@jait/gateway 0.1.0

package/dist/security/consent-manager.js

@@ -0,0 +1,227 @@
+/**
+ * Consent Manager — Sprint 4.1
+ *
+ * Manages a pending queue of consent requests. Tools that require
+ * consent produce a request; the operator must approve/reject before
+ * execution continues. Requests auto-timeout after a configurable period.
+ */
+import { consentLog, consentSessionApprovals } from "../db/schema.js";
+import { uuidv7 } from "../lib/uuidv7.js";
+import { eq } from "drizzle-orm";
+// ── ConsentManager ───────────────────────────────────────────────────
+export class ConsentManager {
+    pending = new Map();
+    approveAllSessions = new Set();
+    defaultTimeoutMs;
+    db;
+    onRequest;
+    onDecision;
+    constructor(opts = {}) {
+        this.defaultTimeoutMs = opts.defaultTimeoutMs ?? 120_000;
+        this.db = opts.db;
+        this.onRequest = opts.onRequest;
+        this.onDecision = opts.onDecision;
+        this.hydrateSessionApproveAll();
+    }
+    /**
+     * Create a consent request and wait for approval/rejection.
+     * Returns the decision (approved=true/false). Rejects after timeout.
+     */
+    async requestConsent(params) {
+        const timeout = params.timeoutMs ?? this.defaultTimeoutMs;
+        const now = new Date();
+        const expiresAt = new Date(now.getTime() + timeout);
+        const request = {
+            id: uuidv7(),
+            actionId: params.actionId,
+            toolName: params.toolName,
+            summary: params.summary,
+            preview: params.preview,
+            risk: params.risk,
+            sessionId: params.sessionId,
+            createdAt: now.toISOString(),
+            expiresAt: expiresAt.toISOString(),
+            status: "pending",
+        };
+        return new Promise((resolve) => {
+            const timer = setTimeout(() => {
+                this.handleTimeout(request.id);
+            }, timeout);
+            this.pending.set(request.id, { request, resolve, timer });
+            // Notify listeners (e.g. WS broadcast)
+            this.onRequest?.(request);
+        });
+    }
+    /**
+     * Approve a pending request. Returns false if the request doesn't exist.
+     */
+    approve(requestId, via = "click", reason) {
+        return this.decide(requestId, true, via, reason);
+    }
+    /**
+     * Reject a pending request. Returns false if the request doesn't exist.
+     */
+    reject(requestId, via = "click", reason) {
+        return this.decide(requestId, false, via, reason);
+    }
+    /**
+     * Get a pending request by ID.
+     */
+    getRequest(requestId) {
+        return this.pending.get(requestId)?.request;
+    }
+    /**
+     * Get all pending requests, optionally filtered by session.
+     */
+    listPending(sessionId) {
+        const all = [...this.pending.values()].map((e) => e.request);
+        if (sessionId)
+            return all.filter((r) => r.sessionId === sessionId);
+        return all;
+    }
+    /**
+     * Get count of pending requests.
+     */
+    get pendingCount() {
+        return this.pending.size;
+    }
+    /**
+     * Enable "approve all" mode for a session.
+     * While enabled, consent prompts for this session should be bypassed by the executor.
+     */
+    enableApproveAllForSession(sessionId) {
+        this.approveAllSessions.add(sessionId);
+        this.persistSessionApproveAll(sessionId, true);
+    }
+    /**
+     * Disable "approve all" mode for a session.
+     */
+    disableApproveAllForSession(sessionId) {
+        this.approveAllSessions.delete(sessionId);
+        this.persistSessionApproveAll(sessionId, false);
+    }
+    /**
+     * Check whether "approve all" mode is enabled for a session.
+     */
+    isApproveAllEnabledForSession(sessionId) {
+        return this.approveAllSessions.has(sessionId);
+    }
+    /**
+     * Cancel all pending requests (e.g. during shutdown).
+     */
+    cancelAll(reason = "shutdown") {
+        for (const id of [...this.pending.keys()]) {
+            this.decide(id, false, "auto", reason);
+        }
+    }
+    // ── Internal ─────────────────────────────────────────────────────
+    decide(requestId, approved, via, reason) {
+        const entry = this.pending.get(requestId);
+        if (!entry)
+            return false;
+        clearTimeout(entry.timer);
+        const decision = {
+            requestId,
+            actionId: entry.request.actionId,
+            approved,
+            decidedAt: new Date().toISOString(),
+            decidedVia: via,
+            reason,
+        };
+        entry.request.status = approved ? "approved" : "rejected";
+        // Persist to consent_log
+        this.persistDecision(entry.request, decision);
+        // Remove from pending
+        this.pending.delete(requestId);
+        // Notify listeners
+        this.onDecision?.(decision);
+        // Resolve the waiting promise
+        entry.resolve(decision);
+        return true;
+    }
+    handleTimeout(requestId) {
+        const entry = this.pending.get(requestId);
+        if (!entry)
+            return;
+        const decision = {
+            requestId,
+            actionId: entry.request.actionId,
+            approved: false,
+            decidedAt: new Date().toISOString(),
+            decidedVia: "timeout",
+            reason: "Consent request timed out",
+        };
+        entry.request.status = "timeout";
+        this.persistDecision(entry.request, decision);
+        this.pending.delete(requestId);
+        this.onDecision?.(decision);
+        entry.resolve(decision);
+    }
+    persistDecision(request, decision) {
+        if (!this.db)
+            return;
+        try {
+            this.db.insert(consentLog).values({
+                id: uuidv7(),
+                actionId: request.actionId,
+                toolName: request.toolName,
+                decision: decision.approved ? "approved" : decision.decidedVia === "timeout" ? "timeout" : "rejected",
+                decidedAt: decision.decidedAt,
+                decidedVia: decision.decidedVia,
+            }).run();
+        }
+        catch {
+            // Non-fatal: consent log is for audit, not control flow
+        }
+    }
+    hydrateSessionApproveAll() {
+        if (!this.db)
+            return;
+        try {
+            const rows = this.db
+                .select()
+                .from(consentSessionApprovals)
+                .where(eq(consentSessionApprovals.approveAll, 1))
+                .all();
+            for (const row of rows) {
+                this.approveAllSessions.add(row.sessionId);
+            }
+        }
+        catch {
+            // Non-fatal: default to no persisted overrides
+        }
+    }
+    persistSessionApproveAll(sessionId, enabled) {
+        if (!this.db)
+            return;
+        try {
+            if (enabled) {
+                this.db
+                    .insert(consentSessionApprovals)
+                    .values({
+                    sessionId,
+                    approveAll: 1,
+                    updatedAt: new Date().toISOString(),
+                })
+                    .onConflictDoUpdate({
+                    target: consentSessionApprovals.sessionId,
+                    set: {
+                        approveAll: 1,
+                        updatedAt: new Date().toISOString(),
+                    },
+                })
+                    .run();
+            }
+            else {
+                this.db
+                    .delete(consentSessionApprovals)
+                    .where(eq(consentSessionApprovals.sessionId, sessionId))
+                    .run();
+            }
+        }
+        catch {
+            // Non-fatal: in-memory state is source of truth for this process
+        }
+    }
+}
+//# sourceMappingURL=consent-manager.js.map

package/dist/security/consent-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"consent-manager.js","sourceRoot":"","sources":["../../src/security/consent-manager.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,EAAE,UAAU,EAAE,uBAAuB,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,MAAM,EAAE,MAAM,kBAAkB,CAAC;AAC1C,OAAO,EAAE,EAAE,EAAE,MAAM,aAAa,CAAC;AAgDjC,wEAAwE;AAExE,MAAM,OAAO,cAAc;IACR,OAAO,GAAG,IAAI,GAAG,EAAwB,CAAC;IAC1C,kBAAkB,GAAG,IAAI,GAAG,EAAU,CAAC;IACvC,gBAAgB,CAAS;IACzB,EAAE,CAAU;IACZ,SAAS,CAAqC;IAC9C,UAAU,CAAuC;IAElE,YAAY,OAA8B,EAAE;QAC1C,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,IAAI,OAAO,CAAC;QACzD,IAAI,CAAC,EAAE,GAAG,IAAI,CAAC,EAAE,CAAC;QAClB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAChC,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC;QAClC,IAAI,CAAC,wBAAwB,EAAE,CAAC;IAClC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,cAAc,CAAC,MAQpB;QACC,MAAM,OAAO,GAAG,MAAM,CAAC,SAAS,IAAI,IAAI,CAAC,gBAAgB,CAAC;QAC1D,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,OAAO,CAAC,CAAC;QAEpD,MAAM,OAAO,GAAmB;YAC9B,EAAE,EAAE,MAAM,EAAE;YACZ,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,SAAS,EAAE,GAAG,CAAC,WAAW,EAAE;YAC5B,SAAS,EAAE,SAAS,CAAC,WAAW,EAAE;YAClC,MAAM,EAAE,SAAS;SAClB,CAAC;QAEF,OAAO,IAAI,OAAO,CAAkB,CAAC,OAAO,EAAE,EAAE;YAC9C,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC5B,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YACjC,CAAC,EAAE,OAAO,CAAC,CAAC;YAEZ,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;YAE1D,uCAAuC;YACvC,IAAI,CAAC,SAAS,EAAE,CAAC,OAAO,CAAC,CAAC;QAC5B,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,SAAiB,EAAE,MAAqC,OAAO,EAAE,MAAe;QACtF,OAAO,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;IACnD,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,SAAiB,EAAE,MAAqC,OAAO,EAAE,MAAe;QACrF,OAAO,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,KAAK,EAAE,GAAG,EAAE,MAAM,CAAC,CAAC;IACpD,CAAC;IAED;;OAEG;IACH,UAAU,CAAC,SAAiB;QAC1B,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,SAAkB;QAC5B,MAAM,GAAG,GAAG,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;QAC7D,IAAI,SAAS;YAAE,OAAO,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,SAAS,CAAC,CAAC;QACnE,OAAO,GAAG,CAAC;IACb,CAAC;IAED;;OAEG;IACH,IAAI,YAAY;QACd,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC;IAC3B,CAAC;IAED;;;OAGG;IACH,0BAA0B,CAAC,SAAiB;QAC1C,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QACvC,IAAI,CAAC,wBAAwB,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,2BAA2B,CAAC,SAAiB;QAC3C,IAAI,CAAC,kBAAkB,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC1C,IAAI,CAAC,wBAAwB,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;IAClD,CAAC;IAED;;OAEG;IACH,6BAA6B,CAAC,SAAiB;QAC7C,OAAO,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,MAAM,GAAG,UAAU;QAC3B,KAAK,MAAM,EAAE,IAAI,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC;YAC1C,IAAI,CAAC,MAAM,CAAC,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;QACzC,CAAC;IACH,CAAC;IAED,oEAAoE;IAE5D,MAAM,CACZ,SAAiB,EACjB,QAAiB,EACjB,GAAkC,EAClC,MAAe;QAEf,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC1C,IAAI,CAAC,KAAK;YAAE,OAAO,KAAK,CAAC;QAEzB,YAAY,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAE1B,MAAM,QAAQ,GAAoB;YAChC,SAAS;YACT,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,QAAQ;YAChC,QAAQ;YACR,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,UAAU,EAAE,GAAG;YACf,MAAM;SACP,CAAC;QAEF,KAAK,CAAC,OAAO,CAAC,MAAM,GAAG,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC;QAE1D,yBAAyB;QACzB,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QAE9C,sBAAsB;QACtB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAE/B,mBAAmB;QACnB,IAAI,CAAC,UAAU,EAAE,CAAC,QAAQ,CAAC,CAAC;QAE5B,8BAA8B;QAC9B,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAExB,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,aAAa,CAAC,SAAiB;QACrC,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC1C,IAAI,CAAC,KAAK;YAAE,OAAO;QAEnB,MAAM,QAAQ,GAAoB;YAChC,SAAS;YACT,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,QAAQ;YAChC,QAAQ,EAAE,KAAK;YACf,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,UAAU,EAAE,SAAS;YACrB,MAAM,EAAE,2BAA2B;SACpC,CAAC;QAEF,KAAK,CAAC,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC;QAEjC,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QAC9C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAC/B,IAAI,CAAC,UAAU,EAAE,CAAC,QAAQ,CAAC,CAAC;QAC5B,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IAC1B,CAAC;IAEO,eAAe,CAAC,OAAuB,EAAE,QAAyB;QACxE,IAAI,CAAC,IAAI,CAAC,EAAE;YAAE,OAAO;QAErB,IAAI,CAAC;YACH,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC;gBAChC,EAAE,EAAE,MAAM,EAAE;gBACZ,QAAQ,EAAE,OAAO,CAAC,QAAQ;gBAC1B,QAAQ,EAAE,OAAO,CAAC,QAAQ;gBAC1B,QAAQ,EAAE,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,UAAU,KAAK,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU;gBACrG,SAAS,EAAE,QAAQ,CAAC,SAAS;gBAC7B,UAAU,EAAE,QAAQ,CAAC,UAAU;aAChC,CAAC,CAAC,GAAG,EAAE,CAAC;QACX,CAAC;QAAC,MAAM,CAAC;YACP,wDAAwD;QAC1D,CAAC;IACH,CAAC;IAEO,wBAAwB;QAC9B,IAAI,CAAC,IAAI,CAAC,EAAE;YAAE,OAAO;QACrB,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE;iBACjB,MAAM,EAAE;iBACR,IAAI,CAAC,uBAAuB,CAAC;iBAC7B,KAAK,CAAC,EAAE,CAAC,uBAAuB,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;iBAChD,GAAG,EAAE,CAAC;YACT,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;gBACvB,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YAC7C,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,+CAA+C;QACjD,CAAC;IACH,CAAC;IAEO,wBAAwB,CAAC,SAAiB,EAAE,OAAgB;QAClE,IAAI,CAAC,IAAI,CAAC,EAAE;YAAE,OAAO;QACrB,IAAI,CAAC;YACH,IAAI,OAAO,EAAE,CAAC;gBACZ,IAAI,CAAC,EAAE;qBACJ,MAAM,CAAC,uBAAuB,CAAC;qBAC/B,MAAM,CAAC;oBACN,SAAS;oBACT,UAAU,EAAE,CAAC;oBACb,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBACpC,CAAC;qBACD,kBAAkB,CAAC;oBAClB,MAAM,EAAE,uBAAuB,CAAC,SAAS;oBACzC,GAAG,EAAE;wBACH,UAAU,EAAE,CAAC;wBACb,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;qBACpC;iBACF,CAAC;qBACD,GAAG,EAAE,CAAC;YACX,CAAC;iBAAM,CAAC;gBACN,IAAI,CAAC,EAAE;qBACJ,MAAM,CAAC,uBAAuB,CAAC;qBAC/B,KAAK,CAAC,EAAE,CAAC,uBAAuB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;qBACvD,GAAG,EAAE,CAAC;YACX,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,iEAAiE;QACnE,CAAC;IACH,CAAC;CACF"}

