@kya-os/mcp-i 0.1.0 → 1.2.1

package/dist/runtime/http.js.LICENSE.txt

@@ -0,0 +1,252 @@
+/*!
+ * accepts
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * body-parser
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2014-2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * body-parser
+ * Copyright(c) 2014-2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * bytes
+ * Copyright(c) 2012-2014 TJ Holowaychuk
+ * Copyright(c) 2015 Jed Watson
+ * MIT Licensed
+ */
+
+/*!
+ * content-disposition
+ * Copyright(c) 2014-2017 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * content-type
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * cookie
+ * Copyright(c) 2012-2014 Roman Shtylman
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * depd
+ * Copyright(c) 2014-2018 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * destroy
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2015-2022 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * ee-first
+ * Copyright(c) 2014 Jonathan Ong
+ * MIT Licensed
+ */
+
+/*!
+ * encodeurl
+ * Copyright(c) 2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * escape-html
+ * Copyright(c) 2012-2013 TJ Holowaychuk
+ * Copyright(c) 2015 Andreas Lubbe
+ * Copyright(c) 2015 Tiancheng "Timothy" Gu
+ * MIT Licensed
+ */
+
+/*!
+ * etag
+ * Copyright(c) 2014-2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * express
+ * Copyright(c) 2009-2013 TJ Holowaychuk
+ * Copyright(c) 2013 Roman Shtylman
+ * Copyright(c) 2014-2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * express
+ * Copyright(c) 2009-2013 TJ Holowaychuk
+ * Copyright(c) 2014-2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * finalhandler
+ * Copyright(c) 2014-2022 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * forwarded
+ * Copyright(c) 2014-2017 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * fresh
+ * Copyright(c) 2012 TJ Holowaychuk
+ * Copyright(c) 2016-2017 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * http-errors
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * media-typer
+ * Copyright(c) 2014 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * merge-descriptors
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * methods
+ * Copyright(c) 2013-2014 TJ Holowaychuk
+ * Copyright(c) 2015-2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * mime-db
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2015-2022 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * mime-types
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * negotiator
+ * Copyright(c) 2012 Federico Romero
+ * Copyright(c) 2012-2014 Isaac Z. Schlueter
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * on-finished
+ * Copyright(c) 2013 Jonathan Ong
+ * Copyright(c) 2014 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * parseurl
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2014-2017 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * proxy-addr
+ * Copyright(c) 2014-2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * range-parser
+ * Copyright(c) 2012-2014 TJ Holowaychuk
+ * Copyright(c) 2015-2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * raw-body
+ * Copyright(c) 2013-2014 Jonathan Ong
+ * Copyright(c) 2014-2022 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * send
+ * Copyright(c) 2012 TJ Holowaychuk
+ * Copyright(c) 2014-2022 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * serve-static
+ * Copyright(c) 2010 Sencha Inc.
+ * Copyright(c) 2011 TJ Holowaychuk
+ * Copyright(c) 2014-2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * statuses
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * toidentifier
+ * Copyright(c) 2016 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * type-is
+ * Copyright(c) 2014 Jonathan Ong
+ * Copyright(c) 2014-2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * unpipe
+ * Copyright(c) 2015 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*!
+ * vary
+ * Copyright(c) 2014-2017 Douglas Christopher Wilson
+ * MIT Licensed
+ */
+
+/*! safe-buffer. MIT License. Feross Aboukhadijeh <https://feross.org/opensource> */
+
+/** @license URI.js v4.4.1 (c) 2011 Gary Court. License: http://github.com/garycourt/uri-js */

