npm - @dcyfr/ai - Versions diffs - 1.0.4 → 2.1.0 - Mend

@dcyfr/ai 1.0.4 → 2.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (411) hide show

package/CHANGELOG.md +106 -0
package/README.md +381 -9
package/dist/ai/agents/agent-loader.d.ts +12 -0
package/dist/ai/agents/agent-loader.d.ts.map +1 -1
package/dist/ai/agents/agent-loader.js +74 -65
package/dist/ai/agents/agent-loader.js.map +1 -1
package/dist/ai/agents/agent-registry.d.ts +2 -0
package/dist/ai/agents/agent-registry.d.ts.map +1 -1
package/dist/ai/agents/agent-registry.js +15 -14
package/dist/ai/agents/agent-registry.js.map +1 -1
package/dist/ai/agents/agent-router.d.ts +20 -5
package/dist/ai/agents/agent-router.d.ts.map +1 -1
package/dist/ai/agents/agent-router.js +89 -43
package/dist/ai/agents/agent-router.js.map +1 -1
package/dist/ai/agents/index.d.ts +6 -1
package/dist/ai/agents/index.d.ts.map +1 -1
package/dist/ai/agents/index.js +9 -3
package/dist/ai/agents/index.js.map +1 -1
package/dist/ai/agents/instruction-template.d.ts +45 -0
package/dist/ai/agents/instruction-template.d.ts.map +1 -0
package/dist/ai/agents/instruction-template.js +197 -0
package/dist/ai/agents/instruction-template.js.map +1 -0
package/dist/ai/agents/persona-resolver.d.ts +90 -0
package/dist/ai/agents/persona-resolver.d.ts.map +1 -0
package/dist/ai/agents/persona-resolver.js +121 -0
package/dist/ai/agents/persona-resolver.js.map +1 -0
package/dist/ai/agents/schema.d.ts +166 -0
package/dist/ai/agents/schema.d.ts.map +1 -0
package/dist/ai/agents/schema.js +94 -0
package/dist/ai/agents/schema.js.map +1 -0
package/dist/ai/agents/types.d.ts +102 -0
package/dist/ai/agents/types.d.ts.map +1 -1
package/dist/ai/agents-builtin/architecture/index.js +3 -3
package/dist/ai/agents-builtin/content/index.js +1 -1
package/dist/ai/agents-builtin/data/index.js +1 -1
package/dist/ai/agents-builtin/development/index.js +4 -4
package/dist/ai/agents-builtin/devops/index.js +1 -1
package/dist/ai/agents-builtin/index.js +33 -33
package/dist/ai/agents-builtin/performance/index.js +1 -1
package/dist/ai/agents-builtin/research/index.js +1 -1
package/dist/ai/agents-builtin/security/index.js +1 -1
package/dist/ai/agents-builtin/testing/index.js +2 -2
package/dist/ai/config/loader.d.ts.map +1 -1
package/dist/ai/config/loader.js +6 -3
package/dist/ai/config/loader.js.map +1 -1
package/dist/ai/config/schema.d.ts +242 -1156
package/dist/ai/config/schema.d.ts.map +1 -1
package/dist/ai/config/schema.js +69 -20
package/dist/ai/config/schema.js.map +1 -1
package/dist/ai/core/provider-registry.d.ts +32 -0
package/dist/ai/core/provider-registry.d.ts.map +1 -1
package/dist/ai/core/provider-registry.js +189 -14
package/dist/ai/core/provider-registry.js.map +1 -1
package/dist/ai/core/telemetry-engine.d.ts +26 -0
package/dist/ai/core/telemetry-engine.d.ts.map +1 -1
package/dist/ai/core/telemetry-engine.js +81 -1
package/dist/ai/core/telemetry-engine.js.map +1 -1
package/dist/ai/delegation/agent-registry.d.ts +143 -0
package/dist/ai/delegation/agent-registry.d.ts.map +1 -0
package/dist/ai/delegation/agent-registry.js +231 -0
package/dist/ai/delegation/agent-registry.js.map +1 -0
package/dist/ai/delegation/blast-radius-tracker.d.ts +65 -0
package/dist/ai/delegation/blast-radius-tracker.d.ts.map +1 -0
package/dist/ai/delegation/blast-radius-tracker.js +81 -0
package/dist/ai/delegation/blast-radius-tracker.js.map +1 -0
package/dist/ai/delegation/capability-bootstrap.d.ts +40 -0
package/dist/ai/delegation/capability-bootstrap.d.ts.map +1 -0
package/dist/ai/delegation/capability-bootstrap.js +431 -0
package/dist/ai/delegation/capability-bootstrap.js.map +1 -0
package/dist/ai/delegation/capability-registry.d.ts +81 -0
package/dist/ai/delegation/capability-registry.d.ts.map +1 -0
package/dist/ai/delegation/capability-registry.js +339 -0
package/dist/ai/delegation/capability-registry.js.map +1 -0
package/dist/ai/delegation/chain-tracker.d.ts +152 -0
package/dist/ai/delegation/chain-tracker.d.ts.map +1 -0
package/dist/ai/delegation/chain-tracker.js +336 -0
package/dist/ai/delegation/chain-tracker.js.map +1 -0
package/dist/ai/delegation/circuit-breaker.d.ts +59 -0
package/dist/ai/delegation/circuit-breaker.d.ts.map +1 -0
package/dist/ai/delegation/circuit-breaker.js +153 -0
package/dist/ai/delegation/circuit-breaker.js.map +1 -0
package/dist/ai/delegation/contract-manager.d.ts +415 -0
package/dist/ai/delegation/contract-manager.d.ts.map +1 -0
package/dist/ai/delegation/contract-manager.js +1258 -0
package/dist/ai/delegation/contract-manager.js.map +1 -0
package/dist/ai/delegation/delegation-manager.d.ts +505 -0
package/dist/ai/delegation/delegation-manager.d.ts.map +1 -0
package/dist/ai/delegation/delegation-manager.js +773 -0
package/dist/ai/delegation/delegation-manager.js.map +1 -0
package/dist/ai/delegation/event-schemas.d.ts +101 -0
package/dist/ai/delegation/event-schemas.d.ts.map +1 -0
package/dist/ai/delegation/event-schemas.js +59 -0
package/dist/ai/delegation/event-schemas.js.map +1 -0
package/dist/ai/delegation/execution-mode-dashboard.d.ts +109 -0
package/dist/ai/delegation/execution-mode-dashboard.d.ts.map +1 -0
package/dist/ai/delegation/execution-mode-dashboard.js +167 -0
package/dist/ai/delegation/execution-mode-dashboard.js.map +1 -0
package/dist/ai/delegation/feature-flags.d.ts +191 -0
package/dist/ai/delegation/feature-flags.d.ts.map +1 -0
package/dist/ai/delegation/feature-flags.js +332 -0
package/dist/ai/delegation/feature-flags.js.map +1 -0
package/dist/ai/delegation/index.d.ts +51 -0
package/dist/ai/delegation/index.d.ts.map +1 -0
package/dist/ai/delegation/index.js +39 -0
package/dist/ai/delegation/index.js.map +1 -0
package/dist/ai/delegation/middleware/chain-depth-middleware.d.ts +39 -0
package/dist/ai/delegation/middleware/chain-depth-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/chain-depth-middleware.js +77 -0
package/dist/ai/delegation/middleware/chain-depth-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/chain-tracker-middleware.d.ts +46 -0
