@gsep/core 0.8.0 → 1.0.0

package/dist/security/SecurityEventBus.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecurityEventBus.d.ts","sourceRoot":"","sources":["../../src/security/SecurityEventBus.ts"],"names":[],"mappings":"AAWA,MAAM,MAAM,iBAAiB,GAEvB,0BAA0B,GAC1B,0BAA0B,GAC1B,2BAA2B,GAC3B,+BAA+B,GAC/B,2BAA2B,GAC3B,2BAA2B,GAE3B,uBAAuB,GACvB,0BAA0B,GAC1B,+BAA+B,GAC/B,6BAA6B,GAE7B,0BAA0B,GAC1B,0BAA0B,GAC1B,2BAA2B,GAE3B,yBAAyB,GACzB,wBAAwB,GACxB,6BAA6B,GAC7B,4BAA4B,GAE5B,uBAAuB,GACvB,uBAAuB,GACvB,qBAAqB,GACrB,qBAAqB,GACrB,4BAA4B,GAE5B,sBAAsB,GACtB,sBAAsB,GAEtB,sBAAsB,GACtB,gCAAgC,GAChC,0BAA0B,CAAC;AAEjC,MAAM,WAAW,aAAa;IAC1B,IAAI,EAAE,iBAAiB,CAAC;IACxB,SAAS,EAAE,IAAI,CAAC;IAChB,KAAK,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACjC,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;IACpC,KAAK,EAAE;QACH,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,OAAO,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;IACF,QAAQ,EAAE;QACN,IAAI,EAAE,MAAM,CAAC;QACb,EAAE,EAAE,MAAM,CAAC;QACX,MAAM,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,GAAG,SAAS,GAAG,MAAM,GAAG,UAAU,CAAC;CACtD;AAED,KAAK,oBAAoB,GAAG,CAAC,KAAK,EAAE,aAAa,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AA8B3E,qBAAa,gBAAgB;IACzB,OAAO,CAAC,aAAa,CAA2D;IAChF,OAAO,CAAC,MAAM,CAAK;IACnB,OAAO,CAAC,OAAO,CAAuB;IACtC,OAAO,CAAC,UAAU,CAAO;IAKzB,EAAE,CAAC,IAAI,EAAE,iBAAiB,EAAE,OAAO,EAAE,oBAAoB,GAAG,MAAM;IAWlE,KAAK,CAAC,OAAO,EAAE,oBAAoB,GAAG,MAAM;IAW5C,GAAG,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO;IAepC,IAAI,CAAC,KAAK,EAAE,aAAa,GAAG,IAAI;IAuBhC,QAAQ,CACJ,IAAI,EAAE,iBAAiB,EACvB,KAAK,EAAE,aAAa,CAAC,OAAO,CAAC,EAC7B,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAC,EACnC,QAAQ,GAAE,aAAa,CAAC,UAAU,CAAa,EAC/C,KAAK,CAAC,EAAE,aAAa,CAAC,OAAO,CAAC,EAC9B,QAAQ,CAAC,EAAE,MAAM,GAClB,IAAI;IAgBP,SAAS,CACL,IAAI,EAAE,iBAAiB,EACvB,KAAK,EAAE,aAAa,CAAC,OAAO,CAAC,EAC7B,QAAQ,EAAE,aAAa,CAAC,UAAU,CAAC,EACnC,KAAK,CAAC,EAAE,aAAa,CAAC,OAAO,CAAC,GAC/B,IAAI;IAeP,UAAU,CAAC,MAAM,CAAC,EAAE;QAChB,IAAI,CAAC,EAAE,iBAAiB,CAAC;QACzB,KAAK,CAAC,EAAE,aAAa,CAAC,OAAO,CAAC,CAAC;QAC/B,QAAQ,CAAC,EAAE,aAAa,CAAC,UAAU,CAAC,CAAC;QACrC,KAAK,CAAC,EAAE,IAAI,CAAC;QACb,KAAK,CAAC,EAAE,MAAM,CAAC;KAClB,GAAG,aAAa,EAAE;IAenB,UAAU,IAAI;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;KAAE;IAajG,KAAK,IAAI,IAAI;CAIhB"}

package/dist/security/SecurityEventBus.js

@@ -0,0 +1,105 @@
+export class SecurityEventBus {
+    subscriptions = new Map();
+    nextId = 1;
+    history = [];
+    maxHistory = 500;
+    on(type, handler) {
+        const sub = { id: this.nextId++, type, handler };
+        const existing = this.subscriptions.get(type) || [];
+        existing.push(sub);
+        this.subscriptions.set(type, existing);
+        return sub.id;
+    }
+    onAny(handler) {
+        const sub = { id: this.nextId++, type: '*', handler };
+        const existing = this.subscriptions.get('*') || [];
+        existing.push(sub);
+        this.subscriptions.set('*', existing);
+        return sub.id;
+    }
+    off(subscriptionId) {
+        for (const [type, subs] of this.subscriptions) {
+            const idx = subs.findIndex(s => s.id === subscriptionId);
+            if (idx !== -1) {
+                subs.splice(idx, 1);
+                if (subs.length === 0)
+                    this.subscriptions.delete(type);
+                return true;
+            }
+        }
+        return false;
+    }
+    emit(event) {
+        this.history.push(event);
+        if (this.history.length > this.maxHistory) {
+            this.history = this.history.slice(-this.maxHistory);
+        }
+        const typeSubs = this.subscriptions.get(event.type) || [];
+        for (const sub of typeSubs) {
+            try {
+                sub.handler(event);
+            }
+            catch { }
+        }
+        const wildcardSubs = this.subscriptions.get('*') || [];
+        for (const sub of wildcardSubs) {
+            try {
+                sub.handler(event);
+            }
+            catch { }
+        }
+    }
+    emitDeny(type, layer, resource, severity = 'warning', actor, evidence) {
+        this.emit({
+            type,
+            timestamp: new Date(),
+            layer,
+            decision: 'deny',
+            actor: actor || {},
+            resource,
+            severity,
+            evidence,
+        });
+    }
+    emitAllow(type, layer, resource, actor) {
+        this.emit({
+            type,
+            timestamp: new Date(),
+            layer,
+            decision: 'allow',
+            actor: actor || {},
+            resource,
+            severity: 'info',
+        });
+    }
+    getHistory(filter) {
+        let events = this.history;
+        if (filter?.type)
+            events = events.filter(e => e.type === filter.type);
+        if (filter?.layer)
+            events = events.filter(e => e.layer === filter.layer);
+        if (filter?.decision)
+            events = events.filter(e => e.decision === filter.decision);
+        if (filter?.since)
+            events = events.filter(e => e.timestamp >= filter.since);
+        if (filter?.limit)
+            events = events.slice(-filter.limit);
+        return events;
+    }
+    getSummary() {
+        const summary = { total: this.history.length, allowed: 0, denied: 0, byLayer: {} };
+        for (const event of this.history) {
+            if (event.decision === 'allow')
+                summary.allowed++;
+            if (event.decision === 'deny')
+                summary.denied++;
+            summary.byLayer[event.layer] = (summary.byLayer[event.layer] || 0) + 1;
+        }
+        return summary;
+    }
+    reset() {
+        this.subscriptions.clear();
+        this.history = [];
+    }
+}
+//# sourceMappingURL=SecurityEventBus.js.map

package/dist/security/SecurityEventBus.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecurityEventBus.js","sourceRoot":"","sources":["../../src/security/SecurityEventBus.ts"],"names":[],"mappings":"AAgGA,MAAM,OAAO,gBAAgB;IACjB,aAAa,GAAiD,IAAI,GAAG,EAAE,CAAC;IACxE,MAAM,GAAG,CAAC,CAAC;IACX,OAAO,GAAoB,EAAE,CAAC;IAC9B,UAAU,GAAG,GAAG,CAAC;IAKzB,EAAE,CAAC,IAAuB,EAAE,OAA6B;QACrD,MAAM,GAAG,GAAiB,EAAE,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC;QAC/D,MAAM,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QACpD,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnB,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QACvC,OAAO,GAAG,CAAC,EAAE,CAAC;IAClB,CAAC;IAKD,KAAK,CAAC,OAA6B;QAC/B,MAAM,GAAG,GAAiB,EAAE,EAAE,EAAE,IAAI,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;QACpE,MAAM,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;QACnD,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnB,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QACtC,OAAO,GAAG,CAAC,EAAE,CAAC;IAClB,CAAC;IAKD,GAAG,CAAC,cAAsB;QACtB,KAAK,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;YAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,cAAc,CAAC,CAAC;YACzD,IAAI,GAAG,KAAK,CAAC,CAAC,EAAE,CAAC;gBACb,IAAI,CAAC,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;gBACpB,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;oBAAE,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;gBACvD,OAAO,IAAI,CAAC;YAChB,CAAC;QACL,CAAC;QACD,OAAO,KAAK,CAAC;IACjB,CAAC;IAKD,IAAI,CAAC,KAAoB;QAErB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACzB,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;YACxC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACxD,CAAC;QAGD,MAAM,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QAC1D,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YACzB,IAAI,CAAC;gBAAC,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YAAC,CAAC;YAAC,MAAM,CAAC,CAAuB,CAAC;QAC/D,CAAC;QAGD,MAAM,YAAY,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;QACvD,KAAK,MAAM,GAAG,IAAI,YAAY,EAAE,CAAC;YAC7B,IAAI,CAAC;gBAAC,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YAAC,CAAC;YAAC,MAAM,CAAC,CAAuB,CAAC;QAC/D,CAAC;IACL,CAAC;IAKD,QAAQ,CACJ,IAAuB,EACvB,KAA6B,EAC7B,QAAmC,EACnC,WAAsC,SAAS,EAC/C,KAA8B,EAC9B,QAAiB;QAEjB,IAAI,CAAC,IAAI,CAAC;YACN,IAAI;YACJ,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,KAAK;YACL,QAAQ,EAAE,MAAM;YAChB,KAAK,EAAE,KAAK,IAAI,EAAE;YAClB,QAAQ;YACR,QAAQ;YACR,QAAQ;SACX,CAAC,CAAC;IACP,CAAC;IAKD,SAAS,CACL,IAAuB,EACvB,KAA6B,EAC7B,QAAmC,EACnC,KAA8B;QAE9B,IAAI,CAAC,IAAI,CAAC;YACN,IAAI;YACJ,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,KAAK;YACL,QAAQ,EAAE,OAAO;YACjB,KAAK,EAAE,KAAK,IAAI,EAAE;YAClB,QAAQ;YACR,QAAQ,EAAE,MAAM;SACnB,CAAC,CAAC;IACP,CAAC;IAKD,UAAU,CAAC,MAMV;QACG,IAAI,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC;QAE1B,IAAI,MAAM,EAAE,IAAI;YAAE,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC;QACtE,IAAI,MAAM,EAAE,KAAK;YAAE,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,MAAM,CAAC,KAAK,CAAC,CAAC;QACzE,IAAI,MAAM,EAAE,QAAQ;YAAE,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,QAAQ,CAAC,CAAC;QAClF,IAAI,MAAM,EAAE,KAAK;YAAE,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,IAAI,MAAM,CAAC,KAAM,CAAC,CAAC;QAC7E,IAAI,MAAM,EAAE,KAAK;YAAE,MAAM,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAExD,OAAO,MAAM,CAAC;IAClB,CAAC;IAKD,UAAU;QACN,MAAM,OAAO,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,OAAO,EAAE,EAA4B,EAAE,CAAC;QAC7G,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAC/B,IAAI,KAAK,CAAC,QAAQ,KAAK,OAAO;gBAAE,OAAO,CAAC,OAAO,EAAE,CAAC;YAClD,IAAI,KAAK,CAAC,QAAQ,KAAK,MAAM;gBAAE,OAAO,CAAC,MAAM,EAAE,CAAC;YAChD,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC3E,CAAC;QACD,OAAO,OAAO,CAAC;IACnB,CAAC;IAKD,KAAK;QACD,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;QAC3B,IAAI,CAAC,OAAO,GAAG,EAAE,CAAC;IACtB,CAAC;CACJ"}

package/dist/security/SecurityPresets.d.ts

@@ -0,0 +1,42 @@
+export type SecurityPresetName = 'paranoid' | 'secure' | 'standard' | 'developer';
+export type FirewallMode = 'full-quarantine' | 'full-sanitize' | 'structural' | 'log-only';
+export type ExecPolicy = 'deny-all' | 'allowlist-ask' | 'allowlist' | 'unrestricted';
+export type NetworkPolicy = 'localhost-only' | 'allowlist-strict' | 'allowlist-broad' | 'unrestricted';
+export type CredentialPolicy = 'keychain-required' | 'keychain-recommended' | 'env-allowed';
+export type SkillVerification = 'signed-manifest' | 'manifest-only' | 'none';
+export type AuditLevel = 'verbose-signed-encrypted' | 'standard-signed' | 'standard' | 'basic';
+export type LLMRouting = 'local-only' | 'local-preferred' | 'cloud-filtered' | 'cloud-direct';
+export interface SecurityConfig {
+    profile: SecurityPresetName;
+    firewallMode: FirewallMode;
+    immuneMode: FirewallMode;
+    enablePurposeLock: boolean;
+    enableAnomalyDetection: boolean;
+    enablePIIRedaction: boolean;
+    piiCategories: string[];
+    llmRouting: LLMRouting;
+    enableSensitiveVault: boolean;
+    credentialPolicy: CredentialPolicy;
+    enableEncryptedConfig: boolean;
+    autoMigrateSecrets: boolean;
+    skillVerification: SkillVerification;
+    blockUnsignedSkills: boolean;
+    enableCapabilityBroker: boolean;
+    execPolicy: ExecPolicy;
+    enableFSBoundary: boolean;
+    allowedPaths: string[];
+    deniedPaths: string[];
+    enableProcessIsolation: boolean;
+    networkPolicy: NetworkPolicy;
+    allowedDomains: string[];
+    blockPrivateNetworks: boolean;
+    auditLevel: AuditLevel;
+    auditRetentionDays: number;
+    enableDataAccessTracking: boolean;
+    sessionTimeoutMinutes: number;
+}
+export declare function getSecurityPreset(name: SecurityPresetName): SecurityConfig;
+export declare function withSecurityPreset(name: SecurityPresetName, overrides: Partial<SecurityConfig>): SecurityConfig;
+export declare function getAvailableSecurityPresets(): SecurityPresetName[];
+export declare function validateSecurityConfig(config: SecurityConfig): string[];
+//# sourceMappingURL=SecurityPresets.d.ts.map

package/dist/security/SecurityPresets.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecurityPresets.d.ts","sourceRoot":"","sources":["../../src/security/SecurityPresets.ts"],"names":[],"mappings":"AAaA,MAAM,MAAM,kBAAkB,GAAG,UAAU,GAAG,QAAQ,GAAG,UAAU,GAAG,WAAW,CAAC;AAElF,MAAM,MAAM,YAAY,GAAG,iBAAiB,GAAG,eAAe,GAAG,YAAY,GAAG,UAAU,CAAC;AAC3F,MAAM,MAAM,UAAU,GAAG,UAAU,GAAG,eAAe,GAAG,WAAW,GAAG,cAAc,CAAC;AACrF,MAAM,MAAM,aAAa,GAAG,gBAAgB,GAAG,kBAAkB,GAAG,iBAAiB,GAAG,cAAc,CAAC;AACvG,MAAM,MAAM,gBAAgB,GAAG,mBAAmB,GAAG,sBAAsB,GAAG,aAAa,CAAC;AAC5F,MAAM,MAAM,iBAAiB,GAAG,iBAAiB,GAAG,eAAe,GAAG,MAAM,CAAC;AAC7E,MAAM,MAAM,UAAU,GAAG,0BAA0B,GAAG,iBAAiB,GAAG,UAAU,GAAG,OAAO,CAAC;AAC/F,MAAM,MAAM,UAAU,GAAG,YAAY,GAAG,iBAAiB,GAAG,gBAAgB,GAAG,cAAc,CAAC;AAE9F,MAAM,WAAW,cAAc;IAE3B,OAAO,EAAE,kBAAkB,CAAC;IAI5B,YAAY,EAAE,YAAY,CAAC;IAE3B,UAAU,EAAE,YAAY,CAAC;IAEzB,iBAAiB,EAAE,OAAO,CAAC;IAE3B,sBAAsB,EAAE,OAAO,CAAC;IAIhC,kBAAkB,EAAE,OAAO,CAAC;IAE5B,aAAa,EAAE,MAAM,EAAE,CAAC;IAExB,UAAU,EAAE,UAAU,CAAC;IAEvB,oBAAoB,EAAE,OAAO,CAAC;IAI9B,gBAAgB,EAAE,gBAAgB,CAAC;IAEnC,qBAAqB,EAAE,OAAO,CAAC;IAE/B,kBAAkB,EAAE,OAAO,CAAC;IAI5B,iBAAiB,EAAE,iBAAiB,CAAC;IAErC,mBAAmB,EAAE,OAAO,CAAC;IAE7B,sBAAsB,EAAE,OAAO,CAAC;IAIhC,UAAU,EAAE,UAAU,CAAC;IAEvB,gBAAgB,EAAE,OAAO,CAAC;IAE1B,YAAY,EAAE,MAAM,EAAE,CAAC;IAEvB,WAAW,EAAE,MAAM,EAAE,CAAC;IAEtB,sBAAsB,EAAE,OAAO,CAAC;IAIhC,aAAa,EAAE,aAAa,CAAC;IAE7B,cAAc,EAAE,MAAM,EAAE,CAAC;IAEzB,oBAAoB,EAAE,OAAO,CAAC;IAI9B,UAAU,EAAE,UAAU,CAAC;IAEvB,kBAAkB,EAAE,MAAM,CAAC;IAE3B,wBAAwB,EAAE,OAAO,CAAC;IAElC,qBAAqB,EAAE,MAAM,CAAC;CACjC;AAuLD,wBAAgB,iBAAiB,CAAC,IAAI,EAAE,kBAAkB,GAAG,cAAc,CAE1E;AAKD,wBAAgB,kBAAkB,CAC9B,IAAI,EAAE,kBAAkB,EACxB,SAAS,EAAE,OAAO,CAAC,cAAc,CAAC,GACnC,cAAc,CAEhB;AAKD,wBAAgB,2BAA2B,IAAI,kBAAkB,EAAE,CAElE;AAKD,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,cAAc,GAAG,MAAM,EAAE,CAoBvE"}

package/dist/security/SecurityPresets.js

@@ -0,0 +1,162 @@
+const ALWAYS_DENIED_PATHS = [
+    '~/.ssh',
+    '~/.gnupg',
+    '~/Library/Keychains',
+    '~/.aws',
+    '~/.config/gcloud',
+    '~/.azure',
+    '~/.kube/config',
+    '~/.docker/config.json',
+];
+const PRESET_PARANOID = {
+    profile: 'paranoid',
+    firewallMode: 'full-quarantine',
+    immuneMode: 'full-quarantine',
+    enablePurposeLock: true,
+    enableAnomalyDetection: true,
+    enablePIIRedaction: true,
+    piiCategories: [],
+    llmRouting: 'local-only',
+    enableSensitiveVault: true,
+    credentialPolicy: 'keychain-required',
+    enableEncryptedConfig: true,
+    autoMigrateSecrets: true,
+    skillVerification: 'signed-manifest',
+    blockUnsignedSkills: true,
+    enableCapabilityBroker: true,
+    execPolicy: 'deny-all',
+    enableFSBoundary: true,
+    allowedPaths: ['~/.genome', '/tmp/genome-*'],
+    deniedPaths: [...ALWAYS_DENIED_PATHS],
+    enableProcessIsolation: true,
+    networkPolicy: 'localhost-only',
+    allowedDomains: ['localhost', '127.0.0.1'],
+    blockPrivateNetworks: true,
+    auditLevel: 'verbose-signed-encrypted',
+    auditRetentionDays: 365,
+    enableDataAccessTracking: true,
+    sessionTimeoutMinutes: 60,
+};
+const PRESET_SECURE = {
+    profile: 'secure',
+    firewallMode: 'full-sanitize',
+    immuneMode: 'full-sanitize',
+    enablePurposeLock: true,
+    enableAnomalyDetection: true,
+    enablePIIRedaction: true,
+    piiCategories: [],
+    llmRouting: 'local-preferred',
+    enableSensitiveVault: true,
+    credentialPolicy: 'keychain-required',
+    enableEncryptedConfig: true,
+    autoMigrateSecrets: true,
+    skillVerification: 'signed-manifest',
+    blockUnsignedSkills: true,
+    enableCapabilityBroker: true,
+    execPolicy: 'allowlist-ask',
+    enableFSBoundary: true,
+    allowedPaths: ['~/Documents/Genome', '~/.genome', '/tmp/genome-*'],
+    deniedPaths: [...ALWAYS_DENIED_PATHS],
+    enableProcessIsolation: true,
+    networkPolicy: 'allowlist-strict',
+    allowedDomains: [
+        '*.openai.com', '*.anthropic.com', 'generativelanguage.googleapis.com',
+        'api.telegram.org', 'discord.com', 'gateway.discord.gg',
+        'slack.com', '*.slack.com',
+    ],
+    blockPrivateNetworks: true,
+    auditLevel: 'standard-signed',
+    auditRetentionDays: 90,
+    enableDataAccessTracking: true,
+    sessionTimeoutMinutes: 480,
+};
+const PRESET_STANDARD = {
+    profile: 'standard',
+    firewallMode: 'structural',
+    immuneMode: 'structural',
+    enablePurposeLock: false,
+    enableAnomalyDetection: true,
+    enablePIIRedaction: true,
+    piiCategories: ['credit-card', 'ssn', 'api-key', 'iban'],
+    llmRouting: 'cloud-filtered',
+    enableSensitiveVault: false,
+    credentialPolicy: 'keychain-recommended',
+    enableEncryptedConfig: true,
+    autoMigrateSecrets: false,
+    skillVerification: 'manifest-only',
+    blockUnsignedSkills: false,
+    enableCapabilityBroker: true,
+    execPolicy: 'allowlist',
+    enableFSBoundary: true,
+    allowedPaths: ['~'],
+    deniedPaths: [...ALWAYS_DENIED_PATHS],
+    enableProcessIsolation: false,
+    networkPolicy: 'allowlist-broad',
+    allowedDomains: [],
+    blockPrivateNetworks: true,
+    auditLevel: 'standard',
+    auditRetentionDays: 30,
+    enableDataAccessTracking: false,
+    sessionTimeoutMinutes: 1440,
+};
+const PRESET_DEVELOPER = {
+    profile: 'developer',
+    firewallMode: 'log-only',
+    immuneMode: 'log-only',
+    enablePurposeLock: false,
+    enableAnomalyDetection: false,
+    enablePIIRedaction: false,
+    piiCategories: [],
+    llmRouting: 'cloud-direct',
+    enableSensitiveVault: false,
+    credentialPolicy: 'env-allowed',
+    enableEncryptedConfig: false,
+    autoMigrateSecrets: false,
+    skillVerification: 'none',
+    blockUnsignedSkills: false,
+    enableCapabilityBroker: false,
+    execPolicy: 'unrestricted',
+    enableFSBoundary: false,
+    allowedPaths: [],
+    deniedPaths: [],
+    enableProcessIsolation: false,
+    networkPolicy: 'unrestricted',
+    allowedDomains: [],
+    blockPrivateNetworks: false,
+    auditLevel: 'basic',
+    auditRetentionDays: 7,
+    enableDataAccessTracking: false,
+    sessionTimeoutMinutes: 0,
+};
+const SECURITY_PRESETS = {
+    paranoid: PRESET_PARANOID,
+    secure: PRESET_SECURE,
+    standard: PRESET_STANDARD,
+    developer: PRESET_DEVELOPER,
+};
+export function getSecurityPreset(name) {
+    return { ...SECURITY_PRESETS[name] };
+}
+export function withSecurityPreset(name, overrides) {
+    return { ...SECURITY_PRESETS[name], ...overrides };
+}
+export function getAvailableSecurityPresets() {
+    return Object.keys(SECURITY_PRESETS);
+}
+export function validateSecurityConfig(config) {
+    const errors = [];
+    if (config.credentialPolicy === 'keychain-required' && !config.enableEncryptedConfig) {
+        errors.push('Keychain-required credential policy needs enableEncryptedConfig=true');
+    }
+    if (config.execPolicy === 'deny-all' && !config.enableFSBoundary) {
+        errors.push('deny-all exec policy should have FS boundary enabled');
+    }
+    if (config.llmRouting === 'local-only' && config.networkPolicy === 'unrestricted') {
+        errors.push('local-only LLM routing with unrestricted network is contradictory');
+    }
+    if (config.blockUnsignedSkills && config.skillVerification === 'none') {
+        errors.push('Cannot block unsigned skills with verification=none');
+    }
+    return errors;
+}
+//# sourceMappingURL=SecurityPresets.js.map

package/dist/security/SecurityPresets.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecurityPresets.js","sourceRoot":"","sources":["../../src/security/SecurityPresets.ts"],"names":[],"mappings":"AAgGA,MAAM,mBAAmB,GAAG;IACxB,QAAQ;IACR,UAAU;IACV,qBAAqB;IACrB,QAAQ;IACR,kBAAkB;IAClB,UAAU;IACV,gBAAgB;IAChB,uBAAuB;CAC1B,CAAC;AAIF,MAAM,eAAe,GAA6B;IAC9C,OAAO,EAAE,UAAU;IAEnB,YAAY,EAAE,iBAAiB;IAC/B,UAAU,EAAE,iBAAiB;IAC7B,iBAAiB,EAAE,IAAI;IACvB,sBAAsB,EAAE,IAAI;IAE5B,kBAAkB,EAAE,IAAI;IACxB,aAAa,EAAE,EAAE;IACjB,UAAU,EAAE,YAAY;IACxB,oBAAoB,EAAE,IAAI;IAE1B,gBAAgB,EAAE,mBAAmB;IACrC,qBAAqB,EAAE,IAAI;IAC3B,kBAAkB,EAAE,IAAI;IAExB,iBAAiB,EAAE,iBAAiB;IACpC,mBAAmB,EAAE,IAAI;IACzB,sBAAsB,EAAE,IAAI;IAE5B,UAAU,EAAE,UAAU;IACtB,gBAAgB,EAAE,IAAI;IACtB,YAAY,EAAE,CAAC,WAAW,EAAE,eAAe,CAAC;IAC5C,WAAW,EAAE,CAAC,GAAG,mBAAmB,CAAC;IACrC,sBAAsB,EAAE,IAAI;IAE5B,aAAa,EAAE,gBAAgB;IAC/B,cAAc,EAAE,CAAC,WAAW,EAAE,WAAW,CAAC;IAC1C,oBAAoB,EAAE,IAAI;IAE1B,UAAU,EAAE,0BAA0B;IACtC,kBAAkB,EAAE,GAAG;IACvB,wBAAwB,EAAE,IAAI;IAC9B,qBAAqB,EAAE,EAAE;CAC5B,CAAC;AAEF,MAAM,aAAa,GAA6B;IAC5C,OAAO,EAAE,QAAQ;IAEjB,YAAY,EAAE,eAAe;IAC7B,UAAU,EAAE,eAAe;IAC3B,iBAAiB,EAAE,IAAI;IACvB,sBAAsB,EAAE,IAAI;IAE5B,kBAAkB,EAAE,IAAI;IACxB,aAAa,EAAE,EAAE;IACjB,UAAU,EAAE,iBAAiB;IAC7B,oBAAoB,EAAE,IAAI;IAE1B,gBAAgB,EAAE,mBAAmB;IACrC,qBAAqB,EAAE,IAAI;IAC3B,kBAAkB,EAAE,IAAI;IAExB,iBAAiB,EAAE,iBAAiB;IACpC,mBAAmB,EAAE,IAAI;IACzB,sBAAsB,EAAE,IAAI;IAE5B,UAAU,EAAE,eAAe;IAC3B,gBAAgB,EAAE,IAAI;IACtB,YAAY,EAAE,CAAC,oBAAoB,EAAE,WAAW,EAAE,eAAe,CAAC;IAClE,WAAW,EAAE,CAAC,GAAG,mBAAmB,CAAC;IACrC,sBAAsB,EAAE,IAAI;IAE5B,aAAa,EAAE,kBAAkB;IACjC,cAAc,EAAE;QACZ,cAAc,EAAE,iBAAiB,EAAE,mCAAmC;QACtE,kBAAkB,EAAE,aAAa,EAAE,oBAAoB;QACvD,WAAW,EAAE,aAAa;KAC7B;IACD,oBAAoB,EAAE,IAAI;IAE1B,UAAU,EAAE,iBAAiB;IAC7B,kBAAkB,EAAE,EAAE;IACtB,wBAAwB,EAAE,IAAI;IAC9B,qBAAqB,EAAE,GAAG;CAC7B,CAAC;AAEF,MAAM,eAAe,GAA6B;IAC9C,OAAO,EAAE,UAAU;IAEnB,YAAY,EAAE,YAAY;IAC1B,UAAU,EAAE,YAAY;IACxB,iBAAiB,EAAE,KAAK;IACxB,sBAAsB,EAAE,IAAI;IAE5B,kBAAkB,EAAE,IAAI;IACxB,aAAa,EAAE,CAAC,aAAa,EAAE,KAAK,EAAE,SAAS,EAAE,MAAM,CAAC;IACxD,UAAU,EAAE,gBAAgB;IAC5B,oBAAoB,EAAE,KAAK;IAE3B,gBAAgB,EAAE,sBAAsB;IACxC,qBAAqB,EAAE,IAAI;IAC3B,kBAAkB,EAAE,KAAK;IAEzB,iBAAiB,EAAE,eAAe;IAClC,mBAAmB,EAAE,KAAK;IAC1B,sBAAsB,EAAE,IAAI;IAE5B,UAAU,EAAE,WAAW;IACvB,gBAAgB,EAAE,IAAI;IACtB,YAAY,EAAE,CAAC,GAAG,CAAC;IACnB,WAAW,EAAE,CAAC,GAAG,mBAAmB,CAAC;IACrC,sBAAsB,EAAE,KAAK;IAE7B,aAAa,EAAE,iBAAiB;IAChC,cAAc,EAAE,EAAE;IAClB,oBAAoB,EAAE,IAAI;IAE1B,UAAU,EAAE,UAAU;IACtB,kBAAkB,EAAE,EAAE;IACtB,wBAAwB,EAAE,KAAK;IAC/B,qBAAqB,EAAE,IAAI;CAC9B,CAAC;AAEF,MAAM,gBAAgB,GAA6B;IAC/C,OAAO,EAAE,WAAW;IAEpB,YAAY,EAAE,UAAU;IACxB,UAAU,EAAE,UAAU;IACtB,iBAAiB,EAAE,KAAK;IACxB,sBAAsB,EAAE,KAAK;IAE7B,kBAAkB,EAAE,KAAK;IACzB,aAAa,EAAE,EAAE;IACjB,UAAU,EAAE,cAAc;IAC1B,oBAAoB,EAAE,KAAK;IAE3B,gBAAgB,EAAE,aAAa;IAC/B,qBAAqB,EAAE,KAAK;IAC5B,kBAAkB,EAAE,KAAK;IAEzB,iBAAiB,EAAE,MAAM;IACzB,mBAAmB,EAAE,KAAK;IAC1B,sBAAsB,EAAE,KAAK;IAE7B,UAAU,EAAE,cAAc;IAC1B,gBAAgB,EAAE,KAAK;IACvB,YAAY,EAAE,EAAE;IAChB,WAAW,EAAE,EAAE;IACf,sBAAsB,EAAE,KAAK;IAE7B,aAAa,EAAE,cAAc;IAC7B,cAAc,EAAE,EAAE;IAClB,oBAAoB,EAAE,KAAK;IAE3B,UAAU,EAAE,OAAO;IACnB,kBAAkB,EAAE,CAAC;IACrB,wBAAwB,EAAE,KAAK;IAC/B,qBAAqB,EAAE,CAAC;CAC3B,CAAC;AAIF,MAAM,gBAAgB,GAAyD;IAC3E,QAAQ,EAAE,eAAe;IACzB,MAAM,EAAE,aAAa;IACrB,QAAQ,EAAE,eAAe;IACzB,SAAS,EAAE,gBAAgB;CAC9B,CAAC;AAOF,MAAM,UAAU,iBAAiB,CAAC,IAAwB;IACtD,OAAO,EAAE,GAAG,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;AACzC,CAAC;AAKD,MAAM,UAAU,kBAAkB,CAC9B,IAAwB,EACxB,SAAkC;IAElC,OAAO,EAAE,GAAG,gBAAgB,CAAC,IAAI,CAAC,EAAE,GAAG,SAAS,EAAE,CAAC;AACvD,CAAC;AAKD,MAAM,UAAU,2BAA2B;IACvC,OAAO,MAAM,CAAC,IAAI,CAAC,gBAAgB,CAAyB,CAAC;AACjE,CAAC;AAKD,MAAM,UAAU,sBAAsB,CAAC,MAAsB;IACzD,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,IAAI,MAAM,CAAC,gBAAgB,KAAK,mBAAmB,IAAI,CAAC,MAAM,CAAC,qBAAqB,EAAE,CAAC;QACnF,MAAM,CAAC,IAAI,CAAC,sEAAsE,CAAC,CAAC;IACxF,CAAC;IAED,IAAI,MAAM,CAAC,UAAU,KAAK,UAAU,IAAI,CAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC,sDAAsD,CAAC,CAAC;IACxE,CAAC;IAED,IAAI,MAAM,CAAC,UAAU,KAAK,YAAY,IAAI,MAAM,CAAC,aAAa,KAAK,cAAc,EAAE,CAAC;QAChF,MAAM,CAAC,IAAI,CAAC,mEAAmE,CAAC,CAAC;IACrF,CAAC;IAED,IAAI,MAAM,CAAC,mBAAmB,IAAI,MAAM,CAAC,iBAAiB,KAAK,MAAM,EAAE,CAAC;QACpE,MAAM,CAAC,IAAI,CAAC,qDAAqD,CAAC,CAAC;IACvE,CAAC;IAED,OAAO,MAAM,CAAC;AAClB,CAAC"}

