tweek 0.2.1__py3-none-any.whl → 0.3.1__py3-none-any.whl

tweek/sandbox/linux.py

@@ -237,13 +237,13 @@ def prompt_install_firejail(console) -> bool:
     pkg_info = get_linux_package_manager()
 
     if not pkg_info:
-        console.print("[dim]Could not detect package manager.[/dim]")
+        console.print("[white]Could not detect package manager.[/white]")
         console.print("Install firejail manually: https://firejail.wordpress.com/download-2/")
         return False
 
     manager, command = pkg_info
-    console.print(f"[dim]Detected package manager: {manager}[/dim]")
-    console.print(f"[dim]Command: {' '.join(command)}[/dim]\n")
+    console.print(f"[white]Detected package manager: {manager}[/white]")
+    console.print(f"[white]Command: {' '.join(command)}[/white]\n")
 
     if Confirm.ask("Install firejail for full sandbox protection?", default=False):
         try:
@@ -260,13 +260,13 @@ def prompt_install_firejail(console) -> bool:
 
         except subprocess.CalledProcessError as e:
             console.print(f"[red]Installation failed (exit code {e.returncode})[/red]")
-            console.print("[dim]Try running the install command manually with sudo[/dim]")
+            console.print("[white]Try running the install command manually with sudo[/white]")
             return False
         except KeyboardInterrupt:
             console.print("\n[yellow]Installation cancelled.[/yellow]")
             return False
     else:
-        console.print("[dim]Skipping firejail. Sandbox layer will be disabled.[/dim]")
+        console.print("[white]Skipping firejail. Sandbox layer will be disabled.[/white]")
         return False
 
 

tweek/skill_template/SKILL.md

@@ -28,7 +28,7 @@ The script returns JSON with these fields:
 | Field | Meaning |
 |-------|---------|
 | `status: "fully_operational"` | Tweek is installed and hooks are active. Proceed to help user with their question. |
-| `status: "installed_no_hooks"` | Tweek is installed but hooks are not registered. Tell user to run `tweek install`. |
+| `status: "installed_no_hooks"` | Tweek is installed but hooks are not registered. Tell user to run `tweek protect claude-code`. |
 | `status: "hooks_only"` | Hooks reference tweek but the package is missing. Tell user to reinstall. |
 | `status: "not_installed"` | Tweek is not present. Check `install_declined` before offering to install. |
 | `install_declined: true` | User previously declined installation. **Do not offer to install again** unless the user explicitly asks. |
@@ -142,7 +142,6 @@ Trust mode is auto-detected from the terminal environment. It can be overridden
 
 | Command | What It Does |
 |---------|-------------|
-| `tweek status` | Show installation status and active configuration |
 | `tweek doctor` | Health check — verify all layers are active |
 | `tweek doctor --verbose` | Detailed diagnostics with fix suggestions |
 | `tweek logs show` | View recent security events |
@@ -185,7 +184,7 @@ For the full configuration format and examples, see `overrides-reference.md` in
 | "Tweek isn't working" | Run `tweek doctor --verbose` and review the output. Common issues: hooks not registered, outdated patterns, missing dependencies. |
 | "How do I update patterns?" | Run `tweek update` to fetch the latest pattern definitions. |
 | "I want to pause tweek for this project" | Tell the user to run `tweek trust` in their terminal. This exempts the current project from screening. They can resume with `tweek untrust`. |
-| "I want to disable tweek entirely" | Tell the user to run `tweek uninstall` to remove hooks. Run `tweek install` to re-enable later. |
+| "I want to disable tweek entirely" | Tell the user to run `tweek unprotect claude-code` to remove hooks. Run `tweek protect claude-code` to re-enable later. |
 | "What has tweek blocked recently?" | Run `tweek logs show` to see recent security events with details. |
 
 ---

tweek/skill_template/cli-reference.md

@@ -6,12 +6,21 @@ Complete command reference for the `tweek` command-line tool.
 
