npm - @datasynx/agentic-ai-cartography - Versions diffs - 2.7.0 → 2.9.0 - Mend

@datasynx/agentic-ai-cartography 2.7.0 → 2.9.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (18) hide show

package/dist/api-bin.js +1 -1
package/dist/{chunk-HLWNO3RF.js → chunk-LRUWWHMQ.js} +174 -15
package/dist/chunk-LRUWWHMQ.js.map +1 -0
package/dist/{chunk-TBPGFEMQ.js → chunk-W4Q3TXHR.js} +162 -2
package/dist/chunk-W4Q3TXHR.js.map +1 -0
package/dist/cli.js +18 -5
package/dist/cli.js.map +1 -1
package/dist/index.cjs +322 -13
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +124 -10
package/dist/index.d.ts +124 -10
package/dist/index.js +319 -13
package/dist/index.js.map +1 -1
package/dist/mcp-bin.js +1 -1
package/package.json +3 -2
package/server.json +2 -2
package/dist/chunk-HLWNO3RF.js.map +0 -1
package/dist/chunk-TBPGFEMQ.js.map +0 -1

package/dist/index.d.cts CHANGED Viewed

@@ -1469,9 +1469,18 @@ interface NodeIdentity {
     /** Secondary merge key — content hash that catches `id` drift between machines. */
     contentHash: string;
 }
+/**
+ * A value that may be produced synchronously (SQLite, `better-sqlite3`) or
+ * asynchronously (a graph DB over the async Bolt driver, 4.3). The ingest core
+ * `await`s every backend call, so a sync implementation incurs no overhead and the
+ * SQLite path stays byte-for-byte synchronous.
+ */
+type Awaitable<T> = T | Promise<T>;
 /**
  * A provider-agnostic central store. All operations are scoped to a single tenant
- * (`org`); there is no cross-tenant read or write path.
+ * (`org`); there is no cross-tenant read or write path. Methods are **async-capable**
+ * (4.3): `SqliteStoreBackend` returns synchronously, `GraphStoreBackend` returns
+ * Promises; consumers await either.
  */
 interface StoreBackend {
     /**
@@ -1480,15 +1489,15 @@ interface StoreBackend {
      * `'created'` when this is the first observation of the logical node, `'merged'`
      * when it collapsed onto an existing one.
      */
-    upsertNode(org: string, node: DiscoveryNode, identity: NodeIdentity, contributor: Contributor): 'created' | 'merged';
+    upsertNode(org: string, node: DiscoveryNode, identity: NodeIdentity, contributor: Contributor): Awaitable<'created' | 'merged'>;
     /** Insert an edge under `org` (idempotent on the logical `(source, target, relationship)` key). */
-    insertEdge(org: string, edge: DiscoveryEdge): void;
+    insertEdge(org: string, edge: DiscoveryEdge): Awaitable<void>;
     /** Org-wide aggregate summary (merged counts across all contributors). */
-    getSummary(org: string): OrgSummary;
+    getSummary(org: string): Awaitable<OrgSummary>;
     /** Contributors for a merged logical node (test/audit helper). */
-    getContributors(globalId: string): Contributor[];
+    getContributors(globalId: string): Awaitable<Contributor[]>;
     /** Release any underlying resources. */
-    close(): void;
+    close(): Awaitable<void>;
 }
 /**
@@ -1519,6 +1528,76 @@ declare class SqliteStoreBackend implements StoreBackend {
     close(): void;
 }
+/**
+ * `GraphStoreBackend` (4.3) — an opt-in central-store backend over a Bolt-speaking
+ * graph database (Neo4j / Memgraph). Implements the async-capable {@link StoreBackend}
+ * seam so the central collector's merge + org-summary path can scale to 10K+ nodes on a
+ * native graph engine, while SQLite stays the zero-config default.
+ *
+ * `neo4j-driver` is an OPTIONAL dependency, dynamically imported by `openStoreBackend`
+ * (`src/store/index.ts`); this module depends only on a minimal structural Bolt interface,
+ * so it compiles and the package degrades gracefully when the driver is absent. The driver
+ * is injected (constructor), which also lets tests drive it with a mock — no live DB in CI.
+ *
+ * Merge identity mirrors SQLite: a logical node is keyed by `(org, globalId)`; the
+ * `contentHash` is stored + indexed for the id-drift secondary collapse (best-effort here,
+ * tracked as a follow-up). Contributors are `(org, globalId, machineId)` with max-confidence.
+ */
+interface BoltRecord {
+    get(key: string): unknown;
+}
+interface BoltResult {
+    records: BoltRecord[];
+}
+interface BoltSession {
+    run(cypher: string, params?: Record<string, unknown>): Promise<BoltResult>;
+    close(): Promise<void>;
+}
+interface BoltDriver {
+    session(): BoltSession;
+    close(): Promise<void>;
+    verifyConnectivity?(): Promise<unknown>;
+}
+declare class GraphStoreBackend implements StoreBackend {
+    private readonly driver;
+    constructor(driver: BoltDriver);
+    private run;
+    upsertNode(org: string, node: DiscoveryNode, identity: NodeIdentity, contributor: Contributor): Promise<'created' | 'merged'>;
+    insertEdge(org: string, edge: DiscoveryEdge): Promise<void>;
+    getSummary(org: string): Promise<OrgSummary>;
+    getContributors(globalId: string): Promise<Contributor[]>;
+    close(): Promise<void>;
+}
+/**
+ * Central-store backend factory (4.3).
+ *
+ * `openStoreBackend` returns a {@link GraphStoreBackend} only when a graph backend is
+ * explicitly requested AND the optional `neo4j-driver` is installed AND the server is
+ * reachable; otherwise it logs a structured WARN and returns the always-available
+ * {@link SqliteStoreBackend}. A missing driver or an unreachable graph server therefore
+ * NEVER breaks the collector — it degrades to SQLite (the "optional deps degrade" locked
+ * constraint). SQLite stays the zero-config default.
+ */
+interface StoreBackendOptions {
+    /** `'graph'` opts into the graph DB; anything else (default) uses SQLite. */
+    backend?: 'sqlite' | 'graph';
+    /** Bolt URL, e.g. `bolt://graph.internal:7687` or `neo4j+s://…`. */
+    graphUrl?: string;
+    graphUser?: string;
+    graphPassword?: string;
+    /** Injected driver factory (tests). Defaults to dynamically importing `neo4j-driver`. */
+    driverFactory?: (url: string, user: string, password: string) => Promise<BoltDriver>;
+}
+/**
+ * Resolve the central store backend. Graph when requested + available; else SQLite.
+ * The returned backend is owned by the caller (call `close()` on shutdown for the graph
+ * backend; the SQLite backend's `close()` is a no-op — the `CartographyDB` is shared).
+ */
+declare function openStoreBackend(db: CartographyDB, opts?: StoreBackendOptions): Promise<StoreBackend>;
 /**
  * `QueryBackend` — the **read-only** query seam for the API server (4.2).
  *
@@ -1770,7 +1849,7 @@ interface IngestOptions {
  * The caller (HTTP handler) wraps this in try/catch; the store's per-node upsert is
  * itself transactional, so a single bad node never half-writes a row.
  */
-declare function ingestEnvelope(store: StoreBackend, envelope: IngestEnvelope, opts?: IngestOptions): IngestResult;
+declare function ingestEnvelope(store: StoreBackend, envelope: IngestEnvelope, opts?: IngestOptions): Promise<IngestResult>;
 /**
  * Ingest backpressure for the central collector (4.7).