package/dist/runtime/identity.d.ts

@@ -0,0 +1,105 @@
+/**
+ * Identity Management System for XMCP-I Runtime
+ *
+ * Handles identity loading, generation, and validation for both development
+ * and production environments according to requirements 4.1-4.4.
+ */
+/**
+ * Agent identity structure
+ */
+export interface AgentIdentity {
+    did: string;
+    keyId: string;
+    privateKey: string;
+    publicKey: string;
+    createdAt: string;
+    lastRotated?: string;
+}
+/**
+ * Development identity file structure (.mcpi/identity.json)
+ */
+export interface DevIdentityFile {
+    version: string;
+    did: string;
+    keyId: string;
+    privateKey: string;
+    publicKey: string;
+    createdAt: string;
+    lastRotated?: string;
+}
+/**
+ * Production environment variables
+ */
+export interface ProdEnvironment {
+    AGENT_PRIVATE_KEY: string;
+    AGENT_KEY_ID: string;
+    AGENT_DID: string;
+    KYA_VOUCHED_API_KEY: string;
+}
+/**
+ * Identity management configuration
+ */
+export interface IdentityConfig {
+    environment: "development" | "production";
+    devIdentityPath?: string;
+    privacyMode?: boolean;
+}
+/**
+ * Error codes for identity management
+ */
+export declare const IDENTITY_ERRORS: {
+    readonly ENOIDENTITY: "XMCP_I_ENOIDENTITY";
+    readonly ECONFIG: "XMCP_I_ECONFIG";
+};
+/**
+ * Identity management class
+ */
+export declare class IdentityManager {
+    private config;
+    private cachedIdentity?;
+    constructor(config?: IdentityConfig);
+    /**
+     * Load or generate agent identity
+     * Requirements: 4.1, 4.2, 4.3, 4.4
+     */
+    ensureIdentity(): Promise<AgentIdentity>;
+    /**
+     * Load development identity from .mcpi/identity.json or generate new one
+     * Requirement: 4.1
+     */
+    private loadOrGenerateDevIdentity;
+    /**
+     * Generate new development identity
+     * Requirements: 4.1, 4.4
+     */
+    private generateDevIdentity;
+    /**
+     * Save development identity to .mcpi/identity.json
+     */
+    private saveDevIdentity;
+    /**
+     * Load production identity from environment variables
+     * Requirements: 4.2, 4.3
+     */
+    private loadProdIdentity;
+    /**
+     * Validate identity configuration
+     */
+    validateIdentity(identity: AgentIdentity): Promise<boolean>;
+    /**
+     * Clear cached identity (useful for testing)
+     */
+    clearCache(): void;
+    /**
+     * Get current configuration
+     */
+    getConfig(): IdentityConfig;
+}
+/**
+ * Default identity manager instance
+ */
+export declare const defaultIdentityManager: IdentityManager;
+/**
+ * Convenience function to ensure identity
+ */
+export declare function ensureIdentity(config?: IdentityConfig): Promise<AgentIdentity>;

