qso-graph
diff --git a/‎docs/architecture.md‎
Lines changed: 232 additions & 0 deletions b/‎docs/architecture.md‎
Lines changed: 232 additions & 0 deletions
diff --git a/‎docs/index.md‎
Lines changed: 26 additions & 9 deletions b/‎docs/index.md‎
Lines changed: 26 additions & 9 deletions
diff --git a/‎docs/llms.txt‎
Lines changed: 46 additions & 0 deletions b/‎docs/llms.txt‎
Lines changed: 46 additions & 0 deletions
@@ -0,0 +1,232 @@
+# Architecture
+
+**How qso-graph servers work together — one foundation, ten packages, zero cloud dependencies.**
+
+---
+
+## System Overview
+
+```
+┌─────────────────────────────────────────────────────────┐
+│                    AI Assistant                          │
+│         Claude · ChatGPT · Cursor · Gemini              │
+└────────────────────┬────────────────────────────────────┘
+                     │ MCP Protocol (stdio)
+                     ▼
+┌─────────────────────────────────────────────────────────┐
+│                 MCP Servers (local)                      │
+│                                                         │
+│  ┌──────────┐ ┌──────────┐ ┌──────────┐ ┌──────────┐   │
+│  │ eqsl-mcp │ │ qrz-mcp  │ │ lotw-mcp │ │ pota-mcp │   │
+│  └────┬─────┘ └────┬─────┘ └────┬─────┘ └────┬─────┘   │
+│       │             │            │             │         │
+│  ┌────┴─────────────┴────────────┴─────────────┘        │
+│  │                                                      │
+│  │   adif-mcp (foundation)                              │
+│  │   ├── PersonaManager → OS Keyring                    │
+│  │   ├── ADIF 3.1.6 Spec (186 fields, 25 enums)        │
+│  │   ├── Validation Engine                              │
+│  │   └── Geospatial (distance, heading)                 │
+│  │                                                      │
+│  └──────────────────────────────────────────────────────┘
+│                                                         │
+└─────────────────────────────────────────────────────────┘
+                     │ HTTPS only
+                     ▼
+┌─────────────────────────────────────────────────────────┐
+│               External Services                         │
+│                                                         │
+│   eQSL.cc · QRZ.com · LoTW · Club Log · HamQTH         │
+│   POTA · SOTA · NOAA SWPC · WSPR Network                │
+└─────────────────────────────────────────────────────────┘
+```
+
+---
+
+## Foundation: adif-mcp
+
+adif-mcp provides three capabilities that all other servers depend on:
+
+### 1. Persona Management
+
+Named identities with credentials stored in the OS keyring. One persona serves all services:
+
+```
+Persona: "ki7mt"
+  ├── eqsl    → password in OS keyring
+  ├── lotw    → password in OS keyring
+  ├── qrz     → password in OS keyring
+  └── hamqth  → password in OS keyring
+```
+
+When a server needs credentials, it calls `adif-mcp` which reads them from the keyring at runtime. Credentials never exist in config files, environment variables, or MCP protocol messages.
+
+### 2. ADIF 3.1.6 Specification
+
+The complete ADIF 3.1.6 spec bundled as JSON:
+
+- **186 fields** with data types, valid ranges, and descriptions
+- **25 enumerations** with 4,427 records (Mode, Band, DXCC, Contest_ID, etc.)
+- **28 data types** (Number, String, Date, GridSquare, etc.)
+
+All servers share this spec for consistent parsing and validation.
+
+### 3. Validation Engine
+
+Record validation against the full spec:
+
+- Field name recognition (186 fields)
+- Data type checking (Number, Date, etc.)
+- Enum membership checking (43 enum-typed fields across 25 enumerations)
+- Compound format parsing (CreditList, multi-medium)
+- Conditional validation (Submode depends on Mode)
+- Import-only detection (warn, don't reject historical data)
+
+---
+
+## Server Architecture
+
+Each MCP server follows the same pattern:
+
+```
+MCP Client Request
+  │
+  ▼
+Input Validation ──── Regex on all user strings
+  │
+  ▼
+Rate Limiter ──────── Per-service throttle (prevents account bans)
+  │
+  ▼
+Credential Lookup ─── OS keyring via adif-mcp (authenticated servers only)
+  │
+  ▼
+API Call ──────────── HTTPS only, response parsed
+  │
+  ▼
+Response Cache ────── In-memory TTL cache
+  │
+  ▼
+Safe Return ───────── No credentials in results, errors, or logs
+```
+
+### Common Properties
+
+| Property | Value |
+|----------|-------|
+| Transport | stdio (default) or `--transport streamable-http` for MCP Inspector |
+| Framework | FastMCP 3.x |
+| Python | 3.10+ |
+| License | GPL-3.0-or-later |
+| Mock mode | `<NAME>_MCP_MOCK=1` for testing without credentials |
+
+### Rate Limiting
+
+Each server implements rate limiting appropriate for its service:
+
+| Server | Min Delay | Max Rate | Notes |
+|--------|-----------|----------|-------|
+| eqsl-mcp | 500ms | — | Respectful crawl |
+| qrz-mcp | 500ms | 35/min | IP ban risk above 35/min |
+| clublog-mcp | 500ms | 30/min | API key rate limit |
+| lotw-mcp | 500ms | — | Respectful crawl |
+| hamqth-mcp | 500ms | — | XML session rate limit |
+| pota-mcp | 100ms | — | Public API |
+| sota-mcp | 200ms | — | Public API |
+| solar-mcp | 200ms | — | NOAA public data |
+| wspr-mcp | 200ms | — | Public API |
+
+---
+
+## Credential Flow
+
+Credentials take one path and never deviate:
+
+```
+User ──── adif-mcp creds set ──── OS Keyring (encrypted)
+                                       │
+MCP Server ──── adif-mcp read ─────────┘
+    │                                (in-process, never serialized)
+    ▼
+HTTPS Request ──── credential in Authorization header
+    │
+    ▼
+Response ──── parsed, credential stripped
+    │
+    ▼
+MCP Tool Result ──── data only, no credentials
+```
+
+**What gets persisted:** Nothing. Credentials exist in memory only during the API call. The OS keyring handles encryption at rest.
+
+**What the AI sees:** Tool parameters (`persona`, `callsign`, `band`) and tool results (lookup data, QSO records). Never passwords, API keys, or session tokens.
+
+---
+
+## Package Independence
+
+Each server is a standalone `pip install`:
+
+```bash
+pip install eqsl-mcp    # just eqsl-mcp + its dependencies
+pip install pota-mcp     # just pota-mcp, no auth needed
+```
+
+Servers don't depend on each other. You can install one or all ten.
+
+Authenticated servers depend on `adif-mcp` for credential management. Public servers (POTA, SOTA, Solar, WSPR) have no dependency on adif-mcp.
+
+---
+
+## MCP Client Configuration
+
+All servers work with any MCP client. Example for Claude Desktop:
+
+```json
+{
+  "mcpServers": {
+    "adif": {
+      "command": "adif-mcp"
+    },
+    "eqsl": {
+      "command": "eqsl-mcp"
+    },
+    "pota": {
+      "command": "pota-mcp"
+    }
+  }
+}
+```
+
+For Claude Code, add to `~/.claude/settings.json`:
+
+```json
+{
+  "mcpServers": {
+    "adif": { "command": "adif-mcp", "args": [] },
+    "eqsl": { "command": "eqsl-mcp", "args": [] }
+  }
+}
+```
+
+See [Getting Started](getting-started.md) for configuration for all 6 supported MCP clients.
+
+---
+
+## Design Principles
+
+### Good Neighbor Policy
+
+qso-graph servers **wrap** external APIs — they don't replicate them. Rate limiting is built in to prevent account bans. If a service goes down, the server fails gracefully.