package/dist/security/contracts.d.ts

@@ -0,0 +1,31 @@
+export type TrustLevel = 0 | 1 | 2 | 3;
+export interface ConsentRequest {
+    actionId: string;
+    toolName: string;
+    summary: string;
+    risk: "low" | "medium" | "high";
+    createdAt: string;
+    expiresAt?: string;
+}
+export interface ConsentDecision {
+    actionId: string;
+    approved: boolean;
+    decidedAt: string;
+    decidedBy: string;
+    reason?: string;
+}
+export interface AuditRecord {
+    actionId: string;
+    sessionId: string;
+    toolName: string;
+    status: "started" | "completed" | "failed";
+    input: string;
+    output?: string;
+    timestamp: string;
+}
+export interface SecurityService {
+    requestConsent(request: ConsentRequest): Promise<ConsentDecision | null>;
+    recordAudit(record: AuditRecord): Promise<void>;
+    getTrustLevel(operatorId: string): Promise<TrustLevel>;
+}
+//# sourceMappingURL=contracts.d.ts.map

package/dist/security/contracts.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"contracts.d.ts","sourceRoot":"","sources":["../../src/security/contracts.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,UAAU,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;AAEvC,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,OAAO,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,SAAS,GAAG,WAAW,GAAG,QAAQ,CAAC;IAC3C,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,eAAe;IAC9B,cAAc,CAAC,OAAO,EAAE,cAAc,GAAG,OAAO,CAAC,eAAe,GAAG,IAAI,CAAC,CAAC;IACzE,WAAW,CAAC,MAAM,EAAE,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAChD,aAAa,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;CACxD"}

package/dist/security/contracts.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=contracts.js.map

package/dist/security/contracts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"contracts.js","sourceRoot":"","sources":["../../src/security/contracts.ts"],"names":[],"mappings":""}

package/dist/security/http-auth.d.ts

@@ -0,0 +1,10 @@
+import type { FastifyReply, FastifyRequest } from "fastify";
+export interface AuthUser {
+    id: string;
+    username: string;
+}
+export declare function extractBearerToken(headerValue: unknown): string | null;
+export declare function signAuthToken(user: AuthUser, jwtSecret: string): Promise<string>;
+export declare function verifyAuthToken(token: string, jwtSecret: string): Promise<AuthUser | null>;
+export declare function requireAuth(request: FastifyRequest, reply: FastifyReply, jwtSecret: string): Promise<AuthUser | null>;
+//# sourceMappingURL=http-auth.d.ts.map

package/dist/security/http-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-auth.d.ts","sourceRoot":"","sources":["../../src/security/http-auth.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAG5D,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;CAClB;AAMD,wBAAgB,kBAAkB,CAAC,WAAW,EAAE,OAAO,GAAG,MAAM,GAAG,IAAI,CAMtE;AAED,wBAAsB,aAAa,CACjC,IAAI,EAAE,QAAQ,EACd,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,MAAM,CAAC,CAOjB;AAED,wBAAsB,eAAe,CACnC,KAAK,EAAE,MAAM,EACb,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAU1B;AAED,wBAAsB,WAAW,CAC/B,OAAO,EAAE,cAAc,EACvB,KAAK,EAAE,YAAY,EACnB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAY1B"}

package/dist/security/http-auth.js

@@ -0,0 +1,48 @@
+import * as jose from "jose";
+function getJwtSecret(secret) {
+    return new TextEncoder().encode(secret || "jait-dev-secret-change-in-production");
+}
+export function extractBearerToken(headerValue) {
+    if (typeof headerValue !== "string")
+        return null;
+    const trimmed = headerValue.trim();
+    if (!trimmed.toLowerCase().startsWith("bearer "))
+        return null;
+    const token = trimmed.slice(7).trim();
+    return token || null;
+}
+export async function signAuthToken(user, jwtSecret) {
+    return new jose.SignJWT({ username: user.username })
+        .setProtectedHeader({ alg: "HS256", typ: "JWT" })
+        .setSubject(user.id)
+        .setIssuedAt()
+        .setExpirationTime("7d")
+        .sign(getJwtSecret(jwtSecret));
+}
+export async function verifyAuthToken(token, jwtSecret) {
+    try {
+        const { payload } = await jose.jwtVerify(token, getJwtSecret(jwtSecret));
+        const id = typeof payload.sub === "string" ? payload.sub : "";
+        const username = typeof payload.username === "string" ? payload.username : "";
+        if (!id || !username)
+            return null;
+        return { id, username };
+    }
+    catch {
+        return null;
+    }
+}
+export async function requireAuth(request, reply, jwtSecret) {
+    const token = extractBearerToken(request.headers.authorization);
+    if (!token) {
+        await reply.status(401).send({ detail: "login_required" });
+        return null;
+    }
+    const user = await verifyAuthToken(token, jwtSecret);
+    if (!user) {
+        await reply.status(401).send({ detail: "login_required" });
+        return null;
+    }
+    return user;
+}
+//# sourceMappingURL=http-auth.js.map

