npm - multicorn-shield - Versions diffs - 1.1.0 → 1.2.0 - Mend

multicorn-shield 1.1.0 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/CHANGELOG.md +15 -0
package/dist/multicorn-proxy.js +2651 -2442
package/dist/multicorn-shield.js +1651 -1441
package/dist/shield-extension.js +19 -19
package/package.json +1 -1
package/plugins/cline/hooks/scripts/shared.cjs +49 -12
package/plugins/gemini-cli/hooks/scripts/shared.cjs +49 -12
package/plugins/windsurf/hooks/scripts/post-action.cjs +60 -12
package/plugins/windsurf/hooks/scripts/pre-action.cjs +60 -12

package/dist/multicorn-shield.js CHANGED Viewed

@@ -1,7 +1,7 @@
 #!/usr/bin/env node
 import { existsSync, statSync } from 'fs';
 import { readFile, mkdir, writeFile, copyFile, chmod, unlink } from 'fs/promises';
-import { join, dirname } from 'path';
+import { join, dirname, resolve, basename, sep } from 'path';
 import { homedir } from 'os';
 import { fileURLToPath } from 'url';
 import { createInterface } from 'readline';
@@ -9,714 +9,1083 @@ import { spawn } from 'child_process';
 import { createHash } from 'crypto';
 import 'stream';
-var style = {
-  violet: (s) => `\x1B[38;2;124;58;237m${s}\x1B[0m`,
-  violetLight: (s) => `\x1B[38;2;167;139;250m${s}\x1B[0m`,
-  green: (s) => `\x1B[38;2;34;197;94m${s}\x1B[0m`,
-  yellow: (s) => `\x1B[38;2;245;158;11m${s}\x1B[0m`,
-  red: (s) => `\x1B[38;2;239;68;68m${s}\x1B[0m`,
-  cyan: (s) => `\x1B[38;2;6;182;212m${s}\x1B[0m`,
-  bold: (s) => `\x1B[1m${s}\x1B[0m`,
-  dim: (s) => `\x1B[2m${s}\x1B[0m`
-};
-var BANNER = [
-  " \u2588\u2588\u2588 \u2588  \u2588 \u2588 \u2588\u2588\u2588 \u2588   \u2588\u2588\u2584 ",
-  " \u2588   \u2588  \u2588 \u2588 \u2588   \u2588   \u2588  \u2588",
-  " \u2588\u2588\u2588 \u2588\u2588\u2588\u2588 \u2588 \u2588\u2588  \u2588   \u2588  \u2588",
-  "   \u2588 \u2588  \u2588 \u2588 \u2588   \u2588   \u2588  \u2588",
-  " \u2588\u2588\u2588 \u2588  \u2588 \u2588 \u2588\u2588\u2588 \u2588\u2588\u2588 \u2588\u2588\u2580 "
-].map((line) => style.violet(line)).join("\n");
-function withSpinner(message) {
-  const frames = ["\u280B", "\u2819", "\u2839", "\u2838", "\u283C", "\u2834", "\u2826", "\u2827", "\u2807", "\u280F"];
-  let i = 0;
-  const interval = setInterval(() => {
-    const frame = frames[i % frames.length];
-    process.stderr.write(`\r${style.violet(frame ?? "\u280B")} ${message}`);
-    i++;
-  }, 80);
-  return {
-    stop(success, result) {
-      clearInterval(interval);
-      const icon = success ? style.green("\u2713") : style.red("\u2717");
-      process.stderr.write(`\r\x1B[2K${icon} ${result}
-`);
-    }
-  };
+var MULTICORN_DIR = join(homedir(), ".multicorn");
+var SCOPES_PATH = join(MULTICORN_DIR, "scopes.json");
+var CACHE_META_PATH = join(MULTICORN_DIR, "cache-meta.json");
+function cacheKey(agentName, apiKey) {
+  return createHash("sha256").update(`${agentName}:${apiKey}`).digest("hex").slice(0, 16);
 }
-var NativePluginPrerequisiteMissingError = class extends Error {
-  constructor() {
-    super("Native plugin prerequisites not met");
-    this.name = "NativePluginPrerequisiteMissingError";
-  }
-};
-function isExistingDirectory(path) {
+async function ensureCacheIdentity(apiKey) {
+  const currentHash = createHash("sha256").update(apiKey).digest("hex");
+  let storedHash = null;
   try {
-    if (!existsSync(path)) return false;
-    return statSync(path).isDirectory();
+    const raw = await readFile(CACHE_META_PATH, "utf8");
+    const meta = JSON.parse(raw);
+    if (typeof meta === "object" && meta !== null && "apiKeyHash" in meta) {
+      storedHash = meta.apiKeyHash;
+    }
   } catch {
-    return false;
-  }
-}
-function nativePluginSkippedSaveNote(wizardCommand, productName) {
-  return "\n" + style.dim("Your agent config has been saved. Run ") + style.cyan(wizardCommand) + style.dim(` again after installing ${productName} to complete hook setup.`) + "\n";
-}
-var CONFIG_DIR = join(homedir(), ".multicorn");
-var CONFIG_PATH = join(CONFIG_DIR, "config.json");
-var OPENCLAW_CONFIG_PATH = join(homedir(), ".openclaw", "openclaw.json");
-var ANSI_PATTERN = new RegExp(String.fromCharCode(27) + "\\[[0-9;]*[a-zA-Z]", "g");
-function stripAnsi(str) {
-  return str.replace(ANSI_PATTERN, "");
-}
-function normalizeAgentName(raw) {
-  return raw.toLowerCase().replace(/\s+/g, "-").replace(/[^a-z0-9-]/g, "").replace(/-{2,}/g, "-").replace(/^-+|-+$/g, "").slice(0, 50);
-}
-function isErrnoException(e) {
-  return typeof e === "object" && e !== null && "code" in e;
-}
-function isProxyConfig(value) {
-  if (typeof value !== "object" || value === null) return false;
-  const obj = value;
-  return typeof obj["apiKey"] === "string" && typeof obj["baseUrl"] === "string";
-}
-function isAgentEntry(value) {
-  if (typeof value !== "object" || value === null) return false;
-  const o = value;
-  return typeof o["name"] === "string" && typeof o["platform"] === "string";
-}
-function getAgentByPlatform(config, platform) {
-  const list = config.agents;
-  if (list === void 0 || list.length === 0) return void 0;
-  return list.find((a) => a.platform === platform);
-}
-function getDefaultAgent(config) {
-  const list = config.agents;
-  if (list === void 0 || list.length === 0) return void 0;
-  const defName = config.defaultAgent;
-  if (typeof defName === "string" && defName.length > 0) {
-    const match = list.find((a) => a.name === defName);
-    if (match !== void 0) return match;
-  }
-  return list[0];
-}
-function collectAgentsFromConfig(cfg) {
-  if (cfg === null) return [];
-  if (cfg.agents !== void 0 && cfg.agents.length > 0) {
-    return cfg.agents.map((a) => ({ name: a.name, platform: a.platform }));
-  }
-  const raw = cfg;
-  const legacyName = raw["agentName"];
-  const legacyPlatform = raw["platform"];
-  if (typeof legacyName === "string" && legacyName.length > 0) {
-    const plat = typeof legacyPlatform === "string" && legacyPlatform.length > 0 ? legacyPlatform : "unknown";
-    return [{ name: legacyName, platform: plat }];
   }
-  return [];
-}
-async function parseConfigFile() {
-  try {
-    const raw = await readFile(CONFIG_PATH, "utf8");
+  if (storedHash === null || storedHash !== currentHash) {
     try {
-      return { kind: "ok", value: JSON.parse(raw) };
+      await unlink(SCOPES_PATH);
     } catch {
-      return { kind: "parseError" };
-    }
-  } catch (error) {
-    if (isErrnoException(error) && error.code === "ENOENT") {
-      return { kind: "missing" };
     }
-    const message = error instanceof Error ? error.message : String(error);
-    return { kind: "readError", message };
   }
-}
-function isAllowedShieldApiBaseUrl(url) {
-  return url.startsWith("https://") || url.startsWith("http://localhost") || url.startsWith("http://127.0.0.1");
-}
-async function loadConfig() {
-  const result = await parseConfigFile();
-  if (result.kind !== "ok") return null;
-  const parsed = result.value;
-  if (!isProxyConfig(parsed)) return null;
-  const obj = parsed;
-  const agentNameRaw = obj["agentName"];
-  const agentsRaw = obj["agents"];
-  const hasNonEmptyAgents = Array.isArray(agentsRaw) && agentsRaw.length > 0 && agentsRaw.every((e) => isAgentEntry(e));
-  const needsMigrate = typeof agentNameRaw === "string" && agentNameRaw.length > 0 && !hasNonEmptyAgents;
-  if (!needsMigrate) {
-    return parsed;
+  if (storedHash !== currentHash) {
+    await mkdir(MULTICORN_DIR, { recursive: true, mode: 448 });
+    await writeFile(CACHE_META_PATH, JSON.stringify({ apiKeyHash: currentHash }, null, 2) + "\n", {
+      encoding: "utf8",
+      mode: 384
+    });
   }
-  const platform = typeof obj["platform"] === "string" && obj["platform"].length > 0 ? obj["platform"] : "unknown";
-  const next = { ...obj };
-  delete next["agentName"];
-  delete next["platform"];
-  next["agents"] = [{ name: agentNameRaw, platform }];
-  next["defaultAgent"] = agentNameRaw;
-  const migrated = next;
-  await saveConfig(migrated);
-  return migrated;
 }
-async function readBaseUrlFromConfig() {
-  const result = await parseConfigFile();
-  if (result.kind === "missing") return void 0;
-  if (result.kind === "readError") {
-    process.stderr.write(
-      style.yellow(`Warning: could not read base URL from config file: ${result.message}`) + "\n"
-    );
-    return void 0;
-  }
-  if (result.kind === "parseError") {
-    process.stderr.write(
-      style.yellow("Warning: could not parse ~/.multicorn/config.json as JSON.") + "\n"
-    );
-    return void 0;
+async function loadCachedScopes(agentName, apiKey) {
+  if (apiKey.length === 0) return null;
+  await ensureCacheIdentity(apiKey);
+  const key = cacheKey(agentName, apiKey);
+  try {
+    const raw = await readFile(SCOPES_PATH, "utf8");
+    const parsed = JSON.parse(raw);
+    if (!isScopesCacheFile(parsed)) return null;
+    const entry = parsed[key];
+    return entry?.scopes ?? null;
+  } catch {
+    return null;
   }
-  const parsed = result.value;
-  if (typeof parsed !== "object" || parsed === null) return void 0;
-  const u = parsed["baseUrl"];
-  if (typeof u !== "string" || u.length === 0) return void 0;
-  return u;
 }
-async function deleteAgentByName(name) {
-  const config = await loadConfig();
-  if (config === null) return false;
-  const agents = collectAgentsFromConfig(config);
-  const idx = agents.findIndex((a) => a.name === name);
-  if (idx === -1) return false;
-  const nextAgents = agents.filter((_, i) => i !== idx);
-  let defaultAgent = config.defaultAgent;
-  if (defaultAgent === name) {
-    defaultAgent = void 0;
-  }
-  const raw = { ...config };
-  if (nextAgents.length > 0) {
-    raw["agents"] = nextAgents;
-  } else {
-    delete raw["agents"];
-  }
-  if (defaultAgent !== void 0 && defaultAgent.length > 0) {
-    raw["defaultAgent"] = defaultAgent;
-  } else {
-    delete raw["defaultAgent"];
+async function saveCachedScopes(agentName, agentId, scopes, apiKey) {
+  if (apiKey.length === 0) return;
+  await ensureCacheIdentity(apiKey);
+  const key = cacheKey(agentName, apiKey);
+  await mkdir(MULTICORN_DIR, { recursive: true, mode: 448 });
+  let existing = {};
+  try {
+    const raw = await readFile(SCOPES_PATH, "utf8");
+    const parsed = JSON.parse(raw);
+    if (isScopesCacheFile(parsed)) existing = parsed;
+  } catch {
   }
-  await saveConfig(raw);
-  return true;
-}
-async function saveConfig(config) {
-  await mkdir(CONFIG_DIR, { recursive: true, mode: 448 });
-  await writeFile(CONFIG_PATH, JSON.stringify(config, null, 2) + "\n", {
+  const updated = {
+    ...existing,
+    [key]: {
+      agentId,
+      scopes,
+      fetchedAt: (/* @__PURE__ */ new Date()).toISOString()
+    }
+  };
+  await writeFile(SCOPES_PATH, JSON.stringify(updated, null, 2) + "\n", {
     encoding: "utf8",
     mode: 384
   });
 }
-var OPENCLAW_MIN_VERSION = "2026.2.26";
-async function detectOpenClaw() {
-  let raw;
+function isScopesCacheFile(value) {
+  return typeof value === "object" && value !== null;
+}
+// src/proxy/consent.ts
+var CONSENT_POLL_INTERVAL_MS = 3e3;
+var CONSENT_POLL_TIMEOUT_MS = 5 * 60 * 1e3;
+function deriveDashboardUrl(baseUrl) {
   try {
-    raw = await readFile(OPENCLAW_CONFIG_PATH, "utf8");
-  } catch (e) {
-    if (isErrnoException(e) && e.code === "ENOENT") {
-      return { status: "not-found", version: null };
+    const url = new URL(baseUrl);
+    if (url.hostname === "localhost" || url.hostname === "127.0.0.1") {
+      url.port = "5173";
+      url.protocol = "http:";
+      return url.toString();
     }
-    throw e;
-  }
-  let obj;
-  try {
-    obj = JSON.parse(raw);
-  } catch {
-    return { status: "parse-error", version: null };
-  }
-  const meta = obj["meta"];
-  if (typeof meta === "object" && meta !== null) {
-    const v = meta["lastTouchedVersion"];
-    if (typeof v === "string" && v.length > 0) {
-      return { status: "detected", version: v };
+    if (url.hostname === "api.multicorn.ai") {
+      url.hostname = "app.multicorn.ai";
+      return url.toString();
+    }
+    if (url.hostname.includes("api")) {
+      url.hostname = url.hostname.replace("api", "app");
+      return url.toString();
+    }
+    if (url.protocol === "https:" && url.hostname !== "localhost" && url.hostname !== "127.0.0.1") {
+      return "https://app.multicorn.ai";
     }
+    return "https://app.multicorn.ai";
+  } catch {
+    return "https://app.multicorn.ai";
   }
-  return { status: "detected", version: null };
 }
-function isVersionAtLeast(version, minimum) {
-  const vParts = version.split(".").map(Number);
-  const mParts = minimum.split(".").map(Number);
-  const len = Math.max(vParts.length, mParts.length);
-  for (let i = 0; i < len; i++) {
-    const v = vParts[i] ?? 0;
-    const m = mParts[i] ?? 0;
-    if (Number.isNaN(v) || Number.isNaN(m)) return false;
-    if (v > m) return true;
-    if (v < m) return false;
+var ShieldAuthError = class _ShieldAuthError extends Error {
+  constructor(message) {
+    super(message);
+    this.name = "ShieldAuthError";
+    Object.setPrototypeOf(this, _ShieldAuthError.prototype);
   }
-  return true;
-}
-async function updateOpenClawConfigIfPresent(apiKey, baseUrl, agentName) {
-  let raw;
+};
+async function findAgentByName(agentName, apiKey, baseUrl) {
+  let response;
   try {
-    raw = await readFile(OPENCLAW_CONFIG_PATH, "utf8");
-  } catch (e) {
-    if (isErrnoException(e) && e.code === "ENOENT") {
-      return "not-found";
+    response = await fetch(`${baseUrl}/api/v1/agents`, {
+      headers: { "X-Multicorn-Key": apiKey },
+      signal: AbortSignal.timeout(8e3)
+    });
+  } catch {
+    return null;
+  }
+  if (!response.ok) {
+    if (response.status === 401 || response.status === 403) {
+      return { id: "", name: agentName, scopes: [], authInvalid: true };
     }
-    throw e;
+    return null;
   }
-  let obj;
+  let body;
   try {
-    obj = JSON.parse(raw);
+    body = await response.json();
   } catch {
-    return "parse-error";
-  }
-  let hooks = obj["hooks"];
-  if (hooks === void 0 || typeof hooks !== "object") {
-    hooks = {};
-    obj["hooks"] = hooks;
-  }
-  let internal = hooks["internal"];
-  if (internal === void 0 || typeof internal !== "object") {
-    internal = { enabled: true, entries: {} };
-    hooks["internal"] = internal;
-  }
-  let entries = internal["entries"];
-  if (entries === void 0 || typeof entries !== "object") {
-    entries = {};
-    internal["entries"] = entries;
-  }
-  let shield = entries["multicorn-shield"];
-  if (shield === void 0 || typeof shield !== "object") {
-    shield = { enabled: true, env: {} };
-    entries["multicorn-shield"] = shield;
-  }
-  let env = shield["env"];
-  if (env === void 0 || typeof env !== "object") {
-    env = {};
-    shield["env"] = env;
-  }
-  env["MULTICORN_API_KEY"] = apiKey;
-  env["MULTICORN_BASE_URL"] = baseUrl;
-  if (agentName !== void 0) {
-    env["MULTICORN_AGENT_NAME"] = agentName;
-    const agentsList = obj["agents"];
-    const list = agentsList?.["list"];
-    if (Array.isArray(list) && list.length > 0) {
-      const first = list[0];
-      if (first["id"] !== agentName) {
-        first["id"] = agentName;
-        first["name"] = agentName;
-      }
-    } else {
-      if (agentsList !== void 0 && typeof agentsList === "object") {
-        agentsList["list"] = [{ id: agentName, name: agentName }];
-      } else {
-        obj["agents"] = { list: [{ id: agentName, name: agentName }] };
-      }
-    }
+    return null;
   }
-  await writeFile(OPENCLAW_CONFIG_PATH, JSON.stringify(obj, null, 2) + "\n", {
-    encoding: "utf8"
-  });
-  return "updated";
+  if (!isApiSuccessResponse(body)) return null;
+  const agents = body.data;
+  if (!Array.isArray(agents)) return null;
+  const match = agents.find(
+    (a) => isAgentSummaryShape(a) && a.name === agentName
+  );
+  if (match === void 0) return null;
+  return { id: match.id, name: match.name, scopes: [] };
 }
-async function validateApiKey(apiKey, baseUrl) {
+async function fetchRemoteAgentsSummaries(apiKey, baseUrl) {
+  let response;
   try {
-    const response = await fetch(`${baseUrl}/api/v1/agents`, {
+    response = await fetch(`${baseUrl}/api/v1/agents`, {
       headers: { "X-Multicorn-Key": apiKey },
       signal: AbortSignal.timeout(8e3)
     });
-    if (response.status === 401) {
-      return { valid: false, error: "API key not recognised. Check the key and try again." };
-    }
-    if (!response.ok) {
-      return {
-        valid: false,
-        error: `Service returned ${String(response.status)}. Check your base URL and try again.`
-      };
-    }
-    return { valid: true };
-  } catch (error) {
-    const detail = error instanceof Error ? error.message : String(error);
-    return {
-      valid: false,
-      error: `Could not reach ${baseUrl}. Check your network connection. (${detail})`
-    };
-  }
-}
-async function isOpenClawConnected() {
-  try {
-    const raw = await readFile(OPENCLAW_CONFIG_PATH, "utf8");
-    const obj = JSON.parse(raw);
-    const hooks = obj["hooks"];
-    const internal = hooks?.["internal"];
-    const entries = internal?.["entries"];
-    const shield = entries?.["multicorn-shield"];
-    const env = shield?.["env"];
-    const key = env?.["MULTICORN_API_KEY"];
-    return typeof key === "string" && key.length > 0;
   } catch {
-    return false;
+    return [];
   }
-}
-function isClaudeCodeConnected() {
+  if (!response.ok) return [];
+  let body;
   try {
-    return existsSync(join(homedir(), ".claude", "plugins", "cache", "multicorn-shield"));
+    body = await response.json();
   } catch {
-    return false;
+    return [];
   }
+  if (!isApiSuccessResponse(body)) return [];
+  const agents = body.data;
+  if (!Array.isArray(agents)) return [];
+  const out = [];
+  for (const a of agents) {
+    if (typeof a !== "object" || a === null) continue;
+    const o = a;
+    const rawName = o["name"];
+    if (typeof rawName !== "string" || rawName.length === 0) continue;
+    const plat = o["platform"];
+    const platform = plat === null || plat === void 0 ? null : typeof plat === "string" ? plat : null;
+    out.push({ name: rawName, platform });
+  }
+  return out;
 }
-function getCursorConfigPath() {
-  return join(homedir(), ".cursor", "mcp.json");
-}
-async function isCursorConnected() {
-  try {
-    const raw = await readFile(getCursorConfigPath(), "utf8");
-    const obj = JSON.parse(raw);
-    const mcpServers = obj["mcpServers"];
-    if (mcpServers === void 0 || typeof mcpServers !== "object") return false;
-    for (const entry of Object.values(mcpServers)) {
-      if (typeof entry !== "object" || entry === null) continue;
-      const rec = entry;
-      const url = rec["url"];
-      if (typeof url === "string" && url.includes("multicorn")) return true;
-      const args = rec["args"];
-      if (Array.isArray(args) && (args.includes("multicorn-shield") || args.includes("multicorn-proxy")))
-        return true;
+async function registerAgent(agentName, apiKey, baseUrl, platform) {
+  const response = await fetch(`${baseUrl}/api/v1/agents`, {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "X-Multicorn-Key": apiKey
+    },
+    body: JSON.stringify({ name: agentName, ...platform ? { platform } : {} }),
+    signal: AbortSignal.timeout(8e3)
+  });
+  if (!response.ok) {
+    if (response.status === 401 || response.status === 403) {
+      throw new ShieldAuthError(
+        `Failed to register agent "${agentName}": service returned ${String(response.status)}.`
+      );
     }
-    return false;
-  } catch (err) {
-    process.stderr.write(
-      `Warning: could not check Cursor connection status: ${err instanceof Error ? err.message : String(err)}
-`
+    throw new Error(
+      `Failed to register agent "${agentName}": service returned ${String(response.status)}.`
     );
-    return false;
   }
+  const body = await response.json();
+  if (!isApiSuccessResponse(body)) {
+    throw new Error(`Failed to register agent "${agentName}": unexpected response format.`);
+  }
+  if (!isAgentSummaryShape(body.data)) {
+    throw new Error(`Failed to register agent "${agentName}": response missing agent ID.`);
+  }
+  return body.data.id;
 }
-function getWindsurfConfigPath() {
-  return join(homedir(), ".codeium", "windsurf", "mcp_config.json");
-}
-async function isWindsurfConnected() {
+async function fetchGrantedScopes(agentId, apiKey, baseUrl) {
+  let response;
   try {
-    const raw = await readFile(getWindsurfConfigPath(), "utf8");
-    const obj = JSON.parse(raw);
-    const mcpServers = obj["mcpServers"];
-    if (mcpServers === void 0 || typeof mcpServers !== "object") return false;
-    for (const entry of Object.values(mcpServers)) {
-      if (typeof entry !== "object" || entry === null) continue;
-      const rec = entry;
-      const url = rec["serverUrl"];
-      if (typeof url === "string" && url.includes("multicorn")) return true;
-    }
-    return false;
+    response = await fetch(`${baseUrl}/api/v1/agents/${agentId}`, {
+      headers: { "X-Multicorn-Key": apiKey },
+      signal: AbortSignal.timeout(8e3)
+    });
   } catch {
-    return false;
+    return [];
+  }
+  if (!response.ok) return [];
+  const body = await response.json();
+  if (!isApiSuccessResponse(body)) return [];
+  const agentDetail = body.data;
+  if (!isAgentDetailShape(agentDetail)) return [];
+  const scopes = [];
+  for (const perm of agentDetail.permissions) {
+    if (!isPermissionShape(perm)) continue;
+    if (perm.revoked_at !== null) continue;
+    if (perm.read) scopes.push({ service: perm.service, permissionLevel: "read" });
+    if (perm.write) scopes.push({ service: perm.service, permissionLevel: "write" });
+    if (perm.execute) scopes.push({ service: perm.service, permissionLevel: "execute" });
   }
+  return scopes;
 }
-function multicornShieldPackageRoot() {
-  return join(dirname(fileURLToPath(import.meta.url)), "..");
-}
-function getWindsurfHooksInstallDir() {
-  return join(homedir(), ".multicorn", "windsurf-hooks");
-}
-function getWindsurfCascadeHooksJsonPath() {
-  return join(homedir(), ".codeium", "windsurf", "hooks.json");
-}
-function isShieldWindsurfHookCommand(cmd) {
-  return cmd.includes("windsurf-hooks/pre-action.cjs") || cmd.includes("windsurf-hooks\\pre-action.cjs") || cmd.includes("windsurf-hooks/post-action.cjs") || cmd.includes("windsurf-hooks\\post-action.cjs");
+function openBrowser(url) {
+  if (process.env["NODE_ENV"] === "test" || process.env["VITEST"] === "true") {
+    return;
+  }
+  const platform = process.platform;
+  const cmd = platform === "darwin" ? "open" : platform === "win32" ? "start" : "xdg-open";
+  spawn(cmd, [url], { detached: true, stdio: "ignore" }).unref();
 }
-function filterOutShieldWindsurfHooks(entries) {
-  if (!Array.isArray(entries)) return [];
-  const out = [];
-  for (const e of entries) {
-    if (typeof e !== "object" || e === null) continue;
-    const rec = e;
-    const cmd = rec["command"];
-    if (typeof cmd !== "string" || isShieldWindsurfHookCommand(cmd)) continue;
-    const powershell = rec["powershell"];
-    const show_output = rec["show_output"];
-    out.push({
-      command: cmd,
-      ...typeof powershell === "string" ? { powershell } : {},
-      ...show_output === true ? { show_output: true } : {}
-    });
+async function waitForConsent(agentId, agentName, apiKey, baseUrl, dashboardUrl, logger, scope, platform) {
+  const scopeStrings = scope ? [`${scope.service}:${scope.permissionLevel}`] : detectScopeHints();
+  const consentUrl = buildConsentUrl(agentName, scopeStrings, dashboardUrl, platform);
+  logger.info("Opening consent page in your browser.", { url: consentUrl });
+  process.stderr.write(
+    `
+Action requires permission. Opening consent page...
+${consentUrl}
+Waiting for you to grant access in the Multicorn dashboard...
+`
+  );
+  openBrowser(consentUrl);
+  const deadline = Date.now() + CONSENT_POLL_TIMEOUT_MS;
+  while (Date.now() < deadline) {
+    await sleep(CONSENT_POLL_INTERVAL_MS);
+    const scopes = await fetchGrantedScopes(agentId, apiKey, baseUrl);
+    if (scopes.length > 0) {
+      logger.info("Permissions granted.", { agent: agentName, scopeCount: scopes.length });
+      return scopes;
+    }
   }
-  return out;
+  throw new Error(
+    `Consent not granted within ${String(CONSENT_POLL_TIMEOUT_MS / 6e4)} minutes. Grant access at ${dashboardUrl} and restart the proxy.`
+  );
 }
-async function installWindsurfNativeHooks() {
-  const root = multicornShieldPackageRoot();
-  const srcPre = join(root, "plugins", "windsurf", "hooks", "scripts", "pre-action.cjs");
-  const srcPost = join(root, "plugins", "windsurf", "hooks", "scripts", "post-action.cjs");
-  if (!existsSync(srcPre) || !existsSync(srcPost)) {
-    throw new Error(
-      `Could not find Shield Windsurf hook scripts at ${srcPre}. If you use npm, install the latest multicorn-shield package.`
-    );
+async function resolveAgentRecord(agentName, apiKey, baseUrl, logger, platform) {
+  const cachedScopes = await loadCachedScopes(agentName, apiKey);
+  if (cachedScopes !== null && cachedScopes.length > 0) {
+    logger.debug("Loaded scopes from cache.", { agent: agentName, count: cachedScopes.length });
   }
-  const windsurfConfigDir = join(homedir(), ".codeium", "windsurf");
-  if (!isExistingDirectory(windsurfConfigDir)) {
-    process.stderr.write(
-      style.yellow("\u26A0") + "  Windsurf does not appear to be installed (~/.codeium/windsurf/ not found).\n\n"
-    );
-    process.stderr.write(
-      "Open Windsurf at least once so this folder exists, or install from:\n  " + style.cyan("https://windsurf.com/download") + "\n\n"
-    );
-    process.stderr.write("Then run this wizard again:\n");
-    process.stderr.write("  " + style.cyan("npx multicorn-shield init") + "\n");
-    throw new NativePluginPrerequisiteMissingError();
+  let agent = await findAgentByName(agentName, apiKey, baseUrl);
+  if (agent?.authInvalid) {
+    return agent;
   }
-  const installDir = getWindsurfHooksInstallDir();
-  await mkdir(installDir, { recursive: true });
-  const destPre = join(installDir, "pre-action.cjs");
-  const destPost = join(installDir, "post-action.cjs");
-  await copyFile(srcPre, destPre);
-  await copyFile(srcPost, destPost);
-  const preCmd = `node ${JSON.stringify(destPre)}`;
-  const postCmd = `node ${JSON.stringify(destPost)}`;
-  const preEntry = { command: preCmd, powershell: preCmd, show_output: true };
-  const postEntry = { command: postCmd, powershell: postCmd };
-  const hooksPath = getWindsurfCascadeHooksJsonPath();
-  let base = { hooks: {} };
-  try {
-    const raw = await readFile(hooksPath, "utf8");
-    base = JSON.parse(raw);
-  } catch (err) {
-    if (!isErrnoException(err) || err.code !== "ENOENT") {
-      throw err;
+  if (agent === null) {
+    try {
+      logger.info("Agent not found. Registering.", { agent: agentName });
+      const id = await registerAgent(agentName, apiKey, baseUrl, platform);
+      agent = { id, name: agentName, scopes: [] };
+      logger.info("Agent registered.", { agent: agentName, id });
+    } catch (error) {
+      if (error instanceof ShieldAuthError) {
+        return { id: "", name: agentName, scopes: [], authInvalid: true };
+      }
+      const detail = error instanceof Error ? error.message : String(error);
+      if (cachedScopes !== null && cachedScopes.length > 0) {
+        logger.warn("Service unreachable. Using cached scopes.", { error: detail });
+        return { id: "", name: agentName, scopes: cachedScopes };
+      }
+      logger.warn("Could not reach Multicorn service. Running with empty permissions.", {
+        error: detail
+      });
+      return { id: "", name: agentName, scopes: [] };
     }
   }
-  const hooks = base["hooks"] ?? {};
-  const preKeys = [
-    "pre_read_code",
-    "pre_write_code",
-    "pre_run_command",
-    "pre_mcp_tool_use"
-  ];
-  const postKeys = [
-    "post_read_code",
-    "post_write_code",
-    "post_run_command",
-    "post_mcp_tool_use"
-  ];
-  const nextHooks = { ...hooks };
-  for (const k of preKeys) {
-    const merged = filterOutShieldWindsurfHooks(nextHooks[k]);
-    nextHooks[k] = [...merged, preEntry];
-  }
-  for (const k of postKeys) {
-    const merged = filterOutShieldWindsurfHooks(nextHooks[k]);
-    nextHooks[k] = [...merged, postEntry];
+  const scopes = await fetchGrantedScopes(agent.id, apiKey, baseUrl);
+  if (scopes.length > 0) {
+    await saveCachedScopes(agentName, agent.id, scopes, apiKey);
   }
-  base["hooks"] = nextHooks;
-  const hooksDir = dirname(hooksPath);
-  await mkdir(hooksDir, { recursive: true });
-  await writeFile(hooksPath, JSON.stringify(base, null, 2) + "\n", { encoding: "utf8" });
-}
-function getClineHooksInstallDir() {
-  return join(homedir(), ".multicorn", "cline-hooks");
-}
-function getClineGlobalHooksDir() {
-  return join(homedir(), "Documents", "Cline", "Hooks");
+  return { ...agent, scopes };
 }
-async function installClineNativeHooks() {
-  const root = multicornShieldPackageRoot();
-  const srcPre = join(root, "plugins", "cline", "hooks", "scripts", "pre-tool-use.cjs");
