defense-mcp-server 0.9.3 → 0.9.4

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "defense-mcp-server",
-  "version": "0.9.3",
+  "version": "0.9.4",
   "description": "Defense MCP Server — 31 defensive security tools with 250+ actions for system hardening, compliance, and threat detection on Linux",
   "type": "module",
   "main": "build/index.js",
@@ -8,7 +8,7 @@
     "defense-mcp-server": "build/index.js"
   },
   "files": [
-    "build/",
+    "build/**/*.js",
     "README.md",
     "CHANGELOG.md",
     "LICENSE",

package/build/core/auto-installer.d.ts

@@ -1,102 +0,0 @@
-/**
- * AutoInstaller — multi-package-manager automatic dependency resolver.
- *
- * Handles installation of missing dependencies across system package managers
- * (apt, dnf, yum, pacman, apk, zypper, brew), pip, and npm.  This module is
- * part of the pre-flight validation pipeline and is invoked when
- * `DEFENSE_MCP_AUTO_INSTALL=true`.
- *
- * Design constraints:
- *   - Uses `execFileSafe` from `spawn-safe.ts` (NOT the executor) to avoid
- *     circular dependencies with `sudo-session`. spawn-safe enforces the
- *     command allowlist and `shell: false` automatically.
- *   - Every `execFileSafe` call is wrapped in try/catch — install failures
- *     must NEVER crash the server.
- *   - Logs exclusively to stderr (`console.error`) because the MCP server
- *     uses stdio for JSON-RPC transport.
- *
- * @module auto-installer
- */
-import type { ToolManifest } from "./tool-registry.js";
-export interface InstallAttempt {
-    dependency: string;
-    type: "binary" | "python-module" | "npm-package" | "library" | "file";
-    method: "system-package" | "pip" | "npm" | "cargo" | "go-install" | "binary-download" | "build-from-source" | "vendored" | "skipped";
-    success: boolean;
-    message: string;
-    duration?: number;
-}
-export interface AutoInstallResult {
-    attempted: InstallAttempt[];
-    allResolved: boolean;
-    unresolvedDependencies: string[];
-}
-/**
- * Validate that a package name contains only safe characters.
- * Allowed: alphanumeric, hyphens, dots, plus signs, colons (for arch qualifiers).
- * No shell metacharacters, no path separators, no spaces.
- * Max length: 128 characters.
- */
-export declare function validatePackageName(name: string): boolean;
-export declare class AutoInstaller {
-    private static _instance;
-    private distroCache;
-    /** Get or create the singleton instance. */
-    static instance(): AutoInstaller;
-    /**
-     * Reset the singleton (for testing).
-     * @internal
-     */
-    static resetInstance(): void;
-    /** Check if auto-install is enabled via config. */
-    isEnabled(): boolean;
-    /**
-     * Resolve all missing dependencies for a tool manifest.
-     *
-     * If auto-install is disabled, returns all dependencies as unresolved
-     * with method `'skipped'`.
-     */
-    resolveAll(manifest: ToolManifest, missingBinaries: string[], missingPython?: string[], missingNpm?: string[], missingLibraries?: string[]): Promise<AutoInstallResult>;
-    /**
-     * Install a system binary via the detected package manager.
-     *
-     * 1. Look up binary in DEFENSIVE_TOOLS for distro-specific package name
-     * 2. If not found, try binary name directly as package name
-     * 3. Verify with `which <binary>` after install
-     */
-    installBinary(binary: string): Promise<InstallAttempt>;
-    /**
-     * Install a Python module via pip.
-     *
-     * 1. Check if pip3 or pip exists
-     * 2. Try user-site install first (no sudo)
-     * 3. If that fails, try with sudo
-     * 4. Verify with `python3 -c "import <module>"`
-     */
-    installPythonModule(module: string): Promise<InstallAttempt>;
-    /**
-     * Install an npm package globally.
-     *
-     * 1. Check if npm exists
-     * 2. Run `npm install -g <package>` with sudo if needed
-     * 3. Verify by checking if the package provides an expected binary
-     */
-    installNpmPackage(pkg: string): Promise<InstallAttempt>;
-    /**
-     * Install a system library (development headers).
-     *
-     * 1. Determine dev package name based on distro family
-     * 2. Try installing the first candidate that works
-     * 3. Verify with `ldconfig -p | grep <lib>` or `pkg-config --exists <lib>`
-     */
-    installLibrary(lib: string): Promise<InstallAttempt>;
-    /**
-     * Get (and cache) the detected distro info.
-     */
-    private getDistro;
-    /**
-     * Verify a library is available via ldconfig or pkg-config.
-     */
-    private verifyLibrary;
-}
-//# sourceMappingURL=auto-installer.d.ts.map

package/build/core/auto-installer.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auto-installer.d.ts","sourceRoot":"","sources":["../../src/core/auto-installer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AASH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AASvD,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,QAAQ,GAAG,eAAe,GAAG,aAAa,GAAG,SAAS,GAAG,MAAM,CAAC;IACtE,MAAM,EACF,gBAAgB,GAChB,KAAK,GACL,KAAK,GACL,OAAO,GACP,YAAY,GACZ,iBAAiB,GACjB,mBAAmB,GACnB,UAAU,GACV,SAAS,CAAC;IACd,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,iBAAiB;IAChC,SAAS,EAAE,cAAc,EAAE,CAAC;IAC5B,WAAW,EAAE,OAAO,CAAC;IACrB,sBAAsB,EAAE,MAAM,EAAE,CAAC;CAClC;AA0FD;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAEzD;AAoOD,qBAAa,aAAa;IACxB,OAAO,CAAC,MAAM,CAAC,SAAS,CAA8B;IACtD,OAAO,CAAC,WAAW,CAA2B;IAE9C,4CAA4C;IAC5C,MAAM,CAAC,QAAQ,IAAI,aAAa;IAahC;;;OAGG;IACH,MAAM,CAAC,aAAa,IAAI,IAAI;IAI5B,mDAAmD;IACnD,SAAS,IAAI,OAAO;IAIpB;;;;;OAKG;IACG,UAAU,CACd,QAAQ,EAAE,YAAY,EACtB,eAAe,EAAE,MAAM,EAAE,EACzB,aAAa,CAAC,EAAE,MAAM,EAAE,EACxB,UAAU,CAAC,EAAE,MAAM,EAAE,EACrB,gBAAgB,CAAC,EAAE,MAAM,EAAE,GAC1B,OAAO,CAAC,iBAAiB,CAAC;IA6G7B;;;;;;OAMG;IACG,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAsP5D;;;;;;;OAOG;IACG,mBAAmB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAgHlE;;;;;;OAMG;IACG,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IA8G7D;;;;;;OAMG;IACG,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAwG1D;;OAEG;YACW,SAAS;IAOvB;;OAEG;IACH,OAAO,CAAC,aAAa;CAmBtB"}

package/build/core/backup-manager.d.ts

@@ -1,63 +0,0 @@
-/**
- * BackupManager — manages file backups with manifest tracking.
- *
- * Backups are stored under ~/.defense-mcp/backups/ with timestamped filenames.
- * A manifest.json tracks all backups for listing and restore operations.
- */
-export interface BackupEntry {
-    id: string;
-    originalPath: string;
-    backupPath: string;
-    timestamp: string;
-    sizeBytes: number;
-}
-export interface BackupManifest {
-    version: 1;
-    backups: BackupEntry[];
-}
-/**
- * Validate that a backup path is safe:
- * 1. No `..` traversal sequences
- * 2. Normalized via path.resolve()
- * 3. Resolved path is within the backup base directory
- * 4. Not a symlink (prevent symlink attacks)
- *
- * @param filePath The path to validate
- * @param baseDir The backup base directory that paths must stay within
- * @throws {Error} If the path fails validation
- */
-export declare function validateBackupPath(filePath: string, baseDir: string): void;
-export declare class BackupManager {
-    private readonly backupDir;
-    private readonly manifestPath;
-    constructor(backupDir?: string);
-    /** Ensure backup directory exists. */
-    private ensureDir;
-    /** Read manifest from disk with migration from old format. */
-    private readManifest;
-    /** Write manifest to disk. */
-    private writeManifest;
-    /**
-     * Create a backup of a file (synchronous).
-     * @returns The BackupEntry with id and backupPath.
-     */
-    backupSync(filePath: string): BackupEntry;
-    /**
-     * Create a backup of a file.
-     * @returns The backup ID.
-     */
-    backup(filePath: string): Promise<string>;
-    /**
-     * Restore a file from backup by ID.
-     */
-    restore(backupId: string): Promise<void>;
-    /**
-     * List all backup entries.
-     */
-    listBackups(): Promise<BackupEntry[]>;
-    /**
-     * Remove backups older than the specified number of days.
-     */
-    pruneOldBackups(daysOld: number): Promise<void>;
-}
-//# sourceMappingURL=backup-manager.d.ts.map

