@gibs-dev/sdk 0.1.0

package/dist/cjs/types.d.ts

@@ -0,0 +1,163 @@
+/**
+ * TypeScript type definitions for the Gibs compliance API.
+ *
+ * All types mirror the backend Pydantic schemas exactly.
+ *
+ * @module types
+ */
+/** Risk classification levels under the EU AI Act. */
+export type RiskLevel = 'prohibited' | 'high' | 'limited' | 'minimal';
+/** Confidence levels for compliance answers. */
+export type ConfidenceLevel = 'high' | 'medium' | 'low';
+/** Supported regulation identifiers. */
+export type Regulation = 'ai_act' | 'gdpr' | 'both';
+/** A source citation linking a claim to a specific legal article. */
+export interface SourceCitation {
+    /** Article identifier, e.g., "ai_act_art6". */
+    article_id: string;
+    /** Article title. */
+    title: string;
+    /** Relevant excerpt from the article text. */
+    text_excerpt: string;
+    /** Relevance score between 0.0 and 1.0. */
+    relevance_score: number;
+}
+/** A compliance obligation the user must fulfill. */
+export interface Obligation {
+    /** Obligation identifier. */
+    id: string;
+    /** Human-readable description of what must be done. */
+    description: string;
+    /** Article that defines this obligation, e.g., "Article 9". */
+    source_article: string;
+    /** Compliance deadline in ISO 8601 format, or null if none. */
+    deadline: string | null;
+}
+/** API key metadata (never includes the full key value). */
+export interface KeyInfo {
+    /** Key database ID. */
+    id: number;
+    /** Human-readable key name. */
+    name: string;
+    /** First 13 characters of the key for identification. */
+    key_prefix: string;
+    /** Whether this is a test key. */
+    is_test: boolean;
+    /** ISO 8601 creation timestamp. */
+    created_at: string;
+    /** ISO 8601 last-used timestamp, or null if never used. */
+    last_used_at: string | null;
+    /** Total number of requests made with this key. */
+    request_count: number;
+}
+/** Request body for `POST /v1/classify`. */
+export interface ClassifyRequest {
+    /** Description of the AI system to classify. 10-5000 characters. */
+    description: string;
+    /** Types of data processed, e.g., ["biometric", "health"]. */
+    data_types?: string[];
+    /** What decisions the AI system makes or influences. */
+    decision_scope?: string;
+    /** Industry sector, e.g., "healthcare", "finance", "employment". */
+    sector?: string;
+    /** Target jurisdiction. Currently only "EU" is supported. */
+    jurisdiction?: string;
+}
+/** Response body for `POST /v1/classify`. */
+export interface ClassifyResponse {
+    /** AI Act risk classification. */
+    risk_level: RiskLevel;
+    /** Confidence in the classification (0.0 to 1.0). */
+    confidence: number;
+    /** Explanation of why this risk level applies. */
+    reasoning: string;
+    /** Required compliance obligations for this risk level. */
+    obligations: Obligation[];
+    /** Source citations supporting this classification. */
+    sources: SourceCitation[];
+    /** Unique request identifier for audit trail. */
+    request_id: string;
+    /** Version of the legal corpus used. */
+    corpus_version: string;
+    /** Processing time in milliseconds. */
+    processing_time_ms: number;
+}
+/** Request body for `POST /v1/check`. */
+export interface CheckRequest {
+    /** Compliance question to answer. 10-2000 characters. */
+    question: string;
+    /** Optional context about the AI system (key-value pairs). */
+    system_context?: Record<string, string>;
+    /** Which regulation to check: "ai_act", "gdpr", or "both". Defaults to "both". */
+    regulation?: Regulation;
+}
+/** Response body for `POST /v1/check`. */
+export interface CheckResponse {
+    /** Answer to the compliance question. */
+    answer: string;
+    /** Confidence level: "high", "medium", or "low". */
+    confidence: ConfidenceLevel;
+    /** Source citations supporting this answer. */
+    sources: SourceCitation[];
+    /** True if the sources don't contain enough information to answer. */
+    should_abstain: boolean;
+    /** Explanation of why the system abstained, if applicable. */
