@getstackrun/sdk 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 STACK (getstack.run)
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,119 @@
+# @getstackrun/sdk
+
+Official JavaScript / TypeScript SDK for [STACK](https://getstack.run) — the runtime security layer for AI agents.
+
+> This package is also the target for our `@getstack/sdk` scope claim (pending). Once settled, `@getstackrun/sdk` will be deprecated with a pointer to the new name.
+
+STACK sits between your agent and everything it touches. Short-lived, scoped passports replace long-lived API keys. Every outbound call routes through a proxy that enforces scope and parameter constraints. A hash-chained audit log records every decision. A single call kills any passport globally in under 60 seconds.
+
+## Install
+
+```bash
+npm install @getstackrun/sdk
+```
+
+Requires Node.js 18 or newer. Works in Deno, Bun, and browsers via native `fetch`.
+
+## Quick start
+
+```ts
+import { Stack } from '@getstackrun/sdk';
+
+const stack = new Stack({ apiKey: process.env.STACK_API_KEY! });
+
+// 1. Register an agent
+const agent = await stack.agents.register({ name: 'support-bot' });
+
+// 2. Issue a short-lived scoped passport
+const passport = await stack.passports.issue({
+  agent_id: agent.id,
+  intent: {
+    summary: 'Answer one customer ticket',
+    services: ['slack', 'github'],
+    estimated_duration_seconds: 900,
+  },
+  ttl_seconds: 900,
+});
+
+// 3. Every outbound call routes through the proxy
+await stack.proxy.request({
+  service: 'slack',
+  method: 'POST',
+  url: 'https://slack.com/api/chat.postMessage',
+  body: { channel: 'C0123', text: 'Ticket resolved' },
+  passport_token: passport.token,
+});
+
+// 4. Revoke when done (or let the passport expire)
+await stack.passports.revoke(passport.jti, 'mission complete');
+```
+
+## Offline passport verification
+
+Downstream services that only need cryptographic validity (no revocation awareness) can verify a passport using the public JWKS — no network round-trip to STACK per request.
+
+```ts
+import { verifyPassportOffline } from '@getstackrun/sdk';
+
+// Mode 1: fetch JWKS once per process
+const claims = await verifyPassportOffline(token, {
+  jwksUrl: 'https://api.getstack.run/v1/.well-known/jwks.json',
+});
+
+// Mode 2: fully air-gapped with a pre-fetched public key
+const claims2 = await verifyPassportOffline(token, {
+  publicJwk: { kty: 'OKP', crv: 'Ed25519', x: '...', kid: 'stack-passport-v1', alg: 'EdDSA', use: 'sig' },
+});
+```
+
+For revocation-aware verdicts, combine with a short cache against `POST /v1/passports/verify` or subscribe to the `stack:revoked` Redis pub/sub channel.
+
+## What the SDK wraps
+
+| Service | Typical use |
+|---|---|
+| `stack.agents` | Register, list, update, delete agents |
+| `stack.passports` | Issue, verify, delegate, refresh, revoke |
+| `stack.services` | Connect OAuth / custom credentials, grant agent access |
+| `stack.credentials` | Retrieve decrypted credentials (agent-side) |
+| `stack.proxy` | Make outbound HTTP calls; scope + constraints enforced server-side |
+| `stack.dropoffs` | Schema-validated, encrypted agent-to-agent data transfer |
+| `stack.skills` | Publish + invoke marketplace skills |
+| `stack.identity` | Verification sessions, claims, providers |
+| `stack.team` | Team members, roles, scoped API keys |
+| `stack.deliveryMethods` | Email, SMS, webhook destinations |
+| `stack.notifications` | Rules mapping events to destinations |
+| `stack.securityEvents` | List, resolve real-time detector signals |
+
+A handful of endpoints (audit export, chain-head, verify-chain, billing) are not yet wrapped — call them via `fetch` using the same API key. See [docs/api](https://getstack.run/docs).
+
+## Error handling
+
+Every error is a `StackError` subclass with a stable machine code.
+
+```ts
+import { Stack, StackError, PassportRevokedError, InsufficientCreditsError } from '@getstackrun/sdk';
+
+try {
+  await stack.passports.verify(token);
+} catch (err) {
+  if (err instanceof PassportRevokedError) {
+    // issue a fresh passport
+  } else if (err instanceof StackError) {
+    console.error(err.code, err.statusCode, err.message);
+  }
+}
+```
+
+Full catalog: [docs/reference/errors](https://getstack.run/docs/reference/errors).
+
+## Documentation
+
+- Getting started: https://getstack.run/docs/getting-started
+- Concepts: https://getstack.run/docs/concepts/passports
+- API reference: https://getstack.run/docs/api/passports
+- MCP tools (alternative to the SDK): https://getstack.run/docs/mcp-tools
+
+## License
+
+MIT

