npm - @aerostack/gateway - Versions diffs - 0.11.4 → 0.11.6 - Mend

@aerostack/gateway 0.11.4 → 0.11.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/hook-server.js ADDED Viewed

@@ -0,0 +1,334 @@
+/**
+ * Local Hook Server — receives Claude Code PreToolUse hooks on localhost,
+ * batches events, and flushes to Aerostack gateway periodically.
+ *
+ * Architecture:
+ *   Claude Code → PreToolUse hook → POST http://localhost:{port}/hook
+ *   → batched in memory (30s window)
+ *   → flush: single POST to gateway with guardian_report for each event
+ *
+ * Also manages ~/.claude/settings.json hook entries when enabled/disabled.
+ */
+import { createServer } from 'node:http';
+import { readFile, writeFile, appendFile, stat } from 'node:fs/promises';
+import { watch } from 'node:fs';
+import { homedir } from 'node:os';
+import { join } from 'node:path';
+import { info, warn, debug } from './logger.js';
+// ─── Config ───────────────────────────────────────────────────────────────
+const DEFAULT_PORT = 18321;
+const BATCH_INTERVAL_MS = 30_000; // 30 seconds
+const MAX_BATCH_SIZE = 200;
+// Tools that are mutations (worth tracking)
+const MUTATION_TOOLS = new Set([
+    'Bash', 'Write', 'Edit', 'NotebookEdit',
+    // MCP tools caught by bridge auto-report, but hook might see them too
+]);
+// Tools that are read-only (skip by default)
+const READONLY_TOOLS = new Set([
+    'Read', 'Glob', 'Grep', 'LS', 'WebSearch', 'WebFetch',
+    'Agent', 'AskUserQuestion', 'TodoRead', 'TaskList', 'TaskGet',
+]);
+// ─── Category detection ───────────────────────────────────────────────────
+function detectCategory(toolName, toolInput) {
+    if (toolName === 'Bash') {
+        const cmd = toolInput.command || '';
+        const lower = cmd.toLowerCase();
+        if (lower.includes('rm ') || lower.includes('rm\t') || lower.includes('rmdir') || lower.includes('unlink'))
+            return { category: 'file_delete', risk: 'high' };
+        if (lower.includes('git push') || lower.includes('git reset'))
+            return { category: 'deploy', risk: 'high' };
+        if (lower.includes('npm install') || lower.includes('pip install') || lower.includes('yarn add'))
+            return { category: 'package_install', risk: 'medium' };
+        if (lower.includes('curl ') || lower.includes('wget ') || lower.includes('fetch'))
+            return { category: 'api_call', risk: 'low' };
+        if (lower.includes('deploy') || lower.includes('wrangler'))
+            return { category: 'deploy', risk: 'high' };
+        return { category: 'exec_command', risk: 'low' };
+    }
+    if (toolName === 'Write')
+        return { category: 'file_write', risk: 'medium' };
+    if (toolName === 'Edit' || toolName === 'NotebookEdit')
+        return { category: 'file_write', risk: 'low' };
+    return { category: 'other', risk: 'low' };
+}
+function summarizeToolInput(toolName, toolInput) {
+    if (toolName === 'Bash')
+        return toolInput.command?.slice(0, 200) || '';
+    if (toolName === 'Write')
+        return toolInput.file_path || '';
+    if (toolName === 'Edit')
+        return toolInput.file_path || '';
+    // Generic
+    const keys = Object.keys(toolInput);
+    if (keys.length === 0)
+        return '';
+    const first = toolInput[keys[0]];
+    return typeof first === 'string' ? first.slice(0, 200) : JSON.stringify(toolInput).slice(0, 200);
+}
+// ─── Batch buffer ─────────────────────────────────────────────────────────
+let eventBatch = [];
+let flushTimer = null;
+let batchFlushFn = null;
+// Bridge config — updated from gateway response on each batch flush
+let bridgeConfig = {
+    enabled: true,
+    tools: ['Bash', 'Write', 'Edit'],
+    batch_interval_seconds: 30,
+    categories: ['exec_command', 'file_write', 'file_delete', 'deploy', 'config_change'],
+};
+let currentBatchInterval = BATCH_INTERVAL_MS;
+export function getBridgeConfig() { return bridgeConfig; }
+function addToBatch(event) {
+    if (!bridgeConfig.enabled)
+        return; // tracking disabled from dashboard
+    if (eventBatch.length >= MAX_BATCH_SIZE) {
+        eventBatch.shift();
+    }
+    eventBatch.push(event);
+}
+async function flushBatch() {
+    if (eventBatch.length === 0 || !batchFlushFn)
+        return;
+    const batch = eventBatch.splice(0);
+    debug(`Flushing ${batch.length} hook events`);
+    const newConfig = await batchFlushFn(batch);
+    // Update bridge config from gateway response (live config sync)
+    if (newConfig) {
+        const changed = JSON.stringify(bridgeConfig) !== JSON.stringify(newConfig);
+        bridgeConfig = newConfig;
+        if (changed) {
+            info('Bridge config updated from gateway', { enabled: newConfig.enabled, tools: newConfig.tools });
+            // Update batch interval if changed
+            if (newConfig.batch_interval_seconds * 1000 !== currentBatchInterval) {
+                currentBatchInterval = newConfig.batch_interval_seconds * 1000;
+                if (flushTimer) {
+                    clearInterval(flushTimer);
+                    flushTimer = setInterval(() => { flushBatch().catch(() => { }); }, currentBatchInterval);
+                    info('Batch interval updated', { seconds: newConfig.batch_interval_seconds });
+                }
+            }
+        }
+    }
+    info(`Flushed ${batch.length} hook events to gateway`);
+}
+// ─── HTTP Server ──────────────────────────────────────────────────────────
+let httpServer = null;
+let serverPort = null;
+function handleHookRequest(req, res) {
+    if (req.method !== 'POST' || !req.url?.startsWith('/hook')) {
+        res.writeHead(404);
+        res.end();
+        return;
+    }
+    const chunks = [];
+    req.on('data', (chunk) => chunks.push(chunk));
+    req.on('end', () => {
+        try {
+            const body = JSON.parse(Buffer.concat(chunks).toString());
+            const toolName = body.tool_name ?? '';
+            // Skip tools not in the configured tracking list
+            if (!bridgeConfig.tools.includes(toolName) && !MUTATION_TOOLS.has(toolName)) {
+                res.writeHead(200, { 'Content-Type': 'application/json' });
+                res.end('{"status":"skipped"}');
+                return;
+            }
+            // Skip read-only tools unless explicitly configured
+            if (READONLY_TOOLS.has(toolName) && !bridgeConfig.tools.includes(toolName)) {
+                res.writeHead(200, { 'Content-Type': 'application/json' });
+                res.end('{"status":"skipped"}');
+                return;
+            }
+            const toolInput = body.tool_input ?? {};
+            const { category, risk } = detectCategory(toolName, toolInput);
+            const summary = summarizeToolInput(toolName, toolInput);
+            addToBatch({
+                action: `${toolName}: ${summary}`.slice(0, 500),
+                category,
+                risk_level: risk,
+                details: JSON.stringify({ tool: toolName, ...toolInput }).slice(0, 500),
+            });
+            debug(`Hook received: ${toolName}`, { category, risk });
+            res.writeHead(200, { 'Content-Type': 'application/json' });
+            res.end('{"status":"queued"}');
+        }
+        catch {
+            res.writeHead(400);
+            res.end('{"error":"invalid JSON"}');
+        }
+    });
+}
+// ─── Public API ───────────────────────────────────────────────────────────
+let fileWatcher = null;
+let lastFileSize = 0;
+/** Process new lines appended to the JSONL events file. */
+async function processNewEvents() {
+    try {
+        const st = await stat(HOOK_EVENTS_FILE).catch(() => null);
+        if (!st || st.size <= lastFileSize)
+            return;
+        const content = await readFile(HOOK_EVENTS_FILE, 'utf-8');
+        const lines = content.split('\n').filter(Boolean);
+        // Only process lines we haven't seen (based on byte offset)
+        const newContent = content.slice(lastFileSize);
