nab 0.7.1

Token-optimized HTTP client for LLMs — fetches any URL as clean markdown
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231

#![allow(dead_code)]

//! Roots helper — server-side plumbing to query `roots/list`.
//!
//! "Roots" is a CLIENT capability per MCP 2025-11-25: the client advertises
//! which `file://` URIs it has access to, and the server SHOULD respect them
//! (e.g., not write files outside these roots).
//!
//! This module provides:
//! - [`list_roots`]: query `roots/list` from the client.
//! - [`validate_path_in_roots`]: check whether a filesystem path falls under
//!   at least one advertised root.
//! - [`RootsCache`]: a session-lifetime in-memory cache that can be refreshed
//!   when the client sends `notifications/roots/list_changed`.
//!
//! Actual integration with `fetch --save-to` and `analyze file://` paths is
//! deferred to Phase 3.  This module is wired in but not yet called from tool
//! handlers.
//!
//! # Caching
//!
//! Roots change rarely (typically once at session start).  We cache the last
//! result in an `Arc<RwLock<...>>` and expose [`RootsCache::refresh`] so the
//! `notifications/roots/list_changed` handler can invalidate it.

use std::path::{Path, PathBuf};
use std::sync::Arc;

use rust_mcp_sdk::McpServer;
use rust_mcp_sdk::schema::Root;
use tokio::sync::RwLock;

// ─── Public helpers ───────────────────────────────────────────────────────────

/// Query the client for its current roots list.
///
/// Returns an empty `Vec` when the client does not support roots or when the
/// request fails, so callers can always treat "no roots" as "unconstrained".
pub(crate) async fn list_roots(runtime: &Arc<dyn McpServer>) -> anyhow::Result<Vec<Root>> {
    if !runtime.client_supports_root_list().unwrap_or(false) {
        return Ok(vec![]);
    }
    let result = runtime
        .request_root_list(None)
        .await
        .map_err(|e| anyhow::anyhow!("roots/list request failed: {e}"))?;
    Ok(result.roots)
}

/// Return `true` when `path` is under at least one of the advertised roots,
/// or when `roots` is empty (meaning the client is unconstrained).
///
/// Root URIs are expected to be `file://` URIs per the MCP spec.
pub(crate) fn validate_path_in_roots(path: &Path, roots: &[Root]) -> bool {
    if roots.is_empty() {
        // No roots advertised → server is unconstrained (backward compat).
        return true;
    }
    roots.iter().any(|root| path_is_under_root(path, &root.uri))
}

// ─── RootsCache ───────────────────────────────────────────────────────────────

/// Session-scoped cache for `roots/list` results.
///
/// Thread-safe via `Arc<RwLock>`.  Refresh on `notifications/roots/list_changed`.
#[derive(Clone)]
pub(crate) struct RootsCache {
    inner: Arc<RwLock<Vec<Root>>>,
}

impl RootsCache {
    /// Create an empty cache.
    pub(crate) fn new() -> Self {
        Self {
            inner: Arc::new(RwLock::new(vec![])),
        }
    }

    /// Fetch the current roots from the client and store them.
    ///
    /// Called once at session start and again on `notifications/roots/list_changed`.
    pub(crate) async fn refresh(&self, runtime: &Arc<dyn McpServer>) {
        match list_roots(runtime).await {
            Ok(roots) => {
                *self.inner.write().await = roots;
            }
            Err(e) => {
                tracing::warn!("Failed to refresh roots cache: {e}");
            }
        }
    }

    /// Return a snapshot of the cached roots.
    pub(crate) async fn get(&self) -> Vec<Root> {
        self.inner.read().await.clone()
    }

    /// Check whether `path` is valid under the cached roots.
    ///
    /// Convenience wrapper around [`validate_path_in_roots`].
    pub(crate) async fn is_path_valid(&self, path: &Path) -> bool {
        let roots = self.get().await;
        validate_path_in_roots(path, &roots)
    }
}

// ─── Internal helpers ─────────────────────────────────────────────────────────

/// Return `true` when `path` falls under the root identified by `root_uri`.
///
/// `root_uri` is expected to be a `file://` URI.  Paths are compared after
/// stripping the `file://` prefix and normalising to a [`PathBuf`].
fn path_is_under_root(path: &Path, root_uri: &str) -> bool {
    file_uri_to_path(root_uri).is_some_and(|root_path| path.starts_with(&root_path))
}

/// Parse a `file://` URI into a `PathBuf`.
///
/// Returns `None` for non-`file://` URIs or malformed input.
fn file_uri_to_path(uri: &str) -> Option<PathBuf> {
    uri.strip_prefix("file://").map(PathBuf::from)
}

// ─── Tests ────────────────────────────────────────────────────────────────────

#[cfg(test)]
mod tests {
    use super::*;
    use rust_mcp_sdk::schema::Root;

    fn root(uri: &str) -> Root {
        Root {
            uri: uri.to_string(),
            name: None,
            meta: None,
        }
    }

    // ── file_uri_to_path ──────────────────────────────────────────────────────

    #[test]
    fn file_uri_to_path_strips_prefix() {
        // GIVEN a file:// URI
        let path = file_uri_to_path("file:///home/user/projects");
        // THEN it produces the correct PathBuf
        assert_eq!(path, Some(PathBuf::from("/home/user/projects")));
    }

    #[test]
    fn file_uri_to_path_returns_none_for_non_file() {
        // GIVEN a non-file URI
        let path = file_uri_to_path("https://example.com");
        // THEN None is returned
        assert!(path.is_none());
    }

    // ── validate_path_in_roots ────────────────────────────────────────────────

    #[test]
    fn validate_path_true_when_roots_empty() {
        // GIVEN no roots (unconstrained)
        let roots: Vec<Root> = vec![];
        // THEN any path is valid
        assert!(validate_path_in_roots(Path::new("/anywhere"), &roots));
    }

    #[test]
    fn validate_path_true_when_path_under_root() {
        // GIVEN a root at /home/user/projects
        let roots = vec![root("file:///home/user/projects")];
        // WHEN checking a path under that root
        let path = Path::new("/home/user/projects/my-app/src/main.rs");
        // THEN valid
        assert!(validate_path_in_roots(path, &roots));
    }

    #[test]
    fn validate_path_false_when_path_outside_all_roots() {
        // GIVEN roots that do not include /tmp
        let roots = vec![
            root("file:///home/user/projects"),
            root("file:///home/user/docs"),
        ];
        // WHEN checking /tmp/evil
        let path = Path::new("/tmp/evil");
        // THEN invalid
        assert!(!validate_path_in_roots(path, &roots));
    }

    #[test]
    fn validate_path_true_when_any_root_matches() {
        // GIVEN two roots, second one matches
        let roots = vec![
            root("file:///home/user/projects"),
            root("file:///home/user/docs"),
        ];
        let path = Path::new("/home/user/docs/report.pdf");
        assert!(validate_path_in_roots(path, &roots));
    }

    #[test]
    fn validate_path_false_for_prefix_that_is_not_ancestor() {
        // GIVEN root /home/user/project (without trailing slash)
        // Path /home/user/project-evil should NOT match
        let roots = vec![root("file:///home/user/project")];
        let path = Path::new("/home/user/project-evil/file.rs");
        // PathBuf::starts_with checks component boundaries, so this is false
        assert!(!validate_path_in_roots(path, &roots));
    }

    // ── RootsCache ────────────────────────────────────────────────────────────

    #[tokio::test]
    async fn roots_cache_starts_empty() {
        // GIVEN a fresh cache
        let cache = RootsCache::new();
        // WHEN queried before any refresh
        let roots = cache.get().await;
        // THEN empty
        assert!(roots.is_empty());
    }

    #[tokio::test]
    async fn roots_cache_is_path_valid_true_when_empty() {
        // GIVEN an empty cache (no roots constraint)
        let cache = RootsCache::new();
        // THEN any path is valid
        assert!(cache.is_path_valid(Path::new("/anywhere")).await);
    }
}