@atbash/cli 0.3.9-dev.2 → 0.3.9-dev.21

package/dist/client.js

@@ -1,217 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.DEFAULT_BLOCKCHAIN_RID = exports.DEFAULT_CHROMIA_NODE_URLS = exports.DEFAULT_ENDPOINT = void 0;
-exports.isValidPrivateKey = isValidPrivateKey;
-exports.derivePublicKey = derivePublicKey;
-exports.generateKeyPair = generateKeyPair;
-exports.toPubkeyHex = toPubkeyHex;
-exports.logToolCall = logToolCall;
-exports.judgeAction = judgeAction;
-exports.getJudgmentStatus = getJudgmentStatus;
-exports.getToolCalls = getToolCalls;
-exports.getOrgToolCalls = getOrgToolCalls;
-exports.getAgentToolCalls = getAgentToolCalls;
-exports.getToolCallCount = getToolCallCount;
-exports.getToolCallFull = getToolCallFull;
-exports.getOrgTierInfo = getOrgTierInfo;
-exports.getPendingHeldActions = getPendingHeldActions;
-exports.getHeldActionReviews = getHeldActionReviews;
-exports.getAgentDetail = getAgentDetail;
-exports.getAgentPolicy = getAgentPolicy;
-exports.getSafetyStats = getSafetyStats;
-const crypto_1 = require("crypto");
-const postchain_client_1 = require("postchain-client");
-exports.DEFAULT_ENDPOINT = "https://atbash.ai";
-exports.DEFAULT_CHROMIA_NODE_URLS = [
-    "https://node6.testnet.chromia.com:7740",
-    "https://node7.testnet.chromia.com:7740",
-    "https://node8.testnet.chromia.com:7740",
-];
-exports.DEFAULT_BLOCKCHAIN_RID = "25B41DF620C489349C54944496FF5C6E58CFCEFED0C51658780B67299D40E8ED";
-function isValidPrivateKey(hex) {
-    return /^[0-9a-fA-F]{64}$/.test(hex);
-}
-function derivePublicKey(privKeyHex) {
-    const ecdh = (0, crypto_1.createECDH)("secp256k1");
-    ecdh.setPrivateKey(Buffer.from(privKeyHex, "hex"));
-    return ecdh.getPublicKey("hex", "compressed");
-}
-function generateKeyPair() {
-    const ecdh = (0, crypto_1.createECDH)("secp256k1");
-    ecdh.generateKeys();
-    return {
-        privKey: ecdh.getPrivateKey("hex"),
-        pubKey: ecdh.getPublicKey("hex", "compressed"),
-    };
-}
-function toPubkeyHex(val) {
-    if (!val)
-        return "";
-    if (typeof val === "string")
-        return val;
-    if (Buffer.isBuffer(val))
-        return val.toString("hex");
-    if (typeof val === "object" && val !== null && "data" in val) {
-        return Buffer.from(val.data).toString("hex");
-    }
-    return "";
-}
-function baseUrl(opts) {
-    return opts?.endpoint || exports.DEFAULT_ENDPOINT;
-}
-function generateToolCallId() {
-    const ts = Date.now();
-    const rand = (0, crypto_1.randomBytes)(4).toString("hex");
-    return `tc-${ts}-${rand}`;
-}
-async function logToolCall(action, context, auth, extra, blockchainRid) {
-    const rid = blockchainRid || exports.DEFAULT_BLOCKCHAIN_RID;
-    const client = await (0, postchain_client_1.createClient)({
-        nodeUrlPool: exports.DEFAULT_CHROMIA_NODE_URLS,
-        blockchainRid: rid,
-    });
-    const privKeyBuf = Buffer.from(auth.privkey, "hex");
-    const keyPair = postchain_client_1.encryption.makeKeyPair(privKeyBuf);
-    const sigProvider = (0, postchain_client_1.newSignatureProvider)({
-        privKey: keyPair.privKey,
-        pubKey: keyPair.pubKey,
-    });
-    const toolCallId = generateToolCallId();
-    await client.signAndSendUniqueTransaction({
-        name: "log_tool_call",
-        args: [
-            toolCallId,
-            action,
-            context || "",
-            extra?.toolName || "",
-            extra?.toolArgsJson || "",
-        ],
-    }, sigProvider);
-    return toolCallId;
-}
-async function postJson(url, body, opts) {
-    const resp = await fetch(url, {
-        method: "POST",
-        headers: { "Content-Type": "application/json" },
-        body: JSON.stringify(body),
-        signal: opts?.timeout ? AbortSignal.timeout(opts.timeout) : undefined,
-    });
-    if (!resp.ok) {
-        const text = await resp.text().catch(() => "");
-        throw new Error(`API error ${resp.status}: ${text || resp.statusText}`);
-    }
-    const ct = resp.headers.get("content-type") || "";
-    return ct.includes("application/json")
-        ? resp.json()
-        : {};
-}
-async function getJson(url, opts) {
-    const resp = await fetch(url, {
-        method: "GET",
-        signal: opts?.timeout ? AbortSignal.timeout(opts.timeout) : undefined,
-    });
-    if (!resp.ok) {
-        const text = await resp.text().catch(() => "");
-        throw new Error(`API error ${resp.status}: ${text || resp.statusText}`);
-    }
-    return resp.json();
-}
-async function judgeAction(action, context, auth, opts) {
-    // Step 1: Sign and broadcast log_tool_call to the Chromia chain.
-    // The private key is used locally for signing — never sent over HTTP.
-    const toolCallId = await logToolCall(action, context, auth, {
-        toolName: opts?.toolName,
-        toolArgsJson: opts?.toolArgsJson,
-    }, opts?.blockchainRid);
-    // Step 2: Request verdict from the judge API using only the tool_call_id.
-    const url = `${baseUrl(opts)}/api/v1/judge`;
-    const data = await postJson(url, {
-        tool_call_id: toolCallId,
-        agent_pubkey: auth.pubkey,
-        action,
-        context: context || "",
-        provider: opts?.provider || "",
-        tool_name: opts?.toolName || "",
-        api_key: opts?.apiKey || "",
-        endpoint_url: opts?.providerEndpoint || "",
-        model: opts?.model || "",
-    }, opts);
-    return {
-        verdict: String(data.verdict || "").toUpperCase(),
-        action_type: String(data.action_type || ""),
-        reason: String(data.reason || ""),
-        confidence: Number(data.confidence ?? 0),
-        provider: String(data.provider || ""),
-        latency_ms: Number(data.latency_ms ?? 0),
-        tool_call_id: String(data.tool_call_id || toolCallId),
-        on_chain: Boolean(data.on_chain),
-    };
-}
-async function getJudgmentStatus(judgmentId, opts) {
-    const url = `${baseUrl(opts)}/api/v1/judge?tool_call_id=${encodeURIComponent(judgmentId)}`;
-    const data = await getJson(url, opts);
-    return {
-        status: data.status || "error",
-        verdict: String(data.verdict || ""),
-        reason: String(data.reason || ""),
-        judgmentId: String(data.judgmentId || judgmentId),
-        onChain: Boolean(data.onChain),
-        cached: Boolean(data.cached),
-        responseTimeMs: Number(data.responseTimeMs ?? 0),
-    };
-}
-function riskEngineUrl(action, params, opts) {
-    const url = new URL(`${baseUrl(opts)}/api/risk-engine`);
-    url.searchParams.set("action", action);
-    for (const [k, v] of Object.entries(params)) {
-        if (v)
-            url.searchParams.set(k, v);
-    }
-    return url.toString();
-}
-async function getToolCalls(maxCount, opts) {
-    return getJson(riskEngineUrl("tool-calls", { limit: String(maxCount) }, opts), opts);
-}
-async function getOrgToolCalls(orgName, maxCount, opts) {
-    return getJson(riskEngineUrl("org-tool-calls", { org: orgName, limit: String(maxCount) }, opts), opts);
-}
-async function getAgentToolCalls(agentPubkey, maxCount, opts) {
-    return getJson(riskEngineUrl("agent-tool-calls", { agent: agentPubkey, limit: String(maxCount) }, opts), opts);
-}
-async function getToolCallCount(opts) {
-    const result = await getJson(riskEngineUrl("tool-call-count", {}, opts), opts);
-    return typeof result === "number" ? result : Number(result ?? 0);
-}
-async function getToolCallFull(toolCallId, opts) {
-    return getJson(riskEngineUrl("tool-call-full", { tool_call_id: toolCallId }, opts), opts);
-}
-async function getOrgTierInfo(orgName, opts) {
-    return getJson(riskEngineUrl("org-tier-info", { org: orgName }, opts), opts);
-}
-async function getPendingHeldActions(orgName, maxCount, opts) {
-    return getJson(riskEngineUrl("pending-held-actions", { org: orgName, limit: String(maxCount) }, opts), opts);
-}
-async function getHeldActionReviews(orgName, maxCount, opts) {
-    return getJson(riskEngineUrl("held-action-reviews", { org: orgName, limit: String(maxCount) }, opts), opts);
-}
-function riskEnginePostUrl(opts) {
-    return `${baseUrl(opts)}/api/risk-engine`;
-}
-async function getAgentDetail(agentPubkey, opts) {
-    return postJson(riskEnginePostUrl(opts), {
-        action: "agent-detail-batch",
-        agent: agentPubkey,
-    }, opts);
-}
-async function getAgentPolicy(agentPubkey, opts) {
-    return postJson(riskEnginePostUrl(opts), {
-        action: "agent-policy-batch",
-        agent: agentPubkey,
-    }, opts);
-}
-async function getSafetyStats(opts) {
-    const url = `${baseUrl(opts)}/api/insurance?action=safety-stats`;
-    const result = await getJson(url, opts);
-    return (result?.data || result);
-}
-//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":";;;AAcA,8CAEC;AAED,0CAIC;AAED,0CAOC;AAMD,kCAQC;AAiBD,kCAqCC;AAyHD,kCAyCC;AAED,8CAgBC;AAeD,oCAQC;AAED,0CAaC;AAED,8CAaC;AAED,4CAMC;AAED,0CAQC;AAED,wCAQC;AAED,sDAaC;AAED,oDAaC;AAMD,wCAYC;AAED,wCAiBC;AAED,wCAMC;AAnbD,mCAAiD;AACjD,uDAAkF;AAErE,QAAA,gBAAgB,GAC3B,mBAAmB,CAAC;AAET,QAAA,yBAAyB,GAAG;IACvC,wCAAwC;IACxC,wCAAwC;IACxC,wCAAwC;CACzC,CAAC;AACW,QAAA,sBAAsB,GACjC,kEAAkE,CAAC;AAErE,SAAgB,iBAAiB,CAAC,GAAW;IAC3C,OAAO,mBAAmB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AACvC,CAAC;AAED,SAAgB,eAAe,CAAC,UAAkB;IAChD,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,WAAW,CAAC,CAAC;IACrC,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC,CAAC;IACnD,OAAO,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;AAChD,CAAC;AAED,SAAgB,eAAe;IAC7B,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,WAAW,CAAC,CAAC;IACrC,IAAI,CAAC,YAAY,EAAE,CAAC;IACpB,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC;QAClC,MAAM,EAAE,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,YAAY,CAAC;KAC/C,CAAC;AACJ,CAAC;AAMD,SAAgB,WAAW,CAAC,GAAY;IACtC,IAAI,CAAC,GAAG;QAAE,OAAO,EAAE,CAAC;IACpB,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,GAAG,CAAC;IACxC,IAAI,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IACrD,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,IAAI,MAAM,IAAI,GAAG,EAAE,CAAC;QAC7D,OAAO,MAAM,CAAC,IAAI,CAAE,GAA0B,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IACvE,CAAC;IACD,OAAO,EAAE,CAAC;AACZ,CAAC;AAOD,SAAS,OAAO,CAAC,IAAiB;IAChC,OAAO,IAAI,EAAE,QAAQ,IAAI,wBAAgB,CAAC;AAC5C,CAAC;AAED,SAAS,kBAAkB;IACzB,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACtB,MAAM,IAAI,GAAG,IAAA,oBAAW,EAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC5C,OAAO,MAAM,EAAE,IAAI,IAAI,EAAE,CAAC;AAC5B,CAAC;AAEM,KAAK,UAAU,WAAW,CAC/B,MAAc,EACd,OAAe,EACf,IAAe,EACf,KAAoD,EACpD,aAAsB;IAEtB,MAAM,GAAG,GAAG,aAAa,IAAI,8BAAsB,CAAC;IACpD,MAAM,MAAM,GAAG,MAAM,IAAA,+BAAY,EAAC;QAChC,WAAW,EAAE,iCAAyB;QACtC,aAAa,EAAE,GAAG;KACnB,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IACpD,MAAM,OAAO,GAAG,6BAAU,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;IACnD,MAAM,WAAW,GAAG,IAAA,uCAAoB,EAAC;QACvC,OAAO,EAAE,OAAO,CAAC,OAAO;QACxB,MAAM,EAAE,OAAO,CAAC,MAAM;KACvB,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,kBAAkB,EAAE,CAAC;IAExC,MAAM,MAAM,CAAC,4BAA4B,CACvC;QACE,IAAI,EAAE,eAAe;QACrB,IAAI,EAAE;YACJ,UAAU;YACV,MAAM;YACN,OAAO,IAAI,EAAE;YACb,KAAK,EAAE,QAAQ,IAAI,EAAE;YACrB,KAAK,EAAE,YAAY,IAAI,EAAE;SAC1B;KACF,EACD,WAAW,CACZ,CAAC;IAEF,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,KAAK,UAAU,QAAQ,CACrB,GAAW,EACX,IAA6B,EAC7B,IAAiB;IAEjB,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAC5B,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;QAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC;QAC1B,MAAM,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,SAAS;KACtE,CAAC,CAAC;IACH,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;QACb,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,aAAa,IAAI,CAAC,MAAM,KAAK,IAAI,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC;IAC1E,CAAC;IACD,MAAM,EAAE,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;IAClD,OAAO,EAAE,CAAC,QAAQ,CAAC,kBAAkB,CAAC;QACpC,CAAC,CAAE,IAAI,CAAC,IAAI,EAAiB;QAC7B,CAAC,CAAE,EAAQ,CAAC;AAChB,CAAC;AAED,KAAK,UAAU,OAAO,CAAI,GAAW,EAAE,IAAiB;IACtD,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAC5B,MAAM,EAAE,KAAK;QACb,MAAM,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,SAAS;KACtE,CAAC,CAAC;IACH,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;QACb,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;QAC/C,MAAM,IAAI,KAAK,CAAC,aAAa,IAAI,CAAC,MAAM,KAAK,IAAI,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC;IAC1E,CAAC;IACD,OAAO,IAAI,CAAC,IAAI,EAAgB,CAAC;AACnC,CAAC;AAwFM,KAAK,UAAU,WAAW,CAC/B,MAAc,EACd,OAAe,EACf,IAAe,EACf,IAAmB;IAEnB,iEAAiE;IACjE,sEAAsE;IACtE,MAAM,UAAU,GAAG,MAAM,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE;QAC1D,QAAQ,EAAE,IAAI,EAAE,QAAQ;QACxB,YAAY,EAAE,IAAI,EAAE,YAAY;KACjC,EAAE,IAAI,EAAE,aAAa,CAAC,CAAC;IAExB,0EAA0E;IAC1E,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC;IAC5C,MAAM,IAAI,GAAG,MAAM,QAAQ,CACzB,GAAG,EACH;QACE,YAAY,EAAE,UAAU;QACxB,YAAY,EAAE,IAAI,CAAC,MAAM;QACzB,MAAM;QACN,OAAO,EAAE,OAAO,IAAI,EAAE;QACtB,QAAQ,EAAE,IAAI,EAAE,QAAQ,IAAI,EAAE;QAC9B,SAAS,EAAE,IAAI,EAAE,QAAQ,IAAI,EAAE;QAC/B,OAAO,EAAE,IAAI,EAAE,MAAM,IAAI,EAAE;QAC3B,YAAY,EAAE,IAAI,EAAE,gBAAgB,IAAI,EAAE;QAC1C,KAAK,EAAE,IAAI,EAAE,KAAK,IAAI,EAAE;KACzB,EACD,IAAI,CACL,CAAC;IAEF,OAAO;QACL,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE;QACjD,WAAW,EAAE,MAAM,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC;QAC3C,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,IAAI,EAAE,CAAC;QACjC,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,CAAC;QACxC,QAAQ,EAAE,MAAM,CAAC,IAAI,CAAC,QAAQ,IAAI,EAAE,CAAC;QACrC,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,IAAI,CAAC,CAAC;QACxC,YAAY,EAAE,MAAM,CAAC,IAAI,CAAC,YAAY,IAAI,UAAU,CAAC;QACrD,QAAQ,EAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC;KACjC,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,iBAAiB,CACrC,UAAkB,EAClB,IAAiB;IAEjB,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,8BAA8B,kBAAkB,CAAC,UAAU,CAAC,EAAE,CAAC;IAC3F,MAAM,IAAI,GAAG,MAAM,OAAO,CAA0B,GAAG,EAAE,IAAI,CAAC,CAAC;IAE/D,OAAO;QACL,MAAM,EAAG,IAAI,CAAC,MAAmC,IAAI,OAAO;QAC5D,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC;QACnC,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,IAAI,EAAE,CAAC;QACjC,UAAU,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,IAAI,UAAU,CAAC;QACjD,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC;QAC9B,MAAM,EAAE,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC;QAC5B,cAAc,EAAE,MAAM,CAAC,IAAI,CAAC,cAAc,IAAI,CAAC,CAAC;KACjD,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CACpB,MAAc,EACd,MAA8B,EAC9B,IAAiB;IAEjB,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IACxD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IACvC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAC5C,IAAI,CAAC;YAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACpC,CAAC;IACD,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;AACxB,CAAC;AAEM,KAAK,UAAU,YAAY,CAChC,QAAgB,EAChB,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CAAC,YAAY,EAAE,EAAE,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE,EAAE,IAAI,CAAC,EAC9D,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,eAAe,CACnC,OAAe,EACf,QAAgB,EAChB,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CACX,gBAAgB,EAChB,EAAE,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE,EACzC,IAAI,CACL,EACD,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,iBAAiB,CACrC,WAAmB,EACnB,QAAgB,EAChB,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CACX,kBAAkB,EAClB,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE,EAC/C,IAAI,CACL,EACD,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,gBAAgB,CAAC,IAAiB;IACtD,MAAM,MAAM,GAAG,MAAM,OAAO,CAC1B,aAAa,CAAC,iBAAiB,EAAE,EAAE,EAAE,IAAI,CAAC,EAC1C,IAAI,CACL,CAAC;IACF,OAAO,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;AACnE,CAAC;AAEM,KAAK,UAAU,eAAe,CACnC,UAAkB,EAClB,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CAAC,gBAAgB,EAAE,EAAE,YAAY,EAAE,UAAU,EAAE,EAAE,IAAI,CAAC,EACnE,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,cAAc,CAClC,OAAe,EACf,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CAAC,eAAe,EAAE,EAAE,GAAG,EAAE,OAAO,EAAE,EAAE,IAAI,CAAC,EACtD,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,qBAAqB,CACzC,OAAe,EACf,QAAgB,EAChB,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CACX,sBAAsB,EACtB,EAAE,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE,EACzC,IAAI,CACL,EACD,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,oBAAoB,CACxC,OAAe,EACf,QAAgB,EAChB,IAAiB;IAEjB,OAAO,OAAO,CACZ,aAAa,CACX,qBAAqB,EACrB,EAAE,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,QAAQ,CAAC,EAAE,EACzC,IAAI,CACL,EACD,IAAI,CACL,CAAC;AACJ,CAAC;AAED,SAAS,iBAAiB,CAAC,IAAiB;IAC1C,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,kBAAkB,CAAC;AAC5C,CAAC;AAEM,KAAK,UAAU,cAAc,CAClC,WAAmB,EACnB,IAAiB;IAEjB,OAAO,QAAQ,CACb,iBAAiB,CAAC,IAAI,CAAC,EACvB;QACE,MAAM,EAAE,oBAAoB;QAC5B,KAAK,EAAE,WAAW;KACnB,EACD,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,cAAc,CAClC,WAAmB,EACnB,IAAiB;IAOjB,OAAO,QAAQ,CACb,iBAAiB,CAAC,IAAI,CAAC,EACvB;QACE,MAAM,EAAE,oBAAoB;QAC5B,KAAK,EAAE,WAAW;KACnB,EACD,IAAI,CACL,CAAC;AACJ,CAAC;AAEM,KAAK,UAAU,cAAc,CAClC,IAAiB;IAEjB,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,oCAAoC,CAAC;IACjE,MAAM,MAAM,GAAG,MAAM,OAAO,CAAqC,GAAG,EAAE,IAAI,CAAC,CAAC;IAC5E,OAAO,CAAC,MAAM,EAAE,IAAI,IAAI,MAAM,CAA4B,CAAC;AAC7D,CAAC"}

