@zeph-to/mcp-server 1.10.0 → 1.11.1

package/dist/config.d.ts

@@ -4,6 +4,15 @@ export interface McpServerConfig {
     hookId?: string;
     deviceId?: string;
     sessionId?: string;
+    /** Last path segment of the project directory — prefixed onto push titles. */
+    projectName: string;
 }
+/**
+ * Prefix a push title with the project name so the device feed stays
+ * scannable — "zeph · Build finished" instead of a bare "Build finished".
+ * Idempotent: a title already carrying the project segment is returned
+ * unchanged (guards against double-prefixing on retries).
+ */
+export declare const formatPushTitle: (projectName: string, title: string) => string;
 export declare const loadConfig: () => McpServerConfig;
 //# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAQA,MAAM,WAAW,eAAe;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB;AAgGD,eAAO,MAAM,UAAU,QAAO,eAqB7B,CAAC"}
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAQA,MAAM,WAAW,eAAe;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,8EAA8E;IAC9E,WAAW,EAAE,MAAM,CAAC;CACvB;AAiBD;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAI,aAAa,MAAM,EAAE,OAAO,MAAM,KAAG,MAGpE,CAAC;AAgGF,eAAO,MAAM,UAAU,QAAO,eAsB7B,CAAC"}

package/dist/config.js

@@ -1,12 +1,35 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.loadConfig = void 0;
+exports.loadConfig = exports.formatPushTitle = void 0;
 const fs_1 = require("fs");
 const os_1 = require("os");
 const crypto_1 = require("crypto");
 const child_process_1 = require("child_process");
 const path_1 = require("path");
 const DEFAULT_BASE_URL = 'https://api.zeph.to/v1';
+const PROJECT_DIR_ENV_KEYS = ['CLAUDE_PROJECT_DIR', 'CURSOR_PROJECT_DIR', 'WINDSURF_PROJECT_DIR'];
+/** The project directory the agent runs in, across supported agents. */
+const detectProjectDir = () => {
+    for (const key of PROJECT_DIR_ENV_KEYS) {
+        const val = process.env[key];
+        if (val)
+            return val;
+    }
+    return process.cwd();
+};
+/** Last path segment of a directory: "/Users/me/code/zeph" -> "zeph". */
+const projectNameFromDir = (dir) => dir.split('/').filter(Boolean).pop() ?? 'project';
+/**
+ * Prefix a push title with the project name so the device feed stays
+ * scannable — "zeph · Build finished" instead of a bare "Build finished".
+ * Idempotent: a title already carrying the project segment is returned
+ * unchanged (guards against double-prefixing on retries).
+ */
+const formatPushTitle = (projectName, title) => {
+    const prefix = `${projectName} · `;
+    return title.startsWith(prefix) ? title : prefix + title;
+};
+exports.formatPushTitle = formatPushTitle;
 const resolvedEnv = (key) => {
     const val = process.env[key];
     return val && !val.startsWith('${') ? val : undefined;
@@ -111,6 +134,7 @@ const loadConfig = () => {
         hookId: resolvedEnv('ZEPH_HOOK_ID') ?? fileConfig.hookId,
         deviceId: resolvedEnv('ZEPH_DEVICE_ID') ?? fileConfig.deviceId,
         sessionId,
+        projectName: projectNameFromDir(detectProjectDir()),
     };
 };
 exports.loadConfig = loadConfig;

package/dist/poll.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"poll.d.ts","sourceRoot":"","sources":["../src/poll.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACrD,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAEpD,MAAM,WAAW,WAAW;IAC1B,KAAK,CAAC,EAAE;QAAE,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,CAAA;KAAE,CAAC;IAE5C,gBAAgB,EAAE,CAAC,YAAY,EAAE,GAAG,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CACxD;AAOD,eAAO,MAAM,eAAe,GAC1B,QAAQ,aAAa,EACrB,QAAQ,MAAM,EACd,SAAS,MAAM,EACf,gBAAgB,MAAM,EACtB,KAAK,WAAW,KACf,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAsClC,CAAC"}
+{"version":3,"file":"poll.d.ts","sourceRoot":"","sources":["../src/poll.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACrD,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAEpD,MAAM,WAAW,WAAW;IAC1B,KAAK,CAAC,EAAE;QAAE,aAAa,CAAC,EAAE,MAAM,GAAG,MAAM,CAAA;KAAE,CAAC;IAE5C,gBAAgB,EAAE,CAAC,YAAY,EAAE,GAAG,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CACxD;AAOD,eAAO,MAAM,eAAe,GAC1B,QAAQ,aAAa,EACrB,QAAQ,MAAM,EACd,SAAS,MAAM,EACf,gBAAgB,MAAM,EACtB,KAAK,WAAW,KACf,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAwClC,CAAC"}

