npm - @countersign/sdk - Versions diffs - 0.1.0 - Mend

@countersign/sdk 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/LICENSE ADDED Viewed

@@ -0,0 +1,20 @@
+Copyright (c) 2026 Simon Crean. All rights reserved.
+This software and its source code (the "Software") are proprietary and
+confidential. No license, right, or permission is granted to use, copy, modify,
+merge, publish, distribute, sublicense, or sell copies of the Software, in whole
+or in part, except with the prior written permission of the copyright holder.
+Unauthorized copying, distribution, or use of the Software is strictly prohibited.
+NOTE (intent): Countersign follows an open-core direction. Specific "front door"
+components — the EnforcementProvider interface, the API contract, the SDK, and
+the MCP server (packages: core interface, api-contract, sdk, mcp) — are expected
+to be re-licensed under a permissive open-source license (e.g. MIT/Apache-2.0) to
+drive adoption, while the control-plane "brain" (policy compiler, ledger, anomaly
+engine, hosted Core) remains proprietary. Until that re-licensing is explicitly
+published, all rights are reserved.
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED. IT IS A TESTNET-ONLY PROOF AND HAS NOT BEEN SECURITY-AUDITED. DO NOT USE
+WITH MAINNET FUNDS OR IN PRODUCTION CUSTODY OF REAL ASSETS.

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1,115 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  CountersignApiError: () => CountersignApiError,
+  CountersignClient: () => CountersignClient
+});
+module.exports = __toCommonJS(index_exports);
+var import_api_contract = require("@countersign/api-contract");
+var CountersignApiError = class extends Error {
+  constructor(status, body) {
+    super(`Countersign API ${status}: ${body}`);
+    this.status = status;
+    this.body = body;
+    this.name = "CountersignApiError";
+  }
+  status;
+  body;
+};
+var CountersignClient = class {
+  baseUrl;
+  doFetch;
+  constructor(opts) {
+    this.baseUrl = opts.baseUrl.replace(/\/$/, "");
+    this.doFetch = opts.fetch ?? fetch;
+  }
+  /** Liveness + per-backend health. */
+  health() {
+    return this.request("GET", "/health");
+  }
+  /** Every provisioned agent across all backends. */
+  agents() {
+    return this.request("GET", "/agents");
+  }
+  /** Compile + apply one unified policy across backends (fail-closed). */
+  applyPolicy(req) {
+    return this.request("POST", "/policy", req);
+  }
+  /** The kill switch — freeze every agent on every backend. */
+  freeze(req = {}) {
+    return this.request("POST", "/freeze", req);
+  }
+  /** Pre-flight guard: ask Countersign whether a spend is allowed BEFORE touching the wallet. */
+  evaluate(req) {
+    return this.request("POST", "/evaluate", req);
+  }
+  /** Spends currently held pending human approval. */
+  approvals() {
+    return this.request("GET", "/approvals");
+  }
+  /** Approve a pending spend (rejected if the system is frozen — fail-closed). */
+  approve(req) {
+    return this.request("POST", "/approve", req);
+  }
+  /** Deny a pending spend. */
+  deny(req) {
+    return this.request("POST", "/deny", req);
+  }
+  /** Lift a freeze (replay / recover). */
+  unfreeze() {
+    return this.request("POST", "/unfreeze", {});
+  }
+  /** The append-only, hash-chained ledger, re-verified at read time. */
+  ledger() {
+    return this.request("GET", "/ledger");
+  }
+  /**
+   * Subscribe to the live event stream (ledger appends, freeze reports). Returns an unsubscribe
+   * function. Uses the global WebSocket — available in browsers and Node 22+.
+   */
+  subscribe(onMessage) {
+    const url = this.baseUrl.replace(/^http/, "ws") + import_api_contract.WS_PATH;
+    const ws = new WebSocket(url);
+    ws.addEventListener("message", (ev) => {
+      try {
+        onMessage(JSON.parse(String(ev.data)));
+      } catch {
+      }
+    });
+    return () => ws.close();
+  }
+  async request(method, path, body) {
+    const init = { method };
+    if (body !== void 0) {
+      init.headers = { "content-type": "application/json" };
+      init.body = JSON.stringify(body);
+    }
+    const res = await this.doFetch(this.baseUrl + path, init);
+    if (!res.ok) throw new CountersignApiError(res.status, await res.text());
+    return await res.json();
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  CountersignApiError,
+  CountersignClient
+});

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,61 @@
+import { CountersignApi, HealthResponse, AgentsResponse, ApplyPolicyRequest, ApplyPolicyResult, FreezeRequest, FreezeResponse, EvaluateRequest, EvaluateResponse, ApprovalsResponse, ApproveRequest, ApprovalResolution, DenyRequest, LedgerResponse, WsServerMessage } from '@countersign/api-contract';
+export { AgentDTO, AgentsResponse, ApplyPolicyRequest, ApplyPolicyResult, ApprovalResolution, ApprovalsResponse, ApproveRequest, CountersignApi, DenyRequest, EvaluateRequest, EvaluateResponse, FreezeRequest, FreezeResponse, HealthResponse, LedgerRecordDTO, LedgerResponse, PendingApprovalDTO, ProviderHealth, WsServerMessage } from '@countersign/api-contract';
+/**
+ * @countersign/sdk — the front door (roadmap Tier 0 #4). A tiny typed client over the Core API so an
+ * agent operator wires Countersign in trivially. Works in Node (22+) and the browser — uses only global
+ * fetch + WebSocket, no dependencies beyond the shared contract. The Flutter/Dart client is
+ * generated from the same api-contract; this is its TypeScript twin.
+ *
+ *   const countersign = new CountersignClient({ baseUrl: "http://localhost:8080" });
+ *   await countersign.applyPolicy({ policy });           // compile + apply across every backend
+ *   const stop = countersign.subscribe((m) => ...);       // live ledger stream
+ *   await countersign.freeze({ reason: "kill switch" });   // one call, every vendor, < 1s
+ */
+declare class CountersignApiError extends Error {
+    readonly status: number;
+    readonly body: string;
+    constructor(status: number, body: string);
+}
+interface CountersignClientOptions {
+    baseUrl: string;
+    /** Override fetch (tests / non-global environments). Defaults to the global fetch. */
+    fetch?: typeof fetch;
+}
+declare class CountersignClient implements CountersignApi {
+    private readonly baseUrl;
+    private readonly doFetch;
+    constructor(opts: CountersignClientOptions);
+    /** Liveness + per-backend health. */
+    health(): Promise<HealthResponse>;
+    /** Every provisioned agent across all backends. */
+    agents(): Promise<AgentsResponse>;
+    /** Compile + apply one unified policy across backends (fail-closed). */
+    applyPolicy(req: ApplyPolicyRequest): Promise<ApplyPolicyResult>;
+    /** The kill switch — freeze every agent on every backend. */
+    freeze(req?: FreezeRequest): Promise<FreezeResponse>;
+    /** Pre-flight guard: ask Countersign whether a spend is allowed BEFORE touching the wallet. */
+    evaluate(req: EvaluateRequest): Promise<EvaluateResponse>;
+    /** Spends currently held pending human approval. */
+    approvals(): Promise<ApprovalsResponse>;
+    /** Approve a pending spend (rejected if the system is frozen — fail-closed). */
+    approve(req: ApproveRequest): Promise<ApprovalResolution>;
+    /** Deny a pending spend. */
+    deny(req: DenyRequest): Promise<ApprovalResolution>;
+    /** Lift a freeze (replay / recover). */
+    unfreeze(): Promise<{
+        ok: boolean;
+    }>;
+    /** The append-only, hash-chained ledger, re-verified at read time. */
+    ledger(): Promise<LedgerResponse>;
+    /**
+     * Subscribe to the live event stream (ledger appends, freeze reports). Returns an unsubscribe
+     * function. Uses the global WebSocket — available in browsers and Node 22+.
+     */
+    subscribe(onMessage: (message: WsServerMessage) => void): () => void;
+    private request;
+}
+export { CountersignApiError, CountersignClient };
+export type { CountersignClientOptions };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,91 @@
+// src/index.ts
+import {
+  WS_PATH
+} from "@countersign/api-contract";
+var CountersignApiError = class extends Error {
+  constructor(status, body) {
+    super(`Countersign API ${status}: ${body}`);
+    this.status = status;
+    this.body = body;
+    this.name = "CountersignApiError";
+  }
+  status;
+  body;
+};
+var CountersignClient = class {
+  baseUrl;
+  doFetch;
+  constructor(opts) {
+    this.baseUrl = opts.baseUrl.replace(/\/$/, "");
+    this.doFetch = opts.fetch ?? fetch;
+  }
+  /** Liveness + per-backend health. */
+  health() {
+    return this.request("GET", "/health");
+  }
+  /** Every provisioned agent across all backends. */
+  agents() {
+    return this.request("GET", "/agents");
+  }
+  /** Compile + apply one unified policy across backends (fail-closed). */
+  applyPolicy(req) {
+    return this.request("POST", "/policy", req);
+  }
+  /** The kill switch — freeze every agent on every backend. */
+  freeze(req = {}) {
+    return this.request("POST", "/freeze", req);
+  }
+  /** Pre-flight guard: ask Countersign whether a spend is allowed BEFORE touching the wallet. */
+  evaluate(req) {
+    return this.request("POST", "/evaluate", req);
+  }
+  /** Spends currently held pending human approval. */
+  approvals() {
+    return this.request("GET", "/approvals");
+  }
+  /** Approve a pending spend (rejected if the system is frozen — fail-closed). */
+  approve(req) {
+    return this.request("POST", "/approve", req);
+  }
+  /** Deny a pending spend. */
+  deny(req) {
+    return this.request("POST", "/deny", req);
+  }
+  /** Lift a freeze (replay / recover). */
+  unfreeze() {
+    return this.request("POST", "/unfreeze", {});
+  }
+  /** The append-only, hash-chained ledger, re-verified at read time. */
+  ledger() {
+    return this.request("GET", "/ledger");
+  }
+  /**
+   * Subscribe to the live event stream (ledger appends, freeze reports). Returns an unsubscribe
+   * function. Uses the global WebSocket — available in browsers and Node 22+.
+   */
+  subscribe(onMessage) {
+    const url = this.baseUrl.replace(/^http/, "ws") + WS_PATH;
+    const ws = new WebSocket(url);
+    ws.addEventListener("message", (ev) => {
+      try {
+        onMessage(JSON.parse(String(ev.data)));
+      } catch {
+      }
+    });
+    return () => ws.close();
+  }
+  async request(method, path, body) {
+    const init = { method };
+    if (body !== void 0) {
+      init.headers = { "content-type": "application/json" };
+      init.body = JSON.stringify(body);
+    }
+    const res = await this.doFetch(this.baseUrl + path, init);
+    if (!res.ok) throw new CountersignApiError(res.status, await res.text());
+    return await res.json();
+  }
+};
+export {
+  CountersignApiError,
+  CountersignClient
+};

package/package.json ADDED Viewed

@@ -0,0 +1,50 @@
+{
+  "name": "@countersign/sdk",
+  "version": "0.1.0",
+  "description": "Countersign SDK — the typed client agents and operators use to wire in the cross-vendor freeze, spend-guard, and live audit ledger. Browser + Node.",
+  "license": "Apache-2.0",
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/countersign-network/countersign.git",
+    "directory": "packages/sdk"
+  },
+  "homepage": "https://countersign.network",
+  "keywords": [
+    "countersign",
+    "ai-agents",
+    "agent-payments",
+    "sdk",
+    "kill-switch",
+    "x402"
+  ],
+  "dependencies": {
+    "@countersign/api-contract": "^0.1.0"
+  },
+  "devDependencies": {
+    "tsup": "^8.5.1",
+    "@countersign/core": "0.0.0",
+    "@countersign/api": "0.0.0",
+    "@countersign/policy": "0.0.0",
+    "@countersign/provider-mock": "0.0.0"
+  },
+  "scripts": {
+    "build": "tsc -p ../../tsconfig.dts.json && tsup && rollup -c rollup.dts.config.mjs"
+  },
+  "module": "./dist/index.js"
+}