package/build/core/backup-manager.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"backup-manager.d.ts","sourceRoot":"","sources":["../../src/core/backup-manager.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAgBH,MAAM,WAAW,WAAW;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,CAAC,CAAC;IACX,OAAO,EAAE,WAAW,EAAE,CAAC;CACxB;AAUD;;;;;;;;;;GAUG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CAiC1E;AAID,qBAAa,aAAa;IACxB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAS;gBAE1B,SAAS,CAAC,EAAE,MAAM;IAK9B,sCAAsC;IACtC,OAAO,CAAC,SAAS;IAIjB,8DAA8D;IAC9D,OAAO,CAAC,YAAY;IAepB,8BAA8B;IAC9B,OAAO,CAAC,aAAa;IAKrB;;;OAGG;IACH,UAAU,CAAC,QAAQ,EAAE,MAAM,GAAG,WAAW;IAyCzC;;;OAGG;IACG,MAAM,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAK/C;;OAEG;IACG,OAAO,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAyB9C;;OAEG;IACG,WAAW,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;IAO3C;;OAEG;IACG,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAiCtD"}

package/build/core/changelog.d.ts

@@ -1,119 +0,0 @@
-/**
- * A single changelog entry recording a defensive action taken.
- */
-export interface ChangeEntry {
-    /** Unique identifier (UUID v4) */
-    id: string;
-    /** ISO 8601 timestamp */
-    timestamp: string;
-    /** Tool that performed the action */
-    tool: string;
-    /** Description of the action */
-    action: string;
-    /** Target of the action (file, service, etc.) */
-    target: string;
-    /** State before the change */
-    before?: string;
-    /** State after the change */
-    after?: string;
-    /** Path to backup file if one was created */
-    backupPath?: string;
-    /** Whether this was a dry-run (no actual changes) */
-    dryRun: boolean;
-    /** Whether the action succeeded */
-    success: boolean;
-    /** Error message if the action failed */
-    error?: string;
-    /** Command to undo this change */
-    rollbackCommand?: string;
-    /** OS username who made the change (auto-populated) */
-    user?: string;
-    /** MCP session identifier (if available) */
-    sessionId?: string;
-    /**
-     * SHA-256 hash-chain value.
-     *
-     * For the first entry: SHA-256 of the entry's core fields with previousHash="genesis".
-     * For subsequent entries: SHA-256 of the entry's core fields concatenated with
-     * the previous entry's hash. This creates a tamper-evident chain — modifying or
-     * deleting any entry breaks the chain, which is detectable via `verifyChangelog()`.
-     *
-     * Auto-populated by `logChange()`. Not present in legacy entries.
-     */
-    hash?: string;
-}
-/**
- * Versioned changelog state file format.
- * Old files stored a bare array; new files use this envelope.
- */
-export interface ChangelogState {
-    version: 1;
-    entries: ChangeEntry[];
-}
-/**
- * Compute the SHA-256 hash-chain value for a changelog entry.
- *
- * The hash is computed over the entry's immutable fields (id, timestamp, tool,
- * action, target, dryRun, success) concatenated with the previous entry's hash.
- * This creates a tamper-evident chain.
- *
- * @param entry - The entry to hash (hash field is excluded from the computation)
- * @param previousHash - Hash of the previous entry, or "genesis" for the first entry
- * @returns SHA-256 hex digest
- */
-export declare function computeEntryHash(entry: ChangeEntry, previousHash: string): string;
-/**
- * Verify the integrity of the changelog hash chain.
- *
- * Walks all entries with `hash` fields and checks that each hash matches
- * the recomputed value from the previous entry's hash. Legacy entries
- * without `hash` fields are skipped.
- *
- * @returns Object with `valid` boolean and details of any broken links
- */
-export declare function verifyChangelog(): {
-    valid: boolean;
-    totalEntries: number;
-    hashedEntries: number;
-    brokenLinks: Array<{
-        index: number;
-        entryId: string;
-        expected: string;
-        actual: string;
-    }>;
-};
-/**
- * Creates a new ChangeEntry with auto-generated id and timestamp.
- */
-export declare function createChangeEntry(partial: Omit<ChangeEntry, "id" | "timestamp" | "user">): ChangeEntry;
-/**
- * Appends a change entry to the changelog JSON file.
- * Creates the file and parent directories if they don't exist.
- * Rotates old entries when the file exceeds MAX_CHANGELOG_ENTRIES.
- * Computes and attaches a hash-chain value for tamper evidence.
- * Fails silently (logs to stderr) to avoid disrupting tool execution.
- */
-export declare function logChange(entry: ChangeEntry): void;
-/**
- * Reads changelog entries, newest first.
- * Returns empty array on any error.
- *
- * @param limit Maximum number of entries to return (default: all)
- */
-export declare function getChangelog(limit?: number): ChangeEntry[];
-/**
- * Creates a backup copy of a file using the unified BackupManager.
- * The backup is tracked in the manifest at ~/.defense-mcp/backups/manifest.json.
- *
- * @param filePath Absolute path to the file to back up
- * @returns Path to the backup file
- */
-export declare function backupFile(filePath: string): string;
-/**
- * Restores a file from a backup.
- *
- * @param backupPath Path to the backup file
- * @param originalPath Path to restore the file to
- */
-export declare function restoreFile(backupPath: string, originalPath: string): void;
-//# sourceMappingURL=changelog.d.ts.map

package/build/core/changelog.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"changelog.d.ts","sourceRoot":"","sources":["../../src/core/changelog.ts"],"names":[],"mappings":"AAQA;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,kCAAkC;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,qCAAqC;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,gCAAgC;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,iDAAiD;IACjD,MAAM,EAAE,MAAM,CAAC;IACf,8BAA8B;IAC9B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,6BAA6B;IAC7B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,6CAA6C;IAC7C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,qDAAqD;IACrD,MAAM,EAAE,OAAO,CAAC;IAChB,mCAAmC;IACnC,OAAO,EAAE,OAAO,CAAC;IACjB,yCAAyC;IACzC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kCAAkC;IAClC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,uDAAuD;IACvD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,4CAA4C;IAC5C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB;;;;;;;;;OASG;IACH,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED;;;GAGG;AACH,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,CAAC,CAAC;IACX,OAAO,EAAE,WAAW,EAAE,CAAC;CACxB;AAID;;;;;;;;;;GAUG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,GAAG,MAAM,CAcjF;AAED;;;;;;;;GAQG;AACH,wBAAgB,eAAe,IAAI;IACjC,KAAK,EAAE,OAAO,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE,KAAK,CAAC;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CAC1F,CAuCA;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAC/B,OAAO,EAAE,IAAI,CAAC,WAAW,EAAE,IAAI,GAAG,WAAW,GAAG,MAAM,CAAC,GACtD,WAAW,CAOb;AA2BD;;;;;;GAMG;AACH,wBAAgB,SAAS,CAAC,KAAK,EAAE,WAAW,GAAG,IAAI,CAiClD;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,KAAK,CAAC,EAAE,MAAM,GAAG,WAAW,EAAE,CAmB1D;AAED;;;;;;GAMG;AACH,wBAAgB,UAAU,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAKnD;AAED;;;;;GAKG;AACH,wBAAgB,WAAW,CAAC,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,IAAI,CAU1E"}

