npm - @ai-pip/core - Versions diffs - 0.2.0 → 0.4.0 - Mend

@ai-pip/core 0.2.0 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (133) hide show

package/CHANGELOG.md +106 -3
package/README.md +52 -951
package/dist/AAL/constants.d.ts +15 -0
package/dist/AAL/constants.d.ts.map +1 -0
package/dist/AAL/constants.js +20 -0
package/dist/AAL/constants.js.map +1 -0
package/dist/AAL/index.d.ts +5 -4
package/dist/AAL/index.d.ts.map +1 -1
package/dist/AAL/index.js +4 -2
package/dist/AAL/index.js.map +1 -1
package/dist/AAL/process/applyRemovalPlan.d.ts +23 -0
package/dist/AAL/process/applyRemovalPlan.d.ts.map +1 -0
package/dist/AAL/process/applyRemovalPlan.js +157 -0
package/dist/AAL/process/applyRemovalPlan.js.map +1 -0
package/dist/AAL/process/buildDecisionReason.d.ts.map +1 -1
package/dist/AAL/process/buildDecisionReason.js +24 -4
package/dist/AAL/process/buildDecisionReason.js.map +1 -1
package/dist/AAL/process/buildRemediationPlan.d.ts +22 -0
package/dist/AAL/process/buildRemediationPlan.d.ts.map +1 -0
package/dist/AAL/process/buildRemediationPlan.js +81 -0
package/dist/AAL/process/buildRemediationPlan.js.map +1 -0
package/dist/AAL/process/buildRemovalPlan.d.ts +27 -9
package/dist/AAL/process/buildRemovalPlan.d.ts.map +1 -1
package/dist/AAL/process/buildRemovalPlan.js +95 -29
package/dist/AAL/process/buildRemovalPlan.js.map +1 -1
package/dist/AAL/process/index.d.ts +2 -2
package/dist/AAL/process/index.d.ts.map +1 -1
package/dist/AAL/process/index.js +2 -1
package/dist/AAL/process/index.js.map +1 -1
package/dist/AAL/process/resolveAgentAction.d.ts.map +1 -1
package/dist/AAL/process/resolveAgentAction.js +13 -0
package/dist/AAL/process/resolveAgentAction.js.map +1 -1
package/dist/AAL/process/validatePolicy.d.ts +20 -0
package/dist/AAL/process/validatePolicy.d.ts.map +1 -0
package/dist/AAL/process/validatePolicy.js +40 -0
package/dist/AAL/process/validatePolicy.js.map +1 -0
package/dist/AAL/types.d.ts +18 -31
package/dist/AAL/types.d.ts.map +1 -1
package/dist/index.d.ts +9 -9
package/dist/index.d.ts.map +1 -1
package/dist/index.js +6 -6
package/dist/index.js.map +1 -1
package/dist/isl/detect/detect.d.ts +39 -0
package/dist/isl/detect/detect.d.ts.map +1 -0
package/dist/isl/detect/detect.js +369 -0
package/dist/isl/detect/detect.js.map +1 -0
package/dist/isl/detect/index.d.ts +6 -0
package/dist/isl/detect/index.d.ts.map +1 -0
package/dist/isl/detect/index.js +5 -0
package/dist/isl/detect/index.js.map +1 -0
package/dist/isl/index.d.ts +8 -1
package/dist/isl/index.d.ts.map +1 -1
package/dist/isl/index.js +5 -0
package/dist/isl/index.js.map +1 -1
package/dist/isl/process/emitSignal.d.ts +19 -10
package/dist/isl/process/emitSignal.d.ts.map +1 -1
package/dist/isl/process/emitSignal.js +25 -23
package/dist/isl/process/emitSignal.js.map +1 -1
package/dist/isl/process/index.d.ts +1 -0
package/dist/isl/process/index.d.ts.map +1 -1
package/dist/isl/riskScore/calculators.d.ts +19 -0
package/dist/isl/riskScore/calculators.d.ts.map +1 -0
package/dist/isl/riskScore/calculators.js +50 -0
package/dist/isl/riskScore/calculators.js.map +1 -0
package/dist/isl/riskScore/index.d.ts +14 -0
package/dist/isl/riskScore/index.d.ts.map +1 -0
package/dist/isl/riskScore/index.js +26 -0
package/dist/isl/riskScore/index.js.map +1 -0
package/dist/isl/riskScore/types.d.ts +20 -0
package/dist/isl/riskScore/types.d.ts.map +1 -0
package/dist/isl/riskScore/types.js +12 -0
package/dist/isl/riskScore/types.js.map +1 -0
package/dist/isl/sanitize.d.ts +8 -1
package/dist/isl/sanitize.d.ts.map +1 -1
package/dist/isl/sanitize.js +13 -5
package/dist/isl/sanitize.js.map +1 -1
package/dist/isl/signals.d.ts +16 -1
package/dist/isl/signals.d.ts.map +1 -1
package/dist/isl/signals.js +4 -2
package/dist/isl/signals.js.map +1 -1
package/dist/isl/value-objects/Pattern.d.ts +21 -0
package/dist/isl/value-objects/Pattern.d.ts.map +1 -1
package/dist/isl/value-objects/Pattern.js +36 -0
package/dist/isl/value-objects/Pattern.js.map +1 -1
package/dist/isl/value-objects/index.d.ts +2 -2
package/dist/isl/value-objects/index.d.ts.map +1 -1
package/dist/isl/value-objects/index.js +1 -1
package/dist/isl/value-objects/index.js.map +1 -1
package/dist/shared/audit.d.ts +126 -28
package/dist/shared/audit.d.ts.map +1 -1
package/dist/shared/audit.js +322 -44
package/dist/shared/audit.js.map +1 -1
package/dist/shared/envelope/envelope.d.ts +23 -0
package/dist/shared/envelope/envelope.d.ts.map +1 -0
package/dist/shared/envelope/envelope.js +58 -0
package/dist/shared/envelope/envelope.js.map +1 -0
package/dist/shared/envelope/exceptions/EnvelopeError.d.ts +8 -0
package/dist/shared/envelope/exceptions/EnvelopeError.d.ts.map +1 -0
package/dist/shared/envelope/exceptions/EnvelopeError.js +13 -0
package/dist/shared/envelope/exceptions/EnvelopeError.js.map +1 -0
package/dist/shared/envelope/exceptions/index.d.ts +2 -0
package/dist/shared/envelope/exceptions/index.d.ts.map +1 -0
package/dist/shared/envelope/exceptions/index.js +2 -0
package/dist/shared/envelope/exceptions/index.js.map +1 -0
package/dist/shared/envelope/index.d.ts +18 -0
package/dist/shared/envelope/index.d.ts.map +1 -0
package/dist/shared/envelope/index.js +15 -0
package/dist/shared/envelope/index.js.map +1 -0
package/dist/shared/envelope/types.d.ts +45 -0
package/dist/shared/envelope/types.d.ts.map +1 -0
package/dist/shared/envelope/types.js +10 -0
package/dist/shared/envelope/types.js.map +1 -0
package/dist/shared/envelope/value-objects/Metadata.d.ts +27 -0
package/dist/shared/envelope/value-objects/Metadata.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/Metadata.js +57 -0
package/dist/shared/envelope/value-objects/Metadata.js.map +1 -0
package/dist/shared/envelope/value-objects/Nonce.d.ts +26 -0
package/dist/shared/envelope/value-objects/Nonce.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/Nonce.js +38 -0
package/dist/shared/envelope/value-objects/Nonce.js.map +1 -0
package/dist/shared/envelope/value-objects/Signature.d.ts +28 -0
package/dist/shared/envelope/value-objects/Signature.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/Signature.js +50 -0
package/dist/shared/envelope/value-objects/Signature.js.map +1 -0
package/dist/shared/envelope/value-objects/index.d.ts +9 -0
package/dist/shared/envelope/value-objects/index.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/index.js +7 -0
package/dist/shared/envelope/value-objects/index.js.map +1 -0
package/dist/shared/index.d.ts +2 -2
package/dist/shared/index.d.ts.map +1 -1
package/dist/shared/index.js +1 -1
package/dist/shared/index.js.map +1 -1
package/package.json +11 -6

