@adcp/sdk 6.9.0 → 6.10.0

package/dist/lib/server/wire-safe.js

@@ -0,0 +1,231 @@
+"use strict";
+/**
+ * Wire-spec field discipline at the operational fan-out boundary.
+ *
+ * `WireSafe<T>` is a branded type that signals "this object has been
+ * stripped to AdCP wire-spec fields and is safe to forward upstream."
+ * The brand is constructed only by {@link pickWireSpecFields} (or
+ * variants). Code that spreads a buyer request directly cannot satisfy
+ * the brand — `{ ...buyerReq, paused: true }` is `T`, not
+ * `WireSafe<T>`.
+ *
+ * The brand is the L2 of #1529: where L1 (`credentialPolicy`,
+ * `src/lib/server/credential-policy.ts`) catches credential-shaped
+ * keys at the buyer-facing dispatch boundary, L2 catches structural
+ * leakage at the operational dispatch boundary — storefront fan-out
+ * code that picks per-target args from a buyer request, where the
+ * scrub happens BEFORE the credential scan would have run on the
+ * upstream call.
+ *
+ * **The brand is opt-in at the type level.** `OperationalPlatform`
+ * methods accept plain `UpdateMediaBuyRequest` etc. (not branded —
+ * see #1530's interface), so adopters who don't use the helper
+ * aren't broken. Adopters who DO use the helper get the safety
+ * benefit at the picking site: assigning the result to a
+ * `WireSafe<UpdateMediaBuyRequest>` variable forces `pickWireSpecFields`
+ * to be the constructor; spreading the buyer request elsewhere fails
+ * to satisfy the brand.
+ *
+ * **Migration footgun:** `pickWireSpecFields` ALONE doesn't close
+ * the round-2 / round-3 vectors (nested `context.<x>_access_token`,
+ * nested `ext.<x>_access_token`). `ext` and `context` are wire-spec
+ * fields, so the helper preserves them whole. Storefronts that fan
+ * out MUST chain {@link scrubExtensions} after the pick — that helper
+ * filters ext/context to a caller-specified key allowlist AND
+ * recursively drops credential-shaped keys at any depth (using the
+ * L1 default pattern set or an adopter-supplied matcher). Calling
+ * `pickWireSpecFields` without `scrubExtensions` reopens the
+ * round-2/round-3 attack surface.
+ *
+ * @see docs/guides/CTX-METADATA-SAFETY.md
+ * @see scripts/generate-wire-spec-fields.ts — codegen for the
+ *      allowlist constants this module reads.
+ *
+ * @public
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.WIRE_SPEC_FIELDS = void 0;
+exports.pickWireSpecFields = pickWireSpecFields;
+exports.scrubExtensions = scrubExtensions;
+const credential_policy_1 = require("./credential-policy");
+const wire_spec_fields_generated_1 = require("./wire-spec-fields.generated");
+Object.defineProperty(exports, "WIRE_SPEC_FIELDS", { enumerable: true, get: function () { return wire_spec_fields_generated_1.WIRE_SPEC_FIELDS; } });
+/**
+ * Strip a buyer request to the wire-spec fields defined for
+ * `schemaName` and return the result branded `WireSafe<T>`. The
+ * canonical constructor of {@link WireSafe}.
+ *
+ * Drops every property NOT in the schema's `properties` allowlist,
+ * including buyer-supplied unknown keys (`<platform>_access_token`,
+ * `account: { brand: 'attacker.com' }`-style identity-pivot fields,
+ * arbitrary attacker payload). The allowlist comes from codegen — the
+ * AdCP request schema IS the allowlist; drift is structurally
+ * impossible.
+ *
+ * **Top-level only.** `ext` and `context` are wire-spec fields and
+ * are preserved verbatim by this helper. Storefronts MUST chain
+ * {@link scrubExtensions} to drop nested credentials in those
+ * envelopes. See the module-level migration footgun warning.
+ *
+ * Storefronts call this once per upstream target during fan-out:
+ *
+ * ```ts
+ * const safe = pickWireSpecFields(buyerReq, 'UpdateMediaBuyRequest');
+ * for (const target of targets) {
+ *   const perTarget = scrubExtensions(safe, { ... });
+ *   await operational.updateMediaBuy(ctxFor(target), perTarget);
+ * }
+ * ```
+ *
+ * Pollers that construct requests from stored state typically don't
+ * need this — their inputs aren't buyer-controlled. They can opt in
+ * for symmetric type safety with `as WireSafe<T>` if their type
+ * system encourages it, or call this helper anyway (the strip is a
+ * no-op when input is already wire-spec only).
+ *
+ * @param request - Buyer-supplied (or otherwise untrusted) input.
+ * @param schemaName - PascalCase request type name from
+ *   {@link WIRE_SPEC_FIELDS}. TypeScript narrows the return type to
+ *   `WireSafe<RequestType>` based on this — so
+ *   `pickWireSpecFields(req, 'UpdateMediaBuyRequest')` returns
+ *   `WireSafe<UpdateMediaBuyRequest>`.
+ *
+ * @example
+ * ```ts
+ * import { pickWireSpecFields } from '@adcp/sdk/server';
+ *
+ * // Buyer sends:
+ * //   { media_buy_id: 'mb_1', paused: true, snap_access_token: 'attacker' }
+ * const safe = pickWireSpecFields(buyerReq, 'UpdateMediaBuyRequest');
+ * // safe: WireSafe<UpdateMediaBuyRequest>
+ * //   value: { media_buy_id: 'mb_1', paused: true } — credential dropped
+ * ```
+ */
+function pickWireSpecFields(request, schemaName) {
+    const allowlist = wire_spec_fields_generated_1.WIRE_SPEC_FIELDS[schemaName].fields;
+    const out = {};
+    if (request === null || typeof request !== 'object') {
+        // Defensive: caller passed something that isn't a request object.
+        // Return an empty WireSafe — the upstream call will reject on
+        // missing required fields (e.g. `idempotency_key`), which is the
+        // right error class to surface (it's adopter-side, not buyer-side).
+        return out;
+    }
+    const source = request;
+    // Indexed loop instead of for-of: avoids Array.prototype[Symbol.iterator]
+    // dispatch, which a supply-chain dep could poison to inject extra field
+    // names into the iteration at call time (freeze of the array object does
+    // not prevent iterator-protocol interception).
+    const len = allowlist.length;
+    for (let i = 0; i < len; i++) {
+        const field = allowlist[i]; // non-null: i is bounds-checked by len
+        if (Object.prototype.hasOwnProperty.call(source, field)) {
+            out[field] = source[field];
+        }
+    }
+    return out;
+}
+/**
+ * Implementation of {@link ScrubExtensionsOptions}. See JSDoc above.
+ */
+function scrubExtensions(request, options) {
+    const out = { ...request };
+    const { allowedExtKeys, recursiveCredentialScan = true, credentialPatterns, inject } = options;
+    // Step 1: top-level allowlist filter. When `allowedExtKeys` is
+    // undefined we leave the top level alone (recursive scan and
+    // inject still run); when it's an empty set we drop both fields.
+    if (allowedExtKeys !== undefined) {
+        const sourceExt = (out.ext ?? {});
+        const sourceCtx = (out.context ?? {});
+        const filteredExt = {};
+        const filteredCtx = {};
+        for (const k of allowedExtKeys) {
+            if (Object.prototype.hasOwnProperty.call(sourceExt, k))
+                filteredExt[k] = sourceExt[k];
+            if (Object.prototype.hasOwnProperty.call(sourceCtx, k))
+                filteredCtx[k] = sourceCtx[k];
+        }
+        out.ext = filteredExt;
+        out.context = filteredCtx;
+    }
+    // Step 2: recursive credential-shape scan. Strategy depends on
+    // whether step 1 ran:
+    //
+    //   - With `allowedExtKeys` set: top-level is already gated by
+    //     the explicit allowlist. The adopter has affirmed those keys
+    //     are legitimate (e.g. `scope3_api_key` allowlisted on a
+    //     specific tool), so we DON'T second-guess them by name. The
+    //     scan applies to depths 1+ — dropping nested credentials
+    //     INSIDE allowlisted values (`partner: { token: '...' }`
+    //     becomes `partner: {}`).
+    //
+    //   - Without `allowedExtKeys`: no top-level gate; scan from
+    //     depth 0 to drop credential-shaped keys at any depth. This
+    //     is the path adopters take when they trust their own
+    //     ext/context shapes but want belt-and-suspenders coverage.
+    if (recursiveCredentialScan) {
+        const fromDepth = allowedExtKeys !== undefined ? 1 : 0;
+        if (out.ext !== undefined && out.ext !== null && typeof out.ext === 'object') {
+            out.ext = stripNestedCredentials(out.ext, credentialPatterns, fromDepth);
+        }
+        if (out.context !== undefined && out.context !== null && typeof out.context === 'object') {
+            out.context = stripNestedCredentials(out.context, credentialPatterns, fromDepth);
+        }
+    }
+    // Step 3: adopter-controlled inject. Runs AFTER the scan so
+    // storefront-resolved credentials/IDs aren't accidentally dropped
+    // by the recursive scan (e.g. injected `managed_access_token` is
+    // intentional and belongs).
+    if (inject?.ext) {
+        out.ext = { ...out.ext, ...inject.ext };
+    }
+    if (inject?.context) {
+        out.context = { ...out.context, ...inject.context };
+    }
+    return out;
+}
+/**
+ * Recursively walk a value and drop keys matching the credential
+ * pattern set, starting from `fromDepth`. Used by `scrubExtensions`
+ * to close round-4 nesting.
+ *
+ * `fromDepth = 0` scans every depth including the top level — used
+ * when no `allowedExtKeys` is supplied.
+ * `fromDepth = 1` skips the top level — used when the top-level
+ * keys have already been gated by an explicit allowlist (the
+ * adopter affirmed them legitimate by name).
+ *
+ * Returns a NEW object/array tree — input is not mutated. Cycle-safe
+ * via `WeakSet`. Primitives pass through.
+ */
+function stripNestedCredentials(value, patterns, fromDepth = 0) {
+    // Identify credential-shaped paths via the L1 scanner.
+    const hits = new Set((0, credential_policy_1.scanArgsForCredentials)(value, patterns));
+    if (hits.size === 0)
+        return value;
+    const seen = new WeakSet();
+    const walk = (node, path, depth) => {
+        if (node === null || typeof node !== 'object')
+            return node;
+        if (seen.has(node))
+            return node;
+        seen.add(node);
+        if (Array.isArray(node)) {
+            return node.map((item, i) => walk(item, [...path, String(i)], depth + 1));
+        }
+        const out = {};
+        for (const [key, child] of Object.entries(node)) {
+            const childPath = [...path, key];
+            // Only drop the key if we're AT or BEYOND `fromDepth`. Keys
+            // shallower than fromDepth pass through unchecked because
+            // they were already gated upstream.
+            if (depth >= fromDepth && hits.has(childPath.join('.'))) {
+                continue;
+            }
+            out[key] = walk(child, childPath, depth + 1);
+        }
+        return out;
+    };
+    return walk(value, [], 0);
+}
+//# sourceMappingURL=wire-safe.js.map

package/dist/lib/server/wire-safe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"wire-safe.js","sourceRoot":"","sources":["../../../src/lib/server/wire-safe.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2CG;;;AAkFH,gDA0BC;AA8FD,0CAyDC;AAjQD,2DAA4F;AAC5F,6EAA0F;AAmBjF,iGAnBA,6CAAgB,OAmBA;AASzB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAkDG;AACH,SAAgB,kBAAkB,CAChC,OAAgB,EAChB,UAAa;IAEb,MAAM,SAAS,GAAG,6CAAgB,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC;IACtD,MAAM,GAAG,GAA4B,EAAE,CAAC;IACxC,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QACpD,kEAAkE;QAClE,8DAA8D;QAC9D,iEAAiE;QACjE,oEAAoE;QACpE,OAAO,GAAwC,CAAC;IAClD,CAAC;IACD,MAAM,MAAM,GAAG,OAAkC,CAAC;IAClD,0EAA0E;IAC1E,wEAAwE;IACxE,yEAAyE;IACzE,+CAA+C;IAC/C,MAAM,GAAG,GAAG,SAAS,CAAC,MAAM,CAAC;IAC7B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,MAAM,KAAK,GAAG,SAAS,CAAC,CAAC,CAAE,CAAC,CAAC,uCAAuC;QACpE,IAAI,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,CAAC;YACxD,GAAG,CAAC,KAAK,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;QAC7B,CAAC;IACH,CAAC;IACD,OAAO,GAAwC,CAAC;AAClD,CAAC;AA2FD;;GAEG;AACH,SAAgB,eAAe,CAAmB,OAAoB,EAAE,OAA+B;IACrG,MAAM,GAAG,GAAG,EAAE,GAAI,OAAkB,EAA6B,CAAC;IAClE,MAAM,EAAE,cAAc,EAAE,uBAAuB,GAAG,IAAI,EAAE,kBAAkB,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;IAE/F,+DAA+D;IAC/D,6DAA6D;IAC7D,iEAAiE;IACjE,IAAI,cAAc,KAAK,SAAS,EAAE,CAAC;QACjC,MAAM,SAAS,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,EAAE,CAA4B,CAAC;QAC7D,MAAM,SAAS,GAAG,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAA4B,CAAC;QACjE,MAAM,WAAW,GAA4B,EAAE,CAAC;QAChD,MAAM,WAAW,GAA4B,EAAE,CAAC;QAChD,KAAK,MAAM,CAAC,IAAI,cAAc,EAAE,CAAC;YAC/B,IAAI,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;gBAAE,WAAW,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;YACtF,IAAI,MAAM,CAAC,SAAS,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;gBAAE,WAAW,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;QACxF,CAAC;QACD,GAAG,CAAC,GAAG,GAAG,WAAW,CAAC;QACtB,GAAG,CAAC,OAAO,GAAG,WAAW,CAAC;IAC5B,CAAC;IAED,+DAA+D;IAC/D,sBAAsB;IACtB,EAAE;IACF,+DAA+D;IAC/D,kEAAkE;IAClE,6DAA6D;IAC7D,iEAAiE;IACjE,8DAA8D;IAC9D,6DAA6D;IAC7D,8BAA8B;IAC9B,EAAE;IACF,6DAA6D;IAC7D,gEAAgE;IAChE,0DAA0D;IAC1D,gEAAgE;IAChE,IAAI,uBAAuB,EAAE,CAAC;QAC5B,MAAM,SAAS,GAAG,cAAc,KAAK,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACvD,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,IAAI,GAAG,CAAC,GAAG,KAAK,IAAI,IAAI,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,EAAE,CAAC;YAC7E,GAAG,CAAC,GAAG,GAAG,sBAAsB,CAAC,GAAG,CAAC,GAAG,EAAE,kBAAkB,EAAE,SAAS,CAAC,CAAC;QAC3E,CAAC;QACD,IAAI,GAAG,CAAC,OAAO,KAAK,SAAS,IAAI,GAAG,CAAC,OAAO,KAAK,IAAI,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YACzF,GAAG,CAAC,OAAO,GAAG,sBAAsB,CAAC,GAAG,CAAC,OAAO,EAAE,kBAAkB,EAAE,SAAS,CAAC,CAAC;QACnF,CAAC;IACH,CAAC;IAED,4DAA4D;IAC5D,kEAAkE;IAClE,iEAAiE;IACjE,4BAA4B;IAC5B,IAAI,MAAM,EAAE,GAAG,EAAE,CAAC;QAChB,GAAG,CAAC,GAAG,GAAG,EAAE,GAAI,GAAG,CAAC,GAA2C,EAAE,GAAG,MAAM,CAAC,GAAG,EAAE,CAAC;IACnF,CAAC;IACD,IAAI,MAAM,EAAE,OAAO,EAAE,CAAC;QACpB,GAAG,CAAC,OAAO,GAAG,EAAE,GAAI,GAAG,CAAC,OAA+C,EAAE,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;IAC/F,CAAC;IAED,OAAO,GAAkB,CAAC;AAC5B,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,SAAS,sBAAsB,CAAC,KAAc,EAAE,QAAmC,EAAE,SAAS,GAAG,CAAC;IAChG,uDAAuD;IACvD,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,IAAA,0CAAsB,EAAC,KAAK,EAAE,QAAQ,CAAC,CAAC,CAAC;IAC9D,IAAI,IAAI,CAAC,IAAI,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IAElC,MAAM,IAAI,GAAG,IAAI,OAAO,EAAU,CAAC;IACnC,MAAM,IAAI,GAAG,CAAC,IAAa,EAAE,IAAuB,EAAE,KAAa,EAAW,EAAE;QAC9E,IAAI,IAAI,KAAK,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;YAAE,OAAO,IAAI,CAAC;QAC3D,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;QAChC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAEf,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YACxB,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,GAAG,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;QAC5E,CAAC;QAED,MAAM,GAAG,GAA4B,EAAE,CAAC;QACxC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAA+B,CAAC,EAAE,CAAC;YAC3E,MAAM,SAAS,GAAG,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC,CAAC;YACjC,4DAA4D;YAC5D,0DAA0D;YAC1D,oCAAoC;YACpC,IAAI,KAAK,IAAI,SAAS,IAAI,IAAI,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;gBACxD,SAAS;YACX,CAAC;YACD,GAAG,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,KAAK,EAAE,SAAS,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC;QAC/C,CAAC;QACD,OAAO,GAAG,CAAC;IACb,CAAC,CAAC;IACF,OAAO,IAAI,CAAC,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;AAC5B,CAAC"}

package/dist/lib/server/wire-spec-fields.generated.d.ts

@@ -0,0 +1,168 @@
+import type { AcquireRightsRequest, ActivateSignalRequest, BuildCreativeRequest, CalibrateContentRequest, CreateCollectionListRequest, CreateContentStandardsRequest, CreateMediaBuyRequest, CreatePropertyListRequest, DeleteCollectionListRequest, DeletePropertyListRequest, GetMediaBuyDeliveryRequest, LogEventRequest, ProvidePerformanceFeedbackRequest, ReportPlanOutcomeRequest, ReportUsageRequest, SIInitiateSessionRequest, SISendMessageRequest, SyncAccountsRequest, SyncAudiencesRequest, SyncCatalogsRequest, SyncCreativesRequest, SyncEventSourcesRequest, SyncGovernanceRequest, SyncPlansRequest, UpdateCollectionListRequest, UpdateContentStandardsRequest, UpdateMediaBuyRequest, UpdatePropertyListRequest, UpdateRightsRequest } from '../types';
+/**
+ * Wire-spec field allowlists per request type. The `fields` values
+ * are exact top-level property names from the AdCP request JSON
+ * schemas; `pickWireSpecFields(req, schemaName)` uses them to strip
+ * buyer-controlled args to schema-spec fields at the operational
+ * fan-out boundary. Drift between this map and the schemas is
+ * impossible by construction — both are emitted from the same
+ * codegen pass.
+ *
+ * The `__type` phantom is type-only (`null as unknown as T`) — it
+ * carries the wire-spec request shape so `pickWireSpecFields`'s
+ * return type narrows per `schemaName`. Runtime cost: one null
+ * property per entry.
+ *
+ * Arrays and entry objects are runtime-frozen via `Object.freeze`
+ * so a misbehaving dependency cannot widen the scrub via prototype
+ * pollution or shared-state mutation of the allowlist.
+ */
+export declare const WIRE_SPEC_FIELDS: Readonly<{
+    /** schemas/cache/3.0.6/brand/acquire-rights-request.json */
+    readonly AcquireRightsRequest: Readonly<{
+        fields: readonly string[];
+        __type: AcquireRightsRequest;
+    }>;
+    /** schemas/cache/3.0.6/signals/activate-signal-request.json */
+    readonly ActivateSignalRequest: Readonly<{
+        fields: readonly string[];
+        __type: ActivateSignalRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/build-creative-request.json */
+    readonly BuildCreativeRequest: Readonly<{
+        fields: readonly string[];
+        __type: BuildCreativeRequest;
+    }>;
+    /** schemas/cache/3.0.6/content-standards/calibrate-content-request.json */
+    readonly CalibrateContentRequest: Readonly<{
+        fields: readonly string[];
+        __type: CalibrateContentRequest;
+    }>;
+    /** schemas/cache/3.0.6/collection/create-collection-list-request.json */
+    readonly CreateCollectionListRequest: Readonly<{
+        fields: readonly string[];
+        __type: CreateCollectionListRequest;
+    }>;
+    /** schemas/cache/3.0.6/content-standards/create-content-standards-request.json */
+    readonly CreateContentStandardsRequest: Readonly<{
+        fields: readonly string[];
+        __type: CreateContentStandardsRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/create-media-buy-request.json */
+    readonly CreateMediaBuyRequest: Readonly<{
+        fields: readonly string[];
+        __type: CreateMediaBuyRequest;
+    }>;
+    /** schemas/cache/3.0.6/property/create-property-list-request.json */
+    readonly CreatePropertyListRequest: Readonly<{
+        fields: readonly string[];
+        __type: CreatePropertyListRequest;
+    }>;
+    /** schemas/cache/3.0.6/collection/delete-collection-list-request.json */
+    readonly DeleteCollectionListRequest: Readonly<{
+        fields: readonly string[];
+        __type: DeleteCollectionListRequest;
+    }>;
+    /** schemas/cache/3.0.6/property/delete-property-list-request.json */
+    readonly DeletePropertyListRequest: Readonly<{
+        fields: readonly string[];
+        __type: DeletePropertyListRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/get-media-buy-delivery-request.json */
+    readonly GetMediaBuyDeliveryRequest: Readonly<{
+        fields: readonly string[];
+        __type: GetMediaBuyDeliveryRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/log-event-request.json */
+    readonly LogEventRequest: Readonly<{
+        fields: readonly string[];
+        __type: LogEventRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/provide-performance-feedback-request.json */
+    readonly ProvidePerformanceFeedbackRequest: Readonly<{
+        fields: readonly string[];
+        __type: ProvidePerformanceFeedbackRequest;
+    }>;
+    /** schemas/cache/3.0.6/governance/report-plan-outcome-request.json */
+    readonly ReportPlanOutcomeRequest: Readonly<{
+        fields: readonly string[];
+        __type: ReportPlanOutcomeRequest;
+    }>;
+    /** schemas/cache/3.0.6/account/report-usage-request.json */
+    readonly ReportUsageRequest: Readonly<{
+        fields: readonly string[];
+        __type: ReportUsageRequest;
+    }>;
+    /** schemas/cache/3.0.6/sponsored-intelligence/si-initiate-session-request.json */
+    readonly SIInitiateSessionRequest: Readonly<{
+        fields: readonly string[];
+        __type: SIInitiateSessionRequest;
+    }>;
+    /** schemas/cache/3.0.6/sponsored-intelligence/si-send-message-request.json */
+    readonly SISendMessageRequest: Readonly<{
+        fields: readonly string[];
+        __type: SISendMessageRequest;
+    }>;
+    /** schemas/cache/3.0.6/account/sync-accounts-request.json */
+    readonly SyncAccountsRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncAccountsRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/sync-audiences-request.json */
+    readonly SyncAudiencesRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncAudiencesRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/sync-catalogs-request.json */
+    readonly SyncCatalogsRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncCatalogsRequest;
+    }>;
+    /** schemas/cache/3.0.6/creative/sync-creatives-request.json */
+    readonly SyncCreativesRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncCreativesRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/sync-event-sources-request.json */
+    readonly SyncEventSourcesRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncEventSourcesRequest;
+    }>;
+    /** schemas/cache/3.0.6/account/sync-governance-request.json */
+    readonly SyncGovernanceRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncGovernanceRequest;
+    }>;
+    /** schemas/cache/3.0.6/governance/sync-plans-request.json */
+    readonly SyncPlansRequest: Readonly<{
+        fields: readonly string[];
+        __type: SyncPlansRequest;
+    }>;
+    /** schemas/cache/3.0.6/collection/update-collection-list-request.json */
+    readonly UpdateCollectionListRequest: Readonly<{
+        fields: readonly string[];
+        __type: UpdateCollectionListRequest;
+    }>;
+    /** schemas/cache/3.0.6/content-standards/update-content-standards-request.json */
+    readonly UpdateContentStandardsRequest: Readonly<{
+        fields: readonly string[];
+        __type: UpdateContentStandardsRequest;
+    }>;
+    /** schemas/cache/3.0.6/media-buy/update-media-buy-request.json */
+    readonly UpdateMediaBuyRequest: Readonly<{
+        fields: readonly string[];
+        __type: UpdateMediaBuyRequest;
+    }>;
+    /** schemas/cache/3.0.6/property/update-property-list-request.json */
+    readonly UpdatePropertyListRequest: Readonly<{
+        fields: readonly string[];
+        __type: UpdatePropertyListRequest;
+    }>;
+    /** schemas/cache/3.0.6/brand/update-rights-request.json */
+    readonly UpdateRightsRequest: Readonly<{
+        fields: readonly string[];
+        __type: UpdateRightsRequest;
+    }>;
+}>;
+export type WireSpecRequestName = keyof typeof WIRE_SPEC_FIELDS;
+//# sourceMappingURL=wire-spec-fields.generated.d.ts.map

package/dist/lib/server/wire-spec-fields.generated.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"wire-spec-fields.generated.d.ts","sourceRoot":"","sources":["../../../src/lib/server/wire-spec-fields.generated.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EACV,oBAAoB,EACpB,qBAAqB,EACrB,oBAAoB,EACpB,uBAAuB,EACvB,2BAA2B,EAC3B,6BAA6B,EAC7B,qBAAqB,EACrB,yBAAyB,EACzB,2BAA2B,EAC3B,yBAAyB,EACzB,0BAA0B,EAC1B,eAAe,EACf,iCAAiC,EACjC,wBAAwB,EACxB,kBAAkB,EAClB,wBAAwB,EACxB,oBAAoB,EACpB,mBAAmB,EACnB,oBAAoB,EACpB,mBAAmB,EACnB,oBAAoB,EACpB,uBAAuB,EACvB,qBAAqB,EACrB,gBAAgB,EAChB,2BAA2B,EAC3B,6BAA6B,EAC7B,qBAAqB,EACrB,yBAAyB,EACzB,mBAAmB,EACpB,MAAM,UAAU,CAAC;AAElB;;;;;;;;;;;;;;;;;GAiBG;AACH,eAAO,MAAM,gBAAgB;IAC3B,4DAA4D;;gBAE4H,SAAS,MAAM,EAAE;gBAC5K,oBAAoB;;IAEjD,+DAA+D;;gBAEsG,SAAS,MAAM,EAAE;gBACzJ,qBAAqB;;IAElD,gEAAgE;;gBAEsR,SAAS,MAAM,EAAE;gBAC1U,oBAAoB;;IAEjD,2EAA2E;;gBAEoC,SAAS,MAAM,EAAE;gBACnG,uBAAuB;;IAEpD,yEAAyE;;gBAEgF,SAAS,MAAM,EAAE;gBAC7I,2BAA2B;;IAExD,kFAAkF;;gBAEoE,SAAS,MAAM,EAAE;gBAC1I,6BAA6B;;IAE1D,kEAAkE;;gBAEgR,SAAS,MAAM,EAAE;gBACtU,qBAAqB;;IAElD,qEAAqE;;gBAEmF,SAAS,MAAM,EAAE;gBAC5I,yBAAyB;;IAEtD,yEAAyE;;gBAEgC,SAAS,MAAM,EAAE;gBAC7F,2BAA2B;;IAExD,qEAAqE;;gBAEoC,SAAS,MAAM,EAAE;gBAC7F,yBAAyB;;IAEtD,wEAAwE;;gBAE2I,SAAS,MAAM,EAAE;gBACvM,0BAA0B;;IAEvD,2DAA2D;;gBAEuE,SAAS,MAAM,EAAE;gBACtH,eAAe;;IAE5C,8EAA8E;;gBAE0H,SAAS,MAAM,EAAE;gBAC5L,iCAAiC;;IAE9D,sEAAsE;;gBAEwH,SAAS,MAAM,EAAE;gBAClL,wBAAwB;;IAErD,4DAA4D;;gBAEoD,SAAS,MAAM,EAAE;gBACpG,kBAAkB;;IAE/C,kFAAkF;;gBAE0G,SAAS,MAAM,EAAE;gBAChL,wBAAwB;;IAErD,8EAA8E;;gBAEgD,SAAS,MAAM,EAAE;gBAClH,oBAAoB;;IAEjD,6DAA6D;;gBAEyF,SAAS,MAAM,EAAE;gBAC1I,mBAAmB;;IAEhD,gEAAgE;;gBAE4D,SAAS,MAAM,EAAE;gBAChH,oBAAoB;;IAEjD,+DAA+D;;gBAEiI,SAAS,MAAM,EAAE;gBACpL,mBAAmB;;IAEhD,+DAA+D;;gBAEiJ,SAAS,MAAM,EAAE;gBACpM,oBAAoB;;IAEjD,oEAAoE;;gBAE4D,SAAS,MAAM,EAAE;gBACpH,uBAAuB;;IAEpD,+DAA+D;;gBAEiC,SAAS,MAAM,EAAE;gBACpF,qBAAqB;;IAElD,6DAA6D;;gBAEgC,SAAS,MAAM,EAAE;gBACjF,gBAAgB;;IAE7C,yEAAyE;;gBAEwG,SAAS,MAAM,EAAE;gBACrK,2BAA2B;;IAExD,kFAAkF;;gBAEmF,SAAS,MAAM,EAAE;gBACzJ,6BAA6B;;IAE1D,kEAAkE;;gBAEsN,SAAS,MAAM,EAAE;gBAC5Q,qBAAqB;;IAElD,qEAAqE;;gBAE2G,SAAS,MAAM,EAAE;gBACpK,yBAAyB;;IAEtD,2DAA2D;;gBAE0H,SAAS,MAAM,EAAE;gBACzK,mBAAmB;;EAEvC,CAAC;AAEZ,MAAM,MAAM,mBAAmB,GAAG,MAAM,OAAO,gBAAgB,CAAC"}

package/dist/lib/server/wire-spec-fields.generated.js

@@ -0,0 +1,172 @@
+"use strict";
+// AUTO-GENERATED by scripts/generate-wire-spec-fields.ts. DO NOT EDIT.
+// Source: schemas/cache/3.0.6/**/*-request.json
+// Generated at: 2026-05-04T09:00:00.000Z
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.WIRE_SPEC_FIELDS = void 0;
+/**
+ * Wire-spec field allowlists per request type. The `fields` values
+ * are exact top-level property names from the AdCP request JSON
+ * schemas; `pickWireSpecFields(req, schemaName)` uses them to strip
+ * buyer-controlled args to schema-spec fields at the operational
+ * fan-out boundary. Drift between this map and the schemas is
+ * impossible by construction — both are emitted from the same
+ * codegen pass.
+ *
+ * The `__type` phantom is type-only (`null as unknown as T`) — it
+ * carries the wire-spec request shape so `pickWireSpecFields`'s
+ * return type narrows per `schemaName`. Runtime cost: one null
+ * property per entry.
+ *
+ * Arrays and entry objects are runtime-frozen via `Object.freeze`
+ * so a misbehaving dependency cannot widen the scrub via prototype
+ * pollution or shared-state mutation of the allowlist.
+ */
+exports.WIRE_SPEC_FIELDS = Object.freeze({
+    /** schemas/cache/3.0.6/brand/acquire-rights-request.json */
+    AcquireRightsRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "buyer", "campaign", "context", "ext", "idempotency_key", "pricing_option_id", "push_notification_config", "revocation_webhook", "rights_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/signals/activate-signal-request.json */
+    ActivateSignalRequest: Object.freeze({
+        fields: Object.freeze(["account", "action", "adcp_major_version", "context", "destinations", "ext", "idempotency_key", "pricing_option_id", "signal_agent_segment_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/build-creative-request.json */
+    BuildCreativeRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "brand", "concept_id", "context", "creative_id", "creative_manifest", "ext", "idempotency_key", "include_preview", "item_limit", "macro_values", "media_buy_id", "message", "package_id", "preview_inputs", "preview_output_format", "preview_quality", "quality", "target_format_id", "target_format_ids"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/content-standards/calibrate-content-request.json */
+    CalibrateContentRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "artifact", "context", "ext", "idempotency_key", "standards_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/collection/create-collection-list-request.json */
+    CreateCollectionListRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "base_collections", "brand", "context", "description", "ext", "filters", "idempotency_key", "name"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/content-standards/create-content-standards-request.json */
+    CreateContentStandardsRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "calibration_exemplars", "context", "ext", "idempotency_key", "policies", "registry_policy_ids", "scope"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/create-media-buy-request.json */
+    CreateMediaBuyRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "advertiser_industry", "agency_estimate_number", "artifact_webhook", "brand", "context", "end_time", "ext", "idempotency_key", "invoice_recipient", "io_acceptance", "packages", "plan_id", "po_number", "proposal_id", "push_notification_config", "reporting_webhook", "start_time", "total_budget"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/property/create-property-list-request.json */
+    CreatePropertyListRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "base_properties", "brand", "context", "description", "ext", "filters", "idempotency_key", "name"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/collection/delete-collection-list-request.json */
+    DeleteCollectionListRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "context", "ext", "idempotency_key", "list_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/property/delete-property-list-request.json */
+    DeletePropertyListRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "context", "ext", "idempotency_key", "list_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/get-media-buy-delivery-request.json */
+    GetMediaBuyDeliveryRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "attribution_window", "context", "end_date", "ext", "include_package_daily_breakdown", "media_buy_ids", "reporting_dimensions", "start_date", "status_filter"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/log-event-request.json */
+    LogEventRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "context", "event_source_id", "events", "ext", "idempotency_key", "test_event_code"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/provide-performance-feedback-request.json */
+    ProvidePerformanceFeedbackRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "context", "creative_id", "ext", "feedback_source", "idempotency_key", "measurement_period", "media_buy_id", "metric_type", "package_id", "performance_index"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/governance/report-plan-outcome-request.json */
+    ReportPlanOutcomeRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "check_id", "context", "delivery", "error", "ext", "governance_context", "idempotency_key", "outcome", "plan_id", "purchase_type", "seller_response"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/account/report-usage-request.json */
+    ReportUsageRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "context", "ext", "idempotency_key", "reporting_period", "usage"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/sponsored-intelligence/si-initiate-session-request.json */
+    SIInitiateSessionRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "context", "ext", "idempotency_key", "identity", "intent", "media_buy_id", "offering_id", "offering_token", "placement", "supported_capabilities"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/sponsored-intelligence/si-send-message-request.json */
+    SISendMessageRequest: Object.freeze({
+        fields: Object.freeze(["action_response", "adcp_major_version", "context", "ext", "idempotency_key", "message", "session_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/account/sync-accounts-request.json */
+    SyncAccountsRequest: Object.freeze({
+        fields: Object.freeze(["accounts", "adcp_major_version", "context", "delete_missing", "dry_run", "ext", "idempotency_key", "push_notification_config"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/sync-audiences-request.json */
+    SyncAudiencesRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "audiences", "context", "delete_missing", "ext", "idempotency_key"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/sync-catalogs-request.json */
+    SyncCatalogsRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "catalog_ids", "catalogs", "context", "delete_missing", "dry_run", "ext", "idempotency_key", "push_notification_config", "validation_mode"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/creative/sync-creatives-request.json */
+    SyncCreativesRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "assignments", "context", "creative_ids", "creatives", "delete_missing", "dry_run", "ext", "idempotency_key", "push_notification_config", "validation_mode"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/sync-event-sources-request.json */
+    SyncEventSourcesRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "context", "delete_missing", "event_sources", "ext", "idempotency_key"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/account/sync-governance-request.json */
+    SyncGovernanceRequest: Object.freeze({
+        fields: Object.freeze(["accounts", "adcp_major_version", "context", "ext", "idempotency_key"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/governance/sync-plans-request.json */
+    SyncPlansRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "context", "ext", "idempotency_key", "plans"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/collection/update-collection-list-request.json */
+    UpdateCollectionListRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "base_collections", "brand", "context", "description", "ext", "filters", "idempotency_key", "list_id", "name", "webhook_url"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/content-standards/update-content-standards-request.json */
+    UpdateContentStandardsRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "calibration_exemplars", "context", "ext", "idempotency_key", "policies", "registry_policy_ids", "scope", "standards_id"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/media-buy/update-media-buy-request.json */
+    UpdateMediaBuyRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "canceled", "cancellation_reason", "context", "end_time", "ext", "idempotency_key", "invoice_recipient", "media_buy_id", "new_packages", "packages", "paused", "push_notification_config", "reporting_webhook", "revision", "start_time"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/property/update-property-list-request.json */
+    UpdatePropertyListRequest: Object.freeze({
+        fields: Object.freeze(["account", "adcp_major_version", "base_properties", "brand", "context", "description", "ext", "filters", "idempotency_key", "list_id", "name", "webhook_url"]),
+        __type: null,
+    }),
+    /** schemas/cache/3.0.6/brand/update-rights-request.json */
+    UpdateRightsRequest: Object.freeze({
+        fields: Object.freeze(["adcp_major_version", "context", "end_date", "ext", "idempotency_key", "impression_cap", "paused", "pricing_option_id", "push_notification_config", "rights_id"]),
+        __type: null,
+    }),
+});
+//# sourceMappingURL=wire-spec-fields.generated.js.map

package/dist/lib/server/wire-spec-fields.generated.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"wire-spec-fields.generated.js","sourceRoot":"","sources":["../../../src/lib/server/wire-spec-fields.generated.ts"],"names":[],"mappings":";AAAA,uEAAuE;AACvE,gDAAgD;AAChD,yCAAyC;;;AAkCzC;;;;;;;;;;;;;;;;;GAiBG;AACU,QAAA,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC;IAC5C,4DAA4D;IAC5D,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,OAAO,EAAC,UAAU,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,mBAAmB,EAAC,0BAA0B,EAAC,oBAAoB,EAAC,WAAW,CAAC,CAAsB;QACvM,MAAM,EAAE,IAAuC;KAChD,CAAC;IACF,+DAA+D;IAC/D,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC;QACnC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,QAAQ,EAAC,oBAAoB,EAAC,SAAS,EAAC,cAAc,EAAC,KAAK,EAAC,iBAAiB,EAAC,mBAAmB,EAAC,yBAAyB,CAAC,CAAsB;QACpL,MAAM,EAAE,IAAwC;KACjD,CAAC;IACF,gEAAgE;IAChE,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,OAAO,EAAC,YAAY,EAAC,SAAS,EAAC,aAAa,EAAC,mBAAmB,EAAC,KAAK,EAAC,iBAAiB,EAAC,iBAAiB,EAAC,YAAY,EAAC,cAAc,EAAC,cAAc,EAAC,SAAS,EAAC,YAAY,EAAC,gBAAgB,EAAC,uBAAuB,EAAC,iBAAiB,EAAC,SAAS,EAAC,kBAAkB,EAAC,mBAAmB,CAAC,CAAsB;QACrW,MAAM,EAAE,IAAuC;KAChD,CAAC;IACF,2EAA2E;IAC3E,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC;QACrC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,UAAU,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,cAAc,CAAC,CAAsB;QAC9H,MAAM,EAAE,IAA0C;KACnD,CAAC;IACF,yEAAyE;IACzE,2BAA2B,EAAE,MAAM,CAAC,MAAM,CAAC;QACzC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,kBAAkB,EAAC,OAAO,EAAC,SAAS,EAAC,aAAa,EAAC,KAAK,EAAC,SAAS,EAAC,iBAAiB,EAAC,MAAM,CAAC,CAAsB;QACxK,MAAM,EAAE,IAA8C;KACvD,CAAC;IACF,kFAAkF;IAClF,6BAA6B,EAAE,MAAM,CAAC,MAAM,CAAC;QAC3C,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,uBAAuB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,UAAU,EAAC,qBAAqB,EAAC,OAAO,CAAC,CAAsB;QACrK,MAAM,EAAE,IAAgD;KACzD,CAAC;IACF,kEAAkE;IAClE,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC;QACnC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,qBAAqB,EAAC,wBAAwB,EAAC,kBAAkB,EAAC,OAAO,EAAC,SAAS,EAAC,UAAU,EAAC,KAAK,EAAC,iBAAiB,EAAC,mBAAmB,EAAC,eAAe,EAAC,UAAU,EAAC,SAAS,EAAC,WAAW,EAAC,aAAa,EAAC,0BAA0B,EAAC,mBAAmB,EAAC,YAAY,EAAC,cAAc,CAAC,CAAsB;QACjW,MAAM,EAAE,IAAwC;KACjD,CAAC;IACF,qEAAqE;IACrE,yBAAyB,EAAE,MAAM,CAAC,MAAM,CAAC;QACvC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,iBAAiB,EAAC,OAAO,EAAC,SAAS,EAAC,aAAa,EAAC,KAAK,EAAC,SAAS,EAAC,iBAAiB,EAAC,MAAM,CAAC,CAAsB;QACvK,MAAM,EAAE,IAA4C;KACrD,CAAC;IACF,yEAAyE;IACzE,2BAA2B,EAAE,MAAM,CAAC,MAAM,CAAC;QACzC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,SAAS,CAAC,CAAsB;QACxH,MAAM,EAAE,IAA8C;KACvD,CAAC;IACF,qEAAqE;IACrE,yBAAyB,EAAE,MAAM,CAAC,MAAM,CAAC;QACvC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,SAAS,CAAC,CAAsB;QACxH,MAAM,EAAE,IAA4C;KACrD,CAAC;IACF,wEAAwE;IACxE,0BAA0B,EAAE,MAAM,CAAC,MAAM,CAAC;QACxC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,oBAAoB,EAAC,SAAS,EAAC,UAAU,EAAC,KAAK,EAAC,iCAAiC,EAAC,eAAe,EAAC,sBAAsB,EAAC,YAAY,EAAC,eAAe,CAAC,CAAsB;QAClO,MAAM,EAAE,IAA6C;KACtD,CAAC;IACF,2DAA2D;IAC3D,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC;QAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,SAAS,EAAC,iBAAiB,EAAC,QAAQ,EAAC,KAAK,EAAC,iBAAiB,EAAC,iBAAiB,CAAC,CAAsB;QACjJ,MAAM,EAAE,IAAkC;KAC3C,CAAC;IACF,8EAA8E;IAC9E,iCAAiC,EAAE,MAAM,CAAC,MAAM,CAAC;QAC/C,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,SAAS,EAAC,aAAa,EAAC,KAAK,EAAC,iBAAiB,EAAC,iBAAiB,EAAC,oBAAoB,EAAC,cAAc,EAAC,aAAa,EAAC,YAAY,EAAC,mBAAmB,CAAC,CAAsB;QACvN,MAAM,EAAE,IAAoD;KAC7D,CAAC;IACF,sEAAsE;IACtE,wBAAwB,EAAE,MAAM,CAAC,MAAM,CAAC;QACtC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,UAAU,EAAC,SAAS,EAAC,UAAU,EAAC,OAAO,EAAC,KAAK,EAAC,oBAAoB,EAAC,iBAAiB,EAAC,SAAS,EAAC,SAAS,EAAC,eAAe,EAAC,iBAAiB,CAAC,CAAsB;QAC7M,MAAM,EAAE,IAA2C;KACpD,CAAC;IACF,4DAA4D;IAC5D,kBAAkB,EAAE,MAAM,CAAC,MAAM,CAAC;QAChC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,kBAAkB,EAAC,OAAO,CAAC,CAAsB;QAC/H,MAAM,EAAE,IAAqC;KAC9C,CAAC;IACF,kFAAkF;IAClF,wBAAwB,EAAE,MAAM,CAAC,MAAM,CAAC;QACtC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,UAAU,EAAC,QAAQ,EAAC,cAAc,EAAC,aAAa,EAAC,gBAAgB,EAAC,WAAW,EAAC,wBAAwB,CAAC,CAAsB;QAC3M,MAAM,EAAE,IAA2C;KACpD,CAAC;IACF,8EAA8E;IAC9E,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,iBAAiB,EAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,SAAS,EAAC,YAAY,CAAC,CAAsB;QAC7I,MAAM,EAAE,IAAuC;KAChD,CAAC;IACF,6DAA6D;IAC7D,mBAAmB,EAAE,MAAM,CAAC,MAAM,CAAC;QACjC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,UAAU,EAAC,oBAAoB,EAAC,SAAS,EAAC,gBAAgB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,0BAA0B,CAAC,CAAsB;QACrK,MAAM,EAAE,IAAsC;KAC/C,CAAC;IACF,gEAAgE;IAChE,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,WAAW,EAAC,SAAS,EAAC,gBAAgB,EAAC,KAAK,EAAC,iBAAiB,CAAC,CAAsB;QAC3I,MAAM,EAAE,IAAuC;KAChD,CAAC;IACF,+DAA+D;IAC/D,mBAAmB,EAAE,MAAM,CAAC,MAAM,CAAC;QACjC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,aAAa,EAAC,UAAU,EAAC,SAAS,EAAC,gBAAgB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,0BAA0B,EAAC,iBAAiB,CAAC,CAAsB;QAC/M,MAAM,EAAE,IAAsC;KAC/C,CAAC;IACF,+DAA+D;IAC/D,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,aAAa,EAAC,SAAS,EAAC,cAAc,EAAC,WAAW,EAAC,gBAAgB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,0BAA0B,EAAC,iBAAiB,CAAC,CAAsB;QAC/N,MAAM,EAAE,IAAuC;KAChD,CAAC;IACF,oEAAoE;IACpE,uBAAuB,EAAE,MAAM,CAAC,MAAM,CAAC;QACrC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,SAAS,EAAC,gBAAgB,EAAC,eAAe,EAAC,KAAK,EAAC,iBAAiB,CAAC,CAAsB;QAC/I,MAAM,EAAE,IAA0C;KACnD,CAAC;IACF,+DAA+D;IAC/D,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC;QACnC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,UAAU,EAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,CAAC,CAAsB;QAC/G,MAAM,EAAE,IAAwC;KACjD,CAAC;IACF,6DAA6D;IAC7D,gBAAgB,EAAE,MAAM,CAAC,MAAM,CAAC;QAC9B,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,OAAO,CAAC,CAAsB;QAC5G,MAAM,EAAE,IAAmC;KAC5C,CAAC;IACF,yEAAyE;IACzE,2BAA2B,EAAE,MAAM,CAAC,MAAM,CAAC;QACzC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,kBAAkB,EAAC,OAAO,EAAC,SAAS,EAAC,aAAa,EAAC,KAAK,EAAC,SAAS,EAAC,iBAAiB,EAAC,SAAS,EAAC,MAAM,EAAC,aAAa,CAAC,CAAsB;QAChM,MAAM,EAAE,IAA8C;KACvD,CAAC;IACF,kFAAkF;IAClF,6BAA6B,EAAE,MAAM,CAAC,MAAM,CAAC;QAC3C,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,uBAAuB,EAAC,SAAS,EAAC,KAAK,EAAC,iBAAiB,EAAC,UAAU,EAAC,qBAAqB,EAAC,OAAO,EAAC,cAAc,CAAC,CAAsB;QACpL,MAAM,EAAE,IAAgD;KACzD,CAAC;IACF,kEAAkE;IAClE,qBAAqB,EAAE,MAAM,CAAC,MAAM,CAAC;QACnC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,UAAU,EAAC,qBAAqB,EAAC,SAAS,EAAC,UAAU,EAAC,KAAK,EAAC,iBAAiB,EAAC,mBAAmB,EAAC,cAAc,EAAC,cAAc,EAAC,UAAU,EAAC,QAAQ,EAAC,0BAA0B,EAAC,mBAAmB,EAAC,UAAU,EAAC,YAAY,CAAC,CAAsB;QACvS,MAAM,EAAE,IAAwC;KACjD,CAAC;IACF,qEAAqE;IACrE,yBAAyB,EAAE,MAAM,CAAC,MAAM,CAAC;QACvC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,EAAC,oBAAoB,EAAC,iBAAiB,EAAC,OAAO,EAAC,SAAS,EAAC,aAAa,EAAC,KAAK,EAAC,SAAS,EAAC,iBAAiB,EAAC,SAAS,EAAC,MAAM,EAAC,aAAa,CAAC,CAAsB;QAC/L,MAAM,EAAE,IAA4C;KACrD,CAAC;IACF,2DAA2D;IAC3D,mBAAmB,EAAE,MAAM,CAAC,MAAM,CAAC;QACjC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,oBAAoB,EAAC,SAAS,EAAC,UAAU,EAAC,KAAK,EAAC,iBAAiB,EAAC,gBAAgB,EAAC,QAAQ,EAAC,mBAAmB,EAAC,0BAA0B,EAAC,WAAW,CAAC,CAAsB;QACpM,MAAM,EAAE,IAAsC;KAC/C,CAAC;CACM,CAAC,CAAC"}

package/dist/lib/testing/compliance/index.d.ts

@@ -5,6 +5,8 @@
  */
 export { comply, computeOverallStatus, formatComplianceResults, formatComplianceResultsJSON } from './comply';
 export type { ComplyOptions } from './comply';
+export { buildComplianceSummary, buildCrashSummary, formatComplianceSummaryText, formatComplianceSummaryMarkdown, } from './summary';
+export type { ComplianceSummaryArtifact, ComplianceSummaryFailure, ComplianceSummaryFailureKind, BuildSummaryOptions, BuildCrashSummaryOptions, } from './summary';
 export { SAMPLE_BRIEFS, getBriefById, getBriefsByVertical } from './briefs';
 export type { ComplianceTrack, TrackResult, TrackStatus, OverallStatus, ComplianceFailure, ComplianceResult, ComplianceSummary, AdvisoryObservation, ObservationCategory, ObservationSeverity, SampleBrief, } from './types';
 //# sourceMappingURL=index.d.ts.map

package/dist/lib/testing/compliance/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/lib/testing/compliance/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,EAAE,oBAAoB,EAAE,uBAAuB,EAAE,2BAA2B,EAAE,MAAM,UAAU,CAAC;AAC9G,YAAY,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAE9C,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,mBAAmB,EAAE,MAAM,UAAU,CAAC;AAE5E,YAAY,EACV,eAAe,EACf,WAAW,EACX,WAAW,EACX,aAAa,EACb,iBAAiB,EACjB,gBAAgB,EAChB,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,WAAW,GACZ,MAAM,SAAS,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/lib/testing/compliance/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,EAAE,oBAAoB,EAAE,uBAAuB,EAAE,2BAA2B,EAAE,MAAM,UAAU,CAAC;AAC9G,YAAY,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAE9C,OAAO,EACL,sBAAsB,EACtB,iBAAiB,EACjB,2BAA2B,EAC3B,+BAA+B,GAChC,MAAM,WAAW,CAAC;AACnB,YAAY,EACV,yBAAyB,EACzB,wBAAwB,EACxB,4BAA4B,EAC5B,mBAAmB,EACnB,wBAAwB,GACzB,MAAM,WAAW,CAAC;AAEnB,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,mBAAmB,EAAE,MAAM,UAAU,CAAC;AAE5E,YAAY,EACV,eAAe,EACf,WAAW,EACX,WAAW,EACX,aAAa,EACb,iBAAiB,EACjB,gBAAgB,EAChB,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,WAAW,GACZ,MAAM,SAAS,CAAC"}

package/dist/lib/testing/compliance/index.js

@@ -5,12 +5,17 @@
  * comply → "Your agent works"  (deterministic, per-track)
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.getBriefsByVertical = exports.getBriefById = exports.SAMPLE_BRIEFS = exports.formatComplianceResultsJSON = exports.formatComplianceResults = exports.computeOverallStatus = exports.comply = void 0;
+exports.getBriefsByVertical = exports.getBriefById = exports.SAMPLE_BRIEFS = exports.formatComplianceSummaryMarkdown = exports.formatComplianceSummaryText = exports.buildCrashSummary = exports.buildComplianceSummary = exports.formatComplianceResultsJSON = exports.formatComplianceResults = exports.computeOverallStatus = exports.comply = void 0;
 var comply_1 = require("./comply");
 Object.defineProperty(exports, "comply", { enumerable: true, get: function () { return comply_1.comply; } });
 Object.defineProperty(exports, "computeOverallStatus", { enumerable: true, get: function () { return comply_1.computeOverallStatus; } });
 Object.defineProperty(exports, "formatComplianceResults", { enumerable: true, get: function () { return comply_1.formatComplianceResults; } });
 Object.defineProperty(exports, "formatComplianceResultsJSON", { enumerable: true, get: function () { return comply_1.formatComplianceResultsJSON; } });
+var summary_1 = require("./summary");
+Object.defineProperty(exports, "buildComplianceSummary", { enumerable: true, get: function () { return summary_1.buildComplianceSummary; } });
+Object.defineProperty(exports, "buildCrashSummary", { enumerable: true, get: function () { return summary_1.buildCrashSummary; } });
+Object.defineProperty(exports, "formatComplianceSummaryText", { enumerable: true, get: function () { return summary_1.formatComplianceSummaryText; } });
+Object.defineProperty(exports, "formatComplianceSummaryMarkdown", { enumerable: true, get: function () { return summary_1.formatComplianceSummaryMarkdown; } });
 var briefs_1 = require("./briefs");
 Object.defineProperty(exports, "SAMPLE_BRIEFS", { enumerable: true, get: function () { return briefs_1.SAMPLE_BRIEFS; } });
 Object.defineProperty(exports, "getBriefById", { enumerable: true, get: function () { return briefs_1.getBriefById; } });