@highflame/policy 1.2.0 → 2.0.0

package/dist/schemas.d.ts

@@ -0,0 +1,64 @@
+/**
+ * Service-specific Cedar schemas and context metadata
+ *
+ * This module provides access to service-specific Cedar schemas
+ * and their associated context metadata for UI builders.
+ *
+ * Schemas are bundled with the package and loaded at runtime. The schema
+ * files are copied from schemas/ to packages/typescript/_schemas/ during
+ * codegen (see Makefile). This ensures the package is self-contained and
+ * works correctly when installed from npm.
+ *
+ * Available Schemas:
+ * - Overwatch (Guardian): IDE security policies for LLM agents and tool calls
+ * - Palisade: ML supply chain security policies for artifact scanning
+ *
+ * @example
+ * ```typescript
+ * import { OVERWATCH_SCHEMA, OVERWATCH_CONTEXT } from '@highflame/policy/schemas';
+ * import { PolicyEngine } from '@highflame/policy';
+ *
+ * const engine = new PolicyEngine();
+ * engine.loadSchema(OVERWATCH_SCHEMA);
+ *
+ * // Parse context metadata for UI dropdowns
+ * const contextMeta = JSON.parse(OVERWATCH_CONTEXT);
+ * ```
+ */
+export { OverwatchContextKey } from './overwatch-context.gen.js';
+export { PalisadeContextKey } from './palisade-context.gen.js';
+export type { OverwatchContextKey as OverwatchContextKeyType } from './overwatch-context.gen.js';
+export type { PalisadeContextKey as PalisadeContextKeyType } from './palisade-context.gen.js';
+/**
+ * Overwatch (Guardian) Cedar schema
+ *
+ * Full Cedar schema for IDE security, including:
+ * - Actions: process_prompt, call_tool, connect_server, read_file, write_file
+ * - Entities: User, Agent, LlmPrompt, Tool, Server, FilePath
+ * - 20+ context attributes for threat detection and workspace security
+ */
+export declare const OVERWATCH_SCHEMA: string;
+/**
+ * Overwatch context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Overwatch action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export declare const OVERWATCH_CONTEXT: string;
+/**
+ * Palisade Cedar schema
+ *
+ * Full Cedar schema for ML supply chain security, including:
+ * - Actions: scan_artifact, validate_integrity, validate_provenance, quarantine_artifact, load_model, deploy_model
+ * - Entities: Scanner, Artifact, Package
+ * - 15+ context attributes for ML security findings
+ */
+export declare const PALISADE_SCHEMA: string;
+/**
+ * Palisade context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Palisade action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export declare const PALISADE_CONTEXT: string;
+//# sourceMappingURL=schemas.d.ts.map

package/dist/schemas.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AAaH,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAC/D,YAAY,EAAE,mBAAmB,IAAI,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AACjG,YAAY,EAAE,kBAAkB,IAAI,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AAE9F;;;;;;;GAOG;AACH,eAAO,MAAM,gBAAgB,QAG5B,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB,QAG7B,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,eAAe,QAG3B,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,QAG5B,CAAC"}

package/dist/schemas.js

@@ -0,0 +1,70 @@
+/**
+ * Service-specific Cedar schemas and context metadata
+ *
+ * This module provides access to service-specific Cedar schemas
+ * and their associated context metadata for UI builders.
+ *
+ * Schemas are bundled with the package and loaded at runtime. The schema
+ * files are copied from schemas/ to packages/typescript/_schemas/ during
+ * codegen (see Makefile). This ensures the package is self-contained and
+ * works correctly when installed from npm.
+ *
+ * Available Schemas:
+ * - Overwatch (Guardian): IDE security policies for LLM agents and tool calls
+ * - Palisade: ML supply chain security policies for artifact scanning
+ *
+ * @example
+ * ```typescript
+ * import { OVERWATCH_SCHEMA, OVERWATCH_CONTEXT } from '@highflame/policy/schemas';
+ * import { PolicyEngine } from '@highflame/policy';
+ *
+ * const engine = new PolicyEngine();
+ * engine.loadSchema(OVERWATCH_SCHEMA);
+ *
+ * // Parse context metadata for UI dropdowns
+ * const contextMeta = JSON.parse(OVERWATCH_CONTEXT);
+ * ```
+ */
+import * as fs from 'fs';
+import * as path from 'path';
+import { fileURLToPath } from 'url';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+// Path to schemas directory (bundled with package)
+const SCHEMAS_DIR = path.join(__dirname, '..', '_schemas');
+// Re-export service-specific context keys
+export { OverwatchContextKey } from './overwatch-context.gen.js';
+export { PalisadeContextKey } from './palisade-context.gen.js';
+/**
+ * Overwatch (Guardian) Cedar schema
+ *
+ * Full Cedar schema for IDE security, including:
+ * - Actions: process_prompt, call_tool, connect_server, read_file, write_file
+ * - Entities: User, Agent, LlmPrompt, Tool, Server, FilePath
+ * - 20+ context attributes for threat detection and workspace security
+ */
+export const OVERWATCH_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'overwatch', 'schema.cedarschema'), 'utf-8');
+/**
+ * Overwatch context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Overwatch action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export const OVERWATCH_CONTEXT = fs.readFileSync(path.join(SCHEMAS_DIR, 'overwatch', 'context.json'), 'utf-8');
+/**
+ * Palisade Cedar schema
+ *
+ * Full Cedar schema for ML supply chain security, including:
+ * - Actions: scan_artifact, validate_integrity, validate_provenance, quarantine_artifact, load_model, deploy_model
+ * - Entities: Scanner, Artifact, Package
+ * - 15+ context attributes for ML security findings
+ */
+export const PALISADE_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'palisade', 'schema.cedarschema'), 'utf-8');
+/**
+ * Palisade context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Palisade action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export const PALISADE_CONTEXT = fs.readFileSync(path.join(SCHEMAS_DIR, 'palisade', 'context.json'), 'utf-8');
+//# sourceMappingURL=schemas.js.map

package/dist/schemas.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.js","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AAEpC,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;AAE3C,mDAAmD;AACnD,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;AAE3D,0CAA0C;AAC1C,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAI/D;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,EAAE,CAAC,YAAY,CAC7C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,EAAE,oBAAoB,CAAC,EACzD,OAAO,CACR,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,EAAE,CAAC,YAAY,CAC9C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,EAAE,cAAc,CAAC,EACnD,OAAO,CACR,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,EAAE,CAAC,YAAY,CAC5C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,EAAE,oBAAoB,CAAC,EACxD,OAAO,CACR,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,EAAE,CAAC,YAAY,CAC7C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,EAAE,cAAc,CAAC,EAClD,OAAO,CACR,CAAC"}

package/dist/schemas.test.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Schema validation tests
+ *
+ * Tests service-specific schema loading and policy validation
+ * using Overwatch (Guardian) and Palisade schemas.
+ */
+export {};
+//# sourceMappingURL=schemas.test.d.ts.map

package/dist/schemas.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.test.d.ts","sourceRoot":"","sources":["../src/schemas.test.ts"],"names":[],"mappings":"AAAA;;;;;GAKG"}

package/dist/schemas.test.js

@@ -0,0 +1,381 @@
+/**
+ * Schema validation tests
+ *
+ * Tests service-specific schema loading and policy validation
+ * using Overwatch (Guardian) and Palisade schemas.
+ */
+import { describe, it, expect, beforeEach } from 'vitest';
+import { PolicyEngine, PolicyValidator, newEntityUID, newEntity, } from './index.js';
+import * as fs from 'fs';
+import * as path from 'path';
+// Load service-specific schemas
+const SCHEMAS_DIR = path.join(__dirname, '..', '..', '..', 'schemas');
+const OVERWATCH_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'overwatch', 'schema.cedarschema'), 'utf-8');
+const PALISADE_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'palisade', 'schema.cedarschema'), 'utf-8');
+describe('Service-Specific Schemas', () => {
+    describe('Schema Loading', () => {
+        it('should load Overwatch schema successfully', () => {
+            expect(OVERWATCH_SCHEMA).toBeTruthy();
+            expect(OVERWATCH_SCHEMA).toContain('namespace');
+            expect(OVERWATCH_SCHEMA).toContain('Overwatch');
+        });
+        it('should load Palisade schema successfully', () => {
+            expect(PALISADE_SCHEMA).toBeTruthy();
+            expect(PALISADE_SCHEMA).toContain('namespace');
+            expect(PALISADE_SCHEMA).toContain('Palisade');
+        });
+    });
+    describe('Overwatch Schema Validation', () => {
+        let validator;
+        beforeEach(() => {
+            validator = new PolicyValidator(OVERWATCH_SCHEMA);
+        });
+        it('should validate a correct Overwatch policy', () => {
+            const validPolicy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when {
+          context.threat_count < 5 &&
+          context.highest_severity != "critical"
+        };
+      `;
+            const result = validator.validate(validPolicy);
+            if (!result.valid) {
+                console.log('Validation errors:', result.errors);
+            }
+            expect(result.valid).toBe(true);
+            expect(result.errors).toHaveLength(0);
+        });
+        it('should reject policy with invalid entity type', () => {
+            const invalidPolicy = `
+        permit(
+          principal is Overwatch::NonExistentEntity,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        );
+      `;
+            const result = validator.validate(invalidPolicy);
+            expect(result.valid).toBe(false);
+            expect(result.errors.length).toBeGreaterThan(0);
+        });
+        it('should reject policy with invalid action', () => {
+            const invalidPolicy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"invalid_action",
+          resource is Overwatch::Tool
+        );
+      `;
+            const result = validator.validate(invalidPolicy);
+            expect(result.valid).toBe(false);
+            expect(result.errors.length).toBeGreaterThan(0);
+        });
+        it('should validate policy with multiple context attributes', () => {
+            const policy = `
+        permit(
+          principal is Overwatch::Agent,
+          action == Overwatch::Action::"process_prompt",
+          resource is Overwatch::LlmPrompt
+        )
+        when {
+          context.threat_count == 0 &&
+          context.highest_severity == "low" &&
+          context.contains_secrets == false
+        };
+      `;
+            const result = validator.validate(policy);
+            expect(result.valid).toBe(true);
+        });
+    });
+    describe('Palisade Schema Validation', () => {
+        let validator;
+        beforeEach(() => {
+            validator = new PolicyValidator(PALISADE_SCHEMA);
+        });
+        it('should validate a correct Palisade policy', () => {
+            const validPolicy = `
+        permit(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.environment == "production" &&
+          context.artifact_format == "safetensors"
+        };
+      `;
+            const result = validator.validate(validPolicy);
+            expect(result.valid).toBe(true);
+            expect(result.errors).toHaveLength(0);
+        });
+        it('should reject policy with wrong namespace', () => {
+            const invalidPolicy = `
+        permit(
+          principal is Overwatch::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        );
+      `;
+            const result = validator.validate(invalidPolicy);
+            expect(result.valid).toBe(false);
+        });
+        it('should validate policy with ML-specific context', () => {
+            const policy = `
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.pickle_exec_path_detected == true ||
