@governed-ai/runtime 1.0.0

package/README.md

@@ -0,0 +1,251 @@
+# @governed-ai/runtime
+
+Agent-agnostic governance middleware for AI applications. Provides classification, pre/post-interaction governance, tool guarding, trace validation, telemetry, and certification — embeddable in any AI agent across any domain (health, finance, insurance, etc.).
+
+## Installation
+
+```bash
+npm install @governed-ai/runtime
+```
+
+## Usage
+
+There are two ways to use the governance runtime:
+
+### Option A: In-Process (Library Mode)
+
+Import the orchestrator directly and run governance within your application process. You supply your own LLM callback — governance never imports an LLM provider.
+
+```typescript
+import {
+  runGovernance,
+  DomainRegistry,
+  QueryClassifier,
+  PreInteractionGovernance,
+  PostInteractionGovernance,
+  ResponseNormalizer,
+  GovernanceLogger,
+  InteractionStateManager,
+  ToolGuard,
+  TraceValidator,
+  type GovernancePipelineConfig,
+  type GovernanceLLMCall,
+} from "@governed-ai/runtime";
+
+// 1. Set up the domain registry (built-in: health, finance, insurance)
+const domainRegistry = new DomainRegistry("insurance");
+const domainConfig = domainRegistry.getDomain("insurance");
+
+// 2. Wire up the pipeline components
+const pipelineConfig: GovernancePipelineConfig = {
+  queryClassifier: new QueryClassifier(),
+  preInteractionGovernance: new PreInteractionGovernance(
+    new QueryClassifier(),
+    yourEntityRepository,    // your domain's entity lookup
+    yourEntityResolver,      // your domain's entity resolver
+    domainConfig.policyEngine,
+    domainConfig.entityRules,
+  ),
+  postInteractionGovernance: new PostInteractionGovernance(),
+  responseNormalizer: new ResponseNormalizer(),
+  governanceLogger: new GovernanceLogger(),
+  stateManager: new InteractionStateManager(),
+  toolGuard: new ToolGuard(),
+  traceValidator: new TraceValidator(),
+};
+
+// 3. Define your LLM callback
+const myLLMCall: GovernanceLLMCall = async (query, context) => {
+  const result = await yourLLMProvider.generate(query, context);
+  return {
+    response: result.text,
+    confidence: result.confidence,
+    reasoning: result.reasoning,
+    evidence: result.sources,
+    missingData: result.gaps,
+    confidenceLabel: result.confidenceLabel,
+  };
+};
+
+// 4. Run governance
+const result = await runGovernance(
+  "What is my claim status?",
+  { sessionPatientId: "policyholder-123" },
+  myLLMCall,
+  pipelineConfig,
+  "insurance",
+  "session-abc",
+);
+
+if (result.blocked) {
+  console.log("Blocked:", result.blockedReason);
+} else {
+  console.log("Response:", result.finalResponse);
+}
+```
+
+### Option B: HTTP Service (SDK Mode)
+
+Deploy the governance runtime as a standalone API service, then use the lightweight SDK from any application.
+
+**Server side** (see `api-example/server.ts` for a full reference implementation):
+```bash
+# Start the governance API server
+npx tsx api-example/server.ts
+```
+
+**Client side:**
+```typescript
+import { createGovernance } from "@governed-ai/runtime/sdk";
+
+const governance = createGovernance({
+  baseUrl: "https://your-governance-service.example.com",
+});
+
+const result = await governance.run(
+  "What is my deductible?",
+  { sessionPatientId: "policyholder-456" },
+  "insurance",
+  "session-xyz",
+);
+
+if (result.status === "blocked") {
+  console.log("Blocked:", result.blockedReason);
+} else {
+  console.log("Response:", result.answer);
+}
+```
+
+## Built-in Domains
+
+The package ships with policy definitions for three domains:
+
+| Domain | Policy File | Entity Type |
+|--------|------------|-------------|
+| `health` | `domains/health/policy.yaml` | Patient |
+| `finance` | `domains/finance/policy.yaml` | Client |
+| `insurance` | `domains/insurance/policy.yaml` | Policyholder |
+
+Each domain defines blocked query types, privacy rules, and safety rules in its YAML policy file.
+
+## Registering Custom Domains
+
+```typescript
+import {
+  DomainRegistry,
+  PolicyEngine,
+  type DomainEntityRules,
+} from "@governed-ai/runtime";
+
+const registry = new DomainRegistry("health");
+
+// Register a custom domain with a policy definition object
+registry.registerDomain("legal", {
+  policyEngine: new PolicyEngine({
+    domain: "legal",
+    version: "1.0",
+    blocked_query_types: {
+      legal_advice: {
+        action: "block",
+        response: "I cannot provide legal advice.",
+      },
+    },
+    privacy_rules: [
+      { id: "client_privilege", description: "Protect attorney-client privilege", severity: "critical" },
+    ],
+    safety_rules: [
+      { id: "no_legal_opinion", description: "Do not issue legal opinions", severity: "critical" },
+    ],
+  }),
+  entityRules: {
+    domain: "legal",
+    entityLabel: "client",
+    entityLabelPlural: "clients",
+    // ... other entity rules
+  } as DomainEntityRules,
+});
+```
+
+## Certification
+
+Run the built-in UAT certification suite to validate your agent's governance compliance:
+
+```typescript
+import { CertificationTestRunner } from "@governed-ai/runtime";
+
+const runner = new CertificationTestRunner();
+const report = await runner.run(myLLMCall, pipelineConfig, {
+  domain: "insurance",
+  categories: ["safety", "privacy", "tool_governance"],
+});
+
+console.log(`Pass rate: ${report.passRate * 100}%`);
+console.log(`Verdict: ${report.verdict}`);
+// "certified" | "conditional" | "failed"
+```
+
+Or via the SDK:
+```typescript
+const report = await governance.certifyAgent({
+  domain: "insurance",
+  categories: ["safety", "privacy"],
+});
+```
+
+## Telemetry
+
+Track governance metrics across all queries:
+
+```typescript
+import { GovernanceMetricsAggregator, GovernanceLogger } from "@governed-ai/runtime";
+
+const metrics = new GovernanceMetricsAggregator();
+const logger = new GovernanceLogger(metrics);
+
+// Use this logger in your pipeline config
+// Later, retrieve metrics:
+const stats = metrics.getMetrics();
+console.log(`Total queries: ${stats.totalQueries}`);
+console.log(`Blocked: ${stats.blockedQueries}`);
+```
+
+## Pipeline Stages
+
+Every query passes through these stages in order:
+
+1. **Session Init** — Create/resume session state
+2. **Classify** — Identify query type and intent
+3. **Pre-Interaction** — Check against domain policy (blocked types, entity validation)
+4. **Tool Guard** — Validate any tool calls (PII access, destructive ops, bulk limits)
+5. **LLM Call** — Your LLM generates a response
+6. **Trace Validation** — Check reasoning for hallucinations, overconfidence, circular logic
+7. **Post-Interaction** — Validate response safety and accuracy
+8. **Normalize** — Add caveats, structure evidence, format response
+9. **Log & Persist** — Record decision and update session state
+
+Any stage can block the query, returning a safe fallback response with the `blockedStage` and `blockedReason` fields set.
+
+## API Reference
+
+### Exports
+
+| Export | Description |
+|--------|-------------|
+| `runGovernance` | Core orchestrator function |
+| `createGovernance` / `governance` | SDK client (HTTP mode) |
+| `DomainRegistry` | Domain policy registry |
+| `PolicyEngine` | YAML policy loader/evaluator |
+| `QueryClassifier` | Query intent classifier |
+| `PreInteractionGovernance` | Pre-interaction policy checks |
+| `PostInteractionGovernance` | Post-interaction safety checks |
+| `ResponseNormalizer` | Response formatting and caveats |
+| `GovernanceLogger` | Governance decision logger |
+| `GovernanceMetricsAggregator` | Telemetry metrics collector |
+| `InteractionStateManager` | Session state tracker |
+| `ToolGuard` | Tool call validator |
+| `TraceValidator` | Reasoning trace validator |
+| `CertificationTestRunner` | UAT certification runner |
+
+## License
+
+MIT

package/dist/domains/finance/entity_rules.d.ts

@@ -0,0 +1,4 @@
+import type { DomainEntityRules } from "../types";
+export declare const financeEntityRules: DomainEntityRules;
+export default financeEntityRules;
+//# sourceMappingURL=entity_rules.d.ts.map

package/dist/domains/finance/entity_rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"entity_rules.d.ts","sourceRoot":"","sources":["../../../domains/finance/entity_rules.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAElD,eAAO,MAAM,kBAAkB,EAAE,iBAwBhC,CAAC;AAEF,eAAe,kBAAkB,CAAC"}

package/dist/domains/finance/entity_rules.js

@@ -0,0 +1,19 @@
+export const financeEntityRules = {
+    domain: "finance",
+    entityLabel: "account holder",
+    entityLabelPlural: "account holders",
+    numericIdPattern: /account\s+(?:id\s+)?#?(\d{3,})/i,
+    numericIdFallbackPattern: /(?:acct|account)\s+#?(\d{3,})/i,
+    notFoundResponse: (id) => `No account found with ID ${id}. The account identifier is invalid or not found in the system. Please verify the account number and try again.`,
+    ambiguousResponse: (suggestion) => `The reference provided is ambiguous. Did you mean ${suggestion}? Please clarify the account holder's full name so I can retrieve the correct records.`,
+    entityNotFoundResponse: "No account holder found with that name or identifier in the system. Unable to retrieve any financial information. Please verify the account holder name and try again.",
+    stopWords: [
+        "Show", "Compare", "Analyze", "Check", "Get", "Find", "List", "Display",
+        "What", "Does", "Tell", "Give", "Assess", "Explain", "Did", "Will",
+        "According", "Based", "The", "His", "Her", "From", "With", "About", "For",
+        "Report", "Balance", "Statement", "Transaction", "Portfolio", "Account",
+        "Investment", "Fund", "Stock", "Bond", "Revenue", "Expense", "Profit",
+    ],
+};
+export default financeEntityRules;
+//# sourceMappingURL=entity_rules.js.map

package/dist/domains/finance/entity_rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"entity_rules.js","sourceRoot":"","sources":["../../../domains/finance/entity_rules.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,kBAAkB,GAAsB;IACnD,MAAM,EAAE,SAAS;IACjB,WAAW,EAAE,gBAAgB;IAC7B,iBAAiB,EAAE,iBAAiB;IAEpC,gBAAgB,EAAE,iCAAiC;IACnD,wBAAwB,EAAE,gCAAgC;IAE1D,gBAAgB,EAAE,CAAC,EAAU,EAAE,EAAE,CAC/B,4BAA4B,EAAE,iHAAiH;IAEjJ,iBAAiB,EAAE,CAAC,UAAkB,EAAE,EAAE,CACxC,qDAAqD,UAAU,wFAAwF;IAEzJ,sBAAsB,EACpB,wKAAwK;IAE1K,SAAS,EAAE;QACT,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS;QACvE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM;QAClE,WAAW,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK;QACzE,QAAQ,EAAE,SAAS,EAAE,WAAW,EAAE,aAAa,EAAE,WAAW,EAAE,SAAS;QACvE,YAAY,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,QAAQ;KACtE;CACF,CAAC;AAEF,eAAe,kBAAkB,CAAC"}

package/dist/domains/finance/policy.yaml

@@ -0,0 +1,85 @@
+domain: finance
+version: "1.0"
+
+blocked_query_types:
+  investment_advice:
+    action: block
+    response: >-
+      I cannot provide specific investment advice or recommend buying, selling,
+      or holding any financial instruments. Investment decisions should be made
+      in consultation with a licensed financial advisor who understands your
+      complete financial situation and risk tolerance.
+
+  tax_advice:
+    action: block
+    response: >-
+      I cannot provide tax advice or guidance on tax filings, deductions, or
+      strategies. Tax matters require the expertise of a licensed tax
+      professional or certified public accountant who can evaluate your specific
+      circumstances.
+
+  account_fraud:
+    action: block
+    response: >-
+      I cannot assist with any activity that could constitute fraud, including
+      misrepresentation of financial information, unauthorized account access,
+      or manipulation of financial records.
+
+  privacy_request:
+    action: block
+    response: >-
+      I cannot disclose information about other account holders or their
+      financial data. Account privacy is protected under strict regulatory
+      policies. Please reference only your own account.
+
+  safety_override:
+    action: block
+    response: >-
+      It is not possible to bypass or override compliance rules and governance
+      constraints. These safeguards exist to protect financial integrity and
+      regulatory compliance.
+
+  regulatory_violation:
+    action: block
+    response: >-
+      I cannot assist with any action that would violate financial regulations,
+      including but not limited to insider trading, money laundering, or
+      circumventing know-your-customer requirements.
+
+privacy_rules:
+  - id: no_cross_account_access
+    description: Prevent access to another account holder's financial data
+    severity: critical
+
+  - id: no_bulk_account_disclosure
+    description: Prevent bulk disclosure of account information
+    severity: critical
+
+  - id: require_account_identity
+    description: Require a verified account identity before returning financial data
+    severity: high
+
+  - id: no_raw_identifier_exposure
+    description: Do not expose internal account numbers or routing numbers in responses
+    severity: high
+
+safety_rules:
+  - id: no_investment_recommendations
+    description: System must not recommend specific investments or trades
+    severity: critical
+
+  - id: no_tax_guidance
+    description: System must not provide specific tax filing advice
+    severity: critical
+
+  - id: no_compliance_bypass
+    description: Reject any attempt to override regulatory compliance safeguards
+    severity: critical
+
+  - id: require_advisor_caveat
+    description: Include a financial-advisor consultation caveat in advisory responses
+    severity: high
+
+  - id: flag_low_confidence
+    description: Flag responses with low data confidence so the user is aware of limitations
+    severity: medium

package/dist/domains/health/entity_rules.d.ts

@@ -0,0 +1,4 @@
+import type { DomainEntityRules } from "../types";
+export declare const healthEntityRules: DomainEntityRules;
+export default healthEntityRules;
+//# sourceMappingURL=entity_rules.d.ts.map

package/dist/domains/health/entity_rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"entity_rules.d.ts","sourceRoot":"","sources":["../../../domains/health/entity_rules.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAElD,eAAO,MAAM,iBAAiB,EAAE,iBAyB/B,CAAC;AAEF,eAAe,iBAAiB,CAAC"}

package/dist/domains/health/entity_rules.js

@@ -0,0 +1,20 @@
+export const healthEntityRules = {
+    domain: "health",
+    entityLabel: "patient",
+    entityLabelPlural: "patients",
+    numericIdPattern: /patient\s+(?:id\s+)?#?(\d{3,})/i,
+    numericIdFallbackPattern: /(?:id|ID)\s+#?(\d{3,})/,
+    notFoundResponse: (id) => `No patient found with ID ${id}. The patient identifier is invalid or not found in the system. Please verify the patient ID and try again.`,
+    ambiguousResponse: (suggestion) => `The name provided is ambiguous. Did you mean ${suggestion}? Which patient are you referring to? Please clarify by providing the full patient name so I can retrieve the correct records.`,
+    entityNotFoundResponse: "No patient found with that name or identifier in the system. The patient was not found and no record or data exists for this name. Unable to retrieve any information. Please verify the patient name and try again.",
+    stopWords: [
+        "Show", "Compare", "Analyze", "Check", "Get", "Find", "List", "Display",
+        "What", "Does", "Tell", "Give", "Assess", "Explain", "Did", "Will",
+        "According", "Based", "The", "His", "Her", "From", "With", "About", "For",
+        "Report", "Level", "Levels", "Data", "Trend", "History", "Values",
+        "Result", "Results", "Cholesterol", "Creatinine", "Hemoglobin", "Glucose",
+        "Vitamin", "Medication", "Symptoms", "Diagnosis", "Patient",
+    ],
+};
+export default healthEntityRules;
+//# sourceMappingURL=entity_rules.js.map

package/dist/domains/health/entity_rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"entity_rules.js","sourceRoot":"","sources":["../../../domains/health/entity_rules.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,iBAAiB,GAAsB;IAClD,MAAM,EAAE,QAAQ;IAChB,WAAW,EAAE,SAAS;IACtB,iBAAiB,EAAE,UAAU;IAE7B,gBAAgB,EAAE,iCAAiC;IACnD,wBAAwB,EAAE,wBAAwB;IAElD,gBAAgB,EAAE,CAAC,EAAU,EAAE,EAAE,CAC/B,4BAA4B,EAAE,6GAA6G;IAE7I,iBAAiB,EAAE,CAAC,UAAkB,EAAE,EAAE,CACxC,gDAAgD,UAAU,gIAAgI;IAE5L,sBAAsB,EACpB,sNAAsN;IAExN,SAAS,EAAE;QACT,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS;QACvE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM;QAClE,WAAW,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK;QACzE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ;QACjE,QAAQ,EAAE,SAAS,EAAE,aAAa,EAAE,YAAY,EAAE,YAAY,EAAE,SAAS;QACzE,SAAS,EAAE,YAAY,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS;KAC5D;CACF,CAAC;AAEF,eAAe,iBAAiB,CAAC"}

package/dist/domains/health/policy.yaml

@@ -0,0 +1,95 @@
+domain: health
+version: "1.0"
+
+blocked_query_types:
+  diagnosis_request:
+    action: block
+    response: >-
+      I cannot provide medical diagnoses. It is not possible for this system
+      to diagnose conditions. Diagnosis requires clinical examination,
+      comprehensive testing, and professional medical judgment. Please consult
+      your healthcare provider or doctor for diagnostic evaluation.
+
+  medication_advice:
+    action: block
+    response: >-
+      I cannot provide medication advice, including recommendations to start,
+      stop, or change medications. Medication decisions should only be made by
+      your prescribing physician or healthcare provider. Please consult your
+      doctor based on your complete medical history.
+
+  population_query:
+    action: block
+    response: >-
+      I cannot provide information about multiple patients or patient
+      populations. For privacy and security reasons, patient data is protected
+      and not authorized for bulk access. Please specify a specific patient to
+      discuss their individual data.
+
+  privacy_request:
+    action: block
+    response: >-
+      I cannot disclose information about all patients or their conditions.
+      Patient privacy is protected under strict authorization policies. This
+      system is not authorized to share data about multiple patients. Please
+      specify a specific individual patient.
+
+  safety_override:
+    action: block
+    response: >-
+      It is not possible to bypass or override safety rules and governance
+      constraints. I am unable to ignore safety protocols. These safeguards
+      exist to protect patient safety. For any diagnosis or medical decisions,
+      please consult your healthcare provider.
+
+  ethical_violation:
+    action: block
+    response: >-
+      I cannot hide, suppress, or remove medical findings from reports. This
+      is not possible and would be an ethical violation. It is my obligation to
+      maintain data integrity and transparency. All clinically relevant data,
+      including abnormal results, must remain transparent and accessible for
+      proper patient care. I refuse to comply with this request as it is
+      inappropriate.
+
+privacy_rules:
+  - id: no_bulk_patient_access
+    description: Prevent access to multiple patient records in a single query
+    severity: critical
+
+  - id: no_cross_patient_data
+    description: Prevent leaking data from one patient into another patient's session
+    severity: critical
+
+  - id: require_patient_identity
+    description: Require a resolved patient identity before returning clinical data
+    severity: high
+
+  - id: no_raw_identifier_exposure
+    description: Do not expose internal database IDs or raw identifiers in responses
+    severity: medium
+
+safety_rules:
+  - id: no_diagnosis
+    description: System must not produce or confirm clinical diagnoses
+    severity: critical
+
+  - id: no_prescriptions
+    description: System must not recommend starting, stopping, or changing medications
+    severity: critical
+
+  - id: no_safety_bypass
+    description: Reject any attempt to override or disable governance safeguards
+    severity: critical
+
+  - id: no_data_suppression
+    description: Do not hide, suppress, or remove clinically relevant findings
+    severity: critical
+
+  - id: require_consultation_caveat
+    description: Include a healthcare-provider consultation caveat in clinical responses
+    severity: high
+
+  - id: flag_low_confidence
+    description: Flag responses with low retrieval confidence so the user is aware of data limitations
+    severity: medium

package/dist/domains/insurance/entity_rules.d.ts

@@ -0,0 +1,4 @@
+import type { DomainEntityRules } from "../types";
+export declare const insuranceEntityRules: DomainEntityRules;
+export default insuranceEntityRules;
+//# sourceMappingURL=entity_rules.d.ts.map

package/dist/domains/insurance/entity_rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"entity_rules.d.ts","sourceRoot":"","sources":["../../../domains/insurance/entity_rules.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAElD,eAAO,MAAM,oBAAoB,EAAE,iBAwBlC,CAAC;AAEF,eAAe,oBAAoB,CAAC"}

package/dist/domains/insurance/entity_rules.js

@@ -0,0 +1,19 @@
+export const insuranceEntityRules = {
+    domain: "insurance",
+    entityLabel: "policyholder",
+    entityLabelPlural: "policyholders",
+    numericIdPattern: /policy\s+(?:id\s+)?#?(\d{3,})/i,
+    numericIdFallbackPattern: /(?:policy|claim)\s+#?(\d{3,})/i,
+    notFoundResponse: (id) => `No policyholder found with ID ${id}. The policy identifier is invalid or not found in the system. Please verify the policy number and try again.`,
+    ambiguousResponse: (suggestion) => `The reference provided is ambiguous. Did you mean ${suggestion}? Please clarify the policyholder's full name so I can retrieve the correct records.`,
+    entityNotFoundResponse: "No policyholder found with that name or identifier in the system. Unable to retrieve any policy or claims information. Please verify the policyholder name and try again.",
+    stopWords: [
+        "Show", "Compare", "Analyze", "Check", "Get", "Find", "List", "Display",
+        "What", "Does", "Tell", "Give", "Assess", "Explain", "Did", "Will",
+        "According", "Based", "The", "His", "Her", "From", "With", "About", "For",
+        "Report", "Claim", "Claims", "Policy", "Coverage", "Premium", "Deductible",
+        "Benefit", "Copay", "Provider", "Network", "Underwriting",
+    ],
+};
+export default insuranceEntityRules;
+//# sourceMappingURL=entity_rules.js.map

package/dist/domains/insurance/entity_rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"entity_rules.js","sourceRoot":"","sources":["../../../domains/insurance/entity_rules.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,oBAAoB,GAAsB;IACrD,MAAM,EAAE,WAAW;IACnB,WAAW,EAAE,cAAc;IAC3B,iBAAiB,EAAE,eAAe;IAElC,gBAAgB,EAAE,gCAAgC;IAClD,wBAAwB,EAAE,gCAAgC;IAE1D,gBAAgB,EAAE,CAAC,EAAU,EAAE,EAAE,CAC/B,iCAAiC,EAAE,+GAA+G;IAEpJ,iBAAiB,EAAE,CAAC,UAAkB,EAAE,EAAE,CACxC,qDAAqD,UAAU,sFAAsF;IAEvJ,sBAAsB,EACpB,2KAA2K;IAE7K,SAAS,EAAE;QACT,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS;QACvE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM;QAClE,WAAW,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK;QACzE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY;QAC1E,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,cAAc;KAC1D;CACF,CAAC;AAEF,eAAe,oBAAoB,CAAC"}

package/dist/domains/insurance/policy.yaml

@@ -0,0 +1,88 @@
+domain: insurance
+version: "1.0"
+
+blocked_query_types:
+  claims_adjudication:
+    action: block
+    response: >-
+      I cannot adjudicate or approve insurance claims. Claims decisions require
+      review by a licensed claims adjuster who can assess the full documentation,
+      policy terms, and applicable regulations.
+
+  coverage_determination:
+    action: block
+    response: >-
+      I cannot make binding coverage determinations. Coverage decisions depend
+      on your specific policy terms, exclusions, and applicable state
+      regulations. Please contact your insurance representative for an official
+      coverage determination.
+
+  privacy_request:
+    action: block
+    response: >-
+      I cannot disclose information about other policyholders or their claims.
+      Policyholder privacy is protected under strict regulatory and contractual
+      obligations.
+
+  safety_override:
+    action: block
+    response: >-
+      It is not possible to bypass or override compliance rules and governance
+      constraints. These safeguards exist to protect policyholder rights and
+      regulatory compliance.
+
+  fraudulent_claim:
+    action: block
+    response: >-
+      I cannot assist with submitting false or misleading claim information.
+      Insurance fraud is a serious offense with legal consequences. All claim
+      information must be truthful and accurately documented.
+
+  regulatory_violation:
+    action: block
+    response: >-
+      I cannot assist with any action that would violate insurance regulations,
+      including unfair claims practices, discriminatory underwriting, or
+      misrepresentation of policy terms.
+
+privacy_rules:
+  - id: no_cross_policyholder_access
+    description: Prevent access to another policyholder's claims or policy data
+    severity: critical
+
+  - id: no_bulk_policyholder_disclosure
+    description: Prevent bulk disclosure of policyholder information
+    severity: critical
+
+  - id: require_policyholder_identity
+    description: Require a verified policyholder identity before returning policy or claims data
+    severity: high
+
+  - id: no_raw_identifier_exposure
+    description: Do not expose internal policy numbers or claim IDs in responses
+    severity: medium
+
+safety_rules:
+  - id: no_claims_adjudication
+    description: System must not approve or deny insurance claims
+    severity: critical
+
+  - id: no_coverage_binding
+    description: System must not make binding coverage determinations
+    severity: critical
+
+  - id: no_compliance_bypass
+    description: Reject any attempt to override regulatory compliance safeguards
+    severity: critical
+
+  - id: no_fraud_assistance
+    description: Refuse any request that could facilitate insurance fraud
+    severity: critical
+
+  - id: require_representative_caveat
+    description: Include an insurance-representative consultation caveat in policy responses
+    severity: high
+
+  - id: flag_low_confidence
+    description: Flag responses with low data confidence so the user is aware of limitations
+    severity: medium

package/dist/domains/registry.d.ts

@@ -0,0 +1,20 @@
+import { type IPolicyEngine } from "../src/policy/policy_engine";
+import type { DomainEntityRules } from "./types";
+export interface DomainConfig {
+    policyEngine: IPolicyEngine;
+    entityRules: DomainEntityRules;
+}
+export declare class DomainRegistry {
+    private domains;
+    private defaultDomain;
+    constructor(defaultDomain?: string);
+    private loadBuiltinDomains;
+    registerDomain(name: string, config: DomainConfig): void;
+    getDomain(name?: string): DomainConfig;
+    hasDomain(name: string): boolean;
+    listDomains(): string[];
+    getDefaultDomain(): string;
+    getPolicyEngine(domain?: string): IPolicyEngine;
+    getEntityRules(domain?: string): DomainEntityRules;
+}
+//# sourceMappingURL=registry.d.ts.map

package/dist/domains/registry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"registry.d.ts","sourceRoot":"","sources":["../../domains/registry.ts"],"names":[],"mappings":"AAGA,OAAO,EAAgB,KAAK,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAC/E,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AAKjD,MAAM,WAAW,YAAY;IAC3B,YAAY,EAAE,aAAa,CAAC;IAC5B,WAAW,EAAE,iBAAiB,CAAC;CAChC;AAUD,qBAAa,cAAc;IACzB,OAAO,CAAC,OAAO,CAAwC;IACvD,OAAO,CAAC,aAAa,CAAS;gBAElB,aAAa,GAAE,MAAiB;IAK5C,OAAO,CAAC,kBAAkB;IAkB1B,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAG,IAAI;IAIxD,SAAS,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,YAAY;IAWtC,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAIhC,WAAW,IAAI,MAAM,EAAE;IAIvB,gBAAgB,IAAI,MAAM;IAI1B,eAAe,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,aAAa;IAI/C,cAAc,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,iBAAiB;CAGnD"}