nogoo9 / mcp-server-cloud-fs
68%

DEFAULT BRANCH: main
Repo Added
Files 56
Badge
Embed ▾
README BADGES
x

If you need to use a raster PNG badge, change the '.svg' to '.png' in the link

Markdown

Textile

RDoc

HTML

Rst

LAST BUILD ON BRANCH main
branch: main
CHANGE BRANCH
x

coverage: 68.233% (+1.4%) from 66.832%
26047347173

push

github

web-flow 
feat: v0.7.0 — AI-native tools, DLP, ETags, scope filtering, patch_file (#27)

* feat(auth): dynamic tool surface reduction based on OAuth scopes (#22)

Add scope-based tool filtering to createMcpServer. When grantedScopes
is provided in ServerContext, only tools matching the granted OAuth
scopes are registered — removing unauthorized tools from tools/list
entirely (not just denying invocation).

New exports from src/auth/scopes.ts:
- getToolsForScopes(scopes): returns accessible tool names
- shouldRegisterTool(name, scopes): boolean check for registration

Backwards-compatible: omitting grantedScopes registers all tools.

Closes #22

* feat(middleware): DLP content sanitization for PII/secret redaction (#23)

Add Data Loss Prevention middleware that redacts sensitive content
(AWS keys, emails, SSN, credit cards, JWTs, API keys) from tool
responses before they reach the MCP client.

New files:
- src/middleware/dlp.ts: sanitizeContent() + applyDlpWrapper()
- src/middleware/dlp.test.ts: 14 tests covering all default patterns

Opt-in via --enable-dlp CLI flag. Ships 9 default regex patterns.

Closes #23

* feat(tools): AI-native get_file_schema and summarize_file tools (#24)

Add two tools that extract structural metadata server-side,
reducing LLM context token waste:

- get_file_schema: CSV column detection with type inference,
  JSON shape analysis, generic text line/byte counts
- summarize_file: compact head/tail summary without full read

Pure TypeScript — no new dependencies. Mapped to cloud-fs:read scope.

Closes #24

* feat(vfs): optimistic concurrency control via ETags (#25)

Add content-addressable ETags (SHA-256) to the VFS layer for
multi-agent conflict detection:

- put() computes and stores etag in inode overlay
- stat() returns etag when available
- edit_file accepts optional expected_etag parameter
  - matching etag: edit proceeds normally
  - mismatching etag: returns conflict error with instructions
  - omitted: backwards-compatible, no ... (continued)

447 of 563 new or added lines in 7 files covered. (79.4%)

3398 of 4980 relevant lines covered (68.23%)

23.61 hits per line

Relevant lines Covered
4980 RELEVANT LINES 3398 COVERED LINES
23.61 HITS PER LINE
Source Files on main

Recent builds

Builds Branch Commit Type Ran Committer Via Coverage
26047347173 main feat: v0.7.0 — AI-native tools, DLP, ETags, scope filtering, patch_file (#27) * feat(auth): dynamic tool surface reduction based on OAuth scopes (#22) Add scope-based tool filtering to createMcpServer. When grantedScopes is provided in ServerCon... push web-flow github
68.23
25894592744 main feat: cloud-native v0.6.0 — new tools, multi-provider, audit logging, and full docs overhaul (#21) * feat(errors): add structured cloud-aware error handling (#17) Introduce CloudError class with typed error codes (RATE_LIMITED, PERMISSION_DENIED... push web-flow github
66.83
25820453266 main feat: shell && || ; operators, security headers docs, provider setup guide (#10) * fix(security): remediate SAST findings — Redis TLS + insecure randomness - Extract DEFAULT_REDIS_URL constant and add runtime console.warn when unencrypted redi... push web-flow github
67.16
25795039737 main fix(security): resolve 12 of 13 audit vulnerabilities (#9) Lockfile refresh resolves 10 vulnerabilities by bumping transitive deps to latest within their existing semver ranges: - hono 4.12.15 → 4.12.18 (4 moderate + 1 low) - fast-uri 3.1.0 → 3.1... push web-flow github
67.64
25793924099 main fix(security): autofix Potential file inclusion attack via reading file (#8) Co-authored-by: aikido-autofix[bot] <119856028+aikido-autofix[bot]@users.noreply.github.com> push web-flow github
67.64
25793882065 main fix(security): autofix 3rd party Github Actions should be pinned (#7) Co-authored-by: aikido-autofix[bot] <119856028+aikido-autofix[bot]@users.noreply.github.com> push web-flow github
67.64
25750593092 main docs: add prominent documentation link to README (#6) push web-flow github
67.64
25749688880 main release: v0.4.0 (#5) * feat(v0.4.0): multi-transport layer + CLI integration Phase 1 & 2 complete: - Streamable HTTP transport (Bun-native + Node/Express fallback) - WebSocket transport (Bun-native, JSON-RPC framing) - STDIO transport adapter (b... push web-flow github
67.64
25690758441 main release: v0.3.0 — Shell tool, MemoryProvider, SqliteProvider, xterm.js App (#3) * feat: add shell tool with 17 POSIX-like commands for cloud fs (v0.3.0) - New `shell` MCP tool gated by `--enable-shell` CLI flag - 17 built-in commands: ls, cat, h... push web-flow github
66.53
25686582918 main feat: v0.2.0 — VFS layer, extended tools, npm library, OIDC publishing - 5 extended tools: read_file_range, grep_file, grep_files, copy_file, delete_file - Virtual Filesystem (VFS) layer with FUSE-like cache coherence - npm library entrypoint wit... push eterna2 github
62.41
See All Builds (49)