npm - ssh-mcp-devops - Versions diffs - 2.0.0 - Mend

ssh-mcp-devops 2.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (11) hide show

package/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+MIT License
+Copyright (c) 2026 SSH-MCP Team
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md ADDED Viewed

@@ -0,0 +1,205 @@
+# SSH-MCP Server - AI 运维工具
+基于 Node.js 实现的 SSH MCP 服务器，支持 AI 自动化运维操作。
+## 功能特性
+✅ SSH 远程连接管理
+✅ 命令执行（带安全检查）
+✅ 危险操作二次确认
+✅ 文件上传/下载
+✅ 自动化项目部署
+✅ 操作审计日志
+## 快速开始
+### 自动配置（推荐）
+运行配置向导：
+**Windows:**
+```bash
+setup.bat
+```
+**Linux/Mac:**
+```bash
+chmod +x setup.sh
+./setup.sh
+```
+### 手动配置
+详细步骤请查看 [QUICKSTART.md](QUICKSTART.md) 或 [SETUP.md](SETUP.md)
+### 1. 安装依赖
+```bash
+npm install
+```
+### 2. 配置 MCP
+在 Kiro 中配置 MCP 服务器，编辑 `.kiro/settings/mcp.json`：
+```json
+{
+  "mcpServers": {
+    "ssh-mcp": {
+      "command": "node",
+      "args": ["index.js"],
+      "disabled": false,
+      "autoApprove": ["ssh_audit_log"],
+      "env": {
+        "SSH_HOST": "192.168.1.100",
+        "SSH_PORT": "22",
+        "SSH_USERNAME": "ubuntu",
+        "SSH_PASSWORD": "your-password",
+        "SSH_PRIVATE_KEY_PATH": ""
+      }
+    }
+  }
+}
+```
+**配置说明：**
+- `SSH_HOST`: SSH 服务器地址（必填）
+- `SSH_PORT`: SSH 端口（默认 22）
+- `SSH_USERNAME`: 登录用户名（必填）
+- `SSH_PASSWORD`: 登录密码（密码认证时使用）
+- `SSH_PRIVATE_KEY_PATH`: 私钥文件路径（密钥认证时使用，如 `~/.ssh/id_rsa`）
+**认证方式：**
+- 密码认证：填写 `SSH_PASSWORD`
+- 密钥认证：填写 `SSH_PRIVATE_KEY_PATH`（推荐，更安全）
+配置完成后，MCP 服务器启动时会自动连接到指定的 SSH 服务器。
+### 3. 使用示例
+#### 连接到服务器
+```
+请连接到我的服务器：
+- 主机: 192.168.1.100
+- 用户名: ubuntu
+- 密码: mypassword
+```
+#### 执行命令
+```
+在服务器上执行: ls -la /var/www
+```
+#### 部署项目
+```
+帮我部署项目：
+- 本地路径: ./my-app
+- 远程路径: /var/www/my-app
+- 部署脚本: npm install && npm run build && pm2 restart my-app
+```
+## 工具列表
+### ssh_connect
+连接到远程 SSH 服务器
+参数：
+- `host`: 服务器地址
+- `port`: SSH 端口（默认 22）
+- `username`: 用户名
+- `password`: 密码（可选）
+- `privateKey`: 私钥路径（可选）
+### ssh_exec
+执行远程命令（危险命令需要确认）
+参数：
+- `command`: 要执行的命令
+- `confirm`: 确认执行危险操作（默认 false）
+### ssh_upload
+上传文件到远程服务器
+参数：
+- `localPath`: 本地文件路径
+- `remotePath`: 远程目标路径
+### ssh_download
+从远程服务器下载文件
+参数：
+- `remotePath`: 远程文件路径
+- `localPath`: 本地保存路径
+### ssh_deploy
+自动部署项目
+参数：
+- `projectPath`: 本地项目路径
+- `remotePath`: 远程部署路径
+- `deployScript`: 部署脚本（默认: npm install && npm run build && pm2 restart app）
+### ssh_audit_log
+查看操作审计日志
+参数：
+- `limit`: 返回日志条数（默认 50）
+## 安全特性
+### 危险命令检测
+系统会自动检测以下危险操作：
+- `rm -rf /` - 删除根目录
+- `rm -rf` - 强制递归删除
+- `dd if=...of=/dev/...` - 磁盘写入
+- `mkfs` - 格式化文件系统
+- `shutdown/reboot` - 系统关机/重启
+- `iptables -F` - 清空防火墙规则
+- 等等...
+危险命令需要设置 `confirm: true` 才能执行。
+### 操作审计
+所有操作都会记录到 `ssh-mcp-audit.log` 文件中，包括：
+- 时间戳
+- 操作类型
+- 目标对象
+- 执行状态
+- 风险级别
+## 开发
+```bash
+# 开发模式（自动重启）
+npm run dev
+# 生产模式
+npm start
+```
+## 许可证
+MIT
+---
+## 📚 完整文档
+- [QUICKSTART.md](QUICKSTART.md) - 快速开始指南
+- [SETUP.md](SETUP.md) - 详细配置指南
+- [example-usage.md](example-usage.md) - 使用示例
+- [PROJECT-STRUCTURE.md](PROJECT-STRUCTURE.md) - 项目结构说明
+- [CHECKLIST.md](CHECKLIST.md) - 配置检查清单
+## 🤝 贡献
+欢迎提交 Issue 和 Pull Request！
+## 📧 支持
+如有问题，请查看文档或提交 Issue。

package/audit-logger.js ADDED Viewed

@@ -0,0 +1,60 @@
+import fs from 'fs/promises';
+import path from 'path';
+export class AuditLogger {
+  constructor() {
+    this.logFile = 'ssh-mcp-audit.log';
+    this.logs = [];
+    this.loadLogs();
+  }
+  async loadLogs() {
+    try {
+      const data = await fs.readFile(this.logFile, 'utf-8');
+      this.logs = data.split('\n').filter(Boolean).map(line => JSON.parse(line));
+    } catch (error) {
+      // 文件不存在，创建新的
+      this.logs = [];
+    }
+  }
+  log(action, target, status, metadata = {}) {
+    const entry = {
+      timestamp: new Date().toISOString(),
+      action,
+      target,
+      status,
+      metadata,
+    };
+    this.logs.push(entry);
+    // 异步写入文件
+    fs.appendFile(this.logFile, JSON.stringify(entry) + '\n').catch(console.error);
+    // 保持最近1000条记录
+    if (this.logs.length > 1000) {
+      this.logs = this.logs.slice(-1000);
+    }
+    return entry;
+  }
+  getLogs(limit = 50) {
+    return this.logs.slice(-limit).reverse();
+  }
+  getLogsByAction(action, limit = 50) {
+    return this.logs
+      .filter(log => log.action === action)
+      .slice(-limit)
+      .reverse();
+  }
+  getLogsByStatus(status, limit = 50) {
+    return this.logs
+      .filter(log => log.status === status)
+      .slice(-limit)
+      .reverse();
+  }
+}

package/docker-manager.js ADDED Viewed

@@ -0,0 +1,116 @@
+export class DockerManager {
+  constructor(sshManager) {
+    this.ssh = sshManager;
+  }
+  async listContainers(all = true) {
+    const flag = all ? '-a' : '';
+    const output = await this.ssh.execCommand(`docker ps ${flag} --format "{{.ID}}|{{.Names}}|{{.Image}}|{{.Status}}|{{.Ports}}"`);
+    const containers = output.trim().split('\n').filter(Boolean).map(line => {
+      const [id, name, image, status, ports] = line.split('|');
+      return { id, name, image, status, ports };
+    });
+    return containers;
+  }
+  async listImages() {
+    const output = await this.ssh.execCommand('docker images --format "{{.Repository}}:{{.Tag}}|{{.ID}}|{{.Size}}"');
+    const images = output.trim().split('\n').filter(Boolean).map(line => {
+      const [name, id, size] = line.split('|');
+      return { name, id, size };
+    });
+    return images;
+  }
+  async startContainer(nameOrId) {
+    const output = await this.ssh.execCommand(`docker start ${nameOrId}`);
+    return `✅ 容器已启动: ${nameOrId}\n${output}`;
+  }
+  async stopContainer(nameOrId) {
+    const output = await this.ssh.execCommand(`docker stop ${nameOrId}`);
+    return `✅ 容器已停止: ${nameOrId}\n${output}`;
+  }
+  async restartContainer(nameOrId) {
+    const output = await this.ssh.execCommand(`docker restart ${nameOrId}`);
+    return `✅ 容器已重启: ${nameOrId}\n${output}`;
+  }
+  async removeContainer(nameOrId, force = false) {
+    const flag = force ? '-f' : '';
+    const output = await this.ssh.execCommand(`docker rm ${flag} ${nameOrId}`);
+    return `✅ 容器已删除: ${nameOrId}\n${output}`;
+  }
+  async getContainerLogs(nameOrId, lines = 100) {
+    const output = await this.ssh.execCommand(`docker logs --tail ${lines} ${nameOrId}`);
+    return output;
+  }
+  async getContainerStats(nameOrId) {
+    const output = await this.ssh.execCommand(`docker stats ${nameOrId} --no-stream --format "{{.Container}}|{{.CPUPerc}}|{{.MemUsage}}|{{.NetIO}}|{{.BlockIO}}"`);
+    const [container, cpu, memory, network, blockIO] = output.trim().split('|');
+    return { container, cpu, memory, network, blockIO };
+  }
+  async inspectContainer(nameOrId) {
+    const output = await this.ssh.execCommand(`docker inspect ${nameOrId}`);
+    return JSON.parse(output);
+  }
+  async execInContainer(nameOrId, command) {
+    const output = await this.ssh.execCommand(`docker exec ${nameOrId} ${command}`);
+    return output;
+  }
+  async pullImage(imageName) {
+    const output = await this.ssh.execCommand(`docker pull ${imageName}`, { timeout: 600000 });
+    return `✅ 镜像拉取完成: ${imageName}\n${output}`;
+  }
+  async removeImage(imageNameOrId, force = false) {
+    const flag = force ? '-f' : '';
+    const output = await this.ssh.execCommand(`docker rmi ${flag} ${imageNameOrId}`);
+    return `✅ 镜像已删除: ${imageNameOrId}\n${output}`;
+  }
+  async pruneSystem() {
+    const output = await this.ssh.execCommand('docker system prune -af --volumes');
+    return `✅ 系统清理完成\n${output}`;
+  }
+  async getDockerInfo() {
+    const output = await this.ssh.execCommand('docker info --format "{{.ServerVersion}}|{{.Containers}}|{{.ContainersRunning}}|{{.Images}}|{{.Driver}}"');
+    const [version, containers, running, images, driver] = output.trim().split('|');
+    return {
+      version,
+      totalContainers: containers,
+      runningContainers: running,
+      totalImages: images,
+      storageDriver: driver,
+    };
+  }
+  async composeUp(composePath, detached = true) {
+    const flag = detached ? '-d' : '';
+    const output = await this.ssh.execCommand(`cd ${composePath} && docker-compose up ${flag}`, { timeout: 600000 });
+    return `✅ Docker Compose 启动完成\n${output}`;
+  }
+  async composeDown(composePath) {
+    const output = await this.ssh.execCommand(`cd ${composePath} && docker-compose down`);
+    return `✅ Docker Compose 停止完成\n${output}`;
+  }
+  async composeRestart(composePath) {
+    const output = await this.ssh.execCommand(`cd ${composePath} && docker-compose restart`);
+    return `✅ Docker Compose 重启完成\n${output}`;
+  }
+}