wip

🏠 Remote-Dev: homespace

Author: domdomegg

internal/api/handlers/v0/publish_integration_test.go

@@ -223,15 +223,16 @@ func TestPublishIntegration(t *testing.T) {
 
 	t.Run("publish succeeds with MCPB package", func(t *testing.T) {
 		publishReq := apiv0.ServerJSON{
-			Name:        "com.example/test-server-mcpb",
+			Name:        "io.github.domdomegg/airtable-mcp-server",
 			Description: "A test server with MCPB package",
 			VersionDetail: model.VersionDetail{
-				Version: "1.0.0",
+				Version: "1.7.2",
 			},
+			Status: model.StatusActive,
 			Packages: []model.Package{
 				{
 					RegistryType: model.RegistryTypeMCPB,
-					Identifier:   "https://github.com/example/server/releases/download/v1.0.0/server.tar.gz",
+					Identifier:   "github.com/domdomegg/airtable-mcp-server/releases/download/v1.7.2/airtable-mcp-server.mcpb",
 				},
 			},
 		}

internal/validators/constants.go

@@ -14,14 +14,13 @@ var (
 	ErrInvalidRemoteURL = errors.New("invalid remote URL")
 
 	// Registry validation errors
-	ErrUnsupportedRegistryType      = errors.New("unsupported registry type")
 	ErrUnsupportedRegistryBaseURL   = errors.New("unsupported registry base URL")
 	ErrMismatchedRegistryTypeAndURL = errors.New("registry type and base URL do not match")
 
 	// Argument validation errors
-	ErrNamedArgumentNameRequired    = errors.New("named argument name is required")
-	ErrInvalidNamedArgumentName     = errors.New("invalid named argument name format")
-	ErrArgumentValueStartsWithName  = errors.New("argument value cannot start with the argument name")
+	ErrNamedArgumentNameRequired     = errors.New("named argument name is required")
+	ErrInvalidNamedArgumentName      = errors.New("invalid named argument name format")
+	ErrArgumentValueStartsWithName   = errors.New("argument value cannot start with the argument name")
 	ErrArgumentDefaultStartsWithName = errors.New("argument default cannot start with the argument name")
 )
 

internal/validators/package.go

@@ -8,9 +8,10 @@ import (
 	"github.com/modelcontextprotocol/registry/pkg/model"
 )
 
-// ValidatePackageOwnership validates that the package referenced in the server configuration
-// is owned by the publisher, by checking for a matching server name in the package metadata.
-func ValidatePackageOwnership(ctx context.Context, pkg model.Package, serverName string) error {
+// ValidatePackage validates that the package referenced in the server configuration is:
+// 1. allowed on the official registry (based on registry base url); and
+// 2. owned by the publisher, by checking for a matching server name in the package metadata
+func ValidatePackage(ctx context.Context, pkg model.Package, serverName string) error {
 	switch pkg.RegistryType {
 	case model.RegistryTypeNPM:
 		return registries.ValidateNPM(ctx, pkg, serverName)

internal/validators/registries/mcpb.go

@@ -5,13 +5,31 @@ import (
 	"fmt"
 	"net/http"
 	"net/url"
+	"regexp"
 	"strings"
 	"time"
 
 	"github.com/modelcontextprotocol/registry/pkg/model"
 )
 
 func ValidateMCPB(ctx context.Context, pkg model.Package, _ string) error {
+	err := validateMCPBUrl(pkg.Identifier)
+	if err != nil {
+		return err
+	}
+
+	inferredBaseURL, err := inferMCPBRegistryBaseURL(pkg.Identifier)
+	if err != nil {
+		return err
+	}
+
+	if pkg.RegistryBaseURL == "" {
+		pkg.RegistryBaseURL = inferredBaseURL
+	} else if pkg.RegistryBaseURL != inferredBaseURL {
+		return fmt.Errorf("MCPB package '%s' has inconsistent registry base URL: %s (expected: %s)",
+			pkg.Identifier, pkg.RegistryBaseURL, inferredBaseURL)
+	}
+
 	// Parse the URL to validate format
 	url, err := url.Parse(pkg.Identifier)
 	if err != nil {
@@ -47,3 +65,103 @@ func ValidateMCPB(ctx context.Context, pkg model.Package, _ string) error {
 
 	return nil
 }
+
+func validateMCPBUrl(fullURL string) error {
+	parsedURL, err := url.Parse(fullURL)
+	if err != nil {
+		return fmt.Errorf("invalid MCPB package URL: %w", err)
+	}
+
+	host := strings.ToLower(parsedURL.Host)
+	allowedHosts := []string{
+		"github.com",
+		"www.github.com",
+		"gitlab.com",
+		"www.gitlab.com",
+	}
+
+	isAllowed := false
+	for _, allowed := range allowedHosts {
+		if host == allowed {
+			isAllowed = true
+			break
+		}
+	}
+
+	if !isAllowed {
+		return fmt.Errorf("MCPB packages must be hosted on allowlisted providers (GitHub or GitLab). Host '%s' is not allowed", host)
+	}
+
+	// Validate URL path is a proper release URL with strict structure validation
+	path := parsedURL.Path
+	switch host {
+	case "github.com", "www.github.com":
+		// GitHub release URLs must match: /owner/repo/releases/download/tag/filename
+		if !isValidGitHubReleaseURL(path) {
+			return fmt.Errorf("GitHub MCPB packages must be release assets following the pattern '/owner/repo/releases/download/tag/filename'")
+		}
+	case "gitlab.com", "www.gitlab.com":
+		// GitLab release URLs must match specific patterns
+		if !isValidGitLabReleaseURL(path) {
+			return fmt.Errorf("GitLab MCPB packages must be release assets following patterns '/owner/repo/-/releases/tag/downloads/filename' or '/owner/repo/-/package_files/id/download'")
+		}
+	}
+
+	return nil
+}
+
+// isValidGitHubReleaseURL validates that a path follows the GitHub release asset pattern
+// Pattern: /owner/repo/releases/download/tag/filename
+func isValidGitHubReleaseURL(path string) bool {
+	// GitHub release URL pattern: /owner/repo/releases/download/tag/filename
+	// - owner: username or organization (1-39 chars, alphanumeric + hyphens, no consecutive hyphens)
+	// - repo: repository name (similar rules to owner)
+	// - tag: release tag (can contain various characters but not empty)
+	// - filename: asset filename (not empty)
+	pattern := `^/([a-zA-Z0-9]([a-zA-Z0-9\-]{0,37}[a-zA-Z0-9])?)/([a-zA-Z0-9._\-]+)/releases/download/([^/]+)/([^/]+)$`
+	matched, _ := regexp.MatchString(pattern, path)
+	return matched
+}
+
+// isValidGitLabReleaseURL validates that a path follows GitLab release asset patterns
+func isValidGitLabReleaseURL(path string) bool {
+	// GitLab release URL patterns:
+	// 1. /owner/repo/-/releases/tag/downloads/filename
+	// 2. /owner/repo/-/package_files/id/download
+	// 3. /group/subgroup/repo/-/releases/tag/downloads/filename (nested groups)
+
+	// The key insight is that GitLab URLs have "/-/" as a delimiter that separates the
+	// project path from the GitLab-specific routes. Everything before "/-/" is the project path.
+
+	// Pattern 1: Release downloads with /-/releases/tag/downloads/filename
+	releasePattern := `^/([a-zA-Z0-9._\-]+(?:/[a-zA-Z0-9._\-]+)*)/-/releases/([^/]+)/downloads/([^/]+)$`
+	if matched, _ := regexp.MatchString(releasePattern, path); matched {
+		return true
+	}
+
+	// Pattern 2: Package files with /-/package_files/id/download
+	packagePattern := `^/([a-zA-Z0-9._\-]+(?:/[a-zA-Z0-9._\-]+)*)/-/package_files/([0-9]+)/download$`
+	if matched, _ := regexp.MatchString(packagePattern, path); matched {
+		return true
+	}
+
+	return false
+}
+
+// inferMCPBRegistryBaseURL infers the registry base URL from an MCPB identifier
+func inferMCPBRegistryBaseURL(identifier string) (string, error) {
+	parsedURL, err := url.Parse(identifier)
+	if err != nil {
+		return "", err
+	}
+
+	host := strings.ToLower(parsedURL.Host)
+	switch host {
+	case "github.com", "www.github.com":
+		return model.RegistryURLGitHub, nil
+	case "gitlab.com", "www.gitlab.com":
+		return model.RegistryURLGitLab, nil
+	default:
+		return "", fmt.Errorf("invalid host for MCPB package: %s, expected github or gitlab", host)
+	}
+}

