OrgBrain MCP Server

org.ts•25.9 kB

/** * Organization management tools - connect GitHub orgs */ import { spawn } from "child_process"; import { promises as fs } from "fs"; import { join, dirname } from "path"; import { fileURLToPath } from "url"; import pLimit from "p-limit"; import YAML from "yaml"; import { ToolHandler, safeJson, getStore, getGitManager } from "./shared.js"; import { runExtractors } from "../lib/extractor-base.js"; import "../extractors/index.js"; // Register all extractors import { clearConfigCache } from "../lib/config-loader.js"; import { createJob, getJob, updateJob, listJobs, listActiveJobs, type Job } from "../lib/job-manager.js"; // Concurrency limit for parallel repo extraction in connect_org const REPO_CONCURRENCY = parseInt(process.env.ORGBRAIN_REPO_CONCURRENCY || "6", 10); const __filename = fileURLToPath(import.meta.url); const __dirname = dirname(__filename); const CONFIG_PATH = join(__dirname, "..", "..", "config", "repos.yaml"); /** * Validate GitHub organization name format */ function isValidOrgName(org: string): boolean { if (!org || typeof org !== "string") return false; // GitHub org names: alphanumeric and hyphens, 1-39 chars, can't start/end with hyphen return /^[a-zA-Z0-9]([a-zA-Z0-9-]{0,37}[a-zA-Z0-9])?$/.test(org); } /** * Validate regex pattern - returns true if valid, false if invalid */ function isValidRegex(pattern: string): boolean { if (!pattern || typeof pattern !== "string") return false; if (pattern.length > 500) return false; // Prevent ReDoS with very long patterns try { new RegExp(pattern); return true; } catch { return false; } } /** * Escape special regex characters in a string */ function escapeRegex(str: string): string { return str.replace(/[.*+?^${}()|[\]\\]/g, "\\$&"); } /** * Validate repository name format */ function isValidRepoName(repo: string): boolean { if (!repo || typeof repo !== "string") return false; return /^[a-zA-Z0-9._-]{1,100}$/.test(repo); } interface GHRepo { name: string; description: string | null; sshUrl: string; defaultBranchRef: { name: string } | null; primaryLanguage: { name: string } | null; isPrivate: boolean; isFork: boolean; isArchived: boolean; } interface RepoConfig { url: string; description: string; type: string; language: string; default_branch: string; private?: boolean; enabled?: boolean; track: { branches: string[]; tags?: { pattern: string; latest: number }; }; extractors: Array<{ name: string; config?: Record<string, unknown> }>; } interface Config { version: string; cache_dir: string; knowledge_dir: string; diagram_styles?: Record<string, string>; repositories: Record<string, RepoConfig>; } /** * Check if a repo name contains a word (not just substring). * Matches at word boundaries: start/end of string or separated by - or _ * e.g., "test-repo" matches "test", but "battle-tested" does NOT match "test" */ function nameContainsWord(name: string, word: string): boolean { const regex = new RegExp(`(^|[-_])${word}($|[-_])`, "i"); return regex.test(name); } function inferRepoType(repo: GHRepo): string { const name = repo.name.toLowerCase(); const lang = repo.primaryLanguage?.name?.toLowerCase() || ""; if (name.includes("mobile") || name.includes("app") || lang === "dart" || lang === "swift" || lang === "kotlin") { return "frontend"; } if (name.includes("web") || name.includes("site") || name.includes("ui")) { return "frontend"; } if (name.includes("api") || name.includes("server") || name.includes("backend") || name.includes("worker")) { return "backend"; } if (name.includes("infra") || name.includes("iac") || name.includes("deploy") || name.includes("k8s")) { return "infrastructure"; } if (name.includes("lib") || name.includes("sdk") || name.includes("package")) { return "library"; } if (name.includes("doc") || name.includes("spec")) { return "documentation"; } // Use word-boundary matching for test patterns to avoid false positives // e.g., "battle-tested" should NOT match "test" if (["test", "demo", "poc", "example"].some((t) => nameContainsWord(name, t))) { return "test"; } if (["typescript", "javascript", "dart", "swift", "kotlin"].includes(lang)) return "frontend"; if (["go", "rust", "python", "java"].includes(lang)) return "backend"; if (["hcl", "dockerfile"].includes(lang)) return "infrastructure"; return "unknown"; } function buildRepoConfig(repo: GHRepo, options: { includeNips?: boolean } = {}): RepoConfig { const repoType = inferRepoType(repo); const extractors: RepoConfig["extractors"] = []; if (options.includeNips) { extractors.push({ name: "nip_usage", config: { patterns: ["NIP-\\d+", "kind:\\s*\\d+"], file_types: ["*"] } }); } extractors.push({ name: "monorepo" }); // Add type_definitions for languages that support it const typeDefinitionLanguages = ["TypeScript", "JavaScript", "Rust", "Python", "Go", "Dart"]; if (repo.primaryLanguage && typeDefinitionLanguages.includes(repo.primaryLanguage.name)) { extractors.push({ name: "type_definitions" }); } if (repoType === "frontend") { extractors.push({ name: "user_flows" }); extractors.push({ name: "data_flow" }); } else if (repoType === "backend") { extractors.push({ name: "data_flow" }); } else if (repoType === "infrastructure") { extractors.push({ name: "kubernetes" }); extractors.push({ name: "terraform" }); } else { extractors.push({ name: "user_flows" }); extractors.push({ name: "data_flow" }); extractors.push({ name: "kubernetes" }); extractors.push({ name: "terraform" }); } extractors.push({ name: "journey_impact" }); // Use word-boundary matching to avoid false positives like "battle-tested" matching "test" const looksLikeTest = ["test", "demo", "poc", "example", "sandbox", "playground"].some((t) => nameContainsWord(repo.name, t) ); const config: RepoConfig = { url: repo.sshUrl, description: repo.description || `Repository: ${repo.name}`, type: repoType, language: repo.primaryLanguage?.name || "unknown", default_branch: repo.defaultBranchRef?.name || "main", private: repo.isPrivate || undefined, track: { branches: [repo.defaultBranchRef?.name || "main"], tags: { pattern: "v*", latest: 5 }, }, extractors, }; if (looksLikeTest) { config.enabled = false; } return config; } async function loadConfigFile(): Promise<Config> { try { const existing = await fs.readFile(CONFIG_PATH, "utf-8"); return YAML.parse(existing) as Config; } catch { return { version: "1.0", cache_dir: ".repo-cache", knowledge_dir: "knowledge/extracted", diagram_styles: { frontend: "#4CAF50", backend: "#FF9800", infrastructure: "#607D8B", library: "#00BCD4", test: "#9E9E9E", unknown: "#9E9E9E", }, repositories: {}, }; } } async function saveConfigFile(config: Config): Promise<void> { await fs.writeFile(CONFIG_PATH, YAML.stringify(config)); } /** * Fetch repos from GitHub using gh CLI (async via spawn) */ function fetchGHRepos(org: string): Promise<GHRepo[]> { return new Promise((resolve, reject) => { const args = [ "repo", "list", org, "--limit", "1000", "--json", "name,description,sshUrl,defaultBranchRef,primaryLanguage,isPrivate,isFork,isArchived", ]; const proc = spawn("gh", args); let stdout = ""; let stderr = ""; proc.stdout.on("data", (data) => { stdout += data.toString(); }); proc.stderr.on("data", (data) => { stderr += data.toString(); }); proc.on("close", (code) => { if (code !== 0) { if (stderr.includes("not logged in")) { reject(new Error("Not logged in to GitHub CLI. Run 'gh auth login' first.")); } else if (stderr.includes("Could not resolve")) { reject(new Error(`Organization '${org}' not found or not accessible.`)); } else { reject(new Error(`gh command failed: ${stderr || "Unknown error"}`)); } return; } try { const repos = JSON.parse(stdout) as GHRepo[]; resolve(repos); } catch { reject(new Error(`Failed to parse gh output: ${stdout.slice(0, 200)}`)); } }); proc.on("error", (err) => { reject(new Error(`Failed to spawn gh: ${err.message}`)); }); }); } interface ConnectOrgOptions { org: string; includeForks: boolean; includeArchived: boolean; includeNips: boolean; filterPattern?: string; excludePattern?: string; } /** * Core logic for connecting an org - runs as background job */ async function runConnectOrg(job: Job, options: ConnectOrgOptions): Promise<void> { const { org, includeForks, includeArchived, includeNips, filterPattern, excludePattern } = options; try { updateJob(job.id, { status: "running", progress: { current: 0, total: 5, message: "Fetching repos from GitHub..." }, }); // Step 1: Fetch repos let repos: GHRepo[]; try { repos = await fetchGHRepos(org); } catch (error) { updateJob(job.id, { status: "failed", error: (error as Error).message, completedAt: new Date(), }); return; } const initialCount = repos.length; updateJob(job.id, { progress: { current: 1, total: 5, message: `Fetched ${initialCount} repos, filtering...