npm - @aerostack/gateway - Versions diffs - 0.13.2 → 0.15.0 - Mend

@aerostack/gateway 0.13.2 → 0.15.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/approval-store.js +1 -0
package/dist/exec-approval-server.js +3 -0
package/dist/hook-server.js +5 -334
package/dist/index.js +18 -5
package/dist/openclaw-connector.js +1 -0
package/dist/resolution.js +1 -1
package/package.json +1 -1

package/dist/approval-store.js ADDED Viewed

@@ -0,0 +1 @@

+ const o=500,c=72e5,l=6e4;class a{store=new Map;cancelHandles=new Map;cleanupTimer=null;constructor(){this.cleanupTimer=setInterval(()=>this.cleanup(),6e4)}set(e,t){if(!this.store.has(e)&&this.store.size>=500){const s=this.store.keys().next().value;s&&this.evict(s)}this.store.set(e,{...t,delivered:t.delivered??!1})}get(e){return this.store.get(e)}getResolved(){const e=[];for(const t of this.store.values())!t.delivered&&t.status!=="pending"&&e.push(t);return e}markDelivered(e){const t=this.store.get(e);t&&(t.delivered=!0)}getPending(){const e=[];for(const t of this.store.values())t.status==="pending"&&e.push(t);return e}setCancelHandle(e,t){this.cancelHandles.set(e,t)}resolve(e,t,s,r){const n=this.store.get(e);n&&(n.status=t,n.resolvedAt=Date.now(),n.reviewerNote=s,r!==void 0&&(n.result=r))}get size(){return this.store.size}allIds(){return Array.from(this.store.keys())}getUndeliveredIds(){const e=[];for(const[t,s]of this.store)!s.delivered&&s.status!=="pending"&&e.push(t);return e}cleanup(){const e=Date.now();for(const[t,s]of this.store)e-s.createdAt>72e5&&this.evict(t)}evict(e){const t=this.cancelHandles.get(e);if(t){try{t()}catch{}this.cancelHandles.delete(e)}this.store.delete(e)}destroy(){this.cleanupTimer&&(clearInterval(this.cleanupTimer),this.cleanupTimer=null);for(const e of this.cancelHandles.values())try{e()}catch{}this.cancelHandles.clear(),this.store.clear()}}export{a as ApprovalStore};

package/dist/exec-approval-server.js ADDED Viewed

@@ -0,0 +1,3 @@
+import{createServer as f}from"node:net";import{unlink as u,mkdir as g}from"node:fs/promises";import{dirname as h}from"node:path";import{info as p,warn as m,debug as b,error as d}from"./logger.js";import{addToBatch as y}from"./hook-server.js";function v(e){const t=e.toLowerCase();return/\brm\s+-rf?\b|\bdrop\s|\bdelete\s|\btruncate\s|\bformat\b/.test(t)?"critical":/\brm\b|\bgit\s+push\b|\bgit\s+reset\b|\bdeploy\b|\bkill\b/.test(t)?"high":/\binstall\b|\bpip\b|\bnpm\b|\bcurl\b|\bwget\b/.test(t)?"medium":"low"}function E(e){const t=e.toLowerCase();return/\brm\b|\bunlink\b|\brmdir\b/.test(t)?"file_delete":/\bgit\s+push\b|\bdeploy\b|\bwrangler\b/.test(t)?"deploy":/\binstall\b|\bpip\b|\bnpm\b|\byarn\b/.test(t)?"package_install":/\bcurl\b|\bwget\b|\bfetch\b/.test(t)?"api_call":/\bwrite\b|\btee\b|\b>\b|\bcat\s.*>/.test(t)?"file_write":"exec_command"}function D(e){let t=null,a=!1;return(async()=>{await g(h(e.socketPath),{recursive:!0}).catch(()=>{}),await u(e.socketPath).catch(()=>{}),t=f(r=>{k(r,e)}),t.on("error",r=>{r.code==="EADDRINUSE"?m("Exec approval socket in use, skipping",{path:e.socketPath}):d("Exec approval server error",{error:r.message})}),t.listen(e.socketPath,()=>{p("Exec approval server started",{path:e.socketPath})})})().catch(r=>{m("Exec approval server failed to start",{error:r instanceof Error?r.message:String(r)})}),{stop:()=>{a||(a=!0,t&&(t.close(),t=null),u(e.socketPath).catch(()=>{}))}}}function k(e,t){let a="";const n=setTimeout(()=>{b("Exec approval timeout, denying"),o(e,"deny")},14e3);e.on("data",r=>{a+=r.toString("utf-8");const i=a.indexOf(`
+`);if(i===-1)return;const c=a.slice(0,i).trim();a=a.slice(i+1),clearTimeout(n);try{const s=JSON.parse(c);if(s.token!==t.token){b("Exec approval token mismatch"),o(e,"deny");return}w(s,e,t).catch(l=>{d("Exec approval processing error",{error:l instanceof Error?l.message:String(l)}),o(e,"deny")})}catch{o(e,"deny")}}),e.on("error",()=>{clearTimeout(n)})}async function w(e,t,a){const n=e.request.command??e.request.args?.join(" ")??"unknown",r=v(n),i=E(n),c=e.request.sessionKey??"",s=e.request.agentId??"";y({action:`[exec-approval] ${n}`.slice(0,500),category:i,risk_level:r,details:JSON.stringify({command:n,host:e.request.host,agent:s,session:c,security:e.request.security}).slice(0,500)}),a.rpcCall("tools/call",{name:"aerostack__guardian_report",arguments:{action:`OpenClaw exec: ${n}`.slice(0,500),category:i,risk_level:r,details:JSON.stringify({command:n,agent:s,session:c}).slice(0,500)}}).catch(()=>{}),r==="critical"||r==="high"?(p("Exec approval DENIED (high risk)",{command:n.slice(0,100),risk:r}),a.rpcCall("tools/call",{name:"aerostack__local_guardian",arguments:{action:n.slice(0,500),category:i,risk_level:r,details:`OpenClaw agent ${s} wants to execute: ${n}`}}).catch(()=>{}),o(t,"deny")):(b("Exec approval ALLOWED",{command:n.slice(0,100),risk:r}),o(t,"allow-once"))}function o(e,t){try{e.write(JSON.stringify({type:"decision",decision:t})+`
+`),e.end()}catch{}}export{D as startExecApprovalServer};

