Add comprehensive registry validation to prevent invalid servers

domdomegg · domdomegg · commit 75c110a857f7 · 2025-09-02T21:32:36.000Z
- Add validation for supported registry types (npm, pypi, oci, nuget, mcpb) - Add validation for registry base URLs matching expected URLs per type - Reject empty registry types and base URLs when package identifier provided - Enforce strict allowlist with no localhost or development URL exceptions - Add comprehensive test coverage with clear pass/fail comparisons 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> :house: Remote-Dev: homespace
diff --git a/internal/validators/constants.go b/internal/validators/constants.go
@@ -13,6 +13,11 @@ var (
 	// Remote validation errors
 	ErrInvalidRemoteURL = errors.New("invalid remote URL")
 
+	// Registry validation errors
+	ErrUnsupportedRegistryType      = errors.New("unsupported registry type")
+	ErrUnsupportedRegistryBaseURL   = errors.New("unsupported registry base URL")
+	ErrMismatchedRegistryTypeAndURL = errors.New("registry type and base URL do not match")
+
 	// Argument validation errors
 	ErrNamedArgumentNameRequired    = errors.New("named argument name is required")
 	ErrInvalidNamedArgumentName     = errors.New("invalid named argument name format")
diff --git a/internal/validators/validators.go b/internal/validators/validators.go
@@ -164,9 +164,81 @@ func validateMCPBPackage(host string) error {
 	return nil
 }
 
+// validateRegistryType checks if the registry type is supported
+func validateRegistryType(registryType string) error {
+	// Registry type is required
+	if registryType == "" {
+		return fmt.Errorf("%w: registry type is required", ErrUnsupportedRegistryType)
+	}
+
+	supportedTypes := []string{
+		model.RegistryTypeNPM,
+		model.RegistryTypePyPI,
+		model.RegistryTypeOCI,
+		model.RegistryTypeNuGet,
+		model.RegistryTypeMCPB,
+	}
+
+	for _, supported := range supportedTypes {
+		if registryType == supported {
+			return nil
+		}
+	}
+
+	return fmt.Errorf("%w: '%s'. Supported types: %v", ErrUnsupportedRegistryType, registryType, supportedTypes)
+}
+
+// validateRegistryBaseURL checks if the registry base URL is valid for the given registry type
+func validateRegistryBaseURL(registryType, baseURL string) error {
+	// Base URL is required for all registry types except MCPB (which uses direct URLs)
+	if baseURL == "" {
+		if registryType == model.RegistryTypeMCPB {
+			return nil // MCPB packages use direct URLs in the identifier
+		}
+		return fmt.Errorf("%w: registry base URL is required for registry type '%s'", ErrUnsupportedRegistryBaseURL, registryType)
+	}
+
+	// Define expected base URLs for each registry type
+	expectedURLs := map[string][]string{
+		model.RegistryTypeNPM:   {model.RegistryURLNPM},
+		model.RegistryTypePyPI:  {model.RegistryURLPyPI},
+		model.RegistryTypeOCI:   {model.RegistryURLDocker},
+		model.RegistryTypeNuGet: {model.RegistryURLNuGet},
+		model.RegistryTypeMCPB:  {model.RegistryURLGitHub, model.RegistryURLGitLab},
+	}
+
+	// Check if the base URL is valid for the registry type
+	if expectedURLsForType, exists := expectedURLs[registryType]; exists {
+		for _, expected := range expectedURLsForType {
+			if baseURL == expected {
+				return nil
+			}
+		}
+		return fmt.Errorf("%w: '%s' is not valid for registry type '%s'. Expected: %v",
+			ErrMismatchedRegistryTypeAndURL, baseURL, registryType, expectedURLsForType)
+	}
+
+	// If registry type is not in our expected URLs map but base URL is provided,
+	// it's likely an unsupported base URL
+	return fmt.Errorf("%w: '%s'", ErrUnsupportedRegistryBaseURL, baseURL)
+}
+
 func validatePackage(pkg *model.Package) error {
 	registryType := strings.ToLower(pkg.RegistryType)
 
+	// Only validate if package has an identifier (i.e., it's a real package reference)
+	if pkg.Identifier != "" {
+		// Validate registry type is supported
+		if err := validateRegistryType(registryType); err != nil {
+			return err
+		}
+
+		// Validate registry base URL matches the registry type
+		if err := validateRegistryBaseURL(registryType, pkg.RegistryBaseURL); err != nil {
+			return err
+		}
+	}
+
 	// For direct download packages (mcpb or direct URLs)
 	if registryType == model.RegistryTypeMCPB ||
 		strings.HasPrefix(pkg.Identifier, "http://") || strings.HasPrefix(pkg.Identifier, "https://") {
diff --git a/internal/validators/validators_test.go b/internal/validators/validators_test.go
@@ -2,6 +2,7 @@ package validators_test
 
 import (
 	"fmt"
+	"strings"
 	"testing"
 
 	"github.com/modelcontextprotocol/registry/internal/validators"
@@ -648,6 +649,183 @@ func TestValidateArgument_ValidValueFields(t *testing.T) {
 }
 
 // Helper function to create a valid server with a specific argument for testing
+func TestValidate_RegistryTypes(t *testing.T) {
+	testCases := []struct {
+		name         string
+		registryType string
+		baseURL      string
+		identifier   string
+		expectError  bool
+	}{
+		// Valid registry types (should pass)
+		{"valid_npm", model.RegistryTypeNPM, model.RegistryURLNPM, "test-package", false},
+		{"valid_pypi", model.RegistryTypePyPI, model.RegistryURLPyPI, "test-package", false},
+		{"valid_oci", model.RegistryTypeOCI, model.RegistryURLDocker, "test-package", false},
+		{"valid_nuget", model.RegistryTypeNuGet, model.RegistryURLNuGet, "test-package", false},
+		{"valid_mcpb_github", model.RegistryTypeMCPB, model.RegistryURLGitHub, "https://github.com/owner/repo", false},
+		{"valid_mcpb_gitlab", model.RegistryTypeMCPB, model.RegistryURLGitLab, "https://gitlab.com/owner/repo", false},
+
+		// Invalid registry types (should fail)
+		{"invalid_maven", "maven", "https://example.com/registry", "test-package", true},
+		{"invalid_cargo", "cargo", "https://example.com/registry", "test-package", true},
+		{"invalid_gem", "gem", "https://example.com/registry", "test-package", true},
+		{"invalid_invalid", "invalid", "https://example.com/registry", "test-package", true},
+		{"invalid_unknown", "UNKNOWN", "https://example.com/registry", "test-package", true},
+		{"invalid_custom", "custom-registry", "https://example.com/registry", "test-package", true},
+		{"invalid_github", "github", "https://example.com/registry", "test-package", true}, // This is a source, not a registry type
+		{"invalid_docker", "docker", "https://example.com/registry", "test-package", true}, // Should be "oci"
+		{"invalid_empty", "", "https://example.com/registry", "test-package", true},        // Empty registry type
+	}
+
+	for _, tc := range testCases {
+		t.Run(tc.name, func(t *testing.T) {
+			serverDetail := apiv0.ServerJSON{
+				Name:        "com.example/test-server",
+				Description: "A test server",
+				Repository: model.Repository{
+					URL:    "https://github.com/owner/repo",
+					Source: "github",
+					ID:     "owner/repo",
+				},
+				VersionDetail: model.VersionDetail{
+					Version: "1.0.0",
+				},
+				Packages: []model.Package{
+					{
+						Identifier:      tc.identifier,
+						RegistryType:    tc.registryType,
+						RegistryBaseURL: tc.baseURL,
+					},
+				},
+				Remotes: []model.Remote{
+					{
+						URL: "https://example.com/remote",
+					},
+				},
+			}
+
+			err := validators.ValidateServerJSON(&serverDetail)
+			if tc.expectError {
+				assert.Error(t, err)
+				assert.Contains(t, err.Error(), validators.ErrUnsupportedRegistryType.Error())
+			} else {
+				assert.NoError(t, err)
+			}
+		})
+	}
+}
+
+func TestValidate_RegistryBaseURLs(t *testing.T) {
+	testCases := []struct {
+		name         string
+		registryType string
+		baseURL      string
+		identifier   string
+		expectError  bool
+	}{
+		// Invalid base URLs for specific registry types
+		{"npm_wrong_url", model.RegistryTypeNPM, "https://pypi.org", "test-package", true},
+		{"pypi_wrong_url", model.RegistryTypePyPI, "https://registry.npmjs.org", "test-package", true},
+		{"oci_wrong_url", model.RegistryTypeOCI, "https://registry.npmjs.org", "test-package", true},
+		{"nuget_wrong_url", model.RegistryTypeNuGet, "https://docker.io", "test-package", true},
+		{"mcpb_wrong_url", model.RegistryTypeMCPB, "https://evil.com", "https://github.com/owner/repo", true},
+		{"empty_base_url", model.RegistryTypeNPM, "", "test-package", true},
+		{"empty_base_url", model.RegistryTypeNPM, model.RegistryURLDocker, "test-package", true},
+		{"empty_base_url", model.RegistryTypeOCI, model.RegistryTypeNuGet, "test-package", true},
+
+		// Localhost URLs should be rejected - no development exceptions
+		{"localhost_npm", model.RegistryTypeNPM, "http://localhost:3000", "test-package", true},
+		{"localhost_ip", model.RegistryTypePyPI, "http://127.0.0.1:8080", "test-package", true},
+
+		// Valid combinations (should pass)
+		{"valid_npm", model.RegistryTypeNPM, model.RegistryURLNPM, "test-package", false},
+		{"valid_pypi", model.RegistryTypePyPI, model.RegistryURLPyPI, "test-package", false},
+		{"valid_oci", model.RegistryTypeOCI, model.RegistryURLDocker, "test-package", false},
+		{"valid_nuget", model.RegistryTypeNuGet, model.RegistryURLNuGet, "test-package", false},
+		{"valid_mcpb_github", model.RegistryTypeMCPB, model.RegistryURLGitHub, "https://github.com/owner/repo", false},
+		{"valid_mcpb_gitlab", model.RegistryTypeMCPB, model.RegistryURLGitLab, "https://gitlab.com/owner/repo", false},
+
+		// Trailing slash URLs should be rejected - strict exact match only
+		{"npm_trailing_slash", model.RegistryTypeNPM, "https://registry.npmjs.org/", "test-package", true},
+		{"pypi_trailing_slash", model.RegistryTypePyPI, "https://pypi.org/", "test-package", true},
+	}
+
+	for _, tc := range testCases {
+		t.Run(tc.name, func(t *testing.T) {
+			serverDetail := apiv0.ServerJSON{
+				Name:        "com.example/test-server",
+				Description: "A test server",
+				Repository: model.Repository{
+					URL:    "https://github.com/owner/repo",
+					Source: "github",
+					ID:     "owner/repo",
+				},
+				VersionDetail: model.VersionDetail{
+					Version: "1.0.0",
+				},
+				Packages: []model.Package{
+					{
+						Identifier:      tc.identifier,
+						RegistryType:    tc.registryType,
+						RegistryBaseURL: tc.baseURL,
+					},
+				},
+				Remotes: []model.Remote{
+					{
+						URL: "https://example.com/remote",
+					},
+				},
+			}
+
+			err := validators.ValidateServerJSON(&serverDetail)
+			if tc.expectError {
+				assert.Error(t, err)
+				// Check that the error is related to registry validation
+				errStr := err.Error()
+				assert.True(t,
+					strings.Contains(errStr, validators.ErrUnsupportedRegistryBaseURL.Error()) ||
+						strings.Contains(errStr, validators.ErrMismatchedRegistryTypeAndURL.Error()),
+					"Expected registry validation error, got: %s", errStr)
+			} else {
+				assert.NoError(t, err)
+			}
+		})
+	}
+}
+
+func TestValidate_EmptyRegistryType(t *testing.T) {
+	// Test that empty registry type is rejected
+	serverDetail := apiv0.ServerJSON{
+		Name:        "com.example/test-server",
+		Description: "A test server",
+		Repository: model.Repository{
+			URL:    "https://github.com/owner/repo",
+			Source: "github",
+			ID:     "owner/repo",
+		},
+		VersionDetail: model.VersionDetail{
+			Version: "1.0.0",
+		},
+		Packages: []model.Package{
+			{
+				Identifier:      "test-package",
+				RegistryType:    "", // Empty registry type
+				RegistryBaseURL: "",
+			},
+		},
+		Remotes: []model.Remote{
+			{
+				URL: "https://example.com/remote",
+			},
+		},
+	}
+
+	err := validators.ValidateServerJSON(&serverDetail)
+	assert.Error(t, err)
+	assert.Contains(t, err.Error(), validators.ErrUnsupportedRegistryType.Error())
+	assert.Contains(t, err.Error(), "registry type is required")
+}
+
 func createValidServerWithArgument(arg model.Argument) apiv0.ServerJSON {
 	return apiv0.ServerJSON{
 		Name:        "com.example/test-server",
