@kya-os/checkpoint-wasm-runtime 1.3.0 → 1.4.0

package/dist/{types-ByrdPLL2.d.ts → types-KPEcVvac.d.mts}

@@ -159,6 +159,36 @@ interface ContextSpec {
     tenantDecision: Decision;
     nowUnix: number;
     enforcementMode: EnforcementMode;
+    /**
+     * Engine-default behaviour knobs. Omit, or pass `{}`, to take the
+     * customer-onboarding-safe defaults (Tier-3 in Monitor mode —
+     * tenant policy is the arbiter). See [`EngineConfig`].
+     */
+    config?: EngineConfig;
 }
+/**
+ * Engine-default behaviour knobs the host can opt into. Mirrors the
+ * Rust `kya_os_engine::EngineConfig` shape; deserialised by the WASM
+ * glue with `#[serde(default)]` so an absent / empty `config` resolves
+ * to the safe defaults.
+ */
+interface EngineConfig {
+    /**
+     * Tier-3 (UA-only pattern match) engine-default action. Defaults to
+     * `'monitor'` — Stage 1 classification flows through to the tenant
+     * policy evaluator, but the engine does NOT short-circuit with its
+     * own `Block { Tier3UAMatch }`. Set to `'block'` when the host
+     * wants the engine to emit an engine-default block for known-agent
+     * UAs before the tenant policy seam (e.g., the bench harness or
+     * customers who've reviewed their traffic and want the calibrated
+     * block without writing a tenant-policy rule).
+     */
+    tier3Action?: Tier3Action;
+}
+/**
+ * Tier-3 default action — `'monitor'` (default) lets tenant policy
+ * decide; `'block'` opts into the engine-default short-circuit.
+ */
+type Tier3Action = 'monitor' | 'block';
 
-export type { AgentRequest as A, BlockReason as B, ContextSpec as C, Decision as D, EnforcementMode as E, HttpSignedRequest as H, InstructPayload as I, KeyType as K, McpIRequest as M, PlainHttpRequest as P, RedirectTarget as R, SuggestedAction as S, VerifyResult as V, A2ARequest as a, A2PRequest as b, ChallengeParams as c, DidDocument as d, EngineInfo as e, VerificationMethod as f };
+export type { AgentRequest as A, BlockReason as B, ContextSpec as C, Decision as D, EnforcementMode as E, HttpSignedRequest as H, InstructPayload as I, KeyType as K, McpIRequest as M, PlainHttpRequest as P, RedirectTarget as R, SuggestedAction as S, Tier3Action as T, VerifyResult as V, A2ARequest as a, A2PRequest as b, ChallengeParams as c, DidDocument as d, EngineConfig as e, EngineInfo as f, VerificationMethod as g };

package/dist/{types-ByrdPLL2.d.mts → types-KPEcVvac.d.ts}

@@ -159,6 +159,36 @@ interface ContextSpec {
     tenantDecision: Decision;
     nowUnix: number;
     enforcementMode: EnforcementMode;
+    /**
+     * Engine-default behaviour knobs. Omit, or pass `{}`, to take the
+     * customer-onboarding-safe defaults (Tier-3 in Monitor mode —
+     * tenant policy is the arbiter). See [`EngineConfig`].
+     */
+    config?: EngineConfig;
 }
+/**
+ * Engine-default behaviour knobs the host can opt into. Mirrors the
+ * Rust `kya_os_engine::EngineConfig` shape; deserialised by the WASM
+ * glue with `#[serde(default)]` so an absent / empty `config` resolves
+ * to the safe defaults.
+ */
+interface EngineConfig {
+    /**
+     * Tier-3 (UA-only pattern match) engine-default action. Defaults to
+     * `'monitor'` — Stage 1 classification flows through to the tenant
+     * policy evaluator, but the engine does NOT short-circuit with its
+     * own `Block { Tier3UAMatch }`. Set to `'block'` when the host
+     * wants the engine to emit an engine-default block for known-agent
+     * UAs before the tenant policy seam (e.g., the bench harness or
+     * customers who've reviewed their traffic and want the calibrated
+     * block without writing a tenant-policy rule).
+     */
+    tier3Action?: Tier3Action;
+}
+/**
+ * Tier-3 default action — `'monitor'` (default) lets tenant policy
+ * decide; `'block'` opts into the engine-default short-circuit.
+ */
+type Tier3Action = 'monitor' | 'block';
 
-export type { AgentRequest as A, BlockReason as B, ContextSpec as C, Decision as D, EnforcementMode as E, HttpSignedRequest as H, InstructPayload as I, KeyType as K, McpIRequest as M, PlainHttpRequest as P, RedirectTarget as R, SuggestedAction as S, VerifyResult as V, A2ARequest as a, A2PRequest as b, ChallengeParams as c, DidDocument as d, EngineInfo as e, VerificationMethod as f };
+export type { AgentRequest as A, BlockReason as B, ContextSpec as C, Decision as D, EnforcementMode as E, HttpSignedRequest as H, InstructPayload as I, KeyType as K, McpIRequest as M, PlainHttpRequest as P, RedirectTarget as R, SuggestedAction as S, Tier3Action as T, VerifyResult as V, A2ARequest as a, A2PRequest as b, ChallengeParams as c, DidDocument as d, EngineConfig as e, EngineInfo as f, VerificationMethod as g };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kya-os/checkpoint-wasm-runtime",
-  "version": "1.3.0",
+  "version": "1.4.0",
   "description": "Checkpoint WASM runtime for AI agent detection across all environments (formerly @kya-os/agentshield-wasm-runtime)",
   "keywords": [
     "ai",
@@ -66,6 +66,11 @@
       "import": "./dist/engine-edge.mjs",
       "require": "./dist/engine-edge.js"
     },
+    "./engine/node": {
+      "types": "./dist/engine-node.d.ts",
+      "import": "./dist/engine-node.mjs",
+      "require": "./dist/engine-node.js"
+    },
     "./orchestrator": {
       "edge-runtime": {
         "types": "./dist/orchestrator-edge.d.ts",
@@ -104,6 +109,8 @@
     "./wasm/agentshield_wasm_bg.wasm": "./wasm/agentshield_wasm_bg.wasm",
     "./wasm/kya-os-engine/kya_os_engine_bg.wasm": "./wasm/kya-os-engine/kya_os_engine_bg.wasm",
     "./wasm/kya-os-engine-web/kya_os_engine_bg.wasm": "./wasm/kya-os-engine-web/kya_os_engine_bg.wasm",
+    "./wasm/kya-os-engine-bundler/kya_os_engine_bg.wasm": "./wasm/kya-os-engine-bundler/kya_os_engine_bg.wasm",
+    "./wasm/*": "./wasm/*",
     "./package.json": "./package.json"
   },
   "files": [
@@ -125,6 +132,8 @@
     "rimraf": "^5.0.5",
     "tsup": "^8.0.2",
     "typescript": "^5.4.2",
+    "vite-plugin-top-level-await": "^1.6.0",
+    "vite-plugin-wasm": "^3.6.0",
     "vitest": "^1.3.1"
   },
   "publishConfig": {
@@ -148,6 +157,8 @@
     "format:check": "prettier --check \"src/**/*.{ts,tsx,json,md}\"",
     "copy-wasm": "mkdir -p ./wasm && cp ../../rust/crates/agentshield-wasm/pkg/agentshield_wasm_bg.wasm ./wasm/",
     "copy-engine-wasm": "mkdir -p ./wasm/kya-os-engine && cp ../../rust/crates/kya-os-engine/pkg/kya_os_engine_bg.wasm ../../rust/crates/kya-os-engine/pkg/kya_os_engine_bg.wasm.d.ts ../../rust/crates/kya-os-engine/pkg/kya_os_engine.d.ts ../../rust/crates/kya-os-engine/pkg/kya_os_engine.js ./wasm/kya-os-engine/",
-    "copy-engine-wasm-web": "mkdir -p ./wasm/kya-os-engine-web && cp ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine_bg.wasm ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine_bg.wasm.d.ts ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine.d.ts ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine.js ./wasm/kya-os-engine-web/"
+    "copy-engine-wasm-web": "mkdir -p ./wasm/kya-os-engine-web && cp ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine_bg.wasm ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine_bg.wasm.d.ts ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine.d.ts ../../rust/crates/kya-os-engine/pkg-web/kya_os_engine.js ./wasm/kya-os-engine-web/",
+    "copy-engine-wasm-bundler": "mkdir -p ./wasm/kya-os-engine-bundler && cp ../../rust/crates/kya-os-engine/pkg-bundler/kya_os_engine_bg.wasm ../../rust/crates/kya-os-engine/pkg-bundler/kya_os_engine_bg.wasm.d.ts ../../rust/crates/kya-os-engine/pkg-bundler/kya_os_engine_bg.js ../../rust/crates/kya-os-engine/pkg-bundler/kya_os_engine.d.ts ../../rust/crates/kya-os-engine/pkg-bundler/kya_os_engine.js ./wasm/kya-os-engine-bundler/",
+    "wasm:rebuild": "bash ../../rust/scripts/build-engine-wasm.sh"
   }
 }

package/wasm/kya-os-engine/package.json

@@ -1,7 +1,27 @@
 {
-  "name": "kya-os-engine-nodejs-wasm-glue",
-  "type": "commonjs",
+  "name": "kya-os-engine",
+  "collaborators": [
+    "KnowThat.ai Team"
+  ],
+  "description": "Verification engine for the KYA-OS ecosystem. The single source of truth for detection, identity, scope, revocation, policy, and reputation across every host runtime. See ADR-001.",
+  "version": "0.1.0",
+  "license": "MIT OR Apache-2.0",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/knowthat-ai/agentshield"
+  },
+  "files": [
+    "kya_os_engine_bg.wasm",
+    "kya_os_engine.js"
+  ],
   "main": "kya_os_engine.js",
-  "types": "kya_os_engine.d.ts",
-  "_note": "wasm-bindgen --target nodejs output: uses `module.exports` + `require('fs')` at module load. The parent wasm/package.json says type:module (for the OLDER agentshield_wasm.js ESM file), which would make Node mis-classify this CJS file and throw ERR_REQUIRE_ESM. This nested package.json overrides per Node's nearest-package.json resolution algorithm. See SDK-WASM-Bundler-Loader-1 follow-up in @kya-os/checkpoint-wasm-runtime@1.1.1 CHANGELOG."
+  "keywords": [
+    "kya-os",
+    "verification",
+    "mcp-i",
+    "agent",
+    "did"
+  ],
+  "type": "commonjs",
+  "_note": "wasm-bindgen --target nodejs output: uses module.exports + require('fs') at module load. The parent wasm/package.json says type:module (for the older agentshield_wasm.js ESM file), which would make Node mis-classify this CJS file and throw ERR_REQUIRE_ESM. This nested package.json overrides per Node's nearest-package.json resolution algorithm. See SDK-WASM-Bundler-Loader-1 (#2613) for the original incident; AIVF-1 Path B (#2639) re-instated this override after a wasm-pack regen silently dropped it, plus a regen-pipeline patcher (rust/scripts/build-engine-wasm.sh) + an integrity test (packages/checkpoint-wasm-runtime/src/__tests__/wasm-artifact-integrity.test.ts) so the next regen can't silently break Node consumers again."
 }

package/wasm/kya-os-engine-bundler/kya_os_engine.d.ts

@@ -0,0 +1,24 @@
+/* tslint:disable */
+/* eslint-disable */
+/**
+ * Cross-boundary `verify` wrapper. The JS host calls `engine.verify(input,
+ * ctxSpec)`; on success it gets a [`VerifyResult`] JSON object; on
+ * infrastructure failure (or malformed input) it gets a thrown JS error
+ * whose message names the failure mode.
+ *
+ * **Error semantics**:
+ *
+ * - Verification *verdicts* (Block/Challenge/etc.) surface inside the
+ *   returned `VerifyResult` — they are not thrown.
+ * - Engine [`VerifyError`][crate::error::VerifyError] (resolver / cache /
+ *   reputation / policy infra failures) surface as thrown JS errors.
+ * - Serde deserialisation failures (malformed JS input) surface as thrown
+ *   JS errors too, mirroring the typed-vs-thrown split.
+ *
+ * # JS signature
+ *
+ * ```ts
+ * function verify(input: AgentRequest, ctx: ContextSpec): VerifyResult;
+ * ```
+ */
+export function verify(input_js: any, ctx_js: any): any;

package/wasm/kya-os-engine-bundler/kya_os_engine.js

@@ -0,0 +1,4 @@
+import * as wasm from "./kya_os_engine_bg.wasm";
+export * from "./kya_os_engine_bg.js";
+import { __wbg_set_wasm } from "./kya_os_engine_bg.js";
+__wbg_set_wasm(wasm);