@elizaos/vault 2.0.0-alpha.537

package/dist/vault.js

@@ -0,0 +1,269 @@
+import { homedir } from "node:os";
+import { dirname, join, resolve } from "node:path";
+import { promises as fs } from "node:fs";
+import { decrypt, encrypt } from "./crypto.js";
+import { defaultMasterKey } from "./master-key.js";
+import { resolveReference } from "./password-managers.js";
+import { emptyStore, readStore, removeEntry, setEntry, writeStore, } from "./store.js";
+import { AuditLog } from "./audit.js";
+export function createVault(opts = {}) {
+    const root = opts.workDir ??
+        process.env.ELIZA_STATE_DIR ??
+        join(homedir(), `.${process.env.ELIZA_NAMESPACE?.trim() || "eliza"}`);
+    const storePath = join(root, "vault.json");
+    const auditPath = join(root, "audit", "vault.jsonl");
+    const masterKey = opts.masterKey ?? defaultMasterKey();
+    return new VaultImpl(storePath, auditPath, masterKey, opts.logger);
+}
+class VaultImpl {
+    storePath;
+    auditPath;
+    masterKey;
+    logger;
+    cachedKey = null;
+    mutex = Promise.resolve();
+    audit;
+    constructor(storePath, auditPath, masterKey, logger) {
+        this.storePath = storePath;
+        this.auditPath = auditPath;
+        this.masterKey = masterKey;
+        this.logger = logger;
+        this.audit = new AuditLog(auditPath, logger);
+    }
+    async set(key, value, opts = {}) {
+        assertKey(key);
+        if (typeof value !== "string") {
+            throw new TypeError("vault.set: value must be a string");
+        }
+        if (opts.sensitive) {
+            const masterKey = await this.loadMasterKey();
+            const ciphertext = encrypt(masterKey, value, key);
+            await this.mutate((s) => setEntry(s, key, {
+                kind: "secret",
+                ciphertext,
+                lastModified: Date.now(),
+            }));
+        }
+        else {
+            await this.mutate((s) => setEntry(s, key, {
+                kind: "value",
+                value,
+                lastModified: Date.now(),
+            }));
+        }
+        await this.recordAudit({ action: "set", key, ...optsCaller(opts) });
+    }
+    async setReference(key, ref) {
+        assertKey(key);
+        if (ref.source !== "1password" && ref.source !== "protonpass") {
+            throw new TypeError(`unsupported password manager: ${ref.source}`);
+        }
+        if (ref.path.trim().length === 0) {
+            throw new TypeError("setReference: path required");
+        }
+        await this.mutate((s) => setEntry(s, key, {
+            kind: "reference",
+            source: ref.source,
+            path: ref.path,
+            lastModified: Date.now(),
+        }));
+        await this.recordAudit({ action: "setReference", key });
+    }
+    async get(key) {
+        assertKey(key);
+        const value = await this.readValue(key);
+        await this.recordAudit({ action: "get", key });
+        return value;
+    }
+    async reveal(key, caller) {
+        assertKey(key);
+        const value = await this.readValue(key);
+        await this.recordAudit({
+            action: "reveal",
+            key,
+            ...(caller ? { caller } : {}),
+        });
+        return value;
+    }
+    async has(key) {
+        assertKey(key);
+        const store = await this.loadStore();
+        return key in store.entries;
+    }
+    async remove(key) {
+        assertKey(key);
+        await this.mutate((s) => removeEntry(s, key));
+        await this.recordAudit({ action: "remove", key });
+    }
+    async list(prefix) {
+        const store = await this.loadStore();
+        const keys = Object.keys(store.entries);
+        if (!prefix)
+            return keys;
+        // Match the prefix as a *segment*, not a substring: `"ui"` should
+        // match `ui` and `ui.theme` but not `ui_legacy_thing` or `uib`.
+        return keys.filter((k) => k === prefix || k.startsWith(`${prefix}.`));
+    }
+    async describe(key) {
+        assertKey(key);
+        const store = await this.loadStore();
+        const entry = store.entries[key];
+        if (!entry)
+            return null;
+        if (entry.kind === "value") {
+            return {
+                key,
+                source: "file",
+                sensitive: false,
+                lastModified: entry.lastModified,
+            };
+        }
+        if (entry.kind === "secret") {
+            return {
+                key,
+                source: "keychain-encrypted",
+                sensitive: true,
+                lastModified: entry.lastModified,
+            };
+        }
+        return {
+            key,
+            source: entry.source,
+            sensitive: true,
+            lastModified: entry.lastModified,
+        };
+    }
+    async stats() {
+        const store = await this.loadStore();
+        let sensitive = 0;
+        let nonSensitive = 0;
+        let references = 0;
+        for (const e of Object.values(store.entries)) {
+            if (e.kind === "value")
+                nonSensitive += 1;
+            else if (e.kind === "secret")
+                sensitive += 1;
+            else
+                references += 1;
+        }
+        return {
+            total: sensitive + nonSensitive + references,
+            sensitive,
+            nonSensitive,
+            references,
+        };
+    }
+    // ── internals ───────────────────────────────────────────────────
+    async readValue(key) {
+        const store = await this.loadStore();
+        const entry = store.entries[key];
+        if (!entry)
+            throw new VaultMissError(key);
+        if (entry.kind === "value")
+            return entry.value;
+        if (entry.kind === "secret") {
+            const masterKey = await this.loadMasterKey();
+            return decrypt(masterKey, entry.ciphertext, key);
+        }
+        return resolveReference({ source: entry.source, path: entry.path });
+    }
+    async loadStore() {
+        return readStore(this.storePath);
+    }
+    async loadMasterKey() {
+        if (this.cachedKey)
+            return this.cachedKey;
+        this.cachedKey = await this.masterKey.load();
+        return this.cachedKey;
+    }
+    async mutate(mutator) {
+        const previous = this.mutex;
+        let release;
+        this.mutex = new Promise((resolve) => {
+            release = resolve;
+        });
+        try {
+            await previous;
+            await withStoreMutationLock(this.storePath, async () => {
+                const current = await readStore(this.storePath);
+                const next = mutator(current);
+                await writeStore(this.storePath, next);
+            });
+        }
+        finally {
+            release();
+        }
+    }
+    async recordAudit(entry) {
+        await this.audit.record(entry);
+    }
+}
+export class VaultMissError extends Error {
+    key;
+    constructor(key) {
+        super(`vault: no entry for ${JSON.stringify(key)}`);
+        this.key = key;
+        this.name = "VaultMissError";
+    }
+}
+function assertKey(key) {
+    if (typeof key !== "string" || key.length === 0) {
+        throw new TypeError("vault: key must be a non-empty string");
+    }
+    if (key.length > 256) {
+        throw new TypeError("vault: key must be 256 characters or fewer");
+    }
+}
+function optsCaller(opts) {
+    return opts.caller ? { caller: opts.caller } : {};
+}
+// re-exports for ergonomic imports
+export { emptyStore } from "./store.js";
+const PROCESS_STORE_LOCKS = new Map();
+async function withStoreMutationLock(storePath, fn) {
+    const key = resolve(storePath);
+    const previous = PROCESS_STORE_LOCKS.get(key) ?? Promise.resolve();
+    let releaseProcessLock;
+    const current = new Promise((resolveLock) => {
+        releaseProcessLock = resolveLock;
+    });
