@axonflow/sdk 1.4.2 → 1.6.0

package/dist/cjs/types/policies.d.ts

@@ -0,0 +1,362 @@
+/**
+ * Policy CRUD types for AxonFlow SDK
+ * Part of Unified Policy Architecture v2.0.0
+ */
+/**
+ * Policy categories for organization and filtering
+ */
+export type PolicyCategory = 'security-sqli' | 'security-admin' | 'pii-global' | 'pii-us' | 'pii-eu' | 'pii-india' | 'dynamic-risk' | 'dynamic-compliance' | 'dynamic-security' | 'dynamic-cost' | 'dynamic-access' | 'custom';
+/**
+ * Policy tiers determine where policies apply
+ * - system: Platform-wide policies (read-only, managed by AxonFlow)
+ * - organization: Organization-specific policies (Enterprise)
+ * - tenant: Tenant-specific policies
+ */
+export type PolicyTier = 'system' | 'organization' | 'tenant';
+/**
+ * Override action for policy overrides
+ * - block: Immediately block the request
+ * - require_approval: Pause for human approval (HITL)
+ * - redact: Mask sensitive content
+ * - warn: Log warning, allow request
+ * - log: Audit only
+ */
+export type OverrideAction = 'block' | 'require_approval' | 'redact' | 'warn' | 'log';
+/**
+ * Action to take when policy matches
+ * - block: Immediately block the request
+ * - require_approval: Pause for human approval (HITL)
+ * - redact: Mask sensitive content
+ * - warn: Log warning, allow request
+ * - log: Audit only
+ * - allow: Explicitly allow (for overrides)
+ */
+export type PolicyAction = 'block' | 'require_approval' | 'redact' | 'warn' | 'log' | 'allow';
+/**
+ * Policy severity levels
+ */
+export type PolicySeverity = 'critical' | 'high' | 'medium' | 'low';
+/**
+ * Static policy definition
+ */
+export interface StaticPolicy {
+    /** Unique policy identifier */
+    id: string;
+    /** Human-readable policy name */
+    name: string;
+    /** Policy description */
+    description?: string;
+    /** Policy category for grouping and filtering */
+    category: PolicyCategory;
+    /** Policy tier (system, organization, tenant) */
+    tier: PolicyTier;
+    /** Regex pattern to match against input */
+    pattern: string;
+    /** Severity level (critical, high, medium, low) */
+    severity: PolicySeverity;
+    /** Whether the policy is enabled */
+    enabled: boolean;
+    /** Action to take when pattern matches */
+    action: PolicyAction;
+    /** Organization ID (for organization-tier policies) */
+    organizationId?: string;
+    /** Tenant ID (for tenant-tier policies) */
+    tenantId?: string;
+    /** Creation timestamp */
+    createdAt: string;
+    /** Last update timestamp */
+    updatedAt: string;
+    /** Version number for tracking changes */
+    version?: number;
+    /** Whether this policy has an active override */
+    hasOverride?: boolean;
+    /** Active override details */
+    override?: PolicyOverride;
+}
+/**
+ * Options for listing static policies
+ */
+export interface ListStaticPoliciesOptions {
+    /** Filter by category */
+    category?: PolicyCategory;
+    /** Filter by tier */
+    tier?: PolicyTier;
+    /** Filter by enabled status */
+    enabled?: boolean;
+    /** Maximum number of results to return */
+    limit?: number;
+    /** Offset for pagination */
+    offset?: number;
+    /** Sort field */
+    sortBy?: 'name' | 'severity' | 'category' | 'createdAt' | 'updatedAt';
+    /** Sort order */
+    sortOrder?: 'asc' | 'desc';
+    /** Search query for name/description */
+    search?: string;
+}
+/**
+ * Request to create a new static policy
+ */
+export interface CreateStaticPolicyRequest {
+    /** Human-readable policy name */
+    name: string;
+    /** Policy description */
+    description?: string;
+    /** Policy category */
+    category: PolicyCategory;
+    /** Policy tier (defaults to 'tenant' for custom policies) */
+    tier?: PolicyTier;
+    /** Regex pattern to match */
+    pattern: string;
+    /** Severity level (critical, high, medium, low) */
+    severity?: PolicySeverity;
+    /** Whether the policy is enabled */
+    enabled?: boolean;
+    /** Action to take when pattern matches */
+    action?: PolicyAction;
+}
+/**
+ * Request to update an existing static policy
+ */
+export interface UpdateStaticPolicyRequest {
+    /** Updated policy name */
+    name?: string;
+    /** Updated description */
+    description?: string;
+    /** Updated category */
+    category?: PolicyCategory;
+    /** Updated pattern */
+    pattern?: string;
+    /** Updated severity */
+    severity?: PolicySeverity;
+    /** Updated enabled status */
+    enabled?: boolean;
+    /** Updated action */
+    action?: PolicyAction;
+}
+/**
+ * Policy override configuration
+ */
+export interface PolicyOverride {
+    /** Policy ID this override applies to */
+    policyId: string;
+    /** Override action */
+    action: OverrideAction;
+    /** Reason for the override */
+    reason: string;
+    /** Who created the override */
+    createdBy?: string;
+    /** When the override was created */
+    createdAt: string;
+    /** When the override expires (optional) */
+    expiresAt?: string;
+    /** Whether the override is currently active */
+    active: boolean;
+}
+/**
+ * Request to create a policy override
+ */
+export interface CreatePolicyOverrideRequest {
+    /** Override action */
+    action: OverrideAction;
+    /** Reason for the override */
+    reason: string;
+    /** Optional expiration date (ISO 8601 format) */
+    expiresAt?: string;
+}
+/**
+ * Dynamic policy definition
+ */
+export interface DynamicPolicy {
+    /** Unique policy identifier */
+    id: string;
+    /** Human-readable policy name */
+    name: string;
+    /** Policy description */
+    description?: string;
+    /** Policy category */
+    category: PolicyCategory;
+    /** Policy tier */
+    tier: PolicyTier;
+    /** Whether the policy is enabled */
+    enabled: boolean;
+    /** Organization ID (for organization-tier policies) */
+    organizationId?: string;
+    /** Tenant ID (for tenant-tier policies) */
+    tenantId?: string;
+    /** Policy configuration/rules */
+    config: DynamicPolicyConfig;
+    /** Creation timestamp */
+    createdAt: string;
+    /** Last update timestamp */
+    updatedAt: string;
+    /** Version number */
+    version?: number;
+}
+/**
+ * Configuration for a dynamic policy
+ */
+export interface DynamicPolicyConfig {
+    /** Policy type (e.g., 'rate-limit', 'cost-control', 'access-control') */
+    type: string;
+    /** Type-specific rules */
+    rules: Record<string, unknown>;
+    /** Conditions for when the policy applies */
+    conditions?: DynamicPolicyCondition[];
+    /** Action to take when policy triggers */
+    action: PolicyAction;
+    /** Additional parameters */
+    parameters?: Record<string, unknown>;
+}
+/**
+ * Condition for dynamic policy evaluation
+ */
+export interface DynamicPolicyCondition {
+    /** Field to evaluate */
+    field: string;
+    /** Comparison operator */
+    operator: 'equals' | 'not_equals' | 'contains' | 'not_contains' | 'greater_than' | 'less_than' | 'in' | 'not_in' | 'regex';
+    /** Value to compare against */
+    value: unknown;
+}
+/**
+ * Options for listing dynamic policies
+ */
+export interface ListDynamicPoliciesOptions {
+    /** Filter by category */
+    category?: PolicyCategory;
+    /** Filter by tier */
+    tier?: PolicyTier;
+    /** Filter by enabled status */
+    enabled?: boolean;
+    /** Maximum number of results */
+    limit?: number;
+    /** Offset for pagination */
+    offset?: number;
+    /** Sort field */
+    sortBy?: 'name' | 'category' | 'createdAt' | 'updatedAt';
+    /** Sort order */
+    sortOrder?: 'asc' | 'desc';
+    /** Search query */
+    search?: string;
+}
+/**
+ * Request to create a dynamic policy
+ */
+export interface CreateDynamicPolicyRequest {
+    /** Policy name */
+    name: string;
+    /** Policy description */
+    description?: string;
+    /** Policy category */
+    category: PolicyCategory;
+    /** Policy configuration */
+    config: DynamicPolicyConfig;
+    /** Whether the policy is enabled */
+    enabled?: boolean;
+}
+/**
+ * Request to update a dynamic policy
+ */
+export interface UpdateDynamicPolicyRequest {
+    /** Updated name */
+    name?: string;
+    /** Updated description */
+    description?: string;
+    /** Updated category */
+    category?: PolicyCategory;
+    /** Updated configuration */
+    config?: DynamicPolicyConfig;
+    /** Updated enabled status */
+    enabled?: boolean;
+}
+/**
+ * Result of testing a regex pattern
+ */
+export interface TestPatternResult {
+    /** Whether the pattern is valid */
+    valid: boolean;
+    /** Error message if pattern is invalid */
+    error?: string;
+    /** The pattern that was tested */
+    pattern: string;
+    /** The inputs that were tested */
+    inputs: string[];
+    /** Match results for each input */
+    matches: TestPatternMatch[];
+}
+/**
+ * Individual pattern match result
+ */
+export interface TestPatternMatch {
+    /** The input that was tested */
+    input: string;
+    /** Whether the pattern matched */
+    matched: boolean;
+    /** Captured groups if any */
+    groups?: string[];
+}
+/**
+ * Policy version history entry
+ */
+export interface PolicyVersion {
+    /** Version number */
+    version: number;
+    /** Who made the change */
+    changedBy?: string;
+    /** When the change was made */
+    changedAt: string;
+    /** Type of change */
+    changeType: 'created' | 'updated' | 'enabled' | 'disabled' | 'deleted';
+    /** Description of changes */
+    changeDescription?: string;
+    /** Previous values (for updates) */
+    previousValues?: Record<string, unknown>;
+    /** New values */
+    newValues?: Record<string, unknown>;
+}
+/**
+ * Options for getting effective policies
+ */
+export interface EffectivePoliciesOptions {
+    /** Filter by category */
+    category?: PolicyCategory;
+    /** Include disabled policies */
+    includeDisabled?: boolean;
+    /** Include overridden policies */
+    includeOverridden?: boolean;
+}
+/**
+ * Response containing effective policies with tier inheritance applied
+ */
+export interface EffectivePoliciesResponse {
+    /** Effective policies after tier inheritance */
+    policies: StaticPolicy[] | DynamicPolicy[];
+    /** Inheritance chain information */
+    inheritance: {
+        /** System policies count */
+        systemPolicies: number;
+        /** Organization policies count */
+        organizationPolicies: number;
+        /** Tenant policies count */
+        tenantPolicies: number;
+        /** Overrides applied */
+        overridesApplied: number;
+    };
+}
+/**
+ * Paginated response wrapper
+ */
+export interface PaginatedResponse<T> {
+    /** Array of items */
+    items: T[];
+    /** Total number of items */
+    total: number;
+    /** Current page limit */
+    limit: number;
+    /** Current offset */
+    offset: number;
+    /** Whether there are more items */
+    hasMore: boolean;
+}
+//# sourceMappingURL=policies.d.ts.map

package/dist/cjs/types/policies.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policies.d.ts","sourceRoot":"","sources":["../../../src/types/policies.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH;;GAEG;AACH,MAAM,MAAM,cAAc,GACtB,eAAe,GACf,gBAAgB,GAChB,YAAY,GACZ,QAAQ,GACR,QAAQ,GACR,WAAW,GACX,cAAc,GACd,oBAAoB,GACpB,kBAAkB,GAClB,cAAc,GACd,gBAAgB,GAChB,QAAQ,CAAC;AAEb;;;;;GAKG;AACH,MAAM,MAAM,UAAU,GAAG,QAAQ,GAAG,cAAc,GAAG,QAAQ,CAAC;AAE9D;;;;;;;GAOG;AACH,MAAM,MAAM,cAAc,GAAG,OAAO,GAAG,kBAAkB,GAAG,QAAQ,GAAG,MAAM,GAAG,KAAK,CAAC;AAEtF;;;;;;;;GAQG;AACH,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,kBAAkB,GAAG,QAAQ,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,CAAC;AAE9F;;GAEG;AACH,MAAM,MAAM,cAAc,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;AAMpE;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,+BAA+B;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,iCAAiC;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,iDAAiD;IACjD,QAAQ,EAAE,cAAc,CAAC;IACzB,iDAAiD;IACjD,IAAI,EAAE,UAAU,CAAC;IACjB,2CAA2C;IAC3C,OAAO,EAAE,MAAM,CAAC;IAChB,mDAAmD;IACnD,QAAQ,EAAE,cAAc,CAAC;IACzB,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,0CAA0C;IAC1C,MAAM,EAAE,YAAY,CAAC;IACrB,uDAAuD;IACvD,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,2CAA2C;IAC3C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,4BAA4B;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,0CAA0C;IAC1C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,iDAAiD;IACjD,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,8BAA8B;IAC9B,QAAQ,CAAC,EAAE,cAAc,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC,yBAAyB;IACzB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,qBAAqB;IACrB,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,+BAA+B;IAC/B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,0CAA0C;IAC1C,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,4BAA4B;IAC5B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,iBAAiB;IACjB,MAAM,CAAC,EAAE,MAAM,GAAG,UAAU,GAAG,UAAU,GAAG,WAAW,GAAG,WAAW,CAAC;IACtE,iBAAiB;IACjB,SAAS,CAAC,EAAE,KAAK,GAAG,MAAM,CAAC;IAC3B,wCAAwC;IACxC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC,iCAAiC;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB;IACtB,QAAQ,EAAE,cAAc,CAAC;IACzB,6DAA6D;IAC7D,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,6BAA6B;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,mDAAmD;IACnD,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,oCAAoC;IACpC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,0CAA0C;IAC1C,MAAM,CAAC,EAAE,YAAY,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC,0BAA0B;IAC1B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,uBAAuB;IACvB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,sBAAsB;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,uBAAuB;IACvB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,6BAA6B;IAC7B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,qBAAqB;IACrB,MAAM,CAAC,EAAE,YAAY,CAAC;CACvB;AAMD;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,yCAAyC;IACzC,QAAQ,EAAE,MAAM,CAAC;IACjB,sBAAsB;IACtB,MAAM,EAAE,cAAc,CAAC;IACvB,8BAA8B;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,+BAA+B;IAC/B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,oCAAoC;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,2CAA2C;IAC3C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,+CAA+C;IAC/C,MAAM,EAAE,OAAO,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,2BAA2B;IAC1C,sBAAsB;IACtB,MAAM,EAAE,cAAc,CAAC;IACvB,8BAA8B;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAMD;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,+BAA+B;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,iCAAiC;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB;IACtB,QAAQ,EAAE,cAAc,CAAC;IACzB,kBAAkB;IAClB,IAAI,EAAE,UAAU,CAAC;IACjB,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,uDAAuD;IACvD,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,2CAA2C;IAC3C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,iCAAiC;IACjC,MAAM,EAAE,mBAAmB,CAAC;IAC5B,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,4BAA4B;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,qBAAqB;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,yEAAyE;IACzE,IAAI,EAAE,MAAM,CAAC;IACb,0BAA0B;IAC1B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC/B,6CAA6C;IAC7C,UAAU,CAAC,EAAE,sBAAsB,EAAE,CAAC;IACtC,0CAA0C;IAC1C,MAAM,EAAE,YAAY,CAAC;IACrB,4BAA4B;IAC5B,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,wBAAwB;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,QAAQ,EACJ,QAAQ,GACR,YAAY,GACZ,UAAU,GACV,cAAc,GACd,cAAc,GACd,WAAW,GACX,IAAI,GACJ,QAAQ,GACR,OAAO,CAAC;IACZ,+BAA+B;IAC/B,KAAK,EAAE,OAAO,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACzC,yBAAyB;IACzB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,qBAAqB;IACrB,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,+BAA+B;IAC/B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,gCAAgC;IAChC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,4BAA4B;IAC5B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,iBAAiB;IACjB,MAAM,CAAC,EAAE,MAAM,GAAG,UAAU,GAAG,WAAW,GAAG,WAAW,CAAC;IACzD,iBAAiB;IACjB,SAAS,CAAC,EAAE,KAAK,GAAG,MAAM,CAAC;IAC3B,mBAAmB;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACzC,kBAAkB;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,yBAAyB;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,sBAAsB;IACtB,QAAQ,EAAE,cAAc,CAAC;IACzB,2BAA2B;IAC3B,MAAM,EAAE,mBAAmB,CAAC;IAC5B,oCAAoC;IACpC,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,0BAA0B;IACzC,mBAAmB;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,0BAA0B;IAC1B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,uBAAuB;IACvB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,4BAA4B;IAC5B,MAAM,CAAC,EAAE,mBAAmB,CAAC;IAC7B,6BAA6B;IAC7B,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAMD;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,mCAAmC;IACnC,KAAK,EAAE,OAAO,CAAC;IACf,0CAA0C;IAC1C,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,kCAAkC;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,kCAAkC;IAClC,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,mCAAmC;IACnC,OAAO,EAAE,gBAAgB,EAAE,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,gCAAgC;IAChC,KAAK,EAAE,MAAM,CAAC;IACd,kCAAkC;IAClC,OAAO,EAAE,OAAO,CAAC;IACjB,6BAA6B;IAC7B,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAMD;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,qBAAqB;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,0BAA0B;IAC1B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,+BAA+B;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,qBAAqB;IACrB,UAAU,EAAE,SAAS,GAAG,SAAS,GAAG,SAAS,GAAG,UAAU,GAAG,SAAS,CAAC;IACvE,6BAA6B;IAC7B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,oCAAoC;IACpC,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACzC,iBAAiB;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACrC;AAMD;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,yBAAyB;IACzB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,gCAAgC;IAChC,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,kCAAkC;IAClC,iBAAiB,CAAC,EAAE,OAAO,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC,gDAAgD;IAChD,QAAQ,EAAE,YAAY,EAAE,GAAG,aAAa,EAAE,CAAC;IAC3C,oCAAoC;IACpC,WAAW,EAAE;QACX,4BAA4B;QAC5B,cAAc,EAAE,MAAM,CAAC;QACvB,kCAAkC;QAClC,oBAAoB,EAAE,MAAM,CAAC;QAC7B,4BAA4B;QAC5B,cAAc,EAAE,MAAM,CAAC;QACvB,wBAAwB;QACxB,gBAAgB,EAAE,MAAM,CAAC;KAC1B,CAAC;CACH;AAMD;;GAEG;AACH,MAAM,WAAW,iBAAiB,CAAC,CAAC;IAClC,qBAAqB;IACrB,KAAK,EAAE,CAAC,EAAE,CAAC;IACX,4BAA4B;IAC5B,KAAK,EAAE,MAAM,CAAC;IACd,yBAAyB;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,qBAAqB;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,mCAAmC;IACnC,OAAO,EAAE,OAAO,CAAC;CAClB"}

package/dist/cjs/types/policies.js

@@ -0,0 +1,7 @@
+"use strict";
+/**
+ * Policy CRUD types for AxonFlow SDK
+ * Part of Unified Policy Architecture v2.0.0
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=policies.js.map

package/dist/cjs/types/policies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policies.js","sourceRoot":"","sources":["../../../src/types/policies.ts"],"names":[],"mappings":";AAAA;;;GAGG"}

package/dist/cjs/types/proxy.d.ts

@@ -21,6 +21,30 @@ export interface ExecuteQueryOptions {
     /** Additional context for policy evaluation and processing */
     context?: Record<string, unknown>;
 }
+/**
+ * Code artifact metadata detected in LLM responses.
+ *
+ * When an LLM generates code, AxonFlow automatically detects and analyzes it.
+ * This metadata is included in policyInfo for audit and compliance.
+ */
+export interface CodeArtifact {
+    /** Whether the response contains code */
+    is_code_output: boolean;
+    /** Detected programming language */
+    language: string;
+    /** Code category (function, class, script, config, snippet, module) */
+    code_type: string;
+    /** Size of detected code in bytes */
+    size_bytes: number;
+    /** Number of lines of code */
+    line_count: number;
+    /** Count of potential secrets found */
+    secrets_detected: number;
+    /** Count of unsafe code patterns */
+    unsafe_patterns: number;
+    /** Code governance policies evaluated */
+    policies_checked?: string[];
+}
 /**
  * Policy evaluation information from the agent
  */
@@ -33,6 +57,8 @@ export interface PolicyInfo {
     processingTime: string;
     /** Tenant ID associated with the request */
     tenantId: string;
+    /** Code artifact metadata if code was detected in the response */
+    codeArtifact?: CodeArtifact;
 }
 /**
  * Response from executeQuery in Proxy Mode

package/dist/cjs/types/proxy.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"proxy.d.ts","sourceRoot":"","sources":["../../../src/types/proxy.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,KAAK,GAAG,WAAW,GAAG,kBAAkB,GAAG,cAAc,CAAC;AAE7F;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,uDAAuD;IACvD,SAAS,EAAE,MAAM,CAAC;IAClB,qCAAqC;IACrC,KAAK,EAAE,MAAM,CAAC;IACd,sBAAsB;IACtB,WAAW,EAAE,WAAW,CAAC;IACzB,8DAA8D;IAC9D,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,2CAA2C;IAC3C,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,sCAAsC;IACtC,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,4CAA4C;IAC5C,cAAc,EAAE,MAAM,CAAC;IACvB,4CAA4C;IAC5C,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,yCAAyC;IACzC,OAAO,EAAE,OAAO,CAAC;IACjB,uCAAuC;IACvC,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,8CAA8C;IAC9C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,yCAAyC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0BAA0B;IAC1B,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,sCAAsC;IACtC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gDAAgD;IAChD,OAAO,EAAE,OAAO,CAAC;IACjB,uCAAuC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,6BAA6B;IAC7B,UAAU,CAAC,EAAE,UAAU,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,qDAAqD;IACrD,MAAM,EAAE,SAAS,GAAG,UAAU,GAAG,WAAW,CAAC;IAC7C,oBAAoB;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,sBAAsB;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,gCAAgC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACnE"}
+{"version":3,"file":"proxy.d.ts","sourceRoot":"","sources":["../../../src/types/proxy.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,KAAK,GAAG,WAAW,GAAG,kBAAkB,GAAG,cAAc,CAAC;AAE7F;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,uDAAuD;IACvD,SAAS,EAAE,MAAM,CAAC;IAClB,qCAAqC;IACrC,KAAK,EAAE,MAAM,CAAC;IACd,sBAAsB;IACtB,WAAW,EAAE,WAAW,CAAC;IACzB,8DAA8D;IAC9D,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED;;;;;GAKG;AACH,MAAM,WAAW,YAAY;IAC3B,yCAAyC;IACzC,cAAc,EAAE,OAAO,CAAC;IACxB,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,uEAAuE;IACvE,SAAS,EAAE,MAAM,CAAC;IAClB,qCAAqC;IACrC,UAAU,EAAE,MAAM,CAAC;IACnB,8BAA8B;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,uCAAuC;IACvC,gBAAgB,EAAE,MAAM,CAAC;IACzB,oCAAoC;IACpC,eAAe,EAAE,MAAM,CAAC;IACxB,yCAAyC;IACzC,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,2CAA2C;IAC3C,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,sCAAsC;IACtC,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,4CAA4C;IAC5C,cAAc,EAAE,MAAM,CAAC;IACvB,4CAA4C;IAC5C,QAAQ,EAAE,MAAM,CAAC;IACjB,kEAAkE;IAClE,YAAY,CAAC,EAAE,YAAY,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,yCAAyC;IACzC,OAAO,EAAE,OAAO,CAAC;IACjB,uCAAuC;IACvC,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,8CAA8C;IAC9C,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,yCAAyC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0BAA0B;IAC1B,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,sCAAsC;IACtC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gDAAgD;IAChD,OAAO,EAAE,OAAO,CAAC;IACjB,uCAAuC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,6BAA6B;IAC7B,UAAU,CAAC,EAAE,UAAU,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,qDAAqD;IACrD,MAAM,EAAE,SAAS,GAAG,UAAU,GAAG,WAAW,CAAC;IAC7C,oBAAoB;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,sBAAsB;IACtB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,gCAAgC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACnE"}

package/dist/esm/client.d.ts

@@ -1,4 +1,4 @@
-import { AxonFlowConfig, ConnectorMetadata, ConnectorInstallRequest, ConnectorResponse, PlanResponse, PlanExecutionResponse, PolicyApprovalResult, PolicyApprovalOptions, AuditResult, AuditOptions, ExecuteQueryOptions, ExecuteQueryResponse, HealthStatus } from './types';
+import { AxonFlowConfig, ConnectorMetadata, ConnectorInstallRequest, ConnectorResponse, PlanResponse, PlanExecutionResponse, PolicyApprovalResult, PolicyApprovalOptions, AuditResult, AuditOptions, ExecuteQueryOptions, ExecuteQueryResponse, HealthStatus, StaticPolicy, DynamicPolicy, PolicyOverride, ListStaticPoliciesOptions, ListDynamicPoliciesOptions, CreateStaticPolicyRequest, UpdateStaticPolicyRequest, CreateDynamicPolicyRequest, UpdateDynamicPolicyRequest, CreatePolicyOverrideRequest, TestPatternResult, PolicyVersion, EffectivePoliciesOptions } from './types';
 /**
  * Main AxonFlow client for invisible AI governance
  */
@@ -213,5 +213,250 @@ export declare class AxonFlow {
      * ```
      */
     auditLLMCall(options: AuditOptions): Promise<AuditResult>;
+    /**
+     * Build authentication headers for API requests
+     */
+    private buildAuthHeaders;
+    /**
+     * Generic HTTP request helper for policy APIs
+     */
+    private policyRequest;
+    /**
+     * List all static policies with optional filtering.
+     *
+     * @param options - Filtering and pagination options
+     * @returns Array of static policies
+     *
+     * @example
+     * ```typescript
+     * // List all enabled SQL injection policies
+     * const policies = await axonflow.listStaticPolicies({
+     *   category: 'security-sqli',
+     *   enabled: true
+     * });
+     * ```
+     */
+    listStaticPolicies(options?: ListStaticPoliciesOptions): Promise<StaticPolicy[]>;
+    /**
+     * Get a specific static policy by ID.
+     *
+     * @param id - Policy ID
+     * @returns The static policy
+     *
+     * @example
+     * ```typescript
+     * const policy = await axonflow.getStaticPolicy('pol_123');
+     * console.log(policy.name, policy.pattern);
+     * ```
+     */
+    getStaticPolicy(id: string): Promise<StaticPolicy>;
+    /**
+     * Create a new static policy.
+     *
+     * @param policy - Policy creation request
+     * @returns The created policy
+     *
+     * @example
+     * ```typescript
+     * const policy = await axonflow.createStaticPolicy({
+     *   name: 'Block Credit Card Numbers',
+     *   category: 'pii-global',
+     *   pattern: '\\b(?:\\d{4}[- ]?){3}\\d{4}\\b',
+     *   severity: 8,
+     *   action: 'block'
+     * });
+     * ```
+     */
+    createStaticPolicy(policy: CreateStaticPolicyRequest): Promise<StaticPolicy>;
+    /**
+     * Update an existing static policy.
+     *
+     * @param id - Policy ID
+     * @param policy - Fields to update
+     * @returns The updated policy
+     *
+     * @example
+     * ```typescript
+     * const updated = await axonflow.updateStaticPolicy('pol_123', {
+     *   severity: 10,
+     *   description: 'Updated description'
+     * });
+     * ```
+     */
+    updateStaticPolicy(id: string, policy: UpdateStaticPolicyRequest): Promise<StaticPolicy>;
+    /**
+     * Delete a static policy.
+     *
+     * @param id - Policy ID
+     *
+     * @example
+     * ```typescript
+     * await axonflow.deleteStaticPolicy('pol_123');
+     * ```
+     */
+    deleteStaticPolicy(id: string): Promise<void>;
+    /**
+     * Toggle a static policy's enabled status.
+     *
+     * @param id - Policy ID
+     * @param enabled - Whether the policy should be enabled
+     * @returns The updated policy
+     *
+     * @example
+     * ```typescript
+     * // Disable a policy
+     * await axonflow.toggleStaticPolicy('pol_123', false);
+     * ```
+     */
+    toggleStaticPolicy(id: string, enabled: boolean): Promise<StaticPolicy>;
+    /**
+     * Get effective static policies with tier inheritance applied.
+     * This returns the policies that would actually be enforced, taking into
+     * account system, organization, and tenant policies with proper inheritance.
+     *
+     * @param options - Filtering options
+     * @returns Array of effective policies
+     *
+     * @example
+     * ```typescript
+     * const effective = await axonflow.getEffectiveStaticPolicies({
+     *   category: 'security-sqli'
+     * });
+     * ```
+     */
+    getEffectiveStaticPolicies(options?: EffectivePoliciesOptions): Promise<StaticPolicy[]>;
+    /**
+     * Test a regex pattern against sample inputs.
+     * Use this to validate patterns before creating policies.
