rover-fetch 0.3.0

An MCP server for fetching and prepping web content for LLM agents.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122

//! Bot-protection challenge detection.
//!
//! Edge providers (Vercel, Cloudflare, …) front origins with managed
//! "challenge" responses: instead of the page, they return a small interstitial
//! plus a marker header, asking the client to execute a JavaScript proof-of-work
//! / browser-integrity check before being let through. A plain HTTP client
//! (reqwest) can never satisfy that — it has no JS engine — so retrying the same
//! request is pointless and just burns the backoff budget.
//!
//! We detect these by their definitive response headers (not status codes, which
//! vary: Vercel uses 429, Cloudflare 403/503). A detected challenge is surfaced
//! as [`crate::fetcher::FetcherError::BotChallenge`], which the retry layer
//! treats as fatal (no retries) and the Auto-mode fetcher can hand to the
//! headless renderer — a real browser *can* solve the challenge.

/// A recognized bot-protection provider presenting a managed challenge.
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
pub enum ChallengeKind {
    /// Vercel "Attack Challenge Mode" / managed challenge
    /// (`x-vercel-mitigated: challenge`).
    Vercel,
    /// Cloudflare managed/interactive challenge (`cf-mitigated: challenge`).
    Cloudflare,
}

impl ChallengeKind {
    /// Human-readable provider name for error messages.
    pub fn provider(self) -> &'static str {
        match self {
            ChallengeKind::Vercel => "Vercel",
            ChallengeKind::Cloudflare => "Cloudflare",
        }
    }
}

/// Inspect a response's status and headers for a managed bot-challenge marker.
///
/// `headers` is a list of `(name, value)` pairs as captured from the response;
/// names are matched case-insensitively (HTTP header names are case-insensitive
/// and reqwest lower-cases them, but we don't rely on that).
pub fn detect(status: u16, headers: &[(String, String)]) -> Option<ChallengeKind> {
    let header = |name: &str| -> Option<&str> {
        headers
            .iter()
            .find(|(k, _)| k.eq_ignore_ascii_case(name))
            .map(|(_, v)| v.as_str())
    };

    // Vercel: the `x-vercel-mitigated: challenge` header is definitive; the
    // accompanying `x-vercel-challenge-token` is a secondary tell.
    if header("x-vercel-mitigated").is_some_and(|v| v.eq_ignore_ascii_case("challenge"))
        || header("x-vercel-challenge-token").is_some()
    {
        return Some(ChallengeKind::Vercel);
    }

    // Cloudflare: `cf-mitigated: challenge` is the modern definitive marker for
    // a managed/interactive challenge.
    if header("cf-mitigated").is_some_and(|v| v.eq_ignore_ascii_case("challenge")) {
        return Some(ChallengeKind::Cloudflare);
    }

    // Status alone is never sufficient — a bare 429/403 is ordinary
    // rate-limiting / forbidden, which the retry layer handles normally.
    let _ = status;
    None
}

#[cfg(test)]
mod tests {
    use super::*;

    fn h(pairs: &[(&str, &str)]) -> Vec<(String, String)> {
        pairs
            .iter()
            .map(|(k, v)| (k.to_string(), v.to_string()))
            .collect()
    }

    #[test]
    fn detects_vercel_mitigated_header() {
        let headers = h(&[("x-vercel-mitigated", "challenge"), ("server", "Vercel")]);
        assert_eq!(detect(429, &headers), Some(ChallengeKind::Vercel));
    }

    #[test]
    fn detects_vercel_via_challenge_token() {
        let headers = h(&[("x-vercel-challenge-token", "2.1782...")]);
        assert_eq!(detect(429, &headers), Some(ChallengeKind::Vercel));
    }

    #[test]
    fn header_name_match_is_case_insensitive() {
        let headers = h(&[("X-Vercel-Mitigated", "Challenge")]);
        assert_eq!(detect(429, &headers), Some(ChallengeKind::Vercel));
    }

    #[test]
    fn detects_cloudflare_mitigated_header() {
        let headers = h(&[("cf-mitigated", "challenge"), ("server", "cloudflare")]);
        assert_eq!(detect(403, &headers), Some(ChallengeKind::Cloudflare));
    }

    #[test]
    fn plain_429_without_markers_is_not_a_challenge() {
        let headers = h(&[("retry-after", "30"), ("server", "nginx")]);
        assert_eq!(detect(429, &headers), None);
    }

    #[test]
    fn cf_mitigated_non_challenge_value_is_ignored() {
        // Cloudflare also emits `cf-mitigated` for non-challenge mitigations.
        let headers = h(&[("cf-mitigated", "block")]);
        assert_eq!(detect(403, &headers), None);
    }

    #[test]
    fn provider_names() {
        assert_eq!(ChallengeKind::Vercel.provider(), "Vercel");
        assert_eq!(ChallengeKind::Cloudflare.provider(), "Cloudflare");
    }
}