@elizaos/plugin-health 2.0.0-beta.1 → 2.0.3-beta.3

package/dist/sleep/source-reliability.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/sleep/source-reliability.ts"],"sourcesContent":["import type { LifeOpsActivitySignalSource } from \"../contracts/health.js\";\n\nexport type LifeOpsReliabilityKey =\n  | { kind: \"manual_override\" }\n  | { kind: \"mobile_health\"; permissionGranted: boolean }\n  | { kind: \"desktop_power\"; transition: \"system\" | \"screen\" | \"session\" }\n  | { kind: \"message_outbound\"; channel: LifeOpsMessageReliabilityChannel }\n  | { kind: \"message_inbound\" }\n  | { kind: \"status_activity\" }\n  | { kind: \"desktop_idle\"; source: \"iokit_hid\" | \"cgevent\" }\n  | { kind: \"browser_focus\" }\n  | { kind: \"device_presence\"; transition: boolean }\n  | { kind: \"mobile_device\"; source: \"capacitor\" | \"continuity_probe\" }\n  | { kind: \"charging\" }\n  | { kind: \"screen_time_summary\" }\n  | { kind: \"prior_baseline\" };\n\nexport type LifeOpsMessageReliabilityChannel =\n  | \"imessage\"\n  | \"eliza_chat\"\n  | \"gmail\"\n  | \"x_dm\"\n  | \"discord\"\n  | \"telegram\"\n  | \"signal\"\n  | \"whatsapp\"\n  | \"sms\";\n\nconst MESSAGE_CHANNEL_WEIGHTS: Record<\n  LifeOpsMessageReliabilityChannel,\n  number\n> = {\n  imessage: 0.88,\n  eliza_chat: 0.88,\n  gmail: 0.8,\n  x_dm: 0.8,\n  discord: 0.8,\n  telegram: 0.8,\n  signal: 0.8,\n  whatsapp: 0.8,\n  sms: 0.8,\n};\n\nexport function resolveSourceReliability(key: LifeOpsReliabilityKey): number {\n  switch (key.kind) {\n    case \"manual_override\":\n      return 1.0;\n    case \"mobile_health\":\n      return key.permissionGranted ? 0.95 : 0;\n    case \"desktop_power\":\n      return key.transition === \"system\"\n        ? 0.92\n        : key.transition === \"screen\"\n          ? 0.92\n          : 0.85;\n    case \"message_outbound\":\n      return MESSAGE_CHANNEL_WEIGHTS[key.channel];\n    case \"message_inbound\":\n      return 0.15;\n    case \"status_activity\":\n      return 0.6;\n    case \"desktop_idle\":\n      return key.source === \"iokit_hid\" ? 0.8 : 0.75;\n    case \"browser_focus\":\n      return 0.7;\n    case \"device_presence\":\n      return key.transition ? 0.7 : 0.3;\n    case \"mobile_device\":\n      return key.source === \"capacitor\" ? 0.7 : 0.5;\n    case \"charging\":\n      return 0.4;\n    case \"screen_time_summary\":\n      return 0.55;\n    case \"prior_baseline\":\n      return 0.4;\n  }\n}\n\n/**\n * Default reliability key for each activity-signal source. The special-case\n * for `app_lifecycle` + `manual_override` platform is handled inline because\n * it's the only cross-axis override.\n */\nconst SOURCE_RELIABILITY_KEYS: Record<\n  LifeOpsActivitySignalSource,\n  LifeOpsReliabilityKey\n> = {\n  app_lifecycle: { kind: \"device_presence\", transition: true },\n  page_visibility: { kind: \"device_presence\", transition: true },\n  desktop_power: { kind: \"desktop_power\", transition: \"system\" },\n  desktop_interaction: { kind: \"desktop_idle\", source: \"iokit_hid\" },\n  connector_activity: { kind: \"message_outbound\", channel: \"gmail\" },\n  imessage_outbound: { kind: \"message_outbound\", channel: \"imessage\" },\n  mobile_device: { kind: \"mobile_device\", source: \"capacitor\" },\n  mobile_health: { kind: \"mobile_health\", permissionGranted: true },\n};\n\nexport function resolveActivitySignalReliability(\n  source: LifeOpsActivitySignalSource,\n  platform: string,\n): number {\n  if (source === \"app_lifecycle\" && platform === \"manual_override\") {\n    return resolveSourceReliability({ kind: \"manual_override\" });\n  }\n  return resolveSourceReliability(SOURCE_RELIABILITY_KEYS[source]);\n}\n"],"mappings":"AA4BA,MAAM,0BAGF;AAAA,EACF,UAAU;AAAA,EACV,YAAY;AAAA,EACZ,OAAO;AAAA,EACP,MAAM;AAAA,EACN,SAAS;AAAA,EACT,UAAU;AAAA,EACV,QAAQ;AAAA,EACR,UAAU;AAAA,EACV,KAAK;AACP;AAEO,SAAS,yBAAyB,KAAoC;AAC3E,UAAQ,IAAI,MAAM;AAAA,IAChB,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO,IAAI,oBAAoB,OAAO;AAAA,IACxC,KAAK;AACH,aAAO,IAAI,eAAe,WACtB,OACA,IAAI,eAAe,WACjB,OACA;AAAA,IACR,KAAK;AACH,aAAO,wBAAwB,IAAI,OAAO;AAAA,IAC5C,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO,IAAI,WAAW,cAAc,MAAM;AAAA,IAC5C,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO,IAAI,aAAa,MAAM;AAAA,IAChC,KAAK;AACH,aAAO,IAAI,WAAW,cAAc,MAAM;AAAA,IAC5C,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,IACT,KAAK;AACH,aAAO;AAAA,EACX;AACF;AAOA,MAAM,0BAGF;AAAA,EACF,eAAe,EAAE,MAAM,mBAAmB,YAAY,KAAK;AAAA,EAC3D,iBAAiB,EAAE,MAAM,mBAAmB,YAAY,KAAK;AAAA,EAC7D,eAAe,EAAE,MAAM,iBAAiB,YAAY,SAAS;AAAA,EAC7D,qBAAqB,EAAE,MAAM,gBAAgB,QAAQ,YAAY;AAAA,EACjE,oBAAoB,EAAE,MAAM,oBAAoB,SAAS,QAAQ;AAAA,EACjE,mBAAmB,EAAE,MAAM,oBAAoB,SAAS,WAAW;AAAA,EACnE,eAAe,EAAE,MAAM,iBAAiB,QAAQ,YAAY;AAAA,EAC5D,eAAe,EAAE,MAAM,iBAAiB,mBAAmB,KAAK;AAClE;AAEO,SAAS,iCACd,QACA,UACQ;AACR,MAAI,WAAW,mBAAmB,aAAa,mBAAmB;AAChE,WAAO,yBAAyB,EAAE,MAAM,kBAAkB,CAAC;AAAA,EAC7D;AACA,SAAO,yBAAyB,wBAAwB,MAAM,CAAC;AACjE;","names":[]}

package/dist/util/index.d.ts

@@ -1,10 +0,0 @@
-/**
- * Pure-helper barrel for plugin-health.
- *
- * `time.ts` and `time-util.ts` are local copies of the same-named helpers
- * in `app-lifeops/src/lifeops/`. They are duplicated (not imported) so
- * plugin-health does not take a build-time dependency on app-lifeops.
- */
-export * from "./time.js";
-export * from "./time-util.js";
-//# sourceMappingURL=index.d.ts.map

package/dist/util/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/util/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,cAAc,WAAW,CAAC;AAC1B,cAAc,gBAAgB,CAAC"}

package/dist/util/index.js

@@ -1,3 +0,0 @@
-export * from "./time.js";
-export * from "./time-util.js";
-//# sourceMappingURL=index.js.map

package/dist/util/index.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/util/index.ts"],"sourcesContent":["/**\n * Pure-helper barrel for plugin-health.\n *\n * `time.ts` and `time-util.ts` are local copies of the same-named helpers\n * in `app-lifeops/src/lifeops/`. They are duplicated (not imported) so\n * plugin-health does not take a build-time dependency on app-lifeops.\n */\n\nexport * from \"./time.js\";\nexport * from \"./time-util.js\";\n"],"mappings":"AAQA,cAAc;AACd,cAAc;","names":[]}

package/dist/util/normalize.d.ts

@@ -1,22 +0,0 @@
-/**
- * Minimal value-normalisation helpers used inside plugin-health.
- *
- * Reproduces only the helpers that the moved health-bridge / health-connectors
- * / service-normalize-health files actually call. Kept small and dependency-
- * free so plugin-health stays decoupled from app-lifeops' larger
- * `service-normalize.ts` family.
- *
- * Behaviour matches `app-lifeops/src/lifeops/service-normalize.ts` exactly.
- */
-export declare class HealthNormalizationError extends Error {
-    readonly status: number;
-    readonly code?: string;
-    constructor(status: number, message: string, code?: string);
-}
-export declare function fail(status: number, message: string, code?: string): never;
-export declare function requireNonEmptyString(value: unknown, field: string): string;
-export declare function normalizeOptionalString(value: unknown): string | undefined;
-export declare function normalizeOptionalBoolean(value: unknown, _field: string): boolean | undefined;
-export declare function normalizeOptionalIsoString(value: unknown, field: string): string | undefined;
-export declare function normalizeOptionalFiniteNumber(value: unknown, field: string): number | null;
-//# sourceMappingURL=normalize.d.ts.map

package/dist/util/normalize.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"normalize.d.ts","sourceRoot":"","sources":["../../src/util/normalize.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,qBAAa,wBAAyB,SAAQ,KAAK;IACjD,SAAgB,MAAM,EAAE,MAAM,CAAC;IAC/B,SAAgB,IAAI,CAAC,EAAE,MAAM,CAAC;gBAClB,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM;CAK3D;AAED,wBAAgB,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,KAAK,CAE1E;AAED,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,CAK3E;AAED,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,OAAO,GAAG,MAAM,GAAG,SAAS,CAK1E;AAED,wBAAgB,wBAAwB,CACtC,KAAK,EAAE,OAAO,EACd,MAAM,EAAE,MAAM,GACb,OAAO,GAAG,SAAS,CAMrB;AAED,wBAAgB,0BAA0B,CACxC,KAAK,EAAE,OAAO,EACd,KAAK,EAAE,MAAM,GACZ,MAAM,GAAG,SAAS,CAWpB;AAED,wBAAgB,6BAA6B,CAC3C,KAAK,EAAE,OAAO,EACd,KAAK,EAAE,MAAM,GACZ,MAAM,GAAG,IAAI,CAQf"}

package/dist/util/normalize.js

@@ -1,62 +0,0 @@
-class HealthNormalizationError extends Error {
-  status;
-  code;
-  constructor(status, message, code) {
-    super(message);
-    this.status = status;
-    if (code !== void 0) this.code = code;
-  }
-}
-function fail(status, message, code) {
-  throw new HealthNormalizationError(status, message, code);
-}
-function requireNonEmptyString(value, field) {
-  if (typeof value !== "string" || value.trim().length === 0) {
-    fail(400, `${field} must be a non-empty string`);
-  }
-  return value.trim();
-}
-function normalizeOptionalString(value) {
-  if (value === void 0 || value === null) return void 0;
-  if (typeof value !== "string") return void 0;
-  const trimmed = value.trim();
-  return trimmed.length > 0 ? trimmed : void 0;
-}
-function normalizeOptionalBoolean(value, _field) {
-  if (value === void 0 || value === null) return void 0;
-  if (typeof value === "boolean") return value;
-  if (value === "true" || value === 1) return true;
-  if (value === "false" || value === 0) return false;
-  return void 0;
-}
-function normalizeOptionalIsoString(value, field) {
-  if (value === void 0 || value === null) return void 0;
-  if (typeof value !== "string") {
-    fail(400, `${field} must be an ISO string`);
-  }
-  const trimmed = value.trim();
-  if (trimmed.length === 0) return void 0;
-  if (Number.isNaN(Date.parse(trimmed))) {
-    fail(400, `${field} must be a valid ISO timestamp`);
-  }
-  return trimmed;
-}
-function normalizeOptionalFiniteNumber(value, field) {
-  if (value === void 0 || value === null) return null;
-  if (typeof value === "number" && Number.isFinite(value)) return value;
-  if (typeof value === "string") {
-    const parsed = Number(value);
-    if (Number.isFinite(parsed)) return parsed;
-  }
-  fail(400, `${field} must be a finite number`);
-}
-export {
-  HealthNormalizationError,
-  fail,
-  normalizeOptionalBoolean,
-  normalizeOptionalFiniteNumber,
-  normalizeOptionalIsoString,
-  normalizeOptionalString,
-  requireNonEmptyString
-};
-//# sourceMappingURL=normalize.js.map

package/dist/util/normalize.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/util/normalize.ts"],"sourcesContent":["/**\n * Minimal value-normalisation helpers used inside plugin-health.\n *\n * Reproduces only the helpers that the moved health-bridge / health-connectors\n * / service-normalize-health files actually call. Kept small and dependency-\n * free so plugin-health stays decoupled from app-lifeops' larger\n * `service-normalize.ts` family.\n *\n * Behaviour matches `app-lifeops/src/lifeops/service-normalize.ts` exactly.\n */\n\nexport class HealthNormalizationError extends Error {\n  public readonly status: number;\n  public readonly code?: string;\n  constructor(status: number, message: string, code?: string) {\n    super(message);\n    this.status = status;\n    if (code !== undefined) this.code = code;\n  }\n}\n\nexport function fail(status: number, message: string, code?: string): never {\n  throw new HealthNormalizationError(status, message, code);\n}\n\nexport function requireNonEmptyString(value: unknown, field: string): string {\n  if (typeof value !== \"string\" || value.trim().length === 0) {\n    fail(400, `${field} must be a non-empty string`);\n  }\n  return (value as string).trim();\n}\n\nexport function normalizeOptionalString(value: unknown): string | undefined {\n  if (value === undefined || value === null) return undefined;\n  if (typeof value !== \"string\") return undefined;\n  const trimmed = value.trim();\n  return trimmed.length > 0 ? trimmed : undefined;\n}\n\nexport function normalizeOptionalBoolean(\n  value: unknown,\n  _field: string,\n): boolean | undefined {\n  if (value === undefined || value === null) return undefined;\n  if (typeof value === \"boolean\") return value;\n  if (value === \"true\" || value === 1) return true;\n  if (value === \"false\" || value === 0) return false;\n  return undefined;\n}\n\nexport function normalizeOptionalIsoString(\n  value: unknown,\n  field: string,\n): string | undefined {\n  if (value === undefined || value === null) return undefined;\n  if (typeof value !== \"string\") {\n    fail(400, `${field} must be an ISO string`);\n  }\n  const trimmed = (value as string).trim();\n  if (trimmed.length === 0) return undefined;\n  if (Number.isNaN(Date.parse(trimmed))) {\n    fail(400, `${field} must be a valid ISO timestamp`);\n  }\n  return trimmed;\n}\n\nexport function normalizeOptionalFiniteNumber(\n  value: unknown,\n  field: string,\n): number | null {\n  if (value === undefined || value === null) return null;\n  if (typeof value === \"number\" && Number.isFinite(value)) return value;\n  if (typeof value === \"string\") {\n    const parsed = Number(value);\n    if (Number.isFinite(parsed)) return parsed;\n  }\n  fail(400, `${field} must be a finite number`);\n}\n"],"mappings":"AAWO,MAAM,iCAAiC,MAAM;AAAA,EAClC;AAAA,EACA;AAAA,EAChB,YAAY,QAAgB,SAAiB,MAAe;AAC1D,UAAM,OAAO;AACb,SAAK,SAAS;AACd,QAAI,SAAS,OAAW,MAAK,OAAO;AAAA,EACtC;AACF;AAEO,SAAS,KAAK,QAAgB,SAAiB,MAAsB;AAC1E,QAAM,IAAI,yBAAyB,QAAQ,SAAS,IAAI;AAC1D;AAEO,SAAS,sBAAsB,OAAgB,OAAuB;AAC3E,MAAI,OAAO,UAAU,YAAY,MAAM,KAAK,EAAE,WAAW,GAAG;AAC1D,SAAK,KAAK,GAAG,KAAK,6BAA6B;AAAA,EACjD;AACA,SAAQ,MAAiB,KAAK;AAChC;AAEO,SAAS,wBAAwB,OAAoC;AAC1E,MAAI,UAAU,UAAa,UAAU,KAAM,QAAO;AAClD,MAAI,OAAO,UAAU,SAAU,QAAO;AACtC,QAAM,UAAU,MAAM,KAAK;AAC3B,SAAO,QAAQ,SAAS,IAAI,UAAU;AACxC;AAEO,SAAS,yBACd,OACA,QACqB;AACrB,MAAI,UAAU,UAAa,UAAU,KAAM,QAAO;AAClD,MAAI,OAAO,UAAU,UAAW,QAAO;AACvC,MAAI,UAAU,UAAU,UAAU,EAAG,QAAO;AAC5C,MAAI,UAAU,WAAW,UAAU,EAAG,QAAO;AAC7C,SAAO;AACT;AAEO,SAAS,2BACd,OACA,OACoB;AACpB,MAAI,UAAU,UAAa,UAAU,KAAM,QAAO;AAClD,MAAI,OAAO,UAAU,UAAU;AAC7B,SAAK,KAAK,GAAG,KAAK,wBAAwB;AAAA,EAC5C;AACA,QAAM,UAAW,MAAiB,KAAK;AACvC,MAAI,QAAQ,WAAW,EAAG,QAAO;AACjC,MAAI,OAAO,MAAM,KAAK,MAAM,OAAO,CAAC,GAAG;AACrC,SAAK,KAAK,GAAG,KAAK,gCAAgC;AAAA,EACpD;AACA,SAAO;AACT;AAEO,SAAS,8BACd,OACA,OACe;AACf,MAAI,UAAU,UAAa,UAAU,KAAM,QAAO;AAClD,MAAI,OAAO,UAAU,YAAY,OAAO,SAAS,KAAK,EAAG,QAAO;AAChE,MAAI,OAAO,UAAU,UAAU;AAC7B,UAAM,SAAS,OAAO,KAAK;AAC3B,QAAI,OAAO,SAAS,MAAM,EAAG,QAAO;AAAA,EACtC;AACA,OAAK,KAAK,GAAG,KAAK,0BAA0B;AAC9C;","names":[]}

package/dist/util/time-util.d.ts

@@ -1,10 +0,0 @@
-/**
- * Tiny value-parsing helpers shared across the LifeOps inference layers.
- * Lives in its own file so modules that only need parsing don't transitively
- * pull in `getZonedDateParts` / timezone utilities.
- */
-/** Parse an ISO timestamp to milliseconds, returning null on any failure. */
-export declare function parseIsoMs(value: string | null | undefined): number | null;
-/** Clamp a 0-1 confidence value and round to two decimals. */
-export declare function roundConfidence(value: number): number;
-//# sourceMappingURL=time-util.d.ts.map

package/dist/util/time-util.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"time-util.d.ts","sourceRoot":"","sources":["../../src/util/time-util.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,6EAA6E;AAC7E,wBAAgB,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GAAG,MAAM,GAAG,IAAI,CAI1E;AAED,8DAA8D;AAC9D,wBAAgB,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAGrD"}

package/dist/util/time-util.js

@@ -1,14 +0,0 @@
-function parseIsoMs(value) {
-  if (typeof value !== "string" || value.trim().length === 0) return null;
-  const parsed = Date.parse(value);
-  return Number.isFinite(parsed) ? parsed : null;
-}
-function roundConfidence(value) {
-  if (!Number.isFinite(value)) return 0;
-  return Math.max(0, Math.min(1, Math.round(value * 100) / 100));
-}
-export {
-  parseIsoMs,
-  roundConfidence
-};
-//# sourceMappingURL=time-util.js.map

package/dist/util/time-util.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/util/time-util.ts"],"sourcesContent":["/**\n * Tiny value-parsing helpers shared across the LifeOps inference layers.\n * Lives in its own file so modules that only need parsing don't transitively\n * pull in `getZonedDateParts` / timezone utilities.\n */\n\n/** Parse an ISO timestamp to milliseconds, returning null on any failure. */\nexport function parseIsoMs(value: string | null | undefined): number | null {\n  if (typeof value !== \"string\" || value.trim().length === 0) return null;\n  const parsed = Date.parse(value);\n  return Number.isFinite(parsed) ? parsed : null;\n}\n\n/** Clamp a 0-1 confidence value and round to two decimals. */\nexport function roundConfidence(value: number): number {\n  if (!Number.isFinite(value)) return 0;\n  return Math.max(0, Math.min(1, Math.round(value * 100) / 100));\n}\n"],"mappings":"AAOO,SAAS,WAAW,OAAiD;AAC1E,MAAI,OAAO,UAAU,YAAY,MAAM,KAAK,EAAE,WAAW,EAAG,QAAO;AACnE,QAAM,SAAS,KAAK,MAAM,KAAK;AAC/B,SAAO,OAAO,SAAS,MAAM,IAAI,SAAS;AAC5C;AAGO,SAAS,gBAAgB,OAAuB;AACrD,MAAI,CAAC,OAAO,SAAS,KAAK,EAAG,QAAO;AACpC,SAAO,KAAK,IAAI,GAAG,KAAK,IAAI,GAAG,KAAK,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC;AAC/D;","names":[]}

package/dist/util/time.d.ts

@@ -1,17 +0,0 @@
-export interface ZonedDateParts {
-    year: number;
-    month: number;
-    day: number;
-    hour: number;
-    minute: number;
-    second: number;
-}
-export declare function getZonedDateParts(date: Date, timeZone: string): ZonedDateParts;
-export declare function getTimeZoneOffsetMinutes(date: Date, timeZone: string): number;
-export declare function buildUtcDateFromLocalParts(timeZone: string, parts: ZonedDateParts): Date;
-export declare function formatInstantAsRfc3339InTimeZone(value: Date | string, timeZone: string): string;
-export declare function addDaysToLocalDate(dateOnly: Pick<ZonedDateParts, "year" | "month" | "day">, dayDelta: number): Pick<ZonedDateParts, "year" | "month" | "day">;
-export declare function getWeekdayForLocalDate(dateOnly: Pick<ZonedDateParts, "year" | "month" | "day">): number;
-export declare function getLocalDateKey(dateOnly: Pick<ZonedDateParts, "year" | "month" | "day">): string;
-export declare function addMinutes(date: Date, minutes: number): Date;
-//# sourceMappingURL=time.d.ts.map

package/dist/util/time.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"time.d.ts","sourceRoot":"","sources":["../../src/util/time.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;CAChB;AAuCD,wBAAgB,iBAAiB,CAC/B,IAAI,EAAE,IAAI,EACV,QAAQ,EAAE,MAAM,GACf,cAAc,CAiBhB;AAED,wBAAgB,wBAAwB,CAAC,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAa7E;AAyBD,wBAAgB,0BAA0B,CACxC,QAAQ,EAAE,MAAM,EAChB,KAAK,EAAE,cAAc,GACpB,IAAI,CAgBN;AAED,wBAAgB,gCAAgC,CAC9C,KAAK,EAAE,IAAI,GAAG,MAAM,EACpB,QAAQ,EAAE,MAAM,GACf,MAAM,CAmBR;AAED,wBAAgB,kBAAkB,CAChC,QAAQ,EAAE,IAAI,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,GAAG,KAAK,CAAC,EACxD,QAAQ,EAAE,MAAM,GACf,IAAI,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,GAAG,KAAK,CAAC,CAgBhD;AAED,wBAAgB,sBAAsB,CACpC,QAAQ,EAAE,IAAI,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,GAAG,KAAK,CAAC,GACvD,MAAM,CAIR;AAED,wBAAgB,eAAe,CAC7B,QAAQ,EAAE,IAAI,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO,GAAG,KAAK,CAAC,GACvD,MAAM,CAIR;AAED,wBAAgB,UAAU,CAAC,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,GAAG,IAAI,CAE5D"}

