@aitne/daemon 0.1.2 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (253) hide show
  1. package/LICENSE +21 -0
  2. package/dist/adapters/whatsapp-adapter.d.ts.map +1 -1
  3. package/dist/adapters/whatsapp-adapter.js +0 -1
  4. package/dist/adapters/whatsapp-adapter.js.map +1 -1
  5. package/dist/api/integration-route-gate.d.ts +15 -11
  6. package/dist/api/integration-route-gate.d.ts.map +1 -1
  7. package/dist/api/integration-route-gate.js +60 -23
  8. package/dist/api/integration-route-gate.js.map +1 -1
  9. package/dist/api/json-body.d.ts +22 -7
  10. package/dist/api/json-body.d.ts.map +1 -1
  11. package/dist/api/json-body.js +27 -8
  12. package/dist/api/json-body.js.map +1 -1
  13. package/dist/api/routes/agent.d.ts.map +1 -1
  14. package/dist/api/routes/agent.js +18 -0
  15. package/dist/api/routes/agent.js.map +1 -1
  16. package/dist/api/routes/backends.d.ts.map +1 -1
  17. package/dist/api/routes/backends.js +96 -1
  18. package/dist/api/routes/backends.js.map +1 -1
  19. package/dist/api/routes/books.js +1 -1
  20. package/dist/api/routes/books.js.map +1 -1
  21. package/dist/api/routes/context.d.ts.map +1 -1
  22. package/dist/api/routes/context.js +13 -1
  23. package/dist/api/routes/context.js.map +1 -1
  24. package/dist/api/routes/dashboard.d.ts.map +1 -1
  25. package/dist/api/routes/dashboard.js +75 -5
  26. package/dist/api/routes/dashboard.js.map +1 -1
  27. package/dist/api/routes/github.d.ts.map +1 -1
  28. package/dist/api/routes/github.js +38 -5
  29. package/dist/api/routes/github.js.map +1 -1
  30. package/dist/api/routes/integrations.d.ts +35 -6
  31. package/dist/api/routes/integrations.d.ts.map +1 -1
  32. package/dist/api/routes/integrations.js +191 -16
  33. package/dist/api/routes/integrations.js.map +1 -1
  34. package/dist/api/routes/mail.d.ts.map +1 -1
  35. package/dist/api/routes/mail.js +112 -46
  36. package/dist/api/routes/mail.js.map +1 -1
  37. package/dist/api/routes/observations.d.ts.map +1 -1
  38. package/dist/api/routes/observations.js +161 -8
  39. package/dist/api/routes/observations.js.map +1 -1
  40. package/dist/api/routes/setup-migrate.d.ts +9 -1
  41. package/dist/api/routes/setup-migrate.d.ts.map +1 -1
  42. package/dist/api/routes/setup-migrate.js +4 -2
  43. package/dist/api/routes/setup-migrate.js.map +1 -1
  44. package/dist/api/routes/skills.d.ts.map +1 -1
  45. package/dist/api/routes/skills.js +39 -1
  46. package/dist/api/routes/skills.js.map +1 -1
  47. package/dist/api/routes/voice.d.ts.map +1 -1
  48. package/dist/api/routes/voice.js +154 -14
  49. package/dist/api/routes/voice.js.map +1 -1
  50. package/dist/bootstrap/adapters.d.ts +109 -0
  51. package/dist/bootstrap/adapters.d.ts.map +1 -0
  52. package/dist/bootstrap/adapters.js +237 -0
  53. package/dist/bootstrap/adapters.js.map +1 -0
  54. package/dist/bootstrap/catchup.d.ts +23 -0
  55. package/dist/bootstrap/catchup.d.ts.map +1 -0
  56. package/dist/bootstrap/catchup.js +124 -0
  57. package/dist/bootstrap/catchup.js.map +1 -0
  58. package/dist/bootstrap/schedule-helpers.d.ts +18 -0
  59. package/dist/bootstrap/schedule-helpers.d.ts.map +1 -0
  60. package/dist/bootstrap/schedule-helpers.js +96 -0
  61. package/dist/bootstrap/schedule-helpers.js.map +1 -0
  62. package/dist/bootstrap/services.d.ts +60 -0
  63. package/dist/bootstrap/services.d.ts.map +1 -0
  64. package/dist/bootstrap/services.js +209 -0
  65. package/dist/bootstrap/services.js.map +1 -0
  66. package/dist/core/backends/backend-router.d.ts +23 -0
  67. package/dist/core/backends/backend-router.d.ts.map +1 -1
  68. package/dist/core/backends/backend-router.js +48 -3
  69. package/dist/core/backends/backend-router.js.map +1 -1
  70. package/dist/core/backends/claude-auth.d.ts +70 -0
  71. package/dist/core/backends/claude-auth.d.ts.map +1 -0
  72. package/dist/core/backends/claude-auth.js +198 -0
  73. package/dist/core/backends/claude-auth.js.map +1 -0
  74. package/dist/core/backends/claude-code-core.d.ts +47 -119
  75. package/dist/core/backends/claude-code-core.d.ts.map +1 -1
  76. package/dist/core/backends/claude-code-core.js +112 -1565
  77. package/dist/core/backends/claude-code-core.js.map +1 -1
  78. package/dist/core/backends/claude-delegated.d.ts +86 -0
  79. package/dist/core/backends/claude-delegated.d.ts.map +1 -0
  80. package/dist/core/backends/claude-delegated.js +801 -0
  81. package/dist/core/backends/claude-delegated.js.map +1 -0
  82. package/dist/core/backends/claude-errors.d.ts +39 -0
  83. package/dist/core/backends/claude-errors.d.ts.map +1 -0
  84. package/dist/core/backends/claude-errors.js +71 -0
  85. package/dist/core/backends/claude-errors.js.map +1 -0
  86. package/dist/core/backends/claude-probe.d.ts +103 -0
  87. package/dist/core/backends/claude-probe.d.ts.map +1 -0
  88. package/dist/core/backends/claude-probe.js +336 -0
  89. package/dist/core/backends/claude-probe.js.map +1 -0
  90. package/dist/core/backends/claude-tool-collection.d.ts +135 -0
  91. package/dist/core/backends/claude-tool-collection.d.ts.map +1 -0
  92. package/dist/core/backends/claude-tool-collection.js +831 -0
  93. package/dist/core/backends/claude-tool-collection.js.map +1 -0
  94. package/dist/core/backends/gemini-cli-core.d.ts +21 -0
  95. package/dist/core/backends/gemini-cli-core.d.ts.map +1 -1
  96. package/dist/core/backends/gemini-cli-core.js +84 -6
  97. package/dist/core/backends/gemini-cli-core.js.map +1 -1
  98. package/dist/core/backends/prompt-utils.d.ts +1 -0
  99. package/dist/core/backends/prompt-utils.d.ts.map +1 -1
  100. package/dist/core/backends/prompt-utils.js +60 -3
  101. package/dist/core/backends/prompt-utils.js.map +1 -1
  102. package/dist/core/context-builder.d.ts +36 -12
  103. package/dist/core/context-builder.d.ts.map +1 -1
  104. package/dist/core/context-builder.js +179 -89
  105. package/dist/core/context-builder.js.map +1 -1
  106. package/dist/core/dispatcher-date-utils.d.ts +49 -0
  107. package/dist/core/dispatcher-date-utils.d.ts.map +1 -0
  108. package/dist/core/dispatcher-date-utils.js +132 -0
  109. package/dist/core/dispatcher-date-utils.js.map +1 -0
  110. package/dist/core/dispatcher-error-handling.d.ts +159 -0
  111. package/dist/core/dispatcher-error-handling.d.ts.map +1 -0
  112. package/dist/core/dispatcher-error-handling.js +393 -0
  113. package/dist/core/dispatcher-error-handling.js.map +1 -0
  114. package/dist/core/dispatcher-hourly-check.d.ts +150 -0
  115. package/dist/core/dispatcher-hourly-check.d.ts.map +1 -0
  116. package/dist/core/dispatcher-hourly-check.js +665 -0
  117. package/dist/core/dispatcher-hourly-check.js.map +1 -0
  118. package/dist/core/dispatcher-message-handler.d.ts +170 -0
  119. package/dist/core/dispatcher-message-handler.d.ts.map +1 -0
  120. package/dist/core/dispatcher-message-handler.js +1054 -0