+    const chained = previous.then(() => current, () => current);
+    PROCESS_STORE_LOCKS.set(key, chained);
+    await previous;
+    const lockDir = `${key}.lock`;
+    await fs.mkdir(dirname(lockDir), { recursive: true });
+    let lockAcquired = false;
+    try {
+        await acquireFsLock(lockDir);
+        lockAcquired = true;
+        return await fn();
+    }
+    finally {
+        if (lockAcquired) {
+            await fs.rm(lockDir, { recursive: true, force: true }).catch(() => { });
+        }
+        releaseProcessLock();
+        if (PROCESS_STORE_LOCKS.get(key) === chained) {
+            PROCESS_STORE_LOCKS.delete(key);
+        }
+    }
+}
+async function acquireFsLock(lockDir) {
+    const startedAt = Date.now();
+    while (true) {
+        try {
+            await fs.mkdir(lockDir, { mode: 0o700 });
+            return;
+        }
+        catch (err) {
+            const code = err.code;
+            if (code !== "EEXIST")
+                throw err;
+            if (Date.now() - startedAt > 10_000) {
+                throw new Error(`vault store lock timed out: ${lockDir}`);
+            }
+            await new Promise((resolveWait) => setTimeout(resolveWait, 25));
+        }
+    }
+}
+//# sourceMappingURL=vault.js.map

package/dist/vault.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vault.js","sourceRoot":"","sources":["../src/vault.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACnD,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,SAAS,CAAC;AACzC,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,gBAAgB,EAA0B,MAAM,iBAAiB,CAAC;AAC3E,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EACL,UAAU,EACV,SAAS,EACT,WAAW,EACX,QAAQ,EAER,UAAU,GACX,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAyFtC,MAAM,UAAU,WAAW,CAAC,OAA2B,EAAE;IACvD,MAAM,IAAI,GACR,IAAI,CAAC,OAAO;QACZ,OAAO,CAAC,GAAG,CAAC,eAAe;QAC3B,IAAI,CAAC,OAAO,EAAE,EAAE,IAAI,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,IAAI,EAAE,IAAI,OAAO,EAAE,CAAC,CAAC;IACxE,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;IAC3C,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,aAAa,CAAC,CAAC;IACrD,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,gBAAgB,EAAE,CAAC;IACvD,OAAO,IAAI,SAAS,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;AACrE,CAAC;AAED,MAAM,SAAS;IAMM;IACA;IACA;IACA;IARX,SAAS,GAAkB,IAAI,CAAC;IAChC,KAAK,GAAkB,OAAO,CAAC,OAAO,EAAE,CAAC;IAChC,KAAK,CAAW;IAEjC,YACmB,SAAiB,EACjB,SAAiB,EACjB,SAA4B,EAC5B,MAAoB;QAHpB,cAAS,GAAT,SAAS,CAAQ;QACjB,cAAS,GAAT,SAAS,CAAQ;QACjB,cAAS,GAAT,SAAS,CAAmB;QAC5B,WAAM,GAAN,MAAM,CAAc;QAErC,IAAI,CAAC,KAAK,GAAG,IAAI,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IAC/C,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,KAAa,EAAE,OAAmB,EAAE;QACzD,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,IAAI,SAAS,CAAC,mCAAmC,CAAC,CAAC;QAC3D,CAAC;QACD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;YAC7C,MAAM,UAAU,GAAG,OAAO,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC;YAClD,MAAM,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CACtB,QAAQ,CAAC,CAAC,EAAE,GAAG,EAAE;gBACf,IAAI,EAAE,QAAQ;gBACd,UAAU;gBACV,YAAY,EAAE,IAAI,CAAC,GAAG,EAAE;aACzB,CAAC,CACH,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,MAAM,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CACtB,QAAQ,CAAC,CAAC,EAAE,GAAG,EAAE;gBACf,IAAI,EAAE,OAAO;gBACb,KAAK;gBACL,YAAY,EAAE,IAAI,CAAC,GAAG,EAAE;aACzB,CAAC,CACH,CAAC;QACJ,CAAC;QACD,MAAM,IAAI,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACtE,CAAC;IAED,KAAK,CAAC,YAAY,CAChB,GAAW,EACX,GAA6B;QAE7B,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,IAAI,GAAG,CAAC,MAAM,KAAK,WAAW,IAAI,GAAG,CAAC,MAAM,KAAK,YAAY,EAAE,CAAC;YAC9D,MAAM,IAAI,SAAS,CAAC,iCAAiC,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;QACrE,CAAC;QACD,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACjC,MAAM,IAAI,SAAS,CAAC,6BAA6B,CAAC,CAAC;QACrD,CAAC;QACD,MAAM,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CACtB,QAAQ,CAAC,CAAC,EAAE,GAAG,EAAE;YACf,IAAI,EAAE,WAAW;YACjB,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,YAAY,EAAE,IAAI,CAAC,GAAG,EAAE;SACzB,CAAC,CACH,CAAC;QACF,MAAM,IAAI,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,cAAc,EAAE,GAAG,EAAE,CAAC,CAAC;IAC1D,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACxC,MAAM,IAAI,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;QAC/C,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW,EAAE,MAAe;QACvC,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QACxC,MAAM,IAAI,CAAC,WAAW,CAAC;YACrB,MAAM,EAAE,QAAQ;YAChB,GAAG;YACH,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC9B,CAAC,CAAC;QACH,OAAO,KAAK,CAAC;IACf,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,GAAW;QACnB,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACrC,OAAO,GAAG,IAAI,KAAK,CAAC,OAAO,CAAC;IAC9B,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,GAAW;QACtB,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,MAAM,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,WAAW,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QAC9C,MAAM,IAAI,CAAC,WAAW,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,MAAe;QACxB,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACrC,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACxC,IAAI,CAAC,MAAM;YAAE,OAAO,IAAI,CAAC;QACzB,kEAAkE;QAClE,gEAAgE;QAChE,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,MAAM,IAAI,CAAC,CAAC,UAAU,CAAC,GAAG,MAAM,GAAG,CAAC,CAAC,CAAC;IACxE,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,GAAW;QACxB,SAAS,CAAC,GAAG,CAAC,CAAC;QACf,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACjC,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,IAAI,KAAK,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;YAC3B,OAAO;gBACL,GAAG;gBACH,MAAM,EAAE,MAAM;gBACd,SAAS,EAAE,KAAK;gBAChB,YAAY,EAAE,KAAK,CAAC,YAAY;aACjC,CAAC;QACJ,CAAC;QACD,IAAI,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC5B,OAAO;gBACL,GAAG;gBACH,MAAM,EAAE,oBAAoB;gBAC5B,SAAS,EAAE,IAAI;gBACf,YAAY,EAAE,KAAK,CAAC,YAAY;aACjC,CAAC;QACJ,CAAC;QACD,OAAO;YACL,GAAG;YACH,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,SAAS,EAAE,IAAI;YACf,YAAY,EAAE,KAAK,CAAC,YAAY;SACjC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,KAAK;QACT,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACrC,IAAI,SAAS,GAAG,CAAC,CAAC;QAClB,IAAI,YAAY,GAAG,CAAC,CAAC;QACrB,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;YAC7C,IAAI,CAAC,CAAC,IAAI,KAAK,OAAO;gBAAE,YAAY,IAAI,CAAC,CAAC;iBACrC,IAAI,CAAC,CAAC,IAAI,KAAK,QAAQ;gBAAE,SAAS,IAAI,CAAC,CAAC;;gBACxC,UAAU,IAAI,CAAC,CAAC;QACvB,CAAC;QACD,OAAO;YACL,KAAK,EAAE,SAAS,GAAG,YAAY,GAAG,UAAU;YAC5C,SAAS;YACT,YAAY;YACZ,UAAU;SACX,CAAC;IACJ,CAAC;IAED,mEAAmE;IAE3D,KAAK,CAAC,SAAS,CAAC,GAAW;QACjC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,SAAS,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACjC,IAAI,CAAC,KAAK;YAAE,MAAM,IAAI,cAAc,CAAC,GAAG,CAAC,CAAC;QAC1C,IAAI,KAAK,CAAC,IAAI,KAAK,OAAO;YAAE,OAAO,KAAK,CAAC,KAAK,CAAC;QAC/C,IAAI,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC5B,MAAM,SAAS,GAAG,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;YAC7C,OAAO,OAAO,CAAC,SAAS,EAAE,KAAK,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;QACnD,CAAC;QACD,OAAO,gBAAgB,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;IACtE,CAAC;IAEO,KAAK,CAAC,SAAS;QACrB,OAAO,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACnC,CAAC;IAEO,KAAK,CAAC,aAAa;QACzB,IAAI,IAAI,CAAC,SAAS;YAAE,OAAO,IAAI,CAAC,SAAS,CAAC;QAC1C,IAAI,CAAC,SAAS,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC;QAC7C,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAEO,KAAK,CAAC,MAAM,CAAC,OAAoC;QACvD,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC;QAC5B,IAAI,OAAoB,CAAC;QACzB,IAAI,CAAC,KAAK,GAAG,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACzC,OAAO,GAAG,OAAO,CAAC;QACpB,CAAC,CAAC,CAAC;QACH,IAAI,CAAC;YACH,MAAM,QAAQ,CAAC;YACf,MAAM,qBAAqB,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,IAAI,EAAE;gBACrD,MAAM,OAAO,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;gBAChD,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;gBAC9B,MAAM,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