@zebpay_rajesh/zebpay-mcp-server 0.1.0

package/dist/__tests__/validation.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.test.js","sourceRoot":"","sources":["../../src/__tests__/validation.test.ts"],"names":[],"mappings":"AAAA;;;;EAIE;AAEF,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAC;AAC/E,OAAO,EAAE,wBAAwB,EAAE,MAAM,kBAAkB,CAAC;AAE5D,mDAAmD;AACnD,QAAQ,CAAC,YAAY,EAAE,GAAG,EAAE;IAC1B,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;YACrC,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YACtD,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YACtD,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QACzD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+BAA+B,EAAE,GAAG,EAAE;YACvC,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YACjD,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YAClD,wEAAwE;YACxE,gEAAgE;YAChE,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YAC3C,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,eAAe,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,iBAAiB;QAC5E,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yDAAyD,EAAE,GAAG,EAAE;YACjE,+DAA+D;YAC/D,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YACtD,MAAM,CAAC,GAAG,EAAE,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YACtD,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;YACpD,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QACtD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YAC7C,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YAC9C,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;YAC/C,MAAM,CAAC,GAAG,EAAE,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;QAClD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;IAC9B,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;QAC9D,MAAM,KAAK,GAAG,wBAAwB,CAAC,YAAY,CAAC,CAAC;QACrD,sDAAsD;QACtD,uCAAuC;QACvC,mCAAmC;QACnC,4CAA4C;QAE5C,gCAAgC;QAChC,IAAI,CAAC,CAAC,KAAK,YAAY,KAAK,CAAC,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;QAC5D,CAAC;QACD,IAAI,KAAK,CAAC,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAC1B,MAAM,IAAI,KAAK,CAAC,mCAAmC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;QACnE,CAAC;QACD,wEAAwE;QACxE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CAAC,wDAAwD,KAAK,CAAC,OAAO,GAAG,CAAC,CAAC;QAC5F,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/config.d.ts

@@ -0,0 +1,19 @@
+export type TransportKind = "stdio";
+export interface SigningHeaderNames {
+    apiKeyHeader: string;
+    signatureHeader: string;
+    timestampHeader: string;
+}
+export interface AppConfig {
+    spotBaseUrl: string;
+    futuresBaseUrl: string;
+    marketBaseUrl: string;
+    transports: TransportKind[];
+    logLevel: "debug" | "info" | "warn" | "error";
+    logFile?: string;
+    signingHeaders: SigningHeaderNames;
+    timeoutMs: number;
+    retryCount: number;
+}
+export declare function redact(value: string | undefined | null, show?: number): string;
+export declare function getConfig(): AppConfig;

package/dist/config.js

@@ -0,0 +1,81 @@
+/*
+  Centralized configuration loading and validation.
+  Secrets are never logged; use redact() when including values in logs.
+*/
+const SIGNING_HEADERS = {
+    apiKeyHeader: "X-AUTH-APIKEY",
+    signatureHeader: "X-AUTH-SIGNATURE",
+    timestampHeader: "",
+};
+export function redact(value, show = 4) {
+    if (!value)
+        return "<redacted>";
+    if (value.length <= show)
+        return "*".repeat(value.length);
+    return `${value.slice(0, show)}${"*".repeat(Math.max(4, value.length - show))}`;
+}
+function getRequiredEnv(name) {
+    const value = process.env[name];
+    if (value === undefined) {
+        throw new Error(`Missing required environment variable: ${name}`);
+    }
+    return value;
+}
+function parseTransports(input) {
+    const raw = (input ?? "stdio").split(",").map((s) => s.trim()).filter(Boolean);
+    const valid = [];
+    for (const t of raw) {
+        if (t === "stdio")
+            valid.push(t);
+    }
+    if (!valid.length) {
+        throw new Error('Invalid MCP_TRANSPORTS. Only "stdio" is supported.');
+    }
+    return valid;
+}
+function parseLogLevel(input) {
+    if (input === undefined)
+        return "info";
+    if (input === "debug" || input === "info" || input === "warn" || input === "error") {
+        return input;
+    }
+    throw new Error('Invalid LOG_LEVEL. Use one of: "debug", "info", "warn", "error".');
+}
+export function getConfig() {
+    const spotBaseUrl = getRequiredEnv("ZEBPAY_SPOT_BASE_URL");
+    const futuresBaseUrl = getRequiredEnv("ZEBPAY_FUTURES_BASE_URL");
+    const marketBaseUrl = getRequiredEnv("ZEBPAY_MARKET_BASE_URL");
+    const transports = parseTransports(process.env.MCP_TRANSPORTS);
+    const logLevel = parseLogLevel(process.env.LOG_LEVEL);
+    const logFile = process.env.LOG_FILE; // Optional log file path
+    const timeoutMs = Number(process.env.HTTP_TIMEOUT_MS ?? 15000);
+    const retryCount = Number(process.env.HTTP_RETRY_COUNT ?? 2);
+    const signingHeaders = SIGNING_HEADERS;
+    if (!spotBaseUrl.startsWith("http")) {
+        throw new Error("Invalid spot base URL");
+    }
+    if (!futuresBaseUrl.startsWith("http")) {
+        throw new Error("Invalid futures base URL");
+    }
+    if (!marketBaseUrl.startsWith("http")) {
+        throw new Error("Invalid market base URL");
+    }
+    if (!Number.isFinite(timeoutMs) || timeoutMs <= 0) {
+        throw new Error("Invalid HTTP_TIMEOUT_MS");
+    }
+    if (!Number.isFinite(retryCount) || retryCount < 0) {
+        throw new Error("Invalid HTTP_RETRY_COUNT");
+    }
+    return {
+        spotBaseUrl,
+        futuresBaseUrl,
+        marketBaseUrl,
+        transports,
+        logLevel,
+        logFile,
+        signingHeaders,
+        timeoutMs,
+        retryCount,
+    };
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;EAGE;AAUF,MAAM,eAAe,GAAuB;IAC1C,YAAY,EAAE,eAAe;IAC7B,eAAe,EAAE,kBAAkB;IACnC,eAAe,EAAE,EAAE;CACpB,CAAC;AAcF,MAAM,UAAU,MAAM,CAAC,KAAgC,EAAE,OAAe,CAAC;IACvE,IAAI,CAAC,KAAK;QAAE,OAAO,YAAY,CAAC;IAChC,IAAI,KAAK,CAAC,MAAM,IAAI,IAAI;QAAE,OAAO,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC1D,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC,EAAE,CAAC;AAClF,CAAC;AAED,SAAS,cAAc,CAAC,IAAY;IAClC,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAChC,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,0CAA0C,IAAI,EAAE,CAAC,CAAC;IACpE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,eAAe,CAAC,KAAyB;IAChD,MAAM,GAAG,GAAG,CAAC,KAAK,IAAI,OAAO,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IAC/E,MAAM,KAAK,GAAoB,EAAE,CAAC;IAClC,KAAK,MAAM,CAAC,IAAI,GAAG,EAAE,CAAC;QACpB,IAAI,CAAC,KAAK,OAAO;YAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACnC,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;IACxE,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,KAAyB;IAC9C,IAAI,KAAK,KAAK,SAAS;QAAE,OAAO,MAAM,CAAC;IACvC,IAAI,KAAK,KAAK,OAAO,IAAI,KAAK,KAAK,MAAM,IAAI,KAAK,KAAK,MAAM,IAAI,KAAK,KAAK,OAAO,EAAE,CAAC;QACnF,OAAO,KAAK,CAAC;IACf,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,kEAAkE,CAAC,CAAC;AACtF,CAAC;AAED,MAAM,UAAU,SAAS;IACvB,MAAM,WAAW,GAAG,cAAc,CAAC,sBAAsB,CAAC,CAAC;IAC3D,MAAM,cAAc,GAAG,cAAc,CAAC,yBAAyB,CAAC,CAAC;IACjE,MAAM,aAAa,GAAG,cAAc,CAAC,wBAAwB,CAAC,CAAC;IAC/D,MAAM,UAAU,GAAG,eAAe,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;IAC/D,MAAM,QAAQ,GAAG,aAAa,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACtD,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,yBAAyB;IAC/D,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,KAAK,CAAC,CAAC;IAC/D,MAAM,UAAU,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,CAAC,CAAC,CAAC;IAE7D,MAAM,cAAc,GAAuB,eAAe,CAAC;IAE3D,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;IAC3C,CAAC;IACD,IAAI,CAAC,cAAc,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACvC,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;IAC9C,CAAC;IACD,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,SAAS,IAAI,CAAC,EAAE,CAAC;QAClD,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IACD,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;QACnD,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;IAC9C,CAAC;IAED,OAAO;QACL,WAAW;QACX,cAAc;QACd,aAAa;QACb,UAAU;QACV,QAAQ;QACR,OAAO;QACP,cAAc;QACd,SAAS;QACT,UAAU;KACX,CAAC;AACJ,CAAC"}

package/dist/http/httpClient.d.ts

@@ -0,0 +1,40 @@
+export interface HttpRequestOptions {
+    method: string;
+    url: string;
+    headers?: Record<string, string>;
+    body?: unknown;
+    timeoutMs: number;
+    retryCount: number;
+}
+export interface HttpResponse<T = unknown> {
+    status: number;
+    headers: Record<string, string>;
+    data: T;
+}
+export declare class HttpError extends Error {
+    readonly status: number;
+    readonly details?: unknown;
+    readonly isHtmlResponse?: boolean;
+    constructor(message: string, status: number, details?: unknown, isHtmlResponse?: boolean);
+}
+export declare class HttpClient {
+    private readonly logLevel;
+    constructor(logLevel?: "debug" | "info" | "warn" | "error");
+    request<T = unknown>(opts: HttpRequestOptions): Promise<HttpResponse<T>>;
+    /**
+     * Sanitizes stack traces by removing file paths, keeping only function names and line numbers
+     */
+    private sanitizeStack;
+    /**
+     * Formats response body to be more user-readable
+     */
+    private formatResponseBody;
+    /**
+     * Sanitizes headers to redact sensitive information
+     */
+    private sanitizeHeaders;
+    /**
+     * Sanitizes body to prevent logging huge payloads
+     */
+    private sanitizeBody;
+}

package/dist/http/httpClient.js

@@ -0,0 +1,341 @@
+/*
+  Minimal HTTP client with retries, timeout, structured errors, and redacted logs.
+*/
+import { setTimeout as delay } from "node:timers/promises";
+import { redact } from "../config.js";
+import { fetch } from "undici";
+import { fileLogger } from "../utils/fileLogger.js";
+export class HttpError extends Error {
+    constructor(message, status, details, isHtmlResponse) {
+        super(message);
+        this.status = status;
+        this.details = details;
+        this.isHtmlResponse = isHtmlResponse;
+    }
+}
+/**
+ * Parses HTML error pages (like Cloudflare) to extract user-friendly error messages.
+ *
+ * NOTE: This is transport-agnostic - it parses responses from Zebpay API (external),
+ * not from MCP clients. Works identically for both stdio and HTTP transports.
+ */
+function parseHtmlError(html) {
+    if (!html || typeof html !== "string") {
+        return null;
+    }
+    // Check if it's HTML
+    if (!html.trim().toLowerCase().startsWith("<!doctype") && !html.trim().toLowerCase().startsWith("<html")) {
+        return null;
+    }
+    // Extract Cloudflare error messages
+    const cloudflarePatterns = [
+        // Cloudflare Error 1006 - Access denied
+        /<h2[^>]*>Access denied<\/h2>/i,
+        /The owner of this website.*?has banned your IP address[^<]*/i,
+        /<p[^>]*>The owner of this website[^<]*<\/p>/i,
+        // Cloudflare Error 1020 - Access denied
+        /<h1[^>]*>Error[^<]*<\/h1>/i,
+        // Generic error extraction from title
+        /<title>([^<]+)<\/title>/i,
+        // Extract error messages from h1/h2 tags
+        /<h[12][^>]*>([^<]+)<\/h[12]>/i,
+    ];
+    for (const pattern of cloudflarePatterns) {
+        const match = html.match(pattern);
+        if (match) {
+            let message = match[1] || match[0];
+            // Clean up HTML entities and tags
+            message = message
+                .replace(/<[^>]+>/g, "")
+                .replace(/&nbsp;/g, " ")
+                .replace(/&amp;/g, "&")
+                .replace(/&lt;/g, "<")
+                .replace(/&gt;/g, ">")
+                .replace(/&quot;/g, '"')
+                .replace(/\s+/g, " ")
+                .trim();
+            if (message && message.length > 10) {
+                // Check for IP ban message
+                if (html.includes("banned your IP address")) {
+                    const ipMatch = html.match(/IP address[^<]*\(([^)]+)\)/i);
+                    if (ipMatch) {
+                        return `Access denied: Your IP address has been banned by the website. Please contact support or try again later.`;
+                    }
+                    return `Access denied: Your IP address has been restricted. Please contact support or try again later.`;
+                }
+                // Check for Cloudflare error codes
+                const errorCodeMatch = html.match(/Error\s*(\d+)/i);
+                if (errorCodeMatch) {
+                    const errorCode = errorCodeMatch[1];
+                    if (errorCode === "1006") {
+                        return `Access denied (Error 1006): Your IP address has been banned. Please contact support or try again later.`;
+                    }
+                    return `Cloudflare error (${errorCode}): ${message}`;
+                }
+                return message;
+            }
+        }
+    }
+    // Fallback: try to extract any meaningful text
+    const textMatch = html.match(/<body[^>]*>([\s\S]{100,500})<\/body>/i);
+    if (textMatch) {
+        let text = textMatch[1]
+            .replace(/<script[^>]*>[\s\S]*?<\/script>/gi, "")
+            .replace(/<style[^>]*>[\s\S]*?<\/style>/gi, "")
+            .replace(/<[^>]+>/g, " ")
+            .replace(/\s+/g, " ")
+            .trim();
+        if (text.length > 20 && text.length < 200) {
+            return text;
+        }
+    }
+    return null;
+}
+export class HttpClient {
+    constructor(logLevel = "info") {
+        this.logLevel = logLevel;
+    }
+    async request(opts) {
+        const { method, url, headers = {}, body, timeoutMs, retryCount } = opts;
+        const isIdempotent = method.toUpperCase() === "GET";
+        const maxAttempts = isIdempotent ? retryCount + 1 : 1;
+        const payload = body === undefined || body === null ? undefined : (typeof body === "string" ? body : JSON.stringify(body));
+        // Prepare headers for request (with content-type)
+        const requestHeaders = {
+            ...headers,
+        };
+        if (payload) {
+            requestHeaders["content-type"] = "application/json";
+        }
+        // Log HTTP request
+        const requestTimestamp = new Date().toISOString();
+        const requestLogMessage = JSON.stringify({
+            level: "info",
+            type: "http_request",
+            timestamp: requestTimestamp,
+            method: method.toUpperCase(),
+            url,
+            headers: this.sanitizeHeaders(requestHeaders),
+            body: this.sanitizeBody(payload),
+        });
+        fileLogger.log(requestLogMessage);
+        let attempt = 0;
+        let lastError;
+        while (attempt < maxAttempts) {
+            attempt++;
+            const controller = new AbortController();
+            const timer = setTimeout(() => controller.abort(), timeoutMs);
+            const attemptStartTime = Date.now();
+            try {
+                const res = await fetch(url, {
+                    method,
+                    headers: requestHeaders,
+                    body: payload,
+                    signal: controller.signal,
+                });
+                clearTimeout(timer);
+                const text = await res.text();
+                const contentType = res.headers.get("content-type") || "";
