proxmox-mcps 0.1.0

package/dist/safety/policy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy.js","sourceRoot":"","sources":["../../src/safety/policy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AACH,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,qBAAqB,EAAE,MAAM,sBAAsB,CAAC;AAW7D,gDAAgD;AAChD,MAAM,aAAa,GAAG,IAAI,GAAG,EAAgB,CAAC;AAE9C,MAAM,UAAU,YAAY,CAAC,QAAgB,EAAE,IAAU;IACvD,aAAa,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;AACpC,CAAC;AAED,MAAM,UAAU,OAAO,CAAC,QAAgB;IACtC,OAAO,aAAa,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC;AAC9C,CAAC;AAED,MAAM,UAAU,gBAAgB;IAC9B,OAAO,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;AAC3C,CAAC;AAED,MAAM,OAAO,UAAU;IACJ,MAAM,CAAe;IACrB,MAAM,CAAqB;IAE5C,YAAY,IAAuB;QACjC,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;QAC1B,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;IAC5B,CAAC;IAED;;;;;OAKG;IACH,aAAa,CAAC,QAAgB,EAAE,IAA6B;QAC3D,MAAM,IAAI,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC/B,IAAI,IAAI,KAAK,KAAK;YAAE,OAAO,IAAI,CAAC;QAEhC,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtB,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;gBAC1B,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,cAAc,CAAC,CAAC;YACrF,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,4CAA4C;QAC5C,IAAI,IAAI,CAAC,MAAM,CAAC,2BAA2B,EAAE,CAAC;YAC5C,IAAI,CAAC,MAAM,EAAE,IAAI,CACf,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,+BAA+B,EAAE,EACxF,eAAe,CAChB,CAAC;YACF,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,aAAa,GAAG,OAAO,IAAI,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,IAAI,CAAC;QAC3F,IAAI,aAAa,IAAI,IAAI,CAAC,MAAM,CAAC,aAAa,IAAI,WAAW,CAAC,aAAa,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE,CAAC;YACxG,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,iBAAiB,CAAC,CAAC;YACtF,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,IAAI,qBAAqB,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAClD,CAAC;CACF;AAED,SAAS,WAAW,CAAC,QAAgB,EAAE,QAAgB;IACrD,IAAI,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IACtD,IAAI,CAAC;QACH,OAAO,eAAe,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;IACvE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,SAAS,SAAS,CAAC,IAA6B;IAC9C,MAAM,GAAG,GAA4B,EAAE,CAAC;IACxC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAC1C,IAAI,CAAC,KAAK,gBAAgB,IAAI,CAAC,KAAK,UAAU,IAAI,CAAC,KAAK,cAAc,IAAI,CAAC,KAAK,YAAY,EAAE,CAAC;YAC7F,GAAG,CAAC,CAAC,CAAC,GAAG,YAAY,CAAC;QACxB,CAAC;aAAM,CAAC;YACN,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QACb,CAAC;IACH,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/safety/risk.d.ts

@@ -0,0 +1,3 @@
+/** Bulk-register every entry above. Called once at module load. */
+export declare function registerAllRisk(): void;
+//# sourceMappingURL=risk.d.ts.map

package/dist/safety/risk.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"risk.d.ts","sourceRoot":"","sources":["../../src/safety/risk.ts"],"names":[],"mappings":"AA4PA,mEAAmE;AACnE,wBAAgB,eAAe,IAAI,IAAI,CAItC"}

