@1claw/sdk 0.2.0

package/dist/mcp/handler.js

@@ -0,0 +1,216 @@
+/**
+ * MCP tool dispatcher — routes incoming tool calls to the appropriate
+ * SDK methods and returns structured MCP-compatible results.
+ *
+ * Usage:
+ * ```ts
+ * import { createClient } from "@1claw/sdk";
+ * import { McpHandler } from "@1claw/sdk/mcp";
+ *
+ * const client = createClient({ ... });
+ * const handler = new McpHandler(client);
+ * const result = await handler.handle("1claw_get_secret", { vault_id: "...", key: "..." });
+ * ```
+ */
+export class McpHandler {
+    constructor(client) {
+        this.client = client;
+        this.handlers = new Map([
+            ["1claw_get_secret", this.getSecret.bind(this)],
+            ["1claw_set_secret", this.setSecret.bind(this)],
+            ["1claw_list_secret_keys", this.listSecretKeys.bind(this)],
+            ["1claw_delete_secret", this.deleteSecret.bind(this)],
+            ["1claw_list_vaults", this.listVaults.bind(this)],
+            ["1claw_create_vault", this.createVault.bind(this)],
+            ["1claw_request_approval", this.requestApproval.bind(this)],
+            ["1claw_check_approval_status", this.checkApproval.bind(this)],
+            ["1claw_pay_and_fetch", this.payAndFetch.bind(this)],
+            ["1claw_share_secret", this.shareSecret.bind(this)],
+        ]);
+    }
+    /** Dispatch a tool call by name. Throws if the tool name is unknown. */
+    async handle(toolName, args) {
+        const handler = this.handlers.get(toolName);
+        if (!handler) {
+            return {
+                content: [{ type: "text", text: `Unknown tool: ${toolName}` }],
+                isError: true,
+            };
+        }
+        try {
+            return await handler(args);
+        }
+        catch (err) {
+            const message = err instanceof Error ? err.message : String(err);
+            return {
+                content: [{ type: "text", text: `Error: ${message}` }],
+                isError: true,
+            };
+        }
+    }
+    /** Return the set of tool names this handler supports. */
+    getToolNames() {
+        return Array.from(this.handlers.keys());
+    }
+    // -----------------------------------------------------------------------
+    // Tool implementations
+    // -----------------------------------------------------------------------
+    async getSecret(args) {
+        const vaultId = args.vault_id;
+        const key = args.key;
+        const reason = args.reason;
+        const res = await this.client.secrets.get(vaultId, key, { reason });
+        if (res.error) {
+            if (res.error.type === "approval_required") {
+                return this.text(JSON.stringify({
+                    status: "pending_approval",
+                    message: "Human approval is required to access this secret.",
+                }));
+            }
+            return this.error(res.error.message);
+        }
+        return this.text(JSON.stringify({
+            status: "available",
+            id: res.data.id,
+            path: res.data.path,
+            type: res.data.type,
+            value: res.data.value,
+            version: res.data.version,
+        }));
+    }
+    async setSecret(args) {
+        const vaultId = args.vault_id;
+        const key = args.key;
+        const value = args.value;
+        const type = args.type ?? "generic";
+        const res = await this.client.secrets.set(vaultId, key, value, {
+            type,
+        });
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({
+            status: "stored",
+            id: res.data.id,
+            path: res.data.path,
+            version: res.data.version,
+        }));
+    }
+    async listSecretKeys(args) {
+        const vaultId = args.vault_id;
+        const prefix = args.prefix;
+        const res = await this.client.secrets.list(vaultId, prefix);
+        if (res.error)
+            return this.error(res.error.message);
+        const keys = res.data.secrets.map((s) => ({
+            path: s.path,
+            type: s.type,
+            version: s.version,
+        }));
+        return this.text(JSON.stringify({ status: "ok", keys }));
+    }
+    async deleteSecret(args) {
+        const vaultId = args.vault_id;
+        const key = args.key;
+        const res = await this.client.secrets.delete(vaultId, key);
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({ status: "deleted", path: key }));
+    }
+    async listVaults(_args) {
+        const res = await this.client.vault.list();
+        if (res.error)
+            return this.error(res.error.message);
+        const vaults = res.data.vaults.map((v) => ({
+            id: v.id,
+            name: v.name,
+            description: v.description,
+        }));
+        return this.text(JSON.stringify({ status: "ok", vaults }));
+    }
+    async createVault(args) {
+        const name = args.name;
+        const description = args.description;
+        const res = await this.client.vault.create({ name, description });
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({
+            status: "created",
+            id: res.data.id,
+            name: res.data.name,
+        }));
+    }
+    async requestApproval(args) {
+        const vaultId = args.vault_id;
+        const secretPath = args.secret_path;
+        const reason = args.reason;
+        const res = await this.client.approvals.request({
+            vault_id: vaultId,
+            secret_path: secretPath,
+            reason,
+        });
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({
+            status: "pending",
+            approval_request_id: res.data.id,
+            message: "Approval request submitted. Waiting for human review.",
+        }));
+    }
+    async checkApproval(args) {
+        const requestId = args.request_id;
+        const res = await this.client.approvals.check(requestId);
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({
+            status: res.data.status,
+            decided_by: res.data.decided_by,
+            decided_at: res.data.decided_at,
+        }));
+    }
+    async payAndFetch(args) {
+        const vaultId = args.vault_id;
+        const key = args.key;
+        const res = await this.client.x402.withPayment(vaultId, key);
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({
+            status: "paid_and_fetched",
+            id: res.data.id,
+            path: res.data.path,
+            type: res.data.type,
+            value: res.data.value,
+            version: res.data.version,
+        }));
+    }
+    async shareSecret(args) {
+        const secretId = args.secret_id;
+        const email = args.email;
+        const expiresAt = args.expires_at;
+        const maxAccessCount = args.max_access_count ?? 5;
+        const res = await this.client.sharing.create(secretId, {
+            recipient_type: "external_email",
+            email,
+            expires_at: expiresAt,
+            max_access_count: maxAccessCount,
+        });
+        if (res.error)
+            return this.error(res.error.message);
+        return this.text(JSON.stringify({
+            status: "shared",
+            share_id: res.data.id,
+            recipient_email: email,
+            expires_at: res.data.expires_at,
+            message: `Secret shared with ${email}. They will see it when they sign up or log in.`,
+        }));
+    }
+    // -----------------------------------------------------------------------
+    // Helpers
+    // -----------------------------------------------------------------------
+    text(text) {
+        return { content: [{ type: "text", text }] };
+    }
+    error(text) {
+        return { content: [{ type: "text", text }], isError: true };
+    }
+}
+//# sourceMappingURL=handler.js.map

package/dist/mcp/handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"handler.js","sourceRoot":"","sources":["../../src/mcp/handler.ts"],"names":[],"mappings":"AAKA;;;;;;;;;;;;;GAaG;AACH,MAAM,OAAO,UAAU;IAGnB,YAA6B,MAAqB;QAArB,WAAM,GAAN,MAAM,CAAe;QAC9C,IAAI,CAAC,QAAQ,GAAG,IAAI,GAAG,CAAC;YACpB,CAAC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC/C,CAAC,kBAAkB,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC/C,CAAC,wBAAwB,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1D,CAAC,qBAAqB,EAAE,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACrD,CAAC,mBAAmB,EAAE,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACjD,CAAC,oBAAoB,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACnD,CAAC,wBAAwB,EAAE,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC3D,CAAC,6BAA6B,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC9D,CAAC,qBAAqB,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpD,CAAC,oBAAoB,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;SACtD,CAAC,CAAC;IACP,CAAC;IAED,wEAAwE;IACxE,KAAK,CAAC,MAAM,CAAC,QAAgB,EAAE,IAAc;QACzC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,CAAC,OAAO,EAAE,CAAC;YACX,OAAO;gBACH,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,iBAAiB,QAAQ,EAAE,EAAE,CAAC;gBAC9D,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;QACD,IAAI,CAAC;YACD,OAAO,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;QAC/B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACX,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACjE,OAAO;gBACH,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,OAAO,EAAE,EAAE,CAAC;gBACtD,OAAO,EAAE,IAAI;aAChB,CAAC;QACN,CAAC;IACL,CAAC;IAED,0DAA0D;IAC1D,YAAY;QACR,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED,0EAA0E;IAC1E,uBAAuB;IACvB,0EAA0E;IAElE,KAAK,CAAC,SAAS,CAAC,IAAc;QAClC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAkB,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAa,CAAC;QAC/B,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;QAEjD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;QACpE,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;YACZ,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,KAAK,mBAAmB,EAAE,CAAC;gBACzC,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;oBACX,MAAM,EAAE,kBAAkB;oBAC1B,OAAO,EACH,mDAAmD;iBAC1D,CAAC,CACL,CAAC;YACN,CAAC;YACD,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACzC,CAAC;QAED,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,WAAW;YACnB,EAAE,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE;YAChB,IAAI,EAAE,GAAG,CAAC,IAAK,CAAC,IAAI;YACpB,IAAI,EAAE,GAAG,CAAC,IAAK,CAAC,IAAI;YACpB,KAAK,EAAE,GAAG,CAAC,IAAK,CAAC,KAAK;YACtB,OAAO,EAAE,GAAG,CAAC,IAAK,CAAC,OAAO;SAC7B,CAAC,CACL,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,SAAS,CAAC,IAAc;QAClC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAkB,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAa,CAAC;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAe,CAAC;QACnC,MAAM,IAAI,GAAI,IAAI,CAAC,IAAe,IAAI,SAAS,CAAC;QAEhD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE;YAC3D,IAAI;SACP,CAAC,CAAC;QACH,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,QAAQ;YAChB,EAAE,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE;YAChB,IAAI,EAAE,GAAG,CAAC,IAAK,CAAC,IAAI;YACpB,OAAO,EAAE,GAAG,CAAC,IAAK,CAAC,OAAO;SAC7B,CAAC,CACL,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,cAAc,CAAC,IAAc;QACvC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAkB,CAAC;QACxC,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;QAEjD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAC5D,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,MAAM,IAAI,GAAG,GAAG,CAAC,IAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACvC,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,OAAO,EAAE,CAAC,CAAC,OAAO;SACrB,CAAC,CAAC,CAAC;QAEJ,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAC7D,CAAC;IAEO,KAAK,CAAC,YAAY,CAAC,IAAc;QACrC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAkB,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAa,CAAC;QAE/B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QAC3D,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC;IACvE,CAAC;IAEO,KAAK,CAAC,UAAU,CAAC,KAAe;QACpC,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;QAC3C,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,MAAM,MAAM,GAAG,GAAG,CAAC,IAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACxC,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,WAAW,EAAE,CAAC,CAAC,WAAW;SAC7B,CAAC,CAAC,CAAC;QAEJ,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC;IAC/D,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,IAAc;QACpC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAc,CAAC;QACjC,MAAM,WAAW,GAAG,IAAI,CAAC,WAAiC,CAAC;QAE3D,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC,CAAC;QAClE,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,SAAS;YACjB,EAAE,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE;YAChB,IAAI,EAAE,GAAG,CAAC,IAAK,CAAC,IAAI;SACvB,CAAC,CACL,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,eAAe,CAAC,IAAc;QACxC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAkB,CAAC;QACxC,MAAM,UAAU,GAAG,IAAI,CAAC,WAAqB,CAAC;QAC9C,MAAM,MAAM,GAAG,IAAI,CAAC,MAA4B,CAAC;QAEjD,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC;YAC5C,QAAQ,EAAE,OAAO;YACjB,WAAW,EAAE,UAAU;YACvB,MAAM;SACT,CAAC,CAAC;QACH,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,SAAS;YACjB,mBAAmB,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE;YACjC,OAAO,EACH,uDAAuD;SAC9D,CAAC,CACL,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,IAAc;QACtC,MAAM,SAAS,GAAG,IAAI,CAAC,UAAoB,CAAC;QAE5C,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QACzD,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,GAAG,CAAC,IAAK,CAAC,MAAM;YACxB,UAAU,EAAE,GAAG,CAAC,IAAK,CAAC,UAAU;YAChC,UAAU,EAAE,GAAG,CAAC,IAAK,CAAC,UAAU;SACnC,CAAC,CACL,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,IAAc;QACpC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAkB,CAAC;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAa,CAAC;QAE/B,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QAC7D,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,kBAAkB;YAC1B,EAAE,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE;YAChB,IAAI,EAAE,GAAG,CAAC,IAAK,CAAC,IAAI;YACpB,IAAI,EAAE,GAAG,CAAC,IAAK,CAAC,IAAI;YACpB,KAAK,EAAE,GAAG,CAAC,IAAK,CAAC,KAAK;YACtB,OAAO,EAAE,GAAG,CAAC,IAAK,CAAC,OAAO;SAC7B,CAAC,CACL,CAAC;IACN,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,IAAc;QACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAmB,CAAC;QAC1C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAe,CAAC;QACnC,MAAM,SAAS,GAAG,IAAI,CAAC,UAAoB,CAAC;QAC5C,MAAM,cAAc,GAAI,IAAI,CAAC,gBAA2B,IAAI,CAAC,CAAC;QAE9D,MAAM,GAAG,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE;YACnD,cAAc,EAAE,gBAAgB;YAChC,KAAK;YACL,UAAU,EAAE,SAAS;YACrB,gBAAgB,EAAE,cAAc;SACnC,CAAC,CAAC;QACH,IAAI,GAAG,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAEpD,OAAO,IAAI,CAAC,IAAI,CACZ,IAAI,CAAC,SAAS,CAAC;YACX,MAAM,EAAE,QAAQ;YAChB,QAAQ,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE;YACtB,eAAe,EAAE,KAAK;YACtB,UAAU,EAAE,GAAG,CAAC,IAAK,CAAC,UAAU;YAChC,OAAO,EAAE,sBAAsB,KAAK,iDAAiD;SACxF,CAAC,CACL,CAAC;IACN,CAAC;IAED,0EAA0E;IAC1E,UAAU;IACV,0EAA0E;IAElE,IAAI,CAAC,IAAY;QACrB,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;IACjD,CAAC;IAEO,KAAK,CAAC,IAAY;QACtB,OAAO,EAAE,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAChE,CAAC;CACJ"}

package/dist/mcp/index.d.ts

@@ -0,0 +1,3 @@
+export { McpHandler } from "./handler";
+export { getMcpToolDefinitions, ALL_TOOLS, TOOL_GET_SECRET, TOOL_SET_SECRET, TOOL_LIST_SECRET_KEYS, TOOL_DELETE_SECRET, TOOL_LIST_VAULTS, TOOL_CREATE_VAULT, TOOL_REQUEST_APPROVAL, TOOL_CHECK_APPROVAL, TOOL_PAY_AND_FETCH, TOOL_SHARE_SECRET, } from "./tools";
+//# sourceMappingURL=index.d.ts.map

package/dist/mcp/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/mcp/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACvC,OAAO,EACH,qBAAqB,EACrB,SAAS,EACT,eAAe,EACf,eAAe,EACf,qBAAqB,EACrB,kBAAkB,EAClB,gBAAgB,EAChB,iBAAiB,EACjB,qBAAqB,EACrB,mBAAmB,EACnB,kBAAkB,EAClB,iBAAiB,GACpB,MAAM,SAAS,CAAC"}

package/dist/mcp/index.js

@@ -0,0 +1,3 @@
+export { McpHandler } from "./handler";
+export { getMcpToolDefinitions, ALL_TOOLS, TOOL_GET_SECRET, TOOL_SET_SECRET, TOOL_LIST_SECRET_KEYS, TOOL_DELETE_SECRET, TOOL_LIST_VAULTS, TOOL_CREATE_VAULT, TOOL_REQUEST_APPROVAL, TOOL_CHECK_APPROVAL, TOOL_PAY_AND_FETCH, TOOL_SHARE_SECRET, } from "./tools";
+//# sourceMappingURL=index.js.map

package/dist/mcp/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/mcp/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACvC,OAAO,EACH,qBAAqB,EACrB,SAAS,EACT,eAAe,EACf,eAAe,EACf,qBAAqB,EACrB,kBAAkB,EAClB,gBAAgB,EAChB,iBAAiB,EACjB,qBAAqB,EACrB,mBAAmB,EACnB,kBAAkB,EAClB,iBAAiB,GACpB,MAAM,SAAS,CAAC"}

package/dist/mcp/tools.d.ts

@@ -0,0 +1,29 @@
+import type { McpToolDefinition } from "../types";
+/**
+ * MCP tool definitions for AI agents (Claude, GPT, etc.) to interact
+ * with 1Claw vaults natively via function/tool calling.
+ *
+ * Usage with Vercel AI SDK:
+ * ```ts
+ * import { getMcpToolDefinitions } from "@1claw/sdk/mcp";
+ * const tools = getMcpToolDefinitions();
+ * ```
+ *
+ * Each definition includes a JSON Schema `inputSchema` that LLMs use
+ * to structure their tool-call arguments.
+ */
+export declare const TOOL_GET_SECRET: McpToolDefinition;
+export declare const TOOL_SET_SECRET: McpToolDefinition;
+export declare const TOOL_LIST_SECRET_KEYS: McpToolDefinition;
+export declare const TOOL_DELETE_SECRET: McpToolDefinition;
+export declare const TOOL_LIST_VAULTS: McpToolDefinition;
+export declare const TOOL_CREATE_VAULT: McpToolDefinition;
+export declare const TOOL_REQUEST_APPROVAL: McpToolDefinition;
+export declare const TOOL_CHECK_APPROVAL: McpToolDefinition;
+export declare const TOOL_PAY_AND_FETCH: McpToolDefinition;
+export declare const TOOL_SHARE_SECRET: McpToolDefinition;
+/** All MCP tool definitions for 1Claw. */
+export declare const ALL_TOOLS: McpToolDefinition[];
+/** Return all MCP tool definitions for use in agent tool registries. */
+export declare function getMcpToolDefinitions(): McpToolDefinition[];
+//# sourceMappingURL=tools.d.ts.map

package/dist/mcp/tools.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tools.d.ts","sourceRoot":"","sources":["../../src/mcp/tools.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAElD;;;;;;;;;;;;GAYG;AAEH,eAAO,MAAM,eAAe,EAAE,iBAyB7B,CAAC;AAEF,eAAO,MAAM,eAAe,EAAE,iBA6B7B,CAAC;AAEF,eAAO,MAAM,qBAAqB,EAAE,iBAmBnC,CAAC;AAEF,eAAO,MAAM,kBAAkB,EAAE,iBAiBhC,CAAC;AAEF,eAAO,MAAM,gBAAgB,EAAE,iBAU9B,CAAC;AAEF,eAAO,MAAM,iBAAiB,EAAE,iBAiB/B,CAAC;AAEF,eAAO,MAAM,qBAAqB,EAAE,iBAuBnC,CAAC;AAEF,eAAO,MAAM,mBAAmB,EAAE,iBAejC,CAAC;AAEF,eAAO,MAAM,kBAAkB,EAAE,iBAoBhC,CAAC;AAEF,eAAO,MAAM,iBAAiB,EAAE,iBAgC/B,CAAC;AAEF,0CAA0C;AAC1C,eAAO,MAAM,SAAS,EAAE,iBAAiB,EAWxC,CAAC;AAEF,wEAAwE;AACxE,wBAAgB,qBAAqB,IAAI,iBAAiB,EAAE,CAE3D"}

package/dist/mcp/tools.js

@@ -0,0 +1,236 @@
+/**
+ * MCP tool definitions for AI agents (Claude, GPT, etc.) to interact
+ * with 1Claw vaults natively via function/tool calling.
+ *
+ * Usage with Vercel AI SDK:
+ * ```ts
+ * import { getMcpToolDefinitions } from "@1claw/sdk/mcp";
+ * const tools = getMcpToolDefinitions();
+ * ```
+ *
+ * Each definition includes a JSON Schema `inputSchema` that LLMs use
+ * to structure their tool-call arguments.
+ */
+export const TOOL_GET_SECRET = {
+    name: "1claw_get_secret",
+    description: "Fetch a decrypted secret from a 1Claw vault. " +
+        "Returns the secret value if access is granted. " +
+        "May return a pending_approval status if human approval is required.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            vault_id: {
+                type: "string",
+                description: "UUID of the vault containing the secret",
+            },
+            key: {
+                type: "string",
+                description: "Path/key of the secret within the vault",
+            },
+            reason: {
+                type: "string",
+                description: "Why the agent needs this secret (logged for audit)",
+            },
+        },
+        required: ["vault_id", "key"],
+    },
+};
+export const TOOL_SET_SECRET = {
+    name: "1claw_set_secret",
+    description: "Store or update a secret in a 1Claw vault. " +
+        "The value is encrypted at rest using HSM-backed keys.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            vault_id: {
+                type: "string",
+                description: "UUID of the vault to store the secret in",
+            },
+            key: {
+                type: "string",
+                description: "Path/key for the secret",
+            },
+            value: {
+                type: "string",
+                description: "The secret value to encrypt and store",
+            },
+            type: {
+                type: "string",
+                description: "Type hint (e.g. 'api_key', 'password', 'token', 'generic')",
+                default: "generic",
+            },
+        },
+        required: ["vault_id", "key", "value"],
+    },
+};
+export const TOOL_LIST_SECRET_KEYS = {
+    name: "1claw_list_secret_keys",
+    description: "List all secret keys in a vault WITHOUT revealing their values. " +
+        "Returns metadata only: path, type, version, and timestamps.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            vault_id: {
+                type: "string",
+                description: "UUID of the vault to list secrets from",
+            },
+            prefix: {
+                type: "string",
+                description: "Optional prefix filter for secret paths",
+            },
+        },
+        required: ["vault_id"],
+    },
+};
+export const TOOL_DELETE_SECRET = {
+    name: "1claw_delete_secret",
+    description: "Permanently delete a secret from a 1Claw vault.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            vault_id: {
+                type: "string",
+                description: "UUID of the vault containing the secret",
+            },
+            key: {
+                type: "string",
+                description: "Path/key of the secret to delete",
+            },
+        },
+        required: ["vault_id", "key"],
+    },
+};
+export const TOOL_LIST_VAULTS = {
+    name: "1claw_list_vaults",
+    description: "List all vaults accessible to the current identity. " +
+        "Returns vault names, descriptions, and IDs.",
+    inputSchema: {
+        type: "object",
+        properties: {},
+        required: [],
+    },
+};
+export const TOOL_CREATE_VAULT = {
+    name: "1claw_create_vault",
+    description: "Create a new encrypted vault in 1Claw.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            name: {
+                type: "string",
+                description: "Human-readable vault name",
+            },
+            description: {
+                type: "string",
+                description: "Optional vault description",
+            },
+        },
+        required: ["name"],
+    },
+};
+export const TOOL_REQUEST_APPROVAL = {
+    name: "1claw_request_approval",
+    description: "Formally request human approval to access a gated secret. " +
+        "A notification is sent to the vault owner for review.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            vault_id: {
+                type: "string",
+                description: "UUID of the vault containing the secret",
+            },
+            secret_path: {
+                type: "string",
+                description: "Path of the secret requiring approval",
+            },
+            reason: {
+                type: "string",
+                description: "Why the agent needs access to this secret",
+            },
+        },
+        required: ["vault_id", "secret_path"],
+    },
+};
+export const TOOL_CHECK_APPROVAL = {
+    name: "1claw_check_approval_status",
+    description: "Check the current status of a human approval request. " +
+        "Returns 'pending', 'approved', or 'denied'.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            request_id: {
+                type: "string",
+                description: "UUID of the approval request to check",
+            },
+        },
+        required: ["request_id"],
+    },
+};
+export const TOOL_PAY_AND_FETCH = {
+    name: "1claw_pay_and_fetch",
+    description: "Pay the x402 micropayment fee and retrieve a secret. " +
+        "Use this when the free tier is exhausted and you need " +
+        "to pay for API access using USDC on Base.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            vault_id: {
+                type: "string",
+                description: "UUID of the vault containing the secret",
+            },
+            key: {
+                type: "string",
+                description: "Path/key of the secret to fetch",
+            },
+        },
+        required: ["vault_id", "key"],
+    },
+};
+export const TOOL_SHARE_SECRET = {
+    name: "1claw_share_secret",
+    description: "Share a secret with another person by email. " +
+        "The recipient does NOT need a 1Claw account — they will see " +
+        "the shared secret when they sign up or log in. " +
+        "Use this to grant a human access to a credential.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            secret_id: {
+                type: "string",
+                description: "UUID of the secret entry to share",
+            },
+            email: {
+                type: "string",
+                description: "Email address of the recipient",
+            },
+            expires_at: {
+                type: "string",
+                description: "ISO-8601 expiry date for the share (e.g. '2025-12-31T00:00:00Z')",
+            },
+            max_access_count: {
+                type: "number",
+                description: "Maximum number of times the secret can be accessed (default: 5)",
+                default: 5,
+            },
+        },
+        required: ["secret_id", "email", "expires_at"],
+    },
+};
+/** All MCP tool definitions for 1Claw. */
+export const ALL_TOOLS = [
+    TOOL_GET_SECRET,
+    TOOL_SET_SECRET,
+    TOOL_LIST_SECRET_KEYS,
+    TOOL_DELETE_SECRET,
+    TOOL_LIST_VAULTS,
+    TOOL_CREATE_VAULT,
+    TOOL_REQUEST_APPROVAL,
+    TOOL_CHECK_APPROVAL,
+    TOOL_PAY_AND_FETCH,
+    TOOL_SHARE_SECRET,
+];
+/** Return all MCP tool definitions for use in agent tool registries. */
+export function getMcpToolDefinitions() {
+    return ALL_TOOLS;
+}
+//# sourceMappingURL=tools.js.map

package/dist/mcp/tools.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tools.js","sourceRoot":"","sources":["../../src/mcp/tools.ts"],"names":[],"mappings":"AAEA;;;;;;;;;;;;GAYG;AAEH,MAAM,CAAC,MAAM,eAAe,GAAsB;IAC9C,IAAI,EAAE,kBAAkB;IACxB,WAAW,EACP,+CAA+C;QAC/C,iDAAiD;QACjD,qEAAqE;IACzE,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,QAAQ,EAAE;gBACN,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yCAAyC;aACzD;YACD,GAAG,EAAE;gBACD,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yCAAyC;aACzD;YACD,MAAM,EAAE;gBACJ,IAAI,EAAE,QAAQ;gBACd,WAAW,EACP,oDAAoD;aAC3D;SACJ;QACD,QAAQ,EAAE,CAAC,UAAU,EAAE,KAAK,CAAC;KAChC;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,eAAe,GAAsB;IAC9C,IAAI,EAAE,kBAAkB;IACxB,WAAW,EACP,6CAA6C;QAC7C,uDAAuD;IAC3D,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,QAAQ,EAAE;gBACN,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,0CAA0C;aAC1D;YACD,GAAG,EAAE;gBACD,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yBAAyB;aACzC;YACD,KAAK,EAAE;gBACH,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uCAAuC;aACvD;YACD,IAAI,EAAE;gBACF,IAAI,EAAE,QAAQ;gBACd,WAAW,EACP,4DAA4D;gBAChE,OAAO,EAAE,SAAS;aACrB;SACJ;QACD,QAAQ,EAAE,CAAC,UAAU,EAAE,KAAK,EAAE,OAAO,CAAC;KACzC;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,qBAAqB,GAAsB;IACpD,IAAI,EAAE,wBAAwB;IAC9B,WAAW,EACP,kEAAkE;QAClE,6DAA6D;IACjE,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,QAAQ,EAAE;gBACN,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,wCAAwC;aACxD;YACD,MAAM,EAAE;gBACJ,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yCAAyC;aACzD;SACJ;QACD,QAAQ,EAAE,CAAC,UAAU,CAAC;KACzB;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAsB;IACjD,IAAI,EAAE,qBAAqB;IAC3B,WAAW,EAAE,iDAAiD;IAC9D,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,QAAQ,EAAE;gBACN,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yCAAyC;aACzD;YACD,GAAG,EAAE;gBACD,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,kCAAkC;aAClD;SACJ;QACD,QAAQ,EAAE,CAAC,UAAU,EAAE,KAAK,CAAC;KAChC;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,gBAAgB,GAAsB;IAC/C,IAAI,EAAE,mBAAmB;IACzB,WAAW,EACP,sDAAsD;QACtD,6CAA6C;IACjD,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE,EAAE;QACd,QAAQ,EAAE,EAAE;KACf;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAsB;IAChD,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EAAE,wCAAwC;IACrD,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,IAAI,EAAE;gBACF,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,2BAA2B;aAC3C;YACD,WAAW,EAAE;gBACT,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,4BAA4B;aAC5C;SACJ;QACD,QAAQ,EAAE,CAAC,MAAM,CAAC;KACrB;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,qBAAqB,GAAsB;IACpD,IAAI,EAAE,wBAAwB;IAC9B,WAAW,EACP,4DAA4D;QAC5D,uDAAuD;IAC3D,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,QAAQ,EAAE;gBACN,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yCAAyC;aACzD;YACD,WAAW,EAAE;gBACT,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uCAAuC;aACvD;YACD,MAAM,EAAE;gBACJ,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,2CAA2C;aAC3D;SACJ;QACD,QAAQ,EAAE,CAAC,UAAU,EAAE,aAAa,CAAC;KACxC;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,mBAAmB,GAAsB;IAClD,IAAI,EAAE,6BAA6B;IACnC,WAAW,EACP,wDAAwD;QACxD,6CAA6C;IACjD,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,UAAU,EAAE;gBACR,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,uCAAuC;aACvD;SACJ;QACD,QAAQ,EAAE,CAAC,YAAY,CAAC;KAC3B;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAsB;IACjD,IAAI,EAAE,qBAAqB;IAC3B,WAAW,EACP,uDAAuD;QACvD,wDAAwD;QACxD,2CAA2C;IAC/C,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,QAAQ,EAAE;gBACN,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yCAAyC;aACzD;YACD,GAAG,EAAE;gBACD,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,iCAAiC;aACjD;SACJ;QACD,QAAQ,EAAE,CAAC,UAAU,EAAE,KAAK,CAAC;KAChC;CACJ,CAAC;AAEF,MAAM,CAAC,MAAM,iBAAiB,GAAsB;IAChD,IAAI,EAAE,oBAAoB;IAC1B,WAAW,EACP,+CAA+C;QAC/C,8DAA8D;QAC9D,iDAAiD;QACjD,mDAAmD;IACvD,WAAW,EAAE;QACT,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACR,SAAS,EAAE;gBACP,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,mCAAmC;aACnD;YACD,KAAK,EAAE;gBACH,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,gCAAgC;aAChD;YACD,UAAU,EAAE;gBACR,IAAI,EAAE,QAAQ;gBACd,WAAW,EACP,kEAAkE;aACzE;YACD,gBAAgB,EAAE;gBACd,IAAI,EAAE,QAAQ;gBACd,WAAW,EACP,iEAAiE;gBACrE,OAAO,EAAE,CAAC;aACb;SACJ;QACD,QAAQ,EAAE,CAAC,WAAW,EAAE,OAAO,EAAE,YAAY,CAAC;KACjD;CACJ,CAAC;AAEF,0CAA0C;AAC1C,MAAM,CAAC,MAAM,SAAS,GAAwB;IAC1C,eAAe;IACf,eAAe;IACf,qBAAqB;IACrB,kBAAkB;IAClB,gBAAgB;IAChB,iBAAiB;IACjB,qBAAqB;IACrB,mBAAmB;IACnB,kBAAkB;IAClB,iBAAiB;CACpB,CAAC;AAEF,wEAAwE;AACxE,MAAM,UAAU,qBAAqB;IACjC,OAAO,SAAS,CAAC;AACrB,CAAC"}

package/dist/org.d.ts

@@ -0,0 +1,16 @@
+import type { HttpClient } from "./http";
+import type { OrgMemberResponse, OrgMemberListResponse, UpdateMemberRoleRequest, OneclawResponse } from "./types";
+/**
+ * Org resource — manage organization membership and roles.
+ */
+export declare class OrgResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    /** List all members of the current organization. */
+    listMembers(): Promise<OneclawResponse<OrgMemberListResponse>>;
+    /** Update a member's role (owner, admin, or member). */
+    updateMemberRole(userId: string, role: UpdateMemberRoleRequest["role"]): Promise<OneclawResponse<OrgMemberResponse>>;
+    /** Remove a member from the organization. */
+    removeMember(userId: string): Promise<OneclawResponse<void>>;
+}
+//# sourceMappingURL=org.d.ts.map

package/dist/org.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"org.d.ts","sourceRoot":"","sources":["../src/org.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AACzC,OAAO,KAAK,EACR,iBAAiB,EACjB,qBAAqB,EACrB,uBAAuB,EACvB,eAAe,EAClB,MAAM,SAAS,CAAC;AAEjB;;GAEG;AACH,qBAAa,WAAW;IACR,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C,oDAAoD;IAC9C,WAAW,IAAI,OAAO,CAAC,eAAe,CAAC,qBAAqB,CAAC,CAAC;IAOpE,wDAAwD;IAClD,gBAAgB,CAClB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,uBAAuB,CAAC,MAAM,CAAC,GACtC,OAAO,CAAC,eAAe,CAAC,iBAAiB,CAAC,CAAC;IAQ9C,6CAA6C;IACvC,YAAY,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;CAGrE"}

package/dist/org.js

@@ -0,0 +1,21 @@
+/**
+ * Org resource — manage organization membership and roles.
+ */
+export class OrgResource {
+    constructor(http) {
+        this.http = http;
+    }
+    /** List all members of the current organization. */
+    async listMembers() {
+        return this.http.request("GET", "/v1/org/members");
+    }
+    /** Update a member's role (owner, admin, or member). */
+    async updateMemberRole(userId, role) {
+        return this.http.request("PATCH", `/v1/org/members/${userId}`, { body: { role } });
+    }
+    /** Remove a member from the organization. */
+    async removeMember(userId) {
+        return this.http.request("DELETE", `/v1/org/members/${userId}`);
+    }
+}
+//# sourceMappingURL=org.js.map

package/dist/org.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"org.js","sourceRoot":"","sources":["../src/org.ts"],"names":[],"mappings":"AAQA;;GAEG;AACH,MAAM,OAAO,WAAW;IACpB,YAA6B,IAAgB;QAAhB,SAAI,GAAJ,IAAI,CAAY;IAAG,CAAC;IAEjD,oDAAoD;IACpD,KAAK,CAAC,WAAW;QACb,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CACpB,KAAK,EACL,iBAAiB,CACpB,CAAC;IACN,CAAC;IAED,wDAAwD;IACxD,KAAK,CAAC,gBAAgB,CAClB,MAAc,EACd,IAAqC;QAErC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CACpB,OAAO,EACP,mBAAmB,MAAM,EAAE,EAC3B,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,EAAE,CACrB,CAAC;IACN,CAAC;IAED,6CAA6C;IAC7C,KAAK,CAAC,YAAY,CAAC,MAAc;QAC7B,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,CAAO,QAAQ,EAAE,mBAAmB,MAAM,EAAE,CAAC,CAAC;IAC1E,CAAC;CACJ"}

package/dist/secrets.d.ts

@@ -0,0 +1,42 @@
+import type { HttpClient } from "./http";
+import type { SecretResponse, SecretMetadataResponse, SecretListResponse, OneclawResponse } from "./types";
+export interface SetSecretOptions {
+    type?: string;
+    metadata?: Record<string, unknown>;
+    expires_at?: string;
+    rotation_policy?: Record<string, unknown>;
+    max_access_count?: number;
+}
+export interface GetSecretOptions {
+    /** Reason for accessing this secret (logged in the audit trail). */
+    reason?: string;
+}
+/**
+ * Secrets resource — store, retrieve, list, rotate, and delete secrets
+ * within a vault.
+ */
+export declare class SecretsResource {
+    private readonly http;
+    constructor(http: HttpClient);
+    /**
+     * Store or update a secret at the given path inside a vault.
+     * Returns the secret metadata (without the plaintext value).
+     */
+    set(vaultId: string, key: string, value: string, options?: SetSecretOptions): Promise<OneclawResponse<SecretMetadataResponse>>;
+    /**
+     * Retrieve a decrypted secret value.
+     * May return a `PaymentRequiredError` (402) or `ApprovalRequiredError`
+     * depending on access policies.
+     */
+    get(vaultId: string, key: string, _options?: GetSecretOptions): Promise<OneclawResponse<SecretResponse>>;
+    /** Delete a secret from a vault. */
+    delete(vaultId: string, key: string): Promise<OneclawResponse<void>>;
+    /** List secret keys (metadata only, no plaintext values). */
+    list(vaultId: string, prefix?: string): Promise<OneclawResponse<SecretListResponse>>;
+    /**
+     * Rotate a secret by writing a new value at the same path.
+     * This increments the version and overwrites the previous value.
+     */
+    rotate(vaultId: string, key: string, newValue: string, options?: SetSecretOptions): Promise<OneclawResponse<SecretMetadataResponse>>;
+}
+//# sourceMappingURL=secrets.d.ts.map

package/dist/secrets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"secrets.d.ts","sourceRoot":"","sources":["../src/secrets.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AACzC,OAAO,KAAK,EAER,cAAc,EACd,sBAAsB,EACtB,kBAAkB,EAClB,eAAe,EAClB,MAAM,SAAS,CAAC;AAEjB,MAAM,WAAW,gBAAgB;IAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC1C,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC7B;AAED,MAAM,WAAW,gBAAgB;IAC7B,oEAAoE;IACpE,MAAM,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,qBAAa,eAAe;IACZ,OAAO,CAAC,QAAQ,CAAC,IAAI;gBAAJ,IAAI,EAAE,UAAU;IAE7C;;;OAGG;IACG,GAAG,CACL,OAAO,EAAE,MAAM,EACf,GAAG,EAAE,MAAM,EACX,KAAK,EAAE,MAAM,EACb,OAAO,GAAE,gBAAqB,GAC/B,OAAO,CAAC,eAAe,CAAC,sBAAsB,CAAC,CAAC;IAgBnD;;;;OAIG;IACG,GAAG,CACL,OAAO,EAAE,MAAM,EACf,GAAG,EAAE,MAAM,EACX,QAAQ,CAAC,EAAE,gBAAgB,GAC5B,OAAO,CAAC,eAAe,CAAC,cAAc,CAAC,CAAC;IAO3C,oCAAoC;IAC9B,MAAM,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;IAO1E,6DAA6D;IACvD,IAAI,CACN,OAAO,EAAE,MAAM,EACf,MAAM,CAAC,EAAE,MAAM,GAChB,OAAO,CAAC,eAAe,CAAC,kBAAkB,CAAC,CAAC;IAQ/C;;;OAGG;IACG,MAAM,CACR,OAAO,EAAE,MAAM,EACf,GAAG,EAAE,MAAM,EACX,QAAQ,EAAE,MAAM,EAChB,OAAO,GAAE,gBAAqB,GAC/B,OAAO,CAAC,eAAe,CAAC,sBAAsB,CAAC,CAAC;CAGtD"}