@dotsetlabs/tollgate 0.1.0

package/dist/wizard.js

@@ -0,0 +1,395 @@
+/**
+ * Interactive Init Wizard for Tollgate
+ *
+ * Provides a guided experience for creating tollgate.yaml configuration files.
+ * Uses native readline for terminal interaction.
+ */
+import * as readline from 'node:readline';
+import * as fs from 'node:fs';
+import chalk from 'chalk';
+/**
+ * Well-known MCP server templates.
+ */
+export const SERVER_TEMPLATES = [
+    {
+        name: 'postgres',
+        displayName: 'PostgreSQL',
+        description: 'PostgreSQL database access via SQL queries',
+        command: 'npx',
+        args: ['-y', '@modelcontextprotocol/server-postgres'],
+        envVars: [
+            {
+                key: 'DATABASE_URL',
+                description: 'PostgreSQL connection string',
+                example: 'postgresql://user:pass@localhost/dbname',
+            },
+        ],
+        recommendedPolicies: {
+            read: ['query'],
+            write: ['execute'],
+            destructive: [],
+        },
+        analyzer: 'sql',
+    },
+    {
+        name: 'filesystem',
+        displayName: 'Filesystem',
+        description: 'Local filesystem access (read/write files)',
+        command: 'npx',
+        args: ['-y', '@anthropic/mcp-server-filesystem'],
+        recommendedPolicies: {
+            read: ['read_*', 'list_*', 'get_*'],
+            write: ['write_*', 'create_*', 'move_*'],
+            destructive: ['delete_*'],
+        },
+        analyzer: 'filesystem',
+    },
+    {
+        name: 'github',
+        displayName: 'GitHub',
+        description: 'GitHub repository operations',
+        command: 'npx',
+        args: ['-y', '@modelcontextprotocol/server-github'],
+        envVars: [
+            {
+                key: 'GITHUB_TOKEN',
+                description: 'GitHub personal access token',
+                example: 'ghp_xxxxxxxxxxxx',
+            },
+        ],
+        recommendedPolicies: {
+            read: ['get_*', 'list_*', 'search_*'],
+            write: ['create_*', 'update_*', 'push_*'],
+            destructive: ['delete_*'],
+        },
+    },
+    {
+        name: 'sqlite',
+        displayName: 'SQLite',
+        description: 'SQLite database access',
+        command: 'npx',
+        args: ['-y', '@modelcontextprotocol/server-sqlite'],
+        recommendedPolicies: {
+            read: ['query'],
+            write: ['execute'],
+            destructive: [],
+        },
+        analyzer: 'sql',
+    },
+    {
+        name: 'puppeteer',
+        displayName: 'Puppeteer (Web Browser)',
+        description: 'Web browsing and scraping via headless Chrome',
+        command: 'npx',
+        args: ['-y', '@anthropic/mcp-server-puppeteer'],
+        recommendedPolicies: {
+            read: ['screenshot', 'get_*', 'evaluate'],
+            write: ['navigate', 'click', 'type', 'fill', 'select'],
+            destructive: [],
+        },
+        analyzer: 'http',
+    },
+    {
+        name: 'fetch',
+        displayName: 'Fetch (HTTP Requests)',
+        description: 'Make HTTP requests to external APIs',
+        command: 'npx',
+        args: ['-y', '@anthropic/mcp-server-fetch'],
+        recommendedPolicies: {
+            read: ['get', 'fetch_*'],
+            write: ['post', 'put', 'patch'],
+            destructive: ['delete'],
+        },
+        analyzer: 'http',
+    },
+    {
+        name: 'custom',
+        displayName: 'Custom Server',
+        description: 'Configure a custom MCP server',
+        command: '',
+        args: [],
+        recommendedPolicies: {},
+    },
+];
+export const POLICY_PRESETS = [
+    {
+        name: 'strict',
+        displayName: 'Strict',
+        description: 'Prompt for all operations, deny destructive',
+        readAction: 'prompt',
+        writeAction: 'prompt',
+        destructiveAction: 'deny',
+    },
+    {
+        name: 'balanced',
+        displayName: 'Balanced (Recommended)',
+        description: 'Allow reads, prompt for writes, deny destructive',
+        readAction: 'allow',
+        writeAction: 'prompt',
+        destructiveAction: 'deny',
+    },
+    {
+        name: 'permissive',
+        displayName: 'Permissive',
+        description: 'Allow reads, prompt for writes and destructive',
+        readAction: 'allow',
+        writeAction: 'prompt',
+        destructiveAction: 'prompt',
+    },
+];
+/**
+ * Interactive terminal prompt utilities.
+ */
+class TerminalPrompt {
+    rl;
+    constructor() {
+        let input;
+        let output;
+        try {
+            input = fs.createReadStream('/dev/tty');
+            output = fs.createWriteStream('/dev/tty');
+        }
+        catch {
+            input = process.stdin;
+            output = process.stderr;
+        }
+        this.rl = readline.createInterface({
+            input,
+            output,
+            terminal: true,
+        });
+    }
+    /**
+     * Prompts for text input.
+     */
+    async text(message, defaultValue) {
+        return new Promise((resolve) => {
+            const prompt = defaultValue
+                ? `${message} ${chalk.dim(`(${defaultValue})`)}: `
+                : `${message}: `;
+            console.error(chalk.cyan('?') + ' ' + prompt);
+            this.rl.question('  > ', (answer) => {
+                const value = answer.trim() || defaultValue || '';
+                resolve(value);
+            });
+        });
+    }
+    /**
+     * Prompts for selection from a list.
+     */
+    async select(message, options) {
+        return new Promise((resolve) => {
+            console.error('');
+            console.error(chalk.cyan('?') + ' ' + message);
+            console.error('');
+            options.forEach((opt, i) => {
+                const num = chalk.dim(`${i + 1}.`);
+                const name = chalk.white(opt.displayName);
+                const desc = chalk.dim(`- ${opt.description}`);
+                console.error(`  ${num} ${name} ${desc}`);
+            });
+            console.error('');
+            this.rl.question(`  Enter choice (1-${options.length}): `, (answer) => {
+                const index = parseInt(answer.trim(), 10) - 1;
+                const selected = options[index];
+                const defaultOption = options[0];
+                if (selected !== undefined) {
+                    resolve(selected);
+                }
+                else if (defaultOption !== undefined) {
+                    // Default to first option
+                    console.error(chalk.yellow(`  Invalid choice, using ${defaultOption.displayName}`));
+                    resolve(defaultOption);
+                }
+            });
+        });
+    }
+    /**
+     * Prompts for yes/no confirmation.
+     */
+    async confirm(message, defaultValue = true) {
+        return new Promise((resolve) => {
+            const hint = defaultValue ? 'Y/n' : 'y/N';
+            console.error(chalk.cyan('?') + ' ' + message + ' ' + chalk.dim(`(${hint})`));
+            this.rl.question('  > ', (answer) => {
+                const normalized = answer.trim().toLowerCase();
+                if (normalized === '') {
+                    resolve(defaultValue);
+                }
+                else if (normalized === 'y' || normalized === 'yes') {
+                    resolve(true);
+                }
+                else {
+                    resolve(false);
+                }
+            });
+        });
+    }
+    close() {
+        this.rl.close();
+    }
+}
+/**
+ * Runs the interactive init wizard.
