@enactprotocol/shared 1.2.11 → 2.0.0

package/dist/security/security.js

@@ -1,137 +0,0 @@
-// src/security/security.ts - Simplified security module for CLI core
-import logger from "../exec/logger";
-/**
- * Verify the signature of an Enact tool before execution
- * @param tool The tool to verify
- * @returns Boolean indicating validity
- */
-/**
- * Verify that a command is safe to execute
- * @param command The command to verify
- * @param tool The tool containing the command
- * @returns Object with safety status and warnings
- */
-export function verifyCommandSafety(command, tool) {
-    const warnings = [];
-    const blocked = [];
-    // Dangerous command patterns that should be blocked
-    const dangerousPatterns = [
-        /rm\s+-rf\s+\//, // rm -rf /
-        /rm\s+-rf\s+\*/, // rm -rf *
-        />\s*\/dev\/sd[a-z]/, // Writing to disk devices
-        /dd\s+if=.*of=\/dev/, // Direct disk writing
-        /mkfs/, // Format filesystem
-        /fdisk/, // Disk partitioning
-        /passwd/, // Password changes
-        /sudo\s+passwd/, // Password changes with sudo
-        /chmod\s+777/, // Overly permissive permissions
-        /curl.*\|\s*sh/, // Piping curl to shell
-        /wget.*\|\s*sh/, // Piping wget to shell
-        /exec\s+sh/, // Executing shell
-        /\/etc\/passwd/, // Accessing password file
-        /\/etc\/shadow/, // Accessing shadow file
-    ];
-    // Check for dangerous patterns
-    for (const pattern of dangerousPatterns) {
-        if (pattern.test(command)) {
-            blocked.push(`Potentially dangerous command pattern detected: ${pattern.source}`);
-        }
-    }
-    // Warning patterns that are suspicious but not necessarily blocked
-    const warningPatterns = [
-        /sudo\s+/, // Sudo usage
-        /su\s+/, // User switching
-        /systemctl/, // System service control
-        /service\s+/, // Service control
-        /mount/, // Mounting filesystems
-        /umount/, // Unmounting filesystems
-        /iptables/, // Firewall rules
-        /crontab/, // Cron job management
-    ];
-    // Check for warning patterns
-    for (const pattern of warningPatterns) {
-        if (pattern.test(command)) {
-            warnings.push(`Potentially privileged operation detected: ${pattern.source}`);
-        }
-    }
-    // Check for version pinning (security best practice)
-    if (command.includes("npx ") && !command.match(/npx\s+[^@#\s]+[@#]/)) {
-        if (!command.includes("github:")) {
-            warnings.push("NPX package not version-pinned - consider using @version or github:org/repo#commit");
-        }
-    }
-    if (command.includes("uvx ") &&
-        !command.includes("git+") &&
-        !command.includes("@")) {
-        warnings.push("UVX package not version-pinned - consider using @version or git+ URL");
-    }
-    if (command.includes("docker run") &&
-        !command.match(/:[^@\s]+(@sha256:|:\w)/)) {
-        warnings.push("Docker image not version-pinned - consider using specific tags or digests");
-    }
-    // Check for network access patterns
-    if (tool.annotations?.openWorldHint !== true) {
-        const networkPatterns = [
-            /curl\s+/, // HTTP requests
-            /wget\s+/, // HTTP requests
-            /http[s]?:\/\//, // HTTP URLs
-            /ftp:\/\//, // FTP URLs
-            /ssh\s+/, // SSH connections
-            /scp\s+/, // SCP transfers
-            /rsync.*::/, // Rsync over network
-        ];
-        for (const pattern of networkPatterns) {
-            if (pattern.test(command)) {
-                warnings.push("Network access detected but openWorldHint not set to true");
-                break;
-            }
-        }
-    }
-    // Check for destructive operations
-    if (tool.annotations?.destructiveHint !== true) {
-        const destructivePatterns = [
-            /rm\s+/, // File removal
-            /rmdir\s+/, // Directory removal
-            /mv\s+.*\s+\/dev\//, // Moving to device files
-            />\s*[^&]/, // File redirection (overwriting)
-            /tee\s+/, // Writing to files
-        ];
-        for (const pattern of destructivePatterns) {
-            if (pattern.test(command)) {
-                warnings.push("Potentially destructive operation detected but destructiveHint not set to true");
-                break;
-            }
-        }
-    }
-    return {
-        isSafe: blocked.length === 0,
-        warnings,
-        ...(blocked.length > 0 && { blocked }),
-    };
-}
-/**
- * Sanitize environment variables to prevent injection attacks
- * @param envVars Environment variables to sanitize
- * @returns Sanitized environment variables
- */
-export function sanitizeEnvironmentVariables(envVars) {
-    const sanitized = {};
-    for (const [key, value] of Object.entries(envVars)) {
-        // Validate environment variable name
-        if (!/^[A-Za-z_][A-Za-z0-9_]*$/.test(key)) {
-            logger.warn(`Invalid environment variable name: ${key}`);
-            continue;
-        }
-        // Convert value to string and sanitize
-        const strValue = String(value);
-        // Check for potentially dangerous characters
-        if (strValue.includes("\n") || strValue.includes("\r")) {
-            logger.warn(`Environment variable ${key} contains newline characters`);
-        }
-        if (strValue.includes("$(") || strValue.includes("`")) {
-            logger.warn(`Environment variable ${key} contains command substitution patterns`);
-        }
-        sanitized[key] = strValue;
-    }
-    return sanitized;
-}

package/dist/security/sign.d.ts

@@ -1,103 +0,0 @@
-interface SignatureData {
-    algorithm: string;
-    type: string;
-    signer: string;
-    created: string;
-    value: string;
-    role?: string;
-}
-interface EnactTool {
-    name: string;
-    description: string;
-    command: string;
-    timeout?: string;
-    tags?: string[];
-    version?: string;
-    enact?: string;
-    protocol_version?: string;
-    input_schema?: any;
-    output_schema?: any;
-    annotations?: any;
-    env_vars?: Record<string, any>;
-    examples?: any;
-    resources?: any;
-    raw_content?: string;
-    signatures?: Array<SignatureData>;
-    [key: string]: any;
-}
-interface VerificationPolicy {
-    requireRoles?: string[];
-    minimumSignatures?: number;
-    trustedSigners?: string[];
-    allowedAlgorithms?: string[];
-}
-/**
- * Get all trusted public keys mapped by their base64 representation
- * @returns Map of base64 public key -> PEM content
- */
-export declare function getTrustedPublicKeysMap(): Map<string, string>;
-/**
- * Sign an Enact tool and add to the signatures map
- * Signs only critical security fields for focused and reliable validation
- */
-export declare function signTool(toolPath: string, privateKeyPath: string, publicKeyPath: string, signerInfo: {
-    id: string;
-    role?: string;
-}, outputPath?: string): Promise<string>;
-/**
- * Verify tool signature using critical security fields only
- * This verifies signatures against only the security-critical fields
- */
-export declare function verifyToolSignature(toolObject: Record<string, unknown>, signatureB64: string, publicKeyObj: CryptoKey): Promise<boolean>;
-/**
- * Verify an Enact tool with embedded signatures against trusted keys
- * Only verifies signatures against critical security fields for focused validation
- */
-export declare function verifyTool(toolYaml: string | EnactTool, policy?: VerificationPolicy): Promise<{
-    isValid: boolean;
-    message: string;
-    validSignatures: number;
-    totalSignatures: number;
-    verifiedSigners: Array<{
-        signer: string;
-        role?: string;
-        keyId: string;
-    }>;
-    errors: string[];
-}>;
-/**
- * Check if a tool should be executed based on verification policy
- * @param tool Tool to check
- * @param policy Verification policy
- * @returns Whether execution should proceed
- */
-export declare function shouldExecuteTool(tool: EnactTool, policy?: VerificationPolicy): Promise<{
-    allowed: boolean;
-    reason: string;
-}>;
-/**
- * Generate a new ECC key pair
- */
-export declare function generateKeyPair(outputDir: string, prefix?: string): {
-    privateKeyPath: string;
-    publicKeyPath: string;
-};
-/**
- * Add a public key to trusted keys
- */
-export declare function addTrustedKey(keyPath: string, keyName?: string): string;
-/**
- * List all trusted keys with their base64 representations
- */
-export declare function listTrustedKeys(): Array<{
-    id: string;
-    filename: string;
-    base64Key: string;
-    fingerprint: string;
-}>;
-export declare const VERIFICATION_POLICIES: {
-    PERMISSIVE: VerificationPolicy;
-    ENTERPRISE: VerificationPolicy;
-    PARANOID: VerificationPolicy;
-};
-export type { EnactTool, VerificationPolicy, SignatureData };