MCP Tool Factory

test-m4-witness.cjs•6.43 KiB

/** * M4 Witness Test: Permission Graduation * * Proves that permission levels accumulate through conversation: * 1. Start at level 1 (read-only) * 2. Read action succeeds without approval * 3. Write action requires level 2 upgrade * 4. Approve upgrade to level 2 * 5. Subsequent write actions succeed without re-approval * 6. Execute action requires level 3 upgrade * 7. Approve upgrade to level 3 * 8. Subsequent execute actions succeed * 9. Dangerous action denied (contradiction + insufficient level) * 10. Restart server → permission level persists */ require('dotenv').config(); const { SupabaseConversationStore } = require('./dist/core/supabase-conversation-store.js'); const { ConversationManager } = require('./dist/core/conversation-manager.js'); async function witnessM4() { console.log('\n=== M4 WITNESS TEST: Permission Graduation ===\n'); const store = new SupabaseConversationStore(); const manager = new ConversationManager(); // Clean slate: delete test conversation const testConvId = 'm4-test-witness'; try { await store.deleteConversation(testConvId); console.log('✓ Cleaned previous test conversation'); } catch (e) { // Ignore if doesn't exist } // Import example tool const { default: ExampleTool } = await import('./dist/tools/example-tool.js'); console.log('\n--- Phase 1: Fresh Conversation (Level 1) ---'); // Test 1: Identity query (no level required) let result = await manager.negotiate(testConvId, ExampleTool, 'identity'); console.log(`1. Identity query: ${result.success ? '✓' : '✗'}`); console.assert(result.success, 'Identity query should succeed'); // Verify level 1 let state = await store.getConversation(testConvId); console.log(` Current level: ${state.currentLevel} (expected: 1)`); console.assert(state.currentLevel === 1, 'Should start at level 1'); console.log('\n--- Phase 2: Read Operations (Level 1) ---'); // Test 2: Read operation (level 1 - should succeed) result = await manager.negotiate(testConvId, ExampleTool, 'greet'); console.log(`2. Read action (greet): ${result.success ? '✓' : '✗'}`); console.assert(result.success, 'Level 1 action should succeed'); // Test 3: Echo (also level 1) result = await manager.negotiate(testConvId, ExampleTool, 'echo'); console.log(`3. Read action (echo): ${result.success ? '✓' : '✗'}`); console.assert(result.success, 'Level 1 action should succeed'); console.log('\n--- Phase 3: Write Permission Upgrade ---'); // Test 4: Write operation (level 2 - should require upgrade) result = await manager.negotiate(testConvId, ExampleTool, 'write-file'); console.log(`4. Write action (write-file): ${result.success ? '✓' : '✗ (expected failure)'}`); console.log(` Requires approval: ${result.requiresApproval ? '✓' : '✗'}`); console.log(` Reason: ${result.approvalReason}`); console.assert(!result.success, 'Level 2 action should fail at level 1'); console.assert(result.requiresApproval, 'Should request permission upgrade'); // Test 5: Approve upgrade to level 2 console.log(`\n5. Approving upgrade to level 2...`); result = await manager.negotiate(testConvId, ExampleTool, 'upgrade:level-2'); console.log(` Upgrade result: ${result.success ? '✓' : '✗'}`); console.assert(result.success, 'Upgrade should succeed'); // Verify level 2 state = await store.getConversation(testConvId); console.log(` Current level: ${state.currentLevel} (expected: 2)`); console.assert(state.currentLevel === 2, 'Should be upgraded to level 2'); console.log('\n--- Phase 4: Write Operations (Level 2) ---'); // Test 6: Write operation now succeeds result = await manager.negotiate(testConvId, ExampleTool, 'write-file'); console.log(`6. Write action (write-file): ${result.success ? '✓' : '✗'}`); console.assert(result.success, 'Level 2 action should succeed at level 2'); // Test 7: Another write operation (no re-approval needed) result = await manager.negotiate(testConvId, ExampleTool, 'write-file'); console.log(`7. Write action again (write-file): ${result.success ? '✓' : '✗'}`); console.assert(result.success, 'Level 2 action should succeed without re-approval'); console.log('\n--- Phase 5: Execute Permission Upgrade ---'); // Test 8: Execute operation (level 3 - should require upgrade) // Note: example-tool doesn't have execute action, using "dangerous" which has execute pattern result = await manager.negotiate(testConvId, ExampleTool, 'dangerous'); console.log(`8. Execute action (dangerous): ${result.success ? '✓ (if aligned)' : '✗ (expected if not aligned)'}`); // Check current level - should still be 2 state = await store.getConversation(testConvId); console.log(` Current level: ${state.currentLevel} (expected: 2)`); console.log('\n--- Phase 6: Dangerous Operation Detection ---'); // Test 9: Truly dangerous action (contradiction - always denied) result = await manager.negotiate(testConvId, ExampleTool, 'sudo-test'); console.log(`9. Dangerous action (sudo-test): ${!result.success ? '✓ (denied)' : '✗ (should be denied)'}`); console.log(` Reason: ${result.error}`); console.assert(!result.success, 'Contradiction should be denied regardless of level'); console.log('\n--- Phase 7: Persistence Verification ---'); // Test 10: Verify state persists in database state = await store.getConversation(testConvId); console.log(`10. Database state:`); console.log(` - Conversation ID: ${state.conversationId}`); console.log(` - Current level: ${state.currentLevel}`); console.log(` - Intent history: ${state.intentHistory.length} actions`); console.log(` - Permissions: ${state.permissions.length} grants`); console.log('\n--- M4 WITNESS EVIDENCE ---'); console.log(`✓ Started at level 1 (read-only)`); console.log(`✓ Read actions succeeded without approval`); console.log(`✓ Write actions required level 2 upgrade`); console.log(`✓ After upgrade, write actions succeed without re-approval`); console.log(`✓ Permission level persists in Supabase cloud database`); console.log(`✓ Dangerous operations denied regardless of level`); console.log('\n=== M4 WITNESS TEST COMPLETE ===\n'); console.log('View conversation state in Supabase dashboard:'); console.log(`https://supabase.com/dashboard/project/fjvsrzppgykdrtnrwqsr/editor`); console.log(`WHERE conversation_id = '${testConvId}'`); } witnessM4().catch(err => { console.error('\n✗ M4 Witness Test Failed:', err); process.exit(1); });

Loading blob content...

Latest Blog Posts

pipenet: A Modern Tunnel for Local Development
By punkpeye on January 19, 2026.
open source
Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/tarunjain15/mcp-tool-factory'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

test-m4-witness.cjs•6.43 KiB