@goplus/agentguard 1.0.10 → 1.0.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/package.json +1 -1
- package/skills/agentguard/SKILL.md +31 -1
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@goplus/agentguard",
|
|
3
|
-
"version": "1.0.
|
|
3
|
+
"version": "1.0.11",
|
|
4
4
|
"description": "GoPlus AgentGuard — Security guard for AI agents. Blocks dangerous commands, prevents data leaks, protects secrets. 20 detection rules, runtime action evaluation, trust registry.",
|
|
5
5
|
"main": "dist/index.js",
|
|
6
6
|
"types": "dist/index.d.ts",
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
---
|
|
2
2
|
name: agentguard
|
|
3
|
-
description: GoPlus AgentGuard — AI agent security guard.
|
|
3
|
+
description: GoPlus AgentGuard — AI agent security guard. Run /agentguard checkup for a full security health check: scans all installed skills, checks credentials, permissions, and network exposure, then delivers an HTML report directly to you. Also use for scanning third-party code, blocking dangerous commands, preventing data leaks, evaluating action safety, and running daily security patrols.
|
|
4
4
|
license: MIT
|
|
5
5
|
compatibility: Requires Node.js 18+. Optional GoPlus API credentials for enhanced Web3 simulation.
|
|
6
6
|
metadata:
|
|
@@ -752,6 +752,36 @@ After the report generates, output a brief summary in the terminal:
|
|
|
752
752
|
💡 Top recommendation: <first recommendation text>
|
|
753
753
|
```
|
|
754
754
|
|
|
755
|
+
### Step 6: Deliver the Report to the User
|
|
756
|
+
|
|
757
|
+
After printing the terminal summary, deliver the HTML report file to the user. Detect the current channel and use the most appropriate method:
|
|
758
|
+
|
|
759
|
+
**Detection logic** — infer from context clues:
|
|
760
|
+
- If the `Write` tool is available and you can write to `~/Desktop` or `~/Downloads` → you are in **Claude Code (local)**
|
|
761
|
+
- If you can produce artifact/file outputs (rich UI, download button) → you are in **Claude.ai web**
|
|
762
|
+
- If neither is clearly available → you are in **API / headless mode**
|
|
763
|
+
|
|
764
|
+
**Delivery by channel:**
|
|
765
|
+
|
|
766
|
+
1. **Claude Code (local desktop)**
|
|
767
|
+
- Use the `Write` tool to copy the HTML to `~/Desktop/agentguard-checkup-<YYYY-MM-DD>.html`
|
|
768
|
+
- Tell the user: "✅ Report saved to your Desktop: `agentguard-checkup-<date>.html` — double-click to open it in your browser."
|
|
769
|
+
- The browser should already be open from Step 4. If not, run `open ~/Desktop/agentguard-checkup-<date>.html` (macOS) or `xdg-open` (Linux).
|
|
770
|
+
|
|
771
|
+
2. **Claude.ai web**
|
|
772
|
+
- Read the generated HTML file using the `Read` tool, then output the full HTML content as a **code artifact** (language: `html`) so the user can preview it inline or download it.
|
|
773
|
+
- Tell the user: "✅ Your report is attached above — click the download icon to save it."
|
|
774
|
+
|
|
775
|
+
3. **API / headless / MCP**
|
|
776
|
+
- Read the generated HTML file and return the full content inline, prefixed with:
|
|
777
|
+
`<!-- AgentGuard Checkup Report | Score: <n>/100 | <date> -->`
|
|
778
|
+
- Also print the file path so the caller can retrieve it from disk.
|
|
779
|
+
|
|
780
|
+
Regardless of channel, always end with:
|
|
781
|
+
```
|
|
782
|
+
🦞 Stay safe — run /agentguard checkup anytime to get a fresh report.
|
|
783
|
+
```
|
|
784
|
+
|
|
755
785
|
Append a summary entry to `~/.agentguard/audit.jsonl`:
|
|
756
786
|
```json
|
|
757
787
|
{"timestamp":"...","event":"checkup","composite_score":<n>,"tier":"<grade>","checks":6,"findings":<count>,"skills_scanned":<count>}
|