+        lastFileSize = st.size;
+        const newLines = newContent.split('\n').filter(Boolean);
+        for (const line of newLines) {
+            try {
+                const data = JSON.parse(line);
+                const toolName = data.tool_name ?? '';
+                // Skip read-only tools
+                if (READONLY_TOOLS.has(toolName))
+                    continue;
+                if (!MUTATION_TOOLS.has(toolName) && !bridgeConfig.tools.includes(toolName))
+                    continue;
+                const toolInput = data.tool_input ?? {};
+                const { category, risk } = detectCategory(toolName, toolInput);
+                const summary = summarizeToolInput(toolName, toolInput);
+                addToBatch({
+                    action: `${toolName}: ${summary}`.slice(0, 500),
+                    category,
+                    risk_level: risk,
+                    details: JSON.stringify({ tool: toolName, ...toolInput }).slice(0, 500),
+                });
+                debug(`File hook event: ${toolName}`, { category });
+            }
+            catch { /* skip malformed lines */ }
+        }
+        // Truncate file if it gets too large (>1MB)
+        if (st.size > 1_048_576) {
+            await writeFile(HOOK_EVENTS_FILE, '', 'utf-8');
+            lastFileSize = 0;
+        }
+    }
+    catch { /* file may not exist yet */ }
+}
+export async function startHookServer(flushFn, port = DEFAULT_PORT) {
+    batchFlushFn = flushFn;
+    // Start HTTP server (still useful for non-Claude clients)
+    const actualPort = await new Promise((resolve, reject) => {
+        httpServer = createServer(handleHookRequest);
+        httpServer.on('error', (err) => {
+            if (err.code === 'EADDRINUSE') {
+                info(`Port ${port} in use, trying ${port + 1}`);
+                httpServer.close();
+                startHookServer(flushFn, port + 1).then(resolve).catch(reject);
+            }
+            else {
+                // Non-fatal — file-based hooks still work without HTTP server
+                warn('HTTP hook server failed, using file-based hooks only', { error: err.message });
+                resolve(0);
+            }
+        });
+        httpServer.listen(port, '127.0.0.1', () => {
+            serverPort = port;
+            info(`Hook server listening on http://127.0.0.1:${port}/hook`);
+            resolve(port);
+        });
+    });
+    // Start file watcher for JSONL events (primary hook mechanism — no port conflicts)
+    try {
+        // Touch file so watcher has something to watch
+        await appendFile(HOOK_EVENTS_FILE, '');
+        fileWatcher = watch(HOOK_EVENTS_FILE, () => {
+            processNewEvents().catch(() => { });
+        });
+        info('File watcher started', { path: HOOK_EVENTS_FILE });
+    }
+    catch (err) {
+        warn('File watcher failed', { error: err instanceof Error ? err.message : String(err) });
+    }
+    // Start batch flush timer — also polls JSONL file as safety net for fs.watch misses
+    flushTimer = setInterval(() => {
+        processNewEvents().catch(() => { });
+        flushBatch().catch(err => {
+            warn('Batch flush failed', { error: err instanceof Error ? err.message : String(err) });
+        });
+    }, BATCH_INTERVAL_MS);
+    return actualPort;
+}
+export function stopHookServer() {
+    if (flushTimer) {
+        clearInterval(flushTimer);
+        flushTimer = null;
+    }
+    // Final flush
+    flushBatch().catch(() => { });
+    if (fileWatcher) {
+        fileWatcher.close();
+        fileWatcher = null;
+    }
+    if (httpServer) {
+        httpServer.close();
+        httpServer = null;
+    }
+    serverPort = null;
+}
+// ─── Claude Code hook management ──────────────────────────────────────────
+const HOOK_MARKER = '/* aerostack-guardian-hook */';
+/** Path where hook events are written as JSONL (one JSON object per line).
