@astrasyncai/verification-gateway 1.0.0 → 2.0.0

package/dist/adapter-interface/interface.d.mts

@@ -0,0 +1,71 @@
+import { AstraSyncGateway } from '../gateway/gateway.mjs';
+import { A as AgentAction, I as InterceptResult, P as PDLSSContext, V as VerificationDecision } from '../types-BvpGdsv1.mjs';
+import '../types-Bf8pML07.mjs';
+
+/**
+ * PlatformAdapter Interface
+ *
+ * The contract that Layer 4 platform adapters implement.
+ * Agent-side interception: governs what agents are allowed to do before they do it.
+ *
+ * Each adapter is 200-500 lines of platform-specific code.
+ * All verification logic lives in the gateway — adapters just translate
+ * between the platform's world and AstraSync's world.
+ */
+
+interface AdapterConfig {
+    /** The AstraSyncGateway instance (handles mode routing) */
+    gateway: AstraSyncGateway;
+    /** Platform-specific configuration */
+    adapterOptions: Record<string, unknown>;
+}
+interface PlatformAdapter {
+    /**
+     * Interface version for compatibility checking.
+     * Current version: 1.
+     */
+    readonly interfaceVersion: number;
+    /**
+     * Platform-specific initialization.
+     * Load config, register hooks, establish connections.
+     */
+    initialize(config: AdapterConfig): Promise<void>;
+    /**
+     * Graceful shutdown.
+     * Drain in-flight verifications, deregister hooks, close connections.
+     */
+    shutdown(): Promise<void>;
+    /**
+     * Intercept an agent action before execution.
+     *
+     * How this works depends on the platform:
+     * - CLI adapter: proxy server captures outbound request
+     * - Browser adapter: content script intercepts DOM interaction
+     * - Express: middleware captures inbound request
+     */
+    interceptAction(action: AgentAction): Promise<InterceptResult>;
+    /**
+     * Extract PDLSS-compatible context from a platform-specific action.
+     * Maps platform-native action format to the universal PDLSSContext.
+     */
+    extractContext(action: AgentAction): PDLSSContext;
+    /**
+     * Enforce the verification decision in a platform-specific way.
+     *
+     * How this works depends on the platform:
+     * - CLI: block command / allow command / prompt for approval
+     * - Browser: block navigation / show confirmation dialog
+     * - Express: return 403 / pass through / inject headers
+     */
+    enforceDecision(decision: VerificationDecision): Promise<void>;
+}
+/**
+ * Current adapter interface version.
+ */
+declare const ADAPTER_INTERFACE_VERSION = 1;
+/**
+ * Check if an adapter is compatible with the current interface version.
+ */
+declare function isCompatibleAdapter(adapter: PlatformAdapter): boolean;
+
+export { ADAPTER_INTERFACE_VERSION, type AdapterConfig, type PlatformAdapter, isCompatibleAdapter };

package/dist/adapter-interface/interface.d.ts

@@ -0,0 +1,71 @@
+import { AstraSyncGateway } from '../gateway/gateway.js';
+import { A as AgentAction, I as InterceptResult, P as PDLSSContext, V as VerificationDecision } from '../types-Ce2mFJkO.js';
+import '../types-Bf8pML07.js';
+
+/**
+ * PlatformAdapter Interface
+ *
+ * The contract that Layer 4 platform adapters implement.
+ * Agent-side interception: governs what agents are allowed to do before they do it.
+ *
+ * Each adapter is 200-500 lines of platform-specific code.
+ * All verification logic lives in the gateway — adapters just translate
+ * between the platform's world and AstraSync's world.
+ */
+
+interface AdapterConfig {
+    /** The AstraSyncGateway instance (handles mode routing) */
+    gateway: AstraSyncGateway;
+    /** Platform-specific configuration */
+    adapterOptions: Record<string, unknown>;
+}
+interface PlatformAdapter {
+    /**
+     * Interface version for compatibility checking.
+     * Current version: 1.
+     */
+    readonly interfaceVersion: number;
+    /**
+     * Platform-specific initialization.
+     * Load config, register hooks, establish connections.
+     */
+    initialize(config: AdapterConfig): Promise<void>;
+    /**
+     * Graceful shutdown.
+     * Drain in-flight verifications, deregister hooks, close connections.
+     */
+    shutdown(): Promise<void>;
+    /**
+     * Intercept an agent action before execution.
+     *
+     * How this works depends on the platform:
+     * - CLI adapter: proxy server captures outbound request
+     * - Browser adapter: content script intercepts DOM interaction
+     * - Express: middleware captures inbound request
+     */
+    interceptAction(action: AgentAction): Promise<InterceptResult>;
+    /**
+     * Extract PDLSS-compatible context from a platform-specific action.
+     * Maps platform-native action format to the universal PDLSSContext.
+     */
+    extractContext(action: AgentAction): PDLSSContext;
+    /**
+     * Enforce the verification decision in a platform-specific way.
+     *
+     * How this works depends on the platform:
+     * - CLI: block command / allow command / prompt for approval
+     * - Browser: block navigation / show confirmation dialog
+     * - Express: return 403 / pass through / inject headers
+     */
+    enforceDecision(decision: VerificationDecision): Promise<void>;
+}
+/**
+ * Current adapter interface version.
+ */
+declare const ADAPTER_INTERFACE_VERSION = 1;
+/**
+ * Check if an adapter is compatible with the current interface version.
+ */
+declare function isCompatibleAdapter(adapter: PlatformAdapter): boolean;
+
+export { ADAPTER_INTERFACE_VERSION, type AdapterConfig, type PlatformAdapter, isCompatibleAdapter };

package/dist/adapter-interface/interface.js

@@ -0,0 +1,36 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/adapter-interface/interface.ts
+var interface_exports = {};
+__export(interface_exports, {
+  ADAPTER_INTERFACE_VERSION: () => ADAPTER_INTERFACE_VERSION,
+  isCompatibleAdapter: () => isCompatibleAdapter
+});
+module.exports = __toCommonJS(interface_exports);
+var ADAPTER_INTERFACE_VERSION = 1;
+function isCompatibleAdapter(adapter) {
+  return adapter.interfaceVersion === ADAPTER_INTERFACE_VERSION;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  ADAPTER_INTERFACE_VERSION,
+  isCompatibleAdapter
+});
+//# sourceMappingURL=interface.js.map

package/dist/adapter-interface/interface.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/adapter-interface/interface.ts"],"sourcesContent":["/**\n * PlatformAdapter Interface\n *\n * The contract that Layer 4 platform adapters implement.\n * Agent-side interception: governs what agents are allowed to do before they do it.\n *\n * Each adapter is 200-500 lines of platform-specific code.\n * All verification logic lives in the gateway — adapters just translate\n * between the platform's world and AstraSync's world.\n */\n\nimport type { AstraSyncGateway } from '../gateway/gateway';\nimport type { PDLSSContext, VerificationDecision, AgentAction, InterceptResult } from '../gateway/types';\n\nexport interface AdapterConfig {\n  /** The AstraSyncGateway instance (handles mode routing) */\n  gateway: AstraSyncGateway;\n  /** Platform-specific configuration */\n  adapterOptions: Record<string, unknown>;\n}\n\nexport interface PlatformAdapter {\n  /**\n   * Interface version for compatibility checking.\n   * Current version: 1.\n   */\n  readonly interfaceVersion: number;\n\n  /**\n   * Platform-specific initialization.\n   * Load config, register hooks, establish connections.\n   */\n  initialize(config: AdapterConfig): Promise<void>;\n\n  /**\n   * Graceful shutdown.\n   * Drain in-flight verifications, deregister hooks, close connections.\n   */\n  shutdown(): Promise<void>;\n\n  /**\n   * Intercept an agent action before execution.\n   *\n   * How this works depends on the platform:\n   * - CLI adapter: proxy server captures outbound request\n   * - Browser adapter: content script intercepts DOM interaction\n   * - Express: middleware captures inbound request\n   */\n  interceptAction(action: AgentAction): Promise<InterceptResult>;\n\n  /**\n   * Extract PDLSS-compatible context from a platform-specific action.\n   * Maps platform-native action format to the universal PDLSSContext.\n   */\n  extractContext(action: AgentAction): PDLSSContext;\n\n  /**\n   * Enforce the verification decision in a platform-specific way.\n   *\n   * How this works depends on the platform:\n   * - CLI: block command / allow command / prompt for approval\n   * - Browser: block navigation / show confirmation dialog\n   * - Express: return 403 / pass through / inject headers\n   */\n  enforceDecision(decision: VerificationDecision): Promise<void>;\n}\n\n/**\n * Current adapter interface version.\n */\nexport const ADAPTER_INTERFACE_VERSION = 1;\n\n/**\n * Check if an adapter is compatible with the current interface version.\n */\nexport function isCompatibleAdapter(adapter: PlatformAdapter): boolean {\n  return adapter.interfaceVersion === ADAPTER_INTERFACE_VERSION;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAsEO,IAAM,4BAA4B;AAKlC,SAAS,oBAAoB,SAAmC;AACrE,SAAO,QAAQ,qBAAqB;AACtC;","names":[]}

package/dist/adapter-interface/interface.mjs

@@ -0,0 +1,10 @@
+// src/adapter-interface/interface.ts
+var ADAPTER_INTERFACE_VERSION = 1;
+function isCompatibleAdapter(adapter) {
+  return adapter.interfaceVersion === ADAPTER_INTERFACE_VERSION;
+}
+export {
+  ADAPTER_INTERFACE_VERSION,
+  isCompatibleAdapter
+};
+//# sourceMappingURL=interface.mjs.map

package/dist/adapter-interface/interface.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/adapter-interface/interface.ts"],"sourcesContent":["/**\n * PlatformAdapter Interface\n *\n * The contract that Layer 4 platform adapters implement.\n * Agent-side interception: governs what agents are allowed to do before they do it.\n *\n * Each adapter is 200-500 lines of platform-specific code.\n * All verification logic lives in the gateway — adapters just translate\n * between the platform's world and AstraSync's world.\n */\n\nimport type { AstraSyncGateway } from '../gateway/gateway';\nimport type { PDLSSContext, VerificationDecision, AgentAction, InterceptResult } from '../gateway/types';\n\nexport interface AdapterConfig {\n  /** The AstraSyncGateway instance (handles mode routing) */\n  gateway: AstraSyncGateway;\n  /** Platform-specific configuration */\n  adapterOptions: Record<string, unknown>;\n}\n\nexport interface PlatformAdapter {\n  /**\n   * Interface version for compatibility checking.\n   * Current version: 1.\n   */\n  readonly interfaceVersion: number;\n\n  /**\n   * Platform-specific initialization.\n   * Load config, register hooks, establish connections.\n   */\n  initialize(config: AdapterConfig): Promise<void>;\n\n  /**\n   * Graceful shutdown.\n   * Drain in-flight verifications, deregister hooks, close connections.\n   */\n  shutdown(): Promise<void>;\n\n  /**\n   * Intercept an agent action before execution.\n   *\n   * How this works depends on the platform:\n   * - CLI adapter: proxy server captures outbound request\n   * - Browser adapter: content script intercepts DOM interaction\n   * - Express: middleware captures inbound request\n   */\n  interceptAction(action: AgentAction): Promise<InterceptResult>;\n\n  /**\n   * Extract PDLSS-compatible context from a platform-specific action.\n   * Maps platform-native action format to the universal PDLSSContext.\n   */\n  extractContext(action: AgentAction): PDLSSContext;\n\n  /**\n   * Enforce the verification decision in a platform-specific way.\n   *\n   * How this works depends on the platform:\n   * - CLI: block command / allow command / prompt for approval\n   * - Browser: block navigation / show confirmation dialog\n   * - Express: return 403 / pass through / inject headers\n   */\n  enforceDecision(decision: VerificationDecision): Promise<void>;\n}\n\n/**\n * Current adapter interface version.\n */\nexport const ADAPTER_INTERFACE_VERSION = 1;\n\n/**\n * Check if an adapter is compatible with the current interface version.\n */\nexport function isCompatibleAdapter(adapter: PlatformAdapter): boolean {\n  return adapter.interfaceVersion === ADAPTER_INTERFACE_VERSION;\n}\n"],"mappings":";AAsEO,IAAM,4BAA4B;AAKlC,SAAS,oBAAoB,SAAmC;AACrE,SAAO,QAAQ,qBAAqB;AACtC;","names":[]}

package/dist/adapter-interface/purpose-mapping.d.mts

@@ -0,0 +1,28 @@
+/**
+ * Shared purpose mapping utilities for Layer 4 platform adapters.
+ *
+ * Maps platform-native action names to PDLSS purpose categories.
+ * Used by OpenClaw CLI, Cursor, browser, and future adapters.
+ */
+/**
+ * Map a tool/action name to a PDLSS purpose category.
+ * Returns `tool.<name>` for unmapped tools (denied by default).
+ */
+declare function mapToolToPurpose(toolName: string): string;
+/**
+ * Register additional tool → purpose mappings (e.g. from a platform adapter).
+ * Does not overwrite existing mappings.
+ */
+declare function registerToolMappings(mappings: Record<string, string>): void;
+/**
+ * Extract the meaningful target string from tool arguments.
+ * Uses the purpose category to determine which argument field is relevant.
+ */
+declare function extractTarget(toolName: string, args: Record<string, unknown>): string;
+/**
+ * Extract network domains from a URL target.
+ * Returns undefined if the target is not a URL.
+ */
+declare function extractNetworkDomains(target: string): string[] | undefined;
+
+export { extractNetworkDomains, extractTarget, mapToolToPurpose, registerToolMappings };

package/dist/adapter-interface/purpose-mapping.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Shared purpose mapping utilities for Layer 4 platform adapters.
+ *
+ * Maps platform-native action names to PDLSS purpose categories.
+ * Used by OpenClaw CLI, Cursor, browser, and future adapters.
+ */
+/**
+ * Map a tool/action name to a PDLSS purpose category.
+ * Returns `tool.<name>` for unmapped tools (denied by default).
+ */
+declare function mapToolToPurpose(toolName: string): string;
+/**
+ * Register additional tool → purpose mappings (e.g. from a platform adapter).
+ * Does not overwrite existing mappings.
+ */
+declare function registerToolMappings(mappings: Record<string, string>): void;
+/**
+ * Extract the meaningful target string from tool arguments.
+ * Uses the purpose category to determine which argument field is relevant.
+ */
+declare function extractTarget(toolName: string, args: Record<string, unknown>): string;
+/**
+ * Extract network domains from a URL target.
+ * Returns undefined if the target is not a URL.
+ */
+declare function extractNetworkDomains(target: string): string[] | undefined;
+
+export { extractNetworkDomains, extractTarget, mapToolToPurpose, registerToolMappings };

package/dist/adapter-interface/purpose-mapping.js

@@ -0,0 +1,117 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/adapter-interface/purpose-mapping.ts
+var purpose_mapping_exports = {};
+__export(purpose_mapping_exports, {
+  extractNetworkDomains: () => extractNetworkDomains,
+  extractTarget: () => extractTarget,
+  mapToolToPurpose: () => mapToolToPurpose,
+  registerToolMappings: () => registerToolMappings
+});
+module.exports = __toCommonJS(purpose_mapping_exports);
+var TOOL_PURPOSE_MAP = {
+  // Shell
+  shell_exec: "shell.exec",
+  run_command: "shell.exec",
+  execute: "shell.exec",
+  terminal_exec: "shell.exec",
+  run_terminal_command: "shell.exec",
+  // File read
+  file_read: "file.read",
+  read_file: "file.read",
+  // File write
+  file_write: "file.write",
+  write_file: "file.write",
+  create_file: "file.write",
+  edit_file: "file.write",
+  // File delete
+  file_delete: "file.delete",
+  delete_file: "file.delete",
+  // Network
+  http_request: "network.request",
+  fetch: "network.request",
+  web_request: "network.request",
+  // Email
+  send_email: "email.send",
+  read_email: "email.read",
+  // Calendar
+  create_event: "calendar.create",
+  // Database
+  query_database: "database.query",
+  write_database: "database.write",
+  // Payment
+  payment_execute: "payment.execute"
+};
+function mapToolToPurpose(toolName) {
+  return TOOL_PURPOSE_MAP[toolName] || `tool.${toolName}`;
+}
+function registerToolMappings(mappings) {
+  for (const [tool, purpose] of Object.entries(mappings)) {
+    if (!(tool in TOOL_PURPOSE_MAP)) {
+      TOOL_PURPOSE_MAP[tool] = purpose;
+    }
+  }
+}
+function extractTarget(toolName, args) {
+  const purpose = mapToolToPurpose(toolName);
+  if (purpose.startsWith("shell.")) {
+    return String(args.command || args.cmd || args.script || "");
+  }
+  if (purpose.startsWith("file.")) {
+    return String(args.path || args.file || args.filename || args.file_path || "");
+  }
+  if (purpose.startsWith("network.")) {
+    return String(args.url || args.endpoint || args.uri || "");
+  }
+  if (purpose.startsWith("email.")) {
+    return String(args.to || args.recipient || args.address || "");
+  }
+  if (purpose.startsWith("database.")) {
+    return String(args.query || args.table || "");
+  }
+  if (purpose.startsWith("payment.")) {
+    return String(args.description || args.merchant || args.amount || "");
+  }
+  if (args.command) return String(args.command);
+  if (args.path) return String(args.path);
+  if (args.url) return String(args.url);
+  for (const val of Object.values(args)) {
+    if (typeof val === "string" && val.length > 0) return val;
+  }
+  return toolName;
+}
+function extractNetworkDomains(target) {
+  try {
+    if (target.startsWith("http://") || target.startsWith("https://")) {
+      const url = new URL(target);
+      return [url.hostname];
+    }
+  } catch {
+  }
+  return void 0;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  extractNetworkDomains,
+  extractTarget,
+  mapToolToPurpose,
+  registerToolMappings
+});
+//# sourceMappingURL=purpose-mapping.js.map

package/dist/adapter-interface/purpose-mapping.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/adapter-interface/purpose-mapping.ts"],"sourcesContent":["/**\n * Shared purpose mapping utilities for Layer 4 platform adapters.\n *\n * Maps platform-native action names to PDLSS purpose categories.\n * Used by OpenClaw CLI, Cursor, browser, and future adapters.\n */\n\n// -----------------------------------------------------------------------\n// Tool → Purpose mapping\n// -----------------------------------------------------------------------\n\n/** Standard tool name → PDLSS purpose mapping used by all adapters */\nconst TOOL_PURPOSE_MAP: Record<string, string> = {\n  // Shell\n  shell_exec: 'shell.exec',\n  run_command: 'shell.exec',\n  execute: 'shell.exec',\n  terminal_exec: 'shell.exec',\n  run_terminal_command: 'shell.exec',\n\n  // File read\n  file_read: 'file.read',\n  read_file: 'file.read',\n\n  // File write\n  file_write: 'file.write',\n  write_file: 'file.write',\n  create_file: 'file.write',\n  edit_file: 'file.write',\n\n  // File delete\n  file_delete: 'file.delete',\n  delete_file: 'file.delete',\n\n  // Network\n  http_request: 'network.request',\n  fetch: 'network.request',\n  web_request: 'network.request',\n\n  // Email\n  send_email: 'email.send',\n  read_email: 'email.read',\n\n  // Calendar\n  create_event: 'calendar.create',\n\n  // Database\n  query_database: 'database.query',\n  write_database: 'database.write',\n\n  // Payment\n  payment_execute: 'payment.execute',\n};\n\n/**\n * Map a tool/action name to a PDLSS purpose category.\n * Returns `tool.<name>` for unmapped tools (denied by default).\n */\nexport function mapToolToPurpose(toolName: string): string {\n  return TOOL_PURPOSE_MAP[toolName] || `tool.${toolName}`;\n}\n\n/**\n * Register additional tool → purpose mappings (e.g. from a platform adapter).\n * Does not overwrite existing mappings.\n */\nexport function registerToolMappings(mappings: Record<string, string>): void {\n  for (const [tool, purpose] of Object.entries(mappings)) {\n    if (!(tool in TOOL_PURPOSE_MAP)) {\n      TOOL_PURPOSE_MAP[tool] = purpose;\n    }\n  }\n}\n\n// -----------------------------------------------------------------------\n// Target extraction\n// -----------------------------------------------------------------------\n\n/**\n * Extract the meaningful target string from tool arguments.\n * Uses the purpose category to determine which argument field is relevant.\n */\nexport function extractTarget(toolName: string, args: Record<string, unknown>): string {\n  const purpose = mapToolToPurpose(toolName);\n\n  if (purpose.startsWith('shell.')) {\n    return String(args.command || args.cmd || args.script || '');\n  }\n\n  if (purpose.startsWith('file.')) {\n    return String(args.path || args.file || args.filename || args.file_path || '');\n  }\n\n  if (purpose.startsWith('network.')) {\n    return String(args.url || args.endpoint || args.uri || '');\n  }\n\n  if (purpose.startsWith('email.')) {\n    return String(args.to || args.recipient || args.address || '');\n  }\n\n  if (purpose.startsWith('database.')) {\n    return String(args.query || args.table || '');\n  }\n\n  if (purpose.startsWith('payment.')) {\n    return String(args.description || args.merchant || args.amount || '');\n  }\n\n  // Fallback: try common field names\n  if (args.command) return String(args.command);\n  if (args.path) return String(args.path);\n  if (args.url) return String(args.url);\n\n  // Default: use first non-empty string argument or tool name\n  for (const val of Object.values(args)) {\n    if (typeof val === 'string' && val.length > 0) return val;\n  }\n  return toolName;\n}\n\n// -----------------------------------------------------------------------\n// Network domain extraction\n// -----------------------------------------------------------------------\n\n/**\n * Extract network domains from a URL target.\n * Returns undefined if the target is not a URL.\n */\nexport function extractNetworkDomains(target: string): string[] | undefined {\n  try {\n    if (target.startsWith('http://') || target.startsWith('https://')) {\n      const url = new URL(target);\n      return [url.hostname];\n    }\n  } catch {\n    // Not a URL\n  }\n  return undefined;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAYA,IAAM,mBAA2C;AAAA;AAAA,EAE/C,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,SAAS;AAAA,EACT,eAAe;AAAA,EACf,sBAAsB;AAAA;AAAA,EAGtB,WAAW;AAAA,EACX,WAAW;AAAA;AAAA,EAGX,YAAY;AAAA,EACZ,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,WAAW;AAAA;AAAA,EAGX,aAAa;AAAA,EACb,aAAa;AAAA;AAAA,EAGb,cAAc;AAAA,EACd,OAAO;AAAA,EACP,aAAa;AAAA;AAAA,EAGb,YAAY;AAAA,EACZ,YAAY;AAAA;AAAA,EAGZ,cAAc;AAAA;AAAA,EAGd,gBAAgB;AAAA,EAChB,gBAAgB;AAAA;AAAA,EAGhB,iBAAiB;AACnB;AAMO,SAAS,iBAAiB,UAA0B;AACzD,SAAO,iBAAiB,QAAQ,KAAK,QAAQ,QAAQ;AACvD;AAMO,SAAS,qBAAqB,UAAwC;AAC3E,aAAW,CAAC,MAAM,OAAO,KAAK,OAAO,QAAQ,QAAQ,GAAG;AACtD,QAAI,EAAE,QAAQ,mBAAmB;AAC/B,uBAAiB,IAAI,IAAI;AAAA,IAC3B;AAAA,EACF;AACF;AAUO,SAAS,cAAc,UAAkB,MAAuC;AACrF,QAAM,UAAU,iBAAiB,QAAQ;AAEzC,MAAI,QAAQ,WAAW,QAAQ,GAAG;AAChC,WAAO,OAAO,KAAK,WAAW,KAAK,OAAO,KAAK,UAAU,EAAE;AAAA,EAC7D;AAEA,MAAI,QAAQ,WAAW,OAAO,GAAG;AAC/B,WAAO,OAAO,KAAK,QAAQ,KAAK,QAAQ,KAAK,YAAY,KAAK,aAAa,EAAE;AAAA,EAC/E;AAEA,MAAI,QAAQ,WAAW,UAAU,GAAG;AAClC,WAAO,OAAO,KAAK,OAAO,KAAK,YAAY,KAAK,OAAO,EAAE;AAAA,EAC3D;AAEA,MAAI,QAAQ,WAAW,QAAQ,GAAG;AAChC,WAAO,OAAO,KAAK,MAAM,KAAK,aAAa,KAAK,WAAW,EAAE;AAAA,EAC/D;AAEA,MAAI,QAAQ,WAAW,WAAW,GAAG;AACnC,WAAO,OAAO,KAAK,SAAS,KAAK,SAAS,EAAE;AAAA,EAC9C;AAEA,MAAI,QAAQ,WAAW,UAAU,GAAG;AAClC,WAAO,OAAO,KAAK,eAAe,KAAK,YAAY,KAAK,UAAU,EAAE;AAAA,EACtE;AAGA,MAAI,KAAK,QAAS,QAAO,OAAO,KAAK,OAAO;AAC5C,MAAI,KAAK,KAAM,QAAO,OAAO,KAAK,IAAI;AACtC,MAAI,KAAK,IAAK,QAAO,OAAO,KAAK,GAAG;AAGpC,aAAW,OAAO,OAAO,OAAO,IAAI,GAAG;AACrC,QAAI,OAAO,QAAQ,YAAY,IAAI,SAAS,EAAG,QAAO;AAAA,EACxD;AACA,SAAO;AACT;AAUO,SAAS,sBAAsB,QAAsC;AAC1E,MAAI;AACF,QAAI,OAAO,WAAW,SAAS,KAAK,OAAO,WAAW,UAAU,GAAG;AACjE,YAAM,MAAM,IAAI,IAAI,MAAM;AAC1B,aAAO,CAAC,IAAI,QAAQ;AAAA,IACtB;AAAA,EACF,QAAQ;AAAA,EAER;AACA,SAAO;AACT;","names":[]}

package/dist/adapter-interface/purpose-mapping.mjs

@@ -0,0 +1,89 @@
+// src/adapter-interface/purpose-mapping.ts
+var TOOL_PURPOSE_MAP = {
+  // Shell
+  shell_exec: "shell.exec",
+  run_command: "shell.exec",
+  execute: "shell.exec",
+  terminal_exec: "shell.exec",
+  run_terminal_command: "shell.exec",
+  // File read
+  file_read: "file.read",
+  read_file: "file.read",
+  // File write
+  file_write: "file.write",
+  write_file: "file.write",
+  create_file: "file.write",
+  edit_file: "file.write",
+  // File delete
+  file_delete: "file.delete",
+  delete_file: "file.delete",
+  // Network
+  http_request: "network.request",
+  fetch: "network.request",
+  web_request: "network.request",
+  // Email
+  send_email: "email.send",
+  read_email: "email.read",
+  // Calendar
+  create_event: "calendar.create",
+  // Database
+  query_database: "database.query",
+  write_database: "database.write",
+  // Payment
+  payment_execute: "payment.execute"
+};
+function mapToolToPurpose(toolName) {
+  return TOOL_PURPOSE_MAP[toolName] || `tool.${toolName}`;
+}
+function registerToolMappings(mappings) {
+  for (const [tool, purpose] of Object.entries(mappings)) {
+    if (!(tool in TOOL_PURPOSE_MAP)) {
+      TOOL_PURPOSE_MAP[tool] = purpose;
+    }
+  }
+}
+function extractTarget(toolName, args) {
+  const purpose = mapToolToPurpose(toolName);
+  if (purpose.startsWith("shell.")) {
+    return String(args.command || args.cmd || args.script || "");
+  }
+  if (purpose.startsWith("file.")) {
+    return String(args.path || args.file || args.filename || args.file_path || "");
+  }
+  if (purpose.startsWith("network.")) {
+    return String(args.url || args.endpoint || args.uri || "");
+  }
+  if (purpose.startsWith("email.")) {
+    return String(args.to || args.recipient || args.address || "");
+  }
+  if (purpose.startsWith("database.")) {
+    return String(args.query || args.table || "");
+  }
+  if (purpose.startsWith("payment.")) {
+    return String(args.description || args.merchant || args.amount || "");
+  }
+  if (args.command) return String(args.command);
+  if (args.path) return String(args.path);
+  if (args.url) return String(args.url);
+  for (const val of Object.values(args)) {
+    if (typeof val === "string" && val.length > 0) return val;
+  }
+  return toolName;
+}
+function extractNetworkDomains(target) {
+  try {
+    if (target.startsWith("http://") || target.startsWith("https://")) {
+      const url = new URL(target);
+      return [url.hostname];
+    }
+  } catch {
+  }
+  return void 0;
+}
+export {
+  extractNetworkDomains,
+  extractTarget,
+  mapToolToPurpose,
+  registerToolMappings
+};
+//# sourceMappingURL=purpose-mapping.mjs.map

package/dist/adapter-interface/purpose-mapping.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/adapter-interface/purpose-mapping.ts"],"sourcesContent":["/**\n * Shared purpose mapping utilities for Layer 4 platform adapters.\n *\n * Maps platform-native action names to PDLSS purpose categories.\n * Used by OpenClaw CLI, Cursor, browser, and future adapters.\n */\n\n// -----------------------------------------------------------------------\n// Tool → Purpose mapping\n// -----------------------------------------------------------------------\n\n/** Standard tool name → PDLSS purpose mapping used by all adapters */\nconst TOOL_PURPOSE_MAP: Record<string, string> = {\n  // Shell\n  shell_exec: 'shell.exec',\n  run_command: 'shell.exec',\n  execute: 'shell.exec',\n  terminal_exec: 'shell.exec',\n  run_terminal_command: 'shell.exec',\n\n  // File read\n  file_read: 'file.read',\n  read_file: 'file.read',\n\n  // File write\n  file_write: 'file.write',\n  write_file: 'file.write',\n  create_file: 'file.write',\n  edit_file: 'file.write',\n\n  // File delete\n  file_delete: 'file.delete',\n  delete_file: 'file.delete',\n\n  // Network\n  http_request: 'network.request',\n  fetch: 'network.request',\n  web_request: 'network.request',\n\n  // Email\n  send_email: 'email.send',\n  read_email: 'email.read',\n\n  // Calendar\n  create_event: 'calendar.create',\n\n  // Database\n  query_database: 'database.query',\n  write_database: 'database.write',\n\n  // Payment\n  payment_execute: 'payment.execute',\n};\n\n/**\n * Map a tool/action name to a PDLSS purpose category.\n * Returns `tool.<name>` for unmapped tools (denied by default).\n */\nexport function mapToolToPurpose(toolName: string): string {\n  return TOOL_PURPOSE_MAP[toolName] || `tool.${toolName}`;\n}\n\n/**\n * Register additional tool → purpose mappings (e.g. from a platform adapter).\n * Does not overwrite existing mappings.\n */\nexport function registerToolMappings(mappings: Record<string, string>): void {\n  for (const [tool, purpose] of Object.entries(mappings)) {\n    if (!(tool in TOOL_PURPOSE_MAP)) {\n      TOOL_PURPOSE_MAP[tool] = purpose;\n    }\n  }\n}\n\n// -----------------------------------------------------------------------\n// Target extraction\n// -----------------------------------------------------------------------\n\n/**\n * Extract the meaningful target string from tool arguments.\n * Uses the purpose category to determine which argument field is relevant.\n */\nexport function extractTarget(toolName: string, args: Record<string, unknown>): string {\n  const purpose = mapToolToPurpose(toolName);\n\n  if (purpose.startsWith('shell.')) {\n    return String(args.command || args.cmd || args.script || '');\n  }\n\n  if (purpose.startsWith('file.')) {\n    return String(args.path || args.file || args.filename || args.file_path || '');\n  }\n\n  if (purpose.startsWith('network.')) {\n    return String(args.url || args.endpoint || args.uri || '');\n  }\n\n  if (purpose.startsWith('email.')) {\n    return String(args.to || args.recipient || args.address || '');\n  }\n\n  if (purpose.startsWith('database.')) {\n    return String(args.query || args.table || '');\n  }\n\n  if (purpose.startsWith('payment.')) {\n    return String(args.description || args.merchant || args.amount || '');\n  }\n\n  // Fallback: try common field names\n  if (args.command) return String(args.command);\n  if (args.path) return String(args.path);\n  if (args.url) return String(args.url);\n\n  // Default: use first non-empty string argument or tool name\n  for (const val of Object.values(args)) {\n    if (typeof val === 'string' && val.length > 0) return val;\n  }\n  return toolName;\n}\n\n// -----------------------------------------------------------------------\n// Network domain extraction\n// -----------------------------------------------------------------------\n\n/**\n * Extract network domains from a URL target.\n * Returns undefined if the target is not a URL.\n */\nexport function extractNetworkDomains(target: string): string[] | undefined {\n  try {\n    if (target.startsWith('http://') || target.startsWith('https://')) {\n      const url = new URL(target);\n      return [url.hostname];\n    }\n  } catch {\n    // Not a URL\n  }\n  return undefined;\n}\n"],"mappings":";AAYA,IAAM,mBAA2C;AAAA;AAAA,EAE/C,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,SAAS;AAAA,EACT,eAAe;AAAA,EACf,sBAAsB;AAAA;AAAA,EAGtB,WAAW;AAAA,EACX,WAAW;AAAA;AAAA,EAGX,YAAY;AAAA,EACZ,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,WAAW;AAAA;AAAA,EAGX,aAAa;AAAA,EACb,aAAa;AAAA;AAAA,EAGb,cAAc;AAAA,EACd,OAAO;AAAA,EACP,aAAa;AAAA;AAAA,EAGb,YAAY;AAAA,EACZ,YAAY;AAAA;AAAA,EAGZ,cAAc;AAAA;AAAA,EAGd,gBAAgB;AAAA,EAChB,gBAAgB;AAAA;AAAA,EAGhB,iBAAiB;AACnB;AAMO,SAAS,iBAAiB,UAA0B;AACzD,SAAO,iBAAiB,QAAQ,KAAK,QAAQ,QAAQ;AACvD;AAMO,SAAS,qBAAqB,UAAwC;AAC3E,aAAW,CAAC,MAAM,OAAO,KAAK,OAAO,QAAQ,QAAQ,GAAG;AACtD,QAAI,EAAE,QAAQ,mBAAmB;AAC/B,uBAAiB,IAAI,IAAI;AAAA,IAC3B;AAAA,EACF;AACF;AAUO,SAAS,cAAc,UAAkB,MAAuC;AACrF,QAAM,UAAU,iBAAiB,QAAQ;AAEzC,MAAI,QAAQ,WAAW,QAAQ,GAAG;AAChC,WAAO,OAAO,KAAK,WAAW,KAAK,OAAO,KAAK,UAAU,EAAE;AAAA,EAC7D;AAEA,MAAI,QAAQ,WAAW,OAAO,GAAG;AAC/B,WAAO,OAAO,KAAK,QAAQ,KAAK,QAAQ,KAAK,YAAY,KAAK,aAAa,EAAE;AAAA,EAC/E;AAEA,MAAI,QAAQ,WAAW,UAAU,GAAG;AAClC,WAAO,OAAO,KAAK,OAAO,KAAK,YAAY,KAAK,OAAO,EAAE;AAAA,EAC3D;AAEA,MAAI,QAAQ,WAAW,QAAQ,GAAG;AAChC,WAAO,OAAO,KAAK,MAAM,KAAK,aAAa,KAAK,WAAW,EAAE;AAAA,EAC/D;AAEA,MAAI,QAAQ,WAAW,WAAW,GAAG;AACnC,WAAO,OAAO,KAAK,SAAS,KAAK,SAAS,EAAE;AAAA,EAC9C;AAEA,MAAI,QAAQ,WAAW,UAAU,GAAG;AAClC,WAAO,OAAO,KAAK,eAAe,KAAK,YAAY,KAAK,UAAU,EAAE;AAAA,EACtE;AAGA,MAAI,KAAK,QAAS,QAAO,OAAO,KAAK,OAAO;AAC5C,MAAI,KAAK,KAAM,QAAO,OAAO,KAAK,IAAI;AACtC,MAAI,KAAK,IAAK,QAAO,OAAO,KAAK,GAAG;AAGpC,aAAW,OAAO,OAAO,OAAO,IAAI,GAAG;AACrC,QAAI,OAAO,QAAQ,YAAY,IAAI,SAAS,EAAG,QAAO;AAAA,EACxD;AACA,SAAO;AACT;AAUO,SAAS,sBAAsB,QAAsC;AAC1E,MAAI;AACF,QAAI,OAAO,WAAW,SAAS,KAAK,OAAO,WAAW,UAAU,GAAG;AACjE,YAAM,MAAM,IAAI,IAAI,MAAM;AAC1B,aAAO,CAAC,IAAI,QAAQ;AAAA,IACtB;AAAA,EACF,QAAQ;AAAA,EAER;AACA,SAAO;AACT;","names":[]}

package/dist/adapters/express.d.mts

@@ -1,3 +1,3 @@
 import 'express';
-import '../types-CS6v75-d.mjs';
-export { c as createMiddleware, a as extractAstraSyncCredentials, r as requireAccess, v as verifyOnly } from '../express-DUDYpvNZ.mjs';
+import '../types-Bf8pML07.mjs';
+export { c as createMiddleware, a as extractAstraSyncCredentials, r as requireAccess, v as verifyOnly } from '../express-Cp4eg77F.mjs';

package/dist/adapters/express.d.ts

@@ -1,3 +1,3 @@
 import 'express';
-import '../types-CS6v75-d.js';
-export { c as createMiddleware, a as extractAstraSyncCredentials, r as requireAccess, v as verifyOnly } from '../express-BhD3mWsL.js';
+import '../types-Bf8pML07.js';
+export { c as createMiddleware, a as extractAstraSyncCredentials, r as requireAccess, v as verifyOnly } from '../express-DIEyq1Tz.js';

