@attested-intelligence/aga-mcp-server 2.0.1 → 2.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/adapters/openclaw.d.ts +43 -0
- package/dist/adapters/openclaw.d.ts.map +1 -0
- package/dist/adapters/openclaw.js +86 -0
- package/dist/adapters/openclaw.js.map +1 -0
- package/dist/proxy/evaluator.d.ts +14 -0
- package/dist/proxy/evaluator.d.ts.map +1 -0
- package/dist/proxy/evaluator.js +141 -0
- package/dist/proxy/evaluator.js.map +1 -0
- package/dist/proxy/index.d.ts +22 -0
- package/dist/proxy/index.d.ts.map +1 -0
- package/dist/proxy/index.js +230 -0
- package/dist/proxy/index.js.map +1 -0
- package/dist/proxy/profiles.d.ts +16 -0
- package/dist/proxy/profiles.d.ts.map +1 -0
- package/dist/proxy/profiles.js +43 -0
- package/dist/proxy/profiles.js.map +1 -0
- package/dist/proxy/server.d.ts +106 -0
- package/dist/proxy/server.d.ts.map +1 -0
- package/dist/proxy/server.js +389 -0
- package/dist/proxy/server.js.map +1 -0
- package/dist/proxy/stdio-bridge.d.ts +42 -0
- package/dist/proxy/stdio-bridge.d.ts.map +1 -0
- package/dist/proxy/stdio-bridge.js +142 -0
- package/dist/proxy/stdio-bridge.js.map +1 -0
- package/dist/proxy/types.d.ts +36 -0
- package/dist/proxy/types.d.ts.map +1 -0
- package/dist/proxy/types.js +11 -0
- package/dist/proxy/types.js.map +1 -0
- package/dist/proxy/verify.d.ts +29 -0
- package/dist/proxy/verify.d.ts.map +1 -0
- package/dist/proxy/verify.js +183 -0
- package/dist/proxy/verify.js.map +1 -0
- package/package.json +8 -3
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"profiles.js","sourceRoot":"","sources":["../../src/proxy/profiles.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,yDAAyD;AACzD,MAAM,CAAC,MAAM,UAAU,GAAe;IACpC,IAAI,EAAE,YAAY;IAClB,WAAW,EAAE,EAAE;CAChB,CAAC;AAEF,4EAA4E;AAC5E,MAAM,CAAC,MAAM,QAAQ,GAAe;IAClC,IAAI,EAAE,WAAW;IACjB,WAAW,EAAE;QACX,eAAe,EAAI,EAAE,IAAI,EAAE,iBAAiB,EAAI,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;QACzF,gBAAgB,EAAG,EAAE,IAAI,EAAE,kBAAkB,EAAG,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE,eAAe,EAAE,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,CAAC,EAAE;QACxI,aAAa,EAAM,EAAE,IAAI,EAAE,eAAe,EAAM,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE,eAAe,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,aAAa,CAAC,EAAE;QACvJ,UAAU,EAAS,EAAE,IAAI,EAAE,YAAY,EAAS,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;QACzF,SAAS,EAAU,EAAE,IAAI,EAAE,WAAW,EAAU,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;QACzF,YAAY,EAAO,EAAE,IAAI,EAAE,cAAc,EAAO,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,CAAC,EAAE;QACxF,eAAe,EAAI,EAAE,IAAI,EAAE,iBAAiB,EAAI,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,CAAC,EAAE;QACxF,aAAa,EAAM,EAAE,IAAI,EAAE,eAAe,EAAM,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;QACzF,YAAY,EAAO,EAAE,IAAI,EAAE,cAAc,EAAO,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;QACzF,YAAY,EAAO,EAAE,IAAI,EAAE,cAAc,EAAO,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;KAC1F;CACF,CAAC;AAEF,+EAA+E;AAC/E,MAAM,CAAC,MAAM,WAAW,GAAe;IACrC,IAAI,EAAE,WAAW;IACjB,WAAW,EAAE;QACX,eAAe,EAAG,EAAE,IAAI,EAAE,iBAAiB,EAAG,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE,WAAW,EAAE,OAAO,EAAE;QAC7G,UAAU,EAAQ,EAAE,IAAI,EAAE,YAAY,EAAQ,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,CAAC,EAAE;QACtF,aAAa,EAAK,EAAE,IAAI,EAAE,eAAe,EAAK,OAAO,EAAE,IAAI,EAAE,oBAAoB,EAAE,EAAE,EAAE;KACxF;CACF,CAAC;AAEF,MAAM,CAAC,MAAM,QAAQ,GAA+B;IAClD,UAAU,EAAE,UAAU;IACtB,QAAQ,EAAE,QAAQ;IAClB,WAAW,EAAE,WAAW;CACzB,CAAC"}
|
|
@@ -0,0 +1,106 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* AGA Governance Proxy Server
|
|
3
|
+
* TCP proxy that intercepts MCP JSON-RPC 2.0 tool calls,
|
|
4
|
+
* evaluates them against a sealed policy, and produces
|
|
5
|
+
* Ed25519-signed governance receipts.
|
|
6
|
+
*
|
|
7
|
+
* Receipt format: Ed25519-SHA256-JCS (canonical across TS gateway,
|
|
8
|
+
* Python SDK, Go CLI, and browser verifier).
|
|
9
|
+
*
|
|
10
|
+
* Architecture: Client → Proxy (:18800) → Downstream MCP Server
|
|
11
|
+
* The proxy holds ALL signing keys. The client holds NONE.
|
|
12
|
+
*
|
|
13
|
+
* Patent: USPTO App. No. 19/433,835
|
|
14
|
+
* Copyright (c) 2026 Attested Intelligence Holdings LLC
|
|
15
|
+
* SPDX-License-Identifier: MIT
|
|
16
|
+
*/
|
|
17
|
+
import { EventEmitter } from 'node:events';
|
|
18
|
+
import { type StdioBridgeOptions } from './stdio-bridge.js';
|
|
19
|
+
import type { ToolPolicy } from './types.js';
|
|
20
|
+
export interface GovernanceReceipt {
|
|
21
|
+
receipt_id: string;
|
|
22
|
+
receipt_version: string;
|
|
23
|
+
algorithm: string;
|
|
24
|
+
timestamp: string;
|
|
25
|
+
request_id: string | number | null;
|
|
26
|
+
method: string;
|
|
27
|
+
tool_name: string;
|
|
28
|
+
decision: 'PERMITTED' | 'DENIED';
|
|
29
|
+
reason: string;
|
|
30
|
+
policy_reference: string;
|
|
31
|
+
arguments_hash: string;
|
|
32
|
+
previous_receipt_hash: string;
|
|
33
|
+
gateway_id: string;
|
|
34
|
+
signature: string;
|
|
35
|
+
public_key: string;
|
|
36
|
+
}
|
|
37
|
+
export interface EvidenceBundle {
|
|
38
|
+
schema_version: string;
|
|
39
|
+
bundle_id: string;
|
|
40
|
+
algorithm: string;
|
|
41
|
+
generated_at: string;
|
|
42
|
+
gateway_id: string;
|
|
43
|
+
public_key: string;
|
|
44
|
+
policy_reference: string;
|
|
45
|
+
receipts: GovernanceReceipt[];
|
|
46
|
+
merkle_root: string;
|
|
47
|
+
merkle_proofs: MerkleProof[];
|
|
48
|
+
offline_capable: boolean;
|
|
49
|
+
}
|
|
50
|
+
export interface MerkleProof {
|
|
51
|
+
leaf_hash: string;
|
|
52
|
+
leaf_index: number;
|
|
53
|
+
siblings: string[];
|
|
54
|
+
directions: ('left' | 'right')[];
|
|
55
|
+
merkle_root: string;
|
|
56
|
+
}
|
|
57
|
+
export interface ProxyServerOptions {
|
|
58
|
+
port?: number;
|
|
59
|
+
policy?: ToolPolicy;
|
|
60
|
+
upstream?: StdioBridgeOptions;
|
|
61
|
+
upstreamUrl?: string;
|
|
62
|
+
gatewayId?: string;
|
|
63
|
+
}
|
|
64
|
+
export declare class GovernanceProxy extends EventEmitter {
|
|
65
|
+
private server;
|
|
66
|
+
private bridge;
|
|
67
|
+
private signingKP;
|
|
68
|
+
private policy;
|
|
69
|
+
private port;
|
|
70
|
+
private started;
|
|
71
|
+
private upstreamOptions;
|
|
72
|
+
private upstreamUrl;
|
|
73
|
+
private gatewayId;
|
|
74
|
+
private receipts;
|
|
75
|
+
private lastReceiptHash;
|
|
76
|
+
private policyHash;
|
|
77
|
+
private stats;
|
|
78
|
+
constructor(options?: ProxyServerOptions);
|
|
79
|
+
start(): Promise<void>;
|
|
80
|
+
stop(): Promise<void>;
|
|
81
|
+
private handleConnection;
|
|
82
|
+
private handleMessage;
|
|
83
|
+
private interceptToolCall;
|
|
84
|
+
private generateReceipt;
|
|
85
|
+
private merkleNodeHash;
|
|
86
|
+
private computeMerkleRoot;
|
|
87
|
+
private computeMerkleProof;
|
|
88
|
+
private forwardHttp;
|
|
89
|
+
private respond;
|
|
90
|
+
switchPolicy(newPolicy: ToolPolicy): Promise<void>;
|
|
91
|
+
exportBundle(): EvidenceBundle;
|
|
92
|
+
getStatus(): {
|
|
93
|
+
public_key: string;
|
|
94
|
+
permitted: number;
|
|
95
|
+
denied: number;
|
|
96
|
+
total: number;
|
|
97
|
+
started_at: string;
|
|
98
|
+
running: boolean;
|
|
99
|
+
port: number;
|
|
100
|
+
policy_mode: "allowlist" | "denylist" | "audit_only";
|
|
101
|
+
receipt_count: number;
|
|
102
|
+
};
|
|
103
|
+
getPublicKey(): string;
|
|
104
|
+
getReceipts(): GovernanceReceipt[];
|
|
105
|
+
}
|
|
106
|
+
//# sourceMappingURL=server.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/proxy/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAO3C,OAAO,EAAe,KAAK,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAIzE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAK7C,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;IACnC,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,WAAW,GAAG,QAAQ,CAAC;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,qBAAqB,EAAE,MAAM,CAAC;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,cAAc;IAC7B,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,iBAAiB,EAAE,CAAC;IAC9B,WAAW,EAAE,MAAM,CAAC;IACpB,aAAa,EAAE,WAAW,EAAE,CAAC;IAC7B,eAAe,EAAE,OAAO,CAAC;CAC1B;AAED,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,UAAU,EAAE,CAAC,MAAM,GAAG,OAAO,CAAC,EAAE,CAAC;IACjC,WAAW,EAAE,MAAM,CAAC;CACrB;AAID,MAAM,WAAW,kBAAkB;IACjC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,UAAU,CAAC;IACpB,QAAQ,CAAC,EAAE,kBAAkB,CAAC;IAC9B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,qBAAa,eAAgB,SAAQ,YAAY;IAC/C,OAAO,CAAC,MAAM,CAA2B;IACzC,OAAO,CAAC,MAAM,CAA4B;IAG1C,OAAO,CAAC,SAAS,CAAU;IAG3B,OAAO,CAAC,MAAM,CAAa;IAC3B,OAAO,CAAC,IAAI,CAAS;IACrB,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,eAAe,CAA4B;IACnD,OAAO,CAAC,WAAW,CAAgB;IACnC,OAAO,CAAC,SAAS,CAAS;IAG1B,OAAO,CAAC,QAAQ,CAA2B;IAC3C,OAAO,CAAC,eAAe,CAAc;IACrC,OAAO,CAAC,UAAU,CAAc;IAGhC,OAAO,CAAC,KAAK,CAAyD;gBAE1D,OAAO,GAAE,kBAAuB;IAYtC,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IA4BtB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAqB3B,OAAO,CAAC,gBAAgB;YAoBV,aAAa;YAgDb,iBAAiB;IAiF/B,OAAO,CAAC,eAAe;IA6CvB,OAAO,CAAC,cAAc;IAStB,OAAO,CAAC,iBAAiB;IAkBzB,OAAO,CAAC,kBAAkB;YAuCZ,WAAW;IAoBzB,OAAO,CAAC,OAAO;IAQT,YAAY,CAAC,SAAS,EAAE,UAAU,GAAG,OAAO,CAAC,IAAI,CAAC;IAOxD,YAAY,IAAI,cAAc;IAsB9B,SAAS;;;;;;;;;;;IAWT,YAAY,IAAI,MAAM;IACtB,WAAW,IAAI,iBAAiB,EAAE;CACnC"}
|
|
@@ -0,0 +1,389 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* AGA Governance Proxy Server
|
|
3
|
+
* TCP proxy that intercepts MCP JSON-RPC 2.0 tool calls,
|
|
4
|
+
* evaluates them against a sealed policy, and produces
|
|
5
|
+
* Ed25519-signed governance receipts.
|
|
6
|
+
*
|
|
7
|
+
* Receipt format: Ed25519-SHA256-JCS (canonical across TS gateway,
|
|
8
|
+
* Python SDK, Go CLI, and browser verifier).
|
|
9
|
+
*
|
|
10
|
+
* Architecture: Client → Proxy (:18800) → Downstream MCP Server
|
|
11
|
+
* The proxy holds ALL signing keys. The client holds NONE.
|
|
12
|
+
*
|
|
13
|
+
* Patent: USPTO App. No. 19/433,835
|
|
14
|
+
* Copyright (c) 2026 Attested Intelligence Holdings LLC
|
|
15
|
+
* SPDX-License-Identifier: MIT
|
|
16
|
+
*/
|
|
17
|
+
import * as net from 'node:net';
|
|
18
|
+
import { EventEmitter } from 'node:events';
|
|
19
|
+
import { generateKeyPair, pkToHex, signStr } from '../crypto/sign.js';
|
|
20
|
+
import { bytesToHex, hexToBytes as utilHexToBytes } from '@noble/hashes/utils';
|
|
21
|
+
import { sha256 } from '@noble/hashes/sha256';
|
|
22
|
+
import { sha256Str } from '../crypto/hash.js';
|
|
23
|
+
import { canonicalize } from '../utils/canonical.js';
|
|
24
|
+
import { evaluate, resetRateLimits } from './evaluator.js';
|
|
25
|
+
import { StdioBridge } from './stdio-bridge.js';
|
|
26
|
+
import { PERMISSIVE } from './profiles.js';
|
|
27
|
+
import { utcNow } from '../utils/timestamp.js';
|
|
28
|
+
import { uuid } from '../utils/uuid.js';
|
|
29
|
+
export class GovernanceProxy extends EventEmitter {
|
|
30
|
+
server = null;
|
|
31
|
+
bridge = null;
|
|
32
|
+
// Crypto key - never leaves this process
|
|
33
|
+
signingKP;
|
|
34
|
+
// State
|
|
35
|
+
policy;
|
|
36
|
+
port;
|
|
37
|
+
started = false;
|
|
38
|
+
upstreamOptions;
|
|
39
|
+
upstreamUrl;
|
|
40
|
+
gatewayId;
|
|
41
|
+
// Receipt chain
|
|
42
|
+
receipts = [];
|
|
43
|
+
lastReceiptHash = '';
|
|
44
|
+
policyHash = '';
|
|
45
|
+
// Stats
|
|
46
|
+
stats = { permitted: 0, denied: 0, total: 0, started_at: '' };
|
|
47
|
+
constructor(options = {}) {
|
|
48
|
+
super();
|
|
49
|
+
this.port = options.port ?? 18800;
|
|
50
|
+
this.policy = options.policy ?? PERMISSIVE;
|
|
51
|
+
this.upstreamOptions = options.upstream ?? null;
|
|
52
|
+
this.upstreamUrl = options.upstreamUrl ?? null;
|
|
53
|
+
this.gatewayId = options.gatewayId ?? 'aga-proxy';
|
|
54
|
+
this.signingKP = generateKeyPair();
|
|
55
|
+
}
|
|
56
|
+
// ── Start / Stop ───────────────────────────────────────────
|
|
57
|
+
async start() {
|
|
58
|
+
if (this.started)
|
|
59
|
+
throw new Error('Proxy already running');
|
|
60
|
+
this.policyHash = sha256Str(canonicalize(this.policy));
|
|
61
|
+
// Start downstream bridge if configured
|
|
62
|
+
if (this.upstreamOptions) {
|
|
63
|
+
this.bridge = new StdioBridge(this.upstreamOptions);
|
|
64
|
+
await this.bridge.start();
|
|
65
|
+
this.bridge.on('error', (err) => this.emit('error', err));
|
|
66
|
+
this.bridge.on('exit', (code) => {
|
|
67
|
+
process.stderr.write(`[aga-proxy] Downstream exited with code ${code}\n`);
|
|
68
|
+
});
|
|
69
|
+
}
|
|
70
|
+
// Start TCP server
|
|
71
|
+
this.server = net.createServer((socket) => this.handleConnection(socket));
|
|
72
|
+
await new Promise((resolve, reject) => {
|
|
73
|
+
this.server.listen(this.port, () => resolve());
|
|
74
|
+
this.server.on('error', reject);
|
|
75
|
+
});
|
|
76
|
+
this.started = true;
|
|
77
|
+
this.stats.started_at = new Date().toISOString();
|
|
78
|
+
resetRateLimits();
|
|
79
|
+
this.emit('started', { port: this.port });
|
|
80
|
+
}
|
|
81
|
+
async stop() {
|
|
82
|
+
if (!this.started)
|
|
83
|
+
return;
|
|
84
|
+
if (this.bridge) {
|
|
85
|
+
await this.bridge.stop();
|
|
86
|
+
this.bridge = null;
|
|
87
|
+
}
|
|
88
|
+
if (this.server) {
|
|
89
|
+
await new Promise((resolve) => {
|
|
90
|
+
this.server.close(() => resolve());
|
|
91
|
+
});
|
|
92
|
+
this.server = null;
|
|
93
|
+
}
|
|
94
|
+
this.started = false;
|
|
95
|
+
this.emit('stopped');
|
|
96
|
+
}
|
|
97
|
+
// ── Connection handler ─────────────────────────────────────
|
|
98
|
+
handleConnection(socket) {
|
|
99
|
+
let buffer = '';
|
|
100
|
+
socket.on('data', (chunk) => {
|
|
101
|
+
buffer += chunk.toString();
|
|
102
|
+
const lines = buffer.split('\n');
|
|
103
|
+
buffer = lines.pop() || '';
|
|
104
|
+
for (const line of lines) {
|
|
105
|
+
const trimmed = line.trim();
|
|
106
|
+
if (!trimmed)
|
|
107
|
+
continue;
|
|
108
|
+
this.handleMessage(trimmed, socket).catch((err) => {
|
|
109
|
+
process.stderr.write(`[aga-proxy] Error handling message: ${err}\n`);
|
|
110
|
+
});
|
|
111
|
+
}
|
|
112
|
+
});
|
|
113
|
+
socket.on('error', () => { });
|
|
114
|
+
}
|
|
115
|
+
async handleMessage(raw, socket) {
|
|
116
|
+
let parsed;
|
|
117
|
+
try {
|
|
118
|
+
parsed = JSON.parse(raw);
|
|
119
|
+
}
|
|
120
|
+
catch {
|
|
121
|
+
this.respond(socket, { jsonrpc: '2.0', error: { code: -32700, message: 'Parse error' }, id: null });
|
|
122
|
+
return;
|
|
123
|
+
}
|
|
124
|
+
if (parsed.jsonrpc !== '2.0') {
|
|
125
|
+
this.respond(socket, { jsonrpc: '2.0', error: { code: -32600, message: 'Invalid Request: missing jsonrpc 2.0' }, id: null });
|
|
126
|
+
return;
|
|
127
|
+
}
|
|
128
|
+
const requestId = parsed.id ?? null;
|
|
129
|
+
const method = parsed.method;
