@sanctuary-framework/mcp-server 0.5.10 → 0.5.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cli.cjs +47 -1
- package/dist/cli.cjs.map +1 -1
- package/dist/cli.js +47 -1
- package/dist/cli.js.map +1 -1
- package/dist/index.cjs +144 -1
- package/dist/index.cjs.map +1 -1
- package/dist/index.d.cts +115 -1
- package/dist/index.d.ts +115 -1
- package/dist/index.js +143 -2
- package/dist/index.js.map +1 -1
- package/package.json +1 -1
package/dist/cli.cjs
CHANGED
|
@@ -11374,11 +11374,57 @@ var TOOL_API_SCOPED = {
|
|
|
11374
11374
|
],
|
|
11375
11375
|
default_action: "redact"
|
|
11376
11376
|
};
|
|
11377
|
+
var REMOTE_INFERENCE_SANITIZE = {
|
|
11378
|
+
id: "remote-inference-sanitize",
|
|
11379
|
+
name: "Remote Inference Sanitization",
|
|
11380
|
+
description: "Maximum privacy for remote/cloud LLM calls. Strips all identity, financial, location, and personal data before passing queries to external models. Inspired by Vitalik Buterin's 2-of-2 sovereignty model.",
|
|
11381
|
+
use_when: "Your local agent needs to call a remote LLM for tasks beyond local model capability (complex coding, deep research) and you want to minimize data leakage to the remote provider. The remote model gets only the task, query, format requirements, and stripped code context.",
|
|
11382
|
+
rules: [
|
|
11383
|
+
{
|
|
11384
|
+
provider: "inference",
|
|
11385
|
+
allow: [
|
|
11386
|
+
"task",
|
|
11387
|
+
"task_description",
|
|
11388
|
+
"current_query",
|
|
11389
|
+
"query",
|
|
11390
|
+
"prompt",
|
|
11391
|
+
"question",
|
|
11392
|
+
"instruction",
|
|
11393
|
+
"output_format",
|
|
11394
|
+
"format",
|
|
11395
|
+
"language",
|
|
11396
|
+
"code_context",
|
|
11397
|
+
// Stripped code snippets for coding tasks
|
|
11398
|
+
"error_message"
|
|
11399
|
+
// For debugging help
|
|
11400
|
+
],
|
|
11401
|
+
redact: [
|
|
11402
|
+
...ALWAYS_REDACT_SECRETS,
|
|
11403
|
+
...PII_PATTERNS,
|
|
11404
|
+
...INTERNAL_STATE_PATTERNS,
|
|
11405
|
+
...HISTORY_PATTERNS,
|
|
11406
|
+
"tool_results",
|
|
11407
|
+
"previous_results",
|
|
11408
|
+
// Additional redactions for remote inference
|
|
11409
|
+
"model_data",
|
|
11410
|
+
"agent_state",
|
|
11411
|
+
"runtime_config",
|
|
11412
|
+
"capabilities",
|
|
11413
|
+
"tool_list"
|
|
11414
|
+
],
|
|
11415
|
+
// Deny patterns — these must NEVER reach the remote model, not even redacted
|
|
11416
|
+
hash: [],
|
|
11417
|
+
summarize: []
|
|
11418
|
+
}
|
|
11419
|
+
],
|
|
11420
|
+
default_action: "deny"
|
|
11421
|
+
};
|
|
11377
11422
|
var TEMPLATES = {
|
|
11378
11423
|
"inference-minimal": INFERENCE_MINIMAL,
|
|
11379
11424
|
"inference-standard": INFERENCE_STANDARD,
|
|
11380
11425
|
"logging-strict": LOGGING_STRICT,
|
|
11381
|
-
"tool-api-scoped": TOOL_API_SCOPED
|
|
11426
|
+
"tool-api-scoped": TOOL_API_SCOPED,
|
|
11427
|
+
"remote-inference-sanitize": REMOTE_INFERENCE_SANITIZE
|
|
11382
11428
|
};
|
|
11383
11429
|
function listTemplateIds() {
|
|
11384
11430
|
return Object.keys(TEMPLATES);
|