@astrasyncai/verification-gateway 2.3.8 → 2.3.9
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +93 -10
- package/dist/adapter-interface/interface.d.mts +2 -2
- package/dist/adapter-interface/interface.d.ts +2 -2
- package/dist/adapters/express.d.mts +2 -2
- package/dist/adapters/express.d.ts +2 -2
- package/dist/adapters/express.js +39 -6
- package/dist/adapters/express.js.map +1 -1
- package/dist/adapters/express.mjs +39 -6
- package/dist/adapters/express.mjs.map +1 -1
- package/dist/adapters/mcp.d.mts +1 -1
- package/dist/adapters/mcp.d.ts +1 -1
- package/dist/adapters/mcp.js +53 -11
- package/dist/adapters/mcp.js.map +1 -1
- package/dist/adapters/mcp.mjs +53 -11
- package/dist/adapters/mcp.mjs.map +1 -1
- package/dist/adapters/nextjs.d.mts +2 -2
- package/dist/adapters/nextjs.d.ts +2 -2
- package/dist/adapters/nextjs.js +21 -5
- package/dist/adapters/nextjs.js.map +1 -1
- package/dist/adapters/nextjs.mjs +21 -5
- package/dist/adapters/nextjs.mjs.map +1 -1
- package/dist/adapters/sdk.d.mts +2 -2
- package/dist/adapters/sdk.d.ts +2 -2
- package/dist/adapters/sdk.js +21 -5
- package/dist/adapters/sdk.js.map +1 -1
- package/dist/adapters/sdk.mjs +21 -5
- package/dist/adapters/sdk.mjs.map +1 -1
- package/dist/agent/index.d.mts +2 -2
- package/dist/agent/index.d.ts +2 -2
- package/dist/browser/background.js +20 -4
- package/dist/browser/background.js.map +1 -1
- package/dist/browser/background.mjs +20 -4
- package/dist/browser/background.mjs.map +1 -1
- package/dist/browser/browser-adapter.d.mts +2 -2
- package/dist/browser/browser-adapter.d.ts +2 -2
- package/dist/cli/index.d.mts +2 -2
- package/dist/cli/index.d.ts +2 -2
- package/dist/cursor/cursor-adapter.d.mts +2 -2
- package/dist/cursor/cursor-adapter.d.ts +2 -2
- package/dist/cursor/extension.d.mts +2 -2
- package/dist/cursor/extension.d.ts +2 -2
- package/dist/cursor/extension.js +20 -4
- package/dist/cursor/extension.js.map +1 -1
- package/dist/cursor/extension.mjs +20 -4
- package/dist/cursor/extension.mjs.map +1 -1
- package/dist/{express-BNWqDVIz.d.mts → express-BiB51d5t.d.mts} +1 -1
- package/dist/{express-BYup_4Jg.d.ts → express-D6tEDU08.d.ts} +1 -1
- package/dist/gateway/gateway.d.mts +2 -2
- package/dist/gateway/gateway.d.ts +2 -2
- package/dist/gateway/gateway.js +20 -4
- package/dist/gateway/gateway.js.map +1 -1
- package/dist/gateway/gateway.mjs +20 -4
- package/dist/gateway/gateway.mjs.map +1 -1
- package/dist/git-trigger/git-hooks.d.mts +2 -2
- package/dist/git-trigger/git-hooks.d.ts +2 -2
- package/dist/{index-DN3ztP2d.d.ts → index-8DFMpITk.d.ts} +1 -1
- package/dist/{index-BHXa2WTO.d.mts → index-B--6fiDp.d.mts} +1 -1
- package/dist/{index-CK4lNLVn.d.mts → index-CAykfMWK.d.mts} +1 -1
- package/dist/{index-CSMpOcxV.d.ts → index-Yt02MRyu.d.ts} +1 -1
- package/dist/index.d.mts +7 -7
- package/dist/index.d.ts +7 -7
- package/dist/index.js +45 -12
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +45 -12
- package/dist/index.mjs.map +1 -1
- package/dist/local-evaluator/evaluator.d.mts +2 -2
- package/dist/local-evaluator/evaluator.d.ts +2 -2
- package/dist/{nextjs-C4h_MpgK.d.ts → nextjs-CK5F_tVZ.d.ts} +1 -1
- package/dist/{nextjs-Bzdfu8Eg.d.mts → nextjs-CpxqfQqD.d.mts} +1 -1
- package/dist/{sdk-CDdD7EcJ.d.mts → sdk-BMvauMgP.d.ts} +9 -2
- package/dist/{sdk-Tzsn6s-O.d.ts → sdk-yJjO7yzn.d.mts} +9 -2
- package/dist/transport/index.d.mts +2 -2
- package/dist/transport/index.d.ts +2 -2
- package/dist/{types-z-QVnG4b.d.mts → types-CKafuHDn.d.mts} +1 -1
- package/dist/{types-D_tmbDA_.d.mts → types-UYT4GdPW.d.mts} +15 -3
- package/dist/{types-D_tmbDA_.d.ts → types-UYT4GdPW.d.ts} +15 -3
- package/dist/{types-Bzp1SMaD.d.ts → types-ppkhdldJ.d.ts} +1 -1
- package/dist/ui/index.d.mts +1 -1
- package/dist/ui/index.d.ts +1 -1
- package/dist/ui/index.js +3 -3
- package/dist/ui/index.js.map +1 -1
- package/dist/ui/index.mjs +3 -3
- package/dist/ui/index.mjs.map +1 -1
- package/package.json +1 -1
package/dist/gateway/gateway.mjs
CHANGED
|
@@ -3015,7 +3015,7 @@ function verifyLocal(evaluator, context) {
|
|
|
3015
3015
|
// src/access-levels.ts
|
|
3016
3016
|
var ACCESS_LEVEL_HIERARCHY = {
|
|
3017
3017
|
none: 0,
|
|
3018
|
-
|
|
3018
|
+
restricted: 1,
|
|
3019
3019
|
"read-only": 2,
|
|
3020
3020
|
standard: 3,
|
|
3021
3021
|
full: 4,
|
|
@@ -3031,7 +3031,11 @@ function getTrustLevel(score) {
|
|
|
3031
3031
|
// src/verify.ts
|
|
3032
3032
|
var DEFAULT_CONFIG = {
|
|
3033
3033
|
apiBaseUrl: "https://astrasync.ai/api",
|
|
3034
|
-
|
|
3034
|
+
// v2.3.9 (defect #30): default for unconfigured callers is `'none'` (no
|
|
3035
|
+
// access). Pre-rename this defaulted to `'guidance'`, which combined with
|
|
3036
|
+
// a route gated at `'guidance'` to silently let unverified traffic
|
|
3037
|
+
// through (`hasMinimumAccess('guidance', 'guidance') === true`).
|
|
3038
|
+
defaultAccessLevel: "none",
|
|
3035
3039
|
// minTrustScore + minTrustScoreForFull deprecated in v2.3.0 — server decides.
|
|
3036
3040
|
cacheTtl: 300,
|
|
3037
3041
|
// 5 minutes
|
|
@@ -3096,7 +3100,12 @@ function createGuidanceResponse(config, reason) {
|
|
|
3096
3100
|
};
|
|
3097
3101
|
return {
|
|
3098
3102
|
verified: false,
|
|
3099
|
-
|
|
3103
|
+
// v2.3.9 (defect #30): denials grant `'none'`, NEVER a positive band.
|
|
3104
|
+
// Adapters additionally short-circuit on `verified === false` before
|
|
3105
|
+
// the gate check, but the access level still has to be honest at the
|
|
3106
|
+
// data layer so downstream consumers (SDK adapters in other languages,
|
|
3107
|
+
// custom integrations) inherit the correct semantics.
|
|
3108
|
+
accessLevel: "none",
|
|
3100
3109
|
guidance,
|
|
3101
3110
|
denialReasons: reason ? [reason] : ["No valid agent credentials provided"],
|
|
3102
3111
|
verifiedAt: /* @__PURE__ */ new Date()
|
|
@@ -3223,7 +3232,14 @@ async function verify(config, request) {
|
|
|
3223
3232
|
const aggregatedFailures = apiResponse.access?.failures;
|
|
3224
3233
|
const result2 = {
|
|
3225
3234
|
verified: false,
|
|
3226
|
-
|
|
3235
|
+
// v2.3.9 (defect #30): denials grant `'none'`, NEVER a positive band.
|
|
3236
|
+
// Pre-rename this hardcoded `'guidance'`, which conflated with the
|
|
3237
|
+
// colocated `guidance: {...}` help-payload object below and let
|
|
3238
|
+
// denied requests pass any route gated at `'guidance'` because
|
|
3239
|
+
// `hasMinimumAccess('guidance', 'guidance') === true`. Adapters now
|
|
3240
|
+
// ALSO short-circuit on `verified === false` before the gate check —
|
|
3241
|
+
// belt-and-braces.
|
|
3242
|
+
accessLevel: "none",
|
|
3227
3243
|
denialReasons: aggregatedFailures && aggregatedFailures.length > 0 ? aggregatedFailures.map((f) => f.message) : apiResponse.access?.reason ? [apiResponse.access.reason] : ["Access denied"],
|
|
3228
3244
|
failures: aggregatedFailures,
|
|
3229
3245
|
requiresStepUp: apiResponse.access?.requiresStepUp,
|