visus-mcp 0.6.1 → 0.8.0

package/.claude/settings.local.json

@@ -28,7 +28,39 @@
       "Bash(git remote:*)",
       "Bash(brew install:*)",
       "Bash(mcp-publisher:*)",
-      "Bash(npm version:*)"
+      "Bash(npm version:*)",
+      "Bash(aws lambda get-function:*)",
+      "Bash(pkill:*)",
+      "Bash(docker info:*)",
+      "Bash(npx esbuild:*)",
+      "Bash(./node_modules/.bin/esbuild:*)",
+      "Bash(node_modules/.bin/esbuild:*)",
+      "Bash(zip:*)",
+      "Bash(aws lambda update-function-code:*)",
+      "Bash(aws lambda get-function-configuration:*)",
+      "Bash(aws sts get-caller-identity:*)",
+      "Bash(aws cognito-idp list-users:*)",
+      "Bash(aws cognito-idp admin-create-user:*)",
+      "Bash(aws cognito-idp admin-set-user-password:*)",
+      "Bash(aws cognito-idp initiate-auth:*)",
+      "Bash(TOKEN=\"eyJraWQiOiJ1eGNRZmJWbWx4WFBaSzdwYisxck5mcmxaaXBHZE5Wekw0WWFmMis5c25ZPSIsImFsZyI6IlJTMjU2In0.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.XxRcRpHWHNht0aVJMr2MJbDVS1fGBH0YchOjaxaYYBJFbptSRf_J_GT2q1EJLAFm9Ey1FlJvQF_oBpOKRd37DiYwbJZxltmAtlF-7hfiNQwfHnZ6T7oFERQx353RyZL3DHrHE2s6BbDFkJb69xwjuzn4ijMVrsZ_ny3qxHC02Fr37oumwbP_cfey3wjjjmONedUQwX6o0ajUK_Aafk20O-tWFDDUDk1Ua_TdPct0wOztYHcGhxE1Yo_g_mykwKLtI-ZSWiBaGj-GTGidgQ_RCJPKrQPK73xQAePvJMkB6SKlJg5tfnvnB1S_Hnsyg1bR3laZg1M-bP_3eTRAl6le5g\")",
+      "Bash(aws apigateway:*)",
+      "Bash(aws logs describe-log-groups:*)",
+      "Bash(python3:*)",
+      "Bash(echo:*)",
+      "Bash(ID_TOKEN=\"eyJraWQiOiJ1eGNRZmJWbWx4WFBaSzdwYisxck5mcmxaaXBHZE5Wekw0WWFmMis5c25ZPSIsImFsZyI6IlJTMjU2In0.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.ljsffJWON0SykNe00nf1P1X0gtOLd4ccR4EmhRVFucOFulyEpB5Uyjbt3npuTah6liU2ZBTSWjKkdS0olRGFlLipzUMqDPqzINwwjkOMVQK5bf0l3f31FfdeQ_lKiYHKXbEDWJH8TRIvVy3OSl8I5UALn2swXyaWnLOO2mM6gcfYTr7Gt0JhfDohhKnvbr6kbGfCXu8kvp-uPGD4bKc7blmqwwKjaKQ49BukfhF_aC6fuiqsVydbYTO_fWbxTWITD39ULszaNbrGSBr0Q8ljWHC-t3qB9xlbXGOA3wbY13OaIc4P1kvzvQn6atP1FzZ5TSUb-DuDrS2lkGI-jnWjEA\")",
+      "Bash(/tmp/token.txt)",
+      "Bash(chmod:*)",
+      "Bash(/tmp/test-auth.sh)",
+      "Bash(/tmp/test-google.sh:*)",
+      "Bash(git reset:*)",
+      "Bash(npx visus-mcp:*)",
+      "WebSearch",
+      "WebFetch(domain:glama.ai)",
+      "Bash(unzip:*)",
+      "Bash(mkdir:*)",
+      "Bash(comm -13:*)",
+      "Bash(comm -23:*)"
     ],
     "deny": [],
     "ask": []

package/.env.status

@@ -0,0 +1,7 @@
+# Sensitive infrastructure values for STATUS.md
+# This file is gitignored and contains the real values that are replaced with placeholders in STATUS.md
+
+AWS_ACCOUNT_ID=080746528746
+API_ENDPOINT=https://wyomy29zd7.execute-api.us-east-1.amazonaws.com
+LAMBDA_FUNCTION_NAME=VisusRendererStack-dev-RendererFunction3AA1789A-554zTOoz3FVg
+MAINTAINER_EMAIL=lowmls@gmail.com

