npm - @datafog/fogclaw - Versions diffs - 0.2.0 → 0.3.0 - Mend

@datafog/fogclaw 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (103) hide show

package/CHANGELOG.md +11 -0
package/dist/backlog-tools.d.ts +57 -0
package/dist/backlog-tools.d.ts.map +1 -0
package/dist/backlog-tools.js +173 -0
package/dist/backlog-tools.js.map +1 -0
package/dist/backlog.d.ts +82 -0
package/dist/backlog.d.ts.map +1 -0
package/dist/backlog.js +169 -0
package/dist/backlog.js.map +1 -0
package/dist/config.d.ts.map +1 -1
package/dist/config.js +6 -0
package/dist/config.js.map +1 -1
package/dist/index.d.ts +2 -1
package/dist/index.d.ts.map +1 -1
package/dist/index.js +87 -2
package/dist/index.js.map +1 -1
package/dist/message-sending-handler.d.ts +2 -1
package/dist/message-sending-handler.d.ts.map +1 -1
package/dist/message-sending-handler.js +5 -1
package/dist/message-sending-handler.js.map +1 -1
package/dist/tool-result-handler.d.ts +2 -1
package/dist/tool-result-handler.d.ts.map +1 -1
package/dist/tool-result-handler.js +5 -1
package/dist/tool-result-handler.js.map +1 -1
package/dist/types.d.ts +15 -0
package/dist/types.d.ts.map +1 -1
package/dist/types.js.map +1 -1
package/openclaw.plugin.json +11 -1
package/package.json +7 -1
package/.github/workflows/harness-docs.yml +0 -30
package/AGENTS.md +0 -28
package/docs/DATA.md +0 -28
package/docs/DESIGN.md +0 -17
package/docs/DOMAIN_DOCS.md +0 -30
package/docs/FRONTEND.md +0 -24
package/docs/OBSERVABILITY.md +0 -32
package/docs/PLANS.md +0 -171
package/docs/PRODUCT_SENSE.md +0 -20
package/docs/RELIABILITY.md +0 -60
package/docs/SECURITY.md +0 -52
package/docs/design-docs/core-beliefs.md +0 -17
package/docs/design-docs/index.md +0 -8
package/docs/generated/README.md +0 -36
package/docs/generated/memory.md +0 -1
package/docs/plans/2026-02-16-fogclaw-design.md +0 -172
package/docs/plans/2026-02-16-fogclaw-implementation.md +0 -1606
package/docs/plans/README.md +0 -15
package/docs/plans/active/2026-02-16-feat-openclaw-official-submission-plan.md +0 -386
package/docs/plans/active/2026-02-17-feat-release-fogclaw-via-datafog-package-plan.md +0 -328
package/docs/plans/active/2026-02-17-feat-submit-fogclaw-to-openclaw-plan.md +0 -244
package/docs/plans/active/2026-02-17-feat-tool-result-pii-scanning-plan.md +0 -293
package/docs/plans/tech-debt-tracker.md +0 -42
package/docs/plugins/fogclaw.md +0 -101
package/docs/runbooks/address-review-findings.md +0 -30
package/docs/runbooks/ci-failures.md +0 -46
package/docs/runbooks/code-review.md +0 -34
package/docs/runbooks/merge-change.md +0 -28
package/docs/runbooks/pull-request.md +0 -45
package/docs/runbooks/record-evidence.md +0 -43
package/docs/runbooks/reproduce-bug.md +0 -42
package/docs/runbooks/respond-to-feedback.md +0 -42
package/docs/runbooks/review-findings.md +0 -31
package/docs/runbooks/submit-openclaw-plugin.md +0 -68
package/docs/runbooks/update-agents-md.md +0 -59
package/docs/runbooks/update-domain-docs.md +0 -42
package/docs/runbooks/validate-current-state.md +0 -41
package/docs/runbooks/verify-release.md +0 -69
package/docs/specs/2026-02-16-feat-openclaw-official-submission-spec.md +0 -115
package/docs/specs/2026-02-17-feat-outbound-message-pii-scanning-spec.md +0 -93
package/docs/specs/2026-02-17-feat-submit-fogclaw-to-openclaw.md +0 -125
package/docs/specs/2026-02-17-feat-tool-result-pii-scanning-spec.md +0 -122
package/docs/specs/README.md +0 -5
package/docs/specs/index.md +0 -8
package/docs/spikes/README.md +0 -8
package/fogclaw.config.example.json +0 -33
package/scripts/ci/he-docs-config.json +0 -123
package/scripts/ci/he-docs-drift.sh +0 -112
package/scripts/ci/he-docs-lint.sh +0 -234
package/scripts/ci/he-plans-lint.sh +0 -354
package/scripts/ci/he-runbooks-lint.sh +0 -445
package/scripts/ci/he-specs-lint.sh +0 -258
package/scripts/ci/he-spikes-lint.sh +0 -249
package/scripts/runbooks/select-runbooks.sh +0 -154
package/src/config.ts +0 -183
package/src/engines/gliner.ts +0 -240
package/src/engines/regex.ts +0 -71
package/src/extract.ts +0 -98
package/src/index.ts +0 -381
package/src/message-sending-handler.ts +0 -87
package/src/redactor.ts +0 -51