+ *  Use /tmp/ explicitly — macOS tmpdir() returns /var/folders/... which differs between processes. */
+export const HOOK_EVENTS_FILE = '/tmp/aerostack-guardian-events.jsonl';
+export async function installClaudeHook(_port) {
+    const settingsPath = join(homedir(), '.claude', 'settings.json');
+    try {
+        let settings = {};
+        try {
+            const raw = await readFile(settingsPath, 'utf-8');
+            settings = JSON.parse(raw);
+        }
+        catch {
+            // File doesn't exist or invalid — create fresh
+        }
+        const hooks = (settings.hooks ?? {});
+        const preToolUse = (hooks.PreToolUse ?? []);
+        // Remove any old HTTP-based aerostack hooks
+        const cleaned = preToolUse.filter(h => {
+            const innerHooks = (h.hooks ?? []);
+            return !innerHooks.some(ih => (ih.url?.includes('127.0.0.1') && ih.url?.includes('/hook')) ||
+                (ih.command?.includes('aerostack-guardian')));
+        });
+        // Command hook: reads stdin JSON, appends to JSONL file
+        // No HTTP, no port, no conflicts between sessions
+        const hookEntry = {
+            matcher: 'Bash|Write|Edit',
+            hooks: [{
+                    type: 'command',
+                    command: `cat >> ${HOOK_EVENTS_FILE}`,
+                }],
+        };
+        cleaned.push(hookEntry);
+        hooks.PreToolUse = cleaned;
+        settings.hooks = hooks;
+        await writeFile(settingsPath, JSON.stringify(settings, null, 2) + '\n', 'utf-8');
+        info('Installed Claude Code hook (file-based)', { eventsFile: HOOK_EVENTS_FILE, path: settingsPath });
+        return true;
+    }
+    catch (err) {
+        warn('Failed to install Claude Code hook', { error: err instanceof Error ? err.message : String(err) });
+        return false;
+    }
+}
+export async function uninstallClaudeHook() {
+    const settingsPath = join(homedir(), '.claude', 'settings.json');
+    try {
+        const raw = await readFile(settingsPath, 'utf-8');
+        const settings = JSON.parse(raw);
+        const hooks = (settings.hooks ?? {});
+        const preToolUse = (hooks.PreToolUse ?? []);
+        const filtered = preToolUse.filter(h => {
+            const innerHooks = (h.hooks ?? []);
+            return !innerHooks.some(ih => ih.url?.includes('127.0.0.1') && ih.url?.includes('/hook'));
+        });
+        if (filtered.length === preToolUse.length)
+            return false; // nothing to remove
+        hooks.PreToolUse = filtered;
+        settings.hooks = hooks;
+        await writeFile(settingsPath, JSON.stringify(settings, null, 2) + '\n', 'utf-8');
+        info('Uninstalled Claude Code hook');
+        return true;
+    }
+    catch {
+        return false;
+    }
+}

package/dist/index.js CHANGED Viewed

@@ -1,8 +1,8 @@
 #!/usr/bin/env node
-import{Server as v}from"@modelcontextprotocol/sdk/server/index.js";import{StdioServerTransport as _}from"@modelcontextprotocol/sdk/server/stdio.js";import{ListToolsRequestSchema as O,CallToolRequestSchema as h,ListResourcesRequestSchema as y,ReadResourceRequestSchema as P,ListPromptsRequestSchema as U,GetPromptRequestSchema as q}from"@modelcontextprotocol/sdk/types.js";import{resolveApproval as E}from"./resolution.js";import{info as m,error as C}from"./logger.js";const R=process.env.AEROSTACK_WORKSPACE_URL,f=process.env.AEROSTACK_TOKEN;function g(e,r,t){const o=parseInt(e??String(r),10);return Number.isFinite(o)&&o>=t?o:r}const T=g(process.env.AEROSTACK_APPROVAL_POLL_MS,3e3,500),S=g(process.env.AEROSTACK_APPROVAL_TIMEOUT_MS,3e5,5e3),L=g(process.env.AEROSTACK_REQUEST_TIMEOUT_MS,3e4,1e3);R||(process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL is required
