npm - @ai-pip/core - Versions diffs - 0.3.0 → 0.4.0 - Mend

@ai-pip/core 0.3.0 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (85) hide show

package/CHANGELOG.md +40 -1
package/README.md +50 -1038
package/dist/AAL/index.d.ts +4 -4
package/dist/AAL/index.d.ts.map +1 -1
package/dist/AAL/index.js +2 -2
package/dist/AAL/index.js.map +1 -1
package/dist/AAL/process/applyRemovalPlan.d.ts +5 -3
package/dist/AAL/process/applyRemovalPlan.d.ts.map +1 -1
package/dist/AAL/process/applyRemovalPlan.js +10 -3
package/dist/AAL/process/applyRemovalPlan.js.map +1 -1
package/dist/AAL/process/buildDecisionReason.d.ts.map +1 -1
package/dist/AAL/process/buildDecisionReason.js +2 -4
package/dist/AAL/process/buildDecisionReason.js.map +1 -1
package/dist/AAL/process/buildRemediationPlan.d.ts +22 -0
package/dist/AAL/process/buildRemediationPlan.d.ts.map +1 -0
package/dist/AAL/process/buildRemediationPlan.js +81 -0
package/dist/AAL/process/buildRemediationPlan.js.map +1 -0
package/dist/AAL/process/buildRemovalPlan.d.ts +13 -2
package/dist/AAL/process/buildRemovalPlan.d.ts.map +1 -1
package/dist/AAL/process/buildRemovalPlan.js +14 -2
package/dist/AAL/process/buildRemovalPlan.js.map +1 -1
package/dist/AAL/process/index.d.ts +2 -3
package/dist/AAL/process/index.d.ts.map +1 -1
package/dist/AAL/process/index.js +2 -2
package/dist/AAL/process/index.js.map +1 -1
package/dist/AAL/process/resolveAgentAction.d.ts.map +1 -1
package/dist/AAL/process/resolveAgentAction.js +3 -14
package/dist/AAL/process/resolveAgentAction.js.map +1 -1
package/dist/AAL/process/validatePolicy.d.ts +20 -0
package/dist/AAL/process/validatePolicy.d.ts.map +1 -0
package/dist/AAL/process/validatePolicy.js +40 -0
package/dist/AAL/process/validatePolicy.js.map +1 -0
package/dist/AAL/types.d.ts +18 -35
package/dist/AAL/types.d.ts.map +1 -1
package/dist/index.d.ts +6 -6
package/dist/index.d.ts.map +1 -1
package/dist/index.js +4 -4
package/dist/index.js.map +1 -1
package/dist/isl/detect/detect.js +19 -19
package/dist/isl/detect/detect.js.map +1 -1
package/dist/isl/sanitize.js +2 -2
package/dist/isl/sanitize.js.map +1 -1
package/dist/shared/audit.d.ts +16 -18
package/dist/shared/audit.d.ts.map +1 -1
package/dist/shared/audit.js +27 -31
package/dist/shared/audit.js.map +1 -1
package/dist/shared/envelope/envelope.d.ts +23 -0
package/dist/shared/envelope/envelope.d.ts.map +1 -0
package/dist/shared/envelope/envelope.js +58 -0
package/dist/shared/envelope/envelope.js.map +1 -0
package/dist/shared/envelope/exceptions/EnvelopeError.d.ts +8 -0
package/dist/shared/envelope/exceptions/EnvelopeError.d.ts.map +1 -0
package/dist/shared/envelope/exceptions/EnvelopeError.js +13 -0
package/dist/shared/envelope/exceptions/EnvelopeError.js.map +1 -0
package/dist/shared/envelope/exceptions/index.d.ts +2 -0
package/dist/shared/envelope/exceptions/index.d.ts.map +1 -0
package/dist/shared/envelope/exceptions/index.js +2 -0
package/dist/shared/envelope/exceptions/index.js.map +1 -0
package/dist/shared/envelope/index.d.ts +18 -0
package/dist/shared/envelope/index.d.ts.map +1 -0
package/dist/shared/envelope/index.js +15 -0
package/dist/shared/envelope/index.js.map +1 -0
package/dist/shared/envelope/types.d.ts +45 -0
package/dist/shared/envelope/types.d.ts.map +1 -0
package/dist/shared/envelope/types.js +10 -0
package/dist/shared/envelope/types.js.map +1 -0
package/dist/shared/envelope/value-objects/Metadata.d.ts +27 -0
package/dist/shared/envelope/value-objects/Metadata.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/Metadata.js +57 -0
package/dist/shared/envelope/value-objects/Metadata.js.map +1 -0
package/dist/shared/envelope/value-objects/Nonce.d.ts +26 -0
package/dist/shared/envelope/value-objects/Nonce.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/Nonce.js +38 -0
package/dist/shared/envelope/value-objects/Nonce.js.map +1 -0
package/dist/shared/envelope/value-objects/Signature.d.ts +28 -0
package/dist/shared/envelope/value-objects/Signature.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/Signature.js +50 -0
package/dist/shared/envelope/value-objects/Signature.js.map +1 -0
package/dist/shared/envelope/value-objects/index.d.ts +9 -0
package/dist/shared/envelope/value-objects/index.d.ts.map +1 -0
package/dist/shared/envelope/value-objects/index.js +7 -0
package/dist/shared/envelope/value-objects/index.js.map +1 -0
package/dist/shared/index.d.ts +1 -1
package/dist/shared/index.d.ts.map +1 -1
package/package.json +7 -6

package/CHANGELOG.md CHANGED Viewed

@@ -7,6 +7,45 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 ---
+## [0.4.0] - (unreleased)
+### ✨ Added
+- **AAL – Remediation plan (what to clean, not how)**
+  - `buildRemediationPlan(islResult, policy)`: builds a **RemediationPlan** describing *what* to clean (target segment IDs, goals, constraints). The SDK or an AI tool performs the actual cleanup.
+  - **RemediationPlan**: `strategy: 'AI_CLEANUP'`, `goals: string[]` (e.g. `remove_prompt_injection`, `remove_role_hijacking`), `constraints: string[]` (e.g. `preserve_user_intent`, `do_not_add_information`, `do_not_change_language`), `targetSegments: string[]` (segment IDs with detections), `needsRemediation: boolean`.
+  - Policy: **`remediation: { enabled: boolean }`** (replaces `removal`).
+- **Shared – Audit with remediation plan**
+  - **RemediationPlanLike** (shared type) for audit payloads; same shape as RemediationPlan.
+  - `formatPipelineAuditFull(..., remediationPlan?, cpe?, options?)` and `buildFullAuditPayload` / `formatPipelineAuditAsJson` accept **`remediationPlan`** in options (replacing removal plan).
+  - `formatAALForAudit(reason, remediationPlan?)` documents the remediation plan in the AAL section.
+- **CPE – Transversal (documented and clarified)**
+  - CPE (Cryptographic Prompt Envelope) is **transversal**: it **ensures the integrity of each layer** for greater security. It is not a sequential processing layer but a shared capability that wraps pipeline output (e.g. ISL or AAL result) with a cryptographic envelope (nonce, metadata, HMAC-SHA256), so that the result of each layer can be verified and tampering detected. Implementation lives in **`shared/envelope`**; the package exports it as **`@ai-pip/core/cpe`** for backward compatibility. Use `envelope(islResult, secretKey)` to wrap any pipeline result.
+### 🗑️ Removed
+- **AAL – Removal plan and application (moved to SDK)**
+  - **Removed**: `buildRemovalPlan`, `buildRemovalPlanFromResult`, `applyRemovalPlan`, **RemovalPlan**, **RemovedInstruction**.
+  - The core no longer performs instruction removal; it only produces a remediation plan. The SDK (or an AI cleanup tool) uses the plan to clean the content.
+### 🔄 Changed
+- **AgentPolicy**: `removal: { enabled }` → **`remediation: { enabled }`**.
+- **Audit**: All formatters and payloads use **remediationPlan** / **RemediationPlanLike** instead of removal plan / RemovalPlanLike.
+### 📚 Documentation
+- **README.md**: Examples and use cases updated to remediation (buildRemediationPlan, RemediationPlan, policy.remediation); audit section uses remediationPlan; SDK responsibility clarified (remediation execution, e.g. AI cleanup). New subsection *CPE as transversal* in Architecture: CPE ensures the **integrity of each layer** for greater security (shared/envelope, export `@ai-pip/core/cpe`); pipeline clarified (CSL → ISL → optional AAL; CPE wraps result for verification).
+- **FEATURE.md**: 0.4.0 section with new APIs, removed APIs, and CPE transversal; tables updated for remediation.
+### 📎 More information
+See **[FEATURE.md](./FEATURE.md)** for API details.
+---
 ## [0.3.0] - (unreleased)
 ### ✨ Added
@@ -414,6 +453,6 @@ For specific method signatures and API changes in 0.3.0, see **[FEATURE.md](./FE
 ---
-**Current Version**: 0.1.8
+**Current Version**: 0.4.0
 **Status**: Phase 1 - Core Layers (100% completed)