npm - kickload-watcher-mcp - Versions diffs - 0.1.4 → 0.1.6 - Mend

kickload-watcher-mcp 0.1.4 → 0.1.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/github-webhook.js CHANGED Viewed

@@ -1,322 +1,321 @@
-// github-webhook.js — Optional GitHub/GitLab webhook listener
-// Only needed if TRIGGER_MODE=github or TRIGGER_MODE=both
-// Listens for Pull Request events containing new API code
-import { createServer } from "http";
-import crypto from "crypto";
-import { config } from "./config.js";
-import fetch from "node-fetch";
-const webhookCallbacks = [];
-/**
- * Register a callback for GitHub PR events with API code.
- * Callback receives: { prNumber, prTitle, branch, author, authorEmail, files, timestamp }
- */
-export function onGithubPR(callback) {
-  webhookCallbacks.push(callback);
-}
-/**
- * Start the webhook HTTP server.
- * Point your GitHub/GitLab webhook to: http://your-server:3456/webhook
- */
-export function startGithubWebhookServer() {
-  const port = config.github.webhookPort;
-  const server = createServer(async (req, res) => {
-    // Health check
-    if (req.method === "GET" && req.url === "/health") {
-      res.writeHead(200, { "Content-Type": "application/json" });
-      res.end(JSON.stringify({ status: "ok", server: "kickload-webhook" }));
-      return;
-    }
-    // Only handle POST /webhook
-    if (req.method !== "POST" || req.url !== "/webhook") {
-      res.writeHead(404);
-      res.end("Not found");
-      return;
-    }
-    // Read body
-    let body = "";
-    req.on("data", (chunk) => (body += chunk.toString()));
-    req.on("end", async () => {
-      try {
-        // Verify GitHub signature if secret is configured
-        if (config.github.webhookSecret) {
-          const signature = req.headers["x-hub-signature-256"];
-          if (!verifyGithubSignature(body, signature, config.github.webhookSecret)) {
-            console.warn("⚠️  GitHub webhook: invalid signature — rejected");
-            res.writeHead(401);
-            res.end("Invalid signature");
-            return;
-          }
-        }
-        const event = req.headers["x-github-event"] || req.headers["x-gitlab-event"];
-        const payload = JSON.parse(body);
-        // Handle the event
-        await handleWebhookEvent(event, payload);
-        res.writeHead(200, { "Content-Type": "application/json" });
-        res.end(JSON.stringify({ received: true }));
-      } catch (err) {
-        console.error("❌ Webhook handler error:", err.message);
-        res.writeHead(500);
-        res.end("Internal error");
-      }
-    });
-  });
-  server.listen(port, () => {
-    console.log(`🔗 GitHub webhook server listening on port ${port}`);
-    console.log(`   Webhook URL: http://your-server:${port}/webhook`);
-    console.log(`   Configure at: GitHub → Repo → Settings → Webhooks`);
-  });
-  return server;
-}
-/**
- * Route incoming webhook events to the right handler.
- */
-async function handleWebhookEvent(event, payload) {
-  // GitHub Pull Request events
-  if (event === "pull_request") {
-    await handleGithubPR(payload);
-    return;
-  }
-  // GitHub Push events (direct commit to branch)
-  if (event === "push") {
-    await handleGithubPush(payload);
-    return;
-  }
-  // GitLab Merge Request events
-  if (event === "Merge Request Hook") {
-    await handleGitlabMR(payload);
-    return;
-  }
-  console.log(`ℹ️  Unhandled webhook event: ${event}`);
-}
-/**
- * Handle GitHub Pull Request opened/synchronized events.
