@enactprotocol/shared 1.0.13 → 1.2.0

package/src/index.ts

@@ -22,11 +22,6 @@ export * from './utils/logger';
 export * from './utils/silent-monitor';
 export * from './utils/timeout';
 
-// Security
-export * from './security/security';
-export { verifyTool, shouldExecuteTool, VERIFICATION_POLICIES } from './security/sign';
-export type { VerificationPolicy as SecurityVerificationPolicy } from './security/sign';
-export * from './security/verification-enforcer';
 
 // Services
 export * from './services/McpCoreService';

package/src/lib/enact-direct.ts

@@ -20,7 +20,6 @@ export class EnactDirect {
 			apiUrl?: string;
 			supabaseUrl?: string;
 			authToken?: string;
-			verificationPolicy?: "permissive" | "enterprise" | "paranoid";
 			defaultTimeout?: string;
 		} = {},
 	) {
@@ -33,7 +32,6 @@ export class EnactDirect {
 				"https://xjnhhxwxovjifdxdwzih.supabase.co",
 			executionProvider: "direct",
 			authToken: options.authToken || process.env.ENACT_AUTH_TOKEN,
-			verificationPolicy: options.verificationPolicy || "permissive",
 			defaultTimeout: options.defaultTimeout || "30s",
 		});
 	}
@@ -75,24 +73,6 @@ export class EnactDirect {
 		return this.core.getToolInfo(name, version);
 	}
 
-	/**
-	 * Verify a tool's cryptographic signatures
-	 *
-	 * @param name - Tool name
-	 * @param policy - Verification policy
-	 * @returns Verification result
-	 */
-	async verifyTool(
-		name: string,
-		policy?: "permissive" | "enterprise" | "paranoid",
-	): Promise<{
-		verified: boolean;
-		signatures: any[];
-		policy: string;
-		errors?: string[];
-	}> {
-		return this.core.verifyTool(name, policy);
-	}
 
 	/**
 	 * Execute a tool from raw YAML definition
@@ -173,7 +153,6 @@ export class EnactDirect {
 	async getStatus(): Promise<{
 		executionProvider: string;
 		apiUrl: string;
-		verificationPolicy: string;
 		defaultTimeout: string;
 		authenticated: boolean;
 	}> {

package/src/services/McpCoreService.ts

@@ -62,16 +62,12 @@ export class McpCoreService {
 		inputs: Record<string, any> = {},
 		options?: {
 			timeout?: string;
-			verifyPolicy?: "permissive" | "enterprise" | "paranoid";
-			skipVerification?: boolean;
 			force?: boolean;
 			dryRun?: boolean;
 		},
 	): Promise<ExecutionResult> {
 		const executeOptions: ToolExecuteOptions = {
 			timeout: options?.timeout,
-			verifyPolicy: options?.verifyPolicy,
-			skipVerification: options?.skipVerification,
 			force: options?.force,
 			dryRun: options?.dryRun,
 		};
@@ -87,14 +83,12 @@ export class McpCoreService {
 		inputs: Record<string, any> = {},
 		options?: {
 			timeout?: string;
-			skipVerification?: boolean;
 			force?: boolean;
 			dryRun?: boolean;
 		},
 	): Promise<ExecutionResult> {
 		const executeOptions: ToolExecuteOptions = {
 			timeout: options?.timeout,
-			skipVerification: options?.skipVerification,
 			force: options?.force,
 			dryRun: options?.dryRun,
 		};
@@ -102,20 +96,6 @@ export class McpCoreService {
 		return await this.core.executeRawTool(toolYaml, inputs, executeOptions);
 	}
 
-	/**
-	 * Verify a tool's signature
-	 */
-	async verifyTool(
-		name: string,
-		policy?: string,
-	): Promise<{
-		verified: boolean;
-		signatures: any[];
-		policy: string;
-		errors?: string[];
-	}> {
-		return await this.core.verifyTool(name, policy);
-	}
 
 	/**
 	 * Check if a tool exists

package/src/types.ts

@@ -6,6 +6,7 @@ export interface EnactTool {
 	command: string; // Shell command to execute with version pins
 
 	// RECOMMENDED FIELDS
+	from?: string; // Container image to run the command on (optional, defaults to system shell)
 	timeout?: string; // Go duration format: "30s", "5m", "1h" (default: "30s")
 	tags?: string[]; // Tags for search and categorization
 	license?: string; // SPDX License identifier (e.g., "MIT", "Apache-2.0")
@@ -70,18 +71,15 @@ export interface EnactTool {
 		role?: string; // Optional description of the signer
 	};
 
-	// Multi-signature support (new format)
-	signatures?: Record<
-		string,
-		{
-			algorithm: string; // Hash algorithm: "sha256"
-			type: string; // Signature type: "ecdsa-p256"
-			signer: string; // Signer identifier
-			created: string; // ISO timestamp
-			value: string; // Base64 encoded signature
-			role?: string; // Optional description of the signer (e.g., "author", "maintainer")
-		}
-	>;
+	// Multi-signature support (array format)
+	signatures?: {
+		signer: string; // Signer identifier (UUID or human-readable name)
+		algorithm: string; // Hash algorithm: "sha256"
+		type: string; // Signature type: "ecdsa-p256"
+		value: string; // Base64 encoded signature
+		created: string; // ISO timestamp
+		role?: string; // Optional description of the signer (e.g., "author", "reviewer", "approver")
+	}[];
 
 	// Extensions pattern (x-prefixed fields)
 	[key: string]: any; // Allow x- prefixed extension fields

package/src/utils/config.ts

@@ -23,7 +23,7 @@ export async function ensureConfig(): Promise<void> {
 	}
 
 	if (!existsSync(CONFIG_FILE)) {
-		await writeConfig({ history: [] });
+		await writeFile(CONFIG_FILE, JSON.stringify({ history: [] }, null, 2));
 	}
 }
 

package/src/utils/version.ts

@@ -1,12 +1,33 @@
 // src/utils/version.ts
 import pc from "picocolors";
+import { readFileSync } from "fs";
+import { join, dirname } from "path";
+import { fileURLToPath } from "url";
 
 /**
  * Displays the CLI version with nice formatting
  */
 export function showVersion(): void {
-	// Bun automatically sets npm_package_version when running scripts via package.json
-	const version = process.env.npm_package_version || "0.0.1-dev";
+	let version = "0.0.1-dev";
+	
+	try {
+		// Try to get version from environment first (for npm scripts)
+		if (process.env.npm_package_version) {
+			version = process.env.npm_package_version;
+		} else {
+			// When running as installed binary, read from package.json
+			// Go up from shared/dist/utils/version.js to find package.json
+			const currentFile = typeof __filename !== 'undefined' ? __filename : fileURLToPath(import.meta.url);
+			const sharedDir = dirname(dirname(dirname(currentFile)));
+			const packageJsonPath = join(sharedDir, 'package.json');
+			const packageJson = JSON.parse(readFileSync(packageJsonPath, 'utf8'));
+			version = packageJson.version;
+		}
+	} catch (error) {
+		// Fall back to default version if anything fails
+		version = "1.0.14";
+	}
+	
 	const versionText = `v${version}`;
 
 	console.error(`

package/src/security/index.ts

@@ -1,3 +0,0 @@
-export * from './security';
-export * from './sign';
-export * from './verification-enforcer';