package/dist/AAL/process/buildRemovalPlan.js CHANGED Viewed

@@ -2,45 +2,111 @@
  * buildRemovalPlan - Builds a plan for instruction removal
  *
  * @remarks
- * This function builds a plan of which instructions should be removed
- * based on ISL detections and agent policy.
+ * Each instruction in the plan must be tied to one segment and one range in that segment:
+ * - segmentId: same as segment.id in ISLResult (so applyRemovalPlan knows which segment to cut).
+ * - position: { start, end } in segment-local coordinates (indices within segment.sanitizedContent).
+ * So "remove instruction X" means: in the segment with id segmentId, delete exactly [start, end) of that segment's sanitizedContent.
  *
- * **Responsibility:**
- * - Identify instructions to remove
- * - Create removal plan based on detections
- * - Does not execute the removal (that is SDK responsibility)
+ * Two entry points:
+ * - buildRemovalPlan(islSignal, policy): from signal only; no segmentId (descriptive).
+ * - buildRemovalPlanFromResult(islResult, policy): from result; includes segmentId and segment-local position for applyRemovalPlan.
  */
+function mapDetectionToRemovedInstruction(detection, segmentId) {
+    return {
+        type: detection.pattern_type,
+        pattern: detection.matched_pattern,
+        position: detection.position,
+        description: `Detected ${detection.pattern_type} pattern with confidence ${detection.confidence.toFixed(3)}`,
+        ...(segmentId != null && { segmentId })
+    };
+}
+const EMPTY_PLAN_DISABLED = Object.freeze({
+    instructionsToRemove: Object.freeze([]),
+    shouldRemove: false,
+    removalEnabled: false
+});
+const EMPTY_PLAN_NO_THREATS = Object.freeze({
+    instructionsToRemove: Object.freeze([]),
+    shouldRemove: false,
+    removalEnabled: true
+});
+function assertPolicyForRemoval(policy) {
+    if (policy == null || typeof policy !== 'object') {
+        throw new TypeError('AAL buildRemovalPlan: policy must be a non-null object');
+    }
+    const r = policy.removal;
+    if (r == null || typeof r !== 'object' || typeof r.enabled !== 'boolean') {
+        throw new TypeError('AAL buildRemovalPlan: policy.removal.enabled must be a boolean');
+    }
+}
+function assertISLSignalForRemoval(signal) {
+    if (signal == null || typeof signal !== 'object') {
+        throw new TypeError('AAL buildRemovalPlan: islSignal must be a non-null object');
+    }
+}
 /**
- * Builds a plan for instruction removal
+ * Builds a plan for instruction removal from ISL signal (no segment ids).
+ * Use when you only have the signal; plan is descriptive. For actionable removal use buildRemovalPlanFromResult.
  *
  * @param islSignal - ISL signal with detections
  * @param policy - Agent policy
- * @returns RemovalPlan with instructions to remove
+ * @returns RemovalPlan with instructions to remove (no segmentId)
  */
 export function buildRemovalPlan(islSignal, policy) {
-    // If removal is not enabled, return empty plan
-    if (!policy.removal.enabled) {
-        return {
-            instructionsToRemove: Object.freeze([]),
-            shouldRemove: false,
-            removalEnabled: false
-        };
+    assertPolicyForRemoval(policy);
+    assertISLSignalForRemoval(islSignal);
+    if (!policy.removal.enabled)
+        return EMPTY_PLAN_DISABLED;
+    if (!islSignal.hasThreats)
+        return EMPTY_PLAN_NO_THREATS;
+    const detections = islSignal.piDetection?.detections;
+    if (!Array.isArray(detections) || detections.length === 0) {
+        return EMPTY_PLAN_NO_THREATS;
+    }
+    const instructionsToRemove = detections.map((d) => mapDetectionToRemovedInstruction(d));
+    return {
+        instructionsToRemove: Object.freeze(instructionsToRemove),
+        shouldRemove: instructionsToRemove.length > 0,
+        removalEnabled: true
+    };
+}
+function assertISLResultForRemoval(islResult) {
+    if (islResult == null || typeof islResult !== 'object') {
+        throw new TypeError('AAL buildRemovalPlanFromResult: islResult must be a non-null object');
     }
-    // If no threats detected, nothing to remove
-    if (!islSignal.hasThreats) {
-        return {
-            instructionsToRemove: Object.freeze([]),
-            shouldRemove: false,
-            removalEnabled: true
-        };
+    if (!Array.isArray(islResult.segments)) {
+        throw new TypeError('AAL buildRemovalPlanFromResult: islResult.segments must be an array');
+    }
+}
+/**
+ * Builds a plan for instruction removal from ISL result (with segment ids).
+ * Use with applyRemovalPlan to produce content with malicious ranges removed.
+ *
+ * Each instruction is built from one segment only:
+ * - segmentId = segment.id (so applyRemovalPlan knows which segment to cut).
+ * - position = detection.position as-is (already segment-local: indices within
+ *   that segment's sanitizedContent, from detectThreats run on that segment).
+ * No document-concatenated or global offsets are used.
+ *
+ * @param islResult - ISL result with segments and per-segment piDetection
+ * @param policy - Agent policy
+ * @returns RemovalPlan with instructions to remove (segmentId + segment-local position per instruction)
+ */
+export function buildRemovalPlanFromResult(islResult, policy) {
+    assertPolicyForRemoval(policy);
+    assertISLResultForRemoval(islResult);
+    if (!policy.removal.enabled)
+        return EMPTY_PLAN_DISABLED;
+    const instructionsToRemove = [];
+    for (const segment of islResult.segments) {
+        const detections = segment.piDetection?.detections;
+        if (!Array.isArray(detections) || detections.length === 0)
+            continue;
+        for (const d of detections) {
+            // position is segment-local (from detectThreats on this segment's sanitizedContent)
+            instructionsToRemove.push(mapDetectionToRemovedInstruction(d, segment.id));
+        }
     }
-    // Build list of instructions to remove from detections
-    const instructionsToRemove = islSignal.piDetection.detections.map((detection) => ({
-        type: detection.pattern_type,
-        pattern: detection.matched_pattern,
-        position: detection.position,
-        description: `Detected ${detection.pattern_type} pattern with confidence ${detection.confidence.toFixed(3)}`
-    }));
     return {
         instructionsToRemove: Object.freeze(instructionsToRemove),
         shouldRemove: instructionsToRemove.length > 0,

package/dist/AAL/process/buildRemovalPlan.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"buildRemovalPlan.js","sourceRoot":"","sources":["../../../src/AAL/process/buildRemovalPlan.ts"],"names":[],"mappings":"AAAA~~;;;;;;;;;;;GAWG~~;~~AAeH;;;;;;GAMG;AACH~~,~~MAAM~~,~~UAAU~~,~~gBAAgB~~,~~CAC9B~~,~~SAAoB~~,~~EACpB~~,~~MAAmB~~;~~IAEnB,+CAA+C;IAC/C~~,IAAI,~~CAAC~~,~~MAAM~~,CAAC,OAAO,CAAC,~~OAAO~~,EAAE,CAAC;QAC5B,OAAO;~~YACL~~,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC;~~YACvC~~,YAAY,EAAE,KAAK;~~YACnB~~,cAAc,EAAE,KAAK;~~SACtB~~,CAAA;~~IACH~~,CAAC;~~IAED~~,~~4CAA4C~~;~~IAC5C~~,IAAI,CAAC,SAAS,CAAC,~~UAAU~~,EAAE,CAAC;~~QAC1B~~,OAAO;~~YACL~~,~~oBAAoB~~,EAAE,MAAM,CAAC,~~MAAM~~,CAAC,~~EAAE~~,CAAC;~~YACvC~~,~~YAAY~~,~~EAAE~~,~~KAAK~~;~~YACnB~~,~~cAAc~~,EAAE,IAAI;~~SACrB~~,CAAA;~~IACH~~,CAAC;~~IAED~~,~~uDAAuD~~;IACvD,MAAM,~~oBAAoB~~,~~GAAyB~~,SAAS,CAAC,WAAW,CAAC,UAAU,CAAC,GAAG,~~CACrF~~,CAAC,~~SAAS~~,EAAE,EAAE,CAAC,CAAC;~~QACd~~,~~IAAI~~,EAAE,SAAS,CAAC,~~YAA0C~~;~~QAC1D~~,OAAO,EAAE,SAAS,CAAC,~~eAAe~~;~~QAClC~~,QAAQ,EAAE,SAAS,CAAC,~~QAAQ~~;~~QAC5B~~,~~WAAW~~,~~EAAE~~,~~YAAY~~,SAAS,CAAC,~~YAAY~~,~~4BAA4B~~,SAAS,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;~~KAC7G~~,CAAC,~~CACH~~,CAAA;~~IAED~~,OAAO;QACL,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,oBAAoB,CAAC;QACzD,YAAY,EAAE,oBAAoB,CAAC,MAAM,GAAG,CAAC;QAC7C,cAAc,EAAE,IAAI;KACrB,CAAA;AACH,CAAC"}
1	+ {"version":3,"file":"buildRemovalPlan.js","sourceRoot":"","sources":["../../../src/AAL/process/buildRemovalPlan.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAiBH,SAAS,gCAAgC,CACvC,SAAsB,EACtB,SAAkB;IAElB,OAAO;QACL,IAAI,EAAE,SAAS,CAAC,YAAY;QAC5B,OAAO,EAAE,SAAS,CAAC,eAAe;QAClC,QAAQ,EAAE,SAAS,CAAC,QAAQ;QAC5B,WAAW,EAAE,YAAY,SAAS,CAAC,YAAY,4BAA4B,SAAS,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;QAC5G,GAAG,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,SAAS,EAAE,CAAC;KACxC,CAAA;AACH,CAAC;AAED,MAAM,mBAAmB,GAAgB,MAAM,CAAC,MAAM,CAAC;IACrD,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC;IACvC,YAAY,EAAE,KAAK;IACnB,cAAc,EAAE,KAAK;CACtB,CAAC,CAAA;AACF,MAAM,qBAAqB,GAAgB,MAAM,CAAC,MAAM,CAAC;IACvD,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC;IACvC,YAAY,EAAE,KAAK;IACnB,cAAc,EAAE,IAAI;CACrB,CAAC,CAAA;AAEF,SAAS,sBAAsB,CAAC,MAAmB;IACjD,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;QACjD,MAAM,IAAI,SAAS,CAAC,wDAAwD,CAAC,CAAA;IAC/E,CAAC;IACD,MAAM,CAAC,GAAG,MAAM,CAAC,OAAO,CAAA;IACxB,IAAI,CAAC,IAAI,IAAI,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,OAAO,CAAC,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;QACzE,MAAM,IAAI,SAAS,CAAC,gEAAgE,CAAC,CAAA;IACvF,CAAC;AACH,CAAC;AAED,SAAS,yBAAyB,CAAC,MAAiB;IAClD,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;QACjD,MAAM,IAAI,SAAS,CAAC,2DAA2D,CAAC,CAAA;IAClF,CAAC;AACH,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,gBAAgB,CAC9B,SAAoB,EACpB,MAAmB;IAEnB,sBAAsB,CAAC,MAAM,CAAC,CAAA;IAC9B,yBAAyB,CAAC,SAAS,CAAC,CAAA;IAEpC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO;QAAE,OAAO,mBAAmB,CAAA;IACvD,IAAI,CAAC,SAAS,CAAC,UAAU;QAAE,OAAO,qBAAqB,CAAA;IAEvD,MAAM,UAAU,GAAuC,SAAS,CAAC,WAAW,EAAE,UAAU,CAAA;IACxF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1D,OAAO,qBAAqB,CAAA;IAC9B,CAAC;IAED,MAAM,oBAAoB,GAAyB,UAAU,CAAC,GAAG,CAC/D,CAAC,CAAc,EAAE,EAAE,CAAC,gCAAgC,CAAC,CAAC,CAAC,CACxD,CAAA;IACD,OAAO;QACL,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,oBAAoB,CAAC;QACzD,YAAY,EAAE,oBAAoB,CAAC,MAAM,GAAG,CAAC;QAC7C,cAAc,EAAE,IAAI;KACrB,CAAA;AACH,CAAC;AAED,SAAS,yBAAyB,CAAC,SAAoB;IACrD,IAAI,SAAS,IAAI,IAAI,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QACvD,MAAM,IAAI,SAAS,CAAC,qEAAqE,CAAC,CAAA;IAC5F,CAAC;IACD,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC;QACvC,MAAM,IAAI,SAAS,CAAC,qEAAqE,CAAC,CAAA;IAC5F,CAAC;AACH,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,0BAA0B,CACxC,SAAoB,EACpB,MAAmB;IAEnB,sBAAsB,CAAC,MAAM,CAAC,CAAA;IAC9B,yBAAyB,CAAC,SAAS,CAAC,CAAA;IAEpC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO;QAAE,OAAO,mBAAmB,CAAA;IAEvD,MAAM,oBAAoB,GAAyB,EAAE,CAAA;IACrD,KAAK,MAAM,OAAO,IAAI,SAAS,CAAC,QAAQ,EAAE,CAAC;QACzC,MAAM,UAAU,GAAuC,OAAO,CAAC,WAAW,EAAE,UAAU,CAAA;QACtF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;YAAE,SAAQ;QACnE,KAAK,MAAM,CAAC,IAAI,UAA2B,EAAE,CAAC;YAC5C,oFAAoF;YACpF,oBAAoB,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC,CAAA;QAC5E,CAAC;IACH,CAAC;IACD,OAAO;QACL,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,oBAAoB,CAAC;QACzD,YAAY,EAAE,oBAAoB,CAAC,MAAM,GAAG,CAAC;QAC7C,cAAc,EAAE,IAAI;KACrB,CAAA;AACH,CAAC"}

package/dist/AAL/process/index.d.ts CHANGED Viewed

@@ -4,6 +4,6 @@
 export { resolveAgentAction, resolveAgentActionWithScore } from './resolveAgentAction.js';
 export { buildDecisionReason } from './buildDecisionReason.js';
 export type { DecisionReason } from './buildDecisionReason.js';
-export { buildRemovalPlan } from './buildRemovalPlan.js';
-export type { RemovalPlan } from './buildRemovalPlan.js';
+export { buildRemediationPlan } from './buildRemediationPlan.js';
+export { validateAgentPolicyThresholds } from './validatePolicy.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/AAL/process/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/AAL/process/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,kBAAkB,EAAE,2BAA2B,EAAE,MAAM,yBAAyB,CAAA;AACzF,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAC9D,YAAY,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAC9D,OAAO,EAAE,~~gBAAgB~~,EAAE,MAAM,~~uBAAuB~~,CAAA;~~AACxD~~,~~YAAY~~,EAAE,~~WAAW~~,EAAE,MAAM,~~uBAAuB~~,CAAA"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/AAL/process/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,kBAAkB,EAAE,2BAA2B,EAAE,MAAM,yBAAyB,CAAA;AACzF,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAC9D,YAAY,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAA;AAC9D,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAA;AAChE,OAAO,EAAE,6BAA6B,EAAE,MAAM,qBAAqB,CAAA"}

package/dist/AAL/process/index.js CHANGED Viewed

@@ -3,5 +3,6 @@
  */
 export { resolveAgentAction, resolveAgentActionWithScore } from './resolveAgentAction.js';
 export { buildDecisionReason } from './buildDecisionReason.js';
-export { buildRemovalPlan } from './buildRemovalPlan.js';
+export { buildRemediationPlan } from './buildRemediationPlan.js';
+export { validateAgentPolicyThresholds } from './validatePolicy.js';
 //# sourceMappingURL=index.js.map

package/dist/AAL/process/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/AAL/process/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,kBAAkB,EAAE,2BAA2B,EAAE,MAAM,yBAAyB,CAAA;AACzF,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAE9D,OAAO,EAAE,~~gBAAgB~~,EAAE,MAAM,~~uBAAuB~~,CAAA"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/AAL/process/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,kBAAkB,EAAE,2BAA2B,EAAE,MAAM,yBAAyB,CAAA;AACzF,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAE9D,OAAO,EAAE,oBAAoB,EAAE,MAAM,2BAA2B,CAAA;AAChE,OAAO,EAAE,6BAA6B,EAAE,MAAM,qBAAqB,CAAA"}

package/dist/AAL/process/resolveAgentAction.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"resolveAgentAction.d.ts","sourceRoot":"","sources":["../../../src/AAL/process/resolveAgentAction.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAA;AACrD,OAAO,KAAK,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;~~AAG7D~~;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAChC,SAAS,EAAE,SAAS,EACpB,MAAM,EAAE,WAAW,GAClB,aAAa,~~CAaf~~;AAED;;;;;;GAMG;AACH,wBAAgB,2BAA2B,CACzC,SAAS,EAAE,SAAS,EACpB,MAAM,EAAE,WAAW,~~2DAIpB~~"}
1	+ {"version":3,"file":"resolveAgentAction.d.ts","sourceRoot":"","sources":["../../../src/AAL/process/resolveAgentAction.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAA;AACrD,OAAO,KAAK,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;AAa7D;;;;;;GAMG;AACH,wBAAgB,kBAAkB,CAChC,SAAS,EAAE,SAAS,EACpB,MAAM,EAAE,WAAW,GAClB,aAAa,CAef;AAED;;;;;;GAMG;AACH,wBAAgB,2BAA2B,CACzC,SAAS,EAAE,SAAS,EACpB,MAAM,EAAE,WAAW,2DAMpB"}

package/dist/AAL/process/resolveAgentAction.js CHANGED Viewed

@@ -11,6 +11,15 @@
  * - Return decision based on risk score and thresholds
  */
 import { createAnomalyScore } from '../value-objects/AnomalyScore.js';
+import { validateAgentPolicyThresholds } from './validatePolicy.js';
+function assertISLSignal(signal) {
+    if (signal == null || typeof signal !== 'object') {
+        throw new TypeError('AAL resolveAgentAction: islSignal must be a non-null object');
+    }
+    if (typeof signal.riskScore !== 'number') {
+        throw new TypeError('AAL resolveAgentAction: islSignal.riskScore must be a number');
+    }
+}
 /**
  * Resolves agent action based on ISL signal and policy
  *
@@ -19,6 +28,8 @@ import { createAnomalyScore } from '../value-objects/AnomalyScore.js';
  * @returns AnomalyAction (ALLOW, WARN, BLOCK)
  */
 export function resolveAgentAction(islSignal, policy) {
+    assertISLSignal(islSignal);
+    validateAgentPolicyThresholds(policy);
     const riskScore = islSignal.riskScore;
     // Evaluate policy thresholds
     if (riskScore >= policy.thresholds.block) {
@@ -37,6 +48,8 @@ export function resolveAgentAction(islSignal, policy) {
  * @returns AnomalyScore with score and action
  */
 export function resolveAgentActionWithScore(islSignal, policy) {
+    assertISLSignal(islSignal);
+    validateAgentPolicyThresholds(policy);
     const action = resolveAgentAction(islSignal, policy);
     return createAnomalyScore(islSignal.riskScore, action);
 }

package/dist/AAL/process/resolveAgentAction.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"resolveAgentAction.js","sourceRoot":"","sources":["../../../src/AAL/process/resolveAgentAction.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAIH,OAAO,EAAE,kBAAkB,EAAE,MAAM,kCAAkC,CAAA;~~AAErE~~;;;;;;GAMG;AACH,MAAM,UAAU,kBAAkB,CAChC,SAAoB,EACpB,MAAmB;IAEnB,MAAM,SAAS,GAAG,SAAS,CAAC,SAAS,CAAA;IAErC,6BAA6B;IAC7B,IAAI,SAAS,IAAI,MAAM,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;QACzC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,IAAI,SAAS,IAAI,MAAM,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;QACxC,OAAO,MAAM,CAAA;IACf,CAAC;IAED,OAAO,OAAO,CAAA;AAChB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,2BAA2B,CACzC,SAAoB,EACpB,MAAmB;IAEnB,MAAM,MAAM,GAAG,kBAAkB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAA;IACpD,OAAO,kBAAkB,CAAC,SAAS,CAAC,SAAS,EAAE,MAAM,CAAC,CAAA;AACxD,CAAC"}
1	+ {"version":3,"file":"resolveAgentAction.js","sourceRoot":"","sources":["../../../src/AAL/process/resolveAgentAction.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAIH,OAAO,EAAE,kBAAkB,EAAE,MAAM,kCAAkC,CAAA;AACrE,OAAO,EAAE,6BAA6B,EAAE,MAAM,qBAAqB,CAAA;AAEnE,SAAS,eAAe,CAAC,MAAiB;IACxC,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;QACjD,MAAM,IAAI,SAAS,CAAC,6DAA6D,CAAC,CAAA;IACpF,CAAC;IACD,IAAI,OAAO,MAAM,CAAC,SAAS,KAAK,QAAQ,EAAE,CAAC;QACzC,MAAM,IAAI,SAAS,CAAC,8DAA8D,CAAC,CAAA;IACrF,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,kBAAkB,CAChC,SAAoB,EACpB,MAAmB;IAEnB,eAAe,CAAC,SAAS,CAAC,CAAA;IAC1B,6BAA6B,CAAC,MAAM,CAAC,CAAA;IACrC,MAAM,SAAS,GAAG,SAAS,CAAC,SAAS,CAAA;IAErC,6BAA6B;IAC7B,IAAI,SAAS,IAAI,MAAM,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;QACzC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,IAAI,SAAS,IAAI,MAAM,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;QACxC,OAAO,MAAM,CAAA;IACf,CAAC;IAED,OAAO,OAAO,CAAA;AAChB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,2BAA2B,CACzC,SAAoB,EACpB,MAAmB;IAEnB,eAAe,CAAC,SAAS,CAAC,CAAA;IAC1B,6BAA6B,CAAC,MAAM,CAAC,CAAA;IACrC,MAAM,MAAM,GAAG,kBAAkB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAA;IACpD,OAAO,kBAAkB,CAAC,SAAS,CAAC,SAAS,EAAE,MAAM,CAAC,CAAA;AACxD,CAAC"}

package/dist/AAL/process/validatePolicy.d.ts ADDED Viewed

@@ -0,0 +1,20 @@
+/**
+ * validateAgentPolicyThresholds - Validates AAL policy thresholds.
+ *
+ * @remarks
+ * Ensures policy is coherent: warn and block must be in [0, 1] and warn < block.
+ * Invalid configuration (e.g. block < warn) would lead to inconsistent decisions
+ * (e.g. WARN range empty or unreachable). Call this before using the policy
+ * in resolveAgentAction, buildDecisionReason, or buildRemediationPlan.
+ */
+import type { AgentPolicy } from '../types.js';
+/**
+ * Validates that policy.thresholds.warn and block are numbers in [0, 1]
+ * and that warn < block.
+ *
+ * @param policy - Agent policy to validate
+ * @throws {TypeError} If policy is null/undefined or thresholds are missing/invalid
+ * @throws {RangeError} If warn or block are outside [0, 1] or if warn >= block
+ */
+export declare function validateAgentPolicyThresholds(policy: AgentPolicy): void;
+//# sourceMappingURL=validatePolicy.d.ts.map

package/dist/AAL/process/validatePolicy.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"validatePolicy.d.ts","sourceRoot":"","sources":["../../../src/AAL/process/validatePolicy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAA;AAE9C;;;;;;;GAOG;AACH,wBAAgB,6BAA6B,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI,CA2BvE"}

package/dist/AAL/process/validatePolicy.js ADDED Viewed

@@ -0,0 +1,40 @@
+/**
+ * validateAgentPolicyThresholds - Validates AAL policy thresholds.
+ *
+ * @remarks
+ * Ensures policy is coherent: warn and block must be in [0, 1] and warn < block.
+ * Invalid configuration (e.g. block < warn) would lead to inconsistent decisions
+ * (e.g. WARN range empty or unreachable). Call this before using the policy
+ * in resolveAgentAction, buildDecisionReason, or buildRemediationPlan.
+ */
+/**
+ * Validates that policy.thresholds.warn and block are numbers in [0, 1]
+ * and that warn < block.
+ *
+ * @param policy - Agent policy to validate
+ * @throws {TypeError} If policy is null/undefined or thresholds are missing/invalid
+ * @throws {RangeError} If warn or block are outside [0, 1] or if warn >= block
+ */
+export function validateAgentPolicyThresholds(policy) {
+    if (policy == null || typeof policy !== 'object') {
+        throw new TypeError('AAL policy must be a non-null object');
+    }
+    const t = policy.thresholds;
+    if (t == null || typeof t !== 'object') {
+        throw new TypeError('AAL policy.thresholds must be defined');
+    }
+    if (typeof t.warn !== 'number' || typeof t.block !== 'number') {
+        throw new TypeError('AAL policy.thresholds.warn and block must be numbers');
+    }
+    const { warn, block } = t;
+    if (warn < 0 || warn > 1) {
+        throw new RangeError(`AAL policy.thresholds.warn must be in [0, 1], got ${warn}`);
+    }
+    if (block < 0 || block > 1) {
+        throw new RangeError(`AAL policy.thresholds.block must be in [0, 1], got ${block}`);
+    }
+    if (warn >= block) {
+        throw new RangeError(`AAL policy.thresholds must satisfy warn < block (got warn=${warn}, block=${block})`);
+    }
+}
+//# sourceMappingURL=validatePolicy.js.map

