@clawdstrike/openclaw 0.1.0 → 0.1.2

package/dist/types.d.ts

@@ -2,19 +2,14 @@
  * @clawdstrike/openclaw - Type Definitions
  *
  * Core types for the Clawdstrike security plugin for OpenClaw.
+ *
+ * Types that are structurally identical to @clawdstrike/adapter-core are
+ * re-exported from that package to maintain a single source of truth and
+ * eliminate unsafe casts between parallel definitions.
  */
-/**
- * Severity level for policy violations
- */
-export type Severity = 'low' | 'medium' | 'high' | 'critical';
-/**
- * Enforcement mode for policy evaluation
- */
-export type EvaluationMode = 'deterministic' | 'advisory' | 'audit';
-/**
- * Log level for plugin output
- */
-export type LogLevel = 'debug' | 'info' | 'warn' | 'error';
+export type { ClawdstrikeConfig, CuaEventData, Decision, DecisionStatus, EventData, EventType, EvaluationMode, GuardToggles, LogLevel, PolicyEvent, Severity, } from '@clawdstrike/adapter-core';
+export type { DecisionReasonCode } from '@clawdstrike/adapter-core';
+export type { FileEventData, CommandEventData, NetworkEventData, ToolEventData, PatchEventData, SecretEventData, } from '@clawdstrike/adapter-core';
 /**
  * Action to take on policy violation
  */
@@ -23,158 +18,35 @@ export type ViolationAction = 'cancel' | 'warn' | 'isolate' | 'escalate';
  * Network egress mode
  */
 export type EgressMode = 'allowlist' | 'denylist' | 'open' | 'deny_all';
-/**
- * Event type discriminator for policy evaluation
- */
-export type EventType = 'file_read' | 'file_write' | 'command_exec' | 'network_egress' | 'tool_call' | 'patch_apply' | 'secret_access';
-/**
- * Plugin configuration schema
- */
-export interface ClawdstrikeConfig {
-    /** Path to policy YAML or built-in ruleset name */
-    policy?: string;
-    /** Enforcement mode */
-    mode?: EvaluationMode;
-    /** Logging level */
-    logLevel?: LogLevel;
-    /** Guard enable/disable toggles */
-    guards?: GuardToggles;
-}
-/**
- * Guard enable/disable toggles
- */
-export interface GuardToggles {
-    forbidden_path?: boolean;
-    egress?: boolean;
-    secret_leak?: boolean;
-    patch_integrity?: boolean;
-    mcp_tool?: boolean;
-}
-/**
- * Execution event to be evaluated by policy engine
- */
-export interface PolicyEvent {
-    /** Unique event identifier */
-    eventId: string;
-    /** Event type */
-    eventType: EventType;
-    /** Event timestamp (ISO 8601) */
-    timestamp: string;
-    /** Associated session/run identifier */
-    sessionId?: string;
-    /** Event-specific data */
-    data: EventData;
-    /** Optional metadata */
-    metadata?: Record<string, unknown>;
-}
-/**
- * Union type for event-specific data
- */
-export type EventData = FileEventData | CommandEventData | NetworkEventData | ToolEventData | PatchEventData | SecretEventData;
-/**
- * File read/write event data
- */
-export interface FileEventData {
-    type: 'file';
-    /** Absolute path to the file */
-    path: string;
-    /** Optional raw content (small files only; best-effort) */
-    content?: string;
-    /** Optional base64-encoded content */
-    contentBase64?: string;
-    /** Optional content hash (for write verification) */
-    contentHash?: string;
-    /** Operation type */
-    operation: 'read' | 'write';
+export type ComputerUseMode = 'observe' | 'guardrail' | 'fail_closed';
+export interface ComputerUseGuardConfig {
+    enabled?: boolean;
+    mode?: ComputerUseMode;
+    allowed_actions?: string[];
 }
-/**
- * Command execution event data
- */
-export interface CommandEventData {
-    type: 'command';
-    /** Command name or path */
-    command: string;
-    /** Command arguments */
