@agenshield/broker 0.6.0 → 0.6.1

package/daemon-forward.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Daemon Policy Forwarding
+ *
+ * Shared module for forwarding policy checks to the daemon's RPC endpoint.
+ * Used by both the policy_check handler and the top-level processRequest()
+ * in server.ts / http-fallback.ts when the broker's local enforcer denies
+ * a request but the daemon may have a user-defined policy that allows it.
+ */
+export interface DaemonPolicyResult {
+    allowed: boolean;
+    policyId?: string;
+    reason?: string;
+}
+/**
+ * Forward a policy check to the daemon's RPC endpoint.
+ *
+ * The daemon evaluates user-defined policies (created in the UI).
+ * We only accept the daemon's result if it returns `allowed: true`
+ * AND includes a `policyId` (explicit user policy match).
+ * A default-allow (no policyId) is NOT trusted — we keep the broker denial.
+ *
+ * @returns The daemon's result if it explicitly allows, or null to keep broker denial.
+ */
+export declare function forwardPolicyToDaemon(operation: string, target: string, daemonUrl: string): Promise<DaemonPolicyResult | null>;
+//# sourceMappingURL=daemon-forward.d.ts.map

package/daemon-forward.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"daemon-forward.d.ts","sourceRoot":"","sources":["../src/daemon-forward.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAKH,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;;;;;;;;GASG;AACH,wBAAsB,qBAAqB,CACzC,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC,CAiDpC"}

package/handlers/exec.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"exec.d.ts","sourceRoot":"","sources":["../../src/handlers/exec.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,KAAK,EAAE,cAAc,EAAE,aAAa,EAAc,UAAU,EAAE,MAAM,aAAa,CAAC;AACzF,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AA+FtD,wBAAsB,UAAU,CAC9B,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,cAAc,EACvB,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,aAAa,CAAC,UAAU,CAAC,CAAC,CA0GpC"}
+{"version":3,"file":"exec.d.ts","sourceRoot":"","sources":["../../src/handlers/exec.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,KAAK,EAAE,cAAc,EAAE,aAAa,EAAc,UAAU,EAAE,MAAM,aAAa,CAAC;AACzF,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAgGtD,wBAAsB,UAAU,CAC9B,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,cAAc,EACvB,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,aAAa,CAAC,UAAU,CAAC,CAAC,CA+GpC"}

package/handlers/policy-check.d.ts

@@ -4,6 +4,9 @@
  * Handles policy_check RPC calls from the interceptor.
  * The interceptor sends { operation, target } and this handler
  * evaluates the inner operation against the policy enforcer.
+ *
+ * If the broker's enforcer denies the request, we forward to the
+ * daemon's RPC endpoint which checks user-defined policies.
  */
 import type { HandlerContext, HandlerResult } from '../types.js';
 import type { HandlerDependencies } from './types.js';

package/handlers/policy-check.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"policy-check.d.ts","sourceRoot":"","sources":["../../src/handlers/policy-check.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AACjE,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAOtD,UAAU,qBAAqB;IAC7B,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,cAAc,EACvB,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,aAAa,CAAC,qBAAqB,CAAC,CAAC,CA6C/C"}
+{"version":3,"file":"policy-check.d.ts","sourceRoot":"","sources":["../../src/handlers/policy-check.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AACjE,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAQtD,UAAU,qBAAqB;IAC7B,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAKD,wBAAsB,iBAAiB,CACrC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,cAAc,EACvB,IAAI,EAAE,mBAAmB,GACxB,OAAO,CAAC,aAAa,CAAC,qBAAqB,CAAC,CAAC,CAoE/C"}

package/handlers/types.d.ts

@@ -24,5 +24,6 @@ export interface HandlerDependencies {
     commandAllowlist: CommandAllowlist;
     onExecMonitor?: (event: ExecMonitorEvent) => void;
     onExecDenied?: (command: string, reason: string) => void;
+    daemonUrl?: string;
 }
 //# sourceMappingURL=types.d.ts.map

package/handlers/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/handlers/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAC;AAC9D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,kCAAkC,CAAC;AAEzE;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,cAAc,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,EAAE,WAAW,CAAC;IACzB,gBAAgB,EAAE,gBAAgB,CAAC;IACnC,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,gBAAgB,KAAK,IAAI,CAAC;IAClD,YAAY,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,KAAK,IAAI,CAAC;CAC1D"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/handlers/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAC;AAC9D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AACvD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,kCAAkC,CAAC;AAEzE;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,cAAc,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,EAAE,WAAW,CAAC;IACzB,gBAAgB,EAAE,gBAAgB,CAAC;IACnC,aAAa,CAAC,EAAE,CAAC,KAAK,EAAE,gBAAgB,KAAK,IAAI,CAAC;IAClD,YAAY,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,KAAK,IAAI,CAAC;IACzD,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB"}

package/http-fallback.d.ts

@@ -7,16 +7,19 @@
 import type { BrokerConfig } from './types.js';
 import type { PolicyEnforcer } from './policies/enforcer.js';
 import type { AuditLogger } from './audit/logger.js';
+import type { CommandAllowlist } from './policies/command-allowlist.js';
 export interface HttpFallbackServerOptions {
     config: BrokerConfig;
     policyEnforcer: PolicyEnforcer;
     auditLogger: AuditLogger;
+    commandAllowlist: CommandAllowlist;
 }
 export declare class HttpFallbackServer {
     private server;
     private config;
     private policyEnforcer;
     private auditLogger;
+    private commandAllowlist;
     constructor(options: HttpFallbackServerOptions);
     /**
      * Start the HTTP fallback server

package/http-fallback.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"http-fallback.d.ts","sourceRoot":"","sources":["../src/http-fallback.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EACV,YAAY,EAIb,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAqBrD,MAAM,WAAW,yBAAyB;IACxC,MAAM,EAAE,YAAY,CAAC;IACrB,cAAc,EAAE,cAAc,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;CAC1B;AAED,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,MAAM,CAA4B;IAC1C,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,WAAW,CAAc;gBAErB,OAAO,EAAE,yBAAyB;IAM9C;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAoB5B;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAY3B;;OAEG;YACW,aAAa;IA6C3B;;OAEG;IACH,OAAO,CAAC,WAAW;IAUnB;;OAEG;YACW,cAAc;IAyH5B;;OAEG;IACH,OAAO,CAAC,UAAU;IAsBlB;;OAEG;IACH,OAAO,CAAC,aAAa;IAWrB;;OAEG;IACH,OAAO,CAAC,aAAa;CAWtB"}
+{"version":3,"file":"http-fallback.d.ts","sourceRoot":"","sources":["../src/http-fallback.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EACV,YAAY,EAIb,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AAsBxE,MAAM,WAAW,yBAAyB;IACxC,MAAM,EAAE,YAAY,CAAC;IACrB,cAAc,EAAE,cAAc,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;IACzB,gBAAgB,EAAE,gBAAgB,CAAC;CACpC;AAED,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,MAAM,CAA4B;IAC1C,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,gBAAgB,CAAmB;gBAE/B,OAAO,EAAE,yBAAyB;IAO9C;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAoB5B;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAY3B;;OAEG;YACW,aAAa;IA6C3B;;OAEG;IACH,OAAO,CAAC,WAAW;IAUnB;;OAEG;YACW,cAAc;IAuI5B;;OAEG;IACH,OAAO,CAAC,UAAU;IAsBlB;;OAEG;IACH,OAAO,CAAC,aAAa;IAWrB;;OAEG;IACH,OAAO,CAAC,aAAa;CAWtB"}

package/index.js

@@ -249,6 +249,47 @@ function matchPattern(name, pattern) {
 // libs/shield-broker/src/handlers/exec.ts
 import * as path2 from "node:path";
 import { spawn } from "node:child_process";
+
+// libs/shield-broker/src/daemon-forward.ts
+var DAEMON_RPC_TIMEOUT = 2e3;
+async function forwardPolicyToDaemon(operation, target, daemonUrl) {
+  try {
+    const controller = new AbortController();
+    const timeout = setTimeout(() => controller.abort(), DAEMON_RPC_TIMEOUT);
+    const response = await fetch(`${daemonUrl}/rpc`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({
+        jsonrpc: "2.0",
+        id: `broker-fwd-${Date.now()}`,
+        method: "policy_check",
+        params: { operation, target }
+      }),
+      signal: controller.signal
+    });
+    clearTimeout(timeout);
+    if (!response.ok) {
+      return null;
+    }
+    const json = await response.json();
+    if (json.error || !json.result) {
+      return null;
+    }
+    const result = json.result;
+    if (result.policyId) {
+      return {
+        allowed: !!result.allowed,
+        policyId: result.policyId,
+        reason: result.reason
+      };
+    }
+    return null;
+  } catch {
+    return null;
+  }
+}
+
+// libs/shield-broker/src/handlers/exec.ts
 var MAX_OUTPUT_SIZE = 10 * 1024 * 1024;
 var DEFAULT_WORKSPACE = "/Users/clawagent/workspace";
 var FS_COMMANDS = /* @__PURE__ */ new Set([
@@ -381,12 +422,16 @@ async function handleExec(params, context, deps) {
       if (url) {
         const networkCheck = await deps.policyEnforcer.check("http_request", { url }, context);
         if (!networkCheck.allowed) {
-          const reason = `URL not allowed: ${url} - ${networkCheck.reason}`;
-          deps.onExecDenied?.(command, reason);
-          return {
-            success: false,
-            error: { code: 1009, message: reason }
-          };
+          const daemonUrl = deps.daemonUrl || "http://127.0.0.1:5200";
+          const override = await forwardPolicyToDaemon("http_request", url, daemonUrl);
+          if (!override || !override.allowed) {
+            const reason = `URL not allowed: ${url} - ${networkCheck.reason}`;
+            deps.onExecDenied?.(command, reason);
+            return {
+              success: false,
+              error: { code: 1009, message: reason }
+            };
+          }
         }
       }
     }
@@ -806,6 +851,7 @@ async function handleSkillUninstall(params, context, deps) {
 }
 
 // libs/shield-broker/src/handlers/policy-check.ts
+var DEFAULT_DAEMON_URL = "http://127.0.0.1:5200";
 async function handlePolicyCheck(params, context, deps) {
   const { operation, target } = params;
   if (!operation) {
@@ -836,10 +882,25 @@ async function handlePolicyCheck(params, context, deps) {
       break;
   }
   const result = await deps.policyEnforcer.check(operation, checkParams, context);
+  if (result.allowed) {
+    return {
+      success: true,
+      data: {
+        allowed: true,
+        policyId: result.policyId,
+        reason: result.reason
+      }
+    };
+  }
+  const daemonUrl = deps.daemonUrl || DEFAULT_DAEMON_URL;
+  const daemonResult = await forwardPolicyToDaemon(operation, target || "", daemonUrl);
+  if (daemonResult && daemonResult.allowed) {
+    return { success: true, data: daemonResult };
+  }
   return {
     success: true,
     data: {
-      allowed: result.allowed,
+      allowed: false,
       policyId: result.policyId,
       reason: result.reason
     }
@@ -876,12 +937,14 @@ var UnixSocketServer = class {
   policyEnforcer;
   auditLogger;
   secretVault;
+  commandAllowlist;
   connections = /* @__PURE__ */ new Set();
   constructor(options) {
     this.config = options.config;
     this.policyEnforcer = options.policyEnforcer;
     this.auditLogger = options.auditLogger;
     this.secretVault = options.secretVault;
+    this.commandAllowlist = options.commandAllowlist;
   }
   /**
    * Start the Unix socket server
@@ -985,20 +1048,29 @@ var UnixSocketServer = class {
         request.params,
         context
       );
-      if (!policyResult.allowed) {
+      let finalPolicy = policyResult;
+      if (!policyResult.allowed && request.method !== "policy_check") {
+        const target = this.extractTarget(request);
+        const daemonUrl = this.config.daemonUrl || "http://127.0.0.1:5200";
+        const override = await forwardPolicyToDaemon(request.method, target, daemonUrl);
+        if (override) {
+          finalPolicy = override;
+        }
+      }
+      if (!finalPolicy.allowed) {
         await this.auditLogger.log({
           id: requestId,
           timestamp: /* @__PURE__ */ new Date(),
           operation: request.method,
           channel: "socket",
           allowed: false,
-          policyId: policyResult.policyId,
+          policyId: finalPolicy.policyId,
           target: this.extractTarget(request),
           result: "denied",
-          errorMessage: policyResult.reason,
+          errorMessage: finalPolicy.reason,
           durationMs: Date.now() - startTime
         });
-        return this.errorResponse(request.id, 1001, policyResult.reason || "Policy denied");
+        return this.errorResponse(request.id, 1001, finalPolicy.reason || "Policy denied");
       }
       const handler = this.getHandler(request.method);
       if (!handler) {
@@ -1007,7 +1079,9 @@ var UnixSocketServer = class {
       const result = await handler(request.params, context, {
         policyEnforcer: this.policyEnforcer,
         auditLogger: this.auditLogger,
-        secretVault: this.secretVault
+        secretVault: this.secretVault,
+        commandAllowlist: this.commandAllowlist,
+        daemonUrl: this.config.daemonUrl
       });
       await this.auditLogger.log({
         id: requestId,
@@ -1015,7 +1089,7 @@ var UnixSocketServer = class {
         operation: request.method,
         channel: "socket",
         allowed: true,
-        policyId: policyResult.policyId,
+        policyId: finalPolicy.policyId,
         target: this.extractTarget(request),
         result: result.success ? "success" : "error",
         errorMessage: result.error?.message,
@@ -1101,10 +1175,12 @@ var HttpFallbackServer = class {
   config;
   policyEnforcer;
   auditLogger;
+  commandAllowlist;
   constructor(options) {
     this.config = options.config;
     this.policyEnforcer = options.policyEnforcer;
     this.auditLogger = options.auditLogger;
+    this.commandAllowlist = options.commandAllowlist;
   }
   /**
    * Start the HTTP fallback server
@@ -1225,20 +1301,29 @@ var HttpFallbackServer = class {
         request.params,
         context
       );
-      if (!policyResult.allowed) {
+      let finalPolicy = policyResult;
+      if (!policyResult.allowed && request.method !== "policy_check") {
+        const target = this.extractTarget(request);
+        const daemonUrl = this.config.daemonUrl || "http://127.0.0.1:5200";
+        const override = await forwardPolicyToDaemon(request.method, target, daemonUrl);
+        if (override) {
+          finalPolicy = override;
+        }
+      }
+      if (!finalPolicy.allowed) {
         await this.auditLogger.log({
           id: requestId,
           timestamp: /* @__PURE__ */ new Date(),
           operation: request.method,
           channel: "http",
           allowed: false,
-          policyId: policyResult.policyId,
+          policyId: finalPolicy.policyId,
           target: this.extractTarget(request),
           result: "denied",
-          errorMessage: policyResult.reason,
+          errorMessage: finalPolicy.reason,
           durationMs: Date.now() - startTime
         });
-        return this.errorResponse(request.id, 1001, policyResult.reason || "Policy denied");
+        return this.errorResponse(request.id, 1001, finalPolicy.reason || "Policy denied");
       }
       const handler = this.getHandler(request.method);
       if (!handler) {
@@ -1247,8 +1332,10 @@ var HttpFallbackServer = class {
       const result = await handler(request.params, context, {
         policyEnforcer: this.policyEnforcer,
         auditLogger: this.auditLogger,
-        secretVault: null
+        secretVault: null,
         // Not available over HTTP
+        commandAllowlist: this.commandAllowlist,
+        daemonUrl: this.config.daemonUrl
       });
       await this.auditLogger.log({
         id: requestId,
@@ -1256,7 +1343,7 @@ var HttpFallbackServer = class {
         operation: request.method,
         channel: "http",
         allowed: true,
-        policyId: policyResult.policyId,
+        policyId: finalPolicy.policyId,
         target: this.extractTarget(request),
         result: result.success ? "success" : "error",
         errorMessage: result.error?.message,
@@ -1437,6 +1524,12 @@ var PolicyEnforcer = class {
       if (!constraintResult.allowed) {
         return constraintResult;
       }
+      if (["file_read", "file_write", "file_list"].includes(operation) && this.policies.fsConstraints) {
+        return { allowed: true, reason: "Allowed by file system constraints" };
+      }
+      if (operation === "http_request" && this.policies.networkConstraints) {
+        return { allowed: true, reason: "Allowed by network constraints" };
+      }
       return {
         allowed: this.policies.defaultAction === "allow",
         reason: this.policies.defaultAction === "deny" ? "No matching allow policy" : void 0

package/main.js

@@ -251,6 +251,47 @@ function matchPattern(name, pattern) {
 // libs/shield-broker/src/handlers/exec.ts
 import * as path2 from "node:path";
 import { spawn } from "node:child_process";
+
+// libs/shield-broker/src/daemon-forward.ts
+var DAEMON_RPC_TIMEOUT = 2e3;
+async function forwardPolicyToDaemon(operation, target, daemonUrl) {
+  try {
+    const controller = new AbortController();
+    const timeout = setTimeout(() => controller.abort(), DAEMON_RPC_TIMEOUT);
+    const response = await fetch(`${daemonUrl}/rpc`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json" },
+      body: JSON.stringify({
+        jsonrpc: "2.0",
+        id: `broker-fwd-${Date.now()}`,
+        method: "policy_check",
+        params: { operation, target }
+      }),
+      signal: controller.signal
+    });
+    clearTimeout(timeout);
+    if (!response.ok) {
+      return null;
+    }
+    const json = await response.json();
+    if (json.error || !json.result) {
+      return null;
+    }
+    const result = json.result;
+    if (result.policyId) {
+      return {
+        allowed: !!result.allowed,
+        policyId: result.policyId,
+        reason: result.reason
+      };
+    }
+    return null;
+  } catch {
+    return null;
+  }
+}
+
+// libs/shield-broker/src/handlers/exec.ts
 var MAX_OUTPUT_SIZE = 10 * 1024 * 1024;
 var DEFAULT_WORKSPACE = "/Users/clawagent/workspace";
 var FS_COMMANDS = /* @__PURE__ */ new Set([
@@ -383,12 +424,16 @@ async function handleExec(params, context, deps) {
       if (url) {
         const networkCheck = await deps.policyEnforcer.check("http_request", { url }, context);
         if (!networkCheck.allowed) {
-          const reason = `URL not allowed: ${url} - ${networkCheck.reason}`;
-          deps.onExecDenied?.(command, reason);
-          return {
-            success: false,
-            error: { code: 1009, message: reason }
-          };
+          const daemonUrl = deps.daemonUrl || "http://127.0.0.1:5200";
+          const override = await forwardPolicyToDaemon("http_request", url, daemonUrl);
+          if (!override || !override.allowed) {
+            const reason = `URL not allowed: ${url} - ${networkCheck.reason}`;
+            deps.onExecDenied?.(command, reason);
+            return {
+              success: false,
+              error: { code: 1009, message: reason }
+            };
+          }
         }
       }
     }
@@ -808,6 +853,7 @@ async function handleSkillUninstall(params, context, deps) {
 }
 
 // libs/shield-broker/src/handlers/policy-check.ts
+var DEFAULT_DAEMON_URL = "http://127.0.0.1:5200";
 async function handlePolicyCheck(params, context, deps) {
   const { operation, target } = params;
   if (!operation) {
@@ -838,10 +884,25 @@ async function handlePolicyCheck(params, context, deps) {
       break;
   }
   const result = await deps.policyEnforcer.check(operation, checkParams, context);
+  if (result.allowed) {
+    return {
+      success: true,
+      data: {
+        allowed: true,
+        policyId: result.policyId,
+        reason: result.reason
+      }
+    };
+  }
+  const daemonUrl = deps.daemonUrl || DEFAULT_DAEMON_URL;
+  const daemonResult = await forwardPolicyToDaemon(operation, target || "", daemonUrl);
+  if (daemonResult && daemonResult.allowed) {
+    return { success: true, data: daemonResult };
+  }
   return {
     success: true,
     data: {
-      allowed: result.allowed,
+      allowed: false,
       policyId: result.policyId,
       reason: result.reason
     }
@@ -878,12 +939,14 @@ var UnixSocketServer = class {
   policyEnforcer;
   auditLogger;
   secretVault;
+  commandAllowlist;
   connections = /* @__PURE__ */ new Set();
   constructor(options) {
     this.config = options.config;
     this.policyEnforcer = options.policyEnforcer;
     this.auditLogger = options.auditLogger;
     this.secretVault = options.secretVault;
+    this.commandAllowlist = options.commandAllowlist;
   }
   /**
    * Start the Unix socket server
@@ -987,20 +1050,29 @@ var UnixSocketServer = class {
         request.params,
         context
       );
-      if (!policyResult.allowed) {
+      let finalPolicy = policyResult;
+      if (!policyResult.allowed && request.method !== "policy_check") {
+        const target = this.extractTarget(request);
+        const daemonUrl = this.config.daemonUrl || "http://127.0.0.1:5200";
+        const override = await forwardPolicyToDaemon(request.method, target, daemonUrl);
+        if (override) {
+          finalPolicy = override;
+        }
+      }
+      if (!finalPolicy.allowed) {
         await this.auditLogger.log({
           id: requestId,
           timestamp: /* @__PURE__ */ new Date(),
           operation: request.method,
           channel: "socket",
           allowed: false,
-          policyId: policyResult.policyId,
+          policyId: finalPolicy.policyId,
           target: this.extractTarget(request),
           result: "denied",
-          errorMessage: policyResult.reason,
+          errorMessage: finalPolicy.reason,
           durationMs: Date.now() - startTime
         });
-        return this.errorResponse(request.id, 1001, policyResult.reason || "Policy denied");
+        return this.errorResponse(request.id, 1001, finalPolicy.reason || "Policy denied");
       }
       const handler = this.getHandler(request.method);
       if (!handler) {
@@ -1009,7 +1081,9 @@ var UnixSocketServer = class {
       const result = await handler(request.params, context, {
         policyEnforcer: this.policyEnforcer,
         auditLogger: this.auditLogger,
-        secretVault: this.secretVault
+        secretVault: this.secretVault,
+        commandAllowlist: this.commandAllowlist,
+        daemonUrl: this.config.daemonUrl
       });
       await this.auditLogger.log({
         id: requestId,
@@ -1017,7 +1091,7 @@ var UnixSocketServer = class {
         operation: request.method,
         channel: "socket",
         allowed: true,
-        policyId: policyResult.policyId,
+        policyId: finalPolicy.policyId,
         target: this.extractTarget(request),
         result: result.success ? "success" : "error",
         errorMessage: result.error?.message,
@@ -1103,10 +1177,12 @@ var HttpFallbackServer = class {
   config;
   policyEnforcer;
   auditLogger;
+  commandAllowlist;
   constructor(options) {
     this.config = options.config;
     this.policyEnforcer = options.policyEnforcer;
     this.auditLogger = options.auditLogger;
+    this.commandAllowlist = options.commandAllowlist;
   }
   /**
    * Start the HTTP fallback server
@@ -1227,20 +1303,29 @@ var HttpFallbackServer = class {
         request.params,
         context
       );
-      if (!policyResult.allowed) {
+      let finalPolicy = policyResult;
+      if (!policyResult.allowed && request.method !== "policy_check") {
+        const target = this.extractTarget(request);
+        const daemonUrl = this.config.daemonUrl || "http://127.0.0.1:5200";
+        const override = await forwardPolicyToDaemon(request.method, target, daemonUrl);
+        if (override) {
+          finalPolicy = override;
+        }
+      }
+      if (!finalPolicy.allowed) {
         await this.auditLogger.log({
           id: requestId,
           timestamp: /* @__PURE__ */ new Date(),
           operation: request.method,
           channel: "http",
           allowed: false,
-          policyId: policyResult.policyId,
+          policyId: finalPolicy.policyId,
           target: this.extractTarget(request),
           result: "denied",
-          errorMessage: policyResult.reason,
+          errorMessage: finalPolicy.reason,
           durationMs: Date.now() - startTime
         });
-        return this.errorResponse(request.id, 1001, policyResult.reason || "Policy denied");
+        return this.errorResponse(request.id, 1001, finalPolicy.reason || "Policy denied");
       }
       const handler = this.getHandler(request.method);
       if (!handler) {
@@ -1249,8 +1334,10 @@ var HttpFallbackServer = class {
       const result = await handler(request.params, context, {
         policyEnforcer: this.policyEnforcer,
         auditLogger: this.auditLogger,
-        secretVault: null
+        secretVault: null,
         // Not available over HTTP
+        commandAllowlist: this.commandAllowlist,
+        daemonUrl: this.config.daemonUrl
       });
       await this.auditLogger.log({
         id: requestId,
@@ -1258,7 +1345,7 @@ var HttpFallbackServer = class {
         operation: request.method,
         channel: "http",
         allowed: true,
-        policyId: policyResult.policyId,
+        policyId: finalPolicy.policyId,
         target: this.extractTarget(request),
         result: result.success ? "success" : "error",
         errorMessage: result.error?.message,
@@ -1439,6 +1526,12 @@ var PolicyEnforcer = class {
       if (!constraintResult.allowed) {
         return constraintResult;
       }
+      if (["file_read", "file_write", "file_list"].includes(operation) && this.policies.fsConstraints) {
+        return { allowed: true, reason: "Allowed by file system constraints" };
+      }
+      if (operation === "http_request" && this.policies.networkConstraints) {
+        return { allowed: true, reason: "Allowed by network constraints" };
+      }
       return {
         allowed: this.policies.defaultAction === "allow",
         reason: this.policies.defaultAction === "deny" ? "No matching allow policy" : void 0
@@ -1858,9 +1951,190 @@ function getDefaultPolicies(options) {
   };
 }
 
-// libs/shield-broker/src/audit/logger.ts
+// libs/shield-broker/src/policies/command-allowlist.ts
 import * as fs5 from "node:fs";
 import * as path5 from "node:path";
+var BUILTIN_COMMANDS = {
+  git: ["/usr/bin/git", "/opt/homebrew/bin/git", "/usr/local/bin/git"],
+  ssh: ["/usr/bin/ssh"],
+  scp: ["/usr/bin/scp"],
+  rsync: ["/usr/bin/rsync", "/opt/homebrew/bin/rsync"],
+  brew: ["/opt/homebrew/bin/brew", "/usr/local/bin/brew"],
+  npm: ["/opt/homebrew/bin/npm", "/usr/local/bin/npm"],
+  npx: ["/opt/homebrew/bin/npx", "/usr/local/bin/npx"],
+  pip: ["/usr/bin/pip", "/usr/local/bin/pip", "/opt/homebrew/bin/pip"],
+  pip3: ["/usr/bin/pip3", "/usr/local/bin/pip3", "/opt/homebrew/bin/pip3"],
+  node: ["/opt/homebrew/bin/node", "/usr/local/bin/node"],
+  python: ["/usr/bin/python", "/usr/local/bin/python", "/opt/homebrew/bin/python"],
+  python3: ["/usr/bin/python3", "/usr/local/bin/python3", "/opt/homebrew/bin/python3"],
+  ls: ["/bin/ls"],
+  cat: ["/bin/cat"],
+  grep: ["/usr/bin/grep"],
+  find: ["/usr/bin/find"],
+  mkdir: ["/bin/mkdir"],
+  cp: ["/bin/cp"],
+  mv: ["/bin/mv"],
+  rm: ["/bin/rm"],
+  touch: ["/usr/bin/touch"],
+  chmod: ["/bin/chmod"],
+  head: ["/usr/bin/head"],
+  tail: ["/usr/bin/tail"],
+  wc: ["/usr/bin/wc"],
+  sort: ["/usr/bin/sort"],
+  uniq: ["/usr/bin/uniq"],
+  sed: ["/usr/bin/sed"],
+  awk: ["/usr/bin/awk"],
+  tar: ["/usr/bin/tar"],
+  curl: ["/usr/bin/curl"],
+  wget: ["/usr/local/bin/wget", "/opt/homebrew/bin/wget"]
+};
+var CommandAllowlist = class {
+  configPath;
+  dynamicCommands = /* @__PURE__ */ new Map();
+  lastLoad = 0;
+  reloadInterval = 3e4;
+  // 30 seconds
+  constructor(configPath) {
+    this.configPath = configPath;
+    this.load();
+  }
+  /**
+   * Load dynamic commands from disk
+   */
+  load() {
+    if (!fs5.existsSync(this.configPath)) {
+      this.lastLoad = Date.now();
+      return;
+    }
+    try {
+      const content = fs5.readFileSync(this.configPath, "utf-8");
+      const config = JSON.parse(content);
+      this.dynamicCommands.clear();
+      for (const cmd of config.commands || []) {
+        this.dynamicCommands.set(cmd.name, cmd);
+      }
+      this.lastLoad = Date.now();
+    } catch {
+      this.lastLoad = Date.now();
+    }
+  }
+  /**
+   * Reload dynamic commands if stale
+   */
+  maybeReload() {
+    if (Date.now() - this.lastLoad > this.reloadInterval) {
+      this.load();
+    }
+  }
+  /**
+   * Persist dynamic commands to disk
+   */
+  save() {
+    const dir = path5.dirname(this.configPath);
+    if (!fs5.existsSync(dir)) {
+      fs5.mkdirSync(dir, { recursive: true });
+    }
+    const config = {
+      version: "1.0.0",
+      commands: Array.from(this.dynamicCommands.values())
+    };
+    fs5.writeFileSync(this.configPath, JSON.stringify(config, null, 2) + "\n", "utf-8");
+  }
+  /**
+   * Add a dynamic command
+   */
+  add(cmd) {
+    this.dynamicCommands.set(cmd.name, cmd);
+    this.save();
+  }
+  /**
+   * Remove a dynamic command
+   */
+  remove(name) {
+    const existed = this.dynamicCommands.delete(name);
+    if (existed) {
+      this.save();
+    }
+    return existed;
+  }
+  /**
+   * Get a dynamic command by name
+   */
+  get(name) {
+    return this.dynamicCommands.get(name);
+  }
+  /**
+   * List all commands (builtin + dynamic)
+   */
+  list() {
+    const result = [];
+    for (const [name, paths] of Object.entries(BUILTIN_COMMANDS)) {
+      result.push({
+        name,
+        paths,
+        addedAt: "",
+        addedBy: "builtin",
+        builtin: true
+      });
+    }
+    for (const cmd of this.dynamicCommands.values()) {
+      result.push({ ...cmd, builtin: false });
+    }
+    return result;
+  }
+  /**
+   * List only dynamic commands
+   */
+  listDynamic() {
+    return Array.from(this.dynamicCommands.values());
+  }
+  /**
+   * Check if a command name conflicts with a builtin
+   */
+  isBuiltin(name) {
+    return name in BUILTIN_COMMANDS;
+  }
+  /**
+   * Resolve a command name to an absolute path.
+   * Checks builtin commands first, then dynamic commands.
+   * Validates that the resolved path exists on disk.
+   * Returns null if the command is not allowed.
+   */
+  resolve(command) {
+    this.maybeReload();
+    if (path5.isAbsolute(command)) {
+      for (const paths of Object.values(BUILTIN_COMMANDS)) {
+        if (paths.includes(command) && fs5.existsSync(command)) {
+          return command;
+        }
+      }
+      for (const cmd of this.dynamicCommands.values()) {
+        if (cmd.paths.includes(command) && fs5.existsSync(command)) {
+          return command;
+        }
+      }
+      return null;
+    }
+    const basename3 = path5.basename(command);
+    const builtinPaths = BUILTIN_COMMANDS[basename3];
+    if (builtinPaths) {
+      for (const p of builtinPaths) {
+        if (fs5.existsSync(p)) return p;
+      }
+    }
+    const dynamicCmd = this.dynamicCommands.get(basename3);
+    if (dynamicCmd && dynamicCmd.paths.length > 0) {
+      for (const p of dynamicCmd.paths) {
+        if (fs5.existsSync(p)) return p;
+      }
+    }
+    return null;
+  }
+};
+
+// libs/shield-broker/src/audit/logger.ts
+import * as fs6 from "node:fs";
+import * as path6 from "node:path";
 var AuditLogger = class {
   logPath;
   logLevel;
@@ -1885,15 +2159,15 @@ var AuditLogger = class {
    * Initialize the write stream
    */
   initializeStream() {
-    const dir = path5.dirname(this.logPath);
-    if (!fs5.existsSync(dir)) {
-      fs5.mkdirSync(dir, { recursive: true });
+    const dir = path6.dirname(this.logPath);
+    if (!fs6.existsSync(dir)) {
+      fs6.mkdirSync(dir, { recursive: true });
     }
-    if (fs5.existsSync(this.logPath)) {
-      const stats = fs5.statSync(this.logPath);
+    if (fs6.existsSync(this.logPath)) {
+      const stats = fs6.statSync(this.logPath);
       this.currentSize = stats.size;
     }
-    this.writeStream = fs5.createWriteStream(this.logPath, {
+    this.writeStream = fs6.createWriteStream(this.logPath, {
       flags: "a",
       encoding: "utf-8"
     });
@@ -1912,16 +2186,16 @@ var AuditLogger = class {
     for (let i = this.maxFiles - 1; i >= 1; i--) {
       const oldPath = `${this.logPath}.${i}`;
       const newPath = `${this.logPath}.${i + 1}`;
-      if (fs5.existsSync(oldPath)) {
+      if (fs6.existsSync(oldPath)) {
         if (i === this.maxFiles - 1) {
-          fs5.unlinkSync(oldPath);
+          fs6.unlinkSync(oldPath);
         } else {
-          fs5.renameSync(oldPath, newPath);
+          fs6.renameSync(oldPath, newPath);
         }
       }
     }
-    if (fs5.existsSync(this.logPath)) {
-      fs5.renameSync(this.logPath, `${this.logPath}.1`);
+    if (fs6.existsSync(this.logPath)) {
+      fs6.renameSync(this.logPath, `${this.logPath}.1`);
     }
     this.currentSize = 0;
     this.initializeStream();
@@ -1994,10 +2268,10 @@ var AuditLogger = class {
   async query(options) {
     const results = [];
     const limit = options.limit || 1e3;
-    if (!fs5.existsSync(this.logPath)) {
+    if (!fs6.existsSync(this.logPath)) {
       return results;
     }
-    const content = fs5.readFileSync(this.logPath, "utf-8");
+    const content = fs6.readFileSync(this.logPath, "utf-8");
     const lines = content.trim().split("\n");
     for (const line of lines.reverse()) {
       if (results.length >= limit) break;
@@ -2035,7 +2309,7 @@ var AuditLogger = class {
 };
 
 // libs/shield-broker/src/secrets/vault.ts
-import * as fs6 from "node:fs/promises";
+import * as fs7 from "node:fs/promises";
 import * as crypto from "node:crypto";
 var SecretVault = class {
   vaultPath;
@@ -2057,11 +2331,11 @@ var SecretVault = class {
   async loadOrCreateKey() {
     const keyPath = this.vaultPath.replace(".enc", ".key");
     try {
-      const keyData = await fs6.readFile(keyPath);
+      const keyData = await fs7.readFile(keyPath);
       return keyData;
     } catch {
       const key = crypto.randomBytes(32);
-      await fs6.writeFile(keyPath, key, { mode: 384 });
+      await fs7.writeFile(keyPath, key, { mode: 384 });
       return key;
     }
   }
@@ -2070,7 +2344,7 @@ var SecretVault = class {
    */
   async load() {
     try {
-      const content = await fs6.readFile(this.vaultPath, "utf-8");
+      const content = await fs7.readFile(this.vaultPath, "utf-8");
       this.data = JSON.parse(content);
     } catch {
       this.data = {
@@ -2084,7 +2358,7 @@ var SecretVault = class {
    */
   async save() {
     if (!this.data) return;
-    await fs6.writeFile(
+    await fs7.writeFile(
       this.vaultPath,
       JSON.stringify(this.data, null, 2),
       { mode: 384 }
@@ -2202,14 +2476,30 @@ var SecretVault = class {
 };
 
 // libs/shield-broker/src/main.ts
-import * as fs7 from "node:fs";
-import * as path6 from "node:path";
+import * as fs8 from "node:fs";
+import * as path7 from "node:path";
+var PROXIED_COMMANDS = [
+  "curl",
+  "wget",
+  "git",
+  "ssh",
+  "scp",
+  "rsync",
+  "brew",
+  "npm",
+  "npx",
+  "pip",
+  "pip3",
+  "open-url",
+  "shieldctl",
+  "agenco"
+];
 function loadConfig() {
   const configPath = process.env["AGENSHIELD_CONFIG"] || "/opt/agenshield/config/shield.json";
   let fileConfig = {};
-  if (fs7.existsSync(configPath)) {
+  if (fs8.existsSync(configPath)) {
     try {
-      const content = fs7.readFileSync(configPath, "utf-8");
+      const content = fs8.readFileSync(configPath, "utf-8");
       fileConfig = JSON.parse(content);
     } catch (error) {
       console.warn(`Warning: Failed to load config from ${configPath}:`, error);
@@ -2231,16 +2521,17 @@ function loadConfig() {
     socketMode: fileConfig.socketMode || 438,
     socketOwner: fileConfig.socketOwner || "clawbroker",
     socketGroup: fileConfig.socketGroup || "clawshield",
-    agentHome: process.env["AGENSHIELD_AGENT_HOME"] || fileConfig.agentHome
+    agentHome: process.env["AGENSHIELD_AGENT_HOME"] || fileConfig.agentHome,
+    daemonUrl: process.env["AGENSHIELD_DAEMON_URL"] || fileConfig.daemonUrl || "http://127.0.0.1:5200"
   };
 }
 function ensureDirectories(config) {
-  const socketDir = path6.dirname(config.socketPath);
-  const auditDir = path6.dirname(config.auditLogPath);
+  const socketDir = path7.dirname(config.socketPath);
+  const auditDir = path7.dirname(config.auditLogPath);
   for (const dir of [socketDir, auditDir, config.policiesPath]) {
-    if (!fs7.existsSync(dir)) {
+    if (!fs8.existsSync(dir)) {
       try {
-        fs7.mkdirSync(dir, { recursive: true, mode: 493 });
+        fs8.mkdirSync(dir, { recursive: true, mode: 493 });
       } catch (error) {
         if (error.code !== "EEXIST") {
           console.warn(`Warning: Could not create directory ${dir}:`, error);
@@ -2249,6 +2540,47 @@ function ensureDirectories(config) {
     }
   }
 }
+function ensureProxiedCommandWrappers(binDir) {
+  if (!fs8.existsSync(binDir)) {
+    try {
+      fs8.mkdirSync(binDir, { recursive: true, mode: 493 });
+    } catch {
+      console.warn(`[broker] cannot create bin dir ${binDir}`);
+      return;
+    }
+  }
+  const shieldExecPath = "/opt/agenshield/bin/shield-exec";
+  const hasShieldExec = fs8.existsSync(shieldExecPath);
+  let installed = 0;
+  for (const cmd of PROXIED_COMMANDS) {
+    const wrapperPath = path7.join(binDir, cmd);
+    if (fs8.existsSync(wrapperPath)) continue;
+    if (hasShieldExec) {
+      try {
+        fs8.symlinkSync(shieldExecPath, wrapperPath);
+        installed++;
+        continue;
+      } catch {
+      }
+    }
+    try {
+      const script = [
+        "#!/bin/bash",
+        `# ${cmd} - AgenShield proxy (auto-generated)`,
+        "if ! /bin/pwd > /dev/null 2>&1; then cd ~ 2>/dev/null || cd /; fi",
+        `exec /opt/agenshield/bin/shield-client exec ${cmd} "$@"`,
+        ""
+      ].join("\n");
+      fs8.writeFileSync(wrapperPath, script, { mode: 493 });
+      installed++;
+    } catch {
+      console.warn(`[broker] cannot write wrapper for ${cmd}`);
+    }
+  }
+  if (installed > 0) {
+    console.log(`[broker] installed ${installed} command wrappers in ${binDir}`);
+  }
+}
 async function main() {
   console.log(`AgenShield Broker starting at ${(/* @__PURE__ */ new Date()).toISOString()}`);
   console.log(`PID: ${process.pid}, UID: ${process.getuid?.()}, GID: ${process.getgid?.()}`);
@@ -2267,6 +2599,7 @@ async function main() {
   console.log(`HTTP Fallback: ${config.httpEnabled ? `${config.httpHost}:${config.httpPort}` : "disabled"}`);
   console.log(`Policies: ${config.policiesPath}`);
   console.log(`Agent Home: ${config.agentHome || "(env fallback)"}`);
+  console.log(`Daemon URL: ${config.daemonUrl || "(default)"}`);
   console.log(`Log Level: ${config.logLevel}`);
   try {
     ensureDirectories(config);
@@ -2286,11 +2619,18 @@ async function main() {
   const secretVault = new SecretVault({
     vaultPath: "/etc/agenshield/vault.enc"
   });
+  const commandAllowlist = new CommandAllowlist(
+    "/opt/agenshield/config/allowed-commands.json"
+  );
+  if (config.agentHome) {
+    ensureProxiedCommandWrappers(path7.join(config.agentHome, "bin"));
+  }
   const socketServer = new UnixSocketServer({
     config,
     policyEnforcer,
     auditLogger,
-    secretVault
+    secretVault,
+    commandAllowlist
   });
   await socketServer.start();
   console.log(`Unix socket server listening on ${config.socketPath}`);
@@ -2299,7 +2639,8 @@ async function main() {
     httpServer = new HttpFallbackServer({
       config,
       policyEnforcer,
-      auditLogger
+      auditLogger,
+      commandAllowlist
     });
     await httpServer.start();
     console.log(`HTTP fallback server listening on ${config.httpHost}:${config.httpPort}`);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@agenshield/broker",
-  "version": "0.6.0",
+  "version": "0.6.1",
   "type": "module",
   "description": "AgenShield broker daemon with Unix socket and HTTP fallback",
   "main": "./index.js",
@@ -24,7 +24,7 @@
   },
   "license": "MIT",
   "dependencies": {
-    "@agenshield/ipc": "0.6.0"
+    "@agenshield/ipc": "0.6.1"
   },
   "devDependencies": {
     "@types/node": "^24.0.0",

package/policies/command-allowlist.d.ts

@@ -17,11 +17,17 @@ export interface AllowedCommand {
 export declare class CommandAllowlist {
     private configPath;
     private dynamicCommands;
+    private lastLoad;
+    private reloadInterval;
     constructor(configPath: string);
     /**
      * Load dynamic commands from disk
      */
     load(): void;
+    /**
+     * Reload dynamic commands if stale
+     */
+    private maybeReload;
     /**
      * Persist dynamic commands to disk
      */
@@ -55,6 +61,7 @@ export declare class CommandAllowlist {
     /**
      * Resolve a command name to an absolute path.
      * Checks builtin commands first, then dynamic commands.
+     * Validates that the resolved path exists on disk.
      * Returns null if the command is not allowed.
      */
     resolve(command: string): string | null;

package/policies/command-allowlist.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"command-allowlist.d.ts","sourceRoot":"","sources":["../../src/policies/command-allowlist.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAKH;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAiDD,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,UAAU,CAAS;IAC3B,OAAO,CAAC,eAAe,CAA0C;gBAErD,UAAU,EAAE,MAAM;IAK9B;;OAEG;IACH,IAAI,IAAI,IAAI;IAkBZ;;OAEG;IACH,IAAI,IAAI,IAAI;IAcZ;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,cAAc,GAAG,IAAI;IAK9B;;OAEG;IACH,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAQ7B;;OAEG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,GAAG,SAAS;IAI7C;;OAEG;IACH,IAAI,IAAI,KAAK,CAAC,cAAc,GAAG;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAsBpD;;OAEG;IACH,WAAW,IAAI,cAAc,EAAE;IAI/B;;OAEG;IACH,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAIhC;;;;OAIG;IACH,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;CAmCxC"}
+{"version":3,"file":"command-allowlist.d.ts","sourceRoot":"","sources":["../../src/policies/command-allowlist.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAKH;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAiDD,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,UAAU,CAAS;IAC3B,OAAO,CAAC,eAAe,CAA0C;IACjE,OAAO,CAAC,QAAQ,CAAa;IAC7B,OAAO,CAAC,cAAc,CAAiB;gBAE3B,UAAU,EAAE,MAAM;IAK9B;;OAEG;IACH,IAAI,IAAI,IAAI;IAqBZ;;OAEG;IACH,OAAO,CAAC,WAAW;IAMnB;;OAEG;IACH,IAAI,IAAI,IAAI;IAcZ;;OAEG;IACH,GAAG,CAAC,GAAG,EAAE,cAAc,GAAG,IAAI;IAK9B;;OAEG;IACH,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAQ7B;;OAEG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,GAAG,SAAS;IAI7C;;OAEG;IACH,IAAI,IAAI,KAAK,CAAC,cAAc,GAAG;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAsBpD;;OAEG;IACH,WAAW,IAAI,cAAc,EAAE;IAI/B;;OAEG;IACH,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAIhC;;;;;OAKG;IACH,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;CA0CxC"}

package/policies/enforcer.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"enforcer.d.ts","sourceRoot":"","sources":["../../src/policies/enforcer.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAElD;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,GAAG,MAAM,GAAG,UAAU,CAAC;IACtC,MAAM,EAAE,OAAO,GAAG,SAAS,GAAG,KAAK,CAAC;IACpC,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,OAAO,GAAG,MAAM,CAAC;IAChC,KAAK,EAAE,UAAU,EAAE,CAAC;IACpB,aAAa,CAAC,EAAE;QACd,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,cAAc,EAAE,MAAM,EAAE,CAAC;KAC1B,CAAC;IACF,kBAAkB,CAAC,EAAE;QACnB,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,WAAW,EAAE,MAAM,EAAE,CAAC;QACtB,YAAY,EAAE,MAAM,EAAE,CAAC;KACxB,CAAC;CACH;AAED,MAAM,WAAW,qBAAqB;IACpC,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,YAAY,CAAC;IAC9B,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAAe;IAC/B,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,QAAQ,CAAU;IAC1B,OAAO,CAAC,QAAQ,CAAa;IAC7B,OAAO,CAAC,cAAc,CAAiB;gBAE3B,OAAO,EAAE,qBAAqB;IAQ1C;;;OAGG;IACH,OAAO,CAAC,aAAa;IAyBrB;;OAEG;IACH,OAAO,CAAC,YAAY;IA4CpB;;OAEG;IACH,OAAO,CAAC,WAAW;IAMnB;;OAEG;IACG,KAAK,CACT,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,cAAc,GACtB,OAAO,CAAC,iBAAiB,CAAC;IAuD7B;;OAEG;IACH,OAAO,CAAC,aAAa;IAmBrB;;OAEG;IACH,OAAO,CAAC,eAAe;IASvB;;OAEG;IACH,OAAO,CAAC,YAAY;IAapB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA8GxB;;OAEG;IACH,WAAW,IAAI,YAAY;IAK3B;;OAEG;IACH,OAAO,CAAC,IAAI,EAAE,UAAU,GAAG,IAAI;IAK/B;;OAEG;IACH,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;CAQhC"}
+{"version":3,"file":"enforcer.d.ts","sourceRoot":"","sources":["../../src/policies/enforcer.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAElD;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,GAAG,MAAM,GAAG,UAAU,CAAC;IACtC,MAAM,EAAE,OAAO,GAAG,SAAS,GAAG,KAAK,CAAC;IACpC,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,OAAO,GAAG,MAAM,CAAC;IAChC,KAAK,EAAE,UAAU,EAAE,CAAC;IACpB,aAAa,CAAC,EAAE;QACd,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,cAAc,EAAE,MAAM,EAAE,CAAC;KAC1B,CAAC;IACF,kBAAkB,CAAC,EAAE;QACnB,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,WAAW,EAAE,MAAM,EAAE,CAAC;QACtB,YAAY,EAAE,MAAM,EAAE,CAAC;KACxB,CAAC;CACH;AAED,MAAM,WAAW,qBAAqB;IACpC,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,YAAY,CAAC;IAC9B,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAAe;IAC/B,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,QAAQ,CAAU;IAC1B,OAAO,CAAC,QAAQ,CAAa;IAC7B,OAAO,CAAC,cAAc,CAAiB;gBAE3B,OAAO,EAAE,qBAAqB;IAQ1C;;;OAGG;IACH,OAAO,CAAC,aAAa;IAyBrB;;OAEG;IACH,OAAO,CAAC,YAAY;IA4CpB;;OAEG;IACH,OAAO,CAAC,WAAW;IAMnB;;OAEG;IACG,KAAK,CACT,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,EAAE,cAAc,GACtB,OAAO,CAAC,iBAAiB,CAAC;IAgE7B;;OAEG;IACH,OAAO,CAAC,aAAa;IAmBrB;;OAEG;IACH,OAAO,CAAC,eAAe;IASvB;;OAEG;IACH,OAAO,CAAC,YAAY;IAapB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA8GxB;;OAEG;IACH,WAAW,IAAI,YAAY;IAK3B;;OAEG;IACH,OAAO,CAAC,IAAI,EAAE,UAAU,GAAG,IAAI;IAK/B;;OAEG;IACH,UAAU,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;CAQhC"}

package/server.d.ts

@@ -8,11 +8,13 @@ import type { BrokerConfig } from './types.js';
 import type { PolicyEnforcer } from './policies/enforcer.js';
 import type { AuditLogger } from './audit/logger.js';
 import type { SecretVault } from './secrets/vault.js';
+import type { CommandAllowlist } from './policies/command-allowlist.js';
 export interface UnixSocketServerOptions {
     config: BrokerConfig;
     policyEnforcer: PolicyEnforcer;
     auditLogger: AuditLogger;
     secretVault: SecretVault;
+    commandAllowlist: CommandAllowlist;
 }
 export declare class UnixSocketServer {
     private server;
@@ -20,6 +22,7 @@ export declare class UnixSocketServer {
     private policyEnforcer;
     private auditLogger;
     private secretVault;
+    private commandAllowlist;
     private connections;
     constructor(options: UnixSocketServerOptions);
     /**

package/server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAKH,OAAO,KAAK,EACV,YAAY,EAIb,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAGtD,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,YAAY,CAAC;IACrB,cAAc,EAAE,cAAc,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,EAAE,WAAW,CAAC;CAC1B;AAED,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAA2B;IACzC,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,WAAW,CAA8B;gBAErC,OAAO,EAAE,uBAAuB;IAO5C;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IA4B5B;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IA0B3B;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA+BxB;;OAEG;YACW,cAAc;IAoG5B;;OAEG;IACH,OAAO,CAAC,UAAU;IA2BlB;;OAEG;IACH,OAAO,CAAC,aAAa;IAWrB;;OAEG;IACH,OAAO,CAAC,aAAa;CAWtB"}
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../src/server.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAKH,OAAO,KAAK,EACV,YAAY,EAIb,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,iCAAiC,CAAC;AAIxE,MAAM,WAAW,uBAAuB;IACtC,MAAM,EAAE,YAAY,CAAC;IACrB,cAAc,EAAE,cAAc,CAAC;IAC/B,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,EAAE,WAAW,CAAC;IACzB,gBAAgB,EAAE,gBAAgB,CAAC;CACpC;AAED,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAA2B;IACzC,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,cAAc,CAAiB;IACvC,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,gBAAgB,CAAmB;IAC3C,OAAO,CAAC,WAAW,CAA8B;gBAErC,OAAO,EAAE,uBAAuB;IAQ5C;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IA4B5B;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IA0B3B;;OAEG;IACH,OAAO,CAAC,gBAAgB;IA+BxB;;OAEG;YACW,cAAc;IAkH5B;;OAEG;IACH,OAAO,CAAC,UAAU;IA2BlB;;OAEG;IACH,OAAO,CAAC,aAAa;IAWrB;;OAEG;IACH,OAAO,CAAC,aAAa;CAWtB"}

package/types.d.ts

@@ -32,6 +32,8 @@ export interface BrokerConfig {
     socketGroup?: string;
     /** Agent home directory (for fs policy paths) */
     agentHome?: string;
+    /** Daemon RPC URL for policy forwarding (default: http://127.0.0.1:5200) */
+    daemonUrl?: string;
 }
 /**
  * Context passed to operation handlers

package/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAc,aAAa,EAAqC,MAAM,iBAAiB,CAAC;AAEpG;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,uBAAuB;IACvB,UAAU,EAAE,MAAM,CAAC;IAEnB,uCAAuC;IACvC,WAAW,EAAE,OAAO,CAAC;IAErB,yBAAyB;IACzB,QAAQ,EAAE,MAAM,CAAC;IAEjB,+CAA+C;IAC/C,QAAQ,EAAE,MAAM,CAAC;IAEjB,iCAAiC;IACjC,UAAU,EAAE,MAAM,CAAC;IAEnB,iCAAiC;IACjC,YAAY,EAAE,MAAM,CAAC;IAErB,wBAAwB;IACxB,YAAY,EAAE,MAAM,CAAC;IAErB,gBAAgB;IAChB,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;IAE9C,iDAAiD;IACjD,QAAQ,EAAE,OAAO,CAAC;IAElB,sCAAsC;IACtC,UAAU,EAAE,MAAM,CAAC;IAEnB,wBAAwB;IACxB,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,yBAAyB;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,6BAA6B;IAC7B,SAAS,EAAE,MAAM,CAAC;IAElB,oCAAoC;IACpC,OAAO,EAAE,QAAQ,GAAG,MAAM,CAAC;IAE3B,+CAA+C;IAC/C,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,gDAAgD;IAChD,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,wBAAwB;IACxB,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,2BAA2B;IAC3B,SAAS,EAAE,IAAI,CAAC;IAEhB,2BAA2B;IAC3B,MAAM,EAAE,YAAY,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa,CAAC,CAAC,GAAG,OAAO;IACxC,sCAAsC;IACtC,OAAO,EAAE,OAAO,CAAC;IAEjB,kCAAkC;IAClC,IAAI,CAAC,EAAE,CAAC,CAAC;IAET,oCAAoC;IACpC,KAAK,CAAC,EAAE;QACN,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC;IAEF,qBAAqB;IACrB,KAAK,CAAC,EAAE;QACN,QAAQ,EAAE,MAAM,CAAC;QACjB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,sBAAsB;IACtB,EAAE,EAAE,MAAM,CAAC;IAEX,gBAAgB;IAChB,SAAS,EAAE,IAAI,CAAC;IAEhB,qBAAqB;IACrB,SAAS,EAAE,aAAa,CAAC;IAEzB,sBAAsB;IACtB,OAAO,EAAE,QAAQ,GAAG,MAAM,CAAC;IAE3B,qBAAqB;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;IAEjB,mCAAmC;IACnC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,4CAA4C;IAC5C,MAAM,EAAE,MAAM,CAAC;IAEf,uBAAuB;IACvB,MAAM,EAAE,SAAS,GAAG,QAAQ,GAAG,OAAO,CAAC;IAEvC,8BAA8B;IAC9B,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB,+BAA+B;IAC/B,UAAU,EAAE,MAAM,CAAC;IAEnB,0BAA0B;IAC1B,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,kBAAkB;IAClB,IAAI,EAAE,MAAM,CAAC;IAEb,sBAAsB;IACtB,cAAc,EAAE,MAAM,CAAC;IAEvB,6CAA6C;IAC7C,iBAAiB,EAAE,aAAa,EAAE,CAAC;IAEnC,wBAAwB;IACxB,SAAS,EAAE,IAAI,CAAC;IAEhB,8BAA8B;IAC9B,cAAc,CAAC,EAAE,IAAI,CAAC;IAEtB,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,MAAM,GAAG,MAAM,CAAC;IACpB,MAAM,EAAE,aAAa,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,MAAM,GAAG,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,YAAY,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,OAAO,GAAG,MAAM,GAAG,SAAS,CAAC;IAC1E,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED,MAAM,WAAW,iBAAiB;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,cAAc,CAAC;CAC3B;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,KAAK,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,GAAG,WAAW,GAAG,SAAS,CAAC;QACvC,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;KACf,CAAC,CAAC;CACJ;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,aAAa;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,4DAA4D;IAC5D,IAAI,EAAE,MAAM,CAAC;IACb,oEAAoE;IACpE,OAAO,EAAE,MAAM,CAAC;IAChB,sDAAsD;IACtD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,wCAAwC;IACxC,MAAM,CAAC,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,kBAAkB;IACjC,0CAA0C;IAC1C,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,KAAK,EAAE,gBAAgB,EAAE,CAAC;IAC1B,0DAA0D;IAC1D,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,mEAAmE;IACnE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,kEAAkE;IAClE,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,kBAAkB;IACjC,qCAAqC;IACrC,SAAS,EAAE,OAAO,CAAC;IACnB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,0CAA0C;IAC1C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,oBAAoB;IACnC,8BAA8B;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,mEAAmE;IACnE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,uCAAuC;IACvC,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED,MAAM,WAAW,oBAAoB;IACnC,uCAAuC;IACvC,WAAW,EAAE,OAAO,CAAC;IACrB,sCAAsC;IACtC,QAAQ,EAAE,MAAM,CAAC;IACjB,kCAAkC;IAClC,cAAc,EAAE,OAAO,CAAC;CACzB"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAc,aAAa,EAAqC,MAAM,iBAAiB,CAAC;AAEpG;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,uBAAuB;IACvB,UAAU,EAAE,MAAM,CAAC;IAEnB,uCAAuC;IACvC,WAAW,EAAE,OAAO,CAAC;IAErB,yBAAyB;IACzB,QAAQ,EAAE,MAAM,CAAC;IAEjB,+CAA+C;IAC/C,QAAQ,EAAE,MAAM,CAAC;IAEjB,iCAAiC;IACjC,UAAU,EAAE,MAAM,CAAC;IAEnB,iCAAiC;IACjC,YAAY,EAAE,MAAM,CAAC;IAErB,wBAAwB;IACxB,YAAY,EAAE,MAAM,CAAC;IAErB,gBAAgB;IAChB,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;IAE9C,iDAAiD;IACjD,QAAQ,EAAE,OAAO,CAAC;IAElB,sCAAsC;IACtC,UAAU,EAAE,MAAM,CAAC;IAEnB,wBAAwB;IACxB,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,yBAAyB;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,4EAA4E;IAC5E,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,6BAA6B;IAC7B,SAAS,EAAE,MAAM,CAAC;IAElB,oCAAoC;IACpC,OAAO,EAAE,QAAQ,GAAG,MAAM,CAAC;IAE3B,+CAA+C;IAC/C,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,gDAAgD;IAChD,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,wBAAwB;IACxB,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,2BAA2B;IAC3B,SAAS,EAAE,IAAI,CAAC;IAEhB,2BAA2B;IAC3B,MAAM,EAAE,YAAY,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa,CAAC,CAAC,GAAG,OAAO;IACxC,sCAAsC;IACtC,OAAO,EAAE,OAAO,CAAC;IAEjB,kCAAkC;IAClC,IAAI,CAAC,EAAE,CAAC,CAAC;IAET,oCAAoC;IACpC,KAAK,CAAC,EAAE;QACN,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,OAAO,CAAC,EAAE,OAAO,CAAC;KACnB,CAAC;IAEF,qBAAqB;IACrB,KAAK,CAAC,EAAE;QACN,QAAQ,EAAE,MAAM,CAAC;QACjB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,sBAAsB;IACtB,EAAE,EAAE,MAAM,CAAC;IAEX,gBAAgB;IAChB,SAAS,EAAE,IAAI,CAAC;IAEhB,qBAAqB;IACrB,SAAS,EAAE,aAAa,CAAC;IAEzB,sBAAsB;IACtB,OAAO,EAAE,QAAQ,GAAG,MAAM,CAAC;IAE3B,qBAAqB;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IAEnB,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;IAEjB,mCAAmC;IACnC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,4CAA4C;IAC5C,MAAM,EAAE,MAAM,CAAC;IAEf,uBAAuB;IACvB,MAAM,EAAE,SAAS,GAAG,QAAQ,GAAG,OAAO,CAAC;IAEvC,8BAA8B;IAC9B,YAAY,CAAC,EAAE,MAAM,CAAC;IAEtB,+BAA+B;IAC/B,UAAU,EAAE,MAAM,CAAC;IAEnB,0BAA0B;IAC1B,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,kBAAkB;IAClB,IAAI,EAAE,MAAM,CAAC;IAEb,sBAAsB;IACtB,cAAc,EAAE,MAAM,CAAC;IAEvB,6CAA6C;IAC7C,iBAAiB,EAAE,aAAa,EAAE,CAAC;IAEnC,wBAAwB;IACxB,SAAS,EAAE,IAAI,CAAC;IAEhB,8BAA8B;IAC9B,cAAc,CAAC,EAAE,IAAI,CAAC;IAEtB,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,MAAM,GAAG,MAAM,CAAC;IACpB,MAAM,EAAE,aAAa,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,MAAM,GAAG,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,YAAY,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,OAAO,GAAG,MAAM,GAAG,SAAS,CAAC;IAC1E,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACjC,IAAI,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED,MAAM,WAAW,iBAAiB;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,cAAc,CAAC;CAC3B;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,KAAK,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,GAAG,WAAW,GAAG,SAAS,CAAC;QACvC,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;KACf,CAAC,CAAC;CACJ;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,aAAa;IAC5B,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,IAAI,CAAC;IACX,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,4DAA4D;IAC5D,IAAI,EAAE,MAAM,CAAC;IACb,oEAAoE;IACpE,OAAO,EAAE,MAAM,CAAC;IAChB,sDAAsD;IACtD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,wCAAwC;IACxC,MAAM,CAAC,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,kBAAkB;IACjC,0CAA0C;IAC1C,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,KAAK,EAAE,gBAAgB,EAAE,CAAC;IAC1B,0DAA0D;IAC1D,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,mEAAmE;IACnE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,kEAAkE;IAClE,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,kBAAkB;IACjC,qCAAqC;IACrC,SAAS,EAAE,OAAO,CAAC;IACnB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,0CAA0C;IAC1C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,oBAAoB;IACnC,8BAA8B;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,mEAAmE;IACnE,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,uCAAuC;IACvC,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED,MAAM,WAAW,oBAAoB;IACnC,uCAAuC;IACvC,WAAW,EAAE,OAAO,CAAC;IACrB,sCAAsC;IACtC,QAAQ,EAAE,MAAM,CAAC;IACjB,kCAAkC;IAClC,cAAc,EAAE,OAAO,CAAC;CACzB"}