@agentlensai/server 0.8.0 → 0.9.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/db/anonymous-id-manager.d.ts +44 -0
- package/dist/db/anonymous-id-manager.d.ts.map +1 -0
- package/dist/db/anonymous-id-manager.js +90 -0
- package/dist/db/anonymous-id-manager.js.map +1 -0
- package/dist/db/capability-store.d.ts +78 -0
- package/dist/db/capability-store.d.ts.map +1 -0
- package/dist/db/capability-store.js +201 -0
- package/dist/db/capability-store.js.map +1 -0
- package/dist/db/migrate.d.ts.map +1 -1
- package/dist/db/migrate.js +136 -0
- package/dist/db/migrate.js.map +1 -1
- package/dist/db/schema.sqlite.d.ts +1663 -2
- package/dist/db/schema.sqlite.d.ts.map +1 -1
- package/dist/db/schema.sqlite.js +135 -1
- package/dist/db/schema.sqlite.js.map +1 -1
- package/dist/index.d.ts +5 -0
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +32 -0
- package/dist/index.js.map +1 -1
- package/dist/lib/redaction/human-review-layer.d.ts +37 -0
- package/dist/lib/redaction/human-review-layer.d.ts.map +1 -0
- package/dist/lib/redaction/human-review-layer.js +62 -0
- package/dist/lib/redaction/human-review-layer.js.map +1 -0
- package/dist/lib/redaction/index.d.ts +12 -0
- package/dist/lib/redaction/index.d.ts.map +1 -0
- package/dist/lib/redaction/index.js +12 -0
- package/dist/lib/redaction/index.js.map +1 -0
- package/dist/lib/redaction/pii-detection-layer.d.ts +30 -0
- package/dist/lib/redaction/pii-detection-layer.d.ts.map +1 -0
- package/dist/lib/redaction/pii-detection-layer.js +183 -0
- package/dist/lib/redaction/pii-detection-layer.js.map +1 -0
- package/dist/lib/redaction/pipeline.d.ts +26 -0
- package/dist/lib/redaction/pipeline.d.ts.map +1 -0
- package/dist/lib/redaction/pipeline.js +91 -0
- package/dist/lib/redaction/pipeline.js.map +1 -0
- package/dist/lib/redaction/secret-detection-layer.d.ts +10 -0
- package/dist/lib/redaction/secret-detection-layer.d.ts.map +1 -0
- package/dist/lib/redaction/secret-detection-layer.js +79 -0
- package/dist/lib/redaction/secret-detection-layer.js.map +1 -0
- package/dist/lib/redaction/secret-patterns.d.ts +29 -0
- package/dist/lib/redaction/secret-patterns.d.ts.map +1 -0
- package/dist/lib/redaction/secret-patterns.js +133 -0
- package/dist/lib/redaction/secret-patterns.js.map +1 -0
- package/dist/lib/redaction/semantic-denylist-layer.d.ts +10 -0
- package/dist/lib/redaction/semantic-denylist-layer.d.ts.map +1 -0
- package/dist/lib/redaction/semantic-denylist-layer.js +64 -0
- package/dist/lib/redaction/semantic-denylist-layer.js.map +1 -0
- package/dist/lib/redaction/tenant-deidentification-layer.d.ts +10 -0
- package/dist/lib/redaction/tenant-deidentification-layer.d.ts.map +1 -0
- package/dist/lib/redaction/tenant-deidentification-layer.js +64 -0
- package/dist/lib/redaction/tenant-deidentification-layer.js.map +1 -0
- package/dist/lib/redaction/url-path-scrubbing-layer.d.ts +14 -0
- package/dist/lib/redaction/url-path-scrubbing-layer.d.ts.map +1 -0
- package/dist/lib/redaction/url-path-scrubbing-layer.js +156 -0
- package/dist/lib/redaction/url-path-scrubbing-layer.js.map +1 -0
- package/dist/routes/agents.d.ts.map +1 -1
- package/dist/routes/agents.js +3 -9
- package/dist/routes/agents.js.map +1 -1
- package/dist/routes/audit.d.ts +15 -0
- package/dist/routes/audit.d.ts.map +1 -0
- package/dist/routes/audit.js +177 -0
- package/dist/routes/audit.js.map +1 -0
- package/dist/routes/capabilities.d.ts +15 -0
- package/dist/routes/capabilities.d.ts.map +1 -0
- package/dist/routes/capabilities.js +86 -0
- package/dist/routes/capabilities.js.map +1 -0
- package/dist/routes/community.d.ts +24 -0
- package/dist/routes/community.d.ts.map +1 -0
- package/dist/routes/community.js +190 -0
- package/dist/routes/community.js.map +1 -0
- package/dist/routes/delegation.d.ts +20 -0
- package/dist/routes/delegation.d.ts.map +1 -0
- package/dist/routes/delegation.js +108 -0
- package/dist/routes/delegation.js.map +1 -0
- package/dist/routes/discovery.d.ts +19 -0
- package/dist/routes/discovery.d.ts.map +1 -0
- package/dist/routes/discovery.js +96 -0
- package/dist/routes/discovery.js.map +1 -0
- package/dist/routes/redaction-test.d.ts +14 -0
- package/dist/routes/redaction-test.d.ts.map +1 -0
- package/dist/routes/redaction-test.js +33 -0
- package/dist/routes/redaction-test.js.map +1 -0
- package/dist/routes/trust.d.ts +16 -0
- package/dist/routes/trust.d.ts.map +1 -0
- package/dist/routes/trust.js +23 -0
- package/dist/routes/trust.js.map +1 -0
- package/dist/services/community-service.d.ts +277 -0
- package/dist/services/community-service.d.ts.map +1 -0
- package/dist/services/community-service.js +785 -0
- package/dist/services/community-service.js.map +1 -0
- package/dist/services/delegation-service.d.ts +149 -0
- package/dist/services/delegation-service.d.ts.map +1 -0
- package/dist/services/delegation-service.js +605 -0
- package/dist/services/delegation-service.js.map +1 -0
- package/dist/services/discovery-service.d.ts +39 -0
- package/dist/services/discovery-service.d.ts.map +1 -0
- package/dist/services/discovery-service.js +186 -0
- package/dist/services/discovery-service.js.map +1 -0
- package/dist/services/trust-service.d.ts +59 -0
- package/dist/services/trust-service.d.ts.map +1 -0
- package/dist/services/trust-service.js +139 -0
- package/dist/services/trust-service.js.map +1 -0
- package/package.json +2 -2
|
@@ -0,0 +1,64 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Layer 5: Semantic Deny List (Story 2.2)
|
|
3
|
+
*/
|
|
4
|
+
export class SemanticDenyListLayer {
|
|
5
|
+
name = 'semantic_denylist';
|
|
6
|
+
order = 500;
|
|
7
|
+
process(input, context) {
|
|
8
|
+
const findings = [];
|
|
9
|
+
for (const pattern of context.denyListPatterns) {
|
|
10
|
+
let matched = false;
|
|
11
|
+
let matchStart = -1;
|
|
12
|
+
let matchEnd = -1;
|
|
13
|
+
let matchedText = '';
|
|
14
|
+
if (pattern.startsWith('/') && pattern.lastIndexOf('/') > 0) {
|
|
15
|
+
// Regex pattern: /pattern/flags
|
|
16
|
+
const lastSlash = pattern.lastIndexOf('/');
|
|
17
|
+
const regexBody = pattern.slice(1, lastSlash);
|
|
18
|
+
const flags = pattern.slice(lastSlash + 1);
|
|
19
|
+
try {
|
|
20
|
+
const regex = new RegExp(regexBody, flags.includes('i') ? 'gi' : 'g');
|
|
21
|
+
const match = regex.exec(input);
|
|
22
|
+
if (match) {
|
|
23
|
+
matched = true;
|
|
24
|
+
matchStart = match.index;
|
|
25
|
+
matchEnd = match.index + match[0].length;
|
|
26
|
+
matchedText = match[0];
|
|
27
|
+
}
|
|
28
|
+
}
|
|
29
|
+
catch {
|
|
30
|
+
// Invalid regex — skip
|
|
31
|
+
}
|
|
32
|
+
}
|
|
33
|
+
else {
|
|
34
|
+
// Plain text match (case-insensitive)
|
|
35
|
+
const idx = input.toLowerCase().indexOf(pattern.toLowerCase());
|
|
36
|
+
if (idx !== -1) {
|
|
37
|
+
matched = true;
|
|
38
|
+
matchStart = idx;
|
|
39
|
+
matchEnd = idx + pattern.length;
|
|
40
|
+
matchedText = input.slice(idx, idx + pattern.length);
|
|
41
|
+
}
|
|
42
|
+
}
|
|
43
|
+
if (matched) {
|
|
44
|
+
findings.push({
|
|
45
|
+
layer: 'semantic_denylist',
|
|
46
|
+
category: 'denied_content',
|
|
47
|
+
originalLength: matchedText.length,
|
|
48
|
+
replacement: '',
|
|
49
|
+
startOffset: matchStart,
|
|
50
|
+
endOffset: matchEnd,
|
|
51
|
+
confidence: 1.0,
|
|
52
|
+
});
|
|
53
|
+
return {
|
|
54
|
+
output: input,
|
|
55
|
+
findings,
|
|
56
|
+
blocked: true,
|
|
57
|
+
blockReason: `Content matched deny-list pattern: ${pattern}`,
|
|
58
|
+
};
|
|
59
|
+
}
|
|
60
|
+
}
|
|
61
|
+
return { output: input, findings, blocked: false };
|
|
62
|
+
}
|
|
63
|
+
}
|
|
64
|
+
//# sourceMappingURL=semantic-denylist-layer.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"semantic-denylist-layer.js","sourceRoot":"","sources":["../../../src/lib/redaction/semantic-denylist-layer.ts"],"names":[],"mappings":"AAAA;;GAEG;AASH,MAAM,OAAO,qBAAqB;IACvB,IAAI,GAAG,mBAA4B,CAAC;IACpC,KAAK,GAAG,GAAG,CAAC;IAErB,OAAO,CAAC,KAAa,EAAE,OAAyB;QAC9C,MAAM,QAAQ,GAAuB,EAAE,CAAC;QAExC,KAAK,MAAM,OAAO,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;YAC/C,IAAI,OAAO,GAAG,KAAK,CAAC;YACpB,IAAI,UAAU,GAAG,CAAC,CAAC,CAAC;YACpB,IAAI,QAAQ,GAAG,CAAC,CAAC,CAAC;YAClB,IAAI,WAAW,GAAG,EAAE,CAAC;YAErB,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC5D,gCAAgC;gBAChC,MAAM,SAAS,GAAG,OAAO,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;gBAC3C,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC;gBAC9C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC;gBAC3C,IAAI,CAAC;oBACH,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,SAAS,EAAE,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;oBACtE,MAAM,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;oBAChC,IAAI,KAAK,EAAE,CAAC;wBACV,OAAO,GAAG,IAAI,CAAC;wBACf,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC;wBACzB,QAAQ,GAAG,KAAK,CAAC,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC;wBACzC,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;oBACzB,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,uBAAuB;gBACzB,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,sCAAsC;gBACtC,MAAM,GAAG,GAAG,KAAK,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC;gBAC/D,IAAI,GAAG,KAAK,CAAC,CAAC,EAAE,CAAC;oBACf,OAAO,GAAG,IAAI,CAAC;oBACf,UAAU,GAAG,GAAG,CAAC;oBACjB,QAAQ,GAAG,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC;oBAChC,WAAW,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,EAAE,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;gBACvD,CAAC;YACH,CAAC;YAED,IAAI,OAAO,EAAE,CAAC;gBACZ,QAAQ,CAAC,IAAI,CAAC;oBACZ,KAAK,EAAE,mBAAmB;oBAC1B,QAAQ,EAAE,gBAAgB;oBAC1B,cAAc,EAAE,WAAW,CAAC,MAAM;oBAClC,WAAW,EAAE,EAAE;oBACf,WAAW,EAAE,UAAU;oBACvB,SAAS,EAAE,QAAQ;oBACnB,UAAU,EAAE,GAAG;iBAChB,CAAC,CAAC;gBAEH,OAAO;oBACL,MAAM,EAAE,KAAK;oBACb,QAAQ;oBACR,OAAO,EAAE,IAAI;oBACb,WAAW,EAAE,sCAAsC,OAAO,EAAE;iBAC7D,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IACrD,CAAC;CACF"}
|
|
@@ -0,0 +1,10 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Layer 4: Tenant De-identification (Story 2.2)
|
|
3
|
+
*/
|
|
4
|
+
import type { RedactionLayer, RedactionLayerResult, RedactionContext } from '@agentlensai/core';
|
|
5
|
+
export declare class TenantDeidentificationLayer implements RedactionLayer {
|
|
6
|
+
readonly name: "tenant_deidentification";
|
|
7
|
+
readonly order = 400;
|
|
8
|
+
process(input: string, context: RedactionContext): RedactionLayerResult;
|
|
9
|
+
}
|
|
10
|
+
//# sourceMappingURL=tenant-deidentification-layer.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"tenant-deidentification-layer.d.ts","sourceRoot":"","sources":["../../../src/lib/redaction/tenant-deidentification-layer.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EACV,cAAc,EACd,oBAAoB,EACpB,gBAAgB,EAEjB,MAAM,mBAAmB,CAAC;AAK3B,qBAAa,2BAA4B,YAAW,cAAc;IAChE,QAAQ,CAAC,IAAI,EAAG,yBAAyB,CAAU;IACnD,QAAQ,CAAC,KAAK,OAAO;IAErB,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,gBAAgB,GAAG,oBAAoB;CA2DxE"}
|
|
@@ -0,0 +1,64 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Layer 4: Tenant De-identification (Story 2.2)
|
|
3
|
+
*/
|
|
4
|
+
// UUID v4 pattern
|
|
5
|
+
const UUID_RE = /\b[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}\b/gi;
|
|
6
|
+
export class TenantDeidentificationLayer {
|
|
7
|
+
name = 'tenant_deidentification';
|
|
8
|
+
order = 400;
|
|
9
|
+
process(input, context) {
|
|
10
|
+
const findings = [];
|
|
11
|
+
let output = input;
|
|
12
|
+
// Build list of terms to strip
|
|
13
|
+
const terms = [];
|
|
14
|
+
if (context.tenantId)
|
|
15
|
+
terms.push(context.tenantId);
|
|
16
|
+
if (context.agentId)
|
|
17
|
+
terms.push(context.agentId);
|
|
18
|
+
terms.push(...context.knownTenantTerms);
|
|
19
|
+
// Filter empty/very short terms (avoid stripping single chars)
|
|
20
|
+
const validTerms = terms.filter(t => t.length >= 3);
|
|
21
|
+
// Sort by length descending to replace longer terms first
|
|
22
|
+
validTerms.sort((a, b) => b.length - a.length);
|
|
23
|
+
for (const term of validTerms) {
|
|
24
|
+
const escaped = term.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
|
|
25
|
+
const regex = new RegExp(escaped, 'gi');
|
|
26
|
+
let match;
|
|
27
|
+
while ((match = regex.exec(output)) !== null) {
|
|
28
|
+
findings.push({
|
|
29
|
+
layer: 'tenant_deidentification',
|
|
30
|
+
category: 'tenant_term',
|
|
31
|
+
originalLength: match[0].length,
|
|
32
|
+
replacement: '[TENANT_ENTITY]',
|
|
33
|
+
startOffset: match.index,
|
|
34
|
+
endOffset: match.index + match[0].length,
|
|
35
|
+
confidence: 0.90,
|
|
36
|
+
});
|
|
37
|
+
}
|
|
38
|
+
output = output.replace(regex, '[TENANT_ENTITY]');
|
|
39
|
+
}
|
|
40
|
+
// Strip UUIDs (could be tenant/agent/user IDs)
|
|
41
|
+
const uuidRegex = new RegExp(UUID_RE.source, 'gi');
|
|
42
|
+
let uuidMatch;
|
|
43
|
+
const uuidMatches = [];
|
|
44
|
+
while ((uuidMatch = uuidRegex.exec(output)) !== null) {
|
|
45
|
+
uuidMatches.push({ start: uuidMatch.index, end: uuidMatch.index + uuidMatch[0].length });
|
|
46
|
+
}
|
|
47
|
+
// Replace UUIDs from end
|
|
48
|
+
for (let i = uuidMatches.length - 1; i >= 0; i--) {
|
|
49
|
+
const m = uuidMatches[i];
|
|
50
|
+
findings.push({
|
|
51
|
+
layer: 'tenant_deidentification',
|
|
52
|
+
category: 'uuid',
|
|
53
|
+
originalLength: m.end - m.start,
|
|
54
|
+
replacement: '[TENANT_ENTITY]',
|
|
55
|
+
startOffset: m.start,
|
|
56
|
+
endOffset: m.end,
|
|
57
|
+
confidence: 0.85,
|
|
58
|
+
});
|
|
59
|
+
output = output.slice(0, m.start) + '[TENANT_ENTITY]' + output.slice(m.end);
|
|
60
|
+
}
|
|
61
|
+
return { output, findings, blocked: false };
|
|
62
|
+
}
|
|
63
|
+
}
|
|
64
|
+
//# sourceMappingURL=tenant-deidentification-layer.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"tenant-deidentification-layer.js","sourceRoot":"","sources":["../../../src/lib/redaction/tenant-deidentification-layer.ts"],"names":[],"mappings":"AAAA;;GAEG;AASH,kBAAkB;AAClB,MAAM,OAAO,GAAG,oEAAoE,CAAC;AAErF,MAAM,OAAO,2BAA2B;IAC7B,IAAI,GAAG,yBAAkC,CAAC;IAC1C,KAAK,GAAG,GAAG,CAAC;IAErB,OAAO,CAAC,KAAa,EAAE,OAAyB;QAC9C,MAAM,QAAQ,GAAuB,EAAE,CAAC;QACxC,IAAI,MAAM,GAAG,KAAK,CAAC;QAEnB,+BAA+B;QAC/B,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,IAAI,OAAO,CAAC,QAAQ;YAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACnD,IAAI,OAAO,CAAC,OAAO;YAAE,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACjD,KAAK,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC;QAExC,+DAA+D;QAC/D,MAAM,UAAU,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;QAEpD,0DAA0D;QAC1D,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC;QAE/C,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;YAC9B,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC;YAC5D,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;YACxC,IAAI,KAA6B,CAAC;YAClC,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAC7C,QAAQ,CAAC,IAAI,CAAC;oBACZ,KAAK,EAAE,yBAAyB;oBAChC,QAAQ,EAAE,aAAa;oBACvB,cAAc,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM;oBAC/B,WAAW,EAAE,iBAAiB;oBAC9B,WAAW,EAAE,KAAK,CAAC,KAAK;oBACxB,SAAS,EAAE,KAAK,CAAC,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM;oBACxC,UAAU,EAAE,IAAI;iBACjB,CAAC,CAAC;YACL,CAAC;YACD,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,iBAAiB,CAAC,CAAC;QACpD,CAAC;QAED,+CAA+C;QAC/C,MAAM,SAAS,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QACnD,IAAI,SAAiC,CAAC;QACtC,MAAM,WAAW,GAA0C,EAAE,CAAC;QAC9D,OAAO,CAAC,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YACrD,WAAW,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,SAAS,CAAC,KAAK,EAAE,GAAG,EAAE,SAAS,CAAC,KAAK,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;QAC3F,CAAC;QAED,yBAAyB;QACzB,KAAK,IAAI,CAAC,GAAG,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YACjD,MAAM,CAAC,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;YACzB,QAAQ,CAAC,IAAI,CAAC;gBACZ,KAAK,EAAE,yBAAyB;gBAChC,QAAQ,EAAE,MAAM;gBAChB,cAAc,EAAE,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK;gBAC/B,WAAW,EAAE,iBAAiB;gBAC9B,WAAW,EAAE,CAAC,CAAC,KAAK;gBACpB,SAAS,EAAE,CAAC,CAAC,GAAG;gBAChB,UAAU,EAAE,IAAI;aACjB,CAAC,CAAC;YACH,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,iBAAiB,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC9E,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAC9C,CAAC;CACF"}
|
|
@@ -0,0 +1,14 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Layer 3: URL/Path Scrubbing (Story 2.1)
|
|
3
|
+
*/
|
|
4
|
+
import type { RedactionLayer, RedactionLayerResult, RedactionContext } from '@agentlensai/core';
|
|
5
|
+
/** Default public domain allowlist — URLs to these domains are preserved */
|
|
6
|
+
export declare const DEFAULT_PUBLIC_DOMAINS: Set<string>;
|
|
7
|
+
export declare class UrlPathScrubbingLayer implements RedactionLayer {
|
|
8
|
+
readonly name: "url_path_scrubbing";
|
|
9
|
+
readonly order = 300;
|
|
10
|
+
private readonly allowlist;
|
|
11
|
+
constructor(publicDomainAllowlist?: string[]);
|
|
12
|
+
process(input: string, _context: RedactionContext): RedactionLayerResult;
|
|
13
|
+
}
|
|
14
|
+
//# sourceMappingURL=url-path-scrubbing-layer.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"url-path-scrubbing-layer.d.ts","sourceRoot":"","sources":["../../../src/lib/redaction/url-path-scrubbing-layer.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EACV,cAAc,EACd,oBAAoB,EACpB,gBAAgB,EAEjB,MAAM,mBAAmB,CAAC;AAE3B,4EAA4E;AAC5E,eAAO,MAAM,sBAAsB,aAoBjC,CAAC;AAmDH,qBAAa,qBAAsB,YAAW,cAAc;IAC1D,QAAQ,CAAC,IAAI,EAAG,oBAAoB,CAAU;IAC9C,QAAQ,CAAC,KAAK,OAAO;IAErB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAc;gBAE5B,qBAAqB,CAAC,EAAE,MAAM,EAAE;IAM5C,OAAO,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,gBAAgB,GAAG,oBAAoB;CAuFzE"}
|
|
@@ -0,0 +1,156 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Layer 3: URL/Path Scrubbing (Story 2.1)
|
|
3
|
+
*/
|
|
4
|
+
/** Default public domain allowlist — URLs to these domains are preserved */
|
|
5
|
+
export const DEFAULT_PUBLIC_DOMAINS = new Set([
|
|
6
|
+
'github.com', 'gitlab.com', 'bitbucket.org',
|
|
7
|
+
'stackoverflow.com', 'stackexchange.com',
|
|
8
|
+
'docs.python.org', 'docs.rs', 'pkg.go.dev',
|
|
9
|
+
'npmjs.com', 'pypi.org', 'crates.io',
|
|
10
|
+
'developer.mozilla.org', 'mdn.io',
|
|
11
|
+
'wikipedia.org', 'en.wikipedia.org',
|
|
12
|
+
'google.com', 'youtube.com',
|
|
13
|
+
'medium.com', 'dev.to',
|
|
14
|
+
'reddit.com', 'news.ycombinator.com',
|
|
15
|
+
'twitter.com', 'x.com',
|
|
16
|
+
'microsoft.com', 'docs.microsoft.com', 'learn.microsoft.com',
|
|
17
|
+
'aws.amazon.com', 'docs.aws.amazon.com',
|
|
18
|
+
'cloud.google.com',
|
|
19
|
+
'azure.microsoft.com',
|
|
20
|
+
'docker.com', 'hub.docker.com',
|
|
21
|
+
'kubernetes.io',
|
|
22
|
+
'vercel.com', 'netlify.com', 'heroku.com',
|
|
23
|
+
'openai.com', 'platform.openai.com',
|
|
24
|
+
'anthropic.com', 'docs.anthropic.com',
|
|
25
|
+
]);
|
|
26
|
+
const PRIVATE_IP_RE = /\b(?:10\.\d{1,3}\.\d{1,3}\.\d{1,3}|172\.(?:1[6-9]|2\d|3[01])\.\d{1,3}\.\d{1,3}|192\.168\.\d{1,3}\.\d{1,3}|127\.\d{1,3}\.\d{1,3}\.\d{1,3})\b/g;
