npm - @node9/proxy - Versions diffs - 1.19.2 → 1.19.4 - Mend

@node9/proxy 1.19.2 → 1.19.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/cli.mjs CHANGED Viewed

@@ -1692,7 +1692,11 @@ function extractCanonicalFindings(call, ctx) {
       })
     );
   }
-  if (PRIVILEGE_ESCALATION_RE.test(command)) {
+  const ast = analyzeShellCommand(command);
+  const sudoVariant = ast.actions.includes("sudo") || ast.actions.includes("su");
+  const chmodVariant = ast.actions.includes("chmod") && (ast.allTokens.includes("777") || ast.allTokens.includes("0777") || ast.allTokens.includes("+x"));
+  const chownVariant = ast.actions.includes("chown") && ast.allTokens.includes("root");
+  if (sudoVariant || chmodVariant || chownVariant) {
     out.push(
       makeFinding({
         type: "privilege-escalation",
@@ -1824,7 +1828,7 @@ function* stringValues(obj, depth = 0) {
   }
   for (const v of Object.values(obj)) yield* stringValues(v, depth + 1);
 }
-var ASSIGNMENT_CONTEXT_RE, DLP_STOPWORDS, DLP_PATTERNS, DLP_PATTERNS_GLOBAL, SENSITIVE_PATH_PATTERNS, MAX_DEPTH, MAX_STRING_BYTES, MAX_JSON_PARSE_BYTES, syntax, sharedParser, MESSAGE_FLAGS, SHELL_INTERPRETERS, DOWNLOAD_CMDS, NORMALIZE_CACHE_MAX, normalizeCache, AST_CACHE_MAX, astCache, PARSE_FAIL, FS_READ_TOOLS, FS_OP_PRESCREEN_RE, HOME_CACHE_ALLOWLIST, SENSITIVE_PATH_RULES, BASH_TOOL_NAMES, AST_FS_REGEX_RULES, FS_OP_CACHE_MAX, fsOpCache, SOURCE_COMMANDS, SINK_COMMANDS, OBFUSCATORS, SENSITIVE_PATTERNS, FLAGS_WITH_VALUES, MAX_REGEX_LENGTH, REGEX_CACHE_MAX, regexCache, FORBIDDEN_PATH_SEGMENTS, SQL_DML_KEYWORDS, aws_default, bash_safe_default, docker_default, filesystem_default, github_default, k8s_default, mongodb_default, postgres_default, project_jail_default, redis_default, BUILTIN_SHIELDS, LOOP_MAX_RECORDS, FINDING_TO_SIGNAL, SCAN_SIGNAL_WEIGHTS, LOOP_THRESHOLD_FOR_WASTE, COST_PER_LOOP_ITER_USD, DESTRUCTIVE_OP_RE, PRIVILEGE_ESCALATION_RE, SENSITIVE_PATH_RE, FILE_TOOLS, PII_EMAIL_RE, PII_SSN_RE, PII_PHONE_RE, PII_CC_RE, LONG_OUTPUT_THRESHOLD_BYTES, CANONICAL_EXTRACTOR_VERSION, DEDUPE_PREVIEW_LEN, TERMINAL_ESCAPE_RE;
+var ASSIGNMENT_CONTEXT_RE, DLP_STOPWORDS, DLP_PATTERNS, DLP_PATTERNS_GLOBAL, SENSITIVE_PATH_PATTERNS, MAX_DEPTH, MAX_STRING_BYTES, MAX_JSON_PARSE_BYTES, syntax, sharedParser, MESSAGE_FLAGS, SHELL_INTERPRETERS, DOWNLOAD_CMDS, NORMALIZE_CACHE_MAX, normalizeCache, AST_CACHE_MAX, astCache, PARSE_FAIL, FS_READ_TOOLS, FS_OP_PRESCREEN_RE, HOME_CACHE_ALLOWLIST, SENSITIVE_PATH_RULES, BASH_TOOL_NAMES, AST_FS_REGEX_RULES, FS_OP_CACHE_MAX, fsOpCache, SOURCE_COMMANDS, SINK_COMMANDS, OBFUSCATORS, SENSITIVE_PATTERNS, FLAGS_WITH_VALUES, MAX_REGEX_LENGTH, REGEX_CACHE_MAX, regexCache, FORBIDDEN_PATH_SEGMENTS, SQL_DML_KEYWORDS, aws_default, bash_safe_default, docker_default, filesystem_default, github_default, k8s_default, mongodb_default, postgres_default, project_jail_default, redis_default, BUILTIN_SHIELDS, LOOP_MAX_RECORDS, FINDING_TO_SIGNAL, SCAN_SIGNAL_WEIGHTS, LOOP_THRESHOLD_FOR_WASTE, COST_PER_LOOP_ITER_USD, DESTRUCTIVE_OP_RE, SENSITIVE_PATH_RE, FILE_TOOLS, PII_EMAIL_RE, PII_SSN_RE, PII_PHONE_RE, PII_CC_RE, LONG_OUTPUT_THRESHOLD_BYTES, CANONICAL_EXTRACTOR_VERSION, DEDUPE_PREVIEW_LEN, TERMINAL_ESCAPE_RE;
 var init_dist = __esm({
   "packages/policy-engine/dist/index.mjs"() {
     "use strict";
