triflux 10.24.0 → 10.25.1

package/bin/triflux.mjs

@@ -61,6 +61,7 @@ import { serializeHandoff } from "../scripts/lib/handoff.mjs";
 import {
   addRegistryServer,
   createDefaultRegistry,
+  discoverProjectMcpTargets,
   inspectRegistry,
   inspectRegistryStatus,
   removeRegistryServer,
@@ -333,7 +334,8 @@ const CLI_COMMAND_SCHEMAS = Object.freeze({
         ],
       },
       sync: {
-        usage: "tfx mcp sync [--json]",
+        usage:
+          "tfx mcp sync [--json] [--all-projects [root]] [--dry-run] [--exclude <glob>]",
         options: [
           {
             name: "--json",
@@ -2515,11 +2517,12 @@ function buildMcpStatusRows(statusInfo) {
     .filter((row) => row.type === "registry")
     .map((row) => {
       let detail = "";
-      if (row.status === "present") detail = row.actualUrl || row.expectedUrl;
+      if (row.status === "present")
+        detail = row.actualUrl || row.actualCommand || row.expectedUrl;
       else if (row.status === "missing") detail = "registry only";
       else if (row.status === "missing-file") detail = "config missing";
       else if (row.status === "mismatch")
-        detail = `expected ${row.expectedUrl}`;
+        detail = `expected ${row.expectedUrl || row.expectedCommand}`;
       else if (row.status === "invalid-config") detail = "parse error";
       else if (row.status === "stdio") detail = "configured as stdio";
       return [
@@ -4667,6 +4670,68 @@ async function cmdDoctor(options = {}) {
       }
     }
 
+    // ── MCP Gateway Health ──
+    // install-mcp-gateway-startup 으로 띄운 LaunchAgent/systemd daemon 의 stdout
+    // (~/.local/state/triflux/mcp-gateway.out.log) 를 파싱해 missing-env 등으로
+    // skip 된 server 를 잡는다. 로그가 없으면 gateway 미설치/미실행으로 침묵.
+    section("MCP Gateway Health");
+    {
+      const { checkMcpGatewayHealth, summarizeMcpGatewayHealth } = await import(
+        "../scripts/lib/mcp-gateway-health-check.mjs"
+      );
+      const gatewayHealth = checkMcpGatewayHealth();
+      const summary = summarizeMcpGatewayHealth(gatewayHealth);
+      addDoctorCheck(report, {
+        name: "mcp-gateway-health",
+        status: summary.level === "warn" ? "warning" : "ok",
+        log_path: gatewayHealth.logPath,
+        findings: gatewayHealth.findings,
+        started: gatewayHealth.started,
+        skipped: gatewayHealth.skipped,
+        ...(summary.fix ? { fix: summary.fix } : {}),
+      });
+      if (summary.level === "skip") {
+        info(summary.message);
+      } else if (summary.level === "ok") {
+        ok(summary.message);
+      } else {
+        warn(summary.message);
+        if (summary.fix) info(`수정: ${summary.fix}`);
+        issues++;
+      }
+    }
+
+    // ── MCP Gateway Wrapper ──
+    // 로그가 생기기 전 단계에서 wrapper 자체가 secrets.env 를 source 하는지 확인한다.
+    section("MCP Gateway Wrapper");
+    {
+      const { checkWrapperSourcing } = await import(
+        "../scripts/lib/mcp-gateway-wrapper-check.mjs"
+      );
+      const wrapperCheck = await checkWrapperSourcing();
+      addDoctorCheck(report, {
+        name: "mcp-gateway-wrapper-sourcing",
+        status:
+          wrapperCheck.status === "warn" ? "warning" : wrapperCheck.status,
+        path: wrapperCheck.wrapperPath,
+        ...(wrapperCheck.message ? { message: wrapperCheck.message } : {}),
+        ...(wrapperCheck.suggestedFix
+          ? { fix: wrapperCheck.suggestedFix }
+          : {}),
+      });
+
+      if (wrapperCheck.status === "ok") {
+        ok("wrapper sources secrets.env");
+      } else if (wrapperCheck.status === "warn") {
+        warn(wrapperCheck.message);
+        info(`수정: ${wrapperCheck.suggestedFix}`);
+        issues++;
+      } else {
+        warn("mcp-gateway wrapper not installed");
+        if (wrapperCheck.message) info(wrapperCheck.message);
+      }
+    }
+
     // ── Codex Config Health (BUG-H #132) ──
     // _codex_config_swap 의 restore 가 Windows lock/ACL 로 실패하면
     // ~/.codex/config.toml.pre-exec 가 남아 [mcp_servers.*] 섹션이 영구 손실된다.
@@ -5776,10 +5841,45 @@ function cmdMcp(args = [], options = {}) {
 