package/dist/ai/delegation/middleware/chain-tracker-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/chain-tracker-middleware.js +89 -0
package/dist/ai/delegation/middleware/chain-tracker-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/content-policy-middleware.d.ts +31 -0
package/dist/ai/delegation/middleware/content-policy-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/content-policy-middleware.js +82 -0
package/dist/ai/delegation/middleware/content-policy-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/feature-flag-middleware.d.ts +46 -0
package/dist/ai/delegation/middleware/feature-flag-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/feature-flag-middleware.js +59 -0
package/dist/ai/delegation/middleware/feature-flag-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/identity-middleware.d.ts +23 -0
package/dist/ai/delegation/middleware/identity-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/identity-middleware.js +64 -0
package/dist/ai/delegation/middleware/identity-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/permissions-middleware.d.ts +48 -0
package/dist/ai/delegation/middleware/permissions-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/permissions-middleware.js +107 -0
package/dist/ai/delegation/middleware/permissions-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/rate-limiter-middleware.d.ts +38 -0
package/dist/ai/delegation/middleware/rate-limiter-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/rate-limiter-middleware.js +65 -0
package/dist/ai/delegation/middleware/rate-limiter-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/reputation-middleware.d.ts +39 -0
package/dist/ai/delegation/middleware/reputation-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/reputation-middleware.js +75 -0
package/dist/ai/delegation/middleware/reputation-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/resource-limiter-middleware.d.ts +52 -0
package/dist/ai/delegation/middleware/resource-limiter-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/resource-limiter-middleware.js +112 -0
package/dist/ai/delegation/middleware/resource-limiter-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/threat-validator-middleware.d.ts +23 -0
package/dist/ai/delegation/middleware/threat-validator-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/threat-validator-middleware.js +83 -0
package/dist/ai/delegation/middleware/threat-validator-middleware.js.map +1 -0
package/dist/ai/delegation/middleware/tlp-middleware.d.ts +23 -0
package/dist/ai/delegation/middleware/tlp-middleware.d.ts.map +1 -0
package/dist/ai/delegation/middleware/tlp-middleware.js +59 -0
package/dist/ai/delegation/middleware/tlp-middleware.js.map +1 -0
package/dist/ai/delegation/monitoring.d.ts +298 -0
package/dist/ai/delegation/monitoring.d.ts.map +1 -0
package/dist/ai/delegation/monitoring.js +584 -0
package/dist/ai/delegation/monitoring.js.map +1 -0
package/dist/ai/delegation/security-middleware-chain.d.ts +71 -0
package/dist/ai/delegation/security-middleware-chain.d.ts.map +1 -0
package/dist/ai/delegation/security-middleware-chain.js +163 -0
package/dist/ai/delegation/security-middleware-chain.js.map +1 -0
package/dist/ai/delegation/session-checkpoint.d.ts +77 -0
package/dist/ai/delegation/session-checkpoint.d.ts.map +1 -0
package/dist/ai/delegation/session-checkpoint.js +131 -0
package/dist/ai/delegation/session-checkpoint.js.map +1 -0
package/dist/ai/delegation/session-manager.d.ts +131 -0
package/dist/ai/delegation/session-manager.d.ts.map +1 -0
package/dist/ai/delegation/session-manager.js +243 -0
package/dist/ai/delegation/session-manager.js.map +1 -0
package/dist/ai/delegation/session-queue.d.ts +95 -0
package/dist/ai/delegation/session-queue.d.ts.map +1 -0
package/dist/ai/delegation/session-queue.js +136 -0
package/dist/ai/delegation/session-queue.js.map +1 -0
package/dist/ai/delegation/timeout-watchdog.d.ts +60 -0
package/dist/ai/delegation/timeout-watchdog.d.ts.map +1 -0
package/dist/ai/delegation/timeout-watchdog.js +100 -0
package/dist/ai/delegation/timeout-watchdog.js.map +1 -0
package/dist/ai/examples/integration-demo.d.ts +27 -0
package/dist/ai/examples/integration-demo.d.ts.map +1 -0
package/dist/ai/examples/integration-demo.js +536 -0
package/dist/ai/examples/integration-demo.js.map +1 -0
package/dist/ai/index.d.ts +25 -0
package/dist/ai/index.d.ts.map +1 -1
package/dist/ai/index.js +31 -11
package/dist/ai/index.js.map +1 -1
package/dist/ai/mcp/servers/analytics/index.js +67 -11
package/dist/ai/mcp/servers/analytics/index.js.map +1 -1
package/dist/ai/mcp/servers/content-manager/index.d.ts.map +1 -1
package/dist/ai/mcp/servers/content-manager/index.js +50 -4
package/dist/ai/mcp/servers/content-manager/index.js.map +1 -1
package/dist/ai/mcp/servers/delegation-monitor/index.d.ts +36 -0
package/dist/ai/mcp/servers/delegation-monitor/index.d.ts.map +1 -0
package/dist/ai/mcp/servers/delegation-monitor/index.js +757 -0
package/dist/ai/mcp/servers/delegation-monitor/index.js.map +1 -0
package/dist/ai/mcp/servers/design-tokens/index.d.ts.map +1 -1
package/dist/ai/mcp/servers/design-tokens/index.js +62 -39
package/dist/ai/mcp/servers/design-tokens/index.js.map +1 -1
package/dist/ai/mcp/servers/promptintel/index.js +15 -3
package/dist/ai/mcp/servers/promptintel/index.js.map +1 -1
package/dist/ai/mcp/servers/shared/rate-limiter.d.ts.map +1 -1
package/dist/ai/mcp/servers/shared/rate-limiter.js +3 -1
package/dist/ai/mcp/servers/shared/rate-limiter.js.map +1 -1
package/dist/ai/mcp/servers/shared/redis-client.d.ts.map +1 -1
package/dist/ai/mcp/servers/shared/redis-client.js +54 -47
package/dist/ai/mcp/servers/shared/redis-client.js.map +1 -1
package/dist/ai/mcp/servers/shared/types.d.ts +9 -0
package/dist/ai/mcp/servers/shared/types.d.ts.map +1 -1
package/dist/ai/mcp/servers/shared/utils.d.ts +9 -1
package/dist/ai/mcp/servers/shared/utils.d.ts.map +1 -1
package/dist/ai/mcp/servers/shared/utils.js +52 -2
package/dist/ai/mcp/servers/shared/utils.js.map +1 -1
package/dist/ai/memory/config.d.ts +18 -3
package/dist/ai/memory/config.d.ts.map +1 -1
package/dist/ai/memory/config.js +61 -15
package/dist/ai/memory/config.js.map +1 -1
package/dist/ai/memory/dcyfr-memory.d.ts +4 -0
package/dist/ai/memory/dcyfr-memory.d.ts.map +1 -1
package/dist/ai/memory/dcyfr-memory.js +44 -6
package/dist/ai/memory/dcyfr-memory.js.map +1 -1
package/dist/ai/memory/mem0-client.d.ts.map +1 -1
package/dist/ai/memory/mem0-client.js +53 -14
package/dist/ai/memory/mem0-client.js.map +1 -1
package/dist/ai/permissions/attenuation-engine.d.ts +159 -0
package/dist/ai/permissions/attenuation-engine.d.ts.map +1 -0
package/dist/ai/permissions/attenuation-engine.js +511 -0
package/dist/ai/permissions/attenuation-engine.js.map +1 -0
package/dist/ai/plugins/plugin-loader.d.ts +4 -0
package/dist/ai/plugins/plugin-loader.d.ts.map +1 -1
package/dist/ai/plugins/plugin-loader.js +28 -28
package/dist/ai/plugins/plugin-loader.js.map +1 -1
package/dist/ai/reputation/execution-mode-reputation.d.ts +104 -0
package/dist/ai/reputation/execution-mode-reputation.d.ts.map +1 -0
package/dist/ai/reputation/execution-mode-reputation.js +142 -0
package/dist/ai/reputation/execution-mode-reputation.js.map +1 -0
package/dist/ai/reputation/reputation-engine.d.ts +204 -0
package/dist/ai/reputation/reputation-engine.d.ts.map +1 -0
package/dist/ai/reputation/reputation-engine.js +426 -0
package/dist/ai/reputation/reputation-engine.js.map +1 -0
package/dist/ai/runtime/agent-runtime.d.ts +193 -0
package/dist/ai/runtime/agent-runtime.d.ts.map +1 -0
package/dist/ai/runtime/agent-runtime.js +1009 -0
package/dist/ai/runtime/agent-runtime.js.map +1 -0
package/dist/ai/runtime/index.d.ts +11 -0
package/dist/ai/runtime/index.d.ts.map +1 -0
package/dist/ai/runtime/index.js +9 -0
package/dist/ai/runtime/index.js.map +1 -0
package/dist/ai/runtime/telemetry-schema.d.ts +192 -0
package/dist/ai/runtime/telemetry-schema.d.ts.map +1 -0
package/dist/ai/runtime/telemetry-schema.js +200 -0
package/dist/ai/runtime/telemetry-schema.js.map +1 -0
package/dist/ai/runtime/types.d.ts +236 -0
package/dist/ai/runtime/types.d.ts.map +1 -0
package/dist/ai/runtime/types.js +10 -0
package/dist/ai/runtime/types.js.map +1 -0
package/dist/ai/src/batch-processor.d.ts +298 -0
package/dist/ai/src/batch-processor.d.ts.map +1 -0
package/dist/ai/src/batch-processor.js +520 -0
package/dist/ai/src/batch-processor.js.map +1 -0
package/dist/ai/src/capability-bootstrap.d.ts +222 -0
package/dist/ai/src/capability-bootstrap.d.ts.map +1 -0
package/dist/ai/src/capability-bootstrap.js +421 -0
package/dist/ai/src/capability-bootstrap.js.map +1 -0
package/dist/ai/src/capability-manifest-generator.d.ts +52 -0
package/dist/ai/src/capability-manifest-generator.d.ts.map +1 -0
package/dist/ai/src/capability-manifest-generator.js +691 -0
package/dist/ai/src/capability-manifest-generator.js.map +1 -0
package/dist/ai/src/capability-registry.d.ts +157 -0
package/dist/ai/src/capability-registry.d.ts.map +1 -0
package/dist/ai/src/capability-registry.js +577 -0
package/dist/ai/src/capability-registry.js.map +1 -0
package/dist/ai/src/cli/telemetry-dashboard.d.ts +132 -0
package/dist/ai/src/cli/telemetry-dashboard.d.ts.map +1 -0
package/dist/ai/src/cli/telemetry-dashboard.js +565 -0
package/dist/ai/src/cli/telemetry-dashboard.js.map +1 -0
package/dist/ai/src/delegation/feature-flags.d.ts +213 -0
package/dist/ai/src/delegation/feature-flags.d.ts.map +1 -0
package/dist/ai/src/delegation/feature-flags.js +395 -0
package/dist/ai/src/delegation/feature-flags.js.map +1 -0
package/dist/ai/src/delegation/liability-firebreak.d.ts +303 -0
package/dist/ai/src/delegation/liability-firebreak.d.ts.map +1 -0
package/dist/ai/src/delegation/liability-firebreak.js +643 -0
package/dist/ai/src/delegation/liability-firebreak.js.map +1 -0
package/dist/ai/src/delegation/security-threat-model.d.ts +171 -0
package/dist/ai/src/delegation/security-threat-model.d.ts.map +1 -0
package/dist/ai/src/delegation/security-threat-model.js +723 -0
package/dist/ai/src/delegation/security-threat-model.js.map +1 -0
package/dist/ai/src/delegation/tlp-enforcement.d.ts +146 -0
package/dist/ai/src/delegation/tlp-enforcement.d.ts.map +1 -0
package/dist/ai/src/delegation/tlp-enforcement.js +382 -0
package/dist/ai/src/delegation/tlp-enforcement.js.map +1 -0
package/dist/ai/src/delegation-capability-integration.d.ts +154 -0
package/dist/ai/src/delegation-capability-integration.d.ts.map +1 -0
package/dist/ai/src/delegation-capability-integration.js +351 -0
package/dist/ai/src/delegation-capability-integration.js.map +1 -0
package/dist/ai/src/end-to-end-workflow-orchestrator.d.ts +325 -0
package/dist/ai/src/end-to-end-workflow-orchestrator.d.ts.map +1 -0
package/dist/ai/src/end-to-end-workflow-orchestrator.js +801 -0
package/dist/ai/src/end-to-end-workflow-orchestrator.js.map +1 -0
package/dist/ai/src/enhanced-capability-detection.d.ts +237 -0
package/dist/ai/src/enhanced-capability-detection.d.ts.map +1 -0
package/dist/ai/src/enhanced-capability-detection.js +448 -0
package/dist/ai/src/enhanced-capability-detection.js.map +1 -0
package/dist/ai/src/intelligent-cache-manager.d.ts +327 -0
package/dist/ai/src/intelligent-cache-manager.d.ts.map +1 -0
package/dist/ai/src/intelligent-cache-manager.js +634 -0
package/dist/ai/src/intelligent-cache-manager.js.map +1 -0
package/dist/ai/src/mcp-auto-configuration.d.ts +232 -0
package/dist/ai/src/mcp-auto-configuration.d.ts.map +1 -0
package/dist/ai/src/mcp-auto-configuration.js +445 -0
package/dist/ai/src/mcp-auto-configuration.js.map +1 -0
package/dist/ai/src/performance-profiler.d.ts +351 -0
package/dist/ai/src/performance-profiler.d.ts.map +1 -0
package/dist/ai/src/performance-profiler.js +475 -0
package/dist/ai/src/performance-profiler.js.map +1 -0
package/dist/ai/src/personas/hooks/before-llm-call.d.ts +96 -0
package/dist/ai/src/personas/hooks/before-llm-call.d.ts.map +1 -0
package/dist/ai/src/personas/hooks/before-llm-call.js +83 -0
package/dist/ai/src/personas/hooks/before-llm-call.js.map +1 -0
package/dist/ai/src/personas/index.d.ts +10 -0
package/dist/ai/src/personas/index.d.ts.map +1 -0
package/dist/ai/src/personas/index.js +10 -0
package/dist/ai/src/personas/index.js.map +1 -0
package/dist/ai/src/personas/persona-loader.d.ts +42 -0
package/dist/ai/src/personas/persona-loader.d.ts.map +1 -0
package/dist/ai/src/personas/persona-loader.js +162 -0
package/dist/ai/src/personas/persona-loader.js.map +1 -0
package/dist/ai/src/personas/types.d.ts +199 -0
package/dist/ai/src/personas/types.d.ts.map +1 -0
package/dist/ai/src/personas/types.js +7 -0
package/dist/ai/src/personas/types.js.map +1 -0
package/dist/ai/src/personas/voice-resolver.d.ts +40 -0
package/dist/ai/src/personas/voice-resolver.d.ts.map +1 -0
package/dist/ai/src/personas/voice-resolver.js +201 -0
package/dist/ai/src/personas/voice-resolver.js.map +1 -0
package/dist/ai/src/resource-monitor.d.ts +311 -0
package/dist/ai/src/resource-monitor.d.ts.map +1 -0
package/dist/ai/src/resource-monitor.js +475 -0
package/dist/ai/src/resource-monitor.js.map +1 -0
package/dist/ai/src/runtime/agent-runtime.d.ts +340 -0
package/dist/ai/src/runtime/agent-runtime.d.ts.map +1 -0
package/dist/ai/src/runtime/agent-runtime.js +1084 -0
package/dist/ai/src/runtime/agent-runtime.js.map +1 -0
package/dist/ai/src/telemetry/delegation-telemetry.d.ts +287 -0
package/dist/ai/src/telemetry/delegation-telemetry.d.ts.map +1 -0
package/dist/ai/src/telemetry/delegation-telemetry.js +389 -0
package/dist/ai/src/telemetry/delegation-telemetry.js.map +1 -0
package/dist/ai/src/telemetry/index.d.ts +48 -0
package/dist/ai/src/telemetry/index.d.ts.map +1 -0
package/dist/ai/src/telemetry/index.js +48 -0
package/dist/ai/src/telemetry/index.js.map +1 -0
package/dist/ai/src/telemetry/runtime-telemetry-integration.d.ts +67 -0
package/dist/ai/src/telemetry/runtime-telemetry-integration.d.ts.map +1 -0
package/dist/ai/src/telemetry/runtime-telemetry-integration.js +415 -0
package/dist/ai/src/telemetry/runtime-telemetry-integration.js.map +1 -0
package/dist/ai/src/telemetry/telemetry-utils.d.ts +119 -0
package/dist/ai/src/telemetry/telemetry-utils.d.ts.map +1 -0
package/dist/ai/src/telemetry/telemetry-utils.js +250 -0
package/dist/ai/src/telemetry/telemetry-utils.js.map +1 -0
package/dist/ai/src/types/agent-capabilities.d.ts +227 -0
package/dist/ai/src/types/agent-capabilities.d.ts.map +1 -0
package/dist/ai/src/types/agent-capabilities.js +11 -0
package/dist/ai/src/types/agent-capabilities.js.map +1 -0
package/dist/ai/src/types/context-verification.d.ts +158 -0
package/dist/ai/src/types/context-verification.d.ts.map +1 -0
package/dist/ai/src/types/context-verification.js +73 -0
package/dist/ai/src/types/context-verification.js.map +1 -0
package/dist/ai/src/types/delegation-contracts.d.ts +296 -0
package/dist/ai/src/types/delegation-contracts.d.ts.map +1 -0
package/dist/ai/src/types/delegation-contracts.js +17 -0
package/dist/ai/src/types/delegation-contracts.js.map +1 -0
package/dist/ai/src/validation-pipeline-integration.d.ts +266 -0
package/dist/ai/src/validation-pipeline-integration.d.ts.map +1 -0
package/dist/ai/src/validation-pipeline-integration.js +695 -0
package/dist/ai/src/validation-pipeline-integration.js.map +1 -0
package/dist/ai/src/verification/multi-modal-formatters.d.ts +57 -0
package/dist/ai/src/verification/multi-modal-formatters.d.ts.map +1 -0
package/dist/ai/src/verification/multi-modal-formatters.js +655 -0
package/dist/ai/src/verification/multi-modal-formatters.js.map +1 -0
package/dist/ai/src/verification/output-formatter.d.ts +186 -0
package/dist/ai/src/verification/output-formatter.d.ts.map +1 -0
package/dist/ai/src/verification/output-formatter.js +296 -0
package/dist/ai/src/verification/output-formatter.js.map +1 -0
package/dist/ai/src/verification/parser-integration.d.ts +137 -0
package/dist/ai/src/verification/parser-integration.d.ts.map +1 -0
package/dist/ai/src/verification/parser-integration.js +273 -0
package/dist/ai/src/verification/parser-integration.js.map +1 -0
package/dist/ai/types/agent-capabilities.d.ts +387 -0
package/dist/ai/types/agent-capabilities.d.ts.map +1 -0
package/dist/ai/types/agent-capabilities.js +32 -0
package/dist/ai/types/agent-capabilities.js.map +1 -0
package/dist/ai/types/delegation-contracts.d.ts +291 -0
package/dist/ai/types/delegation-contracts.d.ts.map +1 -0
package/dist/ai/types/delegation-contracts.js +14 -0
package/dist/ai/types/delegation-contracts.js.map +1 -0
package/dist/ai/types/index.d.ts +4 -1
package/dist/ai/types/index.d.ts.map +1 -1
package/dist/ai/types/index.js +4 -1
package/dist/ai/types/index.js.map +1 -1
package/dist/ai/types/permission-tokens.d.ts +365 -0
package/dist/ai/types/permission-tokens.d.ts.map +1 -0
package/dist/ai/types/permission-tokens.js +13 -0
package/dist/ai/types/permission-tokens.js.map +1 -0
package/dist/ai/types/security-middleware.d.ts +130 -0
package/dist/ai/types/security-middleware.d.ts.map +1 -0
package/dist/ai/types/security-middleware.js +13 -0
package/dist/ai/types/security-middleware.js.map +1 -0
package/dist/ai/utils/storage.d.ts.map +1 -1
package/dist/ai/utils/storage.js +6 -3
package/dist/ai/utils/storage.js.map +1 -1
package/dist/ai/validation/validation-framework.js +1 -1
package/dist/ai/verification/policy-framework.d.ts +161 -0
package/dist/ai/verification/policy-framework.d.ts.map +1 -0
package/dist/ai/verification/policy-framework.js +436 -0
package/dist/ai/verification/policy-framework.js.map +1 -0
package/package.json +35 -7

package/dist/ai/src/delegation/liability-firebreak.js ADDED Viewed

@@ -0,0 +1,643 @@
+/**
+ * Liability Firebreak Enforcement for DCYFR Delegation Framework
+ * TLP:AMBER - Internal Use Only
+ *
+ * Implements accountability boundaries in delegation chains to prevent
+ * unlimited delegation and ensure clear liability assignment. Includes
+ * manual override capabilities and escalation procedures.