package/dist/security/http-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-auth.js","sourceRoot":"","sources":["../../src/security/http-auth.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,IAAI,MAAM,MAAM,CAAC;AAO7B,SAAS,YAAY,CAAC,MAAc;IAClC,OAAO,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,MAAM,IAAI,sCAAsC,CAAC,CAAC;AACpF,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,WAAoB;IACrD,IAAI,OAAO,WAAW,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC;IACjD,MAAM,OAAO,GAAG,WAAW,CAAC,IAAI,EAAE,CAAC;IACnC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,OAAO,IAAI,CAAC;IAC9D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IACtC,OAAO,KAAK,IAAI,IAAI,CAAC;AACvB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,IAAc,EACd,SAAiB;IAEjB,OAAO,IAAI,IAAI,CAAC,OAAO,CAAC,EAAE,QAAQ,EAAE,IAAI,CAAC,QAAQ,EAAE,CAAC;SACjD,kBAAkB,CAAC,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;SAChD,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;SACnB,WAAW,EAAE;SACb,iBAAiB,CAAC,IAAI,CAAC;SACvB,IAAI,CAAC,YAAY,CAAC,SAAS,CAAC,CAAC,CAAC;AACnC,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,KAAa,EACb,SAAiB;IAEjB,IAAI,CAAC;QACH,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,YAAY,CAAC,SAAS,CAAC,CAAC,CAAC;QACzE,MAAM,EAAE,GAAG,OAAO,OAAO,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9D,MAAM,QAAQ,GAAG,OAAO,OAAO,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9E,IAAI,CAAC,EAAE,IAAI,CAAC,QAAQ;YAAE,OAAO,IAAI,CAAC;QAClC,OAAO,EAAE,EAAE,EAAE,QAAQ,EAAE,CAAC;IAC1B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,OAAuB,EACvB,KAAmB,EACnB,SAAiB;IAEjB,MAAM,KAAK,GAAG,kBAAkB,CAAC,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;IAChE,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC;IACd,CAAC;IACD,MAAM,IAAI,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;IACrD,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;QAC3D,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/security/index.d.ts

@@ -0,0 +1,10 @@
+export { PathGuard, PathTraversalError, type PathGuardOptions } from "./path-guard.js";
+export { ConsentManager, type ConsentRequest, type ConsentDecision, type ConsentStatus, type ConsentManagerOptions } from "./consent-manager.js";
+export { type ToolPermission, type ConsentLevel, type ToolPermissionConfig, requiresConsent, isCommandAllowed, isPathAllowedByPermission, matchGlob } from "./tool-permissions.js";
+export { type ProfileName, getProfile, listProfiles, extendProfile } from "./tool-profiles.js";
+export { TrustEngine, type TrustState } from "./trust-engine.js";
+export { ConsentAwareExecutor, type ConsentAwareExecutorOptions, type ExecuteOptions } from "./consent-executor.js";
+export { SSRFGuard, type SSRFGuardOptions } from "./ssrf-guard.js";
+export type { TrustLevel, SecurityService, AuditRecord } from "./contracts.js";
+export { SandboxManager, type SandboxMountMode, type SandboxRunOptions, type SandboxRunResult, type SandboxBrowserOptions, type SandboxBrowserResult } from "./sandbox-manager.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/security/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/security/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,kBAAkB,EAAE,KAAK,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACvF,OAAO,EAAE,cAAc,EAAE,KAAK,cAAc,EAAE,KAAK,eAAe,EAAE,KAAK,aAAa,EAAE,KAAK,qBAAqB,EAAE,MAAM,sBAAsB,CAAC;AACjJ,OAAO,EAAE,KAAK,cAAc,EAAE,KAAK,YAAY,EAAE,KAAK,oBAAoB,EAAE,eAAe,EAAE,gBAAgB,EAAE,yBAAyB,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AACnL,OAAO,EAAE,KAAK,WAAW,EAAE,UAAU,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAC/F,OAAO,EAAE,WAAW,EAAE,KAAK,UAAU,EAAE,MAAM,mBAAmB,CAAC;AACjE,OAAO,EAAE,oBAAoB,EAAE,KAAK,2BAA2B,EAAE,KAAK,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACpH,OAAO,EAAE,SAAS,EAAE,KAAK,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnE,YAAY,EAAE,UAAU,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC/E,OAAO,EAAE,cAAc,EAAE,KAAK,gBAAgB,EAAE,KAAK,iBAAiB,EAAE,KAAK,gBAAgB,EAAE,KAAK,qBAAqB,EAAE,KAAK,oBAAoB,EAAE,MAAM,sBAAsB,CAAC"}

package/dist/security/index.js

@@ -0,0 +1,9 @@
+export { PathGuard, PathTraversalError } from "./path-guard.js";
+export { ConsentManager } from "./consent-manager.js";
+export { requiresConsent, isCommandAllowed, isPathAllowedByPermission, matchGlob } from "./tool-permissions.js";
+export { getProfile, listProfiles, extendProfile } from "./tool-profiles.js";
+export { TrustEngine } from "./trust-engine.js";
+export { ConsentAwareExecutor } from "./consent-executor.js";
+export { SSRFGuard } from "./ssrf-guard.js";
+export { SandboxManager } from "./sandbox-manager.js";
+//# sourceMappingURL=index.js.map

package/dist/security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/security/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,kBAAkB,EAAyB,MAAM,iBAAiB,CAAC;AACvF,OAAO,EAAE,cAAc,EAA6F,MAAM,sBAAsB,CAAC;AACjJ,OAAO,EAAqE,eAAe,EAAE,gBAAgB,EAAE,yBAAyB,EAAE,SAAS,EAAE,MAAM,uBAAuB,CAAC;AACnL,OAAO,EAAoB,UAAU,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAC/F,OAAO,EAAE,WAAW,EAAmB,MAAM,mBAAmB,CAAC;AACjE,OAAO,EAAE,oBAAoB,EAAyD,MAAM,uBAAuB,CAAC;AACpH,OAAO,EAAE,SAAS,EAAyB,MAAM,iBAAiB,CAAC;AAEnE,OAAO,EAAE,cAAc,EAA+H,MAAM,sBAAsB,CAAC"}

package/dist/security/path-guard.d.ts

@@ -0,0 +1,40 @@
+/**
+ * Path traversal guards — Sprint 3.9
+ *
+ * Enforces workspace boundary, blocks symlink escapes, and
+ * checks against a configurable set of denied paths.
+ */
+export interface PathGuardOptions {
+    /** Workspace root — all file ops are confined here */
+    workspaceRoot: string;
+    /** Extra denied paths (absolute or relative to workspace) */
+    deniedPaths?: string[];
+    /** Whether to resolve symlinks and verify they stay inside boundary */
+    checkSymlinks?: boolean;
+}
+export declare class PathGuard {
+    private readonly root;
+    private readonly denied;
+    private readonly checkSymlinks;
+    constructor(opts: PathGuardOptions);
+    /**
+     * Validate that `target` is within the workspace boundary.
+     * Returns the resolved absolute path if valid, throws otherwise.
+     */
+    validate(target: string): string;
+    /**
+     * Validate + resolve symlinks to ensure they don't escape.
+     * Use for file.write / file.patch where the target might be a symlink.
+     */
+    validateWithSymlinkCheck(target: string): Promise<string>;
+    /** Helper to check if a path is valid without throwing */
+    isAllowed(target: string): boolean;
+    get workspaceRoot(): string;
+}
+export declare class PathTraversalError extends Error {
+    readonly path: string;
+    readonly boundary: string;
+    readonly code: "PATH_TRAVERSAL";
+    constructor(message: string, path: string, boundary: string);
+}
+//# sourceMappingURL=path-guard.d.ts.map

package/dist/security/path-guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"path-guard.d.ts","sourceRoot":"","sources":["../../src/security/path-guard.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AA2BH,MAAM,WAAW,gBAAgB;IAC/B,sDAAsD;IACtD,aAAa,EAAE,MAAM,CAAC;IACtB,6DAA6D;IAC7D,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,uEAAuE;IACvE,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAS;IAC9B,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAW;IAClC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAU;gBAE5B,IAAI,EAAE,gBAAgB;IASlC;;;OAGG;IACH,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM;IA+ChC;;;OAGG;IACG,wBAAwB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA6B/D,0DAA0D;IAC1D,SAAS,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IASlC,IAAI,aAAa,IAAI,MAAM,CAE1B;CACF;AAED,qBAAa,kBAAmB,SAAQ,KAAK;aAIzB,IAAI,EAAE,MAAM;aACZ,QAAQ,EAAE,MAAM;IAJlC,QAAQ,CAAC,IAAI,EAAG,gBAAgB,CAAU;gBAExC,OAAO,EAAE,MAAM,EACC,IAAI,EAAE,MAAM,EACZ,QAAQ,EAAE,MAAM;CAKnC"}

package/dist/security/path-guard.js

@@ -0,0 +1,125 @@
+/**
+ * Path traversal guards — Sprint 3.9
+ *
+ * Enforces workspace boundary, blocks symlink escapes, and
+ * checks against a configurable set of denied paths.
+ */
+import { resolve, normalize, relative, sep } from "node:path";
+import { lstat } from "node:fs/promises";
+/** Paths that are ALWAYS denied regardless of workspace root */
+const GLOBAL_DENIED = Object.freeze([
+    // Windows system dirs
+    "C:\\Windows",
+    "C:\\Program Files",
+    "C:\\Program Files (x86)",
+    // Unix system dirs
+    "/etc",
+    "/usr",
+    "/bin",
+    "/sbin",
+    "/boot",
+    "/proc",
+    "/sys",
+    "/dev",
+    // Home-directory sensitive files
+    ".ssh",
+    ".gnupg",
+    ".aws",
+    ".azure",
+]);
+export class PathGuard {
+    root;
+    denied;
+    checkSymlinks;
+    constructor(opts) {
+        this.root = resolve(opts.workspaceRoot);
+        this.checkSymlinks = opts.checkSymlinks ?? true;
+        this.denied = [
+            ...GLOBAL_DENIED,
+            ...(opts.deniedPaths ?? []),
+        ];
+    }
+    /**
+     * Validate that `target` is within the workspace boundary.
+     * Returns the resolved absolute path if valid, throws otherwise.
+     */
+    validate(target) {
+        const abs = resolve(this.root, target);
+        const norm = normalize(abs);
+        // Must start with workspace root
+        const rel = relative(this.root, norm);
+        if (rel.startsWith("..") || rel.startsWith(".." + sep)) {
+            throw new PathTraversalError(`Path escapes workspace boundary: ${target}`, target, this.root);
+        }
+        // Check for null bytes (common injection vector)
+        if (target.includes("\0")) {
+            throw new PathTraversalError(`Path contains null byte: ${target}`, target, this.root);
+        }
+        // Check against denied paths
+        for (const denied of this.denied) {
+            const deniedAbs = resolve(this.root, denied);
+            if (norm === deniedAbs || norm.startsWith(deniedAbs + sep)) {
+                throw new PathTraversalError(`Access denied: path matches denied entry '${denied}'`, target, this.root);
+            }
+            // Also check if the normalized path contains the denied segment
+            if (norm.toLowerCase().startsWith(deniedAbs.toLowerCase() + sep) ||
+                norm.toLowerCase() === deniedAbs.toLowerCase()) {
+                throw new PathTraversalError(`Access denied: path matches denied entry '${denied}'`, target, this.root);
+            }
+        }
+        return norm;
+    }
+    /**
+     * Validate + resolve symlinks to ensure they don't escape.
+     * Use for file.write / file.patch where the target might be a symlink.
+     */
+    async validateWithSymlinkCheck(target) {
+        const norm = this.validate(target);
+        if (!this.checkSymlinks)
+            return norm;
+        try {
+            const stat = await lstat(norm);
+            if (stat.isSymbolicLink()) {
+                // Resolve the symlink and check that the real path is still inside boundary
+                const { realpath } = await import("node:fs/promises");
+                const real = await realpath(norm);
+                const rel = relative(this.root, real);
+                if (rel.startsWith("..") || rel.startsWith(".." + sep)) {
+                    throw new PathTraversalError(`Symlink escapes workspace boundary: ${target} -> ${real}`, target, this.root);
+                }
+            }
+        }
+        catch (err) {
+            // File doesn't exist yet — that's fine for writes
+            if (err.code === "ENOENT")
+                return norm;
+            throw err;
+        }
+        return norm;
+    }
+    /** Helper to check if a path is valid without throwing */
+    isAllowed(target) {
+        try {
+            this.validate(target);
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    get workspaceRoot() {
