npm - @datafog/fogclaw - Versions diffs - 0.2.0 → 0.3.0 - Mend

@datafog/fogclaw 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (103) hide show

package/CHANGELOG.md +11 -0
package/dist/backlog-tools.d.ts +57 -0
package/dist/backlog-tools.d.ts.map +1 -0
package/dist/backlog-tools.js +173 -0
package/dist/backlog-tools.js.map +1 -0
package/dist/backlog.d.ts +82 -0
package/dist/backlog.d.ts.map +1 -0
package/dist/backlog.js +169 -0
package/dist/backlog.js.map +1 -0
package/dist/config.d.ts.map +1 -1
package/dist/config.js +6 -0
package/dist/config.js.map +1 -1
package/dist/index.d.ts +2 -1
package/dist/index.d.ts.map +1 -1
package/dist/index.js +87 -2
package/dist/index.js.map +1 -1
package/dist/message-sending-handler.d.ts +2 -1
package/dist/message-sending-handler.d.ts.map +1 -1
package/dist/message-sending-handler.js +5 -1
package/dist/message-sending-handler.js.map +1 -1
package/dist/tool-result-handler.d.ts +2 -1
package/dist/tool-result-handler.d.ts.map +1 -1
package/dist/tool-result-handler.js +5 -1
package/dist/tool-result-handler.js.map +1 -1
package/dist/types.d.ts +15 -0
package/dist/types.d.ts.map +1 -1
package/dist/types.js.map +1 -1
package/openclaw.plugin.json +11 -1
package/package.json +7 -1
package/.github/workflows/harness-docs.yml +0 -30
package/AGENTS.md +0 -28
package/docs/DATA.md +0 -28
package/docs/DESIGN.md +0 -17
package/docs/DOMAIN_DOCS.md +0 -30
package/docs/FRONTEND.md +0 -24
package/docs/OBSERVABILITY.md +0 -32
package/docs/PLANS.md +0 -171
package/docs/PRODUCT_SENSE.md +0 -20
package/docs/RELIABILITY.md +0 -60
package/docs/SECURITY.md +0 -52
package/docs/design-docs/core-beliefs.md +0 -17
package/docs/design-docs/index.md +0 -8
package/docs/generated/README.md +0 -36
package/docs/generated/memory.md +0 -1
package/docs/plans/2026-02-16-fogclaw-design.md +0 -172
package/docs/plans/2026-02-16-fogclaw-implementation.md +0 -1606
package/docs/plans/README.md +0 -15
package/docs/plans/active/2026-02-16-feat-openclaw-official-submission-plan.md +0 -386
package/docs/plans/active/2026-02-17-feat-release-fogclaw-via-datafog-package-plan.md +0 -328
package/docs/plans/active/2026-02-17-feat-submit-fogclaw-to-openclaw-plan.md +0 -244
package/docs/plans/active/2026-02-17-feat-tool-result-pii-scanning-plan.md +0 -293
package/docs/plans/tech-debt-tracker.md +0 -42
package/docs/plugins/fogclaw.md +0 -101
package/docs/runbooks/address-review-findings.md +0 -30
package/docs/runbooks/ci-failures.md +0 -46
package/docs/runbooks/code-review.md +0 -34
package/docs/runbooks/merge-change.md +0 -28
package/docs/runbooks/pull-request.md +0 -45
package/docs/runbooks/record-evidence.md +0 -43
package/docs/runbooks/reproduce-bug.md +0 -42
package/docs/runbooks/respond-to-feedback.md +0 -42
package/docs/runbooks/review-findings.md +0 -31
package/docs/runbooks/submit-openclaw-plugin.md +0 -68
package/docs/runbooks/update-agents-md.md +0 -59
package/docs/runbooks/update-domain-docs.md +0 -42
package/docs/runbooks/validate-current-state.md +0 -41
package/docs/runbooks/verify-release.md +0 -69
package/docs/specs/2026-02-16-feat-openclaw-official-submission-spec.md +0 -115
package/docs/specs/2026-02-17-feat-outbound-message-pii-scanning-spec.md +0 -93
package/docs/specs/2026-02-17-feat-submit-fogclaw-to-openclaw.md +0 -125
package/docs/specs/2026-02-17-feat-tool-result-pii-scanning-spec.md +0 -122
package/docs/specs/README.md +0 -5
package/docs/specs/index.md +0 -8
package/docs/spikes/README.md +0 -8
package/fogclaw.config.example.json +0 -33
package/scripts/ci/he-docs-config.json +0 -123
package/scripts/ci/he-docs-drift.sh +0 -112
package/scripts/ci/he-docs-lint.sh +0 -234
package/scripts/ci/he-plans-lint.sh +0 -354
package/scripts/ci/he-runbooks-lint.sh +0 -445
package/scripts/ci/he-specs-lint.sh +0 -258
package/scripts/ci/he-spikes-lint.sh +0 -249
package/scripts/runbooks/select-runbooks.sh +0 -154
package/src/config.ts +0 -183
package/src/engines/gliner.ts +0 -240
package/src/engines/regex.ts +0 -71
package/src/extract.ts +0 -98
package/src/index.ts +0 -381
package/src/message-sending-handler.ts +0 -87
package/src/redactor.ts +0 -51
package/src/scanner.ts +0 -196
package/src/tool-result-handler.ts +0 -133
package/src/types.ts +0 -75
package/tests/config.test.ts +0 -78
package/tests/extract.test.ts +0 -185
package/tests/gliner.test.ts +0 -289
package/tests/message-sending-handler.test.ts +0 -244
package/tests/plugin-smoke.test.ts +0 -250
package/tests/redactor.test.ts +0 -320
package/tests/regex.test.ts +0 -345
package/tests/scanner.test.ts +0 -348
package/tests/tool-result-handler.test.ts +0 -329
package/tsconfig.json +0 -20

package/tests/tool-result-handler.test.ts DELETED Viewed

@@ -1,329 +0,0 @@
-import { describe, it, expect, vi } from "vitest";
-import { createToolResultHandler } from "../src/tool-result-handler.js";
-import { RegexEngine } from "../src/engines/regex.js";
-import type { FogClawConfig } from "../src/types.js";
-function makeConfig(overrides: Partial<FogClawConfig> = {}): FogClawConfig {
-  return {
-    enabled: true,
-    guardrail_mode: "redact",
-    redactStrategy: "token",
-    model: "test",
-    confidence_threshold: 0.5,
-    custom_entities: [],
-    entityActions: {},
-    entityConfidenceThresholds: {},
-    allowlist: { values: [], patterns: [], entities: {} },
-    auditEnabled: false,
-    ...overrides,
-  };
-}
-function makeLogger() {
-  return {
-    info: vi.fn(),
-    warn: vi.fn(),
-  };
-}
-describe("createToolResultHandler", () => {
-  const regexEngine = new RegexEngine();
-  it("returns a synchronous function (not async)", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    expect(typeof handler).toBe("function");
-    // Verify it does not return a Promise
-    const result = handler(
-      { message: "no pii here" },
-      {},
-    );
-    // undefined is expected for no-PII — not a Promise
-    expect(result).toBeUndefined();
-  });
-  it("redacts SSN in a plain string message", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      { message: "SSN is 123-45-6789" },
-      {},
-    );
-    expect(result).toBeDefined();
-    expect(result!.message).toBe("SSN is [SSN_1]");
-  });
-  it("redacts email in a content-string message", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      { message: { role: "toolResult", content: "Contact john@example.com" } },
-      {},
-    );
-    expect(result).toBeDefined();
-    const msg = result!.message as Record<string, unknown>;
-    expect(msg.content).toBe("Contact [EMAIL_1]");
-    expect(msg.role).toBe("toolResult");
-  });
-  it("redacts phone number in content block array", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      {
-        message: {
-          content: [{ type: "text", text: "Call 555-123-4567 please" }],
-        },
-      },
-      {},
-    );
-    expect(result).toBeDefined();
-    const msg = result!.message as Record<string, unknown>;
-    const content = msg.content as Array<Record<string, unknown>>;
-    expect(content[0].text).toBe("Call [PHONE_1] please");
-  });
-  it("redacts multiple PII types in one message", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      { message: "Call 555-123-4567 or email john@example.com" },
-      {},
-    );
-    expect(result).toBeDefined();
-    const text = result!.message as string;
-    expect(text).toContain("[PHONE_1]");
-    expect(text).toContain("[EMAIL_1]");
-    expect(text).not.toContain("555-123-4567");
-    expect(text).not.toContain("john@example.com");
-  });
-  it("returns void when no PII is found", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      { message: "This is clean text with no sensitive data." },
-      {},
-    );
-    expect(result).toBeUndefined();
-  });
-  it("returns void for empty string message", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    expect(handler({ message: "" }, {})).toBeUndefined();
-  });
-  it("returns void for null message", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    expect(handler({ message: null }, {})).toBeUndefined();
-  });
-  it("returns void for message with no extractable text", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    expect(
-      handler(
-        {
-          message: {
-            content: [{ type: "image", source: { data: "base64" } }],
-          },
-        },
-        {},
-      ),
-    ).toBeUndefined();
-  });
-  it("respects allowlist — global values", () => {
-    const config = makeConfig({
-      allowlist: {
-        values: ["noreply@example.com"],
-        patterns: [],
-        entities: {},
-      },
-    });
-    const handler = createToolResultHandler(config, regexEngine);
-    const result = handler(
-      { message: "Contact noreply@example.com for help" },
-      {},
-    );
-    // The allowlisted email should not be redacted
-    expect(result).toBeUndefined();
-  });
-  it("respects allowlist — global patterns", () => {
-    const config = makeConfig({
-      allowlist: {
-        values: [],
-        patterns: ["^internal-"],
-        entities: {},
-      },
-    });
-    const handler = createToolResultHandler(config, regexEngine);
-    const result = handler(
-      { message: "Contact internal-noreply@company.com" },
-      {},
-    );
-    expect(result).toBeUndefined();
-  });
-  it("respects allowlist — per-entity values", () => {
-    const config = makeConfig({
-      allowlist: {
-        values: [],
-        patterns: [],
-        entities: { EMAIL: ["public@example.com"] },
-      },
-    });
-    const handler = createToolResultHandler(config, regexEngine);
-    const result = handler(
-      { message: "Email public@example.com or secret@example.com" },
-      {},
-    );
-    expect(result).toBeDefined();
-    const text = result!.message as string;
-    // public@example.com should be preserved, secret@example.com should be redacted
-    expect(text).toContain("public@example.com");
-    expect(text).not.toContain("secret@example.com");
-    expect(text).toContain("[EMAIL_1]");
-  });
-  it("uses mask redaction strategy", () => {
-    const config = makeConfig({ redactStrategy: "mask" });
-    const handler = createToolResultHandler(config, regexEngine);
-    const result = handler(
-      { message: "SSN is 123-45-6789" },
-      {},
-    );
-    expect(result).toBeDefined();
-    const text = result!.message as string;
-    expect(text).toContain("***********");
-    expect(text).not.toContain("123-45-6789");
-  });
-  it("uses hash redaction strategy", () => {
-    const config = makeConfig({ redactStrategy: "hash" });
-    const handler = createToolResultHandler(config, regexEngine);
-    const result = handler(
-      { message: "SSN is 123-45-6789" },
-      {},
-    );
-    expect(result).toBeDefined();
-    const text = result!.message as string;
-    expect(text).toMatch(/\[SSN_[a-f0-9]{12}\]/);
-    expect(text).not.toContain("123-45-6789");
-  });
-  it("applies entityActions config — all modes produce redaction", () => {
-    const config = makeConfig({
-      entityActions: { SSN: "block", EMAIL: "warn" },
-    });
-    const handler = createToolResultHandler(config, regexEngine);
-    const result = handler(
-      { message: "SSN 123-45-6789, email john@example.com" },
-      {},
-    );
-    expect(result).toBeDefined();
-    const text = result!.message as string;
-    // Both block and warn modes produce span-level redaction in tool results
-    expect(text).toContain("[SSN_1]");
-    expect(text).toContain("[EMAIL_1]");
-    expect(text).not.toContain("123-45-6789");
-    expect(text).not.toContain("john@example.com");
-  });
-  it("preserves non-text content blocks", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      {
-        message: {
-          content: [
-            { type: "text", text: "SSN is 123-45-6789" },
-            { type: "image", source: { data: "imagedata" } },
-          ],
-        },
-      },
-      {},
-    );
-    expect(result).toBeDefined();
-    const msg = result!.message as Record<string, unknown>;
-    const content = msg.content as Array<Record<string, unknown>>;
-    expect(content[0].text).toBe("SSN is [SSN_1]");
-    expect((content[1] as any).type).toBe("image");
-    expect((content[1] as any).source.data).toBe("imagedata");
-  });
-  describe("audit logging", () => {
-    it("emits audit log when auditEnabled and PII found", () => {
-      const config = makeConfig({ auditEnabled: true });
-      const logger = makeLogger();
-      const handler = createToolResultHandler(config, regexEngine, logger);
-      handler(
-        { message: "SSN 123-45-6789", toolName: "file_read" },
-        {},
-      );
-      expect(logger.info).toHaveBeenCalledOnce();
-      const logCall = logger.info.mock.calls[0][0] as string;
-      expect(logCall).toContain("[FOGCLAW AUDIT]");
-      expect(logCall).toContain("tool_result_scan");
-      expect(logCall).toContain('"source":"tool_result"');
-      expect(logCall).toContain('"toolName":"file_read"');
-      expect(logCall).toContain('"SSN"');
-      // Must not contain raw PII
-      expect(logCall).not.toContain("123-45-6789");
-    });
-    it("does not emit audit log when auditEnabled is false", () => {
-      const config = makeConfig({ auditEnabled: false });
-      const logger = makeLogger();
-      const handler = createToolResultHandler(config, regexEngine, logger);
-      handler({ message: "SSN 123-45-6789" }, {});
-      expect(logger.info).not.toHaveBeenCalled();
-    });
-    it("does not emit audit log when no PII found", () => {
-      const config = makeConfig({ auditEnabled: true });
-      const logger = makeLogger();
-      const handler = createToolResultHandler(config, regexEngine, logger);
-      handler({ message: "clean text" }, {});
-      expect(logger.info).not.toHaveBeenCalled();
-    });
-    it("includes entity count and labels in audit log", () => {
-      const config = makeConfig({ auditEnabled: true });
-      const logger = makeLogger();
-      const handler = createToolResultHandler(config, regexEngine, logger);
-      handler(
-        { message: "Call 555-123-4567, email john@example.com" },
-        {},
-      );
-      const logCall = logger.info.mock.calls[0][0] as string;
-      const parsed = JSON.parse(logCall.replace("[FOGCLAW AUDIT] tool_result_scan ", ""));
-      expect(parsed.totalEntities).toBe(2);
-      expect(parsed.labels).toContain("PHONE");
-      expect(parsed.labels).toContain("EMAIL");
-      expect(parsed.source).toBe("tool_result");
-    });
-  });
-  it("handles multiple text blocks with PII in different blocks", () => {
-    const handler = createToolResultHandler(makeConfig(), regexEngine);
-    const result = handler(
-      {
-        message: {
-          content: [
-            { type: "text", text: "First block clean" },
-            { type: "text", text: "Second block SSN 123-45-6789" },
-          ],
-        },
-      },
-      {},
-    );
-    expect(result).toBeDefined();
-    const msg = result!.message as Record<string, unknown>;
-    const content = msg.content as Array<Record<string, unknown>>;
-    expect(content[0].text).toBe("First block clean");
-    expect(content[1].text).toBe("Second block SSN [SSN_1]");
-  });
-});

package/tsconfig.json DELETED Viewed

@@ -1,20 +0,0 @@
-{
-  "compilerOptions": {
-    "target": "ES2022",
-    "module": "ESNext",
-    "moduleResolution": "bundler",
-    "lib": ["ES2022"],
-    "outDir": "dist",
-    "rootDir": "src",
-    "strict": true,
-    "declaration": true,
-    "declarationMap": true,
-    "sourceMap": true,
-    "esModuleInterop": true,
-    "skipLibCheck": true,
-    "forceConsistentCasingInFileNames": true,
-    "resolveJsonModule": true
-  },
-  "include": ["src/**/*"],
-  "exclude": ["node_modules", "dist", "tests"]
-}