npm - @solongate/proxy - Versions diffs - 0.1.2 → 0.1.4 - Mend

@solongate/proxy 0.1.2 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/inject.js ADDED Viewed

@@ -0,0 +1,339 @@
+#!/usr/bin/env node
+// src/inject.ts
+import { readFileSync, writeFileSync, existsSync, copyFileSync } from "fs";
+import { resolve } from "path";
+import { execSync } from "child_process";
+function parseInjectArgs(argv) {
+  const args = argv.slice(2);
+  const opts = {
+    dryRun: false,
+    restore: false,
+    skipInstall: false
+  };
+  for (let i = 0; i < args.length; i++) {
+    switch (args[i]) {
+      case "--file":
+        opts.file = args[++i];
+        break;
+      case "--dry-run":
+        opts.dryRun = true;
+        break;
+      case "--restore":
+        opts.restore = true;
+        break;
+      case "--skip-install":
+        opts.skipInstall = true;
+        break;
+      case "--help":
+      case "-h":
+        printHelp();
+        process.exit(0);
+    }
+  }
+  return opts;
+}
+function printHelp() {
+  log(`
+SolonGate Inject \u2014 Add security to your MCP server in seconds
+USAGE
+  npx @solongate/proxy inject [options]
+OPTIONS
+  --file <path>       Entry file to modify (default: auto-detect)
+  --dry-run           Preview changes without writing
+  --restore           Restore original file from backup
+  --skip-install      Don't install SDK package
+  -h, --help          Show this help message
+EXAMPLES
+  npx @solongate/proxy inject                    # Auto-detect and inject
+  npx @solongate/proxy inject --file src/main.ts # Specify entry file
+  npx @solongate/proxy inject --dry-run          # Preview changes
+  npx @solongate/proxy inject --restore          # Undo injection
+WHAT IT DOES
+  Replaces McpServer with SecureMcpServer (2 lines changed)
+  All tool() calls are automatically protected by SolonGate.
+`);
+}
+function log(msg) {
+  process.stderr.write(msg + "\n");
+}
+function detectProject() {
+  if (!existsSync(resolve("package.json"))) return false;
+  try {
+    const pkg = JSON.parse(readFileSync(resolve("package.json"), "utf-8"));
+    const allDeps = { ...pkg.dependencies, ...pkg.devDependencies };
+    return !!(allDeps["@modelcontextprotocol/sdk"] || allDeps["@modelcontextprotocol/server"]);
+  } catch {
+    return false;
+  }
+}
+function findTsEntryFile() {
+  try {
+    const pkg = JSON.parse(readFileSync(resolve("package.json"), "utf-8"));
+    if (pkg.bin) {
+      const binPath = typeof pkg.bin === "string" ? pkg.bin : Object.values(pkg.bin)[0];
+      if (typeof binPath === "string") {
+        const srcPath = binPath.replace(/^\.\/dist\//, "./src/").replace(/\.js$/, ".ts");
+        if (existsSync(resolve(srcPath))) return resolve(srcPath);
+        if (existsSync(resolve(binPath))) return resolve(binPath);
+      }
+    }
+    if (pkg.main) {
+      const srcPath = pkg.main.replace(/^\.\/dist\//, "./src/").replace(/\.js$/, ".ts");
+      if (existsSync(resolve(srcPath))) return resolve(srcPath);
+    }
+  } catch {
+  }
+  const candidates = [
+    "src/index.ts",
+    "src/server.ts",
+    "src/main.ts",
+    "index.ts",
+    "server.ts",
+    "main.ts"
+  ];
+  for (const c of candidates) {
+    const full = resolve(c);
+    if (existsSync(full)) {
+      try {
+        const content = readFileSync(full, "utf-8");
+        if (content.includes("McpServer") || content.includes("McpServer")) {
+          return full;
+        }
+      } catch {
+      }
+    }
+  }
+  for (const c of candidates) {
+    if (existsSync(resolve(c))) return resolve(c);
+  }
+  return null;
+}
+function detectPackageManager() {
+  if (existsSync(resolve("pnpm-lock.yaml"))) return "pnpm";
+  if (existsSync(resolve("yarn.lock"))) return "yarn";
+  return "npm";
+}
+function installSdk() {
+  try {
+    const pkg = JSON.parse(readFileSync(resolve("package.json"), "utf-8"));
+    const allDeps = { ...pkg.dependencies, ...pkg.devDependencies };
+    if (allDeps["@solongate/sdk"]) {
+      log("  @solongate/sdk already installed");
+      return true;
+    }
+  } catch {
+  }
+  const pm = detectPackageManager();
+  const cmd = pm === "yarn" ? "yarn add @solongate/sdk" : `${pm} install @solongate/sdk`;
+  log(`  Installing @solongate/sdk via ${pm}...`);
+  try {
+    execSync(cmd, { stdio: "pipe", cwd: process.cwd() });
+    return true;
+  } catch (err) {
+    log(`  Failed to install: ${err instanceof Error ? err.message : String(err)}`);
+    log("  You can install manually: npm install @solongate/sdk");
+    return false;
+  }
+}
+function injectTypeScript(filePath) {
+  const original = readFileSync(filePath, "utf-8");
+  const changes = [];
+  let modified = original;
+  if (modified.includes("SecureMcpServer")) {
+    return { file: filePath, changes: ["Already injected \u2014 skipping"], original, modified };
+  }
+  const mcpImportPatterns = [
+    // Solo import: import { McpServer } from '...'
+    /import\s*\{\s*McpServer\s*\}\s*from\s*['"][^'"]+['"]/,
+    // Import with others: import { McpServer, ... } from '...'
+    /import\s*\{[^}]*McpServer[^}]*\}\s*from\s*['"][^'"]+['"]/
+  ];
+  let importReplaced = false;
+  for (const pattern of mcpImportPatterns) {
+    const match = modified.match(pattern);
+    if (match) {
+      const importLine = match[0];
+      const namedImports = importLine.match(/\{([^}]+)\}/)?.[1] ?? "";
+      const importNames = namedImports.split(",").map((s) => s.trim()).filter(Boolean);
+      if (importNames.length === 1 && importNames[0] === "McpServer") {
+        modified = modified.replace(
+          importLine,
+          `import { SecureMcpServer } from '@solongate/sdk'`
+        );
+        changes.push("Replaced McpServer import with SecureMcpServer from @solongate/sdk");
+      } else {
+        const otherImports = importNames.filter((n) => n !== "McpServer");
+        const fromModule = importLine.match(/from\s*['"]([^'"]+)['"]/)?.[1] ?? "";
+        modified = modified.replace(
+          importLine,
+          `import { ${otherImports.join(", ")} } from '${fromModule}';
+import { SecureMcpServer } from '@solongate/sdk'`
+        );
+        changes.push("Removed McpServer from existing import, added SecureMcpServer import from @solongate/sdk");
+      }
+      importReplaced = true;
+      break;
+    }
+  }
+  if (!importReplaced) {
+    const insertPos = findImportInsertPosition(modified);
+    modified = modified.slice(0, insertPos) + `import { SecureMcpServer } from '@solongate/sdk';
+` + modified.slice(insertPos);
+    changes.push("Added SecureMcpServer import from @solongate/sdk");
+  }
+  const constructorPattern = /new\s+McpServer\s*\(/g;
+  const constructorCount = (modified.match(constructorPattern) || []).length;
+  if (constructorCount > 0) {
+    modified = modified.replace(constructorPattern, "new SecureMcpServer(");
+    changes.push(`Replaced ${constructorCount} McpServer constructor(s) with SecureMcpServer`);
+  }
+  return { file: filePath, changes, original, modified };
+}
+function findImportInsertPosition(content) {
+  let pos = 0;
+  if (content.startsWith("#!")) {
+    pos = content.indexOf("\n") + 1;
+  }
+  const lines = content.slice(pos).split("\n");
+  let offset = pos;
+  for (const line of lines) {
+    const trimmed = line.trim();
+    if (trimmed === "" || trimmed.startsWith("//") || trimmed.startsWith("/*") || trimmed.startsWith("*") || trimmed.startsWith("*/")) {
+      offset += line.length + 1;
+    } else {
+      break;
+    }
+  }
+  const importRegex = /^import\s+.+$/gm;
+  let lastImportEnd = offset;
+  let importMatch;
+  while ((importMatch = importRegex.exec(content)) !== null) {
+    lastImportEnd = importMatch.index + importMatch[0].length + 1;
+  }
+  return lastImportEnd > offset ? lastImportEnd : offset;
+}
+function showDiff(result) {
+  if (result.original === result.modified) {
+    log("  No changes needed.");
+    return;
+  }
+  const origLines = result.original.split("\n");
+  const modLines = result.modified.split("\n");
+  log("");
+  log(`  File: ${result.file}`);
+  log("  \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500");
+  const maxLines = Math.max(origLines.length, modLines.length);
+  let diffCount = 0;
+  for (let i = 0; i < maxLines; i++) {
+    const orig = origLines[i];
+    const mod = modLines[i];
+    if (orig !== mod) {
+      if (diffCount < 30) {
+        if (orig !== void 0) log(`  - ${orig}`);
+        if (mod !== void 0) log(`  + ${mod}`);
+      }
+      diffCount++;
+    }
+  }
+  if (diffCount > 30) {
+    log(`  ... and ${diffCount - 30} more line changes`);
+  }
+  log("");
+}
+async function main() {
+  const opts = parseInjectArgs(process.argv);
+  log("");
+  log("  \u2554\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2557");
+  log("  \u2551      SolonGate \u2014 Inject SDK              \u2551");
+  log("  \u2551   Add security to your MCP server        \u2551");
+  log("  \u255A\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u255D");
+  log("");
+  if (!detectProject()) {
+    log("  Could not detect a TypeScript MCP server project.");
+    log("  Make sure you are in a project directory with:");
+    log("    package.json + @modelcontextprotocol/sdk in dependencies");
+    log("");
+    log("  To create a new MCP server: npx @solongate/proxy create <name>");
+    process.exit(1);
+  }
+  log("  Language: TypeScript");
+  const entryFile = opts.file ? resolve(opts.file) : findTsEntryFile();
+  if (!entryFile || !existsSync(entryFile)) {
+    log(`  Could not find entry file.${opts.file ? ` File not found: ${opts.file}` : ""}`);
+    log("");
+    log("  Specify it manually: --file <path>");
+    log("");
+    log("  Common entry points:");
+    log("    src/index.ts, src/server.ts, index.ts");
+    process.exit(1);
+  }
+  log(`  Entry:    ${entryFile}`);
+  log("");
+  const backupPath = entryFile + ".solongate-backup";
+  if (opts.restore) {
+    if (!existsSync(backupPath)) {
+      log("  No backup found. Nothing to restore.");
+      process.exit(1);
+    }
+    copyFileSync(backupPath, entryFile);
+    log(`  Restored original file from backup.`);
+    log(`  Backup: ${backupPath}`);
+    process.exit(0);
+  }
+  if (!opts.skipInstall && !opts.dryRun) {
+    installSdk();
+    log("");
+  }
+  const result = injectTypeScript(entryFile);
+  log(`  Changes (${result.changes.length}):`);
+  for (const change of result.changes) {
+    log(`    - ${change}`);
+  }
+  if (result.changes.length === 1 && result.changes[0].includes("Already injected")) {
+    log("");
+    log("  Your MCP server is already protected by SolonGate!");
+    process.exit(0);
+  }
+  if (result.original === result.modified) {
+    log("");
+    log("  No changes were made. The file may not contain recognizable MCP patterns.");
+    log("  See docs: https://solongate.com/docs/integration");
+    process.exit(0);
+  }
+  if (opts.dryRun) {
+    log("");
+    log("  --- DRY RUN (no changes written) ---");
+    showDiff(result);
+    log("  To apply: npx @solongate/proxy inject");
+    process.exit(0);
+  }
+  if (!existsSync(backupPath)) {
+    copyFileSync(entryFile, backupPath);
+    log("");
+    log(`  Backup: ${backupPath}`);
+  }
+  writeFileSync(entryFile, result.modified);
+  log("");
+  log("  \u250C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510");
+  log("  \u2502  SolonGate SDK injected successfully!         \u2502");
+  log("  \u2502                                               \u2502");
+  log("  \u2502  McpServer \u2192 SecureMcpServer                  \u2502");
+  log("  \u2502  All tool() calls are now auto-protected.     \u2502");
+  log("  \u2502                                               \u2502");
+  log("  \u2502  Set your API key:                             \u2502");
+  log("  \u2502    export SOLONGATE_API_KEY=sg_live_xxx        \u2502");
+  log("  \u2502                                               \u2502");
+  log("  \u2502  To undo:                                     \u2502");
+  log("  \u2502    npx @solongate/proxy inject --restore       \u2502");
+  log("  \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518");
+  log("");
+}
+main().catch((err) => {
+  log(`Fatal: ${err instanceof Error ? err.message : String(err)}`);
+  process.exit(1);
+});

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.1.2",
+  "version": "0.1.4",
   "description": "MCP security proxy — protect any MCP server with policies, input validation, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {
@@ -51,13 +51,13 @@
     "node": ">=18.0.0"
   },
   "dependencies": {
-    "@modelcontextprotocol/sdk": "^1.12.0",
+    "@modelcontextprotocol/sdk": "^1.26.0",
     "zod": "^3.25.0"
   },
   "devDependencies": {
-    "@solongate/sdk": "workspace:*",
     "@solongate/core": "workspace:*",
     "@solongate/policy-engine": "workspace:*",
+    "@solongate/sdk": "workspace:*",
     "@solongate/tsconfig": "workspace:*",
     "tsup": "^8.3.0",
     "tsx": "^4.19.0",