zero-config-cli-bridge 1.0.0

package/README.md

@@ -0,0 +1,164 @@
+# zero-config-cli-bridge
+
+**Zero Setup. Zero API Keys. Just your local CLI.**
+
+> Still copy-pasting `GITHUB_TOKEN` into `.env` files?
+> Still wondering why your AI agent can't see your private repos?
+> Stop. Your machine already has everything it needs.
+
+`zero-config-cli-bridge` is an MCP (Model Context Protocol) server that exposes your **already-authenticated local CLI tools** directly to LLM agents — no API keys, no OAuth flows, no configuration.
+
+If `gh issue list` works in your terminal, it works in Claude Desktop. That's it.
+
+---
+
+## Install
+
+```bash
+# Option A: npx (no install required)
+npx -y zero-config-cli-bridge
+
+# Option B: global install
+npm install -g zero-config-cli-bridge
+```
+
+**Prerequisites:** `gh` CLI installed and authenticated (`gh auth login`)
+
+---
+
+## Claude Desktop Setup
+
+Add to `~/AppData/Roaming/Claude/claude_desktop_config.json` (Windows) or
+`~/Library/Application Support/Claude/claude_desktop_config.json` (macOS):
+
+```json
+{
+  "mcpServers": {
+    "zero-config-cli-bridge": {
+      "command": "npx",
+      "args": ["-y", "zero-config-cli-bridge"]
+    }
+  }
+}
+```
+
+Restart Claude Desktop. Done.
+
+---
+
+## What you can do
+
+Ask Claude naturally:
+
+- *"List the open issues in cli/cli"*
+- *"Show me the last 20 PRs merged into main"*
+- *"Which issues are labeled bug and unassigned?"*
+
+Claude will call the MCP tools, hit your local `gh` binary with your existing authentication, and return real data — without ever seeing your token.
+
+---
+
+## Available Tools
+
+| Tool | Command | Description |
+|------|---------|-------------|
+| `gh_issue_list` | `gh issue list` | List issues with filters |
+| `gh_pr_list` | `gh pr list` | List pull requests with filters |
+
+### Arguments
+
+**gh_issue_list**
+| Argument | Type | Description |
+|----------|------|-------------|
+| `repo` | string | `OWNER/REPO` format. Omit to use current directory's remote. |
+| `limit` | number | Max results (default: 30) |
+| `state` | string | `open` / `closed` / `all` |
+| `label` | string | Filter by label |
+| `assignee` | string | Filter by assignee login |
+
+**gh_pr_list**
+| Argument | Type | Description |
+|----------|------|-------------|
+| `repo` | string | `OWNER/REPO` format |
+| `limit` | number | Max results (default: 30) |
+| `state` | string | `open` / `closed` / `merged` |
+| `base` | string | Filter by base branch |
+| `assignee` | string | Filter by assignee login |
+
+---
+
+## Security: Layered Defense
+
+This server is **read-only by design**. Destructive operations are blocked at multiple layers:
+
+```
+Request
+  │
+  ▼
+┌─────────────────────────────────────────────┐
+│ Layer 1: LLM Self-Governance                │
+│ The tool schema explicitly describes        │
+│ read-only intent. Claude refuses mutating   │
+│ requests before calling the tool at all.    │
+└─────────────────┬───────────────────────────┘
+                  │ (if bypassed)
+                  ▼
+┌─────────────────────────────────────────────┐
+│ Layer 2: Keyword Validator (security.ts)    │
+│ Blocks: create, delete, edit, rm,           │
+│ update, close, reopen, merge                │
+│ Returns: "Mutating commands are blocked"    │
+└─────────────────┬───────────────────────────┘
+                  │ (if bypassed)
+                  ▼
+┌─────────────────────────────────────────────┐
+│ Layer 3: gh CLI Error                       │
+│ Invalid commands fail at the gh binary      │
+│ level with a non-zero exit code.            │
+└─────────────────────────────────────────────┘
+```
+
+**Verified in production:** TEST 3 on Claude Desktop confirmed Layer 1 blocked a `delete` injection attempt before the tool was even invoked.
+
+### Additional Safeguards
+
+- **Timeout:** Processes are killed with `SIGKILL` after 3000ms — no hanging on interactive prompts
+- **Output truncation:** stdout/stderr capped at 2000 characters to prevent context exhaustion. Long outputs append `...[Output truncated. Use grep/jq to filter]`
+- **CI mode:** `CI=true` is injected to suppress interactive prompts
+
+---
+
+## How It Works
+
+```
+Claude Desktop
+     │  MCP (stdio JSON-RPC)
+     ▼
+zero-config-cli-bridge
+     │  child_process.spawn
+     ▼
+gh CLI (your local binary)
+     │  uses ~/.config/gh/hosts.yml
+     ▼
+GitHub API
+```
+
+Your token never leaves your machine. The bridge just connects Claude to a process that was already authorized.
+
+---
+
+## Roadmap
+
+- [ ] `gh issue view` / `gh pr view`
+- [ ] `gh run list` / `gh release list`
+- [ ] Dynamic schema generation from `gh --help`
+- [ ] Support for `git`, `docker`, `kubectl`
+- [ ] Configurable allow-list for additional read-only commands
+
+PRs welcome.
+
+---
+
+## License
+
+MIT

package/dist/executor.d.ts

@@ -0,0 +1,7 @@
+export interface ExecuteResult {
+    stdout: string;
+    stderr: string;
+    exitCode: number;
+}
+export declare function executeCommand(command: string): Promise<ExecuteResult>;
+//# sourceMappingURL=executor.d.ts.map

package/dist/executor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"executor.d.ts","sourceRoot":"","sources":["../src/executor.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;CAClB;AAWD,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CAqCtE"}

package/dist/executor.js

@@ -0,0 +1,42 @@
+import { spawn } from 'child_process';
+const MAX_OUTPUT = 2000;
+const TRUNCATION_MSG = '\n...[Output truncated. Use grep/jq to filter]';
+const TIMEOUT_MS = 3000;
+function truncate(output) {
+    if (output.length <= MAX_OUTPUT)
+        return output;
+    return output.slice(0, MAX_OUTPUT) + TRUNCATION_MSG;
+}
+export function executeCommand(command) {
+    return new Promise((resolve, reject) => {
+        const proc = spawn('sh', ['-c', command], {
+            env: { ...process.env, CI: 'true' },
+            stdio: ['ignore', 'pipe', 'pipe'],
+        });
+        let stdoutBuf = '';
+        let stderrBuf = '';
+        proc.stdout.on('data', (chunk) => {
+            stdoutBuf += chunk.toString();
+        });
+        proc.stderr.on('data', (chunk) => {
+            stderrBuf += chunk.toString();
+        });
+        const timer = setTimeout(() => {
+            proc.kill('SIGKILL');
+            reject(new Error(`Command timed out after ${TIMEOUT_MS}ms: ${command}`));
+        }, TIMEOUT_MS);
+        proc.on('close', (code) => {
+            clearTimeout(timer);
+            resolve({
+                stdout: truncate(stdoutBuf),
+                stderr: truncate(stderrBuf),
+                exitCode: code ?? 1,
+            });
+        });
+        proc.on('error', (err) => {
+            clearTimeout(timer);
+            reject(err);
+        });
+    });
+}
+//# sourceMappingURL=executor.js.map

package/dist/executor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"executor.js","sourceRoot":"","sources":["../src/executor.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,eAAe,CAAC;AAQtC,MAAM,UAAU,GAAG,IAAI,CAAC;AACxB,MAAM,cAAc,GAAG,gDAAgD,CAAC;AACxE,MAAM,UAAU,GAAG,IAAI,CAAC;AAExB,SAAS,QAAQ,CAAC,MAAc;IAC9B,IAAI,MAAM,CAAC,MAAM,IAAI,UAAU;QAAE,OAAO,MAAM,CAAC;IAC/C,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,GAAG,cAAc,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,OAAe;IAC5C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,OAAO,CAAC,EAAE;YACxC,GAAG,EAAE,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,EAAE,EAAE,MAAM,EAAE;YACnC,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC;SAClC,CAAC,CAAC;QAEH,IAAI,SAAS,GAAG,EAAE,CAAC;QACnB,IAAI,SAAS,GAAG,EAAE,CAAC;QAEnB,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YACvC,SAAS,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QAChC,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;YACvC,SAAS,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QAChC,CAAC,CAAC,CAAC;QAEH,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;YAC5B,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACrB,MAAM,CAAC,IAAI,KAAK,CAAC,2BAA2B,UAAU,OAAO,OAAO,EAAE,CAAC,CAAC,CAAC;QAC3E,CAAC,EAAE,UAAU,CAAC,CAAC;QAEf,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,IAAmB,EAAE,EAAE;YACvC,YAAY,CAAC,KAAK,CAAC,CAAC;YACpB,OAAO,CAAC;gBACN,MAAM,EAAE,QAAQ,CAAC,SAAS,CAAC;gBAC3B,MAAM,EAAE,QAAQ,CAAC,SAAS,CAAC;gBAC3B,QAAQ,EAAE,IAAI,IAAI,CAAC;aACpB,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QAEH,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAU,EAAE,EAAE;YAC9B,YAAY,CAAC,KAAK,CAAC,CAAC;YACpB,MAAM,CAAC,GAAG,CAAC,CAAC;QACd,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}

package/dist/index.js

@@ -0,0 +1,57 @@
+#!/usr/bin/env node
+import { Server } from '@modelcontextprotocol/sdk/server/index.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import { CallToolRequestSchema, ListToolsRequestSchema, } from '@modelcontextprotocol/sdk/types.js';
+import { executeCommand } from './executor.js';
+import { validateReadOnly } from './security.js';
+import { buildGhCommand, getToolDefinitions } from './schema.js';
+const server = new Server({ name: 'zero-config-cli-bridge', version: '1.0.0' }, { capabilities: { tools: {} } });
+server.setRequestHandler(ListToolsRequestSchema, async () => {
+    return { tools: getToolDefinitions() };
+});
+server.setRequestHandler(CallToolRequestSchema, async (request) => {
+    const { name: toolName, arguments: rawArgs } = request.params;
+    const args = (rawArgs ?? {});
+    const command = buildGhCommand(toolName, args);
+    // Security check: block mutating commands
+    try {
+        validateReadOnly(command);
+    }
+    catch (err) {
+        const msg = err instanceof Error ? err.message : String(err);
+        return {
+            content: [{ type: 'text', text: msg }],
+            isError: true,
+        };
+    }
+    // Execute command
+    let result;
+    try {
+        result = await executeCommand(command);
+    }
+    catch (err) {
+        const msg = err instanceof Error ? err.message : String(err);
+        return {
+            content: [{ type: 'text', text: `Execution error: ${msg}` }],
+            isError: true,
+        };
+    }
+    const output = result.stdout ||
+        result.stderr ||
+        `(no output, exit code ${result.exitCode})`;
+    const isError = result.exitCode !== 0;
+    return {
+        content: [{ type: 'text', text: output }],
+        isError,
+    };
+});
+async function main() {
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+    // Server is running on stdio - no console output to avoid corrupting MCP protocol
+}
+main().catch((err) => {
+    process.stderr.write(`Fatal error: ${err}\n`);
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EACL,qBAAqB,EACrB,sBAAsB,GACvB,MAAM,oCAAoC,CAAC;AAE5C,OAAO,EAAE,cAAc,EAAE,MAAM,eAAe,CAAC;AAC/C,OAAO,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEjE,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB,EAAE,IAAI,EAAE,wBAAwB,EAAE,OAAO,EAAE,OAAO,EAAE,EACpD,EAAE,YAAY,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,CAChC,CAAC;AAEF,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE;IAC1D,OAAO,EAAE,KAAK,EAAE,kBAAkB,EAAE,EAAE,CAAC;AACzC,CAAC,CAAC,CAAC;AAEH,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE;IAChE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC,MAAM,CAAC;IAC9D,MAAM,IAAI,GAAG,CAAC,OAAO,IAAI,EAAE,CAA4B,CAAC;IAExD,MAAM,OAAO,GAAG,cAAc,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAE/C,0CAA0C;IAC1C,IAAI,CAAC;QACH,gBAAgB,CAAC,OAAO,CAAC,CAAC;IAC5B,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7D,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC;YACtC,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,kBAAkB;IAClB,IAAI,MAAM,CAAC;IACX,IAAI,CAAC;QACH,MAAM,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC,CAAC;IACzC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7D,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,oBAAoB,GAAG,EAAE,EAAE,CAAC;YAC5D,OAAO,EAAE,IAAI;SACd,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GACV,MAAM,CAAC,MAAM;QACb,MAAM,CAAC,MAAM;QACb,yBAAyB,MAAM,CAAC,QAAQ,GAAG,CAAC;IAE9C,MAAM,OAAO,GAAG,MAAM,CAAC,QAAQ,KAAK,CAAC,CAAC;IAEtC,OAAO;QACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;QACzC,OAAO;KACR,CAAC;AACJ,CAAC,CAAC,CAAC;AAEH,KAAK,UAAU,IAAI;IACjB,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAChC,kFAAkF;AACpF,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;IACnB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,gBAAgB,GAAG,IAAI,CAAC,CAAC;IAC9C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/schema.d.ts

