@elizaos/plugin-trust 1.2.1 → 2.0.0-alpha.1

package/dist/types/security.d.ts

@@ -0,0 +1,114 @@
+import type { UUID } from "@elizaos/core";
+import type { PermissionContext } from "./permissions";
+export interface SecurityContext extends PermissionContext {
+    entityId?: UUID;
+    requestedAction?: string;
+    messageHistory?: string[];
+}
+export interface SecurityCheck {
+    detected: boolean;
+    confidence: number;
+    type: "prompt_injection" | "social_engineering" | "credential_theft" | "anomaly" | "none";
+    severity: "low" | "medium" | "high" | "critical";
+    action: "block" | "require_verification" | "allow" | "log_only";
+    details?: string;
+}
+export interface ThreatAssessment extends SecurityCheck {
+    recommendation?: string;
+}
+export interface SecurityEvent {
+    id?: UUID;
+    type: SecurityEventType;
+    entityId: UUID;
+    severity: "low" | "medium" | "high" | "critical";
+    context: PermissionContext;
+    details: Record<string, unknown>;
+    timestamp?: number;
+    handled?: boolean;
+}
+export declare enum SecurityEventType {
+    PROMPT_INJECTION_ATTEMPT = "prompt_injection_attempt",
+    SOCIAL_ENGINEERING_ATTEMPT = "social_engineering_attempt",
+    PRIVILEGE_ESCALATION_ATTEMPT = "privilege_escalation_attempt",
+    ANOMALOUS_REQUEST = "anomalous_request",
+    TRUST_MANIPULATION = "trust_manipulation",
+    IDENTITY_SPOOFING = "identity_spoofing",
+    MULTI_ACCOUNT_ABUSE = "multi_account_abuse",
+    CREDENTIAL_THEFT_ATTEMPT = "credential_theft_attempt",
+    PHISHING_ATTEMPT = "phishing_attempt",
+    IMPERSONATION_ATTEMPT = "impersonation_attempt",
+    COORDINATED_ATTACK = "coordinated_attack",
+    MALICIOUS_LINK_CAMPAIGN = "malicious_link_campaign"
+}
+export interface PatternDetection {
+    type: "multi_account" | "phishing" | "impersonation" | "coordination" | "credential_theft";
+    confidence: number;
+    evidence: string[];
+    relatedEntities?: UUID[];
+    recommendation: string;
+}
+export interface MultiAccountDetection extends PatternDetection {
+    type: "multi_account";
+    primaryAccount: UUID;
+    linkedAccounts: UUID[];
+    linkageEvidence: {
+        typingPattern: number;
+        timingPattern: number;
+        vocabularyPattern: number;
+        behaviorPattern: number;
+    };
+}
+export interface PhishingDetection extends PatternDetection {
+    type: "phishing";
+    maliciousLinks?: string[];
+    targetedEntities: UUID[];
+    campaignId?: string;
+}
+export interface ImpersonationDetection extends PatternDetection {
+    type: "impersonation";
+    impersonator: string;
+    impersonated: string;
+    visualSimilarity: number;
+    timingCoincidence: number;
+}
+export interface CoordinationDetection extends PatternDetection {
+    type: "coordination";
+    coordinatedEntities: UUID[];
+    timeWindow: number;
+    correlationScore: number;
+}
+export interface CredentialTheftDetection extends PatternDetection {
+    type: "credential_theft";
+    sensitivePatterns: string[];
+    attemptedTheft: string[];
+    potentialVictims: UUID[];
+}
+export interface BehavioralProfile {
+    entityId: UUID;
+    typingSpeed: number;
+    vocabularyComplexity: number;
+    messageLength: {
+        mean: number;
+        stdDev: number;
+    };
+    activeHours: number[];
+    commonPhrases: string[];
+    interactionPatterns: Map<string, number>;
+}
+export interface Message {
+    id: UUID;
+    entityId: UUID;
+    content: string;
+    timestamp: number;
+    roomId?: UUID;
+    replyTo?: UUID;
+}
+export interface Action {
+    id: UUID;
+    entityId: UUID;
+    type: string;
+    timestamp: number;
+    target?: string;
+    result?: "success" | "failure";
+}
+//# sourceMappingURL=security.d.ts.map

package/dist/types/security.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../src/types/security.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAC1C,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,eAAe,CAAC;AAEvD,MAAM,WAAW,eAAgB,SAAQ,iBAAiB;IACxD,QAAQ,CAAC,EAAE,IAAI,CAAC;IAChB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,aAAa;IAC5B,QAAQ,EAAE,OAAO,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,kBAAkB,GAAG,oBAAoB,GAAG,kBAAkB,GAAG,SAAS,GAAG,MAAM,CAAC;IAC1F,QAAQ,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IACjD,MAAM,EAAE,OAAO,GAAG,sBAAsB,GAAG,OAAO,GAAG,UAAU,CAAC;IAChE,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAiB,SAAQ,aAAa;IACrD,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,aAAa;IAC5B,EAAE,CAAC,EAAE,IAAI,CAAC;IACV,IAAI,EAAE,iBAAiB,CAAC;IACxB,QAAQ,EAAE,IAAI,CAAC;IACf,QAAQ,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IACjD,OAAO,EAAE,iBAAiB,CAAC;IAC3B,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,oBAAY,iBAAiB;IAC3B,wBAAwB,6BAA6B;IACrD,0BAA0B,+BAA+B;IACzD,4BAA4B,iCAAiC;IAC7D,iBAAiB,sBAAsB;IACvC,kBAAkB,uBAAuB;IACzC,iBAAiB,sBAAsB;IACvC,mBAAmB,wBAAwB;IAC3C,wBAAwB,6BAA6B;IACrD,gBAAgB,qBAAqB;IACrC,qBAAqB,0BAA0B;IAC/C,kBAAkB,uBAAuB;IACzC,uBAAuB,4BAA4B;CACpD;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,eAAe,GAAG,UAAU,GAAG,eAAe,GAAG,cAAc,GAAG,kBAAkB,CAAC;IAC3F,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,eAAe,CAAC,EAAE,IAAI,EAAE,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,qBAAsB,SAAQ,gBAAgB;IAC7D,IAAI,EAAE,eAAe,CAAC;IACtB,cAAc,EAAE,IAAI,CAAC;IACrB,cAAc,EAAE,IAAI,EAAE,CAAC;IACvB,eAAe,EAAE;QACf,aAAa,EAAE,MAAM,CAAC;QACtB,aAAa,EAAE,MAAM,CAAC;QACtB,iBAAiB,EAAE,MAAM,CAAC;QAC1B,eAAe,EAAE,MAAM,CAAC;KACzB,CAAC;CACH;AAED,MAAM,WAAW,iBAAkB,SAAQ,gBAAgB;IACzD,IAAI,EAAE,UAAU,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,gBAAgB,EAAE,IAAI,EAAE,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,sBAAuB,SAAQ,gBAAgB;IAC9D,IAAI,EAAE,eAAe,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB,EAAE,MAAM,CAAC;IACzB,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AAED,MAAM,WAAW,qBAAsB,SAAQ,gBAAgB;IAC7D,IAAI,EAAE,cAAc,CAAC;IACrB,mBAAmB,EAAE,IAAI,EAAE,CAAC;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,gBAAgB,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,wBAAyB,SAAQ,gBAAgB;IAChE,IAAI,EAAE,kBAAkB,CAAC;IACzB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,gBAAgB,EAAE,IAAI,EAAE,CAAC;CAC1B;AAED,MAAM,WAAW,iBAAiB;IAChC,QAAQ,EAAE,IAAI,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;IACpB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,aAAa,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC;IAChD,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,mBAAmB,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC1C;AAED,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,IAAI,CAAC;IACT,QAAQ,EAAE,IAAI,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,IAAI,CAAC;IACd,OAAO,CAAC,EAAE,IAAI,CAAC;CAChB;AAED,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,IAAI,CAAC;IACT,QAAQ,EAAE,IAAI,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,SAAS,GAAG,SAAS,CAAC;CAChC"}

package/dist/types/trust.d.ts

@@ -0,0 +1,179 @@
+import type { UUID } from "@elizaos/core";
+/**
+ * Core trust dimensions based on interpersonal trust theory
+ */
+export interface TrustDimensions {
+    /** Consistency in behavior and promise keeping (0-100) */
+    reliability: number;
+    /** Ability to perform tasks and provide value (0-100) */
+    competence: number;
+    /** Adherence to ethical principles (0-100) */
+    integrity: number;
+    /** Good intentions towards others (0-100) */
+    benevolence: number;
+    /** Open and honest communication (0-100) */
+    transparency: number;
+}
+/**
+ * Evidence types that impact trust scores
+ */
+export declare enum TrustEvidenceType {
+    PROMISE_KEPT = "PROMISE_KEPT",
+    HELPFUL_ACTION = "HELPFUL_ACTION",
+    CONSISTENT_BEHAVIOR = "CONSISTENT_BEHAVIOR",
+    VERIFIED_IDENTITY = "VERIFIED_IDENTITY",
+    COMMUNITY_CONTRIBUTION = "COMMUNITY_CONTRIBUTION",
+    SUCCESSFUL_TRANSACTION = "SUCCESSFUL_TRANSACTION",
+    PROMISE_BROKEN = "PROMISE_BROKEN",
+    HARMFUL_ACTION = "HARMFUL_ACTION",
+    INCONSISTENT_BEHAVIOR = "INCONSISTENT_BEHAVIOR",
+    SUSPICIOUS_ACTIVITY = "SUSPICIOUS_ACTIVITY",
+    FAILED_VERIFICATION = "FAILED_VERIFICATION",
+    SPAM_BEHAVIOR = "SPAM_BEHAVIOR",
+    SECURITY_VIOLATION = "SECURITY_VIOLATION",
+    IDENTITY_CHANGE = "IDENTITY_CHANGE",
+    ROLE_CHANGE = "ROLE_CHANGE",
+    CONTEXT_SWITCH = "CONTEXT_SWITCH"
+}
+/**
+ * A piece of evidence that affects trust
+ */
+export interface TrustEvidence {
+    type: TrustEvidenceType;
+    timestamp: number;
+    /** Impact on trust score (-100 to +100) */
+    impact: number;
+    /** Weight/importance of this evidence (0-1) */
+    weight: number;
+    /** Optional description of the evidence */
+    description: string;
+    /** Entity who reported/created this evidence */
+    reportedBy: UUID;
+    /** Whether this evidence has been verified */
+    verified: boolean;
+    /** Context where this evidence occurred */
+    context: TrustContext;
+    targetEntityId: UUID;
+    evaluatorId: UUID;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Trust profile for an entity
+ */
+export interface TrustProfile {
+    /** Entity this profile belongs to */
+    entityId: UUID;
+    /** Core trust dimensions */
+    dimensions: TrustDimensions;
+    /** Overall trust score (0-100) */
+    overallTrust: number;
+    /** Confidence in the trust score (0-1) */
+    confidence: number;
+    /** Number of interactions used to calculate trust */
+    interactionCount: number;
+    /** Evidence supporting this trust profile */
+    evidence: TrustEvidence[];
+    /** When this profile was last calculated */
+    lastCalculated: number;
+    /** Method used to calculate trust */
+    calculationMethod: string;
+    /** Trust trend over time */
+    trend: {
+        direction: "increasing" | "decreasing" | "stable";
+        changeRate: number;
+        lastChangeAt: number;
+    };
+    evaluatorId: UUID;
+}
+/**
+ * Context for trust calculations
+ */
+export interface TrustContext {
+    /** Who is evaluating trust */
+    evaluatorId: UUID;
+    /** Specific context for evaluation */
+    worldId?: UUID;
+    roomId?: UUID;
+    platform?: string;
+    /** Type of action being considered */
+    action?: string;
+    /** Time window for evidence consideration */
+    timeWindow?: {
+        start: number;
+        end: number;
+    };
+}
+/**
+ * Result of a trust-based decision
+ */
+export interface TrustDecision {
+    allowed: boolean;
+    trustScore: number;
+    requiredScore: number;
+    /** Which dimensions were evaluated */
+    dimensionsChecked: Partial<TrustDimensions>;
+    /** Reason for the decision */
+    reason: string;
+    /** Suggestions for building trust if denied */
+    suggestions?: string[];
+}
+/**
+ * Configuration for trust requirements
+ */
+export interface TrustRequirements {
+    /** Minimum overall trust score */
+    minimumTrust: number;
+    /** Required dimension scores */
+    dimensions?: {
+        reliability?: number;
+        competence?: number;
+        integrity?: number;
+        benevolence?: number;
+        transparency?: number;
+    };
+    /** Required evidence types */
+    requiredEvidence?: TrustEvidenceType[];
+    /** Minimum interaction count */
+    minimumInteractions?: number;
+    /** Required confidence level */
+    minimumConfidence?: number;
+}
+/**
+ * Trust interaction to be recorded
+ */
+export interface TrustInteraction {
+    sourceEntityId: UUID;
+    targetEntityId: UUID;
+    type: TrustEvidenceType;
+    timestamp: number;
+    impact: number;
+    details?: {
+        description?: string;
+        messageId?: UUID;
+        roomId?: UUID;
+        [key: string]: unknown;
+    };
+    context?: TrustContext;
+}
+/**
+ * Trust calculation configuration
+ */
+export interface TrustCalculationConfig {
+    /** How much recent evidence is weighted vs old */
+    recencyBias: number;
+    /** How fast evidence decays over time */
+    evidenceDecayRate: number;
+    /** Minimum evidence required for confidence */
+    minimumEvidenceCount: number;
+    /** How much to weight verified vs unverified evidence */
+    verificationMultiplier: number;
+    /** Dimension weights for overall score */
+    dimensionWeights: {
+        reliability: number;
+        competence: number;
+        integrity: number;
+        benevolence: number;
+        transparency: number;
+    };
+}
+//# sourceMappingURL=trust.d.ts.map

package/dist/types/trust.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"trust.d.ts","sourceRoot":"","sources":["../../src/types/trust.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAE1C;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,0DAA0D;IAC1D,WAAW,EAAE,MAAM,CAAC;IAEpB,yDAAyD;IACzD,UAAU,EAAE,MAAM,CAAC;IAEnB,8CAA8C;IAC9C,SAAS,EAAE,MAAM,CAAC;IAElB,6CAA6C;IAC7C,WAAW,EAAE,MAAM,CAAC;IAEpB,4CAA4C;IAC5C,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,oBAAY,iBAAiB;IAE3B,YAAY,iBAAiB;IAC7B,cAAc,mBAAmB;IACjC,mBAAmB,wBAAwB;IAC3C,iBAAiB,sBAAsB;IACvC,sBAAsB,2BAA2B;IACjD,sBAAsB,2BAA2B;IAGjD,cAAc,mBAAmB;IACjC,cAAc,mBAAmB;IACjC,qBAAqB,0BAA0B;IAC/C,mBAAmB,wBAAwB;IAC3C,mBAAmB,wBAAwB;IAC3C,aAAa,kBAAkB;IAC/B,kBAAkB,uBAAuB;IAGzC,eAAe,oBAAoB;IACnC,WAAW,gBAAgB;IAC3B,cAAc,mBAAmB;CAClC;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,iBAAiB,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,2CAA2C;IAC3C,MAAM,EAAE,MAAM,CAAC;IACf,+CAA+C;IAC/C,MAAM,EAAE,MAAM,CAAC;IACf,2CAA2C;IAC3C,WAAW,EAAE,MAAM,CAAC;IACpB,gDAAgD;IAChD,UAAU,EAAE,IAAI,CAAC;IACjB,8CAA8C;IAC9C,QAAQ,EAAE,OAAO,CAAC;IAClB,2CAA2C;IAC3C,OAAO,EAAE,YAAY,CAAC;IACtB,cAAc,EAAE,IAAI,CAAC;IACrB,WAAW,EAAE,IAAI,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,qCAAqC;IACrC,QAAQ,EAAE,IAAI,CAAC;IAEf,4BAA4B;IAC5B,UAAU,EAAE,eAAe,CAAC;IAE5B,kCAAkC;IAClC,YAAY,EAAE,MAAM,CAAC;IAErB,0CAA0C;IAC1C,UAAU,EAAE,MAAM,CAAC;IAEnB,qDAAqD;IACrD,gBAAgB,EAAE,MAAM,CAAC;IAEzB,6CAA6C;IAC7C,QAAQ,EAAE,aAAa,EAAE,CAAC;IAE1B,4CAA4C;IAC5C,cAAc,EAAE,MAAM,CAAC;IAEvB,qCAAqC;IACrC,iBAAiB,EAAE,MAAM,CAAC;IAE1B,4BAA4B;IAC5B,KAAK,EAAE;QACL,SAAS,EAAE,YAAY,GAAG,YAAY,GAAG,QAAQ,CAAC;QAClD,UAAU,EAAE,MAAM,CAAC;QACnB,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;IACF,WAAW,EAAE,IAAI,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,8BAA8B;IAC9B,WAAW,EAAE,IAAI,CAAC;IAElB,sCAAsC;IACtC,OAAO,CAAC,EAAE,IAAI,CAAC;IACf,MAAM,CAAC,EAAE,IAAI,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;IAElB,sCAAsC;IACtC,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,6CAA6C;IAC7C,UAAU,CAAC,EAAE;QACX,KAAK,EAAE,MAAM,CAAC;QACd,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,OAAO,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,sCAAsC;IACtC,iBAAiB,EAAE,OAAO,CAAC,eAAe,CAAC,CAAC;IAC5C,8BAA8B;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,+CAA+C;IAC/C,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,kCAAkC;IAClC,YAAY,EAAE,MAAM,CAAC;IAErB,gCAAgC;IAChC,UAAU,CAAC,EAAE;QACX,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,YAAY,CAAC,EAAE,MAAM,CAAC;KACvB,CAAC;IAEF,8BAA8B;IAC9B,gBAAgB,CAAC,EAAE,iBAAiB,EAAE,CAAC;IAEvC,gCAAgC;IAChC,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAE7B,gCAAgC;IAChC,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,cAAc,EAAE,IAAI,CAAC;IACrB,cAAc,EAAE,IAAI,CAAC;IACrB,IAAI,EAAE,iBAAiB,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE;QACR,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,SAAS,CAAC,EAAE,IAAI,CAAC;QACjB,MAAM,CAAC,EAAE,IAAI,CAAC;QACd,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;KACxB,CAAC;IACF,OAAO,CAAC,EAAE,YAAY,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,kDAAkD;IAClD,WAAW,EAAE,MAAM,CAAC;IAEpB,yCAAyC;IACzC,iBAAiB,EAAE,MAAM,CAAC;IAE1B,+CAA+C;IAC/C,oBAAoB,EAAE,MAAM,CAAC;IAE7B,yDAAyD;IACzD,sBAAsB,EAAE,MAAM,CAAC;IAE/B,0CAA0C;IAC1C,gBAAgB,EAAE;QAChB,WAAW,EAAE,MAAM,CAAC;QACpB,UAAU,EAAE,MAAM,CAAC;QACnB,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;CACH"}

package/package.json

@@ -1,34 +1,32 @@
 {
   "name": "@elizaos/plugin-trust",
-  "version": "1.2.1",
+  "version": "2.0.0-alpha.1",
   "description": "Trust and permission management plugin for ElizaOS",
+  "type": "module",
   "main": "dist/index.js",
-  "module": "dist/index.js",
   "types": "dist/index.d.ts",
-  "type": "module",
-  "scripts": {
-    "build": "tsup",
-    "dev": "tsc -p tsconfig.build.json --watch",
-    "clean": "rm -rf dist",
-    "test": "vitest",
-    "test:watch": "vitest --watch",
-    "test:coverage": "vitest --coverage",
-    "lint": "prettier --write src/**/*.ts"
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
   },
+  "files": [
+    "dist"
+  ],
   "dependencies": {
-    "@elizaos/core": "^1.2.1",
-    "@elizaos/plugin-anthropic": "1.0.3",
+    "@elizaos/core": "next",
+    "@elizaos/plugin-anthropic": "next",
     "dedent": "^1.6.0",
     "drizzle-orm": "^0.44.2"
   },
   "devDependencies": {
     "@types/node": "^24.0.13",
     "tsup": "^8.2.2",
-    "typescript": "^5.3.3"
+    "typescript": "^5.3.3",
+    "@biomejs/biome": "^2.3.11"
   },
-  "files": [
-    "dist"
-  ],
   "publishConfig": {
     "access": "public"
   },
@@ -40,6 +38,33 @@
     "security",
     "rbac"
   ],
+  "license": "MIT",
   "author": "ElizaOS Contributors",
-  "license": "MIT"
-}
+  "agentConfig": {
+    "pluginParameters": {
+      "OWNER_ENTITY_ID": {
+        "type": "string",
+        "description": "Entity identifier",
+        "required": false,
+        "sensitive": false
+      },
+      "WORLD_ID": {
+        "type": "string",
+        "description": "World identifier",
+        "required": false,
+        "sensitive": false
+      }
+    }
+  },
+  "scripts": {
+    "build": "bun run build.ts",
+    "dev": "bun run build.ts --watch",
+    "test": "vitest run --passWithNoTests",
+    "clean": "rm -rf dist .turbo node_modules",
+    "lint": "bunx @biomejs/biome check --write --unsafe .",
+    "lint:check": "bunx @biomejs/biome check .",
+    "format": "bunx @biomejs/biome format --write .",
+    "format:check": "bunx @biomejs/biome format .",
+    "typecheck": "tsc --noEmit"
+  }
+}

package/LICENSE

@@ -1,21 +0,0 @@
-MIT License
-
-Copyright (c) 2025 Shaw Walters and elizaOS Contributors
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.

package/README.md

@@ -1,244 +0,0 @@
-# @elizaos/plugin-trust
-
-A comprehensive trust, security, and permission management plugin for ElizaOS, providing multi-dimensional trust scoring, context-aware permissions, and advanced security features.
-
-## Features
-
-- **Multi-dimensional Trust System**: Calculate and track trust scores across multiple dimensions (reliability, competence, integrity, benevolence, transparency)
-- **Context-aware Permission Management**: Dynamic permission system that adapts based on trust levels and context
-- **Security Module**: Advanced threat detection including prompt injection, credential theft, and phishing attempts
-- **Permission Elevation System**: Temporary permission elevation based on trust and justification
-- **Credential Protection**: Automatic detection and prevention of credential theft attempts
-- **LLM-based Evaluation**: AI-powered security threat and trust action evaluation
-- **Role Management**: Hierarchical role system with OWNER, ADMIN, and NONE roles
-- **Settings Management**: Onboarding and configuration system for world/server settings
-- **Trust Interaction Tracking**: Record and analyze trust-affecting behaviors
-- **Security Event Monitoring**: Track and respond to security incidents with trust impact
-
-## Installation
-
-As this is a workspace package, it's installed as part of the ElizaOS monorepo:
-
-```bash
-bun install
-```
-
-## Configuration
-
-The plugin requires the following environment variables:
-
-```bash
-# World Configuration (Optional)
-WORLD_ID=your_world_id
-
-# Security Settings (Optional)
-TRUST_SCORE_THRESHOLD=60  # Minimum trust score for certain actions
-SECURITY_ALERT_THRESHOLD=0.8  # Threshold for security alerts
-CREDENTIAL_SCAN_ENABLED=true  # Enable credential theft scanning
-
-# Permission Settings (Optional)
-ELEVATION_DURATION_MINUTES=60  # Default elevation duration
-MAX_ELEVATION_REQUESTS=5  # Max elevation requests per user per day
-```
-
-## Usage
-
-```json
-{
-  "plugins": [
-    ...otherPlugins,
-    "@elizaos/plugin-trust"
-  ]
-}
-```
-
-### Available Actions
-
-The plugin provides the following actions:
-
-1. **UPDATE_ROLE** - Assign roles (Admin, Owner, None) to users in a channel
-   - Similes: `CHANGE_ROLE`, `SET_PERMISSIONS`, `ASSIGN_ROLE`, `MAKE_ADMIN`
-   
-2. **UPDATE_SETTINGS** - Save configuration settings during onboarding
-   - Similes: `UPDATE_SETTING`, `SAVE_SETTING`, `SET_CONFIGURATION`, `CONFIGURE`
-   
-3. **RECORD_TRUST_INTERACTION** - Record trust-affecting interactions between entities
-   - Similes: `record trust event`, `log trust interaction`, `track behavior`
-   
-4. **EVALUATE_TRUST** - Evaluate trust score and profile for an entity
-   - Similes: `check trust score`, `trust rating`, `show trust level`
-   
-5. **REQUEST_ELEVATION** - Request temporary elevation of permissions
-   - Similes: `need temporary access`, `request higher privileges`, `elevate my permissions`
-
-### Providers
-
-The plugin includes four state providers:
-
-1. **roleProvider** - Provides role information for entities in a world
-2. **settingsProvider** - Provides current settings and configuration state
-3. **trustProfileProvider** - Provides detailed trust profile information
-4. **securityStatusProvider** - Provides current security status and threat level
-
-### Evaluators
-
-1. **reflectionEvaluator** - Analyzes interactions for trust-affecting behaviors
-2. **trustChangeEvaluator** - Automatically detects and records trust changes based on behavior patterns
-
-### Services
-
-The plugin registers five core services:
-
-1. **TrustEngine** (`trust-engine`)
-   - Multi-dimensional trust scoring and evidence-based evaluation
-   - Trust profile calculation and decision making
-   - Interaction history tracking
-
-2. **SecurityModule** (`security-module`)
-   - Threat detection and assessment
-   - Prompt injection detection
-   - Phishing and impersonation detection
-   - Security event logging with trust impact
-
-3. **ContextualPermissionSystem** (`contextual-permissions`)
-   - Dynamic permission checking based on trust and context
-   - Permission elevation request handling
-   - Role-based access control integration
-
-4. **CredentialProtector** (`credential-protector`)
-   - Credential theft detection and prevention
-   - Sensitive data protection
-   - Victim alerting system
-
-5. **LLMEvaluator** (`llm-evaluator`)
-   - AI-powered security threat evaluation
-   - Behavioral analysis and anomaly detection
-   - Trust action evaluation with reasoning
-
-## Trust System
-
-### Trust Dimensions
-
-The trust system evaluates entities across five dimensions:
-- **Reliability**: Consistency in behavior and keeping promises
-- **Competence**: Skill and capability demonstrations
-- **Integrity**: Ethical behavior and honesty
-- **Benevolence**: Positive intentions and helpfulness
-- **Transparency**: Openness and clarity in communication
-
-### Trust Evidence Types
-
-```typescript
-enum TrustEvidenceType {
-  PROMISE_KEPT = 'PROMISE_KEPT',
-  PROMISE_BROKEN = 'PROMISE_BROKEN',
-  HELPFUL_ACTION = 'HELPFUL_ACTION',
-  HARMFUL_ACTION = 'HARMFUL_ACTION',
-  VERIFICATION_SUCCESS = 'VERIFICATION_SUCCESS',
-  VERIFICATION_FAILURE = 'VERIFICATION_FAILURE',
-  COMMUNITY_CONTRIBUTION = 'COMMUNITY_CONTRIBUTION',
-  SECURITY_VIOLATION = 'SECURITY_VIOLATION',
-  SPAM_BEHAVIOR = 'SPAM_BEHAVIOR',
-  SUSPICIOUS_ACTIVITY = 'SUSPICIOUS_ACTIVITY'
-}
-```
-
-## Permission System
-
-### Permission Types
-
-The system supports various permission actions:
-- `manage_roles`: Ability to change user roles
-- `manage_settings`: Ability to modify world/server settings
-- `moderate_content`: Content moderation capabilities
-- `access_sensitive`: Access to sensitive information
-- `execute_admin`: Execute administrative commands
-
-### Permission Elevation
-
-Users can request temporary permission elevation based on:
-- Current trust score
-- Justification provided
-- Context of the request
-- Historical behavior
-
-## Security Features
-
-### Threat Detection
-
-The security module detects:
-- Prompt injection attempts
-- Credential theft attempts
-- Phishing messages
-- Impersonation attempts
-- Multi-account abuse patterns
-- Suspicious behavioral patterns
-
-### Security Response
-
-When threats are detected:
-1. Security event is logged
-2. Trust score is impacted
-3. Potential victims are alerted
-4. Access may be restricted
-
-## Testing
-
-The plugin includes comprehensive E2E tests accessible via:
-
-```typescript
-import { tests } from '@elizaos/plugin-trust';
-```
-
-Run tests with:
-```bash
-bun test
-```
-
-## Example Usage
-
-### Evaluating Trust
-```typescript
-// User: "What is my trust score?"
-// Agent: "Trust Level: Good (65/100) based on 42 interactions"
-
-// User: "Show detailed trust profile for Alice"
-// Agent provides detailed breakdown of trust dimensions
-```
-
-### Managing Roles
-```typescript
-// User: "Make @john an ADMIN"
-// Agent: "Updated john's role to ADMIN."
-```
-
-### Requesting Elevation
-```typescript
-// User: "I need permission to manage roles to help moderate spam"
-// Agent evaluates request based on trust and grants/denies
-```
-
-## Schema
-
-The plugin uses Drizzle ORM with the following main tables:
-- `trustInteractions`: Stores all trust-affecting interactions
-- `trustProfiles`: Caches calculated trust profiles
-- `securityEvents`: Logs security-related events
-- `permissionGrants`: Tracks permission elevations
-
-## Notes
-
-- Trust scores range from 0-100 and affect available permissions
-- The system maintains a complete audit trail of all trust-affecting actions
-- Permission elevation is temporary and logged for security
-- Trust profiles are recalculated based on recent interactions
-- Security threats immediately impact trust scores
-- The plugin integrates seamlessly with ElizaOS's world and role systems
-- All actions respect the hierarchical role system (OWNER > ADMIN > NONE)
-
-## Dependencies
-
-- `@elizaos/core`: Core ElizaOS functionality
-- `@elizaos/plugin-anthropic`: LLM evaluation capabilities
-- `drizzle-orm`: Database ORM for trust data persistence
-- `dedent`: String formatting for templates