nubase_cli 0.1.7 → 0.1.9

package/README.md

@@ -70,8 +70,8 @@ node packages/mcp-bridge/dist/src/index.js
   "mcpServers": {
     "nubase": {
       "type": "stdio",
-      "command": "node",
-      "args": ["/absolute/project/path/.nubase/mcp-bridge/dist/src/index.js"],
+      "command": "npx",
+      "args": ["-y", "nubase_cli@latest"],
       "env": {
         "NUBASE_AGENT_ID": "claude-code",
         "NUBASE_CONFIG": "/absolute/project/path/.nubase/config.json"
@@ -81,6 +81,9 @@ node packages/mcp-bridge/dist/src/index.js
 }
 ```
 
+The bridge code is shared across projects via the npm cache; only `.nubase/config.json`
+(holding this project's `projectKey`) is project-specific, pointed to by `NUBASE_CONFIG`.
+
 You may still set `NUBASE_URL` and `NUBASE_PROJECT_KEY` explicitly. Environment variables take precedence over the saved authorization config.
 
 ## Install Agent Skills
@@ -99,15 +102,15 @@ Targets:
 
 Use `--skills-scope project` to write `.claude/skills/nubase/**` and `.codex/skills/nubase/**` in the current project instead.
 
-By default, when the target includes `claude`, the command also copies the local MCP bridge to `.nubase/mcp-bridge` and creates or merges project `.mcp.json`:
+By default, when the target includes `claude`, the command creates or merges a project `.mcp.json` that runs the bridge via `npx` (shared across projects through the npm cache):
 
 ```json
 {
   "mcpServers": {
     "nubase": {
       "type": "stdio",
-      "command": "node",
-      "args": ["/absolute/project/path/.nubase/mcp-bridge/dist/src/index.js"],
+      "command": "npx",
+      "args": ["-y", "nubase_cli@<version>"],
       "env": {
         "NUBASE_AGENT_ID": "claude-code",
         "NUBASE_CONFIG": "/absolute/project/path/.nubase/config.json"
@@ -117,8 +120,24 @@ By default, when the target includes `claude`, the command also copies the local
 }
 ```
 
+The `npx` spec is pinned to the installed CLI version for reproducibility. Pass
+`--mcp-delivery local` instead to copy a hermetic, version-pinned bridge into
+`.nubase/mcp-bridge` and reference it with `command: "node"` (no npm dependency at runtime).
+
 Use `--mcp both` to also write project `.codex/config.toml` for Codex. Use `--no-mcp` to skip MCP config.
 
+### Permissions
+
+The MCP config's `env` block gates what the agent may do. Reads are always allowed; these flags gate write/execute tools:
+
+| Flag | Default | Unlocks |
+| --- | --- | --- |
+| `NUBASE_ALLOW_SQL_EXECUTE` | **on** | `sql_execute` (run SQL) |
+| `NUBASE_ALLOW_ADMIN_WRITE` | **on** | create/delete buckets & users, issue/revoke gateway keys |
+| `NUBASE_ALLOW_DANGEROUS_SQL` | **off** | SQL classified DANGEROUS (DROP/TRUNCATE/...) |
+
+`install-skills` writes SQL-execute and admin-write into the config by default; dangerous SQL stays off. Opt out per install with `--no-sql-execute` / `--no-admin-write`, or opt into dangerous SQL with `--allow-dangerous-sql`. You can also edit the flags directly in `.mcp.json` (or `.codex/config.toml`) afterwards.
+
 Installed structure:
 
 - `nubase/SKILL.md`

package/dist/src/index.js

@@ -6,7 +6,7 @@ import { installSkills, parseInstallArgs } from './install-skills.js';
 import { McpStdioServer } from './mcp-stdio.js';
 import { NubaseClient } from './nubase-client.js';
 import { callTool, TOOLS } from './tools.js';
-const CLI_VERSION = '0.1.7';
+const CLI_VERSION = '0.1.9';
 if (process.argv[2] === 'install-skills') {
     const options = parseInstallArgs(process.argv.slice(3));
     const installed = await installSkills(options);

package/dist/src/install-skills.d.ts

@@ -1,6 +1,7 @@
 export type SkillTarget = 'claude' | 'codex' | 'both';
 export type SkillInstallScope = 'user' | 'project';
 export type McpInstallTarget = 'none' | 'claude' | 'codex' | 'both';
+export type McpDelivery = 'npx' | 'local';
 export interface InstallSkillsOptions {
     target: SkillTarget;
     projectDir: string;
@@ -9,6 +10,10 @@ export interface InstallSkillsOptions {
     skills?: boolean;
     skillsScope?: SkillInstallScope;
     mcp?: McpInstallTarget;
+    mcpDelivery?: McpDelivery;
+    allowSqlExecute?: boolean;
+    allowAdminWrite?: boolean;
+    allowDangerousSql?: boolean;
     configPath?: string;
     homeDir?: string;
 }
@@ -21,5 +26,9 @@ export declare function parseInstallArgs(argv: string[]): {
     skills: boolean;
     skillsScope: SkillInstallScope;
     mcp: McpInstallTarget;
+    mcpDelivery: McpDelivery;
+    allowSqlExecute: boolean;
+    allowAdminWrite: boolean;
+    allowDangerousSql: boolean;
     configPath: string;
 };

package/dist/src/install-skills.js

@@ -19,16 +19,23 @@ export async function installSkills(options) {
         }
     }
     const mcpTargets = resolveMcpTargets(options.mcp ?? 'claude', targets);
+    const mcpDelivery = options.mcpDelivery ?? 'npx';
     let mcpCommand = null;
     if (mcpTargets.length > 0) {
-        mcpCommand = await installProjectMcpBridge(options.projectDir);
-        installed.push(mcpCommand.entrypoint);
+        if (mcpDelivery === 'local') {
+            mcpCommand = await installProjectMcpBridge(options.projectDir);
+            installed.push(mcpCommand.entrypoint);
+        }
+        else {
+            mcpCommand = await npxMcpCommand();
+        }
     }
+    const permissionEnv = buildPermissionEnv(options);
     if (mcpTargets.includes('claude')) {
-        installed.push(await installClaudeMcpConfig(options.projectDir, configPath, mcpCommand));
+        installed.push(await installClaudeMcpConfig(options.projectDir, configPath, mcpCommand, permissionEnv));
     }
     if (mcpTargets.includes('codex')) {
-        installed.push(await installCodexMcpConfig(options.projectDir, configPath, mcpCommand));
+        installed.push(await installCodexMcpConfig(options.projectDir, configPath, mcpCommand, permissionEnv));
     }
     installed.push(await ensureProjectGitignore(options.projectDir));
     return installed;
@@ -40,6 +47,10 @@ export function parseInstallArgs(argv) {
     let skills = true;
     let skillsScope = 'user';
     let mcp = 'claude';
+    let mcpDelivery = 'npx';
+    let allowSqlExecute = true;
+    let allowAdminWrite = true;
+    let allowDangerousSql = false;
     let configPath;
     const authArgs = ['--prompt-only'];
     for (let i = 0; i < argv.length; i += 1) {
@@ -83,6 +94,22 @@ export function parseInstallArgs(argv) {
             }
             skillsScope = value;
         }
+        else if (arg === '--mcp-delivery') {
+            const value = argv[++i];
+            if (value !== 'npx' && value !== 'local') {
+                throw new Error('--mcp-delivery must be npx or local');
+            }
+            mcpDelivery = value;
+        }
+        else if (arg === '--no-sql-execute') {
+            allowSqlExecute = false;
+        }
+        else if (arg === '--no-admin-write') {
+            allowAdminWrite = false;
+        }
+        else if (arg === '--allow-dangerous-sql') {
+            allowDangerousSql = true;
+        }
         else if (arg === '--config') {
             const value = argv[++i];
             if (!value)
@@ -101,7 +128,20 @@ export function parseInstallArgs(argv) {
     }
     configPath = configPath ?? projectConfigPath(projectDir);
     authArgs.push('--config', configPath);
-    return { target, projectDir, authorize, authArgs, skills, skillsScope, mcp, configPath };
+    return {
+        target,
+        projectDir,
+        authorize,
+        authArgs,
+        skills,
+        skillsScope,
+        mcp,
+        mcpDelivery,
+        allowSqlExecute,
+        allowAdminWrite,
+        allowDangerousSql,
+        configPath,
+    };
 }
 function bundledSkillDir() {
     return path.join(bundledPackageRoot(), 'skills', 'nubase');
@@ -126,6 +166,20 @@ function resolveMcpTargets(mcp, skillTargets) {
     const requested = mcp === 'both' ? ['claude', 'codex'] : [mcp];
     return requested.filter((target) => skillTargets.includes(target));
 }
+async function npxMcpCommand() {
+    const spec = `nubase_cli@${await bundledPackageVersion()}`;
+    return { command: 'npx', args: ['-y', spec], entrypoint: spec };
+}
+async function bundledPackageVersion() {
+    try {
+        const raw = await readFile(path.join(bundledPackageRoot(), 'package.json'), 'utf8');
+        const version = JSON.parse(raw).version;
+        return typeof version === 'string' && version.trim() ? version.trim() : 'latest';
+    }
+    catch {
+        return 'latest';
+    }
+}
 async function installProjectMcpBridge(projectDir) {
     const packageRoot = bundledPackageRoot();
     const destRoot = path.join(projectDir, '.nubase', 'mcp-bridge');
@@ -141,7 +195,18 @@ async function installProjectMcpBridge(projectDir) {
         entrypoint,
     };
 }
-async function installClaudeMcpConfig(projectDir, nubaseConfigPath, mcpCommand) {
+// Defaults: SQL execute + admin write ON, dangerous SQL OFF. Reads never need a flag.
+function buildPermissionEnv(options) {
+    const env = {};
+    if (options.allowSqlExecute ?? true)
+        env.NUBASE_ALLOW_SQL_EXECUTE = 'true';
+    if (options.allowAdminWrite ?? true)
+        env.NUBASE_ALLOW_ADMIN_WRITE = 'true';
+    if (options.allowDangerousSql ?? false)
+        env.NUBASE_ALLOW_DANGEROUS_SQL = 'true';
+    return env;
+}
+async function installClaudeMcpConfig(projectDir, nubaseConfigPath, mcpCommand, permissionEnv) {
     const mcpConfigPath = path.join(projectDir, '.mcp.json');
     const config = await readProjectMcpConfig(mcpConfigPath);
     config.mcpServers = {
@@ -153,17 +218,18 @@ async function installClaudeMcpConfig(projectDir, nubaseConfigPath, mcpCommand)
             env: {
                 NUBASE_AGENT_ID: 'claude-code',
                 NUBASE_CONFIG: nubaseConfigPath,
+                ...permissionEnv,
             },
         },
     };
     await writeFile(mcpConfigPath, `${JSON.stringify(config, null, 2)}\n`, 'utf8');
     return mcpConfigPath;
 }
-async function installCodexMcpConfig(projectDir, nubaseConfigPath, mcpCommand) {
+async function installCodexMcpConfig(projectDir, nubaseConfigPath, mcpCommand, permissionEnv) {
     const configPath = path.join(projectDir, '.codex', 'config.toml');
     await mkdir(path.dirname(configPath), { recursive: true });
     const existing = await readTextIfExists(configPath);
-    const block = codexMcpBlock(nubaseConfigPath, mcpCommand);
+    const block = codexMcpBlock(nubaseConfigPath, mcpCommand, permissionEnv);
     const next = upsertCodexMcpBlock(existing, block);
     await writeFile(configPath, next, 'utf8');
     return configPath;
@@ -188,9 +254,10 @@ async function readTextIfExists(filePath) {
         throw err;
     }
 }
-function codexMcpBlock(configPath, mcpCommand) {
+function codexMcpBlock(configPath, mcpCommand, permissionEnv) {
     const command = mcpCommand?.command ?? 'npx';
     const args = mcpCommand?.args ?? ['-y', 'nubase_cli@latest'];
+    const permissionLines = Object.entries(permissionEnv).map(([key, value]) => `${key} = "${escapeTomlString(value)}"`);
     return [
         '[mcp_servers.nubase]',
         'type = "stdio"',
@@ -201,6 +268,7 @@ function codexMcpBlock(configPath, mcpCommand) {
         '[mcp_servers.nubase.env]',
         'NUBASE_AGENT_ID = "codex"',
         `NUBASE_CONFIG = "${escapeTomlString(configPath)}"`,
+        ...permissionLines,
         '',
     ].join('\n');
 }

package/dist/src/mcp-stdio.js

@@ -47,25 +47,18 @@ export class McpStdioServer {
         }
     }
     readMessage() {
-        const headerEnd = this.buffer.indexOf('\r\n\r\n');
-        if (headerEnd === -1)
+        // MCP stdio transport frames messages as newline-delimited JSON
+        // (one JSON-RPC object per line, no embedded newlines).
+        const newlineIndex = this.buffer.indexOf('\n');
+        if (newlineIndex === -1)
             return null;
-        const header = this.buffer.subarray(0, headerEnd).toString('utf8');
-        const match = /Content-Length:\s*(\d+)/i.exec(header);
-        if (!match) {
-            throw new Error('Missing Content-Length header');
-        }
-        const length = Number(match[1]);
-        const bodyStart = headerEnd + 4;
-        const bodyEnd = bodyStart + length;
-        if (this.buffer.length < bodyEnd)
-            return null;
-        const body = this.buffer.subarray(bodyStart, bodyEnd).toString('utf8');
-        this.buffer = this.buffer.subarray(bodyEnd);
-        return JSON.parse(body);
+        const line = this.buffer.subarray(0, newlineIndex).toString('utf8').trim();
+        this.buffer = this.buffer.subarray(newlineIndex + 1);
+        if (!line)
+            return this.readMessage();
+        return JSON.parse(line);
     }
     write(message) {
-        const body = JSON.stringify(message);
-        stdout.write(`Content-Length: ${Buffer.byteLength(body, 'utf8')}\r\n\r\n${body}`);
+        stdout.write(`${JSON.stringify(message)}\n`);
     }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "nubase_cli",
-  "version": "0.1.7",
+  "version": "0.1.9",
   "private": false,
   "type": "module",
   "bin": {

package/skills/nubase/SKILL.md

@@ -79,8 +79,8 @@ Expected `.mcp.json` shape:
   "mcpServers": {
     "nubase": {
       "type": "stdio",
-      "command": "node",
-      "args": ["/absolute/project/path/.nubase/mcp-bridge/dist/src/index.js"],
+      "command": "npx",
+      "args": ["-y", "nubase_cli@latest"],
       "env": {
         "NUBASE_AGENT_ID": "claude-code",
         "NUBASE_CONFIG": "/absolute/project/path/.nubase/config.json"