@astrasyncai/verification-gateway 1.1.0 → 2.0.1

package/dist/browser/browser-adapter.mjs

@@ -0,0 +1,269 @@
+// src/adapter-interface/interface.ts
+var ADAPTER_INTERFACE_VERSION = 1;
+
+// src/adapter-interface/purpose-mapping.ts
+var TOOL_PURPOSE_MAP = {
+  // Shell
+  shell_exec: "shell.exec",
+  run_command: "shell.exec",
+  execute: "shell.exec",
+  terminal_exec: "shell.exec",
+  run_terminal_command: "shell.exec",
+  // File read
+  file_read: "file.read",
+  read_file: "file.read",
+  // File write
+  file_write: "file.write",
+  write_file: "file.write",
+  create_file: "file.write",
+  edit_file: "file.write",
+  // File delete
+  file_delete: "file.delete",
+  delete_file: "file.delete",
+  // Network
+  http_request: "network.request",
+  fetch: "network.request",
+  web_request: "network.request",
+  // Email
+  send_email: "email.send",
+  read_email: "email.read",
+  // Calendar
+  create_event: "calendar.create",
+  // Database
+  query_database: "database.query",
+  write_database: "database.write",
+  // Payment
+  payment_execute: "payment.execute"
+};
+function mapToolToPurpose(toolName) {
+  return TOOL_PURPOSE_MAP[toolName] || `tool.${toolName}`;
+}
+function extractTarget(toolName, args) {
+  const purpose = mapToolToPurpose(toolName);
+  if (purpose.startsWith("shell.")) {
+    return String(args.command || args.cmd || args.script || "");
+  }
+  if (purpose.startsWith("file.")) {
+    return String(args.path || args.file || args.filename || args.file_path || "");
+  }
+  if (purpose.startsWith("network.")) {
+    return String(args.url || args.endpoint || args.uri || "");
+  }
+  if (purpose.startsWith("email.")) {
+    return String(args.to || args.recipient || args.address || "");
+  }
+  if (purpose.startsWith("database.")) {
+    return String(args.query || args.table || "");
+  }
+  if (purpose.startsWith("payment.")) {
+    return String(args.description || args.merchant || args.amount || "");
+  }
+  if (args.command) return String(args.command);
+  if (args.path) return String(args.path);
+  if (args.url) return String(args.url);
+  for (const val of Object.values(args)) {
+    if (typeof val === "string" && val.length > 0) return val;
+  }
+  return toolName;
+}
+function extractNetworkDomains(target) {
+  try {
+    if (target.startsWith("http://") || target.startsWith("https://")) {
+      const url = new URL(target);
+      return [url.hostname];
+    }
+  } catch {
+  }
+  return void 0;
+}
+
+// src/browser/browser-adapter.ts
+function mapBrowserActionToPurpose(details) {
+  const url = details.url;
+  if (details.method === "POST") {
+    if (/mail|email|smtp/i.test(url)) {
+      return { toolName: "send_email", args: { url, to: url } };
+    }
+    if (/pay|checkout|stripe|payment/i.test(url)) {
+      return { toolName: "payment_execute", args: { url, description: url } };
+    }
+    return { toolName: "http_request", args: { url } };
+  }
+  if (details.type === "main_frame") {
+    return { toolName: "http_request", args: { url } };
+  }
+  return { toolName: "http_request", args: { url } };
+}
+var OpenClawBrowserAdapter = class {
+  constructor(options) {
+    this.interfaceVersion = ADAPTER_INTERFACE_VERSION;
+    this.requestListener = null;
+    this.navigationListener = null;
+    this.messageListener = null;
+    this._isRunning = false;
+    this.options = {
+      urlPatterns: options?.urlPatterns ?? ["<all_urls>"],
+      requestTypes: options?.requestTypes ?? ["main_frame", "xmlhttprequest", "sub_frame"],
+      onApprovalRequired: options?.onApprovalRequired ?? (async () => false),
+      browserAPI: options?.browserAPI
+    };
+  }
+  get isRunning() {
+    return this._isRunning;
+  }
+  async initialize(config) {
+    this.gateway = config.gateway;
+    if (config.adapterOptions.browserAPI) {
+      this.browserAPI = config.adapterOptions.browserAPI;
+    } else if (this.options.browserAPI) {
+      this.browserAPI = this.options.browserAPI;
+    }
+    if (!this.browserAPI) {
+      throw new Error("OpenClawBrowserAdapter requires browser extension API \u2014 pass via adapterOptions.browserAPI");
+    }
+    this.requestListener = (details) => {
+      return this.handleWebRequest(details);
+    };
+    this.browserAPI.webRequest.onBeforeRequest.addListener(
+      this.requestListener,
+      {
+        urls: this.options.urlPatterns,
+        types: this.options.requestTypes
+      },
+      ["blocking"]
+    );
+    this.navigationListener = (details) => {
+      this.handleNavigation(details);
+    };
+    this.browserAPI.webNavigation.onBeforeNavigate.addListener(this.navigationListener);
+    this.messageListener = (message, _sender, sendResponse) => {
+      const msg = message;
+      if (msg?.type === "astrasync-evaluate") {
+        this.handleContentScriptAction(msg.action).then(sendResponse);
+        return true;
+      }
+    };
+    this.browserAPI.runtime.onMessage.addListener(this.messageListener);
+    this._isRunning = true;
+  }
+  async shutdown() {
+    if (this.requestListener) {
+      this.browserAPI.webRequest.onBeforeRequest.removeListener(this.requestListener);
+      this.requestListener = null;
+    }
+    if (this.navigationListener) {