+          context.severity == "CRITICAL"
+        };
+      `;
+            const result = validator.validate(policy);
+            expect(result.valid).toBe(true);
+        });
+    });
+    describe('PolicyEngine with Service Schemas', () => {
+        it('should evaluate Overwatch policy correctly', () => {
+            const policy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when { context.threat_count < 5 };
+      `;
+            const engine = new PolicyEngine({ schema: OVERWATCH_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Overwatch::User', 'mcp_client', { user_type: 'external', email: 'user@example.com' }),
+                newEntity('Overwatch::Tool', 'shell', { tool_name: 'shell', risk_level: 'high' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Overwatch::User', 'mcp_client'),
+                action: 'Overwatch::Action::"call_tool"',
+                resource: newEntityUID('Overwatch::Tool', 'shell'),
+                context: {
+                    content: 'ls -la',
+                    source: 'claudecode',
+                    event: 'PreToolUse',
+                    user_email: 'user@example.com',
+                    tool_name: 'shell',
+                    mcp_server: 'filesystem',
+                    mcp_tool: 'shell',
+                    server_name: 'filesystem',
+                    path: '/workspace',
+                    file_path: '/workspace',
+                    cwd: '/workspace',
+                    workspace_root: '/workspace',
+                    threat_count: 3,
+                    highest_severity: 'low',
+                    threat_categories: [],
+                    threat_types: [],
+                    yara_threats: [],
+                    max_threat_severity: 1,
+                    contains_secrets: false,
+                    response_content: '',
+                },
+                entities,
+            });
+            if (decision.effect !== 'Allow') {
+                console.log('Decision:', decision);
+                console.log('Reason:', decision.reason);
+            }
+            expect(decision.effect).toBe('Allow');
+        });
+        it('should deny Overwatch policy when context fails condition', () => {
+            const policy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when { context.threat_count < 5 };
+      `;
+            const engine = new PolicyEngine({ schema: OVERWATCH_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Overwatch::User', 'mcp_client', { user_type: 'external', email: 'user@example.com' }),
+                newEntity('Overwatch::Tool', 'shell', { tool_name: 'shell', risk_level: 'high' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Overwatch::User', 'mcp_client'),
+                action: 'Overwatch::Action::"call_tool"',
+                resource: newEntityUID('Overwatch::Tool', 'shell'),
+                context: { threat_count: 10 }, // Too many threats
+                entities,
+            });
+            expect(decision.effect).toBe('Deny');
+        });
+        it('should evaluate Palisade policy correctly', () => {
+            const policy = `
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"load_model",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.pickle_exec_path_detected == true
+        };
+      `;
+            const engine = new PolicyEngine({ schema: PALISADE_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Palisade::Scanner', 'palisade', { scanner_type: 'ml_security' }),
+                newEntity('Palisade::Artifact', 'model.pkl', { artifact_format: 'pickle', path: '/models/model.pkl', signed: false, signer: 'unsigned' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Palisade::Scanner', 'palisade'),
+                action: 'Palisade::Action::"load_model"',
+                resource: newEntityUID('Palisade::Artifact', 'model.pkl'),
+                context: {
+                    environment: 'production',
+                    pickle_exec_path_detected: true,
+                    severity: 'CRITICAL',
+                },
+                entities,
+            });
+            expect(decision.effect).toBe('Deny');
+        });
+        it('should allow Palisade policy when condition is false', () => {
+            const policy = `
+        permit(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        );
+
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.pickle_exec_path_detected == true
+        };
+      `;
+            const engine = new PolicyEngine({ schema: PALISADE_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Palisade::Scanner', 'palisade', { scanner_type: 'ml_security' }),
+                newEntity('Palisade::Artifact', 'model.safetensors', { artifact_format: 'safetensors', path: '/models/model.safetensors', signed: true, signer: 'trusted-org' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Palisade::Scanner', 'palisade'),
+                action: 'Palisade::Action::"scan_artifact"',
+                resource: newEntityUID('Palisade::Artifact', 'model.safetensors'),
+                context: {
+                    environment: 'production',
+                    pickle_exec_path_detected: false,
+                    severity: 'INFO',
+                    finding_type: 'backdoor_check',
+                    artifact_format: 'safetensors',
+                    path: '/models/model.safetensors',
+                    artifact_signed: true,
+                    provenance_signer: 'trusted',
+                    tokenizer_added_tokens_count: 0,
+                    adapter_base_digest_mismatch: false,
+                    gguf_suspicious_metadata: false,
+                    safetensors_integrity_violation: false,
+                    metadata_malicious_pattern: false,
+                    metadata_cosai_level_numeric: 3,
+                    match_count: 0,
+                },
+                entities,
+            });
+            if (decision.effect !== 'Allow') {
+                console.log('Decision:', decision);
+                console.log('Reason:', decision.reason);
+            }
+            expect(decision.effect).toBe('Allow');
+        });
+    });
+    describe('Example from REFACTORING_SUMMARY.md', () => {
+        it('should work with Guardian plugin example', () => {
+            const engine = new PolicyEngine({ schema: OVERWATCH_SCHEMA });
+            const policy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when {
+          context.threat_count < 10 &&
+          context.highest_severity != "critical"
+        };
+      `;
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Overwatch::User', 'mcp_client', { user_type: 'external', email: 'user@example.com' }),
+                newEntity('Overwatch::Tool', 'shell', { tool_name: 'shell', risk_level: 'high' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Overwatch::User', 'mcp_client'),
+                action: 'Overwatch::Action::"call_tool"',
+                resource: newEntityUID('Overwatch::Tool', 'shell'),
+                context: {
+                    content: 'cat /etc/passwd',
+                    source: 'claudecode',
+                    event: 'PreToolUse',
+                    user_email: 'user@example.com',
+                    tool_name: 'shell',
+                    mcp_server: 'filesystem',
+                    mcp_tool: 'shell',
+                    server_name: 'filesystem',
+                    path: '/etc/passwd',
+                    file_path: '/etc/passwd',
+                    cwd: '/workspace',
+                    workspace_root: '/workspace',
+                    threat_count: 5,
+                    highest_severity: 'medium',
+                    threat_categories: [],
+                    threat_types: [],
+                    yara_threats: [],
+                    max_threat_severity: 2,
+                    contains_secrets: false,
+                    response_content: '',
+                },
+                entities,
+            });
+            expect(decision.effect).toBe('Allow');
+        });
+        it('should work with Palisade service example', () => {
+            const engine = new PolicyEngine({ schema: PALISADE_SCHEMA });
+            const policy = `
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"load_model",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.environment == "production" &&
+          context.pickle_exec_path_detected == true &&
+          context.severity == "CRITICAL"
+        };
+      `;
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Palisade::Scanner', 'palisade', { scanner_type: 'ml_security' }),
+                newEntity('Palisade::Artifact', 'model.pkl', { artifact_format: 'pickle', path: '/models/model.pkl', signed: false, signer: 'unsigned' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Palisade::Scanner', 'palisade'),
+                action: 'Palisade::Action::"load_model"',
+                resource: newEntityUID('Palisade::Artifact', 'model.pkl'),
+                context: {
+                    environment: 'production',
+                    pickle_exec_path_detected: true,
+                    severity: 'CRITICAL',
+                },
+                entities,
+            });
+            expect(decision.effect).toBe('Deny');
+        });
+    });
+});
+//# sourceMappingURL=schemas.test.js.map

package/dist/schemas.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.test.js","sourceRoot":"","sources":["../src/schemas.test.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAC1D,OAAO,EACL,YAAY,EACZ,eAAe,EAGf,YAAY,EACZ,SAAS,GACV,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B,gCAAgC;AAChC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC;AACtE,MAAM,gBAAgB,GAAG,EAAE,CAAC,YAAY,CACtC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,EAAE,oBAAoB,CAAC,EACzD,OAAO,CACR,CAAC;AACF,MAAM,eAAe,GAAG,EAAE,CAAC,YAAY,CACrC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,EAAE,oBAAoB,CAAC,EACxD,OAAO,CACR,CAAC;AAEF,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;IACxC,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,CAAC,gBAAgB,CAAC,CAAC,UAAU,EAAE,CAAC;YACtC,MAAM,CAAC,gBAAgB,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;YAChD,MAAM,CAAC,gBAAgB,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,CAAC,eAAe,CAAC,CAAC,UAAU,EAAE,CAAC;YACrC,MAAM,CAAC,eAAe,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;YAC/C,MAAM,CAAC,eAAe,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QAChD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;QAC3C,IAAI,SAA0B,CAAC;QAE/B,UAAU,CAAC,GAAG,EAAE;YACd,SAAS,GAAG,IAAI,eAAe,CAAC,gBAAgB,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,WAAW,GAAG;;;;;;;;;;OAUnB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;YAC/C,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAClB,OAAO,CAAC,GAAG,CAAC,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;YACnD,CAAC;YACD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,MAAM,aAAa,GAAG;;;;;;OAMrB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACjC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,aAAa,GAAG;;;;;;OAMrB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACjC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yDAAyD,EAAE,GAAG,EAAE;YACjE,MAAM,MAAM,GAAG;;;;;;;;;;;OAWd,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,4BAA4B,EAAE,GAAG,EAAE;QAC1C,IAAI,SAA0B,CAAC;QAE/B,UAAU,CAAC,GAAG,EAAE;YACd,SAAS,GAAG,IAAI,eAAe,CAAC,eAAe,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,WAAW,GAAG;;;;;;;;;;OAUnB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;YAC/C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,aAAa,GAAG;;;;;;OAMrB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iDAAiD,EAAE,GAAG,EAAE;YACzD,MAAM,MAAM,GAAG;;;;;;;;;;OAUd,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mCAAmC,EAAE,GAAG,EAAE;QACjD,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,MAAM,GAAG;;;;;;;OAOd,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAC9D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,iBAAiB,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC;gBAChG,SAAS,CAAC,iBAAiB,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;aAClF,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,YAAY,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,iBAAiB,EAAE,OAAO,CAAC;gBAClD,OAAO,EAAE;oBACP,OAAO,EAAE,QAAQ;oBACjB,MAAM,EAAE,YAAY;oBACpB,KAAK,EAAE,YAAY;oBACnB,UAAU,EAAE,kBAAkB;oBAC9B,SAAS,EAAE,OAAO;oBAClB,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,OAAO;oBACjB,WAAW,EAAE,YAAY;oBACzB,IAAI,EAAE,YAAY;oBAClB,SAAS,EAAE,YAAY;oBACvB,GAAG,EAAE,YAAY;oBACjB,cAAc,EAAE,YAAY;oBAC5B,YAAY,EAAE,CAAC;oBACf,gBAAgB,EAAE,KAAK;oBACvB,iBAAiB,EAAE,EAAE;oBACrB,YAAY,EAAE,EAAE;oBAChB,YAAY,EAAE,EAAE;oBAChB,mBAAmB,EAAE,CAAC;oBACtB,gBAAgB,EAAE,KAAK;oBACvB,gBAAgB,EAAE,EAAE;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,IAAI,QAAQ,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;gBACnC,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2DAA2D,EAAE,GAAG,EAAE;YACnE,MAAM,MAAM,GAAG;;;;;;;OAOd,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAC9D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