package/dist/client.d.ts

@@ -0,0 +1,16 @@
+export interface ClientOptions {
+    apiKey: string;
+    baseUrl?: string;
+}
+export declare class HttpClient {
+    private readonly apiKey;
+    private readonly baseUrl;
+    constructor(options: ClientOptions);
+    get<T>(path: string, query?: Record<string, string | undefined>): Promise<T>;
+    post<T>(path: string, body?: unknown): Promise<T>;
+    patch<T>(path: string, body?: unknown): Promise<T>;
+    delete<T>(path: string): Promise<T>;
+    private buildUrl;
+    private request;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,qBAAa,UAAU;IACrB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;gBAErB,OAAO,EAAE,aAAa;IAK5B,GAAG,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,SAAS,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;IAK5E,IAAI,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;IAKjD,KAAK,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC;IAKlD,MAAM,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC;IAKzC,OAAO,CAAC,QAAQ;YAUF,OAAO;CAgCtB"}

package/dist/client.js

@@ -0,0 +1,65 @@
+import { StackError } from './errors.js';
+export class HttpClient {
+    apiKey;
+    baseUrl;
+    constructor(options) {
+        this.apiKey = options.apiKey;
+        this.baseUrl = (options.baseUrl ?? 'https://api.getstack.run').replace(/\/$/, '');
+    }
+    async get(path, query) {
+        const url = this.buildUrl(path, query);
+        return this.request('GET', url);
+    }
+    async post(path, body) {
+        const url = this.buildUrl(path);
+        return this.request('POST', url, body);
+    }
+    async patch(path, body) {
+        const url = this.buildUrl(path);
+        return this.request('PATCH', url, body);
+    }
+    async delete(path) {
+        const url = this.buildUrl(path);
+        return this.request('DELETE', url);
+    }
+    buildUrl(path, query) {
+        const url = new URL(path, this.baseUrl);
+        if (query) {
+            for (const [key, value] of Object.entries(query)) {
+                if (value !== undefined)
+                    url.searchParams.set(key, value);
+            }
+        }
+        return url.toString();
+    }
+    async request(method, url, body) {
+        const headers = {
+            'Authorization': `Bearer ${this.apiKey}`,
+            'Accept': 'application/json',
+        };
+        if (body !== undefined) {
+            headers['Content-Type'] = 'application/json';
+        }
+        const res = await fetch(url, {
+            method,
+            headers,
+            body: body !== undefined ? JSON.stringify(body) : undefined,
+        });
+        if (!res.ok) {
+            let errorBody = {};
+            try {
+                errorBody = await res.json();
+            }
+            catch {
+                // ignore parse errors
+            }
+            const message = errorBody.error?.message ?? errorBody.message ?? res.statusText;
+            const code = errorBody.error?.code ?? `HTTP_${res.status}`;
+            throw new StackError(message, code, res.status, errorBody);
+        }
+        if (res.status === 204)
+            return undefined;
+        return res.json();
+    }
+}
+//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAOzC,MAAM,OAAO,UAAU;IACJ,MAAM,CAAS;IACf,OAAO,CAAS;IAEjC,YAAY,OAAsB;QAChC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,OAAO,GAAG,CAAC,OAAO,CAAC,OAAO,IAAI,0BAA0B,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACpF,CAAC;IAED,KAAK,CAAC,GAAG,CAAI,IAAY,EAAE,KAA0C;QACnE,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;QACvC,OAAO,IAAI,CAAC,OAAO,CAAI,KAAK,EAAE,GAAG,CAAC,CAAC;IACrC,CAAC;IAED,KAAK,CAAC,IAAI,CAAI,IAAY,EAAE,IAAc;QACxC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC,OAAO,CAAI,MAAM,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;IAC5C,CAAC;IAED,KAAK,CAAC,KAAK,CAAI,IAAY,EAAE,IAAc;QACzC,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC,OAAO,CAAI,OAAO,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;IAC7C,CAAC;IAED,KAAK,CAAC,MAAM,CAAI,IAAY;QAC1B,MAAM,GAAG,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC,OAAO,CAAI,QAAQ,EAAE,GAAG,CAAC,CAAC;IACxC,CAAC;IAEO,QAAQ,CAAC,IAAY,EAAE,KAA0C;QACvE,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,IAAI,KAAK,EAAE,CAAC;YACV,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBACjD,IAAI,KAAK,KAAK,SAAS;oBAAE,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;YAC5D,CAAC;QACH,CAAC;QACD,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;IACxB,CAAC;IAEO,KAAK,CAAC,OAAO,CAAI,MAAc,EAAE,GAAW,EAAE,IAAc;QAClE,MAAM,OAAO,GAA2B;YACtC,eAAe,EAAE,UAAU,IAAI,CAAC,MAAM,EAAE;YACxC,QAAQ,EAAE,kBAAkB;SAC7B,CAAC;QAEF,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACvB,OAAO,CAAC,cAAc,CAAC,GAAG,kBAAkB,CAAC;QAC/C,CAAC;QAED,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAC3B,MAAM;YACN,OAAO;YACP,IAAI,EAAE,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;SAC5D,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,IAAI,SAAS,GAAsE,EAAE,CAAC;YACtF,IAAI,CAAC;gBACH,SAAS,GAAG,MAAM,GAAG,CAAC,IAAI,EAAsB,CAAC;YACnD,CAAC;YAAC,MAAM,CAAC;gBACP,sBAAsB;YACxB,CAAC;YAED,MAAM,OAAO,GAAG,SAAS,CAAC,KAAK,EAAE,OAAO,IAAI,SAAS,CAAC,OAAO,IAAI,GAAG,CAAC,UAAU,CAAC;YAChF,MAAM,IAAI,GAAG,SAAS,CAAC,KAAK,EAAE,IAAI,IAAI,QAAQ,GAAG,CAAC,MAAM,EAAE,CAAC;YAC3D,MAAM,IAAI,UAAU,CAAC,OAAO,EAAE,IAAI,EAAE,GAAG,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QAC7D,CAAC;QAED,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG;YAAE,OAAO,SAAc,CAAC;QAC9C,OAAO,GAAG,CAAC,IAAI,EAAgB,CAAC;IAClC,CAAC;CACF"}