+    abstention_reason?: string | null;
+    /** Unique request identifier for audit trail. */
+    request_id: string;
+    /** Version of the legal corpus used. */
+    corpus_version: string;
+    /** Processing time in milliseconds. */
+    processing_time_ms: number;
+}
+/** Response body for `GET /v1/health`. */
+export interface HealthResponse {
+    /** Overall system status: "healthy", "degraded", or "unhealthy". */
+    status: string;
+    /** Environment name, e.g., "production" or "staging". */
+    environment: string;
+    /** Version of the legal corpus. */
+    corpus_version: string;
+    /** Status of individual components. */
+    components: Record<string, string>;
+}
+/** Request body for `POST /v1/account/keys`. */
+export interface CreateKeyRequest {
+    /** Human-readable name for the key. Defaults to "Default". */
+    name?: string;
+}
+/** Response body for `POST /v1/account/keys`. Full key shown only once. */
+export interface KeyCreatedResponse {
+    /** Key database ID. */
+    id: number;
+    /** Full API key value. Store securely -- it cannot be retrieved again. */
+    api_key: string;
+    /** First 13 characters of the key for identification. */
+    key_prefix: string;
+    /** Human-readable key name. */
+    name: string;
+    /** ISO 8601 creation timestamp. */
+    created_at: string;
+}
+/** Response body for `DELETE /v1/account/keys/{key_id}`. */
+export interface KeyDeletedResponse {
+    /** Status indicator. Always "revoked" on success. */
+    status: 'revoked';
+}
+/** Standard error response from the API. */
+export interface ErrorResponseBody {
+    /** Error message or detail string. */
+    detail: string;
+}
+/** Configuration options for the GibsClient. */
+export interface GibsClientOptions {
+    /** API key for authentication (e.g., "gbs_live_xxx"). Required. */
+    apiKey: string;
+    /** Base URL for the API. Defaults to "https://api.gibs.dev". */
+    baseUrl?: string;
+    /** Request timeout in milliseconds. Defaults to 120000 (120 seconds). */
+    timeout?: number;
+    /** Maximum number of retries on transient errors. Defaults to 3. */
+    maxRetries?: number;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/cjs/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAMH,sDAAsD;AACtD,MAAM,MAAM,SAAS,GAAG,YAAY,GAAG,MAAM,GAAG,SAAS,GAAG,SAAS,CAAC;AAEtE,gDAAgD;AAChD,MAAM,MAAM,eAAe,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;AAExD,wCAAwC;AACxC,MAAM,MAAM,UAAU,GAAG,QAAQ,GAAG,MAAM,GAAG,MAAM,CAAC;AAEpD,qEAAqE;AACrE,MAAM,WAAW,cAAc;IAC7B,+CAA+C;IAC/C,UAAU,EAAE,MAAM,CAAC;IACnB,qBAAqB;IACrB,KAAK,EAAE,MAAM,CAAC;IACd,8CAA8C;IAC9C,YAAY,EAAE,MAAM,CAAC;IACrB,2CAA2C;IAC3C,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,qDAAqD;AACrD,MAAM,WAAW,UAAU;IACzB,6BAA6B;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,uDAAuD;IACvD,WAAW,EAAE,MAAM,CAAC;IACpB,+DAA+D;IAC/D,cAAc,EAAE,MAAM,CAAC;IACvB,+DAA+D;IAC/D,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;CACzB;AAED,4DAA4D;AAC5D,MAAM,WAAW,OAAO;IACtB,uBAAuB;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,+BAA+B;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,yDAAyD;IACzD,UAAU,EAAE,MAAM,CAAC;IACnB,kCAAkC;IAClC,OAAO,EAAE,OAAO,CAAC;IACjB,mCAAmC;IACnC,UAAU,EAAE,MAAM,CAAC;IACnB,2DAA2D;IAC3D,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,mDAAmD;IACnD,aAAa,EAAE,MAAM,CAAC;CACvB;AAMD,4CAA4C;AAC5C,MAAM,WAAW,eAAe;IAC9B,oEAAoE;IACpE,WAAW,EAAE,MAAM,CAAC;IACpB,8DAA8D;IAC9D,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,wDAAwD;IACxD,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,oEAAoE;IACpE,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,6DAA6D;IAC7D,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED,6CAA6C;AAC7C,MAAM,WAAW,gBAAgB;IAC/B,kCAAkC;IAClC,UAAU,EAAE,SAAS,CAAC;IACtB,qDAAqD;IACrD,UAAU,EAAE,MAAM,CAAC;IACnB,kDAAkD;IAClD,SAAS,EAAE,MAAM,CAAC;IAClB,2DAA2D;IAC3D,WAAW,EAAE,UAAU,EAAE,CAAC;IAC1B,uDAAuD;IACvD,OAAO,EAAE,cAAc,EAAE,CAAC;IAC1B,iDAAiD;IACjD,UAAU,EAAE,MAAM,CAAC;IACnB,wCAAwC;IACxC,cAAc,EAAE,MAAM,CAAC;IACvB,uCAAuC;IACvC,kBAAkB,EAAE,MAAM,CAAC;CAC5B;AAMD,yCAAyC;AACzC,MAAM,WAAW,YAAY;IAC