npm - domain-search-mcp - Versions diffs - 1.0.0 - Mend

domain-search-mcp 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (151) hide show

package/.env.example +52 -0
package/Dockerfile +15 -0
package/LICENSE +21 -0
package/README.md +426 -0
package/SECURITY.md +252 -0
package/dist/config.d.ts +25 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +117 -0
package/dist/config.js.map +1 -0
package/dist/fallbacks/index.d.ts +6 -0
package/dist/fallbacks/index.d.ts.map +1 -0
package/dist/fallbacks/index.js +14 -0
package/dist/fallbacks/index.js.map +1 -0
package/dist/fallbacks/rdap.d.ts +18 -0
package/dist/fallbacks/rdap.d.ts.map +1 -0
package/dist/fallbacks/rdap.js +339 -0
package/dist/fallbacks/rdap.js.map +1 -0
package/dist/fallbacks/whois.d.ts +27 -0
package/dist/fallbacks/whois.d.ts.map +1 -0
package/dist/fallbacks/whois.js +219 -0
package/dist/fallbacks/whois.js.map +1 -0
package/dist/registrars/base.d.ts +89 -0
package/dist/registrars/base.d.ts.map +1 -0
package/dist/registrars/base.js +203 -0
package/dist/registrars/base.js.map +1 -0
package/dist/registrars/index.d.ts +7 -0
package/dist/registrars/index.d.ts.map +1 -0
package/dist/registrars/index.js +15 -0
package/dist/registrars/index.js.map +1 -0
package/dist/registrars/namecheap.d.ts +69 -0
package/dist/registrars/namecheap.d.ts.map +1 -0
package/dist/registrars/namecheap.js +307 -0
package/dist/registrars/namecheap.js.map +1 -0
package/dist/registrars/porkbun.d.ts +63 -0
package/dist/registrars/porkbun.d.ts.map +1 -0
package/dist/registrars/porkbun.js +299 -0
package/dist/registrars/porkbun.js.map +1 -0
package/dist/server.d.ts +19 -0
package/dist/server.d.ts.map +1 -0
package/dist/server.js +209 -0
package/dist/server.js.map +1 -0
package/dist/services/domain-search.d.ts +40 -0
package/dist/services/domain-search.d.ts.map +1 -0
package/dist/services/domain-search.js +438 -0
package/dist/services/domain-search.js.map +1 -0
package/dist/services/index.d.ts +5 -0
package/dist/services/index.d.ts.map +1 -0
package/dist/services/index.js +11 -0
package/dist/services/index.js.map +1 -0
package/dist/tools/bulk_search.d.ts +72 -0
package/dist/tools/bulk_search.d.ts.map +1 -0
package/dist/tools/bulk_search.js +108 -0
package/dist/tools/bulk_search.js.map +1 -0
package/dist/tools/check_socials.d.ts +71 -0
package/dist/tools/check_socials.d.ts.map +1 -0
package/dist/tools/check_socials.js +357 -0
package/dist/tools/check_socials.js.map +1 -0
package/dist/tools/compare_registrars.d.ts +80 -0
package/dist/tools/compare_registrars.d.ts.map +1 -0
package/dist/tools/compare_registrars.js +116 -0
package/dist/tools/compare_registrars.js.map +1 -0
package/dist/tools/index.d.ts +10 -0
package/dist/tools/index.d.ts.map +1 -0
package/dist/tools/index.js +31 -0
package/dist/tools/index.js.map +1 -0
package/dist/tools/search_domain.d.ts +61 -0
package/dist/tools/search_domain.d.ts.map +1 -0
package/dist/tools/search_domain.js +81 -0
package/dist/tools/search_domain.js.map +1 -0
package/dist/tools/suggest_domains.d.ts +82 -0
package/dist/tools/suggest_domains.d.ts.map +1 -0
package/dist/tools/suggest_domains.js +227 -0
package/dist/tools/suggest_domains.js.map +1 -0
package/dist/tools/tld_info.d.ts +56 -0
package/dist/tools/tld_info.d.ts.map +1 -0
