fastgrc-openclaw 1.0.6 → 1.0.7

package/dist/bin.js

@@ -120,13 +120,82 @@ if (cmd === "unset-key") {
   process.stdout.write("FastGRC API key removed.\n");
   process.exit(0);
 }
+if (cmd === "set-policy") {
+  if (!arg) {
+    process.stderr.write("Usage: fastgrc-hook set-policy <policy-id>\n");
+    process.exit(1);
+  }
+  writeConfig({ ...readConfig(), policyId: arg });
+  process.stdout.write(`\u2713 FastGRC policy ID saved to ${CONFIG_PATH}
+`);
+  process.stdout.write('  Run "fastgrc-hook get-policy" to verify.\n');
+  process.exit(0);
+}
+if (cmd === "get-policy") {
+  const id = readConfig().policyId;
+  if (!id) {
+    process.stdout.write("No policy ID stored \u2014 org-wide default will be used.\n");
+    process.stdout.write("Run: fastgrc-hook set-policy <policy-id>\n");
+  } else {
+    process.stdout.write(`${id}
+`);
+  }
+  process.exit(0);
+}
+if (cmd === "unset-policy") {
+  const cfg = readConfig();
+  delete cfg.policyId;
+  writeConfig(cfg);
+  process.stdout.write("FastGRC policy ID removed \u2014 org-wide default will be used.\n");
+  process.exit(0);
+}
+if (cmd === "install-hook") {
+  const targetDir = arg || process.cwd();
+  const hookMdPath = path.join(targetDir, "HOOK.md");
+  const HOOK_ENTRY = '  - matcher: PreToolUse\n    handler: "fastgrc-hook"\n';
+  const HOOK_BLOCK = "---\nname: FastGRC Policy Check\ndescription: Evaluate every tool call against your FastGRC compliance policy\nhooks:\n" + HOOK_ENTRY + "---\n";
+  const hasKey = !!(readConfig().apiKey || process.env.FASTGRC_API_KEY);
+  if (!hasKey) {
+    process.stdout.write("\u26A0  No API key set yet. Run: fastgrc-hook set-key fgrc_k1_your_key\n\n");
+  }
+  if (!fs.existsSync(hookMdPath)) {
+    fs.writeFileSync(hookMdPath, HOOK_BLOCK, "utf8");
+    process.stdout.write(`\u2713 Created ${hookMdPath}
+
+Restart OpenClaw \u2014 FastGRC will evaluate every tool call.
+`);
+    process.exit(0);
+  }
+  const existing = fs.readFileSync(hookMdPath, "utf8");
+  if (existing.includes("fastgrc-hook")) {
+    process.stdout.write(`\u2713 FastGRC hook already present in ${hookMdPath}
+`);
+    process.exit(0);
+  }
+  const fmEnd = existing.indexOf("\n---", 3);
+  let updated;
+  if (fmEnd !== -1) {
+    const hasHooksKey = existing.lastIndexOf("hooks:", fmEnd) !== -1;
+    const insertText = hasHooksKey ? HOOK_ENTRY : `hooks:
+${HOOK_ENTRY}`;
+    updated = existing.slice(0, fmEnd) + "\n" + insertText + existing.slice(fmEnd);
+  } else {
+    updated = HOOK_BLOCK + "\n" + existing;
+  }
+  fs.writeFileSync(hookMdPath, updated, "utf8");
+  process.stdout.write(`\u2713 Updated ${hookMdPath} \u2014 FastGRC hook added.
+
+Restart OpenClaw to activate.
+`);
+  process.exit(0);
+}
 var apiKey = process.env.FASTGRC_API_KEY ?? readConfig().apiKey;
 if (!apiKey) {
   process.stderr.write("[fastgrc-hook] No API key configured \u2014 run: fastgrc-hook set-key fgrc_k1_...\n");
   process.exit(0);
 }
 var baseUrl = process.env.FASTGRC_BASE_URL ?? "https://app.fastgrc.ai";
-var policyId = process.env.FASTGRC_POLICY_ID;
+var policyId = process.env.FASTGRC_POLICY_ID ?? readConfig().policyId;
 async function main() {
   const chunks = [];
   for await (const chunk of process.stdin) chunks.push(chunk);

package/dist/bin.mjs

@@ -97,13 +97,82 @@ if (cmd === "unset-key") {
   process.stdout.write("FastGRC API key removed.\n");
   process.exit(0);
 }
+if (cmd === "set-policy") {
+  if (!arg) {
+    process.stderr.write("Usage: fastgrc-hook set-policy <policy-id>\n");
+    process.exit(1);
+  }
+  writeConfig({ ...readConfig(), policyId: arg });
+  process.stdout.write(`\u2713 FastGRC policy ID saved to ${CONFIG_PATH}
+`);
+  process.stdout.write('  Run "fastgrc-hook get-policy" to verify.\n');
+  process.exit(0);
+}
+if (cmd === "get-policy") {
+  const id = readConfig().policyId;
+  if (!id) {
+    process.stdout.write("No policy ID stored \u2014 org-wide default will be used.\n");
+    process.stdout.write("Run: fastgrc-hook set-policy <policy-id>\n");
+  } else {
+    process.stdout.write(`${id}
+`);
+  }
+  process.exit(0);
+}
+if (cmd === "unset-policy") {
+  const cfg = readConfig();
+  delete cfg.policyId;
+  writeConfig(cfg);
+  process.stdout.write("FastGRC policy ID removed \u2014 org-wide default will be used.\n");
+  process.exit(0);
+}
+if (cmd === "install-hook") {
+  const targetDir = arg || process.cwd();
+  const hookMdPath = path.join(targetDir, "HOOK.md");
+  const HOOK_ENTRY = '  - matcher: PreToolUse\n    handler: "fastgrc-hook"\n';
+  const HOOK_BLOCK = "---\nname: FastGRC Policy Check\ndescription: Evaluate every tool call against your FastGRC compliance policy\nhooks:\n" + HOOK_ENTRY + "---\n";
+  const hasKey = !!(readConfig().apiKey || process.env.FASTGRC_API_KEY);
+  if (!hasKey) {
+    process.stdout.write("\u26A0  No API key set yet. Run: fastgrc-hook set-key fgrc_k1_your_key\n\n");
+  }
+  if (!fs.existsSync(hookMdPath)) {
+    fs.writeFileSync(hookMdPath, HOOK_BLOCK, "utf8");
+    process.stdout.write(`\u2713 Created ${hookMdPath}
+
+Restart OpenClaw \u2014 FastGRC will evaluate every tool call.
+`);
+    process.exit(0);
+  }
+  const existing = fs.readFileSync(hookMdPath, "utf8");
+  if (existing.includes("fastgrc-hook")) {
+    process.stdout.write(`\u2713 FastGRC hook already present in ${hookMdPath}
+`);
+    process.exit(0);
+  }
+  const fmEnd = existing.indexOf("\n---", 3);
+  let updated;
+  if (fmEnd !== -1) {
+    const hasHooksKey = existing.lastIndexOf("hooks:", fmEnd) !== -1;
+    const insertText = hasHooksKey ? HOOK_ENTRY : `hooks:
+${HOOK_ENTRY}`;
+    updated = existing.slice(0, fmEnd) + "\n" + insertText + existing.slice(fmEnd);
+  } else {
+    updated = HOOK_BLOCK + "\n" + existing;
+  }
+  fs.writeFileSync(hookMdPath, updated, "utf8");
+  process.stdout.write(`\u2713 Updated ${hookMdPath} \u2014 FastGRC hook added.
+
+Restart OpenClaw to activate.
+`);
+  process.exit(0);
+}
 var apiKey = process.env.FASTGRC_API_KEY ?? readConfig().apiKey;
 if (!apiKey) {
   process.stderr.write("[fastgrc-hook] No API key configured \u2014 run: fastgrc-hook set-key fgrc_k1_...\n");
   process.exit(0);
 }
 var baseUrl = process.env.FASTGRC_BASE_URL ?? "https://app.fastgrc.ai";
-var policyId = process.env.FASTGRC_POLICY_ID;
+var policyId = process.env.FASTGRC_POLICY_ID ?? readConfig().policyId;
 async function main() {
   const chunks = [];
   for await (const chunk of process.stdin) chunks.push(chunk);

package/openclaw.plugin.json

@@ -1,6 +1,6 @@
-{
-  "id": "fastgrc",
-  "name": "FastGRC Policy Router",
-  "description": "Evaluate every tool call against your FastGRC compliance policy before it executes. Blocks violations, flags drift, builds an audit trail.",
-  "extensions": ["./dist/plugin.js"]
-}
+{
+  "id": "fastgrc",
+  "name": "FastGRC Policy Router",
+  "description": "Evaluate every tool call against your FastGRC compliance policy before it executes. Blocks violations, flags drift, builds an audit trail.",
+  "extensions": ["./dist/plugin.js"]
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "fastgrc-openclaw",
-  "version": "1.0.6",
+  "version": "1.0.7",
   "description": "FastGRC agent compliance plugin for OpenClaw — evaluates every tool call against your policy before it executes",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",