npm - @adastracomputing/ink - Versions diffs - 0.1.0-alpha.2 → 0.1.0-alpha.5 - Mend

@adastracomputing/ink 0.1.0-alpha.2 → 0.1.0-alpha.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (69) hide show

package/CHANGELOG.md +56 -5
package/CODE_OF_CONDUCT.md +1 -1
package/README.md +7 -5
package/SECURITY.md +1 -1
package/bin/verify-inclusion-impl.mjs +4 -1
package/dist/audit/inclusion-receipt.d.ts +142 -0
package/dist/audit/inclusion-receipt.js +496 -0
package/dist/crypto/ink.d.ts +178 -0
package/dist/crypto/ink.js +915 -0
package/dist/crypto/keys.d.ts +42 -0
package/dist/crypto/keys.js +179 -0
package/dist/crypto/multi-key-verify.d.ts +29 -0
package/dist/crypto/multi-key-verify.js +153 -0
package/dist/crypto/sign.d.ts +17 -0
package/dist/crypto/sign.js +152 -0
package/dist/crypto/verify.js +1 -0
package/dist/discovery/agent-card.d.ts +83 -0
package/dist/discovery/agent-card.js +545 -0
package/dist/index.d.ts +12 -0
package/dist/index.js +15 -0
package/dist/ink/checkpoint.d.ts +19 -0
package/dist/ink/checkpoint.js +69 -0
package/dist/ink/discovery-gating.d.ts +237 -0
package/dist/ink/discovery-gating.js +91 -0
package/dist/ink/handshake-budget.d.ts +90 -0
package/dist/ink/handshake-budget.js +397 -0
package/dist/ink/receipts.d.ts +31 -0
package/dist/ink/receipts.js +89 -0
package/dist/ink/transport-auth.d.ts +47 -0
package/dist/ink/transport-auth.js +77 -0
package/dist/middleware/ink-auth.d.ts +68 -0
package/dist/middleware/ink-auth.js +214 -0
package/dist/models/agent-card.d.ts +154 -0
package/dist/models/agent-card.js +59 -0
package/dist/models/ink-audit.d.ts +344 -0
package/dist/models/ink-audit.js +167 -0
package/dist/models/ink-handshake.d.ts +129 -0
package/dist/models/ink-handshake.js +89 -0
package/dist/models/intent.d.ts +437 -0
package/dist/models/intent.js +172 -0
package/dist/models/key-entry.d.ts +60 -0
package/dist/models/key-entry.js +13 -0
package/dist/models/profile.d.ts +61 -0
package/dist/models/profile.js +24 -0
package/docs/maturity.md +3 -3
package/docs/threat-model.md +1 -1
package/package.json +17 -13
package/specs/ink-auditability.md +37 -12
package/specs/ink-compliance-checklist.md +9 -1
package/src/audit/inclusion-receipt.ts +0 -268
package/src/crypto/ink.ts +0 -902
package/src/crypto/keys.ts +0 -210
package/src/crypto/multi-key-verify.ts +0 -170
package/src/crypto/sign.ts +0 -155
package/src/discovery/agent-card.ts +0 -508
package/src/index.ts +0 -67
package/src/ink/checkpoint.ts +0 -75
package/src/ink/discovery-gating.ts +0 -147
package/src/ink/handshake-budget.ts +0 -413
package/src/ink/receipts.ts +0 -114
package/src/ink/transport-auth.ts +0 -96
package/src/middleware/ink-auth.ts +0 -263
package/src/models/agent-card.ts +0 -63
package/src/models/ink-audit.ts +0 -205
package/src/models/ink-handshake.ts +0 -123
package/src/models/intent.ts +0 -201
package/src/models/key-entry.ts +0 -52
package/src/models/profile.ts +0 -31
/package/{src/crypto/verify.ts → dist/crypto/verify.d.ts} +0 -0

package/src/models/ink-handshake.ts DELETED Viewed

@@ -1,123 +0,0 @@
-import { z } from "zod";
-// ── Transport identifiers (INK Containment §7) ──
-export const InkTransportSchema = z.enum([
-  "ink_http",
-  "ink_ws",
-  "extension_api",
-  "voice",
-  "line_phone",
-  "human_review_queue",
-]);
-export type InkTransport = z.infer<typeof InkTransportSchema>;
-// ── Backoff hints (INK Containment §5.2) ──
-export const InkBackoffHintSchema = z.object({
-  retryAfterSeconds: z.number().int().positive().optional(),
-  cooldownUntil: z.string().datetime().optional(),
-  backoffClass: z.enum(["sender", "intent_ref", "counterparty"]).optional(),
-});
-export type InkBackoffHint = z.infer<typeof InkBackoffHintSchema>;
-// ── Agent Card visibility (INK Containment §6) ──
-export const AgentCardVisibilitySchema = z.enum([
-  "public",
-  "network_only",
-  "capability_gated",
-  "private",
-]);
-export type AgentCardVisibility = z.infer<typeof AgentCardVisibilitySchema>;
-// ── Challenge (network.tulpa.challenge) — Stage 2a ──
-export const ChallengeTypeSchema = z.enum([
-  "mutual_connection_proof",
-  "identity_verification",
-  "availability_query",
-  "context_request",
-  "none",
-]);
-export type ChallengeType = z.infer<typeof ChallengeTypeSchema>;
-export const InkChallengeSchema = z.object({
-  protocol: z.literal("ink/0.1"),
-  type: z.literal("network.tulpa.challenge"),
-  intentRef: z.string(),
-  challengeType: ChallengeTypeSchema,
-  fields: z.array(z.string()).optional(),
-  availableWindows: z.array(z.string()).optional(),
-  contextFields: z.array(z.string()).optional(),
-  nonce: z.string(),
-  timestamp: z.string().datetime(),
-});
-export type InkChallenge = z.infer<typeof InkChallengeSchema>;
-// ── Rejection (network.tulpa.rejection) — Stage 2b ──
-export const RejectionReasonSchema = z.enum([
-  "policy_violation",
-  "trust_threshold",
-  "capacity",
-  "unsupported_intent",
-  "rate_limited",
-  "expired",
-  // Containment extension (Phase 1)
-  "handshake_budget_exhausted",
-  "counterparty_cooldown",
-  "sender_rate_limited",
-  "delegation_budget_exhausted",
-  "transport_scope_violation",
-]);
-export type RejectionReason = z.infer<typeof RejectionReasonSchema>;
-export const InkRejectionSchema = z.object({
-  protocol: z.literal("ink/0.1"),
-  type: z.literal("network.tulpa.rejection"),
-  intentRef: z.string(),
-  reason: RejectionReasonSchema,
-  detail: z.string().max(500).optional(),
-  retryAfter: z.string().optional(),
-  backoffHint: InkBackoffHintSchema.optional(),
-  nonce: z.string(),
-  timestamp: z.string().datetime(),
-});
-export type InkRejection = z.infer<typeof InkRejectionSchema>;
-// ── Resolution (network.tulpa.resolution) — Stage 3 ──
-export const ResolutionOutcomeSchema = z.enum([
-  "accepted",
-  "declined",
-  "escalated_to_human",
-  "expired",
-]);
-export type ResolutionOutcome = z.infer<typeof ResolutionOutcomeSchema>;
-export const ResolutionDetailsSchema = z.object({
-  scheduledAt: z.string().optional(),
-  duration: z.string().optional(),
-}).passthrough();
-export const InkResolutionSchema = z.object({
-  protocol: z.literal("ink/0.1"),
-  type: z.literal("network.tulpa.resolution"),
-  intentRef: z.string(),
-  outcome: ResolutionOutcomeSchema,
-  details: ResolutionDetailsSchema.optional(),
-  counterpartyDid: z.string().optional(),
-  nonce: z.string(),
-  timestamp: z.string().datetime(),
-});
-export type InkResolution = z.infer<typeof InkResolutionSchema>;

package/src/models/intent.ts DELETED Viewed

@@ -1,201 +0,0 @@
-import { z } from "zod";
-import { ProfileSnapshotSchema } from "./profile.js";
-// --- Intent Types ---
-export const IntentTypeSchema = z.enum([
-  "schedule_meeting",
-  "schedule_meeting_response",
-  "intro_request",
-  "intro_response",
-  "opportunity",
-  "opportunity_response",
-  "follow_up",
-  "ask",
-  "ask_response",
-  "connection_request",
-  "connection_response",
-  "context_share",
-  "ping",
-  "retract",
-  "multi_party_sync",
-]);
-export type IntentType = z.infer<typeof IntentTypeSchema>;
-// --- Intent Payloads ---
-export const ScheduleMeetingPayloadSchema = z.object({
-  proposedTimes: z.array(z.string()).min(1).max(10),
-  topic: z.string().max(500),
-  format: z.enum(["video", "phone", "in_person", "async"]),
-  urgency: z.enum(["low", "normal", "urgent"]),
-  context: z.string().max(2000).optional(),
-  location: z.string().max(500).optional(),
-});
-export const ScheduleMeetingResponsePayloadSchema = z.object({
-  status: z.enum(["accepted", "declined", "countered"]),
-  confirmedTime: z.string().optional(),
-  counterTimes: z.array(z.string()).max(10).optional(),
-  meetingLink: z.string().url().optional(),
-  note: z.string().max(1000).optional(),
-  declineReason: z
-    .enum(["unavailable", "not_interested", "too_busy", "deferred"])
-    .optional(),
-});
-export const IntroRequestPayloadSchema = z.object({
-  target: z.string(),
-  reason: z.string().max(2000),
-  context: z.string().max(2000).optional(),
-  urgency: z.enum(["low", "normal"]),
-});
-export const IntroResponsePayloadSchema = z.object({
-  status: z.enum(["forwarded", "declined", "pending_target"]),
-  note: z.string().max(1000).optional(),
-  targetResponse: z.enum(["accepted", "declined", "pending"]).optional(),
-});
-export const OpportunityPayloadSchema = z.object({
-  type: z.enum([
-    "role",
-    "investment",
-    "collaboration",
-    "advisory",
-    "event",
-    "other",
-  ]),
-  title: z.string().max(500),
-  org: z.string().max(200).optional(),
-  description: z.string().max(5000),
-  matchReason: z.string().max(2000),
-  expiresAt: z.string().optional(),
-  url: z.string().url().optional(),
-});
-export const OpportunityResponsePayloadSchema = z.object({
-  status: z.enum(["interested", "not_interested", "maybe_later"]),
-  note: z.string().max(1000).optional(),
-  followUpIntent: IntentTypeSchema.optional(),
-});
-export const ConnectionRequestPayloadSchema = z.object({
-  method: z.enum(["qr", "intro", "discovery", "import"]),
-  introducedBy: z.string().optional(),
-  context: z.string().max(2000),
-  profileSnapshot: ProfileSnapshotSchema,
-});
-export const ConnectionResponsePayloadSchema = z.object({
-  status: z.enum(["accepted", "declined", "pending"]),
-  profileSnapshot: ProfileSnapshotSchema.optional(),
-  note: z.string().max(1000).optional(),
-});
-export const FollowUpPayloadSchema = z.object({
-  referenceId: z.string(),
-  message: z.string().max(5000),
-  actionRequested: z.enum(["reply", "schedule", "review", "none"]).optional(),
-});
-export const AskPayloadSchema = z.object({
-  question: z.string().max(5000),
-  context: z.string().max(2000).optional(),
-  responseFormat: z.enum(["text", "choice"]).optional(),
-  choices: z.array(z.string().max(500)).max(10).optional(),
-  deadline: z.string().optional(),
-});
-export const AskResponsePayloadSchema = z.object({
-  answer: z.string().max(5000),
-  choiceIndex: z.number().int().min(0).optional(),
-});
-export const PingPayloadSchema = z.object({
-  note: z.string().max(1000).optional(),
-});
-export const RetractPayloadSchema = z.object({
-  targetMessageId: z.string(),
-  reason: z.string().max(1000).optional(),
-});
-export const ContextSharePayloadSchema = z.object({
-  context: z.string().max(5000),
-  category: z.enum(["professional_background", "project_update", "expertise", "availability", "general"]),
-  referenceId: z.string().optional(),
-  expiresAt: z.string().optional(),
-});
-export const MultiPartySyncPayloadSchema = z.object({
-  enclaveType: z.enum(["meeting_sync"]),
-  purpose: z.string().max(500),
-  participants: z.array(z.string()).min(2).max(20),
-  expiresAt: z.string(),
-});
-// --- Payload discriminated union ---
-const payloadSchemas = {
-  schedule_meeting: ScheduleMeetingPayloadSchema,
-  schedule_meeting_response: ScheduleMeetingResponsePayloadSchema,
-  intro_request: IntroRequestPayloadSchema,
-  intro_response: IntroResponsePayloadSchema,
-  opportunity: OpportunityPayloadSchema,
-  opportunity_response: OpportunityResponsePayloadSchema,
-  follow_up: FollowUpPayloadSchema,
-  ask: AskPayloadSchema,
-  ask_response: AskResponsePayloadSchema,
-  connection_request: ConnectionRequestPayloadSchema,
-  connection_response: ConnectionResponsePayloadSchema,
-  context_share: ContextSharePayloadSchema,
-  ping: PingPayloadSchema,
-  retract: RetractPayloadSchema,
-  multi_party_sync: MultiPartySyncPayloadSchema,
-} as const;
-// --- Message Envelope ---
-export const MessageProvenanceSchema = z.object({
-  origin: z.enum(["human", "agent_approved", "agent_autonomous"]),
-  extensionId: z.string(),
-  installationId: z.string().uuid(),
-}).optional();
-export const MessageEnvelopeSchema = z.object({
-  protocol: z.literal("ink/0.1"),
-  id: z.string(),
-  correlationId: z.string(),
-  createdAt: z.string(),
-  expiresAt: z.string().optional(),
-  from: z.string(),
-  to: z.string(),
-  intent: IntentTypeSchema,
-  payload: z.unknown(),
-  signature: z.string(),
-  signingKeyId: z.string().optional(),
-  provenance: MessageProvenanceSchema,
-});
-export type MessageEnvelope = z.infer<typeof MessageEnvelopeSchema>;
-/**
- * Validate a message envelope AND its payload based on the intent type.
- * Returns the validated message or throws a ZodError.
- */
-export function validateMessage(raw: unknown): MessageEnvelope {
-  const envelope = MessageEnvelopeSchema.parse(raw);
-  const payloadSchema = payloadSchemas[envelope.intent];
-  // Validate payload strictly — reject unknown fields
-  payloadSchema.strict().parse(envelope.payload);
-  return envelope;
-}
-/**
- * Get the payload schema for a given intent type.
- */
-export function getPayloadSchema(intent: IntentType) {
-  return payloadSchemas[intent];
-}

package/src/models/key-entry.ts DELETED Viewed

@@ -1,52 +0,0 @@
-import { z } from "zod";
-export const KeyStatusSchema = z.enum(["active", "retired", "revoked"]);
-export type KeyStatus = z.infer<typeof KeyStatusSchema>;
-export const KeyRoleSchema = z.enum(["signing", "encryption"]);
-export type KeyRole = z.infer<typeof KeyRoleSchema>;
-export const KeyEntrySchema = z.object({
-  keyId: z.string().min(1),
-  algorithm: z.enum(["Ed25519", "X25519"]),
-  publicKeyMultibase: z.string().startsWith("z"),
-  status: KeyStatusSchema,
-  validFrom: z.string().datetime(),
-  validUntil: z.string().datetime().optional(),
-  revokedAt: z.string().datetime().optional(),
-  revokeReason: z.string().optional(),
-});
-export type KeyEntry = z.infer<typeof KeyEntrySchema>;
-export interface CandidateKey {
-  keyId: string;
-  publicKey: Uint8Array;
-  status: KeyStatus;
-  /** ISO 8601 timestamp the key becomes usable. Verifier rejects messages
-   * whose `body.timestamp` falls outside [validFrom, validUntil]. Optional
-   * for backward compat with legacy callers that don't track windows. */
-  validFrom?: string;
-  /** ISO 8601 timestamp the key stops being usable. Typically set when a
-   * key transitions to `retired`. A retired key with no validUntil keeps
-   * verifying indefinitely (legacy behavior); set validUntil to bound it. */
-  validUntil?: string;
-  /** ISO 8601 timestamp the key was revoked. Defensive: status === "revoked"
-   * already blocks verification; this field documents the moment. */
-  revokedAt?: string;
-}
-export interface StoredKey {
-  keyId: string;
-  agentId: string;
-  role: KeyRole;
-  algorithm: string;
-  publicKeyMultibase: string;
-  privateKey: Uint8Array | null;
-  status: KeyStatus;
-  validFrom: string;
-  validUntil: string | null;
-  revokedAt: string | null;
-  createdAt: string;
-  updatedAt: string;
-}

package/src/models/profile.ts DELETED Viewed

@@ -1,31 +0,0 @@
-import { z } from "zod";
-export const AvailabilityConfigSchema = z.object({
-  timezone: z.string(),
-  meetingHours: z.string().optional(),
-  responseSla: z.string().optional(),
-});
-export const ProfileSnapshotSchema = z.object({
-  headline: z.string().max(500),
-  skills: z.array(z.string().max(100)).max(50),
-  interests: z.array(z.string().max(100)).max(50),
-  availability: AvailabilityConfigSchema.optional(),
-  openTo: z.array(z.string().max(100)).max(20),
-});
-export const ProfileSchema = z.object({
-  agentId: z.string(),
-  handle: z.string(),
-  displayName: z.string().max(200),
-  bio: z.string().max(2000),
-  snapshots: z.object({
-    public: ProfileSnapshotSchema,
-    connected: ProfileSnapshotSchema,
-    custom: z.record(z.string(), ProfileSnapshotSchema),
-  }),
-});
-export type AvailabilityConfig = z.infer<typeof AvailabilityConfigSchema>;
-export type ProfileSnapshot = z.infer<typeof ProfileSnapshotSchema>;
-export type Profile = z.infer<typeof ProfileSchema>;

/package/{src/crypto/verify.ts → dist/crypto/verify.d.ts} RENAMED Viewed

File without changes