github
diff --git a/‎internal/cmd/proxy.go‎
Lines changed: 141 additions & 0 deletions b/‎internal/cmd/proxy.go‎
Lines changed: 141 additions & 0 deletions
diff --git a/‎internal/proxy/graphql.go‎
Lines changed: 166 additions & 0 deletions b/‎internal/proxy/graphql.go‎
Lines changed: 166 additions & 0 deletions
@@ -0,0 +1,141 @@
+package cmd
+
+import (
+	"fmt"
+	"log"
+	"net"
+	"net/http"
+	"os"
+	"os/signal"
+	"syscall"
+
+	"github.com/github/gh-aw-mcpg/internal/logger"
+	"github.com/github/gh-aw-mcpg/internal/proxy"
+	"github.com/spf13/cobra"
+)
+
+// Proxy subcommand flag variables
+var (
+	proxyGuardWasm string
+	proxyPolicy    string
+	proxyToken     string
+	proxyListen    string
+	proxyLogDir    string
+	proxyDIFCMode  string
+	proxyAPIURL    string
+)
+
+func init() {
+	rootCmd.AddCommand(newProxyCmd())
+}
+
+func newProxyCmd() *cobra.Command {
+	cmd := &cobra.Command{
+		Use:   "proxy",
+		Short: "Run as a GitHub API filtering proxy",
+		Long: `Run the gateway in proxy mode — an HTTP forward proxy that intercepts
+gh CLI requests and applies DIFC filtering using the same guard WASM module.
+
+Usage with the gh CLI:
+
+  # Start the proxy
+  awmg proxy \
+    --guard-wasm guards/github-guard/github_guard.wasm \
+    --policy '{"allow-only":{"repos":["org/repo"],"min-integrity":"approved"}}' \
+    --github-token "$GITHUB_TOKEN" \
+    --listen localhost:8080
+
+  # Point gh at the proxy
+  GH_HOST=localhost:8080 GH_TOKEN="$GITHUB_TOKEN" gh issue list -R org/repo`,
+		SilenceUsage: true,
+		RunE:         runProxy,
+	}
+
+	cmd.Flags().StringVar(&proxyGuardWasm, "guard-wasm", "", "Path to the guard WASM module (required)")
+	cmd.Flags().StringVar(&proxyPolicy, "policy", getDefaultGuardPolicyJSON(), "Guard policy JSON")
+	cmd.Flags().StringVar(&proxyToken, "github-token", os.Getenv("GITHUB_TOKEN"), "GitHub API token")
+	cmd.Flags().StringVarP(&proxyListen, "listen", "l", "127.0.0.1:8080", "HTTP proxy listen address")
+	cmd.Flags().StringVar(&proxyLogDir, "log-dir", getDefaultLogDir(), "Log file directory")
+	cmd.Flags().StringVar(&proxyDIFCMode, "guards-mode", "filter", "DIFC enforcement mode: strict, filter, propagate")
+	cmd.Flags().StringVar(&proxyAPIURL, "github-api-url", proxy.DefaultGitHubAPIBase, "Upstream GitHub API URL")
+
+	cmd.MarkFlagRequired("guard-wasm")
+
+	return cmd
+}
+
+func runProxy(cmd *cobra.Command, args []string) error {
+	ctx, cancel := signal.NotifyContext(cmd.Context(), os.Interrupt, syscall.SIGTERM)
+	defer cancel()
+
+	// Initialize loggers
+	if err := logger.InitFileLogger(proxyLogDir, "proxy.log"); err != nil {
+		log.Printf("Warning: Failed to initialize file logger: %v", err)
+	}
+	if err := logger.InitJSONLLogger(proxyLogDir, "proxy-rpc.jsonl"); err != nil {
+		log.Printf("Warning: Failed to initialize JSONL logger: %v", err)
+	}
+
+	logger.LogInfo("startup", "MCPG Proxy starting: listen=%s, guard=%s, mode=%s", proxyListen, proxyGuardWasm, proxyDIFCMode)
+
+	// Resolve GitHub token
+	token := proxyToken
+	if token == "" {
+		token = os.Getenv("GH_TOKEN")
+	}
+	if token == "" {
+		token = os.Getenv("GITHUB_PERSONAL_ACCESS_TOKEN")
+	}
+
+	// Create the proxy server
+	proxySrv, err := proxy.New(ctx, proxy.Config{
+		WasmPath:     proxyGuardWasm,
+		Policy:       proxyPolicy,
+		GitHubToken:  token,
+		GitHubAPIURL: proxyAPIURL,
+		DIFCMode:     proxyDIFCMode,
+	})
+	if err != nil {
+		return fmt.Errorf("failed to create proxy server: %w", err)
+	}
+
+	// Create and start the HTTP server
+	httpServer := &http.Server{
+		Addr:    proxyListen,
+		Handler: proxySrv.Handler(),
+	}
+
+	// Start HTTP server in background
+	go func() {
+		listener, err := net.Listen("tcp", proxyListen)
+		if err != nil {
+			log.Printf("Failed to listen on %s: %v", proxyListen, err)
+			cancel()
+			return
+		}
+
+		actualAddr := listener.Addr().String()
+		log.Printf("MCPG Proxy listening on %s", actualAddr)
+		logger.LogInfo("startup", "Proxy listening on %s", actualAddr)
+
+		// Print connection info
+		fmt.Fprintf(os.Stderr, "\nMCPG GitHub API Proxy\n")
+		fmt.Fprintf(os.Stderr, "  Listening: %s\n", actualAddr)
+		fmt.Fprintf(os.Stderr, "  Mode:      %s\n", proxyDIFCMode)
+		fmt.Fprintf(os.Stderr, "  Guard:     %s\n", proxyGuardWasm)
+		fmt.Fprintf(os.Stderr, "\nConnect with:\n")
+		fmt.Fprintf(os.Stderr, "  GH_HOST=%s GH_TOKEN=<token> gh ...\n\n", actualAddr)
+
+		if err := httpServer.Serve(listener); err != nil && err != http.ErrServerClosed {
+			log.Printf("HTTP server error: %v", err)
+			cancel()
+		}
+	}()
+
+	// Wait for shutdown signal
+	<-ctx.Done()
+	log.Println("Shutting down proxy...")
+	logger.LogInfo("shutdown", "Proxy shutting down")
+
+	return httpServer.Close()
+}
@@ -0,0 +1,166 @@
+package proxy
+
+import (
+	"encoding/json"
+	"regexp"
+	"strings"
+
+	"github.com/github/gh-aw-mcpg/internal/logger"
+)
+
+var logGraphQL = logger.New("proxy:graphql")
+
+// GraphQLRequest represents a parsed GraphQL request body.
+type GraphQLRequest struct {
+	Query     string                 `json:"query"`
+	Variables map[string]interface{} `json:"variables,omitempty"`
+}
+
+// GraphQLRouteMatch contains the result of matching a GraphQL query to a guard tool name.
+type GraphQLRouteMatch struct {
+	ToolName string
+	Owner    string
+	Repo     string
+	Args     map[string]interface{}
+}
+
+// graphqlPattern maps operation name patterns to guard tool names.
+type graphqlPattern struct {
+	// namePattern matches the GraphQL operation name (case-insensitive)
+	namePattern *regexp.Regexp
+	// queryPattern matches content within the query string
+	queryPattern *regexp.Regexp
+	toolName     string
+}
+
+// graphqlPatterns is the ordered list of GraphQL operation → tool name mappings.
+var graphqlPatterns = []graphqlPattern{
+	// Issue operations (singular before plural — more specific first)
+	{queryPattern: regexp.MustCompile(`(?i)repository\s*\([^)]*\)\s*\{[^}]*\bissue\s*\(`), toolName: "issue_read"},
+	{queryPattern: regexp.MustCompile(`(?i)repository\s*\([^)]*\)\s*\{[^}]*\bissues\s*[\({]`), toolName: "list_issues"},
+
+	// PR operations (singular before plural)
+	{queryPattern: regexp.MustCompile(`(?i)repository\s*\([^)]*\)\s*\{[^}]*\bpullRequest\s*\(`), toolName: "pull_request_read"},
+	{queryPattern: regexp.MustCompile(`(?i)repository\s*\([^)]*\)\s*\{[^}]*\bpullRequests\s*[\({]`), toolName: "list_pull_requests"},
+
+	// Search operations
+	{queryPattern: regexp.MustCompile(`(?i)\bsearch\s*\(`), toolName: "search_issues"},
+
+	// Project operations
+	{queryPattern: regexp.MustCompile(`(?i)projectV2`), toolName: "list_projects"},
+
+	// Repository info
+	{queryPattern: regexp.MustCompile(`(?i)\brepository\s*\(`), toolName: "get_file_contents"},
+
+	// User/viewer
+	{queryPattern: regexp.MustCompile(`(?i)\bviewer\s*\{`), toolName: "get_me"},
+}
+
+// ownerRepoPattern extracts owner and repo from GraphQL variables or query text.
+var (
+	varOwnerPattern = regexp.MustCompile(`(?i)"owner"\s*:\s*"([^"]+)"`)
+	varRepoPattern  = regexp.MustCompile(`(?i)"(?:name|repo)"\s*:\s*"([^"]+)"`)
+	// Matches: repository(owner: "X", name: "Y") or repository(owner: $owner, name: $name)
+	queryRepoPattern = regexp.MustCompile(`(?i)repository\s*\(\s*owner\s*:\s*(?:"([^"]+)"|\$\w+)\s*,?\s*name\s*:\s*(?:"([^"]+)"|\$\w+)`)
+)
+
+// MatchGraphQL matches a GraphQL request body to a guard tool name.
+func MatchGraphQL(body []byte) *GraphQLRouteMatch {
+	var gql GraphQLRequest
+	if err := json.Unmarshal(body, &gql); err != nil {
+		logGraphQL.Printf("failed to parse GraphQL request: %v", err)
+		return nil
+	}
+
+	if gql.Query == "" {
+		logGraphQL.Printf("empty GraphQL query")
+		return nil
+	}
+
+	// Match the query against known patterns
+	var toolName string
+	for _, p := range graphqlPatterns {
+		if p.namePattern != nil {
+			// Not currently used but available for operation name matching
+			continue
+		}
+		if p.queryPattern != nil && p.queryPattern.MatchString(gql.Query) {
+			toolName = p.toolName
+			break
+		}
+	}
+
+	if toolName == "" {
+		logGraphQL.Printf("no GraphQL pattern match for query: %.100s", gql.Query)
+		return nil
+	}
+
+	// Extract owner/repo from variables
+	owner, repo := extractOwnerRepo(gql.Variables, gql.Query)
+
+	args := map[string]interface{}{}
+	if owner != "" {
+		args["owner"] = owner
+	}
+	if repo != "" {
+		args["repo"] = repo
+	}
+
+	logGraphQL.Printf("matched GraphQL → tool=%s owner=%s repo=%s", toolName, owner, repo)
+	return &GraphQLRouteMatch{
+		ToolName: toolName,
+		Owner:    owner,
+		Repo:     repo,
+		Args:     args,
+	}
+}
+
+// extractOwnerRepo extracts owner and repo from GraphQL variables and query text.
+func extractOwnerRepo(variables map[string]interface{}, query string) (string, string) {
+	var owner, repo string
+
+	// Try variables first
+	if variables != nil {
+		if v, ok := variables["owner"].(string); ok {
+			owner = v
+		}
+		if v, ok := variables["name"].(string); ok {
+			repo = v
+		}
+		if v, ok := variables["repo"].(string); ok && repo == "" {
+			repo = v
+		}
+	}
+
+	// Fall back to parsing the query string
+	if owner == "" || repo == "" {
+		if m := queryRepoPattern.FindStringSubmatch(query); m != nil {
+			if m[1] != "" && owner == "" {
+				owner = m[1]
+			}
+			if m[2] != "" && repo == "" {
+				repo = m[2]
+			}
+		}
+	}
+
+	// Try parsing raw variable JSON embedded in query (some gh commands inline variables)
+	if owner == "" {
+		if m := varOwnerPattern.FindStringSubmatch(query); m != nil {
+			owner = m[1]
+		}
+	}
+	if repo == "" {
+		if m := varRepoPattern.FindStringSubmatch(query); m != nil {
+			repo = m[1]
+		}
+	}
+
+	return owner, repo
+}
+
+// IsGraphQLPath returns true if the request path is the GraphQL endpoint.
+func IsGraphQLPath(path string) bool {
+	cleaned := strings.TrimSuffix(path, "/")
+	return cleaned == "/graphql" || cleaned == "/api/v3/graphql"
+}