@jterrats/open-orchestra 1.0.17 → 1.0.18

package/dist/security/public-api-auth.d.ts

@@ -0,0 +1,20 @@
+import type http from "node:http";
+import type { ChatScope } from "../types/chat.js";
+export declare const PUBLIC_LOCAL_DEV_USER_ID_HEADER = "x-orchestra-user-id";
+export interface PublicApiPrincipal {
+    id: string;
+    displayName: string;
+    source: "local_dev_header";
+}
+export interface PublicApiAuthContext {
+    requestId: string;
+    principal: PublicApiPrincipal;
+    scope: ChatScope;
+    rateLimitKey: string;
+}
+export declare function authenticatePublicApiRequest(input: {
+    request: http.IncomingMessage;
+    requestId: string;
+    workspaceKey: string;
+}): PublicApiAuthContext;
+export declare function workspaceKeyForRoot(root: string): string;

package/dist/security/public-api-auth.js

@@ -0,0 +1,55 @@
+import { createHash } from "node:crypto";
+import { ChatApiError } from "../chat-api-errors.js";
+export const PUBLIC_LOCAL_DEV_USER_ID_HEADER = "x-orchestra-user-id";
+const PUBLIC_LOCAL_DEV_USER_NAME_HEADER = "x-orchestra-user-name";
+const MAX_PRINCIPAL_ID_LENGTH = 128;
+const MAX_DISPLAY_NAME_LENGTH = 160;
+export function authenticatePublicApiRequest(input) {
+    const principalId = boundedHeaderValue(input.request.headers[PUBLIC_LOCAL_DEV_USER_ID_HEADER], PUBLIC_LOCAL_DEV_USER_ID_HEADER, input.requestId, MAX_PRINCIPAL_ID_LENGTH);
+    if (!principalId) {
+        throw new ChatApiError("unauthorized", "authentication is required", 401, input.requestId);
+    }
+    const displayName = boundedHeaderValue(input.request.headers[PUBLIC_LOCAL_DEV_USER_NAME_HEADER], PUBLIC_LOCAL_DEV_USER_NAME_HEADER, input.requestId, MAX_DISPLAY_NAME_LENGTH) ?? principalId;
+    return {
+        requestId: input.requestId,
+        principal: {
+            id: principalId,
+            displayName,
+            source: "local_dev_header",
+        },
+        scope: publicScope(input.workspaceKey, principalId),
+        rateLimitKey: `${input.workspaceKey}:${principalId}`,
+    };
+}
+export function workspaceKeyForRoot(root) {
+    return createHash("sha256").update(root).digest("hex").slice(0, 16);
+}
+function publicScope(workspaceKey, principalId) {
+    const principalKey = createHash("sha256")
+        .update(principalId)
+        .digest("hex")
+        .slice(0, 16);
+    return {
+        tenantId: `workspace:${workspaceKey}`,
+        workspaceId: workspaceKey,
+        taskId: `public-chat:${principalKey}`,
+        runId: "api-v1",
+        phase: "api",
+        sessionId: principalKey,
+    };
+}
+function boundedHeaderValue(value, field, requestId, maxLength) {
+    if (Array.isArray(value)) {
+        throw new ChatApiError("invalid_request", `${field} header must have a single value`, 400, requestId);
+    }
+    if (typeof value !== "string")
+        return undefined;
+    const normalized = value.trim();
+    if (!normalized)
+        return undefined;
+    if (normalized.length > maxLength) {
+        throw new ChatApiError("invalid_request", `${field} header is too long`, 400, requestId);
+    }
+    return normalized;
+}
+//# sourceMappingURL=public-api-auth.js.map

package/dist/security/public-api-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"public-api-auth.js","sourceRoot":"","sources":["../../src/security/public-api-auth.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAGrD,MAAM,CAAC,MAAM,+BAA+B,GAAG,qBAAqB,CAAC;AACrE,MAAM,iCAAiC,GAAG,uBAAuB,CAAC;AAClE,MAAM,uBAAuB,GAAG,GAAG,CAAC;AACpC,MAAM,uBAAuB,GAAG,GAAG,CAAC;AAepC,MAAM,UAAU,4BAA4B,CAAC,KAI5C;IACC,MAAM,WAAW,GAAG,kBAAkB,CACpC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,+BAA+B,CAAC,EACtD,+BAA+B,EAC/B,KAAK,CAAC,SAAS,EACf,uBAAuB,CACxB,CAAC;IACF,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,MAAM,IAAI,YAAY,CACpB,cAAc,EACd,4BAA4B,EAC5B,GAAG,EACH,KAAK,CAAC,SAAS,CAChB,CAAC;IACJ,CAAC;IACD,MAAM,WAAW,GACf,kBAAkB,CAChB,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,iCAAiC,CAAC,EACxD,iCAAiC,EACjC,KAAK,CAAC,SAAS,EACf,uBAAuB,CACxB,IAAI,WAAW,CAAC;IACnB,OAAO;QACL,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,SAAS,EAAE;YACT,EAAE,EAAE,WAAW;YACf,WAAW;YACX,MAAM,EAAE,kBAAkB;SAC3B;QACD,KAAK,EAAE,WAAW,CAAC,KAAK,CAAC,YAAY,EAAE,WAAW,CAAC;QACnD,YAAY,EAAE,GAAG,KAAK,CAAC,YAAY,IAAI,WAAW,EAAE;KACrD,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,IAAY;IAC9C,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;AACtE,CAAC;AAED,SAAS,WAAW,CAAC,YAAoB,EAAE,WAAmB;IAC5D,MAAM,YAAY,GAAG,UAAU,CAAC,QAAQ,CAAC;SACtC,MAAM,CAAC,WAAW,CAAC;SACnB,MAAM,CAAC,KAAK,CAAC;SACb,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAChB,OAAO;QACL,QAAQ,EAAE,aAAa,YAAY,EAAE;QACrC,WAAW,EAAE,YAAY;QACzB,MAAM,EAAE,eAAe,YAAY,EAAE;QACrC,KAAK,EAAE,QAAQ;QACf,KAAK,EAAE,KAAK;QACZ,SAAS,EAAE,YAAY;KACxB,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CACzB,KAAoC,EACpC,KAAa,EACb,SAAiB,EACjB,SAAiB;IAEjB,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,YAAY,CACpB,iBAAiB,EACjB,GAAG,KAAK,kCAAkC,EAC1C,GAAG,EACH,SAAS,CACV,CAAC;IACJ,CAAC;IACD,IAAI,OAAO,KAAK,KAAK,QAAQ;QAAE,OAAO,SAAS,CAAC;IAChD,MAAM,UAAU,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAChC,IAAI,CAAC,UAAU;QAAE,OAAO,SAAS,CAAC;IAClC,IAAI,UAAU,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;QAClC,MAAM,IAAI,YAAY,CACpB,iBAAiB,EACjB,GAAG,KAAK,qBAAqB,EAC7B,GAAG,EACH,SAAS,CACV,CAAC;IACJ,CAAC;IACD,OAAO,UAAU,CAAC;AACpB,CAAC"}

package/dist/security/public-api-policy.d.ts

@@ -0,0 +1,8 @@
+export interface PublicApiAdmission {
+    release: () => void;
+}
+export declare function admitPublicApiRequest(input: {
+    key: string;
+    requestId: string;
+    now?: number;
+}): PublicApiAdmission;

