@dotsetlabs/tollgate 0.1.0

package/dist/cli/commands/logs.d.ts

@@ -0,0 +1,11 @@
+/**
+ * Tollgate Logs Command
+ *
+ * Displays recent audit logs.
+ */
+export interface LogsOptions {
+    limit: string;
+    auditPath?: string;
+}
+export declare function showLogs(options: LogsOptions): void;
+//# sourceMappingURL=logs.d.ts.map

package/dist/cli/commands/logs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logs.d.ts","sourceRoot":"","sources":["../../../src/cli/commands/logs.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AASH,MAAM,WAAW,WAAW;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,wBAAgB,QAAQ,CAAC,OAAO,EAAE,WAAW,GAAG,IAAI,CA0CnD"}

package/dist/cli/commands/logs.js

@@ -0,0 +1,60 @@
+/**
+ * Tollgate Logs Command
+ *
+ * Displays recent audit logs.
+ */
+import chalk from 'chalk';
+import { AuditLogger, ConfigError, TollgateError, } from '../../index.js';
+export function showLogs(options) {
+    try {
+        const logger = new AuditLogger(options.auditPath);
+        const records = logger.getRecentCalls(parseInt(options.limit, 10));
+        if (records.length === 0) {
+            console.log(chalk.dim('No audit records found.'));
+            logger.close();
+            return;
+        }
+        console.log(chalk.bold('\nRecent Tool Calls:\n'));
+        for (const record of records) {
+            const statusColor = record.policyDecision === 'allow'
+                ? chalk.green
+                : record.policyDecision === 'deny'
+                    ? chalk.red
+                    : chalk.yellow;
+            const resultIcon = record.result === 'success'
+                ? chalk.green('✓')
+                : record.result === 'error'
+                    ? chalk.red('✗')
+                    : chalk.dim('?');
+            console.log(`${resultIcon} ${chalk.dim(record.timestamp.toISOString())} ` +
+                `${chalk.cyan(record.server)}:${chalk.white(record.tool)} ` +
+                `[${statusColor(record.policyDecision)}]` +
+                (record.userDecision ? ` → ${record.userDecision}` : '') +
+                (record.durationMs ? ` ${chalk.dim(`(${record.durationMs}ms)`)}` : ''));
+        }
+        console.log('');
+        logger.close();
+    }
+    catch (error) {
+        handleError(error);
+    }
+}
+function handleError(error) {
+    if (error instanceof ConfigError) {
+        console.error(chalk.red(`Configuration Error: ${error.message}`));
+        if (error.details) {
+            console.error(chalk.dim(JSON.stringify(error.details, null, 2)));
+        }
+    }
+    else if (error instanceof TollgateError) {
+        console.error(chalk.red(`Error [${error.code}]: ${error.message}`));
+    }
+    else if (error instanceof Error) {
+        console.error(chalk.red(`Error: ${error.message}`));
+    }
+    else {
+        console.error(chalk.red('An unknown error occurred'));
+    }
+    process.exit(1);
+}
+//# sourceMappingURL=logs.js.map

package/dist/cli/commands/logs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logs.js","sourceRoot":"","sources":["../../../src/cli/commands/logs.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EACH,WAAW,EACX,WAAW,EACX,aAAa,GAChB,MAAM,gBAAgB,CAAC;AAOxB,MAAM,UAAU,QAAQ,CAAC,OAAoB;IACzC,IAAI,CAAC;QACD,MAAM,MAAM,GAAG,IAAI,WAAW,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAClD,MAAM,OAAO,GAAG,MAAM,CAAC,cAAc,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC;QAEnE,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC,CAAC;YAClD,MAAM,CAAC,KAAK,EAAE,CAAC;YACf,OAAO;QACX,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC;QAElD,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;YAC3B,MAAM,WAAW,GACb,MAAM,CAAC,cAAc,KAAK,OAAO;gBAC7B,CAAC,CAAC,KAAK,CAAC,KAAK;gBACb,CAAC,CAAC,MAAM,CAAC,cAAc,KAAK,MAAM;oBAC9B,CAAC,CAAC,KAAK,CAAC,GAAG;oBACX,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC;YAE3B,MAAM,UAAU,GACZ,MAAM,CAAC,MAAM,KAAK,SAAS;gBACvB,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC;gBAClB,CAAC,CAAC,MAAM,CAAC,MAAM,KAAK,OAAO;oBACvB,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC;oBAChB,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAE7B,OAAO,CAAC,GAAG,CACP,GAAG,UAAU,IAAI,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,GAAG;gBAC7D,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG;gBAC3D,IAAI,WAAW,CAAC,MAAM,CAAC,cAAc,CAAC,GAAG;gBACzC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,MAAM,MAAM,CAAC,YAAY,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBACxD,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,UAAU,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CACzE,CAAC;QACN,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChB,MAAM,CAAC,KAAK,EAAE,CAAC;IACnB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,WAAW,CAAC,KAAK,CAAC,CAAC;IACvB,CAAC;AACL,CAAC;AAED,SAAS,WAAW,CAAC,KAAc;IAC/B,IAAI,KAAK,YAAY,WAAW,EAAE,CAAC;QAC/B,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,wBAAwB,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;QAClE,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;YAChB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;QACrE,CAAC;IACL,CAAC;SAAM,IAAI,KAAK,YAAY,aAAa,EAAE,CAAC;QACxC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,KAAK,CAAC,IAAI,MAAM,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;IACxE,CAAC;SAAM,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;QAChC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;IACxD,CAAC;SAAM,CAAC;QACJ,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC,CAAC;IAC1D,CAAC;IACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AACpB,CAAC"}

package/dist/cli/commands/scan.d.ts

@@ -0,0 +1,29 @@
+/**
+ * Tollgate Scan Command
+ *
+ * Scans an MCP server to discover tools and assess security risks.
+ * Generates recommended security policies based on discovered tools.
+ *
+ * Usage:
+ *   tollgate scan @modelcontextprotocol/server-postgres
+ *   tollgate scan npx -y @anthropic/mcp-server-fetch
+ *   tollgate scan --generate-config >> tollgate.yaml
+ */
+export interface ScanOptions {
+    /** Path to existing config to append to */
+    output?: string;
+    /** Generate config output */
+    generateConfig?: boolean;
+    /** Append to existing config instead of creating new */
+    append?: boolean;
+    /** Server name for generated config */
+    serverName?: string;
+    /** Connection timeout in milliseconds */
+    timeout?: number;
+    /** Output as JSON */
+    json?: boolean;
+    /** Environment variables to pass (key=value format) */
+    env?: string[];
+}
+export declare function runScan(packageOrCommand: string, restArgs: string[], options: ScanOptions): Promise<void>;
+//# sourceMappingURL=scan.d.ts.map

package/dist/cli/commands/scan.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../../../src/cli/commands/scan.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAiBH,MAAM,WAAW,WAAW;IACxB,2CAA2C;IAC3C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,6BAA6B;IAC7B,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,wDAAwD;IACxD,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,uCAAuC;IACvC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,yCAAyC;IACzC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,qBAAqB;IACrB,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,uDAAuD;IACvD,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC;CAClB;AA8JD,wBAAsB,OAAO,CACzB,gBAAgB,EAAE,MAAM,EACxB,QAAQ,EAAE,MAAM,EAAE,EAClB,OAAO,EAAE,WAAW,GACrB,OAAO,CAAC,IAAI,CAAC,CA6Ff"}