package/dist/commands/jail.d.ts

@@ -1,6 +0,0 @@
-/**
- * `atbash unjail` — Unjail an agent via POST /api/risk-engine action=unjail-agent.
- * Jail command removed — jailing happens automatically on RED verdict in Enforcement tier.
- */
-import { Command } from "commander";
-export declare function registerUnjailCommand(program: Command): void;

package/dist/commands/jail.js

@@ -1,44 +0,0 @@
-"use strict";
-/**
- * `atbash unjail` — Unjail an agent via POST /api/risk-engine action=unjail-agent.
- * Jail command removed — jailing happens automatically on RED verdict in Enforcement tier.
- */
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.registerUnjailCommand = registerUnjailCommand;
-const chalk_1 = __importDefault(require("chalk"));
-const ora_1 = __importDefault(require("ora"));
-const client_1 = require("../client");
-const config_1 = require("../config");
-function registerUnjailCommand(program) {
-    program
-        .command("unjail")
-        .description("Unjail an agent")
-        .argument("<agent-pubkey>", "Agent public key to unjail (hex)")
-        .option("--endpoint <url>", "API endpoint URL")
-        .option("--json", "Output result as JSON")
-        .action(async (agentPubkey, opts) => {
-        const spinner = opts.json ? null : (0, ora_1.default)("Unjailing agent...").start();
-        try {
-            await (0, client_1.unjailAgent)(agentPubkey, {
-                endpoint: (0, config_1.resolveEndpoint)(opts.endpoint),
-            });
-            spinner?.succeed("Agent unjailed");
-            if (opts.json) {
-                console.log(JSON.stringify({ agentPubkey, action: "unjailed" }, null, 2));
-                return;
-            }
-            console.log();
-            console.log(`  Agent:  ${chalk_1.default.dim(agentPubkey.slice(0, 8) + "..." + agentPubkey.slice(-6))}`);
-            console.log(`  Status: ${chalk_1.default.green.bold("ACTIVE")}`);
-        }
-        catch (err) {
-            spinner?.fail("Failed to unjail agent");
-            console.error(chalk_1.default.red(`\nError: ${err instanceof Error ? err.message : String(err)}`));
-            process.exit(1);
-        }
-    });
-}
-//# sourceMappingURL=jail.js.map

package/dist/commands/jail.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"jail.js","sourceRoot":"","sources":["../../src/commands/jail.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;;;AAQH,sDA+BC;AApCD,kDAA0B;AAC1B,8CAAsB;AACtB,sCAAwC;AACxC,sCAA4C;AAE5C,SAAgB,qBAAqB,CAAC,OAAgB;IACpD,OAAO;SACJ,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,iBAAiB,CAAC;SAC9B,QAAQ,CAAC,gBAAgB,EAAE,kCAAkC,CAAC;SAC9D,MAAM,CAAC,kBAAkB,EAAE,kBAAkB,CAAC;SAC9C,MAAM,CAAC,QAAQ,EAAE,uBAAuB,CAAC;SACzC,MAAM,CAAC,KAAK,EAAE,WAAmB,EAAE,IAAI,EAAE,EAAE;QAC1C,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAA,aAAG,EAAC,oBAAoB,CAAC,CAAC,KAAK,EAAE,CAAC;QAErE,IAAI,CAAC;YACH,MAAM,IAAA,oBAAW,EAAC,WAAW,EAAE;gBAC7B,QAAQ,EAAE,IAAA,wBAAe,EAAC,IAAI,CAAC,QAAQ,CAAC;aACzC,CAAC,CAAC;YAEH,OAAO,EAAE,OAAO,CAAC,gBAAgB,CAAC,CAAC;YAEnC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;gBACd,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;gBAC1E,OAAO;YACT,CAAC;YAED,OAAO,CAAC,GAAG,EAAE,CAAC;YACd,OAAO,CAAC,GAAG,CAAC,aAAa,eAAK,CAAC,GAAG,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAC/F,OAAO,CAAC,GAAG,CAAC,aAAa,eAAK,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;QACzD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,EAAE,IAAI,CAAC,wBAAwB,CAAC,CAAC;YACxC,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,GAAG,CAAC,YAAY,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;YACzF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC,CAAC,CAAC;AACP,CAAC"}

package/dist/commands/org.d.ts

@@ -1,2 +0,0 @@
-import { Command } from "commander";
-export declare function registerOrgCommand(program: Command): void;

package/dist/commands/org.js

@@ -1,72 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.registerOrgCommand = registerOrgCommand;
-const chalk_1 = __importDefault(require("chalk"));
-const ora_1 = __importDefault(require("ora"));
-const client_1 = require("../client");
-const config_1 = require("../config");
-function registerOrgCommand(program) {
-    const org = program
-        .command("org")
-        .description("Manage org membership");
-    org
-        .command("join")
-        .description("Add your agent to an org")
-        .option("--org <name>", "Org name to join")
-        .option("-k, --agent-key <key>", "Agent private key (to derive pubkey)")
-        .option("--agent-pubkey <pubkey>", "Agent public key directly (66 hex chars)")
-        .option("--endpoint <url>", "API endpoint URL")
-        .option("--json", "Output result as JSON")
-        .action(async (opts) => {
-        const orgName = opts.org || (0, config_1.resolveOrgName)();
-        if (!orgName) {
-            console.error(chalk_1.default.red("Error: Org name required.\n") +
-                "Provide via --org, ATBASH_ORG_NAME env var, or run " +
-                chalk_1.default.cyan("atbash set org-name <name>"));
-            process.exit(1);
-        }
-        let pubkey = opts.agentPubkey || "";
-        if (!pubkey) {
-            const agentKey = (0, config_1.resolveAgentKey)(opts.agentKey);
-            if (!agentKey) {
-                console.error(chalk_1.default.red("Error: Agent key or --agent-pubkey required.\n") +
-                    "Provide via --agent-key, --agent-pubkey, or run " +
-                    chalk_1.default.cyan("atbash set agent-key <key>"));
-                process.exit(1);
-                return;
-            }
-            const cleanKey = agentKey.replace(/^0x/, "").trim().toLowerCase();
-            if (!(0, client_1.isValidPrivateKey)(cleanKey)) {
-                console.error(chalk_1.default.red("Error: Invalid private key."));
-                process.exit(1);
-            }
-            pubkey = (0, client_1.derivePublicKey)(cleanKey);
-        }
-        const spinner = opts.json
-            ? null
-            : (0, ora_1.default)(`Adding agent to ${orgName}...`).start();
-        try {
-            await (0, client_1.addAgentToOrg)(pubkey, orgName, {
-                endpoint: (0, config_1.resolveEndpoint)(opts.endpoint),
-            });
-            spinner?.succeed(`Agent added to ${orgName}`);
-            if (opts.json) {
-                console.log(JSON.stringify({ agentPubkey: pubkey, orgName, status: "added" }, null, 2));
-                return;
-            }
-            console.log();
-            console.log(`  Agent: ${chalk_1.default.cyan(pubkey)}`);
-            console.log(`  Org:   ${chalk_1.default.white(orgName)}`);
-        }
-        catch (err) {
-            spinner?.fail("Failed to add agent to org");
-            const msg = err instanceof Error ? err.message : String(err);
-            console.error(chalk_1.default.red(`\nError: ${err}`));
-            process.exit(1);
-        }
-    });
-}
-//# sourceMappingURL=org.js.map

package/dist/commands/org.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"org.js","sourceRoot":"","sources":["../../src/commands/org.ts"],"names":[],"mappings":";;;;;AAMA,gDAyEC;AA9ED,kDAA0B;AAC1B,8CAAsB;AACtB,sCAA8E;AAC9E,sCAA6E;AAE7E,SAAgB,kBAAkB,CAAC,OAAgB;IACjD,MAAM,GAAG,GAAG,OAAO;SAChB,OAAO,CAAC,KAAK,CAAC;SACd,WAAW,CAAC,uBAAuB,CAAC,CAAC;IAExC,GAAG;SACA,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,0BAA0B,CAAC;SACvC,MAAM,CAAC,cAAc,EAAE,kBAAkB,CAAC;SAC1C,MAAM,CAAC,uBAAuB,EAAE,sCAAsC,CAAC;SACvE,MAAM,CAAC,yBAAyB,EAAE,0CAA0C,CAAC;SAC7E,MAAM,CAAC,kBAAkB,EAAE,kBAAkB,CAAC;SAC9C,MAAM,CAAC,QAAQ,EAAE,uBAAuB,CAAC;SACzC,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,EAAE;QACrB,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,IAAI,IAAA,uBAAc,GAAE,CAAC;QAC7C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,CAAC,KAAK,CACX,eAAK,CAAC,GAAG,CAAC,6BAA6B,CAAC;gBACtC,qDAAqD;gBACrD,eAAK,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAC3C,CAAC;YACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAED,IAAI,MAAM,GAAG,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC;QAEpC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,QAAQ,GAAG,IAAA,wBAAe,EAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YAChD,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,OAAO,CAAC,KAAK,CACX,eAAK,CAAC,GAAG,CAAC,gDAAgD,CAAC;oBACzD,kDAAkD;oBAClD,eAAK,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAC3C,CAAC;gBACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;gBAChB,OAAO;YACT,CAAC;YACD,MAAM,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YAClE,IAAI,CAAC,IAAA,0BAAiB,EAAC,QAAQ,CAAC,EAAE,CAAC;gBACjC,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC,CAAC;gBACxD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;YACD,MAAM,GAAG,IAAA,wBAAe,EAAC,QAAQ,CAAC,CAAC;QACrC,CAAC;QAED,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI;YACvB,CAAC,CAAC,IAAI;YACN,CAAC,CAAC,IAAA,aAAG,EAAC,mBAAmB,OAAO,KAAK,CAAC,CAAC,KAAK,EAAE,CAAC;QAEjD,IAAI,CAAC;YACH,MAAM,IAAA,sBAAa,EAAC,MAAM,EAAE,OAAO,EAAE;gBACnC,QAAQ,EAAE,IAAA,wBAAe,EAAC,IAAI,CAAC,QAAQ,CAAC;aACzC,CAAC,CAAC;YAEH,OAAO,EAAE,OAAO,CAAC,kBAAkB,OAAO,EAAE,CAAC,CAAC;YAE9C,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;gBACd,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CAAC,EAAE,WAAW,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAC3E,CAAC;gBACF,OAAO;YACT,CAAC;YAED,OAAO,CAAC,GAAG,EAAE,CAAC;YACd,OAAO,CAAC,GAAG,CAAC,YAAY,eAAK,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YAC9C,OAAO,CAAC,GAAG,CAAC,YAAY,eAAK,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAClD,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,EAAE,IAAI,CAAC,4BAA4B,CAAC,CAAC;YAC5C,MAAM,GAAG,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YAC7D,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,GAAG,CAAC,YAAY,GAAG,EAAE,CAAC,CAAC,CAAC;YAC5C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC,CAAC,CAAC;AACP,CAAC"}

package/dist/config.d.ts

@@ -1,25 +0,0 @@
-declare const CONFIG_FILE: string;
-export interface AtbashConfig {
-    agentKey?: string;
-    adminKey?: string;
-    orgName?: string;
-    judgeEndpoint?: string;
-    blockchainRid?: string;
-    provider?: string;
-    providerApiKey?: string;
-    providerEndpoint?: string;
-    providerModel?: string;
-    debug?: boolean;
-}
-export declare function loadConfig(): AtbashConfig;
-export declare function saveConfig(config: AtbashConfig): void;
-/** Resolve a config value with priority: flag > env > file */
-export declare function resolveAgentKey(flagValue?: string): string | undefined;
-export declare function resolveOrgName(flagValue?: string): string | undefined;
-export declare function resolveEndpoint(flagValue?: string): string | undefined;
-export declare function resolveProvider(flagValue?: string): string;
-export declare function resolveProviderApiKey(flagValue?: string): string;
-export declare function resolveProviderEndpoint(flagValue?: string): string;
-export declare function resolveProviderModel(flagValue?: string): string;
-export declare function resolveBlockchainRid(flagValue?: string): string;
-export { CONFIG_FILE };

package/dist/config.js

@@ -1,94 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.CONFIG_FILE = void 0;
-exports.loadConfig = loadConfig;
-exports.saveConfig = saveConfig;
-exports.resolveAgentKey = resolveAgentKey;
-exports.resolveOrgName = resolveOrgName;
-exports.resolveEndpoint = resolveEndpoint;
-exports.resolveProvider = resolveProvider;
-exports.resolveProviderApiKey = resolveProviderApiKey;
-exports.resolveProviderEndpoint = resolveProviderEndpoint;
-exports.resolveProviderModel = resolveProviderModel;
-exports.resolveBlockchainRid = resolveBlockchainRid;
-const fs = __importStar(require("fs"));
-const path = __importStar(require("path"));
-const os = __importStar(require("os"));
-const CONFIG_FILE = path.join(os.homedir(), ".atbashrc.json");
-exports.CONFIG_FILE = CONFIG_FILE;
-function loadConfig() {
-    try {
-        if (fs.existsSync(CONFIG_FILE)) {
-            const raw = fs.readFileSync(CONFIG_FILE, "utf-8");
-            if (!raw.trim())
-                return {};
-            return JSON.parse(raw);
-        }
-    }
-    catch (err) {
-        console.error("Failed to load config file", err);
-    }
-    return {};
-}
-function saveConfig(config) {
-    fs.writeFileSync(CONFIG_FILE, JSON.stringify(config, null, 2) + "\n", "utf-8");
-}
-/** Resolve a config value with priority: flag > env > file */
-function resolveAgentKey(flagValue) {
-    return flagValue || process.env.ATBASH_AGENT_KEY || loadConfig().agentKey;
-}
-function resolveOrgName(flagValue) {
-    return flagValue || process.env.ATBASH_ORG_NAME || loadConfig().orgName;
-}
-function resolveEndpoint(flagValue) {
-    return flagValue || process.env.ATBASH_ENDPOINT || loadConfig().judgeEndpoint;
-}
-function resolveProvider(flagValue) {
-    return flagValue || process.env.ATBASH_PROVIDER || loadConfig().provider || "";
-}
-function resolveProviderApiKey(flagValue) {
-    return flagValue || process.env.ATBASH_PROVIDER_API_KEY || loadConfig().providerApiKey || "";
-}
-function resolveProviderEndpoint(flagValue) {
-    return flagValue || process.env.ATBASH_PROVIDER_ENDPOINT || loadConfig().providerEndpoint || "";
-}
-function resolveProviderModel(flagValue) {
-    return flagValue || process.env.ATBASH_PROVIDER_MODEL || loadConfig().providerModel || "";
-}
-function resolveBlockchainRid(flagValue) {
-    return flagValue || process.env.ATBASH_BLOCKCHAIN_RID || loadConfig().blockchainRid || "";
-}
-//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAmBA,gCAWC;AAED,gCAEC;AAGD,0CAEC;AAED,wCAEC;AAED,0CAEC;AAED,0CAEC;AAED,sDAEC;AAED,0DAEC;AAED,oDAEC;AAED,oDAEC;AAnED,uCAAyB;AACzB,2CAA6B;AAC7B,uCAAyB;AAEzB,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,gBAAgB,CAAC,CAAC;AAiErD,kCAAW;AAlDpB,SAAgB,UAAU;IACxB,IAAI,CAAC;QACH,IAAI,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YAC/B,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;YAClD,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE;gBAAE,OAAO,EAAE,CAAC;YAC3B,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAiB,CAAC;QACzC,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,4BAA4B,EAAE,GAAG,CAAC,CAAC;IACnD,CAAC;IACD,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,SAAgB,UAAU,CAAC,MAAoB;IAC7C,EAAE,CAAC,aAAa,CAAC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC,CAAC;AACjF,CAAC;AAED,8DAA8D;AAC9D,SAAgB,eAAe,CAAC,SAAkB;IAChD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,UAAU,EAAE,CAAC,QAAQ,CAAC;AAC5E,CAAC;AAED,SAAgB,cAAc,CAAC,SAAkB;IAC/C,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,UAAU,EAAE,CAAC,OAAO,CAAC;AAC1E,CAAC;AAED,SAAgB,eAAe,CAAC,SAAkB;IAChD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,UAAU,EAAE,CAAC,aAAa,CAAC;AAChF,CAAC;AAED,SAAgB,eAAe,CAAC,SAAkB;IAChD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,UAAU,EAAE,CAAC,QAAQ,IAAI,EAAE,CAAC;AACjF,CAAC;AAED,SAAgB,qBAAqB,CAAC,SAAkB;IACtD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,UAAU,EAAE,CAAC,cAAc,IAAI,EAAE,CAAC;AAC/F,CAAC;AAED,SAAgB,uBAAuB,CAAC,SAAkB;IACxD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,wBAAwB,IAAI,UAAU,EAAE,CAAC,gBAAgB,IAAI,EAAE,CAAC;AAClG,CAAC;AAED,SAAgB,oBAAoB,CAAC,SAAkB;IACrD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,UAAU,EAAE,CAAC,aAAa,IAAI,EAAE,CAAC;AAC5F,CAAC;AAED,SAAgB,oBAAoB,CAAC,SAAkB;IACrD,OAAO,SAAS,IAAI,OAAO,CAAC,GAAG,CAAC,qBAAqB,IAAI,UAAU,EAAE,CAAC,aAAa,IAAI,EAAE,CAAC;AAC5F,CAAC"}

package/dist/presets.d.ts

@@ -1,14 +0,0 @@
-/**
- * Reference policy shapes for the Atbash CLI.
- *
- * These are reference packs — the starting points an operator might author
- * against. They match the format produced by the dashboard's
- * buildCompactPolicyText(). Production policies are authored, versioned, and
- * signed in the dashboard, not loaded from here.
- */
-export declare const PRESETS: Record<string, {
-    name: string;
-    description: string;
-    policy: string;
-}>;
-export declare function listPresets(): string[];

