@governed-ai/runtime 1.0.0

package/dist/src/state/interaction_state.d.ts

@@ -0,0 +1,59 @@
+import type { QueryClassification } from "../classification/query_classifier";
+export interface GovernanceDecisionRecord {
+    timestamp: string;
+    query: string;
+    outcome: "allowed" | "pre_blocked" | "post_blocked";
+    blockedReason: string | null;
+    classification: QueryClassification;
+    domain: string;
+}
+export interface ReferencedEntity {
+    entityId: string | null;
+    entityName: string | null;
+    firstReferencedAt: string;
+    lastReferencedAt: string;
+    referenceCount: number;
+}
+export interface ConversationEntry {
+    timestamp: string;
+    role: "user" | "governance";
+    content: string;
+    blocked: boolean;
+}
+export interface InteractionSessionState {
+    sessionId: string;
+    createdAt: string;
+    lastActivityAt: string;
+    domain: string;
+    turnCount: number;
+    referencedEntities: Map<string, ReferencedEntity>;
+    governanceDecisions: GovernanceDecisionRecord[];
+    conversationHistory: ConversationEntry[];
+}
+export interface SessionStateUpdate {
+    domain?: string;
+    entity?: {
+        entityId: string | null;
+        entityName: string | null;
+    };
+    governanceDecision?: GovernanceDecisionRecord;
+    conversationEntry?: ConversationEntry;
+}
+export interface IInteractionStateManager {
+    createSession(sessionId: string, domain?: string): InteractionSessionState;
+    getSessionState(sessionId: string): InteractionSessionState | null;
+    updateSessionState(sessionId: string, update: SessionStateUpdate): InteractionSessionState;
+}
+export declare class InteractionStateManager implements IInteractionStateManager {
+    private sessions;
+    private maxDecisionHistory;
+    private maxConversationHistory;
+    constructor(options?: {
+        maxDecisionHistory?: number;
+        maxConversationHistory?: number;
+    });
+    createSession(sessionId: string, domain?: string): InteractionSessionState;
+    getSessionState(sessionId: string): InteractionSessionState | null;
+    updateSessionState(sessionId: string, update: SessionStateUpdate): InteractionSessionState;
+}
+//# sourceMappingURL=interaction_state.d.ts.map

package/dist/src/state/interaction_state.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"interaction_state.d.ts","sourceRoot":"","sources":["../../../src/state/interaction_state.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,oCAAoC,CAAC;AAE9E,MAAM,WAAW,wBAAwB;IACvC,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,SAAS,GAAG,aAAa,GAAG,cAAc,CAAC;IACpD,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,cAAc,EAAE,mBAAmB,CAAC;IACpC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,gBAAgB;IAC/B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,iBAAiB;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,GAAG,YAAY,CAAC;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,uBAAuB;IACtC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,MAAM,CAAC;IACvB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,kBAAkB,EAAE,GAAG,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;IAClD,mBAAmB,EAAE,wBAAwB,EAAE,CAAC;IAChD,mBAAmB,EAAE,iBAAiB,EAAE,CAAC;CAC1C;AAED,MAAM,WAAW,kBAAkB;IACjC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE;QACP,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;QACxB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;KAC3B,CAAC;IACF,kBAAkB,CAAC,EAAE,wBAAwB,CAAC;IAC9C,iBAAiB,CAAC,EAAE,iBAAiB,CAAC;CACvC;AAED,MAAM,WAAW,wBAAwB;IACvC,aAAa,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,uBAAuB,CAAC;IAC3E,eAAe,CAAC,SAAS,EAAE,MAAM,GAAG,uBAAuB,GAAG,IAAI,CAAC;IACnE,kBAAkB,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,kBAAkB,GAAG,uBAAuB,CAAC;CAC5F;AAED,qBAAa,uBAAwB,YAAW,wBAAwB;IACtE,OAAO,CAAC,QAAQ,CAAmD;IACnE,OAAO,CAAC,kBAAkB,CAAS;IACnC,OAAO,CAAC,sBAAsB,CAAS;gBAE3B,OAAO,CAAC,EAAE;QAAE,kBAAkB,CAAC,EAAE,MAAM,CAAC;QAAC,sBAAsB,CAAC,EAAE,MAAM,CAAA;KAAE;IAKtF,aAAa,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,uBAAuB;IAsB1E,eAAe,CAAC,SAAS,EAAE,MAAM,GAAG,uBAAuB,GAAG,IAAI;IAIlE,kBAAkB,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,kBAAkB,GAAG,uBAAuB;CAgD3F"}

