npm - document360-engine - Versions diffs - 0.1.0 - Mend

document360-engine 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (53) hide show

package/LICENSE +21 -0
package/README.md +47 -0
package/dist/config.d.ts +73 -0
package/dist/config.js +62 -0
package/dist/config.js.map +1 -0
package/dist/d360/client.d.ts +30 -0
package/dist/d360/client.js +132 -0
package/dist/d360/client.js.map +1 -0
package/dist/d360/environments.d.ts +28 -0
package/dist/d360/environments.js +54 -0
package/dist/d360/environments.js.map +1 -0
package/dist/d360/oauth.d.ts +27 -0
package/dist/d360/oauth.js +162 -0
package/dist/d360/oauth.js.map +1 -0
package/dist/d360/profile.d.ts +18 -0
package/dist/d360/profile.js +31 -0
package/dist/d360/profile.js.map +1 -0
package/dist/d360/tokenStore.d.ts +17 -0
package/dist/d360/tokenStore.js +50 -0
package/dist/d360/tokenStore.js.map +1 -0
package/dist/d360/tools.d.ts +14 -0
package/dist/d360/tools.js +335 -0
package/dist/d360/tools.js.map +1 -0
package/dist/index.d.ts +11 -0
package/dist/index.js +16 -0
package/dist/index.js.map +1 -0
package/dist/lib/auth.d.ts +14 -0
package/dist/lib/auth.js +25 -0
package/dist/lib/auth.js.map +1 -0
package/dist/lib/messageQueue.d.ts +9 -0
package/dist/lib/messageQueue.js +40 -0
package/dist/lib/messageQueue.js.map +1 -0
package/dist/lib/paths.d.ts +9 -0
package/dist/lib/paths.js +35 -0
package/dist/lib/paths.js.map +1 -0
package/dist/lib/sessionStore.d.ts +24 -0
package/dist/lib/sessionStore.js +100 -0
package/dist/lib/sessionStore.js.map +1 -0
package/dist/lib/titleGen.d.ts +7 -0
package/dist/lib/titleGen.js +64 -0
package/dist/lib/titleGen.js.map +1 -0
package/dist/session.d.ts +47 -0
package/dist/session.js +190 -0
package/dist/session.js.map +1 -0
package/package.json +44 -0
package/skills/CLAUDE.md +92 -0
package/skills/analyze-codebase/SKILL.md +35 -0
package/skills/audit-docs/SKILL.md +48 -0
package/skills/emit-screenshot-spec/SKILL.md +82 -0
package/skills/gather-context-from-mcp/SKILL.md +29 -0
package/skills/propose-structure/SKILL.md +51 -0
package/skills/publish-to-d360/SKILL.md +49 -0
package/skills/write-article/SKILL.md +95 -0

