@toolguard/mcp-proxy 0.1.0

package/dist/cli.d.ts

@@ -0,0 +1,18 @@
+#!/usr/bin/env node
+/**
+ * ToolGuard MCP Gateway CLI
+ *
+ * Usage:
+ *   toolguard-mcp --config <config.json> -- <command> [args...]
+ *
+ * Example:
+ *   toolguard-mcp --config toolguard.json -- npx @modelcontextprotocol/server-slack
+ *
+ * The gateway wraps any MCP server and enforces ToolGuard authorization on
+ * every tool call before forwarding to the upstream server.
+ *
+ * Environment variables:
+ *   TOOLGUARD_API_KEY  — ToolGuard API key (preferred over config file)
+ */
+export {};
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA;;;;;;;;;;;;;;GAcG"}

package/dist/cli.js

@@ -0,0 +1,67 @@
+#!/usr/bin/env node
+/**
+ * ToolGuard MCP Gateway CLI
+ *
+ * Usage:
+ *   toolguard-mcp --config <config.json> -- <command> [args...]
+ *
+ * Example:
+ *   toolguard-mcp --config toolguard.json -- npx @modelcontextprotocol/server-slack
+ *
+ * The gateway wraps any MCP server and enforces ToolGuard authorization on
+ * every tool call before forwarding to the upstream server.
+ *
+ * Environment variables:
+ *   TOOLGUARD_API_KEY  — ToolGuard API key (preferred over config file)
+ */
+import { readFileSync } from "node:fs";
+import { ToolGuardGateway } from "./gateway.js";
+function usage() {
+    console.error("Usage: toolguard-mcp --config <config.json> -- <command> [args...]");
+    console.error("");
+    console.error("Example:");
+    console.error("  toolguard-mcp --config toolguard.json -- npx @modelcontextprotocol/server-slack");
+    console.error("");
+    console.error("Environment variables:");
+    console.error("  TOOLGUARD_API_KEY  — ToolGuard API key (preferred over config file)");
+    process.exit(1);
+}
+const args = process.argv.slice(2);
+const configIdx = args.indexOf("--config");
+const separatorIdx = args.indexOf("--");
+if (configIdx === -1 || separatorIdx === -1 || separatorIdx <= configIdx + 1) {
+    usage();
+}
+const configPath = args[configIdx + 1];
+if (!configPath)
+    usage();
+const upstreamCommand = args[separatorIdx + 1];
+if (!upstreamCommand)
+    usage();
+const upstreamArgs = args.slice(separatorIdx + 2);
+// Load config
+let config;
+try {
+    config = JSON.parse(readFileSync(configPath, "utf-8"));
+}
+catch (err) {
+    console.error(`Failed to read config file ${configPath}: ${err instanceof Error ? err.message : String(err)}`);
+    process.exit(1);
+}
+// Start gateway
+const gateway = new ToolGuardGateway(config, {
+    command: upstreamCommand,
+    args: upstreamArgs,
+});
+gateway.start().catch((err) => {
+    console.error(`Gateway failed to start: ${err instanceof Error ? err.message : String(err)}`);
+    process.exit(1);
+});
+// Graceful shutdown
+process.on("SIGINT", () => {
+    gateway.close().then(() => process.exit(0));
+});
+process.on("SIGTERM", () => {
+    gateway.close().then(() => process.exit(0));
+});
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAGhD,SAAS,KAAK;IACZ,OAAO,CAAC,KAAK,CACX,oEAAoE,CACrE,CAAC;IACF,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAClB,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;IAC1B,OAAO,CAAC,KAAK,CACX,mFAAmF,CACpF,CAAC;IACF,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAClB,OAAO,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAC;IACxC,OAAO,CAAC,KAAK,CACX,uEAAuE,CACxE,CAAC;IACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AAEnC,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;AAC3C,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;AAExC,IAAI,SAAS,KAAK,CAAC,CAAC,IAAI,YAAY,KAAK,CAAC,CAAC,IAAI,YAAY,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;IAC7E,KAAK,EAAE,CAAC;AACV,CAAC;AAED,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC;AACvC,IAAI,CAAC,UAAU;IAAE,KAAK,EAAE,CAAC;AAEzB,MAAM,eAAe,GAAG,IAAI,CAAC,YAAY,GAAG,CAAC,CAAC,CAAC;AAC/C,IAAI,CAAC,eAAe;IAAE,KAAK,EAAE,CAAC;AAE9B,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,GAAG,CAAC,CAAC,CAAC;AAElD,cAAc;AACd,IAAI,MAAqB,CAAC;AAC1B,IAAI,CAAC;IACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAkB,CAAC;AAC1E,CAAC;AAAC,OAAO,GAAG,EAAE,CAAC;IACb,OAAO,CAAC,KAAK,CACX,8BAA8B,UAAU,KAAK,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAChG,CAAC;IACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,gBAAgB;AAChB,MAAM,OAAO,GAAG,IAAI,gBAAgB,CAAC,MAAM,EAAE;IAC3C,OAAO,EAAE,eAAe;IACxB,IAAI,EAAE,YAAY;CACnB,CAAC,CAAC;AAEH,OAAO,CAAC,KAAK,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;IAC5B,OAAO,CAAC,KAAK,CAAC,4BAA4B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAC9F,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC;AAEH,oBAAoB;AACpB,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,GAAG,EAAE;IACxB,OAAO,CAAC,KAAK,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;AAC9C,CAAC,CAAC,CAAC;AACH,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE;IACzB,OAAO,CAAC,KAAK,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;AAC9C,CAAC,CAAC,CAAC"}

