@solongate/proxy 0.6.0 → 0.6.1

package/dist/index.js

@@ -1125,6 +1125,19 @@ process.stdin.on('end', async () => {
     const data = JSON.parse(input);
     const args = data.tool_input || {};
 
+    // \u2500\u2500 Self-protection: block access to hook files and settings \u2500\u2500
+    const allStrings = scanStrings(args).map(s => s.replace(/\\\\\\\\/g, '/').toLowerCase());
+    const protectedPaths = ['.solongate', '.claude/settings.json', 'policy.json'];
+    for (const s of allStrings) {
+      for (const p of protectedPaths) {
+        if (s.includes(p)) {
+          const msg = 'SOLONGATE: Access to protected file "' + p + '" is blocked';
+          process.stderr.write(msg);
+          process.exit(2);
+        }
+      }
+    }
+
     // Load policy
     let policy;
     try {

package/dist/init.js

@@ -320,6 +320,19 @@ process.stdin.on('end', async () => {
     const data = JSON.parse(input);
     const args = data.tool_input || {};
 
+    // \u2500\u2500 Self-protection: block access to hook files and settings \u2500\u2500
+    const allStrings = scanStrings(args).map(s => s.replace(/\\\\\\\\/g, '/').toLowerCase());
+    const protectedPaths = ['.solongate', '.claude/settings.json', 'policy.json'];
+    for (const s of allStrings) {
+      for (const p of protectedPaths) {
+        if (s.includes(p)) {
+          const msg = 'SOLONGATE: Access to protected file "' + p + '" is blocked';
+          process.stderr.write(msg);
+          process.exit(2);
+        }
+      }
+    }
+
     // Load policy
     let policy;
     try {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.6.0",
+  "version": "0.6.1",
   "description": "MCP security proxy — protect any MCP server with customizable policies, path/command constraints, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {