@aiassesstech/fleet-bus 0.1.0

package/dist/audit-memory.d.ts

@@ -0,0 +1,26 @@
+/**
+ * @aiassesstech/fleet-bus — MemoryWriter Audit Adapter
+ *
+ * Conditional adapter that writes audit events as memory files when
+ * the MemoryWriter from SPEC-FLEET-MEMORY-INFRASTRUCTURE is available.
+ *
+ * This is a single `if (memoryWriter)` branch — no refactoring required
+ * to swap from JSONL-only to JSONL+memory. The JSONL remains the
+ * canonical append-only log; memory files are a searchable projection.
+ */
+import type { AuditEvent } from './types.js';
+export interface MemoryWriterLike {
+    write(agentId: string, subdir: string, filename: string, content: string): Promise<void> | void;
+}
+/**
+ * Format an AuditEvent as a Markdown memory file with YAML frontmatter.
+ * This format is searchable via OpenClaw's `memory_search` tool.
+ */
+export declare function formatAuditAsMemoryFile(event: AuditEvent): string;
+/**
+ * Write an audit event to memory if a MemoryWriter is available.
+ *
+ * Returns true if written, false if no writer was provided.
+ */
+export declare function writeAuditToMemory(event: AuditEvent, writer: MemoryWriterLike | null | undefined): Promise<boolean>;
+//# sourceMappingURL=audit-memory.d.ts.map

package/dist/audit-memory.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-memory.d.ts","sourceRoot":"","sources":["../src/audit-memory.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAE7C,MAAM,WAAW,gBAAgB;IAC/B,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;CACjG;AAED;;;GAGG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,UAAU,GAAG,MAAM,CA6CjE;AAED;;;;GAIG;AACH,wBAAsB,kBAAkB,CACtC,KAAK,EAAE,UAAU,EACjB,MAAM,EAAE,gBAAgB,GAAG,IAAI,GAAG,SAAS,GAC1C,OAAO,CAAC,OAAO,CAAC,CAalB"}

package/dist/audit-memory.js

@@ -0,0 +1,75 @@
+/**
+ * @aiassesstech/fleet-bus — MemoryWriter Audit Adapter
+ *
+ * Conditional adapter that writes audit events as memory files when
+ * the MemoryWriter from SPEC-FLEET-MEMORY-INFRASTRUCTURE is available.
+ *
+ * This is a single `if (memoryWriter)` branch — no refactoring required
+ * to swap from JSONL-only to JSONL+memory. The JSONL remains the
+ * canonical append-only log; memory files are a searchable projection.
+ */
+/**
+ * Format an AuditEvent as a Markdown memory file with YAML frontmatter.
+ * This format is searchable via OpenClaw's `memory_search` tool.
+ */
+export function formatAuditAsMemoryFile(event) {
+    const from = event.message?.from ?? event.agentId ?? 'fleet-bus';
+    const to = event.message?.to ?? 'unknown';
+    const method = event.message?.method ?? event.eventType;
+    const correlationId = event.message?.correlationId ?? 'none';
+    const riskLevel = event.outcome === 'rejected' || event.outcome === 'error'
+        ? 'medium'
+        : 'low';
+    const lines = [
+        '---',
+        `tags: [fleet-comms, audit, ${method.replace('/', '-')}]`,
+        'agent: fleet-bus',
+        'type: audit-event',
+        `date: ${event.timestamp}`,
+        `source: ${from}`,
+        `target: ${to}`,
+        `method: ${method}`,
+        `outcome: ${event.outcome}`,
+        `risk: ${riskLevel}`,
+        '---',
+        '',
+        `# Fleet Communication Audit: ${method}`,
+        '',
+        `**From**: ${from} → **To**: ${to}  `,
+        `**Method**: \`${method}\`  `,
+        `**Correlation**: \`${correlationId}\`  `,
+        `**Outcome**: ${capitalize(event.outcome)}${event.durationMs != null ? ` (${event.durationMs}ms)` : ''}`,
+        '',
+    ];
+    if (event.routingDecision) {
+        lines.push(`**Routing**: ${event.routingDecision}`, '');
+    }
+    if (event.details) {
+        lines.push(event.details, '');
+    }
+    lines.push(`**Hash Chain**: \`prev:${event.previousHash.slice(0, 12)}... → this:${event.eventHash.slice(0, 12)}...\``);
+    return lines.join('\n');
+}
+/**
+ * Write an audit event to memory if a MemoryWriter is available.
+ *
+ * Returns true if written, false if no writer was provided.
+ */
+export async function writeAuditToMemory(event, writer) {
+    if (!writer)
+        return false;
+    try {
+        const date = event.timestamp.slice(0, 10);
+        const filename = `${date}-${event.eventId}.md`;
+        const content = formatAuditAsMemoryFile(event);
+        await writer.write('fleet-bus', 'audit', filename, content);
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+function capitalize(s) {
+    return s.charAt(0).toUpperCase() + s.slice(1);
+}
+//# sourceMappingURL=audit-memory.js.map

package/dist/audit-memory.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-memory.js","sourceRoot":"","sources":["../src/audit-memory.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAQH;;;GAGG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAiB;IACvD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,EAAE,IAAI,IAAI,KAAK,CAAC,OAAO,IAAI,WAAW,CAAC;IACjE,MAAM,EAAE,GAAG,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,SAAS,CAAC;IAC1C,MAAM,MAAM,GAAG,KAAK,CAAC,OAAO,EAAE,MAAM,IAAI,KAAK,CAAC,SAAS,CAAC;IACxD,MAAM,aAAa,GAAG,KAAK,CAAC,OAAO,EAAE,aAAa,IAAI,MAAM,CAAC;IAE7D,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,KAAK,UAAU,IAAI,KAAK,CAAC,OAAO,KAAK,OAAO;QACzE,CAAC,CAAC,QAAQ;QACV,CAAC,CAAC,KAAK,CAAC;IAEV,MAAM,KAAK,GAAG;QACZ,KAAK;QACL,8BAA8B,MAAM,CAAC,OAAO,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG;QACzD,kBAAkB;QAClB,mBAAmB;QACnB,SAAS,KAAK,CAAC,SAAS,EAAE;QAC1B,WAAW,IAAI,EAAE;QACjB,WAAW,EAAE,EAAE;QACf,WAAW,MAAM,EAAE;QACnB,YAAY,KAAK,CAAC,OAAO,EAAE;QAC3B,SAAS,SAAS,EAAE;QACpB,KAAK;QACL,EAAE;QACF,gCAAgC,MAAM,EAAE;QACxC,EAAE;QACF,aAAa,IAAI,cAAc,EAAE,IAAI;QACrC,iBAAiB,MAAM,MAAM;QAC7B,sBAAsB,aAAa,MAAM;QACzC,gBAAgB,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC,UAAU,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,KAAK,CAAC,UAAU,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE;QACxG,EAAE;KACH,CAAC;IAEF,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;QAC1B,KAAK,CAAC,IAAI,CAAC,gBAAgB,KAAK,CAAC,eAAe,EAAE,EAAE,EAAE,CAAC,CAAC;IAC1D,CAAC;IAED,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QAClB,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IAChC,CAAC;IAED,KAAK,CAAC,IAAI,CACR,0BAA0B,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,cAAc,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAC3G,CAAC;IAEF,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,KAAiB,EACjB,MAA2C;IAE3C,IAAI,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IAE1B,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAC1C,MAAM,QAAQ,GAAG,GAAG,IAAI,IAAI,KAAK,CAAC,OAAO,KAAK,CAAC;QAC/C,MAAM,OAAO,GAAG,uBAAuB,CAAC,KAAK,CAAC,CAAC;QAE/C,MAAM,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC5D,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,SAAS,UAAU,CAAC,CAAS;IAC3B,OAAO,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AAChD,CAAC"}

package/dist/audit.d.ts

@@ -0,0 +1,93 @@
+/**
+ * @aiassesstech/fleet-bus — Audit Trail Writer
+ *
+ * Tamper-evident audit trail using SHA-256 hash chain + JSONL persistence.
+ * Each AuditEvent includes:
+ *   - eventHash: SHA-256 of (previousHash + eventId + timestamp + eventType + outcome)
+ *   - previousHash: the eventHash of the preceding event
+ *
+ * This creates an append-only chain where any retroactive modification
+ * breaks the hash sequence — visible to any verifier.
+ *
+ * Storage: one JSONL file per agent at {auditDir}/{agentId}.audit.jsonl
+ * Chain state: {auditDir}/{agentId}.chain.json (persists previousHash + eventCount)
+ */
+import type { AuditEvent, AuditEventType, FleetAgentId, FleetMessage } from './types.js';
+export interface ChainState {
+    previousHash: string;
+    eventCount: number;
+    lastTimestamp?: string;
+}
+export interface AuditWriterConfig {
+    agentId: FleetAgentId;
+    auditDir?: string;
+    logPrefix?: string;
+}
+/**
+ * Compute the SHA-256 hash for an audit event.
+ *
+ * The hash covers the chain-critical fields: previous hash, event ID,
+ * timestamp, event type, and outcome. This ensures the chain is
+ * sensitive to any modification of these fields.
+ */
+export declare function computeEventHash(previousHash: string, eventId: string, timestamp: string, eventType: AuditEventType, outcome: string): string;
+/**
+ * Verify that a sequence of AuditEvents has a valid hash chain.
+ *
+ * Returns { valid: true } if the chain is intact, or
+ * { valid: false, brokenAt, reason } if a break is detected.
+ */
+export declare function verifyChain(events: AuditEvent[]): {
+    valid: true;
+} | {
+    valid: false;
+    brokenAt: number;
+    reason: string;
+};
+export declare class AuditTrailWriter {
+    private readonly agentId;
+    private readonly auditDir;
+    private readonly logPrefix;
+    private chainState;
+    constructor(config: AuditWriterConfig);
+    /**
+     * Record an audit event. Computes the hash, appends to JSONL, persists chain state.
+     */
+    record(params: {
+        eventId: string;
+        eventType: AuditEventType;
+        outcome: AuditEvent['outcome'];
+        message?: FleetMessage;
+        routingDecision?: string;
+        durationMs?: number;
+        agentId?: FleetAgentId;
+        details?: string;
+    }): AuditEvent;
+    /**
+     * Get current chain state (for diagnostics / health checks).
+     */
+    getChainState(): Readonly<ChainState>;
+    /**
+     * Read all events from the JSONL file and verify chain integrity.
+     */
+    readAndVerify(): {
+        events: AuditEvent[];
+        verification: ReturnType<typeof verifyChain>;
+    };
+    /**
+     * Read all events from the JSONL file.
+     */
+    readAllEvents(): AuditEvent[];
+    /**
+     * Get the JSONL file path for this agent.
+     */
+    jsonlPath(): string;
+    /**
+     * Get the chain state file path for this agent.
+     */
+    chainStatePath(): string;
+    private appendToJSONL;
+    private loadChainState;
+    private saveChainState;
+}
+//# sourceMappingURL=audit.d.ts.map

package/dist/audit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../src/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAKH,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AASzF,MAAM,WAAW,UAAU;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,YAAY,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAC9B,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE,MAAM,EACf,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,cAAc,EACzB,OAAO,EAAE,MAAM,GACd,MAAM,CAGR;AAED;;;;;GAKG;AACH,wBAAgB,WAAW,CACzB,MAAM,EAAE,UAAU,EAAE,GACnB;IAAE,KAAK,EAAE,IAAI,CAAA;CAAE,GAAG;IAAE,KAAK,EAAE,KAAK,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAoCtE;AAED,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAe;IACvC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,UAAU,CAAa;gBAEnB,MAAM,EAAE,iBAAiB;IAOrC;;OAEG;IACH,MAAM,CAAC,MAAM,EAAE;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,SAAS,EAAE,cAAc,CAAC;QAC1B,OAAO,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC;QAC/B,OAAO,CAAC,EAAE,YAAY,CAAC;QACvB,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,OAAO,CAAC,EAAE,YAAY,CAAC;QACvB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GAAG,UAAU;IAsCd;;OAEG;IACH,aAAa,IAAI,QAAQ,CAAC,UAAU,CAAC;IAIrC;;OAEG;IACH,aAAa,IAAI;QACf,MAAM,EAAE,UAAU,EAAE,CAAC;QACrB,YAAY,EAAE,UAAU,CAAC,OAAO,WAAW,CAAC,CAAC;KAC9C;IAMD;;OAEG;IACH,aAAa,IAAI,UAAU,EAAE;IAkB7B;;OAEG;IACH,SAAS,IAAI,MAAM;IAInB;;OAEG;IACH,cAAc,IAAI,MAAM;IAQxB,OAAO,CAAC,aAAa;IAarB,OAAO,CAAC,cAAc;IAiBtB,OAAO,CAAC,cAAc;CAevB"}