- */
-async function handleGithubPR(payload) {
-  const action = payload.action;
-  // Only trigger on new PRs or new commits to existing PRs
-  if (!["opened", "synchronize", "reopened"].includes(action)) return;
-  const pr = payload.pull_request;
-  const repo = payload.repository;
-  console.log(`🔀 GitHub PR #${pr.number}: "${pr.title}" by ${pr.user.login}`);
-  // Fetch the PR diff to find changed API files
-  const files = await fetchPRFiles(
-    repo.full_name,
-    pr.number,
-    config.github.token
-  );
-  const apiFiles = files.filter((f) => containsApiCode(f.patch || ""));
-  if (apiFiles.length === 0) {
-    console.log(`ℹ️  PR #${pr.number} — no API code changes detected`);
-    return;
-  }
-  console.log(
-    `📋 PR #${pr.number} — ${apiFiles.length} API file(s) changed:`,
-    apiFiles.map((f) => f.filename).join(", ")
-  );
-  const event = {
-    prNumber: pr.number,
-    prTitle: pr.title,
-    prUrl: pr.html_url,
-    branch: pr.head.ref,
-    author: pr.user.login,
-    authorEmail: pr.user.email || null,
-    repoFullName: repo.full_name,
-    files: apiFiles,
-    combinedPatch: apiFiles.map((f) => f.patch || "").join("\n\n"),
-    timestamp: new Date().toISOString(),
-    source: "github_pr",
-  };
-  for (const cb of webhookCallbacks) {
-    try {
-      await cb(event);
-    } catch (err) {
-      console.error("❌ GitHub PR callback error:", err.message);
-    }
-  }
-}
-/**
- * Handle GitHub push events (direct commits).
- */
-async function handleGithubPush(payload) {
-  // Skip branch deletions and non-main branches if configured
-  if (payload.deleted) return;
-  const commits = payload.commits || [];
-  const repo = payload.repository;
-  const pusher = payload.pusher;
-  // Collect all modified/added files across commits
-  const changedFiles = new Set();
-  for (const commit of commits) {
-    [...(commit.added || []), ...(commit.modified || [])].forEach((f) =>
-      changedFiles.add(f)
-    );
-  }
-  const apiFiles = [...changedFiles].filter((filename) =>
-    hasApiExtension(filename)
-  );
-  if (apiFiles.length === 0) return;
-  console.log(
-    `📤 GitHub Push by ${pusher.name} — ${apiFiles.length} API file(s) changed`
-  );
-  const event = {
-    prNumber: null,
-    prTitle: `Push to ${payload.ref}`,
-    prUrl: payload.compare,
-    branch: payload.ref.replace("refs/heads/", ""),
-    author: pusher.name,
-    authorEmail: pusher.email || null,
-    repoFullName: repo.full_name,
-    files: apiFiles.map((f) => ({ filename: f, patch: "" })),
-    combinedPatch: "",
-    timestamp: new Date().toISOString(),
-    source: "github_push",
-  };
-  for (const cb of webhookCallbacks) {
-    try {
-      await cb(event);
-    } catch (err) {
-      console.error("❌ GitHub push callback error:", err.message);
-    }
-  }
-}
-/**
- * Handle GitLab Merge Request events.
- */
-async function handleGitlabMR(payload) {
-  const attrs = payload.object_attributes;
-  if (!["open", "update"].includes(attrs?.action)) return;
-  console.log(`🔀 GitLab MR #${attrs.iid}: "${attrs.title}" by ${payload.user?.name}`);
-  const event = {
-    prNumber: attrs.iid,
-    prTitle: attrs.title,
-    prUrl: attrs.url,
-    branch: attrs.source_branch,
-    author: payload.user?.name,
-    authorEmail: payload.user?.email || null,
-    repoFullName: payload.project?.path_with_namespace,
-    files: [],
-    combinedPatch: "",
-    timestamp: new Date().toISOString(),
-    source: "gitlab_mr",
-  };
-  for (const cb of webhookCallbacks) {
-    try {
-      await cb(event);
-    } catch (err) {
-      console.error("❌ GitLab MR callback error:", err.message);
-    }
-  }
-}
-/**
- * Fetch files changed in a GitHub PR using the GitHub API.