@@ -3224,7 +3228,6 @@ var init_dist = __esm({
     LOOP_THRESHOLD_FOR_WASTE = 3;
     COST_PER_LOOP_ITER_USD = 6e-3;
     DESTRUCTIVE_OP_RE = /\brm\s+-[rRf]+\b|\bDROP\s+(TABLE|DATABASE|COLLECTION|SCHEMA)\b|\bTRUNCATE\s+TABLE\b|\bgit\s+push\s+(--force|-f)\b|\bFLUSHALL\b|\bFLUSHDB\b|\bkubectl\s+delete\b|\bhelm\s+uninstall\b/i;
-    PRIVILEGE_ESCALATION_RE = /\b(sudo|su)\b\s+[a-z]|\bchmod\s+(0?777|\+x)\b|\bchown\s+root\b/i;
     SENSITIVE_PATH_RE = /\.aws\/(credentials|config)\b|\.ssh\/(id_rsa|id_ed25519|id_ecdsa|id_dsa)\b|\.env(\.|$|\b)|\.config\/gcloud\/credentials\.db\b|\.docker\/config\.json\b|\.netrc\b|\.npmrc\b|\.node9\/credentials\.json\b/i;
     FILE_TOOLS = /* @__PURE__ */ new Set([
       "read",
@@ -3244,7 +3247,7 @@ var init_dist = __esm({
     PII_PHONE_RE = /\b(?:\+?1[-.\s]?)?\(?\d{3}\)?[-.\s]\d{3}[-.\s]\d{4}\b/;
     PII_CC_RE = /\b(?:4\d{3}|5[1-5]\d{2}|3[47]\d{2}|6\d{3})[-\s]?\d{4}[-\s]?\d{4}[-\s]?\d{4}\b/;
     LONG_OUTPUT_THRESHOLD_BYTES = 100 * 1024;
-    CANONICAL_EXTRACTOR_VERSION = "canonical-v1";
+    CANONICAL_EXTRACTOR_VERSION = "canonical-v4";
     DEDUPE_PREVIEW_LEN = 120;
     TERMINAL_ESCAPE_RE = // eslint-disable-next-line no-control-regex
     /\x1b\[[0-9;?]*[A-Za-z]|\x1b\][^\x07\x1b]*(?:\x07|\x1b\\)|\x1b[@-_]|[\x00-\x08\x0b\x0c\x0e-\x1f\x7f]/g;
@@ -4651,7 +4654,6 @@ import fs9 from "fs";
 import net from "net";
 import path9 from "path";
 import os8 from "os";
-import { spawnSync } from "child_process";
 function notifyActivitySocket(data) {
   return new Promise((resolve) => {
     try {
@@ -4721,19 +4723,16 @@ function isDaemonRunning() {
       }
       return false;
     }
-    const r = spawnSync("ss", ["-Htnp", `sport = :${DAEMON_PORT}`], {
-      encoding: "utf8",
-      timeout: 300
-    });
-    if (r.status === 0 && (r.stdout ?? "").includes(`:${DAEMON_PORT}`)) return true;
-    return false;
+    return true;
   }
+  return false;
+}
+async function isDaemonReachable(timeoutMs = 500) {
   try {
-    const r = spawnSync("ss", ["-Htnp", `sport = :${DAEMON_PORT}`], {
-      encoding: "utf8",
-      timeout: 300
+    const res = await fetch(`http://${DAEMON_HOST}:${DAEMON_PORT}/settings`, {
+      signal: AbortSignal.timeout(timeoutMs)
     });
-    return r.status === 0 && (r.stdout ?? "").includes(`:${DAEMON_PORT}`);
+    return res.ok;
   } catch {
     return false;
   }
@@ -4792,7 +4791,7 @@ async function waitForDaemonDecision(id, signal) {
     if (signal) signal.removeEventListener("abort", onAbort);
   }
 }
-async function notifyDaemonViewer(toolName, args, meta, riskMetadata) {
+async function notifyDaemonViewer(toolName, args, meta, riskMetadata, activityId, socketActivitySent) {
   const base = `http://${DAEMON_HOST}:${DAEMON_PORT}`;
   const res = await fetch(`${base}/check`, {
     method: "POST",
@@ -4803,7 +4802,12 @@ async function notifyDaemonViewer(toolName, args, meta, riskMetadata) {
       slackDelegated: true,
       agent: meta?.agent,
       mcpServer: meta?.mcpServer,
-      ...riskMetadata && { riskMetadata }
+      ...riskMetadata && { riskMetadata },
+      // fromCLI=true tells the daemon the CLI already sent the activity
+      // event via socket. Same contract as registerDaemonEntry — without
+      // it the daemon double-emits 'activity' for cloud-enforced flows.
+      fromCLI: socketActivitySent !== false,
+      activityId
     }),
     signal: AbortSignal.timeout(3e3)
   });
@@ -5944,7 +5948,14 @@ async function _authorizeHeadlessCore(toolName, args, meta, options) {
   let daemonAllowCount = 1;
   if (approvers.terminal && isDaemonRunning() && !options?.calledFromDaemon) {
     if (cloudEnforced && cloudRequestId) {
-      const viewer = await notifyDaemonViewer(toolName, args, meta, riskMetadata).catch(() => null);
+      const viewer = await notifyDaemonViewer(
+        toolName,
+        args,
+        meta,
+        riskMetadata,
+        options?.activityId,
+        options?.socketActivitySent
+      ).catch(() => null);
       viewerId = viewer?.id ?? null;
       daemonEntryId = viewerId;
       if (viewer) daemonAllowCount = viewer.allowCount;
@@ -8034,6 +8045,7 @@ __export(scan_watermark_exports, {
   markUploadComplete: () => markUploadComplete,
   saveWatermark: () => saveWatermark,
   scanDelta: () => scanDelta,
+  tickForensicBroadcast: () => tickForensicBroadcast,
   tickScanWatcher: () => tickScanWatcher
 });
 import fs17 from "fs";
@@ -8241,6 +8253,25 @@ function extractFindingsFromLine(line, sessionId, lineIndex) {
   }
   return findings;
 }
+async function tickForensicBroadcast(offsets) {
+  const out = [];
+  const files = listJsonlFiles();
+  for (const file of files) {
+    const size = fileSize(file);
+    const offset = offsets.get(file);
+    if (offset === void 0) {
+      offsets.set(file, size);
+      continue;
+    }
+    if (size <= offset) continue;
+    const sessionId = path19.basename(file, ".jsonl");
+    const newOffset = await scanDelta(file, offset, (obj, lineIndex) => {
+      out.push(...extractFindingsFromLine(obj, sessionId, lineIndex));
+    });
+    offsets.set(file, newOffset);
+  }
+  return out;
+}
 function markUploadComplete() {
   const state = loadWatermark();
   if (state.status === "schema-future") return;
@@ -11010,6 +11041,19 @@ data: ${JSON.stringify(data)}
     }
   });
 }
+function broadcastForensic(finding) {
+  const severity = CRITICAL_FORENSIC_CATEGORIES.has(finding.type) ? "critical" : "warning";
+  const event = {
+    type: "forensic",
+    id: `fnd_${randomUUID3()}`,
+    ts: Date.now(),
+    sessionId: finding.sessionId,
+    category: finding.type,
+    severity
+  };
+  if (finding.patternName !== void 0) event.patternName = finding.patternName;
+  broadcast("forensic", event);
+}
 function abandonPending() {
   setAbandonTimer(null);
   pending.forEach((entry, id) => {
@@ -11193,7 +11237,7 @@ function bindActivitySocket() {
   });
   activitySocketServer = unixServer;
 }
-var homeDir, DAEMON_PID_FILE, DECISIONS_FILE, AUDIT_LOG_FILE, TRUST_FILE2, GLOBAL_CONFIG_FILE, CREDENTIALS_FILE, INSIGHT_COUNTS_FILE, pending, sseClients, suggestionTracker, taintStore, insightCounts, _abandonTimer, _hadBrowserClient, _daemonServer, daemonRejectionHandlerRegistered, AUTO_DENY_MS, TRUST_DURATIONS, autoStarted, ACTIVITY_SOCKET_PATH2, ACTIVITY_RING_SIZE, activityRing, LARGE_RESPONSE_RING_SIZE, largeResponseRing, cachedScanResult, cachedScanTs, SCAN_CACHE_TTL_MS, SECRET_KEY_RE, INPUT_PRICE_PER_1M, OUTPUT_PRICE_PER_1M, BYTES_PER_TOKEN, WRITE_TOOL_NAMES, ACTIVITY_REBIND_MAX_ATTEMPTS, ACTIVITY_REBIND_WINDOW_MS, ACTIVITY_HEALTH_PROBE_MS, activitySocketServer, activityHealthInterval, activityRebindAttempts, activityCircuitTripped;
+var homeDir, DAEMON_PID_FILE, DECISIONS_FILE, AUDIT_LOG_FILE, TRUST_FILE2, GLOBAL_CONFIG_FILE, CREDENTIALS_FILE, INSIGHT_COUNTS_FILE, pending, sseClients, suggestionTracker, taintStore, insightCounts, _abandonTimer, _hadBrowserClient, _daemonServer, daemonRejectionHandlerRegistered, AUTO_DENY_MS, TRUST_DURATIONS, autoStarted, ACTIVITY_SOCKET_PATH2, ACTIVITY_RING_SIZE, activityRing, LARGE_RESPONSE_RING_SIZE, largeResponseRing, cachedScanResult, cachedScanTs, SCAN_CACHE_TTL_MS, SECRET_KEY_RE, INPUT_PRICE_PER_1M, OUTPUT_PRICE_PER_1M, BYTES_PER_TOKEN, CRITICAL_FORENSIC_CATEGORIES, WRITE_TOOL_NAMES, ACTIVITY_REBIND_MAX_ATTEMPTS, ACTIVITY_REBIND_WINDOW_MS, ACTIVITY_HEALTH_PROBE_MS, activitySocketServer, activityHealthInterval, activityRebindAttempts, activityCircuitTripped;
 var init_state2 = __esm({
   "src/daemon/state.ts"() {
     "use strict";
@@ -11238,6 +11282,11 @@ var init_state2 = __esm({
     INPUT_PRICE_PER_1M = 3;
     OUTPUT_PRICE_PER_1M = 15;
     BYTES_PER_TOKEN = 4;
+    CRITICAL_FORENSIC_CATEGORIES = /* @__PURE__ */ new Set([
+      "privilege-escalation",
+      "destructive-op",
+      "eval-of-remote"
+    ]);
     WRITE_TOOL_NAMES = /* @__PURE__ */ new Set([
       "write",
       "write_file",
@@ -11582,7 +11631,26 @@ function startCloudSync() {
   const recurring = setInterval(() => void syncOnce(), intervalMs);
   recurring.unref();
 }
-var FINDING_TO_SIGNAL3, rulesCacheFile, DEFAULT_API_URL, DEFAULT_INTERVAL_HOURS, MIN_INTERVAL_HOURS;
+function startForensicBroadcast() {
+  const tick = async () => {
+    try {
+      const findings = await tickForensicBroadcast(forensicBroadcastOffsets);
+      for (const f of findings) broadcastForensic(f);
+    } catch (err2) {
+      const msg = err2 instanceof Error ? err2.message : String(err2);
+      appendToLog(HOOK_DEBUG_LOG, {
+        ts: (/* @__PURE__ */ new Date()).toISOString(),
+        kind: "forensic-broadcast-error",
+        error: msg
+      });
+    }
+  };
+  const initial = setTimeout(() => void tick(), FORENSIC_INITIAL_DELAY_MS);
+  initial.unref();
+  const recurring = setInterval(() => void tick(), FORENSIC_BROADCAST_INTERVAL_MS);
+  recurring.unref();
+}
+var FINDING_TO_SIGNAL3, rulesCacheFile, DEFAULT_API_URL, DEFAULT_INTERVAL_HOURS, MIN_INTERVAL_HOURS, FORENSIC_BROADCAST_INTERVAL_MS, FORENSIC_INITIAL_DELAY_MS, forensicBroadcastOffsets;
 var init_sync = __esm({
   "src/daemon/sync.ts"() {
     "use strict";
@@ -11590,6 +11658,8 @@ var init_sync = __esm({
     init_blast();
     init_dist();
     init_scan_watermark();
+    init_state2();
+    init_audit();
     FINDING_TO_SIGNAL3 = {
       dlp: "dlpFindings",
       pii: "piiFindings",
@@ -11606,6 +11676,9 @@ var init_sync = __esm({
     DEFAULT_API_URL = "https://api.node9.ai/api/v1/intercept/policies/sync";
     DEFAULT_INTERVAL_HOURS = 5;
     MIN_INTERVAL_HOURS = 1;
+    FORENSIC_BROADCAST_INTERVAL_MS = 3e4;
+    FORENSIC_INITIAL_DELAY_MS = 5e3;
+    forensicBroadcastOffsets = /* @__PURE__ */ new Map();
   }
 });
@@ -11834,11 +11907,12 @@ import fs25 from "fs";
 import path27 from "path";
 import os23 from "os";
 import { randomUUID as randomUUID4 } from "crypto";
-import { spawnSync as spawnSync2 } from "child_process";
+import { spawnSync } from "child_process";
 import chalk6 from "chalk";
 function startDaemon() {
   startCostSync();
   startCloudSync();
+  startForensicBroadcast();
   startDlpScanner();
   loadInsightCounts();
   const internalToken = randomUUID4();
@@ -12644,13 +12718,26 @@ data: ${JSON.stringify(item.data)}
       }).then((res) => {
         if (res.ok) {
           try {
-            const r = spawnSync2("ss", ["-Htnp", `sport = :${DAEMON_PORT}`], {
+            let orphanPid = null;
+            const ss = spawnSync("ss", ["-Htnp", `sport = :${DAEMON_PORT}`], {
               encoding: "utf8",
               timeout: 1e3
             });
-            const match = r.stdout?.match(/pid=(\d+)/);
-            if (match) {
-              const orphanPid = parseInt(match[1], 10);
+            if (!ss.error && ss.status === 0) {
+              const m = ss.stdout?.match(/pid=(\d+)/);
+              if (m) orphanPid = parseInt(m[1], 10);
+            } else if (ss.error?.code === "ENOENT" || ss.status === null) {
+              const lsof = spawnSync(
+                "lsof",
+                ["-nP", `-iTCP:${DAEMON_PORT}`, "-sTCP:LISTEN", "-t"],
+                { encoding: "utf8", timeout: 1e3 }
+              );
+              if (!lsof.error && lsof.status === 0) {
+                const first = (lsof.stdout ?? "").split("\n")[0].trim();
+                if (/^\d+$/.test(first)) orphanPid = parseInt(first, 10);
+              }
+            }
+            if (orphanPid !== null) {
               process.kill(orphanPid, 0);
               atomicWriteSync2(
                 DAEMON_PID_FILE,
@@ -12685,7 +12772,7 @@ data: ${JSON.stringify(item.data)}
       JSON.stringify({ pid: process.pid, port: DAEMON_PORT, internalToken, autoStarted }),
       { mode: 384 }
     );
-    console.error(chalk6.green(`\u{1F6E1}\uFE0F  Node9 Guard LIVE: http://127.0.0.1:${DAEMON_PORT}`));
+    console.error(chalk6.green(`\u{1F6E1}\uFE0F  Node9 Guard LIVE on 127.0.0.1:${DAEMON_PORT}`));
   });
   if (watchMode) {
     console.error(chalk6.cyan("\u{1F6F0}\uFE0F  Flight Recorder active \u2014 daemon will not idle-timeout"));
@@ -12711,7 +12798,7 @@ var init_server = __esm({
 import fs26 from "fs";
 import path28 from "path";
 import os24 from "os";
-import { spawnSync as spawnSync3, execFileSync } from "child_process";
+import { spawnSync as spawnSync2, execFileSync } from "child_process";
 function resolveNode9Binary() {
   try {
     const script = process.argv[1];
@@ -12722,7 +12809,7 @@ function resolveNode9Binary() {
   }
   try {
     const cmd = process.platform === "win32" ? "where" : "which";
-    const r = spawnSync3(cmd, ["node9"], { encoding: "utf8", timeout: 3e3 });
+    const r = spawnSync2(cmd, ["node9"], { encoding: "utf8", timeout: 3e3 });
     if (r.status === 0 && r.stdout.trim()) {
       return r.stdout.trim().split("\n")[0].trim();
     }
@@ -12774,8 +12861,8 @@ function installLaunchd(binaryPath) {
   const dir = path28.dirname(LAUNCHD_PLIST);
   if (!fs26.existsSync(dir)) fs26.mkdirSync(dir, { recursive: true });
   fs26.writeFileSync(LAUNCHD_PLIST, launchdPlist(binaryPath), "utf-8");
-  spawnSync3("launchctl", ["unload", LAUNCHD_PLIST], { encoding: "utf8" });
-  const r = spawnSync3("launchctl", ["load", "-w", LAUNCHD_PLIST], {
+  spawnSync2("launchctl", ["unload", LAUNCHD_PLIST], { encoding: "utf8" });
+  const r = spawnSync2("launchctl", ["load", "-w", LAUNCHD_PLIST], {
     encoding: "utf8",
     timeout: 5e3
   });
@@ -12785,7 +12872,7 @@ function installLaunchd(binaryPath) {
 }
 function uninstallLaunchd() {
   if (fs26.existsSync(LAUNCHD_PLIST)) {
-    spawnSync3("launchctl", ["unload", "-w", LAUNCHD_PLIST], { encoding: "utf8", timeout: 5e3 });
+    spawnSync2("launchctl", ["unload", "-w", LAUNCHD_PLIST], { encoding: "utf8", timeout: 5e3 });
     fs26.unlinkSync(LAUNCHD_PLIST);
   }
 }
@@ -12817,15 +12904,15 @@ function installSystemd(binaryPath) {
     execFileSync("loginctl", ["enable-linger", os24.userInfo().username], { timeout: 3e3 });
   } catch {
   }
-  const reload = spawnSync3("systemctl", ["--user", "daemon-reload"], {
+  const reload = spawnSync2("systemctl", ["--user", "daemon-reload"], {
     encoding: "utf8",
     timeout: 5e3
   });
   if (reload.status !== 0) {
     throw new Error(`systemctl daemon-reload failed: ${reload.stderr}`);
   }
-  spawnSync3("systemctl", ["--user", "stop", "node9-daemon"], { encoding: "utf8", timeout: 3e3 });
-  const enable = spawnSync3("systemctl", ["--user", "enable", "--now", "node9-daemon"], {
+  spawnSync2("systemctl", ["--user", "stop", "node9-daemon"], { encoding: "utf8", timeout: 3e3 });
+  const enable = spawnSync2("systemctl", ["--user", "enable", "--now", "node9-daemon"], {
     encoding: "utf8",
     timeout: 5e3
   });
@@ -12835,11 +12922,11 @@ function installSystemd(binaryPath) {
 }
 function uninstallSystemd() {
   if (fs26.existsSync(SYSTEMD_UNIT)) {
-    spawnSync3("systemctl", ["--user", "disable", "--now", "node9-daemon"], {
+    spawnSync2("systemctl", ["--user", "disable", "--now", "node9-daemon"], {
       encoding: "utf8",
       timeout: 5e3
     });
-    spawnSync3("systemctl", ["--user", "daemon-reload"], { encoding: "utf8", timeout: 5e3 });
+    spawnSync2("systemctl", ["--user", "daemon-reload"], { encoding: "utf8", timeout: 5e3 });
     fs26.unlinkSync(SYSTEMD_UNIT);
   }
 }
@@ -12857,7 +12944,7 @@ function stopRunningDaemon() {
       try {
         process.kill(pid, "SIGTERM");
         const deadline = Date.now() + 3e3;
-        const pollStop = spawnSync3(
+        const pollStop = spawnSync2(
           "sh",
           ["-c", `while kill -0 ${pid} 2>/dev/null; do sleep 0.1; done`],
           {
@@ -12889,7 +12976,7 @@ function installDaemonService() {
       return { ok: true, platform: "launchd", alreadyInstalled };
     }
     if (process.platform === "linux") {
-      const check = spawnSync3("systemctl", ["--user", "--version"], {
+      const check = spawnSync2("systemctl", ["--user", "--version"], {
         encoding: "utf8",
         timeout: 2e3
       });
@@ -12954,7 +13041,6 @@ var init_service = __esm({
 // src/daemon/index.ts
 import fs27 from "fs";
 import chalk7 from "chalk";
-import { spawnSync as spawnSync4 } from "child_process";
 function stopDaemon() {
   if (!fs27.existsSync(DAEMON_PID_FILE)) return console.log(chalk7.yellow("Not running."));
   try {
@@ -12996,15 +13082,7 @@ function daemonStatus() {
       processStatus = chalk7.yellow("not running (stale PID file)");
     }
   } else {
-    const r = spawnSync4("ss", ["-Htnp", `sport = :${DAEMON_PORT}`], {
-      encoding: "utf8",
-      timeout: 500
-    });
-    if (r.status === 0 && (r.stdout ?? "").includes(`:${DAEMON_PORT}`)) {
-      processStatus = chalk7.yellow(`running (orphaned \u2014 no PID file)`);
-    } else {
-      processStatus = chalk7.yellow("not running");
-    }
+    processStatus = chalk7.yellow("not running");
   }
   console.log(`
   Process : ${processStatus}`);
@@ -14473,13 +14551,7 @@ async function autoStartDaemonAndWait() {
     for (let i = 0; i < 20; i++) {
       await new Promise((r) => setTimeout(r, 250));
       if (!isDaemonRunning()) continue;
-      try {
-        const res = await fetch(`http://${DAEMON_HOST}:${DAEMON_PORT}/settings`, {
-          signal: AbortSignal.timeout(500)
-        });
-        if (res.ok) return true;
-      } catch {
-      }
+      if (await isDaemonReachable()) return true;
     }
   } catch {
   }
@@ -14498,7 +14570,7 @@ import path32 from "path";
 import os27 from "os";
 // src/undo.ts
-import { spawnSync as spawnSync5, spawn as spawn4 } from "child_process";
+import { spawnSync as spawnSync3, spawn as spawn4 } from "child_process";
 import crypto3 from "crypto";
 import fs29 from "fs";
 import net3 from "net";
@@ -14611,7 +14683,7 @@ function ensureShadowRepo(shadowDir, cwd) {
   cleanOrphanedIndexFiles(shadowDir);
   const normalizedCwd = normalizeCwdForHash(cwd);
   const shadowEnvBase = { ...process.env, GIT_DIR: shadowDir, GIT_WORK_TREE: cwd };
-  const check = spawnSync5("git", ["rev-parse", "--git-dir"], {
+  const check = spawnSync3("git", ["rev-parse", "--git-dir"], {
     env: shadowEnvBase,
     timeout: 3e3
   });
@@ -14637,17 +14709,17 @@ function ensureShadowRepo(shadowDir, cwd) {
     fs29.mkdirSync(shadowDir, { recursive: true });
   } catch {
   }
-  const init = spawnSync5("git", ["init", "--bare", shadowDir], { timeout: 5e3 });
+  const init = spawnSync3("git", ["init", "--bare", shadowDir], { timeout: 5e3 });
   if (init.status !== 0 || init.error) {
     const reason = init.error ? init.error.message : init.stderr?.toString();
     if (process.env.NODE9_DEBUG === "1") console.error("[Node9] git init --bare failed:", reason);
     return false;
   }
   const configFile = path30.join(shadowDir, "config");
-  spawnSync5("git", ["config", "--file", configFile, "core.untrackedCache", "true"], {
+  spawnSync3("git", ["config", "--file", configFile, "core.untrackedCache", "true"], {
     timeout: 3e3
   });
-  spawnSync5("git", ["config", "--file", configFile, "core.fsmonitor", "true"], {
+  spawnSync3("git", ["config", "--file", configFile, "core.fsmonitor", "true"], {
     timeout: 3e3
   });
   try {
@@ -14658,14 +14730,17 @@ function ensureShadowRepo(shadowDir, cwd) {
 }
 function buildGitEnv(cwd) {
   const shadowDir = getShadowRepoDir(cwd);
-  const check = spawnSync5("git", ["rev-parse", "--git-dir"], {
+  const check = spawnSync3("git", ["rev-parse", "--git-dir"], {
     env: { ...process.env, GIT_DIR: shadowDir, GIT_WORK_TREE: cwd },
     timeout: 2e3
   });
   if (check.status === 0) {
     return { ...process.env, GIT_DIR: shadowDir, GIT_WORK_TREE: cwd };
   }
-  return { ...process.env };
+  const env = { ...process.env };
+  delete env.GIT_DIR;
+  delete env.GIT_WORK_TREE;
+  return env;
 }
 async function createShadowSnapshot(tool = "unknown", args = {}, ignorePaths = []) {
   let indexFile = null;
@@ -14683,11 +14758,11 @@ async function createShadowSnapshot(tool = "unknown", args = {}, ignorePaths = [
       GIT_WORK_TREE: cwd,
       GIT_INDEX_FILE: indexFile
     };
-    spawnSync5("git", ["add", "-A"], { env: shadowEnv, timeout: GIT_TIMEOUT });
-    const treeRes = spawnSync5("git", ["write-tree"], { env: shadowEnv, timeout: GIT_TIMEOUT });
+    spawnSync3("git", ["add", "-A"], { env: shadowEnv, timeout: GIT_TIMEOUT });
+    const treeRes = spawnSync3("git", ["write-tree"], { env: shadowEnv, timeout: GIT_TIMEOUT });
     const treeHash = treeRes.stdout?.toString().trim();
     if (!treeHash || treeRes.status !== 0) return null;
-    const commitRes = spawnSync5(
+    const commitRes = spawnSync3(
       "git",
       ["commit-tree", treeHash, "-m", `Node9 AI Snapshot: ${(/* @__PURE__ */ new Date()).toISOString()}`],
       { env: shadowEnv, timeout: GIT_TIMEOUT }
@@ -14699,7 +14774,7 @@ async function createShadowSnapshot(tool = "unknown", args = {}, ignorePaths = [
     let capturedFiles = [];
     let capturedDiff = null;
     if (prevEntry) {
-      const filesRes = spawnSync5("git", ["diff", "--name-only", prevEntry.hash, commitHash], {
+      const filesRes = spawnSync3("git", ["diff", "--name-only", prevEntry.hash, commitHash], {
         env: shadowEnv,
         timeout: GIT_TIMEOUT
       });
@@ -14709,7 +14784,7 @@ async function createShadowSnapshot(tool = "unknown", args = {}, ignorePaths = [
       if (capturedFiles.length === 0) {
         return prevEntry.hash;
       }
-      const diffRes = spawnSync5("git", ["diff", prevEntry.hash, commitHash], {
+      const diffRes = spawnSync3("git", ["diff", prevEntry.hash, commitHash], {
         env: shadowEnv,
         timeout: GIT_TIMEOUT
       });
@@ -14717,7 +14792,7 @@ async function createShadowSnapshot(tool = "unknown", args = {}, ignorePaths = [
         capturedDiff = diffRes.stdout?.toString() || null;
       }
     } else {
-      const filesRes = spawnSync5("git", ["ls-tree", "-r", "--name-only", commitHash], {
+      const filesRes = spawnSync3("git", ["ls-tree", "-r", "--name-only", commitHash], {
         env: shadowEnv,
         timeout: GIT_TIMEOUT
       });
@@ -14771,14 +14846,14 @@ function getSnapshotHistory() {
 function computeUndoDiff(hash, cwd) {
   try {
     const env = buildGitEnv(cwd);
-    const statRes = spawnSync5("git", ["diff", hash, "--stat", "--", "."], {
+    const statRes = spawnSync3("git", ["diff", hash, "--stat", "--", "."], {
       cwd,
       env,
       timeout: GIT_TIMEOUT
     });
     const stat = statRes.stdout?.toString().trim();
     if (!stat || statRes.status !== 0) return null;
-    const diffRes = spawnSync5("git", ["diff", hash, "--", "."], {
+    const diffRes = spawnSync3("git", ["diff", hash, "--", "."], {
       cwd,
       env,
       timeout: GIT_TIMEOUT
@@ -14797,7 +14872,7 @@ function applyUndo(hash, cwd) {
   try {
     const dir = cwd ?? process.cwd();
     const env = buildGitEnv(dir);
-    const restore = spawnSync5("git", ["restore", "--source", hash, "--staged", "--worktree", "."], {
+    const restore = spawnSync3("git", ["restore", "--source", hash, "--staged", "--worktree", "."], {
       cwd: dir,
       env,
       timeout: GIT_TIMEOUT
@@ -14809,7 +14884,7 @@ function applyUndo(hash, cwd) {
       }
       return false;
     }