     case "sync": {
       const registryState = ensureValidRegistryState();
-      const result = syncRegistryTargets({ registry: registryState.registry });
+      const allProjectsIndex = args.indexOf("--all-projects");
+      const allProjectsRoot =
+        allProjectsIndex >= 0 &&
+        args[allProjectsIndex + 1] &&
+        !String(args[allProjectsIndex + 1]).startsWith("--")
+          ? args[allProjectsIndex + 1]
+          : null;
+      const dryRun = args.includes("--dry-run");
+      const excludes = args.flatMap((arg, index) =>
+        arg === "--exclude" && args[index + 1] ? [args[index + 1]] : [],
+      );
+      const allProjects =
+        allProjectsIndex >= 0
+          ? discoverProjectMcpTargets({
+              root: allProjectsRoot || undefined,
+              exclude: excludes,
+            })
+          : null;
+      const result = dryRun
+        ? { actions: [] }
+        : syncRegistryTargets({
+            registry: registryState.registry,
+            ...(allProjects ? { targets: allProjects.targets } : {}),
+          });
       if (json) {
         printJson({
           registry_path: registryState.path,
+          ...(allProjects
+            ? {
+                dry_run: dryRun,
+                all_projects: {
+                  root: allProjects.root,
+                  maxDepth: allProjects.maxDepth,
+                  exclude: allProjects.exclude,
+                  count: allProjects.targets.length,
+                },
+                targets: allProjects.targets,
+              }
+            : {}),
           actions: result.actions,
         });
         return;
@@ -5787,8 +5887,22 @@ function cmdMcp(args = [], options = {}) {
 
       console.log(`\n  ${AMBER}${BOLD}⬡ triflux mcp sync${RESET} ${VER}\n`);
       console.log(`  ${LINE}`);
+      if (allProjects) {
+        section("Project Targets");
+        info(`${allProjects.targets.length}개 파일 (${allProjects.root})`);
+        for (const target of allProjects.targets) {
+          info(formatPathForDisplay(target.filePath));
+        }
+        if (dryRun) {
+          console.log("");
+          return;
+        }
+      }
       section("Actions");
       for (const action of result.actions) {
+        for (const warning of action.warnings || []) {
+          process.stderr.write(`${warning}\n`);
+        }
         const label = `${action.label} ${DIM}(${formatPathForDisplay(action.filePath)})${RESET}`;
         if (action.status === "updated") ok(`${label} → updated`);
         else if (action.status === "warning") warn(`${label} → warning`);

package/config/mcp-registry.json

@@ -0,0 +1,85 @@
+{
+  "$schema": "mcp-registry-schema",
+  "version": 1,
+  "description": "MCP 서버 중앙 레지스트리 — 진실의 원천",
+  "defaults": {
+    "transport": "hub-url",
+    "hub_base": "http://127.0.0.1:27888"
+  },
+  "policy_notes": {
+    "policy": "Server policy is the SSOT for client sync shape: hosted writes url+headers, gateway-sse writes http://127.0.0.1:81XX/sse with SSE metadata, and stdio writes command/args/env.",
+    "transport": "Server transport accepts \"hub-url\" for triflux Hub URL flow, \"http\" for direct Streamable HTTP MCP endpoints, or \"stdio\" for upstream-stdio-only MCP servers. Gateway-backed stdio upstreams use policy:\"gateway-sse\" plus gateway_port so clients receive URL/SSE config.",
+    "headers": "Optional headers are allowed only for HTTP-compatible transports. Each header value must be a descriptor: {\"value\":\"literal\"} for non-secret static values, {\"env\":\"ENV_VAR_NAME\"} for secrets resolved at sync/runtime, or {\"env\":\"ENV_VAR_NAME\",\"prefix\":\"Bearer \"} for common authorization formats.",
+    "secret_safety": "Resolved secret values must not be written back to this registry file. Missing env vars warn during sync and do not emit empty secret headers.",
+    "sync_denylist": "Array of client:server strings skipped by proactive registry sync, for example gemini:tfx-hub."
+  },
+  "servers": {
+    "tfx-hub": {
+      "policy": "hosted",
+      "transport": "hub-url",
+      "url": "http://127.0.0.1:27888/mcp",
+      "safe": true,
+      "targets": ["claude", "gemini", "codex", "antigravity"],
+      "description": "triflux Hub MCP 서버"
+    },
+    "context7": {
+      "policy": "hosted",
+      "transport": "http",
+      "url": "https://mcp.context7.com/mcp",
+      "safe": true,
+      "targets": ["claude", "gemini", "codex", "antigravity"],
+      "description": "Upstash Context7 — 라이브러리 문서/코드 컨텍스트 (HTTP MCP, API key 불필요)"
+    },
+    "exa": {
+      "policy": "hosted",
+      "transport": "http",
+      "url": "https://mcp.exa.ai/mcp",
+      "headers": {
+        "Authorization": { "env": "EXA_API_KEY", "prefix": "Bearer " }
+      },
+      "safe": true,
+      "targets": ["claude", "gemini", "codex", "antigravity"],
+      "description": "Exa neural/semantic web search — 학술/기술 깊이. Key 발급: https://exa.ai/dashboard → secrets.env의 EXA_API_KEY"
+    },
+    "serena": {
+      "policy": "gateway-sse",
+      "gateway_port": 8105,
+      "safe": true,
+      "targets": ["claude", "gemini", "codex", "antigravity"],
+      "description": "Serena MCP — supergateway singleton SSE endpoint (:8105)"
+    },
+    "brave-search": {
+      "policy": "gateway-sse",
+      "gateway_port": 8101,
+      "safe": true,
+      "targets": ["claude", "gemini", "codex", "antigravity"],
+      "description": "Brave Search MCP — supergateway singleton SSE endpoint (:8101). BRAVE_API_KEY 환경변수 필요 (https://brave.com/search/api/). secrets.env 의 BRAVE_API_KEY 참조."
+    },
+    "tavily": {
+      "policy": "hosted",
+      "transport": "http",
+      "url": "https://mcp.tavily.com/mcp",
+      "headers": {
+        "Authorization": { "env": "TAVILY_API_KEY", "prefix": "Bearer " }
+      },
+      "safe": true,
+      "targets": ["claude", "gemini", "codex", "antigravity"],
+      "description": "Tavily research — 비용/운영/DX/일반 웹. Key 발급: https://app.tavily.com/home → secrets.env의 TAVILY_API_KEY"
+    }
+  },
+  "policies": {
+    "stdio_action": "replace-with-hub",
+    "unknown_server_action": "warn",
+    "sync_denylist": [],
+    "watched_paths": [
+      "~/.gemini/settings.json",
+      "~/.codex/config.toml",
+      "~/.claude.json",
+      "~/.claude/settings.json",
+      "~/.claude/settings.local.json",
+      ".claude/mcp.json",
+      ".mcp.json",
+      "~/.gemini/config/mcp_config.json"
+    ]
+  }
+}