package/dist/adapters/express.js

@@ -175,6 +175,7 @@ async function callVerifyAccessAPI(config, request) {
   if (requestData.enableRuntimeChallenge) body.enableRuntimeChallenge = requestData.enableRuntimeChallenge;
   if (requestData.createSession) body.createSession = requestData.createSession;
   if (requestData.counterpartyType) body.counterpartyType = requestData.counterpartyType;
+  if (requestData.counterpartyUrl) body.counterpartyUrl = requestData.counterpartyUrl;
   if (requestData.runtimeChallengeOptions) body.runtimeChallengeOptions = requestData.runtimeChallengeOptions;
   const headers = {
     "Content-Type": "application/json",
@@ -222,10 +223,17 @@ async function verify(config, request) {
       return cached;
     }
   }
+  const enrichedRequest = { ...request };
+  if (!enrichedRequest.counterpartyUrl && mergedConfig.counterpartyUrl) {
+    enrichedRequest.counterpartyUrl = mergedConfig.counterpartyUrl;
+  }
+  if (!enrichedRequest.counterpartyType && mergedConfig.counterpartyType) {
+    enrichedRequest.counterpartyType = mergedConfig.counterpartyType;
+  }
   if (mergedConfig.debug) {
     console.log("[VerificationGateway] Calling verify-access API");
   }
-  const apiResponse = await callVerifyAccessAPI(mergedConfig, request);
+  const apiResponse = await callVerifyAccessAPI(mergedConfig, enrichedRequest);
   if (!apiResponse.success) {
     return createGuidanceResponse(mergedConfig, apiResponse.error);
   }
@@ -241,7 +249,11 @@ async function verify(config, request) {
         registrationUrl: `${mergedConfig.apiBaseUrl?.replace("/api", "")}/register`,
         documentationUrl: `${mergedConfig.apiBaseUrl?.replace("/api", "")}/docs/pdlss`
       },
-      verifiedAt: /* @__PURE__ */ new Date()
+      verifiedAt: /* @__PURE__ */ new Date(),
+      // Extract sessionId so decisions can be recorded for denials too
+      sessionId: apiResponse.sessionId,
+      recommendation: apiResponse.recommendation,
+      recommendationReasons: apiResponse.recommendationReasons
     };
     return result2;
   }
@@ -325,6 +337,16 @@ async function verify(config, request) {
   }
   return result;
 }
+async function recordDecision(config, sessionId, decision, reason) {
+  const headers = { "Content-Type": "application/json" };
+  if (config.apiKey) headers["X-API-Key"] = config.apiKey;
+  await fetch(`${config.apiBaseUrl}/agents/verify-access/${sessionId}/decision`, {
+    method: "POST",
+    headers,
+    body: JSON.stringify({ decision, reason })
+  }).catch(() => {
+  });
+}
 
 // src/transport/http.ts
 var HEADER_PREFIX = "X-Astra-";
@@ -428,6 +450,7 @@ function createMiddleware(options) {
     extractPurpose: customExtractPurpose,
     skipPaths = [],
     onDenied = defaultOnDenied,
+    recordDecisions,
     ...config
   } = options;
   return async (req, res, next) => {
@@ -461,16 +484,26 @@ function createMiddleware(options) {
         return;
       }
       const purpose = customExtractPurpose ? customExtractPurpose(req) : defaultExtractPurpose(req);
+      const counterpartyUrl = config.counterpartyUrl || `${req.protocol}://${req.get("host")}`;
+      const shouldRecordDecisions = recordDecisions !== false;
       const result = await verify(config, {
         credentials,
         purpose,
         action: req.method.toLowerCase(),
         resource: req.path,
         clientIp: req.ip,
-        userAgent: req.headers["user-agent"]
+        userAgent: req.headers["user-agent"],
+        createSession: shouldRecordDecisions,
+        counterpartyUrl,
+        counterpartyType: config.counterpartyType || "api"
       });
       req.agentVerification = result;
+      const sessionId = result.sessionId;
       if (!hasMinimumAccess(result.accessLevel, routeConfig.minAccessLevel)) {
+        if (shouldRecordDecisions && sessionId) {
+          recordDecision(config, sessionId, "denied", result.denialReasons?.[0]).catch(() => {
+          });
+        }
         onDenied(result, req, res);
         return;
       }
@@ -479,10 +512,18 @@ function createMiddleware(options) {
           result.denialReasons = [
             `Trust score ${result.agent.trustScore} is below required ${routeConfig.minTrustScore}`
           ];
+          if (shouldRecordDecisions && sessionId) {
+            recordDecision(config, sessionId, "denied", result.denialReasons[0]).catch(() => {
+            });
+          }
           onDenied(result, req, res);
           return;
         }
       }
+      if (shouldRecordDecisions && sessionId) {
+        recordDecision(config, sessionId, "granted").catch(() => {
+        });
+      }
       next();
     } catch (error) {
       console.error("[VerificationGateway] Middleware error:", error);
@@ -493,17 +534,13 @@ function createMiddleware(options) {
 function requireAccess(minAccessLevel, options) {
   return createMiddleware({
     ...options,
-    routes: [
-      { pattern: "*", method: "*", minAccessLevel }
-    ]
+    routes: [{ pattern: "*", method: "*", minAccessLevel }]
   });
 }
 function verifyOnly(options) {
   return createMiddleware({
     ...options,
-    routes: [
-      { pattern: "*", method: "*", minAccessLevel: "none" }
-    ]
+    routes: [{ pattern: "*", method: "*", minAccessLevel: "none" }]
   });
 }
 // Annotate the CommonJS export names for ESM import in node: