tokrepo-mcp-server 2.1.0 → 2.2.0

package/README.md

@@ -40,6 +40,7 @@ Once connected, your AI assistant can:
 - **Get details** — full documentation, install instructions, and metadata
 - **Plan before install** — get install plan v2 with policy decisions, rollback, and verification
 - **Safe Codex install** — dry-run by default; risky assets must be staged or explicitly approved
+- **Lifecycle control** — list installed assets, uninstall managed files, and roll back install sessions
 
 ## Available Tools
 
@@ -50,6 +51,9 @@ Once connected, your AI assistant can:
 | `tokrepo_install_plan` | Get agent-native install plan v2 |
 | `tokrepo_codex_install` | Dry-run, stage, or install a Codex skill safely |
 | `tokrepo_clone_plan` | Bulk profile clone dry-run plan |
+| `tokrepo_installed` | List TokRepo-managed Codex installs |
+| `tokrepo_uninstall` | Dry-run or remove a managed Codex install |
+| `tokrepo_rollback` | Dry-run or roll back a prior Codex install session |
 | `tokrepo_install` | Get raw installable content |
 | `tokrepo_trending` | Browse popular/latest assets |
 
@@ -65,6 +69,7 @@ AI: [calls tokrepo_trending] → Shows top assets by popularity
 You: "Install that cursor rules asset"
 AI: [calls tokrepo_install_plan] → Reviews policy and actions
 AI: [calls tokrepo_codex_install with dry_run=false, confirm=true] → Writes only after explicit confirmation
+AI: [calls tokrepo_rollback with dry_run=true] → Shows exactly what would be removed before rollback
 ```
 
 ## Why TokRepo?

package/bin/server.js

@@ -19,7 +19,7 @@ const API_BASE = process.env.TOKREPO_API || 'https://api.tokrepo.com';
 const TOKREPO_URL = 'https://tokrepo.com';
 const TOKREPO_TOKEN = process.env.TOKREPO_TOKEN || '';
 const TOKREPO_CLI = process.env.TOKREPO_CLI || '';
-const SERVER_VERSION = '2.1.0';
+const SERVER_VERSION = '2.2.0';
 
 // ─── MCP Protocol (JSON-RPC over stdio) ───
 
@@ -53,6 +53,20 @@ const TOOLS = [
           description: 'Max results (default 10, max 20)',
           default: 10,
         },
+        target: {
+          type: 'string',
+          description: 'Optional agent target filter. Use codex for Codex-compatible assets.',
+          enum: ['codex'],
+        },
+        kind: {
+          type: 'string',
+          description: 'Optional asset kind filter, e.g. skill, prompt, knowledge, mcp_config, script',
+        },
+        policy: {
+          type: 'string',
+          description: 'Optional Codex install policy filter.',
+          enum: ['allow', 'confirm', 'stage_only', 'deny'],
+        },
       },
       required: ['query'],
     },
@@ -161,6 +175,76 @@ const TOOLS = [
       required: ['user'],
     },
   },
+  {
+    name: 'tokrepo_installed',
+    description: 'List Codex assets installed by TokRepo from the local install manifest, including file status and session ids.',
+    inputSchema: {
+      type: 'object',
+      properties: {},
+    },
+  },
+  {
+    name: 'tokrepo_uninstall',
+    description: 'Safely uninstall a TokRepo-managed Codex asset. Defaults to dry_run=true. To remove files, set dry_run=false and confirm=true. Local changes are blocked unless force=true.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        uuid: {
+          type: 'string',
+          description: 'Installed asset UUID, UUID prefix, or title.',
+        },
+        dry_run: {
+          type: 'boolean',
+          description: 'When true, return the removal plan without deleting files. Default true.',
+          default: true,
+        },
+        confirm: {
+          type: 'boolean',
+          description: 'Required when dry_run=false to prevent accidental deletes.',
+          default: false,
+        },
+        force: {
+          type: 'boolean',
+          description: 'Allow removal when local files changed since installation.',
+          default: false,
