@aegis-scan/core 0.16.5 → 0.17.0

package/dist/roe/types.d.ts

@@ -0,0 +1,738 @@
+/**
+ * Rules of Engagement (RoE) schema for AEGIS Autonomous Pentest Layer.
+ *
+ * Closes APTS Tier-1 requirements:
+ *   - APTS-SE-001 — Rules of Engagement Specification and Validation
+ *   - APTS-SE-003 — Domain Scope Validation and Wildcard Handling
+ *   - APTS-SE-004 — Temporal Boundary and Timezone Handling
+ *   - APTS-SE-005 — Asset Criticality Classification and Integration
+ *   - APTS-SE-006 — Pre-Action Scope Validation
+ *   - APTS-AL-006 — Basic Scope Validation and Policy Enforcement
+ *   - APTS-AL-014 — Boundary Definition and Enforcement Framework
+ *
+ * Design notes:
+ *   - JSON-shaped, Zod-strict-validated. Operators may author in YAML and
+ *     pre-convert at load time, but the canonical on-disk form is JSON.
+ *   - The schema captures authorization-attestation, in-/out-of-scope
+ *     domains and IP ranges, asset criticality classification, temporal
+ *     envelope (with optional blackout windows), and stop conditions.
+ *   - Per-action validators are pure functions on a loaded RoE — they
+ *     take a target/action and return an explicit allow/deny decision
+ *     with rationale. The decision is logged by the orchestrator into
+ *     the audit channel.
+ */
+import { z } from 'zod';
+export declare const RoESchema: z.ZodObject<{
+    roe_id: z.ZodString;
+    spec_version: z.ZodLiteral<"0.1.0">;
+    operator: z.ZodObject<{
+        organization: z.ZodString;
+        authorized_by: z.ZodString;
+        contact: z.ZodString;
+    }, "strict", z.ZodTypeAny, {
+        organization: string;
+        authorized_by: string;
+        contact: string;
+    }, {
+        organization: string;
+        authorized_by: string;
+        contact: string;
+    }>;
+    authorization: z.ZodObject<{
+        statement: z.ZodString;
+        authority_url: z.ZodOptional<z.ZodString>;
+        signature_method: z.ZodDefault<z.ZodEnum<["operator-attested", "external-signed"]>>;
+        /** APTS-HO-004 — declarative role↔action authority delegation matrix. */
+        delegation_matrix: z.ZodOptional<z.ZodArray<z.ZodObject<{
+            role: z.ZodString;
+            can_approve: z.ZodArray<z.ZodString, "many">;
+        }, "strict", z.ZodTypeAny, {
+            role: string;
+            can_approve: string[];
+        }, {
+            role: string;
+            can_approve: string[];
+        }>, "many">>;
+    }, "strict", z.ZodTypeAny, {
+        statement: string;
+        signature_method: "operator-attested" | "external-signed";
+        authority_url?: string | undefined;
+        delegation_matrix?: {
+            role: string;
+            can_approve: string[];
+        }[] | undefined;
+    }, {
+        statement: string;
+        authority_url?: string | undefined;
+        signature_method?: "operator-attested" | "external-signed" | undefined;
+        delegation_matrix?: {
+            role: string;
+            can_approve: string[];
+        }[] | undefined;
+    }>;
+    in_scope: z.ZodObject<{
+        domains: z.ZodDefault<z.ZodArray<z.ZodObject<{
+            pattern: z.ZodEffects<z.ZodString, string, string>;
+            includeSubdomains: z.ZodDefault<z.ZodBoolean>;
+        }, "strip", z.ZodTypeAny, {
+            pattern: string;
+            includeSubdomains: boolean;
+        }, {
+            pattern: string;
+            includeSubdomains?: boolean | undefined;
+        }>, "many">>;
+        ip_ranges: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+        repository_paths: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strict", z.ZodTypeAny, {
+        domains: {
+            pattern: string;
+            includeSubdomains: boolean;
+        }[];
+        ip_ranges: string[];
+        repository_paths: string[];
+    }, {
+        domains?: {
+            pattern: string;
+            includeSubdomains?: boolean | undefined;
+        }[] | undefined;
+        ip_ranges?: string[] | undefined;
+        repository_paths?: string[] | undefined;
+    }>;
+    out_of_scope: z.ZodDefault<z.ZodObject<{
+        domains: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+        ip_ranges: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+        paths: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strict", z.ZodTypeAny, {
+        domains: string[];
+        ip_ranges: string[];
+        paths: string[];
+    }, {
+        domains?: string[] | undefined;
+        ip_ranges?: string[] | undefined;