` }, }); // Step 2: Apply filters const ORG_META_REPOS = [".github", "profile", ".github-private"]; const filter = filterPattern ? new RegExp(filterPattern) : undefined; const exclude = excludePattern ? new RegExp(excludePattern) : undefined; repos = repos.filter((repo) => { if (!includeForks && repo.isFork) return false; if (!includeArchived && repo.isArchived) return false; if (ORG_META_REPOS.includes(repo.name)) return false; if (filter && !filter.test(repo.name)) return false; if (exclude && exclude.test(repo.name)) return false; return true; }); updateJob(job.id, { progress: { current: 2, total: 5, message: `${repos.length} repos after filters, clearing old data...` }, }); // Step 3: Clear existing data and update config const config = await loadConfigFile(); // Clear all existing repos - connect_org gives a fresh start const removed = Object.keys(config.repositories).length; // Clear extracted knowledge for all repos const store = await getStore(); const deletedKnowledge = await store.deleteAll(); config.repositories = {}; // Add repos let added = 0; let disabled = 0; for (const repo of repos) { const repoConfig = buildRepoConfig(repo, { includeNips }); config.repositories[repo.name] = repoConfig; added++; if (repoConfig.enabled === false) { disabled++; } } updateJob(job.id, { progress: { current: 3, total: 5, message: "Saving config..." }, }); // Step 4: Save config await saveConfigFile(config); clearConfigCache(); // Step 5: Extract knowledge from all enabled repos (in parallel) const enabledRepos = repos.filter((r) => { const repoConfig = config.repositories[r.name]; return repoConfig && repoConfig.enabled !== false; }); const gm = await getGitManager(); const extractionResults: Array<{ repo: string; ref: string; status: string; extractors?: string[]; error?: string; }> = []; // Track progress for parallel extraction let completedCount = 0; let failedCount = 0; const activeRepos = new Map<string, { startedAt: Date; status: string }>(); const limit = pLimit(REPO_CONCURRENCY); const updateProgress = () => { const active = Array.from(activeRepos.entries()).map(([name, info]) => ({ name, status: info.status, startedAt: info.startedAt.toISOString(), })); updateJob(job.id, { progress: { current: 4, total: 5, message: `Extracting repos (${REPO_CONCURRENCY} concurrent)...`, active, completed: completedCount, failed: failedCount, }, }); }; updateProgress(); // Extract repos in parallel with concurrency limit const extractRepo = async (repo: GHRepo) => { const repoConfig = config.repositories[repo.name]; const ref = repoConfig.default_branch || "main"; // Track this repo as active activeRepos.set(repo.name, { startedAt: new Date(), status: "cloning" }); updateProgress(); try { // Use shallow clone for faster initial setup (we only need current state) const repoPath = await gm.ensureRepo(repo.name, repoConfig.url, { shallow: true }); activeRepos.set(repo.name, { startedAt: activeRepos.get(repo.name)!.startedAt, status: "analyzing" }); updateProgress(); const files = await gm.listFilesAtRef(repoPath, ref); // Auto-detect and add extractors based on actual file contents let extractors = [...repoConfig.extractors]; // Auto-detect monorepo const hasMonorepoExtractor = extractors.some((e) => e.name === "monorepo"); if (!hasMonorepoExtractor) { const isMonorepo = files.some( (f) => f === "turbo.json" || f === "pnpm-workspace.yaml" || f === "nx.json" || f === "lerna.json" ); if (isMonorepo) { extractors = [{ name: "monorepo" }, ...extractors]; } } // Auto-detect Terraform files const hasTerraformExtractor = extractors.some((e) => e.name === "terraform"); if (!hasTerraformExtractor) { const hasTerraform = files.some( (f) => f.endsWith(".tf") || f.endsWith(".tfvars") || f.includes("terraform") ); if (hasTerraform) { extractors.push({ name: "terraform" }); } } // Auto-detect Kubernetes manifests const hasKubernetesExtractor = extractors.some((e) => e.name === "kubernetes"); if (!hasKubernetesExtractor) { const hasK8s = files.some( (f) => f.includes("k8s/") || f.includes("kubernetes/") || f.includes("kube/") || f.includes("manifests/") || f.includes("helm/") || f.includes("charts/") || (f.endsWith(".yaml") && (f.includes("deploy") || f.includes("service") || f.includes("ingress"))) ); if (hasK8s) { extractors.push({ name: "kubernetes" }); } } // Auto-detect