@almadar/agent 1.3.2 → 1.6.0

package/dist/index.d.ts

@@ -1,25 +1,25 @@
 import { SubAgent } from './types.js';
 export { AgentDependencies, CombineOrbitalsFn, CombinerOptions, CombinerResult, ConvertDomainToSchemaFn, DomainConversionResult, GenerateFullOrbitalFn, GenerationLog, OrbitalGenerationOptions, OrbitalGenerationResult } from './types.js';
-export { C as CompleteEvent, b as ContinueRequest, c as ContinueRequestSchema, E as ErrorEvent, d as ExtractedRequirementsInput, e as ExtractedRequirementsSchema, G as GenerateRequest, f as GenerateRequestSchema, g as GenerationLogEvent, I as InterruptEvent, M as MessageEvent, R as ResumeRequest, h as ResumeRequestSchema, a as SSEEvent, S as SSEEventType, i as StartEvent, j as SubagentEvent, T as TodoUpdateEvent, k as ToolCallEvent, l as ToolResultEvent, m as createSSEEvent, n as formatSSEEvent, o as isSSECompleteEvent, p as isSSEErrorEvent, q as isSSEGenerationLogEvent, r as isSSEInterruptEvent, s as isSSEMessageEvent, t as isSSEStartEvent, u as isSSESubagentEvent, v as isSSETodoDetailEvent, w as isSSETodoUpdateEvent, x as isSSEToolCallEvent, y as parseSSEEvent } from './api-types-DVdGNr2M.js';
-import { O as OrbitalUnit, a as OrbitalGenerationOptions$1, b as OrbitalGenerationResult$1 } from './index-DFJdTDbo.js';
-export { T as TraitCompleteCallback, c as TraitEventCallback, d as TraitSpec, e as TraitSubagentToolOptions, f as createAgentTools, g as createApplyChunkTool, h as createCombineSchemasTool, i as createExecuteTool, j as createExtractChunkTool, k as createFinishTaskTool, l as createGenerateSchemaTool, m as createQuerySchemaStructureTool, n as createSchemaChunkingTools, o as createTraitEventWrapper, p as createTraitSubagentTool, q as createValidateSchemaTool, v as validateCommandPaths } from './index-DFJdTDbo.js';
+export { C as CompleteEvent, b as ContinueRequest, c as ContinueRequestSchema, E as ErrorEvent, d as ExtractedRequirementsInput, e as ExtractedRequirementsSchema, G as GenerateRequest, f as GenerateRequestSchema, g as GenerationLogEvent, I as InterruptEvent, M as MessageEvent, R as ResumeRequest, h as ResumeRequestSchema, a as SSEEvent, S as SSEEventType, i as StartEvent, j as SubagentEvent, T as TodoUpdateEvent, k as ToolCallEvent, l as ToolResultEvent, m as createSSEEvent, n as formatSSEEvent, o as isSSECompleteEvent, p as isSSEErrorEvent, q as isSSEGenerationLogEvent, r as isSSEInterruptEvent, s as isSSEMessageEvent, t as isSSEStartEvent, u as isSSESubagentEvent, v as isSSETodoDetailEvent, w as isSSETodoUpdateEvent, x as isSSEToolCallEvent, y as parseSSEEvent } from './api-types-Bj2jeOU7.js';
+import { O as OrbitalUnit, a as OrbitalGenerationOptions$1, b as OrbitalGenerationResult$1, A as AuditLog } from './index-DGdLGf-L.js';
+export { c as AuditEntry, T as TraitCompleteCallback, d as TraitEventCallback, e as TraitSpec, f as TraitSubagentToolOptions, g as createAgentTools, h as createApplyChunkTool, i as createCombineSchemasTool, j as createExecuteTool, k as createExtractChunkTool, l as createFinishTaskTool, m as createGenerateSchemaTool, n as createQuerySchemaStructureTool, o as createSchemaChunkingTools, p as createTraitEventWrapper, q as createTraitSubagentTool, r as createValidateSchemaTool, v as validateCommandPaths } from './index-DGdLGf-L.js';
 import { DomainContext, OrbitalSchema, Orbital } from '@almadar/core/types';
 export { DomainDocument, DomainToSchemaResult, ParseError, SchemaToDomainResult, SectionMapping, applySectionUpdate, convertDomainToSchema, convertSchemaToDomain, deleteSection } from '@almadar/core/domain-language';
 import { LLMClient } from '@almadar/llm';