package/dist/safety/risk.js

@@ -0,0 +1,234 @@
+/**
+ * Risk classification registry.
+ *
+ * Importing this file has the side effect of registering every known tool
+ * name with its risk level. Phase 1B+ tools add to this map; the policy gate
+ * reads it to enforce approval-token semantics.
+ */
+import { registerRisk } from "./policy.js";
+const RISK_TABLE = {
+    // ---- Foundation ---------------------------------------------------------
+    get_cluster_status: "low",
+    get_nodes: "low",
+    get_node_status: "low",
+    get_node_syslog: "low",
+    get_node_journal: "low",
+    get_storage: "low",
+    list_tasks: "low",
+    get_task: "low",
+    get_task_log: "low",
+    list_jobs: "low",
+    get_job: "low",
+    poll_job: "low",
+    cancel_job: "medium",
+    retry_job: "medium",
+    // ---- Snapshots ----------------------------------------------------------
+    list_snapshots: "low",
+    create_snapshot: "medium",
+    delete_snapshot: "destructive",
+    rollback_snapshot: "destructive",
+    // ---- Backup -------------------------------------------------------------
+    list_backups: "low",
+    create_backup: "medium",
+    restore_backup: "destructive",
+    delete_backup: "destructive",
+    prune_backups: "medium",
+    // ---- ISO / Templates ----------------------------------------------------
+    list_isos: "low",
+    list_templates: "low",
+    download_iso: "medium",
+    delete_iso: "destructive",
+    // ---- VM CRUD & lifecycle -----------------------------------------------
+    get_vms: "low",
+    get_vm_config: "low",
+    get_vm_status: "low",
+    create_vm: "medium",
+    clone_vm: "medium",
+    start_vm: "medium",
+    stop_vm: "medium",
+    shutdown_vm: "medium",
+    reset_vm: "medium",
+    reboot_vm: "medium",
+    delete_vm: "destructive",
+    // ---- VM Config & cloud-init --------------------------------------------
+    update_vm_config: "high",
+    resize_vm_disk: "medium",
+    regenerate_vm_config: "medium",
+    set_vm_cloudinit: "medium",
+    get_vm_pending: "low",
+    // ---- VM Diagnostics ----------------------------------------------------
+    get_vm_rrd: "low",
+    get_vm_rrddata: "low",
+    vm_agent_info: "low",
+    vm_agent_get_hostname: "low",
+    vm_agent_get_osinfo: "low",
+    vm_agent_get_users: "low",
+    vm_agent_get_network_interfaces: "low",
+    vm_agent_get_vcpus: "low",
+    vm_agent_get_time: "low",
+    vm_agent_get_fsinfo: "low",
+    vm_agent_fstrim: "medium",
+    vm_agent_exec: "high",
+    vm_agent_exec_status: "low",
+    vm_agent_set_user_password: "high",
+    vm_sendkey: "medium",
+    vm_monitor: "high",
+    vm_firewall_rules: "low",
+    vm_firewall_options: "low",
+    // ---- VM Migration & storage --------------------------------------------
+    migrate_vm: "medium",
+    move_vm_disk: "medium",
+    convert_vm_to_template: "destructive",
+    unlink_vm_disk: "medium",
+    // ---- VM Console --------------------------------------------------------
+    vm_vncproxy: "medium",
+    vm_termproxy: "medium",
+    vm_spiceproxy: "medium",
+    vm_mtunnel: "medium",
+    vm_mtunnelwebsocket: "medium",
+    vm_feature: "medium",
+    // ---- Container CRUD & lifecycle ----------------------------------------
+    get_containers: "low",
+    get_container_config: "low",
+    get_container_status: "low",
+    get_container_ip: "low",
+    create_container: "medium",
+    clone_container: "medium",
+    start_container: "medium",
+    stop_container: "medium",
+    shutdown_container: "medium",
+    restart_container: "medium",
+    delete_container: "destructive",
+    update_container_resources: "medium",
+    // ---- Container Config --------------------------------------------------
+    update_container_config: "medium",
+    resize_container_disk: "medium",
+    move_container_volume: "medium",
+    // ---- Container Diagnostics ---------------------------------------------
+    get_container_rrd: "low",
+    get_container_rrddata: "low",
+    container_firewall_rules: "low",
+    container_firewall_options: "low",
+    execute_container_command: "medium",
+    // ---- Container Migration & storage -------------------------------------
+    migrate_container: "medium",
+    move_container_disk: "medium",
+    convert_container_to_template: "destructive",
+    unlink_container_disk: "medium",
+    // ---- Container Console -------------------------------------------------
+    container_vncproxy: "medium",
+    container_termproxy: "medium",
+    container_spiceproxy: "medium",
+    // ---- Pools (Phase 2B) --------------------------------------------------
+    list_pools: "low",
+    get_pool: "low",
+    create_pool: "medium",
+    update_pool: "medium",
+    delete_pool: "destructive",
+    // ---- Cluster HA (Phase 2B) ---------------------------------------------
+    list_ha_resources: "low",
+    get_ha_resource_status: "low",
+    add_ha_resource: "high",
+    remove_ha_resource: "destructive",
+    migrate_ha_resource: "medium",
+    list_ha_groups: "low",
+    get_ha_group: "low",
+    create_ha_group: "high",
+    update_ha_group: "high",
+    delete_ha_group: "destructive",
+    get_ha_status: "low",
+    // ---- Cluster Backup Schedule (Phase 2B) --------------------------------
+    list_backup_jobs: "low",
+    get_backup_job: "low",
+    create_backup_job: "medium",
+    update_backup_job: "medium",
+    delete_backup_job: "destructive",
+    run_backup_job: "medium",
+    get_backup_job_included: "low",
+    // ---- Replication (Phase 2D) ---------------------------------------------
+    list_replication_jobs: "low",
+    get_replication_job: "low",
+    get_replication_status: "low",
+    create_replication_job: "medium",
+    update_replication_job: "medium",
+    delete_replication_job: "destructive",
+    list_node_replication: "low",
+    // ---- SDN (Phase 2D) -----------------------------------------------------
+    list_sdn_controllers: "low",
+    get_sdn_controller: "low",
+    create_sdn_controller: "high",
+    update_sdn_controller: "high",
+    delete_sdn_controller: "destructive",
+    list_sdn_vnets: "low",
+    get_sdn_vnet: "low",
+    create_sdn_vnet: "medium",
+    update_sdn_vnet: "medium",
+    delete_sdn_vnet: "destructive",
+    list_sdn_zones: "low",
+    get_sdn_zone: "low",
+    create_sdn_zone: "high",
+    update_sdn_zone: "high",
+    delete_sdn_zone: "destructive",
+    list_sdn_subnets: "low",
+    get_sdn_subnet: "low",
+    create_sdn_subnet: "medium",
+    update_sdn_subnet: "medium",
+    delete_sdn_subnet: "destructive",
+    apply_sdn: "destructive",
+    // ---- Node admin (Phase 2C) ---------------------------------------------
+    node_apt_update: "medium",
+    node_apt_versions: "low",
+    node_apt_repos_list: "low",
+    node_apt_repos_change: "high",
+    get_node_dns: "low",
+    set_node_dns: "medium",
+    get_node_hosts: "low",
+    set_node_hosts: "medium",
+    get_node_time: "low",
+    set_node_time: "medium",
+    get_node_timezone: "low",
+    set_node_timezone: "medium",
+    get_node_config: "low",
+    update_node_config: "high",
+    get_node_report: "low",
+    node_start_all: "medium",
+    node_stop_all: "medium",
+    node_migrate_all: "medium",
+    node_wake_on_lan: "low",
+    get_node_subscription: "low",
+    set_node_subscription: "high",
+    update_node_subscription: "high",
+    delete_node_subscription: "medium",
+    list_node_services: "low",
+    node_service_start: "medium",
+    node_service_stop: "medium",
+    node_service_restart: "medium",
+    node_service_reload: "medium",
+    node_service_enable: "medium",
+    node_service_disable: "medium",
+    list_node_network: "low",
+    create_node_network: "high",
+    update_node_network: "high",
+    delete_node_network: "destructive",
+    reload_node_network: "medium",
+    list_node_disks: "low",
+    list_node_disks_detailed: "low",
+    init_node_disk: "destructive",
+    wipe_node_disk: "destructive",
+    create_node_zfs: "destructive",
+    list_node_certificates: "low",
+    delete_node_certificate: "destructive",
+    // ---- Storage admin (Phase 2D) ------------------------------------------
+    list_storages: "low",
+    create_storage: "high",
+    update_storage: "high",
+    delete_storage: "destructive",
+};
+/** Bulk-register every entry above. Called once at module load. */
+export function registerAllRisk() {
+    for (const [name, risk] of Object.entries(RISK_TABLE)) {
+        registerRisk(name, risk);
+    }
+}
+registerAllRisk();
+//# sourceMappingURL=risk.js.map

