@compilr-dev/sdk 0.9.19 → 0.9.21

package/dist/entitlements/cache.js

@@ -11,7 +11,36 @@
  * - fetchFn: how to call the server endpoint
  * - store (optional): encrypted persistence for offline grace (IEntitlementStore)
  */
+import { createPublicKey, verify } from 'node:crypto';
 import { UNLIMITED, OFFLINE_FALLBACK_LIMITS } from './types.js';
+/**
+ * Ed25519 public key for verifying entitlement response signatures.
+ * The corresponding private key is stored in Netlify env var ENTITLEMENT_SIGNING_KEY.
+ * This public key cannot forge signatures — it can only verify them.
+ */
+const ENTITLEMENT_PUBLIC_KEY = 'MCowBQYDK2VwAyEAMgDyiGWQVSnZKV6NF1UrDIkWtfH9BAyv93PyEg7AH40=';
+/**
+ * Verify the Ed25519 signature on an entitlement response.
+ * Returns true if valid or if signature verification is not available.
+ */
+function verifySignature(response) {
+    if (!response.signature)
+        return true; // No signature — allow (beta/dev)
+    try {
+        const { signature, ...payload } = response;
+        const publicKey = createPublicKey({
+            key: Buffer.from(ENTITLEMENT_PUBLIC_KEY, 'base64'),
+            format: 'der',
+            type: 'spki',
+        });
+        const payloadBuffer = Buffer.from(JSON.stringify(payload));
+        const signatureBuffer = Buffer.from(signature, 'base64');
+        return verify(null, payloadBuffer, publicKey, signatureBuffer);
+    }
+    catch {
+        return true; // Verification unavailable — fail open (don't break during migration)
+    }
+}
 // =============================================================================
 // Cache Implementation
 // =============================================================================
@@ -146,6 +175,10 @@ export class EntitlementCache {
     async fetchAndCache() {
         try {
             const response = await this.fetchFn();
+            // Verify Ed25519 signature (prevents tampered responses)
+            if (!verifySignature(response)) {
+                throw new Error('Entitlement signature verification failed');
+            }
             this.entitlements = response;
             this.fetchedAtMonotonic = process.hrtime.bigint();
             this.fetchedAtWall = Date.now();
@@ -174,7 +207,7 @@ export class EntitlementCache {
                 if (stored) {
                     const parsed = JSON.parse(stored);
                     const age = Date.now() - parsed.fetchedAtWall;
-                    if (age < this.offlineGraceMs) {
+                    if (age < this.offlineGraceMs && verifySignature(parsed.response)) {
                         this.entitlements = parsed.response;
                         // Compute monotonic offset from wall-clock age so isWithinOfflineGrace()
                         // returns the correct remaining time (not a fresh 24h window on every restart)

package/dist/entitlements/gating.d.ts

@@ -0,0 +1,58 @@
+/**
+ * Gating Helpers — Shared utilities for limit enforcement.
+ *
+ * DailyCounter: In-memory counter that resets at midnight UTC.
+ * Format helpers: Human-readable limit messages and time-until-reset.
+ */
+/**
+ * In-memory counter that resets daily at midnight UTC.
+ *
+ * Used for maxConversationsPerDay and maxAgentMessagesPerDay.
+ * Can be seeded from server-reported usage on startup.
+ */
+export declare class DailyCounter {
+    private count;
+    private resetDate;
+    /**
+     * Increment the counter and return the new value.
+     * Auto-resets if the UTC date has changed.
+     */
+    increment(): number;
+    /**
+     * Get the current count without incrementing.
+     */
+    getCount(): number;
+    /**
+     * Seed the counter with a server-reported value.
+     * Called on startup to prevent restart-based abuse.
+     */
+    seed(count: number, date?: string): void;
+    /**
+     * Reset the counter to zero (e.g., for testing).
+     */
+    reset(): void;
+    private ensureCurrentDay;
+}
+/**
+ * Format a human-readable limit message.
+ *
+ * @example
+ * formatLimitMessage('projects', 2, 2)
+ * // "You've reached your project limit (2/2)"
+ *
+ * formatLimitMessage('daily messages', 100, 100)
+ * // "You've reached your daily message limit (100/100)"
+ */
+export declare function formatLimitMessage(limitName: string, current: number, limit: number): string;
+/**
+ * Format the time remaining until daily counters reset (midnight UTC).
+ *
+ * @example
+ * formatTimeUntilReset()
+ * // "Resets in 4h 23m" or "Resets in 59m"
+ */
+export declare function formatTimeUntilReset(): string;
+/**
+ * Format an upgrade hint with the limit context.
+ */
+export declare function formatUpgradeHint(limitName: string): string;

package/dist/entitlements/gating.js

@@ -0,0 +1,104 @@
+/**
+ * Gating Helpers — Shared utilities for limit enforcement.
+ *
+ * DailyCounter: In-memory counter that resets at midnight UTC.
+ * Format helpers: Human-readable limit messages and time-until-reset.
+ */
+// =============================================================================
+// Daily Counter
+// =============================================================================
+/**
+ * In-memory counter that resets daily at midnight UTC.
+ *
+ * Used for maxConversationsPerDay and maxAgentMessagesPerDay.
+ * Can be seeded from server-reported usage on startup.
+ */
+export class DailyCounter {
+    count = 0;
+    resetDate = ''; // 'YYYY-MM-DD' in UTC
+    /**
+     * Increment the counter and return the new value.
+     * Auto-resets if the UTC date has changed.
+     */
+    increment() {
+        this.ensureCurrentDay();
+        this.count++;
+        return this.count;
+    }
+    /**
+     * Get the current count without incrementing.
+     */
+    getCount() {
+        this.ensureCurrentDay();
+        return this.count;
+    }
+    /**
+     * Seed the counter with a server-reported value.
+     * Called on startup to prevent restart-based abuse.
+     */
+    seed(count, date) {
+        const today = new Date().toISOString().slice(0, 10);
+        const seedDate = date ?? today;
+        if (seedDate === today) {
+            this.count = count;
+            this.resetDate = today;
+        }
+        // If seed date is not today, ignore (stale data)
+    }
+    /**
+     * Reset the counter to zero (e.g., for testing).
+     */
+    reset() {
+        this.count = 0;
+        this.resetDate = '';
+    }
+    ensureCurrentDay() {
+        const today = new Date().toISOString().slice(0, 10);
+        if (today !== this.resetDate) {
+            this.count = 0;
+            this.resetDate = today;
+        }
+    }
+}
+// =============================================================================
+// Format Helpers
+// =============================================================================
+/**
+ * Format a human-readable limit message.
+ *
+ * @example
+ * formatLimitMessage('projects', 2, 2)
+ * // "You've reached your project limit (2/2)"
+ *
+ * formatLimitMessage('daily messages', 100, 100)
+ * // "You've reached your daily message limit (100/100)"
+ */
+export function formatLimitMessage(limitName, current, limit) {
+    return `You've reached your ${limitName} limit (${String(current)}/${String(limit)})`;
+}
+/**
+ * Format the time remaining until daily counters reset (midnight UTC).
+ *
+ * @example
+ * formatTimeUntilReset()
+ * // "Resets in 4h 23m" or "Resets in 59m"
+ */
+export function formatTimeUntilReset() {
+    const now = new Date();
+    const midnight = new Date(now);
+    midnight.setUTCDate(midnight.getUTCDate() + 1);
+    midnight.setUTCHours(0, 0, 0, 0);
+    const diffMs = midnight.getTime() - now.getTime();
+    const hours = Math.floor(diffMs / (1000 * 60 * 60));
+    const minutes = Math.floor((diffMs % (1000 * 60 * 60)) / (1000 * 60));
+    if (hours > 0) {
+        return `Resets in ${String(hours)}h ${String(minutes)}m`;
+    }
+    return `Resets in ${String(minutes)}m`;
+}
+/**
+ * Format an upgrade hint with the limit context.
+ */
+export function formatUpgradeHint(limitName) {
+    return `Upgrade to Pro for unlimited ${limitName}`;
+}

package/dist/entitlements/index.d.ts

@@ -5,3 +5,4 @@ export type { TierLimits, EntitlementResponse, LimitCheckResult, } from './types
 export { UNLIMITED, OFFLINE_FALLBACK_LIMITS, } from './types.js';
 export type { IEntitlementStore, EntitlementCacheConfig, } from './cache.js';
 export { EntitlementCache } from './cache.js';
+export { DailyCounter, formatLimitMessage, formatTimeUntilReset, formatUpgradeHint, } from './gating.js';

package/dist/entitlements/index.js

@@ -3,3 +3,4 @@
  */
 export { UNLIMITED, OFFLINE_FALLBACK_LIMITS, } from './types.js';
 export { EntitlementCache } from './cache.js';
+export { DailyCounter, formatLimitMessage, formatTimeUntilReset, formatUpgradeHint, } from './gating.js';

package/dist/index.d.ts

@@ -58,7 +58,7 @@ export { createSQLiteRepositories, SQLiteProjectRepository, SQLiteWorkItemReposi
 export type { SQLiteRepositories, CreateSQLiteRepositoriesOptions, ProjectDeleteHooks, ProjectRecord, WorkItemRecord, ProjectDocumentRecord, WorkItemCommentRecord, } from './platform/index.js';
 export { createAskUserTool, createAskUserSimpleTool, createProposeAlternativesTool } from './tools/index.js';
 export type { AskUserQuestion, AskUserInput, AskUserResult, AskUserHandler, AskUserSimpleInput, AskUserSimpleResult, AskUserSimpleHandler, Alternative, ProposeAlternativesInput, ProposeAlternativesResult, ProposeAlternativesHandler, } from './tools/index.js';
-export { EntitlementCache, UNLIMITED, OFFLINE_FALLBACK_LIMITS } from './entitlements/index.js';
+export { EntitlementCache, UNLIMITED, OFFLINE_FALLBACK_LIMITS, DailyCounter, formatLimitMessage, formatTimeUntilReset, formatUpgradeHint, } from './entitlements/index.js';
 export type { TierLimits, EntitlementResponse, LimitCheckResult, IEntitlementStore, EntitlementCacheConfig, } from './entitlements/index.js';
 export { detectProject, suggestProjectType, detectCommon } from './detection/index.js';
 export type { DetectProjectOptions, DetectionResult, ContentSummary } from './detection/index.js';

package/dist/index.js

@@ -135,7 +135,7 @@ export { createAskUserTool, createAskUserSimpleTool, createProposeAlternativesTo
 // =============================================================================
 // Entitlements (server-driven tier management)
 // =============================================================================
-export { EntitlementCache, UNLIMITED, OFFLINE_FALLBACK_LIMITS } from './entitlements/index.js';
+export { EntitlementCache, UNLIMITED, OFFLINE_FALLBACK_LIMITS, DailyCounter, formatLimitMessage, formatTimeUntilReset, formatUpgradeHint, } from './entitlements/index.js';
 // =============================================================================
 // Project Detection (universal project content detection)
 // =============================================================================

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@compilr-dev/sdk",
-  "version": "0.9.19",
+  "version": "0.9.21",
   "description": "Universal agent runtime for building AI-powered applications",
   "type": "module",
   "main": "dist/index.js",