feat/playground (#41)

* Initial chat working in browser.

* server add

* new server

* Proxy implementation for playground.

* Current state saved

* Refactor mcp proxy locaiton + refactor tests to use websocket tunnel.

* Fix all packages and dev to be able to start effectively for playground

* Fix hibneraiton issues and status checks

* Realtime connection states donezo

* Fix configuration for new mcps.

* Package for external react components + example implementation

* docs(changeset): New MCP proxy support and Playground for local mcp testing

* Minor package bumps

* temporary mcp tools server until we upgrade into index.ts

* Migrate to pnpm + update auto build and deps

* Migrate projects to pnpm

* index.ts with tools

* Working tool calls.

* Remove excessive logging

* Fix reconnection logic for MCP client

* Configure system prompts and advance usage from the ui

* Error handling and user friendly responses.

* Fix deps and cleanup old code thats not used

* Update to 1.13 consistent sdk across all .

* docker updates with new dependencies

* updated test figma

* remove double

* small readme updates

* another README update

* Stash commit of work for playground

* Reconnect playground logic to UI.

* Update pnpm-lock.yaml with new @radix-ui/react-tabs dependency and improve CSS styles for model selector and dropdown components to match design specifications. Enhance chat API with detailed logging for debugging and refactor model fetching logic in chat components.

* Animation for mcp server load

* Production ready docker file

* Fix builds

* Fix mcp toolbox builds

* Remove old builds

* Fix misc build errors.

* Lint fixes

* Ignore data!

* And ignore db

* Reorganize files and builds now bundled correctly.

* Fix mcp proxy to work with live registry image.

* Fix linting and various bugs

* Fix linting errors

* More linting fixes.

* Refactor MCP server components to support installer preferences and Cursor deeplink generation. Added new icons and improved dropdown functionality for installation options.

* More lint fixes.

* MOre lint fixes

* Update license to prevent platform competition

* Fix lint

* Fix crud-mcp build

* Fix config.

* Fix images to be in the palyground showcase.

* ATtempt fix build linting

* Fix formatting for the landing page.

* Playground refactor.

* docs(changeset): Introducing playround and mcp proxy support

* docs(changeset): playground introduction

* Proper merge bump fixes.

* Fix compile errors

* Fix references

* Fix linting errors

* Linting consistency

* Fix playground example linting errors

* Fix accidental ignore

* Fix tests

* Fix build deps

* Temp pause of crud MCP.

* Delete incorrect vibe coded file

---------

Co-authored-by: disturbing <hello@xavalabs.com>
Co-authored-by: juliux <jules@avalaunch.app>

Author: 3 people

.changeset/soft-vans-lie.md

@@ -0,0 +1,6 @@
+---
+"@xava-labs/playground": patch
+"@xava-labs/mcp": patch
+---
+
+playground introduction

.github/workflows/cleanup-mcp-toolbox-preview-images.yml

@@ -0,0 +1,127 @@
+# Cleanup old preview Docker images for mcp-toolbox
+name: Cleanup MCP Toolbox Preview Images
+
+on:
+  schedule:
+    # Run daily at 2:00 AM UTC
+    - cron: '0 2 * * *'
+  workflow_dispatch:
+    # Allow manual trigger
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}/mcp-toolbox
+
+jobs:
+  cleanup-preview-images:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Log in to Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Clean up old preview images
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const owner = context.repo.owner;
+            const packageName = '${{ env.IMAGE_NAME }}'.split('/').pop();
+            
+            // Calculate cutoff date (7 days ago)
+            const cutoffDate = new Date();
+            cutoffDate.setDate(cutoffDate.setDate() - 7);
+            
+            let deletedCount = 0;
+            let totalChecked = 0;
+            
+            try {
+              // Get all versions of the package
+              const { data: versions } = await github.rest.packages.getAllPackageVersionsForPackageOwnedByOrg({
+                package_type: 'container',
+                package_name: packageName,
+                org: owner,
+                per_page: 100
+              });
+              
+              console.log(`Found ${versions.length} total package versions`);
+              
+              for (const version of versions) {
+                totalChecked++;
+                
+                // Check if this is a preview image (has pr- prefix in tags)
+                const isPreviewImage = version.metadata?.container?.tags?.some(tag => 
+                  tag.startsWith('pr-') || tag.includes('-pr-')
+                );
+                
+                if (!isPreviewImage) {
+                  console.log(`Skipping non-preview version: ${version.id} (tags: ${version.metadata?.container?.tags?.join(', ') || 'none'})`);
+                  continue;
+                }
+                
+                const versionDate = new Date(version.created_at);
+                
+                if (versionDate < cutoffDate) {
+                  try {
+                    await github.rest.packages.deletePackageVersionForOrg({
+                      package_type: 'container',
+                      package_name: packageName,
+                      org: owner,
+                      package_version_id: version.id
+                    });
+                    
+                    deletedCount++;
+                    console.log(`✅ Deleted preview image version ${version.id} (created: ${version.created_at}, tags: ${version.metadata?.container?.tags?.join(', ') || 'none'})`);
+                  } catch (error) {
+                    console.log(`❌ Failed to delete version ${version.id}: ${error.message}`);
+                  }
+                } else {
+                  console.log(`⏭️ Keeping recent preview version ${version.id} (created: ${version.created_at})`);
+                }
+              }
+              
+              // Generate summary
+              const summary = `## 🧹 MCP Toolbox Preview Image Cleanup
+              
+              **Cleanup Summary:**
+              - **Total versions checked:** ${totalChecked}
+              - **Preview images deleted:** ${deletedCount}
+              - **Cutoff date:** ${cutoffDate.toISOString()}
+              
+              **Retention Policy:**
+              - Preview images older than 7 days are automatically deleted
+              - Production images (\`latest\`, \`main-*\`, version tags) are preserved
+              
+              ${deletedCount > 0 ? '✅ Cleanup completed successfully' : 'ℹ️ No preview images needed cleanup'}
+              `;
+              
+              console.log(summary);
+              
+              // Write to job summary
+              require('fs').appendFileSync(process.env.GITHUB_STEP_SUMMARY, summary);
+              
+            } catch (error) {
+              console.error('Error during cleanup:', error);
+              
+              const errorSummary = `## ❌ MCP Toolbox Preview Image Cleanup Failed
+              
+              **Error:** ${error.message}
+              
+              **Details:**
+              - Package: \`${packageName}\`
+              - Registry: \`${{ env.REGISTRY }}\`
+              - Organization: \`${owner}\`
+              `;
+              
+              require('fs').appendFileSync(process.env.GITHUB_STEP_SUMMARY, errorSummary);
+              throw error;
+            } 

.github/workflows/mcp-toolbox-preview.yml

@@ -0,0 +1,118 @@
+# Build and push preview Docker images for the mcp-toolbox package
+name: MCP Toolbox Preview Build
+
+on:
+  pull_request:
+    branches: [main, develop]
+    paths:
+      - 'packages/mcp-toolbox/**'
+      - 'packages/mcp/**'
+      - 'packages/mcp-proxy/**'
+      - '.github/workflows/mcp-toolbox-preview.yml'
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}/mcp-toolbox
+
+jobs:
+  build-preview:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+      pull-requests: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Log in to Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=ref,event=pr
+            type=sha,prefix=pr-${{ github.event.number }}-
+
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          file: mcp-toolbox.Dockerfile
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          platforms: linux/amd64,linux/arm64
+
+      - name: Comment PR with image info
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const { data: comments } = await github.rest.issues.listComments({
+              issue_number: context.issue.number,
+              owner: context.repo.owner,
+              repo: context.repo.repo,
+            });
+
+            const botComment = comments.find(comment => 
+              comment.user.type === 'Bot' && 
+              comment.body.includes('🐳 Preview MCP Toolbox Docker Image')
+            );
+
+            const commentBody = `🐳 **Preview MCP Toolbox Docker Image Built**
+
+            **Image:** \`${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:pr-${{ github.event.number }}\`
+
+            **Tags:**
+            ${{ steps.meta.outputs.tags }}
+
+            **Usage:**
+            \`\`\`bash
+            # Pull the preview image
+            docker pull ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:pr-${{ github.event.number }}
+            
+            # Run the MCP Toolbox server
+            docker run -p 11990:11990 \\
+              -e PROXY_ID=preview-toolbox-${{ github.event.number }} \\
+              -e MCP_SERVER_HOST=host.docker.internal:6050 \\
+              --add-host host.docker.internal:host-gateway \\
+              -v \$(pwd)/data:/app/data \\
+              ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:pr-${{ github.event.number }}
+            \`\`\`
+
+            **Health Check:**
+            \`\`\`bash
+            curl http://localhost:11990/health
+            \`\`\`
+
+            **Note:** Preview images are automatically cleaned up after 7 days.
+            `;
+
+            if (botComment) {
+              await github.rest.issues.updateComment({
+                comment_id: botComment.id,
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                body: commentBody
+              });
+            } else {
+              await github.rest.issues.createComment({
+                issue_number: context.issue.number,
+                owner: context.repo.owner,
+                repo: context.repo.repo,
+                body: commentBody
+              });
+            } 

