@datasynx/agentic-crm 0.1.0

package/dist/colors-BG07TZQz.js

@@ -0,0 +1,11 @@
+import ansis from "ansis";
+//#region src/ui/colors.ts
+const success = (s) => ansis.green(s);
+const error = (s) => ansis.red(s);
+const warning = (s) => ansis.yellow(s);
+const info = (s) => ansis.cyan(s);
+const bold = (s) => ansis.bold(s);
+//#endregion
+export { warning as a, success as i, error as n, info as r, bold as t };
+
+//# sourceMappingURL=colors-BG07TZQz.js.map

package/dist/colors-BG07TZQz.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"colors-BG07TZQz.js","names":[],"sources":["../src/ui/colors.ts"],"sourcesContent":["import ansis from \"ansis\";\n\nexport const success = (s: string): string => ansis.green(s);\nexport const error = (s: string): string => ansis.red(s);\nexport const warning = (s: string): string => ansis.yellow(s);\nexport const info = (s: string): string => ansis.cyan(s);\nexport const muted = (s: string): string => ansis.gray(s);\nexport const bold = (s: string): string => ansis.bold(s);\n"],"mappings":";;AAEA,MAAa,WAAW,MAAsB,MAAM,MAAM,CAAC;AAC3D,MAAa,SAAS,MAAsB,MAAM,IAAI,CAAC;AACvD,MAAa,WAAW,MAAsB,MAAM,OAAO,CAAC;AAC5D,MAAa,QAAQ,MAAsB,MAAM,KAAK,CAAC;AAEvD,MAAa,QAAQ,MAAsB,MAAM,KAAK,CAAC"}

package/dist/compliance-B1kk5-YS.js

@@ -0,0 +1,115 @@
+import { t as __exportAll } from "./rolldown-runtime-D7D4PA-g.js";
+//#region src/core/pii.ts
+/**
+* Lightweight PII masking for LLM calls (Einstein-Trust-Layer-style).
+* Replaces emails and phone numbers with stable placeholders before text is
+* sent to an LLM, and can restore them in the response. Opt-in via
+* DXCRM_PII_MASKING=on so default behaviour and quality are unchanged.
+*/
+const EMAIL_RE = /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}/g;
+const PHONE_RE = /\+?\d[\d\s().-]{6,}\d/g;
+function piiMaskingEnabled() {
+	return process.env["DXCRM_PII_MASKING"] === "on";
+}
+function maskPii(input) {
+	const mapping = /* @__PURE__ */ new Map();
+	let emailCount = 0;
+	let phoneCount = 0;
+	let masked = input.replace(EMAIL_RE, (match) => {
+		let ph = mapping.get(match);
+		if (!ph) {
+			ph = `[EMAIL_${emailCount++}]`;
+			mapping.set(match, ph);
+		}
+		return ph;
+	});
+	masked = masked.replace(PHONE_RE, (match) => {
+		let ph = mapping.get(match);
+		if (!ph) {
+			ph = `[PHONE_${phoneCount++}]`;
+			mapping.set(match, ph);
+		}
+		return ph;
+	});
+	const reverse = /* @__PURE__ */ new Map();
+	for (const [orig, ph] of mapping) reverse.set(ph, orig);
+	const unmask = (text) => {
+		let out = text;
+		for (const [ph, orig] of reverse) out = out.split(ph).join(orig);
+		return out;
+	};
+	return {
+		masked,
+		unmask
+	};
+}
+//#endregion
+//#region src/core/guardrails.ts
+/**
+* Guardrails against (indirect) prompt injection in untrusted CRM content
+* (emails, transcripts, imported notes). Detection is always available;
+* neutralization is applied to LLM inputs when DXCRM_GUARDRAILS=on.
+*/
+const INJECTION_PATTERNS = [
+	/ignore\s+(all\s+|the\s+|any\s+)?(previous|above|prior|preceding)\s+(instructions?|prompts?|messages?)/gi,
+	/disregard\s+(all\s+|the\s+|any\s+)?(previous|above|prior|preceding)/gi,
+	/forget\s+(all\s+|the\s+|everything\s+)?(previous|above|prior|you were told)/gi,
+	/you\s+are\s+now\b/gi,
+	/reveal\s+(your|the)\s+(system\s+)?(instructions?|prompt|prompts?)/gi,
+	/(print|show|repeat)\s+(your|the)\s+(system\s+)?(instructions?|prompt)/gi,
+	/act\s+as\s+(an?\s+)?(system|admin|administrator|developer|root)\b/gi,
+	/<\/?(system|assistant|tool)\b[^>]*>/gi,
+	/\bBEGIN\s+SYSTEM\b/gi
+];
+function guardrailsEnabled() {
+	return process.env["DXCRM_GUARDRAILS"] === "on";
+}
+/** Replace known injection spans with a [filtered] marker, keeping other text. */
+function neutralizeUntrusted(text) {
+	let out = text;
+	for (const re of INJECTION_PATTERNS) out = out.replace(re, "[filtered]");
+	return out;
+}
+//#endregion
+//#region src/core/compliance.ts
+var compliance_exports = /* @__PURE__ */ __exportAll({
+	aiDisclosure: () => aiDisclosure,
+	aiDisclosureEnabled: () => aiDisclosureEnabled,
+	labelAiContent: () => labelAiContent,
+	llmProvider: () => llmProvider,
+	localLlmConfig: () => localLlmConfig
+});
+const DISCLOSURES = {
+	de: "Hinweis: Dieser Inhalt wurde mithilfe von KI erstellt (EU-AI-Act Art. 50).",
+	en: "Note: This content was generated with the help of AI (EU AI Act Art. 50)."
+};
+/** Localized Art. 50 disclosure string. */
+function aiDisclosure(lang = "de") {
+	return DISCLOSURES[lang] ?? DISCLOSURES.en;
+}
+/** Disclosure is ON by default (Art. 50); opt out with DXCRM_AI_DISCLOSURE=off. */
+function aiDisclosureEnabled() {
+	return process.env["DXCRM_AI_DISCLOSURE"] !== "off";
+}
+/** Prepend the Art. 50 disclosure to generated content (unless disabled). */
+function labelAiContent(text, opts = {}) {
+	if (!(opts.enabled ?? aiDisclosureEnabled())) return text;
+	return `${aiDisclosure(opts.lang ?? (process.env["DXCRM_AI_DISCLOSURE_LANG"] || "de"))}\n\n${text}`;
+}
+/** Resolve the configured LLM provider (default Anthropic). */
+function llmProvider() {
+	const p = (process.env["DXCRM_LLM_PROVIDER"] ?? "anthropic").toLowerCase();
+	if (p === "ollama" || p === "openai" || p === "local") return p;
+	return "anthropic";
+}
+/** OpenAI-compatible local endpoint config (Ollama defaults), env-overridable. */
+function localLlmConfig() {
+	return {
+		baseUrl: process.env["DXCRM_LLM_BASE_URL"] ?? "http://127.0.0.1:11434/v1",
+		model: process.env["DXCRM_LLM_MODEL"] ?? "llama3.1"
+	};
+}
+//#endregion
+export { neutralizeUntrusted as a, guardrailsEnabled as i, llmProvider as n, maskPii as o, localLlmConfig as r, piiMaskingEnabled as s, compliance_exports as t };
+
+//# sourceMappingURL=compliance-B1kk5-YS.js.map