+      this.browserAPI.webNavigation.onBeforeNavigate.removeListener(this.navigationListener);
+      this.navigationListener = null;
+    }
+    if (this.messageListener) {
+      this.browserAPI.runtime.onMessage.removeListener(this.messageListener);
+      this.messageListener = null;
+    }
+    this._isRunning = false;
+  }
+  async interceptAction(action) {
+    const raw = action.raw;
+    if (!raw) {
+      return { intercepted: false, skipReason: "No action data" };
+    }
+    const context = this.extractContext(action);
+    return { intercepted: true, context };
+  }
+  extractContext(action) {
+    const raw = action.raw;
+    const { toolName, args } = mapBrowserActionToPurpose(raw);
+    const purpose = mapToolToPurpose(toolName);
+    const target = extractTarget(toolName, args);
+    const networkAccess = extractNetworkDomains(target);
+    return {
+      purpose,
+      action: toolName,
+      target,
+      ...networkAccess && { networkAccess }
+    };
+  }
+  async enforceDecision(decision) {
+    if (decision.recommendation === "DENY" && this.browserAPI.notifications) {
+      this.browserAPI.notifications.create(`astrasync-${Date.now()}`, {
+        type: "basic",
+        title: "AstraSync Local Guard",
+        message: `Blocked: ${decision.reason}`
+      });
+    }
+  }
+  // =====================================================================
+  // Internal handlers
+  // =====================================================================
+  handleWebRequest(details) {
+    const action = {
+      raw: details,
+      platform: "browser",
+      timestamp: /* @__PURE__ */ new Date()
+    };
+    const context = this.extractContext(action);
+    const decision = this.evaluateSync(context);
+    if (decision.recommendation === "DENY") {
+      this.enforceDecision(decision);
+      return { cancel: true };
+    }
+    if (decision.recommendation === "MANUAL_REVIEW") {
+      this.enforceDecision({
+        ...decision,
+        recommendation: "DENY",
+        reason: `Requires approval (auto-blocked in browser): ${decision.reason}`
+      });
+      return { cancel: true };
+    }
+    return void 0;
+  }
+  handleNavigation(details) {
+    const action = {
+      raw: {
+        requestId: `nav-${details.tabId}-${details.frameId}`,
+        url: details.url,
+        method: "GET",
+        type: "main_frame",
+        tabId: details.tabId
+      },
+      platform: "browser",
+      timestamp: /* @__PURE__ */ new Date()
+    };
+    this.interceptAction(action).then(async (result) => {
+      if (result.intercepted && result.context) {
+        await this.gateway.evaluate(result.context);
+      }
+    });
+  }
+  async handleContentScriptAction(action) {
+    const interception = await this.interceptAction(action);
+    if (!interception.intercepted || !interception.context) {
+      return { recommendation: "ALLOW", reason: "Not intercepted" };
+    }
+    return this.gateway.evaluate(interception.context);
+  }
+  /**
+   * Synchronous evaluation using the gateway's local evaluator.
+   * Falls back to ALLOW if async-only (online mode).
+   */
+  evaluateSync(context) {
+    const gw = this.gateway;
+    if (gw.evaluator) {
+      let decision = gw.evaluator.evaluate(context);
+      if (gw.posture === "passive" && decision.recommendation !== "ALLOW") {
+        decision = {
+          ...decision,
+          recommendation: "ALLOW",
+          reason: `[PASSIVE] Would have been ${decision.recommendation}: ${decision.reason}`
+        };
+      }
+      return decision;
+    }
+    return { recommendation: "ALLOW", reason: "Async-only mode \u2014 allowed by default" };
+  }
+};
+var BrowserAdapter = OpenClawBrowserAdapter;
+export {
+  BrowserAdapter,
+  OpenClawBrowserAdapter
+};
+//# sourceMappingURL=browser-adapter.mjs.map

package/dist/browser/browser-adapter.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/adapter-interface/interface.ts","../../src/adapter-interface/purpose-mapping.ts","../../src/browser/browser-adapter.ts"],"sourcesContent":["/**\n * PlatformAdapter Interface\n *\n * The contract that Layer 4 platform adapters implement.\n * Agent-side interception: governs what agents are allowed to do before they do it.\n *\n * Each adapter is 200-500 lines of platform-specific code.\n * All verification logic lives in the gateway — adapters just translate\n * between the platform's world and AstraSync's world.\n */\n\nimport type { AstraSyncGateway } from '../gateway/gateway';\nimport type { PDLSSContext, VerificationDecision, AgentAction, InterceptResult } from '../gateway/types';\n\nexport interface AdapterConfig {\n  /** The AstraSyncGateway instance (handles mode routing) */\n  gateway: AstraSyncGateway;\n  /** Platform-specific configuration */\n  adapterOptions: Record<string, unknown>;\n}\n\nexport interface PlatformAdapter {\n  /**\n   * Interface version for compatibility checking.\n   * Current version: 1.\n   */\n  readonly interfaceVersion: number;\n\n  /**\n   * Platform-specific initialization.\n   * Load config, register hooks, establish connections.\n   */\n  initialize(config: AdapterConfig): Promise<void>;\n\n  /**\n   * Graceful shutdown.\n   * Drain in-flight verifications, deregister hooks, close connections.