Merge branch 'main' into MCP-188

blva · web-flow · commit 126852aec380 · 2025-09-11T16:31:50.000+01:00
diff --git a/src/tools/mongodb/metadata/logs.ts b/src/tools/mongodb/metadata/logs.ts
@@ -1,6 +1,6 @@
 import type { CallToolResult } from "@modelcontextprotocol/sdk/types.js";
 import { MongoDBToolBase } from "../mongodbTool.js";
-import type { ToolArgs, OperationType } from "../../tool.js";
+import { type ToolArgs, type OperationType, formatUntrustedData } from "../../tool.js";
 import { z } from "zod";
 
 export class LogsTool extends MongoDBToolBase {
@@ -33,23 +33,16 @@ export class LogsTool extends MongoDBToolBase {
             getLog: type,
         });
 
-        const logs = (result.log as string[]).slice(0, limit);
+        // Trim ending newlines so that when we join the logs we don't insert empty lines
+        // between messages.
+        const logs = (result.log as string[]).slice(0, limit).map((l) => l.trimEnd());
 
+        let message = `Found: ${result.totalLinesWritten} messages`;
+        if (result.totalLinesWritten > limit) {
+            message += ` (showing only the first ${limit})`;
+        }
         return {
-            content: [
-                {
-                    text: `Found: ${result.totalLinesWritten} messages`,
-                    type: "text",
-                },
-
-                ...logs.map(
-                    (log) =>
-                        ({
-                            text: log,
-                            type: "text",
-                        }) as const
-                ),
-            ],
+            content: formatUntrustedData(message, logs.join("\n")),
         };
     }
 }
diff --git a/src/tools/mongodb/read/aggregate.ts b/src/tools/mongodb/read/aggregate.ts
@@ -49,16 +49,23 @@ export class AggregateTool extends MongoDBToolBase {
     }
 
     private assertOnlyUsesPermittedStages(pipeline: Record<string, unknown>[]): void {
-        if (!this.config.readOnly) {
+        const writeOperations: OperationType[] = ["update", "create", "delete"];
+        let writeStageForbiddenError = "";
+
+        if (this.config.readOnly) {
+            writeStageForbiddenError = "In readOnly mode you can not run pipelines with $out or $merge stages.";
+        } else if (this.config.disabledTools.some((t) => writeOperations.includes(t as OperationType))) {
+            writeStageForbiddenError =
+                "When 'create', 'update', or 'delete' operations are disabled, you can not run pipelines with $out or $merge stages.";
+        }
+
+        if (!writeStageForbiddenError) {
             return;
         }
 
         for (const stage of pipeline) {
             if (stage.$out || stage.$merge) {
-                throw new MongoDBError(
-                    ErrorCodes.ForbiddenWriteOperation,
-                    "In readOnly mode you can not run pipelines with $out or $merge stages."
-                );
+                throw new MongoDBError(ErrorCodes.ForbiddenWriteOperation, writeStageForbiddenError);
             }
         }
     }
diff --git a/tests/integration/tools/mongodb/metadata/logs.test.ts b/tests/integration/tools/mongodb/metadata/logs.test.ts
@@ -1,5 +1,10 @@
 import { expect, it } from "vitest";
-import { validateToolMetadata, validateThrowsForInvalidArguments, getResponseElements } from "../../../helpers.js";
+import {
+    validateToolMetadata,
+    validateThrowsForInvalidArguments,
+    getResponseElements,
+    getDataFromUntrustedContent,
+} from "../../../helpers.js";
 import { describeWithMongoDB, validateAutoConnectBehavior } from "../mongodbHelpers.js";
 
 describeWithMongoDB("logs tool", (integration) => {
@@ -36,13 +41,27 @@ describeWithMongoDB("logs tool", (integration) => {
 
         const elements = getResponseElements(response);
 
+        expect(elements).toHaveLength(2);
+        expect(elements[1]?.text).toContain("<untrusted-user-data-");
+
+        const logs = getDataFromUntrustedContent(elements[1]?.text ?? "").split("\n");
         // Default limit is 50
-        expect(elements.length).toBeLessThanOrEqual(51);
+        expect(logs.length).toBeLessThanOrEqual(50);
+
+        // Expect at least one log entry
+        expect(logs.length).toBeGreaterThan(1);
+
         expect(elements[0]?.text).toMatch(/Found: \d+ messages/);
+        const totalMessages = parseInt(elements[0]?.text.match(/Found: (\d+) messages/)?.[1] ?? "0", 10);
+        expect(totalMessages).toBeGreaterThanOrEqual(logs.length);
+
+        if (totalMessages > logs.length) {
+            expect(elements[0]?.text).toContain(`(showing only the first ${logs.length})`);
+        }
 
-        for (let i = 1; i < elements.length; i++) {
+        for (const message of logs) {
             // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
-            const log = JSON.parse(elements[i]?.text ?? "{}");
+            const log = JSON.parse(message ?? "{}");
             expect(log).toHaveProperty("t");
             expect(log).toHaveProperty("msg");
         }
@@ -58,9 +77,18 @@ describeWithMongoDB("logs tool", (integration) => {
         });
 
         const elements = getResponseElements(response);
-        expect(elements.length).toBeLessThanOrEqual(51);
-        for (let i = 1; i < elements.length; i++) {
-            const log = JSON.parse(elements[i]?.text ?? "{}") as { tags: string[] };
+        expect(elements).toHaveLength(2);
+        expect(elements[1]?.text).toContain("<untrusted-user-data-");
+
+        const logs = getDataFromUntrustedContent(elements[1]?.text ?? "").split("\n");
+        // Default limit is 50
+        expect(logs.length).toBeLessThanOrEqual(50);
+
+        // Expect at least one log entry
+        expect(logs.length).toBeGreaterThan(1);
+
+        for (const message of logs) {
+            const log = JSON.parse(message ?? "{}") as { tags: string[] };
             expect(log).toHaveProperty("t");
             expect(log).toHaveProperty("msg");
             expect(log).toHaveProperty("tags");
diff --git a/tests/integration/tools/mongodb/read/aggregate.test.ts b/tests/integration/tools/mongodb/read/aggregate.test.ts
@@ -4,10 +4,15 @@ import {
     validateThrowsForInvalidArguments,
     getResponseContent,
 } from "../../../helpers.js";
-import { expect, it } from "vitest";
+import { expect, it, afterEach } from "vitest";
 import { describeWithMongoDB, getDocsFromUntrustedContent, validateAutoConnectBehavior } from "../mongodbHelpers.js";
 
 describeWithMongoDB("aggregate tool", (integration) => {
+    afterEach(() => {
+        integration.mcpServer().userConfig.readOnly = false;
+        integration.mcpServer().userConfig.disabledTools = [];
+    });
+
     validateToolMetadata(integration, "aggregate", "Run an aggregation against a MongoDB collection", [
         ...databaseCollectionParameters,
         {
@@ -129,6 +134,42 @@ describeWithMongoDB("aggregate tool", (integration) => {
         );
     });
 
+    for (const disabledOpType of ["create", "update", "delete"] as const) {
+        it(`can not run $out stages when ${disabledOpType} operation is disabled`, async () => {
+            await integration.connectMcpClient();
+            integration.mcpServer().userConfig.disabledTools = [disabledOpType];
+            const response = await integration.mcpClient().callTool({
+                name: "aggregate",
+                arguments: {
+                    database: integration.randomDbName(),
+                    collection: "people",
+                    pipeline: [{ $out: "outpeople" }],
+                },
+            });
+            const content = getResponseContent(response);
+            expect(content).toEqual(
+                "Error running aggregate: When 'create', 'update', or 'delete' operations are disabled, you can not run pipelines with $out or $merge stages."
+            );
+        });
+
+        it(`can not run $merge stages when ${disabledOpType} operation is disabled`, async () => {
+            await integration.connectMcpClient();
+            integration.mcpServer().userConfig.disabledTools = [disabledOpType];
+            const response = await integration.mcpClient().callTool({
+                name: "aggregate",
+                arguments: {
+                    database: integration.randomDbName(),
+                    collection: "people",
+                    pipeline: [{ $merge: "outpeople" }],
+                },
+            });
+            const content = getResponseContent(response);
+            expect(content).toEqual(
+                "Error running aggregate: When 'create', 'update', or 'delete' operations are disabled, you can not run pipelines with $out or $merge stages."
+            );
+        });
+    }
+
     validateAutoConnectBehavior(integration, "aggregate", () => {
         return {
             args: {

Original file line number	Diff line number	Diff line change
`@@ -49,16 +49,23 @@ export class AggregateTool extends MongoDBToolBase {`
`49`	`49`	`}`
`50`	`50`
`51`	`51`	`private assertOnlyUsesPermittedStages(pipeline: Record<string, unknown>[]): void {`
`52`		`- if (!this.config.readOnly) {`
	`52`	`+ const writeOperations: OperationType[] = ["update", "create", "delete"];`
	`53`	`+ let writeStageForbiddenError = "";`
	`54`	`+`
	`55`	`+ if (this.config.readOnly) {`
	`56`	`+ writeStageForbiddenError = "In readOnly mode you can not run pipelines with $out or $merge stages.";`
	`57`	`+ } else if (this.config.disabledTools.some((t) => writeOperations.includes(t as OperationType))) {`
	`58`	`+ writeStageForbiddenError =`
	`59`	`+ "When 'create', 'update', or 'delete' operations are disabled, you can not run pipelines with $out or $merge stages.";`
	`60`	`+ }`
	`61`	`+`
	`62`	`+ if (!writeStageForbiddenError) {`
`53`	`63`	`return;`
`54`	`64`	`}`
`55`	`65`
`56`	`66`	`for (const stage of pipeline) {`
`57`	`67`	`if (stage.$out \|\| stage.$merge) {`
`58`		`- throw new MongoDBError(`
`59`		`- ErrorCodes.ForbiddenWriteOperation,`
`60`		`- "In readOnly mode you can not run pipelines with $out or $merge stages."`
`61`		`- );`
	`68`	`+ throw new MongoDBError(ErrorCodes.ForbiddenWriteOperation, writeStageForbiddenError);`
`62`	`69`	`}`
`63`	`70`	`}`
`64`	`71`	`}`