npm - @hol-org/rb-client - Versions diffs - 0.1.179 → 0.1.180 - Mend

@hol-org/rb-client 0.1.179 → 0.1.180

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.js CHANGED Viewed

@@ -916,10 +916,14 @@ var guardBucketBalanceSchema = z2.object({
 });
 var guardPrincipalSchema = z2.object({
   signedIn: z2.boolean(),
+  principalType: z2.enum(["user", "service"]).default("user"),
   userId: z2.string().optional(),
   email: z2.string().optional(),
   accountId: z2.string().optional(),
   stripeCustomerId: z2.string().optional(),
+  serviceId: z2.string().optional(),
+  workspaceId: z2.string().optional(),
+  serviceLabel: z2.string().optional(),
   roles: z2.array(z2.string())
 });
 var guardEntitlementsSchema = z2.object({
@@ -946,6 +950,65 @@ var guardBalanceResponseSchema = z2.object({
   bucketingMode: z2.enum(["shared-ledger", "product-bucketed"]),
   buckets: z2.array(guardBucketBalanceSchema)
 });
+var guardFeedItemSchema = z2.object({
+  id: z2.string(),
+  artifactType: z2.enum(["skill", "plugin"]),
+  slug: z2.string(),
+  name: z2.string(),
+  href: z2.string(),
+  ecosystem: z2.string().optional(),
+  safetyScore: z2.number().nullable().optional(),
+  trustScore: z2.number().nullable().optional(),
+  verified: z2.boolean(),
+  recommendation: z2.enum(["monitor", "review", "block"]),
+  updatedAt: z2.string()
+});
+var guardFeedSummarySchema = z2.object({
+  total: z2.number(),
+  monitorCount: z2.number(),
+  reviewCount: z2.number(),
+  blockCount: z2.number()
+});
+var guardFeedResponseSchema = z2.object({
+  generatedAt: z2.string(),
+  items: z2.array(guardFeedItemSchema),
+  summary: guardFeedSummarySchema
+});
+var guardIntegrationSchema = z2.object({
+  id: z2.enum(["openclaw", "hermes"]),
+  name: z2.string(),
+  status: z2.enum(["available", "planned"]),
+  href: z2.string().nullable(),
+  summary: z2.string()
+});
+var guardActionItemSchema = z2.object({
+  title: z2.string(),
+  description: z2.string(),
+  href: z2.string()
+});
+var guardOverviewResponseSchema = z2.object({
+  generatedAt: z2.string(),
+  principal: guardPrincipalSchema,
+  entitlements: guardEntitlementsSchema,
+  balance: z2.object({
+    accountId: z2.string(),
+    availableCredits: z2.number()
+  }).nullable(),
+  trustFeed: guardFeedResponseSchema,
+  integrations: z2.array(guardIntegrationSchema),
+  actionItems: z2.array(guardActionItemSchema)
+});
+var guardPolicySchema = z2.object({
+  mode: z2.enum(["observe", "prompt", "enforce"]),
+  defaultAction: z2.enum(["allow", "warn", "block"]),
+  unknownPublisherAction: z2.enum(["review", "block", "allow"]),
+  changedHashAction: z2.enum(["allow", "warn", "require-reapproval", "block"]),
+  newNetworkDomainAction: z2.enum(["allow", "warn", "block"]),
+  subprocessAction: z2.enum(["allow", "warn", "block"]),
+  telemetryEnabled: z2.boolean(),
+  syncEnabled: z2.boolean(),
+  updatedAt: z2.string()
+});
 var guardTrustMatchSchema = z2.object({
   artifactId: z2.string(),
   artifactName: z2.string(),
@@ -981,7 +1044,13 @@ var guardRevocationSchema = z2.object({
   artifactName: z2.string(),
   reason: z2.string(),
   severity: z2.enum(["low", "medium", "high"]),
-  publishedAt: z2.string()
+  publishedAt: z2.string(),
+  confidence: z2.number().optional(),
+  remediation: z2.string().nullable().optional(),
+  scope: z2.enum(["artifact", "publisher", "domain", "workspace", "ecosystem"]).optional(),
+  source: z2.string().optional(),
+  firstSeenAt: z2.string().optional(),
+  lastUpdatedAt: z2.string().optional()
 });
 var guardRevocationResponseSchema = z2.object({
