@agent-wall/cli 0.1.0

package/.turbo/turbo-build.log

@@ -0,0 +1,18 @@
+
+> @agent-wall/cli@0.1.0 build /home/runner/work/agent-wall/agent-wall/packages/cli
+> tsup && node -e "const fs=require('fs'),p=require('path');const s=p.resolve(__dirname,'../dashboard/dist');const d=p.resolve(__dirname,'dist/dashboard');if(fs.existsSync(s)){fs.cpSync(s,d,{recursive:true});console.log('✓ Dashboard assets bundled')}else{console.log('⚠ Dashboard not built, skipping asset bundle')}"
+
+CLI Building entry: src/index.ts
+CLI Using tsconfig: tsconfig.json
+CLI tsup v8.5.1
+CLI Using tsup config: /home/runner/work/agent-wall/agent-wall/packages/cli/tsup.config.ts
+CLI Target: es2022
+CLI Cleaning output folder
+ESM Build start
+ESM dist/index.js     41.63 KB
+ESM dist/index.js.map 75.55 KB
+ESM ⚡️ Build success in 62ms
+DTS Build start
+DTS ⚡️ Build success in 1926ms
+DTS dist/index.d.ts 13.00 B
+✓ Dashboard assets bundled

package/.turbo/turbo-test.log

@@ -0,0 +1,19 @@
+
+> @agent-wall/cli@0.1.0 test /home/runner/work/agent-wall/agent-wall/packages/cli
+> vitest run --passWithNoTests
+
+
+ RUN  v3.2.4 /home/runner/work/agent-wall/agent-wall/packages/cli
+
+ ✓ src/commands/test.test.ts (8 tests) 22ms
+ ✓ src/commands/scan.test.ts (15 tests) 27ms
+ ✓ src/commands/audit.test.ts (9 tests) 51ms
+ ✓ src/commands/validate.test.ts (6 tests) 11ms
+ ✓ src/commands/doctor.test.ts (7 tests) 17ms
+ ✓ src/commands/init.test.ts (6 tests) 16ms
+
+ Test Files  6 passed (6)
+      Tests  51 passed (51)
+   Start at  10:39:44
+   Duration  1.06s (transform 389ms, setup 0ms, collect 885ms, tests 143ms, environment 2ms, prepare 815ms)
+

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026-present Agent Wall Contributors
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,79 @@
+# Agent Wall
+
+**Security firewall for AI agents.** Intercepts MCP tool calls, enforces policies, blocks attacks.
+
+> *"Cloudflare for AI agents"* — Zero-config protection for any MCP server.
+
+[![CI](https://github.com/agent-wall/agent-wall/actions/workflows/ci.yml/badge.svg)](https://github.com/agent-wall/agent-wall/actions/workflows/ci.yml)
+[![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](https://github.com/agent-wall/agent-wall/blob/main/LICENSE)
+[![npm](https://img.shields.io/npm/v/agent-wall)](https://www.npmjs.com/package/agent-wall)
+
+## Install
+
+```bash
+npm install -g @agent-wall/cli
+```
+
+## Quick Start
+
+```bash
+# Generate a starter policy
+agent-wall init
+
+# Wrap any MCP server
+agent-wall wrap -- npx @modelcontextprotocol/server-filesystem /home/user
+
+# With real-time dashboard
+agent-wall wrap --dashboard -- npx mcp-server
+```
+
+## 30-Second Integration
+
+Replace your MCP config entry:
+
+```json
+{
+  "mcpServers": {
+    "filesystem": {
+      "command": "agent-wall",
+      "args": ["wrap", "--", "npx", "@modelcontextprotocol/server-filesystem", "/home/user"]
+    }
+  }
+}
+```
+
+Works with **Claude Code**, **Cursor**, **Claude Desktop**, **VS Code**, **Windsurf**, and any MCP client.
+
+## Defense-in-Depth Pipeline
+
+Every tool call runs through a **5-step inbound pipeline**:
+
+```
+1. Kill Switch     — Emergency deny-all
+2. Injection       — 30+ prompt injection patterns
+3. Egress Control  — Block SSRF, private IPs, metadata endpoints
+4. Policy Engine   — YAML rules (first-match-wins, glob, rate limiting)
+5. Chain Detection — Suspicious multi-step patterns
+```
+
+Plus an **outbound response scanner** — 14 secret patterns, 5 PII patterns, custom regex.
+
+## CLI Commands
+
+| Command | Description |
+|---------|-------------|
+| `agent-wall wrap` | Wrap an MCP server with policy enforcement |
+| `agent-wall init` | Generate a starter config |
+| `agent-wall test` | Dry-run a tool call against your policy |
+| `agent-wall audit` | View and analyze audit logs |
+| `agent-wall scan` | Scan MCP config for security risks |
+| `agent-wall validate` | Validate policy configuration |
+| `agent-wall doctor` | Health check for config and environment |
+
+## Documentation
+
+Full docs: [agent-wall.github.io/agent-wall](https://agent-wall.github.io/agent-wall/)
+
+## License
+
+[MIT](https://github.com/agent-wall/agent-wall/blob/main/LICENSE)

package/dist/dashboard/assets/index-BOAuOkd7.css

@@ -0,0 +1 @@
+:root{--bg-primary: #0d1117;--bg-secondary: #161b22;--bg-tertiary: #21262d;--border: #30363d;--text-primary: #e6edf3;--text-secondary: #8b949e;--text-muted: #484f58;--green: #3fb950;--green-dim: #1a4731;--red: #f85149;--red-dim: #5a1e1e;--yellow: #d29922;--yellow-dim: #4b3a12;--orange: #db6d28;--blue: #58a6ff;--font-mono: "SF Mono", "Cascadia Code", "Consolas", monospace;--font-sans: -apple-system, BlinkMacSystemFont, "Segoe UI", sans-serif;--radius: 6px}*{margin:0;padding:0;box-sizing:border-box}html,body,#root{height:100%;background:var(--bg-primary);color:var(--text-primary);font-family:var(--font-sans);font-size:14px;line-height:1.5}::-webkit-scrollbar{width:6px;height:6px}::-webkit-scrollbar-track{background:transparent}::-webkit-scrollbar-thumb{background:var(--border);border-radius:3px}.card{background:var(--bg-secondary);border:1px solid var(--border);border-radius:var(--radius);padding:14px}.badge{display:inline-block;padding:1px 7px;border-radius:10px;font-size:10px;font-weight:700;font-family:var(--font-mono);text-transform:uppercase;letter-spacing:.5px;white-space:nowrap}.badge-allow{background:var(--green-dim);color:var(--green)}.badge-deny{background:var(--red-dim);color:var(--red)}.badge-prompt{background:var(--yellow-dim);color:var(--yellow)}.badge-info{background:var(--bg-tertiary);color:var(--text-secondary)}.severity-dot{display:inline-block;width:7px;height:7px;border-radius:50%;flex-shrink:0}.severity-info{background:var(--blue)}.severity-warn{background:var(--orange)}.severity-critical{background:var(--red);animation:pulse 1.5s infinite}@keyframes pulse{0%,to{opacity:1}50%{opacity:.3}}@keyframes slideIn{0%{opacity:0;transform:translateY(-4px)}to{opacity:1;transform:translateY(0)}}@keyframes glowPulse{0%,to{box-shadow:none}50%{box-shadow:0 0 12px #f851494d}}table{width:100%;border-collapse:collapse;font-family:var(--font-mono);font-size:12px}th{text-align:left;padding:7px 10px;border-bottom:1px solid var(--border);color:var(--text-secondary);font-weight:500;cursor:pointer;-webkit-user-select:none;user-select:none;font-size:11px}th:hover{color:var(--text-primary)}td{padding:5px 10px;border-bottom:1px solid var(--bg-tertiary)}.cell-mono{font-family:var(--font-mono);color:var(--text-muted)}.cell-tool{color:var(--blue);max-width:140px;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.cell-rule{color:var(--text-muted);font-size:11px}.cell-rule-name{color:var(--text-primary)}.cell-msg{color:var(--text-secondary);max-width:300px;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}button{cursor:pointer;border:1px solid var(--border);border-radius:var(--radius);padding:5px 12px;font-size:12px;font-family:var(--font-sans);background:var(--bg-tertiary);color:var(--text-primary);transition:background .15s}button:hover{background:var(--border)}input{background:var(--bg-primary);border:1px solid var(--border);border-radius:var(--radius);padding:5px 10px;font-size:12px;font-family:var(--font-mono);color:var(--text-primary);outline:none;width:100%}input:focus{border-color:var(--blue)}.audit-select{background:var(--bg-primary);border:1px solid var(--border);border-radius:var(--radius);padding:5px 8px;font-size:12px;color:var(--text-primary);outline:none}.chip{display:inline-block;padding:1px 9px;border-radius:10px;font-size:11px;cursor:pointer;border:1px solid var(--border);background:var(--bg-primary);color:var(--text-secondary);transition:all .15s;-webkit-user-select:none;user-select:none}.chip.active{border-color:var(--blue);color:var(--blue);background:#58a6ff14}.dashboard{height:100%;display:flex;flex-direction:column;padding:12px 16px;gap:10px;overflow:hidden}.dash-header{display:flex;align-items:center;justify-content:space-between;padding:4px 0;flex-shrink:0}.header-left{display:flex;align-items:center;gap:10px}.header-right{display:flex;align-items:center;gap:14px}.logo{font-size:16px;font-weight:700;color:var(--text-primary);display:flex;align-items:center}.connection-dot{width:8px;height:8px;border-radius:50%}.connection-dot.connected{background:var(--green);box-shadow:0 0 6px var(--green)}.connection-dot.disconnected{background:var(--red);animation:pulse 1.5s infinite}.connection-text{font-size:11px;color:var(--text-secondary)}.uptime{font-size:11px;color:var(--text-muted);font-family:var(--font-mono)}.stats-row{display:flex;gap:8px;flex-shrink:0}.stat-card{flex:1;text-align:center;padding:8px 6px}.stat-label{font-size:10px;color:var(--text-secondary);text-transform:uppercase;letter-spacing:.5px;margin-bottom:2px}.stat-value{font-size:24px;font-weight:700;font-family:var(--font-mono);line-height:1.2}.stat-glow{animation:glowPulse 2s infinite}.event-feed{flex:1;display:flex;flex-direction:column;min-height:0;overflow:hidden}.panel-header{display:flex;justify-content:space-between;align-items:center;margin-bottom:8px;flex-shrink:0}.panel-header h3{font-size:12px;font-weight:600;color:var(--text-secondary);text-transform:uppercase;letter-spacing:.5px}.header-meta{display:flex;align-items:center;gap:10px}.event-counter{font-family:var(--font-mono);font-size:11px;color:var(--text-muted);background:var(--bg-tertiary);padding:1px 8px;border-radius:10px}.filter-chips{display:flex;gap:4px}.event-list{flex:1;overflow-y:auto;font-family:var(--font-mono);font-size:12px}.event-row{display:flex;align-items:center;gap:6px;padding:3px 4px;border-bottom:1px solid rgba(48,54,61,.5);cursor:pointer;min-width:0;transition:background .1s}.event-row:hover{background:var(--bg-tertiary)}.event-anim{animation:slideIn .2s ease-out}.event-tag{font-size:9px;font-weight:700;padding:0 5px;border-radius:3px;background:#f8514926;color:var(--red);white-space:nowrap;flex-shrink:0}.event-tool{color:var(--blue);flex-shrink:0;max-width:130px;overflow:hidden;text-overflow:ellipsis;white-space:nowrap}.event-detail{color:var(--text-secondary);overflow:hidden;text-overflow:ellipsis;white-space:nowrap;min-width:0;flex:1}.event-detail-full{white-space:normal;word-break:break-word}.event-expanded{background:var(--bg-tertiary);border-radius:4px}.scroll-btn{margin-top:6px;font-size:11px;padding:3px 10px;align-self:center}.empty-state{text-align:center;color:var(--text-muted);padding:20px;font-size:13px}.tab-container{flex:1;display:flex;flex-direction:column;min-height:0;background:var(--bg-secondary);border:1px solid var(--border);border-radius:var(--radius);overflow:hidden}.tab-bar{display:flex;gap:0;border-bottom:1px solid var(--border);flex-shrink:0;background:var(--bg-primary)}.tab-btn{border:none;border-radius:0;background:transparent;color:var(--text-secondary);padding:8px 18px;font-size:12px;font-weight:600;text-transform:uppercase;letter-spacing:.5px;border-bottom:2px solid transparent;transition:all .15s;display:flex;align-items:center;gap:6px}.tab-btn:hover{color:var(--text-primary);background:var(--bg-secondary)}.tab-active{color:var(--blue);border-bottom-color:var(--blue);background:var(--bg-secondary)}.tab-count{font-family:var(--font-mono);font-size:10px;padding:0 6px;border-radius:8px;background:var(--bg-tertiary);color:var(--text-muted)}.tab-count-alert{background:var(--red-dim);color:var(--red)}.tab-content{flex:1;overflow-y:auto;padding:12px;min-height:0}.attack-list-full{display:flex;flex-direction:column;gap:6px}.attack-category{border:1px solid var(--bg-tertiary);border-radius:var(--radius);overflow:hidden}.attack-category-header{display:flex;align-items:center;gap:8px;cursor:pointer;padding:8px 10px;font-size:13px;font-weight:600;background:var(--bg-primary);transition:background .1s}.attack-category-header:hover{background:var(--bg-tertiary)}.attack-icon{font-family:var(--font-mono);font-weight:700;font-size:12px;flex-shrink:0}.attack-label{flex:1}.attack-category-count{font-family:var(--font-mono);font-size:11px;padding:0 7px;border-radius:8px;background:var(--bg-tertiary);color:var(--text-secondary)}.collapse-icon{color:var(--text-muted);font-family:var(--font-mono);font-size:12px}.attack-items{padding:4px 10px 8px 28px;font-size:12px;font-family:var(--font-mono)}.attack-item{display:flex;align-items:flex-start;gap:6px;padding:3px 0;border-bottom:1px solid rgba(48,54,61,.3);min-width:0}.attack-item-tool{color:var(--blue);flex-shrink:0}.attack-item-detail{color:var(--text-secondary);word-break:break-word;flex:1;min-width:0}.attack-more{color:var(--text-muted);padding:4px 0;font-size:11px}.table-scroll{flex:1;overflow-y:auto}.hit-bar-bg{height:6px;background:var(--bg-primary);border-radius:3px;overflow:hidden}.hit-bar{height:100%;border-radius:3px;transition:width .3s ease}.audit-full{display:flex;flex-direction:column;gap:8px;height:100%;min-height:0}.audit-controls{display:flex;gap:6px;flex-shrink:0}.audit-controls input{flex:1}.kill-switch-container{display:flex;align-items:center}.kill-btn{background:var(--bg-tertiary);border:1px solid var(--border);padding:4px 14px;font-weight:700;font-size:11px;font-family:var(--font-mono);text-transform:uppercase;letter-spacing:1px}.kill-btn:hover{border-color:var(--red);color:var(--red)}.kill-btn.kill-active{background:var(--red-dim);border-color:var(--red);color:var(--red);animation:pulse 1.5s infinite}.kill-confirm{display:flex;align-items:center;gap:6px;font-size:12px;color:var(--yellow)}.kill-btn-confirm{background:var(--red-dim);border-color:var(--red);color:var(--red);font-weight:700}