mcp-aiven 0.1.5

package/dist/security.js

@@ -0,0 +1,52 @@
+export const REDACTED_PLACEHOLDER = '[REDACTED]';
+export const REDACTED_FIELDS = new Set([
+    'password', 'access_key', 'access_secret', 'secret_key', 'api_key',
+    'token', 'auth_token', 'private_key', 'client_secret',
+    'connection_uri', 'service_uri', 'postgres_uri', 'kafka_uri',
+    'redis_uri', 'opensearch_uri', 'mysql_uri', 'connection_string',
+    'sasl_password', 'keystore_password', 'truststore_password',
+    'ca_cert', 'client_cert', 'client_key', 'ssl_cert', 'ssl_key', 'certificate',
+]);
+const REDACTED_KEY = /(?:^|\.)(password|token|secret|api_key|access_key|access_secret|secret_key|auth_token|private_key|client_secret|connection_string|sasl_password|keystore_password|truststore_password|.*_uri|.*_url|ca_cert|client_cert|client_key|ssl_cert|ssl_key|certificate|.*_cert|.*_key|.*_ca|.*_certificate|.*_pem)$/i;
+const SENSITIVE_VALUE = /-----BEGIN [A-Z ]*(?:PRIVATE KEY|CERTIFICATE)-----|^[a-z]+:\/\/[^:]+:[^@]+@/i;
+const SCRUB_PATTERNS = [
+    {
+        pattern: /-----BEGIN [A-Z ]*CERTIFICATE-----[\s\S]*?-----END [A-Z ]*CERTIFICATE-----/g,
+        replacement: '[REDACTED_CERTIFICATE]',
+    },
+    {
+        pattern: /-----BEGIN [A-Z ]*PRIVATE KEY-----[\s\S]*?-----END [A-Z ]*PRIVATE KEY-----/g,
+        replacement: '[REDACTED_KEY]',
+    },
+    {
+        pattern: /[a-z]+:\/\/[^:]+:[^@\s]+@[^\s'"]+/gi,
+        replacement: '[REDACTED_URI]',
+    },
+];
+export function scrubSensitiveValues(value) {
+    let result = value;
+    for (const { pattern, replacement } of SCRUB_PATTERNS) {
+        result = result.replace(pattern, replacement);
+    }
+    return result;
+}
+export function redactSensitiveData(data) {
+    if (data == null)
+        return data;
+    if (typeof data === 'string') {
+        return (SENSITIVE_VALUE.test(data) ? REDACTED_PLACEHOLDER : data);
+    }
+    if (typeof data !== 'object')
+        return data;
+    const json = JSON.stringify(data, (key, value) => {
+        if (!key)
+            return value;
+        if (REDACTED_KEY.test(key))
+            return REDACTED_PLACEHOLDER;
+        if (typeof value === 'string' && SENSITIVE_VALUE.test(value))
+            return REDACTED_PLACEHOLDER;
+        return value;
+    });
+    return JSON.parse(json);
+}
+//# sourceMappingURL=security.js.map

package/dist/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,oBAAoB,GAAG,YAAY,CAAC;AAEjD,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IACrC,UAAU,EAAE,YAAY,EAAE,eAAe,EAAE,YAAY,EAAE,SAAS;IAClE,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,eAAe;IACrD,gBAAgB,EAAE,aAAa,EAAE,cAAc,EAAE,WAAW;IAC5D,WAAW,EAAE,gBAAgB,EAAE,WAAW,EAAE,mBAAmB;IAC/D,eAAe,EAAE,mBAAmB,EAAE,qBAAqB;IAC3D,SAAS,EAAE,aAAa,EAAE,YAAY,EAAE,UAAU,EAAE,SAAS,EAAE,aAAa;CAC7E,CAAC,CAAC;AAEH,MAAM,YAAY,GAAG,+SAA+S,CAAC;AACrU,MAAM,eAAe,GAAG,8EAA8E,CAAC;AAEvG,MAAM,cAAc,GAA+C;IACjE;QACE,OAAO,EAAE,6EAA6E;QACtF,WAAW,EAAE,wBAAwB;KACtC;IACD;QACE,OAAO,EAAE,6EAA6E;QACtF,WAAW,EAAE,gBAAgB;KAC9B;IACD;QACE,OAAO,EAAE,qCAAqC;QAC9C,WAAW,EAAE,gBAAgB;KAC9B;CACF,CAAC;AAEF,MAAM,UAAU,oBAAoB,CAAC,KAAa;IAChD,IAAI,MAAM,GAAG,KAAK,CAAC;IACnB,KAAK,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,cAAc,EAAE,CAAC;QACtD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IAChD,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAI,IAAO;IAC5C,IAAI,IAAI,IAAI,IAAI;QAAE,OAAO,IAAI,CAAC;IAC9B,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,IAAI,CAAM,CAAC;IACzE,CAAC;IACD,IAAI,OAAO,IAAI,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IAE1C,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC,GAAG,EAAE,KAAc,EAAE,EAAE;QACxD,IAAI,CAAC,GAAG;YAAE,OAAO,KAAK,CAAC;QAEvB,IAAI,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,OAAO,oBAAoB,CAAC;QACxD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,eAAe,CAAC,IAAI,CAAC,KAAK,CAAC;YAAE,OAAO,oBAAoB,CAAC;QAE1F,OAAO,KAAK,CAAC;IACf,CAAC,CAAC,CAAC;IAEH,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAM,CAAC;AAC/B,CAAC"}

package/dist/shared/service-info.d.ts

@@ -0,0 +1,5 @@
+import type { AivenClient } from '../client.js';
+import type { RequestOptions, ServiceConnectionInfo } from '../types.js';
+export declare function getProjectCaCert(client: AivenClient, project: string, token?: string): Promise<string>;
+export declare function getServiceConnectionInfo(client: AivenClient, project: string, serviceName: string, opts?: RequestOptions): Promise<ServiceConnectionInfo>;
+//# sourceMappingURL=service-info.d.ts.map

package/dist/shared/service-info.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"service-info.d.ts","sourceRoot":"","sources":["../../src/shared/service-info.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,KAAK,EAAE,cAAc,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAC;AAoBzE,wBAAsB,gBAAgB,CACpC,MAAM,EAAE,WAAW,EACnB,OAAO,EAAE,MAAM,EACf,KAAK,CAAC,EAAE,MAAM,GACb,OAAO,CAAC,MAAM,CAAC,CAcjB;AAED,wBAAsB,wBAAwB,CAC5C,MAAM,EAAE,WAAW,EACnB,OAAO,EAAE,MAAM,EACf,WAAW,EAAE,MAAM,EACnB,IAAI,CAAC,EAAE,cAAc,GACpB,OAAO,CAAC,qBAAqB,CAAC,CAmBhC"}