package/dist/poll.js

@@ -33,8 +33,10 @@ const pollForResponse = async (client, hookId, eventId, timeoutSeconds, ctx) =>
                 });
             }
         }
-        // Adaptive interval: 2s for first 5 attempts, then 3s
-        const interval = attempt < 5 ? 2000 : 3000;
+        // Adaptive interval: poll every 1s while the user is likely still at
+        // their device (first ~60 attempts ≈ 1 min), then back off to 3s for
+        // long waits. The tight 1s window keeps post-tap detection snappy.
+        const interval = attempt < 60 ? 1000 : 3000;
         await sleep(interval);
         attempt++;
     }

package/dist/sanitize.d.ts

@@ -0,0 +1,34 @@
+/**
+ * Defensive cleanup for tool arguments.
+ *
+ * An agent occasionally emits a malformed tool call where a parameter's
+ * closing tag is wrong, so the serialized markup of the *following*
+ * parameters bleeds into an earlier string argument.
+ *
+ * Observed in the wild — a zeph_ask `body` arrived as:
+ *
+ *   "...Commit now or test first?</body>
+ *    <parameter name=\"actions\">[{\"id\":\"commit\",...}]"
+ *
+ * The actions JSON leaked into `body`, and `actions` itself arrived
+ * undefined — so the push showed the raw markup and no buttons.
+ *
+ * sanitizeText strips the leaked markup; recoverActions pulls the
+ * swallowed actions array back out so the call still works.
+ */
+export interface RecoveredAction {
+    id: string;
+    label: string;
+    style?: 'primary' | 'secondary' | 'danger';
+}
+/**
+ * Strip leaked tool-call markup from a free-text argument. Returns the
+ * text unchanged when no leak is detected.
+ */
+export declare const sanitizeText: (text: string | undefined) => string | undefined;
+/**
+ * Recover an `actions` array that leaked into the body of a malformed
+ * zeph_ask call. Returns undefined when nothing parseable is found.
+ */
+export declare const recoverActions: (text: string | undefined) => RecoveredAction[] | undefined;
+//# sourceMappingURL=sanitize.d.ts.map

package/dist/sanitize.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitize.d.ts","sourceRoot":"","sources":["../src/sanitize.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,SAAS,GAAG,WAAW,GAAG,QAAQ,CAAC;CAC5C;AAeD;;;GAGG;AACH,eAAO,MAAM,YAAY,GAAI,MAAM,MAAM,GAAG,SAAS,KAAG,MAAM,GAAG,SAIhE,CAAC;AASF;;;GAGG;AACH,eAAO,MAAM,cAAc,GAAI,MAAM,MAAM,GAAG,SAAS,KAAG,eAAe,EAAE,GAAG,SAgB7E,CAAC"}

