atproto-mcp 0.1.0

package/LICENSE

@@ -0,0 +1,22 @@
+MIT License
+
+Copyright (c) 2025 Cameron Rye
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
+

package/README.md

@@ -0,0 +1,293 @@
+# AT Protocol MCP Server
+
+[![npm version](https://badge.fury.io/js/atproto-mcp.svg)](https://badge.fury.io/js/atproto-mcp)
+[![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
+[![TypeScript](https://img.shields.io/badge/TypeScript-007ACC?logo=typescript&logoColor=white)](https://www.typescriptlang.org/)
+[![Tests](https://github.com/cameronrye/atproto-mcp/actions/workflows/ci.yml/badge.svg)](https://github.com/cameronrye/atproto-mcp/actions/workflows/ci.yml)
+[![Coverage](https://codecov.io/gh/cameronrye/atproto-mcp/branch/main/graph/badge.svg)](https://codecov.io/gh/cameronrye/atproto-mcp)
+
+A comprehensive Model Context Protocol (MCP) server that provides LLMs with direct access to the AT Protocol ecosystem, enabling seamless interaction with Bluesky and other AT Protocol-based social networks.
+
+**🎯 Works out-of-the-box without authentication** - Perfect for LLM clients that need to access public AT Protocol data without requiring user accounts.
+
+## 🚀 Features
+
+- **🔓 Unauthenticated Mode**: Access public data without any setup - search posts, view profiles, browse feeds
+- **🔐 Optional Authentication**: Enable full functionality with app passwords or OAuth when needed
+- **Complete AT Protocol Integration**: Full implementation using official `@atproto/api`
+- **MCP Server Compliance**: Built with `@modelcontextprotocol/sdk` following MCP specification
+- **Type-Safe**: Written in TypeScript with strict type checking
+- **Comprehensive Tools**: Rich set of MCP tools for social networking operations
+- **Real-time Support**: WebSocket connections for live data streams
+- **Rate Limiting**: Built-in respect for AT Protocol rate limits
+- **Extensible**: Modular architecture for easy customization
+
+## 📦 Installation
+
+```bash
+npm install -g atproto-mcp
+```
+
+Or use with npx:
+
+```bash
+npx atproto-mcp
+```
+
+## 🔧 Quick Start
+
+### Option 1: Unauthenticated Mode (Recommended for most use cases)
+
+**Perfect for LLM clients that need to access public AT Protocol data:**
+
+1. **Start the MCP server:**
+   ```bash
+   atproto-mcp
+   ```
+
+2. **Configure your LLM client** to connect to the MCP server
+
+3. **Start using public tools immediately** - no authentication required!
+
+Available in unauthenticated mode:
+- ✅ Search posts and hashtags
+- ✅ View user profiles and follower lists
+- ✅ Browse public feeds and threads
+- ✅ Access public timelines
+
+### Option 2: Authenticated Mode (For full functionality)
+
+**Enable write operations and private data access:**
+
+1. **Set up authentication** using environment variables:
+   ```bash
+   # App Password method (recommended)
+   export ATPROTO_IDENTIFIER="your-handle.bsky.social"
+   export ATPROTO_PASSWORD="your-app-password"
+
+   # OR OAuth method
+   export ATPROTO_CLIENT_ID="your-client-id"
+   export ATPROTO_CLIENT_SECRET="your-client-secret"
+   ```
+
+2. **Start the server:**
+   ```bash
+   atproto-mcp
+   ```
+
+Additional features in authenticated mode:
+- ✅ Create, edit, and delete posts
+- ✅ Follow/unfollow users
+- ✅ Like and repost content
+- ✅ Access personalized timelines and notifications
+- ✅ Manage lists and moderation settings
+
+## 🛠️ Available Tools
+
+### 🔓 Public Tools (No Authentication Required)
+
+**Data Retrieval**
+- `search_posts` - Search for posts and content across the network
+- `get_user_profile` - Retrieve public user information and stats
+- `get_user_profiles` - Get multiple user profiles at once
+- `get_followers` - Get follower lists for public profiles
+- `get_follows` - Get following lists for public profiles
