itglue-mcp 1.0.0

package/dist/lib/error-handler.js

@@ -0,0 +1,99 @@
+/**
+ * Error Handler for ITGlue API Errors
+ * Transforms API errors into user-friendly messages
+ */
+export class ITGlueAPIError extends Error {
+    statusCode;
+    isRetryable;
+    details;
+    constructor(message, statusCode, isRetryable = false, details) {
+        super(message);
+        this.name = 'ITGlueAPIError';
+        this.statusCode = statusCode;
+        this.isRetryable = isRetryable;
+        this.details = details;
+        // Maintains proper stack trace
+        Error.captureStackTrace(this, this.constructor);
+    }
+}
+/**
+ * Transform Axios error into ITGlueAPIError
+ */
+export function handleApiError(error) {
+    if (error instanceof ITGlueAPIError) {
+        return error;
+    }
+    // Handle Axios errors
+    if (isAxiosError(error)) {
+        const statusCode = error.response?.status || 0;
+        const responseData = error.response?.data;
+        // Extract error details from ITGlue response
+        let message = 'An unknown error occurred';
+        let details;
+        if (responseData && Array.isArray(responseData.errors) && responseData.errors.length > 0) {
+            const firstError = responseData.errors[0];
+            message = firstError.title || message;
+            details = firstError.detail;
+        }
+        switch (statusCode) {
+            case 401:
+                return new ITGlueAPIError('Authentication failed. Please check your ITGLUE_API_KEY environment variable.', 401, false, details || 'Invalid or missing API key');
+            case 403:
+                return new ITGlueAPIError('Access denied. Your API key does not have permission to access this resource.', 403, false, details);
+            case 404:
+                return new ITGlueAPIError('Resource not found. The requested resource does not exist or you do not have access to it.', 404, false, details);
+            case 422:
+                return new ITGlueAPIError('Invalid request parameters.', 422, false, details || 'Check your request parameters');
+            case 429:
+                const retryAfter = error.response?.headers['retry-after'];
+                return new ITGlueAPIError('Rate limit exceeded. The request will be automatically retried.', 429, true, retryAfter ? `Retry after ${retryAfter} seconds` : undefined);
+            case 500:
+            case 502:
+            case 503:
+            case 504:
+                return new ITGlueAPIError('ITGlue server error. The request will be automatically retried.', statusCode, true, details);
+            default:
+                if (statusCode >= 500) {
+                    return new ITGlueAPIError('ITGlue server error. The request will be automatically retried.', statusCode, true, details);
+                }
+                return new ITGlueAPIError(message || `Request failed with status ${statusCode}`, statusCode, false, details);
+        }
+    }
+    // Handle network errors
+    if (error instanceof Error) {
+        if (error.message.includes('ENOTFOUND') || error.message.includes('ECONNREFUSED')) {
+            return new ITGlueAPIError('Network error: Unable to connect to ITGlue API. Check your internet connection and ITGLUE_REGION setting.', 0, true, error.message);
+        }
+        if (error.message.includes('ETIMEDOUT')) {
+            return new ITGlueAPIError('Request timeout: ITGlue API did not respond in time.', 0, true, error.message);
+        }
+        return new ITGlueAPIError('Request failed: ' + error.message, 0, false, error.message);
+    }
+    return new ITGlueAPIError('An unknown error occurred', 0, false);
+}
+/**
+ * Type guard for Axios errors
+ */
+function isAxiosError(error) {
+    return (typeof error === 'object' &&
+        error !== null &&
+        'isAxiosError' in error &&
+        error.isAxiosError === true);
+}
+/**
+ * Format error for MCP tool response
+ */
+export function formatErrorResponse(error) {
+    let errorMessage = `Error: ${error.message}`;
+    if (error.details) {
+        errorMessage += `\n\nDetails: ${error.details}`;
