framework-mcp 2.4.4 → 2.4.5
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/core/safeguard-manager.d.ts.map +1 -1
- package/dist/core/safeguard-manager.js +21 -55
- package/dist/core/safeguard-manager.js.map +1 -1
- package/dist/interfaces/http/http-server.js +3 -3
- package/dist/interfaces/mcp/mcp-server.js +3 -3
- package/package.json +1 -1
- package/src/core/safeguard-manager.ts +16 -50
- package/src/interfaces/http/http-server.ts +3 -3
- package/src/interfaces/mcp/mcp-server.ts +3 -3
- package/swagger.json +2 -2
|
@@ -83,7 +83,7 @@ export class FrameworkHttpServer {
|
|
|
83
83
|
res.json({
|
|
84
84
|
status: 'healthy',
|
|
85
85
|
uptime: Math.round(process.uptime()),
|
|
86
|
-
version: '2.4.
|
|
86
|
+
version: '2.4.5',
|
|
87
87
|
timestamp: new Date().toISOString()
|
|
88
88
|
});
|
|
89
89
|
});
|
|
@@ -183,7 +183,7 @@ export class FrameworkHttpServer {
|
|
|
183
183
|
this.app.get('/api', (req, res) => {
|
|
184
184
|
res.json({
|
|
185
185
|
name: 'Framework MCP HTTP API',
|
|
186
|
-
version: '2.4.
|
|
186
|
+
version: '2.4.5',
|
|
187
187
|
description: 'Pure Data Provider serving authentic CIS Controls Framework data',
|
|
188
188
|
endpoints: {
|
|
189
189
|
'GET /api/safeguards': 'List all available CIS safeguards',
|
|
@@ -222,7 +222,7 @@ export class FrameworkHttpServer {
|
|
|
222
222
|
}
|
|
223
223
|
start() {
|
|
224
224
|
this.app.listen(this.port, '0.0.0.0', () => {
|
|
225
|
-
console.log(`🚀 Framework MCP HTTP Server v2.4.
|
|
225
|
+
console.log(`🚀 Framework MCP HTTP Server v2.4.5 running on port ${this.port}`);
|
|
226
226
|
console.log(`📊 Health check: http://localhost:${this.port}/health`);
|
|
227
227
|
console.log(`📖 API docs: http://localhost:${this.port}/api`);
|
|
228
228
|
console.log(`🔧 Environment: ${process.env.NODE_ENV || 'development'}`);
|
|
@@ -7,7 +7,7 @@ export class FrameworkMcpServer {
|
|
|
7
7
|
constructor() {
|
|
8
8
|
this.server = new Server({
|
|
9
9
|
name: 'framework-analyzer',
|
|
10
|
-
version: '2.4.
|
|
10
|
+
version: '2.4.5',
|
|
11
11
|
});
|
|
12
12
|
this.safeguardManager = new SafeguardManager();
|
|
13
13
|
this.setupHandlers();
|
|
@@ -103,7 +103,7 @@ export class FrameworkMcpServer {
|
|
|
103
103
|
safeguards,
|
|
104
104
|
total: safeguards.length,
|
|
105
105
|
framework: 'CIS Controls v8.1',
|
|
106
|
-
version: '2.4.
|
|
106
|
+
version: '2.4.5'
|
|
107
107
|
}, null, 2),
|
|
108
108
|
},
|
|
109
109
|
],
|
|
@@ -122,7 +122,7 @@ export class FrameworkMcpServer {
|
|
|
122
122
|
async run() {
|
|
123
123
|
const transport = new StdioServerTransport();
|
|
124
124
|
await this.server.connect(transport);
|
|
125
|
-
console.error('🤖 Framework MCP Server v2.4.
|
|
125
|
+
console.error('🤖 Framework MCP Server v2.4.5 running via stdio');
|
|
126
126
|
console.error('📊 Pure Data Provider for CIS Controls v8.1');
|
|
127
127
|
}
|
|
128
128
|
}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "framework-mcp",
|
|
3
|
-
"version": "2.4.