@@ -1825,7 +1904,7 @@ interface IngestResponse {
     /** Extra response headers (e.g. `Retry-After` on a 429). */
     headers?: Record<string, string>;
 }
-type IngestHandler = (body: unknown) => IngestResponse;
+type IngestHandler = (body: unknown) => Promise<IngestResponse>;
 interface IngestHandlerOptions extends IngestOptions {
     /** Per-org ingest rate limiter (4.7 backpressure). Over-quota → 429 + Retry-After. */
     quota?: RateLimiter;
@@ -2186,6 +2265,12 @@ interface CreateMcpServerOptions {
      * behaviour exactly. The org is normalized to a tenant.
      */
     org?: string;
+    /**
+     * Org-wide summary source (4.3). When set (server-mode with a graph backend), the
+     * org `get_summary` reads from here instead of `db.getOrgSummary` — so a graph-DB
+     * collector serves its own merged aggregate. Defaults to the SQLite central store.
+     */
+    orgSummary?: (org: string) => OrgSummary | Promise<OrgSummary>;
     /**
      * The authenticated principal (4.5 RBAC). When set, mutating tools (`run_discovery`)
      * are gated by role: a `viewer` is refused with a forbidden error. Read tools are
@@ -2229,7 +2314,11 @@ interface HttpOptions {
      * caps the body, parses JSON, and returns the hook's `{ status, body }`. When unset,
      * `/ingest` 404s exactly like any other path — the collector stays dark by default.
      */
-    onIngest?: (body: unknown) => {
+    onIngest?: (body: unknown) => Promise<{
+        status: number;
+        body: unknown;
+        headers?: Record<string, string>;
+    }> | {
         status: number;
         body: unknown;
         headers?: Record<string, string>;
@@ -2361,6 +2450,8 @@ interface ApiServerOptions extends BindGuardOptions {
     tenant?: TenantOptions;
     /** Expose `/graphql` (default true). */
     graphql?: boolean;
+    /** Serve the web dashboard at `/` and `/app` (default true; 4.1). */
+    dashboard?: boolean;
     /**
      * RBAC (4.5). When `store` holds credentials, the API runs in RBAC mode: a request's
      * bearer token must resolve to a {@link Principal} (else 401), the principal's role must
@@ -2524,6 +2615,8 @@ interface StartApiOptions {
     token?: string;
     /** Expose `/graphql` (default true). */
     graphql?: boolean;
+    /** Serve the web dashboard at `/` and `/app` (default true; 4.1). */
+    dashboard?: boolean;
     /** Default tenant served when a request names none. */
     tenant?: string;
     /** Reject unauthenticated requests even on loopback (RBAC `required` mode). */
@@ -2539,6 +2632,27 @@ declare function parseApiArgs(argv: string[]): ParsedApiArgs;
 /** Open the catalog, build the read backend, and start the API server. Returns the server. */
 declare function startApi(opts?: StartApiOptions): Promise<Server>;
+/**
+ * The self-hostable web dashboard (4.1).
+ *
+ * `dashboardHtml()` returns a SINGLE self-contained HTML document — inlined CSS +
+ * vanilla JS, **no CDN, no React/Vite/D3, zero new dependency** — that fetches the
+ * live `/v1/*` API of the same server (WS 4.2) and renders a searchable node list, an
+ * interactive Canvas topology with drill-down, and a detail panel. It is served by the
+ * API server at `GET /` and `GET /app`; the page shell is public, but the DATA it
+ * fetches is gated by the existing `/v1` bearer/RBAC (WS 4.2/4.5) — the page carries a
+ * bearer token (entered once, kept in sessionStorage) and an optional tenant header.
+ *
+ * Because the dashboard renders from the API response shapes (the `schemas.ts`
+ * projections), it inherits the consent-safe projection (no raw node metadata) for free.
+ */
+interface DashboardOptions {
+    /** Server version, shown in the header. */
+    version?: string;
+}
+/** Build the complete dashboard HTML document. */
+declare function dashboardHtml(opts?: DashboardOptions): string;
 declare const installedAppsScanner: Scanner;
 /** Well-known listening ports → node type + service name. */
@@ -4186,4 +4300,4 @@ declare function logInfo(message: string, context?: Record<string, unknown>): vo
 declare function logWarn(message: string, context?: Record<string, unknown>): void;
 declare function logError(message: string, context?: Record<string, unknown>): void;
-export { ACTIONS, ANOMALY_KINDS, ANOMALY_SEVERITIES, type Action, ActionSchema, type AgentProvider, type AgentRunContext, type AgentTool, type Anomaly, type AnomalyConfig, type AnomalyKind, type AnomalySeverity, type AnomalyThresholds, type AnonViolation, type AnonymizationLevel, type ApiServerOptions, type AskUserFn, type AuthConfig, AuthConfigSchema, AuthorizationError, type BackstageEntity, type BackstageMapOptions, type BindGuardOptions, CLIENTS, CONFIDENCE, COST_PERIODS, type CartographyConfig, CartographyDB, type CartographyMapData, type CentralDbConfig, CentralDbConfigSchema, type ClassifiedItem, type ClassifyInput, type ClassifyResult, type ClientSpec, type Cluster, ClusterSchema, type ComplianceInput, type ComplianceReport, ComplianceReportSchema, type ComplianceRule, ComplianceRuleSchema, type Condition, ConditionSchema, ConfigError, type ConfigFile, ConfigFileSchema, type ConfigFormat, type Connection, ConnectionSchema, type Contributor, type ControlResult, ControlResultSchema, type CostEntry, CostEntrySchema, type CostPeriod, type CostRecord, type CostSource, type CreateMcpServerOptions, type CredentialConfig, CredentialConfigSchema, type CredentialDb, type CredentialRecord, type CredentialStore, type CronFields, CsvCostSource, type CsvCostSourceOptions, DEFAULT_ANOMALY_THRESHOLDS, DEFAULT_FAST_MODEL, DEFAULT_INGEST_QUOTA, DEFAULT_LEAD_MODEL, DEFAULT_SERVER_NAME, DEFAULT_TENANT, DOMAIN_COLORS, DOMAIN_PALETTE, DRIFT_FIELDS, type DataAsset, DataAssetSchema, type DependencyQuery, type DiscoveryEdge, type DiscoveryEvent, type DiscoveryFn, type DiscoveryNode, type DriftAlert, type DriftAlertItem, type DriftConfig, DriftConfigSchema, type DriftField, type DriftItemKind, type DriftRunRow, type DriftSink, type DriftSinkConfig, EDGE_RELATIONSHIPS, type EdgeRelationship, type EdgeRow, EdgeSchema, type EmbeddingProvider, type EnrichResult, type EntryOptions, type EstablishedConn, type EvidenceKind, type FetchLike, type FragmentKind, type GraphSummary, type HealthResult, type HttpOptions, INGEST_SCHEMA_VERSION, type IngestEnvelope, IngestEnvelopeSchema, type IngestHandler, type IngestHandlerOptions, type IngestOptions, type IngestResponse, type IngestResult, type InstallPlan, InvalidTenantError, type JiraIssue, type JiraOptions, JiraSink, type JiraSinkOptions, LOOPBACK_HOSTS, type LocalDiscoveryOptions, type LocalDiscoveryResult, type LogEntry, type LogLevel, MCP_BIN, type MatchStrategy, NODE_TYPES, NODE_TYPE_GROUPS, type NlIntent, type NlQueryOptions, type NlQueryResult, type NlRelation, type NodeAttribution, type NodeChange, type NodeIdentity, type NodeQuery, type NodeRow, NodeSchema, type NodeType, type NodesResult, NotFoundError, OUTPUT_FORMATS, type OrgKeyOptions, type OrgSummary, type OsKind, type OutputFormat, PACKAGE_NAME, PAGERDUTY_ENQUEUE_URL, PENDING_STATUSES, PERSONAL, PORT_MAP, PRIVATE_IP, PUSH_SCHEMA_VERSION, type PagerDutyEvent, PagerDutySink, type PagerDutySinkOptions, type ParsedApiArgs, type PendingShareRow, type PendingStatus, type PlanOptions, type PolicyResult, type PostJsonOptions, type Principal, PrincipalSchema, type ProviderFactory, type ProviderName, ProviderRegistry, type PushItem, type PushOptions, type PushResult, type QueryBackend, type QuotaConfig, type QuotaDecision, RELATION_TO_DIRECTION, ROLES, RateLimiter, type ResolveContext, type ResolveOptions, type Role, RoleSchema, type RuleCheck, RuleCheckSchema, type RuleScope, type Ruleset, RulesetSchema, type RunDriftOptions, SCAN_ARG_PATTERNS, SCHEMA_VERSION, SDL, SECURITY_METADATA_KEYS, SEVERITIES, SEVERITY_WEIGHT, SHARING_LEVELS, type ScanArgKind, type ScanContext, type ScanHintParams, type ScanResult, type Scanner, type ScannerPlugin, type ScannerPluginApi, ScannerRegistry, ScannerShape, type ScheduleConfig, ScheduleConfigSchema, type ScheduledRunResult, type Scope, type SearchFn, type SemanticSearchOptions, type ServerEntry, type SessionRow, type Severity, type SharePreview, type SharePreviewEntry, type SharingLevel, SharingLevelSchema, type SharingPolicy, type ShellKind, type SlackMessage, SlackSink, SqliteCredentialStore, SqliteQueryBackend, SqliteStoreBackend, type StartApiOptions, StdoutSink, type StoreBackend, type SyncClassifyOptions, type SyncClassifyResult, TENANT_HEADER, type TenantContext, TenantMismatchError, type TenantOptions, type ToolResult, type TopologyDelta, type TopologyDiff, type TopologyInput, type TraversalResult, VectorStore, WebhookSink, type WebhookSinkOptions, applyInstall, applySharingLevel, assertReadOnly, assertSafeBind, assertSafeScanArg, assertSameTenant, assignColors, authorize, bearerToken, bookmarksScanner, buildCartographyToolHandlers, buildMapData, buildOpenApiDocument, buildReport, buildSinks, can, centralDbFromEnv, checkBearer, checkPrerequisites, checkReadOnly, clampText, classify, classifyDrift, cleanupTempFiles, cloudAwsScanner, cloudAzureScanner, cloudGcpScanner, codeAddMcpCommand, computeCentroid, computeClusterBounds, computeIdentity, connectionsScanner, contentHash, createBashTool, createCartographyTools, createClaudeProvider, createDefaultRegistry, createHashEmbedder, createIngestHandler, createLocalEmbedder, createMcpServer, createOllamaProvider, createOpenAIProvider, createScanRunner, createSemanticSearch, createSqliteQueryBackend, currentOs, cursorDeeplink, databasesScanner, deepMerge, defaultAllowedHosts, defaultConfig, defaultContext, defaultProviderRegistry, defaultRegistry, defaultServerEntry, definePlugin, deriveSessionName, detectAnomalies, detectOrphans, detectShadowIt, diffTopology, edgesToConnections, enrichCosts, entitiesToYaml, evaluateCheck, evaluateRule, evidenceLine, executeGraphql, executeNlQuery, exportAll, exportBackstageYAML, exportComplianceReport, exportCostCSV, exportCostSummary, exportDiscoveryApp, exportJGF, exportJSON, extractListeningPorts, filterBySeverity, findAnonViolations, formatComplianceText, formatJira, formatPagerDuty, formatSlack, generateDependencyMermaid, generateDiffMermaid, generateTopologyMermaid, getClient, getRuleset, globalId, groupByDomain, handleGraphqlGet, hashToken, hexCorners, hexDistance, hexNeighbors, hexRing, hexSpiral, hexToPixel, hmacKey, hostname, ingestEnvelope, installedAppsScanner, isLoopbackHost, isPersonalHost, isReadOnlyCommand, isRemembered, isSecureWebhookUrl, k8sScanner, keyMetaOf, layoutClusters, listClients, listRulesets, loadConfig, loadOrgKey, loadPlugins, loadRuleset, localDiscoveryFn, log, logDebug, logError, logInfo, logWarn, machineId, maxSeverity, mcpServerObject, newAnomalies, nextRun, nodesToAssets, normalizeId, normalizeTenant, orgKeyPath, osUser, parseApiArgs, parseComposeDeps, parseConfig, parseConnectionString, parseCostCsv, parseCron, parseEstablished, parseNginxUpstreams, parseNlQuery, parseScanHint, pixelToHex, planInstall, portsScanner, postJson, previewShare, pseudonymize, pseudonymizeFragment, pseudonymizeString, pushDeltas, readConfigFile, redactConnectionString, redactSecrets, redactValue, renderDiff, resolveEffectiveLevel, resolveNlQuery, resolvePrincipal, resolveSharingLevel, resolveTenant, revalidateAnonymized, reversalKey, reversePseudonym, rotateOrgKey, runApi, runDiscovery, runDrift, runHttp, runLocalDiscovery, runOnce, runStdio, runSyncClassify, safeEnv, safeJson, safetyHook, sanitizeUntrusted, sanitizeValue, scopeReads, scoreTopology, securityRelevantChange, serializeConfig, serviceConfigScanner, setVerbose, shadeVariant, shapeToJsonSchema, shareHash, splitSegments, stableStringify, startApi, stripSensitive, timingSafeEqual, toBackstageEntities, validateScanner, vscodeDeeplink, zodToJsonSchema };
+export { ACTIONS, ANOMALY_KINDS, ANOMALY_SEVERITIES, type Action, ActionSchema, type AgentProvider, type AgentRunContext, type AgentTool, type Anomaly, type AnomalyConfig, type AnomalyKind, type AnomalySeverity, type AnomalyThresholds, type AnonViolation, type AnonymizationLevel, type ApiServerOptions, type AskUserFn, type AuthConfig, AuthConfigSchema, AuthorizationError, type Awaitable, type BackstageEntity, type BackstageMapOptions, type BindGuardOptions, type BoltDriver, type BoltRecord, type BoltResult, type BoltSession, CLIENTS, CONFIDENCE, COST_PERIODS, type CartographyConfig, CartographyDB, type CartographyMapData, type CentralDbConfig, CentralDbConfigSchema, type ClassifiedItem, type ClassifyInput, type ClassifyResult, type ClientSpec, type Cluster, ClusterSchema, type ComplianceInput, type ComplianceReport, ComplianceReportSchema, type ComplianceRule, ComplianceRuleSchema, type Condition, ConditionSchema, ConfigError, type ConfigFile, ConfigFileSchema, type ConfigFormat, type Connection, ConnectionSchema, type Contributor, type ControlResult, ControlResultSchema, type CostEntry, CostEntrySchema, type CostPeriod, type CostRecord, type CostSource, type CreateMcpServerOptions, type CredentialConfig, CredentialConfigSchema, type CredentialDb, type CredentialRecord, type CredentialStore, type CronFields, CsvCostSource, type CsvCostSourceOptions, DEFAULT_ANOMALY_THRESHOLDS, DEFAULT_FAST_MODEL, DEFAULT_INGEST_QUOTA, DEFAULT_LEAD_MODEL, DEFAULT_SERVER_NAME, DEFAULT_TENANT, DOMAIN_COLORS, DOMAIN_PALETTE, DRIFT_FIELDS, type DashboardOptions, type