3B,yDAAyD;IACzD,QAAQ,EAAE,MAAM,CAAC;IACjB,8DAA8D;IAC9D,cAAc,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxC,kFAAkF;IAClF,UAAU,CAAC,EAAE,UAAU,CAAC;CACzB;AAED,0CAA0C;AAC1C,MAAM,WAAW,aAAa;IAC5B,yCAAyC;IACzC,MAAM,EAAE,MAAM,CAAC;IACf,oDAAoD;IACpD,UAAU,EAAE,eAAe,CAAC;IAC5B,+CAA+C;IAC/C,OAAO,EAAE,cAAc,EAAE,CAAC;IAC1B,sEAAsE;IACtE,cAAc,EAAE,OAAO,CAAC;IACxB,8DAA8D;IAC9D,iBAAiB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,iDAAiD;IACjD,UAAU,EAAE,MAAM,CAAC;IACnB,wCAAwC;IACxC,cAAc,EAAE,MAAM,CAAC;IACvB,uCAAuC;IACvC,kBAAkB,EAAE,MAAM,CAAC;CAC5B;AAMD,0CAA0C;AAC1C,MAAM,WAAW,cAAc;IAC7B,oEAAoE;IACpE,MAAM,EAAE,MAAM,CAAC;IACf,yDAAyD;IACzD,WAAW,EAAE,MAAM,CAAC;IACpB,mCAAmC;IACnC,cAAc,EAAE,MAAM,CAAC;IACvB,uCAAuC;IACvC,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACpC;AAMD,gDAAgD;AAChD,MAAM,WAAW,gBAAgB;IAC/B,8DAA8D;IAC9D,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,2EAA2E;AAC3E,MAAM,WAAW,kBAAkB;IACjC,uBAAuB;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,0EAA0E;IAC1E,OAAO,EAAE,MAAM,CAAC;IAChB,yDAAyD;IACzD,UAAU,EAAE,MAAM,CAAC;IACnB,+BAA+B;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,mCAAmC;IACnC,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,4DAA4D;AAC5D,MAAM,WAAW,kBAAkB;IACjC,qDAAqD;IACrD,MAAM,EAAE,SAAS,CAAC;CACnB;AAMD,4CAA4C;AAC5C,MAAM,WAAW,iBAAiB;IAChC,sCAAsC;IACtC,MAAM,EAAE,MAAM,CAAC;CAChB;AAMD,gDAAgD;AAChD,MAAM,WAAW,iBAAiB;IAChC,mEAAmE;IACnE,MAAM,EAAE,MAAM,CAAC;IACf,gEAAgE;IAChE,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,yEAAyE;IACzE,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oEAAoE;IACpE,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB"}

package/dist/cjs/types.js

@@ -0,0 +1,10 @@
+"use strict";
+/**
+ * TypeScript type definitions for the Gibs compliance API.
+ *
+ * All types mirror the backend Pydantic schemas exactly.
+ *
+ * @module types
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/cjs/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/types.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG"}

package/dist/esm/client.d.ts

@@ -0,0 +1,151 @@
+/**
+ * Gibs API client.
+ *
+ * Provides typed methods for all Gibs compliance API endpoints.
+ * Uses native `fetch` -- works in Node.js 18+, browsers, Deno, and Bun.
+ *
+ * @module client
+ */
+import type { CheckRequest, CheckResponse, ClassifyRequest, ClassifyResponse, CreateKeyRequest, GibsClientOptions, HealthResponse, KeyCreatedResponse, KeyDeletedResponse, KeyInfo } from './types.js';
+/**
+ * Official client for the Gibs multi-regulation compliance API.
+ *
+ * @example
+ * ```ts
+ * import { GibsClient } from '@gibs/sdk';
+ *
+ * const client = new GibsClient({ apiKey: 'gbs_live_xxx' });
+ *
+ * const result = await client.classify({
+ *   description: 'Facial recognition system for airport security',
+ * });
+ * console.log(result.risk_level);
+ * ```
+ */
+export declare class GibsClient {
+    private readonly apiKey;
+    private readonly baseUrl;
+    private readonly timeout;
+    private readonly maxRetries;
+    constructor(options: GibsClientOptions);
+    /**
+     * Classify an AI system under EU AI Act risk levels.
+     *
+     * Returns the risk classification, relevant obligations,
+     * and source citations from the legal corpus.
+     *
+     * @param request - Description of the AI system to classify.
+     * @returns Classification result with risk level and obligations.
+     *
+     * @example
+     * ```ts
+     * const result = await client.classify({
+     *   description: 'CV screening tool that ranks job applicants',
+     *   sector: 'employment',
+     *   data_types: ['biometric'],
+     * });
+     *
+     * console.log(result.risk_level);    // "high"
+     * console.log(result.obligations);   // [{id: "risk_mgmt", ...}, ...]
+     * ```
+     */
+    classify(request: ClassifyRequest): Promise<ClassifyResponse>;
+    /**
+     * Ask a compliance question and get a grounded answer with citations.
+     *
+     * Every claim in the answer is traceable to a specific article
+     * in the legal corpus. If the corpus doesn't cover the question,
+     * the response indicates abstention with a reason.
+     *
+     * @param request - The compliance question and optional context.
+     * @returns Answer with source citations and confidence level.
+     *
+     * @example
+     * ```ts
+     * const answer = await client.check({
+     *   question: 'What are the transparency requirements for chatbots under the AI Act?',
+     *   regulation: 'ai_act',
+     * });
+     *
+     * console.log(answer.answer);
+     * console.log(answer.sources);
+     * ```
+     */
+    check(request: CheckRequest): Promise<CheckResponse>;
+    /**
+     * Check API health and component status.
+     *
+     * Does not require authentication.
+     *
+     * @returns Health status with component details.
+     *
+     * @example
+     * ```ts
+     * const health = await client.health();
+     * console.log(health.status);        // "healthy"
+     * console.log(health.components);    // {api: "healthy", qdrant: "healthy", ...}
+     * ```
+     */
+    health(): Promise<HealthResponse>;
+    /**
+     * List all active API keys for your organization.
+     *
+     * Returns metadata only -- never includes the full key value.
+     *
+     * @returns Array of key metadata.
+     */
+    listKeys(): Promise<KeyInfo[]>;
+    /**
+     * Create a new API key for your organization.
+     *
+     * The full key value is returned exactly once in the response.
+     * Store it securely -- it cannot be retrieved again.
+     *
+     * Maximum 5 active keys per organization.
+     *
+     * @param request - Optional name for the key.
+     * @returns The created key including the full key value (shown once).
+     */
+    createKey(request?: CreateKeyRequest): Promise<KeyCreatedResponse>;
+    /**
+     * Revoke an API key.
+     *
+     * The key must belong to your organization. You cannot revoke
+     * the key that is currently being used for authentication.
+     *
+     * @param keyId - Database ID of the key to revoke.
+     * @returns Confirmation with status "revoked".
+     */
+    deleteKey(keyId: number): Promise<KeyDeletedResponse>;
+    /**
+     * Execute an HTTP request with retries, timeout, and error handling.
+     */
+    private _request;
+    /**
+     * Fetch with an AbortController-based timeout.
+     */
+    private _fetchWithTimeout;
+    /**
+     * Build the correct error class for a given HTTP status code.
+     */
+    private _buildError;
+    /**
+     * Calculate retry delay with exponential backoff and jitter.
+     *
+     * For rate limit errors, respects the Retry-After header.
+     */
+    private _retryDelay;
+    /**
+     * Extract response headers into a plain object.
+     */
+    private _extractHeaders;
+    /**
+     * Check if an error is a network-level error (no HTTP response received).
+     */
+    private _isNetworkError;
+    /**
+     * Sleep for a given number of milliseconds.
+     */
+    private _sleep;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/esm/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AASH,OAAO,KAAK,EACV,YAAY,EACZ,aAAa,EACb,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,cAAc,EACd,kBAAkB,EAClB,kBAAkB,EAClB,OAAO,EACR,MAAM,YAAY,CAAC;AAgBpB;;;;;;;;;;;;;;GAcG;AACH,qBAAa,UAAU;IACrB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;gBAExB,OAAO,EAAE,iBAAiB;IAiBtC;;;;;;;;;;;;;;;;;;;;OAoBG;IACG,QAAQ,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAInE;;;;;;;;;;;;;;;;;;;;OAoBG;IACG,KAAK,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,aAAa,CAAC;IAI1D;;;;;;;;;;;;;OAaG;IACG,MAAM,IAAI,OAAO,CAAC,cAAc,CAAC;IAIvC;;;;;;OAMG;IACG,QAAQ,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IAIpC;;;;;;;;;;OAUG;IACG,SAAS,CAAC,OAAO,CAAC,EAAE,gBAAgB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAIxE;;;;;;;;OAQG;IACG,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAQ3D;;OAEG;YACW,QAAQ;IA4FtB;;OAEG;YACW,iBAAiB;IA2B/B;;OAEG;IACH,OAAO,CAAC,WAAW;IAenB;;;;OAIG;IACH,OAAO,CAAC,WAAW;IAenB;;OAEG;IACH,OAAO,CAAC,eAAe;IAQvB;;OAEG;IACH,OAAO,CAAC,eAAe;IAgBvB;;OAEG;IACH,OAAO,CAAC,MAAM;CAGf"}

package/dist/esm/client.js

@@ -0,0 +1,324 @@
+/**
+ * Gibs API client.
+ *
+ * Provides typed methods for all Gibs compliance API endpoints.
+ * Uses native `fetch` -- works in Node.js 18+, browsers, Deno, and Bun.
+ *
+ * @module client
+ */
+import { GibsAPIError, GibsAuthError, GibsConnectionError, GibsRateLimitError, GibsTimeoutError, } from './errors.js';
+const VERSION = '0.1.0';
+const DEFAULT_BASE_URL = 'https://api.gibs.dev';
+const DEFAULT_TIMEOUT_MS = 120_000;
+const DEFAULT_MAX_RETRIES = 3;
+/** Initial delay for exponential backoff, in milliseconds. */
+const INITIAL_RETRY_DELAY_MS = 500;
+/** Maximum delay between retries, in milliseconds. */
+const MAX_RETRY_DELAY_MS = 30_000;
+/** HTTP status codes that are safe to retry. */
+const RETRYABLE_STATUS_CODES = new Set([408, 429, 500, 502, 503, 504]);
+/**
+ * Official client for the Gibs multi-regulation compliance API.
+ *
+ * @example
+ * ```ts
+ * import { GibsClient } from '@gibs/sdk';
+ *
+ * const client = new GibsClient({ apiKey: 'gbs_live_xxx' });
+ *
+ * const result = await client.classify({
+ *   description: 'Facial recognition system for airport security',
+ * });
+ * console.log(result.risk_level);
+ * ```
+ */
+export class GibsClient {
+    apiKey;
+    baseUrl;
+    timeout;
+    maxRetries;
+    constructor(options) {
+        if (!options.apiKey) {
+            throw new Error('API key is required. Get one at https://gibs.dev');
+        }
+        this.apiKey = options.apiKey;
+        this.baseUrl = (options.baseUrl ?? DEFAULT_BASE_URL).replace(/\/+$/, '');
+        this.timeout = options.timeout ?? DEFAULT_TIMEOUT_MS;
+        this.maxRetries = options.maxRetries ?? DEFAULT_MAX_RETRIES;
+    }
+    // ==========================================================================
+    // Public API Methods
+    // ==========================================================================
+    /**
+     * Classify an AI system under EU AI Act risk levels.
+     *
+     * Returns the risk classification, relevant obligations,
+     * and source citations from the legal corpus.
+     *
+     * @param request - Description of the AI system to classify.
+     * @returns Classification result with risk level and obligations.
+     *
+     * @example
+     * ```ts
+     * const result = await client.classify({
+     *   description: 'CV screening tool that ranks job applicants',
+     *   sector: 'employment',
+     *   data_types: ['biometric'],
+     * });
+     *
+     * console.log(result.risk_level);    // "high"
+     * console.log(result.obligations);   // [{id: "risk_mgmt", ...}, ...]
+     * ```
+     */
+    async classify(request) {
+        return this._request('POST', '/v1/classify', request);
+    }
+    /**
+     * Ask a compliance question and get a grounded answer with citations.
+     *
+     * Every claim in the answer is traceable to a specific article
+     * in the legal corpus. If the corpus doesn't cover the question,
+     * the response indicates abstention with a reason.
+     *
+     * @param request - The compliance question and optional context.
+     * @returns Answer with source citations and confidence level.
+     *
+     * @example
+     * ```ts
+     * const answer = await client.check({
+     *   question: 'What are the transparency requirements for chatbots under the AI Act?',
+     *   regulation: 'ai_act',
+     * });
+     *
+     * console.log(answer.answer);
+     * console.log(answer.sources);
+     * ```
+     */
+    async check(request) {
+        return this._request('POST', '/v1/check', request);
+    }
+    /**
+     * Check API health and component status.
+     *
+     * Does not require authentication.
+     *
+     * @returns Health status with component details.
+     *
+     * @example
+     * ```ts
+     * const health = await client.health();
+     * console.log(health.status);        // "healthy"
+     * console.log(health.components);    // {api: "healthy", qdrant: "healthy", ...}
+     * ```
+     */
+    async health() {
+        return this._request('GET', '/v1/health');
+    }
+    /**
+     * List all active API keys for your organization.
+     *
+     * Returns metadata only -- never includes the full key value.
+     *
+     * @returns Array of key metadata.
+     */
+    async listKeys() {
+        return this._request('GET', '/v1/account/keys');
+    }
+    /**
+     * Create a new API key for your organization.
+     *
+     * The full key value is returned exactly once in the response.
+     * Store it securely -- it cannot be retrieved again.
+     *
+     * Maximum 5 active keys per organization.
+     *
+     * @param request - Optional name for the key.
+     * @returns The created key including the full key value (shown once).
+     */
+    async createKey(request) {
+        return this._request('POST', '/v1/account/keys', request);
+    }
+    /**
+     * Revoke an API key.
+     *
+     * The key must belong to your organization. You cannot revoke
+     * the key that is currently being used for authentication.
+     *
+     * @param keyId - Database ID of the key to revoke.
+     * @returns Confirmation with status "revoked".
+     */
+    async deleteKey(keyId) {
+        return this._request('DELETE', `/v1/account/keys/${keyId}`);
+    }
+    // ==========================================================================
+    // Internal HTTP Layer
+    // ==========================================================================
+    /**
+     * Execute an HTTP request with retries, timeout, and error handling.
+     */
+    async _request(method, path, body) {
+        const url = `${this.baseUrl}${path}`;
+        const headers = {
+            'Authorization': `Bearer ${this.apiKey}`,
+            'Content-Type': 'application/json',
+            'User-Agent': `gibs-sdk-js/${VERSION}`,
+            'Accept': 'application/json',
+        };
+        let lastError = null;
+        for (let attempt = 0; attempt <= this.maxRetries; attempt++) {
+            // Wait before retrying (skip delay on first attempt)
+            if (attempt > 0) {
+                const delay = this._retryDelay(attempt, lastError);
+                await this._sleep(delay);
+            }
+            try {
+                const response = await this._fetchWithTimeout(url, {
+                    method,
+                    headers,
+                    body: body !== undefined ? JSON.stringify(body) : undefined,
+                });
+                // Success -- parse and return
+                if (response.ok) {
+                    return (await response.json());
+                }
+                // Parse error response
+                const responseHeaders = this._extractHeaders(response);
+                let errorMessage;
+                try {
+                    const errorBody = await response.json();
+                    errorMessage = errorBody.detail ?? `HTTP ${response.status}`;
+                }
+                catch {
+                    errorMessage = `HTTP ${response.status}: ${response.statusText}`;
+                }
+                // Build the appropriate error
+                const error = this._buildError(response.status, errorMessage, responseHeaders);
+                // Don't retry non-retryable errors
+                if (!RETRYABLE_STATUS_CODES.has(response.status)) {
+                    throw error;
+                }
+                lastError = error;
+            }
+            catch (err) {
+                // If it's already one of our errors (non-retryable), rethrow
+                if (err instanceof GibsAuthError) {
+                    throw err;
+                }
+                if (err instanceof GibsAPIError && !RETRYABLE_STATUS_CODES.has(err.status)) {
+                    throw err;
+                }
+                // Timeout
+                if (err instanceof GibsTimeoutError) {
+                    lastError = err;
+                    continue;
+                }
+                // Network errors
+                if (this._isNetworkError(err)) {
+                    lastError = new GibsConnectionError(`Connection failed: ${err instanceof Error ? err.message : String(err)}`);
+                    continue;
+                }
+                // Already a GibsError (retryable API error), keep retrying
+                if (err instanceof GibsAPIError) {
+                    lastError = err;
+                    continue;
+                }
+                // Unknown error -- don't retry
+                throw err;
+            }
+        }
+        // All retries exhausted
+        throw lastError ?? new GibsConnectionError('Request failed after all retries');
+    }
+    /**
+     * Fetch with an AbortController-based timeout.
+     */
+    async _fetchWithTimeout(url, init) {
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), this.timeout);
+        try {
+            const response = await fetch(url, {
+                ...init,
+                signal: controller.signal,
+            });
+            return response;
+        }
+        catch (err) {
+            if (err instanceof DOMException && err.name === 'AbortError') {
+                throw new GibsTimeoutError(this.timeout);
+            }
+            // Node.js uses a different error type for abort
+            if (err instanceof Error && err.name === 'AbortError') {
+                throw new GibsTimeoutError(this.timeout);
+            }
+            throw err;
+        }
+        finally {
+            clearTimeout(timeoutId);
+        }
+    }
+    /**
+     * Build the correct error class for a given HTTP status code.
+     */
+    _buildError(status, message, headers) {
+        switch (status) {
+            case 401:
+                return new GibsAuthError(message, headers);
+            case 429:
+                return new GibsRateLimitError(message, headers);
+            default:
+                return new GibsAPIError(message, status, headers);
+        }
+    }
+    /**
+     * Calculate retry delay with exponential backoff and jitter.
+     *
+     * For rate limit errors, respects the Retry-After header.
+     */
+    _retryDelay(attempt, lastError) {
+        // Respect Retry-After header for rate limit errors
+        if (lastError instanceof GibsRateLimitError && lastError.retryAfter) {
+            return lastError.retryAfter * 1000;
+        }
+        // Exponential backoff: 500ms, 1000ms, 2000ms, ...
+        const exponentialDelay = INITIAL_RETRY_DELAY_MS * Math.pow(2, attempt - 1);
+        // Add jitter (0-25% of the delay)
+        const jitter = exponentialDelay * 0.25 * Math.random();
+        return Math.min(exponentialDelay + jitter, MAX_RETRY_DELAY_MS);
+    }
+    /**
+     * Extract response headers into a plain object.
+     */
+    _extractHeaders(response) {
+        const headers = {};
+        response.headers.forEach((value, key) => {
+            headers[key.toLowerCase()] = value;
+        });
+        return headers;
+    }
+    /**
+     * Check if an error is a network-level error (no HTTP response received).
+     */
+    _isNetworkError(err) {
+        if (!(err instanceof Error))
+            return false;
+        // Common network error indicators
+        const networkMessages = [
+            'fetch failed',
+            'network',
+            'ECONNREFUSED',
+            'ECONNRESET',
+            'ENOTFOUND',
+            'ETIMEDOUT',
+            'EAI_AGAIN',
+        ];
+        const msg = err.message.toLowerCase();
+        return networkMessages.some((indicator) => msg.includes(indicator.toLowerCase()));
+    }
+    /**
+     * Sleep for a given number of milliseconds.
+     */
+    _sleep(ms) {
+        return new Promise((resolve) => setTimeout(resolve, ms));
+    }
+}
+//# sourceMappingURL=client.js.map

package/dist/esm/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/client.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EACL,YAAY,EACZ,aAAa,EACb,mBAAmB,EACnB,kBAAkB,EAClB,gBAAgB,GACjB,MAAM,aAAa,CAAC;AAcrB,MAAM,OAAO,GAAG,OAAO,CAAC;AACxB,MAAM,gBAAgB,GAAG,sBAAsB,CAAC;AAChD,MAAM,kBAAkB,GAAG,OAAO,CAAC;AACnC,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAE9B,8DAA8D;AAC9D,MAAM,sBAAsB,GAAG,GAAG,CAAC;AAEnC,sDAAsD;AACtD,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAElC,gDAAgD;AAChD,MAAM,sBAAsB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;AAEvE;;;;;;;;;;;;;;GAcG;AACH,MAAM,OAAO,UAAU;IACJ,MAAM,CAAS;IACf,OAAO,CAAS;IAChB,OAAO,CAAS;IAChB,UAAU,CAAS;IAEpC,YAAY,OAA0B;QACpC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CACb,kDAAkD,CACnD,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7B,IAAI,CAAC,OAAO,GAAG,CAAC,OAAO,CAAC,OAAO,IAAI,gBAAgB,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QACzE,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,kBAAkB,CAAC;QACrD,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,mBAAmB,CAAC;IAC9D,CAAC;IAED,6EAA6E;IAC7E,qBAAqB;IACrB,6EAA6E;IAE7E;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,KAAK,CAAC,QAAQ,CAAC,OAAwB;QACrC,OAAO,IAAI,CAAC,QAAQ,CAAmB,MAAM,EAAE,cAAc,EAAE,OAAO,CAAC,CAAC;IAC1E,CAAC;IAED;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,KAAK,CAAC,KAAK,CAAC,OAAqB;QAC/B,OAAO,IAAI,CAAC,QAAQ,CAAgB,MAAM,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;IACpE,CAAC;IAED;;;;;;;;;;;;;OAaG;IACH,KAAK,CAAC,MAAM;QACV,OAAO,IAAI,CAAC,QAAQ,CAAiB,KAAK,EAAE,YAAY,CAAC,CAAC;IAC5D,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,QAAQ;QACZ,OAAO,IAAI,CAAC,QAAQ,CAAY,KAAK,EAAE,kBAAkB,CAAC,CAAC;IAC7D,CAAC;IAED;;;;;;;;;;OAUG;IACH,KAAK,CAAC,SAAS,CAAC,OAA0B;QACxC,OAAO,IAAI,CAAC,QAAQ,CAAqB,MAAM,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAC;IAChF,CAAC;IAED;;;;;;;;OAQG;IACH,KAAK,CAAC,SAAS,CAAC,KAAa;QAC3B,OAAO,IAAI,CAAC,QAAQ,CAAqB,QAAQ,EAAE,oBAAoB,KAAK,EAAE,CAAC,CAAC;IAClF,CAAC;IAED,6EAA6E;IAC7E,sBAAsB;IACtB,6EAA6E;IAE7E;;OAEG;IACK,KAAK,CAAC,QAAQ,CACpB,MAAc,EACd,IAAY,EACZ,IAAc;QAEd,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,OAAO,GAAG,IAAI,EAAE,CAAC;QAErC,MAAM,OAAO,GAA2B;YACtC,eAAe,EAAE,UAAU,IAAI,CAAC,MAAM,EAAE;YACxC,cAAc,EAAE,kBAAkB;YAClC,YAAY,EAAE,eAAe,OAAO,EAAE;YACtC,QAAQ,EAAE,kBAAkB;SAC7B,CAAC;QAEF,IAAI,SAAS,GAAiB,IAAI,CAAC;QAEnC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,IAAI,IAAI,CAAC,UAAU,EAAE,OAAO,EAAE,EAAE,CAAC;YAC5D,qDAAqD;YACrD,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;gBAChB,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;gBACnD,MAAM,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC3B,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,GAAG,EAAE;oBACjD,MAAM;oBACN,OAAO;oBACP,IAAI,EAAE,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS;iBAC5D,CAAC,CAAC;gBAEH,8BAA8B;gBAC9B,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;oBAChB,OAAO,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAM,CAAC;gBACtC,CAAC;gBAED,uBAAuB;gBACvB,MAAM,eAAe,GAAG,IAAI,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;gBACvD,IAAI,YAAoB,CAAC;gBACzB,IAAI,CAAC;oBACH,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAyB,CAAC;oBAC/D,YAAY,GAAG,SAAS,CAAC,MAAM,IAAI,QAAQ,QAAQ,CAAC,MAAM,EAAE,CAAC;gBAC/D,CAAC;gBAAC,MAAM,CAAC;oBACP,YAAY,GAAG,QAAQ,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC,UAAU,EAAE,CAAC;gBACnE,CAAC;gBAED,8BAA8B;gBAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,MAAM,EAAE,YAAY,EAAE,eAAe,CAAC,CAAC;gBAE/E,mCAAmC;gBACnC,IAAI,CAAC,sBAAsB,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;oBACjD,MAAM,KAAK,CAAC;gBACd,CAAC;gBAED,SAAS,GAAG,KAAK,CAAC;YACpB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,6DAA6D;gBAC7D,IAAI,GAAG,YAAY,aAAa,EAAE,CAAC;oBACjC,MAAM,GAAG,CAAC;gBACZ,CAAC;gBACD,IAAI,GAAG,YAAY,YAAY,IAAI,CAAC,sBAAsB,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC3E,MAAM,GAAG,CAAC;gBACZ,CAAC;gBAED,UAAU;gBACV,IAAI,GAAG,YAAY,gBAAgB,EAAE,CAAC;oBACpC,SAAS,GAAG,GAAG,CAAC;oBAChB,SAAS;gBACX,CAAC;gBAED,iBAAiB;gBACjB,IAAI,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC;oBAC9B,SAAS,GAAG,IAAI,mBAAmB,CACjC,sBAAsB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CACzE,CAAC;oBACF,SAAS;gBACX,CAAC;gBAED,2DAA2D;gBAC3D,IAAI,GAAG,YAAY,YAAY,EAAE,CAAC;oBAChC,SAAS,GAAG,GAAG,CAAC;oBAChB,SAAS;gBACX,CAAC;gBAED,+BAA+B;gBAC/B,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QAED,wBAAwB;QACxB,MAAM,SAAS,IAAI,IAAI,mBAAmB,CAAC,kCAAkC,CAAC,CAAC;IACjF,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,iBAAiB,CAC7B,GAAW,EACX,IAAiB;QAEjB,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QAErE,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,GAAG,IAAI;gBACP,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YACH,OAAO,QAAQ,CAAC;QAClB,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG,YAAY,YAAY,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC7D,MAAM,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC3C,CAAC;YACD,gDAAgD;YAChD,IAAI,GAAG,YAAY,KAAK,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBACtD,MAAM,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC3C,CAAC;YACD,MAAM,GAAG,CAAC;QACZ,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,SAAS,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAED;;OAEG;IACK,WAAW,CACjB,MAAc,EACd,OAAe,EACf,OAA+B;QAE/B,QAAQ,MAAM,EAAE,CAAC;YACf,KAAK,GAAG;gBACN,OAAO,IAAI,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YAC7C,KAAK,GAAG;gBACN,OAAO,IAAI,kBAAkB,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YAClD;gBACE,OAAO,IAAI,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;OAIG;IACK,WAAW,CAAC,OAAe,EAAE,SAAuB;QAC1D,mDAAmD;QACnD,IAAI,SAAS,YAAY,kBAAkB,IAAI,SAAS,CAAC,UAAU,EAAE,CAAC;YACpE,OAAO,SAAS,CAAC,UAAU,GAAG,IAAI,CAAC;QACrC,CAAC;QAED,kDAAkD;QAClD,MAAM,gBAAgB,GAAG,sBAAsB,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;QAE3E,kCAAkC;QAClC,MAAM,MAAM,GAAG,gBAAgB,GAAG,IAAI,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;QAEvD,OAAO,IAAI,CAAC,GAAG,CAAC,gBAAgB,GAAG,MAAM,EAAE,kBAAkB,CAAC,CAAC;IACjE,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,QAAkB;QACxC,MAAM,OAAO,GAA2B,EAAE,CAAC;QAC3C,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;YACtC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,GAAG,KAAK,CAAC;QACrC,CAAC,CAAC,CAAC;QACH,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,GAAY;QAClC,IAAI,CAAC,CAAC,GAAG,YAAY,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;QAC1C,kCAAkC;QAClC,MAAM,eAAe,GAAG;YACtB,cAAc;YACd,SAAS;YACT,cAAc;YACd,YAAY;YACZ,WAAW;YACX,WAAW;YACX,WAAW;SACZ,CAAC;QACF,MAAM,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;QACtC,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IACpF,CAAC;IAED;;OAEG;IACK,MAAM,CAAC,EAAU;QACvB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;IAC3D,CAAC;CACF"}