package/dist/hook-server.js CHANGED Viewed

@@ -1,334 +1,5 @@
-/**
- * Local Hook Server — receives Claude Code PreToolUse hooks on localhost,
- * batches events, and flushes to Aerostack gateway periodically.
- *
- * Architecture:
- *   Claude Code → PreToolUse hook → POST http://localhost:{port}/hook
- *   → batched in memory (30s window)
- *   → flush: single POST to gateway with guardian_report for each event
- *
- * Also manages ~/.claude/settings.json hook entries when enabled/disabled.
- */
-import { createServer } from 'node:http';
-import { readFile, writeFile, appendFile, stat } from 'node:fs/promises';
-import { watch } from 'node:fs';
-import { homedir } from 'node:os';
-import { join } from 'node:path';
-import { info, warn, debug } from './logger.js';
-// ─── Config ───────────────────────────────────────────────────────────────
-const DEFAULT_PORT = 18321;
-const BATCH_INTERVAL_MS = 30_000; // 30 seconds
-const MAX_BATCH_SIZE = 200;
-// Tools that are mutations (worth tracking)
-const MUTATION_TOOLS = new Set([
-    'Bash', 'Write', 'Edit', 'NotebookEdit',
-    // MCP tools caught by bridge auto-report, but hook might see them too
-]);
-// Tools that are read-only (skip by default)
-const READONLY_TOOLS = new Set([
-    'Read', 'Glob', 'Grep', 'LS', 'WebSearch', 'WebFetch',
-    'Agent', 'AskUserQuestion', 'TodoRead', 'TaskList', 'TaskGet',
-]);
-// ─── Category detection ───────────────────────────────────────────────────
-function detectCategory(toolName, toolInput) {
-    if (toolName === 'Bash') {
-        const cmd = toolInput.command || '';
-        const lower = cmd.toLowerCase();
-        if (lower.includes('rm ') || lower.includes('rm\t') || lower.includes('rmdir') || lower.includes('unlink'))
-            return { category: 'file_delete', risk: 'high' };
-        if (lower.includes('git push') || lower.includes('git reset'))
-            return { category: 'deploy', risk: 'high' };
-        if (lower.includes('npm install') || lower.includes('pip install') || lower.includes('yarn add'))
-            return { category: 'package_install', risk: 'medium' };
-        if (lower.includes('curl ') || lower.includes('wget ') || lower.includes('fetch'))
-            return { category: 'api_call', risk: 'low' };
-        if (lower.includes('deploy') || lower.includes('wrangler'))
-            return { category: 'deploy', risk: 'high' };
-        return { category: 'exec_command', risk: 'low' };
-    }
-    if (toolName === 'Write')
-        return { category: 'file_write', risk: 'medium' };
-    if (toolName === 'Edit' || toolName === 'NotebookEdit')
-        return { category: 'file_write', risk: 'low' };
-    return { category: 'other', risk: 'low' };
-}
-function summarizeToolInput(toolName, toolInput) {
-    if (toolName === 'Bash')
-        return toolInput.command?.slice(0, 200) || '';
-    if (toolName === 'Write')
-        return toolInput.file_path || '';
-    if (toolName === 'Edit')
-        return toolInput.file_path || '';
-    // Generic
-    const keys = Object.keys(toolInput);
-    if (keys.length === 0)
-        return '';
-    const first = toolInput[keys[0]];
-    return typeof first === 'string' ? first.slice(0, 200) : JSON.stringify(toolInput).slice(0, 200);
-}
-// ─── Batch buffer ─────────────────────────────────────────────────────────
-let eventBatch = [];
-let flushTimer = null;
-let batchFlushFn = null;
-// Bridge config — updated from gateway response on each batch flush
-let bridgeConfig = {
-    enabled: true,
-    tools: ['Bash', 'Write', 'Edit'],
-    batch_interval_seconds: 30,
-    categories: ['exec_command', 'file_write', 'file_delete', 'deploy', 'config_change'],
-};
-let currentBatchInterval = BATCH_INTERVAL_MS;
-export function getBridgeConfig() { return bridgeConfig; }
-function addToBatch(event) {
-    if (!bridgeConfig.enabled)
-        return; // tracking disabled from dashboard
-    if (eventBatch.length >= MAX_BATCH_SIZE) {
-        eventBatch.shift();
-    }
-    eventBatch.push(event);
-}
-async function flushBatch() {
-    if (eventBatch.length === 0 || !batchFlushFn)
-        return;
-    const batch = eventBatch.splice(0);
-    debug(`Flushing ${batch.length} hook events`);
-    const newConfig = await batchFlushFn(batch);
-    // Update bridge config from gateway response (live config sync)
-    if (newConfig) {
-        const changed = JSON.stringify(bridgeConfig) !== JSON.stringify(newConfig);
-        bridgeConfig = newConfig;
-        if (changed) {
-            info('Bridge config updated from gateway', { enabled: newConfig.enabled, tools: newConfig.tools });
-            // Update batch interval if changed
-            if (newConfig.batch_interval_seconds * 1000 !== currentBatchInterval) {
-                currentBatchInterval = newConfig.batch_interval_seconds * 1000;
-                if (flushTimer) {
-                    clearInterval(flushTimer);
-                    flushTimer = setInterval(() => { flushBatch().catch(() => { }); }, currentBatchInterval);
-                    info('Batch interval updated', { seconds: newConfig.batch_interval_seconds });
-                }
-            }
-        }
-    }
-    info(`Flushed ${batch.length} hook events to gateway`);
-}
-// ─── HTTP Server ──────────────────────────────────────────────────────────
-let httpServer = null;
-let serverPort = null;
-function handleHookRequest(req, res) {
-    if (req.method !== 'POST' || !req.url?.startsWith('/hook')) {
-        res.writeHead(404);
-        res.end();
-        return;
-    }
-    const chunks = [];
-    req.on('data', (chunk) => chunks.push(chunk));
-    req.on('end', () => {
-        try {
-            const body = JSON.parse(Buffer.concat(chunks).toString());
-            const toolName = body.tool_name ?? '';
-            // Skip tools not in the configured tracking list
-            if (!bridgeConfig.tools.includes(toolName) && !MUTATION_TOOLS.has(toolName)) {
-                res.writeHead(200, { 'Content-Type': 'application/json' });
-                res.end('{"status":"skipped"}');
-                return;
-            }
-            // Skip read-only tools unless explicitly configured
-            if (READONLY_TOOLS.has(toolName) && !bridgeConfig.tools.includes(toolName)) {
-                res.writeHead(200, { 'Content-Type': 'application/json' });
-                res.end('{"status":"skipped"}');
-                return;
-            }
-            const toolInput = body.tool_input ?? {};
-            const { category, risk } = detectCategory(toolName, toolInput);
-            const summary = summarizeToolInput(toolName, toolInput);
-            addToBatch({
-                action: `${toolName}: ${summary}`.slice(0, 500),
-                category,
-                risk_level: risk,
-                details: JSON.stringify({ tool: toolName, ...toolInput }).slice(0, 500),
-            });
-            debug(`Hook received: ${toolName}`, { category, risk });
-            res.writeHead(200, { 'Content-Type': 'application/json' });
-            res.end('{"status":"queued"}');
-        }
-        catch {
-            res.writeHead(400);
-            res.end('{"error":"invalid JSON"}');
-        }
-    });
-}
-// ─── Public API ───────────────────────────────────────────────────────────
-let fileWatcher = null;
-let lastFileSize = 0;
-/** Process new lines appended to the JSONL events file. */
-async function processNewEvents() {
-    try {
-        const st = await stat(HOOK_EVENTS_FILE).catch(() => null);
-        if (!st || st.size <= lastFileSize)
-            return;
-        const content = await readFile(HOOK_EVENTS_FILE, 'utf-8');
-        const lines = content.split('\n').filter(Boolean);
-        // Only process lines we haven't seen (based on byte offset)
-        const newContent = content.slice(lastFileSize);
-        lastFileSize = st.size;
-        const newLines = newContent.split('\n').filter(Boolean);
-        for (const line of newLines) {
-            try {
-                const data = JSON.parse(line);
-                const toolName = data.tool_name ?? '';
-                // Skip read-only tools
-                if (READONLY_TOOLS.has(toolName))
-                    continue;
-                if (!MUTATION_TOOLS.has(toolName) && !bridgeConfig.tools.includes(toolName))
-                    continue;
-                const toolInput = data.tool_input ?? {};
-                const { category, risk } = detectCategory(toolName, toolInput);
-                const summary = summarizeToolInput(toolName, toolInput);
-                addToBatch({
-                    action: `${toolName}: ${summary}`.slice(0, 500),
-                    category,
-                    risk_level: risk,
-                    details: JSON.stringify({ tool: toolName, ...toolInput }).slice(0, 500),
-                });
-                debug(`File hook event: ${toolName}`, { category });
-            }
-            catch { /* skip malformed lines */ }
-        }
-        // Truncate file if it gets too large (>1MB)
-        if (st.size > 1_048_576) {
-            await writeFile(HOOK_EVENTS_FILE, '', 'utf-8');
-            lastFileSize = 0;
-        }
-    }
-    catch { /* file may not exist yet */ }
-}
-export async function startHookServer(flushFn, port = DEFAULT_PORT) {
-    batchFlushFn = flushFn;
-    // Start HTTP server (still useful for non-Claude clients)
-    const actualPort = await new Promise((resolve, reject) => {
-        httpServer = createServer(handleHookRequest);
-        httpServer.on('error', (err) => {
-            if (err.code === 'EADDRINUSE') {
-                info(`Port ${port} in use, trying ${port + 1}`);
-                httpServer.close();
-                startHookServer(flushFn, port + 1).then(resolve).catch(reject);
-            }
-            else {
-                // Non-fatal — file-based hooks still work without HTTP server
-                warn('HTTP hook server failed, using file-based hooks only', { error: err.message });
-                resolve(0);
-            }
-        });
-        httpServer.listen(port, '127.0.0.1', () => {
-            serverPort = port;
