@contractspec/example.locale-jurisdiction-gate 3.7.17 → 3.7.18

package/dist/browser/locale-jurisdiction-gate.feature.js

@@ -1,105 +1 @@
-// src/policy/assistant-gate.policy.ts
-import {
-  OwnersEnum,
-  StabilityEnum,
-  TagsEnum
-} from "@contractspec/lib.contracts-spec/ownership";
-import { definePolicy } from "@contractspec/lib.contracts-spec/policy";
-var AssistantGatePolicy = definePolicy({
-  meta: {
-    key: "locale-jurisdiction-gate.policy.gate",
-    version: "1.0.0",
-    title: "Assistant Locale and Jurisdiction Gate",
-    description: "Requires explicit locale, jurisdiction, knowledge snapshot, and allowed scope before assistant requests may proceed.",
-    domain: "assistant",
-    scope: "operation",
-    owners: [OwnersEnum.PlatformFinance],
-    tags: [TagsEnum.I18n, "assistant", "policy", "jurisdiction"],
-    stability: StabilityEnum.Experimental
-  },
-  rules: [
-    {
-      effect: "deny",
-      actions: ["assistant.answer", "assistant.explainConcept"],
-      resource: { type: "assistant-call" },
-      conditions: [
-        {
-          expression: "!context.locale || !context.jurisdiction || !context.kbSnapshotId || !context.allowedScope"
-        }
-      ],
-      reason: "Assistant requests fail closed until locale, jurisdiction, kbSnapshotId, and allowedScope are explicit."
-    },
-    {
-      effect: "deny",
-      actions: ["assistant.answer", "assistant.explainConcept"],
-      resource: { type: "assistant-call" },
-      conditions: [
-        {
-          expression: "!['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '')"
-        }
-      ],
-      reason: "Only the explicitly reviewed assistant locales are permitted."
-    },
-    {
-      effect: "allow",
-      actions: ["assistant.answer", "assistant.explainConcept"],
-      resource: { type: "assistant-call" },
-      conditions: [
-        {
-          expression: "['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '') && !!context.jurisdiction && !!context.kbSnapshotId && !!context.allowedScope"
-        }
-      ],
-      reason: "Explicit context is present, so the request may continue to citation and scope validation."
-    }
-  ],
-  pii: {
-    fields: ["kbSnapshotId"],
-    retentionDays: 30
-  }
-});
-
-// src/locale-jurisdiction-gate.feature.ts
-import { defineFeature } from "@contractspec/lib.contracts-spec";
-var LocaleJurisdictionGateFeature = defineFeature({
-  meta: {
-    key: "locale-jurisdiction-gate",
-    version: "1.0.0",
-    title: "Locale + Jurisdiction Gate",
-    description: "Fail-closed gating for assistant calls requiring locale/jurisdiction/snapshot/scope and citations.",
-    domain: "knowledge",
-    owners: ["@examples"],
-    tags: ["assistant", "policy", "locale", "jurisdiction", "knowledge"],
-    stability: "experimental"
-  },
-  operations: [
-    { key: "assistant.answer", version: "1.0.0" },
-    { key: "assistant.explainConcept", version: "1.0.0" }
-  ],
-  events: [
-    { key: "assistant.answer.requested", version: "1.0.0" },
-    { key: "assistant.answer.blocked", version: "1.0.0" },
-    { key: "assistant.answer.delivered", version: "1.0.0" }
-  ],
-  presentations: [],
-  opToPresentation: [],
-  presentationsTargets: [],
-  capabilities: {
-    requires: [{ key: "knowledge", version: "1.0.0" }]
-  },
-  policies: [
-    {
-      key: AssistantGatePolicy.meta.key,
-      version: AssistantGatePolicy.meta.version
-    }
-  ],
-  knowledge: [
-    { key: "locale-jurisdiction-gate.knowledge.rules", version: "1.0.0" }
-  ],
-  docs: [
-    "docs.examples.locale-jurisdiction-gate.goal",
-    "docs.examples.locale-jurisdiction-gate.reference"
-  ]
-});
-export {
-  LocaleJurisdictionGateFeature
-};
+import{OwnersEnum as j,StabilityEnum as k,TagsEnum as q}from"@contractspec/lib.contracts-spec/ownership";import{definePolicy as v}from"@contractspec/lib.contracts-spec/policy";var h=v({meta:{key:"locale-jurisdiction-gate.policy.gate",version:"1.0.0",title:"Assistant Locale and Jurisdiction Gate",description:"Requires explicit locale, jurisdiction, knowledge snapshot, and allowed scope before assistant requests may proceed.",domain:"assistant",scope:"operation",owners:[j.PlatformFinance],tags:[q.I18n,"assistant","policy","jurisdiction"],stability:k.Experimental},rules:[{effect:"deny",actions:["assistant.answer","assistant.explainConcept"],resource:{type:"assistant-call"},conditions:[{expression:"!context.locale || !context.jurisdiction || !context.kbSnapshotId || !context.allowedScope"}],reason:"Assistant requests fail closed until locale, jurisdiction, kbSnapshotId, and allowedScope are explicit."},{effect:"deny",actions:["assistant.answer","assistant.explainConcept"],resource:{type:"assistant-call"},conditions:[{expression:"!['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '')"}],reason:"Only the explicitly reviewed assistant locales are permitted."},{effect:"allow",actions:["assistant.answer","assistant.explainConcept"],resource:{type:"assistant-call"},conditions:[{expression:"['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '') && !!context.jurisdiction && !!context.kbSnapshotId && !!context.allowedScope"}],reason:"Explicit context is present, so the request may continue to citation and scope validation."}],pii:{fields:["kbSnapshotId"],retentionDays:30}});import{defineFeature as x}from"@contractspec/lib.contracts-spec";var I=x({meta:{key:"locale-jurisdiction-gate",version:"1.0.0",title:"Locale + Jurisdiction Gate",description:"Fail-closed gating for assistant calls requiring locale/jurisdiction/snapshot/scope and citations.",domain:"knowledge",owners:["@examples"],tags:["assistant","policy","locale","jurisdiction","knowledge"],stability:"experimental"},operations:[{key:"assistant.answer",version:"1.0.0"},{key:"assistant.explainConcept",version:"1.0.0"}],events:[{key:"assistant.answer.requested",version:"1.0.0"},{key:"assistant.answer.blocked",version:"1.0.0"},{key:"assistant.answer.delivered",version:"1.0.0"}],presentations:[],opToPresentation:[],presentationsTargets:[],capabilities:{requires:[{key:"knowledge",version:"1.0.0"}]},policies:[{key:h.meta.key,version:h.meta.version}],knowledge:[{key:"locale-jurisdiction-gate.knowledge.rules",version:"1.0.0"}],docs:["docs.examples.locale-jurisdiction-gate.goal","docs.examples.locale-jurisdiction-gate.reference"]});export{I as LocaleJurisdictionGateFeature};

package/dist/browser/operations/assistant.js

@@ -1,192 +1 @@
-// src/entities/models.ts
-import {
-  defineEnum,
-  defineSchemaModel,
-  ScalarTypeEnum
-} from "@contractspec/lib.schema";
-var AllowedScopeEnum = defineEnum("AllowedScope", [
-  "education_only",
-  "generic_info",
-  "escalation_required"
-]);
-var UserProfileModel = defineSchemaModel({
-  name: "UserProfile",
-  description: "User profile inputs used to derive regulatory context.",
-  fields: {
-    preferredLocale: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isOptional: true
-    },
-    residencyCountry: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isOptional: true
-    },
-    taxResidenceCountry: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isOptional: true
-    },
-    clientType: { type: ScalarTypeEnum.String_unsecure(), isOptional: true }
-  }
-});
-var RegulatoryContextModel = defineSchemaModel({
-  name: "RegulatoryContext",
-  description: "Explicit regulatory context (no guessing).",
-  fields: {
-    jurisdiction: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    region: { type: ScalarTypeEnum.String_unsecure(), isOptional: true },
-    clientType: { type: ScalarTypeEnum.String_unsecure(), isOptional: true },
-    allowedScope: { type: AllowedScopeEnum, isOptional: false }
-  }
-});
-var LLMCallEnvelopeModel = defineSchemaModel({
-  name: "LLMCallEnvelope",
-  description: "Mandatory envelope for assistant calls. All fields are explicit and required for policy gating.",
-  fields: {
-    traceId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    locale: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    regulatoryContext: { type: RegulatoryContextModel, isOptional: false },
-    kbSnapshotId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    allowedScope: { type: AllowedScopeEnum, isOptional: false }
-  }
-});
-var AssistantCitationModel = defineSchemaModel({
-  name: "AssistantCitation",
-  description: "Citation referencing a KB snapshot + a specific item within it.",
-  fields: {
-    kbSnapshotId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    sourceType: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    sourceId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    title: { type: ScalarTypeEnum.String_unsecure(), isOptional: true },
-    excerpt: { type: ScalarTypeEnum.String_unsecure(), isOptional: true }
-  }
-});
-var AssistantAnswerSectionModel = defineSchemaModel({
-  name: "AssistantAnswerSection",
-  description: "Structured answer section.",
-  fields: {
-    heading: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    body: { type: ScalarTypeEnum.String_unsecure(), isOptional: false }
-  }
-});
-var AssistantAnswerIRModel = defineSchemaModel({
-  name: "AssistantAnswerIR",
-  description: "Structured assistant answer with mandatory citations and explicit locale/jurisdiction.",
-  fields: {
-    locale: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    jurisdiction: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    allowedScope: { type: AllowedScopeEnum, isOptional: false },
-    sections: {
-      type: AssistantAnswerSectionModel,
-      isArray: true,
-      isOptional: false
-    },
-    citations: {
-      type: AssistantCitationModel,
-      isArray: true,
-      isOptional: false
-    },
-    disclaimers: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isArray: true,
-      isOptional: true
-    },
-    riskFlags: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isArray: true,
-      isOptional: true
-    },
-    refused: { type: ScalarTypeEnum.Boolean(), isOptional: true },
-    refusalReason: { type: ScalarTypeEnum.String_unsecure(), isOptional: true }
-  }
-});
-
-// src/operations/assistant.ts
-import { defineCommand } from "@contractspec/lib.contracts-spec";
-import { defineSchemaModel as defineSchemaModel2, ScalarTypeEnum as ScalarTypeEnum2 } from "@contractspec/lib.schema";
-var AssistantQuestionInput = defineSchemaModel2({
-  name: "AssistantQuestionInput",
-  description: "Input for assistant calls with mandatory envelope.",
-  fields: {
-    envelope: { type: LLMCallEnvelopeModel, isOptional: false },
-    question: { type: ScalarTypeEnum2.String_unsecure(), isOptional: false }
-  }
-});
-var AssistantConceptInput = defineSchemaModel2({
-  name: "AssistantConceptInput",
-  description: "Input for explaining a concept with mandatory envelope.",
-  fields: {
-    envelope: { type: LLMCallEnvelopeModel, isOptional: false },
-    conceptKey: { type: ScalarTypeEnum2.String_unsecure(), isOptional: false }
-  }
-});
-var AssistantAnswerContract = defineCommand({
-  meta: {
-    key: "assistant.answer",
-    version: "1.0.0",
-    stability: "experimental",
-    owners: ["@examples"],
-    tags: ["assistant", "policy", "locale", "jurisdiction", "knowledge"],
-    description: "Answer a user question using a KB snapshot with strict locale/jurisdiction gating.",
-    goal: "Provide policy-safe answers that cite a KB snapshot or refuse.",
-    context: "Called by UI or workflows; must fail-closed if envelope is invalid or citations are missing."
-  },
-  io: {
-    input: AssistantQuestionInput,
-    output: AssistantAnswerIRModel,
-    errors: {
-      LOCALE_REQUIRED: {
-        description: "Locale is required and must be supported",
-        http: 400,
-        gqlCode: "LOCALE_REQUIRED",
-        when: "locale is missing or unsupported"
-      },
-      JURISDICTION_REQUIRED: {
-        description: "Jurisdiction is required",
-        http: 400,
-        gqlCode: "JURISDICTION_REQUIRED",
-        when: "jurisdiction is missing"
-      },
-      KB_SNAPSHOT_REQUIRED: {
-        description: "KB snapshot id is required",
-        http: 400,
-        gqlCode: "KB_SNAPSHOT_REQUIRED",
-        when: "kbSnapshotId is missing"
-      },
-      CITATIONS_REQUIRED: {
-        description: "Answers must include citations to a KB snapshot",
-        http: 422,
-        gqlCode: "CITATIONS_REQUIRED",
-        when: "answer has no citations"
-      },
-      SCOPE_VIOLATION: {
-        description: "Answer violates allowed scope and must be refused/escalated",
-        http: 403,
-        gqlCode: "SCOPE_VIOLATION",
-        when: "output includes forbidden content under the given allowedScope"
-      }
-    }
-  },
-  policy: { auth: "user" }
-});
-var AssistantExplainConceptContract = defineCommand({
-  meta: {
-    key: "assistant.explainConcept",
-    version: "1.0.0",
-    stability: "experimental",
-    owners: ["@examples"],
-    tags: ["assistant", "policy", "knowledge", "concepts"],
-    description: "Explain a concept using a KB snapshot with strict locale/jurisdiction gating.",
-    goal: "Explain concepts with citations or refuse.",
-    context: "Same constraints as assistant.answer."
-  },
-  io: {
-    input: AssistantConceptInput,
-    output: AssistantAnswerIRModel,
-    errors: AssistantAnswerContract.io.errors
-  },
-  policy: { auth: "user" }
-});
-export {
-  AssistantExplainConceptContract,
-  AssistantAnswerContract
-};
+import{defineEnum as l,defineSchemaModel as t,ScalarTypeEnum as e}from"@contractspec/lib.schema";var i=l("AllowedScope",["education_only","generic_info","escalation_required"]),S=t({name:"UserProfile",description:"User profile inputs used to derive regulatory context.",fields:{preferredLocale:{type:e.String_unsecure(),isOptional:!0},residencyCountry:{type:e.String_unsecure(),isOptional:!0},taxResidenceCountry:{type:e.String_unsecure(),isOptional:!0},clientType:{type:e.String_unsecure(),isOptional:!0}}}),p=t({name:"RegulatoryContext",description:"Explicit regulatory context (no guessing).",fields:{jurisdiction:{type:e.String_unsecure(),isOptional:!1},region:{type:e.String_unsecure(),isOptional:!0},clientType:{type:e.String_unsecure(),isOptional:!0},allowedScope:{type:i,isOptional:!1}}}),n=t({name:"LLMCallEnvelope",description:"Mandatory envelope for assistant calls. All fields are explicit and required for policy gating.",fields:{traceId:{type:e.String_unsecure(),isOptional:!1},locale:{type:e.String_unsecure(),isOptional:!1},regulatoryContext:{type:p,isOptional:!1},kbSnapshotId:{type:e.String_unsecure(),isOptional:!1},allowedScope:{type:i,isOptional:!1}}}),u=t({name:"AssistantCitation",description:"Citation referencing a KB snapshot + a specific item within it.",fields:{kbSnapshotId:{type:e.String_unsecure(),isOptional:!1},sourceType:{type:e.String_unsecure(),isOptional:!1},sourceId:{type:e.String_unsecure(),isOptional:!1},title:{type:e.String_unsecure(),isOptional:!0},excerpt:{type:e.String_unsecure(),isOptional:!0}}}),c=t({name:"AssistantAnswerSection",description:"Structured answer section.",fields:{heading:{type:e.String_unsecure(),isOptional:!1},body:{type:e.String_unsecure(),isOptional:!1}}}),r=t({name:"AssistantAnswerIR",description:"Structured assistant answer with mandatory citations and explicit locale/jurisdiction.",fields:{locale:{type:e.String_unsecure(),isOptional:!1},jurisdiction:{type:e.String_unsecure(),isOptional:!1},allowedScope:{type:i,isOptional:!1},sections:{type:c,isArray:!0,isOptional:!1},citations:{type:u,isArray:!0,isOptional:!1},disclaimers:{type:e.String_unsecure(),isArray:!0,isOptional:!0},riskFlags:{type:e.String_unsecure(),isArray:!0,isOptional:!0},refused:{type:e.Boolean(),isOptional:!0},refusalReason:{type:e.String_unsecure(),isOptional:!0}}});import{defineCommand as s}from"@contractspec/lib.contracts-spec";import{defineSchemaModel as o,ScalarTypeEnum as a}from"@contractspec/lib.schema";var y=o({name:"AssistantQuestionInput",description:"Input for assistant calls with mandatory envelope.",fields:{envelope:{type:n,isOptional:!1},question:{type:a.String_unsecure(),isOptional:!1}}}),d=o({name:"AssistantConceptInput",description:"Input for explaining a concept with mandatory envelope.",fields:{envelope:{type:n,isOptional:!1},conceptKey:{type:a.String_unsecure(),isOptional:!1}}}),g=s({meta:{key:"assistant.answer",version:"1.0.0",stability:"experimental",owners:["@examples"],tags:["assistant","policy","locale","jurisdiction","knowledge"],description:"Answer a user question using a KB snapshot with strict locale/jurisdiction gating.",goal:"Provide policy-safe answers that cite a KB snapshot or refuse.",context:"Called by UI or workflows; must fail-closed if envelope is invalid or citations are missing."},io:{input:y,output:r,errors:{LOCALE_REQUIRED:{description:"Locale is required and must be supported",http:400,gqlCode:"LOCALE_REQUIRED",when:"locale is missing or unsupported"},JURISDICTION_REQUIRED:{description:"Jurisdiction is required",http:400,gqlCode:"JURISDICTION_REQUIRED",when:"jurisdiction is missing"},KB_SNAPSHOT_REQUIRED:{description:"KB snapshot id is required",http:400,gqlCode:"KB_SNAPSHOT_REQUIRED",when:"kbSnapshotId is missing"},CITATIONS_REQUIRED:{description:"Answers must include citations to a KB snapshot",http:422,gqlCode:"CITATIONS_REQUIRED",when:"answer has no citations"},SCOPE_VIOLATION:{description:"Answer violates allowed scope and must be refused/escalated",http:403,gqlCode:"SCOPE_VIOLATION",when:"output includes forbidden content under the given allowedScope"}}},policy:{auth:"user"}}),A=s({meta:{key:"assistant.explainConcept",version:"1.0.0",stability:"experimental",owners:["@examples"],tags:["assistant","policy","knowledge","concepts"],description:"Explain a concept using a KB snapshot with strict locale/jurisdiction gating.",goal:"Explain concepts with citations or refuse.",context:"Same constraints as assistant.answer."},io:{input:d,output:r,errors:g.io.errors},policy:{auth:"user"}});export{A as AssistantExplainConceptContract,g as AssistantAnswerContract};

package/dist/browser/operations/index.js

@@ -1,192 +1 @@
-// src/entities/models.ts
-import {
-  defineEnum,
-  defineSchemaModel,
-  ScalarTypeEnum
-} from "@contractspec/lib.schema";
-var AllowedScopeEnum = defineEnum("AllowedScope", [
-  "education_only",
-  "generic_info",
-  "escalation_required"
-]);
-var UserProfileModel = defineSchemaModel({
-  name: "UserProfile",
-  description: "User profile inputs used to derive regulatory context.",
-  fields: {
-    preferredLocale: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isOptional: true
-    },
-    residencyCountry: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isOptional: true
-    },
-    taxResidenceCountry: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isOptional: true
-    },
-    clientType: { type: ScalarTypeEnum.String_unsecure(), isOptional: true }
-  }
-});
-var RegulatoryContextModel = defineSchemaModel({
-  name: "RegulatoryContext",
-  description: "Explicit regulatory context (no guessing).",
-  fields: {
-    jurisdiction: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    region: { type: ScalarTypeEnum.String_unsecure(), isOptional: true },
-    clientType: { type: ScalarTypeEnum.String_unsecure(), isOptional: true },
-    allowedScope: { type: AllowedScopeEnum, isOptional: false }
-  }
-});
-var LLMCallEnvelopeModel = defineSchemaModel({
-  name: "LLMCallEnvelope",
-  description: "Mandatory envelope for assistant calls. All fields are explicit and required for policy gating.",
-  fields: {
-    traceId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    locale: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    regulatoryContext: { type: RegulatoryContextModel, isOptional: false },
-    kbSnapshotId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    allowedScope: { type: AllowedScopeEnum, isOptional: false }
-  }
-});
-var AssistantCitationModel = defineSchemaModel({
-  name: "AssistantCitation",
-  description: "Citation referencing a KB snapshot + a specific item within it.",
-  fields: {
-    kbSnapshotId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    sourceType: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    sourceId: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    title: { type: ScalarTypeEnum.String_unsecure(), isOptional: true },
-    excerpt: { type: ScalarTypeEnum.String_unsecure(), isOptional: true }
-  }
-});
-var AssistantAnswerSectionModel = defineSchemaModel({
-  name: "AssistantAnswerSection",
-  description: "Structured answer section.",
-  fields: {
-    heading: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    body: { type: ScalarTypeEnum.String_unsecure(), isOptional: false }
-  }
-});
-var AssistantAnswerIRModel = defineSchemaModel({
-  name: "AssistantAnswerIR",
-  description: "Structured assistant answer with mandatory citations and explicit locale/jurisdiction.",
-  fields: {
-    locale: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    jurisdiction: { type: ScalarTypeEnum.String_unsecure(), isOptional: false },
-    allowedScope: { type: AllowedScopeEnum, isOptional: false },
-    sections: {
-      type: AssistantAnswerSectionModel,
-      isArray: true,
-      isOptional: false
-    },
-    citations: {
-      type: AssistantCitationModel,
-      isArray: true,
-      isOptional: false
-    },
-    disclaimers: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isArray: true,
-      isOptional: true
-    },
-    riskFlags: {
-      type: ScalarTypeEnum.String_unsecure(),
-      isArray: true,
-      isOptional: true
-    },
-    refused: { type: ScalarTypeEnum.Boolean(), isOptional: true },
-    refusalReason: { type: ScalarTypeEnum.String_unsecure(), isOptional: true }
-  }
-});
-
-// src/operations/assistant.ts
-import { defineCommand } from "@contractspec/lib.contracts-spec";
-import { defineSchemaModel as defineSchemaModel2, ScalarTypeEnum as ScalarTypeEnum2 } from "@contractspec/lib.schema";
-var AssistantQuestionInput = defineSchemaModel2({
-  name: "AssistantQuestionInput",
-  description: "Input for assistant calls with mandatory envelope.",
-  fields: {
-    envelope: { type: LLMCallEnvelopeModel, isOptional: false },
-    question: { type: ScalarTypeEnum2.String_unsecure(), isOptional: false }
-  }
-});
-var AssistantConceptInput = defineSchemaModel2({
-  name: "AssistantConceptInput",
-  description: "Input for explaining a concept with mandatory envelope.",
-  fields: {
-    envelope: { type: LLMCallEnvelopeModel, isOptional: false },
-    conceptKey: { type: ScalarTypeEnum2.String_unsecure(), isOptional: false }
-  }
-});
-var AssistantAnswerContract = defineCommand({
-  meta: {
-    key: "assistant.answer",
-    version: "1.0.0",
-    stability: "experimental",
-    owners: ["@examples"],
-    tags: ["assistant", "policy", "locale", "jurisdiction", "knowledge"],
-    description: "Answer a user question using a KB snapshot with strict locale/jurisdiction gating.",
-    goal: "Provide policy-safe answers that cite a KB snapshot or refuse.",
-    context: "Called by UI or workflows; must fail-closed if envelope is invalid or citations are missing."
-  },
-  io: {
-    input: AssistantQuestionInput,
-    output: AssistantAnswerIRModel,
-    errors: {
-      LOCALE_REQUIRED: {
-        description: "Locale is required and must be supported",
-        http: 400,
-        gqlCode: "LOCALE_REQUIRED",
-        when: "locale is missing or unsupported"
-      },
-      JURISDICTION_REQUIRED: {
-        description: "Jurisdiction is required",
-        http: 400,
-        gqlCode: "JURISDICTION_REQUIRED",
-        when: "jurisdiction is missing"
-      },
-      KB_SNAPSHOT_REQUIRED: {
-        description: "KB snapshot id is required",
-        http: 400,
-        gqlCode: "KB_SNAPSHOT_REQUIRED",
-        when: "kbSnapshotId is missing"
-      },
-      CITATIONS_REQUIRED: {
-        description: "Answers must include citations to a KB snapshot",
-        http: 422,
-        gqlCode: "CITATIONS_REQUIRED",
-        when: "answer has no citations"
-      },
-      SCOPE_VIOLATION: {
-        description: "Answer violates allowed scope and must be refused/escalated",
-        http: 403,
-        gqlCode: "SCOPE_VIOLATION",
-        when: "output includes forbidden content under the given allowedScope"
-      }
-    }
-  },
-  policy: { auth: "user" }
-});
-var AssistantExplainConceptContract = defineCommand({
-  meta: {
-    key: "assistant.explainConcept",
-    version: "1.0.0",
-    stability: "experimental",
-    owners: ["@examples"],
-    tags: ["assistant", "policy", "knowledge", "concepts"],
-    description: "Explain a concept using a KB snapshot with strict locale/jurisdiction gating.",
-    goal: "Explain concepts with citations or refuse.",
-    context: "Same constraints as assistant.answer."
-  },
-  io: {
-    input: AssistantConceptInput,
-    output: AssistantAnswerIRModel,
-    errors: AssistantAnswerContract.io.errors
-  },
-  policy: { auth: "user" }
-});
-export {
-  AssistantExplainConceptContract,
-  AssistantAnswerContract
-};
+import{defineEnum as l,defineSchemaModel as t,ScalarTypeEnum as e}from"@contractspec/lib.schema";var i=l("AllowedScope",["education_only","generic_info","escalation_required"]),S=t({name:"UserProfile",description:"User profile inputs used to derive regulatory context.",fields:{preferredLocale:{type:e.String_unsecure(),isOptional:!0},residencyCountry:{type:e.String_unsecure(),isOptional:!0},taxResidenceCountry:{type:e.String_unsecure(),isOptional:!0},clientType:{type:e.String_unsecure(),isOptional:!0}}}),p=t({name:"RegulatoryContext",description:"Explicit regulatory context (no guessing).",fields:{jurisdiction:{type:e.String_unsecure(),isOptional:!1},region:{type:e.String_unsecure(),isOptional:!0},clientType:{type:e.String_unsecure(),isOptional:!0},allowedScope:{type:i,isOptional:!1}}}),n=t({name:"LLMCallEnvelope",description:"Mandatory envelope for assistant calls. All fields are explicit and required for policy gating.",fields:{traceId:{type:e.String_unsecure(),isOptional:!1},locale:{type:e.String_unsecure(),isOptional:!1},regulatoryContext:{type:p,isOptional:!1},kbSnapshotId:{type:e.String_unsecure(),isOptional:!1},allowedScope:{type:i,isOptional:!1}}}),u=t({name:"AssistantCitation",description:"Citation referencing a KB snapshot + a specific item within it.",fields:{kbSnapshotId:{type:e.String_unsecure(),isOptional:!1},sourceType:{type:e.String_unsecure(),isOptional:!1},sourceId:{type:e.String_unsecure(),isOptional:!1},title:{type:e.String_unsecure(),isOptional:!0},excerpt:{type:e.String_unsecure(),isOptional:!0}}}),c=t({name:"AssistantAnswerSection",description:"Structured answer section.",fields:{heading:{type:e.String_unsecure(),isOptional:!1},body:{type:e.String_unsecure(),isOptional:!1}}}),r=t({name:"AssistantAnswerIR",description:"Structured assistant answer with mandatory citations and explicit locale/jurisdiction.",fields:{locale:{type:e.String_unsecure(),isOptional:!1},jurisdiction:{type:e.String_unsecure(),isOptional:!1},allowedScope:{type:i,isOptional:!1},sections:{type:c,isArray:!0,isOptional:!1},citations:{type:u,isArray:!0,isOptional:!1},disclaimers:{type:e.String_unsecure(),isArray:!0,isOptional:!0},riskFlags:{type:e.String_unsecure(),isArray:!0,isOptional:!0},refused:{type:e.Boolean(),isOptional:!0},refusalReason:{type:e.String_unsecure(),isOptional:!0}}});import{defineCommand as s}from"@contractspec/lib.contracts-spec";import{defineSchemaModel as o,ScalarTypeEnum as a}from"@contractspec/lib.schema";var y=o({name:"AssistantQuestionInput",description:"Input for assistant calls with mandatory envelope.",fields:{envelope:{type:n,isOptional:!1},question:{type:a.String_unsecure(),isOptional:!1}}}),d=o({name:"AssistantConceptInput",description:"Input for explaining a concept with mandatory envelope.",fields:{envelope:{type:n,isOptional:!1},conceptKey:{type:a.String_unsecure(),isOptional:!1}}}),g=s({meta:{key:"assistant.answer",version:"1.0.0",stability:"experimental",owners:["@examples"],tags:["assistant","policy","locale","jurisdiction","knowledge"],description:"Answer a user question using a KB snapshot with strict locale/jurisdiction gating.",goal:"Provide policy-safe answers that cite a KB snapshot or refuse.",context:"Called by UI or workflows; must fail-closed if envelope is invalid or citations are missing."},io:{input:y,output:r,errors:{LOCALE_REQUIRED:{description:"Locale is required and must be supported",http:400,gqlCode:"LOCALE_REQUIRED",when:"locale is missing or unsupported"},JURISDICTION_REQUIRED:{description:"Jurisdiction is required",http:400,gqlCode:"JURISDICTION_REQUIRED",when:"jurisdiction is missing"},KB_SNAPSHOT_REQUIRED:{description:"KB snapshot id is required",http:400,gqlCode:"KB_SNAPSHOT_REQUIRED",when:"kbSnapshotId is missing"},CITATIONS_REQUIRED:{description:"Answers must include citations to a KB snapshot",http:422,gqlCode:"CITATIONS_REQUIRED",when:"answer has no citations"},SCOPE_VIOLATION:{description:"Answer violates allowed scope and must be refused/escalated",http:403,gqlCode:"SCOPE_VIOLATION",when:"output includes forbidden content under the given allowedScope"}}},policy:{auth:"user"}}),A=s({meta:{key:"assistant.explainConcept",version:"1.0.0",stability:"experimental",owners:["@examples"],tags:["assistant","policy","knowledge","concepts"],description:"Explain a concept using a KB snapshot with strict locale/jurisdiction gating.",goal:"Explain concepts with citations or refuse.",context:"Same constraints as assistant.answer."},io:{input:d,output:r,errors:g.io.errors},policy:{auth:"user"}});export{A as AssistantExplainConceptContract,g as AssistantAnswerContract};

package/dist/browser/policy/assistant-gate.policy.js

@@ -1,62 +1 @@
-// src/policy/assistant-gate.policy.ts
-import {
-  OwnersEnum,
-  StabilityEnum,
-  TagsEnum
-} from "@contractspec/lib.contracts-spec/ownership";
-import { definePolicy } from "@contractspec/lib.contracts-spec/policy";
-var AssistantGatePolicy = definePolicy({
-  meta: {
-    key: "locale-jurisdiction-gate.policy.gate",
-    version: "1.0.0",
-    title: "Assistant Locale and Jurisdiction Gate",
-    description: "Requires explicit locale, jurisdiction, knowledge snapshot, and allowed scope before assistant requests may proceed.",
-    domain: "assistant",
-    scope: "operation",
-    owners: [OwnersEnum.PlatformFinance],
-    tags: [TagsEnum.I18n, "assistant", "policy", "jurisdiction"],
-    stability: StabilityEnum.Experimental
-  },
-  rules: [
-    {
-      effect: "deny",
-      actions: ["assistant.answer", "assistant.explainConcept"],
-      resource: { type: "assistant-call" },
-      conditions: [
-        {
-          expression: "!context.locale || !context.jurisdiction || !context.kbSnapshotId || !context.allowedScope"
-        }
-      ],
-      reason: "Assistant requests fail closed until locale, jurisdiction, kbSnapshotId, and allowedScope are explicit."
-    },
-    {
-      effect: "deny",
-      actions: ["assistant.answer", "assistant.explainConcept"],
-      resource: { type: "assistant-call" },
-      conditions: [
-        {
-          expression: "!['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '')"
-        }
-      ],
-      reason: "Only the explicitly reviewed assistant locales are permitted."
-    },
-    {
-      effect: "allow",
-      actions: ["assistant.answer", "assistant.explainConcept"],
-      resource: { type: "assistant-call" },
-      conditions: [
-        {
-          expression: "['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '') && !!context.jurisdiction && !!context.kbSnapshotId && !!context.allowedScope"
-        }
-      ],
-      reason: "Explicit context is present, so the request may continue to citation and scope validation."
-    }
-  ],
-  pii: {
-    fields: ["kbSnapshotId"],
-    retentionDays: 30
-  }
-});
-export {
-  AssistantGatePolicy
-};
+import{OwnersEnum as h,StabilityEnum as j,TagsEnum as k}from"@contractspec/lib.contracts-spec/ownership";import{definePolicy as q}from"@contractspec/lib.contracts-spec/policy";var z=q({meta:{key:"locale-jurisdiction-gate.policy.gate",version:"1.0.0",title:"Assistant Locale and Jurisdiction Gate",description:"Requires explicit locale, jurisdiction, knowledge snapshot, and allowed scope before assistant requests may proceed.",domain:"assistant",scope:"operation",owners:[h.PlatformFinance],tags:[k.I18n,"assistant","policy","jurisdiction"],stability:j.Experimental},rules:[{effect:"deny",actions:["assistant.answer","assistant.explainConcept"],resource:{type:"assistant-call"},conditions:[{expression:"!context.locale || !context.jurisdiction || !context.kbSnapshotId || !context.allowedScope"}],reason:"Assistant requests fail closed until locale, jurisdiction, kbSnapshotId, and allowedScope are explicit."},{effect:"deny",actions:["assistant.answer","assistant.explainConcept"],resource:{type:"assistant-call"},conditions:[{expression:"!['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '')"}],reason:"Only the explicitly reviewed assistant locales are permitted."},{effect:"allow",actions:["assistant.answer","assistant.explainConcept"],resource:{type:"assistant-call"},conditions:[{expression:"['en-US', 'en-GB', 'fr-FR'].includes(context.locale ?? '') && !!context.jurisdiction && !!context.kbSnapshotId && !!context.allowedScope"}],reason:"Explicit context is present, so the request may continue to citation and scope validation."}],pii:{fields:["kbSnapshotId"],retentionDays:30}});export{z as AssistantGatePolicy};

package/dist/browser/policy/guard.js

@@ -1,73 +1,2 @@
-// src/policy/guard.ts
-var SUPPORTED_LOCALES = new Set(["en-US", "en-GB", "fr-FR"]);
-function err(code, message) {
-  return { code, message };
-}
-function validateEnvelope(envelope) {
-  if (!envelope.locale || !SUPPORTED_LOCALES.has(envelope.locale)) {
-    return {
-      ok: false,
-      error: err("LOCALE_REQUIRED", "locale is required and must be supported")
-    };
-  }
-  if (!envelope.regulatoryContext?.jurisdiction) {
-    return {
-      ok: false,
-      error: err("JURISDICTION_REQUIRED", "jurisdiction is required")
-    };
-  }
-  if (!envelope.kbSnapshotId) {
-    return {
-      ok: false,
-      error: err("KB_SNAPSHOT_REQUIRED", "kbSnapshotId is required")
-    };
-  }
-  if (!envelope.allowedScope) {
-    return {
-      ok: false,
-      error: err("SCOPE_VIOLATION", "allowedScope is required")
-    };
-  }
-  return { ok: true, value: envelope };
-}
-function enforceCitations(answer) {
-  const citations = answer.citations ?? [];
-  if (!Array.isArray(citations) || citations.length === 0) {
-    return {
-      ok: false,
-      error: err("CITATIONS_REQUIRED", "answers must include at least one citation")
-    };
-  }
-  return { ok: true, value: answer };
-}
-var EDUCATION_ONLY_FORBIDDEN_PATTERNS = [
-  /\b(buy|sell)\b/i,
-  /\b(should\s+buy|should\s+sell)\b/i,
-  /\b(guarantee(d)?|promise(d)?)\b/i
-];
-function enforceAllowedScope(allowedScope, answer) {
-  if (!allowedScope) {
-    return {
-      ok: false,
-      error: err("SCOPE_VIOLATION", "allowedScope is required")
-    };
-  }
-  if (allowedScope !== "education_only") {
-    return { ok: true, value: answer };
-  }
-  const bodies = (answer.sections ?? []).map((s) => s.body).join(`
-`);
-  const violations = EDUCATION_ONLY_FORBIDDEN_PATTERNS.some((re) => re.test(bodies));
-  if (violations) {
-    return {
-      ok: false,
-      error: err("SCOPE_VIOLATION", "answer violates education_only scope (contains actionable or promotional language)")
-    };
-  }
-  return { ok: true, value: answer };
-}
-export {
-  validateEnvelope,
-  enforceCitations,
-  enforceAllowedScope
-};
+var u=new Set(["en-US","en-GB","fr-FR"]);function j(f,h){return{code:f,message:h}}function z(f){if(!f.locale||!u.has(f.locale))return{ok:!1,error:j("LOCALE_REQUIRED","locale is required and must be supported")};if(!f.regulatoryContext?.jurisdiction)return{ok:!1,error:j("JURISDICTION_REQUIRED","jurisdiction is required")};if(!f.kbSnapshotId)return{ok:!1,error:j("KB_SNAPSHOT_REQUIRED","kbSnapshotId is required")};if(!f.allowedScope)return{ok:!1,error:j("SCOPE_VIOLATION","allowedScope is required")};return{ok:!0,value:f}}function G(f){let h=f.citations??[];if(!Array.isArray(h)||h.length===0)return{ok:!1,error:j("CITATIONS_REQUIRED","answers must include at least one citation")};return{ok:!0,value:f}}var x=[/\b(buy|sell)\b/i,/\b(should\s+buy|should\s+sell)\b/i,/\b(guarantee(d)?|promise(d)?)\b/i];function H(f,h){if(!f)return{ok:!1,error:j("SCOPE_VIOLATION","allowedScope is required")};if(f!=="education_only")return{ok:!0,value:h};let q=(h.sections??[]).map((k)=>k.body).join(`
+`);if(x.some((k)=>k.test(q)))return{ok:!1,error:j("SCOPE_VIOLATION","answer violates education_only scope (contains actionable or promotional language)")};return{ok:!0,value:h}}export{z as validateEnvelope,G as enforceCitations,H as enforceAllowedScope};