package/CHANGELOG.md

@@ -0,0 +1,65 @@
+# Changelog
+
+All notable changes to this project will be documented in this file.
+
+The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
+and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+
+## [Unreleased]
+
+### Added
+
+- **PDF Content Handler** (`src/content-handlers/pdf-handler.ts`)
+  - Handles `application/pdf` content type
+  - Extracts text and metadata (title, author, subject, keywords, creator, producer) from PDF files
+  - Passes all extracted text through the 43-pattern injection detection pipeline
+  - Returns sanitized plain text, discarding binary objects
+  - Returns structured error (`PDF_PARSE_FAILED`) for corrupt or encrypted PDFs
+
+- **JSON Content Handler** (`src/content-handlers/json-handler.ts`)
+  - Handles `application/json` and `text/json` content types
+  - Recursively traverses JSON object tree and sanitizes all string values
+  - Preserves original JSON structure in output
+  - Handles arrays, nested objects, and mixed-type arrays correctly
+  - Falls back to plain text sanitization pipeline if JSON parsing fails
+  - Tracks and reports count of sanitized fields per request
+
+- **SVG Content Handler** (`src/content-handlers/svg-handler.ts`)
+  - Handles `image/svg+xml` content type
+  - Strips dangerous elements unconditionally:
+    - `<script>` elements and all children
+    - `<use>` elements with external `href`/`xlink:href` attributes
+    - `<foreignObject>` elements and all children
+    - All event handler attributes (onload, onclick, onerror, etc.)
+    - `<set>` and `<animate>` elements referencing external resources
+    - `data:` URI attributes
+  - Extracts and scans text content (title, desc, text elements) for injection patterns
+  - Preserves safe presentation attributes (fill, stroke, transform, viewBox, etc.)
+  - Returns structured error (`SVG_PARSE_FAILED`) if XML parsing fails
+
+- **Content Type Routing** (`src/content-handlers/index.ts`)
+  - Central routing system for content-type specific handlers
+  - Normalizes MIME types (strips parameters, lowercases)
+  - Routes content to appropriate handler based on MIME type
+  - Returns structured rejection (`UNSUPPORTED_CONTENT_TYPE`) for unsupported types
+  - No unhandled exceptions - all errors return structured responses
+
+- **Updated `visus_fetch` Tool** (`src/tools/fetch.ts`)
+  - Integrated content handler routing for PDF, JSON, and SVG
+  - Checks Content-Type header and routes to specialized handlers before existing HTML/XML flow
+  - Maintains backward compatibility with existing HTML/XML/RSS conversion logic
+
+- **Comprehensive Test Suite** (`tests/content-handlers.test.ts`)
+  - 20 test cases covering all three handlers
+  - Tests for clean content (no false positives)
+  - Tests for injection detection and sanitization
+  - Tests for error handling (corrupt/invalid content)
+  - Tests for edge cases (nested structures, arrays, malformed input)
+
+### Changed
+
+- Added `pdf-parse` dependency (v2.4.5) for PDF text extraction
+
+## [0.6.2] - 2026-03-14
+
+Previous releases documented in git history.

package/CLAUDE.md

@@ -2,6 +2,8 @@
 
 This file provides guidance to Claude Code (claude.ai/code) when working with code in this repository.
 
+**Repository:** https://github.com/visus-mcp/visus-mcp
+
 ## Project Overview
 
 **Visus** (`visus-mcp`) is an MCP tool that provides Claude with secure, sanitized access to web pages. Unlike other MCP browser tools (Firecrawl, Playwright MCP, ScrapeGraphAI), Visus runs ALL fetched content through an injection sanitization pipeline before the LLM reads it.
@@ -71,6 +73,9 @@ npm publish --dry-run # Validate package before publishing
 npx visus-mcp         # Start MCP server
 ```
 
+**IMPORTANT: On every npm release, keep `server.json` version in sync with `package.json` version.**
+The MCP registry requires that the version field in `server.json` matches the published npm package version.
+
 ## Coding Standards (Lateos Conventions)
 
 - **TypeScript strict mode** - No `any` types allowed
@@ -103,6 +108,8 @@ All tests must pass before Phase 1 is complete.
 - 43 injection payloads (one per pattern category)
 - 10 clean pages/content samples (should produce no detections)
 
+---
+
 ## Standard Troubleshooting Protocol
 
 Whenever you encounter an error, blocked deployment, or multi-step recovery task, you MUST generate a structured troubleshooting log automatically. This is not optional — it applies to every build, fix, and diagnostic task in this project.
@@ -118,6 +125,62 @@ Save to project root. Examples:
 - `TROUBLESHOOT-LAMBDA-20260314-0900.md`
 - `TROUBLESHOOT-SLIM-20260314-0629.md`
 
+### Log Structure
+
+Every troubleshooting log MUST follow this three-phase structure:
+
+#### Phase 1: Investigation (read-only)
+No changes to code or infrastructure. Gather facts, reproduce the error, read logs.
+Only advance to Phase 2 after root cause is confirmed or a clear hypothesis is formed.
+
+#### Phase 2: Fix Plan
+Write out the proposed fix and alternatives considered. Do NOT execute yet.
+If root cause shifts during Phase 2, return to Phase 1.
+
+#### Phase 3: Execution
+Implement the fix. Log every action. Update the SUMMARY at the end.
+
+---
+
+### Stop Conditions (mandatory — check before every action)
+
+If any of the following are true, **STOP immediately**, log the blocker, and wait for user input:
+
+| Condition | Action |
+|-----------|--------|
+| Deployment or build hangs >10 minutes | Kill process, document, ask user for direction |
+| Same error appears >2 times in a row | Stop retrying, propose alternative approach |
+| Root cause shifts away from original task | Re-confirm scope with user before continuing |
+| A tool or service is unavailable (Docker, AWS, etc.) | Document and present options — do not loop |
+| Success criteria cannot be verified | Stop and ask user how to validate |
+
+---
+
+### Environment Pre-flight
+
+Run this checklist before ANY deployment or infrastructure task. Log each result.
+
+```bash
+# AWS credentials
+aws sts get-caller-identity
+
+# Docker health (required for CDK bundling)
+docker info
+
+# Disk space (ENOSPC will cause silent failures)
+df -h /
+
+# CDK version
+npx cdk --version
+
+# Node/npm
+node --version && npm --version
+```
+
+If Docker is unavailable or disk space is low, use the manual Lambda deploy path (see Lambda Deployment below) rather than attempting CDK.
+
+---
+
 ### Entry Format (append after EVERY action)
 