@@ -0,0 +1,15 @@
+export interface ToolDefinition {
+    name: string;
+    description: string;
+    inputSchema: {
+        type: 'object';
+        properties: Record<string, {
+            type: string;
+            description: string;
+        }>;
+        required?: string[];
+    };
+}
+export declare function getToolDefinitions(): ToolDefinition[];
+export declare function buildGhCommand(toolName: string, args: Record<string, unknown>): string;
+//# sourceMappingURL=schema.d.ts.map

package/dist/schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../src/schema.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE;QACX,IAAI,EAAE,QAAQ,CAAC;QACf,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,WAAW,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;QAClE,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;KACrB,CAAC;CACH;AAED,wBAAgB,kBAAkB,IAAI,cAAc,EAAE,CAqErD;AAED,wBAAgB,cAAc,CAC5B,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC5B,MAAM,CA+BR"}

package/dist/schema.js

@@ -0,0 +1,98 @@
+export function getToolDefinitions() {
+    return [
+        {
+            name: 'gh_issue_list',
+            description: 'List GitHub issues for a repository using the local `gh` CLI. ' +
+                'Requires gh to be installed and authenticated.',
+            inputSchema: {
+                type: 'object',
+                properties: {
+                    repo: {
+                        type: 'string',
+                        description: 'Repository in OWNER/REPO format (e.g. "cli/cli"). ' +
+                            'If omitted, uses the current directory\'s git remote.',
+                    },
+                    limit: {
+                        type: 'number',
+                        description: 'Maximum number of issues to fetch (default: 30).',
+                    },
+                    state: {
+                        type: 'string',
+                        description: 'Filter by state: "open" (default), "closed", or "all".',
+                    },
+                    label: {
+                        type: 'string',
+                        description: 'Filter by label name.',
+                    },
+                    assignee: {
+                        type: 'string',
+                        description: 'Filter by assignee login.',
+                    },
+                },
+            },
+        },
+        {
+            name: 'gh_pr_list',
+            description: 'List GitHub pull requests for a repository using the local `gh` CLI. ' +
+                'Requires gh to be installed and authenticated.',
+            inputSchema: {
+                type: 'object',
+                properties: {
+                    repo: {
+                        type: 'string',
+                        description: 'Repository in OWNER/REPO format (e.g. "cli/cli"). ' +
+                            'If omitted, uses the current directory\'s git remote.',
+                    },
+                    limit: {
+                        type: 'number',
+                        description: 'Maximum number of PRs to fetch (default: 30).',
+                    },
+                    state: {
+                        type: 'string',
+                        description: 'Filter by state: "open" (default), "closed", or "merged".',
+                    },
+                    base: {
+                        type: 'string',
+                        description: 'Filter by base branch name.',
+                    },
+                    assignee: {
+                        type: 'string',
+                        description: 'Filter by assignee login.',
+                    },
+                },
