thumbgate 1.27.4 → 1.27.7

package/bin/postinstall.js

@@ -31,7 +31,7 @@ process.stderr.write(`
   │  Start now:  npx thumbgate init                     │
   │  Updates:    npx thumbgate subscribe you@company.com│
   │                                                     │
-  │  Free after trial: 3 rules, 5 captures/day.        │
+  │  Free after trial: 3 rules, 2 captures/day.        │
   │  Pro ($19/mo): unlimited everything.                │
   ╰─────────────────────────────────────────────────────╯
 

package/commands/dashboard.md

@@ -0,0 +1,15 @@
+---
+name: dashboard
+description: Open the local HTTP dashboard for the current project in your web browser.
+---
+
+# Open Dashboard
+
+Open the local HTTP dashboard for the current project in your web browser.
+
+## Instructions
+Execute the following command in the project directory to open the browser dashboard scoped to the current repository:
+```bash
+thumbgate-dashboard
+```
+

package/commands/thumbgate-dashboard.md

@@ -0,0 +1,15 @@
+---
+name: thumbgate-dashboard
+description: Open the local HTTP dashboard for the current project in your web browser.
+---
+
+# Open Scoped ThumbGate Dashboard
+
+Open the local HTTP dashboard for the current project in your web browser.
+
+## Instructions
+Execute the following command in the project directory to open the browser dashboard:
+```bash
+thumbgate-dashboard
+```
+

package/config/gate-templates.json

@@ -157,6 +157,18 @@
       "roi": "Connects prevention with remediation: what credential lived where, who touched it, and whether rotation is required.",
       "rollout": "Use with incident-response runbooks and secrets scanner output from GitGuardian or internal tooling."
     },
+    {
+      "id": "require-local-dependency-vulnerability-scan",
+      "name": "Require local dependency vulnerability scan before installation",
+      "category": "Supply Chain Safety",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "high",
+      "pattern": "(npm install|pnpm add|yarn add|bun add|npm i|pnpm i|yarn i).*(vulnerable|cve|high|critical|osv|cve-lite)",
+      "problem": "Blocks package installations that introduce dependencies containing known high-severity or critical vulnerabilities (CVEs) before they are written to the lockfile.",
+      "roi": "Prevents AI agents from introducing vulnerable packages into the workspace. Complements zero-egress local-first scanning toolings (like OWASP CVE Lite CLI) directly at the terminal level.",
+      "rollout": "Enable on every repo where agents can install dependencies or modify lockfiles."
+    },
     {
       "id": "require-section-tree-before-multimodal-answer",
       "name": "Require section tree before multimodal answers",
@@ -576,6 +588,78 @@
       "problem": "Claw agents have broad device-level (local/shared) file system access. Must be strictly gated, especially in on-prem/air-gapped enterprise environments where most data lives.",
       "roi": "Directly supports the hybrid/on-prem reality emphasized in EnterpriseClaw coverage. Prevents broad access from becoming broad exfil or corruption. Ties to ThumbGate's existing path globs and protected files.",
       "rollout": "Use existing protected-paths + new claw-specific rules. Start with read-only for most, explicit approval for writes on sensitive dirs."
+    },
+    {
+      "id": "block-unauthorized-multi-channel-posts",
+      "name": "Block unauthorized multi-channel posts by Hermes Agent",
+      "category": "Nous Research Hermes Agent Governance",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "high",
+      "pattern": "(slack|telegram|discord|signal|whatsapp|send_message|post_message|channel_post).*(credentials|api_key|token|auth|password|unreviewed|unapproved)",
+      "problem": "Hermes Agent can post directly to messaging platforms. This gate prevents leaked credentials or unapproved messages from being posted publicly.",
+      "roi": "High: Prevents public-facing compliance violations, credential leaks, and messaging spam across Telegram, Slack, and Discord.",
+      "rollout": "Enable by default for agents connected to external communication channels."
+    },
+    {
+      "id": "prevent-infinite-skill-synthesis-loops",
+      "name": "Prevent infinite skill synthesis loops",
+      "category": "Nous Research Hermes Agent Governance",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "medium",
+      "pattern": "(hermes|skill synthesis|write skill|synthesize skill|evolve skill|self-improve).*(loop|repeated|stuck|regenerate|no progress)",
+      "problem": "Hermes Agent can get stuck repeatedly rewriting or generating the same skills in Markdown format without resolving the user's core task.",
+      "roi": "Reduces token burn and infinite loop execution loops by gating repeated skill write attempts.",
+      "rollout": "Warn/block when skill edits occur more than 3 times within the same session context."
+    },
+    {
+      "id": "validate-synthesized-skills-against-rules",
+      "name": "Validate synthesized skills against prevention rules",
+      "category": "Nous Research Hermes Agent Governance",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "critical",
+      "pattern": "(write skill|synthesize skill|create skill|update skill).*(override|bypass|ignore|violate).*(prevention rule|gate|thumbgate)",
+      "problem": "Hermes Agent's self-improvement loop can write new skills that conflict with or attempt to bypass established ThumbGate prevention rules.",
+      "roi": "Preserves security invariants by ensuring that synthesized skills never write code patterns blocked by active ThumbGate rules.",
+      "rollout": "Scan synthesized skill markdown content for pattern overlap with active prevention rules before writing to the skills directory."
+    },
+    {
+      "id": "require-human-in-the-loop-pause",
+      "name": "Enforce Human-in-the-Loop pause for critical decisions",
+      "category": "AI Engineering Stack Safety",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "high",
+      "pattern": "(agent_sdk|openrouter_sdk|human_in_loop|auto_resolve).*(auto_resolve|bypass|skip_pause|critical_action)",
+      "problem": "Prevents autonomous agents using the Agent SDK from auto-resolving critical decisions (such as model migration, credential rotations, or financial transactions) without pausing for explicit human approval.",
+      "roi": "Ensures human oversight remains functional on highest-risk actions, preventing the agent from acting entirely unsupervised on critical gates.",
+      "rollout": "Turn on for all production deployments utilizing OpenRouter or other Agent SDKs with auto-resolve capabilities."
+    },
+    {
+      "id": "careful-mode",
+      "name": "Enforce careful mode for destructive commands",
+      "category": "On-Demand Dynamic Gating",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "critical",
+      "pattern": "(rm\\s+-rf|drop\\s+table|force-push|git\\s+push\\s+-[fF]|git\\s+push\\s+--force|kubectl\\s+delete)",
+      "problem": "Blocks dangerous or destructive command sequences (rm -rf, DROP TABLE, force-push, kubectl delete) during sessions where careful mode is activated.",
+      "roi": "Protects production environments and main branches from accidental destructive commands executed by autonomous agents.",
+      "rollout": "Enable dynamically on-demand using /careful or env overrides when executing in sensitive or production workspaces."
+    },
+    {
+      "id": "freeze-mode",
+      "name": "Freeze directory edits",
+      "category": "On-Demand Dynamic Gating",
+      "signal": "👎",
+      "defaultAction": "block",
+      "severity": "high",
+      "pattern": "^freeze_edit_outside_path.*",
+      "problem": "Blocks any file edit or write tool call that is not within a specified active/target directory.",
+      "roi": "Restricts agent edits to a controlled workspace, preventing scope drift, accidental modification of configuration or source files, and unwanted global refactors during focused task debugging.",
+      "rollout": "Enable dynamically on-demand using /freeze to specify the only path(s) the agent is allowed to write to during the session."
     }
   ]
 }

package/config/gates/claim-verification.json

@@ -24,6 +24,18 @@
       "requiredActions": ["on_device_verified"],
       "message": "You claimed on-device verification without evidence. Capture the proof first, then call track_action('on_device_verified').",
       "createdAt": 1774972800000
+    },
+    {
+      "pattern": "(github|repo|repository).*(about|metadata|description|topics?).*(updated|verified|fixed|match(?:es|ed)?)|(about|metadata|description|topics?).*(updated|verified|fixed|match(?:es|ed)?).*(github|repo|repository)",
+      "requiredActions": ["github_metadata_verified"],
+      "message": "You claimed GitHub repository metadata was updated or verified without source-of-truth evidence. Read it back with gh api/gh repo view and rendered HTML, then call track_action('github_metadata_verified').",
+      "createdAt": 1780677400000
+    },
+    {
+      "pattern": "(money|payment|charge|checkout|revenue|price|pricing|invoice|billing|tax|sales tax|inventory|stock|permission|access|customer-facing|customer facing).*(correct|accurate|verified|valid|matches|working|fixed|resolved|calculated|configured)|(correct|accurate|verified|valid|matches|working|fixed|resolved|calculated|configured).*(money|payment|charge|checkout|revenue|price|pricing|invoice|billing|tax|sales tax|inventory|stock|permission|access|customer-facing|customer facing)",
+      "requiredActions": ["commercial_truth_verified"],
+      "message": "You claimed a commercial-data fact (money, tax, inventory, permissions, or customer-facing state) without external source-of-truth evidence. Read the authoritative system first, then call track_action('commercial_truth_verified').",
+      "createdAt": 1781640000000
     }
   ]
 }

package/config/gates/default.json

@@ -377,6 +377,26 @@
       "message": "Self-protection: agent cannot modify hook registrations.",
       "severity": "critical",
       "compliance": ["NIST-AC-3", "OWASP-A01", "SOC2-CC6.1"]
+    },
+    {
+      "id": "on-demand-careful-mode",
+      "layer": "Execution",
+      "toolNames": ["Bash"],
+      "pattern": "(rm\\s+-rf|drop\\s+table|force-push|git\\s+push\\s+-[fF]|git\\s+push\\s+--force|kubectl\\s+delete)",
+      "action": "block",
+      "when": { "constraints": { "careful_mode": true } },
+      "message": "Careful mode is active. Dangerous command is blocked.",
+      "severity": "critical"
+    },
+    {
+      "id": "on-demand-freeze-mode",
+      "layer": "Decisions",
+      "toolNames": ["Edit", "Write", "MultiEdit"],
+      "pattern": ".*",
+      "action": "block",
+      "when": { "constraints": { "freeze_mode": true } },
+      "message": "Freeze mode is active. Edits outside the frozen directory are blocked.",
+      "severity": "high"
     }
   ]
 }

package/config/github-about.json

@@ -3,7 +3,7 @@
   "repositoryUrl": "https://github.com/IgorGanapolsky/ThumbGate",
   "homepageUrl": "https://thumbgate.ai",
   "githubDescription": "Agent governance for ThumbGate: 👍/👎 become Pre-Action Checks that block repeat mistakes before code, money, or customer systems change.",
-  "metaDescription": "Stop paying for the same AI mistake twice. ThumbGate is machine-speed pre-action defense for AI coding agents and vibe coding workflows: 👍 thumbs up and 👎 thumbs down become history-aware lessons, shared lessons and org visibility, actionable remediations, agent surface inventory, and Pre-Action Checks that block repeat mistakes before the next tool call across Claude Code, Cursor, Codex, Gemini, Amp, Cline, and OpenCode.",
+  "metaDescription": "Stripe Connect integration engineering for ticketing and marketplace platforms — Pretix plugin shipped to Hilltown Media. ThumbGate is also the pre-action governance runtime for AI coding agents (Claude Code, Cursor, Codex, Gemini CLI): 👍 thumbs up and 👎 thumbs down feedback become history-aware lessons, shared lessons and org visibility, and PreToolUse checks that block repeated mistakes before code, money, or customer systems change. Perfect for vibe coding and human-in-the-loop workflows.",
   "topics": [
     "thumbgate",
     "pre-action-checks",

package/config/model-candidates.json

@@ -116,6 +116,23 @@
         "medianLatencyMs",
         "memoryBandwidthEstimate"
       ]
+    },
+    "self-improving-agent-skill-synthesis": {
+      "label": "Self-improving agent skill synthesis",
+      "summary": "Evaluate models on their ability to self-improve, generate safe Markdown skills, and correctly check synthesized skills against existing gate/prevention rules.",
+      "desiredStrengths": ["agentic-coding", "tool-use", "self-evolving", "skill-synthesis", "reliability"],
+      "targetContextWindow": 128000,
+      "benchmarkCommands": [
+        "npx thumbgate eval --from-feedback --json --min-score=0",
+        "node scripts/gate-eval.js run"
+      ],
+      "metrics": [
+        "passRate",
+        "skillSafetyCheckAccuracy",
+        "ruleBypassDetectionRate",
+        "medianLatencyMs",
+        "costPerEvolutionUsd"
+      ]
     }
   },
   "candidates": [
@@ -279,6 +296,39 @@
       "costClass": "medium",
       "strengths": ["agentic-coding", "tool-use", "dynamic-tool-creation", "screen-interaction", "on-prem", "self-evolving"],
       "notes": "Nvidia OpenShell runtime for autonomous self-evolving claw-style agents (basis for Automation Anywhere EnterpriseClaw). Run locally/on-prem. ThumbGate provides the missing governance layer (gates, feedback, rules). Use with hybrid local-cloud for full enterprise deployment."
+    },
+    {
+      "id": "nousresearch/hermes-3-llama-3.1-70b",
+      "vendor": "Nous Research",
+      "family": "hermes",
+      "provider": "openrouter",
+      "model": "hermes-3-llama-3.1-70b",
+      "contextWindow": 128000,
+      "costClass": "medium",
+      "strengths": ["agentic-coding", "tool-use", "self-evolving", "skill-synthesis", "multi-platform", "reasoning"],
+      "notes": "Nous Research's Hermes 3 model family, optimized for autonomous reasoning, tool-use, and self-improvement loops. Benchmark KV caching, trace-length constraints, and dynamic skill synthesis validation rules before deploying."
+    },
+    {
+      "id": "anthropic/claude-opus-4-8",
+      "vendor": "Anthropic",
+      "family": "claude",
+      "provider": "anthropic",
+      "model": "claude-opus-4.8",
+      "contextWindow": 200000,
+      "costClass": "high",
+      "strengths": ["agentic-coding", "tool-use", "reliability", "long-context", "long-horizon-coding", "multi-agent"],
+      "notes": "Frontier coding model with 56.7 Coding Index. Grew 140% WoW on OpenRouter to 1.33T tokens. Ideal for long trace reviews and complex reasoning steps, despite higher latency and cost."
+    },
+    {
+      "id": "google/gemini-3.1-pro-preview",
+      "vendor": "Google",
+      "family": "gemini",
+      "provider": "google",
+      "model": "gemini-3.1-pro-preview",
+      "contextWindow": 2000000,
+      "costClass": "medium",
+      "strengths": ["agentic-coding", "tool-use", "reliability", "long-context", "data-analysis", "cost-efficiency"],
+      "notes": "Google's 3.1 Pro Preview model with 55.5 Coding Index and massive 2M token context window. Strong choice for complex RAG tasks, repository-scale auditing, and long-context trace analysis."
     }
   ]
 }

package/config/post-deploy-marketing-pages.json

@@ -51,6 +51,11 @@
       "route": "/sitemap.xml",
       "sentinel": "<urlset",
       "description": "XML sitemap for search-engine discoverability"
+    },
+    {
+      "route": "/about",
+      "sentinel": "Igor Ganapolsky",
+      "description": "About page for GEO discoverability"
     }
   ]
 }