protect-mcp 0.2.2 → 0.3.1

package/README.md

@@ -7,6 +7,9 @@ Security gateway for MCP servers. Shadow-mode logs by default, per-tool policies
 ## Quick Start
 
 ```bash
+# Wrap an existing OpenClaw / MCP config into a usable pack
+npx @scopeblind/passport wrap --runtime openclaw --config ./openclaw.json --policy email-safe
+
 # Shadow mode — log every tool call, enforce nothing
 npx protect-mcp -- node my-server.js
 
@@ -18,6 +21,9 @@ npx protect-mcp --policy protect-mcp.json -- node my-server.js
 
 # Enforce mode
 npx protect-mcp --policy protect-mcp.json --enforce -- node my-server.js
+
+# Export an offline-verifiable audit bundle
+npx protect-mcp bundle --output audit.json
 ```
 
 ## What It Does
@@ -39,7 +45,7 @@ All other MCP messages (`initialize`, `tools/list`, notifications) pass through
 
 - **Per-tool policies** — block destructive tools, rate-limit expensive ones, and attach minimum-tier requirements
 - **Structured decision logs** — every decision is emitted to `stderr` with `[PROTECT_MCP]`
-- **Optional local signed receipts** — generated when you run with a policy containing `signing.key_path`
+- **Optional local signed receipts** — generated when you run with a policy containing `signing.key_path`, persisted to `.protect-mcp-receipts.jsonl`, and exposed at `http://127.0.0.1:9876/receipts`
 - **Offline verification** — verify receipts or bundles with `npx @veritasacta/verify`
 - **No account required** — local keys, local policy, local process
 
@@ -123,6 +129,10 @@ protect-mcp init
 
 Commands:
   init              Generate Ed25519 keypair + config template
+  status            Show decision stats and local passport identity
+  digest            Generate a local human-readable summary
+  receipts          Show recent persisted signed receipts
+  bundle            Export an offline-verifiable audit bundle
 
 Options:
   --policy <path>   Policy/config JSON file

package/dist/bundle-TXOTFJIJ.mjs

@@ -0,0 +1,8 @@
+import {
+  collectSignedReceipts,
+  createAuditBundle
+} from "./chunk-5JXFV37Y.mjs";
+export {
+  collectSignedReceipts,
+  createAuditBundle
+};

package/dist/chunk-5JXFV37Y.mjs

@@ -0,0 +1,53 @@
+// src/bundle.ts
+function createAuditBundle(opts) {
+  const receipts = opts.receipts.filter(
+    (r) => r && typeof r === "object" && typeof r.signature === "string"
+  );
+  if (receipts.length === 0) {
+    throw new Error("Audit bundle requires at least one signed receipt");
+  }
+  const keyMap = /* @__PURE__ */ new Map();
+  for (const key of opts.signingKeys) {
+    if (!keyMap.has(key.kid)) {
+      keyMap.set(key.kid, key);
+    }
+  }
+  let timeRange = opts.timeRange || null;
+  if (!timeRange) {
+    const timestamps = receipts.map((r) => r.issued_at || r.timestamp).filter(Boolean).sort();
+    if (timestamps.length > 0) {
+      timeRange = {
+        from: timestamps[0],
+        to: timestamps[timestamps.length - 1]
+      };
+    }
+  }
+  return {
+    format: "scopeblind:audit-bundle",
+    version: 1,
+    exported_at: (/* @__PURE__ */ new Date()).toISOString(),
+    tenant: opts.tenant,
+    time_range: timeRange,
+    receipts,
+    anchors: opts.anchors || [],
+    verification: {
+      algorithm: "ed25519",
+      signing_keys: Array.from(keyMap.values()),
+      instructions: `Verify each receipt by: (1) remove the "signature" field, (2) canonicalize the remaining object with JCS (sorted keys at every level), (3) encode as UTF-8 bytes, (4) verify the Ed25519 signature using the signing key matching the receipt's "kid" field. CLI: npx @veritasacta/verify bundle.json --bundle`
+    }
+  };
+}
+function collectSignedReceipts(logs) {
+  return logs.filter((log) => log.v === 2).map((log) => {
+    const logRecord = log;
+    if (logRecord.receipt) {
+      return logRecord.receipt;
+    }
+    return logRecord;
+  }).filter((r) => typeof r.signature === "string");
+}
+
+export {
+  createAuditBundle,
+  collectSignedReceipts
+};