npm - @solongate/proxy - Versions diffs - 0.47.3 → 0.47.5 - Mend

@solongate/proxy 0.47.3 → 0.47.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md +5 -60
package/dist/index.js +22 -3
package/hooks/guard.bundled.mjs +7536 -7536
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -1,5 +1,10 @@
 # @solongate/proxy
+> **Don't `npm i` this.** There's nothing to install. Run the one-liner below to pair your machine:
+> ```bash
+> npx -y @solongate/proxy@latest login
+> ```
 **Security for AI agents.** SolonGate enforces a security policy on every action an AI agent takes — every tool call is allowed, blocked, or logged before it runs. No code changes.
 ```
@@ -52,66 +57,6 @@ npx @solongate/proxy init --global --restore
 ---
-## Advanced: wrap a single MCP server (proxy mode)
-Instead of the machine-wide guard, you can place SolonGate **in front of one MCP server** so it works with any MCP client (Claude Desktop, Cursor, Windsurf, Cline, Zed, …). Edit your `.mcp.json`:
-```json
-{
-  "mcpServers": {
-    "my-server": {
-      "command": "npx",
-      "args": ["@solongate/proxy", "--policy", "restricted", "--", "node", "./my-server/dist/index.js"]
-    }
-  }
-}
-```
-### Policy presets
-| Preset | Description |
-|--------|-------------|
-| `restricted` | Blocks shell/exec/eval, allows reads and writes **(recommended)** |
-| `read-only` | Only allows read/list/get/search/query operations |
-| `permissive` | Allows all tools, still enforces input validation |
-| `deny-all` | Blocks all tool calls (emergency lockdown) |
-### Custom policy file
-```json
-{
-  "id": "my-policy",
-  "name": "My Custom Policy",
-  "version": 1,
-  "rules": [
-    { "id": "deny-exec", "effect": "DENY", "priority": 100, "toolPattern": "*exec*", "permission": "EXECUTE", "minimumTrustLevel": "UNTRUSTED", "enabled": true },
-    { "id": "allow-rest", "effect": "ALLOW", "priority": 1000, "toolPattern": "*", "permission": "EXECUTE", "minimumTrustLevel": "UNTRUSTED", "enabled": true }
-  ]
-}
-```
-```bash
-npx @solongate/proxy --policy ./my-policy.json -- node my-server.js
-```
-### CLI options
-```
-solongate-proxy [options] -- <server-command> [args...]
-  --policy <preset|file>   Policy preset or JSON file (default: restricted)
-  --name <name>            Proxy display name
-  --verbose                Show detailed error messages
-  --no-input-guard         Disable input validation
-  --rate-limit <n>         Per-tool rate limit (calls/min)
-  --global-rate-limit <n>  Global rate limit (calls/min)
-  --config <file>          Load full config from JSON file
-  --api-key <key>          SolonGate Cloud API key (cloud policy + audit)
-  --api-url <url>          Custom API URL (default: api.solongate.com)
-```
----
 ## Why SolonGate?
 AI agents get direct access to your system — shell, file system, databases, network. A single prompt-injection attack can turn your assistant into an attacker. SolonGate sits between the agent and the action, enforcing your policy on every tool call before it runs, and recording every decision for audit.

package/dist/index.js CHANGED Viewed

@@ -285,7 +285,7 @@ function parseArgs(argv) {
   }
   if (!apiKey) {
     throw new Error(
-      "Not logged in. Run `solongate login` once, or pass --api-key sg_live_xxx.\n\nUsage: solongate login                      (recommended \u2014 no API key)\n   or: solongate --api-key sg_live_xxx -- <command>\n"
+      "Not logged in. Run this once to get started:\n\n  npx -y @solongate/proxy@latest login\n"
     );
   }
   if (!apiKey.startsWith("sg_live_") && !apiKey.startsWith("sg_test_")) {
@@ -341,7 +341,7 @@ function parseArgs(argv) {
   }
   if (upstreamArgs.length === 0) {
     throw new Error(
-      "No upstream server command provided.\n\nUsage: solongate-proxy [options] -- <command> [args...]\n\nExamples:\n  solongate-proxy -- node my-server.js\n  solongate-proxy --policy ./policy.json -- npx @playwright/mcp@latest\n  solongate-proxy --upstream-url http://localhost:3001/mcp\n  solongate-proxy --config solongate.json\n"
+      "No upstream server command provided.\n\nIf you just want to get started, run:\n  npx -y @solongate/proxy@latest login\n"
     );
   }
   const [command, ...commandArgs] = upstreamArgs;
@@ -11568,8 +11568,10 @@ ${msg.content.text}`;
 };
 // src/index.ts
+init_cli_utils();
 var CLI_SUBCOMMANDS = /* @__PURE__ */ new Set(["init", "login", "logout", "create", "inject", "pull", "push", "list", "ls"]);
-if (!CLI_SUBCOMMANDS.has(process.argv[2] ?? "")) {
+var IS_HUMAN_CLI = process.argv.length <= 2 || CLI_SUBCOMMANDS.has(process.argv[2] ?? "");
+if (!IS_HUMAN_CLI) {
   console.log = (...args) => {
     process.stderr.write(`[SolonGate] ${args.map(String).join(" ")}
 `);
@@ -11583,8 +11585,25 @@ if (!CLI_SUBCOMMANDS.has(process.argv[2] ?? "")) {
 `);
   };
 }
+function printWelcome() {
+  console.log("");
+  console.log(`  ${c.bold}${c.blue4}SolonGate${c.reset} ${c.dim}\u2014 secure gateway for your AI agents${c.reset}`);
+  console.log("");
+  console.log("  Get started with one command:");
+  console.log("");
+  console.log(`    ${c.cyan}npx -y @solongate/proxy@latest login${c.reset}`);
+  console.log("");
+  console.log(`  ${c.dim}This pairs your device and protects every Claude Code session${c.reset}`);
+  console.log(`  ${c.dim}on this machine with your cloud policy. Manage it at${c.reset}`);
+  console.log(`  ${c.cyan}https://dashboard.solongate.com${c.reset}`);
+  console.log("");
+}
 async function main6() {
   const subcommand = process.argv[2];
+  if (process.argv.length <= 2) {
+    printWelcome();
+    return;
+  }
   if (subcommand === "init") {
     process.argv.splice(2, 1);
     await Promise.resolve().then(() => (init_init(), init_exports));