@sanctuary-framework/mcp-server 0.5.10 → 0.5.11
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cli.cjs +47 -1
- package/dist/cli.cjs.map +1 -1
- package/dist/cli.js +47 -1
- package/dist/cli.js.map +1 -1
- package/dist/index.cjs +144 -1
- package/dist/index.cjs.map +1 -1
- package/dist/index.d.cts +115 -1
- package/dist/index.d.ts +115 -1
- package/dist/index.js +143 -2
- package/dist/index.js.map +1 -1
- package/package.json +1 -1
package/dist/cli.js
CHANGED
|
@@ -11371,11 +11371,57 @@ var TOOL_API_SCOPED = {
|
|
|
11371
11371
|
],
|
|
11372
11372
|
default_action: "redact"
|
|
11373
11373
|
};
|
|
11374
|
+
var REMOTE_INFERENCE_SANITIZE = {
|
|
11375
|
+
id: "remote-inference-sanitize",
|
|
11376
|
+
name: "Remote Inference Sanitization",
|
|
11377
|
+
description: "Maximum privacy for remote/cloud LLM calls. Strips all identity, financial, location, and personal data before passing queries to external models. Inspired by Vitalik Buterin's 2-of-2 sovereignty model.",
|
|
11378
|
+
use_when: "Your local agent needs to call a remote LLM for tasks beyond local model capability (complex coding, deep research) and you want to minimize data leakage to the remote provider. The remote model gets only the task, query, format requirements, and stripped code context.",
|
|
11379
|
+
rules: [
|
|
11380
|
+
{
|
|
11381
|
+
provider: "inference",
|
|
11382
|
+
allow: [
|
|
11383
|
+
"task",
|
|
11384
|
+
"task_description",
|
|
11385
|
+
"current_query",
|
|
11386
|
+
"query",
|
|
11387
|
+
"prompt",
|
|
11388
|
+
"question",
|
|
11389
|
+
"instruction",
|
|
11390
|
+
"output_format",
|
|
11391
|
+
"format",
|
|
11392
|
+
"language",
|
|
11393
|
+
"code_context",
|
|
11394
|
+
// Stripped code snippets for coding tasks
|
|
11395
|
+
"error_message"
|
|
11396
|
+
// For debugging help
|
|
11397
|
+
],
|
|
11398
|
+
redact: [
|
|
11399
|
+
...ALWAYS_REDACT_SECRETS,
|
|
11400
|
+
...PII_PATTERNS,
|
|
11401
|
+
...INTERNAL_STATE_PATTERNS,
|
|
11402
|
+
...HISTORY_PATTERNS,
|
|
11403
|
+
"tool_results",
|
|
11404
|
+
"previous_results",
|
|
11405
|
+
// Additional redactions for remote inference
|
|
11406
|
+
"model_data",
|
|
11407
|
+
"agent_state",
|
|
11408
|
+
"runtime_config",
|
|
11409
|
+
"capabilities",
|
|
11410
|
+
"tool_list"
|
|
11411
|
+
],
|
|
11412
|
+
// Deny patterns — these must NEVER reach the remote model, not even redacted
|
|
11413
|
+
hash: [],
|
|
11414
|
+
summarize: []
|
|
11415
|
+
}
|
|
11416
|
+
],
|
|
11417
|
+
default_action: "deny"
|
|
11418
|
+
};
|
|
11374
11419
|
var TEMPLATES = {
|
|
11375
11420
|
"inference-minimal": INFERENCE_MINIMAL,
|
|
11376
11421
|
"inference-standard": INFERENCE_STANDARD,
|
|
11377
11422
|
"logging-strict": LOGGING_STRICT,
|
|
11378
|
-
"tool-api-scoped": TOOL_API_SCOPED
|
|
11423
|
+
"tool-api-scoped": TOOL_API_SCOPED,
|
|
11424
|
+
"remote-inference-sanitize": REMOTE_INFERENCE_SANITIZE
|
|
11379
11425
|
};
|
|
11380
11426
|
function listTemplateIds() {
|
|
11381
11427
|
return Object.keys(TEMPLATES);
|