npm - @jacobmolz/mcpguard - Versions diffs - 0.1.0 → 0.2.1 - Mend

@jacobmolz/mcpguard 0.1.0 → 0.2.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (2) hide show

package/README.md +17 -18
package/package.json +4 -2

package/README.md CHANGED Viewed

@@ -27,7 +27,7 @@ MCP-Guard sits between your MCP client (Cursor, Claude Desktop, Claude Code, VS
 ## Quick Start
 ```bash
-npm install -g mcp-guard
+npm install -g @jacobmolz/mcpguard
 ```
 ### Option A: Auto-discover existing configs
@@ -91,32 +91,31 @@ Config merge uses **floor-based semantics**: personal configs can restrict but n
 ## Benchmark Results
-The benchmark suite tests against 4,500+ attack scenarios across 10 categories and 10,000+ legitimate requests.
+The benchmark suite tests 7,095 attack scenarios across 10 categories and 10,168 legitimate requests.
 | Metric | Result | Target | Status |
 |--------|--------|--------|--------|
-| Detection rate | 92.5% | >95% | In progress |
+| Detection rate | 97.0% | >95% | Pass |
 | False positive rate | 0.000% | <0.1% | Pass |
-| p50 latency overhead | 0.19ms | <5ms | Pass |
-| p99 latency overhead | 1.22ms | — | — |
-| Throughput | 7,042 req/s | — | — |
+| Audit integrity | Pass | No raw PII in logs | Pass |
+| p50 latency overhead | 0.17ms | <5ms | Pass |
 ### Per-Category Detection
 | Category | Rate | Status |
 |----------|------|--------|
-| Permission bypass | 100% | Pass |
-| PII response leak | 100% | Pass |
-| Sampling injection | 100% | Pass |
-| Config override | 100% | Pass |
-| Capability probe | 96% | Pass |
-| Resource traversal | 94% | In progress |
-| Rate limit evasion | 92% | In progress |
-| PII request leak | 84% | In progress |
-| PII evasion | 82% | In progress |
-| Auth bypass | 80% | In progress |
-> Results from quick-mode stratified sample (1,004 scenarios). Full suite numbers may differ. Run `pnpm benchmark` for full results or see [latest report](benchmarks/results/REPORT.md) for charts.
+| PII response leak | 100.0% | Pass |
+| Auth bypass | 100.0% | Pass |
+| Sampling injection | 100.0% | Pass |
+| Config override | 100.0% | Pass |
+| Permission bypass | 98.9% | Pass |
+| Capability probe | 97.4% | Pass |
+| Resource traversal | 95.4% | Pass |
+| PII evasion | 94.7% | Pass |
+| PII request leak | 93.8% | Pass |
+| Rate limit evasion | 92.4% | Pass |
+> Full-suite results from `pnpm benchmark`. Quick mode (`pnpm benchmark:quick`) uses stratified sampling and typically reports ~89-93% detection. See [latest report](benchmarks/results/REPORT.md) for charts.
 ## CLI Reference

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@jacobmolz/mcpguard",
-  "version": "0.1.0",
+  "version": "0.2.1",
   "description": "Security proxy daemon for MCP servers — adds auth, rate limiting, PII detection, and audit logging",
   "author": "Jacob Molz",
   "license": "MIT",
@@ -48,7 +48,7 @@
     "benchmark:security": "tsx benchmarks/runner.ts --suite security",
     "benchmark:legitimate": "tsx benchmarks/runner.ts --suite legitimate",
     "benchmark:performance": "tsx benchmarks/runner.ts --suite performance",
-    "prepublishOnly": "pnpm lint && pnpm typecheck && pnpm test && pnpm build"
+    "prepublishOnly": "pnpm build"
   },
   "dependencies": {
     "@modelcontextprotocol/sdk": "^1.12.1",
@@ -64,8 +64,10 @@
     "@types/better-sqlite3": "^7.6.13",
     "@types/js-yaml": "^4.0.9",
     "@types/node": "^22.15.2",
+    "conventional-changelog-conventionalcommits": "^9.3.1",
     "eslint": "^9.25.0",
     "prettier": "^3.5.3",
+    "semantic-release": "^25.0.3",
     "tsup": "^8.4.0",
     "tsx": "^4.19.4",
     "typescript": "^5.8.3",