npm - nubase_cli - Versions diffs - 0.1.8 → 0.1.9 - Mend

nubase_cli 0.1.8 → 0.1.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md +12 -0
package/dist/src/index.js +1 -1
package/dist/src/install-skills.d.ts +6 -0
package/dist/src/install-skills.js +47 -7
package/package.json +1 -1

package/README.md CHANGED Viewed

@@ -126,6 +126,18 @@ The `npx` spec is pinned to the installed CLI version for reproducibility. Pass
 Use `--mcp both` to also write project `.codex/config.toml` for Codex. Use `--no-mcp` to skip MCP config.
+### Permissions
+The MCP config's `env` block gates what the agent may do. Reads are always allowed; these flags gate write/execute tools:
+| Flag | Default | Unlocks |
+| --- | --- | --- |
+| `NUBASE_ALLOW_SQL_EXECUTE` | **on** | `sql_execute` (run SQL) |
+| `NUBASE_ALLOW_ADMIN_WRITE` | **on** | create/delete buckets & users, issue/revoke gateway keys |
+| `NUBASE_ALLOW_DANGEROUS_SQL` | **off** | SQL classified DANGEROUS (DROP/TRUNCATE/...) |
+`install-skills` writes SQL-execute and admin-write into the config by default; dangerous SQL stays off. Opt out per install with `--no-sql-execute` / `--no-admin-write`, or opt into dangerous SQL with `--allow-dangerous-sql`. You can also edit the flags directly in `.mcp.json` (or `.codex/config.toml`) afterwards.
 Installed structure:
 - `nubase/SKILL.md`

package/dist/src/index.js CHANGED Viewed

@@ -6,7 +6,7 @@ import { installSkills, parseInstallArgs } from './install-skills.js';
 import { McpStdioServer } from './mcp-stdio.js';
 import { NubaseClient } from './nubase-client.js';
 import { callTool, TOOLS } from './tools.js';
-const CLI_VERSION = '0.1.8';
+const CLI_VERSION = '0.1.9';
 if (process.argv[2] === 'install-skills') {
     const options = parseInstallArgs(process.argv.slice(3));
     const installed = await installSkills(options);

package/dist/src/install-skills.d.ts CHANGED Viewed

@@ -11,6 +11,9 @@ export interface InstallSkillsOptions {
     skillsScope?: SkillInstallScope;
     mcp?: McpInstallTarget;
     mcpDelivery?: McpDelivery;
+    allowSqlExecute?: boolean;
+    allowAdminWrite?: boolean;
+    allowDangerousSql?: boolean;
     configPath?: string;
     homeDir?: string;
 }
@@ -24,5 +27,8 @@ export declare function parseInstallArgs(argv: string[]): {
     skillsScope: SkillInstallScope;
     mcp: McpInstallTarget;
     mcpDelivery: McpDelivery;
+    allowSqlExecute: boolean;
+    allowAdminWrite: boolean;
+    allowDangerousSql: boolean;
     configPath: string;
 };

package/dist/src/install-skills.js CHANGED Viewed

@@ -30,11 +30,12 @@ export async function installSkills(options) {
             mcpCommand = await npxMcpCommand();
         }
     }
+    const permissionEnv = buildPermissionEnv(options);
     if (mcpTargets.includes('claude')) {
-        installed.push(await installClaudeMcpConfig(options.projectDir, configPath, mcpCommand));
+        installed.push(await installClaudeMcpConfig(options.projectDir, configPath, mcpCommand, permissionEnv));
     }
     if (mcpTargets.includes('codex')) {
-        installed.push(await installCodexMcpConfig(options.projectDir, configPath, mcpCommand));
+        installed.push(await installCodexMcpConfig(options.projectDir, configPath, mcpCommand, permissionEnv));
     }
     installed.push(await ensureProjectGitignore(options.projectDir));
     return installed;
@@ -47,6 +48,9 @@ export function parseInstallArgs(argv) {
     let skillsScope = 'user';
     let mcp = 'claude';
     let mcpDelivery = 'npx';
+    let allowSqlExecute = true;
+    let allowAdminWrite = true;
+    let allowDangerousSql = false;
     let configPath;
     const authArgs = ['--prompt-only'];
     for (let i = 0; i < argv.length; i += 1) {
@@ -97,6 +101,15 @@ export function parseInstallArgs(argv) {
             }
             mcpDelivery = value;
         }
+        else if (arg === '--no-sql-execute') {
+            allowSqlExecute = false;
+        }
+        else if (arg === '--no-admin-write') {
+            allowAdminWrite = false;
+        }
+        else if (arg === '--allow-dangerous-sql') {
+            allowDangerousSql = true;
+        }
         else if (arg === '--config') {
             const value = argv[++i];
             if (!value)
@@ -115,7 +128,20 @@ export function parseInstallArgs(argv) {
     }
     configPath = configPath ?? projectConfigPath(projectDir);
     authArgs.push('--config', configPath);
-    return { target, projectDir, authorize, authArgs, skills, skillsScope, mcp, mcpDelivery, configPath };
+    return {
+        target,
+        projectDir,
+        authorize,
+        authArgs,
+        skills,
+        skillsScope,
+        mcp,
+        mcpDelivery,
+        allowSqlExecute,
+        allowAdminWrite,
+        allowDangerousSql,
+        configPath,
+    };
 }
 function bundledSkillDir() {
     return path.join(bundledPackageRoot(), 'skills', 'nubase');
@@ -169,7 +195,18 @@ async function installProjectMcpBridge(projectDir) {
         entrypoint,
     };
 }
-async function installClaudeMcpConfig(projectDir, nubaseConfigPath, mcpCommand) {
+// Defaults: SQL execute + admin write ON, dangerous SQL OFF. Reads never need a flag.
+function buildPermissionEnv(options) {
+    const env = {};
+    if (options.allowSqlExecute ?? true)
+        env.NUBASE_ALLOW_SQL_EXECUTE = 'true';
+    if (options.allowAdminWrite ?? true)
+        env.NUBASE_ALLOW_ADMIN_WRITE = 'true';
+    if (options.allowDangerousSql ?? false)
+        env.NUBASE_ALLOW_DANGEROUS_SQL = 'true';
+    return env;
+}
+async function installClaudeMcpConfig(projectDir, nubaseConfigPath, mcpCommand, permissionEnv) {
     const mcpConfigPath = path.join(projectDir, '.mcp.json');
     const config = await readProjectMcpConfig(mcpConfigPath);
     config.mcpServers = {
@@ -181,17 +218,18 @@ async function installClaudeMcpConfig(projectDir, nubaseConfigPath, mcpCommand)
             env: {
                 NUBASE_AGENT_ID: 'claude-code',
                 NUBASE_CONFIG: nubaseConfigPath,
+                ...permissionEnv,
             },
         },
     };
     await writeFile(mcpConfigPath, `${JSON.stringify(config, null, 2)}\n`, 'utf8');
     return mcpConfigPath;
 }
-async function installCodexMcpConfig(projectDir, nubaseConfigPath, mcpCommand) {
+async function installCodexMcpConfig(projectDir, nubaseConfigPath, mcpCommand, permissionEnv) {
     const configPath = path.join(projectDir, '.codex', 'config.toml');
     await mkdir(path.dirname(configPath), { recursive: true });
     const existing = await readTextIfExists(configPath);
-    const block = codexMcpBlock(nubaseConfigPath, mcpCommand);
+    const block = codexMcpBlock(nubaseConfigPath, mcpCommand, permissionEnv);
     const next = upsertCodexMcpBlock(existing, block);
     await writeFile(configPath, next, 'utf8');
     return configPath;
@@ -216,9 +254,10 @@ async function readTextIfExists(filePath) {
         throw err;
     }
 }
-function codexMcpBlock(configPath, mcpCommand) {
+function codexMcpBlock(configPath, mcpCommand, permissionEnv) {
     const command = mcpCommand?.command ?? 'npx';
     const args = mcpCommand?.args ?? ['-y', 'nubase_cli@latest'];
+    const permissionLines = Object.entries(permissionEnv).map(([key, value]) => `${key} = "${escapeTomlString(value)}"`);
     return [
         '[mcp_servers.nubase]',
         'type = "stdio"',
@@ -229,6 +268,7 @@ function codexMcpBlock(configPath, mcpCommand) {
         '[mcp_servers.nubase.env]',
         'NUBASE_AGENT_ID = "codex"',
         `NUBASE_CONFIG = "${escapeTomlString(configPath)}"`,
+        ...permissionLines,
         '',
     ].join('\n');
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "nubase_cli",
-  "version": "0.1.8",
+  "version": "0.1.9",
   "private": false,
   "type": "module",
   "bin": {