-            info(`Hook server listening on http://127.0.0.1:${port}/hook`);
-            resolve(port);
-        });
-    });
-    // Start file watcher for JSONL events (primary hook mechanism — no port conflicts)
-    try {
-        // Touch file so watcher has something to watch
-        await appendFile(HOOK_EVENTS_FILE, '');
-        fileWatcher = watch(HOOK_EVENTS_FILE, () => {
-            processNewEvents().catch(() => { });
-        });
-        info('File watcher started', { path: HOOK_EVENTS_FILE });
-    }
-    catch (err) {
-        warn('File watcher failed', { error: err instanceof Error ? err.message : String(err) });
-    }
-    // Start batch flush timer — also polls JSONL file as safety net for fs.watch misses
-    flushTimer = setInterval(() => {
-        processNewEvents().catch(() => { });
-        flushBatch().catch(err => {
-            warn('Batch flush failed', { error: err instanceof Error ? err.message : String(err) });
-        });
-    }, BATCH_INTERVAL_MS);
-    return actualPort;
-}
-export function stopHookServer() {
-    if (flushTimer) {
-        clearInterval(flushTimer);
-        flushTimer = null;
-    }
-    // Final flush
-    flushBatch().catch(() => { });
-    if (fileWatcher) {
-        fileWatcher.close();
-        fileWatcher = null;
-    }
-    if (httpServer) {
-        httpServer.close();
-        httpServer = null;
-    }
-    serverPort = null;
-}
-// ─── Claude Code hook management ──────────────────────────────────────────
-const HOOK_MARKER = '/* aerostack-guardian-hook */';
-/** Path where hook events are written as JSONL (one JSON object per line).
- *  Use /tmp/ explicitly — macOS tmpdir() returns /var/folders/... which differs between processes. */
-export const HOOK_EVENTS_FILE = '/tmp/aerostack-guardian-events.jsonl';
-export async function installClaudeHook(_port) {
-    const settingsPath = join(homedir(), '.claude', 'settings.json');
-    try {
-        let settings = {};
-        try {
-            const raw = await readFile(settingsPath, 'utf-8');
-            settings = JSON.parse(raw);
-        }
-        catch {
-            // File doesn't exist or invalid — create fresh
-        }
-        const hooks = (settings.hooks ?? {});
-        const preToolUse = (hooks.PreToolUse ?? []);
-        // Remove any old HTTP-based aerostack hooks
-        const cleaned = preToolUse.filter(h => {
-            const innerHooks = (h.hooks ?? []);
-            return !innerHooks.some(ih => (ih.url?.includes('127.0.0.1') && ih.url?.includes('/hook')) ||
-                (ih.command?.includes('aerostack-guardian')));
-        });
-        // Command hook: reads stdin JSON, appends to JSONL file
-        // No HTTP, no port, no conflicts between sessions
-        const hookEntry = {
-            matcher: 'Bash|Write|Edit',
-            hooks: [{
-                    type: 'command',
-                    command: `cat >> ${HOOK_EVENTS_FILE}`,
-                }],
-        };
-        cleaned.push(hookEntry);
-        hooks.PreToolUse = cleaned;
-        settings.hooks = hooks;
-        await writeFile(settingsPath, JSON.stringify(settings, null, 2) + '\n', 'utf-8');
-        info('Installed Claude Code hook (file-based)', { eventsFile: HOOK_EVENTS_FILE, path: settingsPath });
-        return true;
-    }
-    catch (err) {
-        warn('Failed to install Claude Code hook', { error: err instanceof Error ? err.message : String(err) });
-        return false;
-    }
-}
-export async function uninstallClaudeHook() {
-    const settingsPath = join(homedir(), '.claude', 'settings.json');
-    try {
-        const raw = await readFile(settingsPath, 'utf-8');
-        const settings = JSON.parse(raw);
-        const hooks = (settings.hooks ?? {});
-        const preToolUse = (hooks.PreToolUse ?? []);
-        const filtered = preToolUse.filter(h => {
-            const innerHooks = (h.hooks ?? []);
-            return !innerHooks.some(ih => ih.url?.includes('127.0.0.1') && ih.url?.includes('/hook'));
-        });
-        if (filtered.length === preToolUse.length)
-            return false; // nothing to remove
-        hooks.PreToolUse = filtered;
-        settings.hooks = hooks;
-        await writeFile(settingsPath, JSON.stringify(settings, null, 2) + '\n', 'utf-8');
-        info('Uninstalled Claude Code hook');
-        return true;
-    }
-    catch {
-        return false;
-    }
-}
+import{createServer as A}from"node:http";import{readFile as w,writeFile as _,appendFile as L,stat as I}from"node:fs/promises";import{watch as R}from"node:fs";import{homedir as E}from"node:os";import{join as b}from"node:path";import{info as l,warn as p,debug as S}from"./logger.js";const W=18321,H=3e4,j=200,C=new Set(["Bash","Write","Edit","NotebookEdit"]),B=new Set(["Read","Glob","Grep","LS","WebSearch","WebFetch","Agent","AskUserQuestion","TodoRead","TaskList","TaskGet"]);function N(n,e){if(n==="Bash"){const t=(e.command||"").toLowerCase();return t.includes("rm ")||t.includes("rm	")||t.includes("rmdir")||t.includes("unlink")?{category:"file_delete",risk:"high"}:t.includes("git push")||t.includes("git reset")?{category:"deploy",risk:"high"}:t.includes("npm install")||t.includes("pip install")||t.includes("yarn add")?{category:"package_install",risk:"medium"}:t.includes("curl ")||t.includes("wget ")||t.includes("fetch")?{category:"api_call",risk:"low"}:t.includes("deploy")||t.includes("wrangler")?{category:"deploy",risk:"high"}:{category:"exec_command",risk:"low"}}return n==="Write"?{category:"file_write",risk:"medium"}:n==="Edit"||n==="NotebookEdit"?{category:"file_write",risk:"low"}:{category:"other",risk:"low"}}function F(n,e){if(n==="Bash")return e.command?.slice(0,200)||"";if(n==="Write"||n==="Edit")return e.file_path||"";const o=Object.keys(e);if(o.length===0)return"";const t=e[o[0]];return typeof t=="string"?t.slice(0,200):JSON.stringify(e).slice(0,200)}let k=[],d=null,T=null,h={enabled:!0,tools:["Bash","Write","Edit"],batch_interval_seconds:30,categories:["exec_command","file_write","file_delete","deploy","config_change"]},v=H;function Y(){return h}function P(n){h.enabled&&(k.length>=j&&k.shift(),k.push(n))}async function O(){if(k.length===0||!T)return;const n=k.splice(0);S(`Flushing ${n.length} hook events`);const e=await T(n);if(e){const o=JSON.stringify(h)!==JSON.stringify(e);h=e,o&&(l("Bridge config updated from gateway",{enabled:e.enabled,tools:e.tools}),e.batch_interval_seconds*1e3!==v&&(v=e.batch_interval_seconds*1e3,d&&(clearInterval(d),d=setInterval(()=>{O().catch(()=>{})},v),l("Batch interval updated",{seconds:e.batch_interval_seconds}))))}l(`Flushed ${n.length} hook events to gateway`)}let f=null,J=null;function z(n,e){if(n.method!=="POST"||!n.url?.startsWith("/hook")){e.writeHead(404),e.end();return}const o=[];n.on("data",t=>o.push(t)),n.on("end",()=>{try{const t=JSON.parse(Buffer.concat(o).toString()),s=t.tool_name??"";if(!h.tools.includes(s)&&!C.has(s)){e.writeHead(200,{"Content-Type":"application/json"}),e.end('{"status":"skipped"}');return}if(B.has(s)&&!h.tools.includes(s)){e.writeHead(200,{"Content-Type":"application/json"}),e.end('{"status":"skipped"}');return}const r=t.tool_input??{},{category:a,risk:i}=N(s,r),c=F(s,r);P({action:`${s}: ${c}`.slice(0,500),category:a,risk_level:i,details:JSON.stringify({tool:s,...r}).slice(0,500)}),S(`Hook received: ${s}`,{category:a,risk:i}),e.writeHead(200,{"Content-Type":"application/json"}),e.end('{"status":"queued"}')}catch{e.writeHead(400),e.end('{"error":"invalid JSON"}')}})}let m=null,y=0;async function U(){try{const n=await I(u).catch(()=>null);if(!n||n.size<=y)return;const e=await w(u,"utf-8"),o=e.split(`
+`).filter(Boolean),t=e.slice(y);y=n.size;const s=t.split(`
+`).filter(Boolean);for(const r of s)try{const a=JSON.parse(r),i=a.tool_name??"";if(B.has(i)||!C.has(i)&&!h.tools.includes(i))continue;const c=a.tool_input??{},{category:g,risk:$}=N(i,c),x=F(i,c);P({action:`${i}: ${x}`.slice(0,500),category:g,risk_level:$,details:JSON.stringify({tool:i,...c}).slice(0,500)}),S(`File hook event: ${i}`,{category:g})}catch{}n.size>1048576&&(await _(u,"","utf-8"),y=0)}catch{}}async function D(n,e=W){T=n;const o=await new Promise((t,s)=>{f=A(z),f.on("error",r=>{r.code==="EADDRINUSE"?(l(`Port ${e} in use, trying ${e+1}`),f.close(),D(n,e+1).then(t).catch(s)):(p("HTTP hook server failed, using file-based hooks only",{error:r.message}),t(0))}),f.listen(e,"127.0.0.1",()=>{J=e,l(`Hook server listening on http://127.0.0.1:${e}/hook`),t(e)})});try{await L(u,""),m=R(u,()=>{U().catch(()=>{})}),l("File watcher started",{path:u})}catch(t){p("File watcher failed",{error:t instanceof Error?t.message:String(t)})}return d=setInterval(()=>{U().catch(()=>{}),O().catch(t=>{p("Batch flush failed",{error:t instanceof Error?t.message:String(t)})})},H),o}function Z(){d&&(clearInterval(d),d=null),O().catch(()=>{}),m&&(m.close(),m=null),f&&(f.close(),f=null),J=null}const q="/* aerostack-guardian-hook */",u="/tmp/aerostack-guardian-events.jsonl";async function ee(n){const e=b(E(),".claude","settings.json");try{let o={};try{const i=await w(e,"utf-8");o=JSON.parse(i)}catch{}const t=o.hooks??{},r=(t.PreToolUse??[]).filter(i=>!(i.hooks??[]).some(g=>g.url?.includes("127.0.0.1")&&g.url?.includes("/hook")||g.command?.includes("aerostack-guardian"))),a={matcher:"Bash|Write|Edit",hooks:[{type:"command",command:`cat >> ${u}`}]};return r.push(a),t.PreToolUse=r,o.hooks=t,await _(e,JSON.stringify(o,null,2)+`
+`,"utf-8"),l("Installed Claude Code hook (file-based)",{eventsFile:u,path:e}),!0}catch(o){return p("Failed to install Claude Code hook",{error:o instanceof Error?o.message:String(o)}),!1}}async function te(){const n=b(E(),".claude","settings.json");try{const e=await w(n,"utf-8"),o=JSON.parse(e),t=o.hooks??{},s=t.PreToolUse??[],r=s.filter(a=>!(a.hooks??[]).some(c=>c.url?.includes("127.0.0.1")&&c.url?.includes("/hook")));return r.length===s.length?!1:(t.PreToolUse=r,o.hooks=t,await _(n,JSON.stringify(o,null,2)+`
+`,"utf-8"),l("Uninstalled Claude Code hook"),!0)}catch{return!1}}export{u as HOOK_EVENTS_FILE,P as addToBatch,N as detectCategory,Y as getBridgeConfig,ee as installClaudeHook,D as startHookServer,Z as stopHookServer,F as summarizeToolInput,te as uninstallClaudeHook};

