@helmetfire-labs/cartridge-common 0.6.0 → 0.7.0

package/README.md

@@ -68,6 +68,15 @@ npm install @helmetfire-labs/cartridge-common
 |--------|--------|-------------|
 | `createLocalAnchorService`, `AnchorReceipt`, `AnchorService` | `anchor` | File-backed anchor store — same interface that will back a Base L2 contract |
 
+### ZK Proofs (Patent N Phase 6)
+
+| Export | Module | Description |
+|--------|--------|-------------|
+| `CommitmentProver` | `zk-proof` | Proves reducer replay correctness via HMAC-SHA256 commitment. Same interface as real ZK — swap for SP1/RISC Zero later. |
+| `CommitmentVerifier` | `zk-proof` | Verifies commitment proofs without action log or reducer |
+| `ZkProver`, `ZkVerifier` | `zk-proof` | Pluggable prover/verifier interfaces |
+| `ZkProof`, `ZkPublicInputs`, `ZkVerifyResult` | `zk-proof` | Proof types — public inputs: chain head, entry count, reducer hash, final state hash |
+
 ### Action Schemas
 
 | Export | Module | Description |
@@ -273,6 +282,6 @@ const store = state.getStore(transport.sessionId, "view_page");
 ```bash
 npm run build       # compile TypeScript
 npm run typecheck   # type-check only
-npm test            # run tests (296 tests)
+npm test            # run tests (302 tests)
 ```
 

package/dist/index.d.ts

@@ -40,6 +40,8 @@ export { operatorAnchorReducer, operatorAnchorActionSchema } from './operator-re
 export type { OperatorAnchorState, OperatorAnchorAction, AnchorChildEntry, } from './operator-reducer.js';
 export { computeMerkleRoot, generateProof, verifyProof } from './merkle.js';
 export type { MerkleProof } from './merkle.js';
+export { CommitmentProver, CommitmentVerifier } from './zk-proof.js';
+export type { ZkProof, ZkPublicInputs, ZkVerifyResult, ZkProver, ZkVerifier } from './zk-proof.js';
 export { defineActionSchema, action, writeActionSchema, getSchemaHash, validateAction, } from './action-schema.js';
 export type { ActionSchema, ActionVariant, FieldType, } from './action-schema.js';
 export { hashPolicy, writePolicy, readPolicy, verifyPolicy, isNetworkAllowed, isFilesystemAllowed, isSpawnAllowed, DEFAULT_POLICY, INSTALL_POLICY, } from './policy.js';

package/dist/index.js

@@ -29,6 +29,7 @@ export { containerReducer, containerActionSchema } from './container-reducer.js'
 export { agentReducer, agentActionSchema } from './agent-reducer.js';
 export { operatorAnchorReducer, operatorAnchorActionSchema } from './operator-reducer.js';
 export { computeMerkleRoot, generateProof, verifyProof } from './merkle.js';
+export { CommitmentProver, CommitmentVerifier } from './zk-proof.js';
 export { defineActionSchema, action, writeActionSchema, getSchemaHash, validateAction, } from './action-schema.js';
 // ── Process Policy (Patent M §3.11) ─────────────────────────────────────────
 export { hashPolicy, writePolicy, readPolicy, verifyPolicy, isNetworkAllowed, isFilesystemAllowed, isSpawnAllowed, DEFAULT_POLICY, INSTALL_POLICY, } from './policy.js';

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAGvC,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAG7C,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAGvC,OAAO,EACL,eAAe,EACf,cAAc,EACd,aAAa,EACb,UAAU,EACV,QAAQ,GACT,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE1C,OAAO,EACL,iBAAiB,EACjB,aAAa,EACb,YAAY,GACb,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,gBAAgB,EAChB,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AAQxB,+EAA+E;AAE/E,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAQnE,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAG5D,OAAO,EAAE,kBAAkB,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAGlE,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAErC,OAAO,EAAE,gBAAgB,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAC;AAOjF,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAOrE,OAAO,EAAE,qBAAqB,EAAE,0BAA0B,EAAE,MAAM,uBAAuB,CAAC;AAO1F,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAG5E,OAAO,EACL,kBAAkB,EAClB,MAAM,EACN,iBAAiB,EACjB,aAAa,EACb,cAAc,GACf,MAAM,oBAAoB,CAAC;AAO5B,+EAA+E;AAE/E,OAAO,EACL,UAAU,EACV,WAAW,EACX,UAAU,EACV,YAAY,EACZ,gBAAgB,EAChB,mBAAmB,EACnB,cAAc,EACd,cAAc,EACd,cAAc,GACf,MAAM,aAAa,CAAC;AAUrB,+EAA+E;AAE/E,OAAO,EACL,aAAa,EACb,OAAO,EACP,OAAO,GACR,MAAM,kBAAkB,CAAC;AAO1B,+EAA+E;AAE/E,OAAO,EACL,iBAAiB,EACjB,UAAU,EACV,gBAAgB,EAChB,iBAAiB,EACjB,UAAU,EACV,sBAAsB,EACtB,aAAa,EACb,iBAAiB,EACjB,sBAAsB,EACtB,kBAAkB,EAClB,kBAAkB,EAClB,kBAAkB,EAClB,YAAY,EACZ,wBAAwB,EACxB,oBAAoB,EACpB,WAAW,GACZ,MAAM,kBAAkB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAC;AAGvC,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAG7C,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAGvC,OAAO,EACL,eAAe,EACf,cAAc,EACd,aAAa,EACb,UAAU,EACV,QAAQ,GACT,MAAM,YAAY,CAAC;AAEpB,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAE1C,OAAO,EACL,iBAAiB,EACjB,aAAa,EACb,YAAY,GACb,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,gBAAgB,EAChB,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AAQxB,+EAA+E;AAE/E,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAQnE,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAG5D,OAAO,EAAE,kBAAkB,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAGlE,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAErC,OAAO,EAAE,gBAAgB,EAAE,qBAAqB,EAAE,MAAM,wBAAwB,CAAC;AAOjF,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,oBAAoB,CAAC;AAOrE,OAAO,EAAE,qBAAqB,EAAE,0BAA0B,EAAE,MAAM,uBAAuB,CAAC;AAO1F,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAG5E,OAAO,EAAE,gBAAgB,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AAGrE,OAAO,EACL,kBAAkB,EAClB,MAAM,EACN,iBAAiB,EACjB,aAAa,EACb,cAAc,GACf,MAAM,oBAAoB,CAAC;AAO5B,+EAA+E;AAE/E,OAAO,EACL,UAAU,EACV,WAAW,EACX,UAAU,EACV,YAAY,EACZ,gBAAgB,EAChB,mBAAmB,EACnB,cAAc,EACd,cAAc,EACd,cAAc,GACf,MAAM,aAAa,CAAC;AAUrB,+EAA+E;AAE/E,OAAO,EACL,aAAa,EACb,OAAO,EACP,OAAO,GACR,MAAM,kBAAkB,CAAC;AAO1B,+EAA+E;AAE/E,OAAO,EACL,iBAAiB,EACjB,UAAU,EACV,gBAAgB,EAChB,iBAAiB,EACjB,UAAU,EACV,sBAAsB,EACtB,aAAa,EACb,iBAAiB,EACjB,sBAAsB,EACtB,kBAAkB,EAClB,kBAAkB,EAClB,kBAAkB,EAClB,YAAY,EACZ,wBAAwB,EACxB,oBAAoB,EACpB,WAAW,GACZ,MAAM,kBAAkB,CAAC"}

package/dist/zk-proof.d.ts

@@ -0,0 +1,91 @@
+/**
+ * Zero-knowledge proof interface for reducer replay verification.
+ *
+ * Proves: "There exists an action log of length N governed by reducer R
+ * such that the hash chain is intact and the chain head is H."
+ *
+ * Without revealing: the action log entries, the state transitions,
+ * or any intermediate hashes.
+ *
+ * This module defines the proof format and provides two implementations:
+ *
+ *   1. CommitmentProver (built-in) — a cryptographic commitment scheme
+ *      using HMAC-SHA256. Not a true zero-knowledge proof (the prover
+ *      must be trusted not to forge), but structurally identical to the
+ *      real thing. Suitable for development, testing, and single-operator
+ *      deployments where the prover and verifier are the same entity.
+ *
+ *   2. ZkVmProver (future) — a real ZK proof via SP1 or RISC Zero.
+ *      The reducer is compiled to a zkVM target and the proof is
+ *      cryptographically sound. Drop-in replacement for CommitmentProver.
+ *
+ * Patent N: Hierarchical Anchor Chains for Verifiable Agent Accountability
+ */
+import type { DurableReducer } from "./durable-reducer.js";
+export interface ZkPublicInputs {
+    /** Hash of the last action.log line */
+    chainHead: string;
+    /** Number of entries in the action log */
+    entryCount: number;
+    /** SHA-256 of the reducer's action schema (binds proof to a specific reducer) */
+    reducerHash: string;
+    /** SHA-256 of the final state after replay */
+    finalStateHash: string;
+}
+export interface ZkProof {
+    /** Proof system identifier */
+    system: "commitment-v1" | "sp1" | "risc-zero";
+    /** The public inputs (visible to verifier) */
+    publicInputs: ZkPublicInputs;
+    /** The proof bytes (opaque to everyone except the verifier) */
+    proof: string;
+    /** Timestamp of proof generation */
+    generatedAt: number;
+}
+export interface ZkVerifyResult {
+    ok: boolean;
+    system: string;
+    publicInputs: ZkPublicInputs;
+    failure?: string;
+}
+export interface ZkProver {
+    /** Generate a proof that a reducer replay is correct. */
+    prove<S, A extends {
+        type: string;
+    }>(actionLog: string[], reducer: DurableReducer<S, A>, reducerHash: string): ZkProof;
+}
+export interface ZkVerifier {
+    /** Verify a proof. Does NOT need the action log or reducer. */
+    verify(proof: ZkProof): ZkVerifyResult;
+}
+/**
+ * CommitmentProver — generates commitment-based proofs.
+ *
+ * Replays the action log through the reducer, verifies chain integrity,
+ * and produces a commitment (HMAC) over the result. The commitment key
+ * is derived from the reducer hash and chain head, so it can be verified
+ * without the action log.
+ */
+export declare class CommitmentProver implements ZkProver {
+    private secret;
+    /**
+     * @param secret A secret string known to both prover and verifier.
+     *               In production, this would be replaced by a ZK proof
+     *               that requires no shared secret.
+     */
+    constructor(secret: string);
+    prove<S, A extends {
+        type: string;
+    }>(actionLog: string[], reducer: DurableReducer<S, A>, reducerHash: string): ZkProof;
+}
+/**
+ * CommitmentVerifier — verifies commitment-based proofs.
+ *
+ * Checks that the HMAC commitment matches the public inputs.
+ * Does NOT need the action log, reducer, or any private data.
+ */
+export declare class CommitmentVerifier implements ZkVerifier {
+    private secret;
+    constructor(secret: string);
+    verify(proof: ZkProof): ZkVerifyResult;
+}

package/dist/zk-proof.js

@@ -0,0 +1,151 @@
+/**
+ * Zero-knowledge proof interface for reducer replay verification.
+ *
+ * Proves: "There exists an action log of length N governed by reducer R
+ * such that the hash chain is intact and the chain head is H."
+ *
+ * Without revealing: the action log entries, the state transitions,
+ * or any intermediate hashes.
+ *
+ * This module defines the proof format and provides two implementations:
+ *
+ *   1. CommitmentProver (built-in) — a cryptographic commitment scheme
+ *      using HMAC-SHA256. Not a true zero-knowledge proof (the prover
+ *      must be trusted not to forge), but structurally identical to the
+ *      real thing. Suitable for development, testing, and single-operator
+ *      deployments where the prover and verifier are the same entity.
+ *
+ *   2. ZkVmProver (future) — a real ZK proof via SP1 or RISC Zero.
+ *      The reducer is compiled to a zkVM target and the proof is
+ *      cryptographically sound. Drop-in replacement for CommitmentProver.
+ *
+ * Patent N: Hierarchical Anchor Chains for Verifiable Agent Accountability
+ */
+import { strict as assert } from "node:assert";
+import { createHmac } from "node:crypto";
+import { sha256, hashLine, hashState } from "./durable-reducer.js";
+// ── Commitment-based proof (built-in) ───────────────────────────────────────
+//
+// This is NOT a real zero-knowledge proof. It's a cryptographic commitment
+// scheme that provides the same interface. The prover commits to the replay
+// result using an HMAC with a derived key. The verifier checks the HMAC.
+//
+// The "zero-knowledge" property is simulated: the verifier doesn't see the
+// action log, but the proof could be forged by anyone who knows the HMAC key.
+// In single-operator deployments (prover = verifier), this is fine.
+//
+// For multi-party verification, replace with SP1 or RISC Zero.
+const COMMITMENT_VERSION = "commitment-v1";
+/**
+ * Derive an HMAC key from the reducer hash and chain head.
+ * This binds the commitment to a specific reducer + chain state.
+ */
+function deriveCommitmentKey(reducerHash, chainHead) {
+    return sha256(reducerHash + ":" + chainHead);
+}
+/**
+ * Compute an HMAC-SHA256 commitment over the public inputs.
+ */
+function computeCommitment(inputs, key) {
+    const payload = JSON.stringify({
+        chainHead: inputs.chainHead,
+        entryCount: inputs.entryCount,
+        reducerHash: inputs.reducerHash,
+        finalStateHash: inputs.finalStateHash,
+    });
+    return createHmac("sha256", key).update(payload).digest("hex");
+}
+/**
+ * CommitmentProver — generates commitment-based proofs.
+ *
+ * Replays the action log through the reducer, verifies chain integrity,
+ * and produces a commitment (HMAC) over the result. The commitment key
+ * is derived from the reducer hash and chain head, so it can be verified
+ * without the action log.
+ */
+export class CommitmentProver {
+    secret;
+    /**
+     * @param secret A secret string known to both prover and verifier.
+     *               In production, this would be replaced by a ZK proof
+     *               that requires no shared secret.
+     */
+    constructor(secret) {
+        assert(secret, "commitment prover requires a secret");
+        this.secret = secret;
+    }
+    prove(actionLog, reducer, reducerHash) {
+        assert(actionLog.length > 0, "cannot prove an empty action log");
+        // Replay the reducer and verify chain integrity
+        let state = reducer.init();
+        let prevHash = "genesis";
+        for (let i = 0; i < actionLog.length; i++) {
+            const line = actionLog[i];
+            const entry = JSON.parse(line);
+            // Verify chain link
+            assert(entry.prevHash === prevHash, `chain broken at entry ${i}: expected ${prevHash}, got ${entry.prevHash}`);
+            // Replay through reducer
+            state = reducer.reduce(state, entry.action);
+            // Verify state hash
+            const expectedStateHash = hashState(reducer.serialize(state));
+            assert(entry.stateHash === expectedStateHash, `state divergence at entry ${i}: expected ${expectedStateHash}, got ${entry.stateHash}`);
+            prevHash = hashLine(line);
+        }
+        const chainHead = prevHash;
+        const finalStateHash = hashState(reducer.serialize(state));
+        const publicInputs = {
+            chainHead,
+            entryCount: actionLog.length,
+            reducerHash,
+            finalStateHash,
+        };
+        // Generate commitment
+        const key = deriveCommitmentKey(reducerHash, this.secret);
+        const commitment = computeCommitment(publicInputs, key);
+        return {
+            system: COMMITMENT_VERSION,
+            publicInputs,
+            proof: commitment,
+            generatedAt: Date.now(),
+        };
+    }
+}
+/**
+ * CommitmentVerifier — verifies commitment-based proofs.
+ *
+ * Checks that the HMAC commitment matches the public inputs.
+ * Does NOT need the action log, reducer, or any private data.
+ */
+export class CommitmentVerifier {
+    secret;
+    constructor(secret) {
+        assert(secret, "commitment verifier requires a secret");
+        this.secret = secret;
+    }
+    verify(proof) {
+        if (proof.system !== COMMITMENT_VERSION) {
+            return {
+                ok: false,
+                system: proof.system,
+                publicInputs: proof.publicInputs,
+                failure: `unsupported proof system: ${proof.system} (expected ${COMMITMENT_VERSION})`,
+            };
+        }
+        const key = deriveCommitmentKey(proof.publicInputs.reducerHash, this.secret);
+        const expected = computeCommitment(proof.publicInputs, key);
+        if (proof.proof !== expected) {
+            return {
+                ok: false,
+                system: proof.system,
+                publicInputs: proof.publicInputs,
+                failure: "commitment verification failed — proof does not match public inputs",
+            };
+        }
+        return {
+            ok: true,
+            system: proof.system,
+            publicInputs: proof.publicInputs,
+        };
+    }
+}
+//# sourceMappingURL=zk-proof.js.map

package/dist/zk-proof.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zk-proof.js","sourceRoot":"","sources":["../src/zk-proof.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAEH,OAAO,EAAE,MAAM,IAAI,MAAM,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,sBAAsB,CAAC;AAkDnE,+EAA+E;AAC/E,EAAE;AACF,2EAA2E;AAC3E,4EAA4E;AAC5E,yEAAyE;AACzE,EAAE;AACF,2EAA2E;AAC3E,8EAA8E;AAC9E,oEAAoE;AACpE,EAAE;AACF,+DAA+D;AAE/D,MAAM,kBAAkB,GAAG,eAAe,CAAC;AAE3C;;;GAGG;AACH,SAAS,mBAAmB,CAAC,WAAmB,EAAE,SAAiB;IACjE,OAAO,MAAM,CAAC,WAAW,GAAG,GAAG,GAAG,SAAS,CAAC,CAAC;AAC/C,CAAC;AAED;;GAEG;AACH,SAAS,iBAAiB,CAAC,MAAsB,EAAE,GAAW;IAC5D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC;QAC7B,SAAS,EAAE,MAAM,CAAC,SAAS;QAC3B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,cAAc,EAAE,MAAM,CAAC,cAAc;KACtC,CAAC,CAAC;IACH,OAAO,UAAU,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AACjE,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,OAAO,gBAAgB;IACnB,MAAM,CAAS;IAEvB;;;;OAIG;IACH,YAAY,MAAc;QACxB,MAAM,CAAC,MAAM,EAAE,qCAAqC,CAAC,CAAC;QACtD,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,KAAK,CACH,SAAmB,EACnB,OAA6B,EAC7B,WAAmB;QAEnB,MAAM,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,kCAAkC,CAAC,CAAC;QAEjE,gDAAgD;QAChD,IAAI,KAAK,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;QAC3B,IAAI,QAAQ,GAAG,SAAS,CAAC;QAEzB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,SAAS,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC1C,MAAM,IAAI,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;YAC1B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAA6B,CAAC;YAE3D,oBAAoB;YACpB,MAAM,CACJ,KAAK,CAAC,QAAQ,KAAK,QAAQ,EAC3B,yBAAyB,CAAC,cAAc,QAAQ,SAAS,KAAK,CAAC,QAAQ,EAAE,CAC1E,CAAC;YAEF,yBAAyB;YACzB,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;YAE5C,oBAAoB;YACpB,MAAM,iBAAiB,GAAG,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;YAC9D,MAAM,CACJ,KAAK,CAAC,SAAS,KAAK,iBAAiB,EACrC,6BAA6B,CAAC,cAAc,iBAAiB,SAAS,KAAK,CAAC,SAAS,EAAE,CACxF,CAAC;YAEF,QAAQ,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;QAED,MAAM,SAAS,GAAG,QAAQ,CAAC;QAC3B,MAAM,cAAc,GAAG,SAAS,CAAC,OAAO,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;QAE3D,MAAM,YAAY,GAAmB;YACnC,SAAS;YACT,UAAU,EAAE,SAAS,CAAC,MAAM;YAC5B,WAAW;YACX,cAAc;SACf,CAAC;QAEF,sBAAsB;QACtB,MAAM,GAAG,GAAG,mBAAmB,CAAC,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1D,MAAM,UAAU,GAAG,iBAAiB,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;QAExD,OAAO;YACL,MAAM,EAAE,kBAAkB;YAC1B,YAAY;YACZ,KAAK,EAAE,UAAU;YACjB,WAAW,EAAE,IAAI,CAAC,GAAG,EAAE;SACxB,CAAC;IACJ,CAAC;CACF;AAED;;;;;GAKG;AACH,MAAM,OAAO,kBAAkB;IACrB,MAAM,CAAS;IAEvB,YAAY,MAAc;QACxB,MAAM,CAAC,MAAM,EAAE,uCAAuC,CAAC,CAAC;QACxD,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,MAAM,CAAC,KAAc;QACnB,IAAI,KAAK,CAAC,MAAM,KAAK,kBAAkB,EAAE,CAAC;YACxC,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,YAAY,EAAE,KAAK,CAAC,YAAY;gBAChC,OAAO,EAAE,6BAA6B,KAAK,CAAC,MAAM,cAAc,kBAAkB,GAAG;aACtF,CAAC;QACJ,CAAC;QAED,MAAM,GAAG,GAAG,mBAAmB,CAAC,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QAC7E,MAAM,QAAQ,GAAG,iBAAiB,CAAC,KAAK,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;QAE5D,IAAI,KAAK,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,YAAY,EAAE,KAAK,CAAC,YAAY;gBAChC,OAAO,EAAE,qEAAqE;aAC/E,CAAC;QACJ,CAAC;QAED,OAAO;YACL,EAAE,EAAE,IAAI;YACR,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,YAAY,EAAE,KAAK,CAAC,YAAY;SACjC,CAAC;IACJ,CAAC;CACF"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@helmetfire-labs/cartridge-common",
-  "version": "0.6.0",
+  "version": "0.7.0",
   "description": "Shared logging, error boundaries, trace helpers, and durable reducer runtime for infrastructure cartridges",
   "type": "module",
   "main": "dist/index.js",