tabulus 0.0.1__tar.gz → 0.0.3__tar.gz

{tabulus-0.0.1 → tabulus-0.0.3}/.github/workflows/ci.yml

@@ -56,20 +56,25 @@ jobs:
       - name: Unit tests
         run: pytest tests/ -v --tb=short
 
+      - name: Seed test table (DDL needs a separate non-readonly connection)
+        env:
+          PGPASSWORD: test
+        run: |
+          psql -h localhost -U postgres -d postgres -c "CREATE TABLE smoke (id int);"
+
       - name: Integration smoke (live Postgres)
         env:
           DATABASE_URL: postgres://postgres:test@localhost:5432/postgres
         run: |
           python -c "
           import asyncio
-          from vigil.config import load
-          from vigil.db import get_pool, list_tables, close_pool
+          from tabulus.config import load
+          from tabulus.db import get_pool, list_tables, close_pool
           async def main():
               pool = await get_pool(load())
-              await pool.execute('CREATE TABLE smoke (id int)')
               tables = await list_tables(pool)
               assert any(t['name'] == 'smoke' for t in tables), 'smoke table missing'
-              print('Integration OK')
+              print('Integration OK — found smoke table')
               await close_pool()
           asyncio.run(main())
           "

tabulus-0.0.3/.mcp.json

@@ -0,0 +1,14 @@
+{
+  "mcpServers": {
+    "tabulus": {
+      "command": ".venv/bin/tabulus",
+      "args": [],
+      "env": {
+        "DATABASE_URL": "postgres://postgres:dev@localhost:5433/postgres",
+        "TABULUS_MAX_ROWS": "100",
+        "TABULUS_SAMPLE_SIZE": "3",
+        "TABULUS_STATEMENT_TIMEOUT_MS": "5000"
+      }
+    }
+  }
+}

{tabulus-0.0.1 → tabulus-0.0.3}/PKG-INFO

@@ -1,9 +1,9 @@
 Metadata-Version: 2.4
 Name: tabulus
-Version: 0.0.1
+Version: 0.0.3
 Summary: Postgres MCP server — agent-first database workbench
-Project-URL: Repository, https://github.com/WalkingMountain/vigilmcp
-Project-URL: Issues, https://github.com/WalkingMountain/vigilmcp/issues
+Project-URL: Repository, https://github.com/WalkingMountain/tabulus
+Project-URL: Issues, https://github.com/WalkingMountain/tabulus/issues
 Author: WalkingMountain
 License: MIT
 License-File: LICENSE
@@ -24,31 +24,33 @@ Requires-Dist: pytest>=8.0; extra == 'dev'
 Requires-Dist: ruff>=0.7; extra == 'dev'
 Description-Content-Type: text/markdown
 
-# Vigil
+# Tabulus
 
 **A Postgres MCP server built for AI agents.**
 
-Vigil is the database workbench for the AI-augmented developer. Connect Claude
-Code, Cursor, or any MCP-compatible client to your Postgres database and let
-the agent introspect the schema, sample data, and write safe queries — without
+Tabulus is the database workbench for the AI-augmented developer. Connect Claude
+Code, Cursor, or any MCP-compatible client to your Postgres database and let the
+agent introspect the schema, sample data, and write safe queries — without
 copy-pasting schemas into chat windows.
 
 ## Why
 
 Every modern dev workflow now includes an AI agent. Every DB GUI was designed
-before that was true. Vigil flips the model: **the agent is a first-class user,
-not a sidebar feature.**
+before that was true. Tabulus flips the model: **the agent is a first-class
+user, not a sidebar feature.**
 
 What that means in practice:
 
 - Schema introspection optimized for LLM context windows (compact JSON, foreign
   keys flattened, sample rows inline).
 - Read-only by default — `INSERT`/`UPDATE`/`DELETE`/`DDL` are rejected at the
-  gateway. Agent can't drop your tables.
+  gateway. The agent can't drop your tables.
 - `EXPLAIN` exposed as a tool so the agent can reason about query plans before
   proposing optimizations.
 - Statement timeout + row cap enforced server-side. No agent can DOS your
   database by accident.
+- Opt-in PII redactor (`TABULUS_REDACT=on`) scrubs emails, API keys, JWTs,
+  credit cards, phones, and IPs from tool output before the agent sees them.
 