- */
-async function fetchPRFiles(repoFullName, prNumber, token) {
-  if (!token) {
-    console.warn("⚠️  No GITHUB_TOKEN — cannot fetch PR files");
-    return [];
-  }
-  try {
-    const response = await fetch(
-      `https://api.github.com/repos/${repoFullName}/pulls/${prNumber}/files`,
-      {
-        headers: {
-          Authorization: `Bearer ${token}`,
-          Accept: "application/vnd.github.v3+json",
-          "User-Agent": "kickload-watcher-mcp",
-        },
-      }
-    );
-    if (!response.ok) {
-      console.warn(`⚠️  GitHub API ${response.status} for PR #${prNumber} files`);
-      return [];
-    }
-    return await response.json();
-  } catch (err) {
-    console.warn("⚠️  GitHub API fetch failed:", err.message);
-    return [];
-  }
-}
-/**
- * Verify GitHub webhook signature (HMAC-SHA256).
- */
-function verifyGithubSignature(body, signature, secret) {
-  if (!signature) return false;
-  const expected = `sha256=${crypto
-    .createHmac("sha256", secret)
-    .update(body)
-    .digest("hex")}`;
-  try {
-    return crypto.timingSafeEqual(
-      Buffer.from(signature),
-      Buffer.from(expected)
-    );
-  } catch {
-    return false;
-  }
-}
-/**
- * Quick check if a file path suggests it contains API routes.
- */
-function hasApiExtension(filename) {
-  const apiExts = [".js", ".ts", ".py", ".go", ".java", ".rb", ".php", ".cs"];
-  const ext = filename.split(".").pop();
-  return apiExts.includes(`.${ext}`);
-}
-/**
- * Check if a patch/diff contains API code.
- */
-function containsApiCode(patch) {
-  const patterns = [
-    /\+.*app\.(get|post|put|patch|delete)\s*\(/i,
-    /\+.*router\.(get|post|put|patch|delete)\s*\(/i,
-    /\+.*@app\.route\s*\(/i,
-    /\+.*@router\.(get|post|put|patch|delete)\s*\(/i,
-    /\+.*r\.(GET|POST|PUT|PATCH|DELETE)\s*\(/,
-    /\+.*@(Get|Post|Put|Delete|Patch)Mapping\s*\(/,
-  ];
-  return patterns.some((p) => p.test(patch));
-}
+// github-webhook.js — Optional GitHub/GitLab webhook listener
+// Only needed if TRIGGER_MODE=github or TRIGGER_MODE=both
+// Listens for Pull Request events containing new API code
+import { createServer } from "http";
+import crypto from "crypto";
+import { config } from "./config.js";
+const webhookCallbacks = [];
+/**
+ * Register a callback for GitHub PR events with API code.
+ * Callback receives: { prNumber, prTitle, branch, author, authorEmail, files, timestamp }
+ */
+export function onGithubPR(callback) {
+  webhookCallbacks.push(callback);
+}
+/**
+ * Start the webhook HTTP server.
+ * Point your GitHub/GitLab webhook to: http://your-server:3456/webhook
+ */
+export function startGithubWebhookServer() {
+  const port = config.github.webhookPort;
+  const server = createServer(async (req, res) => {
+    // Health check
+    if (req.method === "GET" && req.url === "/health") {
+      res.writeHead(200, { "Content-Type": "application/json" });
+      res.end(JSON.stringify({ status: "ok", server: "kickload-webhook" }));
+      return;
+    }
+    // Only handle POST /webhook
+    if (req.method !== "POST" || req.url !== "/webhook") {
+      res.writeHead(404);
+      res.end("Not found");
+      return;
+    }
+    // Read body
+    let body = "";
+    req.on("data", (chunk) => (body += chunk.toString()));
+    req.on("end", async () => {
+      try {
+        // Verify GitHub signature if secret is configured
+        if (config.github.webhookSecret) {
+          const signature = req.headers["x-hub-signature-256"];
+          if (!verifyGithubSignature(body, signature, config.github.webhookSecret)) {
+            console.warn("⚠️  GitHub webhook: invalid signature — rejected");
+            res.writeHead(401);
+            res.end("Invalid signature");
+            return;
+          }
+        }
+        const event = req.headers["x-github-event"] || req.headers["x-gitlab-event"];
+        const payload = JSON.parse(body);
+        // Handle the event
+        await handleWebhookEvent(event, payload);
+        res.writeHead(200, { "Content-Type": "application/json" });
+        res.end(JSON.stringify({ received: true }));
+      } catch (err) {
+        console.error("❌ Webhook handler error:", err.message);
+        res.writeHead(500);
+        res.end("Internal error");
+      }
+    });
+  });
+  server.listen(port, () => {
+    console.log(`🔗 GitHub webhook server listening on port ${port}`);
+    console.log(`   Webhook URL: http://your-server:${port}/webhook`);
+    console.log(`   Configure at: GitHub → Repo → Settings → Webhooks`);
+  });
+  return server;
+}
+/**
+ * Route incoming webhook events to the right handler.
+ */
+async function handleWebhookEvent(event, payload) {
+  // GitHub Pull Request events
+  if (event === "pull_request") {
+    await handleGithubPR(payload);
+    return;
+  }
+  // GitHub Push events (direct commit to branch)
+  if (event === "push") {
+    await handleGithubPush(payload);
+    return;
+  }
+  // GitLab Merge Request events
+  if (event === "Merge Request Hook") {
+    await handleGitlabMR(payload);
+    return;
+  }
+  console.log(`ℹ️  Unhandled webhook event: ${event}`);
+}
+/**
+ * Handle GitHub Pull Request opened/synchronized events.
+ */
+async function handleGithubPR(payload) {
+  const action = payload.action;
+  // Only trigger on new PRs or new commits to existing PRs
+  if (!["opened", "synchronize", "reopened"].includes(action)) return;
+  const pr = payload.pull_request;
+  const repo = payload.repository;
+  console.log(`🔀 GitHub PR #${pr.number}: "${pr.title}" by ${pr.user.login}`);
+  // Fetch the PR diff to find changed API files
+  const files = await fetchPRFiles(
+    repo.full_name,
+    pr.number,
+    config.github.token
+  );
+  const apiFiles = files.filter((f) => containsApiCode(f.patch || ""));
+  if (apiFiles.length === 0) {
+    console.log(`ℹ️  PR #${pr.number} — no API code changes detected`);
+    return;
+  }
+  console.log(
+    `📋 PR #${pr.number} — ${apiFiles.length} API file(s) changed:`,
+    apiFiles.map((f) => f.filename).join(", ")
+  );
+  const event = {
+    prNumber: pr.number,
+    prTitle: pr.title,
+    prUrl: pr.html_url,
+    branch: pr.head.ref,
+    author: pr.user.login,
+    authorEmail: pr.user.email || null,
+    repoFullName: repo.full_name,
+    files: apiFiles,
+    combinedPatch: apiFiles.map((f) => f.patch || "").join("\n\n"),
+    timestamp: new Date().toISOString(),
+    source: "github_pr",
+  };
+  for (const cb of webhookCallbacks) {
+    try {
+      await cb(event);
+    } catch (err) {
+      console.error("❌ GitHub PR callback error:", err.message);
+    }
+  }
+}
+/**
+ * Handle GitHub push events (direct commits).
+ */
+async function handleGithubPush(payload) {
+  // Skip branch deletions and non-main branches if configured
+  if (payload.deleted) return;
+  const commits = payload.commits || [];
+  const repo = payload.repository;
+  const pusher = payload.pusher;
+  // Collect all modified/added files across commits
+  const changedFiles = new Set();
+  for (const commit of commits) {
+    [...(commit.added || []), ...(commit.modified || [])].forEach((f) =>
+      changedFiles.add(f)
+    );
+  }
+  const apiFiles = [...changedFiles].filter((filename) =>
+    hasApiExtension(filename)
+  );
+  if (apiFiles.length === 0) return;
+  console.log(
+    `📤 GitHub Push by ${pusher.name} — ${apiFiles.length} API file(s) changed`
+  );
+  const event = {
+    prNumber: null,
+    prTitle: `Push to ${payload.ref}`,
+    prUrl: payload.compare,
+    branch: payload.ref.replace("refs/heads/", ""),
+    author: pusher.name,
+    authorEmail: pusher.email || null,
+    repoFullName: repo.full_name,
+    files: apiFiles.map((f) => ({ filename: f, patch: "" })),
+    combinedPatch: "",
+    timestamp: new Date().toISOString(),
+    source: "github_push",
+  };
+  for (const cb of webhookCallbacks) {
+    try {
+      await cb(event);
+    } catch (err) {
+      console.error("❌ GitHub push callback error:", err.message);
+    }
+  }
+}
+/**
+ * Handle GitLab Merge Request events.
