npm - @hasna/knowledge - Versions diffs - 0.2.6 → 0.2.8 - Mend

@hasna/knowledge 0.2.6 → 0.2.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/README.md +39 -1
package/bin/open-knowledge-mcp.js +637 -5
package/bin/open-knowledge.js +75 -21
package/docs/architecture/ai-native-knowledge-base.md +18 -0
package/package.json +1 -1
package/src/cli.ts +169 -5
package/src/knowledge-db.ts +41 -1
package/src/manifest-ingest.ts +58 -9
package/src/mcp.js +25 -0
package/src/outbox-consume.ts +33 -4
package/src/safety.ts +265 -0
package/src/source-ref.ts +12 -0
package/src/source-resolver.ts +418 -0
package/src/workspace.ts +26 -0

package/src/safety.ts ADDED Viewed

@@ -0,0 +1,265 @@
+import { createHash, randomUUID } from 'node:crypto';
+import { relative, resolve, sep } from 'node:path';
+import type { Database } from 'bun:sqlite';
+import type { KnowledgeConfig, KnowledgeWorkspace } from './workspace';
+export type SafetyDecision = 'allow' | 'deny' | 'requires_approval';
+export interface SafetyPolicy {
+  mode: 'local' | 'hosted';
+  allowWriteRoots: string[];
+  readOnlySourceAccess: boolean;
+  network: {
+    webSearchEnabled: boolean;
+    s3ReadsEnabled: boolean;
+    allowedS3Buckets: string[];
+  };
+  redaction: {
+    enabled: boolean;
+  };
+  approvals: {
+    generatedWritesRequireApproval: boolean;
+  };
+}
+export interface SafetyAuditInput {
+  event_type: string;
+  action: string;
+  target_uri?: string | null;
+  decision: SafetyDecision | 'redacted' | 'info';
+  metadata?: Record<string, unknown>;
+  created_at?: string;
+}
+export interface RedactionFinding {
+  type: string;
+  severity: 'low' | 'medium' | 'high';
+  start: number;
+  end: number;
+}
+export interface RedactionResult {
+  text: string;
+  findings: RedactionFinding[];
+}
+type ConfigWithSafety = KnowledgeConfig & {
+  safety?: {
+    network?: {
+      web_search_enabled?: boolean;
+      s3_reads_enabled?: boolean;
+      allowed_s3_buckets?: string[];
+    };
+    redaction?: {
+      enabled?: boolean;
+    };
+    approvals?: {
+      generated_writes_require_approval?: boolean;
+    };
+  };
+};
+function envEnabled(name: string): boolean {
+  const value = process.env[name];
+  return value === '1' || value === 'true' || value === 'yes';
+}
+export function resolveSafetyPolicy(config: KnowledgeConfig, workspace: KnowledgeWorkspace): SafetyPolicy {
+  const extended = config as ConfigWithSafety;
+  const configuredBuckets = new Set<string>(extended.safety?.network?.allowed_s3_buckets ?? []);
+  if (config.storage.type === 's3' && config.storage.s3?.bucket) configuredBuckets.add(config.storage.s3.bucket);
+  if (process.env.HASNA_KNOWLEDGE_ALLOWED_S3_BUCKETS) {
+    for (const bucket of process.env.HASNA_KNOWLEDGE_ALLOWED_S3_BUCKETS.split(',').map((entry) => entry.trim()).filter(Boolean)) {
+      configuredBuckets.add(bucket);
+    }
+  }
+  return {
+    mode: config.mode,
+    allowWriteRoots: [
+      workspace.home,
+      workspace.artifactsDir,
+      workspace.cacheDir,
+      workspace.exportsDir,
+      workspace.indexesDir,
+      workspace.logsDir,
+      workspace.runsDir,
+      workspace.schemasDir,
+      workspace.wikiDir,
+    ].map((entry) => resolve(entry)),
+    readOnlySourceAccess: true,
+    network: {
+      webSearchEnabled: extended.safety?.network?.web_search_enabled ?? envEnabled('HASNA_KNOWLEDGE_WEB_SEARCH'),
+      s3ReadsEnabled: extended.safety?.network?.s3_reads_enabled ?? envEnabled('HASNA_KNOWLEDGE_ALLOW_S3_READS'),
+      allowedS3Buckets: [...configuredBuckets].sort(),
+    },
+    redaction: {
+      enabled: extended.safety?.redaction?.enabled ?? true,
+    },
+    approvals: {
+      generatedWritesRequireApproval: extended.safety?.approvals?.generated_writes_require_approval ?? true,
+    },
+  };
+}
+function isInside(root: string, target: string): boolean {
+  const rel = relative(root, target);
+  return rel === '' || (!rel.startsWith('..') && rel !== '..' && !rel.startsWith(`..${sep}`));
+}
+export function assertWriteAllowed(targetPath: string, policy: SafetyPolicy): void {
+  const resolved = resolve(targetPath);
+  if (!policy.allowWriteRoots.some((root) => isInside(root, resolved))) {
+    throw new Error(`Safety policy denied write outside .hasna/apps/knowledge: ${targetPath}`);
+  }
+}
+export function assertS3ReadAllowed(uri: string, policy: SafetyPolicy): void {
+  const parsed = new URL(uri);
+  const bucket = parsed.hostname;
+  if (!policy.network.s3ReadsEnabled) {
+    throw new Error('Safety policy denied S3 read. Set safety.network.s3_reads_enabled=true or HASNA_KNOWLEDGE_ALLOW_S3_READS=1.');
+  }
+  if (!policy.network.allowedS3Buckets.includes(bucket)) {
+    throw new Error(`Safety policy denied S3 bucket "${bucket}". Add it to safety.network.allowed_s3_buckets or HASNA_KNOWLEDGE_ALLOWED_S3_BUCKETS.`);
+  }
+}
+export function assertWebSearchAllowed(policy: SafetyPolicy): void {
+  if (!policy.network.webSearchEnabled) {
+    throw new Error('Safety policy denied web search. Set safety.network.web_search_enabled=true or HASNA_KNOWLEDGE_WEB_SEARCH=1.');
+  }
+}
+const REDACTION_PATTERNS: Array<{ type: string; severity: RedactionFinding['severity']; regex: RegExp; replacement: string }> = [
+  { type: 'private_key_block', severity: 'high', regex: /-----BEGIN [A-Z ]*PRIVATE KEY-----[\s\S]*?-----END [A-Z ]*PRIVATE KEY-----/g, replacement: '[REDACTED:private_key_block]' },
+  { type: 'secret_assignment', severity: 'high', regex: /\b(?:api[_-]?key|secret|token|password)\s*[:=]\s*['"]?[^'"\s]{8,}/gi, replacement: '[REDACTED:secret_assignment]' },
+  { type: 'openai_api_key', severity: 'high', regex: /\bsk-[A-Za-z0-9_-]{20,}\b/g, replacement: '[REDACTED:openai_api_key]' },
+  { type: 'anthropic_api_key', severity: 'high', regex: /\bsk-ant-[A-Za-z0-9_-]{20,}\b/g, replacement: '[REDACTED:anthropic_api_key]' },
+  { type: 'aws_access_key_id', severity: 'high', regex: /\bA(?:KIA|SIA)[A-Z0-9]{16}\b/g, replacement: '[REDACTED:aws_access_key_id]' },
+];
+export function redactSecrets(text: string, policy?: Pick<SafetyPolicy, 'redaction'>): RedactionResult {
+  if (policy && !policy.redaction.enabled) return { text, findings: [] };
+  let output = text;
+  const findings: RedactionFinding[] = [];
+  for (const pattern of REDACTION_PATTERNS) {
+    output = output.replace(pattern.regex, (match, ...args) => {
+      const offset = typeof args.at(-2) === 'number' ? args.at(-2) as number : output.indexOf(match);
+      findings.push({
+        type: pattern.type,
+        severity: pattern.severity,
+        start: Math.max(0, offset),
+        end: Math.max(0, offset + match.length),
+      });
+      return pattern.replacement;
+    });
+  }
+  return { text: output, findings };
+}
+export function auditId(input: SafetyAuditInput): string {
+  return `audit_${createHash('sha256')
+    .update(`${input.event_type}\u0000${input.action}\u0000${input.target_uri ?? ''}\u0000${input.created_at ?? ''}\u0000${JSON.stringify(input.metadata ?? {})}\u0000${randomUUID()}`)
+    .digest('hex')
+    .slice(0, 24)}`;
+}
+export function recordAuditEvent(db: Database, input: SafetyAuditInput): string {
+  const createdAt = input.created_at ?? new Date().toISOString();
+  const id = auditId({ ...input, created_at: createdAt });
+  db.run(
+    `INSERT INTO audit_events (id, event_type, action, target_uri, decision, metadata_json, created_at)
+     VALUES (?, ?, ?, ?, ?, ?, ?)`,
+    [
+      id,
+      input.event_type,
+      input.action,
+      input.target_uri ?? null,
+      input.decision,
+      JSON.stringify(input.metadata ?? {}),
+      createdAt,
+    ],
+  );
+  return id;
+}
+export function recordRedactionFindings(db: Database, input: {
+  source_uri?: string | null;
+  run_id?: string | null;
+  findings: RedactionFinding[];
+  metadata?: Record<string, unknown>;
+  created_at?: string;
+}): number {
+  const createdAt = input.created_at ?? new Date().toISOString();
+  for (const finding of input.findings) {
+    db.run(
+      `INSERT INTO redaction_findings (id, source_uri, run_id, severity, finding_type, metadata_json, created_at)
+       VALUES (?, ?, ?, ?, ?, ?, ?)`,
+      [
+        `redact_${randomUUID()}`,
+        input.source_uri ?? null,
+        input.run_id ?? null,
+        finding.severity,
+        finding.type,
+        JSON.stringify({ ...(input.metadata ?? {}), start: finding.start, end: finding.end }),
+        createdAt,
+      ],
+    );
+  }
+  return input.findings.length;
+}
+export function createApprovalGate(db: Database, input: {
+  action: string;
+  target_uri?: string | null;
+  reason?: string | null;
+  approved_by?: string | null;
+  metadata?: Record<string, unknown>;
+  created_at?: string;
+}): { id: string; status: 'approved' } {
+  const now = input.created_at ?? new Date().toISOString();
+  const id = `approval_${randomUUID()}`;
+  db.run(
+    `INSERT INTO approval_gates (id, action, target_uri, status, reason, approved_by, metadata_json, created_at, updated_at)
+     VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)`,
+    [
+      id,
+      input.action,
+      input.target_uri ?? null,
+      'approved',
+      input.reason ?? null,
+      input.approved_by ?? 'local-cli',
+      JSON.stringify(input.metadata ?? {}),
+      now,
+      now,
+    ],
+  );
+  return { id, status: 'approved' };
+}
+export function hasApproval(db: Database, action: string, targetUri?: string | null): boolean {
+  const row = db.query<{ id: string }, [string, string | null, string | null]>(
+    `SELECT id FROM approval_gates
+     WHERE action = ? AND status = 'approved' AND (target_uri IS NULL OR target_uri = ? OR ? IS NULL)
+     ORDER BY updated_at DESC LIMIT 1`,
+  ).get(action, targetUri ?? null, targetUri ?? null);
+  return Boolean(row);
+}
+export function approvalStatus(db: Database, policy: SafetyPolicy, action: string, targetUri?: string | null): {
+  action: string;
+  target_uri: string | null;
+  approval_required: boolean;
+  approved: boolean;
+  decision: SafetyDecision;
+} {
+  const approvalRequired = action === 'generated_write' && policy.approvals.generatedWritesRequireApproval;
+  const approved = !approvalRequired || hasApproval(db, action, targetUri);
+  return {
+    action,
+    target_uri: targetUri ?? null,
+    approval_required: approvalRequired,
+    approved,
+    decision: approved ? 'allow' : 'requires_approval',
+  };
+}

package/src/source-ref.ts CHANGED Viewed

@@ -82,6 +82,18 @@ export function parseSourceRef(uri: string): SourceRef {
   throw new Error(`Unsupported source ref scheme: ${uri}`);
 }
+export function catalogSourceUriForRef(uri: string, parsed = parseSourceRef(uri)): string {
+  if (parsed.kind === 'open-files' && parsed.entity === 'file' && parsed.revision_id) {
+    return uri.replace(/\/revision\/[^/]+$/, '');
+  }
+  return uri;
+}
+export function revisionIdForSourceRef(uri: string): string | null {
+  const parsed = parseSourceRef(uri);
+  return parsed.kind === 'open-files' && parsed.entity === 'file' ? parsed.revision_id ?? null : null;
+}
 export function isSupportedSourceRef(uri: string): boolean {
   try {
     parseSourceRef(uri);

package/src/source-resolver.ts ADDED Viewed

@@ -0,0 +1,418 @@
+import type { Database } from 'bun:sqlite';
+import { migrateKnowledgeDb, openKnowledgeDb } from './knowledge-db';
+import { catalogSourceUriForRef, parseSourceRef, revisionIdForSourceRef } from './source-ref';
+import { assertWriteAllowed, recordAuditEvent, type SafetyPolicy } from './safety';
+export interface SourceResolveOptions {
+  dbPath: string;
+  sourceRef: string;
+  purpose?: string;
+  limit?: number;
+  now?: Date;
+  safetyPolicy?: SafetyPolicy;
+}
+export interface SourceResolverEvidence {
+  resolver: 'open-files-read-only';
+  mode: 'local_catalog';
+  purpose: string;
+  read_only: true;
+  source_ref: string;
+  source_uri: string;
+  source_revision_id: string | null;
+  revision: string | null;
+  hash: string | null;
+  chunk_id?: string;
+  start_offset?: number | null;
+  end_offset?: number | null;
+  resolved_at: string;
+}
+export interface ResolvedSourceChunk {
+  id: string;
+  kind: string;
+  ordinal: number;
+  text: string;
+  token_count: number | null;
+  start_offset: number | null;
+  end_offset: number | null;
+  metadata: Record<string, unknown>;
+  evidence: SourceResolverEvidence;
+}
+export interface ResolvedSourceCitation {
+  source_ref: string;
+  source_uri: string;
+  chunk_id: string;
+  quote: string;
+  start_offset: number | null;
+  end_offset: number | null;
+  evidence: SourceResolverEvidence;
+}
+export interface SourceResolveResult {
+  source_ref: string;
+  source_uri: string;
+  purpose: string;
+  read_only: true;
+  resolved: boolean;
+  resolver: {
+    name: 'open-files-read-only';
+    mode: 'local_catalog';
+    contract: 'open-files-knowledge-source-v1';
+  };
+  source: {
+    id: string;
+    uri: string;
+    kind: string;
+    title: string | null;
+    metadata: Record<string, unknown>;
+    permissions: Record<string, unknown>;
+    updated_at: string;
+  } | null;
+  revision: {
+    id: string;
+    revision: string;
+    hash: string | null;
+    extracted_text_uri: string | null;
+    metadata: Record<string, unknown>;
+    created_at: string;
+    reindex_required: boolean;
+  } | null;
+  content: {
+    mime: string | null;
+    size: number | null;
+    hash: string | null;
+    text_available: boolean;
+    chunks_total: number;
+    chunks_returned: number;
+    char_count_returned: number;
+    extracted_text_ref: string | null;
+    bytes_available: false;
+    bytes_exposed: false;
+  };
+  chunks: ResolvedSourceChunk[];
+  citations: ResolvedSourceCitation[];
+}
+interface DbSourceRow {
+  id: string;
+  uri: string;
+  kind: string;