internal/validators/registries/mcpb_test.go

@@ -47,7 +47,7 @@ func TestValidateMCPB(t *testing.T) {
 		},
 		{
 			name:         "invalid URL format should fail",
-			packageName:  "not a valid url for mcpb!",
+			packageName:  "not://a valid url for mcpb!",
 			serverName:   "com.example/test",
 			expectError:  true,
 			errorMessage: "invalid MCPB package URL",

internal/validators/registries/npm.go

@@ -17,14 +17,20 @@ type NPMPackageResponse struct {
 
 // ValidateNPM validates that an NPM package contains the correct MCP server name
 func ValidateNPM(ctx context.Context, pkg model.Package, serverName string) error {
-	baseURL := pkg.RegistryBaseURL
-	if baseURL == "" {
-		baseURL = model.RegistryURLNPM
+	// Set default registry base URL if empty
+	if pkg.RegistryBaseURL == "" {
+		pkg.RegistryBaseURL = model.RegistryURLNPM
+	}
+
+	// Validate that the registry base URL matches NPM exactly
+	if pkg.RegistryBaseURL != model.RegistryURLNPM {
+		return fmt.Errorf("registry type and base URL do not match: '%s' is not valid for registry type '%s'. Expected: %s",
+			pkg.RegistryBaseURL, model.RegistryTypeNPM, model.RegistryURLNPM)
 	}
 
 	client := &http.Client{Timeout: 10 * time.Second}
 
-	url := baseURL + "/" + pkg.Identifier + "/" + pkg.Version
+	url := pkg.RegistryBaseURL + "/" + pkg.Identifier + "/" + pkg.Version
 	req, err := http.NewRequestWithContext(ctx, http.MethodGet, url, nil)
 	if err != nil {
 		return fmt.Errorf("failed to create request: %w", err)

internal/validators/registries/nuget.go

@@ -13,9 +13,15 @@ import (
 
 // ValidateNuGet validates that a NuGet package contains the correct MCP server name
 func ValidateNuGet(ctx context.Context, pkg model.Package, serverName string) error {
-	baseURL := pkg.RegistryBaseURL
-	if baseURL == "" {
-		baseURL = model.RegistryURLNuGet
+	// Set default registry base URL if empty
+	if pkg.RegistryBaseURL == "" {
+		pkg.RegistryBaseURL = model.RegistryURLNuGet
+	}
+
+	// Validate that the registry base URL matches NuGet exactly
+	if pkg.RegistryBaseURL != model.RegistryURLNuGet {
+		return fmt.Errorf("registry type and base URL do not match: '%s' is not valid for registry type '%s'. Expected: %s",
+			pkg.RegistryBaseURL, model.RegistryTypeNuGet, model.RegistryURLNuGet)
 	}
 
 	client := &http.Client{Timeout: 10 * time.Second}
@@ -27,7 +33,7 @@ func ValidateNuGet(ctx context.Context, pkg model.Package, serverName string) er
 	}
 
 	// Try to get README from the package
-	readmeURL := fmt.Sprintf("%s/v3-flatcontainer/%s/%s/readme", baseURL, lowerID, lowerVersion)
+	readmeURL := fmt.Sprintf("%s/v3-flatcontainer/%s/%s/readme", pkg.RegistryBaseURL, lowerID, lowerVersion)
 	req, err := http.NewRequestWithContext(ctx, http.MethodGet, readmeURL, nil)
 	if err != nil {
 		return fmt.Errorf("failed to create request: %w", err)

internal/validators/registries/oci.go

@@ -39,35 +39,33 @@ type OCIImageConfig struct {
 
 // ValidateOCI validates that an OCI image contains the correct MCP server name annotation
 func ValidateOCI(ctx context.Context, pkg model.Package, serverName string) error {
-	client := &http.Client{Timeout: 10 * time.Second}
+	// Set default registry base URL if empty
+	if pkg.RegistryBaseURL == "" {
+		pkg.RegistryBaseURL = model.RegistryURLDocker
+	}
 
-	// Parse image reference (namespace/repo or repo)
-	parts := strings.Split(pkg.Identifier, "/")
-	var namespace, repo string
-	switch len(parts) {
-	case 2:
-		namespace = parts[0]
-		repo = parts[1]
-	case 1:
-		namespace = "library"
-		repo = pkg.Identifier
-	default:
-		return fmt.Errorf("invalid image reference: %s", pkg.Identifier)
+	// Validate that the registry base URL matches OCI/Docker exactly
+	if pkg.RegistryBaseURL != model.RegistryURLDocker {
+		return fmt.Errorf("registry type and base URL do not match: '%s' is not valid for registry type '%s'. Expected: %s",
+			pkg.RegistryBaseURL, model.RegistryTypeOCI, model.RegistryURLDocker)
 	}
 