   generatedAt: z2.string(),
@@ -1075,7 +1144,12 @@ var guardReceiptSyncResponseSchema = z2.object({
   syncedAt: z2.string(),
   receiptsStored: z2.number(),
   inventoryStored: z2.number().optional(),
-  inventoryDiff: guardInventoryDiffResponseSchema.optional()
+  inventoryDiff: guardInventoryDiffResponseSchema.optional(),
+  advisories: z2.array(guardRevocationSchema).optional(),
+  policy: guardPolicySchema.optional(),
+  alertPreferences: z2.lazy(() => guardAlertPreferencesSchema).optional(),
+  exceptions: z2.array(z2.lazy(() => guardExceptionItemSchema)).optional(),
+  teamPolicyPack: z2.lazy(() => guardTeamPolicyPackSchema).optional()
 });
 var guardInventoryResponseSchema = z2.object({
   generatedAt: z2.string(),
@@ -1161,6 +1235,59 @@ var guardWatchlistResponseSchema = z2.object({
   generatedAt: z2.string(),
   items: z2.array(guardWatchlistItemSchema)
 });
+var guardWatchlistLookupMatchSchema = z2.object({
+  artifactId: z2.string().nullable(),
+  publisher: z2.string().nullable(),
+  domain: z2.string().nullable(),
+  source: z2.enum(["watchlist", "team-policy"]),
+  reason: z2.string()
+});
+var guardWatchlistLookupResponseSchema = z2.object({
+  generatedAt: z2.string(),
+  matched: z2.boolean(),
+  scope: z2.enum(["artifact", "publisher", "domain", "none"]),
+  item: guardWatchlistLookupMatchSchema.nullable()
+});
+var guardPainSignalSchema = z2.object({
+  signalId: z2.string(),
+  signalName: z2.string(),
+  artifactId: z2.string(),
+  artifactName: z2.string(),
+  artifactType: z2.enum(["skill", "plugin"]),
+  harness: z2.string(),
+  latestSummary: z2.string(),
+  firstSeenAt: z2.string(),
+  lastSeenAt: z2.string(),
+  count: z2.number(),
+  source: z2.literal("scanner"),
+  publisher: z2.string().optional()
+});
+var guardPainSignalListResponseSchema = z2.object({
+  generatedAt: z2.string(),
+  items: z2.array(guardPainSignalSchema)
+});
+var guardPainSignalAggregateSchema = z2.object({
+  artifactId: z2.string(),
+  artifactName: z2.string(),
+  artifactType: z2.enum(["skill", "plugin"]),
+  signalName: z2.string(),
+  latestSummary: z2.string(),
+  firstSeenAt: z2.string(),
+  lastSeenAt: z2.string(),
+  totalCount: z2.number(),
+  consumerCount: z2.number(),
+  harnesses: z2.array(z2.string()),
+  publishers: z2.array(z2.string())
+});
+var guardPainSignalAggregateResponseSchema = z2.object({
+  generatedAt: z2.string(),
+  summary: z2.object({
+    totalSignals: z2.number(),
+    uniqueArtifacts: z2.number(),
+    uniqueConsumers: z2.number()
+  }),
+  items: z2.array(guardPainSignalAggregateSchema)
+});
 var guardExceptionItemSchema = z2.object({
   exceptionId: z2.string(),
   scope: z2.enum(["artifact", "publisher", "harness", "global"]),
@@ -1178,6 +1305,45 @@ var guardExceptionListResponseSchema = z2.object({
   generatedAt: z2.string(),
   items: z2.array(guardExceptionItemSchema)
 });
+var guardPreflightEvidenceSchema = z2.object({
+  category: z2.enum([
+    "policy",
+    "trust",
+    "watchlist",
+    "team-policy",
+    "exception"
+  ]),
+  source: z2.string(),
+  detail: z2.string()
+});
+var guardPreflightRequestSchema = z2.object({
+  harness: z2.string(),
+  artifactName: z2.string(),
+  artifactType: z2.enum(["skill", "plugin"]),
+  artifactId: z2.string().optional(),
+  artifactSlug: z2.string().optional(),
+  artifactHash: z2.string().optional(),
+  publisher: z2.string().optional(),
+  domain: z2.string().optional(),
+  launchSummary: z2.string().optional(),
+  capabilities: z2.array(z2.string()).optional(),
+  workspacePath: z2.string().optional()
+});
+var guardPreflightVerdictResponseSchema = z2.object({
+  generatedAt: z2.string(),
+  principal: guardPrincipalSchema,
+  decision: z2.enum(["allow", "review", "block"]),
+  recommendation: z2.enum(["monitor", "review", "block"]),
+  rationale: z2.string(),
+  category: z2.enum(["exception", "team-policy", "watchlist", "trust", "policy"]).optional(),
+  confidence: z2.number().optional(),
+  freshnessTimestamp: z2.string().optional(),
+  evidenceSources: z2.array(z2.string()).optional(),
+  scope: z2.enum(["artifact", "publisher", "domain", "policy"]),
+  matchedEvidence: z2.array(guardPreflightEvidenceSchema),
+  matchedException: guardExceptionItemSchema.nullable(),
+  trustMatch: guardTrustMatchSchema.nullable()
+});
 var guardTeamPolicyAuditItemSchema = z2.object({
   changedAt: z2.string(),
   actor: z2.string(),
@@ -1186,8 +1352,13 @@ var guardTeamPolicyAuditItemSchema = z2.object({
 });
 var guardTeamPolicyPackSchema = z2.object({
   name: z2.string(),
-  sharedHarnessDefaults: z2.record(z2.string(), z2.enum(["observe", "prompt", "enforce"])),
+  sharedHarnessDefaults: z2.record(
+    z2.string(),
+    z2.enum(["observe", "prompt", "enforce"])
+  ),
   allowedPublishers: z2.array(z2.string()),
+  blockedPublishers: z2.array(z2.string()).optional(),
+  blockedDomains: z2.array(z2.string()).optional(),
   blockedArtifacts: z2.array(z2.string()),
   alertChannel: z2.enum(["email", "slack", "teams", "webhook"]),
   updatedAt: z2.string(),
@@ -1602,13 +1773,11 @@ var skillDeprecationsResponseSchema = z2.object({
   name: z2.string(),
   items: z2.array(skillDeprecationRecordSchema)
 }).passthrough();
-var skillSecurityBreakdownFindingSchema = z2.record(jsonValueSchema);
-var skillSecurityBreakdownSummarySchema = z2.record(jsonValueSchema);
 var skillSecurityBreakdownResponseSchema = z2.object({
   jobId: z2.string(),
   score: z2.number().nullable().optional(),
-  findings: z2.array(skillSecurityBreakdownFindingSchema).optional(),
-  summary: skillSecurityBreakdownSummarySchema.optional(),
+  findings: z2.array(jsonValueSchema).optional(),
+  summary: jsonValueSchema.optional(),
   generatedAt: z2.string().nullable().optional(),
   scannerVersion: z2.string().nullable().optional()
 }).passthrough();
@@ -4094,6 +4263,32 @@ async function getGuardBillingBalance(client) {
     "guard billing balance response"
   );
 }
+async function getGuardFeed(client, limit) {
+  const params = new URLSearchParams();
+  if (typeof limit === "number" && Number.isFinite(limit) && Math.trunc(limit) > 0) {
+    params.set("limit", String(Math.trunc(limit)));
+  }
+  const query = params.toString();
+  const suffix = query ? `?${query}` : "";
+  const raw = await client.requestJson(`/guard/feed${suffix}`, {
+    method: "GET"
+  });
+  return client.parseWithSchema(
+    raw,
+    guardFeedResponseSchema,
+    "guard feed response"
+  );
+}
+async function getGuardOverview(client) {
+  const raw = await client.requestJson("/guard/overview", {
+    method: "GET"
+  });
+  return client.parseWithSchema(
+    raw,
+    guardOverviewResponseSchema,
+    "guard overview response"
+  );
+}
 async function getGuardTrustByHash(client, sha256) {
   const normalizedHash = sha256.trim();
   if (!normalizedHash) {
@@ -4141,6 +4336,26 @@ async function getGuardRevocations(client) {
     "guard revocations response"
   );
 }
+async function fetchGuardAdvisories(client) {
+  const raw = await client.requestJson("/guard/advisories", {
+    method: "GET"
+  });
+  return client.parseWithSchema(
+    raw,
+    guardRevocationResponseSchema,
+    "guard advisories response"
+  );
+}
+async function fetchGuardPolicy(client) {
+  const raw = await client.requestJson("/guard/policy/fetch", {
+    method: "GET"
+  });
+  return client.parseWithSchema(
+    raw,
+    guardPolicySchema,
+    "guard policy response"
+  );
+}
 async function getGuardInventory(client) {
   const raw = await client.requestJson("/guard/inventory", {
     method: "GET"
@@ -4186,6 +4401,21 @@ async function exportGuardAbom(client) {
     "guard abom response"
   );
 }
+async function exportGuardArtifactAbom(client, artifactId) {
+  const normalizedArtifactId = artifactId.trim();
+  if (!normalizedArtifactId) {
+    throw new Error("artifactId is required");
+  }
+  const raw = await client.requestJson(
+    `/guard/abom/${encodeURIComponent(normalizedArtifactId)}`,
+    { method: "GET" }
+  );
+  return client.parseWithSchema(
+    raw,
+    guardAbomResponseSchema,
+    "guard artifact abom response"
+  );
+}
 async function exportGuardReceipts(client) {
   const raw = await client.requestJson("/guard/receipts/export", {
     method: "GET"
@@ -4257,6 +4487,87 @@ async function getGuardWatchlist(client) {
     "guard watchlist response"
   );
 }
+async function lookupGuardWatchlist(client, payload) {
+  const raw = await client.requestJson("/guard/watchlist/lookup", {
+    method: "POST",
+    body: payload
+  });
+  return client.parseWithSchema(
+    raw,
+    guardWatchlistLookupResponseSchema,
+    "guard watchlist lookup response"
+  );
+}
+async function getGuardPainSignals(client) {
+  const raw = await client.requestJson("/guard/signals/pain", {
+    method: "GET"
+  });
+  return client.parseWithSchema(
+    raw,
+    guardPainSignalListResponseSchema,
+    "guard pain signals response"
+  );
+}
+async function getGuardAggregatedPainSignals(client) {
+  const raw = await client.requestJson(
+    "/guard/signals/pain/aggregate",
+    {
+      method: "GET"
+    }
+  );
+  return client.parseWithSchema(
+    raw,
+    guardPainSignalAggregateResponseSchema,
+    "guard aggregated pain signals response"
+  );
+}
+async function getGuardPreflightVerdict(client, path, payload) {
+  const raw = await client.requestJson(path, {
+    method: "POST",
+    body: payload
+  });
+  return client.parseWithSchema(
+    raw,
+    guardPreflightVerdictResponseSchema,
+    "guard preflight verdict response"
+  );
+}
+async function getGuardPreInstallVerdict(client, payload) {
+  return getGuardPreflightVerdict(
+    client,
+    "/guard/verdict/pre-install",
+    payload
+  );
+}
+async function getGuardPreExecutionVerdict(client, payload) {
+  return getGuardPreflightVerdict(
+    client,
+    "/guard/verdict/pre-execution",
+    payload
+  );
+}
+async function ingestGuardPainSignals(client, items) {
+  const raw = await client.requestJson("/guard/signals/pain", {
+    method: "POST",
+    body: { items }
+  });
+  return client.parseWithSchema(
+    raw,
+    guardPainSignalListResponseSchema,
+    "guard pain signals response"
+  );
+}
+async function submitGuardReceipts(client, payload) {
+  const raw = await client.requestJson("/guard/receipts/submit", {
+    method: "POST",
+    body: payload
+  });
+  return client.parseWithSchema(
+    raw,
+    guardReceiptSyncResponseSchema,
+    "guard receipt submit response"
+  );
+}
 async function addGuardWatchlistItem(client, payload) {
   const raw = await client.requestJson("/guard/watchlist", {
     method: "POST",
@@ -4294,6 +4605,28 @@ async function addGuardException(client, payload) {
     "guard exceptions response"
   );
 }
+async function requestGuardException(client, payload) {
+  const raw = await client.requestJson("/guard/exceptions/request", {
+    method: "POST",
+    body: payload
+  });
+  return client.parseWithSchema(
+    raw,
+    guardExceptionListResponseSchema,
+    "guard exception request response"
+  );
+}
+async function syncGuardInventory(client, payload) {
+  const raw = await client.requestJson("/guard/inventory/sync", {
+    method: "POST",
+    body: payload
+  });
+  return client.parseWithSchema(
+    raw,
+    guardReceiptSyncResponseSchema,
+    "guard inventory sync response"
+  );
+}
 async function removeGuardException(client, exceptionId) {
   const normalizedExceptionId = exceptionId.trim();
   if (!normalizedExceptionId) {
@@ -6157,6 +6490,12 @@ var RegistryBrokerClient = class _RegistryBrokerClient {
   async getGuardBillingBalance() {
     return getGuardBillingBalance(this);
   }
+  async getGuardFeed(limit) {
+    return getGuardFeed(this, limit);
+  }
+  async getGuardOverview() {
+    return getGuardOverview(this);
+  }
   async getGuardTrustByHash(sha256) {
     return getGuardTrustByHash(this, sha256);
   }
@@ -6166,6 +6505,12 @@ var RegistryBrokerClient = class _RegistryBrokerClient {
   async getGuardRevocations() {
     return getGuardRevocations(this);
   }
+  async fetchGuardAdvisories() {
+    return fetchGuardAdvisories(this);
+  }
+  async fetchGuardPolicy() {
+    return fetchGuardPolicy(this);
+  }
   async getGuardInventory() {
     return getGuardInventory(this);
   }
@@ -6181,6 +6526,9 @@ var RegistryBrokerClient = class _RegistryBrokerClient {
   async exportGuardAbom() {
     return exportGuardAbom(this);
   }
+  async exportGuardArtifactAbom(artifactId) {
+    return exportGuardArtifactAbom(this, artifactId);
+  }
   async exportGuardReceipts() {
     return exportGuardReceipts(this);
   }
@@ -6199,6 +6547,21 @@ var RegistryBrokerClient = class _RegistryBrokerClient {
   async getGuardWatchlist() {
     return getGuardWatchlist(this);
   }
+  async lookupGuardWatchlist(payload) {
+    return lookupGuardWatchlist(this, payload);
+  }
+  async getGuardPainSignals() {
+    return getGuardPainSignals(this);
+  }
+  async getGuardAggregatedPainSignals() {
+    return getGuardAggregatedPainSignals(this);
+  }
+  async getGuardPreInstallVerdict(payload) {
+    return getGuardPreInstallVerdict(this, payload);
+  }
+  async getGuardPreExecutionVerdict(payload) {
+    return getGuardPreExecutionVerdict(this, payload);
+  }
   async addGuardWatchlistItem(payload) {
     return addGuardWatchlistItem(this, payload);
   }
@@ -6208,12 +6571,24 @@ var RegistryBrokerClient = class _RegistryBrokerClient {
   async addGuardException(payload) {
     return addGuardException(this, payload);
   }
+  async requestGuardException(payload) {
+    return requestGuardException(this, payload);
+  }
   async removeGuardException(exceptionId) {
     return removeGuardException(this, exceptionId);
   }
+  async ingestGuardPainSignals(items) {
+    return ingestGuardPainSignals(this, items);
+  }
   async syncGuardReceipts(payload) {
     return syncGuardReceipts(this, payload);
   }
+  async syncGuardInventory(payload) {
+    return syncGuardInventory(this, payload);
+  }
+  async submitGuardReceipts(payload) {
+    return submitGuardReceipts(this, payload);
+  }
   async getGuardTeamPolicyPack() {
     return getGuardTeamPolicyPack(this);
   }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@hol-org/rb-client",
-  "version": "0.1.179",
+  "version": "0.1.180",
   "description": "Lightweight Registry Broker client for HOL registries.",
   "type": "module",
   "files": [