package/dist/shared/service-info.js

@@ -0,0 +1,24 @@
+export async function getProjectCaCert(client, project, token) {
+    const opts = token ? { token } : undefined;
+    const data = await client.get(`/project/${encodeURIComponent(project)}/kms/ca`, opts);
+    if (!data.certificate) {
+        throw new Error(`Failed to retrieve the CA certificate for project "${project}". ` +
+            'A valid CA certificate is required to securely connect to PostgreSQL. ' +
+            'Refusing to connect without TLS verification.');
+    }
+    return data.certificate;
+}
+export async function getServiceConnectionInfo(client, project, serviceName, opts) {
+    const data = await client.get(`/project/${encodeURIComponent(project)}/service/${encodeURIComponent(serviceName)}`, opts);
+    const params = data.service.service_uri_params;
+    if (!params) {
+        throw new Error(`No connection info available for service ${serviceName}. Ensure the service is running.`);
+    }
+    const { host, port: portStr, user, password, dbname = 'defaultdb' } = params;
+    const port = Number(portStr);
+    if (!host || !port || !user || !password) {
+        throw new Error(`Incomplete connection details for service ${serviceName}. Ensure the service is running.`);
+    }
+    return { host, port, user, password, dbname };
+}
+//# sourceMappingURL=service-info.js.map

package/dist/shared/service-info.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"service-info.js","sourceRoot":"","sources":["../../src/shared/service-info.ts"],"names":[],"mappings":"AAqBA,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,MAAmB,EACnB,OAAe,EACf,KAAc;IAEd,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAC3C,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,GAAG,CAC3B,YAAY,kBAAkB,CAAC,OAAO,CAAC,SAAS,EAChD,IAAI,CACL,CAAC;IACF,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CACb,sDAAsD,OAAO,KAAK;YAChE,wEAAwE;YACxE,+CAA+C,CAClD,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,CAAC,WAAW,CAAC;AAC1B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,MAAmB,EACnB,OAAe,EACf,WAAmB,EACnB,IAAqB;IAErB,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,GAAG,CAC3B,YAAY,kBAAkB,CAAC,OAAO,CAAC,YAAY,kBAAkB,CAAC,WAAW,CAAC,EAAE,EACpF,IAAI,CACL,CAAC;IAEF,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,kBAAkB,CAAC;IAC/C,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,4CAA4C,WAAW,kCAAkC,CAAC,CAAC;IAC7G,CAAC;IAED,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,GAAG,WAAW,EAAE,GAAG,MAAM,CAAC;IAC7E,MAAM,IAAI,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC;IAE7B,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QACzC,MAAM,IAAI,KAAK,CAAC,6CAA6C,WAAW,kCAAkC,CAAC,CAAC;IAC9G,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;AAChD,CAAC"}

package/dist/tool-result-limit.d.ts

@@ -0,0 +1,7 @@
+export declare function getMaxToolResultChars(): number;
+/**
+ * If over cap, returns a prefix of `text` plus a trim notice so total length ≤ `limit`.
+ * Logs to stderr (safe for stdio MCP: protocol uses stdout). No-op when under cap or uncapped.
+ */
+export declare function applyToolResultCharCap(text: string): string;
+//# sourceMappingURL=tool-result-limit.d.ts.map

package/dist/tool-result-limit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool-result-limit.d.ts","sourceRoot":"","sources":["../src/tool-result-limit.ts"],"names":[],"mappings":"AAEA,wBAAgB,qBAAqB,IAAI,MAAM,CAO9C;AAWD;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAoC3D"}

package/dist/tool-result-limit.js

@@ -0,0 +1,44 @@
+const DEFAULT_MAX_CHARS = 100_000;
+export function getMaxToolResultChars() {
+    const raw = process.env['MCP_MAX_TOOL_RESULT_CHARS'];
+    if (raw === undefined || raw === '')
+        return DEFAULT_MAX_CHARS;
+    const n = parseInt(raw, 10);
+    if (!Number.isFinite(n))
+        return DEFAULT_MAX_CHARS;
+    if (n <= 0)
+        return 0;
+    return n;
+}
+function trimSuffix(originalLength, limit) {
+    return (`\n\n---\n**Trimmed:** This response was cut because it exceeded the maximum tool output size ` +
+        `(${originalLength} characters; cap ${limit} from MCP_MAX_TOOL_RESULT_CHARS). ` +
+        `Only the beginning of the payload is included—the rest was omitted. ` +
+        `If this was JSON, the tail may be incomplete. Narrow the request or raise the cap if needed.`);
+}
+/**
+ * If over cap, returns a prefix of `text` plus a trim notice so total length ≤ `limit`.
+ * Logs to stderr (safe for stdio MCP: protocol uses stdout). No-op when under cap or uncapped.
+ */
+export function applyToolResultCharCap(text) {
+    const limit = getMaxToolResultChars();
+    if (limit <= 0 || text.length <= limit)
+        return text;
+    const suffix = trimSuffix(text.length, limit);
+    let headLen = limit - suffix.length;
+    if (headLen < 0) {
+        const minimal = `\n… [mcp-aiven: trimmed ${String(text.length)}→${String(limit)} chars]`;
+        headLen = limit - minimal.length;
+        if (headLen <= 0) {
+            console.error('mcp-aiven: Tool result trim: cap %d too small for payload of %d chars; returning truncated notice only', limit, text.length);
+            return minimal.slice(0, limit);
+        }
+        const out = text.slice(0, headLen) + minimal;
+        console.error('mcp-aiven: Tool result trimmed: %d -> %d chars (MCP_MAX_TOOL_RESULT_CHARS=%d)', text.length, out.length, limit);
+        return out;
+    }
+    const out = text.slice(0, headLen) + suffix;
+    console.error('mcp-aiven: Tool result trimmed: %d -> %d chars (MCP_MAX_TOOL_RESULT_CHARS=%d)', text.length, out.length, limit);
+    return out;
+}
+//# sourceMappingURL=tool-result-limit.js.map

package/dist/tool-result-limit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool-result-limit.js","sourceRoot":"","sources":["../src/tool-result-limit.ts"],"names":[],"mappings":"AAAA,MAAM,iBAAiB,GAAG,OAAO,CAAC;AAElC,MAAM,UAAU,qBAAqB;IACnC,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC;IACrD,IAAI,GAAG,KAAK,SAAS,IAAI,GAAG,KAAK,EAAE;QAAE,OAAO,iBAAiB,CAAC;IAC9D,MAAM,CAAC,GAAG,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;IAC5B,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC;QAAE,OAAO,iBAAiB,CAAC;IAClD,IAAI,CAAC,IAAI,CAAC;QAAE,OAAO,CAAC,CAAC;IACrB,OAAO,CAAC,CAAC;AACX,CAAC;AAED,SAAS,UAAU,CAAC,cAAsB,EAAE,KAAa;IACvD,OAAO,CACL,+FAA+F;QAC/F,IAAI,cAAc,oBAAoB,KAAK,oCAAoC;QAC/E,sEAAsE;QACtE,8FAA8F,CAC/F,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,sBAAsB,CAAC,IAAY;IACjD,MAAM,KAAK,GAAG,qBAAqB,EAAE,CAAC;IACtC,IAAI,KAAK,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,IAAI,KAAK;QAAE,OAAO,IAAI,CAAC;IAEpD,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IAC9C,IAAI,OAAO,GAAG,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC;IAEpC,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;QAChB,MAAM,OAAO,GAAG,2BAA2B,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC;QACzF,OAAO,GAAG,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC;QACjC,IAAI,OAAO,IAAI,CAAC,EAAE,CAAC;YACjB,OAAO,CAAC,KAAK,CACX,wGAAwG,EACxG,KAAK,EACL,IAAI,CAAC,MAAM,CACZ,CAAC;YACF,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;QACjC,CAAC;QACD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC;QAC7C,OAAO,CAAC,KAAK,CACX,+EAA+E,EAC/E,IAAI,CAAC,MAAM,EACX,GAAG,CAAC,MAAM,EACV,KAAK,CACN,CAAC;QACF,OAAO,GAAG,CAAC;IACb,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC;IAC5C,OAAO,CAAC,KAAK,CACX,+EAA+E,EAC/E,IAAI,CAAC,MAAM,EACX,GAAG,CAAC,MAAM,EACV,KAAK,CACN,CAAC;IACF,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/tools/api-tool.d.ts

@@ -0,0 +1,4 @@
+import type { AivenClient } from '../client.js';
+import type { ToolDefinition, ApiToolConfig } from '../types.js';
+export declare function createApiTool(config: ApiToolConfig, client: AivenClient): ToolDefinition;
+//# sourceMappingURL=api-tool.d.ts.map

package/dist/tools/api-tool.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-tool.d.ts","sourceRoot":"","sources":["../../src/tools/api-tool.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAChD,OAAO,KAAK,EAAE,cAAc,EAA8B,aAAa,EAAkB,MAAM,aAAa,CAAC;AAwE7G,wBAAgB,aAAa,CAAC,MAAM,EAAE,aAAa,EAAE,MAAM,EAAE,WAAW,GAAG,cAAc,CAiCxF"}

package/dist/tools/api-tool.js

@@ -0,0 +1,80 @@
+import { toolSuccess, toolError } from '../types.js';
+import { errorMessage } from '../errors.js';
+import { redactSensitiveData } from '../security.js';
+import { applyResponseFilter } from './response-filter.js';
+function extractPathParams(path) {
+    return new Set([...path.matchAll(/\{([^}]+)\}/g)]
+        .map((m) => m[1])
+        .filter((s) => s !== undefined));
+}
+function buildUrl(template, args) {
+    return template.replace(/\{([^}]+)\}/g, (_, key) => encodeURIComponent(String(args[key])));
+}
+function collectNonPathParams(args, pathParams) {
+    const result = {};
+    for (const [k, v] of Object.entries(args)) {
+        if (!pathParams.has(k))
+            result[k] = v;
+    }
+    return result;
+}
+function buildQueryOpts(args, pathParams, opts) {
+    const query = {};
+    for (const [k, v] of Object.entries(args)) {
+        if (!pathParams.has(k) && v !== undefined) {
+            query[k] = v;
+        }
+    }
+    if (Object.keys(query).length === 0)
+        return opts;
+    return { ...opts, query };
+}
+async function executeRequest(client, config, args, pathParams, opts) {
+    const url = buildUrl(config.path, args);
+    if (config.method === 'GET') {
+        return client.get(url, buildQueryOpts(args, pathParams, opts));
+    }
+    if (config.method === 'DELETE') {
+        return client.delete(url, opts);
+    }
+    const body = collectNonPathParams(args, pathParams);
+    if (config.defaults) {
+        for (const [k, v] of Object.entries(config.defaults)) {
+            if (!(k in body))
+                body[k] = v;
+        }
+    }
+    return client.request(config.method, url, body, opts);
+}
+export function createApiTool(config, client) {
+    const pathParams = extractPathParams(config.path);
+    return {
+        name: config.name,
+        category: config.category,
+        definition: {
+            title: config.title,
+            description: config.description,
+            inputSchema: config.inputSchema,
+            annotations: config.annotations,
+        },
+        handler: async (params, context) => {
+            try {
+                const args = params;
+                const opts = {
+                    token: context?.token,
+                    mcpClient: context?.mcpClient,
+                    toolName: config.name,
+                };
+                const data = await executeRequest(client, config, args, pathParams, opts);
+                const filtered = config.responseFilter
+                    ? applyResponseFilter(data, config.responseFilter)
+                    : data;
+                return toolSuccess(redactSensitiveData(filtered));
+            }
+            catch (err) {
+                return toolError(errorMessage(err));
+            }
+        },
+    };
+}
+//# sourceMappingURL=api-tool.js.map

package/dist/tools/api-tool.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-tool.js","sourceRoot":"","sources":["../../src/tools/api-tool.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACrD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,mBAAmB,EAAE,MAAM,gBAAgB,CAAC;AACrD,OAAO,EAAE,mBAAmB,EAAE,MAAM,sBAAsB,CAAC;AAE3D,SAAS,iBAAiB,CAAC,IAAY;IACrC,OAAO,IAAI,GAAG,CACZ,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;SAC/B,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;SAChB,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC,CAC/C,CAAC;AACJ,CAAC;AAED,SAAS,QAAQ,CAAC,QAAgB,EAAE,IAA6B;IAC/D,OAAO,QAAQ,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC,CAAC,EAAE,GAAW,EAAE,EAAE,CACzD,kBAAkB,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CACtC,CAAC;AACJ,CAAC;AAED,SAAS,oBAAoB,CAC3B,IAA6B,EAC7B,UAAuB;IAEvB,MAAM,MAAM,GAA4B,EAAE,CAAC;IAC3C,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1C,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;YAAE,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACxC,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,cAAc,CACrB,IAA6B,EAC7B,UAAuB,EACvB,IAAgC;IAEhC,MAAM,KAAK,GAA0D,EAAE,CAAC;IACxE,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1C,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,SAAS,EAAE,CAAC;YAC1C,KAAK,CAAC,CAAC,CAAC,GAAG,CAA8B,CAAC;QAC5C,CAAC;IACH,CAAC;IACD,IAAI,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACjD,OAAO,EAAE,GAAG,IAAI,EAAE,KAAK,EAAE,CAAC;AAC5B,CAAC;AAED,KAAK,UAAU,cAAc,CAC3B,MAAmB,EACnB,MAAqB,EACrB,IAA6B,EAC7B,UAAuB,EACvB,IAAgC;IAEhC,MAAM,GAAG,GAAG,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAExC,IAAI,MAAM,CAAC,MAAM,KAAK,KAAK,EAAE,CAAC;QAC5B,OAAO,MAAM,CAAC,GAAG,CAAC,GAAG,EAAE,cAAc,CAAC,IAAI,EAAE,UAAU,EAAE,IAAI,CAAC,CAAC,CAAC;IACjE,CAAC;IAED,IAAI,MAAM,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QAC/B,OAAO,MAAM,CAAC,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,MAAM,IAAI,GAAG,oBAAoB,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;IACpD,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;QACpB,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;YACrD,IAAI,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;gBAAE,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;AACxD,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,MAAqB,EAAE,MAAmB;IACtE,MAAM,UAAU,GAAG,iBAAiB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IAElD,OAAO;QACL,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,UAAU,EAAE;YACV,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,WAAW,EAAE,MAAM,CAAC,WAAW;SAChC;QACD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAwB,EAAuB,EAAE;YACvE,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,MAAiC,CAAC;gBAC/C,MAAM,IAAI,GAAmB;oBAC3B,KAAK,EAAE,OAAO,EAAE,KAAK;oBACrB,SAAS,EAAE,OAAO,EAAE,SAAS;oBAC7B,QAAQ,EAAE,MAAM,CAAC,IAAI;iBACtB,CAAC;gBAEF,MAAM,IAAI,GAAG,MAAM,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,CAAC,CAAC;gBAE1E,MAAM,QAAQ,GAAG,MAAM,CAAC,cAAc;oBACpC,CAAC,CAAC,mBAAmB,CAAC,IAAI,EAAE,MAAM,CAAC,cAAc,CAAC;oBAClD,CAAC,CAAC,IAAI,CAAC;gBAET,OAAO,WAAW,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC,CAAC;YACpD,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC;YACtC,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/tools/applications/handlers.d.ts