-	// Get image manifest
-	tag := pkg.Version
-	if tag == "" {
-		tag = "latest"
+	client := &http.Client{Timeout: 10 * time.Second}
+
+	// Parse image reference (namespace/repo or repo)
+	namespace, repo, err := parseImageReference(pkg.Identifier)
+	if err != nil {
+		return fmt.Errorf("invalid OCI image reference: %w", err)
 	}
 
 	apiBaseURL := pkg.RegistryBaseURL
-	if pkg.RegistryBaseURL == model.RegistryURLDocker || pkg.RegistryBaseURL == "" {
+	if pkg.RegistryBaseURL == model.RegistryURLDocker {
 		// docker.io is an exceptional registry that was created before standardisation, so needs a custom API base url
 		// https://github.com/containers/image/blob/5e4845dddd57598eb7afeaa6e0f4c76531bd3c91/docker/docker_client.go#L225-L229
 		apiBaseURL = dockerIoAPIBaseURL
 	}
 
+	tag := pkg.Version
 	manifestURL := fmt.Sprintf("%s/v2/%s/%s/manifests/%s", apiBaseURL, namespace, repo, tag)
 	req, err := http.NewRequestWithContext(ctx, http.MethodGet, manifestURL, nil)
 	if err != nil {
@@ -93,9 +91,12 @@ func ValidateOCI(ctx context.Context, pkg model.Package, serverName string) erro
 	}
 	defer resp.Body.Close()
 
-	if resp.StatusCode != http.StatusOK {
+	if resp.StatusCode == http.StatusNotFound || resp.StatusCode == http.StatusUnauthorized {
 		return fmt.Errorf("OCI image '%s/%s:%s' not found (status: %d)", namespace, repo, tag, resp.StatusCode)
 	}
+	if resp.StatusCode != http.StatusOK {
+		return fmt.Errorf("failed to fetch OCI manifest (status: %d)", resp.StatusCode)
+	}
 
 	var manifest OCIManifest
 	if err := json.NewDecoder(resp.Body).Decode(&manifest); err != nil {
@@ -137,6 +138,18 @@ func ValidateOCI(ctx context.Context, pkg model.Package, serverName string) erro
 	return nil
 }
 
+func parseImageReference(identifier string) (string, string, error) {
+	parts := strings.Split(identifier, "/")
+	switch len(parts) {
+	case 2:
+		return parts[0], parts[1], nil
+	case 1:
+		return "library", parts[0], nil
+	default:
+		return "", "", fmt.Errorf("invalid image reference: %s", identifier)
+	}
+}
+
 // getDockerIoAuthToken retrieves an authentication token from Docker Hub
 func getDockerIoAuthToken(ctx context.Context, client *http.Client, namespace, repo string) (string, error) {
 	authURL := fmt.Sprintf("https://auth.docker.io/token?service=registry.docker.io&scope=repository:%s/%s:pull", namespace, repo)

internal/validators/registries/pypi.go

@@ -20,14 +20,20 @@ type PyPIPackageResponse struct {
 
 // ValidatePyPI validates that a PyPI package contains the correct MCP server name
 func ValidatePyPI(ctx context.Context, pkg model.Package, serverName string) error {
-	baseURL := pkg.RegistryBaseURL
-	if baseURL == "" {
-		baseURL = model.RegistryURLPyPI
+	// Set default registry base URL if empty
+	if pkg.RegistryBaseURL == "" {
+		pkg.RegistryBaseURL = model.RegistryURLPyPI
+	}
+
+	// Validate that the registry base URL matches PyPI exactly
+	if pkg.RegistryBaseURL != model.RegistryURLPyPI {
+		return fmt.Errorf("registry type and base URL do not match: '%s' is not valid for registry type '%s'. Expected: %s",
+			pkg.RegistryBaseURL, model.RegistryTypePyPI, model.RegistryURLPyPI)
 	}
 
 	client := &http.Client{Timeout: 10 * time.Second}
 
-	url := fmt.Sprintf("%s/pypi/%s/json", baseURL, pkg.Identifier)
+	url := fmt.Sprintf("%s/pypi/%s/json", pkg.RegistryBaseURL, pkg.Identifier)
 	req, err := http.NewRequestWithContext(ctx, http.MethodGet, url, nil)
 	if err != nil {
 		return fmt.Errorf("failed to create request: %w", err)