multicorn-shield 0.10.0 → 0.12.0

package/dist/multicorn-proxy.js

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
 import { existsSync } from 'fs';
-import { mkdir, writeFile, readFile, copyFile, unlink } from 'fs/promises';
+import { mkdir, writeFile, readFile, copyFile, chmod, unlink } from 'fs/promises';
 import { join, dirname } from 'path';
 import { homedir } from 'os';
 import { fileURLToPath } from 'url';
@@ -473,19 +473,86 @@ async function installWindsurfNativeHooks() {
   await mkdir(hooksDir, { recursive: true });
   await writeFile(hooksPath, JSON.stringify(base, null, 2) + "\n", { encoding: "utf8" });
 }
-var PLATFORM_LABELS = ["OpenClaw", "Claude Code", "Cursor", "Windsurf", "Local MCP / Other"];
+function getClineHooksInstallDir() {
+  return join(homedir(), ".multicorn", "cline-hooks");
+}
+function getClineGlobalHooksDir() {
+  return join(homedir(), "Documents", "Cline", "Hooks");
+}
+async function installClineNativeHooks() {
+  const root = multicornShieldPackageRoot();
+  const srcPre = join(root, "plugins", "cline", "hooks", "scripts", "pre-tool-use.cjs");
+  const srcPost = join(root, "plugins", "cline", "hooks", "scripts", "post-tool-use.cjs");
+  const srcShared = join(root, "plugins", "cline", "hooks", "scripts", "shared.cjs");
+  if (!existsSync(srcPre) || !existsSync(srcPost) || !existsSync(srcShared)) {
+    throw new Error(
+      `Could not find Shield Cline hook scripts at ${srcPre}. If you use npm, install the latest multicorn-shield package.`
+    );
+  }
+  const installDir = getClineHooksInstallDir();
+  await mkdir(installDir, { recursive: true });
+  const destPre = join(installDir, "pre-tool-use.cjs");
+  const destPost = join(installDir, "post-tool-use.cjs");
+  const destShared = join(installDir, "shared.cjs");
+  await copyFile(srcPre, destPre);
+  await copyFile(srcPost, destPost);
+  await copyFile(srcShared, destShared);
+  const hookScriptMode = 493;
+  await chmod(destPre, hookScriptMode);
+  await chmod(destPost, hookScriptMode);
+  await chmod(destShared, hookScriptMode);
+  const hooksDir = getClineGlobalHooksDir();
+  await mkdir(hooksDir, { recursive: true });
+  const preWrapper = join(hooksDir, "PreToolUse");
+  const postWrapper = join(hooksDir, "PostToolUse");
+  const preContent = `#!/usr/bin/env node
+require(${JSON.stringify(destPre)});
+`;
+  const postContent = `#!/usr/bin/env node
+require(${JSON.stringify(destPost)});
+`;
+  await writeFile(preWrapper, preContent, { encoding: "utf8", mode: 493 });
+  await writeFile(postWrapper, postContent, { encoding: "utf8", mode: 493 });
+}
+async function promptClineIntegrationMode(ask) {
+  process.stderr.write("\n" + style.bold("Cline integration") + "\n");
+  process.stderr.write(
+    "  " + style.violet("1") + ". Native plugin (recommended) - Cline Hooks see every file, terminal, browser, and MCP action\n"
+  );
+  process.stderr.write(
+    "  " + style.violet("2") + ". Hosted proxy - govern MCP traffic only (paste proxy URL into Cline MCP settings)\n"
+  );
+  let choice = 0;
+  while (choice === 0) {
+    const input = await ask("Choose integration (1-2): ");
+    const num = parseInt(input.trim(), 10);
+    if (num === 1) choice = 1;
+    if (num === 2) choice = 2;
+  }
+  return choice === 1 ? "native" : "hosted";
+}
+var PLATFORM_LABELS = [
+  "OpenClaw",
+  "Claude Code",
+  "Cursor",
+  "Windsurf",
+  "Cline",
+  "Local MCP / Other"
+];
 var PLATFORM_BY_SELECTION = {
   1: "openclaw",
   2: "claude-code",
   3: "cursor",
   4: "windsurf",
-  5: "other-mcp"
+  5: "cline",
+  6: "other-mcp"
 };
 var DEFAULT_AGENT_NAMES = {
   openclaw: "my-openclaw-agent",
   "claude-code": "my-claude-code-agent",
   cursor: "my-cursor-agent",
-  windsurf: "my-windsurf-agent"
+  windsurf: "my-windsurf-agent",
+  cline: "my-cline-agent"
 };
 async function promptPlatformSelection(ask) {
   process.stderr.write(
@@ -505,13 +572,13 @@ async function promptPlatformSelection(ask) {
     );
   }
   process.stderr.write(
-    style.dim("     Pick 5 if you want to wrap a local MCP server with multicorn-proxy --wrap.") + "\n"
+    style.dim("     Pick 6 if you want to wrap a local MCP server with multicorn-proxy --wrap.") + "\n"
   );
   let selection = 0;
   while (selection === 0) {
-    const input = await ask("Select (1-5): ");
+    const input = await ask("Select (1-6): ");
     const num = parseInt(input.trim(), 10);
-    if (num >= 1 && num <= 5) {
+    if (num >= 1 && num <= 6) {
       selection = num;
     }
   }
@@ -632,7 +699,7 @@ async function createProxyConfig(baseUrl, apiKey, agentName, targetUrl, serverNa
   return typeof data?.["proxy_url"] === "string" ? data["proxy_url"] : "";
 }
 function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
-  const usesInlineKey = platform === "cursor" || platform === "windsurf";
+  const usesInlineKey = platform === "cursor" || platform === "windsurf" || platform === "cline";
   const authHeader = usesInlineKey ? `Bearer ${apiKey}` : "Bearer YOUR_SHIELD_API_KEY";
   const urlKey = platform === "windsurf" ? "serverUrl" : "url";
   const mcpSnippet = JSON.stringify(
@@ -657,6 +724,23 @@ function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
     process.stderr.write(
       "\n" + style.dim("Add this to ~/.codeium/windsurf/mcp_config.json:") + "\n\n"
     );
+  } else if (platform === "cline") {
+    process.stderr.write("\n" + style.dim("Add this to your Cline MCP settings file:") + "\n");
+    process.stderr.write(
+      style.dim(
+        "  macOS: ~/Library/Application Support/Code/User/globalStorage/saoudrizwan.claude-dev/settings/cline_mcp_settings.json"
+      ) + "\n"
+    );
+    process.stderr.write(
+      style.dim(
+        "  Windows: %APPDATA%\\Code\\User\\globalStorage\\saoudrizwan.claude-dev\\settings\\cline_mcp_settings.json"
+      ) + "\n"
+    );
+    process.stderr.write(
+      style.dim(
+        "  Linux: ~/.config/Code/User/globalStorage/saoudrizwan.claude-dev/settings/cline_mcp_settings.json"
+      ) + "\n\n"
+    );
   } else {
     process.stderr.write("\n" + style.dim("Add this to ~/.cursor/mcp.json:") + "\n\n");
   }
@@ -680,6 +764,13 @@ function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
       ) + "\n"
     );
   }
+  if (platform === "cline") {
+    process.stderr.write(
+      style.dim(
+        "After pasting, restart Cline or reload the VS Code window. Cline will discover the Shield tools automatically."
+      ) + "\n"
+    );
+  }
   if (platform === "windsurf") {
     process.stderr.write(style.dim("Then restart Windsurf (Cmd/Ctrl+Q, then reopen).") + "\n");
     process.stderr.write(
@@ -777,7 +868,7 @@ async function runInit(explicitBaseUrl) {
     const selection = await promptPlatformSelection(ask);
     const selectedPlatform = PLATFORM_BY_SELECTION[selection] ?? "cursor";
     const selectedLabel = PLATFORM_LABELS[selection - 1] ?? "Cursor";
-    if (selection === 5) {
+    if (selection === 6) {
       const raw = existing !== null ? { ...existing } : {};
       raw["apiKey"] = apiKey;
       raw["baseUrl"] = resolvedBaseUrl;
@@ -1001,6 +1092,71 @@ An agent for ${selectedLabel} already exists: ${style.cyan(existingForPlatform.n
           setupSucceeded = true;
         }
       }
+    } else if (selection === 5) {
+      const clineMode = await promptClineIntegrationMode(ask);
+      if (clineMode === "native") {
+        try {
+          await installClineNativeHooks();
+          process.stderr.write("\n" + style.bold("Shield Cline hooks installed") + "\n\n");
+          process.stderr.write(
+            style.dim(
+              "The Shield hook runs with your user permissions. It intercepts Cline tool calls to check permissions and log activity. Review the scripts under "
+            ) + style.cyan("~/.multicorn/cline-hooks") + style.dim(" if that is a concern.") + "\n"
+          );
+          configuredAgents.push({
+            selection,
+            platform: selectedPlatform,
+            platformLabel: selectedLabel,
+            agentName,
+            clineIntegration: "native"
+          });
+          setupSucceeded = true;
+        } catch (error) {
+          const detail = error instanceof Error ? error.message : String(error);
+          process.stderr.write(style.red("\u2717 ") + detail + "\n");
+        }
+      } else {
+        const { targetUrl, shortName } = await promptProxyConfig(ask, agentName);
+        let proxyUrl = "";
+        let created = false;
+        while (!created) {
+          const spinner = withSpinner("Creating proxy config...");
+          try {
+            proxyUrl = await createProxyConfig(
+              resolvedBaseUrl,
+              apiKey,
+              agentName,
+              targetUrl,
+              shortName,
+              selectedPlatform
+            );
+            spinner.stop(true, "Proxy config created!");
+            created = true;
+          } catch (error) {
+            const detail = error instanceof Error ? error.message : String(error);
+            spinner.stop(false, detail);
+            const retry = await ask("Try again? (Y/n) ");
+            if (retry.trim().toLowerCase() === "n") {
+              break;
+            }
+          }
+        }
+        if (created && proxyUrl.length > 0) {
+          process.stderr.write("\n" + style.bold("Your Shield proxy URL:") + "\n");
+          process.stderr.write("  " + style.cyan(proxyUrl) + "\n");
+          printPlatformSnippet(selectedPlatform, proxyUrl, shortName, apiKey);
+          configuredAgents.push({
+            selection,
+            platform: selectedPlatform,
+            platformLabel: selectedLabel,
+            agentName,
+            shortName,
+            proxyUrl,
+            clineIntegration: "hosted"
+          });
+          setupSucceeded = true;
+        }
+      }
     } else {
       const { targetUrl, shortName } = await promptProxyConfig(ask, agentName);
       let proxyUrl = "";
@@ -1119,6 +1275,22 @@ An agent for ${selectedLabel} already exists: ${style.cyan(existingForPlatform.n
         "\n" + style.bold("To complete your Windsurf hosted-proxy setup:") + "\n  1. If you don't have Windsurf yet, download it from " + style.cyan("https://windsurf.com/download") + "\n  2. Open " + style.cyan("~/.codeium/windsurf/mcp_config.json") + " and paste the config snippet shown above\n  3. Restart Windsurf (or launch it for the first time) to load the new MCP server\n"
       );
     }
+    const clineNativeConfigured = configuredAgents.some(
+      (a) => a.platform === "cline" && a.clineIntegration === "native"
+    );
+    const clineHostedConfigured = configuredAgents.some(
+      (a) => a.platform === "cline" && a.clineIntegration === "hosted"
+    );
+    if (clineNativeConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete native Cline (Shield) setup:") + "\n  1. Enable Hooks in Cline: open VS Code, click the Cline sidebar icon, click the gear icon,\n     scroll down to the Advanced section, and toggle Hooks on.\n  2. Reload the VS Code window (Cmd+Shift+P > Reload Window)\n  3. Trigger any tool call to verify Shield is intercepting\n"
+      );
+    }
+    if (clineHostedConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete your Cline hosted-proxy setup:") + "\n  1. If you don't have Cline yet, install it from the VS Code marketplace\n  2. Open your Cline MCP settings file and paste the config snippet shown above\n  3. Restart Cline or reload the VS Code window\n"
+      );
+    }
     if (blocks.length > 0) {
       process.stderr.write("\n" + style.bold(style.violet("Next steps")) + "\n");
       process.stderr.write(blocks.join("") + "\n");

package/dist/openclaw-hook/handler.js

@@ -377,7 +377,6 @@ ${url}
 }
 async function waitForConsent(agentId, agentName, apiKey, baseUrl, scope, logger) {
   const dashboardUrl = deriveDashboardUrl(baseUrl);
-  console.error("[SHIELD] buildConsentUrl baseUrl:", baseUrl);
   const consentUrl = buildConsentUrl(agentName, dashboardUrl, scope);
   process.stderr.write(
     `[multicorn-shield] Opening consent page...

package/dist/openclaw-plugin/multicorn-shield.js

@@ -315,14 +315,6 @@ async function fetchGrantedScopes(agentId, apiKey, baseUrl, logger) {
 }
 async function checkActionPermission(payload, apiKey, baseUrl, logger) {
   try {
-    const requestBody = {
-      agent: payload.agent,
-      service: payload.service,
-      actionType: payload.actionType,
-      status: payload.status,
-      metadata: payload.metadata
-    };
-    console.error("[SHIELD-CLIENT] POST /api/v1/actions request: " + JSON.stringify(requestBody));
     const response = await fetch(`${baseUrl}/api/v1/actions`, {
       method: "POST",
       headers: {
@@ -333,22 +325,18 @@ async function checkActionPermission(payload, apiKey, baseUrl, logger) {
       signal: AbortSignal.timeout(REQUEST_TIMEOUT_MS)
     });
     if (response.status === 201) {
-      console.error(
-        "[SHIELD-CLIENT] response status=201, returning approved (body not read - backend may have failed approval creation)"
-      );
+      console.error("[SHIELD-CLIENT] POST /api/v1/actions: 201 approved");
       return { status: "approved" };
     }
     if (response.status === 202) {
       const body = await response.json();
       const data = isApiSuccess(body) ? body.data : null;
-      console.error("[SHIELD-CLIENT] response status=202 body=" + JSON.stringify(data ?? body));
+      console.error("[SHIELD-CLIENT] POST /api/v1/actions: 202 pending");
       if (!isApiSuccess(body) || data === null) {
         return { status: "blocked" };
       }
       const approvalId = typeof data["approval_id"] === "string" ? data["approval_id"] : void 0;
-      console.error(
-        "[SHIELD-CLIENT] extracted: status=" + String(data["status"]) + " approval_id=" + (approvalId ?? "undefined")
-      );
+      console.error("[SHIELD-CLIENT] extracted: approval_id=" + (approvalId ?? "undefined"));
       if (approvalId === void 0) {
         return { status: "blocked" };
       }
@@ -439,7 +427,6 @@ ${url}
 }
 async function waitForConsent(agentId, agentName, apiKey, baseUrl, scope, logger) {
   const dashboardUrl = deriveDashboardUrl(baseUrl);
-  console.error("[SHIELD] buildConsentUrl baseUrl:", baseUrl);
   const consentUrl = buildConsentUrl(agentName, dashboardUrl, scope);
   process.stderr.write(
     `[multicorn-shield] Opening consent page...
@@ -509,7 +496,14 @@ function readConfig() {
   const resolvedBaseUrl = asString(cachedMulticornConfig?.baseUrl) ?? asString(process.env["MULTICORN_BASE_URL"]) ?? "https://api.multicorn.ai";
   const agentName = asString(pc["agentName"]) ?? process.env["MULTICORN_AGENT_NAME"] ?? agentNameFromOpenclawPlatform(cachedMulticornConfig) ?? asString(cachedMulticornConfig?.agentName) ?? null;
   const failMode = "closed";
-  return { apiKey: resolvedApiKey, baseUrl: resolvedBaseUrl, agentName, failMode };
+  let apiKey = resolvedApiKey;
+  if (apiKey.length > 0 && (!apiKey.startsWith("mcs_") || apiKey.length < 16)) {
+    pluginLogger?.error(
+      "Invalid API key format. Key must start with mcs_ and be at least 16 characters."
+    );
+    apiKey = "";
+  }
+  return { apiKey, baseUrl: resolvedBaseUrl, agentName, failMode };
 }
 function asString(value) {
   return typeof value === "string" && value.length > 0 ? value : void 0;
@@ -884,7 +878,9 @@ var plugin = {
     if (config.agentName !== null) {
       pinnedAgentName = config.agentName;
     }
-    console.error("[SHIELD-DIAG] cachedMulticornConfig: " + JSON.stringify(cachedMulticornConfig));
+    api.logger.info(
+      `Multicorn Shield config loaded: hasApiKey=${String((cachedMulticornConfig?.apiKey ?? "").length > 0)} baseUrl=${cachedMulticornConfig?.baseUrl ?? "default"} agentName=${cachedMulticornConfig?.agentName ?? "unset"} defaultAgent=${cachedMulticornConfig?.defaultAgent ?? "unset"} agents=${String(cachedMulticornConfig?.agents?.length ?? 0)}`
+    );
     api.on("before_tool_call", beforeToolCall, { priority: 10 });
     api.on("after_tool_call", afterToolCall);
     api.logger.info("Multicorn Shield plugin registered.");

package/dist/openclaw-plugin/openclaw.plugin.json

@@ -8,7 +8,9 @@
     "additionalProperties": false,
     "properties": {
       "apiKey": {
-        "type": "string"
+        "type": "string",
+        "pattern": "^mcs_.{12,}$",
+        "minLength": 16
       },
       "baseUrl": {
         "type": "string"

package/dist/proxy.cjs

@@ -437,12 +437,186 @@ function mapMcpToolToScope(toolName) {
   return { service: head, permissionLevel, actionType };
 }
 
+// src/logger/action-logger.ts
+function createActionLogger(config) {
+  if (!config.apiKey || config.apiKey.trim().length === 0) {
+    throw new Error(
+      "[ActionLogger] API key is required. Provide it via the 'apiKey' config option."
+    );
+  }
+  const baseUrl = config.baseUrl ?? "https://api.multicorn.ai";
+  const timeout = config.timeout ?? 5e3;
+  if (!baseUrl.startsWith("https://") && !baseUrl.startsWith("http://localhost")) {
+    throw new Error(
+      `[ActionLogger] Base URL must use HTTPS for security. Received: "${baseUrl}". Use https:// or http://localhost for local development.`
+    );
+  }
+  const endpoint = `${baseUrl}/api/v1/actions`;
+  const batchEnabled = config.batchMode?.enabled ?? false;
+  const maxBatchSize = config.batchMode?.maxSize ?? 10;
+  const flushInterval = config.batchMode?.flushIntervalMs ?? 5e3;
+  const queue = [];
+  let flushTimer;
+  let isShutdown = false;
+  async function sendActions(actions) {
+    if (actions.length === 0) return;
+    const convertAction = (action) => ({
+      agent: action.agent,
+      service: action.service,
+      actionType: action.actionType,
+      status: action.status,
+      ...action.cost !== void 0 ? { cost: action.cost } : {},
+      ...action.metadata !== void 0 ? { metadata: action.metadata } : {}
+    });
+    const convertedActions = actions.map(convertAction);
+    const payload = batchEnabled ? { actions: convertedActions } : convertedActions[0];
+    let lastError;
+    for (let attempt = 0; attempt < 2; attempt++) {
+      try {
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => {
+          controller.abort();
+        }, timeout);
+        const response = await fetch(endpoint, {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "X-Multicorn-Key": config.apiKey
+          },
+          body: JSON.stringify(payload),
+          signal: controller.signal
+        });
+        clearTimeout(timeoutId);
+        if (response.ok) {
+          return;
+        }
+        if (response.status >= 400 && response.status < 500) {
+          const body = await response.text().catch(() => "");
+          throw new Error(
+            `[ActionLogger] Client error (${String(response.status)}): ${response.statusText}. Response: ${body}. Check your API key and payload format.`
+          );
+        }
+        if (response.status >= 500 && attempt === 0) {
+          lastError = new Error(
+            `[ActionLogger] Server error (${String(response.status)}): ${response.statusText}. Retrying once...`
+          );
+          await sleep(100 * Math.pow(2, attempt));
+          continue;
+        }
+        throw new Error(
+          `[ActionLogger] Server error (${String(response.status)}) after retry: ${response.statusText}. Multicorn API may be experiencing issues.`
+        );
+      } catch (error) {
+        if (error instanceof Error) {
+          if (error.name === "AbortError") {
+            lastError = new Error(
+              `[ActionLogger] Request timeout after ${String(timeout)}ms. Increase the 'timeout' config option or check your network connection.`
+            );
+          } else if (error.message.includes("Client error") || error.message.includes("Server error")) {
+            lastError = error;
+          } else {
+            lastError = new Error(
+              `[ActionLogger] Network error: ${error.message}. Check your network connection and API endpoint.`
+            );
+          }
+        } else {
+          lastError = new Error(`[ActionLogger] Unknown error: ${String(error)}`);
+        }
+        if (attempt === 0 && !lastError.message.includes("Client error")) {
+          await sleep(100 * Math.pow(2, attempt));
+          continue;
+        }
+        break;
+      }
+    }
+    if (lastError) {
+      if (config.onError) {
+        config.onError(lastError);
+      }
+    }
+  }
+  async function flushQueue() {
+    if (queue.length === 0) return;
+    const actions = queue.map((item) => item.payload);
+    queue.length = 0;
+    await sendActions(actions);
+  }
+  function startFlushTimer() {
+    if (flushTimer !== void 0) return;
+    flushTimer = setInterval(() => {
+      flushQueue().catch(() => {
+      });
+    }, flushInterval);
+    const timer = flushTimer;
+    if (typeof timer.unref === "function") {
+      timer.unref();
+    }
+  }
+  function stopFlushTimer() {
+    if (flushTimer) {
+      clearInterval(flushTimer);
+      flushTimer = void 0;
+    }
+  }
+  if (batchEnabled) {
+    startFlushTimer();
+  }
+  return {
+    logAction(action) {
+      if (isShutdown) {
+        throw new Error(
+          "[ActionLogger] Cannot log action after shutdown. Create a new logger instance."
+        );
+      }
+      if (action.agent.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'agent' field.");
+      }
+      if (action.service.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'service' field.");
+      }
+      if (action.actionType.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'actionType' field.");
+      }
+      if (action.status.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'status' field.");
+      }
+      if (batchEnabled) {
+        queue.push({ payload: action, timestamp: Date.now() });
+        if (queue.length >= maxBatchSize) {
+          flushQueue().catch(() => {
+          });
+        }
+      } else {
+        sendActions([action]).catch(() => {
+        });
+      }
+      return Promise.resolve();
+    },
+    async flush() {
+      if (!batchEnabled) return;
+      await flushQueue();
+    },
+    async shutdown() {
+      if (isShutdown) return;
+      isShutdown = true;
+      stopFlushTimer();
+      if (batchEnabled) {
+        await flushQueue();
+      }
+    }
+  };
+}
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
+
 exports.ShieldAuthError = ShieldAuthError;
 exports.buildAuthErrorResponse = buildAuthErrorResponse;
 exports.buildBlockedResponse = buildBlockedResponse;
 exports.buildInternalErrorResponse = buildInternalErrorResponse;
 exports.buildServiceUnreachableResponse = buildServiceUnreachableResponse;
 exports.buildSpendingBlockedResponse = buildSpendingBlockedResponse;
+exports.createActionLogger = createActionLogger;
 exports.createLogger = createLogger;
 exports.deriveDashboardUrl = deriveDashboardUrl;
 exports.extractActionFromToolName = extractActionFromToolName;