\n   */\n  shutdown(): Promise<void>;\n\n  /**\n   * Intercept an agent action before execution.\n   *\n   * How this works depends on the platform:\n   * - CLI adapter: proxy server captures outbound request\n   * - Browser adapter: content script intercepts DOM interaction\n   * - Express: middleware captures inbound request\n   */\n  interceptAction(action: AgentAction): Promise<InterceptResult>;\n\n  /**\n   * Extract PDLSS-compatible context from a platform-specific action.\n   * Maps platform-native action format to the universal PDLSSContext.\n   */\n  extractContext(action: AgentAction): PDLSSContext;\n\n  /**\n   * Enforce the verification decision in a platform-specific way.\n   *\n   * How this works depends on the platform:\n   * - CLI: block command / allow command / prompt for approval\n   * - Browser: block navigation / show confirmation dialog\n   * - Express: return 403 / pass through / inject headers\n   */\n  enforceDecision(decision: VerificationDecision): Promise<void>;\n}\n\n/**\n * Current adapter interface version.\n */\nexport const ADAPTER_INTERFACE_VERSION = 1;\n\n/**\n * Check if an adapter is compatible with the current interface version.\n */\nexport function isCompatibleAdapter(adapter: PlatformAdapter): boolean {\n  return adapter.interfaceVersion === ADAPTER_INTERFACE_VERSION;\n}\n","/**\n * Shared purpose mapping utilities for Layer 4 platform adapters.\n *\n * Maps platform-native action names to PDLSS purpose categories.\n * Used by OpenClaw CLI, Cursor, browser, and future adapters.\n */\n\n// -----------------------------------------------------------------------\n// Tool → Purpose mapping\n// -----------------------------------------------------------------------\n\n/** Standard tool name → PDLSS purpose mapping used by all adapters */\nconst TOOL_PURPOSE_MAP: Record<string, string> = {\n  // Shell\n  shell_exec: 'shell.exec',\n  run_command: 'shell.exec',\n  execute: 'shell.exec',\n  terminal_exec: 'shell.exec',\n  run_terminal_command: 'shell.exec',\n\n  // File read\n  file_read: 'file.read',\n  read_file: 'file.read',\n\n  // File write\n  file_write: 'file.write',\n  write_file: 'file.write',\n  create_file: 'file.write',\n  edit_file: 'file.write',\n\n  // File delete\n  file_delete: 'file.delete',\n  delete_file: 'file.delete',\n\n  // Network\n  http_request: 'network.request',\n  fetch: 'network.request',\n  web_request: 'network.request',\n\n  // Email\n  send_email: 'email.send',\n  read_email: 'email.read',\n\n  // Calendar\n  create_event: 'calendar.create',\n\n  // Database\n  query_database: 'database.query',\n  write_database: 'database.write',\n\n  // Payment\n  payment_execute: 'payment.execute',\n};\n\n/**\n * Map a tool/action name to a PDLSS purpose category.\n * Returns `tool.<name>` for unmapped tools (denied by default).\n */\nexport function mapToolToPurpose(toolName: string): string {\n  return TOOL_PURPOSE_MAP[toolName] || `tool.${toolName}`;\n}\n\n/**\n * Register additional tool → purpose mappings (e.g. from a platform adapter).\n * Does not overwrite existing mappings.\n */\nexport function registerToolMappings(mappings: Record<string, string>): void {\n  for (const [tool, purpose] of Object.entries(mappings)) {\n    if (!(tool in TOOL_PURPOSE_MAP)) {\n      TOOL_PURPOSE_MAP[tool] = purpose;\n    }\n  }\n}\n\n// -----------------------------------------------------------------------\n// Target extraction\n// -----------------------------------------------------------------------\n\n/**\n * Extract the meaningful target string from tool arguments.\n * Uses the purpose category to determine which argument field is relevant.\n */\nexport function extractTarget(toolName: string, args: Record<string, unknown>): string {\n  const purpose = mapToolToPurpose(toolName);\n\n  if (purpose.startsWith('shell.')) {\n    return String(args.command || args.cmd || args.script || '');\n  }\n\n  if (purpose.startsWith('file.')) {\n    return String(args.path || args.file || args.filename || args.file_path || '');\n  }\n\n  if (purpose.startsWith('network.')) {\n    return String(args.url || args.endpoint || args.uri || '');\n  }\n\n  if (purpose.startsWith('email.')) {\n    return String(args.to || args.recipient || args.address || '');\n  }\n\n  if (purpose.startsWith('database.')) {\n    return String(args.query || args.table || '');\n  }\n\n  if (purpose.startsWith('payment.')) {\n    return String(args.description || args.merchant || args.amount || '');\n  }\n\n  // Fallback: try common field names\n  if (args.command) return String(args.command);\n  if (args.path) return String(args.path);\n  if (args.url) return String(args.url);\n\n  // Default: use first non-empty string argument or tool name\n  for (const val of Object.values(args)) {\n    if (typeof val === 'string' && val.length > 0) return val;\n  }\n  return toolName;\n}\n\n// -----------------------------------------------------------------------\n// Network domain extraction\n// -----------------------------------------------------------------------\n\n/**\n * Extract network domains from a URL target.\n * Returns undefined if the target is not a URL.