formating and linting

mrachidi · mrachidi · commit 30cd97271397 · 2025-05-22T21:35:55.000-04:00
diff --git a/mcp_simple_tool/server.py b/mcp_simple_tool/server.py
@@ -34,13 +34,6 @@ def main(port: int, transport: str) -> int:
         "associated weaknesses to help engineers understand security implications."
     )
 
-    package_vuln_description: str = (
-        "Check for known vulnerabilities in a Python package using the OSV "
-        "(Open Source Vulnerabilities) database. Provide a package name from PyPI "
-        "(e.g., 'requests', 'django', 'flask') and optionally a specific version. "
-        "Returns a comprehensive security report including vulnerability details, "
-        "affected versions, severity scores, and remediation guidance."
-    )
 
     epss_description: str = (
         "Get Exploit Prediction Scoring System (EPSS) scores for a CVE to assess "
diff --git a/mcp_simple_tool/tools/cve_lookup.py b/mcp_simple_tool/tools/cve_lookup.py
@@ -219,6 +219,7 @@ async def lookup_cve(
     except Exception as e:
         return [
             types.TextContent(
-                type="text", text=f"Error: Failed to fetch CVE information: {str(e)}"
+                type="text",
+                text=f"Error: Failed to fetch CVE information: {str(e)}",
             )
         ]
diff --git a/mcp_simple_tool/tools/cvss_calculator.py b/mcp_simple_tool/tools/cvss_calculator.py
@@ -239,6 +239,7 @@ async def calculate_cvss_score(
     except Exception as e:
         return [
             types.TextContent(
-                type="text", text=f"Error: Failed to calculate CVSS score: {str(e)}"
+                type="text",
+                text=f"Error: Failed to calculate CVSS score: {str(e)}",
             )
         ]
diff --git a/mcp_simple_tool/tools/epss_lookup.py b/mcp_simple_tool/tools/epss_lookup.py
@@ -41,7 +41,10 @@ async def get_epss_score(
             )
         ]
 
-    headers = {"User-Agent": "MCP EPSS Lookup Tool v1.0", "Accept": "application/json"}
+    headers = {
+        "User-Agent": "MCP EPSS Lookup Tool v1.0",
+        "Accept": "application/json",
+    }
 
     try:
         timeout = httpx.Timeout(15.0, connect=10.0)
@@ -181,12 +184,14 @@ async def get_epss_score(
     except (ValueError, TypeError) as e:
         return [
             types.TextContent(
-                type="text", text=f"Error: Failed to parse EPSS score data: {str(e)}"
+                type="text",
+                text=f"Error: Failed to parse EPSS score data: {str(e)}",
             )
         ]
     except Exception as e:
         return [
             types.TextContent(
-                type="text", text=f"Error: Failed to fetch EPSS information: {str(e)}"
+                type="text",
+                text=f"Error: Failed to fetch EPSS information: {str(e)}",
             )
         ]
diff --git a/mcp_simple_tool/tools/exploit_availability.py b/mcp_simple_tool/tools/exploit_availability.py
@@ -52,7 +52,6 @@ async def get_exploit_availability(
         async with httpx.AsyncClient(
             follow_redirects=True, headers=headers, timeout=timeout
         ) as client:
-
             # Check 1: NIST NVD for CVE references that might indicate exploits
             nvd_url = f"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId={cve_id}"
             try:
@@ -102,7 +101,10 @@ async def get_exploit_availability(
                                 "details": [],
                             }
             except Exception as e:
-                exploit_sources["NVD_References"] = {"status": "ERROR", "error": str(e)}
+                exploit_sources["NVD_References"] = {
+                    "status": "ERROR",
+                    "error": str(e),
+                }
 
             # Check 2: Search CVE Mitre for additional exploit references
             try:
@@ -131,7 +133,10 @@ async def get_exploit_availability(
                             "keywords": [],
                         }
             except Exception as e:
-                exploit_sources["MITRE_Page"] = {"status": "ERROR", "error": str(e)}
+                exploit_sources["MITRE_Page"] = {
+                    "status": "ERROR",
+                    "error": str(e),
+                }
 
