indelible-mcp 4.5.1 → 4.6.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "indelible-mcp",
-  "version": "4.5.1",
+  "version": "4.6.0",
   "description": "Blockchain-backed memory and code storage for Claude Code. Save AI conversations and source code permanently on BSV.",
   "type": "module",
   "main": "src/index.js",

package/src/index.js

@@ -257,11 +257,42 @@ async function checkHealth() {
   }
 }
 async function getUtxos(address) {
-  const res = await spvFetch(`/api/address/${address}/unspent`);
-  const utxos = await res.json();
-  process.stderr.write(`[MCP] UTXOs from bridge: ${Array.isArray(utxos) ? utxos.length : 0}
+  const path = `/api/address/${address}/unspent`;
+  const res = await spvFetch(path);
+  const first = await res.json();
+  if (Array.isArray(first) && first.length > 0) {
+    process.stderr.write(`[MCP] UTXOs from bridge: ${first.length}
 `);
-  return utxos;
+    return first;
+  }
+  let reached = 0;
+  try {
+    const bridges = await getBridges();
+    const settled = await Promise.allSettled(bridges.map(async (bridge) => {
+      const r = await fetch(`${bridge.url}${path}`, {
+        signal: AbortSignal.timeout(6e3),
+        headers: { "X-API-Key": bridge.apiKey }
+      });
+      if (!r.ok) throw new Error(`HTTP ${r.status}`);
+      return { name: bridge.name, utxos: await r.json() };
+    }));
+    for (const s of settled) {
+      if (s.status !== "fulfilled") continue;
+      reached++;
+      const u = s.value.utxos;
+      if (Array.isArray(u) && u.length > 0) {
+        process.stderr.write(`[MCP] UTXOs recovered via fan-out from ${s.value.name}: ${u.length}
+`);
+        return u;
+      }
+    }
+  } catch (e) {
+    process.stderr.write(`[MCP] UTXO fan-out error: ${e.message}
+`);
+  }
+  process.stderr.write(`[MCP] UTXOs: 0 across ${reached} bridge(s)
+`);
+  return Array.isArray(first) ? first : [];
 }
 async function getAddressHistory(address) {
   const res = await spvFetch(`/api/address/${address}/history`);
@@ -1081,10 +1112,78 @@ var init_wall_stub = __esm({
 init_config_customer();
 import { createInterface as createInterface3 } from "node:readline";
 import { execSync as execSync2 } from "node:child_process";
-import { homedir as homedir12 } from "node:os";
-import { join as join13, dirname as dirname4, resolve } from "node:path";
-import { fileURLToPath } from "node:url";
-import { readFileSync as readFileSync10, writeFileSync as writeFileSync7, existsSync as existsSync14, mkdirSync as mkdirSync6, readdirSync, statSync } from "node:fs";
+import { homedir as homedir13 } from "node:os";
+import { join as join14, dirname as dirname5, resolve } from "node:path";
+import { fileURLToPath as fileURLToPath2 } from "node:url";
+import { readFileSync as readFileSync11, writeFileSync as writeFileSync7, existsSync as existsSync15, mkdirSync as mkdirSync6, readdirSync, statSync } from "node:fs";
+
+// mcp-server/lib/guardrails-run.js
+function contextFromInput(input) {
+  const tool = input?.tool_name;
+  const ti = input?.tool_input || {};
+  return {
+    tool,
+    filePath: ti.file_path || "",
+    // For Write the new content is `content`; for Edit it's `new_string`.
+    added: tool === "Write" ? ti.content || "" : ti.new_string || "",
+    command: ti.command || ""
+  };
+}
+function runRules(input, rules) {
+  const ctx = contextFromInput(input);
+  for (const rule of rules) {
+    let reason = null;
+    try {
+      reason = rule.test(ctx);
+    } catch {
+      reason = null;
+    }
+    if (reason) return { id: rule.id, severity: rule.severity, reason };
+  }
+  return null;
+}
+
+// mcp-server/lib/guardrails.customer.js
+var RULES = [
+  {
+    // Reading a private key or seed into the chat sends it to the model and into
+    // the saved transcript. The key controls real funds — this is the one worth
+    // hard-blocking. If the agent needs a non-secret field, it can read just that.
