fix: set_cookie sameSite/expires/session fields, IndexedDB keyRange omission, bump 0.3.5

- set_cookie now sends all required fields (sameSite defaults to "Lax",
  session=true when expires=0) to satisfy WebKit's strict validation
- Removed omitempty from Cookie.SameSite so it's always serialized
- get_indexed_db_data omits keyRange entirely instead of sending nil/{}
  which WebKit rejected with "Could not parse key range"

Author: nnemirovsky

.claude-plugin/marketplace.json

@@ -1,6 +1,6 @@
 {
   "name": "iwdp-mcp",
-  "version": "0.3.4",
+  "version": "0.3.5",
   "description": "iOS Safari debugging via ios-webkit-debug-proxy — MCP server with full WebKit Inspector Protocol support",
   "owner": {
     "name": "nnemirovsky"

.claude-plugin/plugin.json

@@ -1,6 +1,6 @@
 {
   "name": "iwdp-mcp",
-  "version": "0.3.4",
+  "version": "0.3.5",
   "description": "iOS Safari debugging via ios-webkit-debug-proxy — MCP server with full WebKit Inspector Protocol support",
   "mcpServers": {
     "iwdp-mcp": {

cmd/iwdp-mcp/main.go

@@ -58,7 +58,7 @@ func lookupInterceptStage(requestID string) string {
 func main() {
 	server := mcp.NewServer(&mcp.Implementation{
 		Name:    "iwdp-mcp",
-		Version: "0.3.4",
+		Version: "0.3.5",
 	}, nil)
 
 	registerTools(server)
@@ -247,12 +247,14 @@ type SetResourceCachingDisabledInput struct {
 type (
 	GetCookiesInput struct{}
 	SetCookieInput  struct {
-		Name     string `json:"name"`
-		Value    string `json:"value"`
-		Domain   string `json:"domain,omitempty"`
-		Path     string `json:"path,omitempty"`
-		Secure   bool   `json:"secure,omitempty"`
-		HTTPOnly bool   `json:"http_only,omitempty"`
+		Name     string  `json:"name"`
+		Value    string  `json:"value"`
+		Domain   string  `json:"domain,omitempty"`
+		Path     string  `json:"path,omitempty"`
+		Expires  float64 `json:"expires,omitempty" jsonschema:"expiry as Unix timestamp in seconds (0 or omit for session cookie)"`
+		Secure   bool    `json:"secure,omitempty"`
+		HTTPOnly bool    `json:"http_only,omitempty"`
+		SameSite string  `json:"same_site,omitempty" jsonschema:"cookie SameSite attribute: None, Lax, or Strict (default: Lax)"`
 	}
 )
 
@@ -1159,13 +1161,20 @@ func registerTools(server *mcp.Server) {
 		if err != nil {
 			return nil, OKOutput{}, err
 		}
+		sameSite := input.SameSite
+		if sameSite == "" {
+			sameSite = "Lax"
+		}
 		cookie := webkit.Cookie{
 			Name:     input.Name,
 			Value:    input.Value,
 			Domain:   input.Domain,
 			Path:     input.Path,
+			Expires:  input.Expires,
+			Session:  input.Expires == 0,
 			Secure:   input.Secure,
 			HTTPOnly: input.HTTPOnly,
+			SameSite: sameSite,
 		}
 		return nil, ok(), tools.SetCookie(ctx, c, cookie)
 	})

internal/tools/storage.go

@@ -163,7 +163,6 @@ func GetIndexedDBData(ctx context.Context, client *webkit.Client, securityOrigin
 		"indexName":       "",
 		"skipCount":       skipCount,
 		"pageSize":        pageSize,
-		"keyRange":        nil,
 	})
 	if err != nil {
 		return nil, err

internal/webkit/types.go

@@ -234,7 +234,7 @@ type Cookie struct {
 	HTTPOnly bool    `json:"httpOnly"`
 	Secure   bool    `json:"secure"`
 	Session  bool    `json:"session"`
-	SameSite string  `json:"sameSite,omitempty"`
+	SameSite string  `json:"sameSite"`
 }
 
 // --- DOMStorage types ---