Cloudflare Workers const hasCloudflareWorkersExtractor = extractors.some((e) => e.name === "cloudflare_workers"); if (!hasCloudflareWorkersExtractor) { const hasWorkers = files.some((f) => f === "wrangler.toml" || f.endsWith("/wrangler.toml")); if (hasWorkers) { extractors.push({ name: "cloudflare_workers" }); } } activeRepos.set(repo.name, { startedAt: activeRepos.get(repo.name)!.startedAt, status: `extracting (${extractors.length} extractors)` }); updateProgress(); const extractResults = await runExtractors( { repoName: repo.name, repoPath, ref, refType: "branch", gitManager: gm }, extractors ); await store.save(repo.name, "branch", ref, extractResults); // Mark as complete activeRepos.delete(repo.name); completedCount++; updateProgress(); return { repo: repo.name, ref, status: "extracted" as const, extractors: extractResults.map((r) => r.extractor), }; } catch (error) { activeRepos.delete(repo.name); completedCount++; failedCount++; updateProgress(); return { repo: repo.name, ref, status: "error" as const, error: String(error), }; } }; // Run all extractions in parallel with limit const results = await Promise.all( enabledRepos.map((repo) => limit(() => extractRepo(repo))) ); extractionResults.push(...results); const extracted = extractionResults.filter((r) => r.status === "extracted").length; const errors = extractionResults.filter((r) => r.status === "error").length; updateJob(job.id, { status: "completed", progress: { current: 5, total: 5, message: "Done" }, result: { org, summary: { fetched: initialCount, afterFilters: repos.length, removed, removedKnowledge: deletedKnowledge, added, autoDisabled: disabled, totalRepos: Object.keys(config.repositories).length, extracted, extractionErrors: errors, }, message: `Connected ${org}! Removed ${removed} old repos, added ${added} new (${disabled} disabled). Extracted ${extracted}/${enabledRepos.length} repos.${errors > 0 ? ` ${errors} errors.` : ""}`, extraction: extractionResults, nextSteps: [ "Use list_repos to see all connected repositories", "Use generate_diagram to visualize the architecture", ], }, completedAt: new Date(), }); } catch (error) { updateJob(job.id, { status: "failed", error: (error as Error).message, completedAt: new Date(), }); } } export const orgTools: ToolHandler[] = [ { name: "connect_org", description: "Connect a GitHub organization - fetches all repos, clears existing config and knowledge, then extracts knowledge from all enabled repos. Runs as a background job; use job_status to check progress. Requires GitHub CLI (gh) to be authenticated.", schema: { type: "object", properties: { org: { type: "string", description: "GitHub organization name", }, include_forks: { type: "boolean", description: "Include forked repositories (default: false)", }, include_archived: { type: "boolean", description: "Include archived repositories (default: false)", }, filter: { type: "string", description: "Regex pattern to filter repo names (only include matching)", }, exclude: { type: "string", description: "Regex pattern to exclude repo names", }, }, required: ["org"], }, handler: async (args) => { const org = args.org as string; // Validate organization name if (!isValidOrgName(org)) { return safeJson({ error: "Invalid organization name", message: "GitHub organization names must be 1-39 characters, containing only alphanumeric characters and hyphens, and cannot start or end with a hyphen.", }); } const includeForks = Boolean(args.include_forks) || false; const includeArchived = Boolean(args.include_archived) || false; const includeNips = false; const filterPattern = args.filter as string | undefined; const excludePattern = args.exclude as string | undefined; // Validate regex patterns if provided if (filterPattern && !isValidRegex(filterPattern)) { return safeJson({ error: "Invalid filter pattern", message: "The filter pattern is not a valid regular expression. Please check the syntax.", }); } if (excludePattern && !isValidRegex(excludePattern)) { return safeJson({ error: "Invalid exclude pattern", message: "The exclude pattern is not a valid regular expression. Please check the syntax.", }); } // Create background job const job = createJob(`connect_org:${org}`); // Start the work in the background (don't await) runConnectOrg(job, { org, includeForks, includeArchived, includeNips, filterPattern, excludePattern, }); return safeJson({ status: "started", jobId: job.id, message: `Background job started for connecting ${org}. Use job_status(jobId: "${job.id}") to check progress.`, }); }, }, { name: "job_status", description: "Check the status of a background job, or list all recent jobs if no jobId provided.", schema: { type: "object", properties: { jobId: { type: "string", description: "Job ID to check. If omitted, lists all recent jobs.", }, }, }, handler: async (args) => { const jobId = args.jobId as string | undefined; if (jobId) { // Validate jobId format (UUID-like or reasonable string) if (typeof jobId !== "string" || jobId.length === 0 || jobId.length > 100) { return safeJson({ error: "Invalid job ID", message: "Job ID must be a non-empty string (max 100 characters).", }); } const job = getJob(jobId); if (!job) { return safeJson({ error: `Job "${jobId}" not found`, activeJobs: listActiveJobs().map((j) => ({ id: j.id, type: j.type, status: j.status })), }); } return safeJson({ id: job.id, type: job.type, status: job.status, progress: job.progress, result: job.result, error: job.error, startedAt: job.startedAt.toISOString(), completedAt: job.completedAt?.toISOString(), duration: job.completedAt ? `${((job.completedAt.getTime() - job.startedAt.getTime()) / 1000).toFixed(1)}s` : undefined, }); } // List all jobs const jobs = listJobs(); return safeJson({ jobs: jobs.map((j) => ({ id: j.id, type: j.type, status: j.status, progress: j.progress?.message, startedAt: j.startedAt.toISOString(), completedAt: j.completedAt?.toISOString(), })), activeCount: listActiveJobs().length, }); }, }, { name: "disconnect_repo", description: "Remove a repository from the config", schema: { type: "object", properties: { repo: { type: "string", description: "Repository name to remove", }, }, required: ["repo"], }, handler: async (args) => { const repoName = args.repo as string; // Validate repo name format if (!isValidRepoName(repoName)) { return safeJson({ error: "Invalid repository name", message: "Repository names must be 1-100 characters containing only alphanumeric characters, hyphens, underscores, and dots.", }); } try { const config = await loadConfigFile(); if (!config.repositories[repoName]) { return safeJson({ error: `Repository "${repoName}" not found in config`, availableRepos: Object.keys(config.repositories).slice(0, 20), // Limit to 20 to avoid huge responses }); } delete config.repositories[repoName]; await saveConfigFile(config); clearConfigCache(); return safeJson({ status: "disconnected", repo: repoName, remainingRepos: Object.keys(config.repositories).length, }); } catch (error) { return safeJson({ error: "Failed to disconnect repository", message: error instanceof Error ? error.message : String(error), }); } }, }, { name: "toggle_repo", description: "Enable or disable a repository", schema: { type: "object", properties: { repo: { type: "string", description: "Repository name", }, enabled: { type: "boolean", description: "true to enable, false to disable", }, }, required: ["repo", "enabled"], }, handler: async (args) => { const repoName = args.repo as string; const enabled = args.enabled; // Validate repo name format if (!isValidRepoName(repoName)) { return safeJson({ error: "Invalid repository name", message: "Repository names must be 1-100 characters containing only alphanumeric characters, hyphens, underscores, and dots.", }); } // Validate enabled is a boolean if (typeof enabled !== "boolean") { return safeJson({ error: "Invalid enabled value", message: "The 'enabled' parameter must be a boolean (true or false).", }); } try { const config = await loadConfigFile(); if (!config.repositories[repoName]) { return safeJson({ error: `Repository "${repoName}" not found in config`, availableRepos: Object.keys(config.repositories).slice(0, 20), // Limit to 20 }); } if (enabled) { delete config.repositories[repoName].enabled; } else { config.repositories[repoName].enabled = false; } await saveConfigFile(config); clearConfigCache(); return safeJson({ status: enabled ? "enabled" : "disabled", repo: repoName, }); } catch (error) { return safeJson({ error: "Failed to toggle repository", message: error instanceof Error ? error.message : String(error), }); } }, }, ];

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/irab/orgbrain'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

org.ts•25.9 kB