rzyfront/vendix-mcp-server
skills/vendix-mcp-server/SKILL.md
MCP Gateway for external AI clients: resources, tools, prompts, JWT auth, rate limiting, audit logging, and protocol responses. Trigger: When working with MCP server endpoints, adding MCP resources/tools/prompts, configuring MCP auth, or exposing Vendix data to AI clients.
$ install --global
skillsauthnpx skillsauth add rzyfront/vendix vendix-mcp-serverInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: May 16, 2026, 5:10 AM151.8s1 file scanned
SKILL.md
- name:
- vendix-mcp-server
- description:
- >
- MCP Gateway for external AI clients:
- resources, tools, prompts, JWT auth, rate limiting,
- audit logging, and protocol responses. Trigger:
- When working with MCP server endpoints,
- license:
- Apache-2.0
- author:
- rzyfront
- version:
- 2.1
- scope:
- [root]
Source of Truth
- Controller:
apps/backend/src/domains/store/mcp/mcp.controller.ts - Auth:
apps/backend/src/domains/store/mcp/mcp-auth.service.ts - Guard:
apps/backend/src/domains/store/mcp/guards/mcp-auth.guard.ts - Audit:
apps/backend/src/domains/store/mcp/mcp-audit.service.ts - Providers:
apps/backend/src/domains/store/mcp/providers/
Endpoints
Base route: /mcp.
POST /initializePOST /resources/listPOST /resources/readPOST /tools/listPOST /tools/callPOST /prompts/listPOST /prompts/get
Controller uses @Public() plus @UseGuards(McpAuthGuard). initialize returns protocol version 2024-11-05, capabilities for resources/tools/prompts, and server vendix-mcp-server v1.0.0.
Audit logging runs for all endpoints except initialize.
Auth And Rate Limit
Token sources:
Authorization: Bearer <JWT>.- Query param
?token=....
McpAuthGuard sets request.mcpAuth and request.user for RequestContextInterceptor propagation.
Rate limit:
- Redis key
mcp:ratelimit:{storeId}. - 100 requests per 60 seconds.
- Uses
INCRand setsEXPIREonly when current count is 1.
Resources
Current resource list has 7 URI patterns:
vendix://products/{storeId}vendix://inventory/{storeId}vendix://reports/sales/{storeId}vendix://catalog/categories/{storeId}vendix://catalog/category/{storeId}/{categoryId}vendix://catalog/product/{storeId}/{productId}vendix://catalog/featured/{storeId}
McpResourceProvider uses StorePrismaService; actual filtering depends on request context/scoped Prisma, not blindly on the store id embedded in URI.
Security caveat: product detail currently exposes business-sensitive fields such as cost_price and profit_margin. Review before expanding MCP resources or exposing to external clients.
Tools
MCP tools come from AIToolRegistry.
- Listing uses
context.permissions || context.rolesfor availability. - Calls use
toolRegistry.executeTool(). - Errors are converted to MCP style
{ isError: true, content: [...] }.
Tool quality caveat: many AI tools are placeholders; only inventory tools are currently service-backed.
Prompts
McpPromptProvider lists active ai_engine_applications, extracts {{variables}}, and returns prompts. getPrompt uses ai_engine_applications.findUnique({ key }).
Current prompt response uses user messages and prepends system prompt as Context: ....
Audit
McpAuditService logs through AILoggingService.logRequest() with app key mcp:${method}, model set to resource/tool/prompt name or mcp, and zero tokens/cost.
Rules
- Never expose API keys, passwords, or tenant data outside request context.
- Keep resource result limits small.
- Add new operational capabilities as AI tools first, then expose through MCP automatically.
- Verify tool permissions and actual service-backed behavior before documenting them as production-ready.
Related Skills
vendix-ai-agent-toolsvendix-ai-platform-corevendix-backend-authvendix-prisma-scopes
Related Skills
rzyfront/mobile-dev
development
VerifiedTrustedCommunity
Mobile app development rules for Vendix Expo/React Native project. Trigger: When editing, creating, or modifying any file under apps/mobile, or when developing mobile-specific features.
5SKILL.mdUpdated May 29, 2026
rzyfront/vendix-subscription-gate
development
VerifiedTrustedCommunity
Feature gating by store subscription state: global store write guard, AI feature gate, Redis feature resolution, quota consumption, frontend paywall interceptor, banner, and subscription UI states. Trigger: When adding feature gates, paywalls, subscription-based access control, protecting store write operations, AI feature gates, or rollout flags.
5SKILL.mdUpdated May 16, 2026
rzyfront/vendix-saas-billing
testing
VerifiedTrustedCommunity
SaaS subscription billing for Vendix stores: plan pricing, invoices, Wompi platform payments, manual payments, partner commissions, payouts, proration, and dunning. Trigger: When creating SaaS invoices, working with partner rev-share, margin/surcharge pricing, invoice sequence allocation, partner payout batches, subscription payments, manual payments, or dunning flows.
5SKILL.mdUpdated May 16, 2026
rzyfront/vendix-redis-quota
development
VerifiedTrustedCommunity
Periodic quota counters with Redis, UTC period keys, Lua-based idempotent AI quota consumption, request-id deduplication, and post-success consumption. Trigger: When building quota counters, enforcing monthly/daily feature caps, or reusing AI quota patterns for uploads, emails, exports, or rate-limited features.
5SKILL.mdUpdated May 16, 2026