+    }
+    if (error.statusCode) {
+        errorMessage += `\n\nStatus Code: ${error.statusCode}`;
+    }
+    return {
+        content: [{ type: 'text', text: errorMessage }],
+        isError: true,
+    };
+}
+//# sourceMappingURL=error-handler.js.map

package/dist/lib/error-handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"error-handler.js","sourceRoot":"","sources":["../../src/lib/error-handler.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH,MAAM,OAAO,cAAe,SAAQ,KAAK;IACvB,UAAU,CAAS;IACnB,WAAW,CAAU;IACrB,OAAO,CAAU;IAEjC,YAAY,OAAe,EAAE,UAAkB,EAAE,WAAW,GAAG,KAAK,EAAE,OAAgB;QACpF,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;QAC7B,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;QAC/B,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QAEvB,+BAA+B;QAC/B,KAAK,CAAC,iBAAiB,CAAC,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;IAClD,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,KAAc;IAC3C,IAAI,KAAK,YAAY,cAAc,EAAE,CAAC;QACpC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,sBAAsB;IACtB,IAAI,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC;QACxB,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,EAAE,MAAM,IAAI,CAAC,CAAC;QAC/C,MAAM,YAAY,GAAG,KAAK,CAAC,QAAQ,EAAE,IAAuC,CAAC;QAE7E,6CAA6C;QAC7C,IAAI,OAAO,GAAG,2BAA2B,CAAC;QAC1C,IAAI,OAA2B,CAAC;QAEhC,IAAI,YAAY,IAAI,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,YAAY,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACzF,MAAM,UAAU,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YAC1C,OAAO,GAAG,UAAU,CAAC,KAAK,IAAI,OAAO,CAAC;YACtC,OAAO,GAAG,UAAU,CAAC,MAAM,CAAC;QAC9B,CAAC;QAED,QAAQ,UAAU,EAAE,CAAC;YACnB,KAAK,GAAG;gBACN,OAAO,IAAI,cAAc,CACvB,+EAA+E,EAC/E,GAAG,EACH,KAAK,EACL,OAAO,IAAI,4BAA4B,CACxC,CAAC;YAEJ,KAAK,GAAG;gBACN,OAAO,IAAI,cAAc,CACvB,+EAA+E,EAC/E,GAAG,EACH,KAAK,EACL,OAAO,CACR,CAAC;YAEJ,KAAK,GAAG;gBACN,OAAO,IAAI,cAAc,CACvB,4FAA4F,EAC5F,GAAG,EACH,KAAK,EACL,OAAO,CACR,CAAC;YAEJ,KAAK,GAAG;gBACN,OAAO,IAAI,cAAc,CACvB,6BAA6B,EAC7B,GAAG,EACH,KAAK,EACL,OAAO,IAAI,+BAA+B,CAC3C,CAAC;YAEJ,KAAK,GAAG;gBACN,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,EAAE,OAAO,CAAC,aAAa,CAAC,CAAC;gBAC1D,OAAO,IAAI,cAAc,CACvB,iEAAiE,EACjE,GAAG,EACH,IAAI,EACJ,UAAU,CAAC,CAAC,CAAC,eAAe,UAAU,UAAU,CAAC,CAAC,CAAC,SAAS,CAC7D,CAAC;YAEJ,KAAK,GAAG,CAAC;YACT,KAAK,GAAG,CAAC;YACT,KAAK,GAAG,CAAC;YACT,KAAK,GAAG;gBACN,OAAO,IAAI,cAAc,CACvB,iEAAiE,EACjE,UAAU,EACV,IAAI,EACJ,OAAO,CACR,CAAC;YAEJ;gBACE,IAAI,UAAU,IAAI,GAAG,EAAE,CAAC;oBACtB,OAAO,IAAI,cAAc,CACvB,iEAAiE,EACjE,UAAU,EACV,IAAI,EACJ,OAAO,CACR,CAAC;gBACJ,CAAC;gBAED,OAAO,IAAI,cAAc,CACvB,OAAO,IAAI,8BAA8B,UAAU,EAAE,EACrD,UAAU,EACV,KAAK,EACL,OAAO,CACR,CAAC;QACN,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;QAC3B,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YAClF,OAAO,IAAI,cAAc,CACvB,2GAA2G,EAC3G,CAAC,EACD,IAAI,EACJ,KAAK,CAAC,OAAO,CACd,CAAC;QACJ,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YACxC,OAAO,IAAI,cAAc,CACvB,sDAAsD,EACtD,CAAC,EACD,IAAI,EACJ,KAAK,CAAC,OAAO,CACd,CAAC;QACJ,CAAC;QAED,OAAO,IAAI,cAAc,CAAC,kBAAkB,GAAG,KAAK,CAAC,OAAO,EAAE,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;IACzF,CAAC;IAED,OAAO,IAAI,cAAc,CAAC,2BAA2B,EAAE,CAAC,EAAE,KAAK,CAAC,CAAC;AACnE,CAAC;AAED;;GAEG;AACH,SAAS,YAAY,CAAC,KAAc;IAClC,OAAO,CACL,OAAO,KAAK,KAAK,QAAQ;QACzB,KAAK,KAAK,IAAI;QACd,cAAc,IAAI,KAAK;QACtB,KAAa,CAAC,YAAY,KAAK,IAAI,CACrC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,KAAqB;IAIvD,IAAI,YAAY,GAAG,UAAU,KAAK,CAAC,OAAO,EAAE,CAAC;IAE7C,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QAClB,YAAY,IAAI,gBAAgB,KAAK,CAAC,OAAO,EAAE,CAAC;IAClD,CAAC;IAED,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;QACrB,YAAY,IAAI,oBAAoB,KAAK,CAAC,UAAU,EAAE,CAAC;IACzD,CAAC;IAED,OAAO;QACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC;QAC/C,OAAO,EAAE,IAAI;KACd,CAAC;AACJ,CAAC"}

package/dist/lib/rate-limiter.d.ts

@@ -0,0 +1,45 @@
+/**
+ * Queue-Based Rate Limiter
+ * Ensures we stay within ITGlue's rate limits (3000 req/5min = 10 req/sec)
+ * Conservative limit: 8 req/sec with 20% safety margin
+ */
+import { AuditLogger } from './audit-logger.js';
+export declare class RateLimiter {
+    private readonly requestsPerSecond;
