metheus-governance-mcp-cli 0.2.61 → 0.2.62
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +28 -8
- package/cli.mjs +1856 -7343
- package/lib/auth-flow.mjs +966 -0
- package/lib/client-registration.mjs +311 -0
- package/lib/doctor-checks.mjs +261 -0
- package/lib/doctor-report.mjs +50 -0
- package/lib/gateway-transport.mjs +160 -0
- package/lib/local-ai-adapters.mjs +14 -2
- package/lib/local-project-dispatch.mjs +172 -0
- package/lib/local-tool-shims.mjs +169 -0
- package/lib/project-tools.mjs +735 -0
- package/lib/provider-local-transport.mjs +353 -0
- package/lib/provider-support.mjs +60 -0
- package/lib/proxy-auth.mjs +77 -0
- package/lib/proxy-gateway-request.mjs +102 -0
- package/lib/proxy-response-pipeline.mjs +94 -0
- package/lib/proxy-stdio.mjs +175 -0
- package/lib/proxy-tool-helpers.mjs +597 -0
- package/lib/runner-data.mjs +297 -0
- package/lib/runner-delivery.mjs +267 -0
- package/lib/runner-execution.mjs +310 -0
- package/lib/runner-helpers.mjs +181 -0
- package/lib/runner-orchestration.mjs +232 -0
- package/lib/runner-runtime.mjs +241 -0
- package/lib/runner-trigger.mjs +174 -0
- package/lib/selftest-runner-scenarios.mjs +516 -0
- package/lib/selftest-support.mjs +113 -0
- package/lib/selftest-telegram-e2e.mjs +424 -0
- package/lib/setup-context.mjs +60 -0
- package/lib/setup-registration.mjs +145 -0
- package/lib/workspace-context.mjs +379 -0
- package/package.json +2 -2
package/README.md
CHANGED
|
@@ -84,7 +84,7 @@ Runner template:
|
|
|
84
84
|
"mentions_only": true,
|
|
85
85
|
"direct_messages": true,
|
|
86
86
|
"reply_to_bot_messages": true,
|
|
87
|
-
"ignore_edited_messages":
|
|
87
|
+
"ignore_edited_messages": true
|
|
88
88
|
},
|
|
89
89
|
"archive_policy": {
|
|
90
90
|
"mirror_replies": true,
|
|
@@ -182,6 +182,7 @@ Guardrail note:
|
|
|
182
182
|
|
|
183
183
|
```bash
|
|
184
184
|
metheus-governance-mcp-cli doctor --project-id <project_uuid> --base-url https://metheus.gesiaplatform.com
|
|
185
|
+
metheus-governance-mcp-cli doctor --project-id <project_uuid> --base-url https://metheus.gesiaplatform.com --strict true
|
|
185
186
|
```
|
|
186
187
|
|
|
187
188
|
Checks:
|
|
@@ -198,6 +199,9 @@ Checks:
|
|
|
198
199
|
- ctxpack auto sync status
|
|
199
200
|
- smoke calls: `workitem.list`, `evidence.list`, `decision.list`
|
|
200
201
|
|
|
202
|
+
`--strict true` upgrades local runner route safety warnings into failures.
|
|
203
|
+
Use it for production validation before enabling long-running bot routes.
|
|
204
|
+
|
|
201
205
|
Direct bot posting:
|
|
202
206
|
- `me.send-bot-message` uses local provider tokens from `~/.metheus/<provider>.env`
|
|
203
207
|
- it does not use a server-stored bot token
|
|
@@ -209,6 +213,11 @@ Direct bot posting:
|
|
|
209
213
|
- Slack
|
|
210
214
|
- KakaoTalk profiles and destinations can be stored now, but direct local delivery is not implemented yet
|
|
211
215
|
|
|
216
|
+
Provider support matrix in this CLI:
|
|
217
|
+
- `telegram`: local token verification, direct local delivery, typing, reply-to-message, and automatic inbound runner are implemented
|
|
218
|
+
- `slack`: local token verification and direct local delivery are implemented, but automatic inbound runner is not
|
|
219
|
+
- `kakaotalk`: local config can be stored, but token verification, direct local delivery, and automatic inbound runner are not implemented
|
|
220
|
+
|
|
212
221
|
## Local bot runner
|
|
213
222
|
|
|
214
223
|
The local runner closes the loop:
|
|
@@ -226,24 +235,28 @@ Execution model:
|
|
|
226
235
|
- runner resolves `project_id -> workspace_dir`
|
|
227
236
|
- runner resolves server bot role to a local `role_profile`
|
|
228
237
|
- runner executes the mapped client adapter (`codex` / `claude` / `gemini`)
|
|
229
|
-
- legacy `command` remains
|
|
238
|
+
- legacy `command` remains readable for migration, but execution is disabled by default unless `METHEUS_ALLOW_LEGACY_RUNNER_COMMAND=1`
|
|
230
239
|
|
|
231
240
|
Commands:
|
|
232
241
|
|
|
233
242
|
```bash
|
|
234
|
-
metheus-governance-mcp-cli runner once
|
|
235
|
-
metheus-governance-mcp-cli runner start
|
|
243
|
+
metheus-governance-mcp-cli runner once --route-name telegram-monitor
|
|
244
|
+
metheus-governance-mcp-cli runner start --route-name telegram-monitor
|
|
236
245
|
```
|
|
237
246
|
|
|
238
|
-
|
|
247
|
+
Recommended operational path:
|
|
248
|
+
|
|
249
|
+
```bash
|
|
250
|
+
metheus-governance-mcp-cli runner once --route-name telegram-monitor --dry-run-delivery true
|
|
251
|
+
metheus-governance-mcp-cli runner start --route-name telegram-monitor
|
|
252
|
+
```
|
|
253
|
+
|
|
254
|
+
Debug/selection overrides:
|
|
239
255
|
|
|
240
256
|
```bash
|
|
241
257
|
metheus-governance-mcp-cli runner once --project-id <project_uuid> --provider telegram --role monitor
|
|
242
258
|
metheus-governance-mcp-cli runner start --project-id <project_uuid> --provider telegram --role monitor --poll-interval-ms 5000
|
|
243
|
-
metheus-governance-mcp-cli runner start --project-id <project_uuid> --provider telegram --role monitor --mentions-only true
|
|
244
|
-
metheus-governance-mcp-cli runner once --project-id <project_uuid> --provider telegram --role monitor --dry-run-delivery true
|
|
245
259
|
metheus-governance-mcp-cli runner once --project-id <project_uuid> --provider telegram --role monitor --role-profile review
|
|
246
|
-
metheus-governance-mcp-cli runner once --project-id <project_uuid> --provider telegram --role monitor --command "python C:\\path\\to\\reply.py"
|
|
247
260
|
```
|
|
248
261
|
|
|
249
262
|
Recommended production path:
|
|
@@ -265,6 +278,11 @@ Role profile fields:
|
|
|
265
278
|
- `permission_mode`: `read_only`, `workspace_write`, `danger_full_access`
|
|
266
279
|
- `reasoning_effort`: `low`, `medium`, `high`
|
|
267
280
|
|
|
281
|
+
Role profile note:
|
|
282
|
+
- Claude maps `reasoning_effort` to `--effort`.
|
|
283
|
+
- Codex maps `reasoning_effort` to `-c model_reasoning_effort="..."`.
|
|
284
|
+
- Gemini CLI still has no dedicated effort flag, so the runner keeps the value in env/prompt context for policy parity.
|
|
285
|
+
|
|
268
286
|
Trigger policy fields:
|
|
269
287
|
- `mentions_only`: in groups, react only when the bot is mentioned or when a message replies to the bot
|
|
270
288
|
- `direct_messages`: allow or block private chat messages
|
|
@@ -309,10 +327,12 @@ Notes:
|
|
|
309
327
|
- mirrored bot replies are deduped by `chat_id + message_id`
|
|
310
328
|
- provider bot messages are ignored during inbound import by default
|
|
311
329
|
- `local-bot-bridge` reads stdin JSON from the runner and can call Codex/Claude/Gemini for you
|
|
330
|
+
- `route.command` fallback is disabled by default; enable it only temporarily with `METHEUS_ALLOW_LEGACY_RUNNER_COMMAND=1`
|
|
312
331
|
- today this automation path is implemented for Telegram end-to-end
|
|
313
332
|
- set `METHEUS_TELEGRAM_API_BASE_URL=http://127.0.0.1:<port>` only for local mock or regression testing; normal usage should keep the default Telegram API base
|
|
314
333
|
- Slack can use direct local send, but automatic inbound runner flow is not completed yet
|
|
315
334
|
- KakaoTalk config can be stored now, but direct send/runner flow is not implemented yet
|
|
335
|
+
- `doctor` now reports provider support for both enabled runner routes and active project chat destinations
|
|
316
336
|
|
|
317
337
|
## Use in MCP
|
|
318
338
|
|