npm - @cdot65/prisma-airs - Versions diffs - 0.1.0 → 0.1.2 - Mend

@cdot65/prisma-airs 0.1.0 → 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md ADDED Viewed

@@ -0,0 +1,187 @@
+# @cdot65/prisma-airs
+OpenClaw plugin for [Prisma AIRS](https://www.paloaltonetworks.com/prisma/ai-runtime-security) (AI Runtime Security) from Palo Alto Networks.
+## Features
+- **Gateway RPC**: `prisma-airs.scan`, `prisma-airs.status`
+- **Agent Tool**: `prisma_airs_scan`
+- **CLI**: `openclaw prisma-airs`, `openclaw prisma-airs-scan`
+- **Bootstrap Hook**: Security reminder on agent startup
+**Detection capabilities:**
+- Prompt injection
+- Data leakage (DLP)
+- Malicious URLs
+- Toxic content
+- Database security
+- Malicious code
+## Installation
+### Install from npm
+```bash
+openclaw plugins install @cdot65/prisma-airs
+```
+### Restart Gateway
+```bash
+# systemd (Linux)
+openclaw gateway restart
+# or manually
+openclaw gateway stop && openclaw gateway start
+```
+### Verify Installation
+```bash
+# Check plugin is loaded
+openclaw plugins list | grep prisma
+# Check status
+openclaw prisma-airs
+```
+## Configuration
+### 1. Set API Key
+Get your API key from [Strata Cloud Manager](https://docs.paloaltonetworks.com/ai-runtime-security).
+**Option A: Environment variable**
+```bash
+export PANW_AI_SEC_API_KEY="your-key"
+```
+**Option B: systemd service (Linux)**
+```bash
+# Create override file
+mkdir -p ~/.config/systemd/user/openclaw-gateway.service.d
+cat > ~/.config/systemd/user/openclaw-gateway.service.d/env.conf << 'EOF'
+[Service]
+Environment=PANW_AI_SEC_API_KEY=your-key-here
+EOF
+# Reload and restart
+systemctl --user daemon-reload
+openclaw gateway restart
+```
+### 2. Plugin Config (optional)
+```bash
+# Via CLI
+openclaw config set plugins.entries.prisma-airs.config.profile_name "my-profile"
+openclaw config set plugins.entries.prisma-airs.config.app_name "my-app"
+```
+Or in `~/.openclaw/openclaw.json`:
+```json
+{
+  "plugins": {
+    "entries": {
+      "prisma-airs": {
+        "config": {
+          "profile_name": "default",
+          "app_name": "openclaw",
+          "reminder_enabled": true
+        }
+      }
+    }
+  }
+}
+```
+## Usage
+### CLI
+```bash
+# Check status
+openclaw prisma-airs
+# Scan text
+openclaw prisma-airs-scan "message to scan"
+openclaw prisma-airs-scan --json "message"
+```
+### Gateway RPC
+```bash
+# Status
+openclaw gateway call prisma-airs.status
+# Scan
+openclaw gateway call prisma-airs.scan --params '{"prompt":"user input"}'
+```
+### Agent Tool
+Agents can use `prisma_airs_scan` directly:
+```json
+{
+  "tool": "prisma_airs_scan",
+  "params": {
+    "prompt": "content to scan",
+    "sessionId": "conversation-123"
+  }
+}
+```
+### TypeScript
+```typescript
+import { scan } from "@cdot65/prisma-airs";
+const result = await scan({
+  prompt: "user message",
+  sessionId: "conv-123",
+});
+if (result.action === "block") {
+  console.log("Blocked:", result.categories);
+}
+```
+## ScanResult
+```typescript
+interface ScanResult {
+  action: "allow" | "warn" | "block";
+  severity: "SAFE" | "LOW" | "MEDIUM" | "HIGH" | "CRITICAL";
+  categories: string[];
+  scanId: string;
+  reportId: string;
+  profileName: string;
+  promptDetected: { injection: boolean; dlp: boolean; urlCats: boolean };
+  responseDetected: { dlp: boolean; urlCats: boolean };
+  sessionId?: string;
+  trId?: string;
+  latencyMs: number;
+  error?: string;
+}
+```
+## Requirements
+- Node.js 18+
+- OpenClaw Gateway
+- Prisma AIRS API key ([Strata Cloud Manager](https://docs.paloaltonetworks.com/ai-runtime-security))
+## Links
+- [GitHub](https://github.com/cdot65/prisma-airs-plugin-openclaw)
+- [Prisma AIRS Docs](https://docs.paloaltonetworks.com/ai-runtime-security)
+- [API Reference](https://pan.dev/prisma-airs/)
+## License
+MIT

package/index.ts CHANGED Viewed

@@ -11,6 +11,8 @@
  */
 import { scan, isConfigured, ScanRequest, ScanResult } from "./src/scanner";
+import { fileURLToPath } from "url";
+import { dirname, join } from "path";
 // Plugin config interface
 interface PrismaAirsConfig {
@@ -62,6 +64,7 @@ interface PluginApi {
     handler: (params: ScanRequest) => Promise<ScanResult>;
   }) => void;
   registerCli: (setup: (ctx: { program: unknown }) => void, opts: { commands: string[] }) => void;
+  registerPluginHooksFromDir?: (dir: string) => void;
 }
 // Get plugin config from OpenClaw config
@@ -90,13 +93,22 @@ export default function register(api: PluginApi): void {
     `Prisma AIRS plugin loaded (reminder_enabled=${config.reminder_enabled ?? true})`
   );
+  // Register hooks from the hooks directory
+  if (api.registerPluginHooksFromDir) {
+    const __filename = fileURLToPath(import.meta.url);
+    const __dirname = dirname(__filename);
+    const hooksDir = join(__dirname, "hooks");
+    api.registerPluginHooksFromDir(hooksDir);
+    api.logger.info(`Registered hooks from ${hooksDir}`);
+  }
   // Register RPC method for status check
   api.registerGatewayMethod("prisma-airs.status", ({ respond }) => {
     const cfg = getPluginConfig(api);
     const hasApiKey = isConfigured();
     respond(true, {
       plugin: "prisma-airs",
-      version: "0.1.0",
+      version: "0.1.2",
       config: {
         profile_name: cfg.profile_name ?? "default",
         app_name: cfg.app_name ?? "openclaw",
@@ -185,7 +197,7 @@ export default function register(api: PluginApi): void {
           const hasKey = isConfigured();
           console.log("Prisma AIRS Plugin Status");
           console.log("-------------------------");
-          console.log(`Version: 0.1.0`);
+          console.log(`Version: 0.1.2`);
           console.log(`Profile: ${cfg.profile_name ?? "default"}`);
           console.log(`App Name: ${cfg.app_name ?? "openclaw"}`);
           console.log(`Reminder: ${cfg.reminder_enabled ?? true}`);
@@ -236,7 +248,7 @@ export default function register(api: PluginApi): void {
 // Export plugin metadata for discovery
 export const id = "prisma-airs";
 export const name = "Prisma AIRS Security";
-export const version = "0.1.0";
+export const version = "0.1.2";
 // Re-export scanner types and functions
 export { scan, isConfigured } from "./src/scanner";

package/openclaw.plugin.json CHANGED Viewed

@@ -2,7 +2,7 @@
   "id": "prisma-airs",
   "name": "Prisma AIRS Security",
   "description": "AI Runtime Security scanning via Palo Alto Networks - TypeScript implementation with Gateway RPC, agent tool, and bootstrap reminder hook",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "hooks": ["hooks/prisma-airs-guard"],
   "configSchema": {
     "type": "object",

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@cdot65/prisma-airs",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "description": "Prisma AIRS (AI Runtime Security) plugin for OpenClaw - TypeScript implementation with Gateway RPC, agent tool, and bootstrap hook",
   "type": "module",
   "main": "index.ts",
@@ -43,6 +43,7 @@
     ]
   },
   "files": [
+    "README.md",
     "index.ts",
     "src/",
     "hooks/",