 ## Status
 
@@ -64,10 +66,10 @@ pip install tabulus
 
 ```bash
 export DATABASE_URL=postgres://user:pass@host:5432/dbname
-vigil
+tabulus
 ```
 
-Then point your MCP client at the `vigil` command.
+Then point your MCP client at the `tabulus` command.
 
 ### Claude Code (project-level)
 
@@ -76,8 +78,8 @@ Create `.mcp.json` in your project root:
 ```jsonc
 {
   "mcpServers": {
-    "vigil": {
-      "command": "vigil",
+    "tabulus": {
+      "command": "tabulus",
       "args": [],
       "env": {
         "DATABASE_URL": "postgres://user:pass@host:5432/dbname"
@@ -92,7 +94,7 @@ Restart Claude Code in that directory and approve the trust prompt.
 ### Claude Code (user-level via CLI)
 
 ```bash
-claude mcp add vigil "$(which vigil)" --env DATABASE_URL=postgres://user:pass@host:5432/dbname
+claude mcp add tabulus "$(which tabulus)" --env DATABASE_URL=postgres://user:pass@host:5432/dbname
 ```
 
 ### Cursor
@@ -102,8 +104,8 @@ Add to `~/.cursor/mcp_servers.json`:
 ```jsonc
 {
   "mcpServers": {
-    "vigil": {
-      "command": "vigil",
+    "tabulus": {
+      "command": "tabulus",
       "env": { "DATABASE_URL": "postgres://user:pass@host:5432/dbname" }
     }
   }
@@ -125,11 +127,11 @@ Add to `~/.cursor/mcp_servers.json`:
 | Variable | Default | Purpose |
 |---|---|---|
 | `DATABASE_URL` | — (required) | Postgres connection URL |
-| `VIGIL_MAX_ROWS` | `100` | Hard cap on rows returned by any tool |
-| `VIGIL_SAMPLE_SIZE` | `3` | Sample rows included in `describe_schema` |
-| `VIGIL_STATEMENT_TIMEOUT_MS` | `5000` | Server-side query timeout |
-| `VIGIL_REDACT` | `off` | Set `on` to scrub PII (emails, API keys, JWTs, credit cards, phones, IPs) from `sample_rows`, `safe_select`, and `describe_schema` output before the agent sees it. Recommended for production. |
-| `VIGIL_ALLOW_WRITES` | `false` | Set `true` to disable the write block (NOT recommended) |
+| `TABULUS_MAX_ROWS` | `100` | Hard cap on rows returned by any tool |
+| `TABULUS_SAMPLE_SIZE` | `3` | Sample rows included in `describe_schema` |
+| `TABULUS_STATEMENT_TIMEOUT_MS` | `5000` | Server-side query timeout |
+| `TABULUS_REDACT` | `off` | Set `on` to scrub PII (emails, API keys, JWTs, credit cards, phones, IPs) from `sample_rows`, `safe_select`, and `describe_schema` output before the agent sees it. Recommended for production. |
+| `TABULUS_ALLOW_WRITES` | `false` | Set `true` to disable the write block (NOT recommended) |
 
 ## Roadmap
 

{tabulus-0.0.1 → tabulus-0.0.3}/README.md

@@ -1,28 +1,30 @@
-# Vigil
+# Tabulus
 
 **A Postgres MCP server built for AI agents.**
 
-Vigil is the database workbench for the AI-augmented developer. Connect Claude
-Code, Cursor, or any MCP-compatible client to your Postgres database and let
-the agent introspect the schema, sample data, and write safe queries — without
+Tabulus is the database workbench for the AI-augmented developer. Connect Claude
+Code, Cursor, or any MCP-compatible client to your Postgres database and let the
+agent introspect the schema, sample data, and write safe queries — without
 copy-pasting schemas into chat windows.
 