package/dist/errors.d.ts

@@ -0,0 +1,16 @@
+export declare class StackError extends Error {
+    readonly code: string;
+    readonly status: number;
+    readonly details?: unknown | undefined;
+    constructor(message: string, code: string, status: number, details?: unknown | undefined);
+}
+export declare class NotFoundError extends StackError {
+    constructor(resource: string, id: string);
+}
+export declare class ForbiddenError extends StackError {
+    constructor(message?: string);
+}
+export declare class ValidationError extends StackError {
+    constructor(message: string, details?: unknown);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,qBAAa,UAAW,SAAQ,KAAK;aAGjB,IAAI,EAAE,MAAM;aACZ,MAAM,EAAE,MAAM;aACd,OAAO,CAAC,EAAE,OAAO;gBAHjC,OAAO,EAAE,MAAM,EACC,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE,OAAO,YAAA;CAKpC;AAED,qBAAa,aAAc,SAAQ,UAAU;gBAC/B,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM;CAIzC;AAED,qBAAa,cAAe,SAAQ,UAAU;gBAChC,OAAO,SAAc;CAIlC;AAED,qBAAa,eAAgB,SAAQ,UAAU;gBACjC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,OAAO;CAI/C"}

package/dist/errors.js

@@ -0,0 +1,31 @@
+export class StackError extends Error {
+    code;
+    status;
+    details;
+    constructor(message, code, status, details) {
+        super(message);
+        this.code = code;
+        this.status = status;
+        this.details = details;
+        this.name = 'StackError';
+    }
+}
+export class NotFoundError extends StackError {
+    constructor(resource, id) {
+        super(`${resource} ${id} not found`, 'NOT_FOUND', 404);
+        this.name = 'NotFoundError';
+    }
+}
+export class ForbiddenError extends StackError {
+    constructor(message = 'Forbidden') {
+        super(message, 'FORBIDDEN', 403);
+        this.name = 'ForbiddenError';
+    }
+}
+export class ValidationError extends StackError {
+    constructor(message, details) {
+        super(message, 'VALIDATION_ERROR', 400, details);
+        this.name = 'ValidationError';
+    }
+}
+//# sourceMappingURL=errors.js.map

