multicorn-shield 1.4.1 → 1.7.0

package/dist/multicorn-proxy.js

@@ -8,6 +8,7 @@ import { readFileSync, existsSync, statSync } from 'fs';
 import { fileURLToPath } from 'url';
 import { createRequire } from 'module';
 import { createInterface } from 'readline';
+import { parse, stringify } from 'yaml';
 import 'stream';
 
 var __defProp = Object.defineProperty;
@@ -1346,9 +1347,6 @@ function getClineMcpSettingsPath() {
       );
   }
 }
-function getContinueConfigJsonPath() {
-  return join(homedir(), ".continue", "config.json");
-}
 function platformMenuLabelForSelection(sel) {
   const slug = PLATFORM_BY_SELECTION[sel];
   if (slug === void 0) return "Unknown";
@@ -1411,6 +1409,12 @@ async function promptWindsurfIntegrationMode(ask) {
   return choice === 1 ? "native" : "hosted";
 }
 async function arrowSelect(options, ask, fallbackLabel) {
+  if (options.length === 1) {
+    const only = options[0] ?? "";
+    process.stderr.write(`${style.violet("\u276F")} ${style.cyan(only)}
+`);
+    return 0;
+  }
   const canRaw = process.stdin.isTTY && typeof process.stdin.setRawMode === "function";
   if (!canRaw) {
     for (let i = 0; i < options.length; i++) {
@@ -1463,7 +1467,7 @@ async function arrowSelect(options, ask, fallbackLabel) {
         cleanup();
         clearLines();
         const chosen = options.at(idx);
-        if (chosen !== void 0) {
+        if (chosen !== void 0 && options.length > 1) {
           process.stderr.write(`${style.violet("\u276F")} ${style.cyan(chosen)}
 `);
         }
@@ -1644,13 +1648,56 @@ function writeMcpAddedLine(shortName, filePath) {
     style.green("\u2713") + ' MCP server "' + shortName + '" added to ' + style.cyan(filePath) + "\n"
   );
 }
-async function mergeMcpServersObjectStyle(filePath, shortName, entry) {
+function sanitiseYamlValue(value) {
+  if (value.length === 0) {
+    return "''";
+  }
+  const needsQuoting = /[:#\n{}]/.test(value) || value.includes("[") || value.includes("]") || value !== value.trim() || value.includes("'");
+  if (!needsQuoting) {
+    return value;
+  }
+  return `'${value.replace(/'/g, "''")}'`;
+}
+function gitignoreLikelyCoversPath(relPosixPath, gitignoreBody) {
+  const norm = relPosixPath.replace(/\\/g, "/").replace(/^\.\//, "");
+  const lines = gitignoreBody.split(/\r?\n/);
+  for (const raw of lines) {
+    const line = raw.trim();
+    if (!line || line.startsWith("#") || line.startsWith("!")) continue;
+    const pat = line.replace(/^\//, "");
+    if (pat === norm || pat === `./${norm}`) return true;
+    if (!pat.includes("*")) {
+      if (pat.endsWith("/")) {
+        const dir = pat.slice(0, -1);
+        if (norm === dir || norm.startsWith(`${dir}/`)) return true;
+      }
+    }
+  }
+  return false;
+}
+async function warnIfApiKeyFileNotGitignored(workspaceRoot, relativePosixPath) {
+  const gitignorePath = join(workspaceRoot, ".gitignore");
+  let content;
+  try {
+    content = await readFile(gitignorePath, "utf8");
+  } catch (e) {
+    if (isErrnoException(e) && e.code === "ENOENT") return;
+    throw e;
+  }
+  const norm = relativePosixPath.replace(/\\/g, "/").replace(/^\.\//, "");
+  if (gitignoreLikelyCoversPath(norm, content)) return;
+  process.stderr.write(
+    style.yellow("\u26A0") + " Config contains your API key. Add " + style.cyan(norm) + " to .gitignore to avoid committing credentials.\n"
+  );
+}
+async function mergeTopLevelKeyedJsonFile(filePath, topLevelKey, shortName, entry, options) {
   let root = {};
   try {
     const raw = await readFile(filePath, "utf8");
+    const toParse = options.stripJsonComments ? raw.replace(/\/\/.*$/gm, "").replace(/\/\*[\s\S]*?\*\//g, "") : raw;
     let parsed;
     try {
-      parsed = JSON.parse(raw);
+      parsed = JSON.parse(toParse);
     } catch {
       return "parse-error";
     }
@@ -1666,15 +1713,25 @@ async function mergeMcpServersObjectStyle(filePath, shortName, entry) {
       throw e;
     }
   }
-  const mcpRaw = root["mcpServers"];
-  const mcpServers = typeof mcpRaw === "object" && mcpRaw !== null && !Array.isArray(mcpRaw) ? { ...mcpRaw } : {};
-  mcpServers[shortName] = entry;
-  root["mcpServers"] = mcpServers;
+  const bucketRaw = root[topLevelKey];
+  const bucket = typeof bucketRaw === "object" && bucketRaw !== null && !Array.isArray(bucketRaw) ? { ...bucketRaw } : {};
