getdoorman 1.0.0

package/src/rules/security/mcp-server.js

@@ -0,0 +1,71 @@
+// MCP Server Security Rules (50 rules)
+const SKIP_PATH = /node_modules|\.min\.js|vendor|dist\/|build\/|\.test\.|\.spec\./;
+function scanLines(content, pattern, path, rule) {
+  const findings = [];
+  const lines = content.split('\n');
+  for (let i = 0; i < lines.length; i++) {
+    if (pattern.test(lines[i])) findings.push({ ruleId: rule.id, file: path, line: i + 1, title: rule.title, severity: rule.severity });
+  }
+  return findings;
+}
+function checkAll(rule, files, pattern) {
+  const findings = [];
+  for (const [path, content] of files) {
+    if (SKIP_PATH.test(path)) continue;
+    findings.push(...scanLines(content, pattern, path, rule));
+  }
+  return findings;
+}
+const rules = [
+  { id: 'SEC-MCP-001', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP tool without input validation', check({ files }) { return checkAll(this, files, /server\.tool\([^,]+,\s*async\s*\(\s*\{/); } },
+  { id: 'SEC-MCP-002', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP params in file operation', check({ files }) { return checkAll(this, files, /fs\.\w+\(\s*(?:params|args|input)\.\w+/); } },
+  { id: 'SEC-MCP-003', category: 'security', severity: 'critical', confidence: 'likely', title: 'MCP params in exec/spawn', check({ files }) { return checkAll(this, files, /(?:exec|spawn|execSync)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-004', category: 'security', severity: 'critical', confidence: 'likely', title: 'MCP params in SQL query', check({ files }) { return checkAll(this, files, /(?:query|execute)\(\s*`[^`]*\$\{(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-005', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP params in eval', check({ files }) { return checkAll(this, files, /(?:eval|new\s+Function)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-006', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP tool without schema', check({ files }) { return checkAll(this, files, /server\.tool\(\s*['"][^'"]+['"]\s*,\s*(?:async\s*)?\(/); } },
+  { id: 'SEC-MCP-007', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP params in URL (SSRF)', check({ files }) { return checkAll(this, files, /(?:fetch|axios|got|request)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-008', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP params in regex (ReDoS)', check({ files }) { return checkAll(this, files, /new\s+RegExp\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-009', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP params in path.join', check({ files }) { return checkAll(this, files, /path\.(?:join|resolve)\([^,]*,\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-010', category: 'security', severity: 'medium', confidence: 'likely', title: 'MCP params in template literal', check({ files }) { return checkAll(this, files, /`[^`]*\$\{(?:params|args|input)\.(?!name\b|type\b)/); } },
+  { id: 'SEC-MCP-011', category: 'security', severity: 'high', confidence: 'suggestion', title: 'MCP server without auth', check({ files }) { return checkAll(this, files, /new\s+(?:McpServer|Server)\(\s*\{(?![^}]*auth)/); } },
+  { id: 'SEC-MCP-012', category: 'security', severity: 'high', confidence: 'suggestion', title: 'MCP handler without permission check', check({ files }) { return checkAll(this, files, /setRequestHandler\(\s*\w+\s*,\s*async/); } },
+  { id: 'SEC-MCP-013', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP API key hardcoded', check({ files }) { return checkAll(this, files, /(?:mcp|MCP).*(?:key|token|secret)\s*[:=]\s*['"][a-zA-Z0-9]{16,}['"]/); } },
+  { id: 'SEC-MCP-014', category: 'security', severity: 'medium', confidence: 'likely', title: 'MCP transport without TLS', check({ files }) { return checkAll(this, files, /transport.*['"]http:\/\//); } },
+  { id: 'SEC-MCP-015', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP wildcard permissions', check({ files }) { return checkAll(this, files, /allowedTools:\s*\[\s*['"]?\*['"]?\s*\]/); } },
+  { id: 'SEC-MCP-016', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no CORS config', check({ files }) { return checkAll(this, files, /(?:SSE|Http)ServerTransport\(/); } },
+  { id: 'SEC-MCP-017', category: 'security', severity: 'low', confidence: 'suggestion', title: 'MCP broad file access', check({ files }) { return checkAll(this, files, /readFile(?:Sync)?\(\s*(?:params|args|input)\.(?:path|file)/); } },
+  { id: 'SEC-MCP-018', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no rate limiting', check({ files }) { return checkAll(this, files, /new\s+(?:McpServer|Server)\(\s*\{(?![^}]*rateLimit)/); } },
+  { id: 'SEC-MCP-019', category: 'security', severity: 'low', confidence: 'suggestion', title: 'MCP no request size limit', check({ files }) { return checkAll(this, files, /new\s+\w+Transport\(\s*\{(?![^}]*maxSize)/); } },
+  { id: 'SEC-MCP-020', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no token validation', check({ files }) { return checkAll(this, files, /server\.connect\(\s*transport\s*\)/); } },
+  { id: 'SEC-MCP-021', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP exposes env vars', check({ files }) { return checkAll(this, files, /(?:content|text|result).*process\.env/); } },
+  { id: 'SEC-MCP-022', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP unfiltered DB rows', check({ files }) { return checkAll(this, files, /JSON\.stringify\(\s*(?:rows|results|records)\s*\)/); } },
+  { id: 'SEC-MCP-023', category: 'security', severity: 'medium', confidence: 'likely', title: 'MCP stack traces exposed', check({ files }) { return checkAll(this, files, /(?:error|err)\.stack.*(?:content|text)/); } },