+    id: "credential-pull",
+    severity: "BLOCK",
+    test: ({ command }) => {
+      if (!command) return null;
+      const READ = /\b(cat|less|more|head|tail|type|Get-Content|gc)\b/i;
+      const SECRET = /(config\.json|\.env\b|\bwif\b|\bseed\b|private[-_ ]?key|\.indelible[\\/])/i;
+      return READ.test(command) && SECRET.test(command) ? "That command would print your wallet key or seed into the conversation \u2014 which hands it to the model and writes it into the saved transcript. Your private key controls your funds; never read it into the chat. If you only need a non-secret value, read just that field." : null;
+    }
+  },
+  {
+    // The irreversible-command guard. Advisory, never blocked — your repo, your
+    // machine, your call — but a force-push / recursive delete / hard reset has no
+    // undo, so make the blast radius visible before it runs.
+    id: "destructive-op",
+    severity: "WARN",
+    test: ({ command }) => {
+      if (!command) return null;
+      const hits = [
+        /git\s+push\b[^\n]*(--force\b|--force-with-lease\b|-f\b)/i,
+        // rewrites remote history
+        /git\s+reset\s+--hard\b/i,
+        // discards local work
+        /\brm\s+-[a-z]*r[a-z]*f\b/i,
+        // rm -rf / -fr / -Rf
+        /\brm\s+-[a-z]*f[a-z]*r\b/i,
+        /\bRemove-Item\b[^\n]*-Recurse\b[^\n]*-Force\b/i
+        // PowerShell recursive force-delete
+      ];
+      return hits.some((re) => re.test(command)) ? "This command is irreversible \u2014 a force-push rewrites remote history, and rm -rf / reset --hard / Remove-Item -Recurse -Force cannot be undone. Confirm you have a backup and you are aiming at the right target before you run it." : null;
+    }
+  }
+];
+function evaluate(input) {
+  return runRules(input, RULES);
+}
 
 // mcp-server/tools/setup_wallet.js
 init_config_customer();
@@ -5903,6 +6002,116 @@ async function recallContext({ from_date = null, to_date = null, query = null, d
   };
 }
 
+// mcp-server/tools/report_bug.js
+import { readFileSync as readFileSync10, existsSync as existsSync14 } from "fs";
+import { join as join13, dirname as dirname4 } from "path";
+import { homedir as homedir12 } from "os";
+import { fileURLToPath } from "url";
+import os from "os";
+var INTAKE_URL = process.env.INDELIBLE_BUG_INTAKE || "https://indelible.one/api/bug-report";
+var INDELIBLE_DIR = join13(homedir12(), ".indelible");
+function getMcpVersion(injected) {
+  if (injected) return injected;
+  const candidates = [];
+  try {
+    candidates.push(join13(dirname4(fileURLToPath(import.meta.url)), "..", "..", "package.json"));
+  } catch {
+  }
+  try {
+    candidates.push(join13(dirname4(fileURLToPath(import.meta.url)), "..", "package.json"));
+  } catch {
+  }
+  candidates.push(join13(homedir12(), "AppData", "Roaming", "npm", "node_modules", "indelible-mcp", "package.json"));
+  candidates.push("/usr/local/lib/node_modules/indelible-mcp/package.json");
+  candidates.push("/usr/lib/node_modules/indelible-mcp/package.json");
+  for (const p of candidates) {
+    try {
+      if (!existsSync14(p)) continue;
+      const pkg = JSON.parse(readFileSync10(p, "utf8"));
+      if (pkg && pkg.name === "indelible-mcp" && pkg.version) return pkg.version;
+    } catch {
+    }
+  }
+  return "unknown";
+}
+function readJson(path) {
+  try {
+    return existsSync14(path) ? JSON.parse(readFileSync10(path, "utf8")) : null;
+  } catch {
+    return null;
+  }
+}
+function getWalletAddress(config) {
+  return config?.address || config?.wallet_address || config?.wallet?.address || null;
+}
+function getRecentReceipts(n = 5) {
+  try {
+    const p = join13(INDELIBLE_DIR, "save-log.jsonl");
+    if (!existsSync14(p)) return [];
+    const lines = readFileSync10(p, "utf8").trim().split("\n").filter(Boolean).slice(-n);
+    return lines.map((l) => {
+      try {
+        const e = JSON.parse(l);
+        return {
+          txid: e.txid || e.txId || null,
+          source: e.source || null,
+          bridge: e.bridge || null,
+          confirmed: e.confirmed ?? null,
+          error: e.error || null,
+          ts: e.ts || e.timestamp || null
+        };
+      } catch {
+        return null;
+      }
+    }).filter(Boolean);
+  } catch {
+    return [];
+  }
+}
+function redactSecrets2(s) {
+  if (s == null) return s;
+  return String(s).replace(/\b[KL5][1-9A-HJ-NP-Za-km-z]{50,51}\b/g, "[REDACTED-WIF]");
+}
