Lines 17-57javascript
17 if (from && typeof from === "object" || typeof from === "function") {
18 for (let key of __getOwnPropNames(from))
19 if (!__hasOwnProp.call(to, key) && key !== except)
20 __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
24var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
25 // If the importer is in node compatibility mode or this is not an ESM
26 // file that has been converted to a CommonJS file using a Babel-
27 // compatible transform (i.e. "__esModule" has not been set), then set
28 // "default" to the CommonJS "module.exports" for node compatibility.
29 isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
32var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
35var client_exports = {};
36__export(client_exports, {
37 createSpeakClient: () => createSpeakClient,
38 formatAxiosError: () => formatAxiosError,
39 speakClient: () => speakClient
41function getBaseUrl() {
42 return process.env.SPEAK_BASE_URL ?? "https://api.speakai.co";
45 return process.env.SPEAK_API_KEY ?? "";
47async function authenticate() {
48 const apiKey = getApiKey();
50 throw new Error("SPEAK_API_KEY is not set. Run 'speakai-mcp config set-key' or set the environment variable.");
53 const res = await import_axios.default.post(
54 `${getBaseUrl()}/v1/auth/accessToken`,
HighCredential Exfiltration
Source combines credential-like environment material and outbound requests; review data flow before blocking.
dist/index.jsView on unpkg · L37 HighSandbox Evasion Gated Capability
Source gates dangerous network, credential, or execution behavior behind CI, host, platform, time, or geo fingerprint checks.
dist/index.jsView on unpkg · L37