npm - @highflame/policy - Versions diffs - 1.2.1 → 2.0.1 - Mend

@highflame/policy 1.2.1 → 2.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (73) hide show

package/README.md +219 -0
package/_schemas/overwatch/context.json +433 -0
package/_schemas/overwatch/schema.cedarschema +179 -0
package/_schemas/palisade/context.json +325 -0
package/_schemas/palisade/schema.cedarschema +168 -0
package/dist/builder.d.ts +1 -2
package/dist/builder.d.ts.map +1 -1
package/dist/builder.js +16 -3
package/dist/builder.js.map +1 -1
package/dist/context.gen.d.ts +1 -94
package/dist/context.gen.d.ts.map +1 -1
package/dist/context.gen.js +1 -97
package/dist/context.gen.js.map +1 -1
package/dist/engine.d.ts +18 -18
package/dist/engine.d.ts.map +1 -1
package/dist/engine.js +44 -28
package/dist/engine.js.map +1 -1
package/dist/engine.test.js.map +1 -1
package/dist/entities.gen.d.ts +1 -0
package/dist/entities.gen.d.ts.map +1 -1
package/dist/entities.gen.js +1 -0
package/dist/entities.gen.js.map +1 -1
package/dist/index.d.ts +4 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +5 -0
package/dist/index.js.map +1 -1
package/dist/overwatch-context.gen.d.ts +29 -0
package/dist/overwatch-context.gen.d.ts.map +1 -0
package/dist/overwatch-context.gen.js +30 -0
package/dist/overwatch-context.gen.js.map +1 -0
package/dist/palisade-context.gen.d.ts +25 -0
package/dist/palisade-context.gen.d.ts.map +1 -0
package/dist/palisade-context.gen.js +26 -0
package/dist/palisade-context.gen.js.map +1 -0
package/dist/schema.gen.d.ts +1 -1
package/dist/schema.gen.d.ts.map +1 -1
package/dist/schema.gen.js +60 -541
package/dist/schema.gen.js.map +1 -1
package/dist/schemas.d.ts +64 -0
package/dist/schemas.d.ts.map +1 -0
package/dist/schemas.js +70 -0
package/dist/schemas.js.map +1 -0
package/dist/schemas.test.d.ts +8 -0
package/dist/schemas.test.d.ts.map +1 -0
package/dist/schemas.test.js +377 -0
package/dist/schemas.test.js.map +1 -0
package/dist/service-schemas.gen.d.ts +48 -0
package/dist/service-schemas.gen.d.ts.map +1 -0
package/dist/service-schemas.gen.js +581 -0
package/dist/service-schemas.gen.js.map +1 -0
package/dist/studio-ui.test.d.ts +8 -0
package/dist/studio-ui.test.d.ts.map +1 -0
package/dist/studio-ui.test.js +165 -0
package/dist/studio-ui.test.js.map +1 -0
package/dist/types.d.ts +4 -0
package/dist/types.d.ts.map +1 -1
package/dist/types.js +5 -0
package/dist/types.js.map +1 -1
package/package.json +9 -6
package/src/builder.ts +18 -5
package/src/context.gen.ts +0 -97
package/src/engine.test.ts +0 -1
package/src/engine.ts +62 -33
package/src/entities.gen.ts +1 -0
package/src/index.ts +17 -0
package/src/overwatch-context.gen.ts +32 -0
package/src/palisade-context.gen.ts +28 -0
package/src/schema.gen.ts +60 -541
package/src/schemas.test.ts +445 -0
package/src/schemas.ts +91 -0
package/src/service-schemas.gen.ts +608 -0
package/src/studio-ui.test.ts +207 -0
package/src/types.ts +17 -0

package/dist/schemas.d.ts ADDED Viewed

@@ -0,0 +1,64 @@
+/**
+ * Service-specific Cedar schemas and context metadata
+ *
+ * This module provides access to service-specific Cedar schemas
+ * and their associated context metadata for UI builders.
+ *
+ * Schemas are bundled with the package and loaded at runtime. The schema
+ * files are copied from schemas/ to packages/typescript/_schemas/ during
+ * codegen (see Makefile). This ensures the package is self-contained and
+ * works correctly when installed from npm.
+ *
+ * Available Schemas:
+ * - Overwatch (Guardian): IDE security policies for LLM agents and tool calls
+ * - Palisade: ML supply chain security policies for artifact scanning
+ *
+ * @example
+ * ```typescript
+ * import { OVERWATCH_SCHEMA, OVERWATCH_CONTEXT } from '@highflame/policy/schemas';
+ * import { PolicyEngine } from '@highflame/policy';
+ *
+ * const engine = new PolicyEngine();
+ * engine.loadSchema(OVERWATCH_SCHEMA);
+ *
+ * // Parse context metadata for UI dropdowns
+ * const contextMeta = JSON.parse(OVERWATCH_CONTEXT);
+ * ```
+ */
+export { OverwatchContextKey } from './overwatch-context.gen.js';
+export { PalisadeContextKey } from './palisade-context.gen.js';
+export type { OverwatchContextKey as OverwatchContextKeyType } from './overwatch-context.gen.js';
+export type { PalisadeContextKey as PalisadeContextKeyType } from './palisade-context.gen.js';
+/**
+ * Overwatch (Guardian) Cedar schema
+ *
+ * Full Cedar schema for IDE security, including:
+ * - Actions: process_prompt, call_tool, connect_server, read_file, write_file
+ * - Entities: User, Agent, LlmPrompt, Tool, Server, FilePath
+ * - 20+ context attributes for threat detection and workspace security
+ */
+export declare const OVERWATCH_SCHEMA: string;
+/**
+ * Overwatch context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Overwatch action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export declare const OVERWATCH_CONTEXT: string;
+/**
+ * Palisade Cedar schema
+ *
+ * Full Cedar schema for ML supply chain security, including:
+ * - Actions: scan_artifact, validate_integrity, validate_provenance, quarantine_artifact, load_model, deploy_model
+ * - Entities: Scanner, Artifact, Package
+ * - 15+ context attributes for ML security findings
+ */
+export declare const PALISADE_SCHEMA: string;
+/**
+ * Palisade context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Palisade action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export declare const PALISADE_CONTEXT: string;
+//# sourceMappingURL=schemas.d.ts.map

package/dist/schemas.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AAaH,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAC/D,YAAY,EAAE,mBAAmB,IAAI,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AACjG,YAAY,EAAE,kBAAkB,IAAI,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AAE9F;;;;;;;GAOG;AACH,eAAO,MAAM,gBAAgB,QAG5B,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,iBAAiB,QAG7B,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,eAAe,QAG3B,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,QAG5B,CAAC"}

package/dist/schemas.js ADDED Viewed

@@ -0,0 +1,70 @@
+/**
+ * Service-specific Cedar schemas and context metadata
+ *
+ * This module provides access to service-specific Cedar schemas
+ * and their associated context metadata for UI builders.
+ *
+ * Schemas are bundled with the package and loaded at runtime. The schema
+ * files are copied from schemas/ to packages/typescript/_schemas/ during
+ * codegen (see Makefile). This ensures the package is self-contained and
+ * works correctly when installed from npm.
+ *
+ * Available Schemas:
+ * - Overwatch (Guardian): IDE security policies for LLM agents and tool calls
+ * - Palisade: ML supply chain security policies for artifact scanning
+ *
+ * @example
+ * ```typescript
+ * import { OVERWATCH_SCHEMA, OVERWATCH_CONTEXT } from '@highflame/policy/schemas';
+ * import { PolicyEngine } from '@highflame/policy';
+ *
+ * const engine = new PolicyEngine();
+ * engine.loadSchema(OVERWATCH_SCHEMA);
+ *
+ * // Parse context metadata for UI dropdowns
+ * const contextMeta = JSON.parse(OVERWATCH_CONTEXT);
+ * ```
+ */
+import * as fs from 'fs';
+import * as path from 'path';
+import { fileURLToPath } from 'url';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+// Path to schemas directory (bundled with package)
+const SCHEMAS_DIR = path.join(__dirname, '..', '_schemas');
+// Re-export service-specific context keys
+export { OverwatchContextKey } from './overwatch-context.gen.js';
+export { PalisadeContextKey } from './palisade-context.gen.js';
+/**
+ * Overwatch (Guardian) Cedar schema
+ *
+ * Full Cedar schema for IDE security, including:
+ * - Actions: process_prompt, call_tool, connect_server, read_file, write_file
+ * - Entities: User, Agent, LlmPrompt, Tool, Server, FilePath
+ * - 20+ context attributes for threat detection and workspace security
+ */
+export const OVERWATCH_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'overwatch', 'schema.cedarschema'), 'utf-8');
+/**
+ * Overwatch context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Overwatch action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export const OVERWATCH_CONTEXT = fs.readFileSync(path.join(SCHEMAS_DIR, 'overwatch', 'context.json'), 'utf-8');
+/**
+ * Palisade Cedar schema
+ *
+ * Full Cedar schema for ML supply chain security, including:
+ * - Actions: scan_artifact, validate_integrity, validate_provenance, quarantine_artifact, load_model, deploy_model
+ * - Entities: Scanner, Artifact, Package
+ * - 15+ context attributes for ML security findings
+ */
+export const PALISADE_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'palisade', 'schema.cedarschema'), 'utf-8');
+/**
+ * Palisade context metadata (JSON)
+ *
+ * Metadata describing available context attributes for each Palisade action.
+ * Used by PolicyBuilder UI to generate context dropdowns with type information.
+ */
+export const PALISADE_CONTEXT = fs.readFileSync(path.join(SCHEMAS_DIR, 'palisade', 'context.json'), 'utf-8');
+//# sourceMappingURL=schemas.js.map

package/dist/schemas.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"schemas.js","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;GA0BG;AAEH,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAC7B,OAAO,EAAE,aAAa,EAAE,MAAM,KAAK,CAAC;AAEpC,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAClD,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;AAE3C,mDAAmD;AACnD,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,UAAU,CAAC,CAAC;AAE3D,0CAA0C;AAC1C,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAI/D;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,EAAE,CAAC,YAAY,CAC7C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,EAAE,oBAAoB,CAAC,EACzD,OAAO,CACR,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,EAAE,CAAC,YAAY,CAC9C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,EAAE,cAAc,CAAC,EACnD,OAAO,CACR,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG,EAAE,CAAC,YAAY,CAC5C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,EAAE,oBAAoB,CAAC,EACxD,OAAO,CACR,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,EAAE,CAAC,YAAY,CAC7C,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,EAAE,cAAc,CAAC,EAClD,OAAO,CACR,CAAC"}

package/dist/schemas.test.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+/**
+ * Schema validation tests
+ *
+ * Tests service-specific schema loading and policy validation
+ * using Overwatch (Guardian) and Palisade schemas.
+ */
+export {};
+//# sourceMappingURL=schemas.test.d.ts.map

package/dist/schemas.test.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"schemas.test.d.ts","sourceRoot":"","sources":["../src/schemas.test.ts"],"names":[],"mappings":"AAAA;;;;;GAKG"}

