# iSphere AI Bridge This project is for building MCP core communication tools for iSphere / IMPlatformClient so AI digital employees can safely use authorized contacts, groups, messages, and files. The business goal is not a selector/report project. The business goal is an MCP tool surface for searching contacts, searching groups, receiving/reading messages, sending messages after approval, receiving/downloading files, and sending files after approval. ## Scope - Authorized company communication software only. - Implement read-only MCP tools first: search contacts, search groups, receive/read messages, and receive/download files. - Keep real sending and file upload behind explicit human approval, audit, and `dry_run` preview. - Prefer stable entry points in this order: 1. Existing bridge / API / local service. 2. Local data/log/cache discovery in read-only mode. 3. UI automation/RPA wrapper as fallback. 4. Network/API discovery. 5. Binary reverse engineering only when needed to explain or validate the above. ## Existing Source Material - Previous iSphere work: `E:\coding\codex\isphere` - Installer: `E:\coding\codex\isphere\iSphere_4.1.2.6841.exe` - Existing bridge artifacts: `OpenClawBridge`, `MockCloud`, `XmppBridgeService` - Existing MCP spec: `E:\coding\codex\isphere\docs\MCP接口需求规格.md` ## Key Directories - `docs/` - design notes and installed skill map. - `prompts/` - ready-to-use Codex prompts for each investigation phase. - `evidence/` - local evidence output; ignored by Git except `.gitkeep`. - `runs/` - run logs and temporary investigation outputs; ignored by Git except `.gitkeep`. - `cmd/`, `internal/`, `native/` - current Go MCP server, helper client, tool registration, and C# WinHelper code. ## Safety Baseline - Do not bypass login, licensing, MFA, access control, TLS protections, or endpoint security. - Do not read non-authorized account data. - Do not send real messages without explicit human approval. - Do not modify production databases, logs, config files, registry keys, or binaries during discovery. - Redact secrets, tokens, private message content, and personal data in reports.