@kya-os/checkpoint-nextjs 1.0.0 → 1.0.1

package/dist/edge/index.mjs

@@ -91,7 +91,7 @@ async function createDetector(config) {
       });
       await wasmDetector.ensureReady();
       if (config.debug) {
-        console.debug("[AgentShield] WASM detector initialized in Edge Runtime", {
+        console.debug("[Checkpoint] WASM detector initialized in Edge Runtime", {
           policyEnabled: !!config.apiKey
         });
       }
@@ -118,7 +118,7 @@ async function createDetector(config) {
       };
     } catch (error) {
       if (config.debug) {
-        console.warn("[AgentShield] WASM runtime not available, using pattern detection:", error);
+        console.warn("[Checkpoint] WASM runtime not available, using pattern detection:", error);
       }
       detector = {
         detect: patternDetect,
@@ -127,7 +127,7 @@ async function createDetector(config) {
     }
   } else {
     if (config.debug) {
-      console.debug("[AgentShield] No WASM module provided, using pattern detection");
+      console.debug("[Checkpoint] No WASM module provided, using pattern detection");
     }
     detector = {
       detect: patternDetect,
@@ -178,7 +178,7 @@ function createEdgeMiddleware(config = {}) {
       const result = await detector.detect(input);
       if (result.shouldBlock) {
         if (debug) {
-          console.debug("[AgentShield] Blocked by policy", {
+          console.debug("[Checkpoint] Blocked by policy", {
             reason: result.blockReason,
             agent: result.detectedAgent?.name,
             confidence: result.confidence,
@@ -271,5 +271,3 @@ function createEdgeMiddleware(config = {}) {
 }
 
 export { createEdgeMiddleware };
-//# sourceMappingURL=index.mjs.map
-//# sourceMappingURL=index.mjs.map

package/dist/edge-runtime-loader.js

@@ -200,5 +200,3 @@ function getDefaultAgentShield(config) {
 
 exports.createEdgeAgentShield = createEdgeAgentShield;
 exports.getDefaultAgentShield = getDefaultAgentShield;
-//# sourceMappingURL=edge-runtime-loader.js.map
-//# sourceMappingURL=edge-runtime-loader.js.map

package/dist/edge-runtime-loader.mjs

@@ -197,5 +197,3 @@ function getDefaultAgentShield(config) {
 }
 
 export { createEdgeAgentShield, getDefaultAgentShield };
-//# sourceMappingURL=edge-runtime-loader.mjs.map
-//# sourceMappingURL=edge-runtime-loader.mjs.map

package/dist/edge-wasm-middleware.js

@@ -314,5 +314,3 @@ function createEdgeWasmMiddleware(config) {
 
 exports.createEdgeWasmMiddleware = createEdgeWasmMiddleware;
 exports.initializeEdgeWasm = initializeEdgeWasm;
-//# sourceMappingURL=edge-wasm-middleware.js.map
-//# sourceMappingURL=edge-wasm-middleware.js.map

package/dist/edge-wasm-middleware.mjs

@@ -311,5 +311,3 @@ function createEdgeWasmMiddleware(config) {
 }
 
 export { createEdgeWasmMiddleware, initializeEdgeWasm };
-//# sourceMappingURL=edge-wasm-middleware.mjs.map
-//# sourceMappingURL=edge-wasm-middleware.mjs.map

package/dist/index.d.mts

@@ -4,7 +4,7 @@ export { AgentDetectionEvent, AgentSession, AgentShieldMiddlewareConfig, Checkpo
 export { createAgentShieldMiddleware as createAgentShieldMiddlewareBase } from './middleware.mjs';
 export { EdgeSessionTracker, SessionData, SessionTrackingConfig, StatelessSessionChecker } from './session-tracker.mjs';
 export { AgentShieldClient, AgentShieldClientConfig, CheckpointApiClient, CheckpointApiClientConfig, EnforceInput, EnforceResponse, EnforcementDecision, LogDetectionInput, getAgentShieldClient, getCheckpointApiClient, resetAgentShieldClient, resetCheckpointApiClient } from './api-client.mjs';
-export { A as AgentShieldRequest, D as DetectionContext, N as NextJSMiddlewareConfig } from './types-C-xCUNTr.mjs';
+export { A as AgentShieldRequest, D as DetectionContext, N as NextJSMiddlewareConfig } from './types-D9RQvPNy.mjs';
 export { NextJSPolicyMiddlewareConfig, PolicyMiddlewareConfig, applyPolicy, buildBlockedResponse as buildPolicyBlockedResponse, buildRedirectResponse as buildPolicyRedirectResponse, createContextFromDetection, evaluatePolicyForDetection, getPolicy, handlePolicyDecision } from './policy.mjs';
 export { DEFAULT_POLICY, ENFORCEMENT_ACTIONS, EnforcementAction, PolicyConfig, PolicyEvaluationContext, PolicyEvaluationResult, createEvaluationContext, evaluatePolicy } from '@kya-os/checkpoint-shared';
 import '@kya-os/checkpoint-wasm-runtime/adapters';

package/dist/index.d.ts

@@ -4,7 +4,7 @@ export { AgentDetectionEvent, AgentSession, AgentShieldMiddlewareConfig, Checkpo
 export { createAgentShieldMiddleware as createAgentShieldMiddlewareBase } from './middleware.js';
 export { EdgeSessionTracker, SessionData, SessionTrackingConfig, StatelessSessionChecker } from './session-tracker.js';
 export { AgentShieldClient, AgentShieldClientConfig, CheckpointApiClient, CheckpointApiClientConfig, EnforceInput, EnforceResponse, EnforcementDecision, LogDetectionInput, getAgentShieldClient, getCheckpointApiClient, resetAgentShieldClient, resetCheckpointApiClient } from './api-client.js';
-export { A as AgentShieldRequest, D as DetectionContext, N as NextJSMiddlewareConfig } from './types-C-xCUNTr.js';
+export { A as AgentShieldRequest, D as DetectionContext, N as NextJSMiddlewareConfig } from './types-D9RQvPNy.js';
 export { NextJSPolicyMiddlewareConfig, PolicyMiddlewareConfig, applyPolicy, buildBlockedResponse as buildPolicyBlockedResponse, buildRedirectResponse as buildPolicyRedirectResponse, createContextFromDetection, evaluatePolicyForDetection, getPolicy, handlePolicyDecision } from './policy.js';
 export { DEFAULT_POLICY, ENFORCEMENT_ACTIONS, EnforcementAction, PolicyConfig, PolicyEvaluationContext, PolicyEvaluationResult, createEvaluationContext, evaluatePolicy } from '@kya-os/checkpoint-shared';
 import '@kya-os/checkpoint-wasm-runtime/adapters';

package/dist/index.js

@@ -161,7 +161,7 @@ var CheckpointApiClient = class {
   debug;
   constructor(config) {
     if (!config.apiKey) {
-      throw new Error("AgentShield API key is required");
+      throw new Error("Checkpoint API key is required");
     }
     this.apiKey = config.apiKey;
     this.useEdge = config.useEdge !== false;
@@ -192,7 +192,7 @@ var CheckpointApiClient = class {
         clearTimeout(timeoutId);
         const data = await response.json();
         if (this.debug) {
-          console.log("[AgentShield] Enforce response:", {
+          console.log("[Checkpoint] Enforce response:", {
             status: response.status,
             action: data.data?.decision.action,
             processingTimeMs: Date.now() - startTime
@@ -215,7 +215,7 @@ var CheckpointApiClient = class {
     } catch (error) {
       if (error instanceof Error && error.name === "AbortError") {
         if (this.debug) {
-          console.warn("[AgentShield] Request timed out");
+          console.warn("[Checkpoint] Request timed out");
         }
         return {
           success: false,
@@ -226,7 +226,7 @@ var CheckpointApiClient = class {
         };
       }
       if (this.debug) {
-        console.error("[AgentShield] Request failed:", error);
+        console.error("[Checkpoint] Request failed:", error);
       }
       return {
         success: false,
@@ -304,7 +304,7 @@ var CheckpointApiClient = class {
         });
         clearTimeout(timeoutId);
         if (!response.ok && this.debug) {
-          console.warn("[AgentShield] Log detection returned non-2xx:", response.status);
+          console.warn("[Checkpoint] Log detection returned non-2xx:", response.status);
         }
       } catch (error) {
         clearTimeout(timeoutId);
@@ -312,34 +312,50 @@ var CheckpointApiClient = class {
       }
     } catch (error) {
       if (this.debug) {
-        console.error("[AgentShield] Log detection failed:", error);
+        console.error("[Checkpoint] Log detection failed:", error);
       }
       throw error;
     }
   }
 };
-var clientInstance = null;
+var clientInstances = /* @__PURE__ */ new Map();
+function resolveClientConfig(config) {
+  const apiKey = config?.apiKey || process.env.CHECKPOINT_API_KEY;
+  if (!apiKey) {
+    throw new Error(
+      "Checkpoint API key is required. Set CHECKPOINT_API_KEY environment variable or pass apiKey in config."
+    );
+  }
+  return {
+    apiKey,
+    baseUrl: config?.baseUrl || process.env.CHECKPOINT_API_URL,
+    // Default to edge detection unless explicitly disabled
+    useEdge: config?.useEdge ?? process.env.CHECKPOINT_USE_EDGE !== "false",
+    timeout: config?.timeout,
+    debug: config?.debug || process.env.CHECKPOINT_DEBUG === "true"
+  };
+}
+function clientCacheKey(config) {
+  return JSON.stringify([
+    config.apiKey,
+    config.baseUrl ?? "",
+    config.useEdge ?? true,
+    config.timeout ?? DEFAULT_TIMEOUT,
+    config.debug ?? false
+  ]);
+}
 function getCheckpointApiClient(config) {
+  const resolvedConfig = resolveClientConfig(config);
+  const key = clientCacheKey(resolvedConfig);
+  let clientInstance = clientInstances.get(key);
   if (!clientInstance) {
-    const apiKey = config?.apiKey || process.env.CHECKPOINT_API_KEY;
-    if (!apiKey) {
-      throw new Error(
-        "AgentShield API key is required. Set CHECKPOINT_API_KEY environment variable or pass apiKey in config."
-      );
-    }
-    clientInstance = new CheckpointApiClient({
-      apiKey,
-      baseUrl: config?.baseUrl || process.env.AGENTSHIELD_API_URL,
-      // Default to edge detection unless explicitly disabled
-      useEdge: config?.useEdge ?? process.env.AGENTSHIELD_USE_EDGE !== "false",
-      timeout: config?.timeout,
-      debug: config?.debug || process.env.AGENTSHIELD_DEBUG === "true"
-    });
+    clientInstance = new CheckpointApiClient(resolvedConfig);
+    clientInstances.set(key, clientInstance);
   }
   return clientInstance;
 }
 function resetCheckpointApiClient() {
-  clientInstance = null;
+  clientInstances.clear();
 }
 var AgentShieldClient = CheckpointApiClient;
 var getAgentShieldClient = getCheckpointApiClient;
@@ -558,7 +574,7 @@ function withCheckpointApi(config = {}) {
       });
       if (!result.success || !result.data) {
         if (config.debug) {
-          console.warn("[AgentShield] API error:", result.error);
+          console.warn("[Checkpoint] API error:", result.error);
         }
         if (failOpen) {
           return server.NextResponse.next();
@@ -570,7 +586,7 @@ function withCheckpointApi(config = {}) {
       }
       const decision = result.data.decision;
       if (config.debug) {
-        console.log("[AgentShield] Decision:", {
+        console.log("[Checkpoint] Decision:", {
           path,
           action: decision.action,
           isAgent: decision.isAgent,
@@ -586,12 +602,18 @@ function withCheckpointApi(config = {}) {
           context: { userAgent, ipAddress, path, url: request.url, method: request.method }
         }).catch((err) => {
           if (config.debug) {
-            console.error("[AgentShield] Log detection failed:", err);
+            console.error("[Checkpoint] Log detection failed:", err);
           }
         });
       }
       if (decision.isAgent && config.onAgentDetected) {
-        await config.onAgentDetected(request, decision);
+        try {
+          await config.onAgentDetected(request, decision);
+        } catch (error) {
+          if (config.debug) {
+            console.error("[Checkpoint] onAgentDetected callback failed:", error);
+          }
+        }
       }
       const redirectMode = config.redirectMode ?? "instruct";
       switch (decision.action) {
@@ -631,7 +653,7 @@ function withCheckpointApi(config = {}) {
       }
     } catch (error) {
       if (config.debug) {
-        console.error("[AgentShield] Middleware error:", error);
+        console.error("[Checkpoint] Middleware error:", error);
       }
       if (failOpen) {
         return server.NextResponse.next();
@@ -659,7 +681,7 @@ var EdgeSessionTracker = class {
       cookieName: config.cookieName || "__agentshield_session",
       cookieMaxAge: config.cookieMaxAge || 3600,
       // 1 hour default
-      encryptionKey: config.encryptionKey || process.env.AGENTSHIELD_SECRET || "agentshield-default-key"
+      encryptionKey: config.encryptionKey || process.env.CHECKPOINT_SECRET || "agentshield-default-key"
     };
   }
   /**
@@ -881,7 +903,7 @@ async function handlePolicyDecision(request, decision, config, detection) {
     case checkpointShared.ENFORCEMENT_ACTIONS.CHALLENGE:
       return buildChallengeResponse(request, decision, config, detection);
     case checkpointShared.ENFORCEMENT_ACTIONS.LOG:
-      console.log("[AgentShield] Policy decision (log):", {
+      console.log("[Checkpoint] Policy decision (log):", {
         path: request.nextUrl.pathname,
         action: decision.action,
         reason: decision.reason,
@@ -926,7 +948,7 @@ async function getPolicy(config) {
       return await fetcher.getPolicy(config.fetchPolicy.projectId);
     } catch (error) {
       if (config.debug) {
-        console.warn("[AgentShield] Policy fetch failed, using fallback:", error);
+        console.warn("[Checkpoint] Policy fetch failed, using fallback:", error);
       }
       return checkpointShared.PolicyConfigSchema.parse({
         ...checkpointShared.DEFAULT_POLICY,
@@ -956,7 +978,7 @@ async function applyPolicy(request, detection, config) {
     return await handlePolicyDecision(request, decision, config, detection);
   } catch (error) {
     if (config.debug) {
-      console.error("[AgentShield] Policy evaluation error:", error);
+      console.error("[Checkpoint] Policy evaluation error:", error);
     }
     if (config.failOpen !== false) {
       return null;
@@ -1015,5 +1037,3 @@ exports.resetCheckpointApiClient = resetCheckpointApiClient;
 exports.withAgentShield = withAgentShield;
 exports.withCheckpoint = withCheckpoint;
 exports.withCheckpointApi = withCheckpointApi;
-//# sourceMappingURL=index.js.map
-//# sourceMappingURL=index.js.map

package/dist/index.mjs

@@ -160,7 +160,7 @@ var CheckpointApiClient = class {
   debug;
   constructor(config) {
     if (!config.apiKey) {
-      throw new Error("AgentShield API key is required");
+      throw new Error("Checkpoint API key is required");
     }
     this.apiKey = config.apiKey;
     this.useEdge = config.useEdge !== false;
@@ -191,7 +191,7 @@ var CheckpointApiClient = class {
         clearTimeout(timeoutId);
         const data = await response.json();
         if (this.debug) {
-          console.log("[AgentShield] Enforce response:", {
+          console.log("[Checkpoint] Enforce response:", {
             status: response.status,
             action: data.data?.decision.action,
             processingTimeMs: Date.now() - startTime
@@ -214,7 +214,7 @@ var CheckpointApiClient = class {
     } catch (error) {
       if (error instanceof Error && error.name === "AbortError") {
         if (this.debug) {
-          console.warn("[AgentShield] Request timed out");
+          console.warn("[Checkpoint] Request timed out");
         }
         return {
           success: false,
@@ -225,7 +225,7 @@ var CheckpointApiClient = class {
         };
       }
       if (this.debug) {
-        console.error("[AgentShield] Request failed:", error);
+        console.error("[Checkpoint] Request failed:", error);
       }
       return {
         success: false,
@@ -303,7 +303,7 @@ var CheckpointApiClient = class {
         });
         clearTimeout(timeoutId);
         if (!response.ok && this.debug) {
-          console.warn("[AgentShield] Log detection returned non-2xx:", response.status);
+          console.warn("[Checkpoint] Log detection returned non-2xx:", response.status);
         }
       } catch (error) {
         clearTimeout(timeoutId);
@@ -311,34 +311,50 @@ var CheckpointApiClient = class {
       }
     } catch (error) {
       if (this.debug) {
-        console.error("[AgentShield] Log detection failed:", error);
+        console.error("[Checkpoint] Log detection failed:", error);
       }
       throw error;
     }
   }
 };
-var clientInstance = null;
+var clientInstances = /* @__PURE__ */ new Map();
+function resolveClientConfig(config) {
+  const apiKey = config?.apiKey || process.env.CHECKPOINT_API_KEY;
+  if (!apiKey) {
+    throw new Error(
+      "Checkpoint API key is required. Set CHECKPOINT_API_KEY environment variable or pass apiKey in config."
+    );
+  }
+  return {
+    apiKey,
+    baseUrl: config?.baseUrl || process.env.CHECKPOINT_API_URL,
+    // Default to edge detection unless explicitly disabled
+    useEdge: config?.useEdge ?? process.env.CHECKPOINT_USE_EDGE !== "false",
+    timeout: config?.timeout,
+    debug: config?.debug || process.env.CHECKPOINT_DEBUG === "true"
+  };
+}
+function clientCacheKey(config) {
+  return JSON.stringify([
+    config.apiKey,
+    config.baseUrl ?? "",
+    config.useEdge ?? true,
+    config.timeout ?? DEFAULT_TIMEOUT,
+    config.debug ?? false
+  ]);
+}
 function getCheckpointApiClient(config) {
+  const resolvedConfig = resolveClientConfig(config);
+  const key = clientCacheKey(resolvedConfig);
+  let clientInstance = clientInstances.get(key);
   if (!clientInstance) {
-    const apiKey = config?.apiKey || process.env.CHECKPOINT_API_KEY;
-    if (!apiKey) {
-      throw new Error(
-        "AgentShield API key is required. Set CHECKPOINT_API_KEY environment variable or pass apiKey in config."
-      );
-    }
-    clientInstance = new CheckpointApiClient({
-      apiKey,
-      baseUrl: config?.baseUrl || process.env.AGENTSHIELD_API_URL,
-      // Default to edge detection unless explicitly disabled
-      useEdge: config?.useEdge ?? process.env.AGENTSHIELD_USE_EDGE !== "false",
-      timeout: config?.timeout,
-      debug: config?.debug || process.env.AGENTSHIELD_DEBUG === "true"
-    });
+    clientInstance = new CheckpointApiClient(resolvedConfig);
+    clientInstances.set(key, clientInstance);
   }
   return clientInstance;
 }
 function resetCheckpointApiClient() {
-  clientInstance = null;
+  clientInstances.clear();
 }
 var AgentShieldClient = CheckpointApiClient;
 var getAgentShieldClient = getCheckpointApiClient;
@@ -557,7 +573,7 @@ function withCheckpointApi(config = {}) {
       });
       if (!result.success || !result.data) {
         if (config.debug) {
-          console.warn("[AgentShield] API error:", result.error);
+          console.warn("[Checkpoint] API error:", result.error);
         }
         if (failOpen) {
           return NextResponse.next();
@@ -569,7 +585,7 @@ function withCheckpointApi(config = {}) {
       }
       const decision = result.data.decision;
       if (config.debug) {
-        console.log("[AgentShield] Decision:", {
+        console.log("[Checkpoint] Decision:", {
           path,
           action: decision.action,
           isAgent: decision.isAgent,
@@ -585,12 +601,18 @@ function withCheckpointApi(config = {}) {
           context: { userAgent, ipAddress, path, url: request.url, method: request.method }
         }).catch((err) => {
           if (config.debug) {
-            console.error("[AgentShield] Log detection failed:", err);
+            console.error("[Checkpoint] Log detection failed:", err);
           }
         });
       }
       if (decision.isAgent && config.onAgentDetected) {
-        await config.onAgentDetected(request, decision);
+        try {
+          await config.onAgentDetected(request, decision);
+        } catch (error) {
+          if (config.debug) {
+            console.error("[Checkpoint] onAgentDetected callback failed:", error);
+          }
+        }
       }
       const redirectMode = config.redirectMode ?? "instruct";
       switch (decision.action) {
@@ -630,7 +652,7 @@ function withCheckpointApi(config = {}) {
       }
     } catch (error) {
       if (config.debug) {
-        console.error("[AgentShield] Middleware error:", error);
+        console.error("[Checkpoint] Middleware error:", error);
       }
       if (failOpen) {
         return NextResponse.next();
@@ -658,7 +680,7 @@ var EdgeSessionTracker = class {
       cookieName: config.cookieName || "__agentshield_session",
       cookieMaxAge: config.cookieMaxAge || 3600,
       // 1 hour default
-      encryptionKey: config.encryptionKey || process.env.AGENTSHIELD_SECRET || "agentshield-default-key"
+      encryptionKey: config.encryptionKey || process.env.CHECKPOINT_SECRET || "agentshield-default-key"
     };
   }
   /**
@@ -880,7 +902,7 @@ async function handlePolicyDecision(request, decision, config, detection) {
     case ENFORCEMENT_ACTIONS.CHALLENGE:
       return buildChallengeResponse(request, decision, config, detection);
     case ENFORCEMENT_ACTIONS.LOG:
-      console.log("[AgentShield] Policy decision (log):", {
+      console.log("[Checkpoint] Policy decision (log):", {
         path: request.nextUrl.pathname,
         action: decision.action,
         reason: decision.reason,
@@ -925,7 +947,7 @@ async function getPolicy(config) {
       return await fetcher.getPolicy(config.fetchPolicy.projectId);
     } catch (error) {
       if (config.debug) {
-        console.warn("[AgentShield] Policy fetch failed, using fallback:", error);
+        console.warn("[Checkpoint] Policy fetch failed, using fallback:", error);
       }
       return PolicyConfigSchema.parse({
         ...DEFAULT_POLICY,
@@ -955,7 +977,7 @@ async function applyPolicy(request, detection, config) {
     return await handlePolicyDecision(request, decision, config, detection);
   } catch (error) {
     if (config.debug) {
-      console.error("[AgentShield] Policy evaluation error:", error);
+      console.error("[Checkpoint] Policy evaluation error:", error);
     }
     if (config.failOpen !== false) {
       return null;
@@ -975,5 +997,3 @@ var VERSION = "0.1.0";
  */
 
 export { AgentShieldClient, CheckpointApiClient, EdgeSessionTracker, StatelessSessionChecker, VERSION, agentShieldMiddleware, applyPolicy, buildBlockedResponse2 as buildPolicyBlockedResponse, buildRedirectResponse2 as buildPolicyRedirectResponse, createAgentShieldMiddleware2 as createAgentShieldMiddleware, createAgentShieldMiddleware as createAgentShieldMiddlewareBase, createContextFromDetection, createEnhancedAgentShieldMiddleware, createAgentShieldMiddleware2 as createMiddleware, evaluatePolicyForDetection, getAgentShieldClient, getCheckpointApiClient, getPolicy, handlePolicyDecision, resetAgentShieldClient, resetCheckpointApiClient, withAgentShield, withCheckpoint, withCheckpointApi };
-//# sourceMappingURL=index.mjs.map
-//# sourceMappingURL=index.mjs.map

package/dist/middleware-edge.js

@@ -130,5 +130,3 @@ Object.defineProperty(exports, "initEngineEdge", {
   get: function () { return edge.initEngineEdge; }
 });
 exports.withCheckpoint = withCheckpoint;
-//# sourceMappingURL=middleware-edge.js.map
-//# sourceMappingURL=middleware-edge.js.map

package/dist/middleware-edge.mjs

@@ -125,5 +125,3 @@ async function dispatchOnResult(config, result, req) {
 }
 
 export { withCheckpoint };
-//# sourceMappingURL=middleware-edge.mjs.map
-//# sourceMappingURL=middleware-edge.mjs.map

package/dist/middleware-node.js

@@ -123,5 +123,3 @@ async function dispatchOnResult(config, result, req) {
 
 exports._buildVerifyOpts = buildVerifyOpts;
 exports.withCheckpoint = withCheckpoint;
-//# sourceMappingURL=middleware-node.js.map
-//# sourceMappingURL=middleware-node.js.map

package/dist/middleware-node.mjs

@@ -120,5 +120,3 @@ async function dispatchOnResult(config, result, req) {
 }
 
 export { buildVerifyOpts as _buildVerifyOpts, withCheckpoint };
-//# sourceMappingURL=middleware-node.mjs.map
-//# sourceMappingURL=middleware-node.mjs.map

package/dist/middleware.d.mts

@@ -1,5 +1,5 @@
 import { NextRequest, NextResponse } from 'next/server';
-import { N as NextJSMiddlewareConfig } from './types-C-xCUNTr.mjs';
+import { N as NextJSMiddlewareConfig } from './types-D9RQvPNy.mjs';
 import '@kya-os/checkpoint-shared';
 import '@kya-os/checkpoint';
 

package/dist/middleware.d.ts

@@ -1,5 +1,5 @@
 import { NextRequest, NextResponse } from 'next/server';
-import { N as NextJSMiddlewareConfig } from './types-C-xCUNTr.js';
+import { N as NextJSMiddlewareConfig } from './types-D9RQvPNy.js';
 import '@kya-os/checkpoint-shared';
 import '@kya-os/checkpoint';
 

package/dist/middleware.js

@@ -11,5 +11,3 @@ function agentShield(config = {}) {
 
 exports.agentShield = agentShield;
 exports.createAgentShieldMiddleware = createAgentShieldMiddleware;
-//# sourceMappingURL=middleware.js.map
-//# sourceMappingURL=middleware.js.map

package/dist/middleware.mjs

@@ -8,5 +8,3 @@ function agentShield(config = {}) {
 }
 
 export { agentShield, createAgentShieldMiddleware };
-//# sourceMappingURL=middleware.mjs.map
-//# sourceMappingURL=middleware.mjs.map

package/dist/nodejs-wasm-loader.js

@@ -91,5 +91,3 @@ exports.getWasmModule = getWasmModule;
 exports.isNodejsRuntime = isNodejsRuntime;
 exports.isWasmInitialized = isWasmInitialized;
 exports.loadWasmNodejs = loadWasmNodejs;
-//# sourceMappingURL=nodejs-wasm-loader.js.map
-//# sourceMappingURL=nodejs-wasm-loader.js.map

package/dist/nodejs-wasm-loader.mjs

@@ -81,5 +81,3 @@ function isWasmInitialized() {
 }
 
 export { getWasmModule, isNodejsRuntime, isWasmInitialized, loadWasmNodejs };
-//# sourceMappingURL=nodejs-wasm-loader.mjs.map
-//# sourceMappingURL=nodejs-wasm-loader.mjs.map

package/dist/policy.js

@@ -74,7 +74,7 @@ async function handlePolicyDecision(request, decision, config, detection) {
     case checkpointShared.ENFORCEMENT_ACTIONS.CHALLENGE:
       return buildChallengeResponse(request, decision, config, detection);
     case checkpointShared.ENFORCEMENT_ACTIONS.LOG:
-      console.log("[AgentShield] Policy decision (log):", {
+      console.log("[Checkpoint] Policy decision (log):", {
         path: request.nextUrl.pathname,
         action: decision.action,
         reason: decision.reason,
@@ -119,7 +119,7 @@ async function getPolicy(config) {
       return await fetcher.getPolicy(config.fetchPolicy.projectId);
     } catch (error) {
       if (config.debug) {
-        console.warn("[AgentShield] Policy fetch failed, using fallback:", error);
+        console.warn("[Checkpoint] Policy fetch failed, using fallback:", error);
       }
       return checkpointShared.PolicyConfigSchema.parse({
         ...checkpointShared.DEFAULT_POLICY,
@@ -149,7 +149,7 @@ async function applyPolicy(request, detection, config) {
     return await handlePolicyDecision(request, decision, config, detection);
   } catch (error) {
     if (config.debug) {
-      console.error("[AgentShield] Policy evaluation error:", error);
+      console.error("[Checkpoint] Policy evaluation error:", error);
     }
     if (config.failOpen !== false) {
       return null;
@@ -185,5 +185,3 @@ exports.createContextFromDetection = createContextFromDetection;
 exports.evaluatePolicyForDetection = evaluatePolicyForDetection;
 exports.getPolicy = getPolicy;
 exports.handlePolicyDecision = handlePolicyDecision;
-//# sourceMappingURL=policy.js.map
-//# sourceMappingURL=policy.js.map

package/dist/policy.mjs

@@ -73,7 +73,7 @@ async function handlePolicyDecision(request, decision, config, detection) {
     case ENFORCEMENT_ACTIONS.CHALLENGE:
       return buildChallengeResponse(request, decision, config, detection);
     case ENFORCEMENT_ACTIONS.LOG:
-      console.log("[AgentShield] Policy decision (log):", {
+      console.log("[Checkpoint] Policy decision (log):", {
         path: request.nextUrl.pathname,
         action: decision.action,
         reason: decision.reason,
@@ -118,7 +118,7 @@ async function getPolicy(config) {
       return await fetcher.getPolicy(config.fetchPolicy.projectId);
     } catch (error) {
       if (config.debug) {
-        console.warn("[AgentShield] Policy fetch failed, using fallback:", error);
+        console.warn("[Checkpoint] Policy fetch failed, using fallback:", error);
       }
       return PolicyConfigSchema.parse({
         ...DEFAULT_POLICY,
@@ -148,7 +148,7 @@ async function applyPolicy(request, detection, config) {
     return await handlePolicyDecision(request, decision, config, detection);
   } catch (error) {
     if (config.debug) {
-      console.error("[AgentShield] Policy evaluation error:", error);
+      console.error("[Checkpoint] Policy evaluation error:", error);
     }
     if (config.failOpen !== false) {
       return null;
@@ -161,5 +161,3 @@ async function applyPolicy(request, detection, config) {
 }
 
 export { applyPolicy, buildBlockedResponse, buildChallengeResponse, buildRedirectResponse, createContextFromDetection, evaluatePolicyForDetection, getPolicy, handlePolicyDecision };
-//# sourceMappingURL=policy.mjs.map
-//# sourceMappingURL=policy.mjs.map

package/dist/session-tracker.js

@@ -11,7 +11,7 @@ var EdgeSessionTracker = class {
       cookieName: config.cookieName || "__agentshield_session",
       cookieMaxAge: config.cookieMaxAge || 3600,
       // 1 hour default
-      encryptionKey: config.encryptionKey || process.env.AGENTSHIELD_SECRET || "agentshield-default-key"
+      encryptionKey: config.encryptionKey || process.env.CHECKPOINT_SECRET || "agentshield-default-key"
     };
   }
   /**
@@ -166,5 +166,3 @@ var StatelessSessionChecker = class {
 
 exports.EdgeSessionTracker = EdgeSessionTracker;
 exports.StatelessSessionChecker = StatelessSessionChecker;
-//# sourceMappingURL=session-tracker.js.map
-//# sourceMappingURL=session-tracker.js.map

package/dist/session-tracker.mjs

@@ -9,7 +9,7 @@ var EdgeSessionTracker = class {
       cookieName: config.cookieName || "__agentshield_session",
       cookieMaxAge: config.cookieMaxAge || 3600,
       // 1 hour default
-      encryptionKey: config.encryptionKey || process.env.AGENTSHIELD_SECRET || "agentshield-default-key"
+      encryptionKey: config.encryptionKey || process.env.CHECKPOINT_SECRET || "agentshield-default-key"
     };
   }
   /**
@@ -163,5 +163,3 @@ var StatelessSessionChecker = class {
 };
 
 export { EdgeSessionTracker, StatelessSessionChecker };
-//# sourceMappingURL=session-tracker.mjs.map
-//# sourceMappingURL=session-tracker.mjs.map