package/build/core/command-allowlist.d.ts

@@ -1,129 +0,0 @@
-/**
- * Command Allowlist — security control that restricts which binaries the
- * MCP server may execute.
- *
- * Every command passed to `executeCommand()` (and the bypass modules that
- * use `execFileSync` / `spawn` directly) MUST be present in this allowlist.
- * Bare command names are resolved to absolute paths at startup, eliminating
- * PATH-manipulation attacks when running under sudo.
- *
- * Design constraints:
- *   - **No circular dependencies**: only imports from `node:fs` (no executor,
- *     no sudo-session, no tool-registry).
- *   - Uses `fs.existsSync` for path resolution — never shells out to `which`.
- *   - Candidate paths are checked in order; the first match wins.
- *   - Unresolvable binaries are logged as warnings but don't block startup
- *     (not every system has every tool installed).
- *
- * @module command-allowlist
- */
-export interface AllowlistEntry {
-    /** Bare binary name, e.g. "iptables" */
-    binary: string;
-    /** Ordered candidate absolute paths on Linux */
-    candidates: string[];
-    /** Filled at startup after resolution; `undefined` if not found on disk */
-    resolvedPath?: string;
-    /** Which distro package should own this binary (for integrity verification) */
-    expectedPackage?: string;
-    /** Inode number recorded at startup for TOCTOU detection (CORE-007) */
-    resolvedInode?: number;
-}
-/** Result of a binary ownership verification check */
-export interface BinaryVerificationResult {
-    binary: string;
-    path: string;
-    verified: boolean;
-    owner?: string;
-    message: string;
-}
-/**
- * Initialize the allowlist by resolving candidate paths on the current system.
- *
- * For each allowlisted binary, checks which candidate paths actually exist
- * on disk and caches the first match. This should be called once at server
- * startup, before any tool registration.
- *
- * Binaries that cannot be found are logged as warnings but do not prevent
- * startup — not every system has every tool installed.
- */
-export declare function initializeAllowlist(): void;
-/**
- * Resolve a bare command name to its absolute path via the allowlist.
- *
- * @param command - Bare binary name (e.g. `"iptables"`)
- * @returns The absolute path to the binary (e.g. `"/usr/sbin/iptables"`)
- * @throws {Error} If the command is not in the allowlist or cannot be found
- */
-export declare function resolveCommand(command: string): string;
-/**
- * Check whether a bare command name is in the allowlist (without resolving).
- *
- * @param command - Bare binary name or absolute path
- * @returns `true` if the command is allowlisted
- */
-export declare function isAllowlisted(command: string): boolean;
-/**
- * Resolve a sudo command and its target binary.
- *
- * When `command` is `"sudo"`, this function:
- * 1. Resolves `sudo` itself to its absolute path
- * 2. Finds the actual binary in the args array (skipping sudo flags like `-S`, `-p`, `-A`, `-k`, `-n`, `-v`)
- * 3. Resolves that binary against the allowlist
- * 4. Returns the resolved sudo path, the index of the target binary in args, and its resolved path
- *
- * @param args - The args array passed to sudo
- * @returns Object with resolved paths and the index of the target command in args
- * @throws {Error} If sudo or the target command is not allowlisted
- */
-export declare function resolveSudoCommand(args: string[]): {
-    sudoPath: string;
-    targetIndex: number;
-    targetPath: string;
-};
-/**
- * Returns the full allowlist for inspection/debugging.
- * Each entry includes resolution status.
- */
-export declare function getAllowlistEntries(): ReadonlyArray<Readonly<AllowlistEntry>>;
-/**
- * Returns whether the allowlist has been initialized.
- */
-export declare function isInitialized(): boolean;
-/**
- * Returns whether runtime path verification is currently enabled.
- */
-export declare function isRuntimePathVerificationEnabled(): boolean;
-/**
- * Enable or disable runtime path verification.
- * Useful for testing or performance-sensitive environments.
- */
-export declare function setRuntimePathVerification(enabled: boolean): void;
-/**
- * Returns the critical binary package mappings for inspection/testing.
- */
-export declare function getCriticalBinaryPackages(): Readonly<Record<string, string[]>>;
-/**
- * Verify that a resolved binary is owned by its expected system package.
- *
- * Uses `dpkg -S` on Debian/Ubuntu, `rpm -qf` on RHEL/Fedora,
- * or `pacman -Qo` on Arch to determine the owning package.
- *
- * @param binaryPath - Absolute path to the binary
- * @param expectedPackage - Optional expected package name; if omitted, only ownership is checked
- * @returns Verification result with owner info and status
- */
-export declare function verifyBinaryOwnership(binaryPath: string, expectedPackage?: string): BinaryVerificationResult;
-/**
- * Verify all resolved critical binaries against their expected packages.
- *
- * Runs after `initializeAllowlist()` and logs warnings for any binaries
- * that can't be verified or are owned by unexpected packages.
- *
- * All verifications run in parallel for faster startup.
- * This is best-effort — it never throws or blocks startup.
- *
- * @returns Array of verification results for all critical binaries that were resolved
- */
-export declare function verifyAllBinaries(): Promise<BinaryVerificationResult[]>;
-//# sourceMappingURL=command-allowlist.d.ts.map

package/build/core/command-allowlist.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"command-allowlist.d.ts","sourceRoot":"","sources":["../../src/core/command-allowlist.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAeH,MAAM,WAAW,cAAc;IAC7B,wCAAwC;IACxC,MAAM,EAAE,MAAM,CAAC;IACf,gDAAgD;IAChD,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,2EAA2E;IAC3E,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,+EAA+E;IAC/E,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,uEAAuE;IACvE,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,sDAAsD;AACtD,MAAM,WAAW,wBAAwB;IACvC,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,OAAO,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;CACjB;AAsXD;;;;;;;;;GASG;AACH,wBAAgB,mBAAmB,IAAI,IAAI,CAwD1C;AAED;;;;;;GAMG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAiEtD;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CActD;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG;IAClD,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;CACpB,CA6CA;AAED;;;GAGG;AACH,wBAAgB,mBAAmB,IAAI,aAAa,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,CAE7E;AAED;;GAEG;AACH,wBAAgB,aAAa,IAAI,OAAO,CAEvC;AAED;;GAEG;AACH,wBAAgB,gCAAgC,IAAI,OAAO,CAE1D;AAED;;;GAGG;AACH,wBAAgB,0BAA0B,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI,CAEjE;AA4DD;;GAEG;AACH,wBAAgB,yBAAyB,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC,CAE9E;AAeD;;;;;;;;;GASG;AACH,wBAAgB,qBAAqB,CACnC,UAAU,EAAE,MAAM,EAClB,eAAe,CAAC,EAAE,MAAM,GACvB,wBAAwB,CA6G1B;AAiHD;;;;;;;;;;GAUG;AACH,wBAAsB,iBAAiB,IAAI,OAAO,CAAC,wBAAwB,EAAE,CAAC,CA6C7E"}