|
|
130
|
+
// Non-tools/call methods: forward transparently
|
|
131
|
+
if (method !== 'tools/call') {
|
|
132
|
+
if (this.bridge) {
|
|
133
|
+
try {
|
|
134
|
+
const response = await this.bridge.send(parsed);
|
|
135
|
+
this.respond(socket, response);
|
|
136
|
+
}
|
|
137
|
+
catch (err) {
|
|
138
|
+
this.respond(socket, {
|
|
139
|
+
jsonrpc: '2.0',
|
|
140
|
+
error: { code: -32603, message: `Downstream error: ${err}` },
|
|
141
|
+
id: requestId,
|
|
142
|
+
});
|
|
143
|
+
}
|
|
144
|
+
}
|
|
145
|
+
else if (this.upstreamUrl) {
|
|
146
|
+
await this.forwardHttp(raw, socket, requestId);
|
|
147
|
+
}
|
|
148
|
+
else {
|
|
149
|
+
this.respond(socket, {
|
|
150
|
+
jsonrpc: '2.0',
|
|
151
|
+
error: { code: -32603, message: 'No upstream configured' },
|
|
152
|
+
id: requestId,
|
|
153
|
+
});
|
|
154
|
+
}
|
|
155
|
+
return;
|
|
156
|
+
}
|
|
157
|
+
// tools/call - governance intercept
|
|
158
|
+
await this.interceptToolCall(parsed, socket, requestId);
|
|
159
|
+
}
|
|
160
|
+
// ── Tool call interception ─────────────────────────────────
|
|
161
|
+
async interceptToolCall(parsed, socket, requestId) {
|
|
162
|
+
const params = parsed.params;
|
|
163
|
+
const toolName = params?.name;
|
|
164
|
+
const toolArgs = params?.arguments;
|
|
165
|
+
this.stats.total++;
|
|
166
|
+
// Fail-closed: no tool name
|
|
167
|
+
if (!toolName) {
|
|
168
|
+
const receipt = this.generateReceipt('UNKNOWN', 'DENIED', 'tool name extraction failed, fail-closed', requestId, undefined);
|
|
169
|
+
this.stats.denied++;
|
|
170
|
+
this.respond(socket, {
|
|
171
|
+
jsonrpc: '2.0',
|
|
172
|
+
error: {
|
|
173
|
+
code: -32600,
|
|
174
|
+
message: 'Missing tool name',
|
|
175
|
+
data: { receipt_id: receipt.receipt_id, decision: 'DENIED' },
|
|
176
|
+
},
|
|
177
|
+
id: requestId,
|
|
178
|
+
});
|
|
179
|
+
return;
|
|
180
|
+
}
|
|
181
|
+
// Evaluate against policy
|
|
182
|
+
const decision = evaluate(this.policy, toolName, toolArgs);
|
|
183
|
+
const receipt = this.generateReceipt(toolName, decision.allowed ? 'PERMITTED' : 'DENIED', decision.reason, requestId, toolArgs);
|
|
184
|
+
if (!decision.allowed) {
|
|
185
|
+
this.stats.denied++;
|
|
186
|
+
this.respond(socket, {
|
|
187
|
+
jsonrpc: '2.0',
|
|
188
|
+
error: {
|
|
189
|
+
code: -32600,
|
|
190
|
+
message: `Tool denied: ${decision.reason}`,
|
|
191
|
+
data: { receipt_id: receipt.receipt_id, decision: 'DENIED', reason: decision.reason },
|
|
192
|
+
},
|
|
193
|
+
id: requestId,
|
|
194
|
+
});
|
|
195
|
+
return;
|
|
196
|
+
}
|
|
197
|
+
// Permitted - forward to downstream
|
|
198
|
+
this.stats.permitted++;
|
|
199
|
+
if (this.bridge) {
|
|
200
|
+
try {
|
|
201
|
+
const response = await this.bridge.send(parsed);
|
|
202
|
+
this.respond(socket, response);
|
|
203
|
+
}
|
|
204
|
+
catch (err) {
|
|
205
|
+
this.respond(socket, {
|
|
206
|
+
jsonrpc: '2.0',
|
|
207
|
+
error: { code: -32603, message: `Downstream error: ${err}` },
|
|
208
|
+
id: requestId,
|
|
209
|
+
});
|
|
210
|
+
}
|
|
211
|
+
}
|
|
212
|
+
else if (this.upstreamUrl) {
|
|
213
|
+
await this.forwardHttp(JSON.stringify(parsed), socket, requestId);
|
|
214
|
+
}
|
|
215
|
+
else {
|
|
216
|
+
// No upstream - return success with receipt info
|
|
217
|
+
this.respond(socket, {
|
|
218
|
+
jsonrpc: '2.0',
|
|
219
|
+
result: {
|
|
220
|
+
content: [{ type: 'text', text: JSON.stringify({ permitted: true, receipt_id: receipt.receipt_id, tool: toolName }) }],
|
|
221
|
+
},
|
|
222
|
+
id: requestId,
|
|
223
|
+
});
|
|
224
|
+
}
|
|
225
|
+
}
|
|
226
|
+
// ── Receipt generation (Ed25519-SHA256-JCS canonical format) ─
|
|
227
|
+
generateReceipt(toolName, decision, reason, requestId, toolArgs) {
|
|
228
|
+
const pubKeyHex = pkToHex(this.signingKP.publicKey);
|
|
229
|
+
// Arguments hash tri-state per spec Section 3.5
|
|
230
|
+
let argumentsHash;
|
|
231
|
+
if (toolArgs === undefined) {
|
|
232
|
+
argumentsHash = '';
|
|
233
|
+
}
|
|
234
|
+
else {
|
|
235
|
+
argumentsHash = sha256Str(canonicalize(toolArgs));
|
|
236
|
+
}
|
|
237
|
+
const unsigned = {
|
|
238
|
+
receipt_id: uuid(),
|
|
239
|
+
receipt_version: '1.0',
|
|
240
|
+
algorithm: 'Ed25519-SHA256-JCS',
|
|
241
|
+
timestamp: utcNow(),
|
|
242
|
+
request_id: requestId,
|
|
243
|
+
method: 'tools/call',
|
|
244
|
+
tool_name: toolName,
|
|
245
|
+
decision,
|
|
246
|
+
reason,
|
|
247
|
+
policy_reference: this.policyHash,
|
|
248
|
+
arguments_hash: argumentsHash,
|
|
249
|
+
previous_receipt_hash: this.lastReceiptHash,
|
|
250
|
+
gateway_id: this.gatewayId,
|
|
251
|
+
public_key: pubKeyHex,
|
|
252
|
+
};
|
|
253
|
+
const sig = signStr(canonicalize(unsigned), this.signingKP.secretKey);
|
|
254
|
+
const receipt = { ...unsigned, signature: bytesToHex(sig) };
|
|
255
|
+
this.receipts.push(receipt);
|
|
256
|
+
this.lastReceiptHash = sha256Str(canonicalize(receipt));
|
|
257
|
+
return receipt;
|
|
258
|
+
}
|
|
259
|
+
// ── Merkle tree (binary, odd-node promotion, binary concat) ─
|
|
260
|
+
merkleNodeHash(leftHex, rightHex) {
|
|
261
|
+
const left = utilHexToBytes(leftHex);
|
|
262
|
+
const right = utilHexToBytes(rightHex);
|
|
263
|
+
const combined = new Uint8Array(left.length + right.length);
|
|
264
|
+
combined.set(left, 0);
|
|
265
|
+
combined.set(right, left.length);
|
|
266
|
+
return bytesToHex(sha256(combined));
|
|
267
|
+
}
|
|
268
|
+
computeMerkleRoot(leaves) {
|
|
269
|
+
if (leaves.length === 0)
|
|
270
|
+
return '';
|
|
271
|
+
if (leaves.length === 1)
|
|
272
|
+
return leaves[0];
|
|
273
|
+
let level = [...leaves];
|
|
274
|
+
while (level.length > 1) {
|
|
275
|
+
const next = [];
|
|
276
|
+
for (let i = 0; i < level.length; i += 2) {
|
|
277
|
+
if (i + 1 < level.length) {
|
|
278
|
+
next.push(this.merkleNodeHash(level[i], level[i + 1]));
|
|
279
|
+
}
|
|
280
|
+
else {
|
|
281
|
+
next.push(level[i]);
|
|
282
|
+
}
|
|
283
|
+
}
|
|
284
|
+
level = next;
|
|
285
|
+
}
|
|
286
|
+
return level[0];
|
|
287
|
+
}
|
|
288
|
+
computeMerkleProof(leaves, leafIndex) {
|
|
289
|
+
const siblings = [];
|
|
290
|
+
const directions = [];
|
|
291
|
+
let level = [...leaves];
|
|
292
|
+
let idx = leafIndex;
|
|
293
|
+
while (level.length > 1) {
|
|
294
|
+
const next = [];
|
|
295
|
+
for (let i = 0; i < level.length; i += 2) {
|
|
296
|
+
if (i + 1 < level.length) {
|
|
297
|
+
next.push(this.merkleNodeHash(level[i], level[i + 1]));
|
|
298
|
+
}
|
|
299
|
+
else {
|
|
300
|
+
next.push(level[i]);
|
|
301
|
+
}
|
|
302
|
+
}
|
|
303
|
+
if (idx % 2 === 0) {
|
|
304
|
+
if (idx + 1 < level.length) {
|
|
305
|
+
siblings.push(level[idx + 1]);
|
|
306
|
+
directions.push('right');
|
|
307
|
+
}
|
|
308
|
+
}
|
|
309
|
+
else {
|
|
310
|
+
siblings.push(level[idx - 1]);
|
|
311
|
+
directions.push('left');
|
|
312
|
+
}
|
|
313
|
+
idx = Math.floor(idx / 2);
|
|
314
|
+
level = next;
|
|
315
|
+
}
|
|
316
|
+
return {
|
|
317
|
+
leaf_hash: leaves[leafIndex],
|
|
318
|
+
leaf_index: leafIndex,
|
|
319
|
+
siblings,
|
|
320
|
+
directions,
|
|
321
|
+
merkle_root: level[0],
|
|
322
|
+
};
|
|
323
|
+
}
|
|
324
|
+
// ── HTTP forwarding ────────────────────────────────────────
|
|
325
|
+
async forwardHttp(body, socket, requestId) {
|
|
326
|
+
try {
|
|
327
|
+
const resp = await fetch(this.upstreamUrl, {
|
|
328
|
+
method: 'POST',
|
|
329
|
+
headers: { 'Content-Type': 'application/json' },
|
|
330
|
+
body,
|
|
331
|
+
});
|
|
332
|
+
const data = await resp.json();
|
|
333
|
+
this.respond(socket, data);
|
|
334
|
+
}
|
|
335
|
+
catch (err) {
|
|
336
|
+
this.respond(socket, {
|
|
337
|
+
jsonrpc: '2.0',
|
|
338
|
+
error: { code: -32603, message: `HTTP upstream error: ${err}` },
|
|
339
|
+
id: requestId,
|
|
340
|
+
});
|
|
341
|
+
}
|
|
342
|
+
}
|
|
343
|
+
// ── Response helper ────────────────────────────────────────
|
|
344
|
+
respond(socket, msg) {
|
|
345
|
+
if (!socket.destroyed) {
|
|
346
|
+
socket.write(JSON.stringify(msg) + '\n');
|
|
347
|
+
}
|
|
348
|
+
}
|
|
349
|
+
// ── Public API ─────────────────────────────────────────────
|
|
350
|
+
async switchPolicy(newPolicy) {
|
|
351
|
+
this.policy = newPolicy;
|
|
352
|
+
this.policyHash = sha256Str(canonicalize(newPolicy));
|
|
353
|
+
resetRateLimits();
|
|
354
|
+
this.emit('policy_switched');
|
|
355
|
+
}
|
|
356
|
+
exportBundle() {
|
|
357
|
+
if (this.receipts.length === 0)
|
|
358
|
+
throw new Error('No receipts');
|
|
359
|
+
const leafHashes = this.receipts.map(r => sha256Str(canonicalize(r)));
|
|
360
|
+
const root = this.computeMerkleRoot(leafHashes);
|
|
361
|
+
const proofs = leafHashes.map((_, i) => this.computeMerkleProof(leafHashes, i));
|
|
362
|
+
return {
|
|
363
|
+
schema_version: '1.0',
|
|
364
|
+
bundle_id: uuid(),
|
|
365
|
+
algorithm: 'Ed25519-SHA256-JCS',
|
|
366
|
+
generated_at: utcNow(),
|
|
367
|
+
gateway_id: this.gatewayId,
|
|
368
|
+
public_key: pkToHex(this.signingKP.publicKey),
|
|
369
|
+
policy_reference: this.policyHash,
|
|
370
|
+
receipts: this.receipts,
|
|
371
|
+
merkle_root: root,
|
|
372
|
+
merkle_proofs: proofs,
|
|
373
|
+
offline_capable: true,
|
|
374
|
+
};
|
|
375
|
+
}
|
|
376
|
+
getStatus() {
|
|
377
|
+
return {
|
|
378
|
+
running: this.started,
|
|
379
|
+
port: this.port,
|
|
380
|
+
policy_mode: this.policy.mode,
|
|
381
|
+
receipt_count: this.receipts.length,
|
|
382
|
+
...this.stats,
|
|
383
|
+
public_key: pkToHex(this.signingKP.publicKey),
|
|
384
|
+
};
|
|
385
|
+
}
|
|
386
|
+
getPublicKey() { return pkToHex(this.signingKP.publicKey); }
|
|
387
|
+
getReceipts() { return this.receipts; }
|
|
388
|
+
}
|
|
389
|
+
//# sourceMappingURL=server.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/proxy/server.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,GAAG,MAAM,UAAU,CAAC;AAChC,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3C,OAAO,EAAE,eAAe,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AACtE,OAAO,EAAE,UAAU,EAAE,UAAU,IAAI,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAC/E,OAAO,EAAE,MAAM,EAAE,MAAM,sBAAsB,CAAC;AAC9C,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AACrD,OAAO,EAAE,QAAQ,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAC3D,OAAO,EAAE,WAAW,EAA2B,MAAM,mBAAmB,CAAC;AACzE,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAC3C,OAAO,EAAE,MAAM,EAAE,MAAM,uBAAuB,CAAC;AAC/C,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AAwDxC,MAAM,OAAO,eAAgB,SAAQ,YAAY;IACvC,MAAM,GAAsB,IAAI,CAAC;IACjC,MAAM,GAAuB,IAAI,CAAC;IAE1C,yCAAyC;IACjC,SAAS,CAAU;IAE3B,QAAQ;IACA,MAAM,CAAa;IACnB,IAAI,CAAS;IACb,OAAO,GAAG,KAAK,CAAC;IAChB,eAAe,CAA4B;IAC3C,WAAW,CAAgB;IAC3B,SAAS,CAAS;IAE1B,gBAAgB;IACR,QAAQ,GAAwB,EAAE,CAAC;IACnC,eAAe,GAAW,EAAE,CAAC;IAC7B,UAAU,GAAW,EAAE,CAAC;IAEhC,QAAQ;IACA,KAAK,GAAG,EAAE,SAAS,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,UAAU,EAAE,EAAE,EAAE,CAAC;IAEtE,YAAY,UAA8B,EAAE;QAC1C,KAAK,EAAE,CAAC;QACR,IAAI,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,IAAI,KAAK,CAAC;QAClC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,UAAU,CAAC;QAC3C,IAAI,CAAC,eAAe,GAAG,OAAO,CAAC,QAAQ,IAAI,IAAI,CAAC;QAChD,IAAI,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,IAAI,CAAC;QAC/C,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,WAAW,CAAC;QAClD,IAAI,CAAC,SAAS,GAAG,eAAe,EAAE,CAAC;IACrC,CAAC;IAED,8DAA8D;IAE9D,KAAK,CAAC,KAAK;QACT,IAAI,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;QAE3D,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC;QAEvD,wCAAwC;QACxC,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,IAAI,CAAC,MAAM,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;YACpD,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YAC1B,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC;YAC1D,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAY,EAAE,EAAE;gBACtC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2CAA2C,IAAI,IAAI,CAAC,CAAC;YAC5E,CAAC,CAAC,CAAC;QACL,CAAC;QAED,mBAAmB;QACnB,IAAI,CAAC,MAAM,GAAG,GAAG,CAAC,YAAY,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC;QAC1E,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YAC1C,IAAI,CAAC,MAAO,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC;YAChD,IAAI,CAAC,MAAO,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACpB,IAAI,CAAC,KAAK,CAAC,UAAU,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACjD,eAAe,EAAE,CAAC;QAClB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED,KAAK,CAAC,IAAI;QACR,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO;QAE1B,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACzB,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;QAED,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;gBAClC,IAAI,CAAC,MAAO,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC;YACtC,CAAC,CAAC,CAAC;YACH,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC;QACrB,CAAC;QAED,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC;QACrB,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACvB,CAAC;IAED,8DAA8D;IAEtD,gBAAgB,CAAC,MAAkB;QACzC,IAAI,MAAM,GAAG,EAAE,CAAC;QAEhB,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE;YAC1B,MAAM,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;YAC3B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACjC,MAAM,GAAG,KAAK,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC;YAE3B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,IAAI,CAAC,OAAO;oBAAE,SAAS;gBACvB,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBAChD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,uCAAuC,GAAG,IAAI,CAAC,CAAC;gBACvE,CAAC,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,MAAM,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,GAA6B,CAAC,CAAC,CAAC;IAC1D,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,GAAW,EAAE,MAAkB;QACzD,IAAI,MAA+B,CAAC;QACpC,IAAI,CAAC;YACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;QAAC,MAAM,CAAC;YACP,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,aAAa,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;YACpG,OAAO;QACT,CAAC;QAED,IAAI,MAAM,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;YAC7B,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,sCAAsC,EAAE,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;YAC7H,OAAO;QACT,CAAC;QAED,MAAM,SAAS,GAAI,MAAM,CAAC,EAA6B,IAAI,IAAI,CAAC;QAChE,MAAM,MAAM,GAAG,MAAM,CAAC,MAA4B,CAAC;QAEnD,gDAAgD;QAChD,IAAI,MAAM,KAAK,YAAY,EAAE,CAAC;YAC5B,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;gBAChB,IAAI,CAAC;oBACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBAChD,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;gBACjC,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;wBACnB,OAAO,EAAE,KAAK;wBACd,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,qBAAqB,GAAG,EAAE,EAAE;wBAC5D,EAAE,EAAE,SAAS;qBACd,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;iBAAM,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;gBAC5B,MAAM,IAAI,CAAC,WAAW,CAAC,GAAG,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC;YACjD,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;oBACnB,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,wBAAwB,EAAE;oBAC1D,EAAE,EAAE,SAAS;iBACd,CAAC,CAAC;YACL,CAAC;YACD,OAAO;QACT,CAAC;QAED,oCAAoC;QACpC,MAAM,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC;IAC1D,CAAC;IAED,8DAA8D;IAEtD,KAAK,CAAC,iBAAiB,CAC7B,MAA+B,EAC/B,MAAkB,EAClB,SAAiC;QAEjC,MAAM,MAAM,GAAG,MAAM,CAAC,MAA6C,CAAC;QACpE,MAAM,QAAQ,GAAG,MAAM,EAAE,IAA0B,CAAC;QACpD,MAAM,QAAQ,GAAG,MAAM,EAAE,SAAgD,CAAC;QAE1E,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;QAEnB,4BAA4B;QAC5B,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,QAAQ,EAAE,0CAA0C,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;YAC5H,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACpB,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;gBACnB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,CAAC,KAAK;oBACZ,OAAO,EAAE,mBAAmB;oBAC5B,IAAI,EAAE,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE;iBAC7D;gBACD,EAAE,EAAE,SAAS;aACd,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,0BAA0B;QAC1B,MAAM,QAAQ,GAAG,QAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAC3D,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAClC,QAAQ,EACR,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,EACzC,QAAQ,CAAC,MAAM,EACf,SAAS,EACT,QAAQ,CACT,CAAC;QAEF,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,CAAC;YACtB,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACpB,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;gBACnB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,CAAC,KAAK;oBACZ,OAAO,EAAE,gBAAgB,QAAQ,CAAC,MAAM,EAAE;oBAC1C,IAAI,EAAE,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE;iBACtF;gBACD,EAAE,EAAE,SAAS;aACd,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,oCAAoC;QACpC,IAAI,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC;QAEvB,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;gBAChD,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;YACjC,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;oBACnB,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,qBAAqB,GAAG,EAAE,EAAE;oBAC5D,EAAE,EAAE,SAAS;iBACd,CAAC,CAAC;YACL,CAAC;QACH,CAAC;aAAM,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YAC5B,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACN,iDAAiD;YACjD,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;gBACnB,OAAO,EAAE,KAAK;gBACd,MAAM,EAAE;oBACN,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;iBACvH;gBACD,EAAE,EAAE,SAAS;aACd,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,gEAAgE;IAExD,eAAe,CACrB,QAAgB,EAChB,QAAgC,EAChC,MAAc,EACd,SAAiC,EACjC,QAA6C;QAE7C,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;QAEpD,gDAAgD;QAChD,IAAI,aAAqB,CAAC;QAC1B,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;YAC3B,aAAa,GAAG,EAAE,CAAC;QACrB,CAAC;aAAM,CAAC;YACN,aAAa,GAAG,SAAS,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,CAAC;QACpD,CAAC;QAED,MAAM,QAAQ,GAAG;YACf,UAAU,EAAE,IAAI,EAAE;YAClB,eAAe,EAAE,KAAK;YACtB,SAAS,EAAE,oBAAoB;YAC/B,SAAS,EAAE,MAAM,EAAE;YACnB,UAAU,EAAE,SAAS;YACrB,MAAM,EAAE,YAAY;YACpB,SAAS,EAAE,QAAQ;YACnB,QAAQ;YACR,MAAM;YACN,gBAAgB,EAAE,IAAI,CAAC,UAAU;YACjC,cAAc,EAAE,aAAa;YAC7B,qBAAqB,EAAE,IAAI,CAAC,eAAe;YAC3C,UAAU,EAAE,IAAI,CAAC,SAAS;YAC1B,UAAU,EAAE,SAAS;SACtB,CAAC;QAEF,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;QACtE,MAAM,OAAO,GAAsB,EAAE,GAAG,QAAQ,EAAE,SAAS,EAAE,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAE/E,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC5B,IAAI,CAAC,eAAe,GAAG,SAAS,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC;QAExD,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,+DAA+D;IAEvD,cAAc,CAAC,OAAe,EAAE,QAAgB;QACtD,MAAM,IAAI,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC;QACrC,MAAM,KAAK,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;QAC5D,QAAQ,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;QACtB,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,OAAO,UAAU,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC;IACtC,CAAC;IAEO,iBAAiB,CAAC,MAAgB;QACxC,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,EAAE,CAAC;QACnC,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC;QAC1C,IAAI,KAAK,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC;QACxB,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,GAAa,EAAE,CAAC;YAC1B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;gBACzC,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;oBACzB,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBACzD,CAAC;qBAAM,CAAC;oBACN,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACtB,CAAC;YACH,CAAC;YACD,KAAK,GAAG,IAAI,CAAC;QACf,CAAC;QACD,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAEO,kBAAkB,CAAC,MAAgB,EAAE,SAAiB;QAC5D,MAAM,QAAQ,GAAa,EAAE,CAAC;QAC9B,MAAM,UAAU,GAAyB,EAAE,CAAC;QAC5C,IAAI,KAAK,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC;QACxB,IAAI,GAAG,GAAG,SAAS,CAAC;QAEpB,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,GAAa,EAAE,CAAC;YAC1B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC;gBACzC,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;oBACzB,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBACzD,CAAC;qBAAM,CAAC;oBACN,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACtB,CAAC;YACH,CAAC;YACD,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;gBAClB,IAAI,GAAG,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;oBAC3B,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC;oBAC9B,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC3B,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC;gBAC9B,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1B,CAAC;YACD,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;YAC1B,KAAK,GAAG,IAAI,CAAC;QACf,CAAC;QAED,OAAO;YACL,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC;YAC5B,UAAU,EAAE,SAAS;YACrB,QAAQ;YACR,UAAU;YACV,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC;SACtB,CAAC;IACJ,CAAC;IAED,8DAA8D;IAEtD,KAAK,CAAC,WAAW,CAAC,IAAY,EAAE,MAAkB,EAAE,SAAiC;QAC3F,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,WAAY,EAAE;gBAC1C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,IAAI;aACL,CAAC,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC;YAC/B,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,IAA+B,CAAC,CAAC;QACxD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE;gBACnB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,wBAAwB,GAAG,EAAE,EAAE;gBAC/D,EAAE,EAAE,SAAS;aACd,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,8DAA8D;IAEtD,OAAO,CAAC,MAAkB,EAAE,GAA4B;QAC9D,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;YACtB,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED,8DAA8D;IAE9D,KAAK,CAAC,YAAY,CAAC,SAAqB;QACtC,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC;QACxB,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC,CAAC;QACrD,eAAe,EAAE,CAAC;QAClB,IAAI,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;IAC/B,CAAC;IAED,YAAY;QACV,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,MAAM,IAAI,KAAK,CAAC,aAAa,CAAC,CAAC;QAE/D,MAAM,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACtE,MAAM,IAAI,GAAG,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAChD,MAAM,MAAM,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,kBAAkB,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,CAAC;QAEhF,OAAO;YACL,cAAc,EAAE,KAAK;YACrB,SAAS,EAAE,IAAI,EAAE;YACjB,SAAS,EAAE,oBAAoB;YAC/B,YAAY,EAAE,MAAM,EAAE;YACtB,UAAU,EAAE,IAAI,CAAC,SAAS;YAC1B,UAAU,EAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC;YAC7C,gBAAgB,EAAE,IAAI,CAAC,UAAU;YACjC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,WAAW,EAAE,IAAI;YACjB,aAAa,EAAE,MAAM;YACrB,eAAe,EAAE,IAAI;SACtB,CAAC;IACJ,CAAC;IAED,SAAS;QACP,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI;YAC7B,aAAa,EAAE,IAAI,CAAC,QAAQ,CAAC,MAAM;YACnC,GAAG,IAAI,CAAC,KAAK;YACb,UAAU,EAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC;SAC9C,CAAC;IACJ,CAAC;IAED,YAAY,KAAa,OAAO,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IACpE,WAAW,KAA0B,OAAO,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC;CAC7D"}
|
|
@@ -0,0 +1,42 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* AGA Governance Proxy - Stdio Bridge
|
|
3
|
+
* Spawns a downstream MCP server as a child process and manages
|
|
4
|
+
* JSON-RPC message framing over stdin/stdout.
|
|
5
|
+
*
|
|
6
|
+
* Patent: USPTO App. No. 19/433,835
|
|
7
|
+
* Copyright (c) 2026 Attested Intelligence Holdings LLC
|
|
8
|
+
* SPDX-License-Identifier: MIT
|
|
9
|
+
*/
|
|
10
|
+
import { EventEmitter } from 'node:events';
|
|
11
|
+
export interface StdioBridgeOptions {
|
|
12
|
+
command: string;
|
|
13
|
+
args?: string[];
|
|
14
|
+
env?: Record<string, string>;
|
|
15
|
+
cwd?: string;
|
|
16
|
+
}
|
|
17
|
+
/**
|
|
18
|
+
* Bridges JSON-RPC messages to/from a child process via stdio.
|
|
19
|
+
* Handles newline-delimited JSON framing.
|
|
20
|
+
*/
|
|
21
|
+
export declare class StdioBridge extends EventEmitter {
|
|
22
|
+
private options;
|
|
23
|
+
private child;
|
|
24
|
+
private buffer;
|
|
25
|
+
private pendingRequests;
|
|
26
|
+
constructor(options: StdioBridgeOptions);
|
|
27
|
+
start(): Promise<void>;
|
|
28
|
+
private processBuffer;
|
|
29
|
+
private handleMessage;
|
|
30
|
+
/**
|
|
31
|
+
* Send a JSON-RPC request to the downstream server and wait for a response.
|
|
32
|
+
*/
|
|
33
|
+
send(message: Record<string, unknown>, timeoutMs?: number): Promise<Record<string, unknown>>;
|
|
34
|
+
/**
|
|
35
|
+
* Send a raw message without waiting for a response.
|
|
36
|
+
*/
|
|
37
|
+
sendRaw(message: Record<string, unknown>): void;
|
|
38
|
+
stop(): Promise<void>;
|
|
39
|
+
get running(): boolean;
|
|
40
|
+
private rejectAllPending;
|
|
41
|
+
}
|
|
42
|
+
//# sourceMappingURL=stdio-bridge.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"stdio-bridge.d.ts","sourceRoot":"","sources":["../../src/proxy/stdio-bridge.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7B,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED;;;GAGG;AACH,qBAAa,WAAY,SAAQ,YAAY;IAS/B,OAAO,CAAC,OAAO;IAR3B,OAAO,CAAC,KAAK,CAA6B;IAC1C,OAAO,CAAC,MAAM,CAAM;IACpB,OAAO,CAAC,eAAe,CAIlB;gBAEe,OAAO,EAAE,kBAAkB;IAIzC,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IA+B5B,OAAO,CAAC,aAAa;IAkBrB,OAAO,CAAC,aAAa;IAiBrB;;OAEG;IACG,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,SAAS,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAwBlG;;OAEG;IACH,OAAO,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI;IAOzC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAmB3B,IAAI,OAAO,IAAI,OAAO,CAErB;IAED,OAAO,CAAC,gBAAgB;CAOzB"}
|