@node9/proxy 1.0.0 → 1.0.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +28 -4
- package/dist/cli.js +391 -350
- package/dist/cli.mjs +391 -350
- package/dist/index.js +284 -188
- package/dist/index.mjs +284 -188
- package/package.json +30 -1
package/README.md
CHANGED
|
@@ -11,6 +11,23 @@ While others try to _guess_ if a prompt is malicious (Semantic Security), Node9
|
|
|
11
11
|
|
|
12
12
|
---
|
|
13
13
|
|
|
14
|
+
## 💎 The "Aha!" Moment
|
|
15
|
+
|
|
16
|
+
**AIs are literal.** When you ask an agent to "Fix my disk space," it might decide to run `docker system prune -af`.
|
|
17
|
+
|
|
18
|
+
<p align="center">
|
|
19
|
+
<img src="https://github.com/user-attachments/assets/c3a8f3ae-f0aa-4c57-869a-5e1e2e356d35" width="100%">
|
|
20
|
+
</p>
|
|
21
|
+
|
|
22
|
+
**With Node9, the interaction looks like this:**
|
|
23
|
+
|
|
24
|
+
1. **🤖 AI attempts a "Nuke":** `Bash("docker system prune -af --volumes")`
|
|
25
|
+
2. **🛡️ Node9 Intercepts:** An OS-native popup appears immediately.
|
|
26
|
+
3. **🛑 User Blocks:** You click "Block" in the popup.
|
|
27
|
+
4. **🧠 AI Negotiates:** Node9 explains the block to the AI. The AI responds: _"I understand. I will pivot to a safer cleanup, like removing only large log files instead."_
|
|
28
|
+
|
|
29
|
+
---
|
|
30
|
+
|
|
14
31
|
## ⚡ Key Architectural Upgrades
|
|
15
32
|
|
|
16
33
|
### 🏁 The Multi-Channel Race Engine
|
|
@@ -26,6 +43,14 @@ Node9 initiates a **Concurrent Race** across all enabled channels. The first cha
|
|
|
26
43
|
|
|
27
44
|
Node9 doesn't just "cut the wire." When a command is blocked, it injects a **Structured Negotiation Prompt** back into the AI’s context window. This teaches the AI why it was stopped and instructs it to pivot to a safer alternative or apologize to the human.
|
|
28
45
|
|
|
46
|
+
### ⏪ Shadow Git Snapshots (Auto-Undo)
|
|
47
|
+
|
|
48
|
+
Node9 takes silent, lightweight Git snapshots right before an AI agent is allowed to edit or delete files. If the AI hallucinates and ruins your code, don't waste time manualy fixing it. Just run:
|
|
49
|
+
|
|
50
|
+
```bash
|
|
51
|
+
node9 undo
|
|
52
|
+
```
|
|
53
|
+
|
|
29
54
|
### 🌊 The Resolution Waterfall
|
|
30
55
|
|
|
31
56
|
Security posture is resolved using a strict 5-tier waterfall:
|
|
@@ -47,8 +72,8 @@ npm install -g @node9/proxy
|
|
|
47
72
|
node9 addto claude
|
|
48
73
|
node9 addto gemini
|
|
49
74
|
|
|
50
|
-
# 2.
|
|
51
|
-
node9
|
|
75
|
+
# 2. Initialize your local safety net
|
|
76
|
+
node9 init
|
|
52
77
|
|
|
53
78
|
# 3. Check your status
|
|
54
79
|
node9 status
|
|
@@ -121,9 +146,8 @@ A corporate policy has locked this action. You must click the "Approve" button i
|
|
|
121
146
|
- [x] **AI Negotiation Loop** (Instructional feedback loop to guide LLM behavior)
|
|
122
147
|
- [x] **Resolution Waterfall** (Cascading configuration: Env > Cloud > Project > Global)
|
|
123
148
|
- [x] **Native OS Dialogs** (Sub-second approval via Mac/Win/Linux system windows)
|
|
124
|
-
- [x] **
|
|
149
|
+
- [x] **Shadow Git Snapshots** (1-click Undo for AI hallucinations)
|
|
125
150
|
- [x] **Identity-Aware Execution** (Differentiates between Human vs. AI risk levels)
|
|
126
|
-
- [ ] **Shadow Git Snapshots** (1-click Undo for AI hallucinations)
|
|
127
151
|
- [ ] **Execution Sandboxing** (Simulate dangerous commands in a virtual FS before applying)
|
|
128
152
|
- [ ] **Multi-Admin Quorum** (Require 2+ human signatures for high-stakes production actions)
|
|
129
153
|
- [ ] **SOC2 Tamper-proof Audit Trail** (Cryptographically signed, cloud-managed logs)
|