open-edison 0.1.26__tar.gz → 0.1.30__tar.gz

{open_edison-0.1.26 → open_edison-0.1.30}/.gitignore

@@ -217,4 +217,6 @@ frontend_dist/
 frontend/node_modules/
 frontend/package-lock.json
 .vscode
-install_id
+install_id
+dev_config_dir/
+sessions.db

{open_edison-0.1.26 → open_edison-0.1.30}/PKG-INFO

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: open-edison
-Version: 0.1.26
+Version: 0.1.30
 Summary: Open-source MCP security, aggregation, and monitoring. Single-user, self-hosted MCP proxy.
 Author-email: Hugo Berg <hugo@edison.watch>
 License-File: LICENSE
@@ -9,6 +9,7 @@ Requires-Dist: aiohttp>=3.12.14
 Requires-Dist: aiosqlite>=0.20.0
 Requires-Dist: fastapi>=0.116.1
 Requires-Dist: fastmcp>=2.10.5
+Requires-Dist: hatchling>=1.27.0
 Requires-Dist: httpx>=0.28.1
 Requires-Dist: loguru>=0.7.3
 Requires-Dist: opentelemetry-api>=1.36.0
@@ -27,7 +28,11 @@ Description-Content-Type: text/markdown
 
 # OpenEdison 🔒⚡️
 
-MCP security gateway that prevents data exfiltration—via direct access or tool chaining—with full monitoring for local single‑user deployments. Provides core functionality of <https://edison.watch> for local use.
+> The secure MCP proxy gateway
+
+Connect AI to your data/software securely without risk of data exfiltration. Gain visibility, block threats, and get alerts on the data your agent is reading/writing. No more "approve fatigue" with the MCP tool-call approvals.
+
+OpenEdison solves the [lethal trifecta problem](https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/), which can cause agent hijacking & data exfiltration by malicious actors.
 
 <p align="center">
   <img src="media/trifecta520p.gif" alt="Trifecta Security Risk Animation" width="520">
@@ -42,22 +47,23 @@ MCP security gateway that prevents data exfiltration—via direct access or tool
   <img alt="Python Version" src="https://img.shields.io/badge/python-3.12-blue?logo=python">
   <img src="https://img.shields.io/badge/License-GPLv3-blue" alt="License">
 
-
 </p>
 
---- 
-
+---
 
 ## Features ✨
 
-- 🛑 **Prevent Data Leaks** - Edison automatically blocks any data leaks, even if your AI gets jailbroken
-- 👤 **Single-user MCP proxy** - No multi-user complexity, just a simple proxy for your MCP servers
-- 🗂️ **JSON configuration** - Easy to configure and manage your MCP servers
-- 🖥️ **Simple local frontend** - Track and monitor your MCP interactions, servers, and sessions.
-- 📊 **Session tracking** - Track and monitor your MCP interactions
+- 🛑 **Data leak blocker** - Edison automatically blocks any data leaks, even if your AI gets jailbroken
+- 🕰️ **Deterministic execution** - Deterministic execution. Guaranteed data exfiltration blocker.
+- 🗂️ **Easily configurable** - Easy to configure and manage your MCP servers
+- 📊 **Visibility into agent interactions** - Track and monitor your agents and their interactions with connected software/data via MCP calls
 - 🔗 **Simple API** - REST API for managing MCP servers and proxying requests
 - 🐳 **Docker support** - Run in a container for easy deployment
 
+## About Edison.watch 🏢
+
+Edison helps you gain observability, control, and policy enforcement for all AI interactions with systems of records, existing company software and data. Prevent AI from causing data leakage, lightning-fast setup for cross-system governance.
+
 ## Quick Start 🚀
 
 The fastest way to get started:
@@ -68,7 +74,7 @@ The fastest way to get started:
 curl -fsSL https://raw.githubusercontent.com/Edison-Watch/open-edison/main/curl_pipe_bash.sh | bash
 ```
 
-Run locally with uvx: `uvx open-edison --config-dir ~/edison-config`
+Run locally with uvx: `uvx open-edison`
 
 <details>
 <summary>⬇️ Install Node.js/npm (optional for MCP tools)</summary>
@@ -102,11 +108,11 @@ After installation, ensure that `npx` is available on PATH.
 
 ```bash
 # Using uvx
-uvx open-edison --help
+uvx open-edison
 
 # Using pipx
 pipx install open-edison
-open-edison --help
+open-edison
 ```
 
 Run with a custom config directory:
@@ -349,8 +355,6 @@ Use the `get_security_status` tool to monitor your session's current risk level
 
 </details>
 
-
-
 ## Documentation 📚
 
 📚 **Complete documentation available in [`docs/`](docs/)**
@@ -360,7 +364,6 @@ Use the `get_security_status` tool to monitor your session's current risk level
 - 📡 **[API Reference](docs/quick-reference/api_reference.md)** - REST API documentation
 - 🧑‍💻 **[Development Guide](docs/development/development_guide.md)** - Contributing and development
 
-
 <details>
 <summary>📄 License</summary>
 

{open_edison-0.1.26 → open_edison-0.1.30}/README.md

@@ -1,6 +1,10 @@
 # OpenEdison 🔒⚡️
 
-MCP security gateway that prevents data exfiltration—via direct access or tool chaining—with full monitoring for local single‑user deployments. Provides core functionality of <https://edison.watch> for local use.
+> The secure MCP proxy gateway
+
+Connect AI to your data/software securely without risk of data exfiltration. Gain visibility, block threats, and get alerts on the data your agent is reading/writing. No more "approve fatigue" with the MCP tool-call approvals.
+
+OpenEdison solves the [lethal trifecta problem](https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/), which can cause agent hijacking & data exfiltration by malicious actors.
 
 <p align="center">
   <img src="media/trifecta520p.gif" alt="Trifecta Security Risk Animation" width="520">
@@ -15,22 +19,23 @@ MCP security gateway that prevents data exfiltration—via direct access or tool
   <img alt="Python Version" src="https://img.shields.io/badge/python-3.12-blue?logo=python">
   <img src="https://img.shields.io/badge/License-GPLv3-blue" alt="License">
 
-
 </p>
 
---- 
-
+---
 
 ## Features ✨
 
-- 🛑 **Prevent Data Leaks** - Edison automatically blocks any data leaks, even if your AI gets jailbroken
-- 👤 **Single-user MCP proxy** - No multi-user complexity, just a simple proxy for your MCP servers
-- 🗂️ **JSON configuration** - Easy to configure and manage your MCP servers
-- 🖥️ **Simple local frontend** - Track and monitor your MCP interactions, servers, and sessions.
-- 📊 **Session tracking** - Track and monitor your MCP interactions
+- 🛑 **Data leak blocker** - Edison automatically blocks any data leaks, even if your AI gets jailbroken
+- 🕰️ **Deterministic execution** - Deterministic execution. Guaranteed data exfiltration blocker.
+- 🗂️ **Easily configurable** - Easy to configure and manage your MCP servers
+- 📊 **Visibility into agent interactions** - Track and monitor your agents and their interactions with connected software/data via MCP calls
 - 🔗 **Simple API** - REST API for managing MCP servers and proxying requests
 - 🐳 **Docker support** - Run in a container for easy deployment
 
+## About Edison.watch 🏢
+
+Edison helps you gain observability, control, and policy enforcement for all AI interactions with systems of records, existing company software and data. Prevent AI from causing data leakage, lightning-fast setup for cross-system governance.
+
 ## Quick Start 🚀
 
 The fastest way to get started:
@@ -41,7 +46,7 @@ The fastest way to get started:
 curl -fsSL https://raw.githubusercontent.com/Edison-Watch/open-edison/main/curl_pipe_bash.sh | bash
 ```
 
-Run locally with uvx: `uvx open-edison --config-dir ~/edison-config`
+Run locally with uvx: `uvx open-edison`
 
 <details>
 <summary>⬇️ Install Node.js/npm (optional for MCP tools)</summary>
@@ -75,11 +80,11 @@ After installation, ensure that `npx` is available on PATH.
 
 ```bash
 # Using uvx
-uvx open-edison --help
+uvx open-edison
 
 # Using pipx
 pipx install open-edison
-open-edison --help
+open-edison
 ```
 
 Run with a custom config directory:
@@ -322,8 +327,6 @@ Use the `get_security_status` tool to monitor your session's current risk level
 
 </details>
 
-
-
 ## Documentation 📚
 
 📚 **Complete documentation available in [`docs/`](docs/)**
@@ -333,7 +336,6 @@ Use the `get_security_status` tool to monitor your session's current risk level
 - 📡 **[API Reference](docs/quick-reference/api_reference.md)** - REST API documentation
 - 🧑‍💻 **[Development Guide](docs/development/development_guide.md)** - Contributing and development
 
-
 <details>
 <summary>📄 License</summary>
 

{open_edison-0.1.26 → open_edison-0.1.30}/docs/core/proxy_usage.md

@@ -13,7 +13,7 @@ Open Edison provides a simple MCP proxy that manages multiple MCP servers as sub
 make run
 
 # Or run directly
-rye run python main.py
+uv run python main.py
 ```
 
 The server starts on `localhost:3001` with:

{open_edison-0.1.26 → open_edison-0.1.30}/docs/deployment/local.md

@@ -30,14 +30,14 @@ cd open-edison
 
 ### 2. Install Dependencies
 
-#### Using Rye (Recommended)
+#### Using UV (Recommended)
 
 ```bash
-# Install Rye if not already installed
-curl -sSf https://rye.astral.sh/get | bash
+# Install UV if not already installed
+curl -LsSf https://astral.sh/uv/install.sh | sh
 
 # Install dependencies
-rye sync
+uv sync
 ```
 
 #### Using pip/venv

{open_edison-0.1.26 → open_edison-0.1.30}/docs/development/testing.md

@@ -618,18 +618,18 @@ jobs:
       with:
         python-version: ${{ matrix.python-version }}
     
-    - name: Install Rye
+    - name: Install UV
       run: |
-        curl -sSf https://rye.astral.sh/get | bash
-        echo "$HOME/.rye/shims" >> $GITHUB_PATH
+        curl -LsSf https://astral.sh/uv/install.sh | sh
+        echo "$HOME/.cargo/bin" >> $GITHUB_PATH
     
     - name: Install dependencies
-      run: rye sync
+      run: uv sync
     
     - name: Run tests
       run: |
-        rye run pytest --cov=src tests/
-        rye run pytest --cov-report=xml
+        uv run pytest --cov=src tests/
+        uv run pytest --cov-report=xml
     
     - name: Upload coverage
       uses: codecov/codecov-action@v3

open_edison-0.1.30/hatch_build.py

@@ -0,0 +1,42 @@
+from __future__ import annotations
+
+import shutil
+from pathlib import Path
+
+from hatchling.builders.hooks.plugin.interface import BuildHookInterface
+
+
+class BuildHook(BuildHookInterface):  # type: ignore
+    """Ensure packaged frontend assets exist in src/frontend_dist before build.
+
+    Behavior:
+    - If src/frontend_dist/index.html exists, do nothing.
+    - Else if frontend/dist/index.html exists, copy it to src/frontend_dist/.
+    - Else raise a clear error instructing to run `make build_package` first.
+      We intentionally DO NOT run npm during packaging to avoid assuming it
+      on build/install environments.
+    """
+
+    def initialize(self, version: str, build_data: dict) -> None:  # noqa: D401 # type: ignore
+        project_root = Path(self.root)
+        src_frontend_dist = project_root / "src" / "frontend_dist"
+        repo_frontend_dist = project_root / "frontend" / "dist"
+
+        # Fast path: already present in src/
+        if (src_frontend_dist / "index.html").exists():
+            self.app.display_info("frontend_dist already present; skipping build/copy")
+            return
+
+        # Copy from repo frontend/dist if present
+        if (repo_frontend_dist / "index.html").exists():
+            if src_frontend_dist.exists():
+                shutil.rmtree(src_frontend_dist)
+            shutil.copytree(repo_frontend_dist, src_frontend_dist)
+            self.app.display_info("Copied frontend/dist -> src/frontend_dist for packaging")
+            return
+
+        # No assets available; fail fast with guidance
+        raise RuntimeError(
+            "Packaged dashboard (src/frontend_dist) missing and frontend/dist not found. "
+            "Run 'make build_package' to generate assets before packaging/uvx."
+        )

{open_edison-0.1.26 → open_edison-0.1.30}/pyproject.toml

@@ -1,6 +1,6 @@
 [project]
 name = "open-edison"
-version = "0.1.26"
+version = "0.1.30"
 description = "Open-source MCP security, aggregation, and monitoring. Single-user, self-hosted MCP proxy."
 readme = "README.md"
 authors = [
@@ -21,6 +21,7 @@ dependencies = [
     "opentelemetry-api>=1.36.0",
     "opentelemetry-sdk>=1.36.0",
     "opentelemetry-exporter-otlp>=1.36.0",
+    "hatchling>=1.27.0",
 ]
 requires-python = ">= 3.12"
 
@@ -32,9 +33,8 @@ open_edison = "src.cli:main"
 requires = ["hatchling"]
 build-backend = "hatchling.build"
 
-[tool.rye]
+[tool.uv]
 managed = true
-python = "3.12"
 dev-dependencies = [
     "basedpyright>=1.21.0",
     "ruff>=0.12.3",
@@ -67,6 +67,9 @@ include = [
   "src/frontend_dist/**",
 ]
 
+[tool.hatch.build.hooks.custom]
+path = "hatch_build.py"
+
 
 [tool.hatch.build.targets.sdist]
 include = [
@@ -77,10 +80,10 @@ include = [
   "resource_permissions.json",
   "prompt_permissions.json",
   "src/**",
-  "docs/**",
-  # Ensure packaged dashboard assets are present when building from sdist
   "src/frontend_dist/**",
+  "docs/**",
 ]