+ *
+ * Key accountability mechanisms:
+ * - Delegation chain depth limits with liability boundaries
+ * - Responsibility tracking through chain hierarchy
+ * - Manual override and emergency escalation procedures
+ * - Liability assignment and audit trail maintenance
+ *
+ * @module delegation/liability-firebreak
+ * @version 1.0.0
+ * @date 2026-02-14
+ */
+/**
+ * Liability Firebreak Enforcement Engine
+ */
+export class LiabilityFirebreakEnforcer {
+    config;
+    overrideRequests;
+    chainAccountability;
+    stats;
+    constructor(config = {}) {
+        this.config = {
+            depth_thresholds: {
+                supervisor: config.depth_thresholds?.supervisor || 3,
+                manager: config.depth_thresholds?.manager || 5,
+                executive: config.depth_thresholds?.executive || 7,
+            },
+            liability_thresholds: {
+                high_value_limit: config.liability_thresholds?.high_value_limit || 100000,
+                critical_system_approval: config.liability_thresholds?.critical_system_approval ?? true,
+                external_delegation_approval: config.liability_thresholds?.external_delegation_approval ?? true,
+            },
+            emergency_procedures: {
+                max_emergency_depth: config.emergency_procedures?.max_emergency_depth || 10,
+                emergency_contacts: config.emergency_procedures?.emergency_contacts || [
+                    { authority: 'supervisor', contact_id: 'supervisor@dcyfr.ai', response_time_sla_minutes: 30 },
+                    { authority: 'manager', contact_id: 'manager@dcyfr.ai', response_time_sla_minutes: 60 },
+                    { authority: 'executive', contact_id: 'executive@dcyfr.ai', response_time_sla_minutes: 120 },
+                ],
+            },
+        };
+        this.overrideRequests = new Map();
+        this.chainAccountability = new Map();
+        // Initialize statistics
+        this.stats = {
+            total_validations: 0,
+            firebreaks_passed: 0,
+            firebreaks_blocked: 0,
+            block_reasons: {},
+            liability_distribution: {
+                full: 0,
+                shared: 0,
+                limited: 0,
+                none: 0,
+            },
+        };
+    }
+    /**
+     * Enforce liability firebreaks for delegation
+     */
+    enforceFirebreaks(primaryAgent, secondaryAgent, context) {
+        // Use default values for missing context properties
+        // Empty array means single delegation (1 hop)
+        const hasChainAgents = context.chain_agents && context.chain_agents.length > 0;
+        const defaultChainAgents = hasChainAgents
+            ? context.chain_agents
+            : []; // Empty means single delegation
+        const validationContext = {
+            delegation_depth: Math.max(context.delegation_depth || 1, 1),
+            estimated_value: Math.max(context.estimated_value || 0, 0),
+            involves_critical_systems: context.involves_critical_systems || false,
+            is_external_delegation: context.is_external_delegation || false,
+            chain_agents: defaultChainAgents,
+        };
+        this.stats.total_validations++;
+        const blockingFirebreaks = [];
+        let requiredAuthority = 'agent';
+        let liabilityLevel = this.assignLiabilityLevel(validationContext);
+        // Check depth firebreaks
+        const depthCheck = this.checkDepthLimits(validationContext.delegation_depth);
+        if (!depthCheck.allowed) {
+            blockingFirebreaks.push('delegation_depth_exceeded');
+            requiredAuthority = this.getAuthorityForDepth(validationContext.delegation_depth);
+        }
+        // Check value firebreaks
+        if (validationContext.estimated_value > this.config.liability_thresholds.high_value_limit) {
+            blockingFirebreaks.push('high_value_delegation');
+            requiredAuthority = this.escalateAuthority(requiredAuthority, 'manager');
+            liabilityLevel = 'full';
+        }
+        // Check critical system firebreaks
+        if (validationContext.involves_critical_systems && this.config.liability_thresholds.critical_system_approval) {
+            blockingFirebreaks.push('critical_system_delegation');
+            requiredAuthority = this.escalateAuthority(requiredAuthority, 'manager');
+            liabilityLevel = 'full';
+        }
+        // Check external delegation firebreaks
+        if (validationContext.is_external_delegation && this.config.liability_thresholds.external_delegation_approval) {
+            blockingFirebreaks.push('external_delegation');
+            requiredAuthority = this.escalateAuthority(requiredAuthority, 'executive');
+            liabilityLevel = 'full';
+        }
+        const firebreaksPassed = blockingFirebreaks.length === 0;
+        if (!firebreaksPassed) {
+            this.stats.firebreaks_blocked++;
+            this.stats.block_reasons = this.stats.block_reasons || {};
+            blockingFirebreaks.forEach(reason => {
+                this.stats.block_reasons[reason] = (this.stats.block_reasons[reason] || 0) + 1;
+            });
+        }
+        else {
+            this.stats.firebreaks_passed++;
+        }
+        // Update liability distribution
+        this.stats.liability_distribution = this.stats.liability_distribution || {};
+        this.stats.liability_distribution[liabilityLevel] = (this.stats.liability_distribution[liabilityLevel] || 0) + 1;
+        const result = {
+            firebreaks_passed: firebreaksPassed,
+            blocking_firebreaks: blockingFirebreaks,
+            liability_level: liabilityLevel,
+            chain_length: validationContext.chain_agents.length || 1, // Default to 1 for empty
+            manual_override_available: !firebreaksPassed,
+            required_authority: requiredAuthority,
+            validation_timestamp: new Date().toISOString(),
+        };
+        console.log(`🔥 Firebreak enforcement: ${firebreaksPassed ? 'PASS' : 'BLOCK'} - ${primaryAgent} -> ${secondaryAgent} (Depth: ${validationContext.delegation_depth}, Liability: ${liabilityLevel})`);
+        return result;
+    }
+    /**
+     * Assign liability level based on delegation context
+     */
+    assignLiabilityLevel(context) {
+        // Simple liability assignment based on delegation characteristics
+        if (context.delegation_depth <= 1 && context.estimated_value < 100) {
+            return 'none';
+        }
+        if (context.involves_critical_systems || context.estimated_value > 50000) {
+            return 'full';
+        }
+        if (context.delegation_depth > 3 && context.estimated_value > 500) {
+            return 'shared';
+        }
+        return 'limited';
+    }
+    /**
+     * Check depth limits
+     */
+    checkDepthLimits(depth) {
+        // Block if depth EXCEEDS supervisor threshold (not equal to)
+        const requiresApproval = depth > this.config.depth_thresholds.supervisor;
+        return { allowed: !requiresApproval };
+    }
+    /**
+     * Get required authority for given depth
+     */
+    getAuthorityForDepth(depth) {
+        // Depths beyond executive threshold require emergency authority
+        if (depth > this.config.depth_thresholds.executive)
+            return 'emergency';
+        if (depth > this.config.depth_thresholds.manager)
+            return 'manager';
+        if (depth > this.config.depth_thresholds.supervisor)
+            return 'supervisor';
+        // At or below supervisor threshold requires agent only
+        return 'agent';
+    }
+    /**
+     * Escalate authority level
+     */
+    escalateAuthority(current, required) {
+        const levels = ['agent', 'supervisor', 'manager', 'executive', 'emergency'];
+        const currentIndex = levels.indexOf(current);
+        const requiredIndex = levels.indexOf(required);
+        return levels[Math.max(currentIndex, requiredIndex)];
+    }
+    /**
+     * Process emergency escalation
+     */
+    async processEmergencyEscalation(escalationData) {