package/dist/security/public-api-policy.js

@@ -0,0 +1,40 @@
+import { ChatApiError } from "../chat-api-errors.js";
+const RATE_LIMIT_WINDOW_MS = 60_000;
+const RATE_LIMIT_MAX_REQUESTS = 60;
+const MAX_CONCURRENT_REQUESTS = 4;
+const buckets = new Map();
+export function admitPublicApiRequest(input) {
+    const now = input.now ?? Date.now();
+    const bucket = activeBucket(input.key, now);
+    if (bucket.requestCount >= RATE_LIMIT_MAX_REQUESTS) {
+        throw new ChatApiError("rate_limited", "rate limit exceeded", 429, input.requestId, true);
+    }
+    if (bucket.activeRequests >= MAX_CONCURRENT_REQUESTS) {
+        throw new ChatApiError("rate_limited", "too many concurrent requests", 429, input.requestId, true);
+    }
+    bucket.requestCount += 1;
+    bucket.activeRequests += 1;
+    let isReleased = false;
+    return {
+        release: () => {
+            if (isReleased)
+                return;
+            isReleased = true;
+            bucket.activeRequests = Math.max(0, bucket.activeRequests - 1);
+        },
+    };
+}
+function activeBucket(key, now) {
+    const existing = buckets.get(key);
+    if (existing && now - existing.windowStartedAt < RATE_LIMIT_WINDOW_MS) {
+        return existing;
+    }
+    const created = {
+        windowStartedAt: now,
+        requestCount: 0,
+        activeRequests: 0,
+    };
+    buckets.set(key, created);
+    return created;
+}
+//# sourceMappingURL=public-api-policy.js.map

package/dist/security/public-api-policy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"public-api-policy.js","sourceRoot":"","sources":["../../src/security/public-api-policy.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAErD,MAAM,oBAAoB,GAAG,MAAM,CAAC;AACpC,MAAM,uBAAuB,GAAG,EAAE,CAAC;AACnC,MAAM,uBAAuB,GAAG,CAAC,CAAC;AAQlC,MAAM,OAAO,GAAG,IAAI,GAAG,EAAwB,CAAC;AAMhD,MAAM,UAAU,qBAAqB,CAAC,KAIrC;IACC,MAAM,GAAG,GAAG,KAAK,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC;IACpC,MAAM,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IAC5C,IAAI,MAAM,CAAC,YAAY,IAAI,uBAAuB,EAAE,CAAC;QACnD,MAAM,IAAI,YAAY,CACpB,cAAc,EACd,qBAAqB,EACrB,GAAG,EACH,KAAK,CAAC,SAAS,EACf,IAAI,CACL,CAAC;IACJ,CAAC;IACD,IAAI,MAAM,CAAC,cAAc,IAAI,uBAAuB,EAAE,CAAC;QACrD,MAAM,IAAI,YAAY,CACpB,cAAc,EACd,8BAA8B,EAC9B,GAAG,EACH,KAAK,CAAC,SAAS,EACf,IAAI,CACL,CAAC;IACJ,CAAC;IACD,MAAM,CAAC,YAAY,IAAI,CAAC,CAAC;IACzB,MAAM,CAAC,cAAc,IAAI,CAAC,CAAC;IAC3B,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,OAAO;QACL,OAAO,EAAE,GAAG,EAAE;YACZ,IAAI,UAAU;gBAAE,OAAO;YACvB,UAAU,GAAG,IAAI,CAAC;YAClB,MAAM,CAAC,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,cAAc,GAAG,CAAC,CAAC,CAAC;QACjE,CAAC;KACF,CAAC;AACJ,CAAC;AAED,SAAS,YAAY,CAAC,GAAW,EAAE,GAAW;IAC5C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAClC,IAAI,QAAQ,IAAI,GAAG,GAAG,QAAQ,CAAC,eAAe,GAAG,oBAAoB,EAAE,CAAC;QACtE,OAAO,QAAQ,CAAC;IAClB,CAAC;IACD,MAAM,OAAO,GAAiB;QAC5B,eAAe,EAAE,GAAG;QACpB,YAAY,EAAE,CAAC;QACf,cAAc,EAAE,CAAC;KAClB,CAAC;IACF,OAAO,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAC1B,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/dist/security/redaction.js

@@ -1,7 +1,19 @@
+import { hasPaymentCardLikeValue, redactPaymentCardLikeValues, } from "./payment-card-detection.js";
 const secretReplacement = "[REDACTED_SECRET]";
+const piiReplacement = "[REDACTED_PII]";
 const bearerPattern = /\bbearer\s+[a-z0-9._-]{12,}/gi;
 const assignmentPattern = /\b(api[_-]?key|password|secret|token)(\s*[:=]\s*)[^\s"']{12,}/gi;
 const secretPatterns = [bearerPattern, assignmentPattern];
+const emailPattern = /\b[a-z0-9._%+-]+@[a-z0-9.-]+[.][a-z]{2,}\b/gi;
+const phonePattern = /(?:\+?1[\s.-]?)?(?:[(]\d{3}[)]|\b\d{3})[\s.-]?\d{3}[\s.-]?\d{4}\b/g;
+const ssnPattern = /\b\d{3}-\d{2}-\d{4}\b/g;
+const paymentCardPattern = /\b(?:\d[ -]?){13,19}\b/g;
+const piiPatterns = [
+    emailPattern,
+    phonePattern,
+    ssnPattern,
+    paymentCardPattern,
+];
 export function redactPromptSegments(segments) {
     const redactedSegments = segments.map(redactPromptSegment);
     const status = reportStatus(redactedSegments);
@@ -12,36 +24,55 @@ export function redactPromptSegments(segments) {
     };
 }
 export function redactPromptSegment(segment) {
-    const secretFindings = segment.classification.findings.filter((finding) => finding.kind === "secretShaped");
-    const redactedText = redactSecrets(segment.text);
+    const restrictedFindings = segment.classification.findings.filter((finding) => finding.kind === "secretShaped" || finding.kind.startsWith("pii"));
+    const redactedText = redactRestrictedValues(segment.text);
     const wasRedacted = redactedText !== segment.text;
-    const hasRemainingSecret = secretPatterns.some((pattern) => {
-        pattern.lastIndex = 0;
-        return pattern.test(redactedText);
-    });
+    const hasRemainingRestrictedValue = hasRestrictedValue(redactedText);
     return {
         id: segment.id,
         text: redactedText,
-        status: redactionStatus(secretFindings.length, wasRedacted, hasRemainingSecret),
-        redactedFindings: wasRedacted ? ["secretShaped"] : [],
+        status: redactionStatus(restrictedFindings.length, wasRedacted, hasRemainingRestrictedValue),
+        redactedFindings: wasRedacted
+            ? uniqueFindingKinds(restrictedFindings.map((finding) => finding.kind))
+            : [],
     };
 }
-function redactSecrets(text) {
-    return text
+function redactRestrictedValues(text) {
+    const secretRedacted = text
         .replace(bearerPattern, secretReplacement)
         .replace(assignmentPattern, (_match, label, separator) => {
         return `${label}${separator}${secretReplacement}`;
     });
+    return secretRedacted
+        .replace(emailPattern, piiReplacement)
+        .replace(phonePattern, piiReplacement)
+        .replace(ssnPattern, piiReplacement)
+        .replace(paymentCardPattern, (match) => redactPaymentCardLikeValues(match, piiReplacement));
 }
-function redactionStatus(secretFindingCount, wasRedacted, hasRemainingSecret) {
-    if (hasRemainingSecret)
+function redactionStatus(restrictedFindingCount, wasRedacted, hasRemainingRestrictedValue) {
+    if (hasRemainingRestrictedValue)
         return "unsafeUnredacted";
     if (wasRedacted)
         return "redacted";
-    if (secretFindingCount > 0)
+    if (restrictedFindingCount > 0)
         return "unsafeUnredacted";
     return "notRequired";
 }
+function hasRestrictedValue(text) {
+    return [...secretPatterns, ...piiPatterns].some((pattern) => {
+        pattern.lastIndex = 0;
+        if (pattern === paymentCardPattern) {
+            return paymentCardPattern.test(text) && hasPaymentCard(text);
+        }
+        return pattern.test(text);
+    });
+}
+function hasPaymentCard(text) {
+    return hasPaymentCardLikeValue(text);
+}
+function uniqueFindingKinds(findings) {
+    return [...new Set(findings)];
+}
 function reportStatus(segments) {
     if (segments.some((segment) => segment.status === "unsafeUnredacted")) {
         return "unsafeUnredacted";