+ */
+export async function runWizard() {
+    const prompt = new TerminalPrompt();
+    const result = {
+        servers: [],
+        globalDefaults: {
+            action: 'prompt',
+            timeout: 60000,
+        },
+    };
+    try {
+        console.error('');
+        console.error(chalk.bold.cyan('━'.repeat(50)));
+        console.error(chalk.bold.cyan('  Welcome to Tollgate!'));
+        console.error(chalk.bold.cyan('━'.repeat(50)));
+        console.error('');
+        console.error(chalk.dim("  Let's configure your MCP server security policies."));
+        console.error('');
+        // Select server template
+        const template = await prompt.select('Which MCP server do you want to protect?', SERVER_TEMPLATES);
+        let serverName = template.name;
+        let command = template.command;
+        let args = [...template.args];
+        // Custom server configuration
+        if (template.name === 'custom') {
+            serverName = await prompt.text('Server name (for your reference)');
+            command = await prompt.text('Command to run the MCP server');
+            const argsStr = await prompt.text('Arguments (space-separated)', '');
+            args = argsStr ? argsStr.split(/\s+/) : [];
+        }
+        // Collect environment variables
+        const envValues = {};
+        if (template.envVars && template.envVars.length > 0) {
+            console.error('');
+            console.error(chalk.dim('  This server requires environment variables:'));
+            console.error('');
+            for (const envVar of template.envVars) {
+                const value = await prompt.text(`${envVar.key} ${chalk.dim(`(${envVar.description})`)}`, `\${${envVar.key}}`);
+                envValues[envVar.key] = value;
+            }
+        }
+        // Filesystem-specific: ask for root path
+        if (template.name === 'filesystem') {
+            console.error('');
+            const rootPath = await prompt.text('Root directory for filesystem access', './');
+            args.push(rootPath);
+        }
+        // Select policy preset
+        console.error('');
+        const policyPreset = await prompt.select('Choose a security policy preset:', POLICY_PRESETS);
+        // Add server to result
+        result.servers.push({
+            name: serverName,
+            template: { ...template, command, args },
+            envValues,
+            policyPreset,
+        });
+        // Ask about additional servers
+        console.error('');
+        const addMore = await prompt.confirm('Would you like to add another server?', false);
+        if (addMore) {
+            console.error(chalk.dim('\n  (For additional servers, edit the generated config file.)'));
+        }
+        // Global defaults
+        console.error('');
+        console.error(chalk.dim('  Setting global defaults...'));
+        console.error('');
+        result.globalDefaults.action = 'prompt';
+        result.globalDefaults.timeout = 60000;
+        console.error('');
+        console.error(chalk.green.bold('✓ Configuration ready!'));
+        console.error('');
+        return result;
+    }
+    finally {
+        prompt.close();
+    }
+}
+/**
+ * Generates YAML configuration from wizard result.
+ */
+export function generateConfig(result) {
+    const lines = [
+        '# Tollgate Configuration',
+        '# Generated by `tollgate init --interactive`',
+        '# https://github.com/dotsetlabs/tollgate',
+        '',
+        'version: "1"',
+        '',
+        '# Default action when no policy matches',
+        'defaults:',
+        `  action: ${result.globalDefaults.action}`,
+        `  timeout: ${result.globalDefaults.timeout}`,
+        '',
+        '# MCP Server configurations',
+        'servers:',
+    ];
+    for (const server of result.servers) {
+        const { name, template, envValues, policyPreset } = server;
+        lines.push(`  # ${template.displayName} server`);
+        lines.push(`  ${name}:`);
+        lines.push(`    command: "${template.command}"`);
+        if (template.args.length > 0) {
+            lines.push(`    args: [${template.args.map((a) => `"${a}"`).join(', ')}]`);
+        }
+        // Environment variables
+        if (Object.keys(envValues).length > 0) {
+            lines.push('    env:');
+            for (const [key, value] of Object.entries(envValues)) {
+                lines.push(`      ${key}: "${value}"`);
+            }
+        }
+        // Tool policies
+        lines.push('    tools:');
+        // Read operations
+        if (template.recommendedPolicies.read && template.recommendedPolicies.read.length > 0) {
+            for (const pattern of template.recommendedPolicies.read) {
+                lines.push(`      # Read operations`);
+                lines.push(`      "${pattern}":`);
+                lines.push(`        action: ${policyPreset.readAction}`);
+                if (template.analyzer && policyPreset.readAction === 'allow') {
+                    // For smart analysis, add analyzer config
+                    lines.push(`        # analyzer: ${template.analyzer}`);
+                }
+            }
+        }
+        // Write operations
+        if (template.recommendedPolicies.write && template.recommendedPolicies.write.length > 0) {
+            lines.push('      # Write operations');
+            for (const pattern of template.recommendedPolicies.write) {
+                lines.push(`      "${pattern}":`);
+                lines.push(`        action: ${policyPreset.writeAction}`);
+                if (template.analyzer) {
+                    lines.push(`        analyzer: ${template.analyzer}`);
+                    lines.push('        risks:');
+                    lines.push('          read: allow');
+                    lines.push('          write: prompt');
+                    lines.push('          destructive: deny');
+                    lines.push('          dangerous: deny');
+                }
+            }
+        }
+        // Destructive operations
+        if (template.recommendedPolicies.destructive && template.recommendedPolicies.destructive.length > 0) {
+            lines.push('      # Destructive operations');
+            for (const pattern of template.recommendedPolicies.destructive) {
+                lines.push(`      "${pattern}":`);
+                lines.push(`        action: ${policyPreset.destructiveAction}`);
+                if (policyPreset.destructiveAction === 'deny') {
+                    lines.push('        reason: "Destructive operations disabled for safety"');
+                }
+            }
+        }
+        // Catch-all
+        lines.push('      # Catch-all for unmatched tools');
+        lines.push('      "*":');
+        lines.push('        action: prompt');
+        lines.push('');
+    }
+    return lines.join('\n');
+}
+//# sourceMappingURL=wizard.js.map

package/dist/wizard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"wizard.js","sourceRoot":"","sources":["../src/wizard.