package/dist/index.js CHANGED Viewed

@@ -1,8 +1,21 @@
 #!/usr/bin/env node
-import{Server as T}from"@modelcontextprotocol/sdk/server/index.js";import{StdioServerTransport as A}from"@modelcontextprotocol/sdk/server/stdio.js";import{ListToolsRequestSchema as v,CallToolRequestSchema as y,ListResourcesRequestSchema as P,ReadResourceRequestSchema as k,ListPromptsRequestSchema as C,GetPromptRequestSchema as K}from"@modelcontextprotocol/sdk/types.js";import{resolveApproval as R}from"./resolution.js";import{startHookServer as L,installClaudeHook as b,stopHookServer as h}from"./hook-server.js";import{info as p,warn as I,error as U}from"./logger.js";const w=process.env.AEROSTACK_WORKSPACE_URL,g=process.env.AEROSTACK_TOKEN;function _(t,s,r){const e=parseInt(t??String(s),10);return Number.isFinite(e)&&e>=r?e:s}const E=_(process.env.AEROSTACK_APPROVAL_POLL_MS,3e3,500),O=_(process.env.AEROSTACK_APPROVAL_TIMEOUT_MS,864e5,5e3),q=_(process.env.AEROSTACK_REQUEST_TIMEOUT_MS,3e4,1e3),j=process.env.AEROSTACK_HOOK_SERVER!=="false",x=_(process.env.AEROSTACK_HOOK_PORT,18321,1024),H=process.env.AEROSTACK_HOOK_AUTO_INSTALL!=="false";w||(process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL is required
+import{Server as x}from"@modelcontextprotocol/sdk/server/index.js";import{StdioServerTransport as b}from"@modelcontextprotocol/sdk/server/stdio.js";import{ListToolsRequestSchema as j,CallToolRequestSchema as q,ListResourcesRequestSchema as D,ReadResourceRequestSchema as H,ListPromptsRequestSchema as M,GetPromptRequestSchema as V}from"@modelcontextprotocol/sdk/types.js";import{resolveApproval as y,startBackgroundResolver as k}from"./resolution.js";import{ApprovalStore as W}from"./approval-store.js";import{startHookServer as B,installClaudeHook as z,stopHookServer as G}from"./hook-server.js";import{OpenClawConnector as J,resolveOpenClawToken as Y,resolveExecApprovalToken as X}from"./openclaw-connector.js";import{startExecApprovalServer as F}from"./exec-approval-server.js";import{info as c,warn as C,error as Q}from"./logger.js";const T=process.env.AEROSTACK_WORKSPACE_URL,g=process.env.AEROSTACK_TOKEN;function v(t,r,s){const e=parseInt(t??String(r),10);return Number.isFinite(e)&&e>=s?e:r}const m=v(process.env.AEROSTACK_APPROVAL_POLL_MS,3e3,500),P=v(process.env.AEROSTACK_APPROVAL_TIMEOUT_MS,864e5,5e3),Z=v(process.env.AEROSTACK_REQUEST_TIMEOUT_MS,3e4,1e3),h=process.env.AEROSTACK_APPROVAL_MODE==="async"?"async":"blocking",ee=process.env.AEROSTACK_HOOK_SERVER!=="false",te=v(process.env.AEROSTACK_HOOK_PORT,18321,1024),re=process.env.AEROSTACK_HOOK_AUTO_INSTALL!=="false",se=process.env.AEROSTACK_OPENCLAW_ENABLED!=="false",N=v(process.env.AEROSTACK_OPENCLAW_PORT,18789,1024),oe=process.env.AEROSTACK_OPENCLAW_TOKEN;T||(process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL is required
 `),process.exit(1)),g||(process.stderr.write(`ERROR: AEROSTACK_TOKEN is required
-`),process.exit(1));let f;try{if(f=new URL(w),f.protocol!=="https:"&&f.protocol!=="http:")throw new Error("must be http or https")}catch{process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL must be a valid HTTP(S) URL
-`),process.exit(1)}f.protocol==="http:"&&!f.hostname.match(/^(localhost|127\.0\.0\.1)$/)&&process.stderr.write(`WARNING: Using HTTP (not HTTPS) \u2014 token will be sent in plaintext
-`);const d=w.replace(/\/+$/,"");async function c(t,s){const r={jsonrpc:"2.0",id:Date.now(),method:t,params:s??{}},e=new AbortController,n=setTimeout(()=>e.abort(),q);try{const o=await fetch(d,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"User-Agent":"aerostack-gateway/0.12.0","X-Agent-Id":"aerostack-gateway"},body:JSON.stringify(r),signal:e.signal});if(clearTimeout(n),(o.headers.get("content-type")??"").includes("text/event-stream")){const i=await o.text();return N(i,r.id)}return await o.json()}catch(o){clearTimeout(n);const a=o instanceof Error?o.message:"Unknown error";return o instanceof Error&&o.name==="AbortError"?{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:"Request timed out"}}:{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:`HTTP error: ${a}`}}}}function N(t,s){const r=t.split(`
-`);let e=null;for(const n of r)if(n.startsWith("data: "))try{e=JSON.parse(n.slice(6))}catch{}return e??{jsonrpc:"2.0",id:s,error:{code:-32603,message:"Empty SSE response"}}}const $=new Set(["aerostack__guardian_report","aerostack__check_approval","aerostack__guardian_check"]);function M(t,s){if($.has(t))return;let r="other";const e=t.toLowerCase();e.includes("exec")||e.includes("bash")||e.includes("shell")||e.includes("command")||e.includes("run")?r="exec_command":e.includes("write")||e.includes("edit")||e.includes("create")||e.includes("patch")?r="file_write":e.includes("delete")||e.includes("remove")||e.includes("trash")||e.includes("unlink")?r="file_delete":e.includes("fetch")||e.includes("http")||e.includes("request")||e.includes("api")||e.includes("get")||e.includes("post")?r="api_call":e.includes("install")||e.includes("package")||e.includes("npm")||e.includes("pip")?r="package_install":e.includes("config")||e.includes("setting")||e.includes("env")?r="config_change":e.includes("deploy")||e.includes("publish")||e.includes("release")?r="deploy":e.includes("send")||e.includes("message")||e.includes("email")||e.includes("notify")||e.includes("slack")||e.includes("telegram")?r="message_send":(e.includes("read")||e.includes("query")||e.includes("search")||e.includes("list")||e.includes("get"))&&(r="data_access");let n;try{const o=JSON.stringify(s);n=o.length>500?o.slice(0,500)+"...":o}catch{n="(unable to serialize)"}c("tools/call",{name:"aerostack__guardian_report",arguments:{action:`${t}(${Object.keys(s).join(", ")})`,category:r,risk_level:"low",details:n}}).catch(()=>{})}async function V(t,s){M(t,s);const r=await c("tools/call",{name:t,arguments:s});if(r.error?.code===-32050){const o=r.error.data,a=o?.approval_id;if(!a||!/^[a-zA-Z0-9_-]{4,128}$/.test(a))return{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:"Approval required but no approval_id returned"}};p("Tool gate: waiting for approval",{approvalId:a,transport:o?.ws_url?"ws":"poll"});const l=o?.polling_url??`${d}/approval-status/${a}`,i=await R({approvalId:a,wsUrl:o?.ws_url,pollUrl:l,pollIntervalMs:E,timeoutMs:O});return i.status==="rejected"?{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:`Tool call rejected: ${i.reviewer_note??"no reason given"}`}}:i.status==="expired"?{jsonrpc:"2.0",id:r.id,error:{code:-32603,message:"Approval request expired"}}:(p("Retrying tool call after approval",{approvalId:a,status:i.status}),c("tools/call",{name:t,arguments:s}))}const n=r.result?._meta;if(n?.approval_id&&n?.status==="pending"){const o=n.approval_id;p("Permission gate: waiting for approval",{approvalId:o,transport:n.ws_url?"ws":"poll"});const a=n.polling_url??`${d}/approval-status/${o}`,l=await R({approvalId:o,wsUrl:n.ws_url,pollUrl:a,pollIntervalMs:E,timeoutMs:O});let i;return l.status==="approved"||l.status==="executed"?i="APPROVED \u2014 Your request has been approved. You may proceed with the action.":l.status==="rejected"?i=`REJECTED \u2014 Your request was denied. Reason: ${l.reviewer_note??"No reason given."}. Do NOT proceed.`:i="EXPIRED \u2014 Your approval request timed out. Submit a new request if needed.",{jsonrpc:"2.0",id:r.id,result:{content:[{type:"text",text:i}]}}}return r}let S=null;async function m(){if(S)return;const t=await c("initialize",{protocolVersion:"2024-11-05",capabilities:{},clientInfo:{name:"aerostack-gateway",version:"0.12.0"}});if(t.result){const s=t.result;S={protocolVersion:s.protocolVersion??"2024-11-05",instructions:s.instructions}}}const u=new T({name:"aerostack-gateway",version:"0.12.0"},{capabilities:{tools:{},resources:{},prompts:{}}});u.setRequestHandler(v,async()=>{await m();const t=await c("tools/list");if(t.error)throw new Error(t.error.message);return{tools:t.result.tools??[]}}),u.setRequestHandler(y,async t=>{await m();const{name:s,arguments:r}=t.params,e=await V(s,r??{});return e.error?{content:[{type:"text",text:`Error: ${e.error.message}`}],isError:!0}:{content:e.result.content??[{type:"text",text:JSON.stringify(e.result)}]}}),u.setRequestHandler(P,async()=>{await m();const t=await c("resources/list");if(t.error)throw new Error(t.error.message);return{resources:t.result.resources??[]}}),u.setRequestHandler(k,async t=>{await m();const s=await c("resources/read",{uri:t.params.uri});if(s.error)throw new Error(s.error.message);return{contents:s.result.contents??[]}}),u.setRequestHandler(C,async()=>{await m();const t=await c("prompts/list");if(t.error)throw new Error(t.error.message);return{prompts:t.result.prompts??[]}}),u.setRequestHandler(K,async t=>{await m();const s=await c("prompts/get",{name:t.params.name,arguments:t.params.arguments});if(s.error)throw new Error(s.error.message);return{messages:s.result.messages??[]}});async function D(){p("Connecting to workspace",{url:d});const t=new A;if(await u.connect(t),p("Ready",{url:d}),j)try{const r=await L(async e=>{try{const n=await fetch(`${d}/guardian-batch`,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"User-Agent":"aerostack-gateway/0.13.0","X-Agent-Id":"aerostack-gateway"},body:JSON.stringify({events:e})});return n.ok?(await n.json()).config?.hook_tracking??null:null}catch{return null}},x);H&&await b(r)&&p("Claude Code hook auto-installed",{port:r})}catch(s){I("Hook server failed to start (non-fatal)",{error:s instanceof Error?s.message:String(s)})}}process.on("SIGTERM",()=>{h(),process.exit(0)}),process.on("SIGINT",()=>{h(),process.exit(0)}),D().catch(t=>{U("Fatal error",{error:t instanceof Error?t.message:String(t)}),process.exit(1)});
+`),process.exit(1));let w;try{if(w=new URL(T),w.protocol!=="https:"&&w.protocol!=="http:")throw new Error("must be http or https")}catch{process.stderr.write(`ERROR: AEROSTACK_WORKSPACE_URL must be a valid HTTP(S) URL
+`),process.exit(1)}w.protocol==="http:"&&!w.hostname.match(/^(localhost|127\.0\.0\.1)$/)&&process.stderr.write(`WARNING: Using HTTP (not HTTPS) \u2014 token will be sent in plaintext
+`);const u=T.replace(/\/+$/,""),S=crypto.randomUUID(),ne=process.env.AEROSTACK_AGENT_TYPE||"unknown",l=new W;let A=null,L=null;async function p(t,r){const s={jsonrpc:"2.0",id:Date.now(),method:t,params:r??{}},e=new AbortController,n=setTimeout(()=>e.abort(),Z);try{const o=await fetch(u,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"User-Agent":"aerostack-gateway/0.15.0","X-Agent-Id":"aerostack-gateway","X-Bridge-Id":S,"X-Agent-Type":ne},body:JSON.stringify(s),signal:e.signal});if(clearTimeout(n),(o.headers.get("content-type")??"").includes("text/event-stream")){const i=await o.text();return ae(i,s.id)}return await o.json()}catch(o){clearTimeout(n);const a=o instanceof Error?o.message:"Unknown error";return o instanceof Error&&o.name==="AbortError"?{jsonrpc:"2.0",id:s.id,error:{code:-32603,message:"Request timed out"}}:{jsonrpc:"2.0",id:s.id,error:{code:-32603,message:`HTTP error: ${a}`}}}}function ae(t,r){const s=t.split(`
+`);let e=null;for(const n of s)if(n.startsWith("data: "))try{e=JSON.parse(n.slice(6))}catch{}return e??{jsonrpc:"2.0",id:r,error:{code:-32603,message:"Empty SSE response"}}}const ie=new Set(["aerostack__guardian_report","aerostack__check_approval","aerostack__guardian_check"]);function ce(t,r){if(ie.has(t))return;let s="other";const e=t.toLowerCase();e.includes("exec")||e.includes("bash")||e.includes("shell")||e.includes("command")||e.includes("run")?s="exec_command":e.includes("write")||e.includes("edit")||e.includes("create")||e.includes("patch")?s="file_write":e.includes("delete")||e.includes("remove")||e.includes("trash")||e.includes("unlink")?s="file_delete":e.includes("fetch")||e.includes("http")||e.includes("request")||e.includes("api")||e.includes("get")||e.includes("post")?s="api_call":e.includes("install")||e.includes("package")||e.includes("npm")||e.includes("pip")?s="package_install":e.includes("config")||e.includes("setting")||e.includes("env")?s="config_change":e.includes("deploy")||e.includes("publish")||e.includes("release")?s="deploy":e.includes("send")||e.includes("message")||e.includes("email")||e.includes("notify")||e.includes("slack")||e.includes("telegram")?s="message_send":(e.includes("read")||e.includes("query")||e.includes("search")||e.includes("list")||e.includes("get"))&&(s="data_access");let n;try{const o=JSON.stringify(r);n=o.length>500?o.slice(0,500)+"...":o}catch{n="(unable to serialize)"}p("tools/call",{name:"aerostack__guardian_report",arguments:{action:`${t}(${Object.keys(r).join(", ")})`,category:s,risk_level:"low",details:n}}).catch(()=>{})}function I(t,r){return fetch(`${u}/approval-delivery-status`,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"X-Bridge-Id":S},body:JSON.stringify({approvals:t.map(s=>({id:s,delivery_status:r,delivery_channel:"bridge_check_approval"}))})}).then(()=>{}).catch(()=>{})}const le=/^[a-zA-Z0-9_][a-zA-Z0-9_-]{0,63}$/;function U(t){return t&&le.test(t)?t:"aerostack__check_approval"}async function pe(t,r){if(ce(t,r),h==="async"&&t==="aerostack__check_approval"){const o=r.approval_id;if(o){const a=l.get(o);if(a&&a.status!=="pending")return l.markDelivered(o),I([o],"delivered"),{jsonrpc:"2.0",id:Date.now(),result:{content:[{type:"text",text:JSON.stringify({approval_id:o,status:a.status,reviewer_note:a.reviewerNote??null})}]}}}}const s=await p("tools/call",{name:t,arguments:r});if(s.error?.code===-32050){const o=s.error.data,a=o?.approval_id;if(!a||!/^[a-zA-Z0-9_-]{4,128}$/.test(a))return{jsonrpc:"2.0",id:s.id,error:{code:-32603,message:"Approval required but no approval_id returned"}};if(h==="async"){c("Tool gate (async): returning pending to LLM",{approvalId:a}),l.set(a,{approvalId:a,toolName:t,toolArgs:r,status:"pending",createdAt:Date.now()});const E=o?.polling_url??`${u}/approval-status/${a}`,O=k({approvalId:a,wsUrl:o?.ws_url,pollUrl:E,pollIntervalMs:m},l);l.setCancelHandle(a,O.cancel);const R=U(o?.check_tool);return{jsonrpc:"2.0",id:s.id,result:{content:[{type:"text",text:`APPROVAL REQUIRED \u2014 This action needs human approval.