+     *
+     * @param pattern - Regex pattern to test
+     * @param testInputs - Array of strings to test against
+     * @returns Test results showing matches
+     *
+     * @example
+     * ```typescript
+     * const result = await axonflow.testPattern(
+     *   '\\b\\d{3}-\\d{2}-\\d{4}\\b',
+     *   ['My SSN is 123-45-6789', 'No SSN here', 'Another: 987-65-4321']
+     * );
+     * console.log(result.results); // Shows which inputs matched
+     * ```
+     */
+    testPattern(pattern: string, testInputs: string[]): Promise<TestPatternResult>;
+    /**
+     * Get version history for a static policy.
+     *
+     * @param id - Policy ID
+     * @returns Array of version history entries
+     *
+     * @example
+     * ```typescript
+     * const versions = await axonflow.getStaticPolicyVersions('pol_123');
+     * versions.forEach(v => console.log(v.version, v.changeType, v.changedAt));
+     * ```
+     */
+    getStaticPolicyVersions(id: string): Promise<PolicyVersion[]>;
+    /**
+     * Create an override for a static policy.
+     * Overrides allow changing how a system policy behaves at the organization level.
+     *
+     * @param policyId - ID of the policy to override
+     * @param override - Override configuration
+     * @returns The created override
+     *
+     * @example
+     * ```typescript
+     * // Change a blocking policy to warn-only
+     * const override = await axonflow.createPolicyOverride('pol_123', {
+     *   action: 'warn',
+     *   reason: 'Temporarily reducing strictness for migration',
+     *   expiresAt: '2025-01-31T23:59:59Z'
+     * });
+     * ```
+     */
+    createPolicyOverride(policyId: string, override: CreatePolicyOverrideRequest): Promise<PolicyOverride>;
+    /**
+     * Delete an override for a static policy.
+     * This restores the policy to its default behavior.
+     *
+     * @param policyId - ID of the policy whose override to delete
+     *
+     * @example
+     * ```typescript
+     * await axonflow.deletePolicyOverride('pol_123');
+     * ```
+     */
+    deletePolicyOverride(policyId: string): Promise<void>;
+    /**
+     * List all dynamic policies with optional filtering.
+     *
+     * @param options - Filtering and pagination options
+     * @returns Array of dynamic policies
+     *
+     * @example
+     * ```typescript
+     * const policies = await axonflow.listDynamicPolicies({
+     *   category: 'dynamic-cost',
+     *   enabled: true
+     * });
+     * ```
+     */
+    listDynamicPolicies(options?: ListDynamicPoliciesOptions): Promise<DynamicPolicy[]>;
+    /**
+     * Get a specific dynamic policy by ID.
+     *
+     * @param id - Policy ID
+     * @returns The dynamic policy
+     */
+    getDynamicPolicy(id: string): Promise<DynamicPolicy>;
+    /**
+     * Create a new dynamic policy.
+     *
+     * @param policy - Policy creation request
+     * @returns The created policy
+     *
+     * @example
+     * ```typescript
+     * const policy = await axonflow.createDynamicPolicy({
+     *   name: 'Rate Limit API Calls',
+     *   category: 'dynamic-cost',
+     *   config: {
+     *     type: 'rate-limit',
+     *     rules: { maxRequestsPerMinute: 100 },
+     *     action: 'block'
+     *   }
+     * });
+     * ```
+     */
+    createDynamicPolicy(policy: CreateDynamicPolicyRequest): Promise<DynamicPolicy>;
+    /**
+     * Update an existing dynamic policy.
+     *
+     * @param id - Policy ID
+     * @param policy - Fields to update
+     * @returns The updated policy
+     */
+    updateDynamicPolicy(id: string, policy: UpdateDynamicPolicyRequest): Promise<DynamicPolicy>;
+    /**
+     * Delete a dynamic policy.
+     *
+     * @param id - Policy ID
+     */
+    deleteDynamicPolicy(id: string): Promise<void>;
+    /**
+     * Toggle a dynamic policy's enabled status.
+     *
+     * @param id - Policy ID
+     * @param enabled - Whether the policy should be enabled
+     * @returns The updated policy
+     */
+    toggleDynamicPolicy(id: string, enabled: boolean): Promise<DynamicPolicy>;
+    /**
+     * Get effective dynamic policies with tier inheritance applied.
+     *
+     * @param options - Filtering options
+     * @returns Array of effective dynamic policies
+     */
+    getEffectiveDynamicPolicies(options?: EffectivePoliciesOptions): Promise<DynamicPolicy[]>;
 }
 //# sourceMappingURL=client.d.ts.map