mcp-recon 0.2.2

package/dist/fuzz/axes/schema-violation.js

@@ -0,0 +1,74 @@
+/**
+ * Schema-violation axis.
+ *
+ * Send args that violate the declared schema in structural ways:
+ * extra fields the schema doesn't mention, missing required fields,
+ * wrong types in nested positions, deeply-nested objects,
+ * prototype pollution shapes.
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy".
+ */
+/** Generate schema-violation inputs for one tool. */
+export function* generateSchemaViolation(facts, _prng) {
+    // Even for argless tools, send unexpected payloads.
+    yield {
+        args: { __injected: "x" },
+        rationale: "schema-violation: extra field on argless tool",
+    };
+    yield {
+        args: { __proto__: { polluted: true } },
+        rationale: "schema-violation: __proto__ pollution attempt",
+    };
+    yield {
+        args: deepNest(50),
+        rationale: "schema-violation: 50-deep nested object",
+    };
+    if (facts.isArgless)
+        return;
+    // Missing-each-required-field — covered by boundary axis too, but
+    // the rationale string is different so we keep both for forensic
+    // clarity in the fuzz output.
+    for (const arg of facts.args) {
+        if (!arg.required)
+            continue;
+        const argName = arg.path[0];
+        if (argName === undefined)
+            continue;
+        const stripped = baseShape(facts);
+        delete stripped[argName];
+        yield {
+            args: stripped,
+            rationale: `schema-violation: required "${argName}" omitted`,
+        };
+    }
+    // Extra fields alongside valid args.
+    const baseArgs = baseShape(facts);
+    yield {
+        args: { ...baseArgs, __injected: "x" },
+        rationale: "schema-violation: extra field __injected",
+    };
+    yield {
+        args: { ...baseArgs, constructor: { prototype: { polluted: true } } },
+        rationale: "schema-violation: constructor.prototype pollution attempt",
+    };
+}
+function baseShape(facts) {
+    const out = {};
+    for (const arg of facts.args) {
+        const argName = arg.path[0];
+        if (argName === undefined)
+            continue;
+        if (!arg.required)
+            continue;
+        out[argName] = arg.declaredType === "string" ? "x" : 0;
+    }
+    return out;
+}
+function deepNest(depth) {
+    let cur = "leaf";
+    for (let i = 0; i < depth; i++) {
+        cur = { nested: cur };
+    }
+    return { deep: cur };
+}
+//# sourceMappingURL=schema-violation.js.map

package/dist/fuzz/axes/schema-violation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema-violation.js","sourceRoot":"","sources":["../../../src/fuzz/axes/schema-violation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAKH,qDAAqD;AACrD,MAAM,SAAS,CAAC,CAAC,uBAAuB,CACtC,KAAgB,EAChB,KAAW;IAEX,oDAAoD;IACpD,MAAM;QACJ,IAAI,EAAE,EAAE,UAAU,EAAE,GAAG,EAA6B;QACpD,SAAS,EAAE,+CAA+C;KAC3D,CAAC;IACF,MAAM;QACJ,IAAI,EAAE,EAAE,SAAS,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,EAA6B;QAClE,SAAS,EAAE,+CAA+C;KAC3D,CAAC;IACF,MAAM;QACJ,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC;QAClB,SAAS,EAAE,yCAAyC;KACrD,CAAC;IAEF,IAAI,KAAK,CAAC,SAAS;QAAE,OAAO;IAE5B,kEAAkE;IAClE,iEAAiE;IACjE,8BAA8B;IAC9B,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QAC7B,IAAI,CAAC,GAAG,CAAC,QAAQ;YAAE,SAAS;QAC5B,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,SAAS;YAAE,SAAS;QACpC,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;QAClC,OAAO,QAAQ,CAAC,OAAO,CAAC,CAAC;QACzB,MAAM;YACJ,IAAI,EAAE,QAAQ;YACd,SAAS,EAAE,+BAA+B,OAAO,WAAW;SAC7D,CAAC;IACJ,CAAC;IAED,qCAAqC;IACrC,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;IAClC,MAAM;QACJ,IAAI,EAAE,EAAE,GAAG,QAAQ,EAAE,UAAU,EAAE,GAAG,EAAE;QACtC,SAAS,EAAE,0CAA0C;KACtD,CAAC;IACF,MAAM;QACJ,IAAI,EAAE,EAAE,GAAG,QAAQ,EAAE,WAAW,EAAE,EAAE,SAAS,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,EAAE;QACrE,SAAS,EAAE,2DAA2D;KACvE,CAAC;AACJ,CAAC;AAED,SAAS,SAAS,CAAC,KAAgB;IACjC,MAAM,GAAG,GAA4B,EAAE,CAAC;IACxC,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,SAAS;YAAE,SAAS;QACpC,IAAI,CAAC,GAAG,CAAC,QAAQ;YAAE,SAAS;QAC5B,GAAG,CAAC,OAAO,CAAC,GAAG,GAAG,CAAC,YAAY,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,SAAS,QAAQ,CAAC,KAAa;IAC7B,IAAI,GAAG,GAAY,MAAM,CAAC;IAC1B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;QAC/B,GAAG,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC;IACxB,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC;AACvB,CAAC"}

package/dist/fuzz/axes/type-confusion.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Type-confusion axis.
+ *
+ * For each typed arg, send a value of the wrong type. Detects servers
+ * that don't validate types and pass through to weakly-typed runtimes
+ * (e.g. JS runtime that coerces silently).
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy".
+ */
+import type { Prng } from "../prng.js";
+import type { ToolFacts } from "../schema.js";
+/** Generate type-confused inputs for one tool. */
+export declare function generateTypeConfusion(facts: ToolFacts, _prng: Prng): Generator<{
+    args: Record<string, unknown>;
+    rationale: string;
+}>;
+//# sourceMappingURL=type-confusion.d.ts.map

package/dist/fuzz/axes/type-confusion.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"type-confusion.d.ts","sourceRoot":"","sources":["../../../src/fuzz/axes/type-confusion.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AACvC,OAAO,KAAK,EAAc,SAAS,EAAE,MAAM,cAAc,CAAC;AAuB1D,kDAAkD;AAClD,wBAAiB,qBAAqB,CACpC,KAAK,EAAE,SAAS,EAChB,KAAK,EAAE,IAAI,GACV,SAAS,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,CAAC,CAkBjE"}

package/dist/fuzz/axes/type-confusion.js

@@ -0,0 +1,67 @@
+/**
+ * Type-confusion axis.
+ *
+ * For each typed arg, send a value of the wrong type. Detects servers
+ * that don't validate types and pass through to weakly-typed runtimes
+ * (e.g. JS runtime that coerces silently).
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy".
+ */
+const ALL_TYPES = [
+    "string",
+    "number",
+    "integer",
+    "boolean",
+    "array",
+    "object",
+    "null",
+];
+/** A representative value of each primitive type for substitution. */
+const SAMPLE_OF = {
+    string: "wrong-type-here",
+    number: 3.14,
+    integer: 42,
+    boolean: true,
+    array: ["element"],
+    object: { nested: true },
+    null: null,
+};
+/** Generate type-confused inputs for one tool. */
+export function* generateTypeConfusion(facts, _prng) {
+    if (facts.isArgless)
+        return;
+    for (const arg of facts.args) {
+        const argName = arg.path[0];
+        if (argName === undefined)
+            continue;
+        if (arg.declaredType === "unknown")
+            continue;
+        // Substitute a value of every other type.
+        for (const otherType of ALL_TYPES) {
+            if (otherType === arg.declaredType)
+                continue;
+            const baseArgs = baseShape(facts);
+            yield {
+                args: { ...baseArgs, [argName]: SAMPLE_OF[otherType] },
+                rationale: `type-confusion arg "${argName}" declared ${arg.declaredType}, sent ${otherType}`,
+            };
+        }
+    }
+}
+function baseShape(facts) {
+    const out = {};
+    for (const arg of facts.args) {
+        const argName = arg.path[0];
+        if (argName === undefined)
+            continue;
+        if (!arg.required)
+            continue;
+        if (arg.declaredType === "unknown") {
+            out[argName] = "x";
+            continue;
+        }
+        out[argName] = SAMPLE_OF[arg.declaredType];
+    }
+    return out;
+}
+//# sourceMappingURL=type-confusion.js.map

package/dist/fuzz/axes/type-confusion.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"type-confusion.js","sourceRoot":"","sources":["../../../src/fuzz/axes/type-confusion.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAKH,MAAM,SAAS,GAAiB;IAC9B,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,SAAS;IACT,OAAO;IACP,QAAQ;IACR,MAAM;CACP,CAAC;AAEF,sEAAsE;AACtE,MAAM,SAAS,GAAgC;IAC7C,MAAM,EAAE,iBAAiB;IACzB,MAAM,EAAE,IAAI;IACZ,OAAO,EAAE,EAAE;IACX,OAAO,EAAE,IAAI;IACb,KAAK,EAAE,CAAC,SAAS,CAAC;IAClB,MAAM,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE;IACxB,IAAI,EAAE,IAAI;CACX,CAAC;AAEF,kDAAkD;AAClD,MAAM,SAAS,CAAC,CAAC,qBAAqB,CACpC,KAAgB,EAChB,KAAW;IAEX,IAAI,KAAK,CAAC,SAAS;QAAE,OAAO;IAE5B,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,SAAS;YAAE,SAAS;QACpC,IAAI,GAAG,CAAC,YAAY,KAAK,SAAS;YAAE,SAAS;QAE7C,0CAA0C;QAC1C,KAAK,MAAM,SAAS,IAAI,SAAS,EAAE,CAAC;YAClC,IAAI,SAAS,KAAK,GAAG,CAAC,YAAY;gBAAE,SAAS;YAC7C,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;YAClC,MAAM;gBACJ,IAAI,EAAE,EAAE,GAAG,QAAQ,EAAE,CAAC,OAAO,CAAC,EAAE,SAAS,CAAC,SAAS,CAAC,EAAE;gBACtD,SAAS,EAAE,uBAAuB,OAAO,cAAc,GAAG,CAAC,YAAY,UAAU,SAAS,EAAE;aAC7F,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAED,SAAS,SAAS,CAAC,KAAgB;IACjC,MAAM,GAAG,GAA4B,EAAE,CAAC;IACxC,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,SAAS;YAAE,SAAS;QACpC,IAAI,CAAC,GAAG,CAAC,QAAQ;YAAE,SAAS;QAC5B,IAAI,GAAG,CAAC,YAAY,KAAK,SAAS,EAAE,CAAC;YACnC,GAAG,CAAC,OAAO,CAAC,GAAG,GAAG,CAAC;YACnB,SAAS;QACX,CAAC;QACD,GAAG,CAAC,OAAO,CAAC,GAAG,SAAS,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;IAC7C,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/fuzz/axes/url-hostility.d.ts

@@ -0,0 +1,17 @@
+/**
+ * URL-hostility axis.
+ *
+ * For each URL-shaped arg (heuristic: name contains `url`, `origin`,
+ * `endpoint`, etc.), send URL-shaped payloads designed to confuse
+ * URL parsers and canonicalisers.
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy".
+ */
+import type { Prng } from "../prng.js";
+import type { ToolFacts } from "../schema.js";
+/** Generate URL-hostility inputs for one tool. */
+export declare function generateUrlHostility(facts: ToolFacts, _prng: Prng): Generator<{
+    args: Record<string, unknown>;
+    rationale: string;
+}>;
+//# sourceMappingURL=url-hostility.d.ts.map

package/dist/fuzz/axes/url-hostility.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"url-hostility.d.ts","sourceRoot":"","sources":["../../../src/fuzz/axes/url-hostility.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,YAAY,CAAC;AACvC,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AAqB9C,kDAAkD;AAClD,wBAAiB,oBAAoB,CACnC,KAAK,EAAE,SAAS,EAChB,KAAK,EAAE,IAAI,GACV,SAAS,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,CAAC,CAiBjE"}

package/dist/fuzz/axes/url-hostility.js

@@ -0,0 +1,61 @@
+/**
+ * URL-hostility axis.
+ *
+ * For each URL-shaped arg (heuristic: name contains `url`, `origin`,
+ * `endpoint`, etc.), send URL-shaped payloads designed to confuse
+ * URL parsers and canonicalisers.
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy".
+ */
+const URL_PAYLOADS = [
+    { value: "https://attacker.example@victim.example/", reason: "userinfo-splitting" },
+    { value: "https://victim.example/@attacker.example/", reason: "fake-userinfo segment" },
+    // Cyrillic-а homograph in `аpi.example.com`
+    { value: "https://аpi.example.com/x", reason: "Cyrillic-a IDN homograph" },
+    { value: "https://xn--pi-6kc.example.com/x", reason: "punycode IDN form" },
+    { value: "javascript:alert(1)", reason: "javascript: scheme" },
+    { value: "data:text/plain;base64,SGVsbG8=", reason: "data: scheme" },
+    { value: "file:///etc/passwd", reason: "file:// scheme" },
+    { value: "http://localhost:80/", reason: "loopback default port" },
+    { value: "http://127.0.0.1/", reason: "loopback IP literal" },
+    { value: "http://169.254.169.254/latest/meta-data/", reason: "AWS instance metadata" },
+    { value: "http://[::]/", reason: "IPv6 unspecified" },
+    { value: "http://0.0.0.0/", reason: "IPv4 unspecified" },
+    { value: "http://example.com\\.attacker.com/", reason: "backslash-host trick" },
+    { value: "http:////example.com/x", reason: "extra slashes" },
+    { value: "not-a-url-at-all", reason: "unparseable string" },
+];
+/** Generate URL-hostility inputs for one tool. */
+export function* generateUrlHostility(facts, _prng) {
+    if (facts.isArgless)
+        return;
+    for (const arg of facts.args) {
+        const argName = arg.path[0];
+        if (argName === undefined)
+            continue;
+        if (!arg.isUrlShaped)
+            continue;
+        if (arg.declaredType !== "string" && arg.declaredType !== "unknown")
+            continue;
+        const baseArgs = baseShape(facts);
+        for (const { value, reason } of URL_PAYLOADS) {
+            yield {
+                args: { ...baseArgs, [argName]: value },
+                rationale: `url-hostility "${argName}": ${reason}`,
+            };
+        }
+    }
+}
+function baseShape(facts) {
+    const out = {};
+    for (const arg of facts.args) {
+        const argName = arg.path[0];
+        if (argName === undefined)
+            continue;
+        if (!arg.required)
+            continue;
+        out[argName] = arg.declaredType === "string" ? "x" : 0;
+    }
+    return out;
+}
+//# sourceMappingURL=url-hostility.js.map

package/dist/fuzz/axes/url-hostility.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"url-hostility.js","sourceRoot":"","sources":["../../../src/fuzz/axes/url-hostility.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAKH,MAAM,YAAY,GAA6C;IAC7D,EAAE,KAAK,EAAE,0CAA0C,EAAE,MAAM,EAAE,oBAAoB,EAAE;IACnF,EAAE,KAAK,EAAE,2CAA2C,EAAE,MAAM,EAAE,uBAAuB,EAAE;IACvF,4CAA4C;IAC5C,EAAE,KAAK,EAAE,2BAA2B,EAAE,MAAM,EAAE,0BAA0B,EAAE;IAC1E,EAAE,KAAK,EAAE,kCAAkC,EAAE,MAAM,EAAE,mBAAmB,EAAE;IAC1E,EAAE,KAAK,EAAE,qBAAqB,EAAE,MAAM,EAAE,oBAAoB,EAAE;IAC9D,EAAE,KAAK,EAAE,iCAAiC,EAAE,MAAM,EAAE,cAAc,EAAE;IACpE,EAAE,KAAK,EAAE,oBAAoB,EAAE,MAAM,EAAE,gBAAgB,EAAE;IACzD,EAAE,KAAK,EAAE,sBAAsB,EAAE,MAAM,EAAE,uBAAuB,EAAE;IAClE,EAAE,KAAK,EAAE,mBAAmB,EAAE,MAAM,EAAE,qBAAqB,EAAE;IAC7D,EAAE,KAAK,EAAE,0CAA0C,EAAE,MAAM,EAAE,uBAAuB,EAAE;IACtF,EAAE,KAAK,EAAE,cAAc,EAAE,MAAM,EAAE,kBAAkB,EAAE;IACrD,EAAE,KAAK,EAAE,iBAAiB,EAAE,MAAM,EAAE,kBAAkB,EAAE;IACxD,EAAE,KAAK,EAAE,oCAAoC,EAAE,MAAM,EAAE,sBAAsB,EAAE;IAC/E,EAAE,KAAK,EAAE,wBAAwB,EAAE,MAAM,EAAE,eAAe,EAAE;IAC5D,EAAE,KAAK,EAAE,kBAAkB,EAAE,MAAM,EAAE,oBAAoB,EAAE;CAC5D,CAAC;AAEF,kDAAkD;AAClD,MAAM,SAAS,CAAC,CAAC,oBAAoB,CACnC,KAAgB,EAChB,KAAW;IAEX,IAAI,KAAK,CAAC,SAAS;QAAE,OAAO;IAE5B,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,SAAS;YAAE,SAAS;QACpC,IAAI,CAAC,GAAG,CAAC,WAAW;YAAE,SAAS;QAC/B,IAAI,GAAG,CAAC,YAAY,KAAK,QAAQ,IAAI,GAAG,CAAC,YAAY,KAAK,SAAS;YAAE,SAAS;QAE9E,MAAM,QAAQ,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC;QAClC,KAAK,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,YAAY,EAAE,CAAC;YAC7C,MAAM;gBACJ,IAAI,EAAE,EAAE,GAAG,QAAQ,EAAE,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE;gBACvC,SAAS,EAAE,kBAAkB,OAAO,MAAM,MAAM,EAAE;aACnD,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAED,SAAS,SAAS,CAAC,KAAgB;IACjC,MAAM,GAAG,GAA4B,EAAE,CAAC;IACxC,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC5B,IAAI,OAAO,KAAK,SAAS;YAAE,SAAS;QACpC,IAAI,CAAC,GAAG,CAAC,QAAQ;YAAE,SAAS;QAC5B,GAAG,CAAC,OAAO,CAAC,GAAG,GAAG,CAAC,YAAY,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/fuzz/index.d.ts

@@ -0,0 +1,41 @@
+/**
+ * `fuzz` — runs the schema-aware adversarial fuzzer against an MCP
+ * server and emits a v0.1 fuzz document.
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy":
+ *
+ *   - Six axes (boundary / type-confusion / encoding / path-traversal /
+ *     url-hostility / schema-violation)
+ *   - Default budget: 200 calls per tool
+ *   - Deterministic PRNG, default seed 0xC0FFEE
+ *   - Records what happened — does NOT classify "success"
+ *
+ * The output JSON is consumed by the classifier (week 3) and the
+ * reporter (week 3). Every entry has a `rationale` so a human
+ * reviewer can grep for the interesting cases without re-running.
+ */
+import type { Client } from "@modelcontextprotocol/sdk/client/index.js";
+import type { ToolInventory } from "../enumerate.js";
+import type { FuzzResults } from "./types.js";
+export { FUZZ_SCHEMA } from "./types.js";
+export type { FuzzAxis, FuzzCall, FuzzOutcome, FuzzResults, FuzzToolSummary, } from "./types.js";
+export interface FuzzOptions {
+    /** Per-tool call budget. Default: 200. */
+    budget?: number;
+    /** PRNG seed for deterministic re-runs. Default: 0xC0FFEE. */
+    seed?: number;
+    /** If set, only fuzz these tool names (rest are skipped). */
+    onlyTools?: readonly string[];
+    /** Optional per-call timeout in ms. Default: 5000. */
+    timeoutMs?: number;
+}
+/**
+ * Run the fuzzer against `client`, given a previously-emitted
+ * `inventory`. Returns a fuzz document.
+ *
+ * The `inventory` parameter (instead of re-enumerating internally)
+ * is deliberate: the user can inspect / filter tools first, then
+ * pass the resulting subset.
+ */
+export declare function fuzz(client: Client, inventory: ToolInventory, options?: FuzzOptions): Promise<FuzzResults>;
+//# sourceMappingURL=index.d.ts.map

package/dist/fuzz/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/fuzz/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAExE,OAAO,KAAK,EAAkB,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACrE,OAAO,KAAK,EAAmC,WAAW,EAAE,MAAM,YAAY,CAAC;AAU/E,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzC,YAAY,EACV,QAAQ,EACR,QAAQ,EACR,WAAW,EACX,WAAW,EACX,eAAe,GAChB,MAAM,YAAY,CAAC;AAEpB,MAAM,WAAW,WAAW;IAC1B,0CAA0C;IAC1C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8DAA8D;IAC9D,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,6DAA6D;IAC7D,SAAS,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IAC9B,sDAAsD;IACtD,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;;;;;;GAOG;AACH,wBAAsB,IAAI,CACxB,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,aAAa,EACxB,OAAO,GAAE,WAAgB,GACxB,OAAO,CAAC,WAAW,CAAC,CAqDtB"}

package/dist/fuzz/index.js

@@ -0,0 +1,147 @@
+/**
+ * `fuzz` — runs the schema-aware adversarial fuzzer against an MCP
+ * server and emits a v0.1 fuzz document.
+ *
+ * Per docs/SPEC.md §"Fuzzing strategy":
+ *
+ *   - Six axes (boundary / type-confusion / encoding / path-traversal /
+ *     url-hostility / schema-violation)
+ *   - Default budget: 200 calls per tool
+ *   - Deterministic PRNG, default seed 0xC0FFEE
+ *   - Records what happened — does NOT classify "success"
+ *
+ * The output JSON is consumed by the classifier (week 3) and the
+ * reporter (week 3). Every entry has a `rationale` so a human
+ * reviewer can grep for the interesting cases without re-running.
+ */
+import { Prng } from "./prng.js";
+import { DEFAULT_FUZZ_BUDGET, DEFAULT_FUZZ_SEED, extractToolFacts } from "./schema.js";
+import { generateBoundary } from "./axes/boundary.js";
+import { generateEncoding } from "./axes/encoding.js";
+import { generatePathTraversal } from "./axes/path-traversal.js";
+import { generateSchemaViolation } from "./axes/schema-violation.js";
+import { generateTypeConfusion } from "./axes/type-confusion.js";
+import { generateUrlHostility } from "./axes/url-hostility.js";
+export { FUZZ_SCHEMA } from "./types.js";
+/**
+ * Run the fuzzer against `client`, given a previously-emitted
+ * `inventory`. Returns a fuzz document.
+ *
+ * The `inventory` parameter (instead of re-enumerating internally)
+ * is deliberate: the user can inspect / filter tools first, then
+ * pass the resulting subset.
+ */
+export async function fuzz(client, inventory, options = {}) {
+    const budget = options.budget ?? DEFAULT_FUZZ_BUDGET;
+    const seed = options.seed ?? DEFAULT_FUZZ_SEED;
+    const timeoutMs = options.timeoutMs ?? 5_000;
+    const allowedTools = options.onlyTools ? new Set(options.onlyTools) : null;
+    const calls = [];
+    const perTool = {};
+    const prng = new Prng(seed);
+    for (const tool of inventory.tools) {
+        if (allowedTools && !allowedTools.has(tool.name))
+            continue;
+        const facts = extractToolFacts(tool.name, tool.inputSchema);
+        perTool[tool.name] = { ok: 0, protocol_error: 0, runtime_error: 0 };
+        let calledForTool = 0;
+        for (const { axis, args, rationale } of generateAllAxes(facts, prng)) {
+            if (calledForTool >= budget)
+                break;
+            calledForTool++;
+            const outcome = await callOnce(client, tool, args, timeoutMs);
+            // narrow to the index signature we just wrote above
+            const tally = perTool[tool.name];
+            tally[outcome.kind]++;
+            calls.push({
+                tool: tool.name,
+                axis,
+                rationale,
+                arguments: args,
+                outcome,
+            });
+        }
+    }
+    return {
+        schema: "mcp-recon/v0.1/fuzz",
+        scanned_at: new Date().toISOString(),
+        server: inventory.server,
+        seed,
+        budget,
+        summary: Object.entries(perTool).map(([tool, t]) => ({
+            tool,
+            total: t.ok + t.protocol_error + t.runtime_error,
+            ok: t.ok,
+            protocol_error: t.protocol_error,
+            runtime_error: t.runtime_error,
+        })),
+        calls,
+    };
+}
+/** Concatenate all six axis-generators into one stream of (axis, input) pairs. */
+function* generateAllAxes(facts, prng) {
+    for (const v of generateBoundary(facts, prng))
+        yield { axis: "boundary_values", ...v };
+    for (const v of generateTypeConfusion(facts, prng))
+        yield { axis: "type_confusion", ...v };
+    for (const v of generateEncoding(facts, prng))
+        yield { axis: "encoding_tricks", ...v };
+    for (const v of generatePathTraversal(facts, prng))
+        yield { axis: "path_traversal", ...v };
+    for (const v of generateUrlHostility(facts, prng))
+        yield { axis: "url_hostility", ...v };
+    for (const v of generateSchemaViolation(facts, prng))
+        yield { axis: "schema_violation", ...v };
+}
+async function callOnce(client, tool, args, timeoutMs) {
+    // Race the call against a timeout so a hanging server doesn't
+    // freeze the whole fuzz run.
+    let timeoutHandle;
+    const timeout = new Promise((resolve) => {
+        timeoutHandle = setTimeout(() => {
+            resolve({ kind: "runtime_error", message: `timeout after ${timeoutMs}ms` });
+        }, timeoutMs);
+    });
+    const call = (async () => {
+        try {
+            const result = await client.callTool({ name: tool.name, arguments: args });
+            // The MCP SDK returns `{ content, isError }`. `isError === true`
+            // means the tool returned a structured error — that's a
+            // protocol error in our taxonomy (the tool said "no" cleanly).
+            const r = result;
+            if (r.isError) {
+                return {
+                    kind: "protocol_error",
+                    message: snippet(JSON.stringify(r.content ?? "")),
+                };
+            }
+            return { kind: "ok", snippet: snippet(JSON.stringify(r.content ?? "")) };
+        }
+        catch (err) {
+            // SDK threw — usually a transport-level or JSON-RPC-level
+            // error. We treat MCP-level error responses as `protocol_error`
+            // and everything else as `runtime_error`. The SDK throws an
+            // `McpError` for protocol errors; in lieu of import-time
+            // coupling to that class, we string-match on the message.
+            const message = err instanceof Error ? err.message : String(err);
+            const isProtocolError = /MCP error|JSON-RPC|invalid params|method not found|invalid request/i
+                .test(message);
+            return isProtocolError
+                ? { kind: "protocol_error", message: snippet(message) }
+                : { kind: "runtime_error", message: snippet(message) };
+        }
+    })();
+    try {
+        return await Promise.race([call, timeout]);
+    }
+    finally {
+        if (timeoutHandle !== undefined)
+            clearTimeout(timeoutHandle);
+    }
+}
+function snippet(s, max = 200) {
+    if (s.length <= max)
+        return s;
+    return `${s.slice(0, max)}…[len=${s.length}]`;
+}
+//# sourceMappingURL=index.js.map

package/dist/fuzz/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/fuzz/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAMH,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AACvF,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AACjE,OAAO,EAAE,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AACrE,OAAO,EAAE,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AACjE,OAAO,EAAE,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAE/D,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAoBzC;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,IAAI,CACxB,MAAc,EACd,SAAwB,EACxB,UAAuB,EAAE;IAEzB,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,mBAAmB,CAAC;IACrD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,IAAI,iBAAiB,CAAC;IAC/C,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,KAAK,CAAC;IAC7C,MAAM,YAAY,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAE3E,MAAM,KAAK,GAAe,EAAE,CAAC;IAC7B,MAAM,OAAO,GACX,EAAE,CAAC;IAEL,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,CAAC;IAE5B,KAAK,MAAM,IAAI,IAAI,SAAS,CAAC,KAAK,EAAE,CAAC;QACnC,IAAI,YAAY,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,SAAS;QAE3D,MAAM,KAAK,GAAG,gBAAgB,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,CAAC;QAC5D,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,cAAc,EAAE,CAAC,EAAE,aAAa,EAAE,CAAC,EAAE,CAAC;QAEpE,IAAI,aAAa,GAAG,CAAC,CAAC;QACtB,KAAK,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,eAAe,CAAC,KAAK,EAAE,IAAI,CAAC,EAAE,CAAC;YACrE,IAAI,aAAa,IAAI,MAAM;gBAAE,MAAM;YACnC,aAAa,EAAE,CAAC;YAEhB,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC;YAC9D,oDAAoD;YACpD,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAE,CAAC;YAClC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YAEtB,KAAK,CAAC,IAAI,CAAC;gBACT,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,IAAI;gBACJ,SAAS;gBACT,SAAS,EAAE,IAAI;gBACf,OAAO;aACR,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO;QACL,MAAM,EAAE,qBAAqB;QAC7B,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACpC,MAAM,EAAE,SAAS,CAAC,MAAM;QACxB,IAAI;QACJ,MAAM;QACN,OAAO,EAAE,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACnD,IAAI;YACJ,KAAK,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,cAAc,GAAG,CAAC,CAAC,aAAa;YAChD,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,cAAc,EAAE,CAAC,CAAC,cAAc;YAChC,aAAa,EAAE,CAAC,CAAC,aAAa;SAC/B,CAAC,CAAC;QACH,KAAK;KACN,CAAC;AACJ,CAAC;AAED,kFAAkF;AAClF,QAAQ,CAAC,CAAC,eAAe,CACvB,KAA0C,EAC1C,IAAU;IAEV,KAAK,MAAM,CAAC,IAAI,gBAAgB,CAAC,KAAK,EAAE,IAAI,CAAC;QAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB,EAAE,GAAG,CAAC,EAAE,CAAC;IACvF,KAAK,MAAM,CAAC,IAAI,qBAAqB,CAAC,KAAK,EAAE,IAAI,CAAC;QAAE,MAAM,EAAE,IAAI,EAAE,gBAAgB,EAAE,GAAG,CAAC,EAAE,CAAC;IAC3F,KAAK,MAAM,CAAC,IAAI,gBAAgB,CAAC,KAAK,EAAE,IAAI,CAAC;QAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB,EAAE,GAAG,CAAC,EAAE,CAAC;IACvF,KAAK,MAAM,CAAC,IAAI,qBAAqB,CAAC,KAAK,EAAE,IAAI,CAAC;QAAE,MAAM,EAAE,IAAI,EAAE,gBAAgB,EAAE,GAAG,CAAC,EAAE,CAAC;IAC3F,KAAK,MAAM,CAAC,IAAI,oBAAoB,CAAC,KAAK,EAAE,IAAI,CAAC;QAAE,MAAM,EAAE,IAAI,EAAE,eAAe,EAAE,GAAG,CAAC,EAAE,CAAC;IACzF,KAAK,MAAM,CAAC,IAAI,uBAAuB,CAAC,KAAK,EAAE,IAAI,CAAC;QAAE,MAAM,EAAE,IAAI,EAAE,kBAAkB,EAAE,GAAG,CAAC,EAAE,CAAC;AACjG,CAAC;AAED,KAAK,UAAU,QAAQ,CACrB,MAAc,EACd,IAAoB,EACpB,IAA6B,EAC7B,SAAiB;IAEjB,8DAA8D;IAC9D,6BAA6B;IAC7B,IAAI,aAAwD,CAAC;IAC7D,MAAM,OAAO,GAAG,IAAI,OAAO,CAAc,CAAC,OAAO,EAAE,EAAE;QACnD,aAAa,GAAG,UAAU,CAAC,GAAG,EAAE;YAC9B,OAAO,CAAC,EAAE,IAAI,EAAE,eAAe,EAAE,OAAO,EAAE,iBAAiB,SAAS,IAAI,EAAE,CAAC,CAAC;QAC9E,CAAC,EAAE,SAAS,CAAC,CAAC;IAChB,CAAC,CAAC,CAAC;IAEH,MAAM,IAAI,GAAG,CAAC,KAAK,IAA0B,EAAE;QAC7C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YAC3E,iEAAiE;YACjE,wDAAwD;YACxD,+DAA+D;YAC/D,MAAM,CAAC,GAAG,MAAkD,CAAC;YAC7D,IAAI,CAAC,CAAC,OAAO,EAAE,CAAC;gBACd,OAAO;oBACL,IAAI,EAAE,gBAAgB;oBACtB,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;iBAClD,CAAC;YACJ,CAAC;YACD,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;QAC3E,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,0DAA0D;YAC1D,gEAAgE;YAChE,4DAA4D;YAC5D,yDAAyD;YACzD,0DAA0D;YAC1D,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACjE,MAAM,eAAe,GAAG,qEAAqE;iBAC1F,IAAI,CAAC,OAAO,CAAC,CAAC;YACjB,OAAO,eAAe;gBACpB,CAAC,CAAC,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,EAAE;gBACvD,CAAC,CAAC,EAAE,IAAI,EAAE,eAAe,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3D,CAAC;IACH,CAAC,CAAC,EAAE,CAAC;IAEL,IAAI,CAAC;QACH,OAAO,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC;IAC7C,CAAC;YAAS,CAAC;QACT,IAAI,aAAa,KAAK,SAAS;YAAE,YAAY,CAAC,aAAa,CAAC,CAAC;IAC/D,CAAC;AACH,CAAC;AAED,SAAS,OAAO,CAAC,CAAS,EAAE,GAAG,GAAG,GAAG;IACnC,IAAI,CAAC,CAAC,MAAM,IAAI,GAAG;QAAE,OAAO,CAAC,CAAC;IAC9B,OAAO,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC,MAAM,GAAG,CAAC;AAChD,CAAC"}

package/dist/fuzz/prng.d.ts

@@ -0,0 +1,26 @@
+/**
+ * Seedable deterministic PRNG.
+ *
+ * The fuzzer's reproducibility contract requires that running with the
+ * same seed produces bit-identical inputs. A `Math.random()`-style
+ * non-seeded source breaks that.
+ *
+ * Implementation: mulberry32. 32-bit state, decent statistical
+ * quality for non-cryptographic use, fits in 8 lines. Period 2^32 —
+ * more than enough for a fuzz budget that's typically <10^4 calls.
+ *
+ * Reference: https://gist.github.com/tommyettinger/46a3a48676ef5ec4a4e4
+ */
+export declare class Prng {
+    private state;
+    constructor(seed?: number);
+    /** Uniform [0, 1). */
+    next(): number;
+    /** Integer in [lo, hi). */
+    intInRange(lo: number, hi: number): number;
+    /** Pick a random element of an array. Throws on empty. */
+    pick<T>(items: readonly T[]): T;
+    /** Bias coin — true with probability p (0..1). */
+    bool(p?: number): boolean;
+}
+//# sourceMappingURL=prng.d.ts.map

package/dist/fuzz/prng.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prng.d.ts","sourceRoot":"","sources":["../../src/fuzz/prng.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAIH,qBAAa,IAAI;IACf,OAAO,CAAC,KAAK,CAAS;gBAEV,IAAI,GAAE,MAA0B;IAK5C,sBAAsB;IACtB,IAAI,IAAI,MAAM;IAOd,2BAA2B;IAC3B,UAAU,CAAC,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,GAAG,MAAM;IAO1C,0DAA0D;IAC1D,IAAI,CAAC,CAAC,EAAE,KAAK,EAAE,SAAS,CAAC,EAAE,GAAG,CAAC;IAY/B,kDAAkD;IAClD,IAAI,CAAC,CAAC,SAAM,GAAG,OAAO;CAGvB"}

package/dist/fuzz/prng.js

@@ -0,0 +1,52 @@
+/**
+ * Seedable deterministic PRNG.
+ *
+ * The fuzzer's reproducibility contract requires that running with the
+ * same seed produces bit-identical inputs. A `Math.random()`-style
+ * non-seeded source breaks that.
+ *
+ * Implementation: mulberry32. 32-bit state, decent statistical
+ * quality for non-cryptographic use, fits in 8 lines. Period 2^32 —
+ * more than enough for a fuzz budget that's typically <10^4 calls.
+ *
+ * Reference: https://gist.github.com/tommyettinger/46a3a48676ef5ec4a4e4
+ */
+import { DEFAULT_FUZZ_SEED } from "./schema.js";
+export class Prng {
+    state;
+    constructor(seed = DEFAULT_FUZZ_SEED) {
+        // Allow seed = 0 by mixing in a constant.
+        this.state = (seed | 0) ^ 0x6d2b79f5;
+    }
+    /** Uniform [0, 1). */
+    next() {
+        this.state = (this.state + 0x6d2b79f5) | 0;
+        let t = Math.imul(this.state ^ (this.state >>> 15), 1 | this.state);
+        t = (t + Math.imul(t ^ (t >>> 7), 61 | t)) ^ t;
+        return ((t ^ (t >>> 14)) >>> 0) / 4294967296;
+    }
+    /** Integer in [lo, hi). */
+    intInRange(lo, hi) {
+        if (hi <= lo) {
+            throw new Error(`Prng.intInRange: hi (${hi}) must be > lo (${lo})`);
+        }
+        return Math.floor(this.next() * (hi - lo)) + lo;
+    }
+    /** Pick a random element of an array. Throws on empty. */
+    pick(items) {
+        if (items.length === 0) {
+            throw new Error("Prng.pick: empty array");
+        }
+        const item = items[this.intInRange(0, items.length)];
+        if (item === undefined) {
+            // unreachable given the in-range index, but TS doesn't know that
+            throw new Error("Prng.pick: undefined slot");
+        }
+        return item;
+    }
+    /** Bias coin — true with probability p (0..1). */
+    bool(p = 0.5) {
+        return this.next() < p;
+    }
+}
+//# sourceMappingURL=prng.js.map

package/dist/fuzz/prng.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prng.js","sourceRoot":"","sources":["../../src/fuzz/prng.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAEhD,MAAM,OAAO,IAAI;IACP,KAAK,CAAS;IAEtB,YAAY,OAAe,iBAAiB;QAC1C,0CAA0C;QAC1C,IAAI,CAAC,KAAK,GAAG,CAAC,IAAI,GAAG,CAAC,CAAC,GAAG,UAAU,CAAC;IACvC,CAAC;IAED,sBAAsB;IACtB,IAAI;QACF,IAAI,CAAC,KAAK,GAAG,CAAC,IAAI,CAAC,KAAK,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;QAC3C,IAAI,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,GAAG,CAAC,IAAI,CAAC,KAAK,KAAK,EAAE,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC;QACpE,CAAC,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC/C,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,UAAU,CAAC;IAC/C,CAAC;IAED,2BAA2B;IAC3B,UAAU,CAAC,EAAU,EAAE,EAAU;QAC/B,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,wBAAwB,EAAE,mBAAmB,EAAE,GAAG,CAAC,CAAC;QACtE,CAAC;QACD,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC,GAAG,EAAE,CAAC;IAClD,CAAC;IAED,0DAA0D;IAC1D,IAAI,CAAI,KAAmB;QACzB,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC;QAC5C,CAAC;QACD,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC;QACrD,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACvB,iEAAiE;YACjE,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,kDAAkD;IAClD,IAAI,CAAC,CAAC,GAAG,GAAG;QACV,OAAO,IAAI,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IACzB,CAAC;CACF"}

package/dist/fuzz/schema.d.ts

@@ -0,0 +1,46 @@
+/**
+ * JSON Schema walker — extracts what the fuzzer needs to know about a
+ * tool's argument shape.
+ *
+ * v0.1 supports JSON Schema Draft 7 (the dialect the official MCP
+ * filesystem server uses). We don't validate the schema — we extract
+ * structural facts: which keys exist, what types they declare, which
+ * are required, which look like paths or URLs.
+ *
+ * Heuristic shape-detection: arg names containing `path` are flagged
+ * path-shaped; arg names containing `url`, `origin`, `endpoint` are
+ * URL-shaped. The classifier (week 3) will refine these heuristics.
+ */
+/** Default seed for the deterministic fuzz PRNG (matches docs/SPEC.md). */
+export declare const DEFAULT_FUZZ_SEED = 12648430;
+/** Default per-tool fuzz budget (matches docs/SPEC.md). */
+export declare const DEFAULT_FUZZ_BUDGET = 200;
+/** Recognised JSON Schema primitive types we generate inputs for. */
+export type SchemaType = "string" | "number" | "integer" | "boolean" | "array" | "object" | "null";
+export interface ToolArgFact {
+    /** Path within the args object — e.g. ["path"], ["options", "recursive"]. */
+    path: string[];
+    /** Declared JSON Schema type. `unknown` if the schema didn't say. */
+    declaredType: SchemaType | "unknown";
+    /** Whether this arg is required (per the schema's `required` array). */
+    required: boolean;
+    /** Heuristic: is this arg name path-shaped (filesystem)? */
+    isPathShaped: boolean;
+    /** Heuristic: is this arg name URL-shaped (network)? */
+    isUrlShaped: boolean;
+    /** Heuristic: is this arg name command-shaped (shell)? */
+    isCommandShaped: boolean;
+    /** If declared as enum, the allowed values. */
+    enumValues?: readonly unknown[];
+}
+export interface ToolFacts {
+    /** Tool name. */
+    name: string;
+    /** All discovered arg facts (top-level only in v0.1). */
+    args: ToolArgFact[];
+    /** Whether the schema declares no args at all (an args-less tool). */
+    isArgless: boolean;
+}
+/** Walk one tool's `inputSchema`. Returns structural facts. */
+export declare function extractToolFacts(name: string, inputSchema: unknown): ToolFacts;
+//# sourceMappingURL=schema.d.ts.map

package/dist/fuzz/schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../../src/fuzz/schema.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,2EAA2E;AAC3E,eAAO,MAAM,iBAAiB,WAAY,CAAC;AAE3C,2DAA2D;AAC3D,eAAO,MAAM,mBAAmB,MAAM,CAAC;AAEvC,qEAAqE;AACrE,MAAM,MAAM,UAAU,GAAG,QAAQ,GAAG,QAAQ,GAAG,SAAS,GAAG,SAAS,GAAG,OAAO,GAAG,QAAQ,GAAG,MAAM,CAAC;AAEnG,MAAM,WAAW,WAAW;IAC1B,6EAA6E;IAC7E,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,qEAAqE;IACrE,YAAY,EAAE,UAAU,GAAG,SAAS,CAAC;IACrC,wEAAwE;IACxE,QAAQ,EAAE,OAAO,CAAC;IAClB,4DAA4D;IAC5D,YAAY,EAAE,OAAO,CAAC;IACtB,wDAAwD;IACxD,WAAW,EAAE,OAAO,CAAC;IACrB,0DAA0D;IAC1D,eAAe,EAAE,OAAO,CAAC;IACzB,+CAA+C;IAC/C,UAAU,CAAC,EAAE,SAAS,OAAO,EAAE,CAAC;CACjC;AAED,MAAM,WAAW,SAAS;IACxB,iBAAiB;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,yDAAyD;IACzD,IAAI,EAAE,WAAW,EAAE,CAAC;IACpB,sEAAsE;IACtE,SAAS,EAAE,OAAO,CAAC;CACpB;AAED,+DAA+D;AAC/D,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,WAAW,EAAE,OAAO,GAAG,SAAS,CA4B9E"}