@ai-pip/core 0.3.0 → 0.5.0

package/dist/isl/tags/threat-tag.d.ts

@@ -0,0 +1,32 @@
+/**
+ * ThreatTag – Structural metadata for semantic isolation (v0.5.0).
+ *
+ * @remarks
+ * ISL produces ThreatTag objects: segment id, offsets into the segment content,
+ * threat type, and confidence. The core does not insert tags into text; the SDK
+ * uses this metadata plus the canonical serializer to wrap fragments.
+ *
+ * Offsets are relative to the original segment content (immutable). start is
+ * inclusive, end is exclusive [start, end).
+ */
+import type { ThreatTagType } from './threat-tag-type.js';
+export interface ThreatTag {
+    /** Segment that contains the detected fragment */
+    readonly segmentId: string;
+    /** Start offset (inclusive) into segment content */
+    readonly startOffset: number;
+    /** End offset (exclusive) into segment content */
+    readonly endOffset: number;
+    /** Threat type (aligns with detection taxonomy) */
+    readonly type: ThreatTagType;
+    /** Confidence in [0, 1] */
+    readonly confidence: number;
+}
+/**
+ * Creates a ThreatTag (frozen). Validates segmentId, offsets, type, and confidence.
+ *
+ * @throws {TypeError} If segmentId or type is invalid
+ * @throws {RangeError} If offsets or confidence are out of range
+ */
+export declare function createThreatTag(segmentId: string, startOffset: number, endOffset: number, type: ThreatTagType, confidence: number): ThreatTag;
+//# sourceMappingURL=threat-tag.d.ts.map

package/dist/isl/tags/threat-tag.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"threat-tag.d.ts","sourceRoot":"","sources":["../../../src/isl/tags/threat-tag.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAA;AAGzD,MAAM,WAAW,SAAS;IACxB,kDAAkD;IAClD,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,oDAAoD;IACpD,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,kDAAkD;IAClD,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,mDAAmD;IACnD,QAAQ,CAAC,IAAI,EAAE,aAAa,CAAA;IAC5B,2BAA2B;IAC3B,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAA;CAC5B;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,CAC7B,SAAS,EAAE,MAAM,EACjB,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,MAAM,EACjB,IAAI,EAAE,aAAa,EACnB,UAAU,EAAE,MAAM,GACjB,SAAS,CAuBX"}

package/dist/isl/tags/threat-tag.js

@@ -0,0 +1,43 @@
+/**
+ * ThreatTag – Structural metadata for semantic isolation (v0.5.0).
+ *
+ * @remarks
+ * ISL produces ThreatTag objects: segment id, offsets into the segment content,
+ * threat type, and confidence. The core does not insert tags into text; the SDK
+ * uses this metadata plus the canonical serializer to wrap fragments.
+ *
+ * Offsets are relative to the original segment content (immutable). start is
+ * inclusive, end is exclusive [start, end).
+ */
+import { VALID_TAG_TYPES } from './tag-registry.js';
+/**
+ * Creates a ThreatTag (frozen). Validates segmentId, offsets, type, and confidence.
+ *
+ * @throws {TypeError} If segmentId or type is invalid
+ * @throws {RangeError} If offsets or confidence are out of range
+ */
+export function createThreatTag(segmentId, startOffset, endOffset, type, confidence) {
+    if (segmentId == null || typeof segmentId !== 'string' || segmentId.trim().length === 0) {
+        throw new TypeError('ThreatTag segmentId must be a non-empty string');
+    }
+    if (typeof startOffset !== 'number' || !Number.isFinite(startOffset) || startOffset < 0) {
+        throw new RangeError('ThreatTag startOffset must be a non-negative finite number');
+    }
+    if (typeof endOffset !== 'number' || !Number.isFinite(endOffset) || endOffset < startOffset) {
+        throw new RangeError('ThreatTag endOffset must be >= startOffset');
+    }
+    if (!VALID_TAG_TYPES.includes(type)) {
+        throw new TypeError(`ThreatTag type must be one of: ${VALID_TAG_TYPES.join(', ')}`);
+    }
+    if (typeof confidence !== 'number' || !Number.isFinite(confidence) || confidence < 0 || confidence > 1) {
+        throw new RangeError('ThreatTag confidence must be a number in [0, 1]');
+    }
+    return Object.freeze({
+        segmentId: segmentId.trim(),
+        startOffset,
+        endOffset,
+        type,
+        confidence
+    });
+}
+//# sourceMappingURL=threat-tag.js.map

package/dist/isl/tags/threat-tag.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"threat-tag.js","sourceRoot":"","sources":["../../../src/isl/tags/threat-tag.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAGH,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAenD;;;;;GAKG;AACH,MAAM,UAAU,eAAe,CAC7B,SAAiB,EACjB,WAAmB,EACnB,SAAiB,EACjB,IAAmB,EACnB,UAAkB;IAElB,IAAI,SAAS,IAAI,IAAI,IAAI,OAAO,SAAS,KAAK,QAAQ,IAAI,SAAS,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxF,MAAM,IAAI,SAAS,CAAC,gDAAgD,CAAC,CAAA;IACvE,CAAC;IACD,IAAI,OAAO,WAAW,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,WAAW,GAAG,CAAC,EAAE,CAAC;QACxF,MAAM,IAAI,UAAU,CAAC,4DAA4D,CAAC,CAAA;IACpF,CAAC;IACD,IAAI,OAAO,SAAS,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,SAAS,GAAG,WAAW,EAAE,CAAC;QAC5F,MAAM,IAAI,UAAU,CAAC,4CAA4C,CAAC,CAAA;IACpE,CAAC;IACD,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,SAAS,CAAC,kCAAkC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IACrF,CAAC;IACD,IAAI,OAAO,UAAU,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,UAAU,GAAG,CAAC,IAAI,UAAU,GAAG,CAAC,EAAE,CAAC;QACvG,MAAM,IAAI,UAAU,CAAC,iDAAiD,CAAC,CAAA;IACzE,CAAC;IACD,OAAO,MAAM,CAAC,MAAM,CAAC;QACnB,SAAS,EAAE,SAAS,CAAC,IAAI,EAAE;QAC3B,WAAW;QACX,SAAS;QACT,IAAI;QACJ,UAAU;KACX,CAAC,CAAA;AACJ,CAAC"}

package/dist/isl/types.d.ts

@@ -3,6 +3,7 @@
  */
 import type { LineageEntry, TrustLevel } from '../csl/value-objects/index.js';
 import type { PiDetectionResult } from './value-objects/PiDetectionResult.js';
+import type { ThreatTag } from './tags/threat-tag.js';
 export type { RiskScore } from './value-objects/RiskScore.js';
 /**
  * ISLSegment - Segment sanitized by ISL
@@ -18,10 +19,22 @@ export interface ISLSegment {
 }
 /**
  * ISLResult - Sanitization result
+ *
+ * @remarks
+ * The ISLResult contains the following:
+ *  - segments: readonly ISLSegment[]
+ *  - lineage: readonly LineageEntry[]
+ *  - threatTags: readonly ThreatTag[]
+ *  - metadata: {
+ *      - totalSegments: number
+ *      - sanitizedSegments: number
+ *      - processingTimeMs?: number
+ *  }
  */
 export interface ISLResult {
     readonly segments: readonly ISLSegment[];
     readonly lineage: readonly LineageEntry[];
+    readonly threatTags: readonly ThreatTag[];
     readonly metadata: {
         readonly totalSegments: number;
         readonly sanitizedSegments: number;

package/dist/isl/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/isl/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAA;AAC7E,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sCAAsC,CAAA;AAG7E,YAAY,EAAE,SAAS,EAAE,MAAM,8BAA8B,CAAA;AAU7D;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;IAChC,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;IACjC,QAAQ,CAAC,KAAK,EAAE,UAAU,CAAA;IAC1B,QAAQ,CAAC,OAAO,EAAE,YAAY,EAAE,CAAA;IAChC,QAAQ,CAAC,WAAW,CAAC,EAAE,iBAAiB,CAAA;IACxC,QAAQ,CAAC,iBAAiB,EAAE,SAAS,GAAG,UAAU,GAAG,YAAY,CAAA;CAClE;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,QAAQ,CAAC,QAAQ,EAAE,SAAS,UAAU,EAAE,CAAA;IACxC,QAAQ,CAAC,OAAO,EAAE,SAAS,YAAY,EAAE,CAAA;IACzC,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;QAC9B,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;QAClC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;KACnC,CAAA;CACF"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/isl/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAA;AAC7E,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,sCAAsC,CAAA;AAC7E,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAA;AAGrD,YAAY,EAAE,SAAS,EAAE,MAAM,8BAA8B,CAAA;AAU7D;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;IACnB,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;IAChC,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;IACjC,QAAQ,CAAC,KAAK,EAAE,UAAU,CAAA;IAC1B,QAAQ,CAAC,OAAO,EAAE,YAAY,EAAE,CAAA;IAChC,QAAQ,CAAC,WAAW,CAAC,EAAE,iBAAiB,CAAA;IACxC,QAAQ,CAAC,iBAAiB,EAAE,SAAS,GAAG,UAAU,GAAG,YAAY,CAAA;CAClE;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,WAAW,SAAS;IACxB,QAAQ,CAAC,QAAQ,EAAE,SAAS,UAAU,EAAE,CAAA;IACxC,QAAQ,CAAC,OAAO,EAAE,SAAS,YAAY,EAAE,CAAA;IACzC,QAAQ,CAAC,UAAU,EAAE,SAAS,SAAS,EAAE,CAAA;IACzC,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;QAC9B,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;QAClC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;KACnC,CAAA;CACF"}

package/dist/shared/audit.d.ts

@@ -85,15 +85,13 @@ export interface DecisionReasonLike {
     readonly hasThreats: boolean;
     readonly detectionCount: number;
 }
-/** AAL removal plan shape for audit formatting */
-export interface RemovalPlanLike {
-    readonly shouldRemove: boolean;
-    readonly removalEnabled: boolean;
-    readonly instructionsToRemove: ReadonlyArray<{
-        readonly type?: string;
-        readonly pattern?: string;
-        readonly description?: string;
-    }>;
+/** AAL remediation plan shape for audit formatting */
+export interface RemediationPlanLike {
+    readonly strategy: string;
+    readonly goals: readonly string[];
+    readonly constraints: readonly string[];
+    readonly targetSegments: readonly string[];
+    readonly needsRemediation: boolean;
 }
 /** CPE result shape for audit formatting */
 export interface CPEResultLike {
@@ -157,7 +155,7 @@ export declare function buildAuditLogEntry(signal: ISLSignalLike, reason: Decisi
  * Preserves lineage in each section for traceability. Use formatPipelineAuditAsJson to get a JSON string.
  */
 export declare function buildFullAuditPayload(csl: CSLResultLike, isl: ISLResultLike, signal: ISLSignalLike, reason: DecisionReasonLike, options?: FullPipelineAuditOptions & {
-    removalPlan?: RemovalPlanLike | null;
+    remediationPlan?: RemediationPlanLike | null;
     cpe?: CPEResultLike | null;
 }): Record<string, unknown>;
 /**
@@ -189,13 +187,13 @@ export declare function formatISLForAudit(result: ISLResultLike): string;
  */
 export declare function formatISLSignalForAudit(signal: ISLSignalLike): string;
 /**
- * Formats AAL decision reason and optional removal plan for audit
+ * Formats AAL decision reason and optional remediation plan for audit
  *
  * @param reason - Decision reason (or compatible shape)
- * @param removalPlan - Optional removal plan (or compatible shape)
- * @returns Formatted string: what this block is, data origin, action (ALLOW/WARN/BLOCK), reason, thresholds, removal plan
+ * @param remediationPlan - Optional remediation plan (or compatible shape)
+ * @returns Formatted string: action (ALLOW/WARN/BLOCK), reason, thresholds, remediation plan
  */
-export declare function formatAALForAudit(reason: DecisionReasonLike, removalPlan?: RemovalPlanLike | null): string;
+export declare function formatAALForAudit(reason: DecisionReasonLike, remediationPlan?: RemediationPlanLike | null): string;
 /**
  * Formats CPE result for audit - data self-explanatory
  *
@@ -220,7 +218,7 @@ export declare function formatPipelineAudit(csl: CSLResultLike, isl: ISLResultLi
     includeSignalAndAAL?: boolean;
     signal?: ISLSignalLike;
     aalReason?: DecisionReasonLike;
-    removalPlan?: RemovalPlanLike | null;
+    remediationPlan?: RemediationPlanLike | null;
 }): string;
 /**
  * Full pipeline audit report (CSL → ISL → ISL Signal → AAL → optional CPE) with run id and timestamp.
@@ -230,12 +228,12 @@ export declare function formatPipelineAudit(csl: CSLResultLike, isl: ISLResultLi
  * @param isl - ISL result
  * @param signal - ISL signal (for AAL)
  * @param aalReason - AAL decision reason
- * @param removalPlan - Optional removal plan
+ * @param remediationPlan - Optional remediation plan
  * @param cpe - Optional CPE result (included when includeCpe is true)
  * @param options - runId, generatedAt, includeCpe, title, sectionSeparator
  * @returns Formatted string with header (runId, generatedAt) and all sections
  */
-export declare function formatPipelineAuditFull(csl: CSLResultLike, isl: ISLResultLike, signal: ISLSignalLike, aalReason: DecisionReasonLike, removalPlan?: RemovalPlanLike | null, cpe?: CPEResultLike | null, options?: FullPipelineAuditOptions): string;
+export declare function formatPipelineAuditFull(csl: CSLResultLike, isl: ISLResultLike, signal: ISLSignalLike, aalReason: DecisionReasonLike, remediationPlan?: RemediationPlanLike | null, cpe?: CPEResultLike | null, options?: FullPipelineAuditOptions): string;
 /**
  * Full pipeline audit as JSON string (for logs, SIEM, machine consumption).
  * Preserves lineage in each section. Use buildFullAuditPayload for the raw object.
@@ -244,7 +242,7 @@ export declare function formatPipelineAuditFull(csl: CSLResultLike, isl: ISLResu
  * @returns JSON string of the full audit payload
  */
 export declare function formatPipelineAuditAsJson(csl: CSLResultLike, isl: ISLResultLike, signal: ISLSignalLike, reason: DecisionReasonLike, options?: PipelineAuditJsonOptions & {
-    removalPlan?: RemovalPlanLike | null;
+    remediationPlan?: RemediationPlanLike | null;
     cpe?: CPEResultLike | null;
 }): string;
 //# sourceMappingURL=audit.d.ts.map

package/dist/shared/audit.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../src/shared/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAgBH,6CAA6C;AAC7C,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC3B;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,QAAQ,EAAE,aAAa,CAAC;QAC/B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;QACnB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;QACxB,QAAQ,CAAC,KAAK,EAAE;YAAE,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAA;QAC1C,QAAQ,CAAC,OAAO,CAAC,EAAE,SAAS,gBAAgB,EAAE,CAAA;KAC/C,CAAC,CAAA;IACF,QAAQ,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,CAAA;IAC7C,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACnC;AAED,iEAAiE;AACjE,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAA;CAC/B;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,QAAQ,EAAE,aAAa,CAAC;QAC/B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;QACnB,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;QAChC,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;QACjC,QAAQ,CAAC,KAAK,EAAE;YAAE,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAA;QAC1C,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;QAClC,QAAQ,CAAC,OAAO,CAAC,EAAE,SAAS,gBAAgB,EAAE,CAAA;QAC9C,oFAAoF;QACpF,QAAQ,CAAC,WAAW,CAAC,EAAE;YACrB,QAAQ,CAAC,UAAU,EAAE,aAAa,CAAC,aAAa,CAAC,CAAA;YACjD,QAAQ,CAAC,QAAQ,CAAC,EAAE,OAAO,CAAA;SAC5B,CAAA;KACF,CAAC,CAAA;IACF,QAAQ,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,CAAA;IAC7C,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;QAC9B,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;QAClC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;KACnC,CAAA;CACF;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,WAAW,EAAE;QACpB,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;QAC1B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,UAAU,EAAE,aAAa,CAAC,aAAa,CAAC,CAAA;QACjD,QAAQ,CAAC,QAAQ,CAAC,EAAE,SAAS,MAAM,EAAE,CAAA;KACtC,CAAA;IACD,wEAAwE;IACxE,QAAQ,CAAC,QAAQ,CAAC,EAAE;QAAE,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CACnD;AAED,qDAAqD;AACrD,MAAM,WAAW,kBAAkB;IACjC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAChC;AAED,kDAAkD;AAClD,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,YAAY,EAAE,OAAO,CAAA;IAC9B,QAAQ,CAAC,cAAc,EAAE,OAAO,CAAA;IAChC,QAAQ,CAAC,oBAAoB,EAAE,aAAa,CAAC;QAC3C,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAA;QACzB,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAA;KAC9B,CAAC,CAAA;CACH;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,QAAQ,EAAE;YACjB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;YAC1B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;YACtB,QAAQ,CAAC,eAAe,CAAC,EAAE,MAAM,CAAA;SAClC,CAAA;QACD,QAAQ,CAAC,SAAS,EAAE;YAClB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;YAC1B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;SACxB,CAAA;QACD,QAAQ,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,CAAA;KAC9C,CAAA;IACD,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACnC;AAED,yDAAyD;AACzD,MAAM,WAAW,YAAY;IAC3B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAChC;AAED,wEAAwE;AACxE,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;IAC/B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAChC;AAED,qDAAqD;AACrD,MAAM,WAAW,wBAAwB;IACvC,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAA;IAC7B,QAAQ,CAAC,UAAU,CAAC,EAAE,OAAO,CAAA;IAC7B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACnC;AAED,oCAAoC;AACpC,MAAM,WAAW,wBAAyB,SAAQ,wBAAwB;IACxE,QAAQ,CAAC,OAAO,CAAC,EAAE,OAAO,CAAA;CAC3B;AAKD;;;GAGG;AACH,wBAAgB,gBAAgB,IAAI,MAAM,CAKzC;AAWD;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,MAAM,EAAE,aAAa,EACrB,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,CAAA;CAAE,GACjD,eAAe,CAWjB;AAmGD;;;GAGG;AACH,wBAAgB,qBAAqB,CACnC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,MAAM,EAAE,aAAa,EACrB,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE,wBAAwB,GAAG;IAAE,WAAW,CAAC,EAAE,eAAe,GAAG,IAAI,CAAC;IAAC,GAAG,CAAC,EAAE,aAAa,GAAG,IAAI,CAAA;CAAE,GACxG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAyBzB;AAgBD;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,GAAG,MAAM,CAKlF;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAuB/D;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAoC/D;AAED;;;;;GAKG;AACH,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAuBrE;AAED;;;;;;GAMG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,kBAAkB,EAAE,WAAW,CAAC,EAAE,eAAe,GAAG,IAAI,GAAG,MAAM,CAkC1G;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CA0B/D;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,mBAAmB,CACjC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,OAAO,CAAC,EAAE;IACR,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,gBAAgB,CAAC,EAAE,MAAM,CAAA;IACzB,mBAAmB,CAAC,EAAE,OAAO,CAAA;IAC7B,MAAM,CAAC,EAAE,aAAa,CAAA;IACtB,SAAS,CAAC,EAAE,kBAAkB,CAAA;IAC9B,WAAW,CAAC,EAAE,eAAe,GAAG,IAAI,CAAA;CACrC,GACA,MAAM,CAWR;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,uBAAuB,CACrC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,MAAM,EAAE,aAAa,EACrB,SAAS,EAAE,kBAAkB,EAC7B,WAAW,CAAC,EAAE,eAAe,GAAG,IAAI,EACpC,GAAG,CAAC,EAAE,aAAa,GAAG,IAAI,EAC1B,OAAO,CAAC,EAAE,wBAAwB,GACjC,MAAM,CA+BR;AAED;;;;;;GAMG;AACH,wBAAgB,yBAAyB,CACvC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,MAAM,EAAE,aAAa,EACrB,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE,wBAAwB,GAAG;IAAE,WAAW,CAAC,EAAE,eAAe,GAAG,IAAI,CAAC;IAAC,GAAG,CAAC,EAAE,aAAa,GAAG,IAAI,CAAA;CAAE,GACxG,MAAM,CAGR"}
+{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../src/shared/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAgBH,6CAA6C;AAC7C,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAA;IACrB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;CAC3B;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,QAAQ,EAAE,aAAa,CAAC;QAC/B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;QACnB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAA;QACxB,QAAQ,CAAC,KAAK,EAAE;YAAE,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAA;QAC1C,QAAQ,CAAC,OAAO,CAAC,EAAE,SAAS,gBAAgB,EAAE,CAAA;KAC/C,CAAC,CAAA;IACF,QAAQ,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,CAAA;IAC7C,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACnC;AAED,iEAAiE;AACjE,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,YAAY,CAAC,EAAE,MAAM,CAAA;CAC/B;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,QAAQ,EAAE,aAAa,CAAC;QAC/B,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAA;QACnB,QAAQ,CAAC,eAAe,EAAE,MAAM,CAAA;QAChC,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAA;QACjC,QAAQ,CAAC,KAAK,EAAE;YAAE,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;SAAE,CAAA;QAC1C,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;QAClC,QAAQ,CAAC,OAAO,CAAC,EAAE,SAAS,gBAAgB,EAAE,CAAA;QAC9C,oFAAoF;QACpF,QAAQ,CAAC,WAAW,CAAC,EAAE;YACrB,QAAQ,CAAC,UAAU,EAAE,aAAa,CAAC,aAAa,CAAC,CAAA;YACjD,QAAQ,CAAC,QAAQ,CAAC,EAAE,OAAO,CAAA;SAC5B,CAAA;KACF,CAAC,CAAA;IACF,QAAQ,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,CAAA;IAC7C,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAA;QAC9B,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAA;QAClC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;KACnC,CAAA;CACF;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,WAAW,EAAE;QACpB,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAA;QAC1B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;QACtB,QAAQ,CAAC,UAAU,EAAE,aAAa,CAAC,aAAa,CAAC,CAAA;QACjD,QAAQ,CAAC,QAAQ,CAAC,EAAE,SAAS,MAAM,EAAE,CAAA;KACtC,CAAA;IACD,wEAAwE;IACxE,QAAQ,CAAC,QAAQ,CAAC,EAAE;QAAE,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CACnD;AAED,qDAAqD;AACrD,MAAM,WAAW,kBAAkB;IACjC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAChC;AAED,sDAAsD;AACtD,MAAM,WAAW,mBAAmB;IAClC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAA;IACzB,QAAQ,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,CAAA;IACjC,QAAQ,CAAC,WAAW,EAAE,SAAS,MAAM,EAAE,CAAA;IACvC,QAAQ,CAAC,cAAc,EAAE,SAAS,MAAM,EAAE,CAAA;IAC1C,QAAQ,CAAC,gBAAgB,EAAE,OAAO,CAAA;CACnC;AAED,4CAA4C;AAC5C,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,QAAQ,EAAE;QACjB,QAAQ,CAAC,QAAQ,EAAE;YACjB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;YAC1B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;YACtB,QAAQ,CAAC,eAAe,CAAC,EAAE,MAAM,CAAA;SAClC,CAAA;QACD,QAAQ,CAAC,SAAS,EAAE;YAClB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;YAC1B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;SACxB,CAAA;QACD,QAAQ,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,CAAA;KAC9C,CAAA;IACD,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACnC;AAED,yDAAyD;AACzD,MAAM,WAAW,YAAY;IAC3B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAChC;AAED,wEAAwE;AACxE,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAA;IACtB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;IAC/B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAA;IAC1B,QAAQ,CAAC,UAAU,EAAE,OAAO,CAAA;IAC5B,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAChC;AAED,qDAAqD;AACrD,MAAM,WAAW,wBAAwB;IACvC,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAA;IAC7B,QAAQ,CAAC,UAAU,CAAC,EAAE,OAAO,CAAA;IAC7B,QAAQ,CAAC,KAAK,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAA;CACnC;AAED,oCAAoC;AACpC,MAAM,WAAW,wBAAyB,SAAQ,wBAAwB;IACxE,QAAQ,CAAC,OAAO,CAAC,EAAE,OAAO,CAAA;CAC3B;AAKD;;;GAGG;AACH,wBAAgB,gBAAgB,IAAI,MAAM,CAKzC;AAWD;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,MAAM,EAAE,aAAa,EACrB,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,CAAC;IAAC,WAAW,CAAC,EAAE,MAAM,CAAA;CAAE,GACjD,eAAe,CAWjB;AAkGD;;;GAGG;AACH,wBAAgB,qBAAqB,CACnC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,MAAM,EAAE,aAAa,EACrB,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE,wBAAwB,GAAG;IAAE,eAAe,CAAC,EAAE,mBAAmB,GAAG,IAAI,CAAC;IAAC,GAAG,CAAC,EAAE,aAAa,GAAG,IAAI,CAAA;CAAE,GAChH,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAyBzB;AAgBD;;;;;GAKG;AACH,wBAAgB,qBAAqB,CAAC,OAAO,EAAE,SAAS,gBAAgB,EAAE,GAAG,MAAM,CAKlF;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAuB/D;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAoC/D;AAED;;;;;GAKG;AACH,wBAAgB,uBAAuB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CAuBrE;AAED;;;;;;GAMG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,kBAAkB,EAAE,eAAe,CAAC,EAAE,mBAAmB,GAAG,IAAI,GAAG,MAAM,CA4BlH;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,aAAa,GAAG,MAAM,CA0B/D;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,mBAAmB,CACjC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,OAAO,CAAC,EAAE;IACR,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,gBAAgB,CAAC,EAAE,MAAM,CAAA;IACzB,mBAAmB,CAAC,EAAE,OAAO,CAAA;IAC7B,MAAM,CAAC,EAAE,aAAa,CAAA;IACtB,SAAS,CAAC,EAAE,kBAAkB,CAAA;IAC9B,eAAe,CAAC,EAAE,mBAAmB,GAAG,IAAI,CAAA;CAC7C,GACA,MAAM,CAWR;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,uBAAuB,CACrC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,MAAM,EAAE,aAAa,EACrB,SAAS,EAAE,kBAAkB,EAC7B,eAAe,CAAC,EAAE,mBAAmB,GAAG,IAAI,EAC5C,GAAG,CAAC,EAAE,aAAa,GAAG,IAAI,EAC1B,OAAO,CAAC,EAAE,wBAAwB,GACjC,MAAM,CA+BR;AAED;;;;;;GAMG;AACH,wBAAgB,yBAAyB,CACvC,GAAG,EAAE,aAAa,EAClB,GAAG,EAAE,aAAa,EAClB,MAAM,EAAE,aAAa,EACrB,MAAM,EAAE,kBAAkB,EAC1B,OAAO,CAAC,EAAE,wBAAwB,GAAG;IAAE,eAAe,CAAC,EAAE,mBAAmB,GAAG,IAAI,CAAC;IAAC,GAAG,CAAC,EAAE,aAAa,GAAG,IAAI,CAAA;CAAE,GAChH,MAAM,CAGR"}

package/dist/shared/audit.js

@@ -120,7 +120,7 @@ function buildIslSignalSection(signal) {
         ...(signal.metadata?.strategy && { strategy: signal.metadata.strategy })
     };
 }
-function buildAalSection(reason, removalPlan) {
+function buildAalSection(reason, remediationPlan) {
     const section = {
         layer: 'AAL',
         action: reason.action,
@@ -130,13 +130,12 @@ function buildAalSection(reason, removalPlan) {
         hasThreats: reason.hasThreats,
         detectionCount: reason.detectionCount
     };
-    if (removalPlan != null) {
-        section.removalEnabled = removalPlan.removalEnabled;
-        section.shouldRemove = removalPlan.shouldRemove;
-        section.instructionsToRemove = removalPlan.instructionsToRemove.map((inst) => ({
-            type: inst.type ?? 'unknown',
-            description: inst.description ?? inst.pattern ?? ''
-        }));
+    if (remediationPlan != null) {
+        section.remediationStrategy = remediationPlan.strategy;
+        section.remediationGoals = remediationPlan.goals;
+        section.remediationConstraints = remediationPlan.constraints;
+        section.targetSegments = remediationPlan.targetSegments;
+        section.needsRemediation = remediationPlan.needsRemediation;
     }
     return section;
 }
@@ -159,7 +158,7 @@ function buildCpeSection(result) {
  */
 export function buildFullAuditPayload(csl, isl, signal, reason, options) {
     const run = ensureRunInfo(options);
-    const removalPlan = options?.removalPlan ?? undefined;
+    const remediationPlan = options?.remediationPlan ?? undefined;
     const cpe = options?.cpe;
     const includeCpe = options?.includeCpe === true && cpe != null;
     const payload = {
@@ -176,7 +175,7 @@ export function buildFullAuditPayload(csl, isl, signal, reason, options) {
             csl: buildCslSection(csl),
             isl: buildIslSection(isl),
             islSignal: buildIslSignalSection(signal),
-            aal: buildAalSection(reason, removalPlan),
+            aal: buildAalSection(reason, remediationPlan),
             ...(includeCpe && cpe && { cpe: buildCpeSection(cpe) })
         }
     };
@@ -311,29 +310,26 @@ export function formatISLSignalForAudit(signal) {
     return lines.join('\n');
 }
 /**
- * Formats AAL decision reason and optional removal plan for audit
+ * Formats AAL decision reason and optional remediation plan for audit
  *
  * @param reason - Decision reason (or compatible shape)
- * @param removalPlan - Optional removal plan (or compatible shape)
- * @returns Formatted string: what this block is, data origin, action (ALLOW/WARN/BLOCK), reason, thresholds, removal plan
+ * @param remediationPlan - Optional remediation plan (or compatible shape)
+ * @returns Formatted string: action (ALLOW/WARN/BLOCK), reason, thresholds, remediation plan
  */
-export function formatAALForAudit(reason, removalPlan) {
-    const header = 'Agent Action Lock decision. Action (ALLOW/WARN/BLOCK), reason in plain language, thresholds used (warn/block), removal plan (if removal enabled and threats present).';
-    const origin = 'Data from: AAL decision (resolveAgentAction + buildDecisionReason + optional buildRemovalPlan/buildRemovalPlanFromResult).';
+export function formatAALForAudit(reason, remediationPlan) {
+    const header = 'Agent Action Lock decision. Action (ALLOW/WARN/BLOCK), reason in plain language, thresholds used (warn/block), remediation plan (what to do; SDK/AI agent performs cleanup).';
+    const origin = 'Data from: AAL decision (resolveAgentAction + buildDecisionReason + optional buildRemediationPlan).';
     const actionLabel = ACTION_LEGEND[reason.action] ?? reason.action;
-    const plan = removalPlan ?? undefined;
-    const removalBlock = plan === undefined
+    const plan = remediationPlan ?? undefined;
+    const remediationBlock = plan === undefined
         ? []
         : [
             '',
-            `Removal enabled: ${plan.removalEnabled}`,
-            `Should remove: ${plan.shouldRemove} (if true, applyRemovalPlan can be used to get cleaned content)`,
-            ...(plan.instructionsToRemove.length > 0
-                ? [
-                    `Instructions to remove: ${plan.instructionsToRemove.length}`,
-                    ...plan.instructionsToRemove.map((inst, i) => `${SEP}${i + 1}. type=${inst.type ?? 'unknown'} - ${inst.description ?? inst.pattern ?? ''}`)
-                ]
-                : [])
+            `Remediation strategy: ${plan.strategy}`,
+            `Needs remediation: ${plan.needsRemediation}`,
+            `Target segments: ${plan.targetSegments.length} [${plan.targetSegments.slice(0, 5).join(', ')}${plan.targetSegments.length > 5 ? '...' : ''}]`,
+            `Goals: ${plan.goals.join(', ')}`,
+            `Constraints: ${plan.constraints.join(', ')}`
         ];
     const lines = [
         '[AAL] Agent Action Lock',
@@ -344,7 +340,7 @@ export function formatAALForAudit(reason, removalPlan) {
         `Risk score: ${reason.riskScore.toFixed(3)} (threshold: ${reason.threshold.toFixed(3)})`,
         `Reason: ${reason.reason}`,
         `Threats: ${reason.hasThreats} (detection count: ${reason.detectionCount})`,
-        ...removalBlock
+        ...remediationBlock
     ];
     return lines.join('\n');
 }
@@ -395,7 +391,7 @@ export function formatPipelineAudit(csl, isl, cpe, options) {
     const title = options?.title ?? 'AI-PIP Pipeline Audit';
     const parts = [title, BORDER, formatCSLForAudit(csl), sep, formatISLForAudit(isl)];
     if (options?.includeSignalAndAAL && options.signal != null && options.aalReason != null) {
-        parts.push(sep, formatISLSignalForAudit(options.signal), sep, formatAALForAudit(options.aalReason, options.removalPlan ?? undefined));
+        parts.push(sep, formatISLSignalForAudit(options.signal), sep, formatAALForAudit(options.aalReason, options.remediationPlan ?? undefined));
     }
     parts.push(sep, formatCPEForAudit(cpe));
     return parts.join('\n');
@@ -408,12 +404,12 @@ export function formatPipelineAudit(csl, isl, cpe, options) {
  * @param isl - ISL result
  * @param signal - ISL signal (for AAL)
  * @param aalReason - AAL decision reason
- * @param removalPlan - Optional removal plan
+ * @param remediationPlan - Optional remediation plan
  * @param cpe - Optional CPE result (included when includeCpe is true)
  * @param options - runId, generatedAt, includeCpe, title, sectionSeparator
  * @returns Formatted string with header (runId, generatedAt) and all sections
  */
-export function formatPipelineAuditFull(csl, isl, signal, aalReason, removalPlan, cpe, options) {
+export function formatPipelineAuditFull(csl, isl, signal, aalReason, remediationPlan, cpe, options) {
     const run = ensureRunInfo(options);
     const sep = options?.sectionSeparator ?? '\n\n';
     const title = options?.title ?? 'AI-PIP Pipeline Audit (full)';
@@ -434,7 +430,7 @@ export function formatPipelineAuditFull(csl, isl, signal, aalReason, removalPlan
         sep,
         formatISLSignalForAudit(signal),
         sep,
-        formatAALForAudit(aalReason, removalPlan ?? undefined)
+        formatAALForAudit(aalReason, remediationPlan ?? undefined)
     ];
     if (includeCpe && cpe) {
         parts.push(sep, formatCPEForAudit(cpe));

package/dist/shared/audit.js.map

@@ -1 +1 @@
-{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../src/shared/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,2DAA2D;AAC3D,MAAM,YAAY,GAA2B;IAC3C,EAAE,EAAE,iBAAiB;IACrB,GAAG,EAAE,sBAAsB;IAC3B,EAAE,EAAE,mBAAmB;CACxB,CAAA;AAED,qCAAqC;AACrC,MAAM,aAAa,GAA2B;IAC5C,KAAK,EAAE,mCAAmC;IAC1C,IAAI,EAAE,qCAAqC;IAC3C,KAAK,EAAE,oCAAoC;CAC5C,CAAA;AAqID,MAAM,GAAG,GAAG,IAAI,CAAA;AAChB,MAAM,MAAM,GAAG,KAAK,CAAA;AAEpB;;;GAGG;AACH,MAAM,UAAU,gBAAgB;IAC9B,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,OAAO,MAAM,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;QAC7E,OAAO,MAAM,CAAC,UAAU,EAAE,CAAA;IAC5B,CAAC;IACD,OAAO,SAAS,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAA;AACzE,CAAC;AAED,SAAS,aAAa,CAAC,OAAkD;IACvE,MAAM,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,IAAI,CAAC,GAAG,EAAE,CAAA;IACtD,OAAO;QACL,KAAK,EAAE,OAAO,EAAE,KAAK,IAAI,gBAAgB,EAAE;QAC3C,WAAW;QACX,cAAc,EAAE,IAAI,IAAI,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE;KACpD,CAAA;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAChC,MAAqB,EACrB,MAA0B,EAC1B,OAAkD;IAElD,MAAM,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,CAAA;IAClC,OAAO;QACL,KAAK,EAAE,GAAG,CAAC,KAAK;QAChB,WAAW,EAAE,GAAG,CAAC,WAAW;QAC5B,cAAc,EAAE,GAAG,CAAC,cAAc;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,cAAc,EAAE,MAAM,CAAC,cAAc;KACtC,CAAA;AACH,CAAC;AAED,SAAS,aAAa,CAAC,OAAoC;IACzD,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAA;AACvE,CAAC;AAED,SAAS,eAAe,CAAC,MAAqB;IAC5C,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,YAAY,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM;QACpC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;YACtC,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,KAAK;YACtB,aAAa,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;SAClC,CAAC,CAAC;QACH,OAAO,EAAE,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC;QACtC,GAAG,CAAC,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ,IAAI,EAAE,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,EAAE,CAAC;KAClG,CAAA;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAAqB;IAC5C,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC5B,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,aAAa,EAAE,IAAI,CAAC,aAAa;QACjC,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;QACzC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;YACpC,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,CAAA;YAC1B,MAAM,UAAU,GAAG,EAAE,EAAE,UAAU,CAAA;YACjC,MAAM,cAAc,GAAG,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,uBAAuB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,MAAM,CAAA;YACxF,OAAO;gBACL,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,KAAK;gBACtB,iBAAiB,EAAE,GAAG,CAAC,iBAAiB;gBACxC,cAAc,EAAE,GAAG,CAAC,eAAe,CAAC,MAAM;gBAC1C,eAAe,EAAE,GAAG,CAAC,gBAAgB,CAAC,MAAM;gBAC5C,UAAU,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;gBACnC,cAAc;aACf,CAAA;QACH,CAAC,CAAC;QACF,OAAO,EAAE,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC;QACtC,GAAG,CAAC,OAAO,IAAI,CAAC,gBAAgB,KAAK,QAAQ,IAAI,EAAE,gBAAgB,EAAE,IAAI,CAAC,gBAAgB,EAAE,CAAC;KAC9F,CAAA;AACH,CAAC;AAED,SAAS,qBAAqB,CAAC,MAAqB;IAClD,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,CAAA;IAC7B,OAAO;QACL,KAAK,EAAE,YAAY;QACnB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,YAAY,EAAE,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE;QACtD,WAAW,EAAE;YACX,QAAQ,EAAE,EAAE,CAAC,QAAQ;YACrB,KAAK,EAAE,EAAE,CAAC,KAAK;YACf,cAAc,EAAE,EAAE,CAAC,UAAU,CAAC,MAAM;YACpC,cAAc,EAAE,uBAAuB,CAAC,EAAE,CAAC,UAAU,CAAC;YACtD,GAAG,CAAC,EAAE,CAAC,QAAQ,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,QAAQ,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC7E;QACD,GAAG,CAAC,MAAM,CAAC,QAAQ,EAAE,QAAQ,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;KACzE,CAAA;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAA0B,EAAE,WAAoC;IACvF,MAAM,OAAO,GAA4B;QACvC,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,cAAc,EAAE,MAAM,CAAC,cAAc;KACtC,CAAA;IACD,IAAI,WAAW,IAAI,IAAI,EAAE,CAAC;QACxB,OAAO,CAAC,cAAc,GAAG,WAAW,CAAC,cAAc,CAAA;QACnD,OAAO,CAAC,YAAY,GAAG,WAAW,CAAC,YAAY,CAAA;QAC/C,OAAO,CAAC,oBAAoB,GAAG,WAAW,CAAC,oBAAoB,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAC7E,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,SAAS;YAC5B,WAAW,EAAE,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC,OAAO,IAAI,EAAE;SACpD,CAAC,CAAC,CAAA;IACL,CAAC;IACD,OAAO,OAAO,CAAA;AAChB,CAAC;AAED,SAAS,eAAe,CAAC,MAAqB;IAC5C,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC3B,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,KAAK,EAAE,GAAG,CAAC,QAAQ,CAAC,KAAK;QACzB,SAAS,EAAE,GAAG,CAAC,QAAQ,CAAC,SAAS;QACjC,YAAY,EAAE,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE;QAC5D,kBAAkB,EAAE,GAAG,CAAC,SAAS,CAAC,SAAS;QAC3C,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC;QACnC,GAAG,CAAC,OAAO,GAAG,CAAC,QAAQ,CAAC,eAAe,KAAK,QAAQ,IAAI,EAAE,eAAe,EAAE,GAAG,CAAC,QAAQ,CAAC,eAAe,EAAE,CAAC;QAC1G,GAAG,CAAC,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ,IAAI,EAAE,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,EAAE,CAAC;KAClG,CAAA;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,qBAAqB,CACnC,GAAkB,EAClB,GAAkB,EAClB,MAAqB,EACrB,MAA0B,EAC1B,OAAyG;IAEzG,MAAM,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,CAAA;IAClC,MAAM,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,SAAS,CAAA;IACrD,MAAM,GAAG,GAAG,OAAO,EAAE,GAAG,CAAA;IACxB,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,KAAK,IAAI,IAAI,GAAG,IAAI,IAAI,CAAA;IAE9D,MAAM,OAAO,GAA4B;QACvC,KAAK,EAAE,GAAG,CAAC,KAAK;QAChB,WAAW,EAAE,GAAG,CAAC,WAAW;QAC5B,cAAc,EAAE,GAAG,CAAC,cAAc;QAClC,OAAO,EAAE;YACP,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,cAAc,EAAE,MAAM,CAAC,cAAc;SACtC;QACD,QAAQ,EAAE;YACR,GAAG,EAAE,eAAe,CAAC,GAAG,CAAC;YACzB,GAAG,EAAE,eAAe,CAAC,GAAG,CAAC;YACzB,SAAS,EAAE,qBAAqB,CAAC,MAAM,CAAC;YACxC,GAAG,EAAE,eAAe,CAAC,MAAM,EAAE,WAAW,CAAC;YACzC,GAAG,CAAC,UAAU,IAAI,GAAG,IAAI,EAAE,GAAG,EAAE,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC;SACxD;KACF,CAAA;IACD,OAAO,OAAO,CAAA;AAChB,CAAC;AAED,wFAAwF;AACxF,SAAS,uBAAuB,CAAC,UAAwC;IACvE,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,MAAM,CAAA;IAC1C,MAAM,MAAM,GAA2B,EAAE,CAAA;IACzC,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;QAC3B,MAAM,CAAC,GAAG,CAAC,CAAC,YAAY,IAAI,SAAS,CAAA;QACrC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAA;IAClC,CAAC;IACD,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;SAC1B,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SAC3B,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,KAAK,CAAC,GAAG,CAAC;SACpC,IAAI,CAAC,IAAI,CAAC,CAAA;AACf,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,OAAoC;IACxE,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,uGAAuG,CAAA;IACxI,MAAM,MAAM,GAAG,6EAA6E,CAAA;IAC5F,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;IACzG,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AAC1D,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAqB;IACrD,MAAM,MAAM,GAAG,8HAA8H,CAAA;IAC7I,MAAM,MAAM,GAAG,wFAAwF,CAAA;IACvG,MAAM,kBAAkB,GACtB,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ;QACzC,CAAC,CAAC,CAAC,oBAAoB,MAAM,CAAC,gBAAgB,IAAI,CAAC;QACnD,CAAC,CAAC,EAAE,CAAA;IACR,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;QAClD,MAAM,UAAU,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,KAAK,CAAA;QACnE,OAAO,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC,QAAQ,GAAG,CAAC,EAAE,UAAU,GAAG,CAAC,KAAK,CAAC,KAAK,KAAK,UAAU,oBAAoB,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,CAAA;IAC7H,CAAC,CAAC,CAAA;IACF,MAAM,KAAK,GAAG;QACZ,kCAAkC;QAClC,MAAM;QACN,MAAM;QACN,MAAM;QACN,aAAa,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE;QACrC,GAAG,kBAAkB;QACrB,GAAG,YAAY;QACf,EAAE;QACF,qBAAqB,CAAC,MAAM,CAAC,OAAO,CAAC;KACtC,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAqB;IACrD,MAAM,MAAM,GAAG,8JAA8J,CAAA;IAC7K,MAAM,MAAM,GAAG,gGAAgG,CAAA;IAC/G,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC5B,MAAM,kBAAkB,GACtB,OAAO,IAAI,CAAC,gBAAgB,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,oBAAoB,IAAI,CAAC,gBAAgB,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IAClG,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;QACtD,MAAM,UAAU,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,KAAK,CAAA;QACnE,MAAM,IAAI,GAAG;YACX,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC,QAAQ,GAAG,CAAC,EAAE,UAAU,GAAG,CAAC,KAAK,CAAC,KAAK,KAAK,UAAU,WAAW,GAAG,CAAC,iBAAiB,EAAE;YAC9G,GAAG,GAAG,qBAAqB,GAAG,CAAC,eAAe,CAAC,MAAM,qBAAqB,GAAG,CAAC,gBAAgB,CAAC,MAAM,EAAE;SACxG,CAAA;QACD,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,CAAA;QAC1B,MAAM,UAAU,GAAG,EAAE,EAAE,UAAU,CAAA;QACjC,IAAI,UAAU,EAAE,MAAM,EAAE,CAAC;YACvB,MAAM,KAAK,GAAG,uBAAuB,CAAC,UAAU,CAAC,CAAA;YACjD,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,iBAAiB,UAAU,CAAC,MAAM,YAAY,KAAK,GAAG,CAAC,CAAA;QACzE,CAAC;aAAM,IAAI,EAAE,EAAE,QAAQ,EAAE,CAAC;YACxB,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,8CAA8C,CAAC,CAAA;QACjE,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,oBAAoB,CAAC,CAAA;QACvC,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC,CAAC,CAAA;IACF,MAAM,KAAK,GAAG;QACZ,sCAAsC;QACtC,MAAM;QACN,MAAM;QACN,MAAM;QACN,aAAa,IAAI,CAAC,aAAa,gBAAgB,IAAI,CAAC,iBAAiB,GAAG;QACxE,GAAG,kBAAkB;QACrB,GAAG,YAAY;QACf,EAAE;QACF,qBAAqB,CAAC,MAAM,CAAC,OAAO,CAAC;KACtC,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,uBAAuB,CAAC,MAAqB;IAC3D,MAAM,MAAM,GAAG,kKAAkK,CAAA;IACjL,MAAM,MAAM,GAAG,yGAAyG,CAAA;IACxH,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,CAAA;IAC7B,MAAM,cAAc,GAAG,uBAAuB,CAAC,EAAE,CAAC,UAAU,CAAC,CAAA;IAC7D,MAAM,YAAY,GAChB,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,aAAa,MAAM,CAAC,QAAQ,CAAC,QAAQ,+BAA+B,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IAC/G,MAAM,WAAW,GACf,EAAE,CAAC,QAAQ,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,qBAAqB,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IACpG,MAAM,KAAK,GAAG;QACZ,gCAAgC;QAChC,MAAM;QACN,MAAM;QACN,MAAM;QACN,eAAe,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,4BAA4B;QACtE,gBAAgB,MAAM,CAAC,UAAU,mCAAmC;QACpE,cAAc,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,EAAE;QACxD,eAAe,EAAE,CAAC,UAAU,CAAC,MAAM,uBAAuB,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,CAAC,QAAQ,GAAG;QAC1G,oBAAoB,cAAc,EAAE;QACpC,GAAG,YAAY;QACf,GAAG,WAAW;KACf,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAA0B,EAAE,WAAoC;IAChG,MAAM,MAAM,GAAG,uKAAuK,CAAA;IACtL,MAAM,MAAM,GAAG,4HAA4H,CAAA;IAC3I,MAAM,WAAW,GAAG,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,CAAA;IACjE,MAAM,IAAI,GAAG,WAAW,IAAI,SAAS,CAAA;IACrC,MAAM,YAAY,GAChB,IAAI,KAAK,SAAS;QAChB,CAAC,CAAC,EAAE;QACJ,CAAC,CAAC;YACE,EAAE;YACF,oBAAoB,IAAI,CAAC,cAAc,EAAE;YACzC,kBAAkB,IAAI,CAAC,YAAY,iEAAiE;YACpG,GAAG,CAAC,IAAI,CAAC,oBAAoB,CAAC,MAAM,GAAG,CAAC;gBACtC,CAAC,CAAC;oBACE,2BAA2B,IAAI,CAAC,oBAAoB,CAAC,MAAM,EAAE;oBAC7D,GAAG,IAAI,CAAC,oBAAoB,CAAC,GAAG,CAC9B,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CACV,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,UAAU,IAAI,CAAC,IAAI,IAAI,SAAS,MAAM,IAAI,CAAC,WAAW,IAAI,IAAI,CAAC,OAAO,IAAI,EAAE,EAAE,CAC/F;iBACF;gBACH,CAAC,CAAC,EAAE,CAAC;SACR,CAAA;IACP,MAAM,KAAK,GAAG;QACZ,yBAAyB;QACzB,MAAM;QACN,MAAM;QACN,MAAM;QACN,WAAW,MAAM,CAAC,MAAM,KAAK,WAAW,GAAG;QAC3C,eAAe,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,gBAAgB,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;QACxF,WAAW,MAAM,CAAC,MAAM,EAAE;QAC1B,YAAY,MAAM,CAAC,UAAU,sBAAsB,MAAM,CAAC,cAAc,GAAG;QAC3E,GAAG,YAAY;KAChB,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAqB;IACrD,MAAM,MAAM,GAAG,uFAAuF,CAAA;IACtG,MAAM,MAAM,GAAG,sFAAsF,CAAA;IACrG,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC3B,MAAM,mBAAmB,GACvB,OAAO,GAAG,CAAC,QAAQ,CAAC,eAAe,KAAK,QAAQ;QAC9C,CAAC,CAAC,CAAC,qBAAqB,GAAG,CAAC,QAAQ,CAAC,eAAe,EAAE,CAAC;QACvD,CAAC,CAAC,EAAE,CAAA;IACR,MAAM,kBAAkB,GACtB,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ;QACzC,CAAC,CAAC,CAAC,oBAAoB,MAAM,CAAC,gBAAgB,IAAI,CAAC;QACnD,CAAC,CAAC,EAAE,CAAA;IACR,MAAM,KAAK,GAAG;QACZ,qCAAqC;QACrC,MAAM;QACN,MAAM;QACN,MAAM;QACN,UAAU,GAAG,CAAC,QAAQ,CAAC,KAAK,EAAE;QAC9B,cAAc,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,EAAE;QAC9D,GAAG,mBAAmB;QACtB,wBAAwB,GAAG,CAAC,SAAS,CAAC,SAAS,EAAE;QACjD,GAAG,kBAAkB;QACrB,EAAE;QACF,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC;KACnC,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,mBAAmB,CACjC,GAAkB,EAClB,GAAkB,EAClB,GAAkB,EAClB,OAOC;IAED,MAAM,GAAG,GAAG,OAAO,EAAE,gBAAgB,IAAI,MAAM,CAAA;IAC/C,MAAM,KAAK,GAAG,OAAO,EAAE,KAAK,IAAI,uBAAuB,CAAA;IACvD,MAAM,KAAK,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,iBAAiB,CAAC,GAAG,CAAC,EAAE,GAAG,EAAE,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAA;IAElF,IAAI,OAAO,EAAE,mBAAmB,IAAI,OAAO,CAAC,MAAM,IAAI,IAAI,IAAI,OAAO,CAAC,SAAS,IAAI,IAAI,EAAE,CAAC;QACxF,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,uBAAuB,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,GAAG,EAAE,iBAAiB,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,WAAW,IAAI,SAAS,CAAC,CAAC,CAAA;IACvI,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAA;IACvC,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,uBAAuB,CACrC,GAAkB,EAClB,GAAkB,EAClB,MAAqB,EACrB,SAA6B,EAC7B,WAAoC,EACpC,GAA0B,EAC1B,OAAkC;IAElC,MAAM,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,CAAA;IAClC,MAAM,GAAG,GAAG,OAAO,EAAE,gBAAgB,IAAI,MAAM,CAAA;IAC/C,MAAM,KAAK,GAAG,OAAO,EAAE,KAAK,IAAI,8BAA8B,CAAA;IAC9D,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,KAAK,IAAI,IAAI,GAAG,IAAI,IAAI,CAAA;IAE9D,MAAM,MAAM,GAAG;QACb,KAAK;QACL,MAAM;QACN,WAAW,GAAG,CAAC,KAAK,EAAE;QACtB,iBAAiB,GAAG,CAAC,cAAc,EAAE;QACrC,MAAM;KACP,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEZ,MAAM,KAAK,GAAG;QACZ,MAAM;QACN,GAAG;QACH,iBAAiB,CAAC,GAAG,CAAC;QACtB,GAAG;QACH,iBAAiB,CAAC,GAAG,CAAC;QACtB,GAAG;QACH,uBAAuB,CAAC,MAAM,CAAC;QAC/B,GAAG;QACH,iBAAiB,CAAC,SAAS,EAAE,WAAW,IAAI,SAAS,CAAC;KACvD,CAAA;IAED,IAAI,UAAU,IAAI,GAAG,EAAE,CAAC;QACtB,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAA;IACzC,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,yBAAyB,CACvC,GAAkB,EAClB,GAAkB,EAClB,MAAqB,EACrB,MAA0B,EAC1B,OAAyG;IAEzG,MAAM,OAAO,GAAG,qBAAqB,CAAC,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,CAAA;IACxE,OAAO,OAAO,EAAE,OAAO,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAA;AAC/F,CAAC"}
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../src/shared/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,2DAA2D;AAC3D,MAAM,YAAY,GAA2B;IAC3C,EAAE,EAAE,iBAAiB;IACrB,GAAG,EAAE,sBAAsB;IAC3B,EAAE,EAAE,mBAAmB;CACxB,CAAA;AAED,qCAAqC;AACrC,MAAM,aAAa,GAA2B;IAC5C,KAAK,EAAE,mCAAmC;IAC1C,IAAI,EAAE,qCAAqC;IAC3C,KAAK,EAAE,oCAAoC;CAC5C,CAAA;AAmID,MAAM,GAAG,GAAG,IAAI,CAAA;AAChB,MAAM,MAAM,GAAG,KAAK,CAAA;AAEpB;;;GAGG;AACH,MAAM,UAAU,gBAAgB;IAC9B,IAAI,OAAO,MAAM,KAAK,WAAW,IAAI,OAAO,MAAM,CAAC,UAAU,KAAK,UAAU,EAAE,CAAC;QAC7E,OAAO,MAAM,CAAC,UAAU,EAAE,CAAA;IAC5B,CAAC;IACD,OAAO,SAAS,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAA;AACzE,CAAC;AAED,SAAS,aAAa,CAAC,OAAkD;IACvE,MAAM,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,IAAI,CAAC,GAAG,EAAE,CAAA;IACtD,OAAO;QACL,KAAK,EAAE,OAAO,EAAE,KAAK,IAAI,gBAAgB,EAAE;QAC3C,WAAW;QACX,cAAc,EAAE,IAAI,IAAI,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE;KACpD,CAAA;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAChC,MAAqB,EACrB,MAA0B,EAC1B,OAAkD;IAElD,MAAM,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,CAAA;IAClC,OAAO;QACL,KAAK,EAAE,GAAG,CAAC,KAAK;QAChB,WAAW,EAAE,GAAG,CAAC,WAAW;QAC5B,cAAc,EAAE,GAAG,CAAC,cAAc;QAClC,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,cAAc,EAAE,MAAM,CAAC,cAAc;KACtC,CAAA;AACH,CAAC;AAED,SAAS,aAAa,CAAC,OAAoC;IACzD,OAAO,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAA;AACvE,CAAC;AAED,SAAS,eAAe,CAAC,MAAqB;IAC5C,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,YAAY,EAAE,MAAM,CAAC,QAAQ,CAAC,MAAM;QACpC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;YACtC,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,KAAK;YACtB,aAAa,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM;SAClC,CAAC,CAAC;QACH,OAAO,EAAE,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC;QACtC,GAAG,CAAC,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ,IAAI,EAAE,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,EAAE,CAAC;KAClG,CAAA;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAAqB;IAC5C,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC5B,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,aAAa,EAAE,IAAI,CAAC,aAAa;QACjC,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;QACzC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;YACpC,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,CAAA;YAC1B,MAAM,UAAU,GAAG,EAAE,EAAE,UAAU,CAAA;YACjC,MAAM,cAAc,GAAG,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC,uBAAuB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,MAAM,CAAA;YACxF,OAAO;gBACL,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,KAAK;gBACtB,iBAAiB,EAAE,GAAG,CAAC,iBAAiB;gBACxC,cAAc,EAAE,GAAG,CAAC,eAAe,CAAC,MAAM;gBAC1C,eAAe,EAAE,GAAG,CAAC,gBAAgB,CAAC,MAAM;gBAC5C,UAAU,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;gBACnC,cAAc;aACf,CAAA;QACH,CAAC,CAAC;QACF,OAAO,EAAE,aAAa,CAAC,MAAM,CAAC,OAAO,CAAC;QACtC,GAAG,CAAC,OAAO,IAAI,CAAC,gBAAgB,KAAK,QAAQ,IAAI,EAAE,gBAAgB,EAAE,IAAI,CAAC,gBAAgB,EAAE,CAAC;KAC9F,CAAA;AACH,CAAC;AAED,SAAS,qBAAqB,CAAC,MAAqB;IAClD,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,CAAA;IAC7B,OAAO;QACL,KAAK,EAAE,YAAY;QACnB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,YAAY,EAAE,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE;QACtD,WAAW,EAAE;YACX,QAAQ,EAAE,EAAE,CAAC,QAAQ;YACrB,KAAK,EAAE,EAAE,CAAC,KAAK;YACf,cAAc,EAAE,EAAE,CAAC,UAAU,CAAC,MAAM;YACpC,cAAc,EAAE,uBAAuB,CAAC,EAAE,CAAC,UAAU,CAAC;YACtD,GAAG,CAAC,EAAE,CAAC,QAAQ,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,QAAQ,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC7E;QACD,GAAG,CAAC,MAAM,CAAC,QAAQ,EAAE,QAAQ,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC;KACzE,CAAA;AACH,CAAC;AAED,SAAS,eAAe,CAAC,MAA0B,EAAE,eAA4C;IAC/F,MAAM,OAAO,GAA4B;QACvC,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,cAAc,EAAE,MAAM,CAAC,cAAc;KACtC,CAAA;IACD,IAAI,eAAe,IAAI,IAAI,EAAE,CAAC;QAC5B,OAAO,CAAC,mBAAmB,GAAG,eAAe,CAAC,QAAQ,CAAA;QACtD,OAAO,CAAC,gBAAgB,GAAG,eAAe,CAAC,KAAK,CAAA;QAChD,OAAO,CAAC,sBAAsB,GAAG,eAAe,CAAC,WAAW,CAAA;QAC5D,OAAO,CAAC,cAAc,GAAG,eAAe,CAAC,cAAc,CAAA;QACvD,OAAO,CAAC,gBAAgB,GAAG,eAAe,CAAC,gBAAgB,CAAA;IAC7D,CAAC;IACD,OAAO,OAAO,CAAA;AAChB,CAAC;AAED,SAAS,eAAe,CAAC,MAAqB;IAC5C,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC3B,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,KAAK,EAAE,GAAG,CAAC,QAAQ,CAAC,KAAK;QACzB,SAAS,EAAE,GAAG,CAAC,QAAQ,CAAC,SAAS;QACjC,YAAY,EAAE,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE;QAC5D,kBAAkB,EAAE,GAAG,CAAC,SAAS,CAAC,SAAS;QAC3C,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC;QACnC,GAAG,CAAC,OAAO,GAAG,CAAC,QAAQ,CAAC,eAAe,KAAK,QAAQ,IAAI,EAAE,eAAe,EAAE,GAAG,CAAC,QAAQ,CAAC,eAAe,EAAE,CAAC;QAC1G,GAAG,CAAC,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ,IAAI,EAAE,gBAAgB,EAAE,MAAM,CAAC,gBAAgB,EAAE,CAAC;KAClG,CAAA;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,qBAAqB,CACnC,GAAkB,EAClB,GAAkB,EAClB,MAAqB,EACrB,MAA0B,EAC1B,OAAiH;IAEjH,MAAM,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,CAAA;IAClC,MAAM,eAAe,GAAG,OAAO,EAAE,eAAe,IAAI,SAAS,CAAA;IAC7D,MAAM,GAAG,GAAG,OAAO,EAAE,GAAG,CAAA;IACxB,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,KAAK,IAAI,IAAI,GAAG,IAAI,IAAI,CAAA;IAE9D,MAAM,OAAO,GAA4B;QACvC,KAAK,EAAE,GAAG,CAAC,KAAK;QAChB,WAAW,EAAE,GAAG,CAAC,WAAW;QAC5B,cAAc,EAAE,GAAG,CAAC,cAAc;QAClC,OAAO,EAAE;YACP,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,cAAc,EAAE,MAAM,CAAC,cAAc;SACtC;QACD,QAAQ,EAAE;YACR,GAAG,EAAE,eAAe,CAAC,GAAG,CAAC;YACzB,GAAG,EAAE,eAAe,CAAC,GAAG,CAAC;YACzB,SAAS,EAAE,qBAAqB,CAAC,MAAM,CAAC;YACxC,GAAG,EAAE,eAAe,CAAC,MAAM,EAAE,eAAe,CAAC;YAC7C,GAAG,CAAC,UAAU,IAAI,GAAG,IAAI,EAAE,GAAG,EAAE,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC;SACxD;KACF,CAAA;IACD,OAAO,OAAO,CAAA;AAChB,CAAC;AAED,wFAAwF;AACxF,SAAS,uBAAuB,CAAC,UAAwC;IACvE,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,MAAM,CAAA;IAC1C,MAAM,MAAM,GAA2B,EAAE,CAAA;IACzC,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;QAC3B,MAAM,CAAC,GAAG,CAAC,CAAC,YAAY,IAAI,SAAS,CAAA;QACrC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAA;IAClC,CAAC;IACD,OAAO,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;SAC1B,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SAC3B,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,KAAK,CAAC,GAAG,CAAC;SACpC,IAAI,CAAC,IAAI,CAAC,CAAA;AACf,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,qBAAqB,CAAC,OAAoC;IACxE,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,uGAAuG,CAAA;IACxI,MAAM,MAAM,GAAG,6EAA6E,CAAA;IAC5F,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,KAAK,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,CAAA;IACzG,OAAO,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AAC1D,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAqB;IACrD,MAAM,MAAM,GAAG,8HAA8H,CAAA;IAC7I,MAAM,MAAM,GAAG,wFAAwF,CAAA;IACvG,MAAM,kBAAkB,GACtB,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ;QACzC,CAAC,CAAC,CAAC,oBAAoB,MAAM,CAAC,gBAAgB,IAAI,CAAC;QACnD,CAAC,CAAC,EAAE,CAAA;IACR,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;QAClD,MAAM,UAAU,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,KAAK,CAAA;QACnE,OAAO,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC,QAAQ,GAAG,CAAC,EAAE,UAAU,GAAG,CAAC,KAAK,CAAC,KAAK,KAAK,UAAU,oBAAoB,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,CAAA;IAC7H,CAAC,CAAC,CAAA;IACF,MAAM,KAAK,GAAG;QACZ,kCAAkC;QAClC,MAAM;QACN,MAAM;QACN,MAAM;QACN,aAAa,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE;QACrC,GAAG,kBAAkB;QACrB,GAAG,YAAY;QACf,EAAE;QACF,qBAAqB,CAAC,MAAM,CAAC,OAAO,CAAC;KACtC,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAqB;IACrD,MAAM,MAAM,GAAG,8JAA8J,CAAA;IAC7K,MAAM,MAAM,GAAG,gGAAgG,CAAA;IAC/G,MAAM,IAAI,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC5B,MAAM,kBAAkB,GACtB,OAAO,IAAI,CAAC,gBAAgB,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,oBAAoB,IAAI,CAAC,gBAAgB,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IAClG,MAAM,YAAY,GAAG,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE;QACtD,MAAM,UAAU,GAAG,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,KAAK,CAAA;QACnE,MAAM,IAAI,GAAG;YACX,GAAG,GAAG,WAAW,CAAC,GAAG,CAAC,QAAQ,GAAG,CAAC,EAAE,UAAU,GAAG,CAAC,KAAK,CAAC,KAAK,KAAK,UAAU,WAAW,GAAG,CAAC,iBAAiB,EAAE;YAC9G,GAAG,GAAG,qBAAqB,GAAG,CAAC,eAAe,CAAC,MAAM,qBAAqB,GAAG,CAAC,gBAAgB,CAAC,MAAM,EAAE;SACxG,CAAA;QACD,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,CAAA;QAC1B,MAAM,UAAU,GAAG,EAAE,EAAE,UAAU,CAAA;QACjC,IAAI,UAAU,EAAE,MAAM,EAAE,CAAC;YACvB,MAAM,KAAK,GAAG,uBAAuB,CAAC,UAAU,CAAC,CAAA;YACjD,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,iBAAiB,UAAU,CAAC,MAAM,YAAY,KAAK,GAAG,CAAC,CAAA;QACzE,CAAC;aAAM,IAAI,EAAE,EAAE,QAAQ,EAAE,CAAC;YACxB,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,8CAA8C,CAAC,CAAA;QACjE,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,oBAAoB,CAAC,CAAA;QACvC,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC,CAAC,CAAA;IACF,MAAM,KAAK,GAAG;QACZ,sCAAsC;QACtC,MAAM;QACN,MAAM;QACN,MAAM;QACN,aAAa,IAAI,CAAC,aAAa,gBAAgB,IAAI,CAAC,iBAAiB,GAAG;QACxE,GAAG,kBAAkB;QACrB,GAAG,YAAY;QACf,EAAE;QACF,qBAAqB,CAAC,MAAM,CAAC,OAAO,CAAC;KACtC,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,uBAAuB,CAAC,MAAqB;IAC3D,MAAM,MAAM,GAAG,kKAAkK,CAAA;IACjL,MAAM,MAAM,GAAG,yGAAyG,CAAA;IACxH,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,CAAA;IAC7B,MAAM,cAAc,GAAG,uBAAuB,CAAC,EAAE,CAAC,UAAU,CAAC,CAAA;IAC7D,MAAM,YAAY,GAChB,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,aAAa,MAAM,CAAC,QAAQ,CAAC,QAAQ,+BAA+B,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IAC/G,MAAM,WAAW,GACf,EAAE,CAAC,QAAQ,IAAI,EAAE,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,qBAAqB,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAA;IACpG,MAAM,KAAK,GAAG;QACZ,gCAAgC;QAChC,MAAM;QACN,MAAM;QACN,MAAM;QACN,eAAe,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,4BAA4B;QACtE,gBAAgB,MAAM,CAAC,UAAU,mCAAmC;QACpE,cAAc,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,EAAE;QACxD,eAAe,EAAE,CAAC,UAAU,CAAC,MAAM,uBAAuB,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,CAAC,QAAQ,GAAG;QAC1G,oBAAoB,cAAc,EAAE;QACpC,GAAG,YAAY;QACf,GAAG,WAAW;KACf,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAA0B,EAAE,eAA4C;IACxG,MAAM,MAAM,GAAG,8KAA8K,CAAA;IAC7L,MAAM,MAAM,GAAG,qGAAqG,CAAA;IACpH,MAAM,WAAW,GAAG,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,CAAA;IACjE,MAAM,IAAI,GAAG,eAAe,IAAI,SAAS,CAAA;IACzC,MAAM,gBAAgB,GACpB,IAAI,KAAK,SAAS;QAChB,CAAC,CAAC,EAAE;QACJ,CAAC,CAAC;YACE,EAAE;YACF,yBAAyB,IAAI,CAAC,QAAQ,EAAE;YACxC,sBAAsB,IAAI,CAAC,gBAAgB,EAAE;YAC7C,oBAAoB,IAAI,CAAC,cAAc,CAAC,MAAM,KAAK,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,GAAG;YAC9I,UAAU,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;YACjC,gBAAgB,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;SAC9C,CAAA;IACP,MAAM,KAAK,GAAG;QACZ,yBAAyB;QACzB,MAAM;QACN,MAAM;QACN,MAAM;QACN,WAAW,MAAM,CAAC,MAAM,KAAK,WAAW,GAAG;QAC3C,eAAe,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,gBAAgB,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;QACxF,WAAW,MAAM,CAAC,MAAM,EAAE;QAC1B,YAAY,MAAM,CAAC,UAAU,sBAAsB,MAAM,CAAC,cAAc,GAAG;QAC3E,GAAG,gBAAgB;KACpB,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAqB;IACrD,MAAM,MAAM,GAAG,uFAAuF,CAAA;IACtG,MAAM,MAAM,GAAG,sFAAsF,CAAA;IACrG,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAA;IAC3B,MAAM,mBAAmB,GACvB,OAAO,GAAG,CAAC,QAAQ,CAAC,eAAe,KAAK,QAAQ;QAC9C,CAAC,CAAC,CAAC,qBAAqB,GAAG,CAAC,QAAQ,CAAC,eAAe,EAAE,CAAC;QACvD,CAAC,CAAC,EAAE,CAAA;IACR,MAAM,kBAAkB,GACtB,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ;QACzC,CAAC,CAAC,CAAC,oBAAoB,MAAM,CAAC,gBAAgB,IAAI,CAAC;QACnD,CAAC,CAAC,EAAE,CAAA;IACR,MAAM,KAAK,GAAG;QACZ,qCAAqC;QACrC,MAAM;QACN,MAAM;QACN,MAAM;QACN,UAAU,GAAG,CAAC,QAAQ,CAAC,KAAK,EAAE;QAC9B,cAAc,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,EAAE;QAC9D,GAAG,mBAAmB;QACtB,wBAAwB,GAAG,CAAC,SAAS,CAAC,SAAS,EAAE;QACjD,GAAG,kBAAkB;QACrB,EAAE;QACF,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC;KACnC,CAAA;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,mBAAmB,CACjC,GAAkB,EAClB,GAAkB,EAClB,GAAkB,EAClB,OAOC;IAED,MAAM,GAAG,GAAG,OAAO,EAAE,gBAAgB,IAAI,MAAM,CAAA;IAC/C,MAAM,KAAK,GAAG,OAAO,EAAE,KAAK,IAAI,uBAAuB,CAAA;IACvD,MAAM,KAAK,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,iBAAiB,CAAC,GAAG,CAAC,EAAE,GAAG,EAAE,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAA;IAElF,IAAI,OAAO,EAAE,mBAAmB,IAAI,OAAO,CAAC,MAAM,IAAI,IAAI,IAAI,OAAO,CAAC,SAAS,IAAI,IAAI,EAAE,CAAC;QACxF,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,uBAAuB,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,GAAG,EAAE,iBAAiB,CAAC,OAAO,CAAC,SAAS,EAAE,OAAO,CAAC,eAAe,IAAI,SAAS,CAAC,CAAC,CAAA;IAC3I,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAA;IACvC,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,uBAAuB,CACrC,GAAkB,EAClB,GAAkB,EAClB,MAAqB,EACrB,SAA6B,EAC7B,eAA4C,EAC5C,GAA0B,EAC1B,OAAkC;IAElC,MAAM,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,CAAA;IAClC,MAAM,GAAG,GAAG,OAAO,EAAE,gBAAgB,IAAI,MAAM,CAAA;IAC/C,MAAM,KAAK,GAAG,OAAO,EAAE,KAAK,IAAI,8BAA8B,CAAA;IAC9D,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,KAAK,IAAI,IAAI,GAAG,IAAI,IAAI,CAAA;IAE9D,MAAM,MAAM,GAAG;QACb,KAAK;QACL,MAAM;QACN,WAAW,GAAG,CAAC,KAAK,EAAE;QACtB,iBAAiB,GAAG,CAAC,cAAc,EAAE;QACrC,MAAM;KACP,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;IAEZ,MAAM,KAAK,GAAG;QACZ,MAAM;QACN,GAAG;QACH,iBAAiB,CAAC,GAAG,CAAC;QACtB,GAAG;QACH,iBAAiB,CAAC,GAAG,CAAC;QACtB,GAAG;QACH,uBAAuB,CAAC,MAAM,CAAC;QAC/B,GAAG;QACH,iBAAiB,CAAC,SAAS,EAAE,eAAe,IAAI,SAAS,CAAC;KAC3D,CAAA;IAED,IAAI,UAAU,IAAI,GAAG,EAAE,CAAC;QACtB,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAA;IACzC,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;AACzB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,yBAAyB,CACvC,GAAkB,EAClB,GAAkB,EAClB,MAAqB,EACrB,MAA0B,EAC1B,OAAiH;IAEjH,MAAM,OAAO,GAAG,qBAAqB,CAAC,GAAG,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,CAAA;IACxE,OAAO,OAAO,EAAE,OAAO,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAA;AAC/F,CAAC"}

package/dist/shared/envelope/envelope.d.ts

@@ -0,0 +1,23 @@
+/**
+ * envelope – builds a cryptographic envelope around pipeline result (transversal).
+ *
+ * @remarks
+ * The envelope is a cross-cutting concern: it wraps the result of the pipeline
+ * (e.g. ISL result or AAL-cleaned result) with integrity and anti-replay guarantees:
+ * - Metadata: timestamp, nonce, protocol version
+ * - Signature: HMAC-SHA256 over payload + metadata
+ * - Lineage: appends an envelope step to the existing lineage
+ *
+ * This is not a processing layer; it applies to whatever output the SDK chooses
+ * to wrap (after ISL or after AAL). Serialization and verification belong in the SDK.
+ *
+ * @param islResult - Pipeline result with segments (e.g. ISLResult); must have at least one segment
+ * @param secretKey - Secret key for HMAC. Must not be logged, serialized, or exposed. Key rotation
+ *   and secure storage are the SDK's responsibility (e.g. key id in metadata, multiple keys in verifier).
+ * @returns CPEResult with envelope and optional processingTimeMs
+ * @throws {EnvelopeError} If input is invalid or generation fails
+ */
+import type { ISLResult } from '../../isl/types.js';
+import type { CPEResult } from './types.js';
+export declare function envelope(islResult: ISLResult, secretKey: string): CPEResult;
+//# sourceMappingURL=envelope.d.ts.map

package/dist/shared/envelope/envelope.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"envelope.d.ts","sourceRoot":"","sources":["../../../src/shared/envelope/envelope.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AACH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAA;AACnD,OAAO,KAAK,EAAc,SAAS,EAAE,MAAM,YAAY,CAAA;AAQvD,wBAAgB,QAAQ,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,GAAG,SAAS,CA6D3E"}

package/dist/{cpe → shared/envelope}/envelope.js

@@ -2,26 +2,20 @@ import { createNonce } from './value-objects/Nonce.js';
 import { createMetadata } from './value-objects/Metadata.js';
 import { createSignature } from './value-objects/Signature.js';
 import { EnvelopeError } from './exceptions/index.js';
-// Serialización NO es core - va al SDK
-// El core solo define la estructura del envelope
-import { addLineageEntries } from '../shared/lineage.js';
-import { createLineageEntry } from '../csl/value-objects/LineageEntry.js';
+import { addLineageEntries } from '../lineage.js';
+import { createLineageEntry } from '../../csl/value-objects/LineageEntry.js';
 export function envelope(islResult, secretKey) {
     const startTime = Date.now();
     try {
-        // 1. Validar input
         if (!islResult?.segments?.length) {
             throw new EnvelopeError('ISLResult must contain at least one segment');
         }
         if (!secretKey || secretKey.length === 0) {
             throw new EnvelopeError('Secret key is required for envelope generation');
         }
-        // 2. Generar metadata de seguridad
         const timestamp = Date.now();
         const nonce = createNonce();
         const metadata = createMetadata(timestamp, nonce);
-        // 3. Preparar payload semántico (contenido procesado por ISL)
-        // El payload puede ser cualquier estructura que represente el contenido procesado
         const payload = {
             segments: islResult.segments.map((segment) => ({
                 id: segment.id,
@@ -30,22 +24,16 @@ export function envelope(islResult, secretKey) {
                 sanitizationLevel: segment.sanitizationLevel,
             })),
         };
-        // 4. Generar firma criptográfica HMAC-SHA256
-        // Nota: La serialización del contenido para firma debe hacerse en el SDK
-        // El core solo define que se debe firmar el payload + metadata
-        // Por ahora, serializamos de forma básica para mantener funcionalidad
         const algorithm = 'HMAC-SHA256';
         const signableContent = JSON.stringify({
             payload,
             metadata,
-            algorithm
+            algorithm,
         });
         const signatureVO = createSignature(signableContent, secretKey);
-        // 5. Actualizar linaje con entrada CPE
-        const cpeLineageEntry = createLineageEntry('CPE', timestamp);
-        const updatedLineage = addLineageEntries(islResult.lineage, [cpeLineageEntry]);
-        // 9. Construir envelope según especificación
-        const envelope = {
+        const envelopeLineageEntry = createLineageEntry('CPE', timestamp);
+        const updatedLineage = addLineageEntries(islResult.lineage, [envelopeLineageEntry]);
+        const envelopeResult = {
             payload,
             metadata,
             signature: {
@@ -55,10 +43,10 @@ export function envelope(islResult, secretKey) {
             lineage: updatedLineage,
         };
         const processingTime = Date.now() - startTime;
-        return {
-            envelope,
+        return Object.freeze({
+            envelope: envelopeResult,
             processingTimeMs: processingTime,
-        };
+        });
     }
     catch (error) {
         if (error instanceof EnvelopeError) {

package/dist/shared/envelope/envelope.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"envelope.js","sourceRoot":"","sources":["../../../src/shared/envelope/envelope.ts"],"names":[],"mappings":"AAqBA,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAA;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,6BAA6B,CAAA;AAC5D,OAAO,EAAE,eAAe,EAAE,MAAM,8BAA8B,CAAA;AAC9D,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAA;AACrD,OAAO,EAAE,iBAAiB,EAAE,MAAM,eAAe,CAAA;AACjD,OAAO,EAAE,kBAAkB,EAAE,MAAM,yCAAyC,CAAA;AAE5E,MAAM,UAAU,QAAQ,CAAC,SAAoB,EAAE,SAAiB;IAC9D,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;IAE5B,IAAI,CAAC;QACH,IAAI,CAAC,SAAS,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;YACjC,MAAM,IAAI,aAAa,CAAC,6CAA6C,CAAC,CAAA;QACxE,CAAC;QAED,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzC,MAAM,IAAI,aAAa,CAAC,gDAAgD,CAAC,CAAA;QAC3E,CAAC;QAED,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAA;QAC5B,MAAM,KAAK,GAAG,WAAW,EAAE,CAAA;QAC3B,MAAM,QAAQ,GAAG,cAAc,CAAC,SAAS,EAAE,KAAK,CAAC,CAAA;QAEjD,MAAM,OAAO,GAAY;YACvB,QAAQ,EAAE,SAAS,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;gBAC7C,EAAE,EAAE,OAAO,CAAC,EAAE;gBACd,OAAO,EAAE,OAAO,CAAC,gBAAgB;gBACjC,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,KAAK;gBAC1B,iBAAiB,EAAE,OAAO,CAAC,iBAAiB;aAC7C,CAAC,CAAC;SACJ,CAAA;QAED,MAAM,SAAS,GAAG,aAAa,CAAA;QAC/B,MAAM,eAAe,GAAG,IAAI,CAAC,SAAS,CAAC;YACrC,OAAO;YACP,QAAQ;YACR,SAAS;SACV,CAAC,CAAA;QACF,MAAM,WAAW,GAAG,eAAe,CAAC,eAAe,EAAE,SAAS,CAAC,CAAA;QAE/D,MAAM,oBAAoB,GAAG,kBAAkB,CAAC,KAAK,EAAE,SAAS,CAAC,CAAA;QACjE,MAAM,cAAc,GAAG,iBAAiB,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,oBAAoB,CAAC,CAAC,CAAA;QAEnF,MAAM,cAAc,GAAe;YACjC,OAAO;YACP,QAAQ;YACR,SAAS,EAAE;gBACT,KAAK,EAAE,WAAW,CAAC,KAAK;gBACxB,SAAS,EAAE,WAAW,CAAC,SAAS;aACjC;YACD,OAAO,EAAE,cAAc;SACxB,CAAA;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAA;QAE7C,OAAO,MAAM,CAAC,MAAM,CAAC;YACnB,QAAQ,EAAE,cAAc;YACxB,gBAAgB,EAAE,cAAc;SACjC,CAAC,CAAA;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,aAAa,EAAE,CAAC;YACnC,MAAM,KAAK,CAAA;QACb,CAAC;QACD,MAAM,IAAI,aAAa,CACrB,gCAAgC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,EAC1F,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAC3C,CAAA;IACH,CAAC;AACH,CAAC"}

package/dist/{cpe → shared/envelope}/exceptions/EnvelopeError.d.ts

@@ -1,5 +1,5 @@
 /**
- * EnvelopeError - Error al generar el envelope criptográfico
+ * EnvelopeError – raised when envelope generation or validation fails.
  */
 export declare class EnvelopeError extends Error {
     readonly cause?: Error | undefined;

package/dist/shared/envelope/exceptions/EnvelopeError.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"EnvelopeError.d.ts","sourceRoot":"","sources":["../../../../src/shared/envelope/exceptions/EnvelopeError.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,qBAAa,aAAc,SAAQ,KAAK;aACO,KAAK,CAAC,EAAE,KAAK;gBAA9C,OAAO,EAAE,MAAM,EAAkB,KAAK,CAAC,EAAE,KAAK,YAAA;CAK3D"}

package/dist/{cpe → shared/envelope}/exceptions/EnvelopeError.js

@@ -1,5 +1,5 @@
 /**
- * EnvelopeError - Error al generar el envelope criptográfico
+ * EnvelopeError – raised when envelope generation or validation fails.
  */
 export class EnvelopeError extends Error {
     cause;

package/dist/shared/envelope/exceptions/EnvelopeError.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"EnvelopeError.js","sourceRoot":"","sources":["../../../../src/shared/envelope/exceptions/EnvelopeError.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,OAAO,aAAc,SAAQ,KAAK;IACO;IAA7C,YAAY,OAAe,EAAkB,KAAa;QACxD,KAAK,CAAC,OAAO,CAAC,CAAA;QAD6B,UAAK,GAAL,KAAK,CAAQ;QAExD,IAAI,CAAC,IAAI,GAAG,eAAe,CAAA;QAC3B,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,aAAa,CAAC,SAAS,CAAC,CAAA;IACtD,CAAC;CACF"}

package/dist/shared/envelope/exceptions/index.d.ts

@@ -0,0 +1,2 @@
+export { EnvelopeError } from './EnvelopeError.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/shared/envelope/exceptions/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/shared/envelope/exceptions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA"}

package/dist/shared/envelope/exceptions/index.js

@@ -0,0 +1,2 @@
+export { EnvelopeError } from './EnvelopeError.js';
+//# sourceMappingURL=index.js.map

package/dist/shared/envelope/exceptions/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/shared/envelope/exceptions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAA"}

package/dist/shared/envelope/index.d.ts

@@ -0,0 +1,18 @@
+/**
+ * Envelope (transversal) – integrity and anti-replay for pipeline results
+ *
+ * @remarks
+ * CPE is a cross-cutting concern, not a layer. It wraps the output of the pipeline
+ * (e.g. ISL or AAL result) with metadata, nonce, and HMAC-SHA256 signature.
+ * Use `envelope(islResult, secretKey)` to produce a CPEResult; serialization
+ * and verification are the responsibility of the SDK.
+ */
+export { envelope } from './envelope.js';
+export { createNonce, isValidNonce, equalsNonce } from './value-objects/Nonce.js';
+export type { Nonce } from './value-objects/Nonce.js';
+export { createMetadata, isValidMetadata, CURRENT_PROTOCOL_VERSION } from './value-objects/Metadata.js';
+export { createSignature, verifySignature, isValidSignatureFormat } from './value-objects/Signature.js';
+export type { SignatureVO } from './value-objects/Signature.js';
+export { EnvelopeError } from './exceptions/index.js';
+export type { ProtocolVersion, Timestamp, NonceValue, SignatureAlgorithm, Signature, CPEMetadata, CPEEvelope, CPEResult, } from './types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/shared/envelope/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/shared/envelope/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAA;AACxC,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAA;AACjF,YAAY,EAAE,KAAK,EAAE,MAAM,0BAA0B,CAAA;AACrD,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,wBAAwB,EAAE,MAAM,6BAA6B,CAAA;AACvG,OAAO,EAAE,eAAe,EAAE,eAAe,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAA;AACvG,YAAY,EAAE,WAAW,EAAE,MAAM,8BAA8B,CAAA;AAC/D,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAA;AACrD,YAAY,EACV,eAAe,EACf,SAAS,EACT,UAAU,EACV,kBAAkB,EAClB,SAAS,EACT,WAAW,EACX,UAAU,EACV,SAAS,GACV,MAAM,YAAY,CAAA"}

package/dist/shared/envelope/index.js

@@ -0,0 +1,15 @@
+/**
+ * Envelope (transversal) – integrity and anti-replay for pipeline results
+ *
+ * @remarks
+ * CPE is a cross-cutting concern, not a layer. It wraps the output of the pipeline
+ * (e.g. ISL or AAL result) with metadata, nonce, and HMAC-SHA256 signature.
+ * Use `envelope(islResult, secretKey)` to produce a CPEResult; serialization
+ * and verification are the responsibility of the SDK.
+ */
+export { envelope } from './envelope.js';
+export { createNonce, isValidNonce, equalsNonce } from './value-objects/Nonce.js';
+export { createMetadata, isValidMetadata, CURRENT_PROTOCOL_VERSION } from './value-objects/Metadata.js';
+export { createSignature, verifySignature, isValidSignatureFormat } from './value-objects/Signature.js';
+export { EnvelopeError } from './exceptions/index.js';
+//# sourceMappingURL=index.js.map