security-mcp 1.0.4 → 1.1.0

package/defaults/evidence-map.json

@@ -122,5 +122,199 @@
     "src/**/tool-router*.ts",
     "src/**/tool*.ts",
     "src/**/agent*.ts"
+  ],
+  "mfa_enforced": [
+    "src/**/mfa*.ts",
+    "src/**/mfa*.js",
+    "src/**/totp*.ts",
+    "src/**/webauthn*.ts",
+    "src/**/passkey*.ts",
+    "src/**/two-factor*.ts",
+    "src/**/2fa*.ts",
+    "infra/**",
+    "terraform/**",
+    "k8s/**"
+  ],
+  "audit_logging_configured": [
+    "src/**/audit*.ts",
+    "src/**/audit*.js",
+    "src/**/logger*.ts",
+    "src/**/logging*.ts",
+    "src/**/log*.ts",
+    "lib/**/audit*.ts",
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**"
+  ],
+  "log_retention_policy": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**",
+    "docs/**",
+    "security/**",
+    ".mcp/**"
+  ],
+  "alerting_configured": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**",
+    "src/**/alert*.ts",
+    "src/**/alarm*.ts",
+    "src/**/monitor*.ts",
+    "src/**/pagerduty*.ts",
+    "src/**/opsgenie*.ts"
+  ],
+  "email_filtering": [
+    "infra/**",
+    "terraform/**",
+    "docs/**",
+    "security/**"
+  ],
+  "public_surface_hardened": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**",
+    "src/**/waf*.ts",
+    "src/**/ddos*.ts",
+    "nginx/**",
+    "caddy/**"
+  ],
+  "rate_limiting_present": [
+    "src/**/rate-limit*.ts",
+    "src/**/rateLimit*.ts",
+    "src/**/throttle*.ts",
+    "src/**/middleware*.ts",
+    "middleware.ts",
+    "middleware.js",
+    "app/api/**",
+    "src/api/**"
+  ],
+  "egress_controls": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**",
+    "src/**/egress*.ts",
+    "src/**/firewall*.ts",
+    "src/**/network*.ts"
+  ],
+  "dlp_configured": [
+    "src/**/dlp*.ts",
+    "src/**/dlp*.js",
+    "src/**/pii*.ts",
+    "src/**/redact*.ts",
+    "src/**/sanitize*.ts",
+    "infra/**",
+    "terraform/**"
+  ],
+  "artifact_signing": [
+    ".github/workflows/**",
+    ".gitlab-ci.yml",
+    "cloudbuild.yaml",
+    "Makefile",
+    "scripts/**",
+    "infra/**",
+    "cosign.pub",
+    "*.pub"
+  ],
+  "hermetic_build_configured": [
+    ".github/workflows/**",
+    ".gitlab-ci.yml",
+    "cloudbuild.yaml",
+    "Makefile",
+    "scripts/**",
+    "BUILD",
+    "BUILD.bazel"
+  ],
+  "ir_playbook_present": [
+    "security/**",
+    "docs/security/**",
+    "runbooks/**",
+    "playbooks/**",
+    ".mcp/**"
+  ],
+  "ir_playbook_tested": [
+    "security/**",
+    "docs/security/**",
+    "runbooks/**",
+    "playbooks/**"
+  ],
+  "network_segmentation": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**"
+  ],
+  "zero_trust_network": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**",
+    "src/**/mtls*.ts",
+    "src/**/spiffe*.ts",
+    "src/**/zero-trust*.ts"
+  ],
+  "backup_encryption": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**"
+  ],
+  "backup_tested": [
+    "docs/**",
+    "security/**",
+    "runbooks/**"
+  ],
+  "dns_monitoring": [
+    "infra/**",
+    "terraform/**"
+  ],
+  "pan_encryption_configured": [
+    "infra/**",
+    "terraform/**",
+    "src/**/payment*.ts",
+    "src/**/card*.ts",
+    "src/**/stripe*.ts",
+    "src/**/braintree*.ts"
+  ],
+  "no_plaintext_pan": [
+    "**/*.ts",
+    "**/*.js",
+    "**/*.py",
+    "**/*.go",
+    "**/*.java"
+  ],
+  "input_validation_schema": [
+    "src/**",
+    "app/**",
+    "lib/**",
+    "server/**"
+  ],
+  "output_encoding_present": [
+    "src/**",
+    "app/**",
+    "lib/**"
+  ],
+  "service_account_per_workload": [
+    "infra/**",
+    "terraform/**",
+    "k8s/**",
+    "helm/**"
+  ],
+  "human_in_loop_for_actions": [
+    "ai/**",
+    "src/**/agent*.ts",
+    "src/**/tool*.ts",
+    "src/**/confirm*.ts",
+    "src/**/approval*.ts"
+  ],
+  "input_length_limits": [
+    "src/**",
+    "app/**",
+    "middleware.ts",
+    "middleware.js"
   ]
 }

package/defaults/security-exceptions.json

@@ -0,0 +1,4 @@
+{
+  "version": "1.0.0",
+  "exceptions": []
+}

package/defaults/security-policy.json

@@ -1,6 +1,6 @@
 {
   "name": "security-policy",
-  "version": "1.0.0",
+  "version": "1.1.0",
   "description": "Default security gate policy for security-mcp. Copy to .mcp/policies/security-policy.json and customize for your project.",
   "required_checks": {
     "secrets_scan": { "severity_block": ["HIGH", "CRITICAL"] },
@@ -8,6 +8,44 @@
     "sast": { "severity_block": ["CRITICAL"] },
     "iac_scan": { "severity_block": ["HIGH", "CRITICAL"] }
   },
+  "environments": {
+    "dev": {
+      "severity_block": ["CRITICAL"],
+      "required_scanners": ["gitleaks"],
+      "required_checks": ["secrets_scan"],
+      "vulnerability_slas": {
+        "CRITICAL": "7d",
+        "HIGH": "30d",
+        "MEDIUM": "90d",
+        "LOW": "never"
+      }
+    },
+    "staging": {
+      "severity_block": ["HIGH", "CRITICAL"],
+      "required_scanners": ["gitleaks", "semgrep", "osv-scanner"],
+      "required_checks": ["secrets_scan", "dependency_scan", "sast"],
+      "vulnerability_slas": {
+        "CRITICAL": "24h",
+        "HIGH": "7d",
+        "MEDIUM": "30d",
+        "LOW": "90d",
+        "CISA_KEV": "24h"
+      }
+    },
+    "prod": {
+      "severity_block": ["MEDIUM", "HIGH", "CRITICAL"],
+      "required_scanners": ["gitleaks", "semgrep", "osv-scanner", "trivy", "checkov"],
+      "required_checks": ["secrets_scan", "dependency_scan", "sast", "iac_scan"],
+      "vulnerability_slas": {
+        "CRITICAL": "24h",
+        "HIGH": "7d",
+        "MEDIUM": "30d",
+        "LOW": "90d",
+        "CISA_KEV": "24h",
+        "HIGH_EPSS": "48h"
+      }
+    }
+  },
   "requirements": [
     {
       "id": "ZERO_TRUST",
@@ -84,7 +122,8 @@
     "HIGH": "7d",
     "MEDIUM": "30d",
     "LOW": "90d",
-    "CISA_KEV": "24h"
+    "CISA_KEV": "24h",
+    "HIGH_EPSS": "48h"
   },
   "exceptions": {
     "require_ticket": true,

package/defaults/security-tools.json

@@ -0,0 +1,41 @@
+{
+  "version": "1.0.0",
+  "fail_closed": true,
+  "scanners": {
+    "gitleaks": {
+      "command": "gitleaks",
+      "args": ["version"],
+      "required_for": ["all"]
+    },
+    "semgrep": {
+      "command": "semgrep",
+      "args": ["--version"],
+      "required_for": ["web", "api", "ai"]
+    },
+    "osv-scanner": {
+      "command": "osv-scanner",
+      "args": ["--version"],
+      "required_for": ["web", "api", "ai"]
+    },
+    "checkov": {
+      "command": "checkov",
+      "args": ["--version"],
+      "required_for": ["infra"]
+    },
+    "trivy": {
+      "command": "trivy",
+      "args": ["--version"],
+      "required_for": ["infra"]
+    },
+    "conftest": {
+      "command": "conftest",
+      "args": ["--version"],
+      "required_for": ["infra"]
+    },
+    "zaproxy": {
+      "command": "zaproxy",
+      "args": ["-version"],
+      "required_for": ["web", "api"]
+    }
+  }
+}

package/dist/ci/pr-gate.js

@@ -1,6 +1,6 @@
 import { runPrGate } from "../gate/policy.js";
-// Allowlist refs to the same safe character set enforced in diff.ts. CWE-88.
-const SAFE_REF_RE = /^[a-zA-Z0-9_.\-/]+$/;
+// Allow safe git revision operators (~ and ^) plus ref/path characters. CWE-88.
+const SAFE_REF_RE = /^[a-zA-Z0-9_./~^-]+$/;
 function safeEnvRef(envVar, defaultValue) {
     const val = process.env[envVar] || defaultValue;
     if (!SAFE_REF_RE.test(val)) {
@@ -20,7 +20,6 @@ async function main() {
         process.exit(2);
     }
 }
-// eslint-disable-next-line unicorn/prefer-top-level-await
 main().catch((err) => {
     console.error("security gate crashed:", err);
     process.exit(3);

package/dist/cli/index.js

@@ -14,6 +14,7 @@ import { fileURLToPath } from "url";
 import { dirname, resolve } from "path";
 import { runInstall } from "./install.js";
 import { main as runServer } from "../mcp/server.js";
+import { notifyIfUpdateAvailable } from "./update.js";
 const __dirname = dirname(fileURLToPath(import.meta.url));
 const require = createRequire(import.meta.url);
 function getVersion() {
@@ -26,25 +27,44 @@ function getVersion() {
     }
 }
 const VERSION = getVersion();
+function getConfigSnippet(useGlobalBinary) {
+    return {
+        mcpServers: {
+            "security-mcp": useGlobalBinary
+                ? {
+                    command: "security-mcp",
+                    args: ["serve"]
+                }
+                : {
+                    command: "npx",
+                    args: ["-y", "security-mcp@latest", "serve"]
+                }
+        }
+    };
+}
 const HELP = `
 security-mcp v${VERSION}
 
   AI security MCP server and gate for Claude Code, Cursor, Copilot, Codex, Replit, and any MCP-compatible editor.
 
 USAGE
-  npx security-mcp <command> [options]
+  npx -y security-mcp@latest <command> [options]
 
 COMMANDS
   serve            Start the MCP server over stdio (default for editors)
   install          Auto-detect installed editors and write MCP configs
+  install-global   Install using the globally installed security-mcp binary
   config           Print MCP config JSON for manual editor setup
 
 OPTIONS (install)
-  --claude-code    Write config for Claude Code only
-  --cursor         Write config for Cursor only
-  --vscode         Write config for VS Code only
-  --global         Write to global editor config (default)
-  --dry-run        Print what would change without writing
+  --claude-code        Write config for Claude Code only
+  --cursor             Write config for Cursor only
+  --vscode             Write config for VS Code only
+  --global             Write to global editor config (default)
+  --use-global-binary  Write configs that execute "security-mcp serve" instead of npx
+  --dry-run            Print what would change without writing
+  --yes                Skip interactive setup questions (install with defaults)
+  --non-interactive    Same as --yes (for CI environments)
 
 OPTIONS (general)
   --version        Print version
@@ -52,26 +72,31 @@ OPTIONS (general)
 
 EXAMPLES
   # Start MCP server (called automatically by editors):
-  npx -y security-mcp serve
+  npx -y security-mcp@latest serve
 
   # Install into all detected editors:
-  npx security-mcp install
+  npx -y security-mcp@latest install
+
+  # Install globally once, then configure editors to use the global binary:
+  npm install -g security-mcp@latest
+  security-mcp install-global
 
   # Install into Claude Code only:
-  npx security-mcp install --claude-code
+  npx -y security-mcp@latest install --claude-code
 
   # Preview install without writing:
-  npx security-mcp install --dry-run
+  npx -y security-mcp@latest install --dry-run
 
   # Print JSON config snippet:
-  npx security-mcp config
+  npx -y security-mcp@latest config
+  security-mcp config --use-global-binary
 
 EDITOR CONFIG (add manually if install fails):
   {
     "mcpServers": {
       "security-mcp": {
         "command": "npx",
-        "args": ["-y", "security-mcp", "serve"]
+        "args": ["-y", "security-mcp@latest", "serve"]
       }
     }
   }
@@ -83,16 +108,9 @@ EDITOR CONFIG (add manually if install fails):
 MORE INFO
   https://github.com/AbrahamOO/security-mcp
 `;
-const CONFIG_SNIPPET = {
-    mcpServers: {
-        "security-mcp": {
-            command: "npx",
-            args: ["-y", "security-mcp", "serve"]
-        }
-    }
-};
 async function main() {
     const args = process.argv.slice(2);
+    const useGlobalBinary = args.includes("--use-global-binary");
     if (args.includes("--version") || args.includes("-v")) {
         process.stdout.write(`security-mcp v${VERSION}\n`);
         process.exit(0);
@@ -102,6 +120,12 @@ async function main() {
         process.exit(0);
     }
     const command = args[0] ?? "serve";
+    if (command === "serve") {
+        void notifyIfUpdateAvailable(VERSION);
+    }
+    else {
+        await notifyIfUpdateAvailable(VERSION);
+    }
     switch (command) {
         case "serve": {
             // MCP stdio server - never write to stdout except via MCP protocol
@@ -109,19 +133,35 @@ async function main() {
             break;
         }
         case "install": {
+            const noEditorFlag = !args.includes("--claude-code") && !args.includes("--cursor") && !args.includes("--vscode");
+            const options = {
+                claudeCode: args.includes("--claude-code"),
+                cursor: args.includes("--cursor"),
+                vscode: args.includes("--vscode"),
+                dryRun: args.includes("--dry-run"),
+                useGlobalBinary,
+                all: noEditorFlag,
+                interactive: !args.includes("--yes") && !args.includes("--non-interactive")
+            };
+            await runInstall(options);
+            break;
+        }
+        case "install-global": {
+            const noEditorFlag = !args.includes("--claude-code") && !args.includes("--cursor") && !args.includes("--vscode");
             const options = {
                 claudeCode: args.includes("--claude-code"),
                 cursor: args.includes("--cursor"),
                 vscode: args.includes("--vscode"),
                 dryRun: args.includes("--dry-run"),
-                // If no editor flag specified, install to all detected
-                all: !args.includes("--claude-code") && !args.includes("--cursor") && !args.includes("--vscode")
+                useGlobalBinary: true,
+                all: noEditorFlag,
+                interactive: !args.includes("--yes") && !args.includes("--non-interactive")
             };
             await runInstall(options);
             break;
         }
         case "config": {
-            process.stdout.write(JSON.stringify(CONFIG_SNIPPET, null, 2) + "\n");
+            process.stdout.write(JSON.stringify(getConfigSnippet(useGlobalBinary), null, 2) + "\n");
             process.stdout.write("\nAdd the above to your editor's MCP config file.\n");
             process.stdout.write("  Claude Code:  ~/.claude/settings.json\n");
             process.stdout.write("  Cursor:       ~/.cursor/mcp.json\n");

