@astrasyncai/verification-gateway 1.1.0 → 2.0.1

package/dist/types-79qS7aON.d.ts

@@ -0,0 +1,153 @@
+import { a as AccessLevel, C as CounterpartyType, T as TokenGuidance } from './types-CxQwJKbd.js';
+
+/**
+ * AstraSync Gateway - Types for gateway modes, local evaluation, and adapter interface.
+ */
+type GatewayMode = 'online' | 'local' | 'hybrid';
+/**
+ * Posture controls whether the gateway actively blocks or just monitors.
+ * - active: Evaluate and enforce decisions (block/allow/review)
+ * - passive: Evaluate and log but never block (telemetry-only mode)
+ */
+type GatewayPosture = 'active' | 'passive';
+interface AstraSyncGatewayConfig {
+    mode: GatewayMode;
+    /** Enforcement posture: 'active' blocks actions, 'passive' logs only (default: 'active') */
+    posture?: GatewayPosture;
+    /** AstraSync API base URL (required for online/hybrid modes) */
+    apiBaseUrl?: string;
+    /** API key for authenticating with AstraSync (required for online/hybrid modes) */
+    apiKey?: string;
+    /** Path to local PDLSS policy YAML file (required for local/hybrid modes) */
+    policyFile?: string;
+    /** Inline policy object (alternative to policyFile) */
+    policy?: LocalPolicy;
+    /** Sync interval in seconds for hybrid mode (default: 3600) */
+    syncInterval?: number;
+    /** Cache verification results TTL in seconds (default: 300) */
+    cacheTtl?: number;
+    /** Enable debug logging */
+    debug?: boolean;
+    /** Enable trace logging to .astrasync/traces/ (default: false) */
+    traceEnabled?: boolean;
+    /** Trace log directory (default: .astrasync/traces/) */
+    tracePath?: string;
+    /** Default access level for unverified requests */
+    defaultAccessLevel?: AccessLevel;
+    /** Minimum trust score for standard access (online/hybrid) */
+    minTrustScore?: number;
+    /** Minimum trust score for full access (online/hybrid) */
+    minTrustScoreForFull?: number;
+    /** Custom headers to send with API requests */
+    customHeaders?: Record<string, string>;
+    /** Counterparty URL for analytics */
+    counterpartyUrl?: string;
+    /** Counterparty type for analytics */
+    counterpartyType?: CounterpartyType;
+}
+interface PDLSSContext {
+    /** Purpose category (e.g. email.send, shell.exec, file.read) */
+    purpose: string;
+    /** Specific action within purpose */
+    action: string;
+    /** Target resource, recipient, or counterparty */
+    target: string;
+    /** Types of data access (read, write, delete) */
+    dataAccess?: string[];
+    /** Network domains/IPs being accessed */
+    networkAccess?: string[];
+    /** Resource type (customer, order, file, directory, process) */
+    resourceType?: string;
+    /** Risk factors for this action */
+    riskFactors?: RiskFactor[];
+    /** Transaction value (if financial) */
+    transactionValue?: number;
+    /** Currency for transaction */
+    currency?: string;
+    /** Additional metadata */
+    metadata?: Record<string, unknown>;
+}
+interface RiskFactor {
+    type: 'financial' | 'data_sensitivity' | 'privilege_escalation' | 'network_scope' | 'destructive';
+    severity: 'low' | 'medium' | 'high' | 'critical';
+    detail: string;
+}
+interface VerificationDecision {
+    recommendation: 'ALLOW' | 'DENY' | 'MANUAL_REVIEW';
+    reason: string;
+    trustScore?: number;
+    tokenGuidance?: TokenGuidance;
+    sessionId?: string;
+    /** PDLSS dimensions that were evaluated */
+    evaluatedDimensions?: {
+        purpose: boolean;
+        scope: boolean;
+        limits: boolean;
+        riskThresholds: boolean;
+    };
+}
+interface LocalPolicy {
+    version: string;
+    name: string;
+    description?: string;
+    purposes: LocalPurposeRule[];
+    scope?: LocalScope;
+    limits?: LocalLimits;
+    riskThresholds?: LocalRiskThresholds;
+    selfInstantiation?: LocalSelfInstantiation;
+}
+interface LocalPurposeRule {
+    id: string;
+    allowed: boolean;
+    targets?: string[];
+    blockedPatterns?: string[];
+    requiresApproval?: boolean;
+}
+interface LocalScope {
+    allowedDomains?: string[];
+    blockedDomains?: string[];
+    blockedResources?: string[];
+}
+interface LocalLimits {
+    maxTransactionAmount?: number;
+    maxRequestsPerHour?: number;
+    currency?: string;
+}
+interface LocalRiskThresholds {
+    autoAllow: {
+        min: number;
+        max: number;
+    };
+    requireApproval: {
+        min: number;
+        max: number;
+    };
+    autoBlock: {
+        min: number;
+        max: number;
+    };
+}
+interface LocalSelfInstantiation {
+    /** Whether sub-agent spawning is allowed */
+    allowed: boolean;
+    /** Maximum depth of sub-agent chain */
+    maxDepth?: number;
+}
+interface AgentAction {
+    /** Raw action data from the platform */
+    raw: unknown;
+    /** Platform identifier (e.g. 'openclaw-cli', 'cursor', 'browser') */
+    platform: string;
+    /** Timestamp of the action */
+    timestamp: Date;
+}
+interface InterceptResult {
+    /** Whether the action was intercepted */
+    intercepted: boolean;
+    /** Extracted PDLSS context (if intercepted) */
+    context?: PDLSSContext;
+    /** Reason for not intercepting (if not intercepted) */
+    skipReason?: string;
+}
+
+export type { AgentAction as A, InterceptResult as I, LocalPolicy as L, PDLSSContext as P, VerificationDecision as V, LocalPurposeRule as a, AstraSyncGatewayConfig as b, LocalScope as c, LocalRiskThresholds as d };

package/dist/{types-cA_xfFU7.d.mts → types-CxQwJKbd.d.mts}

@@ -208,6 +208,8 @@ interface VerificationRequest {
     counterpartyType?: CounterpartyType;
     /** Counterparty URL */
     counterpartyUrl?: string;
+    /** Requested session duration in seconds (from agent's X-Astra-Duration header) */
+    durationRequired?: number;
     /** Runtime challenge options */
     runtimeChallengeOptions?: {
         timeoutOverride?: number;
@@ -225,8 +227,17 @@ interface RouteAccessConfig {
     minAccessLevel: AccessLevel;
     /** Minimum trust score required (optional) */
     minTrustScore?: number;
-    /** Required purposes (optional) */
+    /** Required purposes (optional, agent must declare one of these) */
     requiredPurposes?: string[];
+    /** Counterparty-defined PDLSS maximums — agent requests exceeding these are rejected before calling AstraSync */
+    /** Maximum session duration in seconds the counterparty will allow */
+    maxDuration?: number;
+    /** Whitelist of allowed purposes — agent's declared purpose must be in this list */
+    allowedPurposes?: string[];
+    /** Whitelist of allowed jurisdictions */
+    allowedJurisdictions?: string[];
+    /** Maximum transaction value for this route */
+    maxTransactionValue?: number;
 }
 /**
  * Express middleware options
@@ -244,6 +255,8 @@ interface ExpressMiddlewareOptions extends GatewayConfig {
     onDenied?: (result: VerificationResult, req: unknown, res: unknown) => void;
     /** Automatically create sessions and record grant/deny decisions (default: true) */
     recordDecisions?: boolean;
+    /** Enable runtime challenge for all verify-access calls (default: true) */
+    enableRuntimeChallenge?: boolean;
 }
 /**
  * Next.js middleware options
@@ -262,6 +275,8 @@ interface NextJsMiddlewareOptions extends GatewayConfig {
         allowGuestAccess?: boolean;
         guestAccessLevel?: AccessLevel;
     };
+    /** Enable runtime challenge for all verify-access calls (default: true) */
+    enableRuntimeChallenge?: boolean;
 }
 /**
  * SDK function options
@@ -364,4 +379,4 @@ interface CommerceShieldProps {
     className?: string;
 }
 
-export type { AgentCredentials as A, CommerceShieldProps as C, EnhancedVerificationResult as E, GatewayConfig as G, NextJsMiddlewareOptions as N, ProtocolTransport as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationRequest as V, AccessLevel as a, VerificationResult as b, AstraSyncCredentials as c, CounterpartyType as d, ExpressMiddlewareOptions as e, GuidanceInfo as f, PDLSSInfo as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };
+export type { AstraSyncCredentials as A, CounterpartyType as C, ExpressMiddlewareOptions as E, GatewayConfig as G, NextJsMiddlewareOptions as N, PDLSSInfo as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationResult as V, AccessLevel as a, AgentCredentials as b, VerificationRequest as c, CommerceShieldProps as d, EnhancedVerificationResult as e, GuidanceInfo as f, ProtocolTransport as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };

package/dist/{types-cA_xfFU7.d.ts → types-CxQwJKbd.d.ts}

@@ -208,6 +208,8 @@ interface VerificationRequest {
     counterpartyType?: CounterpartyType;
     /** Counterparty URL */
     counterpartyUrl?: string;
+    /** Requested session duration in seconds (from agent's X-Astra-Duration header) */
+    durationRequired?: number;
     /** Runtime challenge options */
     runtimeChallengeOptions?: {
         timeoutOverride?: number;
@@ -225,8 +227,17 @@ interface RouteAccessConfig {
     minAccessLevel: AccessLevel;
     /** Minimum trust score required (optional) */
     minTrustScore?: number;
-    /** Required purposes (optional) */
+    /** Required purposes (optional, agent must declare one of these) */
     requiredPurposes?: string[];
+    /** Counterparty-defined PDLSS maximums — agent requests exceeding these are rejected before calling AstraSync */
+    /** Maximum session duration in seconds the counterparty will allow */
+    maxDuration?: number;
+    /** Whitelist of allowed purposes — agent's declared purpose must be in this list */
+    allowedPurposes?: string[];
+    /** Whitelist of allowed jurisdictions */
+    allowedJurisdictions?: string[];
+    /** Maximum transaction value for this route */
+    maxTransactionValue?: number;
 }
 /**
  * Express middleware options
@@ -244,6 +255,8 @@ interface ExpressMiddlewareOptions extends GatewayConfig {
     onDenied?: (result: VerificationResult, req: unknown, res: unknown) => void;
     /** Automatically create sessions and record grant/deny decisions (default: true) */
     recordDecisions?: boolean;
+    /** Enable runtime challenge for all verify-access calls (default: true) */
+    enableRuntimeChallenge?: boolean;
 }
 /**
  * Next.js middleware options
@@ -262,6 +275,8 @@ interface NextJsMiddlewareOptions extends GatewayConfig {
         allowGuestAccess?: boolean;
         guestAccessLevel?: AccessLevel;
     };
+    /** Enable runtime challenge for all verify-access calls (default: true) */
+    enableRuntimeChallenge?: boolean;
 }
 /**
  * SDK function options
@@ -364,4 +379,4 @@ interface CommerceShieldProps {
     className?: string;
 }
 
-export type { AgentCredentials as A, CommerceShieldProps as C, EnhancedVerificationResult as E, GatewayConfig as G, NextJsMiddlewareOptions as N, ProtocolTransport as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationRequest as V, AccessLevel as a, VerificationResult as b, AstraSyncCredentials as c, CounterpartyType as d, ExpressMiddlewareOptions as e, GuidanceInfo as f, PDLSSInfo as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };
+export type { AstraSyncCredentials as A, CounterpartyType as C, ExpressMiddlewareOptions as E, GatewayConfig as G, NextJsMiddlewareOptions as N, PDLSSInfo as P, RouteAccessConfig as R, SDKOptions as S, TokenGuidance as T, VerificationResult as V, AccessLevel as a, AgentCredentials as b, VerificationRequest as c, CommerceShieldProps as d, EnhancedVerificationResult as e, GuidanceInfo as f, ProtocolTransport as g, RuntimeChallengeResult as h, TrustLevel as i, VerifiedAgent as j, VerifiedDeveloper as k, VerifiedOrganization as l };

package/dist/types-jJnPXStc.d.mts

@@ -0,0 +1,153 @@
+import { a as AccessLevel, C as CounterpartyType, T as TokenGuidance } from './types-CxQwJKbd.mjs';
+
+/**
+ * AstraSync Gateway - Types for gateway modes, local evaluation, and adapter interface.
+ */
+type GatewayMode = 'online' | 'local' | 'hybrid';
+/**
+ * Posture controls whether the gateway actively blocks or just monitors.
+ * - active: Evaluate and enforce decisions (block/allow/review)
+ * - passive: Evaluate and log but never block (telemetry-only mode)
+ */
+type GatewayPosture = 'active' | 'passive';
+interface AstraSyncGatewayConfig {
+    mode: GatewayMode;
+    /** Enforcement posture: 'active' blocks actions, 'passive' logs only (default: 'active') */
+    posture?: GatewayPosture;
+    /** AstraSync API base URL (required for online/hybrid modes) */
+    apiBaseUrl?: string;
+    /** API key for authenticating with AstraSync (required for online/hybrid modes) */
+    apiKey?: string;
+    /** Path to local PDLSS policy YAML file (required for local/hybrid modes) */
+    policyFile?: string;
+    /** Inline policy object (alternative to policyFile) */
+    policy?: LocalPolicy;
+    /** Sync interval in seconds for hybrid mode (default: 3600) */
+    syncInterval?: number;
+    /** Cache verification results TTL in seconds (default: 300) */
+    cacheTtl?: number;
+    /** Enable debug logging */
+    debug?: boolean;
+    /** Enable trace logging to .astrasync/traces/ (default: false) */
+    traceEnabled?: boolean;
+    /** Trace log directory (default: .astrasync/traces/) */
+    tracePath?: string;
+    /** Default access level for unverified requests */
+    defaultAccessLevel?: AccessLevel;
+    /** Minimum trust score for standard access (online/hybrid) */
+    minTrustScore?: number;
+    /** Minimum trust score for full access (online/hybrid) */
+    minTrustScoreForFull?: number;
+    /** Custom headers to send with API requests */
+    customHeaders?: Record<string, string>;
+    /** Counterparty URL for analytics */
+    counterpartyUrl?: string;
+    /** Counterparty type for analytics */
+    counterpartyType?: CounterpartyType;
+}
+interface PDLSSContext {
+    /** Purpose category (e.g. email.send, shell.exec, file.read) */
+    purpose: string;
+    /** Specific action within purpose */
+    action: string;
+    /** Target resource, recipient, or counterparty */
+    target: string;
+    /** Types of data access (read, write, delete) */
+    dataAccess?: string[];
+    /** Network domains/IPs being accessed */
+    networkAccess?: string[];
+    /** Resource type (customer, order, file, directory, process) */
+    resourceType?: string;
+    /** Risk factors for this action */
+    riskFactors?: RiskFactor[];
+    /** Transaction value (if financial) */
+    transactionValue?: number;
+    /** Currency for transaction */
+    currency?: string;
+    /** Additional metadata */
+    metadata?: Record<string, unknown>;
+}
+interface RiskFactor {
+    type: 'financial' | 'data_sensitivity' | 'privilege_escalation' | 'network_scope' | 'destructive';
+    severity: 'low' | 'medium' | 'high' | 'critical';
+    detail: string;
+}
+interface VerificationDecision {
+    recommendation: 'ALLOW' | 'DENY' | 'MANUAL_REVIEW';
+    reason: string;
+    trustScore?: number;
+    tokenGuidance?: TokenGuidance;
+    sessionId?: string;
+    /** PDLSS dimensions that were evaluated */
+    evaluatedDimensions?: {
+        purpose: boolean;
+        scope: boolean;
+        limits: boolean;
+        riskThresholds: boolean;
+    };
+}
+interface LocalPolicy {
+    version: string;
+    name: string;
+    description?: string;
+    purposes: LocalPurposeRule[];
+    scope?: LocalScope;
+    limits?: LocalLimits;
+    riskThresholds?: LocalRiskThresholds;
+    selfInstantiation?: LocalSelfInstantiation;
+}
+interface LocalPurposeRule {
+    id: string;
+    allowed: boolean;
+    targets?: string[];
+    blockedPatterns?: string[];
+    requiresApproval?: boolean;
+}
+interface LocalScope {
+    allowedDomains?: string[];
+    blockedDomains?: string[];
+    blockedResources?: string[];
+}
+interface LocalLimits {
+    maxTransactionAmount?: number;
+    maxRequestsPerHour?: number;
+    currency?: string;
+}
+interface LocalRiskThresholds {
+    autoAllow: {
+        min: number;
+        max: number;
+    };
+    requireApproval: {
+        min: number;
+        max: number;
+    };
+    autoBlock: {
+        min: number;
+        max: number;
+    };
+}
+interface LocalSelfInstantiation {
+    /** Whether sub-agent spawning is allowed */
+    allowed: boolean;
+    /** Maximum depth of sub-agent chain */
+    maxDepth?: number;
+}
+interface AgentAction {
+    /** Raw action data from the platform */
+    raw: unknown;
+    /** Platform identifier (e.g. 'openclaw-cli', 'cursor', 'browser') */
+    platform: string;
+    /** Timestamp of the action */
+    timestamp: Date;
+}
+interface InterceptResult {
+    /** Whether the action was intercepted */
+    intercepted: boolean;
+    /** Extracted PDLSS context (if intercepted) */
+    context?: PDLSSContext;
+    /** Reason for not intercepting (if not intercepted) */
+    skipReason?: string;
+}
+
+export type { AgentAction as A, InterceptResult as I, LocalPolicy as L, PDLSSContext as P, VerificationDecision as V, LocalPurposeRule as a, AstraSyncGatewayConfig as b, LocalScope as c, LocalRiskThresholds as d };

package/dist/ui/index.d.mts

@@ -1,4 +1,4 @@
-import { C as CommerceShieldProps, b as VerificationResult, A as AgentCredentials, f as GuidanceInfo, i as TrustLevel } from '../types-cA_xfFU7.mjs';
+import { d as CommerceShieldProps, V as VerificationResult, b as AgentCredentials, f as GuidanceInfo, i as TrustLevel } from '../types-CxQwJKbd.mjs';
 
 /**
  * AstraSync Commerce Shield Component

package/dist/ui/index.d.ts

@@ -1,4 +1,4 @@
-import { C as CommerceShieldProps, b as VerificationResult, A as AgentCredentials, f as GuidanceInfo, i as TrustLevel } from '../types-cA_xfFU7.js';
+import { d as CommerceShieldProps, V as VerificationResult, b as AgentCredentials, f as GuidanceInfo, i as TrustLevel } from '../types-CxQwJKbd.js';
 
 /**
  * AstraSync Commerce Shield Component

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@astrasyncai/verification-gateway",
-  "version": "1.1.0",
+  "version": "2.0.1",
   "description": "Universal Verification Gateway for AstraSync KYA Platform - verify AI agents across any counterparty type",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
@@ -30,6 +30,51 @@
       "types": "./dist/ui/index.d.ts",
       "import": "./dist/ui/index.mjs",
       "require": "./dist/ui/index.js"
+    },
+    "./agent": {
+      "types": "./dist/agent/index.d.ts",
+      "import": "./dist/agent/index.mjs",
+      "require": "./dist/agent/index.js"
+    },
+    "./transport": {
+      "types": "./dist/transport/index.d.ts",
+      "import": "./dist/transport/index.mjs",
+      "require": "./dist/transport/index.js"
+    },
+    "./gateway": {
+      "types": "./dist/gateway/gateway.d.ts",
+      "import": "./dist/gateway/gateway.mjs",
+      "require": "./dist/gateway/gateway.js"
+    },
+    "./local-evaluator": {
+      "types": "./dist/local-evaluator/evaluator.d.ts",
+      "import": "./dist/local-evaluator/evaluator.mjs",
+      "require": "./dist/local-evaluator/evaluator.js"
+    },
+    "./adapter-interface": {
+      "types": "./dist/adapter-interface/interface.d.ts",
+      "import": "./dist/adapter-interface/interface.mjs",
+      "require": "./dist/adapter-interface/interface.js"
+    },
+    "./cli": {
+      "types": "./dist/cli/index.d.ts",
+      "import": "./dist/cli/index.mjs",
+      "require": "./dist/cli/index.js"
+    },
+    "./cursor": {
+      "types": "./dist/cursor/cursor-adapter.d.ts",
+      "import": "./dist/cursor/cursor-adapter.mjs",
+      "require": "./dist/cursor/cursor-adapter.js"
+    },
+    "./browser": {
+      "types": "./dist/browser/browser-adapter.d.ts",
+      "import": "./dist/browser/browser-adapter.mjs",
+      "require": "./dist/browser/browser-adapter.js"
+    },
+    "./git-trigger": {
+      "types": "./dist/git-trigger/git-hooks.d.ts",
+      "import": "./dist/git-trigger/git-hooks.mjs",
+      "require": "./dist/git-trigger/git-hooks.js"
     }
   },
   "files": [
@@ -43,7 +88,8 @@
     "typecheck": "tsc --noEmit",
     "test": "vitest run",
     "test:watch": "vitest watch",
-    "clean": "rm -rf dist"
+    "clean": "rm -rf dist extensions",
+    "package:extensions": "bash scripts/package-extensions.sh"
   },
   "keywords": [
     "astrasync",