Initial import clean copy (no history)

Author: john-walkoe

.env.example

@@ -0,0 +1,9 @@
+# CourtListener API Token (get free at https://www.courtlistener.com/sign-in/)
+COURTLISTENER_API_TOKEN=
+
+# Transport: stdio (default) or http
+TRANSPORT=stdio
+
+# HTTP server settings (only used when TRANSPORT=http)
+HOST=0.0.0.0
+PORT=8000

.github/workflows/secret-scan.yaml

@@ -0,0 +1,103 @@
+name: Secret Scanning
+
+on:
+  push:
+    branches: [ main, master, develop ]
+  pull_request:
+    branches: [ main, master, develop ]
+
+jobs:
+  secret-scan:
+    name: Detect Secrets
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0  # Full history for comprehensive scanning
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.11'
+
+      - name: Install detect-secrets
+        run: |
+          pip install detect-secrets
+
+      - name: Run detect-secrets scan
+        run: |
+          detect-secrets scan \
+            --exclude-files '\.md$' \
+            --exclude-files 'package-lock\.json' \
+            --exclude-files '\.lock$' \
+            --baseline .secrets.baseline
+
+      - name: Check for secrets in git history (last 100 commits)
+        run: |
+          # Scan recent git history for accidentally committed secrets
+          git log --all --pretty=format: -p -100 | \
+          detect-secrets scan --stdin \
+            --exclude-files '\.md$' || true
+
+      - name: Security scan summary
+        if: always()
+        run: |
+          echo "Secret scanning complete"
+          echo "If secrets were detected, the job will fail above"
+          echo "To update baseline: detect-secrets scan --baseline .secrets.baseline"
+
+  prompt-injection-check:
+    name: Prompt Injection Security Scan
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.11'
+
+      - name: Install uv
+        uses: astral-sh/setup-uv@v3
+
+      - name: Install dependencies
+        run: uv sync
+
+      - name: Run prompt injection detection
+        run: |
+          echo "Scanning for prompt injection patterns..."
+
+          # Create baseline if it doesn't exist, then check against it
+          if [ ! -f .prompt_injections.baseline ]; then
+            echo "Creating baseline for first time..."
+            uv run python .security/check_prompt_injections.py --update-baseline src/ tests/ *.md *.yml *.yaml *.json
+            echo "Baseline created: .prompt_injections.baseline"
+          else
+            echo "Using existing baseline..."
+            if uv run python .security/check_prompt_injections.py --baseline src/ tests/ *.yml *.yaml *.json; then
+              echo "No NEW prompt injection patterns detected"
+              echo "All findings match baseline (existing known findings)."
+            else
+              echo "NEW prompt injection patterns found!"
+              echo ""
+              echo "These findings are NOT in the baseline and require review."
+              echo "These patterns may indicate attempts to:"
+              echo "- Override system instructions (ignore previous instructions)"
+              echo "- Extract sensitive prompts or API tokens"
+              echo "- Change AI behavior (you are now a different AI)"
+              echo "- Bypass security controls (admin mode on)"
+              echo "- Fabricate legal citations"
+              echo "- Social engineering (we became friends)"
+              echo ""
+              echo "To update baseline with legitimate findings:"
+              echo "  uv run python .security/check_prompt_injections.py --update-baseline src/ tests/ *.md *.yml *.yaml *.json"
+              echo ""
+              echo "If these are legitimate test cases or documentation examples,"
+              echo "consider updating the baseline and committing the change."
+              exit 1
+            fi
+          fi

.gitignore

@@ -0,0 +1,23 @@
+__pycache__/
+*.py[cod]
+*$py.class
+*.egg-info/
+dist/
+build/
+.eggs/
+*.egg
+.env
+.venv/
+venv/
+*.log
+.pytest_cache/
+.coverage
+coverage.json
+htmlcov/
+.mypy_cache/
+.ruff_cache/
+nul
+devtunnel.exe
+CLAUDE.md
+.claude/
+audits/

.pre-commit-config.yaml

@@ -0,0 +1,42 @@
+# Pre-commit hooks for CourtListener Citation Validation MCP
+# Install: pip install pre-commit && pre-commit install
+# Run manually: pre-commit run --all-files
+
+repos:
+  - repo: https://github.com/Yelp/detect-secrets
+    rev: v1.5.0
+    hooks:
+      - id: detect-secrets
+        args:
+          - '--baseline'
+          - '.secrets.baseline'
+          - '--exclude-files'
+          - '\.md$'
+          - '--exclude-files'
+          - 'package-lock\.json'
+          - '--exclude-files'
+          - '\.lock$'
+        exclude: ^\.secrets\.baseline$
+
+  - repo: https://github.com/pre-commit/pre-commit-hooks
+    rev: v4.5.0
+    hooks:
+      - id: trailing-whitespace
+        exclude: ^\.secrets\.baseline$
+      - id: end-of-file-fixer
+        exclude: ^\.secrets\.baseline$
+      - id: check-yaml
+      - id: check-added-large-files
+        args: ['--maxkb=1000']
+      - id: check-json
+      - id: check-merge-conflict
+      - id: detect-private-key
+
+  - repo: local
+    hooks:
+      - id: prompt-injection-check
+        name: Check for prompt injection patterns
+        entry: uv run python .security/check_prompt_injections.py
+        language: system
+        files: \.(py|txt|md|yml|yaml|json|js|ts|html|xml|csv)$
+        exclude: \.security/.*_detector\.py$

.prompt_injections.baseline

@@ -0,0 +1,5 @@
+{
+  ".pre-commit-config.yaml": {},
+  "docker-compose.yml": {},
+  "pyproject.toml": {}
+}

.secrets.baseline

@@ -0,0 +1,148 @@
+{
+  "version": "1.5.0",
+  "plugins_used": [
+    {
+      "name": "ArtifactoryDetector"
+    },
+    {
+      "name": "AWSKeyDetector"
+    },
+    {
+      "name": "AzureStorageKeyDetector"
+    },
+    {
+      "name": "Base64HighEntropyString",
+      "limit": 4.5
+    },
+    {
+      "name": "BasicAuthDetector"
+    },
+    {
+      "name": "CloudantDetector"
+    },
+    {
+      "name": "DiscordBotTokenDetector"
+    },
+    {
+      "name": "GitHubTokenDetector"
+    },
+    {
+      "name": "GitLabTokenDetector"
+    },
+    {
+      "name": "HexHighEntropyString",
+      "limit": 3.0
+    },
+    {
+      "name": "IbmCloudIamDetector"
+    },
+    {
+      "name": "IbmCosHmacDetector"
+    },
+    {
+      "name": "IPPublicDetector"
+    },
+    {
+      "name": "JwtTokenDetector"
+    },
+    {
+      "name": "KeywordDetector",
+      "keyword_exclude": ""
+    },
+    {
+      "name": "MailchimpDetector"
+    },
+    {
+      "name": "NpmDetector"
+    },
+    {
+      "name": "OpenAIDetector"
+    },
+    {
+      "name": "PrivateKeyDetector"
+    },
+    {
+      "name": "PypiTokenDetector"
+    },
+    {
+      "name": "SendGridDetector"
+    },
+    {
+      "name": "SlackDetector"
+    },
+    {
+      "name": "SoftlayerDetector"
+    },
+    {
+      "name": "SquareOAuthDetector"
+    },
+    {
+      "name": "StripeDetector"
+    },
+    {
+      "name": "TelegramBotTokenDetector"
+    },
+    {
+      "name": "TwilioKeyDetector"
+    }
+  ],
+  "filters_used": [
+    {
+      "path": "detect_secrets.filters.allowlist.is_line_allowlisted"
+    },
+    {
+      "path": "detect_secrets.filters.common.is_baseline_file",
+      "filename": ".secrets.baseline"
+    },
+    {
+      "path": "detect_secrets.filters.common.is_ignored_due_to_verification_policies",
+      "min_level": 2
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_indirect_reference"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_likely_id_string"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_lock_file"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_not_alphanumeric_string"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_potential_uuid"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_prefixed_with_dollar_sign"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_sequential_string"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_swagger_file"
+    },
+    {
+      "path": "detect_secrets.filters.heuristic.is_templated_secret"
+    },
+    {
+      "path": "detect_secrets.filters.regex.should_exclude_file",
+      "pattern": [
+        "\\.md$",
+        "\\.lock$"
+      ]
+    }
+  ],
+  "results": {
+    "tests\\unit\\test_log_sanitizer.py": [
+      {
+        "type": "Hex High Entropy String",
+        "filename": "tests\\unit\\test_log_sanitizer.py",
+        "hashed_secret": "f0d30a5da82d2ab63b1425e9b959d8c3975342f5",
+        "is_verified": false,
+        "line_number": 25
+      }
+    ]
+  },
+  "generated_at": "2026-03-04T06:14:01Z"
+}