|
|
27
|
+
const UNIX_PATH_RE = /(?:\/(?:home|Users|var|etc|tmp|opt|usr|root|srv|mnt|proc|dev|sys|run))\/?[^\s,;:)"'`\]}>]*/g;
|
|
28
|
+
const WINDOWS_PATH_RE = /[A-Z]:\\[^\s,;:)"'`\]}>]*/g;
|
|
29
|
+
const UNC_PATH_RE = /\\\\[a-zA-Z0-9._-]+\\[^\s,;:)"'`\]}>]*/g;
|
|
30
|
+
const URL_RE = /https?:\/\/[^\s,;)"'`\]}>]+/g;
|
|
31
|
+
const INTERNAL_HOST_PATTERNS = [
|
|
32
|
+
/\.local\b/i,
|
|
33
|
+
/\.internal\b/i,
|
|
34
|
+
/\.corp\b/i,
|
|
35
|
+
/\.private\b/i,
|
|
36
|
+
/\.lan\b/i,
|
|
37
|
+
/\.intranet\b/i,
|
|
38
|
+
/\.compute\.internal\b/i,
|
|
39
|
+
/localhost/i,
|
|
40
|
+
];
|
|
41
|
+
function extractHostFromUrl(url) {
|
|
42
|
+
try {
|
|
43
|
+
const parsed = new URL(url);
|
|
44
|
+
return parsed.hostname;
|
|
45
|
+
}
|
|
46
|
+
catch {
|
|
47
|
+
// Try extracting manually
|
|
48
|
+
const match = url.match(/https?:\/\/([^/:]+)/);
|
|
49
|
+
return match?.[1] ?? null;
|
|
50
|
+
}
|
|
51
|
+
}
|
|
52
|
+
function isPrivateIP(host) {
|
|
53
|
+
return /^(?:10\.\d{1,3}\.\d{1,3}\.\d{1,3}|172\.(?:1[6-9]|2\d|3[01])\.\d{1,3}\.\d{1,3}|192\.168\.\d{1,3}\.\d{1,3}|127\.\d{1,3}\.\d{1,3}\.\d{1,3})$/.test(host);
|
|
54
|
+
}
|
|
55
|
+
function isInternalHost(host) {
|
|
56
|
+
if (isPrivateIP(host))
|
|
57
|
+
return true;
|
|
58
|
+
return INTERNAL_HOST_PATTERNS.some(p => p.test(host));
|
|
59
|
+
}
|
|
60
|
+
function isPublicDomain(host, allowlist) {
|
|
61
|
+
// Check exact match and parent domains
|
|
62
|
+
const parts = host.split('.');
|
|
63
|
+
for (let i = 0; i < parts.length - 1; i++) {
|
|
64
|
+
const domain = parts.slice(i).join('.');
|
|
65
|
+
if (allowlist.has(domain))
|
|
66
|
+
return true;
|
|
67
|
+
}
|
|
68
|
+
return false;
|
|
69
|
+
}
|
|
70
|
+
export class UrlPathScrubbingLayer {
|
|
71
|
+
name = 'url_path_scrubbing';
|
|
72
|
+
order = 300;
|
|
73
|
+
allowlist;
|
|
74
|
+
constructor(publicDomainAllowlist) {
|
|
75
|
+
this.allowlist = publicDomainAllowlist
|
|
76
|
+
? new Set([...DEFAULT_PUBLIC_DOMAINS, ...publicDomainAllowlist])
|
|
77
|
+
: DEFAULT_PUBLIC_DOMAINS;
|
|
78
|
+
}
|
|
79
|
+
process(input, _context) {
|
|
80
|
+
const findings = [];
|
|
81
|
+
const replacements = [];
|
|
82
|
+
// Detect URLs
|
|
83
|
+
const urlRegex = new RegExp(URL_RE.source, 'g');
|
|
84
|
+
let match;
|
|
85
|
+
while ((match = urlRegex.exec(input)) !== null) {
|
|
86
|
+
const url = match[0];
|
|
87
|
+
const host = extractHostFromUrl(url);
|
|
88
|
+
if (host && !isPublicDomain(host, this.allowlist)) {
|
|
89
|
+
if (isInternalHost(host) || !host.includes('.') || host === 'localhost') {
|
|
90
|
+
replacements.push({
|
|
91
|
+
start: match.index,
|
|
92
|
+
end: match.index + url.length,
|
|
93
|
+
replacement: '[INTERNAL_URL]',
|
|
94
|
+
category: 'internal_url',
|
|
95
|
+
});
|
|
96
|
+
}
|
|
97
|
+
}
|
|
98
|
+
}
|
|
99
|
+
// Detect private IPs (standalone, not in URLs already matched)
|
|
100
|
+
const ipRegex = new RegExp(PRIVATE_IP_RE.source, 'g');
|
|
101
|
+
while ((match = ipRegex.exec(input)) !== null) {
|
|
102
|
+
const alreadyCovered = replacements.some(r => match.index >= r.start && match.index < r.end);
|
|
103
|
+
if (!alreadyCovered) {
|
|
104
|
+
replacements.push({
|
|
105
|
+
start: match.index,
|
|
106
|
+
end: match.index + match[0].length,
|
|
107
|
+
replacement: '[PRIVATE_IP]',
|
|
108
|
+
category: 'private_ip',
|
|
109
|
+
});
|
|
110
|
+
}
|
|
111
|
+
}
|
|
112
|
+
// Detect file paths
|
|
113
|
+
for (const pathRe of [UNIX_PATH_RE, WINDOWS_PATH_RE, UNC_PATH_RE]) {
|
|
114
|
+
const re = new RegExp(pathRe.source, pathRe.flags);
|
|
115
|
+
while ((match = re.exec(input)) !== null) {
|
|
116
|
+
const alreadyCovered = replacements.some(r => match.index >= r.start && match.index < r.end);
|
|
117
|
+
if (!alreadyCovered) {
|
|
118
|
+
replacements.push({
|
|
119
|
+
start: match.index,
|
|
120
|
+
end: match.index + match[0].length,
|
|
121
|
+
replacement: '[FILE_PATH]',
|
|
122
|
+
category: 'file_path',
|
|
123
|
+
});
|
|
124
|
+
}
|
|
125
|
+
}
|
|
126
|
+
}
|
|
127
|
+
// Deduplicate overlapping
|
|
128
|
+
replacements.sort((a, b) => b.start - a.start);
|
|
129
|
+
const deduped = [];
|
|
130
|
+
for (const r of replacements) {
|
|
131
|
+
if (!deduped.some(d => r.start < d.end && r.end > d.start)) {
|
|
132
|
+
deduped.push(r);
|
|
133
|
+
}
|
|
134
|
+
}
|
|
135
|
+
// Record findings ascending
|
|
136
|
+
const ascending = [...deduped].sort((a, b) => a.start - b.start);
|
|
137
|
+
for (const r of ascending) {
|
|
138
|
+
findings.push({
|
|
139
|
+
layer: 'url_path_scrubbing',
|
|
140
|
+
category: r.category,
|
|
141
|
+
originalLength: r.end - r.start,
|
|
142
|
+
replacement: r.replacement,
|
|
143
|
+
startOffset: r.start,
|
|
144
|
+
endOffset: r.end,
|
|
145
|
+
confidence: 0.90,
|
|
146
|
+
});
|
|
147
|
+
}
|
|
148
|
+
// Apply replacements descending
|
|
149
|
+
let output = input;
|
|
150
|
+
for (const r of deduped) {
|
|
151
|
+
output = output.slice(0, r.start) + r.replacement + output.slice(r.end);
|
|
152
|
+
}
|
|
153
|
+
return { output, findings, blocked: false };
|
|
154
|
+
}
|
|
155
|
+
}
|
|
156
|
+
//# sourceMappingURL=url-path-scrubbing-layer.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"url-path-scrubbing-layer.js","sourceRoot":"","sources":["../../../src/lib/redaction/url-path-scrubbing-layer.ts"],"names":[],"mappings":"AAAA;;GAEG;AASH,4EAA4E;AAC5E,MAAM,CAAC,MAAM,sBAAsB,GAAG,IAAI,GAAG,CAAC;IAC5C,YAAY,EAAE,YAAY,EAAE,eAAe;IAC3C,mBAAmB,EAAE,mBAAmB;IACxC,iBAAiB,EAAE,SAAS,EAAE,YAAY;IAC1C,WAAW,EAAE,UAAU,EAAE,WAAW;IACpC,uBAAuB,EAAE,QAAQ;IACjC,eAAe,EAAE,kBAAkB;IACnC,YAAY,EAAE,aAAa;IAC3B,YAAY,EAAE,QAAQ;IACtB,YAAY,EAAE,sBAAsB;IACpC,aAAa,EAAE,OAAO;IACtB,eAAe,EAAE,oBAAoB,EAAE,qBAAqB;IAC5D,gBAAgB,EAAE,qBAAqB;IACvC,kBAAkB;IAClB,qBAAqB;IACrB,YAAY,EAAE,gBAAgB;IAC9B,eAAe;IACf,YAAY,EAAE,aAAa,EAAE,YAAY;IACzC,YAAY,EAAE,qBAAqB;IACnC,eAAe,EAAE,oBAAoB;CACtC,CAAC,CAAC;AAEH,MAAM,aAAa,GAAG,8IAA8I,CAAC;AAErK,MAAM,YAAY,GAAG,6FAA6F,CAAC;AACnH,MAAM,eAAe,GAAG,4BAA4B,CAAC;AACrD,MAAM,WAAW,GAAG,yCAAyC,CAAC;AAE9D,MAAM,MAAM,GAAG,8BAA8B,CAAC;AAE9C,MAAM,sBAAsB,GAAG;IAC7B,YAAY;IACZ,eAAe;IACf,WAAW;IACX,cAAc;IACd,UAAU;IACV,eAAe;IACf,wBAAwB;IACxB,YAAY;CACb,CAAC;AAEF,SAAS,kBAAkB,CAAC,GAAW;IACrC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,OAAO,MAAM,CAAC,QAAQ,CAAC;IACzB,CAAC;IAAC,MAAM,CAAC;QACP,0BAA0B;QAC1B,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;QAC/C,OAAO,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;IAC5B,CAAC;AACH,CAAC;AAED,SAAS,WAAW,CAAC,IAAY;IAC/B,OAAO,2IAA2I,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAChK,CAAC;AAED,SAAS,cAAc,CAAC,IAAY;IAClC,IAAI,WAAW,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IACnC,OAAO,sBAAsB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;AACxD,CAAC;AAED,SAAS,cAAc,CAAC,IAAY,EAAE,SAAsB;IAC1D,uCAAuC;IACvC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC9B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC1C,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACxC,IAAI,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC;YAAE,OAAO,IAAI,CAAC;IACzC,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,MAAM,OAAO,qBAAqB;IACvB,IAAI,GAAG,oBAA6B,CAAC;IACrC,KAAK,GAAG,GAAG,CAAC;IAEJ,SAAS,CAAc;IAExC,YAAY,qBAAgC;QAC1C,IAAI,CAAC,SAAS,GAAG,qBAAqB;YACpC,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,GAAG,sBAAsB,EAAE,GAAG,qBAAqB,CAAC,CAAC;YAChE,CAAC,CAAC,sBAAsB,CAAC;IAC7B,CAAC;IAED,OAAO,CAAC,KAAa,EAAE,QAA0B;QAC/C,MAAM,QAAQ,GAAuB,EAAE,CAAC;QACxC,MAAM,YAAY,GAAiF,EAAE,CAAC;QAEtG,cAAc;QACd,MAAM,QAAQ,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QAChD,IAAI,KAA6B,CAAC;QAClC,OAAO,CAAC,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC/C,MAAM,GAAG,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACrB,MAAM,IAAI,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;YACrC,IAAI,IAAI,IAAI,CAAC,cAAc,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;gBAClD,IAAI,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,IAAI,KAAK,WAAW,EAAE,CAAC;oBACxE,YAAY,CAAC,IAAI,CAAC;wBAChB,KAAK,EAAE,KAAK,CAAC,KAAK;wBAClB,GAAG,EAAE,KAAK,CAAC,KAAK,GAAG,GAAG,CAAC,MAAM;wBAC7B,WAAW,EAAE,gBAAgB;wBAC7B,QAAQ,EAAE,cAAc;qBACzB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,+DAA+D;QAC/D,MAAM,OAAO,GAAG,IAAI,MAAM,CAAC,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QACtD,OAAO,CAAC,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC9C,MAAM,cAAc,GAAG,YAAY,CAAC,IAAI,CACtC,CAAC,CAAC,EAAE,CAAC,KAAM,CAAC,KAAK,IAAI,CAAC,CAAC,KAAK,IAAI,KAAM,CAAC,KAAK,GAAG,CAAC,CAAC,GAAG,CACrD,CAAC;YACF,IAAI,CAAC,cAAc,EAAE,CAAC;gBACpB,YAAY,CAAC,IAAI,CAAC;oBAChB,KAAK,EAAE,KAAK,CAAC,KAAK;oBAClB,GAAG,EAAE,KAAK,CAAC,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM;oBAClC,WAAW,EAAE,cAAc;oBAC3B,QAAQ,EAAE,YAAY;iBACvB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,KAAK,MAAM,MAAM,IAAI,CAAC,YAAY,EAAE,eAAe,EAAE,WAAW,CAAC,EAAE,CAAC;YAClE,MAAM,EAAE,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC;YACnD,OAAO,CAAC,KAAK,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBACzC,MAAM,cAAc,GAAG,YAAY,CAAC,IAAI,CACtC,CAAC,CAAC,EAAE,CAAC,KAAM,CAAC,KAAK,IAAI,CAAC,CAAC,KAAK,IAAI,KAAM,CAAC,KAAK,GAAG,CAAC,CAAC,GAAG,CACrD,CAAC;gBACF,IAAI,CAAC,cAAc,EAAE,CAAC;oBACpB,YAAY,CAAC,IAAI,CAAC;wBAChB,KAAK,EAAE,KAAK,CAAC,KAAK;wBAClB,GAAG,EAAE,KAAK,CAAC,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM;wBAClC,WAAW,EAAE,aAAa;wBAC1B,QAAQ,EAAE,WAAW;qBACtB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,0BAA0B;QAC1B,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;QAC/C,MAAM,OAAO,GAAwB,EAAE,CAAC;QACxC,KAAK,MAAM,CAAC,IAAI,YAAY,EAAE,CAAC;YAC7B,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC3D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,4BAA4B;QAC5B,MAAM,SAAS,GAAG,CAAC,GAAG,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;QACjE,KAAK,MAAM,CAAC,IAAI,SAAS,EAAE,CAAC;YAC1B,QAAQ,CAAC,IAAI,CAAC;gBACZ,KAAK,EAAE,oBAAoB;gBAC3B,QAAQ,EAAE,CAAC,CAAC,QAAQ;gBACpB,cAAc,EAAE,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK;gBAC/B,WAAW,EAAE,CAAC,CAAC,WAAW;gBAC1B,WAAW,EAAE,CAAC,CAAC,KAAK;gBACpB,SAAS,EAAE,CAAC,CAAC,GAAG;gBAChB,UAAU,EAAE,IAAI;aACjB,CAAC,CAAC;QACL,CAAC;QAED,gCAAgC;QAChC,IAAI,MAAM,GAAG,KAAK,CAAC;QACnB,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;YACxB,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;QAC1E,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IAC9C,CAAC;CACF"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"agents.d.ts","sourceRoot":"","sources":["../../src/routes/agents.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAG3D,wBAAgB,YAAY,CAAC,KAAK,EAAE,WAAW;eACX,aAAa;
|
|
1
|
+
{"version":3,"file":"agents.d.ts","sourceRoot":"","sources":["../../src/routes/agents.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAG3D,wBAAgB,YAAY,CAAC,KAAK,EAAE,WAAW;eACX,aAAa;0CAsDhD"}
|
package/dist/routes/agents.js
CHANGED
|
@@ -33,16 +33,10 @@ export function agentsRoutes(store) {
|
|
|
33
33
|
catch {
|
|
34
34
|
// No body or invalid JSON — that's fine
|
|
35
35
|
}
|
|
36
|
-
// Unpause by clearing pause fields
|
|
37
|
-
|
|
38
|
-
id,
|
|
39
|
-
pausedAt: undefined,
|
|
40
|
-
pauseReason: undefined,
|
|
41
|
-
};
|
|
42
|
-
if (clearModelOverride) {
|
|
43
|
-
updates.modelOverride = undefined;
|
|
36
|
+
// Unpause by clearing pause fields via dedicated method
|
|
37
|
+
if ('unpauseAgent' in tenantStore && typeof tenantStore.unpauseAgent === 'function') {
|
|
38
|
+
await tenantStore.unpauseAgent(id, clearModelOverride);
|
|
44
39
|
}
|
|
45
|
-
await tenantStore.upsertAgent(updates);
|
|
46
40
|
// Return the updated agent
|
|
47
41
|
const updated = await tenantStore.getAgent(id);
|
|
48
42
|
return c.json(updated);
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"agents.js","sourceRoot":"","sources":["../../src/routes/agents.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAG5B,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,MAAM,UAAU,YAAY,CAAC,KAAkB;IAC7C,MAAM,GAAG,GAAG,IAAI,IAAI,EAAgC,CAAC;IAErD,8DAA8D;IAC9D,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACvB,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC7C,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;QAE9C,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;IAC5B,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClC,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC7C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAE7B,sCAAsC;QACtC,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QAC7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,CAAC;QAChE,CAAC;QAED,6CAA6C;QAC7C,IAAI,kBAAkB,GAAG,KAAK,CAAC;QAC/B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAClD,kBAAkB,GAAG,IAAI,EAAE,kBAAkB,KAAK,IAAI,CAAC;QACzD,CAAC;QAAC,MAAM,CAAC;YACP,wCAAwC;QAC1C,CAAC;QAED,
