npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@authsec/sdk

v4.2.0

Published

AuthSec SDK for MCP Auth, Services, CIBA, and SPIFFE integration (TypeScript/JavaScript)

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

adityaagarwaladityaagarwaladityaduttaadityadutta

Keywords

authsecmcpoauthrbacspiffecibaauthenticationauthorization

Readme

AuthSec TypeScript SDK (@authsec/sdk)

TypeScript runtime for exposing MCP tools behind AuthSec OAuth and RBAC.

Local Memory Wrapper Smoke Test

This package includes a real MCP wrapper example at examples/memory-authsec-wrapper.mjs. It runs against the local SDK build in dist/ and proxies the upstream memory server over stdio.

1. Install and build the local SDK

cd packages/typescript-sdk
npm install
npm run build

2. Create the example env file

cd packages/typescript-sdk
cp examples/memory-authsec-wrapper.env.example examples/memory-authsec-wrapper.env

Update examples/memory-authsec-wrapper.env with a real AUTHSEC_CLIENT_ID. The defaults in the example file already target the local AuthSec stack:

  • http://localhost:7468/authsec/sdkmgr/mcp-auth
  • http://localhost:7468/authsec/sdkmgr/services

Override them only if you need a different backend.

3. Run the local wrapper

cd packages/typescript-sdk
set -a
source examples/memory-authsec-wrapper.env
set +a
npm run example:memory:local

example:memory:local rebuilds the SDK and then starts the wrapper from the local repo build in dist/. The raw runtime entrypoint remains available as npm run example:memory if you already exported the environment yourself.

Expected startup output includes:

  • effective appName
  • effective host and port
  • auth and services URLs, marked as sdk default or env override
  • upstream memory server command

4. Basic server check

With the server running:

curl http://127.0.0.1:3005/

Expect JSON with:

  • status: "running"
  • protocol: "mcp-with-oauth"
  • the effective auth and services URLs

5. MCP Inspector flow

Open MCP Inspector against the local HTTP endpoint:

npx @modelcontextprotocol/inspector http://127.0.0.1:3005

Manual smoke-test sequence:

  1. Call initialize.
  2. Call tools/list before login and confirm the OAuth tools are present.
  3. Run oauth_start and finish the browser authentication flow.
  4. Finish the browser login flow through the local AuthSec UI.
  5. Continue with oauth_status.
  6. Call tools/list again and confirm wrapped memory tools are now available.
  7. Execute at least one wrapped memory tool successfully.

6. Failure-path check

The wrapper should fail fast if AUTHSEC_CLIENT_ID is missing:

cd packages/typescript-sdk
npm run example:memory:local

Expected error:

Set AUTHSEC_CLIENT_ID before running

Environment Variables

Required:

  • AUTHSEC_CLIENT_ID

Common local settings:

  • AUTHSEC_APP_NAME default: authsec-memory-wrapper-local
  • HOST default: 127.0.0.1
  • PORT default: 3005

Optional backend overrides:

  • AUTHSEC_AUTH_SERVICE_URL
  • AUTHSEC_SERVICES_URL

Optional wrapper settings:

  • AUTHSEC_TOOL_ROLES_JSON
  • MEMORY_FILE_PATH
  • MEMORY_SERVER_COMMAND
  • MEMORY_SERVER_ARGS_JSON

Package Scripts

  • npm run build builds the local SDK into dist/
  • npm run example:memory runs the wrapper directly
  • npm run example:memory:local rebuilds and then runs the wrapper for local smoke testing