+Approval ID: ${a}
+Status: pending
+The workspace owner has been notified. To check approval status, call:
+  ${R}({ "approval_id": "${a}" })
+When status is "executed", retry the original tool call to get the result.
+Do NOT proceed with the action until approved.`}]}}}c("Tool gate: waiting for approval",{approvalId:a,transport:o?.ws_url?"ws":"poll"});const d=o?.polling_url??`${u}/approval-status/${a}`,i=await y({approvalId:a,wsUrl:o?.ws_url,pollUrl:d,pollIntervalMs:m,timeoutMs:P});return i.status==="rejected"?{jsonrpc:"2.0",id:s.id,error:{code:-32603,message:`Tool call rejected: ${i.reviewer_note??"no reason given"}`}}:i.status==="changes_requested"?{jsonrpc:"2.0",id:s.id,error:{code:-32603,message:`Changes requested: ${i.reviewer_note??"no details given"}. Revise and resubmit.`}}:i.status==="expired"?{jsonrpc:"2.0",id:s.id,error:{code:-32603,message:"Approval request expired"}}:(c("Retrying tool call after approval",{approvalId:a,status:i.status}),p("tools/call",{name:t,arguments:r}))}const n=s.result?._meta;if(n?.approval_id&&n?.status==="pending"){const o=n.approval_id;if(!/^[a-zA-Z0-9_-]{4,128}$/.test(o))return s;if(h==="async"){c("Permission gate (async): returning pending to LLM",{approvalId:o}),l.set(o,{approvalId:o,toolName:t,toolArgs:r,status:"pending",createdAt:Date.now()});const E=n.polling_url??`${u}/approval-status/${o}`,O=k({approvalId:o,wsUrl:n.ws_url,pollUrl:E,pollIntervalMs:m},l);l.setCancelHandle(o,O.cancel);const R=U(n.check_tool);return{jsonrpc:"2.0",id:s.id,result:{content:[{type:"text",text:`PERMISSION PENDING \u2014 Your request requires human approval.
+Approval ID: ${o}
+Status: pending
+Call ${R}({ "approval_id": "${o}" }) to check status.
+You MUST NOT proceed with this action until approved.`}]}}}c("Permission gate: waiting for approval",{approvalId:o,transport:n.ws_url?"ws":"poll"});const a=n.polling_url??`${u}/approval-status/${o}`,d=await y({approvalId:o,wsUrl:n.ws_url,pollUrl:a,pollIntervalMs:m,timeoutMs:P});let i;return d.status==="approved"||d.status==="executed"?i="APPROVED \u2014 Your request has been approved. You may proceed with the action.":d.status==="rejected"?i=`REJECTED \u2014 Your request was denied. Reason: ${d.reviewer_note??"No reason given."}. Do NOT proceed.`:d.status==="changes_requested"?i=`CHANGES REQUESTED \u2014 ${d.reviewer_note??"No details given."}. Revise and resubmit your request.`:i="EXPIRED \u2014 Your approval request timed out. Submit a new request if needed.",{jsonrpc:"2.0",id:s.id,result:{content:[{type:"text",text:i}]}}}return s}let $=null;async function f(){if($)return;const t=await p("initialize",{protocolVersion:"2024-11-05",capabilities:{},clientInfo:{name:"aerostack-gateway",version:"0.15.0"}});if(t.result){const r=t.result;$={protocolVersion:r.protocolVersion??"2024-11-05",instructions:r.instructions}}}const _=new x({name:"aerostack-gateway",version:"0.15.0"},{capabilities:{tools:{},resources:{},prompts:{}}});_.setRequestHandler(j,async()=>{await f();const t=await p("tools/list");if(t.error)throw new Error(t.error.message);return{tools:t.result.tools??[]}}),_.setRequestHandler(q,async t=>{await f();const{name:r,arguments:s}=t.params,e=await pe(r,s??{});return e.error?{content:[{type:"text",text:`Error: ${e.error.message}`}],isError:!0}:{content:e.result.content??[{type:"text",text:JSON.stringify(e.result)}]}}),_.setRequestHandler(D,async()=>{await f();const t=await p("resources/list");if(t.error)throw new Error(t.error.message);return{resources:t.result.resources??[]}}),_.setRequestHandler(H,async t=>{await f();const r=await p("resources/read",{uri:t.params.uri});if(r.error)throw new Error(r.error.message);return{contents:r.result.contents??[]}}),_.setRequestHandler(M,async()=>{await f();const t=await p("prompts/list");if(t.error)throw new Error(t.error.message);return{prompts:t.result.prompts??[]}}),_.setRequestHandler(V,async t=>{await f();const r=await p("prompts/get",{name:t.params.name,arguments:t.params.arguments});if(r.error)throw new Error(r.error.message);return{messages:r.result.messages??[]}});async function ue(){try{const t=await fetch(`${u}/undelivered-approvals`,{headers:{Authorization:`Bearer ${g}`,"X-Bridge-Id":S}});if(!t.ok)return;const r=await t.json();if(!r.approvals?.length)return;for(const s of r.approvals)l.set(s.id,{approvalId:s.id,toolName:s.tool_name,toolArgs:{},status:s.status,reviewerNote:s.reviewer_note??void 0,resolvedAt:s.resolved_at??void 0,createdAt:s.resolved_at??Date.now()});c(`Loaded ${r.approvals.length} undelivered approvals from server`)}catch{}}async function de(){c("Connecting to workspace",{url:u});const t=new b;if(await _.connect(t),c("Ready",{url:u}),h==="async"&&ue().catch(()=>{}),ee)try{const s=await B(async e=>{try{const n=await fetch(`${u}/guardian-batch`,{method:"POST",headers:{"Content-Type":"application/json",Authorization:`Bearer ${g}`,"User-Agent":"aerostack-gateway/0.15.0","X-Agent-Id":"aerostack-gateway"},body:JSON.stringify({events:e})});return n.ok?(await n.json()).config?.hook_tracking??null:null}catch{return null}},te);re&&await z(s)&&c("Claude Code hook auto-installed",{port:s})}catch(r){C("Hook server failed to start (non-fatal)",{error:r instanceof Error?r.message:String(r)})}if(se)try{const r=oe??await Y();if(r)if(A=new J({port:N,token:r,rpcCall:p}),await A.connect()){c("OpenClaw connector started",{port:N});const e=await X();if(e){const{join:n}=await import("node:path"),{homedir:o}=await import("node:os");L=F({socketPath:n(o(),".openclaw","exec-approvals.sock"),token:e,rpcCall:p})}}else c("OpenClaw gateway not reachable, skipping connector"),A=null;else c("OpenClaw integration skipped (no token found)")}catch(r){C("OpenClaw connector failed (non-fatal)",{error:r instanceof Error?r.message:String(r)})}}async function K(){const t=l.getUndeliveredIds();t.length>0&&await I(t,"agent_disconnected"),A?.stop(),L?.stop(),l.destroy(),G(),process.exit(0)}process.on("SIGTERM",()=>{K()}),process.on("SIGINT",()=>{K()}),de().catch(t=>{Q("Fatal error",{error:t instanceof Error?t.message:String(t)}),process.exit(1)});