+    private readonly requestQueue;
+    private readonly requestTimes;
+    private isProcessing;
+    private readonly logger;
+    constructor(requestsPerSecond?: number, logger?: AuditLogger);
+    /**
+     * Enqueue a request to be executed with rate limiting
+     */
+    enqueue<T>(fn: () => Promise<T>): Promise<T>;
+    /**
+     * Process queued requests with rate limiting
+     */
+    private processQueue;
+    /**
+     * Wait until a request slot is available
+     * Uses sliding window algorithm
+     */
+    private waitForSlot;
+    /**
+     * Sleep for specified milliseconds
+     */
+    private sleep;
+    /**
+     * Get current rate limiting stats
+     */
+    getStats(): {
+        queueSize: number;
+        requestsInLastSecond: number;
+        maxRequestsPerSecond: number;
+        utilization: number;
+    };
+    /**
+     * Clear the queue (useful for testing or shutdown)
+     */
+    clear(): void;
+}
+//# sourceMappingURL=rate-limiter.d.ts.map

package/dist/lib/rate-limiter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.d.ts","sourceRoot":"","sources":["../../src/lib/rate-limiter.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAQhD,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAS;IAC3C,OAAO,CAAC,QAAQ,CAAC,YAAY,CAA4B;IACzD,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAgB;IAC7C,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAc;gBAEzB,iBAAiB,SAAI,EAAE,MAAM,CAAC,EAAE,WAAW;IAKvD;;OAEG;IACG,OAAO,CAAC,CAAC,EAAE,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;IAgBlD;;OAEG;YACW,YAAY;IAgC1B;;;OAGG;YACW,WAAW;IA6BzB;;OAEG;IACH,OAAO,CAAC,KAAK;IAIb;;OAEG;IACH,QAAQ;;;;;;IAaR;;OAEG;IACH,KAAK,IAAI,IAAI;CAYd"}

package/dist/lib/rate-limiter.js

@@ -0,0 +1,124 @@
+/**
+ * Queue-Based Rate Limiter
+ * Ensures we stay within ITGlue's rate limits (3000 req/5min = 10 req/sec)
+ * Conservative limit: 8 req/sec with 20% safety margin
+ */
+import { AuditLogger } from './audit-logger.js';
+export class RateLimiter {
+    requestsPerSecond;
+    requestQueue = [];
+    requestTimes = []; // Track request times in last second
+    isProcessing = false;
+    logger;
+    constructor(requestsPerSecond = 8, logger) {
+        this.requestsPerSecond = requestsPerSecond;
+        this.logger = logger || new AuditLogger();
+    }
+    /**
+     * Enqueue a request to be executed with rate limiting
+     */
+    async enqueue(fn) {
+        return new Promise((resolve, reject) => {
+            this.requestQueue.push({ fn, resolve, reject });
+            if (this.requestQueue.length > 1) {
+                this.logger.debug('Request queued', {
+                    queueSize: this.requestQueue.length,
+                });
+            }
+            if (!this.isProcessing) {
+                this.processQueue();
+            }
+        });
+    }
+    /**
+     * Process queued requests with rate limiting
+     */
+    async processQueue() {
+        if (this.isProcessing) {
+            return;
+        }
+        this.isProcessing = true;
+        while (this.requestQueue.length > 0) {
+            // Wait for available slot
+            await this.waitForSlot();
+            const request = this.requestQueue.shift();
+            if (!request) {
+                break;
+            }
+            // Track request time
+            const now = Date.now();
+            this.requestTimes.push(now);
+            // Execute request
+            try {
+                const result = await request.fn();
+                request.resolve(result);
+            }
+            catch (error) {
+                request.reject(error);
+            }
+        }
+        this.isProcessing = false;
+    }
+    /**
+     * Wait until a request slot is available
+     * Uses sliding window algorithm
+     */
+    async waitForSlot() {
+        const now = Date.now();
+        const oneSecondAgo = now - 1000;
+        // Remove requests older than 1 second
+        while (this.requestTimes.length > 0 && this.requestTimes[0] < oneSecondAgo) {
+            this.requestTimes.shift();
+        }
+        // If we're at the limit, wait
+        if (this.requestTimes.length >= this.requestsPerSecond) {
+            const oldestRequestTime = this.requestTimes[0];
+            const waitTime = oldestRequestTime + 1000 - now;
+            if (waitTime > 0) {
+                this.logger.debug('Rate limit throttling', {
+                    waitTimeMs: waitTime,
+                    currentRate: this.requestTimes.length,
+                    maxRate: this.requestsPerSecond,
+                });
+                await this.sleep(waitTime);
+                // Recursively check again after waiting
+                return this.waitForSlot();
+            }
+        }
+    }
+    /**
+     * Sleep for specified milliseconds
+     */
+    sleep(ms) {
+        return new Promise(resolve => setTimeout(resolve, ms));
+    }
+    /**
+     * Get current rate limiting stats
+     */
+    getStats() {
+        const now = Date.now();
+        const oneSecondAgo = now - 1000;
+        const recentRequests = this.requestTimes.filter(time => time > oneSecondAgo);
+        return {
+            queueSize: this.requestQueue.length,
+            requestsInLastSecond: recentRequests.length,
+            maxRequestsPerSecond: this.requestsPerSecond,
+            utilization: (recentRequests.length / this.requestsPerSecond) * 100,
+        };
+    }
+    /**
+     * Clear the queue (useful for testing or shutdown)
+     */
+    clear() {
+        // Reject all pending requests
+        while (this.requestQueue.length > 0) {
+            const request = this.requestQueue.shift();
+            if (request) {
+                request.reject(new Error('Rate limiter cleared'));
+            }
+        }
+        this.requestTimes.length = 0;
+        this.isProcessing = false;
+    }
+}
+//# sourceMappingURL=rate-limiter.js.map

package/dist/lib/rate-limiter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.js","sourceRoot":"","sources":["../../src/lib/rate-limiter.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAQhD,MAAM,OAAO,WAAW;IACL,iBAAiB,CAAS;IAC1B,YAAY,GAAyB,EAAE,CAAC;IACxC,YAAY,GAAa,EAAE,CAAC,CAAC,qCAAqC;IAC3E,YAAY,GAAG,KAAK,CAAC;IACZ,MAAM,CAAc;IAErC,YAAY,iBAAiB,GAAG,CAAC,EAAE,MAAoB;QACrD,IAAI,CAAC,iBAAiB,GAAG,iBAAiB,CAAC;QAC3C,IAAI,CAAC,MAAM,GAAG,MAAM,IAAI,IAAI,WAAW,EAAE,CAAC;IAC5C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAI,EAAoB;QACnC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;YAEhD,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACjC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,EAAE;oBAClC,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,MAAM;iBACpC,CAAC,CAAC;YACL,CAAC;YAED,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;gBACvB,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,YAAY;QACxB,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,OAAO;QACT,CAAC;QAED,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC;QAEzB,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpC,0BAA0B;YAC1B,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;YAEzB,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;YAC1C,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM;YACR,CAAC;YAED,qBAAqB;YACrB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACvB,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAE5B,kBAAkB;YAClB,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,EAAE,EAAE,CAAC;gBAClC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YAC1B,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YACxB,CAAC;QACH,CAAC;QAED,IAAI,CAAC,YAAY,GAAG,KAAK,CAAC;IAC5B,CAAC;IAED;;;OAGG;IACK,KAAK,CAAC,WAAW;QACvB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,YAAY,GAAG,GAAG,GAAG,IAAI,CAAC;QAEhC,sCAAsC;QACtC,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,IAAI,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,GAAG,YAAY,EAAE,CAAC;YAC3E,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAC5B,CAAC;QAED,8BAA8B;QAC9B,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACvD,MAAM,iBAAiB,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;YAC/C,MAAM,QAAQ,GAAG,iBAAiB,GAAG,IAAI,GAAG,GAAG,CAAC;YAEhD,IAAI,QAAQ,GAAG,CAAC,EAAE,CAAC;gBACjB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,uBAAuB,EAAE;oBACzC,UAAU,EAAE,QAAQ;oBACpB,WAAW,EAAE,IAAI,CAAC,YAAY,CAAC,MAAM;oBACrC,OAAO,EAAE,IAAI,CAAC,iBAAiB;iBAChC,CAAC,CAAC;gBAEH,MAAM,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;gBAE3B,wCAAwC;gBACxC,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;YAC5B,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,EAAU;QACtB,OAAO,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;IACzD,CAAC;IAED;;OAEG;IACH,QAAQ;QACN,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,YAAY,GAAG,GAAG,GAAG,IAAI,CAAC;QAChC,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,GAAG,YAAY,CAAC,CAAC;QAE7E,OAAO;YACL,SAAS,EAAE,IAAI,CAAC,YAAY,CAAC,MAAM;YACnC,oBAAoB,EAAE,cAAc,CAAC,MAAM;YAC3C,oBAAoB,EAAE,IAAI,CAAC,iBAAiB;YAC5C,WAAW,EAAE,CAAC,cAAc,CAAC,MAAM,GAAG,IAAI,CAAC,iBAAiB,CAAC,GAAG,GAAG;SACpE,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK;QACH,8BAA8B;QAC9B,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpC,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;YAC1C,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC,CAAC;YACpD,CAAC;QACH,CAAC;QAED,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,CAAC;QAC7B,IAAI,CAAC,YAAY,GAAG,KAAK,CAAC;IAC5B,CAAC;CACF"}

package/dist/tools/auxiliary/audit/compliance-check.d.ts

@@ -0,0 +1,54 @@
+/**
+ * Compliance Check Tools
+ * Verify ITGlue data meets organizational compliance standards
+ */
+import { z } from 'zod';
+import type { APIClient } from '../../../lib/api-client.js';
+export declare const ComplianceCheckSchema: z.ZodObject<{
+    organization_id: z.ZodString;
+    checks: z.ZodDefault<z.ZodArray<z.ZodEnum<["passwords", "configurations", "documentation", "warranties"]>, "many">>;
+}, "strip", z.ZodTypeAny, {
+    organization_id: string;
+    checks: ("configurations" | "passwords" | "documentation" | "warranties")[];
+}, {
+    organization_id: string;
+    checks?: ("configurations" | "passwords" | "documentation" | "warranties")[] | undefined;
+}>;
+export type ComplianceCheckArgs = z.infer<typeof ComplianceCheckSchema>;
+interface ComplianceIssue {
+    severity: 'low' | 'medium' | 'high' | 'critical';
+    category: string;
+    issue: string;
+    resource_type: string;
+    resource_id?: string;
+    recommendation: string;
+}
+/**
+ * Perform comprehensive compliance checks on ITGlue data
+ */
+export declare function performComplianceCheck(client: APIClient, args: ComplianceCheckArgs): Promise<{
+    content: Array<{
+        type: "text";
+        text: string;
+    }>;
+    isError: true;
+} | {
+    content: {
+        type: "text";
+        text: string;
+    }[];
+    data: {
+        organization_id: string;
+        checks_performed: ("configurations" | "passwords" | "documentation" | "warranties")[];
+        total_issues: number;
+        issues_by_severity: {
+            critical: number;
+            high: number;
+            medium: number;
+            low: number;
+        };
+        issues: ComplianceIssue[];
+    };
+}>;
+export {};
+//# sourceMappingURL=compliance-check.d.ts.map

package/dist/tools/auxiliary/audit/compliance-check.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"compliance-check.d.ts","sourceRoot":"","sources":["../../../../src/tools/auxiliary/audit/compliance-check.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,4BAA4B,CAAC;AAI5D,eAAO,MAAM,qBAAqB;;;;;;;;;EAMhC,CAAC;AAEH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAExE,UAAU,eAAe;IACvB,QAAQ,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IACjD,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,wBAAsB,sBAAsB,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;GAkDxF"}

package/dist/tools/auxiliary/audit/compliance-check.js

@@ -0,0 +1,303 @@
+/**
+ * Compliance Check Tools
+ * Verify ITGlue data meets organizational compliance standards
+ */
+import { z } from 'zod';
+import { handleApiError, formatErrorResponse } from '../../../lib/error-handler.js';
+export const ComplianceCheckSchema = z.object({
+    organization_id: z.string().describe('Organization ID to check compliance for'),
+    checks: z
+        .array(z.enum(['passwords', 'configurations', 'documentation', 'warranties']))
+        .default(['passwords', 'configurations', 'documentation'])
+        .describe('Compliance checks to perform'),
+});
+/**
+ * Perform comprehensive compliance checks on ITGlue data
+ */
+export async function performComplianceCheck(client, args) {
+    try {
+        const issues = [];
+        const checks = args.checks;
+        // Password compliance checks
+        if (checks.includes('passwords')) {
+            const passwordIssues = await checkPasswordCompliance(client, args.organization_id);
+            issues.push(...passwordIssues);
+        }
+        // Configuration compliance checks
+        if (checks.includes('configurations')) {
+            const configIssues = await checkConfigurationCompliance(client, args.organization_id);
+            issues.push(...configIssues);
+        }
+        // Documentation compliance checks
+        if (checks.includes('documentation')) {
+            const docIssues = await checkDocumentationCompliance(client, args.organization_id);
+            issues.push(...docIssues);
+        }
+        // Warranty compliance checks
+        if (checks.includes('warranties')) {
+            const warrantyIssues = await checkWarrantyCompliance(client, args.organization_id);
+            issues.push(...warrantyIssues);
+        }
+        const resultText = formatComplianceReport(issues, args.organization_id, checks);
+        return {
+            content: [{ type: 'text', text: resultText }],
+            data: {
+                organization_id: args.organization_id,
+                checks_performed: checks,
+                total_issues: issues.length,
+                issues_by_severity: {
+                    critical: issues.filter(i => i.severity === 'critical').length,
+                    high: issues.filter(i => i.severity === 'high').length,
+                    medium: issues.filter(i => i.severity === 'medium').length,
+                    low: issues.filter(i => i.severity === 'low').length,
+                },
+                issues,
+            },
+        };
+    }
+    catch (error) {
+        const apiError = handleApiError(error);
+        return formatErrorResponse(apiError);
+    }
+}
+/**
+ * Check password-related compliance issues
+ */
+async function checkPasswordCompliance(client, organizationId) {
+    const issues = [];
+    try {
+        const response = await client.get('/passwords', {
+            'filter[organization_id]': organizationId,
+            'page[size]': 100,
+        }, {
+            skipCache: true,
+            organizationId,
+        });
+        const passwords = Array.isArray(response.data) ? response.data : [response.data];
+        for (const pwd of passwords) {
+            // Check for missing category
+            if (!pwd.attributes['password-category-id'] && !pwd.attributes['password-category-name']) {
+                issues.push({
+                    severity: 'medium',
+                    category: 'Password Management',
+                    issue: `Password "${pwd.attributes.name}" has no category assigned`,
+                    resource_type: 'password',
+                    resource_id: pwd.id,
+                    recommendation: 'Assign a password category for better organization and compliance tracking',
+                });
+            }
+            // Check for missing username
+            if (!pwd.attributes.username) {
+                issues.push({
+                    severity: 'low',
+                    category: 'Password Management',
+                    issue: `Password "${pwd.attributes.name}" has no username`,
+                    resource_type: 'password',
+                    resource_id: pwd.id,
+                    recommendation: 'Add username for complete credential documentation',
+                });
+            }
+            // Check for very old passwords (>365 days without update)
+            const updatedAt = new Date(pwd.attributes['updated-at']);
+            const daysSinceUpdate = Math.floor((Date.now() - updatedAt.getTime()) / (1000 * 60 * 60 * 24));
+            if (daysSinceUpdate > 365) {
+                issues.push({
+                    severity: 'high',
+                    category: 'Password Management',
+                    issue: `Password "${pwd.attributes.name}" not updated in ${daysSinceUpdate} days`,
+                    resource_type: 'password',
+                    resource_id: pwd.id,
+                    recommendation: 'Review and update password, verify it is still current and secure',
+                });
+            }
+        }
+    }
+    catch (error) {
+        // If passwords can't be fetched, note it but don't fail the whole check
+        issues.push({
+            severity: 'high',
+            category: 'Password Management',
+            issue: 'Unable to fetch passwords for compliance check',
+            resource_type: 'password',
+            recommendation: 'Verify API permissions include password access',
+        });
+    }
+    return issues;
+}
+/**
+ * Check configuration-related compliance issues
+ */
+async function checkConfigurationCompliance(client, organizationId) {
+    const issues = [];
+    try {
+        const response = await client.get('/configurations', {
+            'filter[organization_id]': organizationId,
+            'page[size]': 100,
+        }, {
+            cacheTTL: 60,
+            organizationId,
+        });
+        const configs = Array.isArray(response.data) ? response.data : [response.data];
+        for (const config of configs) {
+            // Check for missing serial number on physical assets
+            const isPhysical = ['Server', 'Workstation', 'Laptop', 'Desktop'].some(type => config.attributes['configuration-type-name']?.includes(type));
+            if (isPhysical && !config.attributes['serial-number']) {
+                issues.push({
+                    severity: 'medium',
+                    category: 'Asset Management',
+                    issue: `Configuration "${config.attributes.name}" missing serial number`,
+                    resource_type: 'configuration',
+                    resource_id: config.id,
+                    recommendation: 'Add serial number for asset tracking and warranty management',
+                });
+            }
+            // Check for missing manufacturer/model
+            if (isPhysical && (!config.attributes['manufacturer-name'] || !config.attributes['model-number'])) {
+                issues.push({
+                    severity: 'low',
+                    category: 'Asset Management',
+                    issue: `Configuration "${config.attributes.name}" missing manufacturer or model information`,
+                    resource_type: 'configuration',
+                    resource_id: config.id,
+                    recommendation: 'Add manufacturer and model for accurate asset documentation',
+                });
+            }
+        }
+    }
+    catch (error) {
+        issues.push({
+            severity: 'high',
+            category: 'Asset Management',
+            issue: 'Unable to fetch configurations for compliance check',
+            resource_type: 'configuration',
+            recommendation: 'Verify API permissions and connectivity',
+        });
+    }
+    return issues;
+}
+/**
+ * Check documentation-related compliance issues
+ */
+async function checkDocumentationCompliance(client, organizationId) {
+    const issues = [];
+    try {
+        const response = await client.get('/documents', {
+            'filter[organization_id]': organizationId,
+            'page[size]': 10,
+        }, {
+            cacheTTL: 60,
+            organizationId,
+        });
+        const documents = Array.isArray(response.data) ? response.data : [response.data];
+        if (documents.length === 0) {
+            issues.push({
+                severity: 'medium',
+                category: 'Documentation',
+                issue: 'No documents found for organization',
+                resource_type: 'document',
+                recommendation: 'Upload essential documentation (network diagrams, SOPs, vendor contacts)',
+            });
+        }
+    }
+    catch (error) {
