@full-self-browsing/lattice 1.4.0 → 1.5.0

package/dist/{runtime-D25ehzCj.js → runtime-Dxiet5YS.js}

@@ -1,142 +1,8 @@
 import { t as __exportAll } from "./rolldown-runtime-CiIaOW0V.js";
-import mime from "mime";
-import canonicalize from "canonicalize";
-//#region src/artifacts/metadata.ts
-const textEncoder$1 = new TextEncoder();
-function inferMediaType(value, options) {
-	if (options.mediaType !== void 0) return options.mediaType;
-	if (isBlobLike(value) && value.type !== "") return value.type;
-	if (typeof value === "string") return mime.getType(value) ?? options.defaultMediaType;
-	return options.defaultMediaType;
-}
-function measureArtifactValue(value, kind) {
-	if (kind === "text" && typeof value === "string") return measureString(value);
-	if (kind === "json") {
-		const serialized = JSON.stringify(value);
-		return serialized === void 0 ? void 0 : measureString(serialized);
-	}
-	if (isBlobLike(value)) return { bytes: value.size };
-}
-function measureString(value) {
-	return {
-		characters: value.length,
-		bytes: textEncoder$1.encode(value).byteLength
-	};
-}
-function isBlobLike(value) {
-	return typeof Blob !== "undefined" && value instanceof Blob;
-}
-//#endregion
-//#region src/artifacts/artifact.ts
-const artifact = {
-	text(value, options = {}) {
-		return createArtifact("text", "inline", value, options, "text/plain");
-	},
-	json(value, options = {}) {
-		return createArtifact("json", "inline", value, options, "application/json");
-	},
-	file(value, options = {}) {
-		return createArtifact("file", "file", value, options);
-	},
-	image(value, options = {}) {
-		return createArtifact("image", "file", value, options);
-	},
-	audio(value, options = {}) {
-		return createArtifact("audio", "file", value, options);
-	},
-	document(value, options = {}) {
-		return createArtifact("document", "file", value, options);
-	},
-	url(value, options = {}) {
-		return createArtifact("url", "url", value.toString(), options);
-	},
-	toolResult(value, options) {
-		return createArtifact("tool-result", "tool", value, {
-			...options,
-			metadata: {
-				...options.metadata,
-				toolName: options.toolName,
-				...options.callId !== void 0 ? { callId: options.callId } : {}
-			}
-		}, "application/json");
-	},
-	derive(input) {
-		const { kind, source = "generated", value, parents, transform, ...options } = input;
-		return createArtifact(kind, source, value, {
-			...options,
-			lineage: {
-				parents: parents.map(toArtifactRef),
-				transform
-			}
-		}, defaultMediaTypeForKind(kind));
-	}
-};
-function toArtifactRef(input) {
-	return {
-		id: input.id,
-		kind: input.kind,
-		source: input.source,
-		privacy: input.privacy,
-		...input.mediaType !== void 0 ? { mediaType: input.mediaType } : {},
-		...input.label !== void 0 ? { label: input.label } : {},
-		...input.metadata !== void 0 ? { metadata: input.metadata } : {},
-		...input.size !== void 0 ? { size: input.size } : {},
-		...input.fingerprint !== void 0 ? { fingerprint: input.fingerprint } : {},
-		...input.storage !== void 0 ? { storage: input.storage } : {},
-		...input.lineage !== void 0 ? { lineage: input.lineage } : {}
-	};
-}
-function isArtifactRef(value) {
-	if (!isRecord(value)) return false;
-	return typeof value.id === "string" && isArtifactKind(value.kind) && isArtifactSource(value.source) && isArtifactPrivacy(value.privacy);
-}
-function createArtifact(kind, source, value, options, defaultMediaType) {
-	const mediaType = inferMediaType(value, {
-		kind,
-		...options.mediaType !== void 0 ? { mediaType: options.mediaType } : {},
-		...defaultMediaType !== void 0 ? { defaultMediaType } : {}
-	});
-	const size = options.size ?? measureArtifactValue(value, kind);
-	return {
-		id: options.id ?? createArtifactId(kind),
-		kind,
-		source,
-		value,
-		privacy: options.privacy ?? "standard",
-		...mediaType !== void 0 ? { mediaType } : {},
-		...options.label !== void 0 ? { label: options.label } : {},
-		...options.metadata !== void 0 ? { metadata: options.metadata } : {},
-		...size !== void 0 ? { size } : {},
-		...options.fingerprint !== void 0 ? { fingerprint: options.fingerprint } : {},
-		...options.storage !== void 0 ? { storage: options.storage } : {},
-		...options.lineage !== void 0 ? { lineage: options.lineage } : {}
-	};
-}
-function defaultMediaTypeForKind(kind) {
-	switch (kind) {
-		case "text": return "text/plain";
-		case "json":
-		case "tool-result": return "application/json";
-		default: return;
-	}
-}
-function isArtifactKind(value) {
-	return value === "text" || value === "json" || value === "file" || value === "image" || value === "audio" || value === "video" || value === "document" || value === "url" || value === "tool-result";
-}
-function isArtifactSource(value) {
-	return value === "inline" || value === "file" || value === "url" || value === "generated" || value === `provider-upload` || value === "tool";
-}
-function isArtifactPrivacy(value) {
-	return value === "standard" || value === "sensitive" || value === "restricted";
-}
-function isRecord(value) {
-	return typeof value === "object" && value !== null;
-}
-function createArtifactId(kind) {
-	if (typeof crypto !== "undefined" && typeof crypto.randomUUID === "function") return `artifact:${kind}:${crypto.randomUUID()}`;
-	return `artifact:${kind}:${Date.now()}:${Math.random().toString(16).slice(2)}`;
-}
-//#endregion
+import { r as toArtifactRef } from "./artifact-DOfpeXLb.js";
+import { t as createReceipt } from "./receipt-FYouoPHv.js";
+import { i as standardSchemaToJsonSchema, n as validateOutputMapValues, o as parseToolUseEnvelope } from "./validate-c7EL5uuH.js";
+import { r as runTool } from "./tools-C4wHgGKQ.js";
 //#region src/contract/bands.ts
 /**
 * Priority bands. Lower number = higher priority (runs first).
@@ -272,207 +138,6 @@ function createHookPipeline(options) {
 	};
 }
 //#endregion
-//#region src/receipts/canonical.ts
-const encoder = new TextEncoder();
-/**
-* Convert costUsd (number | null) to its canonical string form.
-* RFC 8785 requires deterministic float-to-string; using JS Number→string
-* directly is unsafe across V8 versions (Grisu3 vs Dragonbox). We pin the
-* format by routing through Number.prototype.toString() for FINITE numbers
-* only, and treat NaN/Infinity as null. This matches "I-JSON only" from
-* 09-CONTEXT.md — receipts NEVER carry non-finite floats.
-*/
-function stringifyCostUsd(costUsd) {
-	if (costUsd === null) return null;
-	if (!Number.isFinite(costUsd)) return null;
-	return costUsd.toString();
-}
-/**
-* Convert a runtime Usage (number costUsd) to its canonical receipt form
-* (string costUsd). This is the single conversion site — canonical bytes
-* NEVER see a raw float in the cost field.
-*/
-function usageToCanonical(usage) {
-	return {
-		promptTokens: usage.promptTokens,
-		completionTokens: usage.completionTokens,
-		costUsd: stringifyCostUsd(usage.costUsd)
-	};
-}
-/**
-* Canonicalize a receipt body to JCS bytes (RFC 8785).
-*
-* INVARIANT: callers MUST pass an already-redacted body. The redactor in
-* redact.ts produces the input to this function — never the cleartext.
-* See 09-CONTEXT.md "Redact-Then-Sign Ordering (UNRETROFITTABLE)".
-*
-* Throws if canonicalize returns undefined (impossible for valid bodies
-* — surfaces a programmer error rather than silently producing zero
-* bytes that would later fail signature verification).
-*/
-function canonicalizeReceiptBody(body) {
-	const json = canonicalize(body);
-	if (json === void 0) throw new Error("canonicalizeReceiptBody: canonicalize returned undefined; receipt body contained a non-canonicalizable value (function/symbol/undefined).");
-	return encoder.encode(json);
-}
-//#endregion
-//#region src/receipts/envelope.ts
-const PAYLOAD_TYPE = "application/vnd.lattice.receipt+json";
-const textEncoder = new TextEncoder();
-function base64Encode(bytes) {
-	return Buffer.from(bytes).toString("base64");
-}
-function base64Decode(value) {
-	return new Uint8Array(Buffer.from(value, "base64"));
-}
-/**
-* DSSE v1.0 Pre-Authentication Encoding.
-*
-* Reference: https://github.com/secure-systems-lab/dsse/blob/v1.0.0/protocol.md
-*
-* PAE = UTF-8("DSSEv1 " + len(payloadType) + " " + payloadType
-*           + " " + len(payload) + " " + payload)
-*
-* `payload` here is the BASE64-encoded string per DSSE v1.0 spec (NOT raw
-* canonical bytes). Both signing and verification MUST construct PAE the
-* same way; this module is the single source of truth.
-*
-* ASCII length is decimal (no zero-padding). e.g. length 1000 → "1000".
-*/
-function buildPae(payloadType, payloadBase64) {
-	const ascii = "DSSEv1 " + payloadType.length.toString() + " " + payloadType + " " + payloadBase64.length.toString() + " " + payloadBase64;
-	return textEncoder.encode(ascii);
-}
-function encodeEnvelope(input) {
-	return {
-		payloadType: PAYLOAD_TYPE,
-		payload: base64Encode(input.payloadBytes),
-		signatures: input.signatures.map((entry) => ({
-			keyid: entry.keyid,
-			sig: base64Encode(entry.sig)
-		}))
-	};
-}
-function decodeEnvelope(envelope) {
-	if (envelope.payloadType !== "application/vnd.lattice.receipt+json") throw new Error(`envelope payloadType mismatch: expected "${PAYLOAD_TYPE}" got "${envelope.payloadType}"`);
-	return {
-		payloadType: envelope.payloadType,
-		payloadBytes: base64Decode(envelope.payload),
-		signatures: envelope.signatures.map((entry) => ({
-			keyid: entry.keyid,
-			sig: base64Decode(entry.sig)
-		}))
-	};
-}
-//#endregion
-//#region src/receipts/redact.ts
-/**
-* Default redaction policy id for v1.1. Free-form string per
-* 09-CONTEXT.md — registry enforcement deferred to v1.2.
-*/
-const DEFAULT_REDACTION_POLICY_ID = "lattice.default.v1";
-/**
-* Redact a receipt body BEFORE canonicalization (and BEFORE signing).
-*
-* The signed digest commits to canonicalize(redact(body)). NEVER the
-* other way around. See 09-CONTEXT.md "Redact-Then-Sign Ordering
-* (UNRETROFITTABLE)" and PITFALLS.md Pitfall #1.
-*
-* For v1.1 the default policy is minimal — the heavy lifting already
-* happened upstream:
-*   - Tripwire evaluator emits {detector, substring} for no-pii (T-08-01).
-*   - Provider responses are hashed into inputHashes/outputHash, never
-*     embedded raw.
-*   - Router reject messages do not contain PII by construction.
-*
-* This function therefore primarily:
-*   1. Materializes the redactions[] manifest declaring what WAS elided
-*      upstream (so receipts are self-describing).
-*   2. Provides the extension point future policies will use.
-*
-* Returns a NEW body — never mutates the input.
-*/
-function redactReceiptBody(body, policyId = DEFAULT_REDACTION_POLICY_ID) {
-	const redactions = [];
-	if (body.tripwireEvidence !== void 0 && body.tripwireEvidence.kind === "no-pii") redactions.push({
-		path: "tripwireEvidence.observed",
-		reason: "no-pii-detector-substring-only"
-	});
-	const sorted = [...redactions].sort((a, b) => a.path < b.path ? -1 : a.path > b.path ? 1 : 0);
-	return {
-		body: {
-			...body,
-			redactionPolicyId: policyId,
-			redactions: sorted
-		},
-		redactions: sorted
-	};
-}
-//#endregion
-//#region src/receipts/receipt.ts
-/**
-* Build, redact, canonicalize, sign, and envelope a CapabilityReceipt.
-*
-* Ordering INVARIANT (09-CONTEXT.md, PITFALLS.md Pitfall #1):
-*   redact -> canonicalize -> PAE -> sign -> encode
-*
-* The signed digest commits to canonicalize(redact(body)). The function
-* structure makes any other ordering impossible to write by accident —
-* canonicalizeReceiptBody is ONLY called on the output of redactReceiptBody.