package/src/security/security.ts

@@ -1,188 +0,0 @@
-// src/security/security.ts - Simplified security module for CLI core
-import logger from "../exec/logger";
-import type { EnactTool } from "../types";
-
-/**
- * Verify the signature of an Enact tool before execution
- * @param tool The tool to verify
- * @returns Boolean indicating validity
- */
-
-/**
- * Verify that a command is safe to execute
- * @param command The command to verify
- * @param tool The tool containing the command
- * @returns Object with safety status and warnings
- */
-export function verifyCommandSafety(
-	command: string,
-	tool: EnactTool,
-): {
-	isSafe: boolean;
-	warnings: string[];
-	blocked?: string[];
-} {
-	const warnings: string[] = [];
-	const blocked: string[] = [];
-
-	// Dangerous command patterns that should be blocked
-	const dangerousPatterns = [
-		/rm\s+-rf\s+\//, // rm -rf /
-		/rm\s+-rf\s+\*/, // rm -rf *
-		/>\s*\/dev\/sd[a-z]/, // Writing to disk devices
-		/dd\s+if=.*of=\/dev/, // Direct disk writing
-		/mkfs/, // Format filesystem
-		/fdisk/, // Disk partitioning
-		/passwd/, // Password changes
-		/sudo\s+passwd/, // Password changes with sudo
-		/chmod\s+777/, // Overly permissive permissions
-		/curl.*\|\s*sh/, // Piping curl to shell
-		/wget.*\|\s*sh/, // Piping wget to shell
-		/exec\s+sh/, // Executing shell
-		/\/etc\/passwd/, // Accessing password file
-		/\/etc\/shadow/, // Accessing shadow file
-	];
-
-	// Check for dangerous patterns
-	for (const pattern of dangerousPatterns) {
-		if (pattern.test(command)) {
-			blocked.push(
-				`Potentially dangerous command pattern detected: ${pattern.source}`,
-			);
-		}
-	}
-
-	// Warning patterns that are suspicious but not necessarily blocked
-	const warningPatterns = [
-		/sudo\s+/, // Sudo usage
-		/su\s+/, // User switching
-		/systemctl/, // System service control
-		/service\s+/, // Service control
-		/mount/, // Mounting filesystems
-		/umount/, // Unmounting filesystems
-		/iptables/, // Firewall rules
-		/crontab/, // Cron job management
-	];
-
-	// Check for warning patterns
-	for (const pattern of warningPatterns) {
-		if (pattern.test(command)) {
-			warnings.push(
-				`Potentially privileged operation detected: ${pattern.source}`,
-			);
-		}
-	}
-
-	// Check for version pinning (security best practice)
-	if (command.includes("npx ") && !command.match(/npx\s+[^@#\s]+[@#]/)) {
-		if (!command.includes("github:")) {
-			warnings.push(
-				"NPX package not version-pinned - consider using @version or github:org/repo#commit",
-			);
-		}
-	}
-
-	if (
-		command.includes("uvx ") &&
-		!command.includes("git+") &&
-		!command.includes("@")
-	) {
-		warnings.push(
-			"UVX package not version-pinned - consider using @version or git+ URL",
-		);
-	}
-
-	if (
-		command.includes("docker run") &&
-		!command.match(/:[^@\s]+(@sha256:|:\w)/)
-	) {
-		warnings.push(
-			"Docker image not version-pinned - consider using specific tags or digests",
-		);
-	}
-
-	// Check for network access patterns
-	if (tool.annotations?.openWorldHint !== true) {
-		const networkPatterns = [
-			/curl\s+/, // HTTP requests
-			/wget\s+/, // HTTP requests
-			/http[s]?:\/\//, // HTTP URLs
-			/ftp:\/\//, // FTP URLs
-			/ssh\s+/, // SSH connections
-			/scp\s+/, // SCP transfers
-			/rsync.*::/, // Rsync over network
-		];
-
-		for (const pattern of networkPatterns) {
-			if (pattern.test(command)) {
-				warnings.push(
-					"Network access detected but openWorldHint not set to true",
-				);
-				break;
-			}
-		}
-	}
-
-	// Check for destructive operations
-	if (tool.annotations?.destructiveHint !== true) {
-		const destructivePatterns = [
-			/rm\s+/, // File removal
-			/rmdir\s+/, // Directory removal
-			/mv\s+.*\s+\/dev\//, // Moving to device files
-			/>\s*[^&]/, // File redirection (overwriting)
-			/tee\s+/, // Writing to files
-		];
-
-		for (const pattern of destructivePatterns) {
-			if (pattern.test(command)) {
-				warnings.push(
-					"Potentially destructive operation detected but destructiveHint not set to true",
-				);
-				break;
-			}
-		}
-	}
-
-	return {
-		isSafe: blocked.length === 0,
-		warnings,
-		...(blocked.length > 0 && { blocked }),
-	};
-}
-
-/**
- * Sanitize environment variables to prevent injection attacks
- * @param envVars Environment variables to sanitize
- * @returns Sanitized environment variables
- */
-export function sanitizeEnvironmentVariables(
-	envVars: Record<string, any>,
-): Record<string, string> {
-	const sanitized: Record<string, string> = {};
-
-	for (const [key, value] of Object.entries(envVars)) {
-		// Validate environment variable name
-		if (!/^[A-Za-z_][A-Za-z0-9_]*$/.test(key)) {
-			logger.warn(`Invalid environment variable name: ${key}`);
-			continue;
-		}
-
-		// Convert value to string and sanitize
-		const strValue = String(value);
-
-		// Check for potentially dangerous characters
-		if (strValue.includes("\n") || strValue.includes("\r")) {
-			logger.warn(`Environment variable ${key} contains newline characters`);
-		}
-
-		if (strValue.includes("$(") || strValue.includes("`")) {
-			logger.warn(
-				`Environment variable ${key} contains command substitution patterns`,
-			);
-		}
-
-		sanitized[key] = strValue;
-	}
-
-	return sanitized;
-}