+                const isHtml = contentType.includes("text/html") || text.trim().toLowerCase().startsWith("<!doctype") || text.trim().toLowerCase().startsWith("<html");
+                let data = undefined;
+                let parsedError = null;
+                if (isHtml && !res.ok) {
+                    // Try to parse HTML error page
+                    parsedError = parseHtmlError(text);
+                    data = text; // Keep original HTML for logging
+                }
+                else {
+                    // Try to parse as JSON
+                    try {
+                        data = text ? JSON.parse(text) : undefined;
+                    }
+                    catch {
+                        data = text;
+                    }
+                }
+                const response = {
+                    status: res.status,
+                    headers: Object.fromEntries(res.headers.entries()),
+                    data,
+                };
+                const durationMs = Date.now() - attemptStartTime;
+                // Log HTTP response with user-readable format
+                const responseTimestamp = new Date().toISOString();
+                const responseBody = this.formatResponseBody(data, res.status);
+                const responseLogMessage = JSON.stringify({
+                    level: res.ok ? "info" : "warn",
+                    type: "http_response",
+                    timestamp: responseTimestamp,
+                    method: method.toUpperCase(),
+                    url,
+                    status: res.status,
+                    headers: this.sanitizeHeaders(response.headers),
+                    body: responseBody,
+                    durationMs,
+                    attempt,
+                    isHtmlResponse: isHtml,
+                });
+                fileLogger.log(responseLogMessage);
+                if (res.ok) {
+                    return response;
+                }
+                // Retry on 429/5xx when idempotent
+                if (isIdempotent && (res.status === 429 || (res.status >= 500 && res.status < 600)) && attempt < maxAttempts) {
+                    const retryAfter = Number(response.headers["retry-after"] || 0);
+                    const backoffMs = retryAfter > 0 ? retryAfter * 1000 : 250 * attempt;
+                    await delay(backoffMs);
+                    continue;
+                }
+                // Use parsed error message if available, otherwise use default
+                const errorMessage = parsedError || `HTTP ${res.status}`;
+                throw new HttpError(errorMessage, res.status, data, isHtml);
+            }
+            catch (err) {
+                clearTimeout(timer);
+                lastError = err;
+                const durationMs = Date.now() - attemptStartTime;
+                // AbortError or network error
+                if (attempt >= maxAttempts) {
+                    // Log HTTP error
+                    const errorTimestamp = new Date().toISOString();
+                    const errorMessage = err instanceof Error ? err.message : String(err);
+                    const errorStack = err instanceof Error ? err.stack : undefined;
+                    const errorLogMessage = JSON.stringify({
+                        level: "error",
+                        type: "http_error",
+                        timestamp: errorTimestamp,
+                        method: method.toUpperCase(),
+                        url,
+                        headers: this.sanitizeHeaders(requestHeaders),
+                        body: this.sanitizeBody(payload),
+                        durationMs,
+                        attempt,
+                        error: errorMessage,
+                        stack: this.sanitizeStack(errorStack),
+                    });
+                    fileLogger.log(errorLogMessage);
+                    if (err instanceof HttpError)
+                        throw err;
+                    throw new HttpError(err.message || "Network error", 0);
+                }
+                await delay(200 * attempt);
+            }
+        }
+        throw lastError instanceof Error ? lastError : new Error("Unknown HTTP error");
+    }
+    /**
+     * Sanitizes stack traces by removing file paths, keeping only function names and line numbers
+     */
+    sanitizeStack(stack) {
+        if (!stack)
+            return undefined;
+        try {
+            // Remove file:// URLs and absolute paths, keep only filename and line numbers
+            const lines = stack.split('\n');
+            const sanitizedLines = lines.map(line => {
+                let sanitized = line;
+                // Remove file:// URLs (e.g., file:///Users/path/to/file.js:123:45)
+                sanitized = sanitized.replace(/file:\/\/\/[^\s\)]+/g, (match) => {
+                    // Extract just the filename and line numbers
+                    const filenameMatch = match.match(/([^\/]+\.(js|ts|mjs|cjs)):(\d+):(\d+)/);
+                    if (filenameMatch) {
+                        return `${filenameMatch[1]}:${filenameMatch[3]}:${filenameMatch[4]}`;
+                    }
+                    return '';
+                });