package/dist/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAAA,MAAM,OAAO,UAAW,SAAQ,KAAK;IAGjB;IACA;IACA;IAJlB,YACE,OAAe,EACC,IAAY,EACZ,MAAc,EACd,OAAiB;QAEjC,KAAK,CAAC,OAAO,CAAC,CAAC;QAJC,SAAI,GAAJ,IAAI,CAAQ;QACZ,WAAM,GAAN,MAAM,CAAQ;QACd,YAAO,GAAP,OAAO,CAAU;QAGjC,IAAI,CAAC,IAAI,GAAG,YAAY,CAAC;IAC3B,CAAC;CACF;AAED,MAAM,OAAO,aAAc,SAAQ,UAAU;IAC3C,YAAY,QAAgB,EAAE,EAAU;QACtC,KAAK,CAAC,GAAG,QAAQ,IAAI,EAAE,YAAY,EAAE,WAAW,EAAE,GAAG,CAAC,CAAC;QACvD,IAAI,CAAC,IAAI,GAAG,eAAe,CAAC;IAC9B,CAAC;CACF;AAED,MAAM,OAAO,cAAe,SAAQ,UAAU;IAC5C,YAAY,OAAO,GAAG,WAAW;QAC/B,KAAK,CAAC,OAAO,EAAE,WAAW,EAAE,GAAG,CAAC,CAAC;QACjC,IAAI,CAAC,IAAI,GAAG,gBAAgB,CAAC;IAC/B,CAAC;CACF;AAED,MAAM,OAAO,eAAgB,SAAQ,UAAU;IAC7C,YAAY,OAAe,EAAE,OAAiB;QAC5C,KAAK,CAAC,OAAO,EAAE,kBAAkB,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;QACjD,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;IAChC,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,34 @@
+import { type ClientOptions } from './client.js';
+import { AgentService } from './services/agents.js';
+import { PassportService } from './services/passports.js';
+import { ServiceService } from './services/services.js';
+import { CredentialService } from './services/credentials.js';
+import { DropoffService } from './services/dropoffs.js';
+import { SkillService } from './services/skills.js';
+import { IdentityService } from './services/identity.js';
+import { TeamService } from './services/team.js';
+import { DeliveryMethodService } from './services/delivery-methods.js';
+import { NotificationService } from './services/notifications.js';
+import { SecurityEventService } from './services/security-events.js';
+import { ProxyService } from './services/proxy.js';
+export declare class Stack {
+    private readonly client;
+    readonly agents: AgentService;
+    readonly passports: PassportService;
+    readonly services: ServiceService;
+    readonly credentials: CredentialService;
+    readonly dropoffs: DropoffService;
+    readonly skills: SkillService;
+    readonly identity: IdentityService;
+    readonly team: TeamService;
+    readonly deliveryMethods: DeliveryMethodService;
+    readonly notifications: NotificationService;
+    readonly securityEvents: SecurityEventService;
+    readonly proxy: ProxyService;
+    constructor(options: ClientOptions);
+}
+export type { ClientOptions } from './client.js';
+export * from './types.js';
+export * from './errors.js';
+export { verifyPassportOffline, type VerifiedPassportClaims, type VerifyOfflineOptions, } from './verify-offline.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAc,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,MAAM,6BAA6B,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AACrE,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,qBAAa,KAAK;IAChB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAa;IAEpC,QAAQ,CAAC,MAAM,EAAE,YAAY,CAAC;IAC9B,QAAQ,CAAC,SAAS,EAAE,eAAe,CAAC;IACpC,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAC;IAClC,QAAQ,CAAC,WAAW,EAAE,iBAAiB,CAAC;IACxC,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAC;IAClC,QAAQ,CAAC,MAAM,EAAE,YAAY,CAAC;IAC9B,QAAQ,CAAC,QAAQ,EAAE,eAAe,CAAC;IACnC,QAAQ,CAAC,IAAI,EAAE,WAAW,CAAC;IAC3B,QAAQ,CAAC,eAAe,EAAE,qBAAqB,CAAC;IAChD,QAAQ,CAAC,aAAa,EAAE,mBAAmB,CAAC;IAC5C,QAAQ,CAAC,cAAc,EAAE,oBAAoB,CAAC;IAC9C,QAAQ,CAAC,KAAK,EAAE,YAAY,CAAC;gBAEjB,OAAO,EAAE,aAAa;CAenC;AAGD,YAAY,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AACjD,cAAc,YAAY,CAAC;AAC3B,cAAc,aAAa,CAAC;AAK5B,OAAO,EACL,qBAAqB,EACrB,KAAK,sBAAsB,EAC3B,KAAK,oBAAoB,GAC1B,MAAM,qBAAqB,CAAC"}

package/dist/index.js

@@ -0,0 +1,50 @@
+import { HttpClient } from './client.js';
+import { AgentService } from './services/agents.js';
+import { PassportService } from './services/passports.js';
+import { ServiceService } from './services/services.js';
+import { CredentialService } from './services/credentials.js';
+import { DropoffService } from './services/dropoffs.js';
+import { SkillService } from './services/skills.js';
+import { IdentityService } from './services/identity.js';
+import { TeamService } from './services/team.js';
+import { DeliveryMethodService } from './services/delivery-methods.js';
+import { NotificationService } from './services/notifications.js';
+import { SecurityEventService } from './services/security-events.js';
+import { ProxyService } from './services/proxy.js';
+export class Stack {
+    client;
+    agents;
+    passports;
+    services;
+    credentials;
+    dropoffs;
+    skills;
+    identity;
+    team;
+    deliveryMethods;
+    notifications;
+    securityEvents;
+    proxy;
+    constructor(options) {
+        this.client = new HttpClient(options);
+        this.agents = new AgentService(this.client);
+        this.passports = new PassportService(this.client);
+        this.services = new ServiceService(this.client);
+        this.credentials = new CredentialService(this.client);
+        this.dropoffs = new DropoffService(this.client);
+        this.skills = new SkillService(this.client);
+        this.identity = new IdentityService(this.client);
+        this.team = new TeamService(this.client);
+        this.deliveryMethods = new DeliveryMethodService(this.client);
+        this.notifications = new NotificationService(this.client);
+        this.securityEvents = new SecurityEventService(this.client);
+        this.proxy = new ProxyService(this.client);
+    }
+}
+export * from './types.js';
+export * from './errors.js';
+// Offline passport verification — public-key crypto only, no network to
+// the STACK API. Pair with a cache against /v1/passports/verify if you
+// also need revocation-aware verdicts.
+export { verifyPassportOffline, } from './verify-offline.js';
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAsB,MAAM,aAAa,CAAC;AAC7D,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,iBAAiB,EAAE,MAAM,2BAA2B,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,MAAM,6BAA6B,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,MAAM,+BAA+B,CAAC;AACrE,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,MAAM,OAAO,KAAK;IACC,MAAM,CAAa;IAE3B,MAAM,CAAe;IACrB,SAAS,CAAkB;IAC3B,QAAQ,CAAiB;IACzB,WAAW,CAAoB;IAC/B,QAAQ,CAAiB;IACzB,MAAM,CAAe;IACrB,QAAQ,CAAkB;IAC1B,IAAI,CAAc;IAClB,eAAe,CAAwB;IACvC,aAAa,CAAsB;IACnC,cAAc,CAAuB;IACrC,KAAK,CAAe;IAE7B,YAAY,OAAsB;QAChC,IAAI,CAAC,MAAM,GAAG,IAAI,UAAU,CAAC,OAAO,CAAC,CAAC;QACtC,IAAI,CAAC,MAAM,GAAG,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5C,IAAI,CAAC,SAAS,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAClD,IAAI,CAAC,QAAQ,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChD,IAAI,CAAC,WAAW,GAAG,IAAI,iBAAiB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACtD,IAAI,CAAC,QAAQ,GAAG,IAAI,cAAc,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChD,IAAI,CAAC,MAAM,GAAG,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5C,IAAI,CAAC,QAAQ,GAAG,IAAI,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjD,IAAI,CAAC,IAAI,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACzC,IAAI,CAAC,eAAe,GAAG,IAAI,qBAAqB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC9D,IAAI,CAAC,aAAa,GAAG,IAAI,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1D,IAAI,CAAC,cAAc,GAAG,IAAI,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC5D,IAAI,CAAC,KAAK,GAAG,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC7C,CAAC;CACF;AAID,cAAc,YAAY,CAAC;AAC3B,cAAc,aAAa,CAAC;AAE5B,wEAAwE;AACxE,uEAAuE;AACvE,uCAAuC;AACvC,OAAO,EACL,qBAAqB,GAGtB,MAAM,qBAAqB,CAAC"}

package/dist/services/agents.d.ts

@@ -0,0 +1,18 @@
+import type { HttpClient } from '../client.js';
+import type { Agent, RegisterAgentInput, UpdateAgentInput } from '../types.js';
+export declare class AgentService {
+    private client;
+    constructor(client: HttpClient);
+    register(input: RegisterAgentInput): Promise<Agent>;
+    list(): Promise<Agent[]>;
+    get(id: string): Promise<Agent>;
+    update(id: string, input: UpdateAgentInput): Promise<Agent>;
+    delete(id: string): Promise<{
+        deleted: boolean;
+    }>;
+    unblock(id: string): Promise<{
+        unblocked: boolean;
+    }>;
+    getPermissions(agentId: string): Promise<unknown>;
+}
+//# sourceMappingURL=agents.d.ts.map

package/dist/services/agents.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"agents.d.ts","sourceRoot":"","sources":["../../src/services/agents.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,KAAK,EAAE,KAAK,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAE/E,qBAAa,YAAY;IACX,OAAO,CAAC,MAAM;gBAAN,MAAM,EAAE,UAAU;IAEhC,QAAQ,CAAC,KAAK,EAAE,kBAAkB,GAAG,OAAO,CAAC,KAAK,CAAC;IAInD,IAAI,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;IAIxB,GAAG,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC;IAI/B,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,gBAAgB,GAAG,OAAO,CAAC,KAAK,CAAC;IAI3D,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAIjD,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,SAAS,EAAE,OAAO,CAAA;KAAE,CAAC;IAIpD,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;CAGxD"}

package/dist/services/agents.js

@@ -0,0 +1,28 @@
+export class AgentService {
+    client;
+    constructor(client) {
+        this.client = client;
+    }
+    async register(input) {
+        return this.client.post('/v1/agents/register', input);
+    }
+    async list() {
+        return this.client.get('/v1/agents');
+    }
+    async get(id) {
+        return this.client.get(`/v1/agents/${id}`);
+    }
+    async update(id, input) {
+        return this.client.patch(`/v1/agents/${id}`, input);
+    }
+    async delete(id) {
+        return this.client.delete(`/v1/agents/${id}`);
+    }
+    async unblock(id) {
+        return this.client.post(`/v1/agents/${id}/unblock`);
+    }
+    async getPermissions(agentId) {
+        return this.client.get(`/v1/agents/${agentId}/permissions`);
+    }
+}
+//# sourceMappingURL=agents.js.map

package/dist/services/agents.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agents.js","sourceRoot":"","sources":["../../src/services/agents.ts"],"names":[],"mappings":"AAGA,MAAM,OAAO,YAAY;IACH;IAApB,YAAoB,MAAkB;QAAlB,WAAM,GAAN,MAAM,CAAY;IAAG,CAAC;IAE1C,KAAK,CAAC,QAAQ,CAAC,KAAyB;QACtC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAQ,qBAAqB,EAAE,KAAK,CAAC,CAAC;IAC/D,CAAC;IAED,KAAK,CAAC,IAAI;QACR,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAU,YAAY,CAAC,CAAC;IAChD,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,EAAU;QAClB,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAQ,cAAc,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU,EAAE,KAAuB;QAC9C,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAQ,cAAc,EAAE,EAAE,EAAE,KAAK,CAAC,CAAC;IAC7D,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU;QACrB,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAuB,cAAc,EAAE,EAAE,CAAC,CAAC;IACtE,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU;QACtB,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAyB,cAAc,EAAE,UAAU,CAAC,CAAC;IAC9E,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,OAAe;QAClC,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,cAAc,OAAO,cAAc,CAAC,CAAC;IAC9D,CAAC;CACF"}

package/dist/services/credentials.d.ts

@@ -0,0 +1,9 @@
+import type { HttpClient } from '../client.js';
+import type { CredentialResult } from '../types.js';
+export declare class CredentialService {
+    private client;
+    constructor(client: HttpClient);
+    get(provider: string): Promise<CredentialResult>;
+    getByConnection(connectionId: string): Promise<CredentialResult>;
+}
+//# sourceMappingURL=credentials.d.ts.map

package/dist/services/credentials.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"credentials.d.ts","sourceRoot":"","sources":["../../src/services/credentials.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,qBAAa,iBAAiB;IAChB,OAAO,CAAC,MAAM;gBAAN,MAAM,EAAE,UAAU;IAEhC,GAAG,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAIhD,eAAe,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,CAAC;CAGvE"}

package/dist/services/credentials.js

@@ -0,0 +1,13 @@
+export class CredentialService {
+    client;
+    constructor(client) {
+        this.client = client;
+    }
+    async get(provider) {
+        return this.client.get(`/v1/credentials/${provider}`);
+    }
+    async getByConnection(connectionId) {
+        return this.client.get(`/v1/credentials/by-connection/${connectionId}`);
+    }
+}
+//# sourceMappingURL=credentials.js.map

package/dist/services/credentials.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credentials.js","sourceRoot":"","sources":["../../src/services/credentials.ts"],"names":[],"mappings":"AAGA,MAAM,OAAO,iBAAiB;IACR;IAApB,YAAoB,MAAkB;QAAlB,WAAM,GAAN,MAAM,CAAY;IAAG,CAAC;IAE1C,KAAK,CAAC,GAAG,CAAC,QAAgB;QACxB,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAmB,mBAAmB,QAAQ,EAAE,CAAC,CAAC;IAC1E,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,YAAoB;QACxC,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAmB,iCAAiC,YAAY,EAAE,CAAC,CAAC;IAC5F,CAAC;CACF"}

package/dist/services/delivery-methods.d.ts

@@ -0,0 +1,23 @@
+import type { HttpClient } from '../client.js';
+import type { DeliveryMethod, AddDeliveryMethodInput } from '../types.js';
+export declare class DeliveryMethodService {
+    private client;
+    constructor(client: HttpClient);
+    add(input: AddDeliveryMethodInput): Promise<DeliveryMethod>;
+    list(): Promise<DeliveryMethod[]>;
+    delete(id: string): Promise<{
+        deleted: boolean;
+    }>;
+    sendVerificationCode(id: string): Promise<{
+        sent: boolean;
+    }>;
+    verify(id: string, code: string): Promise<{
+        verified: boolean;
+        error?: string;
+    }>;
+    test(id: string): Promise<{
+        sent: boolean;
+        error?: string;
+    }>;
+}
+//# sourceMappingURL=delivery-methods.d.ts.map

package/dist/services/delivery-methods.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery-methods.d.ts","sourceRoot":"","sources":["../../src/services/delivery-methods.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,KAAK,EAAE,cAAc,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAE1E,qBAAa,qBAAqB;IACpB,OAAO,CAAC,MAAM;gBAAN,MAAM,EAAE,UAAU;IAEhC,GAAG,CAAC,KAAK,EAAE,sBAAsB,GAAG,OAAO,CAAC,cAAc,CAAC;IAI3D,IAAI,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;IAIjC,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAIjD,oBAAoB,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,IAAI,EAAE,OAAO,CAAA;KAAE,CAAC;IAI5D,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,QAAQ,EAAE,OAAO,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAIhF,IAAI,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,IAAI,EAAE,OAAO,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;CAGnE"}

package/dist/services/delivery-methods.js

@@ -0,0 +1,25 @@
+export class DeliveryMethodService {
+    client;
+    constructor(client) {
+        this.client = client;
+    }
+    async add(input) {
+        return this.client.post('/v1/notifications/destinations', input);
+    }
+    async list() {
+        return this.client.get('/v1/notifications/destinations');
+    }
+    async delete(id) {
+        return this.client.delete(`/v1/notifications/destinations/${id}`);
+    }
+    async sendVerificationCode(id) {
+        return this.client.post(`/v1/notifications/destinations/${id}/send-code`);
+    }
+    async verify(id, code) {
+        return this.client.post(`/v1/notifications/destinations/${id}/verify`, { code });
+    }
+    async test(id) {
+        return this.client.post(`/v1/notifications/destinations/${id}/test`);
+    }
+}
+//# sourceMappingURL=delivery-methods.js.map

package/dist/services/delivery-methods.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery-methods.js","sourceRoot":"","sources":["../../src/services/delivery-methods.ts"],"names":[],"mappings":"AAGA,MAAM,OAAO,qBAAqB;IACZ;IAApB,YAAoB,MAAkB;QAAlB,WAAM,GAAN,MAAM,CAAY;IAAG,CAAC;IAE1C,KAAK,CAAC,GAAG,CAAC,KAA6B;QACrC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAiB,gCAAgC,EAAE,KAAK,CAAC,CAAC;IACnF,CAAC;IAED,KAAK,CAAC,IAAI;QACR,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAmB,gCAAgC,CAAC,CAAC;IAC7E,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU;QACrB,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAuB,kCAAkC,EAAE,EAAE,CAAC,CAAC;IAC1F,CAAC;IAED,KAAK,CAAC,oBAAoB,CAAC,EAAU;QACnC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,kCAAkC,EAAE,YAAY,CAAC,CAAC;IAC5E,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU,EAAE,IAAY;QACnC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,kCAAkC,EAAE,SAAS,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;IACnF,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,EAAU;QACnB,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,kCAAkC,EAAE,OAAO,CAAC,CAAC;IACvE,CAAC;CACF"}

package/dist/services/dropoffs.d.ts

@@ -0,0 +1,15 @@
+import type { HttpClient } from '../client.js';
+import type { Dropoff, CreateDropoffInput } from '../types.js';
+export declare class DropoffService {
+    private client;
+    constructor(client: HttpClient);
+    create(input: CreateDropoffInput): Promise<Dropoff>;
+    deposit(id: string, agentId: string, payload: Record<string, unknown>): Promise<unknown>;
+    collect(id: string, agentId: string): Promise<{
+        payload: unknown;
+    }>;
+    get(id: string): Promise<Dropoff>;
+    list(): Promise<Dropoff[]>;
+    expire(id: string): Promise<unknown>;
+}
+//# sourceMappingURL=dropoffs.d.ts.map

package/dist/services/dropoffs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dropoffs.d.ts","sourceRoot":"","sources":["../../src/services/dropoffs.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,KAAK,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAE/D,qBAAa,cAAc;IACb,OAAO,CAAC,MAAM;gBAAN,MAAM,EAAE,UAAU;IAEhC,MAAM,CAAC,KAAK,EAAE,kBAAkB,GAAG,OAAO,CAAC,OAAO,CAAC;IAInD,OAAO,CAAC,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,OAAO,CAAC;IAIxF,OAAO,CAAC,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAInE,GAAG,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAIjC,IAAI,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IAI1B,MAAM,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;CAG3C"}

package/dist/services/dropoffs.js

@@ -0,0 +1,25 @@
+export class DropoffService {
+    client;
+    constructor(client) {
+        this.client = client;
+    }
+    async create(input) {
+        return this.client.post('/v1/dropoffs', input);
+    }
+    async deposit(id, agentId, payload) {
+        return this.client.post(`/v1/dropoffs/${id}/deposit`, { agent_id: agentId, payload });
+    }
+    async collect(id, agentId) {
+        return this.client.post(`/v1/dropoffs/${id}/collect`, { agent_id: agentId });
+    }
+    async get(id) {
+        return this.client.get(`/v1/dropoffs/${id}`);
+    }
+    async list() {
+        return this.client.get('/v1/dropoffs');
+    }
+    async expire(id) {
+        return this.client.post(`/v1/dropoffs/${id}/expire`);
+    }
+}
+//# sourceMappingURL=dropoffs.js.map

package/dist/services/dropoffs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dropoffs.js","sourceRoot":"","sources":["../../src/services/dropoffs.ts"],"names":[],"mappings":"AAGA,MAAM,OAAO,cAAc;IACL;IAApB,YAAoB,MAAkB;QAAlB,WAAM,GAAN,MAAM,CAAY;IAAG,CAAC;IAE1C,KAAK,CAAC,MAAM,CAAC,KAAyB;QACpC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAU,cAAc,EAAE,KAAK,CAAC,CAAC;IAC1D,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU,EAAE,OAAe,EAAE,OAAgC;QACzE,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,UAAU,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,CAAC;IACxF,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,EAAU,EAAE,OAAe;QACvC,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,UAAU,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;IAC/E,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,EAAU;QAClB,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAU,gBAAgB,EAAE,EAAE,CAAC,CAAC;IACxD,CAAC;IAED,KAAK,CAAC,IAAI;QACR,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAY,cAAc,CAAC,CAAC;IACpD,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,EAAU;QACrB,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,SAAS,CAAC,CAAC;IACvD,CAAC;CACF"}

package/dist/services/identity.d.ts

@@ -0,0 +1,24 @@
+import type { HttpClient } from '../client.js';
+import type { IdentityProvider, IdentityClaim, IdentitySettings, UpdateIdentitySettingsInput, InitiateVerificationInput, VerificationResult } from '../types.js';
+export declare class IdentityService {
+    private client;
+    constructor(client: HttpClient);
+    getSettings(): Promise<IdentitySettings>;
+    updateSettings(input: UpdateIdentitySettingsInput): Promise<IdentitySettings>;
+    listProviders(): Promise<IdentityProvider[]>;
+    initiateVerification(input: InitiateVerificationInput): Promise<VerificationResult>;
+    completeVerification(providerKey: string, sessionRef: string): Promise<unknown>;
+    grantDelegation(delegatedScopes: string[]): Promise<IdentityClaim>;
+    listClaims(): Promise<IdentityClaim[]>;
+    revokeClaim(id: string): Promise<{
+        success: boolean;
+    }>;
+    getServiceRequirements(serviceId: string): Promise<unknown>;
+    setServiceRequirement(serviceId: string, input: {
+        layer: string;
+        assurance_level: string;
+        requires_pii?: boolean;
+        lawful_basis?: string;
+    }): Promise<unknown>;
+}
+//# sourceMappingURL=identity.d.ts.map

package/dist/services/identity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.d.ts","sourceRoot":"","sources":["../../src/services/identity.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC/C,OAAO,KAAK,EACV,gBAAgB,EAChB,aAAa,EACb,gBAAgB,EAChB,2BAA2B,EAC3B,yBAAyB,EACzB,kBAAkB,EACnB,MAAM,aAAa,CAAC;AAErB,qBAAa,eAAe;IACd,OAAO,CAAC,MAAM;gBAAN,MAAM,EAAE,UAAU;IAEhC,WAAW,IAAI,OAAO,CAAC,gBAAgB,CAAC;IAIxC,cAAc,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAI7E,aAAa,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAI5C,oBAAoB,CAAC,KAAK,EAAE,yBAAyB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAInF,oBAAoB,CAAC,WAAW,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAO/E,eAAe,CAAC,eAAe,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,aAAa,CAAC;IAMlE,UAAU,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;IAItC,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;IAItD,sBAAsB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAI3D,qBAAqB,CAAC,SAAS,EAAE,MAAM,EAAE,KAAK,EAAE;QACpD,KAAK,EAAE,MAAM,CAAC;QACd,eAAe,EAAE,MAAM,CAAC;QACxB,YAAY,CAAC,EAAE,OAAO,CAAC;QACvB,YAAY,CAAC,EAAE,MAAM,CAAC;KACvB,GAAG,OAAO,CAAC,OAAO,CAAC;CAGrB"}