npm - @solongate/proxy - Versions diffs - 0.38.0 → 0.40.0 - Mend

@solongate/proxy 0.38.0 → 0.40.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.js CHANGED Viewed

@@ -809,7 +809,7 @@ function installGeminiConfig(clientDir, guardCmd, auditCmd, _stopCmd, wrappedMcp
   console.log(`  ${existingStr ? "Updated" : "Created"} ${settingsPath}`);
   return "installed";
 }
-function installOpenClawConfig(clientDir) {
+function installOpenClawConfig(_clientDir) {
   const yamlPath = resolve3("openclaw.yaml");
   const pluginLine = "@solongate/openclaw-plugin";
   if (existsSync4(yamlPath)) {
@@ -817,11 +817,30 @@ function installOpenClawConfig(clientDir) {
     if (content.includes(pluginLine)) {
       return "skipped";
     }
+    if (content.includes("plugins:")) {
+      const updated = content.replace(
+        /^(plugins:\s*\n)/m,
+        `$1  - "${pluginLine}"
+`
+      );
+      writeFileSync2(yamlPath, updated);
+    } else {
+      const separator = content.endsWith("\n") ? "" : "\n";
+      writeFileSync2(yamlPath, content + `${separator}
+plugins:
+  - "${pluginLine}"
+`);
+    }
+  } else {
+    writeFileSync2(yamlPath, `# OpenClaw configuration
+# SolonGate security plugin \u2014 manage policies at https://dashboard.solongate.com
+plugins:
+  - "${pluginLine}"
+`);
   }
-  console.log(`  OpenClaw uses plugins, not hooks. Add to your openclaw.yaml:`);
-  console.log(`    plugins:`);
-  console.log(`      - "${pluginLine}"`);
-  console.log(`    Then: npm install ${pluginLine}`);
+  console.log(`  Updated openclaw.yaml with SolonGate plugin`);
+  console.log(`  \u2192 Run: npm install ${pluginLine}`);
   return "installed";
 }
 function ensureEnvFile() {
@@ -5707,6 +5726,27 @@ var AiJudge = class _AiJudge {
       }
       this.consecutiveFailures = 0;
     }
+    const argStr = JSON.stringify(args).toLowerCase();
+    const hasShellTricks = /\$[\({]|`|<\(|>\(|\beval\b|\bexec\b|\bsource\b|\bxargs\b/.test(argStr);
+    const hasWildcard = /[*?]/.test(argStr);
+    let couldMatchProtected = hasShellTricks || hasWildcard;
+    if (!couldMatchProtected) {
+      const allProtected = [...this.protectedFiles, ...this.protectedPaths];
+      for (const p of allProtected) {
+        const core = p.replace(/[*?[\]{}]/g, "").replace(/^\.+/, "").toLowerCase();
+        if (core && core.length >= 2 && argStr.includes(core)) {
+          couldMatchProtected = true;
+          break;
+        }
+      }
+    }
+    if (!couldMatchProtected) {
+      return {
+        decision: "ALLOW",
+        reason: "No protected file/path referenced in arguments",
+        confidence: 1
+      };
+    }
     const sanitizedArgs = this.sanitizeArgs(args);
     const userMessage = JSON.stringify({
       tool: toolName,

package/dist/init.js CHANGED Viewed

@@ -392,7 +392,7 @@ function installGeminiConfig(clientDir, guardCmd, auditCmd, _stopCmd, wrappedMcp
   console.log(`  ${existingStr ? "Updated" : "Created"} ${settingsPath}`);
   return "installed";
 }
-function installOpenClawConfig(clientDir) {
+function installOpenClawConfig(_clientDir) {
   const yamlPath = resolve("openclaw.yaml");
   const pluginLine = "@solongate/openclaw-plugin";
   if (existsSync(yamlPath)) {
@@ -400,11 +400,30 @@ function installOpenClawConfig(clientDir) {
     if (content.includes(pluginLine)) {
       return "skipped";
     }
+    if (content.includes("plugins:")) {
+      const updated = content.replace(
+        /^(plugins:\s*\n)/m,
+        `$1  - "${pluginLine}"
+`
+      );
+      writeFileSync(yamlPath, updated);
+    } else {
+      const separator = content.endsWith("\n") ? "" : "\n";
+      writeFileSync(yamlPath, content + `${separator}
+plugins:
+  - "${pluginLine}"
+`);
+    }
+  } else {
+    writeFileSync(yamlPath, `# OpenClaw configuration
+# SolonGate security plugin \u2014 manage policies at https://dashboard.solongate.com
+plugins:
+  - "${pluginLine}"
+`);
   }
-  console.log(`  OpenClaw uses plugins, not hooks. Add to your openclaw.yaml:`);
-  console.log(`    plugins:`);
-  console.log(`      - "${pluginLine}"`);
-  console.log(`    Then: npm install ${pluginLine}`);
+  console.log(`  Updated openclaw.yaml with SolonGate plugin`);
+  console.log(`  \u2192 Run: npm install ${pluginLine}`);
   return "installed";
 }
 function ensureEnvFile() {

package/dist/lib.js CHANGED Viewed

@@ -4006,6 +4006,27 @@ var AiJudge = class _AiJudge {
       }
       this.consecutiveFailures = 0;
     }
+    const argStr = JSON.stringify(args).toLowerCase();
+    const hasShellTricks = /\$[\({]|`|<\(|>\(|\beval\b|\bexec\b|\bsource\b|\bxargs\b/.test(argStr);
+    const hasWildcard = /[*?]/.test(argStr);
+    let couldMatchProtected = hasShellTricks || hasWildcard;
+    if (!couldMatchProtected) {
+      const allProtected = [...this.protectedFiles, ...this.protectedPaths];
+      for (const p of allProtected) {
+        const core = p.replace(/[*?[\]{}]/g, "").replace(/^\.+/, "").toLowerCase();
+        if (core && core.length >= 2 && argStr.includes(core)) {
+          couldMatchProtected = true;
+          break;
+        }
+      }
+    }
+    if (!couldMatchProtected) {
+      return {
+        decision: "ALLOW",
+        reason: "No protected file/path referenced in arguments",
+        confidence: 1
+      };
+    }
     const sanitizedArgs = this.sanitizeArgs(args);
     const userMessage = JSON.stringify({
       tool: toolName,

package/hooks/guard.mjs CHANGED Viewed

@@ -1194,6 +1194,30 @@ process.stdin.on('end', async () => {
             }
           }
+          // Pre-filter: skip AI Judge if tool args clearly don't touch any protected file/path.
+          // Only call LLM when there's a potential match or obfuscation attempt.
+          const argStr = JSON.stringify(args).toLowerCase();
+          const hasShellTricks = /\$[\({]|`|<\(|>\(|\beval\b|\bexec\b|\bsource\b|\bxargs\b/.test(argStr);
+          const hasWildcard = /[*?]/.test(argStr);
+          let couldMatchProtected = hasShellTricks || hasWildcard;
+          if (!couldMatchProtected) {
+            // Check if any protected file/path name (without glob chars) appears in args
+            const allProtected = [...protectedFiles, ...protectedPathsList];
+            for (const p of allProtected) {
+              // Strip glob chars to get the core name: "*.env*" → "env", ".solongate" → "solongate"
+              const core = p.replace(/[*?[\]{}]/g, '').replace(/^\.+/, '').toLowerCase();
+              if (core && core.length >= 2 && argStr.includes(core)) {
+                couldMatchProtected = true;
+                break;
+              }
+            }
+          }
+          // If args clearly don't reference any protected pattern, skip LLM — instant ALLOW
+          if (!couldMatchProtected) {
+            // No need to call AI Judge — nothing to protect here
+          } else {
           const judgePayload = JSON.stringify({
             tool: toolName,
             arguments: args,
@@ -1262,6 +1286,8 @@ Respond with ONLY valid JSON: {"decision": "ALLOW" or "DENY", "reason": "brief e
           }
           // Auth/config errors (401, 403) → skip AI Judge, don't DENY
           // Other LLM errors → skip too (policy engine already evaluated)
+          } // end else (couldMatchProtected)
         } catch {
           // Timeout or parse error → skip AI Judge (policy engine already passed)
         }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.38.0",
+  "version": "0.40.0",
   "description": "AI tool security proxy — protect any AI tool server with customizable policies, path/command constraints, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {