PyPI - sallyport - Versions diffs - 0.3.0__tar.gz - Mend

sallyport 0.3.0__tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (20) hide show

sallyport-0.3.0/.gitignore +43 -0
sallyport-0.3.0/LICENSE +21 -0
sallyport-0.3.0/PKG-INFO +83 -0
sallyport-0.3.0/README.md +49 -0
sallyport-0.3.0/pyproject.toml +118 -0
sallyport-0.3.0/src/sallyport_daemon/__main__.py +428 -0
sallyport-0.3.0/src/sallyport_daemon/bridge.py +281 -0
sallyport-0.3.0/src/sallyport_daemon/local_tools.py +192 -0
sallyport-0.3.0/src/sallyport_daemon/mcp_server.py +375 -0
sallyport-0.3.0/src/sallyport_daemon/protocol.py +247 -0
sallyport-0.3.0/src/sallyport_daemon/secret.py +89 -0
sallyport-0.3.0/tests/__init__.py +0 -0
sallyport-0.3.0/tests/test_cli_smoke.py +158 -0
sallyport-0.3.0/tests/test_e2e.py +702 -0
sallyport-0.3.0/tests/test_local_tools.py +247 -0
sallyport-0.3.0/tests/test_main.py +567 -0
sallyport-0.3.0/tests/test_mcp_server.py +209 -0
sallyport-0.3.0/tests/test_protocol.py +470 -0
sallyport-0.3.0/tests/test_secret.py +150 -0
sallyport-0.3.0/tests/test_vectors.py +64 -0

sallyport-0.3.0/.gitignore ADDED Viewed

@@ -0,0 +1,43 @@
+# OS / editors
+.DS_Store
+*.swp
+# Python
+__pycache__/
+*.pyc
+*.egg-info/
+build/
+.venv/
+.mypy_cache/
+.ruff_cache/
+.pytest_cache/
+# Node / extension
+node_modules/
+dist/
+*.log
+coverage/
+.coverage
+.coverage.*
+htmlcov/
+*.tsbuildinfo
+*.zip
+*.crx
+*.pem
+# Secrets (just in case anyone runs from-repo)
+secret
+.config/
+.env
+.env.*
+# Local editor / tooling files
+CLAUDE.md
+.claude/
+.mcp.json
+.vscode/
+.idea/
+# Local-only reference material (not for redistribution)
+kimi-reference/
+ANALYSIS.md

sallyport-0.3.0/LICENSE ADDED Viewed

@@ -0,0 +1,21 @@
+MIT License
+Copyright (c) 2026 ginkida
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

