npm - memory-journal-mcp - Versions diffs - 4.3.0 → 4.4.0 - Mend

memory-journal-mcp 4.3.0 → 4.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (109) hide show

package/.dockerignore +131 -122
package/.gitattributes +29 -0
package/.github/workflows/docker-publish.yml +1 -1
package/.github/workflows/lint-and-test.yml +1 -2
package/.github/workflows/secrets-scanning.yml +0 -1
package/.github/workflows/security-update.yml +6 -6
package/.vscode/settings.json +17 -15
package/CHANGELOG.md +1065 -11
package/DOCKER_README.md +51 -33
package/Dockerfile +14 -12
package/README.md +68 -33
package/SECURITY.md +225 -220
package/dist/cli.js +7 -0
package/dist/cli.js.map +1 -1
package/dist/constants/ServerInstructions.d.ts +1 -1
package/dist/constants/ServerInstructions.d.ts.map +1 -1
package/dist/constants/ServerInstructions.js +70 -26
package/dist/constants/ServerInstructions.js.map +1 -1
package/dist/constants/icons.d.ts +2 -0
package/dist/constants/icons.d.ts.map +1 -1
package/dist/constants/icons.js +6 -0
package/dist/constants/icons.js.map +1 -1
package/dist/database/SqliteAdapter.d.ts +51 -10
package/dist/database/SqliteAdapter.d.ts.map +1 -1
package/dist/database/SqliteAdapter.js +143 -43
package/dist/database/SqliteAdapter.js.map +1 -1
package/dist/filtering/ToolFilter.d.ts +1 -1
package/dist/filtering/ToolFilter.d.ts.map +1 -1
package/dist/filtering/ToolFilter.js +7 -1
package/dist/filtering/ToolFilter.js.map +1 -1
package/dist/github/GitHubIntegration.d.ts +74 -2
package/dist/github/GitHubIntegration.d.ts.map +1 -1
package/dist/github/GitHubIntegration.js +508 -7
package/dist/github/GitHubIntegration.js.map +1 -1
package/dist/handlers/prompts/index.js +1 -0
package/dist/handlers/prompts/index.js.map +1 -1
package/dist/handlers/resources/index.d.ts.map +1 -1
package/dist/handlers/resources/index.js +257 -13
package/dist/handlers/resources/index.js.map +1 -1
package/dist/handlers/tools/index.d.ts.map +1 -1
package/dist/handlers/tools/index.js +595 -8
package/dist/handlers/tools/index.js.map +1 -1
package/dist/server/McpServer.d.ts +2 -0
package/dist/server/McpServer.d.ts.map +1 -1
package/dist/server/McpServer.js +69 -26
package/dist/server/McpServer.js.map +1 -1
package/dist/types/index.d.ts +97 -0
package/dist/types/index.d.ts.map +1 -1
package/dist/types/index.js.map +1 -1
package/dist/utils/logger.d.ts +1 -0
package/dist/utils/logger.d.ts.map +1 -1
package/dist/utils/logger.js +8 -1
package/dist/utils/logger.js.map +1 -1
package/dist/utils/progress-utils.d.ts +18 -3
package/dist/utils/progress-utils.d.ts.map +1 -1
package/dist/utils/progress-utils.js.map +1 -1
package/dist/utils/security-utils.d.ts +91 -0
package/dist/utils/security-utils.d.ts.map +1 -0
package/dist/utils/security-utils.js +184 -0
package/dist/utils/security-utils.js.map +1 -0
package/dist/vector/VectorSearchManager.d.ts +2 -1
package/dist/vector/VectorSearchManager.d.ts.map +1 -1
package/dist/vector/VectorSearchManager.js +100 -34
package/dist/vector/VectorSearchManager.js.map +1 -1
package/docker-compose.yml +46 -37
package/mcp-config-example.json +0 -2
package/package.json +21 -14
package/releases/v4.3.1.md +69 -0
package/releases/v4.4.0.md +120 -0
package/server.json +3 -3
package/src/cli.ts +11 -0
package/src/constants/ServerInstructions.ts +70 -26
package/src/constants/icons.ts +7 -0
package/src/database/SqliteAdapter.ts +165 -44
package/src/filtering/ToolFilter.ts +7 -1
package/src/github/GitHubIntegration.ts +588 -8
package/src/handlers/prompts/index.ts +1 -0
package/src/handlers/resources/index.ts +318 -12
package/src/handlers/tools/index.ts +686 -13
package/src/server/McpServer.ts +79 -37
package/src/types/index.ts +98 -0
package/src/utils/logger.ts +10 -1
package/src/utils/progress-utils.ts +17 -6
package/src/utils/security-utils.ts +205 -0
package/src/vector/VectorSearchManager.ts +110 -39
package/tests/constants/icons.test.ts +102 -0
package/tests/constants/server-instructions.test.ts +549 -0
package/tests/database/sqlite-adapter.bench.ts +63 -0
package/tests/database/sqlite-adapter.test.ts +555 -0
package/tests/filtering/tool-filter.test.ts +266 -0
package/tests/github/github-integration.test.ts +1024 -0
package/tests/handlers/github-resource-handlers.test.ts +473 -0
package/tests/handlers/github-tool-handlers.test.ts +556 -0
package/tests/handlers/prompt-handlers.test.ts +91 -0
package/tests/handlers/resource-handlers.test.ts +339 -0
package/tests/handlers/tool-handlers.test.ts +497 -0
package/tests/handlers/vector-tool-handlers.test.ts +238 -0
package/tests/security/sql-injection.test.ts +347 -0
package/tests/server/mcp-server.bench.ts +55 -0
package/tests/server/mcp-server.test.ts +675 -0
package/tests/utils/logger.test.ts +180 -0
package/tests/utils/mcp-logger.test.ts +212 -0
package/tests/utils/progress-utils.test.ts +156 -0
package/tests/utils/security-utils.test.ts +82 -0
package/tests/vector/vector-search-manager.test.ts +335 -0
package/tests/vector/vector-search.bench.ts +53 -0
package/vitest.config.ts +15 -0
package/.github/workflows/DOCKER_DEPLOYMENT_SETUP.md +0 -387
package/.github/workflows/dependabot-auto-merge.yml +0 -42

package/tests/handlers/resource-handlers.test.ts ADDED Viewed

@@ -0,0 +1,339 @@
+/**
+ * Resource Handler Tests
+ *
+ * Tests getResources listing and readResource for non-GitHub resources.
+ */
+import { describe, it, expect, beforeAll, afterAll } from 'vitest'
+import { getResources, readResource } from '../../src/handlers/resources/index.js'
+import { SqliteAdapter } from '../../src/database/SqliteAdapter.js'
+describe('Resource Handlers', () => {
+    let db: SqliteAdapter
+    const testDbPath = './test-resources.db'
+    beforeAll(async () => {
+        db = new SqliteAdapter(testDbPath)
+        await db.initialize()
+        // Seed test data
+        const e1 = db.createEntry({
+            content: 'Resource test entry alpha',
+            tags: ['res-tag'],
+            significanceType: 'milestone',
+        })
+        const e2 = db.createEntry({
+            content: 'Resource test entry beta',
+            isPersonal: false,
+            projectNumber: 42,
+            issueNumber: 7,
+        })
+        const e3 = db.createEntry({
+            content: 'Resource test entry gamma',
+            prNumber: 15,
+        })
+        db.linkEntries(e1.id, e2.id, 'references', 'Related work')
+    })
+    afterAll(() => {
+        db.close()
+        try {
+            const fs = require('node:fs')
+            if (fs.existsSync(testDbPath)) fs.unlinkSync(testDbPath)
+        } catch {
+            // Ignore cleanup errors
+        }
+    })
+    // ========================================================================
+    // getResources
+    // ========================================================================
+    describe('getResources', () => {
+        it('should return non-empty array of resource definitions', () => {
+            const resources = getResources()
+            expect(Array.isArray(resources)).toBe(true)
+            expect(resources.length).toBeGreaterThan(10)
+        })
+        it('should have uri, name, and description on each resource', () => {
+            const resources = getResources()
+            for (const r of resources) {
+                const res = r as { uri: string; name: string; description: string }
+                expect(typeof res.uri).toBe('string')
+                expect(res.uri).toMatch(/^memory:\/\//)
+                expect(typeof res.name).toBe('string')
+                expect(typeof res.description).toBe('string')
+            }
+        })
+        it('should include known resource URIs', () => {
+            const resources = getResources()
+            const uris = resources.map((r) => (r as { uri: string }).uri)
+            expect(uris).toContain('memory://briefing')
+            expect(uris).toContain('memory://health')
+            expect(uris).toContain('memory://recent')
+            expect(uris).toContain('memory://significant')
+            expect(uris).toContain('memory://tags')
+            expect(uris).toContain('memory://team/recent')
+        })
+        it('should include template resources', () => {
+            const resources = getResources()
+            const uris = resources.map((r) => (r as { uri: string }).uri)
+            expect(uris).toContain('memory://projects/{number}/timeline')
+            expect(uris).toContain('memory://issues/{issue_number}/entries')
+            expect(uris).toContain('memory://prs/{pr_number}/entries')
+        })
+    })
+    // ========================================================================
+    // readResource - static resources
+    // ========================================================================
+    describe('readResource - static resources', () => {
+        it('should read memory://briefing', async () => {
+            const result = await readResource('memory://briefing', db)
+            expect(result.data).toBeDefined()
+            const data = result.data as {
+                version: string
+                journal: { totalEntries: number }
+                userMessage: string
+            }
+            expect(data.version).toBeDefined()
+            expect(data.journal.totalEntries).toBeGreaterThan(0)
+            expect(data.userMessage).toContain('Session Context')
+        })
+        it('should read memory://instructions', async () => {
+            const result = await readResource('memory://instructions', db)
+            expect(result.data).toBeDefined()
+            expect(typeof result.data).toBe('string')
+            expect(result.data as string).toContain('Session Start')
+        })
+        it('should show all tools in memory://instructions when no filter is set', async () => {
+            // Bug fix: when filterConfig is null (all tools enabled), memory://instructions
+            // must show Active Tools (39), not Active Tools (3) from the old hardcoded fallback
+            const result = await readResource('memory://instructions', db, undefined, null)
+            const text = result.data as string
+            expect(text).toContain('Active Tools (39)')
+        })
+        it('should read memory://recent', async () => {
+            const result = await readResource('memory://recent', db)
+            const data = result.data as { entries: unknown[]; count: number }
+            expect(data.entries).toBeDefined()
+            expect(data.count).toBeGreaterThan(0)
+            expect(result.annotations?.lastModified).toBeDefined()
+        })
+        it('should read memory://significant', async () => {
+            const result = await readResource('memory://significant', db)
+            const data = result.data as { entries: unknown[]; count: number }
+            expect(data.entries).toBeDefined()
+            // We created an entry with significanceType='milestone'
+            expect(data.count).toBeGreaterThan(0)
+        })
+        it('should sort memory://significant by importance descending, not by timestamp', async () => {
+            // Create 3 significant entries: e2 gets a relationship (higher importance), e3 gets 2 (highest)
+            const eBase = db.createEntry({ content: 'Sort test: base entry (no relationships)' })
+            const e1 = db.createEntry({
+                content: 'Sort test: sig entry 1 - no relationships',
+                significanceType: 'milestone',
+            })
+            const e2 = db.createEntry({
+                content: 'Sort test: sig entry 2 - one relationship',
+                significanceType: 'blocker_resolved',
+            })
+            const e3 = db.createEntry({
+                content: 'Sort test: sig entry 3 - two relationships',
+                significanceType: 'milestone',
+            })
+            // Give e2 one relationship, e3 two relationships → e3 should score highest
+            db.linkEntries(e2.id, eBase.id, 'references', 'One link')
+            db.linkEntries(e3.id, eBase.id, 'references', 'Link A')
+            db.linkEntries(e3.id, e1.id, 'references', 'Link B')
+            const result = await readResource('memory://significant', db)
+            const data = result.data as {
+                entries: { id: number; importance: number }[]
+                count: number
+            }
+            // 1: importance field present on all entries
+            for (const entry of data.entries) {
+                expect(typeof entry.importance).toBe('number')
+            }
+            // 2: entries sorted descending by importance (no entry should be less important than its successor)
+            for (let i = 1; i < data.entries.length; i++) {
+                const prev = data.entries[i - 1]!
+                const curr = data.entries[i]!
+                expect(prev.importance).toBeGreaterThanOrEqual(curr.importance)
+            }
+        })
+        it('should read memory://tags', async () => {
+            const result = await readResource('memory://tags', db)
+            const data = result.data as { tags: unknown[]; count: number }
+            expect(data.tags).toBeDefined()
+            expect(data.count).toBeGreaterThan(0)
+        })
+        it('should read memory://health', async () => {
+            const result = await readResource('memory://health', db)
+            const data = result.data as {
+                database: { entryCount: number }
+                toolFilter: { totalCount: number }
+                timestamp: string
+            }
+            expect(data.database.entryCount).toBeGreaterThan(0)
+            expect(data.toolFilter.totalCount).toBeGreaterThan(0)
+            expect(data.timestamp).toBeDefined()
+        })
+        it('should read memory://team/recent', async () => {
+            const result = await readResource('memory://team/recent', db)
+            const data = result.data as { entries: unknown[]; count: number }
+            expect(data.entries).toBeDefined()
+        })
+        it('should read memory://graph/recent', async () => {
+            const result = await readResource('memory://graph/recent', db)
+            const data = result.data as {
+                format: string
+                diagram: string
+                relationshipCount?: number
+            }
+            expect(data.format).toBe('mermaid')
+            expect(data.diagram).toContain('graph TD')
+        })
+        it('should read memory://statistics', async () => {
+            const result = await readResource('memory://statistics', db)
+            const data = result.data as { totalEntries: number; entriesByType: object }
+            expect(data.totalEntries).toBeGreaterThan(0)
+            expect(data.entriesByType).toBeDefined()
+        })
+    })
+    // ========================================================================
+    // readResource - template resources
+    // ========================================================================
+    describe('readResource - template resources', () => {
+        it('should read memory://projects/{number}/timeline', async () => {
+            const result = await readResource('memory://projects/42/timeline', db)
+            const data = result.data as { projectNumber: number; entries: unknown[]; count: number }
+            expect(data.projectNumber).toBe(42)
+            expect(data.count).toBeGreaterThan(0)
+        })
+        it('should read memory://issues/{issue_number}/entries', async () => {
+            const result = await readResource('memory://issues/7/entries', db)
+            const data = result.data as { issueNumber: number; entries: unknown[]; count: number }
+            expect(data.issueNumber).toBe(7)
+            expect(data.count).toBeGreaterThan(0)
+        })
+        it('should read memory://prs/{pr_number}/entries', async () => {
+            const result = await readResource('memory://prs/15/entries', db)
+            const data = result.data as { prNumber: number; entries: unknown[]; count: number }
+            expect(data.prNumber).toBe(15)
+            expect(data.count).toBeGreaterThan(0)
+        })
+        it('should return empty for non-matching project', async () => {
+            const result = await readResource('memory://projects/99999/timeline', db)
+            const data = result.data as { count: number }
+            expect(data.count).toBe(0)
+        })
+        it('should handle empty PR entries with hint', async () => {
+            const result = await readResource('memory://prs/99999/entries', db)
+            const data = result.data as { count: number; hint?: string }
+            expect(data.count).toBe(0)
+            expect(data.hint).toContain('No journal entries')
+        })
+    })
+    // ========================================================================
+    // readResource - error cases
+    // ========================================================================
+    describe('readResource - error cases', () => {
+        it('should throw for unknown resource', async () => {
+            await expect(readResource('memory://nonexistent', db)).rejects.toThrow(
+                'Unknown resource'
+            )
+        })
+    })
+    // ========================================================================
+    // readResource - branch coverage for query params & variants
+    // ========================================================================
+    describe('readResource - additional branch coverage', () => {
+        it('should read memory://graph/actions', async () => {
+            const result = await readResource('memory://graph/actions', db)
+            const data = result.data as { format: string; diagram: string }
+            expect(data.format).toBe('mermaid')
+        })
+        it('should read memory://actions/recent', async () => {
+            const result = await readResource('memory://actions/recent', db)
+            const data = result.data as { entries: unknown[]; count: number }
+            expect(data.entries).toBeDefined()
+        })
+        it('should return briefing with expected structure', async () => {
+            const result = await readResource('memory://briefing', db)
+            const data = result.data as {
+                version: string
+                journal: { totalEntries: number }
+                behaviors: { create: string }
+                userMessage: string
+                templateResources: string[]
+            }
+            expect(data.behaviors.create).toContain('implementations')
+            expect(data.templateResources).toContain('memory://projects/{number}/timeline')
+        })
+        it('should return annotations on recent entries', async () => {
+            const result = await readResource('memory://recent', db)
+            expect(result.annotations).toBeDefined()
+            expect(result.annotations?.lastModified).toBeDefined()
+        })
+        it('should handle PR timeline template', async () => {
+            // PR 15 was seeded with an entry
+            const result = await readResource('memory://prs/15/timeline', db)
+            const data = result.data as { prNumber: number }
+            expect(data.prNumber).toBe(15)
+        })
+    })
+})