package/dist/audit.js

@@ -0,0 +1,187 @@
+/**
+ * @aiassesstech/fleet-bus — Audit Trail Writer
+ *
+ * Tamper-evident audit trail using SHA-256 hash chain + JSONL persistence.
+ * Each AuditEvent includes:
+ *   - eventHash: SHA-256 of (previousHash + eventId + timestamp + eventType + outcome)
+ *   - previousHash: the eventHash of the preceding event
+ *
+ * This creates an append-only chain where any retroactive modification
+ * breaks the hash sequence — visible to any verifier.
+ *
+ * Storage: one JSONL file per agent at {auditDir}/{agentId}.audit.jsonl
+ * Chain state: {auditDir}/{agentId}.chain.json (persists previousHash + eventCount)
+ */
+import * as crypto from 'node:crypto';
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+const GENESIS_HASH = '0'.repeat(64);
+const DEFAULT_AUDIT_DIR = path.join(process.env.HOME || '~', '.openclaw', 'workspace', 'fleet-bus', 'audit');
+/**
+ * Compute the SHA-256 hash for an audit event.
+ *
+ * The hash covers the chain-critical fields: previous hash, event ID,
+ * timestamp, event type, and outcome. This ensures the chain is
+ * sensitive to any modification of these fields.
+ */
+export function computeEventHash(previousHash, eventId, timestamp, eventType, outcome) {
+    const payload = `${previousHash}|${eventId}|${timestamp}|${eventType}|${outcome}`;
+    return crypto.createHash('sha256').update(payload, 'utf-8').digest('hex');
+}
+/**
+ * Verify that a sequence of AuditEvents has a valid hash chain.
+ *
+ * Returns { valid: true } if the chain is intact, or
+ * { valid: false, brokenAt, reason } if a break is detected.
+ */
+export function verifyChain(events) {
+    if (events.length === 0)
+        return { valid: true };
+    for (let i = 0; i < events.length; i++) {
+        const event = events[i];
+        const expectedPreviousHash = i === 0
+            ? GENESIS_HASH
+            : events[i - 1].eventHash;
+        if (event.previousHash !== expectedPreviousHash) {
+            return {
+                valid: false,
+                brokenAt: i,
+                reason: `previousHash mismatch at event ${i}: expected ${expectedPreviousHash.slice(0, 12)}..., got ${event.previousHash.slice(0, 12)}...`,
+            };
+        }
+        const recomputedHash = computeEventHash(event.previousHash, event.eventId, event.timestamp, event.eventType, event.outcome);
+        if (event.eventHash !== recomputedHash) {
+            return {
+                valid: false,
+                brokenAt: i,
+                reason: `eventHash mismatch at event ${i}: recomputed ${recomputedHash.slice(0, 12)}..., stored ${event.eventHash.slice(0, 12)}...`,
+            };
+        }
+    }
+    return { valid: true };
+}
+export class AuditTrailWriter {
+    agentId;
+    auditDir;
+    logPrefix;
+    chainState;
+    constructor(config) {
+        this.agentId = config.agentId;
+        this.auditDir = config.auditDir ?? DEFAULT_AUDIT_DIR;
+        this.logPrefix = config.logPrefix ?? `[fleet-bus:audit:${config.agentId}]`;
+        this.chainState = this.loadChainState();
+    }
+    /**
+     * Record an audit event. Computes the hash, appends to JSONL, persists chain state.
+     */
+    record(params) {
+        const timestamp = new Date().toISOString();
+        const previousHash = this.chainState.previousHash;
+        const eventHash = computeEventHash(previousHash, params.eventId, timestamp, params.eventType, params.outcome);
+        const event = {
+            eventId: params.eventId,
+            timestamp,
+            previousHash,
+            eventHash,
