@hongmaple0820/scale-engine 0.40.2 → 0.43.0

package/dist/runtime/CostOptimizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"CostOptimizer.js","sourceRoot":"","sources":["../../src/runtime/CostOptimizer.ts"],"names":[],"mappings":"AAYA,MAAM,UAAU,uBAAuB,CAAC,WAAqC;IAC3E,MAAM,YAAY,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,uBAAuB,EAAE,CAAC,CAAC,CAAA;IACvF,MAAM,QAAQ,GAAG,WAAW;SACzB,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACT,UAAU,EAAE,CAAC;QACb,MAAM,EAAE,CAAC,CAAC,QAAQ,KAAK,mBAAmB,CAAC,CAAC,CAAC,KAAc,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,KAAK,iBAAiB,CAAC,CAAC,CAAC,KAAc,CAAC,CAAC,CAAC,QAAiB;QACnI,WAAW,EAAE,CAAC,CAAC,uBAAuB,GAAG,CAAC,CAAC,CAAC,CAAC,MAAe,CAAC,CAAC,CAAC,CAAC,CAAC,uBAAuB,GAAG,GAAG,CAAC,CAAC,CAAC,QAAiB,CAAC,CAAC,CAAC,KAAc;KACpI,CAAC,CAAC;SACF,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACb,MAAM,WAAW,GAAG,EAAE,GAAG,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,CAAA;QAClD,MAAM,MAAM,GAAG,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,uBAAuB,GAAG,IAAI,CAAC,CAAC,CAAA;QAChH,MAAM,MAAM,GAAG,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,UAAU,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,uBAAuB,GAAG,IAAI,CAAC,CAAC,CAAA;QAChH,OAAO,MAAM,GAAG,MAAM,CAAA;IACxB,CAAC,CAAC,CAAA;IAEJ,OAAO;QACL,WAAW;QACX,qBAAqB,EAAE,YAAY;QACnC,sBAAsB,EAAE,QAAQ;KACjC,CAAA;AACH,CAAC"}

package/dist/shield/PolicyCompiler.d.ts

@@ -0,0 +1,70 @@
+export interface ShieldPolicy {
+    version: number;
+    rules: ShieldPolicyRule[];
+    settings?: {
+        blockMode?: 'strict' | 'warn';
+        hookStateDir?: string;
+        notifyOnBlock?: boolean;
+    };
+}
+export interface ShieldPolicyRule {
+    id: string;
+    description: string;
+    hookType: 'PreToolUse' | 'PostToolUse' | 'Stop' | 'SessionStart';
+    matcher: string;
+    action: 'block' | 'warn' | 'allow';
+    conditions: ShieldCondition[];
+}
+export interface ShieldCondition {
+    type: 'protected_path' | 'dangerous_command' | 'gate_required' | 'secret_pattern' | 'file_size' | 'custom';
+    pattern?: string;
+    value?: string | number;
+    message: string;
+}
+export interface CompiledHook {
+    fileName: string;
+    hookType: string;
+    matcher: string;
+    scriptPath: string;
+    hash: string;
+}
+export interface CompilerOutput {
+    hooks: CompiledHook[];
+    settingsPatches: {
+        claude: string;
+        codex: string;
+        cursor: string;
+    };
+    policyHash: string;
+}
+export declare class PolicyCompiler {
+    /**
+     * Load policy from .scale/policy.yaml. Returns default if file missing or invalid.
+     */
+    loadPolicy(projectDir: string): ShieldPolicy;
+    /**
+     * Minimal YAML parser for policy frontmatter.
+     * Handles the subset of YAML needed for policy rules.
+     */
+    parseYamlPolicy(raw: string): ShieldPolicy;
+    /**
+     * Compile policy into hook scripts.
+     */
+    compile(projectDir: string): CompilerOutput;
+    /**
+     * Write hook registrations to settings.json files for each harness.
+     */
+    writeSettingsPatches(output: CompilerOutput): void;
+    /**
+     * Verify compiled hooks match current policy (anti-tamper check).
+     */
+    verify(projectDir: string): {
+        valid: boolean;
+        mismatches: string[];
+    };
+    private compileRule;
+    private generateHookScript;
+    private generateCombinedPreToolScript;
+    private patchClaudeSettings;
+    private patchHarnessSettings;
+}

package/dist/shield/PolicyCompiler.js

@@ -0,0 +1,540 @@
+// SCALE Shield — Policy Compiler
+// 对齐 agent-hooks-in-depth: YAML 声明式策略 → 运行时 hook 脚本
+// 输出 JS hook 脚本注入到 Claude/Codex/Cursor settings.json
+import { existsSync, mkdirSync, readFileSync, writeFileSync } from 'node:fs';
+import { join } from 'node:path';
+import { createHash } from 'node:crypto';
+import { logger } from '../core/logger.js';
+// ---------------------------------------------------------------------------
+// Default policy
+// ---------------------------------------------------------------------------
+const DEFAULT_POLICY = {
+    version: 1,
+    rules: [
+        {
+            id: 'protect-scale-dir',
+            description: 'Protect .scale/ governance infrastructure from unauthorized modification',
+            hookType: 'PreToolUse',
+            matcher: 'Write|Edit',
+            action: 'block',
+            conditions: [
+                { type: 'protected_path', pattern: '.scale/', message: 'Modifying .scale/ governance files is blocked' },
+            ],
+        },
+        {
+            id: 'block-dangerous-commands',
+            description: 'Block dangerous shell commands: rm -rf, DROP TABLE, force push, curl-pipe-bash',
+            hookType: 'PreToolUse',
+            matcher: 'Bash',
+            action: 'block',
+            conditions: [
+                { type: 'dangerous_command', message: 'Dangerous command detected' },
+            ],
+        },
+        {
+            id: 'require-gate-quality',
+            description: 'Block git commits without passing gate-quality checks',
+            hookType: 'PreToolUse',
+            matcher: 'Bash',
+            action: 'block',
+            conditions: [
+                { type: 'gate_required', pattern: 'git commit', message: 'Gate quality must pass before commit' },
+            ],
+        },
+        {
+            id: 'block-secret-exposure',
+            description: 'Block commands that may expose secrets (cat .env, echo $API_KEY)',
+            hookType: 'PreToolUse',
+            matcher: 'Bash',
+            action: 'block',
+            conditions: [
+                { type: 'secret_pattern', message: 'Potential secret exposure detected' },
+            ],
+        },
+        {
+            id: 'prevent-hook-bypass',
+            description: 'Block attempts to skip hooks or bypass governance',
+            hookType: 'PreToolUse',
+            matcher: 'Bash',
+            action: 'block',
+            conditions: [
+                { type: 'custom', pattern: '(--no-verify|--no-gpg-sign|SKIP_HOOKS|bypass|dang[eo]rously)', message: 'Governance bypass attempt blocked' },
+            ],
+        },
+    ],
+    settings: {
+        blockMode: 'strict',
+        hookStateDir: '.hook-state',
+        notifyOnBlock: true,
+    },
+};
+// ---------------------------------------------------------------------------
+// PolicyCompiler
+// ---------------------------------------------------------------------------
+export class PolicyCompiler {
+    /**
+     * Load policy from .scale/policy.yaml. Returns default if file missing or invalid.
+     */
+    loadPolicy(projectDir) {
+        const policyPath = join(projectDir, '.scale', 'policy.yaml');
+        if (!existsSync(policyPath)) {
+            logger.warn('No .scale/policy.yaml found, using default policy');
+            return { ...DEFAULT_POLICY };
+        }
+        try {
+            const raw = readFileSync(policyPath, 'utf-8');
+            return this.parseYamlPolicy(raw);
+        }
+        catch (err) {
+            logger.warn({ err }, 'Failed to read policy.yaml, using default policy');
+            return { ...DEFAULT_POLICY };
+        }
+    }
+    /**
+     * Minimal YAML parser for policy frontmatter.
+     * Handles the subset of YAML needed for policy rules.
+     */
+    parseYamlPolicy(raw) {
+        const policy = { version: 1, rules: [] };
+        const lines = raw.split('\n');
+        let currentRule = null;
+        let inRules = false;
+        let inConditions = false;
+        for (const line of lines) {
+            const trimmed = line.trim();
+            if (!trimmed || trimmed.startsWith('#'))
+                continue;
+            // Top-level keys
+            if (trimmed.startsWith('version:')) {
+                policy.version = parseInt(trimmed.split(':')[1]?.trim() ?? '1', 10) || 1;
+                continue;
+            }
+            if (trimmed.startsWith('blockMode:') || trimmed.startsWith('block_mode:')) {
+                policy.settings ??= {};
+                policy.settings.blockMode = trimmed.split(':')[1]?.trim() ?? 'strict';
+                continue;
+            }
+            if (trimmed === 'rules:') {
+                inRules = true;
+                continue;
+            }
+            if (!inRules)
+                continue;
+            // Rule entry
+            if (trimmed.startsWith('- id:')) {
+                if (currentRule && currentRule.id) {
+                    policy.rules.push(currentRule);
+                }
+                currentRule = { id: trimmed.split(':')[1]?.trim() ?? '', conditions: [], description: '', hookType: 'PreToolUse', matcher: '', action: 'block' };
+                inConditions = false;
+                continue;
+            }
+            if (!currentRule)
+                continue;
+            if (trimmed.startsWith('description:')) {
+                currentRule.description = trimmed.split(':').slice(1).join(':').trim();
+                continue;
+            }
+            if (trimmed.startsWith('hookType:') || trimmed.startsWith('hook_type:')) {
+                currentRule.hookType = trimmed.split(':')[1]?.trim() ?? 'PreToolUse';
+                continue;
+            }
+            if (trimmed.startsWith('matcher:')) {
+                currentRule.matcher = trimmed.split(':')[1]?.trim() ?? '';
+                continue;
+            }
+            if (trimmed.startsWith('action:')) {
+                currentRule.action = trimmed.split(':')[1]?.trim() ?? 'block';
+                continue;
+            }
+            if (trimmed === 'conditions:') {
+                inConditions = true;
+                continue;
+            }
+            if (inConditions && trimmed.startsWith('- type:')) {
+                const cond = {
+                    type: trimmed.split(':')[1]?.trim() ?? 'custom',
+                    message: '',
+                };
+                currentRule.conditions.push(cond);
+            }
+        }
+        // Flush last rule
+        if (currentRule && currentRule.id) {
+            policy.rules.push(currentRule);
+        }
+        // Fallback to default rules if parsing yielded nothing
+        if (policy.rules.length === 0) {
+            logger.warn('Policy YAML parsed but no rules found, using defaults');
+            return { ...DEFAULT_POLICY, version: policy.version, settings: policy.settings };
+        }
+        return policy;
+    }
+    /**
+     * Compile policy into hook scripts.