package/dist/openclaw-connector.js ADDED Viewed

@@ -0,0 +1 @@

+ import{readFile as h}from"node:fs/promises";import{join as d}from"node:path";import{homedir as u}from"node:os";import{info as f,warn as w,debug as a}from"./logger.js";import{addToBatch as y,detectCategory as g,summarizeToolInput as T}from"./hook-server.js";async function v(){try{const c=d(u(),".openclaw","openclaw.json"),e=await h(c,"utf-8");return JSON.parse(e)?.gateway?.auth?.token??null}catch{return null}}async function E(){try{const c=d(u(),".openclaw","exec-approvals.json"),e=await h(c,"utf-8");return JSON.parse(e)?.socket?.token??null}catch{return null}}const p=1e3,S=3e4;class b{opts;ws=null;destroyed=!1;reconnectMs=p;reconnectTimer=null;requestId=0;seenSessions=new Set;constructor(e){this.opts=e}async connect(){if(this.destroyed)return!1;const e=await this.getWebSocket(),t=`ws://127.0.0.1:${this.opts.port}`;return new Promise(s=>{try{const n=new e(t);this.ws=n;const o=setTimeout(()=>{a("OpenClaw connect timeout");try{n.close()}catch{}s(!1)},1e4);n.onopen=()=>{clearTimeout(o),a("OpenClaw WS connected, sending handshake"),this.sendHandshake()},n.onmessage=i=>{try{const r=JSON.parse(String(i.data));this.handleFrame(r,s)}catch{}},n.onerror=()=>{clearTimeout(o),s(!1)},n.onclose=()=>{clearTimeout(o),this.ws=null,this.destroyed||this.scheduleReconnect()}}catch{s(!1)}})}stop(){if(this.destroyed=!0,this.reconnectTimer&&(clearTimeout(this.reconnectTimer),this.reconnectTimer=null),this.ws){try{this.ws.close(1e3)}catch{}this.ws=null}}sendHandshake(){this.send({type:"req",id:String(++this.requestId),method:"connect",params:{minProtocol:3,maxProtocol:3,client:{id:"aerostack-bridge",displayName:"Aerostack Guardian",version:"0.15.0",platform:process.platform,mode:"operator"},auth:{token:this.opts.token}}})}connected=!1;handleFrame(e,t){if(e.type==="res"&&!this.connected){e.ok?(this.connected=!0,this.reconnectMs=p,f("OpenClaw connector connected",{port:this.opts.port}),t?.(!0)):(w("OpenClaw connect rejected",{error:e.error?.message}),t?.(!1));return}e.type==="event"&&this.handleEvent(e)}handleEvent(e){const t=e.event,s=e.payload??{};t==="session.tool"?this.handleToolEvent(s):t==="session.message"?this.handleMessageEvent(s):t==="sessions.changed"&&this.handleSessionChanged(s)}handleToolEvent(e){const t=e.data;if(!t)return;const s=t.toolName??"unknown",n=t.phase??"",o=t.input??{},i=e.sessionKey??"";if(n!=="start"&&n!=="end"||n==="end")return;const{category:r,risk:l}=g(s,o),m=T(s,o);y({action:`${s}: ${m}`.slice(0,500),category:r,risk_level:l,details:JSON.stringify({tool:s,session:i,...o}).slice(0,500)}),a("OpenClaw tool event",{tool:s,category:r,risk:l,session:i}),i&&this.seenSessions.add(i)}handleMessageEvent(e){const t=e.sessionKey??"";t&&this.seenSessions.add(t)}handleSessionChanged(e){const t=e.sessionKey??"";t&&this.seenSessions.add(t)}send(e){if(this.ws)try{this.ws.send(JSON.stringify(e))}catch{}}scheduleReconnect(){this.destroyed||this.reconnectTimer||(a("OpenClaw reconnecting in",{ms:this.reconnectMs}),this.reconnectTimer=setTimeout(async()=>{this.reconnectTimer=null,this.connected=!1,this.seenSessions.clear(),await this.connect()},this.reconnectMs),this.reconnectMs=Math.min(this.reconnectMs*2,S))}async getWebSocket(){return typeof globalThis.WebSocket<"u"?globalThis.WebSocket:(await import("ws")).default}}export{b as OpenClawConnector,E as resolveExecApprovalToken,v as resolveOpenClawToken};