+            eventType: params.eventType,
+            outcome: params.outcome,
+            message: params.message,
+            routingDecision: params.routingDecision,
+            durationMs: params.durationMs,
+            agentId: params.agentId ?? this.agentId,
+            details: params.details,
+        };
+        this.appendToJSONL(event);
+        this.chainState = {
+            previousHash: eventHash,
+            eventCount: this.chainState.eventCount + 1,
+            lastTimestamp: timestamp,
+        };
+        this.saveChainState();
+        return event;
+    }
+    /**
+     * Get current chain state (for diagnostics / health checks).
+     */
+    getChainState() {
+        return { ...this.chainState };
+    }
+    /**
+     * Read all events from the JSONL file and verify chain integrity.
+     */
+    readAndVerify() {
+        const events = this.readAllEvents();
+        const verification = verifyChain(events);
+        return { events, verification };
+    }
+    /**
+     * Read all events from the JSONL file.
+     */
+    readAllEvents() {
+        const filePath = this.jsonlPath();
+        if (!fs.existsSync(filePath))
+            return [];
+        try {
+            const content = fs.readFileSync(filePath, 'utf-8').trim();
+            if (!content)
+                return [];
+            return content
+                .split('\n')
+                .filter((line) => line.trim())
+                .map((line) => JSON.parse(line));
+        }
+        catch {
+            console.warn(`${this.logPrefix} failed to read audit JSONL`);
+            return [];
+        }
+    }
+    /**
+     * Get the JSONL file path for this agent.
+     */
+    jsonlPath() {
+        return path.join(this.auditDir, `${this.agentId}.audit.jsonl`);
+    }
+    /**
+     * Get the chain state file path for this agent.
+     */
+    chainStatePath() {
+        return path.join(this.auditDir, `${this.agentId}.chain.json`);
+    }
+    // ================================================================
+    // Private — Persistence
+    // ================================================================
+    appendToJSONL(event) {
+        try {
+            fs.mkdirSync(this.auditDir, { recursive: true });
+            const line = JSON.stringify(event) + '\n';
+            fs.appendFileSync(this.jsonlPath(), line, 'utf-8');
+        }
+        catch (err) {
+            console.warn(`${this.logPrefix} failed to append audit event:`, err instanceof Error ? err.message : String(err));
+        }
+    }
+    loadChainState() {
+        const statePath = this.chainStatePath();
+        try {
+            if (fs.existsSync(statePath)) {
+                const data = JSON.parse(fs.readFileSync(statePath, 'utf-8'));
+                console.log(`${this.logPrefix} resumed chain — ${data.eventCount} events, last hash ${data.previousHash.slice(0, 12)}...`);
+                return data;
+            }
+        }
+        catch {
+            console.warn(`${this.logPrefix} chain state corrupted — starting fresh chain`);
+        }
+        return { previousHash: GENESIS_HASH, eventCount: 0 };
+    }
+    saveChainState() {
+        try {
+            fs.mkdirSync(this.auditDir, { recursive: true });
+            fs.writeFileSync(this.chainStatePath(), JSON.stringify(this.chainState, null, 2), 'utf-8');
+        }
+        catch (err) {
+            console.warn(`${this.logPrefix} failed to save chain state:`, err instanceof Error ? err.message : String(err));
+        }
+    }
+}
+//# sourceMappingURL=audit.js.map