package/dist/runtime/identity.js

@@ -0,0 +1,232 @@
+"use strict";
+/**
+ * Identity Management System for XMCP-I Runtime
+ *
+ * Handles identity loading, generation, and validation for both development
+ * and production environments according to requirements 4.1-4.4.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.defaultIdentityManager = exports.IdentityManager = exports.IDENTITY_ERRORS = void 0;
+exports.ensureIdentity = ensureIdentity;
+const promises_1 = require("fs/promises");
+const fs_1 = require("fs");
+const path_1 = require("path");
+const jose_1 = require("jose");
+const crypto_1 = require("crypto");
+/**
+ * Error codes for identity management
+ */
+exports.IDENTITY_ERRORS = {
+    ENOIDENTITY: "XMCP_I_ENOIDENTITY",
+    ECONFIG: "XMCP_I_ECONFIG",
+};
+/**
+ * Identity management class
+ */
+class IdentityManager {
+    config;
+    cachedIdentity;
+    constructor(config = { environment: "development" }) {
+        this.config = {
+            privacyMode: false, // Single public DID default
+            devIdentityPath: ".mcpi/identity.json",
+            ...config,
+        };
+    }
+    /**
+     * Load or generate agent identity
+     * Requirements: 4.1, 4.2, 4.3, 4.4
+     */
+    async ensureIdentity() {
+        if (this.cachedIdentity) {
+            return this.cachedIdentity;
+        }
+        if (this.config.environment === "development") {
+            this.cachedIdentity = await this.loadOrGenerateDevIdentity();
+        }
+        else {
+            this.cachedIdentity = await this.loadProdIdentity();
+        }
+        return this.cachedIdentity;
+    }
+    /**
+     * Load development identity from .mcpi/identity.json or generate new one
+     * Requirement: 4.1
+     */
+    async loadOrGenerateDevIdentity() {
+        const identityPath = this.config.devIdentityPath;
+        try {
+            if ((0, fs_1.existsSync)(identityPath)) {
+                const content = await (0, promises_1.readFile)(identityPath, "utf-8");
+                const devIdentity = JSON.parse(content);
+                return {
+                    did: devIdentity.did,
+                    keyId: devIdentity.keyId,
+                    privateKey: devIdentity.privateKey,
+                    publicKey: devIdentity.publicKey,
+                    createdAt: devIdentity.createdAt,
+                    lastRotated: devIdentity.lastRotated,
+                };
+            }
+        }
+        catch {
+            // If file exists but is corrupted, we'll regenerate
+            console.warn(`Warning: Could not load identity from ${identityPath}, generating new one`);
+        }
+        // Generate new identity
+        return await this.generateDevIdentity();
+    }
+    /**
+     * Generate new development identity
+     * Requirements: 4.1, 4.4
+     */
+    async generateDevIdentity() {
+        // Generate Ed25519 keypair
+        const keyPair = await (0, jose_1.generateKeyPair)("EdDSA", { crv: "Ed25519" });
+        // Export keys to JWK format
+        const privateKeyJwk = await (0, jose_1.exportJWK)(keyPair.privateKey);
+        if (!privateKeyJwk.x || !privateKeyJwk.d) {
+            throw new Error("Failed to generate Ed25519 keypair");
+        }
+        const privateKey = Buffer.from(privateKeyJwk.d, "base64url").toString("base64");
+        const publicKey = Buffer.from(privateKeyJwk.x, "base64url").toString("base64");
+        // Generate key ID (first 8 chars of public key hash)
+        const keyId = `key-${(0, crypto_1.createHash)("sha256").update(publicKey).digest("hex").substring(0, 8)}`;
+        // Generate DID (for dev, use localhost)
+        const did = `did:web:localhost:3000:agents:${keyId}`;
+        const now = new Date().toISOString();
+        const identity = {
+            did,
+            keyId,
+            privateKey,
+            publicKey,
+            createdAt: now,
+        };
+        // Save to file
+        await this.saveDevIdentity(identity);
+        return identity;
+    }
+    /**
+     * Save development identity to .mcpi/identity.json
+     */
+    async saveDevIdentity(identity) {
+        const identityPath = this.config.devIdentityPath;
+        // Ensure directory exists
+        await (0, promises_1.mkdir)((0, path_1.dirname)(identityPath), { recursive: true });
+        const devIdentity = {
+            version: "1.0",
+            did: identity.did,
+            keyId: identity.keyId,
+            privateKey: identity.privateKey,
+            publicKey: identity.publicKey,
+            createdAt: identity.createdAt,
+            lastRotated: identity.lastRotated,
+        };
+        await (0, promises_1.writeFile)(identityPath, JSON.stringify(devIdentity, null, 2), {
+            mode: 0o600,
+        });
+        console.log(`✅ Identity saved to ${identityPath}`);
+        console.log(`   DID: ${identity.did}`);
+        console.log(`   Key ID: ${identity.keyId}`);
+    }
+    /**
+     * Load production identity from environment variables
+     * Requirements: 4.2, 4.3
+     */
+    async loadProdIdentity() {
+        const requiredEnvVars = [
+            "AGENT_PRIVATE_KEY",
+            "AGENT_KEY_ID",
+            "AGENT_DID",
+            "KYA_VOUCHED_API_KEY",
+        ];
+        const missing = [];
+        const env = {};
+        for (const varName of requiredEnvVars) {
+            const value = process.env[varName];
+            if (!value) {
+                missing.push(varName);
+            }
+            else {
+                env[varName] = value;
+            }
+        }
+        if (missing.length > 0) {
+            const error = new Error(`Missing required environment variables for production identity: ${missing.join(", ")}\n` +
+                "Required variables:\n" +
+                "  AGENT_PRIVATE_KEY - Base64-encoded Ed25519 private key\n" +
+                "  AGENT_KEY_ID - Key identifier\n" +
+                "  AGENT_DID - Agent DID\n" +
+                "  KYA_VOUCHED_API_KEY - Know-That-AI API key");
+            error.code = exports.IDENTITY_ERRORS.ENOIDENTITY;
+            throw error;
+        }
+        // For production, we expect the private key to be base64-encoded
+        // We'll derive a placeholder public key since we don't need it for signing
+        // In a real implementation, the public key would be derived properly
+        const privateKeyBuffer = Buffer.from(env.AGENT_PRIVATE_KEY, "base64");
+        // Generate a deterministic public key placeholder from the private key
+        const publicKey = (0, crypto_1.createHash)("sha256")
+            .update(privateKeyBuffer)
+            .digest("base64");
+        return {
+            did: env.AGENT_DID,
+            keyId: env.AGENT_KEY_ID,
+            privateKey: env.AGENT_PRIVATE_KEY,
+            publicKey,
+            createdAt: new Date().toISOString(), // We don't have creation time in prod
+        };
+    }
+    /**
+     * Validate identity configuration
+     */
+    async validateIdentity(identity) {
+        try {
+            // Basic validation
+            if (!identity.did ||
+                !identity.keyId ||
+                !identity.privateKey ||
+                !identity.publicKey) {
+                return false;
+            }
+            // Validate DID format
+            if (!identity.did.startsWith("did:")) {
+                return false;
+            }
+            // Validate key format (base64)
+            Buffer.from(identity.privateKey, "base64");
+            Buffer.from(identity.publicKey, "base64");
+            return true;
+        }
+        catch {
+            return false;
+        }
+    }
+    /**
+     * Clear cached identity (useful for testing)
+     */
+    clearCache() {
+        this.cachedIdentity = undefined;
+    }
+    /**
+     * Get current configuration
+     */
+    getConfig() {
+        return { ...this.config };
+    }
+}
+exports.IdentityManager = IdentityManager;
+/**
+ * Default identity manager instance
+ */
+exports.defaultIdentityManager = new IdentityManager();
+/**
+ * Convenience function to ensure identity
+ */
+async function ensureIdentity(config) {
+    if (config) {
+        const manager = new IdentityManager(config);
+        return manager.ensureIdentity();
+    }
+    return exports.defaultIdentityManager.ensureIdentity();
+}