-    const lsTree = spawnSync5("git", ["ls-tree", "-r", "--name-only", hash], {
+    const lsTree = spawnSync3("git", ["ls-tree", "-r", "--name-only", hash], {
       cwd: dir,
       env,
       timeout: GIT_TIMEOUT
@@ -14828,8 +14903,8 @@ function applyUndo(hash, cwd) {
 `);
       return false;
     }
-    const tracked = spawnSync5("git", ["ls-files"], { cwd: dir, env, timeout: GIT_TIMEOUT }).stdout?.toString().trim().split("\n").filter(Boolean) ?? [];
-    const untracked = spawnSync5("git", ["ls-files", "--others", "--exclude-standard"], {
+    const tracked = spawnSync3("git", ["ls-files"], { cwd: dir, env, timeout: GIT_TIMEOUT }).stdout?.toString().trim().split("\n").filter(Boolean) ?? [];
+    const untracked = spawnSync3("git", ["ls-files", "--others", "--exclude-standard"], {
       cwd: dir,
       env,
       timeout: GIT_TIMEOUT
@@ -16078,10 +16153,12 @@ function registerDoctorCommand(program2, version2) {
     }
     section("Daemon (optional)");
     if (isDaemonRunning()) {
-      pass(`Browser dashboard running \u2192 http://${DAEMON_HOST}:${DAEMON_PORT}/`);
+      pass(
+        `Daemon running on ${DAEMON_HOST}:${DAEMON_PORT} \u2014 terminal & native approvals enabled`
+      );
     } else {
       warn(
-        "Daemon not running \u2014 browser approvals unavailable",
+        "Daemon not running \u2014 terminal & native approvals unavailable",
         "Run: node9 daemon --background"
       );
     }
@@ -17681,7 +17758,7 @@ function registerUndoCommand(program2) {
 // src/cli/commands/watch.ts
 init_daemon();
 import chalk19 from "chalk";
-import { spawn as spawn7, spawnSync as spawnSync6 } from "child_process";
+import { spawn as spawn7, spawnSync as spawnSync4 } from "child_process";
 function registerWatchCommand(program2) {
   program2.command("watch").description("Run a command under Node9 watch mode (daemon stays alive for the session)").argument("<command>", "Command to run").argument("[args...]", "Arguments for the command").action(async (cmd, args) => {
     let port = DAEMON_PORT;
@@ -17727,7 +17804,7 @@ function registerWatchCommand(program2) {
         "\n   Tip: run `node9 tail` in another terminal to review and approve AI actions.\n"
       )
     );
-    const result = spawnSync6(cmd, args, {
+    const result = spawnSync4(cmd, args, {
       stdio: "inherit",
       env: { ...process.env, NODE9_WATCH_MODE: "1" }
     });
@@ -18274,7 +18351,7 @@ import readline5 from "readline";
 import fs39 from "fs";
 import os35 from "os";
 import path41 from "path";
-import { spawnSync as spawnSync7 } from "child_process";
+import { spawnSync as spawnSync5 } from "child_process";
 init_core();
 init_daemon();
 init_shields();
@@ -18748,7 +18825,7 @@ function handleRuleAdd(args) {
   return `Rule "${name}" added to ~/.node9/config.json \u2014 verdict: ${verdict} when ${field} matches "${pattern}"`;
 }
 function runCliCommand(subArgs) {
-  const result = spawnSync7(process.execPath, [process.argv[1], ...subArgs], {
+  const result = spawnSync5(process.execPath, [process.argv[1], ...subArgs], {
     encoding: "utf-8",
     timeout: 6e4,
     // Disable colors — stdout is piped (not a TTY), chalk auto-detects, but be explicit
@@ -20758,6 +20835,17 @@ program.command("tail").description("Stream live agent activity to the terminal"
     process.exit(1);
   }
 });
+program.command("monitor").description("Live interactive dashboard \u2014 activity feed, approvals, security signals").action(async () => {
+  try {
+    const dashboardPath = path49.join(__dirname, "dashboard.mjs");
+    const dynamicImport = new Function("id", "return import(id)");
+    const mod = await dynamicImport(`file://${dashboardPath}`);
+    await mod.startMonitor();
+  } catch (err2) {
+    console.error(chalk31.red(`\u274C ${err2 instanceof Error ? err2.message : String(err2)}`));
+    process.exit(1);
+  }
+});
 registerWatchCommand(program);
 registerMcpGatewayCommand(program);
 registerMcpServerCommand(program);