npm - @driftgard/node - Versions diffs - 1.12.0-beta.1 → 1.13.0 - Mend

@driftgard/node 1.12.0-beta.1 → 1.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/README.md +26 -0
package/dist/index.js +3 -0
package/dist/types.d.ts +2 -0
package/dist/wasm/driftgard_evaluator_bg.wasm +0 -0
package/package.json +2 -2
package/dist/wasm/wasm/driftgard_evaluator.d.ts +0 -14
package/dist/wasm/wasm/driftgard_evaluator.js +0 -127
package/dist/wasm/wasm/driftgard_evaluator_bg.wasm +0 -0

package/README.md CHANGED Viewed

@@ -161,6 +161,32 @@ const result = await dg.evaluate({
 Agent identity fields are stored on the evaluation record and visible in the Live Activity detail dialog. The `on_behalf_of` field tracks which end-user triggered the agent action. The `parent_agent_id` field identifies which orchestrator agent delegated to this one in multi-agent systems.
+## Jurisdiction-scoped rules
+Control pack rules can be scoped to specific jurisdictions. Pass the user's jurisdiction in the evaluate request — only matching rules (plus global rules) will fire:
+```typescript
+const result = await dg.evaluate({
+  project_id: "your-project-id",
+  prompt: "What odds can I get?",
+  response: "Current odds for the Melbourne Cup are...",
+  model_id: "gpt-4o",
+  jurisdiction: "AU-VIC",  // only VIC + global rules fire
+});
+```
+Rules without a `jurisdictions` field are global — they fire for all requests regardless of jurisdiction. Rules with `jurisdictions: ["AU-VIC", "AU-NSW"]` only fire when the request's `jurisdiction` matches.
+Supported jurisdiction codes include:
+- Australia: `AU`, `AU-ACT`, `AU-NSW`, `AU-NT`, `AU-QLD`, `AU-SA`, `AU-TAS`, `AU-VIC`, `AU-WA`
+- United States: `US`, `US-AL`, `US-AK`, `US-AZ`, `US-AR`, `US-CA`, `US-CO`, `US-CT`, `US-DE`, `US-FL`, `US-GA`, `US-HI`, `US-ID`, `US-IL`, `US-IN`, `US-IA`, `US-KS`, `US-KY`, `US-LA`, `US-ME`, `US-MD`, `US-MA`, `US-MI`, `US-MN`, `US-MS`, `US-MO`, `US-MT`, `US-NE`, `US-NV`, `US-NH`, `US-NJ`, `US-NM`, `US-NY`, `US-NC`, `US-ND`, `US-OH`, `US-OK`, `US-OR`, `US-PA`, `US-RI`, `US-SC`, `US-SD`, `US-TN`, `US-TX`, `US-UT`, `US-VT`, `US-VA`, `US-WA`, `US-WV`, `US-WI`, `US-WY`, `US-DC`
+- United Kingdom: `GB`, `GB-ENG`, `GB-SCT`, `GB-WLS`, `GB-NIR`
+- Europe: `EU`, `DE`, `FR`, `IE`, `NL`, `ES`, `IT`, `SE`
+- Asia-Pacific: `NZ`, `SG`, `JP`, `IN`, `HK`
+- Other: `CA`, `BR`, `ZA`, `AE`, `SA`
+Custom codes are also supported — use any string your team agrees on.
 ### Per-tool identity rules
 Control packs support `identity_rules` on each tool — restricting which agents, roles, users, or parent agents can call it. Rules use OR logic across entries and AND logic within each entry:

package/dist/index.js CHANGED Viewed

@@ -101,6 +101,7 @@ class Driftgard {
             ...(req.agent_role ? { agent_role: req.agent_role } : {}),
             ...(req.on_behalf_of ? { on_behalf_of: req.on_behalf_of } : {}),
             ...(req.parent_agent_id ? { parent_agent_id: req.parent_agent_id } : {}),
+            ...(req.jurisdiction ? { jurisdiction: req.jurisdiction } : {}),
         };
         const verdict = (0, local_evaluator_1.evaluateLocal)(cp, wasmRequest);
         const response = {
@@ -149,6 +150,7 @@ class Driftgard {
                 session_id: req.session_id,
                 agent_id: req.agent_id,
                 agent_role: req.agent_role,
+                jurisdiction: req.jurisdiction,
                 stale_pack: meta.stale,
             }).catch(() => { }); // fire-and-forget
         }
@@ -197,6 +199,7 @@ class Driftgard {
                 ...(req.on_behalf_of ? { on_behalf_of: req.on_behalf_of } : {}),
                 ...(req.parent_agent_id ? { parent_agent_id: req.parent_agent_id } : {}),
                 ...(req.usage ? { usage: req.usage } : {}),
+                ...(req.jurisdiction ? { jurisdiction: req.jurisdiction } : {}),
             }, idempotencyKey);
             // Success — reset circuit breaker
             this.cbFailures = 0;

package/dist/types.d.ts CHANGED Viewed

@@ -61,6 +61,8 @@ export interface EvaluateRequest {
     on_behalf_of?: string;
     /** Parent agent ID — which orchestrator agent delegated to this one. */
     parent_agent_id?: string;
+    /** User's jurisdiction for jurisdiction-scoped rules. e.g. "AU", "AU-VIC", "US-CA". */
+    jurisdiction?: string;
     usage?: {
         prompt_tokens?: number;
         completion_tokens?: number;

package/dist/wasm/driftgard_evaluator_bg.wasm CHANGED Viewed

Binary file

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@driftgard/node",
-  "version": "1.12.0-beta.1",
+  "version": "1.13.0",
   "description": "Official DriftGard Node.js SDK — evaluate LLM interactions against your compliance policy",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -9,7 +9,7 @@
     "README.md"
   ],
   "scripts": {
-    "build": "tsc && cp -r src/wasm dist/wasm",
+    "build": "tsc && rm -rf dist/wasm && cp -r src/wasm dist/wasm",
     "prepublishOnly": "npm run build"
   },
   "keywords": [

package/dist/wasm/wasm/driftgard_evaluator.d.ts DELETED Viewed

@@ -1,14 +0,0 @@
-/* tslint:disable */
-/* eslint-disable */
-/**
- * Main evaluation entry point.
- *
- * # Arguments
- * * `control_pack_json` - JSON string of the control pack
- * * `request_json` - JSON string of the evaluation request
- *
- * # Returns
- * JSON string of the verdict: { allowed, risk_score, violations, flags }
- */
-export function evaluate(control_pack_json: string, request_json: string): string;

package/dist/wasm/wasm/driftgard_evaluator.js DELETED Viewed

@@ -1,127 +0,0 @@
-/* @ts-self-types="./driftgard_evaluator.d.ts" */
-/**
- * Main evaluation entry point.
- *
- * # Arguments
- * * `control_pack_json` - JSON string of the control pack
- * * `request_json` - JSON string of the evaluation request
- *
- * # Returns
- * JSON string of the verdict: { allowed, risk_score, violations, flags }
- * @param {string} control_pack_json
- * @param {string} request_json
- * @returns {string}
- */
-function evaluate(control_pack_json, request_json) {
-    let deferred3_0;
-    let deferred3_1;
-    try {
-        const ptr0 = passStringToWasm0(control_pack_json, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-        const len0 = WASM_VECTOR_LEN;
-        const ptr1 = passStringToWasm0(request_json, wasm.__wbindgen_malloc, wasm.__wbindgen_realloc);
-        const len1 = WASM_VECTOR_LEN;
-        const ret = wasm.evaluate(ptr0, len0, ptr1, len1);
-        deferred3_0 = ret[0];
-        deferred3_1 = ret[1];
-        return getStringFromWasm0(ret[0], ret[1]);
-    } finally {
-        wasm.__wbindgen_free(deferred3_0, deferred3_1, 1);
-    }
-}
-exports.evaluate = evaluate;
-function __wbg_get_imports() {
-    const import0 = {
-        __proto__: null,
-        __wbindgen_init_externref_table: function() {
-            const table = wasm.__wbindgen_externrefs;
-            const offset = table.grow(4);
-            table.set(0, undefined);
-            table.set(offset + 0, undefined);
-            table.set(offset + 1, null);
-            table.set(offset + 2, true);
-            table.set(offset + 3, false);
-        },
-    };
-    return {
-        __proto__: null,
-        "./driftgard_evaluator_bg.js": import0,
-    };
-}
-function getStringFromWasm0(ptr, len) {
-    return decodeText(ptr >>> 0, len);
-}
-let cachedUint8ArrayMemory0 = null;
-function getUint8ArrayMemory0() {
-    if (cachedUint8ArrayMemory0 === null || cachedUint8ArrayMemory0.byteLength === 0) {
-        cachedUint8ArrayMemory0 = new Uint8Array(wasm.memory.buffer);
-    }
-    return cachedUint8ArrayMemory0;
-}
-function passStringToWasm0(arg, malloc, realloc) {
-    if (realloc === undefined) {
-        const buf = cachedTextEncoder.encode(arg);
-        const ptr = malloc(buf.length, 1) >>> 0;
-        getUint8ArrayMemory0().subarray(ptr, ptr + buf.length).set(buf);
-        WASM_VECTOR_LEN = buf.length;
-        return ptr;
-    }
-    let len = arg.length;
-    let ptr = malloc(len, 1) >>> 0;
-    const mem = getUint8ArrayMemory0();
-    let offset = 0;
-    for (; offset < len; offset++) {
-        const code = arg.charCodeAt(offset);
-        if (code > 0x7F) break;
-        mem[ptr + offset] = code;
-    }
-    if (offset !== len) {
-        if (offset !== 0) {
-            arg = arg.slice(offset);
-        }
-        ptr = realloc(ptr, len, len = offset + arg.length * 3, 1) >>> 0;
-        const view = getUint8ArrayMemory0().subarray(ptr + offset, ptr + len);
-        const ret = cachedTextEncoder.encodeInto(arg, view);
-        offset += ret.written;
-        ptr = realloc(ptr, len, offset, 1) >>> 0;
-    }
-    WASM_VECTOR_LEN = offset;
-    return ptr;
-}
-let cachedTextDecoder = new TextDecoder('utf-8', { ignoreBOM: true, fatal: true });
-cachedTextDecoder.decode();
-function decodeText(ptr, len) {
-    return cachedTextDecoder.decode(getUint8ArrayMemory0().subarray(ptr, ptr + len));
-}
-const cachedTextEncoder = new TextEncoder();
-if (!('encodeInto' in cachedTextEncoder)) {
-    cachedTextEncoder.encodeInto = function (arg, view) {
-        const buf = cachedTextEncoder.encode(arg);
-        view.set(buf);
-        return {
-            read: arg.length,
-            written: buf.length
-        };
-    };
-}
-let WASM_VECTOR_LEN = 0;
-const wasmPath = `${__dirname}/driftgard_evaluator_bg.wasm`;
-const wasmBytes = require('fs').readFileSync(wasmPath);
-const wasmModule = new WebAssembly.Module(wasmBytes);
-let wasmInstance = new WebAssembly.Instance(wasmModule, __wbg_get_imports());
-let wasm = wasmInstance.exports;
-wasm.__wbindgen_start();

package/dist/wasm/wasm/driftgard_evaluator_bg.wasm DELETED Viewed

Binary file