package/dist/security/SkillManifest.d.ts

@@ -0,0 +1,34 @@
+export type CapabilityType = 'fs:read' | 'fs:write' | 'fs:delete' | 'exec:command' | 'exec:safe-bin' | 'net:outbound' | 'net:localhost' | 'cred:read' | 'data:pii' | 'data:financial' | 'data:health';
+export interface SkillPermissions {
+    required: CapabilityType[];
+    optional: CapabilityType[];
+}
+export interface SkillRestrictions {
+    maxFileSize?: number;
+    allowedExtensions?: string[];
+    deniedPaths?: string[];
+    allowedDomains?: string[];
+    maxExecTimeMs?: number;
+}
+export interface SkillManifestData {
+    name: string;
+    version: string;
+    author: string;
+    permissions: SkillPermissions;
+    dataAccess: string[];
+    restrictions: SkillRestrictions;
+    signature?: string;
+}
+export declare class SkillManifest {
+    readonly data: Readonly<SkillManifestData>;
+    private constructor();
+    static parse(raw: Partial<SkillManifestData>): SkillManifest;
+    static default(skillName: string): SkillManifest;
+    static validate(raw: Partial<SkillManifestData>): string[];
+    requires(capability: CapabilityType): boolean;
+    optionallyRequests(capability: CapabilityType): boolean;
+    canAccessData(classification: string): boolean;
+    getAllCapabilities(): CapabilityType[];
+    toJSON(): string;
+}
+//# sourceMappingURL=SkillManifest.d.ts.map

package/dist/security/SkillManifest.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SkillManifest.d.ts","sourceRoot":"","sources":["../../src/security/SkillManifest.ts"],"names":[],"mappings":"AAaA,MAAM,MAAM,cAAc,GACpB,SAAS,GACT,UAAU,GACV,WAAW,GACX,cAAc,GACd,eAAe,GACf,cAAc,GACd,eAAe,GACf,WAAW,GACX,UAAU,GACV,gBAAgB,GAChB,aAAa,CAAC;AAEpB,MAAM,WAAW,gBAAgB;IAE7B,QAAQ,EAAE,cAAc,EAAE,CAAC;IAE3B,QAAQ,EAAE,cAAc,EAAE,CAAC;CAC9B;AAED,MAAM,WAAW,iBAAiB;IAE9B,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,iBAAiB,CAAC,EAAE,MAAM,EAAE,CAAC;IAE7B,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IAEvB,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAE1B,aAAa,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,iBAAiB;IAE9B,IAAI,EAAE,MAAM,CAAC;IAEb,OAAO,EAAE,MAAM,CAAC;IAEhB,MAAM,EAAE,MAAM,CAAC;IAEf,WAAW,EAAE,gBAAgB,CAAC;IAE9B,UAAU,EAAE,MAAM,EAAE,CAAC;IAErB,YAAY,EAAE,iBAAiB,CAAC;IAEhC,SAAS,CAAC,EAAE,MAAM,CAAC;CACtB;AAoCD,qBAAa,aAAa;IACtB,QAAQ,CAAC,IAAI,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC;IAE3C,OAAO;IAOP,MAAM,CAAC,KAAK,CAAC,GAAG,EAAE,OAAO,CAAC,iBAAiB,CAAC,GAAG,aAAa;IAyB5D,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,GAAG,aAAa;IAUhD,MAAM,CAAC,QAAQ,CAAC,GAAG,EAAE,OAAO,CAAC,iBAAiB,CAAC,GAAG,MAAM,EAAE;IAkC1D,QAAQ,CAAC,UAAU,EAAE,cAAc,GAAG,OAAO;IAO7C,kBAAkB,CAAC,UAAU,EAAE,cAAc,GAAG,OAAO;IAOvD,aAAa,CAAC,cAAc,EAAE,MAAM,GAAG,OAAO;IAO9C,kBAAkB,IAAI,cAAc,EAAE;IAOtC,MAAM,IAAI,MAAM;CAGnB"}

package/dist/security/SkillManifest.js

@@ -0,0 +1,91 @@
+const DEFAULT_MANIFEST = {
+    name: 'unknown',
+    version: '0.0.0',
+    author: 'unknown',
+    permissions: {
+        required: [],
+        optional: [],
+    },
+    dataAccess: ['public'],
+    restrictions: {},
+};
+export class SkillManifest {
+    data;
+    constructor(data) {
+        this.data = Object.freeze(data);
+    }
+    static parse(raw) {
+        const errors = SkillManifest.validate(raw);
+        if (errors.length > 0) {
+            throw new Error(`[SkillManifest] Invalid manifest: ${errors.join('; ')}`);
+        }
+        const data = {
+            name: raw.name ?? DEFAULT_MANIFEST.name,
+            version: raw.version ?? DEFAULT_MANIFEST.version,
+            author: raw.author ?? DEFAULT_MANIFEST.author,
+            permissions: {
+                required: raw.permissions?.required ?? [],
+                optional: raw.permissions?.optional ?? [],
+            },
+            dataAccess: raw.dataAccess ?? ['public'],
+            restrictions: raw.restrictions ?? {},
+            signature: raw.signature,
+        };
+        return new SkillManifest(data);
+    }
+    static default(skillName) {
+        return new SkillManifest({
+            ...DEFAULT_MANIFEST,
+            name: skillName,
+        });
+    }
+    static validate(raw) {
+        const errors = [];
+        if (raw.permissions?.required) {
+            for (const cap of raw.permissions.required) {
+                if (!VALID_CAPABILITIES.has(cap)) {
+                    errors.push(`Unknown capability: ${cap}`);
+                }
+            }
+        }
+        if (raw.permissions?.optional) {
+            for (const cap of raw.permissions.optional) {
+                if (!VALID_CAPABILITIES.has(cap)) {
+                    errors.push(`Unknown optional capability: ${cap}`);
+                }
+            }
+        }
+        if (raw.dataAccess) {
+            const validClassifications = new Set(['public', 'internal', 'confidential', 'restricted']);
+            for (const dc of raw.dataAccess) {
+                if (!validClassifications.has(dc)) {
+                    errors.push(`Unknown data classification: ${dc}`);
+                }
+            }
+        }
+        return errors;
+    }
+    requires(capability) {
+        return this.data.permissions.required.includes(capability);
+    }
+    optionallyRequests(capability) {
+        return this.data.permissions.optional.includes(capability);
+    }
+    canAccessData(classification) {
+        return this.data.dataAccess.includes(classification);
+    }
+    getAllCapabilities() {
+        return [...this.data.permissions.required, ...this.data.permissions.optional];
+    }
+    toJSON() {
+        return JSON.stringify(this.data);
+    }
+}
+const VALID_CAPABILITIES = new Set([
+    'fs:read', 'fs:write', 'fs:delete',
+    'exec:command', 'exec:safe-bin',
+    'net:outbound', 'net:localhost',
+    'cred:read',
+    'data:pii', 'data:financial', 'data:health',
+]);
+//# sourceMappingURL=SkillManifest.js.map

package/dist/security/SkillManifest.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SkillManifest.js","sourceRoot":"","sources":["../../src/security/SkillManifest.ts"],"names":[],"mappings":"AAiEA,MAAM,gBAAgB,GAAsB;IACxC,IAAI,EAAE,SAAS;IACf,OAAO,EAAE,OAAO;IAChB,MAAM,EAAE,SAAS;IACjB,WAAW,EAAE;QACT,QAAQ,EAAE,EAAE;QACZ,QAAQ,EAAE,EAAE;KACf;IACD,UAAU,EAAE,CAAC,QAAQ,CAAC;IACtB,YAAY,EAAE,EAAE;CACnB,CAAC;AAsBF,MAAM,OAAO,aAAa;IACb,IAAI,CAA8B;IAE3C,YAAoB,IAAuB;QACvC,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACpC,CAAC;IAKD,MAAM,CAAC,KAAK,CAAC,GAA+B;QACxC,MAAM,MAAM,GAAG,aAAa,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;QAC3C,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,qCAAqC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC9E,CAAC;QAED,MAAM,IAAI,GAAsB;YAC5B,IAAI,EAAE,GAAG,CAAC,IAAI,IAAI,gBAAgB,CAAC,IAAI;YACvC,OAAO,EAAE,GAAG,CAAC,OAAO,IAAI,gBAAgB,CAAC,OAAO;YAChD,MAAM,EAAE,GAAG,CAAC,MAAM,IAAI,gBAAgB,CAAC,MAAM;YAC7C,WAAW,EAAE;gBACT,QAAQ,EAAE,GAAG,CAAC,WAAW,EAAE,QAAQ,IAAI,EAAE;gBACzC,QAAQ,EAAE,GAAG,CAAC,WAAW,EAAE,QAAQ,IAAI,EAAE;aAC5C;YACD,UAAU,EAAE,GAAG,CAAC,UAAU,IAAI,CAAC,QAAQ,CAAC;YACxC,YAAY,EAAE,GAAG,CAAC,YAAY,IAAI,EAAE;YACpC,SAAS,EAAE,GAAG,CAAC,SAAS;SAC3B,CAAC;QAEF,OAAO,IAAI,aAAa,CAAC,IAAI,CAAC,CAAC;IACnC,CAAC;IAKD,MAAM,CAAC,OAAO,CAAC,SAAiB;QAC5B,OAAO,IAAI,aAAa,CAAC;YACrB,GAAG,gBAAgB;YACnB,IAAI,EAAE,SAAS;SAClB,CAAC,CAAC;IACP,CAAC;IAKD,MAAM,CAAC,QAAQ,CAAC,GAA+B;QAC3C,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,IAAI,GAAG,CAAC,WAAW,EAAE,QAAQ,EAAE,CAAC;YAC5B,KAAK,MAAM,GAAG,IAAI,GAAG,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;gBACzC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;oBAC/B,MAAM,CAAC,IAAI,CAAC,uBAAuB,GAAG,EAAE,CAAC,CAAC;gBAC9C,CAAC;YACL,CAAC;QACL,CAAC;QAED,IAAI,GAAG,CAAC,WAAW,EAAE,QAAQ,EAAE,CAAC;YAC5B,KAAK,MAAM,GAAG,IAAI,GAAG,CAAC,WAAW,CAAC,QAAQ,EAAE,CAAC;gBACzC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;oBAC/B,MAAM,CAAC,IAAI,CAAC,gCAAgC,GAAG,EAAE,CAAC,CAAC;gBACvD,CAAC;YACL,CAAC;QACL,CAAC;QAED,IAAI,GAAG,CAAC,UAAU,EAAE,CAAC;YACjB,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,CAAC,CAAC,CAAC;YAC3F,KAAK,MAAM,EAAE,IAAI,GAAG,CAAC,UAAU,EAAE,CAAC;gBAC9B,IAAI,CAAC,oBAAoB,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;oBAChC,MAAM,CAAC,IAAI,CAAC,gCAAgC,EAAE,EAAE,CAAC,CAAC;gBACtD,CAAC;YACL,CAAC;QACL,CAAC;QAED,OAAO,MAAM,CAAC;IAClB,CAAC;IAKD,QAAQ,CAAC,UAA0B;QAC/B,OAAO,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAC/D,CAAC;IAKD,kBAAkB,CAAC,UAA0B;QACzC,OAAO,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAC/D,CAAC;IAKD,aAAa,CAAC,cAAsB;QAChC,OAAO,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;IACzD,CAAC;IAKD,kBAAkB;QACd,OAAO,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;IAClF,CAAC;IAKD,MAAM;QACF,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACrC,CAAC;CACJ;AAED,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAiB;IAC/C,SAAS,EAAE,UAAU,EAAE,WAAW;IAClC,cAAc,EAAE,eAAe;IAC/B,cAAc,EAAE,eAAe;IAC/B,WAAW;IACX,UAAU,EAAE,gBAAgB,EAAE,aAAa;CAC9C,CAAC,CAAC"}

package/dist/security/SkillSigner.d.ts

@@ -0,0 +1,22 @@
+export interface SkillSignature {
+    signature: string;
+    contentHash: string;
+    publicKey: string;
+    signedAt: string;
+}
+export interface KeyPair {
+    publicKey: string;
+    privateKey: string;
+}
+export declare class SkillSigner {
+    private trustedKeys;
+    constructor(trustedKeys?: Record<string, string>);
+    sign(code: string, manifestJSON: string, version: string, privateKeyHex: string): SkillSignature;
+    verify(code: string, manifestJSON: string, version: string, sig: SkillSignature, publicKeyHex?: string): boolean;
+    isTrustedPublisher(sig: SkillSignature): boolean;
+    addTrustedKey(publisher: string, publicKeyHex: string): void;
+    static generateKeyPair(): KeyPair;
+    private computeContentHash;
+    private derivePublicKey;
+}
+//# sourceMappingURL=SkillSigner.d.ts.map

package/dist/security/SkillSigner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"SkillSigner.d.ts","sourceRoot":"","sources":["../../src/security/SkillSigner.ts"],"names":[],"mappings":"AAeA,MAAM,WAAW,cAAc;IAE3B,SAAS,EAAE,MAAM,CAAC;IAElB,WAAW,EAAE,MAAM,CAAC;IAEpB,SAAS,EAAE,MAAM,CAAC;IAElB,QAAQ,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,OAAO;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACtB;AAqBD,qBAAa,WAAW;IAEpB,OAAO,CAAC,WAAW,CAAkC;gBAEzC,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;IAWhD,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,GAAG,cAAc;IAwBhG,MAAM,CACF,IAAI,EAAE,MAAM,EACZ,YAAY,EAAE,MAAM,EACpB,OAAO,EAAE,MAAM,EACf,GAAG,EAAE,cAAc,EACnB,YAAY,CAAC,EAAE,MAAM,GACtB,OAAO;IAyBV,kBAAkB,CAAC,GAAG,EAAE,cAAc,GAAG,OAAO;IAUhD,aAAa,CAAC,SAAS,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,IAAI;IAO5D,MAAM,CAAC,eAAe,IAAI,OAAO;IAcjC,OAAO,CAAC,kBAAkB;IAU1B,OAAO,CAAC,eAAe;CAS1B"}

package/dist/security/SkillSigner.js

@@ -0,0 +1,80 @@
+import { createHash, createPrivateKey, sign, verify, generateKeyPairSync } from 'node:crypto';
+export class SkillSigner {
+    trustedKeys = new Map();
+    constructor(trustedKeys) {
+        if (trustedKeys) {
+            for (const [publisher, key] of Object.entries(trustedKeys)) {
+                this.trustedKeys.set(publisher, key);
+            }
+        }
+    }
+    sign(code, manifestJSON, version, privateKeyHex) {
+        const contentHash = this.computeContentHash(code, manifestJSON, version);
+        const privateKey = Buffer.from(privateKeyHex, 'hex');
+        const signature = sign(null, Buffer.from(contentHash, 'hex'), {
+            key: privateKey,
+            format: 'der',
+            type: 'pkcs8',
+        });
+        const publicKeyDer = this.derivePublicKey(privateKey);
+        return {
+            signature: signature.toString('hex'),
+            contentHash,
+            publicKey: publicKeyDer,
+            signedAt: new Date().toISOString(),
+        };
+    }
+    verify(code, manifestJSON, version, sig, publicKeyHex) {
+        const expectedHash = this.computeContentHash(code, manifestJSON, version);
+        if (sig.contentHash !== expectedHash) {
+            return false;
+        }
+        const pubKey = publicKeyHex ?? sig.publicKey;
+        try {
+            return verify(null, Buffer.from(sig.contentHash, 'hex'), { key: Buffer.from(pubKey, 'hex'), format: 'der', type: 'spki' }, Buffer.from(sig.signature, 'hex'));
+        }
+        catch {
+            return false;
+        }
+    }
+    isTrustedPublisher(sig) {
+        for (const [, key] of this.trustedKeys) {
+            if (key === sig.publicKey)
+                return true;
+        }
+        return false;
+    }
+    addTrustedKey(publisher, publicKeyHex) {
+        this.trustedKeys.set(publisher, publicKeyHex);
+    }
+    static generateKeyPair() {
+        const { publicKey, privateKey } = generateKeyPairSync('ed25519', {
+            publicKeyEncoding: { type: 'spki', format: 'der' },
+            privateKeyEncoding: { type: 'pkcs8', format: 'der' },
+        });
+        return {
+            publicKey: publicKey.toString('hex'),
+            privateKey: privateKey.toString('hex'),
+        };
+    }
+    computeContentHash(code, manifestJSON, version) {
+        return createHash('sha256')
+            .update(code)
+            .update('\0')
+            .update(manifestJSON)
+            .update('\0')
+            .update(version)
+            .digest('hex');
+    }
+    derivePublicKey(privateKeyDer) {
+        try {
+            const keyObj = createPrivateKey({ key: privateKeyDer, format: 'der', type: 'pkcs8' });
+            const pubDer = keyObj.export({ type: 'spki', format: 'der' });
+            return pubDer.toString('hex');
+        }
+        catch {
+            return '';
+        }
+    }
+}
+//# sourceMappingURL=SkillSigner.js.map

package/dist/security/SkillSigner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SkillSigner.js","sourceRoot":"","sources":["../../src/security/SkillSigner.ts"],"names":[],"mappings":"AAWA,OAAO,EAAE,UAAU,EAAE,gBAAgB,EAAE,IAAI,EAAE,MAAM,EAAE,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAuC9F,MAAM,OAAO,WAAW;IAEZ,WAAW,GAAwB,IAAI,GAAG,EAAE,CAAC;IAErD,YAAY,WAAoC;QAC5C,IAAI,WAAW,EAAE,CAAC;YACd,KAAK,MAAM,CAAC,SAAS,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;gBACzD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;YACzC,CAAC;QACL,CAAC;IACL,CAAC;IAKD,IAAI,CAAC,IAAY,EAAE,YAAoB,EAAE,OAAe,EAAE,aAAqB;QAC3E,MAAM,WAAW,GAAG,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,YAAY,EAAE,OAAO,CAAC,CAAC;QACzE,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,KAAK,CAAC,CAAC;QAErD,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,KAAK,CAAC,EAAE;YAC1D,GAAG,EAAE,UAAU;YACf,MAAM,EAAE,KAAK;YACb,IAAI,EAAE,OAAO;SAChB,CAAC,CAAC;QAGH,MAAM,YAAY,GAAG,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC;QAEtD,OAAO;YACH,SAAS,EAAE,SAAS,CAAC,QAAQ,CAAC,KAAK,CAAC;YACpC,WAAW;YACX,SAAS,EAAE,YAAY;YACvB,QAAQ,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACrC,CAAC;IACN,CAAC;IAKD,MAAM,CACF,IAAY,EACZ,YAAoB,EACpB,OAAe,EACf,GAAmB,EACnB,YAAqB;QAErB,MAAM,YAAY,GAAG,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,YAAY,EAAE,OAAO,CAAC,CAAC;QAG1E,IAAI,GAAG,CAAC,WAAW,KAAK,YAAY,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC;QACjB,CAAC;QAGD,MAAM,MAAM,GAAG,YAAY,IAAI,GAAG,CAAC,SAAS,CAAC;QAC7C,IAAI,CAAC;YACD,OAAO,MAAM,CACT,IAAI,EACJ,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,KAAK,CAAC,EACnC,EAAE,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,EAChE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,KAAK,CAAC,CACpC,CAAC;QACN,CAAC;QAAC,MAAM,CAAC;YACL,OAAO,KAAK,CAAC;QACjB,CAAC;IACL,CAAC;IAKD,kBAAkB,CAAC,GAAmB;QAClC,KAAK,MAAM,CAAC,EAAE,GAAG,CAAC,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrC,IAAI,GAAG,KAAK,GAAG,CAAC,SAAS;gBAAE,OAAO,IAAI,CAAC;QAC3C,CAAC;QACD,OAAO,KAAK,CAAC;IACjB,CAAC;IAKD,aAAa,CAAC,SAAiB,EAAE,YAAoB;QACjD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,EAAE,YAAY,CAAC,CAAC;IAClD,CAAC;IAKD,MAAM,CAAC,eAAe;QAClB,MAAM,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,mBAAmB,CAAC,SAAS,EAAE;YAC7D,iBAAiB,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE;YAClD,kBAAkB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE;SACvD,CAAC,CAAC;QAEH,OAAO;YACH,SAAS,EAAG,SAAoB,CAAC,QAAQ,CAAC,KAAK,CAAC;YAChD,UAAU,EAAG,UAAqB,CAAC,QAAQ,CAAC,KAAK,CAAC;SACrD,CAAC;IACN,CAAC;IAIO,kBAAkB,CAAC,IAAY,EAAE,YAAoB,EAAE,OAAe;QAC1E,OAAO,UAAU,CAAC,QAAQ,CAAC;aACtB,MAAM,CAAC,IAAI,CAAC;aACZ,MAAM,CAAC,IAAI,CAAC;aACZ,MAAM,CAAC,YAAY,CAAC;aACpB,MAAM,CAAC,IAAI,CAAC;aACZ,MAAM,CAAC,OAAO,CAAC;aACf,MAAM,CAAC,KAAK,CAAC,CAAC;IACvB,CAAC;IAEO,eAAe,CAAC,aAAqB;QACzC,IAAI,CAAC;YACD,MAAM,MAAM,GAAG,gBAAgB,CAAC,EAAE,GAAG,EAAE,aAAa,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;YACtF,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;YAC9D,OAAQ,MAAiB,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC9C,CAAC;QAAC,MAAM,CAAC;YACL,OAAO,EAAE,CAAC;QACd,CAAC;IACL,CAAC;CACJ"}

package/dist/security/TamperProofAuditLog.d.ts

@@ -0,0 +1,58 @@
+import { KeychainAdapter } from './KeychainAdapter.js';
+import type { SecurityEvent } from './SecurityEventBus.js';
+export type AuditEventType = SecurityEvent['type'] | 'audit:initialized' | 'audit:verified' | 'audit:rotated';
+export interface AuditEntry {
+    id: string;
+    timestamp: string;
+    type: AuditEventType;
+    severity: 'info' | 'warning' | 'high' | 'critical';
+    layer: number;
+    decision: 'allow' | 'deny' | 'info';
+    actor: {
+        userId?: string;
+        skillId?: string;
+        channel?: string;
+    };
+    resource: {
+        type: string;
+        id: string;
+        detail?: string;
+    };
+    evidence?: string;
+    previousHash: string;
+    hash: string;
+}
+export interface VerificationResult {
+    valid: boolean;
+    totalEntries: number;
+    brokenAt?: number;
+    brokenEntry?: AuditEntry;
+    rootHashMatch: boolean;
+}
+export declare class TamperProofAuditLog {
+    private alk;
+    private keychain;
+    private currentHash;
+    private auditDir;
+    private entryCount;
+    private initialized;
+    constructor(auditLogKey: Buffer, keychain: KeychainAdapter, auditDir?: string);
+    initialize(): Promise<void>;
+    appendFromEvent(event: SecurityEvent): Promise<void>;
+    append(entry: Omit<AuditEntry, 'id' | 'timestamp' | 'previousHash' | 'hash'>): Promise<AuditEntry>;
+    verify(): Promise<VerificationResult>;
+    readEntries(date?: Date): Promise<AuditEntry[]>;
+    getEntryCount(): number;
+    flush(): Promise<void>;
+    private computeHMAC;
+    private computeEntryHash;
+    private encryptEntry;
+    private decryptEntry;
+    private todayFilePath;
+    private filePathForDate;
+    private readEntriesFromFile;
+    private readAllEntries;
+    private countEntries;
+    private ensureInitialized;
+}
+//# sourceMappingURL=TamperProofAuditLog.d.ts.map

package/dist/security/TamperProofAuditLog.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"TamperProofAuditLog.d.ts","sourceRoot":"","sources":["../../src/security/TamperProofAuditLog.ts"],"names":[],"mappings":"AAgBA,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAS3D,MAAM,MAAM,cAAc,GACpB,aAAa,CAAC,MAAM,CAAC,GACrB,mBAAmB,GACnB,gBAAgB,GAChB,eAAe,CAAC;AAEtB,MAAM,WAAW,UAAU;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,cAAc,CAAC;IACrB,QAAQ,EAAE,MAAM,GAAG,SAAS,GAAG,MAAM,GAAG,UAAU,CAAC;IACnD,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,OAAO,GAAG,MAAM,GAAG,MAAM,CAAC;IACpC,KAAK,EAAE;QACH,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,OAAO,CAAC,EAAE,MAAM,CAAC;KACpB,CAAC;IACF,QAAQ,EAAE;QACN,IAAI,EAAE,MAAM,CAAC;QACb,EAAE,EAAE,MAAM,CAAC;QACX,MAAM,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,kBAAkB;IAC/B,KAAK,EAAE,OAAO,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,UAAU,CAAC;IACzB,aAAa,EAAE,OAAO,CAAC;CAC1B;AAkBD,qBAAa,mBAAmB;IAC5B,OAAO,CAAC,GAAG,CAAS;IACpB,OAAO,CAAC,QAAQ,CAAkB;IAClC,OAAO,CAAC,WAAW,CAAc;IACjC,OAAO,CAAC,QAAQ,CAAS;IACzB,OAAO,CAAC,UAAU,CAAK;IACvB,OAAO,CAAC,WAAW,CAAS;gBAEhB,WAAW,EAAE,MAAM,EAAE,QAAQ,EAAE,eAAe,EAAE,QAAQ,CAAC,EAAE,MAAM;IAYvE,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC;IAiC3B,eAAe,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAepD,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,EAAE,IAAI,GAAG,WAAW,GAAG,cAAc,GAAG,MAAM,CAAC,GAAG,OAAO,CAAC,UAAU,CAAC;IAkClG,MAAM,IAAI,OAAO,CAAC,kBAAkB,CAAC;IAuDrC,WAAW,CAAC,IAAI,CAAC,EAAE,IAAI,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;IAQrD,aAAa,IAAI,MAAM;IAOjB,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAQ5B,OAAO,CAAC,WAAW;IAInB,OAAO,CAAC,gBAAgB;IAgBxB,OAAO,CAAC,YAAY;IASpB,OAAO,CAAC,YAAY;IAUpB,OAAO,CAAC,aAAa;IAKrB,OAAO,CAAC,eAAe;YAKT,mBAAmB;YAUnB,cAAc;YAed,YAAY;IAc1B,OAAO,CAAC,iBAAiB;CAK5B"}