npm - @enactprotocol/shared - Versions diffs - 1.2.13 → 2.0.1 - Mend

@enactprotocol/shared 1.2.13 → 2.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (207) hide show

package/README.md +44 -0
package/dist/config.d.ts +164 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +386 -0
package/dist/config.js.map +1 -0
package/dist/constants.d.ts +15 -5
package/dist/constants.d.ts.map +1 -0
package/dist/constants.js +24 -8
package/dist/constants.js.map +1 -0
package/dist/execution/command.d.ts +102 -0
package/dist/execution/command.d.ts.map +1 -0
package/dist/execution/command.js +262 -0
package/dist/execution/command.js.map +1 -0
package/dist/execution/index.d.ts +12 -0
package/dist/execution/index.d.ts.map +1 -0
package/dist/execution/index.js +17 -0
package/dist/execution/index.js.map +1 -0
package/dist/execution/runtime.d.ts +82 -0
package/dist/execution/runtime.d.ts.map +1 -0
package/dist/execution/runtime.js +273 -0
package/dist/execution/runtime.js.map +1 -0
package/dist/execution/types.d.ts +306 -0
package/dist/execution/types.d.ts.map +1 -0
package/dist/execution/types.js +14 -0
package/dist/execution/types.js.map +1 -0
package/dist/execution/validation.d.ts +43 -0
package/dist/execution/validation.d.ts.map +1 -0
package/dist/execution/validation.js +430 -0
package/dist/execution/validation.js.map +1 -0
package/dist/index.d.ts +21 -21
package/dist/index.d.ts.map +1 -0
package/dist/index.js +49 -25
package/dist/index.js.map +1 -0
package/dist/manifest/index.d.ts +7 -0
package/dist/manifest/index.d.ts.map +1 -0
package/dist/manifest/index.js +10 -0
package/dist/manifest/index.js.map +1 -0
package/dist/manifest/loader.d.ts +76 -0
package/dist/manifest/loader.d.ts.map +1 -0
package/dist/manifest/loader.js +146 -0
package/dist/manifest/loader.js.map +1 -0
package/dist/manifest/parser.d.ts +64 -0
package/dist/manifest/parser.d.ts.map +1 -0
package/dist/manifest/parser.js +135 -0
package/dist/manifest/parser.js.map +1 -0
package/dist/manifest/validator.d.ts +95 -0
package/dist/manifest/validator.d.ts.map +1 -0
package/dist/manifest/validator.js +258 -0
package/dist/manifest/validator.js.map +1 -0
package/dist/paths.d.ts +57 -0
package/dist/paths.d.ts.map +1 -0
package/dist/paths.js +93 -0
package/dist/paths.js.map +1 -0
package/dist/registry.d.ts +73 -0
package/dist/registry.d.ts.map +1 -0
package/dist/registry.js +147 -0
package/dist/registry.js.map +1 -0
package/dist/resolver.d.ts +89 -0
package/dist/resolver.d.ts.map +1 -0
package/dist/resolver.js +282 -0
package/dist/resolver.js.map +1 -0
package/dist/types/index.d.ts +6 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +5 -0
package/dist/types/index.js.map +1 -0
package/dist/types/manifest.d.ts +201 -0
package/dist/types/manifest.d.ts.map +1 -0
package/dist/types/manifest.js +13 -0
package/dist/types/manifest.js.map +1 -0
package/dist/types.d.ts +5 -132
package/dist/types.d.ts.map +1 -0
package/dist/types.js +5 -3
package/dist/types.js.map +1 -0
package/dist/utils/fs.d.ts +105 -0
package/dist/utils/fs.d.ts.map +1 -0
package/dist/utils/fs.js +233 -0
package/dist/utils/fs.js.map +1 -0
package/dist/utils/logger.d.ts +102 -25
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +214 -57
package/dist/utils/logger.js.map +1 -0
package/dist/utils/version.d.ts +60 -2
package/dist/utils/version.d.ts.map +1 -0
package/dist/utils/version.js +255 -31
package/dist/utils/version.js.map +1 -0
package/package.json +16 -58
package/src/config.ts +510 -0
package/src/constants.ts +36 -0
package/src/execution/command.ts +314 -0
package/src/execution/index.ts +73 -0
package/src/execution/runtime.ts +308 -0
package/src/execution/types.ts +379 -0
package/src/execution/validation.ts +508 -0
package/src/index.ts +238 -30
package/src/manifest/index.ts +36 -0
package/src/manifest/loader.ts +187 -0
package/src/manifest/parser.ts +173 -0
package/src/manifest/validator.ts +309 -0
package/src/paths.ts +108 -0
package/src/registry.ts +219 -0
package/src/resolver.ts +345 -0
package/src/types/index.ts +30 -0
package/src/types/manifest.ts +255 -0
package/src/types.ts +5 -188
package/src/utils/fs.ts +281 -0
package/src/utils/logger.ts +270 -59
package/src/utils/version.ts +304 -36
package/tests/config.test.ts +515 -0
package/tests/execution/command.test.ts +317 -0
package/tests/execution/validation.test.ts +384 -0
package/tests/fixtures/invalid-tool.yaml +4 -0
package/tests/fixtures/valid-tool.md +62 -0
package/tests/fixtures/valid-tool.yaml +40 -0
package/tests/index.test.ts +8 -0
package/tests/manifest/loader.test.ts +291 -0
package/tests/manifest/parser.test.ts +345 -0
package/tests/manifest/validator.test.ts +394 -0
package/tests/manifest-types.test.ts +358 -0
package/tests/paths.test.ts +153 -0
package/tests/registry.test.ts +231 -0
package/tests/resolver.test.ts +272 -0
package/tests/utils/fs.test.ts +388 -0
package/tests/utils/logger.test.ts +480 -0
package/tests/utils/version.test.ts +390 -0
package/tsconfig.json +12 -0
package/dist/LocalToolResolver.d.ts +0 -84
