@kyaki/agents 0.1.0

package/dist/approvals.d.ts

@@ -0,0 +1,35 @@
+import { type Identity, type SpendMandate, type TransactionIntent } from '@kyaki/core';
+import type { HumanApproval } from '@kyaki/policy';
+import type { ApprovalRequest, ProcurementNeed, VendorOffer } from './types.js';
+export interface SignedApproval extends HumanApproval {
+    at: string;
+    signature: string;
+}
+/** Produce a CFO countersignature over the canonical approval document. The
+ *  single signer used by every approval inbox (procurement + treasury), so the
+ *  signed shape never diverges from what verifyApproval expects. */
+export declare function signApproval(intentId: string, approver: Identity, at?: string): SignedApproval;
+export declare function verifyApproval(approval: SignedApproval): boolean;
+export declare class ApprovalInbox {
+    private requests;
+    submit(input: {
+        intent: TransactionIntent;
+        mandate: SpendMandate;
+        need: ProcurementNeed;
+        offer: VendorOffer;
+        reason: string;
+    }): ApprovalRequest;
+    get(id: string): ApprovalRequest | undefined;
+    pending(): ApprovalRequest[];
+    all(): ApprovalRequest[];
+    approve(id: string, approver: Identity): SignedApproval;
+    reject(id: string, approver: Identity): ApprovalRequest;
+    /** Accept a countersignature produced OUTSIDE the inbox — e.g. signed in the
+     *  CFO's browser with their own key — as the approval decision. The caller is
+     *  expected to have already run verifyApproval(); this only binds the decision
+     *  to the request (and refuses if the signature is for a different intent). */
+    acceptSignature(id: string, signed: SignedApproval): boolean;
+    /** Exactly-once gate. Returns true the FIRST time only. */
+    markExecuted(id: string): boolean;
+}
+//# sourceMappingURL=approvals.d.ts.map

package/dist/approvals.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"approvals.d.ts","sourceRoot":"","sources":["../src/approvals.ts"],"names":[],"mappings":"AASA,OAAO,EAEL,KAAK,QAAQ,EAAE,KAAK,YAAY,EAAE,KAAK,iBAAiB,EACzD,MAAM,aAAa,CAAC;AACrB,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,KAAK,EAAE,eAAe,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAEhF,MAAM,WAAW,cAAe,SAAQ,aAAa;IACnD,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;CACnB;AAMD;;oEAEoE;AACpE,wBAAgB,YAAY,CAC1B,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,QAAQ,EAClB,EAAE,GAAE,MAAiC,GACpC,cAAc,CAGhB;AAED,wBAAgB,cAAc,CAAC,QAAQ,EAAE,cAAc,GAAG,OAAO,CAQhE;AAED,qBAAa,aAAa;IACxB,OAAO,CAAC,QAAQ,CAAsC;IAEtD,MAAM,CAAC,KAAK,EAAE;QACZ,MAAM,EAAE,iBAAiB,CAAC;QAAC,OAAO,EAAE,YAAY,CAAC;QAAC,IAAI,EAAE,eAAe,CAAC;QACxE,KAAK,EAAE,WAAW,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;KACpC,GAAG,eAAe;IAWnB,GAAG,CAAC,EAAE,EAAE,MAAM,GAAG,eAAe,GAAG,SAAS;IAC5C,OAAO,IAAI,eAAe,EAAE;IAC5B,GAAG,IAAI,eAAe,EAAE;IAExB,OAAO,CAAC,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,GAAG,cAAc;IAWvD,MAAM,CAAC,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,QAAQ,GAAG,eAAe;IAUvD;;;mFAG+E;IAC/E,eAAe,CAAC,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,cAAc,GAAG,OAAO;IAU5D,2DAA2D;IAC3D,YAAY,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO;CAMlC"}

package/dist/approvals.js

@@ -0,0 +1,93 @@
+/**
+ * approvals.ts — The human countersignature workflow.
+ *
+ * Approval is not a button click recorded in a database row — it is an
+ * Ed25519 SIGNATURE by the approver's key over a canonical approval document
+ * binding (intentId, approvedBy, at). Exactly-once execution is enforced by
+ * markExecuted, which flips state before the kernel is touched.
+ */
+import { randomUUID } from 'node:crypto';
+import { canonicalBytes, fromBase58, publicKeyFromDid, sign, toBase58, verifySignature, } from '@kyaki/core';
+function approvalDocument(intentId, approvedBy, at) {
+    return { type: 'KyaHumanApproval', intentId, approvedBy, at };
+}
+/** Produce a CFO countersignature over the canonical approval document. The
+ *  single signer used by every approval inbox (procurement + treasury), so the
+ *  signed shape never diverges from what verifyApproval expects. */
+export function signApproval(intentId, approver, at = new Date().toISOString()) {
+    const doc = approvalDocument(intentId, approver.did, at);
+    return { intentId, approvedBy: approver.did, at, signature: toBase58(sign(canonicalBytes(doc), approver.privateKey)) };
+}
+export function verifyApproval(approval) {
+    try {
+        const publicKey = publicKeyFromDid(approval.approvedBy);
+        const doc = approvalDocument(approval.intentId, approval.approvedBy, approval.at);
+        return verifySignature(fromBase58(approval.signature), canonicalBytes(doc), publicKey);
+    }
+    catch {
+        return false;
+    }
+}
+export class ApprovalInbox {
+    requests = new Map();
+    submit(input) {
+        const request = {
+            id: `apr_${randomUUID().slice(0, 8)}`,
+            intent: input.intent, mandate: input.mandate, need: input.need,
+            offer: input.offer, reason: input.reason,
+            submittedAt: new Date().toISOString(), status: 'pending',
+        };
+        this.requests.set(request.id, request);
+        return request;
+    }
+    get(id) { return this.requests.get(id); }
+    pending() { return [...this.requests.values()].filter((r) => r.status === 'pending'); }
+    all() { return [...this.requests.values()]; }
+    approve(id, approver) {
+        const request = this.requests.get(id);
+        if (!request)
+            throw new Error(`No approval request ${id}`);
+        if (request.status !== 'pending')
+            throw new Error(`Approval ${id} is ${request.status}, not pending`);
+        const signed = signApproval(request.intent.id, approver);
+        request.status = 'approved';
+        request.decidedBy = signed.approvedBy;
+        request.decidedAt = signed.at;
+        return signed;
+    }
+    reject(id, approver) {
+        const request = this.requests.get(id);
+        if (!request)
+            throw new Error(`No approval request ${id}`);
+        if (request.status !== 'pending')
+            throw new Error(`Approval ${id} is ${request.status}, not pending`);
+        request.status = 'rejected';
+        request.decidedBy = approver.did;
+        request.decidedAt = new Date().toISOString();
+        return request;
+    }
+    /** Accept a countersignature produced OUTSIDE the inbox — e.g. signed in the
+     *  CFO's browser with their own key — as the approval decision. The caller is
+     *  expected to have already run verifyApproval(); this only binds the decision
+     *  to the request (and refuses if the signature is for a different intent). */
+    acceptSignature(id, signed) {
+        const request = this.requests.get(id);
+        if (!request || request.status !== 'pending')
+            return false;
+        if (signed.intentId !== request.intent.id)
+            return false;
+        request.status = 'approved';
+        request.decidedBy = signed.approvedBy;
+        request.decidedAt = signed.at;
+        return true;
+    }
+    /** Exactly-once gate. Returns true the FIRST time only. */
+    markExecuted(id) {
+        const request = this.requests.get(id);
+        if (!request || request.status !== 'approved')
+            return false;
+        request.status = 'executed';
+        return true;
+    }
+}
+//# sourceMappingURL=approvals.js.map

package/dist/approvals.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"approvals.js","sourceRoot":"","sources":["../src/approvals.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AACH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EACL,cAAc,EAAE,UAAU,EAAE,gBAAgB,EAAE,IAAI,EAAE,QAAQ,EAAE,eAAe,GAE9E,MAAM,aAAa,CAAC;AASrB,SAAS,gBAAgB,CAAC,QAAgB,EAAE,UAAkB,EAAE,EAAU;IACxE,OAAO,EAAE,IAAI,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAU,EAAE,EAAE,EAAE,CAAC;AAChE,CAAC;AAED;;oEAEoE;AACpE,MAAM,UAAU,YAAY,CAC1B,QAAgB,EAChB,QAAkB,EAClB,KAAa,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;IAErC,MAAM,GAAG,GAAG,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;IACzD,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,CAAC,GAAG,EAAE,EAAE,EAAE,SAAS,EAAE,QAAQ,CAAC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,EAAE,QAAQ,CAAC,UAAU,CAAC,CAAC,EAAE,CAAC;AACzH,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,QAAwB;IACrD,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,gBAAgB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QACxD,MAAM,GAAG,GAAG,gBAAgB,CAAC,QAAQ,CAAC,QAAQ,EAAE,QAAQ,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,CAAC,CAAC;QAClF,OAAO,eAAe,CAAC,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,cAAc,CAAC,GAAG,CAAC,EAAE,SAAS,CAAC,CAAC;IACzF,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,MAAM,OAAO,aAAa;IAChB,QAAQ,GAAG,IAAI,GAAG,EAA2B,CAAC;IAEtD,MAAM,CAAC,KAGN;QACC,MAAM,OAAO,GAAoB;YAC/B,EAAE,EAAE,OAAO,UAAU,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE;YACrC,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI;YAC9D,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM;YACxC,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,MAAM,EAAE,SAAS;SACzD,CAAC;QACF,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;QACvC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,GAAG,CAAC,EAAU,IAAiC,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAC9E,OAAO,KAAwB,OAAO,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC,CAAC,CAAC;IAC1G,GAAG,KAAwB,OAAO,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,CAAC;IAEhE,OAAO,CAAC,EAAU,EAAE,QAAkB;QACpC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,EAAE,EAAE,CAAC,CAAC;QAC3D,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,YAAY,EAAE,OAAO,OAAO,CAAC,MAAM,eAAe,CAAC,CAAC;QACtG,MAAM,MAAM,GAAG,YAAY,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;QACzD,OAAO,CAAC,MAAM,GAAG,UAAU,CAAC;QAC5B,OAAO,CAAC,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC;QACtC,OAAO,CAAC,SAAS,GAAG,MAAM,CAAC,EAAE,CAAC;QAC9B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,MAAM,CAAC,EAAU,EAAE,QAAkB;QACnC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,OAAO;YAAE,MAAM,IAAI,KAAK,CAAC,uBAAuB,EAAE,EAAE,CAAC,CAAC;QAC3D,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,YAAY,EAAE,OAAO,OAAO,CAAC,MAAM,eAAe,CAAC,CAAC;QACtG,OAAO,CAAC,MAAM,GAAG,UAAU,CAAC;QAC5B,OAAO,CAAC,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC;QACjC,OAAO,CAAC,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAC7C,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;;mFAG+E;IAC/E,eAAe,CAAC,EAAU,EAAE,MAAsB;QAChD,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS;YAAE,OAAO,KAAK,CAAC;QAC3D,IAAI,MAAM,CAAC,QAAQ,KAAK,OAAO,CAAC,MAAM,CAAC,EAAE;YAAE,OAAO,KAAK,CAAC;QACxD,OAAO,CAAC,MAAM,GAAG,UAAU,CAAC;QAC5B,OAAO,CAAC,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC;QACtC,OAAO,CAAC,SAAS,GAAG,MAAM,CAAC,EAAE,CAAC;QAC9B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,2DAA2D;IAC3D,YAAY,CAAC,EAAU;QACrB,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtC,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,UAAU;YAAE,OAAO,KAAK,CAAC;QAC5D,OAAO,CAAC,MAAM,GAAG,UAAU,CAAC;QAC5B,OAAO,IAAI,CAAC;IACd,CAAC;CACF"}

