npm - @a5c-ai/kradle - Versions diffs - 5.0.1-staging.3abdf9534c25 - Mend

@a5c-ai/kradle 5.0.1-staging.3abdf9534c25

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/Dockerfile +31 -0
package/README.md +187 -0
package/bin/kradle-demo.mjs +23 -0
package/bin/kradle-server.mjs +14 -0
package/dist/kradle-controller-ui.json +3482 -0
package/dist/kradle-lifecycle.json +201 -0
package/dist/kradle-runtime-snapshot.json +3125 -0
package/dist/kradle-summary.json +724 -0
package/docs/README.md +61 -0
package/docs/agents/README.md +83 -0
package/docs/agents/acceptance-test-matrix.md +193 -0
package/docs/agents/agent-mux-adapter-contract.md +167 -0
package/docs/agents/agent-mux-source-map.md +310 -0
package/docs/agents/agent-run-memory-import-spec.md +256 -0
package/docs/agents/agent-stack-management-spec.md +421 -0
package/docs/agents/api-contract-spec.md +309 -0
package/docs/agents/artifacts-writeback-spec.md +145 -0
package/docs/agents/chart-packaging-spec.md +128 -0
package/docs/agents/ci-orchestration-spec.md +140 -0
package/docs/agents/context-assembly-spec.md +219 -0
package/docs/agents/controller-reconciliation-spec.md +255 -0
package/docs/agents/crd-schema-spec.md +315 -0
package/docs/agents/decision-log-open-questions.md +169 -0
package/docs/agents/developer-implementation-checklist.md +329 -0
package/docs/agents/dispatching-design.md +262 -0
package/docs/agents/gaps-agent-mux-to-kradle-crds.md +298 -0
package/docs/agents/glossary.md +66 -0
package/docs/agents/implementation-blueprint.md +324 -0
package/docs/agents/implementation-rollout-slices.md +251 -0
package/docs/agents/memory-context-integration-spec.md +194 -0
package/docs/agents/memory-ontology-schema-spec.md +253 -0
package/docs/agents/memory-operations-runbook.md +121 -0
package/docs/agents/mvp-vertical-slice-spec.md +146 -0
package/docs/agents/observability-audit-spec.md +265 -0
package/docs/agents/operator-runbook.md +174 -0
package/docs/agents/org-memory-api-payload-examples.md +333 -0
package/docs/agents/org-memory-controller-sequence-spec.md +181 -0
package/docs/agents/org-memory-e2e-fixture-plan.md +161 -0
package/docs/agents/org-memory-ui-implementation-map.md +114 -0
package/docs/agents/org-memory-vertical-slice-spec.md +168 -0
package/docs/agents/org-resource-model-delta-spec.md +111 -0
package/docs/agents/org-route-resource-model-spec.md +183 -0
package/docs/agents/org-scoping-namespace-spec.md +114 -0
package/docs/agents/rbac-secrets-management-spec.md +406 -0
package/docs/agents/repository-page-integration-spec.md +255 -0
package/docs/agents/resource-contract-examples.md +808 -0
package/docs/agents/resource-relationship-map.md +190 -0
package/docs/agents/security-threat-model.md +188 -0
package/docs/agents/shared-memory-company-brain-spec.md +358 -0
package/docs/agents/storage-migration-spec.md +168 -0
package/docs/agents/subagent-orchestration-spec.md +152 -0
package/docs/agents/system-overview.md +88 -0
package/docs/agents/tools-mcp-skills-spec.md +189 -0
package/docs/agents/traceability-matrix.md +79 -0
package/docs/agents/ui-flow-spec.md +211 -0
package/docs/agents/ui-ux-system-spec.md +426 -0
package/docs/agents/workspace-lifecycle-spec.md +166 -0
package/docs/architecture-spec.md +78 -0
package/docs/architecture-v2.md +2759 -0
package/docs/components/control-plane.md +78 -0
package/docs/components/data-plane.md +69 -0
package/docs/components/hooks-events.md +67 -0
package/docs/components/identity-rbac-policy.md +73 -0
package/docs/components/kubevela-oam.md +70 -0
package/docs/components/operations-publishing.md +81 -0
package/docs/components/runners-ci.md +66 -0
package/docs/components/web-ui.md +94 -0
package/docs/crd-behaviors-and-relationships.md +3926 -0
package/docs/external/README.md +47 -0
package/docs/external/bidirectional-sync-design.md +134 -0
package/docs/external/cicd-interface.md +64 -0
package/docs/external/external-backend-controllers.md +170 -0
package/docs/external/external-backend-crds.md +234 -0
package/docs/external/external-backend-ui-spec.md +151 -0
package/docs/external/external-backend-ux-flows.md +115 -0
package/docs/external/external-object-mapping.md +125 -0
package/docs/external/git-forge-interface.md +68 -0
package/docs/external/github-integration-design.md +151 -0
package/docs/external/issue-tracking-interface.md +66 -0
package/docs/external/provider-capability-manifests.md +204 -0
package/docs/external/provider-catalog.md +139 -0
package/docs/external/provider-rollout-testing.md +78 -0
package/docs/external/research-results.md +48 -0
package/docs/external/security-auth-permissions.md +81 -0
package/docs/external/sync-state-machines.md +108 -0
package/docs/external/unified-external-backend-model.md +107 -0
package/docs/external/user-facing-changes.md +67 -0
package/docs/gaps.md +161 -0
package/docs/install.md +94 -0
package/docs/integration-and-design-decisions.md +1530 -0
package/docs/kradle-design.md +334 -0
package/docs/local-minikube.md +55 -0
package/docs/ontology/README.md +32 -0
package/docs/ontology/bounded-contexts.md +29 -0
package/docs/ontology/events-and-hooks.md +32 -0
package/docs/ontology/oam-kubevela.md +32 -0
package/docs/ontology/operations-and-release.md +25 -0
package/docs/ontology/personas-and-actors.md +32 -0
package/docs/ontology/policies-and-invariants.md +33 -0
package/docs/ontology/problem-space.md +30 -0
package/docs/ontology/resource-contracts.md +40 -0
package/docs/ontology/resource-taxonomy.md +42 -0
package/docs/ontology/runners-and-ci.md +29 -0
package/docs/ontology/solution-space.md +24 -0
package/docs/ontology/storage-and-data-boundaries.md +29 -0
package/docs/ontology/validation-matrix.md +24 -0
package/docs/ontology/web-ui-excellent-flows.md +32 -0
package/docs/ontology/workflows.md +39 -0
package/docs/ontology/world.md +35 -0
package/docs/openapi.yaml +1291 -0
package/docs/product-requirements.md +62 -0
package/docs/requirements-v2.md +235 -0
package/docs/roadmap-mvp.md +87 -0
package/docs/sdk-api-reference.md +1108 -0
package/docs/system-requirements.md +90 -0
package/docs/system-spec-v2.md +1230 -0
package/docs/tests/README.md +53 -0
package/docs/tests/agent-qa-plan.md +63 -0
package/docs/tests/browser-ui-tests.md +62 -0
package/docs/tests/ci-quality-gates.md +48 -0
package/docs/tests/coverage-model.md +64 -0
package/docs/tests/e2e-scenario-tests.md +53 -0
package/docs/tests/fixtures-test-data.md +63 -0
package/docs/tests/observability-reliability-tests.md +54 -0
package/docs/tests/product-test-matrix.md +145 -0
package/docs/tests/qa-adoption-roadmap.md +130 -0
package/docs/tests/qa-automation-plan.md +101 -0
package/docs/tests/security-compliance-tests.md +57 -0
package/docs/tests/test-framework-tools.md +88 -0
package/docs/tests/test-suite-layout.md +121 -0
package/docs/tests/unit-integration-tests.md +48 -0
package/docs/todo-kyverno +714 -0
package/docs/todos.md +4 -0
package/docs/user-stories.md +78 -0
package/docs/web-console-spec.md +533 -0
package/examples/minikube-demo.yaml +190 -0
package/examples/oam-application.yaml +23 -0
package/examples/policy-kyverno-pr-title.yaml +18 -0
package/package.json +66 -0
package/scripts/build.mjs +29 -0
package/scripts/setup-minikube.mjs +65 -0
package/scripts/smoke.mjs +37 -0
package/scripts/validate-doc-coverage.mjs +152 -0
package/scripts/validate-package.mjs +95 -0
package/scripts/validate-ui.mjs +305 -0
package/src/agent-adapter-controller.js +169 -0
package/src/agent-approval-controller.js +170 -0
package/src/agent-context-bundles.js +242 -0
package/src/agent-dispatch-controller.js +549 -0
package/src/agent-gateway-config-controller.js +147 -0
package/src/agent-identity-migration.js +115 -0
package/src/agent-memory-controller.js +357 -0
package/src/agent-memory-import.js +327 -0
package/src/agent-memory-query.js +292 -0
package/src/agent-memory-repository-source-controller.js +255 -0
package/src/agent-mux-client.js +589 -0
package/src/agent-permission-review.js +250 -0
package/src/agent-persona-controller.js +135 -0
package/src/agent-project-controller.js +117 -0
package/src/agent-prompt-composition.js +55 -0
package/src/agent-provider-config-controller.js +151 -0
package/src/agent-secret-config-grant-controller.js +282 -0
package/src/agent-session-transcript-controller.js +189 -0
package/src/agent-stack-controller.js +421 -0
package/src/agent-subagent-controller.js +160 -0
package/src/agent-transport-binding-controller.js +121 -0
package/src/agent-trigger-controller.js +387 -0
package/src/agent-workspace-controller.js +702 -0
package/src/agent-writeback-controller.js +302 -0
package/src/api-controller.js +621 -0
package/src/argocd-gitops.js +43 -0
package/src/artifact-registry-controller.js +542 -0
package/src/assistant-runtime.js +284 -0
package/src/async-controller.js +207 -0
package/src/audit-controller.js +191 -0
package/src/auth.js +310 -0
package/src/component-catalog.js +41 -0
package/src/control-plane.js +136 -0
package/src/controller-client.js +112 -0
package/src/controller-ui.js +620 -0
package/src/data-plane.js +179 -0
package/src/event-bus.js +397 -0
package/src/external/conflict-controller.js +225 -0
package/src/external/github/auth.js +96 -0
package/src/external/github/cicd.js +180 -0
package/src/external/github/git-forge.js +240 -0
package/src/external/github/index.js +144 -0
package/src/external/github/issue-tracking.js +163 -0
package/src/external/provider-adapter.js +161 -0
package/src/external/provider-resource-factory.js +221 -0
package/src/external/sync-controller.js +235 -0
package/src/external/webhook-controller.js +144 -0
package/src/external/write-controller.js +283 -0
package/src/gitea-backend.js +131 -0
package/src/gitea-service.js +173 -0
package/src/handoff.js +98 -0
package/src/health-probes.js +134 -0
package/src/hooks-events.js +63 -0
package/src/hooks-lifecycle.js +117 -0
package/src/http-server.js +409 -0
package/src/identity-policy.js +86 -0
package/src/index.js +71 -0
package/src/jitsi-agent-bridge.js +141 -0
package/src/jitsi-meeting-controller.js +291 -0
package/src/jitsi-sync-controller.js +198 -0
package/src/kradle-inference-service-controller.js +246 -0
package/src/kubernetes-controller-async.js +531 -0
package/src/kubernetes-controller.js +904 -0
package/src/kubernetes-resource-gateway.js +48 -0
package/src/model-route-controller.js +364 -0
package/src/notification-controller.js +178 -0
package/src/operations.js +112 -0
package/src/org-scoping.js +5 -0
package/src/resource-model.js +282 -0
package/src/runner-controller.js +272 -0
package/src/runners-ci.js +48 -0
package/src/runtime.js +196 -0
package/src/snapshot-cache.js +157 -0
package/src/virtual-model-controller.js +538 -0
package/src/virtual-model-hook-bridge.js +200 -0
package/src/web-ui.js +40 -0
package/tests/agent-adapter-controller.test.js +361 -0
package/tests/agent-approval-controller.test.js +173 -0
package/tests/agent-context-bundles.test.js +278 -0
package/tests/agent-dispatch-controller.test.js +679 -0
package/tests/agent-gateway-config-controller.test.js +386 -0
package/tests/agent-identity-migration.test.js +87 -0
package/tests/agent-memory-controller.test.js +461 -0
package/tests/agent-memory-import-snapshot.test.js +477 -0
package/tests/agent-memory-query.test.js +404 -0
package/tests/agent-memory-repository-source.test.js +514 -0
package/tests/agent-mux-client.test.js +389 -0
package/tests/agent-mux-integration.test.js +971 -0
package/tests/agent-permission-review-v2.test.js +317 -0
package/tests/agent-permission-review.test.js +209 -0
package/tests/agent-persona-controller.test.js +127 -0
package/tests/agent-project-controller.test.js +302 -0
package/tests/agent-prompt-composition.test.js +76 -0
package/tests/agent-provider-config-controller.test.js +376 -0
package/tests/agent-resources.test.js +303 -0
package/tests/agent-secret-config-grant.test.js +231 -0
package/tests/agent-session-transcript-controller.test.js +499 -0
package/tests/agent-stack-controller.test.js +283 -0
package/tests/agent-subagent-controller.test.js +201 -0
package/tests/agent-transport-binding-controller.test.js +294 -0
package/tests/agent-trigger-controller.test.js +271 -0
package/tests/agent-trigger-routes.test.js +190 -0
package/tests/agent-trigger-sources.test.js +245 -0
package/tests/agent-workspace-controller.test.js +181 -0
package/tests/agent-writeback.test.js +292 -0
package/tests/approval-persistence.test.js +171 -0
package/tests/artifact-registry.test.js +511 -0
package/tests/assistant-runtime.test.js +506 -0
package/tests/async-controller.test.js +252 -0
package/tests/audit-controller.test.js +227 -0
package/tests/codespace-controller.test.js +318 -0
