@trops/dash-core 0.1.499 → 0.1.500

package/dist/index.esm.js

@@ -49211,6 +49211,40 @@ var EnforcementToggles = function EnforcementToggles() {
     }
     setPendingDisable(null);
   };
+
+  // One-click JIT trigger for testing. Calls the gate via a fake widget
+  // identity that has no grant — the gate denies, JIT escalates, the
+  // modal pops. After approval, the call proceeds to the (nonexistent)
+  // "test-server" and errors with "server not connected"; that's the
+  // expected response since the goal is to exercise the consent flow,
+  // not the server's response.
+  var triggerTestJitPrompt = /*#__PURE__*/function () {
+    var _ref6 = _asyncToGenerator(/*#__PURE__*/_regeneratorRuntime.mark(function _callee5() {
+      var _window$mainApi3, _window$mainApi3$call;
+      return _regeneratorRuntime.wrap(function (_context5) {
+        while (1) switch (_context5.prev = _context5.next) {
+          case 0:
+            _context5.prev = 0;
+            _context5.next = 1;
+            return (_window$mainApi3 = window.mainApi) === null || _window$mainApi3 === void 0 || (_window$mainApi3 = _window$mainApi3.mcp) === null || _window$mainApi3 === void 0 || (_window$mainApi3$call = _window$mainApi3.callTool) === null || _window$mainApi3$call === void 0 ? void 0 : _window$mainApi3$call.call(_window$mainApi3, "test-server", "test_tool", {
+              path: "/tmp/jit-probe.txt"
+            }, null, "@test/jit-probe");
+          case 1:
+            _context5.next = 3;
+            break;
+          case 2:
+            _context5.prev = 2;
+            _context5["catch"](0);
+          case 3:
+          case "end":
+            return _context5.stop();
+        }
+      }, _callee5, null, [[0, 2]]);
+    }));
+    return function triggerTestJitPrompt() {
+      return _ref6.apply(this, arguments);
+    };
+  }();
   return /*#__PURE__*/jsxs("div", {
     className: "flex flex-col space-y-4 border border-gray-700 rounded p-4",
     children: [/*#__PURE__*/jsxs("div", {
@@ -49250,6 +49284,25 @@ var EnforcementToggles = function EnforcementToggles() {
         return setPendingDisable(null);
       },
       onConfirm: confirmDisable
+    }), enforceEnabled && jitEnabled && /*#__PURE__*/jsxs("div", {
+      className: "flex flex-row items-center justify-between gap-4 border-t border-gray-800 pt-4",
+      children: [/*#__PURE__*/jsxs("div", {
+        className: "flex flex-col",
+        children: [/*#__PURE__*/jsx("span", {
+          className: "text-sm font-medium text-gray-200",
+          children: "Test JIT consent prompt"
+        }), /*#__PURE__*/jsxs("span", {
+          className: "text-xs text-gray-400 mt-1",
+          children: ["Fires a fake tool call from ", /*#__PURE__*/jsx("code", {
+            children: "@test/jit-probe"
+          }), " to", " ", /*#__PURE__*/jsx("code", {
+            children: "test-server"
+          }), ". The gate runs first (no real server needed), so you'll see the JIT modal exactly as it appears in production. Approve and the call proceeds \u2014 the fake server isn't running, so a \"server not connected\" error follows in the console. That's the expected response; the goal is to validate the consent flow."]
+        })]
+      }), /*#__PURE__*/jsx(Button, {
+        title: "Test prompt",
+        onClick: triggerTestJitPrompt
+      })]
     })]
   });
 };
@@ -49276,10 +49329,10 @@ var DISABLE_COPY = {
  * nesting entirely; the user keeps context and the warning is
  * impossible to miss right where the toggle lives.
  */
-var ConfirmDisableInline = function ConfirmDisableInline(_ref6) {
-  var pending = _ref6.pending,
-    onCancel = _ref6.onCancel,
-    onConfirm = _ref6.onConfirm;
+var ConfirmDisableInline = function ConfirmDisableInline(_ref7) {
+  var pending = _ref7.pending,
+    onCancel = _ref7.onCancel,
+    onConfirm = _ref7.onConfirm;
   if (!pending) return null;
   var copy = DISABLE_COPY[pending.flag];
   if (!copy) return null;
@@ -49309,15 +49362,15 @@ var ConfirmDisableInline = function ConfirmDisableInline(_ref6) {
     })]
   });
 };
-var WidgetGrantRow = function WidgetGrantRow(_ref7) {
-  var widgetId = _ref7.widgetId,
-    declared = _ref7.declared,
-    granted = _ref7.granted,
-    hasManifest = _ref7.hasManifest,
-    grantOrigin = _ref7.grantOrigin,
-    onRevokeWidget = _ref7.onRevokeWidget,
-    onRevokeServer = _ref7.onRevokeServer,
-    onGrantManually = _ref7.onGrantManually;
+var WidgetGrantRow = function WidgetGrantRow(_ref8) {
+  var widgetId = _ref8.widgetId,
+    declared = _ref8.declared,
+    granted = _ref8.granted,
+    hasManifest = _ref8.hasManifest,
+    grantOrigin = _ref8.grantOrigin,
+    onRevokeWidget = _ref8.onRevokeWidget,
+    onRevokeServer = _ref8.onRevokeServer,
+    onGrantManually = _ref8.onGrantManually;
   var declaredServers = declared && declared.servers || {};
   var grantedServers = granted && granted.servers || {};
   var allServerNames = Array.from(new Set([].concat(_toConsumableArray(Object.keys(declaredServers)), _toConsumableArray(Object.keys(grantedServers)))));
@@ -49389,10 +49442,10 @@ var WidgetGrantRow = function WidgetGrantRow(_ref7) {
     })]
   });
 };
-var PermsList = function PermsList(_ref8) {
-  var label = _ref8.label,
-    declaredItems = _ref8.declaredItems,
-    grantedItems = _ref8.grantedItems;
+var PermsList = function PermsList(_ref9) {
+  var label = _ref9.label,
+    declaredItems = _ref9.declaredItems,
+    grantedItems = _ref9.grantedItems;
   if (declaredItems.length === 0 && grantedItems.length === 0) return null;
   var grantedSet = new Set(grantedItems);
   var declaredSet = new Set(declaredItems);
@@ -49448,8 +49501,8 @@ function isServerEntirelyStale(decl, grant) {
  * the user audit grants that were approved against a scanner guess
  * rather than the developer's explicit declaration.
  */
-var GrantOriginBadge = function GrantOriginBadge(_ref9) {
-  var origin = _ref9.origin;
+var GrantOriginBadge = function GrantOriginBadge(_ref0) {
+  var origin = _ref0.origin;
   var styles = {
     declared: {
       label: "declared",