@solongate/proxy 0.28.4 → 0.28.6

package/dist/index.js

@@ -678,33 +678,16 @@ function installHooks(selectedTools = []) {
   const auditPath = join(hooksDir, "audit.mjs");
   writeFileSync2(auditPath, readHookScript("audit.mjs"));
   console.log(`  Created ${auditPath}`);
-  const hookSettings = {
-    hooks: {
-      PreToolUse: [
-        {
-          matcher: "",
-          hooks: [
-            { type: "command", command: "node .solongate/hooks/guard.mjs" }
-          ]
-        }
-      ],
-      PostToolUse: [
-        {
-          matcher: "",
-          hooks: [
-            { type: "command", command: "node .solongate/hooks/audit.mjs" }
-          ]
-        }
-      ]
-    }
-  };
+  const stopPath = join(hooksDir, "stop.mjs");
+  writeFileSync2(stopPath, readHookScript("stop.mjs"));
+  console.log(`  Created ${stopPath}`);
   const allClients = [
-    { name: "Claude Code", dir: ".claude", key: "claude" },
-    { name: "Cursor", dir: ".cursor", key: "cursor" },
-    { name: "Gemini CLI", dir: ".gemini", key: "gemini" },
-    { name: "Antigravity", dir: ".antigravity", key: "antigravity" },
-    { name: "OpenClaw", dir: ".openclaw", key: "openclaw" },
-    { name: "Perplexity", dir: ".perplexity", key: "perplexity" }
+    { name: "Claude Code", dir: ".claude", key: "claude", agentId: "claude-code", agentName: "Claude Code" },
+    { name: "Cursor", dir: ".cursor", key: "cursor", agentId: "cursor", agentName: "Cursor" },
+    { name: "Gemini CLI", dir: ".gemini", key: "gemini", agentId: "gemini-cli", agentName: "Gemini CLI" },
+    { name: "Antigravity", dir: ".antigravity", key: "antigravity", agentId: "antigravity", agentName: "Antigravity" },
+    { name: "OpenClaw", dir: ".openclaw", key: "openclaw", agentId: "openclaw", agentName: "OpenClaw" },
+    { name: "Perplexity", dir: ".perplexity", key: "perplexity", agentId: "perplexity", agentName: "Perplexity" }
   ];
   const clients = selectedTools.length > 0 ? allClients.filter((c3) => selectedTools.includes(c3.key)) : allClients;
   const activatedNames = [];
@@ -712,12 +695,26 @@ function installHooks(selectedTools = []) {
     const clientDir = resolve3(client.dir);
     mkdirSync2(clientDir, { recursive: true });
     const settingsPath = join(clientDir, "settings.json");
+    const guardCmd = `node .solongate/hooks/guard.mjs ${client.agentId} "${client.agentName}"`;
+    const auditCmd = `node .solongate/hooks/audit.mjs ${client.agentId} "${client.agentName}"`;
+    const stopCmd = `node .solongate/hooks/stop.mjs ${client.agentId} "${client.agentName}"`;
+    const hookSettings = {
+      PreToolUse: [
+        { matcher: "", hooks: [{ type: "command", command: guardCmd }] }
+      ],
+      PostToolUse: [
+        { matcher: "", hooks: [{ type: "command", command: auditCmd }] }
+      ],
+      Stop: [
+        { matcher: "", hooks: [{ type: "command", command: stopCmd }] }
+      ]
+    };
     let existing = {};
     try {
       existing = JSON.parse(readFileSync4(settingsPath, "utf-8"));
     } catch {
     }
-    const merged = { ...existing, hooks: hookSettings.hooks };
+    const merged = { ...existing, hooks: hookSettings };
     writeFileSync2(settingsPath, JSON.stringify(merged, null, 2) + "\n");
     console.log(`  Created ${settingsPath}`);
     activatedNames.push(client.name);
@@ -726,6 +723,7 @@ function installHooks(selectedTools = []) {
   console.log("  Hooks installed:");
   console.log("  guard.mjs  \u2192 blocks policy-violating calls (pre-execution)");
   console.log("  audit.mjs  \u2192 logs all calls to dashboard (post-execution)");
+  console.log("  stop.mjs   \u2192 tracks text-only responses (no tool calls)");
   console.log(`  Activated for: ${activatedNames.join(", ")}`);
 }
 function ensureEnvFile() {

package/dist/init.js

@@ -261,33 +261,16 @@ function installHooks(selectedTools = []) {
   const auditPath = join(hooksDir, "audit.mjs");
   writeFileSync(auditPath, readHookScript("audit.mjs"));
   console.log(`  Created ${auditPath}`);
-  const hookSettings = {
-    hooks: {
-      PreToolUse: [
-        {
-          matcher: "",
-          hooks: [
-            { type: "command", command: "node .solongate/hooks/guard.mjs" }
-          ]
-        }
-      ],
-      PostToolUse: [
-        {
-          matcher: "",
-          hooks: [
-            { type: "command", command: "node .solongate/hooks/audit.mjs" }
-          ]
-        }
-      ]
-    }
-  };
+  const stopPath = join(hooksDir, "stop.mjs");
+  writeFileSync(stopPath, readHookScript("stop.mjs"));
+  console.log(`  Created ${stopPath}`);
   const allClients = [
-    { name: "Claude Code", dir: ".claude", key: "claude" },
-    { name: "Cursor", dir: ".cursor", key: "cursor" },
-    { name: "Gemini CLI", dir: ".gemini", key: "gemini" },
-    { name: "Antigravity", dir: ".antigravity", key: "antigravity" },
-    { name: "OpenClaw", dir: ".openclaw", key: "openclaw" },
-    { name: "Perplexity", dir: ".perplexity", key: "perplexity" }
+    { name: "Claude Code", dir: ".claude", key: "claude", agentId: "claude-code", agentName: "Claude Code" },
+    { name: "Cursor", dir: ".cursor", key: "cursor", agentId: "cursor", agentName: "Cursor" },
+    { name: "Gemini CLI", dir: ".gemini", key: "gemini", agentId: "gemini-cli", agentName: "Gemini CLI" },
+    { name: "Antigravity", dir: ".antigravity", key: "antigravity", agentId: "antigravity", agentName: "Antigravity" },
+    { name: "OpenClaw", dir: ".openclaw", key: "openclaw", agentId: "openclaw", agentName: "OpenClaw" },
+    { name: "Perplexity", dir: ".perplexity", key: "perplexity", agentId: "perplexity", agentName: "Perplexity" }
   ];
   const clients = selectedTools.length > 0 ? allClients.filter((c2) => selectedTools.includes(c2.key)) : allClients;
   const activatedNames = [];
@@ -295,12 +278,26 @@ function installHooks(selectedTools = []) {
     const clientDir = resolve(client.dir);
     mkdirSync(clientDir, { recursive: true });
     const settingsPath = join(clientDir, "settings.json");
+    const guardCmd = `node .solongate/hooks/guard.mjs ${client.agentId} "${client.agentName}"`;
+    const auditCmd = `node .solongate/hooks/audit.mjs ${client.agentId} "${client.agentName}"`;
+    const stopCmd = `node .solongate/hooks/stop.mjs ${client.agentId} "${client.agentName}"`;
+    const hookSettings = {
+      PreToolUse: [
+        { matcher: "", hooks: [{ type: "command", command: guardCmd }] }
+      ],
+      PostToolUse: [
+        { matcher: "", hooks: [{ type: "command", command: auditCmd }] }
+      ],
+      Stop: [
+        { matcher: "", hooks: [{ type: "command", command: stopCmd }] }
+      ]
+    };
     let existing = {};
     try {
       existing = JSON.parse(readFileSync(settingsPath, "utf-8"));
     } catch {
     }
-    const merged = { ...existing, hooks: hookSettings.hooks };
+    const merged = { ...existing, hooks: hookSettings };
     writeFileSync(settingsPath, JSON.stringify(merged, null, 2) + "\n");
     console.log(`  Created ${settingsPath}`);
     activatedNames.push(client.name);
@@ -309,6 +306,7 @@ function installHooks(selectedTools = []) {
   console.log("  Hooks installed:");
   console.log("  guard.mjs  \u2192 blocks policy-violating calls (pre-execution)");
   console.log("  audit.mjs  \u2192 logs all calls to dashboard (post-execution)");
+  console.log("  stop.mjs   \u2192 tracks text-only responses (no tool calls)");
   console.log(`  Activated for: ${activatedNames.join(", ")}`);
 }
 function ensureEnvFile() {

package/hooks/audit.mjs

@@ -4,8 +4,8 @@
  * Logs tool execution results to SolonGate Cloud.
  * Auto-installed by: npx @solongate/proxy init
  */
-import { readFileSync, existsSync } from 'node:fs';
-import { resolve } from 'node:path';
+import { readFileSync, existsSync, writeFileSync, mkdirSync } from 'node:fs';
+import { resolve, join } from 'node:path';
 
 function loadEnvKey(dir) {
   try {
@@ -25,6 +25,10 @@ const dotenv = loadEnvKey(process.cwd());
 const API_KEY = process.env.SOLONGATE_API_KEY || dotenv.SOLONGATE_API_KEY || '';
 const API_URL = process.env.SOLONGATE_API_URL || dotenv.SOLONGATE_API_URL || 'https://api.solongate.com';
 
+// Agent identity from CLI args: node audit.mjs <agent_id> <agent_name>
+const AGENT_ID = process.argv[2] || 'claude-code';
+const AGENT_NAME = process.argv[3] || 'Claude Code';
+
 if (!API_KEY || !API_KEY.startsWith('sg_live_')) process.exit(0);
 
 let input = '';
@@ -50,6 +54,13 @@ process.stdin.on('end', async () => {
         : v;
     }
 
+    // Write flag so stop.mjs knows tool calls happened (skip text-only ALLOW)
+    try {
+      const flagDir = resolve('.solongate');
+      mkdirSync(flagDir, { recursive: true });
+      writeFileSync(join(flagDir, '.last-tool-call'), Date.now().toString());
+    } catch {}
+
     await fetch(`${API_URL}/api/v1/audit-logs`, {
       method: 'POST',
       headers: {
@@ -63,8 +74,8 @@ process.stdin.on('end', async () => {
         reason: hasError ? 'tool returned error' : 'allowed',
         source: 'claude-code-hook',
         evaluationTimeMs: 0,
-        agent_id: 'claude-code',
-        agent_name: 'Claude Code',
+        agent_id: AGENT_ID,
+        agent_name: AGENT_NAME,
       }),
       signal: AbortSignal.timeout(5000),
     });

package/hooks/guard.mjs

@@ -4,11 +4,11 @@
  * Reads policy.json and blocks tool calls that violate constraints.
  * Also runs prompt injection detection (Stage 1 rules) on tool arguments.
  * Exit code 2 = BLOCK, exit code 0 = ALLOW.
- * Logs ALL decisions (ALLOW + DENY) to SolonGate Cloud.
+ * Logs DENY decisions to SolonGate Cloud. ALLOWs are logged by audit.mjs.
  * Auto-installed by: npx @solongate/proxy init
  */
-import { readFileSync, existsSync, statSync } from 'node:fs';
-import { resolve } from 'node:path';
+import { readFileSync, existsSync, statSync, writeFileSync, mkdirSync } from 'node:fs';
+import { resolve, join } from 'node:path';
 
 // Safe file read with size limit (1MB max) to prevent DoS via large files
 const MAX_FILE_READ = 1024 * 1024; // 1MB
@@ -40,6 +40,19 @@ const dotenv = loadEnvKey(hookCwdEarly);
 const API_KEY = process.env.SOLONGATE_API_KEY || dotenv.SOLONGATE_API_KEY || '';
 const API_URL = process.env.SOLONGATE_API_URL || dotenv.SOLONGATE_API_URL || 'https://api.solongate.com';
 
+// Agent identity from CLI args: node guard.mjs <agent_id> <agent_name>
+const AGENT_ID = process.argv[2] || 'claude-code';
+const AGENT_NAME = process.argv[3] || 'Claude Code';
+
+// Write flag file so stop.mjs knows a tool call (DENY) happened and doesn't log extra ALLOW
+function writeDenyFlag() {
+  try {
+    const flagDir = resolve('.solongate');
+    mkdirSync(flagDir, { recursive: true });
+    writeFileSync(join(flagDir, '.last-tool-call'), Date.now().toString());
+  } catch {}
+}
+
 // ── Prompt Injection Detection (Stage 1: Rule-Based) ──
 const PI_CATEGORIES = [
   {
@@ -346,12 +359,13 @@ process.stdin.on('end', async () => {
               tool: data.tool_name || '', arguments: args,
               decision: 'DENY', reason,
               source: 'claude-code-guard',
-              agent_id: 'claude-code', agent_name: 'Claude Code',
+              agent_id: AGENT_ID, agent_name: AGENT_NAME,
             }),
             signal: AbortSignal.timeout(3000),
           });
         } catch {}
       }
+      writeDenyFlag();
       process.stderr.write(reason);
       process.exit(2);
     }
@@ -978,7 +992,7 @@ process.stdin.on('end', async () => {
               decision: isLogOnly ? 'ALLOW' : 'DENY',
               reason: msg,
               source: 'claude-code-guard',
-              agent_id: 'claude-code', agent_name: 'Claude Code',
+              agent_id: AGENT_ID, agent_name: AGENT_NAME,
               pi_detected: true,
               pi_trust_score: piResult.trustScore,
               pi_blocked: !isLogOnly,
@@ -1015,6 +1029,7 @@ process.stdin.on('end', async () => {
         process.stderr.write(msg);
         // Fall through to policy evaluation (don't exit)
       } else {
+        writeDenyFlag();
         process.stderr.write(msg);
         process.exit(2);
       }
@@ -1039,7 +1054,7 @@ process.stdin.on('end', async () => {
               decision: 'ALLOW',
               reason: 'Prompt injection detected but below threshold (trust: ' + (piResult.trustScore * 100).toFixed(0) + '%)',
               source: 'claude-code-guard',
-              agent_id: 'claude-code', agent_name: 'Claude Code',
+              agent_id: AGENT_ID, agent_name: AGENT_NAME,
               pi_detected: true,
               pi_trust_score: piResult.trustScore,
               pi_blocked: false,
@@ -1188,7 +1203,7 @@ Respond with ONLY valid JSON: {"decision": "ALLOW" or "DENY", "reason": "brief e
             tool: toolName, arguments: args,
             decision: 'DENY', reason,
             source: 'claude-code-guard',
-            agent_id: 'claude-code', agent_name: 'Claude Code',
+            agent_id: AGENT_ID, agent_name: AGENT_NAME,
           };
           if (piResult) {
             logEntry.pi_detected = true;
@@ -1205,6 +1220,7 @@ Respond with ONLY valid JSON: {"decision": "ALLOW" or "DENY", "reason": "brief e
           });
         } catch {}
       }
+      writeDenyFlag();
       process.stderr.write(reason);
       process.exit(2);
     }

package/hooks/stop.mjs

@@ -0,0 +1,75 @@
+#!/usr/bin/env node
+/**
+ * SolonGate Stop Hook (Stop event)
+ * Logs a single ALLOW when Claude responds WITHOUT any tool calls.
+ * If tool calls were made, audit.mjs already logged them — this hook skips.
+ * Auto-installed by: npx @solongate/proxy init
+ */
+import { readFileSync, existsSync, unlinkSync, writeFileSync } from 'node:fs';
+import { resolve, join } from 'node:path';
+
+function loadEnvKey(dir) {
+  try {
+    const envPath = resolve(dir, '.env');
+    if (!existsSync(envPath)) return {};
+    const lines = readFileSync(envPath, 'utf-8').split('\n');
+    const env = {};
+    for (const line of lines) {
+      const m = line.match(/^([A-Z_]+)=(.*)$/);
+      if (m) env[m[1]] = m[2].replace(/^["']|["']$/g, '').trim();
+    }
+    return env;
+  } catch { return {}; }
+}
+
+const dotenv = loadEnvKey(process.cwd());
+const API_KEY = process.env.SOLONGATE_API_KEY || dotenv.SOLONGATE_API_KEY || '';
+const API_URL = process.env.SOLONGATE_API_URL || dotenv.SOLONGATE_API_URL || 'https://api.solongate.com';
+
+// Agent identity from CLI args: node stop.mjs <agent_id> <agent_name>
+const AGENT_ID = process.argv[2] || 'claude-code';
+const AGENT_NAME = process.argv[3] || 'Claude Code';
+
+if (!API_KEY || !API_KEY.startsWith('sg_live_')) process.exit(0);
+
+// Flag file: audit.mjs writes this when a tool call was logged in this turn.
+// If the flag exists, tool calls were made → skip (already logged).
+// If the flag doesn't exist, no tool calls → log 1 ALLOW for the text response.
+const flagDir = resolve('.solongate');
+const flagFile = join(flagDir, '.last-tool-call');
+
+let input = '';
+process.stdin.on('data', c => input += c);
+process.stdin.on('end', async () => {
+  try {
+    // Check if tool calls were made in this turn
+    if (existsSync(flagFile)) {
+      // Tool calls happened → audit.mjs already logged them. Clean up flag.
+      try { unlinkSync(flagFile); } catch {}
+      process.exit(0);
+    }
+
+    // No tool calls → log 1 ALLOW for the text-only response
+    await fetch(`${API_URL}/api/v1/audit-logs`, {
+      method: 'POST',
+      headers: {
+        'Authorization': `Bearer ${API_KEY}`,
+        'Content-Type': 'application/json',
+      },
+      body: JSON.stringify({
+        tool: '_response',
+        arguments: {},
+        decision: 'ALLOW',
+        reason: 'text response (no tool calls)',
+        source: 'claude-code-hook',
+        evaluationTimeMs: 0,
+        agent_id: AGENT_ID,
+        agent_name: AGENT_NAME,
+      }),
+      signal: AbortSignal.timeout(5000),
+    });
+  } catch {
+    // Silent
+  }
+  process.exit(0);
+});

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.28.4",
+  "version": "0.28.6",
   "description": "MCP security proxy — protect any MCP server with customizable policies, path/command constraints, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {