@congzhen/changewayguard 6.8.12

package/dist/gateway/gateway/sanitizer.js

@@ -0,0 +1,228 @@
+/**
+ * AI Security Gateway - Content Sanitizer
+ *
+ * Sanitizes sensitive data in a single request-response cycle.
+ * Placeholder format: __PII_<ENTITY_TYPE>_<SERIAL_ID>__
+ */
+// =============================================================================
+// Detection Patterns
+// =============================================================================
+const ENTITY_PATTERNS = [
+    // PEM Private Keys
+    {
+        type: "PRIVATE_KEY",
+        pattern: /-----BEGIN (?:OPENSSH |RSA |EC |DSA )?PRIVATE KEY-----[\s\S]*?-----END (?:OPENSSH |RSA |EC |DSA )?PRIVATE KEY-----/g,
+        score: 0.95,
+    },
+    // Email addresses
+    {
+        type: "EMAIL_ADDRESS",
+        pattern: /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}/g,
+        score: 0.90,
+    },
+    // URLs
+    {
+        type: "URL_ADDRESS",
+        pattern: /https?:\/\/[A-Za-z0-9._~:/?#\[\]@!$&'()*+,;=%-]+/g,
+        score: 0.80,
+    },
+    // Known API key prefixes
+    {
+        type: "API_KEY",
+        pattern: /\b(?:sk-[A-Za-z0-9]{20,}|sk_(?:live|test)_[A-Za-z0-9]{20,}|pk_(?:live|test)_[A-Za-z0-9]{20,}|ghp_[A-Za-z0-9]{36,}|gho_[A-Za-z0-9]{36,}|github_pat_[A-Za-z0-9_]{22,}|AKIA[A-Z0-9]{16}|xox[baprs]-[A-Za-z0-9-]+|SG\.[A-Za-z0-9_-]+\.[A-Za-z0-9_-]+|hf_[A-Za-z0-9]{30,})\b/g,
+        score: 0.90,
+    },
+    // Bearer tokens
+    {
+        type: "API_KEY",
+        pattern: /Bearer\s+[A-Za-z0-9\-_.~+/]{20,}={0,3}/g,
+        score: 0.85,
+    },
+    // Hex private keys (64 hex chars)
+    {
+        type: "PRIVATE_KEY",
+        pattern: /\b[0-9a-fA-F]{64}\b/g,
+        score: 0.75,
+    },
+    // Labeled password patterns
+    {
+        type: "PASSWORD",
+        pattern: /(?:password|passwd|pwd|pass|passcode)\s*[:=]\s*["']?(\S+)["']?/gi,
+        score: 0.80,
+        captureGroup: 1,
+    },
+    // Labeled API key patterns
+    {
+        type: "API_KEY",
+        pattern: /(?:api[_-]?key|apikey|secret[_-]?key|access[_-]?token|auth[_-]?token)\s*[:=]\s*["']?([A-Za-z0-9\-_.~+/]{16,})["']?/gi,
+        score: 0.85,
+        captureGroup: 1,
+    },
+    // Phone numbers
+    {
+        type: "PHONE_NUMBER",
+        pattern: /\+?\d{1,3}[-.\s]?\(?\d{2,4}\)?[-.\s]?\d{3,4}[-.\s]?\d{3,4}/g,
+        score: 0.70,
+    },
+    // Credit card numbers
+    {
+        type: "CREDIT_CARD",
+        pattern: /\b\d{4}[-\s]?\d{4}[-\s]?\d{4}[-\s]?\d{4}\b/g,
+        score: 0.85,
+    },
+    // Bank account numbers
+    {
+        type: "BANK_NUMBER",
+        pattern: /\b\d{12,19}\b/g,
+        score: 0.60,
+    },
+    // SSN
+    {
+        type: "SSN",
+        pattern: /\b\d{3}-\d{2}-\d{4}\b/g,
+        score: 0.85,
+    },
+    // IP addresses
+    {
+        type: "IP_ADDRESS",
+        pattern: /\b(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\b/g,
+        score: 0.70,
+    },
+    // Labeled verification codes
+    {
+        type: "VERIFICATION_CODE",
+        pattern: /(?:verification\s*code|verify\s*code|otp|2fa\s*code|auth(?:entication)?\s*code)\s*[:=\-]?\s*([A-Za-z0-9]{4,12})/gi,
+        score: 0.80,
+        captureGroup: 1,
+    },
+];
+function collectMatches(content) {
+    const matches = [];
+    for (const entity of ENTITY_PATTERNS) {
+        entity.pattern.lastIndex = 0;
+        let m;
+        while ((m = entity.pattern.exec(content)) !== null) {
+            let matchedText;
+            let start;
+            if (entity.captureGroup !== undefined && m[entity.captureGroup]) {
+                matchedText = m[entity.captureGroup];
+                start = m.index + m[0].indexOf(matchedText);
+            }
+            else {
+                matchedText = m[0];
+                start = m.index;
+            }
+            matches.push({
+                originalText: matchedText,
+                type: entity.type,
+                score: entity.score,
+                start,
+                end: start + matchedText.length,
+            });
+        }
+    }
+    return matches;
+}
+// =============================================================================
+// Span Merging
+// =============================================================================
+function mergeSpans(matches) {
+    if (matches.length === 0)
+        return [];
+    matches.sort((a, b) => {
+        if (a.start !== b.start)
+            return a.start - b.start;
+        const lenDiff = (b.end - b.start) - (a.end - a.start);
+        if (lenDiff !== 0)
+            return lenDiff;
+        return b.score - a.score;
+    });
+    const merged = [];
+    let current = matches[0];
+    for (let i = 1; i < matches.length; i++) {
+        const next = matches[i];
+        if (next.start < current.end) {
+            const currentLen = current.end - current.start;
+            const nextLen = next.end - next.start;
+            if (next.score > current.score || (next.score === current.score && nextLen > currentLen)) {
+                current = next;
+            }
+        }
+        else {
+            merged.push(current);
+            current = next;
+        }
+    }
+    merged.push(current);
+    return merged;
+}
+// =============================================================================
+// Text Sanitization
+// =============================================================================
+function sanitizeText(text, mappingTable, typeCounters) {
+    const matches = collectMatches(text);
+    if (matches.length === 0)
+        return text;
+    const merged = mergeSpans(matches);
+    const textToPlaceholder = new Map();
+    for (const match of merged) {
+        if (!textToPlaceholder.has(match.originalText)) {
+            const counter = (typeCounters.get(match.type) ?? 0) + 1;
+            typeCounters.set(match.type, counter);
+            const paddedId = counter.toString().padStart(8, "0");
+            const placeholder = `__PII_${match.type}_${paddedId}__`;
+            textToPlaceholder.set(match.originalText, placeholder);
+            mappingTable.set(placeholder, match.originalText);
+        }
+    }
+    let sanitized = text;
+    const sortedMatches = [...merged].sort((a, b) => b.start - a.start);
+    for (const match of sortedMatches) {
+        const placeholder = textToPlaceholder.get(match.originalText);
+        sanitized = sanitized.slice(0, match.start) + placeholder + sanitized.slice(match.end);
+    }
+    return sanitized;
+}
+// =============================================================================
+// Recursive Sanitization
+// =============================================================================
+function sanitizeValue(value, mappingTable, typeCounters) {
+    if (typeof value === "string") {
+        return sanitizeText(value, mappingTable, typeCounters);
+    }
+    if (Array.isArray(value)) {
+        return value.map((item) => sanitizeValue(item, mappingTable, typeCounters));
+    }
+    if (value !== null && typeof value === "object") {
+        const sanitized = {};
+        for (const [key, val] of Object.entries(value)) {
+            sanitized[key] = sanitizeValue(val, mappingTable, typeCounters);
+        }
+        return sanitized;
+    }
+    return value;
+}
+// =============================================================================
+// Public API
+// =============================================================================
+/**
+ * Sanitize any content (messages array, object, string)
+ * Returns sanitized content and mapping table for restoration
+ */
+export function sanitize(content) {
+    const mappingTable = new Map();
+    const typeCounters = new Map();
+    const sanitized = sanitizeValue(content, mappingTable, typeCounters);
+    return {
+        sanitized,
+        mappingTable,
+        redactionCount: mappingTable.size,
+    };
+}
+/**
+ * Sanitize messages array (common case for LLM APIs)
+ */
+export function sanitizeMessages(messages) {
+    return sanitize(messages);
+}
+//# sourceMappingURL=sanitizer.js.map