package/dist/compliance-B1kk5-YS.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"compliance-B1kk5-YS.js","names":[],"sources":["../src/core/pii.ts","../src/core/guardrails.ts","../src/core/compliance.ts"],"sourcesContent":["/**\n * Lightweight PII masking for LLM calls (Einstein-Trust-Layer-style).\n * Replaces emails and phone numbers with stable placeholders before text is\n * sent to an LLM, and can restore them in the response. Opt-in via\n * DXCRM_PII_MASKING=on so default behaviour and quality are unchanged.\n */\n\nconst EMAIL_RE = /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\\.[A-Za-z]{2,}/g;\n// Phone: optional +, then 7+ digits possibly grouped by spaces/dashes/parens.\nconst PHONE_RE = /\\+?\\d[\\d\\s().-]{6,}\\d/g;\n\nexport interface MaskedText {\n  masked: string;\n  unmask: (text: string) => string;\n}\n\nexport function piiMaskingEnabled(): boolean {\n  return process.env[\"DXCRM_PII_MASKING\"] === \"on\";\n}\n\nexport function maskPii(input: string): MaskedText {\n  const mapping = new Map<string, string>(); // original -> placeholder\n  let emailCount = 0;\n  let phoneCount = 0;\n\n  let masked = input.replace(EMAIL_RE, (match) => {\n    let ph = mapping.get(match);\n    if (!ph) {\n      ph = `[EMAIL_${emailCount++}]`;\n      mapping.set(match, ph);\n    }\n    return ph;\n  });\n\n  masked = masked.replace(PHONE_RE, (match) => {\n    // Ignore very short numeric runs that slipped through (already handled by {6,}).\n    let ph = mapping.get(match);\n    if (!ph) {\n      ph = `[PHONE_${phoneCount++}]`;\n      mapping.set(match, ph);\n    }\n    return ph;\n  });\n\n  const reverse = new Map<string, string>(); // placeholder -> original\n  for (const [orig, ph] of mapping) reverse.set(ph, orig);\n\n  const unmask = (text: string): string => {\n    let out = text;\n    for (const [ph, orig] of reverse) out = out.split(ph).join(orig);\n    return out;\n  };\n\n  return { masked, unmask };\n}\n","/**\n * Guardrails against (indirect) prompt injection in untrusted CRM content\n * (emails, transcripts, imported notes). Detection is always available;\n * neutralization is applied to LLM inputs when DXCRM_GUARDRAILS=on.\n */\n\nconst INJECTION_PATTERNS: RegExp[] = [\n  /ignore\\s+(all\\s+|the\\s+|any\\s+)?(previous|above|prior|preceding)\\s+(instructions?|prompts?|messages?)/gi,\n  /disregard\\s+(all\\s+|the\\s+|any\\s+)?(previous|above|prior|preceding)/gi,\n  /forget\\s+(all\\s+|the\\s+|everything\\s+)?(previous|above|prior|you were told)/gi,\n  /you\\s+are\\s+now\\b/gi,\n  /reveal\\s+(your|the)\\s+(system\\s+)?(instructions?|prompt|prompts?)/gi,\n  /(print|show|repeat)\\s+(your|the)\\s+(system\\s+)?(instructions?|prompt)/gi,\n  /act\\s+as\\s+(an?\\s+)?(system|admin|administrator|developer|root)\\b/gi,\n  /<\\/?(system|assistant|tool)\\b[^>]*>/gi,\n  /\\bBEGIN\\s+SYSTEM\\b/gi,\n];\n\nexport function guardrailsEnabled(): boolean {\n  return process.env[\"DXCRM_GUARDRAILS\"] === \"on\";\n}\n\nexport function detectPromptInjection(text: string): { flagged: boolean; matches: string[] } {\n  const matches: string[] = [];\n  for (const re of INJECTION_PATTERNS) {\n    re.lastIndex = 0;\n    const found = text.match(re);\n    if (found) matches.push(...found);\n  }\n  return { flagged: matches.length > 0, matches };\n}\n\n/** Replace known injection spans with a [filtered] marker, keeping other text. */\nexport function neutralizeUntrusted(text: string): string {\n  let out = text;\n  for (const re of INJECTION_PATTERNS) {\n    out = out.replace(re, \"[filtered]\");\n  }\n  return out;\n}\n","import { piiMaskingEnabled } from \"./pii.js\";\nimport { guardrailsEnabled } from \"./guardrails.js\";\n\n/**\n * Compliance hardening (domino D17 / §3): the cross-cutting governance layer.\n *  - EU-AI-Act Art. 50 transparency: a localized disclosure that AI generated\n *    the content, on by default (opt-out), wrappable around any generated text.\n *  - Provider-agnostic LLM selection so the workspace can run against a local,\n *    self-hosted model (Ollama / OpenAI-compatible) as a data-residency moat —\n *    no customer data leaves the machine. The provider runtime itself stays in\n *    the agent framework; here we only resolve and expose the configuration.\n *  - A single read-out of the active privacy/compliance posture.\n */\nexport type DisclosureLang = \"de\" | \"en\";\n\nexport type LlmProviderName = \"anthropic\" | \"ollama\" | \"openai\" | \"local\";\n\nconst DISCLOSURES: Record<DisclosureLang, string> = {\n  de: \"Hinweis: Dieser Inhalt wurde mithilfe von KI erstellt (EU-AI-Act Art. 50).\",\n  en: \"Note: This content was generated with the help of AI (EU AI Act Art. 50).\",\n};\n\n/** Localized Art. 50 disclosure string. */\nexport function aiDisclosure(lang: DisclosureLang = \"de\"): string {\n  return DISCLOSURES[lang] ?? DISCLOSURES.en;\n}\n\n/** Disclosure is ON by default (Art. 50); opt out with DXCRM_AI_DISCLOSURE=off. */\nexport function aiDisclosureEnabled(): boolean {\n  return process.env[\"DXCRM_AI_DISCLOSURE\"] !== \"off\";\n}\n\n/** Prepend the Art. 50 disclosure to generated content (unless disabled). */\nexport function labelAiContent(\n  text: string,\n  opts: { lang?: DisclosureLang; enabled?: boolean } = {}\n): string {\n  const enabled = opts.enabled ?? aiDisclosureEnabled();\n  if (!enabled) return text;\n  const lang = opts.lang ?? ((process.env[\"DXCRM_AI_DISCLOSURE_LANG\"] as DisclosureLang) || \"de\");\n  return `${aiDisclosure(lang)}\\n\\n${text}`;\n}\n\n/** Resolve the configured LLM provider (default Anthropic). */\nexport function llmProvider(): LlmProviderName {\n  const p = (process.env[\"DXCRM_LLM_PROVIDER\"] ?? \"anthropic\").toLowerCase();\n  if (p === \"ollama\" || p === \"openai\" || p === \"local\") return p;\n  return \"anthropic\";\n}\n\nexport interface LocalLlmConfig {\n  baseUrl: string;\n  model: string;\n}\n\n/** OpenAI-compatible local endpoint config (Ollama defaults), env-overridable. */\nexport function localLlmConfig(): LocalLlmConfig {\n  return {\n    baseUrl: process.env[\"DXCRM_LLM_BASE_URL\"] ?? \"http://127.0.0.1:11434/v1\",\n    model: process.env[\"DXCRM_LLM_MODEL\"] ?? \"llama3.1\",\n  };\n}\n\nexport interface ComplianceConfig {\n  provider: LlmProviderName;\n  local: LocalLlmConfig | null;\n  aiDisclosure: boolean;\n  piiMasking: boolean;\n  guardrails: boolean;\n}\n\n/** A single read-out of the active privacy/compliance posture. */\nexport function complianceConfig(): ComplianceConfig {\n  const provider = llmProvider();\n  return {\n    provider,\n    local: provider === \"anthropic\" ? null : localLlmConfig(),\n    aiDisclosure: aiDisclosureEnabled(),\n    piiMasking: piiMaskingEnabled(),\n    guardrails: guardrailsEnabled(),\n  };\n}\n"],"mappings":";;;;;;;;AAOA,MAAM,WAAW;AAEjB,MAAM,WAAW;AAOjB,SAAgB,oBAA6B;CAC3C,OAAO,QAAQ,IAAI,yBAAyB;AAC9C;AAEA,SAAgB,QAAQ,OAA2B;CACjD,MAAM,0BAAU,IAAI,IAAoB;CACxC,IAAI,aAAa;CACjB,IAAI,aAAa;CAEjB,IAAI,SAAS,MAAM,QAAQ,WAAW,UAAU;EAC9C,IAAI,KAAK,QAAQ,IAAI,KAAK;EAC1B,IAAI,CAAC,IAAI;GACP,KAAK,UAAU,aAAa;GAC5B,QAAQ,IAAI,OAAO,EAAE;EACvB;EACA,OAAO;CACT,CAAC;CAED,SAAS,OAAO,QAAQ,WAAW,UAAU;EAE3C,IAAI,KAAK,QAAQ,IAAI,KAAK;EAC1B,IAAI,CAAC,IAAI;GACP,KAAK,UAAU,aAAa;GAC5B,QAAQ,IAAI,OAAO,EAAE;EACvB;EACA,OAAO;CACT,CAAC;CAED,MAAM,0BAAU,IAAI,IAAoB;CACxC,KAAK,MAAM,CAAC,MAAM,OAAO,SAAS,QAAQ,IAAI,IAAI,IAAI;CAEtD,MAAM,UAAU,SAAyB;EACvC,IAAI,MAAM;EACV,KAAK,MAAM,CAAC,IAAI,SAAS,SAAS,MAAM,IAAI,MAAM,EAAE,EAAE,KAAK,IAAI;EAC/D,OAAO;CACT;CAEA,OAAO;EAAE;EAAQ;CAAO;AAC1B;;;;;;;;AChDA,MAAM,qBAA+B;CACnC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;AACF;AAEA,SAAgB,oBAA6B;CAC3C,OAAO,QAAQ,IAAI,wBAAwB;AAC7C;;AAaA,SAAgB,oBAAoB,MAAsB;CACxD,IAAI,MAAM;CACV,KAAK,MAAM,MAAM,oBACf,MAAM,IAAI,QAAQ,IAAI,YAAY;CAEpC,OAAO;AACT;;;;;;;;;;ACtBA,MAAM,cAA8C;CAClD,IAAI;CACJ,IAAI;AACN;;AAGA,SAAgB,aAAa,OAAuB,MAAc;CAChE,OAAO,YAAY,SAAS,YAAY;AAC1C;;AAGA,SAAgB,sBAA+B;CAC7C,OAAO,QAAQ,IAAI,2BAA2B;AAChD;;AAGA,SAAgB,eACd,MACA,OAAqD,CAAC,GAC9C;CAER,IAAI,EADY,KAAK,WAAW,oBAAoB,IACtC,OAAO;CAErB,OAAO,GAAG,aADG,KAAK,SAAU,QAAQ,IAAI,+BAAkD,KAC/D,EAAE,MAAM;AACrC;;AAGA,SAAgB,cAA+B;CAC7C,MAAM,KAAK,QAAQ,IAAI,yBAAyB,aAAa,YAAY;CACzE,IAAI,MAAM,YAAY,MAAM,YAAY,MAAM,SAAS,OAAO;CAC9D,OAAO;AACT;;AAQA,SAAgB,iBAAiC;CAC/C,OAAO;EACL,SAAS,QAAQ,IAAI,yBAAyB;EAC9C,OAAO,QAAQ,IAAI,sBAAsB;CAC3C;AACF"}

package/dist/compliance-B91zNvCR.cjs

@@ -0,0 +1,156 @@
+const require_chunk = require("./chunk-DakpK96I.cjs");
+//#region src/core/pii.ts
+/**
+* Lightweight PII masking for LLM calls (Einstein-Trust-Layer-style).
+* Replaces emails and phone numbers with stable placeholders before text is
+* sent to an LLM, and can restore them in the response. Opt-in via
+* DXCRM_PII_MASKING=on so default behaviour and quality are unchanged.
+*/
+const EMAIL_RE = /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}/g;
+const PHONE_RE = /\+?\d[\d\s().-]{6,}\d/g;
+function piiMaskingEnabled() {
+	return process.env["DXCRM_PII_MASKING"] === "on";
+}
+function maskPii(input) {
+	const mapping = /* @__PURE__ */ new Map();
+	let emailCount = 0;
+	let phoneCount = 0;
+	let masked = input.replace(EMAIL_RE, (match) => {
+		let ph = mapping.get(match);
+		if (!ph) {
+			ph = `[EMAIL_${emailCount++}]`;
+			mapping.set(match, ph);
+		}
+		return ph;
+	});
+	masked = masked.replace(PHONE_RE, (match) => {
+		let ph = mapping.get(match);
+		if (!ph) {
+			ph = `[PHONE_${phoneCount++}]`;
+			mapping.set(match, ph);
+		}
+		return ph;
+	});
+	const reverse = /* @__PURE__ */ new Map();
+	for (const [orig, ph] of mapping) reverse.set(ph, orig);
+	const unmask = (text) => {
+		let out = text;
+		for (const [ph, orig] of reverse) out = out.split(ph).join(orig);
+		return out;
+	};
+	return {
+		masked,
+		unmask
+	};
+}
+//#endregion
+//#region src/core/guardrails.ts
+/**
+* Guardrails against (indirect) prompt injection in untrusted CRM content
+* (emails, transcripts, imported notes). Detection is always available;
+* neutralization is applied to LLM inputs when DXCRM_GUARDRAILS=on.
+*/
+const INJECTION_PATTERNS = [
+	/ignore\s+(all\s+|the\s+|any\s+)?(previous|above|prior|preceding)\s+(instructions?|prompts?|messages?)/gi,
+	/disregard\s+(all\s+|the\s+|any\s+)?(previous|above|prior|preceding)/gi,
+	/forget\s+(all\s+|the\s+|everything\s+)?(previous|above|prior|you were told)/gi,
+	/you\s+are\s+now\b/gi,
+	/reveal\s+(your|the)\s+(system\s+)?(instructions?|prompt|prompts?)/gi,
+	/(print|show|repeat)\s+(your|the)\s+(system\s+)?(instructions?|prompt)/gi,
+	/act\s+as\s+(an?\s+)?(system|admin|administrator|developer|root)\b/gi,
+	/<\/?(system|assistant|tool)\b[^>]*>/gi,
+	/\bBEGIN\s+SYSTEM\b/gi
+];
+function guardrailsEnabled() {
+	return process.env["DXCRM_GUARDRAILS"] === "on";
+}
+/** Replace known injection spans with a [filtered] marker, keeping other text. */
+function neutralizeUntrusted(text) {
+	let out = text;
+	for (const re of INJECTION_PATTERNS) out = out.replace(re, "[filtered]");
+	return out;
+}
+//#endregion
+//#region src/core/compliance.ts
+var compliance_exports = /* @__PURE__ */ require_chunk.__exportAll({
+	aiDisclosure: () => aiDisclosure,
+	aiDisclosureEnabled: () => aiDisclosureEnabled,
+	labelAiContent: () => labelAiContent,
+	llmProvider: () => llmProvider,
+	localLlmConfig: () => localLlmConfig
+});
+const DISCLOSURES = {
+	de: "Hinweis: Dieser Inhalt wurde mithilfe von KI erstellt (EU-AI-Act Art. 50).",
+	en: "Note: This content was generated with the help of AI (EU AI Act Art. 50)."
+};
+/** Localized Art. 50 disclosure string. */
+function aiDisclosure(lang = "de") {
+	return DISCLOSURES[lang] ?? DISCLOSURES.en;
+}
+/** Disclosure is ON by default (Art. 50); opt out with DXCRM_AI_DISCLOSURE=off. */
+function aiDisclosureEnabled() {
+	return process.env["DXCRM_AI_DISCLOSURE"] !== "off";
+}
+/** Prepend the Art. 50 disclosure to generated content (unless disabled). */
+function labelAiContent(text, opts = {}) {
+	if (!(opts.enabled ?? aiDisclosureEnabled())) return text;
+	return `${aiDisclosure(opts.lang ?? (process.env["DXCRM_AI_DISCLOSURE_LANG"] || "de"))}\n\n${text}`;
+}
+/** Resolve the configured LLM provider (default Anthropic). */
+function llmProvider() {
+	const p = (process.env["DXCRM_LLM_PROVIDER"] ?? "anthropic").toLowerCase();
+	if (p === "ollama" || p === "openai" || p === "local") return p;
+	return "anthropic";
+}
+/** OpenAI-compatible local endpoint config (Ollama defaults), env-overridable. */
+function localLlmConfig() {
+	return {
+		baseUrl: process.env["DXCRM_LLM_BASE_URL"] ?? "http://127.0.0.1:11434/v1",
+		model: process.env["DXCRM_LLM_MODEL"] ?? "llama3.1"
+	};
+}
+//#endregion
+Object.defineProperty(exports, "compliance_exports", {
+	enumerable: true,
+	get: function() {
+		return compliance_exports;
+	}
+});
+Object.defineProperty(exports, "guardrailsEnabled", {
+	enumerable: true,
+	get: function() {
+		return guardrailsEnabled;
+	}
+});
+Object.defineProperty(exports, "llmProvider", {
+	enumerable: true,
+	get: function() {
+		return llmProvider;
+	}
+});
+Object.defineProperty(exports, "localLlmConfig", {
+	enumerable: true,
+	get: function() {
+		return localLlmConfig;
+	}
+});
+Object.defineProperty(exports, "maskPii", {
+	enumerable: true,
+	get: function() {
+		return maskPii;
+	}
+});
+Object.defineProperty(exports, "neutralizeUntrusted", {
+	enumerable: true,
+	get: function() {
+		return neutralizeUntrusted;
+	}
+});
+Object.defineProperty(exports, "piiMaskingEnabled", {
+	enumerable: true,
+	get: function() {
+		return piiMaskingEnabled;
+	}
+});
+
+//# sourceMappingURL=compliance-B91zNvCR.cjs.map