package/dist/safety/risk.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"risk.js","sourceRoot":"","sources":["../../src/safety/risk.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,OAAO,EAAE,YAAY,EAAa,MAAM,aAAa,CAAC;AAEtD,MAAM,UAAU,GAAyB;IACvC,4EAA4E;IAC5E,kBAAkB,EAAE,KAAK;IACzB,SAAS,EAAE,KAAK;IAChB,eAAe,EAAE,KAAK;IACtB,eAAe,EAAE,KAAK;IACtB,gBAAgB,EAAE,KAAK;IACvB,WAAW,EAAE,KAAK;IAClB,UAAU,EAAE,KAAK;IACjB,QAAQ,EAAE,KAAK;IACf,YAAY,EAAE,KAAK;IACnB,SAAS,EAAE,KAAK;IAChB,OAAO,EAAE,KAAK;IACd,QAAQ,EAAE,KAAK;IACf,UAAU,EAAE,QAAQ;IACpB,SAAS,EAAE,QAAQ;IAEnB,4EAA4E;IAC5E,cAAc,EAAE,KAAK;IACrB,eAAe,EAAE,QAAQ;IACzB,eAAe,EAAE,aAAa;IAC9B,iBAAiB,EAAE,aAAa;IAEhC,4EAA4E;IAC5E,YAAY,EAAE,KAAK;IACnB,aAAa,EAAE,QAAQ;IACvB,cAAc,EAAE,aAAa;IAC7B,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,QAAQ;IAEvB,4EAA4E;IAC5E,SAAS,EAAE,KAAK;IAChB,cAAc,EAAE,KAAK;IACrB,YAAY,EAAE,QAAQ;IACtB,UAAU,EAAE,aAAa;IAEzB,2EAA2E;IAC3E,OAAO,EAAE,KAAK;IACd,aAAa,EAAE,KAAK;IACpB,aAAa,EAAE,KAAK;IACpB,SAAS,EAAE,QAAQ;IACnB,QAAQ,EAAE,QAAQ;IAClB,QAAQ,EAAE,QAAQ;IAClB,OAAO,EAAE,QAAQ;IACjB,WAAW,EAAE,QAAQ;IACrB,QAAQ,EAAE,QAAQ;IAClB,SAAS,EAAE,QAAQ;IACnB,SAAS,EAAE,aAAa;IAExB,2EAA2E;IAC3E,gBAAgB,EAAE,MAAM;IACxB,cAAc,EAAE,QAAQ;IACxB,oBAAoB,EAAE,QAAQ;IAC9B,gBAAgB,EAAE,QAAQ;IAC1B,cAAc,EAAE,KAAK;IAErB,2EAA2E;IAC3E,UAAU,EAAE,KAAK;IACjB,cAAc,EAAE,KAAK;IACrB,aAAa,EAAE,KAAK;IACpB,qBAAqB,EAAE,KAAK;IAC5B,mBAAmB,EAAE,KAAK;IAC1B,kBAAkB,EAAE,KAAK;IACzB,+BAA+B,EAAE,KAAK;IACtC,kBAAkB,EAAE,KAAK;IACzB,iBAAiB,EAAE,KAAK;IACxB,mBAAmB,EAAE,KAAK;IAC1B,eAAe,EAAE,QAAQ;IACzB,aAAa,EAAE,MAAM;IACrB,oBAAoB,EAAE,KAAK;IAC3B,0BAA0B,EAAE,MAAM;IAClC,UAAU,EAAE,QAAQ;IACpB,UAAU,EAAE,MAAM;IAClB,iBAAiB,EAAE,KAAK;IACxB,mBAAmB,EAAE,KAAK;IAE1B,2EAA2E;IAC3E,UAAU,EAAE,QAAQ;IACpB,YAAY,EAAE,QAAQ;IACtB,sBAAsB,EAAE,aAAa;IACrC,cAAc,EAAE,QAAQ;IAExB,2EAA2E;IAC3E,WAAW,EAAE,QAAQ;IACrB,YAAY,EAAE,QAAQ;IACtB,aAAa,EAAE,QAAQ;IACvB,UAAU,EAAE,QAAQ;IACpB,mBAAmB,EAAE,QAAQ;IAC7B,UAAU,EAAE,QAAQ;IAEpB,2EAA2E;IAC3E,cAAc,EAAE,KAAK;IACrB,oBAAoB,EAAE,KAAK;IAC3B,oBAAoB,EAAE,KAAK;IAC3B,gBAAgB,EAAE,KAAK;IACvB,gBAAgB,EAAE,QAAQ;IAC1B,eAAe,EAAE,QAAQ;IACzB,eAAe,EAAE,QAAQ;IACzB,cAAc,EAAE,QAAQ;IACxB,kBAAkB,EAAE,QAAQ;IAC5B,iBAAiB,EAAE,QAAQ;IAC3B,gBAAgB,EAAE,aAAa;IAC/B,0BAA0B,EAAE,QAAQ;IAEpC,2EAA2E;IAC3E,uBAAuB,EAAE,QAAQ;IACjC,qBAAqB,EAAE,QAAQ;IAC/B,qBAAqB,EAAE,QAAQ;IAE/B,2EAA2E;IAC3E,iBAAiB,EAAE,KAAK;IACxB,qBAAqB,EAAE,KAAK;IAC5B,wBAAwB,EAAE,KAAK;IAC/B,0BAA0B,EAAE,KAAK;IACjC,yBAAyB,EAAE,QAAQ;IAEnC,2EAA2E;IAC3E,iBAAiB,EAAE,QAAQ;IAC3B,mBAAmB,EAAE,QAAQ;IAC7B,6BAA6B,EAAE,aAAa;IAC5C,qBAAqB,EAAE,QAAQ;IAE/B,2EAA2E;IAC3E,kBAAkB,EAAE,QAAQ;IAC5B,mBAAmB,EAAE,QAAQ;IAC7B,oBAAoB,EAAE,QAAQ;IAE9B,2EAA2E;IAC3E,UAAU,EAAE,KAAK;IACjB,QAAQ,EAAE,KAAK;IACf,WAAW,EAAE,QAAQ;IACrB,WAAW,EAAE,QAAQ;IACrB,WAAW,EAAE,aAAa;IAE1B,2EAA2E;IAC3E,iBAAiB,EAAE,KAAK;IACxB,sBAAsB,EAAE,KAAK;IAC7B,eAAe,EAAE,MAAM;IACvB,kBAAkB,EAAE,aAAa;IACjC,mBAAmB,EAAE,QAAQ;IAC7B,cAAc,EAAE,KAAK;IACrB,YAAY,EAAE,KAAK;IACnB,eAAe,EAAE,MAAM;IACvB,eAAe,EAAE,MAAM;IACvB,eAAe,EAAE,aAAa;IAC9B,aAAa,EAAE,KAAK;IAEpB,2EAA2E;IAC3E,gBAAgB,EAAE,KAAK;IACvB,cAAc,EAAE,KAAK;IACrB,iBAAiB,EAAE,QAAQ;IAC3B,iBAAiB,EAAE,QAAQ;IAC3B,iBAAiB,EAAE,aAAa;IAChC,cAAc,EAAE,QAAQ;IACxB,uBAAuB,EAAE,KAAK;IAE9B,4EAA4E;IAC5E,qBAAqB,EAAE,KAAK;IAC5B,mBAAmB,EAAE,KAAK;IAC1B,sBAAsB,EAAE,KAAK;IAC7B,sBAAsB,EAAE,QAAQ;IAChC,sBAAsB,EAAE,QAAQ;IAChC,sBAAsB,EAAE,aAAa;IACrC,qBAAqB,EAAE,KAAK;IAE5B,4EAA4E;IAC5E,oBAAoB,EAAE,KAAK;IAC3B,kBAAkB,EAAE,KAAK;IACzB,qBAAqB,EAAE,MAAM;IAC7B,qBAAqB,EAAE,MAAM;IAC7B,qBAAqB,EAAE,aAAa;IACpC,cAAc,EAAE,KAAK;IACrB,YAAY,EAAE,KAAK;IACnB,eAAe,EAAE,QAAQ;IACzB,eAAe,EAAE,QAAQ;IACzB,eAAe,EAAE,aAAa;IAC9B,cAAc,EAAE,KAAK;IACrB,YAAY,EAAE,KAAK;IACnB,eAAe,EAAE,MAAM;IACvB,eAAe,EAAE,MAAM;IACvB,eAAe,EAAE,aAAa;IAC9B,gBAAgB,EAAE,KAAK;IACvB,cAAc,EAAE,KAAK;IACrB,iBAAiB,EAAE,QAAQ;IAC3B,iBAAiB,EAAE,QAAQ;IAC3B,iBAAiB,EAAE,aAAa;IAChC,SAAS,EAAE,aAAa;IAExB,2EAA2E;IAC3E,eAAe,EAAE,QAAQ;IACzB,iBAAiB,EAAE,KAAK;IACxB,mBAAmB,EAAE,KAAK;IAC1B,qBAAqB,EAAE,MAAM;IAC7B,YAAY,EAAE,KAAK;IACnB,YAAY,EAAE,QAAQ;IACtB,cAAc,EAAE,KAAK;IACrB,cAAc,EAAE,QAAQ;IACxB,aAAa,EAAE,KAAK;IACpB,aAAa,EAAE,QAAQ;IACvB,iBAAiB,EAAE,KAAK;IACxB,iBAAiB,EAAE,QAAQ;IAC3B,eAAe,EAAE,KAAK;IACtB,kBAAkB,EAAE,MAAM;IAC1B,eAAe,EAAE,KAAK;IACtB,cAAc,EAAE,QAAQ;IACxB,aAAa,EAAE,QAAQ;IACvB,gBAAgB,EAAE,QAAQ;IAC1B,gBAAgB,EAAE,KAAK;IACvB,qBAAqB,EAAE,KAAK;IAC5B,qBAAqB,EAAE,MAAM;IAC7B,wBAAwB,EAAE,MAAM;IAChC,wBAAwB,EAAE,QAAQ;IAElC,kBAAkB,EAAE,KAAK;IACzB,kBAAkB,EAAE,QAAQ;IAC5B,iBAAiB,EAAE,QAAQ;IAC3B,oBAAoB,EAAE,QAAQ;IAC9B,mBAAmB,EAAE,QAAQ;IAC7B,mBAAmB,EAAE,QAAQ;IAC7B,oBAAoB,EAAE,QAAQ;IAE9B,iBAAiB,EAAE,KAAK;IACxB,mBAAmB,EAAE,MAAM;IAC3B,mBAAmB,EAAE,MAAM;IAC3B,mBAAmB,EAAE,aAAa;IAClC,mBAAmB,EAAE,QAAQ;IAE7B,eAAe,EAAE,KAAK;IACtB,wBAAwB,EAAE,KAAK;IAC/B,cAAc,EAAE,aAAa;IAC7B,cAAc,EAAE,aAAa;IAC7B,eAAe,EAAE,aAAa;IAE9B,sBAAsB,EAAE,KAAK;IAC7B,uBAAuB,EAAE,aAAa;IAEtC,2EAA2E;IAC3E,aAAa,EAAE,KAAK;IACpB,cAAc,EAAE,MAAM;IACtB,cAAc,EAAE,MAAM;IACtB,cAAc,EAAE,aAAa;CAC9B,CAAC;AAEF,mEAAmE;AACnE,MAAM,UAAU,eAAe;IAC7B,KAAK,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC;QACtD,YAAY,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC3B,CAAC;AACH,CAAC;AAED,eAAe,EAAE,CAAC"}

package/dist/security/url-guard.d.ts

@@ -0,0 +1,22 @@
+export interface DownloadGuardOptions {
+    /** Allowed URL schemes (lowercase, e.g. "http", "https"). */
+    allowedSchemes: ReadonlyArray<string>;
+    /** Optional operator allowlist of hostnames (suffix match) or CIDRs. */
+    allowedHosts?: ReadonlyArray<string>;
+}
+export type GuardResult = {
+    ok: true;
+    resolvedIp: string;
+} | {
+    ok: false;
+    reason: string;
+};
+/**
+ * Validate a URL for safe server-side fetching.
+ *
+ * Returns `{ ok: true, resolvedIp }` on success, or `{ ok: false, reason }`
+ * explaining why the URL was rejected. `reason` is safe to surface to the
+ * model (no internal details).
+ */
+export declare function validateDownloadUrl(rawUrl: string, opts: DownloadGuardOptions): Promise<GuardResult>;
+//# sourceMappingURL=url-guard.d.ts.map

package/dist/security/url-guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"url-guard.d.ts","sourceRoot":"","sources":["../../src/security/url-guard.ts"],"names":[],"mappings":"AAcA,MAAM,WAAW,oBAAoB;IACnC,6DAA6D;IAC7D,cAAc,EAAE,aAAa,CAAC,MAAM,CAAC,CAAC;IACtC,wEAAwE;IACxE,YAAY,CAAC,EAAE,aAAa,CAAC,MAAM,CAAC,CAAC;CACtC;AAED,MAAM,MAAM,WAAW,GAAG;IAAE,EAAE,EAAE,IAAI,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,GAAG;IAAE,EAAE,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAmG3F;;;;;;GAMG;AACH,wBAAsB,mBAAmB,CACvC,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,oBAAoB,GACzB,OAAO,CAAC,WAAW,CAAC,CAgDtB"}

package/dist/security/url-guard.js

@@ -0,0 +1,166 @@
+/**
+ * SSRF guard for server-side URL fetches (e.g. `download_iso`).
+ *
+ * Rejects URLs whose scheme is not allowed, whose hostname resolves to a
+ * private/loopback/link-local IP, or whose hostname is not on the operator's
+ * allowlist (when configured).
+ *
+ * Used by tools that hand a URL to the Proxmox REST API (`/download-url`,
+ * etc.). Proxmox performs the fetch server-side, so an unguarded URL turns
+ * the Proxmox host into an SSRF proxy from the management network.
+ */
+import { lookup } from "node:dns/promises";
+import { isIP } from "node:net";
+// RFC1918 / RFC4193 / RFC5735 / RFC6890 ranges that must never be reached
+// from a server-side fetch by an LLM-driven tool caller.
+const BLOCKED_V4_CIDRS = [
+    ["10.0.0.0", 8],
+    ["172.16.0.0", 12],
+    ["192.168.0.0", 16],
+    ["127.0.0.0", 8],
+    ["169.254.0.0", 16],
+    ["0.0.0.0", 8],
+    ["100.64.0.0", 10], // CGNAT
+    ["224.0.0.0", 4], // multicast
+    ["240.0.0.0", 4], // reserved
+];
+const BLOCKED_V6_PREFIXES = ["::1", "fc", "fd", "fe80", "ff"]; // loopback, ULA, link-local, multicast
+function ipv4ToInt(ip) {
+    const parts = ip.split(".").map((p) => Number.parseInt(p, 10));
+    if (parts.length !== 4 ||
+        parts.some((p) => p === undefined || Number.isNaN(p) || p < 0 || p > 255)) {
+        return -1;
+    }
+    const a = parts[0];
+    const b = parts[1];
+    const c = parts[2];
+    const d = parts[3];
+    return ((a << 24) | (b << 16) | (c << 8) | d) >>> 0;
+}
+function ipv4InCidr(ip, base, bits) {
+    const ipInt = ipv4ToInt(ip);
+    const baseInt = ipv4ToInt(base);
+    if (ipInt < 0 || baseInt < 0)
+        return false;
+    if (bits === 0)
+        return true;
+    const mask = bits === 32 ? 0xffffffff : (~((1 << (32 - bits)) - 1)) >>> 0;
+    return (ipInt & mask) === (baseInt & mask);
+}
+function ipv4Blocked(ip) {
+    return BLOCKED_V4_CIDRS.some(([base, bits]) => ipv4InCidr(ip, base, bits));
+}
+function ipv6Blocked(ip) {
+    const lower = ip.toLowerCase();
+    // Normalize ::1 and 0:0:0:0:0:0:0:1 to ::1
+    if (lower === "::" || lower === "::1")
+        return true;
+    for (const prefix of BLOCKED_V6_PREFIXES) {
+        if (lower.startsWith(prefix))
+            return true;
+    }
+    return false;
+}
+function ipBlocked(ip) {
+    const v = isIP(ip);
+    if (v === 4)
+        return ipv4Blocked(ip);
+    if (v === 6)
+        return ipv6Blocked(ip);
+    return true; // unknown family — block
+}
+function cidrMatchesIp(cidr, ip) {
+    if (!cidr.includes("/"))
+        return false;
+    const parts = cidr.split("/", 2);
+    const base = parts[0] ?? "";
+    const bitsStr = parts[1] ?? "";
+    const bits = Number.parseInt(bitsStr, 10);
+    if (Number.isNaN(bits))
+        return false;
+    if (isIP(base) === 4 && isIP(ip) === 4 && bits >= 0 && bits <= 32) {
+        return ipv4InCidr(ip, base, bits);
+    }
+    // Simple IPv6 prefix match
+    if (isIP(base) === 6 && isIP(ip) === 6 && bits >= 0 && bits <= 128) {
+        const norm = (s) => s.toLowerCase().replace(/^0+/, "");
+        const len = Math.max(1, Math.floor(bits / 4) * 2);
+        return norm(ip).startsWith(norm(base).slice(0, len));
+    }
+    return false;
+}
+function hostMatchesAllowlist(host, ip, allowlist) {
+    const lower = host.toLowerCase();
+    for (const entryRaw of allowlist) {
+        const entry = entryRaw.trim().toLowerCase();
+        if (!entry)
+            continue;
+        // Exact match
+        if (entry === lower)
+            return true;
+        // Suffix match (".example.com" matches "foo.example.com" but not "example.com")
+        if (entry.startsWith(".") && lower.endsWith(entry))
+            return true;
+        // CIDR
+        if (entry.includes("/") && cidrMatchesIp(entry, ip))
+            return true;
+        // Bare IP
+        if (entry === ip)
+            return true;
+    }
+    return false;
+}
+/**
+ * Validate a URL for safe server-side fetching.
+ *
+ * Returns `{ ok: true, resolvedIp }` on success, or `{ ok: false, reason }`
+ * explaining why the URL was rejected. `reason` is safe to surface to the
+ * model (no internal details).
+ */
+export async function validateDownloadUrl(rawUrl, opts) {
+    let parsed;
+    try {
+        parsed = new URL(rawUrl);
+    }
+    catch {
+        return { ok: false, reason: "URL is not parseable" };
+    }
+    const scheme = parsed.protocol.replace(/:$/, "").toLowerCase();
+    if (!opts.allowedSchemes.includes(scheme)) {
+        return {
+            ok: false,
+            reason: `scheme '${scheme || "<empty>"}' is not allowed (permitted: ${opts.allowedSchemes.join(", ")})`,
+        };
+    }
+    const hostname = parsed.hostname;
+    if (!hostname) {
+        return { ok: false, reason: "URL has no hostname" };
+    }
+    // If hostname is a literal IP, validate it directly without DNS lookup.
+    let resolvedIp;
+    if (isIP(hostname)) {
+        resolvedIp = hostname;
+    }
+    else {
+        try {
+            const addrs = await lookup(hostname, { all: true });
+            if (addrs.length === 0) {
+                return { ok: false, reason: "hostname did not resolve" };
+            }
+            resolvedIp = addrs[0]?.address ?? hostname;
+        }
+        catch {
+            return { ok: false, reason: "hostname DNS lookup failed" };
+        }
+    }
+    if (ipBlocked(resolvedIp)) {
+        return { ok: false, reason: "URL resolves to a blocked (private/loopback/link-local) IP range" };
+    }
+    if (opts.allowedHosts && opts.allowedHosts.length > 0) {
+        if (!hostMatchesAllowlist(hostname, resolvedIp, opts.allowedHosts)) {
+            return { ok: false, reason: "hostname is not on the operator allowlist" };
+        }
+    }
+    return { ok: true, resolvedIp };
+}
+//# sourceMappingURL=url-guard.js.map