  121. package/dist/core/dispatcher-message-handler.js.map +1 -0
  122. package/dist/core/dispatcher-morning-routine.d.ts +169 -0
  123. package/dist/core/dispatcher-morning-routine.d.ts.map +1 -0
  124. package/dist/core/dispatcher-morning-routine.js +434 -0
  125. package/dist/core/dispatcher-morning-routine.js.map +1 -0
  126. package/dist/core/dispatcher-prompt.d.ts +107 -0
  127. package/dist/core/dispatcher-prompt.d.ts.map +1 -0
  128. package/dist/core/dispatcher-prompt.js +227 -0
  129. package/dist/core/dispatcher-prompt.js.map +1 -0
  130. package/dist/core/dispatcher-repository-helpers.d.ts +39 -0
  131. package/dist/core/dispatcher-repository-helpers.d.ts.map +1 -0
  132. package/dist/core/dispatcher-repository-helpers.js +86 -0
  133. package/dist/core/dispatcher-repository-helpers.js.map +1 -0
  134. package/dist/core/dispatcher-result-processor.d.ts +145 -0
  135. package/dist/core/dispatcher-result-processor.d.ts.map +1 -0
  136. package/dist/core/dispatcher-result-processor.js +414 -0
  137. package/dist/core/dispatcher-result-processor.js.map +1 -0
  138. package/dist/core/dispatcher-scheduled-tasks.d.ts +406 -0
  139. package/dist/core/dispatcher-scheduled-tasks.d.ts.map +1 -0
  140. package/dist/core/dispatcher-scheduled-tasks.js +998 -0
  141. package/dist/core/dispatcher-scheduled-tasks.js.map +1 -0
  142. package/dist/core/dispatcher-types.d.ts +296 -0
  143. package/dist/core/dispatcher-types.d.ts.map +1 -0
  144. package/dist/core/dispatcher-types.js +106 -0
  145. package/dist/core/dispatcher-types.js.map +1 -0
  146. package/dist/core/dispatcher.d.ts +86 -610
  147. package/dist/core/dispatcher.d.ts.map +1 -1
  148. package/dist/core/dispatcher.js +293 -3542
  149. package/dist/core/dispatcher.js.map +1 -1
  150. package/dist/core/integration-health.d.ts +18 -10
  151. package/dist/core/integration-health.d.ts.map +1 -1
  152. package/dist/core/integration-health.js +31 -1
  153. package/dist/core/integration-health.js.map +1 -1
  154. package/dist/core/integration-lifecycle.d.ts +65 -0
  155. package/dist/core/integration-lifecycle.d.ts.map +1 -1
  156. package/dist/core/integration-lifecycle.js +167 -16
  157. package/dist/core/integration-lifecycle.js.map +1 -1
  158. package/dist/core/integration-main-backend.d.ts +40 -0
  159. package/dist/core/integration-main-backend.d.ts.map +1 -1
  160. package/dist/core/integration-main-backend.js +89 -2
  161. package/dist/core/integration-main-backend.js.map +1 -1
  162. package/dist/core/management-md.d.ts +51 -17
  163. package/dist/core/management-md.d.ts.map +1 -1
  164. package/dist/core/management-md.js +233 -56
  165. package/dist/core/management-md.js.map +1 -1
  166. package/dist/core/output-language-policy.d.ts +74 -0
  167. package/dist/core/output-language-policy.d.ts.map +1 -0
  168. package/dist/core/output-language-policy.js +194 -0
  169. package/dist/core/output-language-policy.js.map +1 -0
  170. package/dist/core/prompts.d.ts +1 -0
  171. package/dist/core/prompts.d.ts.map +1 -1
  172. package/dist/core/prompts.js +121 -3
  173. package/dist/core/prompts.js.map +1 -1
  174. package/dist/core/repository-management-docs.d.ts +24 -0
  175. package/dist/core/repository-management-docs.d.ts.map +1 -1
  176. package/dist/core/repository-management-docs.js +210 -26
  177. package/dist/core/repository-management-docs.js.map +1 -1
  178. package/dist/core/routine-acquisition-plan.d.ts +131 -0
  179. package/dist/core/routine-acquisition-plan.d.ts.map +1 -0
  180. package/dist/core/routine-acquisition-plan.js +268 -0
  181. package/dist/core/routine-acquisition-plan.js.map +1 -0
  182. package/dist/core/routine-fetch-window-runner.d.ts +201 -0
  183. package/dist/core/routine-fetch-window-runner.d.ts.map +1 -0
  184. package/dist/core/routine-fetch-window-runner.js +661 -0
  185. package/dist/core/routine-fetch-window-runner.js.map +1 -0
  186. package/dist/core/routine-windows.d.ts +156 -0
  187. package/dist/core/routine-windows.d.ts.map +1 -0
  188. package/dist/core/routine-windows.js +330 -0
  189. package/dist/core/routine-windows.js.map +1 -0
  190. package/dist/core/skills-compiler.d.ts +11 -0
  191. package/dist/core/skills-compiler.d.ts.map +1 -1
  192. package/dist/core/skills-compiler.js +102 -13
  193. package/dist/core/skills-compiler.js.map +1 -1
  194. package/dist/core/skills-manifest.d.ts.map +1 -1
  195. package/dist/core/skills-manifest.js +26 -0
  196. package/dist/core/skills-manifest.js.map +1 -1
  197. package/dist/core/system-reset.d.ts.map +1 -1
  198. package/dist/core/system-reset.js +25 -2
  199. package/dist/core/system-reset.js.map +1 -1
  200. package/dist/db/observations.d.ts +45 -2
  201. package/dist/db/observations.d.ts.map +1 -1
  202. package/dist/db/observations.js +112 -14
  203. package/dist/db/observations.js.map +1 -1
  204. package/dist/db/schema.d.ts.map +1 -1
  205. package/dist/db/schema.js +13 -25
  206. package/dist/db/schema.js.map +1 -1
  207. package/dist/index.js +83 -610
  208. package/dist/index.js.map +1 -1
  209. package/dist/observers/delegated-sync-worker.d.ts +45 -2
  210. package/dist/observers/delegated-sync-worker.d.ts.map +1 -1
  211. package/dist/observers/delegated-sync-worker.js +71 -21
  212. package/dist/observers/delegated-sync-worker.js.map +1 -1
  213. package/dist/observers/mail-poller.d.ts +12 -5
  214. package/dist/observers/mail-poller.d.ts.map +1 -1
  215. package/dist/observers/mail-poller.js +36 -14
  216. package/dist/observers/mail-poller.js.map +1 -1
  217. package/dist/observers/manager.d.ts +37 -5
  218. package/dist/observers/manager.d.ts.map +1 -1
  219. package/dist/observers/manager.js +28 -10
  220. package/dist/observers/manager.js.map +1 -1
  221. package/dist/safety/risk-classifier.d.ts.map +1 -1
  222. package/dist/safety/risk-classifier.js +5 -0
  223. package/dist/safety/risk-classifier.js.map +1 -1
  224. package/dist/services/delegated-backend-invoker.d.ts +1 -51
  225. package/dist/services/delegated-backend-invoker.d.ts.map +1 -1
  226. package/dist/services/delegated-backend-invoker.js +41 -480
  227. package/dist/services/delegated-backend-invoker.js.map +1 -1
  228. package/dist/services/delegated-invoker-audit.d.ts +94 -0
  229. package/dist/services/delegated-invoker-audit.d.ts.map +1 -0
  230. package/dist/services/delegated-invoker-audit.js +238 -0
  231. package/dist/services/delegated-invoker-audit.js.map +1 -0
  232. package/dist/services/delegated-invoker-cache-hits.d.ts +34 -0
  233. package/dist/services/delegated-invoker-cache-hits.d.ts.map +1 -0
  234. package/dist/services/delegated-invoker-cache-hits.js +104 -0
  235. package/dist/services/delegated-invoker-cache-hits.js.map +1 -0
  236. package/dist/services/delegated-invoker-janitors.d.ts +28 -0
  237. package/dist/services/delegated-invoker-janitors.d.ts.map +1 -0
  238. package/dist/services/delegated-invoker-janitors.js +104 -0
  239. package/dist/services/delegated-invoker-janitors.js.map +1 -0
  240. package/dist/services/delegated-invoker-utils.d.ts +42 -0
  241. package/dist/services/delegated-invoker-utils.d.ts.map +1 -0
  242. package/dist/services/delegated-invoker-utils.js +100 -0
  243. package/dist/services/delegated-invoker-utils.js.map +1 -0
  244. package/dist/services/delegated-task-runtime.d.ts +1 -1
  245. package/dist/services/delegated-task-runtime.js +1 -1
  246. package/dist/services/integrations/snapshot-partitions.d.ts +5 -0
  247. package/dist/services/integrations/snapshot-partitions.d.ts.map +1 -1
  248. package/dist/services/integrations/snapshot-partitions.js +12 -0
  249. package/dist/services/integrations/snapshot-partitions.js.map +1 -1
  250. package/dist/services/voice/transcriber-impl.d.ts.map +1 -1
  251. package/dist/services/voice/transcriber-impl.js +46 -0
  252. package/dist/services/voice/transcriber-impl.js.map +1 -1
  253. package/package.json +12 -12
package/dist/core/backends/claude-tool-collection.d.ts ADDED
@@ -0,0 +1,135 @@
1
+ /**
2
+ * Claude tool surface — pure helpers split out of `claude-code-core.ts` as
3
+ * part of the file-split plan (Tier 2, §8). Owns five responsibilities:
4
+ *
5
+ * - `getAllowedTools` — assemble the SDK `allowedTools` list from the
6
+ * configured default + the runtime override + any delegated- and native-
7
+ * integration tools the registry exposes.
8
+ * - `getDelegatedClaudeTools` — read the current `integrations` registry
9
+ * state and project it through `computeDelegatedClaudeTools`. Returns
10
+ * `[]` when the MCP context is not yet wired or on DB read failure.
11
+ * - `getNativeClaudeTools` — same shape as `getDelegatedClaudeTools` but
12
+ * projects through `computeNativeClaudeTools` (native-mode parallel).
13
+ * - `getSessionDeniedTools` — DELEGATED-MODE-V2-DESIGN.md §4.3.3 — expand
14
+ * per-integration `deniedTools` into namespaced tool names that the SDK
15
+ * rejects via `disallowedTools` regardless of the allow list.
16
+ * - `buildSecurityHooks` — build the PreToolUse hook record that enforces
17
+ * curl localhost-only, jq env/file-flag denials, context-dir chokepoint,
18
+ * vault write attribution, and the absolute-block audit layer.
19
+ *
20
+ * Pattern A (file-split-plan §5): each function reads its dependencies via
21
+ * an explicit argument record rather than `this.<field>`. The pure shape
22
+ * means these can be unit tested without instantiating `ClaudeCodeCore`,
23
+ * and lets tests inspect the hook closures directly. Thin shims on
24
+ * `ClaudeCodeCore` (`private getAllowedTools(...) { return ... }`) remain
25
+ * for the transitional period (file-split-plan §15).
26
+ */
27
+ import type { HookInput, HookJSONOutput } from "@anthropic-ai/claude-agent-sdk";
28
+ import type Database from "better-sqlite3";
29
+ import type { AgentConfig } from "../../config.js";
30
+ import type { AgentWriteTracker } from "../../safety/agent-write-tracker.js";
31
+ /** Default allowed-tools list when the dashboard override is unset. */
32
+ export declare const CLAUDE_DEFAULT_ALLOWED_TOOLS: readonly ["Read", "Glob", "Grep", "Write", "Edit", "Skill", "Bash(curl *)", "Bash(git *)", "Bash(jq *)"];
33
+ /**
34
+ * Allowed tools whitelist for dontAsk permission mode.
