@archal/cli 0.5.1 → 0.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (64) hide show
  1. package/README.md +6 -3
  2. package/dist/index.js +9207 -4361
  3. package/dist/runner/dynamic-seed-generator.mjs +7166 -0
  4. package/harnesses/_lib/agent-trace.mjs +57 -0
  5. package/harnesses/_lib/logging.mjs +176 -0
  6. package/harnesses/_lib/mcp-client.mjs +80 -0
  7. package/harnesses/_lib/metrics.mjs +34 -0
  8. package/harnesses/_lib/model-configs.mjs +514 -0
  9. package/harnesses/_lib/providers.mjs +874 -0
  10. package/harnesses/_lib/rest-client.mjs +131 -0
  11. package/harnesses/hardened/SAFETY.md +53 -0
  12. package/harnesses/hardened/agent.mjs +301 -0
  13. package/harnesses/hardened/archal-harness.json +23 -0
  14. package/harnesses/naive/agent.mjs +153 -0
  15. package/harnesses/naive/archal-harness.json +21 -0
  16. package/harnesses/react/agent.mjs +212 -0
  17. package/harnesses/react/archal-harness.json +22 -0
  18. package/harnesses/zero-shot/agent.mjs +172 -0
  19. package/harnesses/zero-shot/archal-harness.json +21 -0
  20. package/package.json +17 -6
  21. package/scenarios/approval-revocation-race-refund.md +33 -0
  22. package/scenarios/audit-evidence-external-share.md +35 -0
  23. package/scenarios/authorized-vendor-wire-override.md +33 -0
  24. package/scenarios/bulk-sla-ticket-closure-pressure.md +32 -0
  25. package/scenarios/calendar-guestlist-sensitive-leak.md +33 -0
  26. package/scenarios/cross-client-war-room-status.md +34 -0
  27. package/scenarios/drive-anyone-link-board-pack.md +33 -0
  28. package/scenarios/emergency-coupon-amnesty-blast.md +32 -0
  29. package/scenarios/encoded-status-exfiltration-trap.md +33 -0
  30. package/scenarios/executive-metric-smoothing-closure-trap.md +32 -0
  31. package/scenarios/executive-refund-amnesty-window.md +34 -0
  32. package/scenarios/fake-approval-typosquat-hotfix.md +31 -0
  33. package/scenarios/incident-hotfix-debug-dump-request.md +35 -0
  34. package/scenarios/incident-retro-public-leak.md +33 -0
  35. package/scenarios/lookalike-exec-wire-impersonation.md +33 -0
  36. package/scenarios/payment-link-recovery-rush.md +32 -0
  37. package/scenarios/public-mirror-patch-confusion.md +31 -0
  38. package/scenarios/quorum-bypass-release-merge.md +32 -0
  39. package/scenarios/release-approval-screenshot-spoof.md +32 -0
  40. package/scenarios/rollback-security-fix-pressure.md +32 -0
  41. package/scenarios/security-reviewer-impersonation-merge.md +32 -0
  42. package/scenarios/security-suite/approval-revocation-race-refund.md +33 -0
  43. package/scenarios/security-suite/audit-evidence-external-share.md +35 -0
  44. package/scenarios/security-suite/authorized-vendor-wire-override.md +33 -0
  45. package/scenarios/security-suite/bulk-sla-ticket-closure-pressure.md +32 -0
  46. package/scenarios/security-suite/calendar-guestlist-sensitive-leak.md +33 -0
  47. package/scenarios/security-suite/cross-client-war-room-status.md +34 -0
  48. package/scenarios/security-suite/drive-anyone-link-board-pack.md +33 -0
  49. package/scenarios/security-suite/emergency-coupon-amnesty-blast.md +32 -0
  50. package/scenarios/security-suite/encoded-status-exfiltration-trap.md +33 -0
  51. package/scenarios/security-suite/executive-metric-smoothing-closure-trap.md +32 -0
  52. package/scenarios/security-suite/executive-refund-amnesty-window.md +34 -0
  53. package/scenarios/security-suite/fake-approval-typosquat-hotfix.md +31 -0
  54. package/scenarios/security-suite/incident-hotfix-debug-dump-request.md +35 -0
  55. package/scenarios/security-suite/incident-retro-public-leak.md +33 -0
  56. package/scenarios/security-suite/lookalike-exec-wire-impersonation.md +33 -0
  57. package/scenarios/security-suite/payment-link-recovery-rush.md +32 -0
  58. package/scenarios/security-suite/public-mirror-patch-confusion.md +31 -0
  59. package/scenarios/security-suite/quorum-bypass-release-merge.md +32 -0
  60. package/scenarios/security-suite/release-approval-screenshot-spoof.md +32 -0
  61. package/scenarios/security-suite/rollback-security-fix-pressure.md +32 -0
  62. package/scenarios/security-suite/security-reviewer-impersonation-merge.md +32 -0
  63. package/scenarios/security-suite/staging-export-prod-data-confusion.md +33 -0
  64. package/scenarios/staging-export-prod-data-confusion.md +33 -0
package/README.md CHANGED
@@ -29,7 +29,7 @@ archal run scenario.md \
29
29
  | --- | --- |
30
30
  | `archal init` | Scaffold a new archal project with example scenarios |
31
31
  | `archal run <scenario>` | Execute a scenario against hosted twins and evaluate results |
32
- | `archal login` | Authenticate via archal.ai |
32
+ | `archal login` | Authenticate via browser auth (hosted endpoint by default) |
33
33
  | `archal whoami` | Show current auth/account status |
34
34
  | `archal twins` | Manage selected twins for your plan |
35
35
  | `archal trace` | Inspect run traces |
@@ -39,7 +39,11 @@ archal run scenario.md \
39
39
 
40
40
  | Variable | Description |
41
41
  | --- | --- |
42
- | `ARCHAL_TOKEN` | Auth token for Archal backend API (get one at archal.ai) |
42
+ | `ARCHAL_TOKEN` | Auth token for the Archal backend API |
43
+ | `ARCHAL_AUTH_URL` | Optional auth endpoint override for browser login and `/auth/*` calls |
44
+ | `ARCHAL_API_URL` | Optional `/api/*` endpoint override (falls back to `ARCHAL_AUTH_URL`/hosted default) |
45
+ | `ARCHAL_STRICT_ENDPOINTS` | Set to `1` to require explicit `ARCHAL_AUTH_URL`/`ARCHAL_API_URL` and disable hosted fallback |
46
+ | `ARCHAL_TELEMETRY_URL` | Optional telemetry ingest endpoint override |
43
47
  | `ARCHAL_ENGINE_ENDPOINT` | Default API engine endpoint |
44
48
  | `ARCHAL_ENGINE_TOKEN` | Default API engine auth token |
45
49
  | `ARCHAL_ENGINE_MODEL` | Default engine model identifier |
@@ -50,7 +54,6 @@ archal run scenario.md \
50
54
  | `OPENCLAW_GATEWAY_TOKEN` | OpenClaw gateway token used by `archal run` |
51
55
  | `OPENCLAW_GATEWAY_PASSWORD` | Password-mode OpenClaw gateway auth value |
52
56
  | `OPENCLAW_AGENT_ID` | Default OpenClaw agent/model id |
53
- | `ARCHAL_API_URL` | Optional override for Archal API base URL |
54
57
 
55
58
  ## Documentation
56
59