npm - crawlforge-mcp-server - Versions diffs - 3.5.1 → 4.2.1 - Mend

crawlforge-mcp-server 3.5.1 → 4.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (56) hide show

package/package.json +6 -4
package/server.js +138 -26
package/src/cli/commands/actions.js +36 -0
package/src/cli/commands/analyze.js +19 -0
package/src/cli/commands/batch.js +45 -0
package/src/cli/commands/crawl.js +30 -0
package/src/cli/commands/extract.js +45 -0
package/src/cli/commands/install-skills.js +46 -0
package/src/cli/commands/llmstxt.js +24 -0
package/src/cli/commands/localize.js +29 -0
package/src/cli/commands/map.js +26 -0
package/src/cli/commands/monitor.js +29 -0
package/src/cli/commands/research.js +26 -0
package/src/cli/commands/scrape.js +37 -0
package/src/cli/commands/search.js +28 -0
package/src/cli/commands/stealth.js +29 -0
package/src/cli/commands/template.js +26 -0
package/src/cli/commands/track.js +24 -0
package/src/cli/commands/uninstall-skills.js +35 -0
package/src/cli/formatter.js +57 -0
package/src/cli/index.js +94 -0
package/src/cli/lib/runTool.js +40 -0
package/src/core/ActionExecutor.js +8 -6
package/src/core/AuthManager.js +103 -3
package/src/core/ChangeTracker.js +34 -0
package/src/core/ElicitationHelper.js +112 -0
package/src/core/JobManager.js +36 -2
package/src/core/LocalizationManager.js +19 -5
package/src/core/PerformanceManager.js +53 -17
package/src/core/ResearchOrchestrator.js +40 -5
package/src/core/SamplingClient.js +191 -0
package/src/core/StealthBrowserManager.js +248 -2
package/src/core/WebhookDispatcher.js +18 -10
package/src/prompts/PromptRegistry.js +199 -0
package/src/resources/ResourceRegistry.js +273 -0
package/src/server/withAuth.js +25 -0
package/src/skills/crawlforge-cli.md +157 -0
package/src/skills/crawlforge-mcp.md +80 -0
package/src/skills/crawlforge-research.md +104 -0
package/src/skills/crawlforge-stealth.md +98 -0
package/src/skills/installer.js +141 -0
package/src/tools/advanced/batchScrape/index.js +30 -0
package/src/tools/advanced/batchScrape/schema.js +1 -1
package/src/tools/basic/extractText.js +19 -8
package/src/tools/crawl/crawlDeep.js +27 -0
package/src/tools/extract/extractContent.js +5 -17
package/src/tools/extract/extractStructured.js +8 -0
package/src/tools/extract/extractWithLlm.js +25 -5
package/src/tools/extract/processDocument.js +7 -1
package/src/tools/extract/summarizeContent.js +17 -0
package/src/tools/research/deepResearch.js +34 -0
package/src/tools/templates/ScrapeTemplateTool.js +68 -0
package/src/tools/templates/TemplateRegistry.js +311 -0
package/src/utils/Logger.js +15 -0
package/src/utils/htmlToMarkdown.js +54 -0
package/src/utils/secretMask.js +86 -0

package/src/utils/secretMask.js ADDED Viewed

@@ -0,0 +1,86 @@
+/**
+ * secretMask -- redact sensitive values from objects/strings before they reach logs.
+ *
+ * Usage:
+ *   import { maskSecrets, maskString } from './secretMask.js';
+ *   logger.error('fetch failed', maskSecrets({ apiKey, url, error }));
+ */
+const SECRET_KEYS_RE = /api[_-]?key|apikey|x-api-key|password|passwd|secret|token|authorization|auth|credential|private[_-]?key|access[_-]?key|proxy_url|proxyurl/i;
+const MASK = '[REDACTED]';
+const PARTIAL_MASK_LEN = 4; // show last N chars of long secrets
+/**
+ * Mask a single string value.
+ * Shows last 4 chars if string is long enough to give context, else full mask.
+ * @param {string} value
+ * @returns {string}
+ */
+export function maskString(value) {
+  if (typeof value !== 'string' || value.length === 0) return MASK;
+  if (value.length <= PARTIAL_MASK_LEN) return MASK;
+  return `${MASK}...${value.slice(-PARTIAL_MASK_LEN)}`;
+}
+/**
+ * Deep-clone obj and redact any key whose name matches SECRET_KEYS_RE.
+ * Handles plain objects, arrays, and primitive values.
+ * Does NOT mutate the original.
+ * @param {*} obj
+ * @param {number} depth - internal recursion guard
+ * @returns {*}
+ */
+export function maskSecrets(obj, depth = 0) {
+  if (depth > 10) return obj; // guard against circular-ish structures
+  if (Array.isArray(obj)) {
+    return obj.map(item => maskSecrets(item, depth + 1));
+  }
+  if (obj !== null && typeof obj === 'object') {
+    const result = {};
+    for (const [key, value] of Object.entries(obj)) {
+      if (SECRET_KEYS_RE.test(key)) {
+        result[key] = typeof value === 'string' ? maskString(value) : MASK;
+      } else {
+        result[key] = maskSecrets(value, depth + 1);
+      }
+    }
+    return result;
+  }
+  return obj;
+}
+/**
+ * Redact secrets from an Error's message and stack.
+ * Returns a new plain-object representation safe for logging.
+ * @param {Error} error
+ * @returns {{ name: string, message: string, stack: string|undefined, code: string|undefined }}
+ */
+export function maskError(error) {
+  if (!(error instanceof Error)) return error;
+  return {
+    name: error.name,
+    message: redactSecretsFromString(error.message),
+    stack: error.stack ? redactSecretsFromString(error.stack) : undefined,
+    code: error.code
+  };
+}
+/**
+ * Heuristic: redact strings that look like API keys / tokens embedded in text.
+ * @param {string} str
+ * @returns {string}
+ */
+function redactSecretsFromString(str) {
+  if (typeof str !== 'string') return str;
+  return str
+    .replace(/(Bearer\s+)\S+/gi, `$1${MASK}`)
+    .replace(/(api[_-]?key\s*[:=]\s*)\S+/gi, `$1${MASK}`)
+    .replace(/(x-api-key\s*[:=]\s*)\S+/gi, `$1${MASK}`)
+    .replace(/(password\s*[:=]\s*)\S+/gi, `$1${MASK}`)
+    .replace(/(secret\s*[:=]\s*)\S+/gi, `$1${MASK}`)
+    .replace(/(token\s*[:=]\s*)\S+/gi, `$1${MASK}`);
+}