@astrasyncai/verification-gateway 3.2.0 → 3.2.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/adapters/express.js +24 -1
- package/dist/adapters/express.js.map +1 -1
- package/dist/adapters/express.mjs +24 -1
- package/dist/adapters/express.mjs.map +1 -1
- package/dist/adapters/mcp.js +24 -1
- package/dist/adapters/mcp.js.map +1 -1
- package/dist/adapters/mcp.mjs +24 -1
- package/dist/adapters/mcp.mjs.map +1 -1
- package/dist/adapters/nextjs.js +19 -3
- package/dist/adapters/nextjs.js.map +1 -1
- package/dist/adapters/nextjs.mjs +19 -3
- package/dist/adapters/nextjs.mjs.map +1 -1
- package/dist/adapters/sdk.js +1 -1
- package/dist/adapters/sdk.js.map +1 -1
- package/dist/adapters/sdk.mjs +1 -1
- package/dist/adapters/sdk.mjs.map +1 -1
- package/dist/browser/background.js +1 -1
- package/dist/browser/background.js.map +1 -1
- package/dist/browser/background.mjs +1 -1
- package/dist/browser/background.mjs.map +1 -1
- package/dist/cursor/extension.js +1 -1
- package/dist/cursor/extension.js.map +1 -1
- package/dist/cursor/extension.mjs +1 -1
- package/dist/cursor/extension.mjs.map +1 -1
- package/dist/gateway/gateway.js +1 -1
- package/dist/gateway/gateway.js.map +1 -1
- package/dist/gateway/gateway.mjs +1 -1
- package/dist/gateway/gateway.mjs.map +1 -1
- package/dist/index.js +39 -3
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +39 -3
- package/dist/index.mjs.map +1 -1
- package/package.json +1 -1
package/dist/adapters/mcp.mjs
CHANGED
|
@@ -7,7 +7,7 @@ function getTrustLevel(score) {
|
|
|
7
7
|
}
|
|
8
8
|
|
|
9
9
|
// src/version.ts
|
|
10
|
-
var SDK_VERSION = "3.2.
|
|
10
|
+
var SDK_VERSION = "3.2.1";
|
|
11
11
|
|
|
12
12
|
// src/well-known.ts
|
|
13
13
|
var CACHE_TTL_MS = 60 * 60 * 1e3;
|
|
@@ -511,6 +511,19 @@ async function recordDecision(config, sessionId, decision, reason) {
|
|
|
511
511
|
});
|
|
512
512
|
}
|
|
513
513
|
|
|
514
|
+
// src/adapters/approval-gate.ts
|
|
515
|
+
var APPROVAL_REASON = "Transaction is above the autonomous limit and requires human approval, which is not yet available \u2014 it cannot be completed automatically.";
|
|
516
|
+
function requiresHumanApproval(result) {
|
|
517
|
+
return result.requiresStepUp === true || result.requiresApproval === true;
|
|
518
|
+
}
|
|
519
|
+
function annotateApprovalRequired(result) {
|
|
520
|
+
result.failures = [
|
|
521
|
+
...result.failures ?? [],
|
|
522
|
+
{ dimension: "commerce.intent.approval_required", message: APPROVAL_REASON }
|
|
523
|
+
];
|
|
524
|
+
result.denialReasons = [APPROVAL_REASON, ...result.denialReasons ?? []];
|
|
525
|
+
}
|
|
526
|
+
|
|
514
527
|
// src/transport/mcp-server.ts
|
|
515
528
|
var MCP_VERIFIED_HOP_HEADER = "X-Astra-Verified-Hop";
|
|
516
529
|
var MCP_VERIFIED_HOP_MAX_AGE_MS = 6e4;
|
|
@@ -844,6 +857,16 @@ function createMcpMiddleware(options) {
|
|
|
844
857
|
onDenied(result, req, res);
|
|
845
858
|
return;
|
|
846
859
|
}
|
|
860
|
+
if (requiresHumanApproval(result)) {
|
|
861
|
+
annotateApprovalRequired(result);
|
|
862
|
+
if (shouldRecordDecisions && sessionId) {
|
|
863
|
+
recordDecision(config, sessionId, "denied", result.denialReasons?.[0]).catch(() => {
|
|
864
|
+
});
|
|
865
|
+
}
|
|
866
|
+
dedupeFailures(result);
|
|
867
|
+
onDenied(result, req, res);
|
|
868
|
+
return;
|
|
869
|
+
}
|
|
847
870
|
if (!shouldEnforce) {
|
|
848
871
|
if (config.setPassThroughHeader) {
|
|
849
872
|
res.setHeader("X-Astra-Gateway-Mode", "enforced");
|