package/dist/sanitize.js

@@ -0,0 +1,71 @@
+"use strict";
+/**
+ * Defensive cleanup for tool arguments.
+ *
+ * An agent occasionally emits a malformed tool call where a parameter's
+ * closing tag is wrong, so the serialized markup of the *following*
+ * parameters bleeds into an earlier string argument.
+ *
+ * Observed in the wild — a zeph_ask `body` arrived as:
+ *
+ *   "...Commit now or test first?</body>
+ *    <parameter name=\"actions\">[{\"id\":\"commit\",...}]"
+ *
+ * The actions JSON leaked into `body`, and `actions` itself arrived
+ * undefined — so the push showed the raw markup and no buttons.
+ *
+ * sanitizeText strips the leaked markup; recoverActions pulls the
+ * swallowed actions array back out so the call still works.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.recoverActions = exports.sanitizeText = void 0;
+// Markers that should never appear in a real notification body — their
+// presence means tool-call markup has leaked in. Cut at the earliest one.
+const LEAK_MARKERS = ['</body>', '</parameter>', '<parameter name=', '<parameter '];
+const findLeakStart = (text) => {
+    let earliest = -1;
+    for (const marker of LEAK_MARKERS) {
+        const idx = text.indexOf(marker);
+        if (idx !== -1 && (earliest === -1 || idx < earliest))
+            earliest = idx;
+    }
+    return earliest;
+};
+/**
+ * Strip leaked tool-call markup from a free-text argument. Returns the
+ * text unchanged when no leak is detected.
+ */
+const sanitizeText = (text) => {
+    if (!text)
+        return text;
+    const cut = findLeakStart(text);
+    return cut === -1 ? text : text.slice(0, cut).trimEnd();
+};
+exports.sanitizeText = sanitizeText;
+const isActionArray = (value) => Array.isArray(value) &&
+    value.length > 0 &&
+    value.every((a) => a && typeof a.id === 'string' && typeof a.label === 'string');
+/**
+ * Recover an `actions` array that leaked into the body of a malformed
+ * zeph_ask call. Returns undefined when nothing parseable is found.
+ */
+const recoverActions = (text) => {
+    if (!text)
+        return undefined;
+    const marker = text.search(/<(?:antml:)?parameter name="actions">/);
+    if (marker === -1)
+        return undefined;
+    const after = text.slice(marker);
+    const start = after.indexOf('[');
+    const end = after.lastIndexOf(']');
+    if (start === -1 || end <= start)
+        return undefined;
+    try {
+        const parsed = JSON.parse(after.slice(start, end + 1));
+        return isActionArray(parsed) ? parsed : undefined;
+    }
+    catch {
+        return undefined;
+    }
+};
+exports.recoverActions = recoverActions;

package/dist/tools/ask.d.ts

@@ -1,5 +1,5 @@
 import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import type { ZephApiClient } from '../api-client.js';
-import type { McpServerConfig } from '../config.js';
+import { type McpServerConfig } from '../config.js';
 export declare const registerAskTool: (server: McpServer, client: ZephApiClient, config: McpServerConfig) => void;
 //# sourceMappingURL=ask.d.ts.map

package/dist/tools/ask.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"ask.d.ts","sourceRoot":"","sources":["../../src/tools/ask.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAOpD,eAAO,MAAM,eAAe,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAmHhG,CAAC"}
+{"version":3,"file":"ask.d.ts","sourceRoot":"","sources":["../../src/tools/ask.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGtD,OAAO,EAAmB,KAAK,eAAe,EAAE,MAAM,cAAc,CAAC;AAwBrE,eAAO,MAAM,eAAe,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAgIhG,CAAC"}

package/dist/tools/ask.js

@@ -4,10 +4,23 @@ exports.registerAskTool = void 0;
 const zod_1 = require("zod");
 const error_format_js_1 = require("../error-format.js");
 const poll_js_1 = require("../poll.js");
+const config_js_1 = require("../config.js");
 const crypto_js_1 = require("../crypto.js");
 const mime_js_1 = require("../mime.js");
-const BODY_FILE_THRESHOLD = 512;
+const sanitize_js_1 = require("../sanitize.js");
+// The device feed shows a short preview of the body. Anything longer than
+// this gets truncated there, so we attach the full text as a file — the
+// user can always open the complete content instead of squinting at a
+// clipped preview.
 const PREVIEW_LENGTH = 200;
+/** Self-contained Markdown for the attached response.md: heading + body + options. */
+const buildAskMarkdown = (title, body, actions) => {
+    const parts = [`# ${title}`, '', body];
+    if (actions && actions.length > 0) {
+        parts.push('', '---', '', `**Options:** ${actions.map((a) => a.label).join(' · ')}`);
+    }
+    return parts.join('\n');
+};
 const registerAskTool = (server, client, config) => {
     server.registerTool('zeph_ask', {
         description: 'Ask the user a question with optional quick-reply buttons and a text input field. Combines prompt (buttons) and input (text) in a single notification. The user can either tap a button or type a response. Blocks until the user responds or the timeout is reached. Requires ZEPH_HOOK_ID environment variable.',
@@ -50,21 +63,31 @@ const registerAskTool = (server, client, config) => {
         if (!config.hookId)
             return (0, error_format_js_1.hookNotConfiguredError)();
         try {
-            const bodyBytes = body ? new TextEncoder().encode(body).byteLength : 0;
-            const isLongBody = bodyBytes > BODY_FILE_THRESHOLD;
-            let triggerBody = body;
+            const pushTitle = (0, config_js_1.formatPushTitle)(config.projectName, title);
+            // Defend against malformed tool calls where the actions array leaked
+            // into the body (a mis-closed `body` parameter). Recover the actions
+            // from the raw body first, then strip the leaked markup. Without this
+            // the push arrives with no buttons and raw markup in the text.
+            const effectiveActions = actions && actions.length > 0 ? actions : (0, sanitize_js_1.recoverActions)(body);
+            const cleanBody = (0, sanitize_js_1.sanitizeText)(body);
+            // Attach a file whenever the body would be clipped in the feed preview.
+            const exceedsPreview = !!cleanBody && cleanBody.length > PREVIEW_LENGTH;
+            let triggerBody = cleanBody;
             let files;
-            if (isLongBody && body) {
+            if (exceedsPreview && cleanBody) {
                 const fileName = 'response.md';
                 const fileType = (0, mime_js_1.inferMimeType)(fileName);
                 const canEncrypt = !!(0, crypto_js_1.getKeyPair)() && !!(0, crypto_js_1.getPublicKey)();
-                let uploadContent = body;
+                // Self-contained Markdown so the file alone tells the whole story.
+                const fileMarkdown = buildAskMarkdown(title, cleanBody, effectiveActions);
+                const fileBytes = new TextEncoder().encode(fileMarkdown).byteLength;
+                let uploadContent = fileMarkdown;
                 let uploadContentType = fileType;
                 let fileIv;
                 let fileEncryptedKey;
                 if (canEncrypt) {
                     try {
-                        const encrypted = await (0, crypto_js_1.encryptFileForSelf)(body);
+                        const encrypted = await (0, crypto_js_1.encryptFileForSelf)(fileMarkdown);
                         uploadContent = encrypted.ciphertext;
                         uploadContentType = 'application/octet-stream';
                         fileIv = encrypted.iv;
@@ -74,15 +97,15 @@ const registerAskTool = (server, client, config) => {
                         console.error('[Crypto] File encryption failed, sending plaintext:', err);
                     }
                 }
-                const upload = await client.requestUpload({ fileName, fileType: uploadContentType, fileSize: typeof uploadContent === 'string' ? bodyBytes : uploadContent.length });
+                const upload = await client.requestUpload({ fileName, fileType: uploadContentType, fileSize: typeof uploadContent === 'string' ? fileBytes : uploadContent.length });
                 await client.uploadToS3(upload.data.uploadUrl, uploadContent, uploadContentType);
-                triggerBody = body.length > PREVIEW_LENGTH ? body.slice(0, PREVIEW_LENGTH) + '...' : body;
-                files = [{ fileKey: upload.data.fileKey, fileName, fileSize: bodyBytes, fileType, iv: fileIv, encryptedKey: fileEncryptedKey }];
+                triggerBody = cleanBody.slice(0, PREVIEW_LENGTH) + '...';
+                files = [{ fileKey: upload.data.fileKey, fileName, fileSize: fileBytes, fileType, iv: fileIv, encryptedKey: fileEncryptedKey }];
             }
             const trigger = await client.triggerHook(config.hookId, {
-                title,
+                title: pushTitle,
                 body: triggerBody,
-                actions,
+                actions: effectiveActions,
                 timeout,
                 fallback,
                 hookType: 'combo',

package/dist/tools/file.d.ts

@@ -1,5 +1,5 @@
 import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import type { ZephApiClient } from '../api-client.js';
-import type { McpServerConfig } from '../config.js';
+import { type McpServerConfig } from '../config.js';
 export declare const registerFileTool: (server: McpServer, client: ZephApiClient, config: McpServerConfig) => void;
 //# sourceMappingURL=file.d.ts.map

package/dist/tools/file.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"file.d.ts","sourceRoot":"","sources":["../../src/tools/file.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAKpD,eAAO,MAAM,gBAAgB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SA2EjG,CAAC"}
+{"version":3,"file":"file.d.ts","sourceRoot":"","sources":["../../src/tools/file.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACtD,OAAO,EAAmB,KAAK,eAAe,EAAE,MAAM,cAAc,CAAC;AAKrE,eAAO,MAAM,gBAAgB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SA2EjG,CAAC"}

package/dist/tools/file.js

@@ -2,6 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.registerFileTool = void 0;
 const zod_1 = require("zod");
+const config_js_1 = require("../config.js");
 const error_format_js_1 = require("../error-format.js");
 const crypto_js_1 = require("../crypto.js");
 const mime_js_1 = require("../mime.js");
@@ -47,7 +48,7 @@ const registerFileTool = (server, client, config) => {
             // Step 3: Upload content to S3
             await client.uploadToS3(upload.data.uploadUrl, uploadContent, fileType);
             // Step 4: Send file push (encrypt push body if possible)
-            const pushTitle = title ?? fileName;
+            const pushTitle = (0, config_js_1.formatPushTitle)(config.projectName, title ?? fileName);
             let pushPayload = {
                 title: pushTitle,
                 type: 'file',

package/dist/tools/input.d.ts

@@ -1,5 +1,5 @@
 import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import type { ZephApiClient } from '../api-client.js';
-import type { McpServerConfig } from '../config.js';
+import { type McpServerConfig } from '../config.js';
 export declare const registerInputTool: (server: McpServer, client: ZephApiClient, config: McpServerConfig) => void;
 //# sourceMappingURL=input.d.ts.map

package/dist/tools/input.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"input.d.ts","sourceRoot":"","sources":["../../src/tools/input.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAEpD,eAAO,MAAM,iBAAiB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAwDlG,CAAC"}
+{"version":3,"file":"input.d.ts","sourceRoot":"","sources":["../../src/tools/input.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGtD,OAAO,EAAmB,KAAK,eAAe,EAAE,MAAM,cAAc,CAAC;AAGrE,eAAO,MAAM,iBAAiB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAwDlG,CAAC"}

package/dist/tools/input.js

@@ -4,6 +4,8 @@ exports.registerInputTool = void 0;
 const zod_1 = require("zod");
 const error_format_js_1 = require("../error-format.js");
 const poll_js_1 = require("../poll.js");
+const config_js_1 = require("../config.js");
+const sanitize_js_1 = require("../sanitize.js");
 const registerInputTool = (server, client, config) => {
     server.registerTool('zeph_input', {
         description: 'Request text input from the user via push notification. The tool blocks until the user responds or the timeout is reached. Requires ZEPH_HOOK_ID environment variable.',
@@ -32,8 +34,8 @@ const registerInputTool = (server, client, config) => {
             return (0, error_format_js_1.hookNotConfiguredError)();
         try {
             const trigger = await client.triggerHook(config.hookId, {
-                title,
-                body,
+                title: (0, config_js_1.formatPushTitle)(config.projectName, title),
+                body: (0, sanitize_js_1.sanitizeText)(body),
                 timeout,
                 hookType: 'input',
                 metadata: { placeholder, inputType },

package/dist/tools/notify.d.ts

@@ -1,5 +1,5 @@
 import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import type { ZephApiClient } from '../api-client.js';
-import type { McpServerConfig } from '../config.js';
+import { type McpServerConfig } from '../config.js';
 export declare const registerNotifyTool: (server: McpServer, client: ZephApiClient, config: McpServerConfig) => void;
 //# sourceMappingURL=notify.d.ts.map

package/dist/tools/notify.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"notify.d.ts","sourceRoot":"","sources":["../../src/tools/notify.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAEtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAOpD,eAAO,MAAM,kBAAkB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SA6GnG,CAAC"}
+{"version":3,"file":"notify.d.ts","sourceRoot":"","sources":["../../src/tools/notify.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAEtD,OAAO,EAAmB,KAAK,eAAe,EAAE,MAAM,cAAc,CAAC;AASrE,eAAO,MAAM,kBAAkB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAmHnG,CAAC"}

