@integrity-labs/agt-cli 0.28.72 → 0.28.73

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
@@ -1039,6 +1039,18 @@ var FLAG_REGISTRY = [
1039
1039
  // approval requests; flipping it is a capability change worth confirming.
1040
1040
  sensitive: true
1041
1041
  },
1042
+ {
1043
+ key: "approval-sod",
1044
+ description: "Separation-of-duties (SoD) guard for the HITL approval FSM (ENG-6459): off = disabled, shadow = resolve principals + audit conflicts only (no block), enforce = fail-closed refuse of a self-approval or an unresolvable approver. Compares approver vs requesting-human on a canonical organization_people.person_id. Ships dark (off); soak in shadow before enforce.",
1045
+ flagType: "enum",
1046
+ allowedValues: ["off", "shadow", "enforce"],
1047
+ defaultValue: "off",
1048
+ envVar: "AGT_APPROVAL_SOD_MODE",
1049
+ // Access-control gate: flipping to enforce can REFUSE approvals (incl. a
1050
+ // legitimate approver whose Slack id isn't linked to a person row), so it
1051
+ // must soak in shadow first and is worth confirming on mutation.
1052
+ sensitive: true
1053
+ },
1042
1054
  {
1043
1055
  key: "direct-chat-doorbell",
1044
1056
  description: "Direct-chat doorbell + pull-cursor delivery (ENG-5927, ADR-0020): the manager rings a content-free doorbell and the agent's in-session MCP pulls via the capped /host/direct-chat/poll claim, replacing send-keys/one-shot delivery. Boolean gate; ships dark.",
@@ -5563,4 +5575,4 @@ export {
5563
5575
  parseEnvIntegrations,
5564
5576
  probeMcpEnvSubstitution
5565
5577
  };
5566
- //# sourceMappingURL=chunk-Z2BMTZQK.js.map
5578
+ //# sourceMappingURL=chunk-PXMYLQWB.js.map