UNPKG

openapi-directory-mcp

Version:

Model Context Protocol server for accessing enhanced triple-source OpenAPI directory (APIs.guru + additional APIs + custom imports)

github.com/rawveg/openapi-directory-mcp

rawveg/openapi-directory-mcp

291 lines 9.53 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
/** * OpenAPI specification processor for custom specs * Handles YAML-to-JSON conversion, validation, and normalization */ /* eslint-disable no-console */ import { readFileSync } from "fs"; import { resolve } from "path"; import { homedir } from "os"; import * as yaml from "js-yaml"; import SwaggerParser from "@apidevtools/swagger-parser"; import axios from "axios"; import { SecurityScanner } from "./security-scanner.js"; export class SpecProcessor { constructor() { this.securityScanner = new SecurityScanner(); } /** * Process an OpenAPI spec from file or URL */ async processSpec(source, skipSecurity = false) { let content; let originalFormat; // Fetch content if (this.isUrl(source)) { content = await this.fetchFromUrl(source); } else { content = this.readFromFile(source); } // Detect format originalFormat = this.detectFormat(content); // Parse to object const specObject = this.parseContent(content, originalFormat); // Validate OpenAPI spec const validation = await this.validateOpenAPISpec(specObject); if (!validation.valid) { throw new Error(`Invalid OpenAPI specification: ${validation.errors.join(", ")}`); } // Convert to ApiGuruAPI format const apiGuruSpec = this.convertToApiGuruFormat(specObject); // Run security scan const securityScan = skipSecurity ? this.createEmptySecurityScan() : await this.securityScanner.scanSpec(specObject); // Check if security issues block import if (securityScan.blocked) { throw new Error(`Import blocked by critical security issues:\n${this.securityScanner.generateReport(securityScan)}`); } // Extract metadata - use byte length instead of string length const metadata = this.extractMetadata(specObject, Buffer.byteLength(content, "utf8")); return { spec: apiGuruSpec, originalFormat, securityScan, metadata, }; } /** * Check if source is a URL */ isUrl(source) { return source.startsWith("http://") || source.startsWith("https://"); } /** * Fetch spec from URL */ async fetchFromUrl(url) { try { const response = await axios.get(url, { timeout: 30000, headers: { Accept: "application/json, application/yaml, text/yaml, text/plain", "User-Agent": "openapi-directory-mcp/1.2.0", }, maxContentLength: 10 * 1024 * 1024, // 10MB limit }); if (typeof response.data === "string") { return response.data; } else { return JSON.stringify(response.data, null, 2); } } catch (error) { if (axios.isAxiosError(error)) { throw new Error(`Failed to fetch spec from URL: ${error.message}`); } throw new Error(`Unexpected error fetching spec: ${error}`); } } /** * Read spec from file (with tilde expansion) */ readFromFile(filePath) { try { // Expand tilde to home directory const expandedPath = filePath.startsWith("~/") ? resolve(homedir(), filePath.slice(2)) : filePath; return readFileSync(expandedPath, "utf-8"); } catch (error) { throw new Error(`Failed to read file: ${error instanceof Error ? error.message : "Unknown error"}`); } } /** * Detect if content is YAML or JSON */ detectFormat(content) { const trimmed = content.trim(); // Check if it starts with JSON indicators if (trimmed.startsWith("{") || trimmed.startsWith("[")) { return "json"; } // Check for YAML indicators if (trimmed.includes("openapi:") || trimmed.includes("swagger:") || trimmed.match(/^[a-zA-Z_][a-zA-Z0-9_]*:\s*$/m)) { return "yaml"; } // Try to parse as JSON first try { JSON.parse(content); return "json"; } catch { // Assume YAML if JSON parse fails return "yaml"; } } /** * Parse content based on format */ parseContent(content, format) { try { if (format === "json") { return JSON.parse(content); } else { return yaml.load(content, { onWarning: (warning) => { console.warn(`YAML warning: ${warning.message}`); }, // Security: Don't allow arbitrary code execution schema: yaml.CORE_SCHEMA, }); } } catch (error) { throw new Error(`Failed to parse ${format.toUpperCase()}: ${error instanceof Error ? error.message : "Unknown error"}`); } } /** * Validate OpenAPI specification */ async validateOpenAPISpec(spec) { const errors = []; const warnings = []; try { // Check for OpenAPI version const version = spec.openapi || spec.swagger; if (!version) { errors.push("Missing OpenAPI/Swagger version field"); return { valid: false, errors, warnings }; } // Use swagger-parser for validation await SwaggerParser.validate(spec); // Additional custom validations if (!spec.info) { errors.push('Missing required "info" section'); } else { if (!spec.info.title) { errors.push('Missing required "info.title" field'); } if (!spec.info.version) { warnings.push('Missing "info.version" field'); } } if (!spec.paths && !spec.components) { warnings.push("No paths or components defined - this might be an incomplete spec"); } return { valid: errors.length === 0, version, errors, warnings, }; } catch (error) { const message = error instanceof Error ? error.message : "Unknown validation error"; errors.push(message); return { valid: false, errors, warnings, }; } } /** * Convert OpenAPI spec to ApiGuruAPI format */ convertToApiGuruFormat(spec) { const info = spec.info || {}; const added = new Date().toISOString(); const version = info.version || "1.0.0"; // Determine file extensions based on original format const basePath = "custom/spec"; const apiVersion = { added, updated: added, info: { ...info, "x-providerName": "custom", "x-apisguru-categories": info["x-apisguru-categories"] || ["custom"], }, swaggerUrl: `${basePath}.json`, swaggerYamlUrl: `${basePath}.yaml`, openapiVer: spec.openapi || spec.swagger || "3.0.0", link: info.contact?.url || "", externalDocs: spec.externalDocs, }; return { added, preferred: version, versions: { [version]: apiVersion, }, }; } /** * Extract metadata from spec */ extractMetadata(spec, fileSize) { const info = spec.info || {}; return { title: info.title || "Untitled API", description: info.description || "", version: info.version || "1.0.0", fileSize, }; } /** * Create empty security scan for when security is skipped */ createEmptySecurityScan() { return { scannedAt: new Date().toISOString(), issues: [], summary: { critical: 0, high: 0, medium: 0, low: 0 }, blocked: false, }; } /** * Get security scanner instance for external use */ getSecurityScanner() { return this.securityScanner; } /** * Validate a spec without full processing (for quick checks) */ async quickValidate(source) { try { let content; if (this.isUrl(source)) { content = await this.fetchFromUrl(source); } else { content = this.readFromFile(source); } const format = this.detectFormat(content); const spec = this.parseContent(content, format); return await this.validateOpenAPISpec(spec); } catch (error) { return { valid: false, errors: [error instanceof Error ? error.message : "Unknown error"], warnings: [], }; } } /** * Convert spec to normalized JSON string */ toNormalizedJSON(spec) { return JSON.stringify(spec, null, 2); } } //# sourceMappingURL=spec-processor.js.map