npm - @f2a/network - Versions diffs - 0.1.2 - Mend

@f2a/network 0.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (234) hide show

package/.github/workflows/ci.yml +113 -0
package/.github/workflows/publish.yml +60 -0
package/LICENSE +21 -0
package/MONOREPO.md +58 -0
package/README.md +280 -0
package/SKILL.md +137 -0
package/dist/adapters/openclaw.d.ts +103 -0
package/dist/adapters/openclaw.d.ts.map +1 -0
package/dist/adapters/openclaw.js +297 -0
package/dist/adapters/openclaw.js.map +1 -0
package/dist/cli/commands.d.ts +17 -0
package/dist/cli/commands.d.ts.map +1 -0
package/dist/cli/commands.js +107 -0
package/dist/cli/commands.js.map +1 -0
package/dist/cli/index.d.ts +6 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +203 -0
package/dist/cli/index.js.map +1 -0
package/dist/core/autonomous-economy.d.ts +136 -0
package/dist/core/autonomous-economy.d.ts.map +1 -0
package/dist/core/autonomous-economy.js +255 -0
package/dist/core/autonomous-economy.js.map +1 -0
package/dist/core/connection-manager.d.ts +80 -0
package/dist/core/connection-manager.d.ts.map +1 -0
package/dist/core/connection-manager.js +235 -0
package/dist/core/connection-manager.js.map +1 -0
package/dist/core/connection-manager.test.d.ts +2 -0
package/dist/core/connection-manager.test.d.ts.map +1 -0
package/dist/core/connection-manager.test.js +52 -0
package/dist/core/connection-manager.test.js.map +1 -0
package/dist/core/e2ee-crypto.d.ts +90 -0
package/dist/core/e2ee-crypto.d.ts.map +1 -0
package/dist/core/e2ee-crypto.js +190 -0
package/dist/core/e2ee-crypto.js.map +1 -0
package/dist/core/f2a.d.ts +126 -0
package/dist/core/f2a.d.ts.map +1 -0
package/dist/core/f2a.js +425 -0
package/dist/core/f2a.js.map +1 -0
package/dist/core/identity.d.ts +47 -0
package/dist/core/identity.d.ts.map +1 -0
package/dist/core/identity.js +130 -0
package/dist/core/identity.js.map +1 -0
package/dist/core/identity.test.d.ts +2 -0
package/dist/core/identity.test.d.ts.map +1 -0
package/dist/core/identity.test.js +43 -0
package/dist/core/identity.test.js.map +1 -0
package/dist/core/p2p-network.d.ts +242 -0
package/dist/core/p2p-network.d.ts.map +1 -0
package/dist/core/p2p-network.js +1182 -0
package/dist/core/p2p-network.js.map +1 -0
package/dist/core/reputation-security.d.ts +168 -0
package/dist/core/reputation-security.d.ts.map +1 -0
package/dist/core/reputation-security.js +369 -0
package/dist/core/reputation-security.js.map +1 -0
package/dist/core/reputation.d.ts +179 -0
package/dist/core/reputation.d.ts.map +1 -0
package/dist/core/reputation.js +472 -0
package/dist/core/reputation.js.map +1 -0
package/dist/core/review-committee.d.ts +130 -0
package/dist/core/review-committee.d.ts.map +1 -0
package/dist/core/review-committee.js +251 -0
package/dist/core/review-committee.js.map +1 -0
package/dist/core/serverless.d.ts +155 -0
package/dist/core/serverless.d.ts.map +1 -0
package/dist/core/serverless.js +615 -0
package/dist/core/serverless.js.map +1 -0
package/dist/core/token-manager.d.ts +42 -0
package/dist/core/token-manager.d.ts.map +1 -0
package/dist/core/token-manager.js +122 -0
package/dist/core/token-manager.js.map +1 -0
package/dist/daemon/control-server.d.ts +55 -0
package/dist/daemon/control-server.d.ts.map +1 -0
package/dist/daemon/control-server.js +262 -0
package/dist/daemon/control-server.js.map +1 -0
package/dist/daemon/index.d.ts +35 -0
package/dist/daemon/index.d.ts.map +1 -0
package/dist/daemon/index.js +69 -0
package/dist/daemon/index.js.map +1 -0
package/dist/daemon/main.d.ts +6 -0
package/dist/daemon/main.d.ts.map +1 -0
package/dist/daemon/main.js +38 -0
package/dist/daemon/main.js.map +1 -0
package/dist/daemon/start.d.ts +6 -0
package/dist/daemon/start.d.ts.map +1 -0
package/dist/daemon/start.js +25 -0
package/dist/daemon/start.js.map +1 -0
package/dist/daemon/webhook.d.ts +30 -0
package/dist/daemon/webhook.d.ts.map +1 -0
package/dist/daemon/webhook.js +86 -0
package/dist/daemon/webhook.js.map +1 -0
package/dist/daemon/webhook.test.d.ts +2 -0
package/dist/daemon/webhook.test.d.ts.map +1 -0
package/dist/daemon/webhook.test.js +24 -0
package/dist/daemon/webhook.test.js.map +1 -0
package/dist/index.d.ts +24 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +25 -0
package/dist/index.js.map +1 -0
package/dist/protocol/messages.d.ts +739 -0
package/dist/protocol/messages.d.ts.map +1 -0
package/dist/protocol/messages.js +188 -0
package/dist/protocol/messages.js.map +1 -0
package/dist/protocol/messages.test.d.ts +2 -0
package/dist/protocol/messages.test.d.ts.map +1 -0
package/dist/protocol/messages.test.js +55 -0
package/dist/protocol/messages.test.js.map +1 -0
package/dist/types/index.d.ts +247 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +10 -0
package/dist/types/index.js.map +1 -0
package/dist/types/result.d.ts +28 -0
package/dist/types/result.d.ts.map +1 -0
package/dist/types/result.js +16 -0
package/dist/types/result.js.map +1 -0
package/dist/utils/benchmark.d.ts +67 -0
package/dist/utils/benchmark.d.ts.map +1 -0
package/dist/utils/benchmark.js +179 -0
package/dist/utils/benchmark.js.map +1 -0
package/dist/utils/logger.d.ts +105 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +275 -0
package/dist/utils/logger.js.map +1 -0
package/dist/utils/middleware.d.ts +85 -0
package/dist/utils/middleware.d.ts.map +1 -0
package/dist/utils/middleware.js +173 -0
package/dist/utils/middleware.js.map +1 -0
package/dist/utils/rate-limiter.d.ts +71 -0
package/dist/utils/rate-limiter.d.ts.map +1 -0
package/dist/utils/rate-limiter.js +160 -0
package/dist/utils/rate-limiter.js.map +1 -0
package/dist/utils/signature.d.ts +57 -0
package/dist/utils/signature.d.ts.map +1 -0
package/dist/utils/signature.js +102 -0
package/dist/utils/signature.js.map +1 -0
package/dist/utils/validation.d.ts +504 -0
package/dist/utils/validation.d.ts.map +1 -0
package/dist/utils/validation.js +159 -0
package/dist/utils/validation.js.map +1 -0
package/docs/F2A-PROTOCOL.md +61 -0
package/docs/MOBILE_BOOTSTRAP_DESIGN.md +126 -0
package/docs/a2a-lessons.md +316 -0
package/docs/middleware-guide.md +448 -0
package/docs/readme-update-checklist.md +90 -0
package/docs/reputation-guide.md +396 -0
package/docs/rfcs/001-reputation-system.md +712 -0
package/docs/security-design.md +247 -0
package/install.sh +231 -0
package/package.json +64 -0
package/packages/openclaw-adapter/README.md +510 -0
package/packages/openclaw-adapter/openclaw.plugin.json +106 -0
package/packages/openclaw-adapter/package.json +40 -0
package/packages/openclaw-adapter/src/announcement-queue.test.ts +449 -0
package/packages/openclaw-adapter/src/announcement-queue.ts +403 -0
package/packages/openclaw-adapter/src/capability-detector.test.ts +99 -0
package/packages/openclaw-adapter/src/capability-detector.ts +183 -0
package/packages/openclaw-adapter/src/claim-handlers.test.ts +974 -0
package/packages/openclaw-adapter/src/claim-handlers.ts +482 -0
package/packages/openclaw-adapter/src/connector.business.test.ts +583 -0
package/packages/openclaw-adapter/src/connector.ts +795 -0
package/packages/openclaw-adapter/src/index.test.ts +82 -0
package/packages/openclaw-adapter/src/index.ts +18 -0
package/packages/openclaw-adapter/src/integration.e2e.test.ts +829 -0
package/packages/openclaw-adapter/src/logger.ts +51 -0
package/packages/openclaw-adapter/src/network-client.test.ts +266 -0
package/packages/openclaw-adapter/src/network-client.ts +251 -0
package/packages/openclaw-adapter/src/network-recovery.test.ts +465 -0
package/packages/openclaw-adapter/src/node-manager.test.ts +136 -0
package/packages/openclaw-adapter/src/node-manager.ts +429 -0
package/packages/openclaw-adapter/src/plugin.test.ts +439 -0
package/packages/openclaw-adapter/src/plugin.ts +104 -0
package/packages/openclaw-adapter/src/reputation.test.ts +221 -0
package/packages/openclaw-adapter/src/reputation.ts +368 -0
package/packages/openclaw-adapter/src/task-guard.test.ts +502 -0
package/packages/openclaw-adapter/src/task-guard.ts +860 -0
package/packages/openclaw-adapter/src/task-queue.concurrency.test.ts +462 -0
package/packages/openclaw-adapter/src/task-queue.edge-cases.test.ts +284 -0
package/packages/openclaw-adapter/src/task-queue.persistence.test.ts +408 -0
package/packages/openclaw-adapter/src/task-queue.ts +668 -0
package/packages/openclaw-adapter/src/tool-handlers.test.ts +906 -0
package/packages/openclaw-adapter/src/tool-handlers.ts +574 -0
package/packages/openclaw-adapter/src/types.ts +361 -0
package/packages/openclaw-adapter/src/webhook-pusher.test.ts +188 -0
package/packages/openclaw-adapter/src/webhook-pusher.ts +220 -0
package/packages/openclaw-adapter/src/webhook-server.test.ts +580 -0
package/packages/openclaw-adapter/src/webhook-server.ts +202 -0
package/packages/openclaw-adapter/tsconfig.json +20 -0
package/src/cli/commands.test.ts +157 -0
package/src/cli/commands.ts +129 -0
package/src/cli/index.test.ts +77 -0
package/src/cli/index.ts +234 -0
package/src/core/autonomous-economy.test.ts +291 -0
package/src/core/autonomous-economy.ts +428 -0
package/src/core/e2ee-crypto.test.ts +125 -0
package/src/core/e2ee-crypto.ts +246 -0
package/src/core/f2a.test.ts +269 -0
package/src/core/f2a.ts +618 -0
package/src/core/p2p-network.test.ts +199 -0
package/src/core/p2p-network.ts +1432 -0
package/src/core/reputation-security.test.ts +403 -0
package/src/core/reputation-security.ts +562 -0
package/src/core/reputation.test.ts +260 -0
package/src/core/reputation.ts +576 -0
package/src/core/review-committee.test.ts +380 -0
package/src/core/review-committee.ts +401 -0
package/src/core/token-manager.test.ts +133 -0
package/src/core/token-manager.ts +140 -0
package/src/daemon/control-server.test.ts +216 -0
package/src/daemon/control-server.ts +292 -0
package/src/daemon/index.test.ts +85 -0
package/src/daemon/index.ts +89 -0
package/src/daemon/main.ts +44 -0
package/src/daemon/start.ts +29 -0
package/src/daemon/webhook.test.ts +68 -0
package/src/daemon/webhook.ts +105 -0
package/src/index.test.ts +436 -0
package/src/index.ts +72 -0
package/src/types/index.test.ts +87 -0
package/src/types/index.ts +341 -0
package/src/types/result.ts +68 -0
package/src/utils/benchmark.ts +237 -0
package/src/utils/logger.ts +331 -0
package/src/utils/middleware.ts +229 -0
package/src/utils/rate-limiter.ts +207 -0
package/src/utils/signature.ts +136 -0
package/src/utils/validation.ts +186 -0
package/tests/docker/Dockerfile.node +23 -0
package/tests/docker/Dockerfile.runner +18 -0
package/tests/docker/docker-compose.test.yml +73 -0
package/tests/integration/message-passing.test.ts +109 -0
package/tests/integration/multi-node.test.ts +92 -0
package/tests/integration/p2p-connection.test.ts +83 -0
package/tests/integration/test-config.ts +32 -0
package/tsconfig.json +21 -0
package/vitest.config.ts +26 -0

package/src/core/reputation-security.ts ADDED Viewed

@@ -0,0 +1,562 @@
+/**
+ * F2A 信誉安全机制
+ * Phase 3: 链式签名、邀请制、挑战机制
+ */
+import { createHash, createSign, createVerify } from 'crypto';
+import { Logger } from '../utils/logger.js';
+import { ReputationEntry, ReputationManager } from './reputation.js';
+// ============================================================================
+// 类型定义
+// ============================================================================
+/**
+ * 签名信誉事件
+ */
+export interface SignedReputationEvent {
+  peerId: string;
+  delta: number;
+  prevHash: string;
+  timestamp: number;
+  signatures: ReviewerSignature[];
+}
+/**
+ * 评审者签名
+ */
+export interface ReviewerSignature {
+  reviewerId: string;
+  signature: string;
+}
+/**
+ * 邀请记录
+ */
+export interface InvitationRecord {
+  inviterId: string;
+  inviteeId: string;
+  invitationSignature: string;
+  timestamp: number;
+}
+/**
+ * 邀请规则配置
+ */
+export interface InvitationConfig {
+  minInviterReputation: number;
+  maxInvitations: number;
+  initialScoreMultiplier: number;
+  jointLiability: boolean;
+  jointLiabilityRate: number;
+}
+/**
+ * 挑战记录
+ */
+export interface ChallengeRecord {
+  challengerId: string;
+  targetId: string;
+  reason: 'invalid_history' | 'collusion' | 'fake_signatures' | 'score_manipulation';
+  evidence: string;
+  stake: number;
+  timestamp: number;
+  status: 'pending' | 'success' | 'failed';
+}
+/**
+ * 挑战结果
+ */
+export interface ChallengeResult {
+  success: boolean;
+  reward: number;
+  reason: string;
+}
+// ============================================================================
+// 默认配置
+// ============================================================================
+const DEFAULT_INVITATION_CONFIG: InvitationConfig = {
+  minInviterReputation: 60,
+  maxInvitations: 5,
+  initialScoreMultiplier: 0.5,
+  jointLiability: true,
+  jointLiabilityRate: 0.3,
+};
+// ============================================================================
+// 链式签名管理器
+// ============================================================================
+export class ChainSignatureManager {
+  private eventChains: Map<string, SignedReputationEvent[]> = new Map();
+  private logger: Logger;
+  constructor() {
+    this.logger = new Logger({ component: 'ChainSignature' });
+  }
+  /**
+   * 获取事件链
+   */
+  getEventChain(peerId: string): SignedReputationEvent[] {
+    return this.eventChains.get(peerId) || [];
+  }
+  /**
+   * 添加签名事件
+   */
+  addSignedEvent(event: SignedReputationEvent): boolean {
+    // 验证 prevHash
+    const chain = this.getEventChain(event.peerId);
+    if (chain.length === 0) {
+      if (event.prevHash !== 'genesis') {
+        this.logger.error('Invalid genesis event', { peerId: event.peerId });
+        return false;
+      }
+    } else {
+      const lastEvent = chain[chain.length - 1];
+      const expectedPrevHash = this.hashEvent(lastEvent);
+      if (event.prevHash !== expectedPrevHash) {
+        this.logger.error('Chain broken', { peerId: event.peerId });
+        return false;
+      }
+    }
+    chain.push(event);
+    this.eventChains.set(event.peerId, chain);
+    return true;
+  }
+  /**
+   * 验证事件链完整性
+   */
+  verifyChain(peerId: string): boolean {
+    const chain = this.getEventChain(peerId);
+    if (chain.length === 0) return true;
+    let prevHash = 'genesis';
+    for (const event of chain) {
+      // 检查 prevHash
+      if (event.prevHash !== prevHash) {
+        this.logger.error('Chain verification failed', {
+          peerId,
+          eventIndex: chain.indexOf(event),
+        });
+        return false;
+      }
+      prevHash = this.hashEvent(event);
+    }
+    return true;
+  }
+  /**
+   * 计算事件哈希
+   */
+  hashEvent(event: SignedReputationEvent): string {
+    const data = JSON.stringify({
+      peerId: event.peerId,
+      delta: event.delta,
+      prevHash: event.prevHash,
+      timestamp: event.timestamp,
+    });
+    return createHash('sha256').update(data).digest('hex');
+  }
+  /**
+   * 创建签名事件
+   */
+  createSignedEvent(
+    peerId: string,
+    delta: number,
+    signatures: ReviewerSignature[]
+  ): SignedReputationEvent {
+    const chain = this.getEventChain(peerId);
+    const lastEvent = chain.length > 0 ? chain[chain.length - 1] : null;
+    return {
+      peerId,
+      delta,
+      prevHash: lastEvent ? this.hashEvent(lastEvent) : 'genesis',
+      timestamp: Date.now(),
+      signatures,
+    };
+  }
+  /**
+   * 从事件链计算信誉分
+   */
+  calculateScoreFromChain(peerId: string, initialScore: number = 70): number {
+    const chain = this.getEventChain(peerId);
+    let score = initialScore;
+    for (const event of chain) {
+      score = Math.max(0, Math.min(100, score + event.delta));
+    }
+    return score;
+  }
+  /**
+   * 导出事件链
+   */
+  exportChain(peerId: string): string {
+    const chain = this.getEventChain(peerId);
+    return JSON.stringify(chain);
+  }
+  /**
+   * 导入事件链
+   */
+  importChain(peerId: string, data: string): boolean {
+    try {
+      const chain = JSON.parse(data) as SignedReputationEvent[];
+      this.eventChains.set(peerId, chain);
+      return this.verifyChain(peerId);
+    } catch {
+      return false;
+    }
+  }
+}
+// ============================================================================
+// 邀请管理器
+// ============================================================================
+export class InvitationManager {
+  private config: InvitationConfig;
+  private reputationManager: ReputationManager;
+  private invitations: Map<string, InvitationRecord[]> = new Map();
+  private inviteeToInviter: Map<string, string> = new Map();
+  private logger: Logger;
+  constructor(
+    reputationManager: ReputationManager,
+    config: Partial<InvitationConfig> = {}
+  ) {
+    this.config = { ...DEFAULT_INVITATION_CONFIG, ...config };
+    this.reputationManager = reputationManager;
+    this.logger = new Logger({ component: 'InvitationManager' });
+  }
+  /**
+   * 创建邀请
+   */
+  createInvitation(
+    inviterId: string,
+    inviteeId: string
+  ): { success: boolean; invitation?: InvitationRecord; error?: string } {
+    // 检查邀请者信誉
+    const inviterRep = this.reputationManager.getReputation(inviterId);
+    if (inviterRep.score < this.config.minInviterReputation) {
+      return {
+        success: false,
+        error: `Inviter reputation ${inviterRep.score} below minimum ${this.config.minInviterReputation}`,
+      };
+    }
+    // 检查邀请配额
+    const invitationCount = this.getInvitationCount(inviterId);
+    if (invitationCount >= this.config.maxInvitations) {
+      return {
+        success: false,
+        error: `Invitation quota exhausted (${invitationCount}/${this.config.maxInvitations})`,
+      };
+    }
+    // 检查是否已被邀请
+    if (this.inviteeToInviter.has(inviteeId)) {
+      return {
+        success: false,
+        error: 'Invitee already invited by another node',
+      };
+    }
+    // 创建邀请记录
+    const invitation: InvitationRecord = {
+      inviterId,
+      inviteeId,
+      invitationSignature: this.generateSignature(inviterId, inviteeId),
+      timestamp: Date.now(),
+    };
+    // 记录邀请
+    const inviterInvitations = this.invitations.get(inviterId) || [];
+    inviterInvitations.push(invitation);
+    this.invitations.set(inviterId, inviterInvitations);
+    this.inviteeToInviter.set(inviteeId, inviterId);
+    // 设置被邀请者的初始信誉
+    const initialScore = Math.max(
+      30,
+      Math.floor(inviterRep.score * this.config.initialScoreMultiplier)
+    );
+    // 使用 ReputationManager 的公开方法设置初始分数
+    this.reputationManager.setInitialScore(inviteeId, initialScore);
+    this.logger.info('Invitation created', {
+      inviterId: inviterId.slice(0, 16),
+      inviteeId: inviteeId.slice(0, 16),
+      initialScore,
+    });
+    return { success: true, invitation };
+  }
+  /**
+   * 获取邀请者
+   */
+  getInviter(inviteeId: string): string | null {
+    return this.inviteeToInviter.get(inviteeId) || null;
+  }
+  /**
+   * 获取邀请数量
+   */
+  getInvitationCount(inviterId: string): number {
+    return this.invitations.get(inviterId)?.length || 0;
+  }
+  /**
+   * 执行连带责任惩罚
+   */
+  applyJointLiability(inviteeId: string, penalty: number): void {
+    if (!this.config.jointLiability) return;
+    const inviterId = this.getInviter(inviteeId);
+    if (!inviterId) return;
+    const jointPenalty = Math.floor(penalty * this.config.jointLiabilityRate);
+    this.reputationManager.recordFailure(
+      inviterId,
+      `joint-liability-${inviteeId}`,
+      `Joint liability for invitee ${inviteeId}`,
+      -jointPenalty
+    );
+    this.logger.warn('Joint liability applied', {
+      inviterId: inviterId.slice(0, 16),
+      inviteeId: inviteeId.slice(0, 16),
+      jointPenalty,
+    });
+  }
+  /**
+   * 获取所有邀请
+   */
+  getAllInvitations(): InvitationRecord[] {
+    const all: InvitationRecord[] = [];
+    for (const invitations of this.invitations.values()) {
+      all.push(...invitations);
+    }
+    return all;
+  }
+  /**
+   * 生成签名
+   */
+  private generateSignature(inviterId: string, inviteeId: string): string {
+    const data = `${inviterId}:${inviteeId}:${Date.now()}`;
+    return createHash('sha256').update(data).digest('hex');
+  }
+}
+// ============================================================================
+// 挑战管理器
+// ============================================================================
+export class ChallengeManager {
+  private reputationManager: ReputationManager;
+  private chainManager: ChainSignatureManager;
+  private challenges: Map<string, ChallengeRecord[]> = new Map();
+  private logger: Logger;
+  constructor(
+    reputationManager: ReputationManager,
+    chainManager: ChainSignatureManager
+  ) {
+    this.reputationManager = reputationManager;
+    this.chainManager = chainManager;
+    this.logger = new Logger({ component: 'ChallengeManager' });
+  }
+  /**
+   * 提交挑战
+   */
+  submitChallenge(
+    challengerId: string,
+    targetId: string,
+    reason: ChallengeRecord['reason'],
+    evidence: string,
+    stake: number = 10
+  ): ChallengeRecord {
+    const challenge: ChallengeRecord = {
+      challengerId,
+      targetId,
+      reason,
+      evidence,
+      stake,
+      timestamp: Date.now(),
+      status: 'pending',
+    };
+    const targetChallenges = this.challenges.get(targetId) || [];
+    targetChallenges.push(challenge);
+    this.challenges.set(targetId, targetChallenges);
+    this.logger.info('Challenge submitted', {
+      challengerId: challengerId.slice(0, 16),
+      targetId: targetId.slice(0, 16),
+      reason,
+    });
+    return challenge;
+  }
+  /**
+   * 处理挑战
+   */
+  processChallenge(challenge: ChallengeRecord): ChallengeResult {
+    const targetId = challenge.targetId;
+    // 1. 验证事件链
+    if (challenge.reason === 'invalid_history' || challenge.reason === 'fake_signatures') {
+      const chainValid = this.chainManager.verifyChain(targetId);
+      if (!chainValid) {
+        // 挑战成功
+        this.reputationManager.recordFailure(
+          targetId,
+          'challenge-invalid-chain',
+          'Invalid reputation chain detected',
+          -50
+        );
+        // 奖励挑战者
+        this.reputationManager.recordReviewReward(
+          challenge.challengerId,
+          challenge.stake * 2
+        );
+        challenge.status = 'success';
+        return { success: true, reward: challenge.stake * 2, reason: 'Invalid chain detected' };
+      }
+    }
+    // 2. 检测合谋
+    if (challenge.reason === 'collusion') {
+      const collusionScore = this.detectCollusion(targetId);
+      if (collusionScore > 0.8) {
+        // 合谋检测成功
+        this.reputationManager.recordFailure(
+          targetId,
+          'challenge-collusion',
+          'Collusion detected',
+          -30
+        );
+        this.reputationManager.recordReviewReward(
+          challenge.challengerId,
+          challenge.stake * 1.5
+        );
+        challenge.status = 'success';
+        return { success: true, reward: challenge.stake * 1.5, reason: 'Collusion detected' };
+      }
+    }
+    // 3. 分数操纵检测
+    if (challenge.reason === 'score_manipulation') {
+      const chain = this.chainManager.getEventChain(targetId);
+      const calculatedScore = this.chainManager.calculateScoreFromChain(targetId);
+      const claimedScore = this.reputationManager.getReputation(targetId).score;
+      if (Math.abs(calculatedScore - claimedScore) > 10) {
+        // 分数不一致
+        this.reputationManager.recordFailure(
+          targetId,
+          'challenge-score-manipulation',
+          'Score manipulation detected',
+          -20
+        );
+        this.reputationManager.recordReviewReward(
+          challenge.challengerId,
+          challenge.stake * 1.5
+        );
+        challenge.status = 'success';
+        return { success: true, reward: challenge.stake * 1.5, reason: 'Score manipulation detected' };
+      }
+    }
+    // 挑战失败
+    this.reputationManager.recordReviewPenalty(
+      challenge.challengerId,
+      -challenge.stake * 0.5,
+      'Failed challenge'
+    );
+    challenge.status = 'failed';
+    return { success: false, reward: 0, reason: 'Challenge failed' };
+  }
+  /**
+   * 合谋检测算法
+   */
+  detectCollusion(nodeId: string): number {
+    const entry = this.reputationManager.getReputation(nodeId);
+    // 分析评审历史
+    const successEvents = entry.history.filter(e => e.type === 'task_success');
+    if (successEvents.length < 5) return 0;
+    // 简单检测：如果所有成功事件都是同一任务类型，可疑度低
+    // 如果成功事件分数波动极大，可疑度高
+    const deltas = successEvents.map(e => e.delta);
+    const avgDelta = deltas.reduce((a, b) => a + b, 0) / deltas.length;
+    const variance = deltas.reduce((sum, d) => sum + Math.pow(d - avgDelta, 2), 0) / deltas.length;
+    // 方差越大，可疑度越高
+    const normalizedVariance = Math.min(1, variance / 100);
+    return normalizedVariance;
+  }
+  /**
+   * 获取挑战历史
+   */
+  getChallenges(targetId: string): ChallengeRecord[] {
+    return this.challenges.get(targetId) || [];
+  }
+  /**
+   * 获取待处理挑战
+   */
+  getPendingChallenges(): ChallengeRecord[] {
+    const all: ChallengeRecord[] = [];
+    for (const challenges of this.challenges.values()) {
+      all.push(...challenges.filter(c => c.status === 'pending'));
+    }
+    return all;
+  }
+}
+// 默认导出
+export default {
+  ChainSignatureManager,
+  InvitationManager,
+  ChallengeManager,
+};