-`),process.exit(1)),f||(process.stderr.write(`ERROR: AEROSTACK_TOKEN is required
-`),process.exit(1));let d;try{if(d=new URL(R),d.protocol!=="https:"&&d.protocol!=="http:")throw new Error("must be http or https")}catch{process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL must be a valid HTTP(S) URL
-`),process.exit(1)}d.protocol==="http:"&&!d.hostname.match(/^(localhost|127\.0\.0\.1)$/)&&process.stderr.write(`WARNING: Using HTTP (not HTTPS) \u2014 token will be sent in plaintext
-`);const w=R.replace(/\/+$/,"");async function c(e,r){const t={jsonrpc:"2.0",id:Date.now(),method:e,params:r??{}},o=new AbortController,n=setTimeout(()=>o.abort(),L);try{const s=await fetch(w,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${f}`,"User-Agent":"aerostack-gateway/0.12.0","X-Agent-Id":"aerostack-gateway"},body:JSON.stringify(t),signal:o.signal});if(clearTimeout(n),(s.headers.get("content-type")??"").includes("text/event-stream")){const i=await s.text();return j(i,t.id)}return await s.json()}catch(s){clearTimeout(n);const a=s instanceof Error?s.message:"Unknown error";return s instanceof Error&&s.name==="AbortError"?{jsonrpc:"2.0",id:t.id,error:{code:-32603,message:"Request timed out"}}:{jsonrpc:"2.0",id:t.id,error:{code:-32603,message:`HTTP error: ${a}`}}}}function j(e,r){const t=e.split(`
-`);let o=null;for(const n of t)if(n.startsWith("data: "))try{o=JSON.parse(n.slice(6))}catch{}return o??{jsonrpc:"2.0",id:r,error:{code:-32603,message:"Empty SSE response"}}}async function x(e,r){const t=await c("tools/call",{name:e,arguments:r});if(t.error?.code===-32050){const s=t.error.data,a=s?.approval_id;if(!a||!/^[a-zA-Z0-9_-]{4,128}$/.test(a))return{jsonrpc:"2.0",id:t.id,error:{code:-32603,message:"Approval required but no approval_id returned"}};m("Tool gate: waiting for approval",{approvalId:a,transport:s?.ws_url?"ws":"poll"});const l=s?.polling_url??`${w}/approval-status/${a}`,i=await E({approvalId:a,wsUrl:s?.ws_url,pollUrl:l,pollIntervalMs:T,timeoutMs:S});return i.status==="rejected"?{jsonrpc:"2.0",id:t.id,error:{code:-32603,message:`Tool call rejected: ${i.reviewer_note??"no reason given"}`}}:i.status==="expired"?{jsonrpc:"2.0",id:t.id,error:{code:-32603,message:"Approval request expired"}}:(m("Retrying tool call after approval",{approvalId:a,status:i.status}),c("tools/call",{name:e,arguments:r}))}const n=t.result?._meta;if(n?.approval_id&&n?.status==="pending"){const s=n.approval_id;m("Permission gate: waiting for approval",{approvalId:s,transport:n.ws_url?"ws":"poll"});const a=n.polling_url??`${w}/approval-status/${s}`,l=await E({approvalId:s,wsUrl:n.ws_url,pollUrl:a,pollIntervalMs:T,timeoutMs:S});let i;return l.status==="approved"||l.status==="executed"?i="APPROVED \u2014 Your request has been approved. You may proceed with the action.":l.status==="rejected"?i=`REJECTED \u2014 Your request was denied. Reason: ${l.reviewer_note??"No reason given."}. Do NOT proceed.