protect-mcp 0.5.4 → 0.5.5

package/README.md

@@ -268,12 +268,30 @@ Free tier: 20,000 receipts/month. No credit card required.
 
 [scopeblind.com/pricing](https://scopeblind.com/pricing)
 
+## Interoperability
+
+The receipt format is independently implemented and verified across multiple systems:
+
+| Evidence | Detail |
+|----------|--------|
+| **4 independent implementations** | TypeScript (protect-mcp), Python (protect-mcp-adk), Rust (Cedar WASM), APS ProxyGateway |
+| **2 IETF Internet-Drafts** | [draft-farley-acta-signed-receipts-01](https://datatracker.ietf.org/doc/draft-farley-acta-signed-receipts/), [draft-pidlisnyi-aps-00](https://datatracker.ietf.org/doc/draft-pidlisnyi-aps/) |
+| **8 cross-engine receipts** | [Composition test](https://github.com/ScopeBlind/examples/tree/main/interop/composition-test): 2 engines, 1 verifier, all VALID |
+| **1 enterprise integration** | [Microsoft AGT PR #667](https://github.com/microsoft/agent-governance-toolkit/pull/667) merged |
+| **1 verifier, zero dependencies** | `npx @veritasacta/verify receipt.json --key <hex>` (Apache-2.0, offline) |
+
+Verify any receipt from any implementation:
+
+```bash
+npx @veritasacta/verify receipt.json --key <public-key-hex>
+# Exit 0 = valid, 1 = tampered, 2 = malformed
+```
+
 ## Standards & IP
 
-- **IETF Internet-Draft**: [draft-farley-acta-signed-receipts-01](https://datatracker.ietf.org/doc/draft-farley-acta-signed-receipts/) — Signed Decision Receipts for Machine-to-Machine Access Control
-- **Patent Status**: 4 Australian provisional patents pending (2025-2026) covering decision receipts with configurable disclosure, tool-calling gateway, agent manifests, and portable identity
-- **Verification**: Apache-2.0 — `npx @veritasacta/verify --self-test`
-- **Microsoft AGT Integration**: [PR #667](https://github.com/microsoft/agent-governance-toolkit/pull/667) — Cedar policy bridge for Agent Governance Toolkit
+- **IETF Internet-Draft**: [draft-farley-acta-signed-receipts-01](https://datatracker.ietf.org/doc/draft-farley-acta-signed-receipts/)
+- **Patent Status**: 4 Australian provisional patents pending (2025-2026)
+- **Cedar WASM**: [PR #64](https://github.com/cedar-policy/cedar-for-agents/pull/64) on cedar-for-agents (under review)
 
 ## What's New in v0.5.3
 
@@ -282,12 +300,62 @@ Free tier: 20,000 receipts/month. No credit card required.
 - Anonymous install telemetry (opt-out: `PROTECT_MCP_TELEMETRY=off`)
 - Improved Cedar WASM detection
 
+## Cybersecurity: Vulnerability Disclosure Receipts
+
+protect-mcp provides the infrastructure for receipt-signed vulnerability disclosure workflows. When AI security agents (Claude Code Security, Mythos, or similar) discover vulnerabilities, every step of the disclosure lifecycle can produce a signed, chain-linked receipt:
+
+```
+DISCOVER → DISCLOSE → PATCH → DEPLOY
+(Each step: Ed25519-signed, chain-linked, Cedar policy-bound)
+```
+
+Cedar policies govern what the scanning agent is allowed to do:
+- **CAN**: scan code, report findings internally
+- **CANNOT**: disclose externally or deploy patches without human approval
+- **MUST**: escalate critical findings to humans
+
+See the [security vulnerability disclosure example](https://github.com/ScopeBlind/examples/tree/main/security-vulnerability-disclosure) for a complete working implementation with Cedar policies and example receipt chains.
+
+Related: [Vulnerability Disclosure Receipt Design](https://github.com/scopeblind/scopeblind-gateway/issues/2)
+
 ## Examples
 
-See complete working examples at [github.com/ScopeBlind/examples](https://github.com/ScopeBlind/examples).
+See complete working examples at [github.com/ScopeBlind/examples](https://github.com/ScopeBlind/examples):
+- [Claude Code hooks](https://github.com/ScopeBlind/examples/tree/main/claude-code-hooks) — receipt signing for every tool call
+- [Security vulnerability disclosure](https://github.com/ScopeBlind/examples/tree/main/security-vulnerability-disclosure) — receipt-signed disclosure lifecycle with Cedar governance
+- [MCP server signing](https://github.com/ScopeBlind/examples/tree/main/mcp-server-signing) — Cedar WASM policy engine with audit bundles
+
+## ScopeBlind Dashboard
+
+protect-mcp works fully offline, forever, for free. For teams that want visibility across agents, ScopeBlind offers a hosted dashboard:
+
+```bash
+npx protect-mcp connect
+```
+
+| | Free | Pro | Enterprise |
+|---|---|---|---|
+| Receipts/month | 20,000 | Pay-as-you-go | Annual commit |
+| Price | $0 | $0.50 / 1K | $0.40 / 1K |
+| Receipt explorer | Yes | Yes | Yes |
+| Compliance reports | Yes | Yes | Yes |
+| SSO / SAML | - | - | Yes |
+| SLA | - | - | 99.9% |
+
+No signup required for free tier. No card upfront.
+
+[Dashboard](https://scopeblind.com) | [Docs](https://scopeblind.com/docs/protect-mcp) | [Pricing](https://scopeblind.com/pricing)
+
+## Telemetry
+
+protect-mcp sends a single anonymous install beacon on first run (package name, version, OS, Node version). No PII. Disable with:
+
+```bash
+PROTECT_MCP_TELEMETRY=off
+```
 
 ## License
 
 MIT — free to use, modify, distribute, and build upon without restriction.
 
-[scopeblind.com](https://scopeblind.com) · [npm](https://www.npmjs.com/package/protect-mcp) · [GitHub](https://github.com/scopeblind/scopeblind-gateway) · [IETF Draft](https://datatracker.ietf.org/doc/draft-farley-acta-signed-receipts/)
+Built by [ScopeBlind](https://scopeblind.com) | [npm](https://www.npmjs.com/package/protect-mcp) | [GitHub](https://github.com/scopeblind/scopeblind-gateway) | [IETF Draft](https://datatracker.ietf.org/doc/draft-farley-acta-signed-receipts/)

package/dist/{chunk-FAELTNS7.mjs → chunk-SPHLVRJ2.mjs}

@@ -696,48 +696,53 @@ async function startHookServer(options = {}) {
     }));
   });
   server.listen(port, "127.0.0.1", () => {
-    process.stderr.write(`
+    const w = (s) => process.stderr.write(s);
+    const pad = (s, n = 46) => s.padEnd(n);
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u250C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510
+    w(`  protect-mcp v0.5.4
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  protect-mcp Hook Server v0.5.3                \u2502
+    w(`  ScopeBlind \u2014 https://scopeblind.com
 `);
-    process.stderr.write(`[PROTECT_MCP] \u251C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2524
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Listening:  http://127.0.0.1:${String(port).padEnd(5)}             \u2502
+    w(`  Listening     http://127.0.0.1:${port}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Mode:       ${(enforce ? "enforce" : "shadow").padEnd(36)}\u2502
+    w(`  Mode          ${enforce ? "enforce" : "shadow"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Policy:     ${(cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none").padEnd(36)}\u2502
+    w(`  Policy        ${cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Signing:    ${(isSigningEnabled() ? "Ed25519 \u2713" : "disabled").padEnd(36)}\u2502
+    w(`  Signing       ${isSigningEnabled() ? "Ed25519" : "disabled"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Swarm:      ${(state.swarmContext.team_name ? `${state.swarmContext.team_name} (${state.swarmContext.agent_type})` : "standalone").padEnd(36)}\u2502
+    if (state.swarmContext.team_name) {
+      w(`  Swarm         ${state.swarmContext.team_name} (${state.swarmContext.agent_type})
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Sandbox:    ${detectSandboxState().padEnd(36)}\u2502
+    }
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518
+    w(`  POST /hook         Hook receiver
 `);
-    process.stderr.write(`
+    w(`  GET  /health       Health + signer info
 `);
-    process.stderr.write(`[PROTECT_MCP] Endpoints:
+    w(`  GET  /receipts     Signed receipts
 `);
-    process.stderr.write(`  POST /hook           \u2014 Claude Code hook receiver
+    w(`  GET  /suggestions  Cedar policy suggestions
 `);
-    process.stderr.write(`  GET  /health         \u2014 Health check + signer info
+    w(`
 `);
-    process.stderr.write(`  GET  /receipts       \u2014 Recent signed receipts
+    w(`  deny is authoritative \u2014 cannot be overridden.
 `);
-    process.stderr.write(`  GET  /suggestions    \u2014 Auto-generated Cedar policy suggestions
+    w(`
 `);
-    process.stderr.write(`  GET  /alerts         \u2014 Config tamper alerts
+    const hasSlug = process.env.SCOPEBLIND_SLUG || existsSync(join(process.cwd(), ".scopeblind"));
+    if (!hasSlug) {
+      w(`  Dashboard  npx protect-mcp connect
 `);
-    process.stderr.write(`
+      w(`             Free up to 20,000 receipts/month
 `);
-    process.stderr.write(`[PROTECT_MCP] deny decisions are AUTHORITATIVE \u2014 they cannot be overridden.
-`);
-    process.stderr.write(`
+      w(`
 `);
+    }
   });
   const shutdown = () => {
     process.stderr.write("\n[PROTECT_MCP] Shutting down hook server...\n");

package/dist/cli.js

@@ -5447,48 +5447,53 @@ async function startHookServer(options = {}) {
     }));
   });
   server.listen(port, "127.0.0.1", () => {
-    process.stderr.write(`
+    const w = (s) => process.stderr.write(s);
+    const pad = (s, n = 46) => s.padEnd(n);
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u250C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510
+    w(`  protect-mcp v0.5.4
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  protect-mcp Hook Server v0.5.3                \u2502
+    w(`  ScopeBlind \u2014 https://scopeblind.com
 `);
-    process.stderr.write(`[PROTECT_MCP] \u251C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2524
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Listening:  http://127.0.0.1:${String(port).padEnd(5)}             \u2502
+    w(`  Listening     http://127.0.0.1:${port}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Mode:       ${(enforce ? "enforce" : "shadow").padEnd(36)}\u2502
+    w(`  Mode          ${enforce ? "enforce" : "shadow"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Policy:     ${(cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none").padEnd(36)}\u2502
+    w(`  Policy        ${cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Signing:    ${(isSigningEnabled() ? "Ed25519 \u2713" : "disabled").padEnd(36)}\u2502
+    w(`  Signing       ${isSigningEnabled() ? "Ed25519" : "disabled"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Swarm:      ${(state.swarmContext.team_name ? `${state.swarmContext.team_name} (${state.swarmContext.agent_type})` : "standalone").padEnd(36)}\u2502
+    if (state.swarmContext.team_name) {
+      w(`  Swarm         ${state.swarmContext.team_name} (${state.swarmContext.agent_type})
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Sandbox:    ${detectSandboxState().padEnd(36)}\u2502
+    }
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518
+    w(`  POST /hook         Hook receiver
 `);
-    process.stderr.write(`
+    w(`  GET  /health       Health + signer info
 `);
-    process.stderr.write(`[PROTECT_MCP] Endpoints:
+    w(`  GET  /receipts     Signed receipts
 `);
-    process.stderr.write(`  POST /hook           \u2014 Claude Code hook receiver
+    w(`  GET  /suggestions  Cedar policy suggestions
 `);
-    process.stderr.write(`  GET  /health         \u2014 Health check + signer info
+    w(`
 `);
-    process.stderr.write(`  GET  /receipts       \u2014 Recent signed receipts
+    w(`  deny is authoritative \u2014 cannot be overridden.
 `);
-    process.stderr.write(`  GET  /suggestions    \u2014 Auto-generated Cedar policy suggestions
+    w(`
 `);
-    process.stderr.write(`  GET  /alerts         \u2014 Config tamper alerts
+    const hasSlug = process.env.SCOPEBLIND_SLUG || (0, import_node_fs8.existsSync)((0, import_node_path5.join)(process.cwd(), ".scopeblind"));
+    if (!hasSlug) {
+      w(`  Dashboard  npx protect-mcp connect
 `);
-    process.stderr.write(`
+      w(`             Free up to 20,000 receipts/month
 `);
-    process.stderr.write(`[PROTECT_MCP] deny decisions are AUTHORITATIVE \u2014 they cannot be overridden.
-`);
-    process.stderr.write(`
+      w(`
 `);
+    }
   });
   const shutdown = () => {
     process.stderr.write("\n[PROTECT_MCP] Shutting down hook server...\n");
@@ -6125,6 +6130,12 @@ Examples:
   protect-mcp status
   protect-mcp bundle --output audit.json
 
+Dashboard:
+  npx protect-mcp connect        Create a free ScopeBlind dashboard
+                                  Free up to 20,000 receipts/month
+
+  https://scopeblind.com          Docs, pricing, enterprise
+
 `);
 }
 function parseArgs(argv) {
@@ -7312,7 +7323,7 @@ async function sendInstallTelemetry() {
     }
     writeFileSync2(markerFile, String(Date.now()), "utf-8");
     process.stderr.write(
-      "[protect-mcp] Anonymous install telemetry sent (disable: PROTECT_MCP_TELEMETRY=off)\n"
+      "[protect-mcp] Thanks for installing! Anonymous telemetry sent (disable: PROTECT_MCP_TELEMETRY=off)\n[protect-mcp] Free dashboard: npx protect-mcp connect | https://scopeblind.com\n"
     );
   } catch {
   }

package/dist/cli.mjs

@@ -75,6 +75,12 @@ Examples:
   protect-mcp status
   protect-mcp bundle --output audit.json
 