package/dist/AAL/process/validatePolicy.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"validatePolicy.js","sourceRoot":"","sources":["../../../src/AAL/process/validatePolicy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH;;;;;;;GAOG;AACH,MAAM,UAAU,6BAA6B,CAAC,MAAmB;IAC/D,IAAI,MAAM,IAAI,IAAI,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;QACjD,MAAM,IAAI,SAAS,CAAC,sCAAsC,CAAC,CAAA;IAC7D,CAAC;IACD,MAAM,CAAC,GAAG,MAAM,CAAC,UAAU,CAAA;IAC3B,IAAI,CAAC,IAAI,IAAI,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;QACvC,MAAM,IAAI,SAAS,CAAC,uCAAuC,CAAC,CAAA;IAC9D,CAAC;IACD,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,IAAI,OAAO,CAAC,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9D,MAAM,IAAI,SAAS,CAAC,sDAAsD,CAAC,CAAA;IAC7E,CAAC;IACD,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,CAAC,CAAA;IACzB,IAAI,IAAI,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,UAAU,CAClB,qDAAqD,IAAI,EAAE,CAC5D,CAAA;IACH,CAAC;IACD,IAAI,KAAK,GAAG,CAAC,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,UAAU,CAClB,sDAAsD,KAAK,EAAE,CAC9D,CAAA;IACH,CAAC;IACD,IAAI,IAAI,IAAI,KAAK,EAAE,CAAC;QAClB,MAAM,IAAI,UAAU,CAClB,6DAA6D,IAAI,WAAW,KAAK,GAAG,CACrF,CAAA;IACH,CAAC;AACH,CAAC"}

package/dist/AAL/types.d.ts CHANGED Viewed

@@ -1,5 +1,4 @@
 import type { RiskScore } from '../isl/value-objects/RiskScore.js';
-import type { Position } from "../shared/types.js";
 /**
  * AnomalyAction
  *
@@ -40,35 +39,23 @@ export type ProtectedRole = string;
  */
 export type ImmutableInstruction = string;
 /**
- * RemovedInstruction
+ * RemediationPlan
  *
- * Describes an instruction that was identified as malicious
- * and marked for removal by the Agent Action Lock (AAL).
- *
- * @remarks
- * This interface is descriptive only.
- * The actual removal is performed by the SDK.
- *
- * Instances of this type are typically recorded in lineage
- * for auditability and explainability.
+ * Describes *what* to do for remediation, not *how*. The SDK (or an AI agent) is
+ * responsible for executing cleanup. AAL produces goals, constraints, and
+ * target segment IDs so the consumer can run AI_CLEANUP or another strategy.
  */
-export interface RemovedInstruction {
-    /**
-     * The classified threat category that triggered the removal.
-     */
-    readonly type: 'system_command' | 'role_swapping' | 'jailbreak' | 'override' | 'manipulation';
-    /**
-     * The detected pattern or signature that matched the threat.
-     */
-    readonly pattern: string;
-    /**
-     * The exact position of the instruction within the original content.
-     */
-    readonly position: Position;
-    /**
-     * Human-readable explanation of why the instruction was removed.
-     */
-    readonly description: string;
+export interface RemediationPlan {
+    /** Strategy identifier for the consumer (e.g. 'AI_CLEANUP'). */
+    readonly strategy: string;
+    /** Goals to achieve (e.g. remove_prompt_injection, remove_role_hijacking). */
+    readonly goals: readonly string[];
+    /** Constraints the remediation must respect (e.g. preserve_user_intent). */
+    readonly constraints: readonly string[];
+    /** Segment IDs that need remediation (segments with detections). */
+    readonly targetSegments: readonly string[];
+    /** Whether remediation is needed (has threats and remediation enabled). */
+    readonly needsRemediation: boolean;
 }
 /**
  * AgentPolicy
@@ -92,10 +79,10 @@ export interface AgentPolicy {
         block: RiskScore;
     };
     /**
-    * Whether malicious instructions should be removed
-    * before reaching the LLM.
+    * Whether to produce a remediation plan when threats are present.
+    * The SDK (or AI agent) performs the actual cleanup using the plan.
     */
-    removal: {
+    remediation: {
         enabled: boolean;
     };
     mode?: 'strict' | 'balanced' | 'permissive';

package/dist/AAL/types.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/AAL/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAA;~~AAClE,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAA;AAGlD~~;;;;;;;;;GASG;AACH,MAAM,MAAM,aAAa,GAAG,OAAO,GAAG,MAAM,GAAG,OAAO,CAAA;AAEtD;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG,MAAM,CAAA;AAElC;;;;;GAKG;AACH,MAAM,MAAM,cAAc,GAAG,MAAM,CAAA;AAEnC;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG,MAAM,CAAA;AAElC;;;;;GAKG;AACH,MAAM,MAAM,oBAAoB,GAAG,MAAM,CAAA;AAEzC~~;;;;;;;;;;;;GAYG~~;AACH,MAAM,WAAW,~~kBAAkB~~;~~IACjC;;OAEG~~;~~IACH~~,QAAQ,CAAC,~~IAAI~~,~~EACT~~,~~gBAAgB~~,~~GAChB~~,~~eAAe~~,~~GACf~~,~~WAAW~~,~~GACX~~,~~UAAU~~,~~GACV~~,~~cAAc~~,CAAA;~~IAElB;;OAEG~~;~~IACH~~,QAAQ,CAAC,~~OAAO~~,EAAE,MAAM,CAAA;~~IAExB;;OAEG~~;~~IACH~~,QAAQ,CAAC,~~QAAQ~~,EAAE,~~QAAQ~~,CAAA;~~IAE3B;;OAEG~~;~~IACH~~,QAAQ,CAAC,~~WAAW~~,EAAE,~~MAAM~~,CAAA;~~CAC7B~~;AAED;;;;;;;;;;;;GAYG;AAEH,MAAM,WAAW,WAAW;IAE1B;;OAEG;IACH,UAAU,EAAE;QACV,IAAI,EAAE,SAAS,CAAC;QAChB,KAAK,EAAE,SAAS,CAAC;KAClB,CAAC;IAED;;;MAGE;IACH,~~OAAO~~,EAAE;~~QACP~~,OAAO,EAAE,OAAO,CAAC;KAClB,CAAC;IAGF,IAAI,CAAC,EAAE,QAAQ,GAAG,UAAU,GAAG,YAAY,CAAC;IAC5C,OAAO,CAAC,EAAE,OAAO,CAAC;CAGnB"}
1	+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/AAL/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,mCAAmC,CAAA;AAElE;;;;;;;;;GASG;AACH,MAAM,MAAM,aAAa,GAAG,OAAO,GAAG,MAAM,GAAG,OAAO,CAAA;AAEtD;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG,MAAM,CAAA;AAElC;;;;;GAKG;AACH,MAAM,MAAM,cAAc,GAAG,MAAM,CAAA;AAEnC;;;;;GAKG;AACH,MAAM,MAAM,aAAa,GAAG,MAAM,CAAA;AAElC;;;;;GAKG;AACH,MAAM,MAAM,oBAAoB,GAAG,MAAM,CAAA;AAEzC;;;;;;GAMG;AACH,MAAM,WAAW,eAAe;IAC9B,gEAAgE;IAChE,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,8EAA8E;IAC9E,QAAQ,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,CAAA;IACjC,4EAA4E;IAC5E,QAAQ,CAAC,WAAW,EAAE,SAAS,MAAM,EAAE,CAAA;IACvC,oEAAoE;IACpE,QAAQ,CAAC,cAAc,EAAE,SAAS,MAAM,EAAE,CAAA;IAC1C,2EAA2E;IAC3E,QAAQ,CAAC,gBAAgB,EAAE,OAAO,CAAA;CACnC;AAED;;;;;;;;;;;;GAYG;AAEH,MAAM,WAAW,WAAW;IAE1B;;OAEG;IACH,UAAU,EAAE;QACV,IAAI,EAAE,SAAS,CAAC;QAChB,KAAK,EAAE,SAAS,CAAC;KAClB,CAAC;IAED;;;MAGE;IACH,WAAW,EAAE;QACX,OAAO,EAAE,OAAO,CAAC;KAClB,CAAC;IAGF,IAAI,CAAC,EAAE,QAAQ,GAAG,UAAU,GAAG,YAAY,CAAC;IAC5C,OAAO,CAAC,EAAE,OAAO,CAAC;CAGnB"}

package/dist/index.d.ts CHANGED Viewed

@@ -7,7 +7,7 @@
  * You can import from specific layers:
  * - import { segment } from '@ai-pip/core/csl'
  * - import { sanitize } from '@ai-pip/core/isl'
- * - import { envelope } from '@ai-pip/core/cpe'
+ * - import { envelope } from '@ai-pip/core/cpe' (re-exported from shared/envelope)
  * - import { createAnomalyScore  } from '@ai-pip/core/AAL'
  *
  * Or import everything from the main entry point:
@@ -17,13 +17,13 @@
  */
 export { segment, classifySource, classifyOrigin, initLineage, createLineageEntry, generateId, splitByContextRules, OriginType, TrustLevelType, ClassificationError, SegmentationError } from './csl/index.js';
 export type { HashAlgorithm, Source, CSLInput, CSLSegment, CSLResult, TrustLevel, Origin, LineageEntry, ContentHash } from './csl/index.js';
-export { sanitize, emitSignal, createISLSignal, isHighRiskSignal, isMediumRiskSignal, isLowRiskSignal } from './isl/index.js';
-export type { RiskScore, ISLSegment, ISLResult, ISLSignal, PiDetection, PiDetectionResult, Pattern } from './isl/index.js';
+export { sanitize, emitSignal, createISLSignal, isHighRiskSignal, isMediumRiskSignal, isLowRiskSignal, RiskScoreStrategy, getCalculator, maxConfidenceCalculator, severityPlusVolumeCalculator, weightedByTypeCalculator, defaultWeightedByTypeCalculator, DEFAULT_TYPE_WEIGHTS } from './isl/index.js';
+export type { RiskScore, ISLSegment, ISLResult, ISLSignal, ISLSignalMetadata, EmitSignalOptions, RiskScoreCalculator, PiDetection, PiDetectionResult, Pattern, SanitizeOptions } from './isl/index.js';
 export { createPiDetection, getDetectionLength, isHighConfidence, isMediumConfidence, isLowConfidence, createPiDetectionResult, hasDetections, getDetectionCount, getDetectionsByType, getHighestConfidenceDetection, createPattern, matchesPattern, findMatch, MAX_CONTENT_LENGTH, MAX_PATTERN_LENGTH, MAX_MATCHES, createRiskScore, normalizeRiskScore, isHighRiskScore, isMediumRiskScore, isLowRiskScore, MIN_RISK_SCORE, MAX_RISK_SCORE, SanitizationError } from './isl/index.js';
-export { addLineageEntry, addLineageEntries, filterLineageByStep, getLastLineageEntry, formatLineageForAudit, formatCSLForAudit, formatISLForAudit, formatISLSignalForAudit, formatAALForAudit, formatCPEForAudit, formatPipelineAudit } from './shared/index.js';
-export type { LineageEntryLike, CSLResultLike, ISLResultLike, ISLSignalLike, DecisionReasonLike, RemovalPlanLike, CPEResultLike } from './shared/index.js';
-export { envelope, createNonce, isValidNonce, equalsNonce, createMetadata, isValidMetadata, CURRENT_PROTOCOL_VERSION, createSignature, EnvelopeError } from './cpe/index.js';
-export type { Nonce, SignatureVO, ProtocolVersion, Timestamp, NonceValue, SignatureAlgorithm, Signature, CPEMetadata, CPEEvelope, CPEResult } from './cpe/index.js';
-export { createAnomalyScore, isHighRisk, isLowRisk, isWarnRisk, isRoleProtected, isContextLeakPreventionEnabled, isInstructionImmutable, isIntentBlocked, isScopeSensitive, resolveAgentAction, resolveAgentActionWithScore, buildDecisionReason, buildRemovalPlan, buildAALLineage } from './AAL/index.js';
-export type { AnomalyAction, AnomalyScore, RemovedInstruction, BlockedIntent, SensitiveScope, ProtectedRole, ImmutableInstruction, AgentPolicy, DecisionReason, RemovalPlan } from './AAL/index.js';
+export { addLineageEntry, addLineageEntries, filterLineageByStep, getLastLineageEntry, formatLineageForAudit, formatCSLForAudit, formatISLForAudit, formatISLSignalForAudit, formatAALForAudit, formatCPEForAudit, formatPipelineAudit, formatPipelineAuditFull, formatPipelineAuditAsJson, createAuditRunId, buildAuditLogEntry, buildFullAuditPayload } from './shared/index.js';
+export type { LineageEntryLike, CSLResultLike, ISLResultLike, ISLSignalLike, DecisionReasonLike, RemediationPlanLike, CPEResultLike, AuditRunInfo, AuditLogSummary, FullPipelineAuditOptions, PipelineAuditJsonOptions } from './shared/index.js';
+export { envelope, createNonce, isValidNonce, equalsNonce, createMetadata, isValidMetadata, CURRENT_PROTOCOL_VERSION, createSignature, EnvelopeError } from './shared/envelope/index.js';
+export type { Nonce, SignatureVO, ProtocolVersion, Timestamp, NonceValue, SignatureAlgorithm, Signature, CPEMetadata, CPEEvelope, CPEResult } from './shared/envelope/index.js';
+export { createAnomalyScore, isHighRisk, isLowRisk, isWarnRisk, isRoleProtected, isContextLeakPreventionEnabled, isInstructionImmutable, isIntentBlocked, isScopeSensitive, resolveAgentAction, resolveAgentActionWithScore, buildDecisionReason, buildRemediationPlan, validateAgentPolicyThresholds, buildAALLineage, ACTION_DISPLAY_COLORS, getActionDisplayColor } from './AAL/index.js';
+export type { AnomalyAction, AnomalyScore, RemediationPlan, BlockedIntent, SensitiveScope, ProtectedRole, ImmutableInstruction, AgentPolicy, DecisionReason, } from './AAL/index.js';
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAGH,OAAO,EACL,OAAO,EACP,cAAc,EACd,cAAc,EACd,WAAW,EACX,kBAAkB,EAClB,UAAU,EACV,mBAAmB,EACnB,UAAU,EACV,cAAc,EACd,mBAAmB,EACnB,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AACvB,YAAY,EACV,aAAa,EACb,MAAM,EACN,QAAQ,EACR,UAAU,EACV,SAAS,EACT,UAAU,EACV,MAAM,EACN,YAAY,EACZ,WAAW,EACZ,MAAM,gBAAgB,CAAA;AAGvB,OAAO,~~EAAE~~,QAAQ,~~EAAE~~,UAAU,~~EAAE~~,eAAe,~~EAAE~~,gBAAgB,~~EAAE~~,kBAAkB,~~EAAE~~,eAAe,~~EAAE~~,MAAM,gBAAgB,CAAA;~~AAC7H~~,YAAY,EACV,SAAS,EACT,UAAU,EACV,SAAS,EACT,SAAS,EACT,WAAW,EACX,iBAAiB,EACjB,OAAO,~~EACR~~,MAAM,gBAAgB,CAAA;AACvB,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,aAAa,EACb,iBAAiB,EACjB,mBAAmB,EACnB,6BAA6B,EAC7B,aAAa,EACb,cAAc,EACd,SAAS,EACT,kBAAkB,EAClB,kBAAkB,EAClB,WAAW,EACX,eAAe,EACf,kBAAkB,EAClB,eAAe,EACf,iBAAiB,EACjB,cAAc,EACd,cAAc,EACd,cAAc,EACd,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AAGvB,OAAO,EACL,eAAe,EACf,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,qBAAqB,EACrB,iBAAiB,EACjB,iBAAiB,EACjB,uBAAuB,EACvB,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,~~EACpB~~,MAAM,mBAAmB,CAAA;AAC1B,YAAY,EACV,gBAAgB,EAChB,aAAa,EACb,aAAa,EACb,aAAa,EACb,kBAAkB,EAClB,eAAe,EACf,~~aAAa~~,~~EACd~~,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,eAAe,EAAE,wBAAwB,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,~~gBAAgB~~,CAAA;~~AAC5K~~,YAAY,EAAE,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,SAAS,EAAE,UAAU,EAAE,kBAAkB,EAAE,SAAS,EAAE,WAAW,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,~~gBAAgB~~,CAAA;~~AAInK~~,OAAO,EACH,kBAAkB,EAClB,UAAU,EACV,SAAS,EACT,UAAU,EACV,eAAe,EACf,8BAA8B,EAC9B,sBAAsB,EACtB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,EAClB,2BAA2B,EAC3B,mBAAmB,EACnB,~~gBAAgB~~,~~EAChB~~,eAAe,~~EAClB~~,MAAM,gBAAgB,CAAA;AAGvB,YAAY,EACR,aAAa,EACb,YAAY,EACZ,~~kBAAkB~~,~~EAClB~~,aAAa,EACb,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,WAAW,EACX,cAAc,~~EACd~~,~~WAAW,EACd,~~MAAM,gBAAgB,CAAA"}
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAGH,OAAO,EACL,OAAO,EACP,cAAc,EACd,cAAc,EACd,WAAW,EACX,kBAAkB,EAClB,UAAU,EACV,mBAAmB,EACnB,UAAU,EACV,cAAc,EACd,mBAAmB,EACnB,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AACvB,YAAY,EACV,aAAa,EACb,MAAM,EACN,QAAQ,EACR,UAAU,EACV,SAAS,EACT,UAAU,EACV,MAAM,EACN,YAAY,EACZ,WAAW,EACZ,MAAM,gBAAgB,CAAA;AAGvB,OAAO,EACL,QAAQ,EACR,UAAU,EACV,eAAe,EACf,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,iBAAiB,EACjB,aAAa,EACb,uBAAuB,EACvB,4BAA4B,EAC5B,wBAAwB,EACxB,+BAA+B,EAC/B,oBAAoB,EACrB,MAAM,gBAAgB,CAAA;AACvB,YAAY,EACV,SAAS,EACT,UAAU,EACV,SAAS,EACT,SAAS,EACT,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,EACnB,WAAW,EACX,iBAAiB,EACjB,OAAO,EACP,eAAe,EAChB,MAAM,gBAAgB,CAAA;AACvB,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,aAAa,EACb,iBAAiB,EACjB,mBAAmB,EACnB,6BAA6B,EAC7B,aAAa,EACb,cAAc,EACd,SAAS,EACT,kBAAkB,EAClB,kBAAkB,EAClB,WAAW,EACX,eAAe,EACf,kBAAkB,EAClB,eAAe,EACf,iBAAiB,EACjB,cAAc,EACd,cAAc,EACd,cAAc,EACd,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AAGvB,OAAO,EACL,eAAe,EACf,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,qBAAqB,EACrB,iBAAiB,EACjB,iBAAiB,EACjB,uBAAuB,EACvB,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,EACnB,uBAAuB,EACvB,yBAAyB,EACzB,gBAAgB,EAChB,kBAAkB,EAClB,qBAAqB,EACtB,MAAM,mBAAmB,CAAA;AAC1B,YAAY,EACV,gBAAgB,EAChB,aAAa,EACb,aAAa,EACb,aAAa,EACb,kBAAkB,EAClB,mBAAmB,EACnB,aAAa,EACb,YAAY,EACZ,eAAe,EACf,wBAAwB,EACxB,wBAAwB,EACzB,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,eAAe,EAAE,wBAAwB,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAA;AACxL,YAAY,EAAE,KAAK,EAAE,WAAW,EAAE,eAAe,EAAE,SAAS,EAAE,UAAU,EAAE,kBAAkB,EAAE,SAAS,EAAE,WAAW,EAAE,UAAU,EAAE,SAAS,EAAE,MAAM,4BAA4B,CAAA;AAI/K,OAAO,EACH,kBAAkB,EAClB,UAAU,EACV,SAAS,EACT,UAAU,EACV,eAAe,EACf,8BAA8B,EAC9B,sBAAsB,EACtB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,EAClB,2BAA2B,EAC3B,mBAAmB,EACnB,oBAAoB,EACpB,6BAA6B,EAC7B,eAAe,EACf,qBAAqB,EACrB,qBAAqB,EACxB,MAAM,gBAAgB,CAAA;AAGvB,YAAY,EACR,aAAa,EACb,YAAY,EACZ,eAAe,EACf,aAAa,EACb,cAAc,EACd,aAAa,EACb,oBAAoB,EACpB,WAAW,EACX,cAAc,GACjB,MAAM,gBAAgB,CAAA"}

package/dist/index.js CHANGED Viewed

@@ -7,7 +7,7 @@
  * You can import from specific layers:
  * - import { segment } from '@ai-pip/core/csl'
  * - import { sanitize } from '@ai-pip/core/isl'
- * - import { envelope } from '@ai-pip/core/cpe'
+ * - import { envelope } from '@ai-pip/core/cpe' (re-exported from shared/envelope)
  * - import { createAnomalyScore  } from '@ai-pip/core/AAL'
  *
  * Or import everything from the main entry point:
@@ -18,12 +18,12 @@
 // Re-export CSL
 export { segment, classifySource, classifyOrigin, initLineage, createLineageEntry, generateId, splitByContextRules, OriginType, TrustLevelType, ClassificationError, SegmentationError } from './csl/index.js';
 // Re-export ISL
-export { sanitize, emitSignal, createISLSignal, isHighRiskSignal, isMediumRiskSignal, isLowRiskSignal } from './isl/index.js';
+export { sanitize, emitSignal, createISLSignal, isHighRiskSignal, isMediumRiskSignal, isLowRiskSignal, RiskScoreStrategy, getCalculator, maxConfidenceCalculator, severityPlusVolumeCalculator, weightedByTypeCalculator, defaultWeightedByTypeCalculator, DEFAULT_TYPE_WEIGHTS } from './isl/index.js';
 export { createPiDetection, getDetectionLength, isHighConfidence, isMediumConfidence, isLowConfidence, createPiDetectionResult, hasDetections, getDetectionCount, getDetectionsByType, getHighestConfidenceDetection, createPattern, matchesPattern, findMatch, MAX_CONTENT_LENGTH, MAX_PATTERN_LENGTH, MAX_MATCHES, createRiskScore, normalizeRiskScore, isHighRiskScore, isMediumRiskScore, isLowRiskScore, MIN_RISK_SCORE, MAX_RISK_SCORE, SanitizationError } from './isl/index.js';
 // Re-export Shared
-export { addLineageEntry, addLineageEntries, filterLineageByStep, getLastLineageEntry, formatLineageForAudit, formatCSLForAudit, formatISLForAudit, formatISLSignalForAudit, formatAALForAudit, formatCPEForAudit, formatPipelineAudit } from './shared/index.js';
-// Re-export CPE
-export { envelope, createNonce, isValidNonce, equalsNonce, createMetadata, isValidMetadata, CURRENT_PROTOCOL_VERSION, createSignature, EnvelopeError } from './cpe/index.js';
+export { addLineageEntry, addLineageEntries, filterLineageByStep, getLastLineageEntry, formatLineageForAudit, formatCSLForAudit, formatISLForAudit, formatISLSignalForAudit, formatAALForAudit, formatCPEForAudit, formatPipelineAudit, formatPipelineAuditFull, formatPipelineAuditAsJson, createAuditRunId, buildAuditLogEntry, buildFullAuditPayload } from './shared/index.js';
+// Re-export envelope (transversal, from shared – no longer a layer)
+export { envelope, createNonce, isValidNonce, equalsNonce, createMetadata, isValidMetadata, CURRENT_PROTOCOL_VERSION, createSignature, EnvelopeError } from './shared/envelope/index.js';
 // Re-export AAL
-export { createAnomalyScore, isHighRisk, isLowRisk, isWarnRisk, isRoleProtected, isContextLeakPreventionEnabled, isInstructionImmutable, isIntentBlocked, isScopeSensitive, resolveAgentAction, resolveAgentActionWithScore, buildDecisionReason, buildRemovalPlan, buildAALLineage } from './AAL/index.js';
+export { createAnomalyScore, isHighRisk, isLowRisk, isWarnRisk, isRoleProtected, isContextLeakPreventionEnabled, isInstructionImmutable, isIntentBlocked, isScopeSensitive, resolveAgentAction, resolveAgentActionWithScore, buildDecisionReason, buildRemediationPlan, validateAgentPolicyThresholds, buildAALLineage, ACTION_DISPLAY_COLORS, getActionDisplayColor } from './AAL/index.js';
 //# sourceMappingURL=index.js.map

package/dist/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,gBAAgB;AAChB,OAAO,EACL,OAAO,EACP,cAAc,EACd,cAAc,EACd,WAAW,EACX,kBAAkB,EAClB,UAAU,EACV,mBAAmB,EACnB,UAAU,EACV,cAAc,EACd,mBAAmB,EACnB,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AAavB,gBAAgB;AAChB,OAAO,~~EAAE~~,QAAQ,~~EAAE~~,UAAU,~~EAAE~~,eAAe,~~EAAE~~,gBAAgB,~~EAAE~~,kBAAkB,~~EAAE~~,eAAe,~~EAAE~~,MAAM,gBAAgB,CAAA;~~AAU7H~~,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,aAAa,EACb,iBAAiB,EACjB,mBAAmB,EACnB,6BAA6B,EAC7B,aAAa,EACb,cAAc,EACd,SAAS,EACT,kBAAkB,EAClB,kBAAkB,EAClB,WAAW,EACX,eAAe,EACf,kBAAkB,EAClB,eAAe,EACf,iBAAiB,EACjB,cAAc,EACd,cAAc,EACd,cAAc,EACd,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AAEvB,mBAAmB;AACnB,OAAO,EACL,eAAe,EACf,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,qBAAqB,EACrB,iBAAiB,EACjB,iBAAiB,EACjB,uBAAuB,EACvB,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,~~EACpB~~,MAAM,mBAAmB,CAAA;~~AAW1B~~,~~gBAAgB~~;~~AAChB~~,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,eAAe,EAAE,wBAAwB,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,~~gBAAgB~~,CAAA;~~AAI5K~~,gBAAgB;AAChB,OAAO,EACH,kBAAkB,EAClB,UAAU,EACV,SAAS,EACT,UAAU,EACV,eAAe,EACf,8BAA8B,EAC9B,sBAAsB,EACtB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,EAClB,2BAA2B,EAC3B,mBAAmB,EACnB,~~gBAAgB~~,~~EAChB~~,eAAe,~~EAClB~~,MAAM,gBAAgB,CAAA"}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAEH,gBAAgB;AAChB,OAAO,EACL,OAAO,EACP,cAAc,EACd,cAAc,EACd,WAAW,EACX,kBAAkB,EAClB,UAAU,EACV,mBAAmB,EACnB,UAAU,EACV,cAAc,EACd,mBAAmB,EACnB,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AAavB,gBAAgB;AAChB,OAAO,EACL,QAAQ,EACR,UAAU,EACV,eAAe,EACf,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,iBAAiB,EACjB,aAAa,EACb,uBAAuB,EACvB,4BAA4B,EAC5B,wBAAwB,EACxB,+BAA+B,EAC/B,oBAAoB,EACrB,MAAM,gBAAgB,CAAA;AAcvB,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,gBAAgB,EAChB,kBAAkB,EAClB,eAAe,EACf,uBAAuB,EACvB,aAAa,EACb,iBAAiB,EACjB,mBAAmB,EACnB,6BAA6B,EAC7B,aAAa,EACb,cAAc,EACd,SAAS,EACT,kBAAkB,EAClB,kBAAkB,EAClB,WAAW,EACX,eAAe,EACf,kBAAkB,EAClB,eAAe,EACf,iBAAiB,EACjB,cAAc,EACd,cAAc,EACd,cAAc,EACd,iBAAiB,EAClB,MAAM,gBAAgB,CAAA;AAEvB,mBAAmB;AACnB,OAAO,EACL,eAAe,EACf,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACnB,qBAAqB,EACrB,iBAAiB,EACjB,iBAAiB,EACjB,uBAAuB,EACvB,iBAAiB,EACjB,iBAAiB,EACjB,mBAAmB,EACnB,uBAAuB,EACvB,yBAAyB,EACzB,gBAAgB,EAChB,kBAAkB,EAClB,qBAAqB,EACtB,MAAM,mBAAmB,CAAA;AAe1B,oEAAoE;AACpE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,eAAe,EAAE,wBAAwB,EAAE,eAAe,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAA;AAIxL,gBAAgB;AAChB,OAAO,EACH,kBAAkB,EAClB,UAAU,EACV,SAAS,EACT,UAAU,EACV,eAAe,EACf,8BAA8B,EAC9B,sBAAsB,EACtB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,EAClB,2BAA2B,EAC3B,mBAAmB,EACnB,oBAAoB,EACpB,6BAA6B,EAC7B,eAAe,EACf,qBAAqB,EACrB,qBAAqB,EACxB,MAAM,gBAAgB,CAAA"}

package/dist/isl/detect/detect.d.ts ADDED Viewed

@@ -0,0 +1,39 @@
+/**
+ * ISL threat detection - pure, deterministic, single source of truth.
+ *
+ * Runs pattern-based detection on content and returns PiDetection[].
+ * No duplication: reuses Pattern, findAllMatches, createPiDetection.
+ * Same input → same output; bounded by MAX_TOTAL_DETECTIONS and per-pattern cap.
+ */
+import type { Pattern } from '../value-objects/Pattern.js';
+import type { PiDetection } from '../value-objects/PiDetection.js';
+/** Threat pattern type identifiers (deterministic taxonomy) */
+export declare const THREAT_TYPES: {
+    readonly PROMPT_INJECTION: "prompt-injection";
+    readonly JAILBREAK: "jailbreak";
+    readonly ROLE_HIJACKING: "role_hijacking";
+    readonly SCRIPT_LIKE: "script_like";
+    readonly HIDDEN_TEXT: "hidden_text";
+};
+export type ThreatType = (typeof THREAT_TYPES)[keyof typeof THREAT_TYPES];
+/** Returns default threat patterns (cached, frozen). */
+export declare function getDefaultThreatPatterns(): readonly Pattern[];
+export interface DetectThreatsOptions {
+    /** Max total detections to return (default: MAX_TOTAL_DETECTIONS) */
+    maxTotal?: number;
+    /** Max matches per pattern (default: MAX_PER_PATTERN) */
+    maxPerPattern?: number;
+    /** Override patterns (default: getDefaultThreatPatterns()) */
+    patterns?: readonly Pattern[];
+}
+/**
+ * Detects threats in content using the configured patterns.
+ * Pure, deterministic: same content → same PiDetection[] (order preserved by pattern order then by match position).
+ * Bounded by maxTotal and maxPerPattern to avoid runaway.
+ *
+ * @param content - Segment or string to scan
+ * @param options - Optional caps and pattern override
+ * @returns Array of PiDetection (frozen); empty if none
+ */
+export declare function detectThreats(content: string, options?: DetectThreatsOptions): readonly PiDetection[];
+//# sourceMappingURL=detect.d.ts.map

package/dist/isl/detect/detect.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"detect.d.ts","sourceRoot":"","sources":["../../../src/isl/detect/detect.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,6BAA6B,CAAA;AAC1D,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iCAAiC,CAAA;AAQlE,+DAA+D;AAC/D,eAAO,MAAM,YAAY;;;;;;CAMf,CAAA;AAEV,MAAM,MAAM,UAAU,GAAG,CAAC,OAAO,YAAY,CAAC,CAAC,MAAM,OAAO,YAAY,CAAC,CAAA;AA0TzE,wDAAwD;AACxD,wBAAgB,wBAAwB,IAAI,SAAS,OAAO,EAAE,CAG7D;AAED,MAAM,WAAW,oBAAoB;IACnC,qEAAqE;IACrE,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,yDAAyD;IACzD,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,8DAA8D;IAC9D,QAAQ,CAAC,EAAE,SAAS,OAAO,EAAE,CAAA;CAC9B;AAED;;;;;;;;GAQG;AACH,wBAAgB,aAAa,CAC3B,OAAO,EAAE,MAAM,EACf,OAAO,GAAE,oBAAyB,GACjC,SAAS,WAAW,EAAE,CAsCxB"}