DataAsset, DataAssetSchema, type DependencyQuery, type DiscoveryEdge, type DiscoveryEvent, type DiscoveryFn, type DiscoveryNode, type DriftAlert, type DriftAlertItem, type DriftConfig, DriftConfigSchema, type DriftField, type DriftItemKind, type DriftRunRow, type DriftSink, type DriftSinkConfig, EDGE_RELATIONSHIPS, type EdgeRelationship, type EdgeRow, EdgeSchema, type EmbeddingProvider, type EnrichResult, type EntryOptions, type EstablishedConn, type EvidenceKind, type FetchLike, type FragmentKind, GraphStoreBackend, type GraphSummary, type HealthResult, type HttpOptions, INGEST_SCHEMA_VERSION, type IngestEnvelope, IngestEnvelopeSchema, type IngestHandler, type IngestHandlerOptions, type IngestOptions, type IngestResponse, type IngestResult, type InstallPlan, InvalidTenantError, type JiraIssue, type JiraOptions, JiraSink, type JiraSinkOptions, LOOPBACK_HOSTS, type LocalDiscoveryOptions, type LocalDiscoveryResult, type LogEntry, type LogLevel, MCP_BIN, type MatchStrategy, NODE_TYPES, NODE_TYPE_GROUPS, type NlIntent, type NlQueryOptions, type NlQueryResult, type NlRelation, type NodeAttribution, type NodeChange, type NodeIdentity, type NodeQuery, type NodeRow, NodeSchema, type NodeType, type NodesResult, NotFoundError, OUTPUT_FORMATS, type OrgKeyOptions, type OrgSummary, type OsKind, type OutputFormat, PACKAGE_NAME, PAGERDUTY_ENQUEUE_URL, PENDING_STATUSES, PERSONAL, PORT_MAP, PRIVATE_IP, PUSH_SCHEMA_VERSION, type PagerDutyEvent, PagerDutySink, type PagerDutySinkOptions, type ParsedApiArgs, type PendingShareRow, type PendingStatus, type PlanOptions, type PolicyResult, type PostJsonOptions, type Principal, PrincipalSchema, type ProviderFactory, type ProviderName, ProviderRegistry, type PushItem, type PushOptions, type PushResult, type QueryBackend, type QuotaConfig, type QuotaDecision, RELATION_TO_DIRECTION, ROLES, RateLimiter, type ResolveContext, type ResolveOptions, type Role, RoleSchema, type RuleCheck, RuleCheckSchema, type RuleScope, type Ruleset, RulesetSchema, type RunDriftOptions, SCAN_ARG_PATTERNS, SCHEMA_VERSION, SDL, SECURITY_METADATA_KEYS, SEVERITIES, SEVERITY_WEIGHT, SHARING_LEVELS, type ScanArgKind, type ScanContext, type ScanHintParams, type ScanResult, type Scanner, type ScannerPlugin, type ScannerPluginApi, ScannerRegistry, ScannerShape, type ScheduleConfig, ScheduleConfigSchema, type ScheduledRunResult, type Scope, type SearchFn, type SemanticSearchOptions, type ServerEntry, type SessionRow, type Severity, type SharePreview, type SharePreviewEntry, type SharingLevel, SharingLevelSchema, type SharingPolicy, type ShellKind, type SlackMessage, SlackSink, SqliteCredentialStore, SqliteQueryBackend, SqliteStoreBackend, type StartApiOptions, StdoutSink, type StoreBackend, type StoreBackendOptions, type SyncClassifyOptions, type SyncClassifyResult, TENANT_HEADER, type TenantContext, TenantMismatchError, type TenantOptions, type ToolResult, type TopologyDelta, type TopologyDiff, type TopologyInput, type TraversalResult, VectorStore, WebhookSink, type WebhookSinkOptions, applyInstall, applySharingLevel, assertReadOnly, assertSafeBind, assertSafeScanArg, assertSameTenant, assignColors, authorize, bearerToken, bookmarksScanner, buildCartographyToolHandlers, buildMapData, buildOpenApiDocument, buildReport, buildSinks, can, centralDbFromEnv, checkBearer, checkPrerequisites, checkReadOnly, clampText, classify, classifyDrift, cleanupTempFiles, cloudAwsScanner, cloudAzureScanner, cloudGcpScanner, codeAddMcpCommand, computeCentroid, computeClusterBounds, computeIdentity, connectionsScanner, contentHash, createBashTool, createCartographyTools, createClaudeProvider, createDefaultRegistry, createHashEmbedder, createIngestHandler, createLocalEmbedder, createMcpServer, createOllamaProvider, createOpenAIProvider, createScanRunner, createSemanticSearch, createSqliteQueryBackend, currentOs, cursorDeeplink, dashboardHtml, databasesScanner, deepMerge, defaultAllowedHosts, defaultConfig, defaultContext, defaultProviderRegistry, defaultRegistry, defaultServerEntry, definePlugin, deriveSessionName, detectAnomalies, detectOrphans, detectShadowIt, diffTopology, edgesToConnections, enrichCosts, entitiesToYaml, evaluateCheck, evaluateRule, evidenceLine, executeGraphql, executeNlQuery, exportAll, exportBackstageYAML, exportComplianceReport, exportCostCSV, exportCostSummary, exportDiscoveryApp, exportJGF, exportJSON, extractListeningPorts, filterBySeverity, findAnonViolations, formatComplianceText, formatJira, formatPagerDuty, formatSlack, generateDependencyMermaid, generateDiffMermaid, generateTopologyMermaid, getClient, getRuleset, globalId, groupByDomain, handleGraphqlGet, hashToken, hexCorners, hexDistance, hexNeighbors, hexRing, hexSpiral, hexToPixel, hmacKey, hostname, ingestEnvelope, installedAppsScanner, isLoopbackHost, isPersonalHost, isReadOnlyCommand, isRemembered, isSecureWebhookUrl, k8sScanner, keyMetaOf, layoutClusters, listClients, listRulesets, loadConfig, loadOrgKey, loadPlugins, loadRuleset, localDiscoveryFn, log, logDebug, logError, logInfo, logWarn, machineId, maxSeverity, mcpServerObject, newAnomalies, nextRun, nodesToAssets, normalizeId, normalizeTenant, openStoreBackend, orgKeyPath, osUser, parseApiArgs, parseComposeDeps, parseConfig, parseConnectionString, parseCostCsv, parseCron, parseEstablished, parseNginxUpstreams, parseNlQuery, parseScanHint, pixelToHex, planInstall, portsScanner, postJson, previewShare, pseudonymize, pseudonymizeFragment, pseudonymizeString, pushDeltas, readConfigFile, redactConnectionString, redactSecrets, redactValue, renderDiff, resolveEffectiveLevel, resolveNlQuery, resolvePrincipal, resolveSharingLevel, resolveTenant, revalidateAnonymized, reversalKey, reversePseudonym, rotateOrgKey, runApi, runDiscovery, runDrift, runHttp, runLocalDiscovery, runOnce, runStdio, runSyncClassify, safeEnv, safeJson, safetyHook, sanitizeUntrusted, sanitizeValue, scopeReads, scoreTopology, securityRelevantChange, serializeConfig, serviceConfigScanner, setVerbose, shadeVariant, shapeToJsonSchema, shareHash, splitSegments, stableStringify, startApi, stripSensitive, timingSafeEqual, toBackstageEntities, validateScanner, vscodeDeeplink, zodToJsonSchema };

package/dist/index.d.ts CHANGED Viewed

@@ -1469,9 +1469,18 @@ interface NodeIdentity {
     /** Secondary merge key — content hash that catches `id` drift between machines. */
     contentHash: string;
 }
+/**
+ * A value that may be produced synchronously (SQLite, `better-sqlite3`) or
+ * asynchronously (a graph DB over the async Bolt driver, 4.3). The ingest core
+ * `await`s every backend call, so a sync implementation incurs no overhead and the
+ * SQLite path stays byte-for-byte synchronous.
+ */
+type Awaitable<T> = T | Promise<T>;
 /**
  * A provider-agnostic central store. All operations are scoped to a single tenant
- * (`org`); there is no cross-tenant read or write path.
+ * (`org`); there is no cross-tenant read or write path. Methods are **async-capable**
+ * (4.3): `SqliteStoreBackend` returns synchronously, `GraphStoreBackend` returns
+ * Promises; consumers await either.
  */
 interface StoreBackend {
     /**
@@ -1480,15 +1489,15 @@ interface StoreBackend {
      * `'created'` when this is the first observation of the logical node, `'merged'`
      * when it collapsed onto an existing one.
      */
-    upsertNode(org: string, node: DiscoveryNode, identity: NodeIdentity, contributor: Contributor): 'created' | 'merged';
+    upsertNode(org: string, node: DiscoveryNode, identity: NodeIdentity, contributor: Contributor): Awaitable<'created' | 'merged'>;
     /** Insert an edge under `org` (idempotent on the logical `(source, target, relationship)` key). */
-    insertEdge(org: string, edge: DiscoveryEdge): void;
+    insertEdge(org: string, edge: DiscoveryEdge): Awaitable<void>;
     /** Org-wide aggregate summary (merged counts across all contributors). */
-    getSummary(org: string): OrgSummary;
+    getSummary(org: string): Awaitable<OrgSummary>;
     /** Contributors for a merged logical node (test/audit helper). */
-    getContributors(globalId: string): Contributor[];
+    getContributors(globalId: string): Awaitable<Contributor[]>;
     /** Release any underlying resources. */
-    close(): void;
+    close(): Awaitable<void>;
 }
 /**
@@ -1519,6 +1528,76 @@ declare class SqliteStoreBackend implements StoreBackend {
     close(): void;
 }
+/**
+ * `GraphStoreBackend` (4.3) — an opt-in central-store backend over a Bolt-speaking
+ * graph database (Neo4j / Memgraph). Implements the async-capable {@link StoreBackend}
+ * seam so the central collector's merge + org-summary path can scale to 10K+ nodes on a
+ * native graph engine, while SQLite stays the zero-config default.
+ *
+ * `neo4j-driver` is an OPTIONAL dependency, dynamically imported by `openStoreBackend`
+ * (`src/store/index.ts`); this module depends only on a minimal structural Bolt interface,
+ * so it compiles and the package degrades gracefully when the driver is absent. The driver
+ * is injected (constructor), which also lets tests drive it with a mock — no live DB in CI.
+ *
+ * Merge identity mirrors SQLite: a logical node is keyed by `(org, globalId)`; the
+ * `contentHash` is stored + indexed for the id-drift secondary collapse (best-effort here,
+ * tracked as a follow-up). Contributors are `(org, globalId, machineId)` with max-confidence.
+ */
+interface BoltRecord {
+    get(key: string): unknown;
+}
+interface BoltResult {
+    records: BoltRecord[];
+}
+interface BoltSession {
+    run(cypher: string, params?: Record<string, unknown>): Promise<BoltResult>;
+    close(): Promise<void>;
+}
+interface BoltDriver {
+    session(): BoltSession;
+    close(): Promise<void>;
+    verifyConnectivity?(): Promise<unknown>;
+}
+declare class GraphStoreBackend implements StoreBackend {
+    private readonly driver;
+    constructor(driver: BoltDriver);
+    private run;
+    upsertNode(org: string, node: DiscoveryNode, identity: NodeIdentity, contributor: Contributor): Promise<'created' | 'merged'>;
+    insertEdge(org: string, edge: DiscoveryEdge): Promise<void>;
+    getSummary(org: string): Promise<OrgSummary>;
+    getContributors(globalId: string): Promise<Contributor[]>;
+    close(): Promise<void>;
+}
+/**
+ * Central-store backend factory (4.3).
+ *
+ * `openStoreBackend` returns a {@link GraphStoreBackend} only when a graph backend is
+ * explicitly requested AND the optional `neo4j-driver` is installed AND the server is
+ * reachable; otherwise it logs a structured WARN and returns the always-available
+ * {@link SqliteStoreBackend}. A missing driver or an unreachable graph server therefore
+ * NEVER breaks the collector — it degrades to SQLite (the "optional deps degrade" locked
+ * constraint). SQLite stays the zero-config default.
+ */
+interface StoreBackendOptions {
+    /** `'graph'` opts into the graph DB; anything else (default) uses SQLite. */
+    backend?: 'sqlite' | 'graph';
+    /** Bolt URL, e.g. `bolt://graph.internal:7687` or `neo4j+s://…`. */
+    graphUrl?: string;
+    graphUser?: string;
+    graphPassword?: string;
+    /** Injected driver factory (tests). Defaults to dynamically importing `neo4j-driver`. */
+    driverFactory?: (url: string, user: string, password: string) => Promise<BoltDriver>;
+}
+/**
+ * Resolve the central store backend. Graph when requested + available; else SQLite.
+ * The returned backend is owned by the caller (call `close()` on shutdown for the graph
+ * backend; the SQLite backend's `close()` is a no-op — the `CartographyDB` is shared).
+ */
+declare function openStoreBackend(db: CartographyDB, opts?: StoreBackendOptions): Promise<StoreBackend>;
 /**
  * `QueryBackend` — the **read-only** query seam for the API server (4.2).
  *
@@ -1770,7 +1849,7 @@ interface IngestOptions {
  * The caller (HTTP handler) wraps this in try/catch; the store's per-node upsert is
  * itself transactional, so a single bad node never half-writes a row.
  */
-declare function ingestEnvelope(store: StoreBackend, envelope: IngestEnvelope, opts?: IngestOptions): IngestResult;
+declare function ingestEnvelope(store: StoreBackend, envelope: IngestEnvelope, opts?: IngestOptions): Promise<IngestResult>;
 /**
  * Ingest backpressure for the central collector (4.7).
@@ -1825,7 +1904,7 @@ interface IngestResponse {
     /** Extra response headers (e.g. `Retry-After` on a 429). */
     headers?: Record<string, string>;
 }
-type IngestHandler = (body: unknown) => IngestResponse;
+type IngestHandler = (body: unknown) => Promise<IngestResponse>;
 interface IngestHandlerOptions extends IngestOptions {
     /** Per-org ingest rate limiter (4.7 backpressure). Over-quota → 429 + Retry-After. */
     quota?: RateLimiter;
@@ -2186,6 +2265,12 @@ interface CreateMcpServerOptions {
      * behaviour exactly. The org is normalized to a tenant.
      */
     org?: string;
+    /**
+     * Org-wide summary source (4.3). When set (server-mode with a graph backend), the
+     * org `get_summary` reads from here instead of `db.getOrgSummary` — so a graph-DB
+     * collector serves its own merged aggregate. Defaults to the SQLite central store.
+     */
+    orgSummary?: (org: string) => OrgSummary | Promise<OrgSummary>;
     /**
      * The authenticated principal (4.5 RBAC). When set, mutating tools (`run_discovery`)
      * are gated by role: a `viewer` is refused with a forbidden error. Read tools are
@@ -2229,7 +2314,11 @@ interface HttpOptions {
      * caps the body, parses JSON, and returns the hook's `{ status, body }`. When unset,
      * `/ingest` 404s exactly like any other path — the collector stays dark by default.
      */
-    onIngest?: (body: unknown) => {
+    onIngest?: (body: unknown) => Promise<{
+        status: number;
+        body: unknown;
+        headers?: Record<string, string>;
+    }> | {
         status: number;
         body: unknown;
         headers?: Record<string, string>;
@@ -2361,6 +2450,8 @@ interface ApiServerOptions extends BindGuardOptions {
     tenant?: TenantOptions;
     /** Expose `/graphql` (default true). */
     graphql?: boolean;
+    /** Serve the web dashboard at `/` and `/app` (default true; 4.1). */
+    dashboard?: boolean;
     /**
      * RBAC (4.5). When `store` holds credentials, the API runs in RBAC mode: a request's
      * bearer token must resolve to a {@link Principal} (else 401), the principal's role must
@@ -2524,6 +2615,8 @@ interface StartApiOptions {
     token?: string;
     /** Expose `/graphql` (default true). */
     graphql?: boolean;
+    /** Serve the web dashboard at `/` and `/app` (default true; 4.1). */
+    dashboard?: boolean;
     /** Default tenant served when a request names none. */
     tenant?: string;
     /** Reject unauthenticated requests even on loopback (RBAC `required` mode). */
@@ -2539,6 +2632,27 @@ declare function parseApiArgs(argv: string[]): ParsedApiArgs;
 /** Open the catalog, build the read backend, and start the API server. Returns the server. */
 declare function startApi(opts?: StartApiOptions): Promise<Server>;
+/**
+ * The self-hostable web dashboard (4.1).
+ *
+ * `dashboardHtml()` returns a SINGLE self-contained HTML document — inlined CSS +
+ * vanilla JS, **no CDN, no React/Vite/D3, zero new dependency** — that fetches the
+ * live `/v1/*` API of the same server (WS 4.2) and renders a searchable node list, an
+ * interactive Canvas topology with drill-down, and a detail panel. It is served by the
+ * API server at `GET /` and `GET /app`; the page shell is public, but the DATA it
+ * fetches is gated by the existing `/v1` bearer/RBAC (WS 4.2/4.5) — the page carries a
+ * bearer token (entered once, kept in sessionStorage) and an optional tenant header.
+ *
+ * Because the dashboard renders from the API response shapes (the `schemas.ts`
+ * projections), it inherits the consent-safe projection (no raw node metadata) for free.
+ */
+interface DashboardOptions {
+    /** Server version, shown in the header. */
+    version?: string;
+}
+/** Build the complete dashboard HTML document. */
+declare function dashboardHtml(opts?: DashboardOptions): string;
 declare const installedAppsScanner: Scanner;
 /** Well-known listening ports → node type + service name. */
@@ -4186,4 +4300,4 @@ declare function logInfo(message: string, context?: Record<string, unknown>): vo
 declare function logWarn(message: string, context?: Record<string, unknown>): void;
 declare function logError(message: string, context?: Record<string, unknown>): void;
-export { ACTIONS, ANOMALY_KINDS, ANOMALY_SEVERITIES, type Action, ActionSchema, type AgentProvider, type AgentRunContext, type AgentTool, type Anomaly, type AnomalyConfig, type AnomalyKind, type AnomalySeverity, type AnomalyThresholds, type AnonViolation, type AnonymizationLevel, type ApiServerOptions, type AskUserFn, type AuthConfig, AuthConfigSchema, AuthorizationError, type BackstageEntity, type BackstageMapOptions, type BindGuardOptions, CLIENTS, CONFIDENCE, COST_PERIODS, type CartographyConfig, CartographyDB, type CartographyMapData, type CentralDbConfig, CentralDbConfigSchema, type ClassifiedItem, type ClassifyInput, type ClassifyResult, type ClientSpec, type Cluster, ClusterSchema, type ComplianceInput, type ComplianceReport, ComplianceReportSchema, type ComplianceRule, ComplianceRuleSchema, type Condition, ConditionSchema, ConfigError, type ConfigFile, ConfigFileSchema, type ConfigFormat, type Connection, ConnectionSchema, type Contributor, type ControlResult, ControlResultSchema, type CostEntry, CostEntrySchema, type CostPeriod, type CostRecord, type CostSource, type CreateMcpServerOptions, type CredentialConfig, CredentialConfigSchema, type CredentialDb, type CredentialRecord, type CredentialStore, type CronFields, CsvCostSource, type CsvCostSourceOptions, DEFAULT_ANOMALY_THRESHOLDS, DEFAULT_FAST_MODEL, DEFAULT_INGEST_QUOTA, DEFAULT_LEAD_MODEL, DEFAULT_SERVER_NAME, DEFAULT_TENANT, DOMAIN_COLORS, DOMAIN_PALETTE, DRIFT_FIELDS, type DataAsset, DataAssetSchema, type DependencyQuery, type DiscoveryEdge, type DiscoveryEvent, type DiscoveryFn, type DiscoveryNode, type DriftAlert, type DriftAlertItem, type DriftConfig, DriftConfigSchema, type DriftField, type DriftItemKind, type DriftRunRow, type DriftSink, type DriftSinkConfig, EDGE_RELATIONSHIPS, type EdgeRelationship, type EdgeRow, EdgeSchema, type EmbeddingProvider, type EnrichResult, type EntryOptions, type EstablishedConn, type EvidenceKind, type FetchLike, type FragmentKind, type GraphSummary, type HealthResult, type HttpOptions, INGEST_SCHEMA_VERSION, type IngestEnvelope, IngestEnvelopeSchema, type IngestHandler, type IngestHandlerOptions, type IngestOptions, type IngestResponse, type IngestResult, type InstallPlan, InvalidTenantError, type JiraIssue, type JiraOptions, JiraSink, type JiraSinkOptions, LOOPBACK_HOSTS, type LocalDiscoveryOptions, type LocalDiscoveryResult, type LogEntry, type LogLevel, MCP_BIN, type MatchStrategy, NODE_TYPES, NODE_TYPE_GROUPS, type NlIntent, type NlQueryOptions, type NlQueryResult, type NlRelation, type NodeAttribution, type NodeChange, type NodeIdentity, type NodeQuery, type NodeRow, NodeSchema, type NodeType, type