package/dist/tools/tld_info.js +273 -0
package/dist/tools/tld_info.js.map +1 -0
package/dist/types.d.ts +193 -0
package/dist/types.d.ts.map +1 -0
package/dist/types.js +9 -0
package/dist/types.js.map +1 -0
package/dist/utils/cache.d.ts +81 -0
package/dist/utils/cache.d.ts.map +1 -0
package/dist/utils/cache.js +192 -0
package/dist/utils/cache.js.map +1 -0
package/dist/utils/errors.d.ts +87 -0
package/dist/utils/errors.d.ts.map +1 -0
package/dist/utils/errors.js +191 -0
package/dist/utils/errors.js.map +1 -0
package/dist/utils/index.d.ts +8 -0
package/dist/utils/index.d.ts.map +1 -0
package/dist/utils/index.js +24 -0
package/dist/utils/index.js.map +1 -0
package/dist/utils/logger.d.ts +27 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +132 -0
package/dist/utils/logger.js.map +1 -0
package/dist/utils/premium-analyzer.d.ts +33 -0
package/dist/utils/premium-analyzer.d.ts.map +1 -0
package/dist/utils/premium-analyzer.js +273 -0
package/dist/utils/premium-analyzer.js.map +1 -0
package/dist/utils/validators.d.ts +53 -0
package/dist/utils/validators.d.ts.map +1 -0
package/dist/utils/validators.js +159 -0
package/dist/utils/validators.js.map +1 -0
package/docs/marketing/devto-post.md +135 -0
package/docs/marketing/hackernews.md +42 -0
package/docs/marketing/producthunt.md +109 -0
package/docs/marketing/reddit-post.md +59 -0
package/docs/marketing/twitter-thread.md +105 -0
package/examples/bulk-search-50-domains.ts +131 -0
package/examples/cli-interactive.ts +280 -0
package/examples/compare-registrars.ts +78 -0
package/examples/search-single-domain.ts +54 -0
package/examples/suggest-names.ts +110 -0
package/glama.json +6 -0
package/jest.config.js +35 -0
package/package.json +62 -0
package/smithery.yaml +36 -0
package/src/config.ts +121 -0
package/src/fallbacks/index.ts +6 -0
package/src/fallbacks/rdap.ts +407 -0
package/src/fallbacks/whois.ts +250 -0
package/src/registrars/base.ts +264 -0
package/src/registrars/index.ts +7 -0
package/src/registrars/namecheap.ts +378 -0
package/src/registrars/porkbun.ts +380 -0
package/src/server.ts +276 -0
package/src/services/domain-search.ts +567 -0
package/src/services/index.ts +9 -0
package/src/tools/bulk_search.ts +142 -0
package/src/tools/check_socials.ts +467 -0
package/src/tools/compare_registrars.ts +162 -0
package/src/tools/index.ts +45 -0
package/src/tools/search_domain.ts +93 -0
package/src/tools/suggest_domains.ts +284 -0
package/src/tools/tld_info.ts +294 -0
package/src/types.ts +289 -0
package/src/utils/cache.ts +238 -0
package/src/utils/errors.ts +262 -0
package/src/utils/index.ts +8 -0
package/src/utils/logger.ts +162 -0
package/src/utils/premium-analyzer.ts +303 -0
package/src/utils/validators.ts +193 -0
package/tests/premium-analyzer.test.ts +310 -0
package/tests/unit/cache.test.ts +123 -0
package/tests/unit/errors.test.ts +190 -0
package/tests/unit/tld-info.test.ts +62 -0
package/tests/unit/tools.test.ts +200 -0
package/tests/unit/validators.test.ts +146 -0
package/tsconfig.json +25 -0

package/src/registrars/namecheap.ts ADDED Viewed

@@ -0,0 +1,378 @@
+/**
+ * Namecheap Registrar Adapter.
+ *
+ * Namecheap uses an XML-based API.
+ * API Docs: https://www.namecheap.com/support/api/intro/
+ *
+ * Note: Namecheap requires IP whitelisting for API access.