package/dist/LocalToolResolver.js +0 -353
package/dist/api/enact-api.d.ts +0 -130
package/dist/api/enact-api.js +0 -428
package/dist/api/index.d.ts +0 -2
package/dist/api/index.js +0 -2
package/dist/api/types.d.ts +0 -103
package/dist/api/types.js +0 -1
package/dist/core/DaggerExecutionProvider.d.ts +0 -169
package/dist/core/DaggerExecutionProvider.js +0 -1029
package/dist/core/DirectExecutionProvider.d.ts +0 -23
package/dist/core/DirectExecutionProvider.js +0 -406
package/dist/core/EnactCore.d.ts +0 -162
package/dist/core/EnactCore.js +0 -597
package/dist/core/NativeExecutionProvider.d.ts +0 -9
package/dist/core/NativeExecutionProvider.js +0 -16
package/dist/core/index.d.ts +0 -3
package/dist/core/index.js +0 -3
package/dist/exec/index.d.ts +0 -3
package/dist/exec/index.js +0 -3
package/dist/exec/logger.d.ts +0 -11
package/dist/exec/logger.js +0 -57
package/dist/exec/validate.d.ts +0 -5
package/dist/exec/validate.js +0 -167
package/dist/lib/enact-direct.d.ts +0 -150
package/dist/lib/enact-direct.js +0 -159
package/dist/lib/index.d.ts +0 -1
package/dist/lib/index.js +0 -1
package/dist/security/index.d.ts +0 -3
package/dist/security/index.js +0 -3
package/dist/security/security.d.ts +0 -23
package/dist/security/security.js +0 -137
package/dist/security/sign.d.ts +0 -103
package/dist/security/sign.js +0 -666
package/dist/security/verification-enforcer.d.ts +0 -53
package/dist/security/verification-enforcer.js +0 -204
package/dist/services/McpCoreService.d.ts +0 -98
package/dist/services/McpCoreService.js +0 -124
package/dist/services/index.d.ts +0 -1
package/dist/services/index.js +0 -1
package/dist/utils/config.d.ts +0 -111
package/dist/utils/config.js +0 -342
package/dist/utils/env-loader.d.ts +0 -54
package/dist/utils/env-loader.js +0 -270
package/dist/utils/help.d.ts +0 -36
package/dist/utils/help.js +0 -248
package/dist/utils/index.d.ts +0 -7
package/dist/utils/index.js +0 -7
package/dist/utils/silent-monitor.d.ts +0 -67
package/dist/utils/silent-monitor.js +0 -242
package/dist/utils/timeout.d.ts +0 -5
package/dist/utils/timeout.js +0 -23
package/dist/web/env-manager-server.d.ts +0 -29
package/dist/web/env-manager-server.js +0 -367
package/dist/web/index.d.ts +0 -1
package/dist/web/index.js +0 -1
package/src/LocalToolResolver.ts +0 -424
package/src/api/enact-api.ts +0 -604
package/src/api/index.ts +0 -2
package/src/api/types.ts +0 -114
package/src/core/DaggerExecutionProvider.ts +0 -1357
package/src/core/DirectExecutionProvider.ts +0 -484
package/src/core/EnactCore.ts +0 -847
package/src/core/index.ts +0 -3
package/src/exec/index.ts +0 -3
package/src/exec/logger.ts +0 -63
package/src/exec/validate.ts +0 -238
package/src/lib/enact-direct.ts +0 -254
package/src/lib/index.ts +0 -1
package/src/services/McpCoreService.ts +0 -201
package/src/services/index.ts +0 -1
package/src/utils/config.ts +0 -438
package/src/utils/env-loader.ts +0 -370
package/src/utils/help.ts +0 -257
package/src/utils/index.ts +0 -7
package/src/utils/silent-monitor.ts +0 -328
package/src/utils/timeout.ts +0 -26
package/src/web/env-manager-server.ts +0 -465
package/src/web/index.ts +0 -1
package/src/web/static/app.js +0 -663
package/src/web/static/index.html +0 -117
package/src/web/static/style.css +0 -291

package/README.md ADDED Viewed

@@ -0,0 +1,44 @@
+# @enactprotocol/shared
+Core business logic and utilities for Enact.
+## Overview
+This package provides:
+- Manifest parsing (enact.yaml and enact.md)
+- Configuration management (~/.enact/config.yaml)
+- Environment variable management (package-scoped)
+- Tool resolution (local, user-level, registry)
+- Trust store and policy enforcement
+- Execution engine interfaces
+- Registry client
+## Status
+Currently in Phase 1 (scaffolding). Full implementation will be completed in Phase 3.
+## Dependencies
+- `@enactprotocol/security` - For cryptographic operations
+## Development
+```bash
+# Build
+bun run build
+# Test
+bun test
+# Type check
+bun run typecheck
+```
+## Planned Features (Phase 3)
+- [ ] Configuration system (paths, config, env, trust)
+- [ ] Manifest parser with YAML/Markdown support
+- [ ] Tool resolution with caching strategy
+- [ ] Execution providers (Dagger and Direct)
+- [ ] Registry HTTP client
+- [ ] Comprehensive utilities (logger, tarball, version, fs)

package/dist/config.d.ts ADDED Viewed

@@ -0,0 +1,164 @@
+/**
+ * Configuration manager for Enact CLI
+ * Handles reading and writing ~/.enact/config.yaml
+ */
+/**
+ * Trust configuration for attestation verification
+ *
+ * Uses a unified model: all trust is based on cryptographic attestations.
+ * Publishers who want their tools trusted should self-sign them.
+ * Third-party reviewers can add additional attestations.
+ */
+export interface TrustConfig {
+    /**
+     * List of trusted auditor identities (provider:identity format, e.g., github:alice)
+     * Anyone who signs with these identities is trusted - whether they authored
+     * the tool (self-attestation) or reviewed it (third-party audit).
+     */
+    auditors?: string[];
+    /** Trust policy: 'require_attestation' blocks without trust, 'prompt' asks user, 'allow' installs anyway */
+    policy?: "require_attestation" | "prompt" | "allow";
+    /** Minimum number of trusted attestations required */
+    minimum_attestations?: number;
+}
+/**
+ * Cache configuration
+ */
+export interface CacheConfig {
+    /** Maximum cache size in megabytes */
+    maxSizeMb?: number;
+    /** Cache TTL in seconds */
+    ttlSeconds?: number;
+}
+/**
+ * Execution configuration
+ */
+export interface ExecutionConfig {
+    /** Default timeout for tool execution (e.g., "30s", "5m") */
+    defaultTimeout?: string;
+    /** Whether to run in verbose mode */
+    verbose?: boolean;
+}
+/**
+ * Registry configuration
+ */
+export interface RegistryConfig {
+    /** Default registry URL */
+    url?: string;
+    /** Authentication token for registry (stored reference, not actual token) */
+    authTokenRef?: string;
+    /** Direct authentication token (for local development) */
+    authToken?: string;
+}
+/**
+ * Complete Enact configuration
+ */
+export interface EnactConfig {
+    /** Configuration file version */
+    version?: string;
+    /** Trust settings for verification */
+    trust?: TrustConfig;
+    /** Cache settings */
+    cache?: CacheConfig;
+    /** Execution defaults */
+    execution?: ExecutionConfig;
+    /** Registry settings */
+    registry?: RegistryConfig;
+}
+/**
+ * Default configuration values
+ */
+export declare const DEFAULT_CONFIG: EnactConfig;
+/**
+ * Load configuration from ~/.enact/config.yaml
+ * Returns default config if file doesn't exist or is invalid
+ * @returns The loaded configuration merged with defaults
+ */
+export declare function loadConfig(): EnactConfig;
+/**
+ * Save configuration to ~/.enact/config.yaml
+ * Creates the ~/.enact/ directory if it doesn't exist
+ * @param config - The configuration to save
+ */
+export declare function saveConfig(config: EnactConfig): void;
+/**
+ * Get a configuration value by dot-notation key path
+ * @param key - Dot-notation path (e.g., "trust.policy", "cache.maxSizeMb")
+ * @param defaultValue - Default value if key doesn't exist
+ * @returns The configuration value or default
+ */
+export declare function getConfigValue<T>(key: string, defaultValue: T): T;
+/**
+ * Set a configuration value by dot-notation key path and persist
+ * @param key - Dot-notation path (e.g., "trust.policy", "cache.maxSizeMb")
+ * @param value - The value to set
+ */
+export declare function setConfigValue<T>(key: string, value: T): void;
+/**
+ * Reset configuration to defaults
+ * This will overwrite the existing config file
+ */
+export declare function resetConfig(): void;
+/**
+ * Check if a configuration file exists
+ * @returns true if ~/.enact/config.yaml exists
+ */
+export declare function configExists(): boolean;
+/**
+ * Ensure global setup is complete
+ * Creates ~/.enact/ directory structure and default config if they don't exist.
+ * This is a non-interactive initialization that runs silently.
+ * @returns true if setup was performed, false if already initialized
+ */
+export declare function ensureGlobalSetup(): boolean;
+/**
+ * Get list of trusted identities from local config
+ * @returns Array of identities in provider:identity format
+ */
+export declare function getTrustedIdentities(): string[];
+/**
+ * Add an identity to the local trusted list
+ * @param identity - Identity in provider:identity format (e.g., github:alice)
+ * @returns true if added, false if already exists
+ */
+export declare function addTrustedIdentity(identity: string): boolean;
+/**
+ * Remove an identity from the local trusted list
+ * @param identity - Identity in provider:identity format
+ * @returns true if removed, false if not found
+ */
+export declare function removeTrustedIdentity(identity: string): boolean;
+/**
+ * Check if an identity is in the local trusted list
+ * Supports wildcards like github:my-org/* and *@company.com
+ * @param identity - Identity to check
+ * @returns true if trusted
+ */
+export declare function isIdentityTrusted(identity: string): boolean;
+/** @deprecated Use getTrustedIdentities instead */
+export declare const getTrustedAuditors: typeof getTrustedIdentities;
+/** @deprecated Use addTrustedIdentity instead */
+export declare const addTrustedAuditor: typeof addTrustedIdentity;
+/** @deprecated Use removeTrustedIdentity instead */
+export declare const removeTrustedAuditor: typeof removeTrustedIdentity;
+/** @deprecated Use isIdentityTrusted instead */
+export declare const isAuditorTrusted: typeof isIdentityTrusted;
+/**
+ * Convert OIDC identity to provider:identity format
+ * @param email - Email from Sigstore certificate
+ * @param issuer - OIDC issuer URL (optional, improves accuracy)
+ * @param username - Provider username if known (optional)
+ * @returns Identity in provider:identity format (e.g., github:keithagroves)
+ */
+export declare function emailToProviderIdentity(email: string, issuer?: string, username?: string): string;
+/**
+ * Get minimum required attestations from config
+ * @returns Minimum number of trusted attestations required
+ */
+export declare function getMinimumAttestations(): number;
+/**
+ * Get trust policy from config
+ * @returns Trust policy: 'require_attestation', 'prompt', or 'allow'
+ */
+export declare function getTrustPolicy(): "require_attestation" | "prompt" | "allow";
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAOH;;;;;;GAMG;AACH,MAAM,WAAW,WAAW;IAC1B;;;;OAIG;IACH,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,4GAA4G;IAC5G,MAAM,CAAC,EAAE,qBAAqB,GAAG,QAAQ,GAAG,OAAO,CAAC;IACpD,sDAAsD;IACtD,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC/B;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,sCAAsC;IACtC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,2BAA2B;IAC3B,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,6DAA6D;IAC7D,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,qCAAqC;IACrC,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,2BAA2B;IAC3B,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,6EAA6E;IAC7E,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,0DAA0D;IAC1D,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,iCAAiC;IACjC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,sCAAsC;IACtC,KAAK,CAAC,EAAE,WAAW,CAAC;IACpB,qBAAqB;IACrB,KAAK,CAAC,EAAE,WAAW,CAAC;IACpB,yBAAyB;IACzB,SAAS,CAAC,EAAE,eAAe,CAAC;IAC5B,wBAAwB;IACxB,QAAQ,CAAC,EAAE,cAAc,CAAC;CAC3B;AAED;;GAEG;AACH,eAAO,MAAM,cAAc,EAAE,WAkB5B,CAAC;AAoCF;;;;GAIG;AACH,wBAAgB,UAAU,IAAI,WAAW,CAqBxC;AAED;;;;GAIG;AACH,wBAAgB,UAAU,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI,CAsBpD;AAED;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC,GAAG,CAAC,CAajE;AAED;;;;GAIG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,CAuB7D;AAED;;;GAGG;AACH,wBAAgB,WAAW,IAAI,IAAI,CAElC;AAED;;;GAGG;AACH,wBAAgB,YAAY,IAAI,OAAO,CAEtC;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,IAAI,OAAO,CA0B3C;AAMD;;;GAGG;AACH,wBAAgB,oBAAoB,IAAI,MAAM,EAAE,CAG/C;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAoB5D;AAED;;;;GAIG;AACH,wBAAgB,qBAAqB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAoB/D;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CA2B3D;AAGD,mDAAmD;AACnD,eAAO,MAAM,kBAAkB,6BAAuB,CAAC;AACvD,iDAAiD;AACjD,eAAO,MAAM,iBAAiB,2BAAqB,CAAC;AACpD,oDAAoD;AACpD,eAAO,MAAM,oBAAoB,8BAAwB,CAAC;AAC1D,gDAAgD;AAChD,eAAO,MAAM,gBAAgB,0BAAoB,CAAC;AAElD;;;;;;GAMG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,MAAM,CA8DjG;AAaD;;;GAGG;AACH,wBAAgB,sBAAsB,IAAI,MAAM,CAG/C;AAED;;;GAGG;AACH,wBAAgB,cAAc,IAAI,qBAAqB,GAAG,QAAQ,GAAG,OAAO,CAS3E"}

package/dist/config.js ADDED Viewed

@@ -0,0 +1,386 @@
+/**
+ * Configuration manager for Enact CLI
+ * Handles reading and writing ~/.enact/config.yaml
+ */
+import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";
+import { dirname, join } from "node:path";
+import yaml from "js-yaml";
+import { getConfigPath, getEnactHome } from "./paths";
+/**
+ * Default configuration values
+ */
+export const DEFAULT_CONFIG = {
+    version: "1.0.0",
+    trust: {
+        auditors: [],
+        policy: "prompt",
+        minimum_attestations: 1,
+    },
+    cache: {
+        maxSizeMb: 1024, // 1GB
+        ttlSeconds: 86400 * 7, // 7 days
+    },
+    execution: {
+        defaultTimeout: "30s",
+        verbose: false,
+    },
+    registry: {
+        url: "https://siikwkfgsmouioodghho.supabase.co/functions/v1",
+    },
+};
+/**
+ * Deep merge two objects, with source values overwriting target values
+ */
+function deepMerge(target, source) {
+    const result = { ...target };
+    // Merge trust config
+    if (source.trust !== undefined) {
+        result.trust = { ...target.trust, ...source.trust };
+    }
+    // Merge cache config
+    if (source.cache !== undefined) {
+        result.cache = { ...target.cache, ...source.cache };
+    }
+    // Merge execution config
+    if (source.execution !== undefined) {
+        result.execution = { ...target.execution, ...source.execution };
+    }
+    // Merge registry config
+    if (source.registry !== undefined) {
+        result.registry = { ...target.registry, ...source.registry };
+    }
+    // Copy top-level primitives
+    if (source.version !== undefined) {
+        result.version = source.version;
+    }
+    return result;
+}
+/**
+ * Load configuration from ~/.enact/config.yaml
+ * Returns default config if file doesn't exist or is invalid
+ * @returns The loaded configuration merged with defaults
+ */
+export function loadConfig() {
+    const configPath = getConfigPath();
+    if (!existsSync(configPath)) {
+        return { ...DEFAULT_CONFIG };
+    }
+    try {
+        const content = readFileSync(configPath, "utf-8");
+        const parsed = yaml.load(content);
+        if (!parsed || typeof parsed !== "object") {
+            return { ...DEFAULT_CONFIG };
+        }
+        // Merge with defaults to ensure all fields exist
+        return deepMerge(DEFAULT_CONFIG, parsed);
+    }
+    catch {
+        // Return defaults on any error (parse error, read error, etc.)
+        return { ...DEFAULT_CONFIG };
+    }
+}
+/**
+ * Save configuration to ~/.enact/config.yaml
+ * Creates the ~/.enact/ directory if it doesn't exist
+ * @param config - The configuration to save
+ */
+export function saveConfig(config) {
+    const configPath = getConfigPath();
+    const enactHome = getEnactHome();
+    // Ensure ~/.enact/ directory exists
+    if (!existsSync(enactHome)) {
+        mkdirSync(enactHome, { recursive: true });
+    }
+    // Ensure parent directory exists (should be ~/.enact/ but be safe)
+    const parentDir = dirname(configPath);
+    if (!existsSync(parentDir)) {
+        mkdirSync(parentDir, { recursive: true });
+    }
+    const yamlContent = yaml.dump(config, {
+        indent: 2,
+        lineWidth: 120,
+        noRefs: true,
+    });
+    writeFileSync(configPath, yamlContent, "utf-8");
+}
+/**
+ * Get a configuration value by dot-notation key path
+ * @param key - Dot-notation path (e.g., "trust.policy", "cache.maxSizeMb")
+ * @param defaultValue - Default value if key doesn't exist
+ * @returns The configuration value or default
+ */
+export function getConfigValue(key, defaultValue) {
+    const config = loadConfig();
+    const keys = key.split(".");
+    let current = config;
+    for (const k of keys) {
+        if (current === null || current === undefined || typeof current !== "object") {
+            return defaultValue;
+        }
+        current = current[k];
+    }
+    return current === undefined ? defaultValue : current;
+}
+/**
+ * Set a configuration value by dot-notation key path and persist
+ * @param key - Dot-notation path (e.g., "trust.policy", "cache.maxSizeMb")
+ * @param value - The value to set
+ */
+export function setConfigValue(key, value) {
+    const config = loadConfig();
+    const keys = key.split(".");
+    const lastKey = keys.pop();
+    if (!lastKey) {
+        throw new Error("Invalid configuration key");
+    }
+    // Navigate to parent object, creating intermediate objects as needed
+    let current = config;
+    for (const k of keys) {
+        if (current[k] === undefined || current[k] === null || typeof current[k] !== "object") {
+            current[k] = {};
+        }
+        current = current[k];
+    }
+    // Set the value
+    current[lastKey] = value;
+    // Persist
+    saveConfig(config);
+}
+/**
+ * Reset configuration to defaults
+ * This will overwrite the existing config file
+ */
+export function resetConfig() {
+    saveConfig({ ...DEFAULT_CONFIG });
+}
+/**
+ * Check if a configuration file exists
+ * @returns true if ~/.enact/config.yaml exists
+ */
+export function configExists() {
+    return existsSync(getConfigPath());
+}
+/**
+ * Ensure global setup is complete
+ * Creates ~/.enact/ directory structure and default config if they don't exist.
+ * This is a non-interactive initialization that runs silently.
+ * @returns true if setup was performed, false if already initialized
+ */
+export function ensureGlobalSetup() {
+    const enactHome = getEnactHome();
+    const configPath = getConfigPath();
+    const cacheDir = join(enactHome, "cache");
+    let performedSetup = false;
+    // Ensure ~/.enact/ directory exists
+    if (!existsSync(enactHome)) {
+        mkdirSync(enactHome, { recursive: true });
+        performedSetup = true;
+    }
+    // Ensure ~/.enact/cache/ directory exists
+    if (!existsSync(cacheDir)) {
+        mkdirSync(cacheDir, { recursive: true });
+        performedSetup = true;
+    }
+    // Create default config if it doesn't exist
+    if (!existsSync(configPath)) {
+        saveConfig({ ...DEFAULT_CONFIG });
+        performedSetup = true;
+    }
+    return performedSetup;
+}
+// =============================================================================
+// Local Trust Management
+// =============================================================================
+/**
+ * Get list of trusted identities from local config
+ * @returns Array of identities in provider:identity format
+ */
+export function getTrustedIdentities() {
+    const config = loadConfig();
+    return config.trust?.auditors ?? [];
+}
+/**
+ * Add an identity to the local trusted list
+ * @param identity - Identity in provider:identity format (e.g., github:alice)
+ * @returns true if added, false if already exists
+ */
+export function addTrustedIdentity(identity) {
+    const config = loadConfig();
+    const auditors = config.trust?.auditors ?? [];
+    // Check if already exists
+    if (auditors.includes(identity)) {
+        return false;
+    }
+    // Add to list
+    auditors.push(identity);
+    // Update config
+    if (!config.trust) {
+        config.trust = { ...DEFAULT_CONFIG.trust };
+    }
+    config.trust.auditors = auditors;
+    saveConfig(config);
+    return true;
+}
+/**
+ * Remove an identity from the local trusted list
+ * @param identity - Identity in provider:identity format
+ * @returns true if removed, false if not found
+ */
+export function removeTrustedIdentity(identity) {
+    const config = loadConfig();
+    const auditors = config.trust?.auditors ?? [];
+    const index = auditors.indexOf(identity);
+    if (index === -1) {
+        return false;
+    }
+    // Remove from list
+    auditors.splice(index, 1);
+    // Update config
+    if (!config.trust) {
+        config.trust = { ...DEFAULT_CONFIG.trust };
+    }
+    config.trust.auditors = auditors;
+    saveConfig(config);
+    return true;
+}
+/**
+ * Check if an identity is in the local trusted list
+ * Supports wildcards like github:my-org/* and *@company.com
+ * @param identity - Identity to check
+ * @returns true if trusted
+ */
+export function isIdentityTrusted(identity) {
+    const trustedIdentities = getTrustedIdentities();
+    // Check exact match first
+    if (trustedIdentities.includes(identity)) {
+        return true;
+    }
+    // Check wildcard matches (e.g., github:my-org/* matches github:my-org/alice)
+    for (const trusted of trustedIdentities) {
+        if (trusted.endsWith("/*")) {
+            const prefix = trusted.slice(0, -2); // Remove /*
+            if (identity.startsWith(`${prefix}/`)) {
+                return true;
+            }
+        }
+        // Check email wildcards (e.g., *@company.com)
+        if (trusted.includes("*@")) {
+            const domainPart = trusted.split("*@")[1];
+            if (identity.endsWith(`@${domainPart}`)) {
+                return true;
+            }
+        }
+    }
+    return false;
+}
+// Legacy aliases for backward compatibility
+/** @deprecated Use getTrustedIdentities instead */
+export const getTrustedAuditors = getTrustedIdentities;
+/** @deprecated Use addTrustedIdentity instead */
+export const addTrustedAuditor = addTrustedIdentity;
+/** @deprecated Use removeTrustedIdentity instead */
+export const removeTrustedAuditor = removeTrustedIdentity;
+/** @deprecated Use isIdentityTrusted instead */
+export const isAuditorTrusted = isIdentityTrusted;
+/**
+ * Convert OIDC identity to provider:identity format
+ * @param email - Email from Sigstore certificate
+ * @param issuer - OIDC issuer URL (optional, improves accuracy)
+ * @param username - Provider username if known (optional)
+ * @returns Identity in provider:identity format (e.g., github:keithagroves)
+ */
+export function emailToProviderIdentity(email, issuer, username) {
+    // If we have a username and can determine the provider, use that
+    if (username && issuer) {
+        const provider = issuerToProvider(issuer);
+        if (provider) {
+            return `${provider}:${username}`;
+        }
+    }
+    // Determine provider from issuer URL if available
+    if (issuer) {
+        const provider = issuerToProvider(issuer);
+        if (provider) {
+            // Try to extract username from email for GitHub
+            if (provider === "github" && email.endsWith("@users.noreply.github.com")) {
+                // GitHub noreply format: "123456+username@users.noreply.github.com"
+                // or just "username@users.noreply.github.com"
+                const localPart = email.replace("@users.noreply.github.com", "");
+                const plusIndex = localPart.indexOf("+");
