npm - @solongate/proxy - Versions diffs - 0.6.0 → 0.6.2 - Mend

@solongate/proxy 0.6.0 → 0.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/index.js CHANGED Viewed

@@ -664,10 +664,7 @@ function installHooks() {
   const auditPath = join(hooksDir, "audit.mjs");
   writeFileSync2(auditPath, AUDIT_SCRIPT);
   console.log(`  Created ${auditPath}`);
-  const claudeDir = resolve2(".claude");
-  mkdirSync(claudeDir, { recursive: true });
-  const settingsPath = join(claudeDir, "settings.json");
-  const settings = {
+  const hookSettings = {
     hooks: {
       PreToolUse: [
         {
@@ -687,19 +684,28 @@ function installHooks() {
       ]
     }
   };
-  let existing = {};
-  try {
-    existing = JSON.parse(readFileSync3(settingsPath, "utf-8"));
-  } catch {
+  const clients = [
+    { name: "Claude Code", dir: ".claude" },
+    { name: "Cursor", dir: ".cursor" }
+  ];
+  for (const client of clients) {
+    const clientDir = resolve2(client.dir);
+    mkdirSync(clientDir, { recursive: true });
+    const settingsPath = join(clientDir, "settings.json");
+    let existing = {};
+    try {
+      existing = JSON.parse(readFileSync3(settingsPath, "utf-8"));
+    } catch {
+    }
+    const merged = { ...existing, hooks: hookSettings.hooks };
+    writeFileSync2(settingsPath, JSON.stringify(merged, null, 2) + "\n");
+    console.log(`  Created ${settingsPath}`);
   }
-  const merged = { ...existing, hooks: settings.hooks };
-  writeFileSync2(settingsPath, JSON.stringify(merged, null, 2) + "\n");
-  console.log(`  Created ${settingsPath}`);
   console.log("");
   console.log("  Hooks installed:");
   console.log("  guard.mjs  \u2192 blocks policy-violating calls (pre-execution)");
   console.log("  audit.mjs  \u2192 logs all calls to dashboard (post-execution)");
-  console.log("  .claude/settings.json \u2192 hooks activated for Claude Code");
+  console.log("  Activated for: Claude Code, Cursor");
 }
 function ensureEnvFile() {
   const envPath = resolve2(".env");
@@ -1125,6 +1131,19 @@ process.stdin.on('end', async () => {
     const data = JSON.parse(input);
     const args = data.tool_input || {};
+    // \u2500\u2500 Self-protection: block access to hook files and settings \u2500\u2500
+    const allStrings = scanStrings(args).map(s => s.replace(/\\\\\\\\/g, '/').toLowerCase());
+    const protectedPaths = ['.solongate', '.claude/settings.json', '.cursor/settings.json', 'policy.json'];
+    for (const s of allStrings) {
+      for (const p of protectedPaths) {
+        if (s.includes(p)) {
+          const msg = 'SOLONGATE: Access to protected file "' + p + '" is blocked';
+          process.stderr.write(msg);
+          process.exit(2);
+        }
+      }
+    }
     // Load policy
     let policy;
     try {

package/dist/init.js CHANGED Viewed

@@ -320,6 +320,19 @@ process.stdin.on('end', async () => {
     const data = JSON.parse(input);
     const args = data.tool_input || {};
+    // \u2500\u2500 Self-protection: block access to hook files and settings \u2500\u2500
+    const allStrings = scanStrings(args).map(s => s.replace(/\\\\\\\\/g, '/').toLowerCase());
+    const protectedPaths = ['.solongate', '.claude/settings.json', '.cursor/settings.json', 'policy.json'];
+    for (const s of allStrings) {
+      for (const p of protectedPaths) {
+        if (s.includes(p)) {
+          const msg = 'SOLONGATE: Access to protected file "' + p + '" is blocked';
+          process.stderr.write(msg);
+          process.exit(2);
+        }
+      }
+    }
     // Load policy
     let policy;
     try {
@@ -417,10 +430,7 @@ function installHooks() {
   const auditPath = join(hooksDir, "audit.mjs");
   writeFileSync(auditPath, AUDIT_SCRIPT);
   console.log(`  Created ${auditPath}`);
-  const claudeDir = resolve(".claude");
-  mkdirSync(claudeDir, { recursive: true });
-  const settingsPath = join(claudeDir, "settings.json");
-  const settings = {
+  const hookSettings = {
     hooks: {
       PreToolUse: [
         {
@@ -440,19 +450,28 @@ function installHooks() {
       ]
     }
   };
-  let existing = {};
-  try {
-    existing = JSON.parse(readFileSync(settingsPath, "utf-8"));
-  } catch {
+  const clients = [
+    { name: "Claude Code", dir: ".claude" },
+    { name: "Cursor", dir: ".cursor" }
+  ];
+  for (const client of clients) {
+    const clientDir = resolve(client.dir);
+    mkdirSync(clientDir, { recursive: true });
+    const settingsPath = join(clientDir, "settings.json");
+    let existing = {};
+    try {
+      existing = JSON.parse(readFileSync(settingsPath, "utf-8"));
+    } catch {
+    }
+    const merged = { ...existing, hooks: hookSettings.hooks };
+    writeFileSync(settingsPath, JSON.stringify(merged, null, 2) + "\n");
+    console.log(`  Created ${settingsPath}`);
   }
-  const merged = { ...existing, hooks: settings.hooks };
-  writeFileSync(settingsPath, JSON.stringify(merged, null, 2) + "\n");
-  console.log(`  Created ${settingsPath}`);
   console.log("");
   console.log("  Hooks installed:");
   console.log("  guard.mjs  \u2192 blocks policy-violating calls (pre-execution)");
   console.log("  audit.mjs  \u2192 logs all calls to dashboard (post-execution)");
-  console.log("  .claude/settings.json \u2192 hooks activated for Claude Code");
+  console.log("  Activated for: Claude Code, Cursor");
 }
 function ensureEnvFile() {
   const envPath = resolve(".env");

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@solongate/proxy",
-  "version": "0.6.0",
+  "version": "0.6.2",
   "description": "MCP security proxy — protect any MCP server with customizable policies, path/command constraints, rate limiting, and audit logging. Zero code changes required.",
   "type": "module",
   "bin": {