fullstackgtm 0.10.0 → 0.11.0

package/src/credentials.ts

@@ -2,6 +2,7 @@ import {
   chmodSync,
   existsSync,
   mkdirSync,
+  readdirSync,
   readFileSync,
   unlinkSync,
   writeFileSync,
@@ -15,8 +16,63 @@ import { refreshSalesforceToken } from "./connectors/salesforceAuth.ts";
  * Local CLI credential store: ~/.fullstackgtm/credentials.json (0600), or
  * $FSGTM_HOME/credentials.json when set. Environment tokens always win over
  * stored credentials so CI and agent sandboxes never touch the filesystem.
+ *
+ * Profiles let one operator hold credentials for several organizations at
+ * once (a consultant working across client CRMs). The default profile keeps
+ * the historical layout; a named profile scopes the entire home — credentials
+ * AND stored plans — under `profiles/<name>/`, so a patch plan proposed
+ * against one client's CRM can never be applied through another client's
+ * credentials.
  */
 
+export const DEFAULT_PROFILE = "default";
+
+const PROFILE_NAME_PATTERN = /^[A-Za-z0-9][A-Za-z0-9._-]{0,63}$/;
+
+let explicitProfile: string | null = null;
+
+export function validateProfileName(name: string): string {
+  if (!PROFILE_NAME_PATTERN.test(name) || name === "." || name === "..") {
+    throw new Error(
+      `Invalid profile name: ${JSON.stringify(name)}. Use letters, numbers, dots, dashes, ` +
+        "or underscores (must start with a letter or number, max 64 characters).",
+    );
+  }
+  return name;
+}
+
+/** Select the profile for this process; wins over $FULLSTACKGTM_PROFILE. */
+export function setActiveProfile(name: string) {
+  explicitProfile = validateProfileName(name);
+}
+
+export function activeProfile(): string {
+  if (explicitProfile) return explicitProfile;
+  const fromEnv = process.env.FULLSTACKGTM_PROFILE;
+  return fromEnv ? validateProfileName(fromEnv) : DEFAULT_PROFILE;
+}
+
+/** Base home directory, shared by every profile. */
+export function baseHomeDir(): string {
+  return process.env.FSGTM_HOME ?? join(homedir(), ".fullstackgtm");
+}
+
+/**
+ * Profiles that exist on disk (have a directory), always including the
+ * default profile. Existence does not imply stored credentials.
+ */
+export function listProfiles(): string[] {
+  const names = new Set([DEFAULT_PROFILE]);
+  try {
+    for (const entry of readdirSync(join(baseHomeDir(), "profiles"), { withFileTypes: true })) {
+      if (entry.isDirectory() && PROFILE_NAME_PATTERN.test(entry.name)) names.add(entry.name);
+    }
+  } catch {
+    // No profiles directory yet.
+  }
+  return Array.from(names).sort();
+}
+
 export type StoredCredential = {
   kind: "private_app" | "oauth" | "broker";
   accessToken: string;
@@ -43,7 +99,9 @@ type CredentialsFile = {
 };
 
 export function credentialsDir(): string {
-  return process.env.FSGTM_HOME ?? join(homedir(), ".fullstackgtm");
+  const base = baseHomeDir();
+  const profile = activeProfile();
+  return profile === DEFAULT_PROFILE ? base : join(base, "profiles", profile);
 }
 
 export function credentialsPath(): string {
@@ -59,11 +117,18 @@ export function credentialsPath(): string {
  */
 export function ensureSecureHomeDir(): string {
   const dir = credentialsDir();
-  mkdirSync(dir, { recursive: true, mode: 0o700 });
-  try {
-    chmodSync(dir, 0o700);
-  } catch {
-    // Non-POSIX filesystems (e.g. Windows) ignore chmod; nothing to enforce.
+  // A named profile nests under base/profiles/<name>; lock down every level
+  // we create, not just the leaf — recursive mkdir applies `mode` (less
+  // umask) only to directories it creates, and never to pre-existing ones.
+  const levels =
+    dir === baseHomeDir() ? [dir] : [baseHomeDir(), join(baseHomeDir(), "profiles"), dir];
+  for (const level of levels) {
+    mkdirSync(level, { recursive: true, mode: 0o700 });
+    try {
+      chmodSync(level, 0o700);
+    } catch {
+      // Non-POSIX filesystems (e.g. Windows) ignore chmod; nothing to enforce.
+    }
   }
   return dir;
 }

package/src/index.ts

@@ -34,12 +34,16 @@ export {
 } from "./connectors/salesforceAuth.ts";
 export { createStripeConnector, type StripeConnectorOptions } from "./connectors/stripe.ts";
 export {
+  activeProfile,
   credentialsDir,
   credentialsPath,
+  DEFAULT_PROFILE,
   deleteCredential,
   getCredential,
+  listProfiles,
   resolveHubspotAccessToken,
   resolveHubspotConnection,
+  setActiveProfile,
   storeCredential,
   type HubspotConnection,
   type StoredCredential,
@@ -64,6 +68,7 @@ export {
 } from "./merge.ts";
 export { createFilePlanStore, type PlanStore, type StoredPlan } from "./planStore.ts";
 export { formatPatchPlanRun, patchPlanToMarkdown } from "./format.ts";
+export { auditReportToHtml, auditReportToMarkdown, type ReportOptions } from "./report.ts";
 export {
   HUBSPOT_DEFAULT_FIELD_MAPPINGS,
   SALESFORCE_DEFAULT_FIELD_MAPPINGS,
@@ -83,6 +88,7 @@ export {
   closingSoonInactiveRule,
   duplicateAccountDomainRule,
   duplicateContactEmailRule,
+  duplicateOpenDealRule,
   missingDealAccountRule,
   missingDealAmountRule,
   missingDealOwnerRule,
@@ -93,6 +99,7 @@ export {
   staleDealRule,
 } from "./rules.ts";
 export { sampleSnapshot } from "./sampleData.ts";
+export { suggestValues, type SuggestionConfidence, type ValueSuggestion } from "./suggest.ts";
 export type {
   ApprovalStatus,
   AuditFinding,

package/src/mcp.ts

@@ -1,8 +1,35 @@
 import { readFileSync } from "node:fs";
-import { resolve } from "node:path";
-import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
-import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
-import { z } from "zod/v4";
+import { createRequire } from "node:module";
+import { join, resolve } from "node:path";
+import { pathToFileURL } from "node:url";
+
+/**
+ * The MCP peers resolve normally when installed alongside this package, but
+ * `npx -p fullstackgtm -p @modelcontextprotocol/sdk -p zod` skips installing
+ * peers into the npx cache when the invoking project's node_modules already
+ * satisfies them — and the cache can't reach the project's tree. Fall back to
+ * resolving from the working directory: peer dependencies' natural home.
+ */
+async function importPeer<T>(specifier: string): Promise<T> {
+  try {
+    return (await import(specifier)) as T;
+  } catch (error) {
+    try {
+      const projectRequire = createRequire(join(process.cwd(), "package.json"));
+      return (await import(pathToFileURL(projectRequire.resolve(specifier)).href)) as T;
+    } catch {
+      throw error; // the original error carries the missing-peer signal mcp-bin reports on
+    }
+  }
+}
+
+const { McpServer } = await importPeer<typeof import("@modelcontextprotocol/sdk/server/mcp.js")>(
+  "@modelcontextprotocol/sdk/server/mcp.js",
+);
+const { StdioServerTransport } = await importPeer<typeof import("@modelcontextprotocol/sdk/server/stdio.js")>(
+  "@modelcontextprotocol/sdk/server/stdio.js",
+);
+const { z } = await importPeer<typeof import("zod/v4")>("zod/v4");
 import { auditSnapshot, defaultPolicy } from "./audit.ts";
 import { loadConfig, mergePolicy, resolveConfiguredRules } from "./config.ts";
 import { applyPatchPlan } from "./connector.ts";
@@ -19,6 +46,7 @@ import type { FieldMappings } from "./mappings.ts";
 import { formatPatchPlanRun, patchPlanToMarkdown } from "./format.ts";
 import { builtinAuditRules } from "./rules.ts";
 import { sampleSnapshot } from "./sampleData.ts";
+import { suggestValues } from "./suggest.ts";
 import type { CanonicalGtmSnapshot, GtmConnector, PatchPlan } from "./types.ts";
 
 function content(value: unknown) {
@@ -113,7 +141,8 @@ export async function startMcpServer() {
       title: "GTM Ops Audit",
       description:
         "Run a dry-run GTM hygiene audit and return a reviewable patch plan. " +
-        "Reads from the sample dataset, a snapshot file, or a live provider.",
+        "Sources: the realistic zero-credential demo CRM (provider: \"demo\" — richest test data), " +
+        "the minimal sample dataset, a snapshot file, or a live provider.",
       inputSchema: {
         provider: z.enum(["sample", "demo", "hubspot", "salesforce", "stripe"]).optional(),
         inputPath: z.string().optional(),
@@ -138,6 +167,27 @@ export async function startMcpServer() {
     },
   );
 
+  server.registerTool(
+    "fullstackgtm_suggest",
+    {
+      title: "Suggest Placeholder Values",
+      description:
+        "Derive values for a plan's requires_human_* placeholder operations from snapshot " +
+        "evidence (account-name matching, contact associations), with confidence levels and " +
+        "reasons. Read-only; feed accepted values into fullstackgtm_apply's valueOverrides.",
+      inputSchema: {
+        planPath: z.string(),
+        provider: z.enum(["sample", "demo", "hubspot", "salesforce", "stripe"]).optional(),
+        inputPath: z.string().optional(),
+      },
+    },
+    async ({ planPath, provider, inputPath }) => {
+      const plan = JSON.parse(readFileSync(resolve(process.cwd(), planPath), "utf8")) as PatchPlan;
+      const snapshot = await readSnapshot(provider, inputPath);
+      return content({ suggestions: suggestValues(plan, snapshot) });
+    },
+  );
+
   server.registerTool(
     "fullstackgtm_rules",
     {