 ## Installation & Setup
 
-### `tweek install`
+### `tweek protect`
 
-Install Tweek hooks into the AI assistant's configuration.
+Set up Tweek protection for AI tools. With no arguments, launches an interactive wizard.
 
 ```
-tweek install [OPTIONS]
+tweek protect                          # Interactive wizard — detects and protects all tools
+tweek protect --status                 # Show protection status for all tools
+```
+
+### `tweek protect claude-code`
+
+Install Tweek hooks into Claude Code (replaces the former `tweek install` command).
+
+```
+tweek protect claude-code [OPTIONS]
 ```
 
 | Option | Description |
@@ -25,15 +34,29 @@ tweek install [OPTIONS]
 | `--skip-env-scan` | Skip scanning for credential files to migrate |
 | `--backup / --no-backup` | Backup existing hooks before installation (default: backup) |
 
-### `tweek uninstall`
+### `tweek protect claude-desktop`
+
+Install Tweek as MCP server for Claude Desktop.
+
+### `tweek protect chatgpt`
+
+Install Tweek as MCP server for ChatGPT Desktop.
 
-Remove Tweek hooks from configuration.
+### `tweek protect gemini`
+
+Install Tweek as MCP server for Gemini CLI.
+
+### `tweek unprotect`
+
+Remove Tweek protection from an AI tool (replaces the former `tweek uninstall` command).
 
 ```
-tweek uninstall [--global] [--confirm]
+tweek unprotect <tool> [--confirm]
+tweek unprotect --all [--confirm]
 ```
 
-By default removes from `./.claude/` (current project). Use `--global` to remove from `~/.claude/`.
+By default removes from `./.claude/` (current project). Use `--global` to remove from `~/.claude/` (for claude-code).
+Use `--all` to remove Tweek from all tools at once.
 
 ---
 
@@ -82,14 +105,6 @@ tweek untrust /path/to/project        # Untrust specific directory
 
 ## Diagnostics
 
-### `tweek status`
-
-Show installation status and active configuration.
-
-```
-tweek status
-```
-
 ### `tweek doctor`
 
 Run health checks on all screening layers.
@@ -313,12 +328,12 @@ tweek plugins search QUERY
 
 ## Proxy (API Interception)
 
-### `tweek protect`
+### `tweek protect openclaw`
 
-Set up protection for an AI gateway.
+Set up proxy protection for OpenClaw.
 
 ```
-tweek protect [openclaw|claude]
+tweek protect openclaw
 ```
 
 ### `tweek proxy start / stop`

tweek/skill_template/scripts/check_installed.py

@@ -144,18 +144,18 @@ def check_installation():
         result["status"] = "fully_operational"
     elif result["tweek_in_path"] and not result["hooks_registered"]:
         result["status"] = "installed_no_hooks"
-        result["install_command"] = "tweek install"
+        result["install_command"] = "tweek protect claude-code"
     elif not result["tweek_in_path"] and result["hooks_registered"]:
         result["status"] = "hooks_only"
         result["install_command"] = "pip install tweek"
     else:
         result["status"] = "not_installed"
         if result["pipx_available"]:
-            result["install_command"] = "pipx install tweek && tweek install"
+            result["install_command"] = "pipx install tweek && tweek protect claude-code"
         elif result["pip_available"]:
-            result["install_command"] = "pip install tweek && tweek install"
+            result["install_command"] = "pip install tweek && tweek protect claude-code"
         else:
-            result["install_command"] = "python3 -m pip install tweek && tweek install"
+            result["install_command"] = "python3 -m pip install tweek && tweek protect claude-code"
 