+ */
+async function handleGitlabMR(payload) {
+  const attrs = payload.object_attributes;
+  if (!["open", "update"].includes(attrs?.action)) return;
+  console.log(`🔀 GitLab MR #${attrs.iid}: "${attrs.title}" by ${payload.user?.name}`);
+  const event = {
+    prNumber: attrs.iid,
+    prTitle: attrs.title,
+    prUrl: attrs.url,
+    branch: attrs.source_branch,
+    author: payload.user?.name,
+    authorEmail: payload.user?.email || null,
+    repoFullName: payload.project?.path_with_namespace,
+    files: [],
+    combinedPatch: "",
+    timestamp: new Date().toISOString(),
+    source: "gitlab_mr",
+  };
+  for (const cb of webhookCallbacks) {
+    try {
+      await cb(event);
+    } catch (err) {
+      console.error("❌ GitLab MR callback error:", err.message);
+    }
+  }
+}
+/**
+ * Fetch files changed in a GitHub PR using the GitHub API.
+ */
+async function fetchPRFiles(repoFullName, prNumber, token) {
+  if (!token) {
+    console.warn("⚠️  No GITHUB_TOKEN — cannot fetch PR files");
+    return [];
+  }
+  try {
+    const response = await fetch(
+      `https://api.github.com/repos/${repoFullName}/pulls/${prNumber}/files`,
+      {
+        headers: {
+          Authorization: `Bearer ${token}`,
+          Accept: "application/vnd.github.v3+json",
+          "User-Agent": "kickload-watcher-mcp",
+        },
+      }
+    );
+    if (!response.ok) {
+      console.warn(`⚠️  GitHub API ${response.status} for PR #${prNumber} files`);
+      return [];
+    }
+    return await response.json();
+  } catch (err) {
+    console.warn("⚠️  GitHub API fetch failed:", err.message);
+    return [];
+  }
+}
+/**
+ * Verify GitHub webhook signature (HMAC-SHA256).
+ */
+function verifyGithubSignature(body, signature, secret) {
+  if (!signature) return false;
+  const expected = `sha256=${crypto
+    .createHmac("sha256", secret)
+    .update(body)
+    .digest("hex")}`;
+  try {
+    return crypto.timingSafeEqual(
+      Buffer.from(signature),
+      Buffer.from(expected)
+    );
+  } catch {
+    return false;
+  }
+}
+/**
+ * Quick check if a file path suggests it contains API routes.
+ */
+function hasApiExtension(filename) {
+  const apiExts = [".js", ".ts", ".py", ".go", ".java", ".rb", ".php", ".cs"];
+  const ext = filename.split(".").pop();
+  return apiExts.includes(`.${ext}`);
+}
+/**
+ * Check if a patch/diff contains API code.
+ */
+function containsApiCode(patch) {
+  const patterns = [
+    /\+.*app\.(get|post|put|patch|delete)\s*\(/i,
+    /\+.*router\.(get|post|put|patch|delete)\s*\(/i,
+    /\+.*@app\.route\s*\(/i,
+    /\+.*@router\.(get|post|put|patch|delete)\s*\(/i,
+    /\+.*r\.(GET|POST|PUT|PATCH|DELETE)\s*\(/,
+    /\+.*@(Get|Post|Put|Delete|Patch)Mapping\s*\(/,
+  ];
+  return patterns.some((p) => p.test(patch));
+}