|
|
3
|
+
"version": "2.4.5",
|
|
4
4
|
"description": "Pure Data Provider architecture serving authentic CIS Controls Framework data via MCP and HTTP API. Empowers LLMs with authoritative safeguards data for analysis. Supports Microsoft Copilot custom connectors and cloud deployments.",
|
|
5
5
|
"main": "dist/interfaces/http/http-server.js",
|
|
6
6
|
"type": "module",
|
|
@@ -4149,33 +4149,23 @@ export class SafeguardManager {
|
|
|
4149
4149
|
assetType: ["Users"],
|
|
4150
4150
|
securityFunction: ["Identify"],
|
|
4151
4151
|
governanceElements: [ // Orange - MUST be met
|
|
4152
|
-
"Establish and maintain
|
|
4153
|
-
"
|
|
4154
|
-
"At a minimum, should contain the person's name, username, start/stop dates, and department",
|
|
4152
|
+
"Establish and maintain",
|
|
4153
|
+
"Must include",
|
|
4155
4154
|
"Validate that all active accounts are authorized, on a recurring schedule at a minimum quarterly, or more frequently"
|
|
4156
4155
|
],
|
|
4157
4156
|
coreRequirements: [ // Green - The "what"
|
|
4158
4157
|
"Inventory of Accounts"
|
|
4159
4158
|
],
|
|
4160
4159
|
subTaxonomicalElements: [ // Yellow - Sub-taxonomical elements
|
|
4161
|
-
"Establish",
|
|
4162
|
-
"Maintain",
|
|
4163
|
-
"Validate that all active accounts are authorized",
|
|
4164
|
-
"Recurring schedule",
|
|
4165
|
-
"Must Include",
|
|
4166
|
-
"At a minimum",
|
|
4167
|
-
"Minimum Quarterly",
|
|
4168
|
-
"More Frequently",
|
|
4169
4160
|
"User Accounts",
|
|
4170
4161
|
"Administrator Accounts",
|
|
4162
|
+
"Service Accounts",
|
|
4171
4163
|
"Name",
|
|
4172
4164
|
"Username",
|
|
4173
4165
|
"Start Stop Dates",
|
|
4174
4166
|
"Department"
|
|
4175
4167
|
],
|
|
4176
4168
|
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
4177
|
-
"Account and Access Control Management",
|
|
4178
|
-
"Identity and Access Management Tool"
|
|
4179
4169
|
],
|
|
4180
4170
|
relatedSafeguards: ["1.1", "2.1", "5.2", "5.3", "5.4", "5.5", "5.6", "6.1", "6.2", "6.7", "12.8"],
|
|
4181
4171
|
systemPromptFull: {
|
|
@@ -4266,22 +4256,16 @@ export class SafeguardManager {
|
|
|
4266
4256
|
assetType: ["Users"],
|
|
4267
4257
|
securityFunction: ["Protect"],
|
|
4268
4258
|
governanceElements: [ // Orange - MUST be met
|
|
4269
|
-
"Use
|
|
4270
|
-
"
|
|
4259
|
+
"Use",
|
|
4260
|
+
"At a minimum, an 8-character password for accounts using Multi-Factor Authentication (MFA) and a 14-character password for accounts not using MFA"
|
|
4271
4261
|
],
|
|
4272
4262
|
coreRequirements: [ // Green - The "what"
|
|
4273
4263
|
"Unique Passwords"
|
|
4274
4264
|
],
|
|
4275
4265
|
subTaxonomicalElements: [ // Yellow - Sub-taxonomical elements
|
|
4276
|
-
"
|
|
4277
|
-
"At a minimum",
|
|
4278
|
-
"All Enterprise Assets",
|
|
4279
|
-
"8-character password for accounts using MFA",
|
|
4280
|
-
"14-character password for accounts not using MFA"
|
|
4266
|
+
"All Enterprise Assets"
|
|
4281
4267
|
],
|
|
4282
4268
|
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
4283
|
-
"Account and Access Control Management",
|
|
4284
|
-
"Password Management Tool"
|
|
4285
4269
|
],
|
|
4286
4270
|
relatedSafeguards: ["5.1"],
|
|
4287
4271
|
systemPromptFull: {
|
|
@@ -4372,7 +4356,8 @@ export class SafeguardManager {
|
|
|
4372
4356
|
assetType: ["Users"],
|
|
4373
4357
|
securityFunction: ["Protect"],
|
|
4374
4358
|
governanceElements: [ // Orange - MUST be met
|
|
4375
|
-
"
|
|
4359
|
+
"after a period of 45 days of inactivity",
|
|
4360
|
+
"where supported"
|
|
4376
4361
|
],
|
|
4377
4362
|
coreRequirements: [ // Green - The "what"
|
|
4378
4363
|
"Dormant Accounts"
|
|
@@ -4384,8 +4369,6 @@ export class SafeguardManager {
|
|
|
4384
4369
|
"Where Supported"
|
|
4385
4370
|
],
|
|
4386
4371
|
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
4387
|
-
"Account and Access Control Management",
|
|
4388
|
-
"Identity and Access Management Tool"
|
|
4389
4372
|
],
|
|
4390