;YACzC,CAAC,CAAC,CAAC;QACL,CAAC;gBAAS,CAAC;YACT,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,WAAW,CACvB,KAAgD;QAEhD,MAAM,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACjC,CAAC;CACF;AAED,MAAM,OAAO,cAAe,SAAQ,KAAK;IAClB;IAArB,YAAqB,GAAW;QAC9B,KAAK,CAAC,uBAAuB,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QADjC,QAAG,GAAH,GAAG,CAAQ;QAE9B,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;IAC/B,CAAC;CACF;AAED,SAAS,SAAS,CAAC,GAAW;IAC5B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAChD,MAAM,IAAI,SAAS,CAAC,uCAAuC,CAAC,CAAC;IAC/D,CAAC;IACD,IAAI,GAAG,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;QACrB,MAAM,IAAI,SAAS,CAAC,4CAA4C,CAAC,CAAC;IACpE,CAAC;AACH,CAAC;AAED,SAAS,UAAU,CAAC,IAAgB;IAClC,OAAO,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;AACpD,CAAC;AAED,mCAAmC;AACnC,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAExC,MAAM,mBAAmB,GAAG,IAAI,GAAG,EAAyB,CAAC;AAE7D,KAAK,UAAU,qBAAqB,CAClC,SAAiB,EACjB,EAAoB;IAEpB,MAAM,GAAG,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAC/B,MAAM,QAAQ,GAAG,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IACnE,IAAI,kBAA+B,CAAC;IACpC,MAAM,OAAO,GAAG,IAAI,OAAO,CAAO,CAAC,WAAW,EAAE,EAAE;QAChD,kBAAkB,GAAG,WAAW,CAAC;IACnC,CAAC,CAAC,CAAC;IACH,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,CAC3B,GAAG,EAAE,CAAC,OAAO,EACb,GAAG,EAAE,CAAC,OAAO,CACd,CAAC;IACF,mBAAmB,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACtC,MAAM,QAAQ,CAAC;IAEf,MAAM,OAAO,GAAG,GAAG,GAAG,OAAO,CAAC;IAC9B,MAAM,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACtD,IAAI,YAAY,GAAG,KAAK,CAAC;IACzB,IAAI,CAAC;QACH,MAAM,aAAa,CAAC,OAAO,CAAC,CAAC;QAC7B,YAAY,GAAG,IAAI,CAAC;QACpB,OAAO,MAAM,EAAE,EAAE,CAAC;IACpB,CAAC;YAAS,CAAC;QACT,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,EAAE,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;QACzE,CAAC;QACD,kBAAkB,EAAE,CAAC;QACrB,IAAI,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,OAAO,EAAE,CAAC;YAC7C,mBAAmB,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;AACH,CAAC;AAED,KAAK,UAAU,aAAa,CAAC,OAAe;IAC1C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,OAAO,IAAI,EAAE,CAAC;QACZ,IAAI,CAAC;YACH,MAAM,EAAE,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;YACzC,OAAO;QACT,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,IAAI,GAAI,GAA6B,CAAC,IAAI,CAAC;YACjD,IAAI,IAAI,KAAK,QAAQ;gBAAE,MAAM,GAAG,CAAC;YACjC,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,MAAM,EAAE,CAAC;gBACpC,MAAM,IAAI,KAAK,CAAC,+BAA+B,OAAO,EAAE,CAAC,CAAC;YAC5D,CAAC;YACD,MAAM,IAAI,OAAO,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,UAAU,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,CAAC;QAClE,CAAC;IACH,CAAC;AACH,CAAC"}

package/package.json

@@ -0,0 +1,59 @@
+{
+  "name": "@elizaos/vault",
+  "version": "2.0.0-alpha.537",
+  "description": "Simple secrets/config vault for Eliza agents. One API for sensitive credentials and non-sensitive configuration; routes to OS keychain, file, or password manager based on the user's choice.",
+  "type": "module",
+  "license": "MIT",
+  "homepage": "https://github.com/elizaOS/eliza",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/elizaOS/eliza.git",
+    "directory": "packages/vault"
+  },
+  "keywords": [
+    "elizaos",
+    "vault",
+    "secrets",
+    "keychain"
+  ],
+  "engines": {
+    "node": ">=24.0.0"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    },
+    "./testing": {
+      "types": "./dist/testing.d.ts",
+      "import": "./dist/testing.js",
+      "default": "./dist/testing.js"
+    },
+    "./package.json": "./package.json"
+  },
+  "scripts": {
+    "clean": "rm -rf dist",
+    "prepublishOnly": "bun run build",
+    "build": "tsc -p tsconfig.build.json",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "typecheck": "tsc --noEmit -p tsconfig.json"
+  },
+  "dependencies": {
+    "@napi-rs/keyring": "^1.1.6"
+  },
+  "devDependencies": {
+    "@types/node": "^25.0.0",
+    "typescript": "^6.0.0",
+    "vitest": "^4.0.0"
+  },
+  "publishConfig": {
+    "access": "public"
+  }
+}