@@ -0,0 +1,4 @@
+import type { AivenClient } from '../../client.js';
+import type { ToolDefinition } from '../../types.js';
+export declare function createApplicationTools(client: AivenClient): ToolDefinition[];
+//# sourceMappingURL=handlers.d.ts.map

package/dist/tools/applications/handlers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"handlers.d.ts","sourceRoot":"","sources":["../../../src/tools/applications/handlers.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,KAAK,EAAE,cAAc,EAA8B,MAAM,gBAAgB,CAAC;AAwGjF,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,WAAW,GAAG,cAAc,EAAE,CAwW5E"}

package/dist/tools/applications/handlers.js

@@ -0,0 +1,345 @@
+import { ServiceCategory, ApplicationToolName, CREATE_ANNOTATIONS, UPDATE_ANNOTATIONS, READ_ONLY_ANNOTATIONS, toolSuccess, toolError, } from '../../types.js';
+import { errorMessage } from '../../errors.js';
+import { redactSensitiveData } from '../../security.js';
+import { getProjectCaCert } from '../../shared/service-info.js';
+import { deployApplicationInput, redeployApplicationInput, vcsIntegrationListInput, vcsIntegrationRepositoryListInput, } from './schemas.js';
+/** Max repositories returned in one call — stops pagination early (avoids huge payloads). */
+const MAX_VCS_REPOSITORY_LIST_ITEMS = 1000;
+/** Safety cap on HTTP pages if the API keeps returning data. */
+const MAX_VCS_REPOSITORY_LIST_PAGES = 100;
+async function fetchServiceDetails(client, project, serviceName, token) {
+    const opts = token ? { token } : undefined;
+    const result = await client.get(`/project/${encodeURIComponent(project)}/service/${encodeURIComponent(serviceName)}`, opts);
+    return result.service;
+}
+async function fetchAppUrl(client, project, serviceName, token) {
+    const service = await fetchServiceDetails(client, project, serviceName, token);
+    const component = service.components?.[0];
+    if (!component?.path) {
+        throw new Error(`No public URL available for application service ${serviceName}. Ensure the service is running.`);
+    }
+    return component.path;
+}
+/**
+ * Maps a service_integrations input item to the API shape for application_service_credential.
+ * pg / valkey / opensearch all use a single connection_string_environment_variable_name.
+ * kafka exposes all 5 SSL credential env var names so the app code never needs to change.
+ */
+function buildServiceIntegration(integration) {
+    if (integration.service_type === 'kafka') {
+        return {
+            integration_type: 'application_service_credential',
+            source_service: integration.service_name,
+            user_config: {
+                service_type: 'kafka',
+                bootstrap_servers_environment_variable_name: integration.bootstrap_servers_env,
+                security_protocol_environment_variable_name: integration.security_protocol_env,
+                access_key_environment_variable_name: integration.access_key_env,
+                access_cert_environment_variable_name: integration.access_cert_env,
+                ca_cert_environment_variable_name: integration.ca_cert_env,
+            },
+        };
+    }
+    // pg, valkey, opensearch share the same user_config shape
+    return {
+        integration_type: 'application_service_credential',
+        source_service: integration.service_name,
+        user_config: {
+            service_type: integration.service_type,
+            connection_string_environment_variable_name: integration.env_key,
+        },
+    };
+}
+export function createApplicationTools(client) {
+    return [
+        {
+            name: ApplicationToolName.Deploy,
+            category: ServiceCategory.Application,
+            definition: {
+                title: 'Deploy Application to Aiven',
+                description: `Deploy a Dockerized application to Aiven. Creates an Aiven app service that pulls, builds, and runs the Docker image.
+
+## Mandatory pre-deploy verification (read-only checks — do NOT create, push, or modify anything)
+
+Inspect the local project files and confirm each applicable item. Report findings to the user. Do not call this tool until the user confirms all checks pass.
+
+- \`repository_url\` visibility → fetch repository metadata and check the \`private\` field. Do not infer from file access — being able to read files tells you nothing about visibility. If you cannot determine it, ask the user.
+- VCS credentials (private repos only) → if the repo is private, call \`aiven_vcs_integration_list\` (project), then for each integration call \`aiven_vcs_integration_repository_list\` and find the repo whose \`source_url\` matches (strip trailing \`.git\`, lowercase both sides). If matched, use the resolved \`vcs_integration_id\` and \`remote_repository_id\` — do NOT ask the user for these. If no match found, continue remaining checks but do NOT call this tool; after all checks, tell the user: "⚠️ This repository is private but is not connected to Aiven. Please connect your GitHub account via the Aiven Console and grant access to this repo, then try again."
+- \`build_path\` → verify Dockerfile exists, contains \`EXPOSE\` matching \`port\` param, has \`CMD\`/\`ENTRYPOINT\`
+- \`port\` → verify app source binds to \`0.0.0.0\`, not \`localhost\`/\`127.0.0.1\`
+- \`service_integrations\` → for each entry, verify the source service is RUNNING (\`aiven_service_get\`); verify app reads the configured env var names
+- PostgreSQL/Valkey SSL → the deploy tool injects \`PROJECT_CA_CERT\` (base64-encoded Aiven CA cert). App code MUST strip \`sslmode\` from the connection URL (pg v8 ignores the \`ssl\` option when \`sslmode\` is in the URL) and use the CA cert for proper TLS. Required pattern for Node.js pg client:
+  \`\`\`js
+  const url = new URL(process.env.DATABASE_URL);
+  url.searchParams.delete('sslmode');
+  const pool = new pg.Pool({
+    connectionString: url.toString(),
+    ssl: { ca: Buffer.from(process.env.PROJECT_CA_CERT, 'base64').toString() },
+  });
+  \`\`\`
+  Verify this pattern exists in the source before deploying. If missing, add it and push before calling this tool.
+- OpenSearch SSL → Aiven OpenSearch uses a publicly-trusted TLS certificate. No \`PROJECT_CA_CERT\` is injected and none is needed. App code should connect using the \`OPENSEARCH_URL\` directly without any custom CA cert (the default system trust store is sufficient).
+- \`app_service_name\` → verify target app is RUNNING (\`aiven_service_get\`); source reads \`app_env_key\` env var
+- \`repository_url\` → ask the user to provide the repo URL and confirm code is pushed to \`branch\`
+- \`.gitignore\` → verify \`node_modules/\` and \`dist/\` are listed so they are not pushed to the repo
+- Dockerfile → use \`npm install\` (not \`npm ci\`) and only \`COPY package.json\` — lockfiles may not be in the repo
+- \`project_vpc_id\` → normally not needed — the backend auto-selects the VPC when the project has exactly one. Only required if the project has multiple VPCs (the API will return a CONFLICT error asking you to specify); in that case call \`aiven_project_vpc_list\` to list VPCs and ask the user which to use
