@rigour-labs/mcp 4.3.0 → 4.3.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/utils/config.d.ts +23 -0
- package/package.json +2 -2
package/dist/utils/config.d.ts
CHANGED
|
@@ -110,6 +110,17 @@ export declare function loadConfig(cwd: string): Promise<{
|
|
|
110
110
|
command_injection: boolean;
|
|
111
111
|
block_on_severity: "critical" | "high" | "medium" | "low";
|
|
112
112
|
};
|
|
113
|
+
frontend_secret_exposure: {
|
|
114
|
+
enabled: boolean;
|
|
115
|
+
block_on_severity: "critical" | "high" | "medium" | "low";
|
|
116
|
+
check_process_env: boolean;
|
|
117
|
+
check_import_meta_env: boolean;
|
|
118
|
+
secret_env_name_patterns: string[];
|
|
119
|
+
safe_public_prefixes: string[];
|
|
120
|
+
frontend_path_patterns: string[];
|
|
121
|
+
server_path_patterns: string[];
|
|
122
|
+
allowlist_env_names: string[];
|
|
123
|
+
};
|
|
113
124
|
adaptive: {
|
|
114
125
|
enabled: boolean;
|
|
115
126
|
base_coverage_threshold: number;
|
|
@@ -195,6 +206,18 @@ export declare function loadConfig(cwd: string): Promise<{
|
|
|
195
206
|
custom_patterns: string[];
|
|
196
207
|
audit_log: boolean;
|
|
197
208
|
};
|
|
209
|
+
side_effect_analysis: {
|
|
210
|
+
enabled: boolean;
|
|
211
|
+
ignore_patterns: string[];
|
|
212
|
+
check_unbounded_timers: boolean;
|
|
213
|
+
check_unbounded_loops: boolean;
|
|
214
|
+
check_process_lifecycle: boolean;
|
|
215
|
+
check_recursive_depth: boolean;
|
|
216
|
+
check_resource_lifecycle: boolean;
|
|
217
|
+
check_retry_without_limit: boolean;
|
|
218
|
+
check_circular_triggers: boolean;
|
|
219
|
+
check_auto_restart: boolean;
|
|
220
|
+
};
|
|
198
221
|
};
|
|
199
222
|
hooks: {
|
|
200
223
|
enabled: boolean;
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@rigour-labs/mcp",
|
|
3
|
-
"version": "4.3.
|
|
3
|
+
"version": "4.3.2",
|
|
4
4
|
"description": "MCP server for AI code governance — OWASP LLM Top 10 (10/10), real-time hooks, 25+ security patterns, hallucinated import detection, multi-agent governance. Works with Claude, Cursor, Cline, Windsurf, Gemini. Industry presets for HIPAA, SOC2, FedRAMP.",
|
|
5
5
|
"license": "MIT",
|
|
6
6
|
"homepage": "https://rigour.run",
|
|
@@ -48,7 +48,7 @@
|
|
|
48
48
|
"execa": "^8.0.1",
|
|
49
49
|
"fs-extra": "^11.2.0",
|
|
50
50
|
"yaml": "^2.8.2",
|
|
51
|
-
"@rigour-labs/core": "4.3.
|
|
51
|
+
"@rigour-labs/core": "4.3.2"
|
|
52
52
|
},
|
|
53
53
|
"devDependencies": {
|
|
54
54
|
"@types/node": "^25.0.3",
|