+            },
+        },
+    ];
+}
+export function buildGhCommand(toolName, args) {
+    const parts = ['gh'];
+    if (toolName === 'gh_issue_list') {
+        parts.push('issue', 'list');
+    }
+    else if (toolName === 'gh_pr_list') {
+        parts.push('pr', 'list');
+    }
+    else {
+        throw new Error(`Unknown tool: ${toolName}`);
+    }
+    if (args['repo'] !== undefined) {
+        parts.push('--repo', String(args['repo']));
+    }
+    if (args['limit'] !== undefined) {
+        parts.push('--limit', String(args['limit']));
+    }
+    if (args['state'] !== undefined) {
+        parts.push('--state', String(args['state']));
+    }
+    if (toolName === 'gh_issue_list' && args['label'] !== undefined) {
+        parts.push('--label', String(args['label']));
+    }
+    if (args['assignee'] !== undefined) {
+        parts.push('--assignee', String(args['assignee']));
+    }
+    if (toolName === 'gh_pr_list' && args['base'] !== undefined) {
+        parts.push('--base', String(args['base']));
+    }
+    return parts.join(' ');
+}
+//# sourceMappingURL=schema.js.map

package/dist/schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.js","sourceRoot":"","sources":["../src/schema.ts"],"names":[],"mappings":"AAUA,MAAM,UAAU,kBAAkB;IAChC,OAAO;QACL;YACE,IAAI,EAAE,eAAe;YACrB,WAAW,EACT,gEAAgE;gBAChE,gDAAgD;YAClD,WAAW,EAAE;gBACX,IAAI,EAAE,QAAQ;gBACd,UAAU,EAAE;oBACV,IAAI,EAAE;wBACJ,IAAI,EAAE,QAAQ;wBACd,WAAW,EACT,oDAAoD;4BACpD,uDAAuD;qBAC1D;oBACD,KAAK,EAAE;wBACL,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,kDAAkD;qBAChE;oBACD,KAAK,EAAE;wBACL,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,wDAAwD;qBACtE;oBACD,KAAK,EAAE;wBACL,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,uBAAuB;qBACrC;oBACD,QAAQ,EAAE;wBACR,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,2BAA2B;qBACzC;iBACF;aACF;SACF;QACD;YACE,IAAI,EAAE,YAAY;YAClB,WAAW,EACT,uEAAuE;gBACvE,gDAAgD;YAClD,WAAW,EAAE;gBACX,IAAI,EAAE,QAAQ;gBACd,UAAU,EAAE;oBACV,IAAI,EAAE;wBACJ,IAAI,EAAE,QAAQ;wBACd,WAAW,EACT,oDAAoD;4BACpD,uDAAuD;qBAC1D;oBACD,KAAK,EAAE;wBACL,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,+CAA+C;qBAC7D;oBACD,KAAK,EAAE;wBACL,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,2DAA2D;qBACzE;oBACD,IAAI,EAAE;wBACJ,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,6BAA6B;qBAC3C;oBACD,QAAQ,EAAE;wBACR,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,2BAA2B;qBACzC;iBACF;aACF;SACF;KACF,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,cAAc,CAC5B,QAAgB,EAChB,IAA6B;IAE7B,MAAM,KAAK,GAAa,CAAC,IAAI,CAAC,CAAC;IAE/B,IAAI,QAAQ,KAAK,eAAe,EAAE,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC9B,CAAC;SAAM,IAAI,QAAQ,KAAK,YAAY,EAAE,CAAC;QACrC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IAC3B,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,KAAK,CAAC,iBAAiB,QAAQ,EAAE,CAAC,CAAC;IAC/C,CAAC;IAED,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,SAAS,EAAE,CAAC;QAC/B,KAAK,CAAC,IAAI,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;IAC7C,CAAC;IACD,IAAI,IAAI,CAAC,OAAO,CAAC,KAAK,SAAS,EAAE,CAAC;QAChC,KAAK,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,IAAI,CAAC,OAAO,CAAC,KAAK,SAAS,EAAE,CAAC;QAChC,KAAK,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,QAAQ,KAAK,eAAe,IAAI,IAAI,CAAC,OAAO,CAAC,KAAK,SAAS,EAAE,CAAC;QAChE,KAAK,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,IAAI,CAAC,UAAU,CAAC,KAAK,SAAS,EAAE,CAAC;QACnC,KAAK,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,QAAQ,KAAK,YAAY,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,SAAS,EAAE,CAAC;QAC5D,KAAK,CAAC,IAAI,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;IAC7C,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACzB,CAAC"}

