I'm curious how you manage https. If OneCLI intercepts all traffic from the agent (harness/tools/...) and then replaces parts with other data, it should break https.

Or is that a man in the middle "attack". And users have to install a certificate?