package/dist/cli/install.js

@@ -7,13 +7,9 @@ import { readFileSync, writeFileSync, mkdirSync, existsSync, copyFileSync } from
 import { dirname, join, resolve } from "node:path";
 import { homedir, platform } from "node:os";
 import { fileURLToPath } from "node:url";
+import { runOnboarding, installSecurityTools, commandExists, SECURITY_TOOLS } from "./onboarding.js";
 const __dirname = dirname(fileURLToPath(import.meta.url));
 const PKG_ROOT = resolve(__dirname, "../..");
-const MCP_ENTRY = {
-    type: "stdio",
-    command: "npx",
-    args: ["-y", "security-mcp", "serve"]
-};
 function resolveHome(p) {
     return p.replace(/^~/, homedir());
 }
@@ -28,7 +24,7 @@ function getVsCodeSettingsPath() {
     return join(homedir(), ".config", "Code", "User", "settings.json");
 }
 function getEditorTargets(opts) {
-    const claudeCodePath = resolveHome("~/.claude.json");
+    const claudeCodePath = resolveHome("~/.claude/settings.json");
     const cursorGlobalPath = resolveHome("~/.cursor/mcp.json");
     const cursorLocalPath = ".cursor/mcp.json";
     const vscodePath = getVsCodeSettingsPath();
@@ -79,10 +75,23 @@ function readJsonSafe(filePath) {
         return {};
     }
 }
-function writeMcpServersJson(configPath, dryRun) {
+function getMcpEntry(useGlobalBinary) {
+    return useGlobalBinary
+        ? {
+            type: "stdio",
+            command: "security-mcp",
+            args: ["serve"]
+        }
+        : {
+            type: "stdio",
+            command: "npx",
+            args: ["-y", "security-mcp@latest", "serve"]
+        };
+}
+function writeMcpServersJson(configPath, dryRun, useGlobalBinary) {
     const existing = readJsonSafe(configPath);
     const servers = existing["mcpServers"] ?? {};
-    servers["security-mcp"] = MCP_ENTRY;
+    servers["security-mcp"] = getMcpEntry(useGlobalBinary);
     existing["mcpServers"] = servers;
     const content = JSON.stringify(existing, null, 2) + "\n";
     if (!dryRun) {
@@ -91,10 +100,10 @@ function writeMcpServersJson(configPath, dryRun) {
     }
     return configPath;
 }
-function writeVsCodeSettings(configPath, dryRun) {
+function writeVsCodeSettings(configPath, dryRun, useGlobalBinary) {
     const existing = readJsonSafe(configPath);
     const servers = existing["mcp.servers"] ?? {};
-    servers["security-mcp"] = MCP_ENTRY;
+    servers["security-mcp"] = getMcpEntry(useGlobalBinary);
     existing["mcp.servers"] = servers;
     const content = JSON.stringify(existing, null, 2) + "\n";
     if (!dryRun) {
@@ -108,7 +117,19 @@ function installPolicy(dryRun) {
     const policyDest = join(process.cwd(), ".mcp", "policies", "security-policy.json");
     const evidenceSrc = join(PKG_ROOT, "defaults", "evidence-map.json");
     const evidenceDest = join(process.cwd(), ".mcp", "mappings", "evidence-map.json");
-    for (const { src, dest } of [{ src: policySrc, dest: policyDest }, { src: evidenceSrc, dest: evidenceDest }]) {
+    const catalogSrc = join(PKG_ROOT, "defaults", "control-catalog.json");
+    const catalogDest = join(process.cwd(), ".mcp", "catalog", "control-catalog.json");
+    const scannersSrc = join(PKG_ROOT, "defaults", "security-tools.json");
+    const scannersDest = join(process.cwd(), ".mcp", "scanners", "security-tools.json");
+    const exceptionsSrc = join(PKG_ROOT, "defaults", "security-exceptions.json");
+    const exceptionsDest = join(process.cwd(), ".mcp", "exceptions", "security-exceptions.json");
+    for (const { src, dest } of [
+        { src: policySrc, dest: policyDest },
+        { src: evidenceSrc, dest: evidenceDest },
+        { src: catalogSrc, dest: catalogDest },
+        { src: scannersSrc, dest: scannersDest },
+        { src: exceptionsSrc, dest: exceptionsDest }
+    ]) {
         if (!existsSync(src)) {
             process.stdout.write(`  [skip] ${src} not found in package\n`);
             continue;
@@ -139,13 +160,23 @@ function installSkill(dryRun) {
 }
 export async function runInstall(opts) {
     const dryRun = opts.dryRun;
+    // ── Interactive onboarding (skipped when --yes or non-TTY) ──────────────
+    if (opts.interactive && !dryRun) {
+        const onboarding = await runOnboarding();
+        if (onboarding?.installTools) {
+            const toInstall = SECURITY_TOOLS.filter((t) => !commandExists(t.id));
+            process.stdout.write("\nInstalling security scanning tools...\n");
+            await installSecurityTools(toInstall);
+            process.stdout.write("\n");
+        }
+    }
     process.stdout.write(`\nsecurity-mcp installer${dryRun ? " (dry-run)" : ""}\n`);
     process.stdout.write("=".repeat(40) + "\n\n");
     const targets = getEditorTargets(opts);
     if (targets.length === 0) {
         process.stdout.write("No supported editors detected automatically.\n" +
             "Run with --claude-code, --cursor, or --vscode to target a specific editor.\n" +
-            'Or add the config manually (run "npx security-mcp config" for the snippet).\n\n');
+            'Or add the config manually (run "npx -y security-mcp@latest config" for the snippet).\n\n');
         return;
     }
     for (const target of targets) {
@@ -153,10 +184,10 @@ export async function runInstall(opts) {
         try {
             let written;
             if (target.type === "vscode-settings") {
-                written = writeVsCodeSettings(target.configPath, dryRun);
+                written = writeVsCodeSettings(target.configPath, dryRun, opts.useGlobalBinary);
             }
             else {
-                written = writeMcpServersJson(target.configPath, dryRun);
+                written = writeMcpServersJson(target.configPath, dryRun, opts.useGlobalBinary);
             }
             process.stdout.write(`  ${dryRun ? "[dry-run] would update" : "updated"}: ${written}\n`);
         }
@@ -176,8 +207,9 @@ export async function runInstall(opts) {
     process.stdout.write(dryRun
         ? "Dry-run complete. Re-run without --dry-run to apply.\n"
         : "Done! Restart your editor to activate the security-mcp server.\n");
+    process.stdout.write(`Install mode: ${opts.useGlobalBinary ? "global binary (security-mcp serve)" : "npx (npx -y security-mcp@latest serve)"}\n`);
     process.stdout.write("\nNext steps:\n");
     process.stdout.write("  1. Restart your editor.\n");
     process.stdout.write('  2. In Claude Code, type /senior-security-engineer to activate the security persona.\n');
-    process.stdout.write('  3. Ask your AI: "Run security.run_pr_gate" to check your current diff.\n\n');
+    process.stdout.write('  3. Ask your AI: "Run security.start_review with mode=recent_changes" to begin an auditable review.\n\n');
 }