npm - troxy-cli - Versions diffs - 1.4.7 → 1.4.9 - Mend

troxy-cli 1.4.7 → 1.4.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/bin/troxy.js CHANGED Viewed

@@ -309,13 +309,55 @@ switch (command) {
       const { version: latest } = await res.json();
       if (current !== latest) {
         console.log(`  ⚠  New version available: ${latest} (you have ${current})`);
-        console.log(`     Update with: sudo npm install -g troxy-cli@latest\n`);
+        console.log(`     Run: troxy update\n`);
       }
     } catch {}
     break;
   }
+  // ── Self-update ───────────────────────────────────────────────
+  case 'update': {
+    const { execSync } = await import('child_process');
+    const { createRequire } = await import('module');
+    const req = createRequire(import.meta.url);
+    const { version: current } = req('../package.json');
+    process.stdout.write('\n  Checking for updates... ');
+    let latest;
+    try {
+      const res = await fetch('https://registry.npmjs.org/troxy-cli/latest', { signal: AbortSignal.timeout(5000) });
+      ({ version: latest } = await res.json());
+    } catch {
+      console.log('✗');
+      console.error('\n  Could not reach npm registry. Check your connection.\n');
+      process.exit(1);
+    }
+    if (current === latest) {
+      console.log(`already up to date (${current})\n`);
+      break;
+    }
+    console.log(`${current} → ${latest}`);
+    process.stdout.write('  Installing... ');
+    try {
+      execSync('npm install -g troxy-cli@latest', { stdio: 'pipe' });
+      console.log(`✓\n\n  Updated to ${latest}. Restart your terminal to use the new version.\n`);
+    } catch (err) {
+      const stderr = err.stderr?.toString() || err.message || '';
+      if (stderr.includes('EACCES') || stderr.includes('permission')) {
+        console.log('✗');
+        console.error('\n  Permission denied. Try:\n\n  sudo troxy update\n');
+      } else {
+        console.log('✗');
+        console.error(`\n  ${stderr || err.message}\n`);
+      }
+      process.exit(1);
+    }
+    break;
+  }
   // ── Help / default ────────────────────────────────────────────
   default:
     if (command) console.error(`  Unknown command: ${command}\n`);
@@ -333,6 +375,7 @@ switch (command) {
     troxy init --key <api-key>     Connect this machine as an MCP + save key
     troxy uninstall                Remove Troxy from this machine
     troxy status                   API health + MCP status (no login needed)
+    troxy update                   Update to the latest version
   Everything else requires: troxy login

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "troxy-cli",
-  "version": "1.4.7",
+  "version": "1.4.9",
   "description": "AI payment control — protect your agent's payments with policies",
   "type": "module",
   "bin": {

package/src/api.js CHANGED Viewed

@@ -52,8 +52,9 @@ export const api = {
   createToken:  (jwt, b)  => request('POST',   '/tokens',        { jwt, body: b }),
   revokeToken:  (jwt, id) => request('DELETE', `/tokens/${id}`,  { jwt }),
-  // Evaluate (agent API key)
+  // Evaluate + confirm (agent API key)
   evaluate: (body, apiKey) => request('POST', '/evaluate', { apiKey, body }),
+  confirmPayment: (auditId, body, apiKey) => request('POST', `/payments/${auditId}/confirm`, { apiKey, body }),
   // MCP heartbeat (agent API key)
   mcpHeartbeat: (apiKey, agentName) => request('POST', '/mcp/heartbeat', { apiKey, body: agentName ? { agent_name: agentName } : undefined }),

package/src/mcp-server.js CHANGED Viewed

@@ -6,6 +6,7 @@ import {
 } from '@modelcontextprotocol/sdk/types.js';
 import { loadConfig }      from './config.js';
 import { evaluatePayment, api } from './api.js';
+const confirmPayment = (auditId, body, apiKey) => api.confirmPayment(auditId, body, apiKey);
 export async function runMcp() {
   const config    = loadConfig();
@@ -30,13 +31,49 @@ export async function runMcp() {
         'If the decision is BLOCK, abort the transaction and inform the user. ' +
         'If the decision is ESCALATE, the response includes an approval_token. Wait for the user to approve, then call evaluate_payment again with the same payment details PLUS the approval_token field. The second call will return ALLOW without re-escalating. ' +
         'If the decision is NOTIFY, proceed but the user will be notified. ' +
-        'When calling evaluate_payment, use the merchant\'s domain name as merchant_name when available (e.g. "amazon.com", "indigobloom.co.il") — this ensures consistent matching against policies.',
+        'When calling evaluate_payment, use the merchant\'s domain name as merchant_name when available (e.g. "amazon.com", "indigobloom.co.il") — this ensures consistent matching against policies. ' +
+        'After every ALLOW or NOTIFY decision, attempt the payment, then call confirm_payment with the audit_id and the outcome (success/failed/cancelled). Always include a reason when the charge fails.',
     },
     { capabilities: { tools: {} } },
   );
   server.setRequestHandler(ListToolsRequestSchema, async () => ({
     tools: [
+      {
+        name: 'confirm_payment',
+        description:
+          'Report the actual outcome of a payment attempt to Troxy. ' +
+          'Call this after every ALLOW or NOTIFY decision, once you know whether the charge succeeded or failed. ' +
+          'This is required for accurate audit logs — without it, approved payments show as unconfirmed.',
+        inputSchema: {
+          type: 'object',
+          required: ['audit_id', 'status'],
+          properties: {
+            audit_id: {
+              type: 'string',
+              description: 'The audit_id returned by evaluate_payment',
+            },
+            status: {
+              type: 'string',
+              enum: ['success', 'failed', 'cancelled'],
+              description: 'Outcome of the charge attempt',
+            },
+            provider: {
+              type: 'string',
+              enum: ['stripe', 'paypal', 'other'],
+              description: 'Payment provider used (optional, defaults to "other")',
+            },
+            provider_transaction_id: {
+              type: 'string',
+              description: 'Provider transaction ID, e.g. Stripe pi_xxx (optional)',
+            },
+            reason: {
+              type: 'string',
+              description: 'Reason for failure or cancellation, e.g. "card declined", "iframe blocked", "timeout" (optional but recommended on failure)',
+            },
+          },
+        },
+      },
       {
         name: 'evaluate_payment',
         description:
@@ -77,11 +114,31 @@ export async function runMcp() {
   }));
   server.setRequestHandler(CallToolRequestSchema, async (request) => {
-    if (request.params.name !== 'evaluate_payment') {
-      throw new Error(`Unknown tool: ${request.params.name}`);
+    const toolName = request.params.name;
+    const args = request.params.arguments ?? {};
+    if (toolName === 'confirm_payment') {
+      const { audit_id, status, provider, provider_transaction_id, reason } = args;
+      try {
+        await confirmPayment(audit_id, { status, provider, provider_transaction_id, reason }, apiKey);
+        const detail = provider_transaction_id ? ` Transaction ID: ${provider_transaction_id}.` : '';
+        const why    = reason ? ` Reason: ${reason}.` : '';
+        return {
+          content: [{ type: 'text', text: `✓ Payment outcome recorded: ${status}.${detail}${why} (audit: ${audit_id})` }],
+          isError: false,
+        };
+      } catch (err) {
+        return {
+          content: [{ type: 'text', text: `Troxy confirm_payment error: ${err.message}` }],
+          isError: true,
+        };
+      }
+    }
+    if (toolName !== 'evaluate_payment') {
+      throw new Error(`Unknown tool: ${toolName}`);
     }
-    const args   = request.params.arguments ?? {};
     if (agentName && !args.agent) args.agent = agentName;
     const result = await evaluatePayment(args, apiKey);
@@ -97,7 +154,7 @@ export async function runMcp() {
     switch (decision) {
       case 'ALLOW':
-        text = `✓ Payment approved.${policy ? ` Policy matched: "${policy}".` : ''} (audit: ${audit_id})`;
+        text = `✓ Payment approved.${policy ? ` Policy matched: "${policy}".` : ''} (audit: ${audit_id})\n\nAfter the charge attempt completes, call confirm_payment with audit_id "${audit_id}" and status "success", "failed", or "cancelled".`;
         break;
       case 'BLOCK':
         text = `✗ Payment blocked by policy "${policy}". Do not proceed with this payment. (audit: ${audit_id})`;
@@ -106,7 +163,7 @@ export async function runMcp() {
         text = `⏳ Payment requires human approval — a request has been sent to the account owner. Do not proceed until approved.\n\nApproval token: ${approval_token}\n\nOnce the owner approves, call evaluate_payment again with the same payment details and include approval_token: "${approval_token}" to proceed. (audit: ${audit_id})`;
         break;
       case 'NOTIFY':
-        text = `✓ Payment approved with notification. Policy matched: "${policy}". (audit: ${audit_id})`;
+        text = `✓ Payment approved with notification. Policy matched: "${policy}". (audit: ${audit_id})\n\nAfter the charge attempt completes, call confirm_payment with audit_id "${audit_id}" and status "success", "failed", or "cancelled".`;
         break;
       default:
         text = JSON.stringify(result);