UNPKG

@masonator/get-mcp-keys

Version:

A lightweight utility that securely loads API keys for Cursor MCP servers from your home directory, preventing accidental exposure of secrets in repositories. Keep your credentials safe while maintaining seamless integration with AI coding assistants.

github.com/stumason/get-mcp-keys

stumason/get-mcp-keys

95 lines (71 loc) 3.1 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
# get-mcp-keys Enhancement Plan ## 1. Code Improvements - [ ] Add configuration options: - [ ] Support alternative `.mcprc` file path via environment variable (e.g., `MCP_RC_PATH`) - [ ] Add a debug/verbose mode flag (`--verbose` or `-v`) - [ ] Create a quiet mode to suppress all non-error output (`--quiet` or `-q`) - [ ] Enhance error handling: - [ ] Add specific handling for file permission issues - [ ] Implement validation for parsed environment variables - [ ] Provide more descriptive error messages with potential solutions - [ ] Improve environment variable parsing: - [ ] Consider using a dedicated `.env` parser library (dotenv) - [ ] Add support for multiline values - [ ] Handle escaped characters and quoted values properly - [ ] Refactor for maintainability: - [ ] Split functionality into separate modules/functions - [ ] Add JSDoc comments for better code documentation - [ ] Implement logging with configurable levels ## 2. Testing - [ ] Implement unit tests: - [ ] Test `.mcprc` file parsing with various formats - [ ] Test environment variable combination - [ ] Test command execution with mocked child processes - [ ] Add integration tests: - [ ] Test with actual environment files - [ ] Test command execution with real commands - [ ] Set up test coverage reporting ## 3. Documentation - [ ] Enhance README: - [ ] Add clear installation instructions - [ ] Provide more comprehensive usage examples - [ ] Document all command-line options - [ ] Include a troubleshooting section - [ ] Add inline code documentation: - [ ] Complete JSDoc comments for all functions - [ ] Add examples in comments - [ ] Create security best practices guide: - [ ] Recommendations for `.mcprc` file permissions - [ ] Guidelines for managing sensitive API keys ## 4. Security Enhancements - [ ] Implement file permission checks for `.mcprc` - [ ] Add option for encryption of `.mcprc` file - [ ] Improve redaction of sensitive information in logs - [ ] Add ability to validate API keys before executing commands ## 5. Package Distribution - [ ] Set up CI/CD pipeline: - [ ] Automated testing - [ ] Automated npm publishing - [ ] Version bumping - [ ] Add package distribution files: - [ ] Update `"files"` field in package.json - [ ] Create CHANGELOG.md - [ ] Add CONTRIBUTING.md guidelines ## 6. Advanced Features - [ ] Support alternative configuration formats: - [ ] JSON format support for `.mcprc` - [ ] YAML format support for `.mcprc` - [ ] Add key management features: - [ ] CLI command to safely add/update keys - [ ] Command to list available keys (redacted) - [ ] Per-project configuration overrides - [ ] Implement credential rotation support: - [ ] Support for multiple credentials per service - [ ] Built-in expiration warnings for API keys ## Priority Order for Implementation 1. Core code improvements (error handling, configuration options) 2. Documentation enhancements 3. Basic testing implementation 4. Security improvements 5. Package distribution setup 6. Advanced features