package/dist/util/time.js

@@ -1,152 +0,0 @@
-const zonedFormatterCache = /* @__PURE__ */ new Map();
-const offsetFormatterCache = /* @__PURE__ */ new Map();
-function getZonedFormatter(timeZone) {
-  const cacheKey = `parts:${timeZone}`;
-  const cached = zonedFormatterCache.get(cacheKey);
-  if (cached) return cached;
-  const formatter = new Intl.DateTimeFormat("en-US", {
-    timeZone,
-    hour12: false,
-    year: "numeric",
-    month: "2-digit",
-    day: "2-digit",
-    hour: "2-digit",
-    minute: "2-digit",
-    second: "2-digit"
-  });
-  zonedFormatterCache.set(cacheKey, formatter);
-  return formatter;
-}
-function getOffsetFormatter(timeZone) {
-  const cacheKey = `offset:${timeZone}`;
-  const cached = offsetFormatterCache.get(cacheKey);
-  if (cached) return cached;
-  const formatter = new Intl.DateTimeFormat("en-US", {
-    timeZone,
-    timeZoneName: "shortOffset",
-    hour: "2-digit",
-    minute: "2-digit",
-    second: "2-digit",
-    hour12: false
-  });
-  offsetFormatterCache.set(cacheKey, formatter);
-  return formatter;
-}
-function getZonedDateParts(date, timeZone) {
-  const parts = getZonedFormatter(timeZone).formatToParts(date);
-  const read = (type) => {
-    const part = parts.find((candidate) => candidate.type === type)?.value;
-    if (!part) {
-      throw new Error(`missing zoned date part: ${type}`);
-    }
-    return Number(part);
-  };
-  return {
-    year: read("year"),
-    month: read("month"),
-    day: read("day"),
-    hour: read("hour"),
-    minute: read("minute"),
-    second: read("second")
-  };
-}
-function getTimeZoneOffsetMinutes(date, timeZone) {
-  const parts = getOffsetFormatter(timeZone).formatToParts(date);
-  const token = parts.find((part) => part.type === "timeZoneName")?.value?.trim() ?? "GMT";
-  if (token === "GMT" || token === "UTC") return 0;
-  const match = token.match(/^GMT([+-])(\d{1,2})(?::?(\d{2}))?$/i);
-  if (!match) {
-    throw new Error(`unsupported offset token: ${token}`);
-  }
-  const sign = match[1] === "+" ? 1 : -1;
-  const hours = Number(match[2]);
-  const minutes = Number(match[3] ?? "0");
-  return sign * (hours * 60 + minutes);
-}
-function formatOffsetToken(offsetMinutes) {
-  const sign = offsetMinutes >= 0 ? "+" : "-";
-  const absolute = Math.abs(offsetMinutes);
-  const hours = Math.trunc(absolute / 60).toString().padStart(2, "0");
-  const minutes = Math.trunc(absolute % 60).toString().padStart(2, "0");
-  return `${sign}${hours}:${minutes}`;
-}
-function localPartsToEpochMs(parts) {
-  return Date.UTC(
-    parts.year,
-    parts.month - 1,
-    parts.day,
-    parts.hour,
-    parts.minute,
-    parts.second
-  );
-}
-function buildUtcDateFromLocalParts(timeZone, parts) {
-  const baseUtcMs = localPartsToEpochMs(parts);
-  let candidate = new Date(baseUtcMs);
-  for (let index = 0; index < 6; index += 1) {
-    const offsetMinutes = getTimeZoneOffsetMinutes(candidate, timeZone);
-    const adjusted = new Date(baseUtcMs - offsetMinutes * 6e4);
-    const actualParts = getZonedDateParts(adjusted, timeZone);
-    const deltaMinutes = Math.round(
-      (localPartsToEpochMs(parts) - localPartsToEpochMs(actualParts)) / 6e4
-    );
-    if (deltaMinutes === 0) {
-      return adjusted;
-    }
-    candidate = new Date(adjusted.getTime() + deltaMinutes * 6e4);
-  }
-  return candidate;
-}
-function formatInstantAsRfc3339InTimeZone(value, timeZone) {
-  const date = value instanceof Date ? value : new Date(value);
-  if (!Number.isFinite(date.getTime())) {
-    throw new Error(
-      `invalid datetime for timezone conversion: ${String(value)}`
-    );
-  }
-  const parts = getZonedDateParts(date, timeZone);
-  const offset = getTimeZoneOffsetMinutes(date, timeZone);
-  return [
-    `${parts.year.toString().padStart(4, "0")}-${parts.month.toString().padStart(2, "0")}-${parts.day.toString().padStart(2, "0")}`,
-    `${parts.hour.toString().padStart(2, "0")}:${parts.minute.toString().padStart(2, "0")}:${parts.second.toString().padStart(2, "0")}`
-  ].join("T") + formatOffsetToken(offset);
-}
-function addDaysToLocalDate(dateOnly, dayDelta) {
-  const utcDate = new Date(
-    Date.UTC(
-      dateOnly.year,
-      dateOnly.month - 1,
-      dateOnly.day + dayDelta,
-      12,
-      0,
-      0
-    )
-  );
-  return {
-    year: utcDate.getUTCFullYear(),
-    month: utcDate.getUTCMonth() + 1,
-    day: utcDate.getUTCDate()
-  };
-}
-function getWeekdayForLocalDate(dateOnly) {
-  return new Date(
-    Date.UTC(dateOnly.year, dateOnly.month - 1, dateOnly.day, 12, 0, 0)
-  ).getUTCDay();
-}
-function getLocalDateKey(dateOnly) {
-  return `${dateOnly.year.toString().padStart(4, "0")}-${dateOnly.month.toString().padStart(2, "0")}-${dateOnly.day.toString().padStart(2, "0")}`;
-}
-function addMinutes(date, minutes) {
-  return new Date(date.getTime() + minutes * 6e4);
-}
-export {
-  addDaysToLocalDate,
-  addMinutes,
-  buildUtcDateFromLocalParts,
-  formatInstantAsRfc3339InTimeZone,
-  getLocalDateKey,
-  getTimeZoneOffsetMinutes,
-  getWeekdayForLocalDate,
-  getZonedDateParts
-};
-//# sourceMappingURL=time.js.map

package/dist/util/time.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/util/time.ts"],"sourcesContent":["export interface ZonedDateParts {\n  year: number;\n  month: number;\n  day: number;\n  hour: number;\n  minute: number;\n  second: number;\n}\n\nconst zonedFormatterCache = new Map<string, Intl.DateTimeFormat>();\nconst offsetFormatterCache = new Map<string, Intl.DateTimeFormat>();\n\nfunction getZonedFormatter(timeZone: string): Intl.DateTimeFormat {\n  const cacheKey = `parts:${timeZone}`;\n  const cached = zonedFormatterCache.get(cacheKey);\n  if (cached) return cached;\n  const formatter = new Intl.DateTimeFormat(\"en-US\", {\n    timeZone,\n    hour12: false,\n    year: \"numeric\",\n    month: \"2-digit\",\n    day: \"2-digit\",\n    hour: \"2-digit\",\n    minute: \"2-digit\",\n    second: \"2-digit\",\n  });\n  zonedFormatterCache.set(cacheKey, formatter);\n  return formatter;\n}\n\nfunction getOffsetFormatter(timeZone: string): Intl.DateTimeFormat {\n  const cacheKey = `offset:${timeZone}`;\n  const cached = offsetFormatterCache.get(cacheKey);\n  if (cached) return cached;\n  const formatter = new Intl.DateTimeFormat(\"en-US\", {\n    timeZone,\n    timeZoneName: \"shortOffset\",\n    hour: \"2-digit\",\n    minute: \"2-digit\",\n    second: \"2-digit\",\n    hour12: false,\n  });\n  offsetFormatterCache.set(cacheKey, formatter);\n  return formatter;\n}\n\nexport function getZonedDateParts(\n  date: Date,\n  timeZone: string,\n): ZonedDateParts {\n  const parts = getZonedFormatter(timeZone).formatToParts(date);\n  const read = (type: Intl.DateTimeFormatPartTypes) => {\n    const part = parts.find((candidate) => candidate.type === type)?.value;\n    if (!part) {\n      throw new Error(`missing zoned date part: ${type}`);\n    }\n    return Number(part);\n  };\n  return {\n    year: read(\"year\"),\n    month: read(\"month\"),\n    day: read(\"day\"),\n    hour: read(\"hour\"),\n    minute: read(\"minute\"),\n    second: read(\"second\"),\n  };\n}\n\nexport function getTimeZoneOffsetMinutes(date: Date, timeZone: string): number {\n  const parts = getOffsetFormatter(timeZone).formatToParts(date);\n  const token =\n    parts.find((part) => part.type === \"timeZoneName\")?.value?.trim() ?? \"GMT\";\n  if (token === \"GMT\" || token === \"UTC\") return 0;\n  const match = token.match(/^GMT([+-])(\\d{1,2})(?::?(\\d{2}))?$/i);\n  if (!match) {\n    throw new Error(`unsupported offset token: ${token}`);\n  }\n  const sign = match[1] === \"+\" ? 1 : -1;\n  const hours = Number(match[2]);\n  const minutes = Number(match[3] ?? \"0\");\n  return sign * (hours * 60 + minutes);\n}\n\nfunction formatOffsetToken(offsetMinutes: number): string {\n  const sign = offsetMinutes >= 0 ? \"+\" : \"-\";\n  const absolute = Math.abs(offsetMinutes);\n  const hours = Math.trunc(absolute / 60)\n    .toString()\n    .padStart(2, \"0\");\n  const minutes = Math.trunc(absolute % 60)\n    .toString()\n    .padStart(2, \"0\");\n  return `${sign}${hours}:${minutes}`;\n}\n\nfunction localPartsToEpochMs(parts: ZonedDateParts): number {\n  return Date.UTC(\n    parts.year,\n    parts.month - 1,\n    parts.day,\n    parts.hour,\n    parts.minute,\n    parts.second,\n  );\n}\n\nexport function buildUtcDateFromLocalParts(\n  timeZone: string,\n  parts: ZonedDateParts,\n): Date {\n  const baseUtcMs = localPartsToEpochMs(parts);\n  let candidate = new Date(baseUtcMs);\n  for (let index = 0; index < 6; index += 1) {\n    const offsetMinutes = getTimeZoneOffsetMinutes(candidate, timeZone);\n    const adjusted = new Date(baseUtcMs - offsetMinutes * 60_000);\n    const actualParts = getZonedDateParts(adjusted, timeZone);\n    const deltaMinutes = Math.round(\n      (localPartsToEpochMs(parts) - localPartsToEpochMs(actualParts)) / 60_000,\n    );\n    if (deltaMinutes === 0) {\n      return adjusted;\n    }\n    candidate = new Date(adjusted.getTime() + deltaMinutes * 60_000);\n  }\n  return candidate;\n}\n\nexport function formatInstantAsRfc3339InTimeZone(\n  value: Date | string,\n  timeZone: string,\n): string {\n  const date = value instanceof Date ? value : new Date(value);\n  if (!Number.isFinite(date.getTime())) {\n    throw new Error(\n      `invalid datetime for timezone conversion: ${String(value)}`,\n    );\n  }\n  const parts = getZonedDateParts(date, timeZone);\n  const offset = getTimeZoneOffsetMinutes(date, timeZone);\n  return (\n    [\n      `${parts.year.toString().padStart(4, \"0\")}-${parts.month\n        .toString()\n        .padStart(2, \"0\")}-${parts.day.toString().padStart(2, \"0\")}`,\n      `${parts.hour.toString().padStart(2, \"0\")}:${parts.minute\n        .toString()\n        .padStart(2, \"0\")}:${parts.second.toString().padStart(2, \"0\")}`,\n    ].join(\"T\") + formatOffsetToken(offset)\n  );\n}\n\nexport function addDaysToLocalDate(\n  dateOnly: Pick<ZonedDateParts, \"year\" | \"month\" | \"day\">,\n  dayDelta: number,\n): Pick<ZonedDateParts, \"year\" | \"month\" | \"day\"> {\n  const utcDate = new Date(\n    Date.UTC(\n      dateOnly.year,\n      dateOnly.month - 1,\n      dateOnly.day + dayDelta,\n      12,\n      0,\n      0,\n    ),\n  );\n  return {\n    year: utcDate.getUTCFullYear(),\n    month: utcDate.getUTCMonth() + 1,\n    day: utcDate.getUTCDate(),\n  };\n}\n\nexport function getWeekdayForLocalDate(\n  dateOnly: Pick<ZonedDateParts, \"year\" | \"month\" | \"day\">,\n): number {\n  return new Date(\n    Date.UTC(dateOnly.year, dateOnly.month - 1, dateOnly.day, 12, 0, 0),\n  ).getUTCDay();\n}\n\nexport function getLocalDateKey(\n  dateOnly: Pick<ZonedDateParts, \"year\" | \"month\" | \"day\">,\n): string {\n  return `${dateOnly.year.toString().padStart(4, \"0\")}-${dateOnly.month\n    .toString()\n    .padStart(2, \"0\")}-${dateOnly.day.toString().padStart(2, \"0\")}`;\n}\n\nexport function addMinutes(date: Date, minutes: number): Date {\n  return new Date(date.getTime() + minutes * 60_000);\n}\n"],"mappings":"AASA,MAAM,sBAAsB,oBAAI,IAAiC;AACjE,MAAM,uBAAuB,oBAAI,IAAiC;AAElE,SAAS,kBAAkB,UAAuC;AAChE,QAAM,WAAW,SAAS,QAAQ;AAClC,QAAM,SAAS,oBAAoB,IAAI,QAAQ;AAC/C,MAAI,OAAQ,QAAO;AACnB,QAAM,YAAY,IAAI,KAAK,eAAe,SAAS;AAAA,IACjD;AAAA,IACA,QAAQ;AAAA,IACR,MAAM;AAAA,IACN,OAAO;AAAA,IACP,KAAK;AAAA,IACL,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,QAAQ;AAAA,EACV,CAAC;AACD,sBAAoB,IAAI,UAAU,SAAS;AAC3C,SAAO;AACT;AAEA,SAAS,mBAAmB,UAAuC;AACjE,QAAM,WAAW,UAAU,QAAQ;AACnC,QAAM,SAAS,qBAAqB,IAAI,QAAQ;AAChD,MAAI,OAAQ,QAAO;AACnB,QAAM,YAAY,IAAI,KAAK,eAAe,SAAS;AAAA,IACjD;AAAA,IACA,cAAc;AAAA,IACd,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,QAAQ;AAAA,IACR,QAAQ;AAAA,EACV,CAAC;AACD,uBAAqB,IAAI,UAAU,SAAS;AAC5C,SAAO;AACT;AAEO,SAAS,kBACd,MACA,UACgB;AAChB,QAAM,QAAQ,kBAAkB,QAAQ,EAAE,cAAc,IAAI;AAC5D,QAAM,OAAO,CAAC,SAAuC;AACnD,UAAM,OAAO,MAAM,KAAK,CAAC,cAAc,UAAU,SAAS,IAAI,GAAG;AACjE,QAAI,CAAC,MAAM;AACT,YAAM,IAAI,MAAM,4BAA4B,IAAI,EAAE;AAAA,IACpD;AACA,WAAO,OAAO,IAAI;AAAA,EACpB;AACA,SAAO;AAAA,IACL,MAAM,KAAK,MAAM;AAAA,IACjB,OAAO,KAAK,OAAO;AAAA,IACnB,KAAK,KAAK,KAAK;AAAA,IACf,MAAM,KAAK,MAAM;AAAA,IACjB,QAAQ,KAAK,QAAQ;AAAA,IACrB,QAAQ,KAAK,QAAQ;AAAA,EACvB;AACF;AAEO,SAAS,yBAAyB,MAAY,UAA0B;AAC7E,QAAM,QAAQ,mBAAmB,QAAQ,EAAE,cAAc,IAAI;AAC7D,QAAM,QACJ,MAAM,KAAK,CAAC,SAAS,KAAK,SAAS,cAAc,GAAG,OAAO,KAAK,KAAK;AACvE,MAAI,UAAU,SAAS,UAAU,MAAO,QAAO;AAC/C,QAAM,QAAQ,MAAM,MAAM,qCAAqC;AAC/D,MAAI,CAAC,OAAO;AACV,UAAM,IAAI,MAAM,6BAA6B,KAAK,EAAE;AAAA,EACtD;AACA,QAAM,OAAO,MAAM,CAAC,MAAM,MAAM,IAAI;AACpC,QAAM,QAAQ,OAAO,MAAM,CAAC,CAAC;AAC7B,QAAM,UAAU,OAAO,MAAM,CAAC,KAAK,GAAG;AACtC,SAAO,QAAQ,QAAQ,KAAK;AAC9B;AAEA,SAAS,kBAAkB,eAA+B;AACxD,QAAM,OAAO,iBAAiB,IAAI,MAAM;AACxC,QAAM,WAAW,KAAK,IAAI,aAAa;AACvC,QAAM,QAAQ,KAAK,MAAM,WAAW,EAAE,EACnC,SAAS,EACT,SAAS,GAAG,GAAG;AAClB,QAAM,UAAU,KAAK,MAAM,WAAW,EAAE,EACrC,SAAS,EACT,SAAS,GAAG,GAAG;AAClB,SAAO,GAAG,IAAI,GAAG,KAAK,IAAI,OAAO;AACnC;AAEA,SAAS,oBAAoB,OAA+B;AAC1D,SAAO,KAAK;AAAA,IACV,MAAM;AAAA,IACN,MAAM,QAAQ;AAAA,IACd,MAAM;AAAA,IACN,MAAM;AAAA,IACN,MAAM;AAAA,IACN,MAAM;AAAA,EACR;AACF;AAEO,SAAS,2BACd,UACA,OACM;AACN,QAAM,YAAY,oBAAoB,KAAK;AAC3C,MAAI,YAAY,IAAI,KAAK,SAAS;AAClC,WAAS,QAAQ,GAAG,QAAQ,GAAG,SAAS,GAAG;AACzC,UAAM,gBAAgB,yBAAyB,WAAW,QAAQ;AAClE,UAAM,WAAW,IAAI,KAAK,YAAY,gBAAgB,GAAM;AAC5D,UAAM,cAAc,kBAAkB,UAAU,QAAQ;AACxD,UAAM,eAAe,KAAK;AAAA,OACvB,oBAAoB,KAAK,IAAI,oBAAoB,WAAW,KAAK;AAAA,IACpE;AACA,QAAI,iBAAiB,GAAG;AACtB,aAAO;AAAA,IACT;AACA,gBAAY,IAAI,KAAK,SAAS,QAAQ,IAAI,eAAe,GAAM;AAAA,EACjE;AACA,SAAO;AACT;AAEO,SAAS,iCACd,OACA,UACQ;AACR,QAAM,OAAO,iBAAiB,OAAO,QAAQ,IAAI,KAAK,KAAK;AAC3D,MAAI,CAAC,OAAO,SAAS,KAAK,QAAQ,CAAC,GAAG;AACpC,UAAM,IAAI;AAAA,MACR,6CAA6C,OAAO,KAAK,CAAC;AAAA,IAC5D;AAAA,EACF;AACA,QAAM,QAAQ,kBAAkB,MAAM,QAAQ;AAC9C,QAAM,SAAS,yBAAyB,MAAM,QAAQ;AACtD,SACE;AAAA,IACE,GAAG,MAAM,KAAK,SAAS,EAAE,SAAS,GAAG,GAAG,CAAC,IAAI,MAAM,MAChD,SAAS,EACT,SAAS,GAAG,GAAG,CAAC,IAAI,MAAM,IAAI,SAAS,EAAE,SAAS,GAAG,GAAG,CAAC;AAAA,IAC5D,GAAG,MAAM,KAAK,SAAS,EAAE,SAAS,GAAG,GAAG,CAAC,IAAI,MAAM,OAChD,SAAS,EACT,SAAS,GAAG,GAAG,CAAC,IAAI,MAAM,OAAO,SAAS,EAAE,SAAS,GAAG,GAAG,CAAC;AAAA,EACjE,EAAE,KAAK,GAAG,IAAI,kBAAkB,MAAM;AAE1C;AAEO,SAAS,mBACd,UACA,UACgD;AAChD,QAAM,UAAU,IAAI;AAAA,IAClB,KAAK;AAAA,MACH,SAAS;AAAA,MACT,SAAS,QAAQ;AAAA,MACjB,SAAS,MAAM;AAAA,MACf;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,EACF;AACA,SAAO;AAAA,IACL,MAAM,QAAQ,eAAe;AAAA,IAC7B,OAAO,QAAQ,YAAY,IAAI;AAAA,IAC/B,KAAK,QAAQ,WAAW;AAAA,EAC1B;AACF;AAEO,SAAS,uBACd,UACQ;AACR,SAAO,IAAI;AAAA,IACT,KAAK,IAAI,SAAS,MAAM,SAAS,QAAQ,GAAG,SAAS,KAAK,IAAI,GAAG,CAAC;AAAA,EACpE,EAAE,UAAU;AACd;AAEO,SAAS,gBACd,UACQ;AACR,SAAO,GAAG,SAAS,KAAK,SAAS,EAAE,SAAS,GAAG,GAAG,CAAC,IAAI,SAAS,MAC7D,SAAS,EACT,SAAS,GAAG,GAAG,CAAC,IAAI,SAAS,IAAI,SAAS,EAAE,SAAS,GAAG,GAAG,CAAC;AACjE;AAEO,SAAS,WAAW,MAAY,SAAuB;AAC5D,SAAO,IAAI,KAAK,KAAK,QAAQ,IAAI,UAAU,GAAM;AACnD;","names":[]}

package/dist/util/token-encryption.d.ts

@@ -1,42 +0,0 @@
-/**
- * AES-256-GCM encryption helpers for LifeOps connector tokens at rest.
- *
- * Connector tokens are encrypted at rest with AES-256-GCM using a symmetric
- * key sourced from one of:
- *
- *   1. `ELIZA_TOKEN_ENCRYPTION_KEY` env var (32 raw bytes, base64- or
- *      hex-encoded). Preferred — operators who manage their own secret
- *      management can inject the key directly.
- *   2. `<credentials-dir>/.encryption-key` file (mode 0600). Generated lazily
- *      the first time we need to write a token and no env var is configured.
- *      The agent reuses this key on subsequent boots.
- *
- * The on-disk format is intentionally minimal: encrypted blobs are JSON
- * objects with a top-level `__enc` discriminator.
- */
-declare const ENVELOPE_VERSION = 1;
-declare const ENVELOPE_DISCRIMINATOR: "__enc";
-export interface EncryptedTokenEnvelope {
-    readonly [ENVELOPE_DISCRIMINATOR]: "aes-256-gcm";
-    readonly v: typeof ENVELOPE_VERSION;
-    readonly iv: string;
-    readonly tag: string;
-    readonly ct: string;
-}
-/**
- * Resolve the symmetric key for token encryption.
- *
- * Resolution order: env var (`ELIZA_TOKEN_ENCRYPTION_KEY`) → file at
- * `<credentialsDir>/.encryption-key`. The file is created (with mode 0600)
- * lazily on first call so existing deployments keep working without an env
- * var.
- */
-export declare function resolveTokenEncryptionKey(credentialsDir: string, env?: NodeJS.ProcessEnv): Buffer;
-export declare function encryptTokenPayload(plaintextJson: string, key: Buffer): EncryptedTokenEnvelope;
-export declare function decryptTokenEnvelope(envelope: EncryptedTokenEnvelope, key: Buffer): string;
-/**
- * Returns true when the parsed JSON value looks like an encrypted envelope.
- */
-export declare function isEncryptedTokenEnvelope(value: unknown): value is EncryptedTokenEnvelope;
-export {};
-//# sourceMappingURL=token-encryption.d.ts.map

