iranti 0.3.41 → 0.4.1

package/dist/scripts/iranti-cli.js

@@ -2329,20 +2329,23 @@ try {
 const pendingEdits = debt.pendingEdits || 0;
 const lastEditAt = debt.lastEditAt || null;
 
-if (pendingEdits < 1) {
+// Block only after this many unique file edits are pending.
+const WRITE_DEBT_BLOCK_THRESHOLD = 5;
+
+if (pendingEdits < WRITE_DEBT_BLOCK_THRESHOLD) {
     process.exit(0);
 }
 
 const output = JSON.stringify({
     hookEventName: 'PreToolUse',
     permissionDecision: 'deny',
-    permissionDecisionReason: \`Iranti write-guard: \${pendingEdits} file edit(s) since last iranti_write (last edit: \${lastEditAt || 'unknown'}). Call iranti_write for each pending edit before making new changes.\`,
+    permissionDecisionReason: \`Iranti write-guard: \${pendingEdits} file edit(s) pending iranti_write (threshold: \${WRITE_DEBT_BLOCK_THRESHOLD}). Call iranti_write for pending edits before making new changes.\`,
     additionalContext: [
         'IRANTI WRITE-GUARD BLOCKED THIS EDIT.',
         \`You have \${pendingEdits} pending file edit(s) that have not been written to Iranti shared memory.\`,
-        'Before making any more edits, you MUST call iranti_write for each pending edit.',
+        \`Before making any more edits, call iranti_write for pending edits to bring debt below \${WRITE_DEBT_BLOCK_THRESHOLD}.\`,
         'Include: entity (project/[id]/file/[filename]), absolutePath, lines changed, what changed and why.',
-        'After writing all pending edits, this guard will allow new edits.',
+        'After writing pending edits below the threshold, this guard will allow new edits.',
     ].join('\\n'),
 });
 

package/dist/scripts/iranti-mcp.js

@@ -89,6 +89,10 @@ const WATCHER_EXCLUDE_DIRS = new Set([
     '__pycache__', '.cache', '.iranti',
 ]);
 const WRITE_DEBT_FILENAME = '.iranti-write-debt';
+// Block attend only after this many unique file edits are pending — avoids
+// false-positive blocks on single-file changes while still enforcing logging
+// discipline when a meaningful batch of edits has accumulated.
+const WRITE_DEBT_BLOCK_THRESHOLD = 5;
 let _activeWatcher = null;
 let _watchedCwd = null;
 let _watchDebounceTimer = null;
@@ -453,7 +457,7 @@ function startFileWatcher(cwd) {
     }
 }
 /**
- * Read .iranti-write-debt and return an isError gate result when debt > 0.
+ * Read .iranti-write-debt and return an isError gate result when debt >= WRITE_DEBT_BLOCK_THRESHOLD.
  * Returns null when attend should proceed normally.
  */
 function checkWriteDebtForAttend(cwd) {
@@ -463,7 +467,7 @@ function checkWriteDebtForAttend(cwd) {
             return null;
         const debt = JSON.parse(node_fs_1.default.readFileSync(debtFile, 'utf8'));
         const pendingEdits = debt.pendingEdits || 0;
-        if (pendingEdits < 1)
+        if (pendingEdits < WRITE_DEBT_BLOCK_THRESHOLD)
             return null;
         const edits = debt.edits || [];
         const fileList = edits.length > 0
@@ -473,12 +477,12 @@ function checkWriteDebtForAttend(cwd) {
             content: [{
                     type: 'text',
                     text: [
-                        `WRITE_GUARD_BLOCKED: ${pendingEdits} file edit(s) pending iranti_write.`,
+                        `WRITE_GUARD_BLOCKED: ${pendingEdits} file edit(s) pending iranti_write (threshold: ${WRITE_DEBT_BLOCK_THRESHOLD}).`,
                         `Changed files (most recent ${Math.min(pendingEdits, 10)}):`,
                         fileList,
                         '',
                         `Required: call iranti_write for each changed file before iranti_attend can proceed.`,
-                        `After writing all pending edits, re-call iranti_attend to get your memory brief.`,
+                        `After writing pending edits below the threshold, re-call iranti_attend to get your memory brief.`,
                     ].join('\n'),
                 }],
             isError: true,
@@ -801,7 +805,7 @@ async function main() {
     // DB startup is deferred to first tool call via dbStartup() — see above.
     const server = new mcp_js_1.McpServer({
         name: 'iranti-mcp',
-        version: '0.3.41',
+        version: '0.4.1',
     });
     server.registerTool('iranti_handshake', {
         description: `Initialize or refresh an agent's working-memory brief for the current task.

