@agentlensai/server 0.11.0 → 0.13.0

package/dist/lib/guardrails/conditions.js

@@ -3,6 +3,53 @@
  *
  * Each condition type has an evaluator that queries the store
  * and returns whether the condition is triggered.
+ *
+ * ┌─────────────────────────────────────────────────────────────────────┐
+ * │                   CONDITION TYPE FORMULAS                          │
+ * ├─────────────────────────────────────────────────────────────────────┤
+ * │                                                                     │
+ * │  1. ERROR_RATE_THRESHOLD                                           │
+ * │     Config: { threshold: % (default 30), windowMinutes (default 5)}│
+ * │     Formula:                                                       │
+ * │       errors = min(errorCount + criticalCount + toolErrorCount,    │
+ * │                    totalCount)                                     │
+ * │       errorRate = (errors / totalCount) × 100                     │
+ * │       triggered = errorRate ≥ threshold                           │
+ * │     Edge case: if totalCount = 0 → not triggered (no data).       │
+ * │                                                                     │
+ * │  2. COST_LIMIT                                                     │
+ * │     Config: { maxCostUsd (default 10), scope: "daily"|"session" }  │
+ * │     Scope "session": reads totalCostUsd from session record.       │
+ * │     Scope "daily": sums all session costs from UTC midnight.       │
+ * │     Formula:                                                       │
+ * │       triggered = currentCost ≥ maxCostUsd                        │
+ * │                                                                     │
+ * │  3. HEALTH_SCORE_THRESHOLD                                         │
+ * │     Config: { minScore (default 50), windowDays (default 7) }      │
+ * │     Delegates to HealthComputer with DEFAULT_HEALTH_WEIGHTS.       │
+ * │     Formula:                                                       │
+ * │       triggered = overallScore < minScore                         │
+ * │     Edge case: no sessions or computation failure → not triggered. │
+ * │                                                                     │
+ * │  4. CUSTOM_METRIC                                                  │
+ * │     Config: { metricKeyPath, operator, value, windowMinutes }      │
+ * │     Uses dot-notation keyPath to extract a number from event       │
+ * │     metadata (e.g. "llm.latencyMs"). Takes the LATEST event's     │
+ * │     value within the time window.                                  │
+ * │     Operators: gt, gte, lt, lte, eq                                │
+ * │     Formula:                                                       │
+ * │       triggered = compareMetric(latestValue, operator, value)     │
+ * │     Legacy fallback: if no metricKeyPath, uses metricName to      │
+ * │     query aggregate counts (event_count, error_count,             │
+ * │     session_count).                                                │
+ * │                                                                     │
+ * │  All evaluators return GuardrailConditionResult:                   │
+ * │    { triggered: bool, currentValue: number, threshold: number,     │
+ * │      message: string }                                             │
+ * │                                                                     │
+ * │  The dispatcher evaluateCondition() routes by rule.conditionType.  │
+ * │  Unknown types return triggered=false with an error message.       │
+ * └─────────────────────────────────────────────────────────────────────┘
  */
 import { DEFAULT_HEALTH_WEIGHTS } from '@agentlensai/core';
 import { HealthComputer } from '../health/computer.js';
@@ -12,17 +59,16 @@ export async function evaluateErrorRateThreshold(store, rule, agentId) {
     const windowMinutes = config.windowMinutes ?? 5;
     const now = new Date();
     const from = new Date(now.getTime() - windowMinutes * 60 * 1000).toISOString();
-    const totalCount = await store.countEvents({ agentId, from, to: now.toISOString() });
-    if (totalCount === 0) {
+    const to = now.toISOString();
+    const counts = await store.countEventsBatch({ agentId, from, to });
+    if (counts.total === 0) {
         return { triggered: false, currentValue: 0, threshold, message: 'No events in window' };
     }
     // Architecture §3.4: count error, critical severity AND tool_error event types
-    const errorCount = await store.countEvents({ agentId, from, to: now.toISOString(), severity: 'error' });
-    const criticalCount = await store.countEvents({ agentId, from, to: now.toISOString(), severity: 'critical' });
-    const toolErrorCount = await store.countEvents({ agentId, from, to: now.toISOString(), eventType: 'tool_error' });
     // Deduplicate: tool_error events with error/critical severity are already counted above,
-    // but store.countEvents filters by a single field, so we take the max of the combined count and totalCount
-    const combinedErrors = Math.min(errorCount + criticalCount + toolErrorCount, totalCount);
+    // but countEventsBatch filters by single field each, so we cap at total
+    const totalCount = counts.total;
+    const combinedErrors = Math.min(counts.error + counts.critical + counts.toolError, totalCount);
     const errorRate = (combinedErrors / totalCount) * 100;
     return {
         triggered: errorRate >= threshold,
@@ -51,8 +97,7 @@ export async function evaluateCostLimit(store, rule, agentId, sessionId) {
     }
     const todayStart = new Date();
     todayStart.setUTCHours(0, 0, 0, 0);
-    const { sessions } = await store.querySessions({ agentId, from: todayStart.toISOString(), limit: 10000 });
-    const dailyCost = sessions.reduce((sum, s) => sum + (s.totalCostUsd || 0), 0);
+    const dailyCost = await store.sumSessionCost({ agentId, from: todayStart.toISOString() });
     return {
         triggered: dailyCost >= maxCostUsd,
         currentValue: Math.round(dailyCost * 10000) / 10000,
@@ -119,7 +164,7 @@ export async function evaluateCustomMetric(store, rule, agentId) {
     const from = new Date(now.getTime() - windowMinutes * 60 * 1000).toISOString();
     // Architecture §3.4: Use metricKeyPath to extract values from event metadata
     if (metricKeyPath) {
-        const eventsResult = await store.queryEvents({ agentId, from, to: now.toISOString(), limit: 10000 });
+        const eventsResult = await store.queryEvents({ agentId, from, to: now.toISOString(), limit: 1 });
         const values = [];
         for (const event of eventsResult.events) {
             const md = (event.metadata ?? {});

package/dist/lib/guardrails/conditions.js.map

@@ -1 +1 @@
-{"version":3,"file":"conditions.js","sourceRoot":"","sources":["../../../src/lib/guardrails/conditions.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,sBAAsB,EAAE,MAAM,mBAAmB,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAEvD,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAC9C,KAAkB,EAClB,IAAmB,EACnB,OAAe;IAEf,MAAM,MAAM,GAAG,IAAI,CAAC,eAAiE,CAAC;IACtF,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC;IACzC,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,IAAI,CAAC,CAAC;IAEhD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IAE/E,MAAM,UAAU,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IAErF,IAAI,UAAU,KAAK,CAAC,EAAE,CAAC;QACrB,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,qBAAqB,EAAE,CAAC;IAC1F,CAAC;IAED,+EAA+E;IAC/E,MAAM,UAAU,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;IACxG,MAAM,aAAa,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC,CAAC;IAC9G,MAAM,cAAc,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,SAAS,EAAE,YAAY,EAAE,CAAC,CAAC;IAClH,yFAAyF;IACzF,2GAA2G;IAC3G,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,UAAU,GAAG,aAAa,GAAG,cAAc,EAAE,UAAU,CAAC,CAAC;IACzF,MAAM,SAAS,GAAG,CAAC,cAAc,GAAG,UAAU,CAAC,GAAG,GAAG,CAAC;IAEtD,OAAO;QACL,SAAS,EAAE,SAAS,IAAI,SAAS;QACjC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,SAAS,GAAG,GAAG,CAAC,GAAG,GAAG;QAC/C,SAAS;QACT,OAAO,EAAE,SAAS,IAAI,SAAS;YAC7B,CAAC,CAAC,cAAc,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,uBAAuB,SAAS,GAAG;YACvE,CAAC,CAAC,cAAc,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,sBAAsB,SAAS,GAAG;KACzE,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAkB,EAClB,IAAmB,EACnB,OAAe,EACf,SAAkB;IAElB,MAAM,MAAM,GAAG,IAAI,CAAC,eAA0D,CAAC;IAC/E,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,EAAE,CAAC;IAC3C,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,OAAO,CAAC;IAEtC,IAAI,KAAK,KAAK,SAAS,IAAI,SAAS,EAAE,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QAClD,MAAM,WAAW,GAAG,OAAO,EAAE,YAAY,IAAI,CAAC,CAAC;QAC/C,OAAO;YACL,SAAS,EAAE,WAAW,IAAI,UAAU;YACpC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,KAAK,CAAC,GAAG,KAAK;YACrD,SAAS,EAAE,UAAU;YACrB,OAAO,EAAE,WAAW,IAAI,UAAU;gBAChC,CAAC,CAAC,iBAAiB,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,UAAU,EAAE;gBACxE,CAAC,CAAC,iBAAiB,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,UAAU,EAAE;SAC1E,CAAC;IACJ,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,IAAI,EAAE,CAAC;IAC9B,UAAU,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;IACnC,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,KAAK,CAAC,aAAa,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;IAC1G,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,YAAY,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAE9E,OAAO;QACL,SAAS,EAAE,SAAS,IAAI,UAAU;QAClC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,SAAS,GAAG,KAAK,CAAC,GAAG,KAAK;QACnD,SAAS,EAAE,UAAU;QACrB,OAAO,EAAE,SAAS,IAAI,UAAU;YAC9B,CAAC,CAAC,eAAe,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,UAAU,EAAE;YACpE,CAAC,CAAC,eAAe,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,UAAU,EAAE;KACtE,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,4BAA4B,CAChD,KAAkB,EAClB,IAAmB,EACnB,OAAe;IAEf,MAAM,MAAM,GAAG,IAAI,CAAC,eAA6D,CAAC;IAClF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,EAAE,CAAC;IACvC,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,CAAC,CAAC;IAE1C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,cAAc,CAAC,sBAAsB,CAAC,CAAC;QAC5D,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,EAAE,UAAU,CAAC,CAAC;QACjE,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,0CAA0C,EAAE,CAAC;QACzH,CAAC;QACD,OAAO;YACL,SAAS,EAAE,KAAK,CAAC,YAAY,GAAG,QAAQ;YACxC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,YAAY,GAAG,GAAG,CAAC,GAAG,GAAG;YACxD,SAAS,EAAE,QAAQ;YACnB,OAAO,EAAE,KAAK,CAAC,YAAY,GAAG,QAAQ;gBACpC,CAAC,CAAC,gBAAgB,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,QAAQ,EAAE;gBAC3E,CAAC,CAAC,gBAAgB,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,QAAQ,EAAE;SAC9E,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,gCAAgC,EAAE,CAAC;IAC/G,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAS,YAAY,CAAC,GAA4B,EAAE,OAAe;IACjE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACjC,IAAI,OAAO,GAAY,GAAG,CAAC;IAC3B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,OAAO,IAAI,IAAI,IAAI,OAAO,OAAO,KAAK,QAAQ;YAAE,OAAO,SAAS,CAAC;QACrE,OAAO,GAAI,OAAmC,CAAC,IAAI,CAAC,CAAC;IACvD,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,aAAa,CAAC,YAAoB,EAAE,QAAgB,EAAE,WAAmB;IAChF,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,IAAI,CAAC,CAAC,OAAO,YAAY,GAAG,WAAW,CAAC;QAC7C,KAAK,KAAK,CAAC,CAAC,OAAO,YAAY,IAAI,WAAW,CAAC;QAC/C,KAAK,IAAI,CAAC,CAAC,OAAO,YAAY,GAAG,WAAW,CAAC;QAC7C,KAAK,KAAK,CAAC,CAAC,OAAO,YAAY,IAAI,WAAW,CAAC;QAC/C,KAAK,IAAI,CAAC,CAAC,OAAO,YAAY,KAAK,WAAW,CAAC;QAC/C,OAAO,CAAC,CAAC,OAAO,KAAK,CAAC;IACxB,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,KAAkB,EAClB,IAAmB,EACnB,OAAe;IAEf,MAAM,MAAM,GAAG,IAAI,CAAC,eAOnB,CAAC;IACF,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,CAAC;IAC3C,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,IAAI,CAAC;IACzC,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,IAAI,CAAC,CAAC;IACtC,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,IAAI,EAAE,CAAC;IAEjD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IAE/E,6EAA6E;IAC7E,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,CAAC;QACrG,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,KAAK,MAAM,KAAK,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;YACxC,MAAM,EAAE,GAAG,CAAC,KAAK,CAAC,QAAQ,IAAI,EAAE,CAA4B,CAAC;YAC7D,MAAM,GAAG,GAAG,YAAY,CAAC,EAAE,EAAE,aAAa,CAAC,CAAC;YAC5C,IAAI,OAAO,GAAG,KAAK,QAAQ;gBAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAChD,CAAC;QACD,wDAAwD;QAExD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,YAAY,EAAE,CAAC;gBACf,SAAS,EAAE,WAAW;gBACtB,OAAO,EAAE,gCAAgC,aAAa,aAAa;aACpE,CAAC;QACJ,CAAC;QAED,qGAAqG;QACrG,MAAM,YAAY,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,SAAS,GAAG,aAAa,CAAC,YAAY,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;QAErE,OAAO;YACL,SAAS;YACT,YAAY;YACZ,SAAS,EAAE,WAAW;YACtB,OAAO,EAAE,SAAS;gBAChB,CAAC,CAAC,GAAG,aAAa,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,cAAc;gBAC7E,CAAC,CAAC,GAAG,aAAa,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,kBAAkB;SACpF,CAAC;IACJ,CAAC;IAED,0EAA0E;IAC1E,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,aAAa,CAAC;IACtD,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,QAAQ,UAAU,EAAE,CAAC;QACnB,KAAK,aAAa;YAChB,YAAY,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;YACjF,MAAM;QACR,KAAK,aAAa;YAChB,YAAY,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;YACpG,MAAM;QACR,KAAK,eAAe,CAAC,CAAC,CAAC;YACrB,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,aAAa,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YAC/D,YAAY,GAAG,KAAK,CAAC;YACrB,MAAM;QACR,CAAC;QACD;YACE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,WAAW,EAAE,OAAO,EAAE,mBAAmB,UAAU,EAAE,EAAE,CAAC;IACnH,CAAC;IAED,MAAM,SAAS,GAAG,aAAa,CAAC,YAAY,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;IAErE,OAAO;QACL,SAAS;QACT,YAAY;QACZ,SAAS,EAAE,WAAW;QACtB,OAAO,EAAE,SAAS;YAChB,CAAC,CAAC,GAAG,UAAU,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,cAAc;YAC1E,CAAC,CAAC,GAAG,UAAU,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,kBAAkB;KACjF,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAkB,EAClB,IAAmB,EACnB,OAAe,EACf,SAAkB;IAElB,QAAQ,IAAI,CAAC,aAAa,EAAE,CAAC;QAC3B,KAAK,sBAAsB,CAAC,CAAC,OAAO,0BAA0B,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACrF,KAAK,YAAY,CAAC,CAAC,OAAO,iBAAiB,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;QAC7E,KAAK,wBAAwB,CAAC,CAAC,OAAO,4BAA4B,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACzF,KAAK,eAAe,CAAC,CAAC,OAAO,oBAAoB,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACxE,OAAO,CAAC,CAAC,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,OAAO,EAAE,2BAA2B,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;IAChI,CAAC;AACH,CAAC"}
+{"version":3,"file":"conditions.js","sourceRoot":"","sources":["../../../src/lib/guardrails/conditions.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAoDG;AAGH,OAAO,EAAE,sBAAsB,EAAE,MAAM,mBAAmB,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AAEvD,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAC9C,KAAkB,EAClB,IAAmB,EACnB,OAAe;IAEf,MAAM,MAAM,GAAG,IAAI,CAAC,eAAiE,CAAC;IACtF,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC;IACzC,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,IAAI,CAAC,CAAC;IAEhD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IAE/E,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;IAC7B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,gBAAgB,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;IAEnE,IAAI,MAAM,CAAC,KAAK,KAAK,CAAC,EAAE,CAAC;QACvB,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,qBAAqB,EAAE,CAAC;IAC1F,CAAC;IAED,+EAA+E;IAC/E,yFAAyF;IACzF,wEAAwE;IACxE,MAAM,UAAU,GAAG,MAAM,CAAC,KAAK,CAAC;IAChC,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,GAAG,MAAM,CAAC,QAAQ,GAAG,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IAC/F,MAAM,SAAS,GAAG,CAAC,cAAc,GAAG,UAAU,CAAC,GAAG,GAAG,CAAC;IAEtD,OAAO;QACL,SAAS,EAAE,SAAS,IAAI,SAAS;QACjC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,SAAS,GAAG,GAAG,CAAC,GAAG,GAAG;QAC/C,SAAS;QACT,OAAO,EAAE,SAAS,IAAI,SAAS;YAC7B,CAAC,CAAC,cAAc,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,uBAAuB,SAAS,GAAG;YACvE,CAAC,CAAC,cAAc,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,sBAAsB,SAAS,GAAG;KACzE,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAkB,EAClB,IAAmB,EACnB,OAAe,EACf,SAAkB;IAElB,MAAM,MAAM,GAAG,IAAI,CAAC,eAA0D,CAAC;IAC/E,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,EAAE,CAAC;IAC3C,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,IAAI,OAAO,CAAC;IAEtC,IAAI,KAAK,KAAK,SAAS,IAAI,SAAS,EAAE,CAAC;QACrC,MAAM,OAAO,GAAG,MAAM,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;QAClD,MAAM,WAAW,GAAG,OAAO,EAAE,YAAY,IAAI,CAAC,CAAC;QAC/C,OAAO;YACL,SAAS,EAAE,WAAW,IAAI,UAAU;YACpC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,KAAK,CAAC,GAAG,KAAK;YACrD,SAAS,EAAE,UAAU;YACrB,OAAO,EAAE,WAAW,IAAI,UAAU;gBAChC,CAAC,CAAC,iBAAiB,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,UAAU,EAAE;gBACxE,CAAC,CAAC,iBAAiB,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,UAAU,EAAE;SAC1E,CAAC;IACJ,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,IAAI,EAAE,CAAC;IAC9B,UAAU,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;IACnC,MAAM,SAAS,GAAG,MAAM,KAAK,CAAC,cAAc,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IAE1F,OAAO;QACL,SAAS,EAAE,SAAS,IAAI,UAAU;QAClC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,SAAS,GAAG,KAAK,CAAC,GAAG,KAAK;QACnD,SAAS,EAAE,UAAU;QACrB,OAAO,EAAE,SAAS,IAAI,UAAU;YAC9B,CAAC,CAAC,eAAe,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,UAAU,EAAE;YACpE,CAAC,CAAC,eAAe,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,UAAU,EAAE;KACtE,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,4BAA4B,CAChD,KAAkB,EAClB,IAAmB,EACnB,OAAe;IAEf,MAAM,MAAM,GAAG,IAAI,CAAC,eAA6D,CAAC;IAClF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,EAAE,CAAC;IACvC,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,CAAC,CAAC;IAE1C,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,cAAc,CAAC,sBAAsB,CAAC,CAAC;QAC5D,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,OAAO,EAAE,UAAU,CAAC,CAAC;QACjE,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,0CAA0C,EAAE,CAAC;QACzH,CAAC;QACD,OAAO;YACL,SAAS,EAAE,KAAK,CAAC,YAAY,GAAG,QAAQ;YACxC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,YAAY,GAAG,GAAG,CAAC,GAAG,GAAG;YACxD,SAAS,EAAE,QAAQ;YACnB,OAAO,EAAE,KAAK,CAAC,YAAY,GAAG,QAAQ;gBACpC,CAAC,CAAC,gBAAgB,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,QAAQ,EAAE;gBAC3E,CAAC,CAAC,gBAAgB,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,kBAAkB,QAAQ,EAAE;SAC9E,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,gCAAgC,EAAE,CAAC;IAC/G,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAS,YAAY,CAAC,GAA4B,EAAE,OAAe;IACjE,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACjC,IAAI,OAAO,GAAY,GAAG,CAAC;IAC3B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,OAAO,IAAI,IAAI,IAAI,OAAO,OAAO,KAAK,QAAQ;YAAE,OAAO,SAAS,CAAC;QACrE,OAAO,GAAI,OAAmC,CAAC,IAAI,CAAC,CAAC;IACvD,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,aAAa,CAAC,YAAoB,EAAE,QAAgB,EAAE,WAAmB;IAChF,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,IAAI,CAAC,CAAC,OAAO,YAAY,GAAG,WAAW,CAAC;QAC7C,KAAK,KAAK,CAAC,CAAC,OAAO,YAAY,IAAI,WAAW,CAAC;QAC/C,KAAK,IAAI,CAAC,CAAC,OAAO,YAAY,GAAG,WAAW,CAAC;QAC7C,KAAK,KAAK,CAAC,CAAC,OAAO,YAAY,IAAI,WAAW,CAAC;QAC/C,KAAK,IAAI,CAAC,CAAC,OAAO,YAAY,KAAK,WAAW,CAAC;QAC/C,OAAO,CAAC,CAAC,OAAO,KAAK,CAAC;IACxB,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,KAAkB,EAClB,IAAmB,EACnB,OAAe;IAEf,MAAM,MAAM,GAAG,IAAI,CAAC,eAOnB,CAAC;IACF,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,CAAC;IAC3C,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,IAAI,CAAC;IACzC,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,IAAI,CAAC,CAAC;IACtC,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,IAAI,EAAE,CAAC;IAEjD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IAE/E,6EAA6E;IAC7E,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;QACjG,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,KAAK,MAAM,KAAK,IAAI,YAAY,CAAC,MAAM,EAAE,CAAC;YACxC,MAAM,EAAE,GAAG,CAAC,KAAK,CAAC,QAAQ,IAAI,EAAE,CAA4B,CAAC;YAC7D,MAAM,GAAG,GAAG,YAAY,CAAC,EAAE,EAAE,aAAa,CAAC,CAAC;YAC5C,IAAI,OAAO,GAAG,KAAK,QAAQ;gBAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAChD,CAAC;QACD,wDAAwD;QAExD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO;gBACL,SAAS,EAAE,KAAK;gBAChB,YAAY,EAAE,CAAC;gBACf,SAAS,EAAE,WAAW;gBACtB,OAAO,EAAE,gCAAgC,aAAa,aAAa;aACpE,CAAC;QACJ,CAAC;QAED,qGAAqG;QACrG,MAAM,YAAY,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,SAAS,GAAG,aAAa,CAAC,YAAY,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;QAErE,OAAO;YACL,SAAS;YACT,YAAY;YACZ,SAAS,EAAE,WAAW;YACtB,OAAO,EAAE,SAAS;gBAChB,CAAC,CAAC,GAAG,aAAa,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,cAAc;gBAC7E,CAAC,CAAC,GAAG,aAAa,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,kBAAkB;SACpF,CAAC;IACJ,CAAC;IAED,0EAA0E;IAC1E,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,aAAa,CAAC;IACtD,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,QAAQ,UAAU,EAAE,CAAC;QACnB,KAAK,aAAa;YAChB,YAAY,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;YACjF,MAAM;QACR,KAAK,aAAa;YAChB,YAAY,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,GAAG,CAAC,WAAW,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;YACpG,MAAM;QACR,KAAK,eAAe,CAAC,CAAC,CAAC;YACrB,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,aAAa,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YAC/D,YAAY,GAAG,KAAK,CAAC;YACrB,MAAM;QACR,CAAC;QACD;YACE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,WAAW,EAAE,OAAO,EAAE,mBAAmB,UAAU,EAAE,EAAE,CAAC;IACnH,CAAC;IAED,MAAM,SAAS,GAAG,aAAa,CAAC,YAAY,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;IAErE,OAAO;QACL,SAAS;QACT,YAAY;QACZ,SAAS,EAAE,WAAW;QACtB,OAAO,EAAE,SAAS;YAChB,CAAC,CAAC,GAAG,UAAU,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,cAAc;YAC1E,CAAC,CAAC,GAAG,UAAU,KAAK,YAAY,KAAK,QAAQ,IAAI,WAAW,kBAAkB;KACjF,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAkB,EAClB,IAAmB,EACnB,OAAe,EACf,SAAkB;IAElB,QAAQ,IAAI,CAAC,aAAa,EAAE,CAAC;QAC3B,KAAK,sBAAsB,CAAC,CAAC,OAAO,0BAA0B,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACrF,KAAK,YAAY,CAAC,CAAC,OAAO,iBAAiB,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;QAC7E,KAAK,wBAAwB,CAAC,CAAC,OAAO,4BAA4B,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACzF,KAAK,eAAe,CAAC,CAAC,OAAO,oBAAoB,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACxE,OAAO,CAAC,CAAC,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,OAAO,EAAE,2BAA2B,IAAI,CAAC,aAAa,EAAE,EAAE,CAAC;IAChI,CAAC;AACH,CAAC"}

package/dist/lib/guardrails/content-engine.d.ts

@@ -0,0 +1,19 @@
+import type { ContentGuardrailResult, ContentMatch } from '@agentlensai/core';
+import type { GuardrailStore } from '../../db/guardrail-store.js';
+export interface ContentEvalContext {
+    tenantId: string;
+    agentId: string;
+    toolName: string;
+    direction: 'input' | 'output';
+}
+export declare class ContentGuardrailEngine {
+    private readonly store;
+    constructor(store: GuardrailStore);
+    evaluateContentSync(content: string, context: ContentEvalContext, timeoutMs?: number): Promise<ContentGuardrailResult>;
+    private matchesDirection;
+    private matchesToolName;
+    private resolveDecision;
+    applyRedactions(content: string, matches: ContentMatch[]): string;
+    private recordTriggerAsync;
+}
+//# sourceMappingURL=content-engine.d.ts.map

package/dist/lib/guardrails/content-engine.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"content-engine.d.ts","sourceRoot":"","sources":["../../../src/lib/guardrails/content-engine.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAEV,sBAAsB,EACtB,YAAY,EAEb,MAAM,mBAAmB,CAAC;AAC3B,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AASlE,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,OAAO,GAAG,QAAQ,CAAC;CAC/B;AAUD,qBAAa,sBAAsB;IACrB,OAAO,CAAC,QAAQ,CAAC,KAAK;gBAAL,KAAK,EAAE,cAAc;IAE5C,mBAAmB,CACvB,OAAO,EAAE,MAAM,EACf,OAAO,EAAE,kBAAkB,EAC3B,SAAS,GAAE,MAA2B,GACrC,OAAO,CAAC,sBAAsB,CAAC;IAyFlC,OAAO,CAAC,gBAAgB;IAMxB,OAAO,CAAC,eAAe;IAMvB,OAAO,CAAC,eAAe;IAOvB,eAAe,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,YAAY,EAAE,GAAG,MAAM;IASjE,OAAO,CAAC,kBAAkB;CA8B3B"}

package/dist/lib/guardrails/content-engine.js

@@ -0,0 +1,154 @@
+/**
+ * Content Guardrail Engine — Sync content evaluation orchestrator (Feature 8 — Story 7)
+ */
+import { ulid } from 'ulid';
+import { getScannerForRule, isContentRule } from './scanners/scanner-registry.js';
+import { createLogger } from '../logger.js';
+const log = createLogger('ContentGuardrailEngine');
+const MAX_CONTENT_SIZE = 1024 * 1024; // 1MB
+const DEFAULT_TIMEOUT_MS = 100;
+/** Action priority for conflict resolution */
+const ACTION_PRIORITY = {
+    block: 100,
+    redact: 50,
+    alert: 20,
+    log_and_continue: 10,
+};
+export class ContentGuardrailEngine {
+    store;
+    constructor(store) {
+        this.store = store;
+    }
+    async evaluateContentSync(content, context, timeoutMs = DEFAULT_TIMEOUT_MS) {
+        const startTime = performance.now();
+        // Fast path
+        if (!content || content.length === 0 || content.length > MAX_CONTENT_SIZE) {
+            return { decision: 'allow', matches: [], evaluationMs: 0, rulesEvaluated: 0 };
+        }
+        // Load enabled content rules
+        const allRules = this.store.listEnabledRules(context.tenantId, context.agentId);
+        const contentRules = allRules
+            .filter((r) => isContentRule(r))
+            .filter((r) => this.matchesDirection(r, context.direction))
+            .filter((r) => this.matchesToolName(r, context.toolName))
+            .sort((a, b) => (b.priority ?? 0) - (a.priority ?? 0));
+        if (contentRules.length === 0) {
+            return { decision: 'allow', matches: [], evaluationMs: 0, rulesEvaluated: 0 };
+        }
+        const allMatches = [];
+        let highestAction = { type: 'allow', priority: -1, ruleId: '' };
+        let rulesEvaluated = 0;
+        for (const rule of contentRules) {
+            if (performance.now() - startTime > timeoutMs) {
+                log.warn('content evaluation timeout', { evaluated: rulesEvaluated, total: contentRules.length });
+                break;
+            }
+            try {
+                const scanner = getScannerForRule(rule);
+                if (!scanner)
+                    continue;
+                const result = scanner.isAsync
+                    ? await Promise.race([
+                        scanner.scan(content, { ...context }),
+                        new Promise((_, reject) => setTimeout(() => reject(new Error('scanner timeout')), timeoutMs / 2)),
+                    ])
+                    : scanner.scan(content, { ...context });
+                const scanResult = result instanceof Promise ? await result : result;
+                rulesEvaluated++;
+                if (scanResult.matches.length > 0) {
+                    if (!rule.dryRun) {
+                        allMatches.push(...scanResult.matches);
+                        const actionPriority = ACTION_PRIORITY[rule.actionType] ?? 0;
+                        if (actionPriority > highestAction.priority) {
+                            highestAction = { type: rule.actionType, priority: actionPriority, ruleId: rule.id };
+                        }
+                    }
+                    // Record trigger async
+                    this.recordTriggerAsync(rule, scanResult.matches, context);
+                    // Short-circuit on block
+                    if (rule.actionType === 'block' && !rule.dryRun) {
+                        break;
+                    }
+                }
+            }
+            catch (err) {
+                log.error(`scanner error for rule ${rule.id}`, {
+                    error: err instanceof Error ? err.message : String(err),
+                });
+                // Fail-open
+            }
+        }
+        const evaluationMs = Math.round((performance.now() - startTime) * 100) / 100;
+        const decision = this.resolveDecision(highestAction.type, allMatches);
+        const result = {
+            decision,
+            matches: allMatches,
+            evaluationMs,
+            rulesEvaluated,
+        };
+        if (decision === 'block') {
+            result.blockingRuleId = highestAction.ruleId;
+        }
+        if (decision === 'redact') {
+            result.redactedContent = this.applyRedactions(content, allMatches);
+        }
+        return result;
+    }
+    matchesDirection(rule, direction) {
+        const ruleDir = rule.direction;
+        if (!ruleDir || ruleDir === 'both')
+            return true;
+        return ruleDir === direction;
+    }
+    matchesToolName(rule, toolName) {
+        const ruleTools = rule.toolNames;
+        if (!ruleTools || ruleTools.length === 0)
+            return true;
+        return ruleTools.includes(toolName);
+    }
+    resolveDecision(actionType, matches) {
+        if (matches.length === 0)
+            return 'allow';
+        if (actionType === 'block')
+            return 'block';
+        if (actionType === 'redact')
+            return 'redact';
+        return 'allow';
+    }
+    applyRedactions(content, matches) {
+        const sorted = [...matches].sort((a, b) => b.offset.start - a.offset.start);
+        let result = content;
+        for (const match of sorted) {
+            result = result.slice(0, match.offset.start) + match.redactionToken + result.slice(match.offset.end);
+        }
+        return result;
+    }
+    recordTriggerAsync(rule, matches, context) {
+        try {
+            this.store.insertTrigger({
+                id: ulid(),
+                ruleId: rule.id,
+                tenantId: rule.tenantId,
+                triggeredAt: new Date().toISOString(),
+                conditionValue: matches.length,
+                conditionThreshold: 0,
+                actionExecuted: !rule.dryRun,
+                actionResult: rule.dryRun ? 'dry_run' : rule.actionType,
+                metadata: {
+                    agentId: context.agentId,
+                    toolName: context.toolName,
+                    direction: context.direction,
+                    matchTypes: matches.map((m) => m.patternName),
+                    dryRun: rule.dryRun,
+                },
+            });
+        }
+        catch (err) {
+            log.error('failed to record content trigger', {
+                ruleId: rule.id,
+                error: err instanceof Error ? err.message : String(err),
+            });
+        }
+    }
+}
+//# sourceMappingURL=content-engine.js.map

package/dist/lib/guardrails/content-engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"content-engine.js","sourceRoot":"","sources":["../../../src/lib/guardrails/content-engine.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAQ5B,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,gCAAgC,CAAC;AAClF,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAE5C,MAAM,GAAG,GAAG,YAAY,CAAC,wBAAwB,CAAC,CAAC;AAEnD,MAAM,gBAAgB,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,MAAM;AAC5C,MAAM,kBAAkB,GAAG,GAAG,CAAC;AAS/B,8CAA8C;AAC9C,MAAM,eAAe,GAA2B;IAC9C,KAAK,EAAE,GAAG;IACV,MAAM,EAAE,EAAE;IACV,KAAK,EAAE,EAAE;IACT,gBAAgB,EAAE,EAAE;CACrB,CAAC;AAEF,MAAM,OAAO,sBAAsB;IACJ;IAA7B,YAA6B,KAAqB;QAArB,UAAK,GAAL,KAAK,CAAgB;IAAG,CAAC;IAEtD,KAAK,CAAC,mBAAmB,CACvB,OAAe,EACf,OAA2B,EAC3B,YAAoB,kBAAkB;QAEtC,MAAM,SAAS,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;QAEpC,YAAY;QACZ,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,IAAI,OAAO,CAAC,MAAM,GAAG,gBAAgB,EAAE,CAAC;YAC1E,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,EAAE,EAAE,YAAY,EAAE,CAAC,EAAE,cAAc,EAAE,CAAC,EAAE,CAAC;QAChF,CAAC;QAED,6BAA6B;QAC7B,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,OAAO,CAAC,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;QAChF,MAAM,YAAY,GAAG,QAAQ;aAC1B,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;aAC/B,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;aAC1D,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;aACxD,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,CAAC,CAAC;QAEzD,IAAI,YAAY,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC9B,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,EAAE,EAAE,YAAY,EAAE,CAAC,EAAE,cAAc,EAAE,CAAC,EAAE,CAAC;QAChF,CAAC;QAED,MAAM,UAAU,GAAmB,EAAE,CAAC;QACtC,IAAI,aAAa,GAAG,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;QAChE,IAAI,cAAc,GAAG,CAAC,CAAC;QAEvB,KAAK,MAAM,IAAI,IAAI,YAAY,EAAE,CAAC;YAChC,IAAI,WAAW,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,SAAS,EAAE,CAAC;gBAC9C,GAAG,CAAC,IAAI,CAAC,4BAA4B,EAAE,EAAE,SAAS,EAAE,cAAc,EAAE,KAAK,EAAE,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;gBAClG,MAAM;YACR,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC;gBACxC,IAAI,CAAC,OAAO;oBAAE,SAAS;gBACvB,MAAM,MAAM,GAAG,OAAO,CAAC,OAAO;oBAC5B,CAAC,CAAC,MAAM,OAAO,CAAC,IAAI,CAAC;wBACjB,OAAO,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,GAAG,OAAO,EAAE,CAAC;wBACrC,IAAI,OAAO,CAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE,CAC/B,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,iBAAiB,CAAC,CAAC,EAAE,SAAS,GAAG,CAAC,CAAC,CAAC;qBACzE,CAAC;oBACJ,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,GAAG,OAAO,EAAE,CAAC,CAAC;gBAE1C,MAAM,UAAU,GAAG,MAAM,YAAY,OAAO,CAAC,CAAC,CAAC,MAAM,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC;gBACrE,cAAc,EAAE,CAAC;gBAEjB,IAAI,UAAU,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAClC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;wBACjB,UAAU,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;wBACvC,MAAM,cAAc,GAAG,eAAe,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;wBAC7D,IAAI,cAAc,GAAG,aAAa,CAAC,QAAQ,EAAE,CAAC;4BAC5C,aAAa,GAAG,EAAE,IAAI,EAAE,IAAI,CAAC,UAAU,EAAE,QAAQ,EAAE,cAAc,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC;wBACvF,CAAC;oBACH,CAAC;oBAED,uBAAuB;oBACvB,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,UAAU,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;oBAE3D,yBAAyB;oBACzB,IAAI,IAAI,CAAC,UAAU,KAAK,OAAO,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;wBAChD,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,GAAG,CAAC,KAAK,CAAC,0BAA0B,IAAI,CAAC,EAAE,EAAE,EAAE;oBAC7C,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;iBACxD,CAAC,CAAC;gBACH,YAAY;YACd,CAAC;QACH,CAAC;QAED,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,GAAG,GAAG,CAAC,GAAG,GAAG,CAAC;QAC7E,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAEtE,MAAM,MAAM,GAA2B;YACrC,QAAQ;YACR,OAAO,EAAE,UAAU;YACnB,YAAY;YACZ,cAAc;SACf,CAAC;QAEF,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;YACzB,MAAM,CAAC,cAAc,GAAG,aAAa,CAAC,MAAM,CAAC;QAC/C,CAAC;QACD,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAC1B,MAAM,CAAC,eAAe,GAAG,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;QACrE,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,gBAAgB,CAAC,IAAmB,EAAE,SAA6B;QACzE,MAAM,OAAO,GAAG,IAAI,CAAC,SAA2C,CAAC;QACjE,IAAI,CAAC,OAAO,IAAI,OAAO,KAAK,MAAM;YAAE,OAAO,IAAI,CAAC;QAChD,OAAO,OAAO,KAAK,SAAS,CAAC;IAC/B,CAAC;IAEO,eAAe,CAAC,IAAmB,EAAE,QAAgB;QAC3D,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QACjC,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QACtD,OAAO,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC;IAEO,eAAe,CAAC,UAAkB,EAAE,OAAuB;QACjE,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,OAAO,CAAC;QACzC,IAAI,UAAU,KAAK,OAAO;YAAE,OAAO,OAAO,CAAC;QAC3C,IAAI,UAAU,KAAK,QAAQ;YAAE,OAAO,QAAQ,CAAC;QAC7C,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,eAAe,CAAC,OAAe,EAAE,OAAuB;QACtD,MAAM,MAAM,GAAG,CAAC,GAAG,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,GAAG,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC5E,IAAI,MAAM,GAAG,OAAO,CAAC;QACrB,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,cAAc,GAAG,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACvG,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,kBAAkB,CACxB,IAAmB,EACnB,OAAuB,EACvB,OAA2B;QAE3B,IAAI,CAAC;YACH,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC;gBACvB,EAAE,EAAE,IAAI,EAAE;gBACV,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACrC,cAAc,EAAE,OAAO,CAAC,MAAM;gBAC9B,kBAAkB,EAAE,CAAC;gBACrB,cAAc,EAAE,CAAC,IAAI,CAAC,MAAM;gBAC5B,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU;gBACvD,QAAQ,EAAE;oBACR,OAAO,EAAE,OAAO,CAAC,OAAO;oBACxB,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,UAAU,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC;oBAC7C,MAAM,EAAE,IAAI,CAAC,MAAM;iBACpB;aACF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,GAAG,CAAC,KAAK,CAAC,kCAAkC,EAAE;gBAC5C,MAAM,EAAE,IAAI,CAAC,EAAE;gBACf,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;aACxD,CAAC,CAAC;QACL,CAAC;IACH,CAAC;CACF"}

package/dist/lib/guardrails/engine.d.ts

@@ -3,6 +3,39 @@
  *
  * Subscribes to EventBus and evaluates guardrail rules asynchronously.
  * Never blocks the event POST response.
+ *
+ * ┌─────────────────────────────────────────────────────────────────────┐
+ * │                   EVALUATION PIPELINE FLOW                         │
+ * ├─────────────────────────────────────────────────────────────────────┤
+ * │                                                                     │
+ * │  1. EventBus emits "event_ingested"                                │
+ * │  2. engine.evaluateEvent() is called (async, non-blocking)         │
+ * │  3. Fetch all enabled rules for (tenantId, agentId)                │
+ * │  4. For EACH rule, run evaluateRule():                             │
+ * │                                                                     │
+ * │     Step 0 — Defense-in-depth: skip if rule.enabled === false      │
+ * │     Step 1 — COOLDOWN CHECK:                                       │
+ * │              If (now − lastTriggeredAt) < cooldownMinutes → skip.  │
+ * │              Prevents alert storms from repeated triggers.         │
+ * │     Step 2 — CONDITION EVALUATION:                                 │
+ * │              Delegates to conditions.ts (see that file for each    │
+ * │              condition type's formula). Returns { triggered,       │
+ * │              currentValue, threshold, message }.                   │
+ * │     Step 3 — STATE UPDATE (currentValue, lastEvaluatedAt):         │
+ * │              Always persisted so dashboards can show latest value.  │
+ * │     Step 4 — If NOT triggered → return (state already saved).      │
+ * │     Step 5 — ACTION EXECUTION:                                     │
+ * │              If rule.dryRun → log only, no side-effects.           │
+ * │              Otherwise delegate to actions.ts (pause_agent,        │
+ * │              notify_webhook, downgrade_model, agentgate_policy).   │
+ * │     Step 6 — TRIGGER HISTORY: insert a record with condition       │
+ * │              value, threshold, action result, and event metadata.  │
+ * │     Step 7 — Update state: increment triggerCount, set             │
+ * │              lastTriggeredAt (starts new cooldown window).         │
+ * │                                                                     │
+ * │  Error handling: each rule evaluation is wrapped in try/catch so   │
+ * │  one failing rule never blocks others.                             │
+ * └─────────────────────────────────────────────────────────────────────┘
  */
 import type { AgentLensEvent } from '@agentlensai/core';
 import type { IEventStore } from '@agentlensai/core';

package/dist/lib/guardrails/engine.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../../../src/lib/guardrails/engine.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,cAAc,EAAiC,MAAM,mBAAmB,CAAC;AACvF,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAK7D,qBAAa,eAAe;IAC1B,OAAO,CAAC,KAAK,CAAiB;IAC9B,OAAO,CAAC,UAAU,CAAc;IAChC,OAAO,CAAC,QAAQ,CAA4C;IAC5D,OAAO,CAAC,OAAO,CAAS;gBAEZ,UAAU,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ;IAKjD,KAAK,IAAI,IAAI;IAab,IAAI,IAAI,IAAI;IAQZ,QAAQ,IAAI,cAAc;IAIpB,aAAa,CAAC,KAAK,EAAE,cAAc,GAAG,OAAO,CAAC,IAAI,CAAC;YAa3C,YAAY;IA+D1B,OAAO,CAAC,YAAY;CAOrB"}
+{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../../../src/lib/guardrails/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AAGH,OAAO,KAAK,EAAE,cAAc,EAAiC,MAAM,mBAAmB,CAAC;AACvF,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAQ7D,qBAAa,eAAe;IAC1B,OAAO,CAAC,KAAK,CAAiB;IAC9B,OAAO,CAAC,UAAU,CAAc;IAChC,OAAO,CAAC,QAAQ,CAA4C;IAC5D,OAAO,CAAC,OAAO,CAAS;gBAEZ,UAAU,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ;IAKjD,KAAK,IAAI,IAAI;IAab,IAAI,IAAI,IAAI;IAQZ,QAAQ,IAAI,cAAc;IAIpB,aAAa,CAAC,KAAK,EAAE,cAAc,GAAG,OAAO,CAAC,IAAI,CAAC;YAa3C,YAAY;IA+D1B,OAAO,CAAC,YAAY;CAOrB"}

package/dist/lib/guardrails/engine.js

@@ -3,12 +3,47 @@
  *
  * Subscribes to EventBus and evaluates guardrail rules asynchronously.
  * Never blocks the event POST response.
+ *
+ * ┌─────────────────────────────────────────────────────────────────────┐
+ * │                   EVALUATION PIPELINE FLOW                         │
+ * ├─────────────────────────────────────────────────────────────────────┤
+ * │                                                                     │
+ * │  1. EventBus emits "event_ingested"                                │
+ * │  2. engine.evaluateEvent() is called (async, non-blocking)         │
+ * │  3. Fetch all enabled rules for (tenantId, agentId)                │
+ * │  4. For EACH rule, run evaluateRule():                             │
+ * │                                                                     │
+ * │     Step 0 — Defense-in-depth: skip if rule.enabled === false      │
+ * │     Step 1 — COOLDOWN CHECK:                                       │
+ * │              If (now − lastTriggeredAt) < cooldownMinutes → skip.  │
+ * │              Prevents alert storms from repeated triggers.         │
+ * │     Step 2 — CONDITION EVALUATION:                                 │
+ * │              Delegates to conditions.ts (see that file for each    │
+ * │              condition type's formula). Returns { triggered,       │
+ * │              currentValue, threshold, message }.                   │
+ * │     Step 3 — STATE UPDATE (currentValue, lastEvaluatedAt):         │
+ * │              Always persisted so dashboards can show latest value.  │
+ * │     Step 4 — If NOT triggered → return (state already saved).      │
+ * │     Step 5 — ACTION EXECUTION:                                     │
+ * │              If rule.dryRun → log only, no side-effects.           │
+ * │              Otherwise delegate to actions.ts (pause_agent,        │
+ * │              notify_webhook, downgrade_model, agentgate_policy).   │
+ * │     Step 6 — TRIGGER HISTORY: insert a record with condition       │
+ * │              value, threshold, action result, and event metadata.  │
+ * │     Step 7 — Update state: increment triggerCount, set             │
+ * │              lastTriggeredAt (starts new cooldown window).         │
+ * │                                                                     │
+ * │  Error handling: each rule evaluation is wrapped in try/catch so   │
+ * │  one failing rule never blocks others.                             │
+ * └─────────────────────────────────────────────────────────────────────┘
  */
 import { ulid } from 'ulid';
 import { GuardrailStore } from '../../db/guardrail-store.js';
 import { evaluateCondition } from './conditions.js';
 import { executeAction } from './actions.js';
 import { eventBus } from '../event-bus.js';
+import { createLogger } from '../logger.js';
+const log = createLogger('GuardrailEngine');
 export class GuardrailEngine {
     store;
     eventStore;
@@ -24,7 +59,7 @@ export class GuardrailEngine {
         this.listener = (busEvent) => {
             if (busEvent.type === 'event_ingested') {
                 this.evaluateEvent(busEvent.event).catch((err) => {
-                    console.error('[guardrail-engine] evaluation error:', err instanceof Error ? err.message : err);
+                    log.error('evaluation error', { error: err instanceof Error ? err.message : String(err) });
                 });
             }
         };
@@ -50,7 +85,7 @@ export class GuardrailEngine {
                 await this.evaluateRule(rule, event);
             }
             catch (err) {
-                console.error(`[guardrail-engine] rule ${rule.id} error:`, err instanceof Error ? err.message : err);
+                log.error(`rule ${rule.id} error`, { error: err instanceof Error ? err.message : String(err) });
             }
         }
     }

package/dist/lib/guardrails/engine.js.map

@@ -1 +1 @@
-{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../../src/lib/guardrails/engine.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAI5B,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAiB,MAAM,iBAAiB,CAAC;AAE1D,MAAM,OAAO,eAAe;IAClB,KAAK,CAAiB;IACtB,UAAU,CAAc;IACxB,QAAQ,GAAuC,IAAI,CAAC;IACpD,OAAO,GAAG,KAAK,CAAC;IAExB,YAAY,UAAuB,EAAE,EAAY;QAC/C,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,KAAK,GAAG,IAAI,cAAc,CAAC,EAAE,CAAC,CAAC;IACtC,CAAC;IAED,KAAK;QACH,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QACzB,IAAI,CAAC,QAAQ,GAAG,CAAC,QAAkB,EAAE,EAAE;YACrC,IAAI,QAAQ,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;gBACvC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBAC/C,OAAO,CAAC,KAAK,CAAC,sCAAsC,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;gBAClG,CAAC,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC;QACF,QAAQ,CAAC,EAAE,CAAC,gBAAgB,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC7C,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,IAAI;QACF,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,QAAQ,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC9C,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACvB,CAAC;QACD,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC;IACvB,CAAC;IAED,QAAQ;QACN,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,KAAqB;QACvC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,KAAK,CAAC,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;QACzE,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAE/B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YACvC,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,KAAK,CAAC,2BAA2B,IAAI,CAAC,EAAE,SAAS,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;YACvG,CAAC;QACH,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,YAAY,CAAC,IAAmB,EAAE,KAAqB;QACnE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QAEvB,qFAAqF;QACrF,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO;QAE1B,oBAAoB;QACpB,IAAI,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,CAAC;YAAE,OAAO;QAEzC,wBAAwB;QACxB,MAAM,eAAe,GAAG,MAAM,iBAAiB,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,SAAS,CAAC,CAAC;QAEvG,kBAAkB;QAClB,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAClE,MAAM,QAAQ,GAAmB;YAC/B,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,eAAe,EAAE,GAAG,CAAC,WAAW,EAAE;YAClC,YAAY,EAAE,eAAe,CAAC,YAAY;YAC1C,YAAY,EAAE,aAAa,EAAE,YAAY,IAAI,CAAC;YAC9C,eAAe,EAAE,aAAa,EAAE,eAAe;SAChD,CAAC;QAEF,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC;YAC/B,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;YACjC,OAAO;QACT,CAAC;QAED,iCAAiC;QACjC,IAAI,YAAY,GAAG,SAAS,CAAC;QAC7B,IAAI,cAAc,GAAG,KAAK,CAAC;QAE3B,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,eAAe,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;YACzE,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC;YAC7B,cAAc,GAAG,MAAM,CAAC,OAAO,CAAC;QAClC,CAAC;QAED,4BAA4B;QAC5B,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC;YACvB,EAAE,EAAE,IAAI,EAAE;YACV,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,WAAW,EAAE,GAAG,CAAC,WAAW,EAAE;YAC9B,cAAc,EAAE,eAAe,CAAC,YAAY;YAC5C,kBAAkB,EAAE,eAAe,CAAC,SAAS;YAC7C,cAAc;YACd,YAAY;YACZ,QAAQ,EAAE;gBACR,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,OAAO,EAAE,KAAK,CAAC,EAAE;gBACjB,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,OAAO,EAAE,eAAe,CAAC,OAAO;aACjC;SACF,CAAC,CAAC;QAEH,kBAAkB;QAClB,QAAQ,CAAC,YAAY,GAAG,CAAC,aAAa,EAAE,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC/D,QAAQ,CAAC,eAAe,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;QAC7C,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;IACnC,CAAC;IAEO,YAAY,CAAC,IAAmB,EAAE,GAAS;QACjD,IAAI,IAAI,CAAC,eAAe,IAAI,CAAC;YAAE,OAAO,KAAK,CAAC;QAC5C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAC1D,IAAI,CAAC,KAAK,EAAE,eAAe;YAAE,OAAO,KAAK,CAAC;QAC1C,MAAM,aAAa,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;QACtD,OAAO,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,eAAe,GAAG,EAAE,GAAG,IAAI,CAAC;IACpF,CAAC;CACF"}
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../../src/lib/guardrails/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAsCG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAI5B,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAC;AAC7D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAiB,MAAM,iBAAiB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAE5C,MAAM,GAAG,GAAG,YAAY,CAAC,iBAAiB,CAAC,CAAC;AAE5C,MAAM,OAAO,eAAe;IAClB,KAAK,CAAiB;IACtB,UAAU,CAAc;IACxB,QAAQ,GAAuC,IAAI,CAAC;IACpD,OAAO,GAAG,KAAK,CAAC;IAExB,YAAY,UAAuB,EAAE,EAAY;QAC/C,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;QAC7B,IAAI,CAAC,KAAK,GAAG,IAAI,cAAc,CAAC,EAAE,CAAC,CAAC;IACtC,CAAC;IAED,KAAK;QACH,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QACzB,IAAI,CAAC,QAAQ,GAAG,CAAC,QAAkB,EAAE,EAAE;YACrC,IAAI,QAAQ,CAAC,IAAI,KAAK,gBAAgB,EAAE,CAAC;gBACvC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;oBAC/C,GAAG,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAC7F,CAAC,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC;QACF,QAAQ,CAAC,EAAE,CAAC,gBAAgB,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC7C,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,IAAI;QACF,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,QAAQ,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;YAC9C,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC;QACvB,CAAC;QACD,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC;IACvB,CAAC;IAED,QAAQ;QACN,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,KAAqB;QACvC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,KAAK,CAAC,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;QACzE,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAE/B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YACvC,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,GAAG,CAAC,KAAK,CAAC,QAAQ,IAAI,CAAC,EAAE,QAAQ,EAAE,EAAE,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClG,CAAC;QACH,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,YAAY,CAAC,IAAmB,EAAE,KAAqB;QACnE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QAEvB,qFAAqF;QACrF,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO;QAE1B,oBAAoB;QACpB,IAAI,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,GAAG,CAAC;YAAE,OAAO;QAEzC,wBAAwB;QACxB,MAAM,eAAe,GAAG,MAAM,iBAAiB,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,SAAS,CAAC,CAAC;QAEvG,kBAAkB;QAClB,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAClE,MAAM,QAAQ,GAAmB;YAC/B,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,eAAe,EAAE,GAAG,CAAC,WAAW,EAAE;YAClC,YAAY,EAAE,eAAe,CAAC,YAAY;YAC1C,YAAY,EAAE,aAAa,EAAE,YAAY,IAAI,CAAC;YAC9C,eAAe,EAAE,aAAa,EAAE,eAAe;SAChD,CAAC;QAEF,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,CAAC;YAC/B,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;YACjC,OAAO;QACT,CAAC;QAED,iCAAiC;QACjC,IAAI,YAAY,GAAG,SAAS,CAAC;QAC7B,IAAI,cAAc,GAAG,KAAK,CAAC;QAE3B,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,eAAe,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;YACzE,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC;YAC7B,cAAc,GAAG,MAAM,CAAC,OAAO,CAAC;QAClC,CAAC;QAED,4BAA4B;QAC5B,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC;YACvB,EAAE,EAAE,IAAI,EAAE;YACV,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,WAAW,EAAE,GAAG,CAAC,WAAW,EAAE;YAC9B,cAAc,EAAE,eAAe,CAAC,YAAY;YAC5C,kBAAkB,EAAE,eAAe,CAAC,SAAS;YAC7C,cAAc;YACd,YAAY;YACZ,QAAQ,EAAE;gBACR,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,SAAS,EAAE,KAAK,CAAC,SAAS;gBAC1B,OAAO,EAAE,KAAK,CAAC,EAAE;gBACjB,MAAM,EAAE,IAAI,CAAC,MAAM;gBACnB,OAAO,EAAE,eAAe,CAAC,OAAO;aACjC;SACF,CAAC,CAAC;QAEH,kBAAkB;QAClB,QAAQ,CAAC,YAAY,GAAG,CAAC,aAAa,EAAE,YAAY,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC/D,QAAQ,CAAC,eAAe,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;QAC7C,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;IACnC,CAAC;IAEO,YAAY,CAAC,IAAmB,EAAE,GAAS;QACjD,IAAI,IAAI,CAAC,eAAe,IAAI,CAAC;YAAE,OAAO,KAAK,CAAC;QAC5C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QAC1D,IAAI,CAAC,KAAK,EAAE,eAAe;YAAE,OAAO,KAAK,CAAC;QAC1C,MAAM,aAAa,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC;QACtD,OAAO,GAAG,CAAC,OAAO,EAAE,GAAG,aAAa,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,eAAe,GAAG,EAAE,GAAG,IAAI,CAAC;IACpF,CAAC;CACF"}

package/dist/lib/guardrails/scanners/base-scanner.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Base Content Scanner (Feature 8 — Story 3)
+ */
+import type { ContentMatch } from '@agentlensai/core';
+export interface ScanContext {
+    tenantId: string;
+    agentId: string;
+    toolName: string;
+    direction: 'input' | 'output';
+}
+export interface ScanResult {
+    matches: ContentMatch[];
+}
+export declare abstract class ContentScanner {
+    abstract readonly type: string;
+    /** Initialize/compile patterns for the given rule config. Called once. */
+    abstract compile(conditionConfig: Record<string, unknown>): void;
+    /** Scan content and return matches. */
+    abstract scan(content: string, context: ScanContext): ScanResult | Promise<ScanResult>;
+    /** Whether this scanner requires async execution. */
+    get isAsync(): boolean;
+}
+//# sourceMappingURL=base-scanner.d.ts.map

package/dist/lib/guardrails/scanners/base-scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-scanner.d.ts","sourceRoot":"","sources":["../../../../src/lib/guardrails/scanners/base-scanner.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAEtD,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,OAAO,GAAG,QAAQ,CAAC;CAC/B;AAED,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,YAAY,EAAE,CAAC;CACzB;AAED,8BAAsB,cAAc;IAClC,QAAQ,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IAE/B,0EAA0E;IAC1E,QAAQ,CAAC,OAAO,CAAC,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI;IAEhE,uCAAuC;IACvC,QAAQ,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,WAAW,GAAG,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;IAEtF,qDAAqD;IACrD,IAAI,OAAO,IAAI,OAAO,CAErB;CACF"}

package/dist/lib/guardrails/scanners/base-scanner.js

@@ -0,0 +1,7 @@
+export class ContentScanner {
+    /** Whether this scanner requires async execution. */
+    get isAsync() {
+        return false;
+    }
+}
+//# sourceMappingURL=base-scanner.js.map

package/dist/lib/guardrails/scanners/base-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-scanner.js","sourceRoot":"","sources":["../../../../src/lib/guardrails/scanners/base-scanner.ts"],"names":[],"mappings":"AAgBA,MAAM,OAAgB,cAAc;IASlC,qDAAqD;IACrD,IAAI,OAAO;QACT,OAAO,KAAK,CAAC;IACf,CAAC;CACF"}

package/dist/lib/guardrails/scanners/patterns/pii-patterns.d.ts

@@ -0,0 +1,13 @@
+/**
+ * PII Pattern Library (Feature 8 — Story 4)
+ */
+export interface PatternDef {
+    name: string;
+    regex: RegExp;
+    redactionToken: string;
+    confidence: number;
+    validate?: (match: string) => boolean;
+}
+export declare function luhnCheck(cardNumber: string): boolean;
+export declare const PII_PATTERNS: Record<string, PatternDef>;
+//# sourceMappingURL=pii-patterns.d.ts.map

package/dist/lib/guardrails/scanners/patterns/pii-patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"pii-patterns.d.ts","sourceRoot":"","sources":["../../../../../src/lib/guardrails/scanners/patterns/pii-patterns.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,cAAc,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC;CACvC;AAED,wBAAgB,SAAS,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAYrD;AAED,eAAO,MAAM,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CA0BnD,CAAC"}

package/dist/lib/guardrails/scanners/patterns/pii-patterns.js

@@ -0,0 +1,49 @@
+/**
+ * PII Pattern Library (Feature 8 — Story 4)
+ */
+export function luhnCheck(cardNumber) {
+    const digits = cardNumber.replace(/\D/g, '');
+    if (digits.length < 13 || digits.length > 19)
+        return false;
+    let sum = 0;
+    let alternate = false;
+    for (let i = digits.length - 1; i >= 0; i--) {
+        let n = parseInt(digits[i], 10);
+        if (alternate) {
+            n *= 2;
+            if (n > 9)
+                n -= 9;
+        }
+        sum += n;
+        alternate = !alternate;
+    }
+    return sum % 10 === 0;
+}
+export const PII_PATTERNS = {
+    ssn: {
+        name: 'ssn',
+        regex: /\b\d{3}-\d{2}-\d{4}\b/g,
+        redactionToken: '[SSN_REDACTED]',
+        confidence: 0.95,
+    },
+    credit_card: {
+        name: 'credit_card',
+        regex: /\b(?:\d[ -]*?){13,19}\b/g,
+        redactionToken: '[CC_REDACTED]',
+        confidence: 0.85,
+        validate: luhnCheck,
+    },
+    email: {
+        name: 'email',
+        regex: /\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}\b/g,
+        redactionToken: '[EMAIL_REDACTED]',
+        confidence: 0.95,
+    },
+    phone_us: {
+        name: 'phone_us',
+        regex: /\b(?:\+?1[-.\s]?)?\(?[2-9]\d{2}\)?[-.\s]?\d{3}[-.\s]?\d{4}\b/g,
+        redactionToken: '[PHONE_REDACTED]',
+        confidence: 0.80,
+    },
+};
+//# sourceMappingURL=pii-patterns.js.map

package/dist/lib/guardrails/scanners/patterns/pii-patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"pii-patterns.js","sourceRoot":"","sources":["../../../../../src/lib/guardrails/scanners/patterns/pii-patterns.ts"],"names":[],"mappings":"AAAA;;GAEG;AAUH,MAAM,UAAU,SAAS,CAAC,UAAkB;IAC1C,MAAM,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IAC7C,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE;QAAE,OAAO,KAAK,CAAC;IAC3D,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,IAAI,SAAS,GAAG,KAAK,CAAC;IACtB,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5C,IAAI,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAChC,IAAI,SAAS,EAAE,CAAC;YAAC,CAAC,IAAI,CAAC,CAAC;YAAC,IAAI,CAAC,GAAG,CAAC;gBAAE,CAAC,IAAI,CAAC,CAAC;QAAC,CAAC;QAC7C,GAAG,IAAI,CAAC,CAAC;QACT,SAAS,GAAG,CAAC,SAAS,CAAC;IACzB,CAAC;IACD,OAAO,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC;AACxB,CAAC;AAED,MAAM,CAAC,MAAM,YAAY,GAA+B;IACtD,GAAG,EAAE;QACH,IAAI,EAAE,KAAK;QACX,KAAK,EAAE,wBAAwB;QAC/B,cAAc,EAAE,gBAAgB;QAChC,UAAU,EAAE,IAAI;KACjB;IACD,WAAW,EAAE;QACX,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,0BAA0B;QACjC,cAAc,EAAE,eAAe;QAC/B,UAAU,EAAE,IAAI;QAChB,QAAQ,EAAE,SAAS;KACpB;IACD,KAAK,EAAE;QACL,IAAI,EAAE,OAAO;QACb,KAAK,EAAE,qDAAqD;QAC5D,cAAc,EAAE,kBAAkB;QAClC,UAAU,EAAE,IAAI;KACjB;IACD,QAAQ,EAAE;QACR,IAAI,EAAE,UAAU;QAChB,KAAK,EAAE,+DAA+D;QACtE,cAAc,EAAE,kBAAkB;QAClC,UAAU,EAAE,IAAI;KACjB;CACF,CAAC"}

package/dist/lib/guardrails/scanners/patterns/secret-patterns.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Secret Pattern Library (Feature 8 — Story 5)
+ */
+import type { PatternDef } from './pii-patterns.js';
+export declare const SECRET_PATTERNS: Record<string, PatternDef>;
+//# sourceMappingURL=secret-patterns.d.ts.map

package/dist/lib/guardrails/scanners/patterns/secret-patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"secret-patterns.d.ts","sourceRoot":"","sources":["../../../../../src/lib/guardrails/scanners/patterns/secret-patterns.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAEpD,eAAO,MAAM,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CAmEtD,CAAC"}