+
+Example Dockerfile for a TypeScript Node.js app:
+\`\`\`dockerfile
+FROM node:22-alpine
+WORKDIR /app
+COPY package.json ./
+RUN npm install
+COPY . .
+RUN npx tsc
+RUN npm prune --production
+EXPOSE 3000
+CMD ["node", "dist/index.js"]
+\`\`\``,
+                inputSchema: deployApplicationInput,
+                annotations: CREATE_ANNOTATIONS,
+            },
+            handler: async (params, context) => {
+                const { project, service_name: serviceName, repository_url: repositoryUrl, vcs_integration_id: vcsIntegrationId, remote_repository_id: remoteRepositoryId, branch, build_path: buildPath, port, port_name: portName, plan, cloud, environment_variables: envVars, service_integrations: serviceIntegrationsInput, app_service_name: appServiceName, app_env_key: appEnvKey, project_vpc_id: projectVpcId, } = params;
+                // Build environment variables list (user-provided only)
+                const allEnvVars = [];
+                if (envVars && envVars.length > 0) {
+                    for (const v of envVars) {
+                        allEnvVars.push({ key: v.key, kind: v.kind, value: v.value });
+                    }
+                }
+                // Build service integrations for automatic credential injection
+                const serviceIntegrations = serviceIntegrationsInput?.map(buildServiceIntegration) ?? [];
+                // Inject PROJECT_CA_CERT when connecting to services that use TLS with Aiven's self-signed CA.
+                // Matches App Builder behaviour: fetch from /project/{project}/kms/ca and base64-encode.
+                // Kafka credentials are injected as raw PEM files by the platform itself — no CA cert needed here.
+                const needsCaCert = serviceIntegrationsInput?.some((i) => i.service_type === 'pg' || i.service_type === 'valkey');
+                if (needsCaCert) {
+                    try {
+                        const caCert = await getProjectCaCert(client, project, context?.token);
+                        if (caCert) {
+                            allEnvVars.push({
+                                key: 'PROJECT_CA_CERT',
+                                kind: 'secret',
+                                value: Buffer.from(caCert).toString('base64'),
+                            });
+                        }
+                    }
+                    catch (err) {
+                        return toolError(`Failed to fetch project CA certificate required for TLS with pg/valkey: ${errorMessage(err)}`);
+                    }
+                }
+                // Resolve application service URL if requested (app-to-app, not a credential integration)
+                if (appServiceName) {
+                    try {
+                        const url = await fetchAppUrl(client, project, appServiceName, context?.token);
+                        allEnvVars.push({ key: appEnvKey, kind: 'variable', value: url });
+                    }
+                    catch (err) {
+                        return toolError(errorMessage(err));
+                    }
+                }
+                // Ensure repository URL ends with .git for proper cloning
+                const repoUrl = repositoryUrl.endsWith('.git')
+                    ? repositoryUrl
+                    : `${repositoryUrl}.git`;
+                // Ensure build_path has ./ prefix
+                const normalizedBuildPath = buildPath.startsWith('./')
+                    ? buildPath
+                    : `./${buildPath}`;
+                // Build source config - include VCS integration IDs for private repo access
+                const sourceConfig = {
+                    repository_url: repoUrl,
+                    branch,
+                    build_path: normalizedBuildPath,
+                };
+                // Add VCS integration IDs if provided (required for private repos)
+                if (vcsIntegrationId) {
+                    sourceConfig['vcs_integration_id'] = vcsIntegrationId;
+                }
+                if (remoteRepositoryId) {
+                    sourceConfig['remote_repository_id'] = remoteRepositoryId;
+                }
+                const applicationConfig = {
+                    source: sourceConfig,
+                    ports: [{ name: portName, port, protocol: 'HTTP' }],
+                    environment_variables: allEnvVars,
+                };
+                const data = {
+                    service_name: serviceName,
+                    service_type: 'application',
+                    plan,
+                    cloud,
+                    ...(projectVpcId !== undefined ? { project_vpc_id: projectVpcId } : {}),
+                    service_integrations: serviceIntegrations.length > 0 ? serviceIntegrations : undefined,
+                    user_config: {
+                        application: applicationConfig,
+                    },
+                };
+                try {
+                    const opts = context?.token ? { token: context.token } : undefined;
+                    const result = await client.post(`/project/${encodeURIComponent(project)}/service`, data, opts);
+                    const service = result['service'];
+                    if (service) {
+                        const summary = {
+                            service_name: service['service_name'],
+                            service_type: service['service_type'],
+                            state: service['state'],
+                            plan: service['plan'],
+                            cloud_name: service['cloud_name'],
+                        };
+                        return toolSuccess(redactSensitiveData(summary));
+                    }
+                    return toolSuccess(redactSensitiveData(result));
+                }
+                catch (err) {
+                    return toolError(errorMessage(err));
+                }
+            },
+        },
+        {
+            name: ApplicationToolName.Redeploy,
+            category: ServiceCategory.Application,
+            definition: {
+                title: 'Redeploy Application',
+                description: `Rebuild and redeploy an existing Aiven application service after new code has been pushed to its repository.
+
+Use this ONLY when:
+- The application service already exists and was previously deployed successfully with \`aiven_application_deploy\`
+- The user has pushed a code change to the same repository and branch the service was deployed from
+- Everything else stays the same: same repo, same branch, same port, same service configuration
+
+Do NOT use this tool:
+- When the Aiven service itself was never created (e.g. \`aiven_application_deploy\` returned an API error and no service exists) — call \`aiven_application_deploy\` again instead.
+- To change service configuration (plan, cloud, env vars, integrations) — use \`aiven_service_update\` or redeploy via \`aiven_application_deploy\` with updated parameters.
+