package/dist/security.d.ts

@@ -0,0 +1,2 @@
+export declare function validateReadOnly(command: string): void;
+//# sourceMappingURL=security.d.ts.map

package/dist/security.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAWA,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAWtD"}

package/dist/security.js

@@ -0,0 +1,21 @@
+const BLOCKED_KEYWORDS = [
+    'create',
+    'delete',
+    'edit',
+    'rm',
+    'update',
+    'close',
+    'reopen',
+    'merge',
+];
+export function validateReadOnly(command) {
+    const lower = command.toLowerCase();
+    for (const keyword of BLOCKED_KEYWORDS) {
+        // Match keyword as a whole word (surrounded by non-alphanumeric chars or at boundaries)
+        const pattern = new RegExp(`(?<![a-z0-9])${keyword}(?![a-z0-9])`);
+        if (pattern.test(lower)) {
+            throw new Error('Error: Mutating commands are blocked in MVP version. Use read-only commands.');
+        }
+    }
+}
+//# sourceMappingURL=security.js.map

package/dist/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA,MAAM,gBAAgB,GAAG;IACvB,QAAQ;IACR,QAAQ;IACR,MAAM;IACN,IAAI;IACJ,QAAQ;IACR,OAAO;IACP,QAAQ;IACR,OAAO;CACR,CAAC;AAEF,MAAM,UAAU,gBAAgB,CAAC,OAAe;IAC9C,MAAM,KAAK,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IACpC,KAAK,MAAM,OAAO,IAAI,gBAAgB,EAAE,CAAC;QACvC,wFAAwF;QACxF,MAAM,OAAO,GAAG,IAAI,MAAM,CAAC,gBAAgB,OAAO,cAAc,CAAC,CAAC;QAClE,IAAI,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CACb,8EAA8E,CAC/E,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC"}

package/package.json

@@ -0,0 +1,42 @@
+{
+  "name": "zero-config-cli-bridge",
+  "version": "1.0.0",
+  "description": "Zero Setup. Zero API Keys. Expose your local authenticated CLIs as MCP tools.",
+  "type": "module",
+  "main": "dist/index.js",
+  "bin": {
+    "zero-config-cli-bridge": "./dist/index.js"
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "tsc && node -e \"import('fs').then(({readFileSync,writeFileSync})=>{const p='dist/index.js';writeFileSync(p,'#!/usr/bin/env node\\n'+readFileSync(p,'utf8'))})\" && chmod +x dist/index.js",
+    "start": "node dist/index.js"
+  },
+  "keywords": [
+    "mcp",
+    "model-context-protocol",
+    "github",
+    "gh",
+    "cli",
+    "llm",
+    "claude",
+    "zero-config",
+    "agent",
+    "tool"
+  ],
+  "license": "MIT",
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.0.0"
+  },
+  "devDependencies": {
+    "typescript": "^5.3.0",
+    "@types/node": "^20.0.0"
+  }
+}