karukia-mcp 3.0.4 → 3.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/LICENSE +1 -1
  2. package/README.md +4 -6
  3. package/dist/index.js +1 -1
  4. package/package.json +3 -3
  5. package/dist/http.js +0 -11308
package/LICENSE CHANGED
@@ -1,7 +1,7 @@
1
1
  Business Source License 1.1
2
2
 
3
3
  Licensor: KARUK IA (contact@karukia.com)
4
- Licensed Work: karukia-mcp v3.0.4
4
+ Licensed Work: karukia-mcp v3.0.5
5
5
  The Licensed Work is (c) 2026 KARUK IA
6
6
  Change Date: March 6, 2028
7
7
  Change License: Apache License, Version 2.0
package/README.md CHANGED
@@ -2,7 +2,7 @@
2
2
 
3
3
  **The complete AI-assisted development methodology, delivered via MCP.**
4
4
 
5
- **Latest: v3.0.4** — 26 tools, 19 skills, 1673+ checkpoints across 11 audit dimensions.
5
+ **Latest: v3.0.5** — 26 tools, 19 skills, 1673+ checkpoints across 11 audit dimensions.
6
6
 
7
7
 
8
8
  ```
@@ -294,11 +294,9 @@ Built from real-world experience securing a healthcare SaaS application to HDS 2
294
294
 
295
295
  ## Privacy & Data Handling
296
296
 
297
- - **KARUKIA MCP does not store any user data server-side.** In stdio mode (default via `npx`), the server is stateless — no data leaves your machine.
298
- - **Generated prompts** are returned to your AI client (Claude, GPT, Cursor, etc.). Do not include real health data, credentials, or sensitive personal information in tool call arguments (e.g., the `scope`, `task`, or `period` fields).
299
- - **HTTP mode** (`start:http`): request logs contain session metadata (tool name, duration, HTTP status) but never the content of requests or generated prompts. Sensitive headers (`Authorization`, `Mcp-Session-Id`) are automatically redacted in logs.
300
- - **Session memory files** (stored in `karukia/memory/sessions/` on your machine): follow the retention policy documented in [`karukia/config/session-retention.md`](./karukia/config/session-retention.md). For teams in regulated sectors: do not store real patient data or PHI in session files.
301
- - **For teams in regulated sectors (healthcare, finance)**: use stdio mode (local) for maximum data isolation, or contact contact@karukia.com for the managed offering.
297
+ - **KARUKIA runs 100% locally on your machine.** No server, no account, no telemetry. Nothing leaves your machine.
298
+ - **Generated prompts** are returned to your AI client (Claude, Cursor, Windsurf, etc.). Do not include real health data, credentials, or sensitive personal information in tool call arguments.
299
+ - **Session memory files** (stored locally in `karukia/memory/sessions/`): these are on your machine only. For teams in regulated sectors: do not store real patient data or PHI in session files.
302
300
 
303
301
  ---
304
302
 
package/dist/index.js CHANGED
@@ -11152,7 +11152,7 @@ When the user mentions KARUKIA or any of the following, call the corresponding K
11152
11152
 
11153
11153
  **Default behavior:** When the user mentions "karukia" followed by any request, use the \`auto\` tool to orchestrate. The word "karukia" in any position triggers KARUKIA MCP tools.
11154
11154
 
11155
- *Derni\xE8re mise \xE0 jour : YYYY-MM-DD*`}var ut={name:"karukia-mcp",version:"3.0.4",description:"KARUKIA MCP Server v3.0 \u2014 AI-powered development methodology with 26 tools, 19 skills, 1673+ checkpoints across 11 audit dimensions. Works with any AI platform via MCP protocol.",keywords:["mcp","security","audit","owasp","hds","iso27001","opquast","pentest","checklist","compliance","claude","ai-security","typescript-quality","architecture","performance","technical-debt","ebios","change-management"],author:"KARUKIA <contact@karukia.com>",license:"BUSL-1.1",type:"module",bin:{"karukia-mcp":"./dist/index.js"},main:"dist/index.js",files:["dist","README.md","LICENSE"],scripts:{build:"node esbuild.config.mjs","build:check":"tsc --noEmit",start:"node dist/index.js","start:http":"node dist/http.js",dev:"tsc --watch",test:"vitest run","test:watch":"vitest","test:coverage":"vitest run --coverage",prepublishOnly:"npm audit --audit-level=high && npm run build:check && npm run build && npm test"},dependencies:{"@modelcontextprotocol/sdk":"1.26.0",compression:"^1.8.1",cors:"^2.8.6",express:"5.2.1","express-rate-limit":"^8.2.1",helmet:"8.1.0",pino:"^10.3.1",zod:"^3.24.4"},devDependencies:{"@types/compression":"^1.8.1","@types/cors":"^2.8.19","@types/express":"^5.0.2","@types/node":"^22.15.21","@types/pino":"^7.0.4","@vitest/coverage-v8":"^4.0.18",esbuild:"^0.27.3",shx:"^0.4.0",typescript:"^5.8.3",vitest:"^4.0.18"},engines:{node:">=22.0.0"},repository:{type:"git",url:"https://github.com/getkarukia/KARUKIA"},homepage:"https://karukia.com",bugs:{url:"https://github.com/getkarukia/KARUKIA/issues"}};var