-*
-* Defense in depth:
-*   - body.kid is assigned from signer.kid, never from input (input has no
-*     kid field). The signed body and the envelope keyid CANNOT disagree by
-*     construction.
-*   - signer.kid is also written to envelope.signatures[0].keyid, so the
-*     verifier can cross-check (Step 7 of verifyReceipt).
-*
-* I-JSON guarantees: usage.costUsd is converted to string (or null) via
-* usageToCanonical. Receipts NEVER carry raw floats in the canonical form.
-*/
-async function createReceipt(input, signer) {
-	const policyId = input.redactionPolicyId ?? "lattice.default.v1";
-	const receiptId = input.receiptId ?? crypto.randomUUID();
-	const issuedAt = input.issuedAt ?? (/* @__PURE__ */ new Date()).toISOString();
-	const { body } = redactReceiptBody({
-		version: "lattice-receipt/v1.3",
-		receiptId,
-		runId: input.runId,
-		issuedAt,
-		kid: signer.kid,
-		model: input.model,
-		route: input.route,
-		...input.modelClass !== void 0 ? { modelClass: input.modelClass } : {},
-		...input.parentReceiptCid !== void 0 ? { parentReceiptCid: input.parentReceiptCid } : {},
-		...input.lineageMerkleRoot !== void 0 ? { lineageMerkleRoot: input.lineageMerkleRoot } : {},
-		usage: usageToCanonical(input.usage),
-		contractVerdict: input.contractVerdict,
-		contractHash: input.contractHash,
-		inputHashes: input.inputHashes,
-		outputHash: input.outputHash,
-		redactionPolicyId: policyId,
-		redactions: [],
-		...input.noRouteReasons !== void 0 ? { noRouteReasons: input.noRouteReasons } : {},
-		...input.tripwireEvidence !== void 0 ? { tripwireEvidence: input.tripwireEvidence } : {},
-		...input.stepName !== void 0 ? { stepName: input.stepName } : {},
-		...input.stepIndex !== void 0 ? { stepIndex: input.stepIndex } : {},
-		...input.parentStepName !== void 0 ? { parentStepName: input.parentStepName } : {},
-		...input.previousStepName !== void 0 ? { previousStepName: input.previousStepName } : {},
-		...input.sessionId !== void 0 ? { sessionId: input.sessionId } : {},
-		...input.timestamp !== void 0 ? { timestamp: input.timestamp } : {}
-	}, policyId);
-	const payloadBytes = canonicalizeReceiptBody(body);
-	const pae = buildPae(PAYLOAD_TYPE, base64Encode(payloadBytes));
-	const sig = await signer.sign(pae);
-	return encodeEnvelope({
-		payloadBytes,
-		signatures: [{
-			keyid: signer.kid,
-			sig
-		}]
-	});
-}
-//#endregion
 //#region src/contract/checkpoint.ts
 /**
 * The tracer event name Lattice's checkpoint hook emits per step transition.
@@ -589,34 +254,89 @@ function extractReceiptId(envelope) {
 	}
 }
 //#endregion
-//#region src/agent/format-tools.ts
+//#region src/runtime/survivability.ts
 /**
-* Convert a Standard Schema to a JSON Schema-shaped descriptor suitable for
-* inclusion in an LLM tool description. Standard Schema vendors can
-* optionally expose `toJSONSchema` on their schema objects; when absent,
-* we fall back to a minimal structural description that lists the schema
-* vendor + version + a placeholder. Models tolerate placeholder schemas in
-* practice because the tool description is supplementary — what matters
-* is the envelope contract (`{tool_call: {name, args}}`).
+* Reference implementation of SurvivabilityAdapter<TState>. Records
+* eviction events but does NOT persist; serialize / deserialize round-
+* trip via JSON.stringify / JSON.parse. Analog to createFakeProvider
+* in the providers/ module -- gives Lattice's vitest a complete shape-
+* conformance target before the real (FSB-side) adapter ships in
+* Plan 05-05.
+*
+* Per CONTEXT.md D-11 the noop adapter ships in Lattice (not FSB)
+* because it covers the contract surface in Lattice's own test suite;
+* FSB's real chrome.storage.session-backed adapter is glue layer.
 */
-function toolSchemaToJsonSchema(schema) {
-	const standardSchema = schema["~standard"];
-	if (typeof standardSchema === "object" && standardSchema !== null && "vendor" in standardSchema) {
-		const vendor = standardSchema;
-		const maybeToJson = schema.toJSONSchema;
-		if (typeof maybeToJson === "function") try {
-			return maybeToJson();
-		} catch {}
-		return {
-			$comment: `standard-schema vendor: ${vendor.vendor}; toJSONSchema not available`,
-			type: "object"
-		};
-	}
+function createNoopSurvivabilityAdapter(options = {}) {
+	const id = options.id ?? "noop-survivability";
+	const defaultPolicy = options.policy ?? "SAFE";
+	const hooks = /* @__PURE__ */ new Set();
 	return {
-		$comment: "non-standard-schema input",
-		type: "object"
+		kind: "survivability-adapter",
+		id,
+		serialize(state) {
+			return {
+				kind: "survivability-snapshot",
+				version: "lattice-survivability/v1",
+				payload: JSON.stringify(state ?? null),
+				capturedAt: (/* @__PURE__ */ new Date()).toISOString()
+			};
+		},
+		deserialize(snapshot) {
+			return JSON.parse(snapshot.payload);
+		},
+		onEviction(hook) {
+			hooks.add(hook);
+			let unsubscribed = false;
+			return () => {
+				if (unsubscribed) return;
+				unsubscribed = true;
+				hooks.delete(hook);
+			};
+		},
+		async resume(_snapshot) {
+			return defaultPolicy;
+		}
 	};
 }
+//#endregion
+//#region src/agent/format-tools.ts
+/**
+* formatToolsForProvider — Phase 19 (v1.2).
+*
+* The agent loop runs over the existing v1.1 + v1.2 `ProviderAdapter`
+* interface unchanged (CONTEXT.md Q2). Adapters accept only a single
+* `task: string` plus `outputs[]` — they have no native multi-turn or
+* tool-use surface.
+*
+* This helper bridges that gap by encoding the running conversation +
+* tool descriptions + a structured "respond with this envelope" instruction
+* into the `task` string. The model is asked to either answer directly or
+* emit a JSON envelope on a line by itself. `parseToolUse` extracts the
+* envelope.
+*
+* The implementation works ACROSS all 7 logical providers (openai,
+* openai-compat, anthropic, gemini, xai, openrouter, lm-studio) by virtue
+* of being provider-agnostic: it uses the adapter's normalized text
+* response (`ProviderRunResponse.rawOutputs`) and never touches the
+* provider-specific request shape. Native tool_use (Anthropic Messages-API
+* `tools[]`, OpenAI Chat-Completions `tools[]`, Gemini `function_declarations`)
+* is DEFERRED to a follow-on milestone where the `ProviderAdapter` interface
+* can be additively extended without breaking the INV-03 parity contract
+* shipped in v1.2 Phase 17.
+*
+* Returned closure shape:
+*   {
+*     buildTask(conversation, system?) — encodes turns + tools + envelope
+*                                        instructions into a single string;
+*     parseToolUse(text)               — extracts JSON tool-call envelopes
+*                                        from the response, returns null
+*                                        when the response is a final answer;
+*     describeForSystem()              — returns the static tool-description
+*                                        block (for tracing / logging);
+*   }
+*/
+const toolSchemaToJsonSchema = standardSchemaToJsonSchema;
 /**
 * Builds the prompt-reencoded tool-use protocol handle for any provider.
 *
@@ -690,281 +410,6 @@ function formatToolsForProvider(providerName, tools, options = {}) {
 		mode: "prompt-reencoded"
 	};
 }
-function parseToolUseEnvelope(responseText) {
-	if (typeof responseText !== "string" || responseText.length === 0) return null;
-	const candidates = extractJsonCandidates(responseText);
-	for (const candidate of candidates) {
-		const parsed = tryParseEnvelope(candidate);
-		if (parsed !== null) return parsed;
-	}
-	return null;
-}
-/**
-* Extracts JSON-looking candidate substrings from a response text.
-*
-* Models routinely wrap JSON in markdown code fences (```json ... ```),
-* prepend explanatory prose ("I'll call the search tool: { ... }"), or
-* produce multiple JSON-shaped blobs. This extractor scans for plausible
-* candidates ordered by likelihood.
-*/
-function extractJsonCandidates(text) {
-	const candidates = [];
-	const fenceRegex = /```(?:json)?\s*([\s\S]*?)```/g;
-	let fenceMatch;
-	while ((fenceMatch = fenceRegex.exec(text)) !== null) {
-		const inner = fenceMatch[1];
-		if (inner !== void 0) candidates.push(inner.trim());
-	}
-	const braceStart = text.indexOf("{");
-	const braceEnd = text.lastIndexOf("}");
-	if (braceStart !== -1 && braceEnd > braceStart) candidates.push(text.slice(braceStart, braceEnd + 1));
-	candidates.push(text.trim());
-	return candidates;
-}
-function tryParseEnvelope(jsonLike) {
-	let parsed;
-	try {
-		parsed = JSON.parse(jsonLike);
-	} catch {
-		return null;
-	}
-	if (typeof parsed !== "object" || parsed === null) return null;
-	const toolCalls = parsed["tool_calls"];
-	if (!Array.isArray(toolCalls) || toolCalls.length === 0) return null;
-	const requests = [];
-	for (const call of toolCalls) {
-		if (typeof call !== "object" || call === null) return null;
-		const callRecord = call;
-		const id = callRecord["id"];
-		const name = callRecord["name"];
-		const args = callRecord["args"];
-		if (typeof id !== "string" || typeof name !== "string") return null;
-		requests.push({
-			id,
-			name,
-			args
-		});
-	}
-	return requests;
-}
-//#endregion
-//#region src/outputs/validate.ts
-async function validateSchemaOutput(name, schema, value) {
-	const result = schema["~standard"].validate(value);
-	const validation = result instanceof Promise ? await result : result;
-	if (validation.issues) return {
-		ok: false,
-		issue: {
-			["output"]: name,
-			issues: validation.issues.map(normalizeIssue)
-		}
-	};
-	return {
-		ok: true,
-		value: validation.value
-	};
-}
-async function validateOutputMap(contracts, rawOutputs, plan) {
-	const outputs = {};
-	for (const [name, contract] of Object.entries(contracts)) {
-		const value = rawOutputs[name];
-		const issue = await validateOutput(name, contract, value);
-		if (!issue.ok) return {
-			ok: false,
-			error: {
-				kind: "validation",
-				message: `Invalid output "${name}".`,
-				["output"]: name,
-				issues: issue.issues
-			},
-			usage: {
-				promptTokens: 0,
-				completionTokens: 0,
-				costUsd: null
-			},
-			raw: rawOutputs,
-			partialOutputs: outputs,
-			plan
-		};
-		outputs[name] = issue.value;
-	}
-	return {
-		ok: true,
-		outputs,
-		artifacts: [],
-		usage: {
-			promptTokens: 0,
-			completionTokens: 0,
-			costUsd: null
-		},
-		plan
-	};
-}
-async function validateOutput(name, contract, value) {
-	if (contract === "text") {
-		if (typeof value !== "string") return {
-			ok: false,
-			issues: [{ message: "Expected text output to be a string." }]
-		};
-		return {
-			ok: true,
-			value
-		};
-	}
-	if (isStandardSchema(contract)) {
-		const result = await validateSchemaOutput(name, contract, value);
-		if (!result.ok) return {
-			ok: false,
-			issues: result.issue.issues
-		};
-		return {
-			ok: true,
-			value: result.value
-		};
-	}
-	if (contract.kind === "citations") {
-		if (!Array.isArray(value)) return {
-			ok: false,
-			issues: [{ message: "Expected citations output to be an array." }]
-		};
-		return {
-			ok: true,
-			value
-		};
-	}
-	if (contract.kind === "artifacts") {
-		if (!Array.isArray(value)) return {
-			ok: false,
-			issues: [{ message: "Expected artifacts output to be an array." }]
-		};
-		for (const item of value) {
-			if (!isArtifactRef(item)) return {
-				ok: false,
-				issues: [{ message: "Expected artifacts output item to be an artifact ref." }]
-			};
-			if (contract.artifactKind !== void 0 && item.kind !== contract.artifactKind) return {
-				ok: false,
-				issues: [{ message: `Expected artifacts output item kind to be "${contract.artifactKind}".` }]
-			};
-		}
-		return {
-			ok: true,
-			value: value.map(toArtifactRef)
-		};
-	}
-	return {
-		ok: false,
-		issues: [{ message: "Unsupported output contract." }]
-	};
-}
-function isStandardSchema(contract) {
-	if (typeof contract !== "object" || contract === null) return false;
-	return typeof contract["~standard"]?.validate === "function";
-}
-function normalizeIssue(issue) {
-	const path = issue.path?.map(normalizePathSegment).filter((segment) => segment !== void 0);
-	return {
-		message: issue.message,
-		...path !== void 0 && path.length > 0 ? { path } : {}
-	};
-}
-function normalizePathSegment(segment) {
-	if (typeof segment === "string" || typeof segment === "number" || typeof segment === "symbol") return segment;
-	return normalizePathKey(segment.key);
-}
-function normalizePathKey(key) {
-	return key;
-}
-//#endregion
-//#region src/runtime/survivability.ts
-/**
-* Reference implementation of SurvivabilityAdapter<TState>. Records
-* eviction events but does NOT persist; serialize / deserialize round-
-* trip via JSON.stringify / JSON.parse. Analog to createFakeProvider
-* in the providers/ module -- gives Lattice's vitest a complete shape-
-* conformance target before the real (FSB-side) adapter ships in
-* Plan 05-05.
-*
-* Per CONTEXT.md D-11 the noop adapter ships in Lattice (not FSB)
-* because it covers the contract surface in Lattice's own test suite;
-* FSB's real chrome.storage.session-backed adapter is glue layer.
-*/
-function createNoopSurvivabilityAdapter(options = {}) {
-	const id = options.id ?? "noop-survivability";
-	const defaultPolicy = options.policy ?? "SAFE";
-	const hooks = /* @__PURE__ */ new Set();
-	return {
-		kind: "survivability-adapter",
-		id,
-		serialize(state) {
-			return {
-				kind: "survivability-snapshot",
-				version: "lattice-survivability/v1",
-				payload: JSON.stringify(state ?? null),
-				capturedAt: (/* @__PURE__ */ new Date()).toISOString()
-			};
-		},
-		deserialize(snapshot) {
-			return JSON.parse(snapshot.payload);
-		},
-		onEviction(hook) {
-			hooks.add(hook);
-			let unsubscribed = false;
-			return () => {
-				if (unsubscribed) return;
-				unsubscribed = true;
-				hooks.delete(hook);
-			};
-		},
-		async resume(_snapshot) {
-			return defaultPolicy;
-		}
-	};
-}
-//#endregion
-//#region src/tools/tools.ts
-function defineTool(definition) {
-	return {
-		kind: "tool",
-		...definition
-	};
-}
-async function runTool(tool, input, context = {}) {
-	const validation = await validateSchemaOutput(tool.name, tool.inputSchema, input);
-	if (!validation.ok) throw new Error(`Invalid input for tool "${tool.name}".`);
-	const callId = createToolCallId();
-	const output = await tool.execute(validation.value, context);
-	return {
-		callId,
-		toolName: tool.name,
-		artifact: artifact.toolResult(output, {
-			id: `artifact:tool-result:${tool.name}:${callId}`,
-			toolName: tool.name,
-			callId
-		})
-	};
-}
-async function importMcpTools(client, toolNames) {
-	const descriptors = await Promise.resolve(client.listTools?.() ?? []);
-	const allowed = toolNames === void 0 ? void 0 : new Set(toolNames);
-	return descriptors.filter((descriptor) => allowed === void 0 || allowed.has(descriptor.name)).map((descriptor) => defineTool({
-		name: descriptor.name,
-		...descriptor.description !== void 0 ? { description: descriptor.description } : {},
-		inputSchema: descriptor.inputSchema,
-		execute: async (input) => client.callTool({
-			name: descriptor.name,
-			arguments: input
-		})
-	}));
-}
-function toolArtifactRef(result) {
-	const { value: _value, ...ref } = result.artifact;
-	return ref;
-}
-function createToolCallId() {
-	if (typeof crypto !== "undefined" && typeof crypto.randomUUID === "function") return crypto.randomUUID();
-	return `${Date.now()}:${Math.random().toString(16).slice(2)}`;
-}
 //#endregion
 //#region src/agent/host.ts
 /**
@@ -1028,6 +473,7 @@ const ZERO_USAGE = {
 	completionTokens: 0,
 	costUsd: null
 };
+const DEFAULT_AGENT_OUTPUTS = { answer: "text" };
 /**
 * Resolves the runtime's behaviour for a single `ai.runAgent(intent)` call.
 *
@@ -1073,6 +519,8 @@ async function runAgentInternal(intent, config = {}, internalOptions = {}) {
 		content: intent.task
 	}];
 	const handle = formatToolsForProvider(providerName, intent.tools);
+	const outputContracts = intent.outputs ?? DEFAULT_AGENT_OUTPUTS;
+	const outputNames = Object.keys(outputContracts);
 	const budget = intent.contract?.budget;
 	const maxIterations = budget?.maxIterations ?? Number.POSITIVE_INFINITY;
 	const maxWallTimeMs = budget?.maxWallTimeMs ?? Number.POSITIVE_INFINITY;
@@ -1166,7 +614,8 @@ async function runAgentInternal(intent, config = {}, internalOptions = {}) {
 			const providerRequest = {
 				task,
 				artifacts: [],
-				outputs: ["answer"],
+				outputs: outputNames,
+				outputContracts,
 				...intent.policy !== void 0 ? { policy: intent.policy } : {}
 			};
 			response = host.transport !== void 0 ? await host.transport.call(provider, providerRequest) : await provider.execute(providerRequest);
@@ -1212,11 +661,19 @@ async function runAgentInternal(intent, config = {}, internalOptions = {}) {
 				timestamp: (/* @__PURE__ */ new Date()).toISOString(),
 				previousStepName: `agent-iteration-${iterationIndex}-before`
 			});
+			const outputValidation = await validateOutputMapValues(outputContracts, response.rawOutputs);
+			if (!outputValidation.ok) return buildFailure({
+				kind: "validation",
+				reason: outputValidation.error.message,
+				cause: outputValidation.error,
+				iterations,
+				usage: cumulativeUsage
+			});
 			await host.storage?.clear();
 			const artifactRefs = response.artifactRefs !== void 0 ? response.artifactRefs.map(toArtifactRef) : [];
 			return {
 				kind: "success",
-				output: { answer: responseText },
+				output: outputValidation.outputs,
 				...artifactRefs.length > 0 ? { artifacts: artifactRefs } : {},
 				usage: snapshotUsage(cumulativeUsage),
 				iterations: Object.freeze([...iterations])
@@ -1387,6 +844,6 @@ function stableHash(input) {
 	}
 }
 //#endregion
-export { decodeEnvelope as C, artifact as D, createHookPipeline as E, isArtifactRef as O, buildPae as S, BAND as T, STEP_TRANSITION_EVENT_NAME as _, createNoopAgentHost as a, PAYLOAD_TYPE as b, runTool as c, validateOutputMap as d, validateSchemaOutput as f, DEFAULT_CHECKPOINT_BAND as g, toolSchemaToJsonSchema as h, AgentDeniedError as i, toArtifactRef as k, toolArtifactRef as l, parseToolUseEnvelope as m, runAgentInternal as n, defineTool as o, formatToolsForProvider as p, runtime_exports as r, importMcpTools as s, runAgent as t, createNoopSurvivabilityAdapter as u, createCheckpointHook as v, canonicalizeReceiptBody as w, base64Encode as x, createReceipt as y };
+export { createNoopAgentHost as a, createNoopSurvivabilityAdapter as c, createCheckpointHook as d, BAND as f, AgentDeniedError as i, DEFAULT_CHECKPOINT_BAND as l, runAgentInternal as n, formatToolsForProvider as o, createHookPipeline as p, runtime_exports as r, toolSchemaToJsonSchema as s, runAgent as t, STEP_TRANSITION_EVENT_NAME as u };
 
-//# sourceMappingURL=runtime-D25ehzCj.js.map
+//# sourceMappingURL=runtime-Dxiet5YS.js.map