     return result
 

{tweek-0.2.1.dist-info → tweek-0.3.1.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: tweek
-Version: 0.2.1
+Version: 0.3.1
 Summary: Defense-in-depth security for AI coding assistants - protect credentials, code, and system from prompt injection attacks
 Author: Tommy Mancino
 License-Expression: Apache-2.0
@@ -21,7 +21,9 @@ Classifier: Topic :: Software Development :: Quality Assurance
 Requires-Python: >=3.9
 Description-Content-Type: text/markdown
 License-File: LICENSE
+License-File: NOTICE
 Requires-Dist: click>=8.0
+Requires-Dist: pydantic>=2.0
 Requires-Dist: pyyaml>=6.0
 Requires-Dist: rich>=13.0
 Requires-Dist: keyring>=25.0
@@ -42,6 +44,8 @@ Requires-Dist: mitmproxy>=10.0; extra == "proxy"
 Provides-Extra: dev
 Requires-Dist: pytest>=7.0; extra == "dev"
 Requires-Dist: pytest-cov>=4.0; extra == "dev"
+Requires-Dist: pytest-xdist>=3.5.0; extra == "dev"
+Requires-Dist: hypothesis>=6.98.0; extra == "dev"
 Requires-Dist: black>=23.0; extra == "dev"
 Requires-Dist: ruff>=0.1.0; extra == "dev"
 Requires-Dist: twine>=4.0; extra == "dev"
@@ -105,11 +109,12 @@ pip install --user tweek
 ### Protect Your Tools
 
 ```bash
-tweek install                           # Claude Code (CLI hooks)
+tweek protect                           # Interactive wizard — detects and protects all tools
+tweek protect claude-code               # Claude Code (CLI hooks)
 tweek protect openclaw                  # OpenClaw (HTTP proxy)
-tweek mcp install claude-desktop        # Claude Desktop (MCP proxy)
-tweek mcp install chatgpt-desktop       # ChatGPT Desktop (MCP proxy)
-tweek mcp install gemini                # Gemini CLI (MCP proxy)
+tweek protect claude-desktop            # Claude Desktop (MCP proxy)
+tweek protect chatgpt                   # ChatGPT Desktop (MCP proxy)
+tweek protect gemini                    # Gemini CLI (MCP proxy)
 tweek proxy setup                       # Cursor, Windsurf, Continue.dev (HTTP proxy)
 ```
 
@@ -127,11 +132,11 @@ That's it. Tweek auto-detects your tools, applies all 259 attack patterns across
 
 | Client | Integration | Setup |
 |--------|------------|-------|
-| **Claude Code** | CLI hooks (native) | `tweek install` |
+| **Claude Code** | CLI hooks (native) | `tweek protect claude-code` |
 | **OpenClaw** | Proxy wrapping | `tweek protect openclaw` |
-| **Claude Desktop** | MCP proxy | `tweek mcp install claude-desktop` |
-| **ChatGPT Desktop** | MCP proxy | `tweek mcp install chatgpt-desktop` |
-| **Gemini CLI** | MCP proxy | `tweek mcp install gemini` |
+| **Claude Desktop** | MCP proxy | `tweek protect claude-desktop` |
+| **ChatGPT Desktop** | MCP proxy | `tweek protect chatgpt` |
+| **Gemini CLI** | MCP proxy | `tweek protect gemini` |
 | **Cursor** | HTTP proxy | `tweek proxy setup` |
 | **Windsurf** | HTTP proxy | `tweek proxy setup` |
 | **Continue.dev** | HTTP proxy | `tweek proxy setup` |
@@ -161,7 +166,7 @@ Turn 3: cat ~/.ssh/id_rsa → BLOCKED: path_escalation anomaly
 
 **Response injection** — Malicious instructions hidden in tool responses are caught at ingestion.
 
-See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 patterns across 22 categories.
+See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 patterns across 11 categories.
 
 ---
 
@@ -169,14 +174,16 @@ See the full [Attack Patterns Reference](docs/ATTACK_PATTERNS.md) for all 259 pa
 
 Most security tools that use AI send your data to an API. Tweek doesn't.
 
-Tweek ships with a **custom-trained prompt injection classifier** ([DeBERTa-v3-base](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2)) that runs entirely on your machine via ONNX Runtime. No API keys. No cloud calls. No data leaves your computer.
+Tweek uses [ProtectAI's DeBERTa-v3-base Prompt Injection v2](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2) classifier, fine-tuned from [Microsoft's DeBERTa-v3-base](https://huggingface.co/microsoft/deberta-v3-base), running entirely on your machine via [ONNX Runtime](https://onnxruntime.ai). No API keys. No cloud calls. No data leaves your computer.
 
 | Property | Value |
 |----------|-------|
-| **Model** | DeBERTa-v3-base, fine-tuned for prompt injection |
-| **Runtime** | ONNX (CPU-only, single thread) |
+| **Model** | [ProtectAI DeBERTa-v3-base Prompt Injection v2](https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2) (Apache 2.0) |
+| **Base Model** | [Microsoft DeBERTa-v3-base](https://huggingface.co/microsoft/deberta-v3-base) (MIT) |
+| **Runtime** | ONNX Runtime (CPU-only, single thread) |
 | **Privacy** | 100% on-device — zero network calls |
-| **License** | Apache 2.0 |
+
+See [NOTICE](./NOTICE) for full third-party license texts and attribution.
 