package/build/core/config.d.ts

@@ -1,107 +0,0 @@
-/**
- * Known defensive tools that support per-tool timeout overrides
- * via DEFENSE_MCP_TIMEOUT_<TOOL> environment variables.
- */
-export declare const KNOWN_TOOLS: readonly ["lynis", "aide", "clamav", "oscap", "snort", "suricata", "rkhunter", "chkrootkit", "tcpdump", "auditd", "nmap", "fail2ban-client", "debsums", "yara"];
-export type KnownTool = (typeof KNOWN_TOOLS)[number];
-/**
- * Configuration interface for the Defense MCP Server.
- * All values are derived from environment variables with sensible defaults.
- */
-export interface DefenseConfig {
-    /** Default command timeout in milliseconds */
-    defaultTimeout: number;
-    /** Maximum output buffer size in bytes */
-    maxBuffer: number;
-    /** Directories allowed for file operations */
-    allowedDirs: string[];
-    /** Logging level */
-    logLevel: "debug" | "info" | "warn" | "error";
-    /**
-     * SECURITY (CICD-014): Dry-run mode — when true, modifying operations preview
-     * commands without executing them. Defaults to `true` so the server operates
-     * in a safe, read-only mode until explicitly opted out via
-     * DEFENSE_MCP_DRY_RUN=false. This prevents accidental system modifications.
-     */
-    dryRun: boolean;
-    /** Path to the changelog JSON file */
-    changelogPath: string;
-    /** Directory for file backups */
-    backupDir: string;
-    /**
-     * SECURITY (CICD-014): Whether to create backups before modifying files.
-     * Defaults to `true` — every file modification is backed up first so that
-     * changes can be rolled back if needed. Disable only in CI/test environments
-     * via DEFENSE_MCP_BACKUP_ENABLED=false.
-     */
-    backupEnabled: boolean;
-    /** Whether to auto-install missing tools */
-    autoInstall: boolean;
-    /** Paths protected from modification */
-    protectedPaths: string[];
-    /**
-     * SECURITY (CICD-014): Whether to require confirmation for destructive
-     * actions. Defaults to `true` — the server will request explicit confirmation
-     * before executing operations that modify system state. Disable only when
-     * running automated/unattended workflows via
-     * DEFENSE_MCP_REQUIRE_CONFIRMATION=false.
-     */
-    requireConfirmation: boolean;
-    /** Directory for quarantined files */
-    quarantineDir: string;
-    /** Directory for policy files */
-    policyDir: string;
-    /** Per-tool timeout overrides in milliseconds */
-    toolTimeouts: Partial<Record<KnownTool, number>>;
-    /** Sudo session timeout in milliseconds (default: 15 minutes) */
-    sudoSessionTimeout: number;
-    /** Command execution timeout in ms (falls back to defaultTimeout; env: DEFENSE_MCP_COMMAND_TIMEOUT) */
-    commandTimeout: number;
-    /** Network operation timeout in ms (default: 30s; env: DEFENSE_MCP_NETWORK_TIMEOUT) */
-    networkTimeout: number;
-    /**
-     * SECURITY: Redact sensitive data (passwords, tokens, keys) from command
-     * output before returning to the LLM. Defaults to `true`.
-     * Env: DEFENSE_MCP_REDACT_OUTPUT (set to "false" to disable)
-     */
-    redactOutput: boolean;
-    /**
-     * When true, only register tools with readOnlyHint: true annotations.
-     * Env: DEFENSE_MCP_READ_ONLY (default: false)
-     */
-    readOnly: boolean;
-    /**
-     * Comma-separated list of tool names to register. Empty means all tools.
-     * Env: DEFENSE_MCP_ALLOWED_TOOLS (default: "")
-     */
-    allowedTools: string[];
-}
-/**
- * Returns the current configuration by reading environment variables.
- * Results are cached for 5 seconds to avoid redundant env-var parsing
- * across the 3–5 calls per tool invocation.
- */
-export declare function getConfig(): DefenseConfig;
-/**
- * Invalidate the config cache, forcing the next `getConfig()` call to
- * re-read environment variables. Useful for tests.
- */
-export declare function invalidateConfigCache(): void;
-/**
- * Returns the effective timeout for a given tool in milliseconds.
- * Checks per-tool overrides first, then falls back to the default timeout.
- */
-export declare function getToolTimeout(toolName: string, config?: DefenseConfig): number;
-/**
- * Returns the effective timeout for a specific tool action in milliseconds.
- *
- * Resolution order:
- * 1. Per-tool env override (DEFENSE_MCP_TIMEOUT_<TOOL>)
- * 2. Duration database recommended timeout for the specific action
- * 3. Default timeout from config
- *
- * This ensures long-running tools (ClamAV, rkhunter, AIDE) get appropriate
- * timeouts automatically without requiring env var configuration.
- */
-export declare function getActionTimeout(toolName: string, action: string, config?: DefenseConfig): number;
-//# sourceMappingURL=config.d.ts.map

package/build/core/config.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../../src/core/config.ts"],"names":[],"mappings":"AAIA;;;GAGG;AACH,eAAO,MAAM,WAAW,iKAed,CAAC;AAEX,MAAM,MAAM,SAAS,GAAG,CAAC,OAAO,WAAW,CAAC,CAAC,MAAM,CAAC,CAAC;AAErD;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,8CAA8C;IAC9C,cAAc,EAAE,MAAM,CAAC;IACvB,0CAA0C;IAC1C,SAAS,EAAE,MAAM,CAAC;IAClB,8CAA8C;IAC9C,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,oBAAoB;IACpB,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;IAC9C;;;;;OAKG;IACH,MAAM,EAAE,OAAO,CAAC;IAChB,sCAAsC;IACtC,aAAa,EAAE,MAAM,CAAC;IACtB,iCAAiC;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB;;;;;OAKG;IACH,aAAa,EAAE,OAAO,CAAC;IACvB,4CAA4C;IAC5C,WAAW,EAAE,OAAO,CAAC;IACrB,wCAAwC;IACxC,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB;;;;;;OAMG;IACH,mBAAmB,EAAE,OAAO,CAAC;IAC7B,sCAAsC;IACtC,aAAa,EAAE,MAAM,CAAC;IACtB,iCAAiC;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,iDAAiD;IACjD,YAAY,EAAE,OAAO,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC;IACjD,iEAAiE;IACjE,kBAAkB,EAAE,MAAM,CAAC;IAC3B,uGAAuG;IACvG,cAAc,EAAE,MAAM,CAAC;IACvB,uFAAuF;IACvF,cAAc,EAAE,MAAM,CAAC;IACvB;;;;OAIG;IACH,YAAY,EAAE,OAAO,CAAC;IACtB;;;OAGG;IACH,QAAQ,EAAE,OAAO,CAAC;IAClB;;;OAGG;IACH,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAmGD;;;;GAIG;AACH,wBAAgB,SAAS,IAAI,aAAa,CAQzC;AA8FD;;;GAGG;AACH,wBAAgB,qBAAqB,IAAI,IAAI,CAG5C;AAED;;;GAGG;AACH,wBAAgB,cAAc,CAC5B,QAAQ,EAAE,MAAM,EAChB,MAAM,CAAC,EAAE,aAAa,GACrB,MAAM,CAIR;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,gBAAgB,CAC9B,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,EACd,MAAM,CAAC,EAAE,aAAa,GACrB,MAAM,CAkBR"}