 ```markdown
@@ -130,6 +193,24 @@ Save to project root. Examples:
 **Status:** ✅ Success / ❌ Failed / ⚠️ Partial
 ```
 
+### Ruled Out (maintain throughout session)
+
+Append to this section whenever a suspected cause is eliminated. Prevents re-investigation.
+
+```markdown
+## Ruled Out
+- ❌ <Component>: <one-line reason> — confirmed <date/time>
+```
+
+Example:
+```markdown
+## Ruled Out
+- ❌ Cognito JWT: Auth correctly returns 401 on unauthenticated requests — not the issue
+- ❌ API Gateway routing: Routes confirmed correct in stack outputs — not the issue
+```
+
+---
+
 ### Rules
 
 1. **Log BEFORE executing, not after** — write Goal and Reasoning first
@@ -137,6 +218,25 @@ Save to project root. Examples:
 3. **On failure:** log the full error, state your revised reasoning, attempt one alternative, log that too
 4. **Do not summarize or clean up errors** — paste raw output verbatim
 5. **End every log with a SUMMARY section:** root cause, resolution, lessons learned, and open issues
+6. **Populate "Ruled Out" in real time** — do not re-investigate eliminated causes
+7. **Complete Phase 1 fully before making any changes** — no exceptions
+
+---
+
+### CLAUDE.md Updates Required
+
+At the end of every troubleshooting session, before closing, check whether any findings should be promoted to this file. Add a section to the troubleshoot doc:
+
+```markdown
+## CLAUDE.md Updates Required
+- [ ] <Finding that should become a permanent convention>
+- [ ] <New known error to add to the registry>
+- [ ] <New deployment step or warning>
+```
+
+Then apply those updates to CLAUDE.md as the final step of the session.
+
+---
 
 ### Purpose
 
@@ -152,6 +252,8 @@ Goal: Restore MCP handler Lambda with proper dependency packaging
 
 ---
 
+## Phase 1: Investigation
+
 ## [06:02:18] Step 1 - Locate MCP Handler Source
 
 **Goal:** Find the mcp_handler.py source file in the project
@@ -163,14 +265,109 @@ Goal: Restore MCP handler Lambda with proper dependency packaging
 
 ---
 
+## Ruled Out
+- ❌ IAM permissions: Lambda execution role has correct policies — not the issue
+
+---
+
+## Phase 2: Fix Plan
+...
+
+## Phase 3: Execution
+...
+
+---
+
 # RECOVERY SUMMARY
 
 Final Status: ✅ RESTORED
 Root Cause: Lambda package missing runtime dependencies
 Resolution: Installed aws_lambda_powertools + aws_xray_sdk
 Lessons Learned: Always verify dependencies in Lambda packages
+
+## CLAUDE.md Updates Required
+- [ ] Add aws_lambda_powertools to standard Lambda dependency checklist
+```
+
+---
+
+## Known Errors Registry
+
+When a root cause is confirmed, add it here. Future sessions check this list first before investigating.
+
+| Error | Root Cause | Fix | Date Confirmed |
+|-------|-----------|-----|----------------|
+| `ERR_MODULE_NOT_FOUND: @modelcontextprotocol/sdk` in Lambda | `index.js` (MCP stdio server) included in Lambda bundle via `package.json` `"main"` field; SDK not bundled | Add `@modelcontextprotocol/sdk` to `externalModules` in `infrastructure/stack.ts` | 2026-03-24 |
+| CDK `docker buildx` hangs indefinitely | Docker resource contention or disk pressure on Apple Silicon Mac | Use manual Lambda deploy script (see below); fix Docker separately | 2026-03-24 |
+| `ENOSPC` on Claude Code startup | Mac disk full; `~/.claude/debug/` write fails | Free disk space; `rm -rf ~/.claude/debug/`; restart | 2026-03-24 |
+| 401 Unauthorized after `cdk deploy` | CDK does NOT automatically redeploy API Gateway stages when Lambda code or authorizer config changes | After every `cdk deploy`, run: `aws apigateway create-deployment --rest-api-id <api-id> --stage-name <stage>` | 2026-03-24 |
+| `unable to get local issuer certificate` in Lambda | undici HTTP client in AWS Lambda Node.js 20 runtime lacks proper CA certificate configuration | Replace undici with Node.js native `fetch()` API (available in Node 18+) which has proper CA handling in Lambda | 2026-03-24 |
+
+---
+
+## Lambda Deployment
+
+### Bundling Conventions
+
+**CRITICAL: Always use `--format=cjs` for Lambda bundles.**
+AWS SDK v3 uses dynamic `require()` internally. ESM output from esbuild will fail at Lambda runtime with `ERR_REQUIRE_ESM` or similar. CommonJS is the correct format for all Lambda deployments.
+
+**Always externalize these packages:**
+- `playwright-core` — added via Lambda layer
+- `@sparticuz/chromium` — added via Lambda layer
+- `@modelcontextprotocol/sdk` — only needed for stdio mode, not Lambda
+
+**Entry point must always be `src/lambda-handler.ts`, NOT `src/index.ts`.**
+`index.ts` is the MCP stdio server and imports packages that must not be in the Lambda bundle.
+
+### Manual Deploy Script (use when CDK/Docker is unavailable)
+
+```bash
+#!/bin/bash
+# scripts/deploy-lambda.sh
+# Use this when CDK Docker bundling is blocked
+
+set -e
+
+echo "Building Lambda bundle..."
+npm run build
+
+npx esbuild src/lambda-handler.ts \
+  --bundle \
+  --platform=node \
+  --target=node20 \
+  --format=cjs \
+  --outfile=dist/lambda-bundle.js \
+  --external:playwright-core \
+  --external:@sparticuz/chromium \
+  --external:@modelcontextprotocol/sdk \
+  --sourcemap
+
+echo "Zipping..."
+cd dist && zip -r ../lambda.zip lambda-bundle.js lambda-bundle.js.map && cd ..
+
+echo "Getting function name..."
+FUNCTION_NAME=$(aws cloudformation describe-stacks \
+  --stack-name VisusStack-dev \
+  --query "Stacks[0].Outputs[?OutputKey=='LambdaFunctionName'].OutputValue" \
+  --output text)
+
+echo "Deploying to Lambda: $FUNCTION_NAME"
+aws lambda update-function-code \
+  --function-name "$FUNCTION_NAME" \
+  --zip-file fileb://lambda.zip
+
+echo "Waiting for update..."
+aws lambda wait function-updated --function-name "$FUNCTION_NAME"
+
+echo "Testing health endpoint..."
+curl -s https://3lsush2fx0.execute-api.us-east-1.amazonaws.com/dev/health | jq .
+
+echo "Done. Check CloudWatch for ERR_MODULE_NOT_FOUND — should be gone."
 ```
 
+After using manual deploy, run a full `cdk deploy` when Docker is restored to keep CloudFormation state in sync with live infrastructure.
+
 ---
 