+  { id: 'SEC-MCP-024', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP logs sensitive params', check({ files }) { return checkAll(this, files, /console\.log\(\s*(?:JSON\.stringify\()?\s*(?:params|args)\b/); } },
+  { id: 'SEC-MCP-025', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP raw file in response', check({ files }) { return checkAll(this, files, /readFileSync\([^)]+\)\.toString\(\)/); } },
+  { id: 'SEC-MCP-026', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP credentials in response', check({ files }) { return checkAll(this, files, /(?:password|secret|token|apiKey).*(?:content|text):\s/i); } },
+  { id: 'SEC-MCP-027', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no response size limit', check({ files }) { return checkAll(this, files, /text:\s*JSON\.stringify/); } },
+  { id: 'SEC-MCP-028', category: 'security', severity: 'low', confidence: 'suggestion', title: 'MCP description leaks impl', check({ files }) { return checkAll(this, files, /description:\s*['"].*(?:database|internal|private)/i); } },
+  { id: 'SEC-MCP-029', category: 'security', severity: 'medium', confidence: 'likely', title: 'MCP cross-tool data leak', check({ files }) { return checkAll(this, files, /(?:global|globalThis)\.\w+.*=.*(?:params|args)\./); } },
+  { id: 'SEC-MCP-030', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP debug mode enabled', check({ files }) { return checkAll(this, files, /(?:debug|verbose)\s*[:=]\s*true/); } },
+  { id: 'SEC-MCP-031', category: 'security', severity: 'critical', confidence: 'likely', title: 'MCP shell injection', check({ files }) { return checkAll(this, files, /exec\(\s*`[^`]*\$\{(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-032', category: 'security', severity: 'critical', confidence: 'likely', title: 'MCP template injection', check({ files }) { return checkAll(this, files, /(?:render|compile|template)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-033', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP LDAP injection', check({ files }) { return checkAll(this, files, /(?:ldap|LDAP).*(?:search|bind).*(?:params|args)\./); } },
+  { id: 'SEC-MCP-034', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP XML injection', check({ files }) { return checkAll(this, files, /[<].*\$\{(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-035', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP header injection', check({ files }) { return checkAll(this, files, /setHeader\([^,]+,\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-036', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP open redirect', check({ files }) { return checkAll(this, files, /redirect\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-037', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP NoSQL injection', check({ files }) { return checkAll(this, files, /\.find\(\s*\{[^}]*:\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-038', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP prompt injection risk', check({ files }) { return checkAll(this, files, /(?:prompt|system|message).*(?:params|args|input)\.\w+/); } },
+  { id: 'SEC-MCP-039', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP unsafe deserialization', check({ files }) { return checkAll(this, files, /(?:deserialize|unserialize)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-040', category: 'security', severity: 'medium', confidence: 'likely', title: 'MCP dynamic import', check({ files }) { return checkAll(this, files, /(?:require|import)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-041', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no error handler', check({ files }) { return checkAll(this, files, /server\.connect\(\s*transport\s*\)/); } },
+  { id: 'SEC-MCP-042', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no tool timeout', check({ files }) { return checkAll(this, files, /server\.tool\([^,]+,\s*async/); } },
+  { id: 'SEC-MCP-043', category: 'security', severity: 'low', confidence: 'suggestion', title: 'MCP no audit logging', check({ files }) { return checkAll(this, files, /server\.tool\([^,]+,\s*async\s*\(/); } },
+  { id: 'SEC-MCP-044', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP swallows errors', check({ files }) { return checkAll(this, files, /catch\s*\(\s*\w*\s*\)\s*\{\s*return\s*\{/); } },
+  { id: 'SEC-MCP-045', category: 'security', severity: 'low', confidence: 'suggestion', title: 'MCP hardcoded port', check({ files }) { return checkAll(this, files, /\.listen\(\s*\d{4,5}\s*\)/); } },
+  { id: 'SEC-MCP-046', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP no disconnect cleanup', check({ files }) { return checkAll(this, files, /transport\.start/); } },
+  { id: 'SEC-MCP-047', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP unrestricted dir listing', check({ files }) { return checkAll(this, files, /(?:readdir|readdirSync)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-048', category: 'security', severity: 'high', confidence: 'likely', title: 'MCP process execution', check({ files }) { return checkAll(this, files, /(?:spawn|fork|execFile)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-049', category: 'security', severity: 'medium', confidence: 'suggestion', title: 'MCP outbound requests', check({ files }) { return checkAll(this, files, /(?:http|https)\.(?:get|request)\(\s*(?:params|args|input)\./); } },
+  { id: 'SEC-MCP-050', category: 'security', severity: 'low', confidence: 'suggestion', title: 'MCP SDK not pinned', check({ files }) { return checkAll(this, files, /"@modelcontextprotocol\/sdk":\s*"\^/); } },
+];
+export default rules;