\n */\nexport function extractNetworkDomains(target: string): string[] | undefined {\n  try {\n    if (target.startsWith('http://') || target.startsWith('https://')) {\n      const url = new URL(target);\n      return [url.hostname];\n    }\n  } catch {\n    // Not a URL\n  }\n  return undefined;\n}\n","/**\n * @astrasyncai/adapter-openclaw-browser\n *\n * Layer 4 adapter for browser-based AI agents (e.g. OpenClaw browser extension).\n * Intercepts page navigation, form submissions, and network requests\n * made by the agent in the browser DOM.\n *\n * The adapter does NOT depend on chrome types. The browser extension\n * passes the chrome/browser API via a minimal interface at initialize() time.\n *\n * ~300 lines — thin, disposable, platform-specific.\n */\n\nimport type { PlatformAdapter, AdapterConfig } from '../adapter-interface/interface';\nimport type { PDLSSContext, VerificationDecision, AgentAction, InterceptResult } from '../gateway/types';\nimport type { AstraSyncGateway } from '../gateway/gateway';\nimport { ADAPTER_INTERFACE_VERSION } from '../adapter-interface/interface';\nimport { mapToolToPurpose, extractTarget, extractNetworkDomains } from '../adapter-interface/purpose-mapping';\n\n// -----------------------------------------------------------------------\n// Minimal browser extension type stubs (injected at runtime)\n// -----------------------------------------------------------------------\n\nexport interface WebRequestDetails {\n  requestId: string;\n  url: string;\n  method: string;\n  type: string; // 'main_frame' | 'sub_frame' | 'xmlhttprequest' | 'script' etc.\n  tabId: number;\n  initiator?: string;\n  documentUrl?: string;\n}\n\nexport interface BlockingResponse {\n  cancel?: boolean;\n  redirectUrl?: string;\n}\n\nexport interface RequestFilter {\n  urls: string[];\n  types?: string[];\n}\n\nexport interface BrowserExtensionAPI {\n  webRequest: {\n    onBeforeRequest: {\n      addListener(\n        callback: (details: WebRequestDetails) => BlockingResponse | void,\n        filter: RequestFilter,\n        extraInfoSpec?: string[],\n      ): void;\n      removeListener(callback: (details: WebRequestDetails) => BlockingResponse | void): void;\n    };\n  };\n  webNavigation: {\n    onBeforeNavigate: {\n      addListener(callback: (details: NavigationDetails) => void): void;\n      removeListener(callback: (details: NavigationDetails) => void): void;\n    };\n  };\n  runtime: {\n    sendMessage(message: unknown): Promise<unknown>;\n    onMessage: {\n      addListener(\n        callback: (message: unknown, sender: unknown, sendResponse: (response: unknown) => void) => boolean | void,\n      ): void;\n      removeListener(callback: (...args: unknown[]) => void): void;\n    };\n  };\n  notifications?: {\n    create(id: string, options: { type: string; title: string; message: string; iconUrl?: string }): void;\n  };\n}\n\nexport interface NavigationDetails {\n  tabId: number;\n  url: string;\n  frameId: number;\n}\n\n// -----------------------------------------------------------------------\n// Configuration\n// -----------------------------------------------------------------------\n\nexport interface OpenClawBrowserAdapterOptions {\n  /** The browser extension API object (chrome or browser) */\n  browserAPI: BrowserExtensionAPI;\n  /** URL patterns to intercept (default: ['<all_urls>']) */\n  urlPatterns?: string[];\n  /** Request types to intercept (default: main_frame, xmlhttprequest, sub_frame) */\n  requestTypes?: string[];\n  /** Callback for MANUAL_REVIEW decisions */\n  onApprovalRequired?: (context: PDLSSContext, decision: VerificationDecision) => Promise<boolean>;\n}\n\n// -----------------------------------------------------------------------\n// Purpose mapping for browser actions\n// -----------------------------------------------------------------------\n\nfunction mapBrowserActionToPurpose(details: WebRequestDetails): { toolName: string; args: Record<string, unknown> } {\n  const url = details.url;\n\n  // Form submissions\n  if (details.method === 'POST') {\n    // Check for email-related URLs\n    if (/mail|email|smtp/i.test(url)) {\n      return { toolName: 'send_email', args: { url, to: url } };\n    }\n    // Check for payment-related URLs\n    if (/pay|checkout|stripe|payment/i.test(url)) {\n      return { toolName: 'payment_execute', args: { url, description: url } };\n    }\n    // Generic form submission\n    return { toolName: 'http_request', args: { url } };\n  }\n\n  // Navigation\n  if (details.type === 'main_frame') {\n    return { toolName: 'http_request', args: { url } };\n  }\n\n  // XHR / fetch requests\n  return { toolName: 'http_request', args: { url } };\n}\n\n// -----------------------------------------------------------------------\n// Adapter implementation\n// -----------------------------------------------------------------------\n\nexport class OpenClawBrowserAdapter implements PlatformAdapter {\n  readonly interfaceVersion = ADAPTER_INTERFACE_VERSION;\n\n  private gateway!: AstraSyncGateway;\n  private browserAPI!: BrowserExtensionAPI;\n  private options: Required<Omit<OpenClawBrowserAdapterOptions, 'browserAPI'>> & { browserAPI?: BrowserExtensionAPI };\n  private requestListener: ((details: WebRequestDetails) => BlockingResponse | void) | null = null;\n  private navigationListener: ((details: NavigationDetails) => void) | null = null;\n  private messageListener: ((message: unknown, sender: unknown, sendResponse: (response: unknown) => void) => boolean | void) | null = null;\n  private _isRunning = false;\n\n  constructor(options?: Partial<OpenClawBrowserAdapterOptions>) {\n    this.options = {\n      urlPatterns: options?.urlPatterns ?? ['<all_urls>'],\n      requestTypes: options?.requestTypes ?? ['main_frame', 'xmlhttprequest', 'sub_frame'],\n      onApprovalRequired: options?.onApprovalRequired ?? (async () => false),\n      browserAPI: options?.browserAPI,\n    };\n  }\n\n  get isRunning(): boolean {\n    return this._isRunning;\n  }\n\n  async initialize(config: AdapterConfig): Promise<void> {\n    this.gateway = config.gateway as AstraSyncGateway;\n\n    if (config.adapterOptions.browserAPI) {\n      this.browserAPI = config.adapterOptions.browserAPI as BrowserExtensionAPI;\n    } else if (this.options.browserAPI) {\n      this.browserAPI = this.options.browserAPI;\n    }\n\n    if (!this.browserAPI) {\n      throw new Error('OpenClawBrowserAdapter requires browser extension API — pass via adapterOptions.browserAPI');\n    }\n\n    // Register web request interceptor\n    this.requestListener = (details: WebRequestDetails): BlockingResponse | void => {\n      return this.handleWebRequest(details);\n    };\n\n    this.browserAPI.webRequest.onBeforeRequest.addListener(\n      this.requestListener,\n      {\n        urls: this.options.urlPatterns,\n        types: this.options.requestTypes,\n      },\n      ['blocking'],\n    );\n\n    // Register navigation interceptor\n    this.navigationListener = (details: NavigationDetails): void => {\n      this.handleNavigation(details);\n    };\n\n    this.browserAPI.webNavigation.onBeforeNavigate.addListener(this.navigationListener);\n\n    // Listen for messages from content scripts\n    this.messageListener = (message: unknown, _sender: unknown, sendResponse: (response: unknown) => void): boolean | void => {\n      const msg = message as { type?: string; action?: AgentAction };\n      if (msg?.type === 'astrasync-evaluate') {\n        this.handleContentScriptAction(msg.action!).then(sendResponse);\n        return true; // async response\n      }\n    };\n\n    this.browserAPI.runtime.onMessage.addListener(this.messageListener as (message: unknown, sender: unknown, sendResponse: (response: unknown) => void) => void);\n\n    this._isRunning = true;\n  }\n\n  async shutdown(): Promise<void> {\n    if (this.requestListener) {\n      this.browserAPI.webRequest.onBeforeRequest.removeListener(this.requestListener);\n      this.requestListener = null;\n    }\n    if (this.navigationListener) {\n      this.browserAPI.webNavigation.onBeforeNavigate.removeListener(this.navigationListener);\n      this.navigationListener = null;\n    }\n    if (this.messageListener) {\n      this.browserAPI.runtime.onMessage.removeListener(this.messageListener as (...args: unknown[]) => void);\n      this.messageListener = null;\n    }\n    this._isRunning = false;\n  }\n\n  async interceptAction(action: AgentAction): Promise<InterceptResult> {\n    const raw = action.raw as WebRequestDetails | { type: string };\n\n    if (!raw) {\n      return { intercepted: false, skipReason: 'No action data' };\n    }\n\n    const context = this.extractContext(action);\n    return { intercepted: true, context };\n  }\n\n  extractContext(action: AgentAction): PDLSSContext {\n    const raw = action.raw as WebRequestDetails;\n\n    const { toolName, args } = mapBrowserActionToPurpose(raw);\n    const purpose = mapToolToPurpose(toolName);\n    const target = extractTarget(toolName, args);\n    const networkAccess = extractNetworkDomains(target);\n\n    return {\n      purpose,\n      action: toolName,\n      target,\n      ...(networkAccess && { networkAccess }),\n    };\n  }\n\n  async enforceDecision(decision: VerificationDecision): Promise<void> {\n    if (decision.recommendation === 'DENY' && this.browserAPI.notifications) {\n      this.browserAPI.notifications.create(`astrasync-${Date.now()}`, {\n        type: 'basic',\n        title: 'AstraSync Local Guard',\n        message: `Blocked: ${decision.reason}`,\n      });\n    }\n  }\n\n  // =====================================================================\n  // Internal handlers\n  // =====================================================================\n\n  private handleWebRequest(details: WebRequestDetails): BlockingResponse | void {\n    const action: AgentAction = {\n      raw: details,\n      platform: 'browser',\n      timestamp: new Date(),\n    };\n\n    const context = this.extractContext(action);\n\n    // Synchronous evaluation — browser webRequest requires sync return.\n    // We use a cached/pre-computed decision if available, otherwise allow.\n    // The gateway's evaluate() is async, so for blocking we need the\n    // synchronous local evaluator path.\n    const decision = this.evaluateSync(context);\n\n    if (decision.recommendation === 'DENY') {\n      this.enforceDecision(decision);\n      return { cancel: true };\n    }\n\n    if (decision.recommendation === 'MANUAL_REVIEW') {\n      // Can't show async prompt in synchronous handler — block by default\n      this.enforceDecision({\n        ...decision,\n        recommendation: 'DENY',\n        reason: `Requires approval (auto-blocked in browser): ${decision.reason}`,\n      });\n      return { cancel: true };\n    }\n\n    // ALLOW — don't cancel\n    return undefined;\n  }\n\n  private handleNavigation(details: NavigationDetails): void {\n    // Navigation events are informational — evaluate async\n    const action: AgentAction = {\n      raw: {\n        requestId: `nav-${details.tabId}-${details.frameId}`,\n        url: details.url,\n        method: 'GET',\n        type: 'main_frame',\n        tabId: details.tabId,\n      } as WebRequestDetails,\n      platform: 'browser',\n      timestamp: new Date(),\n    };\n\n    // Fire-and-forget async evaluation for logging/traces\n    this.interceptAction(action).then(async (result) => {\n      if (result.intercepted && result.context) {\n        await this.gateway.evaluate(result.context);\n      }\n    });\n  }\n\n  private async handleContentScriptAction(action: AgentAction): Promise<VerificationDecision> {\n    const interception = await this.interceptAction(action);\n    if (!interception.intercepted || !interception.context) {\n      return { recommendation: 'ALLOW', reason: 'Not intercepted' };\n    }\n\n    return this.gateway.evaluate(interception.context);\n  }\n\n  /**\n   * Synchronous evaluation using the gateway's local evaluator.\n   * Falls back to ALLOW if async-only (online mode).\n   */\n  private evaluateSync(context: PDLSSContext): VerificationDecision {\n    // The gateway.evaluate() is async, but the local evaluator is synchronous.\n    // We access the evaluator directly for browser webRequest handlers.\n    // This only works in local/hybrid mode — online mode falls through to ALLOW.\n    const gw = this.gateway as unknown as {\n      evaluator?: { evaluate(ctx: PDLSSContext): VerificationDecision };\n      posture?: 'active' | 'passive';\n    };\n    if (gw.evaluator) {\n      let decision = gw.evaluator.evaluate(context);\n\n      // Respect passive posture — same logic as gateway.evaluate()\n      if (gw.posture === 'passive' && decision.recommendation !== 'ALLOW') {\n        decision = {\n          ...decision,\n          recommendation: 'ALLOW',\n          reason: `[PASSIVE] Would have been ${decision.recommendation}: ${decision.reason}`,\n        };\n      }\n\n      return decision;\n    }\n\n    return { recommendation: 'ALLOW', reason: 'Async-only mode — allowed by default' };\n  }\n}\n\n/** @deprecated Use OpenClawBrowserAdapter */\nexport const BrowserAdapter = OpenClawBrowserAdapter;\n/** @deprecated Use OpenClawBrowserAdapterOptions */\nexport type BrowserAdapterOptions = OpenClawBrowserAdapterOptions;\n"],"mappings":";AAsEO,IAAM,4BAA4B;;;AC1DzC,IAAM,mBAA2C;AAAA;AAAA,EAE/C,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,SAAS;AAAA,EACT,eAAe;AAAA,EACf,sBAAsB;AAAA;AAAA,EAGtB,WAAW;AAAA,EACX,WAAW;AAAA;AAAA,EAGX,YAAY;AAAA,EACZ,YAAY;AAAA,EACZ,aAAa;AAAA,EACb,WAAW;AAAA;AAAA,EAGX,aAAa;AAAA,EACb,aAAa;AAAA;AAAA,EAGb,cAAc;AAAA,EACd,OAAO;AAAA,EACP,aAAa;AAAA;AAAA,EAGb,YAAY;AAAA,EACZ,YAAY;AAAA;AAAA,EAGZ,cAAc;AAAA;AAAA,EAGd,gBAAgB;AAAA,EAChB,gBAAgB;AAAA;AAAA,EAGhB,iBAAiB;AACnB;AAMO,SAAS,iBAAiB,UAA0B;AACzD,SAAO,iBAAiB,QAAQ,KAAK,QAAQ,QAAQ;AACvD;AAsBO,SAAS,cAAc,UAAkB,MAAuC;AACrF,QAAM,UAAU,iBAAiB,QAAQ;AAEzC,MAAI,QAAQ,WAAW,QAAQ,GAAG;AAChC,WAAO,OAAO,KAAK,WAAW,KAAK,OAAO,KAAK,UAAU,EAAE;AAAA,EAC7D;AAEA,MAAI,QAAQ,WAAW,OAAO,GAAG;AAC/B,WAAO,OAAO,KAAK,QAAQ,KAAK,QAAQ,KAAK,YAAY,KAAK,aAAa,EAAE;AAAA,EAC/E;AAEA,MAAI,QAAQ,WAAW,UAAU,GAAG;AAClC,WAAO,OAAO,KAAK,OAAO,KAAK,YAAY,KAAK,OAAO,EAAE;AAAA,EAC3D;AAEA,MAAI,QAAQ,WAAW,QAAQ,GAAG;AAChC,WAAO,OAAO,KAAK,MAAM,KAAK,aAAa,KAAK,WAAW,EAAE;AAAA,EAC/D;AAEA,MAAI,QAAQ,WAAW,WAAW,GAAG;AACnC,WAAO,OAAO,KAAK,SAAS,KAAK,SAAS,EAAE;AAAA,EAC9C;AAEA,MAAI,QAAQ,WAAW,UAAU,GAAG;AAClC,WAAO,OAAO,KAAK,eAAe,KAAK,YAAY,KAAK,UAAU,EAAE;AAAA,EACtE;AAGA,MAAI,KAAK,QAAS,QAAO,OAAO,KAAK,OAAO;AAC5C,MAAI,KAAK,KAAM,QAAO,OAAO,KAAK,IAAI;AACtC,MAAI,KAAK,IAAK,QAAO,OAAO,KAAK,GAAG;AAGpC,aAAW,OAAO,OAAO,OAAO,IAAI,GAAG;AACrC,QAAI,OAAO,QAAQ,YAAY,IAAI,SAAS,EAAG,QAAO;AAAA,EACxD;AACA,SAAO;AACT;AAUO,SAAS,sBAAsB,QAAsC;AAC1E,MAAI;AACF,QAAI,OAAO,WAAW,SAAS,KAAK,OAAO,WAAW,UAAU,GAAG;AACjE,YAAM,MAAM,IAAI,IAAI,MAAM;AAC1B,aAAO,CAAC,IAAI,QAAQ;AAAA,IACtB;AAAA,EACF,QAAQ;AAAA,EAER;AACA,SAAO;AACT;;;ACxCA,SAAS,0BAA0B,SAAiF;AAClH,QAAM,MAAM,QAAQ;AAGpB,MAAI,QAAQ,WAAW,QAAQ;AAE7B,QAAI,mBAAmB,KAAK,GAAG,GAAG;AAChC,aAAO,EAAE,UAAU,cAAc,MAAM,EAAE,KAAK,IAAI,IAAI,EAAE;AAAA,IAC1D;AAEA,QAAI,+BAA+B,KAAK,GAAG,GAAG;AAC5C,aAAO,EAAE,UAAU,mBAAmB,MAAM,EAAE,KAAK,aAAa,IAAI,EAAE;AAAA,IACxE;AAEA,WAAO,EAAE,UAAU,gBAAgB,MAAM,EAAE,IAAI,EAAE;AAAA,EACnD;AAGA,MAAI,QAAQ,SAAS,cAAc;AACjC,WAAO,EAAE,UAAU,gBAAgB,MAAM,EAAE,IAAI,EAAE;AAAA,EACnD;AAGA,SAAO,EAAE,UAAU,gBAAgB,MAAM,EAAE,IAAI,EAAE;AACnD;AAMO,IAAM,yBAAN,MAAwD;AAAA,EAW7D,YAAY,SAAkD;AAV9D,SAAS,mBAAmB;AAK5B,SAAQ,kBAAoF;AAC5F,SAAQ,qBAAoE;AAC5E,SAAQ,kBAA6H;AACrI,SAAQ,aAAa;AAGnB,SAAK,UAAU;AAAA,MACb,aAAa,SAAS,eAAe,CAAC,YAAY;AAAA,MAClD,cAAc,SAAS,gBAAgB,CAAC,cAAc,kBAAkB,WAAW;AAAA,MACnF,oBAAoB,SAAS,uBAAuB,YAAY;AAAA,MAChE,YAAY,SAAS;AAAA,IACvB;AAAA,EACF;AAAA,EAEA,IAAI,YAAqB;AACvB,WAAO,KAAK;AAAA,EACd;AAAA,EAEA,MAAM,WAAW,QAAsC;AACrD,SAAK,UAAU,OAAO;AAEtB,QAAI,OAAO,eAAe,YAAY;AACpC,WAAK,aAAa,OAAO,eAAe;AAAA,IAC1C,WAAW,KAAK,QAAQ,YAAY;AAClC,WAAK,aAAa,KAAK,QAAQ;AAAA,IACjC;AAEA,QAAI,CAAC,KAAK,YAAY;AACpB,YAAM,IAAI,MAAM,iGAA4F;AAAA,IAC9G;AAGA,SAAK,kBAAkB,CAAC,YAAwD;AAC9E,aAAO,KAAK,iBAAiB,OAAO;AAAA,IACtC;AAEA,SAAK,WAAW,WAAW,gBAAgB;AAAA,MACzC,KAAK;AAAA,MACL;AAAA,QACE,MAAM,KAAK,QAAQ;AAAA,QACnB,OAAO,KAAK,QAAQ;AAAA,MACtB;AAAA,MACA,CAAC,UAAU;AAAA,IACb;AAGA,SAAK,qBAAqB,CAAC,YAAqC;AAC9D,WAAK,iBAAiB,OAAO;AAAA,IAC/B;AAEA,SAAK,WAAW,cAAc,iBAAiB,YAAY,KAAK,kBAAkB;AAGlF,SAAK,kBAAkB,CAAC,SAAkB,SAAkB,iBAA8D;AACxH,YAAM,MAAM;AACZ,UAAI,KAAK,SAAS,sBAAsB;AACtC,aAAK,0BAA0B,IAAI,MAAO,EAAE,KAAK,YAAY;AAC7D,eAAO;AAAA,MACT;AAAA,IACF;AAEA,SAAK,WAAW,QAAQ,UAAU,YAAY,KAAK,eAAyG;AAE5J,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,WAA0B;AAC9B,QAAI,KAAK,iBAAiB;AACxB,WAAK,WAAW,WAAW,gBAAgB,eAAe,KAAK,eAAe;AAC9E,WAAK,kBAAkB;AAAA,IACzB;AACA,QAAI,KAAK,oBAAoB;AAC3B,WAAK,WAAW,cAAc,iBAAiB,eAAe,KAAK,kBAAkB;AACrF,WAAK,qBAAqB;AAAA,IAC5B;AACA,QAAI,KAAK,iBAAiB;AACxB,WAAK,WAAW,QAAQ,UAAU,eAAe,KAAK,eAA+C;AACrG,WAAK,kBAAkB;AAAA,IACzB;AACA,SAAK,aAAa;AAAA,EACpB;AAAA,EAEA,MAAM,gBAAgB,QAA+C;AACnE,UAAM,MAAM,OAAO;AAEnB,QAAI,CAAC,KAAK;AACR,aAAO,EAAE,aAAa,OAAO,YAAY,iBAAiB;AAAA,IAC5D;AAEA,UAAM,UAAU,KAAK,eAAe,MAAM;AAC1C,WAAO,EAAE,aAAa,MAAM,QAAQ;AAAA,EACtC;AAAA,EAEA,eAAe,QAAmC;AAChD,UAAM,MAAM,OAAO;AAEnB,UAAM,EAAE,UAAU,KAAK,IAAI,0BAA0B,GAAG;AACxD,UAAM,UAAU,iBAAiB,QAAQ;AACzC,UAAM,SAAS,cAAc,UAAU,IAAI;AAC3C,UAAM,gBAAgB,sBAAsB,MAAM;AAElD,WAAO;AAAA,MACL;AAAA,MACA,QAAQ;AAAA,MACR;AAAA,MACA,GAAI,iBAAiB,EAAE,cAAc;AAAA,IACvC;AAAA,EACF;AAAA,EAEA,MAAM,gBAAgB,UAA+C;AACnE,QAAI,SAAS,mBAAmB,UAAU,KAAK,WAAW,eAAe;AACvE,WAAK,WAAW,cAAc,OAAO,aAAa,KAAK,IAAI,CAAC,IAAI;AAAA,QAC9D,MAAM;AAAA,QACN,OAAO;AAAA,QACP,SAAS,YAAY,SAAS,MAAM;AAAA,MACtC,CAAC;AAAA,IACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAMQ,iBAAiB,SAAqD;AAC5E,UAAM,SAAsB;AAAA,MAC1B,KAAK;AAAA,MACL,UAAU;AAAA,MACV,WAAW,oBAAI,KAAK;AAAA,IACtB;AAEA,UAAM,UAAU,KAAK,eAAe,MAAM;AAM1C,UAAM,WAAW,KAAK,aAAa,OAAO;AAE1C,QAAI,SAAS,mBAAmB,QAAQ;AACtC,WAAK,gBAAgB,QAAQ;AAC7B,aAAO,EAAE,QAAQ,KAAK;AAAA,IACxB;AAEA,QAAI,SAAS,mBAAmB,iBAAiB;AAE/C,WAAK,gBAAgB;AAAA,QACnB,GAAG;AAAA,QACH,gBAAgB;AAAA,QAChB,QAAQ,gDAAgD,SAAS,MAAM;AAAA,MACzE,CAAC;AACD,aAAO,EAAE,QAAQ,KAAK;AAAA,IACxB;AAGA,WAAO;AAAA,EACT;AAAA,EAEQ,iBAAiB,SAAkC;AAEzD,UAAM,SAAsB;AAAA,MAC1B,KAAK;AAAA,QACH,WAAW,OAAO,QAAQ,KAAK,IAAI,QAAQ,OAAO;AAAA,QAClD,KAAK,QAAQ;AAAA,QACb,QAAQ;AAAA,QACR,MAAM;AAAA,QACN,OAAO,QAAQ;AAAA,MACjB;AAAA,MACA,UAAU;AAAA,MACV,WAAW,oBAAI,KAAK;AAAA,IACtB;AAGA,SAAK,gBAAgB,MAAM,EAAE,KAAK,OAAO,WAAW;AAClD,UAAI,OAAO,eAAe,OAAO,SAAS;AACxC,cAAM,KAAK,QAAQ,SAAS,OAAO,OAAO;AAAA,MAC5C;AAAA,IACF,CAAC;AAAA,EACH;AAAA,EAEA,MAAc,0BAA0B,QAAoD;AAC1F,UAAM,eAAe,MAAM,KAAK,gBAAgB,MAAM;AACtD,QAAI,CAAC,aAAa,eAAe,CAAC,aAAa,SAAS;AACtD,aAAO,EAAE,gBAAgB,SAAS,QAAQ,kBAAkB;AAAA,IAC9D;AAEA,WAAO,KAAK,QAAQ,SAAS,aAAa,OAAO;AAAA,EACnD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMQ,aAAa,SAA6C;AAIhE,UAAM,KAAK,KAAK;AAIhB,QAAI,GAAG,WAAW;AAChB,UAAI,WAAW,GAAG,UAAU,SAAS,OAAO;AAG5C,UAAI,GAAG,YAAY,aAAa,SAAS,mBAAmB,SAAS;AACnE,mBAAW;AAAA,UACT,GAAG;AAAA,UACH,gBAAgB;AAAA,UAChB,QAAQ,6BAA6B,SAAS,cAAc,KAAK,SAAS,MAAM;AAAA,QAClF;AAAA,MACF;AAEA,aAAO;AAAA,IACT;AAEA,WAAO,EAAE,gBAAgB,SAAS,QAAQ,4CAAuC;AAAA,EACnF;AACF;AAGO,IAAM,iBAAiB;","names":[]}

package/dist/cli/index.d.mts

@@ -0,0 +1,241 @@
+import { a as LocalPurposeRule, c as LocalScope, d as LocalRiskThresholds, L as LocalPolicy, P as PDLSSContext, V as VerificationDecision, A as AgentAction, I as InterceptResult } from '../types-jJnPXStc.mjs';
+import { PlatformAdapter, AdapterConfig } from '../adapter-interface/interface.mjs';
+import '../types-CxQwJKbd.mjs';
+import '../gateway/gateway.mjs';
+
+/**
+ * Interactive Setup Wizard
+ *
+ * Generates a PDLSS-compliant local policy YAML file through
+ * plain-language questions with explainers for non-technical users.
+ *
+ * Usage:
+ *   const wizard = new SetupWizard(readline);
+ *   const policy = await wizard.run();
+ *   // policy is a LocalPolicy ready to serialize to YAML
+ */
+
+interface PromptInterface {
+    question(prompt: string): Promise<string>;
+    close(): void;
+}
+interface PurposeCategory {
+    id: string;
+    label: string;
+    explainer: string;
+    readId?: string;
+    writeId?: string;
+    deleteId?: string;
+    createId?: string;
+    modifyId?: string;
+    subActions?: {
+        id: string;
+        label: string;
+        explainer: string;
+        recommended: string;
+    }[];
+    recommendedDefault: string;
+}
+declare const PURPOSE_CATEGORIES: PurposeCategory[];
+interface BlockedCommand {
+    pattern: string;
+    label: string;
+    recommended: boolean;
+}
+declare const DEFAULT_BLOCKED_COMMANDS: BlockedCommand[];
+interface BlockedPath {
+    pattern: string;
+    label: string;
+    recommended: boolean;
+}
+declare const DEFAULT_BLOCKED_PATHS: BlockedPath[];
+interface RiskPreset {
+    name: string;
+    label: string;
+    thresholds: LocalRiskThresholds;
+}
+declare const RISK_PRESETS: RiskPreset[];
+declare class SetupWizard {
+    private prompt;
+    constructor(prompt: PromptInterface);
+    /**
+     * Run the full interactive wizard and return a validated LocalPolicy.
+     */
+    run(): Promise<LocalPolicy>;
+    /**
+     * Run the wizard and write the result to a YAML file.
