@elizaos/plugin-trust 1.2.0 → 2.0.0-alpha.0

package/dist/actions/evaluateTrust.d.ts

@@ -0,0 +1,3 @@
+import { type Action } from "@elizaos/core";
+export declare const evaluateTrustAction: Action;
+//# sourceMappingURL=evaluateTrust.d.ts.map

package/dist/actions/evaluateTrust.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"evaluateTrust.d.ts","sourceRoot":"","sources":["../../src/actions/evaluateTrust.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,MAAM,EAOZ,MAAM,eAAe,CAAC;AAGvB,eAAO,MAAM,mBAAmB,EAAE,MAyQjC,CAAC"}

package/dist/actions/index.d.ts

@@ -0,0 +1,6 @@
+export * from "./evaluateTrust";
+export * from "./recordTrustInteraction";
+export * from "./requestElevation";
+export * from "./roles";
+export * from "./settings";
+//# sourceMappingURL=index.d.ts.map

package/dist/actions/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/actions/index.ts"],"names":[],"mappings":"AAAA,cAAc,iBAAiB,CAAC;AAChC,cAAc,0BAA0B,CAAC;AACzC,cAAc,oBAAoB,CAAC;AACnC,cAAc,SAAS,CAAC;AACxB,cAAc,YAAY,CAAC"}

package/dist/actions/recordTrustInteraction.d.ts

@@ -0,0 +1,3 @@
+import { type Action } from "@elizaos/core";
+export declare const recordTrustInteractionAction: Action;
+//# sourceMappingURL=recordTrustInteraction.d.ts.map

package/dist/actions/recordTrustInteraction.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"recordTrustInteraction.d.ts","sourceRoot":"","sources":["../../src/actions/recordTrustInteraction.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,MAAM,EAMZ,MAAM,eAAe,CAAC;AAGvB,eAAO,MAAM,4BAA4B,EAAE,MA6N1C,CAAC"}

package/dist/actions/requestElevation.d.ts

@@ -0,0 +1,3 @@
+import { type Action } from "@elizaos/core";
+export declare const requestElevationAction: Action;
+//# sourceMappingURL=requestElevation.d.ts.map

package/dist/actions/requestElevation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"requestElevation.d.ts","sourceRoot":"","sources":["../../src/actions/requestElevation.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,MAAM,EAKZ,MAAM,eAAe,CAAC;AAGvB,eAAO,MAAM,sBAAsB,EAAE,MAwMpC,CAAC"}

package/dist/actions/roles.d.ts

@@ -0,0 +1,13 @@
+import { type Action } from "@elizaos/core";
+/**
+ * Represents an action to update the role of a user within a server.
+ * @typedef {Object} Action
+ * @property {string} name - The name of the action.
+ * @property {string[]} similes - The similar actions that can be performed.
+ * @property {string} description - A description of the action and its purpose.
+ * @property {Function} validate - A function to validate the action before execution.
+ * @property {Function} handler - A function to handle the execution of the action.
+ * @property {ActionExample[][]} examples - Examples demonstrating how the action can be used.
+ */
+export declare const updateRoleAction: Action;
+//# sourceMappingURL=roles.d.ts.map

package/dist/actions/roles.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"roles.d.ts","sourceRoot":"","sources":["../../src/actions/roles.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,MAAM,EAcZ,MAAM,eAAe,CAAC;AAiFvB;;;;;;;;;GASG;AACH,eAAO,MAAM,gBAAgB,EAAE,MAkT9B,CAAC"}

package/dist/actions/settings.d.ts

@@ -0,0 +1,21 @@
+import { type Action, type IAgentRuntime, type WorldSettings } from "@elizaos/core";
+/**
+ * Gets settings state from world metadata
+ */
+/**
+ * Retrieves the settings for a specific world from the database.
+ * @param {IAgentRuntime} runtime - The Agent Runtime instance.
+ * @param {string} serverId - The ID of the server.
+ * @returns {Promise<WorldSettings | null>} The settings of the world, or null if not found.
+ */
+export declare function getWorldSettings(runtime: IAgentRuntime, serverId: string): Promise<WorldSettings | null>;
+/**
+ * Updates settings state in world metadata
+ */
+export declare function updateWorldSettings(runtime: IAgentRuntime, serverId: string, worldSettings: WorldSettings): Promise<boolean>;
+/**
+ * Enhanced settings action with improved state management and logging
+ * Updated to use world metadata instead of cache
+ */
+export declare const updateSettingsAction: Action;
+//# sourceMappingURL=settings.d.ts.map

package/dist/actions/settings.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"settings.d.ts","sourceRoot":"","sources":["../../src/actions/settings.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,MAAM,EAUX,KAAK,aAAa,EAOlB,KAAK,aAAa,EACnB,MAAM,eAAe,CAAC;AAsNvB;;GAEG;AACH;;;;;GAKG;AACH,wBAAsB,gBAAgB,CACpC,OAAO,EAAE,aAAa,EACtB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC,CAc/B;AAED;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,aAAa,EACtB,QAAQ,EAAE,MAAM,EAChB,aAAa,EAAE,aAAa,GAC3B,OAAO,CAAC,OAAO,CAAC,CA0BlB;AAiZD;;;GAGG;AACH,eAAO,MAAM,oBAAoB,EAAE,MA+ZlC,CAAC"}

package/dist/evaluators/index.d.ts

@@ -0,0 +1,4 @@
+export * from "./reflection";
+export * from "./securityEvaluator";
+export * from "./trustChangeEvaluator";
+//# sourceMappingURL=index.d.ts.map

package/dist/evaluators/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/evaluators/index.ts"],"names":[],"mappings":"AAAA,cAAc,cAAc,CAAC;AAC7B,cAAc,qBAAqB,CAAC;AACpC,cAAc,wBAAwB,CAAC"}

package/dist/evaluators/reflection.d.ts

@@ -0,0 +1,3 @@
+import { type Evaluator } from "@elizaos/core";
+export declare const reflectionEvaluator: Evaluator;
+//# sourceMappingURL=reflection.d.ts.map

package/dist/evaluators/reflection.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"reflection.d.ts","sourceRoot":"","sources":["../../src/evaluators/reflection.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,KAAK,SAAS,EAUf,MAAM,eAAe,CAAC;AAkRvB,eAAO,MAAM,mBAAmB,EAAE,SA+LjC,CAAC"}

package/dist/evaluators/securityEvaluator.d.ts

@@ -0,0 +1,28 @@
+/**
+ * Security pre-evaluator — runs as middleware BEFORE memory storage.
+ *
+ * Uses ONLY fast heuristic checks to detect adversarial inputs. No LLM calls.
+ * The pre-evaluator is a gate — it blocks obvious threats based on pattern
+ * matching and structural analysis.  Nuanced cases that need LLM understanding
+ * go through the normal agent pipeline (trustChangeEvaluator handles those).
+ *
+ * Heuristic signals:
+ *   - Encoded content (Base64, hex)
+ *   - Unusual spacing / zero-width characters / leet-speak
+ *   - Structural injection (ChatML tokens, JSON/XML role payloads)
+ *   - Multi-language injection keywords (8 languages)
+ *   - Classic injection / social engineering / credential request keywords
+ *   - Negation awareness (warnings about credentials are not requests)
+ *
+ * When high-confidence signals fire, the message is blocked immediately —
+ * no memory storage, no response generation, no action execution.
+ *
+ * Low-confidence signals (encoding, leet-speak without keywords) are logged
+ * but the message passes through for the agent to handle normally.
+ *
+ * The evaluator trusts the agent's owner — if the sender is the owner
+ * entity the message is always allowed through.
+ */
+import { type Evaluator } from "@elizaos/core";
+export declare const securityEvaluator: Evaluator;
+//# sourceMappingURL=securityEvaluator.d.ts.map

package/dist/evaluators/securityEvaluator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"securityEvaluator.d.ts","sourceRoot":"","sources":["../../src/evaluators/securityEvaluator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,EAEL,KAAK,SAAS,EAKf,MAAM,eAAe,CAAC;AAwNvB,eAAO,MAAM,iBAAiB,EAAE,SA4G/B,CAAC"}

package/dist/evaluators/trustChangeEvaluator.d.ts

@@ -0,0 +1,3 @@
+import { type Evaluator } from "@elizaos/core";
+export declare const trustChangeEvaluator: Evaluator;
+//# sourceMappingURL=trustChangeEvaluator.d.ts.map

package/dist/evaluators/trustChangeEvaluator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"trustChangeEvaluator.d.ts","sourceRoot":"","sources":["../../src/evaluators/trustChangeEvaluator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,SAAS,EAAuD,MAAM,eAAe,CAAC;AAQpG,eAAO,MAAM,oBAAoB,EAAE,SAoOlC,CAAC"}

package/dist/framework/TrustAwarePlugin.d.ts

@@ -0,0 +1,60 @@
+import { type Action, type Evaluator, type IAgentRuntime, type Memory, type Plugin, type Provider, type ServiceClass, type UUID } from "@elizaos/core";
+import type { ContextualPermissionSystem } from "../services/ContextualPermissionSystem";
+import type { SecurityModule } from "../services/SecurityModule";
+import type { TrustEngine } from "../services/TrustEngine";
+import { type ActionPermission } from "../types/permissions";
+/**
+ * Base class for trust-aware plugins
+ * Provides automatic trust checking and permission management
+ */
+export declare abstract class TrustAwarePlugin implements Plugin {
+    protected trustEngine: TrustEngine | null;
+    protected permissionSystem: ContextualPermissionSystem | null;
+    protected securityModule: SecurityModule | null;
+    /**
+     * Define required trust levels for actions
+     * Override in subclasses
+     */
+    protected abstract trustRequirements: Record<string, number>;
+    /**
+     * Define required permissions for actions
+     * Override in subclasses
+     */
+    protected abstract permissions: Record<string, ActionPermission>;
+    /**
+     * Initialize trust-aware services
+     */
+    init(_config: Record<string, string>, runtime: IAgentRuntime): Promise<void>;
+    /**
+     * Wrap an action with trust and permission checking
+     */
+    protected wrapAction(action: Action): Action;
+    /**
+     * Check if user has permission to execute action
+     */
+    protected checkPermission(runtime: IAgentRuntime, message: Memory, permission: ActionPermission): Promise<boolean>;
+    /**
+     * Get trust level for a user
+     */
+    protected getTrustLevel(runtime: IAgentRuntime, userId: UUID): Promise<number>;
+    /**
+     * Check if user is trusted (>= 80 trust score)
+     */
+    protected isTrusted(runtime: IAgentRuntime, userId: UUID): Promise<boolean>;
+    /**
+     * Check if user is admin
+     */
+    protected isAdmin(_userId: UUID): boolean;
+    /**
+     * Check if user is system/agent
+     */
+    protected isSystem(_userId: UUID): boolean;
+    abstract name: string;
+    abstract description: string;
+    abstract actions?: Action[];
+    abstract providers?: Provider[];
+    abstract evaluators?: Evaluator[];
+    abstract services?: ServiceClass[];
+}
+export declare const exampleTrustAwarePlugin: Plugin;
+//# sourceMappingURL=TrustAwarePlugin.d.ts.map

package/dist/framework/TrustAwarePlugin.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TrustAwarePlugin.d.ts","sourceRoot":"","sources":["../../src/framework/TrustAwarePlugin.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,MAAM,EAEX,KAAK,SAAS,EACd,KAAK,aAAa,EAElB,KAAK,MAAM,EACX,KAAK,MAAM,EACX,KAAK,QAAQ,EACb,KAAK,YAAY,EAEjB,KAAK,IAAI,EACV,MAAM,eAAe,CAAC;AACvB,OAAO,KAAK,EAAE,0BAA0B,EAAE,MAAM,wCAAwC,CAAC;AACzF,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAC3D,OAAO,EAGL,KAAK,gBAAgB,EAEtB,MAAM,sBAAsB,CAAC;AAG9B;;;GAGG;AACH,8BAAsB,gBAAiB,YAAW,MAAM;IACtD,SAAS,CAAC,WAAW,EAAE,WAAW,GAAG,IAAI,CAAQ;IACjD,SAAS,CAAC,gBAAgB,EAAE,0BAA0B,GAAG,IAAI,CAAQ;IACrE,SAAS,CAAC,cAAc,EAAE,cAAc,GAAG,IAAI,CAAQ;IAEvD;;;OAGG;IACH,SAAS,CAAC,QAAQ,CAAC,iBAAiB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAE7D;;;OAGG;IACH,SAAS,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;IAEjE;;OAEG;IACG,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IA4BlF;;OAEG;IACH,SAAS,CAAC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;IAsE5C;;OAEG;cACa,eAAe,CAC7B,OAAO,EAAE,aAAa,EACtB,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,gBAAgB,GAC3B,OAAO,CAAC,OAAO,CAAC;IAuBnB;;OAEG;cACa,aAAa,CAAC,OAAO,EAAE,aAAa,EAAE,MAAM,EAAE,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAUpF;;OAEG;cACa,SAAS,CAAC,OAAO,EAAE,aAAa,EAAE,MAAM,EAAE,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC;IAKjF;;OAEG;IACH,SAAS,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,GAAG,OAAO;IAKzC;;OAEG;IACH,SAAS,CAAC,QAAQ,CAAC,OAAO,EAAE,IAAI,GAAG,OAAO;IAK1C,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,QAAQ,CAAC,SAAS,CAAC,EAAE,QAAQ,EAAE,CAAC;IAChC,QAAQ,CAAC,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;IAClC,QAAQ,CAAC,QAAQ,CAAC,EAAE,YAAY,EAAE,CAAC;CACpC;AAGD,eAAO,MAAM,uBAAuB,EAAE,MAqDrC,CAAC"}