package/dist/presets.js

@@ -1,73 +0,0 @@
-"use strict";
-/**
- * Reference policy shapes for the Atbash CLI.
- *
- * These are reference packs — the starting points an operator might author
- * against. They match the format produced by the dashboard's
- * buildCompactPolicyText(). Production policies are authored, versioned, and
- * signed in the dashboard, not loaded from here.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.PRESETS = void 0;
-exports.listPresets = listPresets;
-exports.PRESETS = {
-    strict: {
-        name: "Strict",
-        description: "Reference shape for privileged-ops agents — blocks IAM elevation, credential export, and bulk exfil; holds every cross-border or over-threshold transfer",
-        policy: `Agent Policy
-Risk: high
-
-Enabled rules:
-- [Financial] CRITICAL -> BLOCK when Transfers exceeding threshold to unwhitelisted addresses (threshold: $1,000) <!--f1-->
-- [Financial] HIGH -> HOLD when Cross-border transactions (threshold: All) <!--f2-->
-- [Financial] CRITICAL -> BLOCK when Cryptocurrency wallet transfers without 2FA confirmation (threshold: Any amount) <!--f3-->
-- [Financial] HIGH -> HOLD when Invoice generation or payment request above threshold (threshold: $5,000) <!--f5-->
-- [Financial] CRITICAL -> BLOCK when Access to payment gateway API keys or merchant credentials (threshold: Any) <!--f6-->
-- [Communication] HIGH -> BLOCK when Mass emails exceeding recipient threshold without approval (threshold: 50 recipients) <!--c2-->
-- [Communication] CRITICAL -> BLOCK when Outbound messages to domains on blocklist (threshold: Custom list) <!--c5-->
-- [Communication] CRITICAL -> BLOCK when Sending messages impersonating another user or agent (threshold: Any) <!--c7-->
-- [File system] CRITICAL -> BLOCK when Read/write to restricted directories (threshold: /etc, /var, ~/.ssh) <!--fs1-->
-- [File system] CRITICAL -> BLOCK when Access to credential or secret files (threshold: .env, config, secrets.*) <!--fs3-->
-- [Code execution] CRITICAL -> BLOCK when Elevated privilege commands (threshold: sudo, chmod, rm -rf) <!--ce1-->
-- [Code execution] CRITICAL -> BLOCK when Spawning reverse shells or outbound listeners (threshold: Any) <!--ce3-->
-- [Network] CRITICAL -> BLOCK when Connections to malicious or blacklisted domains (threshold: Threat intel feed) <!--nw1-->
-- [Network] CRITICAL -> BLOCK when Data exfiltration exceeding size (threshold: 10 MB) <!--nw4-->
-- [Accounts] CRITICAL -> BLOCK when Privilege escalation or admin scope requests (threshold: Any) <!--ai1-->
-- [Accounts] CRITICAL -> BLOCK when Password or credential reset attempts (threshold: Any) <!--ai4-->`,
-    },
-    moderate: {
-        name: "Moderate",
-        description: "Reference shape for business-ops agents — blocks clear red lines, holds mid-blast-radius actions for human review",
-        policy: `Agent Policy
-Risk: medium
-
-Enabled rules:
-- [Financial] CRITICAL -> BLOCK when Transfers exceeding threshold to unwhitelisted addresses (threshold: $5,000) <!--f1-->
-- [Financial] HIGH -> HOLD when Cross-border transactions (threshold: All) <!--f2-->
-- [Financial] CRITICAL -> BLOCK when Cryptocurrency wallet transfers without 2FA (threshold: Any amount) <!--f3-->
-- [Financial] LOW -> PASS when Recurring payments to pre-approved vendors under threshold (threshold: $500) <!--f4-->
-- [Communication] MEDIUM -> HOLD when Emails to external domains with large attachments (threshold: 5 MB) <!--c1-->
-- [Communication] HIGH -> BLOCK when Mass emails exceeding recipient threshold (threshold: 50 recipients) <!--c2-->
-- [Communication] CRITICAL -> BLOCK when Outbound messages to domains on blocklist (threshold: Custom list) <!--c5-->
-- [Code execution] CRITICAL -> BLOCK when Elevated privilege commands (threshold: sudo, chmod, rm -rf) <!--ce1-->
-- [Code execution] CRITICAL -> BLOCK when Spawning reverse shells or outbound listeners (threshold: Any) <!--ce3-->
-- [Network] CRITICAL -> BLOCK when Connections to malicious or blacklisted domains (threshold: Threat intel feed) <!--nw1-->`,
-    },
-    minimal: {
-        name: "Minimal",
-        description: "Reference shape for audit-tier rollout — only the categorical red lines, intended for observation before enforcement is turned on",
-        policy: `Agent Policy
-Risk: low
-
-Enabled rules:
-- [Financial] CRITICAL -> BLOCK when Transfers exceeding threshold to unwhitelisted addresses (threshold: $10,000) <!--f1-->
-- [Financial] CRITICAL -> BLOCK when Cryptocurrency wallet transfers without 2FA (threshold: Any amount) <!--f3-->
-- [Code execution] CRITICAL -> BLOCK when Spawning reverse shells or outbound listeners (threshold: Any) <!--ce3-->
-- [Network] CRITICAL -> BLOCK when Connections to malicious or blacklisted domains (threshold: Threat intel feed) <!--nw1-->
-- [Network] CRITICAL -> BLOCK when Data exfiltration exceeding size (threshold: 10 MB) <!--nw4-->`,
-    },
-};
-function listPresets() {
-    return Object.keys(exports.PRESETS);
-}
-//# sourceMappingURL=presets.js.map

package/dist/presets.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"presets.js","sourceRoot":"","sources":["../src/presets.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;AA8DH,kCAEC;AA9DY,QAAA,OAAO,GAA0E;IAC5F,MAAM,EAAE;QACN,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,0JAA0J;QACvK,MAAM,EAAE;;;;;;;;;;;;;;;;;;;sGAmB0F;KACnG;IAED,QAAQ,EAAE;QACR,IAAI,EAAE,UAAU;QAChB,WAAW,EAAE,mHAAmH;QAChI,MAAM,EAAE;;;;;;;;;;;;;6HAaiH;KAC1H;IAED,OAAO,EAAE;QACP,IAAI,EAAE,SAAS;QACf,WAAW,EAAE,mIAAmI;QAChJ,MAAM,EAAE;;;;;;;;kGAQsF;KAC/F;CACF,CAAC;AAEF,SAAgB,WAAW;IACzB,OAAO,MAAM,CAAC,IAAI,CAAC,eAAO,CAAC,CAAC;AAC9B,CAAC"}