policylayer 0.1.4 → 0.1.6

package/README.md

@@ -0,0 +1,89 @@
+# policylayer
+
+Scan your MCP config. See what your AI agent can do. Get a shareable report.
+
+## Quick start
+
+```bash
+npx -y policylayer
+```
+
+That's it. The CLI finds your MCP config, live-scans each server, classifies every tool, and prints a report URL.
+
+## What it does
+
+1. **Finds your config** -- checks `.mcp.json`, `~/.claude.json`, Claude Desktop, Cursor, VS Code, Windsurf, and Codex configs automatically
+2. **Live-scans servers** -- spawns each MCP server, performs the JSON-RPC handshake, and discovers every tool with its full schema
+3. **Classifies tools** -- checks against the PolicyLayer database of 2,500+ classified tools. Unknown tools are classified locally using schema analysis, blast radius detection, and verb matching
+4. **Generates a policy YAML** -- suggested default rules for every tool, ready to use with [Intercept](https://github.com/policylayer/intercept)
+5. **Prints a report URL** -- permanent, shareable, no login required
+6. **Contributes back** -- live-scanned tool data is contributed to the database so future scans are faster for everyone
+
+## Commands
+
+```bash
+npx -y policylayer
+```
+
+**Options:**
+
+| Flag | Description |
+|------|-------------|
+| `-d, --dir <path>` | Directory to scan for config files (default: cwd) |
+| `-o, --output <path>` | Output path for policy YAML (default: `policylayer.yaml`) |
+| `--no-live` | Skip live scanning, classify from config only |
+| `--no-report` | Skip submitting report to PolicyLayer |
+| `--timeout <ms>` | Timeout per server in milliseconds (default: 30000) |
+| `--json` | Output results as JSON |
+
+### Examples
+
+```bash
+# Auto-detect config and scan
+npx -y policylayer
+
+# Scan a specific directory
+npx -y policylayer -d ~/projects/my-app
+
+# Skip live scanning (faster, less detailed)
+npx -y policylayer --no-live
+
+# Output as JSON for piping
+npx -y policylayer --json
+
+# Custom policy output path
+npx -y policylayer -o my-policy.yaml
+```
+
+## Config detection
+
+The CLI searches these paths and uses all configs found:
+
+| Client | Path |
+|--------|------|
+| Claude Code (project) | `.mcp.json` |
+| Claude Code (user) | `~/.claude.json` |
+| Claude Desktop | `~/Library/Application Support/Claude/claude_desktop_config.json` |
+| Cursor | `.cursor/mcp.json` |
+| VS Code | `.vscode/settings.json` |
+| Windsurf | `~/.codeium/windsurf/mcp_config.json` |
+| Codex (project) | `.codex/config.toml` |
+| Codex (user) | `~/.codex/config.toml` |
+
+## Privacy
+
+The CLI **never sends** your raw config. Before anything leaves your machine:
+
+- Environment variables are stripped
+- Auth tokens are removed
+- Only server names, package identifiers, and tool schemas are sent
+- Live-scanned tool data (names, descriptions, schemas) is contributed to improve the database
+
+Use `--no-report` to skip sending anything.
+
+## Links
+
+- [Example report](https://policylayer.com/scan/report/65545482-5d1d-472f-9fca-472ff1181d0d)
+- [Scan your config online](https://policylayer.com/scan)
+- [Policy library](https://policylayer.com/policies)
+- [Intercept](https://github.com/policylayer/intercept) -- enforce limits on every MCP tool call

package/dist/index.js

@@ -593,7 +593,7 @@ var require_dist = __commonJS({
 
 // src/index.ts
 import { Command } from "commander";
-import { join as join2 } from "path";
+import { join as join3 } from "path";
 
 // src/discover.ts
 import { existsSync, readFileSync } from "fs";
@@ -803,62 +803,84 @@ function classifyLocally(serverName, pkg, tools) {
 }
 
 // src/policy.ts
-import { writeFileSync } from "fs";
-function generatePolicyYaml(servers) {
-  let yaml = 'version: "1"\ndefault: deny\n\ntools:\n';
-  for (const server of servers) {
-    yaml += `  # ${server.name} (${server.tools.length} tools)
-`;
-    for (const tool of server.tools) {
-      switch (tool.category) {
-        case "Read":
-          yaml += `  ${tool.name}:
+import { writeFileSync, mkdirSync } from "fs";
+import { join as join2 } from "path";
+function toolRules(tool) {
+  switch (tool.category) {
+    case "Read":
+      return `  ${tool.name}:
     rules:
       - action: allow
         rate_limit: 60/minute
 
 `;
-          break;
-        case "Write":
-        case "Execute":
-          yaml += `  ${tool.name}:
+    case "Write":
+    case "Execute":
+      return `  ${tool.name}:
     rules:
       - action: allow
         rate_limit: 10/hour
 
 `;
-          break;
-        case "Financial":
-          yaml += `  ${tool.name}:
+    case "Financial":
+      return `  ${tool.name}:
     rules:
       - action: deny
         on_deny: "Financial operation blocked by policy"
 
 `;
-          break;
-        case "Destructive":
-          yaml += `  ${tool.name}:
+    case "Destructive":
+      return `  ${tool.name}:
     rules:
       - action: deny
         on_deny: "Destructive operation blocked by policy"
 
 `;
-          break;
-        default:
-          yaml += `  ${tool.name}:
+    default:
+      return `  ${tool.name}:
     rules:
       - action: allow
         rate_limit: 30/minute
 
 `;
-      }
+  }
+}
+function generatePolicyYaml(servers) {
+  let yaml = 'version: "1"\ndefault: deny\n\ntools:\n';
+  for (const server of servers) {
+    yaml += `  # ${server.name} (${server.tools.length} tools)
+`;
+    for (const tool of server.tools) {
+      yaml += toolRules(tool);
     }
   }
   return yaml.trim();
 }
-function writePolicyFile(path, servers) {
-  const yaml = generatePolicyYaml(servers);
-  writeFileSync(path, yaml + "\n");
+function serverSlug(server) {
+  return server.package.replace(/^@/, "").replace(/\//g, "-").replace(/[^a-z0-9-]/gi, "-").replace(/-+/g, "-").replace(/^-|-$/g, "").toLowerCase();
+}
+function generateServerYaml(server) {
+  let yaml = `version: "1"
+default: deny
+
+# ${server.name} (${server.package})
+tools:
+`;
+  for (const tool of server.tools) {
+    yaml += toolRules(tool);
+  }
+  return yaml.trim();
+}
+function writePolicyFiles(dir, servers) {
+  mkdirSync(dir, { recursive: true });
+  const written = [];
+  for (const server of servers) {
+    const filename = `${serverSlug(server)}.yaml`;
+    const filepath = join2(dir, filename);
+    writeFileSync(filepath, generateServerYaml(server) + "\n");
+    written.push(filepath);
+  }
+  return written;
 }
 
 // src/report.ts
@@ -906,14 +928,19 @@ async function submitReport(servers, policy) {
       }),
       signal: AbortSignal.timeout(1e4)
     });
-    if (!res.ok) return null;
+    if (!res.ok) {
+      const text = await res.text().catch(() => "");
+      console.error(`  Report submission failed: ${res.status} ${text.slice(0, 200)}`);
+      return null;
+    }
     const liveServers = servers.filter((s) => s.source === "local" && s.tools.length > 0);
     if (liveServers.length > 0) {
       contributeTools(liveServers).catch(() => {
       });
     }
     return await res.json();
-  } catch {
+  } catch (err) {
+    console.error(`  Report submission error: ${err.message}`);
     return null;
   }
 }
@@ -937,7 +964,20 @@ async function contributeTools(servers) {
 
 // src/index.ts
 var program = new Command();
-program.name("policylayer").description("Scan your MCP servers for security risks").version("0.1.0").option("-d, --dir <path>", "directory to scan for config files", process.cwd()).option("-o, --output <path>", "output path for policy YAML", "policylayer.yaml").option("--no-live", "skip live scanning, classify from config only").option("--no-report", "skip submitting report to PolicyLayer").option("--timeout <ms>", "timeout per server in milliseconds", "30000").option("--json", "output results as JSON").action(run);
+var scanOpts = [
+  ["-d, --dir <path>", "directory to scan for config files", process.cwd()],
+  ["-o, --output <path>", "output directory for per-server policy files", "policies"],
+  ["--no-live", "skip live scanning, classify from config only"],
+  ["--no-report", "skip submitting report to PolicyLayer"],
+  ["--timeout <ms>", "timeout per server in milliseconds", "30000"],
+  ["--json", "output results as JSON"]
+];
+program.name("policylayer").description("Scan your MCP servers for security risks").version("0.1.5");
+for (const opt of scanOpts) program.option(...opt);
+program.action(run);
+var scanCmd = program.command("scan").description("Scan your MCP servers for security risks");
+for (const opt of scanOpts) scanCmd.option(...opt);
+scanCmd.action(run);
 async function run(opts) {
   const cwd = opts.dir;
   const timeoutMs = parseInt(opts.timeout, 10);
@@ -1043,8 +1083,8 @@ async function run(opts) {
     process.exit(0);
   }
   const policyYaml = generatePolicyYaml(classified);
-  const outputPath = join2(cwd, opts.output);
-  writePolicyFile(outputPath, classified);
+  const outputDir = join3(cwd, opts.output);
+  const perServerFiles = writePolicyFiles(outputDir, classified);
   let reportResult = null;
   if (opts.report) {
     reportResult = await submitReport(classified, policyYaml);
@@ -1061,7 +1101,8 @@ async function run(opts) {
       servers: classified.length,
       tools: totalTools,
       categories,
-      policyFile: outputPath,
+      policyDir: outputDir,
+      policyFiles: perServerFiles,
       reportUrl: reportResult?.url || null,
       reportId: reportResult?.id || null,
       results: classified
@@ -1073,7 +1114,7 @@ async function run(opts) {
     console.log(`  Tools:    ${totalTools}`);
     console.log(`  Categories: ${Object.entries(categories).map(([k, v]) => `${k}(${v})`).join(" ")}`);
     console.log();
-    console.log(`  Policy:   ${outputPath}`);
+    console.log(`  Policies: ${perServerFiles.length} files in ${opts.output}/`);
     if (reportResult) {
       console.log(`  Report:   ${reportResult.url}`);
     }

package/package.json

@@ -1,13 +1,14 @@
 {
   "name": "policylayer",
-  "version": "0.1.4",
+  "version": "0.1.6",
   "type": "module",
   "description": "Scan your MCP servers for security risks — live tool discovery + classification + shareable report",
   "bin": {
     "policylayer": "./dist/index.js"
   },
   "files": [
-    "dist"
+    "dist",
+    "README.md"
   ],
   "engines": {
     "node": ">=20"