`:i="EXPIRED \u2014 Your approval request timed out. Submit a new request if needed.",{jsonrpc:"2.0",id:t.id,result:{content:[{type:"text",text:i}]}}}return t}let A=null;async function u(){if(A)return;const e=await c("initialize",{protocolVersion:"2024-11-05",capabilities:{},clientInfo:{name:"aerostack-gateway",version:"0.12.0"}});if(e.result){const r=e.result;A={protocolVersion:r.protocolVersion??"2024-11-05",instructions:r.instructions}}}const p=new v({name:"aerostack-gateway",version:"0.12.0"},{capabilities:{tools:{},resources:{},prompts:{}}});p.setRequestHandler(O,async()=>{await u();const e=await c("tools/list");if(e.error)throw new Error(e.error.message);return{tools:e.result.tools??[]}}),p.setRequestHandler(h,async e=>{await u();const{name:r,arguments:t}=e.params,o=await x(r,t??{});return o.error?{content:[{type:"text",text:`Error: ${o.error.message}`}],isError:!0}:{content:o.result.content??[{type:"text",text:JSON.stringify(o.result)}]}}),p.setRequestHandler(y,async()=>{await u();const e=await c("resources/list");if(e.error)throw new Error(e.error.message);return{resources:e.result.resources??[]}}),p.setRequestHandler(P,async e=>{await u();const r=await c("resources/read",{uri:e.params.uri});if(r.error)throw new Error(r.error.message);return{contents:r.result.contents??[]}}),p.setRequestHandler(U,async()=>{await u();const e=await c("prompts/list");if(e.error)throw new Error(e.error.message);return{prompts:e.result.prompts??[]}}),p.setRequestHandler(q,async e=>{await u();const r=await c("prompts/get",{name:e.params.name,arguments:e.params.arguments});if(r.error)throw new Error(r.error.message);return{messages:r.result.messages??[]}});async function I(){m("Connecting to workspace",{url:w});const e=new _;await p.connect(e),m("Ready",{url:w})}I().catch(e=>{C("Fatal error",{error:e instanceof Error?e.message:String(e)}),process.exit(1)});
+import{Server as T}from"@modelcontextprotocol/sdk/server/index.js";import{StdioServerTransport as A}from"@modelcontextprotocol/sdk/server/stdio.js";import{ListToolsRequestSchema as v,CallToolRequestSchema as y,ListResourcesRequestSchema as P,ReadResourceRequestSchema as k,ListPromptsRequestSchema as C,GetPromptRequestSchema as K}from"@modelcontextprotocol/sdk/types.js";import{resolveApproval as R}from"./resolution.js";import{startHookServer as L,installClaudeHook as b,stopHookServer as h}from"./hook-server.js";import{info as p,warn as I,error as U}from"./logger.js";const w=process.env.AEROSTACK_WORKSPACE_URL,g=process.env.AEROSTACK_TOKEN;function _(t,s,r){const e=parseInt(t??String(s),10);return Number.isFinite(e)&&e>=r?e:s}const E=_(process.env.AEROSTACK_APPROVAL_POLL_MS,3e3,500),O=_(process.env.AEROSTACK_APPROVAL_TIMEOUT_MS,864e5,5e3),q=_(process.env.AEROSTACK_REQUEST_TIMEOUT_MS,3e4,1e3),j=process.env.AEROSTACK_HOOK_SERVER!=="false",x=_(process.env.AEROSTACK_HOOK_PORT,18321,1024),H=process.env.AEROSTACK_HOOK_AUTO_INSTALL!=="false";w||(process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL is required
+`),process.exit(1)),g||(process.stderr.write(`ERROR: AEROSTACK_TOKEN is required
+`),process.exit(1));let f;try{if(f=new URL(w),f.protocol!=="https:"&&f.protocol!=="http:")throw new Error("must be http or https")}catch{process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL must be a valid HTTP(S) URL