+                // Remove absolute paths (e.g., /Users/path/to/file.js:123:45)
+                sanitized = sanitized.replace(/\/(?:[^\/\s]+\/)+([^\/\s]+\.(js|ts|mjs|cjs)):(\d+):(\d+)/g, '$1:$3:$4');
+                // Simplify node_modules paths (e.g., node_modules/@modelcontextprotocol/sdk/dist/esm/server/mcp.js)
+                sanitized = sanitized.replace(/node_modules\/([^\/\s]+)\/[^\s\)]+/g, 'node_modules/$1');
+                return sanitized.trim();
+            });
+            return sanitizedLines.join('\n');
+        }
+        catch {
+            // If sanitization fails, return a minimal version without paths
+            return stack.split('\n').slice(0, 3).join('\n'); // Keep only first 3 lines
+        }
+    }
+    /**
+     * Formats response body to be more user-readable
+     */
+    formatResponseBody(body, status) {
+        if (body === undefined || body === null) {
+            return body;
+        }
+        // For error responses, extract meaningful information
+        if (status >= 400 && typeof body === "object" && body !== null) {
+            const bodyObj = body;
+            const formatted = {};
+            // Extract common error fields
+            if (typeof bodyObj.statusCode === "number") {
+                formatted.statusCode = bodyObj.statusCode;
+            }
+            if (typeof bodyObj.statusDescription === "string") {
+                formatted.statusDescription = bodyObj.statusDescription;
+            }
+            if (typeof bodyObj.error === "string") {
+                formatted.error = bodyObj.error;
+            }
+            if (typeof bodyObj.message === "string") {
+                formatted.message = bodyObj.message;
+            }
+            // Include data if present
+            if (bodyObj.data !== undefined) {
+                formatted.data = bodyObj.data;
+            }
+            // If we extracted meaningful fields, return formatted version
+            if (Object.keys(formatted).length > 0) {
+                return formatted;
+            }
+        }
+        // For non-error responses or if formatting didn't extract anything, use sanitized body
+        return this.sanitizeBody(body);
+    }
+    /**
+     * Sanitizes headers to redact sensitive information
+     */
+    sanitizeHeaders(headers) {
+        const sanitized = {};
+        const sensitiveKeys = ["key", "sign", "secret", "password", "token", "authorization", "auth"];
+        for (const [key, value] of Object.entries(headers)) {
+            if (value === undefined)
+                continue;
+            const lowerKey = key.toLowerCase();
+            if (sensitiveKeys.some((sk) => lowerKey.includes(sk))) {
+                sanitized[key] = redact(value);
+            }
+            else {
+                sanitized[key] = value;
+            }
+        }
+        return sanitized;
+    }
+    /**
+     * Sanitizes body to prevent logging huge payloads
+     */
+    sanitizeBody(body) {
+        if (body === undefined || body === null) {
+            return body;
+        }
+        // If body is a string, check size
+        if (typeof body === "string") {
+            if (body.length > 5000) {
+                return body.substring(0, 5000) + "... [truncated]";
+            }
+            return body;
+        }
+        // If body is an object, stringify and check size
+        try {
+            const jsonStr = JSON.stringify(body);
+            if (jsonStr.length > 5000) {
+                return JSON.parse(jsonStr.substring(0, 5000) + '..."}');
+            }
+            return body;
+        }
+        catch {
+            return body;
+        }
+    }
+}
+//# sourceMappingURL=httpClient.js.map

package/dist/http/httpClient.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"httpClient.js","sourceRoot":"","sources":["../../src/http/httpClient.ts"],"names":[],"mappings":"AAAA;;EAEE;AAEF,OAAO,EAAE,UAAU,IAAI,KAAK,EAAE,MAAM,sBAAsB,CAAC;AAC3D,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAiBpD,MAAM,OAAO,SAAU,SAAQ,KAAK;IAIlC,YAAY,OAAe,EAAE,MAAc,EAAE,OAAiB,EAAE,cAAwB;QACtF,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;IACvC,CAAC;CACF;AAED;;;;;GAKG;AACH,SAAS,cAAc,CAAC,IAAY;IAClC,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,qBAAqB;IACrB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACzG,OAAO,IAAI,CAAC;IACd,CAAC;IAED,oCAAoC;IACpC,MAAM,kBAAkB,GAAG;QACzB,wCAAwC;QACxC,+BAA+B;QAC/B,8DAA8D;QAC9D,8CAA8C;QAC9C,wCAAwC;QACxC,4BAA4B;QAC5B,sCAAsC;QACtC,0BAA0B;QAC1B,yCAAyC;QACzC,+BAA+B;KAChC,CAAC;IAEF,KAAK,MAAM,OAAO,IAAI,kBAAkB,EAAE,CAAC;QACzC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,IAAI,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC;YACnC,kCAAkC;YAClC,OAAO,GAAG,OAAO;iBACd,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC;iBACvB,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC;iBACvB,OAAO,CAAC,QAAQ,EAAE,GAAG,CAAC;iBACtB,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC;iBACrB,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC;iBACrB,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC;iBACvB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;iBACpB,IAAI,EAAE,CAAC;YAEV,IAAI,OAAO,IAAI,OAAO,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;gBACnC,2BAA2B;gBAC3B,IAAI,IAAI,CAAC,QAAQ,CAAC,wBAAwB,CAAC,EAAE,CAAC;oBAC5C,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,6BAA6B,CAAC,CAAC;oBAC1D,IAAI,OAAO,EAAE,CAAC;wBACZ,OAAO,2GAA2G,CAAC;oBACrH,CAAC;oBACD,OAAO,gGAAgG,CAAC;gBAC1G,CAAC;gBAED,mCAAmC;gBACnC,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;gBACpD,IAAI,cAAc,EAAE,CAAC;oBACnB,MAAM,SAAS,GAAG,cAAc,CAAC,CAAC,CAAC,CAAC;oBACpC,IAAI,SAAS,KAAK,MAAM,EAAE,CAAC;wBACzB,OAAO,yGAAyG,CAAC;oBACnH,CAAC;oBACD,OAAO,qBAAqB,SAAS,MAAM,OAAO,EAAE,CAAC;gBACvD,CAAC;gBAED,OAAO,OAAO,CAAC;YACjB,CAAC;QACH,CAAC;IACH,CAAC;IAED,+CAA+C;IAC/C,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,uCAAuC,CAAC,CAAC;IACtE,IAAI,SAAS,EAAE,CAAC;QACd,IAAI,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC;aACpB,OAAO,CAAC,mCAAmC,EAAE,EAAE,CAAC;aAChD,OAAO,CAAC,iCAAiC,EAAE,EAAE,CAAC;aAC9C,OAAO,CAAC,UAAU,EAAE,GAAG,CAAC;aACxB,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC;aACpB,IAAI,EAAE,CAAC;QAEV,IAAI,IAAI,CAAC,MAAM,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YAC1C,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,OAAO,UAAU;IACrB,YAA6B,WAAgD,MAAM;QAAtD,aAAQ,GAAR,QAAQ,CAA8C;IAAG,CAAC;IAEvF,KAAK,CAAC,OAAO,CAAc,IAAwB;QACjD,MAAM,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,GAAG,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC;QACxE,MAAM,YAAY,GAAG,MAAM,CAAC,WAAW,EAAE,KAAK,KAAK,CAAC;QACpD,MAAM,WAAW,GAAG,YAAY,CAAC,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAEtD,MAAM,OAAO,GAAG,IAAI,KAAK,SAAS,IAAI,IAAI,KAAK,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;QAE3H,kDAAkD;QAClD,MAAM,cAAc,GAA2B;YAC7C,GAAG,OAAO;SACX,CAAC;QACF,IAAI,OAAO,EAAE,CAAC;YACZ,cAAc,CAAC,cAAc,CAAC,GAAG,kBAAkB,CAAC;QACtD,CAAC;QAED,mBAAmB;QACnB,MAAM,gBAAgB,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAClD,MAAM,iBAAiB,GAAG,IAAI,CAAC,SAAS,CAAC;YACvC,KAAK,EAAE,MAAM;YACb,IAAI,EAAE,cAAc;YACpB,SAAS,EAAE,gBAAgB;YAC3B,MAAM,EAAE,MAAM,CAAC,WAAW,EAAE;YAC5B,GAAG;YACH,OAAO,EAAE,IAAI,CAAC,eAAe,CAAC,cAAc,CAAC;YAC7C,IAAI,EAAE,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC;SACjC,CAAC,CAAC;QACH,UAAU,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;QAElC,IAAI,OAAO,GAAG,CAAC,CAAC;QAChB,IAAI,SAAkB,CAAC;QACvB,OAAO,OAAO,GAAG,WAAW,EAAE,CAAC;YAC7B,OAAO,EAAE,CAAC;YACV,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;YACzC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,SAAS,CAAC,CAAC;YAC9D,MAAM,gBAAgB,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACpC,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;oBAC3B,MAAM;oBACN,OAAO,EAAE,cAAc;oBACvB,IAAI,EAAE,OAAO;oBACb,MAAM,EAAE,UAAU,CAAC,MAAM;iBACnB,CAAC,CAAC;gBACV,YAAY,CAAC,KAAK,CAAC,CAAC;gBAEpB,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,MAAM,WAAW,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;gBAC1D,MAAM,MAAM,GAAG,WAAW,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;gBAEvJ,IAAI,IAAI,GAAQ,SAAS,CAAC;gBAC1B,IAAI,WAAW,GAAkB,IAAI,CAAC;gBAEtC,IAAI,MAAM,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;oBACtB,+BAA+B;oBAC/B,WAAW,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC;oBACnC,IAAI,GAAG,IAAI,CAAC,CAAC,iCAAiC;gBAChD,CAAC;qBAAM,CAAC;oBACN,uBAAuB;oBACvB,IAAI,CAAC;wBACH,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;oBAC7C,CAAC;oBAAC,MAAM,CAAC;wBACP,IAAI,GAAG,IAAI,CAAC;oBACd,CAAC;gBACH,CAAC;gBAED,MAAM,QAAQ,GAAoB;oBAChC,MAAM,EAAE,GAAG,CAAC,MAAM;oBAClB,OAAO,EAAE,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;oBAClD,IAAI;iBACL,CAAC;gBAEF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,gBAAgB,CAAC;gBAEjD,8CAA8C;gBAC9C,MAAM,iBAAiB,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;gBACnD,MAAM,YAAY,GAAG,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;gBAE/D,MAAM,kBAAkB,GAAG,IAAI,CAAC,SAAS,CAAC;oBACxC,KAAK,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM;oBAC/B,IAAI,EAAE,eAAe;oBACrB,SAAS,EAAE,iBAAiB;oBAC5B,MAAM,EAAE,MAAM,CAAC,WAAW,EAAE;oBAC5B,GAAG;oBACH,MAAM,EAAE,GAAG,CAAC,MAAM;oBAClB,OAAO,EAAE,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC;oBAC/C,IAAI,EAAE,YAAY;oBAClB,UAAU;oBACV,OAAO;oBACP,cAAc,EAAE,MAAM;iBACvB,CAAC,CAAC;gBACH,UAAU,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC;gBAEnC,IAAI,GAAG,CAAC,EAAE,EAAE,CAAC;oBACX,OAAO,QAAQ,CAAC;gBAClB,CAAC;gBAED,mCAAmC;gBACnC,IAAI,YAAY,IAAI,CAAC,GAAG,CAAC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,IAAI,OAAO,GAAG,WAAW,EAAE,CAAC;oBAC7G,MAAM,UAAU,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC;oBAChE,MAAM,SAAS,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,GAAG,OAAO,CAAC;oBACrE,MAAM,KAAK,CAAC,SAAS,CAAC,CAAC;oBACvB,SAAS;gBACX,CAAC;gBAED,+DAA+D;gBAC/D,MAAM,YAAY,GAAG,WAAW,IAAI,QAAQ,GAAG,CAAC,MAAM,EAAE,CAAC;gBACzD,MAAM,IAAI,SAAS,CAAC,YAAY,EAAE,GAAG,CAAC,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;YAC9D,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,YAAY,CAAC,KAAK,CAAC,CAAC;gBACpB,SAAS,GAAG,GAAG,CAAC;gBAChB,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,gBAAgB,CAAC;gBAEjD,8BAA8B;gBAC9B,IAAI,OAAO,IAAI,WAAW,EAAE,CAAC;oBAC3B,iBAAiB;oBACjB,MAAM,cAAc,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;oBAChD,MAAM,YAAY,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;oBACtE,MAAM,UAAU,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;oBAEhE,MAAM,eAAe,GAAG,IAAI,CAAC,SAAS,CAAC;wBACrC,KAAK,EAAE,OAAO;wBACd,IAAI,EAAE,YAAY;wBAClB,SAAS,EAAE,cAAc;wBACzB,MAAM,EAAE,MAAM,CAAC,WAAW,EAAE;wBAC5B,GAAG;wBACH,OAAO,EAAE,IAAI,CAAC,eAAe,CAAC,cAAc,CAAC;wBAC7C,IAAI,EAAE,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC;wBAChC,UAAU;wBACV,OAAO;wBACP,KAAK,EAAE,YAAY;wBACnB,KAAK,EAAE,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC;qBACtC,CAAC,CAAC;oBACH,UAAU,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;oBAEhC,IAAI,GAAG,YAAY,SAAS;wBAAE,MAAM,GAAG,CAAC;oBACxC,MAAM,IAAI,SAAS,CAAE,GAAa,CAAC,OAAO,IAAI,eAAe,EAAE,CAAC,CAAC,CAAC;gBACpE,CAAC;gBACD,MAAM,KAAK,CAAC,GAAG,GAAG,OAAO,CAAC,CAAC;YAC7B,CAAC;QACH,CAAC;QAED,MAAM,SAAS,YAAY,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACjF,CAAC;IAED;;OAEG;IACK,aAAa,CAAC,KAAyB;QAC7C,IAAI,CAAC,KAAK;YAAE,OAAO,SAAS,CAAC;QAE7B,IAAI,CAAC;YACH,8EAA8E;YAC9E,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,cAAc,GAAG,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE;gBACtC,IAAI,SAAS,GAAG,IAAI,CAAC;gBAErB,mEAAmE;gBACnE,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,sBAAsB,EAAE,CAAC,KAAK,EAAE,EAAE;oBAC9D,6CAA6C;oBAC7C,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,uCAAuC,CAAC,CAAC;oBAC3E,IAAI,aAAa,EAAE,CAAC;wBAClB,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC,IAAI,aAAa,CAAC,CAAC,CAAC,IAAI,aAAa,CAAC,CAAC,CAAC,EAAE,CAAC;oBACvE,CAAC;oBACD,OAAO,EAAE,CAAC;gBACZ,CAAC,CAAC,CAAC;gBAEH,8DAA8D;gBAC9D,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,2DAA2D,EAAE,UAAU,CAAC,CAAC;gBAEvG,oGAAoG;gBACpG,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,qCAAqC,EAAE,iBAAiB,CAAC,CAAC;gBAExF,OAAO,SAAS,CAAC,IAAI,EAAE,CAAC;YAC1B,CAAC,CAAC,CAAC;YAEH,OAAO,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACnC,CAAC;QAAC,MAAM,CAAC;YACP,gEAAgE;YAChE,OAAO,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,0BAA0B;QAC7E,CAAC;IACH,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,IAAa,EAAE,MAAc;QACtD,IAAI,IAAI,KAAK,SAAS,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;YACxC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,sDAAsD;QACtD,IAAI,MAAM,IAAI,GAAG,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;YAC/D,MAAM,OAAO,GAAG,IAA+B,CAAC;YAChD,MAAM,SAAS,GAA4B,EAAE,CAAC;YAE9C,8BAA8B;YAC9B,IAAI,OAAO,OAAO,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;gBAC3C,SAAS,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;YAC5C,CAAC;YACD,IAAI,OAAO,OAAO,CAAC,iBAAiB,KAAK,QAAQ,EAAE,CAAC;gBAClD,SAAS,CAAC,iBAAiB,GAAG,OAAO,CAAC,iBAAiB,CAAC;YAC1D,CAAC;YACD,IAAI,OAAO,OAAO,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;gBACtC,SAAS,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;YAClC,CAAC;YACD,IAAI,OAAO,OAAO,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;gBACxC,SAAS,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;YACtC,CAAC;YAED,0BAA0B;YAC1B,IAAI,OAAO,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;gBAC/B,SAAS,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;YAChC,CAAC;YAED,8DAA8D;YAC9D,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACtC,OAAO,SAAS,CAAC;YACnB,CAAC;QACH,CAAC;QAED,uFAAuF;QACvF,OAAO,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;IACjC,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,OAA2C;QACjE,MAAM,SAAS,GAA2B,EAAE,CAAC;QAC7C,MAAM,aAAa,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,UAAU,EAAE,OAAO,EAAE,eAAe,EAAE,MAAM,CAAC,CAAC;QAE9F,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;YACnD,IAAI,KAAK,KAAK,SAAS;gBAAE,SAAS;YAClC,MAAM,QAAQ,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;YACnC,IAAI,aAAa,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;gBACtD,SAAS,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;YACjC,CAAC;iBAAM,CAAC;gBACN,SAAS,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YACzB,CAAC;QACH,CAAC;QAED,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,IAAa;QAChC,IAAI,IAAI,KAAK,SAAS,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;YACxC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,kCAAkC;QAClC,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,IAAI,IAAI,CAAC,MAAM,GAAG,IAAI,EAAE,CAAC;gBACvB,OAAO,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,iBAAiB,CAAC;YACrD,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,iDAAiD;QACjD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;YACrC,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,EAAE,CAAC;gBAC1B,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;YAC1D,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/index.js

@@ -0,0 +1,60 @@
+import { config as dotenvConfig } from "dotenv";
+import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
+import { getConfig } from "./config.js";
+import { EnvCredentialsProvider } from "./security/credentials.js";
+import { HttpClient } from "./http/httpClient.js";
+import { ZebpayAPI } from "./private/ZebpayAPI.js";
+import { SpotClient } from "./private/SpotClient.js";
+import { FuturesClient } from "./private/FuturesClient.js";
+import { PublicClient } from "./public/PublicClient.js";
+import { PublicFuturesClient } from "./public/PublicFuturesClient.js";
+import { registerSpotTools } from "./mcp/tools_spot.js";
+import { registerFuturesTools } from "./mcp/tools_futures.js";
+import { registerResources } from "./mcp/resources.js";
+import { registerPrompts } from "./mcp/prompts.js";
+import { fileLogger } from "./utils/fileLogger.js";
+dotenvConfig();
+function createServer() {
+    return new McpServer({
+        name: "zebpay",
+        version: "1.0.0",
+    }, {
+        capabilities: {
+            tools: {},
+            logging: {},
+            resources: {},
+            prompts: {},
+        },
+    });
+}
+async function main() {
+    const cfg = getConfig();
+    if (cfg.logFile) {
+        await fileLogger.initialize(cfg.logFile);
+    }
+    const creds = new EnvCredentialsProvider();
+    const http = new HttpClient(cfg.logLevel);
+    const api = new ZebpayAPI(cfg, creds, http);
+    const spot = new SpotClient(api);
+    const futuresPrivateClient = new FuturesClient(api);
+    const publicClient = new PublicClient(cfg, http);
+    const futuresPublicClient = new PublicFuturesClient(cfg, http);
+    const mcp = createServer();
+    registerSpotTools(mcp, spot, publicClient, cfg);
+    registerFuturesTools(mcp, futuresPublicClient, futuresPrivateClient, cfg);
+    registerResources(mcp, publicClient, spot, cfg);
+    registerPrompts(mcp, spot, publicClient, cfg);
+    const transport = new StdioServerTransport();
+    await mcp.connect(transport);
+    process.on("SIGINT", async () => {
+        await fileLogger.close();
+        process.exit(0);
+    });
+}
+main().catch(async (error) => {
+    console.error("FATAL: Failed to start Zebpay MCP stdio server", error);
+    await fileLogger.close();
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,IAAI,YAAY,EAAE,MAAM,QAAQ,CAAC;AAChD,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACpE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AAEjF,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AACnE,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAClD,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAC;AACnD,OAAO,EAAE,UAAU,EAAE,MAAM,yBAAyB,CAAC;AACrD,OAAO,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAC3D,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AACxD,OAAO,EAAE,mBAAmB,EAAE,MAAM,iCAAiC,CAAC;AACtE,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,OAAO,EAAE,oBAAoB,EAAE,MAAM,wBAAwB,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AACvD,OAAO,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AACnD,OAAO,EAAE,UAAU,EAAE,MAAM,uBAAuB,CAAC;AAEnD,YAAY,EAAE,CAAC;AAEf,SAAS,YAAY;IACnB,OAAO,IAAI,SAAS,CAClB;QACE,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,OAAO;KACjB,EACD;QACE,YAAY,EAAE;YACZ,KAAK,EAAE,EAAE;YACT,OAAO,EAAE,EAAE;YACX,SAAS,EAAE,EAAE;YACb,OAAO,EAAE,EAAE;SACZ;KACF,CACF,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,IAAI;IACjB,MAAM,GAAG,GAAG,SAAS,EAAE,CAAC;IACxB,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;QAChB,MAAM,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IAC3C,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,sBAAsB,EAAE,CAAC;IAC3C,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC1C,MAAM,GAAG,GAAG,IAAI,SAAS,CAAC,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;IAC5C,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,oBAAoB,GAAG,IAAI,aAAa,CAAC,GAAG,CAAC,CAAC;IACpD,MAAM,YAAY,GAAG,IAAI,YAAY,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IACjD,MAAM,mBAAmB,GAAG,IAAI,mBAAmB,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IAE/D,MAAM,GAAG,GAAG,YAAY,EAAE,CAAC;IAC3B,iBAAiB,CAAC,GAAG,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG,CAAC,CAAC;IAChD,oBAAoB,CAAC,GAAG,EAAE,mBAAmB,EAAE,oBAAoB,EAAE,GAAG,CAAC,CAAC;IAC1E,iBAAiB,CAAC,GAAG,EAAE,YAAY,EAAE,IAAI,EAAE,GAAG,CAAC,CAAC;IAChD,eAAe,CAAC,GAAG,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG,CAAC,CAAC;IAE9C,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,MAAM,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAE7B,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,KAAK,IAAI,EAAE;QAC9B,MAAM,UAAU,CAAC,KAAK,EAAE,CAAC;QACzB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC,CAAC,CAAC;AACL,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;IAC3B,OAAO,CAAC,KAAK,CAAC,gDAAgD,EAAE,KAAK,CAAC,CAAC;IACvE,MAAM,UAAU,CAAC,KAAK,EAAE,CAAC;IACzB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/mcp/errors.d.ts

@@ -0,0 +1,21 @@
+import { McpError } from "@modelcontextprotocol/sdk/types.js";
+/**
+ * Creates an MCP error for invalid parameters with helpful messages
+ */
+export declare function createInvalidParamsError(message: string, data?: unknown): McpError;
+/**
+ * Creates an MCP error for internal/server errors
+ */
+export declare function createInternalError(message: string, data?: unknown): McpError;
+/**
+ * Converts HTTP errors to appropriate MCP errors.
+ *
+ * NOTE: This is transport-agnostic - converts errors from Zebpay API (external)
+ * to MCP-compliant errors. Works identically for both stdio and HTTP transports.
+ *
+ * @param status HTTP status code from Zebpay API
+ * @param message Error message (may be HTML if from Cloudflare)
+ * @param details Additional error details
+ * @param isHtmlResponse Whether the response was HTML (for Cloudflare errors)
+ */
+export declare function convertHttpErrorToMcpError(status: number, message: string, details?: unknown, isHtmlResponse?: boolean): McpError;