q=ut.version;function g(i,s){return async e=>{let t=Date.now();T.info({tool:i},"tool:invoke");try{let n=await s(e),r=Date.now()-t;return T.info({tool:i,duration:r},"tool:complete"),n}catch(n){let r=Date.now()-t;throw T.error({tool:i,duration:r,err:n instanceof Error?n.message:String(n)},"tool:error"),n}}}function dt(){let i=N(),s=new Cs({name:"karukia-mcp",version:q});s.tool("start","Get started with KARUKIA methodology. Returns a quick-start guide listing all available skills and how to use them.",{},g("start",async()=>{let t=[...i.values()].reduce((r,l)=>r+l.points,0);return{content:[{type:"text",text:`\`\`\`
11155
+ *Derni\xE8re mise \xE0 jour : YYYY-MM-DD*`}var ut={name:"karukia-mcp",version:"3.0.5",description:"KARUKIA MCP Server v3.0 \u2014 AI-powered development methodology with 26 tools, 19 skills, 1673+ checkpoints across 11 audit dimensions. Works with any AI platform via MCP protocol.",keywords:["mcp","security","audit","owasp","hds","iso27001","opquast","pentest","checklist","compliance","claude","ai-security","typescript-quality","architecture","performance","technical-debt","ebios","change-management"],author:"KARUKIA <contact@karukia.com>",license:"BUSL-1.1",type:"module",bin:{"karukia-mcp":"./dist/index.js"},main:"dist/index.js",files:["dist/index.js","README.md","LICENSE"],scripts:{build:"node esbuild.config.mjs","build:check":"tsc --noEmit",start:"node dist/index.js","start:http":"node dist/http.js",dev:"tsc --watch",test:"vitest run","test:watch":"vitest","test:coverage":"vitest run --coverage",prepublishOnly:"npm audit --audit-level=high && npm run build:check && npm run build && npm test"},dependencies:{"@modelcontextprotocol/sdk":"1.26.0",compression:"^1.8.1",cors:"^2.8.6",express:"5.2.1","express-rate-limit":"^8.2.1",helmet:"8.1.0",pino:"^10.3.1",zod:"^3.24.4"},devDependencies:{"@types/compression":"^1.8.1","@types/cors":"^2.8.19","@types/express":"^5.0.2","@types/node":"^22.15.21","@types/pino":"^7.0.4","@vitest/coverage-v8":"^4.0.18",esbuild:"^0.27.3",shx:"^0.4.0",typescript:"^5.8.3",vitest:"^4.0.18"},engines:{node:">=22.0.0"},repository:{type:"git",url:"https://github.com/getkarukia/KARUKIA"},homepage:"https://karukia.com/pricing",bugs:{url:"https://github.com/getkarukia/KARUKIA/issues"}};var q=ut.version;function g(i,s){return async e=>{let t=Date.now();T.info({tool:i},"tool:invoke");try{let n=await s(e),r=Date.now()-t;return T.info({tool:i,duration:r},"tool:complete"),n}catch(n){let r=Date.now()-t;throw T.error({tool:i,duration:r,err:n instanceof Error?n.message:String(n)},"tool:error"),n}}}function dt(){let i=N(),s=new Cs({name:"karukia-mcp",version:q});s.tool("start","Get started with KARUKIA methodology. Returns a quick-start guide listing all available skills and how to use them.",{},g("start",async()=>{let t=[...i.values()].reduce((r,l)=>r+l.points,0);return{content:[{type:"text",text:`\`\`\`
11156
11156
  \u2588\u2588\u2557 \u2588\u2588\u2557 \u2588\u2588\u2588\u2588\u2588\u2557 \u2588\u2588\u2588\u2588\u2588\u2588\u2557 \u2588\u2588\u2557 \u2588\u2588\u2557\u2588\u2588\u2557 \u2588\u2588\u2557 \u2588\u2588\u2557 \u2588\u2588\u2588\u2588\u2588\u2557
11157
11157
  \u2588\u2588\u2551 \u2588\u2588\u2554\u255D\u2588\u2588\u2554\u2550\u2550\u2588\u2588\u2557\u2588\u2588\u2554\u2550\u2550\u2588\u2588\u2557\u2588\u2588\u2551 \u2588\u2588\u2551\u2588\u2588\u2551 \u2588\u2588\u2554\u255D \u2588\u2588\u2551\u2588\u2588\u2554\u2550\u2550\u2588\u2588\u2557
11158
11158
  \u2588\u2588\u2588\u2588\u2588\u2554\u255D \u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2551\u2588\u2588\u2588\u2588\u2588\u2588\u2554\u255D\u2588\u2588\u2551 \u2588\u2588\u2551\u2588\u2588\u2588\u2588\u2588\u2554\u255D \u2588\u2588\u2551\u2588\u2588\u2588\u2588\u2588\u2588\u2588\u2551
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "karukia-mcp",
3
- "version": "3.0.4",
3
+ "version": "3.0.5",
4
4
  "description": "KARUKIA MCP Server v3.0 — AI-powered development methodology with 26 tools, 19 skills, 1673+ checkpoints across 11 audit dimensions. Works with any AI platform via MCP protocol.",
5
5
  "keywords": [
6
6
  "mcp",
@@ -30,7 +30,7 @@
30
30
  },
31
31
  "main": "dist/index.js",
32
32
  "files": [
33
- "dist",
33
+ "dist/index.js",
34
34
  "README.md",
35
35
  "LICENSE"
36
36
  ],
@@ -74,7 +74,7 @@
74
74
  "type": "git",
75
75
  "url": "https://github.com/getkarukia/KARUKIA"
76
76
  },
77
- "homepage": "https://karukia.com",
77
+ "homepage": "https://karukia.com/pricing",
78
78
  "bugs": {
79
79
  "url": "https://github.com/getkarukia/KARUKIA/issues"
80
80
  }