package/dist/gateway/gateway/sanitizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitizer.js","sourceRoot":"","sources":["../src/sanitizer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AA4BH,gFAAgF;AAChF,qBAAqB;AACrB,gFAAgF;AAEhF,MAAM,eAAe,GAAoB;IACvC,mBAAmB;IACnB;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,qHAAqH;QAC9H,KAAK,EAAE,IAAI;KACZ;IACD,kBAAkB;IAClB;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,iDAAiD;QAC1D,KAAK,EAAE,IAAI;KACZ;IACD,OAAO;IACP;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,mDAAmD;QAC5D,KAAK,EAAE,IAAI;KACZ;IACD,yBAAyB;IACzB;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,0QAA0Q;QACnR,KAAK,EAAE,IAAI;KACZ;IACD,gBAAgB;IAChB;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,yCAAyC;QAClD,KAAK,EAAE,IAAI;KACZ;IACD,kCAAkC;IAClC;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,sBAAsB;QAC/B,KAAK,EAAE,IAAI;KACZ;IACD,4BAA4B;IAC5B;QACE,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,kEAAkE;QAC3E,KAAK,EAAE,IAAI;QACX,YAAY,EAAE,CAAC;KAChB;IACD,2BAA2B;IAC3B;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,sHAAsH;QAC/H,KAAK,EAAE,IAAI;QACX,YAAY,EAAE,CAAC;KAChB;IACD,gBAAgB;IAChB;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,6DAA6D;QACtE,KAAK,EAAE,IAAI;KACZ;IACD,sBAAsB;IACtB;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,6CAA6C;QACtD,KAAK,EAAE,IAAI;KACZ;IACD,uBAAuB;IACvB;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,gBAAgB;QACzB,KAAK,EAAE,IAAI;KACZ;IACD,MAAM;IACN;QACE,IAAI,EAAE,KAAK;QACX,OAAO,EAAE,wBAAwB;QACjC,KAAK,EAAE,IAAI;KACZ;IACD,eAAe;IACf;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,gGAAgG;QACzG,KAAK,EAAE,IAAI;KACZ;IACD,6BAA6B;IAC7B;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,mHAAmH;QAC5H,KAAK,EAAE,IAAI;QACX,YAAY,EAAE,CAAC;KAChB;CACF,CAAC;AAcF,SAAS,cAAc,CAAC,OAAe;IACrC,MAAM,OAAO,GAAoB,EAAE,CAAC;IAEpC,KAAK,MAAM,MAAM,IAAI,eAAe,EAAE,CAAC;QACrC,MAAM,CAAC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;QAC7B,IAAI,CAAyB,CAAC;QAE9B,OAAO,CAAC,CAAC,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YACnD,IAAI,WAAmB,CAAC;YACxB,IAAI,KAAa,CAAC;YAElB,IAAI,MAAM,CAAC,YAAY,KAAK,SAAS,IAAI,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,EAAE,CAAC;gBAChE,WAAW,GAAG,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;gBACrC,KAAK,GAAG,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;YAC9C,CAAC;iBAAM,CAAC;gBACN,WAAW,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;gBACnB,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;YAClB,CAAC;YAED,OAAO,CAAC,IAAI,CAAC;gBACX,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,MAAM,CAAC,IAAI;gBACjB,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,KAAK;gBACL,GAAG,EAAE,KAAK,GAAG,WAAW,CAAC,MAAM;aAChC,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,gFAAgF;AAChF,eAAe;AACf,gFAAgF;AAEhF,SAAS,UAAU,CAAC,OAAwB;IAC1C,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAEpC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACpB,IAAI,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK;YAAE,OAAO,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;QAClD,MAAM,OAAO,GAAG,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;QACtD,IAAI,OAAO,KAAK,CAAC;YAAE,OAAO,OAAO,CAAC;QAClC,OAAO,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,IAAI,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IAEzB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACxC,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;QACxB,IAAI,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;YAC7B,MAAM,UAAU,GAAG,OAAO,CAAC,GAAG,GAAG,OAAO,CAAC,KAAK,CAAC;YAC/C,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC;YACtC,IAAI,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,CAAC,IAAI,CAAC,KAAK,KAAK,OAAO,CAAC,KAAK,IAAI,OAAO,GAAG,UAAU,CAAC,EAAE,CAAC;gBACzF,OAAO,GAAG,IAAI,CAAC;YACjB,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACrB,OAAO,GAAG,IAAI,CAAC;QACjB,CAAC;IACH,CAAC;IAED,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACrB,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,gFAAgF;AAChF,oBAAoB;AACpB,gFAAgF;AAEhF,SAAS,YAAY,CACnB,IAAY,EACZ,YAA0B,EAC1B,YAAqC;IAErC,MAAM,OAAO,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC;IACrC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAEtC,MAAM,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;IACnC,MAAM,iBAAiB,GAAG,IAAI,GAAG,EAAkB,CAAC;IAEpD,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;YAC/C,MAAM,OAAO,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;YACxD,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YACtC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;YACrD,MAAM,WAAW,GAAG,SAAS,KAAK,CAAC,IAAI,IAAI,QAAQ,IAAI,CAAC;YACxD,iBAAiB,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,EAAE,WAAW,CAAC,CAAC;YACvD,YAAY,CAAC,GAAG,CAAC,WAAW,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;IAED,IAAI,SAAS,GAAG,IAAI,CAAC;IACrB,MAAM,aAAa,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;IAEpE,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;QAClC,MAAM,WAAW,GAAG,iBAAiB,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAE,CAAC;QAC/D,SAAS,GAAG,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,GAAG,WAAW,GAAG,SAAS,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACzF,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,gFAAgF;AAChF,yBAAyB;AACzB,gFAAgF;AAEhF,SAAS,aAAa,CACpB,KAAc,EACd,YAA0B,EAC1B,YAAqC;IAErC,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,OAAO,YAAY,CAAC,KAAK,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC;IACzD,CAAC;IAED,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,aAAa,CAAC,IAAI,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC,CAAC;IAC9E,CAAC;IAED,IAAI,KAAK,KAAK,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAChD,MAAM,SAAS,GAA4B,EAAE,CAAC;QAC9C,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YAC/C,SAAS,CAAC,GAAG,CAAC,GAAG,aAAa,CAAC,GAAG,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC;QAClE,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,gFAAgF;AAChF,aAAa;AACb,gFAAgF;AAEhF;;;GAGG;AACH,MAAM,UAAU,QAAQ,CAAC,OAAgB;IACvC,MAAM,YAAY,GAAiB,IAAI,GAAG,EAAE,CAAC;IAC7C,MAAM,YAAY,GAAG,IAAI,GAAG,EAAsB,CAAC;IAEnD,MAAM,SAAS,GAAG,aAAa,CAAC,OAAO,EAAE,YAAY,EAAE,YAAY,CAAC,CAAC;IAErE,OAAO;QACL,SAAS;QACT,YAAY;QACZ,cAAc,EAAE,YAAY,CAAC,IAAI;KAClC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,QAAmB;IAClD,OAAO,QAAQ,CAAC,QAAQ,CAAC,CAAC;AAC5B,CAAC"}

package/dist/gateway/gateway/types.d.ts

@@ -0,0 +1,53 @@
+/**
+ * AI Security Gateway types
+ */
+export type MappingTable = Map<string, string>;
+export type SanitizeResult = {
+    sanitized: any;
+    mappingTable: MappingTable;
+    redactionCount: number;
+};
+export type ApiType = "anthropic" | "openai" | "gemini";
+export type BackendConfig = {
+    baseUrl: string;
+    apiKey: string;
+    type?: ApiType;
+    pathPrefix?: string;
+    models?: string[];
+    referer?: string;
+    title?: string;
+};
+export type GatewayConfig = {
+    port: number;
+    backends: {
+        [name: string]: BackendConfig;
+    };
+    routing?: {
+        [path: string]: string;
+    };
+    defaultBackends?: {
+        anthropic?: string;
+        openai?: string;
+        gemini?: string;
+    };
+};
+export type EntityMatch = {
+    originalText: string;
+    category: string;
+    placeholder: string;
+};
+export type GatewayActivityEvent = {
+    id: string;
+    timestamp: string;
+    requestId: string;
+    type: "sanitize" | "restore";
+    direction: "request" | "response";
+    backend: string;
+    endpoint: string;
+    model?: string;
+    redactionCount: number;
+    categories: Record<string, number>;
+    durationMs?: number;
+};
+export type ActivityListener = (event: GatewayActivityEvent) => void;
+//# sourceMappingURL=types.d.ts.map

package/dist/gateway/gateway/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,MAAM,MAAM,YAAY,GAAG,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AAG/C,MAAM,MAAM,cAAc,GAAG;IAC3B,SAAS,EAAE,GAAG,CAAC;IACf,YAAY,EAAE,YAAY,CAAC;IAC3B,cAAc,EAAE,MAAM,CAAC;CACxB,CAAC;AAGF,MAAM,MAAM,OAAO,GAAG,WAAW,GAAG,QAAQ,GAAG,QAAQ,CAAC;AAGxD,MAAM,MAAM,aAAa,GAAG;IAC1B,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAAC;AAGF,MAAM,MAAM,aAAa,GAAG;IAC1B,IAAI,EAAE,MAAM,CAAC;IAEb,QAAQ,EAAE;QACR,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,CAAC;KAC/B,CAAC;IAEF,OAAO,CAAC,EAAE;QACR,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC;KACxB,CAAC;IAEF,eAAe,CAAC,EAAE;QAChB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,CAAC;CACH,CAAC;AAGF,MAAM,MAAM,WAAW,GAAG;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAGF,MAAM,MAAM,oBAAoB,GAAG;IACjC,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,UAAU,GAAG,SAAS,CAAC;IAC7B,SAAS,EAAE,SAAS,GAAG,UAAU,CAAC;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,cAAc,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAEnC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAGF,MAAM,MAAM,gBAAgB,GAAG,CAAC,KAAK,EAAE,oBAAoB,KAAK,IAAI,CAAC"}

package/dist/gateway/gateway/types.js

@@ -0,0 +1,5 @@
+/**
+ * AI Security Gateway types
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/gateway/gateway/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;GAEG"}

package/dist/gateway/handlers/anthropic.d.ts

@@ -0,0 +1,12 @@
+/**
+ * AI Security Gateway - Anthropic Messages API handler
+ *
+ * Handles POST /v1/messages requests in Anthropic's native format.
+ */
+import type { IncomingMessage, ServerResponse } from "node:http";
+import type { BackendConfig } from "../types.js";
+/**
+ * Handle Anthropic API request
+ */
+export declare function handleAnthropicRequest(req: IncomingMessage, res: ServerResponse, backend: BackendConfig): Promise<void>;
+//# sourceMappingURL=anthropic.d.ts.map

package/dist/gateway/handlers/anthropic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic.d.ts","sourceRoot":"","sources":["../../src/handlers/anthropic.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AACjE,OAAO,KAAK,EAAE,aAAa,EAAgB,MAAM,aAAa,CAAC;AAK/D;;GAEG;AACH,wBAAsB,sBAAsB,CAC1C,GAAG,EAAE,eAAe,EACpB,GAAG,EAAE,cAAc,EACnB,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,IAAI,CAAC,CAwGf"}

package/dist/gateway/handlers/anthropic.js

@@ -0,0 +1,254 @@
+/**
+ * AI Security Gateway - Anthropic Messages API handler
+ *
+ * Handles POST /v1/messages requests in Anthropic's native format.
+ */
+import { sanitize } from "../sanitizer.js";
+import { restore, createStreamRestorer } from "../restorer.js";
+import { generateRequestId, logSanitizeEvent, logRestoreEvent } from "../activity.js";
+/**
+ * Handle Anthropic API request
+ */
+export async function handleAnthropicRequest(req, res, backend) {
+    try {
+        const requestId = generateRequestId();
+        const sanitizeStart = Date.now();
+        // 1. Parse request body
+        const body = await readBody(req);
+        const requestData = JSON.parse(body);
+        const { model, messages, system, tools, max_tokens, temperature, stream = false, ...rest } = requestData;
+        // 2. Sanitize messages
+        const { sanitized: sanitizedMessages, mappingTable, redactionCount } = sanitize(messages);
+        // 3. Sanitize system prompt if present
+        let systemRedactionCount = 0;
+        const sanitizedSystem = system
+            ? (() => {
+                const result = sanitize(system);
+                systemRedactionCount = result.redactionCount;
+                return result.sanitized;
+            })()
+            : system;
+        const totalRedactionCount = redactionCount + systemRedactionCount;
+        // Log sanitization event
+        if (totalRedactionCount > 0) {
+            logSanitizeEvent({
+                requestId,
+                backend: "anthropic",
+                endpoint: "/v1/messages",
+                model,
+                mappingTable,
+                redactionCount: totalRedactionCount,
+                durationMs: Date.now() - sanitizeStart,
+            });
+        }
+        // Note: We reuse the same mapping table so placeholders are consistent
+        // Debug: log what was sanitized
+        if (totalRedactionCount > 0) {
+            console.log(`[ai-security-gateway] Sanitized ${totalRedactionCount} items`);
+        }
+        // 4. Build sanitized request
+        const sanitizedRequest = {
+            model,
+            messages: sanitizedMessages,
+            ...(system && { system: sanitizedSystem }),
+            ...(tools && { tools }),
+            max_tokens,
+            ...(temperature !== undefined && { temperature }),
+            stream,
+            ...rest,
+        };
+        // 5. Forward to real Anthropic API
+        // Note: baseUrl already includes the full path prefix (e.g., /v1)
+        const apiUrl = `${backend.baseUrl}/messages`;
+        const response = await fetch(apiUrl, {
+            method: "POST",
+            headers: {
+                "Content-Type": "application/json",
+                "anthropic-version": req.headers["anthropic-version"] || "2023-06-01",
+                "x-api-key": backend.apiKey,
+            },
+            body: JSON.stringify(sanitizedRequest),
+        });
+        if (!response.ok) {
+            // Forward error response
+            res.writeHead(response.status, { "Content-Type": "application/json" });
+            const errorBody = await response.text();
+            res.end(errorBody);
+            return;
+        }
+        // 7. Handle streaming or non-streaming response
+        if (stream) {
+            await handleAnthropicStream(response, res, mappingTable, requestId, model);
+        }
+        else {
+            await handleAnthropicNonStream(response, res, mappingTable, requestId, model);
+        }
+    }
+    catch (error) {
+        console.error("[ai-security-gateway] Anthropic handler error:", error);
+        res.writeHead(500, { "Content-Type": "application/json" });
+        res.end(JSON.stringify({
+            error: "Internal gateway error",
+            message: error instanceof Error ? error.message : String(error),
+        }));
+    }
+}
+/**
+ * Handle streaming response with smart placeholder restoration
+ *
+ * Uses StreamRestorer to detect `__` and buffer potential placeholders.
+ * Only buffers when necessary, maintaining streaming UX.
+ */
+async function handleAnthropicStream(response, res, mappingTable, requestId, model) {
+    const restoreStart = Date.now();
+    // Debug: log mapping table size
+    if (mappingTable.size > 0) {
+        console.log(`[ai-security-gateway] Streaming with ${mappingTable.size} placeholders to restore`);
+    }
+    // Set SSE headers
+    res.writeHead(200, {
+        "Content-Type": "text/event-stream",
+        "Cache-Control": "no-cache",
+        "Connection": "keep-alive",
+    });
+    const reader = response.body?.getReader();
+    if (!reader) {
+        res.end();
+        return;
+    }
+    const decoder = new TextDecoder();
+    let lineBuffer = "";
+    // Create stream restorer for text content
+    const streamRestorer = createStreamRestorer(mappingTable);
+    try {
+        while (true) {
+            const { done, value } = await reader.read();
+            if (done)
+                break;
+            // Decode chunk
+            lineBuffer += decoder.decode(value, { stream: true });
+            // Process complete lines
+            const lines = lineBuffer.split("\n");
+            lineBuffer = lines.pop() || ""; // Keep incomplete line in buffer
+            for (const line of lines) {
+                if (!line.trim()) {
+                    res.write("\n");
+                    continue;
+                }
+                // Handle event lines (pass through)
+                if (line.startsWith("event:")) {
+                    res.write(line + "\n");
+                    continue;
+                }
+                // Handle data lines
+                if (!line.startsWith("data: ")) {
+                    res.write(line + "\n");
+                    continue;
+                }
+                const dataContent = line.slice(6);
+                try {
+                    const parsed = JSON.parse(dataContent);
+                    // Check for text delta
+                    if (parsed.type === "content_block_delta" && parsed.delta?.type === "text_delta") {
+                        const textContent = parsed.delta.text;
+                        if (textContent !== undefined && mappingTable.size > 0) {
+                            // Process text through stream restorer
+                            const restored = streamRestorer.process(textContent);
+                            if (restored.length > 0) {
+                                // We have restorable content - output it
+                                const restoredChunk = {
+                                    ...parsed,
+                                    delta: { ...parsed.delta, text: restored },
+                                };
+                                res.write(`data: ${JSON.stringify(restoredChunk)}\n`);
+                            }
+                            // If restorer is buffering, don't output anything yet
+                        }
+                        else {
+                            // No text content or no mappings - pass through
+                            res.write(line + "\n");
+                        }
+                    }
+                    else {
+                        // Non-text events - pass through
+                        res.write(line + "\n");
+                    }
+                }
+                catch {
+                    // Not valid JSON, pass through
+                    res.write(line + "\n");
+                }
+            }
+        }
+        // Write any remaining line buffer
+        if (lineBuffer.trim()) {
+            res.write(lineBuffer + "\n");
+        }
+        // Finalize stream restorer - flush any remaining buffered content
+        const finalContent = streamRestorer.finalize();
+        if (finalContent.length > 0) {
+            // Create a final text delta chunk with remaining content
+            const finalChunk = {
+                type: "content_block_delta",
+                index: 0,
+                delta: { type: "text_delta", text: finalContent },
+            };
+            res.write(`data: ${JSON.stringify(finalChunk)}\n`);
+        }
+        // Log restoration event
+        if (mappingTable.size > 0) {
+            logRestoreEvent({
+                requestId,
+                backend: "anthropic",
+                endpoint: "/v1/messages",
+                model,
+                mappingTable,
+                restorationCount: mappingTable.size,
+                durationMs: Date.now() - restoreStart,
+            });
+        }
+        res.end();
+    }
+    catch (error) {
+        console.error("[ai-security-gateway] Stream error:", error);
+        res.end();
+    }
+}
+/**
+ * Handle non-streaming response
+ */
+async function handleAnthropicNonStream(response, res, mappingTable, requestId, model) {
+    const restoreStart = Date.now();
+    const responseBody = await response.text();
+    const responseData = JSON.parse(responseBody);
+    // Restore placeholders in response
+    const restoredData = restore(responseData, mappingTable);
+    // Log restoration event
+    if (mappingTable.size > 0) {
+        logRestoreEvent({
+            requestId,
+            backend: "anthropic",
+            endpoint: "/v1/messages",
+            model,
+            mappingTable,
+            restorationCount: mappingTable.size,
+            durationMs: Date.now() - restoreStart,
+        });
+    }
+    res.writeHead(200, { "Content-Type": "application/json" });
+    res.end(JSON.stringify(restoredData));
+}
+/**
+ * Read request body as string
+ */
+function readBody(req) {
+    return new Promise((resolve, reject) => {
+        let body = "";
+        req.on("data", (chunk) => {
+            body += chunk.toString();
+        });
+        req.on("end", () => resolve(body));
+        req.on("error", reject);
+    });
+}
+//# sourceMappingURL=anthropic.js.map

package/dist/gateway/handlers/anthropic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic.js","sourceRoot":"","sources":["../../src/handlers/anthropic.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAIH,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAC3C,OAAO,EAAE,OAAO,EAAE,oBAAoB,EAAE,MAAM,gBAAgB,CAAC;AAC/D,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,eAAe,EAAE,MAAM,gBAAgB,CAAC;AAEtF;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,GAAoB,EACpB,GAAmB,EACnB,OAAsB;IAEtB,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,iBAAiB,EAAE,CAAC;QACtC,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEjC,wBAAwB;QACxB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,GAAG,CAAC,CAAC;QACjC,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAErC,MAAM,EACJ,KAAK,EACL,QAAQ,EACR,MAAM,EACN,KAAK,EACL,UAAU,EACV,WAAW,EACX,MAAM,GAAG,KAAK,EACd,GAAG,IAAI,EACR,GAAG,WAAW,CAAC;QAEhB,uBAAuB;QACvB,MAAM,EAAE,SAAS,EAAE,iBAAiB,EAAE,YAAY,EAAE,cAAc,EAAE,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAE1F,uCAAuC;QACvC,IAAI,oBAAoB,GAAG,CAAC,CAAC;QAC7B,MAAM,eAAe,GAAG,MAAM;YAC5B,CAAC,CAAC,CAAC,GAAG,EAAE;gBACJ,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;gBAChC,oBAAoB,GAAG,MAAM,CAAC,cAAc,CAAC;gBAC7C,OAAO,MAAM,CAAC,SAAS,CAAC;YAC1B,CAAC,CAAC,EAAE;YACN,CAAC,CAAC,MAAM,CAAC;QAEX,MAAM,mBAAmB,GAAG,cAAc,GAAG,oBAAoB,CAAC;QAElE,yBAAyB;QACzB,IAAI,mBAAmB,GAAG,CAAC,EAAE,CAAC;YAC5B,gBAAgB,CAAC;gBACf,SAAS;gBACT,OAAO,EAAE,WAAW;gBACpB,QAAQ,EAAE,cAAc;gBACxB,KAAK;gBACL,YAAY;gBACZ,cAAc,EAAE,mBAAmB;gBACnC,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,aAAa;aACvC,CAAC,CAAC;QACL,CAAC;QAED,uEAAuE;QAEvE,gCAAgC;QAChC,IAAI,mBAAmB,GAAG,CAAC,EAAE,CAAC;YAC5B,OAAO,CAAC,GAAG,CAAC,mCAAmC,mBAAmB,QAAQ,CAAC,CAAC;QAC9E,CAAC;QAED,6BAA6B;QAC7B,MAAM,gBAAgB,GAAG;YACvB,KAAK;YACL,QAAQ,EAAE,iBAAiB;YAC3B,GAAG,CAAC,MAAM,IAAI,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC;YAC1C,GAAG,CAAC,KAAK,IAAI,EAAE,KAAK,EAAE,CAAC;YACvB,UAAU;YACV,GAAG,CAAC,WAAW,KAAK,SAAS,IAAI,EAAE,WAAW,EAAE,CAAC;YACjD,MAAM;YACN,GAAG,IAAI;SACR,CAAC;QAEF,mCAAmC;QACnC,kEAAkE;QAClE,MAAM,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,WAAW,CAAC;QAC7C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,EAAE;YACnC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,mBAAmB,EAAE,GAAG,CAAC,OAAO,CAAC,mBAAmB,CAAW,IAAI,YAAY;gBAC/E,WAAW,EAAE,OAAO,CAAC,MAAM;aAC5B;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC;SACvC,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,yBAAyB;YACzB,GAAG,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC;YACvE,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACxC,GAAG,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YACnB,OAAO;QACT,CAAC;QAED,gDAAgD;QAChD,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,qBAAqB,CAAC,QAAQ,EAAE,GAAG,EAAE,YAAY,EAAE,SAAS,EAAE,KAAK,CAAC,CAAC;QAC7E,CAAC;aAAM,CAAC;YACN,MAAM,wBAAwB,CAAC,QAAQ,EAAE,GAAG,EAAE,YAAY,EAAE,SAAS,EAAE,KAAK,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,gDAAgD,EAAE,KAAK,CAAC,CAAC;QACvE,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC;QAC3D,GAAG,CAAC,GAAG,CACL,IAAI,CAAC,SAAS,CAAC;YACb,KAAK,EAAE,wBAAwB;YAC/B,OAAO,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SAChE,CAAC,CACH,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,KAAK,UAAU,qBAAqB,CAClC,QAAkB,EAClB,GAAmB,EACnB,YAA0B,EAC1B,SAAiB,EACjB,KAAc;IAEd,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAEhC,gCAAgC;IAChC,IAAI,YAAY,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,wCAAwC,YAAY,CAAC,IAAI,0BAA0B,CAAC,CAAC;IACnG,CAAC;IAED,kBAAkB;IAClB,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE;QACjB,cAAc,EAAE,mBAAmB;QACnC,eAAe,EAAE,UAAU;QAC3B,YAAY,EAAE,YAAY;KAC3B,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,QAAQ,CAAC,IAAI,EAAE,SAAS,EAAE,CAAC;IAC1C,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,GAAG,CAAC,GAAG,EAAE,CAAC;QACV,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,IAAI,UAAU,GAAG,EAAE,CAAC;IAEpB,0CAA0C;IAC1C,MAAM,cAAc,GAAG,oBAAoB,CAAC,YAAY,CAAC,CAAC;IAE1D,IAAI,CAAC;QACH,OAAO,IAAI,EAAE,CAAC;YACZ,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;YAC5C,IAAI,IAAI;gBAAE,MAAM;YAEhB,eAAe;YACf,UAAU,IAAI,OAAO,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;YAEtD,yBAAyB;YACzB,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACrC,UAAU,GAAG,KAAK,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,iCAAiC;YAEjE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;oBACjB,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;oBAChB,SAAS;gBACX,CAAC;gBAED,oCAAoC;gBACpC,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC9B,GAAG,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;oBACvB,SAAS;gBACX,CAAC;gBAED,oBAAoB;gBACpB,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;oBAC/B,GAAG,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;oBACvB,SAAS;gBACX,CAAC;gBAED,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAElC,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAsB,CAAC;oBAE5D,uBAAuB;oBACvB,IAAI,MAAM,CAAC,IAAI,KAAK,qBAAqB,IAAI,MAAM,CAAC,KAAK,EAAE,IAAI,KAAK,YAAY,EAAE,CAAC;wBACjF,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC;wBAEtC,IAAI,WAAW,KAAK,SAAS,IAAI,YAAY,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;4BACvD,uCAAuC;4BACvC,MAAM,QAAQ,GAAG,cAAc,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;4BAErD,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gCACxB,yCAAyC;gCACzC,MAAM,aAAa,GAAG;oCACpB,GAAG,MAAM;oCACT,KAAK,EAAE,EAAE,GAAG,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE;iCAC3C,CAAC;gCACF,GAAG,CAAC,KAAK,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;4BACxD,CAAC;4BACD,sDAAsD;wBACxD,CAAC;6BAAM,CAAC;4BACN,gDAAgD;4BAChD,GAAG,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;wBACzB,CAAC;oBACH,CAAC;yBAAM,CAAC;wBACN,iCAAiC;wBACjC,GAAG,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;oBACzB,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,+BAA+B;oBAC/B,GAAG,CAAC,KAAK,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC;gBACzB,CAAC;YACH,CAAC;QACH,CAAC;QAED,kCAAkC;QAClC,IAAI,UAAU,CAAC,IAAI,EAAE,EAAE,CAAC;YACtB,GAAG,CAAC,KAAK,CAAC,UAAU,GAAG,IAAI,CAAC,CAAC;QAC/B,CAAC;QAED,kEAAkE;QAClE,MAAM,YAAY,GAAG,cAAc,CAAC,QAAQ,EAAE,CAAC;QAC/C,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5B,yDAAyD;YACzD,MAAM,UAAU,GAAsB;gBACpC,IAAI,EAAE,qBAAqB;gBAC3B,KAAK,EAAE,CAAC;gBACR,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,YAAY,EAAE;aAClD,CAAC;YACF,GAAG,CAAC,KAAK,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QACrD,CAAC;QAED,wBAAwB;QACxB,IAAI,YAAY,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;YAC1B,eAAe,CAAC;gBACd,SAAS;gBACT,OAAO,EAAE,WAAW;gBACpB,QAAQ,EAAE,cAAc;gBACxB,KAAK;gBACL,YAAY;gBACZ,gBAAgB,EAAE,YAAY,CAAC,IAAI;gBACnC,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,YAAY;aACtC,CAAC,CAAC;QACL,CAAC;QAED,GAAG,CAAC,GAAG,EAAE,CAAC;IACZ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,qCAAqC,EAAE,KAAK,CAAC,CAAC;QAC5D,GAAG,CAAC,GAAG,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAeD;;GAEG;AACH,KAAK,UAAU,wBAAwB,CACrC,QAAkB,EAClB,GAAmB,EACnB,YAA0B,EAC1B,SAAiB,EACjB,KAAc;IAEd,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAChC,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC3C,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;IAE9C,mCAAmC;IACnC,MAAM,YAAY,GAAG,OAAO,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;IAEzD,wBAAwB;IACxB,IAAI,YAAY,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;QAC1B,eAAe,CAAC;YACd,SAAS;YACT,OAAO,EAAE,WAAW;YACpB,QAAQ,EAAE,cAAc;YACxB,KAAK;YACL,YAAY;YACZ,gBAAgB,EAAE,YAAY,CAAC,IAAI;YACnC,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,YAAY;SACtC,CAAC,CAAC;IACL,CAAC;IAED,GAAG,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC;IAC3D,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC,CAAC;AACxC,CAAC;AAED;;GAEG;AACH,SAAS,QAAQ,CAAC,GAAoB;IACpC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE;YACvB,IAAI,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QAC3B,CAAC,CAAC,CAAC;QACH,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC;QACnC,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IAC1B,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/gateway/handlers/gemini.d.ts

@@ -0,0 +1,12 @@
+/**
+ * AI Security Gateway - Google Gemini API handler
+ *
+ * Handles POST /v1/models/:model:generateContent requests in Gemini's format.
+ */
+import type { IncomingMessage, ServerResponse } from "node:http";
+import type { BackendConfig } from "../types.js";
+/**
+ * Handle Gemini API request
+ */
+export declare function handleGeminiRequest(req: IncomingMessage, res: ServerResponse, backend: BackendConfig, modelName: string): Promise<void>;
+//# sourceMappingURL=gemini.d.ts.map

package/dist/gateway/handlers/gemini.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"gemini.d.ts","sourceRoot":"","sources":["../../src/handlers/gemini.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AACjE,OAAO,KAAK,EAAE,aAAa,EAAgB,MAAM,aAAa,CAAC;AAK/D;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,GAAG,EAAE,eAAe,EACpB,GAAG,EAAE,cAAc,EACnB,OAAO,EAAE,aAAa,EACtB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,IAAI,CAAC,CAuFf"}