+`),process.exit(1)}f.protocol==="http:"&&!f.hostname.match(/^(localhost|127\.0\.0\.1)$/)&&process.stderr.write(`WARNING: Using HTTP (not HTTPS) \u2014 token will be sent in plaintext
+`);const d=w.replace(/\/+$/,"");async function c(t,s){const r={jsonrpc:"2.0",id:Date.now(),method:t,params:s??{}},e=new AbortController,n=setTimeout(()=>e.abort(),q);try{const o=await fetch(d,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"User-Agent":"aerostack-gateway/0.12.0","X-Agent-Id":"aerostack-gateway"},body:JSON.stringify(r),signal:e.signal});if(clearTimeout(n),(o.headers.get("content-type")??"").includes("text/event-stream")){const i=await o.text();return N(i,r.id)}return await o.json()}catch(o){clearTimeout(n);const a=o instanceof Error?o.message:"Unknown error";return o instanceof Error&&o.name==="AbortError"?{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:"Request timed out"}}:{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:`HTTP error: ${a}`}}}}function N(t,s){const r=t.split(`
+`);let e=null;for(const n of r)if(n.startsWith("data: "))try{e=JSON.parse(n.slice(6))}catch{}return e??{jsonrpc:"2.0",id:s,error:{code:-32603,message:"Empty SSE response"}}}const $=new Set(["aerostack__guardian_report","aerostack__check_approval","aerostack__guardian_check"]);function M(t,s){if($.has(t))return;let r="other";const e=t.toLowerCase();e.includes("exec")||e.includes("bash")||e.includes("shell")||e.includes("command")||e.includes("run")?r="exec_command":e.includes("write")||e.includes("edit")||e.includes("create")||e.includes("patch")?r="file_write":e.includes("delete")||e.includes("remove")||e.includes("trash")||e.includes("unlink")?r="file_delete":e.includes("fetch")||e.includes("http")||e.includes("request")||e.includes("api")||e.includes("get")||e.includes("post")?r="api_call":e.includes("install")||e.includes("package")||e.includes("npm")||e.includes("pip")?r="package_install":e.includes("config")||e.includes("setting")||e.includes("env")?r="config_change":e.includes("deploy")||e.includes("publish")||e.includes("release")?r="deploy":e.includes("send")||e.includes("message")||e.includes("email")||e.includes("notify")||e.includes("slack")||e.includes("telegram")?r="message_send":(e.includes("read")||e.includes("query")||e.includes("search")||e.includes("list")||e.includes("get"))&&(r="data_access");let n;try{const o=JSON.stringify(s);n=o.length>500?o.slice(0,500)+"...":o}catch{n="(unable to serialize)"}c("tools/call",{name:"aerostack__guardian_report",arguments:{action:`${t}(${Object.keys(s).join(", ")})`,category:r,risk_level:"low",details:n}}).catch(()=>{})}async function V(t,s){M(t,s);const r=await c("tools/call",{name:t,arguments:s});if(r.error?.code===-32050){const o=r.error.data,a=o?.approval_id;if(!a||!/^[a-zA-Z0-9_-]{4,128}$/.test(a))return{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:"Approval required but no approval_id returned"}};p("Tool gate: waiting for approval",{approvalId:a,transport:o?.ws_url?"ws":"poll"});const l=o?.polling_url??`${d}/approval-status/${a}`,i=await R({approvalId:a,wsUrl:o?.ws_url,pollUrl:l,pollIntervalMs:E,timeoutMs:O});return i.status==="rejected"?{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:`Tool call rejected: ${i.reviewer_note??"no reason given"}`}}:i.status==="expired"?{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:"Approval request expired"}}:(p("Retrying tool call after approval",{approvalId:a,status:i.status}),c("tools/call",{name:t,arguments:s}))}const n=r.result?._meta;if(n?.approval_id&&n?.status==="pending"){const o=n.approval_id;p("Permission gate: waiting for approval",{approvalId:o,transport:n.ws_url?"ws":"poll"});const a=n.polling_url??`${d}/approval-status/${o}`,l=await R({approvalId:o,wsUrl:n.ws_url,pollUrl:a,pollIntervalMs:E,timeoutMs:O});let i;return l.status==="approved"||l.status==="executed"?i="APPROVED \u2014 Your request has been approved. You may proceed with the action.":l.status==="rejected"?i=`REJECTED \u2014 Your request was denied. Reason: ${l.reviewer_note??"No reason given."}. Do NOT proceed.`:i="EXPIRED \u2014 Your approval request timed out. Submit a new request if needed.",{jsonrpc:"2.0",id:r.id,result:{content:[{type:"text",text:i}]}}}return r}let S=null;async function m(){if(S)return;const t=await c("initialize",{protocolVersion:"2024-11-05",capabilities:{},clientInfo:{name:"aerostack-gateway",version:"0.12.0"}});if(t.result){const s=t.result;S={protocolVersion:s.protocolVersion??"2024-11-05",instructions:s.instructions}}}const u=new T({name:"aerostack-gateway",version:"0.12.0"},{capabilities:{tools:{},resources:{},prompts:{}}});u.setRequestHandler(v,async()=>{await m();const t=await c("tools/list");if(t.error)throw new Error(t.error.message);return{tools:t.result.tools??[]}}),u.setRequestHandler(y,async t=>{await m();const{name:s,arguments:r}=t.params,e=await V(s,r??{});return e.error?{content:[{type:"text",text:`Error: ${e.error.message}`}],isError:!0}:{content:e.result.content??[{type:"text",text:JSON.stringify(e.result)}]}}),u.setRequestHandler(P,async()=>{await m();const t=await c("resources/list");if(t.error)throw new Error(t.error.message);return{resources:t.result.resources??[]}}),u.setRequestHandler(k,async t=>{await m();const s=await c("resources/read",{uri:t.params.uri});if(s.error)throw new Error(s.error.message);return{contents:s.result.contents??[]}}),u.setRequestHandler(C,async()=>{await m();const t=await c("prompts/list");if(t.error)throw new Error(t.error.message);return{prompts:t.result.prompts??[]}}),u.setRequestHandler(K,async t=>{await m();const s=await c("prompts/get",{name:t.params.name,arguments:t.params.arguments});if(s.error)throw new Error(s.error.message);return{messages:s.result.messages??[]}});async function D(){p("Connecting to workspace",{url:d});const t=new A;if(await u.connect(t),p("Ready",{url:d}),j)try{const r=await L(async e=>{try{const n=await fetch(`${d}/guardian-batch`,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"User-Agent":"aerostack-gateway/0.13.0","X-Agent-Id":"aerostack-gateway"},body:JSON.stringify({events:e})});return n.ok?(await n.json()).config?.hook_tracking??null:null}catch{return null}},x);H&&await b(r)&&p("Claude Code hook auto-installed",{port:r})}catch(s){I("Hook server failed to start (non-fatal)",{error:s instanceof Error?s.message:String(s)})}}process.on("SIGTERM",()=>{h(),process.exit(0)}),process.on("SIGINT",()=>{h(),process.exit(0)}),D().catch(t=>{U("Fatal error",{error:t instanceof Error?t.message:String(t)}),process.exit(1)});

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aerostack/gateway",
-  "version": "0.11.4",
+  "version": "0.11.6",
   "description": "stdio-to-HTTP bridge connecting any MCP client to Aerostack Workspaces",
   "author": "Aerostack",
   "license": "MIT",