package/dist/util/token-encryption.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"token-encryption.d.ts","sourceRoot":"","sources":["../../src/util/token-encryption.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAWH,QAAA,MAAM,gBAAgB,IAAI,CAAC;AAC3B,QAAA,MAAM,sBAAsB,EAAG,OAAgB,CAAC;AAEhD,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,CAAC,sBAAsB,CAAC,EAAE,aAAa,CAAC;IACjD,QAAQ,CAAC,CAAC,EAAE,OAAO,gBAAgB,CAAC;IACpC,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAC;CACrB;AAiCD;;;;;;;GAOG;AACH,wBAAgB,yBAAyB,CACvC,cAAc,EAAE,MAAM,EACtB,GAAG,GAAE,MAAM,CAAC,UAAwB,GACnC,MAAM,CAMR;AAED,wBAAgB,mBAAmB,CACjC,aAAa,EAAE,MAAM,EACrB,GAAG,EAAE,MAAM,GACV,sBAAsB,CAuBxB;AAED,wBAAgB,oBAAoB,CAClC,QAAQ,EAAE,sBAAsB,EAChC,GAAG,EAAE,MAAM,GACV,MAAM,CAiBR;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CACtC,KAAK,EAAE,OAAO,GACb,KAAK,IAAI,sBAAsB,CAMjC"}

package/dist/util/token-encryption.js

@@ -1,96 +0,0 @@
-import crypto from "node:crypto";
-import fs from "node:fs";
-import path from "node:path";
-const KEY_ENV_VAR = "ELIZA_TOKEN_ENCRYPTION_KEY";
-const KEY_FILENAME = ".encryption-key";
-const KEY_BYTES = 32;
-const IV_BYTES = 12;
-const AUTH_TAG_BYTES = 16;
-const ENVELOPE_VERSION = 1;
-const ENVELOPE_DISCRIMINATOR = "__enc";
-function decodeKeyMaterial(raw) {
-  const trimmed = raw.trim();
-  if (/^[0-9a-fA-F]+$/.test(trimmed) && trimmed.length === KEY_BYTES * 2) {
-    return Buffer.from(trimmed, "hex");
-  }
-  const buf = Buffer.from(trimmed, "base64");
-  if (buf.length === KEY_BYTES) {
-    return buf;
-  }
-  throw new Error(
-    `${KEY_ENV_VAR} must decode to exactly ${KEY_BYTES} bytes (got ${buf.length})`
-  );
-}
-function loadOrCreateKeyFile(credentialsDir) {
-  const filePath = path.join(credentialsDir, KEY_FILENAME);
-  if (fs.existsSync(filePath)) {
-    const raw = fs.readFileSync(filePath, "utf8");
-    return decodeKeyMaterial(raw);
-  }
-  fs.mkdirSync(credentialsDir, { recursive: true, mode: 448 });
-  const key = crypto.randomBytes(KEY_BYTES);
-  fs.writeFileSync(filePath, key.toString("base64"), {
-    encoding: "utf8",
-    mode: 384
-  });
-  return key;
-}
-function resolveTokenEncryptionKey(credentialsDir, env = process.env) {
-  const fromEnv = env[KEY_ENV_VAR]?.trim();
-  if (fromEnv) {
-    return decodeKeyMaterial(fromEnv);
-  }
-  return loadOrCreateKeyFile(credentialsDir);
-}
-function encryptTokenPayload(plaintextJson, key) {
-  if (key.length !== KEY_BYTES) {
-    throw new Error(
-      `Token encryption key must be ${KEY_BYTES} bytes (got ${key.length})`
-    );
-  }
-  const iv = crypto.randomBytes(IV_BYTES);
-  const cipher = crypto.createCipheriv("aes-256-gcm", key, iv);
-  const ciphertext = Buffer.concat([
-    cipher.update(plaintextJson, "utf8"),
-    cipher.final()
-  ]);
-  const authTag = cipher.getAuthTag();
-  if (authTag.length !== AUTH_TAG_BYTES) {
-    throw new Error("AES-GCM auth tag had unexpected length");
-  }
-  return {
-    [ENVELOPE_DISCRIMINATOR]: "aes-256-gcm",
-    v: ENVELOPE_VERSION,
-    iv: iv.toString("base64"),
-    tag: authTag.toString("base64"),
-    ct: ciphertext.toString("base64")
-  };
-}
-function decryptTokenEnvelope(envelope, key) {
-  if (envelope[ENVELOPE_DISCRIMINATOR] !== "aes-256-gcm") {
-    throw new Error("Unsupported token envelope algorithm");
-  }
-  if (envelope.v !== ENVELOPE_VERSION) {
-    throw new Error(`Unsupported token envelope version: ${envelope.v}`);
-  }
-  const iv = Buffer.from(envelope.iv, "base64");
-  const tag = Buffer.from(envelope.tag, "base64");
-  const ciphertext = Buffer.from(envelope.ct, "base64");
-  const decipher = crypto.createDecipheriv("aes-256-gcm", key, iv);
-  decipher.setAuthTag(tag);
-  const plaintext = Buffer.concat([
-    decipher.update(ciphertext),
-    decipher.final()
-  ]);
-  return plaintext.toString("utf8");
-}
-function isEncryptedTokenEnvelope(value) {
-  return typeof value === "object" && value !== null && value[ENVELOPE_DISCRIMINATOR] === "aes-256-gcm";
-}
-export {
-  decryptTokenEnvelope,
-  encryptTokenPayload,
-  isEncryptedTokenEnvelope,
-  resolveTokenEncryptionKey
-};
-//# sourceMappingURL=token-encryption.js.map

package/dist/util/token-encryption.js.map

@@ -1 +0,0 @@
-{"version":3,"sources":["../../src/util/token-encryption.ts"],"sourcesContent":["/**\n * AES-256-GCM encryption helpers for LifeOps connector tokens at rest.\n *\n * Connector tokens are encrypted at rest with AES-256-GCM using a symmetric\n * key sourced from one of:\n *\n *   1. `ELIZA_TOKEN_ENCRYPTION_KEY` env var (32 raw bytes, base64- or\n *      hex-encoded). Preferred — operators who manage their own secret\n *      management can inject the key directly.\n *   2. `<credentials-dir>/.encryption-key` file (mode 0600). Generated lazily\n *      the first time we need to write a token and no env var is configured.\n *      The agent reuses this key on subsequent boots.\n *\n * The on-disk format is intentionally minimal: encrypted blobs are JSON\n * objects with a top-level `__enc` discriminator.\n */\n\nimport crypto from \"node:crypto\";\nimport fs from \"node:fs\";\nimport path from \"node:path\";\n\nconst KEY_ENV_VAR = \"ELIZA_TOKEN_ENCRYPTION_KEY\";\nconst KEY_FILENAME = \".encryption-key\";\nconst KEY_BYTES = 32; // AES-256\nconst IV_BYTES = 12; // GCM standard nonce length\nconst AUTH_TAG_BYTES = 16;\nconst ENVELOPE_VERSION = 1;\nconst ENVELOPE_DISCRIMINATOR = \"__enc\" as const;\n\nexport interface EncryptedTokenEnvelope {\n  readonly [ENVELOPE_DISCRIMINATOR]: \"aes-256-gcm\";\n  readonly v: typeof ENVELOPE_VERSION;\n  readonly iv: string;\n  readonly tag: string;\n  readonly ct: string;\n}\n\nfunction decodeKeyMaterial(raw: string): Buffer {\n  const trimmed = raw.trim();\n  // Hex first (deterministic length check).\n  if (/^[0-9a-fA-F]+$/.test(trimmed) && trimmed.length === KEY_BYTES * 2) {\n    return Buffer.from(trimmed, \"hex\");\n  }\n  // Otherwise assume base64 / base64url.\n  const buf = Buffer.from(trimmed, \"base64\");\n  if (buf.length === KEY_BYTES) {\n    return buf;\n  }\n  throw new Error(\n    `${KEY_ENV_VAR} must decode to exactly ${KEY_BYTES} bytes (got ${buf.length})`,\n  );\n}\n\nfunction loadOrCreateKeyFile(credentialsDir: string): Buffer {\n  const filePath = path.join(credentialsDir, KEY_FILENAME);\n  if (fs.existsSync(filePath)) {\n    const raw = fs.readFileSync(filePath, \"utf8\");\n    return decodeKeyMaterial(raw);\n  }\n  fs.mkdirSync(credentialsDir, { recursive: true, mode: 0o700 });\n  const key = crypto.randomBytes(KEY_BYTES);\n  fs.writeFileSync(filePath, key.toString(\"base64\"), {\n    encoding: \"utf8\",\n    mode: 0o600,\n  });\n  return key;\n}\n\n/**\n * Resolve the symmetric key for token encryption.\n *\n * Resolution order: env var (`ELIZA_TOKEN_ENCRYPTION_KEY`) → file at\n * `<credentialsDir>/.encryption-key`. The file is created (with mode 0600)\n * lazily on first call so existing deployments keep working without an env\n * var.\n */\nexport function resolveTokenEncryptionKey(\n  credentialsDir: string,\n  env: NodeJS.ProcessEnv = process.env,\n): Buffer {\n  const fromEnv = env[KEY_ENV_VAR]?.trim();\n  if (fromEnv) {\n    return decodeKeyMaterial(fromEnv);\n  }\n  return loadOrCreateKeyFile(credentialsDir);\n}\n\nexport function encryptTokenPayload(\n  plaintextJson: string,\n  key: Buffer,\n): EncryptedTokenEnvelope {\n  if (key.length !== KEY_BYTES) {\n    throw new Error(\n      `Token encryption key must be ${KEY_BYTES} bytes (got ${key.length})`,\n    );\n  }\n  const iv = crypto.randomBytes(IV_BYTES);\n  const cipher = crypto.createCipheriv(\"aes-256-gcm\", key, iv);\n  const ciphertext = Buffer.concat([\n    cipher.update(plaintextJson, \"utf8\"),\n    cipher.final(),\n  ]);\n  const authTag = cipher.getAuthTag();\n  if (authTag.length !== AUTH_TAG_BYTES) {\n    throw new Error(\"AES-GCM auth tag had unexpected length\");\n  }\n  return {\n    [ENVELOPE_DISCRIMINATOR]: \"aes-256-gcm\",\n    v: ENVELOPE_VERSION,\n    iv: iv.toString(\"base64\"),\n    tag: authTag.toString(\"base64\"),\n    ct: ciphertext.toString(\"base64\"),\n  };\n}\n\nexport function decryptTokenEnvelope(\n  envelope: EncryptedTokenEnvelope,\n  key: Buffer,\n): string {\n  if (envelope[ENVELOPE_DISCRIMINATOR] !== \"aes-256-gcm\") {\n    throw new Error(\"Unsupported token envelope algorithm\");\n  }\n  if (envelope.v !== ENVELOPE_VERSION) {\n    throw new Error(`Unsupported token envelope version: ${envelope.v}`);\n  }\n  const iv = Buffer.from(envelope.iv, \"base64\");\n  const tag = Buffer.from(envelope.tag, \"base64\");\n  const ciphertext = Buffer.from(envelope.ct, \"base64\");\n  const decipher = crypto.createDecipheriv(\"aes-256-gcm\", key, iv);\n  decipher.setAuthTag(tag);\n  const plaintext = Buffer.concat([\n    decipher.update(ciphertext),\n    decipher.final(),\n  ]);\n  return plaintext.toString(\"utf8\");\n}\n\n/**\n * Returns true when the parsed JSON value looks like an encrypted envelope.\n */\nexport function isEncryptedTokenEnvelope(\n  value: unknown,\n): value is EncryptedTokenEnvelope {\n  return (\n    typeof value === \"object\" &&\n    value !== null &&\n    (value as Record<string, unknown>)[ENVELOPE_DISCRIMINATOR] === \"aes-256-gcm\"\n  );\n}\n"],"mappings":"AAiBA,OAAO,YAAY;AACnB,OAAO,QAAQ;AACf,OAAO,UAAU;AAEjB,MAAM,cAAc;AACpB,MAAM,eAAe;AACrB,MAAM,YAAY;AAClB,MAAM,WAAW;AACjB,MAAM,iBAAiB;AACvB,MAAM,mBAAmB;AACzB,MAAM,yBAAyB;AAU/B,SAAS,kBAAkB,KAAqB;AAC9C,QAAM,UAAU,IAAI,KAAK;AAEzB,MAAI,iBAAiB,KAAK,OAAO,KAAK,QAAQ,WAAW,YAAY,GAAG;AACtE,WAAO,OAAO,KAAK,SAAS,KAAK;AAAA,EACnC;AAEA,QAAM,MAAM,OAAO,KAAK,SAAS,QAAQ;AACzC,MAAI,IAAI,WAAW,WAAW;AAC5B,WAAO;AAAA,EACT;AACA,QAAM,IAAI;AAAA,IACR,GAAG,WAAW,2BAA2B,SAAS,eAAe,IAAI,MAAM;AAAA,EAC7E;AACF;AAEA,SAAS,oBAAoB,gBAAgC;AAC3D,QAAM,WAAW,KAAK,KAAK,gBAAgB,YAAY;AACvD,MAAI,GAAG,WAAW,QAAQ,GAAG;AAC3B,UAAM,MAAM,GAAG,aAAa,UAAU,MAAM;AAC5C,WAAO,kBAAkB,GAAG;AAAA,EAC9B;AACA,KAAG,UAAU,gBAAgB,EAAE,WAAW,MAAM,MAAM,IAAM,CAAC;AAC7D,QAAM,MAAM,OAAO,YAAY,SAAS;AACxC,KAAG,cAAc,UAAU,IAAI,SAAS,QAAQ,GAAG;AAAA,IACjD,UAAU;AAAA,IACV,MAAM;AAAA,EACR,CAAC;AACD,SAAO;AACT;AAUO,SAAS,0BACd,gBACA,MAAyB,QAAQ,KACzB;AACR,QAAM,UAAU,IAAI,WAAW,GAAG,KAAK;AACvC,MAAI,SAAS;AACX,WAAO,kBAAkB,OAAO;AAAA,EAClC;AACA,SAAO,oBAAoB,cAAc;AAC3C;AAEO,SAAS,oBACd,eACA,KACwB;AACxB,MAAI,IAAI,WAAW,WAAW;AAC5B,UAAM,IAAI;AAAA,MACR,gCAAgC,SAAS,eAAe,IAAI,MAAM;AAAA,IACpE;AAAA,EACF;AACA,QAAM,KAAK,OAAO,YAAY,QAAQ;AACtC,QAAM,SAAS,OAAO,eAAe,eAAe,KAAK,EAAE;AAC3D,QAAM,aAAa,OAAO,OAAO;AAAA,IAC/B,OAAO,OAAO,eAAe,MAAM;AAAA,IACnC,OAAO,MAAM;AAAA,EACf,CAAC;AACD,QAAM,UAAU,OAAO,WAAW;AAClC,MAAI,QAAQ,WAAW,gBAAgB;AACrC,UAAM,IAAI,MAAM,wCAAwC;AAAA,EAC1D;AACA,SAAO;AAAA,IACL,CAAC,sBAAsB,GAAG;AAAA,IAC1B,GAAG;AAAA,IACH,IAAI,GAAG,SAAS,QAAQ;AAAA,IACxB,KAAK,QAAQ,SAAS,QAAQ;AAAA,IAC9B,IAAI,WAAW,SAAS,QAAQ;AAAA,EAClC;AACF;AAEO,SAAS,qBACd,UACA,KACQ;AACR,MAAI,SAAS,sBAAsB,MAAM,eAAe;AACtD,UAAM,IAAI,MAAM,sCAAsC;AAAA,EACxD;AACA,MAAI,SAAS,MAAM,kBAAkB;AACnC,UAAM,IAAI,MAAM,uCAAuC,SAAS,CAAC,EAAE;AAAA,EACrE;AACA,QAAM,KAAK,OAAO,KAAK,SAAS,IAAI,QAAQ;AAC5C,QAAM,MAAM,OAAO,KAAK,SAAS,KAAK,QAAQ;AAC9C,QAAM,aAAa,OAAO,KAAK,SAAS,IAAI,QAAQ;AACpD,QAAM,WAAW,OAAO,iBAAiB,eAAe,KAAK,EAAE;AAC/D,WAAS,WAAW,GAAG;AACvB,QAAM,YAAY,OAAO,OAAO;AAAA,IAC9B,SAAS,OAAO,UAAU;AAAA,IAC1B,SAAS,MAAM;AAAA,EACjB,CAAC;AACD,SAAO,UAAU,SAAS,MAAM;AAClC;AAKO,SAAS,yBACd,OACiC;AACjC,SACE,OAAO,UAAU,YACjB,UAAU,QACT,MAAkC,sBAAsB,MAAM;AAEnE;","names":[]}