+Dashboard:
+  npx protect-mcp connect        Create a free ScopeBlind dashboard
+                                  Free up to 20,000 receipts/month
+
+  https://scopeblind.com          Docs, pricing, enterprise
+
 `);
 }
 function parseArgs(argv) {
@@ -1262,7 +1268,7 @@ async function sendInstallTelemetry() {
     }
     writeFileSync(markerFile, String(Date.now()), "utf-8");
     process.stderr.write(
-      "[protect-mcp] Anonymous install telemetry sent (disable: PROTECT_MCP_TELEMETRY=off)\n"
+      "[protect-mcp] Thanks for installing! Anonymous telemetry sent (disable: PROTECT_MCP_TELEMETRY=off)\n[protect-mcp] Free dashboard: npx protect-mcp connect | https://scopeblind.com\n"
     );
   } catch {
   }

package/dist/hook-server.js

@@ -1097,48 +1097,53 @@ async function startHookServer(options = {}) {
     }));
   });
   server.listen(port, "127.0.0.1", () => {
-    process.stderr.write(`
+    const w = (s) => process.stderr.write(s);
+    const pad = (s, n = 46) => s.padEnd(n);
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u250C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510
+    w(`  protect-mcp v0.5.4
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  protect-mcp Hook Server v0.5.3                \u2502
+    w(`  ScopeBlind \u2014 https://scopeblind.com
 `);
-    process.stderr.write(`[PROTECT_MCP] \u251C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2524
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Listening:  http://127.0.0.1:${String(port).padEnd(5)}             \u2502
+    w(`  Listening     http://127.0.0.1:${port}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Mode:       ${(enforce ? "enforce" : "shadow").padEnd(36)}\u2502
+    w(`  Mode          ${enforce ? "enforce" : "shadow"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Policy:     ${(cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none").padEnd(36)}\u2502
+    w(`  Policy        ${cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Signing:    ${(isSigningEnabled() ? "Ed25519 \u2713" : "disabled").padEnd(36)}\u2502
+    w(`  Signing       ${isSigningEnabled() ? "Ed25519" : "disabled"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Swarm:      ${(state.swarmContext.team_name ? `${state.swarmContext.team_name} (${state.swarmContext.agent_type})` : "standalone").padEnd(36)}\u2502
+    if (state.swarmContext.team_name) {
+      w(`  Swarm         ${state.swarmContext.team_name} (${state.swarmContext.agent_type})
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Sandbox:    ${detectSandboxState().padEnd(36)}\u2502
+    }
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518
+    w(`  POST /hook         Hook receiver
 `);
-    process.stderr.write(`
+    w(`  GET  /health       Health + signer info
 `);
-    process.stderr.write(`[PROTECT_MCP] Endpoints:
+    w(`  GET  /receipts     Signed receipts
 `);
-    process.stderr.write(`  POST /hook           \u2014 Claude Code hook receiver
+    w(`  GET  /suggestions  Cedar policy suggestions
 `);
-    process.stderr.write(`  GET  /health         \u2014 Health check + signer info
+    w(`
 `);
-    process.stderr.write(`  GET  /receipts       \u2014 Recent signed receipts
+    w(`  deny is authoritative \u2014 cannot be overridden.
 `);
-    process.stderr.write(`  GET  /suggestions    \u2014 Auto-generated Cedar policy suggestions
+    w(`
 `);
-    process.stderr.write(`  GET  /alerts         \u2014 Config tamper alerts
+    const hasSlug = process.env.SCOPEBLIND_SLUG || (0, import_node_fs5.existsSync)((0, import_node_path3.join)(process.cwd(), ".scopeblind"));
+    if (!hasSlug) {
+      w(`  Dashboard  npx protect-mcp connect
 `);
-    process.stderr.write(`
+      w(`             Free up to 20,000 receipts/month
 `);
-    process.stderr.write(`[PROTECT_MCP] deny decisions are AUTHORITATIVE \u2014 they cannot be overridden.
-`);
-    process.stderr.write(`
+      w(`
 `);
+    }
   });
   const shutdown = () => {
     process.stderr.write("\n[PROTECT_MCP] Shutting down hook server...\n");