package/dist/schemas.test.js ADDED Viewed

@@ -0,0 +1,377 @@
+/**
+ * Schema validation tests
+ *
+ * Tests service-specific schema loading and policy validation
+ * using Overwatch (Guardian) and Palisade schemas.
+ */
+import { describe, it, expect, beforeEach } from 'vitest';
+import { PolicyEngine, PolicyValidator, newEntityUID, newEntity, } from './index.js';
+import * as fs from 'fs';
+import * as path from 'path';
+// Load service-specific schemas
+const SCHEMAS_DIR = path.join(__dirname, '..', '..', '..', 'schemas');
+const OVERWATCH_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'overwatch', 'schema.cedarschema'), 'utf-8');
+const PALISADE_SCHEMA = fs.readFileSync(path.join(SCHEMAS_DIR, 'palisade', 'schema.cedarschema'), 'utf-8');
+describe('Service-Specific Schemas', () => {
+    describe('Schema Loading', () => {
+        it('should load Overwatch schema successfully', () => {
+            expect(OVERWATCH_SCHEMA).toBeTruthy();
+            expect(OVERWATCH_SCHEMA).toContain('namespace');
+            expect(OVERWATCH_SCHEMA).toContain('Overwatch');
+        });
+        it('should load Palisade schema successfully', () => {
+            expect(PALISADE_SCHEMA).toBeTruthy();
+            expect(PALISADE_SCHEMA).toContain('namespace');
+            expect(PALISADE_SCHEMA).toContain('Palisade');
+        });
+    });
+    describe('Overwatch Schema Validation', () => {
+        let validator;
+        beforeEach(() => {
+            validator = new PolicyValidator(OVERWATCH_SCHEMA);
+        });
+        it('should validate a correct Overwatch policy', () => {
+            const validPolicy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when {
+          context.threat_count < 5 &&
+          context.highest_severity != "critical"
+        };
+      `;
+            const result = validator.validate(validPolicy);
+            if (!result.valid) {
+                console.log('Validation errors:', result.errors);
+            }
+            expect(result.valid).toBe(true);
+            expect(result.errors).toHaveLength(0);
+        });
+        it('should reject policy with invalid entity type', () => {
+            const invalidPolicy = `
+        permit(
+          principal is Overwatch::NonExistentEntity,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        );
+      `;
+            const result = validator.validate(invalidPolicy);
+            expect(result.valid).toBe(false);
+            expect(result.errors.length).toBeGreaterThan(0);
+        });
+        it('should reject policy with invalid action', () => {
+            const invalidPolicy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"invalid_action",
+          resource is Overwatch::Tool
+        );
+      `;
+            const result = validator.validate(invalidPolicy);
+            expect(result.valid).toBe(false);
+            expect(result.errors.length).toBeGreaterThan(0);
+        });
+        it('should validate policy with multiple context attributes', () => {
+            const policy = `
+        permit(
+          principal is Overwatch::Agent,
+          action == Overwatch::Action::"process_prompt",
+          resource is Overwatch::LlmPrompt
+        )
+        when {
+          context.threat_count == 0 &&
+          context.highest_severity == "low" &&
+          context.contains_secrets == false
+        };
+      `;
+            const result = validator.validate(policy);
+            expect(result.valid).toBe(true);
+        });
+    });
+    describe('Palisade Schema Validation', () => {
+        let validator;
+        beforeEach(() => {
+            validator = new PolicyValidator(PALISADE_SCHEMA);
+        });
+        it('should validate a correct Palisade policy', () => {
+            const validPolicy = `
+        permit(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.environment == "production" &&
+          context.artifact_format == "safetensors"
+        };
+      `;
+            const result = validator.validate(validPolicy);
+            expect(result.valid).toBe(true);
+            expect(result.errors).toHaveLength(0);
+        });
+        it('should reject policy with wrong namespace', () => {
+            const invalidPolicy = `
+        permit(
+          principal is Overwatch::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        );
+      `;
+            const result = validator.validate(invalidPolicy);
+            expect(result.valid).toBe(false);
+        });
+        it('should validate policy with ML-specific context', () => {
+            const policy = `
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.pickle_exec_path_detected == true ||
+          context.severity == "CRITICAL"
+        };
+      `;
+            const result = validator.validate(policy);
+            expect(result.valid).toBe(true);
+        });
+    });
+    describe('PolicyEngine with Service Schemas', () => {
+        it('should evaluate Overwatch policy correctly', () => {
+            const policy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when { context.threat_count < 5 };
+      `;
+            const engine = new PolicyEngine({ schema: OVERWATCH_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Overwatch::User', 'mcp_client', { user_type: 'external', email: 'user@example.com' }),
+                newEntity('Overwatch::Tool', 'shell', { tool_name: 'shell', risk_level: 'high' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Overwatch::User', 'mcp_client'),
+                action: 'Overwatch::Action::"call_tool"',
+                resource: newEntityUID('Overwatch::Tool', 'shell'),
+                context: {
+                    content: 'ls -la',
+                    source: 'claudecode',
+                    event: 'PreToolUse',
+                    user_email: 'user@example.com',
+                    tool_name: 'shell',
+                    mcp_server: 'filesystem',
+                    mcp_tool: 'shell',
+                    path: '/workspace',
+                    cwd: '/workspace',
+                    workspace_root: '/workspace',
+                    threat_count: 3,
+                    highest_severity: 'low',
+                    threat_categories: [],
+                    threat_types: [],
+                    yara_threats: [],
+                    max_threat_severity: 1,
+                    contains_secrets: false,
+                    response_content: '',
+                },
+                entities,
+            });
+            if (decision.effect !== 'Allow') {
+                console.log('Decision:', decision);
+                console.log('Reason:', decision.reason);
+            }
+            expect(decision.effect).toBe('Allow');
+        });
+        it('should deny Overwatch policy when context fails condition', () => {
+            const policy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when { context.threat_count < 5 };
+      `;
+            const engine = new PolicyEngine({ schema: OVERWATCH_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Overwatch::User', 'mcp_client', { user_type: 'external', email: 'user@example.com' }),
+                newEntity('Overwatch::Tool', 'shell', { tool_name: 'shell', risk_level: 'high' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Overwatch::User', 'mcp_client'),
+                action: 'Overwatch::Action::"call_tool"',
+                resource: newEntityUID('Overwatch::Tool', 'shell'),
+                context: { threat_count: 10 }, // Too many threats
+                entities,
+            });
+            expect(decision.effect).toBe('Deny');
+        });
+        it('should evaluate Palisade policy correctly', () => {
+            const policy = `
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"load_model",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.pickle_exec_path_detected == true
+        };
+      `;
+            const engine = new PolicyEngine({ schema: PALISADE_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Palisade::Scanner', 'palisade', { scanner_type: 'ml_security' }),
+                newEntity('Palisade::Artifact', 'model.pkl', { artifact_format: 'pickle', path: '/models/model.pkl', signed: false, signer: 'unsigned' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Palisade::Scanner', 'palisade'),
+                action: 'Palisade::Action::"load_model"',
+                resource: newEntityUID('Palisade::Artifact', 'model.pkl'),
+                context: {
+                    environment: 'production',
+                    pickle_exec_path_detected: true,
+                    severity: 'CRITICAL',
+                },
+                entities,
+            });
+            expect(decision.effect).toBe('Deny');
+        });
+        it('should allow Palisade policy when condition is false', () => {
+            const policy = `
+        permit(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        );
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"scan_artifact",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.pickle_exec_path_detected == true
+        };
+      `;
+            const engine = new PolicyEngine({ schema: PALISADE_SCHEMA });
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Palisade::Scanner', 'palisade', { scanner_type: 'ml_security' }),
+                newEntity('Palisade::Artifact', 'model.safetensors', { artifact_format: 'safetensors', path: '/models/model.safetensors', signed: true, signer: 'trusted-org' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Palisade::Scanner', 'palisade'),
+                action: 'Palisade::Action::"scan_artifact"',
+                resource: newEntityUID('Palisade::Artifact', 'model.safetensors'),
+                context: {
+                    environment: 'production',
+                    pickle_exec_path_detected: false,
+                    severity: 'INFO',
+                    finding_type: 'backdoor_check',
+                    artifact_format: 'safetensors',
+                    path: '/models/model.safetensors',
+                    artifact_signed: true,
+                    provenance_signer: 'trusted',
+                    tokenizer_added_tokens_count: 0,
+                    adapter_base_digest_mismatch: false,
+                    gguf_suspicious_metadata: false,
+                    safetensors_integrity_violation: false,
+                    metadata_malicious_pattern: false,
+                    metadata_cosai_level_numeric: 3,
+                    match_count: 0,
+                },
+                entities,
+            });
+            if (decision.effect !== 'Allow') {
+                console.log('Decision:', decision);
+                console.log('Reason:', decision.reason);
+            }
+            expect(decision.effect).toBe('Allow');
+        });
+    });
+    describe('Example from REFACTORING_SUMMARY.md', () => {
+        it('should work with Guardian plugin example', () => {
+            const engine = new PolicyEngine({ schema: OVERWATCH_SCHEMA });
+            const policy = `
+        permit(
+          principal is Overwatch::User,
+          action == Overwatch::Action::"call_tool",
+          resource is Overwatch::Tool
+        )
+        when {
+          context.threat_count < 10 &&
+          context.highest_severity != "critical"
+        };
+      `;
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Overwatch::User', 'mcp_client', { user_type: 'external', email: 'user@example.com' }),
+                newEntity('Overwatch::Tool', 'shell', { tool_name: 'shell', risk_level: 'high' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Overwatch::User', 'mcp_client'),
+                action: 'Overwatch::Action::"call_tool"',
+                resource: newEntityUID('Overwatch::Tool', 'shell'),
+                context: {
+                    content: 'cat /etc/passwd',
+                    source: 'claudecode',
+                    event: 'PreToolUse',
+                    user_email: 'user@example.com',
+                    tool_name: 'shell',
+                    mcp_server: 'filesystem',
+                    mcp_tool: 'shell',
+                    path: '/etc/passwd',
+                    cwd: '/workspace',
+                    workspace_root: '/workspace',
+                    threat_count: 5,
+                    highest_severity: 'medium',
+                    threat_categories: [],
+                    threat_types: [],
+                    yara_threats: [],
+                    max_threat_severity: 2,
+                    contains_secrets: false,
+                    response_content: '',
+                },
+                entities,
+            });
+            expect(decision.effect).toBe('Allow');
+        });
+        it('should work with Palisade service example', () => {
+            const engine = new PolicyEngine({ schema: PALISADE_SCHEMA });
+            const policy = `
+        forbid(
+          principal is Palisade::Scanner,
+          action == Palisade::Action::"load_model",
+          resource is Palisade::Artifact
+        )
+        when {
+          context.environment == "production" &&
+          context.pickle_exec_path_detected == true &&
+          context.severity == "CRITICAL"
+        };
+      `;
+            engine.loadPolicies(policy);
+            const entities = [
+                newEntity('Palisade::Scanner', 'palisade', { scanner_type: 'ml_security' }),
+                newEntity('Palisade::Artifact', 'model.pkl', { artifact_format: 'pickle', path: '/models/model.pkl', signed: false, signer: 'unsigned' }),
+            ];
+            const decision = engine.evaluate({
+                principal: newEntityUID('Palisade::Scanner', 'palisade'),
+                action: 'Palisade::Action::"load_model"',
+                resource: newEntityUID('Palisade::Artifact', 'model.pkl'),
+                context: {
+                    environment: 'production',
+                    pickle_exec_path_detected: true,
+                    severity: 'CRITICAL',
+                },
+                entities,
+            });
+            expect(decision.effect).toBe('Deny');
+        });
+    });
+});
+//# sourceMappingURL=schemas.test.js.map

package/dist/schemas.test.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"schemas.test.js","sourceRoot":"","sources":["../src/schemas.test.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAC1D,OAAO,EACL,YAAY,EACZ,eAAe,EAGf,YAAY,EACZ,SAAS,GACV,MAAM,YAAY,CAAC;AACpB,OAAO,KAAK,EAAE,MAAM,IAAI,CAAC;AACzB,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAE7B,gCAAgC;AAChC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC;AACtE,MAAM,gBAAgB,GAAG,EAAE,CAAC,YAAY,CACtC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,WAAW,EAAE,oBAAoB,CAAC,EACzD,OAAO,CACR,CAAC;AACF,MAAM,eAAe,GAAG,EAAE,CAAC,YAAY,CACrC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,UAAU,EAAE,oBAAoB,CAAC,EACxD,OAAO,CACR,CAAC;AAEF,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;IACxC,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,CAAC,gBAAgB,CAAC,CAAC,UAAU,EAAE,CAAC;YACtC,MAAM,CAAC,gBAAgB,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;YAChD,MAAM,CAAC,gBAAgB,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,CAAC,eAAe,CAAC,CAAC,UAAU,EAAE,CAAC;YACrC,MAAM,CAAC,eAAe,CAAC,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;YAC/C,MAAM,CAAC,eAAe,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QAChD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,6BAA6B,EAAE,GAAG,EAAE;QAC3C,IAAI,SAA0B,CAAC;QAE/B,UAAU,CAAC,GAAG,EAAE;YACd,SAAS,GAAG,IAAI,eAAe,CAAC,gBAAgB,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,WAAW,GAAG;;;;;;;;;;OAUnB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;YAC/C,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAClB,OAAO,CAAC,GAAG,CAAC,oBAAoB,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;YACnD,CAAC;YACD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACvD,MAAM,aAAa,GAAG;;;;;;OAMrB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACjC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,aAAa,GAAG;;;;;;OAMrB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACjC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yDAAyD,EAAE,GAAG,EAAE;YACjE,MAAM,MAAM,GAAG;;;;;;;;;;;OAWd,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,4BAA4B,EAAE,GAAG,EAAE;QAC1C,IAAI,SAA0B,CAAC;QAE/B,UAAU,CAAC,GAAG,EAAE;YACd,SAAS,GAAG,IAAI,eAAe,CAAC,eAAe,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,WAAW,GAAG;;;;;;;;;;OAUnB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;YAC/C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,aAAa,GAAG;;;;;;OAMrB,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACnC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iDAAiD,EAAE,GAAG,EAAE;YACzD,MAAM,MAAM,GAAG;;;;;;;;;;OAUd,CAAC;YAEF,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mCAAmC,EAAE,GAAG,EAAE;QACjD,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,MAAM,GAAG;;;;;;;OAOd,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAC9D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,iBAAiB,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC;gBAChG,SAAS,CAAC,iBAAiB,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;aAClF,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,YAAY,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,iBAAiB,EAAE,OAAO,CAAC;gBAClD,OAAO,EAAE;oBACP,OAAO,EAAE,QAAQ;oBACjB,MAAM,EAAE,YAAY;oBACpB,KAAK,EAAE,YAAY;oBACnB,UAAU,EAAE,kBAAkB;oBAC9B,SAAS,EAAE,OAAO;oBAClB,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,OAAO;oBACjB,IAAI,EAAE,YAAY;oBAClB,GAAG,EAAE,YAAY;oBACjB,cAAc,EAAE,YAAY;oBAC5B,YAAY,EAAE,CAAC;oBACf,gBAAgB,EAAE,KAAK;oBACvB,iBAAiB,EAAE,EAAE;oBACrB,YAAY,EAAE,EAAE;oBAChB,YAAY,EAAE,EAAE;oBAChB,mBAAmB,EAAE,CAAC;oBACtB,gBAAgB,EAAE,KAAK;oBACvB,gBAAgB,EAAE,EAAE;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,IAAI,QAAQ,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;gBACnC,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2DAA2D,EAAE,GAAG,EAAE;YACnE,MAAM,MAAM,GAAG;;;;;;;OAOd,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAC9D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,iBAAiB,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC;gBAChG,SAAS,CAAC,iBAAiB,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;aAClF,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,YAAY,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,iBAAiB,EAAE,OAAO,CAAC;gBAClD,OAAO,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,EAAE,mBAAmB;gBAClD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,MAAM,GAAG;;;;;;;;;OASd,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAC7D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,mBAAmB,EAAE,UAAU,EAAE,EAAE,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC3E,SAAS,CAAC,oBAAoB,EAAE,WAAW,EAAE,EAAE,eAAe,EAAE,QAAQ,EAAE,IAAI,EAAE,mBAAmB,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aAC1I,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,mBAAmB,EAAE,UAAU,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,oBAAoB,EAAE,WAAW,CAAC;gBACzD,OAAO,EAAE;oBACP,WAAW,EAAE,YAAY;oBACzB,yBAAyB,EAAE,IAAI;oBAC/B,QAAQ,EAAE,UAAU;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;YAC9D,MAAM,MAAM,GAAG;;;;;;;;;;;;;;;OAed,CAAC;YAEF,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAC7D,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,mBAAmB,EAAE,UAAU,EAAE,EAAE,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC3E,SAAS,CAAC,oBAAoB,EAAE,mBAAmB,EAAE,EAAE,eAAe,EAAE,aAAa,EAAE,IAAI,EAAE,2BAA2B,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,aAAa,EAAE,CAAC;aACjK,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,mBAAmB,EAAE,UAAU,CAAC;gBACxD,MAAM,EAAE,mCAAmC;gBAC3C,QAAQ,EAAE,YAAY,CAAC,oBAAoB,EAAE,mBAAmB,CAAC;gBACjE,OAAO,EAAE;oBACP,WAAW,EAAE,YAAY;oBACzB,yBAAyB,EAAE,KAAK;oBAChC,QAAQ,EAAE,MAAM;oBAChB,YAAY,EAAE,gBAAgB;oBAC9B,eAAe,EAAE,aAAa;oBAC9B,IAAI,EAAE,2BAA2B;oBACjC,eAAe,EAAE,IAAI;oBACrB,iBAAiB,EAAE,SAAS;oBAC5B,4BAA4B,EAAE,CAAC;oBAC/B,4BAA4B,EAAE,KAAK;oBACnC,wBAAwB,EAAE,KAAK;oBAC/B,+BAA+B,EAAE,KAAK;oBACtC,0BAA0B,EAAE,KAAK;oBACjC,4BAA4B,EAAE,CAAC;oBAC/B,WAAW,EAAE,CAAC;iBACf;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,IAAI,QAAQ,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;gBACnC,OAAO,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YAC1C,CAAC;YAED,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,qCAAqC,EAAE,GAAG,EAAE;QACnD,EAAE,CAAC,0CAA0C,EAAE,GAAG,EAAE;YAClD,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;YAE9D,MAAM,MAAM,GAAG;;;;;;;;;;OAUd,CAAC;YAEF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,iBAAiB,EAAE,YAAY,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,kBAAkB,EAAE,CAAC;gBAChG,SAAS,CAAC,iBAAiB,EAAE,OAAO,EAAE,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,CAAC;aAClF,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,iBAAiB,EAAE,YAAY,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,iBAAiB,EAAE,OAAO,CAAC;gBAClD,OAAO,EAAE;oBACP,OAAO,EAAE,iBAAiB;oBAC1B,MAAM,EAAE,YAAY;oBACpB,KAAK,EAAE,YAAY;oBACnB,UAAU,EAAE,kBAAkB;oBAC9B,SAAS,EAAE,OAAO;oBAClB,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,OAAO;oBACjB,IAAI,EAAE,aAAa;oBACnB,GAAG,EAAE,YAAY;oBACjB,cAAc,EAAE,YAAY;oBAC5B,YAAY,EAAE,CAAC;oBACf,gBAAgB,EAAE,QAAQ;oBAC1B,iBAAiB,EAAE,EAAE;oBACrB,YAAY,EAAE,EAAE;oBAChB,YAAY,EAAE,EAAE;oBAChB,mBAAmB,EAAE,CAAC;oBACtB,gBAAgB,EAAE,KAAK;oBACvB,gBAAgB,EAAE,EAAE;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,MAAM,GAAG,IAAI,YAAY,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC,CAAC;YAE7D,MAAM,MAAM,GAAG;;;;;;;;;;;OAWd,CAAC;YAEF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;YAE5B,MAAM,QAAQ,GAAG;gBACf,SAAS,CAAC,mBAAmB,EAAE,UAAU,EAAE,EAAE,YAAY,EAAE,aAAa,EAAE,CAAC;gBAC3E,SAAS,CAAC,oBAAoB,EAAE,WAAW,EAAE,EAAE,eAAe,EAAE,QAAQ,EAAE,IAAI,EAAE,mBAAmB,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aAC1I,CAAC;YAEF,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;gBAC/B,SAAS,EAAE,YAAY,CAAC,mBAAmB,EAAE,UAAU,CAAC;gBACxD,MAAM,EAAE,gCAAgC;gBACxC,QAAQ,EAAE,YAAY,CAAC,oBAAoB,EAAE,WAAW,CAAC;gBACzD,OAAO,EAAE;oBACP,WAAW,EAAE,YAAY;oBACzB,yBAAyB,EAAE,IAAI;oBAC/B,QAAQ,EAAE,UAAU;iBACrB;gBACD,QAAQ;aACT,CAAC,CAAC;YAEH,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/service-schemas.gen.d.ts ADDED Viewed

@@ -0,0 +1,48 @@
+/**
+ * Overwatch (Guardian) Cedar schema
+ *
+ * Full Cedar schema for IDE security, including:
+ * - Actions: process_prompt, call_tool, connect_server, read_file, write_file
+ * - Entities: User, Agent, LlmPrompt, Tool, Server, FilePath
+ * - Context attributes for threat detection and workspace security
+ */
+export declare const OVERWATCH_SCHEMA = "// Overwatch (Guardian) Cedar Schema\n// ===================================\n// IDE Security & Policy Enforcement\n//\n// Overwatch protects IDE operations (prompts, tool calls, file access) by evaluating\n// threats detected by YARA and Javelin scanners against Cedar policies.\n//\n// Architecture:\n//   User/Agent \u2192 IDE Hook \u2192 YARA/Javelin \u2192 Cedar Policy \u2192 Allow/Deny\n//\n// Supported IDEs:\n//   - Cursor (beforeSubmitPrompt, beforeShellExecution, beforeMCPExecution, etc.)\n//   - Claude Code (UserPromptSubmit, PreToolUse)\n//   - GitHub Copilot (userPromptSubmitted, preToolUse)\n\nnamespace Overwatch {\n\n// =============================================================================\n// ENTITIES\n// =============================================================================\n\n// Human user or service account making requests to the IDE\nentity User {\n  user_type: String,      // \"external\" or \"internal\"\n  email: String,          // User email (optional)\n};\n\n// AI agent (Claude, GitHub Copilot, etc.)\nentity Agent {\n  agent_type: String,      // \"claude\", \"copilot\", etc.\n};\n\n// LLM prompt or session\nentity LlmPrompt {\n  prompt_type: String,     // \"user_prompt\", \"session\"\n};\n\n// MCP tool or native IDE tool\nentity Tool {\n  tool_name: String,       // \"shell\", \"read_file\", \"playwright\", etc.\n  risk_level: String,      // \"low\", \"medium\", \"high\"\n};\n\n// MCP server\nentity Server {\n  server_name: String,     // \"filesystem\", \"playwright\", etc.\n};\n\n// File system path\nentity FilePath {\n  path: String,\n  is_within_workspace: Bool,\n};\n\n// =============================================================================\n// ACTIONS\n// =============================================================================\n\n// User submits a prompt or receives AI response\naction process_prompt appliesTo {\n  principal: [User, Agent],\n  resource: [LlmPrompt],\n  context: {\n    // Event & Source\n    content: String,                // Raw content being scanned\n    source: String,                 // IDE source: \"cursor\", \"claudecode\", \"github_copilot\"\n    event: String,                  // Hook event name\n    user_email: String,             // User identifier\n\n    // Workspace\n    cwd: String,                   // Current working directory\n    workspace_root: String,        // Workspace/repository root\n\n    // Threat Detection\n    threat_count: Long,             // Total threats detected\n    highest_severity: String,       // \"critical\", \"high\", \"medium\", \"low\"\n    threat_categories: Set<String>, // Threat category names\n    threat_types: Set<String>,      // YARA threat categories\n    yara_threats: Set<String>,      // YARA rule names\n    max_threat_severity: Long,      // Numeric severity (0-4)\n    contains_secrets: Bool,         // Whether secrets detected\n    prompt_text: String,           // Same as content (legacy)\n    response_content: String,      // Response content (if available)\n  },\n};\n\n// User calls a tool (native IDE tool or MCP tool)\naction call_tool appliesTo {\n  principal: [User, Agent],\n  resource: [Tool, FilePath],\n  context: {\n    // Event & Source\n    content: String,                // Raw content being scanned (e.g., shell command)\n    source: String,                 // IDE source\n    event: String,                  // Hook event name\n    user_email: String,             // User identifier\n\n    // Tool & MCP\n    tool_name: String,             // Normalized tool name (\"shell\", \"read_file\", etc.)\n    mcp_server: String,            // MCP server name\n    mcp_tool: String,              // MCP tool name\n\n    // File & Path\n    path: String,                  // File path (if file operation)\n\n    // Workspace\n    cwd: String,\n    workspace_root: String,\n\n    // Threat Detection\n    threat_count: Long,\n    highest_severity: String,\n    threat_categories: Set<String>,\n    threat_types: Set<String>,\n    yara_threats: Set<String>,\n    max_threat_severity: Long,\n    contains_secrets: Bool,\n    response_content: String,\n  },\n};\n\n// Connect to an MCP server\naction connect_server appliesTo {\n  principal: [User, Agent],\n  resource: [Server],\n  context: {\n    content: String,\n    source: String,\n    event: String,\n    user_email: String,\n    mcp_server: String,\n    threat_count: Long,\n    highest_severity: String,\n    threat_categories: Set<String>,\n    max_threat_severity: Long,\n  },\n};\n\n// Read a file from disk\naction read_file appliesTo {\n  principal: [User, Agent],\n  resource: [FilePath],\n  context: {\n    content: String,\n    source: String,\n    event: String,\n    user_email: String,\n    path: String,\n    cwd: String,\n    workspace_root: String,\n    threat_count: Long,\n    highest_severity: String,\n    threat_categories: Set<String>,\n    max_threat_severity: Long,\n    contains_secrets: Bool,\n  },\n};\n\n// Write a file to disk\naction write_file appliesTo {\n  principal: [User, Agent],\n  resource: [FilePath],\n  context: {\n    content: String,\n    source: String,\n    event: String,\n    user_email: String,\n    path: String,\n    cwd: String,\n    workspace_root: String,\n    threat_count: Long,\n    highest_severity: String,\n    threat_categories: Set<String>,\n    max_threat_severity: Long,\n    contains_secrets: Bool,\n  },\n};\n\n}\n";
+/**
+ * Palisade Cedar schema
+ *
+ * Full Cedar schema for ML supply chain security, including:
+ * - Actions: scan_artifact, validate_integrity, validate_provenance, quarantine_artifact, load_model, deploy_model
+ * - Entities: Scanner, Artifact, Package
+ * - Context attributes for ML security findings
+ */
+export declare const PALISADE_SCHEMA = "// Palisade Cedar Schema\n// =====================\n// ML Supply Chain Security & Artifact Scanning\n//\n// Palisade scans ML model artifacts (safetensors, GGUF, pickle, PyTorch) for\n// security vulnerabilities and enforces policies based on findings.\n//\n// Architecture:\n//   Scanner \u2192 Validators (Pickle, SafeTensors, GGUF, etc.) \u2192 Cedar Policy \u2192 Allow/Deny/Quarantine\n//\n// Supported Formats:\n//   - SafeTensors (.safetensors)\n//   - GGUF (.gguf)\n//   - Pickle (.pkl, .pickle, .pt)\n//   - PyTorch (.pth, .pt)\n//   - ONNX (.onnx)\n\nnamespace Palisade {\n\n// =============================================================================\n// ENTITIES\n// =============================================================================\n\n// Security scanner service\nentity Scanner {\n  scanner_type: String,    // \"palisade\", \"redteam\", etc.\n};\n\n// ML model artifact\nentity Artifact {\n  artifact_format: String, // \"safetensors\", \"gguf\", \"pickle\", \"pytorch\", \"onnx\"\n  path: String,            // File path\n  signed: Bool,            // Whether digitally signed\n  signer: String,          // Who signed (if applicable)\n};\n\n// Software package (npm, PyPI, etc.)\nentity Package {\n  package_name: String,\n  package_version: String,\n};\n\n// =============================================================================\n// ACTIONS\n// =============================================================================\n\n// Scan an ML artifact for security issues\naction scan_artifact appliesTo {\n  principal: [Scanner],\n  resource: [Artifact],\n  context: {\n    // Core Finding & Severity\n    finding_type: String,              // Type of finding (e.g., \"backdoor_detected\", \"safetensors_integrity_violation\")\n    severity: String,                  // \"CRITICAL\", \"HIGH\", \"MEDIUM\", \"LOW\", \"INFO\"\n    environment: String,               // \"production\", \"strict_production\", \"development\", \"permissive_development\", \"research\"\n\n    // Artifact Metadata\n    artifact_format: String,           // \"safetensors\", \"gguf\", \"pickle\", \"pytorch\", \"onnx\"\n    path: String,                      // File path to artifact\n    artifact_signed: Bool,             // Whether artifact is digitally signed\n    provenance_signer: String,         // \"unknown\", \"unsigned\", or signer name\n\n    // Pickle Security\n    pickle_exec_path_detected: Bool,  // Pickle RCE execution path detected (CRITICAL)\n\n    // Tokenizer Security\n    tokenizer_added_tokens_count: Long, // Number of added tokens (0-5000+)\n\n    // LoRA Security\n    adapter_base_digest_mismatch: Bool, // LoRA adapter base model digest mismatch\n\n    // GGUF Security\n    gguf_suspicious_metadata: Bool,   // GGUF metadata contains suspicious patterns\n\n    // SafeTensors Security\n    safetensors_integrity_violation: Bool, // SafeTensors file integrity violated\n\n    // General Metadata Security\n    metadata_malicious_pattern: Bool, // Metadata contains malicious patterns\n\n    // CoSAI Maturity\n    metadata_cosai_level_numeric: Long, // CoSAI maturity level (0-5, higher = more trustworthy)\n\n    // Backdoor Detection\n    match_count: Long,                // Number of behavioral backdoor indicator matches\n  },\n};\n\n// Validate artifact integrity (checksum, signature)\naction validate_integrity appliesTo {\n  principal: [Scanner],\n  resource: [Artifact],\n  context: {\n    artifact_format: String,\n    path: String,\n    artifact_signed: Bool,\n    provenance_signer: String,\n    safetensors_integrity_violation: Bool,\n    finding_type: String,\n    severity: String,\n  },\n};\n\n// Validate artifact provenance (signer, origin)\naction validate_provenance appliesTo {\n  principal: [Scanner],\n  resource: [Artifact],\n  context: {\n    artifact_format: String,\n    path: String,\n    artifact_signed: Bool,\n    provenance_signer: String,\n    metadata_cosai_level_numeric: Long,\n    finding_type: String,\n    severity: String,\n  },\n};\n\n// Quarantine a malicious artifact\naction quarantine_artifact appliesTo {\n  principal: [Scanner],\n  resource: [Artifact],\n  context: {\n    finding_type: String,\n    severity: String,\n    environment: String,\n    artifact_format: String,\n    path: String,\n  },\n};\n\n// Load an ML model into memory\naction load_model appliesTo {\n  principal: [Scanner],\n  resource: [Artifact],\n  context: {\n    artifact_format: String,\n    environment: String,\n    artifact_signed: Bool,\n    severity: String,\n  },\n};\n\n// Deploy an ML model to production\naction deploy_model appliesTo {\n  principal: [Scanner],\n  resource: [Artifact],\n  context: {\n    artifact_format: String,\n    environment: String,\n    artifact_signed: Bool,\n    provenance_signer: String,\n    severity: String,\n  },\n};\n\n// Scan a software package\naction scan_package appliesTo {\n  principal: [Scanner],\n  resource: [Package],\n  context: {\n    finding_type: String,\n    severity: String,\n    environment: String,\n  },\n};\n\n}\n";
+/**
+ * Context attribute metadata for Overwatch actions.
+ * Used by PolicyBuilder UI to generate form fields.
+ */
+export interface ContextAttribute {
+    key: string;
+    type: 'string' | 'number' | 'boolean' | 'array';
+    required: boolean;
+    description: string;
+}
+export interface ActionContext {
+    name: string;
+    description: string;
+    context_attributes: ContextAttribute[];
+}
+export interface ServiceContext {
+    service: string;
+    version: string;
+    description: string;
+    actions: ActionContext[];
+}
+/**
+ * Overwatch context metadata (parsed JSON)
+ */
+export declare const OVERWATCH_CONTEXT: ServiceContext;
+/**
+ * Palisade context metadata (parsed JSON)
+ */
+export declare const PALISADE_CONTEXT: ServiceContext;
+//# sourceMappingURL=service-schemas.gen.d.ts.map

package/dist/service-schemas.gen.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"service-schemas.gen.d.ts","sourceRoot":"","sources":["../src/service-schemas.gen.ts"],"names":[],"mappings":"AAUA;;;;;;;GAOG;AACH,eAAO,MAAM,gBAAgB,izKAmL5B,CAAC;AAEF;;;;;;;GAOG;AACH,eAAO,MAAM,eAAe,87JAwK3B,CAAC;AAEF;;;GAGG;AACH,MAAM,WAAW,gBAAgB;IAC/B,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,QAAQ,GAAG,QAAQ,GAAG,SAAS,GAAG,OAAO,CAAC;IAChD,QAAQ,EAAE,OAAO,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,kBAAkB,EAAE,gBAAgB,EAAE,CAAC;CACxC;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,aAAa,EAAE,CAAC;CAC1B;AAED;;GAEG;AACH,eAAO,MAAM,iBAAiB,EAAE,cAwG/B,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,gBAAgB,EAAE,cA8F9B,CAAC"}