+force-include = { "src/frontend_dist" = "src/frontend_dist" }
 
 [tool.ruff]
 line-length = 100
@@ -114,4 +117,4 @@ venvPath = ".venv"
 extraPaths = ["src"]
 
 [tool.vulture]
-exclude = ["tests", "src/frontend_dist"]
+exclude = ["tests", "src/frontend_dist"]

{open_edison-0.1.26 → open_edison-0.1.30}/src/cli.py

@@ -125,6 +125,12 @@ def _spawn_frontend_dev(  # noqa: C901 - pragmatic complexity for env probing
         )
         # No separate website process needed. Return sentinel port (-1) so caller knows not to warn.
         return (-1, None)
+
+    if static_dir is None:
+        raise RuntimeError(
+            "No packaged dashboard detected. The website will be served from the frontend directory."
+        )
+
     pkg_frontend_candidates = [
         Path(__file__).parent / "frontend",  # inside package dir
         Path(__file__).parent.parent / "frontend",  # site-packages root

{open_edison-0.1.26 → open_edison-0.1.30}/src/config.py

@@ -10,6 +10,7 @@ import os
 import sys
 import tomllib
 from dataclasses import asdict, dataclass
+from functools import cache
 from pathlib import Path
 from typing import Any, cast
 
@@ -37,8 +38,7 @@ def get_config_dir() -> Path:
         try:
             return Path(env_dir).expanduser().resolve()
         except Exception:
-            # Fall through to defaults
-            pass
+            log.warning(f"Failed to resolve OPEN_EDISON_CONFIG_DIR: {env_dir}")
 
     # Platform-specific defaults
     try:
@@ -58,26 +58,8 @@ def get_config_dir() -> Path:
         return (Path.home() / ".open-edison").resolve()
 
 
-def _default_config_path() -> Path:
-    """Determine default config.json path.
-
-    In development (editable or source checkout), prefer repository root
-    `config.json` when present. In an installed package (site-packages),
-    use the resolved user config dir.
-    """
-    repo_pyproject = root_dir / "pyproject.toml"
-    repo_config = root_dir / "config.json"
-
-    # If pyproject.toml exists next to src/, we are likely in a repo checkout
-    # Prefer the user config directory if a config already exists there (runtime source of truth),
-    # otherwise fall back to the repo copy.
-    if repo_pyproject.exists():
-        user_cfg = get_config_dir() / "config.json"
-        if user_cfg.exists():
-            return user_cfg
-        return repo_config
-
-    # Installed package: prefer user config directory
+def get_config_json_path() -> Path:
+    """Get the path to the config.json file"""
     return get_config_dir() / "config.json"
 
 
@@ -156,6 +138,15 @@ class TelemetryConfig:
     export_interval_ms: int = 60000
 
 
+@cache
+def load_json_file(path: Path) -> dict[str, Any]:
+    """Load a JSON file from the given path.
+    Kept as a separate function because we want to manually clear cache sometimes (update in config)"""
+    log.info(f"Loading configuration from {path}")
+    with open(path) as f:
+        return json.load(f)
+
+
 @dataclass
 class Config:
     """Main configuration class"""
@@ -188,21 +179,18 @@ class Config:
         If no path is provided, uses OPEN_EDISON_CONFIG_DIR or project root.
         """
         if config_path is None:
-            config_path = _default_config_path()
+            config_path = get_config_json_path()
         else:
             # If a directory was passed, use config.json inside it
             if config_path.is_dir():
                 config_path = config_path / "config.json"
 
-        log.info(f"Loading configuration from {config_path}")
-
         if not config_path.exists():
             log.warning(f"Config file not found at {config_path}, creating default config")
             self.create_default()
             self.save(config_path)
 
-        with open(config_path) as f:
-            data: dict[str, Any] = json.load(f)
+        data = load_json_file(config_path)
 
         mcp_servers_data = data.get("mcp_servers", [])  # type: ignore
         server_data = data.get("server", {})  # type: ignore
@@ -248,7 +236,7 @@ class Config:
     def save(self, config_path: Path | None = None) -> None:
         """Save configuration to JSON file"""
         if config_path is None:
-            config_path = _default_config_path()
+            config_path = get_config_json_path()
         else:
             # If a directory was passed, save to config.json inside it
             if config_path.is_dir():