mobbdev 1.1.14 → 1.1.17

package/dist/index.mjs

@@ -1318,7 +1318,7 @@ ${rootContent}`;
 });
 
 // src/index.ts
-import Debug20 from "debug";
+import Debug19 from "debug";
 import { hideBin } from "yargs/helpers";
 
 // src/args/yargs.ts
@@ -2075,6 +2075,57 @@ var UploadS3BucketInfoDocument = `
   }
 }
     `;
+var AnalyzeCommitForExtensionAiBlameDocument = `
+    mutation AnalyzeCommitForExtensionAIBlame($repositoryURL: String!, $commitSha: String!, $organizationId: String!) {
+  analyzeCommitForAIBlame(
+    repositoryURL: $repositoryURL
+    commitSha: $commitSha
+    organizationId: $organizationId
+  ) {
+    __typename
+    ... on ProcessAIBlameFinalResult {
+      status
+      inferencesProcessed
+      attributionsCreated
+      attributions {
+        id
+        aiBlameCommitId
+        aiBlameInferenceId
+        filePath
+        lineNumber
+        model
+        toolName
+        commitSha
+        inferenceType
+      }
+    }
+    ... on ProcessAIBlameErrorResult {
+      status
+      error
+    }
+    ... on ProcessAIBlameRequestedResult {
+      status
+      requestIds
+    }
+  }
+}
+    `;
+var GetAiBlameInferenceDocument = `
+    query GetAIBlameInference($aiBlameInferenceIds: [uuid!]) {
+  ai_blame_inference(where: {id: {_in: $aiBlameInferenceIds}}) {
+    id
+    type
+    aiResponseAt
+  }
+}
+    `;
+var GetAiBlameAttributionPromptDocument = `
+    query GetAIBlameAttributionPrompt($aiBlameAttributionId: String!) {
+  getAIBlameInferenceData(aiBlameAttributionId: $aiBlameAttributionId) {
+    promptUrl
+  }
+}
+    `;
 var UploadAiBlameInferencesInitDocument = `
     mutation UploadAIBlameInferencesInit($sessions: [AIBlameInferenceInitInput!]!) {
   uploadAIBlameInferencesInit(sessions: $sessions) {
@@ -2368,6 +2419,15 @@ function getSdk(client, withWrapper = defaultWrapper) {
     uploadS3BucketInfo(variables, requestHeaders, signal) {
       return withWrapper((wrappedRequestHeaders) => client.request({ document: UploadS3BucketInfoDocument, variables, requestHeaders: { ...requestHeaders, ...wrappedRequestHeaders }, signal }), "uploadS3BucketInfo", "mutation", variables);
     },
+    AnalyzeCommitForExtensionAIBlame(variables, requestHeaders, signal) {
+      return withWrapper((wrappedRequestHeaders) => client.request({ document: AnalyzeCommitForExtensionAiBlameDocument, variables, requestHeaders: { ...requestHeaders, ...wrappedRequestHeaders }, signal }), "AnalyzeCommitForExtensionAIBlame", "mutation", variables);
+    },
+    GetAIBlameInference(variables, requestHeaders, signal) {
+      return withWrapper((wrappedRequestHeaders) => client.request({ document: GetAiBlameInferenceDocument, variables, requestHeaders: { ...requestHeaders, ...wrappedRequestHeaders }, signal }), "GetAIBlameInference", "query", variables);
+    },
+    GetAIBlameAttributionPrompt(variables, requestHeaders, signal) {
+      return withWrapper((wrappedRequestHeaders) => client.request({ document: GetAiBlameAttributionPromptDocument, variables, requestHeaders: { ...requestHeaders, ...wrappedRequestHeaders }, signal }), "GetAIBlameAttributionPrompt", "query", variables);
+    },
     UploadAIBlameInferencesInit(variables, requestHeaders, signal) {
       return withWrapper((wrappedRequestHeaders) => client.request({ document: UploadAiBlameInferencesInitDocument, variables, requestHeaders: { ...requestHeaders, ...wrappedRequestHeaders }, signal }), "UploadAIBlameInferencesInit", "mutation", variables);
     },
@@ -10565,7 +10625,7 @@ import path9 from "path";
 import { env as env2 } from "process";
 import { pipeline } from "stream/promises";
 import chalk6 from "chalk";
-import Debug19 from "debug";
+import Debug18 from "debug";
 import extract from "extract-zip";
 import { createSpinner as createSpinner4 } from "nanospinner";
 import fetch4 from "node-fetch";
@@ -10577,15 +10637,14 @@ import { z as z29 } from "zod";
 import crypto from "crypto";
 import os from "os";
 import chalk3 from "chalk";
-import Debug7 from "debug";
+import Debug6 from "debug";
 import open from "open";
 
 // src/features/analysis/graphql/gql.ts
 import fetchOrig from "cross-fetch";
-import Debug6 from "debug";
+import Debug5 from "debug";
 import { GraphQLClient } from "graphql-request";
-import { HttpProxyAgent } from "http-proxy-agent";
-import { HttpsProxyAgent as HttpsProxyAgent2 } from "https-proxy-agent";
+import { HttpsProxyAgent } from "https-proxy-agent";
 import { v4 as uuidv4 } from "uuid";
 
 // src/mcp/core/Errors.ts
@@ -10660,39 +10719,56 @@ var _ReportDigestError = class _ReportDigestError extends Error {
 __publicField(_ReportDigestError, "defaultMessage", "\u{1F575}\uFE0F\u200D\u2642\uFE0F Digesting report failed. Please verify that the file provided is of a valid supported report format.");
 var ReportDigestError = _ReportDigestError;
 
-// src/features/analysis/graphql/subscribe.ts
-import Debug5 from "debug";
+// src/utils/subscribe/subscribe.ts
 import { createClient } from "graphql-ws";
-import { HttpsProxyAgent } from "https-proxy-agent";
-import WebSocket from "ws";
+import WebsocketNode from "isomorphic-ws";
+
+// src/utils/subscribe/graphql.ts
+function getGraphQlHeaders(options) {
+  const headers = {
+    "Content-Type": "application/json"
+  };
+  if ("type" in options) {
+    if (options.type === "apiKey") {
+      headers["x-mobb-key"] = options.apiKey;
+    } else if (options.type === "token") {
+      headers["Authorization"] = `Bearer ${options.token}`;
+    }
+    return headers;
+  }
+  if ("isAdmin" in options && options.isAdmin) {
+    headers["x-hasura-access-key"] = options.adminPassword;
+  } else if ("isApiKey" in options && options.isApiKey) {
+    headers["x-mobb-key"] = options.apiKey;
+  } else if ("accessToken" in options) {
+    headers["Authorization"] = `Bearer ${options.accessToken}`;
+  }
+  return headers;
+}
+
+// src/utils/subscribe/subscribe.ts
 var DEFAULT_API_URL2 = "https://api.mobb.ai/v1/graphql";
-var debug6 = Debug5("mobbdev:subscribe");
 var SUBSCRIPTION_TIMEOUT_MS = 30 * 60 * 1e3;
 function createWSClient(options) {
-  const proxy = options.url.startsWith("wss://") && process.env["HTTPS_PROXY"] ? new HttpsProxyAgent(process.env["HTTPS_PROXY"]) : options.url.startsWith("ws://") && process.env["HTTP_PROXY"] ? new HttpsProxyAgent(process.env["HTTP_PROXY"]) : null;
-  debug6(
-    `Using proxy: ${proxy ? "yes" : "no"} with url: ${options.url} and with proxy: ${process.env["HTTP_PROXY"]} for the websocket connection`
-  );
-  const CustomWebSocket = class extends WebSocket {
-    constructor(address, protocols) {
-      super(
-        address,
-        protocols,
-        proxy ? { agent: proxy } : void 0
-      );
+  const url = options.url || (process.env["API_URL"] || DEFAULT_API_URL2).replace("http", "ws");
+  const websocketImpl = options.websocket || (typeof WebSocket !== "undefined" ? WebSocket : WebsocketNode);
+  const CustomWebSocket = options.proxyAgent ? (
+    // biome-ignore lint/suspicious/noExplicitAny: Dynamic WebSocket extension requires any cast for cross-platform compatibility
+    class extends websocketImpl {
+      constructor(address, protocols) {
+        super(address, protocols, { agent: options.proxyAgent });
+      }
     }
-  };
+  ) : websocketImpl;
   return createClient({
     //this is needed to prevent AWS from killing the connection
     //currently our load balancer has a 29s idle timeout
     keepAlive: 1e4,
-    url: options.url,
-    webSocketImpl: proxy ? CustomWebSocket : options.websocket || WebSocket,
+    url,
+    webSocketImpl: CustomWebSocket,
     connectionParams: () => {
       return {
-        headers: options.type === "apiKey" ? {
-          [API_KEY_HEADER_NAME]: options.apiKey
-        } : { authorization: `Bearer ${options.token}` }
+        headers: getGraphQlHeaders(options)
       };
     }
   });
@@ -10700,33 +10776,44 @@ function createWSClient(options) {
 function subscribe(query, variables, callback, wsClientOptions) {
   return new Promise((resolve, reject) => {
     let timer = null;
+    let settled = false;
     const { timeoutInMs = SUBSCRIPTION_TIMEOUT_MS } = wsClientOptions;
-    const API_URL2 = process.env["API_URL"] || DEFAULT_API_URL2;
-    const client = createWSClient({
-      ...wsClientOptions,
-      websocket: WebSocket,
-      url: API_URL2.replace("http", "ws")
-    });
-    const unsubscribe = client.subscribe(
+    const client = createWSClient(wsClientOptions);
+    let unsubscribe = () => {
+      return;
+    };
+    function cleanup() {
+      try {
+        unsubscribe();
+      } catch {
+      }
+      if (timer) {
+        clearTimeout(timer);
+        timer = null;
+      }
+    }
+    function finalizeResolve(data) {
+      if (settled) {
+        return;
+      }
+      settled = true;
+      cleanup();
+      resolve(data);
+    }
+    function finalizeReject(error) {
+      if (settled) {
+        return;
+      }
+      settled = true;
+      cleanup();
+      reject(error);
+    }
+    unsubscribe = client.subscribe(
       { query, variables },
       {
         next: (data) => {
-          function callbackResolve(data2) {
-            unsubscribe();
-            if (timer) {
-              clearTimeout(timer);
-            }
-            resolve(data2);
-          }
-          function callbackReject(data2) {
-            unsubscribe();
-            if (timer) {
-              clearTimeout(timer);
-            }
-            reject(data2);
-          }
           if (!data.data) {
-            reject(
+            finalizeReject(
               new Error(
                 `Broken data object from graphQL subscribe: ${JSON.stringify(
                   data
@@ -10734,14 +10821,11 @@ function subscribe(query, variables, callback, wsClientOptions) {
               )
             );
           } else {
-            callback(callbackResolve, callbackReject, data.data);
+            callback(finalizeResolve, finalizeReject, data.data);
           }
         },
         error: (error) => {
-          if (timer) {
-            clearTimeout(timer);
-          }
-          reject(error);
+          finalizeReject(error);
         },
         complete: () => {
           return;
@@ -10750,8 +10834,7 @@ function subscribe(query, variables, callback, wsClientOptions) {
     );
     if (typeof timeoutInMs === "number") {
       timer = setTimeout(() => {
-        unsubscribe();
-        reject(
+        finalizeReject(
           new Error(
             `Timeout expired for graphQL subscribe query: ${query} with timeout: ${timeoutInMs}`
           )
@@ -10823,7 +10906,7 @@ var GetVulByNodesMetadataZ = z25.object({
 });
 
 // src/features/analysis/graphql/gql.ts
-var debug7 = Debug6("mobbdev:gql");
+var debug6 = Debug5("mobbdev:gql");
 var API_KEY_HEADER_NAME = "x-mobb-key";
 var REPORT_STATE_CHECK_DELAY = 5 * 1e3;
 function getProxyAgent(url) {
@@ -10831,14 +10914,14 @@ function getProxyAgent(url) {
     const parsedUrl = new URL(url);
     const isHttp = parsedUrl.protocol === "http:";
     const isHttps = parsedUrl.protocol === "https:";
-    const proxy = isHttps ? HTTPS_PROXY : isHttp ? HTTP_PROXY : null;
+    const proxy = isHttps ? HTTPS_PROXY || HTTP_PROXY : isHttp ? HTTP_PROXY : null;
     if (proxy) {
-      debug7("Using proxy %s", proxy);
-      debug7("Proxy agent %o", proxy);
-      return isHttps ? new HttpsProxyAgent2(proxy) : new HttpProxyAgent(proxy);
+      debug6("Using proxy %s", proxy);
+      debug6("Proxy agent %o", proxy);
+      return new HttpsProxyAgent(proxy);
     }
   } catch (err) {
-    debug7(`Skipping proxy for ${url}. Reason: ${err.message}`);
+    debug6(`Skipping proxy for ${url}. Reason: ${err.message}`);
   }
   return void 0;
 }
@@ -10853,7 +10936,7 @@ var fetchWithProxy = (url, options = {}) => {
       });
     }
   } catch (err) {
-    debug7(`Skipping proxy for ${url}. Reason: ${err.message}`);
+    debug6(`Skipping proxy for ${url}. Reason: ${err.message}`);
   }
   return fetchOrig(url, options);
 };
@@ -10862,7 +10945,7 @@ var GQLClient = class {
     __publicField(this, "_client");
     __publicField(this, "_clientSdk");
     __publicField(this, "_auth");
-    debug7(`init with  ${args}`);
+    debug6(`init with  ${args}`);
     this._auth = args;
     this._client = new GraphQLClient(API_URL, {
       headers: args.type === "apiKey" ? { [API_KEY_HEADER_NAME]: args.apiKey || "" } : {
@@ -10871,7 +10954,7 @@ var GQLClient = class {
       fetch: fetchWithProxy,
       requestMiddleware: (request) => {
         const requestId = uuidv4();
-        debug7(
+        debug6(
           `sending API request with id: ${requestId} and with request: ${request.body}`
         );
         return {
@@ -10908,7 +10991,7 @@ var GQLClient = class {
       await this.getUserInfo();
     } catch (e) {
       if (e?.toString().startsWith("FetchError")) {
-        debug7("verify connection failed %o", e);
+        debug6("verify connection failed %o", e);
         return false;
       }
     }
@@ -10920,7 +11003,7 @@ var GQLClient = class {
     try {
       info = await this.getUserInfo();
     } catch (e) {
-      debug7("verify token failed %o", e);
+      debug6("verify token failed %o", e);
       return false;
     }
     return info?.email || true;
@@ -10981,7 +11064,7 @@ var GQLClient = class {
     try {
       await this._clientSdk.CreateCommunityUser();
     } catch (e) {
-      debug7("create community user failed %o", e);
+      debug6("create community user failed %o", e);
     }
   }
   async updateScmToken(args) {
@@ -11148,11 +11231,13 @@ var GQLClient = class {
       this._auth.type === "apiKey" ? {
         apiKey: this._auth.apiKey,
         type: "apiKey",
-        timeoutInMs: params.timeoutInMs
+        timeoutInMs: params.timeoutInMs,
+        proxyAgent: getProxyAgent(API_URL)
       } : {
         token: this._auth.token,
         type: "token",
-        timeoutInMs: params.timeoutInMs
+        timeoutInMs: params.timeoutInMs,
+        proxyAgent: getProxyAgent(API_URL)
       }
     );
   }
@@ -11205,6 +11290,12 @@ var GQLClient = class {
   async finalizeAIBlameInferencesUploadRaw(variables) {
     return await this._clientSdk.FinalizeAIBlameInferencesUpload(variables);
   }
+  async analyzeCommitForExtensionAIBlame(variables) {
+    return await this._clientSdk.AnalyzeCommitForExtensionAIBlame(variables);
+  }
+  async getAIBlameAttributionPrompt(variables) {
+    return await this._clientSdk.GetAIBlameAttributionPrompt(variables);
+  }
 };
 
 // src/utils/ConfigStoreService.ts
@@ -11227,7 +11318,7 @@ function getConfigStore() {
 var configStore = getConfigStore();
 
 // src/commands/handleMobbLogin.ts
-var debug8 = Debug7("mobbdev:commands");
+var debug7 = Debug6("mobbdev:commands");
 var LOGIN_MAX_WAIT = 10 * 60 * 1e3;
 var LOGIN_CHECK_DELAY = 5 * 1e3;
 var webLoginUrl = `${WEB_APP_URL}/cli-login`;
@@ -11306,9 +11397,9 @@ async function handleMobbLogin({
     });
     loginSpinner.spin();
     if (encryptedApiToken) {
-      debug8("encrypted API token received %s", encryptedApiToken);
+      debug7("encrypted API token received %s", encryptedApiToken);
       newApiToken = crypto.privateDecrypt(privateKey, Buffer.from(encryptedApiToken, "base64")).toString("utf-8");
-      debug8("API token decrypted");
+      debug7("API token decrypted");
       break;
     }
     await sleep(LOGIN_CHECK_DELAY);
@@ -11322,7 +11413,7 @@ async function handleMobbLogin({
   const newGqlClient = new GQLClient({ apiKey: newApiToken, type: "apiKey" });
   const loginSuccess = await newGqlClient.validateUserToken();
   if (loginSuccess) {
-    debug8(`set api token ${newApiToken}`);
+    debug7(`set api token ${newApiToken}`);
     configStore.set("apiToken", newApiToken);
     loginSpinner.success({
       text: `\u{1F513} Login to Mobb successful! ${typeof loginSpinner === "string" ? `Logged in as ${loginSuccess}` : ""}`
@@ -11337,10 +11428,10 @@ async function handleMobbLogin({
 }
 
 // src/features/analysis/add_fix_comments_for_pr/add_fix_comments_for_pr.ts
-import Debug11 from "debug";
+import Debug10 from "debug";
 
 // src/features/analysis/add_fix_comments_for_pr/utils/utils.ts
-import Debug10 from "debug";
+import Debug9 from "debug";
 import parseDiff from "parse-diff";
 import { z as z27 } from "zod";
 
@@ -11352,8 +11443,8 @@ function keyBy(array, keyBy2) {
 }
 
 // src/features/analysis/utils/send_report.ts
-import Debug8 from "debug";
-var debug9 = Debug8("mobbdev:index");
+import Debug7 from "debug";
+var debug8 = Debug7("mobbdev:index");
 async function sendReport({
   spinner,
   submitVulnerabilityReportVariables,
@@ -11364,7 +11455,7 @@ async function sendReport({
       submitVulnerabilityReportVariables
     );
     if (submitRes.submitVulnerabilityReport.__typename !== "VulnerabilityReport") {
-      debug9("error submit vul report %s", submitRes);
+      debug8("error submit vul report %s", submitRes);
       throw new Error("\u{1F575}\uFE0F\u200D\u2642\uFE0F Mobb analysis failed");
     }
     spinner.update({ text: progressMassages.processingVulnerabilityReport });
@@ -11414,9 +11505,9 @@ var scannerToFriendlyString = {
 };
 
 // src/features/analysis/add_fix_comments_for_pr/utils/buildCommentBody.ts
-import Debug9 from "debug";
+import Debug8 from "debug";
 import { z as z26 } from "zod";
-var debug10 = Debug9("mobbdev:handle-finished-analysis");
+var debug9 = Debug8("mobbdev:handle-finished-analysis");
 var getCommitFixButton = (commitUrl) => `<a href="${commitUrl}"><img src=${COMMIT_FIX_SVG}></a>`;
 function buildFixCommentBody({
   fix,
@@ -11475,7 +11566,7 @@ function buildFixCommentBody({
     safeIssueType: z26.nativeEnum(IssueType_Enum)
   }).safeParse(fix);
   if (!validFixParseRes.success) {
-    debug10(
+    debug9(
       `fix ${fixId} has custom issue type or language, therefore the commit description will not be added`,
       validFixParseRes.error
     );
@@ -11539,7 +11630,7 @@ ${issuePageLink}`;
 }
 
 // src/features/analysis/add_fix_comments_for_pr/utils/utils.ts
-var debug11 = Debug10("mobbdev:handle-finished-analysis");
+var debug10 = Debug9("mobbdev:handle-finished-analysis");
 function calculateRanges(integers) {
   if (integers.length === 0) {
     return [];
@@ -11573,7 +11664,7 @@ function deleteAllPreviousComments({
     try {
       return scm.deleteComment({ comment_id: comment.id });
     } catch (e) {
-      debug11("delete comment failed %s", e);
+      debug10("delete comment failed %s", e);
       return Promise.resolve();
     }
   });
@@ -11589,7 +11680,7 @@ function deleteAllPreviousGeneralPrComments(params) {
     try {
       return scm.deleteGeneralPrComment({ commentId: comment.id });
     } catch (e) {
-      debug11("delete comment failed %s", e);
+      debug10("delete comment failed %s", e);
       return Promise.resolve();
     }
   });
@@ -11733,7 +11824,7 @@ async function postAnalysisInsightComment(params) {
     fixablePrVuls,
     nonFixablePrVuls
   } = prVulenrabilities;
-  debug11({
+  debug10({
     fixablePrVuls,
     nonFixablePrVuls,
     vulnerabilitiesOutsidePr,
@@ -11788,7 +11879,7 @@ ${contactUsMarkdown}`;
 }
 
 // src/features/analysis/add_fix_comments_for_pr/add_fix_comments_for_pr.ts
-var debug12 = Debug11("mobbdev:handle-finished-analysis");
+var debug11 = Debug10("mobbdev:handle-finished-analysis");
 async function addFixCommentsForPr({
   analysisId,
   scm: _scm,
@@ -11800,7 +11891,7 @@ async function addFixCommentsForPr({
   }
   const scm = _scm;
   const getAnalysisRes = await gqlClient.getAnalysis(analysisId);
-  debug12("getAnalysis %o", getAnalysisRes);
+  debug11("getAnalysis %o", getAnalysisRes);
   const {
     vulnerabilityReport: {
       projectId,
@@ -11909,8 +12000,8 @@ ${contextString}` : description;
 }
 
 // src/features/analysis/auto_pr_handler.ts
-import Debug12 from "debug";
-var debug13 = Debug12("mobbdev:handleAutoPr");
+import Debug11 from "debug";
+var debug12 = Debug11("mobbdev:handleAutoPr");
 async function handleAutoPr(params) {
   const {
     gqlClient,
@@ -11934,7 +12025,7 @@ async function handleAutoPr(params) {
         prId,
         prStrategy: createOnePr ? "CONDENSE" /* Condense */ : "SPREAD" /* Spread */
       });
-      debug13("auto pr analysis res %o", autoPrAnalysisRes);
+      debug12("auto pr analysis res %o", autoPrAnalysisRes);
       if (autoPrAnalysisRes.autoPrAnalysis?.__typename === "AutoPrError") {
         createAutoPrSpinner.error({
           text: `\u{1F504} Automatic pull request failed - ${autoPrAnalysisRes.autoPrAnalysis.error}`
@@ -11960,15 +12051,15 @@ async function handleAutoPr(params) {
 
 // src/features/analysis/git.ts
 init_GitService();
-import Debug13 from "debug";
-var debug14 = Debug13("mobbdev:git");
+import Debug12 from "debug";
+var debug13 = Debug12("mobbdev:git");
 async function getGitInfo(srcDirPath) {
-  debug14("getting git info for %s", srcDirPath);
+  debug13("getting git info for %s", srcDirPath);
   const gitService = new GitService(srcDirPath);
   try {
     const validationResult = await gitService.validateRepository();
     if (!validationResult.isValid) {
-      debug14("folder is not a git repo");
+      debug13("folder is not a git repo");
       return {
         success: false,
         hash: void 0,
@@ -11983,9 +12074,9 @@ async function getGitInfo(srcDirPath) {
     };
   } catch (e) {
     if (e instanceof Error) {
-      debug14("failed to run git %o", e);
+      debug13("failed to run git %o", e);
       if (e.message.includes(" spawn ")) {
-        debug14("git cli not installed");
+        debug13("git cli not installed");
       } else {
         throw e;
       }
@@ -11999,13 +12090,13 @@ init_configs();
 import fs8 from "fs";
 import path7 from "path";
 import AdmZip from "adm-zip";
-import Debug14 from "debug";
+import Debug13 from "debug";
 import { globby } from "globby";
 import { isBinary as isBinary2 } from "istextorbinary";
 import { simpleGit as simpleGit2 } from "simple-git";
 import { parseStringPromise } from "xml2js";
 import { z as z28 } from "zod";
-var debug15 = Debug14("mobbdev:pack");
+var debug14 = Debug13("mobbdev:pack");
 var FPR_SOURCE_CODE_FILE_MAPPING_SCHEMA = z28.object({
   properties: z28.object({
     entry: z28.array(
@@ -12027,7 +12118,7 @@ function getManifestFilesSuffixes() {
   return ["package.json", "pom.xml"];
 }
 async function pack(srcDirPath, vulnFiles, isIncludeAllFiles = false) {
-  debug15("pack folder %s", srcDirPath);
+  debug14("pack folder %s", srcDirPath);
   let git = void 0;
   try {
     git = simpleGit2({
@@ -12037,13 +12128,13 @@ async function pack(srcDirPath, vulnFiles, isIncludeAllFiles = false) {
     });
     await git.status();
   } catch (e) {
-    debug15("failed to run git %o", e);
+    debug14("failed to run git %o", e);
     git = void 0;
     if (e instanceof Error) {
       if (e.message.includes(" spawn ")) {
-        debug15("git cli not installed");
+        debug14("git cli not installed");
       } else if (e.message.includes("not a git repository")) {
-        debug15("folder is not a git repo");
+        debug14("folder is not a git repo");
       } else {
         throw e;
       }
@@ -12058,9 +12149,9 @@ async function pack(srcDirPath, vulnFiles, isIncludeAllFiles = false) {
     followSymbolicLinks: false,
     dot: true
   });
-  debug15("files found %d", filepaths.length);
+  debug14("files found %d", filepaths.length);
   const zip = new AdmZip();
-  debug15("compressing files");
+  debug14("compressing files");
   for (const filepath of filepaths) {
     const absFilepath = path7.join(srcDirPath, filepath.toString());
     if (!isIncludeAllFiles) {
@@ -12069,12 +12160,12 @@ async function pack(srcDirPath, vulnFiles, isIncludeAllFiles = false) {
         absFilepath.toString().replaceAll(path7.win32.sep, path7.posix.sep),
         vulnFiles
       )) {
-        debug15("ignoring %s because it is not a vulnerability file", filepath);
+        debug14("ignoring %s because it is not a vulnerability file", filepath);
         continue;
       }
     }
     if (fs8.lstatSync(absFilepath).size > MCP_MAX_FILE_SIZE) {
-      debug15("ignoring %s because the size is > 5MB", filepath);
+      debug14("ignoring %s because the size is > 5MB", filepath);
       continue;
     }
     let data;
@@ -12088,16 +12179,16 @@ async function pack(srcDirPath, vulnFiles, isIncludeAllFiles = false) {
       data = fs8.readFileSync(absFilepath);
     }
     if (isBinary2(null, data)) {
-      debug15("ignoring %s because is seems to be a binary file", filepath);
+      debug14("ignoring %s because is seems to be a binary file", filepath);
       continue;
     }
     zip.addFile(filepath.toString(), data);
   }
-  debug15("get zip file buffer");
+  debug14("get zip file buffer");
   return zip.toBuffer();
 }
 async function repackFpr(fprPath) {
-  debug15("repack fpr file %s", fprPath);
+  debug14("repack fpr file %s", fprPath);
   const zipIn = new AdmZip(fprPath);
   const zipOut = new AdmZip();
   const mappingXML = zipIn.readAsText("src-archive/index.xml", "utf-8");
@@ -12112,7 +12203,7 @@ async function repackFpr(fprPath) {
       zipOut.addFile(realPath, buf);
     }
   }
-  debug15("get repacked zip file buffer");
+  debug14("get repacked zip file buffer");
   return zipOut.toBuffer();
 }
 
@@ -12183,7 +12274,7 @@ async function snykArticlePrompt() {
 // src/features/analysis/scanners/checkmarx.ts
 import { createRequire } from "module";
 import chalk4 from "chalk";
-import Debug16 from "debug";
+import Debug15 from "debug";
 import { existsSync } from "fs";
 import { createSpinner as createSpinner2 } from "nanospinner";
 import { type } from "os";
@@ -12195,7 +12286,7 @@ var cxOperatingSystemSupportMessage = `Your operating system does not support ch
 
 // src/utils/child_process.ts
 import cp from "child_process";
-import Debug15 from "debug";
+import Debug14 from "debug";
 import * as process2 from "process";
 function createFork({ args, processPath, name }, options) {
   const child = cp.fork(processPath, args, {
@@ -12213,16 +12304,16 @@ function createSpawn({ args, processPath, name, cwd }, options) {
   return createChildProcess({ childProcess: child, name }, options);
 }
 function createChildProcess({ childProcess, name }, options) {
-  const debug21 = Debug15(`mobbdev:${name}`);
+  const debug20 = Debug14(`mobbdev:${name}`);
   const { display } = options;
   return new Promise((resolve, reject) => {
     let out = "";
     const onData = (chunk) => {
-      debug21(`chunk received from ${name} std ${chunk}`);
+      debug20(`chunk received from ${name} std ${chunk}`);
       out += chunk;
     };
     if (!childProcess?.stdout || !childProcess?.stderr) {
-      debug21(`unable to fork ${name}`);
+      debug20(`unable to fork ${name}`);
       reject(new Error(`unable to fork ${name}`));
     }
     childProcess.stdout?.on("data", onData);
@@ -12232,18 +12323,18 @@ function createChildProcess({ childProcess, name }, options) {
       childProcess.stderr?.pipe(process2.stderr);
     }
     childProcess.on("exit", (code) => {
-      debug21(`${name} exit code ${code}`);
+      debug20(`${name} exit code ${code}`);
       resolve({ message: out, code });
     });
     childProcess.on("error", (err) => {
-      debug21(`${name} error %o`, err);
+      debug20(`${name} error %o`, err);
       reject(err);
     });
   });
 }
 
 // src/features/analysis/scanners/checkmarx.ts
-var debug16 = Debug16("mobbdev:checkmarx");
+var debug15 = Debug15("mobbdev:checkmarx");
 var moduleUrl;
 if (typeof __filename !== "undefined") {
   moduleUrl = __filename;
@@ -12302,14 +12393,14 @@ function validateCheckmarxInstallation() {
   existsSync(getCheckmarxPath());
 }
 async function forkCheckmarx(args, { display }) {
-  debug16("fork checkmarx with args %o %s", args.join(" "), display);
+  debug15("fork checkmarx with args %o %s", args.join(" "), display);
   return createSpawn(
     { args, processPath: getCheckmarxPath(), name: "checkmarx" },
     { display }
   );
 }
 async function getCheckmarxReport({ reportPath, repositoryRoot, branch, projectName }, { skipPrompts = false }) {
-  debug16("get checkmarx report start %s %s", reportPath, repositoryRoot);
+  debug15("get checkmarx report start %s %s", reportPath, repositoryRoot);
   const { code: loginCode } = await forkCheckmarx(VALIDATE_COMMAND, {
     display: false
   });
@@ -12377,10 +12468,10 @@ async function validateCheckamxCredentials() {
 // src/features/analysis/scanners/snyk.ts
 import { createRequire as createRequire2 } from "module";
 import chalk5 from "chalk";
-import Debug17 from "debug";
+import Debug16 from "debug";
 import { createSpinner as createSpinner3 } from "nanospinner";
 import open2 from "open";
-var debug17 = Debug17("mobbdev:snyk");
+var debug16 = Debug16("mobbdev:snyk");
 var moduleUrl2;
 if (typeof __filename !== "undefined") {
   moduleUrl2 = __filename;
@@ -12402,13 +12493,13 @@ if (typeof __filename !== "undefined") {
 var costumeRequire2 = createRequire2(moduleUrl2);
 var SNYK_PATH = costumeRequire2.resolve("snyk/bin/snyk");
 var SNYK_ARTICLE_URL = "https://docs.snyk.io/scan-using-snyk/snyk-code/configure-snyk-code#enable-snyk-code";
-debug17("snyk executable path %s", SNYK_PATH);
+debug16("snyk executable path %s", SNYK_PATH);
 async function forkSnyk(args, { display }) {
-  debug17("fork snyk with args %o %s", args, display);
+  debug16("fork snyk with args %o %s", args, display);
   return createFork({ args, processPath: SNYK_PATH, name: "snyk" }, { display });
 }
 async function getSnykReport(reportPath, repoRoot, { skipPrompts = false }) {
-  debug17("get snyk report start %s %s", reportPath, repoRoot);
+  debug16("get snyk report start %s %s", reportPath, repoRoot);
   const config2 = await forkSnyk(["config"], { display: false });
   const { message: configMessage } = config2;
   if (!configMessage.includes("api: ")) {
@@ -12422,7 +12513,7 @@ async function getSnykReport(reportPath, repoRoot, { skipPrompts = false }) {
     snykLoginSpinner.update({
       text: "\u{1F513} Waiting for Snyk login to complete"
     });
-    debug17("no token in the config %s", config2);
+    debug16("no token in the config %s", config2);
     await forkSnyk(["auth"], { display: true });
     snykLoginSpinner.success({ text: "\u{1F513} Login to Snyk Successful" });
   }
@@ -12432,12 +12523,12 @@ async function getSnykReport(reportPath, repoRoot, { skipPrompts = false }) {
     { display: true }
   );
   if (scanOutput.includes("Snyk Code is not supported for org")) {
-    debug17("snyk code is not enabled %s", scanOutput);
+    debug16("snyk code is not enabled %s", scanOutput);
     snykSpinner.error({ text: "\u{1F50D} Snyk configuration needed" });
     const answer = await snykArticlePrompt();
-    debug17("answer %s", answer);
+    debug16("answer %s", answer);
     if (answer) {
-      debug17("opening the browser");
+      debug16("opening the browser");
       await open2(SNYK_ARTICLE_URL);
     }
     console.log(
@@ -12452,9 +12543,9 @@ async function getSnykReport(reportPath, repoRoot, { skipPrompts = false }) {
 }
 
 // src/features/analysis/upload-file.ts
-import Debug18 from "debug";
+import Debug17 from "debug";
 import fetch3, { File, fileFrom, FormData } from "node-fetch";
-var debug18 = Debug18("mobbdev:upload-file");
+var debug17 = Debug17("mobbdev:upload-file");
 async function uploadFile({
   file,
   url,
@@ -12467,9 +12558,9 @@ async function uploadFile({
   logInfo2(`FileUpload: upload file start ${url}`);
   logInfo2(`FileUpload: upload fields`, uploadFields);
   logInfo2(`FileUpload: upload key ${uploadKey}`);
-  debug18("upload file start %s", url);
-  debug18("upload fields %o", uploadFields);
-  debug18("upload key %s", uploadKey);
+  debug17("upload file start %s", url);
+  debug17("upload fields %o", uploadFields);
+  debug17("upload key %s", uploadKey);
   const form = new FormData();
   Object.entries(uploadFields).forEach(([key, value]) => {
     form.append(key, value);
@@ -12478,11 +12569,11 @@ async function uploadFile({
     form.append("key", uploadKey);
   }
   if (typeof file === "string") {
-    debug18("upload file from path %s", file);
+    debug17("upload file from path %s", file);
     logInfo2(`FileUpload: upload file from path ${file}`);
     form.append("file", await fileFrom(file));
   } else {
-    debug18("upload file from buffer");
+    debug17("upload file from buffer");
     logInfo2(`FileUpload: upload file from buffer`);
     form.append("file", new File([new Uint8Array(file)], "file"));
   }
@@ -12493,11 +12584,11 @@ async function uploadFile({
     agent
   });
   if (!response.ok) {
-    debug18("error from S3 %s %s", response.body, response.status);
+    debug17("error from S3 %s %s", response.body, response.status);
     logInfo2(`FileUpload: error from S3 ${response.body} ${response.status}`);
     throw new Error(`Failed to upload the file: ${response.status}`);
   }
-  debug18("upload file done");
+  debug17("upload file done");
   logInfo2(`FileUpload: upload file done`);
 }
 
@@ -12532,9 +12623,9 @@ async function downloadRepo({
 }) {
   const { createSpinner: createSpinner5 } = Spinner2({ ci });
   const repoSpinner = createSpinner5("\u{1F4BE} Downloading Repo").start();
-  debug19("download repo %s %s %s", repoUrl, dirname);
+  debug18("download repo %s %s %s", repoUrl, dirname);
   const zipFilePath = path9.join(dirname, "repo.zip");
-  debug19("download URL: %s auth headers: %o", downloadUrl, authHeaders);
+  debug18("download URL: %s auth headers: %o", downloadUrl, authHeaders);
   const response = await fetch4(downloadUrl, {
     method: "GET",
     headers: {
@@ -12542,7 +12633,7 @@ async function downloadRepo({
     }
   });
   if (!response.ok) {
-    debug19("SCM zipball request failed %s %s", response.body, response.status);
+    debug18("SCM zipball request failed %s %s", response.body, response.status);
     repoSpinner.error({ text: "\u{1F4BE} Repo download failed" });
     throw new Error(`Can't access ${chalk6.bold(repoUrl)}`);
   }
@@ -12556,7 +12647,7 @@ async function downloadRepo({
   if (!repoRoot) {
     throw new Error("Repo root not found");
   }
-  debug19("repo root %s", repoRoot);
+  debug18("repo root %s", repoRoot);
   repoSpinner.success({ text: "\u{1F4BE} Repo downloaded successfully" });
   return path9.join(dirname, repoRoot);
 }
@@ -12565,7 +12656,7 @@ var getReportUrl = ({
   projectId,
   fixReportId
 }) => `${WEB_APP_URL}/organization/${organizationId}/project/${projectId}/report/${fixReportId}`;
-var debug19 = Debug19("mobbdev:index");
+var debug18 = Debug18("mobbdev:index");
 async function runAnalysis(params, options) {
   const tmpObj = tmp2.dirSync({
     unsafeCleanup: true
@@ -12710,7 +12801,7 @@ async function _scan(params, { skipPrompts = false } = {}) {
     commitDirectly,
     pullRequest
   } = params;
-  debug19("start %s %s", dirname, repo);
+  debug18("start %s %s", dirname, repo);
   const { createSpinner: createSpinner5 } = Spinner2({ ci });
   skipPrompts = skipPrompts || ci;
   const gqlClient = await getAuthenticatedGQLClient({
@@ -12779,8 +12870,8 @@ async function _scan(params, { skipPrompts = false } = {}) {
     );
   }
   const { sha } = getReferenceDataRes.gitReference;
-  debug19("project id %s", projectId);
-  debug19("default branch %s", reference);
+  debug18("project id %s", projectId);
+  debug18("default branch %s", reference);
   if (command === "scan") {
     reportPath = await getReport(
       {
@@ -14483,6 +14574,7 @@ var log = logger.log.bind(logger);
 // src/mcp/services/McpGQLClient.ts
 import crypto3 from "crypto";
 import { GraphQLClient as GraphQLClient2 } from "graphql-request";
+import { HttpsProxyAgent as HttpsProxyAgent2 } from "https-proxy-agent";
 import { v4 as uuidv42 } from "uuid";
 init_configs();
 
@@ -14694,6 +14786,23 @@ var McpAuthService = class {
 };
 
 // src/mcp/services/McpGQLClient.ts
+function getProxyAgent2(url) {
+  try {
+    const parsedUrl = new URL(url);
+    const isHttp = parsedUrl.protocol === "http:";
+    const isHttps = parsedUrl.protocol === "https:";
+    const proxy = isHttps ? HTTPS_PROXY || HTTP_PROXY : isHttp ? HTTP_PROXY : null;
+    if (proxy) {
+      logDebug("[GraphQL] Using proxy for websocket subscriptions", { proxy });
+      return new HttpsProxyAgent2(proxy);
+    }
+  } catch (err) {
+    logDebug(`[GraphQL] Skipping proxy for ${url}`, {
+      error: err.message
+    });
+  }
+  return void 0;
+}
 var McpGQLClient = class {
   constructor(args) {
     __publicField(this, "client");
@@ -14867,11 +14976,13 @@ var McpGQLClient = class {
         this._auth.type === "apiKey" ? {
           apiKey: this._auth.apiKey,
           type: "apiKey",
-          timeoutInMs: params.timeoutInMs
+          timeoutInMs: params.timeoutInMs,
+          proxyAgent: getProxyAgent2(this.apiUrl)
         } : {
           token: this._auth.token,
           type: "token",
-          timeoutInMs: params.timeoutInMs
+          timeoutInMs: params.timeoutInMs,
+          proxyAgent: getProxyAgent2(this.apiUrl)
         }
       );
       logDebug(`[${scanContext}] GraphQL: GetAnalysis subscription completed`, {
@@ -16267,7 +16378,6 @@ var McpServer = class {
         tools: [
           {
             name: mcpCheckerTool.name,
-            display_name: mcpCheckerTool.display_name || mcpCheckerTool.name,
             description: mcpCheckerTool.description,
             inputSchema: {
               type: "object",
@@ -16297,7 +16407,6 @@ var McpServer = class {
     const response = {
       tools: toolsDefinitions.map((tool) => ({
         name: tool.name,
-        display_name: tool.display_name || tool.name,
         description: tool.description || "",
         inputSchema: {
           type: "object",
@@ -22598,13 +22707,13 @@ var parseArgs = async (args) => {
 };
 
 // src/index.ts
-var debug20 = Debug20("mobbdev:index");
+var debug19 = Debug19("mobbdev:index");
 async function run() {
   return parseArgs(hideBin(process.argv));
 }
 (async () => {
   try {
-    debug20("Bugsy CLI v%s running...", packageJson.version);
+    debug19("Bugsy CLI v%s running...", packageJson.version);
     await run();
     process.exit(0);
   } catch (err) {