cyberdyne-mcp 0.4.0 → 0.5.1

package/README.md

@@ -90,37 +90,28 @@ then releases payment on verify. The pattern behind x402-native traders like
 CYBERDYNE_IDENTITY_TOKEN=cyb_… npm run build && npm run founder-check
 ```
 
-## Install — one line, no clone, no build
+## Install
 
-The repo ships its built `dist/`, so `npx` runs it straight from GitHub. You only
-need Node 18+ and your `cyb_…` agent key (mint one in the app's Agent Console).
-
-**Claude Code:**
+Published on [npm](https://www.npmjs.com/package/cyberdyne-mcp). Mint your `cyb_…`
+agent key in the app's Agent Console, then:
 
 ```bash
-claude mcp add cyberdyne \
-  -e CYBERDYNE_IDENTITY_TOKEN=cyb_… \
-  -- npx -y github:Cyberdyne-OS/cyberdyne-mcp
+npx cyberdyne-mcp login cyb_YOURKEY            # save your key once (~/.cyberdyne/config.json, 0600)
+claude mcp add cyberdyne -- npx -y cyberdyne-mcp
 ```
 
-**Claude Desktop** — add to `~/Library/Application Support/Claude/claude_desktop_config.json` and restart:
-
-```json
-{
-  "mcpServers": {
-    "cyberdyne": {
-      "command": "npx",
-      "args": ["-y", "github:Cyberdyne-OS/cyberdyne-mcp"],
-      "env": {
-        "CYBERDYNE_IDENTITY_TOKEN": "cyb_…",
-        "CYBERDYNE_API_URL": "https://app.cyberdyne-os.xyz"
-      }
-    }
-  }
-}
+*(Prefer not to save a login? Skip step 1 and pass it inline instead:
+`claude mcp add cyberdyne -e CYBERDYNE_IDENTITY_TOKEN=cyb_… -- npx -y cyberdyne-mcp`.)*
+
+### …or install the plugin (skill + MCP together)
+
+```
+/plugin marketplace add Cyberdyne-OS/cyberdyne-mcp
+/plugin install cyberdyne@cyberdyne-os
 ```
 
-*(For local dev from a clone: `npm install && npm run build`, then point the command at `node /abs/path/dist/server.js`.)*
+Bundles the MCP gateway **and** the usage skill. Once connected, run
+**`/mcp__cyberdyne__quickstart`** for the full fund → post → pay walkthrough.
 
 Then ask the agent, e.g.:
 

package/dist/client.js

@@ -9,17 +9,65 @@
  *           body (`identity_token`). Used for `search_humans` (the REST
  *           GET /api/humans is session-only and rejects Bearer keys).
  *
- * Config is read from the environment (stdio MCP servers take creds from env):
- *   CYBERDYNE_API_URL        default "https://app.cyberdyne-os.xyz"
- *   CYBERDYNE_IDENTITY_TOKEN the agent's `cyb_…` key (required for any network call)
+ * The agent key (`cyb_…`) is resolved, in order, from:
+ *   1. env CYBERDYNE_IDENTITY_TOKEN  (e.g. `claude mcp add … -e CYBERDYNE_IDENTITY_TOKEN=…`)
+ *   2. a saved login at ~/.cyberdyne/config.json  (written by `cyberdyne-mcp login cyb_…`)
+ * so the install line can be the short `claude mcp add cyberdyne -- npx -y cyberdyne-mcp`.
+ *   CYBERDYNE_API_URL  overrides the default "https://app.cyberdyne-os.xyz".
  *
  * No secrets are hardcoded; nothing is logged that could leak the key.
  */
+import { homedir } from "node:os";
+import { join } from "node:path";
+import { readFileSync, mkdirSync, openSync, writeSync, closeSync, fchmodSync, constants as FS } from "node:fs";
 export const DEFAULT_API_URL = "https://app.cyberdyne-os.xyz";
-/** Read config from the environment. `token` may be undefined (tools then error). */
+/** Path to the persisted login (mode 600). */
+export function configPath() {
+    return join(homedir(), ".cyberdyne", "config.json");
+}
+// Only the key is persisted. The API endpoint is intentionally NOT read from this
+// file — a tampered config must never be able to redirect the agent's key to a
+// hostile host (credential exfiltration). The endpoint overrides via env only.
+function readSavedToken() {
+    try {
+        const parsed = JSON.parse(readFileSync(configPath(), "utf8"));
+        return typeof parsed?.identity_token === "string" ? parsed.identity_token.trim() : undefined;
+    }
+    catch {
+        return undefined;
+    }
+}
+/** Persist the agent key to ~/.cyberdyne/config.json. Returns the path. */
+export function saveToken(token) {
+    // Owner-only dir + atomic 0600 create (no world-readable window / TOCTOU), and
+    // O_NOFOLLOW so a planted symlink at the path can't redirect the write.
+    mkdirSync(join(homedir(), ".cyberdyne"), { recursive: true, mode: 0o700 });
+    const p = configPath();
+    const contents = JSON.stringify({ identity_token: token.trim() }, null, 2);
+    let flags = FS.O_WRONLY | FS.O_CREAT | FS.O_TRUNC;
+    if (typeof FS.O_NOFOLLOW === "number")
+        flags |= FS.O_NOFOLLOW;
+    let fd;
+    try {
+        fd = openSync(p, flags, 0o600);
+    }
+    catch {
+        // Platforms without O_NOFOLLOW semantics — fall back without it.
+        fd = openSync(p, FS.O_WRONLY | FS.O_CREAT | FS.O_TRUNC, 0o600);
+    }
+    try {
+        fchmodSync(fd, 0o600); // tighten perms on the open fd (covers a pre-existing file), race-free
+        writeSync(fd, contents);
+    }
+    finally {
+        closeSync(fd);
+    }
+    return p;
+}
+/** Resolve config: token from env first, then the saved login. URL from env only. */
 export function readConfig(env = process.env) {
     const apiUrl = (env.CYBERDYNE_API_URL || DEFAULT_API_URL).replace(/\/+$/, "");
-    const token = env.CYBERDYNE_IDENTITY_TOKEN?.trim() || undefined;
+    const token = env.CYBERDYNE_IDENTITY_TOKEN?.trim() || readSavedToken() || undefined;
     return { apiUrl, token };
 }
 /** An API error surfaced to the caller — carries the HTTP status + the API's error code. */

package/dist/server.js

@@ -36,11 +36,45 @@
  *   CYBERDYNE_API_URL         default "https://app.cyberdyne-os.xyz"
  *   CYBERDYNE_IDENTITY_TOKEN  the agent's cyb_ key (required for networked tools)
  */
+import { readFileSync } from "node:fs";
 import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
 import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
 import { z } from "zod";
 import { CATEGORIES, TASK_CATEGORIES } from "./registry.js";
-import { ApiError, CyberdyneClient, MissingTokenError, readConfig } from "./client.js";
+import { ApiError, CyberdyneClient, MissingTokenError, readConfig, saveToken } from "./client.js";
+// `cyberdyne-mcp login` — persist the key so the MCP add line can omit it (short
+// DFM-style install). Runs before the server boots, then exits. The key is read
+// (most-private first) from: piped stdin → CYBERDYNE_LOGIN_TOKEN env → argv. argv
+// works but lands the secret in shell history / `ps`, so we steer to the others.
+if (process.argv[2] === "login") {
+    const fromArg = process.argv[3]?.trim();
+    let token = "";
+    if (!process.stdin.isTTY) {
+        try {
+            token = readFileSync(0, "utf8").trim(); // piped: echo cyb_… | npx cyberdyne-mcp login
+        }
+        catch {
+            /* nothing piped */
+        }
+    }
+    token = token || process.env.CYBERDYNE_LOGIN_TOKEN?.trim() || fromArg || "";
+    if (!token.startsWith("cyb_")) {
+        console.error("Save your CYBERDYNE key (most private first):\n" +
+            "  echo cyb_<key> | npx cyberdyne-mcp login\n" +
+            "  CYBERDYNE_LOGIN_TOKEN=cyb_<key> npx cyberdyne-mcp login\n" +
+            "  npx cyberdyne-mcp login cyb_<key>      (key is left in shell history / process list)\n" +
+            "Get your key at https://app.cyberdyne-os.xyz → Agent Console → Generate API key.");
+        process.exit(1);
+    }
+    if (fromArg && token === fromArg) {
+        console.error("⚠  Heads-up: passing the key as an argument leaves it in your shell history.\n" +
+            "   Next time, pipe it instead:  echo cyb_<key> | npx cyberdyne-mcp login");
+    }
+    const path = saveToken(token);
+    console.error(`✓ Saved your CYBERDYNE key to ${path}.\n` +
+        "Now run:  claude mcp add cyberdyne -- npx -y cyberdyne-mcp");
+    process.exit(0);
+}
 const config = readConfig();
 const client = new CyberdyneClient(config);
 // ---- Result helpers -------------------------------------------------------
@@ -185,5 +219,5 @@ server.registerPrompt("quickstart", {
 const transport = new StdioServerTransport();
 await server.connect(transport);
 console.error(`CYBERDYNE MCP server running on stdio → ${config.apiUrl}` +
-    (config.token ? "" : " (no CYBERDYNE_IDENTITY_TOKEN set; networked tools will error until you set it)") +
+    (config.token ? "" : " (no key — run `npx cyberdyne-mcp login cyb_…` or set CYBERDYNE_IDENTITY_TOKEN; networked tools error until then)") +
     ". Tools: list_categories, search_humans, get_treasury, fund_treasury, get_deposit_address, deposit, post_task, assign_task, authorize_task, get_task, release_payment, close_task.");

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cyberdyne-mcp",
-  "version": "0.4.0",
+  "version": "0.5.1",
   "publishConfig": {
     "access": "public"
   },

package/src/client.ts

@@ -9,13 +9,19 @@
  *           body (`identity_token`). Used for `search_humans` (the REST
  *           GET /api/humans is session-only and rejects Bearer keys).
  *
- * Config is read from the environment (stdio MCP servers take creds from env):
- *   CYBERDYNE_API_URL        default "https://app.cyberdyne-os.xyz"
- *   CYBERDYNE_IDENTITY_TOKEN the agent's `cyb_…` key (required for any network call)
+ * The agent key (`cyb_…`) is resolved, in order, from:
+ *   1. env CYBERDYNE_IDENTITY_TOKEN  (e.g. `claude mcp add … -e CYBERDYNE_IDENTITY_TOKEN=…`)
+ *   2. a saved login at ~/.cyberdyne/config.json  (written by `cyberdyne-mcp login cyb_…`)
+ * so the install line can be the short `claude mcp add cyberdyne -- npx -y cyberdyne-mcp`.
+ *   CYBERDYNE_API_URL  overrides the default "https://app.cyberdyne-os.xyz".
  *
  * No secrets are hardcoded; nothing is logged that could leak the key.
  */
 
+import { homedir } from "node:os";
+import { join } from "node:path";
+import { readFileSync, mkdirSync, openSync, writeSync, closeSync, fchmodSync, constants as FS } from "node:fs";
+
 export const DEFAULT_API_URL = "https://app.cyberdyne-os.xyz";
 
 export interface CyberdyneConfig {
@@ -23,10 +29,52 @@ export interface CyberdyneConfig {
   token: string | undefined;
 }
 
-/** Read config from the environment. `token` may be undefined (tools then error). */
+/** Path to the persisted login (mode 600). */
+export function configPath(): string {
+  return join(homedir(), ".cyberdyne", "config.json");
+}
+
+// Only the key is persisted. The API endpoint is intentionally NOT read from this
+// file — a tampered config must never be able to redirect the agent's key to a
+// hostile host (credential exfiltration). The endpoint overrides via env only.
+function readSavedToken(): string | undefined {
+  try {
+    const parsed = JSON.parse(readFileSync(configPath(), "utf8")) as { identity_token?: unknown };
+    return typeof parsed?.identity_token === "string" ? parsed.identity_token.trim() : undefined;
+  } catch {
+    return undefined;
+  }
+}
+
+/** Persist the agent key to ~/.cyberdyne/config.json. Returns the path. */
+export function saveToken(token: string): string {
+  // Owner-only dir + atomic 0600 create (no world-readable window / TOCTOU), and
+  // O_NOFOLLOW so a planted symlink at the path can't redirect the write.
+  mkdirSync(join(homedir(), ".cyberdyne"), { recursive: true, mode: 0o700 });
+  const p = configPath();
+  const contents = JSON.stringify({ identity_token: token.trim() }, null, 2);
+  let flags = FS.O_WRONLY | FS.O_CREAT | FS.O_TRUNC;
+  if (typeof FS.O_NOFOLLOW === "number") flags |= FS.O_NOFOLLOW;
+  let fd: number;
+  try {
+    fd = openSync(p, flags, 0o600);
+  } catch {
+    // Platforms without O_NOFOLLOW semantics — fall back without it.
+    fd = openSync(p, FS.O_WRONLY | FS.O_CREAT | FS.O_TRUNC, 0o600);
+  }
+  try {
+    fchmodSync(fd, 0o600); // tighten perms on the open fd (covers a pre-existing file), race-free
+    writeSync(fd, contents);
+  } finally {
+    closeSync(fd);
+  }
+  return p;
+}
+
+/** Resolve config: token from env first, then the saved login. URL from env only. */
 export function readConfig(env: NodeJS.ProcessEnv = process.env): CyberdyneConfig {
   const apiUrl = (env.CYBERDYNE_API_URL || DEFAULT_API_URL).replace(/\/+$/, "");
-  const token = env.CYBERDYNE_IDENTITY_TOKEN?.trim() || undefined;
+  const token = env.CYBERDYNE_IDENTITY_TOKEN?.trim() || readSavedToken() || undefined;
   return { apiUrl, token };
 }
 

package/src/server.ts

@@ -36,11 +36,51 @@
  *   CYBERDYNE_API_URL         default "https://app.cyberdyne-os.xyz"
  *   CYBERDYNE_IDENTITY_TOKEN  the agent's cyb_ key (required for networked tools)
  */
+import { readFileSync } from "node:fs";
 import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
 import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
 import { z } from "zod";
 import { CATEGORIES, TASK_CATEGORIES } from "./registry.js";
-import { ApiError, CyberdyneClient, MissingTokenError, readConfig } from "./client.js";
+import { ApiError, CyberdyneClient, MissingTokenError, readConfig, saveToken } from "./client.js";
+
+// `cyberdyne-mcp login` — persist the key so the MCP add line can omit it (short
+// DFM-style install). Runs before the server boots, then exits. The key is read
+// (most-private first) from: piped stdin → CYBERDYNE_LOGIN_TOKEN env → argv. argv
+// works but lands the secret in shell history / `ps`, so we steer to the others.
+if (process.argv[2] === "login") {
+  const fromArg = process.argv[3]?.trim();
+  let token = "";
+  if (!process.stdin.isTTY) {
+    try {
+      token = readFileSync(0, "utf8").trim(); // piped: echo cyb_… | npx cyberdyne-mcp login
+    } catch {
+      /* nothing piped */
+    }
+  }
+  token = token || process.env.CYBERDYNE_LOGIN_TOKEN?.trim() || fromArg || "";
+  if (!token.startsWith("cyb_")) {
+    console.error(
+      "Save your CYBERDYNE key (most private first):\n" +
+        "  echo cyb_<key> | npx cyberdyne-mcp login\n" +
+        "  CYBERDYNE_LOGIN_TOKEN=cyb_<key> npx cyberdyne-mcp login\n" +
+        "  npx cyberdyne-mcp login cyb_<key>      (key is left in shell history / process list)\n" +
+        "Get your key at https://app.cyberdyne-os.xyz → Agent Console → Generate API key.",
+    );
+    process.exit(1);
+  }
+  if (fromArg && token === fromArg) {
+    console.error(
+      "⚠  Heads-up: passing the key as an argument leaves it in your shell history.\n" +
+        "   Next time, pipe it instead:  echo cyb_<key> | npx cyberdyne-mcp login",
+    );
+  }
+  const path = saveToken(token);
+  console.error(
+    `✓ Saved your CYBERDYNE key to ${path}.\n` +
+      "Now run:  claude mcp add cyberdyne -- npx -y cyberdyne-mcp",
+  );
+  process.exit(0);
+}
 
 const config = readConfig();
 const client = new CyberdyneClient(config);
@@ -285,6 +325,6 @@ const transport = new StdioServerTransport();
 await server.connect(transport);
 console.error(
   `CYBERDYNE MCP server running on stdio → ${config.apiUrl}` +
-    (config.token ? "" : " (no CYBERDYNE_IDENTITY_TOKEN set; networked tools will error until you set it)") +
+    (config.token ? "" : " (no key — run `npx cyberdyne-mcp login cyb_…` or set CYBERDYNE_IDENTITY_TOKEN; networked tools error until then)") +
     ". Tools: list_categories, search_humans, get_treasury, fund_treasury, get_deposit_address, deposit, post_task, assign_task, authorize_task, get_task, release_payment, close_task.",
 );