@agentix-security/nextjs 0.1.8 → 0.1.10

package/dist/index.cjs

@@ -423,7 +423,7 @@ function agentScore(req) {
   const ua = (req.headers.get("user-agent") ?? "").toLowerCase();
   if (/bot|crawler|spider|python-requests|curl\/|node-fetch|axios|go-http-client|claude-web|gptbot|chatgpt|google-extended|oai-searchbot|anthropic|llm/i.test(ua)) score += 0.8;
   if (!ua) score += 0.6;
-  if (!req.headers.get("sec-fetch-site") && !req.headers.get("sec-ch-ua")) score += 0.3;
+  if (!req.headers.get("sec-fetch-site") && !req.headers.get("sec-ch-ua")) score += 0.5;
   if (!req.headers.get("accept-language")) score += 0.15;
   const accept = req.headers.get("accept") ?? "";
   if (req.method === "GET" && !accept.includes("text/html")) score += 0.2;
@@ -534,7 +534,8 @@ function agentixMiddleware(sdk) {
       });
     }
     const isHumanPage = !pathname.startsWith("/api/") && !pathname.startsWith("/agent/") && !pathname.startsWith("/_next/") && !pathname.startsWith("/favicon");
-    if (isHumanPage && agentScore(req) >= 0.5) {
+    const score = agentScore(req);
+    if (isHumanPage && score >= 0.5) {
       const registry = sdk.getIntentRegistry();
       const tools = Object.fromEntries(
         [...registry.entries()].map(([intent, entry]) => [intent, { routes: [...entry.routes] }])
@@ -545,7 +546,14 @@ function agentixMiddleware(sdk) {
         token_id: null,
         decision: "allow",
         decision_reason: "agent_redirected_to_lane",
-        policy_id: "agent-detection"
+        policy_id: "agent-detection",
+        metadata: {
+          user_agent: req.headers.get("user-agent") ?? "",
+          agent_score: score,
+          has_sec_fetch: !!req.headers.get("sec-fetch-site"),
+          has_sec_ch_ua: !!req.headers.get("sec-ch-ua"),
+          accept: req.headers.get("accept") ?? ""
+        }
       }));
       return server_js.NextResponse.json({
         service: "agentix-intent-sdk",

package/dist/index.js

@@ -421,7 +421,7 @@ function agentScore(req) {
   const ua = (req.headers.get("user-agent") ?? "").toLowerCase();
   if (/bot|crawler|spider|python-requests|curl\/|node-fetch|axios|go-http-client|claude-web|gptbot|chatgpt|google-extended|oai-searchbot|anthropic|llm/i.test(ua)) score += 0.8;
   if (!ua) score += 0.6;
-  if (!req.headers.get("sec-fetch-site") && !req.headers.get("sec-ch-ua")) score += 0.3;
+  if (!req.headers.get("sec-fetch-site") && !req.headers.get("sec-ch-ua")) score += 0.5;
   if (!req.headers.get("accept-language")) score += 0.15;
   const accept = req.headers.get("accept") ?? "";
   if (req.method === "GET" && !accept.includes("text/html")) score += 0.2;
@@ -532,7 +532,8 @@ function agentixMiddleware(sdk) {
       });
     }
     const isHumanPage = !pathname.startsWith("/api/") && !pathname.startsWith("/agent/") && !pathname.startsWith("/_next/") && !pathname.startsWith("/favicon");
-    if (isHumanPage && agentScore(req) >= 0.5) {
+    const score = agentScore(req);
+    if (isHumanPage && score >= 0.5) {
       const registry = sdk.getIntentRegistry();
       const tools = Object.fromEntries(
         [...registry.entries()].map(([intent, entry]) => [intent, { routes: [...entry.routes] }])
@@ -543,7 +544,14 @@ function agentixMiddleware(sdk) {
         token_id: null,
         decision: "allow",
         decision_reason: "agent_redirected_to_lane",
-        policy_id: "agent-detection"
+        policy_id: "agent-detection",
+        metadata: {
+          user_agent: req.headers.get("user-agent") ?? "",
+          agent_score: score,
+          has_sec_fetch: !!req.headers.get("sec-fetch-site"),
+          has_sec_ch_ua: !!req.headers.get("sec-ch-ua"),
+          accept: req.headers.get("accept") ?? ""
+        }
       }));
       return NextResponse.json({
         service: "agentix-intent-sdk",

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agentix-security/nextjs",
-  "version": "0.1.8",
+  "version": "0.1.10",
   "description": "Agentix Next.js adapter — AI agent intent-based authorization for Next.js apps",
   "type": "module",
   "main": "./dist/index.cjs",