package/dist/scripts/setup.js

@@ -64,7 +64,8 @@ async function isSeeded() {
     try {
         const entry = await (0, client_1.getDb)().knowledgeEntry.findUnique({
             where: {
-                entityType_entityId_key: {
+                userId_entityType_entityId_key: {
+                    userId: 1,
                     entityType: 'system',
                     entityId: 'library',
                     key: 'initialization_log',

package/dist/src/api/middleware/auth.d.ts

@@ -19,6 +19,8 @@ export interface IrantiAuthContext {
     keyId: string;
     owner: string;
     scopes: string[];
+    userId: number;
+    tokenScope: string;
 }
 declare global {
     namespace Express {

package/dist/src/api/middleware/auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/api/middleware/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAG1D,MAAM,WAAW,iBAAiB;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,OAAO,CAAC,MAAM,CAAC;IACX,UAAU,OAAO,CAAC;QACd,UAAU,OAAO;YACb,UAAU,CAAC,EAAE,iBAAiB,CAAC;SAClC;KACJ;CACJ;AAmBD,wBAAsB,YAAY,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAiBjG"}
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../../../src/api/middleware/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAG1D,MAAM,WAAW,iBAAiB;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;CACtB;AAED,OAAO,CAAC,MAAM,CAAC;IACX,UAAU,OAAO,CAAC;QACd,UAAU,OAAO;YACb,UAAU,CAAC,EAAE,iBAAiB,CAAC;SAClC;KACJ;CACJ;AAmBD,wBAAsB,YAAY,CAAC,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAmBjG"}

package/dist/src/api/middleware/auth.js

@@ -45,6 +45,8 @@ async function authenticate(req, res, next) {
         keyId: result.keyId ?? 'unknown',
         owner: result.owner ?? 'unknown',
         scopes: result.scopes ?? ['*'],
+        userId: result.userId ?? 1,
+        tokenScope: result.tokenScope ?? 'dev_cli',
     };
     next();
 }

package/dist/src/api/middleware/auth.js.map

@@ -1 +1 @@
-{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../../src/api/middleware/auth.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;GAcG;;AAqCH,oCAiBC;AAnDD,oDAAwD;AAiBxD,SAAS,aAAa,CAAC,GAAY;IAC/B,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;IAC/C,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;IACzE,IAAI,OAAO,SAAS,KAAK,QAAQ,IAAI,SAAS,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/D,OAAO,SAAS,CAAC,IAAI,EAAE,CAAC;IAC5B,CAAC;IAED,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;IAChD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;IACpE,IAAI,CAAC,IAAI;QAAE,OAAO,SAAS,CAAC;IAE5B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;IAC7C,IAAI,CAAC,KAAK;QAAE,OAAO,SAAS,CAAC;IAC7B,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AAChD,CAAC;AAEM,KAAK,UAAU,YAAY,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;IAC9E,MAAM,WAAW,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;IAEvC,MAAM,MAAM,GAAG,MAAM,IAAA,wBAAc,EAAC,WAAW,CAAC,CAAC;IACjD,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;QACb,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,oDAAoD,EAAE,CAAC,CAAC;QACvH,OAAO;IACX,CAAC;IAED,GAAG,CAAC,UAAU,GAAG;QACb,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,UAAU;QAC/B,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,SAAS;QAChC,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,SAAS;QAChC,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,CAAC,GAAG,CAAC;KACjC,CAAC;IAEF,IAAI,EAAE,CAAC;AACX,CAAC"}
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../../src/api/middleware/auth.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;GAcG;;AAuCH,oCAmBC;AAvDD,oDAAwD;AAmBxD,SAAS,aAAa,CAAC,GAAY;IAC/B,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;IAC/C,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;IACzE,IAAI,OAAO,SAAS,KAAK,QAAQ,IAAI,SAAS,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/D,OAAO,SAAS,CAAC,IAAI,EAAE,CAAC;IAC5B,CAAC;IAED,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;IAChD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;IACpE,IAAI,CAAC,IAAI;QAAE,OAAO,SAAS,CAAC;IAE5B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;IAC7C,IAAI,CAAC,KAAK;QAAE,OAAO,SAAS,CAAC;IAC7B,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC9B,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AAChD,CAAC;AAEM,KAAK,UAAU,YAAY,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB;IAC9E,MAAM,WAAW,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;IAEvC,MAAM,MAAM,GAAG,MAAM,IAAA,wBAAc,EAAC,WAAW,CAAC,CAAC;IACjD,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC;QACb,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,IAAI,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,oDAAoD,EAAE,CAAC,CAAC;QACvH,OAAO;IACX,CAAC;IAED,GAAG,CAAC,UAAU,GAAG;QACb,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,UAAU;QAC/B,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,SAAS;QAChC,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,SAAS;QAChC,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,CAAC,GAAG,CAAC;QAC9B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,CAAC;QAC1B,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,SAAS;KAC7C,CAAC;IAEF,IAAI,EAAE,CAAC;AACX,CAAC"}

package/dist/src/api/routes/batch.js

@@ -39,7 +39,8 @@ exports.batchRouter.post("/", async (req, res) => {
             try {
                 const row = await db.knowledgeEntry.findUnique({
                     where: {
-                        entityType_entityId_key: {
+                        userId_entityType_entityId_key: {
+                            userId: 1,
                             entityType,
                             entityId,
                             key: it.key,

package/dist/src/api/routes/batch.js.map

@@ -1 +1 @@
-{"version":3,"file":"batch.js","sourceRoot":"","sources":["../../../../src/api/routes/batch.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;;AAEH,qCAAoD;AACpD,iDAA6C;AAEhC,QAAA,WAAW,GAAW,IAAA,gBAAM,GAAE,CAAC;AAE5C;;GAEG;AACH,mBAAW,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAC1D,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAAqD,CAAC;QAE5E,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChD,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iCAAiC,EAAE,CAAC,CAAC;QAC5E,CAAC;QAED,IAAI,KAAK,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YACvB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;QACrE,CAAC;QAED,MAAM,EAAE,GAAG,IAAA,cAAK,GAAE,CAAC;QAEnB,6CAA6C;QAC7C,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAC/B,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YACrB,MAAM,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACnD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAEhC,IAAI,CAAC,UAAU,IAAI,CAAC,QAAQ,IAAI,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC;gBACxC,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;YACxD,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,MAAM,EAAE,CAAC,cAAc,CAAC,UAAU,CAAC;oBAC7C,KAAK,EAAE;wBACL,uBAAuB,EAAE;4BACvB,UAAU;4BACV,QAAQ;4BACR,GAAG,EAAE,EAAE,CAAC,GAAG;yBACZ;qBACF;iBACF,CAAC,CAAC;gBAEH,IAAI,CAAC,GAAG,EAAE,CAAC;oBACT,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;gBACxD,CAAC;gBACD,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;oBACpB,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;gBACxD,CAAC;gBAED,OAAO;oBACL,MAAM,EAAE,EAAE,CAAC,MAAM;oBACjB,GAAG,EAAE,EAAE,CAAC,GAAG;oBACX,GAAG,EAAE,IAAI;oBACT,KAAK,EAAE,GAAG,CAAC,QAAQ;oBACnB,OAAO,EAAE,GAAG,CAAC,YAAY;oBACzB,UAAU,EAAE,GAAG,CAAC,UAAU;oBAC1B,MAAM,EAAE,GAAG,CAAC,MAAM;iBACnB,CAAC;YACJ,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;YACxD,CAAC;QACH,CAAC,CAAC,CACH,CAAC;QAEF,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC;IAC/B,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,EAAE,CAAC,CAAC;IAC/F,CAAC;AACH,CAAC,CAAC,CAAC"}
+{"version":3,"file":"batch.js","sourceRoot":"","sources":["../../../../src/api/routes/batch.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;GAWG;;;AAEH,qCAAoD;AACpD,iDAA6C;AAEhC,QAAA,WAAW,GAAW,IAAA,gBAAM,GAAE,CAAC;AAE5C;;GAEG;AACH,mBAAW,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAC1D,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAAqD,CAAC;QAE5E,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAChD,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iCAAiC,EAAE,CAAC,CAAC;QAC5E,CAAC;QAED,IAAI,KAAK,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YACvB,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;QACrE,CAAC;QAED,MAAM,EAAE,GAAG,IAAA,cAAK,GAAE,CAAC;QAEnB,6CAA6C;QAC7C,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAC/B,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YACrB,MAAM,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACnD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAEhC,IAAI,CAAC,UAAU,IAAI,CAAC,QAAQ,IAAI,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC;gBACxC,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;YACxD,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,MAAM,EAAE,CAAC,cAAc,CAAC,UAAU,CAAC;oBAC7C,KAAK,EAAE;wBACL,8BAA8B,EAAE;4BAC9B,MAAM,EAAE,CAAC;4BACT,UAAU;4BACV,QAAQ;4BACR,GAAG,EAAE,EAAE,CAAC,GAAG;yBACZ;qBACF;iBACF,CAAC,CAAC;gBAEH,IAAI,CAAC,GAAG,EAAE,CAAC;oBACT,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;gBACxD,CAAC;gBACD,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;oBACpB,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;gBACxD,CAAC;gBAED,OAAO;oBACL,MAAM,EAAE,EAAE,CAAC,MAAM;oBACjB,GAAG,EAAE,EAAE,CAAC,GAAG;oBACX,GAAG,EAAE,IAAI;oBACT,KAAK,EAAE,GAAG,CAAC,QAAQ;oBACnB,OAAO,EAAE,GAAG,CAAC,YAAY;oBACzB,UAAU,EAAE,GAAG,CAAC,UAAU;oBAC1B,MAAM,EAAE,GAAG,CAAC,MAAM;iBACnB,CAAC;YACJ,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;YACxD,CAAC;QACH,CAAC,CAAC,CACH,CAAC;QAEF,OAAO,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC;IAC/B,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,EAAE,CAAC,CAAC;IAC/F,CAAC;AACH,CAAC,CAAC,CAAC"}

package/dist/src/api/routes/consumerMcp.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Consumer MCP route — `/mcp/:token`
+ *
+ * Serves a simplified, user-scoped Model Context Protocol tool surface for
+ * Claude.ai, ChatGPT, and other MCP-compatible AI frontends.
+ *
+ * Authentication: the raw token is extracted from the URL path, hashed with
+ * SHA256+pepper, and looked up in the `tokens` table. A missing, revoked, or
+ * wrong-scope token returns 401 before any MCP handshake begins.
+ *
+ * Tool surface (scope mcp_consumer_t0):
+ *  - iranti_remember  — store a personal memory
+ *  - iranti_recall    — retrieve a personal memory
+ *  - iranti_forget    — delete a personal memory
+ *
+ * Transport: MCP Streamable HTTP (stateless — one transport per request).
+ * Supports both POST (tool calls) and GET (SSE event stream) on the same path,
+ * as required by the MCP spec.
+ *
+ * All reads and writes are scoped to the `userId` resolved from the token, so
+ * no cross-user data leakage is possible at the query layer.
+ */
+import { Router } from 'express';
+export declare function consumerMcpRoutes(): Router;
+//# sourceMappingURL=consumerMcp.d.ts.map

package/dist/src/api/routes/consumerMcp.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"consumerMcp.d.ts","sourceRoot":"","sources":["../../../../src/api/routes/consumerMcp.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;AAEH,OAAO,EAAE,MAAM,EAAqB,MAAM,SAAS,CAAC;AAQpD,wBAAgB,iBAAiB,IAAI,MAAM,CA0K1C"}

package/dist/src/api/routes/consumerMcp.js

@@ -0,0 +1,197 @@
+"use strict";
+/**
+ * Consumer MCP route — `/mcp/:token`
+ *
+ * Serves a simplified, user-scoped Model Context Protocol tool surface for
+ * Claude.ai, ChatGPT, and other MCP-compatible AI frontends.
+ *
+ * Authentication: the raw token is extracted from the URL path, hashed with
+ * SHA256+pepper, and looked up in the `tokens` table. A missing, revoked, or
+ * wrong-scope token returns 401 before any MCP handshake begins.
+ *
+ * Tool surface (scope mcp_consumer_t0):
+ *  - iranti_remember  — store a personal memory
+ *  - iranti_recall    — retrieve a personal memory
+ *  - iranti_forget    — delete a personal memory
+ *
+ * Transport: MCP Streamable HTTP (stateless — one transport per request).
+ * Supports both POST (tool calls) and GET (SSE event stream) on the same path,
+ * as required by the MCP spec.
+ *
+ * All reads and writes are scoped to the `userId` resolved from the token, so
+ * no cross-user data leakage is possible at the query layer.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.consumerMcpRoutes = consumerMcpRoutes;
+const express_1 = require("express");
+const mcp_js_1 = require("@modelcontextprotocol/sdk/server/mcp.js");
+const streamableHttp_js_1 = require("@modelcontextprotocol/sdk/server/streamableHttp.js");
+const z = __importStar(require("zod/v4"));
+const client_1 = require("../../library/client");
+const apiKeys_1 = require("../../security/apiKeys");
+function consumerMcpRoutes() {
+    const router = (0, express_1.Router)();
+    // Handle both GET (SSE) and POST (tool calls) on the same path
+    router.all('/:token', async (req, res) => {
+        const rawToken = Array.isArray(req.params['token']) ? req.params['token'][0] : req.params['token'];
+        if (!rawToken) {
+            res.status(401).json({ error: 'Missing token' });
+            return;
+        }
+        const db = (0, client_1.getDb)();
+        // ── Token authentication ──────────────────────────────────────────────────
+        const tokenHash = (0, apiKeys_1.hashApiKeySecret)(rawToken);
+        const tokenRecord = await db.token.findUnique({ where: { tokenHash } });
+        if (!tokenRecord || tokenRecord.revokedAt !== null) {
+            res.status(401).json({ error: 'Invalid or revoked token' });
+            return;
+        }
+        // Consumer endpoint only serves mcp_consumer_* scopes
+        if (!tokenRecord.scope.startsWith('mcp_consumer')) {
+            res.status(403).json({ error: 'Token scope does not permit MCP consumer access' });
+            return;
+        }
+        const userId = tokenRecord.userId;
+        // Fire-and-forget lastUsedAt update (non-blocking)
+        db.token.update({ where: { tokenHash }, data: { lastUsedAt: new Date() } }).catch(() => { });
+        // ── MCP server setup (stateless — one per request) ────────────────────────
+        const mcpServer = new mcp_js_1.McpServer({
+            name: 'iranti',
+            version: '1.0.0',
+        });
+        // iranti_remember — store a personal memory
+        mcpServer.tool('iranti_remember', 'Store a personal memory in your Iranti knowledge base.', {
+            entity: z.string().describe('Entity identifier. Use "person/me" for personal facts.'),
+            key: z.string().describe('Fact key — a stable identifier for this memory (e.g. "dietary_preference")'),
+            value: z.string().describe('The fact value to remember'),
+            summary: z.string().optional().describe('Short human-readable summary (auto-derived from value if omitted)'),
+        }, async ({ entity, key, value, summary }) => {
+            const [entityType, ...rest] = entity.split('/');
+            const entityId = rest.join('/') || 'me';
+            const valueSummary = summary ?? value.slice(0, 120);
+            const valueRaw = { text: value };
+            await db.knowledgeEntry.upsert({
+                where: {
+                    userId_entityType_entityId_key: { userId, entityType, entityId, key },
+                },
+                update: {
+                    valueRaw,
+                    valueSummary,
+                    source: `mcp_consumer`,
+                    updatedAt: new Date(),
+                    lastAccessedAt: new Date(),
+                },
+                create: {
+                    userId,
+                    entityType,
+                    entityId,
+                    key,
+                    valueRaw,
+                    valueSummary,
+                    confidence: 80,
+                    source: `mcp_consumer`,
+                    createdBy: `user/${userId}`,
+                    surface: tokenRecord.surface,
+                    conflictLog: [],
+                },
+            });
+            return {
+                content: [{ type: 'text', text: `Remembered: ${entity}/${key} = "${valueSummary}"` }],
+            };
+        });
+        // iranti_recall — retrieve a personal memory
+        mcpServer.tool('iranti_recall', 'Retrieve a personal memory from your Iranti knowledge base.', {
+            entity: z.string().describe('Entity identifier (e.g. "person/me")'),
+            key: z.string().describe('Fact key to retrieve'),
+        }, async ({ entity, key }) => {
+            const [entityType, ...rest] = entity.split('/');
+            const entityId = rest.join('/') || 'me';
+            const entry = await db.knowledgeEntry.findUnique({
+                where: {
+                    userId_entityType_entityId_key: { userId, entityType, entityId, key },
+                },
+            });
+            if (!entry) {
+                return {
+                    content: [{ type: 'text', text: `No memory found for ${entity}/${key}` }],
+                };
+            }
+            // Update access timestamp
+            db.knowledgeEntry.update({
+                where: { userId_entityType_entityId_key: { userId, entityType, entityId, key } },
+                data: { lastAccessedAt: new Date() },
+            }).catch(() => { });
+            const valueText = typeof entry.valueRaw === 'string'
+                ? entry.valueRaw
+                : entry.valueRaw?.text ?? JSON.stringify(entry.valueRaw);
+            return {
+                content: [{ type: 'text', text: `${entry.valueSummary}\n\n${valueText}` }],
+            };
+        });
+        // iranti_forget — delete a personal memory
+        mcpServer.tool('iranti_forget', 'Delete a personal memory from your Iranti knowledge base.', {
+            entity: z.string().describe('Entity identifier (e.g. "person/me")'),
+            key: z.string().describe('Fact key to forget'),
+        }, async ({ entity, key }) => {
+            const [entityType, ...rest] = entity.split('/');
+            const entityId = rest.join('/') || 'me';
+            const deleted = await db.knowledgeEntry.deleteMany({
+                where: { userId, entityType, entityId, key },
+            });
+            if (deleted.count === 0) {
+                return {
+                    content: [{ type: 'text', text: `No memory found for ${entity}/${key} — nothing to forget.` }],
+                };
+            }
+            return {
+                content: [{ type: 'text', text: `Forgotten: ${entity}/${key}` }],
+            };
+        });
+        // ── Stateless transport (one per request) ─────────────────────────────────
+        const transport = new streamableHttp_js_1.StreamableHTTPServerTransport({
+            sessionIdGenerator: undefined, // stateless mode
+        });
+        try {
+            await mcpServer.connect(transport);
+            await transport.handleRequest(req, res, req.body);
+        }
+        finally {
+            await mcpServer.close();
+        }
+    });
+    return router;
+}
+//# sourceMappingURL=consumerMcp.js.map

package/dist/src/api/routes/consumerMcp.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"consumerMcp.js","sourceRoot":"","sources":["../../../../src/api/routes/consumerMcp.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAUH,8CA0KC;AAlLD,qCAAoD;AACpD,oEAAoE;AACpE,0FAAmG;AACnG,0CAA4B;AAC5B,iDAA6C;AAC7C,oDAA0D;AAG1D,SAAgB,iBAAiB;IAC/B,MAAM,MAAM,GAAG,IAAA,gBAAM,GAAE,CAAC;IAExB,+DAA+D;IAC/D,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAiB,EAAE;QACzE,MAAM,QAAQ,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACnG,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC,CAAC;YACjD,OAAO;QACT,CAAC;QAED,MAAM,EAAE,GAAG,IAAA,cAAK,GAAE,CAAC;QAEnB,6EAA6E;QAC7E,MAAM,SAAS,GAAG,IAAA,0BAAgB,EAAC,QAAQ,CAAC,CAAC;QAC7C,MAAM,WAAW,GAAG,MAAM,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,KAAK,EAAE,EAAE,SAAS,EAAE,EAAE,CAAC,CAAC;QAExE,IAAI,CAAC,WAAW,IAAI,WAAW,CAAC,SAAS,KAAK,IAAI,EAAE,CAAC;YACnD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;YAC5D,OAAO;QACT,CAAC;QAED,sDAAsD;QACtD,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;YAClD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iDAAiD,EAAE,CAAC,CAAC;YACnF,OAAO;QACT,CAAC;QAED,MAAM,MAAM,GAAG,WAAW,CAAC,MAAM,CAAC;QAElC,mDAAmD;QACnD,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;QAE5F,6EAA6E;QAC7E,MAAM,SAAS,GAAG,IAAI,kBAAS,CAAC;YAC9B,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,OAAO;SACjB,CAAC,CAAC;QAEH,4CAA4C;QAC5C,SAAS,CAAC,IAAI,CACZ,iBAAiB,EACjB,wDAAwD,EACxD;YACE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,wDAAwD,CAAC;YACrF,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,4EAA4E,CAAC;YACtG,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,4BAA4B,CAAC;YACxD,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,mEAAmE,CAAC;SAC7G,EACD,KAAK,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE,EAAE;YACxC,MAAM,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAChD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;YAExC,MAAM,YAAY,GAAG,OAAO,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;YACpD,MAAM,QAAQ,GAAG,EAAE,IAAI,EAAE,KAAK,EAAkC,CAAC;YAEjE,MAAM,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC;gBAC7B,KAAK,EAAE;oBACL,8BAA8B,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,EAAE;iBACtE;gBACD,MAAM,EAAE;oBACN,QAAQ;oBACR,YAAY;oBACZ,MAAM,EAAE,cAAc;oBACtB,SAAS,EAAE,IAAI,IAAI,EAAE;oBACrB,cAAc,EAAE,IAAI,IAAI,EAAE;iBAC3B;gBACD,MAAM,EAAE;oBACN,MAAM;oBACN,UAAU;oBACV,QAAQ;oBACR,GAAG;oBACH,QAAQ;oBACR,YAAY;oBACZ,UAAU,EAAE,EAAE;oBACd,MAAM,EAAE,cAAc;oBACtB,SAAS,EAAE,QAAQ,MAAM,EAAE;oBAC3B,OAAO,EAAE,WAAW,CAAC,OAAO;oBAC5B,WAAW,EAAE,EAAE;iBAChB;aACF,CAAC,CAAC;YAEH,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,eAAe,MAAM,IAAI,GAAG,OAAO,YAAY,GAAG,EAAE,CAAC;aAC/F,CAAC;QACJ,CAAC,CACF,CAAC;QAEF,6CAA6C;QAC7C,SAAS,CAAC,IAAI,CACZ,eAAe,EACf,6DAA6D,EAC7D;YACE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,sCAAsC,CAAC;YACnE,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,sBAAsB,CAAC;SACjD,EACD,KAAK,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,EAAE;YACxB,MAAM,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAChD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;YAExC,MAAM,KAAK,GAAG,MAAM,EAAE,CAAC,cAAc,CAAC,UAAU,CAAC;gBAC/C,KAAK,EAAE;oBACL,8BAA8B,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,EAAE;iBACtE;aACF,CAAC,CAAC;YAEH,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO;oBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,uBAAuB,MAAM,IAAI,GAAG,EAAE,EAAE,CAAC;iBACnF,CAAC;YACJ,CAAC;YAED,0BAA0B;YAC1B,EAAE,CAAC,cAAc,CAAC,MAAM,CAAC;gBACvB,KAAK,EAAE,EAAE,8BAA8B,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,EAAE,EAAE;gBAChF,IAAI,EAAE,EAAE,cAAc,EAAE,IAAI,IAAI,EAAE,EAAE;aACrC,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;YAEnB,MAAM,SAAS,GAAG,OAAO,KAAK,CAAC,QAAQ,KAAK,QAAQ;gBAClD,CAAC,CAAC,KAAK,CAAC,QAAQ;gBAChB,CAAC,CAAE,KAAK,CAAC,QAA8B,EAAE,IAAI,IAAI,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;YAElF,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,GAAG,KAAK,CAAC,YAAY,OAAO,SAAS,EAAE,EAAE,CAAC;aACpF,CAAC;QACJ,CAAC,CACF,CAAC;QAEF,2CAA2C;QAC3C,SAAS,CAAC,IAAI,CACZ,eAAe,EACf,2DAA2D,EAC3D;YACE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,sCAAsC,CAAC;YACnE,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,oBAAoB,CAAC;SAC/C,EACD,KAAK,EAAE,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,EAAE;YACxB,MAAM,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAChD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;YAExC,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,cAAc,CAAC,UAAU,CAAC;gBACjD,KAAK,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,GAAG,EAAE;aAC7C,CAAC,CAAC;YAEH,IAAI,OAAO,CAAC,KAAK,KAAK,CAAC,EAAE,CAAC;gBACxB,OAAO;oBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,uBAAuB,MAAM,IAAI,GAAG,uBAAuB,EAAE,CAAC;iBACxG,CAAC;YACJ,CAAC;YAED,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,cAAc,MAAM,IAAI,GAAG,EAAE,EAAE,CAAC;aAC1E,CAAC;QACJ,CAAC,CACF,CAAC;QAEF,6EAA6E;QAC7E,MAAM,SAAS,GAAG,IAAI,iDAA6B,CAAC;YAClD,kBAAkB,EAAE,SAAS,EAAE,iBAAiB;SACjD,CAAC,CAAC;QAEH,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;YACnC,MAAM,SAAS,CAAC,aAAa,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,CAAC;QACpD,CAAC;gBAAS,CAAC;YACT,MAAM,SAAS,CAAC,KAAK,EAAE,CAAC;QAC1B,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/src/api/routes/feedback.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Feedback REST route for iranti (`/feedback`).
+ *
+ * Receives satisfaction signals submitted by the `iranti feedback` CLI command.
+ * Unauthenticated — CLI users do not hold API keys. Rate-limited by IP to
+ * discourage abuse. Idempotent on `feedbackId` (client UUID) via upsert, so
+ * the CLI offline-retry queue can safely replay submissions.
+ *
+ *  POST /feedback — accept and persist a FeedbackPayload
+ */
+import { Router } from 'express';
+export declare const feedbackRouter: Router;
+//# sourceMappingURL=feedback.d.ts.map

package/dist/src/api/routes/feedback.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"feedback.d.ts","sourceRoot":"","sources":["../../../../src/api/routes/feedback.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,MAAM,EAAqB,MAAM,SAAS,CAAC;AAIpD,eAAO,MAAM,cAAc,EAAE,MAAiB,CAAC"}

package/dist/src/api/routes/feedback.js

@@ -0,0 +1,111 @@
+"use strict";
+/**
+ * Feedback REST route for iranti (`/feedback`).
+ *
+ * Receives satisfaction signals submitted by the `iranti feedback` CLI command.
+ * Unauthenticated — CLI users do not hold API keys. Rate-limited by IP to
+ * discourage abuse. Idempotent on `feedbackId` (client UUID) via upsert, so
+ * the CLI offline-retry queue can safely replay submissions.
+ *
+ *  POST /feedback — accept and persist a FeedbackPayload
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.feedbackRouter = void 0;
+const express_1 = require("express");
+const client_1 = require("../../library/client");
+exports.feedbackRouter = (0, express_1.Router)();
+// ── Validation helpers ────────────────────────────────────────────────────────
+const VALID_TYPES = new Set(['bug', 'praise', 'suggestion', 'general']);
+const UUID_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+function isValidUuid(v) {
+    return typeof v === 'string' && UUID_RE.test(v);
+}
+function isValidRating(v) {
+    return typeof v === 'number' && Number.isInteger(v) && v >= 1 && v <= 5;
+}
+function isValidType(v) {
+    return typeof v === 'string' && VALID_TYPES.has(v);
+}
+function isNonEmptyString(v) {
+    return typeof v === 'string' && v.trim().length > 0;
+}
+function isValidIsoDate(v) {
+    if (typeof v !== 'string')
+        return false;
+    const d = new Date(v);
+    return !isNaN(d.getTime());
+}
+// ── POST /feedback ────────────────────────────────────────────────────────────
+exports.feedbackRouter.post('/', async (req, res) => {
+    const body = req.body ?? {};
+    // Required field validation
+    if (!isValidUuid(body.feedbackId)) {
+        return res.status(400).json({ error: 'feedbackId must be a valid UUID.' });
+    }
+    if (!isValidRating(body.rating)) {
+        return res.status(400).json({ error: 'rating must be an integer 1–5.' });
+    }
+    if (!isValidType(body.type)) {
+        return res.status(400).json({ error: 'type must be one of: bug, praise, suggestion, general.' });
+    }
+    if (!isNonEmptyString(body.version)) {
+        return res.status(400).json({ error: 'version is required.' });
+    }
+    if (!isNonEmptyString(body.instanceId)) {
+        return res.status(400).json({ error: 'instanceId is required.' });
+    }
+    if (!isValidIsoDate(body.submittedAt)) {
+        return res.status(400).json({ error: 'submittedAt must be a valid ISO 8601 date string.' });
+    }
+    // Optional field normalisation
+    const comment = typeof body.comment === 'string' && body.comment.trim().length > 0
+        ? body.comment.trim().slice(0, 2000) // cap at 2000 chars
+        : null;
+    const os = isNonEmptyString(body.os) ? String(body.os).slice(0, 64) : 'unknown';
+    const arch = isNonEmptyString(body.arch) ? String(body.arch).slice(0, 32) : 'unknown';
+    const nodeVersion = isNonEmptyString(body.nodeVersion) ? String(body.nodeVersion).slice(0, 32) : 'unknown';
+    const sessionCount = typeof body.sessionCount === 'number' && Number.isFinite(body.sessionCount)
+        ? Math.max(0, Math.floor(body.sessionCount))
+        : null;
+    const factCount = typeof body.factCount === 'number' && Number.isFinite(body.factCount)
+        ? Math.max(0, Math.floor(body.factCount))
+        : null;
+    const milestoneContext = typeof body.milestoneContext === 'string' && body.milestoneContext.trim().length > 0
+        ? body.milestoneContext.trim().slice(0, 256)
+        : null;
+    try {
+        const db = (0, client_1.getDb)();
+        // Upsert on feedbackId — safe for the CLI offline-retry queue.
+        // On conflict, update mutable fields only (comment, receivedAt) so
+        // repeated drain attempts don't corrupt the original submission data.
+        await db.feedback.upsert({
+            where: { feedbackId: body.feedbackId },
+            create: {
+                feedbackId: body.feedbackId,
+                rating: body.rating,
+                comment,
+                type: body.type,
+                version: String(body.version).slice(0, 32),
+                os,
+                arch,
+                nodeVersion,
+                sessionCount,
+                factCount,
+                instanceId: String(body.instanceId).slice(0, 64),
+                milestoneContext,
+                submittedAt: new Date(body.submittedAt),
+            },
+            update: {
+                // Allow comment update in case first attempt sent null
+                comment,
+                receivedAt: new Date(),
+            },
+        });
+        res.status(200).json({ ok: true });
+    }
+    catch (err) {
+        console.error('[feedback] insert error:', err);
+        res.status(500).json({ error: 'Failed to record feedback.' });
+    }
+});
+//# sourceMappingURL=feedback.js.map

package/dist/src/api/routes/feedback.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"feedback.js","sourceRoot":"","sources":["../../../../src/api/routes/feedback.ts"],"names":[],"mappings":";AAAA;;;;;;;;;GASG;;;AAEH,qCAAoD;AACpD,iDAA6C;AAGhC,QAAA,cAAc,GAAW,IAAA,gBAAM,GAAE,CAAC;AAE/C,iFAAiF;AAEjF,MAAM,WAAW,GAAG,IAAI,GAAG,CAAS,CAAC,KAAK,EAAE,QAAQ,EAAE,YAAY,EAAE,SAAS,CAAC,CAAC,CAAC;AAChF,MAAM,OAAO,GAAG,iEAAiE,CAAC;AAElF,SAAS,WAAW,CAAC,CAAU;IAC3B,OAAO,OAAO,CAAC,KAAK,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AACpD,CAAC;AAED,SAAS,aAAa,CAAC,CAAU;IAC7B,OAAO,OAAO,CAAC,KAAK,QAAQ,IAAI,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC5E,CAAC;AAED,SAAS,WAAW,CAAC,CAAU;IAC3B,OAAO,OAAO,CAAC,KAAK,QAAQ,IAAI,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;AACvD,CAAC;AAED,SAAS,gBAAgB,CAAC,CAAU;IAChC,OAAO,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC;AACxD,CAAC;AAED,SAAS,cAAc,CAAC,CAAU;IAC9B,IAAI,OAAO,CAAC,KAAK,QAAQ;QAAE,OAAO,KAAK,CAAC;IACxC,MAAM,CAAC,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,CAAC;IACtB,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;AAC/B,CAAC;AAED,iFAAiF;AAEjF,sBAAc,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAC3D,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC;IAE5B,4BAA4B;IAC5B,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;QAChC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,kCAAkC,EAAE,CAAC,CAAC;IAC/E,CAAC;IACD,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;QAC9B,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC,CAAC;IAC7E,CAAC;IACD,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1B,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,wDAAwD,EAAE,CAAC,CAAC;IACrG,CAAC;IACD,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QAClC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;IACnE,CAAC;IACD,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;QACrC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;IACtE,CAAC;IACD,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;QACpC,OAAO,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mDAAmD,EAAE,CAAC,CAAC;IAChG,CAAC;IAED,+BAA+B;IAC/B,MAAM,OAAO,GAAG,OAAO,IAAI,CAAC,OAAO,KAAK,QAAQ,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC;QAC9E,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAG,oBAAoB;QAC3D,CAAC,CAAC,IAAI,CAAC;IAEX,MAAM,EAAE,GAAG,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAChF,MAAM,IAAI,GAAG,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACtF,MAAM,WAAW,GAAG,gBAAgB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAE3G,MAAM,YAAY,GAAG,OAAO,IAAI,CAAC,YAAY,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,YAAY,CAAC;QAC5F,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC5C,CAAC,CAAC,IAAI,CAAC;IAEX,MAAM,SAAS,GAAG,OAAO,IAAI,CAAC,SAAS,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC;QACnF,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACzC,CAAC,CAAC,IAAI,CAAC;IAEX,MAAM,gBAAgB,GAAG,OAAO,IAAI,CAAC,gBAAgB,KAAK,QAAQ,IAAI,IAAI,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC;QACzG,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;QAC5C,CAAC,CAAC,IAAI,CAAC;IAEX,IAAI,CAAC;QACD,MAAM,EAAE,GAAG,IAAA,cAAK,GAAE,CAAC;QAEnB,+DAA+D;QAC/D,mEAAmE;QACnE,sEAAsE;QACtE,MAAM,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC;YACrB,KAAK,EAAE,EAAE,UAAU,EAAE,IAAI,CAAC,UAAU,EAAE;YACtC,MAAM,EAAE;gBACJ,UAAU,EAAE,IAAI,CAAC,UAAU;gBAC3B,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,OAAO;gBACP,IAAI,EAAE,IAAI,CAAC,IAAoB;gBAC/B,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;gBAC1C,EAAE;gBACF,IAAI;gBACJ,WAAW;gBACX,YAAY;gBACZ,SAAS;gBACT,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;gBAChD,gBAAgB;gBAChB,WAAW,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC;aAC1C;YACD,MAAM,EAAE;gBACJ,uDAAuD;gBACvD,OAAO;gBACP,UAAU,EAAE,IAAI,IAAI,EAAE;aACzB;SACJ,CAAC,CAAC;QAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;IACvC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACX,OAAO,CAAC,KAAK,CAAC,0BAA0B,EAAE,GAAG,CAAC,CAAC;QAC/C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAC,CAAC;IAClE,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/src/api/routes/knowledge.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"knowledge.d.ts","sourceRoot":"","sources":["../../../../src/api/routes/knowledge.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAgB,EAAE,MAAM,EAAqB,MAAM,SAAS,CAAC;AAC7D,OAAO,EAAE,MAAM,EAA0B,MAAM,WAAW,CAAC;AA+G3D,wBAAgB,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CA8atD"}
+{"version":3,"file":"knowledge.d.ts","sourceRoot":"","sources":["../../../../src/api/routes/knowledge.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAgB,EAAE,MAAM,EAAqB,MAAM,SAAS,CAAC;AAC7D,OAAO,EAAE,MAAM,EAA0B,MAAM,WAAW,CAAC;AAmH3D,wBAAgB,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CA8atD"}

package/dist/src/api/routes/knowledge.js

@@ -128,11 +128,15 @@ function fallbackProtocolAgent(req) {
             : '';
     if (explicit)
         return explicit;
-    const keyId = auth?.keyId?.trim();
-    // Intentional fallback: protocol state is keyed to the authenticated API key
-    // when the caller does not send agentId, so protocol-gated reads still have a
-    // stable principal. Explicit agentId/query aliases still override this path.
-    return keyId ? `api:${keyId}` : null;
+    // Do not fall back to the API key ID as a protocol principal. Protocol
+    // enforcement is only meaningful for named agents that have completed a
+    // handshake + attend cycle. Using the key ID as a fallback causes any
+    // programmatic or diagnostic caller (e.g. the Control Plane health probe)
+    // to be blocked with 428 on the first request after an instance restart,
+    // since no prior handshake/attend exists for that principal. Callers
+    // without an explicit agentId get null here, which causes checkProtocol to
+    // return early — no enforcement, no 428.
+    return null;
 }
 function applyProtocolContext(iranti, req) {
     const agentId = fallbackProtocolAgent(req);