package/dist/resolution.js CHANGED Viewed

	@@ -1 +1 @@
1	- import{info as u,warn as g,debug as b}from"./logger.js";~~async~~ function j(e){const{approvalId:r,wsUrl:n,pollUrl:o,pollIntervalMs:l,timeoutMs:k}=e,d=Date.now()+k;if(n)try{return await A(r,n,o,d)}catch(c){const f=c instanceof Error?c.message:"Unknown WS error";g("WebSocket resolution failed, falling back to polling",{approvalId:r,error:f})}return O(r,o,l,d)}async function A(e,r,n,o){const l=await E();return new Promise((k,d)=>{let c=!1,f=null,m=null;const y=()=>{c=!0,f&&clearInterval(f),m&&clearTimeout(m)},w=t=>{c\|\|(y(),k(t))},p=t=>{c\|\|(y(),d(t))};b("Connecting WebSocket",{approvalId:e,wsUrl:r});const a=new l(r);a.onopen=()=>{u("WebSocket connected, waiting for resolution",{approvalId:e})},a.onmessage=t=>{try{const i=typeof t.data=="string"?JSON.parse(t.data):JSON.parse(String(t.data)),s=i?.status;if(b("WebSocket message received",{approvalId:e,status:s}),s==="executed"\|\|s==="approved"\|\|s==="rejected"\|\|s==="expired"){u("Approval resolved via WebSocket",{approvalId:e,status:s}),w({status:s,reviewer_note:i?.reviewer_note});try{a.close(1e3)}catch{}}}catch{g("Failed to parse WebSocket message",{approvalId:e})}},a.onerror=t=>{const i=t instanceof Error?t.message:"WebSocket error";b("WebSocket error",{approvalId:e,error:i}),p(new Error(`WebSocket error: ${i}`))},a.onclose=t=>{c\|\|(b("WebSocket closed without resolution",{approvalId:e,code:t.code}),p(new Error(`WebSocket closed unexpectedly (code ${t.code})`)))},typeof a.on=="function"&&a.on("unexpected-response",async(t,i)=>{try{const s=[];for await(const x of i)s.push(x);const _=Buffer.concat(s).toString(),v=JSON.parse(_),S=v?.status;if(S&&S!=="pending"){u("Approval already resolved (WS endpoint returned JSON)",{approvalId:e,status:S}),w({status:S,reviewer_note:v?.reviewer_note});return}}catch{}p(new Error("WebSocket upgrade rejected by server"))}),f=setInterval(async()=>{if(!c)try{const t=await h(n);if(t){u("Approval resolved via safety-net poll",{approvalId:e,status:t.status}),w(t);try{a.close(1e3)}catch{}}}catch{}},3e4);const W=o-Date.now();if(W<=0){p(new Error("Approval timeout"));return}m=setTimeout(()=>{if(!c){g("Approval timed out",{approvalId:e}),w({status:"expired"});try{a.close(1e3)}catch{}}},W)})}async function O(e,r,n,o){for(u("Polling for approval resolution",{approvalId:e,intervalMs:n});Date.now()<o;){await P(n);try{const l=await h(r);if(l)return u("Approval resolved via polling",{approvalId:e,status:l.status}),l}catch{}}return g("Approval polling timed out",{approvalId:e}),{status:"expired"}}async function h(e){const r=await fetch(e,{headers:{"User-Agent":"aerostack-gateway/0.12.0"}});if(!r.ok)return null;const n=await r.json(),o=n.status;return o==="executed"\|\|o==="approved"?{status:o,reviewer_note:n.reviewer_note}:o==="rejected"?{status:"rejected",reviewer_note:n.reviewer_note}:o==="expired"?{status:"expired"}:null}async function E(){if(typeof globalThis.WebSocket<"u")return globalThis.WebSocket;try{return(await import("ws")).default}catch{throw new Error('WebSocket not available. Install the "ws" package: npm install ws')}}function P(e){return new Promise(r=>setTimeout(r,e))}export{j as resolveApproval};
1	+ import{info as v,warn as b,debug as y}from"./logger.js";function J(e,n){const{approvalId:r}=e;let o=!1,a=null,g=null,w=null;const c=()=>{if(o=!0,g&&(clearInterval(g),g=null),w&&(clearTimeout(w),w=null),a){try{a.close(1e3)}catch{}a=null}},p=S=>{o\|\|(n.resolve(r,S.status,S.reviewer_note),v("Background resolver: approval resolved",{approvalId:r,status:S.status}),c())};return(async()=>{if(e.wsUrl)try{const u=await x(),d=new u(e.wsUrl);a=d,d.onmessage=s=>{try{const h=typeof s.data=="string"?JSON.parse(s.data):JSON.parse(String(s.data)),f=h?.status;(f==="executed"\|\|f==="approved"\|\|f==="rejected"\|\|f==="expired"\|\|f==="changes_requested")&&p({status:f,reviewer_note:h?.reviewer_note})}catch{}},d.onerror=()=>{y("Background resolver WS error",{approvalId:r})},d.onclose=()=>{a=null},typeof d.on=="function"&&d.on("unexpected-response",async(s,h)=>{try{const f=[];for await(const l of h)f.push(l);const t=Buffer.concat(f).toString(),i=JSON.parse(t);i?.status&&i.status!=="pending"&&p({status:i.status,reviewer_note:i?.reviewer_note})}catch{}})}catch{y("Background resolver WS connect failed, using polling only",{approvalId:r})}g=setInterval(async()=>{if(!o)try{const u=await _(e.pollUrl);u&&p(u)}catch{}},3e4);try{const u=await _(e.pollUrl);if(u){p(u);return}}catch{}const m=e.timeoutMs??26060*1e3;w=setTimeout(()=>{o\|\|(n.resolve(r,"expired"),c())},m)})().catch(()=>{}),{cancel:c}}async function N(e){const{approvalId:n,wsUrl:r,pollUrl:o,pollIntervalMs:a,timeoutMs:g}=e,w=Date.now()+g;if(r)try{return await L(n,r,o,w)}catch(c){const p=c instanceof Error?c.message:"Unknown WS error";b("WebSocket resolution failed, falling back to polling",{approvalId:n,error:p})}return A(n,o,a,w)}async function L(e,n,r,o){const a=await x();return new Promise((g,w)=>{let c=!1,p=null,S=null;const m=()=>{c=!0,p&&clearInterval(p),S&&clearTimeout(S)},u=t=>{c\|\|(m(),g(t))},d=t=>{c\|\|(m(),w(t))};y("Connecting WebSocket",{approvalId:e,wsUrl:n});const s=new a(n);s.onopen=()=>{v("WebSocket connected, waiting for resolution",{approvalId:e})},s.onmessage=t=>{try{const i=typeof t.data=="string"?JSON.parse(t.data):JSON.parse(String(t.data)),l=i?.status;if(y("WebSocket message received",{approvalId:e,status:l}),l==="executed"\|\|l==="approved"\|\|l==="rejected"\|\|l==="expired"\|\|l==="changes_requested"){v("Approval resolved via WebSocket",{approvalId:e,status:l}),u({status:l,reviewer_note:i?.reviewer_note});try{s.close(1e3)}catch{}}}catch{b("Failed to parse WebSocket message",{approvalId:e})}},s.onerror=t=>{const i=t instanceof Error?t.message:"WebSocket error";y("WebSocket error",{approvalId:e,error:i}),d(new Error(`WebSocket error: ${i}`))},s.onclose=t=>{c\|\|(y("WebSocket closed without resolution",{approvalId:e,code:t.code}),d(new Error(`WebSocket closed unexpectedly (code ${t.code})`)))},typeof s.on=="function"&&s.on("unexpected-response",async(t,i)=>{try{const l=[];for await(const T of i)l.push(T);const O=Buffer.concat(l).toString(),W=JSON.parse(O),k=W?.status;if(k&&k!=="pending"){v("Approval already resolved (WS endpoint returned JSON)",{approvalId:e,status:k}),u({status:k,reviewer_note:W?.reviewer_note});return}}catch{}d(new Error("WebSocket upgrade rejected by server"))}),p=setInterval(async()=>{if(!c)try{const t=await _(r);if(t){v("Approval resolved via safety-net poll",{approvalId:e,status:t.status}),u(t);try{s.close(1e3)}catch{}}}catch{}},3e4);const f=o-Date.now();if(f<=0){d(new Error("Approval timeout"));return}S=setTimeout(()=>{if(!c){b("Approval timed out",{approvalId:e}),u({status:"expired"});try{s.close(1e3)}catch{}}},f)})}async function A(e,n,r,o){for(v("Polling for approval resolution",{approvalId:e,intervalMs:r});Date.now()<o;){await P(r);try{const a=await _(n);if(a)return v("Approval resolved via polling",{approvalId:e,status:a.status}),a}catch{}}return b("Approval polling timed out",{approvalId:e}),{status:"expired"}}async function _(e){const n=await fetch(e,{headers:{"User-Agent":"aerostack-gateway/0.14.0"}});if(!n.ok)return null;const r=await n.json(),o=r.status;return o==="executed"\|\|o==="approved"?{status:o,reviewer_note:r.reviewer_note}:o==="rejected"?{status:"rejected",reviewer_note:r.reviewer_note}:o==="changes_requested"?{status:"changes_requested",reviewer_note:r.reviewer_note}:o==="expired"?{status:"expired"}:null}async function x(){if(typeof globalThis.WebSocket<"u")return globalThis.WebSocket;try{return(await import("ws")).default}catch{throw new Error('WebSocket not available. Install the "ws" package: npm install ws')}}function P(e){return new Promise(n=>setTimeout(n,e))}export{N as resolveApproval,J as startBackgroundResolver};

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aerostack/gateway",
-  "version": "0.13.2",
+  "version": "0.15.0",
   "description": "stdio-to-HTTP bridge connecting any MCP client to Aerostack Workspaces",
   "author": "Aerostack",
   "license": "MIT",