-  const srcPost = join(root, "plugins", "cline", "hooks", "scripts", "post-tool-use.cjs");
-  const srcShared = join(root, "plugins", "cline", "hooks", "scripts", "shared.cjs");
-  if (!existsSync(srcPre) || !existsSync(srcPost) || !existsSync(srcShared)) {
-    throw new Error(
-      `Could not find Shield Cline hook scripts at ${srcPre}. If you use npm, install the latest multicorn-shield package.`
-    );
+function buildConsentUrl(agentName, scopes, dashboardUrl, platform) {
+  const base = dashboardUrl.replace(/\/+$/, "");
+  const params = new URLSearchParams({ agent: agentName });
+  if (scopes.length > 0) {
+    params.set("scopes", scopes.join(","));
   }
-  const clineDocsDir = join(homedir(), "Documents", "Cline");
-  if (!isExistingDirectory(clineDocsDir)) {
-    process.stderr.write(
-      style.yellow("\u26A0") + "  Cline does not appear to be installed (~/Documents/Cline/ not found).\n\n"
-    );
-    process.stderr.write("Install the Cline VS Code extension first. See:\n");
-    process.stderr.write(
-      "  " + style.cyan("https://docs.cline.bot/getting-started/installing-cline") + "\n\n"
-    );
-    process.stderr.write("Then run this wizard again:\n");
-    process.stderr.write("  " + style.cyan("npx multicorn-shield init") + "\n");
-    throw new NativePluginPrerequisiteMissingError();
+  if (platform) {
+    params.set("platform", platform);
   }
-  const installDir = getClineHooksInstallDir();
-  await mkdir(installDir, { recursive: true });
-  const destPre = join(installDir, "pre-tool-use.cjs");
-  const destPost = join(installDir, "post-tool-use.cjs");
-  const destShared = join(installDir, "shared.cjs");
-  await copyFile(srcPre, destPre);
-  await copyFile(srcPost, destPost);
-  await copyFile(srcShared, destShared);
-  const hookScriptMode = 493;
-  await chmod(destPre, hookScriptMode);
-  await chmod(destPost, hookScriptMode);
-  await chmod(destShared, hookScriptMode);
-  const hooksDir = getClineGlobalHooksDir();
-  await mkdir(hooksDir, { recursive: true });
-  const preWrapper = join(hooksDir, "PreToolUse");
-  const postWrapper = join(hooksDir, "PostToolUse");
-  const preContent = `#!/usr/bin/env node
-require(${JSON.stringify(destPre)});
-`;
-  const postContent = `#!/usr/bin/env node
-require(${JSON.stringify(destPost)});
-`;
-  await writeFile(preWrapper, preContent, { encoding: "utf8", mode: 493 });
-  await writeFile(postWrapper, postContent, { encoding: "utf8", mode: 493 });
+  return `${base}/consent?${params.toString()}`;
 }
-async function promptClineIntegrationMode(ask) {
-  process.stderr.write("\n" + style.bold("Cline integration") + "\n");
-  process.stderr.write(
-    "  " + style.violet("1") + ". Native plugin (recommended) - Cline Hooks see every file, terminal, browser, and MCP action\n"
-  );
-  process.stderr.write(
-    "  " + style.violet("2") + ". Hosted proxy - govern MCP traffic only (paste proxy URL into Cline MCP settings)\n"
-  );
-  let choice = 0;
-  while (choice === 0) {
-    const input = await ask("Choose integration (1-2): ");
-    const num = parseInt(input.trim(), 10);
-    if (num === 1) choice = 1;
-    if (num === 2) choice = 2;
-  }
-  return choice === 1 ? "native" : "hosted";
+function detectScopeHints() {
+  return [];
 }
-function getGeminiCliHooksInstallDir() {
-  return join(homedir(), ".multicorn", "gemini-cli-hooks");
+function sleep(ms) {
+  return new Promise((resolve2) => setTimeout(resolve2, ms));
 }
-function getGeminiCliSettingsPath() {
-  return join(homedir(), ".gemini", "settings.json");
+function isApiSuccessResponse(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const obj = value;
+  return obj["success"] === true;
 }
-function geminiInnerHooksReferenceShield(inner, multicornName) {
-  if (!Array.isArray(inner)) return false;
-  for (const h of inner) {
-    if (typeof h !== "object" || h === null) continue;
-    const rec = h;
-    if (rec["name"] === multicornName) return true;
-    const cmd = rec["command"];
-    if (typeof cmd === "string" && cmd.includes("gemini-cli-hooks")) return true;
-  }
-  return false;
+function isAgentSummaryShape(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const obj = value;
+  return typeof obj["id"] === "string" && typeof obj["name"] === "string";
 }
-function geminiHookEventsReferenceShield(arr) {
-  if (!Array.isArray(arr)) return false;
-  for (const entry of arr) {
-    if (typeof entry !== "object" || entry === null) continue;
-    const hooks = entry["hooks"];
-    if (geminiInnerHooksReferenceShield(hooks, "multicorn-shield") || geminiInnerHooksReferenceShield(hooks, "multicorn-shield-log")) {
-      return true;
-    }
-  }
-  return false;
-}
-function geminiSettingsHasMulticornHooks(hooks) {
-  if (hooks === null || typeof hooks !== "object" || Array.isArray(hooks)) return false;
-  const h = hooks;
-  return geminiHookEventsReferenceShield(h["BeforeTool"]) || geminiHookEventsReferenceShield(h["AfterTool"]);
+function isAgentDetailShape(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const obj = value;
+  return Array.isArray(obj["permissions"]);
 }
-function geminiFilterInnerHooks(inner) {
-  if (!Array.isArray(inner)) return [];
-  return inner.filter((h) => {
-    if (typeof h !== "object" || h === null) return true;
-    const rec = h;
-    if (rec["name"] === "multicorn-shield" || rec["name"] === "multicorn-shield-log") return false;
-    const cmd = rec["command"];
-    if (typeof cmd === "string" && cmd.includes("gemini-cli-hooks")) return false;
-    return true;
-  });
+function isPermissionShape(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const obj = value;
+  return typeof obj["service"] === "string" && typeof obj["read"] === "boolean" && typeof obj["write"] === "boolean" && typeof obj["execute"] === "boolean" && (obj["revoked_at"] === null || obj["revoked_at"] === void 0 || typeof obj["revoked_at"] === "string");
 }
-function geminiStripMatcherGroups(arr) {
-  if (!Array.isArray(arr)) return [];
-  const out = [];
-  for (const entry of arr) {
-    if (typeof entry !== "object" || entry === null) continue;
-    const e = entry;
-    const filtered = geminiFilterInnerHooks(e["hooks"]);
-    if (filtered.length > 0) {
-      out.push({ ...e, hooks: filtered });
+// src/proxy/config.ts
+var style = {
+  violet: (s) => `\x1B[38;2;124;58;237m${s}\x1B[0m`,
+  violetLight: (s) => `\x1B[38;2;167;139;250m${s}\x1B[0m`,
+  green: (s) => `\x1B[38;2;34;197;94m${s}\x1B[0m`,
+  yellow: (s) => `\x1B[38;2;245;158;11m${s}\x1B[0m`,
+  red: (s) => `\x1B[38;2;239;68;68m${s}\x1B[0m`,
+  cyan: (s) => `\x1B[38;2;6;182;212m${s}\x1B[0m`,
+  bold: (s) => `\x1B[1m${s}\x1B[0m`,
+  dim: (s) => `\x1B[2m${s}\x1B[0m`
+};
+var BANNER = [
+  " \u2588\u2588\u2588 \u2588  \u2588 \u2588 \u2588\u2588\u2588 \u2588   \u2588\u2588\u2584 ",
+  " \u2588   \u2588  \u2588 \u2588 \u2588   \u2588   \u2588  \u2588",
+  " \u2588\u2588\u2588 \u2588\u2588\u2588\u2588 \u2588 \u2588\u2588  \u2588   \u2588  \u2588",
+  "   \u2588 \u2588  \u2588 \u2588 \u2588   \u2588   \u2588  \u2588",
+  " \u2588\u2588\u2588 \u2588  \u2588 \u2588 \u2588\u2588\u2588 \u2588\u2588\u2588 \u2588\u2588\u2580 "
+].map((line) => style.violet(line)).join("\n");
+function withSpinner(message) {
+  const frames = ["\u280B", "\u2819", "\u2839", "\u2838", "\u283C", "\u2834", "\u2826", "\u2827", "\u2807", "\u280F"];
+  let i = 0;
+  const interval = setInterval(() => {
+    const frame = frames[i % frames.length];
+    process.stderr.write(`\r${style.violet(frame ?? "\u280B")} ${message}`);
+    i++;
+  }, 80);
+  return {
+    stop(success, result) {
+      clearInterval(interval);
+      const icon = success ? style.green("\u2713") : style.red("\u2717");
+      process.stderr.write(`\r\x1B[2K${icon} ${result}
+`);
     }
+  };
+}
+var NativePluginPrerequisiteMissingError = class extends Error {
+  constructor() {
+    super("Native plugin prerequisites not met");
+    this.name = "NativePluginPrerequisiteMissingError";
+  }
+};
+function isExistingDirectory(path) {
+  try {
+    if (!existsSync(path)) return false;
+    return statSync(path).isDirectory();
+  } catch {
+    return false;
   }
-  return out;
 }
-function geminiStripMulticornHookEntries(hooks) {
-  const out = { ...hooks };
-  out["BeforeTool"] = geminiStripMatcherGroups(out["BeforeTool"]);
-  out["AfterTool"] = geminiStripMatcherGroups(out["AfterTool"]);
-  return out;
+function nativePluginSkippedSaveNote(wizardCommand, productName) {
+  return "\n" + style.dim("Your agent config has been saved. Run ") + style.cyan(wizardCommand) + style.dim(` again after installing ${productName} to complete hook setup.`) + "\n";
 }
-async function installGeminiCliNativeHooks(ask) {
-  const root = multicornShieldPackageRoot();
-  const srcBefore = join(root, "plugins", "gemini-cli", "hooks", "scripts", "before-tool.cjs");
-  const srcAfter = join(root, "plugins", "gemini-cli", "hooks", "scripts", "after-tool.cjs");
-  const srcShared = join(root, "plugins", "gemini-cli", "hooks", "scripts", "shared.cjs");
-  if (!existsSync(srcBefore) || !existsSync(srcAfter) || !existsSync(srcShared)) {
-    throw new Error(
-      `Could not find Shield Gemini CLI hook scripts at ${srcBefore}. If you use npm, install the latest multicorn-shield package.`
-    );
+var CONFIG_DIR = join(homedir(), ".multicorn");
+var CONFIG_PATH = join(CONFIG_DIR, "config.json");
+var OPENCLAW_CONFIG_PATH = join(homedir(), ".openclaw", "openclaw.json");
+var ANSI_PATTERN = new RegExp(String.fromCharCode(27) + "\\[[0-9;]*[a-zA-Z]", "g");
+function stripAnsi(str) {
+  return str.replace(ANSI_PATTERN, "");
+}
+function normalizeAgentName(raw) {
+  return raw.toLowerCase().replace(/\s+/g, "-").replace(/[^a-z0-9-]/g, "").replace(/-{2,}/g, "-").replace(/^-+|-+$/g, "").slice(0, 50);
+}
+function isErrnoException(e) {
+  return typeof e === "object" && e !== null && "code" in e;
+}
+function isProxyConfig(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const obj = value;
+  return typeof obj["apiKey"] === "string" && typeof obj["baseUrl"] === "string";
+}
+function isAgentEntry(value) {
+  if (typeof value !== "object" || value === null) return false;
+  const o = value;
+  if (typeof o["name"] !== "string" || typeof o["platform"] !== "string") return false;
+  if (o["workspacePath"] !== void 0 && typeof o["workspacePath"] !== "string") return false;
+  return true;
+}
+function cwdUnderWorkspacePath(cwdResolved, workspacePath) {
+  const w = resolve(workspacePath);
+  if (cwdResolved === w) return true;
+  const prefix = w.endsWith(sep) ? w : w + sep;
+  return cwdResolved.startsWith(prefix);
+}
+function getAgentByPlatform(config, platform, cwd) {
+  const list = config.agents;
+  if (list === void 0 || list.length === 0) return void 0;
+  const matches = list.filter((a) => a.platform === platform);
+  if (matches.length === 0) return void 0;
+  if (cwd === void 0 || cwd.length === 0) return matches[0];
+  const resolvedCwd = resolve(cwd);
+  const withPath = matches.filter(
+    (a) => typeof a.workspacePath === "string" && a.workspacePath.length > 0
+  );
+  if (withPath.length === 0) return matches[0];
+  let best;
+  let bestLen = -1;
+  for (const a of withPath) {
+    const ws = a.workspacePath;
+    if (typeof ws !== "string" || ws.length === 0) continue;
+    if (!cwdUnderWorkspacePath(resolvedCwd, ws)) continue;
+    const len = resolve(ws).length;
+    if (len > bestLen) {
+      bestLen = len;
+      best = a;
+    }
+  }
+  if (best !== void 0) return best;
+  return matches[0];
+}
+function getDefaultAgent(config) {
+  const list = config.agents;
+  if (list === void 0 || list.length === 0) return void 0;
+  const defName = config.defaultAgent;
+  if (typeof defName === "string" && defName.length > 0) {
+    const match = list.find((a) => a.name === defName);
+    if (match !== void 0) return match;
   }
-  const geminiConfigDir = join(homedir(), ".gemini");
-  if (!isExistingDirectory(geminiConfigDir)) {
-    process.stderr.write(
-      style.yellow("\u26A0") + "  Gemini CLI does not appear to be installed (~/.gemini/ not found).\n\n"
-    );
-    process.stderr.write("Install Gemini CLI first:\n");
-    process.stderr.write("  " + style.cyan("npm install -g @google/gemini-cli") + "\n\n");
-    process.stderr.write("Then run this wizard again:\n");
-    process.stderr.write("  " + style.cyan("npx multicorn-shield init") + "\n");
-    throw new NativePluginPrerequisiteMissingError();
+  return list[0];
+}
+function collectAgentsFromConfig(cfg) {
+  if (cfg === null) return [];
+  if (cfg.agents !== void 0 && cfg.agents.length > 0) {
+    return cfg.agents.map((a) => {
+      const e = { name: a.name, platform: a.platform };
+      if (typeof a.workspacePath === "string" && a.workspacePath.length > 0) {
+        return { ...e, workspacePath: a.workspacePath };
+      }
+      return e;
+    });
   }
-  const installDir = getGeminiCliHooksInstallDir();
-  await mkdir(installDir, { recursive: true });
-  const destBefore = join(installDir, "before-tool.cjs");
-  const destAfter = join(installDir, "after-tool.cjs");
-  const destShared = join(installDir, "shared.cjs");
-  await copyFile(srcBefore, destBefore);
-  await copyFile(srcAfter, destAfter);
-  await copyFile(srcShared, destShared);
-  const mode = 493;
-  await chmod(destBefore, mode);
-  await chmod(destAfter, mode);
-  await chmod(destShared, mode);
-  const settingsPath = getGeminiCliSettingsPath();
-  let existing = {};
+  const raw = cfg;
+  const legacyName = raw["agentName"];
+  const legacyPlatform = raw["platform"];
+  if (typeof legacyName === "string" && legacyName.length > 0) {
+    const plat = typeof legacyPlatform === "string" && legacyPlatform.length > 0 ? legacyPlatform : "unknown";
+    return [{ name: legacyName, platform: plat }];
+  }
+  return [];
+}
+async function parseConfigFile() {
   try {
-    const rawText = await readFile(settingsPath, "utf8");
-    const parsed = JSON.parse(rawText);
-    if (parsed !== null && typeof parsed === "object" && !Array.isArray(parsed)) {
-      existing = parsed;
+    const raw = await readFile(CONFIG_PATH, "utf8");
+    try {
+      return { kind: "ok", value: JSON.parse(raw) };
+    } catch {
+      return { kind: "parseError" };
     }
-  } catch (err) {
-    if (isErrnoException(err) && err.code === "ENOENT") {
-      existing = {};
-    } else {
-      process.stderr.write(
-        style.yellow("\u26A0") + ` Could not parse ${settingsPath}. Create valid JSON or remove the file, then run init again.
-`
-      );
-      throw new Error(`Invalid Gemini CLI settings at ${settingsPath}`);
+  } catch (error) {
+    if (isErrnoException(error) && error.code === "ENOENT") {
+      return { kind: "missing" };
     }
+    const message = error instanceof Error ? error.message : String(error);
+    return { kind: "readError", message };
   }
-  const hooksRaw = existing["hooks"];
-  const hooksObj = typeof hooksRaw === "object" && hooksRaw !== null && !Array.isArray(hooksRaw) ? hooksRaw : {};
-  if (geminiSettingsHasMulticornHooks(hooksObj)) {
-    const answer = await ask(
-      "Existing Multicorn Shield hooks were found in ~/.gemini/settings.json. Overwrite? (Y/n) "
+}
+function isAllowedShieldApiBaseUrl(url) {
+  return url.startsWith("https://") || url.startsWith("http://localhost") || url.startsWith("http://127.0.0.1");
+}
+async function loadConfig() {
+  const result = await parseConfigFile();
+  if (result.kind !== "ok") return null;
+  const parsed = result.value;
+  if (!isProxyConfig(parsed)) return null;
+  const obj = parsed;
+  const agentNameRaw = obj["agentName"];
+  const agentsRaw = obj["agents"];
+  const hasNonEmptyAgents = Array.isArray(agentsRaw) && agentsRaw.length > 0 && agentsRaw.every((e) => isAgentEntry(e));
+  const needsMigrate = typeof agentNameRaw === "string" && agentNameRaw.length > 0 && !hasNonEmptyAgents;
+  if (!needsMigrate) {
+    return parsed;
+  }
+  const platform = typeof obj["platform"] === "string" && obj["platform"].length > 0 ? obj["platform"] : "unknown";
+  const next = { ...obj };
+  delete next["agentName"];
+  delete next["platform"];
+  next["agents"] = [{ name: agentNameRaw, platform }];
+  next["defaultAgent"] = agentNameRaw;
+  const migrated = next;
+  await saveConfig(migrated);
+  return migrated;
+}
+async function readBaseUrlFromConfig() {
+  const result = await parseConfigFile();
+  if (result.kind === "missing") return void 0;
+  if (result.kind === "readError") {
+    process.stderr.write(
+      style.yellow(`Warning: could not read base URL from config file: ${result.message}`) + "\n"
     );
-    if (answer.trim().toLowerCase() === "n") {
-      throw new Error("Installation cancelled: existing Shield hooks left unchanged.");
-    }
+    return void 0;
   }
-  const cleaned = geminiStripMulticornHookEntries({ ...hooksObj });
-  const beforeArr = Array.isArray(cleaned["BeforeTool"]) ? [...cleaned["BeforeTool"]] : [];
-  const afterArr = Array.isArray(cleaned["AfterTool"]) ? [...cleaned["AfterTool"]] : [];
-  const beforeCmd = `node ${destBefore}`;
-  const afterCmd = `node ${destAfter}`;
-  beforeArr.push({
-    matcher: ".*",
-    hooks: [
-      {
-        type: "command",
-        name: "multicorn-shield",
-        command: beforeCmd,
-        timeout: 6e4
-      }
-    ]
-  });
-  afterArr.push({
-    matcher: ".*",
+  if (result.kind === "parseError") {
+    process.stderr.write(
+      style.yellow("Warning: could not parse ~/.multicorn/config.json as JSON.") + "\n"
+    );
+    return void 0;
+  }
+  const parsed = result.value;
+  if (typeof parsed !== "object" || parsed === null) return void 0;
+  const u = parsed["baseUrl"];
+  if (typeof u !== "string" || u.length === 0) return void 0;
+  return u;
+}
+async function deleteAgentByName(name) {
+  const config = await loadConfig();
+  if (config === null) return false;
+  const agents = collectAgentsFromConfig(config);
+  const idx = agents.findIndex((a) => a.name === name);
+  if (idx === -1) return false;
+  const nextAgents = agents.filter((_, i) => i !== idx);
+  let defaultAgent = config.defaultAgent;
+  if (defaultAgent === name) {
+    defaultAgent = void 0;
+  }
+  const raw = { ...config };
+  if (nextAgents.length > 0) {
+    raw["agents"] = nextAgents;
+  } else {
+    delete raw["agents"];
+  }
+  if (defaultAgent !== void 0 && defaultAgent.length > 0) {
+    raw["defaultAgent"] = defaultAgent;
+  } else {
+    delete raw["defaultAgent"];
+  }
+  await saveConfig(raw);
+  return true;
+}
+async function saveConfig(config) {
+  await mkdir(CONFIG_DIR, { recursive: true, mode: 448 });
+  await writeFile(CONFIG_PATH, JSON.stringify(config, null, 2) + "\n", {
+    encoding: "utf8",
+    mode: 384
+  });
+}
+var OPENCLAW_MIN_VERSION = "2026.2.26";
+async function detectOpenClaw() {
+  let raw;
+  try {
+    raw = await readFile(OPENCLAW_CONFIG_PATH, "utf8");
+  } catch (e) {
+    if (isErrnoException(e) && e.code === "ENOENT") {
+      return { status: "not-found", version: null };
+    }
+    throw e;
+  }
+  let obj;
+  try {
+    obj = JSON.parse(raw);
+  } catch {
+    return { status: "parse-error", version: null };
+  }
+  const meta = obj["meta"];
+  if (typeof meta === "object" && meta !== null) {
+    const v = meta["lastTouchedVersion"];
+    if (typeof v === "string" && v.length > 0) {
+      return { status: "detected", version: v };
+    }
+  }
+  return { status: "detected", version: null };
+}
+function isVersionAtLeast(version, minimum) {
+  const vParts = version.split(".").map(Number);
+  const mParts = minimum.split(".").map(Number);
+  const len = Math.max(vParts.length, mParts.length);
+  for (let i = 0; i < len; i++) {
+    const v = vParts[i] ?? 0;
+    const m = mParts[i] ?? 0;
+    if (Number.isNaN(v) || Number.isNaN(m)) return false;
+    if (v > m) return true;
+    if (v < m) return false;
+  }
+  return true;
+}
+async function updateOpenClawConfigIfPresent(apiKey, baseUrl, agentName) {
+  let raw;
+  try {
+    raw = await readFile(OPENCLAW_CONFIG_PATH, "utf8");
+  } catch (e) {
+    if (isErrnoException(e) && e.code === "ENOENT") {
+      return "not-found";
+    }
+    throw e;
+  }
+  let obj;
+  try {
+    obj = JSON.parse(raw);
+  } catch {
+    return "parse-error";
+  }
+  let hooks = obj["hooks"];
+  if (hooks === void 0 || typeof hooks !== "object") {
+    hooks = {};
+    obj["hooks"] = hooks;
+  }
+  let internal = hooks["internal"];
+  if (internal === void 0 || typeof internal !== "object") {
+    internal = { enabled: true, entries: {} };
+    hooks["internal"] = internal;
+  }
+  let entries = internal["entries"];
+  if (entries === void 0 || typeof entries !== "object") {
+    entries = {};
+    internal["entries"] = entries;
+  }
+  let shield = entries["multicorn-shield"];
+  if (shield === void 0 || typeof shield !== "object") {
+    shield = { enabled: true, env: {} };
+    entries["multicorn-shield"] = shield;
+  }
+  let env = shield["env"];
+  if (env === void 0 || typeof env !== "object") {
+    env = {};
+    shield["env"] = env;
+  }
+  env["MULTICORN_API_KEY"] = apiKey;
+  env["MULTICORN_BASE_URL"] = baseUrl;
+  if (agentName !== void 0) {
+    env["MULTICORN_AGENT_NAME"] = agentName;
+    const agentsList = obj["agents"];
+    const list = agentsList?.["list"];
+    if (Array.isArray(list) && list.length > 0) {
+      const first = list[0];
+      if (first["id"] !== agentName) {
+        first["id"] = agentName;
+        first["name"] = agentName;
+      }
+    } else {
+      if (agentsList !== void 0 && typeof agentsList === "object") {
+        agentsList["list"] = [{ id: agentName, name: agentName }];
+      } else {
+        obj["agents"] = { list: [{ id: agentName, name: agentName }] };
+      }
+    }
+  }
+  await writeFile(OPENCLAW_CONFIG_PATH, JSON.stringify(obj, null, 2) + "\n", {
+    encoding: "utf8"
+  });
+  return "updated";
+}
+async function validateApiKey(apiKey, baseUrl) {
+  try {
+    const response = await fetch(`${baseUrl}/api/v1/agents`, {
+      headers: { "X-Multicorn-Key": apiKey },
+      signal: AbortSignal.timeout(8e3)
+    });
+    if (response.status === 401) {
+      return { valid: false, error: "API key not recognised. Check the key and try again." };
+    }
+    if (!response.ok) {
+      return {
+        valid: false,
+        error: `Service returned ${String(response.status)}. Check your base URL and try again.`
+      };
+    }
+    return { valid: true };
+  } catch (error) {
+    const detail = error instanceof Error ? error.message : String(error);
+    return {
+      valid: false,
+      error: `Could not reach ${baseUrl}. Check your network connection. (${detail})`
+    };
+  }
+}
+async function isOpenClawConnected() {
+  try {
+    const raw = await readFile(OPENCLAW_CONFIG_PATH, "utf8");
+    const obj = JSON.parse(raw);
+    const hooks = obj["hooks"];
+    const internal = hooks?.["internal"];
+    const entries = internal?.["entries"];
+    const shield = entries?.["multicorn-shield"];
+    const env = shield?.["env"];
+    const key = env?.["MULTICORN_API_KEY"];
+    return typeof key === "string" && key.length > 0;
+  } catch {
+    return false;
+  }
+}
+function isClaudeCodeConnected() {
+  try {
+    return existsSync(join(homedir(), ".claude", "plugins", "cache", "multicorn-shield"));
+  } catch {
+    return false;
+  }
+}
+function getCursorConfigPath() {
+  return join(homedir(), ".cursor", "mcp.json");
+}
+async function isCursorConnected() {
+  try {
+    const raw = await readFile(getCursorConfigPath(), "utf8");
+    const obj = JSON.parse(raw);
+    const mcpServers = obj["mcpServers"];
+    if (mcpServers === void 0 || typeof mcpServers !== "object") return false;
+    for (const entry of Object.values(mcpServers)) {
+      if (typeof entry !== "object" || entry === null) continue;
+      const rec = entry;
+      const url = rec["url"];
+      if (typeof url === "string" && url.includes("multicorn")) return true;
+      const args = rec["args"];
+      if (Array.isArray(args) && (args.includes("multicorn-shield") || args.includes("multicorn-proxy")))
+        return true;
+    }
+    return false;
+  } catch (err) {
+    process.stderr.write(
+      `Warning: could not check Cursor connection status: ${err instanceof Error ? err.message : String(err)}
+`
+    );
+    return false;
+  }
+}
+function getWindsurfConfigPath() {
+  return join(homedir(), ".codeium", "windsurf", "mcp_config.json");
+}
+async function isWindsurfConnected() {
+  try {
+    const raw = await readFile(getWindsurfConfigPath(), "utf8");
+    const obj = JSON.parse(raw);
+    const mcpServers = obj["mcpServers"];
+    if (mcpServers === void 0 || typeof mcpServers !== "object") return false;
+    for (const entry of Object.values(mcpServers)) {
+      if (typeof entry !== "object" || entry === null) continue;
+      const rec = entry;
+      const url = rec["serverUrl"];
+      if (typeof url === "string" && url.includes("multicorn")) return true;
+    }
+    return false;
+  } catch {
+    return false;
+  }
+}
+function multicornShieldPackageRoot() {
+  return join(dirname(fileURLToPath(import.meta.url)), "..");
+}
+function getWindsurfHooksInstallDir() {
+  return join(homedir(), ".multicorn", "windsurf-hooks");
+}
+function getWindsurfCascadeHooksJsonPath() {
+  return join(homedir(), ".codeium", "windsurf", "hooks.json");
+}
+function isShieldWindsurfHookCommand(cmd) {
+  return cmd.includes("windsurf-hooks/pre-action.cjs") || cmd.includes("windsurf-hooks\\pre-action.cjs") || cmd.includes("windsurf-hooks/post-action.cjs") || cmd.includes("windsurf-hooks\\post-action.cjs");
+}
+function filterOutShieldWindsurfHooks(entries) {
+  if (!Array.isArray(entries)) return [];
+  const out = [];
+  for (const e of entries) {
+    if (typeof e !== "object" || e === null) continue;
+    const rec = e;
+    const cmd = rec["command"];
+    if (typeof cmd !== "string" || isShieldWindsurfHookCommand(cmd)) continue;
+    const powershell = rec["powershell"];
+    const show_output = rec["show_output"];
+    out.push({
+      command: cmd,
+      ...typeof powershell === "string" ? { powershell } : {},
+      ...show_output === true ? { show_output: true } : {}
+    });
+  }
+  return out;
+}
+async function installWindsurfNativeHooks() {
+  const root = multicornShieldPackageRoot();
+  const srcPre = join(root, "plugins", "windsurf", "hooks", "scripts", "pre-action.cjs");
+  const srcPost = join(root, "plugins", "windsurf", "hooks", "scripts", "post-action.cjs");
+  if (!existsSync(srcPre) || !existsSync(srcPost)) {
+    throw new Error(
+      `Could not find Shield Windsurf hook scripts at ${srcPre}. If you use npm, install the latest multicorn-shield package.`
+    );
+  }
+  const windsurfConfigDir = join(homedir(), ".codeium", "windsurf");
+  if (!isExistingDirectory(windsurfConfigDir)) {
+    process.stderr.write(
+      style.yellow("\u26A0") + "  Windsurf does not appear to be installed (~/.codeium/windsurf/ not found).\n\n"
+    );
+    process.stderr.write(
+      "Open Windsurf at least once so this folder exists, or install from:\n  " + style.cyan("https://windsurf.com/download") + "\n\n"
+    );
+    process.stderr.write("Then run this wizard again:\n");
+    process.stderr.write("  " + style.cyan("npx multicorn-shield init") + "\n");
+    throw new NativePluginPrerequisiteMissingError();
+  }
+  const installDir = getWindsurfHooksInstallDir();
+  await mkdir(installDir, { recursive: true });
+  const destPre = join(installDir, "pre-action.cjs");
+  const destPost = join(installDir, "post-action.cjs");
+  await copyFile(srcPre, destPre);
+  await copyFile(srcPost, destPost);
+  const preCmd = `node ${JSON.stringify(destPre)}`;
+  const postCmd = `node ${JSON.stringify(destPost)}`;
+  const preEntry = { command: preCmd, powershell: preCmd, show_output: true };
+  const postEntry = { command: postCmd, powershell: postCmd };
+  const hooksPath = getWindsurfCascadeHooksJsonPath();
+  let base = { hooks: {} };
+  try {
+    const raw = await readFile(hooksPath, "utf8");
+    base = JSON.parse(raw);
+  } catch (err) {
+    if (!isErrnoException(err) || err.code !== "ENOENT") {
+      throw err;
+    }
+  }
+  const hooks = base["hooks"] ?? {};
+  const preKeys = [
+    "pre_read_code",
+    "pre_write_code",
+    "pre_run_command",
+    "pre_mcp_tool_use"
+  ];
+  const postKeys = [
+    "post_read_code",
+    "post_write_code",
+    "post_run_command",
+    "post_mcp_tool_use"
+  ];
+  const nextHooks = { ...hooks };
+  for (const k of preKeys) {
+    const merged = filterOutShieldWindsurfHooks(nextHooks[k]);
+    nextHooks[k] = [...merged, preEntry];
+  }
+  for (const k of postKeys) {
+    const merged = filterOutShieldWindsurfHooks(nextHooks[k]);
+    nextHooks[k] = [...merged, postEntry];
+  }
+  base["hooks"] = nextHooks;
+  const hooksDir = dirname(hooksPath);
+  await mkdir(hooksDir, { recursive: true });
+  await writeFile(hooksPath, JSON.stringify(base, null, 2) + "\n", { encoding: "utf8" });
+}
+function getClineHooksInstallDir() {
+  return join(homedir(), ".multicorn", "cline-hooks");
+}
+function getClineGlobalHooksDir() {
+  return join(homedir(), "Documents", "Cline", "Hooks");
+}
+async function installClineNativeHooks() {
+  const root = multicornShieldPackageRoot();
+  const srcPre = join(root, "plugins", "cline", "hooks", "scripts", "pre-tool-use.cjs");
+  const srcPost = join(root, "plugins", "cline", "hooks", "scripts", "post-tool-use.cjs");
+  const srcShared = join(root, "plugins", "cline", "hooks", "scripts", "shared.cjs");
+  if (!existsSync(srcPre) || !existsSync(srcPost) || !existsSync(srcShared)) {
+    throw new Error(
+      `Could not find Shield Cline hook scripts at ${srcPre}. If you use npm, install the latest multicorn-shield package.`
+    );
+  }
+  const clineDocsDir = join(homedir(), "Documents", "Cline");
+  if (!isExistingDirectory(clineDocsDir)) {
+    process.stderr.write(
+      style.yellow("\u26A0") + "  Cline does not appear to be installed (~/Documents/Cline/ not found).\n\n"
+    );
+    process.stderr.write("Install the Cline VS Code extension first. See:\n");
+    process.stderr.write(
+      "  " + style.cyan("https://docs.cline.bot/getting-started/installing-cline") + "\n\n"
+    );
+    process.stderr.write("Then run this wizard again:\n");
+    process.stderr.write("  " + style.cyan("npx multicorn-shield init") + "\n");
+    throw new NativePluginPrerequisiteMissingError();
+  }
+  const installDir = getClineHooksInstallDir();
+  await mkdir(installDir, { recursive: true });
+  const destPre = join(installDir, "pre-tool-use.cjs");
+  const destPost = join(installDir, "post-tool-use.cjs");
+  const destShared = join(installDir, "shared.cjs");
+  await copyFile(srcPre, destPre);
+  await copyFile(srcPost, destPost);
+  await copyFile(srcShared, destShared);
+  const hookScriptMode = 493;
+  await chmod(destPre, hookScriptMode);
+  await chmod(destPost, hookScriptMode);
+  await chmod(destShared, hookScriptMode);
+  const hooksDir = getClineGlobalHooksDir();
+  await mkdir(hooksDir, { recursive: true });
+  const preWrapper = join(hooksDir, "PreToolUse");
+  const postWrapper = join(hooksDir, "PostToolUse");
+  const preContent = `#!/usr/bin/env node
+require(${JSON.stringify(destPre)});
+`;
+  const postContent = `#!/usr/bin/env node
+require(${JSON.stringify(destPost)});
+`;
+  await writeFile(preWrapper, preContent, { encoding: "utf8", mode: 493 });
+  await writeFile(postWrapper, postContent, { encoding: "utf8", mode: 493 });
+}
+async function promptClineIntegrationMode(ask) {
+  process.stderr.write("\n" + style.bold("Cline integration") + "\n");
+  process.stderr.write(
+    "  " + style.violet("1") + ". Native plugin (recommended) - Cline Hooks see every file, terminal, browser, and MCP action\n"
+  );
+  process.stderr.write(
+    "  " + style.violet("2") + ". Hosted proxy - govern MCP traffic only (paste proxy URL into Cline MCP settings)\n"
+  );
+  let choice = 0;
+  while (choice === 0) {
+    const input = await ask("Choose integration (1-2): ");
+    const num = parseInt(input.trim(), 10);
+    if (num === 1) choice = 1;
+    if (num === 2) choice = 2;
+  }
+  return choice === 1 ? "native" : "hosted";
+}
+function getGeminiCliHooksInstallDir() {
+  return join(homedir(), ".multicorn", "gemini-cli-hooks");
+}
+function getGeminiCliSettingsPath() {
+  return join(homedir(), ".gemini", "settings.json");
+}
+function geminiInnerHooksReferenceShield(inner, multicornName) {
+  if (!Array.isArray(inner)) return false;
+  for (const h of inner) {
+    if (typeof h !== "object" || h === null) continue;
+    const rec = h;
+    if (rec["name"] === multicornName) return true;
+    const cmd = rec["command"];
+    if (typeof cmd === "string" && cmd.includes("gemini-cli-hooks")) return true;
+  }
+  return false;
+}
+function geminiHookEventsReferenceShield(arr) {
+  if (!Array.isArray(arr)) return false;
+  for (const entry of arr) {
+    if (typeof entry !== "object" || entry === null) continue;
+    const hooks = entry["hooks"];
+    if (geminiInnerHooksReferenceShield(hooks, "multicorn-shield") || geminiInnerHooksReferenceShield(hooks, "multicorn-shield-log")) {
+      return true;
+    }
+  }
+  return false;
+}
+function geminiSettingsHasMulticornHooks(hooks) {
+  if (hooks === null || typeof hooks !== "object" || Array.isArray(hooks)) return false;
+  const h = hooks;
+  return geminiHookEventsReferenceShield(h["BeforeTool"]) || geminiHookEventsReferenceShield(h["AfterTool"]);
+}
+function geminiFilterInnerHooks(inner) {
+  if (!Array.isArray(inner)) return [];
+  return inner.filter((h) => {
+    if (typeof h !== "object" || h === null) return true;
+    const rec = h;
+    if (rec["name"] === "multicorn-shield" || rec["name"] === "multicorn-shield-log") return false;
+    const cmd = rec["command"];
+    if (typeof cmd === "string" && cmd.includes("gemini-cli-hooks")) return false;
+    return true;
+  });
+}
+function geminiStripMatcherGroups(arr) {
+  if (!Array.isArray(arr)) return [];
+  const out = [];
+  for (const entry of arr) {
+    if (typeof entry !== "object" || entry === null) continue;
+    const e = entry;
+    const filtered = geminiFilterInnerHooks(e["hooks"]);
+    if (filtered.length > 0) {
+      out.push({ ...e, hooks: filtered });
+    }
+  }
+  return out;
+}
+function geminiStripMulticornHookEntries(hooks) {
+  const out = { ...hooks };
+  out["BeforeTool"] = geminiStripMatcherGroups(out["BeforeTool"]);
+  out["AfterTool"] = geminiStripMatcherGroups(out["AfterTool"]);
+  return out;
+}
+async function installGeminiCliNativeHooks(ask) {
+  const root = multicornShieldPackageRoot();
+  const srcBefore = join(root, "plugins", "gemini-cli", "hooks", "scripts", "before-tool.cjs");
+  const srcAfter = join(root, "plugins", "gemini-cli", "hooks", "scripts", "after-tool.cjs");
+  const srcShared = join(root, "plugins", "gemini-cli", "hooks", "scripts", "shared.cjs");
+  if (!existsSync(srcBefore) || !existsSync(srcAfter) || !existsSync(srcShared)) {
+    throw new Error(
+      `Could not find Shield Gemini CLI hook scripts at ${srcBefore}. If you use npm, install the latest multicorn-shield package.`
+    );
+  }
+  const geminiConfigDir = join(homedir(), ".gemini");
+  if (!isExistingDirectory(geminiConfigDir)) {
+    process.stderr.write(
+      style.yellow("\u26A0") + "  Gemini CLI does not appear to be installed (~/.gemini/ not found).\n\n"
+    );
+    process.stderr.write("Install Gemini CLI first:\n");
+    process.stderr.write("  " + style.cyan("npm install -g @google/gemini-cli") + "\n\n");
+    process.stderr.write("Then run this wizard again:\n");
+    process.stderr.write("  " + style.cyan("npx multicorn-shield init") + "\n");
+    throw new NativePluginPrerequisiteMissingError();
+  }
+  const installDir = getGeminiCliHooksInstallDir();
+  await mkdir(installDir, { recursive: true });
+  const destBefore = join(installDir, "before-tool.cjs");
+  const destAfter = join(installDir, "after-tool.cjs");
+  const destShared = join(installDir, "shared.cjs");
+  await copyFile(srcBefore, destBefore);
+  await copyFile(srcAfter, destAfter);
+  await copyFile(srcShared, destShared);
+  const mode = 493;
+  await chmod(destBefore, mode);
+  await chmod(destAfter, mode);
+  await chmod(destShared, mode);
+  const settingsPath = getGeminiCliSettingsPath();
+  let existing = {};
+  try {
+    const rawText = await readFile(settingsPath, "utf8");
+    const parsed = JSON.parse(rawText);
+    if (parsed !== null && typeof parsed === "object" && !Array.isArray(parsed)) {
+      existing = parsed;
+    }
+  } catch (err) {
+    if (isErrnoException(err) && err.code === "ENOENT") {
+      existing = {};
+    } else {
+      process.stderr.write(
+        style.yellow("\u26A0") + ` Could not parse ${settingsPath}. Create valid JSON or remove the file, then run init again.
+`
+      );
+      throw new Error(`Invalid Gemini CLI settings at ${settingsPath}`);
+    }
+  }
+  const hooksRaw = existing["hooks"];
+  const hooksObj = typeof hooksRaw === "object" && hooksRaw !== null && !Array.isArray(hooksRaw) ? hooksRaw : {};
+  if (geminiSettingsHasMulticornHooks(hooksObj)) {
+    const answer = await ask(
+      "Existing Multicorn Shield hooks were found in ~/.gemini/settings.json. Overwrite? (Y/n) "
+    );
+    if (answer.trim().toLowerCase() === "n") {
+      throw new Error("Installation cancelled: existing Shield hooks left unchanged.");
+    }
+  }
+  const cleaned = geminiStripMulticornHookEntries({ ...hooksObj });
+  const beforeArr = Array.isArray(cleaned["BeforeTool"]) ? [...cleaned["BeforeTool"]] : [];
+  const afterArr = Array.isArray(cleaned["AfterTool"]) ? [...cleaned["AfterTool"]] : [];
+  const beforeCmd = `node ${destBefore}`;
+  const afterCmd = `node ${destAfter}`;
+  beforeArr.push({
+    matcher: ".*",
+    hooks: [
+      {
+        type: "command",
+        name: "multicorn-shield",
+        command: beforeCmd,
+        timeout: 6e4
+      }
+    ]
+  });
+  afterArr.push({
+    matcher: ".*",
     hooks: [
       {
         type: "command",
@@ -864,19 +1233,6 @@ function isPlatformDetectedForMenu(slug) {
       return Promise.resolve(false);
   }
 }
-var DEFAULT_AGENT_NAMES = {
-  openclaw: "my-openclaw-agent",
-  "claude-code": "my-claude-code-agent",
-  cursor: "my-cursor-agent",
-  windsurf: "my-windsurf-agent",
-  cline: "my-cline-agent",
-  "claude-desktop": "my-claude-desktop-agent",
-  "gemini-cli": "my-gemini-cli-agent",
-  "kilo-code": "my-kilo-code-agent",
-  "github-copilot": "my-github-copilot-agent",
-  "continue-dev": "my-continue-agent",
-  goose: "my-goose-agent"
-};
 async function promptPlatformSelection(ask) {
   process.stderr.write(
     "\n" + style.bold(style.violet("Which platform are you connecting?")) + "\n\n"
@@ -937,8 +1293,79 @@ async function promptWindsurfIntegrationMode(ask) {
   }
   return choice === 1 ? "native" : "hosted";
 }
+async function arrowSelect(options, ask, fallbackLabel) {
+  const canRaw = process.stdin.isTTY && typeof process.stdin.setRawMode === "function";
+  if (!canRaw) {
+    for (let i = 0; i < options.length; i++) {
+      const optLine = options.at(i) ?? "";
+      process.stderr.write(`  ${style.violet(String(i + 1))}. ${optLine}
+`);
+    }
+    const label = fallbackLabel ?? "Choose";
+    let sel = -1;
+    while (sel < 0) {
+      const input = await ask(`${label} (1-${String(options.length)}): `);
+      const n = parseInt(input.trim(), 10);
+      if (n >= 1 && n <= options.length) sel = n - 1;
+    }
+    return sel;
+  }
+  let idx = 0;
+  function render() {
+    for (let i = 0; i < options.length; i++) {
+      const opt = options.at(i);
+      if (opt === void 0) continue;
+      const prefix = i === idx ? style.violet("\u276F") : " ";
+      const label = i === idx ? style.cyan(opt) : opt;
+      process.stderr.write(`${prefix} ${label}
+`);
+    }
+  }
+  function clearLines() {
+    for (let n = options.length; n > 0; n -= 1) {
+      process.stderr.write("\x1B[1A\x1B[2K");
+    }
+  }
+  process.stderr.write("\n");
+  render();
+  return new Promise((resolvePromise) => {
+    const wasRaw = process.stdin.isRaw;
+    process.stdin.setRawMode(true);
+    process.stdin.resume();
+    function onData(buf) {
+      const s = buf.toString("utf8");
+      if (s === "\x1B[A" || s === "k") {
+        idx = (idx - 1 + options.length) % options.length;
+        clearLines();
+        render();
+      } else if (s === "\x1B[B" || s === "j") {
+        idx = (idx + 1) % options.length;
+        clearLines();
+        render();
+      } else if (s === "\r" || s === "\n") {
+        cleanup();
+        clearLines();
+        const chosen = options.at(idx);
+        if (chosen !== void 0) {
+          process.stderr.write(`${style.violet("\u276F")} ${style.cyan(chosen)}
+`);
+        }
+        resolvePromise(idx);
+      } else if (s === "") {
+        cleanup();
+        process.exit(130);
+      }
+    }
+    function cleanup() {
+      process.stdin.removeListener("data", onData);
+      process.stdin.setRawMode(wasRaw);
+    }
+    process.stdin.on("data", onData);
+  });
+}
 async function promptAgentName(ask, platform) {
-  const defaultAgentName = DEFAULT_AGENT_NAMES[platform] ?? "my-agent";
+  const dirPart = normalizeAgentName(basename(process.cwd()));
+  const defaultAgentName = dirPart.length > 0 ? normalizeAgentName(`${dirPart}-${platform}`) || platform : normalizeAgentName(platform) || platform;
   let agentName = "";
   while (agentName.length === 0) {
     const input = await ask(
@@ -1208,6 +1635,18 @@ function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
     process.stderr.write(style.dim("Start a new Goose session after updating config.") + "\n");
   }
 }
+function mergeAgentsForPlatform(localAgents, remoteAgents, selectedPlatform) {
+  const localMatches = localAgents.filter((a) => a.platform === selectedPlatform);
+  const seen = new Set(localMatches.map((a) => a.name));
+  const out = localMatches.map((a) => ({ ...a }));
+  for (const r of remoteAgents) {
+    if (r.platform !== selectedPlatform) continue;
+    if (seen.has(r.name)) continue;
+    seen.add(r.name);
+    out.push({ name: r.name, platform: selectedPlatform });
+  }
+  return out;
+}
 var DEFAULT_SHIELD_API_BASE_URL = "https://api.multicorn.ai";
 async function runInit(explicitBaseUrl) {
   if (!process.stdin.isTTY) {
@@ -1217,8 +1656,8 @@ async function runInit(explicitBaseUrl) {
     process.exit(1);
   }
   const rl = createInterface({ input: process.stdin, output: process.stderr });
-  const ask = (question) => new Promise((resolve) => {
-    rl.question(question, resolve);
+  const ask = (question) => new Promise((resolve2) => {
+    rl.question(question, resolve2);
   });
   process.stderr.write("\n" + BANNER + "\n");
   process.stderr.write(style.dim("Agent governance for the AI era") + "\n\n");
@@ -1294,6 +1733,8 @@ async function runInit(explicitBaseUrl) {
   let configuring = true;
   while (configuring) {
     let postSaveNativeSkipNote = null;
+    let removeAgentNameBeforeSave = void 0;
+    const initWorkspacePath = resolve(process.cwd());
     const selection = await promptPlatformSelection(ask);
     const selectedPlatform = PLATFORM_BY_SELECTION[selection] ?? "cursor";
     const selectedLabel = platformMenuLabelForSelection(selection);
@@ -1331,20 +1772,83 @@ async function runInit(explicitBaseUrl) {
       }
       continue;
     }
-    const existingForPlatform = currentAgents.find((a) => a.platform === selectedPlatform);
-    if (existingForPlatform !== void 0) {
-      process.stderr.write(
-        `
-An agent for ${selectedLabel} already exists: ${style.cyan(existingForPlatform.name)}
-`
+    const remoteAccountAgents = await fetchRemoteAgentsSummaries(apiKey, resolvedBaseUrl);
+    const agentsForPlatform = mergeAgentsForPlatform(
+      currentAgents,
+      remoteAccountAgents,
+      selectedPlatform
+    );
+    const localForPlatformCount = currentAgents.filter(
+      (a) => a.platform === selectedPlatform
+    ).length;
+    const accountForPlatformCount = remoteAccountAgents.filter(
+      (r) => r.platform === selectedPlatform
+    ).length;
+    const savedSummary = currentAgents.length === 0 ? "none on disk" : currentAgents.map((a) => `${a.name} (${a.platform})`).join(", ");
+    process.stderr.write(
+      style.dim(
+        `[shield init] Menu option ${String(selection)} -> platform slug "${selectedPlatform}". ${String(agentsForPlatform.length)} agent(s) for this platform (local file: ${String(localForPlatformCount)}, account API: ${String(accountForPlatformCount)}). On-disk entries: ${savedSummary}.`
+      ) + "\n"
+    );
+    if (agentsForPlatform.length > 0) {
+      const exactForWorkspace = agentsForPlatform.find(
+        (a) => typeof a.workspacePath === "string" && a.workspacePath.length > 0 && resolve(a.workspacePath) === initWorkspacePath
       );
-      const replace = await ask("Replace it? (Y/n) ");
-      if (replace.trim().toLowerCase() === "n") {
-        const another2 = await ask("\nConnect another agent? (Y/n) ");
-        if (another2.trim().toLowerCase() === "n") {
-          configuring = false;
+      if (exactForWorkspace !== void 0) {
+        process.stderr.write(
+          `
+This workspace already has a ${selectedLabel} agent registered (${style.cyan(
+            exactForWorkspace.name
+          )}).
+`
+        );
+        process.stderr.write(
+          style.dim(
+            "Replace updates this directory's saved agent. (n) returns to platform selection \u2014 the wizard keeps running."
+          ) + "\n"
+        );
+        const replace = await ask("Replace it? (Y/n) ");
+        if (replace.trim().toLowerCase() === "n") {
+          process.stderr.write(style.dim("Skipping. Returning to platform selection.") + "\n");
+          continue;
+        }
+        removeAgentNameBeforeSave = exactForWorkspace.name;
+      } else {
+        process.stderr.write(
+          `
+You have ${String(agentsForPlatform.length)} agent(s) connected for ${selectedLabel}:
+`
+        );
+        for (const a of agentsForPlatform) {
+          const wsHint = typeof a.workspacePath === "string" && a.workspacePath.length > 0 ? `  ${style.dim(a.workspacePath)}` : "";
+          process.stderr.write(`  ${style.dim("\u2022")} ${style.cyan(a.name)}${wsHint}
+`);
+        }
+        process.stderr.write("\n" + style.bold("What would you like to do?") + "\n");
+        const actionIdx = await arrowSelect(
+          [
+            "Add a new agent alongside these",
+            "Replace an existing agent",
+            "Skip \u2014 choose a different platform"
+          ],
+          ask,
+          "Action"
+        );
+        if (actionIdx === 2) {
+          continue;
+        }
+        if (actionIdx === 1) {
+          process.stderr.write("\n" + style.bold("Which agent to replace?") + "\n");
+          const replaceIdx = await arrowSelect(
+            agentsForPlatform.map((a) => a.name),
+            ask,
+            "Agent"
+          );
+          const victim = agentsForPlatform[replaceIdx];
+          if (victim !== void 0) {
+            removeAgentNameBeforeSave = victim.name;
+          }
         }
-        continue;
       }
     }
     const prereqEntry = INIT_WIZARD_PLATFORM_REGISTRY.find((e) => e.slug === selectedPlatform);
@@ -1756,8 +2260,14 @@ An agent for ${selectedLabel} already exists: ${style.cyan(existingForPlatform.n
       }
     }
     if (setupSucceeded) {
-      currentAgents = currentAgents.filter((a) => a.platform !== selectedPlatform);
-      currentAgents.push({ name: agentName, platform: selectedPlatform });
+      if (removeAgentNameBeforeSave !== void 0) {
+        currentAgents = currentAgents.filter((a) => a.name !== removeAgentNameBeforeSave);
+      }
+      currentAgents.push({
+        name: agentName,
+        platform: selectedPlatform,
+        workspacePath: initWorkspacePath
+      });
       const raw = existing !== null ? { ...existing } : {};
       raw["apiKey"] = apiKey;
       raw["baseUrl"] = resolvedBaseUrl;
@@ -1807,848 +2317,548 @@ An agent for ${selectedLabel} already exists: ${style.cyan(existingForPlatform.n
       );
     }
     if (configuredPlatforms.has("claude-code")) {
-      blocks.push(
-        "\n" + style.bold("To complete your Claude Code setup:") + "\n  \u2192 Add marketplace: " + style.cyan("claude plugin marketplace add Multicorn-AI/multicorn-shield") + "\n  \u2192 Install plugin: " + style.cyan("claude plugin install multicorn-shield@multicorn-shield") + "\n"
-      );
-    }
-    if (configuredPlatforms.has("claude-desktop")) {
-      blocks.push(
-        "\n" + style.bold("To complete your Claude Desktop setup:") + "\n  \u2192 Restart Claude Desktop to pick up config changes\n"
-      );
-    }
-    if (configuredPlatforms.has("cursor")) {
-      blocks.push(
-        "\n" + style.bold("To complete your Cursor setup:") + "\n  1. If you don't have Cursor yet, download it from " + style.cyan("https://cursor.com/downloads") + "\n  2. Open " + style.cyan("~/.cursor/mcp.json") + " and paste the config snippet shown above\n  3. Restart Cursor (or launch it for the first time) to load the new MCP server\n"
-      );
-    }
-    if (configuredPlatforms.has("kilo-code")) {
-      blocks.push(
-        "\n" + style.bold("To complete your Kilo Code setup:") + "\n  1. Save the snippet to " + style.cyan(".kilocode/mcp.json") + " in your project root, or under the mcp key in " + style.cyan("kilo.jsonc") + "\n  2. Run your next task in Kilo Code so it picks up the MCP server\n"
-      );
-    }
-    if (configuredPlatforms.has("github-copilot")) {
-      blocks.push(
-        "\n" + style.bold("GitHub Copilot MCP:") + "\n  1. Open VS Code Command Palette: Preferences: Open User Settings (JSON)\n  2. Merge the snippet under the " + style.cyan("mcp") + " key and save\n  3. Use Copilot Agent mode and verify the MCP server connects\n"
-      );
-    }
-    if (configuredPlatforms.has("continue-dev")) {
-      blocks.push(
-        "\n" + style.bold("Continue MCP:") + "\n  1. If you don't have Continue yet, install from " + style.cyan("https://docs.continue.dev/ide-extensions/install") + "\n  2. Save JSON as " + style.cyan(".continue/mcpServers/shield.json") + " in your workspace, or add to " + style.cyan("~/.continue/config.yaml") + "\n  3. Reload VS Code and open Continue agent mode\n"
-      );
-    }
-    if (configuredPlatforms.has("goose")) {
-      blocks.push(
-        "\n" + style.bold("Goose MCP extension:") + "\n  1. Edit " + style.cyan("~/.config/goose/config.yaml") + " (or use goose configure)\n  2. Restart Goose CLI or Desktop\n"
-      );
-    }
-    const windsurfNativeConfigured = configuredAgents.some(
-      (a) => a.platform === "windsurf" && a.windsurfIntegration === "native"
-    );
-    const windsurfHostedConfigured = configuredAgents.some(
-      (a) => a.platform === "windsurf" && a.windsurfIntegration === "hosted"
-    );
-    if (windsurfNativeConfigured) {
-      blocks.push(
-        "\n" + style.bold("To complete native Windsurf (Shield) setup:") + "\n  1. Hook scripts: " + style.cyan(getWindsurfHooksInstallDir()) + "\n  2. Hooks config: " + style.cyan(getWindsurfCascadeHooksJsonPath()) + "\n  3. Restart Windsurf (quit fully, then reopen)\n"
-      );
-    }
-    if (windsurfHostedConfigured) {
-      blocks.push(
-        "\n" + style.bold("To complete your Windsurf hosted-proxy setup:") + "\n  1. If you don't have Windsurf yet, download it from " + style.cyan("https://windsurf.com/download") + "\n  2. Open " + style.cyan("~/.codeium/windsurf/mcp_config.json") + " and paste the config snippet shown above\n  3. Restart Windsurf (or launch it for the first time) to load the new MCP server\n"
-      );
-    }
-    const clineNativeConfigured = configuredAgents.some(
-      (a) => a.platform === "cline" && a.clineIntegration === "native"
-    );
-    const clineHostedConfigured = configuredAgents.some(
-      (a) => a.platform === "cline" && a.clineIntegration === "hosted"
-    );
-    if (clineNativeConfigured) {
-      blocks.push(
-        "\n" + style.bold("To complete native Cline (Shield) setup:") + "\n  1. Enable Hooks in Cline: open VS Code, click the Cline sidebar icon, click the gear icon,\n     scroll down to the Advanced section, and toggle Hooks on.\n  2. Reload the VS Code window (Cmd+Shift+P > Reload Window)\n  3. Trigger any tool call to verify Shield is intercepting\n"
-      );
-    }
-    if (clineHostedConfigured) {
-      blocks.push(
-        "\n" + style.bold("To complete your Cline hosted-proxy setup:") + "\n  1. If you don't have Cline yet, install it from the VS Code marketplace\n  2. Open your Cline MCP settings file and paste the config snippet shown above\n  3. Restart Cline or reload the VS Code window\n"
-      );
-    }
-    const geminiCliNativeConfigured = configuredAgents.some(
-      (a) => a.platform === "gemini-cli" && a.geminiCliIntegration === "native"
-    );
-    const geminiCliHostedConfigured = configuredAgents.some(
-      (a) => a.platform === "gemini-cli" && a.geminiCliIntegration === "hosted"
-    );
-    if (geminiCliNativeConfigured) {
-      blocks.push(
-        "\n" + style.bold("Gemini CLI native hooks:") + "\n  Your Gemini CLI hooks are installed. Restart Gemini CLI to activate Shield governance.\n"
-      );
-    }
-    if (geminiCliHostedConfigured) {
-      blocks.push(
-        "\n" + style.bold("To complete your Gemini CLI setup:") + "\n  1. Open " + style.cyan("~/.gemini/settings.json") + "\n  2. Paste the config snippet shown above\n  3. Restart Gemini CLI, then run /mcp to verify\n"
-      );
-    }
-    if (blocks.length > 0) {
-      process.stderr.write("\n" + style.bold(style.violet("Next steps")) + "\n");
-      process.stderr.write(blocks.join("") + "\n");
-    }
-  }
-  return lastConfig;
-}
-// src/types/index.ts
-var PERMISSION_LEVELS = {
-  Read: "read",
-  Write: "write",
-  Execute: "execute",
-  Publish: "publish",
-  Create: "create"
-};
-// src/scopes/scope-parser.ts
-var VALID_PERMISSION_LEVELS = new Set(Object.values(PERMISSION_LEVELS));
-[...VALID_PERMISSION_LEVELS].join(", ");
-function formatScope(scope) {
-  return `${scope.permissionLevel}:${scope.service}`;
-}
-// src/scopes/scope-validator.ts
-function validateScopeAccess(grantedScopes, requested) {
-  const isGranted = grantedScopes.some(
-    (granted) => granted.service === requested.service && granted.permissionLevel === requested.permissionLevel
-  );
-  if (isGranted) {
-    return { allowed: true };
-  }
-  const serviceScopes = grantedScopes.filter((g) => g.service === requested.service);
-  if (serviceScopes.length > 0) {
-    const grantedLevels = serviceScopes.map((g) => `"${g.permissionLevel}"`).join(", ");
-    return {
-      allowed: false,
-      reason: `Permission "${requested.permissionLevel}" is not granted for service "${requested.service}". Currently granted permission level(s): ${grantedLevels}. Requested scope "${formatScope(requested)}" requires explicit consent.`
-    };
-  }
-  return {
-    allowed: false,
-    reason: `No permissions granted for service "${requested.service}". The agent has not been authorised to access this service. Request scope "${formatScope(requested)}" via the consent screen.`
-  };
-}
-function hasScope(grantedScopes, requested) {
-  return grantedScopes.some(
-    (granted) => granted.service === requested.service && granted.permissionLevel === requested.permissionLevel
-  );
-}
-// src/logger/action-logger.ts
-function createActionLogger(config) {
-  if (!config.apiKey || config.apiKey.trim().length === 0) {
-    throw new Error(
-      "[ActionLogger] API key is required. Provide it via the 'apiKey' config option."
-    );
-  }
-  const baseUrl = config.baseUrl ?? "https://api.multicorn.ai";
-  const timeout = config.timeout ?? 5e3;
-  if (!baseUrl.startsWith("https://") && !baseUrl.startsWith("http://localhost")) {
-    throw new Error(
-      `[ActionLogger] Base URL must use HTTPS for security. Received: "${baseUrl}". Use https:// or http://localhost for local development.`
-    );
-  }
-  const endpoint = `${baseUrl}/api/v1/actions`;
-  const batchEnabled = config.batchMode?.enabled ?? false;
-  const maxBatchSize = config.batchMode?.maxSize ?? 10;
-  const flushInterval = config.batchMode?.flushIntervalMs ?? 5e3;
-  const queue = [];
-  let flushTimer;
-  let isShutdown = false;
-  async function sendActions(actions) {
-    if (actions.length === 0) return;
-    const convertAction = (action) => ({
-      agent: action.agent,
-      service: action.service,
-      actionType: action.actionType,
-      status: action.status,
-      ...action.cost !== void 0 ? { cost: action.cost } : {},
-      ...action.metadata !== void 0 ? { metadata: action.metadata } : {}
-    });
-    const convertedActions = actions.map(convertAction);
-    const payload = batchEnabled ? { actions: convertedActions } : convertedActions[0];
-    let lastError;
-    for (let attempt = 0; attempt < 2; attempt++) {
-      try {
-        const controller = new AbortController();
-        const timeoutId = setTimeout(() => {
-          controller.abort();
-        }, timeout);
-        const response = await fetch(endpoint, {
-          method: "POST",
-          headers: {
-            "Content-Type": "application/json",
-            "X-Multicorn-Key": config.apiKey
-          },
-          body: JSON.stringify(payload),
-          signal: controller.signal
-        });
-        clearTimeout(timeoutId);
-        if (response.ok) {
-          return;
-        }
-        if (response.status >= 400 && response.status < 500) {
-          const body = await response.text().catch(() => "");
-          throw new Error(
-            `[ActionLogger] Client error (${String(response.status)}): ${response.statusText}. Response: ${body}. Check your API key and payload format.`
-          );
-        }
-        if (response.status >= 500 && attempt === 0) {
-          lastError = new Error(
-            `[ActionLogger] Server error (${String(response.status)}): ${response.statusText}. Retrying once...`
-          );
-          await sleep(100 * Math.pow(2, attempt));
-          continue;
-        }
-        throw new Error(
-          `[ActionLogger] Server error (${String(response.status)}) after retry: ${response.statusText}. Multicorn API may be experiencing issues.`
-        );
-      } catch (error) {
-        if (error instanceof Error) {
-          if (error.name === "AbortError") {
-            lastError = new Error(
-              `[ActionLogger] Request timeout after ${String(timeout)}ms. Increase the 'timeout' config option or check your network connection.`
-            );
-          } else if (error.message.includes("Client error") || error.message.includes("Server error")) {
-            lastError = error;
-          } else {
-            lastError = new Error(
-              `[ActionLogger] Network error: ${error.message}. Check your network connection and API endpoint.`
-            );
-          }
-        } else {
-          lastError = new Error(`[ActionLogger] Unknown error: ${String(error)}`);
-        }
-        if (attempt === 0 && !lastError.message.includes("Client error")) {
-          await sleep(100 * Math.pow(2, attempt));
-          continue;
-        }
-        break;
-      }
+      blocks.push(
+        "\n" + style.bold("To complete your Claude Code setup:") + "\n  \u2192 Add marketplace: " + style.cyan("claude plugin marketplace add Multicorn-AI/multicorn-shield") + "\n  \u2192 Install plugin: " + style.cyan("claude plugin install multicorn-shield@multicorn-shield") + "\n"
+      );
     }
-    if (lastError) {
-      if (config.onError) {
-        config.onError(lastError);
-      }
+    if (configuredPlatforms.has("claude-desktop")) {
+      blocks.push(
+        "\n" + style.bold("To complete your Claude Desktop setup:") + "\n  \u2192 Restart Claude Desktop to pick up config changes\n"
+      );
     }
-  }
-  async function flushQueue() {
-    if (queue.length === 0) return;
-    const actions = queue.map((item) => item.payload);
-    queue.length = 0;
-    await sendActions(actions);
-  }
-  function startFlushTimer() {
-    if (flushTimer !== void 0) return;
-    flushTimer = setInterval(() => {
-      flushQueue().catch(() => {
-      });
-    }, flushInterval);
-    const timer = flushTimer;
-    if (typeof timer.unref === "function") {
-      timer.unref();
+    if (configuredPlatforms.has("cursor")) {
+      blocks.push(
+        "\n" + style.bold("To complete your Cursor setup:") + "\n  1. If you don't have Cursor yet, download it from " + style.cyan("https://cursor.com/downloads") + "\n  2. Open " + style.cyan("~/.cursor/mcp.json") + " and paste the config snippet shown above\n  3. Restart Cursor (or launch it for the first time) to load the new MCP server\n"
+      );
     }
-  }
-  function stopFlushTimer() {
-    if (flushTimer) {
-      clearInterval(flushTimer);
-      flushTimer = void 0;
+    if (configuredPlatforms.has("kilo-code")) {
+      blocks.push(
+        "\n" + style.bold("To complete your Kilo Code setup:") + "\n  1. Save the snippet to " + style.cyan(".kilocode/mcp.json") + " in your project root, or under the mcp key in " + style.cyan("kilo.jsonc") + "\n  2. Run your next task in Kilo Code so it picks up the MCP server\n"
+      );
     }
-  }
-  if (batchEnabled) {
-    startFlushTimer();
-  }
-  return {
-    logAction(action) {
-      if (isShutdown) {
-        throw new Error(
-          "[ActionLogger] Cannot log action after shutdown. Create a new logger instance."
-        );
-      }
-      if (action.agent.trim().length === 0) {
-        throw new Error("[ActionLogger] Action must have a non-empty 'agent' field.");
-      }
-      if (action.service.trim().length === 0) {
-        throw new Error("[ActionLogger] Action must have a non-empty 'service' field.");
-      }
-      if (action.actionType.trim().length === 0) {
-        throw new Error("[ActionLogger] Action must have a non-empty 'actionType' field.");
-      }
-      if (action.status.trim().length === 0) {
-        throw new Error("[ActionLogger] Action must have a non-empty 'status' field.");
-      }
-      if (batchEnabled) {
-        queue.push({ payload: action, timestamp: Date.now() });
-        if (queue.length >= maxBatchSize) {
-          flushQueue().catch(() => {
-          });
-        }
-      } else {
-        sendActions([action]).catch(() => {
-        });
-      }
-      return Promise.resolve();
-    },
-    async flush() {
-      if (!batchEnabled) return;
-      await flushQueue();
-    },
-    async shutdown() {
-      if (isShutdown) return;
-      isShutdown = true;
-      stopFlushTimer();
-      if (batchEnabled) {
-        await flushQueue();
-      }
+    if (configuredPlatforms.has("github-copilot")) {
+      blocks.push(
+        "\n" + style.bold("GitHub Copilot MCP:") + "\n  1. Open VS Code Command Palette: Preferences: Open User Settings (JSON)\n  2. Merge the snippet under the " + style.cyan("mcp") + " key and save\n  3. Use Copilot Agent mode and verify the MCP server connects\n"
+      );
     }
-  };
-}
-function sleep(ms) {
-  return new Promise((resolve) => setTimeout(resolve, ms));
-}
-// src/spending/spending-checker.ts
-function createSpendingChecker(config) {
-  validateLimits(config.limits);
-  let dailySpendCents = 0;
-  let monthlySpendCents = 0;
-  let lastDailyReset = /* @__PURE__ */ new Date();
-  let lastMonthlyReset = /* @__PURE__ */ new Date();
-  function validateAmount(amountCents, context) {
-    if (!Number.isInteger(amountCents)) {
-      throw new Error(
-        `[SpendingChecker] ${context} must be an integer (cents). Received: ${String(amountCents)}. Convert dollars to cents by multiplying by 100.`
+    if (configuredPlatforms.has("continue-dev")) {
+      blocks.push(
+        "\n" + style.bold("Continue MCP:") + "\n  1. If you don't have Continue yet, install from " + style.cyan("https://docs.continue.dev/ide-extensions/install") + "\n  2. Save JSON as " + style.cyan(".continue/mcpServers/shield.json") + " in your workspace, or add to " + style.cyan("~/.continue/config.yaml") + "\n  3. Reload VS Code and open Continue agent mode\n"
       );
     }
-    if (amountCents < 0) {
-      throw new Error(
-        `[SpendingChecker] ${context} must be non-negative. Received: ${String(amountCents)} cents.`
+    if (configuredPlatforms.has("goose")) {
+      blocks.push(
+        "\n" + style.bold("Goose MCP extension:") + "\n  1. Edit " + style.cyan("~/.config/goose/config.yaml") + " (or use goose configure)\n  2. Restart Goose CLI or Desktop\n"
       );
     }
-  }
-  function formatCents(cents) {
-    const dollars = cents / 100;
-    return `$${dollars.toLocaleString("en-US", {
-      minimumFractionDigits: 2,
-      maximumFractionDigits: 2
-    })}`;
-  }
-  function checkAndResetDaily() {
-    const now = /* @__PURE__ */ new Date();
-    if (shouldResetDaily(lastDailyReset, now)) {
-      dailySpendCents = 0;
-      lastDailyReset = now;
+    const windsurfNativeConfigured = configuredAgents.some(
+      (a) => a.platform === "windsurf" && a.windsurfIntegration === "native"
+    );
+    const windsurfHostedConfigured = configuredAgents.some(
+      (a) => a.platform === "windsurf" && a.windsurfIntegration === "hosted"
+    );
+    if (windsurfNativeConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete native Windsurf (Shield) setup:") + "\n  1. Hook scripts: " + style.cyan(getWindsurfHooksInstallDir()) + "\n  2. Hooks config: " + style.cyan(getWindsurfCascadeHooksJsonPath()) + "\n  3. Restart Windsurf (quit fully, then reopen)\n"
+      );
     }
-  }
-  function checkAndResetMonthly() {
-    const now = /* @__PURE__ */ new Date();
-    if (shouldResetMonthly(lastMonthlyReset, now)) {
-      monthlySpendCents = 0;
-      lastMonthlyReset = now;
+    if (windsurfHostedConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete your Windsurf hosted-proxy setup:") + "\n  1. If you don't have Windsurf yet, download it from " + style.cyan("https://windsurf.com/download") + "\n  2. Open " + style.cyan("~/.codeium/windsurf/mcp_config.json") + " and paste the config snippet shown above\n  3. Restart Windsurf (or launch it for the first time) to load the new MCP server\n"
+      );
     }
-  }
-  function shouldResetDaily(lastReset, now) {
-    return lastReset.getDate() !== now.getDate() || lastReset.getMonth() !== now.getMonth() || lastReset.getFullYear() !== now.getFullYear();
-  }
-  function shouldResetMonthly(lastReset, now) {
-    return lastReset.getMonth() !== now.getMonth() || lastReset.getFullYear() !== now.getFullYear();
-  }
-  function calculateRemainingBudget() {
-    return {
-      transaction: config.limits.perTransaction,
-      daily: Math.max(0, config.limits.perDay - dailySpendCents),
-      monthly: Math.max(0, config.limits.perMonth - monthlySpendCents)
-    };
-  }
-  return {
-    checkSpend(amountCents) {
-      validateAmount(amountCents, "Spend amount");
-      checkAndResetDaily();
-      checkAndResetMonthly();
-      if (amountCents > config.limits.perTransaction) {
-        return {
-          allowed: false,
-          reason: `Action blocked: ${formatCents(amountCents)} exceeds per-transaction limit of ${formatCents(config.limits.perTransaction)}`,
-          remainingBudget: calculateRemainingBudget()
-        };
-      }
-      const projectedDaily = dailySpendCents + amountCents;
-      if (projectedDaily > config.limits.perDay) {
-        return {
-          allowed: false,
-          reason: `Action blocked: ${formatCents(amountCents)} would exceed per-day limit. Current spend today: ${formatCents(dailySpendCents)}, limit: ${formatCents(config.limits.perDay)}`,
-          remainingBudget: calculateRemainingBudget()
-        };
-      }
-      const projectedMonthly = monthlySpendCents + amountCents;
-      if (projectedMonthly > config.limits.perMonth) {
-        return {
-          allowed: false,
-          reason: `Action blocked: ${formatCents(amountCents)} would exceed per-month limit. Current spend this month: ${formatCents(monthlySpendCents)}, limit: ${formatCents(config.limits.perMonth)}`,
-          remainingBudget: calculateRemainingBudget()
-        };
-      }
-      return {
-        allowed: true,
-        remainingBudget: calculateRemainingBudget()
-      };
-    },
-    recordSpend(amountCents) {
-      validateAmount(amountCents, "Spend amount");
-      checkAndResetDaily();
-      checkAndResetMonthly();
-      dailySpendCents += amountCents;
-      monthlySpendCents += amountCents;
-    },
-    getCurrentSpend() {
-      checkAndResetDaily();
-      checkAndResetMonthly();
-      return {
-        daily: dailySpendCents,
-        monthly: monthlySpendCents
-      };
-    },
-    reset() {
-      dailySpendCents = 0;
-      monthlySpendCents = 0;
-      lastDailyReset = /* @__PURE__ */ new Date();
-      lastMonthlyReset = /* @__PURE__ */ new Date();
+    const clineNativeConfigured = configuredAgents.some(
+      (a) => a.platform === "cline" && a.clineIntegration === "native"
+    );
+    const clineHostedConfigured = configuredAgents.some(
+      (a) => a.platform === "cline" && a.clineIntegration === "hosted"
+    );
+    if (clineNativeConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete native Cline (Shield) setup:") + "\n  1. Enable Hooks in Cline: open VS Code, click the Cline sidebar icon, click the gear icon,\n     scroll down to the Advanced section, and toggle Hooks on.\n  2. Reload the VS Code window (Cmd+Shift+P > Reload Window)\n  3. Trigger any tool call to verify Shield is intercepting\n"
+      );
     }
-  };
-}
-function validateLimits(limits) {
-  const checks = [
-    { value: limits.perTransaction, name: "perTransaction" },
-    { value: limits.perDay, name: "perDay" },
-    { value: limits.perMonth, name: "perMonth" }
-  ];
-  for (const check of checks) {
-    if (!Number.isInteger(check.value)) {
-      throw new Error(
-        `[SpendingChecker] Limit "${check.name}" must be an integer (cents). Received: ${String(check.value)}. All limits must be specified in integer cents.`
+    if (clineHostedConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete your Cline hosted-proxy setup:") + "\n  1. If you don't have Cline yet, install it from the VS Code marketplace\n  2. Open your Cline MCP settings file and paste the config snippet shown above\n  3. Restart Cline or reload the VS Code window\n"
+      );
+    }
+    const geminiCliNativeConfigured = configuredAgents.some(
+      (a) => a.platform === "gemini-cli" && a.geminiCliIntegration === "native"
+    );
+    const geminiCliHostedConfigured = configuredAgents.some(
+      (a) => a.platform === "gemini-cli" && a.geminiCliIntegration === "hosted"
+    );
+    if (geminiCliNativeConfigured) {
+      blocks.push(
+        "\n" + style.bold("Gemini CLI native hooks:") + "\n  Your Gemini CLI hooks are installed. Restart Gemini CLI to activate Shield governance.\n"
+      );
+    }
+    if (geminiCliHostedConfigured) {
+      blocks.push(
+        "\n" + style.bold("To complete your Gemini CLI setup:") + "\n  1. Open " + style.cyan("~/.gemini/settings.json") + "\n  2. Paste the config snippet shown above\n  3. Restart Gemini CLI, then run /mcp to verify\n"
       );
     }
-    if (check.value < 0) {
-      throw new Error(
-        `[SpendingChecker] Limit "${check.name}" must be non-negative. Received: ${String(check.value)} cents.`
-      );
+    if (blocks.length > 0) {
+      process.stderr.write("\n" + style.bold(style.violet("Next steps")) + "\n");
+      process.stderr.write(blocks.join("") + "\n");
     }
   }
+  return lastConfig;
 }
-function dollarsToCents(dollars) {
-  return Math.round(dollars * 100);
+// src/types/index.ts
+var PERMISSION_LEVELS = {
+  Read: "read",
+  Write: "write",
+  Execute: "execute",
+  Publish: "publish",
+  Create: "create"
+};
+// src/scopes/scope-parser.ts
+var VALID_PERMISSION_LEVELS = new Set(Object.values(PERMISSION_LEVELS));
+[...VALID_PERMISSION_LEVELS].join(", ");
+function formatScope(scope) {
+  return `${scope.permissionLevel}:${scope.service}`;
 }
-// src/proxy/interceptor.ts
-var BLOCKED_ERROR_CODE = -32e3;
-var SPENDING_BLOCKED_ERROR_CODE = -32001;
-var INTERNAL_ERROR_CODE = -32002;
-var SERVICE_UNREACHABLE_ERROR_CODE = -32003;
-var AUTH_ERROR_CODE = -32004;
-function parseJsonRpcLine(line) {
-  const trimmed = line.trim();
-  if (trimmed.length === 0) return null;
-  let parsed;
-  try {
-    parsed = JSON.parse(trimmed);
-  } catch {
-    return null;
+// src/scopes/scope-validator.ts
+function validateScopeAccess(grantedScopes, requested) {
+  const isGranted = grantedScopes.some(
+    (granted) => granted.service === requested.service && granted.permissionLevel === requested.permissionLevel
+  );
+  if (isGranted) {
+    return { allowed: true };
+  }
+  const serviceScopes = grantedScopes.filter((g) => g.service === requested.service);
+  if (serviceScopes.length > 0) {
+    const grantedLevels = serviceScopes.map((g) => `"${g.permissionLevel}"`).join(", ");
+    return {
+      allowed: false,
+      reason: `Permission "${requested.permissionLevel}" is not granted for service "${requested.service}". Currently granted permission level(s): ${grantedLevels}. Requested scope "${formatScope(requested)}" requires explicit consent.`
+    };
   }
-  return isJsonRpcRequest(parsed) ? parsed : null;
-}
-function extractToolCallParams(request) {
-  if (request.method !== "tools/call") return null;
-  if (typeof request.params !== "object" || request.params === null) return null;
-  const params = request.params;
-  const name = params["name"];
-  const args = params["arguments"];
-  if (typeof name !== "string") return null;
-  if (typeof args !== "object" || args === null) return null;
-  return { name, arguments: args };
-}
-function buildBlockedResponse(id, service, permissionLevel, dashboardUrl) {
-  const displayService = capitalize(service);
-  const message = `Action blocked by Multicorn Shield: agent does not have ${permissionLevel} access to ${displayService}. Configure permissions at ${dashboardUrl}`;
-  return {
-    jsonrpc: "2.0",
-    id,
-    error: {
-      code: BLOCKED_ERROR_CODE,
-      message
-    }
-  };
-}
-function buildSpendingBlockedResponse(id, reason, dashboardUrl) {
-  const message = `Action blocked by Multicorn Shield: ${reason}. Review spending limits at ${dashboardUrl}`;
-  return {
-    jsonrpc: "2.0",
-    id,
-    error: {
-      code: SPENDING_BLOCKED_ERROR_CODE,
-      message
-    }
-  };
-}
-function buildInternalErrorResponse(id) {
-  const message = "Action blocked: Shield encountered an internal error and cannot verify permissions. Check proxy logs for details.";
-  return {
-    jsonrpc: "2.0",
-    id,
-    error: {
-      code: INTERNAL_ERROR_CODE,
-      message
-    }
-  };
-}
-function buildServiceUnreachableResponse(id, dashboardUrl) {
-  const message = `Action blocked: Shield cannot verify permissions (service unreachable). Configure offline behaviour at ${dashboardUrl}`;
-  return {
-    jsonrpc: "2.0",
-    id,
-    error: {
-      code: SERVICE_UNREACHABLE_ERROR_CODE,
-      message
-    }
-  };
-}
-function buildAuthErrorResponse(id) {
-  const message = "Action blocked: Shield API key is invalid or has been revoked. Run npx multicorn-shield init to reconfigure.";
   return {
-    jsonrpc: "2.0",
-    id,
-    error: {
-      code: AUTH_ERROR_CODE,
-      message
-    }
+    allowed: false,
+    reason: `No permissions granted for service "${requested.service}". The agent has not been authorised to access this service. Request scope "${formatScope(requested)}" via the consent screen.`
   };
 }
-function extractServiceFromToolName(toolName) {
-  const idx = toolName.indexOf("_");
-  return idx === -1 ? toolName : toolName.slice(0, idx);
-}
-function extractActionFromToolName(toolName) {
-  const idx = toolName.indexOf("_");
-  return idx === -1 ? "call" : toolName.slice(idx + 1);
-}
-function isJsonRpcRequest(value) {
-  if (typeof value !== "object" || value === null) return false;
-  const obj = value;
-  if (obj["jsonrpc"] !== "2.0") return false;
-  if (typeof obj["method"] !== "string") return false;
-  const id = obj["id"];
-  const validId = id === null || id === void 0 || typeof id === "string" || typeof id === "number";
-  return validId;
-}
-function capitalize(str) {
-  if (str.length === 0) return str;
-  const first = str[0];
-  return first !== void 0 ? first.toUpperCase() + str.slice(1) : str;
-}
-var MULTICORN_DIR = join(homedir(), ".multicorn");
-var SCOPES_PATH = join(MULTICORN_DIR, "scopes.json");
-var CACHE_META_PATH = join(MULTICORN_DIR, "cache-meta.json");
-function cacheKey(agentName, apiKey) {
-  return createHash("sha256").update(`${agentName}:${apiKey}`).digest("hex").slice(0, 16);
+function hasScope(grantedScopes, requested) {
+  return grantedScopes.some(
+    (granted) => granted.service === requested.service && granted.permissionLevel === requested.permissionLevel
+  );
 }
-async function ensureCacheIdentity(apiKey) {
-  const currentHash = createHash("sha256").update(apiKey).digest("hex");
-  let storedHash = null;
-  try {
-    const raw = await readFile(CACHE_META_PATH, "utf8");
-    const meta = JSON.parse(raw);
-    if (typeof meta === "object" && meta !== null && "apiKeyHash" in meta) {
-      storedHash = meta.apiKeyHash;
-    }
-  } catch {
+// src/logger/action-logger.ts
+function createActionLogger(config) {
+  if (!config.apiKey || config.apiKey.trim().length === 0) {
+    throw new Error(
+      "[ActionLogger] API key is required. Provide it via the 'apiKey' config option."
+    );
   }
-  if (storedHash === null || storedHash !== currentHash) {
-    try {
-      await unlink(SCOPES_PATH);
-    } catch {
+  const baseUrl = config.baseUrl ?? "https://api.multicorn.ai";
+  const timeout = config.timeout ?? 5e3;
+  if (!baseUrl.startsWith("https://") && !baseUrl.startsWith("http://localhost")) {
+    throw new Error(
+      `[ActionLogger] Base URL must use HTTPS for security. Received: "${baseUrl}". Use https:// or http://localhost for local development.`
+    );
+  }
+  const endpoint = `${baseUrl}/api/v1/actions`;
+  const batchEnabled = config.batchMode?.enabled ?? false;
+  const maxBatchSize = config.batchMode?.maxSize ?? 10;
+  const flushInterval = config.batchMode?.flushIntervalMs ?? 5e3;
+  const queue = [];
+  let flushTimer;
+  let isShutdown = false;
+  async function sendActions(actions) {
+    if (actions.length === 0) return;
+    const convertAction = (action) => ({
+      agent: action.agent,
+      service: action.service,
+      actionType: action.actionType,
+      status: action.status,
+      ...action.cost !== void 0 ? { cost: action.cost } : {},
+      ...action.metadata !== void 0 ? { metadata: action.metadata } : {}
+    });
+    const convertedActions = actions.map(convertAction);
+    const payload = batchEnabled ? { actions: convertedActions } : convertedActions[0];
+    let lastError;
+    for (let attempt = 0; attempt < 2; attempt++) {
+      try {
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => {
+          controller.abort();
+        }, timeout);
+        const response = await fetch(endpoint, {
+          method: "POST",
+          headers: {
+            "Content-Type": "application/json",
+            "X-Multicorn-Key": config.apiKey
+          },
+          body: JSON.stringify(payload),
+          signal: controller.signal
+        });
+        clearTimeout(timeoutId);
+        if (response.ok) {
+          return;
+        }
+        if (response.status >= 400 && response.status < 500) {
+          const body = await response.text().catch(() => "");
+          throw new Error(
+            `[ActionLogger] Client error (${String(response.status)}): ${response.statusText}. Response: ${body}. Check your API key and payload format.`
+          );
+        }
+        if (response.status >= 500 && attempt === 0) {
+          lastError = new Error(
+            `[ActionLogger] Server error (${String(response.status)}): ${response.statusText}. Retrying once...`
+          );
+          await sleep2(100 * Math.pow(2, attempt));
+          continue;
+        }
+        throw new Error(
+          `[ActionLogger] Server error (${String(response.status)}) after retry: ${response.statusText}. Multicorn API may be experiencing issues.`
+        );
+      } catch (error) {
+        if (error instanceof Error) {
+          if (error.name === "AbortError") {
+            lastError = new Error(
+              `[ActionLogger] Request timeout after ${String(timeout)}ms. Increase the 'timeout' config option or check your network connection.`
+            );
+          } else if (error.message.includes("Client error") || error.message.includes("Server error")) {
+            lastError = error;
+          } else {
+            lastError = new Error(
+              `[ActionLogger] Network error: ${error.message}. Check your network connection and API endpoint.`
+            );
+          }
+        } else {
+          lastError = new Error(`[ActionLogger] Unknown error: ${String(error)}`);
+        }
+        if (attempt === 0 && !lastError.message.includes("Client error")) {
+          await sleep2(100 * Math.pow(2, attempt));
+          continue;
+        }
+        break;
+      }
+    }
+    if (lastError) {
+      if (config.onError) {
+        config.onError(lastError);
+      }
     }
   }
-  if (storedHash !== currentHash) {
-    await mkdir(MULTICORN_DIR, { recursive: true, mode: 448 });
-    await writeFile(CACHE_META_PATH, JSON.stringify({ apiKeyHash: currentHash }, null, 2) + "\n", {
-      encoding: "utf8",
-      mode: 384
-    });
+  async function flushQueue() {
+    if (queue.length === 0) return;
+    const actions = queue.map((item) => item.payload);
+    queue.length = 0;
+    await sendActions(actions);
   }
-}
-async function loadCachedScopes(agentName, apiKey) {
-  if (apiKey.length === 0) return null;
-  await ensureCacheIdentity(apiKey);
-  const key = cacheKey(agentName, apiKey);
-  try {
-    const raw = await readFile(SCOPES_PATH, "utf8");
-    const parsed = JSON.parse(raw);
-    if (!isScopesCacheFile(parsed)) return null;
-    const entry = parsed[key];
-    return entry?.scopes ?? null;
-  } catch {
-    return null;
+  function startFlushTimer() {
+    if (flushTimer !== void 0) return;
+    flushTimer = setInterval(() => {
+      flushQueue().catch(() => {
+      });
+    }, flushInterval);
+    const timer = flushTimer;
+    if (typeof timer.unref === "function") {
+      timer.unref();
+    }
   }
-}
-async function saveCachedScopes(agentName, agentId, scopes, apiKey) {
-  if (apiKey.length === 0) return;
-  await ensureCacheIdentity(apiKey);
-  const key = cacheKey(agentName, apiKey);
-  await mkdir(MULTICORN_DIR, { recursive: true, mode: 448 });
-  let existing = {};
-  try {
-    const raw = await readFile(SCOPES_PATH, "utf8");
-    const parsed = JSON.parse(raw);
-    if (isScopesCacheFile(parsed)) existing = parsed;
-  } catch {
+  function stopFlushTimer() {
+    if (flushTimer) {
+      clearInterval(flushTimer);
+      flushTimer = void 0;
+    }
   }
-  const updated = {
-    ...existing,
-    [key]: {
-      agentId,
-      scopes,
-      fetchedAt: (/* @__PURE__ */ new Date()).toISOString()
+  if (batchEnabled) {
+    startFlushTimer();
+  }
+  return {
+    logAction(action) {
+      if (isShutdown) {
+        throw new Error(
+          "[ActionLogger] Cannot log action after shutdown. Create a new logger instance."