+     */
+    compile(projectDir) {
+        const policy = this.loadPolicy(projectDir);
+        const hooksDir = join(projectDir, '.claude', 'hooks');
+        if (!existsSync(hooksDir))
+            mkdirSync(hooksDir, { recursive: true });
+        const policyHash = createHash('sha256')
+            .update(JSON.stringify(policy))
+            .digest('hex')
+            .slice(0, 12);
+        const compiled = [];
+        for (const rule of policy.rules) {
+            const hook = this.compileRule(rule, hooksDir, policyHash);
+            compiled.push(hook);
+            writeFileSync(hook.scriptPath, this.generateHookScript(rule, policy), 'utf-8');
+        }
+        // Always generate a combined pre-tool hook for runtime efficiency
+        const combinedPath = join(hooksDir, 'shield-pre-tool.js');
+        const combinedScript = this.generateCombinedPreToolScript(policy);
+        writeFileSync(combinedPath, combinedScript, 'utf-8');
+        compiled.push({
+            fileName: 'shield-pre-tool.js',
+            hookType: 'PreToolUse',
+            matcher: '',
+            scriptPath: combinedPath,
+            hash: policyHash,
+        });
+        logger.info({ count: compiled.length, policyHash }, 'Shield policy compiled');
+        return {
+            hooks: compiled,
+            settingsPatches: {
+                claude: join(projectDir, '.claude', 'settings.json'),
+                codex: join(projectDir, '.codex', 'hooks.json'),
+                cursor: join(projectDir, '.cursor', 'hooks.json'),
+            },
+            policyHash,
+        };
+    }
+    /**
+     * Write hook registrations to settings.json files for each harness.
+     */
+    writeSettingsPatches(output) {
+        // Claude Code settings.json
+        this.patchClaudeSettings(output);
+        // Codex hooks.json
+        this.patchHarnessSettings(output.settingsPatches.codex, output, 'codex');
+        // Cursor hooks.json
+        this.patchHarnessSettings(output.settingsPatches.cursor, output, 'cursor');
+    }
+    /**
+     * Verify compiled hooks match current policy (anti-tamper check).
+     */
+    verify(projectDir) {
+        const policy = this.loadPolicy(projectDir);
+        const hooksDir = join(projectDir, '.claude', 'hooks');
+        const mismatches = [];
+        const expectedHash = createHash('sha256')
+            .update(JSON.stringify(policy))
+            .digest('hex')
+            .slice(0, 12);
+        // Check combined hook exists
+        const combinedPath = join(hooksDir, 'shield-pre-tool.js');
+        if (!existsSync(combinedPath)) {
+            mismatches.push('shield-pre-tool.js missing — run scale shield compile');
+        }
+        else {
+            const content = readFileSync(combinedPath, 'utf-8');
+            if (!content.includes(expectedHash)) {
+                mismatches.push(`shield-pre-tool.js hash mismatch (expected ${expectedHash}) — run scale shield compile`);
+            }
+        }
+        return { valid: mismatches.length === 0, mismatches };
+    }
+    // -----------------------------------------------------------------------
+    // Internal
+    // -----------------------------------------------------------------------
+    compileRule(rule, hooksDir, hash) {
+        const fileName = `shield-${rule.id.replace(/[^a-zA-Z0-9_-]/g, '-')}.js`;
+        return {
+            fileName,
+            hookType: rule.hookType,
+            matcher: rule.matcher,
+            scriptPath: join(hooksDir, fileName),
+            hash,
+        };
+    }
+    generateHookScript(rule, policy) {
+        const conditions = rule.conditions.map(c => JSON.stringify(c)).join(',\n    ');
+        const isStrict = policy.settings?.blockMode !== 'warn';
+        const blockFn = isStrict ? 'process.exit(2)' : 'console.warn("[SCALE WARN]", reason)';
+        return `// SCALE Shield: ${rule.id}
+// Auto-generated by scale shield compile — DO NOT EDIT MANUALLY
+// Rule: ${rule.description}
+// Matcher: ${rule.matcher || '(all)'} | Action: ${rule.action} | Mode: ${policy.settings?.blockMode ?? 'strict'}
+
+const CONDITIONS = [${conditions}];
+
+function check(input) {
+  const toolName = input.tool_name || '';
+  const toolInput = input.tool_input || {};
+  const command = toolInput.command || '';
+
+  for (const cond of CONDITIONS) {
+    switch (cond.type) {
+      case 'protected_path': {
+        const filePath = toolInput.file_path || toolInput.path || '';
+        if (filePath.includes('.scale/') || filePath.includes('.hook-state/')) {
+          return { blocked: true, reason: cond.message || 'Protected path: ' + filePath };
+        }
+        break;
+      }
+      case 'dangerous_command': {
+        const patterns = [
+          /\\brm\\s+-rf\\b/, /\\bDROP\\s+TABLE\\b/i, /\\bDROP\\s+DATABASE\\b/i,
+          /\\bTRUNCATE\\s+TABLE\\b/i, /git\\s+push\\s+--force/, /git\\s+push\\s+-f\\b/,
+          /git\\s+reset\\s+--hard/, /curl.*\\|\\s*bash\\b/, /wget.*\\|\\s*bash\\b/,
+          /\\bchmod\\s+777\\b/, /\\bDELETE\\s+FROM\\b(?!.*\\bWHERE\\b)/i,
+          /\\bdocker\\s+rm\\s+-f\\b/, /\\bkubectl\\s+delete\\b/,
+        ];
+        for (const p of patterns) {
+          if (p.test(command)) {
+            return { blocked: true, reason: cond.message || 'Dangerous command: ' + command };
+          }
+        }
+        break;
+      }
+      case 'gate_required': {
+        if (/git\\s+commit/.test(command)) {
+          try {
+            const fs = require('fs');
+            const path = require('path');
+            const stateFile = path.join(input.cwd || process.cwd(), '.hook-state', 'Stop.json');
+            if (fs.existsSync(stateFile)) {
+              const state = JSON.parse(fs.readFileSync(stateFile, 'utf-8'));
+              if (!state.reason || !state.reason.includes('gate-quality:PASS')) {
+                return { blocked: true, reason: 'Gate quality not passed. Run: scale gate-quality' };
+              }
+            } else {
+              return { blocked: true, reason: 'No gate state found. Run: scale gate-quality before commit' };
+            }
+          } catch (e) { /* allow if state file can't be read */ }
+        }
+        break;
+      }
+      case 'secret_pattern': {
+        const secretPatterns = [
+          /\\bcat\\s+.*\\.env\\b/, /\\becho\\s+.*\\$?API[_-]?KEY\\b/i,
+          /\\becho\\s+.*\\$?TOKEN\\b/i, /\\becho\\s+.*\\$?SECRET\\b/i,
+          /\\becho\\s+.*\\$?PASSWORD\\b/i,
+        ];
+        for (const p of secretPatterns) {
+          if (p.test(command)) {
+            return { blocked: true, reason: cond.message || 'Potential secret exposure' };
+          }
+        }
+        break;
+      }
+      case 'custom': {
+        if (cond.pattern) {
+          try {
+            const re = new RegExp(cond.pattern, 'i');
+            if (re.test(command)) {
+              return { blocked: true, reason: cond.message || 'Custom rule matched' };
+            }
+          } catch (e) { /* invalid regex */ }
+        }
+        break;
+      }
+    }
+  }
+  return { blocked: false, reason: 'OK' };
+}
+
+try {
+  const raw = process.argv[2] || '{}';
+  const input = JSON.parse(raw);
+  const result = check(input);
+  if (result.blocked) {
+    process.stderr.write('[SCALE SHIELD BLOCKED] ' + result.reason + '\\n');
+    ${blockFn};
+  }
+  process.exit(0);
+} catch (e) {
+  process.stderr.write('[SCALE SHIELD ERROR] ' + e.message + '\\n');
+  process.exit(0); // fail open on parse error
+}
+`;
+    }
+    generateCombinedPreToolScript(policy) {
+        const policyHash = createHash('sha256').update(JSON.stringify(policy)).digest('hex').slice(0, 12);
+        // Generate an efficient combined check that runs all pre-tool rules in one pass
+        const preToolRules = policy.rules.filter(r => r.hookType === 'PreToolUse');
+        const isStrict = policy.settings?.blockMode !== 'warn';
+        return `// SCALE Shield Combined PreToolUse Hook
+// Policy hash: ${policyHash} | Rules: ${preToolRules.length} | Mode: ${policy.settings?.blockMode ?? 'strict'}
+// Auto-generated — DO NOT EDIT
+
+const BLOCKED_COMMANDS = ${JSON.stringify([
+            'rm -rf', 'DROP TABLE', 'DROP DATABASE', 'TRUNCATE TABLE',
+            'git push --force', 'git push -f', 'git reset --hard',
+            'curl | bash', 'wget | bash', 'chmod 777', 'chmod -R 777',
+            'docker rm -f', 'docker system prune', 'kubectl delete',
+            'cat .env', 'eval ', '--no-verify', 'allowDangerously',
+        ])};
+
+const BLOCKED_COMMAND_PATTERNS = [
+  { re: /\\brm\\s+-rf\\b/, reason: 'rm -rf is blocked' },
+  { re: /\\bDROP\\s+TABLE\\b/i, reason: 'DROP TABLE is blocked' },
+  { re: /\\bDROP\\s+DATABASE\\b/i, reason: 'DROP DATABASE is blocked' },
+  { re: /\\bTRUNCATE\\s+TABLE\\b/i, reason: 'TRUNCATE TABLE is blocked' },
+  { re: /git\\s+push\\s+--force/, reason: 'Force push is blocked' },
+  { re: /git\\s+reset\\s+--hard/, reason: 'Hard reset is blocked' },
+  { re: /git\\s+clean\\s+-[fd]+/, reason: 'Git clean with force flags is blocked' },
+  { re: /curl.*\\|\\s*bash/, reason: 'curl-pipe-bash is blocked' },
+  { re: /wget.*\\|\\s*bash/, reason: 'wget-pipe-bash is blocked' },
+  { re: /\\bchmod\\s+777\\b/, reason: 'chmod 777 is blocked' },
+  { re: /\\beval\\s+/i, reason: 'eval is blocked' },
+  { re: /--no-verify/, reason: 'No-verify is blocked' },
+  { re: /\\bDELETE\\s+FROM\\b(?!.*\\bWHERE\\b)/i, reason: 'DELETE without WHERE is blocked' },
+  { re: /\\bdocker\\s+rm\\s+-f\\b/, reason: 'Docker force remove is blocked' },
+  { re: /\\bkubectl\\s+delete\\b/, reason: 'kubectl delete is blocked' },