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,QAAQ,MAAM,eAAe,CAAC;AAC1C,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,MAAM,OAAO,CAAC;AAoB1B;;GAEG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAqB;IAChD;QACE,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,YAAY;QACzB,WAAW,EAAE,4CAA4C;QACzD,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,CAAC,IAAI,EAAE,uCAAuC,CAAC;QACrD,OAAO,EAAE;YACP;gBACE,GAAG,EAAE,cAAc;gBACnB,WAAW,EAAE,8BAA8B;gBAC3C,OAAO,EAAE,yCAAyC;aACnD;SACF;QACD,mBAAmB,EAAE;YACnB,IAAI,EAAE,CAAC,OAAO,CAAC;YACf,KAAK,EAAE,CAAC,SAAS,CAAC;YAClB,WAAW,EAAE,EAAE;SAChB;QACD,QAAQ,EAAE,KAAK;KAChB;IACD;QACE,IAAI,EAAE,YAAY;QAClB,WAAW,EAAE,YAAY;QACzB,WAAW,EAAE,4CAA4C;QACzD,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,CAAC,IAAI,EAAE,kCAAkC,CAAC;QAChD,mBAAmB,EAAE;YACnB,IAAI,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,OAAO,CAAC;YACnC,KAAK,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,QAAQ,CAAC;YACxC,WAAW,EAAE,CAAC,UAAU,CAAC;SAC1B;QACD,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,QAAQ;QACrB,WAAW,EAAE,8BAA8B;QAC3C,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,CAAC,IAAI,EAAE,qCAAqC,CAAC;QACnD,OAAO,EAAE;YACP;gBACE,GAAG,EAAE,cAAc;gBACnB,WAAW,EAAE,8BAA8B;gBAC3C,OAAO,EAAE,kBAAkB;aAC5B;SACF;QACD,mBAAmB,EAAE;YACnB,IAAI,EAAE,CAAC,OAAO,EAAE,QAAQ,EAAE,UAAU,CAAC;YACrC,KAAK,EAAE,CAAC,UAAU,EAAE,UAAU,EAAE,QAAQ,CAAC;YACzC,WAAW,EAAE,CAAC,UAAU,CAAC;SAC1B;KACF;IACD;QACE,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,QAAQ;QACrB,WAAW,EAAE,wBAAwB;QACrC,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,CAAC,IAAI,EAAE,qCAAqC,CAAC;QACnD,mBAAmB,EAAE;YACnB,IAAI,EAAE,CAAC,OAAO,CAAC;YACf,KAAK,EAAE,CAAC,SAAS,CAAC;YAClB,WAAW,EAAE,EAAE;SAChB;QACD,QAAQ,EAAE,KAAK;KAChB;IACD;QACE,IAAI,EAAE,WAAW;QACjB,WAAW,EAAE,yBAAyB;QACtC,WAAW,EAAE,+CAA+C;QAC5D,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,CAAC,IAAI,EAAE,iCAAiC,CAAC;QAC/C,mBAAmB,EAAE;YACnB,IAAI,EAAE,CAAC,YAAY,EAAE,OAAO,EAAE,UAAU,CAAC;YACzC,KAAK,EAAE,CAAC,UAAU,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC;YACtD,WAAW,EAAE,EAAE;SAChB;QACD,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,IAAI,EAAE,OAAO;QACb,WAAW,EAAE,uBAAuB;QACpC,WAAW,EAAE,qCAAqC;QAClD,OAAO,EAAE,KAAK;QACd,IAAI,EAAE,CAAC,IAAI,EAAE,6BAA6B,CAAC;QAC3C,mBAAmB,EAAE;YACnB,IAAI,EAAE,CAAC,KAAK,EAAE,SAAS,CAAC;YACxB,KAAK,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,OAAO,CAAC;YAC/B,WAAW,EAAE,CAAC,QAAQ,CAAC;SACxB;QACD,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,eAAe;QAC5B,WAAW,EAAE,+BAA+B;QAC5C,OAAO,EAAE,EAAE;QACX,IAAI,EAAE,EAAE;QACR,mBAAmB,EAAE,EAAE;KACxB;CACF,CAAC;AAcF,MAAM,CAAC,MAAM,cAAc,GAAmB;IAC5C;QACE,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,QAAQ;QACrB,WAAW,EAAE,6CAA6C;QAC1D,UAAU,EAAE,QAAQ;QACpB,WAAW,EAAE,QAAQ;QACrB,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,wBAAwB;QACrC,WAAW,EAAE,kDAAkD;QAC/D,UAAU,EAAE,OAAO;QACnB,WAAW,EAAE,QAAQ;QACrB,iBAAiB,EAAE,MAAM;KAC1B;IACD;QACE,IAAI,EAAE,YAAY;QAClB,WAAW,EAAE,YAAY;QACzB,WAAW,EAAE,gDAAgD;QAC7D,UAAU,EAAE,OAAO;QACnB,WAAW,EAAE,QAAQ;QACrB,iBAAiB,EAAE,QAAQ;KAC5B;CACF,CAAC;AAmBF;;GAEG;AACH,MAAM,cAAc;IACV,EAAE,CAAqB;IAE/B;QACE,IAAI,KAA4B,CAAC;QACjC,IAAI,MAA6B,CAAC;QAElC,IAAI,CAAC;YACH,KAAK,GAAG,EAAE,CAAC,gBAAgB,CAAC,UAAU,CAAC,CAAC;YACxC,MAAM,GAAG,EAAE,CAAC,iBAAiB,CAAC,UAAU,CAAC,CAAC;QAC5C,CAAC;QAAC,MAAM,CAAC;YACP,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;YACtB,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC1B,CAAC;QAED,IAAI,CAAC,EAAE,GAAG,QAAQ,CAAC,eAAe,CAAC;YACjC,KAAK;YACL,MAAM;YACN,QAAQ,EAAE,IAAI;SACf,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CAAC,OAAe,EAAE,YAAqB;QAC/C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,MAAM,MAAM,GAAG,YAAY;gBACzB,CAAC,CAAC,GAAG,OAAO,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,YAAY,GAAG,CAAC,IAAI;gBAClD,CAAC,CAAC,GAAG,OAAO,IAAI,CAAC;YAEnB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,MAAM,CAAC,CAAC;YAC9C,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,MAAM,EAAE,EAAE;gBAClC,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,IAAI,YAAY,IAAI,EAAE,CAAC;gBAClD,OAAO,CAAC,KAAK,CAAC,CAAC;YACjB,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,MAAM,CACV,OAAe,EACf,OAAY;QAEZ,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,OAAO,CAAC,CAAC;YAC/C,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAElB,OAAO,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;gBACzB,MAAM,GAAG,GAAG,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACnC,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;gBAC1C,MAAM,IAAI,GAAG,KAAK,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC/C,OAAO,CAAC,KAAK,CAAC,KAAK,GAAG,IAAI,IAAI,IAAI,IAAI,EAAE,CAAC,CAAC;YAC5C,CAAC,CAAC,CAAC;YAEH,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAClB,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,qBAAqB,OAAO,CAAC,MAAM,KAAK,EAAE,CAAC,MAAM,EAAE,EAAE;gBACpE,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC;gBAC9C,MAAM,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC;gBAChC,MAAM,aAAa,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;gBACjC,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;oBAC3B,OAAO,CAAC,QAAQ,CAAC,CAAC;gBACpB,CAAC;qBAAM,IAAI,aAAa,KAAK,SAAS,EAAE,CAAC;oBACvC,0BAA0B;oBAC1B,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,2BAA2B,aAAa,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;oBACpF,OAAO,CAAC,aAAa,CAAC,CAAC;gBACzB,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,OAAe,EAAE,YAAY,GAAG,IAAI;QAChD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,MAAM,IAAI,GAAG,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC;YAC1C,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,GAAG,OAAO,GAAG,GAAG,GAAG,KAAK,CAAC,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,CAAC,CAAC;YAE9E,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,MAAM,EAAE,EAAE;gBAClC,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;gBAC/C,IAAI,UAAU,KAAK,EAAE,EAAE,CAAC;oBACtB,OAAO,CAAC,YAAY,CAAC,CAAC;gBACxB,CAAC;qBAAM,IAAI,UAAU,KAAK,GAAG,IAAI,UAAU,KAAK,KAAK,EAAE,CAAC;oBACtD,OAAO,CAAC,IAAI,CAAC,CAAC;gBAChB,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,KAAK,CAAC,CAAC;gBACjB,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED,KAAK;QACH,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,CAAC;IAClB,CAAC;CACF;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS;IAC7B,MAAM,MAAM,GAAG,IAAI,cAAc,EAAE,CAAC;IACpC,MAAM,MAAM,GAAiB;QAC3B,OAAO,EAAE,EAAE;QACX,cAAc,EAAE;YACd,MAAM,EAAE,QAAQ;YAChB,OAAO,EAAE,KAAK;SACf;KACF,CAAC;IAEF,IAAI,CAAC;QACH,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC;QACzD,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC,CAAC;QACjF,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAElB,yBAAyB;QACzB,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,MAAM,CAClC,0CAA0C,EAC1C,gBAAgB,CACjB,CAAC;QAEF,IAAI,UAAU,GAAG,QAAQ,CAAC,IAAI,CAAC;QAC/B,IAAI,OAAO,GAAG,QAAQ,CAAC,OAAO,CAAC;QAC/B,IAAI,IAAI,GAAG,CAAC,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC;QAE9B,8BAA8B;QAC9B,IAAI,QAAQ,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC/B,UAAU,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC;YACnE,OAAO,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;YAC7D,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,6BAA6B,EAAE,EAAE,CAAC,CAAC;YACrE,IAAI,GAAG,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7C,CAAC;QAED,gCAAgC;QAChC,MAAM,SAAS,GAA2B,EAAE,CAAC;QAC7C,IAAI,QAAQ,CAAC,OAAO,IAAI,QAAQ,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpD,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,+CAA+C,CAAC,CAAC,CAAC;YAC1E,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAElB,KAAK,MAAM,MAAM,IAAI,QAAQ,CAAC,OAAO,EAAE,CAAC;gBACtC,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,IAAI,CAC7B,GAAG,MAAM,CAAC,GAAG,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,MAAM,CAAC,WAAW,GAAG,CAAC,EAAE,EACvD,MAAM,MAAM,CAAC,GAAG,GAAG,CACpB,CAAC;gBACF,SAAS,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YAChC,CAAC;QACH,CAAC;QAED,yCAAyC;QACzC,IAAI,QAAQ,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YACnC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;YAClB,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,IAAI,CAChC,sCAAsC,EACtC,IAAI,CACL,CAAC;YACF,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACtB,CAAC;QAED,uBAAuB;QACvB,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,MAAM,CACtC,kCAAkC,EAClC,cAAc,CACf,CAAC;QAEF,uBAAuB;QACvB,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC;YAClB,IAAI,EAAE,UAAU;YAChB,QAAQ,EAAE,EAAE,GAAG,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE;YACxC,SAAS;YACT,YAAY;SACb,CAAC,CAAC;QAEH,+BAA+B;QAC/B,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,uCAAuC,EAAE,KAAK,CAAC,CAAC;QAErF,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,+DAA+D,CAAC,CAAC,CAAC;QAC5F,CAAC;QAED,kBAAkB;QAClB,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC,CAAC;QACzD,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAElB,MAAM,CAAC,cAAc,CAAC,MAAM,GAAG,QAAQ,CAAC;QACxC,MAAM,CAAC,cAAc,CAAC,OAAO,GAAG,KAAK,CAAC;QAEtC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC;QAC1D,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAElB,OAAO,MAAM,CAAC;IAChB,CAAC;YAAS,CAAC;QACT,MAAM,CAAC,KAAK,EAAE,CAAC;IACjB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,MAAoB;IACjD,MAAM,KAAK,GAAa;QACtB,0BAA0B;QAC1B,8CAA8C;QAC9C,0CAA0C;QAC1C,EAAE;QACF,cAAc;QACd,EAAE;QACF,yCAAyC;QACzC,WAAW;QACX,aAAa,MAAM,CAAC,cAAc,CAAC,MAAM,EAAE;QAC3C,cAAc,MAAM,CAAC,cAAc,CAAC,OAAO,EAAE;QAC7C,EAAE;QACF,6BAA6B;QAC7B,UAAU;KACX,CAAC;IAEF,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACpC,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,YAAY,EAAE,GAAG,MAAM,CAAC;QAE3D,KAAK,CAAC,IAAI,CAAC,OAAO,QAAQ,CAAC,WAAW,SAAS,CAAC,CAAC;QACjD,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,GAAG,CAAC,CAAC;QACzB,KAAK,CAAC,IAAI,CAAC,iBAAiB,QAAQ,CAAC,OAAO,GAAG,CAAC,CAAC;QAEjD,IAAI,QAAQ,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7B,KAAK,CAAC,IAAI,CAAC,cAAc,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7E,CAAC;QAED,wBAAwB;QACxB,IAAI,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACvB,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;gBACrD,KAAK,CAAC,IAAI,CAAC,SAAS,GAAG,MAAM,KAAK,GAAG,CAAC,CAAC;YACzC,CAAC;QACH,CAAC;QAED,gBAAgB;QAChB,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAEzB,kBAAkB;QAClB,IAAI,QAAQ,CAAC,mBAAmB,CAAC,IAAI,IAAI,QAAQ,CAAC,mBAAmB,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtF,KAAK,MAAM,OAAO,IAAI,QAAQ,CAAC,mBAAmB,CAAC,IAAI,EAAE,CAAC;gBACxD,KAAK,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;gBACtC,KAAK,CAAC,IAAI,CAAC,UAAU,OAAO,IAAI,CAAC,CAAC;gBAClC,KAAK,CAAC,IAAI,CAAC,mBAAmB,YAAY,CAAC,UAAU,EAAE,CAAC,CAAC;gBACzD,IAAI,QAAQ,CAAC,QAAQ,IAAI,YAAY,CAAC,UAAU,KAAK,OAAO,EAAE,CAAC;oBAC7D,0CAA0C;oBAC1C,KAAK,CAAC,IAAI,CAAC,uBAAuB,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;gBACzD,CAAC;YACH,CAAC;QACH,CAAC;QAED,mBAAmB;QACnB,IAAI,QAAQ,CAAC,mBAAmB,CAAC,KAAK,IAAI,QAAQ,CAAC,mBAAmB,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxF,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;YACvC,KAAK,MAAM,OAAO,IAAI,QAAQ,CAAC,mBAAmB,CAAC,KAAK,EAAE,CAAC;gBACzD,KAAK,CAAC,IAAI,CAAC,UAAU,OAAO,IAAI,CAAC,CAAC;gBAClC,KAAK,CAAC,IAAI,CAAC,mBAAmB,YAAY,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC1D,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;oBACtB,KAAK,CAAC,IAAI,CAAC,qBAAqB,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC;oBACrD,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;oBAC7B,KAAK,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;oBACpC,KAAK,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;oBACtC,KAAK,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC;oBAC1C,