@agentbouncr/core 0.1.0

package/dist/lifecycle/kill-switch.d.ts

@@ -0,0 +1,46 @@
+/**
+ * @agentbouncr/core — Kill-Switch Manager
+ *
+ * Deterministic emergency stop — no LLM, no network.
+ * Once activated, all evaluate() calls are denied.
+ * Reset requires explicit admin action (no auto-recovery).
+ */
+import type pino from 'pino';
+import type { GovernanceEventEmitter } from '../events/event-emitter.js';
+export interface KillSwitchStatus {
+    active: boolean;
+    activatedAt?: string;
+    reason?: string;
+}
+export declare class KillSwitchManager {
+    private readonly logger;
+    private readonly eventEmitter?;
+    private globalActive;
+    private globalActivatedAt?;
+    private globalReason?;
+    private readonly tenantState;
+    constructor(logger: pino.Logger, eventEmitter?: GovernanceEventEmitter | undefined);
+    /**
+     * Check if the kill-switch is currently active.
+     * With tenantId: checks tenant-specific state.
+     * Without: checks global state.
+     */
+    isActive(tenantId?: string): boolean;
+    /**
+     * Activate the kill-switch. All governance evaluations will be denied.
+     * Idempotent — calling activate() when already active is a no-op.
+     * With tenantId: only affects the specified tenant.
+     */
+    activate(reason: string, tenantId?: string): void;
+    /**
+     * Reset the kill-switch. Requires explicit admin action.
+     * With tenantId: resets only the specified tenant.
+     */
+    reset(tenantId?: string, reason?: string): void;
+    /**
+     * Get the current kill-switch status.
+     * With tenantId: returns tenant-specific status.
+     */
+    getStatus(tenantId?: string): KillSwitchStatus;
+}
+//# sourceMappingURL=kill-switch.d.ts.map

package/dist/lifecycle/kill-switch.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"kill-switch.d.ts","sourceRoot":"","sources":["../../src/lifecycle/kill-switch.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AAIzE,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,OAAO,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAID,qBAAa,iBAAiB;IAU1B,OAAO,CAAC,QAAQ,CAAC,MAAM;IACvB,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;IAThC,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,iBAAiB,CAAC,CAAS;IACnC,OAAO,CAAC,YAAY,CAAC,CAAS;IAG9B,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAiF;gBAG1F,MAAM,EAAE,IAAI,CAAC,MAAM,EACnB,YAAY,CAAC,EAAE,sBAAsB,YAAA;IAGxD;;;;OAIG;IACH,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,OAAO;IAOpC;;;;OAIG;IACH,QAAQ,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI;IAwCjD;;;OAGG;IACH,KAAK,CAAC,QAAQ,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI;IA0C/C;;;OAGG;IACH,SAAS,CAAC,QAAQ,CAAC,EAAE,MAAM,GAAG,gBAAgB;CAe/C"}

package/dist/lifecycle/kill-switch.js

@@ -0,0 +1,119 @@
+/**
+ * @agentbouncr/core — Kill-Switch Manager
+ *
+ * Deterministic emergency stop — no LLM, no network.
+ * Once activated, all evaluate() calls are denied.
+ * Reset requires explicit admin action (no auto-recovery).
+ */
+// --- Kill-Switch Manager ---
+export class KillSwitchManager {
+    logger;
+    eventEmitter;
+    // Global state (Stufe-1 users without tenantId)
+    globalActive = false;
+    globalActivatedAt;
+    globalReason;
+    // Per-tenant state (Multi-Tenant)
+    tenantState = new Map();
+    constructor(logger, eventEmitter) {
+        this.logger = logger;
+        this.eventEmitter = eventEmitter;
+    }
+    /**
+     * Check if the kill-switch is currently active.
+     * With tenantId: checks tenant-specific state.
+     * Without: checks global state.
+     */
+    isActive(tenantId) {
+        if (tenantId) {
+            return this.tenantState.get(tenantId)?.active ?? false;
+        }
+        return this.globalActive;
+    }
+    /**
+     * Activate the kill-switch. All governance evaluations will be denied.
+     * Idempotent — calling activate() when already active is a no-op.
+     * With tenantId: only affects the specified tenant.
+     */
+    activate(reason, tenantId) {
+        if (tenantId) {
+            const state = this.tenantState.get(tenantId);
+            if (state?.active)
+                return;
+            const activatedAt = new Date().toISOString();
+            this.tenantState.set(tenantId, { active: true, activatedAt, reason });
+            this.logger.fatal({ reason, activatedAt, tenantId }, 'Kill-Switch activated — all tool calls will be denied');
+            this.eventEmitter?.emitEvent({
+                type: 'killswitch.activated',
+                timestamp: activatedAt,
+                tenantId,
+                data: { reason, tenantId },
+            });
+            return;
+        }
+        if (this.globalActive)
+            return;
+        this.globalActive = true;
+        this.globalActivatedAt = new Date().toISOString();
+        this.globalReason = reason;
+        this.logger.fatal({ reason, activatedAt: this.globalActivatedAt }, 'Kill-Switch activated — all tool calls will be denied');
+        this.eventEmitter?.emitEvent({
+            type: 'killswitch.activated',
+            timestamp: this.globalActivatedAt,
+            data: { reason },
+        });
+    }
+    /**
+     * Reset the kill-switch. Requires explicit admin action.
+     * With tenantId: resets only the specified tenant.
+     */
+    reset(tenantId, reason) {
+        if (tenantId) {
+            const state = this.tenantState.get(tenantId);
+            if (!state?.active)
+                return;
+            this.logger.warn({ previousReason: state.reason, activatedAt: state.activatedAt, tenantId, resetReason: reason }, 'Kill-Switch reset');
+            this.tenantState.delete(tenantId);
+            this.eventEmitter?.emitEvent({
+                type: 'killswitch.deactivated',
+                timestamp: new Date().toISOString(),
+                tenantId,
+                data: { reason: reason ?? 'Manual reset', previousReason: state.reason, tenantId },
+            });
+            return;
+        }
+        if (!this.globalActive)
+            return;
+        const previousReason = this.globalReason;
+        const activatedAt = this.globalActivatedAt;
+        this.logger.warn({ previousReason, activatedAt, resetReason: reason }, 'Kill-Switch reset');
+        this.globalActive = false;
+        this.globalActivatedAt = undefined;
+        this.globalReason = undefined;
+        this.eventEmitter?.emitEvent({
+            type: 'killswitch.deactivated',
+            timestamp: new Date().toISOString(),
+            data: { reason: reason ?? 'Manual reset', previousReason },
+        });
+    }
+    /**
+     * Get the current kill-switch status.
+     * With tenantId: returns tenant-specific status.
+     */
+    getStatus(tenantId) {
+        if (tenantId) {
+            const state = this.tenantState.get(tenantId);
+            return {
+                active: state?.active ?? false,
+                activatedAt: state?.activatedAt,
+                reason: state?.reason,
+            };
+        }
+        return {
+            active: this.globalActive,
+            activatedAt: this.globalActivatedAt,
+            reason: this.globalReason,
+        };
+    }
+}
+//# sourceMappingURL=kill-switch.js.map

package/dist/lifecycle/kill-switch.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"kill-switch.js","sourceRoot":"","sources":["../../src/lifecycle/kill-switch.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAaH,8BAA8B;AAE9B,MAAM,OAAO,iBAAiB;IAUT;IACA;IAVnB,gDAAgD;IACxC,YAAY,GAAG,KAAK,CAAC;IACrB,iBAAiB,CAAU;IAC3B,YAAY,CAAU;IAE9B,kCAAkC;IACjB,WAAW,GAAG,IAAI,GAAG,EAAsE,CAAC;IAE7G,YACmB,MAAmB,EACnB,YAAqC;QADrC,WAAM,GAAN,MAAM,CAAa;QACnB,iBAAY,GAAZ,YAAY,CAAyB;IACrD,CAAC;IAEJ;;;;OAIG;IACH,QAAQ,CAAC,QAAiB;QACxB,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,MAAM,IAAI,KAAK,CAAC;QACzD,CAAC;QACD,OAAO,IAAI,CAAC,YAAY,CAAC;IAC3B,CAAC;IAED;;;;OAIG;IACH,QAAQ,CAAC,MAAc,EAAE,QAAiB;QACxC,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAC7C,IAAI,KAAK,EAAE,MAAM;gBAAE,OAAO;YAE1B,MAAM,WAAW,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YAC7C,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,MAAM,EAAE,CAAC,CAAC;YAEtE,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,EAAE,MAAM,EAAE,WAAW,EAAE,QAAQ,EAAE,EACjC,uDAAuD,CACxD,CAAC;YAEF,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;gBAC3B,IAAI,EAAE,sBAAsB;gBAC5B,SAAS,EAAE,WAAW;gBACtB,QAAQ;gBACR,IAAI,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE;aAC3B,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,IAAI,CAAC,YAAY;YAAE,OAAO;QAE9B,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC;QACzB,IAAI,CAAC,iBAAiB,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAClD,IAAI,CAAC,YAAY,GAAG,MAAM,CAAC;QAE3B,IAAI,CAAC,MAAM,CAAC,KAAK,CACf,EAAE,MAAM,EAAE,WAAW,EAAE,IAAI,CAAC,iBAAiB,EAAE,EAC/C,uDAAuD,CACxD,CAAC;QAEF,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;YAC3B,IAAI,EAAE,sBAAsB;YAC5B,SAAS,EAAE,IAAI,CAAC,iBAAiB;YACjC,IAAI,EAAE,EAAE,MAAM,EAAE;SACjB,CAAC,CAAC;IACL,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,QAAiB,EAAE,MAAe;QACtC,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAC7C,IAAI,CAAC,KAAK,EAAE,MAAM;gBAAE,OAAO;YAE3B,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,EAAE,cAAc,EAAE,KAAK,CAAC,MAAM,EAAE,WAAW,EAAE,KAAK,CAAC,WAAW,EAAE,QAAQ,EAAE,WAAW,EAAE,MAAM,EAAE,EAC/F,mBAAmB,CACpB,CAAC;YAEF,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;YAElC,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;gBAC3B,IAAI,EAAE,wBAAwB;gBAC9B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,QAAQ;gBACR,IAAI,EAAE,EAAE,MAAM,EAAE,MAAM,IAAI,cAAc,EAAE,cAAc,EAAE,KAAK,CAAC,MAAM,EAAE,QAAQ,EAAE;aACnF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,YAAY;YAAE,OAAO;QAE/B,MAAM,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC;QACzC,MAAM,WAAW,GAAG,IAAI,CAAC,iBAAiB,CAAC;QAE3C,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,EAAE,cAAc,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,EAAE,EACpD,mBAAmB,CACpB,CAAC;QAEF,IAAI,CAAC,YAAY,GAAG,KAAK,CAAC;QAC1B,IAAI,CAAC,iBAAiB,GAAG,SAAS,CAAC;QACnC,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;QAE9B,IAAI,CAAC,YAAY,EAAE,SAAS,CAAC;YAC3B,IAAI,EAAE,wBAAwB;YAC9B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,IAAI,EAAE,EAAE,MAAM,EAAE,MAAM,IAAI,cAAc,EAAE,cAAc,EAAE;SAC3D,CAAC,CAAC;IACL,CAAC;IAED;;;OAGG;IACH,SAAS,CAAC,QAAiB;QACzB,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAC7C,OAAO;gBACL,MAAM,EAAE,KAAK,EAAE,MAAM,IAAI,KAAK;gBAC9B,WAAW,EAAE,KAAK,EAAE,WAAW;gBAC/B,MAAM,EAAE,KAAK,EAAE,MAAM;aACtB,CAAC;QACJ,CAAC;QACD,OAAO;YACL,MAAM,EAAE,IAAI,CAAC,YAAY;YACzB,WAAW,EAAE,IAAI,CAAC,iBAAiB;YACnC,MAAM,EAAE,IAAI,CAAC,YAAY;SAC1B,CAAC;IACJ,CAAC;CACF"}

package/dist/lifecycle/middleware-schemas.d.ts

@@ -0,0 +1,49 @@
+/**
+ * @agentbouncr/core — Zod Schemas for GovernanceMiddleware Inputs
+ *
+ * Runtime validation for EvaluateRequest and AgentConfig.
+ * Policy validation re-uses policySchema from policy-schema.ts.
+ */
+import { z } from 'zod/v4';
+export declare const evaluateRequestSchema: z.ZodObject<{
+    agentId: z.ZodString;
+    tool: z.ZodString;
+    params: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+    traceId: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+export declare const agentConfigSchema: z.ZodObject<{
+    agentId: z.ZodString;
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    allowedTools: z.ZodDefault<z.ZodArray<z.ZodString>>;
+    policyName: z.ZodOptional<z.ZodString>;
+    metadata: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+}, z.core.$strip>;
+export declare const dryRunRequestSchema: z.ZodObject<{
+    agentId: z.ZodString;
+    tool: z.ZodString;
+    params: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+    traceId: z.ZodOptional<z.ZodString>;
+    policy: z.ZodObject<{
+        name: z.ZodString;
+        version: z.ZodString;
+        agentId: z.ZodOptional<z.ZodString>;
+        rules: z.ZodArray<z.ZodObject<{
+            name: z.ZodOptional<z.ZodString>;
+            tool: z.ZodString;
+            effect: z.ZodEnum<{
+                allow: "allow";
+                deny: "deny";
+            }>;
+            condition: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodRecord<z.ZodString, z.ZodUnion<readonly [z.ZodString, z.ZodNumber, z.ZodBoolean, z.ZodArray<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>>]>>>>;
+            reason: z.ZodOptional<z.ZodString>;
+            rateLimit: z.ZodOptional<z.ZodObject<{
+                maxPerMinute: z.ZodNumber;
+            }, z.core.$strip>>;
+            requireApproval: z.ZodOptional<z.ZodBoolean>;
+        }, z.core.$strip>>;
+        createdAt: z.ZodString;
+        updatedAt: z.ZodString;
+    }, z.core.$strip>;
+}, z.core.$strip>;
+//# sourceMappingURL=middleware-schemas.d.ts.map

package/dist/lifecycle/middleware-schemas.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"middleware-schemas.d.ts","sourceRoot":"","sources":["../../src/lifecycle/middleware-schemas.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,QAAQ,CAAC;AAK3B,eAAO,MAAM,qBAAqB;;;;;iBAKhC,CAAC;AAIH,eAAO,MAAM,iBAAiB;;;;;;;iBAO5B,CAAC;AAIH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;iBAM9B,CAAC"}

package/dist/lifecycle/middleware-schemas.js

@@ -0,0 +1,33 @@
+/**
+ * @agentbouncr/core — Zod Schemas for GovernanceMiddleware Inputs
+ *
+ * Runtime validation for EvaluateRequest and AgentConfig.
+ * Policy validation re-uses policySchema from policy-schema.ts.
+ */
+import { z } from 'zod/v4';
+import { policySchema } from '../core/policy-schema.js';
+// --- EvaluateRequest Schema ---
+export const evaluateRequestSchema = z.object({
+    agentId: z.string().min(1),
+    tool: z.string().min(1),
+    params: z.record(z.string(), z.unknown()).optional(),
+    traceId: z.string().optional(),
+});
+// --- AgentConfig Schema ---
+export const agentConfigSchema = z.object({
+    agentId: z.string().min(1),
+    name: z.string().min(1),
+    description: z.string().optional(),
+    allowedTools: z.array(z.string()).default([]),
+    policyName: z.string().optional(),
+    metadata: z.record(z.string(), z.unknown()).optional(),
+});
+// --- Dry-Run Request Schema ---
+export const dryRunRequestSchema = z.object({
+    agentId: z.string().min(1),
+    tool: z.string().min(1),
+    params: z.record(z.string(), z.unknown()).optional(),
+    traceId: z.string().optional(),
+    policy: policySchema,
+});
+//# sourceMappingURL=middleware-schemas.js.map

package/dist/lifecycle/middleware-schemas.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"middleware-schemas.js","sourceRoot":"","sources":["../../src/lifecycle/middleware-schemas.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,QAAQ,CAAC;AAC3B,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AAExD,iCAAiC;AAEjC,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC5C,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE;IACpD,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC/B,CAAC,CAAC;AAEH,6BAA6B;AAE7B,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,CAAC;IACxC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,YAAY,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IAC7C,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE;CACvD,CAAC,CAAC;AAEH,iCAAiC;AAEjC,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC1C,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE;IACpD,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,MAAM,EAAE,YAAY;CACrB,CAAC,CAAC"}

package/dist/providers/vercel-ai-adapter.d.ts

@@ -0,0 +1,42 @@
+/**
+ * @agentbouncr/core — Vercel AI SDK Adapter
+ *
+ * Wraps Vercel AI SDK tools with governance checks.
+ * Uses structural typing — NO dependency on the 'ai' package.
+ *
+ * Before each tool execution:
+ * 1. PolicyEngine.evaluate() is called
+ * 2. Events are emitted (tool_call.allowed / tool_call.denied / tool_call.error)
+ * 3. On deny: GovernanceError is thrown, execute is NOT called
+ */
+import type pino from 'pino';
+import type { Policy } from '../types/index.js';
+import type { PolicyEngine } from '../core/policy-engine.js';
+import type { GovernanceEventEmitter } from '../events/event-emitter.js';
+export interface AITool {
+    type?: 'function';
+    description?: string;
+    parameters: unknown;
+    execute?: (params: Record<string, unknown>, options?: Record<string, unknown>) => PromiseLike<unknown>;
+}
+export type AIToolSet = Record<string, AITool>;
+export interface GovernanceWrapOptions {
+    agentId: string;
+    policyEngine: PolicyEngine;
+    policy: Policy;
+    eventEmitter?: GovernanceEventEmitter;
+    logger: pino.Logger;
+}
+/**
+ * Wrap Vercel AI SDK tools with governance checks.
+ *
+ * Each tool's execute function is intercepted:
+ * - PolicyEngine.evaluate() runs BEFORE the original execute
+ * - On deny: throws GovernanceError, original execute is NEVER called
+ * - On allow: calls original execute, returns result
+ * - On error: emits tool_call.error, throws GovernanceError
+ *
+ * Tools without execute (description-only) are returned unchanged.
+ */
+export declare function wrapToolsWithGovernance(tools: AIToolSet, options: GovernanceWrapOptions): AIToolSet;
+//# sourceMappingURL=vercel-ai-adapter.d.ts.map

package/dist/providers/vercel-ai-adapter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vercel-ai-adapter.d.ts","sourceRoot":"","sources":["../../src/providers/vercel-ai-adapter.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,KAAK,EAAE,MAAM,EAAmB,MAAM,mBAAmB,CAAC;AAEjE,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAC;AAC7D,OAAO,KAAK,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AAIzE,MAAM,WAAW,MAAM;IACrB,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,OAAO,CAAC;IACpB,OAAO,CAAC,EAAE,CACR,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAC9B,WAAW,CAAC,OAAO,CAAC,CAAC;CAC3B;AAED,MAAM,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AAE/C,MAAM,WAAW,qBAAqB;IACpC,OAAO,EAAE,MAAM,CAAC;IAChB,YAAY,EAAE,YAAY,CAAC;IAC3B,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,CAAC,EAAE,sBAAsB,CAAC;IACtC,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC;CACrB;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,uBAAuB,CACrC,KAAK,EAAE,SAAS,EAChB,OAAO,EAAE,qBAAqB,GAC7B,SAAS,CAgBX"}

package/dist/providers/vercel-ai-adapter.js

@@ -0,0 +1,96 @@
+/**
+ * @agentbouncr/core — Vercel AI SDK Adapter
+ *
+ * Wraps Vercel AI SDK tools with governance checks.
+ * Uses structural typing — NO dependency on the 'ai' package.
+ *
+ * Before each tool execution:
+ * 1. PolicyEngine.evaluate() is called
+ * 2. Events are emitted (tool_call.allowed / tool_call.denied / tool_call.error)
+ * 3. On deny: GovernanceError is thrown, execute is NOT called
+ */
+import { GovernanceError } from '../types/index.js';
+/**
+ * Wrap Vercel AI SDK tools with governance checks.
+ *
+ * Each tool's execute function is intercepted:
+ * - PolicyEngine.evaluate() runs BEFORE the original execute
+ * - On deny: throws GovernanceError, original execute is NEVER called
+ * - On allow: calls original execute, returns result
+ * - On error: emits tool_call.error, throws GovernanceError
+ *
+ * Tools without execute (description-only) are returned unchanged.
+ */
+export function wrapToolsWithGovernance(tools, options) {
+    const wrapped = {};
+    for (const [toolName, tool] of Object.entries(tools)) {
+        if (!tool.execute) {
+            wrapped[toolName] = tool;
+            continue;
+        }
+        wrapped[toolName] = {
+            ...tool,
+            execute: createGovernedExecute(toolName, tool.execute, options),
+        };
+    }
+    return wrapped;
+}
+function createGovernedExecute(toolName, originalExecute, options) {
+    const { agentId, policyEngine, policy, eventEmitter, logger } = options;
+    return async (params, executeOptions) => {
+        const request = {
+            agentId,
+            tool: toolName,
+            params,
+        };
+        const evaluation = policyEngine.evaluate(request, policy);
+        if (!evaluation.allowed) {
+            logger.warn({ agentId, tool: toolName, traceId: evaluation.traceId, reason: evaluation.reason }, 'Tool call denied by governance');
+            eventEmitter?.emitEvent({
+                type: 'tool_call.denied',
+                timestamp: new Date().toISOString(),
+                traceId: evaluation.traceId,
+                agentId,
+                data: {
+                    tool: toolName,
+                    params,
+                    reason: evaluation.reason,
+                    appliedRules: evaluation.appliedRules,
+                },
+            });
+            throw new GovernanceError(evaluation.reason ?? `Tool '${toolName}' denied by policy`, 'POLICY_DENIED', 'policy_denial', { agentId, tool: toolName, traceId: evaluation.traceId });
+        }
+        // Allowed — emit event and execute
+        eventEmitter?.emitEvent({
+            type: 'tool_call.allowed',
+            timestamp: new Date().toISOString(),
+            traceId: evaluation.traceId,
+            agentId,
+            data: {
+                tool: toolName,
+                params,
+                appliedRules: evaluation.appliedRules,
+            },
+        });
+        try {
+            const result = await originalExecute(params, executeOptions);
+            return result;
+        }
+        catch (err) {
+            logger.error({ agentId, tool: toolName, traceId: evaluation.traceId, error: String(err) }, 'Tool execution failed');
+            eventEmitter?.emitEvent({
+                type: 'tool_call.error',
+                timestamp: new Date().toISOString(),
+                traceId: evaluation.traceId,
+                agentId,
+                data: {
+                    tool: toolName,
+                    params,
+                    error: String(err),
+                },
+            });
+            throw new GovernanceError('Tool execution failed', 'TOOL_EXECUTION_ERROR', 'tool_error', { agentId, tool: toolName, traceId: evaluation.traceId, originalError: String(err) });
+        }
+    };
+}
+//# sourceMappingURL=vercel-ai-adapter.js.map

package/dist/providers/vercel-ai-adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vercel-ai-adapter.js","sourceRoot":"","sources":["../../src/providers/vercel-ai-adapter.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAIH,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AA0BpD;;;;;;;;;;GAUG;AACH,MAAM,UAAU,uBAAuB,CACrC,KAAgB,EAChB,OAA8B;IAE9B,MAAM,OAAO,GAAc,EAAE,CAAC;IAE9B,KAAK,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACrD,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;YAClB,OAAO,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC;YACzB,SAAS;QACX,CAAC;QAED,OAAO,CAAC,QAAQ,CAAC,GAAG;YAClB,GAAG,IAAI;YACP,OAAO,EAAE,qBAAqB,CAAC,QAAQ,EAAE,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC;SAChE,CAAC;IACJ,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,qBAAqB,CAC5B,QAAgB,EAChB,eAA+C,EAC/C,OAA8B;IAE9B,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;IAExE,OAAO,KAAK,EACV,MAA+B,EAC/B,cAAwC,EACtB,EAAE;QACpB,MAAM,OAAO,GAAoB;YAC/B,OAAO;YACP,IAAI,EAAE,QAAQ;YACd,MAAM;SACP,CAAC;QAEF,MAAM,UAAU,GAAG,YAAY,CAAC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAE1D,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;YACxB,MAAM,CAAC,IAAI,CACT,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,UAAU,CAAC,MAAM,EAAE,EACnF,gCAAgC,CACjC,CAAC;YAEF,YAAY,EAAE,SAAS,CAAC;gBACtB,IAAI,EAAE,kBAAkB;gBACxB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,OAAO;gBACP,IAAI,EAAE;oBACJ,IAAI,EAAE,QAAQ;oBACd,MAAM;oBACN,MAAM,EAAE,UAAU,CAAC,MAAM;oBACzB,YAAY,EAAE,UAAU,CAAC,YAAY;iBACtC;aACF,CAAC,CAAC;YAEH,MAAM,IAAI,eAAe,CACvB,UAAU,CAAC,MAAM,IAAI,SAAS,QAAQ,oBAAoB,EAC1D,eAAe,EACf,eAAe,EACf,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,CACzD,CAAC;QACJ,CAAC;QAED,mCAAmC;QACnC,YAAY,EAAE,SAAS,CAAC;YACtB,IAAI,EAAE,mBAAmB;YACzB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,OAAO,EAAE,UAAU,CAAC,OAAO;YAC3B,OAAO;YACP,IAAI,EAAE;gBACJ,IAAI,EAAE,QAAQ;gBACd,MAAM;gBACN,YAAY,EAAE,UAAU,CAAC,YAAY;aACtC;SACF,CAAC,CAAC;QAEH,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,eAAe,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;YAC7D,OAAO,MAAM,CAAC;QAChB,CAAC;QAAC,OAAO,GAAY,EAAE,CAAC;YACtB,MAAM,CAAC,KAAK,CACV,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,EAC5E,uBAAuB,CACxB,CAAC;YAEF,YAAY,EAAE,SAAS,CAAC;gBACtB,IAAI,EAAE,iBAAiB;gBACvB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,OAAO,EAAE,UAAU,CAAC,OAAO;gBAC3B,OAAO;gBACP,IAAI,EAAE;oBACJ,IAAI,EAAE,QAAQ;oBACd,MAAM;oBACN,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC;iBACnB;aACF,CAAC,CAAC;YAEH,MAAM,IAAI,eAAe,CACvB,uBAAuB,EACvB,sBAAsB,EACtB,YAAY,EACZ,EAAE,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,CAAC,OAAO,EAAE,aAAa,EAAE,MAAM,CAAC,GAAG,CAAC,EAAE,CACrF,CAAC;QACJ,CAAC;IACH,CAAC,CAAC;AACJ,CAAC"}

package/dist/schema/tool-schema.d.ts

@@ -0,0 +1,62 @@
+/**
+ * @agentbouncr/core — Canonical Governance Tool Schema
+ *
+ * Einheitliches Tool-Format fuer alle Adapter (MCP, Vercel AI SDK, OpenAI, LangChain, n8n).
+ * Zod-Schemas fuer Runtime-Validierung, TypeScript-Types per Inference.
+ */
+import { z } from 'zod/v4';
+export declare const riskLevelSchema: z.ZodEnum<{
+    critical: "critical";
+    high: "high";
+    medium: "medium";
+    low: "low";
+}>;
+export type RiskLevel = z.infer<typeof riskLevelSchema>;
+export declare const toolSourceSchema: z.ZodEnum<{
+    manual: "manual";
+    import: "import";
+    mcp: "mcp";
+}>;
+export type ToolSource = z.infer<typeof toolSourceSchema>;
+export declare const toolParameterConstraintsSchema: z.ZodObject<{
+    enum: z.ZodOptional<z.ZodArray<z.ZodUnion<readonly [z.ZodString, z.ZodNumber]>>>;
+    min: z.ZodOptional<z.ZodNumber>;
+    max: z.ZodOptional<z.ZodNumber>;
+    maxLength: z.ZodOptional<z.ZodNumber>;
+    pattern: z.ZodOptional<z.ZodString>;
+    jsonSchema: z.ZodOptional<z.ZodRecord<z.ZodString, z.ZodUnknown>>;
+}, z.core.$strip>;
+export type ToolParameterConstraints = z.infer<typeof toolParameterConstraintsSchema>;
+export declare const governanceToolParameterSchema: z.ZodType<GovernanceToolParameter>;
+export interface GovernanceToolParameter {
+    name: string;
+    type: 'string' | 'number' | 'boolean' | 'object' | 'array';
+    required: boolean;
+    description?: string;
+    default?: unknown;
+    children?: GovernanceToolParameter[];
+    constraints?: ToolParameterConstraints;
+}
+export declare const governanceToolSchema: z.ZodObject<{
+    name: z.ZodString;
+    description: z.ZodOptional<z.ZodString>;
+    parameters: z.ZodArray<z.ZodType<GovernanceToolParameter, unknown, z.core.$ZodTypeInternals<GovernanceToolParameter, unknown>>>;
+    riskLevel: z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>;
+    category: z.ZodOptional<z.ZodString>;
+    source: z.ZodEnum<{
+        manual: "manual";
+        import: "import";
+        mcp: "mcp";
+    }>;
+    version: z.ZodOptional<z.ZodString>;
+    tags: z.ZodOptional<z.ZodArray<z.ZodString>>;
+    timeout: z.ZodOptional<z.ZodNumber>;
+}, z.core.$strip>;
+export type GovernanceTool = z.infer<typeof governanceToolSchema>;
+export declare function parametersToJsonSchema(params: GovernanceToolParameter[]): Record<string, unknown>;
+//# sourceMappingURL=tool-schema.d.ts.map

package/dist/schema/tool-schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool-schema.d.ts","sourceRoot":"","sources":["../../src/schema/tool-schema.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,QAAQ,CAAC;AAI3B,eAAO,MAAM,eAAe;;;;;EAAgD,CAAC;AAC7E,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAIxD,eAAO,MAAM,gBAAgB;;;;EAAsC,CAAC;AACpE,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAI1D,eAAO,MAAM,8BAA8B;;;;;;;iBAOzC,CAAC;AAEH,MAAM,MAAM,wBAAwB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,8BAA8B,CAAC,CAAC;AAItF,eAAO,MAAM,6BAA6B,EAAE,CAAC,CAAC,OAAO,CAAC,uBAAuB,CAQ3E,CAAC;AAEH,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,QAAQ,GAAG,QAAQ,GAAG,SAAS,GAAG,QAAQ,GAAG,OAAO,CAAC;IAC3D,QAAQ,EAAE,OAAO,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,QAAQ,CAAC,EAAE,uBAAuB,EAAE,CAAC;IACrC,WAAW,CAAC,EAAE,wBAAwB,CAAC;CACxC;AAID,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;;;;;iBAU/B,CAAC;AAEH,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAIlE,wBAAgB,sBAAsB,CACpC,MAAM,EAAE,uBAAuB,EAAE,GAChC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CA+CzB"}

package/dist/schema/tool-schema.js

@@ -0,0 +1,88 @@
+/**
+ * @agentbouncr/core — Canonical Governance Tool Schema
+ *
+ * Einheitliches Tool-Format fuer alle Adapter (MCP, Vercel AI SDK, OpenAI, LangChain, n8n).
+ * Zod-Schemas fuer Runtime-Validierung, TypeScript-Types per Inference.
+ */
+import { z } from 'zod/v4';
+// --- Risk Level ---
+export const riskLevelSchema = z.enum(['critical', 'high', 'medium', 'low']);
+// --- Tool Source ---
+export const toolSourceSchema = z.enum(['manual', 'import', 'mcp']);
+// --- Parameter Constraints ---
+export const toolParameterConstraintsSchema = z.object({
+    enum: z.array(z.union([z.string(), z.number()])).optional(),
+    min: z.number().optional(),
+    max: z.number().optional(),
+    maxLength: z.number().optional(),
+    pattern: z.string().optional(),
+    jsonSchema: z.record(z.string(), z.unknown()).optional(),
+});
+// --- Tool Parameter (recursive for nested objects) ---
+export const governanceToolParameterSchema = z.object({
+    name: z.string().min(1),
+    type: z.enum(['string', 'number', 'boolean', 'object', 'array']),
+    required: z.boolean(),
+    description: z.string().optional(),
+    default: z.unknown().optional(),
+    children: z.lazy(() => z.array(governanceToolParameterSchema)).optional(),
+    constraints: toolParameterConstraintsSchema.optional(),
+});
+// --- Governance Tool ---
+export const governanceToolSchema = z.object({
+    name: z.string().min(1),
+    description: z.string().optional(),
+    parameters: z.array(governanceToolParameterSchema),
+    riskLevel: riskLevelSchema,
+    category: z.string().optional(),
+    source: toolSourceSchema,
+    version: z.string().optional(),
+    tags: z.array(z.string()).optional(),
+    timeout: z.number().positive().optional(),
+});
+// --- Utility: Convert GovernanceToolParameter[] to JSON Schema ---
+export function parametersToJsonSchema(params) {
+    const properties = {};
+    const required = [];
+    for (const param of params) {
+        const prop = { type: param.type };
+        if (param.description) {
+            prop.description = param.description;
+        }
+        if (param.default !== undefined) {
+            prop.default = param.default;
+        }
+        if (param.constraints) {
+            if (param.constraints.enum)
+                prop.enum = param.constraints.enum;
+            if (param.constraints.min !== undefined)
+                prop.minimum = param.constraints.min;
+            if (param.constraints.max !== undefined)
+                prop.maximum = param.constraints.max;
+            if (param.constraints.maxLength !== undefined)
+                prop.maxLength = param.constraints.maxLength;
+            if (param.constraints.pattern)
+                prop.pattern = param.constraints.pattern;
+        }
+        if (param.type === 'object' && param.children) {
+            const nested = parametersToJsonSchema(param.children);
+            prop.properties = nested.properties;
+            if (nested.required?.length > 0) {
+                prop.required = nested.required;
+            }
+        }
+        if (param.type === 'array' && param.children?.length === 1) {
+            prop.items = { type: param.children[0].type };
+        }
+        properties[param.name] = prop;
+        if (param.required) {
+            required.push(param.name);
+        }
+    }
+    return {
+        type: 'object',
+        properties,
+        ...(required.length > 0 ? { required } : {}),
+    };
+}
+//# sourceMappingURL=tool-schema.js.map

package/dist/schema/tool-schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool-schema.js","sourceRoot":"","sources":["../../src/schema/tool-schema.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,QAAQ,CAAC;AAE3B,qBAAqB;AAErB,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC;AAG7E,sBAAsB;AAEtB,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC;AAGpE,gCAAgC;AAEhC,MAAM,CAAC,MAAM,8BAA8B,GAAG,CAAC,CAAC,MAAM,CAAC;IACrD,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC3D,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC1B,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC1B,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,UAAU,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE;CACzD,CAAC,CAAC;AAIH,wDAAwD;AAExD,MAAM,CAAC,MAAM,6BAA6B,GAAuC,CAAC,CAAC,MAAM,CAAC;IACxF,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;IAChE,QAAQ,EAAE,CAAC,CAAC,OAAO,EAAE;IACrB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAC/B,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,6BAA6B,CAAC,CAAC,CAAC,QAAQ,EAAE;IACzE,WAAW,EAAE,8BAA8B,CAAC,QAAQ,EAAE;CACvD,CAAC,CAAC;AAYH,0BAA0B;AAE1B,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC3C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,UAAU,EAAE,CAAC,CAAC,KAAK,CAAC,6BAA6B,CAAC;IAClD,SAAS,EAAE,eAAe;IAC1B,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC/B,MAAM,EAAE,gBAAgB;IACxB,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACpC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;CAC1C,CAAC,CAAC;AAIH,oEAAoE;AAEpE,MAAM,UAAU,sBAAsB,CACpC,MAAiC;IAEjC,MAAM,UAAU,GAA4B,EAAE,CAAC;IAC/C,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,MAAM,IAAI,GAA4B,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC;QAE3D,IAAI,KAAK,CAAC,WAAW,EAAE,CAAC;YACtB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC,WAAW,CAAC;QACvC,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;YAChC,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC;QAC/B,CAAC;QAED,IAAI,KAAK,CAAC,WAAW,EAAE,CAAC;YACtB,IAAI,KAAK,CAAC,WAAW,CAAC,IAAI;gBAAE,IAAI,CAAC,IAAI,GAAG,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC;YAC/D,IAAI,KAAK,CAAC,WAAW,CAAC,GAAG,KAAK,SAAS;gBAAE,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC;YAC9E,IAAI,KAAK,CAAC,WAAW,CAAC,GAAG,KAAK,SAAS;gBAAE,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC;YAC9E,IAAI,KAAK,CAAC,WAAW,CAAC,SAAS,KAAK,SAAS;gBAAE,IAAI,CAAC,SAAS,GAAG,KAAK,CAAC,WAAW,CAAC,SAAS,CAAC;YAC5F,IAAI,KAAK,CAAC,WAAW,CAAC,OAAO;gBAAE,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC,WAAW,CAAC,OAAO,CAAC;QAC1E,CAAC;QAED,IAAI,KAAK,CAAC,IAAI,KAAK,QAAQ,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;YAC9C,MAAM,MAAM,GAAG,sBAAsB,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;YACtD,IAAI,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;YACpC,IAAK,MAAM,CAAC,QAAqB,EAAE,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC9C,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;YAClC,CAAC;QACH,CAAC;QAED,IAAI,KAAK,CAAC,IAAI,KAAK,OAAO,IAAI,KAAK,CAAC,QAAQ,EAAE,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3D,IAAI,CAAC,KAAK,GAAG,EAAE,IAAI,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAChD,CAAC;QAED,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;QAE9B,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;YACnB,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,OAAO;QACL,IAAI,EAAE,QAAiB;QACvB,UAAU;QACV,GAAG,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KAC7C,CAAC;AACJ,CAAC"}

package/dist/tracing/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * @agentbouncr/core — Tracing Module (W3C Trace Context)
+ */
+export { TraceProvider } from './trace-provider.js';
+export { createTraceContext, generateTraceId, generateSpanId, isValidTraceId, isValidSpanId, parseTraceparent, type TraceContext, } from './trace-context.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/tracing/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/tracing/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAEpD,OAAO,EACL,kBAAkB,EAClB,eAAe,EACf,cAAc,EACd,cAAc,EACd,aAAa,EACb,gBAAgB,EAChB,KAAK,YAAY,GAClB,MAAM,oBAAoB,CAAC"}

package/dist/tracing/index.js

@@ -0,0 +1,6 @@
+/**
+ * @agentbouncr/core — Tracing Module (W3C Trace Context)
+ */
+export { TraceProvider } from './trace-provider.js';
+export { createTraceContext, generateTraceId, generateSpanId, isValidTraceId, isValidSpanId, parseTraceparent, } from './trace-context.js';
+//# sourceMappingURL=index.js.map

package/dist/tracing/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/tracing/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AAEpD,OAAO,EACL,kBAAkB,EAClB,eAAe,EACf,cAAc,EACd,cAAc,EACd,aAAa,EACb,gBAAgB,GAEjB,MAAM,oBAAoB,CAAC"}

package/dist/tracing/trace-context.d.ts

@@ -0,0 +1,37 @@
+/**
+ * @agentbouncr/core — W3C Trace Context Primitives
+ *
+ * Trace-ID-Generierung und -Validierung nach W3C Trace Context Standard.
+ * https://www.w3.org/TR/trace-context/
+ *
+ * Format:
+ *   traceId:     32 hex chars (128 bit)
+ *   spanId:      16 hex chars (64 bit)
+ *   traceparent: "00-{traceId}-{spanId}-{flags}"
+ */
+export interface TraceContext {
+    /** 32 lowercase hex characters (128-bit trace identifier) */
+    readonly traceId: string;
+    /** 16 lowercase hex characters (64-bit span identifier) */
+    readonly spanId: string;
+    /** Full W3C traceparent header value */
+    readonly traceparent: string;
+}
+export declare function generateTraceId(): string;
+export declare function generateSpanId(): string;
+export declare function isValidTraceId(traceId: string): boolean;
+export declare function isValidSpanId(spanId: string): boolean;
+/**
+ * Create a TraceContext. Reuses valid traceId/spanId if provided,
+ * otherwise generates new ones.
+ */
+export declare function createTraceContext(traceId?: string, spanId?: string): TraceContext;
+/**
+ * Parse a W3C traceparent header string into a TraceContext.
+ * Returns null for invalid formats.
+ *
+ * Format: "{version}-{traceId}-{spanId}-{flags}"
+ * Example: "00-4bf92f3577b34da6a3ce929d0e0e4736-00f067aa0ba902b7-01"
+ */
+export declare function parseTraceparent(header: string): TraceContext | null;
+//# sourceMappingURL=trace-context.d.ts.map

package/dist/tracing/trace-context.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"trace-context.d.ts","sourceRoot":"","sources":["../../src/tracing/trace-context.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAMH,MAAM,WAAW,YAAY;IAC3B,6DAA6D;IAC7D,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,2DAA2D;IAC3D,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,wCAAwC;IACxC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;CAC9B;AAiBD,wBAAgB,eAAe,IAAI,MAAM,CAExC;AAED,wBAAgB,cAAc,IAAI,MAAM,CAEvC;AAID,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAEvD;AAED,wBAAgB,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAErD;AAUD;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,YAAY,CASlF;AAID;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI,CAapE"}