npm - @golproductions/check - Versions diffs - 1.3.2 → 1.3.3 - Mend

@golproductions/check 1.3.2 → 1.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/package.json +1 -1
package/src/index.js +33 -8

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@golproductions/check",
-  "version": "1.3.2",
+  "version": "1.3.3",
   "description": "Pre-execution firewall hook for AI agents. Validates every command before it reaches the shell. 152 failed commands without Check. 1 with it. Supports Claude Code, Gemini CLI, Antigravity, Cursor, and VS Code.",
   "bin": {
     "check": "src/index.js"

package/src/index.js CHANGED Viewed

@@ -6,7 +6,7 @@ import { readFileSync, writeFileSync, mkdirSync, existsSync } from "node:fs";
 import { join } from "node:path";
 import { homedir } from "node:os";
-const VERSION = "1.3.2";
+const VERSION = "1.3.3";
 const API = "https://triage.golproductions.com/preflight";
 const LOG_API = "https://triage.golproductions.com/log";
 const CLIENT_ID = process.env.GOL_CLIENT_ID || "";
@@ -209,22 +209,46 @@ async function main() {
     input = input.replace(/^/, "").trim();
     let parsed;
-    try { parsed = JSON.parse(input); } catch { respond("claude", true); return; }
+    try { parsed = JSON.parse(input); } catch {
+      logEvent({ verdict: "allow", reason: "parse_failed", binary: "", platform, cmd: input.slice(0, 100) });
+      respond("claude", true);
+      return;
+    }
     platform = detectPlatform(parsed);
     const command = extractCommand(parsed, platform);
-    if (!command) { respond(platform, true); return; }
+    if (!command) {
+      logEvent({ verdict: "allow", reason: "no_command", binary: "", platform, cmd: "" });
+      respond(platform, true);
+      return;
+    }
     const trimmed = command.trim();
     const first = trimmed.split(/\s+/)[0];
-    if (SKIP.has(first)) { respond(platform, true); return; }
+    if (SKIP.has(first)) {
+      logEvent({ verdict: "allow", reason: "skip_builtin", binary: first, platform, cmd: trimmed.slice(0, 100) });
+      respond(platform, true);
+      return;
+    }
     const toolName = parsed.tool_name;
     if (toolName === "PowerShell") {
-      if (first.startsWith("$") || first.startsWith("(") || first.startsWith("[") || first.startsWith("@")) { respond(platform, true); return; }
-      if (PS_KEYWORDS.has(first)) { respond(platform, true); return; }
-      if (PS_VERB_PREFIXES.some(p => first.startsWith(p))) { respond(platform, true); return; }
+      if (first.startsWith("$") || first.startsWith("(") || first.startsWith("[") || first.startsWith("@")) {
+        logEvent({ verdict: "allow", reason: "ps_syntax", binary: first.slice(0, 30), platform, cmd: trimmed.slice(0, 100) });
+        respond(platform, true);
+        return;
+      }
+      if (PS_KEYWORDS.has(first)) {
+        logEvent({ verdict: "allow", reason: "ps_keyword", binary: first, platform, cmd: trimmed.slice(0, 100) });
+        respond(platform, true);
+        return;
+      }
+      if (PS_VERB_PREFIXES.some(p => first.startsWith(p))) {
+        logEvent({ verdict: "allow", reason: "ps_cmdlet", binary: first, platform, cmd: trimmed.slice(0, 100) });
+        respond(platform, true);
+        return;
+      }
     }
     if (!CLIENT_ID) {
@@ -269,7 +293,8 @@ async function main() {
       logEvent({ verdict: "deny", reason: "api_rejected", binary: base, platform, cmd: trimmed.slice(0, 100) });
       respond(platform, false, "Check: command is invalid");
     }
-  } catch {
+  } catch (e) {
+    logEvent({ verdict: "allow", reason: "error_fallback", binary: "", platform, cmd: String(e).slice(0, 100) });
     respond(platform, true);
   }
 }