+
+### Read-Only Security Model
+
+No qso-graph server writes to external services. All operations are read-only: lookups, downloads, queries. No log uploads, no QSO submissions, no account modifications.
+
+### Validate Before Upload
+
+adif-mcp's validation engine catches data defects at the source. A busted QSO is not a confirmation — and a rare DXpedition contact may be irreplaceable. Validate before uploading to LoTW, eQSL, or Club Log.
+
+### Pip Install and Go
+
+Every server is one `pip install` away. No Docker, no containers, no config files (except MCP client config). Credentials go in the OS keyring, not YAML files.
@@ -6,7 +6,15 @@ Ask your AI assistant to look up a callsign, check your LoTW confirmations, find
 
 ---
 
-## 9 Packages, 44 Tools
+## 10 Packages, 51 Tools
+
+### Foundation
+
+| Package | Tools | What It Does |
+|---------|:-----:|--------------|
+| [adif-mcp](servers/adif-mcp.md) | 7 | ADIF 3.1.6 spec engine, validation, persona management, keyring credentials |
+
+### Logbook Services (Authenticated)
 
 | Package | Tools | Auth | What It Does |
 |---------|:-----:|------|--------------|
@@ -15,20 +23,28 @@ Ask your AI assistant to look up a callsign, check your LoTW confirmations, find
 | [clublog-mcp](servers/clublog.md) | 6 | API key | DXCC resolution, expedition logs, Most Wanted |
 | [lotw-mcp](servers/lotw.md) | 4 | Persona | LoTW confirmations, QSOs, DXCC credits |
 | [hamqth-mcp](servers/hamqth.md) | 4 | Persona | Free callsign lookup, DXCC, bio, activity |
-| [pota-mcp](servers/pota.md) | 6 | None | Live spots, park info, stats, schedules |
-| [sota-mcp](servers/sota.md) | 5 | None | Spots, alerts, summit info, nearby search |
-| [solar-mcp](servers/solar.md) | 6 | None | SFI, Kp, solar wind, X-ray, band outlook |
-| [wspr-mcp](servers/wspr.md) | 5 | None | Beacon spots, band activity, propagation |
+
+### Public Services (No Auth Required)
+
+| Package | Tools | What It Does |
+|---------|:-----:|--------------|
+| [pota-mcp](servers/pota.md) | 6 | Live spots, park info, stats, schedules |
+| [sota-mcp](servers/sota.md) | 5 | Spots, alerts, summit info, nearby search |
+| [solar-mcp](servers/solar.md) | 6 | SFI, Kp, solar wind, X-ray, band outlook |
+| [wspr-mcp](servers/wspr.md) | 5 | Beacon spots, band activity, propagation |
 
 ---
 
 ## Quick Install
 
 ```bash
-# Install any package
-pip install eqsl-mcp qrz-mcp clublog-mcp lotw-mcp
+# Foundation (credential management + ADIF validation)
+pip install adif-mcp
+
+# Logbook services (authenticated)
+pip install eqsl-mcp qrz-mcp clublog-mcp lotw-mcp hamqth-mcp
 
-# Public-only packages (no credentials needed)
+# Public services (no credentials needed)
 pip install pota-mcp sota-mcp solar-mcp wspr-mcp
 ```
 
@@ -90,5 +106,6 @@ Dashboard, physics lab, DXCC progress, path analyzer, and log viewer — all pow
 - **Demo**: [qso-graph-demo.vercel.app](https://qso-graph-demo.vercel.app/)
 - **GitHub**: [github.com/qso-graph](https://github.com/qso-graph)
 - **PyPI**: [eqsl-mcp](https://pypi.org/project/eqsl-mcp/) · [qrz-mcp](https://pypi.org/project/qrz-mcp/) · [clublog-mcp](https://pypi.org/project/clublog-mcp/) · [lotw-mcp](https://pypi.org/project/lotw-mcp/)
-- **Foundation**: [adif-mcp](https://pypi.org/project/adif-mcp/) — ADIF parsing + credential management
+- **Foundation**: [adif-mcp](servers/adif-mcp.md) — ADIF 3.1.6 spec engine + credential management ([PyPI](https://pypi.org/project/adif-mcp/))
+- **Testing**: [48/48 PASS](testing.md) — security audit + ADIF 3.1.6 official test corpus + forensic validation
 - **Related**: [IONIS](https://ionis-ai.com/) — HF propagation prediction from 14B amateur radio observations
@@ -0,0 +1,46 @@
+# qso-graph — MCP Servers for Amateur Radio
+
+> Open-source Model Context Protocol servers connecting AI assistants to amateur radio services. 10 packages, 51 tools, secure by design.