package/dist/src/state/interaction_state.js

@@ -0,0 +1,75 @@
+export class InteractionStateManager {
+    sessions = new Map();
+    maxDecisionHistory;
+    maxConversationHistory;
+    constructor(options) {
+        this.maxDecisionHistory = options?.maxDecisionHistory ?? 100;
+        this.maxConversationHistory = options?.maxConversationHistory ?? 200;
+    }
+    createSession(sessionId, domain) {
+        const existing = this.sessions.get(sessionId);
+        if (existing) {
+            return existing;
+        }
+        const now = new Date().toISOString();
+        const session = {
+            sessionId,
+            createdAt: now,
+            lastActivityAt: now,
+            domain: domain ?? "health",
+            turnCount: 0,
+            referencedEntities: new Map(),
+            governanceDecisions: [],
+            conversationHistory: [],
+        };
+        this.sessions.set(sessionId, session);
+        return session;
+    }
+    getSessionState(sessionId) {
+        return this.sessions.get(sessionId) ?? null;
+    }
+    updateSessionState(sessionId, update) {
+        let session = this.sessions.get(sessionId);
+        if (!session) {
+            session = this.createSession(sessionId, update.domain);
+        }
+        session.lastActivityAt = new Date().toISOString();
+        if (update.domain) {
+            session.domain = update.domain;
+        }
+        if (update.entity) {
+            const key = update.entity.entityId ?? update.entity.entityName ?? "";
+            if (key) {
+                const existing = session.referencedEntities.get(key);
+                if (existing) {
+                    existing.lastReferencedAt = session.lastActivityAt;
+                    existing.referenceCount += 1;
+                }
+                else {
+                    session.referencedEntities.set(key, {
+                        entityId: update.entity.entityId,
+                        entityName: update.entity.entityName,
+                        firstReferencedAt: session.lastActivityAt,
+                        lastReferencedAt: session.lastActivityAt,
+                        referenceCount: 1,
+                    });
+                }
+            }
+        }
+        if (update.governanceDecision) {
+            session.governanceDecisions.push(update.governanceDecision);
+            if (session.governanceDecisions.length > this.maxDecisionHistory) {
+                session.governanceDecisions = session.governanceDecisions.slice(-this.maxDecisionHistory);
+            }
+        }
+        if (update.conversationEntry) {
+            session.conversationHistory.push(update.conversationEntry);
+            session.turnCount += 1;
+            if (session.conversationHistory.length > this.maxConversationHistory) {
+                session.conversationHistory = session.conversationHistory.slice(-this.maxConversationHistory);
+            }
+        }
+        return session;
+    }
+}
+//# sourceMappingURL=interaction_state.js.map

package/dist/src/state/interaction_state.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"interaction_state.js","sourceRoot":"","sources":["../../../src/state/interaction_state.ts"],"names":[],"mappings":"AAqDA,MAAM,OAAO,uBAAuB;IAC1B,QAAQ,GAAyC,IAAI,GAAG,EAAE,CAAC;IAC3D,kBAAkB,CAAS;IAC3B,sBAAsB,CAAS;IAEvC,YAAY,OAA0E;QACpF,IAAI,CAAC,kBAAkB,GAAG,OAAO,EAAE,kBAAkB,IAAI,GAAG,CAAC;QAC7D,IAAI,CAAC,sBAAsB,GAAG,OAAO,EAAE,sBAAsB,IAAI,GAAG,CAAC;IACvE,CAAC;IAED,aAAa,CAAC,SAAiB,EAAE,MAAe;QAC9C,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC9C,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QACrC,MAAM,OAAO,GAA4B;YACvC,SAAS;YACT,SAAS,EAAE,GAAG;YACd,cAAc,EAAE,GAAG;YACnB,MAAM,EAAE,MAAM,IAAI,QAAQ;YAC1B,SAAS,EAAE,CAAC;YACZ,kBAAkB,EAAE,IAAI,GAAG,EAAE;YAC7B,mBAAmB,EAAE,EAAE;YACvB,mBAAmB,EAAE,EAAE;SACxB,CAAC;QAEF,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QACtC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,eAAe,CAAC,SAAiB;QAC/B,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,IAAI,CAAC;IAC9C,CAAC;IAED,kBAAkB,CAAC,SAAiB,EAAE,MAA0B;QAC9D,IAAI,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC3C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QACzD,CAAC;QAED,OAAO,CAAC,cAAc,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAElD,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAClB,OAAO,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;QACjC,CAAC;QAED,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;YAClB,MAAM,GAAG,GAAG,MAAM,CAAC,MAAM,CAAC,QAAQ,IAAI,MAAM,CAAC,MAAM,CAAC,UAAU,IAAI,EAAE,CAAC;YACrE,IAAI,GAAG,EAAE,CAAC;gBACR,MAAM,QAAQ,GAAG,OAAO,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACrD,IAAI,QAAQ,EAAE,CAAC;oBACb,QAAQ,CAAC,gBAAgB,GAAG,OAAO,CAAC,cAAc,CAAC;oBACnD,QAAQ,CAAC,cAAc,IAAI,CAAC,CAAC;gBAC/B,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,EAAE;wBAClC,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ;wBAChC,UAAU,EAAE,MAAM,CAAC,MAAM,CAAC,UAAU;wBACpC,iBAAiB,EAAE,OAAO,CAAC,cAAc;wBACzC,gBAAgB,EAAE,OAAO,CAAC,cAAc;wBACxC,cAAc,EAAE,CAAC;qBAClB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,IAAI,MAAM,CAAC,kBAAkB,EAAE,CAAC;YAC9B,OAAO,CAAC,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC;YAC5D,IAAI,OAAO,CAAC,mBAAmB,CAAC,MAAM,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;gBACjE,OAAO,CAAC,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;YAC5F,CAAC;QACH,CAAC;QAED,IAAI,MAAM,CAAC,iBAAiB,EAAE,CAAC;YAC7B,OAAO,CAAC,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;YAC3D,OAAO,CAAC,SAAS,IAAI,CAAC,CAAC;YACvB,IAAI,OAAO,CAAC,mBAAmB,CAAC,MAAM,GAAG,IAAI,CAAC,sBAAsB,EAAE,CAAC;gBACrE,OAAO,CAAC,mBAAmB,GAAG,OAAO,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;YAChG,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CACF"}

package/dist/src/telemetry/governance_logger.d.ts

@@ -0,0 +1,36 @@
+import type { QueryClassification } from "../classification/query_classifier";
+import type { Violation } from "../reasoning/reasoning_validator";
+export interface GovernanceLogEntry {
+    timestamp: string;
+    query: string;
+    classification: QueryClassification;
+    preInteraction: {
+        allowed: boolean;
+        blockedReason: string | null;
+        entityFound: boolean;
+        patientId: string | null;
+    };
+    llmCalled: boolean;
+    llmResponseSummary: string | null;
+    postInteraction: {
+        approved: boolean;
+        violations: Violation[];
+    } | null;
+    finalOutcome: "allowed" | "pre_blocked" | "post_blocked" | "tool_blocked" | "trace_blocked";
+    domain: string;
+    sessionId: string | null;
+    toolGuardBlocked?: number;
+    retrievalConfidence?: number | null;
+}
+export interface IGovernanceLogger {
+    log(entry: GovernanceLogEntry): void;
+}
+export declare class GovernanceLogger implements IGovernanceLogger {
+    private metricsAggregator;
+    constructor(metricsAggregator?: IMetricsReceiver);
+    log(entry: GovernanceLogEntry): void;
+}
+export interface IMetricsReceiver {
+    record(entry: GovernanceLogEntry): void;
+}
+//# sourceMappingURL=governance_logger.d.ts.map

package/dist/src/telemetry/governance_logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"governance_logger.d.ts","sourceRoot":"","sources":["../../../src/telemetry/governance_logger.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAa,mBAAmB,EAAE,MAAM,oCAAoC,CAAC;AACzF,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,kCAAkC,CAAC;AAElE,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,cAAc,EAAE,mBAAmB,CAAC;IACpC,cAAc,EAAE;QACd,OAAO,EAAE,OAAO,CAAC;QACjB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;QAC7B,WAAW,EAAE,OAAO,CAAC;QACrB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;KAC1B,CAAC;IACF,SAAS,EAAE,OAAO,CAAC;IACnB,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;IAClC,eAAe,EAAE;QACf,QAAQ,EAAE,OAAO,CAAC;QAClB,UAAU,EAAE,SAAS,EAAE,CAAC;KACzB,GAAG,IAAI,CAAC;IACT,YAAY,EAAE,SAAS,GAAG,aAAa,GAAG,cAAc,GAAG,cAAc,GAAG,eAAe,CAAC;IAC5F,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,mBAAmB,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACrC;AAED,MAAM,WAAW,iBAAiB;IAChC,GAAG,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI,CAAC;CACtC;AAED,qBAAa,gBAAiB,YAAW,iBAAiB;IACxD,OAAO,CAAC,iBAAiB,CAA0B;gBAEvC,iBAAiB,CAAC,EAAE,gBAAgB;IAIhD,GAAG,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI;CA2BrC;AAED,MAAM,WAAW,gBAAgB;IAC/B,MAAM,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI,CAAC;CACzC"}

package/dist/src/telemetry/governance_logger.js

@@ -0,0 +1,32 @@
+export class GovernanceLogger {
+    metricsAggregator;
+    constructor(metricsAggregator) {
+        this.metricsAggregator = metricsAggregator ?? null;
+    }
+    log(entry) {
+        const logObj = {
+            level: "GOVERNANCE",
+            timestamp: entry.timestamp,
+            query: entry.query.substring(0, 120),
+            classification: entry.classification.type,
+            classificationConfidence: entry.classification.confidence,
+            preAllowed: entry.preInteraction.allowed,
+            preBlockedReason: entry.preInteraction.blockedReason,
+            entityFound: entry.preInteraction.entityFound,
+            patientId: entry.preInteraction.patientId,
+            llmCalled: entry.llmCalled,
+            postApproved: entry.postInteraction?.approved ?? null,
+            postViolations: entry.postInteraction?.violations.length ?? 0,
+            postViolationTypes: entry.postInteraction?.violations.map((v) => v.type) ?? [],
+            finalOutcome: entry.finalOutcome,
+            domain: entry.domain,
+            sessionId: entry.sessionId,
+            toolGuardBlocked: entry.toolGuardBlocked ?? 0,
+        };
+        console.log(`[GOVERNANCE] ${JSON.stringify(logObj)}`);
+        if (this.metricsAggregator) {
+            this.metricsAggregator.record(entry);
+        }
+    }
+}
+//# sourceMappingURL=governance_logger.js.map

package/dist/src/telemetry/governance_logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"governance_logger.js","sourceRoot":"","sources":["../../../src/telemetry/governance_logger.ts"],"names":[],"mappings":"AA8BA,MAAM,OAAO,gBAAgB;IACnB,iBAAiB,CAA0B;IAEnD,YAAY,iBAAoC;QAC9C,IAAI,CAAC,iBAAiB,GAAG,iBAAiB,IAAI,IAAI,CAAC;IACrD,CAAC;IAED,GAAG,CAAC,KAAyB;QAC3B,MAAM,MAAM,GAAG;YACb,KAAK,EAAE,YAAY;YACnB,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,KAAK,EAAE,KAAK,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;YACpC,cAAc,EAAE,KAAK,CAAC,cAAc,CAAC,IAAI;YACzC,wBAAwB,EAAE,KAAK,CAAC,cAAc,CAAC,UAAU;YACzD,UAAU,EAAE,KAAK,CAAC,cAAc,CAAC,OAAO;YACxC,gBAAgB,EAAE,KAAK,CAAC,cAAc,CAAC,aAAa;YACpD,WAAW,EAAE,KAAK,CAAC,cAAc,CAAC,WAAW;YAC7C,SAAS,EAAE,KAAK,CAAC,cAAc,CAAC,SAAS;YACzC,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,YAAY,EAAE,KAAK,CAAC,eAAe,EAAE,QAAQ,IAAI,IAAI;YACrD,cAAc,EAAE,KAAK,CAAC,eAAe,EAAE,UAAU,CAAC,MAAM,IAAI,CAAC;YAC7D,kBAAkB,EAAE,KAAK,CAAC,eAAe,EAAE,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE;YAC9E,YAAY,EAAE,KAAK,CAAC,YAAY;YAChC,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,SAAS,EAAE,KAAK,CAAC,SAAS;YAC1B,gBAAgB,EAAE,KAAK,CAAC,gBAAgB,IAAI,CAAC;SAC9C,CAAC;QAEF,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;QAEtD,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC3B,IAAI,CAAC,iBAAiB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;CACF"}

package/dist/src/telemetry/index.d.ts

@@ -0,0 +1,2 @@
+export { GovernanceLogger, type GovernanceLogEntry, type IGovernanceLogger, } from "./governance_logger";
+//# sourceMappingURL=index.d.ts.map

package/dist/src/telemetry/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/telemetry/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,gBAAgB,EAChB,KAAK,kBAAkB,EACvB,KAAK,iBAAiB,GACvB,MAAM,qBAAqB,CAAC"}

package/dist/src/telemetry/index.js

@@ -0,0 +1,2 @@
+export { GovernanceLogger, } from "./governance_logger.js";
+//# sourceMappingURL=index.js.map

package/dist/src/telemetry/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/telemetry/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,gBAAgB,GAGjB,MAAM,qBAAqB,CAAC"}

package/dist/src/telemetry/metrics.d.ts

@@ -0,0 +1,49 @@
+import type { GovernanceLogEntry } from "./governance_logger";
+export interface GovernanceMetrics {
+    totalQueries: number;
+    blockedQueries: number;
+    allowedQueries: number;
+    blockRate: number;
+    hallucinationDetections: number;
+    safetyViolations: number;
+    traceViolations: number;
+    toolBlocks: number;
+    averageRetrievalConfidence: number;
+    byDomain: Record<string, DomainMetrics>;
+    byOutcome: Record<string, number>;
+    byClassification: Record<string, number>;
+    startedAt: string;
+    lastUpdatedAt: string | null;
+}
+export interface DomainMetrics {
+    totalQueries: number;
+    blockedQueries: number;
+    allowedQueries: number;
+    blockRate: number;
+}
+export interface IGovernanceMetricsAggregator {
+    record(entry: GovernanceLogEntry): void;
+    getMetrics(): GovernanceMetrics;
+    reset(): void;
+}
+export declare class GovernanceMetricsAggregator implements IGovernanceMetricsAggregator {
+    private totalQueries;
+    private blockedQueries;
+    private allowedQueries;
+    private hallucinationDetections;
+    private safetyViolations;
+    private traceViolations;
+    private toolBlocks;
+    private retrievalConfidenceSum;
+    private retrievalConfidenceCount;
+    private byDomain;
+    private byOutcome;
+    private byClassification;
+    private startedAt;
+    private lastUpdatedAt;
+    constructor();
+    record(entry: GovernanceLogEntry): void;
+    getMetrics(): GovernanceMetrics;
+    reset(): void;
+}
+//# sourceMappingURL=metrics.d.ts.map

package/dist/src/telemetry/metrics.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"metrics.d.ts","sourceRoot":"","sources":["../../../src/telemetry/metrics.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AAE9D,MAAM,WAAW,iBAAiB;IAChC,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,uBAAuB,EAAE,MAAM,CAAC;IAChC,gBAAgB,EAAE,MAAM,CAAC;IACzB,eAAe,EAAE,MAAM,CAAC;IACxB,UAAU,EAAE,MAAM,CAAC;IACnB,0BAA0B,EAAE,MAAM,CAAC;IACnC,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;IACxC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClC,gBAAgB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACzC,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;CAC9B;AAED,MAAM,WAAW,aAAa;IAC5B,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,4BAA4B;IAC3C,MAAM,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI,CAAC;IACxC,UAAU,IAAI,iBAAiB,CAAC;IAChC,KAAK,IAAI,IAAI,CAAC;CACf;AAED,qBAAa,2BAA4B,YAAW,4BAA4B;IAC9E,OAAO,CAAC,YAAY,CAAK;IACzB,OAAO,CAAC,cAAc,CAAK;IAC3B,OAAO,CAAC,cAAc,CAAK;IAC3B,OAAO,CAAC,uBAAuB,CAAK;IACpC,OAAO,CAAC,gBAAgB,CAAK;IAC7B,OAAO,CAAC,eAAe,CAAK;IAC5B,OAAO,CAAC,UAAU,CAAK;IACvB,OAAO,CAAC,sBAAsB,CAAK;IACnC,OAAO,CAAC,wBAAwB,CAAK;IACrC,OAAO,CAAC,QAAQ,CAA0E;IAC1F,OAAO,CAAC,SAAS,CAA6B;IAC9C,OAAO,CAAC,gBAAgB,CAA6B;IACrD,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,aAAa,CAAuB;;IAM5C,MAAM,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI;IAqDvC,UAAU,IAAI,iBAAiB;IAuC/B,KAAK,IAAI,IAAI;CAgBd"}

package/dist/src/telemetry/metrics.js

@@ -0,0 +1,115 @@
+export class GovernanceMetricsAggregator {
+    totalQueries = 0;
+    blockedQueries = 0;
+    allowedQueries = 0;
+    hallucinationDetections = 0;
+    safetyViolations = 0;
+    traceViolations = 0;
+    toolBlocks = 0;
+    retrievalConfidenceSum = 0;
+    retrievalConfidenceCount = 0;
+    byDomain = new Map();
+    byOutcome = new Map();
+    byClassification = new Map();
+    startedAt;
+    lastUpdatedAt = null;
+    constructor() {
+        this.startedAt = new Date().toISOString();
+    }
+    record(entry) {
+        this.totalQueries++;
+        this.lastUpdatedAt = entry.timestamp;
+        const isBlocked = entry.finalOutcome !== "allowed";
+        if (isBlocked) {
+            this.blockedQueries++;
+        }
+        else {
+            this.allowedQueries++;
+        }
+        this.byOutcome.set(entry.finalOutcome, (this.byOutcome.get(entry.finalOutcome) ?? 0) + 1);
+        const classType = entry.classification?.type ?? "unknown";
+        this.byClassification.set(classType, (this.byClassification.get(classType) ?? 0) + 1);
+        const domain = entry.domain ?? "unknown";
+        if (!this.byDomain.has(domain)) {
+            this.byDomain.set(domain, { total: 0, blocked: 0, allowed: 0 });
+        }
+        const domainStats = this.byDomain.get(domain);
+        domainStats.total++;
+        if (isBlocked) {
+            domainStats.blocked++;
+        }
+        else {
+            domainStats.allowed++;
+        }
+        if (entry.postInteraction?.violations) {
+            for (const v of entry.postInteraction.violations) {
+                if (v.type === "hallucination") {
+                    this.hallucinationDetections++;
+                }
+                if (v.type === "unsafe_content" || v.type === "privacy_leak") {
+                    this.safetyViolations++;
+                }
+            }
+        }
+        if (entry.finalOutcome === "trace_blocked") {
+            this.traceViolations++;
+        }
+        if (entry.finalOutcome === "tool_blocked") {
+            this.toolBlocks++;
+        }
+        if (entry.retrievalConfidence != null) {
+            this.retrievalConfidenceSum += entry.retrievalConfidence;
+            this.retrievalConfidenceCount++;
+        }
+    }
+    getMetrics() {
+        const avgConfidence = this.retrievalConfidenceCount > 0
+            ? Math.round((this.retrievalConfidenceSum / this.retrievalConfidenceCount) * 1000) / 1000
+            : 0;
+        const blockRate = this.totalQueries > 0
+            ? Math.round((this.blockedQueries / this.totalQueries) * 1000) / 1000
+            : 0;
+        const domainMetrics = {};
+        for (const [domain, stats] of this.byDomain) {
+            domainMetrics[domain] = {
+                totalQueries: stats.total,
+                blockedQueries: stats.blocked,
+                allowedQueries: stats.allowed,
+                blockRate: stats.total > 0 ? Math.round((stats.blocked / stats.total) * 1000) / 1000 : 0,
+            };
+        }
+        return {
+            totalQueries: this.totalQueries,
+            blockedQueries: this.blockedQueries,
+            allowedQueries: this.allowedQueries,
+            blockRate,
+            hallucinationDetections: this.hallucinationDetections,
+            safetyViolations: this.safetyViolations,
+            traceViolations: this.traceViolations,
+            toolBlocks: this.toolBlocks,
+            averageRetrievalConfidence: avgConfidence,
+            byDomain: domainMetrics,
+            byOutcome: Object.fromEntries(this.byOutcome),
+            byClassification: Object.fromEntries(this.byClassification),
+            startedAt: this.startedAt,
+            lastUpdatedAt: this.lastUpdatedAt,
+        };
+    }
+    reset() {
+        this.totalQueries = 0;
+        this.blockedQueries = 0;
+        this.allowedQueries = 0;
+        this.hallucinationDetections = 0;
+        this.safetyViolations = 0;
+        this.traceViolations = 0;
+        this.toolBlocks = 0;
+        this.retrievalConfidenceSum = 0;
+        this.retrievalConfidenceCount = 0;
+        this.byDomain.clear();
+        this.byOutcome.clear();
+        this.byClassification.clear();
+        this.startedAt = new Date().toISOString();
+        this.lastUpdatedAt = null;
+    }
+}
+//# sourceMappingURL=metrics.js.map

package/dist/src/telemetry/metrics.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"metrics.js","sourceRoot":"","sources":["../../../src/telemetry/metrics.ts"],"names":[],"mappings":"AAgCA,MAAM,OAAO,2BAA2B;IAC9B,YAAY,GAAG,CAAC,CAAC;IACjB,cAAc,GAAG,CAAC,CAAC;IACnB,cAAc,GAAG,CAAC,CAAC;IACnB,uBAAuB,GAAG,CAAC,CAAC;IAC5B,gBAAgB,GAAG,CAAC,CAAC;IACrB,eAAe,GAAG,CAAC,CAAC;IACpB,UAAU,GAAG,CAAC,CAAC;IACf,sBAAsB,GAAG,CAAC,CAAC;IAC3B,wBAAwB,GAAG,CAAC,CAAC;IAC7B,QAAQ,GAAG,IAAI,GAAG,EAA+D,CAAC;IAClF,SAAS,GAAG,IAAI,GAAG,EAAkB,CAAC;IACtC,gBAAgB,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC7C,SAAS,CAAS;IAClB,aAAa,GAAkB,IAAI,CAAC;IAE5C;QACE,IAAI,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAC5C,CAAC;IAED,MAAM,CAAC,KAAyB;QAC9B,IAAI,CAAC,YAAY,EAAE,CAAC;QACpB,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC,SAAS,CAAC;QAErC,MAAM,SAAS,GAAG,KAAK,CAAC,YAAY,KAAK,SAAS,CAAC;QACnD,IAAI,SAAS,EAAE,CAAC;YACd,IAAI,CAAC,cAAc,EAAE,CAAC;QACxB,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,cAAc,EAAE,CAAC;QACxB,CAAC;QAED,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QAE1F,MAAM,SAAS,GAAG,KAAK,CAAC,cAAc,EAAE,IAAI,IAAI,SAAS,CAAC;QAC1D,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QAEtF,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,IAAI,SAAS,CAAC;QACzC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YAC/B,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,CAAC,CAAC;QAClE,CAAC;QACD,MAAM,WAAW,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAE,CAAC;QAC/C,WAAW,CAAC,KAAK,EAAE,CAAC;QACpB,IAAI,SAAS,EAAE,CAAC;YACd,WAAW,CAAC,OAAO,EAAE,CAAC;QACxB,CAAC;aAAM,CAAC;YACN,WAAW,CAAC,OAAO,EAAE,CAAC;QACxB,CAAC;QAED,IAAI,KAAK,CAAC,eAAe,EAAE,UAAU,EAAE,CAAC;YACtC,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,eAAe,CAAC,UAAU,EAAE,CAAC;gBACjD,IAAI,CAAC,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;oBAC/B,IAAI,CAAC,uBAAuB,EAAE,CAAC;gBACjC,CAAC;gBACD,IAAI,CAAC,CAAC,IAAI,KAAK,gBAAgB,IAAI,CAAC,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;oBAC7D,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBAC1B,CAAC;YACH,CAAC;QACH,CAAC;QAED,IAAI,KAAK,CAAC,YAAY,KAAK,eAAe,EAAE,CAAC;YAC3C,IAAI,CAAC,eAAe,EAAE,CAAC;QACzB,CAAC;QAED,IAAI,KAAK,CAAC,YAAY,KAAK,cAAc,EAAE,CAAC;YAC1C,IAAI,CAAC,UAAU,EAAE,CAAC;QACpB,CAAC;QAED,IAAI,KAAK,CAAC,mBAAmB,IAAI,IAAI,EAAE,CAAC;YACtC,IAAI,CAAC,sBAAsB,IAAI,KAAK,CAAC,mBAAmB,CAAC;YACzD,IAAI,CAAC,wBAAwB,EAAE,CAAC;QAClC,CAAC;IACH,CAAC;IAED,UAAU;QACR,MAAM,aAAa,GACjB,IAAI,CAAC,wBAAwB,GAAG,CAAC;YAC/B,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,sBAAsB,GAAG,IAAI,CAAC,wBAAwB,CAAC,GAAG,IAAI,CAAC,GAAG,IAAI;YACzF,CAAC,CAAC,CAAC,CAAC;QAER,MAAM,SAAS,GACb,IAAI,CAAC,YAAY,GAAG,CAAC;YACnB,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,GAAG,IAAI;YACrE,CAAC,CAAC,CAAC,CAAC;QAER,MAAM,aAAa,GAAkC,EAAE,CAAC;QACxD,KAAK,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC5C,aAAa,CAAC,MAAM,CAAC,GAAG;gBACtB,YAAY,EAAE,KAAK,CAAC,KAAK;gBACzB,cAAc,EAAE,KAAK,CAAC,OAAO;gBAC7B,cAAc,EAAE,KAAK,CAAC,OAAO;gBAC7B,SAAS,EAAE,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;aACzF,CAAC;QACJ,CAAC;QAED,OAAO;YACL,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,cAAc,EAAE,IAAI,CAAC,cAAc;YACnC,cAAc,EAAE,IAAI,CAAC,cAAc;YACnC,SAAS;YACT,uBAAuB,EAAE,IAAI,CAAC,uBAAuB;YACrD,gBAAgB,EAAE,IAAI,CAAC,gBAAgB;YACvC,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,0BAA0B,EAAE,aAAa;YACzC,QAAQ,EAAE,aAAa;YACvB,SAAS,EAAE,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,SAAS,CAAC;YAC7C,gBAAgB,EAAE,MAAM,CAAC,WAAW,CAAC,IAAI,CAAC,gBAAgB,CAAC;YAC3D,SAAS,EAAE,IAAI,CAAC,SAAS;YACzB,aAAa,EAAE,IAAI,CAAC,aAAa;SAClC,CAAC;IACJ,CAAC;IAED,KAAK;QACH,IAAI,CAAC,YAAY,GAAG,CAAC,CAAC;QACtB,IAAI,CAAC,cAAc,GAAG,CAAC,CAAC;QACxB,IAAI,CAAC,cAAc,GAAG,CAAC,CAAC;QACxB,IAAI,CAAC,uBAAuB,GAAG,CAAC,CAAC;QACjC,IAAI,CAAC,gBAAgB,GAAG,CAAC,CAAC;QAC1B,IAAI,CAAC,eAAe,GAAG,CAAC,CAAC;QACzB,IAAI,CAAC,UAAU,GAAG,CAAC,CAAC;QACpB,IAAI,CAAC,sBAAsB,GAAG,CAAC,CAAC;QAChC,IAAI,CAAC,wBAAwB,GAAG,CAAC,CAAC;QAClC,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;QACtB,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;QACvB,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;QAC9B,IAAI,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC1C,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC;IAC5B,CAAC;CACF"}

package/dist/src/tools/tool_guard.d.ts

@@ -0,0 +1,39 @@
+export interface ToolRequest {
+    toolName: string;
+    parameters: Record<string, any>;
+    sessionId?: string | null;
+    domain?: string;
+}
+export interface ToolGuardResult {
+    allowed: boolean;
+    blockedReason: string | null;
+    violations: ToolViolation[];
+    toolName: string;
+    sanitizedParameters: Record<string, any> | null;
+}
+export interface ToolViolation {
+    rule: string;
+    severity: "critical" | "high" | "medium" | "low";
+    description: string;
+}
+export interface ToolPolicyRule {
+    id: string;
+    description: string;
+    severity: "critical" | "high" | "medium" | "low";
+    check: (request: ToolRequest) => ToolViolation | null;
+}
+export interface IToolGuard {
+    evaluate(request: ToolRequest): ToolGuardResult;
+    addRule(rule: ToolPolicyRule): void;
+    removeRule(ruleId: string): void;
+    listRules(): ToolPolicyRule[];
+}
+export declare class ToolGuard implements IToolGuard {
+    private rules;
+    constructor(rules?: ToolPolicyRule[]);
+    evaluate(request: ToolRequest): ToolGuardResult;
+    addRule(rule: ToolPolicyRule): void;
+    removeRule(ruleId: string): void;
+    listRules(): ToolPolicyRule[];
+}
+//# sourceMappingURL=tool_guard.d.ts.map

package/dist/src/tools/tool_guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tool_guard.d.ts","sourceRoot":"","sources":["../../../src/tools/tool_guard.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;IAChC,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,OAAO,CAAC;IACjB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,UAAU,EAAE,aAAa,EAAE,CAAC;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,mBAAmB,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CAAC;CACjD;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACjD,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACjD,KAAK,EAAE,CAAC,OAAO,EAAE,WAAW,KAAK,aAAa,GAAG,IAAI,CAAC;CACvD;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,CAAC,OAAO,EAAE,WAAW,GAAG,eAAe,CAAC;IAChD,OAAO,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI,CAAC;IACpC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACjC,SAAS,IAAI,cAAc,EAAE,CAAC;CAC/B;AA8LD,qBAAa,SAAU,YAAW,UAAU;IAC1C,OAAO,CAAC,KAAK,CAA0C;gBAE3C,KAAK,CAAC,EAAE,cAAc,EAAE;IAOpC,QAAQ,CAAC,OAAO,EAAE,WAAW,GAAG,eAAe;IAyB/C,OAAO,CAAC,IAAI,EAAE,cAAc,GAAG,IAAI;IAInC,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI;IAIhC,SAAS,IAAI,cAAc,EAAE;CAG9B"}