|
|
1
|
+
{"version":3,"file":"agents.js","sourceRoot":"","sources":["../../src/routes/agents.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAG5B,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,MAAM,UAAU,YAAY,CAAC,KAAkB;IAC7C,MAAM,GAAG,GAAG,IAAI,IAAI,EAAgC,CAAC;IAErD,8DAA8D;IAC9D,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACvB,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC7C,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,UAAU,EAAE,CAAC;QAE9C,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;IAC5B,CAAC,CAAC,CAAC;IAEH,kEAAkE;IAClE,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAClC,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC7C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAE7B,sCAAsC;QACtC,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QAC7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,CAAC;QAChE,CAAC;QAED,6CAA6C;QAC7C,IAAI,kBAAkB,GAAG,KAAK,CAAC;QAC/B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;YAClD,kBAAkB,GAAG,IAAI,EAAE,kBAAkB,KAAK,IAAI,CAAC;QACzD,CAAC;QAAC,MAAM,CAAC;YACP,wCAAwC;QAC1C,CAAC;QAED,wDAAwD;QACxD,IAAI,cAAc,IAAI,WAAW,IAAI,OAAO,WAAW,CAAC,YAAY,KAAK,UAAU,EAAE,CAAC;YACpF,MAAO,WAAmF,CAAC,YAAY,CAAC,EAAE,EAAE,kBAAkB,CAAC,CAAC;QAClI,CAAC;QAED,2BAA2B;QAC3B,MAAM,OAAO,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QAC/C,OAAO,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC,CAAC,CAAC;IAEH,qCAAqC;IACrC,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC1B,MAAM,WAAW,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC7C,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,KAAK,GAAG,MAAM,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QAE7C,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,iBAAiB,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,CAAC;QAChE,CAAC;QAED,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACvB,CAAC,CAAC,CAAC;IAEH,OAAO,GAAG,CAAC;AACb,CAAC"}
|
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Sharing Audit & Export Routes (Story 7.4)
|
|
3
|
+
*
|
|
4
|
+
* GET /api/community/audit — query audit log with filters
|
|
5
|
+
* GET /api/community/audit/export — JSON export of sharing audit events
|
|
6
|
+
* GET /api/community/alerts — get volume alert config
|
|
7
|
+
* PUT /api/community/alerts — update volume alert config
|
|
8
|
+
*/
|
|
9
|
+
import { Hono } from 'hono';
|
|
10
|
+
import type { AuthVariables } from '../middleware/auth.js';
|
|
11
|
+
import type { SqliteDb } from '../db/index.js';
|
|
12
|
+
export declare function auditRoutes(db: SqliteDb): Hono<{
|
|
13
|
+
Variables: AuthVariables;
|
|
14
|
+
}, import("hono/types").BlankSchema, "/">;
|
|
15
|
+
//# sourceMappingURL=audit.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../src/routes/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAE5B,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAI/C,wBAAgB,WAAW,CAAC,EAAE,EAAE,QAAQ;eACJ,aAAa;0CA4LhD"}
|
|
@@ -0,0 +1,177 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Sharing Audit & Export Routes (Story 7.4)
|
|
3
|
+
*
|
|
4
|
+
* GET /api/community/audit — query audit log with filters
|
|
5
|
+
* GET /api/community/audit/export — JSON export of sharing audit events
|
|
6
|
+
* GET /api/community/alerts — get volume alert config
|
|
7
|
+
* PUT /api/community/alerts — update volume alert config
|
|
8
|
+
*/
|
|
9
|
+
import { Hono } from 'hono';
|
|
10
|
+
import { eq, and, gte, lte, desc } from 'drizzle-orm';
|
|
11
|
+
import * as schema from '../db/schema.sqlite.js';
|
|
12
|
+
export function auditRoutes(db) {
|
|
13
|
+
const app = new Hono();
|
|
14
|
+
function getTenantId(c) {
|
|
15
|
+
return c.get('apiKey')?.tenantId ?? 'default';
|
|
16
|
+
}
|
|
17
|
+
// ─── GET /audit — query audit log with filters ─────
|
|
18
|
+
app.get('/', async (c) => {
|
|
19
|
+
const tenantId = getTenantId(c);
|
|
20
|
+
const eventType = c.req.query('type');
|
|
21
|
+
const agentId = c.req.query('agentId');
|
|
22
|
+
const dateFrom = c.req.query('dateFrom');
|
|
23
|
+
const dateTo = c.req.query('dateTo');
|
|
24
|
+
const limitStr = c.req.query('limit');
|
|
25
|
+
const offsetStr = c.req.query('offset');
|
|
26
|
+
const limit = limitStr ? Math.min(Math.max(1, parseInt(limitStr, 10) || 50), 500) : 50;
|
|
27
|
+
const offset = offsetStr ? Math.max(0, parseInt(offsetStr, 10) || 0) : 0;
|
|
28
|
+
// Query all rows for this tenant, then filter in JS (sqlite doesn't have great dynamic WHERE)
|
|
29
|
+
let rows = db
|
|
30
|
+
.select()
|
|
31
|
+
.from(schema.sharingAuditLog)
|
|
32
|
+
.where(eq(schema.sharingAuditLog.tenantId, tenantId))
|
|
33
|
+
.all();
|
|
34
|
+
// Apply filters
|
|
35
|
+
if (eventType) {
|
|
36
|
+
rows = rows.filter((r) => r.eventType === eventType);
|
|
37
|
+
}
|
|
38
|
+
if (agentId) {
|
|
39
|
+
// agentId filtering: match initiatedBy field
|
|
40
|
+
rows = rows.filter((r) => r.initiatedBy === agentId);
|
|
41
|
+
}
|
|
42
|
+
if (dateFrom) {
|
|
43
|
+
rows = rows.filter((r) => r.timestamp >= dateFrom);
|
|
44
|
+
}
|
|
45
|
+
if (dateTo) {
|
|
46
|
+
rows = rows.filter((r) => r.timestamp <= dateTo);
|
|
47
|
+
}
|
|
48
|
+
// Sort by timestamp descending
|
|
49
|
+
rows.sort((a, b) => b.timestamp.localeCompare(a.timestamp));
|
|
50
|
+
const total = rows.length;
|
|
51
|
+
const paged = rows.slice(offset, offset + limit);
|
|
52
|
+
const events = paged.map((r) => ({
|
|
53
|
+
id: r.id,
|
|
54
|
+
tenantId: r.tenantId,
|
|
55
|
+
eventType: r.eventType,
|
|
56
|
+
lessonId: r.lessonId ?? undefined,
|
|
57
|
+
anonymousLessonId: r.anonymousLessonId ?? undefined,
|
|
58
|
+
lessonHash: r.lessonHash ?? undefined,
|
|
59
|
+
redactionFindings: r.redactionFindings ? JSON.parse(r.redactionFindings) : undefined,
|
|
60
|
+
queryText: r.queryText ?? undefined,
|
|
61
|
+
resultIds: r.resultIds ? JSON.parse(r.resultIds) : undefined,
|
|
62
|
+
poolEndpoint: r.poolEndpoint ?? undefined,
|
|
63
|
+
initiatedBy: r.initiatedBy ?? 'system',
|
|
64
|
+
timestamp: r.timestamp,
|
|
65
|
+
}));
|
|
66
|
+
return c.json({ events, total, hasMore: offset + paged.length < total });
|
|
67
|
+
});
|
|
68
|
+
// ─── GET /audit/export — JSON export ───────────────
|
|
69
|
+
app.get('/export', async (c) => {
|
|
70
|
+
const tenantId = getTenantId(c);
|
|
71
|
+
const type = c.req.query('type'); // optional filter by event type
|
|
72
|
+
let rows = db
|
|
73
|
+
.select()
|
|
74
|
+
.from(schema.sharingAuditLog)
|
|
75
|
+
.where(eq(schema.sharingAuditLog.tenantId, tenantId))
|
|
76
|
+
.all();
|
|
77
|
+
if (type) {
|
|
78
|
+
rows = rows.filter((r) => r.eventType === type);
|
|
79
|
+
}
|
|
80
|
+
rows.sort((a, b) => b.timestamp.localeCompare(a.timestamp));
|
|
81
|
+
const events = rows.map((r) => ({
|
|
82
|
+
id: r.id,
|
|
83
|
+
tenantId: r.tenantId,
|
|
84
|
+
eventType: r.eventType,
|
|
85
|
+
lessonId: r.lessonId,
|
|
86
|
+
anonymousLessonId: r.anonymousLessonId,
|
|
87
|
+
lessonHash: r.lessonHash,
|
|
88
|
+
redactionFindings: r.redactionFindings ? JSON.parse(r.redactionFindings) : null,
|
|
89
|
+
queryText: r.queryText,
|
|
90
|
+
resultIds: r.resultIds ? JSON.parse(r.resultIds) : null,
|
|
91
|
+
poolEndpoint: r.poolEndpoint,
|
|
92
|
+
initiatedBy: r.initiatedBy,
|
|
93
|
+
timestamp: r.timestamp,
|
|
94
|
+
}));
|
|
95
|
+
c.header('Content-Type', 'application/json');
|
|
96
|
+
c.header('Content-Disposition', `attachment; filename="audit-export-${tenantId}-${new Date().toISOString().slice(0, 10)}.json"`);
|
|
97
|
+
return c.json({ exportedAt: new Date().toISOString(), tenantId, count: events.length, events });
|
|
98
|
+
});
|
|
99
|
+
// ─── GET /alerts — get volume alert config ─────────
|
|
100
|
+
app.get('/alerts', async (c) => {
|
|
101
|
+
const tenantId = getTenantId(c);
|
|
102
|
+
const config = db
|
|
103
|
+
.select()
|
|
104
|
+
.from(schema.sharingConfig)
|
|
105
|
+
.where(eq(schema.sharingConfig.tenantId, tenantId))
|
|
106
|
+
.get();
|
|
107
|
+
return c.json({
|
|
108
|
+
threshold: config?.volumeAlertThreshold ?? 100,
|
|
109
|
+
rateLimitPerHour: config?.rateLimitPerHour ?? 50,
|
|
110
|
+
enabled: config?.enabled ?? false,
|
|
111
|
+
});
|
|
112
|
+
});
|
|
113
|
+
// ─── PUT /alerts — update volume alert config ──────
|
|
114
|
+
app.put('/alerts', async (c) => {
|
|
115
|
+
const tenantId = getTenantId(c);
|
|
116
|
+
let body;
|
|
117
|
+
try {
|
|
118
|
+
body = await c.req.json();
|
|
119
|
+
}
|
|
120
|
+
catch {
|
|
121
|
+
return c.json({ error: 'Invalid JSON body' }, 400);
|
|
122
|
+
}
|
|
123
|
+
const updates = {};
|
|
124
|
+
if (body.threshold !== undefined) {
|
|
125
|
+
const val = Number(body.threshold);
|
|
126
|
+
if (isNaN(val) || val < 1)
|
|
127
|
+
return c.json({ error: 'threshold must be >= 1' }, 400);
|
|
128
|
+
updates.volumeAlertThreshold = val;
|
|
129
|
+
}
|
|
130
|
+
if (body.rateLimitPerHour !== undefined) {
|
|
131
|
+
const val = Number(body.rateLimitPerHour);
|
|
132
|
+
if (isNaN(val) || val < 1)
|
|
133
|
+
return c.json({ error: 'rateLimitPerHour must be >= 1' }, 400);
|
|
134
|
+
updates.rateLimitPerHour = val;
|
|
135
|
+
}
|
|
136
|
+
if (Object.keys(updates).length === 0) {
|
|
137
|
+
return c.json({ error: 'No valid fields to update' }, 400);
|
|
138
|
+
}
|
|
139
|
+
const existing = db
|
|
140
|
+
.select()
|
|
141
|
+
.from(schema.sharingConfig)
|
|
142
|
+
.where(eq(schema.sharingConfig.tenantId, tenantId))
|
|
143
|
+
.get();
|
|
144
|
+
const now = new Date().toISOString();
|
|
145
|
+
if (existing) {
|
|
146
|
+
db.update(schema.sharingConfig)
|
|
147
|
+
.set({ ...updates, updatedAt: now })
|
|
148
|
+
.where(eq(schema.sharingConfig.tenantId, tenantId))
|
|
149
|
+
.run();
|
|
150
|
+
}
|
|
151
|
+
else {
|
|
152
|
+
db.insert(schema.sharingConfig).values({
|
|
153
|
+
tenantId,
|
|
154
|
+
enabled: false,
|
|
155
|
+
humanReviewEnabled: false,
|
|
156
|
+
poolEndpoint: null,
|
|
157
|
+
anonymousContributorId: null,
|
|
158
|
+
purgeToken: null,
|
|
159
|
+
rateLimitPerHour: updates.rateLimitPerHour ?? 50,
|
|
160
|
+
volumeAlertThreshold: updates.volumeAlertThreshold ?? 100,
|
|
161
|
+
updatedAt: now,
|
|
162
|
+
}).run();
|
|
163
|
+
}
|
|
164
|
+
const config = db
|
|
165
|
+
.select()
|
|
166
|
+
.from(schema.sharingConfig)
|
|
167
|
+
.where(eq(schema.sharingConfig.tenantId, tenantId))
|
|
168
|
+
.get();
|
|
169
|
+
return c.json({
|
|
170
|
+
threshold: config?.volumeAlertThreshold ?? 100,
|
|
171
|
+
rateLimitPerHour: config?.rateLimitPerHour ?? 50,
|
|
172
|
+
enabled: config?.enabled ?? false,
|
|
173
|
+
});
|
|
174
|
+
});
|
|
175
|
+
return app;
|
|
176
|
+
}
|
|
177
|
+
//# sourceMappingURL=audit.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../src/routes/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AAGtD,OAAO,KAAK,MAAM,MAAM,wBAAwB,CAAC;AAGjD,MAAM,UAAU,WAAW,CAAC,EAAY;IACtC,MAAM,GAAG,GAAG,IAAI,IAAI,EAAgC,CAAC;IAErD,SAAS,WAAW,CAAC,CAA4D;QAC/E,OAAO,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,QAAQ,IAAI,SAAS,CAAC;IAChD,CAAC;IAED,sDAAsD;IAEtD,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACvB,MAAM,QAAQ,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;QAChC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACtC,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACzC,MAAM,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACrC,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACtC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAExC,MAAM,KAAK,GAAG,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,QAAQ,CAAC,QAAQ,EAAE,EAAE,CAAC,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QACvF,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,QAAQ,CAAC,SAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAEzE,8FAA8F;QAC9F,IAAI,IAAI,GAAG,EAAE;aACV,MAAM,EAAE;aACR,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;aAC5B,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,eAAe,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;aACpD,GAAG,EAAE,CAAC;QAET,gBAAgB;QAChB,IAAI,SAAS,EAAE,CAAC;YACd,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,SAAS,CAAC,CAAC;QACvD,CAAC;QACD,IAAI,OAAO,EAAE,CAAC;YACZ,6CAA6C;YAC7C,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,OAAO,CAAC,CAAC;QACvD,CAAC;QACD,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,IAAI,QAAQ,CAAC,CAAC;QACrD,CAAC;QACD,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,IAAI,MAAM,CAAC,CAAC;QACnD,CAAC;QAED,+BAA+B;QAC/B,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC;QAE5D,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC;QAC1B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,GAAG,KAAK,CAAC,CAAC;QAEjD,MAAM,MAAM,GAAwB,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpD,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,SAAS,EAAE,CAAC,CAAC,SAA2C;YACxD,QAAQ,EAAE,CAAC,CAAC,QAAQ,IAAI,SAAS;YACjC,iBAAiB,EAAE,CAAC,CAAC,iBAAiB,IAAI,SAAS;YACnD,UAAU,EAAE,CAAC,CAAC,UAAU,IAAI,SAAS;YACrC,iBAAiB,EAAE,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,SAAS;YACpF,SAAS,EAAE,CAAC,CAAC,SAAS,IAAI,SAAS;YACnC,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS;YAC5D,YAAY,EAAE,CAAC,CAAC,YAAY,IAAI,SAAS;YACzC,WAAW,EAAE,CAAC,CAAC,WAAW,IAAI,QAAQ;YACtC,SAAS,EAAE,CAAC,CAAC,SAAS;SACvB,CAAC,CAAC,CAAC;QAEJ,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,GAAG,KAAK,CAAC,MAAM,GAAG,KAAK,EAAE,CAAC,CAAC;IAC3E,CAAC,CAAC,CAAC;IAEH,sDAAsD;IAEtD,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC7B,MAAM,QAAQ,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;QAChC,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,gCAAgC;QAElE,IAAI,IAAI,GAAG,EAAE;aACV,MAAM,EAAE;aACR,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC;aAC5B,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,eAAe,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;aACpD,GAAG,EAAE,CAAC;QAET,IAAI,IAAI,EAAE,CAAC;YACT,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,IAAI,CAAC,CAAC;QAClD,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC;QAE5D,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC9B,EAAE,EAAE,CAAC,CAAC,EAAE;YACR,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,iBAAiB,EAAE,CAAC,CAAC,iBAAiB;YACtC,UAAU,EAAE,CAAC,CAAC,UAAU;YACxB,iBAAiB,EAAE,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,IAAI;YAC/E,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI;YACvD,YAAY,EAAE,CAAC,CAAC,YAAY;YAC5B,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,SAAS,EAAE,CAAC,CAAC,SAAS;SACvB,CAAC,CAAC,CAAC;QAEJ,CAAC,CAAC,MAAM,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;QAC7C,CAAC,CAAC,MAAM,CAAC,qBAAqB,EAAE,sCAAsC,QAAQ,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,CAAC;QACjI,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IAClG,CAAC,CAAC,CAAC;IAEH,sDAAsD;IAEtD,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC7B,MAAM,QAAQ,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;QAChC,MAAM,MAAM,GAAG,EAAE;aACd,MAAM,EAAE;aACR,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;aAC1B,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;aAClD,GAAG,EAAE,CAAC;QAET,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,SAAS,EAAE,MAAM,EAAE,oBAAoB,IAAI,GAAG;YAC9C,gBAAgB,EAAE,MAAM,EAAE,gBAAgB,IAAI,EAAE;YAChD,OAAO,EAAE,MAAM,EAAE,OAAO,IAAI,KAAK;SAClC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,sDAAsD;IAEtD,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAC7B,MAAM,QAAQ,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;QAChC,IAAI,IAA6B,CAAC;QAClC,IAAI,CAAC;YACH,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;QAC5B,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAAE,GAAG,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,OAAO,GAA4B,EAAE,CAAC;QAC5C,IAAI,IAAI,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;YACjC,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YACnC,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC;gBAAE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,wBAAwB,EAAE,EAAE,GAAG,CAAC,CAAC;YACnF,OAAO,CAAC,oBAAoB,GAAG,GAAG,CAAC;QACrC,CAAC;QACD,IAAI,IAAI,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YACxC,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YAC1C,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC;gBAAE,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,EAAE,GAAG,CAAC,CAAC;YAC1F,OAAO,CAAC,gBAAgB,GAAG,GAAG,CAAC;QACjC,CAAC;QAED,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACtC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,2BAA2B,EAAE,EAAE,GAAG,CAAC,CAAC;QAC7D,CAAC;QAED,MAAM,QAAQ,GAAG,EAAE;aAChB,MAAM,EAAE;aACR,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;aAC1B,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;aAClD,GAAG,EAAE,CAAC;QAET,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACrC,IAAI,QAAQ,EAAE,CAAC;YACb,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC;iBAC5B,GAAG,CAAC,EAAE,GAAG,OAAO,EAAE,SAAS,EAAE,GAAG,EAAE,CAAC;iBACnC,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;iBAClD,GAAG,EAAE,CAAC;QACX,CAAC;aAAM,CAAC;YACN,EAAE,CAAC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC;gBACrC,QAAQ;gBACR,OAAO,EAAE,KAAK;gBACd,kBAAkB,EAAE,KAAK;gBACzB,YAAY,EAAE,IAAI;gBAClB,sBAAsB,EAAE,IAAI;gBAC5B,UAAU,EAAE,IAAI;gBAChB,gBAAgB,EAAG,OAAO,CAAC,gBAA2B,IAAI,EAAE;gBAC5D,oBAAoB,EAAG,OAAO,CAAC,oBAA+B,IAAI,GAAG;gBACrE,SAAS,EAAE,GAAG;aACf,CAAC,CAAC,GAAG,EAAE,CAAC;QACX,CAAC;QAED,MAAM,MAAM,GAAG,EAAE;aACd,MAAM,EAAE;aACR,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;aAC1B,KAAK,CAAC,EAAE,CAAC,MAAM,CAAC,aAAa,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;aAClD,GAAG,EAAE,CAAC;QAET,OAAO,CAAC,CAAC,IAAI,CAAC;YACZ,SAAS,EAAE,MAAM,EAAE,oBAAoB,IAAI,GAAG;YAC9C,gBAAgB,EAAE,MAAM,EAAE,gBAAgB,IAAI,EAAE;YAChD,OAAO,EAAE,MAAM,EAAE,OAAO,IAAI,KAAK;SAClC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,OAAO,GAAG,CAAC;AACb,CAAC"}
|
|
@@ -0,0 +1,15 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Capability Registration REST API (Story 5.2)
|
|
3
|
+
*
|
|
4
|
+
* PUT /api/agents/:id/capabilities — register a new capability
|
|
5
|
+
* GET /api/agents/:id/capabilities — list agent's capabilities
|
|
6
|
+
* DELETE /api/agents/:id/capabilities/:capabilityId — remove a capability
|
|
7
|
+
*/
|
|
8
|
+
import { Hono } from 'hono';
|
|
9
|
+
import type { IEventStore } from '@agentlensai/core';
|
|
10
|
+
import type { AuthVariables } from '../middleware/auth.js';
|
|
11
|
+
import type { SqliteDb } from '../db/index.js';
|
|
12
|
+
export declare function capabilityRoutes(store: IEventStore, db: SqliteDb): Hono<{
|
|
13
|
+
Variables: AuthVariables;
|
|
14
|
+
}, import("hono/types").BlankSchema, "/">;
|
|
15
|
+
//# sourceMappingURL=capabilities.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"capabilities.d.ts","sourceRoot":"","sources":["../../src/routes/capabilities.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAK/C,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ;eAC7B,aAAa;0CAmFhD"}
|