package/dist/d360/oauth.js ADDED Viewed

@@ -0,0 +1,162 @@
+import { createHash, randomBytes } from 'node:crypto';
+import { createServer } from 'node:http';
+import { spawn } from 'node:child_process';
+const LOGIN_TIMEOUT_MS = 10 * 60 * 1000;
+function base64url(buf) {
+    return buf.toString('base64').replace(/\+/g, '-').replace(/\//g, '_').replace(/=+$/, '');
+}
+export function buildAuthorizationUrl(env) {
+    const verifier = base64url(randomBytes(32));
+    const challenge = base64url(createHash('sha256').update(verifier).digest());
+    const state = base64url(randomBytes(16));
+    const url = new URL(env.authorizationUrl);
+    url.searchParams.set('client_id', env.clientId);
+    url.searchParams.set('response_type', 'code');
+    url.searchParams.set('redirect_uri', env.redirectUri);
+    url.searchParams.set('scope', env.scopes.join(' '));
+    url.searchParams.set('state', state);
+    url.searchParams.set('code_challenge', challenge);
+    url.searchParams.set('code_challenge_method', 'S256');
+    if (env.acrValues)
+        url.searchParams.set('acr_values', env.acrValues);
+    if (env.prompt)
+        url.searchParams.set('prompt', env.prompt);
+    return { url: url.toString(), verifier, state };
+}
+function openBrowser(url) {
+    // D360_NO_BROWSER=1: print-only mode (SSH, CI, tests).
+    if (process.env.D360_NO_BROWSER)
+        return;
+    const platform = process.platform;
+    if (platform === 'win32') {
+        // DO NOT use `cmd /c start` — cmd treats '&' in the URL as a command
+        // separator and truncates the query string at the first '&' (dropping
+        // redirect_uri → "Invalid redirect_uri"). PowerShell Start-Process with a
+        // single-quoted URL passes the whole thing through verbatim.
+        const safe = url.replace(/'/g, "''");
+        spawn('powershell', ['-NoProfile', '-NonInteractive', '-Command', `Start-Process '${safe}'`], {
+            detached: true,
+            stdio: 'ignore',
+        }).unref();
+    }
+    else if (platform === 'darwin') {
+        spawn('open', [url], { detached: true, stdio: 'ignore' }).unref();
+    }
+    else {
+        spawn('xdg-open', [url], { detached: true, stdio: 'ignore' }).unref();
+    }
+}
+/** Wait for the OAuth redirect on the loopback address from redirectUri. */
+function waitForCallback(redirectUri, expectedState) {
+    const target = new URL(redirectUri);
+    let server;
+    const result = new Promise((resolve, reject) => {
+        const timer = setTimeout(() => {
+            reject(new Error(`Timed out after ${LOGIN_TIMEOUT_MS / 60000} minutes waiting for the browser login.`));
+            server.close();
+        }, LOGIN_TIMEOUT_MS);
+        server = createServer((req, res) => {
+            const reqUrl = new URL(req.url ?? '/', `http://${target.host}`);
+            if (reqUrl.pathname !== target.pathname) {
+                res.writeHead(404).end();
+                return;
+            }
+            const error = reqUrl.searchParams.get('error');
+            const code = reqUrl.searchParams.get('code');
+            const state = reqUrl.searchParams.get('state');
+            const fail = (msg) => {
+                res.writeHead(400, { 'content-type': 'text/html' });
+                res.end(`<html><body><h3>Login failed</h3><p>${msg}</p><p>Return to the terminal.</p></body></html>`);
+                clearTimeout(timer);
+                reject(new Error(msg));
+                server.close();
+            };
+            if (error)
+                return fail(`${error}: ${reqUrl.searchParams.get('error_description') ?? ''}`);
+            if (!code)
+                return fail('No authorization code in the callback.');
+            if (state !== expectedState)
+                return fail('State mismatch — possible CSRF; try again.');
+            res.writeHead(200, { 'content-type': 'text/html' });
+            res.end('<html><body><h3>✓ Document360 login complete</h3><p>You can close this tab and return to the terminal.</p></body></html>');
+            clearTimeout(timer);
+            resolve(code);
+            server.close();
+        });
+        server.on('error', err => {
+            clearTimeout(timer);
+            reject(new Error(`Could not listen on ${target.host} (${err.message}). ` +
+                `Another process may hold the port — set D360_REDIRECT_URI to a free port and retry.`));
+        });
+        server.listen(Number(target.port) || 80, target.hostname);
+    });
+    return { server: server, result };
+}
+async function requestTokens(env, body) {
+    const res = await fetch(env.tokenUrl, {
+        method: 'POST',
+        headers: { 'content-type': 'application/x-www-form-urlencoded' },
+        body,
+    });
+    const text = await res.text();
+    if (!res.ok) {
+        throw new Error(`Token endpoint ${res.status}: ${text.slice(0, 400)}`);
+    }
+    return JSON.parse(text);
+}
+export async function exchangeCode(env, code, verifier) {
+    return requestTokens(env, new URLSearchParams({
+        grant_type: 'authorization_code',
+        code,
+        redirect_uri: env.redirectUri,
+        client_id: env.clientId,
+        code_verifier: verifier,
+    }));
+}
+export async function refreshTokens(env, refreshToken) {
+    return requestTokens(env, new URLSearchParams({
+        grant_type: 'refresh_token',
+        refresh_token: refreshToken,
+        client_id: env.clientId,
+    }));
+}
+export function toStoredTokens(profile, t) {
+    const now = Date.now();
+    return {
+        profile,
+        accessToken: t.access_token,
+        refreshToken: t.refresh_token,
+        idToken: t.id_token,
+        scope: t.scope,
+        obtainedAt: new Date(now).toISOString(),
+        expiresAt: new Date(now + (t.expires_in ?? 3600) * 1000).toISOString(),
+    };
+}
+/**
+ * Interactive login. Default: loopback listener + browser. Manual mode: no
+ * listener — the user pastes the full redirect URL (works even when the
+ * registered redirect URI is not a loopback we can bind).
+ */
+export async function loginPkce(env, opts, log) {
+    const { url, verifier, state } = buildAuthorizationUrl(env);
+    if (opts.manual) {
+        log('Open this URL in a browser and sign in:');
+        log(url);
+        const pasted = await opts.promptForRedirect('Paste the full URL you were redirected to (it contains ?code=...):');
+        const redirected = new URL(pasted.trim());
+        const code = redirected.searchParams.get('code');
+        const gotState = redirected.searchParams.get('state');
+        if (!code)
+            throw new Error('No code parameter found in the pasted URL.');
+        if (gotState !== state)
+            throw new Error('State mismatch in the pasted URL — restart the login.');
+        return exchangeCode(env, code, verifier);
+    }
+    const { result } = waitForCallback(env.redirectUri, state);
+    log('Opening your browser for Document360 sign-in…');
+    log(`If it did not open, visit:\n  ${url}`);
+    openBrowser(url);
+    const code = await result;
+    return exchangeCode(env, code, verifier);
+}
+//# sourceMappingURL=oauth.js.map

package/dist/d360/oauth.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../src/d360/oauth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AACtD,OAAO,EAAE,YAAY,EAAe,MAAM,WAAW,CAAC;AACtD,OAAO,EAAE,KAAK,EAAE,MAAM,oBAAoB,CAAC;AAI3C,MAAM,gBAAgB,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;AAWxC,SAAS,SAAS,CAAC,GAAW;IAC5B,OAAO,GAAG,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AAC3F,CAAC;AAED,MAAM,UAAU,qBAAqB,CACnC,GAAoB;IAEpB,MAAM,QAAQ,GAAG,SAAS,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5C,MAAM,SAAS,GAAG,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;IAC5E,MAAM,KAAK,GAAG,SAAS,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,CAAC;IACzC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IAC1C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,GAAG,CAAC,QAAQ,CAAC,CAAC;IAChD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IAC9C,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,cAAc,EAAE,GAAG,CAAC,WAAW,CAAC,CAAC;IACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACpD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IACrC,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,gBAAgB,EAAE,SAAS,CAAC,CAAC;IAClD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,uBAAuB,EAAE,MAAM,CAAC,CAAC;IACtD,IAAI,GAAG,CAAC,SAAS;QAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,YAAY,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC;IACrE,IAAI,GAAG,CAAC,MAAM;QAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IAC3D,OAAO,EAAE,GAAG,EAAE,GAAG,CAAC,QAAQ,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;AAClD,CAAC;AAED,SAAS,WAAW,CAAC,GAAW;IAC9B,uDAAuD;IACvD,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe;QAAE,OAAO;IACxC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IAClC,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;QACzB,qEAAqE;QACrE,sEAAsE;QACtE,0EAA0E;QAC1E,6DAA6D;QAC7D,MAAM,IAAI,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QACrC,KAAK,CAAC,YAAY,EAAE,CAAC,YAAY,EAAE,iBAAiB,EAAE,UAAU,EAAE,kBAAkB,IAAI,GAAG,CAAC,EAAE;YAC5F,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,QAAQ;SAChB,CAAC,CAAC,KAAK,EAAE,CAAC;IACb,CAAC;SAAM,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,KAAK,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC;IACpE,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,UAAU,EAAE,CAAC,GAAG,CAAC,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC;IACxE,CAAC;AACH,CAAC;AAED,4EAA4E;AAC5E,SAAS,eAAe,CAAC,WAAmB,EAAE,aAAqB;IACjE,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,WAAW,CAAC,CAAC;IACpC,IAAI,MAAc,CAAC;IACnB,MAAM,MAAM,GAAG,IAAI,OAAO,CAAS,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrD,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;YAC5B,MAAM,CAAC,IAAI,KAAK,CAAC,mBAAmB,gBAAgB,GAAG,KAAK,yCAAyC,CAAC,CAAC,CAAC;YACxG,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,CAAC,EAAE,gBAAgB,CAAC,CAAC;QAErB,MAAM,GAAG,YAAY,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;YACjC,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,GAAG,EAAE,UAAU,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;YAChE,IAAI,MAAM,CAAC,QAAQ,KAAK,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACxC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;gBACzB,OAAO;YACT,CAAC;YACD,MAAM,KAAK,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC/C,MAAM,IAAI,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAC7C,MAAM,KAAK,GAAG,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC/C,MAAM,IAAI,GAAG,CAAC,GAAW,EAAE,EAAE;gBAC3B,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;gBACpD,GAAG,CAAC,GAAG,CAAC,uCAAuC,GAAG,kDAAkD,CAAC,CAAC;gBACtG,YAAY,CAAC,KAAK,CAAC,CAAC;gBACpB,MAAM,CAAC,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;gBACvB,MAAM,CAAC,KAAK,EAAE,CAAC;YACjB,CAAC,CAAC;YACF,IAAI,KAAK;gBAAE,OAAO,IAAI,CAAC,GAAG,KAAK,KAAK,MAAM,CAAC,YAAY,CAAC,GAAG,CAAC,mBAAmB,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAC1F,IAAI,CAAC,IAAI;gBAAE,OAAO,IAAI,CAAC,wCAAwC,CAAC,CAAC;YACjE,IAAI,KAAK,KAAK,aAAa;gBAAE,OAAO,IAAI,CAAC,4CAA4C,CAAC,CAAC;YACvF,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,WAAW,EAAE,CAAC,CAAC;YACpD,GAAG,CAAC,GAAG,CAAC,0HAA0H,CAAC,CAAC;YACpI,YAAY,CAAC,KAAK,CAAC,CAAC;YACpB,OAAO,CAAC,IAAI,CAAC,CAAC;YACd,MAAM,CAAC,KAAK,EAAE,CAAC;QACjB,CAAC,CAAC,CAAC;QACH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,CAAC,EAAE;YACvB,YAAY,CAAC,KAAK,CAAC,CAAC;YACpB,MAAM,CACJ,IAAI,KAAK,CACP,uBAAuB,MAAM,CAAC,IAAI,KAAM,GAAa,CAAC,OAAO,KAAK;gBAChE,qFAAqF,CACxF,CACF,CAAC;QACJ,CAAC,CAAC,CAAC;QACH,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC5D,CAAC,CAAC,CAAC;IACH,OAAO,EAAE,MAAM,EAAE,MAAO,EAAE,MAAM,EAAE,CAAC;AACrC,CAAC;AAED,KAAK,UAAU,aAAa,CAAC,GAAoB,EAAE,IAAqB;IACtE,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,QAAQ,EAAE;QACpC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,EAAE,cAAc,EAAE,mCAAmC,EAAE;QAChE,IAAI;KACL,CAAC,CAAC;IACH,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC9B,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,kBAAkB,GAAG,CAAC,MAAM,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;IACzE,CAAC;IACD,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAkB,CAAC;AAC3C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,YAAY,CAAC,GAAoB,EAAE,IAAY,EAAE,QAAgB;IACrF,OAAO,aAAa,CAClB,GAAG,EACH,IAAI,eAAe,CAAC;QAClB,UAAU,EAAE,oBAAoB;QAChC,IAAI;QACJ,YAAY,EAAE,GAAG,CAAC,WAAW;QAC7B,SAAS,EAAE,GAAG,CAAC,QAAQ;QACvB,aAAa,EAAE,QAAQ;KACxB,CAAC,CACH,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,GAAoB,EAAE,YAAoB;IAC5E,OAAO,aAAa,CAClB,GAAG,EACH,IAAI,eAAe,CAAC;QAClB,UAAU,EAAE,eAAe;QAC3B,aAAa,EAAE,YAAY;QAC3B,SAAS,EAAE,GAAG,CAAC,QAAQ;KACxB,CAAC,CACH,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,OAAe,EAAE,CAAgB;IAC9D,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,OAAO;QACL,OAAO;QACP,WAAW,EAAE,CAAC,CAAC,YAAY;QAC3B,YAAY,EAAE,CAAC,CAAC,aAAa;QAC7B,OAAO,EAAE,CAAC,CAAC,QAAQ;QACnB,KAAK,EAAE,CAAC,CAAC,KAAK;QACd,UAAU,EAAE,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE;QACvC,SAAS,EAAE,IAAI,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,UAAU,IAAI,IAAI,CAAC,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE;KACvE,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,GAAoB,EACpB,IAA+E,EAC/E,GAA2B;IAE3B,MAAM,EAAE,GAAG,EAAE,QAAQ,EAAE,KAAK,EAAE,GAAG,qBAAqB,CAAC,GAAG,CAAC,CAAC;IAE5D,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;QAChB,GAAG,CAAC,yCAAyC,CAAC,CAAC;QAC/C,GAAG,CAAC,GAAG,CAAC,CAAC;QACT,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,oEAAoE,CAAC,CAAC;QAClH,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;QAC1C,MAAM,IAAI,GAAG,UAAU,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACjD,MAAM,QAAQ,GAAG,UAAU,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI;YAAE,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;QACzE,IAAI,QAAQ,KAAK,KAAK;YAAE,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;QACjG,OAAO,YAAY,CAAC,GAAG,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC;IAC3C,CAAC;IAED,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CAAC,GAAG,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC;IAC3D,GAAG,CAAC,+CAA+C,CAAC,CAAC;IACrD,GAAG,CAAC,iCAAiC,GAAG,EAAE,CAAC,CAAC;IAC5C,WAAW,CAAC,GAAG,CAAC,CAAC;IACjB,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC;IAC1B,OAAO,YAAY,CAAC,GAAG,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC;AAC3C,CAAC"}

package/dist/d360/profile.d.ts ADDED Viewed

@@ -0,0 +1,18 @@
+import { type ProfileProject } from '../config.js';
+import { type D360Environment } from './environments.js';
+export type ActiveProfile = {
+    /** Profile name — the auth token store key and what the user sees/switches. */
+    name: string;
+    connection: D360Environment;
+    project: ProfileProject;
+    production: boolean;
+};
+/**
+ * Resolve the active profile:
+ * - no `.d360-writer.json` at all  → a bare berlin default (lets you `login` before `init`);
+ * - config WITH `profiles`         → resolve by name → defaultProfile;
+ * - config WITHOUT `profiles`      → ProfileConfigError (old shape; forces migration).
+ */
+export declare function resolveActiveProfile(cwd: string, nameOverride?: string): ActiveProfile;
+/** Persist a project id into a profile's `project` aspect (used by login auto-fill). */
+export declare function setProfileProject(cwd: string, profileName: string, project: ProfileProject): void;

package/dist/d360/profile.js ADDED Viewed

@@ -0,0 +1,31 @@
+import { readProjectConfig, resolveProfile, writeProjectConfig } from '../config.js';
+import { resolveConnection } from './environments.js';
+/**
+ * Resolve the active profile:
+ * - no `.d360-writer.json` at all  → a bare berlin default (lets you `login` before `init`);
+ * - config WITH `profiles`         → resolve by name → defaultProfile;
+ * - config WITHOUT `profiles`      → ProfileConfigError (old shape; forces migration).
+ */
+export function resolveActiveProfile(cwd, nameOverride) {
+    const cfg = readProjectConfig(cwd);
+    if (cfg === null) {
+        const name = nameOverride ?? 'berlin';
+        return { name, connection: resolveConnection({ environment: name }), project: {}, production: false };
+    }
+    const { name, profile } = resolveProfile(cfg, nameOverride);
+    return {
+        name,
+        connection: resolveConnection(profile.connection),
+        project: profile.project ?? {},
+        production: profile.production === true,
+    };
+}
+/** Persist a project id into a profile's `project` aspect (used by login auto-fill). */
+export function setProfileProject(cwd, profileName, project) {
+    const cfg = readProjectConfig(cwd);
+    if (!cfg?.profiles?.[profileName])
+        return;
+    cfg.profiles[profileName].project = { ...cfg.profiles[profileName].project, ...project };
+    writeProjectConfig(cfg, cwd);
+}
+//# sourceMappingURL=profile.js.map

package/dist/d360/profile.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"profile.js","sourceRoot":"","sources":["../../src/d360/profile.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,cAAc,EAAE,kBAAkB,EAA2C,MAAM,cAAc,CAAC;AAC9H,OAAO,EAAE,iBAAiB,EAAwB,MAAM,mBAAmB,CAAC;AAU5E;;;;;GAKG;AACH,MAAM,UAAU,oBAAoB,CAAC,GAAW,EAAE,YAAqB;IACrE,MAAM,GAAG,GAAG,iBAAiB,CAAC,GAAG,CAAC,CAAC;IACnC,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;QACjB,MAAM,IAAI,GAAG,YAAY,IAAI,QAAQ,CAAC;QACtC,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,iBAAiB,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC;IACxG,CAAC;IACD,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,cAAc,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC;IAC5D,OAAO;QACL,IAAI;QACJ,UAAU,EAAE,iBAAiB,CAAC,OAAO,CAAC,UAAU,CAAC;QACjD,OAAO,EAAE,OAAO,CAAC,OAAO,IAAI,EAAE;QAC9B,UAAU,EAAE,OAAO,CAAC,UAAU,KAAK,IAAI;KACxC,CAAC;AACJ,CAAC;AAED,wFAAwF;AACxF,MAAM,UAAU,iBAAiB,CAAC,GAAW,EAAE,WAAmB,EAAE,OAAuB;IACzF,MAAM,GAAG,GAAG,iBAAiB,CAAC,GAAG,CAAyB,CAAC;IAC3D,IAAI,CAAC,GAAG,EAAE,QAAQ,EAAE,CAAC,WAAW,CAAC;QAAE,OAAO;IAC1C,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,OAAO,GAAG,EAAE,GAAG,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,OAAO,EAAE,GAAG,OAAO,EAAE,CAAC;IACzF,kBAAkB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;AAC/B,CAAC"}

package/dist/d360/tokenStore.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+export type StoredTokens = {
+    /** Profile name this session belongs to (the auth store key). */
+    profile: string;
+    accessToken: string;
+    refreshToken?: string;
+    idToken?: string;
+    scope?: string;
+    obtainedAt: string;
+    /** ISO timestamp computed from expires_in at save time. */
+    expiresAt: string;
+};
+export declare function saveTokens(tokens: StoredTokens): void;
+export declare function loadTokens(profile: string): StoredTokens | null;
+export declare function clearTokens(profile: string): boolean;
+export declare function isExpired(tokens: StoredTokens, skewSeconds?: number): boolean;
+/** Decode a JWT's payload without verification (for display/claims discovery only). */
+export declare function decodeJwtClaims(token: string | undefined): Record<string, unknown> | null;

package/dist/d360/tokenStore.js ADDED Viewed

@@ -0,0 +1,50 @@
+import { existsSync, readFileSync, unlinkSync, writeFileSync } from 'node:fs';
+import { join } from 'node:path';
+import { userDir, ensureDir } from '../lib/paths.js';
+function authDir() {
+    return join(userDir(), 'auth');
+}
+function tokenPath(profile) {
+    return join(authDir(), `${profile}.json`);
+}
+export function saveTokens(tokens) {
+    ensureDir(authDir());
+    writeFileSync(tokenPath(tokens.profile), JSON.stringify(tokens, null, 2));
+}
+export function loadTokens(profile) {
+    const path = tokenPath(profile);
+    if (!existsSync(path))
+        return null;
+    try {
+        return JSON.parse(readFileSync(path, 'utf8'));
+    }
+    catch {
+        return null;
+    }
+}
+export function clearTokens(profile) {
+    const path = tokenPath(profile);
+    if (!existsSync(path))
+        return false;
+    unlinkSync(path);
+    return true;
+}
+export function isExpired(tokens, skewSeconds = 60) {
+    return Date.now() >= new Date(tokens.expiresAt).getTime() - skewSeconds * 1000;
+}
+/** Decode a JWT's payload without verification (for display/claims discovery only). */
+export function decodeJwtClaims(token) {
+    if (!token)
+        return null;
+    const parts = token.split('.');
+    if (parts.length !== 3)
+        return null; // opaque token
+    try {
+        const payload = Buffer.from(parts[1].replace(/-/g, '+').replace(/_/g, '/'), 'base64').toString('utf8');
+        return JSON.parse(payload);
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=tokenStore.js.map

package/dist/d360/tokenStore.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"tokenStore.js","sourceRoot":"","sources":["../../src/d360/tokenStore.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,UAAU,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC9E,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAcrD,SAAS,OAAO;IACd,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,MAAM,CAAC,CAAC;AACjC,CAAC;AAED,SAAS,SAAS,CAAC,OAAe;IAChC,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,GAAG,OAAO,OAAO,CAAC,CAAC;AAC5C,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,MAAoB;IAC7C,SAAS,CAAC,OAAO,EAAE,CAAC,CAAC;IACrB,aAAa,CAAC,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;AAC5E,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,OAAe;IACxC,MAAM,IAAI,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC;IAChC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IACnC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAiB,CAAC;IAChE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,OAAe;IACzC,MAAM,IAAI,GAAG,SAAS,CAAC,OAAO,CAAC,CAAC;IAChC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,KAAK,CAAC;IACpC,UAAU,CAAC,IAAI,CAAC,CAAC;IACjB,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,MAAoB,EAAE,WAAW,GAAG,EAAE;IAC9D,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,GAAG,WAAW,GAAG,IAAI,CAAC;AACjF,CAAC;AAED,uFAAuF;AACvF,MAAM,UAAU,eAAe,CAAC,KAAyB;IACvD,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IACxB,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC/B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC,CAAC,eAAe;IACpD,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAE,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QACxG,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAA4B,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/d360/tools.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+import type { McpServerConfig } from '@anthropic-ai/claude-agent-sdk';
+import { D360AuthError } from './client.js';
+import type { ActiveProfile } from './profile.js';
+export type ToolServerOptions = {
+    /** False on a production profile until the user authorizes writes (/allow-prod or --yes). */
+    writesAllowed: boolean;
+};
+/**
+ * Build the in-process Document360 tool server for the active profile. Project resolves
+ * per-call: explicit arg → profile.project.projectId → the logged-in token's doc360_project_id claim.
+ * Write tools are gated by opts.writesAllowed (production safety).
+ */
+export declare function buildD360ToolServer(active: ActiveProfile, opts: ToolServerOptions): McpServerConfig;
+export { D360AuthError };

package/dist/d360/tools.js ADDED Viewed

@@ -0,0 +1,335 @@
+import { readFileSync } from 'node:fs';
+import { basename, isAbsolute, resolve } from 'node:path';
+import { createSdkMcpServer, tool } from '@anthropic-ai/claude-agent-sdk';
+import { z } from 'zod';
+import { d360Get, d360GetAll, d360Patch, d360Post, d360Upload, resolveProjectId, D360AuthError } from './client.js';
+const PROJECTS = '/v3/projects';
+const p = (projectId) => `${PROJECTS}/${projectId}`;
+function ok(data) {
+    return { content: [{ type: 'text', text: JSON.stringify(data, null, 2) }] };
+}
+function fail(err) {
+    const msg = err instanceof Error ? err.message : String(err);
+    return { content: [{ type: 'text', text: msg }], isError: true };
+}
+/**
+ * Build the in-process Document360 tool server for the active profile. Project resolves
+ * per-call: explicit arg → profile.project.projectId → the logged-in token's doc360_project_id claim.
+ * Write tools are gated by opts.writesAllowed (production safety).
+ */
+export function buildD360ToolServer(active, opts) {
+    const ctx = { profile: active.name, connection: active.connection };
+    const configProjectId = active.project.projectId;
+    const defaultWorkspaceId = active.project.workspaceId;
+    const project = () => resolveProjectId(ctx, configProjectId);
+    const workspace = (given) => {
+        const w = given ?? defaultWorkspaceId;
+        if (!w)
+            throw new Error('No workspace_id given and none in the profile. Call d360_list_workspaces first.');
+        return w;
+    };
+    /** Returns a fail() result if writes are blocked on a production profile, else null. */
+    const writeBlocked = () => opts.writesAllowed
+        ? null
+        : fail(`Refusing to write to PRODUCTION profile "${active.name}". Authorize this session first: ` +
+            `run /allow-prod in the REPL, or pass --yes in one-shot/CI.`);
+    const context = tool('d360_context', 'Report the active Document360 connection: profile name, environment, project/workspace id, and whether it is a production profile. Call this before maintaining d360-category-map.json so you scope IDs to the right profile.', {}, async () => {
+        try {
+            return ok({
+                profile: active.name,
+                environment: active.connection.name,
+                production: active.production,
+                projectId: configProjectId ?? resolveProjectId(ctx),
+                workspaceId: defaultWorkspaceId ?? null,
+            });
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const listProjects = tool('d360_list_projects', 'List all Document360 projects the signed-in user can access (id, name, sub-domain, status).', {}, async () => {
+        try {
+            return ok(await d360GetAll(ctx, PROJECTS));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const listWorkspaces = tool('d360_list_workspaces', 'List workspaces (project versions) for the current project. Each has id, name, slug, is_default, workspace_type.', { project_id: z.string().optional().describe('Defaults to the logged-in/config project.') }, async (args) => {
+        try {
+            return ok(await d360GetAll(ctx, `${p(args.project_id ?? project())}/workspaces`));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const listCategories = tool('d360_list_categories', 'List categories in a workspace (the folder structure for articles).', {
+        workspace_id: z.string().optional().describe('Defaults to d360.workspaceId in config.'),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        try {
+            const workspaceId = args.workspace_id ?? defaultWorkspaceId;
+            if (!workspaceId)
+                return fail('No workspace_id given and none in config. Call d360_list_workspaces first.');
+            return ok(await d360GetAll(ctx, `${p(args.project_id ?? project())}/workspaces/${workspaceId}/categories`));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const listArticles = tool('d360_list_articles', 'List articles in a workspace (id, title, status, category). Use to see existing docs before writing.', {
+        workspace_id: z.string().optional().describe('Defaults to d360.workspaceId in config.'),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        try {
+            const workspaceId = args.workspace_id ?? defaultWorkspaceId;
+            if (!workspaceId)
+                return fail('No workspace_id given and none in config. Call d360_list_workspaces first.');
+            return ok(await d360GetAll(ctx, `${p(args.project_id ?? project())}/workspaces/${workspaceId}/articles`));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const getArticle = tool('d360_get_article', 'Get a single article including its content. content_mode=raw returns the stored markdown source (best for editing); display returns processed content.', {
+        article_id: z.string(),
+        content_mode: z.enum(['raw', 'display']).optional().describe('raw = stored markdown source (default), display = processed.'),
+        published: z.boolean().optional().describe('Read the published version instead of the latest draft.'),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        try {
+            return ok(await d360Get(ctx, `${p(args.project_id ?? project())}/articles/${args.article_id}`, {
+                query: { content_mode: args.content_mode, published: args.published },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const aiQuery = tool('d360_ai_query', "Ask Document360's AI search over a workspace's published content. Returns an answer grounded in existing articles — use to check what's already documented.", {
+        query: z.string(),
+        workspace_id: z.string().optional().describe('Defaults to d360.workspaceId in config.'),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        try {
+            const workspaceId = args.workspace_id ?? defaultWorkspaceId;
+            if (!workspaceId)
+                return fail('No workspace_id given and none in config. Call d360_list_workspaces first.');
+            return ok(await d360Post(ctx, `${p(args.project_id ?? project())}/workspaces/ai/query`, {
+                body: { query: args.query, workspace_id: workspaceId },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    // ---- write tools (gated by writesAllowed) ----
+    const createCategory = tool('d360_create_category', 'Create a category (a docs folder). Returns the new category id.', {
+        name: z.string(),
+        workspace_id: z.string().optional(),
+        parent_category_id: z.string().optional().describe('Omit for a top-level category.'),
+        content: z.string().optional(),
+        slug: z.string().optional(),
+        order: z.number().optional(),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            return ok(await d360Post(ctx, `${p(args.project_id ?? project())}/categories`, {
+                body: {
+                    name: args.name,
+                    workspace_id: workspace(args.workspace_id),
+                    parent_category_id: args.parent_category_id,
+                    content: args.content,
+                    slug: args.slug,
+                    order: args.order,
+                    // Markdown-only by product decision (matches articles).
+                    content_type: 'markdown',
+                },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const createArticle = tool('d360_create_article', 'Create a DRAFT article in a category. The body is always Markdown (product rule — we never create WYSIWYG/Block articles). Returns the new article id. Does not publish.', {
+        title: z.string(),
+        category_id: z.string(),
+        content: z.string().optional().describe('Markdown body.'),
+        workspace_id: z.string().optional(),
+        slug: z.string().optional(),
+        order: z.number().optional(),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            // articles/bulk with a single item is the create path. content_type is
+            // hardcoded to 'markdown' by product decision — Document360 articles are
+            // markdown-only for control + simplicity (no WYSIWYG/Block).
+            return ok(await d360Post(ctx, `${p(args.project_id ?? project())}/articles/bulk`, {
+                body: {
+                    articles: [
+                        {
+                            title: args.title,
+                            category_id: args.category_id,
+                            workspace_id: workspace(args.workspace_id),
+                            content: args.content,
+                            slug: args.slug,
+                            order: args.order,
+                            content_type: 'markdown',
+                        },
+                    ],
+                },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const updateArticle = tool('d360_update_article', 'Update an article\'s title/content/category. Edits the latest draft by default; set auto_fork to safely edit a published article (creates a new draft version).', {
+        article_id: z.string(),
+        title: z.string().optional(),
+        content: z.string().optional().describe('Markdown body.'),
+        category_id: z.string().optional(),
+        hidden: z.boolean().optional(),
+        version_number: z.number().optional(),
+        auto_fork: z.boolean().optional().describe('If the target version is published, fork a new draft instead of erroring.'),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            const { article_id, project_id, ...body } = args;
+            return ok(await d360Patch(ctx, `${p(project_id ?? project())}/articles/${article_id}`, { body }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const forkArticle = tool('d360_fork_article', 'Fork a published article into a new draft version — the safe way to start editing live content.', { article_id: z.string(), project_id: z.string().optional() }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            return ok(await d360Post(ctx, `${p(args.project_id ?? project())}/articles/${args.article_id}/fork`));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const publishArticle = tool('d360_publish_article', 'Publish an article version. This makes the draft live to readers — only call when the user explicitly asks to publish.', {
+        article_id: z.string(),
+        version_number: z.number(),
+        workspace_id: z.string().optional(),
+        message: z.string().optional(),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            return ok(await d360Post(ctx, `${p(args.project_id ?? project())}/articles/${args.article_id}/publish`, {
+                body: { workspace_id: workspace(args.workspace_id), version_number: args.version_number, message: args.message },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const unpublishArticle = tool('d360_unpublish_article', 'Unpublish an article, reverting it to draft (removes it from readers).', {
+        article_id: z.string(),
+        version_number: z.number().optional(),
+        workspace_id: z.string().optional(),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            return ok(await d360Post(ctx, `${p(args.project_id ?? project())}/articles/${args.article_id}/unpublish`, {
+                body: { workspace_id: workspace(args.workspace_id), version_number: args.version_number },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const uploadDriveFile = tool('d360_upload_drive_file', 'Upload a local file (e.g. a captured screenshot PNG) to Drive and return its URL for embedding in an article. Uploads to the default folder unless folder_id is given.', {
+        file_path: z.string().describe('Local path to the file (absolute, or relative to the repo).'),
+        folder_id: z.string().optional(),
+        title: z.string().optional(),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        const blocked = writeBlocked();
+        if (blocked)
+            return blocked;
+        try {
+            const pid = args.project_id ?? project();
+            const filePath = isAbsolute(args.file_path) ? args.file_path : resolve(process.cwd(), args.file_path);
+            let folderId = args.folder_id;
+            if (!folderId) {
+                const def = await d360Get(ctx, `${p(pid)}/drive/folders/default`);
+                folderId = def?.id;
+                if (!folderId)
+                    return fail('Could not resolve the default Drive folder.');
+            }
+            const bytes = readFileSync(filePath);
+            const form = new FormData();
+            // NOTE: field name 'file' is unverified against staging (spec models the
+            // multipart body loosely) — confirm during the dogfood; adjust if rejected.
+            form.append('file', new Blob([bytes]), args.title ?? basename(filePath));
+            return ok(await d360Upload(ctx, `${p(pid)}/drive/folders/${folderId}/files`, form));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    const searchDrive = tool('d360_search_drive', 'Search Drive files (e.g. to reuse an already-uploaded screenshot instead of uploading a duplicate).', {
+        search_keyword: z.string().optional(),
+        allow_images_only: z.boolean().optional(),
+        project_id: z.string().optional(),
+    }, async (args) => {
+        try {
+            return ok(await d360GetAll(ctx, `${p(args.project_id ?? project())}/drive/search`, {
+                query: { search_keyword: args.search_keyword, allow_images_only: args.allow_images_only },
+            }));
+        }
+        catch (e) {
+            return fail(e);
+        }
+    });
+    return createSdkMcpServer({
+        name: 'document360',
+        version: '0.2.0',
+        instructions: 'First-party Document360 tools. The signed-in user\'s permissions apply server-side. ' +
+            'Project/workspace default from the active profile; pass ids explicitly to override. ' +
+            'Create articles as DRAFTS; only call d360_publish_article when the user explicitly asks to publish. ' +
+            'All articles are Markdown — the tools enforce this; never attempt WYSIWYG/Block content. ' +
+            'To edit a published article, fork it (d360_fork_article) or update with auto_fork. ' +
+            'Auth errors mean the session expired — tell the user to run: d360-writer login.',
+        tools: [
+            context,
+            listProjects,
+            listWorkspaces,
+            listCategories,
+            listArticles,
+            getArticle,
+            aiQuery,
+            createCategory,
+            createArticle,
+            updateArticle,
+            forkArticle,
+            publishArticle,
+            unpublishArticle,
+            uploadDriveFile,
+            searchDrive,
+        ],
+    });
+}
+export { D360AuthError };
+//# sourceMappingURL=tools.js.map