+        paths?: string[] | undefined;
+    }>>;
+    asset_criticality: z.ZodDefault<z.ZodArray<z.ZodObject<{
+        pattern: z.ZodString;
+        classification: z.ZodEnum<["critical", "high", "medium", "low"]>;
+        notes: z.ZodOptional<z.ZodString>;
+    }, "strict", z.ZodTypeAny, {
+        pattern: string;
+        classification: "critical" | "high" | "medium" | "low";
+        notes?: string | undefined;
+    }, {
+        pattern: string;
+        classification: "critical" | "high" | "medium" | "low";
+        notes?: string | undefined;
+    }>, "many">>;
+    temporal: z.ZodEffects<z.ZodObject<{
+        start: z.ZodString;
+        end: z.ZodString;
+        timezone: z.ZodString;
+        blackout_windows: z.ZodDefault<z.ZodArray<z.ZodEffects<z.ZodObject<{
+            start: z.ZodString;
+            end: z.ZodString;
+            reason: z.ZodString;
+        }, "strict", z.ZodTypeAny, {
+            reason: string;
+            start: string;
+            end: string;
+        }, {
+            reason: string;
+            start: string;
+            end: string;
+        }>, {
+            reason: string;
+            start: string;
+            end: string;
+        }, {
+            reason: string;
+            start: string;
+            end: string;
+        }>, "many">>;
+    }, "strict", z.ZodTypeAny, {
+        start: string;
+        end: string;
+        timezone: string;
+        blackout_windows: {
+            reason: string;
+            start: string;
+            end: string;
+        }[];
+    }, {
+        start: string;
+        end: string;
+        timezone: string;
+        blackout_windows?: {
+            reason: string;
+            start: string;
+            end: string;
+        }[] | undefined;
+    }>, {
+        start: string;
+        end: string;
+        timezone: string;
+        blackout_windows: {
+            reason: string;
+            start: string;
+            end: string;
+        }[];
+    }, {
+        start: string;
+        end: string;
+        timezone: string;
+        blackout_windows?: {
+            reason: string;
+            start: string;
+            end: string;
+        }[] | undefined;
+    }>;
+    stop_conditions: z.ZodDefault<z.ZodObject<{
+        on_critical_finding: z.ZodDefault<z.ZodEnum<["halt", "notify-and-continue", "continue"]>>;
+        max_findings: z.ZodOptional<z.ZodNumber>;
+        max_duration_minutes: z.ZodOptional<z.ZodNumber>;
+        /** APTS-HO-003 — per-phase decision timeout. Falls back to max_duration_minutes/4 when omitted. */
+        phase_timeout_minutes: z.ZodOptional<z.ZodNumber>;
+        on_target_unreachable_seconds: z.ZodOptional<z.ZodNumber>;
+    }, "strict", z.ZodTypeAny, {
+        on_critical_finding: "halt" | "notify-and-continue" | "continue";
+        max_findings?: number | undefined;
+        max_duration_minutes?: number | undefined;
+        phase_timeout_minutes?: number | undefined;
+        on_target_unreachable_seconds?: number | undefined;
+    }, {
+        on_critical_finding?: "halt" | "notify-and-continue" | "continue" | undefined;
+        max_findings?: number | undefined;
+        max_duration_minutes?: number | undefined;
+        phase_timeout_minutes?: number | undefined;
+        on_target_unreachable_seconds?: number | undefined;
+    }>>;
+    notifications: z.ZodOptional<z.ZodObject<{
+        channels: z.ZodDefault<z.ZodArray<z.ZodObject<{
+            type: z.ZodEnum<["webhook", "log"]>;
+            url: z.ZodOptional<z.ZodString>;
+            events: z.ZodArray<z.ZodEnum<["start", "halt", "critical-finding", "completion"]>, "many">;
+        }, "strict", z.ZodTypeAny, {
+            type: "webhook" | "log";
+            events: ("start" | "halt" | "critical-finding" | "completion")[];
+            url?: string | undefined;
+        }, {
+            type: "webhook" | "log";
+            events: ("start" | "halt" | "critical-finding" | "completion")[];
+            url?: string | undefined;
+        }>, "many">>;
+    }, "strict", z.ZodTypeAny, {
+        channels: {
+            type: "webhook" | "log";
+            events: ("start" | "halt" | "critical-finding" | "completion")[];
+            url?: string | undefined;
+        }[];
+    }, {
+        channels?: {
+            type: "webhook" | "log";
+            events: ("start" | "halt" | "critical-finding" | "completion")[];
+            url?: string | undefined;
+        }[] | undefined;
+    }>>;
+    references: z.ZodOptional<z.ZodObject<{
+        incident_response_plan: z.ZodOptional<z.ZodString>;
+        contract_id: z.ZodOptional<z.ZodString>;
+        apts_conformance_claim: z.ZodOptional<z.ZodString>;
+    }, "strict", z.ZodTypeAny, {
+        incident_response_plan?: string | undefined;
+        contract_id?: string | undefined;
+        apts_conformance_claim?: string | undefined;
+    }, {
+        incident_response_plan?: string | undefined;
+        contract_id?: string | undefined;
+        apts_conformance_claim?: string | undefined;
+    }>>;
+    /** APTS-MR-018 — declarative sandboxing constraints for LLM-pentest wrappers. */
+    sandboxing: z.ZodDefault<z.ZodObject<{
+        mode: z.ZodDefault<z.ZodEnum<["docker", "firejail", "none"]>>;
+        docker_network: z.ZodOptional<z.ZodString>;
+        image_overrides: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodString>>;
+        extra_docker_args: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+    }, "strict", z.ZodTypeAny, {
+        mode: "none" | "docker" | "firejail";
+        docker_network?: string | undefined;
+        image_overrides?: Record<string, string> | undefined;
+        extra_docker_args?: string[] | undefined;
+    }, {
+        mode?: "none" | "docker" | "firejail" | undefined;
+        docker_network?: string | undefined;
+        image_overrides?: Record<string, string> | undefined;
+        extra_docker_args?: string[] | undefined;
+    }>>;
+    /** APTS-SC-009/010, HO-003 — declarative safety-control overrides. */
+    safety_controls: z.ZodOptional<z.ZodObject<{
+        /** APTS-SC-010 — auto-halt thresholds. */
+        health_thresholds: z.ZodOptional<z.ZodObject<{
+            max_heap_mb: z.ZodOptional<z.ZodNumber>;
+            max_error_rate: z.ZodOptional<z.ZodNumber>;
+            max_target_response_ms: z.ZodOptional<z.ZodNumber>;
+        }, "strict", z.ZodTypeAny, {
+            max_heap_mb?: number | undefined;
+            max_error_rate?: number | undefined;
+            max_target_response_ms?: number | undefined;
+        }, {
+            max_heap_mb?: number | undefined;
+            max_error_rate?: number | undefined;
+            max_target_response_ms?: number | undefined;
+        }>>;
+        /** APTS-SC-009 — operator dead-man-switch heartbeat URL (HTTPS only). */
+        heartbeat_url: z.ZodOptional<z.ZodString>;
+        /** APTS-SC-009 — heartbeat interval in seconds. */
+        heartbeat_interval_seconds: z.ZodOptional<z.ZodNumber>;
+    }, "strict", z.ZodTypeAny, {
+        health_thresholds?: {
+            max_heap_mb?: number | undefined;
+            max_error_rate?: number | undefined;
+            max_target_response_ms?: number | undefined;
+        } | undefined;
+        heartbeat_url?: string | undefined;
+        heartbeat_interval_seconds?: number | undefined;
+    }, {
+        health_thresholds?: {
+            max_heap_mb?: number | undefined;
+            max_error_rate?: number | undefined;
+            max_target_response_ms?: number | undefined;
+        } | undefined;
+        heartbeat_url?: string | undefined;
+        heartbeat_interval_seconds?: number | undefined;
+    }>>;
+    /** APTS-HO-001/010 — per-autonomy-level pre-approval gating. */
+    autonomy_levels: z.ZodOptional<z.ZodObject<{
+        L1: z.ZodOptional<z.ZodObject<{
+            approval_required: z.ZodOptional<z.ZodBoolean>;
+            pre_approved: z.ZodOptional<z.ZodBoolean>;
+            irreversible_action_classes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        }, "strict", z.ZodTypeAny, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }>>;
+        L2: z.ZodOptional<z.ZodObject<{
+            approval_required: z.ZodOptional<z.ZodBoolean>;
+            pre_approved: z.ZodOptional<z.ZodBoolean>;
+            irreversible_action_classes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        }, "strict", z.ZodTypeAny, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }>>;
+        L3: z.ZodOptional<z.ZodObject<{
+            approval_required: z.ZodOptional<z.ZodBoolean>;
+            pre_approved: z.ZodOptional<z.ZodBoolean>;
+            irreversible_action_classes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        }, "strict", z.ZodTypeAny, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }>>;
+        L4: z.ZodOptional<z.ZodObject<{
+            approval_required: z.ZodOptional<z.ZodBoolean>;
+            pre_approved: z.ZodOptional<z.ZodBoolean>;
+            irreversible_action_classes: z.ZodOptional<z.ZodArray<z.ZodString, "many">>;
+        }, "strict", z.ZodTypeAny, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }, {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        }>>;
+    }, "strict", z.ZodTypeAny, {
+        L1?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L2?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L3?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L4?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+    }, {
+        L1?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L2?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L3?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L4?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+    }>>;
+    /** APTS-HO-014 — regulatory class triggers for finding-text escalation. */
+    compliance_triggers: z.ZodOptional<z.ZodObject<{
+        regulatory_class: z.ZodArray<z.ZodString, "many">;
+        on_match: z.ZodDefault<z.ZodEnum<["halt", "notify"]>>;
+    }, "strict", z.ZodTypeAny, {
+        regulatory_class: string[];
+        on_match: "halt" | "notify";
+    }, {
+        regulatory_class: string[];
+        on_match?: "halt" | "notify" | undefined;
+    }>>;
+    /** APTS-HO-011/012/013 — escalation thresholds for severity / CIA vector / confidence. */
+    escalation: z.ZodOptional<z.ZodObject<{
+        /** APTS-HO-011 — severity at which an unexpected-finding halt fires. */
+        severity_threshold: z.ZodOptional<z.ZodEnum<["info", "low", "medium", "high", "critical", "blocker"]>>;
+        /** APTS-HO-012 — CIA-axis halt thresholds. */
+        cia_threshold: z.ZodOptional<z.ZodObject<{
+            c: z.ZodOptional<z.ZodEnum<["none", "low", "medium", "high"]>>;
+            i: z.ZodOptional<z.ZodEnum<["none", "low", "medium", "high"]>>;
+            a: z.ZodOptional<z.ZodEnum<["none", "low", "medium", "high"]>>;
+        }, "strict", z.ZodTypeAny, {
+            c?: "high" | "medium" | "low" | "none" | undefined;
+            i?: "high" | "medium" | "low" | "none" | undefined;
+            a?: "high" | "medium" | "low" | "none" | undefined;
+        }, {
+            c?: "high" | "medium" | "low" | "none" | undefined;
+            i?: "high" | "medium" | "low" | "none" | undefined;
+            a?: "high" | "medium" | "low" | "none" | undefined;
+        }>>;
+        /** APTS-HO-013 — when true, low-confidence findings halt-pause the engagement. */
+        pause_on_low_confidence: z.ZodOptional<z.ZodBoolean>;
+    }, "strict", z.ZodTypeAny, {
+        severity_threshold?: "blocker" | "critical" | "high" | "medium" | "low" | "info" | undefined;
+        cia_threshold?: {
+            c?: "high" | "medium" | "low" | "none" | undefined;
+            i?: "high" | "medium" | "low" | "none" | undefined;
+            a?: "high" | "medium" | "low" | "none" | undefined;
+        } | undefined;
+        pause_on_low_confidence?: boolean | undefined;
+    }, {
+        severity_threshold?: "blocker" | "critical" | "high" | "medium" | "low" | "info" | undefined;
+        cia_threshold?: {
+            c?: "high" | "medium" | "low" | "none" | undefined;
+            i?: "high" | "medium" | "low" | "none" | undefined;
+            a?: "high" | "medium" | "low" | "none" | undefined;
+        } | undefined;
+        pause_on_low_confidence?: boolean | undefined;
+    }>>;
+}, "strict", z.ZodTypeAny, {
+    roe_id: string;
+    spec_version: "0.1.0";
+    operator: {
+        organization: string;
+        authorized_by: string;
+        contact: string;
+    };
+    authorization: {
+        statement: string;
+        signature_method: "operator-attested" | "external-signed";
+        authority_url?: string | undefined;
+        delegation_matrix?: {
+            role: string;
+            can_approve: string[];
+        }[] | undefined;
+    };
+    in_scope: {
+        domains: {
+            pattern: string;
+            includeSubdomains: boolean;
+        }[];
+        ip_ranges: string[];
+        repository_paths: string[];
+    };
+    out_of_scope: {
+        domains: string[];
+        ip_ranges: string[];
+        paths: string[];
+    };
+    asset_criticality: {
+        pattern: string;
+        classification: "critical" | "high" | "medium" | "low";
+        notes?: string | undefined;
+    }[];
+    temporal: {
+        start: string;
+        end: string;
+        timezone: string;
+        blackout_windows: {
+            reason: string;
+            start: string;
+            end: string;
+        }[];
+    };
+    stop_conditions: {
+        on_critical_finding: "halt" | "notify-and-continue" | "continue";
+        max_findings?: number | undefined;
+        max_duration_minutes?: number | undefined;
+        phase_timeout_minutes?: number | undefined;
+        on_target_unreachable_seconds?: number | undefined;
+    };
+    sandboxing: {
+        mode: "none" | "docker" | "firejail";
+        docker_network?: string | undefined;
+        image_overrides?: Record<string, string> | undefined;
+        extra_docker_args?: string[] | undefined;
+    };
+    notifications?: {
+        channels: {
+            type: "webhook" | "log";
+            events: ("start" | "halt" | "critical-finding" | "completion")[];
+            url?: string | undefined;
+        }[];
+    } | undefined;
+    references?: {
+        incident_response_plan?: string | undefined;
+        contract_id?: string | undefined;
+        apts_conformance_claim?: string | undefined;
+    } | undefined;
+    safety_controls?: {
+        health_thresholds?: {
+            max_heap_mb?: number | undefined;
+            max_error_rate?: number | undefined;
+            max_target_response_ms?: number | undefined;
+        } | undefined;
+        heartbeat_url?: string | undefined;
+        heartbeat_interval_seconds?: number | undefined;
+    } | undefined;
+    autonomy_levels?: {
+        L1?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L2?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L3?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L4?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+    } | undefined;
+    compliance_triggers?: {
+        regulatory_class: string[];
+        on_match: "halt" | "notify";
+    } | undefined;
+    escalation?: {
+        severity_threshold?: "blocker" | "critical" | "high" | "medium" | "low" | "info" | undefined;
+        cia_threshold?: {
+            c?: "high" | "medium" | "low" | "none" | undefined;
+            i?: "high" | "medium" | "low" | "none" | undefined;
+            a?: "high" | "medium" | "low" | "none" | undefined;
+        } | undefined;
+        pause_on_low_confidence?: boolean | undefined;
+    } | undefined;
+}, {
+    roe_id: string;
+    spec_version: "0.1.0";
+    operator: {
+        organization: string;
+        authorized_by: string;
+        contact: string;
+    };
+    authorization: {
+        statement: string;
+        authority_url?: string | undefined;
+        signature_method?: "operator-attested" | "external-signed" | undefined;
+        delegation_matrix?: {
+            role: string;
+            can_approve: string[];
+        }[] | undefined;
+    };
+    in_scope: {
+        domains?: {
+            pattern: string;
+            includeSubdomains?: boolean | undefined;
+        }[] | undefined;
+        ip_ranges?: string[] | undefined;
+        repository_paths?: string[] | undefined;
+    };
+    temporal: {
+        start: string;
+        end: string;
+        timezone: string;
+        blackout_windows?: {
+            reason: string;
+            start: string;
+            end: string;
+        }[] | undefined;
+    };
+    out_of_scope?: {
+        domains?: string[] | undefined;
+        ip_ranges?: string[] | undefined;
+        paths?: string[] | undefined;
+    } | undefined;
+    asset_criticality?: {
+        pattern: string;
+        classification: "critical" | "high" | "medium" | "low";
+        notes?: string | undefined;
+    }[] | undefined;
+    stop_conditions?: {
+        on_critical_finding?: "halt" | "notify-and-continue" | "continue" | undefined;
+        max_findings?: number | undefined;
+        max_duration_minutes?: number | undefined;
+        phase_timeout_minutes?: number | undefined;
+        on_target_unreachable_seconds?: number | undefined;
+    } | undefined;
+    notifications?: {
+        channels?: {
+            type: "webhook" | "log";
+            events: ("start" | "halt" | "critical-finding" | "completion")[];
+            url?: string | undefined;
+        }[] | undefined;
+    } | undefined;
+    references?: {
+        incident_response_plan?: string | undefined;
+        contract_id?: string | undefined;
+        apts_conformance_claim?: string | undefined;
+    } | undefined;
+    sandboxing?: {
+        mode?: "none" | "docker" | "firejail" | undefined;
+        docker_network?: string | undefined;
+        image_overrides?: Record<string, string> | undefined;
+        extra_docker_args?: string[] | undefined;
+    } | undefined;
+    safety_controls?: {
+        health_thresholds?: {
+            max_heap_mb?: number | undefined;
+            max_error_rate?: number | undefined;
+            max_target_response_ms?: number | undefined;
+        } | undefined;
+        heartbeat_url?: string | undefined;
+        heartbeat_interval_seconds?: number | undefined;
+    } | undefined;
+    autonomy_levels?: {
+        L1?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L2?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L3?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+        L4?: {
+            approval_required?: boolean | undefined;
+            pre_approved?: boolean | undefined;
+            irreversible_action_classes?: string[] | undefined;
+        } | undefined;
+    } | undefined;
+    compliance_triggers?: {
+        regulatory_class: string[];
+        on_match?: "halt" | "notify" | undefined;
+    } | undefined;
+    escalation?: {
+        severity_threshold?: "blocker" | "critical" | "high" | "medium" | "low" | "info" | undefined;
+        cia_threshold?: {
+            c?: "high" | "medium" | "low" | "none" | undefined;
+            i?: "high" | "medium" | "low" | "none" | undefined;
+            a?: "high" | "medium" | "low" | "none" | undefined;
+        } | undefined;
+        pause_on_low_confidence?: boolean | undefined;
+    } | undefined;
+}>;
+export type RoE = z.infer<typeof RoESchema>;
+export interface ValidationDecision {
+    allowed: boolean;
+    reason: string;
+    /** APTS requirement IDs satisfied or violated by this decision (for audit). */
+    apts_refs?: string[];
+}
+/**
+ * Validate that a target (URL, hostname, or IP) is in scope and not in the
+ * out_of_scope deny list. Closes APTS-SE-003 + APTS-SE-006 + APTS-AL-006.
+ */
+export declare function validateTargetInScope(target: string, roe: RoE): ValidationDecision;
+/**
+ * Validate the current time is within the temporal envelope and not in a
+ * blackout window. Closes APTS-SE-004 + APTS-SE-008.
+ */
+export declare function validateTemporalEnvelope(roe: RoE, now?: Date): ValidationDecision;
+/**
+ * Classify a target's asset criticality per APTS-SE-005. Returns
+ * `'unspecified'` if no asset_criticality entry matches.
+ */
+export declare function getAssetCriticality(target: string, roe: RoE): 'critical' | 'high' | 'medium' | 'low' | 'unspecified';
+/**
+ * Composite pre-action validator. Combines scope + temporal + per-action
+ * stop-condition checks. Returns an explicit allow/deny with the
+ * complete reason chain. Closes APTS-SE-006.
+ */
+export declare function validateAction(target: string, action: string, roe: RoE, now?: Date): ValidationDecision;
+/**
+ * Synthesize a minimal RoE from a `--target` flag for back-compat with the
+ * pre-RoE `aegis siege --target URL --confirm` interface. Operator should
+ * graduate to a real RoE file for any non-trivial engagement; this helper
+ * exists so existing scripts continue to function. Marks the synthesized
+ * RoE as such so audit logs can flag the difference.
+ *
+ * Defaults are CONSERVATIVE-strict, not permissive-back-compat:
+ *   - `safety_controls.health_thresholds` non-trivial so SC-010 health
+ *     check actually trips on a runaway engagement.
+ *   - `autonomy_levels.L3.approval_required: true` — exploitation halts
+ *     unless the operator provides a real RoE that explicitly
+ *     pre-approves L3. This is a back-compat BREAK from earlier
+ *     versions where --confirm authorized everything; the rationale is
+ *     that synthesized minimal RoE should never silently authorize
+ *     exploitation phase. Operators who need exploitation must author
+ *     a full RoE.
+ *   - `escalation.severity_threshold: 'critical'` — matches the
+ *     `stop_conditions.on_critical_finding: 'halt'` policy on the
+ *     finding-text path (HO-011).
+ *   - `escalation.cia_threshold: { c:'high', i:'high', a:'high' }` —
+ *     CIA-axis halt on any high-impact finding (HO-012).
+ *   - `pause_on_low_confidence: false` — operator opt-in for HO-013
+ *     to avoid noisy halts during normal scans.
+ *
+ * The previous permissive defaults were flagged by an internal audit
+ * as "mechanism-MET but inert in default mode". Closing that gap
+ * required this BC break.
+ */
+export declare function synthesizeMinimalRoE(target: string, options?: {
+    organization?: string;
+    durationMinutes?: number;
+}): RoE;
+//# sourceMappingURL=types.d.ts.map