+async function reportBug(args2 = {}, mcpVersion) {
+  const { summary, description, severity = "medium", tool_name = null, last_error = null } = args2;
+  if (!summary || !description) {
+    return { success: false, error: "summary and description are required (you supply the narrative; the tool supplies the facts)." };
+  }
+  const config = readJson(join13(INDELIBLE_DIR, "config.json")) || {};
+  const payload = {
+    // AI-supplied narrative (defensively redacted + length-capped)
+    summary: redactSecrets2(summary).slice(0, 200),
+    description: redactSecrets2(description).slice(0, 5e3),
+    severity: ["low", "medium", "high"].includes(severity) ? severity : "medium",
+    tool_name: tool_name ? String(tool_name).slice(0, 80) : null,
+    last_error: redactSecrets2(last_error),
+    // Machine-pulled facts (the AI cannot get these wrong)
+    mcp_version: getMcpVersion(mcpVersion),
+    wallet_address: getWalletAddress(config),
+    recent_receipts: getRecentReceipts(5),
+    environment: { os: `${os.platform()} ${os.release()}`, arch: os.arch(), node: process.version },
+    reported_at: (/* @__PURE__ */ new Date()).toISOString(),
+    client: "indelible-mcp"
+  };
+  try {
+    const resp = await fetch(INTAKE_URL, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify(payload)
+    });
+    if (!resp.ok) {
+      return { success: false, error: `intake responded ${resp.status}`, sent: { summary: payload.summary, mcp_version: payload.mcp_version } };
+    }
+    const data = await resp.json().catch(() => ({}));
+    if (data.known_issue) {
+      return { success: true, status: "known_issue", issue_id: data.issue_id || null, message: data.message || "Matched a known, already-fixed issue." };
+    }
+    return { success: true, status: "filed", ticket_id: data.ticket_id || null, message: data.message || "Bug report sent to the Indelible team." };
+  } catch (err) {
+    return { success: false, error: `could not reach intake (${err.message}). Fallback: save_file the report on-chain and share the txid.` };
+  }
+}
+
 // mcp-server/tools/share_session.js
 init_config_customer();
 init_spv();
@@ -6086,16 +6295,16 @@ init_wall_stub();
 init_wall_stub();
 init_wall_stub();
 init_wall_stub();
-var PROJECT_ROOT_FOR_CLONE_CHECK = resolve(dirname4(fileURLToPath(import.meta.url)), "../..");
-var CONTEXT_FILE2 = join13(homedir12(), ".indelible", "indelible-context.jsonl");
+var PROJECT_ROOT_FOR_CLONE_CHECK = resolve(dirname5(fileURLToPath2(import.meta.url)), "../..");
+var CONTEXT_FILE2 = join14(homedir13(), ".indelible", "indelible-context.jsonl");
 function installHooks() {
-  const claudeDir = join13(homedir12(), ".claude");
-  const settingsPath = join13(claudeDir, "settings.local.json");
-  if (!existsSync14(claudeDir)) mkdirSync6(claudeDir, { recursive: true });
+  const claudeDir = join14(homedir13(), ".claude");
+  const settingsPath = join14(claudeDir, "settings.local.json");
+  if (!existsSync15(claudeDir)) mkdirSync6(claudeDir, { recursive: true });
   let settings = {};
-  if (existsSync14(settingsPath)) {
+  if (existsSync15(settingsPath)) {
     try {
-      settings = JSON.parse(readFileSync10(settingsPath, "utf8"));
+      settings = JSON.parse(readFileSync11(settingsPath, "utf8"));
     } catch {
       settings = {};
     }
@@ -6110,6 +6319,9 @@ function installHooks() {
   const hasSessionStart = settings.hooks.SessionStart?.some(
     (h) => h.hooks?.some((hh) => hh.command?.includes("indelible-mcp hook session-start")) || h.command?.includes("indelible-mcp hook session-start")
   );
+  const hasPreToolUse = settings.hooks.PreToolUse?.some(
+    (h) => h.hooks?.some((hh) => hh.command?.includes("indelible-mcp hook pre-tool-use")) || h.command?.includes("indelible-mcp hook pre-tool-use")
+  );
   const installed = [];
   if (!hasPreCompact) {
     if (!settings.hooks.PreCompact) settings.hooks.PreCompact = [];
@@ -6135,9 +6347,38 @@ function installHooks() {
     });
     installed.push("SessionStart:style");
   }
+  if (!hasPreToolUse) {
+    if (!settings.hooks.PreToolUse) settings.hooks.PreToolUse = [];
+    settings.hooks.PreToolUse.push({
+      matcher: "Bash",
+      hooks: [{ type: "command", command: "indelible-mcp hook pre-tool-use" }]
+    });
+    installed.push("PreToolUse:guardrails");
+  }
   writeFileSync7(settingsPath, JSON.stringify(settings, null, 2));
   return { settingsPath, installed, alreadyInstalled: installed.length === 0 };
 }
+function runPreToolUseGuard() {
+  let code = 0;
+  try {
+    const raw = readFileSync11(0, "utf8").trim();
+    if (!raw) process.exit(0);
+    const hit = evaluate(JSON.parse(raw));
+    if (hit) {
+      if (hit.severity === "BLOCK") {
+        process.stderr.write(`[indelible:${hit.id}] BLOCKED: ${hit.reason}
+`);
+        code = 2;
+      } else {
+        process.stdout.write(`[indelible:${hit.id}] advisory: ${hit.reason} (not blocked)
+`);
+      }
+    }
+  } catch {
+    code = 0;
+  }
+  process.exit(code);
+}
 async function runCli(args2) {
   const command = args2[0];
   switch (command) {
@@ -6325,7 +6566,7 @@ Commands:
 }
 function printHelp() {
   console.log(`
-Indelible MCP \u2014 Blockchain memory for Claude Code (v4.5.1)
+Indelible MCP \u2014 Blockchain memory for Claude Code (v4.6.0)
 
 Setup:
   indelible-mcp setup --wif=KEY --pin=PIN    Import and encrypt your private key
@@ -6365,6 +6606,7 @@ Payments:
 Hooks (auto-called by Claude Code):
   indelible-mcp hook pre-compact             Auto-save before compaction
   indelible-mcp hook post-compact            Auto-restore after compaction
+  indelible-mcp hook pre-tool-use            Guardrails: block a key leak / flag an irreversible command
 
 Get your key: Sign in at indelible.one \u2192 Settings \u2192 Private Key
 Learn more: https://indelible.one
@@ -6399,20 +6641,20 @@ async function runPreCompactSave() {
   process.exit(0);
 }
 function findMemoryDir() {
-  const projectsDir = join13(homedir12(), ".claude", "projects");
-  if (!existsSync14(projectsDir)) return null;
+  const projectsDir = join14(homedir13(), ".claude", "projects");
+  if (!existsSync15(projectsDir)) return null;
   let newestTime = 0;
   let newestProject = null;
   const projects = readdirSync(projectsDir);
   for (const project of projects) {
-    const projectPath = join13(projectsDir, project);
+    const projectPath = join14(projectsDir, project);
     try {
       const pStat = statSync(projectPath);
       if (!pStat.isDirectory()) continue;
       const files = readdirSync(projectPath);
       for (const file of files) {
         if (!file.endsWith(".jsonl")) continue;
-        const fStat = statSync(join13(projectPath, file));
+        const fStat = statSync(join14(projectPath, file));
         if (fStat.mtimeMs > newestTime) {
           newestTime = fStat.mtimeMs;
           newestProject = projectPath;
@@ -6421,7 +6663,7 @@ function findMemoryDir() {
     } catch {
     }
   }
-  return newestProject ? join13(newestProject, "memory") : null;
+  return newestProject ? join14(newestProject, "memory") : null;
 }
 async function runPostCompactRestore() {
   const config = await loadConfig();
@@ -6470,10 +6712,10 @@ async function runPostCompactRestore() {
     try {
       const memoryDir = findMemoryDir();
       if (memoryDir && (config.memory_file_txid || config.session_history_txid)) {
-        if (!existsSync14(memoryDir)) mkdirSync6(memoryDir, { recursive: true });
+        if (!existsSync15(memoryDir)) mkdirSync6(memoryDir, { recursive: true });
         if (config.memory_file_txid) {
-          const memPath = join13(memoryDir, "MEMORY.md");
-          if (!existsSync14(memPath)) {
+          const memPath = join14(memoryDir, "MEMORY.md");
+          if (!existsSync15(memPath)) {
             const memResult = await loadFile(config.memory_file_txid, { outputPath: memPath });
             if (memResult.success) {
               process.stderr.write(`Indelible: MEMORY.md restored from chain (file was missing)
@@ -6482,8 +6724,8 @@ async function runPostCompactRestore() {
           }
         }
         if (config.session_history_txid) {
-          const histPath = join13(memoryDir, "session-history.md");
-          if (!existsSync14(histPath)) {
+          const histPath = join14(memoryDir, "session-history.md");
+          if (!existsSync15(histPath)) {
             const histResult = await loadFile(config.session_history_txid, { outputPath: histPath });
             if (histResult.success) {
               process.stderr.write(`Indelible: session-history.md restored from chain (file was missing)
@@ -6499,9 +6741,9 @@ async function runPostCompactRestore() {
     try {
       const histDir = findMemoryDir();
       if (histDir) {
-        const histPath = join13(histDir, "session-history.md");
-        if (existsSync14(histPath)) {
-          const histContent = readFileSync10(histPath, "utf-8");
+        const histPath = join14(histDir, "session-history.md");
+        if (existsSync15(histPath)) {
+          const histContent = readFileSync11(histPath, "utf-8");
           const lines = histContent.split("\n");
           const entryStarts = [];
           for (let i = 0; i < lines.length; i++) {
@@ -6543,7 +6785,7 @@ function readStdin() {
 }
 var SERVER_INFO = {
   name: "indelible",
-  version: "4.5.1",
+  version: "4.6.0",
   description: "Blockchain-backed memory and code storage for Claude Code"
 };
 var TOOLS = [
@@ -6827,6 +7069,21 @@ var TOOLS = [
       required: []
     }
   },
+  {
+    name: "report_bug",
+    description: `File an ACCURATE bug report to the Indelible team. You supply ONLY the narrative (summary, description, severity, optional tool_name/last_error). The tool auto-attaches the real MCP version, wallet address, recent save receipts, and environment \u2014 so DO NOT invent versions, txids, URLs, or destinations; leave the facts to the tool. Before filing: (1) triage transients \u2014 retry "No UTXOs"/"gateway unreachable" blips (usually an unconfirmed change UTXO) before reporting; (2) do not file known/already-fixed issues (the server auto-matches these); (3) get the user's OK first. Returns status:"filed" (ticket_id) or status:"known_issue" (instant triage).`,
+    inputSchema: {
+      type: "object",
+      properties: {
+        summary: { type: "string", description: "One-line summary of the bug." },
+        description: { type: "string", description: "What you were doing, what went wrong, and exact repro steps." },
+        severity: { type: "string", enum: ["low", "medium", "high"], description: "User-facing impact." },
+        tool_name: { type: "string", description: "Which Indelible tool/command failed (optional)." },
+        last_error: { type: "string", description: "The exact error string you saw (optional)." }
+      },
+      required: ["summary", "description"]
+    }
+  },
   {
     name: "share_session",
     description: "Issue a viewing key for a saved session, granting selective access to a recipient (g-170). Recipient gets an ECIES-wrapped content key bound to their wallet.",
@@ -6947,6 +7204,15 @@ async function handleMcpRequest(request) {
               max_index: args2?.max_index || 150
             });
             break;
+          case "report_bug":
+            result = await reportBug({
+              summary: args2?.summary,
+              description: args2?.description,
+              severity: args2?.severity || "medium",
+              tool_name: args2?.tool_name || null,
+              last_error: args2?.last_error || null
+            });
+            break;
           case "share_session":
             result = await shareSession({
               session_txid: args2?.session_txid,
@@ -7022,11 +7288,11 @@ async function runWizard() {
     }
     let mcpOk = false;
     for (const cfgPath of [
-      join13(homedir12(), ".claude.json"),
-      join13(homedir12(), ".claude", "settings.json")
+      join14(homedir13(), ".claude.json"),
+      join14(homedir13(), ".claude", "settings.json")
     ]) {
       try {
-        const s = JSON.parse(readFileSync10(cfgPath, "utf8"));
+        const s = JSON.parse(readFileSync11(cfgPath, "utf8"));
         if (s?.mcpServers?.indelible) {
           mcpOk = true;
           break;
@@ -7036,10 +7302,10 @@ async function runWizard() {
     }
     console.log(mcpOk ? "  \u2713 MCP registered with Claude Code" : "  \u2717 MCP not registered");
     if (!mcpOk) allGood = false;
-    const hooksPath = join13(homedir12(), ".claude", "settings.local.json");
+    const hooksPath = join14(homedir13(), ".claude", "settings.local.json");
     let hooksOk = false;
     try {
-      const s = JSON.parse(readFileSync10(hooksPath, "utf8"));
+      const s = JSON.parse(readFileSync11(hooksPath, "utf8"));
       hooksOk = s?.hooks?.PreCompact?.some(
         (h) => h.hooks?.some((hh) => hh.command?.includes("indelible-mcp")) || h.command?.includes("indelible-mcp")
       ) && s?.hooks?.SessionStart?.some(
@@ -7273,6 +7539,8 @@ if (args[0] === "hook") {
       }
       process.exit(0);
     })();
+  } else if (args[1] === "pre-tool-use") {
+    runPreToolUseGuard();
   } else {
     console.error("Unknown hook:", args[1]);
     process.exit(1);