package/tests/controller-client.test.js +133 -0
package/tests/deployment.test.js +527 -0
package/tests/e2e/lifecycle.test.js +120 -0
package/tests/event-bus-integration.test.js +355 -0
package/tests/external-github-forge.test.js +560 -0
package/tests/external-github-issues-cicd.test.js +520 -0
package/tests/external-integration.test.js +470 -0
package/tests/external-persistence.test.js +415 -0
package/tests/external-provider-adapter.test.js +365 -0
package/tests/external-resource-model.test.js +223 -0
package/tests/external-webhook-sync.test.js +287 -0
package/tests/external-write-conflict.test.js +353 -0
package/tests/gitea-service.test.js +253 -0
package/tests/health-check-real.test.js +165 -0
package/tests/health-probes.test.js +90 -0
package/tests/hooks-lifecycle.test.js +364 -0
package/tests/integration/full-flow.test.js +266 -0
package/tests/jitsi-agent-bridge.test.js +119 -0
package/tests/jitsi-helm-integration.test.js +77 -0
package/tests/jitsi-meeting-controller.test.js +170 -0
package/tests/jitsi-resource-model.test.js +73 -0
package/tests/jitsi-sync-controller.test.js +112 -0
package/tests/kradle-inference-service.test.js +689 -0
package/tests/kradle.test.js +779 -0
package/tests/memory-search-wiring.test.js +270 -0
package/tests/model-route-controller.test.js +733 -0
package/tests/notification-controller.test.js +196 -0
package/tests/notification-integration.test.js +179 -0
package/tests/org-scoping.test.js +687 -0
package/tests/runner-controller.test.js +327 -0
package/tests/runner-integration.test.js +231 -0
package/tests/session-cookie-hmac.test.js +151 -0
package/tests/snapshot-performance.test.js +315 -0
package/tests/sse-events.test.js +107 -0
package/tests/virtual-model-controller.test.js +877 -0
package/tests/virtual-model-hook-bridge.test.js +384 -0
package/tests/webhook-trigger.test.js +198 -0
package/tests/workspace-volumes.test.js +312 -0
package/tests/writeback-persistence.test.js +207 -0

package/src/kubernetes-resource-gateway.js ADDED Viewed

@@ -0,0 +1,48 @@
+import { createKubernetesResourceClient, repositoryManifest } from './kubernetes-controller.js';
+export const KUBERNETES_RESOURCE_GATEWAY_BOUNDARY = {
+  role: 'kubernetes-resource-gateway',
+  scope: 'Application port translating API controller intent into Kubernetes resource-client operations',
+  owns: ['resource definitions', 'list/get/apply/delete/watch delegation', 'Repository manifest application', 'namespace scoping'],
+  delegatesTo: ['kubernetes-resource-client'],
+  mustNotOwn: ['HTTP routes', 'Next.js page flow decisions', 'forge DTO composition', 'Kubernetes reconciliation scheduling']
+};
+export function createKubernetesResourceGateway(options = {}) {
+  const resourceClient = options.resourceClient || options.kubernetesClient || createKubernetesResourceClient(options);
+  const namespace = options.namespace || resourceClient.namespace || process.env.KRADLE_NAMESPACE || 'kradle-system';
+  return {
+    ...KUBERNETES_RESOURCE_GATEWAY_BOUNDARY,
+    namespace,
+    resourceDefinitions: resourceClient.resourceDefinitions,
+    async snapshot() {
+      return resourceClient.snapshot();
+    },
+    async list(kindOrPlural) {
+      return resourceClient.listResource(kindOrPlural);
+    },
+    async get(kindOrPlural, name) {
+      return resourceClient.getResource(kindOrPlural, name);
+    },
+    async apply(resource) {
+      return resourceClient.applyResource(resource);
+    },
+    async delete(kindOrPlural, name) {
+      return resourceClient.deleteResource(kindOrPlural, name);
+    },
+    async createRepository(input) {
+      return resourceClient.applyResource(repositoryManifest(input, namespace));
+    },
+    async createOrganization(input) {
+      return resourceClient.createOrganization(input);
+    },
+    watch(resourcePath, handlers = {}) {
+      return resourceClient.watchResource(resourcePath, handlers);
+    }
+  };
+}

package/src/model-route-controller.js ADDED Viewed

@@ -0,0 +1,364 @@
+// KradleModelRoute Controller
+// Unified model routing through Envoy AI Gateway — validation, endpoint resolution,
+// catalog generation, and Envoy manifest generation for both internal (KServe) and
+// external (cloud LLM) model routes.
+export const ENVOY_AI_GATEWAY_API_GROUP = 'aigateway.envoyproxy.io';
+export const ENVOY_AI_GATEWAY_API_VERSION = 'v1alpha1';
+export const VALID_ROUTE_TYPES = ['internal', 'external'];
+export const VALID_EXTERNAL_PROTOCOLS = ['openai', 'anthropic', 'bedrock', 'vertex', 'azure-openai', 'custom'];
+export const MODEL_ROUTE_CONTROLLER_BOUNDARY = {
+  role: 'model-route-controller',
+  scope: 'Unified model routing through Envoy AI Gateway — validation, endpoint resolution, catalog generation, Envoy manifest generation',
+  owns: ['route validation', 'endpoint resolution', 'model catalog', 'envoy route manifests'],
+  delegatesTo: ['resource-model', 'kradle-inference-service-controller'],
+  mustNotOwn: ['secret values', 'gateway deployment', 'network policy']
+};
+/**
+ * Validate a KradleModelRoute resource. Returns { valid, errors }.
+ * @param {object} resource
+ * @returns {{ valid: boolean, errors: string[] }}
+ */
+export function validateModelRoute(resource) {
+  const errors = [];
+  if (resource == null) {
+    errors.push('resource must not be null or undefined');
+    return { valid: false, errors };
+  }
+  if (!resource?.metadata?.name) {
+    errors.push('metadata.name is required');
+  }
+  const spec = resource?.spec || {};
+  if (!spec.organizationRef) {
+    errors.push('spec.organizationRef is required');
+  }
+  if (!spec.modelName) {
+    errors.push('spec.modelName is required');
+  }
+  if (!spec.routeType) {
+    errors.push('spec.routeType is required; valid values are: internal, external');
+  } else if (!VALID_ROUTE_TYPES.includes(spec.routeType)) {
+    errors.push(`spec.routeType "${spec.routeType}" is not valid; valid values are: ${VALID_ROUTE_TYPES.join(', ')}`);
+  }
+  // Route-type-specific validation
+  if (spec.routeType === 'internal') {
+    if (!spec.inferenceServiceRef) {
+      errors.push('spec.inferenceServiceRef is required for internal routes');
+    }
+  }
+  if (spec.routeType === 'external') {
+    if (!spec.external) {
+      errors.push('spec.external is required for external routes');
+    } else {
+      if (!spec.external.provider) {
+        errors.push('spec.external.provider is required for external routes');
+      }
+      if (!spec.external.endpoint) {
+        errors.push('spec.external.endpoint is required for external routes');
+      }
+      if (spec.external.protocol && !VALID_EXTERNAL_PROTOCOLS.includes(spec.external.protocol)) {
+        errors.push(`spec.external.protocol "${spec.external.protocol}" is not valid; valid values are: ${VALID_EXTERNAL_PROTOCOLS.join(', ')}`);
+      }
+    }
+  }
+  return { valid: errors.length === 0, errors };
+}
+/**
+ * Factory that returns a KradleModelRoute controller instance.
+ * @param {object} [options]
+ * @returns {object}
+ */
+export function createModelRouteController(options = {}) {
+  return {
+    role: 'model-route-controller',
+    /**
+     * Validate a KradleModelRoute resource.
+     * @param {object} resource
+     * @returns {{ valid: boolean, errors: string[] }}
+     */
+    validate(resource) {
+      return validateModelRoute(resource);
+    },
+    /**
+     * Resolve a route to its endpoint and connection details.
+     * For internal routes, looks up the InferenceService status.url.
+     * For external routes, uses spec.external fields.
+     *
+     * @param {object} route - KradleModelRoute resource
+     * @param {object[]} [resources] - all cluster resources to look up InferenceService
+     * @returns {{ endpoint: string, protocol: string, provider: string, modelId: string, authConfig: object|null }}
+     */
+    resolveRoute(route, resources = []) {
+      const spec = route?.spec || {};
+      if (spec.routeType === 'internal') {
+        return resolveInternalRoute(route, resources);
+      }
+      if (spec.routeType === 'external') {
+        return resolveExternalRoute(route);
+      }
+      return {
+        endpoint: null,
+        protocol: 'unknown',
+        provider: 'unknown',
+        modelId: spec.modelName || null,
+        authConfig: null
+      };
+    },
+    /**
+     * Reconcile a set of routes, checking that each target is reachable.
+     * Returns conditions for each route indicating readiness.
+     *
+     * @param {object[]} routes - array of KradleModelRoute resources
+     * @param {object[]} [resources] - all cluster resources
+     * @returns {{ conditions: object[], resolvedRoutes: object[] }}
+     */
+    reconcileRoutes(routes, resources = []) {
+      const conditions = [];
+      const resolvedRoutes = [];
+      for (const route of routes) {
+        const validation = validateModelRoute(route);
+        if (!validation.valid) {
+          conditions.push({
+            type: 'RouteReady',
+            status: 'False',
+            route: route.metadata?.name,
+            reason: 'ValidationFailed',
+            message: validation.errors.join('; ')
+          });
+          continue;
+        }
+        const resolved = this.resolveRoute(route, resources);
+        if (!resolved.endpoint) {
+          conditions.push({
+            type: 'RouteReady',
+            status: 'False',
+            route: route.metadata?.name,
+            reason: 'EndpointNotFound',
+            message: `Could not resolve endpoint for route "${route.metadata?.name}"`
+          });
+          continue;
+        }
+        conditions.push({
+          type: 'RouteReady',
+          status: 'True',
+          route: route.metadata?.name,
+          reason: 'EndpointResolved',
+          message: `Route "${route.metadata?.name}" resolved to ${resolved.endpoint}`
+        });
+        resolvedRoutes.push({
+          name: route.metadata?.name,
+          modelName: route.spec?.modelName,
+          routeType: route.spec?.routeType,
+          ...resolved
+        });
+      }
+      return { conditions, resolvedRoutes };
+    },
+    /**
+     * Generate a unified model catalog merging internal and external routes.
+     *
+     * @param {object[]} routes - array of KradleModelRoute resources
+     * @param {object[]} [resources] - all cluster resources
+     * @returns {Array<{ name: string, provider: string, type: string, status: string, endpoint: string, protocol: string }>}
+     */
+    listModelCatalog(routes, resources = []) {
+      const catalog = [];
+      for (const route of routes) {
+        const spec = route?.spec || {};
+        const validation = validateModelRoute(route);
+        const resolved = validation.valid ? this.resolveRoute(route, resources) : null;
+        catalog.push({
+          name: spec.modelName || route.metadata?.name || 'unknown',
+          provider: resolved?.provider || (spec.routeType === 'internal' ? 'kserve' : spec.external?.provider || 'unknown'),
+          type: spec.routeType || 'unknown',
+          status: resolved?.endpoint ? 'available' : 'unavailable',
+          endpoint: resolved?.endpoint || null,
+          protocol: resolved?.protocol || (spec.routeType === 'internal' ? 'v2' : spec.external?.protocol || 'unknown')
+        });
+      }
+      return catalog;
+    },
+    /**
+     * Generate an Envoy AI Gateway route configuration for a resolved route.
+     *
+     * @param {object} route - KradleModelRoute resource
+     * @param {{ endpoint: string, protocol: string, provider: string, modelId: string }} resolvedEndpoint
+     * @returns {object} Envoy AI Gateway route config
+     */
+    generateEnvoyRouteManifest(route, resolvedEndpoint) {
+      const spec = route?.spec || {};
+      const metadata = route?.metadata || {};
+      const routeConfig = {
+        apiVersion: `${ENVOY_AI_GATEWAY_API_GROUP}/${ENVOY_AI_GATEWAY_API_VERSION}`,
+        kind: 'AIGatewayRoute',
+        metadata: {
+          name: `route-${metadata.name || 'unknown'}`,
+          namespace: metadata.namespace,
+          labels: {
+            'kradle.a5c.ai/managed': 'true',
+            'kradle.a5c.ai/org': spec.organizationRef || '',
+            'kradle.a5c.ai/model-route': metadata.name || ''
+          }
+        },
+        spec: {
+          modelName: spec.modelName,
+          targetRef: {
+            kind: spec.routeType === 'internal' ? 'Service' : 'ExternalBackend',
+            name: spec.routeType === 'internal'
+              ? (spec.inferenceServiceRef || metadata.name)
+              : `ext-${resolvedEndpoint.provider || 'provider'}`
+          },
+          rules: [{
+            matches: [{
+              headers: [{
+                name: 'x-model-name',
+                value: spec.modelName
+              }]
+            }],
+            backendRefs: [{
+              name: resolvedEndpoint.endpoint,
+              protocol: resolvedEndpoint.protocol,
+              modelId: resolvedEndpoint.modelId || spec.modelName
+            }]
+          }]
+        }
+      };
+      // Add rate limits if present
+      if (spec.rateLimits) {
+        routeConfig.spec.rateLimits = spec.rateLimits;
+      }
+      // Add timeout if present
+      if (spec.timeout) {
+        routeConfig.spec.timeout = spec.timeout;
+      }
+      return routeConfig;
+    },
+    /**
+     * Convert a KServe InferenceService into a KradleModelRoute spec.
+     * Bridge method for migrating existing services into the unified routing model.
+     *
+     * @param {object} inferenceService - KServe InferenceService resource
+     * @param {{ endpoint: string, protocol?: string }} resolvedEndpoint
+     * @returns {object} KradleModelRoute spec fields
+     */
+    toModelRoute(inferenceService, resolvedEndpoint) {
+      const metadata = inferenceService?.metadata || {};
+      const spec = inferenceService?.spec || {};
+      const predictor = spec.predictor || {};
+      const modelFormat = predictor.modelFormat?.name || spec.modelFormat || 'custom';
+      return {
+        apiVersion: 'kradle.a5c.ai/v1alpha1',
+        kind: 'KradleModelRoute',
+        metadata: {
+          name: `route-${metadata.name || 'unknown'}`,
+          namespace: metadata.namespace,
+          labels: {
+            'kradle.a5c.ai/managed': 'true',
+            'kradle.a5c.ai/source': 'inference-service',
+            ...(metadata.labels || {})
+          }
+        },
+        spec: {
+          organizationRef: metadata.labels?.['kradle.a5c.ai/org'] || spec.organizationRef || 'default',
+          modelName: metadata.name || 'unknown',
+          routeType: 'internal',
+          inferenceServiceRef: metadata.name,
+          modelFormat,
+          endpoint: resolvedEndpoint.endpoint,
+          protocol: resolvedEndpoint.protocol || 'v2'
+        }
+      };
+    }
+  };
+}
+// ---------------------------------------------------------------------------
+// Internal helpers
+// ---------------------------------------------------------------------------
+function resolveInternalRoute(route, resources) {
+  const spec = route?.spec || {};
+  const inferenceServiceRef = spec.inferenceServiceRef;
+  // Look up the InferenceService in the cluster resources
+  let endpoint = null;
+  let protocol = spec.protocol || 'v2';
+  if (inferenceServiceRef && Array.isArray(resources)) {
+    const isvc = resources.find(
+      r => (r.kind === 'InferenceService' || r.kind === 'KradleInferenceService') &&
+           r.metadata?.name === inferenceServiceRef
+    );
+    if (isvc) {
+      endpoint = isvc.status?.url || isvc.status?.address?.url || null;
+      if (!endpoint && isvc.metadata?.name) {
+        const ns = isvc.metadata.namespace || 'default';
+        endpoint = `http://${isvc.metadata.name}.${ns}.svc.cluster.local`;
+      }
+      protocol = isvc.spec?.inferenceProtocol || protocol;
+    }
+  }
+  // Fallback: build cluster-internal URL from the reference name
+  if (!endpoint && inferenceServiceRef) {
+    const ns = route.metadata?.namespace || 'default';
+    endpoint = `http://${inferenceServiceRef}.${ns}.svc.cluster.local`;
+  }
+  return {
+    endpoint,
+    protocol,
+    provider: 'kserve',
+    modelId: spec.modelName || inferenceServiceRef || null,
+    authConfig: spec.authConfig || null
+  };
+}
+function resolveExternalRoute(route) {
+  const spec = route?.spec || {};
+  const ext = spec.external || {};
+  return {
+    endpoint: ext.endpoint || null,
+    protocol: ext.protocol || 'openai',
+    provider: ext.provider || 'unknown',
+    modelId: ext.modelId || spec.modelName || null,
+    authConfig: ext.authConfig || null
+  };
+}

package/src/notification-controller.js ADDED Viewed

@@ -0,0 +1,178 @@
+import { randomUUID } from 'node:crypto';
+export const NOTIFICATION_CONTROLLER_BOUNDARY = {
+  role: 'notification-controller',
+  scope: 'User notification lifecycle: creation from events, querying, read state, and preferences',
+  owns: ['notification creation', 'notification listing', 'read state', 'user preferences'],
+  delegatesTo: [],
+  mustNotOwn: ['event dispatch', 'UI rendering', 'push delivery']
+};
+const NOTIFICATION_TYPES = {
+  'run-complete': { severity: 'info' },
+  'approval-needed': { severity: 'warning' },
+  'conflict-detected': { severity: 'warning' },
+  'workspace-ready': { severity: 'info' },
+  'system': { severity: 'info' },
+};
+const DEFAULT_PREFERENCES = {
+  runs: true,
+  approvals: true,
+  conflicts: true,
+  workspaces: true,
+  sound: false,
+  desktop: false,
+};
+export function createNotificationController() {
+  // Map of org -> notifications[]
+  const store = new Map();
+  // Map of userId -> preferences
+  const prefsStore = new Map();
+  function getOrgNotifications(org) {
+    if (!store.has(org)) store.set(org, []);
+    return store.get(org);
+  }
+  function mapEventToNotification(event) {
+    const { type, status, name, action, resourceRef, org = 'default' } = event || {};
+    let notifType = 'system';
+    let title = 'System event';
+    let message = '';
+    let severity = 'info';
+    if (type === 'AgentDispatchRun') {
+      notifType = 'run-complete';
+      const runName = name || event?.metadata?.name || 'Unknown';
+      if (status === 'completed') {
+        title = `Run ${runName} completed`;
+        message = `Agent dispatch run "${runName}" completed successfully.`;
+        severity = 'info';
+      } else if (status === 'failed') {
+        title = `Run ${runName} failed`;
+        message = `Agent dispatch run "${runName}" failed.`;
+        severity = 'error';
+      } else {
+        title = `Run ${runName} updated`;
+        message = `Agent dispatch run "${runName}" status: ${status || 'unknown'}.`;
+        severity = 'info';
+      }
+    } else if (type === 'AgentApproval' && status === 'pending') {
+      notifType = 'approval-needed';
+      const actionLabel = action || event?.spec?.action || 'unknown action';
+      title = `Approval needed for ${actionLabel}`;
+      message = `An agent is requesting approval for: ${actionLabel}.`;
+      severity = 'warning';
+    } else if (type === 'ExternalSyncConflict') {
+      notifType = 'conflict-detected';
+      const resource = resourceRef || event?.spec?.resourceRef || name || 'unknown resource';
+      title = `Conflict in ${resource}`;
+      message = `A sync conflict was detected in resource: ${resource}.`;
+      severity = 'warning';
+    } else if (type === 'KradleWorkspace' && event?.claimed) {
+      notifType = 'workspace-ready';
+      const wsName = name || event?.metadata?.name || 'Unknown';
+      const runRef = event?.claimedBy || event?.spec?.claimedBy || 'a run';
+      title = `Workspace ${wsName} claimed by ${runRef}`;
+      message = `Workspace "${wsName}" has been claimed by "${runRef}".`;
+      severity = 'info';
+    }
+    return { notifType, title, message, severity, org };
+  }
+  return {
+    role: 'notification-controller',
+    createNotification(event) {
+      const { notifType, title, message, severity, org } = mapEventToNotification(event);
+      const notification = {
+        id: randomUUID(),
+        type: notifType,
+        title,
+        message,
+        severity,
+        resourceRef: event?.resourceRef || null,
+        createdAt: new Date().toISOString(),
+        read: false,
+        org,
+      };
+      const notifications = getOrgNotifications(org);
+      notifications.push(notification);
+      return notification;
+    },
+    listNotifications(org, opts = {}) {
+      const { unreadOnly = false, limit = 20, since = null } = opts;
+      let notifications = [...getOrgNotifications(org)];
+      // Filter by read state
+      if (unreadOnly) {
+        notifications = notifications.filter((n) => !n.read);
+      }
+      // Filter by since timestamp
+      if (since) {
+        const sinceDate = new Date(since).getTime();
+        notifications = notifications.filter((n) => new Date(n.createdAt).getTime() > sinceDate);
+      }
+      // Newest first
+      notifications.sort((a, b) => new Date(b.createdAt) - new Date(a.createdAt));
+      // Cap to limit
+      if (limit > 0) {
+        notifications = notifications.slice(0, limit);
+      }
+      return notifications;
+    },
+    markAsRead(notificationId) {
+      for (const notifications of store.values()) {
+        const notification = notifications.find((n) => n.id === notificationId);
+        if (notification) {
+          notification.read = true;
+          return true;
+        }
+      }
+      return false;
+    },
+    markAllAsRead(org) {
+      const notifications = getOrgNotifications(org);
+      let count = 0;
+      for (const notification of notifications) {
+        if (!notification.read) {
+          notification.read = true;
+          count++;
+        }
+      }
+      return count;
+    },
+    getUnreadCount(org) {
+      return getOrgNotifications(org).filter((n) => !n.read).length;
+    },
+    getPreferences(userId) {
+      if (!prefsStore.has(userId)) {
+        return { ...DEFAULT_PREFERENCES };
+      }
+      return { ...DEFAULT_PREFERENCES, ...prefsStore.get(userId) };
+    },
+    updatePreferences(userId, prefs) {
+      const existing = prefsStore.get(userId) || {};
+      const merged = { ...DEFAULT_PREFERENCES, ...existing, ...prefs };
+      prefsStore.set(userId, merged);
+      return merged;
+    },
+  };
+}