@astrasyncai/verification-gateway 2.3.8 → 2.3.9
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +93 -10
- package/dist/adapter-interface/interface.d.mts +2 -2
- package/dist/adapter-interface/interface.d.ts +2 -2
- package/dist/adapters/express.d.mts +2 -2
- package/dist/adapters/express.d.ts +2 -2
- package/dist/adapters/express.js +39 -6
- package/dist/adapters/express.js.map +1 -1
- package/dist/adapters/express.mjs +39 -6
- package/dist/adapters/express.mjs.map +1 -1
- package/dist/adapters/mcp.d.mts +1 -1
- package/dist/adapters/mcp.d.ts +1 -1
- package/dist/adapters/mcp.js +53 -11
- package/dist/adapters/mcp.js.map +1 -1
- package/dist/adapters/mcp.mjs +53 -11
- package/dist/adapters/mcp.mjs.map +1 -1
- package/dist/adapters/nextjs.d.mts +2 -2
- package/dist/adapters/nextjs.d.ts +2 -2
- package/dist/adapters/nextjs.js +21 -5
- package/dist/adapters/nextjs.js.map +1 -1
- package/dist/adapters/nextjs.mjs +21 -5
- package/dist/adapters/nextjs.mjs.map +1 -1
- package/dist/adapters/sdk.d.mts +2 -2
- package/dist/adapters/sdk.d.ts +2 -2
- package/dist/adapters/sdk.js +21 -5
- package/dist/adapters/sdk.js.map +1 -1
- package/dist/adapters/sdk.mjs +21 -5
- package/dist/adapters/sdk.mjs.map +1 -1
- package/dist/agent/index.d.mts +2 -2
- package/dist/agent/index.d.ts +2 -2
- package/dist/browser/background.js +20 -4
- package/dist/browser/background.js.map +1 -1
- package/dist/browser/background.mjs +20 -4
- package/dist/browser/background.mjs.map +1 -1
- package/dist/browser/browser-adapter.d.mts +2 -2
- package/dist/browser/browser-adapter.d.ts +2 -2
- package/dist/cli/index.d.mts +2 -2
- package/dist/cli/index.d.ts +2 -2
- package/dist/cursor/cursor-adapter.d.mts +2 -2
- package/dist/cursor/cursor-adapter.d.ts +2 -2
- package/dist/cursor/extension.d.mts +2 -2
- package/dist/cursor/extension.d.ts +2 -2
- package/dist/cursor/extension.js +20 -4
- package/dist/cursor/extension.js.map +1 -1
- package/dist/cursor/extension.mjs +20 -4
- package/dist/cursor/extension.mjs.map +1 -1
- package/dist/{express-BNWqDVIz.d.mts → express-BiB51d5t.d.mts} +1 -1
- package/dist/{express-BYup_4Jg.d.ts → express-D6tEDU08.d.ts} +1 -1
- package/dist/gateway/gateway.d.mts +2 -2
- package/dist/gateway/gateway.d.ts +2 -2
- package/dist/gateway/gateway.js +20 -4
- package/dist/gateway/gateway.js.map +1 -1
- package/dist/gateway/gateway.mjs +20 -4
- package/dist/gateway/gateway.mjs.map +1 -1
- package/dist/git-trigger/git-hooks.d.mts +2 -2
- package/dist/git-trigger/git-hooks.d.ts +2 -2
- package/dist/{index-DN3ztP2d.d.ts → index-8DFMpITk.d.ts} +1 -1
- package/dist/{index-BHXa2WTO.d.mts → index-B--6fiDp.d.mts} +1 -1
- package/dist/{index-CK4lNLVn.d.mts → index-CAykfMWK.d.mts} +1 -1
- package/dist/{index-CSMpOcxV.d.ts → index-Yt02MRyu.d.ts} +1 -1
- package/dist/index.d.mts +7 -7
- package/dist/index.d.ts +7 -7
- package/dist/index.js +45 -12
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +45 -12
- package/dist/index.mjs.map +1 -1
- package/dist/local-evaluator/evaluator.d.mts +2 -2
- package/dist/local-evaluator/evaluator.d.ts +2 -2
- package/dist/{nextjs-C4h_MpgK.d.ts → nextjs-CK5F_tVZ.d.ts} +1 -1
- package/dist/{nextjs-Bzdfu8Eg.d.mts → nextjs-CpxqfQqD.d.mts} +1 -1
- package/dist/{sdk-CDdD7EcJ.d.mts → sdk-BMvauMgP.d.ts} +9 -2
- package/dist/{sdk-Tzsn6s-O.d.ts → sdk-yJjO7yzn.d.mts} +9 -2
- package/dist/transport/index.d.mts +2 -2
- package/dist/transport/index.d.ts +2 -2
- package/dist/{types-z-QVnG4b.d.mts → types-CKafuHDn.d.mts} +1 -1
- package/dist/{types-D_tmbDA_.d.mts → types-UYT4GdPW.d.mts} +15 -3
- package/dist/{types-D_tmbDA_.d.ts → types-UYT4GdPW.d.ts} +15 -3
- package/dist/{types-Bzp1SMaD.d.ts → types-ppkhdldJ.d.ts} +1 -1
- package/dist/ui/index.d.mts +1 -1
- package/dist/ui/index.d.ts +1 -1
- package/dist/ui/index.js +3 -3
- package/dist/ui/index.js.map +1 -1
- package/dist/ui/index.mjs +3 -3
- package/dist/ui/index.mjs.map +1 -1
- package/package.json +1 -1
|
@@ -3281,7 +3281,7 @@ function verifyLocal(evaluator, context) {
|
|
|
3281
3281
|
// src/access-levels.ts
|
|
3282
3282
|
var ACCESS_LEVEL_HIERARCHY = {
|
|
3283
3283
|
none: 0,
|
|
3284
|
-
|
|
3284
|
+
restricted: 1,
|
|
3285
3285
|
"read-only": 2,
|
|
3286
3286
|
standard: 3,
|
|
3287
3287
|
full: 4,
|
|
@@ -3297,7 +3297,11 @@ function getTrustLevel(score) {
|
|
|
3297
3297
|
// src/verify.ts
|
|
3298
3298
|
var DEFAULT_CONFIG = {
|
|
3299
3299
|
apiBaseUrl: "https://astrasync.ai/api",
|
|
3300
|
-
|
|
3300
|
+
// v2.3.9 (defect #30): default for unconfigured callers is `'none'` (no
|
|
3301
|
+
// access). Pre-rename this defaulted to `'guidance'`, which combined with
|
|
3302
|
+
// a route gated at `'guidance'` to silently let unverified traffic
|
|
3303
|
+
// through (`hasMinimumAccess('guidance', 'guidance') === true`).
|
|
3304
|
+
defaultAccessLevel: "none",
|
|
3301
3305
|
// minTrustScore + minTrustScoreForFull deprecated in v2.3.0 — server decides.
|
|
3302
3306
|
cacheTtl: 300,
|
|
3303
3307
|
// 5 minutes
|
|
@@ -3362,7 +3366,12 @@ function createGuidanceResponse(config, reason) {
|
|
|
3362
3366
|
};
|
|
3363
3367
|
return {
|
|
3364
3368
|
verified: false,
|
|
3365
|
-
|
|
3369
|
+
// v2.3.9 (defect #30): denials grant `'none'`, NEVER a positive band.
|
|
3370
|
+
// Adapters additionally short-circuit on `verified === false` before
|
|
3371
|
+
// the gate check, but the access level still has to be honest at the
|
|
3372
|
+
// data layer so downstream consumers (SDK adapters in other languages,
|
|
3373
|
+
// custom integrations) inherit the correct semantics.
|
|
3374
|
+
accessLevel: "none",
|
|
3366
3375
|
guidance,
|
|
3367
3376
|
denialReasons: reason ? [reason] : ["No valid agent credentials provided"],
|
|
3368
3377
|
verifiedAt: /* @__PURE__ */ new Date()
|
|
@@ -3489,7 +3498,14 @@ async function verify(config, request) {
|
|
|
3489
3498
|
const aggregatedFailures = apiResponse.access?.failures;
|
|
3490
3499
|
const result2 = {
|
|
3491
3500
|
verified: false,
|
|
3492
|
-
|
|
3501
|
+
// v2.3.9 (defect #30): denials grant `'none'`, NEVER a positive band.
|
|
3502
|
+
// Pre-rename this hardcoded `'guidance'`, which conflated with the
|
|
3503
|
+
// colocated `guidance: {...}` help-payload object below and let
|
|
3504
|
+
// denied requests pass any route gated at `'guidance'` because
|
|
3505
|
+
// `hasMinimumAccess('guidance', 'guidance') === true`. Adapters now
|
|
3506
|
+
// ALSO short-circuit on `verified === false` before the gate check —
|
|
3507
|
+
// belt-and-braces.
|
|
3508
|
+
accessLevel: "none",
|
|
3493
3509
|
denialReasons: aggregatedFailures && aggregatedFailures.length > 0 ? aggregatedFailures.map((f) => f.message) : apiResponse.access?.reason ? [apiResponse.access.reason] : ["Access denied"],
|
|
3494
3510
|
failures: aggregatedFailures,
|
|
3495
3511
|
requiresStepUp: apiResponse.access?.requiresStepUp,
|