@solongate/proxy 0.33.0 → 0.35.0

package/dist/index.js

@@ -274,6 +274,9 @@ function parseArgs(argv) {
       aiJudgeApiKey = process.env.GROQ_API_KEY;
     }
   }
+  if (aiJudgeApiKey && (aiJudgeApiKey.includes("your_") || aiJudgeApiKey.includes("_here") || aiJudgeApiKey.length < 10)) {
+    aiJudgeApiKey = void 0;
+  }
   const aiJudge = aiJudgeEnabled ? {
     enabled: true,
     model: aiJudgeModel,
@@ -533,7 +536,7 @@ function isAlreadyProtected(server) {
   }
   return false;
 }
-function wrapServer(serverName, server, policy, agentName) {
+function wrapServer(serverName, server, policy, agentName, aiJudge) {
   const env = { ...server.env ?? {} };
   env.SOLONGATE_API_KEY = "${SOLONGATE_API_KEY}";
   const proxyArgs = ["-y", "@solongate/proxy@latest"];
@@ -543,6 +546,9 @@ function wrapServer(serverName, server, policy, agentName) {
   if (agentName) {
     proxyArgs.push("--agent-name", agentName);
   }
+  if (aiJudge) {
+    proxyArgs.push("--ai-judge");
+  }
   proxyArgs.push("--verbose", "--", server.command, ...server.args ?? []);
   return {
     command: "npx",
@@ -563,7 +569,8 @@ function parseInitArgs(argv) {
   const args = argv.slice(2);
   const options = {
     all: false,
-    tools: []
+    tools: [],
+    aiJudge: false
   };
   for (let i = 0; i < args.length; i++) {
     switch (args[i]) {
@@ -588,6 +595,9 @@ function parseInitArgs(argv) {
       case "--openclaw":
         options.tools.push("openclaw");
         break;
+      case "--ai-judge":
+        options.aiJudge = true;
+        break;
       case "--help":
       case "-h":
         printHelp();
@@ -615,8 +625,13 @@ AI TOOL HOOKS (default: all)
   --gemini            Install hooks for Gemini CLI
   --openclaw          Install hooks for OpenClaw
 
+SECURITY LAYERS
+  --ai-judge          Enable AI Judge (semantic intent analysis via LLM)
+                      Requires GROQ_API_KEY in .env (free at https://console.groq.com/keys)
+
 EXAMPLES
   npx @solongate/proxy init --all                          # Protect everything, all tools
+  npx @solongate/proxy init --all --ai-judge               # With AI Judge enabled
   npx @solongate/proxy init --all --claude-code --gemini   # Only Claude Code + Gemini hooks
   npx @solongate/proxy init --all --policy policy.json     # With custom policy
 `;
@@ -793,10 +808,10 @@ function installGeminiConfig(clientDir, guardCmd, auditCmd, _stopCmd, wrappedMcp
   }
   merged.hooks = {
     BeforeTool: [
-      { matcher: ".*", command: guardCmd }
+      { matcher: ".*", hooks: [{ type: "command", command: guardCmd }] }
     ],
     AfterTool: [
-      { matcher: ".*", command: auditCmd }
+      { matcher: ".*", hooks: [{ type: "command", command: auditCmd }] }
     ]
   };
   const mergedStr = JSON.stringify(merged, null, 2) + "\n";
@@ -1046,7 +1061,7 @@ async function main() {
   const newConfig = { mcpServers: {} };
   for (const name of serverNames) {
     if (toProtect.includes(name)) {
-      newConfig.mcpServers[name] = wrapServer(name, config.mcpServers[name], policyValue);
+      newConfig.mcpServers[name] = wrapServer(name, config.mcpServers[name], policyValue, void 0, options.aiJudge);
     } else {
       newConfig.mcpServers[name] = config.mcpServers[name];
     }
@@ -5671,6 +5686,12 @@ CRITICAL: Only DENY access to files EXPLICITLY in the protected_files list. "cat
 
 Respond with ONLY valid JSON, no markdown, no explanation outside the JSON:
 {"decision": "ALLOW" or "DENY", "reason": "brief one-line explanation", "confidence": 0.0 to 1.0}`;
+var AuthError = class extends Error {
+  constructor(message) {
+    super(message);
+    this.name = "AuthError";
+  }
+};
 var AiJudge = class _AiJudge {
   config;
   protectedFiles;
@@ -5727,6 +5748,13 @@ var AiJudge = class _AiJudge {
       this.consecutiveFailures++;
       this.lastFailureTime = Date.now();
       const message = err instanceof Error ? err.message : String(err);
+      if (err instanceof AuthError) {
+        return {
+          decision: "ALLOW",
+          reason: `AI Judge auth error (skipping): ${message.slice(0, 100)}`,
+          confidence: 0.5
+        };
+      }
       return {
         decision: "DENY",
         reason: `AI Judge error (fail-closed): ${message.slice(0, 100)}`,
@@ -5808,6 +5836,9 @@ var AiJudge = class _AiJudge {
       });
       if (!res.ok) {
         const errBody = await res.text().catch(() => "");
+        if (res.status === 401 || res.status === 403) {
+          throw new AuthError(`LLM auth failed (${res.status}): ${errBody.slice(0, 200)}`);
+        }
         throw new Error(`LLM endpoint returned ${res.status}: ${errBody.slice(0, 200)}`);
       }
       const data = await res.json();
@@ -6048,6 +6079,9 @@ var SolonGateProxy = class {
               if (match) groqKey = match[1].trim();
             }
             if (!groqKey) groqKey = process.env.GROQ_API_KEY;
+            if (groqKey && (groqKey.includes("your_") || groqKey.includes("_here") || groqKey.length < 10)) {
+              groqKey = void 0;
+            }
             if (groqKey) {
               this.config.aiJudge = {
                 enabled: true,

package/dist/init.js

@@ -117,7 +117,7 @@ function isAlreadyProtected(server) {
   }
   return false;
 }
-function wrapServer(serverName, server, policy, agentName) {
+function wrapServer(serverName, server, policy, agentName, aiJudge) {
   const env = { ...server.env ?? {} };
   env.SOLONGATE_API_KEY = "${SOLONGATE_API_KEY}";
   const proxyArgs = ["-y", "@solongate/proxy@latest"];
@@ -127,6 +127,9 @@ function wrapServer(serverName, server, policy, agentName) {
   if (agentName) {
     proxyArgs.push("--agent-name", agentName);
   }
+  if (aiJudge) {
+    proxyArgs.push("--ai-judge");
+  }
   proxyArgs.push("--verbose", "--", server.command, ...server.args ?? []);
   return {
     command: "npx",
@@ -147,7 +150,8 @@ function parseInitArgs(argv) {
   const args = argv.slice(2);
   const options = {
     all: false,
-    tools: []
+    tools: [],
+    aiJudge: false
   };
   for (let i = 0; i < args.length; i++) {
     switch (args[i]) {
@@ -172,6 +176,9 @@ function parseInitArgs(argv) {
       case "--openclaw":
         options.tools.push("openclaw");
         break;
+      case "--ai-judge":
+        options.aiJudge = true;
+        break;
       case "--help":
       case "-h":
         printHelp();
@@ -199,8 +206,13 @@ AI TOOL HOOKS (default: all)
   --gemini            Install hooks for Gemini CLI
   --openclaw          Install hooks for OpenClaw
 
+SECURITY LAYERS
+  --ai-judge          Enable AI Judge (semantic intent analysis via LLM)
+                      Requires GROQ_API_KEY in .env (free at https://console.groq.com/keys)
+
 EXAMPLES
   npx @solongate/proxy init --all                          # Protect everything, all tools
+  npx @solongate/proxy init --all --ai-judge               # With AI Judge enabled
   npx @solongate/proxy init --all --claude-code --gemini   # Only Claude Code + Gemini hooks
   npx @solongate/proxy init --all --policy policy.json     # With custom policy
 `;
@@ -379,10 +391,10 @@ function installGeminiConfig(clientDir, guardCmd, auditCmd, _stopCmd, wrappedMcp
   }
   merged.hooks = {
     BeforeTool: [
-      { matcher: ".*", command: guardCmd }
+      { matcher: ".*", hooks: [{ type: "command", command: guardCmd }] }
     ],
     AfterTool: [
-      { matcher: ".*", command: auditCmd }
+      { matcher: ".*", hooks: [{ type: "command", command: auditCmd }] }
     ]
   };
   const mergedStr = JSON.stringify(merged, null, 2) + "\n";
@@ -632,7 +644,7 @@ async function main() {
   const newConfig = { mcpServers: {} };
   for (const name of serverNames) {
     if (toProtect.includes(name)) {
-      newConfig.mcpServers[name] = wrapServer(name, config.mcpServers[name], policyValue);
+      newConfig.mcpServers[name] = wrapServer(name, config.mcpServers[name], policyValue, void 0, options.aiJudge);
     } else {
       newConfig.mcpServers[name] = config.mcpServers[name];
     }

package/dist/lib.js

@@ -3973,6 +3973,12 @@ CRITICAL: Only DENY access to files EXPLICITLY in the protected_files list. "cat
 
 Respond with ONLY valid JSON, no markdown, no explanation outside the JSON:
 {"decision": "ALLOW" or "DENY", "reason": "brief one-line explanation", "confidence": 0.0 to 1.0}`;
+var AuthError = class extends Error {
+  constructor(message) {
+    super(message);
+    this.name = "AuthError";
+  }
+};
 var AiJudge = class _AiJudge {
   config;
   protectedFiles;
@@ -4029,6 +4035,13 @@ var AiJudge = class _AiJudge {
       this.consecutiveFailures++;
       this.lastFailureTime = Date.now();
       const message = err instanceof Error ? err.message : String(err);
+      if (err instanceof AuthError) {
+        return {
+          decision: "ALLOW",
+          reason: `AI Judge auth error (skipping): ${message.slice(0, 100)}`,
+          confidence: 0.5
+        };
+      }
       return {
         decision: "DENY",
         reason: `AI Judge error (fail-closed): ${message.slice(0, 100)}`,
@@ -4110,6 +4123,9 @@ var AiJudge = class _AiJudge {
       });
       if (!res.ok) {
         const errBody = await res.text().catch(() => "");
+        if (res.status === 401 || res.status === 403) {
+          throw new AuthError(`LLM auth failed (${res.status}): ${errBody.slice(0, 200)}`);
+        }
         throw new Error(`LLM endpoint returned ${res.status}: ${errBody.slice(0, 200)}`);
       }
       const data = await res.json();
@@ -4350,6 +4366,9 @@ var SolonGateProxy = class {
               if (match) groqKey = match[1].trim();
             }
             if (!groqKey) groqKey = process.env.GROQ_API_KEY;
+            if (groqKey && (groqKey.includes("your_") || groqKey.includes("_here") || groqKey.length < 10)) {
+              groqKey = void 0;
+            }
             if (groqKey) {
               this.config.aiJudge = {
                 enabled: true,

package/hooks/audit.mjs

@@ -26,9 +26,8 @@ const API_KEY = process.env.SOLONGATE_API_KEY || dotenv.SOLONGATE_API_KEY || '';
 const API_URL = process.env.SOLONGATE_API_URL || dotenv.SOLONGATE_API_URL || 'https://api.solongate.com';
 
 // Agent identity from CLI args: node audit.mjs <agent_id> <agent_name>
-// Can be overridden at runtime when stdin contains gemini_version
-let AGENT_ID = process.argv[2] || 'claude-code';
-let AGENT_NAME = process.argv[3] || 'Claude Code';
+const AGENT_ID = process.argv[2] || 'claude-code';
+const AGENT_NAME = process.argv[3] || 'Claude Code';
 
 if (!API_KEY || !API_KEY.startsWith('sg_live_')) process.exit(0);
 
@@ -45,12 +44,6 @@ process.stdin.on('end', async () => {
       afs(resolve('.solongate', '.debug-audit-log'), debugLine);
     } catch {}
 
-    // Auto-detect agent from stdin data (overrides CLI args if detected)
-    if (data.gemini_version) {
-      AGENT_ID = 'gemini-cli';
-      AGENT_NAME = 'Gemini CLI';
-    }
-
     let toolName = data.tool_name || data.toolName || '';
     let toolInput = data.tool_input || data.toolInput || data.params || {};
     if (!toolName) toolName = 'unknown';

package/hooks/guard.mjs

@@ -41,9 +41,8 @@ const API_KEY = process.env.SOLONGATE_API_KEY || dotenv.SOLONGATE_API_KEY || '';
 const API_URL = process.env.SOLONGATE_API_URL || dotenv.SOLONGATE_API_URL || 'https://api.solongate.com';
 
 // Agent identity from CLI args: node guard.mjs <agent_id> <agent_name>
-// Can be overridden at runtime when stdin contains gemini_version
-let AGENT_ID = process.argv[2] || 'claude-code';
-let AGENT_NAME = process.argv[3] || 'Claude Code';
+const AGENT_ID = process.argv[2] || 'claude-code';
+const AGENT_NAME = process.argv[3] || 'Claude Code';
 
 // ── Per-tool block/allow output ──
 // Response format depends on the agent:
@@ -366,12 +365,6 @@ process.stdin.on('end', async () => {
   try {
     const raw = JSON.parse(input);
 
-    // Auto-detect agent from stdin data (overrides CLI args if detected)
-    if (raw.gemini_version) {
-      AGENT_ID = 'gemini-cli';
-      AGENT_NAME = 'Gemini CLI';
-    }
-
     // Debug: append guard invocation to debug log
     try {
       const { appendFileSync: afs, mkdirSync: mds } = await import('node:fs');

package/hooks/stop.mjs

@@ -27,9 +27,8 @@ const API_KEY = process.env.SOLONGATE_API_KEY || dotenv.SOLONGATE_API_KEY || '';
 const API_URL = process.env.SOLONGATE_API_URL || dotenv.SOLONGATE_API_URL || 'https://api.solongate.com';
 
 // Agent identity from CLI args: node stop.mjs <agent_id> <agent_name>
-// Can be overridden at runtime when stdin contains gemini_version
-let AGENT_ID = process.argv[2] || 'claude-code';
-let AGENT_NAME = process.argv[3] || 'Claude Code';
+const AGENT_ID = process.argv[2] || 'claude-code';
+const AGENT_NAME = process.argv[3] || 'Claude Code';
 
 if (!API_KEY || !API_KEY.startsWith('sg_live_')) process.exit(0);
 
@@ -43,12 +42,6 @@ let input = '';
 process.stdin.on('data', c => input += c);
 process.stdin.on('end', async () => {
   try {
-    // Auto-detect agent from stdin data
-    try {
-      const raw = JSON.parse(input);
-      if (raw.gemini_version) { AGENT_ID = 'gemini-cli'; AGENT_NAME = 'Gemini CLI'; }
-    } catch {}
-
     // Check if tool calls were made in this turn
     if (existsSync(flagFile)) {
       // Tool calls happened → audit.mjs already logged them. Clean up flag.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.33.0",
+  "version": "0.35.0",
   "description": "AI tool security proxy — protect any AI tool server with customizable policies, path/command constraints, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {