@bookedsolid/reagent 0.1.0 → 0.2.0

package/dist/cli/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":";AAEA,OAAO,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAC3C,OAAO,EAAE,OAAO,EAAE,MAAM,oBAAoB,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAC/C,OAAO,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AACjD,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,QAAQ,EAAE,MAAM,qBAAqB,CAAC;AAE/C,MAAM,CAAC,EAAE,AAAD,EAAG,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;AAExC,IAAI,CAAC,GAAG,IAAI,GAAG,KAAK,MAAM,IAAI,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;IAC/D,SAAS,EAAE,CAAC;IACZ,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,QAAQ,GAAG,EAAE,CAAC;IACZ,KAAK,MAAM;QACT,OAAO,CAAC,IAAI,CAAC,CAAC;QACd,MAAM;IACR,KAAK,OAAO;QACV,QAAQ,CAAC,IAAI,CAAC,CAAC;QACf,MAAM;IACR,KAAK,QAAQ;QACX,SAAS,CAAC,IAAI,CAAC,CAAC;QAChB,MAAM;IACR,KAAK,UAAU;QACb,WAAW,CAAC,IAAI,CAAC,CAAC;QAClB,MAAM;IACR,KAAK,OAAO;QACV,MAAM,QAAQ,CAAC,IAAI,CAAC,CAAC;QACrB,MAAM;IACR;QACE,OAAO,CAAC,KAAK,CAAC,sBAAsB,GAAG,EAAE,CAAC,CAAC;QAC3C,SAAS,EAAE,CAAC;QACZ,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AACpB,CAAC;AAED,SAAS,SAAS;IAChB,MAAM,WAAW,GAAG,aAAa,EAAE,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC;wBACU,WAAW;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAgClC,CAAC,CAAC;AACH,CAAC"}

package/dist/cli/utils.d.ts

@@ -0,0 +1,5 @@
+export declare const PKG_ROOT: string;
+export declare function getPkgVersion(): string;
+export declare function parseFlag(args: string[], flag: string): string | null;
+export declare function gitignoreHasEntry(targetDir: string, entry: string): boolean;
+//# sourceMappingURL=utils.d.ts.map

package/dist/cli/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../src/cli/utils.ts"],"names":[],"mappings":"AAOA,eAAO,MAAM,QAAQ,QAAmC,CAAC;AAEzD,wBAAgB,aAAa,IAAI,MAAM,CAQtC;AAED,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAQrE;AAED,wBAAgB,iBAAiB,CAAC,SAAS,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAK3E"}

package/dist/cli/utils.js

@@ -0,0 +1,34 @@
+import fs from 'node:fs';
+import path from 'node:path';
+import { fileURLToPath } from 'node:url';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+export const PKG_ROOT = path.join(__dirname, '..', '..');
+export function getPkgVersion() {
+    try {
+        const pkgPath = path.join(PKG_ROOT, 'package.json');
+        const pkg = JSON.parse(fs.readFileSync(pkgPath, 'utf8'));
+        return pkg.version;
+    }
+    catch {
+        return '0.0.0';
+    }
+}
+export function parseFlag(args, flag) {
+    const eqForm = args.find((a) => a.startsWith(`${flag}=`));
+    if (eqForm)
+        return eqForm.split('=').slice(1).join('=');
+    const idx = args.indexOf(flag);
+    if (idx !== -1 && args[idx + 1] && !args[idx + 1].startsWith('--')) {
+        return args[idx + 1];
+    }
+    return null;
+}
+export function gitignoreHasEntry(targetDir, entry) {
+    const gitignorePath = path.join(targetDir, '.gitignore');
+    if (!fs.existsSync(gitignorePath))
+        return false;
+    const content = fs.readFileSync(gitignorePath, 'utf8');
+    return content.split('\n').some((line) => line.trim() === entry.trim());
+}
+//# sourceMappingURL=utils.js.map

package/dist/cli/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.js","sourceRoot":"","sources":["../../src/cli/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAEzC,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;AAE3C,MAAM,CAAC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;AAEzD,MAAM,UAAU,aAAa;IAC3B,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;QACpD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC;QACzD,OAAO,GAAG,CAAC,OAAO,CAAC;IACrB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,OAAO,CAAC;IACjB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,IAAc,EAAE,IAAY;IACpD,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC;IAC1D,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACxD,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/B,IAAI,GAAG,KAAK,CAAC,CAAC,IAAI,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;QACnE,OAAO,IAAI,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC;IACvB,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,SAAiB,EAAE,KAAa;IAChE,MAAM,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;IACzD,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,aAAa,CAAC;QAAE,OAAO,KAAK,CAAC;IAChD,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,aAAa,EAAE,MAAM,CAAC,CAAC;IACvD,OAAO,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,KAAK,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;AAC1E,CAAC"}

package/dist/config/gateway-config.d.ts

@@ -0,0 +1,3 @@
+import type { GatewayConfig } from '../types/index.js';
+export declare function loadGatewayConfig(baseDir: string): GatewayConfig;
+//# sourceMappingURL=gateway-config.d.ts.map

package/dist/config/gateway-config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"gateway-config.d.ts","sourceRoot":"","sources":["../../src/config/gateway-config.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAgCvD,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,aAAa,CAmChE"}

package/dist/config/gateway-config.js

@@ -0,0 +1,60 @@
+import fs from 'node:fs';
+import path from 'node:path';
+import { parse as parseYaml } from 'yaml';
+import { z } from 'zod';
+import { Tier } from '../types/index.js';
+const ToolOverrideSchema = z.object({
+    tier: z.nativeEnum(Tier).optional(),
+    blocked: z.boolean().optional(),
+});
+const DownstreamServerSchema = z.object({
+    command: z.string(),
+    args: z.array(z.string()).default([]),
+    env: z.record(z.string()).optional(),
+    tool_overrides: z.record(ToolOverrideSchema).optional(),
+});
+const GatewayConfigSchema = z.object({
+    version: z.string(),
+    servers: z.record(DownstreamServerSchema),
+});
+/**
+ * Resolve `${ENV_VAR}` references in string values.
+ */
+function resolveEnvVars(obj) {
+    const resolved = {};
+    for (const [key, value] of Object.entries(obj)) {
+        resolved[key] = value.replace(/\$\{([^}]+)\}/g, (_match, varName) => {
+            return process.env[varName] ?? '';
+        });
+    }
+    return resolved;
+}
+export function loadGatewayConfig(baseDir) {
+    const configPath = path.join(baseDir, '.reagent', 'gateway.yaml');
+    if (!fs.existsSync(configPath)) {
+        throw new Error(`Gateway config not found: ${configPath}`);
+    }
+    const raw = fs.readFileSync(configPath, 'utf8');
+    let parsed;
+    try {
+        parsed = parseYaml(raw);
+    }
+    catch (yamlErr) {
+        throw new Error(`Failed to parse gateway YAML at ${configPath}: ${yamlErr instanceof Error ? yamlErr.message : yamlErr}`);
+    }
+    let config;
+    try {
+        config = GatewayConfigSchema.parse(parsed);
+    }
+    catch (zodErr) {
+        throw new Error(`Invalid gateway config schema at ${configPath}: ${zodErr instanceof Error ? zodErr.message : zodErr}`);
+    }
+    // Resolve env vars in server env blocks
+    for (const server of Object.values(config.servers)) {
+        if (server.env) {
+            server.env = resolveEnvVars(server.env);
+        }
+    }
+    return config;
+}
+//# sourceMappingURL=gateway-config.js.map

package/dist/config/gateway-config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"gateway-config.js","sourceRoot":"","sources":["../../src/config/gateway-config.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,KAAK,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAC1C,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAC;AAGzC,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IAClC,IAAI,EAAE,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE;IACnC,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAChC,CAAC,CAAC;AAEH,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IACtC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;IACnB,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;IACrC,GAAG,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;IACpC,cAAc,EAAE,CAAC,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC,QAAQ,EAAE;CACxD,CAAC,CAAC;AAEH,MAAM,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC;IACnC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;IACnB,OAAO,EAAE,CAAC,CAAC,MAAM,CAAC,sBAAsB,CAAC;CAC1C,CAAC,CAAC;AAEH;;GAEG;AACH,SAAS,cAAc,CAAC,GAA2B;IACjD,MAAM,QAAQ,GAA2B,EAAE,CAAC;IAC5C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/C,QAAQ,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC,gBAAgB,EAAE,CAAC,MAAM,EAAE,OAAe,EAAE,EAAE;YAC1E,OAAO,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QACpC,CAAC,CAAC,CAAC;IACL,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,OAAe;IAC/C,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE,cAAc,CAAC,CAAC;IAElE,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,6BAA6B,UAAU,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;IAEhD,IAAI,MAAe,CAAC;IACpB,IAAI,CAAC;QACH,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC;IAAC,OAAO,OAAO,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,mCAAmC,UAAU,KAAK,OAAO,YAAY,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,EAAE,CACzG,CAAC;IACJ,CAAC;IAED,IAAI,MAAM,CAAC;IACX,IAAI,CAAC;QACH,MAAM,GAAG,mBAAmB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC7C,CAAC;IAAC,OAAO,MAAM,EAAE,CAAC;QAChB,MAAM,IAAI,KAAK,CACb,oCAAoC,UAAU,KAAK,MAAM,YAAY,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,CACvG,CAAC;IACJ,CAAC;IAED,wCAAwC;IACxC,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC;QACnD,IAAI,MAAM,CAAC,GAAG,EAAE,CAAC;YACf,MAAM,CAAC,GAAG,GAAG,cAAc,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/config/policy-loader.d.ts

@@ -0,0 +1,3 @@
+import type { Policy } from '../types/index.js';
+export declare function loadPolicy(baseDir: string): Policy;
+//# sourceMappingURL=policy-loader.d.ts.map

package/dist/config/policy-loader.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy-loader.d.ts","sourceRoot":"","sources":["../../src/config/policy-loader.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAC;AAehD,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAyBlD"}

package/dist/config/policy-loader.js

@@ -0,0 +1,38 @@
+import fs from 'node:fs';
+import path from 'node:path';
+import { parse as parseYaml } from 'yaml';
+import { z } from 'zod';
+import { AutonomyLevel } from '../types/index.js';
+const PolicySchema = z.object({
+    version: z.string(),
+    profile: z.string(),
+    installed_by: z.string(),
+    installed_at: z.string(),
+    autonomy_level: z.nativeEnum(AutonomyLevel),
+    max_autonomy_level: z.nativeEnum(AutonomyLevel),
+    promotion_requires_human_approval: z.boolean(),
+    block_ai_attribution: z.boolean().default(false),
+    blocked_paths: z.array(z.string()),
+    notification_channel: z.string().default(''),
+});
+export function loadPolicy(baseDir) {
+    const policyPath = path.join(baseDir, '.reagent', 'policy.yaml');
+    if (!fs.existsSync(policyPath)) {
+        throw new Error(`Policy file not found: ${policyPath}`);
+    }
+    const raw = fs.readFileSync(policyPath, 'utf8');
+    let parsed;
+    try {
+        parsed = parseYaml(raw);
+    }
+    catch (yamlErr) {
+        throw new Error(`Failed to parse policy YAML at ${policyPath}: ${yamlErr instanceof Error ? yamlErr.message : yamlErr}`);
+    }
+    try {
+        return PolicySchema.parse(parsed);
+    }
+    catch (zodErr) {
+        throw new Error(`Invalid policy schema at ${policyPath}: ${zodErr instanceof Error ? zodErr.message : zodErr}`);
+    }
+}
+//# sourceMappingURL=policy-loader.js.map

package/dist/config/policy-loader.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy-loader.js","sourceRoot":"","sources":["../../src/config/policy-loader.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,KAAK,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAC1C,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAGlD,MAAM,YAAY,GAAG,CAAC,CAAC,MAAM,CAAC;IAC5B,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;IACnB,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;IACnB,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE;IACxB,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE;IACxB,cAAc,EAAE,CAAC,CAAC,UAAU,CAAC,aAAa,CAAC;IAC3C,kBAAkB,EAAE,CAAC,CAAC,UAAU,CAAC,aAAa,CAAC;IAC/C,iCAAiC,EAAE,CAAC,CAAC,OAAO,EAAE;IAC9C,oBAAoB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,CAAC;IAChD,aAAa,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC;IAClC,oBAAoB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,OAAO,CAAC,EAAE,CAAC;CAC7C,CAAC,CAAC;AAEH,MAAM,UAAU,UAAU,CAAC,OAAe;IACxC,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE,aAAa,CAAC,CAAC;IAEjE,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,0BAA0B,UAAU,EAAE,CAAC,CAAC;IAC1D,CAAC;IAED,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;IAEhD,IAAI,MAAe,CAAC;IACpB,IAAI,CAAC;QACH,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IAC1B,CAAC;IAAC,OAAO,OAAO,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,kCAAkC,UAAU,KAAK,OAAO,YAAY,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,EAAE,CACxG,CAAC;IACJ,CAAC;IAED,IAAI,CAAC;QACH,OAAO,YAAY,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACpC,CAAC;IAAC,OAAO,MAAM,EAAE,CAAC;QAChB,MAAM,IAAI,KAAK,CACb,4BAA4B,UAAU,KAAK,MAAM,YAAY,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,CAC/F,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/config/tier-map.d.ts

@@ -0,0 +1,12 @@
+import { Tier } from '../types/index.js';
+import type { GatewayConfig } from '../types/index.js';
+/**
+ * Classify a tool by its tier. Checks gateway config overrides first,
+ * then static map, then defaults to Write.
+ */
+export declare function classifyTool(toolName: string, serverName: string, gatewayConfig?: GatewayConfig): Tier;
+/**
+ * Check if a tool is explicitly blocked in gateway config.
+ */
+export declare function isToolBlocked(toolName: string, serverName: string, gatewayConfig?: GatewayConfig): boolean;
+//# sourceMappingURL=tier-map.d.ts.map

package/dist/config/tier-map.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tier-map.d.ts","sourceRoot":"","sources":["../../src/config/tier-map.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAC;AACzC,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAwDvD;;;GAGG;AACH,wBAAgB,YAAY,CAC1B,QAAQ,EAAE,MAAM,EAChB,UAAU,EAAE,MAAM,EAClB,aAAa,CAAC,EAAE,aAAa,GAC5B,IAAI,CAYN;AAED;;GAEG;AACH,wBAAgB,aAAa,CAC3B,QAAQ,EAAE,MAAM,EAChB,UAAU,EAAE,MAAM,EAClB,aAAa,CAAC,EAAE,aAAa,GAC5B,OAAO,CAIT"}

package/dist/config/tier-map.js

@@ -0,0 +1,76 @@
+import { Tier } from '../types/index.js';
+/**
+ * Static tier classifications for known tool patterns.
+ * Tools not in this map default to Tier.Write (safe default).
+ */
+const STATIC_TIER_MAP = {
+    // Read-tier tools (safe, no side effects)
+    get_messages: Tier.Read,
+    get_channel: Tier.Read,
+    get_guild: Tier.Read,
+    get_member: Tier.Read,
+    get_webhook: Tier.Read,
+    list_channels: Tier.Read,
+    list_guilds: Tier.Read,
+    list_members: Tier.Read,
+    list_roles: Tier.Read,
+    list_threads: Tier.Read,
+    list_webhooks: Tier.Read,
+    list_projects: Tier.Read,
+    search_messages: Tier.Read,
+    query_audit_log: Tier.Read,
+    health_check: Tier.Read,
+    // Write-tier tools (create or modify)
+    send_message: Tier.Write,
+    send_embed: Tier.Write,
+    edit_message: Tier.Write,
+    add_reaction: Tier.Write,
+    create_thread: Tier.Write,
+    create_channel: Tier.Write,
+    create_role: Tier.Write,
+    create_invite: Tier.Write,
+    create_webhook: Tier.Write,
+    execute_webhook: Tier.Write,
+    edit_channel: Tier.Write,
+    edit_role: Tier.Write,
+    edit_webhook: Tier.Write,
+    set_slowmode: Tier.Write,
+    set_permissions: Tier.Write,
+    assign_role: Tier.Write,
+    move_channel: Tier.Write,
+    archive_thread: Tier.Write,
+    timeout_member: Tier.Write,
+    // Destructive-tier tools (irreversible or high-impact)
+    delete_message: Tier.Destructive,
+    delete_channel: Tier.Destructive,
+    delete_role: Tier.Destructive,
+    delete_webhook: Tier.Destructive,
+    purge_messages: Tier.Destructive,
+    ban_member: Tier.Destructive,
+    unban_member: Tier.Destructive,
+    kick_member: Tier.Destructive,
+};
+/**
+ * Classify a tool by its tier. Checks gateway config overrides first,
+ * then static map, then defaults to Write.
+ */
+export function classifyTool(toolName, serverName, gatewayConfig) {
+    // Check per-server overrides in gateway config
+    const serverConfig = gatewayConfig?.servers[serverName];
+    const override = serverConfig?.tool_overrides?.[toolName];
+    if (override?.tier) {
+        return override.tier;
+    }
+    // Strip server prefix for static lookup (e.g., "discord-ops__send_message" -> "send_message")
+    const baseName = toolName.includes('__') ? toolName.split('__').pop() : toolName;
+    return STATIC_TIER_MAP[baseName] ?? Tier.Write;
+}
+/**
+ * Check if a tool is explicitly blocked in gateway config.
+ */
+export function isToolBlocked(toolName, serverName, gatewayConfig) {
+    const serverConfig = gatewayConfig?.servers[serverName];
+    const override = serverConfig?.tool_overrides?.[toolName];
+    return override?.blocked === true;
+}
+//# sourceMappingURL=tier-map.js.map

package/dist/config/tier-map.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tier-map.js","sourceRoot":"","sources":["../../src/config/tier-map.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,mBAAmB,CAAC;AAGzC;;;GAGG;AACH,MAAM,eAAe,GAAyB;IAC5C,0CAA0C;IAC1C,YAAY,EAAE,IAAI,CAAC,IAAI;IACvB,WAAW,EAAE,IAAI,CAAC,IAAI;IACtB,SAAS,EAAE,IAAI,CAAC,IAAI;IACpB,UAAU,EAAE,IAAI,CAAC,IAAI;IACrB,WAAW,EAAE,IAAI,CAAC,IAAI;IACtB,aAAa,EAAE,IAAI,CAAC,IAAI;IACxB,WAAW,EAAE,IAAI,CAAC,IAAI;IACtB,YAAY,EAAE,IAAI,CAAC,IAAI;IACvB,UAAU,EAAE,IAAI,CAAC,IAAI;IACrB,YAAY,EAAE,IAAI,CAAC,IAAI;IACvB,aAAa,EAAE,IAAI,CAAC,IAAI;IACxB,aAAa,EAAE,IAAI,CAAC,IAAI;IACxB,eAAe,EAAE,IAAI,CAAC,IAAI;IAC1B,eAAe,EAAE,IAAI,CAAC,IAAI;IAC1B,YAAY,EAAE,IAAI,CAAC,IAAI;IAEvB,sCAAsC;IACtC,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,UAAU,EAAE,IAAI,CAAC,KAAK;IACtB,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,aAAa,EAAE,IAAI,CAAC,KAAK;IACzB,cAAc,EAAE,IAAI,CAAC,KAAK;IAC1B,WAAW,EAAE,IAAI,CAAC,KAAK;IACvB,aAAa,EAAE,IAAI,CAAC,KAAK;IACzB,cAAc,EAAE,IAAI,CAAC,KAAK;IAC1B,eAAe,EAAE,IAAI,CAAC,KAAK;IAC3B,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,SAAS,EAAE,IAAI,CAAC,KAAK;IACrB,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,eAAe,EAAE,IAAI,CAAC,KAAK;IAC3B,WAAW,EAAE,IAAI,CAAC,KAAK;IACvB,YAAY,EAAE,IAAI,CAAC,KAAK;IACxB,cAAc,EAAE,IAAI,CAAC,KAAK;IAC1B,cAAc,EAAE,IAAI,CAAC,KAAK;IAE1B,uDAAuD;IACvD,cAAc,EAAE,IAAI,CAAC,WAAW;IAChC,cAAc,EAAE,IAAI,CAAC,WAAW;IAChC,WAAW,EAAE,IAAI,CAAC,WAAW;IAC7B,cAAc,EAAE,IAAI,CAAC,WAAW;IAChC,cAAc,EAAE,IAAI,CAAC,WAAW;IAChC,UAAU,EAAE,IAAI,CAAC,WAAW;IAC5B,YAAY,EAAE,IAAI,CAAC,WAAW;IAC9B,WAAW,EAAE,IAAI,CAAC,WAAW;CAC9B,CAAC;AAEF;;;GAGG;AACH,MAAM,UAAU,YAAY,CAC1B,QAAgB,EAChB,UAAkB,EAClB,aAA6B;IAE7B,+CAA+C;IAC/C,MAAM,YAAY,GAAG,aAAa,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC;IACxD,MAAM,QAAQ,GAAG,YAAY,EAAE,cAAc,EAAE,CAAC,QAAQ,CAAC,CAAC;IAC1D,IAAI,QAAQ,EAAE,IAAI,EAAE,CAAC;QACnB,OAAO,QAAQ,CAAC,IAAI,CAAC;IACvB,CAAC;IAED,8FAA8F;IAC9F,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,EAAG,CAAC,CAAC,CAAC,QAAQ,CAAC;IAElF,OAAO,eAAe,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC;AACjD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAC3B,QAAgB,EAChB,UAAkB,EAClB,aAA6B;IAE7B,MAAM,YAAY,GAAG,aAAa,EAAE,OAAO,CAAC,UAAU,CAAC,CAAC;IACxD,MAAM,QAAQ,GAAG,YAAY,EAAE,cAAc,EAAE,CAAC,QAAQ,CAAC,CAAC;IAC1D,OAAO,QAAQ,EAAE,OAAO,KAAK,IAAI,CAAC;AACpC,CAAC"}