+        );
+      }
+      if (action.agent.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'agent' field.");
+      }
+      if (action.service.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'service' field.");
+      }
+      if (action.actionType.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'actionType' field.");
+      }
+      if (action.status.trim().length === 0) {
+        throw new Error("[ActionLogger] Action must have a non-empty 'status' field.");
+      }
+      if (batchEnabled) {
+        queue.push({ payload: action, timestamp: Date.now() });
+        if (queue.length >= maxBatchSize) {
+          flushQueue().catch(() => {
+          });
+        }
+      } else {
+        sendActions([action]).catch(() => {
+        });
+      }
+      return Promise.resolve();
+    },
+    async flush() {
+      if (!batchEnabled) return;
+      await flushQueue();
+    },
+    async shutdown() {
+      if (isShutdown) return;
+      isShutdown = true;
+      stopFlushTimer();
+      if (batchEnabled) {
+        await flushQueue();
+      }
     }
   };
-  await writeFile(SCOPES_PATH, JSON.stringify(updated, null, 2) + "\n", {
-    encoding: "utf8",
-    mode: 384
-  });
 }
-function isScopesCacheFile(value) {
-  return typeof value === "object" && value !== null;
+function sleep2(ms) {
+  return new Promise((resolve2) => setTimeout(resolve2, ms));
 }
-// src/proxy/consent.ts
-var CONSENT_POLL_INTERVAL_MS = 3e3;
-var CONSENT_POLL_TIMEOUT_MS = 5 * 60 * 1e3;
-function deriveDashboardUrl(baseUrl) {
-  try {
-    const url = new URL(baseUrl);
-    if (url.hostname === "localhost" || url.hostname === "127.0.0.1") {
-      url.port = "5173";
-      url.protocol = "http:";
-      return url.toString();
-    }
-    if (url.hostname === "api.multicorn.ai") {
-      url.hostname = "app.multicorn.ai";
-      return url.toString();
-    }
-    if (url.hostname.includes("api")) {
-      url.hostname = url.hostname.replace("api", "app");
-      return url.toString();
+// src/spending/spending-checker.ts
+function createSpendingChecker(config) {
+  validateLimits(config.limits);
+  let dailySpendCents = 0;
+  let monthlySpendCents = 0;
+  let lastDailyReset = /* @__PURE__ */ new Date();
+  let lastMonthlyReset = /* @__PURE__ */ new Date();
+  function validateAmount(amountCents, context) {
+    if (!Number.isInteger(amountCents)) {
+      throw new Error(
+        `[SpendingChecker] ${context} must be an integer (cents). Received: ${String(amountCents)}. Convert dollars to cents by multiplying by 100.`
+      );
     }
-    if (url.protocol === "https:" && url.hostname !== "localhost" && url.hostname !== "127.0.0.1") {
-      return "https://app.multicorn.ai";
+    if (amountCents < 0) {
+      throw new Error(
+        `[SpendingChecker] ${context} must be non-negative. Received: ${String(amountCents)} cents.`
+      );
     }
-    return "https://app.multicorn.ai";
-  } catch {
-    return "https://app.multicorn.ai";
   }
-}
-var ShieldAuthError = class _ShieldAuthError extends Error {
-  constructor(message) {
-    super(message);
-    this.name = "ShieldAuthError";
-    Object.setPrototypeOf(this, _ShieldAuthError.prototype);
+  function formatCents(cents) {
+    const dollars = cents / 100;
+    return `$${dollars.toLocaleString("en-US", {
+      minimumFractionDigits: 2,
+      maximumFractionDigits: 2
+    })}`;
   }
-};
-async function findAgentByName(agentName, apiKey, baseUrl) {
-  let response;
-  try {
-    response = await fetch(`${baseUrl}/api/v1/agents`, {
-      headers: { "X-Multicorn-Key": apiKey },
-      signal: AbortSignal.timeout(8e3)
-    });
-  } catch {
-    return null;
+  function checkAndResetDaily() {
+    const now = /* @__PURE__ */ new Date();
+    if (shouldResetDaily(lastDailyReset, now)) {
+      dailySpendCents = 0;
+      lastDailyReset = now;
+    }
   }
-  if (!response.ok) {
-    if (response.status === 401 || response.status === 403) {
-      return { id: "", name: agentName, scopes: [], authInvalid: true };
+  function checkAndResetMonthly() {
+    const now = /* @__PURE__ */ new Date();
+    if (shouldResetMonthly(lastMonthlyReset, now)) {
+      monthlySpendCents = 0;
+      lastMonthlyReset = now;
     }
-    return null;
   }
-  let body;
-  try {
-    body = await response.json();
-  } catch {
-    return null;
+  function shouldResetDaily(lastReset, now) {
+    return lastReset.getDate() !== now.getDate() || lastReset.getMonth() !== now.getMonth() || lastReset.getFullYear() !== now.getFullYear();
   }
-  if (!isApiSuccessResponse(body)) return null;
-  const agents = body.data;
-  if (!Array.isArray(agents)) return null;
-  const match = agents.find(
-    (a) => isAgentSummaryShape(a) && a.name === agentName
-  );
-  if (match === void 0) return null;
-  return { id: match.id, name: match.name, scopes: [] };
-}
-async function registerAgent(agentName, apiKey, baseUrl, platform) {
-  const response = await fetch(`${baseUrl}/api/v1/agents`, {
-    method: "POST",
-    headers: {
-      "Content-Type": "application/json",
-      "X-Multicorn-Key": apiKey
+  function shouldResetMonthly(lastReset, now) {
+    return lastReset.getMonth() !== now.getMonth() || lastReset.getFullYear() !== now.getFullYear();
+  }
+  function calculateRemainingBudget() {
+    return {
+      transaction: config.limits.perTransaction,
+      daily: Math.max(0, config.limits.perDay - dailySpendCents),
+      monthly: Math.max(0, config.limits.perMonth - monthlySpendCents)
+    };
+  }
+  return {
+    checkSpend(amountCents) {
+      validateAmount(amountCents, "Spend amount");
+      checkAndResetDaily();
+      checkAndResetMonthly();
+      if (amountCents > config.limits.perTransaction) {
+        return {
+          allowed: false,
+          reason: `Action blocked: ${formatCents(amountCents)} exceeds per-transaction limit of ${formatCents(config.limits.perTransaction)}`,
+          remainingBudget: calculateRemainingBudget()
+        };
+      }
+      const projectedDaily = dailySpendCents + amountCents;
+      if (projectedDaily > config.limits.perDay) {
+        return {
+          allowed: false,
+          reason: `Action blocked: ${formatCents(amountCents)} would exceed per-day limit. Current spend today: ${formatCents(dailySpendCents)}, limit: ${formatCents(config.limits.perDay)}`,
+          remainingBudget: calculateRemainingBudget()
+        };
+      }
+      const projectedMonthly = monthlySpendCents + amountCents;
+      if (projectedMonthly > config.limits.perMonth) {
+        return {
+          allowed: false,
+          reason: `Action blocked: ${formatCents(amountCents)} would exceed per-month limit. Current spend this month: ${formatCents(monthlySpendCents)}, limit: ${formatCents(config.limits.perMonth)}`,
+          remainingBudget: calculateRemainingBudget()
+        };
+      }
+      return {
+        allowed: true,
+        remainingBudget: calculateRemainingBudget()
+      };
+    },
+    recordSpend(amountCents) {
+      validateAmount(amountCents, "Spend amount");
+      checkAndResetDaily();
+      checkAndResetMonthly();
+      dailySpendCents += amountCents;
+      monthlySpendCents += amountCents;
     },
-    body: JSON.stringify({ name: agentName, ...platform ? { platform } : {} }),
-    signal: AbortSignal.timeout(8e3)
-  });
-  if (!response.ok) {
-    if (response.status === 401 || response.status === 403) {
-      throw new ShieldAuthError(
-        `Failed to register agent "${agentName}": service returned ${String(response.status)}.`
+    getCurrentSpend() {
+      checkAndResetDaily();
+      checkAndResetMonthly();
+      return {
+        daily: dailySpendCents,
+        monthly: monthlySpendCents
+      };
+    },
+    reset() {
+      dailySpendCents = 0;
+      monthlySpendCents = 0;
+      lastDailyReset = /* @__PURE__ */ new Date();
+      lastMonthlyReset = /* @__PURE__ */ new Date();
+    }
+  };
+}
+function validateLimits(limits) {
+  const checks = [
+    { value: limits.perTransaction, name: "perTransaction" },
+    { value: limits.perDay, name: "perDay" },
+    { value: limits.perMonth, name: "perMonth" }
+  ];
+  for (const check of checks) {
+    if (!Number.isInteger(check.value)) {
+      throw new Error(
+        `[SpendingChecker] Limit "${check.name}" must be an integer (cents). Received: ${String(check.value)}. All limits must be specified in integer cents.`
+      );
+    }
+    if (check.value < 0) {
+      throw new Error(
+        `[SpendingChecker] Limit "${check.name}" must be non-negative. Received: ${String(check.value)} cents.`
       );
     }
-    throw new Error(
-      `Failed to register agent "${agentName}": service returned ${String(response.status)}.`
-    );
-  }
-  const body = await response.json();
-  if (!isApiSuccessResponse(body)) {
-    throw new Error(`Failed to register agent "${agentName}": unexpected response format.`);
-  }
-  if (!isAgentSummaryShape(body.data)) {
-    throw new Error(`Failed to register agent "${agentName}": response missing agent ID.`);
   }
-  return body.data.id;
 }
-async function fetchGrantedScopes(agentId, apiKey, baseUrl) {
-  let response;
+function dollarsToCents(dollars) {
+  return Math.round(dollars * 100);
+}
+// src/proxy/interceptor.ts
+var BLOCKED_ERROR_CODE = -32e3;
+var SPENDING_BLOCKED_ERROR_CODE = -32001;
+var INTERNAL_ERROR_CODE = -32002;
+var SERVICE_UNREACHABLE_ERROR_CODE = -32003;
+var AUTH_ERROR_CODE = -32004;
+function parseJsonRpcLine(line) {
+  const trimmed = line.trim();
+  if (trimmed.length === 0) return null;
+  let parsed;
   try {
-    response = await fetch(`${baseUrl}/api/v1/agents/${agentId}`, {
-      headers: { "X-Multicorn-Key": apiKey },
-      signal: AbortSignal.timeout(8e3)
-    });
+    parsed = JSON.parse(trimmed);
   } catch {
-    return [];
-  }
-  if (!response.ok) return [];
-  const body = await response.json();
-  if (!isApiSuccessResponse(body)) return [];
-  const agentDetail = body.data;
-  if (!isAgentDetailShape(agentDetail)) return [];
-  const scopes = [];
-  for (const perm of agentDetail.permissions) {
-    if (!isPermissionShape(perm)) continue;
-    if (perm.revoked_at !== null) continue;
-    if (perm.read) scopes.push({ service: perm.service, permissionLevel: "read" });
-    if (perm.write) scopes.push({ service: perm.service, permissionLevel: "write" });
-    if (perm.execute) scopes.push({ service: perm.service, permissionLevel: "execute" });
+    return null;
   }
-  return scopes;
+  return isJsonRpcRequest(parsed) ? parsed : null;
 }
-function openBrowser(url) {
-  if (process.env["NODE_ENV"] === "test" || process.env["VITEST"] === "true") {
-    return;
-  }
-  const platform = process.platform;
-  const cmd = platform === "darwin" ? "open" : platform === "win32" ? "start" : "xdg-open";
-  spawn(cmd, [url], { detached: true, stdio: "ignore" }).unref();
+function extractToolCallParams(request) {
+  if (request.method !== "tools/call") return null;
+  if (typeof request.params !== "object" || request.params === null) return null;
+  const params = request.params;
+  const name = params["name"];
+  const args = params["arguments"];
+  if (typeof name !== "string") return null;
+  if (typeof args !== "object" || args === null) return null;
+  return { name, arguments: args };
 }
-async function waitForConsent(agentId, agentName, apiKey, baseUrl, dashboardUrl, logger, scope, platform) {
-  const scopeStrings = scope ? [`${scope.service}:${scope.permissionLevel}`] : detectScopeHints();
-  const consentUrl = buildConsentUrl(agentName, scopeStrings, dashboardUrl, platform);
-  logger.info("Opening consent page in your browser.", { url: consentUrl });
-  process.stderr.write(
-    `
-Action requires permission. Opening consent page...
-${consentUrl}
-Waiting for you to grant access in the Multicorn dashboard...
-`
-  );
-  openBrowser(consentUrl);
-  const deadline = Date.now() + CONSENT_POLL_TIMEOUT_MS;
-  while (Date.now() < deadline) {
-    await sleep2(CONSENT_POLL_INTERVAL_MS);
-    const scopes = await fetchGrantedScopes(agentId, apiKey, baseUrl);
-    if (scopes.length > 0) {
-      logger.info("Permissions granted.", { agent: agentName, scopeCount: scopes.length });
-      return scopes;
+function buildBlockedResponse(id, service, permissionLevel, dashboardUrl) {
+  const displayService = capitalize(service);
+  const message = `Action blocked by Multicorn Shield: agent does not have ${permissionLevel} access to ${displayService}. Configure permissions at ${dashboardUrl}`;
+  return {
+    jsonrpc: "2.0",
+    id,
+    error: {
+      code: BLOCKED_ERROR_CODE,
+      message
     }
-  }
-  throw new Error(
-    `Consent not granted within ${String(CONSENT_POLL_TIMEOUT_MS / 6e4)} minutes. Grant access at ${dashboardUrl} and restart the proxy.`
-  );
+  };
 }
-async function resolveAgentRecord(agentName, apiKey, baseUrl, logger, platform) {
-  const cachedScopes = await loadCachedScopes(agentName, apiKey);
-  if (cachedScopes !== null && cachedScopes.length > 0) {
-    logger.debug("Loaded scopes from cache.", { agent: agentName, count: cachedScopes.length });
-  }
-  let agent = await findAgentByName(agentName, apiKey, baseUrl);
-  if (agent?.authInvalid) {
-    return agent;
-  }
-  if (agent === null) {
-    try {
-      logger.info("Agent not found. Registering.", { agent: agentName });
-      const id = await registerAgent(agentName, apiKey, baseUrl, platform);
-      agent = { id, name: agentName, scopes: [] };
-      logger.info("Agent registered.", { agent: agentName, id });
-    } catch (error) {
-      if (error instanceof ShieldAuthError) {
-        return { id: "", name: agentName, scopes: [], authInvalid: true };
-      }
-      const detail = error instanceof Error ? error.message : String(error);
-      if (cachedScopes !== null && cachedScopes.length > 0) {
-        logger.warn("Service unreachable. Using cached scopes.", { error: detail });
-        return { id: "", name: agentName, scopes: cachedScopes };
-      }
-      logger.warn("Could not reach Multicorn service. Running with empty permissions.", {
-        error: detail
-      });
-      return { id: "", name: agentName, scopes: [] };
+function buildSpendingBlockedResponse(id, reason, dashboardUrl) {
+  const message = `Action blocked by Multicorn Shield: ${reason}. Review spending limits at ${dashboardUrl}`;
+  return {
+    jsonrpc: "2.0",
+    id,
+    error: {
+      code: SPENDING_BLOCKED_ERROR_CODE,
+      message
     }
-  }
-  const scopes = await fetchGrantedScopes(agent.id, apiKey, baseUrl);
-  if (scopes.length > 0) {
-    await saveCachedScopes(agentName, agent.id, scopes, apiKey);
-  }
-  return { ...agent, scopes };
+  };
 }
-function buildConsentUrl(agentName, scopes, dashboardUrl, platform) {
-  const base = dashboardUrl.replace(/\/+$/, "");
-  const params = new URLSearchParams({ agent: agentName });
-  if (scopes.length > 0) {
-    params.set("scopes", scopes.join(","));
-  }
-  if (platform) {
-    params.set("platform", platform);
-  }
-  return `${base}/consent?${params.toString()}`;
+function buildInternalErrorResponse(id) {
+  const message = "Action blocked: Shield encountered an internal error and cannot verify permissions. Check proxy logs for details.";
+  return {
+    jsonrpc: "2.0",
+    id,
+    error: {
+      code: INTERNAL_ERROR_CODE,
+      message
+    }
+  };
 }
-function detectScopeHints() {
-  return [];
+function buildServiceUnreachableResponse(id, dashboardUrl) {
+  const message = `Action blocked: Shield cannot verify permissions (service unreachable). Configure offline behaviour at ${dashboardUrl}`;
+  return {
+    jsonrpc: "2.0",
+    id,
+    error: {
+      code: SERVICE_UNREACHABLE_ERROR_CODE,
+      message
+    }
+  };
 }
-function sleep2(ms) {
-  return new Promise((resolve) => setTimeout(resolve, ms));
+function buildAuthErrorResponse(id) {
+  const message = "Action blocked: Shield API key is invalid or has been revoked. Run npx multicorn-shield init to reconfigure.";
+  return {
+    jsonrpc: "2.0",
+    id,
+    error: {
+      code: AUTH_ERROR_CODE,
+      message
+    }
+  };
 }
-function isApiSuccessResponse(value) {
-  if (typeof value !== "object" || value === null) return false;
-  const obj = value;
-  return obj["success"] === true;
+function extractServiceFromToolName(toolName) {
+  const idx = toolName.indexOf("_");
+  return idx === -1 ? toolName : toolName.slice(0, idx);
 }
-function isAgentSummaryShape(value) {
-  if (typeof value !== "object" || value === null) return false;
-  const obj = value;
-  return typeof obj["id"] === "string" && typeof obj["name"] === "string";
+function extractActionFromToolName(toolName) {
+  const idx = toolName.indexOf("_");
+  return idx === -1 ? "call" : toolName.slice(idx + 1);
 }
-function isAgentDetailShape(value) {
+function isJsonRpcRequest(value) {
   if (typeof value !== "object" || value === null) return false;
   const obj = value;
-  return Array.isArray(obj["permissions"]);
+  if (obj["jsonrpc"] !== "2.0") return false;
+  if (typeof obj["method"] !== "string") return false;
+  const id = obj["id"];
+  const validId = id === null || id === void 0 || typeof id === "string" || typeof id === "number";
+  return validId;
 }
-function isPermissionShape(value) {
-  if (typeof value !== "object" || value === null) return false;
-  const obj = value;
-  return typeof obj["service"] === "string" && typeof obj["read"] === "boolean" && typeof obj["write"] === "boolean" && typeof obj["execute"] === "boolean" && (obj["revoked_at"] === null || obj["revoked_at"] === void 0 || typeof obj["revoked_at"] === "string");
+function capitalize(str) {
+  if (str.length === 0) return str;
+  const first = str[0];
+  return first !== void 0 ? first.toUpperCase() + str.slice(1) : str;
 }
 // src/proxy/index.ts
@@ -2954,9 +3164,9 @@ function createProxyServer(config) {
       timer.unref();
     }
     config.logger.info("Proxy ready.", { agent: config.agentName });
-    return new Promise((resolve) => {
+    return new Promise((resolve2) => {
       childProcess.on("exit", () => {
-        resolve();
+        resolve2();
       });
     });
   }
@@ -3355,7 +3565,7 @@ function resolveWrapAgentName(cli, config) {
   const legacyPlatform = config.platform;
   const legacyAgentName = config.agentName;
   const platformKey = typeof legacyPlatform === "string" && legacyPlatform.length > 0 ? legacyPlatform : "other-mcp";
-  const fromPlatform = getAgentByPlatform(config, platformKey);
+  const fromPlatform = getAgentByPlatform(config, platformKey, process.cwd());
   if (fromPlatform !== void 0) {
     return fromPlatform.name;
   }