 export { createCompactSystemPrompt, createSystemPrompt } from './prompts/index.js';
-import { U as UserPreference, M as MemoryManager, G as GenerationSession } from './interrupt-config-Bib_RCTB.js';
-export { C as CheckpointRecord, l as ContextCompactionConfig, D as DEFAULT_COMPACTION_CONFIG, E as EVENT_BUDGETS, I as InterruptRecord, m as MemoryManagerOptions, n as MemoryOrbitalSchema, P as PatternAffinity, o as ProjectContext, S as SessionManager, a as SessionManagerOptions, b as Skill, c as SkillAgentOptions, d as SkillAgentResult, e as SkillLoader, f as SkillMeta, g as SkillRefLoader, T as ToolApprovalPreference, p as UserFeedback, h as createSkillAgent, q as createSummaryPrompt, s as estimateTokens, i as getBudgetWarningMessage, j as getEventBudget, k as getInterruptConfig, t as needsCompaction, r as resumeSkillAgent } from './interrupt-config-Bib_RCTB.js';
+import { U as UserPreference, M as MemoryManager, G as GenerationSession } from './workflow-tool-wrapper-CXD0A7l3.js';
+export { A as ActionGate, C as CRITICAL_COMMAND_PATTERNS, p as CheckpointRecord, q as ContextCompactionConfig, D as DEFAULT_COMPACTION_CONFIG, E as EVENT_BUDGETS, I as InterruptRecord, s as MemoryManagerOptions, t as MemoryOrbitalSchema, P as PatternAffinity, u as ProjectContext, S as SessionManager, a as SessionManagerOptions, b as Skill, d as SkillAgentOptions, e as SkillAgentResult, f as SkillLoader, g as SkillMeta, h as SkillRefLoader, v as TOOL_GATES, w as ToolApprovalPreference, T as ToolTelemetry, x as UserFeedback, W as WorkflowToolWrapper, i as WorkflowToolWrapperOptions, y as classifyCommand, j as createEvalWorkflowWrapper, k as createSkillAgent, z as createSummaryPrompt, l as createWorkflowToolWrapper, B as estimateTokens, m as getBudgetWarningMessage, n as getEventBudget, o as getInterruptConfig, F as needsCompaction, r as resumeSkillAgent } from './workflow-tool-wrapper-CXD0A7l3.js';
 import { S as SessionMetadata } from './firestore-checkpointer-BkFR-sZM.js';
 export { b as FirestoreCheckpointer, c as FirestoreCheckpointerOptions, F as FirestoreDb, d as FirestoreTimestamp, P as PersistenceMode, e as Session, a as SessionRecord } from './firestore-checkpointer-BkFR-sZM.js';
 export { FirestoreSessionStore, FirestoreSessionStoreOptions, FirestoreStore, FirestoreStoreOptions, MemorySessionBackend } from './persistence/index.js';
 export { RawAgentEvent, extractFileOperation, extractInterruptData, hasInterrupt, isFileOperation, isTodoUpdate, transformAgentEvent, transformAgentEventMulti } from './event-transformer/index.js';
 import { EventEmitter } from 'events';
 import { Checkpoint } from '@langchain/langgraph-checkpoint';
+import { OrbitalDefinition } from '@almadar/core';
 export { Command } from '@langchain/langgraph';
-export { D as DomainOrbitalCompleteCallback, a as DomainOrbitalEventCallback, b as DomainOrbitalSpec, c as DomainOrbitalToolOptions, O as OrbitalCompleteCallback, d as OrbitalRequirements, e as OrbitalSubagentToolOptions, S as SubagentEventCallback, f as createConstructCombinedDomainTool, g as createDomainOrbitalTools, h as createGenerateOrbitalDomainTool, i as createOrbitalSubagentTool, j as createSubagentEventWrapper } from './orbital-subagent-CCo-ONJY.js';
+export { D as DomainOrbitalCompleteCallback, a as DomainOrbitalEventCallback, b as DomainOrbitalSpec, c as DomainOrbitalToolOptions, O as OrbitalCompleteCallback, d as OrbitalRequirements, e as OrbitalSubagentToolOptions, S as SubagentEventCallback, f as createConstructCombinedDomainTool, g as createDomainOrbitalTools, h as createGenerateOrbitalDomainTool, i as createOrbitalSubagentTool, j as createSubagentEventWrapper } from './orbital-subagent-CHEeQQr_.js';
 import 'zod';
 import '@langchain/core/tools';
-import '@almadar/core';
 import '@langchain/core/messages';
 import '@langchain/core/runnables';
 
@@ -1854,4 +1854,353 @@ declare class WorkflowBuilder {
 declare function createSchemaGenerationWorkflow(engine: WorkflowEngine): WorkflowDefinition;
 declare function createWorkflowEngine(executor: ToolExecutor): WorkflowEngine;
 
-export { type AccessCheckResult, AgenticSearchEngine, type AgenticSearchParams, type AgenticSearchResponse, type ConflictResolution, type DeepAgentCompleteEvent, type DeepAgentErrorEvent, type DeepAgentEvent, type DeepAgentExecutionEvent, type DeepAgentSchemaEvent, type DeepAgentStartEvent, type ErrorAlert, type EvalSample, type GenerationMetrics, GenerationSession, type HealthCheckResult, type InferredPreference, type LLMProvider, MCPClient, type MCPClientConfig, MCPClientManager, type MCPDiscoveryRequest, type MCPDiscoveryResponse, MCPResourceRegistry, MCPServer, type MCPServerConfig, MCPToolRegistry, MemoryManager, MetricsCollector, type MetricsSummary, ModelRouter, type ModelRouterConfig, MultiUserManager, ObservabilityCollector, type ObservableEvent, type ObservableEventType, OnlineEvalSampler, type CombinerOptions as OrbitalCombinerOptions, type CombinerResult as OrbitalCombinerResult, type OrbitalEstimation, type OrbitalSchemaValidationResult, type ParallelExecutionResult, type PerformanceSnapshot, type PreferenceAnalysis, PreferenceLearner, type PreferenceLearnerOptions, type ProviderConfig, QwenCircuitBreaker, type RegisteredMCPServer, type ResourceDefinition, type ResourceRequest, type ResourceResponse, type ReviewOptions, type RoutingDecision, type RoutingStrategy, type SamplingConfig, type SamplingStats, type ScopedSessionMetadata, type SearchResult, type SearchStrategy, SessionMetadata, type SessionTelemetry, type StateChangeEvent, type StateChangeType, type StateSyncConfig, StateSyncManager, type StateSyncSnapshot, SubAgent, type ToolCallRequest, type ToolCallResponse, type ToolDefinition, type ToolExecutor, type ToolStep, type ToolStepStatus, type UserContext, UserPreference, type UserSessionStats, type VersionVector, WorkflowBuilder, type WorkflowContext, type WorkflowDefinition, WorkflowEngine, type WorkflowExecutionResult, analyzeFailures, applyConservativeBias, combineOrbitals, combineOrbitalsToSchema, createAgenticSearchEngine, createAlmadarMCPServer, createDefaultMCPClientManager, createErrorFixerSubagent, createMCPClient, createMCPClientManager, createMCPServer, createModelRouter, createOnlineEvalSampler, createPreferenceLearner, createSchemaGenerationWorkflow, createSchemaGeneratorSubagent, createSubagentConfigs, createSubagents, createTestAnalyzerSubagent, createUserContext, createWorkflowEngine, debounceSync, endObservabilitySession, estimateCacheSavings, estimateCombineComplexity, estimateOrbitalCount, estimateOrbitalCountBatch, estimateOrbitalCountHeuristic, estimateOrbitalCountLLM, formatSummary, generateFullOrbital, getCircuitBreaker, getModelRouter, getMultiUserManager, getObservabilityCollector, getPerformanceSnapshot, getStateSyncManager, hasDefiniteComplexIndicators, isAdmin, isCompleteEvent, isErrorEvent, isExecutionEvent, isSchemaEvent, isStartEvent, makeSafeRoutingDecision, parseDeepAgentEvent, quickEstimate, recordEvent, requireOwnership, resetMultiUserManager, resetObservabilityCollector, resetStateSyncManager, reviewSamples, safeEstimate, startObservabilitySession, withSync };
+/**
+ * Complexity Classifier
+ *
+ * Determines the complexity of an orbital generation request
+ * based on the number of orbitals identified during decomposition.
+ */
+type ComplexityLevel = 'simple' | 'medium' | 'complex';
+interface ComplexityResult {
+    level: ComplexityLevel;
+    orbitalCount: number;
+    recommendedProvider: 'qwen' | 'multi-provider';
+    reasoning: string;
+}
+/**
+ * Classify complexity based on orbital count
+ *
+ * Simple: 1 orbital
+ * Medium: 2-3 orbitals
+ * Complex: 4+ orbitals
+ */
+declare function classifyComplexity(orbitalCount: number): ComplexityResult;
+/**
+ * Quick complexity check without full decomposition
+ * Based on keywords and request length heuristics
+ */
+declare function estimateComplexity(prompt: string): {
+    estimatedLevel: ComplexityLevel;
+    confidence: 'high' | 'medium' | 'low';
+};
+/**
+ * Get execution strategy based on complexity
+ */
+declare function getExecutionStrategy(complexity: ComplexityResult): {
+    type: 'single' | 'multi-provider';
+    provider: string;
+    model: string;
+    parallelization: number;
+};
+
+/**
+ * Provider Router
+ *
+ * Routes generation and fixing requests to the appropriate provider(s)
+ * based on complexity analysis.
+ */
+
+interface RouteConfig {
+    /** Optional: Override default verbosity */
+    verbose?: boolean;
+}
+interface GenerationResult {
+    orbitals: OrbitalDefinition[];
+    complexity: ComplexityResult;
+    timing: {
+        decomposeMs: number;
+        generateMs: number;
+        totalMs: number;
+    };
+    provider: string;
+}
+interface DecomposedUnit {
+    name: string;
+    entity: string;
+    traits: string[];
+}
+/**
+ * Main routing function for generation
+ *
+ * 1. Decomposes the request
+ * 2. Classifies complexity
+ * 3. Routes to appropriate provider(s)
+ * 4. Returns combined results
+ */
+declare function routeGeneration(prompt: string, skillContent: string, config?: RouteConfig): Promise<GenerationResult>;
+/**
+ * Quick check if a request is likely complex
+ * Useful for UI feedback before full decomposition
+ */
+declare function quickComplexityCheck(prompt: string): {
+    likelyComplex: boolean;
+    confidence: 'high' | 'medium' | 'low';
+    estimatedOrbitals: number;
+};
+
+/**
+ * CapabilityToken — HMAC-SHA256 signed scoped token with budget + TTL.
+ *
+ * TypeScript port of saezbaldo/ic-agi `ic_agi/control_plane.py`.
+ * See: https://github.com/saezbaldo/ic-agi
+ *
+ * TLA+ properties verified in CapabilityTokens.tla:
+ *   P5 AntiReplay:         uses <= budget (invariant)
+ *   P6 TTLEnforcement:     expired tokens produce no log entries
+ *   P7 RevocationFinality: revoked = true => uses frozen forever
+ *   P8 BudgetMonotonicity: uses never decreases
+ *   P9 ForgeryResistance:  invalid signature => uses never incremented
+ */
+interface CapabilityToken {
+    tokenId: string;
+    issuedTo: string;
+    /** Sorted alphabetically for determinism. */
+    scope: string[];
+    /** Unix epoch seconds. */
+    issuedAt: number;
+    /** Unix epoch seconds. */
+    expiresAt: number;
+    budget: number;
+    uses: number;
+    revoked: boolean;
+    metadata: Record<string, unknown>;
+    /** HMAC-SHA256 hex digest over the immutable fields. */
+    signature: string;
+}
+interface TokenParams {
+    issuedTo: string;
+    scope: string[];
+    ttlSeconds?: number;
+    budget?: number;
+    criticality?: 'low' | 'medium' | 'high' | 'critical';
+    metadata?: Record<string, unknown>;
+}
+/** Issue a new signed capability token. TTL and budget are policy-capped. */
+declare function issueToken(params: TokenParams, signingKey: Buffer): CapabilityToken;
+/** Verify the token's HMAC signature. Uses constant-time comparison (P9). */
+declare function verifyToken(token: CapabilityToken, signingKey: Buffer): boolean;
+/** Check if the token can be used (not revoked, not expired, has remaining budget). */
+declare function isTokenValid(token: CapabilityToken): boolean;
+/**
+ * Consume one use from the token.
+ * Returns false without mutating if the token is invalid (P5, P8).