,iBAAiB,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC;gBAChG,SAAS,CAAC,iBAAiB,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;aAClF,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,YAAY,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,iBAAiB,EAAE,OAAO,CAAC;gBAClD,OAAO,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,EAAE,mBAAmB;gBAClD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,MAAM,GAAG;;;;;;;;;OASd,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAC7D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,mBAAmB,EAAE,UAAU,EAAE,EAAE,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC3E,SAAS,CAAC,oBAAoB,EAAE,WAAW,EAAE,EAAE,eAAe,EAAE,QAAQ,EAAE,IAAI,EAAE,mBAAmB,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aAC1I,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,mBAAmB,EAAE,UAAU,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,oBAAoB,EAAE,WAAW,CAAC;gBACzD,OAAO,EAAE;oBACP,WAAW,EAAE,YAAY;oBACzB,yBAAyB,EAAE,IAAI;oBAC/B,QAAQ,EAAE,UAAU;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,MAAM,MAAM,GAAG;;;;;;;;;;;;;;;OAed,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAC7D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,mBAAmB,EAAE,UAAU,EAAE,EAAE,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC3E,SAAS,CAAC,oBAAoB,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,aAAa,EAAE,IAAI,EAAE,2BAA2B,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,aAAa,EAAE,CAAC;aACjK,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,mBAAmB,EAAE,UAAU,CAAC;gBACxD,MAAM,EAAE,mCAAmC;gBAC3C,QAAQ,EAAE,YAAY,CAAC,oBAAoB,EAAE,mBAAmB,CAAC;gBACjE,OAAO,EAAE;oBACP,WAAW,EAAE,YAAY;oBACzB,yBAAyB,EAAE,KAAK;oBAChC,QAAQ,EAAE,MAAM;oBAChB,YAAY,EAAE,gBAAgB;oBAC9B,eAAe,EAAE,aAAa;oBAC9B,IAAI,EAAE,2BAA2B;oBACjC,eAAe,EAAE,IAAI;oBACrB,iBAAiB,EAAE,SAAS;oBAC5B,4BAA4B,EAAE,CAAC;oBAC/B,4BAA4B,EAAE,KAAK;oBACnC,wBAAwB,EAAE,KAAK;oBAC/B,+BAA+B,EAAE,KAAK;oBACtC,0BAA0B,EAAE,KAAK;oBACjC,4BAA4B,EAAE,CAAC;oBAC/B,WAAW,EAAE,CAAC;iBACf;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,IAAI,QAAQ,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;gBACnC,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,qCAAqC,EAAE,GAAG,EAAE;QACnD,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAE9D,MAAM,MAAM,GAAG;;;;;;;;;;OAUd,CAAC;YAEF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,iBAAiB,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC;gBAChG,SAAS,CAAC,iBAAiB,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;aAClF,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,YAAY,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,iBAAiB,EAAE,OAAO,CAAC;gBAClD,OAAO,EAAE;oBACP,OAAO,EAAE,iBAAiB;oBAC1B,MAAM,EAAE,YAAY;oBACpB,KAAK,EAAE,YAAY;oBACnB,UAAU,EAAE,kBAAkB;oBAC9B,SAAS,EAAE,OAAO;oBAClB,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,OAAO;oBACjB,WAAW,EAAE,YAAY;oBACzB,IAAI,EAAE,aAAa;oBACnB,SAAS,EAAE,aAAa;oBACxB,GAAG,EAAE,YAAY;oBACjB,cAAc,EAAE,YAAY;oBAC5B,YAAY,EAAE,CAAC;oBACf,gBAAgB,EAAE,QAAQ;oBAC1B,iBAAiB,EAAE,EAAE;oBACrB,YAAY,EAAE,EAAE;oBAChB,YAAY,EAAE,EAAE;oBAChB,mBAAmB,EAAE,CAAC;oBACtB,gBAAgB,EAAE,KAAK;oBACvB,gBAAgB,EAAE,EAAE;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAE7D,MAAM,MAAM,GAAG;;;;;;;;;;;OAWd,CAAC;YAEF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,mBAAmB,EAAE,UAAU,EAAE,EAAE,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC3E,SAAS,CAAC,oBAAoB,EAAE,WAAW,EAAE,EAAE,eAAe,EAAE,QAAQ,EAAE,IAAI,EAAE,mBAAmB,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aAC1I,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,mBAAmB,EAAE,UAAU,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,oBAAoB,EAAE,WAAW,CAAC;gBACzD,OAAO,EAAE;oBACP,WAAW,EAAE,YAAY;oBACzB,yBAAyB,EAAE,IAAI;oBAC/B,QAAQ,EAAE,UAAU;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/types.d.ts

@@ -3,4 +3,5 @@ export * from './actions.gen.js';
 export * from './context.gen.js';
 export * from './schema.gen.js';
 export * from './builder.js';
+export * from './errors.js';
 //# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAQA,cAAc,mBAAmB,CAAC;AAClC,cAAc,kBAAkB,CAAC;AACjC,cAAc,kBAAkB,CAAC;AACjC,cAAc,iBAAiB,CAAC;AAGhC,cAAc,cAAc,CAAC"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAQA,cAAc,mBAAmB,CAAC;AAClC,cAAc,kBAAkB,CAAC;AACjC,cAAc,kBAAkB,CAAC;AACjC,cAAc,iBAAiB,CAAC;AAGhC,cAAc,cAAc,CAAC;AAG7B,cAAc,aAAa,CAAC"}

package/dist/types.js

@@ -11,4 +11,6 @@ export * from './context.gen.js';
 export * from './schema.gen.js';
 // PolicyBuilder - works in browser (no WASM dependency)
 export * from './builder.js';
+// Error types - works in browser (no WASM dependency)
+export * from './errors.js';
 //# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,2DAA2D;AAC3D,uCAAuC;AACvC,EAAE;AACF,6CAA6C;AAC7C,gDAAgD;AAChD,yEAAyE;AAEzE,gDAAgD;AAChD,cAAc,mBAAmB,CAAC;AAClC,cAAc,kBAAkB,CAAC;AACjC,cAAc,kBAAkB,CAAC;AACjC,cAAc,iBAAiB,CAAC;AAEhC,wDAAwD;AACxD,cAAc,cAAc,CAAC"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,2DAA2D;AAC3D,uCAAuC;AACvC,EAAE;AACF,6CAA6C;AAC7C,gDAAgD;AAChD,yEAAyE;AAEzE,gDAAgD;AAChD,cAAc,mBAAmB,CAAC;AAClC,cAAc,kBAAkB,CAAC;AACjC,cAAc,kBAAkB,CAAC;AACjC,cAAc,iBAAiB,CAAC;AAEhC,wDAAwD;AACxD,cAAc,cAAc,CAAC;AAE7B,sDAAsD;AACtD,cAAc,aAAa,CAAC"}

package/package.json

@@ -1,7 +1,8 @@
 {
   "name": "@highflame/policy",
-  "version": "1.2.0",
+  "version": "2.0.0",
   "description": "Highflame Cedar policy types and engine wrapper",
+  "readme": "README.md",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "type": "module",
@@ -26,10 +27,10 @@
       "import": "./dist/actions.gen.js",
       "types": "./dist/actions.gen.d.ts"
     },
-    "./context": {
-      "import": "./dist/context.gen.js",
-      "types": "./dist/context.gen.d.ts"
-    },
+    "./schemas/overwatch": "./_schemas/overwatch/schema.cedarschema",
+    "./schemas/palisade": "./_schemas/palisade/schema.cedarschema",
+    "./context/overwatch": "./_schemas/overwatch/context.json",
+    "./context/palisade": "./_schemas/palisade/context.json",
     "./engine": {
       "import": "./dist/engine.js",
       "types": "./dist/engine.d.ts"
@@ -37,6 +38,10 @@
     "./builder": {
       "import": "./dist/builder.js",
       "types": "./dist/builder.d.ts"
+    },
+    "./parser": {
+      "import": "./dist/parser.js",
+      "types": "./dist/parser.d.ts"
     }
   },
   "scripts": {
@@ -49,12 +54,14 @@
     "@cedar-policy/cedar-wasm": "^4.0.0"
   },
   "devDependencies": {
+    "@types/node": "^25.2.0",
     "typescript": "^5.3.0",
     "vitest": "^2.0.0"
   },
   "files": [
     "dist",
-    "src"
+    "src",
+    "_schemas"
   ],
   "keywords": [
     "cedar",

package/src/builder.ts

@@ -24,7 +24,6 @@
 
 import { EntityType, EntityUID } from './entities.gen.js';
 import { ActionType } from './actions.gen.js';
-import { ContextKey } from './context.gen.js';
 
 /**
  * Policy effect - permit or forbid
@@ -397,7 +396,7 @@ export class PolicyBuilder {
     /**
      * Add a structured condition
      */
-    when(field: ContextKey | string, operator: ConditionOperator, value: string | number | boolean | string[]): PolicyBuilder {
+    when(field: string, operator: ConditionOperator, value: string | number | boolean | string[]): PolicyBuilder {
         this.data.conditions.push({ field, operator, value });
         return this;
     }