+        return this.root;
+    }
+}
+export class PathTraversalError extends Error {
+    path;
+    boundary;
+    code = "PATH_TRAVERSAL";
+    constructor(message, path, boundary) {
+        super(message);
+        this.path = path;
+        this.boundary = boundary;
+        this.name = "PathTraversalError";
+    }
+}
+//# sourceMappingURL=path-guard.js.map

package/dist/security/path-guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"path-guard.js","sourceRoot":"","sources":["../../src/security/path-guard.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,EAAE,MAAM,WAAW,CAAC;AAC9D,OAAO,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAC;AAEzC,gEAAgE;AAChE,MAAM,aAAa,GAAsB,MAAM,CAAC,MAAM,CAAC;IACrD,sBAAsB;IACtB,aAAa;IACb,mBAAmB;IACnB,yBAAyB;IACzB,mBAAmB;IACnB,MAAM;IACN,MAAM;IACN,MAAM;IACN,OAAO;IACP,OAAO;IACP,OAAO;IACP,MAAM;IACN,MAAM;IACN,iCAAiC;IACjC,MAAM;IACN,QAAQ;IACR,MAAM;IACN,QAAQ;CACT,CAAC,CAAC;AAWH,MAAM,OAAO,SAAS;IACH,IAAI,CAAS;IACb,MAAM,CAAW;IACjB,aAAa,CAAU;IAExC,YAAY,IAAsB;QAChC,IAAI,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QACxC,IAAI,CAAC,aAAa,GAAG,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC;QAChD,IAAI,CAAC,MAAM,GAAG;YACZ,GAAG,aAAa;YAChB,GAAG,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC;SAC5B,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,QAAQ,CAAC,MAAc;QACrB,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QACvC,MAAM,IAAI,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;QAE5B,iCAAiC;QACjC,MAAM,GAAG,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QACtC,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,GAAG,GAAG,CAAC,EAAE,CAAC;YACvD,MAAM,IAAI,kBAAkB,CAC1B,oCAAoC,MAAM,EAAE,EAC5C,MAAM,EACN,IAAI,CAAC,IAAI,CACV,CAAC;QACJ,CAAC;QAED,iDAAiD;QACjD,IAAI,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1B,MAAM,IAAI,kBAAkB,CAC1B,4BAA4B,MAAM,EAAE,EACpC,MAAM,EACN,IAAI,CAAC,IAAI,CACV,CAAC;QACJ,CAAC;QAED,6BAA6B;QAC7B,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YACjC,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YAC7C,IAAI,IAAI,KAAK,SAAS,IAAI,IAAI,CAAC,UAAU,CAAC,SAAS,GAAG,GAAG,CAAC,EAAE,CAAC;gBAC3D,MAAM,IAAI,kBAAkB,CAC1B,6CAA6C,MAAM,GAAG,EACtD,MAAM,EACN,IAAI,CAAC,IAAI,CACV,CAAC;YACJ,CAAC;YACD,gEAAgE;YAChE,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,WAAW,EAAE,GAAG,GAAG,CAAC;gBAC5D,IAAI,CAAC,WAAW,EAAE,KAAK,SAAS,CAAC,WAAW,EAAE,EAAE,CAAC;gBACnD,MAAM,IAAI,kBAAkB,CAC1B,6CAA6C,MAAM,GAAG,EACtD,MAAM,EACN,IAAI,CAAC,IAAI,CACV,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,wBAAwB,CAAC,MAAc;QAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QAEnC,IAAI,CAAC,IAAI,CAAC,aAAa;YAAE,OAAO,IAAI,CAAC;QAErC,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,CAAC;YAC/B,IAAI,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC;gBAC1B,4EAA4E;gBAC5E,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,MAAM,CAAC,kBAAkB,CAAC,CAAC;gBACtD,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAC,CAAC;gBAClC,MAAM,GAAG,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;gBACtC,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,GAAG,GAAG,CAAC,EAAE,CAAC;oBACvD,MAAM,IAAI,kBAAkB,CAC1B,uCAAuC,MAAM,OAAO,IAAI,EAAE,EAC1D,MAAM,EACN,IAAI,CAAC,IAAI,CACV,CAAC;gBACJ,CAAC;YACH,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,kDAAkD;YAClD,IAAK,GAA6B,CAAC,IAAI,KAAK,QAAQ;gBAAE,OAAO,IAAI,CAAC;YAClE,MAAM,GAAG,CAAC;QACZ,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED,0DAA0D;IAC1D,SAAS,CAAC,MAAc;QACtB,IAAI,CAAC;YACH,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YACtB,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,IAAI,aAAa;QACf,OAAO,IAAI,CAAC,IAAI,CAAC;IACnB,CAAC;CACF;AAED,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAIzB;IACA;IAJT,IAAI,GAAG,gBAAyB,CAAC;IAC1C,YACE,OAAe,EACC,IAAY,EACZ,QAAgB;QAEhC,KAAK,CAAC,OAAO,CAAC,CAAC;QAHC,SAAI,GAAJ,IAAI,CAAQ;QACZ,aAAQ,GAAR,QAAQ,CAAQ;QAGhC,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;IACnC,CAAC;CACF"}

package/dist/security/sandbox-manager.d.ts

@@ -0,0 +1,43 @@
+export type SandboxMountMode = "none" | "read-only" | "read-write";
+export interface SandboxRunOptions {
+    command: string;
+    workspaceRoot: string;
+    timeoutMs: number;
+    mountMode?: SandboxMountMode;
+    networkEnabled?: boolean;
+    memoryLimitMb?: number;
+    cpuLimit?: string;
+}
+export interface SandboxRunResult {
+    ok: boolean;
+    output: string;
+    exitCode: number | null;
+    timedOut: boolean;
+    containerName: string;
+}
+export interface SandboxBrowserOptions {
+    workspaceRoot: string;
+    novncPort?: number;
+    vncPort?: number;
+    mountMode?: SandboxMountMode;
+}
+export interface SandboxBrowserResult {
+    containerName: string;
+    novncUrl: string;
+    vncPort: number;
+    novncPort: number;
+}
+interface ProcessResult {
+    output: string;
+    exitCode: number | null;
+    timedOut: boolean;
+}
+export declare class SandboxManager {
+    private readonly runProcess;
+    constructor(runProcess?: (cmd: string[], timeoutMs: number) => Promise<ProcessResult>);
+    runCommand(options: SandboxRunOptions): Promise<SandboxRunResult>;
+    startBrowserSandbox(options: SandboxBrowserOptions): Promise<SandboxBrowserResult>;
+    private buildMountArgs;
+}
+export {};
+//# sourceMappingURL=sandbox-manager.d.ts.map

package/dist/security/sandbox-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sandbox-manager.d.ts","sourceRoot":"","sources":["../../src/security/sandbox-manager.ts"],"names":[],"mappings":"AAIA,MAAM,MAAM,gBAAgB,GAAG,MAAM,GAAG,WAAW,GAAG,YAAY,CAAC;AAEnE,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,MAAM,CAAC;IAChB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,gBAAgB,CAAC;IAC7B,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,OAAO,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,QAAQ,EAAE,OAAO,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,qBAAqB;IACpC,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,gBAAgB,CAAC;CAC9B;AAED,MAAM,WAAW,oBAAoB;IACnC,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,UAAU,aAAa;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,QAAQ,EAAE,OAAO,CAAC;CACnB;AAED,qBAAa,cAAc;IAEvB,OAAO,CAAC,QAAQ,CAAC,UAAU;gBAAV,UAAU,GAAE,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE,SAAS,EAAE,MAAM,KAAK,OAAO,CAAC,aAAa,CAAoB;IAGxG,UAAU,CAAC,OAAO,EAAE,iBAAiB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IAuCjE,mBAAmB,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,oBAAoB,CAAC;IAqCxF,OAAO,CAAC,cAAc;CAMvB"}