-    args: string[];
-    /** Working directory */
-    workingDir?: string;
+export interface RemoteDesktopSideChannelGuardConfig {
+    enabled?: boolean;
+    clipboard_enabled?: boolean;
+    file_transfer_enabled?: boolean;
+    audio_enabled?: boolean;
+    drive_mapping_enabled?: boolean;
+    printing_enabled?: boolean;
+    session_share_enabled?: boolean;
+    max_transfer_size_bytes?: number;
 }
-/**
- * Network egress event data
- */
-export interface NetworkEventData {
-    type: 'network';
-    /** Target hostname or IP */
-    host: string;
-    /** Target port */
-    port: number;
-    /** Protocol (tcp, udp, etc.) */
-    protocol?: string;
-    /** Full URL if available */
-    url?: string;
+export interface InputInjectionCapabilityGuardConfig {
+    enabled?: boolean;
+    allowed_input_types?: string[];
+    require_postcondition_probe?: boolean;
 }
-/**
- * Tool invocation event data
- */
-export interface ToolEventData {
-    type: 'tool';
-    /** Tool name (e.g., "bash", "file_write", "web_search") */
-    toolName: string;
-    /** Tool parameters */
-    parameters: Record<string, unknown>;
-    /** Tool result (for post-execution checks) */
-    result?: string;
-}
-/**
- * Patch/diff application event data
- */
-export interface PatchEventData {
-    type: 'patch';
-    /** Target file path */
-    filePath: string;
-    /** Patch content (diff or full content) */
-    patchContent: string;
-    /** Optional patch hash */
-    patchHash?: string;
-}
-/**
- * Secret access event data
- */
-export interface SecretEventData {
-    type: 'secret';
-    /** Secret identifier or name */
-    secretName: string;
-    /** Scope (environment, file, etc.) */
-    scope: string;
-}
-/**
- * Decision status for security checks.
- * - 'allow': Operation is permitted
- * - 'warn': Operation is permitted but flagged for review
- * - 'deny': Operation is blocked
- */
-export type DecisionStatus = 'allow' | 'warn' | 'deny';
-/**
- * Result of policy evaluation
- */
-export interface Decision {
-    /** The decision status: 'allow', 'warn', or 'deny' */
-    status: DecisionStatus;
-    /** Whether the event is allowed @deprecated Use status === 'allow' || status === 'warn' */
-    allowed: boolean;
-    /** Whether the event is explicitly denied @deprecated Use status === 'deny' */
-    denied: boolean;
-    /** Whether to show a warning @deprecated Use status === 'warn' */
-    warn: boolean;
-    /** Reason for denial (if denied) */
-    reason?: string;
-    /** Guard that made the decision */
-    guard?: string;
-    /** Severity of the violation */
-    severity?: Severity;
-    /** Additional message */
-    message?: string;
+import type { GuardToggles as _GuardToggles } from '@clawdstrike/adapter-core';
+export interface PolicyGuards extends _GuardToggles {
+    custom?: unknown;
+    computer_use?: ComputerUseGuardConfig;
+    remote_desktop_side_channel?: RemoteDesktopSideChannelGuardConfig;
+    input_injection_capability?: InputInjectionCapabilityGuardConfig;
 }
+import type { Severity as _Severity } from '@clawdstrike/adapter-core';
 /**
  * Result from a single guard check
  */
@@ -184,12 +56,16 @@ export interface GuardResult {
     /** Reason message */
     reason?: string;
     /** Severity (for deny) */
-    severity?: Severity;
+    severity?: _Severity;
     /** Guard name */
     guard: string;
 }
 /**
  * Security policy configuration
+ *
+ * NOTE: This is intentionally NOT re-exported from adapter-core.
+ * adapter-core defines Policy as `Record<string, unknown>` (opaque),
+ * whereas openclaw requires a rich structured type for guard evaluation.
  */
 export interface Policy {
     /** Policy version identifier */
@@ -207,9 +83,7 @@ export interface Policy {
     /** Resource limits */
     limits?: ResourceLimits;
     /** Guard-level toggles */
-    guards?: GuardToggles & {
-        custom?: unknown;
-    };
+    guards?: PolicyGuards;
     /** Action to take on violation */
     on_violation?: ViolationAction;
 }
@@ -286,7 +160,7 @@ export interface SecretPattern {
     /** Regex pattern */
     pattern: RegExp;
     /** Severity if detected */
-    severity: Severity;
+    severity: _Severity;
     /** Description */
     description: string;
 }
@@ -299,16 +173,17 @@ export interface DangerousPattern {
     /** Regex pattern */
     pattern: RegExp;
     /** Severity if detected */
-    severity: Severity;
+    severity: _Severity;
     /** Description */
     description: string;
 }
+import type { ClawdstrikeConfig as _ClawdstrikeConfig } from '@clawdstrike/adapter-core';
 /**
  * OpenClaw Plugin API interface (minimal for type safety)
  */
 export interface PluginAPI {
     /** Get plugin configuration */
-    getConfig<T = ClawdstrikeConfig>(): T;
+    getConfig<T = _ClawdstrikeConfig>(): T;
     /** Register a tool */
     registerTool(tool: ToolDefinition): void;
     /** Register CLI commands */
@@ -399,15 +274,56 @@ export interface AgentBootstrapEvent {
             path: string;
             content: string;
         }>;
-        cfg: ClawdstrikeConfig;
+        cfg: _ClawdstrikeConfig;
     };
 }
+/**
+ * Hook event context for tool_call (pre-execution).
+ * Accepts both 'tool_call' (legacy) and 'before_tool_call' (v2026.2.1+).
+ */
+export interface ToolCallEvent {
+    type: 'tool_call' | 'before_tool_call';
+    timestamp: string;
+    context: {
+        sessionId: string;
+        toolCall: {
+            toolName: string;
+            params: Record<string, unknown>;
+        };
+    };
+    /** Set to true to block execution */
+    preventDefault: boolean;
+    /** Messages to relay to the agent */
+    messages: string[];
+}
+/**
+ * Modern OpenClaw before_tool_call hook payload (v2026 runtime).
+ */
+export interface BeforeToolCallHookEvent {
+    toolName: string;
+    params: Record<string, unknown>;
+}
+/**
+ * Modern OpenClaw hook context payload.
+ */
+export interface OpenClawHookContext {
+    agentId?: string;
+    sessionKey?: string;
+    toolName?: string;
+    toolCallId?: string;
+}
 /**
  * Generic hook event type
  */
-export type HookEvent = ToolResultPersistEvent | AgentBootstrapEvent;
+export type HookEvent = ToolResultPersistEvent | AgentBootstrapEvent | ToolCallEvent;
 /**
  * Hook handler function type
  */
-export type HookHandler = (event: HookEvent) => Promise<void> | void;
+export interface BeforeToolCallHookResult {
+    block: boolean;
+    blockReason?: string;
+    params?: Record<string, unknown>;
+}
+export type HookHandlerResult = void | BeforeToolCallHookResult;
+export type HookHandler = (event: HookEvent, ctx?: OpenClawHookContext) => Promise<HookHandlerResult> | HookHandlerResult;
 //# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;AAE9D;;GAEG;AACH,MAAM,MAAM,cAAc,GAAG,eAAe,GAAG,UAAU,GAAG,OAAO,CAAC;AAEpE;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;AAE3D;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,GAAG,UAAU,CAAC;AAEzE;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG,WAAW,GAAG,UAAU,GAAG,MAAM,GAAG,UAAU,CAAC;AAExE;;GAEG;AACH,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,YAAY,GACZ,cAAc,GACd,gBAAgB,GAChB,WAAW,GACX,aAAa,GACb,eAAe,CAAC;AAEpB;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,mDAAmD;IACnD,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,uBAAuB;IACvB,IAAI,CAAC,EAAE,cAAc,CAAC;IACtB,oBAAoB;IACpB,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,mCAAmC;IACnC,MAAM,CAAC,EAAE,YAAY,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,8BAA8B;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,iBAAiB;IACjB,SAAS,EAAE,SAAS,CAAC;IACrB,iCAAiC;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,wCAAwC;IACxC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0BAA0B;IAC1B,IAAI,EAAE,SAAS,CAAC;IAChB,wBAAwB;IACxB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,MAAM,SAAS,GACjB,aAAa,GACb,gBAAgB,GAChB,gBAAgB,GAChB,aAAa,GACb,cAAc,GACd,eAAe,CAAC;AAEpB;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,gCAAgC;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,2DAA2D;IAC3D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,sCAAsC;IACtC,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,qDAAqD;IACrD,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,qBAAqB;IACrB,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC;CAC7B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,SAAS,CAAC;IAChB,2BAA2B;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,wBAAwB;IACxB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,wBAAwB;IACxB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,SAAS,CAAC;IAChB,4BAA4B;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,kBAAkB;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,gCAAgC;IAChC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,4BAA4B;IAC5B,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,2DAA2D;IAC3D,QAAQ,EAAE,MAAM,CAAC;IACjB,sBAAsB;IACtB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,8CAA8C;IAC9C,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,OAAO,CAAC;IACd,uBAAuB;IACvB,QAAQ,EAAE,MAAM,CAAC;IACjB,2CAA2C;IAC3C,YAAY,EAAE,MAAM,CAAC;IACrB,0BAA0B;IAC1B,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,QAAQ,CAAC;IACf,gCAAgC;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,sCAAsC;IACtC,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;;;;GAKG;AACH,MAAM,MAAM,cAAc,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;AAEvD;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,sDAAsD;IACtD,MAAM,EAAE,cAAc,CAAC;IACvB,2FAA2F;IAC3F,OAAO,EAAE,OAAO,CAAC;IACjB,+EAA+E;IAC/E,MAAM,EAAE,OAAO,CAAC;IAChB,kEAAkE;IAClE,IAAI,EAAE,OAAO,CAAC;IACd,oCAAoC;IACpC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,mCAAmC;IACnC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,gCAAgC;IAChC,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,yBAAyB;IACzB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,mBAAmB;IACnB,MAAM,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;IAClC,qBAAqB;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,0BAA0B;IAC1B,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,iBAAiB;IACjB,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB,gCAAgC;IAChC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,4BAA4B;IAC5B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,mCAAmC;IACnC,MAAM,CAAC,EAAE,YAAY,CAAC;IACtB,sCAAsC;IACtC,UAAU,CAAC,EAAE,gBAAgB,CAAC;IAC9B,sCAAsC;IACtC,SAAS,CAAC,EAAE,eAAe,CAAC;IAC5B,4BAA4B;IAC5B,KAAK,CAAC,EAAE,UAAU,CAAC;IACnB,sBAAsB;IACtB,MAAM,CAAC,EAAE,cAAc,CAAC;IACxB,0BAA0B;IAC1B,MAAM,CAAC,EAAE,YAAY,GAAG;QAAE,MAAM,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IAC7C,kCAAkC;IAClC,YAAY,CAAC,EAAE,eAAe,CAAC;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,kBAAkB;IAClB,IAAI,EAAE,UAAU,CAAC;IACjB,2CAA2C;IAC3C,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,uBAAuB;IACvB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,wCAAwC;IACxC,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,2CAA2C;IAC3C,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,wCAAwC;IACxC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,+CAA+C;IAC/C,kBAAkB,CAAC,EAAE,MAAM,EAAE,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,6CAA6C;IAC7C,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,sCAAsC;IACtC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,0CAA0C;IAC1C,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,mBAAmB;IACnB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,wCAAwC;IACxC,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,2BAA2B;IAC3B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,mCAAmC;IACnC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8BAA8B;IAC9B,KAAK,EAAE,OAAO,CAAC;IACf,wBAAwB;IACxB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,0BAA0B;IAC1B,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,2BAA2B;IAC3B,QAAQ,EAAE,QAAQ,CAAC;IACnB,kBAAkB;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,2BAA2B;IAC3B,QAAQ,EAAE,QAAQ,CAAC;IACnB,kBAAkB;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,+BAA+B;IAC/B,SAAS,CAAC,CAAC,GAAG,iBAAiB,KAAK,CAAC,CAAC;IACtC,sBAAsB;IACtB,YAAY,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;IACzC,4BAA4B;IAC5B,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,EAAE,UAAU,KAAK,IAAI,GAAG,IAAI,CAAC;IACvD,oCAAoC;IACpC,eAAe,CAAC,OAAO,EAAE,iBAAiB,GAAG,IAAI,CAAC;IAClD,iBAAiB;IACjB,SAAS,IAAI,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,iCAAiC;IACjC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,8BAA8B;IAC9B,OAAO,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;CAChE;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE;QACP,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,CAAC;KACvC,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,CAAC;IAC1C,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,CAAC;IACtC,MAAM,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,EAAE,OAAO,EAAE,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,GAAG,cAAc,CAAC;IACzE,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,cAAc,CAAC;IACtD,MAAM,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,OAAO,GAAG,cAAc,CAAC;CAC9E;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,iBAAiB;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,qBAAqB;IACrB,KAAK,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3B,oBAAoB;IACpB,IAAI,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;IACjD,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;IAChD,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;IAChD,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;CAClD;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,IAAI,EAAE,qBAAqB,CAAC;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE;QACP,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,EAAE;YACV,QAAQ,EAAE,MAAM,CAAC;YACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;YAChC,MAAM,EAAE,OAAO,CAAC;YAChB,KAAK,CAAC,EAAE,MAAM,CAAC;SAChB,CAAC;KACH,CAAC;IACF,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,iBAAiB,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE;QACP,SAAS,EAAE,MAAM,CAAC;QAClB,OAAO,EAAE,MAAM,CAAC;QAChB,cAAc,EAAE,KAAK,CAAC;YACpB,IAAI,EAAE,MAAM,CAAC;YACb,OAAO,EAAE,MAAM,CAAC;SACjB,CAAC,CAAC;QACH,GAAG,EAAE,iBAAiB,CAAC;KACxB,CAAC;CACH;AAED;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG,sBAAsB,GAAG,mBAAmB,CAAC;AAErE;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,KAAK,EAAE,SAAS,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAMH,YAAY,EACV,iBAAiB,EACjB,YAAY,EACZ,QAAQ,EACR,cAAc,EACd,SAAS,EACT,SAAS,EACT,cAAc,EACd,YAAY,EACZ,QAAQ,EACR,WAAW,EACX,QAAQ,GACT,MAAM,2BAA2B,CAAC;AAInC,YAAY,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAIpE,YAAY,EACV,aAAa,EACb,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,cAAc,EACd,eAAe,GAChB,MAAM,2BAA2B,CAAC;AAMnC;;GAEG;AACH,MAAM,MAAM,eAAe,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,GAAG,UAAU,CAAC;AAEzE;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG,WAAW,GAAG,UAAU,GAAG,MAAM,GAAG,UAAU,CAAC;AAExE,MAAM,MAAM,eAAe,GAAG,SAAS,GAAG,WAAW,GAAG,aAAa,CAAC;AAEtE,MAAM,WAAW,sBAAsB;IACrC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,eAAe,CAAC;IACvB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED,MAAM,WAAW,mCAAmC;IAClD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,uBAAuB,CAAC,EAAE,MAAM,CAAC;CAClC;AAED,MAAM,WAAW,mCAAmC;IAClD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,2BAA2B,CAAC,EAAE,OAAO,CAAC;CACvC;AAID,OAAO,KAAK,EAAE,YAAY,IAAI,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAE/E,MAAM,WAAW,YAAa,SAAQ,aAAa;IACjD,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,YAAY,CAAC,EAAE,sBAAsB,CAAC;IACtC,2BAA2B,CAAC,EAAE,mCAAmC,CAAC;IAClE,0BAA0B,CAAC,EAAE,mCAAmC,CAAC;CAClE;AAGD,OAAO,KAAK,EAAE,QAAQ,IAAI,SAAS,EAAE,MAAM,2BAA2B,CAAC;AAEvE;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,mBAAmB;IACnB,MAAM,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;IAClC,qBAAqB;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,0BAA0B;IAC1B,QAAQ,CAAC,EAAE,SAAS,CAAC;IACrB,iBAAiB;IACjB,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;;;;;GAMG;AACH,MAAM,WAAW,MAAM;IACrB,gCAAgC;IAChC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,4BAA4B;IAC5B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,mCAAmC;IACnC,MAAM,CAAC,EAAE,YAAY,CAAC;IACtB,sCAAsC;IACtC,UAAU,CAAC,EAAE,gBAAgB,CAAC;IAC9B,sCAAsC;IACtC,SAAS,CAAC,EAAE,eAAe,CAAC;IAC5B,4BAA4B;IAC5B,KAAK,CAAC,EAAE,UAAU,CAAC;IACnB,sBAAsB;IACtB,MAAM,CAAC,EAAE,cAAc,CAAC;IACxB,0BAA0B;IAC1B,MAAM,CAAC,EAAE,YAAY,CAAC;IACtB,kCAAkC;IAClC,YAAY,CAAC,EAAE,eAAe,CAAC;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,kBAAkB;IAClB,IAAI,EAAE,UAAU,CAAC;IACjB,2CAA2C;IAC3C,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,uBAAuB;IACvB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,wCAAwC;IACxC,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,2CAA2C;IAC3C,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,wCAAwC;IACxC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,+CAA+C;IAC/C,kBAAkB,CAAC,EAAE,MAAM,EAAE,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,6CAA6C;IAC7C,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,sCAAsC;IACtC,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,0CAA0C;IAC1C,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,mBAAmB;IACnB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,wCAAwC;IACxC,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,2BAA2B;IAC3B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,mCAAmC;IACnC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8BAA8B;IAC9B,KAAK,EAAE,OAAO,CAAC;IACf,wBAAwB;IACxB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,0BAA0B;IAC1B,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,2BAA2B;IAC3B,QAAQ,EAAE,SAAS,CAAC;IACpB,kBAAkB;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,2BAA2B;IAC3B,QAAQ,EAAE,SAAS,CAAC;IACpB,kBAAkB;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAGD,OAAO,KAAK,EAAE,iBAAiB,IAAI,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAEzF;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,+BAA+B;IAC/B,SAAS,CAAC,CAAC,GAAG,kBAAkB,KAAK,CAAC,CAAC;IACvC,sBAAsB;IACtB,YAAY,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;IACzC,4BAA4B;IAC5B,WAAW,CAAC,QAAQ,EAAE,CAAC,GAAG,EAAE,UAAU,KAAK,IAAI,GAAG,IAAI,CAAC;IACvD,oCAAoC;IACpC,eAAe,CAAC,OAAO,EAAE,iBAAiB,GAAG,IAAI,CAAC;IAClD,iBAAiB;IACjB,SAAS,IAAI,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,iCAAiC;IACjC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,8BAA8B;IAC9B,OAAO,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;CAChE;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE;QACP,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,CAAC;KACvC,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,CAAC;IAC1C,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,CAAC;IACtC,MAAM,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,EAAE,OAAO,EAAE,KAAK,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,GAAG,cAAc,CAAC;IACzE,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,cAAc,CAAC;IACtD,MAAM,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,EAAE,YAAY,CAAC,EAAE,OAAO,GAAG,cAAc,CAAC;CAC9E;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,iBAAiB;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,qBAAqB;IACrB,KAAK,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAC3B,oBAAoB;IACpB,IAAI,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;IACjD,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;IAChD,IAAI,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;IAChD,KAAK,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC;CAClD;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,IAAI,EAAE,qBAAqB,CAAC;IAC5B,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE;QACP,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,EAAE;YACV,QAAQ,EAAE,MAAM,CAAC;YACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;YAChC,MAAM,EAAE,OAAO,CAAC;YAChB,KAAK,CAAC,EAAE,MAAM,CAAC;SAChB,CAAC;KACH,CAAC;IACF,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,iBAAiB,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE;QACP,SAAS,EAAE,MAAM,CAAC;QAClB,OAAO,EAAE,MAAM,CAAC;QAChB,cAAc,EAAE,KAAK,CAAC;YACpB,IAAI,EAAE,MAAM,CAAC;YACb,OAAO,EAAE,MAAM,CAAC;SACjB,CAAC,CAAC;QACH,GAAG,EAAE,kBAAkB,CAAC;KACzB,CAAC;CACH;AAED;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,WAAW,GAAG,kBAAkB,CAAC;IACvC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE;QACP,SAAS,EAAE,MAAM,CAAC;QAClB,QAAQ,EAAE;YACR,QAAQ,EAAE,MAAM,CAAC;YACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;SACjC,CAAC;KACH,CAAC;IACF,qCAAqC;IACrC,cAAc,EAAE,OAAO,CAAC;IACxB,qCAAqC;IACrC,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,MAAM,SAAS,GAAG,sBAAsB,GAAG,mBAAmB,GAAG,aAAa,CAAC;AAErF;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,KAAK,EAAE,OAAO,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAED,MAAM,MAAM,iBAAiB,GAAG,IAAI,GAAG,wBAAwB,CAAC;AAEhE,MAAM,MAAM,WAAW,GAAG,CACxB,KAAK,EAAE,SAAS,EAChB,GAAG,CAAC,EAAE,mBAAmB,KACtB,OAAO,CAAC,iBAAiB,CAAC,GAAG,iBAAiB,CAAC"}

package/dist/types.js

@@ -2,6 +2,10 @@
  * @clawdstrike/openclaw - Type Definitions
  *
  * Core types for the Clawdstrike security plugin for OpenClaw.
+ *
+ * Types that are structurally identical to @clawdstrike/adapter-core are
+ * re-exported from that package to maintain a single source of truth and
+ * eliminate unsafe casts between parallel definitions.
  */
 export {};
 //# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@clawdstrike/openclaw",
-  "version": "0.1.0",
+  "version": "0.1.2",
   "description": "Clawdstrike security plugin for OpenClaw",
   "type": "module",
   "main": "dist/index.js",
@@ -29,7 +29,7 @@
     "bench:json": "npm run build && OUTPUT_JSON=1 node benchmarks/policy-engine.bench.mjs"
   },
   "dependencies": {
-    "@clawdstrike/adapter-core": "^0.1.0",
+    "@clawdstrike/adapter-core": "^0.1.1",
     "@clawdstrike/policy": "^0.1.0",
     "chalk": "^5.3.0",
     "commander": "^14.0.3",
@@ -43,7 +43,7 @@
     "vitest": "^4.0.18"
   },
   "peerDependencies": {
-    "openclaw": ">=0.1.0"
+    "openclaw": ">=2025.0.0"
   },
   "peerDependenciesMeta": {
     "openclaw": {
@@ -53,6 +53,7 @@
   "files": [
     "dist",
     "rulesets",
+    "clawdstrike-security.js",
     "README.md"
   ],
   "keywords": [
@@ -62,6 +63,7 @@
     "ai-agent"
   ],
   "license": "Apache-2.0",
+  "author": "Clawdstrike Contributors",
   "repository": {
     "type": "git",
     "url": "https://github.com/backbay-labs/clawdstrike.git",

package/rulesets/ai-agent-minimal.yaml

@@ -23,6 +23,31 @@ egress:
     - "10.*"
     - "192.168.*"
     - "172.16.*"
+    - "172.17.*"
+    - "172.18.*"
+    - "172.19.*"
+    - "172.20.*"
+    - "172.21.*"
+    - "172.22.*"
+    - "172.23.*"
+    - "172.24.*"
+    - "172.25.*"
+    - "172.26.*"
+    - "172.27.*"
+    - "172.28.*"
+    - "172.29.*"
+    - "172.30.*"
+    - "172.31.*"
+    - "0.0.0.0"
+    - "[::1]"
+    - "[::0]"
+    - "::1"
+    - "::0"
+    - "169.254.*"
+    - "fe80:*"
+    - "fc00:*"
+    - "fd00:*"
+    - "fd[0-9a-f][0-9a-f]:*"
 
 filesystem:
   forbidden_paths:

package/rulesets/ai-agent.yaml

@@ -36,6 +36,31 @@ egress:
     - "10.*"
     - "192.168.*"
     - "172.16.*"
+    - "172.17.*"
+    - "172.18.*"
+    - "172.19.*"
+    - "172.20.*"
+    - "172.21.*"
+    - "172.22.*"
+    - "172.23.*"
+    - "172.24.*"
+    - "172.25.*"
+    - "172.26.*"
+    - "172.27.*"
+    - "172.28.*"
+    - "172.29.*"
+    - "172.30.*"
+    - "172.31.*"
+    - "0.0.0.0"
+    - "[::1]"
+    - "[::0]"
+    - "::1"
+    - "::0"
+    - "169.254.*"
+    - "fe80:*"
+    - "fc00:*"
+    - "fd00:*"
+    - "fd[0-9a-f][0-9a-f]:*"
 
 filesystem:
   forbidden_paths: