UNPKG

vibe-coder-mcp

Version:

Production-ready MCP server with complete agent integration, multi-transport support, and comprehensive development automation tools for AI-assisted workflows.

github.com/freshtechbro/Vibe-Coder-MCP

freshtechbro/Vibe-Coder-MCP

158 lines (157 loc) 6.22 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
import * as path from 'path'; import logger from '../../../logger.js'; import { getPathResolver } from '../utils/path-resolver.js'; export class VibeTaskManagerSecurityValidator { static instance; normalizedReadDir; normalizedWriteDir; constructor(readDir, writeDir) { const pathResolver = getPathResolver(); const allowedReadDir = readDir || pathResolver.getReadDirectory(); const allowedWriteDir = writeDir || pathResolver.getOutputDirectory(); this.normalizedReadDir = path.resolve(allowedReadDir); this.normalizedWriteDir = path.resolve(allowedWriteDir); logger.debug({ readDir: this.normalizedReadDir, writeDir: this.normalizedWriteDir }, 'VibeTaskManagerSecurityValidator initialized'); } static getInstance(readDir, writeDir) { if (!VibeTaskManagerSecurityValidator.instance) { VibeTaskManagerSecurityValidator.instance = new VibeTaskManagerSecurityValidator(readDir, writeDir); } return VibeTaskManagerSecurityValidator.instance; } isPathWithinReadDirectory(filePath) { try { const normalizedPath = path.resolve(filePath); return this.isPathWithin(normalizedPath, this.normalizedReadDir); } catch (error) { logger.error({ err: error, filePath }, 'Error checking if path is within read directory'); return false; } } isPathWithinWriteDirectory(filePath) { try { const normalizedPath = path.resolve(filePath); return this.isPathWithin(normalizedPath, this.normalizedWriteDir); } catch (error) { logger.error({ err: error, filePath }, 'Error checking if path is within write directory'); return false; } } createSecureReadPath(filePath) { if (!this.isPathWithinReadDirectory(filePath)) { const error = `Security violation: Path '${filePath}' is outside the allowed read directory '${this.normalizedReadDir}'`; logger.error({ filePath, readDir: this.normalizedReadDir }, error); throw new Error(error); } return path.resolve(filePath); } createSecureWritePath(filePath) { if (!this.isPathWithinWriteDirectory(filePath)) { const error = `Security violation: Path '${filePath}' is outside the allowed write directory '${this.normalizedWriteDir}'`; logger.error({ filePath, writeDir: this.normalizedWriteDir }, error); throw new Error(error); } return path.resolve(filePath); } validateReadPath(filePath) { try { if (!filePath || typeof filePath !== 'string') { return { isValid: false, error: 'Invalid path: path must be a non-empty string', violationType: 'invalid_path' }; } if (filePath.includes('..')) { return { isValid: false, error: 'Path traversal detected in read path', violationType: 'path_traversal' }; } if (!this.isPathWithinReadDirectory(filePath)) { return { isValid: false, error: `Path is outside allowed read directory: ${this.normalizedReadDir}`, violationType: 'outside_boundary' }; } return { isValid: true, securePath: path.resolve(filePath) }; } catch (error) { return { isValid: false, error: `Path validation failed: ${error instanceof Error ? error.message : 'Unknown error'}`, violationType: 'invalid_path' }; } } validateWritePath(filePath) { try { if (!filePath || typeof filePath !== 'string') { return { isValid: false, error: 'Invalid path: path must be a non-empty string', violationType: 'invalid_path' }; } if (filePath.includes('..')) { return { isValid: false, error: 'Path traversal detected in write path', violationType: 'path_traversal' }; } if (!this.isPathWithinWriteDirectory(filePath)) { return { isValid: false, error: `Path is outside allowed write directory: ${this.normalizedWriteDir}`, violationType: 'outside_boundary' }; } return { isValid: true, securePath: path.resolve(filePath) }; } catch (error) { return { isValid: false, error: `Path validation failed: ${error instanceof Error ? error.message : 'Unknown error'}`, violationType: 'invalid_path' }; } } getReadDirectory() { return this.normalizedReadDir; } getWriteDirectory() { return this.normalizedWriteDir; } isPathWithin(childPath, parentPath) { const normalizedChild = path.normalize(childPath); const normalizedParent = path.normalize(parentPath); return normalizedChild === normalizedParent || (normalizedChild.startsWith(normalizedParent) && normalizedChild.substring(normalizedParent.length, normalizedParent.length + 1) === path.sep); } } export function getVibeTaskManagerSecurityValidator(readDir, writeDir) { return VibeTaskManagerSecurityValidator.getInstance(readDir, writeDir); } export function createSecureReadPath(filePath) { const validator = getVibeTaskManagerSecurityValidator(); return validator.createSecureReadPath(filePath); } export function createSecureWritePath(filePath) { const validator = getVibeTaskManagerSecurityValidator(); return validator.createSecureWritePath(filePath); }