 ## CRITICAL: Security Rules — Never Violate These
@@ -240,6 +437,8 @@ lateos-visus/
 │   ├── browser/
 │   │   └── playwright-renderer.ts  # Headless Chromium page fetcher
 │   └── types.ts                    # Shared TypeScript interfaces
+├── scripts/
+│   └── deploy-lambda.sh            # Manual Lambda deploy (bypasses CDK/Docker)
 └── tests/
     ├── sanitizer.test.ts
     ├── fetch-tool.test.ts
@@ -322,3 +521,4 @@ Both README.md and SECURITY.md must lead with the security narrative, not featur
 - PII redaction types and format
 - Honest limitations (novel obfuscation, AI-generated benign-looking instructions)
 - Vulnerability reporting: security@lateos.ai or GitHub Security tab
+- remember that my gitHub repo is located at https://github.com/visus-mcp/visus-mcp

package/README.md

@@ -1,7 +1,7 @@
 # Visus — Secure Web Access for Claude
 
 [![npm version](https://img.shields.io/npm/v/visus-mcp?color=crimson&label=npm)](https://www.npmjs.com/package/visus-mcp)
-[![tests](https://img.shields.io/badge/tests-246%20passing-brightgreen)](https://github.com/visus-mcp/visus-mcp)
+[![tests](https://img.shields.io/badge/tests-294%20passing-brightgreen)](https://github.com/visus-mcp/visus-mcp)
 [![tools](https://img.shields.io/badge/MCP%20tools-4-blue)](https://github.com/visus-mcp/visus-mcp)
 [![mcp](https://img.shields.io/badge/MCP-compatible-brightgreen)](https://modelcontextprotocol.io)
 [![license](https://img.shields.io/badge/license-MIT-blue)](https://github.com/visus-mcp/visus-mcp/blob/main/LICENSE)
@@ -47,17 +47,23 @@ visus-mcp fetches the same page and delivers:
 ## How Visus Works
 
 ```
-URL → Playwright Render → Format Detection (HTML/JSON/XML/RSS)
-→ Reader Extraction (optional) → Injection Sanitizer (43 patterns)
-→ PII Redactor → Token Ceiling (24k cap) → Clean Content → Claude
+URL → Playwright Render → Content-Type Detection
+→ Specialized Handlers (PDF/JSON/SVG) OR HTML Pipeline
+→ Injection Sanitizer (43 patterns) → PII Redactor
+→ Token Ceiling (24k cap) → Clean Content → Claude
 ```
 
 ### Security Pipeline
 
 1. **Browser Rendering**: Headless Chromium via Playwright fetches the page
-2. **Injection Detection**: 43 pattern categories scan for prompt injection attempts
-3. **PII Redaction**: Emails, phone numbers, SSNs, credit cards, and IP addresses are redacted
-4. **Clean Delivery**: Stripped, formatted, token-efficient content reaches your LLM — with a compliance report attached if anything was flagged
+2. **Content-Type Routing**: Detects MIME type and routes to specialized handlers:
+   - **PDF** (`application/pdf`) — Extracts text and metadata, sanitizes all fields
+   - **JSON** (`application/json`) — Recursively sanitizes all string values, preserves structure
+   - **SVG** (`image/svg+xml`) — Strips dangerous elements (`<script>`, event handlers), scans text
+   - **HTML/XML/RSS** — Uses existing conversion and reader extraction pipeline
+3. **Injection Detection**: 43 pattern categories scan for prompt injection attempts
+4. **PII Redaction**: Emails, phone numbers, SSNs, credit cards, and IP addresses are redacted
+5. **Clean Delivery**: Stripped, formatted, token-efficient content reaches your LLM — with a compliance report attached if anything was flagged
 
 **This pipeline runs before content enters Claude's context window** — reducing token consumption, keeping PII out of conversation history, and generating audit logs when injection patterns are detected.
 
@@ -848,6 +854,8 @@ Copyright (c) 2026 Lateos (Leo Chongolnee)
 
 Built by [Leo Chongolnee](https://github.com/leochong) (@leochong) as part of the Lateos platform.
 
+**Repository:** https://github.com/visus-mcp/visus-mcp
+
 Inspired by the MCP ecosystem and informed by CISSP/CEH security principles.
 
 ---

package/SECURITY.md

@@ -2,6 +2,8 @@
 
 This document describes the threat model, security guarantees, and honest limitations of Visus.
 
+**Repository:** https://github.com/visus-mcp/visus-mcp
+
 ---
 
 ## Threat Model