Skip to content

docs: add JSDoc comments to TS SDK class properties #2333

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Sushmithamallesh merged 3 commits into from
Jan 8, 2026
Merged

docs: add JSDoc comments to TS SDK class properties #2333

Sushmithamallesh merged 3 commits into from
Jan 8, 2026

Conversation

@Sushmithamallesh
Copy link
Contributor

@Sushmithamallesh Sushmithamallesh commented Jan 6, 2026

Add concise JSDoc comments to the public properties of the Composio class
to improve IDE IntelliSense and documentation.

Properties documented:

  • tools: List, retrieve, and execute tools
  • toolkits: Retrieve toolkit metadata and authorize user connections
  • triggers: Manage webhook triggers and event subscriptions
  • provider: Tool provider instance for framework-specific wrapping
  • files: Upload and download files
  • authConfigs: Manage authentication configurations for toolkits
  • connectedAccounts: Manage authenticated connections
  • mcp: Model Context Protocol server management

No functional changes - documentation only.

@claude
docs: add JSDoc comments to Composio class properties
7cfcfe4 
Add concise JSDoc comments to the public properties of the Composio class
to improve IDE IntelliSense and documentation.

Properties documented:
- tools: List, retrieve, and execute tools
- toolkits: Retrieve toolkit metadata and authorize user connections
- triggers: Manage webhook triggers and event subscriptions
- provider: Tool provider instance for framework-specific wrapping
- files: Upload and download files
- authConfigs: Manage authentication configurations for toolkits
- connectedAccounts: Manage authenticated connections
- mcp: Model Context Protocol server management

No functional changes - documentation only.
@vercel
Copy link

vercel bot commented Jan 6, 2026
edited
Loading

The latest updates on your projects. Learn more about Vercel for GitHub.

Project Deployment Review Updated (UTC)
fumadocs Ready Ready Preview, Comment Jan 8, 2026 4:52am

@github-actions
Copy link
Contributor

github-actions bot commented Jan 6, 2026
edited
Loading

⚠️ Security Audit Warning

The pnpm audit --prod check found security vulnerabilities in production dependencies.

Please review and fix the vulnerabilities. You can try running:

pnpm audit --fix --prod
Audit output 
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ LangChain serialization injection vulnerability        │
│                     │ enables secret extraction                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ langchain                                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ >=1.0.0 <1.2.3                                         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=1.2.3                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ ts__examples__langchain>langchain                      │
│                     │                                                        │
│                     │ ts__examples__tool-router>langchain                    │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-r399-636x-v7f6      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ LangChain serialization injection vulnerability        │
│                     │ enables secret extraction                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ @langchain/core                                        │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ >=1.0.0 <1.1.8                                         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=1.1.8                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ ts__examples__langchain>@langchain/core                │
│                     │                                                        │
│                     │ ts__examples__tool-router>@langchain/                  │
│                     │ anthropic>@langchain/core                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-r399-636x-v7f6      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ qs's arrayLimit bypass in its bracket notation allows  │
│                     │ DoS via memory exhaustion                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ qs                                                     │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ <6.14.1                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=6.14.1                                               │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ fern>supergateway>@modelcontextprotocol/sdk>express>qs │
│                     │                                                        │
│                     │ fern>supergateway>body-parser>qs                       │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-6rw7-vpxm-498p      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ Anthropic's MCP TypeScript SDK has a ReDoS             │
│                     │ vulnerability                                          │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ @modelcontextprotocol/sdk                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ <1.25.2                                                │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=1.25.2                                               │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ fern>supergateway>@modelcontextprotocol/sdk            │
│                     │                                                        │
│                     │ ts__examples__google>@modelcontextprotocol/sdk         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-8r9q-7v3j-jr4g      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ pnpm v10+ Bypass "Dependency lifecycle scripts         │
│                     │ execution disabled by default"                         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ pnpm                                                   │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ >=10.0.0 <10.26.0                                      │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=10.26.0                                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ ts__examples__tool-router>pnpm                         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-379q-355j-w6rj      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ pnpm Has Lockfile Integrity Bypass that Allows Remote  │
│                     │ Dynamic Dependencies                                   │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ pnpm                                                   │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ <10.26.0                                               │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=10.26.0                                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ ts__examples__tool-router>pnpm                         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-7vhp-vf5g-r2fw      │
└─────────────────────┴────────────────────────────────────────────────────────┘
┌─────────────────────┬────────────────────────────────────────────────────────┐
│ high                │ pnpm vulnerable to Command Injection via environment   │
│                     │ variable substitution                                  │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Package             │ pnpm                                                   │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Vulnerable versions │ >=6.25.0 <10.27.0                                      │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Patched versions    │ >=10.27.0                                              │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ Paths               │ ts__examples__tool-router>pnpm                         │
├─────────────────────┼────────────────────────────────────────────────────────┤
│ More info           │ https://github.com/advisories/GHSA-2phv-j68v-wwqx      │
└─────────────────────┴────────────────────────────────────────────────────────┘
11 vulnerabilities found
Severity: 11 high

@Sushmithamallesh Sushmithamallesh merged commit c85669c into next Jan 8, 2026
7 checks passed
@Sushmithamallesh Sushmithamallesh deleted the claude/ts-sdk-jsdoc-mtepP branch January 8, 2026 04:52
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@haxzie haxzie haxzie approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@Sushmithamallesh @haxzie @claude