+- `get_thread` - View post threads and conversations
+- `get_custom_feed` - Access public custom feeds
+
+### 🔐 Private Tools (Authentication Required)
+
+**Social Operations**
+- `create_post` - Create new posts with rich text support
+- `reply_to_post` - Reply to existing posts with threading
+- `like_post` / `unlike_post` - Like and unlike posts
+- `repost` / `unrepost` - Repost content with optional quotes
+- `follow_user` / `unfollow_user` - Follow and unfollow users
+- `get_timeline` - Retrieve personalized timelines and feeds
+- `get_notifications` - Access your notification feeds
+
+**Content Management**
+- `upload_image` / `upload_video` - Upload media content
+- `delete_post` - Remove your posts and content
+- `update_profile` - Modify your profile and settings
+- `create_list` - Create and manage user lists
+
+**Moderation**
+- `mute_user` / `unmute_user` - Mute and unmute users
+- `block_user` / `unblock_user` - Block and unblock users
+- `report_content` / `report_user` - Report content and users
+
+**OAuth Management**
+- `start_oauth_flow` - Initiate OAuth authentication
+- `handle_oauth_callback` - Complete OAuth flow
+- `refresh_oauth_tokens` - Refresh authentication tokens
+
+## 📚 Documentation
+
+Visit our [documentation site](https://cameronrye.github.io/atproto-mcp) for:
+
+- **Getting Started Guide**
+- **API Reference**
+- **Configuration Options**
+- **Examples and Tutorials**
+- **Troubleshooting**
+
+## 🔐 Authentication (Optional)
+
+The server works perfectly without authentication for accessing public data. Authentication is only needed for write operations and private data access.
+
+### App Passwords (Recommended for Development)
+```bash
+export ATPROTO_IDENTIFIER="your-handle.bsky.social"
+export ATPROTO_PASSWORD="your-app-password"
+atproto-mcp
+```
+
+### OAuth (Production)
+```bash
+export ATPROTO_CLIENT_ID="your-client-id"
+export ATPROTO_CLIENT_SECRET="your-client-secret"
+atproto-mcp --auth oauth
+```
+
+## 🧪 Development
+
+```bash
+# Clone the repository
+git clone https://github.com/cameronrye/atproto-mcp.git
+cd atproto-mcp
+
+# Install dependencies
+npm install
+
+# Start development server
+npm run dev
+
+# Run tests
+npm test
+
+# Build for production
+npm run build
+```
+
+## 🤝 Contributing
+
+We welcome contributions! Please see our [Contributing Guide](CONTRIBUTING.md) for details.
+
+1. Fork the repository
+2. Create a feature branch
+3. Make your changes
+4. Add tests
+5. Submit a pull request
+
+## 📄 License
+
+This project is licensed under the MIT License.
+
+## 🙏 Acknowledgments
+
+- [AT Protocol Team](https://github.com/bluesky-social/atproto) for the excellent protocol and SDK
+- [Anthropic](https://github.com/modelcontextprotocol) for the Model Context Protocol
+- The open source community for inspiration and contributions
+
+## 📞 Support
+
+- 📖 [Documentation](https://cameronrye.github.io/atproto-mcp)
+- 🐛 [Issue Tracker](https://github.com/cameronrye/atproto-mcp/issues)
+- 💬 [Discussions](https://github.com/cameronrye/atproto-mcp/discussions)
+
+## 🏭 Production Deployment
+
+The AT Protocol MCP Server is production-ready with comprehensive features for enterprise deployment:
+
+### Production Features
+- **Performance Optimization**: Connection pooling, caching, and WebSocket management
+- **Security Hardening**: Input sanitization, rate limiting, and secure credential storage
+- **Monitoring**: Health checks, metrics, and comprehensive logging
+- **Docker Support**: Multi-stage builds with security best practices
+- **Kubernetes Ready**: Helm charts and deployment manifests
+- **Observability**: Prometheus metrics and Grafana dashboards
+
+### Docker Deployment
+```bash
+# Quick start with Docker Compose
+docker-compose up -d
+
+# Or build and run manually
+docker build -t atproto-mcp .
+docker run -d -p 3000:3000 \
+  -e ATPROTO_IDENTIFIER=your.handle \
+  -e ATPROTO_PASSWORD=your-password \
+  atproto-mcp
+```
+
+### Environment Configuration
+```bash
+# Copy example environment file
+cp .env.example .env
+
+# Edit with your credentials
+ATPROTO_IDENTIFIER=your.handle.bsky.social
+ATPROTO_PASSWORD=your-app-password
+NODE_ENV=production
+LOG_LEVEL=info
+```
+
+For detailed deployment instructions, see [DEPLOYMENT.md](DEPLOYMENT.md).
+
+## 🔒 Security
+
+Security is a top priority for this project. Please review our security practices and policies:
+
+### Security Best Practices
+
+**Before deploying to production:**
+
+1. **Change Default Passwords**
+   - Set `GRAFANA_ADMIN_PASSWORD` environment variable (don't use default)
+   - Configure Redis password if using Redis
+   - Generate strong random keys for `SECURITY_SECRET_KEY`
+
+2. **Configure CORS Properly**
+   - Replace wildcard `*` origins with specific domains
+   - Set `CORS_ORIGINS` in your environment configuration
+   - Example: `CORS_ORIGINS=https://yourdomain.com,https://app.yourdomain.com`
+
+3. **Secure Your Credentials**
+   - Never commit `.env` files to version control
+   - Use app passwords instead of main account passwords
+   - Rotate credentials regularly
+   - Use secret management systems in production (AWS Secrets Manager, HashiCorp Vault, etc.)
+
+4. **Network Security**
+   - Use HTTPS in production
+   - Configure `TRUSTED_PROXIES` if behind a reverse proxy
+   - Enable rate limiting
+   - Restrict access to internal services (Redis, Prometheus, Grafana)
+
+5. **Keep Dependencies Updated**
+   ```bash
+   pnpm audit
+   pnpm update
+   ```
+
+### Reporting Security Vulnerabilities
+
+If you discover a security vulnerability, please review our [Security Policy](SECURITY.md) for responsible disclosure guidelines.
+
+**Do not open public issues for security vulnerabilities.** Instead, email: c@meron.io
+
+### Security Features
+
+- ✅ Input validation and sanitization
+- ✅ Rate limiting and abuse prevention
+- ✅ Credential redaction in logs
+- ✅ Non-root Docker containers
+- ✅ HTTPS support for AT Protocol
+- ✅ Error sanitization to prevent information leakage
+
+For more details, see [SECURITY.md](SECURITY.md).
+
+---
+
+Made with ❤️ for the AT Protocol and MCP communities

package/dist/cli.d.ts

@@ -0,0 +1,10 @@
+#!/usr/bin/env node
+/**
+ * Command-line interface for the AT Protocol MCP Server
+ */
+/**
+ * Main CLI function
+ */
+declare function main(): Promise<void>;
+export { main as runCli };
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA;;GAEG;AAgOH;;GAEG;AACH,iBAAe,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,CA0DnC;AAUD,OAAO,EAAE,IAAI,IAAI,MAAM,EAAE,CAAC"}

package/dist/cli.js

@@ -0,0 +1,261 @@
+#!/usr/bin/env node
+/**
+ * Command-line interface for the AT Protocol MCP Server
+ */
+import { parseArgs } from 'node:util';
+import { readFileSync } from 'node:fs';
+import { dirname, join } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { ConfigurationError } from './types/index.js';
+import { AtpMcpServer } from './index.js';
+import { LogLevel, Logger } from './utils/logger.js';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+const logger = new Logger('CLI');
+/**
+ * CLI argument definitions
+ */
+const CLI_OPTIONS = {
+    port: {
+        type: 'string',
+        short: 'p',
+        description: 'Server port (default: 3000)',
+    },
+    host: {
+        type: 'string',
+        short: 'h',
+        description: 'Server host (default: localhost)',
+    },
+    service: {
+        type: 'string',
+        short: 's',
+        description: 'AT Protocol service URL (default: https://bsky.social)',
+    },
+    auth: {
+        type: 'string',
+        short: 'a',
+        description: 'Authentication method: app-password|oauth (optional)',
+    },
+    'log-level': {
+        type: 'string',
+        short: 'l',
+        description: 'Log level: debug|info|warn|error (default: info)',
+    },
+    help: {
+        type: 'boolean',
+        description: 'Show help message',
+    },
+    version: {
+        type: 'boolean',
+        short: 'v',
+        description: 'Show version information',
+    },
+};
+/**
+ * Show help message
+ */
+function showHelp() {
+    console.log(`
+AT Protocol MCP Server - Comprehensive interface for LLMs to interact with AT Protocol
+
+🎯 Works out-of-the-box without authentication for public data access!
+
+Usage: atproto-mcp [options]
+
+Options:
+  -p, --port <number>        Server port (default: 3000)
+  -h, --host <string>        Server host (default: localhost)
+  -s, --service <url>        AT Protocol service URL (default: https://bsky.social)
+  -a, --auth <method>        Authentication method: app-password|oauth (optional)
+  -l, --log-level <level>    Log level: debug|info|warn|error (default: info)
+      --help                 Show this help message
+  -v, --version              Show version information
+
+🔓 Unauthenticated Mode (Default):
+  The server works immediately without any setup. Available features:
+  • Search posts and hashtags
+  • View user profiles and follower lists
+  • Browse public feeds and threads
+  • Access public timelines
+
+🔐 Authenticated Mode (Optional):
+  Set environment variables to enable write operations and private data:
+
+Environment Variables:
+  ATPROTO_SERVICE           AT Protocol service URL
+  ATPROTO_IDENTIFIER        Your AT Protocol identifier (handle or DID)
+  ATPROTO_PASSWORD          App password for authentication
+  ATPROTO_CLIENT_ID         OAuth client ID
+  ATPROTO_CLIENT_SECRET     OAuth client secret
+  ATPROTO_AUTH_METHOD       Authentication method (app-password|oauth)
+  LOG_LEVEL                 Logging level (debug|info|warn|error)
+  MCP_SERVER_PORT           Server port
+  MCP_SERVER_HOST           Server host
+  MCP_SERVER_NAME           Server name
+
+Examples:
+  # Start in unauthenticated mode (works immediately!)
+  atproto-mcp
+
+  # Start with custom port and debug logging
+  atproto-mcp --port 8080 --log-level debug
+
+  # Enable authentication with app password
+  export ATPROTO_IDENTIFIER="your-handle.bsky.social"
+  export ATPROTO_PASSWORD="your-app-password"
+  atproto-mcp
+
+  # Enable authentication with OAuth
+  export ATPROTO_CLIENT_ID="your-client-id"
+  export ATPROTO_CLIENT_SECRET="your-client-secret"
+  atproto-mcp --auth oauth
+
+For more information, visit: https://github.com/cameronrye/atproto-mcp
+`);
+}
+/**
+ * Show version information
+ */
+function showVersion() {
+    try {
+        // Read version from package.json
+        const packageJson = JSON.parse(readFileSync(join(__dirname, '..', 'package.json'), 'utf8'));
+        console.log(`AT Protocol MCP Server v${packageJson.version}`);
+    }
+    catch (error) {
+        console.log('AT Protocol MCP Server v0.1.0');
+    }
+}
+/**
+ * Parse command line arguments
+ */
+function parseCliArgs() {
+    try {
+        const { values } = parseArgs({
+            options: CLI_OPTIONS,
+            allowPositionals: false,
+        });
+        // Handle help and version flags
+        if (values.help === true) {
+            showHelp();
+            process.exit(0);
+        }
+        if (values.version === true) {
+            showVersion();
+            process.exit(0);
+        }
+        // Set log level if provided
+        if (values['log-level'] != null && values['log-level'] !== '') {
+            const logLevel = values['log-level'].toUpperCase();
+            if (logLevel in LogLevel) {
+                process.env['LOG_LEVEL'] = logLevel;
+            }
+            else {
+                throw new ConfigurationError(`Invalid log level: ${values['log-level']}. Must be one of: debug, info, warn, error`);
+            }
+        }
+        // Build configuration from CLI arguments
+        const config = {};
+        if (values.port != null && values.port !== '') {
+            const port = parseInt(values.port, 10);
+            if (isNaN(port) || port < 1 || port > 65535) {
+                throw new ConfigurationError(`Invalid port: ${values.port}. Must be between 1 and 65535`);
+            }
+            config.port = port;
+        }
+        if (values.host != null && values.host !== '') {
+            config.host = values.host;
+        }
+        if ((values.service != null && values.service !== '') ||
+            (values.auth != null && values.auth !== '')) {
+            config.atproto = {
+                service: 'https://bsky.social',
+                authMethod: 'app-password',
+            };
+            if (values.service != null && values.service !== '') {
+                try {
+                    new URL(values.service); // Validate URL
+                    config.atproto.service = values.service;
+                }
+                catch {
+                    throw new ConfigurationError(`Invalid service URL: ${values.service}`);
+                }
+            }
+            if (values.auth != null && values.auth !== '') {
+                if (values.auth !== 'app-password' && values.auth !== 'oauth') {
+                    throw new ConfigurationError(`Invalid auth method: ${values.auth}. Must be 'app-password' or 'oauth'`);
+                }
+                config.atproto.authMethod = values.auth;
+            }
+        }
+        return config;
+    }
+    catch (error) {
+        if (error instanceof ConfigurationError) {
+            throw error;
+        }
+        logger.error('Failed to parse command line arguments', error);
+        throw new ConfigurationError('Invalid command line arguments. Use --help for usage information.');
+    }
+}
+/**
+ * Main CLI function
+ */
+async function main() {
+    try {
+        logger.info('Starting AT Protocol MCP Server CLI');
+        // Parse command line arguments
+        const cliConfig = parseCliArgs();
+        // Create and start server
+        const server = new AtpMcpServer(cliConfig);
+        // Setup graceful shutdown handlers
+        const shutdown = async (signal) => {
+            logger.info(`Received ${signal}, shutting down gracefully...`);
+            try {
+                await server.stop();
+                process.exit(0);
+            }
+            catch (error) {
+                logger.error('Error during shutdown', error);
+                process.exit(1);
+            }
+        };
+        process.on('SIGINT', () => {
+            void shutdown('SIGINT');
+        });
+        process.on('SIGTERM', () => {
+            void shutdown('SIGTERM');
+        });
+        // Handle uncaught exceptions
+        process.on('uncaughtException', error => {
+            logger.error('Uncaught exception', error);
+            process.exit(1);
+        });
+        process.on('unhandledRejection', reason => {
+            logger.error('Unhandled rejection', reason instanceof Error ? reason : new Error(String(reason)));
+            process.exit(1);
+        });
+        // Start the server
+        await server.start();
+        // Keep the process running
+        logger.info('AT Protocol MCP Server is running. Press Ctrl+C to stop.');
+    }
+    catch (error) {
+        if (error instanceof ConfigurationError) {
+            console.error(`Configuration Error: ${error.message}`);
+            console.error('Use --help for usage information.');
+            process.exit(1);
+        }
+        logger.error('Failed to start AT Protocol MCP Server', error);
+        process.exit(1);
+    }
+}
+// Run CLI if this file is executed directly
+if (import.meta.url === `file://${process.argv[1]}`) {
+    main().catch(error => {
+        console.error('Fatal error:', error);
+        process.exit(1);
+    });
+}
+export { main as runCli };
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA;;GAEG;AAEH,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AACtC,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EAAE,kBAAkB,EAAyB,MAAM,kBAAkB,CAAC;AAC7E,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAErD,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;AAEtC,MAAM,MAAM,GAAG,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC;AAEjC;;GAEG;AACH,MAAM,WAAW,GAAG;IAClB,IAAI,EAAE;QACJ,IAAI,EAAE,QAAiB;QACvB,KAAK,EAAE,GAAG;QACV,WAAW,EAAE,6BAA6B;KAC3C;IACD,IAAI,EAAE;QACJ,IAAI,EAAE,QAAiB;QACvB,KAAK,EAAE,GAAG;QACV,WAAW,EAAE,kCAAkC;KAChD;IACD,OAAO,EAAE;QACP,IAAI,EAAE,QAAiB;QACvB,KAAK,EAAE,GAAG;QACV,WAAW,EAAE,wDAAwD;KACtE;IACD,IAAI,EAAE;QACJ,IAAI,EAAE,QAAiB;QACvB,KAAK,EAAE,GAAG;QACV,WAAW,EAAE,sDAAsD;KACpE;IACD,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,KAAK,EAAE,GAAG;QACV,WAAW,EAAE,kDAAkD;KAChE;IACD,IAAI,EAAE;QACJ,IAAI,EAAE,SAAkB;QACxB,WAAW,EAAE,mBAAmB;KACjC;IACD,OAAO,EAAE;QACP,IAAI,EAAE,SAAkB;QACxB,KAAK,EAAE,GAAG;QACV,WAAW,EAAE,0BAA0B;KACxC;CACO,CAAC;AAEX;;GAEG;AACH,SAAS,QAAQ;IACf,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAwDb,CAAC,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,WAAW;IAClB,IAAI,CAAC;QACH,iCAAiC;QACjC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,cAAc,CAAC,EAAE,MAAM,CAAC,CAIzF,CAAC;QACF,OAAO,CAAC,GAAG,CAAC,2BAA2B,WAAW,CAAC,OAAO,EAAE,CAAC,CAAC;IAChE,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;IAC/C,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,YAAY;IACnB,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,SAAS,CAAC;YAC3B,OAAO,EAAE,WAAW;YACpB,gBAAgB,EAAE,KAAK;SACxB,CAAC,CAAC;QAEH,gCAAgC;QAChC,IAAI,MAAM,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;YACzB,QAAQ,EAAE,CAAC;YACX,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAED,IAAI,MAAM,CAAC,OAAO,KAAK,IAAI,EAAE,CAAC;YAC5B,WAAW,EAAE,CAAC;YACd,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAED,4BAA4B;QAC5B,IAAI,MAAM,CAAC,WAAW,CAAC,IAAI,IAAI,IAAI,MAAM,CAAC,WAAW,CAAC,KAAK,EAAE,EAAE,CAAC;YAC9D,MAAM,QAAQ,GAAG,MAAM,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE,CAAC;YACnD,IAAI,QAAQ,IAAI,QAAQ,EAAE,CAAC;gBACzB,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,GAAG,QAAQ,CAAC;YACtC,CAAC;iBAAM,CAAC;gBACN,MAAM,IAAI,kBAAkB,CAC1B,sBAAsB,MAAM,CAAC,WAAW,CAAC,4CAA4C,CACtF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,yCAAyC;QACzC,MAAM,MAAM,GAA8B,EAAE,CAAC;QAE7C,IAAI,MAAM,CAAC,IAAI,IAAI,IAAI,IAAI,MAAM,CAAC,IAAI,KAAK,EAAE,EAAE,CAAC;YAC9C,MAAM,IAAI,GAAG,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YACvC,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,IAAI,GAAG,CAAC,IAAI,IAAI,GAAG,KAAK,EAAE,CAAC;gBAC5C,MAAM,IAAI,kBAAkB,CAAC,iBAAiB,MAAM,CAAC,IAAI,+BAA+B,CAAC,CAAC;YAC5F,CAAC;YACD,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;QACrB,CAAC;QAED,IAAI,MAAM,CAAC,IAAI,IAAI,IAAI,IAAI,MAAM,CAAC,IAAI,KAAK,EAAE,EAAE,CAAC;YAC9C,MAAM,CAAC,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC;QAC5B,CAAC;QAED,IACE,CAAC,MAAM,CAAC,OAAO,IAAI,IAAI,IAAI,MAAM,CAAC,OAAO,KAAK,EAAE,CAAC;YACjD,CAAC,MAAM,CAAC,IAAI,IAAI,IAAI,IAAI,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC,EAC3C,CAAC;YACD,MAAM,CAAC,OAAO,GAAG;gBACf,OAAO,EAAE,qBAAqB;gBAC9B,UAAU,EAAE,cAAc;aAC3B,CAAC;YAEF,IAAI,MAAM,CAAC,OAAO,IAAI,IAAI,IAAI,MAAM,CAAC,OAAO,KAAK,EAAE,EAAE,CAAC;gBACpD,IAAI,CAAC;oBACH,IAAI,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;oBACxC,MAAM,CAAC,OAAO,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;gBAC1C,CAAC;gBAAC,MAAM,CAAC;oBACP,MAAM,IAAI,kBAAkB,CAAC,wBAAwB,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;gBACzE,CAAC;YACH,CAAC;YAED,IAAI,MAAM,CAAC,IAAI,IAAI,IAAI,IAAI,MAAM,CAAC,IAAI,KAAK,EAAE,EAAE,CAAC;gBAC9C,IAAI,MAAM,CAAC,IAAI,KAAK,cAAc,IAAI,MAAM,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;oBAC9D,MAAM,IAAI,kBAAkB,CAC1B,wBAAwB,MAAM,CAAC,IAAI,qCAAqC,CACzE,CAAC;gBACJ,CAAC;gBACD,MAAM,CAAC,OAAO,CAAC,UAAU,GAAG,MAAM,CAAC,IAAgC,CAAC;YACtE,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,kBAAkB,EAAE,CAAC;YACxC,MAAM,KAAK,CAAC;QACd,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,wCAAwC,EAAE,KAAK,CAAC,CAAC;QAC9D,MAAM,IAAI,kBAAkB,CAC1B,mEAAmE,CACpE,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,IAAI;IACjB,IAAI,CAAC;QACH,MAAM,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC;QAEnD,+BAA+B;QAC/B,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;QAEjC,0BAA0B;QAC1B,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,SAAS,CAAC,CAAC;QAE3C,mCAAmC;QACnC,MAAM,QAAQ,GAAG,KAAK,EAAE,MAAc,EAAiB,EAAE;YACvD,MAAM,CAAC,IAAI,CAAC,YAAY,MAAM,+BAA+B,CAAC,CAAC;YAC/D,IAAI,CAAC;gBACH,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;gBACpB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE,KAAK,CAAC,CAAC;gBAC7C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC,CAAC;QAEF,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,GAAG,EAAE;YACxB,KAAK,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAC1B,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE;YACzB,KAAK,QAAQ,CAAC,SAAS,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;QAEH,6BAA6B;QAC7B,OAAO,CAAC,EAAE,CAAC,mBAAmB,EAAE,KAAK,CAAC,EAAE;YACtC,MAAM,CAAC,KAAK,CAAC,oBAAoB,EAAE,KAAK,CAAC,CAAC;YAC1C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC,CAAC,CAAC;QAEH,OAAO,CAAC,EAAE,CAAC,oBAAoB,EAAE,MAAM,CAAC,EAAE;YACxC,MAAM,CAAC,KAAK,CACV,qBAAqB,EACrB,MAAM,YAAY,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAC7D,CAAC;YACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC,CAAC,CAAC;QAEH,mBAAmB;QACnB,MAAM,MAAM,CAAC,KAAK,EAAE,CAAC;QAErB,2BAA2B;QAC3B,MAAM,CAAC,IAAI,CAAC,0DAA0D,CAAC,CAAC;IAC1E,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,kBAAkB,EAAE,CAAC;YACxC,OAAO,CAAC,KAAK,CAAC,wBAAwB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACvD,OAAO,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC;YACnD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,wCAAwC,EAAE,KAAK,CAAC,CAAC;QAC9D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAED,4CAA4C;AAC5C,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,KAAK,UAAU,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;IACpD,IAAI,EAAE,CAAC,KAAK,CAAC,KAAK,CAAC,EAAE;QACnB,OAAO,CAAC,KAAK,CAAC,cAAc,EAAE,KAAK,CAAC,CAAC;QACrC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC,CAAC,CAAC;AACL,CAAC;AAED,OAAO,EAAE,IAAI,IAAI,MAAM,EAAE,CAAC"}

package/dist/health-check.d.ts

@@ -0,0 +1,7 @@
+#!/usr/bin/env node
+/**
+ * Health check script for Docker container
+ * Works in both authenticated and unauthenticated modes
+ */
+export {};
+//# sourceMappingURL=health-check.d.ts.map

package/dist/health-check.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"health-check.d.ts","sourceRoot":"","sources":["../src/health-check.ts"],"names":[],"mappings":";AAEA;;;GAGG"}

package/dist/health-check.js

@@ -0,0 +1,57 @@
+#!/usr/bin/env node
+/**
+ * Health check script for Docker container
+ * Works in both authenticated and unauthenticated modes
+ */
+import { AtpMcpServer } from './index.js';
+function healthCheck() {
+    try {
+        // Create a minimal server instance for health checking
+        // Use default configuration which supports unauthenticated mode
+        const server = new AtpMcpServer({
+            // Only override service if explicitly set in environment
+            ...(process.env['ATPROTO_SERVICE'] != null &&
+                process.env['ATPROTO_SERVICE'] !== '' && {
+                atproto: {
+                    service: process.env['ATPROTO_SERVICE'],
+                },
+            }),
+        });
+        // Get server status without starting the full server
+        const status = server.getStatus();
+        // Check if server is properly configured
+        if (status.config == null) {
+            throw new Error('Server configuration not found');
+        }
+        // Get system metrics
+        const metrics = server.getSystemMetrics();
+        // Check memory usage (fail if over 90% of limit)
+        const memoryUsage = metrics.performance.memoryUsage;
+        const memoryUsagePercent = (memoryUsage.heapUsed / memoryUsage.heapTotal) * 100;
+        if (memoryUsagePercent > 90) {
+            throw new Error(`High memory usage: ${memoryUsagePercent.toFixed(2)}%`);
+        }
+        // Check if uptime is reasonable (server should have been running for at least 10 seconds)
+        if (metrics.performance.uptime < 10000) {
+            console.log('Server is starting up...');
+        }
+        console.log('Health check passed', {
+            authMode: status.authMode,
+            isAuthenticated: status.isAuthenticated,
+            uptime: metrics.performance.uptime,
+            memoryUsage: `${memoryUsagePercent.toFixed(2)}%`,
+            cacheSize: metrics.performance.cacheSize,
+            activeConnections: metrics.performance.activeConnections,
+        });
+        process.exit(0);
+    }
+    catch (error) {
+        console.error('Health check failed:', error);
+        process.exit(1);
+    }
+}
+// Run health check if this script is executed directly
+if (import.meta.url === `file://${process.argv[1]}`) {
+    void healthCheck();
+}
+//# sourceMappingURL=health-check.js.map

package/dist/health-check.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"health-check.js","sourceRoot":"","sources":["../src/health-check.ts"],"names":[],"mappings":";AAEA;;;GAGG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE1C,SAAS,WAAW;IAClB,IAAI,CAAC;QACH,uDAAuD;QACvD,gEAAgE;QAChE,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC;YAC9B,yDAAyD;YACzD,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,IAAI,IAAI;gBACxC,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,KAAK,EAAE,IAAI;gBACvC,OAAO,EAAE;oBACP,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;iBACxC;aACF,CAAC;SACL,CAAC,CAAC;QAEH,qDAAqD;QACrD,MAAM,MAAM,GAAG,MAAM,CAAC,SAAS,EAAE,CAAC;QAElC,yCAAyC;QACzC,IAAI,MAAM,CAAC,MAAM,IAAI,IAAI,EAAE,CAAC;YAC1B,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACpD,CAAC;QAED,qBAAqB;QACrB,MAAM,OAAO,GAAG,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAE1C,iDAAiD;QACjD,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC,WAAW,CAAC;QACpD,MAAM,kBAAkB,GAAG,CAAC,WAAW,CAAC,QAAQ,GAAG,WAAW,CAAC,SAAS,CAAC,GAAG,GAAG,CAAC;QAEhF,IAAI,kBAAkB,GAAG,EAAE,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,sBAAsB,kBAAkB,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC1E,CAAC;QAED,0FAA0F;QAC1F,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,KAAK,EAAE,CAAC;YACvC,OAAO,CAAC,GAAG,CAAC,0BAA0B,CAAC,CAAC;QAC1C,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,qBAAqB,EAAE;YACjC,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,eAAe,EAAE,MAAM,CAAC,eAAe;YACvC,MAAM,EAAE,OAAO,CAAC,WAAW,CAAC,MAAM;YAClC,WAAW,EAAE,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;YAChD,SAAS,EAAE,OAAO,CAAC,WAAW,CAAC,SAAS;YACxC,iBAAiB,EAAE,OAAO,CAAC,WAAW,CAAC,iBAAiB;SACzD,CAAC,CAAC;QAEH,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;QAC7C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC;AAED,uDAAuD;AACvD,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,KAAK,UAAU,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;IACpD,KAAK,WAAW,EAAE,CAAC;AACrB,CAAC"}