+                const extractedUsername = plusIndex >= 0 ? localPart.slice(plusIndex + 1) : localPart;
+                return `github:${extractedUsername}`;
+            }
+            // Use email as the identity since we don't have username
+            return `${provider}:${email}`;
+        }
+    }
+    // Common OIDC providers and their email domains (fallback)
+    const providerMap = {
+        "@users.noreply.github.com": "github",
+        "@github.com": "github",
+        "@gmail.com": "google",
+        "@googlemail.com": "google",
+        "@outlook.com": "microsoft",
+        "@hotmail.com": "microsoft",
+        "@live.com": "microsoft",
+    };
+    // Try to match provider by email domain
+    for (const [domain, provider] of Object.entries(providerMap)) {
+        if (email.endsWith(domain)) {
+            let extractedUsername = email.substring(0, email.length - domain.length);
+            // Handle GitHub noreply format: "123456+username@users.noreply.github.com"
+            if (provider === "github" && domain === "@users.noreply.github.com") {
+                const plusIndex = extractedUsername.indexOf("+");
+                if (plusIndex >= 0) {
+                    extractedUsername = extractedUsername.slice(plusIndex + 1);
+                }
+            }
+            return `${provider}:${extractedUsername}`;
+        }
+    }
+    // If no match, check for GitHub workflow identity
+    // Format: https://github.com/{org}/{workflow}
+    if (email.startsWith("https://github.com/")) {
+        const path = email.replace("https://github.com/", "");
+        return `github:${path}`;
+    }
+    // Fall back to email as-is
+    return email;
+}
+/**
+ * Convert OIDC issuer URL to provider name
+ */
+function issuerToProvider(issuer) {
+    if (issuer.includes("github.com"))
+        return "github";
+    if (issuer.includes("accounts.google.com"))
+        return "google";
+    if (issuer.includes("login.microsoftonline.com"))
+        return "microsoft";
+    if (issuer.includes("gitlab.com"))
+        return "gitlab";
+    return undefined;
+}
+/**
+ * Get minimum required attestations from config
+ * @returns Minimum number of trusted attestations required
+ */
+export function getMinimumAttestations() {
+    const config = loadConfig();
+    return config.trust?.minimum_attestations ?? 1;
+}
+/**
+ * Get trust policy from config
+ * @returns Trust policy: 'require_attestation', 'prompt', or 'allow'
+ */
+export function getTrustPolicy() {
+    const config = loadConfig();
+    // Handle legacy 'require_audit' value (cast to string for comparison)
+    const policy = config.trust?.policy;
+    if (policy === "require_audit") {
+        return "require_attestation";
+    }
+    // Default to require_attestation - trust must be explicit
+    return policy ?? "require_attestation";
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC7E,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAC1C,OAAO,IAAI,MAAM,SAAS,CAAC;AAC3B,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAsEtD;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAgB;IACzC,OAAO,EAAE,OAAO;IAChB,KAAK,EAAE;QACL,QAAQ,EAAE,EAAE;QACZ,MAAM,EAAE,QAAQ;QAChB,oBAAoB,EAAE,CAAC;KACxB;IACD,KAAK,EAAE;QACL,SAAS,EAAE,IAAI,EAAE,MAAM;QACvB,UAAU,EAAE,KAAK,GAAG,CAAC,EAAE,SAAS;KACjC;IACD,SAAS,EAAE;QACT,cAAc,EAAE,KAAK;QACrB,OAAO,EAAE,KAAK;KACf;IACD,QAAQ,EAAE;QACR,GAAG,EAAE,uDAAuD;KAC7D;CACF,CAAC;AAEF;;GAEG;AACH,SAAS,SAAS,CAAC,MAAmB,EAAE,MAA4B;IAClE,MAAM,MAAM,GAAgB,EAAE,GAAG,MAAM,EAAE,CAAC;IAE1C,qBAAqB;IACrB,IAAI,MAAM,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;QAC/B,MAAM,CAAC,KAAK,GAAG,EAAE,GAAG,MAAM,CAAC,KAAK,EAAE,GAAG,MAAM,CAAC,KAAK,EAAE,CAAC;IACtD,CAAC;IAED,qBAAqB;IACrB,IAAI,MAAM,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;QAC/B,MAAM,CAAC,KAAK,GAAG,EAAE,GAAG,MAAM,CAAC,KAAK,EAAE,GAAG,MAAM,CAAC,KAAK,EAAE,CAAC;IACtD,CAAC;IAED,yBAAyB;IACzB,IAAI,MAAM,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;QACnC,MAAM,CAAC,SAAS,GAAG,EAAE,GAAG,MAAM,CAAC,SAAS,EAAE,GAAG,MAAM,CAAC,SAAS,EAAE,CAAC;IAClE,CAAC;IAED,wBAAwB;IACxB,IAAI,MAAM,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;QAClC,MAAM,CAAC,QAAQ,GAAG,EAAE,GAAG,MAAM,CAAC,QAAQ,EAAE,GAAG,MAAM,CAAC,QAAQ,EAAE,CAAC;IAC/D,CAAC;IAED,4BAA4B;IAC5B,IAAI,MAAM,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;QACjC,MAAM,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;IAClC,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,UAAU;IACxB,MAAM,UAAU,GAAG,aAAa,EAAE,CAAC;IAEnC,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5B,OAAO,EAAE,GAAG,cAAc,EAAE,CAAC;IAC/B,CAAC;IAED,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QAClD,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAgC,CAAC;QAEjE,IAAI,CAAC,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;YAC1C,OAAO,EAAE,GAAG,cAAc,EAAE,CAAC;QAC/B,CAAC;QAED,iDAAiD;QACjD,OAAO,SAAS,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;IAC3C,CAAC;IAAC,MAAM,CAAC;QACP,+DAA+D;QAC/D,OAAO,EAAE,GAAG,cAAc,EAAE,CAAC;IAC/B,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,UAAU,CAAC,MAAmB;IAC5C,MAAM,UAAU,GAAG,aAAa,EAAE,CAAC;IACnC,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IAEjC,oCAAoC;IACpC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC3B,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED,mEAAmE;IACnE,MAAM,SAAS,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IACtC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC3B,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE;QACpC,MAAM,EAAE,CAAC;QACT,SAAS,EAAE,GAAG;QACd,MAAM,EAAE,IAAI;KACb,CAAC,CAAC;IAEH,aAAa,CAAC,UAAU,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;AAClD,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,cAAc,CAAI,GAAW,EAAE,YAAe;IAC5D,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAE5B,IAAI,OAAO,GAAY,MAAM,CAAC;IAC9B,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;QACrB,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC7E,OAAO,YAAY,CAAC;QACtB,CAAC;QACD,OAAO,GAAI,OAAmC,CAAC,CAAC,CAAC,CAAC;IACpD,CAAC;IAED,OAAO,OAAO,KAAK,SAAS,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAE,OAAa,CAAC;AAC/D,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAAI,GAAW,EAAE,KAAQ;IACrD,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC5B,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE3B,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;IAC/C,CAAC;IAED,qEAAqE;IACrE,IAAI,OAAO,GAA4B,MAAiC,CAAC;IACzE,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;QACrB,IAAI,OAAO,CAAC,CAAC,CAAC,KAAK,SAAS,IAAI,OAAO,CAAC,CAAC,CAAC,KAAK,IAAI,IAAI,OAAO,OAAO,CAAC,CAAC,CAAC,KAAK,QAAQ,EAAE,CAAC;YACtF,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC;QAClB,CAAC;QACD,OAAO,GAAG,OAAO,CAAC,CAAC,CAA4B,CAAC;IAClD,CAAC;IAED,gBAAgB;IAChB,OAAO,CAAC,OAAO,CAAC,GAAG,KAAK,CAAC;IAEzB,UAAU;IACV,UAAU,CAAC,MAAM,CAAC,CAAC;AACrB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,WAAW;IACzB,UAAU,CAAC,EAAE,GAAG,cAAc,EAAE,CAAC,CAAC;AACpC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,YAAY;IAC1B,OAAO,UAAU,CAAC,aAAa,EAAE,CAAC,CAAC;AACrC,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB;IAC/B,MAAM,SAAS,GAAG,YAAY,EAAE,CAAC;IACjC,MAAM,UAAU,GAAG,aAAa,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;IAE1C,IAAI,cAAc,GAAG,KAAK,CAAC;IAE3B,oCAAoC;IACpC,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC3B,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC1C,cAAc,GAAG,IAAI,CAAC;IACxB,CAAC;IAED,0CAA0C;IAC1C,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,SAAS,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACzC,cAAc,GAAG,IAAI,CAAC;IACxB,CAAC;IAED,4CAA4C;IAC5C,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5B,UAAU,CAAC,EAAE,GAAG,cAAc,EAAE,CAAC,CAAC;QAClC,cAAc,GAAG,IAAI,CAAC;IACxB,CAAC;IAED,OAAO,cAAc,CAAC;AACxB,CAAC;AAED,gFAAgF;AAChF,yBAAyB;AACzB,gFAAgF;AAEhF;;;GAGG;AACH,MAAM,UAAU,oBAAoB;IAClC,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,OAAO,MAAM,CAAC,KAAK,EAAE,QAAQ,IAAI,EAAE,CAAC;AACtC,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAAC,QAAgB;IACjD,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAG,MAAM,CAAC,KAAK,EAAE,QAAQ,IAAI,EAAE,CAAC;IAE9C,0BAA0B;IAC1B,IAAI,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QAChC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,cAAc;IACd,QAAQ,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAExB,gBAAgB;IAChB,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;QAClB,MAAM,CAAC,KAAK,GAAG,EAAE,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC;IAC7C,CAAC;IACD,MAAM,CAAC,KAAK,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAEjC,UAAU,CAAC,MAAM,CAAC,CAAC;IACnB,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,qBAAqB,CAAC,QAAgB;IACpD,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAG,MAAM,CAAC,KAAK,EAAE,QAAQ,IAAI,EAAE,CAAC;IAE9C,MAAM,KAAK,GAAG,QAAQ,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACzC,IAAI,KAAK,KAAK,CAAC,CAAC,EAAE,CAAC;QACjB,OAAO,KAAK,CAAC;IACf,CAAC;IAED,mBAAmB;IACnB,QAAQ,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IAE1B,gBAAgB;IAChB,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;QAClB,MAAM,CAAC,KAAK,GAAG,EAAE,GAAG,cAAc,CAAC,KAAK,EAAE,CAAC;IAC7C,CAAC;IACD,MAAM,CAAC,KAAK,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAEjC,UAAU,CAAC,MAAM,CAAC,CAAC;IACnB,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,iBAAiB,CAAC,QAAgB;IAChD,MAAM,iBAAiB,GAAG,oBAAoB,EAAE,CAAC;IAEjD,0BAA0B;IAC1B,IAAI,iBAAiB,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QACzC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,6EAA6E;IAC7E,KAAK,MAAM,OAAO,IAAI,iBAAiB,EAAE,CAAC;QACxC,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3B,MAAM,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;YACjD,IAAI,QAAQ,CAAC,UAAU,CAAC,GAAG,MAAM,GAAG,CAAC,EAAE,CAAC;gBACtC,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,8CAA8C;QAC9C,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC3B,MAAM,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;YAC1C,IAAI,QAAQ,CAAC,QAAQ,CAAC,IAAI,UAAU,EAAE,CAAC,EAAE,CAAC;gBACxC,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,4CAA4C;AAC5C,mDAAmD;AACnD,MAAM,CAAC,MAAM,kBAAkB,GAAG,oBAAoB,CAAC;AACvD,iDAAiD;AACjD,MAAM,CAAC,MAAM,iBAAiB,GAAG,kBAAkB,CAAC;AACpD,oDAAoD;AACpD,MAAM,CAAC,MAAM,oBAAoB,GAAG,qBAAqB,CAAC;AAC1D,gDAAgD;AAChD,MAAM,CAAC,MAAM,gBAAgB,GAAG,iBAAiB,CAAC;AAElD;;;;;;GAMG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAa,EAAE,MAAe,EAAE,QAAiB;IACvF,iEAAiE;IACjE,IAAI,QAAQ,IAAI,MAAM,EAAE,CAAC;QACvB,MAAM,QAAQ,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAC1C,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO,GAAG,QAAQ,IAAI,QAAQ,EAAE,CAAC;QACnC,CAAC;IACH,CAAC;IAED,kDAAkD;IAClD,IAAI,MAAM,EAAE,CAAC;QACX,MAAM,QAAQ,GAAG,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAC1C,IAAI,QAAQ,EAAE,CAAC;YACb,gDAAgD;YAChD,IAAI,QAAQ,KAAK,QAAQ,IAAI,KAAK,CAAC,QAAQ,CAAC,2BAA2B,CAAC,EAAE,CAAC;gBACzE,oEAAoE;gBACpE,8CAA8C;gBAC9C,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,2BAA2B,EAAE,EAAE,CAAC,CAAC;gBACjE,MAAM,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;gBACzC,MAAM,iBAAiB,GAAG,SAAS,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;gBACtF,OAAO,UAAU,iBAAiB,EAAE,CAAC;YACvC,CAAC;YACD,yDAAyD;YACzD,OAAO,GAAG,QAAQ,IAAI,KAAK,EAAE,CAAC;QAChC,CAAC;IACH,CAAC;IAED,2DAA2D;IAC3D,MAAM,WAAW,GAA2B;QAC1C,2BAA2B,EAAE,QAAQ;QACrC,aAAa,EAAE,QAAQ;QACvB,YAAY,EAAE,QAAQ;QACtB,iBAAiB,EAAE,QAAQ;QAC3B,cAAc,EAAE,WAAW;QAC3B,cAAc,EAAE,WAAW;QAC3B,WAAW,EAAE,WAAW;KACzB,CAAC;IAEF,wCAAwC;IACxC,KAAK,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;QAC7D,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC3B,IAAI,iBAAiB,GAAG,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;YACzE,2EAA2E;YAC3E,IAAI,QAAQ,KAAK,QAAQ,IAAI,MAAM,KAAK,2BAA2B,EAAE,CAAC;gBACpE,MAAM,SAAS,GAAG,iBAAiB,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;gBACjD,IAAI,SAAS,IAAI,CAAC,EAAE,CAAC;oBACnB,iBAAiB,GAAG,iBAAiB,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC;gBAC7D,CAAC;YACH,CAAC;YACD,OAAO,GAAG,QAAQ,IAAI,iBAAiB,EAAE,CAAC;QAC5C,CAAC;IACH,CAAC;IAED,kDAAkD;IAClD,8CAA8C;IAC9C,IAAI,KAAK,CAAC,UAAU,CAAC,qBAAqB,CAAC,EAAE,CAAC;QAC5C,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,qBAAqB,EAAE,EAAE,CAAC,CAAC;QACtD,OAAO,UAAU,IAAI,EAAE,CAAC;IAC1B,CAAC;IAED,2BAA2B;IAC3B,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,gBAAgB,CAAC,MAAc;IACtC,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC;QAAE,OAAO,QAAQ,CAAC;IACnD,IAAI,MAAM,CAAC,QAAQ,CAAC,qBAAqB,CAAC;QAAE,OAAO,QAAQ,CAAC;IAC5D,IAAI,MAAM,CAAC,QAAQ,CAAC,2BAA2B,CAAC;QAAE,OAAO,WAAW,CAAC;IACrE,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC;QAAE,OAAO,QAAQ,CAAC;IACnD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,sBAAsB;IACpC,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,OAAO,MAAM,CAAC,KAAK,EAAE,oBAAoB,IAAI,CAAC,CAAC;AACjD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,cAAc;IAC5B,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,sEAAsE;IACtE,MAAM,MAAM,GAAG,MAAM,CAAC,KAAK,EAAE,MAA4B,CAAC;IAC1D,IAAI,MAAM,KAAK,eAAe,EAAE,CAAC;QAC/B,OAAO,qBAAqB,CAAC;IAC/B,CAAC;IACD,0DAA0D;IAC1D,OAAQ,MAAqD,IAAI,qBAAqB,CAAC;AACzF,CAAC"}

package/dist/constants.d.ts CHANGED Viewed

@@ -1,7 +1,17 @@
 /**
- * Shared constants for Enact CLI
+ * Enact Constants
+ *
+ * Centralized configuration for Enact URLs and identifiers.
+ * This ensures consistency across all packages.
+ *
+ * Note: Attestation type constants (ENACT_TOOL_TYPE, ENACT_AUDIT_TYPE, etc.)
+ * are defined in @enactprotocol/trust and re-exported here for convenience.
  */
-export declare const DEFAULT_FRONTEND_URL = "https://enact.tools";
-export declare const DEFAULT_API_URL = "https://xjnhhxwxovjifdxdwzih.supabase.co";
-export declare const ENV_FRONTEND_URL = "ENACT_FRONTEND_URL";
-export declare const ENV_API_URL = "ENACT_API_URL";
+export { ENACT_BASE_URL, ENACT_TOOL_TYPE, ENACT_AUDIT_TYPE, ENACT_BUILD_TYPE, INTOTO_STATEMENT_TYPE, SLSA_PROVENANCE_TYPE, } from "@enactprotocol/trust";
+export declare const ENACT_API_URL: string;
+/**
+ * The Enact web application URL
+ * Override with ENACT_WEB_URL environment variable
+ */
+export declare const ENACT_WEB_URL: string;
+//# sourceMappingURL=constants.d.ts.map

package/dist/constants.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,EACL,cAAc,EACd,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAChB,qBAAqB,EACrB,oBAAoB,GACrB,MAAM,sBAAsB,CAAC;AAW9B,eAAO,MAAM,aAAa,QAAiD,CAAC;AAE5E;;;GAGG;AACH,eAAO,MAAM,aAAa,QAAwC,CAAC"}

package/dist/constants.js CHANGED Viewed

@@ -1,10 +1,26 @@
 /**
- * Shared constants for Enact CLI
+ * Enact Constants
+ *
+ * Centralized configuration for Enact URLs and identifiers.
+ * This ensures consistency across all packages.
+ *
+ * Note: Attestation type constants (ENACT_TOOL_TYPE, ENACT_AUDIT_TYPE, etc.)
+ * are defined in @enactprotocol/trust and re-exported here for convenience.
  */
-// Frontend URL - used for OAuth redirects, registry browsing, documentation links
-export const DEFAULT_FRONTEND_URL = "https://enact.tools";
-// Backend API URL - used for all API calls (search, publish, etc.)
-export const DEFAULT_API_URL = "https://xjnhhxwxovjifdxdwzih.supabase.co";
-// Environment variable names for overriding defaults
-export const ENV_FRONTEND_URL = "ENACT_FRONTEND_URL";
-export const ENV_API_URL = "ENACT_API_URL";
+// Re-export attestation constants from trust package
+export { ENACT_BASE_URL, ENACT_TOOL_TYPE, ENACT_AUDIT_TYPE, ENACT_BUILD_TYPE, INTOTO_STATEMENT_TYPE, SLSA_PROVENANCE_TYPE, } from "@enactprotocol/trust";
+// ============================================================================
+// Runtime URLs (can be overridden by environment)
+// ============================================================================
+/**
+ * The Enact API base URL (Supabase Edge Functions)
+ * Override with ENACT_API_URL environment variable
+ */
+import { ENACT_BASE_URL as BASE_URL } from "@enactprotocol/trust";
+export const ENACT_API_URL = process.env.ENACT_API_URL || `${BASE_URL}/api`;
+/**
+ * The Enact web application URL
+ * Override with ENACT_WEB_URL environment variable
+ */
+export const ENACT_WEB_URL = process.env.ENACT_WEB_URL || BASE_URL;
+//# sourceMappingURL=constants.js.map