@drakon-systems/shieldcortex-realtime 4.25.2 → 4.25.4

package/dist/openclaw.plugin.json

@@ -1,6 +1,6 @@
 {
   "id": "shieldcortex-realtime",
-  "version": "4.25.2",
+  "version": "4.25.4",
   "name": "ShieldCortex Real-time Scanner",
   "description": "Real-time defence scanning on LLM input, memory extraction on LLM output, and active tool call interception with approval gating.",
   "kind": null,

package/openclaw.plugin.json

@@ -1,6 +1,6 @@
 {
   "id": "shieldcortex-realtime",
-  "version": "4.25.2",
+  "version": "4.25.4",
   "name": "ShieldCortex Real-time Scanner",
   "description": "Real-time defence scanning on LLM input, memory extraction on LLM output, and active tool call interception with approval gating.",
   "kind": null,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@drakon-systems/shieldcortex-realtime",
-  "version": "4.25.2",
+  "version": "4.25.4",
   "description": "OpenClaw plugin for ShieldCortex real-time defence scanning and optional memory extraction.",
   "type": "module",
   "main": "./dist/index.js",
@@ -20,14 +20,11 @@
     "intercept-ingest.ts",
     "cloud-sync.ts",
     "openclaw.plugin.json",
-    "README.md",
-    "llm_input/",
-    "llm_output/",
-    "before_tool_call/",
-    "session_end/"
+    "README.md"
   ],
   "scripts": {
-    "pack:verify": "npm pack --dry-run"
+    "pack:verify": "npm pack --dry-run",
+    "prepublishOnly": "node -e \"if(!require('fs').existsSync('dist/index.js'))throw new Error('plugin dist/index.js missing — run `npm run build:ts` from the repo root before publishing')\""
   },
   "peerDependencies": {
     "shieldcortex": ">=4.18.3 <5.0.0",
@@ -48,12 +45,6 @@
   "openclaw": {
     "extensions": [
       "./dist/index.js"
-    ],
-    "hooks": [
-      "llm_input",
-      "llm_output",
-      "before_tool_call",
-      "session_end"
     ]
   },
   "repository": {

package/before_tool_call/HOOK.md

@@ -1,20 +0,0 @@
----
-name: before_tool_call
-description: Active threat gating on tool calls
----
-
-# before_tool_call
-
-Active threat gating for tool calls. The interceptor inspects each tool call's
-arguments against the ShieldCortex defence pipeline and either allows, warns,
-or blocks based on severity action policy. Block decisions throw a
-`ShieldCortex: …` error which propagates to the caller; non-block errors are
-logged and the tool call is allowed through (interceptor must never wedge a
-session).
-
-The handler is registered at runtime by the plugin's main entry point
-(`./dist/index.js` via `openclaw.extensions` in `package.json`), which calls
-`api.registerHook("before_tool_call", ...)` during plugin init. This directory
-and its `handler.js` exist to satisfy OpenClaw 2026.5.5+'s install-time
-hook-pack validation; the file in this directory is not what gets invoked at
-runtime.

package/before_tool_call/handler.js

@@ -1,6 +0,0 @@
-// Stub for OpenClaw 2026.5.5+ install-time hook-pack validation.
-// The real before_tool_call handler is registered at runtime via the plugin
-// entry (./dist/index.js, see openclaw.extensions in ../package.json) which
-// calls api.registerHook("before_tool_call", ...) during plugin init. This
-// file exists purely so validateHookDir's existence check passes.
-export default function beforeToolCallStub() {}

package/llm_input/HOOK.md

@@ -1,17 +0,0 @@
----
-name: llm_input
-description: Real-time threat scanning on LLM input
----
-
-# llm_input
-
-Scans inbound LLM prompts (user message + recent history) for prompt-injection
-patterns, credential leaks, and other threats. Findings are logged to
-`~/.shieldcortex/audit/realtime-<date>.jsonl` and forwarded to ShieldCortex
-Cloud when configured.
-
-The handler is registered at runtime by the plugin's main entry point
-(`./dist/index.js` via `openclaw.extensions` in `package.json`), which calls
-`api.registerHook("llm_input", ...)` during plugin init. This directory and
-its `handler.js` exist to satisfy OpenClaw 2026.5.5+'s install-time hook-pack
-validation; the file in this directory is not what gets invoked at runtime.

package/llm_input/handler.js

@@ -1,6 +0,0 @@
-// Stub for OpenClaw 2026.5.5+ install-time hook-pack validation.
-// The real llm_input handler is registered at runtime via the plugin entry
-// (./dist/index.js, see openclaw.extensions in ../package.json) which calls
-// api.registerHook("llm_input", ...) during plugin init. This file exists
-// purely so validateHookDir's existence check passes.
-export default function llmInputStub() {}

package/llm_output/HOOK.md

@@ -1,17 +0,0 @@
----
-name: llm_output
-description: Memory extraction from LLM output
----
-
-# llm_output
-
-Inspects assistant text from LLM output for high-signal patterns (decisions,
-fixes, learnings, preferences) and writes them to ShieldCortex memory via the
-`remember` MCP tool. Includes a Jaccard-similarity novelty gate to suppress
-near-duplicate memories.
-
-The handler is registered at runtime by the plugin's main entry point
-(`./dist/index.js` via `openclaw.extensions` in `package.json`), which calls
-`api.registerHook("llm_output", ...)` during plugin init. This directory and
-its `handler.js` exist to satisfy OpenClaw 2026.5.5+'s install-time hook-pack
-validation; the file in this directory is not what gets invoked at runtime.

package/llm_output/handler.js

@@ -1,6 +0,0 @@
-// Stub for OpenClaw 2026.5.5+ install-time hook-pack validation.
-// The real llm_output handler is registered at runtime via the plugin entry
-// (./dist/index.js, see openclaw.extensions in ../package.json) which calls
-// api.registerHook("llm_output", ...) during plugin init. This file exists
-// purely so validateHookDir's existence check passes.
-export default function llmOutputStub() {}

package/session_end/HOOK.md

@@ -1,27 +0,0 @@
----
-name: session_end
-description: Clear interceptor deny cache on session end
----
-
-# session_end
-
-Resets the interceptor's per-session deny cache when a session ends, so
-short-lived blocks don't carry over to a new agent session. Best-effort —
-older OpenClaw runtimes that don't expose a session_end hook fall back to
-the interceptor's TTL safety net.
-
-The handler is registered at runtime by the plugin's main entry point
-(`./dist/index.js` via `openclaw.extensions` in `package.json`), which calls
-`api.registerHook("session_end", ...)` during plugin init. This directory and
-its `handler.js` exist to satisfy OpenClaw 2026.5.5+'s install-time hook-pack
-validation; the file in this directory is not what gets invoked at runtime.
-
-## Defence audit guarantees
-
-The auto-extract path (`scripts/session-end-hook.mjs`) routes every
-captured candidate through the full defence pipeline before insert. ALLOW
-rows produce a `defence_audit` row with `source_type = 'hook'` and land
-in `memories`. QUARANTINE rows go to the `quarantine` table for review.
-BLOCK rows are dropped with an audit trail. Pipeline failures are also
-audited so no capture is silently lost. See
-`hooks/openclaw/cortex-memory/HOOK.md` for the full guarantees.

package/session_end/handler.js

@@ -1,6 +0,0 @@
-// Stub for OpenClaw 2026.5.5+ install-time hook-pack validation.
-// The real session_end handler is registered at runtime via the plugin entry
-// (./dist/index.js, see openclaw.extensions in ../package.json) which calls
-// api.registerHook("session_end", ...) during plugin init. This file exists
-// purely so validateHookDir's existence check passes.
-export default function sessionEndStub() {}