package/dist/compliance-B91zNvCR.cjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"compliance-B91zNvCR.cjs","names":[],"sources":["../src/core/pii.ts","../src/core/guardrails.ts","../src/core/compliance.ts"],"sourcesContent":["/**\n * Lightweight PII masking for LLM calls (Einstein-Trust-Layer-style).\n * Replaces emails and phone numbers with stable placeholders before text is\n * sent to an LLM, and can restore them in the response. Opt-in via\n * DXCRM_PII_MASKING=on so default behaviour and quality are unchanged.\n */\n\nconst EMAIL_RE = /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\\.[A-Za-z]{2,}/g;\n// Phone: optional +, then 7+ digits possibly grouped by spaces/dashes/parens.\nconst PHONE_RE = /\\+?\\d[\\d\\s().-]{6,}\\d/g;\n\nexport interface MaskedText {\n  masked: string;\n  unmask: (text: string) => string;\n}\n\nexport function piiMaskingEnabled(): boolean {\n  return process.env[\"DXCRM_PII_MASKING\"] === \"on\";\n}\n\nexport function maskPii(input: string): MaskedText {\n  const mapping = new Map<string, string>(); // original -> placeholder\n  let emailCount = 0;\n  let phoneCount = 0;\n\n  let masked = input.replace(EMAIL_RE, (match) => {\n    let ph = mapping.get(match);\n    if (!ph) {\n      ph = `[EMAIL_${emailCount++}]`;\n      mapping.set(match, ph);\n    }\n    return ph;\n  });\n\n  masked = masked.replace(PHONE_RE, (match) => {\n    // Ignore very short numeric runs that slipped through (already handled by {6,}).\n    let ph = mapping.get(match);\n    if (!ph) {\n      ph = `[PHONE_${phoneCount++}]`;\n      mapping.set(match, ph);\n    }\n    return ph;\n  });\n\n  const reverse = new Map<string, string>(); // placeholder -> original\n  for (const [orig, ph] of mapping) reverse.set(ph, orig);\n\n  const unmask = (text: string): string => {\n    let out = text;\n    for (const [ph, orig] of reverse) out = out.split(ph).join(orig);\n    return out;\n  };\n\n  return { masked, unmask };\n}\n","/**\n * Guardrails against (indirect) prompt injection in untrusted CRM content\n * (emails, transcripts, imported notes). Detection is always available;\n * neutralization is applied to LLM inputs when DXCRM_GUARDRAILS=on.\n */\n\nconst INJECTION_PATTERNS: RegExp[] = [\n  /ignore\\s+(all\\s+|the\\s+|any\\s+)?(previous|above|prior|preceding)\\s+(instructions?|prompts?|messages?)/gi,\n  /disregard\\s+(all\\s+|the\\s+|any\\s+)?(previous|above|prior|preceding)/gi,\n  /forget\\s+(all\\s+|the\\s+|everything\\s+)?(previous|above|prior|you were told)/gi,\n  /you\\s+are\\s+now\\b/gi,\n  /reveal\\s+(your|the)\\s+(system\\s+)?(instructions?|prompt|prompts?)/gi,\n  /(print|show|repeat)\\s+(your|the)\\s+(system\\s+)?(instructions?|prompt)/gi,\n  /act\\s+as\\s+(an?\\s+)?(system|admin|administrator|developer|root)\\b/gi,\n  /<\\/?(system|assistant|tool)\\b[^>]*>/gi,\n  /\\bBEGIN\\s+SYSTEM\\b/gi,\n];\n\nexport function guardrailsEnabled(): boolean {\n  return process.env[\"DXCRM_GUARDRAILS\"] === \"on\";\n}\n\nexport function detectPromptInjection(text: string): { flagged: boolean; matches: string[] } {\n  const matches: string[] = [];\n  for (const re of INJECTION_PATTERNS) {\n    re.lastIndex = 0;\n    const found = text.match(re);\n    if (found) matches.push(...found);\n  }\n  return { flagged: matches.length > 0, matches };\n}\n\n/** Replace known injection spans with a [filtered] marker, keeping other text. */\nexport function neutralizeUntrusted(text: string): string {\n  let out = text;\n  for (const re of INJECTION_PATTERNS) {\n    out = out.replace(re, \"[filtered]\");\n  }\n  return out;\n}\n","import { piiMaskingEnabled } from \"./pii.js\";\nimport { guardrailsEnabled } from \"./guardrails.js\";\n\n/**\n * Compliance hardening (domino D17 / §3): the cross-cutting governance layer.\n *  - EU-AI-Act Art. 50 transparency: a localized disclosure that AI generated\n *    the content, on by default (opt-out), wrappable around any generated text.\n *  - Provider-agnostic LLM selection so the workspace can run against a local,\n *    self-hosted model (Ollama / OpenAI-compatible) as a data-residency moat —\n *    no customer data leaves the machine. The provider runtime itself stays in\n *    the agent framework; here we only resolve and expose the configuration.\n *  - A single read-out of the active privacy/compliance posture.\n */\nexport type DisclosureLang = \"de\" | \"en\";\n\nexport type LlmProviderName = \"anthropic\" | \"ollama\" | \"openai\" | \"local\";\n\nconst DISCLOSURES: Record<DisclosureLang, string> = {\n  de: \"Hinweis: Dieser Inhalt wurde mithilfe von KI erstellt (EU-AI-Act Art. 50).\",\n  en: \"Note: This content was generated with the help of AI (EU AI Act Art. 50).\",\n};\n\n/** Localized Art. 50 disclosure string. */\nexport function aiDisclosure(lang: DisclosureLang = \"de\"): string {\n  return DISCLOSURES[lang] ?? DISCLOSURES.en;\n}\n\n/** Disclosure is ON by default (Art. 50); opt out with DXCRM_AI_DISCLOSURE=off. */\nexport function aiDisclosureEnabled(): boolean {\n  return process.env[\"DXCRM_AI_DISCLOSURE\"] !== \"off\";\n}\n\n/** Prepend the Art. 50 disclosure to generated content (unless disabled). */\nexport function labelAiContent(\n  text: string,\n  opts: { lang?: DisclosureLang; enabled?: boolean } = {}\n): string {\n  const enabled = opts.enabled ?? aiDisclosureEnabled();\n  if (!enabled) return text;\n  const lang = opts.lang ?? ((process.env[\"DXCRM_AI_DISCLOSURE_LANG\"] as DisclosureLang) || \"de\");\n  return `${aiDisclosure(lang)}\\n\\n${text}`;\n}\n\n/** Resolve the configured LLM provider (default Anthropic). */\nexport function llmProvider(): LlmProviderName {\n  const p = (process.env[\"DXCRM_LLM_PROVIDER\"] ?? \"anthropic\").toLowerCase();\n  if (p === \"ollama\" || p === \"openai\" || p === \"local\") return p;\n  return \"anthropic\";\n}\n\nexport interface LocalLlmConfig {\n  baseUrl: string;\n  model: string;\n}\n\n/** OpenAI-compatible local endpoint config (Ollama defaults), env-overridable. */\nexport function localLlmConfig(): LocalLlmConfig {\n  return {\n    baseUrl: process.env[\"DXCRM_LLM_BASE_URL\"] ?? \"http://127.0.0.1:11434/v1\",\n    model: process.env[\"DXCRM_LLM_MODEL\"] ?? \"llama3.1\",\n  };\n}\n\nexport interface ComplianceConfig {\n  provider: LlmProviderName;\n  local: LocalLlmConfig | null;\n  aiDisclosure: boolean;\n  piiMasking: boolean;\n  guardrails: boolean;\n}\n\n/** A single read-out of the active privacy/compliance posture. */\nexport function complianceConfig(): ComplianceConfig {\n  const provider = llmProvider();\n  return {\n    provider,\n    local: provider === \"anthropic\" ? null : localLlmConfig(),\n    aiDisclosure: aiDisclosureEnabled(),\n    piiMasking: piiMaskingEnabled(),\n    guardrails: guardrailsEnabled(),\n  };\n}\n"],"mappings":";;;;;;;;AAOA,MAAM,WAAW;AAEjB,MAAM,WAAW;AAOjB,SAAgB,oBAA6B;CAC3C,OAAO,QAAQ,IAAI,yBAAyB;AAC9C;AAEA,SAAgB,QAAQ,OAA2B;CACjD,MAAM,0BAAU,IAAI,IAAoB;CACxC,IAAI,aAAa;CACjB,IAAI,aAAa;CAEjB,IAAI,SAAS,MAAM,QAAQ,WAAW,UAAU;EAC9C,IAAI,KAAK,QAAQ,IAAI,KAAK;EAC1B,IAAI,CAAC,IAAI;GACP,KAAK,UAAU,aAAa;GAC5B,QAAQ,IAAI,OAAO,EAAE;EACvB;EACA,OAAO;CACT,CAAC;CAED,SAAS,OAAO,QAAQ,WAAW,UAAU;EAE3C,IAAI,KAAK,QAAQ,IAAI,KAAK;EAC1B,IAAI,CAAC,IAAI;GACP,KAAK,UAAU,aAAa;GAC5B,QAAQ,IAAI,OAAO,EAAE;EACvB;EACA,OAAO;CACT,CAAC;CAED,MAAM,0BAAU,IAAI,IAAoB;CACxC,KAAK,MAAM,CAAC,MAAM,OAAO,SAAS,QAAQ,IAAI,IAAI,IAAI;CAEtD,MAAM,UAAU,SAAyB;EACvC,IAAI,MAAM;EACV,KAAK,MAAM,CAAC,IAAI,SAAS,SAAS,MAAM,IAAI,MAAM,EAAE,EAAE,KAAK,IAAI;EAC/D,OAAO;CACT;CAEA,OAAO;EAAE;EAAQ;CAAO;AAC1B;;;;;;;;AChDA,MAAM,qBAA+B;CACnC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;AACF;AAEA,SAAgB,oBAA6B;CAC3C,OAAO,QAAQ,IAAI,wBAAwB;AAC7C;;AAaA,SAAgB,oBAAoB,MAAsB;CACxD,IAAI,MAAM;CACV,KAAK,MAAM,MAAM,oBACf,MAAM,IAAI,QAAQ,IAAI,YAAY;CAEpC,OAAO;AACT;;;;;;;;;;ACtBA,MAAM,cAA8C;CAClD,IAAI;CACJ,IAAI;AACN;;AAGA,SAAgB,aAAa,OAAuB,MAAc;CAChE,OAAO,YAAY,SAAS,YAAY;AAC1C;;AAGA,SAAgB,sBAA+B;CAC7C,OAAO,QAAQ,IAAI,2BAA2B;AAChD;;AAGA,SAAgB,eACd,MACA,OAAqD,CAAC,GAC9C;CAER,IAAI,EADY,KAAK,WAAW,oBAAoB,IACtC,OAAO;CAErB,OAAO,GAAG,aADG,KAAK,SAAU,QAAQ,IAAI,+BAAkD,KAC/D,EAAE,MAAM;AACrC;;AAGA,SAAgB,cAA+B;CAC7C,MAAM,KAAK,QAAQ,IAAI,yBAAyB,aAAa,YAAY;CACzE,IAAI,MAAM,YAAY,MAAM,YAAY,MAAM,SAAS,OAAO;CAC9D,OAAO;AACT;;AAQA,SAAgB,iBAAiC;CAC/C,OAAO;EACL,SAAS,QAAQ,IAAI,yBAAyB;EAC9C,OAAO,QAAQ,IAAI,sBAAsB;CAC3C;AACF"}

package/dist/compliance-CKSBoQUe.js

@@ -0,0 +1,118 @@
+//#region src/core/pii.ts
+/**
+* Lightweight PII masking for LLM calls (Einstein-Trust-Layer-style).
+* Replaces emails and phone numbers with stable placeholders before text is
+* sent to an LLM, and can restore them in the response. Opt-in via
+* DXCRM_PII_MASKING=on so default behaviour and quality are unchanged.
+*/
+const EMAIL_RE = /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}/g;
+const PHONE_RE = /\+?\d[\d\s().-]{6,}\d/g;
+function piiMaskingEnabled() {
+	return process.env["DXCRM_PII_MASKING"] === "on";
+}
+function maskPii(input) {
+	const mapping = /* @__PURE__ */ new Map();
+	let emailCount = 0;
+	let phoneCount = 0;
+	let masked = input.replace(EMAIL_RE, (match) => {
+		let ph = mapping.get(match);
+		if (!ph) {
+			ph = `[EMAIL_${emailCount++}]`;
+			mapping.set(match, ph);
+		}
+		return ph;
+	});
+	masked = masked.replace(PHONE_RE, (match) => {
+		let ph = mapping.get(match);
+		if (!ph) {
+			ph = `[PHONE_${phoneCount++}]`;
+			mapping.set(match, ph);
+		}
+		return ph;
+	});
+	const reverse = /* @__PURE__ */ new Map();
+	for (const [orig, ph] of mapping) reverse.set(ph, orig);
+	const unmask = (text) => {
+		let out = text;
+		for (const [ph, orig] of reverse) out = out.split(ph).join(orig);
+		return out;
+	};
+	return {
+		masked,
+		unmask
+	};
+}
+//#endregion
+//#region src/core/guardrails.ts
+/**
+* Guardrails against (indirect) prompt injection in untrusted CRM content
+* (emails, transcripts, imported notes). Detection is always available;
+* neutralization is applied to LLM inputs when DXCRM_GUARDRAILS=on.
+*/
+const INJECTION_PATTERNS = [
+	/ignore\s+(all\s+|the\s+|any\s+)?(previous|above|prior|preceding)\s+(instructions?|prompts?|messages?)/gi,
+	/disregard\s+(all\s+|the\s+|any\s+)?(previous|above|prior|preceding)/gi,
+	/forget\s+(all\s+|the\s+|everything\s+)?(previous|above|prior|you were told)/gi,
+	/you\s+are\s+now\b/gi,
+	/reveal\s+(your|the)\s+(system\s+)?(instructions?|prompt|prompts?)/gi,
+	/(print|show|repeat)\s+(your|the)\s+(system\s+)?(instructions?|prompt)/gi,
+	/act\s+as\s+(an?\s+)?(system|admin|administrator|developer|root)\b/gi,
+	/<\/?(system|assistant|tool)\b[^>]*>/gi,
+	/\bBEGIN\s+SYSTEM\b/gi
+];
+function guardrailsEnabled() {
+	return process.env["DXCRM_GUARDRAILS"] === "on";
+}
+/** Replace known injection spans with a [filtered] marker, keeping other text. */
+function neutralizeUntrusted(text) {
+	let out = text;
+	for (const re of INJECTION_PATTERNS) out = out.replace(re, "[filtered]");
+	return out;
+}
+//#endregion
+//#region src/core/compliance.ts
+const DISCLOSURES = {
+	de: "Hinweis: Dieser Inhalt wurde mithilfe von KI erstellt (EU-AI-Act Art. 50).",
+	en: "Note: This content was generated with the help of AI (EU AI Act Art. 50)."
+};
+/** Localized Art. 50 disclosure string. */
+function aiDisclosure(lang = "de") {
+	return DISCLOSURES[lang] ?? DISCLOSURES.en;
+}
+/** Disclosure is ON by default (Art. 50); opt out with DXCRM_AI_DISCLOSURE=off. */
+function aiDisclosureEnabled() {
+	return process.env["DXCRM_AI_DISCLOSURE"] !== "off";
+}
+/** Prepend the Art. 50 disclosure to generated content (unless disabled). */
+function labelAiContent(text, opts = {}) {
+	if (!(opts.enabled ?? aiDisclosureEnabled())) return text;
+	return `${aiDisclosure(opts.lang ?? (process.env["DXCRM_AI_DISCLOSURE_LANG"] || "de"))}\n\n${text}`;
+}
+/** Resolve the configured LLM provider (default Anthropic). */
+function llmProvider() {
+	const p = (process.env["DXCRM_LLM_PROVIDER"] ?? "anthropic").toLowerCase();
+	if (p === "ollama" || p === "openai" || p === "local") return p;
+	return "anthropic";
+}
+/** OpenAI-compatible local endpoint config (Ollama defaults), env-overridable. */
+function localLlmConfig() {
+	return {
+		baseUrl: process.env["DXCRM_LLM_BASE_URL"] ?? "http://127.0.0.1:11434/v1",
+		model: process.env["DXCRM_LLM_MODEL"] ?? "llama3.1"
+	};
+}
+/** A single read-out of the active privacy/compliance posture. */
+function complianceConfig() {
+	const provider = llmProvider();
+	return {
+		provider,
+		local: provider === "anthropic" ? null : localLlmConfig(),
+		aiDisclosure: aiDisclosureEnabled(),
+		piiMasking: piiMaskingEnabled(),
+		guardrails: guardrailsEnabled()
+	};
+}
+//#endregion
+export { llmProvider as a, neutralizeUntrusted as c, labelAiContent as i, maskPii as l, aiDisclosureEnabled as n, localLlmConfig as o, complianceConfig as r, guardrailsEnabled as s, aiDisclosure as t, piiMaskingEnabled as u };
+
+//# sourceMappingURL=compliance-CKSBoQUe.js.map

package/dist/compliance-CKSBoQUe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"compliance-CKSBoQUe.js","names":[],"sources":["../src/core/pii.ts","../src/core/guardrails.ts","../src/core/compliance.ts"],"sourcesContent":["/**\n * Lightweight PII masking for LLM calls (Einstein-Trust-Layer-style).\n * Replaces emails and phone numbers with stable placeholders before text is\n * sent to an LLM, and can restore them in the response. Opt-in via\n * DXCRM_PII_MASKING=on so default behaviour and quality are unchanged.\n */\n\nconst EMAIL_RE = /[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\\.[A-Za-z]{2,}/g;\n// Phone: optional +, then 7+ digits possibly grouped by spaces/dashes/parens.\nconst PHONE_RE = /\\+?\\d[\\d\\s().-]{6,}\\d/g;\n\nexport interface MaskedText {\n  masked: string;\n  unmask: (text: string) => string;\n}\n\nexport function piiMaskingEnabled(): boolean {\n  return process.env[\"DXCRM_PII_MASKING\"] === \"on\";\n}\n\nexport function maskPii(input: string): MaskedText {\n  const mapping = new Map<string, string>(); // original -> placeholder\n  let emailCount = 0;\n  let phoneCount = 0;\n\n  let masked = input.replace(EMAIL_RE, (match) => {\n    let ph = mapping.get(match);\n    if (!ph) {\n      ph = `[EMAIL_${emailCount++}]`;\n      mapping.set(match, ph);\n    }\n    return ph;\n  });\n\n  masked = masked.replace(PHONE_RE, (match) => {\n    // Ignore very short numeric runs that slipped through (already handled by {6,}).\n    let ph = mapping.get(match);\n    if (!ph) {\n      ph = `[PHONE_${phoneCount++}]`;\n      mapping.set(match, ph);\n    }\n    return ph;\n  });\n\n  const reverse = new Map<string, string>(); // placeholder -> original\n  for (const [orig, ph] of mapping) reverse.set(ph, orig);\n\n  const unmask = (text: string): string => {\n    let out = text;\n    for (const [ph, orig] of reverse) out = out.split(ph).join(orig);\n    return out;\n  };\n\n  return { masked, unmask };\n}\n","/**\n * Guardrails against (indirect) prompt injection in untrusted CRM content\n * (emails, transcripts, imported notes). Detection is always available;\n * neutralization is applied to LLM inputs when DXCRM_GUARDRAILS=on.\n */\n\nconst INJECTION_PATTERNS: RegExp[] = [\n  /ignore\\s+(all\\s+|the\\s+|any\\s+)?(previous|above|prior|preceding)\\s+(instructions?|prompts?|messages?)/gi,\n  /disregard\\s+(all\\s+|the\\s+|any\\s+)?(previous|above|prior|preceding)/gi,\n  /forget\\s+(all\\s+|the\\s+|everything\\s+)?(previous|above|prior|you were told)/gi,\n  /you\\s+are\\s+now\\b/gi,\n  /reveal\\s+(your|the)\\s+(system\\s+)?(instructions?|prompt|prompts?)/gi,\n  /(print|show|repeat)\\s+(your|the)\\s+(system\\s+)?(instructions?|prompt)/gi,\n  /act\\s+as\\s+(an?\\s+)?(system|admin|administrator|developer|root)\\b/gi,\n  /<\\/?(system|assistant|tool)\\b[^>]*>/gi,\n  /\\bBEGIN\\s+SYSTEM\\b/gi,\n];\n\nexport function guardrailsEnabled(): boolean {\n  return process.env[\"DXCRM_GUARDRAILS\"] === \"on\";\n}\n\nexport function detectPromptInjection(text: string): { flagged: boolean; matches: string[] } {\n  const matches: string[] = [];\n  for (const re of INJECTION_PATTERNS) {\n    re.lastIndex = 0;\n    const found = text.match(re);\n    if (found) matches.push(...found);\n  }\n  return { flagged: matches.length > 0, matches };\n}\n\n/** Replace known injection spans with a [filtered] marker, keeping other text. */\nexport function neutralizeUntrusted(text: string): string {\n  let out = text;\n  for (const re of INJECTION_PATTERNS) {\n    out = out.replace(re, \"[filtered]\");\n  }\n  return out;\n}\n","import { piiMaskingEnabled } from \"./pii.js\";\nimport { guardrailsEnabled } from \"./guardrails.js\";\n\n/**\n * Compliance hardening (domino D17 / §3): the cross-cutting governance layer.\n *  - EU-AI-Act Art. 50 transparency: a localized disclosure that AI generated\n *    the content, on by default (opt-out), wrappable around any generated text.\n *  - Provider-agnostic LLM selection so the workspace can run against a local,\n *    self-hosted model (Ollama / OpenAI-compatible) as a data-residency moat —\n *    no customer data leaves the machine. The provider runtime itself stays in\n *    the agent framework; here we only resolve and expose the configuration.\n *  - A single read-out of the active privacy/compliance posture.\n */\nexport type DisclosureLang = \"de\" | \"en\";\n\nexport type LlmProviderName = \"anthropic\" | \"ollama\" | \"openai\" | \"local\";\n\nconst DISCLOSURES: Record<DisclosureLang, string> = {\n  de: \"Hinweis: Dieser Inhalt wurde mithilfe von KI erstellt (EU-AI-Act Art. 50).\",\n  en: \"Note: This content was generated with the help of AI (EU AI Act Art. 50).\",\n};\n\n/** Localized Art. 50 disclosure string. */\nexport function aiDisclosure(lang: DisclosureLang = \"de\"): string {\n  return DISCLOSURES[lang] ?? DISCLOSURES.en;\n}\n\n/** Disclosure is ON by default (Art. 50); opt out with DXCRM_AI_DISCLOSURE=off. */\nexport function aiDisclosureEnabled(): boolean {\n  return process.env[\"DXCRM_AI_DISCLOSURE\"] !== \"off\";\n}\n\n/** Prepend the Art. 50 disclosure to generated content (unless disabled). */\nexport function labelAiContent(\n  text: string,\n  opts: { lang?: DisclosureLang; enabled?: boolean } = {}\n): string {\n  const enabled = opts.enabled ?? aiDisclosureEnabled();\n  if (!enabled) return text;\n  const lang = opts.lang ?? ((process.env[\"DXCRM_AI_DISCLOSURE_LANG\"] as DisclosureLang) || \"de\");\n  return `${aiDisclosure(lang)}\\n\\n${text}`;\n}\n\n/** Resolve the configured LLM provider (default Anthropic). */\nexport function llmProvider(): LlmProviderName {\n  const p = (process.env[\"DXCRM_LLM_PROVIDER\"] ?? \"anthropic\").toLowerCase();\n  if (p === \"ollama\" || p === \"openai\" || p === \"local\") return p;\n  return \"anthropic\";\n}\n\nexport interface LocalLlmConfig {\n  baseUrl: string;\n  model: string;\n}\n\n/** OpenAI-compatible local endpoint config (Ollama defaults), env-overridable. */\nexport function localLlmConfig(): LocalLlmConfig {\n  return {\n    baseUrl: process.env[\"DXCRM_LLM_BASE_URL\"] ?? \"http://127.0.0.1:11434/v1\",\n    model: process.env[\"DXCRM_LLM_MODEL\"] ?? \"llama3.1\",\n  };\n}\n\nexport interface ComplianceConfig {\n  provider: LlmProviderName;\n  local: LocalLlmConfig | null;\n  aiDisclosure: boolean;\n  piiMasking: boolean;\n  guardrails: boolean;\n}\n\n/** A single read-out of the active privacy/compliance posture. */\nexport function complianceConfig(): ComplianceConfig {\n  const provider = llmProvider();\n  return {\n    provider,\n    local: provider === \"anthropic\" ? null : localLlmConfig(),\n    aiDisclosure: aiDisclosureEnabled(),\n    piiMasking: piiMaskingEnabled(),\n    guardrails: guardrailsEnabled(),\n  };\n}\n"],"mappings":";;;;;;;AAOA,MAAM,WAAW;AAEjB,MAAM,WAAW;AAOjB,SAAgB,oBAA6B;CAC3C,OAAO,QAAQ,IAAI,yBAAyB;AAC9C;AAEA,SAAgB,QAAQ,OAA2B;CACjD,MAAM,0BAAU,IAAI,IAAoB;CACxC,IAAI,aAAa;CACjB,IAAI,aAAa;CAEjB,IAAI,SAAS,MAAM,QAAQ,WAAW,UAAU;EAC9C,IAAI,KAAK,QAAQ,IAAI,KAAK;EAC1B,IAAI,CAAC,IAAI;GACP,KAAK,UAAU,aAAa;GAC5B,QAAQ,IAAI,OAAO,EAAE;EACvB;EACA,OAAO;CACT,CAAC;CAED,SAAS,OAAO,QAAQ,WAAW,UAAU;EAE3C,IAAI,KAAK,QAAQ,IAAI,KAAK;EAC1B,IAAI,CAAC,IAAI;GACP,KAAK,UAAU,aAAa;GAC5B,QAAQ,IAAI,OAAO,EAAE;EACvB;EACA,OAAO;CACT,CAAC;CAED,MAAM,0BAAU,IAAI,IAAoB;CACxC,KAAK,MAAM,CAAC,MAAM,OAAO,SAAS,QAAQ,IAAI,IAAI,IAAI;CAEtD,MAAM,UAAU,SAAyB;EACvC,IAAI,MAAM;EACV,KAAK,MAAM,CAAC,IAAI,SAAS,SAAS,MAAM,IAAI,MAAM,EAAE,EAAE,KAAK,IAAI;EAC/D,OAAO;CACT;CAEA,OAAO;EAAE;EAAQ;CAAO;AAC1B;;;;;;;;AChDA,MAAM,qBAA+B;CACnC;CACA;CACA;CACA;CACA;CACA;CACA;CACA;CACA;AACF;AAEA,SAAgB,oBAA6B;CAC3C,OAAO,QAAQ,IAAI,wBAAwB;AAC7C;;AAaA,SAAgB,oBAAoB,MAAsB;CACxD,IAAI,MAAM;CACV,KAAK,MAAM,MAAM,oBACf,MAAM,IAAI,QAAQ,IAAI,YAAY;CAEpC,OAAO;AACT;;;ACtBA,MAAM,cAA8C;CAClD,IAAI;CACJ,IAAI;AACN;;AAGA,SAAgB,aAAa,OAAuB,MAAc;CAChE,OAAO,YAAY,SAAS,YAAY;AAC1C;;AAGA,SAAgB,sBAA+B;CAC7C,OAAO,QAAQ,IAAI,2BAA2B;AAChD;;AAGA,SAAgB,eACd,MACA,OAAqD,CAAC,GAC9C;CAER,IAAI,EADY,KAAK,WAAW,oBAAoB,IACtC,OAAO;CAErB,OAAO,GAAG,aADG,KAAK,SAAU,QAAQ,IAAI,+BAAkD,KAC/D,EAAE,MAAM;AACrC;;AAGA,SAAgB,cAA+B;CAC7C,MAAM,KAAK,QAAQ,IAAI,yBAAyB,aAAa,YAAY;CACzE,IAAI,MAAM,YAAY,MAAM,YAAY,MAAM,SAAS,OAAO;CAC9D,OAAO;AACT;;AAQA,SAAgB,iBAAiC;CAC/C,OAAO;EACL,SAAS,QAAQ,IAAI,yBAAyB;EAC9C,OAAO,QAAQ,IAAI,sBAAsB;CAC3C;AACF;;AAWA,SAAgB,mBAAqC;CACnD,MAAM,WAAW,YAAY;CAC7B,OAAO;EACL;EACA,OAAO,aAAa,cAAc,OAAO,eAAe;EACxD,cAAc,oBAAoB;EAClC,YAAY,kBAAkB;EAC9B,YAAY,kBAAkB;CAChC;AACF"}

package/dist/compliance-CujOqAKk.js

@@ -0,0 +1,2 @@
+import { i as labelAiContent, r as complianceConfig, t as aiDisclosure } from "./compliance-CKSBoQUe.js";
+export { aiDisclosure, complianceConfig, labelAiContent };

package/dist/context-builder-BzWAp3Zs.js

@@ -0,0 +1,96 @@
+import path from "path";
+import fs from "fs";
+import matter from "gray-matter";
+//#region src/core/context-builder.ts
+const MAX_INTERACTIONS = 10;
+function estimateTokens(text) {
+	return Math.ceil(text.length / 4);
+}
+function parseRecentInteractions(filePath, limit) {
+	if (!fs.existsSync(filePath)) return "";
+	return fs.readFileSync(filePath, "utf-8").split(/(?=^## \d{4}-\d{2}-\d{2})/m).filter((e) => e.trim()).slice(0, limit).join("\n").trim();
+}
+function parsePipelineContent(filePath) {
+	if (!fs.existsSync(filePath)) return "";
+	return fs.readFileSync(filePath, "utf-8").trim();
+}
+function extractSection(content, sectionName) {
+	const match = new RegExp(`## ${sectionName}([\\s\\S]*?)(?=^## |$)`, "m").exec(content);
+	return match ? (match[1] ?? "").trim() : "";
+}
+async function buildContext(dataDir, slug) {
+	const customerDir = path.join(dataDir, "customers", slug);
+	if (!fs.existsSync(customerDir)) throw new Error(`Customer '${slug}' not found`);
+	const mainFactsPath = path.join(customerDir, "main_facts.md");
+	const interactionsPath = path.join(customerDir, "interactions.md");
+	const pipelinePath = path.join(customerDir, "pipeline.md");
+	let mainContent = "";
+	let frontmatterStr = "";
+	if (fs.existsSync(mainFactsPath)) {
+		const raw = matter(fs.readFileSync(mainFactsPath, "utf-8"));
+		mainContent = raw.content ?? "";
+		frontmatterStr = Object.entries(raw.data).map(([k, v]) => `${k}: ${JSON.stringify(v)}`).join("\n");
+	}
+	const quickRef = extractSection(mainContent, "Quick Reference");
+	const contacts = extractSection(mainContent, "Contacts");
+	const criticalContext = extractSection(mainContent, "Critical Context");
+	const openQuestions = extractSection(mainContent, "Open Questions");
+	const recentActivity = parseRecentInteractions(interactionsPath, MAX_INTERACTIONS);
+	const pipelineContent = parsePipelineContent(pipelinePath);
+	const raw = [
+		`# Customer Context: ${slug}`,
+		"",
+		"## Metadata",
+		frontmatterStr || "(no metadata)",
+		"",
+		"## Quick Reference",
+		quickRef || "(not set)",
+		"",
+		"## Contacts",
+		contacts || "(not set)",
+		"",
+		"## Critical Context",
+		criticalContext || "(not set)",
+		"",
+		"## Recent Activity (last 10 interactions)",
+		recentActivity || "(no interactions yet)",
+		"",
+		"## Pipeline",
+		pipelineContent || "(no deals)",
+		"",
+		"## Open Questions",
+		openQuestions || "(none)"
+	].join("\n");
+	if (estimateTokens(raw) > 3e3) {
+		const trimmedActivity = parseRecentInteractions(interactionsPath, 5);
+		return [
+			`# Customer Context: ${slug}`,
+			"",
+			"## Metadata",
+			frontmatterStr || "(no metadata)",
+			"",
+			"## Quick Reference",
+			quickRef || "(not set)",
+			"",
+			"## Contacts",
+			contacts || "(not set)",
+			"",
+			"## Critical Context",
+			criticalContext || "(not set)",
+			"",
+			"## Recent Activity (last 5 interactions — trimmed for token budget)",
+			trimmedActivity || "(no interactions yet)",
+			"",
+			"## Pipeline",
+			pipelineContent || "(no deals)",
+			"",
+			"## Open Questions",
+			openQuestions || "(none)"
+		].join("\n");
+	}
+	return raw;
+}
+//#endregion
+export { buildContext as t };
+
+//# sourceMappingURL=context-builder-BzWAp3Zs.js.map

package/dist/context-builder-BzWAp3Zs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-builder-BzWAp3Zs.js","names":[],"sources":["../src/core/context-builder.ts"],"sourcesContent":["import fs from \"fs\";\nimport path from \"path\";\nimport matter from \"gray-matter\";\n\nconst MAX_INTERACTIONS = 10;\n\nfunction estimateTokens(text: string): number {\n  return Math.ceil(text.length / 4);\n}\n\nfunction parseRecentInteractions(filePath: string, limit: number): string {\n  if (!fs.existsSync(filePath)) return \"\";\n  const content = fs.readFileSync(filePath, \"utf-8\") as string;\n\n  // Split on ## date headings\n  const entries = content.split(/(?=^## \\d{4}-\\d{2}-\\d{2})/m).filter((e) => e.trim());\n  const recent = entries.slice(0, limit);\n  return recent.join(\"\\n\").trim();\n}\n\nfunction parsePipelineContent(filePath: string): string {\n  if (!fs.existsSync(filePath)) return \"\";\n  const content = fs.readFileSync(filePath, \"utf-8\") as string;\n  return content.trim();\n}\n\nfunction extractSection(content: string, sectionName: string): string {\n  const regex = new RegExp(`## ${sectionName}([\\\\s\\\\S]*?)(?=^## |$)`, \"m\");\n  const match = regex.exec(content);\n  return match ? (match[1] ?? \"\").trim() : \"\";\n}\n\nexport async function buildContext(dataDir: string, slug: string): Promise<string> {\n  const customerDir = path.join(dataDir, \"customers\", slug);\n\n  if (!fs.existsSync(customerDir)) {\n    throw new Error(`Customer '${slug}' not found`);\n  }\n\n  const mainFactsPath = path.join(customerDir, \"main_facts.md\");\n  const interactionsPath = path.join(customerDir, \"interactions.md\");\n  const pipelinePath = path.join(customerDir, \"pipeline.md\");\n\n  // Read main_facts.md\n  let mainContent = \"\";\n  let frontmatterStr = \"\";\n  if (fs.existsSync(mainFactsPath)) {\n    const fileContent = fs.readFileSync(mainFactsPath, \"utf-8\") as string;\n    const raw = matter(fileContent);\n    mainContent = raw.content ?? \"\";\n    frontmatterStr = Object.entries(raw.data as Record<string, unknown>)\n      .map(([k, v]) => `${k}: ${JSON.stringify(v)}`)\n      .join(\"\\n\");\n  }\n\n  const quickRef = extractSection(mainContent, \"Quick Reference\");\n  const contacts = extractSection(mainContent, \"Contacts\");\n  const criticalContext = extractSection(mainContent, \"Critical Context\");\n  const openQuestions = extractSection(mainContent, \"Open Questions\");\n\n  const recentActivity = parseRecentInteractions(interactionsPath, MAX_INTERACTIONS);\n  const pipelineContent = parsePipelineContent(pipelinePath);\n\n  const sections: string[] = [\n    `# Customer Context: ${slug}`,\n    \"\",\n    \"## Metadata\",\n    frontmatterStr || \"(no metadata)\",\n    \"\",\n    \"## Quick Reference\",\n    quickRef || \"(not set)\",\n    \"\",\n    \"## Contacts\",\n    contacts || \"(not set)\",\n    \"\",\n    \"## Critical Context\",\n    criticalContext || \"(not set)\",\n    \"\",\n    \"## Recent Activity (last 10 interactions)\",\n    recentActivity || \"(no interactions yet)\",\n    \"\",\n    \"## Pipeline\",\n    pipelineContent || \"(no deals)\",\n    \"\",\n    \"## Open Questions\",\n    openQuestions || \"(none)\",\n  ];\n\n  const raw = sections.join(\"\\n\");\n  const tokenEstimate = estimateTokens(raw);\n\n  // If over 3000 tokens, trim interactions\n  if (tokenEstimate > 3000) {\n    const trimmedActivity = parseRecentInteractions(interactionsPath, 5);\n    const trimmedSections: string[] = [\n      `# Customer Context: ${slug}`,\n      \"\",\n      \"## Metadata\",\n      frontmatterStr || \"(no metadata)\",\n      \"\",\n      \"## Quick Reference\",\n      quickRef || \"(not set)\",\n      \"\",\n      \"## Contacts\",\n      contacts || \"(not set)\",\n      \"\",\n      \"## Critical Context\",\n      criticalContext || \"(not set)\",\n      \"\",\n      \"## Recent Activity (last 5 interactions — trimmed for token budget)\",\n      trimmedActivity || \"(no interactions yet)\",\n      \"\",\n      \"## Pipeline\",\n      pipelineContent || \"(no deals)\",\n      \"\",\n      \"## Open Questions\",\n      openQuestions || \"(none)\",\n    ];\n    return trimmedSections.join(\"\\n\");\n  }\n\n  return raw;\n}\n\n/** Robust section-body extractor: from a `## Name` heading to the next `## ` heading. */\nfunction sectionBody(content: string, name: string): string {\n  const lines = content.split(\"\\n\");\n  const start = lines.findIndex((l) => l.trim() === `## ${name}`);\n  if (start < 0) return \"\";\n  const body: string[] = [];\n  for (let i = start + 1; i < lines.length; i++) {\n    if (lines[i]!.startsWith(\"## \")) break;\n    body.push(lines[i]!);\n  }\n  return body.join(\"\\n\").trim();\n}\n\nexport interface ContextBlock {\n  slug: string;\n  metadata: Record<string, unknown>;\n  quickReference: string;\n  contacts: string;\n  criticalContext: string;\n  openQuestions: string;\n  recentActivity: string;\n  pipeline: string;\n}\n\n/**\n * Structured variant of buildContext (REF-2): returns a typed object instead of\n * a markdown string, for callers that need fields programmatically (e.g. MCP\n * responses, SDK consumers). buildContext remains the token-budgeted string form.\n */\nexport async function buildContextBlock(\n  dataDir: string,\n  slug: string,\n  role?: \"admin\" | \"manager\" | \"rep\"\n): Promise<ContextBlock> {\n  const customerDir = path.join(dataDir, \"customers\", slug);\n  if (!fs.existsSync(customerDir)) {\n    throw new Error(`Customer '${slug}' not found`);\n  }\n\n  const mainFactsPath = path.join(customerDir, \"main_facts.md\");\n  const interactionsPath = path.join(customerDir, \"interactions.md\");\n  const pipelinePath = path.join(customerDir, \"pipeline.md\");\n\n  let mainContent = \"\";\n  let metadata: Record<string, unknown> = {};\n  if (fs.existsSync(mainFactsPath)) {\n    const raw = matter(fs.readFileSync(mainFactsPath, \"utf-8\") as string);\n    mainContent = raw.content ?? \"\";\n    metadata = raw.data as Record<string, unknown>;\n  }\n\n  // Field-level security: redact metadata fields the role may not see.\n  if (role) {\n    const { loadFieldAcl, redactFields } = await import(\"./rbac.js\");\n    metadata = redactFields(metadata, role, loadFieldAcl(dataDir));\n  }\n\n  return {\n    slug,\n    metadata,\n    quickReference: sectionBody(mainContent, \"Quick Reference\"),\n    contacts: sectionBody(mainContent, \"Contacts\"),\n    criticalContext: sectionBody(mainContent, \"Critical Context\"),\n    openQuestions: sectionBody(mainContent, \"Open Questions\"),\n    recentActivity: parseRecentInteractions(interactionsPath, MAX_INTERACTIONS),\n    pipeline: parsePipelineContent(pipelinePath),\n  };\n}\n"],"mappings":";;;;AAIA,MAAM,mBAAmB;AAEzB,SAAS,eAAe,MAAsB;CAC5C,OAAO,KAAK,KAAK,KAAK,SAAS,CAAC;AAClC;AAEA,SAAS,wBAAwB,UAAkB,OAAuB;CACxE,IAAI,CAAC,GAAG,WAAW,QAAQ,GAAG,OAAO;CAMrC,OALgB,GAAG,aAAa,UAAU,OAGpB,EAAE,MAAM,4BAA4B,EAAE,QAAQ,MAAM,EAAE,KAAK,CAC5D,EAAE,MAAM,GAAG,KACpB,EAAE,KAAK,IAAI,EAAE,KAAK;AAChC;AAEA,SAAS,qBAAqB,UAA0B;CACtD,IAAI,CAAC,GAAG,WAAW,QAAQ,GAAG,OAAO;CAErC,OADgB,GAAG,aAAa,UAAU,OAC7B,EAAE,KAAK;AACtB;AAEA,SAAS,eAAe,SAAiB,aAA6B;CAEpE,MAAM,QAAQ,IADI,OAAO,MAAM,YAAY,yBAAyB,GAClD,EAAE,KAAK,OAAO;CAChC,OAAO,SAAS,MAAM,MAAM,IAAI,KAAK,IAAI;AAC3C;AAEA,eAAsB,aAAa,SAAiB,MAA+B;CACjF,MAAM,cAAc,KAAK,KAAK,SAAS,aAAa,IAAI;CAExD,IAAI,CAAC,GAAG,WAAW,WAAW,GAC5B,MAAM,IAAI,MAAM,aAAa,KAAK,YAAY;CAGhD,MAAM,gBAAgB,KAAK,KAAK,aAAa,eAAe;CAC5D,MAAM,mBAAmB,KAAK,KAAK,aAAa,iBAAiB;CACjE,MAAM,eAAe,KAAK,KAAK,aAAa,aAAa;CAGzD,IAAI,cAAc;CAClB,IAAI,iBAAiB;CACrB,IAAI,GAAG,WAAW,aAAa,GAAG;EAEhC,MAAM,MAAM,OADQ,GAAG,aAAa,eAAe,OACtB,CAAC;EAC9B,cAAc,IAAI,WAAW;EAC7B,iBAAiB,OAAO,QAAQ,IAAI,IAA+B,EAChE,KAAK,CAAC,GAAG,OAAO,GAAG,EAAE,IAAI,KAAK,UAAU,CAAC,GAAG,EAC5C,KAAK,IAAI;CACd;CAEA,MAAM,WAAW,eAAe,aAAa,iBAAiB;CAC9D,MAAM,WAAW,eAAe,aAAa,UAAU;CACvD,MAAM,kBAAkB,eAAe,aAAa,kBAAkB;CACtE,MAAM,gBAAgB,eAAe,aAAa,gBAAgB;CAElE,MAAM,iBAAiB,wBAAwB,kBAAkB,gBAAgB;CACjF,MAAM,kBAAkB,qBAAqB,YAAY;CA2BzD,MAAM,MAAM;EAxBV,uBAAuB;EACvB;EACA;EACA,kBAAkB;EAClB;EACA;EACA,YAAY;EACZ;EACA;EACA,YAAY;EACZ;EACA;EACA,mBAAmB;EACnB;EACA;EACA,kBAAkB;EAClB;EACA;EACA,mBAAmB;EACnB;EACA;EACA,iBAAiB;CAGA,EAAE,KAAK,IAAI;CAI9B,IAHsB,eAAe,GAGrB,IAAI,KAAM;EACxB,MAAM,kBAAkB,wBAAwB,kBAAkB,CAAC;EAyBnE,OAAO;GAvBL,uBAAuB;GACvB;GACA;GACA,kBAAkB;GAClB;GACA;GACA,YAAY;GACZ;GACA;GACA,YAAY;GACZ;GACA;GACA,mBAAmB;GACnB;GACA;GACA,mBAAmB;GACnB;GACA;GACA,mBAAmB;GACnB;GACA;GACA,iBAAiB;EAEE,EAAE,KAAK,IAAI;CAClC;CAEA,OAAO;AACT"}

package/dist/context-builder-DlrRcqmJ.js

@@ -0,0 +1,2 @@
+import { t as buildContext } from "./context-builder-BzWAp3Zs.js";
+export { buildContext };