package/src/scanner.ts +0 -196
package/src/tool-result-handler.ts +0 -133
package/src/types.ts +0 -75
package/tests/config.test.ts +0 -78
package/tests/extract.test.ts +0 -185
package/tests/gliner.test.ts +0 -289
package/tests/message-sending-handler.test.ts +0 -244
package/tests/plugin-smoke.test.ts +0 -250
package/tests/redactor.test.ts +0 -320
package/tests/regex.test.ts +0 -345
package/tests/scanner.test.ts +0 -348
package/tests/tool-result-handler.test.ts +0 -329
package/tsconfig.json +0 -20

package/tests/gliner.test.ts DELETED Viewed

@@ -1,289 +0,0 @@
-import { beforeAll, beforeEach, afterAll, describe, it, expect, vi } from "vitest";
-import fs from "node:fs/promises";
-import os from "node:os";
-import path from "node:path";
-// Mock the gliner npm package so we don't need the actual 1.4GB model
-vi.mock("gliner", () => {
-  class MockGliner {
-    private config: any;
-    constructor(config: any) {
-      this.config = config;
-    }
-    async initialize(): Promise<void> {
-      // No-op in mock
-    }
-    async inference(
-      request: { texts: string[]; entities: string[] } | string | string[],
-      maybeEntities?: string[],
-      _flatNer = false,
-      _threshold = 0.5,
-    ): Promise<Array<{ text: string; label: string; score: number; start: number; end: number }>> {
-      const text =
-        typeof request === "string"
-          ? request
-          : Array.isArray(request)
-            ? request[0] ?? ""
-            : request.texts[0] ?? "";
-      const requestEntities =
-        typeof request === "object" && request !== null && "entities" in request
-          ? request.entities
-          : undefined;
-      const labels =
-        Array.isArray(maybeEntities)
-          ? maybeEntities
-          : requestEntities ?? [];
-      const results: Array<{ text: string; label: string; score: number; start: number; end: number }> = [];
-      // Simulate entity detection for "John Smith"
-      const johnIndex = text.indexOf("John Smith");
-      if (johnIndex !== -1 && labels.includes("person")) {
-        results.push({
-          text: "John Smith",
-          label: "person",
-          score: 0.95,
-          start: johnIndex,
-          end: johnIndex + "John Smith".length,
-        });
-      }
-      // Simulate entity detection for "Acme Corp"
-      const acmeIndex = text.indexOf("Acme Corp");
-      if (acmeIndex !== -1 && labels.includes("organization")) {
-        results.push({
-          text: "Acme Corp",
-          label: "organization",
-          score: 0.88,
-          start: acmeIndex,
-          end: acmeIndex + "Acme Corp".length,
-        });
-      }
-      // Simulate entity detection for "New York"
-      const nyIndex = text.indexOf("New York");
-      if (nyIndex !== -1 && labels.includes("location")) {
-        results.push({
-          text: "New York",
-          label: "location",
-          score: 0.91,
-          start: nyIndex,
-          end: nyIndex + "New York".length,
-        });
-      }
-      return results;
-    }
-  }
-  return { Gliner: MockGliner };
-});
-vi.mock("gliner/node", () => {
-  class MockGliner {
-    private config: any;
-    constructor(config: any) {
-      this.config = config;
-    }
-    async initialize(): Promise<void> {
-      // No-op in mock
-    }
-    async inference(
-      request: { texts: string[]; entities: string[] } | string | string[],
-      maybeEntities?: string[],
-      _flatNer = false,
-      _threshold = 0.5,
-    ): Promise<Array<{ text: string; label: string; score: number; start: number; end: number }>> {
-      const text =
-        typeof request === "string"
-          ? request
-          : Array.isArray(request)
-            ? request[0] ?? ""
-            : request.texts[0] ?? "";
-      const requestEntities =
-        typeof request === "object" && request !== null && "entities" in request
-          ? request.entities
-          : undefined;
-      const labels =
-        Array.isArray(maybeEntities)
-          ? maybeEntities
-          : requestEntities ?? [];
