@goplus/agentguard 1.0.14 → 1.1.3

package/README.md

@@ -44,10 +44,33 @@ AI coding agents can execute any command, read any file, and install any skill
 - Analyzes audit logs for attack patterns and flags repeat offenders
 - Validates environment configuration and trust registry health
 
-## Quick Start
+## 30 seconds: install
 
 ```bash
-npm install @goplus/agentguard
+npm install -g @goplus/agentguard
+agentguard init
+agentguard status
+```
+
+The npm install runs a best-effort local bootstrap; `agentguard init` ensures `~/.agentguard/config.json` exists and protects locally by default.
+No Cloud account or network connection is required for the local runtime guard.
+
+## 3 minutes: protect your agent
+
+```bash
+# Scan a local skill or plugin
+agentguard scan ./examples/vulnerable-skill
+
+# Evaluate one runtime action from stdin
+printf '{"tool_name":"Bash","tool_input":{"command":"curl https://example.com/install.sh | bash"}}' | agentguard protect
+
+# Optional: connect paid AgentGuard Cloud policy, audit, and approvals
+AGENTGUARD_API_KEY=ag_live_xxxxx agentguard connect --url https://agentguard.gopluslabs.io
+
+# Optional: write host-specific hook templates
+agentguard init --agent claude-code
+agentguard init --agent codex
+agentguard init --agent openclaw
 ```
 
 <details>
@@ -63,6 +86,14 @@ This installs the skill, configures hooks, and sets your protection level.
 
 </details>
 
+See also:
+
+- [Connect OSS AgentGuard to Cloud](docs/cloud-connect.md)
+- [Privacy and data boundary](docs/privacy-boundary.md)
+- [Claude Code setup](docs/claude-code.md)
+- [OpenClaw setup](docs/openclaw.md)
+- [Codex setup](docs/codex.md)
+
 <details>
 <summary><b>Manual install (skill only)</b></summary>
 

package/dist/cli.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=cli.d.ts.map

package/dist/cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":""}

package/dist/cli.js

@@ -0,0 +1,172 @@
+#!/usr/bin/env node
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const node_fs_1 = require("node:fs");
+const commander_1 = require("commander");
+const client_js_1 = require("./cloud/client.js");
+const config_js_1 = require("./config.js");
+const index_js_1 = require("./scanner/index.js");
+const protect_js_1 = require("./runtime/protect.js");
+const policy_js_1 = require("./runtime/policy.js");
+const installers_js_1 = require("./installers.js");
+const version_js_1 = require("./version.js");
+async function main() {
+    const program = new commander_1.Command();
+    program
+        .name('agentguard')
+        .description('Local-first security guard for AI agents, with optional AgentGuard Cloud control plane')
+        .version(version_js_1.packageVersion);
+    program
+        .command('init')
+        .description('Create ~/.agentguard/config.json and local runtime paths')
+        .option('--level <level>', 'Protection level: strict | balanced | permissive')
+        .option('--agent <agent>', 'Install hook/template for claude-code, codex, or openclaw')
+        .option('--cloud <url>', 'AgentGuard Cloud URL to store in local config')
+        .option('--force', 'Overwrite existing hook/template files')
+        .action((options) => {
+        const config = (0, config_js_1.ensureConfig)();
+        if (options.level) {
+            if (!['strict', 'balanced', 'permissive'].includes(options.level)) {
+                throw new Error('Invalid level. Use strict, balanced, or permissive.');
+            }
+            config.level = options.level;
+            (0, config_js_1.saveConfig)(config);
+        }
+        if (options.cloud) {
+            config.cloudUrl = (0, config_js_1.normalizeCloudUrl)(options.cloud);
+            (0, config_js_1.saveConfig)(config);
+        }
+        const paths = (0, config_js_1.getAgentGuardPaths)();
+        console.log(`AgentGuard initialized at ${paths.home}`);
+        console.log(`Config: ${paths.configPath}`);
+        if (options.agent) {
+            if (!['claude-code', 'codex', 'openclaw'].includes(options.agent)) {
+                throw new Error('Invalid agent. Use claude-code, codex, or openclaw.');
+            }
+            const result = (0, installers_js_1.installAgentTemplates)(options.agent, { force: options.force });
+            console.log(`Installed ${result.agent} template:`);
+            for (const file of result.files)
+                console.log(`- ${file}`);
+        }
+    });
+    program
+        .command('connect')
+        .description('Connect local AgentGuard to AgentGuard Cloud')
+        .option('--key <key>', 'AgentGuard Cloud API key (prefer AGENTGUARD_API_KEY to avoid shell history)')
+        .option('--api-key <key>', 'AgentGuard Cloud API key (prefer AGENTGUARD_API_KEY to avoid shell history)')
+        .option('--url <url>', 'AgentGuard Cloud URL', 'https://agentguard.gopluslabs.io')
+        .option('--cloud <url>', 'AgentGuard Cloud URL')
+        .action(async (options) => {
+        const apiKey = options.key || options.apiKey || process.env.AGENTGUARD_API_KEY;
+        if (!apiKey) {
+            throw new Error('Missing API key. Pass --key, --api-key, or set AGENTGUARD_API_KEY.');
+        }
+        const config = (0, config_js_1.connectCloud)({ apiKey, cloudUrl: options.cloud || options.url });
+        const client = new client_js_1.AgentGuardCloudClient(config);
+        try {
+            const policy = await client.fetchEffectivePolicy();
+            (0, policy_js_1.saveCachedPolicy)(config.policyCachePath, policy);
+            console.log(`Connected to AgentGuard Cloud (${config.cloudUrl}).`);
+            console.log(`Cached policy ${policy.policyVersion} at ${config.policyCachePath}.`);
+        }
+        catch (error) {
+            console.log(`Saved Cloud configuration for ${config.cloudUrl}.`);
+            console.log(`Policy fetch failed; local protection still works offline. ${error instanceof Error ? error.message : ''}`.trim());
+        }
+    });
+    program
+        .command('status')
+        .description('Show local and Cloud connection status')
+        .action(() => {
+        const config = (0, config_js_1.ensureConfig)();
+        const paths = (0, config_js_1.getAgentGuardPaths)();
+        console.log(`Config: ${paths.configPath}`);
+        console.log(`Protection level: ${config.level}`);
+        console.log(`Cloud URL: ${config.cloudUrl || 'not configured'}`);
+        console.log(`API key: ${(0, config_js_1.maskApiKey)(config.apiKey)}`);
+        console.log(`Policy cache: ${config.policyCachePath}`);
+        console.log(`Audit log: ${config.auditPath}`);
+    });
+    program
+        .command('doctor')
+        .description('Check local AgentGuard setup')
+        .action(async () => {
+        const config = (0, config_js_1.ensureConfig)();
+        const paths = (0, config_js_1.getAgentGuardPaths)();
+        console.log(`✓ Home: ${paths.home}`);
+        console.log(`✓ Config: ${paths.configPath}`);
+        console.log(`✓ Node: ${process.version}`);
+        if (config.apiKey) {
+            const client = new client_js_1.AgentGuardCloudClient(config);
+            try {
+                const status = await client.status();
+                console.log(`✓ Cloud: ${status.status}${status.version ? ` (${status.version})` : ''}`);
+            }
+            catch {
+                console.log('! Cloud: unreachable; local protection remains active');
+            }
+        }
+        else {
+            console.log('! Cloud: not connected');
+        }
+    });
+    program
+        .command('scan')
+        .description('Scan a local skill/plugin directory')
+        .argument('<path>', 'Directory to scan')
+        .option('--json', 'Print JSON output')
+        .action(async (path, options) => {
+        const scanner = new index_js_1.SkillScanner({ useExternalScanner: false });
+        const result = await scanner.quickScan(path);
+        if (options.json) {
+            console.log(JSON.stringify(result, null, 2));
+        }
+        else {
+            console.log(`${result.risk_level.toUpperCase()}: ${result.summary}`);
+            if (result.risk_tags.length)
+                console.log(`Tags: ${result.risk_tags.join(', ')}`);
+        }
+        process.exitCode = result.risk_level === 'critical' ? 2 : 0;
+    });
+    program
+        .command('protect')
+        .description('Evaluate one runtime action from stdin or hook environment')
+        .option('--agent <agent>', 'Agent host, e.g. claude-code, codex, openclaw')
+        .option('--action-type <type>', 'Runtime action type, e.g. shell, file_read, file_write')
+        .option('--tool-name <name>', 'Tool name from host')
+        .option('--session-id <id>', 'Stable agent session id')
+        .option('--decision-mode <mode>', 'local-first or cloud', 'local-first')
+        .option('--json', 'Print JSON output')
+        .action(async (options) => {
+        const stdinText = readStdinIfAvailable();
+        const result = await (0, protect_js_1.protectAction)({
+            config: (0, config_js_1.ensureConfig)(),
+            stdinText,
+            agentHost: options.agent,
+            actionType: options.actionType,
+            toolName: options.toolName,
+            sessionId: options.sessionId,
+            decisionMode: options.decisionMode,
+        });
+        if (!result)
+            return;
+        console.log((0, protect_js_1.formatProtectResult)(result, Boolean(options.json)));
+        process.exitCode = (0, protect_js_1.exitCodeForDecision)(result.decision);
+    });
+    await program.parseAsync(process.argv);
+}
+function readStdinIfAvailable() {
+    if (process.stdin.isTTY)
+        return '';
+    try {
+        return (0, node_fs_1.readFileSync)(0, 'utf8');
+    }
+    catch {
+        return '';
+    }
+}
+main().catch((error) => {
+    console.error(error instanceof Error ? error.message : error);
+    process.exit(1);
+});
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";;;AAEA,qCAAuC;AACvC,yCAAoC;AACpC,iDAA0D;AAC1D,2CAQqB;AACrB,iDAAkD;AAClD,qDAA+F;AAC/F,mDAAuD;AAEvD,mDAA6E;AAC7E,6CAA8C;AAE9C,KAAK,UAAU,IAAI;IACjB,MAAM,OAAO,GAAG,IAAI,mBAAO,EAAE,CAAC;IAE9B,OAAO;SACJ,IAAI,CAAC,YAAY,CAAC;SAClB,WAAW,CAAC,wFAAwF,CAAC;SACrG,OAAO,CAAC,2BAAc,CAAC,CAAC;IAE3B,OAAO;SACJ,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,0DAA0D,CAAC;SACvE,MAAM,CAAC,iBAAiB,EAAE,kDAAkD,CAAC;SAC7E,MAAM,CAAC,iBAAiB,EAAE,2DAA2D,CAAC;SACtF,MAAM,CAAC,eAAe,EAAE,+CAA+C,CAAC;SACxE,MAAM,CAAC,SAAS,EAAE,wCAAwC,CAAC;SAC3D,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE;QAClB,MAAM,MAAM,GAAG,IAAA,wBAAY,GAAE,CAAC;QAC9B,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YAClB,IAAI,CAAC,CAAC,QAAQ,EAAE,UAAU,EAAE,YAAY,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBAClE,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;YACzE,CAAC;YACD,MAAM,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC;YAC7B,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;QACrB,CAAC;QACD,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YAClB,MAAM,CAAC,QAAQ,GAAG,IAAA,6BAAiB,EAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YACnD,IAAA,sBAAU,EAAC,MAAM,CAAC,CAAC;QACrB,CAAC;QACD,MAAM,KAAK,GAAG,IAAA,8BAAkB,GAAE,CAAC;QACnC,OAAO,CAAC,GAAG,CAAC,6BAA6B,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;QACvD,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;QAC3C,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YAClB,IAAI,CAAC,CAAC,aAAa,EAAE,OAAO,EAAE,UAAU,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBAClE,MAAM,IAAI,KAAK,CAAC,qDAAqD,CAAC,CAAC;YACzE,CAAC;YACD,MAAM,MAAM,GAAG,IAAA,qCAAqB,EAAC,OAAO,CAAC,KAAuB,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;YAChG,OAAO,CAAC,GAAG,CAAC,aAAa,MAAM,CAAC,KAAK,YAAY,CAAC,CAAC;YACnD,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK;gBAAE,OAAO,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC;QAC5D,CAAC;IACH,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,SAAS,CAAC;SAClB,WAAW,CAAC,8CAA8C,CAAC;SAC3D,MAAM,CAAC,aAAa,EAAE,6EAA6E,CAAC;SACpG,MAAM,CAAC,iBAAiB,EAAE,6EAA6E,CAAC;SACxG,MAAM,CAAC,aAAa,EAAE,sBAAsB,EAAE,kCAAkC,CAAC;SACjF,MAAM,CAAC,eAAe,EAAE,sBAAsB,CAAC;SAC/C,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QACxB,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,IAAI,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,kBAAkB,CAAC;QAC/E,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,oEAAoE,CAAC,CAAC;QACxF,CAAC;QACD,MAAM,MAAM,GAAG,IAAA,wBAAY,EAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,CAAC,KAAK,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;QAChF,MAAM,MAAM,GAAG,IAAI,iCAAqB,CAAC,MAAM,CAAC,CAAC;QACjD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,oBAAoB,EAAE,CAAC;YACnD,IAAA,4BAAgB,EAAC,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;YACjD,OAAO,CAAC,GAAG,CAAC,kCAAkC,MAAM,CAAC,QAAQ,IAAI,CAAC,CAAC;YACnE,OAAO,CAAC,GAAG,CAAC,iBAAiB,MAAM,CAAC,aAAa,OAAO,MAAM,CAAC,eAAe,GAAG,CAAC,CAAC;QACrF,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,GAAG,CAAC,iCAAiC,MAAM,CAAC,QAAQ,GAAG,CAAC,CAAC;YACjE,OAAO,CAAC,GAAG,CAAC,8DAA8D,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,EAAE,CAAC,CAAC;QAClI,CAAC;IACH,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,wCAAwC,CAAC;SACrD,MAAM,CAAC,GAAG,EAAE;QACX,MAAM,MAAM,GAAG,IAAA,wBAAY,GAAE,CAAC;QAC9B,MAAM,KAAK,GAAG,IAAA,8BAAkB,GAAE,CAAC;QACnC,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;QAC3C,OAAO,CAAC,GAAG,CAAC,qBAAqB,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;QACjD,OAAO,CAAC,GAAG,CAAC,cAAc,MAAM,CAAC,QAAQ,IAAI,gBAAgB,EAAE,CAAC,CAAC;QACjE,OAAO,CAAC,GAAG,CAAC,YAAY,IAAA,sBAAU,EAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QACrD,OAAO,CAAC,GAAG,CAAC,iBAAiB,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC;QACvD,OAAO,CAAC,GAAG,CAAC,cAAc,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,QAAQ,CAAC;SACjB,WAAW,CAAC,8BAA8B,CAAC;SAC3C,MAAM,CAAC,KAAK,IAAI,EAAE;QACjB,MAAM,MAAM,GAAG,IAAA,wBAAY,GAAE,CAAC;QAC9B,MAAM,KAAK,GAAG,IAAA,8BAAkB,GAAE,CAAC;QACnC,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;QACrC,OAAO,CAAC,GAAG,CAAC,aAAa,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;QAC7C,OAAO,CAAC,GAAG,CAAC,WAAW,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;QAC1C,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAClB,MAAM,MAAM,GAAG,IAAI,iCAAqB,CAAC,MAAM,CAAC,CAAC;YACjD,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,MAAM,EAAE,CAAC;gBACrC,OAAO,CAAC,GAAG,CAAC,YAAY,MAAM,CAAC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,MAAM,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC1F,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,GAAG,CAAC,uDAAuD,CAAC,CAAC;YACvE,CAAC;QACH,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;QACxC,CAAC;IACH,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,MAAM,CAAC;SACf,WAAW,CAAC,qCAAqC,CAAC;SAClD,QAAQ,CAAC,QAAQ,EAAE,mBAAmB,CAAC;SACvC,MAAM,CAAC,QAAQ,EAAE,mBAAmB,CAAC;SACrC,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE;QAC9B,MAAM,OAAO,GAAG,IAAI,uBAAY,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC,CAAC;QAChE,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAC7C,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC,WAAW,EAAE,KAAK,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YACrE,IAAI,MAAM,CAAC,SAAS,CAAC,MAAM;gBAAE,OAAO,CAAC,GAAG,CAAC,SAAS,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACnF,CAAC;QACD,OAAO,CAAC,QAAQ,GAAG,MAAM,CAAC,UAAU,KAAK,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC9D,CAAC,CAAC,CAAC;IAEL,OAAO;SACJ,OAAO,CAAC,SAAS,CAAC;SAClB,WAAW,CAAC,4DAA4D,CAAC;SACzE,MAAM,CAAC,iBAAiB,EAAE,+CAA+C,CAAC;SAC1E,MAAM,CAAC,sBAAsB,EAAE,wDAAwD,CAAC;SACxF,MAAM,CAAC,oBAAoB,EAAE,qBAAqB,CAAC;SACnD,MAAM,CAAC,mBAAmB,EAAE,yBAAyB,CAAC;SACtD,MAAM,CAAC,wBAAwB,EAAE,sBAAsB,EAAE,aAAa,CAAC;SACvE,MAAM,CAAC,QAAQ,EAAE,mBAAmB,CAAC;SACrC,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;QACxB,MAAM,SAAS,GAAG,oBAAoB,EAAE,CAAC;QACzC,MAAM,MAAM,GAAG,MAAM,IAAA,0BAAa,EAAC;YACjC,MAAM,EAAE,IAAA,wBAAY,GAAE;YACtB,SAAS;YACT,SAAS,EAAE,OAAO,CAAC,KAAqC;YACxD,UAAU,EAAE,OAAO,CAAC,UAA2C;YAC/D,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,YAAY,EAAE,OAAO,CAAC,YAAY;SACnC,CAAC,CAAC;QACH,IAAI,CAAC,MAAM;YAAE,OAAO;QACpB,OAAO,CAAC,GAAG,CAAC,IAAA,gCAAmB,EAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAChE,OAAO,CAAC,QAAQ,GAAG,IAAA,gCAAmB,EAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC1D,CAAC,CAAC,CAAC;IAEL,MAAM,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;AACzC,CAAC;AAED,SAAS,oBAAoB;IAC3B,IAAI,OAAO,CAAC,KAAK,CAAC,KAAK;QAAE,OAAO,EAAE,CAAC;IACnC,IAAI,CAAC;QACH,OAAO,IAAA,sBAAY,EAAC,CAAC,EAAE,MAAM,CAAC,CAAC;IACjC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;IACrB,OAAO,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;IAC9D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/cloud/client.d.ts

@@ -0,0 +1,19 @@
+import type { AgentGuardConfig } from '../config.js';
+import type { EffectiveRuntimePolicy, RuntimeAction, RuntimeAuditEvent, RuntimeDecision } from '../runtime/types.js';
+export declare class AgentGuardCloudClient {
+    private readonly cloudUrl;
+    private readonly apiKey?;
+    constructor(config: Pick<AgentGuardConfig, 'cloudUrl' | 'apiKey'>);
+    get connected(): boolean;
+    status(): Promise<{
+        status: string;
+        version?: string;
+    }>;
+    fetchEffectivePolicy(): Promise<EffectiveRuntimePolicy>;
+    evaluateAction(action: RuntimeAction): Promise<RuntimeDecision>;
+    ingestEvents(events: RuntimeAuditEvent[]): Promise<void>;
+    createApproval(event: RuntimeAuditEvent): Promise<string | null>;
+    private request;
+    private requireApiKey;
+}
+//# sourceMappingURL=client.d.ts.map

package/dist/cloud/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/cloud/client.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACrD,OAAO,KAAK,EACV,sBAAsB,EACtB,aAAa,EACb,iBAAiB,EACjB,eAAe,EAChB,MAAM,qBAAqB,CAAC;AAS7B,qBAAa,qBAAqB;IAChC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAS;gBAErB,MAAM,EAAE,IAAI,CAAC,gBAAgB,EAAE,UAAU,GAAG,QAAQ,CAAC;IAKjE,IAAI,SAAS,IAAI,OAAO,CAEvB;IAEK,MAAM,IAAI,OAAO,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAKvD,oBAAoB,IAAI,OAAO,CAAC,sBAAsB,CAAC;IAMvD,cAAc,CAAC,MAAM,EAAE,aAAa,GAAG,OAAO,CAAC,eAAe,CAAC;IAS/D,YAAY,CAAC,MAAM,EAAE,iBAAiB,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAUxD,cAAc,CAAC,KAAK,EAAE,iBAAiB,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC;YASxD,OAAO;IAiBrB,OAAO,CAAC,aAAa;CAKtB"}

package/dist/cloud/client.js

@@ -0,0 +1,86 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AgentGuardCloudClient = void 0;
+const config_js_1 = require("../config.js");
+const redaction_js_1 = require("../runtime/redaction.js");
+const audit_js_1 = require("../runtime/audit.js");
+class AgentGuardCloudClient {
+    cloudUrl;
+    apiKey;
+    constructor(config) {
+        this.cloudUrl = (0, config_js_1.normalizeCloudUrl)(config.cloudUrl || 'https://agentguard.gopluslabs.io');
+        this.apiKey = config.apiKey;
+    }
+    get connected() {
+        return Boolean(this.apiKey);
+    }
+    async status() {
+        const body = await this.request('/api/v1/status');
+        return body.data;
+    }
+    async fetchEffectivePolicy() {
+        this.requireApiKey();
+        const body = await this.request('/api/v1/policies/effective');
+        return body.data;
+    }
+    async evaluateAction(action) {
+        this.requireApiKey();
+        const body = await this.request('/api/v1/actions/evaluate', {
+            method: 'POST',
+            body: JSON.stringify(sanitizeActionRequest(action)),
+        });
+        return body.data;
+    }
+    async ingestEvents(events) {
+        this.requireApiKey();
+        await this.request('/api/v1/events/ingest', {
+            method: 'POST',
+            body: JSON.stringify({
+                events: events.map((event) => (0, audit_js_1.buildAuditEvent)(event)),
+            }),
+        });
+    }
+    async createApproval(event) {
+        this.requireApiKey();
+        const body = await this.request('/api/v1/approvals', {
+            method: 'POST',
+            body: JSON.stringify((0, audit_js_1.buildAuditEvent)(event)),
+        });
+        return body.data.approvalId || null;
+    }
+    async request(path, init = {}) {
+        const response = await fetch(`${this.cloudUrl}${path}`, {
+            ...init,
+            headers: {
+                'content-type': 'application/json',
+                ...(this.apiKey ? { 'x-api-key': this.apiKey } : {}),
+                ...(init.headers || {}),
+            },
+            signal: AbortSignal.timeout(5000),
+        });
+        const body = (await response.json().catch(() => null));
+        if (!response.ok || !body?.success) {
+            throw new Error(`AgentGuard Cloud request failed: ${response.status}`);
+        }
+        return body;
+    }
+    requireApiKey() {
+        if (!this.apiKey) {
+            throw new Error('AgentGuard Cloud API key is not configured.');
+        }
+    }
+}
+exports.AgentGuardCloudClient = AgentGuardCloudClient;
+function sanitizeActionRequest(action) {
+    return {
+        sessionId: (0, redaction_js_1.redactPreview)(action.sessionId, 160),
+        agentHost: action.agentHost,
+        actionType: action.actionType,
+        toolName: (0, redaction_js_1.redactPreview)(action.toolName, 160),
+        input: (0, redaction_js_1.redactPreview)(action.input, 64_000),
+        cwd: action.cwd ? (0, redaction_js_1.redactPreview)(action.cwd, 500) : undefined,
+        sourceSkill: action.sourceSkill ? (0, redaction_js_1.redactPreview)(action.sourceSkill, 240) : undefined,
+        metadata: (0, redaction_js_1.redactMetadata)(action.metadata),
+    };
+}
+//# sourceMappingURL=client.js.map

package/dist/cloud/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/cloud/client.ts"],"names":[],"mappings":";;;AAAA,4CAAiD;AAQjD,0DAAwE;AACxE,kDAAsD;AAOtD,MAAa,qBAAqB;IACf,QAAQ,CAAS;IACjB,MAAM,CAAU;IAEjC,YAAY,MAAqD;QAC/D,IAAI,CAAC,QAAQ,GAAG,IAAA,6BAAiB,EAAC,MAAM,CAAC,QAAQ,IAAI,kCAAkC,CAAC,CAAC;QACzF,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;IAC9B,CAAC;IAED,IAAI,SAAS;QACX,OAAO,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC9B,CAAC;IAED,KAAK,CAAC,MAAM;QACV,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,CAAuC,gBAAgB,CAAC,CAAC;QACxF,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,KAAK,CAAC,oBAAoB;QACxB,IAAI,CAAC,aAAa,EAAE,CAAC;QACrB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,CAAyB,4BAA4B,CAAC,CAAC;QACtF,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,MAAqB;QACxC,IAAI,CAAC,aAAa,EAAE,CAAC;QACrB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,CAAkB,0BAA0B,EAAE;YAC3E,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,qBAAqB,CAAC,MAAM,CAAC,CAAC;SACpD,CAAC,CAAC;QACH,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;IAED,KAAK,CAAC,YAAY,CAAC,MAA2B;QAC5C,IAAI,CAAC,aAAa,EAAE,CAAC;QACrB,MAAM,IAAI,CAAC,OAAO,CAAC,uBAAuB,EAAE;YAC1C,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;gBACnB,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAA,0BAAe,EAAC,KAAK,CAAC,CAAC;aACtD,CAAC;SACH,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,KAAwB;QAC3C,IAAI,CAAC,aAAa,EAAE,CAAC;QACrB,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,OAAO,CAAyB,mBAAmB,EAAE;YAC3E,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAA,0BAAe,EAAC,KAAK,CAAC,CAAC;SAC7C,CAAC,CAAC;QACH,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC;IACtC,CAAC;IAEO,KAAK,CAAC,OAAO,CAAc,IAAY,EAAE,OAAoB,EAAE;QACrE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,QAAQ,GAAG,IAAI,EAAE,EAAE;YACtD,GAAG,IAAI;YACP,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBACpD,GAAG,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC;aACxB;YACD,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;SAClC,CAAC,CAAC;QACH,MAAM,IAAI,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAyB,CAAC;QAC/E,IAAI,CAAC,QAAQ,CAAC,EAAE,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;QACzE,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,aAAa;QACnB,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,6CAA6C,CAAC,CAAC;QACjE,CAAC;IACH,CAAC;CACF;AA1ED,sDA0EC;AAED,SAAS,qBAAqB,CAAC,MAAqB;IAClD,OAAO;QACL,SAAS,EAAE,IAAA,4BAAa,EAAC,MAAM,CAAC,SAAS,EAAE,GAAG,CAAC;QAC/C,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,QAAQ,EAAE,IAAA,4BAAa,EAAC,MAAM,CAAC,QAAQ,EAAE,GAAG,CAAC;QAC7C,KAAK,EAAE,IAAA,4BAAa,EAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC;QAC1C,GAAG,EAAE,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAA,4BAAa,EAAC,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS;QAC5D,WAAW,EAAE,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,IAAA,4BAAa,EAAC,MAAM,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS;QACpF,QAAQ,EAAE,IAAA,6BAAc,EAAC,MAAM,CAAC,QAAQ,CAAC;KAC1C,CAAC;AACJ,CAAC"}

package/dist/config.d.ts

@@ -0,0 +1,31 @@
+export interface AgentGuardConfig {
+    version: 1;
+    level: 'strict' | 'balanced' | 'permissive';
+    cloudUrl?: string;
+    apiKey?: string;
+    connectedAt?: string;
+    policyCachePath: string;
+    auditPath: string;
+    eventSpoolPath: string;
+}
+export interface AgentGuardPaths {
+    home: string;
+    configPath: string;
+    policyCachePath: string;
+    auditPath: string;
+    eventSpoolPath: string;
+}
+export declare function getAgentGuardPaths(): AgentGuardPaths;
+export declare function defaultConfig(): AgentGuardConfig;
+export declare function ensureAgentGuardHome(): AgentGuardPaths;
+export declare function ensureConfig(): AgentGuardConfig;
+export declare function loadConfig(): AgentGuardConfig;
+export declare function saveConfig(config: AgentGuardConfig): void;
+export declare function connectCloud(options: {
+    apiKey: string;
+    cloudUrl?: string;
+}): AgentGuardConfig;
+export declare function maskApiKey(apiKey?: string): string;
+export declare function validateApiKey(apiKey: string): void;
+export declare function normalizeCloudUrl(value: string): string;
+//# sourceMappingURL=config.d.ts.map

package/dist/config.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.d.ts","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,CAAC,CAAC;IACX,KAAK,EAAE,QAAQ,GAAG,UAAU,GAAG,YAAY,CAAC;IAC5C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,MAAM,CAAC;CACxB;AAKD,wBAAgB,kBAAkB,IAAI,eAAe,CASpD;AAED,wBAAgB,aAAa,IAAI,gBAAgB,CAUhD;AAED,wBAAgB,oBAAoB,IAAI,eAAe,CAKtD;AAED,wBAAgB,YAAY,IAAI,gBAAgB,CAQ/C;AAED,wBAAgB,UAAU,IAAI,gBAAgB,CAkB7C;AAED,wBAAgB,UAAU,CAAC,MAAM,EAAE,gBAAgB,GAAG,IAAI,CAKzD;AAED,wBAAgB,YAAY,CAAC,OAAO,EAAE;IAAE,MAAM,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,gBAAgB,CAW7F;AAED,wBAAgB,UAAU,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAIlD;AAED,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAInD;AAED,wBAAgB,iBAAiB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAYvD"}

package/dist/config.js

@@ -0,0 +1,131 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAgentGuardPaths = getAgentGuardPaths;
+exports.defaultConfig = defaultConfig;
+exports.ensureAgentGuardHome = ensureAgentGuardHome;
+exports.ensureConfig = ensureConfig;
+exports.loadConfig = loadConfig;
+exports.saveConfig = saveConfig;
+exports.connectCloud = connectCloud;
+exports.maskApiKey = maskApiKey;
+exports.validateApiKey = validateApiKey;
+exports.normalizeCloudUrl = normalizeCloudUrl;
+const node_fs_1 = require("node:fs");
+const node_path_1 = require("node:path");
+const node_os_1 = require("node:os");
+const DEFAULT_CLOUD_URL = 'https://agentguard.gopluslabs.io';
+const API_KEY_PATTERN = /^ag_live_[A-Za-z0-9_-]{8,}$/;
+function getAgentGuardPaths() {
+    const home = process.env.AGENTGUARD_HOME || (0, node_path_1.join)((0, node_os_1.homedir)(), '.agentguard');
+    return {
+        home,
+        configPath: (0, node_path_1.join)(home, 'config.json'),
+        policyCachePath: (0, node_path_1.join)(home, 'policy-cache.json'),
+        auditPath: (0, node_path_1.join)(home, 'audit.jsonl'),
+        eventSpoolPath: (0, node_path_1.join)(home, 'events-spool.jsonl'),
+    };
+}
+function defaultConfig() {
+    const paths = getAgentGuardPaths();
+    return {
+        version: 1,
+        level: 'balanced',
+        cloudUrl: DEFAULT_CLOUD_URL,
+        policyCachePath: paths.policyCachePath,
+        auditPath: paths.auditPath,
+        eventSpoolPath: paths.eventSpoolPath,
+    };
+}
+function ensureAgentGuardHome() {
+    const paths = getAgentGuardPaths();
+    (0, node_fs_1.mkdirSync)(paths.home, { recursive: true, mode: 0o700 });
+    chmodBestEffort(paths.home, 0o700);
+    return paths;
+}
+function ensureConfig() {
+    const paths = ensureAgentGuardHome();
+    if (!(0, node_fs_1.existsSync)(paths.configPath)) {
+        const config = defaultConfig();
+        saveConfig(config);
+        return config;
+    }
+    return loadConfig();
+}
+function loadConfig() {
+    const fallback = defaultConfig();
+    try {
+        const paths = getAgentGuardPaths();
+        const parsed = JSON.parse((0, node_fs_1.readFileSync)(paths.configPath, 'utf8'));
+        return {
+            ...fallback,
+            ...parsed,
+            version: 1,
+            level: normalizeLevel(parsed.level) ?? fallback.level,
+            cloudUrl: parsed.cloudUrl || fallback.cloudUrl,
+            policyCachePath: parsed.policyCachePath || fallback.policyCachePath,
+            auditPath: parsed.auditPath || fallback.auditPath,
+            eventSpoolPath: parsed.eventSpoolPath || fallback.eventSpoolPath,
+        };
+    }
+    catch {
+        return fallback;
+    }
+}
+function saveConfig(config) {
+    const paths = ensureAgentGuardHome();
+    (0, node_fs_1.mkdirSync)((0, node_path_1.dirname)(paths.configPath), { recursive: true });
+    (0, node_fs_1.writeFileSync)(paths.configPath, `${JSON.stringify(config, null, 2)}\n`, { mode: 0o600 });
+    chmodBestEffort(paths.configPath, 0o600);
+}
+function connectCloud(options) {
+    const current = ensureConfig();
+    validateApiKey(options.apiKey);
+    const next = {
+        ...current,
+        cloudUrl: normalizeCloudUrl(options.cloudUrl || current.cloudUrl || DEFAULT_CLOUD_URL),
+        apiKey: options.apiKey,
+        connectedAt: new Date().toISOString(),
+    };
+    saveConfig(next);
+    return next;
+}
+function maskApiKey(apiKey) {
+    if (!apiKey)
+        return 'not configured';
+    if (apiKey.length <= 12)
+        return `${apiKey.slice(0, 4)}…`;
+    return `${apiKey.slice(0, 8)}…${apiKey.slice(-4)}`;
+}
+function validateApiKey(apiKey) {
+    if (!API_KEY_PATTERN.test(apiKey)) {
+        throw new Error('Invalid AgentGuard API key format. Expected an ag_live_ key.');
+    }
+}
+function normalizeCloudUrl(value) {
+    const normalized = value.replace(/\/+$/, '');
+    let parsed;
+    try {
+        parsed = new URL(normalized);
+    }
+    catch {
+        throw new Error('Invalid Cloud URL.');
+    }
+    if (parsed.protocol !== 'https:') {
+        throw new Error('Invalid Cloud URL. AgentGuard Cloud URLs must use https://.');
+    }
+    return normalized;
+}
+function normalizeLevel(value) {
+    return value === 'strict' || value === 'balanced' || value === 'permissive'
+        ? value
+        : null;
+}
+function chmodBestEffort(path, mode) {
+    try {
+        (0, node_fs_1.chmodSync)(path, mode);
+    }
+    catch {
+        // Best-effort hardening for platforms/filesystems that support chmod.
+    }
+}
+//# sourceMappingURL=config.js.map

package/dist/config.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"config.js","sourceRoot":"","sources":["../src/config.ts"],"names":[],"mappings":";;AA0BA,gDASC;AAED,sCAUC;AAED,oDAKC;AAED,oCAQC;AAED,gCAkBC;AAED,gCAKC;AAED,oCAWC;AAED,gCAIC;AAED,wCAIC;AAED,8CAYC;AAlID,qCAAwF;AACxF,yCAA0C;AAC1C,qCAAkC;AAqBlC,MAAM,iBAAiB,GAAG,kCAAkC,CAAC;AAC7D,MAAM,eAAe,GAAG,6BAA6B,CAAC;AAEtD,SAAgB,kBAAkB;IAChC,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,IAAA,gBAAI,EAAC,IAAA,iBAAO,GAAE,EAAE,aAAa,CAAC,CAAC;IAC3E,OAAO;QACL,IAAI;QACJ,UAAU,EAAE,IAAA,gBAAI,EAAC,IAAI,EAAE,aAAa,CAAC;QACrC,eAAe,EAAE,IAAA,gBAAI,EAAC,IAAI,EAAE,mBAAmB,CAAC;QAChD,SAAS,EAAE,IAAA,gBAAI,EAAC,IAAI,EAAE,aAAa,CAAC;QACpC,cAAc,EAAE,IAAA,gBAAI,EAAC,IAAI,EAAE,oBAAoB,CAAC;KACjD,CAAC;AACJ,CAAC;AAED,SAAgB,aAAa;IAC3B,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;IACnC,OAAO;QACL,OAAO,EAAE,CAAC;QACV,KAAK,EAAE,UAAU;QACjB,QAAQ,EAAE,iBAAiB;QAC3B,eAAe,EAAE,KAAK,CAAC,eAAe;QACtC,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,cAAc,EAAE,KAAK,CAAC,cAAc;KACrC,CAAC;AACJ,CAAC;AAED,SAAgB,oBAAoB;IAClC,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;IACnC,IAAA,mBAAS,EAAC,KAAK,CAAC,IAAI,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACxD,eAAe,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;IACnC,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAgB,YAAY;IAC1B,MAAM,KAAK,GAAG,oBAAoB,EAAE,CAAC;IACrC,IAAI,CAAC,IAAA,oBAAU,EAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;QAClC,MAAM,MAAM,GAAG,aAAa,EAAE,CAAC;QAC/B,UAAU,CAAC,MAAM,CAAC,CAAC;QACnB,OAAO,MAAM,CAAC;IAChB,CAAC;IACD,OAAO,UAAU,EAAE,CAAC;AACtB,CAAC;AAED,SAAgB,UAAU;IACxB,MAAM,QAAQ,GAAG,aAAa,EAAE,CAAC;IACjC,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;QACnC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAA,sBAAY,EAAC,KAAK,CAAC,UAAU,EAAE,MAAM,CAAC,CAA8B,CAAC;QAC/F,OAAO;YACL,GAAG,QAAQ;YACX,GAAG,MAAM;YACT,OAAO,EAAE,CAAC;YACV,KAAK,EAAE,cAAc,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,QAAQ,CAAC,KAAK;YACrD,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,QAAQ,CAAC,QAAQ;YAC9C,eAAe,EAAE,MAAM,CAAC,eAAe,IAAI,QAAQ,CAAC,eAAe;YACnE,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,QAAQ,CAAC,SAAS;YACjD,cAAc,EAAE,MAAM,CAAC,cAAc,IAAI,QAAQ,CAAC,cAAc;SACjE,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,QAAQ,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAgB,UAAU,CAAC,MAAwB;IACjD,MAAM,KAAK,GAAG,oBAAoB,EAAE,CAAC;IACrC,IAAA,mBAAS,EAAC,IAAA,mBAAO,EAAC,KAAK,CAAC,UAAU,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC1D,IAAA,uBAAa,EAAC,KAAK,CAAC,UAAU,EAAE,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACzF,eAAe,CAAC,KAAK,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC;AAC3C,CAAC;AAED,SAAgB,YAAY,CAAC,OAA8C;IACzE,MAAM,OAAO,GAAG,YAAY,EAAE,CAAC;IAC/B,cAAc,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAC/B,MAAM,IAAI,GAAqB;QAC7B,GAAG,OAAO;QACV,QAAQ,EAAE,iBAAiB,CAAC,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,IAAI,iBAAiB,CAAC;QACtF,MAAM,EAAE,OAAO,CAAC,MAAM;QACtB,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACtC,CAAC;IACF,UAAU,CAAC,IAAI,CAAC,CAAC;IACjB,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAgB,UAAU,CAAC,MAAe;IACxC,IAAI,CAAC,MAAM;QAAE,OAAO,gBAAgB,CAAC;IACrC,IAAI,MAAM,CAAC,MAAM,IAAI,EAAE;QAAE,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC;IACzD,OAAO,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;AACrD,CAAC;AAED,SAAgB,cAAc,CAAC,MAAc;IAC3C,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;QAClC,MAAM,IAAI,KAAK,CAAC,8DAA8D,CAAC,CAAC;IAClF,CAAC;AACH,CAAC;AAED,SAAgB,iBAAiB,CAAC,KAAa;IAC7C,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IAC7C,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC;IAC/B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACxC,CAAC;IACD,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,6DAA6D,CAAC,CAAC;IACjF,CAAC;IACD,OAAO,UAAU,CAAC;AACpB,CAAC;AAED,SAAS,cAAc,CAAC,KAAc;IACpC,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,UAAU,IAAI,KAAK,KAAK,YAAY;QACzE,CAAC,CAAC,KAAK;QACP,CAAC,CAAC,IAAI,CAAC;AACX,CAAC;AAED,SAAS,eAAe,CAAC,IAAY,EAAE,IAAY;IACjD,IAAI,CAAC;QACH,IAAA,mBAAS,EAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,sEAAsE;IACxE,CAAC;AACH,CAAC"}

package/dist/index.d.ts

@@ -13,6 +13,13 @@ export { ActionScanner, GoPlusClient, type ActionScannerOptions, } from './actio
 export { DEFAULT_POLICIES, RESTRICTIVE_CAPABILITY, PERMISSIVE_CAPABILITY, CAPABILITY_PRESETS, type PolicyConfig, } from './policy/default.js';
 export { containsSensitiveData, maskSensitiveData, extractDomain, isDomainAllowed, SENSITIVE_PATTERNS, } from './utils/patterns.js';
 export { ClaudeCodeAdapter, OpenClawAdapter, evaluateHook, registerOpenClawPlugin, loadConfig, type HookAdapter, type HookInput, type HookOutput, type EngineOptions, } from './adapters/index.js';
+export { ensureConfig, loadConfig as loadAgentGuardConfig, saveConfig as saveAgentGuardConfig, connectCloud, getAgentGuardPaths, type AgentGuardConfig, } from './config.js';
+export { AgentGuardCloudClient } from './cloud/client.js';
+export { evaluateLocalAction } from './runtime/evaluator.js';
+export { protectAction, formatProtectResult, exitCodeForDecision, type ProtectOptions, type ProtectResult, } from './runtime/protect.js';
+export { redactText, redactPreview, redactReasons } from './runtime/redaction.js';
+export { getDefaultEffectiveRuntimePolicy, loadCachedPolicy, saveCachedPolicy, resolveRuntimePolicy, } from './runtime/policy.js';
+export type { EffectiveRuntimePolicy, RuntimeAction, RuntimeDecision, RuntimeAuditEvent, RuntimeActionType, RuntimeAgentHost, CloudPolicyDecision, } from './runtime/types.js';
 import { SkillScanner } from './scanner/index.js';
 import { SkillRegistry } from './registry/index.js';
 import { ActionScanner } from './action/index.js';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,cAAc,kBAAkB,CAAC;AAGjC,OAAO,EAAE,YAAY,EAAE,KAAK,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACvE,OAAO,EACL,aAAa,EACb,eAAe,EACf,KAAK,eAAe,EACpB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,YAAY,GAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EACL,aAAa,EACb,YAAY,EACZ,KAAK,oBAAoB,GAC1B,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EACL,gBAAgB,EAChB,sBAAsB,EACtB,qBAAqB,EACrB,kBAAkB,EAClB,KAAK,YAAY,GAClB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,qBAAqB,EACrB,iBAAiB,EACjB,aAAa,EACb,eAAe,EACf,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,iBAAiB,EACjB,eAAe,EACf,YAAY,EACZ,sBAAsB,EACtB,UAAU,EACV,KAAK,WAAW,EAChB,KAAK,SAAS,EACd,KAAK,UAAU,EACf,KAAK,aAAa,GACnB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAExD;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,CAAC,EAAE;IACzC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,8EAA8E;IAC9E,mBAAmB,CAAC,EAAE,eAAe,CAAC;CACvC;;;;EAmBA;AAGD,eAAe,gBAAgB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,cAAc,kBAAkB,CAAC;AAGjC,OAAO,EAAE,YAAY,EAAE,KAAK,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACvE,OAAO,EACL,aAAa,EACb,eAAe,EACf,KAAK,eAAe,EACpB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,YAAY,GAClB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EACL,aAAa,EACb,YAAY,EACZ,KAAK,oBAAoB,GAC1B,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EACL,gBAAgB,EAChB,sBAAsB,EACtB,qBAAqB,EACrB,kBAAkB,EAClB,KAAK,YAAY,GAClB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,qBAAqB,EACrB,iBAAiB,EACjB,aAAa,EACb,eAAe,EACf,kBAAkB,GACnB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,iBAAiB,EACjB,eAAe,EACf,YAAY,EACZ,sBAAsB,EACtB,UAAU,EACV,KAAK,WAAW,EAChB,KAAK,SAAS,EACd,KAAK,UAAU,EACf,KAAK,aAAa,GACnB,MAAM,qBAAqB,CAAC;AAG7B,OAAO,EACL,YAAY,EACZ,UAAU,IAAI,oBAAoB,EAClC,UAAU,IAAI,oBAAoB,EAClC,YAAY,EACZ,kBAAkB,EAClB,KAAK,gBAAgB,GACtB,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,qBAAqB,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,EACL,aAAa,EACb,mBAAmB,EACnB,mBAAmB,EACnB,KAAK,cAAc,EACnB,KAAK,aAAa,GACnB,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EAAE,UAAU,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAClF,OAAO,EACL,gCAAgC,EAChC,gBAAgB,EAChB,gBAAgB,EAChB,oBAAoB,GACrB,MAAM,qBAAqB,CAAC;AAC7B,YAAY,EACV,sBAAsB,EACtB,aAAa,EACb,eAAe,EACf,iBAAiB,EACjB,iBAAiB,EACjB,gBAAgB,EAChB,mBAAmB,GACpB,MAAM,oBAAoB,CAAC;AAG5B,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAClD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAExD;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,CAAC,EAAE;IACzC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,8EAA8E;IAC9E,mBAAmB,CAAC,EAAE,eAAe,CAAC;CACvC;;;;EAmBA;AAGD,eAAe,gBAAgB,CAAC"}

package/dist/index.js

@@ -22,7 +22,7 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
     for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.loadConfig = exports.registerOpenClawPlugin = exports.evaluateHook = exports.OpenClawAdapter = exports.ClaudeCodeAdapter = exports.SENSITIVE_PATTERNS = exports.isDomainAllowed = exports.extractDomain = exports.maskSensitiveData = exports.containsSensitiveData = exports.CAPABILITY_PRESETS = exports.PERMISSIVE_CAPABILITY = exports.RESTRICTIVE_CAPABILITY = exports.DEFAULT_POLICIES = exports.GoPlusClient = exports.ActionScanner = exports.RegistryStorage = exports.SkillRegistry = exports.SkillScanner = void 0;
+exports.resolveRuntimePolicy = exports.saveCachedPolicy = exports.loadCachedPolicy = exports.getDefaultEffectiveRuntimePolicy = exports.redactReasons = exports.redactPreview = exports.redactText = exports.exitCodeForDecision = exports.formatProtectResult = exports.protectAction = exports.evaluateLocalAction = exports.AgentGuardCloudClient = exports.getAgentGuardPaths = exports.connectCloud = exports.saveAgentGuardConfig = exports.loadAgentGuardConfig = exports.ensureConfig = exports.loadConfig = exports.registerOpenClawPlugin = exports.evaluateHook = exports.OpenClawAdapter = exports.ClaudeCodeAdapter = exports.SENSITIVE_PATTERNS = exports.isDomainAllowed = exports.extractDomain = exports.maskSensitiveData = exports.containsSensitiveData = exports.CAPABILITY_PRESETS = exports.PERMISSIVE_CAPABILITY = exports.RESTRICTIVE_CAPABILITY = exports.DEFAULT_POLICIES = exports.GoPlusClient = exports.ActionScanner = exports.RegistryStorage = exports.SkillRegistry = exports.SkillScanner = void 0;
 exports.createAgentGuard = createAgentGuard;
 // Export types
 __exportStar(require("./types/index.js"), exports);
@@ -55,6 +55,30 @@ Object.defineProperty(exports, "OpenClawAdapter", { enumerable: true, get: funct
 Object.defineProperty(exports, "evaluateHook", { enumerable: true, get: function () { return index_js_4.evaluateHook; } });
 Object.defineProperty(exports, "registerOpenClawPlugin", { enumerable: true, get: function () { return index_js_4.registerOpenClawPlugin; } });
 Object.defineProperty(exports, "loadConfig", { enumerable: true, get: function () { return index_js_4.loadConfig; } });
+// Export local-first runtime and Cloud connect helpers
+var config_js_1 = require("./config.js");
+Object.defineProperty(exports, "ensureConfig", { enumerable: true, get: function () { return config_js_1.ensureConfig; } });
+Object.defineProperty(exports, "loadAgentGuardConfig", { enumerable: true, get: function () { return config_js_1.loadConfig; } });
+Object.defineProperty(exports, "saveAgentGuardConfig", { enumerable: true, get: function () { return config_js_1.saveConfig; } });
+Object.defineProperty(exports, "connectCloud", { enumerable: true, get: function () { return config_js_1.connectCloud; } });
+Object.defineProperty(exports, "getAgentGuardPaths", { enumerable: true, get: function () { return config_js_1.getAgentGuardPaths; } });
+var client_js_1 = require("./cloud/client.js");
+Object.defineProperty(exports, "AgentGuardCloudClient", { enumerable: true, get: function () { return client_js_1.AgentGuardCloudClient; } });
+var evaluator_js_1 = require("./runtime/evaluator.js");
+Object.defineProperty(exports, "evaluateLocalAction", { enumerable: true, get: function () { return evaluator_js_1.evaluateLocalAction; } });
+var protect_js_1 = require("./runtime/protect.js");
+Object.defineProperty(exports, "protectAction", { enumerable: true, get: function () { return protect_js_1.protectAction; } });
+Object.defineProperty(exports, "formatProtectResult", { enumerable: true, get: function () { return protect_js_1.formatProtectResult; } });
+Object.defineProperty(exports, "exitCodeForDecision", { enumerable: true, get: function () { return protect_js_1.exitCodeForDecision; } });
+var redaction_js_1 = require("./runtime/redaction.js");
+Object.defineProperty(exports, "redactText", { enumerable: true, get: function () { return redaction_js_1.redactText; } });
+Object.defineProperty(exports, "redactPreview", { enumerable: true, get: function () { return redaction_js_1.redactPreview; } });
+Object.defineProperty(exports, "redactReasons", { enumerable: true, get: function () { return redaction_js_1.redactReasons; } });
+var policy_js_1 = require("./runtime/policy.js");
+Object.defineProperty(exports, "getDefaultEffectiveRuntimePolicy", { enumerable: true, get: function () { return policy_js_1.getDefaultEffectiveRuntimePolicy; } });
+Object.defineProperty(exports, "loadCachedPolicy", { enumerable: true, get: function () { return policy_js_1.loadCachedPolicy; } });
+Object.defineProperty(exports, "saveCachedPolicy", { enumerable: true, get: function () { return policy_js_1.saveCachedPolicy; } });
+Object.defineProperty(exports, "resolveRuntimePolicy", { enumerable: true, get: function () { return policy_js_1.resolveRuntimePolicy; } });
 // Convenience factory functions
 const index_js_5 = require("./scanner/index.js");
 const index_js_6 = require("./registry/index.js");

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;;;;;;;;;;;;;;;AA6DH,4CAwBC;AAnFD,eAAe;AACf,mDAAiC;AAEjC,iBAAiB;AACjB,+CAAuE;AAA9D,wGAAA,YAAY,OAAA;AACrB,gDAO6B;AAN3B,yGAAA,aAAa,OAAA;AACb,2GAAA,eAAe,OAAA;AAMjB,8CAI2B;AAHzB,yGAAA,aAAa,OAAA;AACb,wGAAA,YAAY,OAAA;AAId,wBAAwB;AACxB,kDAM6B;AAL3B,8GAAA,gBAAgB,OAAA;AAChB,oHAAA,sBAAsB,OAAA;AACtB,mHAAA,qBAAqB,OAAA;AACrB,gHAAA,kBAAkB,OAAA;AAIpB,2BAA2B;AAC3B,mDAM6B;AAL3B,oHAAA,qBAAqB,OAAA;AACrB,gHAAA,iBAAiB,OAAA;AACjB,4GAAA,aAAa,OAAA;AACb,8GAAA,eAAe,OAAA;AACf,iHAAA,kBAAkB,OAAA;AAGpB,gDAAgD;AAChD,gDAU6B;AAT3B,6GAAA,iBAAiB,OAAA;AACjB,2GAAA,eAAe,OAAA;AACf,wGAAA,YAAY,OAAA;AACZ,kHAAA,sBAAsB,OAAA;AACtB,sGAAA,UAAU,OAAA;AAOZ,gCAAgC;AAChC,iDAAkD;AAClD,kDAAoD;AACpD,gDAAkD;AAGlD;;GAEG;AACH,SAAgB,gBAAgB,CAAC,OAKhC;IACC,MAAM,QAAQ,GAAG,IAAI,wBAAa,CAAC;QACjC,QAAQ,EAAE,OAAO,EAAE,YAAY;KAChC,CAAC,CAAC;IAEH,MAAM,OAAO,GAAG,IAAI,uBAAY,CAAC;QAC/B,kBAAkB,EAAE,OAAO,EAAE,kBAAkB,IAAI,IAAI;KACxD,CAAC,CAAC;IAEH,MAAM,aAAa,GAAG,IAAI,wBAAa,CAAC;QACtC,QAAQ;QACR,mBAAmB,EAAE,OAAO,EAAE,mBAAmB;KAClD,CAAC,CAAC;IAEH,OAAO;QACL,OAAO;QACP,QAAQ;QACR,aAAa;KACd,CAAC;AACJ,CAAC;AAED,iBAAiB;AACjB,kBAAe,gBAAgB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;;;;;;;;;;;;;;;AAgGH,4CAwBC;AAtHD,eAAe;AACf,mDAAiC;AAEjC,iBAAiB;AACjB,+CAAuE;AAA9D,wGAAA,YAAY,OAAA;AACrB,gDAO6B;AAN3B,yGAAA,aAAa,OAAA;AACb,2GAAA,eAAe,OAAA;AAMjB,8CAI2B;AAHzB,yGAAA,aAAa,OAAA;AACb,wGAAA,YAAY,OAAA;AAId,wBAAwB;AACxB,kDAM6B;AAL3B,8GAAA,gBAAgB,OAAA;AAChB,oHAAA,sBAAsB,OAAA;AACtB,mHAAA,qBAAqB,OAAA;AACrB,gHAAA,kBAAkB,OAAA;AAIpB,2BAA2B;AAC3B,mDAM6B;AAL3B,oHAAA,qBAAqB,OAAA;AACrB,gHAAA,iBAAiB,OAAA;AACjB,4GAAA,aAAa,OAAA;AACb,8GAAA,eAAe,OAAA;AACf,iHAAA,kBAAkB,OAAA;AAGpB,gDAAgD;AAChD,gDAU6B;AAT3B,6GAAA,iBAAiB,OAAA;AACjB,2GAAA,eAAe,OAAA;AACf,wGAAA,YAAY,OAAA;AACZ,kHAAA,sBAAsB,OAAA;AACtB,sGAAA,UAAU,OAAA;AAOZ,uDAAuD;AACvD,yCAOqB;AANnB,yGAAA,YAAY,OAAA;AACZ,iHAAA,UAAU,OAAwB;AAClC,iHAAA,UAAU,OAAwB;AAClC,yGAAA,YAAY,OAAA;AACZ,+GAAA,kBAAkB,OAAA;AAGpB,+CAA0D;AAAjD,kHAAA,qBAAqB,OAAA;AAC9B,uDAA6D;AAApD,mHAAA,mBAAmB,OAAA;AAC5B,mDAM8B;AAL5B,2GAAA,aAAa,OAAA;AACb,iHAAA,mBAAmB,OAAA;AACnB,iHAAA,mBAAmB,OAAA;AAIrB,uDAAkF;AAAzE,0GAAA,UAAU,OAAA;AAAE,6GAAA,aAAa,OAAA;AAAE,6GAAA,aAAa,OAAA;AACjD,iDAK6B;AAJ3B,6HAAA,gCAAgC,OAAA;AAChC,6GAAA,gBAAgB,OAAA;AAChB,6GAAA,gBAAgB,OAAA;AAChB,iHAAA,oBAAoB,OAAA;AAYtB,gCAAgC;AAChC,iDAAkD;AAClD,kDAAoD;AACpD,gDAAkD;AAGlD;;GAEG;AACH,SAAgB,gBAAgB,CAAC,OAKhC;IACC,MAAM,QAAQ,GAAG,IAAI,wBAAa,CAAC;QACjC,QAAQ,EAAE,OAAO,EAAE,YAAY;KAChC,CAAC,CAAC;IAEH,MAAM,OAAO,GAAG,IAAI,uBAAY,CAAC;QAC/B,kBAAkB,EAAE,OAAO,EAAE,kBAAkB,IAAI,IAAI;KACxD,CAAC,CAAC;IAEH,MAAM,aAAa,GAAG,IAAI,wBAAa,CAAC;QACtC,QAAQ;QACR,mBAAmB,EAAE,OAAO,EAAE,mBAAmB;KAClD,CAAC,CAAC;IAEH,OAAO;QACL,OAAO;QACP,QAAQ;QACR,aAAa;KACd,CAAC;AACJ,CAAC;AAED,iBAAiB;AACjB,kBAAe,gBAAgB,CAAC"}

package/dist/installers.d.ts

@@ -0,0 +1,10 @@
+export type AgentInstaller = 'claude-code' | 'codex' | 'openclaw';
+export interface InstallResult {
+    agent: AgentInstaller;
+    files: string[];
+}
+export declare function installAgentTemplates(agent: AgentInstaller, options?: {
+    cwd?: string;
+    force?: boolean;
+}): InstallResult;
+//# sourceMappingURL=installers.d.ts.map

package/dist/installers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"installers.d.ts","sourceRoot":"","sources":["../src/installers.ts"],"names":[],"mappings":"AAGA,MAAM,MAAM,cAAc,GAAG,aAAa,GAAG,OAAO,GAAG,UAAU,CAAC;AAElE,MAAM,WAAW,aAAa;IAC5B,KAAK,EAAE,cAAc,CAAC;IACtB,KAAK,EAAE,MAAM,EAAE,CAAC;CACjB;AAED,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,cAAc,EAAE,OAAO,GAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAC;IAAC,KAAK,CAAC,EAAE,OAAO,CAAA;CAAO,GAAG,aAAa,CAM3H"}