aivault-mcp 0.1.0

package/dist/vault/store.js

@@ -0,0 +1,118 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.VaultStore = void 0;
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const os_1 = __importDefault(require("os"));
+const crypto_1 = require("./crypto");
+const types_1 = require("./types");
+const AIVAULT_DIR = path_1.default.join(os_1.default.homedir(), '.aivault');
+const VAULT_FILE = path_1.default.join(AIVAULT_DIR, 'vault.enc');
+const CONFIG_FILE = path_1.default.join(AIVAULT_DIR, 'config.json');
+class VaultStore {
+    constructor(password, vaultDir) {
+        this.password = password;
+        this.vaultDir = vaultDir || AIVAULT_DIR;
+        this.vaultFile = path_1.default.join(this.vaultDir, 'vault.enc');
+        this.configFile = path_1.default.join(this.vaultDir, 'config.json');
+    }
+    isInitialized() {
+        return fs_1.default.existsSync(this.vaultFile);
+    }
+    init() {
+        if (!fs_1.default.existsSync(this.vaultDir)) {
+            fs_1.default.mkdirSync(this.vaultDir, { recursive: true, mode: 0o700 });
+        }
+        if (this.isInitialized()) {
+            throw new Error('Vault already initialized. Use "aivault set" to add secrets.');
+        }
+        const emptyVault = { secrets: [] };
+        this.writeVault(emptyVault);
+        const config = { version: '0.1.0', created_at: new Date().toISOString() };
+        fs_1.default.writeFileSync(this.configFile, JSON.stringify(config, null, 2), { mode: 0o600 });
+    }
+    readVault() {
+        if (!this.isInitialized()) {
+            throw new Error('Vault not initialized. Run "aivault init" first.');
+        }
+        const raw = fs_1.default.readFileSync(this.vaultFile);
+        const json = (0, crypto_1.decrypt)(raw, this.password);
+        return JSON.parse(json);
+    }
+    writeVault(data) {
+        const json = JSON.stringify(data, null, 2);
+        const encrypted = (0, crypto_1.encrypt)(json, this.password);
+        fs_1.default.writeFileSync(this.vaultFile, encrypted, { mode: 0o600 });
+    }
+    setSecret(name, value, description, tags = []) {
+        if (!(0, types_1.isValidSecretName)(name)) {
+            throw new Error(`Invalid secret name "${name}". Must be uppercase letters, numbers, and underscores only, starting with a letter.`);
+        }
+        const vault = this.readVault();
+        const now = new Date().toISOString();
+        const existing = vault.secrets.findIndex(s => s.name === name);
+        if (existing >= 0) {
+            vault.secrets[existing] = {
+                ...vault.secrets[existing],
+                value,
+                description,
+                tags,
+                updated_at: now,
+            };
+        }
+        else {
+            vault.secrets.push({
+                name,
+                value,
+                description,
+                tags,
+                created_at: now,
+                updated_at: now,
+            });
+        }
+        this.writeVault(vault);
+    }
+    getSecret(name) {
+        const vault = this.readVault();
+        return vault.secrets.find(s => s.name === name);
+    }
+    listSecrets(tag) {
+        const vault = this.readVault();
+        let secrets = vault.secrets;
+        if (tag) {
+            secrets = secrets.filter(s => s.tags.includes(tag));
+        }
+        return secrets.map(s => ({
+            name: s.name,
+            description: s.description,
+            tags: s.tags,
+        }));
+    }
+    deleteSecret(name) {
+        const vault = this.readVault();
+        const index = vault.secrets.findIndex(s => s.name === name);
+        if (index < 0) {
+            return false;
+        }
+        vault.secrets.splice(index, 1);
+        this.writeVault(vault);
+        return true;
+    }
+    getAllSecrets() {
+        const vault = this.readVault();
+        return vault.secrets;
+    }
+    getAllSecretValues() {
+        const vault = this.readVault();
+        const map = new Map();
+        for (const secret of vault.secrets) {
+            map.set(secret.name, secret.value);
+        }
+        return map;
+    }
+}
+exports.VaultStore = VaultStore;
+//# sourceMappingURL=store.js.map

package/dist/vault/store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"store.js","sourceRoot":"","sources":["../../src/vault/store.ts"],"names":[],"mappings":";;;;;;AAAA,4CAAoB;AACpB,gDAAwB;AACxB,4CAAoB;AACpB,qCAA4C;AAC5C,mCAA+E;AAE/E,MAAM,WAAW,GAAG,cAAI,CAAC,IAAI,CAAC,YAAE,CAAC,OAAO,EAAE,EAAE,UAAU,CAAC,CAAC;AACxD,MAAM,UAAU,GAAG,cAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC;AACvD,MAAM,WAAW,GAAG,cAAI,CAAC,IAAI,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;AAE1D,MAAa,UAAU;IAMrB,YAAY,QAAgB,EAAE,QAAiB;QAC7C,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,QAAQ,GAAG,QAAQ,IAAI,WAAW,CAAC;QACxC,IAAI,CAAC,SAAS,GAAG,cAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,WAAW,CAAC,CAAC;QACvD,IAAI,CAAC,UAAU,GAAG,cAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;IAC5D,CAAC;IAED,aAAa;QACX,OAAO,YAAE,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACvC,CAAC;IAED,IAAI;QACF,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YAClC,YAAE,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QAChE,CAAC;QAED,IAAI,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;YACzB,MAAM,IAAI,KAAK,CAAC,8DAA8D,CAAC,CAAC;QAClF,CAAC;QAED,MAAM,UAAU,GAAc,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC;QAC9C,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC;QAE5B,MAAM,MAAM,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC;QAC1E,YAAE,CAAC,aAAa,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACtF,CAAC;IAEO,SAAS;QACf,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;YAC1B,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,GAAG,GAAG,YAAE,CAAC,YAAY,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC5C,MAAM,IAAI,GAAG,IAAA,gBAAO,EAAC,GAAG,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QACzC,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAc,CAAC;IACvC,CAAC;IAEO,UAAU,CAAC,IAAe;QAChC,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC3C,MAAM,SAAS,GAAG,IAAA,gBAAO,EAAC,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC/C,YAAE,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAC/D,CAAC;IAED,SAAS,CAAC,IAAY,EAAE,KAAa,EAAE,WAAmB,EAAE,OAAiB,EAAE;QAC7E,IAAI,CAAC,IAAA,yBAAiB,EAAC,IAAI,CAAC,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,wBAAwB,IAAI,sFAAsF,CAAC,CAAC;QACtI,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACrC,MAAM,QAAQ,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;QAE/D,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;YAClB,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG;gBACxB,GAAG,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC;gBAC1B,KAAK;gBACL,WAAW;gBACX,IAAI;gBACJ,UAAU,EAAE,GAAG;aAChB,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;gBACjB,IAAI;gBACJ,KAAK;gBACL,WAAW;gBACX,IAAI;gBACJ,UAAU,EAAE,GAAG;gBACf,UAAU,EAAE,GAAG;aAChB,CAAC,CAAC;QACL,CAAC;QAED,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED,SAAS,CAAC,IAAY;QACpB,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;IAClD,CAAC;IAED,WAAW,CAAC,GAAY;QACtB,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,IAAI,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC;QAE5B,IAAI,GAAG,EAAE,CAAC;YACR,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;QACtD,CAAC;QAED,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YACvB,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,IAAI,EAAE,CAAC,CAAC,IAAI;SACb,CAAC,CAAC,CAAC;IACN,CAAC;IAED,YAAY,CAAC,IAAY;QACvB,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;QAE5D,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,OAAO,KAAK,CAAC;QACf,CAAC;QAED,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC/B,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QACvB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,aAAa;QACX,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC,OAAO,CAAC;IACvB,CAAC;IAED,kBAAkB;QAChB,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,IAAI,GAAG,EAAkB,CAAC;QACtC,KAAK,MAAM,MAAM,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YACnC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC;QACrC,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC;CACF;AA7HD,gCA6HC"}

package/dist/vault/types.d.ts

@@ -0,0 +1,25 @@
+export interface Secret {
+    name: string;
+    value: string;
+    description: string;
+    tags: string[];
+    created_at: string;
+    updated_at: string;
+}
+export interface SecretMetadata {
+    name: string;
+    description: string;
+    tags: string[];
+}
+export interface VaultData {
+    secrets: Secret[];
+}
+export interface EncryptedPayload {
+    salt: Buffer;
+    iv: Buffer;
+    authTag: Buffer;
+    encrypted: Buffer;
+}
+export declare const SECRET_NAME_REGEX: RegExp;
+export declare function isValidSecretName(name: string): boolean;
+//# sourceMappingURL=types.d.ts.map

package/dist/vault/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/vault/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,EAAE,CAAC;CAChB;AAED,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,eAAO,MAAM,iBAAiB,QAAsB,CAAC;AAErD,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAEvD"}

package/dist/vault/types.js

@@ -0,0 +1,9 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SECRET_NAME_REGEX = void 0;
+exports.isValidSecretName = isValidSecretName;
+exports.SECRET_NAME_REGEX = /^[A-Z][A-Z0-9_]*$/;
+function isValidSecretName(name) {
+    return exports.SECRET_NAME_REGEX.test(name);
+}
+//# sourceMappingURL=types.js.map

package/dist/vault/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/vault/types.ts"],"names":[],"mappings":";;;AA4BA,8CAEC;AAJY,QAAA,iBAAiB,GAAG,mBAAmB,CAAC;AAErD,SAAgB,iBAAiB,CAAC,IAAY;IAC5C,OAAO,yBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACtC,CAAC"}

package/package.json

@@ -0,0 +1,63 @@
+{
+  "name": "aivault-mcp",
+  "version": "0.1.0",
+  "description": "Secure secret management for AI agents — MCP server that lets AI use your credentials without seeing them",
+  "main": "dist/index.js",
+  "bin": {
+    "aivault": "dist/cli/cli.js"
+  },
+  "files": [
+    "dist/**/*",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "prepublishOnly": "npm run build",
+    "start": "node dist/index.js",
+    "dev": "ts-node src/index.ts",
+    "cli": "ts-node src/cli/cli.ts",
+    "test": "jest"
+  },
+  "keywords": [
+    "mcp",
+    "model-context-protocol",
+    "secrets",
+    "vault",
+    "ai",
+    "credentials",
+    "security",
+    "claude",
+    "cursor",
+    "kiro",
+    "windsurf",
+    "api-keys",
+    "secret-management",
+    "ai-agent",
+    "llm"
+  ],
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/mohshomis/AIVault.git"
+  },
+  "homepage": "https://github.com/mohshomis/AIVault#readme",
+  "bugs": {
+    "url": "https://github.com/mohshomis/AIVault/issues"
+  },
+  "author": "Mohammed Shomis (https://github.com/mohshomis)",
+  "engines": {
+    "node": ">=18"
+  },
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.12.1"
+  },
+  "devDependencies": {
+    "typescript": "^5.0.0",
+    "@types/node": "^20.0.0",
+    "jest": "^29.0.0",
+    "ts-jest": "^29.0.0",
+    "@types/jest": "^29.0.0",
+    "ts-node": "^10.0.0"
+  }
+}