npm - @node9/proxy - Versions diffs - 1.27.1 → 1.29.0 - Mend

@node9/proxy 1.27.1 → 1.29.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/dashboard.mjs CHANGED Viewed

@@ -2395,7 +2395,14 @@ var init_config = __esm({
             "edit_file",
             "create_file",
             "edit",
-            "replace"
+            "replace",
+            // Claude / canonicalised Hermes — shouldSnapshot lowercases the
+            // incoming name before set-membership, so we list the lowercase
+            // forms of `Bash`/`Write`/`Edit`/`MultiEdit`. Without these,
+            // post-canonicalisation Hermes `patch` / `write_file` (which now
+            // arrive as `Edit` / `Write`) silently skipped snapshotting.
+            "write",
+            "multiedit"
           ],
           onlyPaths: [],
           ignorePaths: ["**/node_modules/**", "dist/**", "build/**", ".next/**", "**/*.log"]
@@ -3359,6 +3366,13 @@ var init_policy = __esm({
   }
 });
+// src/utils/hook-payload.ts
+var init_hook_payload = __esm({
+  "src/utils/hook-payload.ts"() {
+    "use strict";
+  }
+});
 // src/scan-summary.ts
 var init_scan_summary = __esm({
   "src/scan-summary.ts"() {
@@ -3394,6 +3408,7 @@ var init_setup_pi_shim = __esm({
 import chalk2 from "chalk";
 import { confirm } from "@inquirer/prompts";
 import { parse as parseToml, stringify as stringifyToml } from "smol-toml";
+import * as yaml from "yaml";
 var init_setup = __esm({
   "src/setup.ts"() {
     "use strict";
@@ -4320,6 +4335,7 @@ var init_scan = __esm({
     init_policy();
     init_dist();
     init_dlp();
+    init_hook_payload();
     init_dist();
     init_scan_summary();
     init_setup();
@@ -4398,6 +4414,8 @@ var init_scan = __esm({
       "exec_command",
       "shell",
       "run_shell_command",
+      "run_command",
+      // Antigravity (agy)
       "write",
       "edit",
       "multiedit"

package/dist/index.js CHANGED Viewed

@@ -119,9 +119,11 @@ function appendLocalAudit(toolName, args, decision, checkedBy, meta, auditHashAr
   const argsField = auditHashArgsEnabled ? { argsHash: hashArgs(args) } : { args: args ? JSON.parse(redactSecrets(JSON.stringify(args))) : {} };
   const testRun = isTestCall(toolName, args) || process.env.NODE9_TESTING === "1" ? { testRun: true } : {};
   const ruleNameField = meta?.ruleName ? { ruleName: meta.ruleName } : {};
+  const agentToolNameField = meta?.agentToolName ? { agentToolName: meta.agentToolName } : {};
   appendToLog(LOCAL_AUDIT_LOG, {
     ts: (/* @__PURE__ */ new Date()).toISOString(),
     tool: toolName,
+    ...agentToolNameField,
     ...argsField,
     decision,
     checkedBy,
@@ -2998,7 +3000,14 @@ var DEFAULT_CONFIG = {
         "edit_file",
         "create_file",
         "edit",
-        "replace"
+        "replace",
+        // Claude / canonicalised Hermes — shouldSnapshot lowercases the
+        // incoming name before set-membership, so we list the lowercase
+        // forms of `Bash`/`Write`/`Edit`/`MultiEdit`. Without these,
+        // post-canonicalisation Hermes `patch` / `write_file` (which now
+        // arrive as `Edit` / `Write`) silently skipped snapshotting.
+        "write",
+        "multiedit"
       ],
       onlyPaths: [],
       ignorePaths: ["**/node_modules/**", "dist/**", "build/**", ".next/**", "**/*.log"]

package/dist/index.mjs CHANGED Viewed

@@ -99,9 +99,11 @@ function appendLocalAudit(toolName, args, decision, checkedBy, meta, auditHashAr
   const argsField = auditHashArgsEnabled ? { argsHash: hashArgs(args) } : { args: args ? JSON.parse(redactSecrets(JSON.stringify(args))) : {} };
   const testRun = isTestCall(toolName, args) || process.env.NODE9_TESTING === "1" ? { testRun: true } : {};
   const ruleNameField = meta?.ruleName ? { ruleName: meta.ruleName } : {};
+  const agentToolNameField = meta?.agentToolName ? { agentToolName: meta.agentToolName } : {};
   appendToLog(LOCAL_AUDIT_LOG, {
     ts: (/* @__PURE__ */ new Date()).toISOString(),
     tool: toolName,
+    ...agentToolNameField,
     ...argsField,
     decision,
     checkedBy,
@@ -2968,7 +2970,14 @@ var DEFAULT_CONFIG = {
         "edit_file",
         "create_file",
         "edit",
-        "replace"
+        "replace",
+        // Claude / canonicalised Hermes — shouldSnapshot lowercases the
+        // incoming name before set-membership, so we list the lowercase
+        // forms of `Bash`/`Write`/`Edit`/`MultiEdit`. Without these,
+        // post-canonicalisation Hermes `patch` / `write_file` (which now
+        // arrive as `Edit` / `Write`) silently skipped snapshotting.
+        "write",
+        "multiedit"
       ],
       onlyPaths: [],
       ignorePaths: ["**/node_modules/**", "dist/**", "build/**", ".next/**", "**/*.log"]

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@node9/proxy",
-  "version": "1.27.1",
+  "version": "1.29.0",
   "description": "The Sudo Command for AI Agents. Execution Security for Claude Code, Codex, Gemini, Cursor, Opencode, Pi, and any MCP server.",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
@@ -44,6 +44,7 @@
     "vscode",
     "opencode",
     "pi-agent",
+    "hermes-agent",
     "sudo",
     "security-proxy",
     "human-in-the-loop",
@@ -90,6 +91,7 @@
     "safe-regex2": "^5.1.0",
     "smol-toml": "^1.6.1",
     "string-width": "^4.2.3",
+    "yaml": "^2.9.0",
     "zod": "^3.25.76"
   },
   "bundleDependencies": [