dannystocker/mcp-multiagent-bridge
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
5 commits 1 branch 1 tag 123 KiB
Commit graph

5 commits

This branch
This branch
All branches
Author SHA1 Message Date
ggq-admin
b481291804 docs: Add release notes for v1.0.0-beta 2025-10-27 01:04:23 +01:00
ggq-admin
bca2ac647f docs: Update security contact email address 2025-10-27 01:02:48 +01:00
ggq-admin
e5003e9653 docs: Add governance files for OSS release 
- Add MIT LICENSE
- Add SECURITY.md with responsible disclosure policy
  * Vulnerability reporting guidelines
  * YOLO mode security considerations
  * Agentic AI threat model
  * Anthropic & OpenAI policy compliance
  * Security roadmap
- Add CONTRIBUTING.md with guidelines
  * Bug reporting template
  * Feature request process
  * PR workflow and commit format
  * Development setup instructions
- Update README.md with policy compliance
  * Beta software warning
  * YOLO mode safety notice
  * Anthropic Acceptable Use Policy
  * Anthropic Responsible Scaling Policy
  * Updated security features list
- Pin dependencies to specific versions
  * mcp>=1.0.0,<2.0.0

Ready for public GitHub release.
 2025-10-27 00:50:33 +01:00
ggq-admin
4c75bf5713 security: Implement critical safeguards before public release 
- Add .gitignore to prevent secret leakage
- Implement YOLO guard with double-confirmation flow
  * Environment variable gate (YOLO_MODE=1)
  * Typed confirmation phrase + one-time code
  * Time-limited approval tokens (5 min TTL)
  * Single-use tokens with audit logging
- Add rate limiting (10/min, 100/hour, 500/day)
  * Token bucket implementation
  * Per-session tracking
  * Automatic bucket reset
- Integrate safeguards into existing code
  * Rate limiter in SecureBridge.send_message()
  * YOLO guard in YOLOMode.execute_command()
  * Dry-run mode by default
- Add security test suite
  * .gitignore validation
  * YOLO guard functional tests
  * Rate limiter verification
  * Integration checks

All security measures tested and verified.
No secrets found in git history.
 2025-10-27 00:50:18 +01:00
ggq-admin
0207e8091e Initial commit: Claude Code Bridge 
Secure bridge for executing Claude Code commands remotely via Telegram or API.

Features:
- Secure token-based authentication
- Rate limiting and quota management
- Telegram integration
- YOLO mode for rapid iteration
- Comprehensive test suite

Files:
- claude_bridge_secure.py - Main bridge implementation
- bridge_cli.py - CLI interface
- yolo_mode.py - Rapid iteration mode
- test_bridge.py - Test suite
- demo_standalone.py - Standalone demo

Author: Danny Stocker (with Claude Code)
Date: 2025-10-26
 2025-10-27 00:01:05 +01:00