+     */
+    runAndSave(outputPath: string): Promise<LocalPolicy>;
+    private askPurposeQuestion;
+    private askBlockedCommands;
+    private askBlockedPaths;
+    private askRiskPreset;
+    private askCommaSeparated;
+    private parseYesNoApproval;
+    private parseYesNo;
+    private ask;
+    private print;
+}
+interface ImportResult {
+    purposes: LocalPurposeRule[];
+    scope?: LocalScope;
+    source: string;
+    rulesImported: number;
+}
+/**
+ * Parse a .cursorrules file and extract PDLSS-compatible rules.
+ * Returns partial policy rules that can be merged with wizard output.
+ */
+declare function importFromCursorRules(content: string): ImportResult;
+/**
+ * Parse a .gitignore file to infer sensitive file patterns.
+ * These become blockedPatterns for file.read purposes.
+ */
+declare function inferFromGitignore(content: string): string[];
+
+/**
+ * AstraSync Guard Upgrade CLI
+ *
+ * Handles the free -> Developer tier upgrade flow:
+ * 1. Validate existing setup and check for prior upgrade
+ * 2. Open browser for KYD registration
+ * 3. Validate API key before proceeding
+ * 4. Upload local policy to cloud (YAML -> cloud PDLSS, 1:1 mapping)
+ * 5. Register agent and receive ASTRA-ID
+ * 6. Choose mode (online or hybrid) and switch gateway
+ *
+ * Also supports event-triggered upgrade prompts when counterparties
+ * reject unverified agents.
+ */
+
+interface UpgradeConfig {
+    /** Path to local policy YAML file */
+    policyPath: string;
+    /** Loaded policy object */
+    policy: LocalPolicy;
+    /** AstraSync platform base URL */
+    platformUrl?: string;
+    /** Config directory for storing credentials (default: .astrasync/) */
+    configDir?: string;
+}
+interface UpgradeResult {
+    success: boolean;
+    kydId?: string;
+    agentId?: string;
+    apiKey?: string;
+    mode?: 'online' | 'hybrid';
+    error?: string;
+}
+interface UpgradeCallbacks {
+    /** Open a URL in the user's browser */
+    openBrowser: (url: string) => Promise<void>;
+    /** Prompt user for text input */
+    prompt: (message: string) => Promise<string>;
+    /** Display message to user */
+    print: (message: string) => void;
+    /** Write config file */
+    writeConfig: (path: string, content: string) => Promise<void>;
+    /** Read config file */
+    readConfig: (path: string) => Promise<string | null>;
+}
+/**
+ * Trigger context — why the upgrade was initiated.
+ * Used for event-triggered upgrade prompts.
+ */
+interface UpgradeTrigger {
+    /** What triggered the upgrade prompt */
+    reason: 'cli' | 'counterparty-rejection' | 'deployment' | 'git-push';
+    /** Details from the triggering event */
+    details?: {
+        /** Counterparty that rejected the agent */
+        counterpartyUrl?: string;
+        /** Rejection message from counterparty */
+        rejectionMessage?: string;
+        /** Guidance URL from counterparty */
+        guidanceUrl?: string;
+    };
+}
+declare class UpgradeFlow {
+    private config;
+    private callbacks;
+    private platformUrl;
+    private configDir;
+    private trigger;
+    constructor(config: UpgradeConfig, callbacks: UpgradeCallbacks, trigger?: UpgradeTrigger);
+    /**
+     * Run the full upgrade flow.
+     */
+    run(): Promise<UpgradeResult>;
+    /**
+     * Continue the upgrade flow after API key validation.
+     */
+    private continueUpgrade;
+    /**
+     * Print the intro message based on what triggered the upgrade.
+     */
+    private printIntro;
+    /**
+     * Validate the API key by calling the platform.
+     */
+    private validateApiKey;
+    /**
+     * Upload local policy to the AstraSync cloud.
+     * YAML -> cloud PDLSS boundary, 1:1 mapping, no lossy transformation.
+     */
+    private uploadPolicy;
+    /**
+     * Write the config file for the chosen mode.
+     */
+    private writeLocalConfig;
+}
+/**
+ * Check if the project has already been upgraded.
+ */
+declare function isUpgraded(configDir: string, readFile: (path: string) => Promise<string | null>): Promise<boolean>;
+
+/**
+ * @astrasyncai/adapter-openclaw-cli
+ *
+ * Reference Layer 4 adapter for the OpenClaw CLI.
+ * Implements PlatformAdapter interface — proxy server that intercepts
+ * tool use requests before they reach the agent runtime.
+ *
+ * Configurable ports (defaults to OpenClaw conventions):
+ *   proxyPort: 18790  (this adapter listens)
+ *   targetPort: 18789  (OpenClaw CLI gateway)
+ */
+
+interface OpenClawAdapterOptions {
+    /** Port this adapter listens on (default: 18790) */
+    proxyPort?: number;
+    /** Port the OpenClaw CLI gateway runs on (default: 18789) */
+    targetPort?: number;
+    /** Target host (default: 127.0.0.1) */
+    targetHost?: string;
+    /** Show approval prompts in terminal for MANUAL_REVIEW (default: true) */
+    interactiveApproval?: boolean;
+    /** Callback for MANUAL_REVIEW decisions (if not interactive) */
+    onApprovalRequired?: (context: PDLSSContext, decision: VerificationDecision) => Promise<boolean>;
+}
+declare class OpenClawCliAdapter implements PlatformAdapter {
+    readonly interfaceVersion = 1;
+    private gateway;
+    private options;
+    private server;
+    private _isRunning;
+    constructor(options?: OpenClawAdapterOptions);
+    get isRunning(): boolean;
+    get proxyPort(): number;
+    get targetPort(): number;
+    initialize(config: AdapterConfig): Promise<void>;
+    shutdown(): Promise<void>;
+    interceptAction(action: AgentAction): Promise<InterceptResult>;
+    extractContext(action: AgentAction): PDLSSContext;
+    enforceDecision(decision: VerificationDecision): Promise<void>;
+    private startProxy;
+    private handleProxyRequest;
+    private forwardRequest;
+    private handleApproval;
+}
+
+export { type BlockedCommand, type BlockedPath, DEFAULT_BLOCKED_COMMANDS, DEFAULT_BLOCKED_PATHS, type ImportResult, type OpenClawAdapterOptions, OpenClawCliAdapter, PURPOSE_CATEGORIES, type PromptInterface, type PurposeCategory, RISK_PRESETS, type RiskPreset, SetupWizard, type UpgradeCallbacks, type UpgradeConfig, UpgradeFlow, type UpgradeResult, importFromCursorRules, inferFromGitignore, isUpgraded };