+        },
+      },
+      required: ['uuid'],
+    },
+  },
+  {
+    name: 'tokrepo_rollback',
+    description: 'Roll back a previous TokRepo Codex install session. Defaults to dry_run=true and last=true.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        session_id: {
+          type: 'string',
+          description: 'Session id to roll back. Omit when last=true.',
+        },
+        last: {
+          type: 'boolean',
+          description: 'Use the latest install/stage session. Default true.',
+          default: true,
+        },
+        dry_run: {
+          type: 'boolean',
+          description: 'When true, return the rollback plan without deleting files. Default true.',
+          default: true,
+        },
+        confirm: {
+          type: 'boolean',
+          description: 'Required when dry_run=false to prevent accidental deletes.',
+          default: false,
+        },
+        force: {
+          type: 'boolean',
+          description: 'Allow rollback when local files changed since installation.',
+          default: false,
+        },
+      },
+    },
+  },
   {
     name: 'tokrepo_trending',
     description: 'Get trending/popular AI assets on TokRepo. Use when user asks for recommended or popular AI tools.',
@@ -435,7 +519,22 @@ function jsonText(title, data) {
 // ─── Tool Handlers ───
 
 async function handleSearch(args) {
-  const { query, tag, limit = 10 } = args;
+  const { query, tag, limit = 10, target = '', kind = '', policy = '' } = args;
+  if (target || kind || policy) {
+    const cliArgs = ['search', query, '--json', '--page-size', String(Math.min(limit, 20))];
+    if (target) cliArgs.push('--target', target);
+    if (kind) cliArgs.push('--kind', kind);
+    if (policy) cliArgs.push('--policy', policy);
+    const { stdout, stderr } = await runTokrepoCli(cliArgs);
+    let data;
+    try {
+      data = JSON.parse(stdout);
+    } catch {
+      data = { stdout, stderr };
+    }
+    return { content: [{ type: 'text', text: jsonText('Filtered TokRepo search results', data) }] };
+  }
+
   // Normalize: hyphens/underscores/dots → spaces for better matching
   const normalized = query.replace(/[-_.]/g, ' ').replace(/\s+/g, ' ').trim();
   const params = new URLSearchParams({
@@ -551,20 +650,37 @@ async function handleCodexInstall(args) {
   const plan = await fetchInstallPlan(uuid, 'codex');
   const decision = planPolicyDecision(plan);
   if (dry_run !== false) {
+    const cliArgs = ['install', plan.asset_uuid || uuid, '--target', 'codex', '--dry-run', '--json'];
+    if (stage) cliArgs.push('--stage');
+    const { stdout, stderr } = await runTokrepoCli(cliArgs);
+    let data;
+    try {
+      data = JSON.parse(stdout);
+    } catch {
+      data = { stdout, stderr };
+    }
     return {
       content: [{
         type: 'text',
-        text: jsonText(`Dry run only. Policy: ${decision}. Set dry_run=false and confirm=true to write files.`, plan),
+        text: jsonText(`Dry run only. Policy: ${decision}. Set dry_run=false and confirm=true to write files.`, data),
       }],
     };
   }
 
   if (!confirm) {
+    const cliArgs = ['install', plan.asset_uuid || uuid, '--target', 'codex', '--dry-run', '--json'];
+    const { stdout, stderr } = await runTokrepoCli(cliArgs);
+    let data;
+    try {
+      data = JSON.parse(stdout);
+    } catch {
+      data = { stdout, stderr };
+    }
     return {
       isError: true,
       content: [{
         type: 'text',
-        text: jsonText('Refused to write files because confirm=true was not provided.', plan),
+        text: jsonText('Refused to write files because confirm=true was not provided. Dry-run plan follows.', data),
       }],
     };
   }
@@ -612,6 +728,81 @@ async function handleClonePlan(args) {
   return { content: [{ type: 'text', text: jsonText('Bulk Codex clone dry-run plan', data) }] };
 }
 
+async function handleInstalled() {
+  const { stdout, stderr } = await runTokrepoCli(['installed', '--target', 'codex', '--json']);
+  let data;
+  try {
+    data = JSON.parse(stdout);
+  } catch {
+    data = { stdout, stderr };
+  }
+  return { content: [{ type: 'text', text: jsonText('TokRepo Codex installed assets', data) }] };
+}
+
+async function handleUninstall(args) {
+  const { uuid, dry_run = true, confirm = false, force = false } = args;
+  const cliArgs = ['uninstall', uuid, '--target', 'codex', '--json'];
+  if (dry_run !== false) cliArgs.push('--dry-run');
+  if (force) cliArgs.push('--force');
+
+  if (dry_run === false && !confirm) {
+    cliArgs.push('--dry-run');
+    const { stdout, stderr } = await runTokrepoCli(cliArgs);
+    let data;
+    try {
+      data = JSON.parse(stdout);
+    } catch {
+      data = { stdout, stderr };
+    }
+    return {
+      isError: true,
+      content: [{ type: 'text', text: jsonText('Refused to uninstall because confirm=true was not provided. Dry-run plan follows.', data) }],
+    };
+  }
+
+  const { stdout, stderr } = await runTokrepoCli(cliArgs);
+  let data;
+  try {
+    data = JSON.parse(stdout);
+  } catch {
+    data = { stdout, stderr };
+  }
+  return { content: [{ type: 'text', text: jsonText(dry_run === false ? 'TokRepo Codex uninstall result' : 'TokRepo Codex uninstall dry-run', data) }] };
+}
+
+async function handleRollback(args) {
+  const { session_id = '', last = true, dry_run = true, confirm = false, force = false } = args;
+  const cliArgs = ['rollback', '--target', 'codex', '--json'];
+  if (session_id) cliArgs.push(session_id);
+  else if (last !== false) cliArgs.push('--last');
+  if (dry_run !== false) cliArgs.push('--dry-run');
+  if (force) cliArgs.push('--force');
+
+  if (dry_run === false && !confirm) {
+    cliArgs.push('--dry-run');
+    const { stdout, stderr } = await runTokrepoCli(cliArgs);
+    let data;
+    try {
+      data = JSON.parse(stdout);
+    } catch {
+      data = { stdout, stderr };
+    }
+    return {
+      isError: true,
+      content: [{ type: 'text', text: jsonText('Refused to roll back because confirm=true was not provided. Dry-run plan follows.', data) }],
+    };
+  }
+
+  const { stdout, stderr } = await runTokrepoCli(cliArgs);
+  let data;
+  try {
+    data = JSON.parse(stdout);
+  } catch {
+    data = { stdout, stderr };
+  }
+  return { content: [{ type: 'text', text: jsonText(dry_run === false ? 'TokRepo Codex rollback result' : 'TokRepo Codex rollback dry-run', data) }] };
+}
+
 async function handleTrending(args) {
   const { sort = 'popular', limit = 10 } = args;
   const params = new URLSearchParams({
@@ -763,6 +954,9 @@ async function handleRequest(msg) {
           case 'tokrepo_install_plan': result = await handleInstallPlan(args || {}); break;
           case 'tokrepo_codex_install': result = await handleCodexInstall(args || {}); break;
           case 'tokrepo_clone_plan': result = await handleClonePlan(args || {}); break;
+          case 'tokrepo_installed': result = await handleInstalled(args || {}); break;
+          case 'tokrepo_uninstall': result = await handleUninstall(args || {}); break;
+          case 'tokrepo_rollback': result = await handleRollback(args || {}); break;
           case 'tokrepo_trending': result = await handleTrending(args || {}); break;
           case 'tokrepo_push': result = await handlePush(args || {}); break;
           case 'tokrepo_status': result = await handleStatus(args || {}); break;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "tokrepo-mcp-server",
-  "version": "2.1.0",
+  "version": "2.2.0",
   "description": "Agent-native MCP server for TokRepo — search, plan, safely install, and push AI assets from MCP clients.",
   "mcpName": "io.github.tokrepo/mcp-server",
   "bin": {