package/dist/runtime/index.d.ts

@@ -0,0 +1,16 @@
+/**
+ * XMCP-I Runtime - Main Exports
+ *
+ * Identity-aware MCP runtime with proof generation, session management,
+ * audit logging, and well-known endpoints.
+ */
+export { MCPIRuntime, createMCPIRuntime, RuntimeFactory, RUNTIME_ERRORS, type MCPIRuntimeConfig, type RuntimeEnvironment, } from "./mcpi-runtime";
+export { IdentityManager, defaultIdentityManager, ensureIdentity, IDENTITY_ERRORS, type AgentIdentity, type DevIdentityFile, type ProdEnvironment, type IdentityConfig, } from "./identity";
+export { SessionManager, defaultSessionManager, createHandshakeRequest, validateHandshakeFormat, type SessionConfig, type HandshakeResult, } from "./session";
+export { ProofGenerator, createProofResponse, extractCanonicalData, type ToolRequest, type ToolResponse, type ProofOptions, } from "./proof";
+export { AuditLogger, defaultAuditLogger, logKeyRotationAudit, parseAuditLine, validateAuditRecord, type AuditConfig, type AuditContext, type KeyRotationAuditContext, } from "./audit";
+export { WellKnownManager, createWellKnownHandler, validateDIDDocument, validateAgentDocument, extractDIDFromPath, type DIDDocument, type VerificationMethod, type ServiceEndpoint, type AgentDocument, type WellKnownConfig, type WellKnownHandler, } from "./well-known";
+export { DebugManager, createDebugEndpoint, type DebugVerificationResult, type DebugPageData, } from "./debug";
+export { DemoManager, createDemoManager, DemoConsole, formatVerifyLink, type DemoConfig, } from "./demo";
+export type { HandshakeRequest, SessionContext, NonceCache, NonceCacheEntry, NonceCacheConfig, } from "@kya-os/contracts/handshake";
+export type { ProofMeta, DetachedProof, CanonicalHashes, AuditRecord, } from "@kya-os/contracts/proof";

package/dist/runtime/index.js

@@ -0,0 +1,56 @@
+"use strict";
+/**
+ * XMCP-I Runtime - Main Exports
+ *
+ * Identity-aware MCP runtime with proof generation, session management,
+ * audit logging, and well-known endpoints.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.formatVerifyLink = exports.DemoConsole = exports.createDemoManager = exports.DemoManager = exports.createDebugEndpoint = exports.DebugManager = exports.extractDIDFromPath = exports.validateAgentDocument = exports.validateDIDDocument = exports.createWellKnownHandler = exports.WellKnownManager = exports.validateAuditRecord = exports.parseAuditLine = exports.logKeyRotationAudit = exports.defaultAuditLogger = exports.AuditLogger = exports.extractCanonicalData = exports.createProofResponse = exports.ProofGenerator = exports.validateHandshakeFormat = exports.createHandshakeRequest = exports.defaultSessionManager = exports.SessionManager = exports.IDENTITY_ERRORS = exports.ensureIdentity = exports.defaultIdentityManager = exports.IdentityManager = exports.RUNTIME_ERRORS = exports.RuntimeFactory = exports.createMCPIRuntime = exports.MCPIRuntime = void 0;
+// Main runtime
+var mcpi_runtime_1 = require("./mcpi-runtime");
+Object.defineProperty(exports, "MCPIRuntime", { enumerable: true, get: function () { return mcpi_runtime_1.MCPIRuntime; } });
+Object.defineProperty(exports, "createMCPIRuntime", { enumerable: true, get: function () { return mcpi_runtime_1.createMCPIRuntime; } });
+Object.defineProperty(exports, "RuntimeFactory", { enumerable: true, get: function () { return mcpi_runtime_1.RuntimeFactory; } });
+Object.defineProperty(exports, "RUNTIME_ERRORS", { enumerable: true, get: function () { return mcpi_runtime_1.RUNTIME_ERRORS; } });
+// Identity management
+var identity_1 = require("./identity");
+Object.defineProperty(exports, "IdentityManager", { enumerable: true, get: function () { return identity_1.IdentityManager; } });
+Object.defineProperty(exports, "defaultIdentityManager", { enumerable: true, get: function () { return identity_1.defaultIdentityManager; } });
+Object.defineProperty(exports, "ensureIdentity", { enumerable: true, get: function () { return identity_1.ensureIdentity; } });
+Object.defineProperty(exports, "IDENTITY_ERRORS", { enumerable: true, get: function () { return identity_1.IDENTITY_ERRORS; } });
+// Session and handshake management
+var session_1 = require("./session");
+Object.defineProperty(exports, "SessionManager", { enumerable: true, get: function () { return session_1.SessionManager; } });
+Object.defineProperty(exports, "defaultSessionManager", { enumerable: true, get: function () { return session_1.defaultSessionManager; } });
+Object.defineProperty(exports, "createHandshakeRequest", { enumerable: true, get: function () { return session_1.createHandshakeRequest; } });
+Object.defineProperty(exports, "validateHandshakeFormat", { enumerable: true, get: function () { return session_1.validateHandshakeFormat; } });
+// Proof generation
+var proof_1 = require("./proof");
+Object.defineProperty(exports, "ProofGenerator", { enumerable: true, get: function () { return proof_1.ProofGenerator; } });
+Object.defineProperty(exports, "createProofResponse", { enumerable: true, get: function () { return proof_1.createProofResponse; } });
+Object.defineProperty(exports, "extractCanonicalData", { enumerable: true, get: function () { return proof_1.extractCanonicalData; } });
+// Audit logging
+var audit_1 = require("./audit");
+Object.defineProperty(exports, "AuditLogger", { enumerable: true, get: function () { return audit_1.AuditLogger; } });
+Object.defineProperty(exports, "defaultAuditLogger", { enumerable: true, get: function () { return audit_1.defaultAuditLogger; } });
+Object.defineProperty(exports, "logKeyRotationAudit", { enumerable: true, get: function () { return audit_1.logKeyRotationAudit; } });
+Object.defineProperty(exports, "parseAuditLine", { enumerable: true, get: function () { return audit_1.parseAuditLine; } });
+Object.defineProperty(exports, "validateAuditRecord", { enumerable: true, get: function () { return audit_1.validateAuditRecord; } });
+// Well-known endpoints
+var well_known_1 = require("./well-known");
+Object.defineProperty(exports, "WellKnownManager", { enumerable: true, get: function () { return well_known_1.WellKnownManager; } });
+Object.defineProperty(exports, "createWellKnownHandler", { enumerable: true, get: function () { return well_known_1.createWellKnownHandler; } });
+Object.defineProperty(exports, "validateDIDDocument", { enumerable: true, get: function () { return well_known_1.validateDIDDocument; } });
+Object.defineProperty(exports, "validateAgentDocument", { enumerable: true, get: function () { return well_known_1.validateAgentDocument; } });
+Object.defineProperty(exports, "extractDIDFromPath", { enumerable: true, get: function () { return well_known_1.extractDIDFromPath; } });
+// Debug tools (development only)
+var debug_1 = require("./debug");
+Object.defineProperty(exports, "DebugManager", { enumerable: true, get: function () { return debug_1.DebugManager; } });
+Object.defineProperty(exports, "createDebugEndpoint", { enumerable: true, get: function () { return debug_1.createDebugEndpoint; } });
+// Demo features (opt-in)
+var demo_1 = require("./demo");
+Object.defineProperty(exports, "DemoManager", { enumerable: true, get: function () { return demo_1.DemoManager; } });
+Object.defineProperty(exports, "createDemoManager", { enumerable: true, get: function () { return demo_1.createDemoManager; } });
+Object.defineProperty(exports, "DemoConsole", { enumerable: true, get: function () { return demo_1.DemoConsole; } });
+Object.defineProperty(exports, "formatVerifyLink", { enumerable: true, get: function () { return demo_1.formatVerifyLink; } });