 ## Why
 
 Every modern dev workflow now includes an AI agent. Every DB GUI was designed
-before that was true. Vigil flips the model: **the agent is a first-class user,
-not a sidebar feature.**
+before that was true. Tabulus flips the model: **the agent is a first-class
+user, not a sidebar feature.**
 
 What that means in practice:
 
 - Schema introspection optimized for LLM context windows (compact JSON, foreign
   keys flattened, sample rows inline).
 - Read-only by default — `INSERT`/`UPDATE`/`DELETE`/`DDL` are rejected at the
-  gateway. Agent can't drop your tables.
+  gateway. The agent can't drop your tables.
 - `EXPLAIN` exposed as a tool so the agent can reason about query plans before
   proposing optimizations.
 - Statement timeout + row cap enforced server-side. No agent can DOS your
   database by accident.
+- Opt-in PII redactor (`TABULUS_REDACT=on`) scrubs emails, API keys, JWTs,
+  credit cards, phones, and IPs from tool output before the agent sees them.
 
 ## Status
 
@@ -38,10 +40,10 @@ pip install tabulus
 
 ```bash
 export DATABASE_URL=postgres://user:pass@host:5432/dbname
-vigil
+tabulus
 ```
 
-Then point your MCP client at the `vigil` command.
+Then point your MCP client at the `tabulus` command.
 
 ### Claude Code (project-level)
 
@@ -50,8 +52,8 @@ Create `.mcp.json` in your project root:
 ```jsonc
 {
   "mcpServers": {
-    "vigil": {
-      "command": "vigil",
+    "tabulus": {
+      "command": "tabulus",
       "args": [],
       "env": {
         "DATABASE_URL": "postgres://user:pass@host:5432/dbname"
@@ -66,7 +68,7 @@ Restart Claude Code in that directory and approve the trust prompt.
 ### Claude Code (user-level via CLI)
 
 ```bash
-claude mcp add vigil "$(which vigil)" --env DATABASE_URL=postgres://user:pass@host:5432/dbname
+claude mcp add tabulus "$(which tabulus)" --env DATABASE_URL=postgres://user:pass@host:5432/dbname
 ```
 
 ### Cursor
@@ -76,8 +78,8 @@ Add to `~/.cursor/mcp_servers.json`:
 ```jsonc
 {
   "mcpServers": {
-    "vigil": {
-      "command": "vigil",
+    "tabulus": {
+      "command": "tabulus",
       "env": { "DATABASE_URL": "postgres://user:pass@host:5432/dbname" }
     }
   }
@@ -99,11 +101,11 @@ Add to `~/.cursor/mcp_servers.json`:
 | Variable | Default | Purpose |
 |---|---|---|
 | `DATABASE_URL` | — (required) | Postgres connection URL |
-| `VIGIL_MAX_ROWS` | `100` | Hard cap on rows returned by any tool |
-| `VIGIL_SAMPLE_SIZE` | `3` | Sample rows included in `describe_schema` |
-| `VIGIL_STATEMENT_TIMEOUT_MS` | `5000` | Server-side query timeout |
-| `VIGIL_REDACT` | `off` | Set `on` to scrub PII (emails, API keys, JWTs, credit cards, phones, IPs) from `sample_rows`, `safe_select`, and `describe_schema` output before the agent sees it. Recommended for production. |
-| `VIGIL_ALLOW_WRITES` | `false` | Set `true` to disable the write block (NOT recommended) |
+| `TABULUS_MAX_ROWS` | `100` | Hard cap on rows returned by any tool |
+| `TABULUS_SAMPLE_SIZE` | `3` | Sample rows included in `describe_schema` |
+| `TABULUS_STATEMENT_TIMEOUT_MS` | `5000` | Server-side query timeout |
+| `TABULUS_REDACT` | `off` | Set `on` to scrub PII (emails, API keys, JWTs, credit cards, phones, IPs) from `sample_rows`, `safe_select`, and `describe_schema` output before the agent sees it. Recommended for production. |
+| `TABULUS_ALLOW_WRITES` | `false` | Set `true` to disable the write block (NOT recommended) |
 
 ## Roadmap
 

{tabulus-0.0.1 → tabulus-0.0.3}/pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "tabulus"
-version = "0.0.1"
+version = "0.0.3"
 description = "Postgres MCP server — agent-first database workbench"
 authors = [{name = "WalkingMountain"}]
 license = {text = "MIT"}
@@ -29,18 +29,18 @@ dev = [
 ]
 
 [project.scripts]
-vigil = "vigil.cli:main"
+tabulus = "tabulus.cli:main"
 
 [project.urls]
-Repository = "https://github.com/WalkingMountain/vigilmcp"
-Issues = "https://github.com/WalkingMountain/vigilmcp/issues"
+Repository = "https://github.com/WalkingMountain/tabulus"
+Issues = "https://github.com/WalkingMountain/tabulus/issues"
 
 [build-system]
 requires = ["hatchling"]
 build-backend = "hatchling.build"
 
 [tool.hatch.build.targets.wheel]
-packages = ["src/vigil"]
+packages = ["src/tabulus"]
 
 [tool.ruff]
 line-length = 100

tabulus-0.0.3/src/tabulus/__init__.py

@@ -0,0 +1,3 @@
+"""Tabulus — Postgres MCP server for AI agents."""
+
+__version__ = "0.0.3"

{tabulus-0.0.1/src/vigil → tabulus-0.0.3/src/tabulus}/cli.py

@@ -1,4 +1,4 @@
-"""CLI entry point — `vigil` command.
+"""CLI entry point — `tabulus` command.
 
 Wraps startup errors in friendly messages so the agent / user sees actionable
 hints instead of stack traces.
@@ -6,37 +6,37 @@ hints instead of stack traces.
 
 import sys
 
-from vigil import __version__
+from tabulus import __version__
 
 
 def main() -> None:
     if "--version" in sys.argv or "-V" in sys.argv:
-        print(f"vigil {__version__}")
+        print(f"tabulus {__version__}")
         return
 
     if "--help" in sys.argv or "-h" in sys.argv:
         print(
-            "vigil — Postgres MCP server for AI agents\n"
+            "tabulus — Postgres MCP server for AI agents\n"
             "\n"
             "Usage:\n"
-            "  DATABASE_URL=postgres://user:pass@host:5432/dbname vigil\n"
+            "  DATABASE_URL=postgres://user:pass@host:5432/dbname tabulus\n"
             "\n"
             "Environment variables:\n"
             "  DATABASE_URL              required — Postgres connection string\n"
-            "  VIGIL_MAX_ROWS            default 100 — cap on rows returned\n"
-            "  VIGIL_SAMPLE_SIZE         default 3 — rows in describe_schema sample\n"
-            "  VIGIL_STATEMENT_TIMEOUT_MS  default 5000 — server-side query timeout\n"
-            "  VIGIL_REDACT              default off — set 'on' to scrub PII from output\n"
-            "  VIGIL_ALLOW_WRITES        default false — keep false (read-only)\n"
+            "  TABULUS_MAX_ROWS            default 100 — cap on rows returned\n"
+            "  TABULUS_SAMPLE_SIZE         default 3 — rows in describe_schema sample\n"
+            "  TABULUS_STATEMENT_TIMEOUT_MS  default 5000 — server-side query timeout\n"
+            "  TABULUS_REDACT              default off — set 'on' to scrub PII from output\n"
+            "  TABULUS_ALLOW_WRITES        default false — keep false (read-only)\n"
             "\n"
-            "Repo: https://github.com/WalkingMountain/vigilmcp"
+            "Repo: https://github.com/WalkingMountain/tabulus"
         )
         return
 
     try:
         # Defer import so --version/--help don't pay the asyncio + mcp cost
-        from vigil.config import load
-        from vigil.server import main as run_server
+        from tabulus.config import load
+        from tabulus.server import main as run_server
 
         # Fast-fail config validation BEFORE we open the stdio MCP loop —
         # otherwise the agent waits until first tool call to learn DATABASE_URL
@@ -45,21 +45,21 @@ def main() -> None:
         run_server()
     except RuntimeError as e:
         # Config errors (missing DATABASE_URL, etc.) — already friendly
-        print(f"vigil: {e}", file=sys.stderr)
+        print(f"tabulus: {e}", file=sys.stderr)
         sys.exit(2)
     except KeyboardInterrupt:
         sys.exit(0)
     except Exception as e:
         # Last resort — show error class + message, hint at common causes
         print(
-            f"vigil: unexpected error: {type(e).__name__}: {e}\n"
+            f"tabulus: unexpected error: {type(e).__name__}: {e}\n"
             f"\n"
             f"Common causes:\n"
             f"  - DATABASE_URL points at an unreachable host\n"
             f"  - Postgres requires SSL but the URL lacks ?sslmode=require\n"
             f"  - User in DATABASE_URL lacks CONNECT or USAGE privileges\n"
             f"\n"
-            f"File an issue: https://github.com/WalkingMountain/vigilmcp/issues",
+            f"File an issue: https://github.com/WalkingMountain/tabulus/issues",
             file=sys.stderr,
         )
         sys.exit(1)

{tabulus-0.0.1/src/vigil → tabulus-0.0.3/src/tabulus}/config.py

@@ -22,8 +22,8 @@ def load() -> Config:
         )
     return Config(
         database_url=url,
-        max_rows=int(os.environ.get("VIGIL_MAX_ROWS", "100")),
-        sample_size=int(os.environ.get("VIGIL_SAMPLE_SIZE", "3")),
-        statement_timeout_ms=int(os.environ.get("VIGIL_STATEMENT_TIMEOUT_MS", "5000")),
-        allow_writes=os.environ.get("VIGIL_ALLOW_WRITES", "false").lower() == "true",
+        max_rows=int(os.environ.get("TABULUS_MAX_ROWS", "100")),
+        sample_size=int(os.environ.get("TABULUS_SAMPLE_SIZE", "3")),
+        statement_timeout_ms=int(os.environ.get("TABULUS_STATEMENT_TIMEOUT_MS", "5000")),
+        allow_writes=os.environ.get("TABULUS_ALLOW_WRITES", "false").lower() == "true",
     )

{tabulus-0.0.1/src/vigil → tabulus-0.0.3/src/tabulus}/db.py

@@ -7,8 +7,8 @@ flattened. Goal is to fit a 50-table schema into one prompt without truncation.
 import asyncpg
 from typing import Any
 
-from vigil.config import Config
-from vigil.redactor import maybe_redact
+from tabulus.config import Config
+from tabulus.redactor import maybe_redact
 
 
 _pool: asyncpg.Pool | None = None
@@ -169,7 +169,7 @@ async def safe_select(
     max_rows: int,
 ) -> dict[str, Any]:
     # Wrap with LIMIT enforcement (subquery prevents user-supplied LIMIT bypass)
-    wrapped = f"SELECT * FROM ({sql}) _vigil_q LIMIT {int(max_rows)}"
+    wrapped = f"SELECT * FROM ({sql}) _tabulus_q LIMIT {int(max_rows)}"
     rows = await pool.fetch(wrapped)
     return {
         "row_count": len(rows),

{tabulus-0.0.1/src/vigil → tabulus-0.0.3/src/tabulus}/redactor.py

@@ -11,7 +11,7 @@ leaking the value.
 
 Conservative philosophy: false positives are cheap, false negatives kill.
 
-Off by default — set VIGIL_REDACT=on to enable.
+Off by default — set TABULUS_REDACT=on to enable.
 """
 
 from __future__ import annotations
@@ -65,7 +65,7 @@ _PATTERNS: list[tuple[str, re.Pattern[str]]] = [
 
 
 def is_enabled() -> bool:
-    return os.environ.get("VIGIL_REDACT", "off").lower() in ("on", "true", "1", "yes")
+    return os.environ.get("TABULUS_REDACT", "off").lower() in ("on", "true", "1", "yes")
 
 
 def redact_string(s: str) -> str:
@@ -92,5 +92,5 @@ def redact_value(v: Any) -> Any:
 
 
 def maybe_redact(v: Any) -> Any:
-    """No-op when VIGIL_REDACT is off, redact otherwise."""
+    """No-op when TABULUS_REDACT is off, redact otherwise."""
     return redact_value(v) if is_enabled() else v

{tabulus-0.0.1/src/vigil → tabulus-0.0.3/src/tabulus}/safety.py

@@ -1,7 +1,7 @@
 """SQL safety — read-only enforcement.
 
 Rejects any statement that could mutate data or schema. Default mode for the
-agent: SELECT + EXPLAIN only. Writes only enabled when VIGIL_ALLOW_WRITES=true
+agent: SELECT + EXPLAIN only. Writes only enabled when TABULUS_ALLOW_WRITES=true
 AND the human operator opts in per-statement (future approval flow).
 """
 

{tabulus-0.0.1/src/vigil → tabulus-0.0.3/src/tabulus}/server.py

@@ -18,8 +18,8 @@ from mcp.server import Server
 from mcp.server.stdio import stdio_server
 from mcp.types import TextContent, Tool
 
-from vigil.config import load
-from vigil.db import (
+from tabulus.config import load
+from tabulus.db import (
     close_pool,
     describe_table,
     explain,
@@ -28,10 +28,10 @@ from vigil.db import (
     safe_select,
     sample_rows,
 )
-from vigil.safety import UnsafeSQLError, assert_read_only
+from tabulus.safety import UnsafeSQLError, assert_read_only
 
 
-server = Server("vigil")
+server = Server("tabulus")
 
 
 @server.list_tools()

{tabulus-0.0.1 → tabulus-0.0.3}/tests/test_redactor.py

@@ -5,7 +5,7 @@ from unittest.mock import patch
 
 import pytest
 
-from vigil.redactor import (
+from tabulus.redactor import (
     is_enabled,
     maybe_redact,
     redact_string,
@@ -121,18 +121,18 @@ def test_disabled_by_default():
 
 
 def test_enabled_via_env():
-    with patch.dict(os.environ, {"VIGIL_REDACT": "on"}):
+    with patch.dict(os.environ, {"TABULUS_REDACT": "on"}):
         assert is_enabled() is True
         assert maybe_redact("foo@bar.com") == "[REDACTED:email]"
 
 
 def test_enabled_alt_values():
     for val in ("on", "ON", "true", "True", "1", "yes"):
-        with patch.dict(os.environ, {"VIGIL_REDACT": val}):
-            assert is_enabled() is True, f"VIGIL_REDACT={val!r} should enable"
+        with patch.dict(os.environ, {"TABULUS_REDACT": val}):
+            assert is_enabled() is True, f"TABULUS_REDACT={val!r} should enable"
 
 
 def test_disabled_alt_values():
     for val in ("off", "false", "0", "no", "", "anything-else"):
-        with patch.dict(os.environ, {"VIGIL_REDACT": val}):
-            assert is_enabled() is False, f"VIGIL_REDACT={val!r} should NOT enable"
+        with patch.dict(os.environ, {"TABULUS_REDACT": val}):
+            assert is_enabled() is False, f"TABULUS_REDACT={val!r} should NOT enable"

{tabulus-0.0.1 → tabulus-0.0.3}/tests/test_safety.py

@@ -2,7 +2,7 @@
 
 import pytest
 
-from vigil.safety import UnsafeSQLError, assert_read_only, normalize
+from tabulus.safety import UnsafeSQLError, assert_read_only, normalize
 
 
 # ── Allowed: every safe lead keyword ────────────────────────────────────────

tabulus-0.0.1/.mcp.json

@@ -1,14 +0,0 @@
-{
-  "mcpServers": {
-    "vigil": {
-      "command": ".venv/bin/vigil",
-      "args": [],
-      "env": {
-        "DATABASE_URL": "postgres://postgres:dev@localhost:5433/postgres",
-        "VIGIL_MAX_ROWS": "100",
-        "VIGIL_SAMPLE_SIZE": "3",
-        "VIGIL_STATEMENT_TIMEOUT_MS": "5000"
-      }
-    }
-  }
-}

tabulus-0.0.1/src/vigil/__init__.py

@@ -1,3 +0,0 @@
-"""Vigil — Postgres MCP server for AI agents."""
-
-__version__ = "0.0.1"