4373
|
relatedSafeguards: ["5.1"],
|
|
4391
4374
|
systemPromptFull: {
|
|
@@ -4476,22 +4459,18 @@ export class SafeguardManager {
|
|
|
4476
4459
|
assetType: ["Users"],
|
|
4477
4460
|
securityFunction: ["Protect"],
|
|
4478
4461
|
governanceElements: [ // Orange - MUST be met
|
|
4479
|
-
"Restrict
|
|
4480
|
-
"Conduct general computing activities, such as internet browsing, email, and productivity suite use, from the user's primary, non-privileged account"
|
|
4462
|
+
"Restrict"
|
|
4481
4463
|
],
|
|
4482
4464
|
coreRequirements: [ // Green - The "what"
|
|
4483
4465
|
"Administrator Privileges",
|
|
4484
4466
|
"Dedicated Admin Accounts"
|
|
4485
4467
|
],
|
|
4486
4468
|
subTaxonomicalElements: [ // Yellow - Sub-taxonomical elements
|
|
4487
|
-
"Restrict",
|
|
4488
4469
|
"Enterprise assets",
|
|
4489
4470
|
"User's primary, non-privileged account",
|
|
4490
4471
|
"General Computing Activities"
|
|
4491
4472
|
],
|
|
4492
4473
|
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
4493
|
-
"Account and Access Control Management",
|
|
4494
|
-
"Identity and Access Management Tool",
|
|
4495
4474
|
"Such as",
|
|
4496
4475
|
"Internet browsing",
|
|
4497
4476
|
"Email",
|
|
@@ -4586,29 +4565,20 @@ export class SafeguardManager {
|
|
|
4586
4565
|
assetType: ["Users"],
|
|
4587
4566
|
securityFunction: ["Identify"],
|
|
4588
4567
|
governanceElements: [ // Orange - MUST be met
|
|
4589
|
-
"Establish and maintain
|
|
4590
|
-
"
|
|
4591
|
-
"Perform service account reviews to validate that all active accounts are authorized,
|
|
4568
|
+
"Establish and maintain",
|
|
4569
|
+
"at a minimum, must contain",
|
|
4570
|
+
"Perform service account reviews to validate that all active accounts are authorized",
|
|
4571
|
+
"recurring schedule at a minimum quarterly, or more frequently"
|
|
4592
4572
|
],
|
|
4593
4573
|
coreRequirements: [ // Green - The "what"
|
|
4594
4574
|
"Inventory of Service Accounts"
|
|
4595
4575
|
],
|
|
4596
4576
|
subTaxonomicalElements: [ // Yellow - Sub-taxonomical elements
|
|
4597
|
-
"Establish",
|
|
4598
|
-
"Maintain",
|
|
4599
|
-
"At a Minimum Must Contain",
|
|
4600
|
-
"Perform service account reviews to validate that all active accounts are authorized",
|
|
4601
|
-
"On a recurring schedule",
|
|
4602
4577
|
"Department Owner",
|
|
4603
4578
|
"Review date",
|
|
4604
|
-
"Purpose"
|
|
4605
|
-
"At a minimum quarterly",
|
|
4606
|
-
"More frequently",
|
|
4607
|
-
"Or"
|
|
4579
|
+
"Purpose"
|
|
4608
4580
|
],
|
|
4609
4581
|
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
4610
|
-
"Account and Access Control Management",
|
|
4611
|
-
"Identity and Access Management Tool"
|
|
4612
4582
|
],
|
|
4613
4583
|
relatedSafeguards: ["5.1"],
|
|
4614
4584
|
systemPromptFull: {
|
|
@@ -4699,20 +4669,16 @@ export class SafeguardManager {
|
|
|
4699
4669
|
assetType: ["Users"],
|
|
4700
4670
|
securityFunction: ["Govern"],
|
|
4701
4671
|
governanceElements: [ // Orange - MUST be met
|
|
4702
|
-
"Centralize
|
|
4672
|
+
"Centralize"
|
|
4703
4673
|
],
|
|
4704
4674
|
coreRequirements: [ // Green - The "what"
|
|
4705
4675
|
"Account Management"
|
|
4706
4676
|
],
|
|
4707
4677
|
subTaxonomicalElements: [ // Yellow - Sub-taxonomical elements
|
|
4708
|
-
"Centralize",
|
|
4709
4678
|
"Directory Service",
|
|
4710
|
-
"Identity Service"
|
|
4711
|
-
"Or"
|
|
4679
|
+
"Identity Service"
|
|
4712
4680
|
],
|
|
4713
4681
|
implementationSuggestions: [ // Gray - Implementation suggestions
|
|
4714
|
-
"Account and Access Control Management",
|
|
4715
|
-
"Identity and Access Management Tool"
|
|
4716
4682
|
],
|
|
4717
4683
|
relatedSafeguards: ["5.1", "6.6", "6.7", "12.5"],
|
|
4718
4684
|
systemPromptFull: {
|
|
@@ -106,7 +106,7 @@ export class FrameworkHttpServer {
|
|
|
106
106
|
res.json({
|
|
107
107
|
status: 'healthy',
|
|
108
108
|
uptime: Math.round(process.uptime()),
|
|
109
|
-
version: '2.4.
|
|
109
|
+
version: '2.4.5',
|
|
110
110
|
timestamp: new Date().toISOString()
|
|
111
111
|
});
|
|
112
112
|
});
|
|
@@ -222,7 +222,7 @@ export class FrameworkHttpServer {
|
|
|
222
222
|
this.app.get('/api', (req, res) => {
|
|
223
223
|
res.json({
|
|
224
224
|
name: 'Framework MCP HTTP API',
|
|
225
|
-
version: '2.4.
|
|
225
|
+
version: '2.4.5',
|
|
226
226
|
description: 'Pure Data Provider serving authentic CIS Controls Framework data',
|
|
227
227
|
endpoints: {
|
|
228
228
|
'GET /api/safeguards': 'List all available CIS safeguards',
|
|
@@ -273,7 +273,7 @@ export class FrameworkHttpServer {
|
|
|
273
273
|
|
|
274
274
|
public start(): void {
|
|
275
275
|
this.app.listen(this.port, '0.0.0.0', () => {
|
|
276
|
-
console.log(`🚀 Framework MCP HTTP Server v2.4.
|
|
276
|
+
console.log(`🚀 Framework MCP HTTP Server v2.4.5 running on port ${this.port}`);
|
|
277
277
|
console.log(`📊 Health check: http://localhost:${this.port}/health`);
|
|
278
278
|
console.log(`📖 API docs: http://localhost:${this.port}/api`);
|
|
279
279
|
console.log(`🔧 Environment: ${process.env.NODE_ENV || 'development'}`);
|
|
@@ -18,7 +18,7 @@ export class FrameworkMcpServer {
|
|
|
18
18
|
this.server = new Server(
|
|
19
19
|
{
|
|
20
20
|
name: 'framework-analyzer',
|
|
21
|
-
version: '2.4.
|
|
21
|
+
version: '2.4.5',
|
|
22
22
|
}
|
|
23
23
|
);
|
|
24
24
|
|
|
@@ -129,7 +129,7 @@ export class FrameworkMcpServer {
|
|
|
129
129
|
safeguards,
|
|
130
130
|
total: safeguards.length,
|
|
131
131
|
framework: 'CIS Controls v8.1',
|
|
132
|
-
version: '2.4.
|
|
132
|
+
version: '2.4.5'
|
|
133
133
|
}, null, 2),
|
|
134
134
|
},
|
|
135
135
|
],
|
|
@@ -153,7 +153,7 @@ export class FrameworkMcpServer {
|
|
|
153
153
|
const transport = new StdioServerTransport();
|
|
154
154
|
await this.server.connect(transport);
|
|
155
155
|
|
|
156
|
-
console.error('🤖 Framework MCP Server v2.4.
|
|
156
|
+
console.error('🤖 Framework MCP Server v2.4.5 running via stdio');
|
|
157
157
|
console.error('📊 Pure Data Provider for CIS Controls v8.1');
|
|
158
158
|
}
|
|
159
159
|
}
|
package/swagger.json
CHANGED
|
@@ -299,7 +299,7 @@
|
|
|
299
299
|
},
|
|
300
300
|
"version": {
|
|
301
301
|
"type": "string",
|
|
302
|
-
"example": "2.4.
|
|
302
|
+
"example": "2.4.5"
|
|
303
303
|
},
|
|
304
304
|
"timestamp": {
|
|
305
305
|
"type": "string",
|
|
@@ -344,7 +344,7 @@
|
|
|
344
344
|
},
|
|
345
345
|
"version": {
|
|
346
346
|
"type": "string",
|
|
347
|
-
"example": "2.4.
|
|
347
|
+
"example": "2.4.5"
|
|
348
348
|
},
|
|
349
349
|
"description": {
|
|
350
350
|
"type": "string",
|