npm - @solongate/proxy - Versions diffs - 0.1.15 → 0.1.17 - Mend

@solongate/proxy 0.1.15 → 0.1.17

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.js CHANGED Viewed

@@ -278,6 +278,35 @@ async function main() {
   console.error("  \u2502  To undo: solongate-init --restore       \u2502");
   console.error("  \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518");
   console.error("");
+  const envPath = resolve2(".env");
+  if (!existsSync2(envPath)) {
+    const envContent = `# SolonGate API Keys
+# Get your keys from the dashboard: https://solongate.com
+# IMPORTANT: Never commit this file to git!
+# Live key \u2014 enables cloud policy sync + audit logging to dashboard
+SOLONGATE_API_KEY=sg_live_your_key_here
+# Test key \u2014 local-only, no cloud connection (for development)
+# SOLONGATE_API_KEY=sg_test_your_key_here
+`;
+    writeFileSync(envPath, envContent);
+    console.error(`  Created .env with placeholder API keys`);
+    console.error(`  \u2192 Edit .env and replace with your real keys from https://solongate.com`);
+    console.error("");
+  }
+  const gitignorePath = resolve2(".gitignore");
+  if (existsSync2(gitignorePath)) {
+    const gitignore = readFileSync2(gitignorePath, "utf-8");
+    if (!gitignore.includes(".env")) {
+      writeFileSync(gitignorePath, gitignore.trimEnd() + "\n.env\n.env.local\n");
+      console.error(`  Added .env to .gitignore`);
+    }
+  } else {
+    writeFileSync(gitignorePath, ".env\n.env.local\nnode_modules/\n");
+    console.error(`  Created .gitignore (with .env excluded)`);
+  }
+  console.error("");
   for (const name of toProtect) {
     console.error(`  \u2713 ${name} \u2014 protected (${options.policy})`);
   }
@@ -3149,35 +3178,41 @@ var SolonGateProxy = class {
     log("Starting SolonGate Proxy...");
     const apiUrl = this.config.apiUrl ?? "https://api.solongate.com";
     if (this.config.apiKey) {
-      log(`Validating license with ${apiUrl}...`);
-      try {
-        const res = await fetch(`${apiUrl}/api/v1/auth/me`, {
-          headers: {
-            "X-API-Key": this.config.apiKey,
-            "Authorization": `Bearer ${this.config.apiKey}`
-          },
-          signal: AbortSignal.timeout(1e4)
-        });
-        if (res.status === 401) {
-          log("ERROR: Invalid or expired API key.");
-          process.exit(1);
-        }
-        if (res.status === 403) {
-          log("ERROR: Your subscription is inactive. Renew at https://solongate.com");
+      if (this.config.apiKey.startsWith("sg_test_")) {
+        log("Using test API key \u2014 skipping online validation.");
+      } else {
+        log(`Validating license with ${apiUrl}...`);
+        try {
+          const res = await fetch(`${apiUrl}/api/v1/auth/me`, {
+            headers: {
+              "X-API-Key": this.config.apiKey,
+              "Authorization": `Bearer ${this.config.apiKey}`
+            },
+            signal: AbortSignal.timeout(1e4)
+          });
+          if (res.status === 401) {
+            log("ERROR: Invalid or expired API key.");
+            process.exit(1);
+          }
+          if (res.status === 403) {
+            log("ERROR: Your subscription is inactive. Renew at https://solongate.com");
+            process.exit(1);
+          }
+          log("License validated.");
+        } catch (err) {
+          log(`ERROR: Unable to reach SolonGate license server. Check your internet connection.`);
+          log(`Details: ${err instanceof Error ? err.message : String(err)}`);
           process.exit(1);
         }
-        log("License validated.");
-      } catch (err) {
-        log(`ERROR: Unable to reach SolonGate license server. Check your internet connection.`);
-        log(`Details: ${err instanceof Error ? err.message : String(err)}`);
-        process.exit(1);
       }
-      try {
-        const cloudPolicy = await fetchCloudPolicy(this.config.apiKey, apiUrl);
-        this.config.policy = cloudPolicy;
-        log(`Loaded cloud policy: ${cloudPolicy.name} (${cloudPolicy.rules.length} rules)`);
-      } catch (err) {
-        log(`Cloud policy fetch failed, using local policy: ${err instanceof Error ? err.message : String(err)}`);
+      if (!this.config.apiKey.startsWith("sg_test_")) {
+        try {
+          const cloudPolicy = await fetchCloudPolicy(this.config.apiKey, apiUrl);
+          this.config.policy = cloudPolicy;
+          log(`Loaded cloud policy: ${cloudPolicy.name} (${cloudPolicy.rules.length} rules)`);
+        } catch (err) {
+          log(`Cloud policy fetch failed, using local policy: ${err instanceof Error ? err.message : String(err)}`);
+        }
       }
     }
     log(`Policy: ${this.config.policy.name} (${this.config.policy.rules.length} rules)`);
@@ -3296,7 +3331,7 @@ var SolonGateProxy = class {
         const decision = result.isError ? "DENY" : "ALLOW";
         const evaluationTimeMs = Date.now() - startTime;
         log(`Result: ${decision} (${evaluationTimeMs}ms)`);
-        if (this.config.apiKey) {
+        if (this.config.apiKey && !this.config.apiKey.startsWith("sg_test_")) {
           const apiUrl = this.config.apiUrl ?? "https://api.solongate.com";
           sendAuditLog(this.config.apiKey, apiUrl, {
             tool: name,

package/dist/init.js CHANGED Viewed

@@ -280,6 +280,35 @@ async function main() {
   console.error("  \u2502  To undo: solongate-init --restore       \u2502");
   console.error("  \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518");
   console.error("");
+  const envPath = resolve(".env");
+  if (!existsSync(envPath)) {
+    const envContent = `# SolonGate API Keys
+# Get your keys from the dashboard: https://solongate.com
+# IMPORTANT: Never commit this file to git!
+# Live key \u2014 enables cloud policy sync + audit logging to dashboard
+SOLONGATE_API_KEY=sg_live_your_key_here
+# Test key \u2014 local-only, no cloud connection (for development)
+# SOLONGATE_API_KEY=sg_test_your_key_here
+`;
+    writeFileSync(envPath, envContent);
+    console.error(`  Created .env with placeholder API keys`);
+    console.error(`  \u2192 Edit .env and replace with your real keys from https://solongate.com`);
+    console.error("");
+  }
+  const gitignorePath = resolve(".gitignore");
+  if (existsSync(gitignorePath)) {
+    const gitignore = readFileSync(gitignorePath, "utf-8");
+    if (!gitignore.includes(".env")) {
+      writeFileSync(gitignorePath, gitignore.trimEnd() + "\n.env\n.env.local\n");
+      console.error(`  Added .env to .gitignore`);
+    }
+  } else {
+    writeFileSync(gitignorePath, ".env\n.env.local\nnode_modules/\n");
+    console.error(`  Created .gitignore (with .env excluded)`);
+  }
+  console.error("");
   for (const name of toProtect) {
     console.error(`  \u2713 ${name} \u2014 protected (${options.policy})`);
   }

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.1.15",
-  "description": "MCP security proxy — protect any MCP server with policies, input validation, rate limiting, and audit logging. Zero code changes required.",
+  "version": "0.1.17",
+  "description": "MCP security proxy \u00e2\u20ac\u201d protect any MCP server with policies, input validation, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {
     "solongate-proxy": "./dist/index.js",