@kya-os/mcp-i-core 1.1.13-canary.2 → 1.2.1-canary.0

package/dist/utils/storage-keys.d.ts

@@ -0,0 +1,120 @@
+/**
+ * Storage Key Migration Utilities
+ *
+ * Provides utilities for migrating from old storage key formats to new composite formats.
+ * This supports Phase 3 Task 2 (StorageService) and Phase 4 (User DID identity linking).
+ *
+ * @package @kya-os/mcp-i-core
+ */
+/**
+ * Legacy storage key format (agent-only, causes multi-tenant conflicts)
+ * Format: `agent:${agentDid}:delegation`
+ */
+export declare function legacyDelegationKey(agentDid: string): string;
+/**
+ * New composite storage key format (user+agent scoped, prevents conflicts)
+ * Format: `delegation:user:${userDid}:agent:${agentDid}:project:${projectId}`
+ *
+ * Note: projectId is optional for backward compatibility
+ */
+export declare function compositeDelegationKey(userDid: string, agentDid: string, projectId?: string): string;
+/**
+ * Session cache key format
+ * Format: `session:${sessionId}`
+ */
+export declare function sessionKey(sessionId: string): string;
+/**
+ * User DID storage key format
+ * Format: `userDid:oauth:${provider}:${subject}`
+ */
+export declare function userDidKey(provider: string, subject: string): string;
+/**
+ * OAuth identity mapping key format
+ * Format: `oauth:${provider}:${subject}`
+ */
+export declare function oauthIdentityKey(provider: string, subject: string): string;
+/**
+ * Verification cache key format
+ * Format: `verified:${tokenHash}`
+ */
+export declare function verificationCacheKey(tokenHash: string): string;
+/**
+ * Nonce tracking key format
+ * Format: `nonce:${nonce}`
+ */
+export declare function nonceKey(nonce: string): string;
+/**
+ * Storage key migration result
+ */
+export interface MigrationResult {
+    /** Number of keys migrated */
+    migrated: number;
+    /** Number of keys that failed to migrate */
+    failed: number;
+    /** List of migrated key pairs (old -> new) */
+    migrations: Array<{
+        oldKey: string;
+        newKey: string;
+    }>;
+    /** List of errors encountered */
+    errors: Array<{
+        key: string;
+        error: string;
+    }>;
+}
+/**
+ * Storage provider interface for migration operations
+ *
+ * Matches the base StorageProvider abstract class contract.
+ */
+export interface StorageProvider {
+    get(key: string): Promise<string | null>;
+    set(key: string, value: string): Promise<void>;
+    delete(key: string): Promise<void>;
+    exists(key: string): Promise<boolean>;
+    list(prefix?: string): Promise<string[]>;
+}
+/**
+ * Migrate delegation keys from legacy format to composite format
+ *
+ * This function:
+ * 1. Finds all legacy keys (`agent:${did}:delegation`)
+ * 2. Attempts to extract userDid from session data or OAuth mappings
+ * 3. Creates new composite keys (`delegation:user:${userDid}:agent:${agentDid}`)
+ * 4. Copies values to new keys
+ * 5. Optionally deletes old keys (dry-run mode available)
+ *
+ * @param storage - Storage provider instance
+ * @param options - Migration options
+ * @returns Migration result with statistics
+ */
+export declare function migrateDelegationKeys(storage: StorageProvider, options?: {
+    /** If true, only report what would be migrated without making changes */
+    dryRun?: boolean;
+    /** If true, delete old keys after successful migration */
+    deleteOldKeys?: boolean;
+    /** Optional userDid resolver function (if not provided, attempts to extract from session) */
+    resolveUserDid?: (agentDid: string, sessionId?: string) => Promise<string | null>;
+}): Promise<MigrationResult>;
+/**
+ * Storage key constants for consistent namespace management
+ *
+ * These match the Phase 4 storage key architecture.
+ */
+export declare const STORAGE_KEYS: {
+    /** User DID storage (persistent - 90 days) */
+    readonly userDid: typeof userDidKey;
+    /** OAuth identity mapping (persistent - 90 days) */
+    readonly oauthIdentity: typeof oauthIdentityKey;
+    /** User+Agent delegation tokens (persistent - 7 days) */
+    readonly delegation: typeof compositeDelegationKey;
+    /** Session cache (temporary - 30 minutes) */
+    readonly session: typeof sessionKey;
+    /** Legacy delegation format (deprecated - 24 hours) */
+    readonly legacyDelegation: typeof legacyDelegationKey;
+    /** Verification cache (temporary - 5 minutes) */
+    readonly verificationCache: typeof verificationCacheKey;
+    /** Nonce tracking (temporary - 5 minutes) */
+    readonly nonce: typeof nonceKey;
+};
+//# sourceMappingURL=storage-keys.d.ts.map

package/dist/utils/storage-keys.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"storage-keys.d.ts","sourceRoot":"","sources":["../../src/utils/storage-keys.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAE5D;AAED;;;;;GAKG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,MAAM,EAChB,SAAS,CAAC,EAAE,MAAM,GACjB,MAAM,CAKR;AAED;;;GAGG;AACH,wBAAgB,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,CAEpD;AAED;;;GAGG;AACH,wBAAgB,UAAU,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,MAAM,CAEpE;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,MAAM,CAE1E;AAED;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,CAE9D;AAED;;;GAGG;AACH,wBAAgB,QAAQ,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAE9C;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,8BAA8B;IAC9B,QAAQ,EAAE,MAAM,CAAC;IAEjB,4CAA4C;IAC5C,MAAM,EAAE,MAAM,CAAC;IAEf,8CAA8C;IAC9C,UAAU,EAAE,KAAK,CAAC;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAEtD,iCAAiC;IACjC,MAAM,EAAE,KAAK,CAAC;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CAC/C;AAED;;;;GAIG;AACH,MAAM,WAAW,eAAe;IAC9B,GAAG,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IACzC,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC/C,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACnC,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;CAC1C;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAsB,qBAAqB,CACzC,OAAO,EAAE,eAAe,EACxB,OAAO,GAAE;IACP,yEAAyE;IACzE,MAAM,CAAC,EAAE,OAAO,CAAC;IAEjB,0DAA0D;IAC1D,aAAa,CAAC,EAAE,OAAO,CAAC;IAExB,6FAA6F;IAC7F,cAAc,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;CAC9E,GACL,OAAO,CAAC,eAAe,CAAC,CAsH1B;AAED;;;;GAIG;AACH,eAAO,MAAM,YAAY;IACvB,8CAA8C;;IAG9C,oDAAoD;;IAGpD,yDAAyD;;IAGzD,6CAA6C;;IAG7C,uDAAuD;;IAGvD,iDAAiD;;IAGjD,6CAA6C;;CAErC,CAAC"}

package/dist/utils/storage-keys.js

@@ -0,0 +1,217 @@
+"use strict";
+/**
+ * Storage Key Migration Utilities
+ *
+ * Provides utilities for migrating from old storage key formats to new composite formats.
+ * This supports Phase 3 Task 2 (StorageService) and Phase 4 (User DID identity linking).
+ *
+ * @package @kya-os/mcp-i-core
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.STORAGE_KEYS = void 0;
+exports.legacyDelegationKey = legacyDelegationKey;
+exports.compositeDelegationKey = compositeDelegationKey;
+exports.sessionKey = sessionKey;
+exports.userDidKey = userDidKey;
+exports.oauthIdentityKey = oauthIdentityKey;
+exports.verificationCacheKey = verificationCacheKey;
+exports.nonceKey = nonceKey;
+exports.migrateDelegationKeys = migrateDelegationKeys;
+/**
+ * Legacy storage key format (agent-only, causes multi-tenant conflicts)
+ * Format: `agent:${agentDid}:delegation`
+ */
+function legacyDelegationKey(agentDid) {
+    return `agent:${agentDid}:delegation`;
+}
+/**
+ * New composite storage key format (user+agent scoped, prevents conflicts)
+ * Format: `delegation:user:${userDid}:agent:${agentDid}:project:${projectId}`
+ *
+ * Note: projectId is optional for backward compatibility
+ */
+function compositeDelegationKey(userDid, agentDid, projectId) {
+    if (projectId) {
+        return `delegation:user:${userDid}:agent:${agentDid}:project:${projectId}`;
+    }
+    return `delegation:user:${userDid}:agent:${agentDid}`;
+}
+/**
+ * Session cache key format
+ * Format: `session:${sessionId}`
+ */
+function sessionKey(sessionId) {
+    return `session:${sessionId}`;
+}
+/**
+ * User DID storage key format
+ * Format: `userDid:oauth:${provider}:${subject}`
+ */
+function userDidKey(provider, subject) {
+    return `userDid:oauth:${provider}:${subject}`;
+}
+/**
+ * OAuth identity mapping key format
+ * Format: `oauth:${provider}:${subject}`
+ */
+function oauthIdentityKey(provider, subject) {
+    return `oauth:${provider}:${subject}`;
+}
+/**
+ * Verification cache key format
+ * Format: `verified:${tokenHash}`
+ */
+function verificationCacheKey(tokenHash) {
+    return `verified:${tokenHash}`;
+}
+/**
+ * Nonce tracking key format
+ * Format: `nonce:${nonce}`
+ */
+function nonceKey(nonce) {
+    return `nonce:${nonce}`;
+}
+/**
+ * Migrate delegation keys from legacy format to composite format
+ *
+ * This function:
+ * 1. Finds all legacy keys (`agent:${did}:delegation`)
+ * 2. Attempts to extract userDid from session data or OAuth mappings
+ * 3. Creates new composite keys (`delegation:user:${userDid}:agent:${agentDid}`)
+ * 4. Copies values to new keys
+ * 5. Optionally deletes old keys (dry-run mode available)
+ *
+ * @param storage - Storage provider instance
+ * @param options - Migration options
+ * @returns Migration result with statistics
+ */
+async function migrateDelegationKeys(storage, options = {}) {
+    const result = {
+        migrated: 0,
+        failed: 0,
+        migrations: [],
+        errors: [],
+    };
+    try {
+        // Find all legacy delegation keys
+        const legacyKeys = await storage.list('agent:');
+        const delegationKeys = legacyKeys.filter((key) => key.match(/^agent:[^:]+:delegation$/));
+        console.log(`Found ${delegationKeys.length} legacy delegation keys to migrate`);
+        for (const oldKey of delegationKeys) {
+            try {
+                // Extract agentDid from key: `agent:${agentDid}:delegation`
+                const match = oldKey.match(/^agent:([^:]+):delegation$/);
+                if (!match) {
+                    result.errors.push({
+                        key: oldKey,
+                        error: 'Invalid legacy key format',
+                    });
+                    result.failed++;
+                    continue;
+                }
+                const agentDid = match[1];
+                // Get the value from old key
+                const value = await storage.get(oldKey);
+                if (!value) {
+                    // Key exists but has no value - skip
+                    continue;
+                }
+                // Try to resolve userDid
+                let userDid = null;
+                let sessionId = undefined;
+                // First, attempt to extract from session data to get both userDid and sessionId
+                const sessionKeys = await storage.list('session:');
+                for (const sessionKey of sessionKeys) {
+                    const sessionData = await storage.get(sessionKey);
+                    if (sessionData) {
+                        try {
+                            const parsed = JSON.parse(sessionData);
+                            if (parsed.userDid && parsed.agentDid === agentDid) {
+                                userDid = parsed.userDid;
+                                // Extract sessionId from key: `session:${sessionId}`
+                                const sessionMatch = sessionKey.match(/^session:(.+)$/);
+                                if (sessionMatch) {
+                                    sessionId = sessionMatch[1];
+                                }
+                                break;
+                            }
+                        }
+                        catch {
+                            // Not JSON, skip
+                        }
+                    }
+                }
+                // If custom resolver provided, use it (with sessionId context if available)
+                if (options.resolveUserDid) {
+                    const resolvedUserDid = await options.resolveUserDid(agentDid, sessionId);
+                    // Use resolved userDid if available, otherwise fall back to extracted one
+                    if (resolvedUserDid) {
+                        userDid = resolvedUserDid;
+                    }
+                }
+                if (!userDid) {
+                    // Cannot migrate without userDid - skip for now
+                    result.errors.push({
+                        key: oldKey,
+                        error: 'Cannot resolve userDid - skipping migration',
+                    });
+                    result.failed++;
+                    continue;
+                }
+                // Create new composite key
+                const newKey = compositeDelegationKey(userDid, agentDid);
+                if (options.dryRun) {
+                    // Just record what would be migrated
+                    result.migrations.push({ oldKey, newKey });
+                    result.migrated++;
+                }
+                else {
+                    // Copy value to new key
+                    await storage.set(newKey, value);
+                    result.migrations.push({ oldKey, newKey });
+                    result.migrated++;
+                    // Optionally delete old key
+                    if (options.deleteOldKeys) {
+                        await storage.delete(oldKey);
+                    }
+                }
+            }
+            catch (error) {
+                result.errors.push({
+                    key: oldKey,
+                    error: error instanceof Error ? error.message : String(error),
+                });
+                result.failed++;
+            }
+        }
+    }
+    catch (error) {
+        result.errors.push({
+            key: 'migration',
+            error: error instanceof Error ? error.message : String(error),
+        });
+    }
+    return result;
+}
+/**
+ * Storage key constants for consistent namespace management
+ *
+ * These match the Phase 4 storage key architecture.
+ */
+exports.STORAGE_KEYS = {
+    /** User DID storage (persistent - 90 days) */
+    userDid: userDidKey,
+    /** OAuth identity mapping (persistent - 90 days) */
+    oauthIdentity: oauthIdentityKey,
+    /** User+Agent delegation tokens (persistent - 7 days) */
+    delegation: compositeDelegationKey,
+    /** Session cache (temporary - 30 minutes) */
+    session: sessionKey,
+    /** Legacy delegation format (deprecated - 24 hours) */
+    legacyDelegation: legacyDelegationKey,
+    /** Verification cache (temporary - 5 minutes) */
+    verificationCache: verificationCacheKey,
+    /** Nonce tracking (temporary - 5 minutes) */
+    nonce: nonceKey,
+};
+//# sourceMappingURL=storage-keys.js.map

package/dist/utils/storage-keys.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"storage-keys.js","sourceRoot":"","sources":["../../src/utils/storage-keys.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;AAMH,kDAEC;AAQD,wDASC;AAMD,gCAEC;AAMD,gCAEC;AAMD,4CAEC;AAMD,oDAEC;AAMD,4BAEC;AA8CD,sDAkIC;AA/OD;;;GAGG;AACH,SAAgB,mBAAmB,CAAC,QAAgB;IAClD,OAAO,SAAS,QAAQ,aAAa,CAAC;AACxC,CAAC;AAED;;;;;GAKG;AACH,SAAgB,sBAAsB,CACpC,OAAe,EACf,QAAgB,EAChB,SAAkB;IAElB,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,mBAAmB,OAAO,UAAU,QAAQ,YAAY,SAAS,EAAE,CAAC;IAC7E,CAAC;IACD,OAAO,mBAAmB,OAAO,UAAU,QAAQ,EAAE,CAAC;AACxD,CAAC;AAED;;;GAGG;AACH,SAAgB,UAAU,CAAC,SAAiB;IAC1C,OAAO,WAAW,SAAS,EAAE,CAAC;AAChC,CAAC;AAED;;;GAGG;AACH,SAAgB,UAAU,CAAC,QAAgB,EAAE,OAAe;IAC1D,OAAO,iBAAiB,QAAQ,IAAI,OAAO,EAAE,CAAC;AAChD,CAAC;AAED;;;GAGG;AACH,SAAgB,gBAAgB,CAAC,QAAgB,EAAE,OAAe;IAChE,OAAO,SAAS,QAAQ,IAAI,OAAO,EAAE,CAAC;AACxC,CAAC;AAED;;;GAGG;AACH,SAAgB,oBAAoB,CAAC,SAAiB;IACpD,OAAO,YAAY,SAAS,EAAE,CAAC;AACjC,CAAC;AAED;;;GAGG;AACH,SAAgB,QAAQ,CAAC,KAAa;IACpC,OAAO,SAAS,KAAK,EAAE,CAAC;AAC1B,CAAC;AAgCD;;;;;;;;;;;;;GAaG;AACI,KAAK,UAAU,qBAAqB,CACzC,OAAwB,EACxB,UASI,EAAE;IAEN,MAAM,MAAM,GAAoB;QAC9B,QAAQ,EAAE,CAAC;QACX,MAAM,EAAE,CAAC;QACT,UAAU,EAAE,EAAE;QACd,MAAM,EAAE,EAAE;KACX,CAAC;IAEF,IAAI,CAAC;QACH,kCAAkC;QAClC,MAAM,UAAU,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAChD,MAAM,cAAc,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,EAAE,CAC/C,GAAG,CAAC,KAAK,CAAC,0BAA0B,CAAC,CACtC,CAAC;QAEF,OAAO,CAAC,GAAG,CAAC,SAAS,cAAc,CAAC,MAAM,oCAAoC,CAAC,CAAC;QAEhF,KAAK,MAAM,MAAM,IAAI,cAAc,EAAE,CAAC;YACpC,IAAI,CAAC;gBACH,4DAA4D;gBAC5D,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,4BAA4B,CAAC,CAAC;gBACzD,IAAI,CAAC,KAAK,EAAE,CAAC;oBACX,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;wBACjB,GAAG,EAAE,MAAM;wBACX,KAAK,EAAE,2BAA2B;qBACnC,CAAC,CAAC;oBACH,MAAM,CAAC,MAAM,EAAE,CAAC;oBAChB,SAAS;gBACX,CAAC;gBAED,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;gBAE1B,6BAA6B;gBAC7B,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBACxC,IAAI,CAAC,KAAK,EAAE,CAAC;oBACX,qCAAqC;oBACrC,SAAS;gBACX,CAAC;gBAED,yBAAyB;gBACzB,IAAI,OAAO,GAAkB,IAAI,CAAC;gBAClC,IAAI,SAAS,GAAuB,SAAS,CAAC;gBAE9C,gFAAgF;gBAChF,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;gBACnD,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;oBACrC,MAAM,WAAW,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;oBAClD,IAAI,WAAW,EAAE,CAAC;wBAChB,IAAI,CAAC;4BACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;4BACvC,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;gCACnD,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;gCACzB,qDAAqD;gCACrD,MAAM,YAAY,GAAG,UAAU,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC;gCACxD,IAAI,YAAY,EAAE,CAAC;oCACjB,SAAS,GAAG,YAAY,CAAC,CAAC,CAAC,CAAC;gCAC9B,CAAC;gCACD,MAAM;4BACR,CAAC;wBACH,CAAC;wBAAC,MAAM,CAAC;4BACP,iBAAiB;wBACnB,CAAC;oBACH,CAAC;gBACH,CAAC;gBAED,4EAA4E;gBAC5E,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;oBAC3B,MAAM,eAAe,GAAG,MAAM,OAAO,CAAC,cAAc,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;oBAC1E,0EAA0E;oBAC1E,IAAI,eAAe,EAAE,CAAC;wBACpB,OAAO,GAAG,eAAe,CAAC;oBAC5B,CAAC;gBACH,CAAC;gBAED,IAAI,CAAC,OAAO,EAAE,CAAC;oBACb,gDAAgD;oBAChD,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;wBACjB,GAAG,EAAE,MAAM;wBACX,KAAK,EAAE,6CAA6C;qBACrD,CAAC,CAAC;oBACH,MAAM,CAAC,MAAM,EAAE,CAAC;oBAChB,SAAS;gBACX,CAAC;gBAED,2BAA2B;gBAC3B,MAAM,MAAM,GAAG,sBAAsB,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;gBAEzD,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;oBACnB,qCAAqC;oBACrC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;oBAC3C,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACpB,CAAC;qBAAM,CAAC;oBACN,wBAAwB;oBACxB,MAAM,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;oBACjC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;oBAC3C,MAAM,CAAC,QAAQ,EAAE,CAAC;oBAElB,4BAA4B;oBAC5B,IAAI,OAAO,CAAC,aAAa,EAAE,CAAC;wBAC1B,MAAM,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;oBAC/B,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;oBACjB,GAAG,EAAE,MAAM;oBACX,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;iBAC9D,CAAC,CAAC;gBACH,MAAM,CAAC,MAAM,EAAE,CAAC;YAClB,CAAC;QACH,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;YACjB,GAAG,EAAE,WAAW;YAChB,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;SAC9D,CAAC,CAAC;IACL,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;GAIG;AACU,QAAA,YAAY,GAAG;IAC1B,8CAA8C;IAC9C,OAAO,EAAE,UAAU;IAEnB,oDAAoD;IACpD,aAAa,EAAE,gBAAgB;IAE/B,yDAAyD;IACzD,UAAU,EAAE,sBAAsB;IAElC,6CAA6C;IAC7C,OAAO,EAAE,UAAU;IAEnB,uDAAuD;IACvD,gBAAgB,EAAE,mBAAmB;IAErC,iDAAiD;IACjD,iBAAiB,EAAE,oBAAoB;IAEvC,6CAA6C;IAC7C,KAAK,EAAE,QAAQ;CACP,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kya-os/mcp-i-core",
-  "version": "1.1.13-canary.2",
+  "version": "1.2.1-canary.0",
   "description": "Core provider-based architecture for MCP-I framework",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -31,7 +31,7 @@
     "test:watch": "vitest",
     "test:e2e": "vitest run src/__tests__/delegation-e2e.test.ts",
     "audit:compliance": "tsx scripts/audit-compliance.ts",
-    "prepublishOnly": "npm run build && node ../create-mcpi-app/scripts/validate-no-workspace.js"
+    "prepublishOnly": "npm run build && node ../create-mcpi-app/scripts/validate-dependencies.js"
   },
   "keywords": [
     "mcp-i",
@@ -42,8 +42,9 @@
     "core"
   ],
   "dependencies": {
-    "@kya-os/contracts": "1.5.2-canary.0",
-    "@modelcontextprotocol/sdk": "^1.11.4"
+    "@kya-os/contracts": "^1.5.2-canary.5",
+    "@modelcontextprotocol/sdk": "^1.11.4",
+    "json-canonicalize": "^2.0.0"
   },
   "devDependencies": {
     "@types/node": "^20.0.0",

package/dist/compliance/schema-verifier-v2.d.ts

@@ -1,110 +0,0 @@
-/**
- * Enhanced Schema Compliance Verification Tool v2
- *
- * Supports JSON Schema draft-07 features:
- * - $ref resolution
- * - oneOf, anyOf, allOf
- * - Nested required fields
- * - Array tuple validation
- * - Format, pattern, enum, const
- * - Recursive object validation
- */
-export interface SchemaMetadata {
-    id: string;
-    url: string;
-    version: string;
-    type: string;
-    description?: string;
-}
-export interface FieldComplianceResult {
-    fieldPath: string;
-    present: boolean;
-    expectedType: string;
-    actualType?: string;
-    typeMatches: boolean;
-    required: boolean;
-    status: 'pass' | 'fail' | 'warning';
-    reason?: string;
-}
-export interface SchemaComplianceReport {
-    schema: SchemaMetadata;
-    compliant: boolean;
-    compliancePercentage: number;
-    fields: FieldComplianceResult[];
-    issues: string[];
-    warnings: string[];
-    timestamp: number;
-}
-export interface FullComplianceReport {
-    totalSchemas: number;
-    compliantSchemas: number;
-    overallCompliance: number;
-    schemaReports: SchemaComplianceReport[];
-    criticalIssues: string[];
-    timestamp: number;
-}
-/**
- * Enhanced Schema Verifier with JSON Schema draft-07 support
- */
-export declare class SchemaVerifierV2 {
-    private schemasBaseUrl;
-    private schemaCache;
-    constructor(options?: {
-        schemasBaseUrl?: string;
-    });
-    /**
-     * Verify a single schema against implementation
-     */
-    verifySchema(schema: SchemaMetadata, implementation: any): Promise<SchemaComplianceReport>;
-    /**
-     * Verify all schemas
-     */
-    verifyAll(schemas: SchemaMetadata[], implementations: Map<string, any>): Promise<FullComplianceReport>;
-    /**
-     * Validate implementation against schema recursively
-     */
-    private validateAgainstSchema;
-    /**
-     * Validate against oneOf, anyOf, allOf
-     */
-    private validateUnion;
-    /**
-     * Check if value matches schema (lightweight check)
-     */
-    private matchesSchema;
-    /**
-     * Validate array against schema
-     */
-    private validateArray;
-    /**
-     * Check a single field
-     */
-    private checkField;
-    /**
-     * Get actual JavaScript type
-     */
-    private getActualType;
-    /**
-     * Resolve $ref reference
-     */
-    private resolveRef;
-    /**
-     * Fetch a schema from URL
-     */
-    private fetchSchema;
-    /**
-     * Generate a formatted report
-     */
-    generateReport(report: SchemaComplianceReport): string;
-    /**
-     * Generate full report
-     */
-    generateFullReport(report: FullComplianceReport): string;
-}
-/**
- * Create an enhanced schema verifier
- */
-export declare function createSchemaVerifierV2(options?: {
-    schemasBaseUrl?: string;
-}): SchemaVerifierV2;
-//# sourceMappingURL=schema-verifier-v2.d.ts.map

package/dist/compliance/schema-verifier-v2.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"schema-verifier-v2.d.ts","sourceRoot":"","sources":["../../src/compliance/schema-verifier-v2.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,qBAAqB;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,OAAO,CAAC;IACjB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,OAAO,CAAC;IACrB,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC;IACpC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,cAAc,CAAC;IACvB,SAAS,EAAE,OAAO,CAAC;IACnB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,MAAM,EAAE,qBAAqB,EAAE,CAAC;IAChC,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,oBAAoB;IACnC,YAAY,EAAE,MAAM,CAAC;IACrB,gBAAgB,EAAE,MAAM,CAAC;IACzB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,aAAa,EAAE,sBAAsB,EAAE,CAAC;IACxC,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,cAAc,CAA+B;IACrD,OAAO,CAAC,WAAW,CAA0B;gBAEjC,OAAO,CAAC,EAAE;QAAE,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE;IAMjD;;OAEG;IACG,YAAY,CAChB,MAAM,EAAE,cAAc,EACtB,cAAc,EAAE,GAAG,GAClB,OAAO,CAAC,sBAAsB,CAAC;IAqElC;;OAEG;IACG,SAAS,CACb,OAAO,EAAE,cAAc,EAAE,EACzB,eAAe,EAAE,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC,GAChC,OAAO,CAAC,oBAAoB,CAAC;IAiChC;;OAEG;IACH,OAAO,CAAC,qBAAqB;IA2D7B;;OAEG;IACH,OAAO,CAAC,aAAa;IAoErB;;OAEG;IACH,OAAO,CAAC,aAAa;IAyCrB;;OAEG;IACH,OAAO,CAAC,aAAa;IA+FrB;;OAEG;IACH,OAAO,CAAC,UAAU;IA+ElB;;OAEG;IACH,OAAO,CAAC,aAAa;IAMrB;;OAEG;IACH,OAAO,CAAC,UAAU;IAgClB;;OAEG;YACW,WAAW;IAwBzB;;OAEG;IACH,cAAc,CAAC,MAAM,EAAE,sBAAsB,GAAG,MAAM;IA4CtD;;OAEG;IACH,kBAAkB,CAAC,MAAM,EAAE,oBAAoB,GAAG,MAAM;CAqCzD;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,CAAC,EAAE;IAC/C,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB,GAAG,gBAAgB,CAEnB"}