package/dist/hook-server.mjs

@@ -1,6 +1,6 @@
 import {
   startHookServer
-} from "./chunk-FAELTNS7.mjs";
+} from "./chunk-SPHLVRJ2.mjs";
 import "./chunk-YTBC72JJ.mjs";
 import "./chunk-PQJP2ZCI.mjs";
 export {

package/dist/index.js

@@ -37962,48 +37962,53 @@ async function startHookServer(options = {}) {
     }));
   });
   server.listen(port, "127.0.0.1", () => {
-    process.stderr.write(`
+    const w = (s) => process.stderr.write(s);
+    const pad = (s, n = 46) => s.padEnd(n);
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u250C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2510
+    w(`  protect-mcp v0.5.4
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  protect-mcp Hook Server v0.5.3                \u2502
+    w(`  ScopeBlind \u2014 https://scopeblind.com
 `);
-    process.stderr.write(`[PROTECT_MCP] \u251C\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2524
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Listening:  http://127.0.0.1:${String(port).padEnd(5)}             \u2502
+    w(`  Listening     http://127.0.0.1:${port}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Mode:       ${(enforce ? "enforce" : "shadow").padEnd(36)}\u2502
+    w(`  Mode          ${enforce ? "enforce" : "shadow"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Policy:     ${(cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none").padEnd(36)}\u2502
+    w(`  Policy        ${cedarPolicies ? `Cedar (${cedarPolicies.fileCount} files)` : jsonPolicy ? "JSON" : "none"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Signing:    ${(isSigningEnabled() ? "Ed25519 \u2713" : "disabled").padEnd(36)}\u2502
+    w(`  Signing       ${isSigningEnabled() ? "Ed25519" : "disabled"}
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Swarm:      ${(state.swarmContext.team_name ? `${state.swarmContext.team_name} (${state.swarmContext.agent_type})` : "standalone").padEnd(36)}\u2502
+    if (state.swarmContext.team_name) {
+      w(`  Swarm         ${state.swarmContext.team_name} (${state.swarmContext.agent_type})
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2502  Sandbox:    ${detectSandboxState().padEnd(36)}\u2502
+    }
+    w(`
 `);
-    process.stderr.write(`[PROTECT_MCP] \u2514\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2518
+    w(`  POST /hook         Hook receiver
 `);
-    process.stderr.write(`
+    w(`  GET  /health       Health + signer info
 `);
-    process.stderr.write(`[PROTECT_MCP] Endpoints:
+    w(`  GET  /receipts     Signed receipts
 `);
-    process.stderr.write(`  POST /hook           \u2014 Claude Code hook receiver
+    w(`  GET  /suggestions  Cedar policy suggestions
 `);
-    process.stderr.write(`  GET  /health         \u2014 Health check + signer info
+    w(`
 `);
-    process.stderr.write(`  GET  /receipts       \u2014 Recent signed receipts
+    w(`  deny is authoritative \u2014 cannot be overridden.
 `);
-    process.stderr.write(`  GET  /suggestions    \u2014 Auto-generated Cedar policy suggestions
+    w(`
 `);
-    process.stderr.write(`  GET  /alerts         \u2014 Config tamper alerts
+    const hasSlug = process.env.SCOPEBLIND_SLUG || (0, import_node_fs9.existsSync)((0, import_node_path5.join)(process.cwd(), ".scopeblind"));
+    if (!hasSlug) {
+      w(`  Dashboard  npx protect-mcp connect
 `);
-    process.stderr.write(`
+      w(`             Free up to 20,000 receipts/month
 `);
-    process.stderr.write(`[PROTECT_MCP] deny decisions are AUTHORITATIVE \u2014 they cannot be overridden.
-`);
-    process.stderr.write(`
+      w(`
 `);
+    }
   });
   const shutdown = () => {
     process.stderr.write("\n[PROTECT_MCP] Shutting down hook server...\n");

package/dist/index.mjs

@@ -30,7 +30,7 @@ import {
 } from "./chunk-NMZPXXL3.mjs";
 import {
   startHookServer
-} from "./chunk-FAELTNS7.mjs";
+} from "./chunk-SPHLVRJ2.mjs";
 import {
   checkRateLimit,
   evaluateCedar,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "protect-mcp",
-  "version": "0.5.4",
+  "version": "0.5.5",
   "mcpName": "com.scopeblind/protect-mcp",
   "description": "Enterprise security gateway for MCP servers and Claude Code hooks. Cedar policies, Ed25519-signed receipts, swarm tracking, and tamper detection. Shadow or enforce mode.",
   "main": "dist/index.js",