indelible-mcp 3.8.0 → 4.0.0

package/README.md

@@ -1,6 +1,6 @@
 # Indelible MCP Server
 
-Blockchain-backed memory for Claude Code. Save your AI conversations permanently on BSV.
+Blockchain-backed memory for Claude Code. Save your AI conversations permanently on BSV via a federated mesh of SPV bridges.
 
 ## Quick Start
 
@@ -67,13 +67,23 @@ indelible-mcp hook post-compact  Post-compaction restore hook
 ## How It Works
 
 1. Your conversation is encrypted locally with your WIF key
-2. An OP_RETURN transaction is built and signed locally using `@bsv/sdk`
-3. The signed transaction is broadcast via Indelible's SPV bridge
-4. Your private key **never** leaves your machine
+2. A minimal OP_RETURN transaction is built containing only `{protocol, encrypted}` — no metadata leaks
+3. The signed transaction is broadcast via Indelible's federation bridges
+4. Session metadata is automatically indexed across all federation bridges for fast retrieval
+5. Your private key **never** leaves your machine
+
+## Federation
+
+Indelible uses a multi-seed architecture — your saves and loads automatically try multiple federation bridges. If one bridge is down, the next picks up. No single point of failure.
+
+Bridges sync session metadata via SessionRelay (WebSocket peer-to-peer), so all your sessions are available from any bridge in the mesh. The web app and CLI read from bridges first, with blockchain fallback.
+
+The federation mesh is powered by [Relay Federation](https://github.com/zcoolz/relay-federation).
 
 ## Security
 
 - **Zero-knowledge encryption** - your WIF-derived AES-256-GCM key encrypts all data before it touches the network
+- **Privacy-hardened transactions** - OP_RETURN contains only `{protocol, encrypted}` — no plaintext metadata on-chain
 - **Self-sovereign keys** - generated locally with `@bsv/sdk`, never transmitted
 - **Immutable storage** - once on BSV, your data cannot be altered or deleted
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "indelible-mcp",
-  "version": "3.8.0",
+  "version": "4.0.0",
   "description": "Blockchain-backed memory and code storage for Claude Code. Save AI conversations and source code permanently on BSV.",
   "type": "module",
   "main": "src/index.js",

package/src/index.js

@@ -254,7 +254,7 @@ Commands:
 
 function printHelp() {
   console.log(`
-Indelible MCP — Blockchain memory for Claude Code (v3.8.0)
+Indelible MCP — Blockchain memory for Claude Code (v4.0.0)
 
 Setup:
   indelible-mcp setup --wif=KEY --pin=PIN    Import and encrypt your private key
@@ -466,7 +466,7 @@ function readStdin() {
 
 const SERVER_INFO = {
   name: 'indelible',
-  version: '3.8.0',
+  version: '4.0.0',
   description: 'Blockchain-backed memory and code storage for Claude Code'
 }
 

package/src/lib/spv.js

@@ -246,6 +246,24 @@ export async function broadcastTx(rawTxHex) {
   throw new Error(`Broadcast failed on all bridges: ${errors.join(', ')}`)
 }
 
+/**
+ * Index session metadata on all federation bridges (best-effort).
+ * @param {object} sessionData — { txId, address, session_id, summary, message_count, save_type, timestamp, ... }
+ */
+export async function indexSessionOnBridge(sessionData) {
+  const bridges = await getBridges()
+  for (const bridge of bridges) {
+    try {
+      await fetch(`${bridge.url}/api/sessions/index`, {
+        method: 'POST',
+        headers: { 'Content-Type': 'application/json' },
+        body: JSON.stringify(sessionData),
+        signal: AbortSignal.timeout(5000)
+      })
+    } catch {} // best-effort
+  }
+}
+
 function pushDataChunk(data) {
   const len = data.length
   let op

package/src/tools/load_context.js

@@ -9,6 +9,7 @@
  */
 
 import { readFileSync, existsSync } from 'node:fs'
+import { gunzipSync } from 'node:zlib'
 import { join } from 'node:path'
 import { homedir } from 'node:os'
 import { Transaction } from '@bsv/sdk'
@@ -21,6 +22,16 @@ import { loadStyle } from './load_style.js'
 const RECENT_MESSAGES_FULL = 25
 const OLDER_MESSAGES_SUMMARIZED = 15
 
+/** Decrypt and optionally gunzip a session payload (handles gz: prefix) */
+function decryptSession(encrypted, wif) {
+  const text = decrypt(encrypted, wif)
+  if (text.startsWith('gz:')) {
+    const buf = gunzipSync(Buffer.from(text.slice(3), 'base64'))
+    return JSON.parse(buf.toString('utf8'))
+  }
+  return JSON.parse(text)
+}
+
 function mergeDeltaSessions(sessions) {
   if (sessions.length === 0) return sessions
   const ordered = [...sessions].reverse()
@@ -195,7 +206,7 @@ export async function loadContext(numSessions = 5) {
       for (const entry of recent) {
         try {
           if (entry.encrypted) {
-            const data = JSON.parse(decrypt(entry.encrypted, wif))
+            const data = decryptSession(entry.encrypted, wif)
             decrypted.push(data)
           }
         } catch { /* skip sessions that fail to decrypt */ }
@@ -240,12 +251,12 @@ export async function loadContext(numSessions = 5) {
       for (const session of sessions) {
         try {
           if (session.encrypted) {
-            const data = JSON.parse(decrypt(session.encrypted, wif))
+            const data = decryptSession(session.encrypted, wif)
             decrypted.push(data)
           } else if (session.txId) {
             const encrypted = await fetchEncryptedFromChain(session.txId)
             if (encrypted) {
-              const data = JSON.parse(decrypt(encrypted, wif))
+              const data = decryptSession(encrypted, wif)
               decrypted.push(data)
             }
           }

package/src/tools/load_file.js

@@ -4,6 +4,7 @@
  * Supports v1 (plaintext metadata) and v2 (encrypted metadata).
  */
 
+import { gunzipSync } from 'node:zlib'
 import { writeFileSync } from 'node:fs'
 import { dirname } from 'node:path'
 import { mkdirSync, existsSync } from 'node:fs'
@@ -72,8 +73,10 @@ export async function loadFile(txId, options = {}) {
         }
       }
       content = decrypt(encryptedFull, wif)
+      if (content.startsWith('gz:')) content = gunzipSync(Buffer.from(content.slice(3), 'base64')).toString('utf8')
     } else {
       content = decrypt(payload.encrypted, wif)
+      if (content.startsWith('gz:')) content = gunzipSync(Buffer.from(content.slice(3), 'base64')).toString('utf8')
     }
 
     // Decrypt metadata (v2) or use plaintext (v1)

package/src/tools/save_file.js

@@ -4,6 +4,7 @@
  * On-chain: only encrypted data, no plaintext filenames.
  */
 
+import { gzipSync } from 'node:zlib'
 import { readFileSync, writeFileSync, mkdirSync, existsSync } from 'node:fs'
 import { basename, join } from 'node:path'
 import { homedir } from 'node:os'
@@ -40,8 +41,9 @@ export async function saveFile(filePath, options = {}) {
   const filename = basename(filePath)
   const relativePath = options.relativePath || filePath
 
-  // Encrypt content and metadata
-  const encrypted = encrypt(content, wif)
+  // Gzip compress then encrypt content
+  const compressed = gzipSync(Buffer.from(content))
+  const encrypted = encrypt('gz:' + compressed.toString('base64'), wif)
   const filenameEnc = encrypt(filename, wif)
   const pathEnc = encrypt(relativePath, wif)
 

package/src/tools/save_session.js

@@ -14,6 +14,7 @@
  */
 
 import { readFileSync, writeFileSync, existsSync, statSync, mkdirSync, readdirSync } from 'node:fs'
+import { gzipSync } from 'node:zlib'
 import { dirname, join } from 'node:path'
 import { homedir } from 'node:os'
 import { execSync } from 'node:child_process'
@@ -534,19 +535,13 @@ export async function saveSession(transcriptPath, summary) {
   if (estimatedFee > COST_WARNING_SATS) {
     process.stderr.write(`[indelible] WARNING: Estimated cost ~${estimatedFee} sats (~$${(estimatedFee / 1e8 * 15).toFixed(2)}). Rich mode is ${richMode ? 'ON' : 'OFF'}. Set "rich_saves": false in config to reduce cost.\n`)
   }
-  const encrypted = encrypt(sessionJson, wif)
+  const compressed = gzipSync(Buffer.from(sessionJson))
+  const encrypted = encrypt('gz:' + compressed.toString('base64'), wif)
 
   // Build the blockchain payload
   const payload = {
     protocol: 'indelible.claude-code',
-    version: 2,
-    address: config.address,
-    session_id: sessionId,
-    prev_session_id: prevSessionId,
-    summary: session.summary,
-    message_count: session.message_count,
-    encrypted,
-    timestamp: session.created_at
+    encrypted
   }
 
   // Build + sign transaction LOCALLY with @bsv/sdk
@@ -574,6 +569,19 @@ export async function saveSession(transcriptPath, summary) {
       }, config)
     } catch { /* indexing failure doesn't block save */ }
 
+    // Index session on federation bridges (LevelDB)
+    try {
+      await spv.indexSessionOnBridge({
+        txId: finalTxId, address: config.address,
+        session_id: sessionId,
+        prev_session_id: prevSessionId,
+        summary: session.summary,
+        message_count: session.message_count,
+        save_type: isDelta ? 'delta' : 'full',
+        timestamp: session.created_at
+      })
+    } catch { /* bridge indexing failure doesn't block save */ }
+
     // Update session history with txId now that we have it
     const structuredCtx = session.structured_context || {}
     updateSessionHistory(