             # Check 3: Search GitHub for potential PoCs (indirect check)
             try:
@@ -143,7 +148,10 @@ async def get_exploit_availability(
                     "search_url_poc": f"https://github.com/search?q={cve_id}+poc&type=repositories",
                 }
             except Exception as e:
-                exploit_sources["GitHub_Search"] = {"status": "ERROR", "error": str(e)}
+                exploit_sources["GitHub_Search"] = {
+                    "status": "ERROR",
+                    "error": str(e),
+                }
 
             # Check 4: ExploitDB search guidance (since they don't have a public API)
             exploit_sources["ExploitDB"] = {
diff --git a/mcp_simple_tool/tools/vex_status.py b/mcp_simple_tool/tools/vex_status.py
@@ -61,7 +61,6 @@ async def get_vex_status(
         async with httpx.AsyncClient(
             follow_redirects=True, headers=headers, timeout=timeout
         ) as client:
-
             # Check 1: NVD for vendor statements and VEX-like information
             try:
                 nvd_url = (
@@ -97,7 +96,6 @@ async def get_vex_status(
                                     ]
                                 )
                             ):
-
                                 # Try to determine VEX-like status from URL/tags
                                 status = "under_investigation"  # Default
                                 confidence = "low"
@@ -170,7 +168,8 @@ async def get_vex_status(
     except Exception as e:
         return [
             types.TextContent(
-                type="text", text=f"Error: Failed to check VEX status: {str(e)}"
+                type="text",
+                text=f"Error: Failed to check VEX status: {str(e)}",
             )
         ]
 
@@ -215,9 +214,11 @@ async def get_vex_status(
 
             result += f"**{status_emoji} {status.replace('_', ' ').title()}:** {len(statements)} statement(s)\n"
             for stmt in statements[:3]:  # Show first 3
-                confidence_emoji = {"high": "🔥", "medium": "⚡", "low": "💫"}.get(
-                    stmt["confidence"], "❓"
-                )
+                confidence_emoji = {
+                    "high": "🔥",
+                    "medium": "⚡",
+                    "low": "💫",
+                }.get(stmt["confidence"], "❓")
                 result += f"   • {stmt.get('vendor', 'Unknown')} {confidence_emoji}\n"
                 result += f"     URL: {stmt.get('url', 'N/A')[:80]}...\n"
             if len(statements) > 3:
diff --git a/mcp_simple_tool/tools/vulnerability_search.py b/mcp_simple_tool/tools/vulnerability_search.py
@@ -155,7 +155,8 @@ async def search_vulnerabilities(
                 search_text = " with " + ", ".join(search_desc) if search_desc else ""
                 return [
                     types.TextContent(
-                        type="text", text=f"No vulnerabilities found{search_text}."
+                        type="text",
+                        text=f"No vulnerabilities found{search_text}.",
                     )
                 ]
 
@@ -180,7 +181,7 @@ async def search_vulnerabilities(
                 cve = vuln_data.get("cve", {})
                 cve_id = cve.get("id", "Unknown")
                 published = cve.get("published", "Unknown")
-                last_modified = cve.get("lastModified", "Unknown")
+                cve.get("lastModified", "Unknown")
 
                 # Get description
                 descriptions = cve.get("descriptions", [])
@@ -200,7 +201,11 @@ async def search_vulnerabilities(
                 severity_emoji = "⚪"
 
