npm - nexus-agents - Versions diffs - 2.33.2 → 2.40.0 - Mend

nexus-agents 2.33.2 → 2.40.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (84) hide show

package/dist/{adaptive-memory-CHKKA4DI.js → adaptive-memory-VPXQL3EC.js} RENAMED Viewed

@@ -2,9 +2,9 @@ import {
   AdaptiveMemoryBackend,
   DEFAULT_SCORING_CONFIG,
   createAdaptiveMemory
-} from "./chunk-72OMG44X.js";
+} from "./chunk-5DSQLHVJ.js";
 import "./chunk-633WH2ML.js";
-import "./chunk-DWZZZGZD.js";
+import "./chunk-BFRD2E7X.js";
 import "./chunk-CLYZ7FWP.js";
 import "./chunk-UP2VWCW5.js";
 export {
@@ -12,4 +12,4 @@ export {
   DEFAULT_SCORING_CONFIG,
   createAdaptiveMemory
 };
-//# sourceMappingURL=adaptive-memory-CHKKA4DI.js.map
+//# sourceMappingURL=adaptive-memory-VPXQL3EC.js.map

package/dist/{chunk-72OMG44X.js → chunk-5DSQLHVJ.js} RENAMED Viewed

@@ -11,7 +11,7 @@ import {
   formatZodError,
   getTimeProvider,
   ok
-} from "./chunk-DWZZZGZD.js";
+} from "./chunk-BFRD2E7X.js";
 // src/context/memory-backend-types.ts
 import { z } from "zod";
@@ -941,4 +941,4 @@ export {
   AdaptiveMemoryBackend,
   createAdaptiveMemory
 };
-//# sourceMappingURL=chunk-72OMG44X.js.map
+//# sourceMappingURL=chunk-5DSQLHVJ.js.map

package/dist/{chunk-YYPA3CBH.js → chunk-66QFTVYA.js} RENAMED Viewed

@@ -1,14 +1,14 @@
 import {
   GitHubProvider,
   ScmError
-} from "./chunk-MI2RHGLU.js";
+} from "./chunk-NQSX4YMA.js";
 import {
   CACHE_TIMEOUTS,
   createLogger,
   err,
   getTimeProvider,
   ok
-} from "./chunk-DWZZZGZD.js";
+} from "./chunk-BFRD2E7X.js";
 // src/security/trust-types.ts
 import { z } from "zod";
@@ -1582,4 +1582,4 @@ export {
   IssueTriage,
   createIssueTriage
 };
-//# sourceMappingURL=chunk-YYPA3CBH.js.map
+//# sourceMappingURL=chunk-66QFTVYA.js.map

package/dist/{chunk-WDNE6K4W.js → chunk-6PLFRWIP.js} RENAMED Viewed

@@ -1,6 +1,6 @@
 import {
   SessionMemory
-} from "./chunk-XH6CQMDU.js";
+} from "./chunk-B422NMVP.js";
 import {
   AdaptiveMemoryBackend,
   HybridMemoryBackend,
@@ -9,7 +9,7 @@ import {
   getMemoryEntry,
   memoryExists,
   memoryRowToEntry
-} from "./chunk-72OMG44X.js";
+} from "./chunk-5DSQLHVJ.js";
 import {
   stringifyValue,
   tokenizeFiltered
@@ -21,7 +21,7 @@ import {
   getAvailableClis,
   isCliAvailable,
   withTimeout
-} from "./chunk-3PNNEWR6.js";
+} from "./chunk-IXG4WPEZ.js";
 import {
   AgentError,
   CACHE_TIMEOUTS,
@@ -66,7 +66,7 @@ import {
   resolveVoteTimeout,
   toRateLimitError,
   validateTimeout
-} from "./chunk-DWZZZGZD.js";
+} from "./chunk-BFRD2E7X.js";
 import {
   OUTCOMES_FILE,
   ensureLearningDir
@@ -795,6 +795,157 @@ function contextForLogging(ctx) {
   };
 }
+// src/security/access-constraint-deriver/denylist.ts
+var UNBYPASSABLE_PATH_PATTERNS = [
+  // Environment files
+  ".env",
+  ".env.*",
+  "**/.env",
+  "**/.env.*",
+  // SSH credentials
+  "~/.ssh/**",
+  "**/ssh/id_*",
+  "**/*_rsa",
+  "**/*_ed25519",
+  "**/*.pem",
+  // Cloud credentials
+  "~/.aws/**",
+  "~/.azure/**",
+  "~/.gcp/**",
+  "~/.config/gcloud/**",
+  "~/.kube/config",
+  // Unix secret files
+  "/etc/shadow",
+  "/etc/sudoers",
+  "/etc/sudoers.d/**",
+  // Common secret file patterns
+  "**/secrets.*",
+  "**/credentials.*",
+  "**/private_key.*",
+  "**/id_rsa*"
+];
+var UNBYPASSABLE_TOOL_NAMES = [
+  // Destructive git operations
+  "git_push_force",
+  "git_reset_hard",
+  "git_branch_delete_force",
+  "git_clean_force",
+  // Destructive filesystem
+  "rm_recursive_force",
+  "chmod_recursive",
+  // Identity / auth mutations
+  "ssh_add_key",
+  "gpg_add_key",
+  "npm_publish_force",
+  // Remote destruction
+  "github_repo_delete",
+  "github_org_transfer",
+  "aws_account_close"
+];
+function compileGlobToRegex(pattern) {
+  const pat = pattern.toLowerCase();
+  const escaped = pat.replace(/[\\.+^$()|[\]{}]/g, "\\$&").replace(/\*\*/g, "__DOUBLESTAR__").replace(/\*/g, "[^/]*").replace(/__DOUBLESTAR__/g, ".*");
+  const anchored = escaped.startsWith("~/") ? `(^|/)${escaped.slice(2)}$` : escaped.startsWith("/") ? `^${escaped}$` : `(^|/)${escaped}$`;
+  return new RegExp(anchored);
+}
+var COMPILED_PATH_PATTERNS = UNBYPASSABLE_PATH_PATTERNS.map((pattern) => ({
+  pattern,
+  regex: compileGlobToRegex(pattern)
+}));
+function isPathDenied(path4) {
+  const normalized = path4.toLowerCase();
+  return COMPILED_PATH_PATTERNS.some((c) => c.regex.test(normalized));
+}
+function isToolDenied(toolName) {
+  return UNBYPASSABLE_TOOL_NAMES.includes(toolName);
+}
+// src/security/access-constraint-deriver/enforcer.ts
+function checkAccess(toolName, policy, args) {
+  if (isToolDenied(toolName)) {
+    return {
+      decision: "deny",
+      reason: `tool "${toolName}" is on the unbypassable deny-tool list`,
+      matchedRule: "unbypassable:tool"
+    };
+  }
+  if (typeof args?.path === "string" && args.path.length > 0 && isPathDenied(args.path)) {
+    return {
+      decision: "deny",
+      reason: `path "${args.path}" is on the unbypassable deny-path list`,
+      matchedRule: "unbypassable:path"
+    };
+  }
+  if (policy.allowedTools === "*") return { decision: "allow" };
+  if (policy.allowedTools.includes(toolName)) return { decision: "allow" };
+  if (policy.mode === "audit") {
+    return {
+      decision: "log-and-allow",
+      warning: `tool "${toolName}" not in derived policy (audit mode)`
+    };
+  }
+  return {
+    decision: "deny",
+    reason: `tool "${toolName}" not in derived policy`,
+    matchedRule: "allowedTools"
+  };
+}
+// src/security/access-constraint-deriver/mcp-guard.ts
+import { AsyncLocalStorage as AsyncLocalStorage2 } from "async_hooks";
+var accessPolicyStorage = new AsyncLocalStorage2();
+function getActivePolicy() {
+  return accessPolicyStorage.getStore();
+}
+function denyToToolResult(decision, requestId) {
+  return {
+    isError: true,
+    content: [
+      {
+        type: "text",
+        text: `access denied: ${decision.reason} (rule: ${decision.matchedRule}, request: ${requestId})`
+      }
+    ]
+  };
+}
+// src/security/access-constraint-deriver/chain-adapter.ts
+function toGuardArgs(args) {
+  if (typeof args !== "object" || args === null) return void 0;
+  const path4 = args["path"];
+  return typeof path4 === "string" && path4.length > 0 ? { path: path4 } : void 0;
+}
+function createAccessPolicyChainMiddleware(toolName) {
+  return async (args, ctx, next) => {
+    const policy = getActivePolicy();
+    if (policy === void 0 || policy.mode === "off") {
+      return next(args, ctx);
+    }
+    const decision = checkAccess(toolName, policy, toGuardArgs(args));
+    if (decision.decision === "allow") {
+      return next(args, ctx);
+    }
+    if (decision.decision === "log-and-allow") {
+      ctx.logger.warn("access-policy: audit violation", {
+        tool: toolName,
+        warning: decision.warning,
+        policySource: policy.source,
+        requestId: ctx.requestContext.requestId
+      });
+      return next(args, ctx);
+    }
+    ctx.logger.info("access-policy: tool call denied", {
+      tool: toolName,
+      reason: decision.reason,
+      matchedRule: decision.matchedRule,
+      policySource: policy.source,
+      mode: policy.mode,
+      requestId: ctx.requestContext.requestId
+    });
+    return denyToToolResult(decision, ctx.requestContext.requestId);
+  };
+}
 // src/mcp/middleware/middleware-chain.ts
 function errorResult(message, requestId) {
   return {
@@ -939,6 +1090,11 @@ function addTimeoutMiddleware(middlewares, config, skip2) {
     middlewares.push(createTimeoutMiddleware(guard, config.toolName));
   }
 }
+function addAccessPolicyMiddleware(middlewares, config, skip2) {
+  if (skip2.accessPolicy !== true) {
+    middlewares.push(createAccessPolicyChainMiddleware(config.toolName));
+  }
+}
 function buildMiddlewareStack(config) {
   const skip2 = config.skip ?? {};
   const middlewares = [];
@@ -947,6 +1103,7 @@ function buildMiddlewareStack(config) {
   addRateLimitMiddleware(middlewares, config, skip2);
   addValidationMiddleware(middlewares, config, skip2);
   addPolicyMiddleware(middlewares, config, skip2);
+  addAccessPolicyMiddleware(middlewares, config, skip2);
   addTimeoutMiddleware(middlewares, config, skip2);
   return middlewares;
 }
@@ -12347,7 +12504,7 @@ async function processVotesWithCascade(votes, opts) {
 var CONTRARIAN_ESCALATION_THRESHOLD = 0.8;
 async function runContrarianCheck(proposal, log) {
   try {
-    const { executeExpert } = await import("./expert-bridge-SHKCEXGU.js");
+    const { executeExpert } = await import("./expert-bridge-VDNOTL7I.js");
     const prompt = [
       "You are a contrarian analyst. Your job is to find reasons this proposal should be REJECTED.",
       "Look for: YAGNI (not needed), MISALIGNED (wrong tech/architecture), SECURITY_RISK, SCOPE_CREEP.",
@@ -12718,4 +12875,4 @@ export {
   CONSENSUS_VOTE_OUTPUT_SCHEMA,
   registerConsensusVoteTool
 };
-//# sourceMappingURL=chunk-WDNE6K4W.js.map
+//# sourceMappingURL=chunk-6PLFRWIP.js.map