@frontmcp/guard 1.0.4 → 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (5) hide show
  1. package/esm/index.mjs +1 -1
  2. package/esm/package.json +3 -3
  3. package/index.js +22 -22
  4. package/package.json +3 -3
  5. package/schemas/schemas.d.ts +63 -64
package/esm/index.mjs CHANGED
@@ -46,7 +46,7 @@ var IpNotAllowedError = class extends GuardError {
46
46
  };
47
47
 
48
48
  // libs/guard/src/schemas/schemas.ts
49
- import { z } from "zod";
49
+ import { z } from "@frontmcp/lazy-zod";
50
50
  var partitionKeySchema = z.union([
51
51
  z.enum(["ip", "session", "userId", "global"]),
52
52
  z.custom(
package/esm/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@frontmcp/guard",
3
- "version": "1.0.4",
3
+ "version": "1.1.0",
4
4
  "description": "Rate limiting, concurrency control, timeout, IP filtering, and traffic guard utilities for FrontMCP",
5
5
  "author": "AgentFront <info@agentfront.dev>",
6
6
  "license": "Apache-2.0",
@@ -48,10 +48,10 @@
48
48
  "node": ">=24.0.0"
49
49
  },
50
50
  "dependencies": {
51
- "@frontmcp/utils": "1.0.4"
51
+ "@frontmcp/utils": "1.1.0"
52
52
  },
53
53
  "peerDependencies": {
54
- "zod": "^4.0.0"
54
+ "@frontmcp/lazy-zod": "1.1.0"
55
55
  },
56
56
  "devDependencies": {
57
57
  "@types/node": "^24.0.0",
package/index.js CHANGED
@@ -91,37 +91,37 @@ var IpNotAllowedError = class extends GuardError {
91
91
  };
92
92
 
93
93
  // libs/guard/src/schemas/schemas.ts
94
- var import_zod = require("zod");
95
- var partitionKeySchema = import_zod.z.union([
96
- import_zod.z.enum(["ip", "session", "userId", "global"]),
97
- import_zod.z.custom(
94
+ var import_lazy_zod = require("@frontmcp/lazy-zod");
95
+ var partitionKeySchema = import_lazy_zod.z.union([
96
+ import_lazy_zod.z.enum(["ip", "session", "userId", "global"]),
97
+ import_lazy_zod.z.custom(
98
98
  (val) => typeof val === "function"
99
99
  )
100
100
  ]);
101
- var rateLimitConfigSchema = import_zod.z.object({
102
- maxRequests: import_zod.z.number().int().positive().describe("Maximum number of requests allowed within the window."),
103
- windowMs: import_zod.z.number().int().positive().optional().default(6e4).describe("Time window in milliseconds."),
101
+ var rateLimitConfigSchema = import_lazy_zod.z.object({
102
+ maxRequests: import_lazy_zod.z.number().int().positive().describe("Maximum number of requests allowed within the window."),
103
+ windowMs: import_lazy_zod.z.number().int().positive().optional().default(6e4).describe("Time window in milliseconds."),
104
104
  partitionBy: partitionKeySchema.optional().default("global").describe("Partition key strategy.")
105
105
  });
106
- var concurrencyConfigSchema = import_zod.z.object({
107
- maxConcurrent: import_zod.z.number().int().positive().describe("Maximum number of concurrent executions allowed."),
108
- queueTimeoutMs: import_zod.z.number().int().nonnegative().optional().default(0).describe("Maximum time in ms to wait in queue (0 = no wait)."),
106
+ var concurrencyConfigSchema = import_lazy_zod.z.object({
107
+ maxConcurrent: import_lazy_zod.z.number().int().positive().describe("Maximum number of concurrent executions allowed."),
108
+ queueTimeoutMs: import_lazy_zod.z.number().int().nonnegative().optional().default(0).describe("Maximum time in ms to wait in queue (0 = no wait)."),
109
109
  partitionBy: partitionKeySchema.optional().default("global").describe("Partition key strategy.")
110
110
  });
111
- var timeoutConfigSchema = import_zod.z.object({
112
- executeMs: import_zod.z.number().int().positive().describe("Maximum execution time in milliseconds.")
111
+ var timeoutConfigSchema = import_lazy_zod.z.object({
112
+ executeMs: import_lazy_zod.z.number().int().positive().describe("Maximum execution time in milliseconds.")
113
113
  });
114
- var ipFilterConfigSchema = import_zod.z.object({
115
- allowList: import_zod.z.array(import_zod.z.string()).optional().describe("IP addresses or CIDR ranges to always allow."),
116
- denyList: import_zod.z.array(import_zod.z.string()).optional().describe("IP addresses or CIDR ranges to always block."),
117
- defaultAction: import_zod.z.enum(["allow", "deny"]).optional().default("allow").describe("Default action when IP matches neither list."),
118
- trustProxy: import_zod.z.boolean().optional().default(false).describe("Trust X-Forwarded-For header."),
119
- trustedProxyDepth: import_zod.z.number().int().positive().optional().default(1).describe("Max number of proxies to trust from X-Forwarded-For.")
