@datafog/fogclaw 0.1.4 → 0.1.6

package/dist/scanner.js

@@ -1,17 +1,30 @@
+import { canonicalType } from "./types.js";
 import { RegexEngine } from "./engines/regex.js";
 import { GlinerEngine } from "./engines/gliner.js";
+function normalizeAllowlistValue(value) {
+    return value.trim().toLowerCase();
+}
+function buildPatternMaps(value) {
+    if (!value || value.length === 0) {
+        return [];
+    }
+    return value.map((pattern) => new RegExp(pattern, "i"));
+}
 export class Scanner {
     regexEngine;
     glinerEngine;
     glinerAvailable = false;
     config;
+    allowlist;
     constructor(config) {
         this.config = config;
         this.regexEngine = new RegexEngine();
-        this.glinerEngine = new GlinerEngine(config.model, config.confidence_threshold);
+        const glinerThreshold = this.computeGlinerThreshold(config);
+        this.glinerEngine = new GlinerEngine(config.model, glinerThreshold);
         if (config.custom_entities.length > 0) {
             this.glinerEngine.setCustomLabels(config.custom_entities);
         }
+        this.allowlist = this.buildAllowlistCache(config.allowlist);
     }
     async initialize() {
         try {
@@ -27,12 +40,14 @@ export class Scanner {
         if (!text)
             return { entities: [], text };
         // Step 1: Regex pass (always runs, synchronous)
-        const regexEntities = this.regexEngine.scan(text);
+        const regexEntities = this.filterByPolicy(this.regexEngine.scan(text));
         // Step 2: GLiNER pass (if available)
         let glinerEntities = [];
         if (this.glinerAvailable) {
             try {
                 glinerEntities = await this.glinerEngine.scan(text, extraLabels);
+                glinerEntities = this.filterByConfidence(glinerEntities);
+                glinerEntities = this.filterByPolicy(glinerEntities);
             }
             catch (err) {
                 console.warn(`[fogclaw] GLiNER scan failed, using regex results only: ${err instanceof Error ? err.message : String(err)}`);
@@ -42,6 +57,65 @@ export class Scanner {
         const merged = deduplicateEntities([...regexEntities, ...glinerEntities]);
         return { entities: merged, text };
     }
+    filterByConfidence(entities) {
+        return entities.filter((entity) => {
+            const threshold = this.getThresholdForLabel(entity.label);
+            return entity.confidence >= threshold;
+        });
+    }
+    filterByPolicy(entities) {
+        if (this.allowlist.values.size === 0 &&
+            this.allowlist.patterns.length === 0 &&
+            this.allowlist.entityValues.size === 0) {
+            return entities;
+        }
+        return entities.filter((entity) => !this.shouldAllowlistEntity(entity));
+    }
+    shouldAllowlistEntity(entity) {
+        const normalizedText = normalizeAllowlistValue(entity.text);
+        if (this.allowlist.values.has(normalizedText)) {
+            return true;
+        }
+        if (this.allowlist.patterns.some((pattern) => pattern.test(entity.text))) {
+            return true;
+        }
+        const entityValues = this.allowlist.entityValues.get(entity.label);
+        if (entityValues && entityValues.has(normalizedText)) {
+            return true;
+        }
+        return false;
+    }
+    getThresholdForLabel(label) {
+        const canonicalLabel = canonicalType(label);
+        return this.config.entityConfidenceThresholds[canonicalLabel] ?? this.config.confidence_threshold;
+    }
+    computeGlinerThreshold(config) {
+        const thresholds = Object.values(config.entityConfidenceThresholds);
+        if (thresholds.length === 0) {
+            return config.confidence_threshold;
+        }
+        return Math.min(config.confidence_threshold, ...thresholds);
+    }
+    buildAllowlistCache(allowlist) {
+        const globalValues = new Set(allowlist.values.map((value) => normalizeAllowlistValue(value)));
+        const globalPatterns = buildPatternMaps(allowlist.patterns);
+        const entityValues = new Map();
+        for (const [entityType, values] of Object.entries(allowlist.entities)) {
+            const canonical = canonicalType(entityType);
+            const uniqueValues = values
+                .map((value) => normalizeAllowlistValue(value))
+                .filter((value) => value.length > 0);
+            entityValues.set(canonical, new Set(uniqueValues));
+        }
+        return {
+            values: globalValues,
+            patterns: globalPatterns,
+            entityValues,
+        };
+    }
+    get isGlinerAvailable() {
+        return this.glinerAvailable;
+    }
 }
 /**
  * Remove overlapping entity spans. When two entities overlap,

package/dist/scanner.js.map

@@ -1 +1 @@
-{"version":3,"file":"scanner.js","sourceRoot":"","sources":["../src/scanner.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,MAAM,OAAO,OAAO;IACV,WAAW,CAAc;IACzB,YAAY,CAAe;IAC3B,eAAe,GAAG,KAAK,CAAC;IACxB,MAAM,CAAgB;IAE9B,YAAY,MAAqB;QAC/B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,WAAW,GAAG,IAAI,WAAW,EAAE,CAAC;QACrC,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,CAClC,MAAM,CAAC,KAAK,EACZ,MAAM,CAAC,oBAAoB,CAC5B,CAAC;QACF,IAAI,MAAM,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtC,IAAI,CAAC,YAAY,CAAC,eAAe,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QAC5D,CAAC;IACH,CAAC;IAED,KAAK,CAAC,UAAU;QACd,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,YAAY,CAAC,UAAU,EAAE,CAAC;YACrC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;QAC9B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CACV,2EAA2E,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC9H,CAAC;YACF,IAAI,CAAC,eAAe,GAAG,KAAK,CAAC;QAC/B,CAAC;IACH,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,IAAY,EAAE,WAAsB;QAC7C,IAAI,CAAC,IAAI;YAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;QAEzC,gDAAgD;QAChD,MAAM,aAAa,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAElD,qCAAqC;QACrC,IAAI,cAAc,GAAa,EAAE,CAAC;QAClC,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,cAAc,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC;YACnE,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,IAAI,CAAC,2DAA2D,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAC9H,CAAC;QACH,CAAC;QAED,gCAAgC;QAChC,MAAM,MAAM,GAAG,mBAAmB,CAAC,CAAC,GAAG,aAAa,EAAE,GAAG,cAAc,CAAC,CAAC,CAAC;QAE1E,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;IACpC,CAAC;CACF;AAED;;;GAGG;AACH,SAAS,mBAAmB,CAAC,QAAkB;IAC7C,IAAI,QAAQ,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,QAAQ,CAAC;IAE1C,wDAAwD;IACxD,MAAM,MAAM,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACzC,IAAI,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK;YAAE,OAAO,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;QAClD,OAAO,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,UAAU,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAa,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAErC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACvC,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAC1B,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAEvC,oBAAoB;QACpB,IAAI,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC7B,mEAAmE;YACnE,IAAI,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;gBACzC,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,OAAO,CAAC;YACtC,CAAC;YACD,0CAA0C;QAC5C,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}
+{"version":3,"file":"scanner.js","sourceRoot":"","sources":["../src/scanner.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAC3C,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAQnD,SAAS,uBAAuB,CAAC,KAAa;IAC5C,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;AACpC,CAAC;AAED,SAAS,gBAAgB,CAAC,KAA2B;IACnD,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACjC,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,IAAI,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC;AAC1D,CAAC;AAED,MAAM,OAAO,OAAO;IACV,WAAW,CAAc;IACzB,YAAY,CAAe;IAC3B,eAAe,GAAG,KAAK,CAAC;IACxB,MAAM,CAAgB;IACtB,SAAS,CAAwB;IAEzC,YAAY,MAAqB;QAC/B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,WAAW,GAAG,IAAI,WAAW,EAAE,CAAC;QAErC,MAAM,eAAe,GAAG,IAAI,CAAC,sBAAsB,CAAC,MAAM,CAAC,CAAC;QAC5D,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,CAAC,MAAM,CAAC,KAAK,EAAE,eAAe,CAAC,CAAC;QACpE,IAAI,MAAM,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtC,IAAI,CAAC,YAAY,CAAC,eAAe,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QAC5D,CAAC;QAED,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IAC9D,CAAC;IAED,KAAK,CAAC,UAAU;QACd,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,YAAY,CAAC,UAAU,EAAE,CAAC;YACrC,IAAI,CAAC,eAAe,GAAG,IAAI,CAAC;QAC9B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CACV,2EAA2E,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC9H,CAAC;YACF,IAAI,CAAC,eAAe,GAAG,KAAK,CAAC;QAC/B,CAAC;IACH,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,IAAY,EAAE,WAAsB;QAC7C,IAAI,CAAC,IAAI;YAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;QAEzC,gDAAgD;QAChD,MAAM,aAAa,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAEvE,qCAAqC;QACrC,IAAI,cAAc,GAAa,EAAE,CAAC;QAClC,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,IAAI,CAAC;gBACH,cAAc,GAAG,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC;gBACjE,cAAc,GAAG,IAAI,CAAC,kBAAkB,CAAC,cAAc,CAAC,CAAC;gBACzD,cAAc,GAAG,IAAI,CAAC,cAAc,CAAC,cAAc,CAAC,CAAC;YACvD,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,IAAI,CACV,2DACE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CACjD,EAAE,CACH,CAAC;YACJ,CAAC;QACH,CAAC;QAED,gCAAgC;QAChC,MAAM,MAAM,GAAG,mBAAmB,CAAC,CAAC,GAAG,aAAa,EAAE,GAAG,cAAc,CAAC,CAAC,CAAC;QAE1E,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;IACpC,CAAC;IAEO,kBAAkB,CAAC,QAAkB;QAC3C,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,EAAE;YAChC,MAAM,SAAS,GAAG,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC1D,OAAO,MAAM,CAAC,UAAU,IAAI,SAAS,CAAC;QACxC,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,cAAc,CAAC,QAAkB;QACvC,IACE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC;YAChC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC;YACpC,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,IAAI,KAAK,CAAC,EACtC,CAAC;YACD,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,CAAC,CAAC;IAC1E,CAAC;IAEO,qBAAqB,CAAC,MAAc;QAC1C,MAAM,cAAc,GAAG,uBAAuB,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAE5D,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;YAC9C,OAAO,IAAI,CAAC;QACd,CAAC;QAED,IAAI,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC;YACzE,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,YAAY,GAAG,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACnE,IAAI,YAAY,IAAI,YAAY,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,CAAC;YACrD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,oBAAoB,CAAC,KAAa;QACxC,MAAM,cAAc,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC;QAC5C,OAAO,IAAI,CAAC,MAAM,CAAC,0BAA0B,CAAC,cAAc,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,oBAAoB,CAAC;IACpG,CAAC;IAEO,sBAAsB,CAAC,MAAqB;QAClD,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,0BAA0B,CAAC,CAAC;QACpE,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC5B,OAAO,MAAM,CAAC,oBAAoB,CAAC;QACrC,CAAC;QAED,OAAO,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,oBAAoB,EAAE,GAAG,UAAU,CAAC,CAAC;IAC9D,CAAC;IAEO,mBAAmB,CAAC,SAAqC;QAC/D,MAAM,YAAY,GAAG,IAAI,GAAG,CAC1B,SAAS,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,uBAAuB,CAAC,KAAK,CAAC,CAAC,CAChE,CAAC;QAEF,MAAM,cAAc,GAAG,gBAAgB,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QAE5D,MAAM,YAAY,GAAG,IAAI,GAAG,EAAuB,CAAC;QACpD,KAAK,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,CAAC;YACtE,MAAM,SAAS,GAAG,aAAa,CAAC,UAAU,CAAC,CAAC;YAC5C,MAAM,YAAY,GAAG,MAAM;iBACxB,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,uBAAuB,CAAC,KAAK,CAAC,CAAC;iBAC9C,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YACvC,YAAY,CAAC,GAAG,CAAC,SAAS,EAAE,IAAI,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC;QACrD,CAAC;QAED,OAAO;YACL,MAAM,EAAE,YAAY;YACpB,QAAQ,EAAE,cAAc;YACxB,YAAY;SACb,CAAC;IACJ,CAAC;IAED,IAAI,iBAAiB;QACnB,OAAO,IAAI,CAAC,eAAe,CAAC;IAC9B,CAAC;CACF;AAED;;;GAGG;AACH,SAAS,mBAAmB,CAAC,QAAkB;IAC7C,IAAI,QAAQ,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,QAAQ,CAAC;IAE1C,wDAAwD;IACxD,MAAM,MAAM,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACzC,IAAI,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK;YAAE,OAAO,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;QAClD,OAAO,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,UAAU,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,MAAM,MAAM,GAAa,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;IAErC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACvC,MAAM,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QAC1B,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAEvC,oBAAoB;QACpB,IAAI,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC7B,mEAAmE;YACnE,IAAI,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;gBACzC,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,OAAO,CAAC;YACtC,CAAC;YACD,0CAA0C;QAC5C,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/types.d.ts