+  if (options.onExisting === "skip" && bucket[shortName] !== void 0) {
+    return "unchanged";
+  }
+  bucket[shortName] = entry;
+  root[topLevelKey] = bucket;
   await mkdir(dirname(filePath), { recursive: true });
   await writeFile(filePath, JSON.stringify(root, null, 2) + "\n", SECRET_JSON_FILE_OPTIONS);
   writeMcpAddedLine(shortName, filePath);
   return "ok";
 }
+async function mergeMcpServersObjectStyle(filePath, shortName, entry) {
+  const result = await mergeTopLevelKeyedJsonFile(filePath, "mcpServers", shortName, entry, {
+    stripJsonComments: false,
+    onExisting: "overwrite"
+  });
+  return result === "parse-error" ? "parse-error" : "ok";
+}
 async function mergeClaudeDesktopHostedMcpRemote(shortName, proxyUrl, apiKey) {
   const entry = {
     command: "npx",
@@ -1682,8 +1739,30 @@ async function mergeClaudeDesktopHostedMcpRemote(shortName, proxyUrl, apiKey) {
   };
   return mergeMcpServersObjectStyle(getClaudeDesktopConfigPath(), shortName, entry);
 }
-async function mergeContinueHostedMcp(shortName, proxyUrl, apiKey) {
-  const filePath = getContinueConfigJsonPath();
+async function mergeContinueHostedMcp(workspacePath, shortName, proxyUrl, apiKey) {
+  const dir = join(workspacePath, ".continue", "mcpServers");
+  const filePath = join(dir, `${shortName}.yaml`);
+  const sn = sanitiseYamlValue(shortName);
+  const urlEsc = sanitiseYamlValue(proxyUrl);
+  const authEsc = sanitiseYamlValue(`Bearer ${apiKey}`);
+  const yaml = `name: ${sn}
+version: 0.0.1
+schema: v1
+mcpServers:
+  - name: ${sn}
+    type: streamable-http
+    url: ${urlEsc}
+    headers:
+      Authorization: ${authEsc}
+`;
+  await mkdir(dir, { recursive: true });
+  await writeFile(filePath, yaml, SECRET_JSON_FILE_OPTIONS);
+  writeMcpAddedLine(shortName, filePath);
+  await warnIfApiKeyFileNotGitignored(workspacePath, `.continue/mcpServers/${shortName}.yaml`);
+  return "ok";
+}
+async function mergeCopilotVscodeMcp(workspacePath, shortName, proxyUrl, apiKey) {
+  const filePath = join(workspacePath, ".vscode", "mcp.json");
   let root = {};
   try {
     const raw = await readFile(filePath, "utf8");
@@ -1705,43 +1784,49 @@ async function mergeContinueHostedMcp(shortName, proxyUrl, apiKey) {
       throw e;
     }
   }
-  const rawServers = root["mcpServers"];
-  if (rawServers !== void 0) {
-    if (Array.isArray(rawServers)) ; else if (typeof rawServers === "object" && rawServers !== null) {
-      return "parse-error";
-    } else {
-      return "parse-error";
-    }
-  }
-  const servers = Array.isArray(rawServers) ? rawServers.map((s) => ({ ...s })) : [];
-  const entry = {
-    name: shortName,
-    type: "streamable-http",
+  const serversRaw = root["servers"];
+  const servers = typeof serversRaw === "object" && serversRaw !== null && !Array.isArray(serversRaw) ? { ...serversRaw } : {};
+  const existed = servers[shortName] !== void 0;
+  servers[shortName] = {
+    type: "http",
     url: proxyUrl,
-    headers: {
-      Authorization: `Bearer ${apiKey}`
-    }
+    headers: { Authorization: `Bearer ${apiKey}` }
   };
-  const idx = servers.findIndex((s) => s["name"] === shortName);
-  if (idx >= 0) {
-    servers[idx] = entry;
-  } else {
-    servers.push(entry);
-  }
-  root["mcpServers"] = servers;
+  root["servers"] = servers;
   await mkdir(dirname(filePath), { recursive: true });
   await writeFile(filePath, JSON.stringify(root, null, 2) + "\n", SECRET_JSON_FILE_OPTIONS);
-  writeMcpAddedLine(shortName, filePath);
+  if (existed) {
+    process.stderr.write(
+      style.dim(`Updated existing server entry for ${shortName} in .vscode/mcp.json`) + "\n"
+    );
+  } else {
+    writeMcpAddedLine(shortName, filePath);
+  }
+  await warnIfApiKeyFileNotGitignored(workspacePath, ".vscode/mcp.json");
   return "ok";
 }
 async function mergeKiloCodeProjectMcp(workspacePath, shortName, proxyUrl, apiKey) {
-  const filePath = join(workspacePath, ".kilocode", "mcp.json");
-  return mergeMcpServersObjectStyle(filePath, shortName, {
-    url: proxyUrl,
-    headers: {
-      Authorization: `Bearer ${apiKey}`
+  const filePath = join(workspacePath, ".kilo", "kilo.jsonc");
+  const result = await mergeTopLevelKeyedJsonFile(
+    filePath,
+    "mcp",
+    shortName,
+    {
+      type: "remote",
+      url: proxyUrl,
+      headers: { Authorization: `Bearer ${apiKey}` },
+      enabled: true
+    },
+    {
+      stripJsonComments: true,
+      onExisting: "skip"
     }
-  });
+  );
+  if (result === "parse-error") return "parse-error";
+  if (result === "ok") {
+    await warnIfApiKeyFileNotGitignored(workspacePath, ".kilo/kilo.jsonc");
+  }
+  return "ok";
 }
 function printHostedProxyJsonParseWarning(filePath) {
   process.stderr.write(
@@ -1782,7 +1867,7 @@ function printHostedProxyPostWriteHints(platform, shortName) {
   }
   if (platform === "kilo-code") {
     process.stderr.write(
-      style.dim("Restart Kilo Code or reload the window so it picks up .kilocode/mcp.json.") + "\n"
+      style.dim("Restart Kilo Code or reload the window so it picks up .kilo/kilo.jsonc.") + "\n"
     );
   }
 }
@@ -1799,15 +1884,40 @@ async function applyHostedProxyMcpConfig(platform, proxyUrl, shortName, apiKey,
     return;
   }
   if (platform === "github-copilot") {
-    process.stderr.write(
-      "\n" + style.dim(
-        "GitHub Copilot uses VS Code settings - paste the snippet below into your VS Code Settings (JSON)."
-      ) + "\n"
-    );
+    try {
+      const result = await mergeCopilotVscodeMcp(
+        workspacePath,
+        shortName,
+        proxyUrlWithKeyWhenNeeded,
+        apiKey
+      );
+      if (result === "ok") {
+        printHostedProxyPostWriteHints(platform, shortName);
+        return;
+      }
+      printHostedProxyJsonParseWarning(join(workspacePath, ".vscode", "mcp.json"));
+    } catch (err) {
+      process.stderr.write(
+        `${style.yellow("!")} Could not auto-write config: ${err instanceof Error ? err.message : String(err)}
+`
+      );
+    }
     printPlatformSnippet(platform, proxyUrl, shortName, apiKey);
     return;
   }
   if (platform === "goose") {
+    try {
+      const result = await mergeGooseConfig(shortName, proxyUrlWithKeyWhenNeeded, apiKey);
+      if (result === "ok") {
+        printHostedProxyPostWriteHints(platform, shortName);
+        return;
+      }
+    } catch (err) {
+      process.stderr.write(
+        `${style.yellow("!")} Could not auto-write config: ${err instanceof Error ? err.message : String(err)}
+`
+      );
+    }
     printPlatformSnippet(platform, proxyUrl, shortName, apiKey);
     return;
   }
@@ -1854,12 +1964,19 @@ async function applyHostedProxyMcpConfig(platform, proxyUrl, shortName, apiKey,
         apiKey
       );
       if (result === "parse-error") {
-        printHostedProxyJsonParseWarning(join(workspacePath, ".kilocode", "mcp.json"));
+        printHostedProxyJsonParseWarning(join(workspacePath, ".kilo", "kilo.jsonc"));
       }
     } else if (platform === "continue-dev") {
-      result = await mergeContinueHostedMcp(shortName, proxyUrlWithKeyWhenNeeded, apiKey);
+      result = await mergeContinueHostedMcp(
+        workspacePath,
+        shortName,
+        proxyUrlWithKeyWhenNeeded,
+        apiKey
+      );
       if (result === "parse-error") {
-        printHostedProxyJsonParseWarning(getContinueConfigJsonPath());
+        printHostedProxyJsonParseWarning(
+          join(workspacePath, ".continue", "mcpServers", `${shortName}.yaml`)
+        );
       }
     } else {
       result = await mergeMcpServersObjectStyle(getCursorMcpJsonPath(), shortName, {
@@ -1883,17 +2000,96 @@ async function applyHostedProxyMcpConfig(platform, proxyUrl, shortName, apiKey,
   }
   printPlatformSnippet(platform, proxyUrl, shortName, apiKey);
 }
-function gooseHostedProxyYaml(shortName, proxyUrl, bearerHeader) {
-  return `extensions:
-  ${shortName}:
+function printGooseConfigYamlParseErrorToStderr() {
+  process.stderr.write(
+    style.yellow("!") + " Could not parse ~/.config/goose/config.yaml - check for syntax errors or invalid YAML\n"
+  );
+}
+function gooseExtensionYaml(shortName, proxyUrl, bearerHeader) {
+  const sn = sanitiseYamlValue(shortName);
+  const urlEsc = sanitiseYamlValue(proxyUrl);
+  const authEsc = sanitiseYamlValue(bearerHeader);
+  return `  ${sn}:
+    enabled: true
     type: streamable_http
-    url: ${proxyUrl}
+    name: ${sn}
+    description: ''
+    uri: ${urlEsc}
+    envs: {}
+    env_keys: []
     headers:
-      Authorization: ${bearerHeader}
-    enabled: true
+      Authorization: ${authEsc}
     timeout: 300
+    socket: null
+    bundled: null
+    available_tools: []
 `;
 }
+function gooseHostedProxyYaml(shortName, proxyUrl, bearerHeader) {
+  return `extensions:
+` + gooseExtensionYaml(shortName, proxyUrl, bearerHeader);
+}
+function isYamlPlainObject(value) {
+  return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+async function mergeGooseConfig(shortName, proxyUrl, apiKey) {
+  const filePath = join(homedir(), ".config", "goose", "config.yaml");
+  const bearerHeader = `Bearer ${apiKey}`;
+  let content = "";
+  try {
+    content = await readFile(filePath, "utf8");
+  } catch (e) {
+    if (isErrnoException(e) && e.code === "ENOENT") {
+      content = "";
+    } else {
+      throw e;
+    }
+  }
+  let root;
+  try {
+    const data = content.trim().length === 0 ? {} : parse(content);
+    if (data === null || typeof data !== "object" || Array.isArray(data)) {
+      printGooseConfigYamlParseErrorToStderr();
+      return "parse-error";
+    }
+    root = data;
+  } catch {
+    printGooseConfigYamlParseErrorToStderr();
+    return "parse-error";
+  }
+  const extensionsRaw = root["extensions"];
+  let extensions;
+  if (isYamlPlainObject(extensionsRaw)) {
+    extensions = { ...extensionsRaw };
+  } else if (extensionsRaw === void 0) {
+    extensions = {};
+  } else {
+    printGooseConfigYamlParseErrorToStderr();
+    return "parse-error";
+  }
+  extensions[shortName] = {
+    enabled: true,
+    type: "streamable_http",
+    name: shortName,
+    description: "",
+    uri: proxyUrl,
+    envs: {},
+    env_keys: [],
+    headers: { Authorization: bearerHeader },
+    timeout: 300,
+    socket: null,
+    bundled: null,
+    available_tools: []
+  };
+  root["extensions"] = extensions;
+  const out = stringify(root, { indent: 2, lineWidth: 0 });
+  const body = out.endsWith("\n") ? out : `${out}
+`;
+  await mkdir(dirname(filePath), { recursive: true });
+  await writeFile(filePath, body, SECRET_JSON_FILE_OPTIONS);
+  writeMcpAddedLine(shortName, filePath);
+  return "ok";
+}
 function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
   const hostedInlinePlatforms = /* @__PURE__ */ new Set([
     "cursor",
@@ -1913,14 +2109,12 @@ function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
   if (platform === "github-copilot") {
     snippetText = JSON.stringify(
       {
-        mcp: {
-          servers: {
-            [shortName]: {
-              type: "http",
-              url: urlInSnippet,
-              headers: {
-                Authorization: authHeader
-              }
+        servers: {
+          [shortName]: {
+            type: "http",
+            url: urlInSnippet,
+            headers: {
+              Authorization: authHeader
             }
           }
         }
@@ -1959,18 +2153,32 @@ function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
       2
     );
   } else if (platform === "continue-dev") {
+    const sn = sanitiseYamlValue(shortName);
+    const urlEsc = sanitiseYamlValue(urlInSnippet);
+    const authEsc = sanitiseYamlValue(authHeader);
+    snippetText = `name: ${sn}
+version: 0.0.1
+schema: v1
+mcpServers:
+  - name: ${sn}
+    type: streamable-http
+    url: ${urlEsc}
+    headers:
+      Authorization: ${authEsc}
+`;
+  } else if (platform === "kilo-code") {
     snippetText = JSON.stringify(
       {
-        mcpServers: [
-          {
-            name: shortName,
-            type: "streamable-http",
+        mcp: {
+          [shortName]: {
+            type: "remote",
             url: urlInSnippet,
             headers: {
               Authorization: authHeader
-            }
+            },
+            enabled: true
           }
-        ]
+        }
       },
       null,
       2
@@ -2010,16 +2218,18 @@ function printPlatformSnippet(platform, routingToken, shortName, apiKey) {
     );
   } else if (platform === "kilo-code") {
     process.stderr.write(
-      "\n" + style.dim(`Add this to ${join(resolve(process.cwd()), ".kilocode", "mcp.json")}:`) + "\n\n"
+      "\n" + style.dim(`Add this to ${join(resolve(process.cwd()), ".kilo", "kilo.jsonc")}:`) + "\n\n"
     );
   } else if (platform === "github-copilot") {
     process.stderr.write(
       "\n" + style.dim(
-        "Merge this snippet under the mcp key in your VS Code Settings (JSON). If you do not have an mcp section yet, add one. Copilot picks up MCP servers when you use Agent mode."
+        "Create .vscode/mcp.json in your workspace root (create the .vscode folder if it does not exist). After saving, reload VS Code and confirm the server appears in Copilot Agent mode under Tools."
       ) + "\n\n"
     );
   } else if (platform === "continue-dev") {
-    process.stderr.write("\n" + style.dim(`Add this to ${getContinueConfigJsonPath()}:`) + "\n\n");
+    process.stderr.write(
+      "\n" + style.dim(`Save this as .continue/mcpServers/${shortName}.yaml in your workspace root.`) + "\n\n"
+    );
   } else if (platform === "goose") {
     process.stderr.write(
       "\n" + style.dim("Add this to ~/.config/goose/config.yaml under the extensions key.") + "\n\n"
@@ -2195,7 +2405,7 @@ async function runInit(explicitBaseUrl, options) {
   }
   await warnIfInstalledShieldIsOutdated();
   const configuredAgents = [];
-  let currentAgents = collectAgentsFromConfig(existing);
+  let currentAgents = mergeAgentsForUniqueNames(collectAgentsFromConfig(existing));
   let lastConfig = {
     apiKey,
     baseUrl: resolvedBaseUrl,
@@ -2813,6 +3023,14 @@ You have ${String(agentsForPlatform.length)} agent(s) connected for ${selectedLa
   }
   rl.close();
   if (configuredAgents.length > 0) {
+    let mcpPromptLabel2 = function(platformSlug) {
+      const rows = configuredAgents.filter((a) => a.platform === platformSlug);
+      const last = rows[rows.length - 1];
+      if (last === void 0) return "shield-mcp";
+      const s = typeof last.shortName === "string" ? last.shortName.trim() : "";
+      if (s.length > 0) return s;
+      return last.agentName.trim().length > 0 ? last.agentName.trim() : "shield-mcp";
+    };
     process.stderr.write("\n" + style.bold(style.violet("Setup complete")) + "\n\n");
     for (const agent of configuredAgents) {
       const namePart = agent.agentName.length > 0 ? ` - ${style.cyan(agent.agentName)}` : "";
@@ -2824,14 +3042,6 @@ You have ${String(agentsForPlatform.length)} agent(s) connected for ${selectedLa
     }
     process.stderr.write("\n");
     const configuredPlatforms = new Set(configuredAgents.map((a) => a.platform));
-    const cursorMcpPromptLabel = (() => {
-      const rows = configuredAgents.filter((a) => a.platform === "cursor");
-      const last = rows[rows.length - 1];
-      if (last === void 0) return "shield-mcp";
-      const s = typeof last.shortName === "string" ? last.shortName.trim() : "";
-      if (s.length > 0) return s;
-      return last.agentName.trim().length > 0 ? last.agentName.trim() : "shield-mcp";
-    })();
     const blocks = [];
     if (configuredPlatforms.has("openclaw")) {
       blocks.push(
@@ -2844,33 +3054,39 @@ You have ${String(agentsForPlatform.length)} agent(s) connected for ${selectedLa
       );
     }
     if (configuredPlatforms.has("claude-desktop")) {
+      const cdLabel = mcpPromptLabel2("claude-desktop");
       blocks.push(
-        "\n" + style.bold("Claude Desktop") + "\n  \u2192 Restart Claude Desktop to pick up config changes\n  \u2192 Try it: make a request in Claude Desktop - Shield will intercept the first tool call and ask for your consent\n"
+        "\n" + style.bold("Claude Desktop") + '\n  \u2192 Restart Claude Desktop to load the updated configuration\n  \u2192 Confirm connection: click your profile (bottom-left) \u2192 Settings \u2192 Developer\n    Check that "' + cdLabel + '" shows a green "running" status\n  \u2192 Try it: paste this into Claude Desktop:\n    "Use the ' + cdLabel + ' MCP server to list my GitHub repositories"\n'
       );
     }
     if (configuredPlatforms.has("cursor")) {
+      const cursorLabel = mcpPromptLabel2("cursor");
       blocks.push(
-        "\n" + style.bold("Cursor") + "\n  \u2192 If needed, download Cursor from " + style.cyan("https://www.cursor.com/downloads") + '\n  \u2192 Restart Cursor so it loads the MCP server\n  \u2192 Try it: make a request in Cursor - Shield will intercept the first tool call and ask for your consent\n  \u2192 Example: "Use the ' + cursorMcpPromptLabel + ' MCP server to list my GitHub repositories"\n'
+        "\n" + style.bold("Cursor") + "\n  \u2192 If needed, download Cursor from " + style.cyan("https://www.cursor.com/downloads") + '\n  \u2192 Restart Cursor so it loads the MCP server\n  \u2192 Confirm connection: open Settings \u2192 Tools & MCPs\n    Check that "' + cursorLabel + '" shows a green status indicator\n  \u2192 Try it: paste this into Cursor:\n    "Use the ' + cursorLabel + ' MCP server to list my GitHub repositories"\n'
       );
     }
     if (configuredPlatforms.has("kilo-code")) {
+      const kiloLabel = mcpPromptLabel2("kilo-code");
       blocks.push(
-        "\n" + style.bold("Kilo Code") + "\n  \u2192 Restart the editor or reload the window if the MCP server does not appear\n  \u2192 Try it: make a request in Kilo Code - Shield will intercept the first tool call and ask for your consent\n"
+        "\n" + style.bold("Kilo Code") + '\n  \u2192 Restart the editor or reload the window if the MCP server does not appear\n  \u2192 Confirm connection: Settings \u2192 Agent Behaviour \u2192 MCP Servers\n  \u2192 Try it: paste this into Kilo Code:\n    "Use the ' + kiloLabel + ' MCP server to list my GitHub repositories"\n'
       );
     }
     if (configuredPlatforms.has("github-copilot")) {
+      const copilotLabel = mcpPromptLabel2("github-copilot");
       blocks.push(
-        "\n" + style.bold("GitHub Copilot") + "\n  \u2192 Reload the editor window if the MCP server does not appear\n  \u2192 Open Copilot Agent mode and confirm the MCP server connects\n  \u2192 Try it: make a request in GitHub Copilot - Shield will intercept the first tool call and ask for your consent\n"
+        "\n" + style.bold("GitHub Copilot") + '\n  \u2192 Reload the editor window if the MCP server does not appear\n  \u2192 Confirm connection: open Copilot chat in Agent mode and confirm the server appears under Tools\n  \u2192 Try it: paste this into GitHub Copilot:\n    "Use the ' + copilotLabel + ' MCP server to list my GitHub repositories"\n'
       );
     }
     if (configuredPlatforms.has("continue-dev")) {
+      const continueLabel = mcpPromptLabel2("continue-dev");
       blocks.push(
-        "\n" + style.bold("Continue") + "\n  \u2192 If needed, install Continue from " + style.cyan("https://docs.continue.dev/ide-extensions/install") + "\n  \u2192 Reload VS Code and open Continue agent mode\n  \u2192 Try it: make a request in Continue - Shield will intercept the first tool call and ask for your consent\n"
+        "\n" + style.bold("Continue") + "\n  \u2192 If needed, install Continue from " + style.cyan("https://docs.continue.dev/ide-extensions/install") + '\n  \u2192 Reload VS Code and open Continue agent mode\n  \u2192 Confirm connection: Settings \u2192 Tools \u2192 MCP Servers\n  \u2192 Try it: paste this into Continue:\n    "Use the ' + continueLabel + ' MCP server to list my GitHub repositories"\n'
       );
     }
     if (configuredPlatforms.has("goose")) {
+      const gooseLabel = mcpPromptLabel2("goose");
       blocks.push(
-        "\n" + style.bold("Goose") + "\n  \u2192 Start a new Goose session after updating config\n  \u2192 Try it: make a request in Goose - Shield will intercept the first tool call and ask for your consent\n"
+        "\n" + style.bold("Goose") + '\n  \u2192 Start a new Goose session after updating config\n  \u2192 Confirm connection: check the Extensions page in the sidebar\n  \u2192 Try it: paste this into Goose:\n    "Use the ' + gooseLabel + ' MCP server to list my GitHub repositories"\n'
       );
     }
     const windsurfNativeConfigured = configuredAgents.some(
@@ -3438,9 +3654,13 @@ function extractToolCallParams(request) {
   if (typeof args !== "object" || args === null) return null;
   return { name, arguments: args };
 }
-function buildBlockedResponse(id, service, permissionLevel, dashboardUrl) {
+function buildBlockedResponse(id, service, _permissionLevel, dashboardUrl) {
   const displayService = capitalize(service);
-  const message = `Action blocked by Multicorn Shield: agent does not have ${permissionLevel} access to ${displayService}. Configure permissions at ${dashboardUrl}`;
+  const message = `Action blocked by Shield
+
+This agent cannot use ${displayService}.
+
+Configure permissions: ${dashboardUrl}`;
   return {
     jsonrpc: "2.0",
     id,
@@ -3974,6 +4194,193 @@ var init_restore = __esm({
   }
 });
 
+// package.json
+var package_default;
+var init_package = __esm({
+  "package.json"() {
+    package_default = {
+      name: "multicorn-shield",
+      version: "1.7.0",
+      description: "The control layer for AI agents: permissions, consent, spending limits, and audit logging.",
+      license: "MIT",
+      author: "Multicorn AI Pty Ltd",
+      type: "module",
+      main: "./dist/index.cjs",
+      module: "./dist/index.js",
+      types: "./dist/index.d.ts",
+      exports: {
+        ".": {
+          import: {
+            types: "./dist/index.d.ts",
+            default: "./dist/index.js"
+          },
+          require: {
+            types: "./dist/index.d.cts",
+            default: "./dist/index.cjs"
+          }
+        },
+        "./proxy": {
+          import: {
+            types: "./dist/proxy.d.ts",
+            default: "./dist/proxy.js"
+          },
+          require: {
+            types: "./dist/proxy.d.cts",
+            default: "./dist/proxy.cjs"
+          }
+        }
+      },
+      bin: {
+        "multicorn-shield": "./dist/multicorn-shield.js",
+        "multicorn-proxy": "./dist/multicorn-proxy.js"
+      },
+      files: [
+        "dist",
+        "plugins/multicorn-shield",
+        "plugins/windsurf",
+        "plugins/cline",
+        "plugins/gemini-cli",
+        "LICENSE",
+        "README.md",
+        "CHANGELOG.md"
+      ],
+      publishConfig: {
+        access: "public",
+        provenance: true
+      },
+      sideEffects: [
+        "dist/index.js",
+        "dist/index.cjs",
+        "dist/badge.js",
+        "src/badge/multicorn-badge.ts"
+      ],
+      engines: {
+        node: ">=20"
+      },
+      scripts: {
+        build: "tsup",
+        dev: "tsup --watch",
+        lint: "eslint . --no-warn-ignored && prettier --check .",
+        "lint:fix": "eslint --fix . --no-warn-ignored && prettier --write .",
+        test: "vitest run",
+        "test:watch": "vitest",
+        "test:coverage": "vitest run --coverage",
+        typecheck: "tsc --noEmit",
+        docs: "typedoc",
+        clean: "rm -rf dist coverage docs/api extension-pack",
+        "stage-extension-pack": "rm -rf extension-pack && mkdir -p extension-pack/server && cp manifest.json extension-pack/ && cp icon.png extension-pack/ && cp dist/shield-extension.js extension-pack/server/index.js",
+        "validate:extension": "pnpm run stage-extension-pack && mcpb validate extension-pack/manifest.json",
+        "build:extension": "tsup",
+        "pack:extension": "pnpm run build && pnpm run stage-extension-pack && mcpb validate extension-pack/manifest.json && mcpb pack extension-pack dist/multicorn-shield.mcpb",
+        size: "size-limit",
+        prepublishOnly: "pnpm run clean && pnpm run typecheck && pnpm run lint && pnpm run test && pnpm run build",
+        prepare: "husky || true",
+        "release:patch": "npm version patch && pnpm publish",
+        "release:minor": "npm version minor && pnpm publish",
+        "release:major": "npm version major && pnpm publish"
+      },
+      "lint-staged": {
+        "*.ts": [
+          "eslint --fix --no-warn-ignored",
+          "prettier --write"
+        ],
+        "*.{json,md}": [
+          "prettier --write"
+        ]
+      },
+      dependencies: {
+        "@modelcontextprotocol/sdk": "^1.27.1",
+        lit: "^3.2.0",
+        yaml: "^2.8.2",
+        zod: "^4.3.6"
+      },
+      devDependencies: {
+        "@anthropic-ai/mcpb": "^2.1.2",
+        "@eslint/js": "^9.19.0",
+        "@open-wc/testing-helpers": "^3.0.1",
+        "@size-limit/file": "^11.1.6",
+        "@types/node": "^22.0.0",
+        "@vitest/coverage-v8": "^3.0.5",
+        eslint: "^9.19.0",
+        "eslint-config-prettier": "^10.0.1",
+        "eslint-plugin-unicorn": "^57.0.0",
+        globals: "^15.14.0",
+        husky: "^9.1.7",
+        jiti: "^2.4.2",
+        jsdom: "^25.0.1",
+        "lint-staged": "^16.2.7",
+        prettier: "^3.4.2",
+        "size-limit": "^11.1.6",
+        tsup: "^8.3.6",
+        typedoc: "^0.28.17",
+        typescript: "^5.7.3",
+        "typescript-eslint": "^8.22.0",
+        vite: "^7.3.2",
+        vitest: "^3.0.5"
+      },
+      "size-limit": [
+        {
+          path: "dist/index.js",
+          limit: "50 kB",
+          gzip: true
+        },
+        {
+          path: "dist/index.cjs",
+          limit: "50 kB",
+          gzip: true
+        },
+        {
+          path: "dist/badge.js",
+          limit: "5 kB",
+          gzip: true
+        }
+      ],
+      keywords: [
+        "ai",
+        "agents",
+        "permissions",
+        "sdk",
+        "typescript",
+        "consent",
+        "spending-limits",
+        "audit-log",
+        "mcp",
+        "shield",
+        "multicorn"
+      ],
+      repository: {
+        type: "git",
+        url: "git+https://github.com/Multicorn-AI/multicorn-shield.git"
+      },
+      bugs: {
+        url: "https://github.com/Multicorn-AI/multicorn-shield/issues"
+      },
+      homepage: "https://multicorn.ai",
+      pnpm: {
+        overrides: {
+          vite: ">=7.3.2",
+          flatted: ">=3.4.2",
+          minimatch: ">=10.2.3",
+          rollup: ">=4.59.0",
+          picomatch: ">=4.0.4",
+          "path-to-regexp": ">=8.4.0",
+          "node-forge": ">=1.4.0",
+          "fast-uri": ">=3.1.2"
+        }
+      }
+    };
+  }
+});
+
+// src/package-meta.ts
+var PACKAGE_VERSION;
+var init_package_meta = __esm({
+  "src/package-meta.ts"() {
+    init_package();
+    PACKAGE_VERSION = package_default.version;
+  }
+});
+
 // bin/multicorn-shield.ts
 var multicorn_shield_exports = {};
 __export(multicorn_shield_exports, {
@@ -4132,6 +4539,7 @@ function printHelp() {
       "      Shield's permission layer.",
       "",
       "Options:",
+      "  --version, -v        Print version and exit",
       "  --verbose, --debug   Print extra diagnostics during init (menu selection, agent counts)",
       "  --api-key <key>       Multicorn API key (overrides MULTICORN_API_KEY env var and config file)",
       "  --log-level <level>   Log level: debug | info | warn | error  (default: info)",
@@ -4156,6 +4564,11 @@ async function runCli() {
     );
     return;
   }
+  if (first === "--version" || first === "-v") {
+    process.stdout.write(`${PACKAGE_VERSION}
+`);
+    process.exit(0);
+  }
   const cli = parseArgs(process.argv);
   const logger = createLogger(cli.logLevel);
   if (cli.subcommand === "help") {
@@ -4302,6 +4715,7 @@ var init_multicorn_shield = __esm({
     init_logger();
     init_consent();
     init_restore();
+    init_package_meta();
     isDirectRun = process.argv[1] !== void 0 && (import.meta.url.endsWith(process.argv[1]) || import.meta.url === `file://${process.argv[1]}` || import.meta.url.endsWith("/multicorn-shield.js") || import.meta.url.endsWith("/multicorn-shield.ts"));
     if (isDirectRun && process.env["VITEST"] === void 0) {
       runCli().catch((error) => {