+        // Non-critical if documents can't be checked
+    }
+    return issues;
+}
+/**
+ * Check warranty-related compliance issues
+ */
+async function checkWarrantyCompliance(client, organizationId) {
+    const issues = [];
+    try {
+        const response = await client.get('/configurations', {
+            'filter[organization_id]': organizationId,
+            'page[size]': 100,
+        }, {
+            cacheTTL: 60,
+            organizationId,
+        });
+        const configs = Array.isArray(response.data) ? response.data : [response.data];
+        for (const config of configs) {
+            const warrantyExpires = config.attributes['warranty-expires-at'];
+            if (warrantyExpires) {
+                const expiryDate = new Date(warrantyExpires);
+                const daysUntilExpiry = Math.floor((expiryDate.getTime() - Date.now()) / (1000 * 60 * 60 * 24));
+                if (daysUntilExpiry < 0) {
+                    issues.push({
+                        severity: 'medium',
+                        category: 'Warranty Management',
+                        issue: `Configuration "${config.attributes.name}" warranty expired ${Math.abs(daysUntilExpiry)} days ago`,
+                        resource_type: 'configuration',
+                        resource_id: config.id,
+                        recommendation: 'Review asset status and consider renewal or replacement',
+                    });
+                }
+                else if (daysUntilExpiry <= 90) {
+                    issues.push({
+                        severity: 'low',
+                        category: 'Warranty Management',
+                        issue: `Configuration "${config.attributes.name}" warranty expires in ${daysUntilExpiry} days`,
+                        resource_type: 'configuration',
+                        resource_id: config.id,
+                        recommendation: 'Plan for warranty renewal or replacement',
+                    });
+                }
+            }
+        }
+    }
+    catch (error) {
+        // Non-critical
+    }
+    return issues;
+}
+/**
+ * Format compliance report
+ */
+function formatComplianceReport(issues, organizationId, checks) {
+    const lines = [
+        `# Compliance Check Report`,
+        `**Organization ID**: ${organizationId}`,
+        `**Checks Performed**: ${checks.join(', ')}`,
+        `**Total Issues Found**: ${issues.length}`,
+        '',
+    ];
+    if (issues.length === 0) {
+        lines.push('✅ **No compliance issues found!**');
+        lines.push('');
+        lines.push('All checked areas meet compliance standards.');
+        return lines.join('\n');
+    }
+    // Group by severity
+    const bySeverity = {
+        critical: issues.filter(i => i.severity === 'critical'),
+        high: issues.filter(i => i.severity === 'high'),
+        medium: issues.filter(i => i.severity === 'medium'),
+        low: issues.filter(i => i.severity === 'low'),
+    };
+    lines.push('## Issues by Severity');
+    lines.push('');
+    lines.push(`- 🔴 **Critical**: ${bySeverity.critical.length}`);
+    lines.push(`- 🟠 **High**: ${bySeverity.high.length}`);
+    lines.push(`- 🟡 **Medium**: ${bySeverity.medium.length}`);
+    lines.push(`- 🟢 **Low**: ${bySeverity.low.length}`);
+    lines.push('');
+    // Detail each severity level
+    for (const [severity, severityIssues] of Object.entries(bySeverity)) {
+        if (severityIssues.length === 0)
+            continue;
+        const emoji = { critical: '🔴', high: '🟠', medium: '🟡', low: '🟢' }[severity];
+        lines.push(`## ${emoji} ${severity.toUpperCase()} Priority Issues`);
+        lines.push('');
+        for (const issue of severityIssues) {
+            lines.push(`### ${issue.category}: ${issue.issue}`);
+            if (issue.resource_id) {
+                lines.push(`**Resource**: ${issue.resource_type} (ID: ${issue.resource_id})`);
+            }
+            lines.push(`**Recommendation**: ${issue.recommendation}`);
+            lines.push('');
+        }
+    }
+    return lines.join('\n');
+}
+//# sourceMappingURL=compliance-check.js.map