+
+## Foundation
+
+- [adif-mcp](https://qso-graph.io/servers/adif-mcp/): ADIF 3.1.6 spec engine, validation, persona management, OS keyring credentials. 8 tools. Foundation for all authenticated servers.
+
+## Logbook Services (Authenticated)
+
+- [eqsl-mcp](https://qso-graph.io/servers/eqsl/): eQSL.cc — inbox download, QSO verification, AG status, last upload. 4 tools.
+- [qrz-mcp](https://qso-graph.io/servers/qrz/): QRZ.com — callsign lookup, DXCC resolution, logbook access. 4 tools.
+- [clublog-mcp](https://qso-graph.io/servers/clublog/): Club Log — DXCC, log search, propagation activity, Most Wanted, expeditions. 6 tools.
+- [lotw-mcp](https://qso-graph.io/servers/lotw/): LoTW (ARRL) — confirmations, QSOs, DXCC credits, user activity. 4 tools.
+- [hamqth-mcp](https://qso-graph.io/servers/hamqth/): HamQTH — callsign lookup, DXCC, bio, activity. 4 tools.
+
+## Public Services (No Auth Required)
+
+- [pota-mcp](https://qso-graph.io/servers/pota/): Parks on the Air — live spots, park info, stats, schedules, location search. 6 tools.
+- [sota-mcp](https://qso-graph.io/servers/sota/): Summits on the Air — spots, alerts, summit info, nearby search, activator stats. 5 tools.
+- [solar-mcp](https://qso-graph.io/servers/solar/): NOAA SWPC — SFI, Kp, solar wind, X-ray flux, band outlook, alerts. 6 tools.
+- [wspr-mcp](https://qso-graph.io/servers/wspr/): WSPR network — beacon spots, band activity, propagation paths, TX power. 5 tools.
+
+## Documentation
+
+- [Getting Started](https://qso-graph.io/getting-started/): Installation, credential setup, MCP client configuration for Claude Desktop, Claude Code, ChatGPT, Cursor, VS Code, and Gemini CLI.
+- [Architecture](https://qso-graph.io/architecture/): System design — foundation layer, credential flow, rate limiting, read-only security model.
+- [Testing & Validation](https://qso-graph.io/testing/): 60 security tests across 10 packages, ADIF 3.1.6 official test corpus validation, forensic tests from real operator data.
+- [Security](https://qso-graph.io/security/): 10 non-negotiable security guarantees, credential architecture, forbidden patterns, release process, incident response.
+
+## Key Facts
+
+- All credentials stored in OS keyring (macOS Keychain, Windows Credential Manager, Linux Secret Service)
+- All external connections HTTPS only
+- No subprocess, no shell=True, no eval/exec in any package
+- Every package requires security audit before PyPI publication
+- Read-only — no server writes to external services
+- License: GPL-3.0-or-later
+- Author: Greg Beam, KI7MT
+
+## Links
+
+- GitHub: https://github.com/qso-graph
+- Documentation: https://qso-graph.io
+- Demo: https://qso-graph-demo.vercel.app
+- Related: https://ionis-ai.com (HF propagation prediction from 14B amateur radio observations)