package/dist/cli/commands/scan.js

@@ -0,0 +1,251 @@
+/**
+ * Tollgate Scan Command
+ *
+ * Scans an MCP server to discover tools and assess security risks.
+ * Generates recommended security policies based on discovered tools.
+ *
+ * Usage:
+ *   tollgate scan @modelcontextprotocol/server-postgres
+ *   tollgate scan npx -y @anthropic/mcp-server-fetch
+ *   tollgate scan --generate-config >> tollgate.yaml
+ */
+import chalk from 'chalk';
+import { writeFileSync, appendFileSync, existsSync } from 'node:fs';
+import { scanServer, generatePolicy, generateServerConfig, } from '../../scanner.js';
+// ============================================================================
+// Formatting Helpers
+// ============================================================================
+function getRiskIcon(risk) {
+    switch (risk) {
+        case 'safe':
+            return chalk.green('🟢');
+        case 'read':
+            return chalk.green('🟢');
+        case 'write':
+            return chalk.yellow('🟡');
+        case 'destructive':
+            return chalk.red('🔴');
+        case 'dangerous':
+            return chalk.red('🔴');
+    }
+}
+function getRiskColor(risk) {
+    switch (risk) {
+        case 'safe':
+        case 'read':
+            return chalk.green;
+        case 'write':
+            return chalk.yellow;
+        case 'destructive':
+        case 'dangerous':
+            return chalk.red;
+    }
+}
+function formatToolLine(tool, maxNameLen) {
+    const icon = getRiskIcon(tool.risk);
+    const name = tool.name.padEnd(maxNameLen);
+    const desc = tool.description.length > 50
+        ? tool.description.slice(0, 47) + '...'
+        : tool.description;
+    return `   ${icon} ${chalk.bold(name)}  ${chalk.dim(desc)}`;
+}
+function printBoxTop(width) {
+    console.log(chalk.cyan('╔' + '═'.repeat(width) + '╗'));
+}
+function printBoxMiddle(width) {
+    console.log(chalk.cyan('╠' + '═'.repeat(width) + '╣'));
+}
+function printBoxBottom(width) {
+    console.log(chalk.cyan('╚' + '═'.repeat(width) + '╝'));
+}
+function printBoxLine(content, width) {
+    // eslint-disable-next-line no-control-regex
+    const stripped = content.replace(/\x1b\[[0-9;]*m/g, '');
+    const padding = width - stripped.length;
+    console.log(chalk.cyan('║') + content + ' '.repeat(Math.max(0, padding)) + chalk.cyan('║'));
+}
+// ============================================================================
+// Output Formatters
+// ============================================================================
+function printScanResult(result) {
+    const boxWidth = 60;
+    const serverDisplay = `${result.serverCommand} ${result.serverArgs.join(' ')}`;
+    const shortServer = serverDisplay.length > 40
+        ? '...' + serverDisplay.slice(-37)
+        : serverDisplay;
+    console.log();
+    printBoxTop(boxWidth);
+    // Header
+    printBoxLine(` ${chalk.bold('MCP Server Security Scan')}: ${shortServer}`.padEnd(boxWidth + 20), boxWidth);
+    printBoxMiddle(boxWidth);
+    // Tools found
+    printBoxLine(` ${chalk.bold('Tools Found')}: ${result.toolCount}`, boxWidth);
+    printBoxLine('', boxWidth);
+    // List tools
+    const maxNameLen = Math.max(...result.tools.map((t) => t.name.length), 10);
+    for (const tool of result.tools) {
+        const line = formatToolLine(tool, maxNameLen);
+        printBoxLine(line, boxWidth);
+    }
+    printBoxMiddle(boxWidth);
+    // Risk Assessment
+    printBoxLine(` ${chalk.bold('Risk Assessment')}:`, boxWidth);
+    printBoxLine('', boxWidth);
+    for (const tool of result.tools) {
+        if (tool.risk !== 'safe' && tool.risk !== 'read') {
+            const riskColor = getRiskColor(tool.risk);
+            const icon = getRiskIcon(tool.risk);
+            const mainIndicator = tool.indicators[0]?.description ?? `${tool.risk} operation`;
+            printBoxLine(`   ${icon} ${chalk.bold(tool.name)}: ${riskColor(mainIndicator)}`, boxWidth);
+        }
+    }
+    // Show safe/read tools summary
+    const safeCount = result.summary.safe + result.summary.read;
+    if (safeCount > 0) {
+        printBoxLine(`   ${chalk.green('🟢')} ${safeCount} tool(s) are read-only (safe)`, boxWidth);
+    }
+    printBoxMiddle(boxWidth);
+    // Recommended Policy Summary
+    printBoxLine(` ${chalk.bold('Recommended Policy')}:`, boxWidth);
+    printBoxLine('', boxWidth);
+    const byAction = {
+        allow: result.tools.filter((t) => t.recommendedAction === 'allow').length,
+        smart: result.tools.filter((t) => t.recommendedAction === 'smart').length,
+        prompt: result.tools.filter((t) => t.recommendedAction === 'prompt').length,
+        deny: result.tools.filter((t) => t.recommendedAction === 'deny').length,
+    };
+    if (byAction.allow > 0) {
+        printBoxLine(`   ${chalk.green('allow')}:  ${byAction.allow} tool(s) (read-only)`, boxWidth);
+    }
+    if (byAction.smart > 0) {
+        printBoxLine(`   ${chalk.blue('smart')}:  ${byAction.smart} tool(s) (with analyzer)`, boxWidth);
+    }
+    if (byAction.prompt > 0) {
+        printBoxLine(`   ${chalk.yellow('prompt')}: ${byAction.prompt} tool(s) (require approval)`, boxWidth);
+    }
+    if (byAction.deny > 0) {
+        printBoxLine(`   ${chalk.red('deny')}:   ${byAction.deny} tool(s) (blocked)`, boxWidth);
+    }
+    printBoxBottom(boxWidth);
+    console.log();
+    // Overall assessment
+    const overallColor = getRiskColor(result.overallRisk);
+    console.log(chalk.bold('Overall Risk: ') + overallColor(result.overallRisk.toUpperCase()));
+    console.log();
+    console.log(chalk.dim('Generate recommended config with: tollgate scan --generate-config'));
+}
+function printJsonResult(result) {
+    console.log(JSON.stringify(result, null, 2));
+}
+// ============================================================================
+// Main Scan Command
+// ============================================================================
+export async function runScan(packageOrCommand, restArgs, options) {
+    // Parse command and args
+    let command;
+    let args;
+    // Check if it's an npx package reference (starts with @)
+    if (packageOrCommand.startsWith('@') || packageOrCommand.includes('/')) {
+        command = 'npx';
+        args = ['-y', packageOrCommand, ...restArgs];
+    }
+    else if (packageOrCommand === 'npx' || packageOrCommand === 'node') {
+        command = packageOrCommand;
+        args = restArgs;
+    }
+    else {
+        // Assume it's a direct command
+        command = packageOrCommand;
+        args = restArgs;
+    }
+    // Parse environment variables
+    const env = {};
+    if (options.env) {
+        for (const envVar of options.env) {
+            const [key, ...valueParts] = envVar.split('=');
+            if (key && valueParts.length > 0) {
+                env[key] = valueParts.join('=');
+            }
+        }
+    }
+    if (!options.json) {
+        console.log(chalk.bold('\n🔍 Scanning MCP Server...\n'));
+        console.log(chalk.dim(`Command: ${command} ${args.join(' ')}`));
+        if (Object.keys(env).length > 0) {
+            console.log(chalk.dim(`Environment: ${Object.keys(env).join(', ')}`));
+        }
+        console.log();
+    }
+    try {
+        // Run the scan
+        const result = await scanServer(command, args, {
+            timeoutMs: options.timeout ?? 30000,
+            env: Object.keys(env).length > 0 ? env : undefined,
+        });
+        // Handle output format
+        if (options.json) {
+            printJsonResult(result);
+            return;
+        }
+        // Print scan results
+        printScanResult(result);
+        // Generate config if requested
+        if (options.generateConfig) {
+            const serverName = options.serverName ?? inferServerName(command, args);
+            if (options.output) {
+                const configContent = options.append
+                    ? generateServerConfig(result, serverName)
+                    : generatePolicy(result, serverName);
+                if (options.append && existsSync(options.output)) {
+                    appendFileSync(options.output, '\n' + configContent);
+                    console.log(chalk.green(`✓ Appended to ${options.output}`));
+                }
+                else {
+                    writeFileSync(options.output, configContent);
+                    console.log(chalk.green(`✓ Created ${options.output}`));
+                }
+            }
+            else {
+                // Output to stdout
+                console.log(chalk.bold('\n📄 Generated Configuration:\n'));
+                console.log(generatePolicy(result, serverName));
+            }
+        }
+    }
+    catch (error) {
+        if (!options.json) {
+            console.error(chalk.red('\n✗ Scan failed'));
+            console.error(chalk.dim(error instanceof Error ? error.message : String(error)));
+            console.error();
+            console.error(chalk.yellow('Tips:'));
+            console.error('  • Ensure the MCP server package is accessible');
+            console.error('  • Check that required environment variables are set');
+            console.error('  • Try increasing timeout with --timeout <ms>');
+        }
+        else {
+            console.log(JSON.stringify({
+                error: error instanceof Error ? error.message : String(error),
+                success: false,
+            }));
+        }
+        process.exit(1);
+    }
+}
+/**
+ * Infer a server name from the command and args.
+ */
+function inferServerName(command, args) {
+    // If npx package, use the package name
+    if (command === 'npx' && args.length >= 2) {
+        const pkg = args.find((a) => a.startsWith('@') || a.includes('/'));
+        if (pkg) {
+            // Extract last part of package name
+            const parts = pkg.split('/');
+            const lastPart = parts[parts.length - 1];
+            return lastPart.replace(/^(mcp-)?server-/, '').replace(/@.*$/, '');
+        }
+    }
+    // Default
+    return 'scanned-server';
+}
+//# sourceMappingURL=scan.js.map

package/dist/cli/commands/scan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan.js","sourceRoot":"","sources":["../../../src/cli/commands/scan.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACpE,OAAO,EACH,UAAU,EACV,cAAc,EACd,oBAAoB,GAIvB,MAAM,kBAAkB,CAAC;AAuB1B,+EAA+E;AAC/E,qBAAqB;AACrB,+EAA+E;AAE/E,SAAS,WAAW,CAAC,IAAmB;IACpC,QAAQ,IAAI,EAAE,CAAC;QACX,KAAK,MAAM;YACP,OAAO,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7B,KAAK,MAAM;YACP,OAAO,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7B,KAAK,OAAO;YACR,OAAO,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAC9B,KAAK,aAAa;YACd,OAAO,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC3B,KAAK,WAAW;YACZ,OAAO,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC/B,CAAC;AACL,CAAC;AAED,SAAS,YAAY,CAAC,IAAmB;IACrC,QAAQ,IAAI,EAAE,CAAC;QACX,KAAK,MAAM,CAAC;QACZ,KAAK,MAAM;YACP,OAAO,KAAK,CAAC,KAAK,CAAC;QACvB,KAAK,OAAO;YACR,OAAO,KAAK,CAAC,MAAM,CAAC;QACxB,KAAK,aAAa,CAAC;QACnB,KAAK,WAAW;YACZ,OAAO,KAAK,CAAC,GAAG,CAAC;IACzB,CAAC;AACL,CAAC;AAED,SAAS,cAAc,CAAC,IAAkB,EAAE,UAAkB;IAC1D,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACpC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAC1C,MAAM,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC,MAAM,GAAG,EAAE;QACrC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK;QACvC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC;IAEvB,OAAO,MAAM,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;AAChE,CAAC;AAED,SAAS,WAAW,CAAC,KAAa;IAC9B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACjC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACjC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED,SAAS,YAAY,CAAC,OAAe,EAAE,KAAa;IAChD,4CAA4C;IAC5C,MAAM,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC;IACxD,MAAM,OAAO,GAAG,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC;IACxC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAChG,CAAC;AAED,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E,SAAS,eAAe,CAAC,MAAkB;IACvC,MAAM,QAAQ,GAAG,EAAE,CAAC;IACpB,MAAM,aAAa,GAAG,GAAG,MAAM,CAAC,aAAa,IAAI,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;IAC/E,MAAM,WAAW,GAAG,aAAa,CAAC,MAAM,GAAG,EAAE;QACzC,CAAC,CAAC,KAAK,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC;QAClC,CAAC,CAAC,aAAa,CAAC;IAEpB,OAAO,CAAC,GAAG,EAAE,CAAC;IACd,WAAW,CAAC,QAAQ,CAAC,CAAC;IAEtB,SAAS;IACT,YAAY,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,KAAK,WAAW,EAAE,CAAC,MAAM,CAAC,QAAQ,GAAG,EAAE,CAAC,EAAE,QAAQ,CAAC,CAAC;IAE3G,cAAc,CAAC,QAAQ,CAAC,CAAC;IAEzB,cAAc;IACd,YAAY,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,KAAK,MAAM,CAAC,SAAS,EAAE,EAAE,QAAQ,CAAC,CAAC;IAC7E,YAAY,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;IAE3B,aAAa;IACb,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC,CAAC;IAC3E,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QAC9B,MAAM,IAAI,GAAG,cAAc,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAC9C,YAAY,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IACjC,CAAC;IAED,cAAc,CAAC,QAAQ,CAAC,CAAC;IAEzB,kBAAkB;IAClB,YAAY,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAC7D,YAAY,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;IAE3B,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QAC9B,IAAI,IAAI,CAAC,IAAI,KAAK,MAAM,IAAI,IAAI,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;YAC/C,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1C,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpC,MAAM,aAAa,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,WAAW,IAAI,GAAG,IAAI,CAAC,IAAI,YAAY,CAAC;YAClF,YAAY,CAAC,MAAM,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,SAAS,CAAC,aAAa,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;QAC/F,CAAC;IACL,CAAC;IAED,+BAA+B;IAC/B,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC;IAC5D,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;QAChB,YAAY,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,SAAS,+BAA+B,EAAE,QAAQ,CAAC,CAAC;IAChG,CAAC;IAED,cAAc,CAAC,QAAQ,CAAC,CAAC;IAEzB,6BAA6B;IAC7B,YAAY,CAAC,IAAI,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAChE,YAAY,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;IAE3B,MAAM,QAAQ,GAAG;QACb,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,iBAAiB,KAAK,OAAO,CAAC,CAAC,MAAM;QACzE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,iBAAiB,KAAK,OAAO,CAAC,CAAC,MAAM;QACzE,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,iBAAiB,KAAK,QAAQ,CAAC,CAAC,MAAM;QAC3E,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,iBAAiB,KAAK,MAAM,CAAC,CAAC,MAAM;KAC1E,CAAC;IAEF,IAAI,QAAQ,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC;QACrB,YAAY,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,QAAQ,CAAC,KAAK,sBAAsB,EAAE,QAAQ,CAAC,CAAC;IACjG,CAAC;IACD,IAAI,QAAQ,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC;QACrB,YAAY,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,QAAQ,CAAC,KAAK,0BAA0B,EAAE,QAAQ,CAAC,CAAC;IACpG,CAAC;IACD,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtB,YAAY,CAAC,MAAM,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,KAAK,QAAQ,CAAC,MAAM,6BAA6B,EAAE,QAAQ,CAAC,CAAC;IAC1G,CAAC;IACD,IAAI,QAAQ,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QACpB,YAAY,CAAC,MAAM,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,OAAO,QAAQ,CAAC,IAAI,oBAAoB,EAAE,QAAQ,CAAC,CAAC;IAC5F,CAAC;IAED,cAAc,CAAC,QAAQ,CAAC,CAAC;IACzB,OAAO,CAAC,GAAG,EAAE,CAAC;IAEd,qBAAqB;IACrB,MAAM,YAAY,GAAG,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IACtD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IAC3F,OAAO,CAAC,GAAG,EAAE,CAAC;IACd,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,mEAAmE,CAAC,CAAC,CAAC;AAChG,CAAC;AAED,SAAS,eAAe,CAAC,MAAkB;IACvC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;AACjD,CAAC;AAED,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E,MAAM,CAAC,KAAK,UAAU,OAAO,CACzB,gBAAwB,EACxB,QAAkB,EAClB,OAAoB;IAEpB,yBAAyB;IACzB,IAAI,OAAe,CAAC;IACpB,IAAI,IAAc,CAAC;IAEnB,yDAAyD;IACzD,IAAI,gBAAgB,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QACrE,OAAO,GAAG,KAAK,CAAC;QAChB,IAAI,GAAG,CAAC,IAAI,EAAE,gBAAgB,EAAE,GAAG,QAAQ,CAAC,CAAC;IACjD,CAAC;SAAM,IAAI,gBAAgB,KAAK,KAAK,IAAI,gBAAgB,KAAK,MAAM,EAAE,CAAC;QACnE,OAAO,GAAG,gBAAgB,CAAC;QAC3B,IAAI,GAAG,QAAQ,CAAC;IACpB,CAAC;SAAM,CAAC;QACJ,+BAA+B;QAC/B,OAAO,GAAG,gBAAgB,CAAC;QAC3B,IAAI,GAAG,QAAQ,CAAC;IACpB,CAAC;IAED,8BAA8B;IAC9B,MAAM,GAAG,GAA2B,EAAE,CAAC;IACvC,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QACd,KAAK,MAAM,MAAM,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;YAC/B,MAAM,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC/C,IAAI,GAAG,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC/B,GAAG,CAAC,GAAG,CAAC,GAAG,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACpC,CAAC;QACL,CAAC;IACL,CAAC;IAED,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAChB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC,CAAC;QACzD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,YAAY,OAAO,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;QAChE,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,gBAAgB,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;QAC1E,CAAC;QACD,OAAO,CAAC,GAAG,EAAE,CAAC;IAClB,CAAC;IAED,IAAI,CAAC;QACD,eAAe;QACf,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,OAAO,EAAE,IAAI,EAAE;YAC3C,SAAS,EAAE,OAAO,CAAC,OAAO,IAAI,KAAK;YACnC,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS;SACrD,CAAC,CAAC;QAEH,uBAAuB;QACvB,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACf,eAAe,CAAC,MAAM,CAAC,CAAC;YACxB,OAAO;QACX,CAAC;QAED,qBAAqB;QACrB,eAAe,CAAC,MAAM,CAAC,CAAC;QAExB,+BAA+B;QAC/B,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;YACzB,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,eAAe,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;YAExE,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;gBACjB,MAAM,aAAa,GAAG,OAAO,CAAC,MAAM;oBAChC,CAAC,CAAC,oBAAoB,CAAC,MAAM,EAAE,UAAU,CAAC;oBAC1C,CAAC,CAAC,cAAc,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;gBAEzC,IAAI,OAAO,CAAC,MAAM,IAAI,UAAU,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC/C,cAAc,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,GAAG,aAAa,CAAC,CAAC;oBACrD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,iBAAiB,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;gBAChE,CAAC;qBAAM,CAAC;oBACJ,aAAa,CAAC,OAAO,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;oBAC7C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,aAAa,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;gBAC5D,CAAC;YACL,CAAC;iBAAM,CAAC;gBACJ,mBAAmB;gBACnB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC,CAAC;gBAC3D,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC;YACpD,CAAC;QACL,CAAC;IACL,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YAChB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,CAAC;YAC5C,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YACjF,OAAO,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;YACrC,OAAO,CAAC,KAAK,CAAC,iDAAiD,CAAC,CAAC;YACjE,OAAO,CAAC,KAAK,CAAC,uDAAuD,CAAC,CAAC;YACvE,OAAO,CAAC,KAAK,CAAC,gDAAgD,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACJ,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC;gBACvB,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;gBAC7D,OAAO,EAAE,KAAK;aACjB,CAAC,CAAC,CAAC;QACR,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACpB,CAAC;AACL,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,OAAe,EAAE,IAAc;IACpD,uCAAuC;IACvC,IAAI,OAAO,KAAK,KAAK,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;QACnE,IAAI,GAAG,EAAE,CAAC;YACN,oCAAoC;YACpC,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC7B,MAAM,QAAQ,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YACzC,OAAO,QAAQ,CAAC,OAAO,CAAC,iBAAiB,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QACvE,CAAC;IACL,CAAC;IAED,UAAU;IACV,OAAO,gBAAgB,CAAC;AAC5B,CAAC"}

package/dist/cli/commands/serve.d.ts

@@ -0,0 +1,26 @@
+/**
+ * Tollgate Serve Command
+ *
+ * Starts the Tollgate orchestrator to manage multiple MCP servers.
+ * Provides an interactive CLI for controlling servers.
+ */
+import { type FailureMode } from '../../index.js';
+export interface ServeOptions {
+    config?: string;
+    auditPath?: string;
+    timeout: string;
+    approval?: 'terminal' | 'interactive';
+    approvalPort?: string;
+    persistSessions?: boolean;
+    sessionPath?: string;
+    dryRun?: boolean;
+    failureMode?: FailureMode;
+    all?: boolean;
+    servers?: string[];
+    interactive?: boolean;
+}
+/**
+ * Start the multi-server orchestrator.
+ */
+export declare function serve(options: ServeOptions): Promise<void>;
+//# sourceMappingURL=serve.d.ts.map

package/dist/cli/commands/serve.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"serve.d.ts","sourceRoot":"","sources":["../../../src/cli/commands/serve.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,EAKL,KAAK,WAAW,EAIjB,MAAM,gBAAgB,CAAC;AAKxB,MAAM,WAAW,YAAY;IAC3B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,UAAU,GAAG,aAAa,CAAC;IACtC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAgVD;;GAEG;AACH,wBAAsB,KAAK,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC,CAgGhE"}