 The local model handles the gray-area attacks that pattern matching alone cannot catch — encoded instructions, novel injection techniques, social engineering disguised as legitimate content. High-confidence results are returned instantly. Uncertain results can optionally escalate to a cloud LLM for deeper analysis (you bring your own API key).
 
@@ -278,4 +285,4 @@ To report a security vulnerability, email security@gettweek.com.
 
 ## License
 
-[Apache 2.0](LICENSE)
+[Apache 2.0](LICENSE) | [Third-Party Notices](NOTICE)

{tweek-0.2.1.dist-info → tweek-0.3.1.dist-info}/RECORD

@@ -1,23 +1,24 @@
-tweek/__init__.py,sha256=mZ5RaMD3SVWt8mcinSq8KlCaNLoVqgVu-9cewcMVlt0,360
+tweek/__init__.py,sha256=NppVIy7NWIJrgFbWfAVveJtg-UdwqA9ux98hciWBeLM,360
 tweek/_keygen.py,sha256=UapwIKNSwaRWdqHoJoF3hmKuiux6aIiFGe8WVskTbI8,1286
-tweek/audit.py,sha256=Bp4RETwdiHpT2EEi45atZa0LlJUOtALhrc3UT8MHvF8,8868
-tweek/cli.py,sha256=J7L0xhfZ1DmzrVGwvEBTCRLYd5w5UakSGWH9DikOOSg,245768
-tweek/cli_helpers.py,sha256=adczf-8oHsc-TDdfJqPQoG4IgWEfJmRORm2NmVWaCOw,5494
-tweek/cli_model.py,sha256=QO6Q3iy0d-hsMLdgWwDiigqN0rjep4Ufa73VCZjVguc,12825
-tweek/diagnostics.py,sha256=eOiI6MlfqimzUeG7Uvwhcnen_FlINejfawLun5DY59o,22472
-tweek/licensing.py,sha256=4Pt34t8Y60jaLMBYLjnmLs_0o_LUahOhGflhXeZtuPU,11703
-tweek/config/__init__.py,sha256=C_kQm0LqYdM67E9wNi6bsX2V7xz7GY4HiICb_XlrX8A,362
+tweek/audit.py,sha256=OmCUagbx_fkCorcrZt2ebTtDm-rr4fRKkZpxZdvZens,8868
+tweek/cli.py,sha256=Ad54k7bDws9Eg7z3oeEVR85Ni9DQz72JJVUFC1WV_zA,256803
+tweek/cli_helpers.py,sha256=Q2NTOkyRTOIPNLMqY2jA5_tuzDPksAGwGXYPRK3bzoY,5538
+tweek/cli_model.py,sha256=iMZStFqA0Nqyzm4rxSbhD4v-AqcO6h5NI72AR7cldoY,12853
+tweek/diagnostics.py,sha256=KbtXQH8QrRBoyIFWumL6q9--aQQdR0tUo2GzjMhwpII,24601
+tweek/licensing.py,sha256=wYN8wBYVCp1RbAi_sWeF7gKKBSU116ncX3tnZawYUpQ,11703
+tweek/config/__init__.py,sha256=ENwimeLZd2gSJXpkASMY45hbMUDn2RwM-Zl_RMvpCbQ,772
 tweek/config/allowed_dirs.yaml,sha256=dMF_DqKgQThzkdIEoXzDBfAjbopGrk0HTkiM7ENmBaU,788
 tweek/config/families.yaml,sha256=jkNO0UsmX3MFlTKC9Or3p8_MlD3ZtHM0SrQIYFqx9i8,18212
-tweek/config/manager.py,sha256=Cg6gG9c4zZpDTxy8WZ_T-diPBzV8DL2Hny-Yu9DBV6I,39335
-tweek/config/patterns.yaml,sha256=8ow--0qdPJNjIY94j-vDEcrHt-TYgf9uuPCiqSMCIEQ,85376
+tweek/config/manager.py,sha256=Jk9l_UJM9e5_fxTvWFXrU0677u9HCttmunahp36woBE,40591
+tweek/config/models.py,sha256=RbVjC2pxnkrBKanS6QGDrHwPVkmss5ouG_dqAHf_C3Q,10018
+tweek/config/patterns.yaml,sha256=hu0lphSN0i_bY8kla65bTaBEQR8phhrb3BLC1KprMLw,85376
 tweek/config/tiers.yaml,sha256=9hIXQ9izVKXd8ptoCsQiBo2r_XY8RvIk7VWrhWggkbc,10191
 tweek/hooks/__init__.py,sha256=GcgDjPdhZayxmyZ4-GfBa-ISARNtt9087RsuprRq2-s,54
 tweek/hooks/break_glass.py,sha256=GNMhCtLWPylNMlQ5QfsoUkEjgIT1Uk1Ik7HvRWeE5N8,4636
 tweek/hooks/feedback.py,sha256=uuA4opHYyBHC5sElBz-fr2Je3cg2DAv-aRHvETZcag0,6555
 tweek/hooks/overrides.py,sha256=1Yw_NPpZMvcFG_uyNY-ouBKSSomnxOptRedSjzkkhmE,18635
-tweek/hooks/post_tool_use.py,sha256=DiAnWOBd9t4vpMz1JsgUjYzToU6i-igesP2Vk83AAAc,17195
-tweek/hooks/pre_tool_use.py,sha256=Y4uIz-vB_39KHgL54HBOUCmX01Ze-8F-2vZIwK4655c,71688
+tweek/hooks/post_tool_use.py,sha256=22ugZdlZn2Q0eUcUucelrF18N7mCgaC_agb7kZT51Ww,17195
+tweek/hooks/pre_tool_use.py,sha256=70XbonRSGh8rYpDlI4R_Z5Ug2LwU4iLyLsS87I5xlqc,71743
 tweek/integrations/__init__.py,sha256=sl7wFwbygmnruugX4bO2EUjoXxBlCpzTKbj-1zHuUPg,78
 tweek/integrations/openclaw.py,sha256=jX99__ODGI7Cq6gclSTK2pI5lsI7UGh5_iCHmq1R8RY,13798
 tweek/integrations/openclaw_server.py,sha256=Ah7wxsxKE2lQmIdlrFINvt5jW9U_bqqERfG3X2N5Aps,12533
@@ -27,7 +28,7 @@ tweek/logging/json_logger.py,sha256=zXOsFAufj3MF0TboM5zSS7V8uNBDJea7YkJHR-uQgBA,
 tweek/logging/security_log.py,sha256=BwHDdrN0VCpqssStvsZdASFnyxVpANCq9xiSkFsEFFk,28486
 tweek/mcp/__init__.py,sha256=AOFDrzDfjOvICMcN15Hz-iNCT0Kf6oyUBB-iNEW5Vr4,791
 tweek/mcp/approval.py,sha256=WIFQi4ryXEFtgQyzQIshwgP5h_Th7Cxepx9NIhf2o_4,17885
-tweek/mcp/approval_cli.py,sha256=yXIDh75lci3DWyJtZG3izryIoO4jSXGDuaJRch3K1rg,11265
+tweek/mcp/approval_cli.py,sha256=8WtmJF7KTLmdEF5wHqENaUJUzKEQej4CjRtFey4RcGg,11281
 tweek/mcp/proxy.py,sha256=0p5OEaRsFuNRcGR3rnqprkPjTdSSYgrsU_XXQiFPS8c,24819
 tweek/mcp/screening.py,sha256=ax5TK8ZSXb9uo5DFx3mxiYrBKjDBP0cTLNhA05TXb80,5421
 tweek/mcp/server.py,sha256=3pF3piXUNtIf2-SUJPCjGZPD42esg2KFsVXpaBXrq3E,10901
@@ -83,7 +84,7 @@ tweek/sandbox/__init__.py,sha256=bT4ZAQkY2WOELdrRwf87hVdePXq6QPmvBgDs4WqDWgU,229
 tweek/sandbox/docker_bridge.py,sha256=QD17ZuPVRgrbg0zFHdvji-VA11Jo5Td73_Kn6gbRaxc,5030
 tweek/sandbox/executor.py,sha256=MLgMps4CNH_rtbbvseIKuuusMUznv6U7njPKwVCT-Bo,13186
 tweek/sandbox/layers.py,sha256=Qd-kRfEKnBWax6n9h9COJeCTkvqnLAf157bHpGMfRYg,3263
-tweek/sandbox/linux.py,sha256=rF-w4q6uSt3rBoUnw0UXS1lFBdjooqV9YWVwQBaeTzM,8686
+tweek/sandbox/linux.py,sha256=mKA3rI--TmJnVU6uE2kAxBAD8DGZjHUHlZ-sSLzuoWs,8706
 tweek/sandbox/profile_generator.py,sha256=J-nNold-J1YxuSaX5BdQ_lcCC03ElwPJT7fJ4UciXfc,10957
 tweek/sandbox/project.py,sha256=SqD4g4i1VqfWTdm--6gBzTC8AZCdHuyPLR37Y9jp30k,19575
 tweek/sandbox/registry.py,sha256=ZZDQYeJMNAJ0FrFEayo1KyC5r3qXSBx6Tu-JcXIMjtI,5060
@@ -98,12 +99,12 @@ tweek/security/model_registry.py,sha256=XscpZcWaaJwHldX2T9C1T1zSvJ3lm0aSW4nIhwRp
 tweek/security/rate_limiter.py,sha256=bY8VIkQ-wCbNOYTLwD4MsMBoHk59zPWeZCkuE8Zntm8,24185
 tweek/security/secret_scanner.py,sha256=G-bbMwsAJD197BEOnZJdn_qphS4RNPK_wpLfkpiLuFU,18774
 tweek/security/session_analyzer.py,sha256=-Ylp583VZ_YJRkN5JZrYpaK1sVbiM6KP7ZwLBzWpiCI,24260
-tweek/skill_template/SKILL.md,sha256=dLMlJOdUrzJ8hz2R3bcFEjtxCT0xIKMZnX2UQFZDwTs,10309
+tweek/skill_template/SKILL.md,sha256=gBk_Ken77scVYeCs8imm1ASnNLDpBl-C0ufgWrrkQIA,10274
 tweek/skill_template/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-tweek/skill_template/cli-reference.md,sha256=I9Uj_RgRINW2uYguj4dQ3uGmxzxm83zPQt20XkqlawA,6277
+tweek/skill_template/cli-reference.md,sha256=DdXIEfTPvYn6iybVwA-r3CKkV1Mlx5Ub_sJf_lJrV2k,6913
 tweek/skill_template/overrides-reference.md,sha256=xlc07wXXsCOrx60wMD7LZ7fn5Z_dhLuj5Mgx04-xGQ0,4509
 tweek/skill_template/scripts/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-tweek/skill_template/scripts/check_installed.py,sha256=tYXZn49EThoQTexD0ehBue5T2qFQEXot2rJqw3T9p0s,5830
+tweek/skill_template/scripts/check_installed.py,sha256=-pMmfgBjdbwb5u2t9rJ0dMBz7MGYgiZM5db3tiNZgO4,5878
 tweek/skills/__init__.py,sha256=DyTvK8n5Lb-idkJhXCVytpiZjNfWveCtNkSL6o8dxHM,1209
 tweek/skills/config.py,sha256=I95wK9CBj_UiHwFuxfE8yRl7cmFiqdY0hXfF3BHP0X8,4782
 tweek/skills/fingerprints.py,sha256=YjPsTxqotzGlyMIgfgewSoNDTLU8_-p9fY_a44LJTjU,6027
@@ -113,10 +114,11 @@ tweek/skills/scanner.py,sha256=PaeZNnwxLTGls2O3hQaDgBhGw9jVJThPjfKCY_05_nI,27574
 tweek/vault/__init__.py,sha256=L408fjdRYL8-VqLEsyyHSO9PkBDhd_2mPIbrCu53YhM,980
 tweek/vault/cross_platform.py,sha256=D4UvX_7OpSo8iRx5sc2OUUWQIk8JHhgeFBYk1MbyIj4,8251
 tweek/vault/keychain.py,sha256=XL18-SUj7HwuqxLXZDViuCH81--KMu68jN9Szn1aeyw,10624
-tweek-0.2.1.dist-info/licenses/LICENSE,sha256=rjoDzr1vAf0bsqZglpIyekU5aewIkCk4jHZZDvVI2BE,15269
+tweek-0.3.1.dist-info/licenses/LICENSE,sha256=rjoDzr1vAf0bsqZglpIyekU5aewIkCk4jHZZDvVI2BE,15269
+tweek-0.3.1.dist-info/licenses/NOTICE,sha256=taQokyDes5UTRNEC67G-13VmqvUyTOncrrT33pCcWL0,8729
 tweek-openclaw-plugin/node_modules/flatted/python/flatted.py,sha256=UYburBDqkySaTfSpntPCUJRxiBGcplusJM7ECX8FEgA,3860
-tweek-0.2.1.dist-info/METADATA,sha256=7ahRw8rb7M0OV4xVZpI_5e1MMrk2KZGont3GRymkhmw,11318
-tweek-0.2.1.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
-tweek-0.2.1.dist-info/entry_points.txt,sha256=YXThD6UiF5XQXwqW33sphsvz-Bl4Zm6pm-xq-5wcCYE,1337
-tweek-0.2.1.dist-info/top_level.txt,sha256=jtNcCxjoGXN8IBqEVL0F3LHDrZD_B0S-4XF9-Ur7Pbc,28
-tweek-0.2.1.dist-info/RECORD,,
+tweek-0.3.1.dist-info/METADATA,sha256=iR7qpsuY7fLnF2DO8OWFrqUTE2vuDv3_VNMWddDIZMU,11939
+tweek-0.3.1.dist-info/WHEEL,sha256=wUyA8OaulRlbfwMtmQsvNngGrxQHAvkKcvRmdizlJi0,92
+tweek-0.3.1.dist-info/entry_points.txt,sha256=YXThD6UiF5XQXwqW33sphsvz-Bl4Zm6pm-xq-5wcCYE,1337
+tweek-0.3.1.dist-info/top_level.txt,sha256=jtNcCxjoGXN8IBqEVL0F3LHDrZD_B0S-4XF9-Ur7Pbc,28
+tweek-0.3.1.dist-info/RECORD,,

tweek-0.3.1.dist-info/licenses/NOTICE

@@ -0,0 +1,199 @@
+Tweek
+Copyright 2025 Tommy Mancino / Tweek, LLC
+
+This product includes software developed at Tweek, LLC.
+
+=========================================================================
+
+Third-Party Components
+=========================================================================
+
+This project uses the following third-party components. Their licenses
+and copyright notices are reproduced below, as required by their
+respective licenses.
+
+-------------------------------------------------------------------------
+ProtectAI DeBERTa-v3-base Prompt Injection v2
+-------------------------------------------------------------------------
+
+Source:  https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2
+License: Apache License 2.0
+Copyright (c) 2024 Protect AI, Inc.
+
+A fine-tuned DeBERTa-v3-base model for binary prompt injection
+classification. Used by Tweek as an on-device classifier for detecting
+prompt injection attacks. The model is downloaded at user request via
+`tweek model download` and stored locally at ~/.tweek/models/.
+
+Tweek does not modify or redistribute the model weights. The model is
+downloaded directly from HuggingFace by the end user.
+
+Citation:
+  @misc{deberta-v3-base-prompt-injection-v2,
+    author = {ProtectAI.com},
+    title  = {Fine-Tuned DeBERTa-v3-base for Prompt Injection Detection},
+    year   = {2024},
+    publisher = {HuggingFace},
+    url    = {https://huggingface.co/protectai/deberta-v3-base-prompt-injection-v2},
+  }
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+-------------------------------------------------------------------------
+Microsoft DeBERTa-v3-base (upstream base model)
+-------------------------------------------------------------------------
+
+Source:  https://huggingface.co/microsoft/deberta-v3-base
+License: MIT License
+Copyright (c) Microsoft Corporation.
+
+The ProtectAI prompt injection model above is fine-tuned from
+Microsoft's DeBERTa-v3-base pre-trained language model.
+
+Citation:
+  @misc{he2021debertav3,
+    title  = {DeBERTaV3: Improving DeBERTa using ELECTRA-Style
+              Pre-Training with Gradient-Disentangled Embedding Sharing},
+    author = {Pengcheng He and Jianfeng Gao and Weizhu Chen},
+    year   = {2021},
+    eprint = {2111.09543},
+    archivePrefix = {arXiv},
+    primaryClass  = {cs.CL},
+  }
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+-------------------------------------------------------------------------
+ONNX Runtime
+-------------------------------------------------------------------------
+
+Source:  https://github.com/microsoft/onnxruntime
+License: MIT License
+Copyright (c) Microsoft Corporation.
+
+Used as the inference engine for the local prompt injection classifier.
+Installed as an optional dependency via `pip install tweek[local-models]`.
+
+Permission is hereby granted, free of charge, to any person obtaining
+a copy of this software and associated documentation files (the
+"Software"), to deal in the Software without restriction, including
+without limitation the rights to use, copy, modify, merge, publish,
+distribute, sublicense, and/or sell copies of the Software, and to
+permit persons to whom the Software is furnished to do so, subject to
+the following conditions:
+
+The above copyright notice and this permission notice shall be
+included in all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND,
+EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF
+MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
+IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY
+CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,
+TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE
+SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
+
+-------------------------------------------------------------------------
+HuggingFace Tokenizers
+-------------------------------------------------------------------------
+
+Source:  https://github.com/huggingface/tokenizers
+License: Apache License 2.0
+Copyright (c) 2019 HuggingFace Inc.
+
+Used for tokenizing input text before feeding to the local ONNX model.
+Installed as an optional dependency via `pip install tweek[local-models]`.
+
+Licensed under the Apache License, Version 2.0.
+
+-------------------------------------------------------------------------
+NumPy
+-------------------------------------------------------------------------
+
+Source:  https://github.com/numpy/numpy
+License: BSD 3-Clause License
+Copyright (c) 2005-2024, NumPy Developers.
+
+Used for numerical operations in the local model inference pipeline
+(softmax scoring, tensor manipulation). Installed as an optional
+dependency via `pip install tweek[local-models]`.
+
+Redistribution and use in source and binary forms, with or without
+modification, are permitted provided that the following conditions are
+met:
+
+  1. Redistributions of source code must retain the above copyright
+     notice, this list of conditions and the following disclaimer.
+
+  2. Redistributions in binary form must reproduce the above copyright
+     notice, this list of conditions and the following disclaimer in
+     the documentation and/or other materials provided with the
+     distribution.
+
+  3. Neither the name of the copyright holder nor the names of its
+     contributors may be used to endorse or promote products derived
+     from this software without specific prior written permission.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+
+=========================================================================
+
+Runtime Dependencies
+=========================================================================
+
+The following packages are installed via pip as runtime dependencies.
+They are NOT bundled or vendored — each carries its own license in its
+distribution. Listed here for transparency.
+
+  click >=8.0             BSD-3-Clause    Pallets Projects
+  pyyaml >=6.0            MIT             Kirill Simonov / YAML community
+  rich >=13.0             MIT             Will McGugan
+  keyring >=25.0          MIT             Jason R. Coombs
+
+Optional dependencies (installed only when the user requests them):
+
+  anthropic >=0.18.0      MIT             Anthropic, PBC
+  openai >=1.0.0          MIT             OpenAI
+  google-generativeai     Apache-2.0      Google LLC
+  mcp >=1.0.0             MIT             Anthropic, PBC
+  mitmproxy >=10.0        MIT             mitmproxy contributors
+  secretstorage >=3.0     BSD-3-Clause    Dmitry Shachnev
+
+=========================================================================