package/dist/gateway.d.ts

@@ -0,0 +1,45 @@
+/**
+ * ToolGuard MCP Gateway
+ *
+ * A transparent proxy between an MCP client and an upstream MCP server.
+ * All MCP methods are passed through unchanged EXCEPT `tools/call`, which
+ * is intercepted and authorized through ToolGuard's policy engine.
+ *
+ * Architecture:
+ *   [MCP Client] <--stdio--> [ToolGuard Gateway] <--stdio--> [Upstream MCP Server]
+ */
+import type { Transport } from "@modelcontextprotocol/sdk/shared/transport.js";
+import { ToolGuard } from "@toolguard/client";
+import type { GatewayConfig, UpstreamConfig } from "./types.js";
+export interface GatewayOptions {
+    /** Inject a pre-configured ToolGuard client (skips env var check). For testing. */
+    toolguardClient?: ToolGuard;
+}
+export interface StartOptions {
+    /** Override the upstream transport (default: StdioClientTransport from upstreamConfig). */
+    upstreamTransport?: Transport;
+    /** Override the client-facing transport (default: StdioServerTransport on stdin/stdout). */
+    clientTransport?: Transport;
+}
+export declare class ToolGuardGateway {
+    private upstream;
+    private proxy;
+    private tg;
+    private sessionId;
+    private config;
+    private upstreamConfig;
+    constructor(config: GatewayConfig, upstreamConfig: UpstreamConfig, options?: GatewayOptions);
+    /**
+     * Start the gateway:
+     * 1. Connect to upstream MCP server and discover its capabilities
+     * 2. Create a proxy Server advertising those same capabilities
+     * 3. Wire up passthrough + authorization handlers
+     * 4. Connect the proxy to the client-facing transport
+     */
+    start(options?: StartOptions): Promise<void>;
+    /** Shut down both connections cleanly. */
+    close(): Promise<void>;
+    private registerHandlers;
+    private handleToolCall;
+}
+//# sourceMappingURL=gateway.d.ts.map

package/dist/gateway.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"gateway.d.ts","sourceRoot":"","sources":["../src/gateway.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAkBH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,+CAA+C,CAAC;AAC/E,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAC9C,OAAO,KAAK,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAEhE,MAAM,WAAW,cAAc;IAC7B,mFAAmF;IACnF,eAAe,CAAC,EAAE,SAAS,CAAC;CAC7B;AAED,MAAM,WAAW,YAAY;IAC3B,2FAA2F;IAC3F,iBAAiB,CAAC,EAAE,SAAS,CAAC;IAC9B,4FAA4F;IAC5F,eAAe,CAAC,EAAE,SAAS,CAAC;CAC7B;AAED,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,EAAE,CAAY;IACtB,OAAO,CAAC,SAAS,CAAqB;IACtC,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,cAAc,CAAiB;gBAGrC,MAAM,EAAE,aAAa,EACrB,cAAc,EAAE,cAAc,EAC9B,OAAO,CAAC,EAAE,cAAc;IA4B1B;;;;;;OAMG;IACG,KAAK,CAAC,OAAO,CAAC,EAAE,YAAY,GAAG,OAAO,CAAC,IAAI,CAAC;IAsElD,0CAA0C;IACpC,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAS5B,OAAO,CAAC,gBAAgB;YAwEV,cAAc;CA+E7B"}

