scope:team'"),
+      description: external_exports.string().optional().describe("Optional team description")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const m = input.team.match(/^@?([^:]+):(.+)$/);
+      if (!m) {
+        return { ok: false, status: 400, error: `Team must be in the form '@scope:team' (got '${input.team}').` };
+      }
+      const [, scope, team] = m;
+      const res = await registryPutAuth(`/-/org/${encodeURIComponent(scope)}/team`, {
+        name: team,
+        description: input.description
+      });
+      if (!res.ok) return translateError(res, { op: `team_create ${input.team}` });
+      return { ok: true, status: 200, data: { team: `@${scope}:${team}`, created: true } };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_team_delete
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_team_delete",
+    description: "Delete a team. Team is passed as '@scope:team'. Revokes all package permissions that team held.",
+    annotations: {
+      title: "Delete team",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      team: external_exports.string().describe("Team in the form '@scope:team'")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const m = input.team.match(/^@?([^:]+):(.+)$/);
+      if (!m) {
+        return { ok: false, status: 400, error: `Team must be in the form '@scope:team' (got '${input.team}').` };
+      }
+      const [, scope, team] = m;
+      const res = await registryDeleteAuth(`/-/team/${encodeURIComponent(scope)}/${encodeURIComponent(team)}`);
+      if (!res.ok) return translateError(res, { op: `team_delete ${input.team}` });
+      return { ok: true, status: 200, data: { team: `@${scope}:${team}`, deleted: true } };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_team_member_add
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_team_member_add",
+    description: "Add a user to a team. Team is '@scope:team'. User must already be in the org.",
+    annotations: {
+      title: "Add team member",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      team: external_exports.string().describe("Team in the form '@scope:team'"),
+      user: external_exports.string().describe("npm username")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const m = input.team.match(/^@?([^:]+):(.+)$/);
+      if (!m) {
+        return { ok: false, status: 400, error: `Team must be in the form '@scope:team' (got '${input.team}').` };
+      }
+      const [, scope, team] = m;
+      const res = await registryPutAuth(`/-/team/${encodeURIComponent(scope)}/${encodeURIComponent(team)}/user`, {
+        user: input.user
+      });
+      if (!res.ok) return translateError(res, { op: `team_member_add ${input.team}` });
+      return { ok: true, status: 200, data: { team: `@${scope}:${team}`, addedUser: input.user } };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_team_member_remove
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_team_member_remove",
+    description: "Remove a user from a team. Team is '@scope:team'. User remains in the org.",
+    annotations: {
+      title: "Remove team member",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      team: external_exports.string().describe("Team in the form '@scope:team'"),
+      user: external_exports.string().describe("npm username")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const m = input.team.match(/^@?([^:]+):(.+)$/);
+      if (!m) {
+        return { ok: false, status: 400, error: `Team must be in the form '@scope:team' (got '${input.team}').` };
+      }
+      const [, scope, team] = m;
+      const res = await registryDeleteAuth(`/-/team/${encodeURIComponent(scope)}/${encodeURIComponent(team)}/user`, {
+        user: input.user
+      });
+      if (!res.ok) return translateError(res, { op: `team_member_remove ${input.team}` });
+      return { ok: true, status: 200, data: { team: `@${scope}:${team}`, removedUser: input.user } };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_org_member_set
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_org_member_set",
+    description: "Add a user to an org or change their role. Roles: 'developer', 'admin', 'owner'. If user is already in the org, updates the role. Omit role to keep existing role.",
+    annotations: {
+      title: "Set org member",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      org: external_exports.string().describe("Organization name (with or without leading @)"),
+      user: external_exports.string().describe("npm username"),
+      role: external_exports.enum(["developer", "admin", "owner"]).optional().describe("Role to assign")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const org = input.org.replace(/^@/, "");
+      const user = input.user.replace(/^@/, "");
+      const body = { user };
+      if (input.role) body.role = input.role;
+      const res = await registryPutAuth(`/-/org/${encodeURIComponent(org)}/user`, body);
+      if (!res.ok) return translateError(res, { op: `org_member_set ${org}/${user}` });
+      return { ok: true, status: 200, data: { org, user, role: input.role } };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_org_member_remove
+  // ───────────────────────────────────────────────────────
+  {
+    name: "npm_org_member_remove",
+    description: "Remove a user from an org. Their team memberships in that org are also removed.",
+    annotations: {
+      title: "Remove org member",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      org: external_exports.string().describe("Organization name"),
+      user: external_exports.string().describe("npm username")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const org = input.org.replace(/^@/, "");
+      const user = input.user.replace(/^@/, "");
+      const res = await registryDeleteAuth(`/-/org/${encodeURIComponent(org)}/user`, { user });
+      if (!res.ok) return translateError(res, { op: `org_member_remove ${org}/${user}` });
+      return { ok: true, status: 200, data: { org, removedUser: user } };
+    }
+  },
+  // ───────────────────────────────────────────────────────
+  // npm_token_revoke
+  // ───────────────────────────────────────────────────────
+  // Note: token CREATION requires a user password (not a token), so it cannot be
+  // performed via NPM_TOKEN alone — we intentionally don't expose npm_token_create.
+  {
+    name: "npm_token_revoke",
+    description: "Revoke an access token by its key (UUID from npm_tokens). Creating tokens is NOT exposed because the endpoint requires the user password \u2014 create via https://www.npmjs.com/settings/~/tokens instead.",
+    annotations: {
+      title: "Revoke access token",
+      readOnlyHint: false,
+      destructiveHint: true,
+      idempotentHint: true,
+      openWorldHint: true
+    },
+    inputSchema: external_exports.object({
+      tokenKey: external_exports.string().describe("Token key (UUID shown by npm_tokens)")
+    }),
+    handler: async (input) => {
+      const authErr = requireAuth();
+      if (authErr) return authErr;
+      const res = await registryDeleteAuth(`/-/npm/v1/tokens/token/${encodeURIComponent(input.tokenKey)}`);
+      if (!res.ok) return translateError(res, { op: "token_revoke" });
+      return { ok: true, status: 200, data: { tokenKey: input.tokenKey, revoked: true } };
+    }
+  }
+];
 // src/index.ts
-var version2 = true ? "0.5.0" : (await null).createRequire(import.meta.url)("../package.json").version;
+var version2 = true ? "0.7.0" : (await null).createRequire(import.meta.url)("../package.json").version;
 var subcommand = process.argv[2];
 if (subcommand === "version" || subcommand === "--version") {
   console.log(version2);
@@ -22815,7 +23953,9 @@ var allTools = [
   ...accessTools,
   ...provenanceTools,
   ...trustTools,
-  ...workflowTools
+  ...workflowTools,
+  ...writeTools,
+  ...hookTools
 ];
 var server = new McpServer({
   name: "@yawlabs/npmjs-mcp",

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@yawlabs/npmjs-mcp",
-  "version": "0.5.0",
+  "version": "0.7.0",
   "description": "npm registry MCP server — package intelligence, security audits, and dependency analysis for AI assistants",
   "license": "MIT",
   "author": "YawLabs <contact@yaw.sh>",