package/config/routing-policy.json

@@ -0,0 +1,124 @@
+{
+  "version": 1,
+  "freshness": {
+    "max_snapshot_age_ms": 900000,
+    "max_cross_provider_skew_ms": 300000,
+    "local_clock_skew_guard_ms": 60000
+  },
+  "thresholds": {
+    "reset_imminent_ms": 86400000,
+    "exhaustion_high_percent": 80,
+    "exhaustion_low_percent": 20,
+    "expiry_drain_window_ms": 604800000,
+    "drain_usage_ceiling_percent": 50
+  },
+  "scenarios": [
+    {
+      "id": "S1",
+      "name": "claude-reset-imminent-drain",
+      "when": {
+        "provider": "claude",
+        "weeklyResetsAtLteMs": 86400000,
+        "weeklyPercentLt": 100,
+        "hasMultipleAccounts": true
+      },
+      "then": {
+        "lane": "multi",
+        "primary_cli": "claude",
+        "reserve_codex_share": 0.1,
+        "reason": "claude-weekly-reset-imminent-drain-fleet"
+      }
+    },
+    {
+      "id": "S2",
+      "name": "codex-reset-imminent-drain",
+      "when": {
+        "provider": "codex",
+        "weeklyResetsAtLteMs": 86400000,
+        "weeklyPercentLt": 100
+      },
+      "then": {
+        "lane": "swarm",
+        "primary_cli": "codex",
+        "reserve_claude_share": 0.1,
+        "reason": "codex-weekly-reset-imminent-drain-fleet"
+      }
+    },
+    {
+      "id": "S3",
+      "name": "claude-burned-codex-fresh",
+      "when": {
+        "claude_weekly_percent_gte": 80,
+        "codex_weekly_percent_lt": 20,
+        "claude_weekly_resets_at_gt_ms": 172800000
+      },
+      "then": {
+        "lane": "single",
+        "primary_cli": "codex",
+        "claude_lanes_allowed": ["explore", "final-challenge"],
+        "reason": "claude-burned-codex-fresh-rebalance"
+      }
+    },
+    {
+      "id": "S4",
+      "name": "claude-multi-account-staggered",
+      "when": {
+        "provider": "claude",
+        "accountCountGte": 2,
+        "staggered": true
+      },
+      "then": {
+        "lane": "multi",
+        "primary_cli": "claude",
+        "rank_by": "expiring_capacity_score",
+        "reason": "claude-multi-account-staggered-reset"
+      }
+    },
+    {
+      "id": "S5",
+      "name": "claude-parallel-leasemany",
+      "when": {
+        "provider": "claude",
+        "request_team_size_gte": 2,
+        "accountCountGte": 2
+      },
+      "then": {
+        "lane": "swarm",
+        "primary_cli": "claude",
+        "atomic": "leaseMany",
+        "atomic_policy": "balanced",
+        "reason": "claude-parallel-multi-account"
+      }
+    },
+    {
+      "id": "S6",
+      "name": "account-expiry-drain",
+      "when": {
+        "expiresAtLteMs": 604800000,
+        "weeklyPercentLt": 50,
+        "circuitStateNotOpen": true
+      },
+      "then": {
+        "lane": "single",
+        "riskTier": "drain",
+        "elevated_weight": 2.0,
+        "reason": "account-expiry-drain-before-loss"
+      }
+    }
+  ],
+  "fallback": {
+    "default_mode": "codex-default",
+    "default_cli": "codex",
+    "default_model": "gpt-5.5",
+    "triggers": [
+      "hud_null",
+      "hud_stale_gte_15min",
+      "weekly_reset_in_past",
+      "cross_provider_skew_exceeded",
+      "broker_empty",
+      "all_circuits_open",
+      "mirror_drift",
+      "flag_disabled"
+    ]
+  }
+}

package/hooks/safety-guard.mjs

@@ -340,7 +340,14 @@ function main() {
     return hasSegmentInvocation(cmd, WT_DIRECT_PATTERNS);
   }
 
-  if (isWtDirectInvocation(command)) {
+  // wt.exe는 Windows Terminal 전용. macOS/Linux에서는 PATH에 존재하지 않아
+  // 차단해도 dormant이며, 문서/로그 텍스트의 wt 단어가 false positive로 잡힐
+  // 위험만 있다. win32에서만 차단 적용.
+  // SAFETY_GUARD_FORCE_PLATFORM env로 테스트에서 platform 시뮬레이션 가능
+  // (mac CI에서 win32 차단 동작을 검증하기 위함).
+  const guardPlatform =
+    process.env.SAFETY_GUARD_FORCE_PLATFORM || process.platform;
+  if (guardPlatform === "win32" && isWtDirectInvocation(command)) {
     blockCommand(WT_DIRECT_BLOCK_MESSAGE, command);
   }
 

package/hub/team/backend.mjs

@@ -1,6 +1,7 @@
 // hub/team/backend.mjs — CLI 백엔드 추상화 레이어
-// 각 CLI(codex/gemini/claude)의 명령 빌드 로직을 클래스로 캡슐화한다.
+// 각 CLI(codex/gemini/claude/antigravity)의 명령 빌드 로직을 클래스로 캡슐화한다.
 // v7.2.2
+import { writeFileSync } from "node:fs";
 import { createRequire } from "node:module";
 
 import { buildExecArgs } from "../codex-adapter.mjs";
@@ -16,6 +17,22 @@ export function buildGeminiCommand(prompt, resultFile, { isWindows } = {}) {
   return `gemini --yolo --prompt ${prompt} --output-format text > '${resultFile}' 2>'${resultFile}.err' < /dev/null`;
 }
 
+export function buildAntigravityCommand(
+  prompt,
+  resultFile,
+  { isWindows } = {},
+) {
+  // Persist prompt to a sibling file so the shell never interpolates raw
+  // prompt content. Without this the Unix branch let `$()`, backticks, `\\`,
+  // and `"` reach the shell verbatim (P1: shell injection).
+  const promptFile = `${resultFile}.prompt`;
+  writeFileSync(promptFile, prompt);
+  if (isWindows) {
+    return `Get-Content -Raw '${promptFile}' | agy --print --dangerously-skip-permissions > '${resultFile}' 2>'${resultFile}.err'`;
+  }
+  return `agy --print --dangerously-skip-permissions < '${promptFile}' > '${resultFile}' 2>'${resultFile}.err'`;
+}
+
 const _require = createRequire(import.meta.url);
 
 // ── 백엔드 클래스 ──────────────────────────────────────────────────────────
@@ -77,19 +94,40 @@ export class ClaudeBackend {
   }
 }
 
+export class AntigravityBackend {
+  name() {
+    return "antigravity";
+  }
+  command() {
+    return "agy";
+  }
+
+  buildArgs(prompt, resultFile, opts = {}) {
+    return buildAntigravityCommand(prompt, resultFile, {
+      isWindows: IS_WINDOWS,
+      ...opts,
+    });
+  }
+
+  env() {
+    return {};
+  }
+}
+
 // ── 레지스트리 ─────────────────────────────────────────────────────────────
 
-/** @type {Map<string, CodexBackend|GeminiBackend|ClaudeBackend>} */
+/** @type {Map<string, CodexBackend|GeminiBackend|ClaudeBackend|AntigravityBackend>} */
 const backends = new Map([
   ["codex", new CodexBackend()],
   ["gemini", new GeminiBackend()],
   ["claude", new ClaudeBackend()],
+  ["antigravity", new AntigravityBackend()],
 ]);
 
 /**
  * 백엔드 이름으로 조회한다.
- * @param {string} name — "codex" | "gemini" | "claude"
- * @returns {CodexBackend|GeminiBackend|ClaudeBackend}
+ * @param {string} name — "codex" | "gemini" | "claude" | "antigravity"
+ * @returns {CodexBackend|GeminiBackend|ClaudeBackend|AntigravityBackend}
  * @throws {Error} 등록되지 않은 이름
  */
 export function getBackend(name) {
@@ -102,7 +140,7 @@ export function getBackend(name) {
  * 에이전트명 또는 CLI명을 Backend로 해석한다.
  * agent-map.json을 통해 에이전트명 → CLI명으로 변환 후 레지스트리에서 조회한다.
  * @param {string} agentOrCli — "executor", "codex", "designer" 등
- * @returns {CodexBackend|GeminiBackend|ClaudeBackend}
+ * @returns {CodexBackend|GeminiBackend|ClaudeBackend|AntigravityBackend}
  */
 export function getBackendForAgent(agentOrCli) {
   const agentMap = _require("./agent-map.json");
@@ -112,7 +150,7 @@ export function getBackendForAgent(agentOrCli) {
 
 /**
  * 등록된 모든 백엔드를 반환한다.
- * @returns {Array<CodexBackend|GeminiBackend|ClaudeBackend>}
+ * @returns {Array<CodexBackend|GeminiBackend|ClaudeBackend|AntigravityBackend>}
  */
 export function listBackends() {
   return Array.from(backends.values());