+        const escalation_id = `escalation_${Date.now()}_${Math.random().toString(36).substring(7)}`;
+        // Find appropriate emergency contact
+        const emergencyContact = this.config.emergency_procedures.emergency_contacts
+            .find(contact => contact.authority === 'supervisor') ||
+            this.config.emergency_procedures.emergency_contacts[0];
+        const result = {
+            escalation_id,
+            status: 'escalated',
+            agent_id: escalationData.agent_id,
+            emergency_level: escalationData.emergency_level,
+            emergency_contact_notified: true,
+            emergency_contact: emergencyContact?.contact_id || 'emergency@dcyfr.ai',
+            bypass_granted: false, // Manual approval required
+            approval_required: true,
+            escalation_timestamp: new Date().toISOString(),
+        };
+        return result;
+    }
+    /**
+     * Get pending override requests
+     */
+    /**
+     * Calculate chain accountability and tracking
+     */
+    calculateChainAccountability(contract) {
+        const chain_id = contract.contract_id; // Simplified - no parent contract tracking
+        let depth = 1;
+        const boundaries_hit = [];
+        // Calculate depth from chain history
+        if (contract.metadata?.delegation_depth) {
+            depth = contract.metadata.delegation_depth;
+        }
+        // Get existing chain accountability
+        const existing_chain = this.chainAccountability.get(chain_id) || [];
+        // Check boundaries
+        if (depth >= this.config.depth_thresholds.supervisor) {
+            boundaries_hit.push('supervisor_review_required');
+        }
+        if (depth >= this.config.depth_thresholds.manager) {
+            boundaries_hit.push('manager_approval_required');
+        }
+        if (depth >= this.config.depth_thresholds.executive) {
+            boundaries_hit.push('executive_authorization_required');
+        }
+        // Build liability distribution
+        const liability_distribution = existing_chain.map(entry => ({
+            agent_id: entry.agent_id,
+            liability_level: entry.liability_level,
+            scope: this.getScopeForAgent(entry.agent_id, contract),
+        }));
+        // Add current delegation
+        liability_distribution.push({
+            agent_id: contract.delegatee_agent_id,
+            liability_level: 'shared', // Simplified for old method compatibility
+            scope: contract.permission_token?.scopes || ['unknown'],
+        });
+        return {
+            depth,
+            max_depth: this.config.emergency_procedures.max_emergency_depth,
+            liability_distribution,
+            boundaries_hit,
+        };
+    }
+    /**
+     * Check depth-based firebreaks
+     */
+    checkDepthFirebreaks(depth) {
+        if (depth > this.config.emergency_procedures.max_emergency_depth) {
+            return {
+                allowed: false,
+                action: 'terminate_chain',
+                reason: `Delegation chain exceeds maximum emergency depth (${this.config.emergency_procedures.max_emergency_depth})`,
+            };
+        }
+        if (depth >= this.config.depth_thresholds.executive) {
+            return {
+                allowed: false,
+                action: 'escalate',
+                reason: 'Delegation chain requires executive authorization',
+                required_authority: 'executive',
+            };
+        }
+        if (depth >= this.config.depth_thresholds.manager) {
+            return {
+                allowed: false,
+                action: 'require_approval',
+                reason: 'Delegation chain requires manager approval',
+                required_authority: 'manager',
+            };
+        }
+        if (depth >= this.config.depth_thresholds.supervisor) {
+            return {
+                allowed: false,
+                action: 'require_approval',
+                reason: 'Delegation chain requires supervisor review',
+                required_authority: 'supervisor',
+            };
+        }
+        return { allowed: true, action: 'allow', reason: 'Depth within acceptable limits' };
+    }
+    /**
+     * Check liability-based firebreaks
+     */
+    checkLiabilityFirebreaks(contract) {
+        let required_authority;
+        let action = 'allow';
+        let reason = 'Liability checks passed';
+        let liability_level = 'limited';
+        // Check for high-value operations
+        if (contract.metadata && typeof contract.metadata?.estimated_value === 'number' &&
+            contract.metadata.estimated_value > this.config.liability_thresholds.high_value_limit) {
+            required_authority = 'manager';
+            action = 'require_approval';
+            reason = `High-value operation (${contract.metadata.estimated_value}) requires manager approval`;
+            liability_level = 'full';
+        }
+        // Check for critical system access
+        if (this.config.liability_thresholds.critical_system_approval && contract.permission_token?.scopes?.some(scope => scope.includes('production') || scope.includes('critical') || scope.includes('system'))) {
+            required_authority = required_authority === 'manager' ? 'manager' : 'supervisor';
+            action = 'require_approval';
+            reason = 'Critical system access requires approval';
+            liability_level = 'full';
+        }
+        // Check for external delegation
+        if (this.config.liability_thresholds.external_delegation_approval &&
+            (contract.delegatee_agent_id.includes('external') ||
+                contract.delegatee_agent_id.includes('third-party'))) {
+            required_authority = 'manager';
+            action = 'escalate';
+            reason = 'External delegation requires manager escalation';
+            liability_level = 'shared';
+        }
+        return {
+            allowed: !required_authority,
+            action,
+            reason,
+            required_authority,
+            liability_level,
+        };
+    }
+    /**
+     * Check for active manual overrides
+     */
+    checkActiveOverrides(contract_id) {
+        for (const [_, override] of this.overrideRequests) {
+            if (override.contract_id === contract_id &&
+                override.status === 'approved' &&
+                override.expires_at &&
+                new Date(override.expires_at) > new Date()) {
+                return override;
+            }
+        }
+        return null;
+    }
+    /**
+     * Get scope for agent in contract context
+     */
+    getScopeForAgent(agent_id, contract) {
+        // For now, return contract scopes - in production this would query agent capabilities
+        return contract.permission_token?.scopes || ['read'];
+    }
+    /**
+     * Build escalation path for required authority
+     */
+    buildEscalationPath(required_authority) {
+        if (!required_authority)
+            return [];
+        const path = [];
+        const contacts = this.config.emergency_procedures.emergency_contacts;
+        switch (required_authority) {
+            case 'supervisor':
+                path.push({
+                    level: 'supervisor',
+                    contact_method: contacts.find(c => c.authority === 'supervisor')?.contact_id,
+                });
+                break;
+            case 'manager':
+                path.push({ level: 'supervisor', contact_method: contacts.find(c => c.authority === 'supervisor')?.contact_id }, { level: 'manager', contact_method: contacts.find(c => c.authority === 'manager')?.contact_id });
+                break;
+            case 'executive':
+                path.push({ level: 'supervisor', contact_method: contacts.find(c => c.authority === 'supervisor')?.contact_id }, { level: 'manager', contact_method: contacts.find(c => c.authority === 'manager')?.contact_id }, { level: 'executive', contact_method: contacts.find(c => c.authority === 'executive')?.contact_id });
+                break;
+        }
+        return path;
+    }
+    /**
+     * Request manual override for blocked delegation
+     */
+    /** Normalize positional or object-based requestOverride params into a canonical shape */
+    normalizeOverrideParams(contractIdOrRequest, requesting_agent_id, authority, justification, business_impact, urgency) {
+        if (typeof contractIdOrRequest === 'object') {
+            const req = contractIdOrRequest;
+            return {
+                reqAgent: req.requesting_agent || req.requesting_agent_id || 'unknown',
+                reqAuthority: req.authority_level || req.authority || 'agent',
+                reqJustification: req.justification || req.reason || '',
+                reqReason: req.reason,
+                reqContext: req.context,
+                reqExpiresAt: req.expires_at,
+                reqBusinessImpact: req.business_impact,
+                reqUrgency: req.urgency,
+                reqContractId: req.contract_id,
+                reqTargetAgent: req.target_agent,
+            };
+        }
+        return {
+            reqAgent: requesting_agent_id || 'unknown',
+            reqAuthority: authority || 'agent',
+            reqJustification: justification || '',
+            reqBusinessImpact: business_impact,
+            reqUrgency: urgency,
+            reqContractId: contractIdOrRequest,
+        };
+    }
+    /** Determine required override authority based on delegation context */
+    determineRequiredAuthority(context) {
+        let required = 'agent';
+        if (!context)
+            return required;
+        if (context.is_external_delegation)
+            required = this.escalateAuthority(required, 'executive');
+        if (context.involves_critical_systems)
+            required = this.escalateAuthority(required, 'manager');
+        if (context.estimated_value > this.config.liability_thresholds.high_value_limit)
+            required = this.escalateAuthority(required, 'manager');
+        if (context.delegation_depth > this.config.depth_thresholds.executive)
+            required = this.escalateAuthority(required, 'emergency');
+        else if (context.delegation_depth > this.config.depth_thresholds.manager)
+            required = this.escalateAuthority(required, 'manager');
+        else if (context.delegation_depth > this.config.depth_thresholds.supervisor)
+            required = this.escalateAuthority(required, 'supervisor');
+        return required;
+    }
+    async requestOverride(contractIdOrRequest, requesting_agent_id, authority, justification, business_impact, urgency) {
+        const override_id = `override_${Date.now()}_${Math.random().toString(36).substring(7)}`;
+        const { reqAgent, reqAuthority, reqJustification, reqReason, reqContext, reqExpiresAt: initExpiresAt, reqBusinessImpact, reqUrgency, reqContractId, reqTargetAgent } = this.normalizeOverrideParams(contractIdOrRequest, requesting_agent_id, authority, justification, business_impact, urgency);
+        let reqExpiresAt = initExpiresAt;
+        const requiredAuthority = this.determineRequiredAuthority(reqContext);
+        // Check if requesting authority is sufficient
+        const authority_levels = ['agent', 'supervisor', 'manager', 'executive', 'emergency'];
+        const requestedLevel = authority_levels.indexOf(reqAuthority);
+        const requiredLevel = authority_levels.indexOf(requiredAuthority);
+        if (requiredLevel > requestedLevel) {
+            // Insufficient authority - reject
+            const rejected = {
+                override_id,
+                authority: reqAuthority,
+                authority_level: reqAuthority,
+                requesting_agent_id: reqAgent,
+                requesting_agent: reqAgent,
+                target_agent: reqTargetAgent,
+                contract_id: reqContractId,
+                justification: reqJustification,
+                reason: reqReason,
+                context: reqContext,
+                business_impact: reqBusinessImpact,
+                urgency: reqUrgency,
+                status: 'rejected',
+                expires_at: reqExpiresAt,
+                created_at: new Date().toISOString(),
+                rejection_reason: `Insufficient authority level: ${reqAuthority}. Required: ${requiredAuthority}`,
+                required_approvals: [requiredAuthority],
+                auto_approved: false,
+            };
+            this.overrideRequests.set(override_id, rejected);
+            return rejected;
+        }
+        // Calculate expiry if not provided
+        if (!reqExpiresAt) {
+            const expiresDate = new Date();
+            switch (reqUrgency) {
+                case 'emergency':
+                    expiresDate.setHours(expiresDate.getHours() + 1);
+                    break;
+                case 'urgent':
+                    expiresDate.setHours(expiresDate.getHours() + 4);
+                    break;
+                default:
+                    expiresDate.setHours(expiresDate.getHours() + 24);
+            }
+            reqExpiresAt = expiresDate.toISOString();
+        }
+        const override = {
+            override_id,
+            authority: reqAuthority,
+            authority_level: reqAuthority,
+            requesting_agent_id: reqAgent,
+            requesting_agent: reqAgent,
+            target_agent: reqTargetAgent,
+            contract_id: reqContractId,
+            justification: reqJustification,
+            reason: reqReason,
+            context: reqContext,
+            business_impact: reqBusinessImpact,
+            urgency: reqUrgency,
+            status: 'pending',
+            expires_at: reqExpiresAt,
+            created_at: new Date().toISOString(),
+            required_approvals: requiredAuthority !== 'agent' ? [requiredAuthority] : undefined,
+            auto_approved: false,
+        };
+        this.overrideRequests.set(override_id, override);
+        // Emit override request event for monitoring
+        console.log(`🔥 Firebreak Override Requested: ${override_id} (${reqAuthority}) - ${reqJustification}`);
+        return override;
+    }
+    /**
+     * Approve manual override
+     */
+    async approveOverride(override_id, approving_authority, approver_clearance) {
+        const override = this.overrideRequests.get(override_id);
+        if (!override) {
+            throw new Error(`Override request not found: ${override_id}`);
+        }
+        if (override.status !== 'pending') {
+            throw new Error(`Override request ${override_id} is not pending (current status: ${override.status})`);
+        }
+        if (!override.expires_at || new Date(override.expires_at) <= new Date()) {
+            override.status = 'expired';
+            this.overrideRequests.set(override_id, override);
+            throw new Error(`Override request ${override_id} has expired`);
+        }
+        // Check if approver has sufficient authority
+        const authority_levels = ['agent', 'supervisor', 'manager', 'executive', 'emergency'];
+        const required_level = authority_levels.indexOf(override.authority || 'agent');
+        const approver_level = authority_levels.indexOf(approver_clearance);
+        if (approver_level < required_level) {
+            throw new Error(`Insufficient authority: ${approver_clearance} cannot approve ${override.authority} level override`);
+        }
+        // Approve the override
+        override.status = 'approved';
+        override.approved_by = approving_authority;
+        override.approved_at = new Date().toISOString();
+        this.overrideRequests.set(override_id, override);
+        console.log(`✅ Firebreak Override Approved: ${override_id} by ${approving_authority}`);
+        return override;
+    }
+    /**
+     * Emergency escalation bypass (highest authority override)
+     */
+    async emergencyEscalation(contract_id, emergency_contact, justification) {
+        const override = await this.requestOverride(contract_id, emergency_contact, 'emergency', `EMERGENCY ESCALATION: ${justification}`, 'critical', 'emergency');
+        // Security hardening: emergency escalations are no longer auto-approved.
+        // Explicit human/operator approval must call approveOverride() separately.
+        return override;
+    }
+    /**
+     * Get liability firebreak statistics
+     */
+    getFirebreakStatistics() {
+        // This would be implemented with proper metrics tracking in production
+        return {
+            total_evaluations: 0,
+            blocked_delegations: 0,
+            escalations_required: 0,
+            overrides_requested: this.overrideRequests.size,
+            overrides_approved: Array.from(this.overrideRequests.values()).filter(o => o.status === 'approved').length,
+            chain_depth_violations: 0,
+            liability_threshold_violations: 0,
+        };
+    }
+    /**
+     * Get pending override requests
+     */
+    getPendingOverrides() {
+        return Array.from(this.overrideRequests.values())
+            .filter(override => override.status === 'pending')
+            .sort((a, b) => {
+            // Sort by urgency and business impact
+            const urgencyOrder = { emergency: 3, urgent: 2, routine: 1 };
+            const impactOrder = { critical: 4, high: 3, medium: 2, low: 1 };
+            const aScore = (urgencyOrder[a.urgency || 'routine'] ?? 0) * 10 + (impactOrder[a.business_impact || 'low'] ?? 0);
+            const bScore = (urgencyOrder[b.urgency || 'routine'] ?? 0) * 10 + (impactOrder[b.business_impact || 'low'] ?? 0);
+            return bScore - aScore; // Descending order (highest priority first)
+        });
+    }
+    /**
+     * Update chain accountability tracking
+     */
+    updateChainAccountability(chain_id, agent_id, liability_level, depth) {
+        const existing = this.chainAccountability.get(chain_id) || [];
+        existing.push({ agent_id, liability_level, depth });
+        this.chainAccountability.set(chain_id, existing);
+    }
+    /**
+     * Clean up expired override requests
+     */
+    cleanupExpiredOverrides() {
+        let cleaned = 0;
+        const now = new Date();
+        for (const [override_id, override] of this.overrideRequests) {
+            if (override.expires_at && new Date(override.expires_at) <= now && override.status === 'pending') {
+                override.status = 'expired';
+                this.overrideRequests.set(override_id, override);
+                cleaned++;
+            }
+        }
+        return cleaned;
+    }
+    /**
+     * Evaluate a contract for firebreak requirements
+     * Wrapper method for test compatibility - converts contract to context and calls enforceFirebreaks
+     */
+    evaluateContract(contract) {
+        // Extract delegation context from contract
+        const isSensitive = contract.metadata?.operation_type === 'destructive' ||
+            contract.metadata?.environment === 'production' ||
+            contract.priority >= 8;
+        const context = {
+            delegation_depth: 1, // Default depth
+            estimated_value: isSensitive ? 100000 : (contract.metadata?.estimated_value || 0),
+            involves_critical_systems: isSensitive || contract.metadata?.involves_critical_systems || false,
+            is_external_delegation: contract.metadata?.is_external_delegation || false,
+            chain_agents: [
+                contract.delegator?.agent_id || contract.delegator_agent_id,
+                contract.delegatee?.agent_id || contract.delegatee_agent_id,
+            ],
+        };
+        const result = this.enforceFirebreaks(contract.delegator?.agent_id || contract.delegator_agent_id, contract.delegatee?.agent_id || contract.delegatee_agent_id, context);
+        // Determine risk level
+        const riskLevel = isSensitive ? 'high' :
+            contract.priority >= 5 ? 'medium' : 'low';
+        return {
+            requires_firebreak: !result.firebreaks_passed,
+            risk_level: riskLevel,
+            firebreak_conditions: result.blocking_firebreaks.length > 0 ? result.blocking_firebreaks : undefined,
+            reason: result.blocking_firebreaks.length > 0
+                ? `Firebreak required: ${result.blocking_firebreaks.join(', ')}`
+                : undefined,
+        };
+    }
+    /**
+     * Get firebreak enforcement statistics
+     */
+    getStats() {
+        // Calculate override request summary
+        const overrideValues = Array.from(this.overrideRequests.values());
+        const override_requests_summary = {
+            total: overrideValues.length,
+            pending: overrideValues.filter(o => o.status === 'pending').length,
+            approved: overrideValues.filter(o => o.status === 'approved').length,
+            rejected: overrideValues.filter(o => o.status === 'denied' || o.status === 'rejected').length,
+            expired: overrideValues.filter(o => o.status === 'expired').length,
+        };
+        return {
+            ...this.stats,
+            total_validations: this.stats.total_validations,
+            firebreaks_passed: this.stats.firebreaks_passed,
+            firebreaks_blocked: this.stats.firebreaks_blocked,
+            block_reasons: this.stats.block_reasons,
+            block_reason_distribution: this.stats.block_reasons,
+            liability_distribution: this.stats.liability_distribution,
+            pending_overrides: this.overrideRequests.size,
+            override_requests_summary,
+        };
+    }
+}
+//# sourceMappingURL=liability-firebreak.js.map