package/dist/audit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../src/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,MAAM,MAAM,aAAa,CAAC;AACtC,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAGlC,MAAM,YAAY,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;AAEpC,MAAM,iBAAiB,GAAG,IAAI,CAAC,IAAI,CACjC,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,GAAG,EACvB,WAAW,EAAE,WAAW,EAAE,WAAW,EAAE,OAAO,CAC/C,CAAC;AAcF;;;;;;GAMG;AACH,MAAM,UAAU,gBAAgB,CAC9B,YAAoB,EACpB,OAAe,EACf,SAAiB,EACjB,SAAyB,EACzB,OAAe;IAEf,MAAM,OAAO,GAAG,GAAG,YAAY,IAAI,OAAO,IAAI,SAAS,IAAI,SAAS,IAAI,OAAO,EAAE,CAAC;IAClF,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAC5E,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,WAAW,CACzB,MAAoB;IAEpB,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;IAEhD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACvC,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAExB,MAAM,oBAAoB,GAAG,CAAC,KAAK,CAAC;YAClC,CAAC,CAAC,YAAY;YACd,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;QAE5B,IAAI,KAAK,CAAC,YAAY,KAAK,oBAAoB,EAAE,CAAC;YAChD,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,QAAQ,EAAE,CAAC;gBACX,MAAM,EAAE,kCAAkC,CAAC,cAAc,oBAAoB,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,YAAY,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK;aAC3I,CAAC;QACJ,CAAC;QAED,MAAM,cAAc,GAAG,gBAAgB,CACrC,KAAK,CAAC,YAAY,EAClB,KAAK,CAAC,OAAO,EACb,KAAK,CAAC,SAAS,EACf,KAAK,CAAC,SAAS,EACf,KAAK,CAAC,OAAO,CACd,CAAC;QAEF,IAAI,KAAK,CAAC,SAAS,KAAK,cAAc,EAAE,CAAC;YACvC,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,QAAQ,EAAE,CAAC;gBACX,MAAM,EAAE,+BAA+B,CAAC,gBAAgB,cAAc,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,eAAe,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK;aACpI,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;AACzB,CAAC;AAED,MAAM,OAAO,gBAAgB;IACV,OAAO,CAAe;IACtB,QAAQ,CAAS;IACjB,SAAS,CAAS;IAC3B,UAAU,CAAa;IAE/B,YAAY,MAAyB;QACnC,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;QAC9B,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,iBAAiB,CAAC;QACrD,IAAI,CAAC,SAAS,GAAG,MAAM,CAAC,SAAS,IAAI,oBAAoB,MAAM,CAAC,OAAO,GAAG,CAAC;QAC3E,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,MASN;QACC,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC3C,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;QAElD,MAAM,SAAS,GAAG,gBAAgB,CAChC,YAAY,EACZ,MAAM,CAAC,OAAO,EACd,SAAS,EACT,MAAM,CAAC,SAAS,EAChB,MAAM,CAAC,OAAO,CACf,CAAC;QAEF,MAAM,KAAK,GAAe;YACxB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,SAAS;YACT,YAAY;YACZ,SAAS;YACT,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,eAAe,EAAE,MAAM,CAAC,eAAe;YACvC,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO;YACvC,OAAO,EAAE,MAAM,CAAC,OAAO;SACxB,CAAC;QAEF,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;QAE1B,IAAI,CAAC,UAAU,GAAG;YAChB,YAAY,EAAE,SAAS;YACvB,UAAU,EAAE,IAAI,CAAC,UAAU,CAAC,UAAU,GAAG,CAAC;YAC1C,aAAa,EAAE,SAAS;SACzB,CAAC;QACF,IAAI,CAAC,cAAc,EAAE,CAAC;QAEtB,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACH,aAAa;QACX,OAAO,EAAE,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;IAChC,CAAC;IAED;;OAEG;IACH,aAAa;QAIX,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;QACpC,MAAM,YAAY,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;QACzC,OAAO,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC;IAClC,CAAC;IAED;;OAEG;IACH,aAAa;QACX,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;QAClC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,OAAO,EAAE,CAAC;QAExC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;YAC1D,IAAI,CAAC,OAAO;gBAAE,OAAO,EAAE,CAAC;YAExB,OAAO,OAAO;iBACX,KAAK,CAAC,IAAI,CAAC;iBACX,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;iBAC7B,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAe,CAAC,CAAC;QACnD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,SAAS,6BAA6B,CAAC,CAAC;YAC7D,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,SAAS;QACP,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC,OAAO,cAAc,CAAC,CAAC;IACjE,CAAC;IAED;;OAEG;IACH,cAAc;QACZ,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC,OAAO,aAAa,CAAC,CAAC;IAChE,CAAC;IAED,mEAAmE;IACnE,wBAAwB;IACxB,mEAAmE;IAE3D,aAAa,CAAC,KAAiB;QACrC,IAAI,CAAC;YACH,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YACjD,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC;YAC1C,EAAE,CAAC,cAAc,CAAC,IAAI,CAAC,SAAS,EAAE,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACrD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CACV,GAAG,IAAI,CAAC,SAAS,gCAAgC,EACjD,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CACjD,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,cAAc;QACpB,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;QACxC,IAAI,CAAC;YACH,IAAI,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;gBAC7B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAe,CAAC;gBAC3E,OAAO,CAAC,GAAG,CACT,GAAG,IAAI,CAAC,SAAS,oBAAoB,IAAI,CAAC,UAAU,sBAAsB,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAC9G,CAAC;gBACF,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,SAAS,+CAA+C,CAAC,CAAC;QACjF,CAAC;QAED,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;IACvD,CAAC;IAEO,cAAc;QACpB,IAAI,CAAC;YACH,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;YACjD,EAAE,CAAC,aAAa,CACd,IAAI,CAAC,cAAc,EAAE,EACrB,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,EACxC,OAAO,CACR,CAAC;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CACV,GAAG,IAAI,CAAC,SAAS,8BAA8B,EAC/C,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CACjD,CAAC;QACJ,CAAC;IACH,CAAC;CACF"}

package/dist/bus.d.ts

@@ -0,0 +1,121 @@
+/**
+ * @aiassesstech/fleet-bus — FleetBus Core
+ *
+ * Central class for fleet communication infrastructure.
+ * Phase 0a: hook registration, in-memory event ring buffer, Agent Card
+ * registry, routing rule validation.
+ * Phase 0b: SHA-256 hash chain audit trail with JSONL persistence.
+ *
+ * Designed for graceful degradation — if this fails to load, every agent
+ * continues to function exactly as before.
+ */
+import { AuditTrailWriter } from './audit.js';
+import { type MemoryWriterLike } from './audit-memory.js';
+import { AgentCardRegistry } from './cards.js';
+import type { AuditEvent, AuditEventType, FleetBusConfig, FleetEvent, FleetMessage, OpenClawPluginApi, RoutingDecision } from './types.js';
+export type ReceiveHandler = (raw: string) => void | Promise<void>;
+export declare class FleetBus {
+    private readonly config;
+    private readonly cardRegistry;
+    private readonly auditWriter;
+    private memoryWriter;
+    private readonly eventHistory;
+    private readonly receiveHandlers;
+    private readonly maxHistory;
+    private readonly logPrefix;
+    private running;
+    private constructor();
+    /**
+     * Create and initialize a FleetBus instance.
+     *
+     * Registers hooks via the OpenClaw plugin API and loads existing Agent Cards.
+     * Designed to be called inside a try/catch in each plugin's register() function.
+     */
+    static create(api: OpenClawPluginApi, config: FleetBusConfig): FleetBus;
+    /**
+     * Start the fleet bus. Logs initialization and records a startup event.
+     */
+    start(): void;
+    /**
+     * Stop the fleet bus.
+     */
+    stop(): void;
+    /**
+     * Check if the bus is running.
+     */
+    isRunning(): boolean;
+    /**
+     * Record an event into the in-memory ring buffer.
+     */
+    recordEvent(event: FleetEvent): void;
+    /**
+     * Get recent events, optionally filtered.
+     */
+    recentEvents(options?: {
+        type?: FleetEvent['type'];
+        limit?: number;
+    }): FleetEvent[];
+    /**
+     * Total events recorded (including those rotated out of the ring buffer).
+     */
+    eventCount(): number;
+    /**
+     * Validate a message against routing rules.
+     * Logs violations and produces an audit record for rejected messages.
+     */
+    validateRouting(message: FleetMessage): RoutingDecision;
+    /**
+     * Get an Agent Card by ID.
+     */
+    getCard(agentId: string): ReturnType<AgentCardRegistry['get']>;
+    /**
+     * Get all registered Agent Cards.
+     */
+    allCards(): ReturnType<AgentCardRegistry['all']>;
+    /**
+     * Get the card registry (for direct access in advanced scenarios).
+     */
+    getCardRegistry(): AgentCardRegistry;
+    /**
+     * Get the bus configuration.
+     */
+    getConfig(): FleetBusConfig;
+    /**
+     * Write an audit event to the hash chain + JSONL.
+     * Also writes to memory (via MemoryWriter) if one has been set.
+     */
+    audit(eventType: AuditEventType, outcome: AuditEvent['outcome'], options?: {
+        message?: FleetMessage;
+        routingDecision?: string;
+        durationMs?: number;
+        details?: string;
+    }): AuditEvent;
+    /**
+     * Get the audit trail writer (for direct access / diagnostics).
+     */
+    getAuditWriter(): AuditTrailWriter;
+    /**
+     * Read all audit events and verify chain integrity.
+     */
+    verifyAuditChain(): ReturnType<AuditTrailWriter['readAndVerify']>;
+    /**
+     * Set a MemoryWriter for audit trail persistence to OpenClaw memory.
+     * Call this when SPEC-FLEET-MEMORY-INFRASTRUCTURE is available.
+     */
+    setMemoryWriter(writer: MemoryWriterLike): void;
+    /**
+     * Register a handler for incoming fleet messages.
+     * Called by fleetReceive() — not intended for direct use.
+     */
+    registerReceiveHandler(handler: ReceiveHandler): void;
+    /**
+     * Unregister a receive handler.
+     */
+    unregisterReceiveHandler(handler: ReceiveHandler): void;
+    /**
+     * Dispatch a raw message string to all registered receive handlers.
+     * Called from the message_received hook when a fleet message arrives.
+     */
+    dispatchToReceivers(raw: string): Promise<void>;
+}
+//# sourceMappingURL=bus.d.ts.map

package/dist/bus.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"bus.d.ts","sourceRoot":"","sources":["../src/bus.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAC9C,OAAO,EAAsB,KAAK,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAC9E,OAAO,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAG/C,OAAO,KAAK,EACV,UAAU,EACV,cAAc,EACd,cAAc,EACd,UAAU,EACV,YAAY,EACZ,iBAAiB,EACjB,eAAe,EAChB,MAAM,YAAY,CAAC;AAUpB,MAAM,MAAM,cAAc,GAAG,CAAC,GAAG,EAAE,MAAM,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAEnE,qBAAa,QAAQ;IACnB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAiB;IACxC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAoB;IACjD,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAmB;IAC/C,OAAO,CAAC,YAAY,CAAiC;IACrD,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAoB;IACjD,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAkC;IAClE,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IACpC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,OAAO,CAAS;IAExB,OAAO;IAeP;;;;;OAKG;IACH,MAAM,CAAC,MAAM,CAAC,GAAG,EAAE,iBAAiB,EAAE,MAAM,EAAE,cAAc,GAAG,QAAQ;IAQvE;;OAEG;IACH,KAAK,IAAI,IAAI;IAmBb;;OAEG;IACH,IAAI,IAAI,IAAI;IAcZ;;OAEG;IACH,SAAS,IAAI,OAAO;IAQpB;;OAEG;IACH,WAAW,CAAC,KAAK,EAAE,UAAU,GAAG,IAAI;IAOpC;;OAEG;IACH,YAAY,CAAC,OAAO,CAAC,EAAE;QACrB,IAAI,CAAC,EAAE,UAAU,CAAC,MAAM,CAAC,CAAC;QAC1B,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,GAAG,UAAU,EAAE;IAWhB;;OAEG;IACH,UAAU,IAAI,MAAM;IAQpB;;;OAGG;IACH,eAAe,CAAC,OAAO,EAAE,YAAY,GAAG,eAAe;IAkCvD;;OAEG;IACH,OAAO,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC;IAI9D;;OAEG;IACH,QAAQ,IAAI,UAAU,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC;IAIhD;;OAEG;IACH,eAAe,IAAI,iBAAiB;IAIpC;;OAEG;IACH,SAAS,IAAI,cAAc;IAQ3B;;;OAGG;IACH,KAAK,CACH,SAAS,EAAE,cAAc,EACzB,OAAO,EAAE,UAAU,CAAC,SAAS,CAAC,EAC9B,OAAO,CAAC,EAAE;QACR,OAAO,CAAC,EAAE,YAAY,CAAC;QACvB,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GACA,UAAU;IAmBb;;OAEG;IACH,cAAc,IAAI,gBAAgB;IAIlC;;OAEG;IACH,gBAAgB,IAAI,UAAU,CAAC,gBAAgB,CAAC,eAAe,CAAC,CAAC;IAIjE;;;OAGG;IACH,eAAe,CAAC,MAAM,EAAE,gBAAgB,GAAG,IAAI;IAS/C;;;OAGG;IACH,sBAAsB,CAAC,OAAO,EAAE,cAAc,GAAG,IAAI;IAIrD;;OAEG;IACH,wBAAwB,CAAC,OAAO,EAAE,cAAc,GAAG,IAAI;IAIvD;;;OAGG;IACG,mBAAmB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAStD"}