114
+ var ipFilterConfigSchema = import_lazy_zod.z.object({
115
+ allowList: import_lazy_zod.z.array(import_lazy_zod.z.string()).optional().describe("IP addresses or CIDR ranges to always allow."),
116
+ denyList: import_lazy_zod.z.array(import_lazy_zod.z.string()).optional().describe("IP addresses or CIDR ranges to always block."),
117
+ defaultAction: import_lazy_zod.z.enum(["allow", "deny"]).optional().default("allow").describe("Default action when IP matches neither list."),
118
+ trustProxy: import_lazy_zod.z.boolean().optional().default(false).describe("Trust X-Forwarded-For header."),
119
+ trustedProxyDepth: import_lazy_zod.z.number().int().positive().optional().default(1).describe("Max number of proxies to trust from X-Forwarded-For.")
120
120
  });
121
- var guardConfigSchema = import_zod.z.object({
122
- enabled: import_zod.z.boolean().describe("Whether the guard system is enabled."),
123
- storage: import_zod.z.looseObject({}).optional().describe("Storage backend configuration."),
124
- keyPrefix: import_zod.z.string().optional().default("mcp:guard:").describe("Key prefix for all storage keys."),
121
+ var guardConfigSchema = import_lazy_zod.z.object({
122
+ enabled: import_lazy_zod.z.boolean().describe("Whether the guard system is enabled."),
123
+ storage: import_lazy_zod.z.looseObject({}).optional().describe("Storage backend configuration."),
124
+ keyPrefix: import_lazy_zod.z.string().optional().default("mcp:guard:").describe("Key prefix for all storage keys."),
125
125
  global: rateLimitConfigSchema.optional().describe("Global rate limit applied to all requests."),
126
126
  globalConcurrency: concurrencyConfigSchema.optional().describe("Global concurrency limit."),
127
127
  defaultRateLimit: rateLimitConfigSchema.optional().describe("Default rate limit for entities without explicit config."),
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@frontmcp/guard",
3
- "version": "1.0.4",
3
+ "version": "1.1.0",
4
4
  "description": "Rate limiting, concurrency control, timeout, IP filtering, and traffic guard utilities for FrontMCP",
5
5
  "author": "AgentFront <info@agentfront.dev>",
6
6
  "license": "Apache-2.0",
@@ -48,10 +48,10 @@
48
48
  "node": ">=24.0.0"
49
49
  },
50
50
  "dependencies": {
51
- "@frontmcp/utils": "1.0.4"
51
+ "@frontmcp/utils": "1.1.0"
52
52
  },
53
53
  "peerDependencies": {
54
- "zod": "^4.0.0"
54
+ "@frontmcp/lazy-zod": "1.1.0"
55
55
  },
56
56
  "devDependencies": {
57
57
  "@types/node": "^24.0.0",
package/schemas/schemas.d.ts CHANGED
@@ -1,13 +1,12 @@
1
1
  /**
2
2
  * Zod validation schemas for guard configuration.
3
3
  */
4
- import { z } from 'zod';
5
- export declare const partitionKeySchema: z.ZodUnion<readonly [z.ZodEnum<{
4
+ export declare const partitionKeySchema: import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
6
5
  ip: "ip";
7
6
  session: "session";
8
7
  userId: "userId";
9
8
  global: "global";
10
- }>, z.ZodCustom<(ctx: {
9
+ }>, import("zod").ZodCustom<(ctx: {
11
10
  sessionId: string;
12
11
  clientIp?: string;
13
12
  userId?: string;
@@ -16,15 +15,15 @@ export declare const partitionKeySchema: z.ZodUnion<readonly [z.ZodEnum<{
16
15
  clientIp?: string;
17
16
  userId?: string;
18
17
  }) => string>]>;
19
- export declare const rateLimitConfigSchema: z.ZodObject<{
20
- maxRequests: z.ZodNumber;
21
- windowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
22
- partitionBy: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodEnum<{
18
+ export declare const rateLimitConfigSchema: import("@frontmcp/lazy-zod").ZodObject<{
19
+ maxRequests: import("@frontmcp/lazy-zod").ZodNumber;
20
+ windowMs: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
21
+ partitionBy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
23
22
  ip: "ip";
24
23
  session: "session";
25
24
  userId: "userId";
26
25
  global: "global";
27
- }>, z.ZodCustom<(ctx: {
26
+ }>, import("zod").ZodCustom<(ctx: {
28
27
  sessionId: string;
29
28
  clientIp?: string;
30
29
  userId?: string;
@@ -33,16 +32,16 @@ export declare const rateLimitConfigSchema: z.ZodObject<{
33
32
  clientIp?: string;
34
33
  userId?: string;
35
34
  }) => string>]>>>;
36
- }, z.core.$strip>;
37
- export declare const concurrencyConfigSchema: z.ZodObject<{
38
- maxConcurrent: z.ZodNumber;
39
- queueTimeoutMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
40
- partitionBy: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodEnum<{
35
+ }, import("zod/v4/core").$strip>;
36
+ export declare const concurrencyConfigSchema: import("@frontmcp/lazy-zod").ZodObject<{
37
+ maxConcurrent: import("@frontmcp/lazy-zod").ZodNumber;
38
+ queueTimeoutMs: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
39
+ partitionBy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
41
40
  ip: "ip";
42
41
  session: "session";
43
42
  userId: "userId";
44
43
  global: "global";
45
- }>, z.ZodCustom<(ctx: {
44
+ }>, import("zod").ZodCustom<(ctx: {
46
45
  sessionId: string;
47
46
  clientIp?: string;
48
47
  userId?: string;
@@ -51,33 +50,33 @@ export declare const concurrencyConfigSchema: z.ZodObject<{
51
50
  clientIp?: string;
52
51
  userId?: string;
53
52
  }) => string>]>>>;
54
- }, z.core.$strip>;
55
- export declare const timeoutConfigSchema: z.ZodObject<{
56
- executeMs: z.ZodNumber;
57
- }, z.core.$strip>;
58
- export declare const ipFilterConfigSchema: z.ZodObject<{
59
- allowList: z.ZodOptional<z.ZodArray<z.ZodString>>;
60
- denyList: z.ZodOptional<z.ZodArray<z.ZodString>>;
61
- defaultAction: z.ZodDefault<z.ZodOptional<z.ZodEnum<{
53
+ }, import("zod/v4/core").$strip>;
54
+ export declare const timeoutConfigSchema: import("@frontmcp/lazy-zod").ZodObject<{
55
+ executeMs: import("@frontmcp/lazy-zod").ZodNumber;
56
+ }, import("zod/v4/core").$strip>;
57
+ export declare const ipFilterConfigSchema: import("@frontmcp/lazy-zod").ZodObject<{
58
+ allowList: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodArray<import("@frontmcp/lazy-zod").ZodString>>;
59
+ denyList: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodArray<import("@frontmcp/lazy-zod").ZodString>>;
60
+ defaultAction: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodEnum<{
62
61
  allow: "allow";
63
62
  deny: "deny";
64
63
  }>>>;
65
- trustProxy: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
66
- trustedProxyDepth: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
67
- }, z.core.$strip>;
68
- export declare const guardConfigSchema: z.ZodObject<{
69
- enabled: z.ZodBoolean;
70
- storage: z.ZodOptional<z.ZodObject<{}, z.core.$loose>>;
71
- keyPrefix: z.ZodDefault<z.ZodOptional<z.ZodString>>;
72
- global: z.ZodOptional<z.ZodObject<{
73
- maxRequests: z.ZodNumber;
74
- windowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
75
- partitionBy: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodEnum<{
64
+ trustProxy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodBoolean>>;
65
+ trustedProxyDepth: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
66
+ }, import("zod/v4/core").$strip>;
67
+ export declare const guardConfigSchema: import("@frontmcp/lazy-zod").ZodObject<{
68
+ enabled: import("@frontmcp/lazy-zod").ZodBoolean;
69
+ storage: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{}, import("zod/v4/core").$loose>>;
70
+ keyPrefix: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodString>>;
71
+ global: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{
72
+ maxRequests: import("@frontmcp/lazy-zod").ZodNumber;
73
+ windowMs: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
74
+ partitionBy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
76
75
  ip: "ip";
77
76
  session: "session";
78
77
  userId: "userId";
79
78
  global: "global";
80
- }>, z.ZodCustom<(ctx: {
79
+ }>, import("zod").ZodCustom<(ctx: {
81
80
  sessionId: string;
82
81
  clientIp?: string;
83
82
  userId?: string;
@@ -86,16 +85,16 @@ export declare const guardConfigSchema: z.ZodObject<{
86
85
  clientIp?: string;
87
86
  userId?: string;
88
87
  }) => string>]>>>;
89
- }, z.core.$strip>>;
90
- globalConcurrency: z.ZodOptional<z.ZodObject<{
91
- maxConcurrent: z.ZodNumber;
92
- queueTimeoutMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
93
- partitionBy: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodEnum<{
88
+ }, import("zod/v4/core").$strip>>;
89
+ globalConcurrency: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{
90
