nathan/nexus-mcp
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
87 Commits 3 Branches 0 Tags
Commit Graph

7 Commits

Author SHA1 Message Date
Nathan Castaldi
a4c09bd43d docs(history): add session snapshot for 2026-04-15 part 2" -m "- finalize CanonicalUser contract enforcement (extra=forbid) 
- document production-correct AD dual-account and privileged OU handling
- record policy-aware identity confidence implementation status
- capture explainability improvements in identity output semantics
- note Entra admin-consent as external blocker with clean handoff next steps
 2026-04-15 15:26:18 -04:00
Nathan Castaldi
f6cfd17e30 docs(ops): add session snapshot for 2026-04-15 
- Resolved 7 Pylance errors in identity shard (async/to_thread misuse, missing AD adapter methods)
- Remapped search_users, get_stale_accounts, get_disabled_accounts, get_user_by_email call sites
- Added structured logging to identity shard
- Verified 0 diagnostics and 19/19 unit tests passing
- Live mock validation: status reconciliation, disabled accounts, audit log queries
- Deferred: WIS-018 (get_groups backend method), field-name alignment audit
 2026-04-15 10:57:08 -04:00
Nathan Castaldi
86187a8acd docs(ops): add session snapshot for 2026-04-14 
- Document full repo restructure: DEMO_GUIDE, TOOL_INVENTORY promoted to root
- Capture README overhaul, reports/ folder consolidation, and work item register creation
- Record prompt model alignment to claude-sonnet-4.6 and enterprise .gitignore hardening
- Note outstanding: git pull required for dependabot.yml, .venv bash activation failure, unmerged resilience branches
 2026-04-14 17:12:27 -04:00
nathan
aa0ada8366 finalized snapshot for the day 2026-04-13 15:08:02 -04:00
nathan
0c9aebf97a feat(nexus): implement sharded architecture 
- Create nexus-mcp/ with 6-shard plugin model (identity, workday, audit, itsm, assets, logistics)
- Migrate 31 tools from legacy Identity + Workday servers into unified orchestrator
- Add feature flag control (ENABLE_*) for atomic shard deployment per Gemini design
- Implement SOC 2 audit logging with automatic PII redaction (CC7.2 / CC6.1)
- Create stub shards for ITSM, Assets, Logistics (Red status awaiting credentials)
- Add comprehensive mock data library with drift scenarios for credential-free testing
- Update README.md: reposition from Workday-MCP to Nexus-MCP as primary server
- Document installation, configuration, and shard toggling in Local-Setup.md

Architecture: Orchestrator (main.py) + Shards (src/shards/*.py) + Adapters (lib/)
enables piece-at-a-time deployment. Mock mode (USE_MOCK=true) supports full 53-tool
testing without credentials. Smoke test verified: 33 tools registered successfully.

BREAKING CHANGE: Legacy Identity/ and Workday/ servers deprecated. Users must update
Claude Desktop config to point to nexus-mcp/src/main.py. Legacy folders preserved
for reference pending verification.

Refs: WIS-006, WIS-009, WIS-014-018, Gemini conversation 2026-04-06
 2026-04-13 09:20:35 -04:00
nathan
b35499e195 refactor: update session snapshot to enhance workflow documentation and coding standards 2026-04-03 10:12:42 -04:00
nathan
ef4dcaafa7 docs(history): add session snapshot for 2026-04-03 
- Add SESSION_SNAPSHOT_2026-04-03 with goals, accomplishments, and pending work

- Document next-session startup steps for Workday-to-AD sync delivery continuity
 2026-04-03 09:18:21 -04:00