package/dist/security/url-guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"url-guard.js","sourceRoot":"","sources":["../../src/security/url-guard.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AACH,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAC3C,OAAO,EAAE,IAAI,EAAE,MAAM,UAAU,CAAC;AAWhC,0EAA0E;AAC1E,yDAAyD;AACzD,MAAM,gBAAgB,GAAoC;IACxD,CAAC,UAAU,EAAE,CAAC,CAAC;IACf,CAAC,YAAY,EAAE,EAAE,CAAC;IAClB,CAAC,aAAa,EAAE,EAAE,CAAC;IACnB,CAAC,WAAW,EAAE,CAAC,CAAC;IAChB,CAAC,aAAa,EAAE,EAAE,CAAC;IACnB,CAAC,SAAS,EAAE,CAAC,CAAC;IACd,CAAC,YAAY,EAAE,EAAE,CAAC,EAAE,QAAQ;IAC5B,CAAC,WAAW,EAAE,CAAC,CAAC,EAAE,YAAY;IAC9B,CAAC,WAAW,EAAE,CAAC,CAAC,EAAE,WAAW;CAC9B,CAAC;AAEF,MAAM,mBAAmB,GAA0B,CAAC,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,uCAAuC;AAE7H,SAAS,SAAS,CAAC,EAAU;IAC3B,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;IAC/D,IACE,KAAK,CAAC,MAAM,KAAK,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,SAAS,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,GAAG,CAAC,EACzE,CAAC;QACD,OAAO,CAAC,CAAC,CAAC;IACZ,CAAC;IACD,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAW,CAAC;IAC7B,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAW,CAAC;IAC7B,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAW,CAAC;IAC7B,MAAM,CAAC,GAAG,KAAK,CAAC,CAAC,CAAW,CAAC;IAC7B,OAAO,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;AACtD,CAAC;AAED,SAAS,UAAU,CAAC,EAAU,EAAE,IAAY,EAAE,IAAY;IACxD,MAAM,KAAK,GAAG,SAAS,CAAC,EAAE,CAAC,CAAC;IAC5B,MAAM,OAAO,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;IAChC,IAAI,KAAK,GAAG,CAAC,IAAI,OAAO,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IAC3C,IAAI,IAAI,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC5B,MAAM,IAAI,GAAG,IAAI,KAAK,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;IAC1E,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;AAC7C,CAAC;AAED,SAAS,WAAW,CAAC,EAAU;IAC7B,OAAO,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC;AAC7E,CAAC;AAED,SAAS,WAAW,CAAC,EAAU;IAC7B,MAAM,KAAK,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC;IAC/B,2CAA2C;IAC3C,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IACnD,KAAK,MAAM,MAAM,IAAI,mBAAmB,EAAE,CAAC;QACzC,IAAI,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC;YAAE,OAAO,IAAI,CAAC;IAC5C,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,SAAS,CAAC,EAAU;IAC3B,MAAM,CAAC,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;IACnB,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,WAAW,CAAC,EAAE,CAAC,CAAC;IACpC,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,WAAW,CAAC,EAAE,CAAC,CAAC;IACpC,OAAO,IAAI,CAAC,CAAC,yBAAyB;AACxC,CAAC;AAED,SAAS,aAAa,CAAC,IAAY,EAAE,EAAU;IAC7C,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IACtC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;IACjC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC5B,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC/B,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IAC1C,IAAI,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC;QAAE,OAAO,KAAK,CAAC;IACrC,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,IAAI,IAAI,EAAE,EAAE,CAAC;QAClE,OAAO,UAAU,CAAC,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;IACpC,CAAC;IACD,2BAA2B;IAC3B,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,IAAI,IAAI,GAAG,EAAE,CAAC;QACnE,MAAM,IAAI,GAAG,CAAC,CAAS,EAAU,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QACvE,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QAClD,OAAO,IAAI,CAAC,EAAE,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;IACvD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,oBAAoB,CAAC,IAAY,EAAE,EAAU,EAAE,SAAgC;IACtF,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IACjC,KAAK,MAAM,QAAQ,IAAI,SAAS,EAAE,CAAC;QACjC,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC5C,IAAI,CAAC,KAAK;YAAE,SAAS;QACrB,cAAc;QACd,IAAI,KAAK,KAAK,KAAK;YAAE,OAAO,IAAI,CAAC;QACjC,gFAAgF;QAChF,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAChE,OAAO;QACP,IAAI,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,aAAa,CAAC,KAAK,EAAE,EAAE,CAAC;YAAE,OAAO,IAAI,CAAC;QACjE,UAAU;QACV,IAAI,KAAK,KAAK,EAAE;YAAE,OAAO,IAAI,CAAC;IAChC,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,MAAc,EACd,IAA0B;IAE1B,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;IAC3B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC;IACvD,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;IAC/D,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC1C,OAAO;YACL,EAAE,EAAE,KAAK;YACT,MAAM,EAAE,WAAW,MAAM,IAAI,SAAS,gCAAgC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG;SACxG,CAAC;IACJ,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;IACjC,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC;IACtD,CAAC;IAED,wEAAwE;IACxE,IAAI,UAAkB,CAAC;IACvB,IAAI,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QACnB,UAAU,GAAG,QAAQ,CAAC;IACxB,CAAC;SAAM,CAAC;QACN,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,QAAQ,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC;YACpD,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,0BAA0B,EAAE,CAAC;YAC3D,CAAC;YACD,UAAU,GAAG,KAAK,CAAC,CAAC,CAAC,EAAE,OAAO,IAAI,QAAQ,CAAC;QAC7C,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,4BAA4B,EAAE,CAAC;QAC7D,CAAC;IACH,CAAC;IAED,IAAI,SAAS,CAAC,UAAU,CAAC,EAAE,CAAC;QAC1B,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,kEAAkE,EAAE,CAAC;IACnG,CAAC;IAED,IAAI,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtD,IAAI,CAAC,oBAAoB,CAAC,QAAQ,EAAE,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;YACnE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,2CAA2C,EAAE,CAAC;QAC5E,CAAC;IACH,CAAC;IAED,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC;AAClC,CAAC"}

package/dist/server.d.ts

@@ -0,0 +1,24 @@
+/**
+ * McpServer factory + DI wiring.
+ *
+ * Builds ProxmoxClient, SshClient, logger, policy gate, job store, and the
+ * McpServer instance. Tools are registered via `registerAll(server, ctx)`.
+ */
+import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+import type { AppConfig } from "./config/types.js";
+import type { ToolContext } from "./tools/context.js";
+export interface BuildServerOptions {
+    config: AppConfig;
+}
+export interface BuiltServer {
+    server: McpServer;
+    ctx: ToolContext;
+    close: () => Promise<void>;
+}
+/**
+ * Construct the McpServer + ToolContext. Tools themselves are NOT registered
+ * here — call `registerAll(server, ctx)` from tools/index.ts separately to
+ * avoid circular imports during early bootstrap.
+ */
+export declare function buildServer(opts: BuildServerOptions): BuiltServer;
+//# sourceMappingURL=server.d.ts.map

package/dist/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AACpE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAGnD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAOtD,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,SAAS,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,SAAS,CAAC;IAClB,GAAG,EAAE,WAAW,CAAC;IACjB,KAAK,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC5B;AAED;;;;GAIG;AACH,wBAAgB,WAAW,CAAC,IAAI,EAAE,kBAAkB,GAAG,WAAW,CAmEjE"}

package/dist/server.js

@@ -0,0 +1,74 @@
+/**
+ * McpServer factory + DI wiring.
+ *
+ * Builds ProxmoxClient, SshClient, logger, policy gate, job store, and the
+ * McpServer instance. Tools are registered via `registerAll(server, ctx)`.
+ */
+import { McpServer } from "@modelcontextprotocol/sdk/server/mcp.js";
+import { ProxmoxClient } from "./proxmox/client.js";
+import { SshClient } from "./ssh/client.js";
+import { getLogger } from "./log.js";
+import { PolicyGate } from "./safety/policy.js";
+import { InMemoryJobStore } from "./jobs/store.js";
+import { SqliteJobStore } from "./jobs/sqlite-store.js";
+/**
+ * Construct the McpServer + ToolContext. Tools themselves are NOT registered
+ * here — call `registerAll(server, ctx)` from tools/index.ts separately to
+ * avoid circular imports during early bootstrap.
+ */
+export function buildServer(opts) {
+    const logger = getLogger({ level: opts.config.logLevel, pretty: opts.config.logPretty });
+    const client = new ProxmoxClient({
+        proxmox: opts.config.proxmox,
+        retry: {
+            max: opts.config.retryJob.retryMax,
+            baseMs: opts.config.retryJob.retryBaseMs,
+        },
+        logger: logger.child({ module: "proxmox-client" }),
+    });
+    const ssh = new SshClient({
+        ssh: opts.config.ssh,
+        logger: logger.child({ module: "ssh-client" }),
+    });
+    const policy = new PolicyGate({
+        safety: opts.config.safety,
+        logger: logger.child({ module: "policy" }),
+    });
+    // Choose JobStore implementation based on config
+    let jobs;
+    if (opts.config.retryJob.jobStore === "sqlite") {
+        jobs = new SqliteJobStore({
+            sqlitePath: opts.config.retryJob.jobSqlitePath,
+            ttlHours: opts.config.retryJob.jobTtlHours,
+            logger: logger.child({ module: "jobs-sqlite" }),
+        });
+        logger.info({ path: opts.config.retryJob.jobSqlitePath }, "jobs.sqlite_enabled");
+    }
+    else {
+        jobs = new InMemoryJobStore({
+            ttlHours: opts.config.retryJob.jobTtlHours,
+            logger: logger.child({ module: "jobs-memory" }),
+        });
+        logger.info("jobs.memory_enabled");
+    }
+    const server = new McpServer({ name: "ProxmoxMCP", version: "0.2.0" }, {
+        capabilities: { tools: {} },
+        instructions: "Proxmox MCP server: manage QEMU VMs and LXC containers, snapshots, backups, ISOs, diagnostics, and console access on a Proxmox VE cluster.",
+    });
+    const ctx = {
+        client,
+        ssh,
+        policy,
+        jobs,
+        logger,
+        config: opts.config,
+    };
+    const close = async () => {
+        client.close();
+        ssh.close();
+        if (typeof jobs.close === "function")
+            jobs.close();
+    };
+    return { server, ctx, close };
+}
+//# sourceMappingURL=server.js.map

package/dist/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAC;AAEpE,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE5C,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AACrC,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAChD,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAaxD;;;;GAIG;AACH,MAAM,UAAU,WAAW,CAAC,IAAwB;IAClD,MAAM,MAAM,GAAG,SAAS,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IAEzF,MAAM,MAAM,GAAG,IAAI,aAAa,CAAC;QAC/B,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO;QAC5B,KAAK,EAAE;YACL,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ;YAClC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW;SACzC;QACD,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC;KACnD,CAAC,CAAC;IAEH,MAAM,GAAG,GAAG,IAAI,SAAS,CAAC;QACxB,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,GAAG;QACpB,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC;KAC/C,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,IAAI,UAAU,CAAC;QAC5B,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,MAAM;QAC1B,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;KAC3C,CAAC,CAAC;IAEH,iDAAiD;IACjD,IAAI,IAAuC,CAAC;IAC5C,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC/C,IAAI,GAAG,IAAI,cAAc,CAAC;YACxB,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,aAAa;YAC9C,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW;YAC1C,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,aAAa,EAAE,CAAC;SAChD,CAAC,CAAC;QACH,MAAM,CAAC,IAAI,CACT,EAAE,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,aAAa,EAAE,EAC5C,qBAAqB,CACtB,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,IAAI,GAAG,IAAI,gBAAgB,CAAC;YAC1B,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW;YAC1C,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,MAAM,EAAE,aAAa,EAAE,CAAC;SAChD,CAAC,CAAC;QACH,MAAM,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;IACrC,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,SAAS,CAC1B,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,OAAO,EAAE,EACxC;QACE,YAAY,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE;QAC3B,YAAY,EACV,4IAA4I;KAC/I,CACF,CAAC;IAEF,MAAM,GAAG,GAAgB;QACvB,MAAM;QACN,GAAG;QACH,MAAM;QACN,IAAI;QACJ,MAAM;QACN,MAAM,EAAE,IAAI,CAAC,MAAM;KACpB,CAAC;IAEF,MAAM,KAAK,GAAG,KAAK,IAAmB,EAAE;QACtC,MAAM,CAAC,KAAK,EAAE,CAAC;QACf,GAAG,CAAC,KAAK,EAAE,CAAC;QACZ,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,UAAU;YAAE,IAAI,CAAC,KAAK,EAAE,CAAC;IACrD,CAAC,CAAC;IAEF,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;AAChC,CAAC"}

package/dist/ssh/client.d.ts

@@ -0,0 +1,32 @@
+import type { Logger } from "../log.js";
+import type { SshConfig } from "../config/types.js";
+export interface ExecResult {
+    stdout: string;
+    stderr: string;
+    exitCode: number;
+    durationMs: number;
+}
+export interface SshClientOptions {
+    ssh: SshConfig;
+    /** Function that resolves a node name to its actual SSH host (handles overrides). */
+    resolveHost?: (node: string) => string;
+    logger?: Logger;
+}
+export declare class SshClient {
+    private readonly cfg;
+    private readonly resolveHost;
+    private readonly logger;
+    constructor(opts: SshClientOptions);
+    /**
+     * Run `pct exec <vmid> -- <command>` on the host that owns the container.
+     *
+     * The command is executed via `sh -c` so shell features (pipes, redirects)
+     * work as expected.
+     */
+    pctExec(node: string, vmid: string | number, command: string): Promise<ExecResult>;
+    /**
+     * Close any persistent resources. (Currently no-op since we open per-call.)
+     */
+    close(): void;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/ssh/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/ssh/client.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,WAAW,CAAC;AACxC,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAEpD,MAAM,WAAW,UAAU;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,gBAAgB;IAC/B,GAAG,EAAE,SAAS,CAAC;IACf,qFAAqF;IACrF,WAAW,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,CAAC;IACvC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAY;IAChC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAA2B;IACvD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAqB;gBAEhC,IAAI,EAAE,gBAAgB;IAQlC;;;;;OAKG;IACG,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IA+FxF;;OAEG;IACH,KAAK,IAAI,IAAI;CAGd"}