35
+ *
36
+ * `delegatedTools` and `nativeTools` are UNION'd onto the returned list —
37
+ * even when `allowedToolsOverride` is set. This is a deliberate deviation
38
+ * from the override's otherwise-absolute "replace everything" contract (see
39
+ * `CRITICAL_OVERRIDE_TOOLS` in `claude-code-core.ts`, which warns but does
40
+ * not union). Rationale: delegated / native modes are runtime-configurable
41
+ * axes orthogonal to the dashboard's tool-customization override. If a user
42
+ * set the override before flipping an integration, silently dropping the
43
+ * registry-declared connector tools would break mail/calendar with a
44
+ * misleading "permission denied" DM. Union semantics keep the override's
45
+ * curation intent while letting either mode widen the surface to whatever
46
+ * the registry already advertised.
47
+ *
48
+ * Native and delegated lists are accepted separately (rather than a single
49
+ * `extraMcpTools` parameter) so callers — and tests — surface the
50
+ * provenance of every widening: an audit log entry with
51
+ * `delegatedToolCount` and `nativeToolCount` makes a misconfigured flip
52
+ * diagnosable without re-running the resolver.
53
+ */
54
+ export declare function getAllowedTools(config: Pick<AgentConfig, "allowedToolsOverride">, webSearchEnabled: boolean, delegatedTools?: readonly string[], nativeTools?: readonly string[]): string[];
55
+ /**
56
+ * Read the integrations record from the wired MCP context and project it
57
+ * through the `computeDelegatedClaudeTools` allowlist computation. Returns
58
+ * `[]` when the context is not yet wired (tests / startup ordering) or on
59
+ * DB read failure — the latter is logged as a warning so a corrupt
60
+ * integrations table is visible without halting the session.
61
+ */
62
+ export declare function getDelegatedClaudeTools(mcpContext: {
63
+ db: Database.Database;
64
+ } | undefined): readonly string[];
65
+ /**
66
+ * Sibling of `getDelegatedClaudeTools` — projects integrations record
67
+ * through `computeNativeClaudeTools`. Returns `[]` when the context is
68
+ * not yet wired or on DB read failure, matching the conservative pattern
69
+ * used by the delegated counterpart.
70
+ *
71
+ * Required because the SDK's `dontAsk` permission mode silently denies
72
+ * tools not in `allowedTools`. Native-mode skill bodies instruct the
73
+ * agent to call connector MCP tools directly (e.g.
74
+ * `mcp__claude_ai_Gmail__search_threads`), so the registry-declared tool
75
+ * names for every `mode === "native" && nativeBackend === "claude"` row
76
+ * must be pre-authorized.
77
+ */
78
+ export declare function getNativeClaudeTools(mcpContext: {
79
+ db: Database.Database;
80
+ } | undefined): readonly string[];
81
+ /**
82
+ * DELEGATED-MODE-V2-DESIGN.md §4.3.3 — same-backend deny enforcement at
83
+ * the SDK boundary. For every integration whose `delegatedBackend === "claude"`,
84
+ * expand `state.deniedTools` against the connector's known tools and emit
85
+ * the namespaced names (`mcp__claude_ai_<X>__<tool>`). The SDK refuses any
86
+ * tool listed in `disallowedTools` regardless of `allowedTools` — hard
87
+ * enforcement.
88
+ *
89
+ * Returns `[]` when context isn't wired (tests / pre-startup) and on read
90
+ * failures, matching the conservative pattern used by
91
+ * `getDelegatedClaudeTools`.
92
+ */
93
+ export declare function getSessionDeniedTools(mcpContext: {
94
+ db: Database.Database;
95
+ } | undefined): readonly string[];
96
+ /**
97
+ * Dependencies for `buildSecurityHooks`. `writeTracker` is optional because
98
+ * tests construct lightweight cores without one; the vault-write
99
+ * pre-marking is skipped in that case.
100
+ *
101
+ * `mcpContext` is passed as a thunk rather than a value so the
102
+ * absolute-block audit hook reads the live reference at fire time,
103
+ * matching the original `this.mcpContext?.db` semantics of
104
+ * `claude-code-core.ts`. The hook is built once per `executeOnce`
105
+ * call but fires many times during the SDK turn — in production
106
+ * `setMcpContext` is only invoked at startup so the values are
107
+ * equivalent, but the thunk preserves the original semantics for
108
+ * any future reordering of the lifecycle. `config` and `writeTracker`
109
+ * are readonly / constructor-set on `ClaudeCodeCore` and safe to
110
+ * capture by value.