+Runtime errors in the app (500s, crashes, SSL errors) are NOT deploy failures — the service exists and is running. Use this tool to pick up a code fix in those cases.
+
+The rebuild pulls the latest commit from the configured branch and rebuilds the Docker image. It does not change any service settings.`,
+                inputSchema: redeployApplicationInput,
+                annotations: UPDATE_ANNOTATIONS,
+            },
+            handler: async (params, context) => {
+                const { project, service_name: serviceName } = params;
+                try {
+                    const opts = context?.token ? { token: context.token } : undefined;
+                    // No dedicated redeploy endpoint exists yet. A no-op service update (empty PUT body)
+                    // triggers Meta Core's Executor to pick up the change and redeploy — same mechanism
+                    // used by the Aiven Console redeploy button.
+                    await client.put(`/project/${encodeURIComponent(project)}/service/${encodeURIComponent(serviceName)}`, {}, opts);
+                    return toolSuccess({
+                        service_name: serviceName,
+                        message: 'Redeploy triggered. The service will pull latest code, rebuild, and deploy.',
+                    });
+                }
+                catch (err) {
+                    return toolError(errorMessage(err));
+                }
+            },
+        },
+        {
+            name: ApplicationToolName.VcsIntegrationList,
+            category: ServiceCategory.Application,
+            definition: {
+                title: 'List VCS Integrations',
+                description: `List connected VCS (GitHub) accounts for the organization that owns a project.
+
+Use this as the first step when deploying from a repository — run it silently before \`aiven_application_deploy\` to discover available VCS integrations and their IDs. The organization_id is resolved internally from the project name.
+
+Returns each integration's \`vcs_integration_id\` (needed for \`aiven_vcs_integration_repository_list\`) and \`vcs_account_name\` (the GitHub org or user name).`,
+                inputSchema: vcsIntegrationListInput,
+                annotations: READ_ONLY_ANNOTATIONS,
+            },
+            handler: async (params, context) => {
+                const { project } = params;
+                const opts = context?.token ? { token: context.token } : undefined;
+                let organizationId;
+                try {
+                    const projectResult = await client.get(`/project/${encodeURIComponent(project)}`, opts);
+                    organizationId = projectResult.project.organization_id;
+                    if (!organizationId) {
+                        return toolError(`Project '${project}' has no associated organization.`);
+                    }
+                }
+                catch (err) {
+                    return toolError(`Failed to fetch project '${project}': ${errorMessage(err)}`);
+                }
+                try {
+                    const result = await client.get(`/organization/${encodeURIComponent(organizationId)}/application/vcs-integrations`, opts);
+                    return toolSuccess({
+                        organization_id: organizationId,
+                        vcs_integrations: result.vcs_integrations,
+                    });
+                }
+                catch (err) {
+                    return toolError(errorMessage(err));
+                }
+            },
+        },
+        {
+            name: ApplicationToolName.VcsIntegrationRepositoryList,
+            category: ServiceCategory.Application,
+            definition: {
+                title: 'List VCS Integration Repositories',
+                description: `List repositories accessible via a VCS integration (connected GitHub account).
+
+Use this after \`aiven_vcs_integration_list\` to find the \`remote_repository_id\` needed for deploying a private repository. Compare each repository's \`source_url\` against the user's repository URL to find the match (normalize: strip trailing \`.git\`, lowercase both sides before comparing).
+
+The tool follows pagination until there are no more pages, or until ${MAX_VCS_REPOSITORY_LIST_ITEMS} repositories have been collected (whichever comes first). If truncated, \`truncated\` is true and \`next\` may still be set when more pages exist.
+
+Returns \`remote_repository_id\`, \`full_name\`, \`source_url\`, and \`default_branch_name\` for each repository.`,
+                inputSchema: vcsIntegrationRepositoryListInput,
+                annotations: READ_ONLY_ANNOTATIONS,
+            },
+            handler: async (params, context) => {
+                const { organization_id: organizationId, vcs_integration_id: vcsIntegrationId } = params;
+                const opts = context?.token ? { token: context.token } : undefined;
+                try {
+                    const path = `/organization/${encodeURIComponent(organizationId)}/application/vcs-integrations/${encodeURIComponent(vcsIntegrationId)}/repositories`;
+                    const repositories = [];
+                    let cursor;
+                    for (let page = 0; page < MAX_VCS_REPOSITORY_LIST_PAGES; page++) {
+                        const result = await client.get(path, {
+                            ...opts,
+                            query: cursor ? { cursor } : undefined,
+                        });
+                        const batch = result.repositories;
+                        const next = result.next ?? null;
+                        const room = MAX_VCS_REPOSITORY_LIST_ITEMS - repositories.length;
+                        if (room > 0) {
+                            repositories.push(...batch.slice(0, room));
+                        }
+                        const hitItemCap = repositories.length >= MAX_VCS_REPOSITORY_LIST_ITEMS;
+                        const hitEnd = !next;
+                        if (hitEnd) {
+                            return toolSuccess({
+                                repositories,
+                                next: null,
+                                truncated: false,
+                            });
+                        }
+                        if (hitItemCap) {
+                            return toolSuccess({
+                                repositories,
+                                next,
+                                truncated: true,
+                            });
+                        }
+                        cursor = next;
+                    }
+                    return toolSuccess({
+                        repositories,
+                        next: cursor ?? null,
+                        truncated: true,
+                        note: `Pagination stopped after ${MAX_VCS_REPOSITORY_LIST_PAGES} pages (safety limit).`,
+                    });
+                }
+                catch (err) {
+                    return toolError(errorMessage(err));
+                }
+            },
+        },
+    ];
+}
+//# sourceMappingURL=handlers.js.map