.github/workflows/mcp-toolbox-production.yml

@@ -0,0 +1,133 @@
+# Build and push production Docker images for the mcp-toolbox package
+name: MCP Toolbox Production Build
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - 'packages/mcp-toolbox/**'
+      - 'packages/mcp/**'
+      - 'packages/mcp-proxy/**'
+      - '.github/workflows/mcp-toolbox-production.yml'
+  release:
+    types: [published]
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}/mcp-toolbox
+
+jobs:
+  build-production:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      packages: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Log in to Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract metadata
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+          tags: |
+            type=ref,event=branch
+            type=semver,pattern={{version}}
+            type=semver,pattern={{major}}.{{minor}}
+            type=semver,pattern={{major}}
+            type=sha,prefix={{branch}}-
+            type=raw,value=latest,enable={{is_default_branch}}
+
+      - name: Build and push Docker image
+        uses: docker/build-push-action@v5
+        with:
+          context: .
+          file: mcp-toolbox.Dockerfile
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+          platforms: linux/amd64,linux/arm64
+
+      - name: Generate deployment summary
+        run: |
+          echo "## 🚀 MCP Toolbox Docker Image Deployed" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "**Registry:** \`${{ env.REGISTRY }}\`" >> $GITHUB_STEP_SUMMARY
+          echo "**Image:** \`${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}\`" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "**Tags:**" >> $GITHUB_STEP_SUMMARY
+          echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
+          echo "${{ steps.meta.outputs.tags }}" >> $GITHUB_STEP_SUMMARY
+          echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "**Usage:**" >> $GITHUB_STEP_SUMMARY
+          echo "\`\`\`bash" >> $GITHUB_STEP_SUMMARY
+          echo "# Pull the latest image" >> $GITHUB_STEP_SUMMARY
+          echo "docker pull ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest" >> $GITHUB_STEP_SUMMARY
+          echo "" >> $GITHUB_STEP_SUMMARY
+          echo "# Run the MCP Toolbox server" >> $GITHUB_STEP_SUMMARY
+          echo "docker run -p 11990:11990 \\" >> $GITHUB_STEP_SUMMARY
+          echo "  -e PROXY_ID=your-unique-proxy-id \\" >> $GITHUB_STEP_SUMMARY
+          echo "  -e MCP_SERVER_HOST=host.docker.internal:6050 \\" >> $GITHUB_STEP_SUMMARY
+          echo "  -e PORT=11990 \\" >> $GITHUB_STEP_SUMMARY
+          echo "  -e DB_PATH=/app/data/packages.db \\" >> $GITHUB_STEP_SUMMARY
+          echo "  --add-host host.docker.internal:host-gateway \\" >> $GITHUB_STEP_SUMMARY
+          echo "  -v \$(pwd)/data:/app/data \\" >> $GITHUB_STEP_SUMMARY
+          echo "  ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest" >> $GITHUB_STEP_SUMMARY
+          echo "\`\`\`" >> $GITHUB_STEP_SUMMARY
+
+      - name: Update package description
+        uses: actions/github-script@v7
+        with:
+          script: |
+            const packageName = `${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}`.toLowerCase();
+            
+            try {
+              await github.rest.packages.updatePackageForOrg({
+                package_type: 'container',
+                package_name: packageName.split('/').pop(),
+                org: context.repo.owner,
+                description: 'MCP Toolbox - A lightweight, bundled WebSocket server for managing MCP (Model Context Protocol) packages with pure JavaScript SQLite persistence',
+                homepage_url: `https://github.com/${context.repo.owner}/${context.repo.repo}`,
+                public: true
+              });
+              console.log('✅ Package description updated successfully');
+            } catch (error) {
+              console.log('⚠️ Could not update package description:', error.message);
+            }
+
+  security-scan:
+    runs-on: ubuntu-latest
+    needs: build-production
+    permissions:
+      contents: read
+      packages: read
+      security-events: write
+
+    steps:
+      - name: Run Trivy vulnerability scanner
+        uses: aquasecurity/trivy-action@master
+        with:
+          image-ref: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:latest
+          format: 'sarif'
+          output: 'trivy-results.sarif'
+
+      - name: Upload Trivy scan results to GitHub Security tab
+        uses: github/codeql-action/upload-sarif@v3
+        if: always()
+        with:
+          sarif_file: 'trivy-results.sarif'