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC;gBAC1C,CAAC;YACH,CAAC;QACH,CAAC;QAED,yBAAyB;QACzB,IAAI,QAAQ,CAAC,mBAAmB,CAAC,WAAW,IAAI,QAAQ,CAAC,mBAAmB,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpG,KAAK,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC;YAC7C,KAAK,MAAM,OAAO,IAAI,QAAQ,CAAC,mBAAmB,CAAC,WAAW,EAAE,CAAC;gBAC/D,KAAK,CAAC,IAAI,CAAC,UAAU,OAAO,IAAI,CAAC,CAAC;gBAClC,KAAK,CAAC,IAAI,CAAC,mBAAmB,YAAY,CAAC,iBAAiB,EAAE,CAAC,CAAC;gBAChE,IAAI,YAAY,CAAC,iBAAiB,KAAK,MAAM,EAAE,CAAC;oBAC9C,KAAK,CAAC,IAAI,CAAC,8DAA8D,CAAC,CAAC;gBAC7E,CAAC;YACH,CAAC;QACH,CAAC;QAED,YAAY;QACZ,KAAK,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;QACpD,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACzB,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QAErC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/package.json

@@ -0,0 +1,99 @@
+{
+    "name": "@dotsetlabs/tollgate",
+    "version": "0.1.0",
+    "description": "Local-first MCP security proxy with policy-based access control for AI agents",
+    "type": "module",
+    "main": "./dist/index.js",
+    "types": "./dist/index.d.ts",
+    "bin": {
+        "tollgate": "./dist/cli/index.js"
+    },
+    "files": [
+        "dist",
+        "README.md",
+        "LICENSE"
+    ],
+    "exports": {
+        ".": {
+            "import": "./dist/index.js",
+            "types": "./dist/index.d.ts"
+        },
+        "./policy": {
+            "import": "./dist/policy/engine.js",
+            "types": "./dist/policy/engine.d.ts"
+        },
+        "./analyzers": {
+            "import": "./dist/analyzers/index.js",
+            "types": "./dist/analyzers/index.d.ts"
+        },
+        "./session": {
+            "import": "./dist/session/index.js",
+            "types": "./dist/session/index.d.ts"
+        }
+    },
+    "scripts": {
+        "build": "tsc && chmod +x dist/cli/index.js",
+        "dev": "tsc --watch",
+        "test": "vitest run",
+        "test:watch": "vitest",
+        "lint": "eslint src",
+        "clean": "rm -rf dist",
+        "docs": "typedoc",
+        "docs:mintlify": "npx tsx scripts/build-docs.ts",
+        "prepublishOnly": "npm run clean && npm run build && npm test"
+    },
+    "keywords": [
+        "mcp",
+        "model-context-protocol",
+        "ai-security",
+        "agent-security",
+        "access-control",
+        "tollgate",
+        "claude",
+        "llm",
+        "anthropic",
+        "policy-engine"
+    ],
+    "author": "Dotset Labs",
+    "license": "MIT",
+    "repository": {
+        "type": "git",
+        "url": "https://github.com/dotsetlabs/tollgate"
+    },
+    "homepage": "https://github.com/dotsetlabs/tollgate#readme",
+    "bugs": {
+        "url": "https://github.com/dotsetlabs/tollgate/issues"
+    },
+    "engines": {
+        "node": ">=20.0.0"
+    },
+    "dependencies": {
+        "@modelcontextprotocol/sdk": "^1.0.0",
+        "better-sqlite3": "^11.6.0",
+        "chalk": "^5.3.0",
+        "commander": "^12.1.0",
+        "js-yaml": "^4.1.0",
+        "minimatch": "^10.0.1",
+        "node-sql-parser": "^5.3.13",
+        "uuid": "^11.0.3",
+        "ws": "^8.16.0",
+        "yaml": "^2.4.0"
+    },
+    "devDependencies": {
+        "@eslint/js": "^9.0.0",
+        "@types/better-sqlite3": "^7.6.11",
+        "@types/js-yaml": "^4.0.9",
+        "@types/node": "^20.17.0",
+        "@types/uuid": "^10.0.0",
+        "@types/ws": "^8.5.10",
+        "@vitest/coverage-v8": "^2.1.9",
+        "eslint": "^9.0.0",
+        "fast-check": "^4.5.3",
+        "tsx": "^4.19.0",
+        "typedoc": "^0.28.0",
+        "typedoc-plugin-markdown": "^4.4.0",
+        "typescript": "^5.6.3",
+        "typescript-eslint": "^8.0.0",
+        "vitest": "^2.1.0"
+    }
+}