package/dist/tools/applications/handlers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"handlers.js","sourceRoot":"","sources":["../../../src/tools/applications/handlers.ts"],"names":[],"mappings":"AAGA,OAAO,EACL,eAAe,EACf,mBAAmB,EACnB,kBAAkB,EAClB,kBAAkB,EAClB,qBAAqB,EACrB,WAAW,EACX,SAAS,GACV,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,mBAAmB,EAAE,MAAM,mBAAmB,CAAC;AACxD,OAAO,EAAE,gBAAgB,EAAE,MAAM,8BAA8B,CAAC;AAChE,OAAO,EACL,sBAAsB,EACtB,wBAAwB,EACxB,uBAAuB,EACvB,iCAAiC,GAElC,MAAM,cAAc,CAAC;AAEtB,6FAA6F;AAC7F,MAAM,6BAA6B,GAAG,IAAI,CAAC;AAC3C,gEAAgE;AAChE,MAAM,6BAA6B,GAAG,GAAG,CAAC;AAc1C,KAAK,UAAU,mBAAmB,CAChC,MAAmB,EACnB,OAAe,EACf,WAAmB,EACnB,KAAc;IAEd,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAC3C,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,GAAG,CAC7B,YAAY,kBAAkB,CAAC,OAAO,CAAC,YAAY,kBAAkB,CAAC,WAAW,CAAC,EAAE,EACpF,IAAI,CACL,CAAC;IACF,OAAO,MAAM,CAAC,OAAO,CAAC;AACxB,CAAC;AAED,KAAK,UAAU,WAAW,CACxB,MAAmB,EACnB,OAAe,EACf,WAAmB,EACnB,KAAc;IAEd,MAAM,OAAO,GAAG,MAAM,mBAAmB,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,KAAK,CAAC,CAAC;IAC/E,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,CAAC;IAC1C,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC;QACrB,MAAM,IAAI,KAAK,CAAC,mDAAmD,WAAW,kCAAkC,CAAC,CAAC;IACpH,CAAC;IACD,OAAO,SAAS,CAAC,IAAI,CAAC;AACxB,CAAC;AAQD;;;;GAIG;AACH,SAAS,uBAAuB,CAAC,WAAoC;IACnE,IAAI,WAAW,CAAC,YAAY,KAAK,OAAO,EAAE,CAAC;QACzC,OAAO;YACL,gBAAgB,EAAE,gCAAgC;YAClD,cAAc,EAAE,WAAW,CAAC,YAAY;YACxC,WAAW,EAAE;gBACX,YAAY,EAAE,OAAO;gBACrB,2CAA2C,EAAE,WAAW,CAAC,qBAAqB;gBAC9E,2CAA2C,EAAE,WAAW,CAAC,qBAAqB;gBAC9E,oCAAoC,EAAE,WAAW,CAAC,cAAc;gBAChE,qCAAqC,EAAE,WAAW,CAAC,eAAe;gBAClE,iCAAiC,EAAE,WAAW,CAAC,WAAW;aAC3D;SACF,CAAC;IACJ,CAAC;IAED,0DAA0D;IAC1D,OAAO;QACL,gBAAgB,EAAE,gCAAgC;QAClD,cAAc,EAAE,WAAW,CAAC,YAAY;QACxC,WAAW,EAAE;YACX,YAAY,EAAE,WAAW,CAAC,YAAY;YACtC,2CAA2C,EAAE,WAAW,CAAC,OAAO;SACjE;KACF,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,MAAmB;IACxD,OAAO;QACL;YACE,IAAI,EAAE,mBAAmB,CAAC,MAAM;YAChC,QAAQ,EAAE,eAAe,CAAC,WAAW;YACrC,UAAU,EAAE;gBACV,KAAK,EAAE,6BAA6B;gBACpC,WAAW,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAuCd;gBACC,WAAW,EAAE,sBAAsB;gBACnC,WAAW,EAAE,kBAAkB;aAChC;YACD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAwB,EAAuB,EAAE;gBACvE,MAAM,EACJ,OAAO,EACP,YAAY,EAAE,WAAW,EACzB,cAAc,EAAE,aAAa,EAC7B,kBAAkB,EAAE,gBAAgB,EACpC,oBAAoB,EAAE,kBAAkB,EACxC,MAAM,EACN,UAAU,EAAE,SAAS,EACrB,IAAI,EACJ,SAAS,EAAE,QAAQ,EACnB,IAAI,EACJ,KAAK,EACL,qBAAqB,EAAE,OAAO,EAC9B,oBAAoB,EAAE,wBAAwB,EAC9C,gBAAgB,EAAE,cAAc,EAChC,WAAW,EAAE,SAAS,EACtB,cAAc,EAAE,YAAY,GAC7B,GAAG,MAAgD,CAAC;gBAErD,wDAAwD;gBACxD,MAAM,UAAU,GAAmD,EAAE,CAAC;gBAEtE,IAAI,OAAO,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAClC,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;wBACxB,UAAU,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;oBAChE,CAAC;gBACH,CAAC;gBAED,gEAAgE;gBAChE,MAAM,mBAAmB,GACvB,wBAAwB,EAAE,GAAG,CAAC,uBAAuB,CAAC,IAAI,EAAE,CAAC;gBAE/D,+FAA+F;gBAC/F,yFAAyF;gBACzF,mGAAmG;gBACnG,MAAM,WAAW,GAAG,wBAAwB,EAAE,IAAI,CAChD,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,IAAI,IAAI,CAAC,CAAC,YAAY,KAAK,QAAQ,CAC9D,CAAC;gBACF,IAAI,WAAW,EAAE,CAAC;oBAChB,IAAI,CAAC;wBACH,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;wBACvE,IAAI,MAAM,EAAE,CAAC;4BACX,UAAU,CAAC,IAAI,CAAC;gCACd,GAAG,EAAE,iBAAiB;gCACtB,IAAI,EAAE,QAAQ;gCACd,KAAK,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC;6BAC9C,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;oBAAC,OAAO,GAAG,EAAE,CAAC;wBACb,OAAO,SAAS,CACd,2EAA2E,YAAY,CAAC,GAAG,CAAC,EAAE,CAC/F,CAAC;oBACJ,CAAC;gBACH,CAAC;gBAED,0FAA0F;gBAC1F,IAAI,cAAc,EAAE,CAAC;oBACnB,IAAI,CAAC;wBACH,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,cAAc,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;wBAC/E,UAAU,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,SAAS,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;oBACpE,CAAC;oBAAC,OAAO,GAAG,EAAE,CAAC;wBACb,OAAO,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC;oBACtC,CAAC;gBACH,CAAC;gBAED,0DAA0D;gBAC1D,MAAM,OAAO,GAAG,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC;oBAC5C,CAAC,CAAC,aAAa;oBACf,CAAC,CAAC,GAAG,aAAa,MAAM,CAAC;gBAE3B,kCAAkC;gBAClC,MAAM,mBAAmB,GAAG,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC;oBACpD,CAAC,CAAC,SAAS;oBACX,CAAC,CAAC,KAAK,SAAS,EAAE,CAAC;gBAErB,4EAA4E;gBAC5E,MAAM,YAAY,GAA4B;oBAC5C,cAAc,EAAE,OAAO;oBACvB,MAAM;oBACN,UAAU,EAAE,mBAAmB;iBAChC,CAAC;gBAEF,mEAAmE;gBACnE,IAAI,gBAAgB,EAAE,CAAC;oBACrB,YAAY,CAAC,oBAAoB,CAAC,GAAG,gBAAgB,CAAC;gBACxD,CAAC;gBACD,IAAI,kBAAkB,EAAE,CAAC;oBACvB,YAAY,CAAC,sBAAsB,CAAC,GAAG,kBAAkB,CAAC;gBAC5D,CAAC;gBAED,MAAM,iBAAiB,GAA4B;oBACjD,MAAM,EAAE,YAAY;oBACpB,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;oBACnD,qBAAqB,EAAE,UAAU;iBAClC,CAAC;gBAEF,MAAM,IAAI,GAAG;oBACX,YAAY,EAAE,WAAW;oBACzB,YAAY,EAAE,aAAa;oBAC3B,IAAI;oBACJ,KAAK;oBACL,GAAG,CAAC,YAAY,KAAK,SAAS,CAAC,CAAC,CAAC,EAAE,cAAc,EAAE,YAAY,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;oBACvE,oBAAoB,EAAE,mBAAmB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,SAAS;oBACtF,WAAW,EAAE;wBACX,WAAW,EAAE,iBAAiB;qBAC/B;iBACF,CAAC;gBAEF,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;oBACnE,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,IAAI,CAC9B,YAAY,kBAAkB,CAAC,OAAO,CAAC,UAAU,EACjD,IAAI,EACJ,IAAI,CACL,CAAC;oBAEF,MAAM,OAAO,GAAG,MAAM,CAAC,SAAS,CAAwC,CAAC;oBACzE,IAAI,OAAO,EAAE,CAAC;wBACZ,MAAM,OAAO,GAAG;4BACd,YAAY,EAAE,OAAO,CAAC,cAAc,CAAC;4BACrC,YAAY,EAAE,OAAO,CAAC,cAAc,CAAC;4BACrC,KAAK,EAAE,OAAO,CAAC,OAAO,CAAC;4BACvB,IAAI,EAAE,OAAO,CAAC,MAAM,CAAC;4BACrB,UAAU,EAAE,OAAO,CAAC,YAAY,CAAC;yBAClC,CAAC;wBACF,OAAO,WAAW,CAAC,mBAAmB,CAAC,OAAO,CAAC,CAAC,CAAC;oBACnD,CAAC;oBAED,OAAO,WAAW,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAC,CAAC;gBAClD,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;SACF;QACD;YACE,IAAI,EAAE,mBAAmB,CAAC,QAAQ;YAClC,QAAQ,EAAE,eAAe,CAAC,WAAW;YACrC,UAAU,EAAE;gBACV,KAAK,EAAE,sBAAsB;gBAC7B,WAAW,EAAE;;;;;;;;;;;;;uIAakH;gBAC/H,WAAW,EAAE,wBAAwB;gBACrC,WAAW,EAAE,kBAAkB;aAChC;YACD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAwB,EAAuB,EAAE;gBACvE,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,GAAG,MAAkD,CAAC;gBAElG,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;oBAEnE,qFAAqF;oBACrF,oFAAoF;oBACpF,6CAA6C;oBAC7C,MAAM,MAAM,CAAC,GAAG,CACd,YAAY,kBAAkB,CAAC,OAAO,CAAC,YAAY,kBAAkB,CAAC,WAAW,CAAC,EAAE,EACpF,EAAE,EACF,IAAI,CACL,CAAC;oBAEF,OAAO,WAAW,CAAC;wBACjB,YAAY,EAAE,WAAW;wBACzB,OAAO,EAAE,6EAA6E;qBACvF,CAAC,CAAC;gBACL,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;SACF;QACD;YACE,IAAI,EAAE,mBAAmB,CAAC,kBAAkB;YAC5C,QAAQ,EAAE,eAAe,CAAC,WAAW;YACrC,UAAU,EAAE;gBACV,KAAK,EAAE,uBAAuB;gBAC9B,WAAW,EAAE;;;;iKAI4I;gBACzJ,WAAW,EAAE,uBAAuB;gBACpC,WAAW,EAAE,qBAAqB;aACnC;YACD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAwB,EAAuB,EAAE;gBACvE,MAAM,EAAE,OAAO,EAAE,GAAG,MAAiD,CAAC;gBACtE,MAAM,IAAI,GAAG,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;gBAEnE,IAAI,cAAsB,CAAC;gBAC3B,IAAI,CAAC;oBACH,MAAM,aAAa,GAAG,MAAM,MAAM,CAAC,GAAG,CACpC,YAAY,kBAAkB,CAAC,OAAO,CAAC,EAAE,EACzC,IAAI,CACL,CAAC;oBACF,cAAc,GAAG,aAAa,CAAC,OAAO,CAAC,eAAe,CAAC;oBACvD,IAAI,CAAC,cAAc,EAAE,CAAC;wBACpB,OAAO,SAAS,CAAC,YAAY,OAAO,mCAAmC,CAAC,CAAC;oBAC3E,CAAC;gBACH,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,SAAS,CAAC,4BAA4B,OAAO,MAAM,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBACjF,CAAC;gBAED,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,GAAG,CAM5B,iBAAiB,kBAAkB,CAAC,cAAc,CAAC,+BAA+B,EAAE,IAAI,CAAC,CAAC;oBAE7F,OAAO,WAAW,CAAC;wBACjB,eAAe,EAAE,cAAc;wBAC/B,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;qBAC1C,CAAC,CAAC;gBACL,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;SACF;QACD;YACE,IAAI,EAAE,mBAAmB,CAAC,4BAA4B;YACtD,QAAQ,EAAE,eAAe,CAAC,WAAW;YACrC,UAAU,EAAE;gBACV,KAAK,EAAE,mCAAmC;gBAC1C,WAAW,EAAE;;;;sEAIiD,6BAA6B;;kHAEe;gBAC1G,WAAW,EAAE,iCAAiC;gBAC9C,WAAW,EAAE,qBAAqB;aACnC;YACD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAwB,EAAuB,EAAE;gBACvE,MAAM,EAAE,eAAe,EAAE,cAAc,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,GAC7E,MAA2D,CAAC;gBAC9D,MAAM,IAAI,GAAG,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;gBAEnE,IAAI,CAAC;oBAYH,MAAM,IAAI,GAAG,iBAAiB,kBAAkB,CAAC,cAAc,CAAC,iCAAiC,kBAAkB,CAAC,gBAAgB,CAAC,eAAe,CAAC;oBACrJ,MAAM,YAAY,GAAc,EAAE,CAAC;oBACnC,IAAI,MAA0B,CAAC;oBAE/B,KAAK,IAAI,IAAI,GAAG,CAAC,EAAE,IAAI,GAAG,6BAA6B,EAAE,IAAI,EAAE,EAAE,CAAC;wBAChE,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,GAAG,CAAO,IAAI,EAAE;4BAC1C,GAAG,IAAI;4BACP,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,SAAS;yBACvC,CAAC,CAAC;wBACH,MAAM,KAAK,GAAG,MAAM,CAAC,YAAY,CAAC;wBAClC,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,IAAI,IAAI,CAAC;wBACjC,MAAM,IAAI,GAAG,6BAA6B,GAAG,YAAY,CAAC,MAAM,CAAC;wBACjE,IAAI,IAAI,GAAG,CAAC,EAAE,CAAC;4BACb,YAAY,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC;wBAC7C,CAAC;wBAED,MAAM,UAAU,GAAG,YAAY,CAAC,MAAM,IAAI,6BAA6B,CAAC;wBACxE,MAAM,MAAM,GAAG,CAAC,IAAI,CAAC;wBAErB,IAAI,MAAM,EAAE,CAAC;4BACX,OAAO,WAAW,CAAC;gCACjB,YAAY;gCACZ,IAAI,EAAE,IAAI;gCACV,SAAS,EAAE,KAAK;6BACjB,CAAC,CAAC;wBACL,CAAC;wBACD,IAAI,UAAU,EAAE,CAAC;4BACf,OAAO,WAAW,CAAC;gCACjB,YAAY;gCACZ,IAAI;gCACJ,SAAS,EAAE,IAAI;6BAChB,CAAC,CAAC;wBACL,CAAC;wBACD,MAAM,GAAG,IAAI,CAAC;oBAChB,CAAC;oBAED,OAAO,WAAW,CAAC;wBACjB,YAAY;wBACZ,IAAI,EAAE,MAAM,IAAI,IAAI;wBACpB,SAAS,EAAE,IAAI;wBACf,IAAI,EAAE,4BAA4B,6BAA6B,wBAAwB;qBACxF,CAAC,CAAC;gBACL,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;SACF;KACF,CAAC;AACJ,CAAC"}

package/dist/tools/applications/index.d.ts

@@ -0,0 +1,2 @@
+export { createApplicationTools } from './handlers.js';
+//# sourceMappingURL=index.d.ts.map