-      const results: Array<{ text: string; label: string; score: number; start: number; end: number }> = [];
-      // Simulate entity detection for "John Smith"
-      const johnIndex = text.indexOf("John Smith");
-      if (johnIndex !== -1 && labels.includes("person")) {
-        results.push({
-          text: "John Smith",
-          label: "person",
-          score: 0.95,
-          start: johnIndex,
-          end: johnIndex + "John Smith".length,
-        });
-      }
-      // Simulate entity detection for "Acme Corp"
-      const acmeIndex = text.indexOf("Acme Corp");
-      if (acmeIndex !== -1 && labels.includes("organization")) {
-        results.push({
-          text: "Acme Corp",
-          label: "organization",
-          score: 0.88,
-          start: acmeIndex,
-          end: acmeIndex + "Acme Corp".length,
-        });
-      }
-      // Simulate entity detection for "New York"
-      const nyIndex = text.indexOf("New York");
-      if (nyIndex !== -1 && labels.includes("location")) {
-        results.push({
-          text: "New York",
-          label: "location",
-          score: 0.91,
-          start: nyIndex,
-          end: nyIndex + "New York".length,
-        });
-      }
-      return results;
-    }
-  }
-  return { Gliner: MockGliner };
-});
-import { GlinerEngine } from "../src/engines/gliner.js";
-const TEST_ONNX_MODEL_PATH = path.join(os.tmpdir(), "fogclaw-gliner-model-test.onnx");
-beforeAll(async () => {
-  await fs.writeFile(TEST_ONNX_MODEL_PATH, "mock-onnx-model", "utf8");
-});
-afterAll(async () => {
-  await fs.unlink(TEST_ONNX_MODEL_PATH).catch(() => undefined);
-});
-describe("GlinerEngine", () => {
-  let engine: GlinerEngine;
-  beforeEach(async () => {
-    engine = new GlinerEngine(TEST_ONNX_MODEL_PATH, 0.5);
-    await engine.initialize();
-  });
-  it("detects person entities with canonical PERSON label", async () => {
-    const entities = await engine.scan("My name is John Smith and I live here.");
-    expect(entities).toHaveLength(1);
-    expect(entities[0].text).toBe("John Smith");
-    expect(entities[0].label).toBe("PERSON");
-  });
-  it("detects organization entities with canonical ORGANIZATION label", async () => {
-    const entities = await engine.scan("I work at Acme Corp downtown.");
-    expect(entities).toHaveLength(1);
-    expect(entities[0].text).toBe("Acme Corp");
-    expect(entities[0].label).toBe("ORGANIZATION");
-  });
-  it("detects multiple entity types in the same text", async () => {
-    const entities = await engine.scan(
-      "John Smith works at Acme Corp in New York.",
-    );
-    expect(entities).toHaveLength(3);
-    const labels = entities.map((e) => e.label);
-    expect(labels).toContain("PERSON");
-    expect(labels).toContain("ORGANIZATION");
-    expect(labels).toContain("LOCATION");
-  });
-  it("returns empty array for text with no entities", async () => {
-    const entities = await engine.scan("Hello world, this is a test.");
-    expect(entities).toEqual([]);
-  });
-  it("returns empty array for empty string input", async () => {
-    const entities = await engine.scan("");
-    expect(entities).toEqual([]);
-  });
-  it("allows setting custom labels without crashing", async () => {
-    expect(() => engine.setCustomLabels(["product", "event"])).not.toThrow();
-    // Scan still works after setting custom labels
-    const entities = await engine.scan("John Smith attended the event.");
-    expect(entities).toHaveLength(1);
-    expect(entities[0].label).toBe("PERSON");
-  });
-  it("applies canonical type mapping (lowercase person -> PERSON)", async () => {
-    // The mock returns lowercase "person" as label; canonicalType should map it to "PERSON"
-    const entities = await engine.scan("John Smith is here.");
-    expect(entities[0].label).toBe("PERSON");
-    // Verify it's not lowercase
-    expect(entities[0].label).not.toBe("person");
-  });
-  it("sets source to gliner for all detected entities", async () => {
-    const entities = await engine.scan(
-      "John Smith works at Acme Corp in New York.",
-    );
-    for (const entity of entities) {
-      expect(entity.source).toBe("gliner");
-    }
-  });
-  it("confidence comes from model score", async () => {
-    const entities = await engine.scan(
-      "John Smith works at Acme Corp in New York.",
-    );
-    const person = entities.find((e) => e.label === "PERSON");
-    const org = entities.find((e) => e.label === "ORGANIZATION");
-    const loc = entities.find((e) => e.label === "LOCATION");
-    // These match the scores set in our mock
-    expect(person?.confidence).toBe(0.95);
-    expect(org?.confidence).toBe(0.88);
-    expect(loc?.confidence).toBe(0.91);
-  });
-  it("throws if scan is called before initialize", async () => {
-    const uninitializedEngine = new GlinerEngine("some-model", 0.5);
-    await expect(uninitializedEngine.scan("test")).rejects.toThrow(
-      "GLiNER engine not initialized. Call initialize() first.",
-    );
-  });
-  it("reports isInitialized correctly", async () => {
-    const freshEngine = new GlinerEngine(TEST_ONNX_MODEL_PATH, 0.5);
-    expect(freshEngine.isInitialized).toBe(false);
-    await freshEngine.initialize();
-    expect(freshEngine.isInitialized).toBe(true);
-  });
-  it("includes correct start and end offsets", async () => {
-    const text = "Contact John Smith for details.";
-    const entities = await engine.scan(text);
-    expect(entities).toHaveLength(1);
-    expect(entities[0].start).toBe(8); // "Contact " is 8 chars
-    expect(entities[0].end).toBe(18); // 8 + "John Smith".length = 18
-  });
-});

package/tests/message-sending-handler.test.ts DELETED Viewed

@@ -1,244 +0,0 @@
-import { describe, it, expect, vi, beforeAll, afterAll } from "vitest";
-import { createMessageSendingHandler } from "../src/message-sending-handler.js";
-import { Scanner } from "../src/scanner.js";
-import type { FogClawConfig } from "../src/types.js";
-function makeConfig(overrides: Partial<FogClawConfig> = {}): FogClawConfig {
-  return {
-    enabled: true,
-    guardrail_mode: "redact",
-    redactStrategy: "token",
-    model: "invalid:/not/real/model",
-    confidence_threshold: 0.5,
-    custom_entities: [],
-    entityActions: {},
-    entityConfidenceThresholds: {},
-    allowlist: { values: [], patterns: [], entities: {} },
-    auditEnabled: false,
-    ...overrides,
-  };
-}
-function makeLogger() {
-  return {
-    info: vi.fn(),
-    warn: vi.fn(),
-  };
-}
-function makeCtx(channelId = "telegram") {
-  return { channelId };
-}
-describe("createMessageSendingHandler", () => {
-  // Suppress GLiNER init warnings
-  beforeAll(() => {
-    vi.spyOn(console, "warn").mockImplementation(() => undefined);
-  });
-  afterAll(() => {
-    vi.restoreAllMocks();
-  });
-  it("returns an async function", () => {
-    const config = makeConfig();
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    expect(typeof handler).toBe("function");
-  });
-  it("redacts SSN in outbound message", async () => {
-    const config = makeConfig();
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user123", content: "Your SSN is 123-45-6789." },
-      makeCtx(),
-    );
-    expect(result).toBeDefined();
-    expect(result!.content).toContain("[SSN_1]");
-    expect(result!.content).not.toContain("123-45-6789");
-    expect(result!.cancel).toBeUndefined();
-  });
-  it("redacts email and phone in outbound message", async () => {
-    const config = makeConfig();
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "Call 555-123-4567 or email john@example.com" },
-      makeCtx(),
-    );
-    expect(result).toBeDefined();
-    expect(result!.content).toContain("[PHONE_1]");
-    expect(result!.content).toContain("[EMAIL_1]");
-    expect(result!.content).not.toContain("555-123-4567");
-    expect(result!.content).not.toContain("john@example.com");
-  });
-  it("returns void when no PII found", async () => {
-    const config = makeConfig();
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "Hello, how can I help you today?" },
-      makeCtx(),
-    );
-    expect(result).toBeUndefined();
-  });
-  it("returns void for empty content", async () => {
-    const config = makeConfig();
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "" },
-      makeCtx(),
-    );
-    expect(result).toBeUndefined();
-  });
-  it("never returns cancel: true", async () => {
-    const config = makeConfig({
-      entityActions: { SSN: "block" },
-    });
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "SSN 123-45-6789" },
-      makeCtx(),
-    );
-    expect(result).toBeDefined();
-    expect(result!.cancel).toBeUndefined();
-    expect(result!.content).toContain("[SSN_1]");
-  });
-  it("all guardrail modes produce span-level redaction", async () => {
-    const config = makeConfig({
-      entityActions: { SSN: "block", EMAIL: "warn", PHONE: "redact" },
-    });
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      {
-        to: "user",
-        content: "SSN 123-45-6789, email john@example.com, call 555-123-4567",
-      },
-      makeCtx(),
-    );
-    expect(result).toBeDefined();
-    expect(result!.content).toContain("[SSN_1]");
-    expect(result!.content).toContain("[EMAIL_1]");
-    expect(result!.content).toContain("[PHONE_1]");
-  });
-  it("respects allowlist — global values", async () => {
-    const config = makeConfig({
-      allowlist: {
-        values: ["noreply@example.com"],
-        patterns: [],
-        entities: {},
-      },
-    });
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "Contact noreply@example.com for help" },
-      makeCtx(),
-    );
-    expect(result).toBeUndefined();
-  });
-  it("uses mask redaction strategy", async () => {
-    const config = makeConfig({ redactStrategy: "mask" });
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "SSN is 123-45-6789" },
-      makeCtx(),
-    );
-    expect(result).toBeDefined();
-    expect(result!.content).toContain("***********");
-    expect(result!.content).not.toContain("123-45-6789");
-  });
-  it("uses hash redaction strategy", async () => {
-    const config = makeConfig({ redactStrategy: "hash" });
-    const scanner = new Scanner(config);
-    const handler = createMessageSendingHandler(config, scanner);
-    const result = await handler(
-      { to: "user", content: "SSN is 123-45-6789" },
-      makeCtx(),
-    );
-    expect(result).toBeDefined();
-    expect(result!.content).toMatch(/\[SSN_[a-f0-9]{12}\]/);
-  });
-  describe("audit logging", () => {
-    it("emits audit log with source outbound when PII found", async () => {
-      const config = makeConfig({ auditEnabled: true });
-      const scanner = new Scanner(config);
-      const logger = makeLogger();
-      const handler = createMessageSendingHandler(config, scanner, logger);
-      await handler(
-        { to: "user", content: "SSN 123-45-6789" },
-        makeCtx("discord"),
-      );
-      expect(logger.info).toHaveBeenCalledOnce();
-      const logCall = logger.info.mock.calls[0][0] as string;
-      expect(logCall).toContain("[FOGCLAW AUDIT]");
-      expect(logCall).toContain("outbound_scan");
-      expect(logCall).toContain('"source":"outbound"');
-      expect(logCall).toContain('"channelId":"discord"');
-      expect(logCall).toContain('"SSN"');
-      expect(logCall).not.toContain("123-45-6789");
-    });
-    it("does not emit audit log when auditEnabled is false", async () => {
-      const config = makeConfig({ auditEnabled: false });
-      const scanner = new Scanner(config);
-      const logger = makeLogger();
-      const handler = createMessageSendingHandler(config, scanner, logger);
-      await handler(
-        { to: "user", content: "SSN 123-45-6789" },
-        makeCtx(),
-      );
-      expect(logger.info).not.toHaveBeenCalled();
-    });
-    it("does not emit audit log when no PII found", async () => {
-      const config = makeConfig({ auditEnabled: true });
-      const scanner = new Scanner(config);
-      const logger = makeLogger();
-      const handler = createMessageSendingHandler(config, scanner, logger);
-      await handler(
-        { to: "user", content: "Clean message" },
-        makeCtx(),
-      );
-      expect(logger.info).not.toHaveBeenCalled();
-    });
-  });
-});