+  { re: /\\bcat\\s+.*\\.env\\b/, reason: 'Reading .env files is blocked' },
+  { re: /\\becho\\s+.*\\$?(API[_-]?KEY|TOKEN|SECRET|PASSWORD)\\b/i, reason: 'Echoing secrets is blocked' },
+  { re: /SKIP_HOOKS|DISABLE_OMC|dang[eo]rously|bypass/i, reason: 'Governance bypass is blocked' },
+];
+
+function isProtectedPath(filePath) {
+  const protected = ['.scale/', '.hook-state/', '.env', 'credentials', '.pem', '-key.json'];
+  for (const p of protected) {
+    if (filePath.includes(p)) return true;
+  }
+  return false;
+}
+
+try {
+  const raw = process.argv[2] || '{}';
+  const input = typeof raw === 'string' ? JSON.parse(raw) : raw;
+  const toolName = input.tool_name || '';
+  const toolInput = input.tool_input || {};
+  const command = String(toolInput.command || '');
+
+  // Check protected paths for Write/Edit
+  if (toolName === 'Write' || toolName === 'Edit') {
+    const fp = String(toolInput.file_path || toolInput.path || '');
+    if (fp && isProtectedPath(fp)) {
+      process.stderr.write('[SCALE SHIELD BLOCKED] Protected path: ' + fp + '\\n');
+      process.exit(2);
+    }
+  }
+
+  // Check dangerous commands for Bash
+  if (toolName === 'Bash' && command) {
+    for (const { re, reason } of BLOCKED_COMMAND_PATTERNS) {
+      if (re.test(command)) {
+        process.stderr.write('[SCALE SHIELD BLOCKED] ' + reason + '\\n');
+        process.exit(2);
+      }
+    }
+    // Gate check for git commit
+    if (/git\\s+commit/.test(command)) {
+      try {
+        const fs = require('fs');
+        const path = require('path');
+        const cwd = input.cwd || process.cwd();
+        const stopState = path.join(cwd, '.hook-state', 'Stop.json');
+        if (fs.existsSync(stopState)) {
+          const state = JSON.parse(fs.readFileSync(stopState, 'utf-8'));
+          if (!state.reason || !state.reason.includes('gate-quality:PASS')) {
+            process.stderr.write('[SCALE SHIELD BLOCKED] Gate quality check required before commit. Run: scale gate-quality\\n');
+            process.exit(2);
+          }
+        }
+      } catch (e) { /* allow on error */ }
+    }
+  }
+
+  // Write state for PostToolUse and Stop hooks
+  try {
+    const fs = require('fs');
+    const path = require('path');
+    const cwd = input.cwd || process.cwd();
+    const stateDir = path.join(cwd, '.hook-state');
+    if (!fs.existsSync(stateDir)) fs.mkdirSync(stateDir, { recursive: true });
+    fs.writeFileSync(path.join(stateDir, 'PreToolUse.json'), JSON.stringify({
+      hook: 'PreToolUse',
+      timestamp: new Date().toISOString(),
+      sessionId: input.session_id || 'unknown',
+      toolName,
+      blocked: false,
+    }));
+  } catch (e) { /* state write is best-effort */ }
+
+  process.exit(0);
+} catch (e) {
+  // Fail open on parse errors
+  process.stderr.write('[SCALE SHIELD WARN] Parse error: ' + e.message + '\\n');
+  process.exit(0);
+}
+`;
+    }
+    patchClaudeSettings(output) {
+        const settingsPath = output.settingsPatches.claude;
+        if (!existsSync(settingsPath))
+            return;
+        try {
+            const settings = JSON.parse(readFileSync(settingsPath, 'utf-8'));
+            if (!settings.hooks)
+                settings.hooks = {};
+            // Register PreToolUse hook if not already present
+            if (!settings.hooks.PreToolUse)
+                settings.hooks.PreToolUse = [];
+            const preToolHooks = settings.hooks.PreToolUse;
+            const hasShieldHook = preToolHooks.some((h) => h?.scriptPath?.includes('shield-pre-tool'));
+            if (!hasShieldHook) {
+                preToolHooks.push({
+                    type: 'command',
+                    command: `node .claude/hooks/shield-pre-tool.js`,
+                    timeout: 5000,
+                });
+                writeFileSync(settingsPath, JSON.stringify(settings, null, 2));
+                logger.info('Shield hook registered in Claude Code settings');
+            }
+        }
+        catch (err) {
+            logger.warn({ err }, 'Failed to patch Claude settings.json');
+        }
+    }
+    patchHarnessSettings(settingsPath, output, _harness) {
+        if (!existsSync(settingsPath)) {
+            // Create hooks.json if directory exists
+            const dir = settingsPath.replace(/[/\\][^/\\]+$/, '');
+            if (existsSync(dir)) {
+                const config = {
+                    hooks: {
+                        PreToolUse: [
+                            { type: 'command', command: `node .claude/hooks/shield-pre-tool.js`, timeout: 5000 },
+                        ],
+                    },
+                };
+                writeFileSync(settingsPath, JSON.stringify(config, null, 2));
+                logger.info({ harness: _harness }, 'Shield hooks config created');
+            }
+            return;
+        }
+        try {
+            const config = JSON.parse(readFileSync(settingsPath, 'utf-8'));
+            if (!config.hooks)
+                config.hooks = {};
+            if (!config.hooks.PreToolUse)
+                config.hooks.PreToolUse = [];
+            if (!config.hooks.PreToolUse.some((h) => h?.command?.includes('shield-pre-tool'))) {
+                config.hooks.PreToolUse.push({
+                    type: 'command',
+                    command: `node .claude/hooks/shield-pre-tool.js`,
+                    timeout: 5000,
+                });
+                writeFileSync(settingsPath, JSON.stringify(config, null, 2));
+                logger.info({ harness: _harness }, 'Shield hooks config patched');
+            }
+        }
+        catch (err) {
+            logger.warn({ err, harness: _harness }, 'Failed to patch harness settings');
+        }
+    }
+}
+//# sourceMappingURL=PolicyCompiler.js.map

package/dist/shield/PolicyCompiler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"PolicyCompiler.js","sourceRoot":"","sources":["../../src/shield/PolicyCompiler.ts"],"names":[],"mappings":"AAAA,iCAAiC;AACjC,oDAAoD;AACpD,qDAAqD;AAErD,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,SAAS,CAAA;AAC5E,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAA;AAChC,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AACxC,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAA;AAsD1C,8EAA8E;AAC9E,iBAAiB;AACjB,8EAA8E;AAE9E,MAAM,cAAc,GAAiB;IACnC,OAAO,EAAE,CAAC;IACV,KAAK,EAAE;QACL;YACE,EAAE,EAAE,mBAAmB;YACvB,WAAW,EAAE,0EAA0E;YACvF,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,YAAY;YACrB,MAAM,EAAE,OAAO;YACf,UAAU,EAAE;gBACV,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,+CAA+C,EAAE;aACzG;SACF;QACD;YACE,EAAE,EAAE,0BAA0B;YAC9B,WAAW,EAAE,gFAAgF;YAC7F,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,MAAM;YACf,MAAM,EAAE,OAAO;YACf,UAAU,EAAE;gBACV,EAAE,IAAI,EAAE,mBAAmB,EAAE,OAAO,EAAE,4BAA4B,EAAE;aACrE;SACF;QACD;YACE,EAAE,EAAE,sBAAsB;YAC1B,WAAW,EAAE,uDAAuD;YACpE,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,MAAM;YACf,MAAM,EAAE,OAAO;YACf,UAAU,EAAE;gBACV,EAAE,IAAI,EAAE,eAAe,EAAE,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,sCAAsC,EAAE;aAClG;SACF;QACD;YACE,EAAE,EAAE,uBAAuB;YAC3B,WAAW,EAAE,kEAAkE;YAC/E,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,MAAM;YACf,MAAM,EAAE,OAAO;YACf,UAAU,EAAE;gBACV,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,oCAAoC,EAAE;aAC1E;SACF;QACD;YACE,EAAE,EAAE,qBAAqB;YACzB,WAAW,EAAE,mDAAmD;YAChE,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,MAAM;YACf,MAAM,EAAE,OAAO;YACf,UAAU,EAAE;gBACV,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,8DAA8D,EAAE,OAAO,EAAE,mCAAmC,EAAE;aAC1I;SACF;KACF;IACD,QAAQ,EAAE;QACR,SAAS,EAAE,QAAQ;QACnB,YAAY,EAAE,aAAa;QAC3B,aAAa,EAAE,IAAI;KACpB;CACF,CAAA;AAED,8EAA8E;AAC9E,iBAAiB;AACjB,8EAA8E;AAE9E,MAAM,OAAO,cAAc;IACzB;;OAEG;IACH,UAAU,CAAC,UAAkB;QAC3B,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,EAAE,QAAQ,EAAE,aAAa,CAAC,CAAA;QAC5D,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YAC5B,MAAM,CAAC,IAAI,CAAC,mDAAmD,CAAC,CAAA;YAChE,OAAO,EAAE,GAAG,cAAc,EAAE,CAAA;QAC9B,CAAC;QAED,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAA;YAC7C,OAAO,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,CAAA;QAClC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,EAAE,kDAAkD,CAAC,CAAA;YACxE,OAAO,EAAE,GAAG,cAAc,EAAE,CAAA;QAC9B,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,eAAe,CAAC,GAAW;QACzB,MAAM,MAAM,GAAiB,EAAE,OAAO,EAAE,CAAC,EAAE,KAAK,EAAE,EAAE,EAAE,CAAA;QACtD,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAA;QAC7B,IAAI,WAAW,GAAqC,IAAI,CAAA;QACxD,IAAI,OAAO,GAAG,KAAK,CAAA;QACnB,IAAI,YAAY,GAAG,KAAK,CAAA;QAExB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAA;YAC3B,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAQ;YAEjD,iBAAiB;YACjB,IAAI,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;gBACnC,MAAM,CAAC,OAAO,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,CAAA;gBACxE,SAAQ;YACV,CAAC;YACD,IAAI,OAAO,CAAC,UAAU,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;gBAC1E,MAAM,CAAC,QAAQ,KAAK,EAAE,CAAA;gBACtB,MAAM,CAAC,QAAQ,CAAC,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAuB,IAAI,QAAQ,CAAA;gBAC1F,SAAQ;YACV,CAAC;YACD,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;gBAAC,OAAO,GAAG,IAAI,CAAC;gBAAC,SAAQ;YAAC,CAAC;YACtD,IAAI,CAAC,OAAO;gBAAE,SAAQ;YAEtB,aAAa;YACb,IAAI,OAAO,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;gBAChC,IAAI,WAAW,IAAI,WAAW,CAAC,EAAE,EAAE,CAAC;oBAClC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,WAA+B,CAAC,CAAA;gBACpD,CAAC;gBACD,WAAW,GAAG,EAAE,EAAE,EAAE,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,UAAU,EAAE,EAAE,EAAE,WAAW,EAAE,EAAE,EAAE,QAAQ,EAAE,YAAY,EAAE,OAAO,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,CAAA;gBAChJ,YAAY,GAAG,KAAK,CAAA;gBACpB,SAAQ;YACV,CAAC;YACD,IAAI,CAAC,WAAW;gBAAE,SAAQ;YAE1B,IAAI,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC;gBACvC,WAAW,CAAC,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAA;gBACtE,SAAQ;YACV,CAAC;YACD,IAAI,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;gBACxE,WAAW,CAAC,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAkC,IAAI,YAAY,CAAA;gBACpG,SAAQ;YACV,CAAC;YACD,IAAI,OAAO,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;gBACnC,WAAW,CAAC,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;gBACzD,SAAQ;YACV,CAAC;YACD,IAAI,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;gBAClC,WAAW,CAAC,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAgC,IAAI,OAAO,CAAA;gBAC3F,SAAQ;YACV,CAAC;YACD,IAAI,OAAO,KAAK,aAAa,EAAE,CAAC;gBAAC,YAAY,GAAG,IAAI,CAAC;gBAAC,SAAQ;YAAC,CAAC;YAChE,IAAI,YAAY,IAAI,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;gBAClD,MAAM,IAAI,GAAoB;oBAC5B,IAAI,EAAE,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAA6B,IAAI,QAAQ;oBAC1E,OAAO,EAAE,EAAE;iBACZ,CAAA;gBACD,WAAW,CAAC,UAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACpC,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,IAAI,WAAW,IAAI,WAAW,CAAC,EAAE,EAAE,CAAC;YAClC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,WAA+B,CAAC,CAAA;QACpD,CAAC;QAED,uDAAuD;QACvD,IAAI,MAAM,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC9B,MAAM,CAAC,IAAI,CAAC,uDAAuD,CAAC,CAAA;YACpE,OAAO,EAAE,GAAG,cAAc,EAAE,OAAO,EAAE,MAAM,CAAC,OAAO,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,CAAA;QAClF,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,UAAkB;QACxB,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,CAAA;QAC1C,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,EAAE,SAAS,EAAE,OAAO,CAAC,CAAA;QACrD,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,SAAS,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAA;QAEnE,MAAM,UAAU,GAAG,UAAU,CAAC,QAAQ,CAAC;aACpC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;aAC9B,MAAM,CAAC,KAAK,CAAC;aACb,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;QAEf,MAAM,QAAQ,GAAmB,EAAE,CAAA;QAEnC,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YAChC,MAAM,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAA;YACzD,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;YACnB,aAAa,CAAC,IAAI,CAAC,UAAU,EAAE,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE,MAAM,CAAC,EAAE,OAAO,CAAC,CAAA;QAChF,CAAC;QAED,kEAAkE;QAClE,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,EAAE,oBAAoB,CAAC,CAAA;QACzD,MAAM,cAAc,GAAG,IAAI,CAAC,6BAA6B,CAAC,MAAM,CAAC,CAAA;QACjE,aAAa,CAAC,YAAY,EAAE,cAAc,EAAE,OAAO,CAAC,CAAA;QAEpD,QAAQ,CAAC,IAAI,CAAC;YACZ,QAAQ,EAAE,oBAAoB;YAC9B,QAAQ,EAAE,YAAY;YACtB,OAAO,EAAE,EAAE;YACX,UAAU,EAAE,YAAY;YACxB,IAAI,EAAE,UAAU;SACjB,CAAC,CAAA;QAEF,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,QAAQ,CAAC,MAAM,EAAE,UAAU,EAAE,EAAE,wBAAwB,CAAC,CAAA;QAE7E,OAAO;YACL,KAAK,EAAE,QAAQ;YACf,eAAe,EAAE;gBACf,MAAM,EAAE,IAAI,CAAC,UAAU,EAAE,SAAS,EAAE,eAAe,CAAC;gBACpD,KAAK,EAAE,IAAI,CAAC,UAAU,EAAE,QAAQ,EAAE,YAAY,CAAC;gBAC/C,MAAM,EAAE,IAAI,CAAC,UAAU,EAAE,SAAS,EAAE,YAAY,CAAC;aAClD;YACD,UAAU;SACX,CAAA;IACH,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,MAAsB;QACzC,4BAA4B;QAC5B,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,CAAA;QAEhC,mBAAmB;QACnB,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,eAAe,CAAC,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC,CAAA;QAExE,oBAAoB;QACpB,IAAI,CAAC,oBAAoB,CAAC,MAAM,CAAC,eAAe,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAA;IAC5E,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,UAAkB;QACvB,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,CAAA;QAC1C,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,EAAE,SAAS,EAAE,OAAO,CAAC,CAAA;QACrD,MAAM,UAAU,GAAa,EAAE,CAAA;QAE/B,MAAM,YAAY,GAAG,UAAU,CAAC,QAAQ,CAAC;aACtC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;aAC9B,MAAM,CAAC,KAAK,CAAC;aACb,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;QAEf,6BAA6B;QAC7B,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,EAAE,oBAAoB,CAAC,CAAA;QACzD,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC9B,UAAU,CAAC,IAAI,CAAC,uDAAuD,CAAC,CAAA;QAC1E,CAAC;aAAM,CAAC;YACN,MAAM,OAAO,GAAG,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAA;YACnD,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;gBACpC,UAAU,CAAC,IAAI,CAAC,8CAA8C,YAAY,8BAA8B,CAAC,CAAA;YAC3G,CAAC;QACH,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,UAAU,EAAE,CAAA;IACvD,CAAC;IAED,0EAA0E;IAC1E,WAAW;IACX,0EAA0E;IAElE,WAAW,CAAC,IAAsB,EAAE,QAAgB,EAAE,IAAY;QACxE,MAAM,QAAQ,GAAG,UAAU,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,iBAAiB,EAAE,GAAG,CAAC,KAAK,CAAA;QACvE,OAAO;YACL,QAAQ;YACR,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,UAAU,EAAE,IAAI,CAAC,QAAQ,EAAE,QAAQ,CAAC;YACpC,IAAI;SACL,CAAA;IACH,CAAC;IAEO,kBAAkB,CAAC,IAAsB,EAAE,MAAoB;QACrE,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;QAC9E,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,EAAE,SAAS,KAAK,MAAM,CAAA;QACtD,MAAM,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,sCAAsC,CAAA;QAErF,OAAO,oBAAoB,IAAI,CAAC,EAAE;;WAE3B,IAAI,CAAC,WAAW;cACb,IAAI,CAAC,OAAO,IAAI,OAAO,cAAc,IAAI,CAAC,MAAM,YAAY,MAAM,CAAC,QAAQ,EAAE,SAAS,IAAI,QAAQ;;sBAE1F,UAAU;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;MAoF1B,OAAO;;;;;;;CAOZ,CAAA;IACC,CAAC;IAEO,6BAA6B,CAAC,MAAoB;QACxD,MAAM,UAAU,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;QACjG,gFAAgF;QAChF,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,YAAY,CAAC,CAAA;QAC1E,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,EAAE,SAAS,KAAK,MAAM,CAAA;QAEtD,OAAO;kBACO,UAAU,aAAa,YAAY,CAAC,MAAM,YAAY,MAAM,CAAC,QAAQ,EAAE,SAAS,IAAI,QAAQ;;;2BAGnF,IAAI,CAAC,SAAS,CAAC;YACpC,QAAQ,EAAE,YAAY,EAAE,eAAe,EAAE,gBAAgB;YACzD,kBAAkB,EAAE,aAAa,EAAE,kBAAkB;YACrD,aAAa,EAAE,aAAa,EAAE,WAAW,EAAE,cAAc;YACzD,cAAc,EAAE,qBAAqB,EAAE,gBAAgB;YACvD,UAAU,EAAE,OAAO,EAAE,aAAa,EAAE,kBAAkB;SACvD,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA+FL,CAAA;IACC,CAAC;IAEO,mBAAmB,CAAC,MAAsB;QAChD,MAAM,YAAY,GAAG,MAAM,CAAC,eAAe,CAAC,MAAM,CAAA;QAClD,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC;YAAE,OAAM;QAErC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAA;YAChE,IAAI,CAAC,QAAQ,CAAC,KAAK;gBAAE,QAAQ,CAAC,KAAK,GAAG,EAAE,CAAA;YAExC,kDAAkD;YAClD,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,UAAU;gBAAE,QAAQ,CAAC,KAAK,CAAC,UAAU,GAAG,EAAE,CAAA;YAC9D,MAAM,YAAY,GAAc,QAAQ,CAAC,KAAK,CAAC,UAAU,CAAA;YAEzD,MAAM,aAAa,GAAG,YAAY,CAAC,IAAI,CACrC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,EAAE,UAAU,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CACvD,CAAA;YACD,IAAI,CAAC,aAAa,EAAE,CAAC;gBACnB,YAAY,CAAC,IAAI,CAAC;oBAChB,IAAI,EAAE,SAAS;oBACf,OAAO,EAAE,uCAAuC;oBAChD,OAAO,EAAE,IAAI;iBACd,CAAC,CAAA;gBACF,aAAa,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAA;gBAC9D,MAAM,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAA;YAC/D,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,EAAE,sCAAsC,CAAC,CAAA;QAC9D,CAAC;IACH,CAAC;IAEO,oBAAoB,CAAC,YAAoB,EAAE,MAAsB,EAAE,QAAgB;QACzF,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC9B,wCAAwC;YACxC,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,CAAC,eAAe,EAAE,EAAE,CAAC,CAAA;YACrD,IAAI,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBACpB,MAAM,MAAM,GAAG;oBACb,KAAK,EAAE;wBACL,UAAU,EAAE;4BACV,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,uCAAuC,EAAE,OAAO,EAAE,IAAI,EAAE;yBACrF;qBACF;iBACF,CAAA;gBACD,aAAa,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAA;gBAC5D,MAAM,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,6BAA6B,CAAC,CAAA;YACnE,CAAC;YACD,OAAM;QACR,CAAC;QAED,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAA;YAC9D,IAAI,CAAC,MAAM,CAAC,KAAK;gBAAE,MAAM,CAAC,KAAK,GAAG,EAAE,CAAA;YACpC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU;gBAAE,MAAM,CAAC,KAAK,CAAC,UAAU,GAAG,EAAE,CAAA;YAC1D,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC,EAAE,CAAC;gBACvF,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC;oBAC3B,IAAI,EAAE,SAAS;oBACf,OAAO,EAAE,uCAAuC;oBAChD,OAAO,EAAE,IAAI;iBACd,CAAC,CAAA;gBACF,aAAa,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAA;gBAC5D,MAAM,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,6BAA6B,CAAC,CAAA;YACnE,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,QAAQ,EAAE,EAAE,kCAAkC,CAAC,CAAA;QAC7E,CAAC;IACH,CAAC;CACF"}

package/dist/shield/ProtectedPaths.d.ts

@@ -0,0 +1,39 @@
+import type { ShieldInput, ShieldDecision } from './ShieldProtocol.js';
+export interface ProtectedPathRule {
+    glob: string;
+    reason: string;
+    allowReads: boolean;
+}
+export interface CommandBlockRule {
+    pattern: RegExp;
+    reason: string;
+    severity: 'block' | 'warn';
+    category: 'destructive' | 'data-loss' | 'security' | 'governance-bypass';
+}
+export interface PathCheckResult {
+    blocked: boolean;
+    matchedRule?: ProtectedPathRule;
+    targetPath: string;
+}
+/**
+ * Check if a file write target is a protected path.
+ * Returns { blocked: true } if the path matches any protected glob.
+ */
+export declare function checkProtectedPath(targetPath: string, cwd?: string, toolName?: string): PathCheckResult;
+/**
+ * Check if a command contains any blocked patterns.
+ * Returns list of matched rules.
+ */
+export declare function checkCommand(command: string): CommandBlockRule[];
+/**
+ * Full pre-flight check for a tool input.
+ * Returns allow/block decision.
+ */
+export declare function checkToolInput(input: ShieldInput): ShieldDecision;
+/**
+ * Verify .scale/ directory integrity.
+ */
+export declare function verifyScaleIntegrity(cwd: string): {
+    intact: boolean;
+    missing: string[];
+};