sallyport-0.3.0/PKG-INFO ADDED Viewed

@@ -0,0 +1,83 @@
+Metadata-Version: 2.4
+Name: sallyport
+Version: 0.3.0
+Summary: MCP server bridging Claude Code to a browser extension over WS+HMAC
+Project-URL: Homepage, https://github.com/ginkida/sallyport
+Project-URL: Repository, https://github.com/ginkida/sallyport
+Project-URL: Issues, https://github.com/ginkida/sallyport/issues
+Project-URL: Changelog, https://github.com/ginkida/sallyport/blob/main/CHANGELOG.md
+Author: ginkida
+License-Expression: MIT
+License-File: LICENSE
+Keywords: ai-agents,anthropic,browser-automation,chrome,claude,claude-code,hmac,mcp,model-context-protocol,security
+Classifier: Development Status :: 4 - Beta
+Classifier: Environment :: Console
+Classifier: Intended Audience :: Developers
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: Internet :: WWW/HTTP :: Browsers
+Classifier: Topic :: Security
+Classifier: Topic :: Software Development
+Requires-Python: >=3.10
+Requires-Dist: mcp<2.0.0,>=1.0.0
+Requires-Dist: websockets<17.0,>=13.0
+Provides-Extra: dev
+Requires-Dist: mypy>=1.10; extra == 'dev'
+Requires-Dist: pytest-asyncio>=0.23; extra == 'dev'
+Requires-Dist: pytest-cov>=5.0; extra == 'dev'
+Requires-Dist: pytest>=8.0; extra == 'dev'
+Requires-Dist: ruff>=0.6; extra == 'dev'
+Description-Content-Type: text/markdown
+# sallyport
+The Python MCP-server half of **[Sallyport](https://github.com/ginkida/sallyport)** —
+a security-first bridge between Claude Code (or any MCP client) and your Chrome,
+with explicit trust boundaries instead of implicit ones.
+```
+Claude Code ── MCP/stdio ──▶ daemon (this package) ── WS+HMAC ──▶ extension (MV3) ── CDP ──▶ Chrome
+```
+The daemon speaks MCP on stdio and hosts an HMAC-authenticated WebSocket server
+on `127.0.0.1:10086` that the companion Chrome extension connects into. Every
+frame is signed (HMAC-SHA256 + timestamp + nonce); the extension enforces a
+per-domain allowlist and a per-domain opt-in for arbitrary JS.
+## Install
+```sh
+pip install sallyport
+```
+The package installs the `sallyport-daemon` console command.
+## Quickstart
+```sh
+sallyport-daemon doctor          # check Python, secret file + perms, port; print the pairing block
+claude mcp add sallyport sallyport-daemon   # register with Claude Code
+```
+Then load the unpacked extension (or the release zip) from the
+[main repository](https://github.com/ginkida/sallyport) and paste the pairing
+block into its popup.
+- `sallyport-daemon list-tools` — print the tool catalogue (no daemon start)
+- `sallyport-daemon serve` — WS-only mode (no MCP) for wire testing
+- `sallyport-daemon exec <tool> k=v …` — fire one tool from the shell
+## Security
+The full threat model, the load-bearing invariants, and known limitations live
+in [SECURITY.md](https://github.com/ginkida/sallyport/blob/main/SECURITY.md).
+In short: loopback-only bind, HMAC on every frame, a domain allowlist enforced
+in the extension, per-domain `evaluate` opt-in, password-field gates, and
+daemon-side filesystem sandboxes for `upload`/`save_to_file`.
+## License
+MIT — see [LICENSE](https://github.com/ginkida/sallyport/blob/main/LICENSE).

sallyport-0.3.0/README.md ADDED Viewed

@@ -0,0 +1,49 @@
+# sallyport
+The Python MCP-server half of **[Sallyport](https://github.com/ginkida/sallyport)** —
+a security-first bridge between Claude Code (or any MCP client) and your Chrome,
+with explicit trust boundaries instead of implicit ones.
+```
+Claude Code ── MCP/stdio ──▶ daemon (this package) ── WS+HMAC ──▶ extension (MV3) ── CDP ──▶ Chrome
+```
+The daemon speaks MCP on stdio and hosts an HMAC-authenticated WebSocket server
+on `127.0.0.1:10086` that the companion Chrome extension connects into. Every
+frame is signed (HMAC-SHA256 + timestamp + nonce); the extension enforces a
+per-domain allowlist and a per-domain opt-in for arbitrary JS.
+## Install
+```sh
+pip install sallyport
+```
+The package installs the `sallyport-daemon` console command.
+## Quickstart
+```sh
+sallyport-daemon doctor          # check Python, secret file + perms, port; print the pairing block
+claude mcp add sallyport sallyport-daemon   # register with Claude Code
+```
+Then load the unpacked extension (or the release zip) from the
+[main repository](https://github.com/ginkida/sallyport) and paste the pairing
+block into its popup.
+- `sallyport-daemon list-tools` — print the tool catalogue (no daemon start)
+- `sallyport-daemon serve` — WS-only mode (no MCP) for wire testing
+- `sallyport-daemon exec <tool> k=v …` — fire one tool from the shell
+## Security
+The full threat model, the load-bearing invariants, and known limitations live
+in [SECURITY.md](https://github.com/ginkida/sallyport/blob/main/SECURITY.md).
+In short: loopback-only bind, HMAC on every frame, a domain allowlist enforced
+in the extension, per-domain `evaluate` opt-in, password-field gates, and
+daemon-side filesystem sandboxes for `upload`/`save_to_file`.
+## License
+MIT — see [LICENSE](https://github.com/ginkida/sallyport/blob/main/LICENSE).

sallyport-0.3.0/pyproject.toml ADDED Viewed

@@ -0,0 +1,118 @@
+[project]
+name = "sallyport"
+version = "0.3.0"
+description = "MCP server bridging Claude Code to a browser extension over WS+HMAC"
+readme = "README.md"
+license = "MIT"
+license-files = ["LICENSE"]
+requires-python = ">=3.10"
+authors = [{ name = "ginkida" }]
+keywords = [
+    "mcp",
+    "model-context-protocol",
+    "claude",
+    "claude-code",
+    "anthropic",
+    "browser-automation",
+    "chrome",
+    "security",
+    "hmac",
+    "ai-agents",
+]
+classifiers = [
+    "Development Status :: 4 - Beta",
+    "Intended Audience :: Developers",
+    "Environment :: Console",
+    "Operating System :: OS Independent",
+    "Programming Language :: Python :: 3",
+    "Programming Language :: Python :: 3.10",
+    "Programming Language :: Python :: 3.11",
+    "Programming Language :: Python :: 3.12",
+    "Topic :: Software Development",
+    "Topic :: Internet :: WWW/HTTP :: Browsers",
+    "Topic :: Security",
+]
+dependencies = [
+    # Upper-bounded at the next major: the MCP SDK churns its API across the
+    # 1.x line, so an unbounded floor would let a fresh install pull a future
+    # release that breaks startup. Tested against mcp 1.26.0 / websockets 16.0.
+    "mcp>=1.0.0,<2.0.0",
+    "websockets>=13.0,<17.0",
+]
+[project.optional-dependencies]
+dev = [
+    "pytest>=8.0",
+    "pytest-asyncio>=0.23",
+    "pytest-cov>=5.0",
+    "ruff>=0.6",
+    "mypy>=1.10",
+]
+[project.scripts]
+sallyport-daemon = "sallyport_daemon.__main__:main"
+[project.urls]
+Homepage = "https://github.com/ginkida/sallyport"
+Repository = "https://github.com/ginkida/sallyport"
+Issues = "https://github.com/ginkida/sallyport/issues"
+Changelog = "https://github.com/ginkida/sallyport/blob/main/CHANGELOG.md"
+[tool.pytest.ini_options]
+asyncio_mode = "auto"
+testpaths = ["tests"]
+addopts = [
+    "--cov=sallyport_daemon",
+    "--cov-report=term-missing:skip-covered",
+    "--cov-fail-under=80",
+]
+[tool.coverage.run]
+branch = true
+source = ["sallyport_daemon"]
+[tool.coverage.report]
+exclude_lines = [
+    "pragma: no cover",
+    "if __name__ == .__main__.:",
+    "raise NotImplementedError",
+]
+[tool.ruff]
+target-version = "py310"
+line-length = 100
+[tool.ruff.lint]
+select = ["E", "F", "W", "I", "B", "UP", "ASYNC", "S", "PT"]
+ignore = ["S101"]  # allow asserts in tests
+[tool.ruff.lint.per-file-ignores]
+# Tests legitimately: use hardcoded secrets (S105/S106), seed PRNG (S311),
+# run blocking I/O in async contexts (ASYNC230/240), and spawn subprocesses
+# with controlled arg lists (S603).
+"tests/**" = ["S105", "S106", "S311", "S603", "ASYNC230", "ASYNC240"]
+[tool.mypy]
+python_version = "3.10"
+strict = true
+warn_return_any = true
+warn_unused_ignores = true
+mypy_path = "src"
+packages = ["sallyport_daemon"]
+explicit_package_bases = true
+[[tool.mypy.overrides]]
+# The mcp SDK's decorators are untyped — silence the noise from server.list_tools / call_tool.
+module = "mcp.*"
+ignore_missing_imports = true
+[[tool.mypy.overrides]]
+module = "sallyport_daemon.mcp_server"
+disallow_untyped_decorators = false
+[build-system]
+requires = ["hatchling"]
+build-backend = "hatchling.build"
+[tool.hatch.build.targets.wheel]
+packages = ["src/sallyport_daemon"]