package/dist/tools/notify.js

@@ -3,13 +3,16 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.registerNotifyTool = void 0;
 const zod_1 = require("zod");
 const error_format_js_1 = require("../error-format.js");
+const config_js_1 = require("../config.js");
 const crypto_js_1 = require("../crypto.js");
 const mime_js_1 = require("../mime.js");
-const BODY_FILE_THRESHOLD = 512;
+const sanitize_js_1 = require("../sanitize.js");
+// The device feed shows a short preview of the body. Anything longer gets
+// truncated there, so we attach the full text as a file for full viewing.
 const PREVIEW_LENGTH = 200;
 const registerNotifyTool = (server, client, config) => {
     server.registerTool('zeph_notify', {
-        description: 'Send a one-way push notification to the user\'s devices. Use this to inform the user about task completion, errors, or status updates. Long bodies (>512B) are automatically uploaded as a file for full viewing.',
+        description: 'Send a one-way push notification to the user\'s devices. Use this to inform the user about task completion, errors, or status updates. Long bodies are automatically uploaded as a file for full viewing.',
         annotations: {
             readOnlyHint: false,
             destructiveHint: false,
@@ -28,21 +31,26 @@ const registerNotifyTool = (server, client, config) => {
     }, async ({ title, body, url, priority, targetDeviceId }) => {
         try {
             const deviceId = targetDeviceId ?? config.deviceId;
-            const bodyBytes = body ? new TextEncoder().encode(body).byteLength : 0;
-            const isLongBody = bodyBytes > BODY_FILE_THRESHOLD;
+            const pushTitle = (0, config_js_1.formatPushTitle)(config.projectName, title);
+            // Strip any tool-call markup that leaked into the body argument.
+            const cleanBody = (0, sanitize_js_1.sanitizeText)(body);
+            // Attach a file whenever the body would be clipped in the feed preview.
+            const isLongBody = !!cleanBody && cleanBody.length > PREVIEW_LENGTH;
             const canEncrypt = !!(0, crypto_js_1.getKeyPair)() && !!(0, crypto_js_1.getPublicKey)();
-            if (isLongBody && body) {
+            if (isLongBody && cleanBody) {
                 const fileName = 'response.md';
                 const fileType = (0, mime_js_1.inferMimeType)(fileName);
-                const fileSize = bodyBytes;
+                // Self-contained Markdown so the file alone carries the full text.
+                const fileMarkdown = `# ${title}\n\n${cleanBody}`;
+                const fileBytes = new TextEncoder().encode(fileMarkdown).byteLength;
                 // Encrypt file content if keys available
-                let uploadContent = body;
+                let uploadContent = fileMarkdown;
                 let uploadContentType = fileType;
                 let fileIv;
                 let fileEncryptedKey;
                 if (canEncrypt) {
                     try {
-                        const encrypted = await (0, crypto_js_1.encryptFileForSelf)(body);
+                        const encrypted = await (0, crypto_js_1.encryptFileForSelf)(fileMarkdown);
                         uploadContent = encrypted.ciphertext;
                         uploadContentType = 'application/octet-stream';
                         fileIv = encrypted.iv;
@@ -52,23 +60,23 @@ const registerNotifyTool = (server, client, config) => {
                         console.error('[Crypto] File encryption failed, sending plaintext:', err);
                     }
                 }
-                const upload = await client.requestUpload({ fileName, fileType: uploadContentType, fileSize: typeof uploadContent === 'string' ? fileSize : uploadContent.length });
+                const upload = await client.requestUpload({ fileName, fileType: uploadContentType, fileSize: typeof uploadContent === 'string' ? fileBytes : uploadContent.length });
                 await client.uploadToS3(upload.data.uploadUrl, uploadContent, uploadContentType);
-                const preview = body.length > PREVIEW_LENGTH ? body.slice(0, PREVIEW_LENGTH) + '...' : body;
+                const preview = cleanBody.slice(0, PREVIEW_LENGTH) + '...';
                 // Encrypt push body (title/preview/url) if keys available
                 let pushPayload = {
-                    title,
+                    title: pushTitle,
                     body: preview,
                     url,
                     type: 'file',
                     priority,
-                    files: [{ fileKey: upload.data.fileKey, fileName, fileSize, fileType, iv: fileIv, encryptedKey: fileEncryptedKey }],
+                    files: [{ fileKey: upload.data.fileKey, fileName, fileSize: fileBytes, fileType, iv: fileIv, encryptedKey: fileEncryptedKey }],
                     targetDeviceId: deviceId,
                     sessionId: config.sessionId,
                 };
                 if (canEncrypt) {
                     try {
-                        const enc = await (0, crypto_js_1.encryptPushBodyForSelf)({ title, body: preview, url });
+                        const enc = await (0, crypto_js_1.encryptPushBodyForSelf)({ title: pushTitle, body: preview, url });
                         pushPayload = { ...pushPayload, title: undefined, body: enc.body, isEncrypted: enc.isEncrypted, encryptedKey: enc.encryptedKey, senderPublicKey: enc.senderPublicKey };
                     }
                     catch (err) {
@@ -80,8 +88,8 @@ const registerNotifyTool = (server, client, config) => {
             }
             // Short body — encrypt push only
             let pushPayload = {
-                title,
-                body,
+                title: pushTitle,
+                body: cleanBody,
                 url,
                 type: 'hook',
                 priority,
@@ -90,7 +98,7 @@ const registerNotifyTool = (server, client, config) => {
             };
             if (canEncrypt) {
                 try {
-                    const enc = await (0, crypto_js_1.encryptPushBodyForSelf)({ title, body, url });
+                    const enc = await (0, crypto_js_1.encryptPushBodyForSelf)({ title: pushTitle, body: cleanBody, url });
                     pushPayload = { ...pushPayload, title: undefined, body: enc.body, isEncrypted: enc.isEncrypted, encryptedKey: enc.encryptedKey, senderPublicKey: enc.senderPublicKey };
                 }
                 catch (err) {

package/dist/tools/prompt.d.ts

@@ -1,5 +1,5 @@
 import type { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
 import type { ZephApiClient } from '../api-client.js';
-import type { McpServerConfig } from '../config.js';
+import { type McpServerConfig } from '../config.js';
 export declare const registerPromptTool: (server: McpServer, client: ZephApiClient, config: McpServerConfig) => void;
 //# sourceMappingURL=prompt.d.ts.map

package/dist/tools/prompt.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"prompt.d.ts","sourceRoot":"","sources":["../../src/tools/prompt.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,cAAc,CAAC;AAEpD,eAAO,MAAM,kBAAkB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAuEnG,CAAC"}
+{"version":3,"file":"prompt.d.ts","sourceRoot":"","sources":["../../src/tools/prompt.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEzE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAGtD,OAAO,EAAmB,KAAK,eAAe,EAAE,MAAM,cAAc,CAAC;AAGrE,eAAO,MAAM,kBAAkB,GAAI,QAAQ,SAAS,EAAE,QAAQ,aAAa,EAAE,QAAQ,eAAe,SAuEnG,CAAC"}

package/dist/tools/prompt.js

@@ -4,6 +4,8 @@ exports.registerPromptTool = void 0;
 const zod_1 = require("zod");
 const error_format_js_1 = require("../error-format.js");
 const poll_js_1 = require("../poll.js");
+const config_js_1 = require("../config.js");
+const sanitize_js_1 = require("../sanitize.js");
 const registerPromptTool = (server, client, config) => {
     server.registerTool('zeph_prompt', {
         description: 'Ask the user to choose from predefined options via push notification. The tool blocks until the user responds or the timeout is reached. Requires ZEPH_HOOK_ID environment variable.',
@@ -41,8 +43,8 @@ const registerPromptTool = (server, client, config) => {
             return (0, error_format_js_1.hookNotConfiguredError)();
         try {
             const trigger = await client.triggerHook(config.hookId, {
-                title,
-                body,
+                title: (0, config_js_1.formatPushTitle)(config.projectName, title),
+                body: (0, sanitize_js_1.sanitizeText)(body),
                 actions,
                 timeout,
                 fallback,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zeph-to/mcp-server",
-  "version": "1.10.0",
+  "version": "1.11.1",
   "description": "Zeph MCP server — AI agent notifications, prompts, and input via MCP protocol",
   "main": "./dist/index.js",
   "types": "./dist/index.d.ts",
@@ -16,6 +16,8 @@
   ],
   "scripts": {
     "build": "tsc",
+    "test": "vitest run",
+    "test:watch": "vitest",
     "prepublishOnly": "npm run build"
   },
   "dependencies": {
@@ -23,8 +25,9 @@
     "zod": "^3.25.1"
   },
   "devDependencies": {
+    "@types/node": "^22.0.0",
     "typescript": "^5.8.0",
-    "@types/node": "^22.0.0"
+    "vitest": "^2.1.9"
   },
   "release": {
     "branches": [