package/dist/gateway/client-manager.d.ts

@@ -0,0 +1,26 @@
+import { Client } from '@modelcontextprotocol/sdk/client/index.js';
+import { StdioClientTransport } from '@modelcontextprotocol/sdk/client/stdio.js';
+import type { GatewayConfig, DownstreamServer } from '../types/index.js';
+export interface ManagedClient {
+    name: string;
+    client: Client;
+    transport: StdioClientTransport;
+    config: DownstreamServer;
+}
+/**
+ * Manages lifecycle of downstream MCP server connections.
+ * Spawns each server as a child process via StdioClientTransport.
+ */
+export declare class ClientManager {
+    private clients;
+    private connectTimeoutMs;
+    constructor(options?: {
+        connectTimeoutMs?: number;
+    });
+    connectAll(gatewayConfig: GatewayConfig): Promise<Map<string, ManagedClient>>;
+    private connect;
+    getClient(name: string): ManagedClient | undefined;
+    getAllClients(): Map<string, ManagedClient>;
+    disconnectAll(): Promise<void>;
+}
+//# sourceMappingURL=client-manager.d.ts.map

package/dist/gateway/client-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client-manager.d.ts","sourceRoot":"","sources":["../../src/gateway/client-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,KAAK,EAAE,aAAa,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAGzE,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,oBAAoB,CAAC;IAChC,MAAM,EAAE,gBAAgB,CAAC;CAC1B;AAcD;;;GAGG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,OAAO,CAAoC;IACnD,OAAO,CAAC,gBAAgB,CAAS;gBAErB,OAAO,CAAC,EAAE;QAAE,gBAAgB,CAAC,EAAE,MAAM,CAAA;KAAE;IAI7C,UAAU,CAAC,aAAa,EAAE,aAAa,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;YAmBrE,OAAO;IA2BrB,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,GAAG,SAAS;IAIlD,aAAa,IAAI,GAAG,CAAC,MAAM,EAAE,aAAa,CAAC;IAIrC,aAAa,IAAI,OAAO,CAAC,IAAI,CAAC;CAcrC"}

package/dist/gateway/client-manager.js

@@ -0,0 +1,75 @@
+import { Client } from '@modelcontextprotocol/sdk/client/index.js';
+import { StdioClientTransport } from '@modelcontextprotocol/sdk/client/stdio.js';
+import { getPkgVersion } from '../cli/utils.js';
+/**
+ * Build a clean env record: merge process.env (filtering out undefined) with config env.
+ */
+function buildEnv(configEnv) {
+    const base = {};
+    for (const [k, v] of Object.entries(process.env)) {
+        if (v !== undefined)
+            base[k] = v;
+    }
+    if (configEnv)
+        Object.assign(base, configEnv);
+    return base;
+}
+/**
+ * Manages lifecycle of downstream MCP server connections.
+ * Spawns each server as a child process via StdioClientTransport.
+ */
+export class ClientManager {
+    clients = new Map();
+    connectTimeoutMs;
+    constructor(options) {
+        this.connectTimeoutMs = options?.connectTimeoutMs ?? 30_000;
+    }
+    async connectAll(gatewayConfig) {
+        const entries = Object.entries(gatewayConfig.servers);
+        for (const [name, serverConfig] of entries) {
+            try {
+                const managed = await this.connect(name, serverConfig);
+                this.clients.set(name, managed);
+                console.error(`[reagent] Connected to downstream: ${name}`);
+            }
+            catch (err) {
+                console.error(`[reagent] Failed to connect to downstream "${name}":`, err instanceof Error ? err.message : err);
+            }
+        }
+        return this.clients;
+    }
+    async connect(name, config) {
+        const transport = new StdioClientTransport({
+            command: config.command,
+            args: config.args,
+            env: buildEnv(config.env),
+        });
+        const client = new Client({ name: `reagent-proxy-${name}`, version: getPkgVersion() }, { capabilities: {} });
+        // H3: Timeout for downstream server connections
+        const connectPromise = client.connect(transport);
+        const timeoutPromise = new Promise((_, reject) => {
+            setTimeout(() => reject(new Error(`Connection to "${name}" timed out after ${this.connectTimeoutMs}ms`)), this.connectTimeoutMs);
+        });
+        await Promise.race([connectPromise, timeoutPromise]);
+        return { name, client, transport, config };
+    }
+    getClient(name) {
+        return this.clients.get(name);
+    }
+    getAllClients() {
+        return this.clients;
+    }
+    async disconnectAll() {
+        for (const [name, managed] of this.clients) {
+            try {
+                await managed.client.close();
+                console.error(`[reagent] Disconnected from: ${name}`);
+            }
+            catch (err) {
+                console.error(`[reagent] Error disconnecting "${name}":`, err instanceof Error ? err.message : err);
+            }
+        }
+        this.clients.clear();
+    }
+}
+//# sourceMappingURL=client-manager.js.map

package/dist/gateway/client-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client-manager.js","sourceRoot":"","sources":["../../src/gateway/client-manager.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AAEjF,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAShD;;GAEG;AACH,SAAS,QAAQ,CAAC,SAAkC;IAClD,MAAM,IAAI,GAA2B,EAAE,CAAC;IACxC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACjD,IAAI,CAAC,KAAK,SAAS;YAAE,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IACnC,CAAC;IACD,IAAI,SAAS;QAAE,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;IAC9C,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;GAGG;AACH,MAAM,OAAO,aAAa;IAChB,OAAO,GAAG,IAAI,GAAG,EAAyB,CAAC;IAC3C,gBAAgB,CAAS;IAEjC,YAAY,OAAuC;QACjD,IAAI,CAAC,gBAAgB,GAAG,OAAO,EAAE,gBAAgB,IAAI,MAAM,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,aAA4B;QAC3C,MAAM,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC;QAEtD,KAAK,MAAM,CAAC,IAAI,EAAE,YAAY,CAAC,IAAI,OAAO,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;gBACvD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;gBAChC,OAAO,CAAC,KAAK,CAAC,sCAAsC,IAAI,EAAE,CAAC,CAAC;YAC9D,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,KAAK,CACX,8CAA8C,IAAI,IAAI,EACtD,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CACzC,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAEO,KAAK,CAAC,OAAO,CAAC,IAAY,EAAE,MAAwB;QAC1D,MAAM,SAAS,GAAG,IAAI,oBAAoB,CAAC;YACzC,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,GAAG,EAAE,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC;SAC1B,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB,EAAE,IAAI,EAAE,iBAAiB,IAAI,EAAE,EAAE,OAAO,EAAE,aAAa,EAAE,EAAE,EAC3D,EAAE,YAAY,EAAE,EAAE,EAAE,CACrB,CAAC;QAEF,gDAAgD;QAChD,MAAM,cAAc,GAAG,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QACjD,MAAM,cAAc,GAAG,IAAI,OAAO,CAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE;YACtD,UAAU,CACR,GAAG,EAAE,CACH,MAAM,CAAC,IAAI,KAAK,CAAC,kBAAkB,IAAI,qBAAqB,IAAI,CAAC,gBAAgB,IAAI,CAAC,CAAC,EACzF,IAAI,CAAC,gBAAgB,CACtB,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,cAAc,EAAE,cAAc,CAAC,CAAC,CAAC;QAErD,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC;IAC7C,CAAC;IAED,SAAS,CAAC,IAAY;QACpB,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,aAAa;QACX,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED,KAAK,CAAC,aAAa;QACjB,KAAK,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,MAAM,OAAO,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAC7B,OAAO,CAAC,KAAK,CAAC,gCAAgC,IAAI,EAAE,CAAC,CAAC;YACxD,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,KAAK,CACX,kCAAkC,IAAI,IAAI,EAC1C,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CACzC,CAAC;YACJ,CAAC;QACH,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IACvB,CAAC;CACF"}

package/dist/gateway/middleware/audit.d.ts

@@ -0,0 +1,12 @@
+import type { Middleware } from './chain.js';
+/**
+ * Post-execution middleware: appends a hash-chained JSONL audit record.
+ *
+ * SECURITY: Each audit middleware instance maintains its own hash chain.
+ * SECURITY: Audit write failures are logged to stderr but do NOT crash the gateway.
+ * SECURITY: Wraps next() in try/finally to ensure audit runs even on middleware exceptions.
+ * SECURITY: Placed as outermost middleware so audit records ALL invocations, including denials.
+ * PERFORMANCE: All fs operations are async to avoid blocking the event loop.
+ */
+export declare function createAuditMiddleware(baseDir: string): Middleware;
+//# sourceMappingURL=audit.d.ts.map

package/dist/gateway/middleware/audit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.d.ts","sourceRoot":"","sources":["../../../src/gateway/middleware/audit.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAO7C;;;;;;;;GAQG;AACH,wBAAgB,qBAAqB,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,CA+EjE"}

package/dist/gateway/middleware/audit.js

@@ -0,0 +1,88 @@
+import fs from 'node:fs/promises';
+import path from 'node:path';
+import crypto from 'node:crypto';
+import { Tier, InvocationStatus } from '../../types/index.js';
+function computeHash(record) {
+    const payload = JSON.stringify(record);
+    return crypto.createHash('sha256').update(payload).digest('hex');
+}
+/**
+ * Post-execution middleware: appends a hash-chained JSONL audit record.
+ *
+ * SECURITY: Each audit middleware instance maintains its own hash chain.
+ * SECURITY: Audit write failures are logged to stderr but do NOT crash the gateway.
+ * SECURITY: Wraps next() in try/finally to ensure audit runs even on middleware exceptions.
+ * SECURITY: Placed as outermost middleware so audit records ALL invocations, including denials.
+ * PERFORMANCE: All fs operations are async to avoid blocking the event loop.
+ */
+export function createAuditMiddleware(baseDir) {
+    const auditDir = path.join(baseDir, '.reagent', 'audit');
+    let prevHash = '0000000000000000000000000000000000000000000000000000000000000000';
+    let dirEnsured = false;
+    return async (ctx, next) => {
+        let nextError;
+        try {
+            await next();
+        }
+        catch (err) {
+            // Capture the error but still write the audit record
+            nextError = err instanceof Error ? err : new Error(String(err));
+            ctx.status = InvocationStatus.Error;
+            ctx.error = nextError.message;
+        }
+        // Build audit record — always runs, even after exceptions
+        try {
+            const duration_ms = Date.now() - ctx.start_time;
+            const now = new Date().toISOString();
+            const date = now.slice(0, 10); // YYYY-MM-DD
+            const recordBase = {
+                timestamp: now,
+                session_id: ctx.session_id,
+                tool_name: ctx.tool_name,
+                server_name: ctx.server_name,
+                tier: ctx.tier ?? Tier.Write,
+                status: ctx.status,
+                autonomy_level: ctx.metadata.autonomy_level ?? 'unknown',
+                duration_ms,
+                prev_hash: prevHash,
+            };
+            if (ctx.error) {
+                recordBase.error = ctx.error;
+            }
+            if (ctx.redacted_fields?.length) {
+                recordBase.redacted_fields = ctx.redacted_fields;
+            }
+            const hash = computeHash(recordBase);
+            const record = { ...recordBase, hash };
+            prevHash = hash;
+            const filePath = path.join(auditDir, `${date}.jsonl`);
+            const line = JSON.stringify(record) + '\n';
+            // Ensure audit dir exists (cached, with retry on failure)
+            if (!dirEnsured) {
+                await fs.mkdir(auditDir, { recursive: true });
+                dirEnsured = true;
+            }
+            try {
+                await fs.appendFile(filePath, line);
+            }
+            catch {
+                // Directory may have been deleted externally — retry once with mkdir
+                dirEnsured = false;
+                await fs.mkdir(auditDir, { recursive: true });
+                dirEnsured = true;
+                await fs.appendFile(filePath, line);
+            }
+        }
+        catch (auditErr) {
+            // SECURITY: Never crash the gateway on audit failure — log to stderr
+            // Reset dirEnsured in case the mkdir was the thing that failed
+            dirEnsured = false;
+            console.error('[reagent] AUDIT WRITE FAILED:', auditErr instanceof Error ? auditErr.message : auditErr);
+        }
+        // Re-throw the original error if next() failed
+        if (nextError) {
+            throw nextError;
+        }
+    };
+}
+//# sourceMappingURL=audit.js.map

package/dist/gateway/middleware/audit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../../../src/gateway/middleware/audit.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAClC,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,MAAM,MAAM,aAAa,CAAC;AAEjC,OAAO,EAAE,IAAI,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAG9D,SAAS,WAAW,CAAC,MAAiC;IACpD,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IACvC,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AACnE,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,qBAAqB,CAAC,OAAe;IACnD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC;IACzD,IAAI,QAAQ,GAAG,kEAAkE,CAAC;IAClF,IAAI,UAAU,GAAG,KAAK,CAAC;IAEvB,OAAO,KAAK,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE;QACzB,IAAI,SAA4B,CAAC;QAEjC,IAAI,CAAC;YACH,MAAM,IAAI,EAAE,CAAC;QACf,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,qDAAqD;YACrD,SAAS,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;YAChE,GAAG,CAAC,MAAM,GAAG,gBAAgB,CAAC,KAAK,CAAC;YACpC,GAAG,CAAC,KAAK,GAAG,SAAS,CAAC,OAAO,CAAC;QAChC,CAAC;QAED,0DAA0D;QAC1D,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC;YAChD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YACrC,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa;YAE5C,MAAM,UAAU,GAA8B;gBAC5C,SAAS,EAAE,GAAG;gBACd,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,SAAS,EAAE,GAAG,CAAC,SAAS;gBACxB,WAAW,EAAE,GAAG,CAAC,WAAW;gBAC5B,IAAI,EAAE,GAAG,CAAC,IAAI,IAAI,IAAI,CAAC,KAAK;gBAC5B,MAAM,EAAE,GAAG,CAAC,MAAM;gBAClB,cAAc,EAAG,GAAG,CAAC,QAAQ,CAAC,cAAyB,IAAI,SAAS;gBACpE,WAAW;gBACX,SAAS,EAAE,QAAQ;aACpB,CAAC;YAEF,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;gBACd,UAAU,CAAC,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC;YAC/B,CAAC;YACD,IAAI,GAAG,CAAC,eAAe,EAAE,MAAM,EAAE,CAAC;gBAChC,UAAU,CAAC,eAAe,GAAG,GAAG,CAAC,eAAe,CAAC;YACnD,CAAC;YAED,MAAM,IAAI,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC;YACrC,MAAM,MAAM,GAAgB,EAAE,GAAG,UAAU,EAAE,IAAI,EAAE,CAAC;YACpD,QAAQ,GAAG,IAAI,CAAC;YAEhB,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,IAAI,QAAQ,CAAC,CAAC;YACtD,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC;YAE3C,0DAA0D;YAC1D,IAAI,CAAC,UAAU,EAAE,CAAC;gBAChB,MAAM,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;gBAC9C,UAAU,GAAG,IAAI,CAAC;YACpB,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,EAAE,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YACtC,CAAC;YAAC,MAAM,CAAC;gBACP,qEAAqE;gBACrE,UAAU,GAAG,KAAK,CAAC;gBACnB,MAAM,EAAE,CAAC,KAAK,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;gBAC9C,UAAU,GAAG,IAAI,CAAC;gBAClB,MAAM,EAAE,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YACtC,CAAC;QACH,CAAC;QAAC,OAAO,QAAQ,EAAE,CAAC;YAClB,qEAAqE;YACrE,+DAA+D;YAC/D,UAAU,GAAG,KAAK,CAAC;YACnB,OAAO,CAAC,KAAK,CACX,+BAA+B,EAC/B,QAAQ,YAAY,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,CACxD,CAAC;QACJ,CAAC;QAED,+CAA+C;QAC/C,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,SAAS,CAAC;QAClB,CAAC;IACH,CAAC,CAAC;AACJ,CAAC"}

package/dist/gateway/middleware/chain.d.ts

@@ -0,0 +1,27 @@
+import type { Tier } from '../../types/index.js';
+import { InvocationStatus } from '../../types/index.js';
+export interface InvocationContext {
+    tool_name: string;
+    server_name: string;
+    arguments: Record<string, unknown>;
+    session_id: string;
+    tier?: Tier;
+    status: InvocationStatus;
+    error?: string;
+    result?: unknown;
+    start_time: number;
+    redacted_fields?: string[];
+    metadata: Record<string, unknown>;
+}
+export type NextFn = () => Promise<void>;
+export type Middleware = (ctx: InvocationContext, next: NextFn) => Promise<void>;
+/**
+ * Execute a middleware chain in onion (koa-style) order.
+ * Each middleware calls `next()` to pass control to the next one.
+ * The innermost middleware is the actual tool execution.
+ *
+ * SECURITY: Once status is set to Denied, it is locked for the remainder
+ * of the chain. No middleware can revert a denial.
+ */
+export declare function executeChain(middlewares: Middleware[], ctx: InvocationContext): Promise<void>;
+//# sourceMappingURL=chain.d.ts.map

package/dist/gateway/middleware/chain.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"chain.d.ts","sourceRoot":"","sources":["../../../src/gateway/middleware/chain.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,sBAAsB,CAAC;AACjD,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAExD,MAAM,WAAW,iBAAiB;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,IAAI,CAAC;IACZ,MAAM,EAAE,gBAAgB,CAAC;IACzB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED,MAAM,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;AACzC,MAAM,MAAM,UAAU,GAAG,CAAC,GAAG,EAAE,iBAAiB,EAAE,IAAI,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;AAEjF;;;;;;;GAOG;AACH,wBAAgB,YAAY,CAAC,WAAW,EAAE,UAAU,EAAE,EAAE,GAAG,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC,CA+B7F"}

package/dist/gateway/middleware/chain.js

@@ -0,0 +1,37 @@
+import { InvocationStatus } from '../../types/index.js';
+/**
+ * Execute a middleware chain in onion (koa-style) order.
+ * Each middleware calls `next()` to pass control to the next one.
+ * The innermost middleware is the actual tool execution.
+ *
+ * SECURITY: Once status is set to Denied, it is locked for the remainder
+ * of the chain. No middleware can revert a denial.
+ */
+export function executeChain(middlewares, ctx) {
+    let index = -1;
+    let deniedOnce = false;
+    let savedError;
+    function dispatch(i) {
+        if (i <= index) {
+            return Promise.reject(new Error('next() called multiple times'));
+        }
+        index = i;
+        const mw = middlewares[i];
+        if (!mw) {
+            return Promise.resolve();
+        }
+        return Promise.resolve(mw(ctx, () => dispatch(i + 1))).then(() => {
+            // SECURITY: If any middleware ever set Denied, lock it permanently
+            if (ctx.status === InvocationStatus.Denied && !deniedOnce) {
+                deniedOnce = true;
+                savedError = ctx.error;
+            }
+            if (deniedOnce && ctx.status !== InvocationStatus.Denied) {
+                ctx.status = InvocationStatus.Denied;
+                ctx.error = savedError || 'Denial status was tampered with — re-locked';
+            }
+        });
+    }
+    return dispatch(0);
+}
+//# sourceMappingURL=chain.js.map

package/dist/gateway/middleware/chain.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"chain.js","sourceRoot":"","sources":["../../../src/gateway/middleware/chain.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAmBxD;;;;;;;GAOG;AACH,MAAM,UAAU,YAAY,CAAC,WAAyB,EAAE,GAAsB;IAC5E,IAAI,KAAK,GAAG,CAAC,CAAC,CAAC;IACf,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,IAAI,UAA8B,CAAC;IAEnC,SAAS,QAAQ,CAAC,CAAS;QACzB,IAAI,CAAC,IAAI,KAAK,EAAE,CAAC;YACf,OAAO,OAAO,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,8BAA8B,CAAC,CAAC,CAAC;QACnE,CAAC;QACD,KAAK,GAAG,CAAC,CAAC;QAEV,MAAM,EAAE,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC;QAC1B,IAAI,CAAC,EAAE,EAAE,CAAC;YACR,OAAO,OAAO,CAAC,OAAO,EAAE,CAAC;QAC3B,CAAC;QAED,OAAO,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,EAAE;YAC/D,mEAAmE;YACnE,IAAI,GAAG,CAAC,MAAM,KAAK,gBAAgB,CAAC,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;gBAC1D,UAAU,GAAG,IAAI,CAAC;gBAClB,UAAU,GAAG,GAAG,CAAC,KAAK,CAAC;YACzB,CAAC;YAED,IAAI,UAAU,IAAI,GAAG,CAAC,MAAM,KAAK,gBAAgB,CAAC,MAAM,EAAE,CAAC;gBACzD,GAAG,CAAC,MAAM,GAAG,gBAAgB,CAAC,MAAM,CAAC;gBACrC,GAAG,CAAC,KAAK,GAAG,UAAU,IAAI,6CAA6C,CAAC;YAC1E,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC,CAAC,CAAC,CAAC;AACrB,CAAC"}

package/dist/gateway/middleware/kill-switch.d.ts

@@ -0,0 +1,10 @@
+import type { Middleware } from './chain.js';
+/**
+ * Checks for `.reagent/HALT` file. If present, denies the invocation.
+ *
+ * SECURITY: Validates HALT is a regular file (not directory/symlink to sensitive file).
+ * SECURITY: Caps read size to prevent oversized error strings.
+ * PERFORMANCE: All fs operations are async to avoid blocking the event loop.
+ */
+export declare function createKillSwitchMiddleware(baseDir: string): Middleware;
+//# sourceMappingURL=kill-switch.d.ts.map

package/dist/gateway/middleware/kill-switch.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"kill-switch.d.ts","sourceRoot":"","sources":["../../../src/gateway/middleware/kill-switch.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAI7C;;;;;;GAMG;AACH,wBAAgB,0BAA0B,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,CAiDtE"}