@@ -8,6 +8,14 @@ export interface Entity {
 }
 export type RedactStrategy = "token" | "mask" | "hash";
 export type GuardrailAction = "redact" | "block" | "warn";
+export interface EntityConfidenceThresholds {
+    [entityType: string]: number;
+}
+export interface EntityAllowlist {
+    values: string[];
+    patterns: string[];
+    entities: Record<string, string[]>;
+}
 export interface FogClawConfig {
     enabled: boolean;
     guardrail_mode: GuardrailAction;
@@ -16,6 +24,9 @@ export interface FogClawConfig {
     confidence_threshold: number;
     custom_entities: string[];
     entityActions: Record<string, GuardrailAction>;
+    entityConfidenceThresholds: EntityConfidenceThresholds;
+    allowlist: EntityAllowlist;
+    auditEnabled: boolean;
 }
 export interface ScanResult {
     entities: Entity[];
@@ -26,6 +37,11 @@ export interface RedactResult {
     mapping: Record<string, string>;
     entities: Entity[];
 }
+export interface GuardrailPlan {
+    blocked: Entity[];
+    warned: Entity[];
+    redacted: Entity[];
+}
 export declare const CANONICAL_TYPE_MAP: Record<string, string>;
 export declare function canonicalType(entityType: string): string;
 //# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,OAAO,GAAG,QAAQ,CAAC;CAC5B;AAED,MAAM,MAAM,cAAc,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;AAEvD,MAAM,MAAM,eAAe,GAAG,QAAQ,GAAG,OAAO,GAAG,MAAM,CAAC;AAE1D,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,OAAO,CAAC;IACjB,cAAc,EAAE,eAAe,CAAC;IAChC,cAAc,EAAE,cAAc,CAAC;IAC/B,KAAK,EAAE,MAAM,CAAC;IACd,oBAAoB,EAAE,MAAM,CAAC;IAC7B,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;CAChD;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,YAAY;IAC3B,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,eAAO,MAAM,kBAAkB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAYrD,CAAC;AAEF,wBAAgB,aAAa,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CAGxD"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,MAAM;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,OAAO,GAAG,QAAQ,CAAC;CAC5B;AAED,MAAM,MAAM,cAAc,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;AAEvD,MAAM,MAAM,eAAe,GAAG,QAAQ,GAAG,OAAO,GAAG,MAAM,CAAC;AAE1D,MAAM,WAAW,0BAA0B;IACzC,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CAAC;CAC9B;AAED,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;CACpC;AAED,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,OAAO,CAAC;IACjB,cAAc,EAAE,eAAe,CAAC;IAChC,cAAc,EAAE,cAAc,CAAC;IAC/B,KAAK,EAAE,MAAM,CAAC;IACd,oBAAoB,EAAE,MAAM,CAAC;IAC7B,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;IAC/C,0BAA0B,EAAE,0BAA0B,CAAC;IACvD,SAAS,EAAE,eAAe,CAAC;IAC3B,YAAY,EAAE,OAAO,CAAC;CACvB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,YAAY;IAC3B,aAAa,EAAE,MAAM,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,eAAO,MAAM,kBAAkB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAYrD,CAAC;AAEF,wBAAgB,aAAa,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM,CAGxD"}

package/dist/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAkCA,MAAM,CAAC,MAAM,kBAAkB,GAA2B;IACxD,GAAG,EAAE,MAAM;IACX,GAAG,EAAE,UAAU;IACf,GAAG,EAAE,QAAQ;IACb,GAAG,EAAE,cAAc;IACnB,GAAG,EAAE,UAAU;IACf,GAAG,EAAE,UAAU;IACf,GAAG,EAAE,SAAS;IACd,YAAY,EAAE,OAAO;IACrB,sBAAsB,EAAE,KAAK;IAC7B,kBAAkB,EAAE,aAAa;IACjC,aAAa,EAAE,MAAM;CACtB,CAAC;AAEF,MAAM,UAAU,aAAa,CAAC,UAAkB;IAC9C,MAAM,UAAU,GAAG,UAAU,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;IACnD,OAAO,kBAAkB,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC;AACtD,CAAC"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAqDA,MAAM,CAAC,MAAM,kBAAkB,GAA2B;IACxD,GAAG,EAAE,MAAM;IACX,GAAG,EAAE,UAAU;IACf,GAAG,EAAE,QAAQ;IACb,GAAG,EAAE,cAAc;IACnB,GAAG,EAAE,UAAU;IACf,GAAG,EAAE,UAAU;IACf,GAAG,EAAE,SAAS;IACd,YAAY,EAAE,OAAO;IACrB,sBAAsB,EAAE,KAAK;IAC7B,kBAAkB,EAAE,aAAa;IACjC,aAAa,EAAE,MAAM;CACtB,CAAC;AAEF,MAAM,UAAU,aAAa,CAAC,UAAkB;IAC9C,MAAM,UAAU,GAAG,UAAU,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;IACnD,OAAO,kBAAkB,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC;AACtD,CAAC"}

package/docs/plans/active/2026-02-17-feat-release-fogclaw-via-datafog-package-plan.md

@@ -25,11 +25,11 @@ Users should be able to install and use FogClaw today from a DataFog-owned names
 - [x] (2026-02-17T18:54:00Z) P3 [M1] Updated `package-lock` metadata and refreshed scope for build/release artifacts.
 - [x] (2026-02-17T18:55:00Z) P4 [M2] Re-ran build/test/smoke + `npm pack --json` + `npm publish --dry-run` validations.
 - [x] (2026-02-17T18:56:00Z) P5 [M2] Verified `openclaw plugins install` against the built `datafog-fogclaw-0.1.0.tgz` in a clean runtime; plugin now loads as `fogclaw` with status `loaded` and tools `fogclaw_scan, fogclaw_redact`.
-- [ ] (2026-02-17T20:33:00Z) P5 [M2] Verify `openclaw plugins install @datafog/fogclaw` resolves to published `0.1.4` (or later) when stale plugin state is cleared and npm 2FA is provided.
+- [x] (2026-02-17T20:33:00Z) P5 [M2] Verified `openclaw plugins install @datafog/fogclaw` resolves to published `0.1.4` in this runtime.
 - [x] (2026-02-17T19:27:00Z) P6 [M2] Fixed GLiNER startup blocker in Node by pinning `onnxruntime-web` to `1.21.0`, preventing `./webgpu` export resolution errors from `gliner` in OpenClaw install paths.
 - [x] (2026-02-17T19:34:00Z) P6 [M2] Added direct `sharp` dependency `0.34.5` with an override to prevent optional sharp native install failure (`sharp-darwin-arm64v8.node` missing) during OpenClaw install-time dependency bootstrap.
-- [ ] (2026-02-17T20:29:00Z) P6 [M3] Publish this startup hardening update under `@datafog/fogclaw@0.1.4` after npm publish/auth is completed.
-- [x] (2026-02-17T18:56:00Z) P6 [M3] Prepare and execute V1 publish/release of `@datafog/fogclaw` (attempt blocked by EOTP in this environment).
+- [x] (2026-02-17T20:29:00Z) P6 [M3] Published the startup hardening update as `@datafog/fogclaw@0.1.4` (OTP already provisioned) and confirmed package availability.
+- [x] (2026-02-17T18:56:00Z) P6 [M3] Prepare and execute V1 publish/release of `@datafog/fogclaw`.
 - [x] (2026-02-17T18:57:00Z) P7 [M3] Capture release artifacts and update evidence notes; add follow-up for dependency install blocker in OpenClaw install path.
 
 
@@ -47,13 +47,15 @@ Users should be able to install and use FogClaw today from a DataFog-owned names
 - Observation: The prior `TypeError: Cannot read properties of undefined (reading 'trim')` install failure was caused by OpenClaw's `registerTool` contract when tool objects omit a top-level `name`.
   Evidence: `src/plugins/registry.ts` in OpenClaw (`registerTool` maps `tool.name` without null-guard); fixed in this repository by adding `name` fields to both tool objects.
 
-- Observation: `openclaw plugins install @datafog/fogclaw` cannot be validated from npm in this environment yet (latest candidate `0.1.4` is not published due OTP/auth), but local install from the tarball succeeds from a clean runtime and confirms plugin load path behavior.
-  Evidence: `npm view @datafog/fogclaw@0.1.4` (404), followed by `openclaw plugins install ./datafog-fogclaw-0.1.4.tgz`, `openclaw plugins info fogclaw`.
+- Observation: `openclaw plugins install @datafog/fogclaw` now resolves and installs successfully from npm as version `0.1.4` in this environment.
+  Evidence: `npm view @datafog/fogclaw@0.1.4` returns `version = '0.1.4'` and `openclaw plugins install @datafog/fogclaw` reports success with plugin `fogclaw` loaded.
 
-- Observation: GLiNER startup now avoids the `onnxruntime-web/webgpu` exports failure by pinning `onnxruntime-web` to 1.21.0, which has a Node-compatible `./webgpu` export path in this runtime.
-  Evidence: local `import('onnxruntime-web/webgpu')` succeeds after dependency pin, and OpenClaw install logs no longer show the subpath exports error.
+- Observation: GLiNER startup now avoids the `onnxruntime-web/webgpu` exports failure after pinning `onnxruntime-web` to 1.21.0.
+  Evidence: in install flows, the earlier `./webgpu` subpath export error no longer blocks plugin registration in this environment.
 - Observation: optional sharp runtime failures are now mitigated in clean install flows by pinning direct `sharp` 0.34.5; this removes the previously recurrent `Cannot find module '../build/Release/sharp-darwin-arm64v8.node'` warning in OpenClaw plugin install logs.
-  Evidence: `openclaw plugins install` from `datafog-fogclaw-0.1.4.tgz` clean runtime no longer emits that missing binary warning.
+  Evidence: `openclaw plugins install` from `datafog-fogclaw-0.1.4` no longer emits that missing binary warning.
+- Observation: Running `pnpm openclaw` from the local OpenClaw source tree can still emit duplicate-plugin warnings when both the source-bundled `fogclaw` extension and installed `~/.openclaw/extensions/fogclaw` are present.
+  Evidence: this is due discovery order (`global` then `bundled`) and not a packaging defect in `@datafog/fogclaw` when installed in a standard global runtime.
 
 ## Decision Log
 
@@ -83,9 +85,9 @@ Users should be able to install and use FogClaw today from a DataFog-owned names
 - Local validation confirms namespace rename compiles and tests (`npm run build`, `npm run test`, `npm run test:plugin-smoke`) continue to pass.
 - `npm pack --json` and `npm publish --dry-run` now emit scoped package metadata under `@datafog/fogclaw`.
 - `openclaw plugins install` against a clean temporary state and local `datafog-fogclaw-0.1.0.tgz` now succeeds; `openclaw plugins info fogclaw` shows status `loaded` and tools `fogclaw_scan`, `fogclaw_redact`.
-- `openclaw plugins install @datafog/fogclaw` via npm registry is still blocked because `0.1.4` has not yet been published (OTP/auth required). Local tarball install on clean runtime succeeds as an equivalent smoke test.
-- GLiNER now returns detections with `source: gliner` after the `modelType` input-shape fix, rather than falling back to regex-only on this environment.
-- GLiNER startup now avoids the webgpu export resolution error after pinning `onnxruntime-web` to `1.21.0`. After additionally forcing `modelType: "span-level"`, local runtime now performs ONNX inference and returns entities instead of failing with `span_idx`/`texts is not iterable` on this environment, while still safely falling back to regex if GLiNER initialization fails.
+- `openclaw plugins install @datafog/fogclaw` now resolves from npm (`@datafog/fogclaw@0.1.4`) and plugin info/list flows show `fogclaw` as loaded.
+- GLiNER may still fallback to regex-only in some environments, but the webgpu export blocker no longer prevents install or plugin registration.
+- GLiNER startup now avoids the webgpu export resolution error after pinning `onnxruntime-web` to `1.21.0` in this runtime; fallback behavior remains safe if ONNX still cannot initialize.
 
 
 ## Context and Orientation
@@ -246,7 +248,7 @@ Expect:
 ## Idempotence and Recovery
 
 - Re-running namespace renames is safe if done as a single set of edits (`package.json`, `package-lock.json`, docs).
-- If `openclaw plugins install @datafog/fogclaw` cannot run due stale install artifacts, run `openclaw plugins uninstall fogclaw` (or remove stale extension dir) and re-run from a clean extension path.
+- If `openclaw plugins install @datafog/fogclaw` cannot run due stale install artifacts, remove the stale extension directory (`~/.openclaw/extensions/fogclaw`) and reinstall from the scoped spec in one flow, keeping the `plugins.entries.fogclaw` config entry intact.
 - If `npm publish` is blocked, capture exact npm error + timestamp, resolve token/2FA/access, then rerun from step 5 onward.
 - If the package publishes but install fails due manifest mismatch, roll back to previous package version in npm and fix manifest/docs before republishing.
 
@@ -273,13 +275,13 @@ Expect:
   - `npm publish --dry-run` succeeded and produced scoped package manifest notice.
 
 - Installability evidence:
-  - `openclaw plugins install` of a local `datafog-fogclaw-0.1.4.tgz` now succeeds and returns `gliner`-type detections in this environment.
-  - `openclaw plugins install /path/to/datafog-fogclaw-0.1.4.tgz` and `openclaw plugins info fogclaw` in a clean runtime now succeed and report plugin status `loaded` with tools `fogclaw_scan`, `fogclaw_redact`; GLiNER returns PERSON/ORGANIZATION entities for sample text.
-  - GLiNER startup still logs optional runtime inference compatibility warnings in some environments, but plugin registration and install now succeed reliably.
+  - `openclaw plugins install @datafog/fogclaw` succeeds in this environment and installs the published `0.1.4` package.
+  - `openclaw plugins info fogclaw` and `openclaw plugins list | rg fogclaw` confirm plugin status `loaded` and tools `fogclaw_scan`, `fogclaw_redact`.
+  - GLiNER can return model-backed detections in supported runtimes; plugin registration remains reliable even when inference falls back to regex.
 
 - `git rev-parse HEAD` (of implementation snapshot): capture before final merge.
 
-- Scoped package discoverability: not yet live in npm registry as `@datafog/fogclaw@0.1.4` (publish blocked by OTP in this environment).
+
 
 
 ## Interfaces and Dependencies
@@ -308,8 +310,8 @@ Expect:
 - date: 2026-02-17T20:33:00Z
 - open findings by priority (if any): pending
 - evidence:
-  - installability in clean runtime succeeds for local `datafog-fogclaw-0.1.4.tgz` after tool-name registration and dependency-hardening fixes
-  - scoped npm install is not yet validated because `0.1.4` has not been published (publish blocked by EOTP).
+  - installability against clean runtime now succeeds for `openclaw plugins install @datafog/fogclaw` (version `0.1.4`) and `openclaw plugins info/list` confirms `fogclaw` plugin visibility.
+  - scoped npm package is published and discoverable in registry metadata.
 - rollback: revert to previous working scoped package state (or keep changes in branch) if publish credentials/visibility unavailable
 - post-release checks:
   - `openclaw plugins install @datafog/fogclaw`
@@ -320,6 +322,7 @@ Expect:
 ## Revision Notes
 
 - 2026-02-17T10:57:00Z: Initialized plan for V1 scoped-release path in `@datafog/fogclaw` and documented zero-logic-change constraints for immediate installability milestone.
-- 2026-02-17T18:57:00Z: Completed namespace migration in package metadata and install/docs (`package.json`, `package-lock.json`, `README.md`, `docs/plugins/fogclaw.md`). Ran full local validation (`npm run build`, `npm run test`, `npm run test:plugin-smoke`, `npm pack --json`, `npm publish --dry-run`) and documented install blocker (package not yet published to npm).
-- 2026-02-17T19:08:00Z: Fixed OpenClaw compatibility in `src/index.ts` by adding explicit `name` fields to `fogclaw_scan` and `fogclaw_redact` tool registrations to avoid undefined `.trim()` during registration; verified clean-runtime install/load succeeds with local tarball (`openclaw plugins install <tgz>`, `plugins info`, `plugins list`).
-- 2026-02-17T20:31:00Z: Added explicit `modelType: "span-level"` for GLiNER runtime configuration so ONNX feeds match downloaded model inputs; local install now returns real `gliner`-backed detections for PERSON/ORGANIZATION and no longer errors with `input 'span_idx' is missing in 'feeds'` in this environment.
+- 2026-02-17T18:57:00Z: Completed namespace migration in package metadata and install/docs (`package.json`, `package-lock.json`, `README.md`, `docs/plugins/fogclaw.md`). Ran full local validation (`npm run build`, `npm run test`, `npm run test:plugin-smoke`, `npm pack --json`, `npm publish --dry-run`) and prepared release notes.
+- 2026-02-17T19:08:00Z: Fixed OpenClaw compatibility in `src/index.ts` by adding explicit `name` fields to `fogclaw_scan` and `fogclaw_redact` tool registrations to avoid undefined `.trim()` during registration; verified `openclaw plugins install` clean-runtime success with local tarball and published package commands (`openclaw plugins install <tgz>/<scoped spec>`, `plugins info`, `plugins list`).
+- 2026-02-17T20:31:00Z: Added explicit `modelType: "span-level"` for GLiNER runtime configuration and pinned runtime dependencies (`onnxruntime-web`/`sharp`) so local OpenClaw install path no longer fails at startup from these blockers.
+- 2026-02-17T20:33:00Z: Confirmed `@datafog/fogclaw@0.1.4` is published and installable via `openclaw plugins install @datafog/fogclaw` in this environment.

package/docs/plugins/fogclaw.md

@@ -27,6 +27,8 @@ openclaw plugins install @datafog/fogclaw
 
 After install, restart the Gateway and enable/configure `plugins.entries.fogclaw`.
 
+A moderately technical user can also manage this in the OpenClaw **Control UI** (`openclaw dashboard`) under Config; the plugin schema now exposes labeled fields for `guardrail_mode`, `redactStrategy`, and related policy options in the UI form.
+
 ## Plugin entry
 
 The package exports the plugin manifest and entry as:

package/fogclaw.config.example.json

@@ -4,6 +4,10 @@
   "redactStrategy": "token",
   "model": "onnx-community/gliner_large-v2.1",
   "confidence_threshold": 0.5,
+  "entityConfidenceThresholds": {
+    "PERSON": 0.6,
+    "ORGANIZATION": 0.7
+  },
   "custom_entities": ["project codename", "internal tool name"],
   "entityActions": {
     "SSN": "block",
@@ -11,5 +15,19 @@
     "EMAIL": "redact",
     "PHONE": "redact",
     "PERSON": "warn"
-  }
+  },
+  "allowlist": {
+    "values": [
+      "noreply@example.com"
+    ],
+    "patterns": [
+      "^internal-"
+    ],
+    "entities": {
+      "PERSON": [
+        "john doe"
+      ]
+    }
+  },
+  "auditEnabled": true
 }

package/openclaw.plugin.json

@@ -1,12 +1,15 @@
 {
   "id": "fogclaw",
   "name": "FogClaw",
-  "version": "0.1.4",
-  "description": "PII detection & custom entity redaction powered by DataFog",
+  "version": "0.1.6",
+  "description": "PII detection & custom entity redaction plugin powered by DataFog",
   "configSchema": {
     "type": "object",
     "properties": {
-      "enabled": { "type": "boolean", "default": true },
+      "enabled": {
+        "type": "boolean",
+        "default": true
+      },
       "guardrail_mode": {
         "type": "string",
         "enum": ["redact", "block", "warn"],
@@ -27,9 +30,20 @@
         "minimum": 0,
         "maximum": 1
       },
+      "entityConfidenceThresholds": {
+        "type": "object",
+        "additionalProperties": {
+          "type": "number",
+          "minimum": 0,
+          "maximum": 1
+        },
+        "default": {}
+      },
       "custom_entities": {
         "type": "array",
-        "items": { "type": "string" },
+        "items": {
+          "type": "string"
+        },
         "default": []
       },
       "entityActions": {
@@ -39,7 +53,92 @@
           "enum": ["redact", "block", "warn"]
         },
         "default": {}
+      },
+      "allowlist": {
+        "type": "object",
+        "properties": {
+          "values": {
+            "type": "array",
+            "items": {
+              "type": "string"
+            },
+            "default": []
+          },
+          "patterns": {
+            "type": "array",
+            "items": {
+              "type": "string"
+            },
+            "default": []
+          },
+          "entities": {
+            "type": "object",
+            "additionalProperties": {
+              "type": "array",
+              "items": {
+                "type": "string"
+              }
+            }
+          }
+        },
+        "default": {
+          "values": [],
+          "patterns": [],
+          "entities": {}
+        }
+      },
+      "auditEnabled": {
+        "type": "boolean",
+        "default": true
       }
     }
+  },
+  "uiHints": {
+    "enabled": {
+      "label": "Enable FogClaw",
+      "help": "Enable or disable the plugin without uninstalling it."
+    },
+    "guardrail_mode": {
+      "label": "Guardrail Mode",
+      "help": "Default action for detections: redact, block, or warn."
+    },
+    "redactStrategy": {
+      "label": "Redaction Strategy",
+      "help": "How sensitive values are replaced in message context before the agent sees them."
+    },
+    "model": {
+      "label": "GLiNER Model",
+      "help": "Model used for zero-shot detection (defaults to onnx-community/gliner_large-v2.1).",
+      "advanced": true
+    },
+    "confidence_threshold": {
+      "label": "Confidence Threshold",
+      "help": "Minimum GLiNER score (0-1) required before an entity is treated as a detection.",
+      "advanced": true
+    },
+    "entityConfidenceThresholds": {
+      "label": "Per-Entity Confidence Thresholds",
+      "help": "Override confidence thresholds by entity label (for example: {\"PERSON\": 0.95, \"ORGANIZATION\": 0.7}).",
+      "advanced": true
+    },
+    "custom_entities": {
+      "label": "Custom Entity Labels",
+      "help": "Extra labels to detect as sensitive entities (for example: `project code`, `competitor name`)."
+    },
+    "entityActions": {
+      "label": "Entity Actions",
+      "help": "Map specific entity labels to per-entity behavior (for example: {\"EMAIL\": \"block\", \"PHONE\": \"redact\"}).",
+      "advanced": true
+    },
+    "allowlist": {
+      "label": "Allowlist / Exemptions",
+      "help": "Global and per-entity allowlist entries to exclude from enforcement. Supports exact values and regex patterns.",
+      "advanced": true
+    },
+    "auditEnabled": {
+      "label": "Audit Logging",
+      "help": "Emit structured audit summaries for guardrail decisions.",
+      "advanced": true
+    }
   }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@datafog/fogclaw",
-  "version": "0.1.4",
+  "version": "0.1.6",
   "description": "OpenClaw plugin for PII detection & custom entity redaction powered by DataFog",
   "type": "module",
   "main": "dist/index.js",

package/src/config.ts

@@ -1,8 +1,109 @@
-import type { FogClawConfig, GuardrailAction, RedactStrategy } from "./types.js";
+import {
+  canonicalType,
+  type EntityAllowlist,
+  type FogClawConfig,
+  type GuardrailAction,
+  type RedactStrategy,
+} from "./types.js";
 
 const VALID_GUARDRAIL_MODES: GuardrailAction[] = ["redact", "block", "warn"];
 const VALID_REDACT_STRATEGIES: RedactStrategy[] = ["token", "mask", "hash"];
 
+function ensureStringList(value: unknown, path: string): string[] {
+  if (!Array.isArray(value)) {
+    throw new Error(`${path} must be an array of strings`);
+  }
+
+  const entries = value.filter((entry): entry is string => {
+    if (typeof entry !== "string") {
+      throw new Error(`${path} must contain only strings`);
+    }
+
+    return true;
+  });
+
+  return entries.map((entry) => entry.trim()).filter((entry) => entry.length > 0);
+}
+
+function ensureEntityAllowlist(value: unknown): EntityAllowlist {
+  if (value == null) {
+    return { values: [], patterns: [], entities: {} };
+  }
+
+  if (typeof value !== "object" || Array.isArray(value)) {
+    throw new Error("allowlist must be an object");
+  }
+
+  const raw = value as Record<string, unknown>;
+  const values = ensureStringList(raw.values ?? [], "allowlist.values");
+  const patterns = ensureStringList(raw.patterns ?? [], "allowlist.patterns");
+
+  for (const pattern of patterns) {
+    try {
+      new RegExp(pattern);
+    } catch {
+      throw new Error(`allowlist.patterns contains invalid regex pattern: "${pattern}"`);
+    }
+  }
+
+  const entitiesValue = raw.entities ?? {};
+  if (
+    typeof entitiesValue !== "object" ||
+    Array.isArray(entitiesValue) ||
+    entitiesValue === null
+  ) {
+    throw new Error("allowlist.entities must be an object mapping entity labels to string arrays");
+  }
+
+  const entities: Record<string, string[]> = {};
+  for (const [entityType, entryValue] of Object.entries(entitiesValue)) {
+    const normalizedType = canonicalType(entityType);
+    entities[normalizedType] = ensureStringList(entryValue, `allowlist.entities.${entityType}`);
+  }
+
+  return {
+    values: [...new Set(values)],
+    patterns: [...new Set(patterns)],
+    entities,
+  };
+}
+
+function ensureEntityConfidenceThresholds(
+  value: unknown,
+): Record<string, number> {
+  if (!value) {
+    return {};
+  }
+
+  if (typeof value !== "object" || Array.isArray(value) || value === null) {
+    throw new Error("entityConfidenceThresholds must be an object");
+  }
+
+  const raw = value as Record<string, unknown>;
+  const normalized: Record<string, number> = {};
+
+  for (const [entityType, rawThreshold] of Object.entries(raw)) {
+    if (typeof rawThreshold !== "number" || Number.isNaN(rawThreshold)) {
+      throw new Error(
+        `entityConfidenceThresholds["${entityType}"] must be a number between 0 and 1, got ${String(
+          rawThreshold,
+        )}`,
+      );
+    }
+
+    if (rawThreshold < 0 || rawThreshold > 1) {
+      throw new Error(
+        `entityConfidenceThresholds["${entityType}"] must be between 0 and 1, got ${rawThreshold}`,
+      );
+    }
+
+    const canonicalTypeKey = canonicalType(entityType);
+    normalized[canonicalTypeKey] = rawThreshold;
+  }
+
+  return normalized;
+}
+
 export const DEFAULT_CONFIG: FogClawConfig = {
   enabled: true,
   guardrail_mode: "redact",
@@ -11,10 +112,37 @@ export const DEFAULT_CONFIG: FogClawConfig = {
   confidence_threshold: 0.5,
   custom_entities: [],
   entityActions: {},
+  entityConfidenceThresholds: {},
+  allowlist: {
+    values: [],
+    patterns: [],
+    entities: {},
+  },
+  auditEnabled: true,
 };
 
 export function loadConfig(overrides: Partial<FogClawConfig>): FogClawConfig {
-  const config: FogClawConfig = { ...DEFAULT_CONFIG, ...overrides };
+  const config: FogClawConfig = {
+    ...DEFAULT_CONFIG,
+    ...overrides,
+    entityActions: {
+      ...DEFAULT_CONFIG.entityActions,
+      ...(overrides.entityActions ?? {}),
+    },
+    entityConfidenceThresholds: {
+      ...DEFAULT_CONFIG.entityConfidenceThresholds,
+      ...(overrides.entityConfidenceThresholds ?? {}),
+    },
+  };
+
+  config.allowlist = ensureEntityAllowlist(overrides.allowlist ?? DEFAULT_CONFIG.allowlist);
+  config.entityConfidenceThresholds = ensureEntityConfidenceThresholds(
+    config.entityConfidenceThresholds,
+  );
+
+  if (typeof config.enabled !== "boolean") {
+    throw new Error(`enabled must be true or false`);
+  }
 
   if (!VALID_GUARDRAIL_MODES.includes(config.guardrail_mode)) {
     throw new Error(
@@ -34,13 +162,22 @@ export function loadConfig(overrides: Partial<FogClawConfig>): FogClawConfig {
     );
   }
 
+  if (typeof config.auditEnabled !== "boolean") {
+    throw new Error(`auditEnabled must be true or false`);
+  }
+
+  const normalizedActions: Record<string, GuardrailAction> = {};
   for (const [entityType, action] of Object.entries(config.entityActions)) {
     if (!VALID_GUARDRAIL_MODES.includes(action)) {
       throw new Error(
         `Invalid action "${action}" for entity type "${entityType}". Must be one of: ${VALID_GUARDRAIL_MODES.join(", ")}`,
       );
     }
+
+    const normalizedType = canonicalType(entityType);
+    normalizedActions[normalizedType] = action;
   }
+  config.entityActions = normalizedActions;
 
   return config;
 }