+ */
+import axios, { type AxiosInstance, type AxiosError } from 'axios';
+import { z } from 'zod';
+import { RegistrarAdapter } from './base.js';
+import type { DomainResult, TLDInfo } from '../types.js';
+import { config } from '../config.js';
+import { logger } from '../utils/logger.js';
+import {
+  AuthenticationError,
+  RateLimitError,
+  RegistrarApiError,
+} from '../utils/errors.js';
+const NAMECHEAP_API_BASE = 'https://api.namecheap.com/xml.response';
+const NAMECHEAP_SANDBOX_BASE = 'https://api.sandbox.namecheap.com/xml.response';
+// ═══════════════════════════════════════════════════════════════════════════
+// Zod Schemas for Parsed XML Validation
+// SECURITY: Validate parsed XML data to ensure expected structure
+// ═══════════════════════════════════════════════════════════════════════════
+/**
+ * Schema for parsed domain check result.
+ */
+const NamecheapCheckResultSchema = z.object({
+  available: z.boolean(),
+  premium: z.boolean(),
+  price: z.number().optional(),
+  renewalPrice: z.number().optional(),
+});
+type NamecheapCheckResult = z.infer<typeof NamecheapCheckResultSchema>;
+// ═══════════════════════════════════════════════════════════════════════════
+// XML Parsing Utilities (Internal - hardcoded tags only)
+// ═══════════════════════════════════════════════════════════════════════════
+/**
+ * Allowed XML tags for parsing.
+ * SECURITY: Only these hardcoded tags can be parsed to prevent injection.
+ */
+const ALLOWED_XML_TAGS = new Set([
+  'Error',
+  'Errors',
+  'DomainCheckResult',
+] as const);
+const ALLOWED_XML_ATTRS = new Set([
+  'Count',
+  'Available',
+  'IsPremiumName',
+  'PremiumRegistrationPrice',
+  'PremiumRenewalPrice',
+] as const);
+/**
+ * Parse XML response to extract domain info.
+ * Simple regex-based parsing since we don't want xml2js dependency.
+ *
+ * SECURITY: Only parses allowed tags defined in ALLOWED_XML_TAGS.
+ */
+function parseXmlValue(xml: string, tag: string): string | undefined {
+  if (!ALLOWED_XML_TAGS.has(tag as typeof ALLOWED_XML_TAGS extends Set<infer T> ? T : never)) {
+    logger.warn('Attempted to parse disallowed XML tag', { tag });
+    return undefined;
+  }
+  // Escape special regex chars in tag name for safety
+  const escapedTag = tag.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+  // Reason: tag parameter is validated against ALLOWED_XML_TAGS whitelist above, not user input
+  const regex = new RegExp(`<${escapedTag}>([^<]*)</${escapedTag}>`, 'i'); // nosemgrep: detect-non-literal-regexp
+  const match = xml.match(regex);
+  return match?.[1];
+}
+function parseXmlAttribute(xml: string, tag: string, attr: string): string | undefined {
+  if (!ALLOWED_XML_TAGS.has(tag as typeof ALLOWED_XML_TAGS extends Set<infer T> ? T : never)) {
+    logger.warn('Attempted to parse disallowed XML tag', { tag });
+    return undefined;
+  }
+  if (!ALLOWED_XML_ATTRS.has(attr as typeof ALLOWED_XML_ATTRS extends Set<infer T> ? T : never)) {
+    logger.warn('Attempted to parse disallowed XML attribute', { attr });
+    return undefined;
+  }
+  // Escape special regex chars for safety
+  const escapedTag = tag.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+  const escapedAttr = attr.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+  // Reason: tag/attr parameters are validated against ALLOWED_XML_TAGS/ATTRS whitelists above, not user input
+  const regex = new RegExp(`<${escapedTag}[^>]*${escapedAttr}="([^"]*)"`, 'i'); // nosemgrep: detect-non-literal-regexp
+  const match = xml.match(regex);
+  return match?.[1];
+}
+function parseXmlBool(value: string | undefined): boolean {
+  return value?.toLowerCase() === 'true';
+}
+/**
+ * Namecheap adapter implementation.
+ */
+export class NamecheapAdapter extends RegistrarAdapter {
+  readonly name = 'Namecheap';
+  readonly id = 'namecheap';
+  private readonly client: AxiosInstance;
+  private readonly apiKey?: string;
+  private readonly apiUser?: string;
+  private readonly useSandbox: boolean;
+  constructor() {
+    // Namecheap has stricter rate limits, ~20/min is safe
+    super(20);
+    this.apiKey = config.namecheap.apiKey;
+    this.apiUser = config.namecheap.apiUser;
+    this.useSandbox = false; // Set to true for testing
+    const baseURL = this.useSandbox ? NAMECHEAP_SANDBOX_BASE : NAMECHEAP_API_BASE;
+    this.client = axios.create({
+      baseURL,
+      timeout: this.timeoutMs,
+    });
+  }
+  /**
+   * Check if Namecheap API is enabled.
+   */
+  isEnabled(): boolean {
+    return config.namecheap.enabled;
+  }
+  /**
+   * Search for domain availability.
+   */
+  async search(domain: string, tld: string): Promise<DomainResult> {
+    if (!this.isEnabled()) {
+      throw new AuthenticationError(
+        'namecheap',
+        'API credentials not configured',
+      );
+    }
+    const fullDomain = `${domain}.${tld}`;
+    logger.debug('Namecheap search', { domain: fullDomain });
+    try {
+      const result = await this.retryWithBackoff(async () => {
+        const response = await this.client.get('', {
+          params: {
+            ApiUser: this.apiUser,
+            ApiKey: this.apiKey,
+            UserName: this.apiUser,
+            ClientIp: this.getClientIp(),
+            Command: 'namecheap.domains.check',
+            DomainList: fullDomain,
+          },
+        });
+        return this.parseCheckResponse(response.data, fullDomain);
+      }, `check ${fullDomain}`);
+      return this.createResult(domain, tld, {
+        available: result.available,
+        premium: result.premium,
+        price_first_year: result.price,
+        price_renewal: result.renewalPrice,
+        privacy_included: false, // Namecheap charges for privacy
+        source: 'namecheap_api',
+        premium_reason: result.premium ? 'Premium domain' : undefined,
+      });
+    } catch (error) {
+      this.handleApiError(error, fullDomain);
+      throw error;
+    }
+  }
+  /**
+   * Parse the check response XML.
+   * SECURITY: Validates parsed result with Zod schema.
+   */
+  private parseCheckResponse(
+    xml: string,
+    domain: string,
+  ): NamecheapCheckResult {
+    // Check for API errors
+    const errorCount = parseXmlAttribute(xml, 'Errors', 'Count');
+    if (errorCount && parseInt(errorCount, 10) > 0) {
+      const errorMsg = parseXmlValue(xml, 'Error') || 'Unknown API error';
+      if (errorMsg.includes('IP not whitelisted')) {
+        throw new AuthenticationError('namecheap', 'IP not whitelisted. Add your IP in Namecheap dashboard.');
+      }
+      throw new RegistrarApiError(this.name, errorMsg);
+    }
+    // Parse domain result
+    const available = parseXmlAttribute(xml, 'DomainCheckResult', 'Available');
+    const isPremium = parseXmlAttribute(xml, 'DomainCheckResult', 'IsPremiumName');
+    const premiumPrice = parseXmlAttribute(xml, 'DomainCheckResult', 'PremiumRegistrationPrice');
+    const premiumRenewal = parseXmlAttribute(xml, 'DomainCheckResult', 'PremiumRenewalPrice');
+    const rawResult = {
+      available: parseXmlBool(available),
+      premium: parseXmlBool(isPremium),
+      price: premiumPrice ? parseFloat(premiumPrice) : undefined,
+      renewalPrice: premiumRenewal ? parseFloat(premiumRenewal) : undefined,
+    };
+    // Validate parsed result with Zod
+    const parseResult = NamecheapCheckResultSchema.safeParse(rawResult);
+    if (!parseResult.success) {
+      logger.warn('Namecheap API response validation failed', {
+        domain,
+        errors: parseResult.error.errors,
+      });
+      throw new RegistrarApiError(
+        this.name,
+        'Invalid API response format',
+      );
+    }
+    return parseResult.data;
+  }
+  /**
+   * Get TLD information.
+   */
+  async getTldInfo(tld: string): Promise<TLDInfo | null> {
+    // Namecheap doesn't have a great TLD info endpoint
+    // Return basic info based on known data
+    return {
+      tld,
+      description: `${tld.toUpperCase()} domain`,
+      typical_use: this.getTldUseCase(tld),
+      price_range: {
+        min: 8.88,
+        max: 15.98,
+        currency: 'USD',
+      },
+      renewal_price_typical: 12.98,
+      restrictions: [],
+      popularity: this.getTldPopularity(tld),
+      category: this.getTldCategory(tld),
+    };
+  }
+  /**
+   * Get client IP for API requests.
+   * Namecheap requires this for all API calls.
+   *
+   * SECURITY: We no longer call external services (ipify.org) to get IP.
+   * The IP must be configured via NAMECHEAP_CLIENT_IP environment variable.
+   * This prevents unintended IP disclosure to third parties.
+   */
+  private getClientIp(): string {
+    const clientIp = config.namecheap.clientIp;
+    if (!clientIp) {
+      throw new AuthenticationError(
+        'namecheap',
+        'NAMECHEAP_CLIENT_IP not configured. Add your whitelisted IP to .env file.',
+      );
+    }
+    // Basic IP format validation (IPv4 or IPv6)
+    const ipv4Pattern = /^(\d{1,3}\.){3}\d{1,3}$/;
+    const ipv6Pattern = /^([0-9a-fA-F]{1,4}:){7}[0-9a-fA-F]{1,4}$/;
+    if (!ipv4Pattern.test(clientIp) && !ipv6Pattern.test(clientIp)) {
+      throw new AuthenticationError(
+        'namecheap',
+        `Invalid NAMECHEAP_CLIENT_IP format: "${clientIp}". Must be a valid IPv4 or IPv6 address.`,
+      );
+    }
+    return clientIp;
+  }
+  /**
+   * Handle API errors with user-friendly messages.
+   */
+  private handleApiError(error: unknown, domain: string): never {
+    if (axios.isAxiosError(error)) {
+      const axiosError = error as AxiosError;
+      if (axiosError.response) {
+        const status = axiosError.response.status;
+        if (status === 401 || status === 403) {
+          throw new AuthenticationError('namecheap', 'Invalid API credentials');
+        }
+        if (status === 429) {
+          throw new RateLimitError('namecheap');
+        }
+        throw new RegistrarApiError(
+          this.name,
+          `HTTP ${status}: ${axiosError.message}`,
+          status,
+          error,
+        );
+      }
+      if (axiosError.code === 'ECONNABORTED') {
+        throw new RegistrarApiError(
+          this.name,
+          `Request timed out for ${domain}`,
+          undefined,
+          error,
+        );
+      }
+    }
+    throw new RegistrarApiError(
+      this.name,
+      error instanceof Error ? error.message : 'Unknown error',
+      undefined,
+      error instanceof Error ? error : undefined,
+    );
+  }
+  /**
+   * Get typical use case for a TLD.
+   */
+  private getTldUseCase(tld: string): string {
+    const useCases: Record<string, string> = {
+      com: 'General commercial websites',
+      io: 'Tech startups and SaaS products',
+      dev: 'Developer tools and portfolios',
+      app: 'Mobile and web applications',
+      co: 'Companies and startups',
+      net: 'Network services and utilities',
+      org: 'Non-profit organizations',
+    };
+    return useCases[tld] || 'General purpose';
+  }
+  /**
+   * Get TLD popularity rating.
+   */
+  private getTldPopularity(tld: string): 'high' | 'medium' | 'low' {
+    const highPopularity = ['com', 'net', 'org', 'io', 'co'];
+    const mediumPopularity = ['dev', 'app', 'ai', 'me'];
+    if (highPopularity.includes(tld)) return 'high';
+    if (mediumPopularity.includes(tld)) return 'medium';
+    return 'low';
+  }
+  /**
+   * Get TLD category.
+   */
+  private getTldCategory(tld: string): TLDInfo['category'] {
+    const countryTlds = ['uk', 'de', 'fr', 'jp', 'cn', 'au', 'ca', 'us'];
+    const sponsoredTlds = ['edu', 'gov', 'mil'];
+    const newTlds = ['io', 'dev', 'app', 'ai', 'xyz', 'tech', 'cloud'];
+    if (countryTlds.includes(tld)) return 'country';
+    if (sponsoredTlds.includes(tld)) return 'sponsored';
+    if (newTlds.includes(tld)) return 'new';
+    return 'generic';
+  }
+}
+/**
+ * Singleton instance.
+ */
+export const namecheapAdapter = new NamecheapAdapter();