package/build/core/dependency-validator.d.ts

@@ -1,106 +0,0 @@
-/**
- * Dependency Validator for Defense MCP Server.
- *
- * Provides three key capabilities:
- * 1. **Startup validation** — checks all tool dependencies when the server starts
- *    and auto-installs missing ones if DEFENSE_MCP_AUTO_INSTALL=true
- * 2. **Runtime dependency check** — `ensureDependencies()` can be called before
- *    any tool execution to verify (and optionally install) required binaries
- * 3. **Dependency status cache** — avoids redundant `which` calls by caching
- *    binary availability results with a configurable TTL
- */
-/**
- * Result of a startup validation run.
- */
-export interface ValidationReport {
-    /** Total unique binaries checked */
-    totalChecked: number;
-    /** Binaries that are available */
-    available: string[];
-    /** Binaries that are missing */
-    missing: string[];
-    /** Binaries that were auto-installed */
-    installed: string[];
-    /** Binaries that failed to install */
-    installFailed: Array<{
-        binary: string;
-        error: string;
-    }>;
-    /** Critical tools with missing dependencies */
-    criticalMissing: Array<{
-        toolName: string;
-        missingBinaries: string[];
-    }>;
-    /** Duration of the validation in milliseconds */
-    durationMs: number;
-    /** Whether auto-install was enabled */
-    autoInstallEnabled: boolean;
-}
-/**
- * Result of ensuring dependencies for a specific tool.
- */
-export interface EnsureResult {
-    /** Whether all required dependencies are satisfied */
-    satisfied: boolean;
-    /** Missing required binaries (empty if satisfied) */
-    missingRequired: string[];
-    /** Missing optional binaries */
-    missingOptional: string[];
-    /** Binaries that were auto-installed during this check */
-    autoInstalled: string[];
-    /** Errors from auto-install attempts */
-    installErrors: Array<{
-        binary: string;
-        error: string;
-    }>;
-}
-/**
- * Clears the entire binary cache.
- */
-export declare function clearDependencyCache(): void;
-/**
- * Validates all tool dependencies at server startup.
- *
- * This function:
- * 1. Collects all unique binaries required across all tools
- * 2. Checks each binary's availability
- * 3. If autoInstall is enabled, installs missing binaries
- * 4. Reports critical tools with missing dependencies
- *
- * @returns A detailed validation report
- */
-export declare function validateAllDependencies(): Promise<ValidationReport>;
-/**
- * Ensures all dependencies for a specific MCP tool are satisfied.
- *
- * Call this at the start of any tool handler to verify its binaries are present.
- * If autoInstall is enabled, missing binaries will be installed on-the-fly.
- *
- * @param toolName The MCP tool name (e.g. "ids_rkhunter_scan")
- * @returns EnsureResult with satisfaction status and details
- *
- * @example
- * ```ts
- * const deps = await ensureDependencies("ids_rkhunter_scan");
- * if (!deps.satisfied) {
- *   return {
- *     content: [createErrorContent(
- *       `Missing required tools: ${deps.missingRequired.join(", ")}. ` +
- *       `Install with: sudo apt install ${deps.missingRequired.join(" ")}`
- *     )],
- *     isError: true,
- *   };
- * }
- * ```
- */
-export declare function ensureDependencies(toolName: string): Promise<EnsureResult>;
-/**
- * Quick check if a single binary is available (cached).
- * Does NOT auto-install. Use for lightweight pre-flight checks.
- */
-export declare function isBinaryInstalled(binary: string): Promise<boolean>;
-/**
- * Formats a ValidationReport into a human-readable string for logging.
- */
-export declare function formatValidationReport(report: ValidationReport): string;
-//# sourceMappingURL=dependency-validator.d.ts.map

package/build/core/dependency-validator.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"dependency-validator.d.ts","sourceRoot":"","sources":["../../src/core/dependency-validator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AA6BH;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,oCAAoC;IACpC,YAAY,EAAE,MAAM,CAAC;IACrB,kCAAkC;IAClC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,gCAAgC;IAChC,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,wCAAwC;IACxC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,sCAAsC;IACtC,aAAa,EAAE,KAAK,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACxD,+CAA+C;IAC/C,eAAe,EAAE,KAAK,CAAC;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,eAAe,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC,CAAC;IACxE,iDAAiD;IACjD,UAAU,EAAE,MAAM,CAAC;IACnB,uCAAuC;IACvC,kBAAkB,EAAE,OAAO,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,sDAAsD;IACtD,SAAS,EAAE,OAAO,CAAC;IACnB,qDAAqD;IACrD,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,gCAAgC;IAChC,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,0DAA0D;IAC1D,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,wCAAwC;IACxC,aAAa,EAAE,KAAK,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACzD;AAsCD;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,IAAI,CAE3C;AA+CD;;;;;;;;;;GAUG;AACH,wBAAsB,uBAAuB,IAAI,OAAO,CAAC,gBAAgB,CAAC,CAsJzE;AAID;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAsB,kBAAkB,CACtC,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,YAAY,CAAC,CA0EvB;AAED;;;GAGG;AACH,wBAAsB,iBAAiB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAIxE;AAID;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,gBAAgB,GAAG,MAAM,CAmDvE"}