+ */
+declare function consumeToken(token: CapabilityToken): boolean;
+/** Permanently revoke a token. Immutable once set (P7). */
+declare function revokeToken(token: CapabilityToken): void;
+
+/**
+ * ThresholdAuthorizer — K-of-N approval voting for critical agent actions.
+ *
+ * TypeScript port of saezbaldo/ic-agi `ic_agi/threshold_auth.py`.
+ * See: https://github.com/saezbaldo/ic-agi
+ *
+ * TLA+ properties verified in ThresholdAuth.tla:
+ *   P1 ThresholdSafety:       executed => approvals >= K
+ *   P2 NoUnilateralAuthority: K >= 2 enforced in constructor
+ *   P3 DenialFinality:        once denied, resolution immutable
+ *   P4 ResolutionImmutability: resolved => resolution never changes
+ *
+ * Early-denial formula: deny_count > (N - K)
+ * Once enough denials make threshold mathematically unreachable,
+ * the request is immediately resolved as denied.
+ */
+
+interface ApprovalRequest {
+    requestId: string;
+    actionDescription: string;
+    criticality: string;
+    requester: string;
+    /** Unix epoch seconds. */
+    createdAt: number;
+    ttlSeconds: number;
+    /** Map of approverId → vote (true = approve, false = deny). */
+    approvals: Map<string, boolean>;
+    resolved: boolean;
+    resolution: 'approved' | 'denied' | 'expired' | null;
+}
+interface VoteResult {
+    status: 'approved' | 'denied' | 'pending';
+    approvals: number;
+    denials: number;
+    threshold: number;
+    /** Remaining approvals needed to reach threshold. */
+    remaining: number;
+}
+declare class ThresholdAuthorizer {
+    private requests;
+    private readonly k;
+    private readonly n;
+    private readonly approverIds;
+    private readonly auditLog?;
+    /**
+     * @param k         Minimum approvals required (must be >= 2, P2)
+     * @param approverIds List of registered approver IDs (length >= k)
+     * @param auditLog  Optional audit chain for all voting events
+     */
+    constructor(k: number, approverIds: string[], auditLog?: AuditLog);
+    /**
+     * Create a new approval request for a critical action.
+     * The request window is 5 minutes (300s).
+     */
+    createRequest(actionDescription: string, requester: string, criticality?: string): ApprovalRequest;
+    /**
+     * Submit a vote for a pending request.
+     * Auto-resolves the request when threshold is reached (approve)
+     * or when threshold becomes mathematically unreachable (deny).
+     *
+     * @throws if request not found, already resolved, expired, approver not registered, or double-vote
+     */
+    submitVote(requestId: string, approverId: string, vote: boolean): VoteResult;
+    /** Returns true iff the request is resolved and approved (P1). */
+    isApproved(requestId: string): boolean;
+    /** Returns true iff the request is resolved and denied (P3). */
+    isDenied(requestId: string): boolean;
+    isExpired(requestId: string): boolean;
+    getRequest(requestId: string): ApprovalRequest | undefined;
+}
+
+/**
+ * RateLimiter — Sliding window per-entity rate limiting.
+ *
+ * TypeScript port of saezbaldo/ic-agi `ic_agi/rate_limiter.py`.
+ * See: https://github.com/saezbaldo/ic-agi
+ *
+ * Two-layer design:
+ *   1. Global counter (10x per-entity limit) — system-wide protection
+ *   2. Per-(entity, scope) counter — fine-grained per-caller limits
+ *
+ * Cooldown note: when a per-entity counter is exceeded, a cooldown
+ * period is applied. The global counter does not apply cooldown.
+ */
+
+interface RateLimitConfig {
+    /** Maximum requests per window. Default: 20 */
+    maxRequests?: number;
+    /** Sliding window duration in seconds. Default: 60 */
+    windowSeconds?: number;
+    /** Cooldown duration in seconds after limit exceeded. Default: 30 */
+    cooldownSeconds?: number;
+}
+declare class RateLimiter {
+    private readonly counters;
+    private readonly global;
+    private readonly config;
+    private readonly auditLog?;
+    constructor(config?: RateLimitConfig, auditLog?: AuditLog);
+    /**
+     * Check whether the (entity, scope) pair is allowed to proceed.
+     * Checks the global counter first, then the per-entity counter.
+     */
+    allow(entity: string, scope?: string): boolean;
+    remaining(entity: string, scope?: string): number;
+    inCooldown(entity: string, scope?: string): boolean;
+    reset(entity: string, scope?: string): void;
+    /** Reset all counters including global (test utility). */
+    resetAll(): void;
+}
+
+/**
+ * CircuitBreaker — Fault isolation state machine per worker/session.
+ *
+ * TypeScript port of saezbaldo/ic-agi `ic_agi/circuit_breaker.py`.
+ * See: https://github.com/saezbaldo/ic-agi
+ *
+ * State machine:
+ *   CLOSED → OPEN         when consecutive failures >= threshold OR error rate >= 50%
+ *   OPEN   → HALF_OPEN    after recovery timeout (probe request allowed through)
+ *   HALF_OPEN → CLOSED    when consecutive successes >= success threshold
+ *   HALF_OPEN → OPEN      on any failure (immediate trip)
+ *
+ * Error rate guard only fires when totalRequests >= 5 to prevent
+ * tripping on a single noisy startup failure.
+ */
+
+declare enum CircuitState {
+    CLOSED = "CLOSED",
+    OPEN = "OPEN",
+    HALF_OPEN = "HALF_OPEN"
+}
+interface CircuitBreakerConfig {
+    /** Consecutive failures before tripping. Default: 3 */
+    failureThreshold?: number;
+    /** Consecutive successes in HALF_OPEN before closing. Default: 2 */
+    successThreshold?: number;
+    /** Seconds in OPEN before allowing a probe request. Default: 30 */
+    recoveryTimeoutSeconds?: number;
+    /** Window in seconds for error-rate calculation. Default: 120 */
+    errorRateWindow?: number;
+    /** Error rate threshold (0–1) to trigger OPEN. Default: 0.5 */
+    errorRateThreshold?: number;
+}
+interface WorkerCircuit {
+    workerId: string;
+    state: CircuitState;
+    consecutiveFailures: number;
+    consecutiveSuccesses: number;
+    totalRequests: number;
+    totalFailures: number;
+    lastFailureTime: number;
+    openedAt: number;
+    lastTransitionTime: number;
+    /** Sliding window of (timestamp, success) pairs. */
+    recent: Array<{
+        timestamp: number;
+        success: boolean;
+    }>;
+}
+declare class CircuitBreaker {
+    private readonly circuits;
+    private readonly config;
+    private readonly auditLog?;
+    constructor(config?: CircuitBreakerConfig, auditLog?: AuditLog);
+    private getOrCreate;
+    /** Compute error rate for the worker within the configured window. Prunes stale entries. */
+    private errorRate;
+    private transition;
+    /**
+     * Check whether the worker is allowed to proceed.
+     * - CLOSED: always allowed
+     * - OPEN:   blocked until recovery timeout, then transitions to HALF_OPEN
+     * - HALF_OPEN: probe allowed through
+     */
+    allow(workerId: string): boolean;
+    recordSuccess(workerId: string): void;
+    recordFailure(workerId: string): void;
+    getState(workerId: string): CircuitState;
+    getStats(workerId: string): Pick<WorkerCircuit, 'state' | 'consecutiveFailures' | 'totalRequests' | 'totalFailures'>;
+}
+
+/**
+ * SandboxExecutor — V8 isolate-based sandboxed code execution.
+ *
+ * Uses `isolated-vm` to run untrusted code in a separate V8 context
+ * with configurable memory and time limits. Stronger isolation than
+ * Node.js `vm` module (separate heap, no shared references).
+ *
+ * This is an Almadar-specific addition to the IC-AGI security layer.
+ * It will be contributed to almadar-io/ic-agi as an optional module.
+ */
+interface SandboxOptions {
+    /** Execution timeout in milliseconds. Default: 5000 */
+    timeoutMs?: number;
+    /** Memory limit for the isolate in MB. Default: 32 */
+    memoryLimitMb?: number;
+}
+interface SandboxResult {
+    success: boolean;
+    value?: unknown;
+    error?: string;
+    timedOut?: boolean;
+}
+/**
+ * Execute a JavaScript code string inside a V8 isolate.
+ *
+ * The `inputs` object is copied into the isolate as a global `inputs` variable.
+ * The code should return a value or assign to a global `result` variable.
+ *
+ * Falls back gracefully if `isolated-vm` is not available in the environment.
+ */
+declare function executeSandboxed(code: string, inputs?: Record<string, unknown>, options?: SandboxOptions): Promise<SandboxResult>;
+
+export { type AccessCheckResult, AgenticSearchEngine, type AgenticSearchParams, type AgenticSearchResponse, type ApprovalRequest, AuditLog, type CapabilityToken, CircuitBreaker, type CircuitBreakerConfig, CircuitState, type ComplexityLevel, type ComplexityResult, type ConflictResolution, type DecomposedUnit, type DeepAgentCompleteEvent, type DeepAgentErrorEvent, type DeepAgentEvent, type DeepAgentExecutionEvent, type DeepAgentSchemaEvent, type DeepAgentStartEvent, type ErrorAlert, type EvalSample, type GenerationMetrics, type GenerationResult, GenerationSession, type HealthCheckResult, type InferredPreference, type LLMProvider, MCPClient, type MCPClientConfig, MCPClientManager, type MCPDiscoveryRequest, type MCPDiscoveryResponse, MCPResourceRegistry, MCPServer, type MCPServerConfig, MCPToolRegistry, MemoryManager, MetricsCollector, type MetricsSummary, ModelRouter, type ModelRouterConfig, MultiUserManager, ObservabilityCollector, type ObservableEvent, type ObservableEventType, OnlineEvalSampler, type CombinerOptions as OrbitalCombinerOptions, type CombinerResult as OrbitalCombinerResult, type OrbitalEstimation, type OrbitalSchemaValidationResult, type ParallelExecutionResult, type PerformanceSnapshot, type PreferenceAnalysis, PreferenceLearner, type PreferenceLearnerOptions, type ProviderConfig, QwenCircuitBreaker, type RateLimitConfig, RateLimiter, type RegisteredMCPServer, type ResourceDefinition, type ResourceRequest, type ResourceResponse, type ReviewOptions, type RouteConfig, type RoutingDecision, type RoutingStrategy, type SamplingConfig, type SamplingStats, type SandboxOptions, type SandboxResult, type ScopedSessionMetadata, type SearchResult, type SearchStrategy, SessionMetadata, type SessionTelemetry, type StateChangeEvent, type StateChangeType, type StateSyncConfig, StateSyncManager, type StateSyncSnapshot, SubAgent, ThresholdAuthorizer, type TokenParams, type ToolCallRequest, type ToolCallResponse, type ToolDefinition, type ToolExecutor, type ToolStep, type ToolStepStatus, type UserContext, UserPreference, type UserSessionStats, type VersionVector, type VoteResult, WorkflowBuilder, type WorkflowContext, type WorkflowDefinition, WorkflowEngine, type WorkflowExecutionResult, analyzeFailures, applyConservativeBias, classifyComplexity, combineOrbitals, combineOrbitalsToSchema, consumeToken, createAgenticSearchEngine, createAlmadarMCPServer, createDefaultMCPClientManager, createErrorFixerSubagent, createMCPClient, createMCPClientManager, createMCPServer, createModelRouter, createOnlineEvalSampler, createPreferenceLearner, createSchemaGenerationWorkflow, createSchemaGeneratorSubagent, createSubagentConfigs, createSubagents, createTestAnalyzerSubagent, createUserContext, createWorkflowEngine, debounceSync, endObservabilitySession, estimateCacheSavings, estimateCombineComplexity, estimateComplexity, estimateOrbitalCount, estimateOrbitalCountBatch, estimateOrbitalCountHeuristic, estimateOrbitalCountLLM, executeSandboxed, formatSummary, generateFullOrbital, getCircuitBreaker, getExecutionStrategy, getModelRouter, getMultiUserManager, getObservabilityCollector, getPerformanceSnapshot, getStateSyncManager, hasDefiniteComplexIndicators, isAdmin, isCompleteEvent, isErrorEvent, isExecutionEvent, isSchemaEvent, isStartEvent, isTokenValid, issueToken, makeSafeRoutingDecision, parseDeepAgentEvent, quickComplexityCheck, quickEstimate, recordEvent, requireOwnership, resetMultiUserManager, resetObservabilityCollector, resetStateSyncManager, reviewSamples, revokeToken, routeGeneration, safeEstimate, startObservabilitySession, verifyToken, withSync };