package/dist/security/redaction.js.map

@@ -1 +1 @@
-{"version":3,"file":"redaction.js","sourceRoot":"","sources":["../../src/security/redaction.ts"],"names":[],"mappings":"AAQA,MAAM,iBAAiB,GAAG,mBAAmB,CAAC;AAC9C,MAAM,aAAa,GAAG,+BAA+B,CAAC;AACtD,MAAM,iBAAiB,GACrB,iEAAiE,CAAC;AACpE,MAAM,cAAc,GAAG,CAAC,aAAa,EAAE,iBAAiB,CAAU,CAAC;AAEnE,MAAM,UAAU,oBAAoB,CAClC,QAAyB;IAEzB,MAAM,gBAAgB,GAAG,QAAQ,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;IAC3D,MAAM,MAAM,GAAG,YAAY,CAAC,gBAAgB,CAAC,CAAC;IAC9C,OAAO;QACL,MAAM;QACN,gBAAgB;QAChB,gBAAgB,EAAE,gBAAgB,CAAC,gBAAgB,EAAE,MAAM,CAAC;KAC7D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,OAAsB;IACxD,MAAM,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAC3D,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,KAAK,cAAc,CAC7C,CAAC;IACF,MAAM,YAAY,GAAG,aAAa,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IACjD,MAAM,WAAW,GAAG,YAAY,KAAK,OAAO,CAAC,IAAI,CAAC;IAClD,MAAM,kBAAkB,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE;QACzD,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;QACtB,OAAO,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACpC,CAAC,CAAC,CAAC;IACH,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE;QACd,IAAI,EAAE,YAAY;QAClB,MAAM,EAAE,eAAe,CACrB,cAAc,CAAC,MAAM,EACrB,WAAW,EACX,kBAAkB,CACnB;QACD,gBAAgB,EAAE,WAAW,CAAC,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,EAAE;KACtD,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CAAC,IAAY;IACjC,OAAO,IAAI;SACR,OAAO,CAAC,aAAa,EAAE,iBAAiB,CAAC;SACzC,OAAO,CAAC,iBAAiB,EAAE,CAAC,MAAM,EAAE,KAAa,EAAE,SAAiB,EAAE,EAAE;QACvE,OAAO,GAAG,KAAK,GAAG,SAAS,GAAG,iBAAiB,EAAE,CAAC;IACpD,CAAC,CAAC,CAAC;AACP,CAAC;AAED,SAAS,eAAe,CACtB,kBAA0B,EAC1B,WAAoB,EACpB,kBAA2B;IAE3B,IAAI,kBAAkB;QAAE,OAAO,kBAAkB,CAAC;IAClD,IAAI,WAAW;QAAE,OAAO,UAAU,CAAC;IACnC,IAAI,kBAAkB,GAAG,CAAC;QAAE,OAAO,kBAAkB,CAAC;IACtD,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,SAAS,YAAY,CAAC,QAA2B;IAC/C,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,KAAK,kBAAkB,CAAC,EAAE,CAAC;QACtE,OAAO,kBAAkB,CAAC;IAC5B,CAAC;IACD,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,KAAK,UAAU,CAAC,EAAE,CAAC;QAC9D,OAAO,UAAU,CAAC;IACpB,CAAC;IACD,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,SAAS,gBAAgB,CACvB,QAA2B,EAC3B,MAAuB;IAEvB,IAAI,MAAM,KAAK,aAAa;QAAE,OAAO,CAAC,+BAA+B,CAAC,CAAC;IACvE,OAAO,QAAQ;SACZ,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC;SACxD,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,EAAE,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC;AAC7E,CAAC;AAED,SAAS,eAAe,CACtB,SAAiB,EACjB,QAA8B;IAE9B,OAAO,WAAW,SAAS,aAAa,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;AAChE,CAAC"}
+{"version":3,"file":"redaction.js","sourceRoot":"","sources":["../../src/security/redaction.ts"],"names":[],"mappings":"AAOA,OAAO,EACL,uBAAuB,EACvB,2BAA2B,GAC5B,MAAM,6BAA6B,CAAC;AAErC,MAAM,iBAAiB,GAAG,mBAAmB,CAAC;AAC9C,MAAM,cAAc,GAAG,gBAAgB,CAAC;AACxC,MAAM,aAAa,GAAG,+BAA+B,CAAC;AACtD,MAAM,iBAAiB,GACrB,iEAAiE,CAAC;AACpE,MAAM,cAAc,GAAG,CAAC,aAAa,EAAE,iBAAiB,CAAU,CAAC;AACnE,MAAM,YAAY,GAAG,8CAA8C,CAAC;AACpE,MAAM,YAAY,GAChB,oEAAoE,CAAC;AACvE,MAAM,UAAU,GAAG,wBAAwB,CAAC;AAC5C,MAAM,kBAAkB,GAAG,yBAAyB,CAAC;AACrD,MAAM,WAAW,GAAG;IAClB,YAAY;IACZ,YAAY;IACZ,UAAU;IACV,kBAAkB;CACV,CAAC;AAEX,MAAM,UAAU,oBAAoB,CAClC,QAAyB;IAEzB,MAAM,gBAAgB,GAAG,QAAQ,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;IAC3D,MAAM,MAAM,GAAG,YAAY,CAAC,gBAAgB,CAAC,CAAC;IAC9C,OAAO;QACL,MAAM;QACN,gBAAgB;QAChB,gBAAgB,EAAE,gBAAgB,CAAC,gBAAgB,EAAE,MAAM,CAAC;KAC7D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,OAAsB;IACxD,MAAM,kBAAkB,GAAG,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAC/D,CAAC,OAAO,EAAE,EAAE,CACV,OAAO,CAAC,IAAI,KAAK,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CACpE,CAAC;IACF,MAAM,YAAY,GAAG,sBAAsB,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IAC1D,MAAM,WAAW,GAAG,YAAY,KAAK,OAAO,CAAC,IAAI,CAAC;IAClD,MAAM,2BAA2B,GAAG,kBAAkB,CAAC,YAAY,CAAC,CAAC;IACrE,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE;QACd,IAAI,EAAE,YAAY;QAClB,MAAM,EAAE,eAAe,CACrB,kBAAkB,CAAC,MAAM,EACzB,WAAW,EACX,2BAA2B,CAC5B;QACD,gBAAgB,EAAE,WAAW;YAC3B,CAAC,CAAC,kBAAkB,CAAC,kBAAkB,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YACvE,CAAC,CAAC,EAAE;KACP,CAAC;AACJ,CAAC;AAED,SAAS,sBAAsB,CAAC,IAAY;IAC1C,MAAM,cAAc,GAAG,IAAI;SACxB,OAAO,CAAC,aAAa,EAAE,iBAAiB,CAAC;SACzC,OAAO,CAAC,iBAAiB,EAAE,CAAC,MAAM,EAAE,KAAa,EAAE,SAAiB,EAAE,EAAE;QACvE,OAAO,GAAG,KAAK,GAAG,SAAS,GAAG,iBAAiB,EAAE,CAAC;IACpD,CAAC,CAAC,CAAC;IACL,OAAO,cAAc;SAClB,OAAO,CAAC,YAAY,EAAE,cAAc,CAAC;SACrC,OAAO,CAAC,YAAY,EAAE,cAAc,CAAC;SACrC,OAAO,CAAC,UAAU,EAAE,cAAc,CAAC;SACnC,OAAO,CAAC,kBAAkB,EAAE,CAAC,KAAK,EAAE,EAAE,CACrC,2BAA2B,CAAC,KAAK,EAAE,cAAc,CAAC,CACnD,CAAC;AACN,CAAC;AAED,SAAS,eAAe,CACtB,sBAA8B,EAC9B,WAAoB,EACpB,2BAAoC;IAEpC,IAAI,2BAA2B;QAAE,OAAO,kBAAkB,CAAC;IAC3D,IAAI,WAAW;QAAE,OAAO,UAAU,CAAC;IACnC,IAAI,sBAAsB,GAAG,CAAC;QAAE,OAAO,kBAAkB,CAAC;IAC1D,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAY;IACtC,OAAO,CAAC,GAAG,cAAc,EAAE,GAAG,WAAW,CAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE;QAC1D,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;QACtB,IAAI,OAAO,KAAK,kBAAkB,EAAE,CAAC;YACnC,OAAO,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,cAAc,CAAC,IAAI,CAAC,CAAC;QAC/D,CAAC;QACD,OAAO,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC5B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,cAAc,CAAC,IAAY;IAClC,OAAO,uBAAuB,CAAC,IAAI,CAAC,CAAC;AACvC,CAAC;AAED,SAAS,kBAAkB,CACzB,QAA8B;IAE9B,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC;AAChC,CAAC;AAED,SAAS,YAAY,CAAC,QAA2B;IAC/C,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,KAAK,kBAAkB,CAAC,EAAE,CAAC;QACtE,OAAO,kBAAkB,CAAC;IAC5B,CAAC;IACD,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,MAAM,KAAK,UAAU,CAAC,EAAE,CAAC;QAC9D,OAAO,UAAU,CAAC;IACpB,CAAC;IACD,OAAO,aAAa,CAAC;AACvB,CAAC;AAED,SAAS,gBAAgB,CACvB,QAA2B,EAC3B,MAAuB;IAEvB,IAAI,MAAM,KAAK,aAAa;QAAE,OAAO,CAAC,+BAA+B,CAAC,CAAC;IACvE,OAAO,QAAQ;SACZ,MAAM,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC;SACxD,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,EAAE,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC;AAC7E,CAAC;AAED,SAAS,eAAe,CACtB,SAAiB,EACjB,QAA8B;IAE9B,OAAO,WAAW,SAAS,aAAa,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;AAChE,CAAC"}

package/dist/security/restricted-content-quarantine.d.ts

@@ -0,0 +1,17 @@
+import type { RestrictedDataBoundary } from "../types/restricted-data.js";
+export interface RestrictedIngressField {
+    name: string;
+    text: string;
+}
+export interface RestrictedIngressQuarantineRequest {
+    root: string;
+    requestId: string;
+    boundary: RestrictedDataBoundary;
+    fields: RestrictedIngressField[];
+    actorId?: string;
+    tenantId?: string;
+    workspaceId?: string;
+    taskId?: string;
+    threadId?: string;
+}
+export declare function enforceRestrictedIngressQuarantine(request: RestrictedIngressQuarantineRequest): Promise<void>;

package/dist/security/restricted-content-quarantine.js

@@ -0,0 +1,50 @@
+import { ChatApiError } from "../chat-api-errors.js";
+import { appendEvent } from "../workspace.js";
+import { classifyRestrictedData, evaluateRestrictedBoundaryPolicy, } from "./restricted-data-classifier.js";
+export async function enforceRestrictedIngressQuarantine(request) {
+    const classification = classifyRestrictedFields(request.fields);
+    const decision = evaluateRestrictedBoundaryPolicy({
+        requestId: request.requestId,
+        boundary: request.boundary,
+        classification,
+    });
+    if (decision.outcome !== "block")
+        return;
+    await recordRestrictedIngressBlocked(request, decision);
+    throw new ChatApiError("policy_blocked", "request was blocked by policy", 403, request.requestId);
+}
+function classifyRestrictedFields(fields) {
+    const classifications = fields
+        .map((field) => classifyRestrictedData(field.text))
+        .filter((classification) => classification.hasRestrictedData);
+    return {
+        hasRestrictedData: classifications.length > 0,
+        findings: classifications.flatMap((classification) => classification.findings),
+        redactedText: "",
+        redactionCount: classifications.reduce((total, classification) => total + classification.redactionCount, 0),
+    };
+}
+async function recordRestrictedIngressBlocked(request, decision) {
+    await appendEvent(request.root, {
+        type: "RESTRICTED_INGRESS_BLOCKED",
+        actor: request.actorId ?? "api",
+        summary: decision.auditSummary,
+        ...(request.taskId ? { taskId: request.taskId } : {}),
+        metadata: {
+            requestId: request.requestId,
+            decisionId: decision.decisionId,
+            boundary: decision.boundary,
+            categories: decision.categories,
+            recommendations: decision.recommendations,
+            redactionCount: decision.redactionCount,
+            providerEgress: decision.providerEgress,
+            rawPersistence: decision.rawPersistence,
+            sanitizedReasons: decision.sanitizedReasons,
+            fieldNames: request.fields.map((field) => field.name),
+            ...(request.tenantId ? { tenantId: request.tenantId } : {}),
+            ...(request.workspaceId ? { workspaceId: request.workspaceId } : {}),
+            ...(request.threadId ? { threadId: request.threadId } : {}),
+        },
+    });
+}
+//# sourceMappingURL=restricted-content-quarantine.js.map

package/dist/security/restricted-content-quarantine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"restricted-content-quarantine.js","sourceRoot":"","sources":["../../src/security/restricted-content-quarantine.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AACrD,OAAO,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAC9C,OAAO,EACL,sBAAsB,EACtB,gCAAgC,GACjC,MAAM,iCAAiC,CAAC;AAwBzC,MAAM,CAAC,KAAK,UAAU,kCAAkC,CACtD,OAA2C;IAE3C,MAAM,cAAc,GAAG,wBAAwB,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAChE,MAAM,QAAQ,GAAG,gCAAgC,CAAC;QAChD,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,cAAc;KACf,CAAC,CAAC;IACH,IAAI,QAAQ,CAAC,OAAO,KAAK,OAAO;QAAE,OAAO;IACzC,MAAM,8BAA8B,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACxD,MAAM,IAAI,YAAY,CACpB,gBAAgB,EAChB,+BAA+B,EAC/B,GAAG,EACH,OAAO,CAAC,SAAS,CAClB,CAAC;AACJ,CAAC;AAED,SAAS,wBAAwB,CAC/B,MAAgC;IAEhC,MAAM,eAAe,GAAG,MAAM;SAC3B,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,sBAAsB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;SAClD,MAAM,CAAC,CAAC,cAAc,EAAE,EAAE,CAAC,cAAc,CAAC,iBAAiB,CAAC,CAAC;IAChE,OAAO;QACL,iBAAiB,EAAE,eAAe,CAAC,MAAM,GAAG,CAAC;QAC7C,QAAQ,EAAE,eAAe,CAAC,OAAO,CAC/B,CAAC,cAAc,EAAE,EAAE,CAAC,cAAc,CAAC,QAAQ,CAC5C;QACD,YAAY,EAAE,EAAE;QAChB,cAAc,EAAE,eAAe,CAAC,MAAM,CACpC,CAAC,KAAK,EAAE,cAAc,EAAE,EAAE,CAAC,KAAK,GAAG,cAAc,CAAC,cAAc,EAChE,CAAC,CACF;KACF,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,8BAA8B,CAC3C,OAA2C,EAC3C,QAA0C;IAE1C,MAAM,WAAW,CAAC,OAAO,CAAC,IAAI,EAAE;QAC9B,IAAI,EAAE,4BAA4B;QAClC,KAAK,EAAE,OAAO,CAAC,OAAO,IAAI,KAAK;QAC/B,OAAO,EAAE,QAAQ,CAAC,YAAY;QAC9B,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACrD,QAAQ,EAAE;YACR,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,UAAU,EAAE,QAAQ,CAAC,UAAU;YAC/B,QAAQ,EAAE,QAAQ,CAAC,QAAQ;YAC3B,UAAU,EAAE,QAAQ,CAAC,UAAU;YAC/B,eAAe,EAAE,QAAQ,CAAC,eAAe;YACzC,cAAc,EAAE,QAAQ,CAAC,cAAc;YACvC,cAAc,EAAE,QAAQ,CAAC,cAAc;YACvC,cAAc,EAAE,QAAQ,CAAC,cAAc;YACvC,gBAAgB,EAAE,QAAQ,CAAC,gBAAgB;YAC3C,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC;YACrD,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC3D,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACpE,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC5D;KACF,CAAC,CAAC;AACL,CAAC"}

package/dist/security/restricted-data-classifier.d.ts

@@ -0,0 +1,9 @@
+import type { RestrictedBoundaryPolicyDecision, RestrictedBoundaryPolicyRequest, RestrictedDataAuditEvent, RestrictedDataAuditEventType, RestrictedDataClassification } from "../types/restricted-data.js";
+export declare function classifyRestrictedData(text: string): RestrictedDataClassification;
+export declare function evaluateRestrictedBoundaryPolicy(request: RestrictedBoundaryPolicyRequest): RestrictedBoundaryPolicyDecision;
+export declare function restrictedAuditEventForClassification(input: {
+    eventType: RestrictedDataAuditEventType;
+    sourceId: string;
+    classification: RestrictedDataClassification;
+    decision?: RestrictedBoundaryPolicyDecision;
+}): RestrictedDataAuditEvent;

package/dist/security/restricted-data-classifier.js

@@ -0,0 +1,254 @@
+import { createHash } from "node:crypto";
+import { hasPaymentCardLikeValue, redactPaymentCardLikeValues, } from "./payment-card-detection.js";
+const passwordPattern = /\b(pass(?:word|phrase)?|pwd)\s*[:=]\s*(?:"[^"]{8,}"|'[^']{8,}'|[^\s"']{8,})/gi;
+const bearerPattern = /\bbearer\s+[a-z0-9._~+/=-]{16,}/gi;
+const secretAssignmentPattern = /\b(api[_-]?key|access[_-]?token|auth[_-]?token|client[_-]?secret|secret|session[_-]?token|token|webhook[_-]?secret)\s*[:=]\s*(?:"[^"]{12,}"|'[^']{12,}'|[^\s"']{12,})/gi;
+const jwtPattern = /\beyJ[a-z0-9_-]{8,}[.][a-z0-9_-]{8,}[.][a-z0-9_-]{8,}\b/gi;
+const privateKeyPattern = keyBlockPattern("(?:[A-Z0-9 ]+ )?");
+const openSshPrivateKeyPattern = keyBlockPattern("OPENSSH ");
+const cvvPattern = /\b(cvv|cvc|card security code)\s*[:=]\s*\d{3,4}\b/gi;
+const ssnPattern = /\b\d{3}-\d{2}-\d{4}\b/g;
+const passportPattern = /\b(passport(?:\s+(?:number|no[.]))?)\s*[:=]?\s*[a-z0-9]{6,9}\b/gi;
+const licensePattern = /\b(driver(?:'s)?\s+license|license\s+number|dl)\s*[:=]?\s*[a-z0-9-]{6,20}\b/gi;
+const taxIdentifierPattern = /\b(tax\s+id|tin|ein)\s*[:=]?\s*\d{2}-?\d{7}\b/gi;
+const bankAccountPattern = /\b(routing|account)\s+(?:number|no[.])?\s*[:=]?\s*\d{8,17}\b/gi;
+const restrictedRules = [
+    rule("password", "password_assignment", "restricted.password.assignment", {
+        marker: "[REDACTED_PASSWORD]",
+        summary: "content contains password-shaped credential text",
+        detect: (text) => countMatches(text, passwordPattern),
+        redact: (text) => redactAssignment(text, passwordPattern, "[REDACTED_PASSWORD]"),
+    }),
+    rule("secret", "bearer_token", "restricted.secret.bearer-token", {
+        marker: "[REDACTED_SECRET]",
+        summary: "content contains bearer token text",
+        detect: (text) => countMatches(text, bearerPattern),
+        redact: (text) => replaceMatches(text, bearerPattern, "[REDACTED_SECRET]"),
+    }),
+    rule("secret", "secret_assignment", "restricted.secret.assignment", {
+        marker: "[REDACTED_SECRET]",
+        summary: "content contains token, key, or secret assignment text",
+        detect: (text) => countMatches(text, secretAssignmentPattern),
+        redact: (text) => redactAssignment(text, secretAssignmentPattern, "[REDACTED_SECRET]"),
+    }),
+    rule("secret", "jwt_token", "restricted.secret.jwt", {
+        marker: "[REDACTED_SECRET]",
+        summary: "content contains JWT-shaped token text",
+        detect: (text) => countMatches(text, jwtPattern),
+        redact: (text) => replaceMatches(text, jwtPattern, "[REDACTED_SECRET]"),
+    }),
+    rule("private_key", "pem_private_key", "restricted.private-key.pem", {
+        marker: "[REDACTED_PRIVATE_KEY]",
+        summary: "content contains private signing key material",
+        detect: (text) => countMatches(text, privateKeyPattern),
+        redact: (text) => replaceMatches(text, privateKeyPattern, "[REDACTED_PRIVATE_KEY]"),
+    }),
+    rule("private_key", "openssh_private_key", "restricted.private-key.openssh", {
+        marker: "[REDACTED_PRIVATE_KEY]",
+        summary: "content contains OpenSSH private key material",
+        detect: (text) => countMatches(text, openSshPrivateKeyPattern),
+        redact: (text) => replaceMatches(text, openSshPrivateKeyPattern, "[REDACTED_PRIVATE_KEY]"),
+    }),
+    rule("payment_data", "payment_card_pan", "restricted.payment.pan", {
+        marker: "[REDACTED_PAYMENT_DATA]",
+        summary: "content contains payment-card-like account number text",
+        detect: (text) => (hasPaymentCardLikeValue(text) ? 1 : 0),
+        redact: (text) => redactPaymentCardLikeValues(text, "[REDACTED_PAYMENT_DATA]"),
+    }),
+    rule("payment_data", "payment_card_cvv", "restricted.payment.cvv", {
+        marker: "[REDACTED_PAYMENT_DATA]",
+        summary: "content contains payment card verification code text",
+        detect: (text) => countMatches(text, cvvPattern),
+        redact: (text) => redactAssignment(text, cvvPattern, "[REDACTED_PAYMENT_DATA]"),
+    }),
+    rule("sensitive_pii", "ssn", "restricted.pii.ssn", {
+        marker: "[REDACTED_SENSITIVE_PII]",
+        summary: "content contains government identifier text",
+        detect: (text) => countMatches(text, ssnPattern),
+        redact: (text) => replaceMatches(text, ssnPattern, "[REDACTED_SENSITIVE_PII]"),
+    }),
+    rule("sensitive_pii", "passport", "restricted.pii.passport", {
+        marker: "[REDACTED_SENSITIVE_PII]",
+        summary: "content contains passport identifier text",
+        detect: (text) => countMatches(text, passportPattern),
+        redact: (text) => replaceMatches(text, passportPattern, "[REDACTED_SENSITIVE_PII]"),
+    }),
+    rule("sensitive_pii", "driver_license", "restricted.pii.driver-license", {
+        marker: "[REDACTED_SENSITIVE_PII]",
+        summary: "content contains driver license identifier text",
+        detect: (text) => countMatches(text, licensePattern),
+        redact: (text) => replaceMatches(text, licensePattern, "[REDACTED_SENSITIVE_PII]"),
+    }),
+    rule("sensitive_pii", "tax_identifier", "restricted.pii.tax-identifier", {
+        marker: "[REDACTED_SENSITIVE_PII]",
+        summary: "content contains tax identifier text",
+        detect: (text) => countMatches(text, taxIdentifierPattern),
+        redact: (text) => replaceMatches(text, taxIdentifierPattern, "[REDACTED_SENSITIVE_PII]"),
+    }),
+    rule("sensitive_pii", "bank_account", "restricted.pii.bank-account", {
+        marker: "[REDACTED_SENSITIVE_PII]",
+        summary: "content contains financial account identifier text",
+        detect: (text) => countMatches(text, bankAccountPattern),
+        redact: (text) => replaceMatches(text, bankAccountPattern, "[REDACTED_SENSITIVE_PII]"),
+    }),
+];
+export function classifyRestrictedData(text) {
+    const findings = [];
+    let redactedText = text;
+    for (const ruleDefinition of restrictedRules) {
+        const occurrenceCount = ruleDefinition.detect(text);
+        if (occurrenceCount < 1)
+            continue;
+        findings.push(toFinding(ruleDefinition, occurrenceCount));
+        redactedText = ruleDefinition.redact(redactedText);
+    }
+    return {
+        hasRestrictedData: findings.length > 0,
+        findings,
+        redactedText,
+        redactionCount: findings.reduce((sum, finding) => sum + finding.occurrenceCount, 0),
+    };
+}
+export function evaluateRestrictedBoundaryPolicy(request) {
+    const categories = uniqueCategories(request.classification.findings);
+    const recommendations = uniqueRecommendations(categories);
+    const isBlocked = recommendations.includes("block");
+    return {
+        decisionId: decisionIdFor(request, categories, recommendations),
+        requestId: request.requestId,
+        boundary: request.boundary,
+        outcome: isBlocked ? "block" : "allow",
+        categories,
+        recommendations,
+        redactionCount: request.classification.redactionCount,
+        providerEgress: isBlocked ? "denied" : "allowed",
+        rawPersistence: isBlocked ? "forbidden" : "allowed",
+        sanitizedReasons: sanitizedReasons(request.classification.findings),
+        auditSummary: auditSummaryFor(request.boundary, categories),
+    };
+}
+export function restrictedAuditEventForClassification(input) {
+    const findings = input.classification.findings.map((finding) => ({
+        category: finding.category,
+        ruleId: finding.ruleId,
+        confidence: finding.confidence,
+        severity: finding.severity,
+        occurrenceCount: finding.occurrenceCount,
+        redactionMarker: finding.redactionMarker,
+        summary: finding.summary,
+    }));
+    const categories = uniqueCategories(input.classification.findings);
+    return {
+        schemaVersion: 1,
+        eventType: input.eventType,
+        sourceId: input.sourceId,
+        ...(input.decision?.boundary ? { boundary: input.decision.boundary } : {}),
+        ...(input.decision?.requestId
+            ? { requestId: input.decision.requestId }
+            : {}),
+        ...(input.decision?.decisionId
+            ? { decisionId: input.decision.decisionId }
+            : {}),
+        categories,
+        findings,
+        redactionCount: input.classification.redactionCount,
+        redactionMarkers: uniqueRedactionMarkers(input.classification.findings),
+        sanitizedReasons: sanitizedReasons(input.classification.findings),
+        rawContentIncluded: false,
+        ...(input.decision?.providerEgress
+            ? { providerEgress: input.decision.providerEgress }
+            : {}),
+        ...(input.decision?.rawPersistence
+            ? { rawPersistence: input.decision.rawPersistence }
+            : {}),
+    };
+}
+function rule(category, kind, ruleId, input) {
+    return {
+        category,
+        kind,
+        ruleId,
+        ...input,
+    };
+}
+function toFinding(ruleDefinition, occurrenceCount) {
+    return {
+        category: ruleDefinition.category,
+        kind: ruleDefinition.kind,
+        ruleId: ruleDefinition.ruleId,
+        confidence: "high",
+        severity: "critical",
+        occurrenceCount,
+        redactionMarker: ruleDefinition.marker,
+        summary: ruleDefinition.summary,
+    };
+}
+function countMatches(text, pattern) {
+    pattern.lastIndex = 0;
+    return text.match(pattern)?.length ?? 0;
+}
+function keyBlockPattern(labelPattern) {
+    const keyLabel = `${labelPattern}PRIVATE KEY-{5}`;
+    return new RegExp(`-{5}BEGIN ${keyLabel}[\\s\\S]+?-{5}END ${keyLabel}`, "g");
+}
+function replaceMatches(text, pattern, replacement) {
+    pattern.lastIndex = 0;
+    return text.replace(pattern, replacement);
+}
+function redactAssignment(text, pattern, replacement) {
+    pattern.lastIndex = 0;
+    return text.replace(pattern, (match) => {
+        const separatorIndex = match.search(/[:=]/);
+        if (separatorIndex < 0)
+            return replacement;
+        return `${match.slice(0, separatorIndex + 1)} ${replacement}`;
+    });
+}
+function uniqueCategories(findings) {
+    return [...new Set(findings.map((finding) => finding.category))];
+}
+function uniqueRecommendations(categories) {
+    const recommendations = categories.flatMap(recommendationsForCategory);
+    return [...new Set(recommendations)];
+}
+function uniqueRedactionMarkers(findings) {
+    return [...new Set(findings.map((finding) => finding.redactionMarker))];
+}
+function recommendationsForCategory(category) {
+    if (category === "payment_data") {
+        return ["block", "redact", "tokenize", "purge"];
+    }
+    if (category === "sensitive_pii") {
+        return ["block", "redact", "encrypt", "tokenize", "purge"];
+    }
+    return ["block", "redact", "purge"];
+}
+function sanitizedReasons(findings) {
+    if (findings.length === 0)
+        return ["no restricted data detected"];
+    return findings.map((finding) => {
+        return `${finding.ruleId}: ${finding.summary}`;
+    });
+}
+function auditSummaryFor(boundary, categories) {
+    if (categories.length === 0)
+        return `${boundary}: allow restricted-data check`;
+    return `${boundary}: blocked restricted-data categories ${categories.join(", ")}`;
+}
+function decisionIdFor(request, categories, recommendations) {
+    const findingSummary = request.classification.findings
+        .map((finding) => `${finding.ruleId}:${finding.occurrenceCount}`)
+        .join("|");
+    const digest = createHash("sha256")
+        .update([
+        request.requestId,
+        request.boundary,
+        categories.join(","),
+        recommendations.join(","),
+        findingSummary,
+    ].join("|"))
+        .digest("base64url")
+        .slice(0, 16);
+    return `restricted-policy-${digest}`;
+}
+//# sourceMappingURL=restricted-data-classifier.js.map

package/dist/security/restricted-data-classifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"restricted-data-classifier.js","sourceRoot":"","sources":["../../src/security/restricted-data-classifier.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EACL,uBAAuB,EACvB,2BAA2B,GAC5B,MAAM,6BAA6B,CAAC;AAsBrC,MAAM,eAAe,GACnB,+EAA+E,CAAC;AAClF,MAAM,aAAa,GAAG,mCAAmC,CAAC;AAC1D,MAAM,uBAAuB,GAC3B,yKAAyK,CAAC;AAC5K,MAAM,UAAU,GAAG,2DAA2D,CAAC;AAC/E,MAAM,iBAAiB,GAAG,eAAe,CAAC,kBAAkB,CAAC,CAAC;AAC9D,MAAM,wBAAwB,GAAG,eAAe,CAAC,UAAU,CAAC,CAAC;AAC7D,MAAM,UAAU,GAAG,qDAAqD,CAAC;AACzE,MAAM,UAAU,GAAG,wBAAwB,CAAC;AAC5C,MAAM,eAAe,GACnB,kEAAkE,CAAC;AACrE,MAAM,cAAc,GAClB,+EAA+E,CAAC;AAClF,MAAM,oBAAoB,GAAG,iDAAiD,CAAC;AAC/E,MAAM,kBAAkB,GACtB,gEAAgE,CAAC;AAEnE,MAAM,eAAe,GAAG;IACtB,IAAI,CAAC,UAAU,EAAE,qBAAqB,EAAE,gCAAgC,EAAE;QACxE,MAAM,EAAE,qBAAqB;QAC7B,OAAO,EAAE,kDAAkD;QAC3D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,eAAe,CAAC;QACrD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,gBAAgB,CAAC,IAAI,EAAE,eAAe,EAAE,qBAAqB,CAAC;KACjE,CAAC;IACF,IAAI,CAAC,QAAQ,EAAE,cAAc,EAAE,gCAAgC,EAAE;QAC/D,MAAM,EAAE,mBAAmB;QAC3B,OAAO,EAAE,oCAAoC;QAC7C,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,aAAa,CAAC;QACnD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,cAAc,CAAC,IAAI,EAAE,aAAa,EAAE,mBAAmB,CAAC;KAC3E,CAAC;IACF,IAAI,CAAC,QAAQ,EAAE,mBAAmB,EAAE,8BAA8B,EAAE;QAClE,MAAM,EAAE,mBAAmB;QAC3B,OAAO,EAAE,wDAAwD;QACjE,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,uBAAuB,CAAC;QAC7D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,gBAAgB,CAAC,IAAI,EAAE,uBAAuB,EAAE,mBAAmB,CAAC;KACvE,CAAC;IACF,IAAI,CAAC,QAAQ,EAAE,WAAW,EAAE,uBAAuB,EAAE;QACnD,MAAM,EAAE,mBAAmB;QAC3B,OAAO,EAAE,wCAAwC;QACjD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC;QAChD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,cAAc,CAAC,IAAI,EAAE,UAAU,EAAE,mBAAmB,CAAC;KACxE,CAAC;IACF,IAAI,CAAC,aAAa,EAAE,iBAAiB,EAAE,4BAA4B,EAAE;QACnE,MAAM,EAAE,wBAAwB;QAChC,OAAO,EAAE,+CAA+C;QACxD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,iBAAiB,CAAC;QACvD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,iBAAiB,EAAE,wBAAwB,CAAC;KACpE,CAAC;IACF,IAAI,CAAC,aAAa,EAAE,qBAAqB,EAAE,gCAAgC,EAAE;QAC3E,MAAM,EAAE,wBAAwB;QAChC,OAAO,EAAE,+CAA+C;QACxD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,wBAAwB,CAAC;QAC9D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,wBAAwB,EAAE,wBAAwB,CAAC;KAC3E,CAAC;IACF,IAAI,CAAC,cAAc,EAAE,kBAAkB,EAAE,wBAAwB,EAAE;QACjE,MAAM,EAAE,yBAAyB;QACjC,OAAO,EAAE,wDAAwD;QACjE,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,uBAAuB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACzD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,2BAA2B,CAAC,IAAI,EAAE,yBAAyB,CAAC;KAC/D,CAAC;IACF,IAAI,CAAC,cAAc,EAAE,kBAAkB,EAAE,wBAAwB,EAAE;QACjE,MAAM,EAAE,yBAAyB;QACjC,OAAO,EAAE,sDAAsD;QAC/D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC;QAChD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,gBAAgB,CAAC,IAAI,EAAE,UAAU,EAAE,yBAAyB,CAAC;KAChE,CAAC;IACF,IAAI,CAAC,eAAe,EAAE,KAAK,EAAE,oBAAoB,EAAE;QACjD,MAAM,EAAE,0BAA0B;QAClC,OAAO,EAAE,6CAA6C;QACtD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,UAAU,CAAC;QAChD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,UAAU,EAAE,0BAA0B,CAAC;KAC/D,CAAC;IACF,IAAI,CAAC,eAAe,EAAE,UAAU,EAAE,yBAAyB,EAAE;QAC3D,MAAM,EAAE,0BAA0B;QAClC,OAAO,EAAE,2CAA2C;QACpD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,eAAe,CAAC;QACrD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,eAAe,EAAE,0BAA0B,CAAC;KACpE,CAAC;IACF,IAAI,CAAC,eAAe,EAAE,gBAAgB,EAAE,+BAA+B,EAAE;QACvE,MAAM,EAAE,0BAA0B;QAClC,OAAO,EAAE,iDAAiD;QAC1D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,cAAc,CAAC;QACpD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,cAAc,EAAE,0BAA0B,CAAC;KACnE,CAAC;IACF,IAAI,CAAC,eAAe,EAAE,gBAAgB,EAAE,+BAA+B,EAAE;QACvE,MAAM,EAAE,0BAA0B;QAClC,OAAO,EAAE,sCAAsC;QAC/C,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,oBAAoB,CAAC;QAC1D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,oBAAoB,EAAE,0BAA0B,CAAC;KACzE,CAAC;IACF,IAAI,CAAC,eAAe,EAAE,cAAc,EAAE,6BAA6B,EAAE;QACnE,MAAM,EAAE,0BAA0B;QAClC,OAAO,EAAE,oDAAoD;QAC7D,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,kBAAkB,CAAC;QACxD,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,CACf,cAAc,CAAC,IAAI,EAAE,kBAAkB,EAAE,0BAA0B,CAAC;KACvE,CAAC;CACM,CAAC;AAEX,MAAM,UAAU,sBAAsB,CACpC,IAAY;IAEZ,MAAM,QAAQ,GAA4B,EAAE,CAAC;IAC7C,IAAI,YAAY,GAAG,IAAI,CAAC;IACxB,KAAK,MAAM,cAAc,IAAI,eAAe,EAAE,CAAC;QAC7C,MAAM,eAAe,GAAG,cAAc,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACpD,IAAI,eAAe,GAAG,CAAC;YAAE,SAAS;QAClC,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,cAAc,EAAE,eAAe,CAAC,CAAC,CAAC;QAC1D,YAAY,GAAG,cAAc,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;IACrD,CAAC;IACD,OAAO;QACL,iBAAiB,EAAE,QAAQ,CAAC,MAAM,GAAG,CAAC;QACtC,QAAQ;QACR,YAAY;QACZ,cAAc,EAAE,QAAQ,CAAC,MAAM,CAC7B,CAAC,GAAG,EAAE,OAAO,EAAE,EAAE,CAAC,GAAG,GAAG,OAAO,CAAC,eAAe,EAC/C,CAAC,CACF;KACF,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,gCAAgC,CAC9C,OAAwC;IAExC,MAAM,UAAU,GAAG,gBAAgB,CAAC,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;IACrE,MAAM,eAAe,GAAG,qBAAqB,CAAC,UAAU,CAAC,CAAC;IAC1D,MAAM,SAAS,GAAG,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACpD,OAAO;QACL,UAAU,EAAE,aAAa,CAAC,OAAO,EAAE,UAAU,EAAE,eAAe,CAAC;QAC/D,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,OAAO,EAAE,SAAS,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO;QACtC,UAAU;QACV,eAAe;QACf,cAAc,EAAE,OAAO,CAAC,cAAc,CAAC,cAAc;QACrD,cAAc,EAAE,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;QAChD,cAAc,EAAE,SAAS,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QACnD,gBAAgB,EAAE,gBAAgB,CAAC,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC;QACnE,YAAY,EAAE,eAAe,CAAC,OAAO,CAAC,QAAQ,EAAE,UAAU,CAAC;KAC5D,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,qCAAqC,CAAC,KAKrD;IACC,MAAM,QAAQ,GAAG,KAAK,CAAC,cAAc,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QAC/D,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,MAAM,EAAE,OAAO,CAAC,MAAM;QACtB,UAAU,EAAE,OAAO,CAAC,UAAU;QAC9B,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,eAAe,EAAE,OAAO,CAAC,eAAe;QACxC,eAAe,EAAE,OAAO,CAAC,eAAe;QACxC,OAAO,EAAE,OAAO,CAAC,OAAO;KACzB,CAAC,CAAC,CAAC;IACJ,MAAM,UAAU,GAAG,gBAAgB,CAAC,KAAK,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;IACnE,OAAO;QACL,aAAa,EAAE,CAAC;QAChB,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,GAAG,CAAC,KAAK,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,KAAK,CAAC,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC1E,GAAG,CAAC,KAAK,CAAC,QAAQ,EAAE,SAAS;YAC3B,CAAC,CAAC,EAAE,SAAS,EAAE,KAAK,CAAC,QAAQ,CAAC,SAAS,EAAE;YACzC,CAAC,CAAC,EAAE,CAAC;QACP,GAAG,CAAC,KAAK,CAAC,QAAQ,EAAE,UAAU;YAC5B,CAAC,CAAC,EAAE,UAAU,EAAE,KAAK,CAAC,QAAQ,CAAC,UAAU,EAAE;YAC3C,CAAC,CAAC,EAAE,CAAC;QACP,UAAU;QACV,QAAQ;QACR,cAAc,EAAE,KAAK,CAAC,cAAc,CAAC,cAAc;QACnD,gBAAgB,EAAE,sBAAsB,CAAC,KAAK,CAAC,cAAc,CAAC,QAAQ,CAAC;QACvE,gBAAgB,EAAE,gBAAgB,CAAC,KAAK,CAAC,cAAc,CAAC,QAAQ,CAAC;QACjE,kBAAkB,EAAE,KAAK;QACzB,GAAG,CAAC,KAAK,CAAC,QAAQ,EAAE,cAAc;YAChC,CAAC,CAAC,EAAE,cAAc,EAAE,KAAK,CAAC,QAAQ,CAAC,cAAc,EAAE;YACnD,CAAC,CAAC,EAAE,CAAC;QACP,GAAG,CAAC,KAAK,CAAC,QAAQ,EAAE,cAAc;YAChC,CAAC,CAAC,EAAE,cAAc,EAAE,KAAK,CAAC,QAAQ,CAAC,cAAc,EAAE;YACnD,CAAC,CAAC,EAAE,CAAC;KACR,CAAC;AACJ,CAAC;AAED,SAAS,IAAI,CACX,QAAgC,EAChC,IAAY,EACZ,MAAc,EACd,KAA+D;IAE/D,OAAO;QACL,QAAQ;QACR,IAAI;QACJ,MAAM;QACN,GAAG,KAAK;KACT,CAAC;AACJ,CAAC;AAED,SAAS,SAAS,CAChB,cAAkC,EAClC,eAAuB;IAEvB,OAAO;QACL,QAAQ,EAAE,cAAc,CAAC,QAAQ;QACjC,IAAI,EAAE,cAAc,CAAC,IAAI;QACzB,MAAM,EAAE,cAAc,CAAC,MAAM;QAC7B,UAAU,EAAE,MAAM;QAClB,QAAQ,EAAE,UAAU;QACpB,eAAe;QACf,eAAe,EAAE,cAAc,CAAC,MAAM;QACtC,OAAO,EAAE,cAAc,CAAC,OAAO;KAChC,CAAC;AACJ,CAAC;AAED,SAAS,YAAY,CAAC,IAAY,EAAE,OAAe;IACjD,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;IACtB,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,MAAM,IAAI,CAAC,CAAC;AAC1C,CAAC;AAED,SAAS,eAAe,CAAC,YAAoB;IAC3C,MAAM,QAAQ,GAAG,GAAG,YAAY,iBAAiB,CAAC;IAClD,OAAO,IAAI,MAAM,CAAC,aAAa,QAAQ,qBAAqB,QAAQ,EAAE,EAAE,GAAG,CAAC,CAAC;AAC/E,CAAC;AAED,SAAS,cAAc,CACrB,IAAY,EACZ,OAAe,EACf,WAAmB;IAEnB,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;IACtB,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,gBAAgB,CACvB,IAAY,EACZ,OAAe,EACf,WAAmB;IAEnB,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;IACtB,OAAO,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE;QACrC,MAAM,cAAc,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC5C,IAAI,cAAc,GAAG,CAAC;YAAE,OAAO,WAAW,CAAC;QAC3C,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,cAAc,GAAG,CAAC,CAAC,IAAI,WAAW,EAAE,CAAC;IAChE,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,gBAAgB,CACvB,QAAiC;IAEjC,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;AACnE,CAAC;AAED,SAAS,qBAAqB,CAC5B,UAAoC;IAEpC,MAAM,eAAe,GAAG,UAAU,CAAC,OAAO,CAAC,0BAA0B,CAAC,CAAC;IACvE,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,eAAe,CAAC,CAAC,CAAC;AACvC,CAAC;AAED,SAAS,sBAAsB,CAAC,QAAiC;IAC/D,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;AAC1E,CAAC;AAED,SAAS,0BAA0B,CACjC,QAAgC;IAEhC,IAAI,QAAQ,KAAK,cAAc,EAAE,CAAC;QAChC,OAAO,CAAC,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,QAAQ,KAAK,eAAe,EAAE,CAAC;QACjC,OAAO,CAAC,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,UAAU,EAAE,OAAO,CAAC,CAAC;IAC7D,CAAC;IACD,OAAO,CAAC,OAAO,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;AACtC,CAAC;AAED,SAAS,gBAAgB,CAAC,QAAiC;IACzD,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,CAAC,6BAA6B,CAAC,CAAC;IAClE,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE;QAC9B,OAAO,GAAG,OAAO,CAAC,MAAM,KAAK,OAAO,CAAC,OAAO,EAAE,CAAC;IACjD,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,eAAe,CACtB,QAAqD,EACrD,UAAoC;IAEpC,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC;QACzB,OAAO,GAAG,QAAQ,+BAA+B,CAAC;IACpD,OAAO,GAAG,QAAQ,wCAAwC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;AACpF,CAAC;AAED,SAAS,aAAa,CACpB,OAAwC,EACxC,UAAoC,EACpC,eAAqD;IAErD,MAAM,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC,QAAQ;SACnD,GAAG,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC;SAChE,IAAI,CAAC,GAAG,CAAC,CAAC;IACb,MAAM,MAAM,GAAG,UAAU,CAAC,QAAQ,CAAC;SAChC,MAAM,CACL;QACE,OAAO,CAAC,SAAS;QACjB,OAAO,CAAC,QAAQ;QAChB,UAAU,CAAC,IAAI,CAAC,GAAG,CAAC;QACpB,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC;QACzB,cAAc;KACf,CAAC,IAAI,CAAC,GAAG,CAAC,CACZ;SACA,MAAM,CAAC,WAAW,CAAC;SACnB,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAChB,OAAO,qBAAqB,MAAM,EAAE,CAAC;AACvC,CAAC"}

package/dist/skills-render.js

@@ -1,5 +1,6 @@
 import { uniqueSortedStrings } from "./collection-utils.js";
 import { queryMemory, recordMemoryEvent, renderMemoryPacket, } from "./memory.js";
+import { runtimeExecutionAdapters } from "./runtime-execution-adapters.js";
 import { listSkills } from "./skills-catalog-service.js";
 import { planSkillsForTask } from "./skills-planning.js";
 export async function renderSkills({ target, taskId, skillIds, root = process.cwd(), }) {
@@ -42,22 +43,14 @@ async function resolveRenderSkills({ taskId, skillIds, root, }) {
     return plan.selected.map((item) => item.skill);
 }
 function renderForTarget(target, skills, sourceGroups, taskId, memory) {
-    if (target === "cursor") {
-        return renderMarkdown(skills, sourceGroups, taskId, "Cursor Skill Context", "Use these Open Orchestra skills as task-scoped Cursor rules.", memory);
-    }
-    if (target === "windsurf") {
-        return renderMarkdown(skills, sourceGroups, taskId, "Windsurf Skill Context", "Use these Open Orchestra skills as task-scoped Windsurf rules.", memory);
-    }
-    if (target === "claude") {
-        return renderMarkdown(skills, sourceGroups, taskId, "Claude Skill Context", "Load only these Open Orchestra skills for this task.", memory);
-    }
-    if (target === "codex") {
-        return renderMarkdown(skills, sourceGroups, taskId, "Codex Skill Context", "Apply these Open Orchestra skills while preserving AGENTS.md instructions.", memory);
-    }
-    if (target === "vscode") {
+    const adapter = runtimeExecutionAdapters.find((a) => a.target === target);
+    if (adapter?.skillRenderFormat === "json") {
         return JSON.stringify({ taskId, sourceGroups, skills, memory }, null, 2);
     }
-    return renderMarkdown(skills, sourceGroups, taskId, "Open Orchestra Skill Context", "Provider-agnostic skill context for this task.", memory);
+    const title = adapter?.skillContextTitle ?? "Open Orchestra Skill Context";
+    const intro = adapter?.skillContextIntro ??
+        "Provider-agnostic skill context for this task.";
+    return renderMarkdown(skills, sourceGroups, taskId, title, intro, memory);
 }
 function renderMarkdown(skills, sourceGroups, taskId, title, intro, memory) {
     const lines = [