+  title: string | null;
+  metadata_json: string;
+  acl_json: string;
+  updated_at: string;
+}
+interface DbRevisionRow {
+  id: string;
+  revision: string;
+  hash: string | null;
+  extracted_text_uri: string | null;
+  metadata_json: string;
+  created_at: string;
+}
+interface DbChunkRow {
+  id: string;
+  kind: string;
+  ordinal: number;
+  text: string;
+  token_count: number | null;
+  start_offset: number | null;
+  end_offset: number | null;
+  metadata_json: string;
+}
+function parseJsonObject(value: string | null | undefined): Record<string, unknown> {
+  if (!value) return {};
+  try {
+    const parsed = JSON.parse(value);
+    return parsed && typeof parsed === 'object' && !Array.isArray(parsed) ? parsed as Record<string, unknown> : {};
+  } catch {
+    return {};
+  }
+}
+function metadataString(metadata: Record<string, unknown>, keys: string[]): string | null {
+  for (const key of keys) {
+    const value = metadata[key];
+    if (typeof value === 'string' && value.length > 0) return value;
+  }
+  return null;
+}
+function metadataNumber(metadata: Record<string, unknown>, keys: string[]): number | null {
+  for (const key of keys) {
+    const value = metadata[key];
+    if (typeof value === 'number' && Number.isFinite(value)) return value;
+  }
+  return null;
+}
+function assertPurposeAllowed(permissions: Record<string, unknown>, purpose: string): void {
+  const mode = permissions.mode;
+  if (typeof mode === 'string' && mode !== 'read_only') {
+    throw new Error(`Source resolver denied ${purpose}. Permission mode is ${mode}, expected read_only.`);
+  }
+  const denied = permissions.denied_purposes;
+  if (Array.isArray(denied) && denied.includes(purpose)) {
+    throw new Error(`Source resolver denied ${purpose}. Purpose is explicitly denied.`);
+  }
+  const allowed = permissions.allowed_purposes;
+  if (Array.isArray(allowed) && allowed.length > 0 && !allowed.includes(purpose)) {
+    throw new Error(`Source resolver denied ${purpose}. Allowed purposes: ${allowed.join(', ')}`);
+  }
+}
+function sourceRevisionRef(sourceUri: string, revision: DbRevisionRow | null, fallback: string): string {
+  if (!revision) return fallback;
+  try {
+    const parsed = parseSourceRef(sourceUri);
+    if (parsed.kind === 'open-files' && parsed.entity === 'file') {
+      return `${sourceUri}/revision/${encodeURIComponent(revision.revision)}`;
+    }
+  } catch {
+    return fallback;
+  }
+  return fallback;
+}
+function selectSource(db: Database, sourceUri: string, requestedRef: string): DbSourceRow | null {
+  return db.query<DbSourceRow, [string, string, string]>(
+    `SELECT id, uri, kind, title, metadata_json, acl_json, updated_at
+     FROM sources
+     WHERE uri = ? OR uri = ?
+     ORDER BY CASE WHEN uri = ? THEN 0 ELSE 1 END
+     LIMIT 1`,
+  ).get(sourceUri, requestedRef, sourceUri) ?? null;
+}
+function selectRevision(db: Database, sourceId: string, revisionId: string | null): DbRevisionRow | null {
+  if (revisionId) {
+    return db.query<DbRevisionRow, [string, string]>(
+      `SELECT id, revision, hash, extracted_text_uri, metadata_json, created_at
+       FROM source_revisions
+       WHERE source_id = ? AND revision = ?
+       LIMIT 1`,
+    ).get(sourceId, revisionId) ?? null;
+  }
+  return db.query<DbRevisionRow, [string]>(
+    `SELECT id, revision, hash, extracted_text_uri, metadata_json, created_at
+     FROM source_revisions
+     WHERE source_id = ?
+     ORDER BY created_at DESC, revision DESC
+     LIMIT 1`,
+  ).get(sourceId) ?? null;
+}
+function countChunks(db: Database, revisionId: string | null): number {
+  if (!revisionId) return 0;
+  const row = db.query<{ n: number }, [string]>('SELECT COUNT(*) AS n FROM chunks WHERE source_revision_id = ?').get(revisionId);
+  return row?.n ?? 0;
+}
+function selectChunks(db: Database, revisionId: string | null, limit: number): DbChunkRow[] {
+  if (!revisionId || limit <= 0) return [];
+  return db.query<DbChunkRow, [string, number]>(
+    `SELECT id, kind, ordinal, text, token_count, start_offset, end_offset, metadata_json
+     FROM chunks
+     WHERE source_revision_id = ?
+     ORDER BY ordinal ASC
+     LIMIT ?`,
+  ).all(revisionId, limit);
+}
+export async function resolveOpenFilesSource(options: SourceResolveOptions): Promise<SourceResolveResult> {
+  const purpose = options.purpose ?? 'knowledge_answer';
+  const limit = Math.max(0, Math.min(options.limit ?? 10, 100));
+  const resolvedAt = (options.now ?? new Date()).toISOString();
+  const parsed = parseSourceRef(options.sourceRef);
+  const sourceUri = catalogSourceUriForRef(options.sourceRef, parsed);
+  const requestedRevision = revisionIdForSourceRef(options.sourceRef);
+  if (options.safetyPolicy) {
+    if (!options.safetyPolicy.readOnlySourceAccess) throw new Error('Safety policy denied source resolution.');
+    assertWriteAllowed(options.dbPath, options.safetyPolicy);
+  }
+  migrateKnowledgeDb(options.dbPath);
+  const db = openKnowledgeDb(options.dbPath);
+  try {
+    return db.transaction((): SourceResolveResult => {
+      const source = selectSource(db, sourceUri, options.sourceRef);
+      if (!source) {
+        recordAuditEvent(db, {
+          event_type: 'source_read',
+          action: 'open_files_resolve_missing',
+          target_uri: options.sourceRef,
+          decision: 'allow',
+          metadata: { purpose, read_only: true, source_uri: sourceUri },
+          created_at: resolvedAt,
+        });
+        return {
+          source_ref: options.sourceRef,
+          source_uri: sourceUri,
+          purpose,
+          read_only: true,
+          resolved: false,
+          resolver: {
+            name: 'open-files-read-only',
+            mode: 'local_catalog',
+            contract: 'open-files-knowledge-source-v1',
+          },
+          source: null,
+          revision: null,
+          content: {
+            mime: null,
+            size: null,
+            hash: null,
+            text_available: false,
+            chunks_total: 0,
+            chunks_returned: 0,
+            char_count_returned: 0,
+            extracted_text_ref: null,
+            bytes_available: false,
+            bytes_exposed: false,
+          },
+          chunks: [],
+          citations: [],
+        } satisfies SourceResolveResult;
+      }
+      const sourceMetadata = parseJsonObject(source.metadata_json);
+      const permissions = parseJsonObject(source.acl_json);
+      try {
+        assertPurposeAllowed(permissions, purpose);
+      } catch (error) {
+        recordAuditEvent(db, {
+          event_type: 'source_read',
+          action: 'open_files_resolve',
+          target_uri: options.sourceRef,
+          decision: 'deny',
+          metadata: {
+            purpose,
+            read_only: true,
+            source_uri: source.uri,
+            error: error instanceof Error ? error.message : String(error),
+          },
+          created_at: resolvedAt,
+        });
+        throw error;
+      }
+      const revision = selectRevision(db, source.id, requestedRevision);
+      const revisionMetadata = parseJsonObject(revision?.metadata_json);
+      const totalChunks = countChunks(db, revision?.id ?? null);
+      const rows = selectChunks(db, revision?.id ?? null, limit);
+      const effectiveSourceRef = sourceRevisionRef(source.uri, revision, options.sourceRef);
+      const chunks = rows.map((row) => {
+        const metadata = parseJsonObject(row.metadata_json);
+        const evidence: SourceResolverEvidence = {
+          resolver: 'open-files-read-only',
+          mode: 'local_catalog',
+          purpose,
+          read_only: true,
+          source_ref: metadataString(metadata, ['source_ref']) ?? effectiveSourceRef,
+          source_uri: source.uri,
+          source_revision_id: revision?.id ?? null,
+          revision: revision?.revision ?? null,
+          hash: revision?.hash ?? metadataString(metadata, ['hash']),
+          chunk_id: row.id,
+          start_offset: row.start_offset,
+          end_offset: row.end_offset,
+          resolved_at: resolvedAt,
+        };
+        return {
+          id: row.id,
+          kind: row.kind,
+          ordinal: row.ordinal,
+          text: row.text,
+          token_count: row.token_count,
+          start_offset: row.start_offset,
+          end_offset: row.end_offset,
+          metadata,
+          evidence,
+        };
+      });
+      const citations = chunks.map((chunk) => ({
+        source_ref: chunk.evidence.source_ref,
+        source_uri: source.uri,
+        chunk_id: chunk.id,
+        quote: chunk.text.slice(0, 500),
+        start_offset: chunk.start_offset,
+        end_offset: chunk.end_offset,
+        evidence: chunk.evidence,
+      }));
+      recordAuditEvent(db, {
+        event_type: 'source_read',
+        action: 'open_files_resolve',
+        target_uri: options.sourceRef,
+        decision: 'allow',
+        metadata: {
+          purpose,
+          read_only: true,
+          source_uri: source.uri,
+          revision: revision?.revision ?? null,
+          chunks_returned: chunks.length,
+          chunks_total: totalChunks,
+        },
+        created_at: resolvedAt,
+      });
+      const mime = metadataString(sourceMetadata, ['mime', 'content_type']) ?? metadataString(revisionMetadata, ['mime', 'content_type']);
+      const size = metadataNumber(sourceMetadata, ['size', 'size_bytes']) ?? metadataNumber(revisionMetadata, ['size', 'size_bytes']);
+      return {
+        source_ref: effectiveSourceRef,
+        source_uri: source.uri,
+        purpose,
+        read_only: true,
+        resolved: true,
+        resolver: {
+          name: 'open-files-read-only',
+          mode: 'local_catalog',
+          contract: 'open-files-knowledge-source-v1',
+        },
+        source: {
+          id: source.id,
+          uri: source.uri,
+          kind: source.kind,
+          title: source.title,
+          metadata: sourceMetadata,
+          permissions,
+          updated_at: source.updated_at,
+        },
+        revision: revision ? {
+          id: revision.id,
+          revision: revision.revision,
+          hash: revision.hash,
+          extracted_text_uri: revision.extracted_text_uri,
+          metadata: revisionMetadata,
+          created_at: revision.created_at,
+          reindex_required: revisionMetadata.reindex_required === true,
+        } : null,
+        content: {
+          mime,
+          size,
+          hash: revision?.hash ?? metadataString(sourceMetadata, ['hash', 'checksum', 'sha256']),
+          text_available: totalChunks > 0,
+          chunks_total: totalChunks,
+          chunks_returned: chunks.length,
+          char_count_returned: chunks.reduce((sum, chunk) => sum + chunk.text.length, 0),
+          extracted_text_ref: revision?.extracted_text_uri ?? metadataString(revisionMetadata, ['extracted_text_ref', 'extracted_text_uri']),
+          bytes_available: false,
+          bytes_exposed: false,
+        },
+        chunks,
+        citations,
+      };
+    })();
+  } finally {
+    db.close();
+  }
+}