                 # Try CVSS 3.1 first, then 3.0, then 2.0
-                for version in ["cvssMetricV31", "cvssMetricV30", "cvssMetricV2"]:
+                for version in [
+                    "cvssMetricV31",
+                    "cvssMetricV30",
+                    "cvssMetricV2",
+                ]:
                     if version in metrics and metrics[version]:
                         metric = metrics[version][0]  # Take first metric
                         cvss_data = metric.get("cvssData", {})
@@ -224,7 +229,7 @@ async def search_vulnerabilities(
                 try:
                     pub_date = datetime.fromisoformat(published.replace("Z", "+00:00"))
                     pub_formatted = pub_date.strftime("%Y-%m-%d")
-                except:
+                except (ValueError, TypeError, AttributeError):
                     pub_formatted = (
                         published[:10] if len(published) >= 10 else published
                     )
@@ -281,6 +286,7 @@ async def search_vulnerabilities(
     except Exception as e:
         return [
             types.TextContent(
-                type="text", text=f"Error: Failed to search vulnerabilities: {str(e)}"
+                type="text",
+                text=f"Error: Failed to search vulnerabilities: {str(e)}",
             )
         ]
diff --git a/mcp_simple_tool/tools/vulnerability_timeline.py b/mcp_simple_tool/tools/vulnerability_timeline.py
@@ -27,12 +27,12 @@ def parse_date(date_str: str) -> Optional[datetime]:
             return datetime.fromisoformat(date_str.split("T")[0])
         else:
             return datetime.fromisoformat(date_str)
-    except:
+    except (ValueError, TypeError):
         # Try other common formats
         for fmt in ["%Y-%m-%d", "%Y/%m/%d", "%m/%d/%Y", "%d/%m/%Y"]:
             try:
                 return datetime.strptime(date_str, fmt)
-            except:
+            except (ValueError, TypeError):
                 continue
     return None
 
@@ -75,7 +75,6 @@ async def get_vulnerability_timeline(
         async with httpx.AsyncClient(
             follow_redirects=True, headers=headers, timeout=timeout
         ) as client:
-
             # Get comprehensive CVE data from NVD
             nvd_url = f"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId={cve_id}"
             try:
diff --git a/pyproject.toml b/pyproject.toml
@@ -24,7 +24,12 @@ dependencies = ["anyio>=4.5", "click>=8.1.0", "httpx>=0.27", "mcp"]
 mcp-simple-tool = "mcp_simple_tool.server:main"
 
 [project.optional-dependencies]
-dev = ["pyright>=1.1.378", "pytest>=8.3.3", "ruff>=0.6.9", "pytest-asyncio>=0.23.5", "black>=24.0.0"]
+dev = ["pyright>=1.1.378", 
+"pytest>=8.3.3", 
+"ruff>=0.6.9", 
+"pytest-asyncio>=0.23.5", 
+"black>=24.0.0", 
+"h11==0.14.0"]
 
 [build-system]
 requires = ["hatchling"]
@@ -40,7 +45,7 @@ venv = ".venv"
 
 [tool.ruff.lint]
 select = ["E", "F", "I"]
-ignore = []
+ignore = ["E501"]
 
 [tool.ruff]
 line-length = 88
diff --git a/tests/run_tests.py b/tests/run_tests.py
@@ -20,7 +20,10 @@ def run_test_script(script_name: str) -> bool:
         print("=" * 60)
 
         result = subprocess.run(
-            [sys.executable, os.path.join(os.path.dirname(__file__), script_name)],
+            [
+                sys.executable,
+                os.path.join(os.path.dirname(__file__), script_name),
+            ],
             capture_output=True,
             text=True,
             timeout=30,
diff --git a/tests/test_all_tools.py b/tests/test_all_tools.py
@@ -19,7 +19,9 @@
 from mcp_simple_tool.tools.exploit_availability import get_exploit_availability
 from mcp_simple_tool.tools.vex_status import get_vex_status
 from mcp_simple_tool.tools.vulnerability_search import search_vulnerabilities
-from mcp_simple_tool.tools.vulnerability_timeline import get_vulnerability_timeline
+from mcp_simple_tool.tools.vulnerability_timeline import (
+    get_vulnerability_timeline,
+)
 
 
 @pytest.mark.asyncio
diff --git a/tests/test_cvss.py b/tests/test_cvss.py
@@ -37,7 +37,7 @@ async def test_cvss():
     ]
 
     for vector, description in test_vectors:
-        print(f"\n{'='*60}")
+        print(f"\n{'=' * 60}")
         print(f"Testing: {description}")
         print(f"Vector: {vector}")
         print("=" * 60)
diff --git a/tests/test_package_vulnerability.py b/tests/test_package_vulnerability.py
@@ -12,7 +12,9 @@
 # Add parent directory to path so we can import mcp_simple_tool
 sys.path.append(str(Path(__file__).parent.parent))
 
-from mcp_simple_tool.tools.package_vulnerability import check_package_vulnerabilities
+from mcp_simple_tool.tools.package_vulnerability import (
+    check_package_vulnerabilities,
+)
 
 
 @pytest.mark.asyncio
diff --git a/tests/test_timeline.py b/tests/test_timeline.py
@@ -10,7 +10,9 @@
 # Add parent directory to path so we can import mcp_simple_tool
 sys.path.append(str(Path(__file__).parent.parent))
 
-from mcp_simple_tool.tools.vulnerability_timeline import get_vulnerability_timeline
+from mcp_simple_tool.tools.vulnerability_timeline import (
+    get_vulnerability_timeline,
+)
 
 
 @pytest.mark.asyncio
diff --git a/tests/test_vulnerability_intelligence.py b/tests/test_vulnerability_intelligence.py
@@ -20,7 +20,9 @@
 from mcp_simple_tool.tools.exploit_availability import get_exploit_availability
 from mcp_simple_tool.tools.vex_status import get_vex_status
 from mcp_simple_tool.tools.vulnerability_search import search_vulnerabilities
-from mcp_simple_tool.tools.vulnerability_timeline import get_vulnerability_timeline
+from mcp_simple_tool.tools.vulnerability_timeline import (
+    get_vulnerability_timeline,
+)
 
 
 class TestVulnerabilityIntelligence:
diff --git a/uv.lock b/uv.lock

Original file line number	Diff line number	Diff line change
`@@ -219,6 +219,7 @@ async def lookup_cve(`
`219`	`219`	`except Exception as e:`
`220`	`220`	`return [`
`221`	`221`	`types.TextContent(`
`222`		`- type="text", text=f"Error: Failed to fetch CVE information: {str(e)}"`
	`222`	`+ type="text",`
	`223`	`+ text=f"Error: Failed to fetch CVE information: {str(e)}",`
`223`	`224`	`)`
`224`	`225`	`]`
Original file line number	Diff line number	Diff line change
`@@ -239,6 +239,7 @@ async def calculate_cvss_score(`
`239`	`239`	`except Exception as e:`
`240`	`240`	`return [`
`241`	`241`	`types.TextContent(`
`242`		`- type="text", text=f"Error: Failed to calculate CVSS score: {str(e)}"`
	`242`	`+ type="text",`
	`243`	`+ text=f"Error: Failed to calculate CVSS score: {str(e)}",`
`243`	`244`	`)`
`244`	`245`	`]`
Original file line number	Diff line number	Diff line change
`@@ -41,7 +41,10 @@ async def get_epss_score(`
`41`	`41`	`)`
`42`	`42`	`]`
`43`	`43`
`44`		`- headers = {"User-Agent": "MCP EPSS Lookup Tool v1.0", "Accept": "application/json"}`
	`44`	`+ headers = {`
	`45`	`+ "User-Agent": "MCP EPSS Lookup Tool v1.0",`
	`46`	`+ "Accept": "application/json",`
	`47`	`+ }`
`45`	`48`
`46`	`49`	`try:`
`47`	`50`	`timeout = httpx.Timeout(15.0, connect=10.0)`
`@@ -181,12 +184,14 @@ async def get_epss_score(`
`181`	`184`	`except (ValueError, TypeError) as e:`
`182`	`185`	`return [`
`183`	`186`	`types.TextContent(`
`184`		`- type="text", text=f"Error: Failed to parse EPSS score data: {str(e)}"`
	`187`	`+ type="text",`
	`188`	`+ text=f"Error: Failed to parse EPSS score data: {str(e)}",`
`185`	`189`	`)`
`186`	`190`	`]`
`187`	`191`	`except Exception as e:`
`188`	`192`	`return [`
`189`	`193`	`types.TextContent(`
`190`		`- type="text", text=f"Error: Failed to fetch EPSS information: {str(e)}"`
	`194`	`+ type="text",`
	`195`	`+ text=f"Error: Failed to fetch EPSS information: {str(e)}",`
`191`	`196`	`)`
`192`	`197`	`]`