NodesResult, NotFoundError, OUTPUT_FORMATS, type OrgKeyOptions, type OrgSummary, type OsKind, type OutputFormat, PACKAGE_NAME, PAGERDUTY_ENQUEUE_URL, PENDING_STATUSES, PERSONAL, PORT_MAP, PRIVATE_IP, PUSH_SCHEMA_VERSION, type PagerDutyEvent, PagerDutySink, type PagerDutySinkOptions, type ParsedApiArgs, type PendingShareRow, type PendingStatus, type PlanOptions, type PolicyResult, type PostJsonOptions, type Principal, PrincipalSchema, type ProviderFactory, type ProviderName, ProviderRegistry, type PushItem, type PushOptions, type PushResult, type QueryBackend, type QuotaConfig, type QuotaDecision, RELATION_TO_DIRECTION, ROLES, RateLimiter, type ResolveContext, type ResolveOptions, type Role, RoleSchema, type RuleCheck, RuleCheckSchema, type RuleScope, type Ruleset, RulesetSchema, type RunDriftOptions, SCAN_ARG_PATTERNS, SCHEMA_VERSION, SDL, SECURITY_METADATA_KEYS, SEVERITIES, SEVERITY_WEIGHT, SHARING_LEVELS, type ScanArgKind, type ScanContext, type ScanHintParams, type ScanResult, type Scanner, type ScannerPlugin, type ScannerPluginApi, ScannerRegistry, ScannerShape, type ScheduleConfig, ScheduleConfigSchema, type ScheduledRunResult, type Scope, type SearchFn, type SemanticSearchOptions, type ServerEntry, type SessionRow, type Severity, type SharePreview, type SharePreviewEntry, type SharingLevel, SharingLevelSchema, type SharingPolicy, type ShellKind, type SlackMessage, SlackSink, SqliteCredentialStore, SqliteQueryBackend, SqliteStoreBackend, type StartApiOptions, StdoutSink, type StoreBackend, type SyncClassifyOptions, type SyncClassifyResult, TENANT_HEADER, type TenantContext, TenantMismatchError, type TenantOptions, type ToolResult, type TopologyDelta, type TopologyDiff, type TopologyInput, type TraversalResult, VectorStore, WebhookSink, type WebhookSinkOptions, applyInstall, applySharingLevel, assertReadOnly, assertSafeBind, assertSafeScanArg, assertSameTenant, assignColors, authorize, bearerToken, bookmarksScanner, buildCartographyToolHandlers, buildMapData, buildOpenApiDocument, buildReport, buildSinks, can, centralDbFromEnv, checkBearer, checkPrerequisites, checkReadOnly, clampText, classify, classifyDrift, cleanupTempFiles, cloudAwsScanner, cloudAzureScanner, cloudGcpScanner, codeAddMcpCommand, computeCentroid, computeClusterBounds, computeIdentity, connectionsScanner, contentHash, createBashTool, createCartographyTools, createClaudeProvider, createDefaultRegistry, createHashEmbedder, createIngestHandler, createLocalEmbedder, createMcpServer, createOllamaProvider, createOpenAIProvider, createScanRunner, createSemanticSearch, createSqliteQueryBackend, currentOs, cursorDeeplink, databasesScanner, deepMerge, defaultAllowedHosts, defaultConfig, defaultContext, defaultProviderRegistry, defaultRegistry, defaultServerEntry, definePlugin, deriveSessionName, detectAnomalies, detectOrphans, detectShadowIt, diffTopology, edgesToConnections, enrichCosts, entitiesToYaml, evaluateCheck, evaluateRule, evidenceLine, executeGraphql, executeNlQuery, exportAll, exportBackstageYAML, exportComplianceReport, exportCostCSV, exportCostSummary, exportDiscoveryApp, exportJGF, exportJSON, extractListeningPorts, filterBySeverity, findAnonViolations, formatComplianceText, formatJira, formatPagerDuty, formatSlack, generateDependencyMermaid, generateDiffMermaid, generateTopologyMermaid, getClient, getRuleset, globalId, groupByDomain, handleGraphqlGet, hashToken, hexCorners, hexDistance, hexNeighbors, hexRing, hexSpiral, hexToPixel, hmacKey, hostname, ingestEnvelope, installedAppsScanner, isLoopbackHost, isPersonalHost, isReadOnlyCommand, isRemembered, isSecureWebhookUrl, k8sScanner, keyMetaOf, layoutClusters, listClients, listRulesets, loadConfig, loadOrgKey, loadPlugins, loadRuleset, localDiscoveryFn, log, logDebug, logError, logInfo, logWarn, machineId, maxSeverity, mcpServerObject, newAnomalies, nextRun, nodesToAssets, normalizeId, normalizeTenant, orgKeyPath, osUser, parseApiArgs, parseComposeDeps, parseConfig, parseConnectionString, parseCostCsv, parseCron, parseEstablished, parseNginxUpstreams, parseNlQuery, parseScanHint, pixelToHex, planInstall, portsScanner, postJson, previewShare, pseudonymize, pseudonymizeFragment, pseudonymizeString, pushDeltas, readConfigFile, redactConnectionString, redactSecrets, redactValue, renderDiff, resolveEffectiveLevel, resolveNlQuery, resolvePrincipal, resolveSharingLevel, resolveTenant, revalidateAnonymized, reversalKey, reversePseudonym, rotateOrgKey, runApi, runDiscovery, runDrift, runHttp, runLocalDiscovery, runOnce, runStdio, runSyncClassify, safeEnv, safeJson, safetyHook, sanitizeUntrusted, sanitizeValue, scopeReads, scoreTopology, securityRelevantChange, serializeConfig, serviceConfigScanner, setVerbose, shadeVariant, shapeToJsonSchema, shareHash, splitSegments, stableStringify, startApi, stripSensitive, timingSafeEqual, toBackstageEntities, validateScanner, vscodeDeeplink, zodToJsonSchema };
+export { ACTIONS, ANOMALY_KINDS, ANOMALY_SEVERITIES, type Action, ActionSchema, type AgentProvider, type AgentRunContext, type AgentTool, type Anomaly, type AnomalyConfig, type AnomalyKind, type AnomalySeverity, type AnomalyThresholds, type AnonViolation, type AnonymizationLevel, type ApiServerOptions, type AskUserFn, type AuthConfig, AuthConfigSchema, AuthorizationError, type Awaitable, type BackstageEntity, type BackstageMapOptions, type BindGuardOptions, type BoltDriver, type BoltRecord, type BoltResult, type BoltSession, CLIENTS, CONFIDENCE, COST_PERIODS, type CartographyConfig, CartographyDB, type CartographyMapData, type CentralDbConfig, CentralDbConfigSchema, type ClassifiedItem, type ClassifyInput, type ClassifyResult, type ClientSpec, type Cluster, ClusterSchema, type ComplianceInput, type ComplianceReport, ComplianceReportSchema, type ComplianceRule, ComplianceRuleSchema, type Condition, ConditionSchema, ConfigError, type ConfigFile, ConfigFileSchema, type ConfigFormat, type Connection, ConnectionSchema, type Contributor, type ControlResult, ControlResultSchema, type CostEntry, CostEntrySchema, type CostPeriod, type CostRecord, type CostSource, type CreateMcpServerOptions, type CredentialConfig, CredentialConfigSchema, type CredentialDb, type CredentialRecord, type CredentialStore, type CronFields, CsvCostSource, type CsvCostSourceOptions, DEFAULT_ANOMALY_THRESHOLDS, DEFAULT_FAST_MODEL, DEFAULT_INGEST_QUOTA, DEFAULT_LEAD_MODEL, DEFAULT_SERVER_NAME, DEFAULT_TENANT, DOMAIN_COLORS, DOMAIN_PALETTE, DRIFT_FIELDS, type DashboardOptions, type DataAsset, DataAssetSchema, type DependencyQuery, type DiscoveryEdge, type DiscoveryEvent, type DiscoveryFn, type DiscoveryNode, type DriftAlert, type DriftAlertItem, type DriftConfig, DriftConfigSchema, type DriftField, type DriftItemKind, type DriftRunRow, type DriftSink, type DriftSinkConfig, EDGE_RELATIONSHIPS, type EdgeRelationship, type EdgeRow, EdgeSchema, type EmbeddingProvider, type EnrichResult, type EntryOptions, type EstablishedConn, type EvidenceKind, type FetchLike, type FragmentKind, GraphStoreBackend, type GraphSummary, type HealthResult, type HttpOptions, INGEST_SCHEMA_VERSION, type IngestEnvelope, IngestEnvelopeSchema, type IngestHandler, type IngestHandlerOptions, type IngestOptions, type IngestResponse, type IngestResult, type InstallPlan, InvalidTenantError, type JiraIssue, type JiraOptions, JiraSink, type JiraSinkOptions, LOOPBACK_HOSTS, type LocalDiscoveryOptions, type LocalDiscoveryResult, type LogEntry, type LogLevel, MCP_BIN, type MatchStrategy, NODE_TYPES, NODE_TYPE_GROUPS, type NlIntent, type NlQueryOptions, type NlQueryResult, type NlRelation, type NodeAttribution, type NodeChange, type NodeIdentity, type NodeQuery, type NodeRow, NodeSchema, type NodeType, type NodesResult, NotFoundError, OUTPUT_FORMATS, type OrgKeyOptions, type OrgSummary, type OsKind, type OutputFormat, PACKAGE_NAME, PAGERDUTY_ENQUEUE_URL, PENDING_STATUSES, PERSONAL, PORT_MAP, PRIVATE_IP, PUSH_SCHEMA_VERSION, type PagerDutyEvent, PagerDutySink, type PagerDutySinkOptions, type ParsedApiArgs, type PendingShareRow, type PendingStatus, type PlanOptions, type PolicyResult, type PostJsonOptions, type Principal, PrincipalSchema, type ProviderFactory, type ProviderName, ProviderRegistry, type PushItem, type PushOptions, type PushResult, type QueryBackend, type QuotaConfig, type QuotaDecision, RELATION_TO_DIRECTION, ROLES, RateLimiter, type ResolveContext, type ResolveOptions, type Role, RoleSchema, type RuleCheck, RuleCheckSchema, type RuleScope, type Ruleset, RulesetSchema, type RunDriftOptions, SCAN_ARG_PATTERNS, SCHEMA_VERSION, SDL, SECURITY_METADATA_KEYS, SEVERITIES, SEVERITY_WEIGHT, SHARING_LEVELS, type ScanArgKind, type ScanContext, type ScanHintParams, type ScanResult, type Scanner, type ScannerPlugin, type ScannerPluginApi, ScannerRegistry, ScannerShape, type ScheduleConfig, ScheduleConfigSchema, type ScheduledRunResult, type Scope, type SearchFn, type SemanticSearchOptions, type ServerEntry, type SessionRow, type Severity, type SharePreview, type SharePreviewEntry, type SharingLevel, SharingLevelSchema, type SharingPolicy, type ShellKind, type SlackMessage, SlackSink, SqliteCredentialStore, SqliteQueryBackend, SqliteStoreBackend, type StartApiOptions, StdoutSink, type StoreBackend, type StoreBackendOptions, type SyncClassifyOptions, type SyncClassifyResult, TENANT_HEADER, type TenantContext, TenantMismatchError, type TenantOptions, type ToolResult, type TopologyDelta, type TopologyDiff, type TopologyInput, type TraversalResult, VectorStore, WebhookSink, type WebhookSinkOptions, applyInstall, applySharingLevel, assertReadOnly, assertSafeBind, assertSafeScanArg, assertSameTenant, assignColors, authorize, bearerToken, bookmarksScanner, buildCartographyToolHandlers, buildMapData, buildOpenApiDocument, buildReport, buildSinks, can, centralDbFromEnv, checkBearer, checkPrerequisites, checkReadOnly, clampText, classify, classifyDrift, cleanupTempFiles, cloudAwsScanner, cloudAzureScanner, cloudGcpScanner, codeAddMcpCommand, computeCentroid, computeClusterBounds, computeIdentity, connectionsScanner, contentHash, createBashTool, createCartographyTools, createClaudeProvider, createDefaultRegistry, createHashEmbedder, createIngestHandler, createLocalEmbedder, createMcpServer, createOllamaProvider, createOpenAIProvider, createScanRunner, createSemanticSearch, createSqliteQueryBackend, currentOs, cursorDeeplink, dashboardHtml, databasesScanner, deepMerge, defaultAllowedHosts, defaultConfig, defaultContext, defaultProviderRegistry, defaultRegistry, defaultServerEntry, definePlugin, deriveSessionName, detectAnomalies, detectOrphans, detectShadowIt, diffTopology, edgesToConnections, enrichCosts, entitiesToYaml, evaluateCheck, evaluateRule, evidenceLine, executeGraphql, executeNlQuery, exportAll, exportBackstageYAML, exportComplianceReport, exportCostCSV, exportCostSummary, exportDiscoveryApp, exportJGF, exportJSON, extractListeningPorts, filterBySeverity, findAnonViolations, formatComplianceText, formatJira, formatPagerDuty, formatSlack, generateDependencyMermaid, generateDiffMermaid, generateTopologyMermaid, getClient, getRuleset, globalId, groupByDomain, handleGraphqlGet, hashToken, hexCorners, hexDistance, hexNeighbors, hexRing, hexSpiral, hexToPixel, hmacKey, hostname, ingestEnvelope, installedAppsScanner, isLoopbackHost, isPersonalHost, isReadOnlyCommand, isRemembered, isSecureWebhookUrl, k8sScanner, keyMetaOf, layoutClusters, listClients, listRulesets, loadConfig, loadOrgKey, loadPlugins, loadRuleset, localDiscoveryFn, log, logDebug, logError, logInfo, logWarn, machineId, maxSeverity, mcpServerObject, newAnomalies, nextRun, nodesToAssets, normalizeId, normalizeTenant, openStoreBackend, orgKeyPath, osUser, parseApiArgs, parseComposeDeps, parseConfig, parseConnectionString, parseCostCsv, parseCron, parseEstablished, parseNginxUpstreams, parseNlQuery, parseScanHint, pixelToHex, planInstall, portsScanner, postJson, previewShare, pseudonymize, pseudonymizeFragment, pseudonymizeString, pushDeltas, readConfigFile, redactConnectionString, redactSecrets, redactValue, renderDiff, resolveEffectiveLevel, resolveNlQuery, resolvePrincipal, resolveSharingLevel, resolveTenant, revalidateAnonymized, reversalKey, reversePseudonym, rotateOrgKey, runApi, runDiscovery, runDrift, runHttp, runLocalDiscovery, runOnce, runStdio, runSyncClassify, safeEnv, safeJson, safetyHook, sanitizeUntrusted, sanitizeValue, scopeReads, scoreTopology, securityRelevantChange, serializeConfig, serviceConfigScanner, setVerbose, shadeVariant, shapeToJsonSchema, shareHash, splitSegments, stableStringify, startApi, stripSensitive, timingSafeEqual, toBackstageEntities, validateScanner, vscodeDeeplink, zodToJsonSchema };