111
+ */
112
+ export interface SecurityHooksDeps {
113
+ readonly config: AgentConfig;
114
+ readonly writeTracker?: AgentWriteTracker | undefined;
115
+ readonly getMcpContext?: () => {
116
+ db: Database.Database;
117
+ } | undefined;
118
+ }
119
+ /**
120
+ * Security hooks:
121
+ * 1. Bash(curl *) — restrict to localhost Daemon API, block connection-override flags. (strict only)
122
+ * 2. Bash(jq *) — block file-access flags and the `env` filter (process env exfiltration). (strict only)
123
+ * 3. Write/Edit — block writes into the session helper dir and context dir, mark vault writes.
124
+ *
125
+ * In allow mode the curl and jq hooks are dropped, but the Write/Edit hook
126
+ * stays: the context-dir chokepoint exists for memory integrity (today-write
127
+ * lock, md_file_snapshots, CONTEXT_WRITE_PERMISSIONS), not permissions.
128
+ */
129
+ export declare function buildSecurityHooks(deps: SecurityHooksDeps, allowMode?: boolean): {
130
+ PreToolUse: {
131
+ matcher: string;
132
+ hooks: ((input: HookInput) => Promise<HookJSONOutput>)[];
133
+ }[];
134
+ };
135
+ //# sourceMappingURL=claude-tool-collection.d.ts.map
package/dist/core/backends/claude-tool-collection.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"claude-tool-collection.d.ts","sourceRoot":"","sources":["../../../src/core/backends/claude-tool-collection.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,cAAc,EAAE,MAAM,gCAAgC,CAAC;AAKhF,OAAO,KAAK,QAAQ,MAAM,gBAAgB,CAAC;AAE3C,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAInD,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,qCAAqC,CAAC;AA2E7E,uEAAuE;AACvE,eAAO,MAAM,4BAA4B,0GAU/B,CAAC;AAEX;;;;;;;;;;;;;;;;;;;;GAoBG;AACH,wBAAgB,eAAe,CAC7B,MAAM,EAAE,IAAI,CAAC,WAAW,EAAE,sBAAsB,CAAC,EACjD,gBAAgB,EAAE,OAAO,EACzB,cAAc,GAAE,SAAS,MAAM,EAAO,EACtC,WAAW,GAAE,SAAS,MAAM,EAAO,GAClC,MAAM,EAAE,CASV;AAED;;;;;;GAMG;AACH,wBAAgB,uBAAuB,CACrC,UAAU,EAAE;IAAE,EAAE,EAAE,QAAQ,CAAC,QAAQ,CAAA;CAAE,GAAG,SAAS,GAChD,SAAS,MAAM,EAAE,CAYnB;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,oBAAoB,CAClC,UAAU,EAAE;IAAE,EAAE,EAAE,QAAQ,CAAC,QAAQ,CAAA;CAAE,GAAG,SAAS,GAChD,SAAS,MAAM,EAAE,CAYnB;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,qBAAqB,CACnC,UAAU,EAAE;IAAE,EAAE,EAAE,QAAQ,CAAC,QAAQ,CAAA;CAAE,GAAG,SAAS,GAChD,SAAS,MAAM,EAAE,CAiBnB;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,WAAW,iBAAiB;IAChC,QAAQ,CAAC,MAAM,EAAE,WAAW,CAAC;IAC7B,QAAQ,CAAC,YAAY,CAAC,EAAE,iBAAiB,GAAG,SAAS,CAAC;IACtD,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM;QAAE,EAAE,EAAE,QAAQ,CAAC,QAAQ,CAAA;KAAE,GAAG,SAAS,CAAC;CACtE;AAED;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,iBAAiB,EAAE,SAAS,UAAQ;;;wBA+YlE,SAAS,KACf,OAAO,CAAC,cAAc,CAAC;;EA4P3B"}