package/dist/gateway.js

@@ -0,0 +1,234 @@
+/**
+ * ToolGuard MCP Gateway
+ *
+ * A transparent proxy between an MCP client and an upstream MCP server.
+ * All MCP methods are passed through unchanged EXCEPT `tools/call`, which
+ * is intercepted and authorized through ToolGuard's policy engine.
+ *
+ * Architecture:
+ *   [MCP Client] <--stdio--> [ToolGuard Gateway] <--stdio--> [Upstream MCP Server]
+ */
+import { Server } from "@modelcontextprotocol/sdk/server";
+import { Client } from "@modelcontextprotocol/sdk/client";
+import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
+import { StdioClientTransport } from "@modelcontextprotocol/sdk/client/stdio.js";
+import { ListToolsRequestSchema, CallToolRequestSchema, ListResourcesRequestSchema, ListResourceTemplatesRequestSchema, ReadResourceRequestSchema, ListPromptsRequestSchema, GetPromptRequestSchema, CompleteRequestSchema, SetLevelRequestSchema, } from "@modelcontextprotocol/sdk/types.js";
+import { ToolGuard } from "@toolguard/client";
+export class ToolGuardGateway {
+    upstream;
+    proxy;
+    tg;
+    sessionId;
+    config;
+    upstreamConfig;
+    constructor(config, upstreamConfig, options) {
+        this.config = config;
+        this.upstreamConfig = upstreamConfig;
+        if (options?.toolguardClient) {
+            this.tg = options.toolguardClient;
+        }
+        else {
+            const apiKey = process.env.TOOLGUARD_API_KEY;
+            if (!apiKey) {
+                throw new Error("TOOLGUARD_API_KEY environment variable is required.");
+            }
+            this.tg = new ToolGuard({
+                apiKey,
+                baseUrl: config.toolguard.baseUrl,
+                orgId: config.toolguard.orgId,
+                agentId: config.toolguard.agentId,
+            });
+        }
+        // Placeholders — initialized in start() after upstream capabilities are known
+        this.upstream = null;
+        this.proxy = null;
+    }
+    /**
+     * Start the gateway:
+     * 1. Connect to upstream MCP server and discover its capabilities
+     * 2. Create a proxy Server advertising those same capabilities
+     * 3. Wire up passthrough + authorization handlers
+     * 4. Connect the proxy to the client-facing transport
+     */
+    async start(options) {
+        // 1. Connect to upstream
+        this.upstream = new Client({ name: "toolguard-gateway", version: "0.1.0" }, {});
+        const upstreamTransport = options?.upstreamTransport ??
+            new StdioClientTransport({
+                command: this.upstreamConfig.command,
+                args: this.upstreamConfig.args,
+                env: this.upstreamConfig.env
+                    ? { ...process.env, ...this.upstreamConfig.env }
+                    : undefined,
+                stderr: "inherit",
+            });
+        await this.upstream.connect(upstreamTransport);
+        // 2. Mirror upstream capabilities
+        const upstreamCaps = this.upstream.getServerCapabilities() ?? {};
+        const capabilities = {};
+        if (upstreamCaps.tools) {
+            capabilities.tools = { listChanged: !!upstreamCaps.tools.listChanged };
+        }
+        if (upstreamCaps.resources) {
+            capabilities.resources = {
+                subscribe: !!upstreamCaps.resources.subscribe,
+                listChanged: !!upstreamCaps.resources.listChanged,
+            };
+        }
+        if (upstreamCaps.prompts) {
+            capabilities.prompts = {
+                listChanged: !!upstreamCaps.prompts.listChanged,
+            };
+        }
+        if (upstreamCaps.logging) {
+            capabilities.logging = upstreamCaps.logging;
+        }
+        if (upstreamCaps.completions) {
+            capabilities.completions = upstreamCaps.completions;
+        }
+        // 3. Create proxy server
+        const upstreamInfo = this.upstream.getServerVersion();
+        const serverName = upstreamInfo
+            ? `toolguard → ${upstreamInfo.name}`
+            : "toolguard-gateway";
+        this.proxy = new Server({ name: serverName, version: "0.1.0" }, {
+            capabilities,
+            instructions: this.upstream.getInstructions(),
+        });
+        // 4. Wire handlers
+        this.registerHandlers(upstreamCaps);
+        // 5. Connect to client-facing transport
+        const clientTransport = options?.clientTransport ?? new StdioServerTransport();
+        await this.proxy.connect(clientTransport);
+    }
+    /** Shut down both connections cleanly. */
+    async close() {
+        await this.proxy?.close();
+        await this.upstream?.close();
+    }
+    // ---------------------------------------------------------------------------
+    // Handler registration
+    // ---------------------------------------------------------------------------
+    registerHandlers(caps) {
+        // --- Tools (always register if upstream supports) ---
+        if (caps.tools) {
+            this.proxy.setRequestHandler(ListToolsRequestSchema, async (request) => {
+                return this.upstream.listTools(request.params);
+            });
+            this.proxy.setRequestHandler(CallToolRequestSchema, async (request) => {
+                return this.handleToolCall(request.params);
+            });
+        }
+        // --- Resources passthrough ---
+        if (caps.resources) {
+            this.proxy.setRequestHandler(ListResourcesRequestSchema, async (request) => {
+                return this.upstream.listResources(request.params);
+            });
+            this.proxy.setRequestHandler(ListResourceTemplatesRequestSchema, async (request) => {
+                return this.upstream.listResourceTemplates(request.params);
+            });
+            this.proxy.setRequestHandler(ReadResourceRequestSchema, async (request) => {
+                return this.upstream.readResource(request.params);
+            });
+        }
+        // --- Prompts passthrough ---
+        if (caps.prompts) {
+            this.proxy.setRequestHandler(ListPromptsRequestSchema, async (request) => {
+                return this.upstream.listPrompts(request.params);
+            });
+            this.proxy.setRequestHandler(GetPromptRequestSchema, async (request) => {
+                return this.upstream.getPrompt(request.params);
+            });
+        }
+        // --- Completions passthrough ---
+        if (caps.completions) {
+            this.proxy.setRequestHandler(CompleteRequestSchema, async (request) => {
+                return this.upstream.complete(request.params);
+            });
+        }
+        // --- Logging passthrough ---
+        if (caps.logging) {
+            this.proxy.setRequestHandler(SetLevelRequestSchema, async (request) => {
+                return this.upstream.setLoggingLevel(request.params.level);
+            });
+        }
+    }
+    // ---------------------------------------------------------------------------
+    // Tool call authorization gate
+    // ---------------------------------------------------------------------------
+    async handleToolCall(params) {
+        const mcpToolName = params.name;
+        const toolguardName = this.config.toolMapping?.[mcpToolName] ?? mcpToolName;
+        // Lazy session creation
+        if (!this.sessionId) {
+            try {
+                const session = await this.tg.createSession({
+                    environment: this.config.session.environment,
+                    scopes: this.config.session.scopes,
+                    userId: this.config.session.userId,
+                });
+                this.sessionId = session.id;
+            }
+            catch (err) {
+                return {
+                    content: [
+                        {
+                            type: "text",
+                            text: `ToolGuard session creation failed: ${err instanceof Error ? err.message : String(err)}`,
+                        },
+                    ],
+                    isError: true,
+                };
+            }
+        }
+        // Authorize through ToolGuard
+        let decision;
+        try {
+            decision = await this.tg.authorize({
+                sessionId: this.sessionId,
+                tool: { name: toolguardName },
+                context: {},
+                payloadSummary: params.arguments ?? {},
+            });
+        }
+        catch (err) {
+            return {
+                content: [
+                    {
+                        type: "text",
+                        text: `ToolGuard authorization failed: ${err instanceof Error ? err.message : String(err)}`,
+                    },
+                ],
+                isError: true,
+            };
+        }
+        // Denied
+        if (decision.decision === "deny") {
+            const reasons = decision.reasonCodes.join(", ");
+            return {
+                content: [
+                    {
+                        type: "text",
+                        text: `Tool call denied by policy. Reasons: ${reasons}`,
+                    },
+                ],
+                isError: true,
+            };
+        }
+        // Requires approval
+        if (decision.decision === "require_approval") {
+            return {
+                content: [
+                    {
+                        type: "text",
+                        text: `Tool call requires human approval (approval ID: ${decision.approvalId}). The request has been queued — contact your administrator to approve it.`,
+                    },
+                ],
+                isError: true,
+            };
+        }
+        // Allowed — forward to upstream
+        return this.upstream.callTool(params);
+    }
+}
+//# sourceMappingURL=gateway.js.map

package/dist/gateway.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"gateway.js","sourceRoot":"","sources":["../src/gateway.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,kCAAkC,CAAC;AAC1D,OAAO,EAAE,MAAM,EAAE,MAAM,kCAAkC,CAAC;AAC1D,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EACL,sBAAsB,EACtB,qBAAqB,EACrB,0BAA0B,EAC1B,kCAAkC,EAClC,yBAAyB,EACzB,wBAAwB,EACxB,sBAAsB,EACtB,qBAAqB,EACrB,qBAAqB,GACtB,MAAM,oCAAoC,CAAC;AAG5C,OAAO,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAe9C,MAAM,OAAO,gBAAgB;IACnB,QAAQ,CAAS;IACjB,KAAK,CAAS;IACd,EAAE,CAAY;IACd,SAAS,CAAqB;IAC9B,MAAM,CAAgB;IACtB,cAAc,CAAiB;IAEvC,YACE,MAAqB,EACrB,cAA8B,EAC9B,OAAwB;QAExB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QAErC,IAAI,OAAO,EAAE,eAAe,EAAE,CAAC;YAC7B,IAAI,CAAC,EAAE,GAAG,OAAO,CAAC,eAAe,CAAC;QACpC,CAAC;aAAM,CAAC;YACN,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;YAC7C,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CACb,qDAAqD,CACtD,CAAC;YACJ,CAAC;YAED,IAAI,CAAC,EAAE,GAAG,IAAI,SAAS,CAAC;gBACtB,MAAM;gBACN,OAAO,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO;gBACjC,KAAK,EAAE,MAAM,CAAC,SAAS,CAAC,KAAK;gBAC7B,OAAO,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO;aAClC,CAAC,CAAC;QACL,CAAC;QAED,8EAA8E;QAC9E,IAAI,CAAC,QAAQ,GAAG,IAAyB,CAAC;QAC1C,IAAI,CAAC,KAAK,GAAG,IAAyB,CAAC;IACzC,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,KAAK,CAAC,OAAsB;QAChC,yBAAyB;QACzB,IAAI,CAAC,QAAQ,GAAG,IAAI,MAAM,CACxB,EAAE,IAAI,EAAE,mBAAmB,EAAE,OAAO,EAAE,OAAO,EAAE,EAC/C,EAAE,CACH,CAAC;QAEF,MAAM,iBAAiB,GACrB,OAAO,EAAE,iBAAiB;YAC1B,IAAI,oBAAoB,CAAC;gBACvB,OAAO,EAAE,IAAI,CAAC,cAAc,CAAC,OAAO;gBACpC,IAAI,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI;gBAC9B,GAAG,EAAE,IAAI,CAAC,cAAc,CAAC,GAAG;oBAC1B,CAAC,CAAE,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,EAG3C;oBACJ,CAAC,CAAC,SAAS;gBACb,MAAM,EAAE,SAAS;aAClB,CAAC,CAAC;QAEL,MAAM,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;QAE/C,kCAAkC;QAClC,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,qBAAqB,EAAE,IAAI,EAAE,CAAC;QACjE,MAAM,YAAY,GAAuB,EAAE,CAAC;QAE5C,IAAI,YAAY,CAAC,KAAK,EAAE,CAAC;YACvB,YAAY,CAAC,KAAK,GAAG,EAAE,WAAW,EAAE,CAAC,CAAC,YAAY,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;QACzE,CAAC;QACD,IAAI,YAAY,CAAC,SAAS,EAAE,CAAC;YAC3B,YAAY,CAAC,SAAS,GAAG;gBACvB,SAAS,EAAE,CAAC,CAAC,YAAY,CAAC,SAAS,CAAC,SAAS;gBAC7C,WAAW,EAAE,CAAC,CAAC,YAAY,CAAC,SAAS,CAAC,WAAW;aAClD,CAAC;QACJ,CAAC;QACD,IAAI,YAAY,CAAC,OAAO,EAAE,CAAC;YACzB,YAAY,CAAC,OAAO,GAAG;gBACrB,WAAW,EAAE,CAAC,CAAC,YAAY,CAAC,OAAO,CAAC,WAAW;aAChD,CAAC;QACJ,CAAC;QACD,IAAI,YAAY,CAAC,OAAO,EAAE,CAAC;YACzB,YAAY,CAAC,OAAO,GAAG,YAAY,CAAC,OAAO,CAAC;QAC9C,CAAC;QACD,IAAI,YAAY,CAAC,WAAW,EAAE,CAAC;YAC7B,YAAY,CAAC,WAAW,GAAG,YAAY,CAAC,WAAW,CAAC;QACtD,CAAC;QAED,yBAAyB;QACzB,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,CAAC;QACtD,MAAM,UAAU,GAAG,YAAY;YAC7B,CAAC,CAAC,eAAe,YAAY,CAAC,IAAI,EAAE;YACpC,CAAC,CAAC,mBAAmB,CAAC;QAExB,IAAI,CAAC,KAAK,GAAG,IAAI,MAAM,CACrB,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,OAAO,EAAE,EACtC;YACE,YAAY;YACZ,YAAY,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe,EAAE;SAC9C,CACF,CAAC;QAEF,mBAAmB;QACnB,IAAI,CAAC,gBAAgB,CAAC,YAAY,CAAC,CAAC;QAEpC,wCAAwC;QACxC,MAAM,eAAe,GAAG,OAAO,EAAE,eAAe,IAAI,IAAI,oBAAoB,EAAE,CAAC;QAC/E,MAAM,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;IAC5C,CAAC;IAED,0CAA0C;IAC1C,KAAK,CAAC,KAAK;QACT,MAAM,IAAI,CAAC,KAAK,EAAE,KAAK,EAAE,CAAC;QAC1B,MAAM,IAAI,CAAC,QAAQ,EAAE,KAAK,EAAE,CAAC;IAC/B,CAAC;IAED,8EAA8E;IAC9E,uBAAuB;IACvB,8EAA8E;IAEtE,gBAAgB,CAAC,IAAwB;QAC/C,uDAAuD;QACvD,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;gBACrE,OAAO,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACjD,CAAC,CAAC,CAAC;YAEH,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;gBACpE,OAAO,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YAC7C,CAAC,CAAC,CAAC;QACL,CAAC;QAED,gCAAgC;QAChC,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAC1B,0BAA0B,EAC1B,KAAK,EAAE,OAAO,EAAE,EAAE;gBAChB,OAAO,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACrD,CAAC,CACF,CAAC;YAEF,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAC1B,kCAAkC,EAClC,KAAK,EAAE,OAAO,EAAE,EAAE;gBAChB,OAAO,IAAI,CAAC,QAAQ,CAAC,qBAAqB,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YAC7D,CAAC,CACF,CAAC;YAEF,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAC1B,yBAAyB,EACzB,KAAK,EAAE,OAAO,EAAE,EAAE;gBAChB,OAAO,IAAI,CAAC,QAAQ,CAAC,YAAY,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACpD,CAAC,CACF,CAAC;QACJ,CAAC;QAED,8BAA8B;QAC9B,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjB,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAC1B,wBAAwB,EACxB,KAAK,EAAE,OAAO,EAAE,EAAE;gBAChB,OAAO,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACnD,CAAC,CACF,CAAC;YAEF,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAC1B,sBAAsB,EACtB,KAAK,EAAE,OAAO,EAAE,EAAE;gBAChB,OAAO,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACjD,CAAC,CACF,CAAC;QACJ,CAAC;QAED,kCAAkC;QAClC,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;gBACpE,OAAO,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YAChD,CAAC,CAAC,CAAC;QACL,CAAC;QAED,8BAA8B;QAC9B,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjB,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;gBACpE,OAAO,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC7D,CAAC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,8EAA8E;IAC9E,+BAA+B;IAC/B,8EAA8E;IAEtE,KAAK,CAAC,cAAc,CAC1B,MAA6D;QAE7D,MAAM,WAAW,GAAG,MAAM,CAAC,IAAI,CAAC;QAChC,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,WAAW,CAAC,IAAI,WAAW,CAAC;QAE5E,wBAAwB;QACxB,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;YACpB,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,aAAa,CAAC;oBAC1C,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,WAAW;oBAC5C,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM;oBAClC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM;iBACnC,CAAC,CAAC;gBACH,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,EAAE,CAAC;YAC9B,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAM;4BACZ,IAAI,EAAE,sCAAsC,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE;yBAC/F;qBACF;oBACD,OAAO,EAAE,IAAI;iBACd,CAAC;YACJ,CAAC;QACH,CAAC;QAED,8BAA8B;QAC9B,IAAI,QAAQ,CAAC;QACb,IAAI,CAAC;YACH,QAAQ,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,SAAS,CAAC;gBACjC,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,IAAI,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE;gBAC7B,OAAO,EAAE,EAAE;gBACX,cAAc,EAAE,MAAM,CAAC,SAAS,IAAI,EAAE;aACvC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,mCAAmC,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE;qBAC5F;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,SAAS;QACT,IAAI,QAAQ,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;YACjC,MAAM,OAAO,GAAG,QAAQ,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAChD,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,wCAAwC,OAAO,EAAE;qBACxD;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,oBAAoB;QACpB,IAAI,QAAQ,CAAC,QAAQ,KAAK,kBAAkB,EAAE,CAAC;YAC7C,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAM;wBACZ,IAAI,EAAE,mDAAmD,QAAQ,CAAC,UAAU,4EAA4E;qBACzJ;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,gCAAgC;QAChC,OAAO,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACxC,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,4 @@
+export { ToolGuardGateway } from "./gateway.js";
+export type { GatewayOptions, StartOptions } from "./gateway.js";
+export type { GatewayConfig, UpstreamConfig } from "./types.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AAChD,YAAY,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AACjE,YAAY,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC"}

package/dist/index.js

@@ -0,0 +1,2 @@
+export { ToolGuardGateway } from "./gateway.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,35 @@
+/**
+ * Configuration for the ToolGuard MCP Gateway.
+ *
+ * The gateway sits between an MCP client (e.g. Claude, Cursor) and an upstream
+ * MCP server, intercepting every `tools/call` and routing it through ToolGuard's
+ * policy engine before forwarding to the upstream server.
+ */
+export interface GatewayConfig {
+    /** ToolGuard API connection. API key must be set via TOOLGUARD_API_KEY env var. */
+    toolguard: {
+        baseUrl: string;
+        orgId: string;
+        agentId: string;
+    };
+    /** Session parameters for ToolGuard authorization. */
+    session: {
+        environment: string;
+        scopes: string[];
+        userId?: string;
+    };
+    /**
+     * Maps MCP tool names to ToolGuard catalog names.
+     * If a tool is not listed here, the MCP name is used as-is.
+     *
+     * Example: { "read_file": "filesystem.read", "run_command": "shell.execute" }
+     */
+    toolMapping?: Record<string, string>;
+}
+/** Upstream MCP server spawn configuration. */
+export interface UpstreamConfig {
+    command: string;
+    args?: string[];
+    env?: Record<string, string>;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,MAAM,WAAW,aAAa;IAC5B,mFAAmF;IACnF,SAAS,EAAE;QACT,OAAO,EAAE,MAAM,CAAC;QAChB,KAAK,EAAE,MAAM,CAAC;QACd,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IAEF,sDAAsD;IACtD,OAAO,EAAE;QACP,WAAW,EAAE,MAAM,CAAC;QACpB,MAAM,EAAE,MAAM,EAAE,CAAC;QACjB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,CAAC;IAEF;;;;;OAKG;IACH,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACtC;AAED,+CAA+C;AAC/C,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC9B"}

package/dist/types.js

@@ -0,0 +1,9 @@
+/**
+ * Configuration for the ToolGuard MCP Gateway.
+ *
+ * The gateway sits between an MCP client (e.g. Claude, Cursor) and an upstream
+ * MCP server, intercepting every `tools/call` and routing it through ToolGuard's
+ * policy engine before forwarding to the upstream server.
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG"}

package/package.json

@@ -0,0 +1,41 @@
+{
+  "name": "@toolguard/mcp-proxy",
+  "version": "0.1.0",
+  "description": "MCP gateway proxy that enforces ToolGuard authorization on every tool call",
+  "type": "module",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "bin": {
+    "toolguard-mcp": "./dist/cli.js"
+  },
+  "scripts": {
+    "build": "tsc",
+    "typecheck": "tsc --noEmit",
+    "test": "vitest run"
+  },
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.27.1",
+    "@toolguard/client": "^0.1.0"
+  },
+  "files": ["dist"],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/vishutdhar/toolguard.git",
+    "directory": "packages/mcp-proxy"
+  },
+  "homepage": "https://github.com/vishutdhar/toolguard/tree/master/packages/mcp-proxy",
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "license": "MIT",
+  "devDependencies": {
+    "@types/node": "^25.3.5",
+    "typescript": "^5.9.3",
+    "vitest": "^4.0.18"
+  }
+}