+ maxConcurrent: import("@frontmcp/lazy-zod").ZodNumber;
91
+ queueTimeoutMs: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
92
+ partitionBy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
94
93
  ip: "ip";
95
94
  session: "session";
96
95
  userId: "userId";
97
96
  global: "global";
98
- }>, z.ZodCustom<(ctx: {
97
+ }>, import("zod").ZodCustom<(ctx: {
99
98
  sessionId: string;
100
99
  clientIp?: string;
101
100
  userId?: string;
@@ -104,16 +103,16 @@ export declare const guardConfigSchema: z.ZodObject<{
104
103
  clientIp?: string;
105
104
  userId?: string;
106
105
  }) => string>]>>>;
107
- }, z.core.$strip>>;
108
- defaultRateLimit: z.ZodOptional<z.ZodObject<{
109
- maxRequests: z.ZodNumber;
110
- windowMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
111
- partitionBy: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodEnum<{
106
+ }, import("zod/v4/core").$strip>>;
107
+ defaultRateLimit: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{
108
+ maxRequests: import("@frontmcp/lazy-zod").ZodNumber;
109
+ windowMs: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
110
+ partitionBy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
112
111
  ip: "ip";
113
112
  session: "session";
114
113
  userId: "userId";
115
114
  global: "global";
116
- }>, z.ZodCustom<(ctx: {
115
+ }>, import("zod").ZodCustom<(ctx: {
117
116
  sessionId: string;
118
117
  clientIp?: string;
119
118
  userId?: string;
@@ -122,16 +121,16 @@ export declare const guardConfigSchema: z.ZodObject<{
122
121
  clientIp?: string;
123
122
  userId?: string;
124
123
  }) => string>]>>>;
125
- }, z.core.$strip>>;
126
- defaultConcurrency: z.ZodOptional<z.ZodObject<{
127
- maxConcurrent: z.ZodNumber;
128
- queueTimeoutMs: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
129
- partitionBy: z.ZodDefault<z.ZodOptional<z.ZodUnion<readonly [z.ZodEnum<{
124
+ }, import("zod/v4/core").$strip>>;
125
+ defaultConcurrency: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{
126
+ maxConcurrent: import("@frontmcp/lazy-zod").ZodNumber;
127
+ queueTimeoutMs: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
128
+ partitionBy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodUnion<readonly [import("@frontmcp/lazy-zod").ZodEnum<{
130
129
  ip: "ip";
131
130
  session: "session";
132
131
  userId: "userId";
133
132
  global: "global";
134
- }>, z.ZodCustom<(ctx: {
133
+ }>, import("zod").ZodCustom<(ctx: {
135
134
  sessionId: string;
136
135
  clientIp?: string;
137
136
  userId?: string;
@@ -140,18 +139,18 @@ export declare const guardConfigSchema: z.ZodObject<{
140
139
  clientIp?: string;
141
140
  userId?: string;
142
141
  }) => string>]>>>;
143
- }, z.core.$strip>>;
144
- defaultTimeout: z.ZodOptional<z.ZodObject<{
145
- executeMs: z.ZodNumber;
146
- }, z.core.$strip>>;
147
- ipFilter: z.ZodOptional<z.ZodObject<{
148
- allowList: z.ZodOptional<z.ZodArray<z.ZodString>>;
149
- denyList: z.ZodOptional<z.ZodArray<z.ZodString>>;
150
- defaultAction: z.ZodDefault<z.ZodOptional<z.ZodEnum<{
142
+ }, import("zod/v4/core").$strip>>;
143
+ defaultTimeout: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{
144
+ executeMs: import("@frontmcp/lazy-zod").ZodNumber;
145
+ }, import("zod/v4/core").$strip>>;
146
+ ipFilter: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodObject<{
147
+ allowList: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodArray<import("@frontmcp/lazy-zod").ZodString>>;
148
+ denyList: import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodArray<import("@frontmcp/lazy-zod").ZodString>>;
149
+ defaultAction: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodEnum<{
151
150
  allow: "allow";
152
151
  deny: "deny";
153
152
  }>>>;
154
- trustProxy: z.ZodDefault<z.ZodOptional<z.ZodBoolean>>;
155
- trustedProxyDepth: z.ZodDefault<z.ZodOptional<z.ZodNumber>>;
156
- }, z.core.$strip>>;
157
- }, z.core.$strip>;
153
+ trustProxy: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodBoolean>>;
154
+ trustedProxyDepth: import("@frontmcp/lazy-zod").ZodDefault<import("@frontmcp/lazy-zod").ZodOptional<import("@frontmcp/lazy-zod").ZodNumber>>;
155
+ }, import("zod/v4/core").$strip>>;
156
+ }, import("zod/v4/core").$strip>;