package/dist/auditor.d.ts

@@ -0,0 +1,104 @@
+/**
+ * auditor.ts — The Auditor: the third agent on the Mandate OS, and the only
+ * one that never spends.
+ *
+ * Where the Procurer pushes money outward and the Treasurer moves the balance
+ * sheet, the Auditor *proves the whole fleet stayed inside its authority*. It
+ * is the agent that operationalizes the project's central claim — "the books
+ * are self-auditing" — by turning it into a concrete, signed artifact.
+ *
+ * It composes existing rings; it invents no new kernel primitive:
+ *   L0  AuditLog.verifyChain      — is the record itself tamper-free?
+ *   L0  verifyTransaction         — does each committed spend STILL verify,
+ *                                   re-run against state as of its own commit?
+ *   L1  OrgSpendLedger semantics  — did aggregate exposure breach the org cap?
+ *   L1  AutonomyLadder.demote     — punish the agent the instant a provable
+ *                                   cryptographic anomaly is found.
+ *
+ * The audit produces a `KyaAuditAttestation`: an Ed25519 signature by the
+ * auditor's own key over the canonical set of findings + the chain head. Like
+ * a mandate, an intent, or a CFO approval, the audit-of-record is a verifiable
+ * object — not a database row asserting "trust me."
+ *
+ * Reconciliation principle (inherited from the Procurer's savings report): if
+ * the hash chain does not verify, the committed record cannot be trusted, so
+ * the report says so loudly rather than quietly reporting clean.
+ */
+import { type AgentKeys, type AuditLog, type SpendMandate, type TransactionIntent } from '@kyaki/core';
+import { AutonomyLadder, type SpendPolicy } from '@kyaki/policy';
+export type Severity = 'info' | 'warning' | 'violation' | 'critical';
+export interface Finding {
+    code: string;
+    severity: Severity;
+    detail: string;
+    agentDid?: string;
+    mandateId?: string;
+    intentId?: string;
+}
+/** A committed spend, presented to the Auditor as the verifiable pair the
+ *  kernel originally checked: the agent's signed intent + the principal's
+ *  signed mandate it named. */
+export interface CommittedSpend {
+    intent: TransactionIntent;
+    mandate: SpendMandate;
+}
+/** A revocation event with a timestamp. The live RevocationStore is timeless
+ *  (boolean); for forensic "did the spend happen AFTER revocation?" the
+ *  Auditor needs the revocation's `at`. */
+export interface RevocationRecord {
+    mandateId: string;
+    at: string;
+}
+export interface AuditAttestation {
+    type: 'KyaAuditAttestation';
+    auditor: string;
+    chainHead: string;
+    at: string;
+    findings: Finding[];
+    signature: string;
+}
+export interface AuditReport {
+    at: string;
+    chainValid: boolean;
+    clean: boolean;
+    findings: Finding[];
+    summary: Record<Severity, number>;
+    reconciledMandates: number;
+    reconciledSpends: number;
+    demoted: string[];
+    attestation: AuditAttestation;
+}
+export interface AuditInput {
+    committed: CommittedSpend[];
+    revocations?: RevocationRecord[];
+}
+export interface AuditorConfig {
+    auditorKeys: AgentKeys;
+    /** The hash chain under examination (the fleet's audit-of-record). */
+    audit: AuditLog;
+    /** Org policy — only `orgLimits.dailyCap` is consulted, for aggregate exposure. */
+    policy?: SpendPolicy;
+    /** When present, agents caught in a security anomaly are demoted. */
+    ladder?: AutonomyLadder;
+    /** Where the Auditor anchors its OWN result, so the audit is itself audited. */
+    oversight?: AuditLog;
+    /** Chain event types that denote a committed spend, for chain↔object
+     *  reconciliation. Defaults to the Procurer's commit events; pass the
+     *  Treasurer's (or any agent's) commit event types to widen coverage. */
+    committedEventTypes?: string[];
+    now?: Date;
+}
+/** Recompute and check an attestation's signature. Tampering with any finding,
+ *  the chain head, or the timestamp invalidates it — exactly like a mandate. */
+export declare function verifyAuditAttestation(att: AuditAttestation): boolean;
+export declare class AuditorAgent {
+    private readonly cfg;
+    constructor(cfg: AuditorConfig);
+    private now;
+    /** The intent id a commit-class chain event points at (txnId or intentId). */
+    private intentIdOf;
+    private commitTypes;
+    audit(input: AuditInput): Promise<AuditReport>;
+    private signAttestation;
+}
+//# sourceMappingURL=auditor.d.ts.map

package/dist/auditor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auditor.d.ts","sourceRoot":"","sources":["../src/auditor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,OAAO,EAGL,KAAK,SAAS,EAAmB,KAAK,QAAQ,EAAE,KAAK,YAAY,EACjE,KAAK,iBAAiB,EACvB,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,cAAc,EAAE,KAAK,WAAW,EAAE,MAAM,eAAe,CAAC;AAajE,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,SAAS,GAAG,WAAW,GAAG,UAAU,CAAC;AAErE,MAAM,WAAW,OAAO;IACtB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;+BAE+B;AAC/B,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,iBAAiB,CAAC;IAC1B,OAAO,EAAE,YAAY,CAAC;CACvB;AAED;;2CAE2C;AAC3C,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,EAAE,EAAE,MAAM,CAAC;CACZ;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,qBAAqB,CAAC;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,OAAO,CAAC;IACpB,KAAK,EAAE,OAAO,CAAC;IACf,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAClC,kBAAkB,EAAE,MAAM,CAAC;IAC3B,gBAAgB,EAAE,MAAM,CAAC;IACzB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,WAAW,EAAE,gBAAgB,CAAC;CAC/B;AAED,MAAM,WAAW,UAAU;IACzB,SAAS,EAAE,cAAc,EAAE,CAAC;IAC5B,WAAW,CAAC,EAAE,gBAAgB,EAAE,CAAC;CAClC;AAED,MAAM,WAAW,aAAa;IAC5B,WAAW,EAAE,SAAS,CAAC;IACvB,sEAAsE;IACtE,KAAK,EAAE,QAAQ,CAAC;IAChB,mFAAmF;IACnF,MAAM,CAAC,EAAE,WAAW,CAAC;IACrB,qEAAqE;IACrE,MAAM,CAAC,EAAE,cAAc,CAAC;IACxB,gFAAgF;IAChF,SAAS,CAAC,EAAE,QAAQ,CAAC;IACrB;;6EAEyE;IACzE,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC/B,GAAG,CAAC,EAAE,IAAI,CAAC;CACZ;AAOD;gFACgF;AAChF,wBAAgB,sBAAsB,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAQrE;AAED,qBAAa,YAAY;IACX,OAAO,CAAC,QAAQ,CAAC,GAAG;gBAAH,GAAG,EAAE,aAAa;IAE/C,OAAO,CAAC,GAAG;IAEX,8EAA8E;IAC9E,OAAO,CAAC,UAAU;IAKlB,OAAO,CAAC,WAAW;IAIb,KAAK,CAAC,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,WAAW,CAAC;IAyLpD,OAAO,CAAC,eAAe;CASxB"}

package/dist/auditor.js

@@ -0,0 +1,250 @@
+/**
+ * auditor.ts — The Auditor: the third agent on the Mandate OS, and the only
+ * one that never spends.
+ *
+ * Where the Procurer pushes money outward and the Treasurer moves the balance
+ * sheet, the Auditor *proves the whole fleet stayed inside its authority*. It
+ * is the agent that operationalizes the project's central claim — "the books
+ * are self-auditing" — by turning it into a concrete, signed artifact.
+ *
+ * It composes existing rings; it invents no new kernel primitive:
+ *   L0  AuditLog.verifyChain      — is the record itself tamper-free?
+ *   L0  verifyTransaction         — does each committed spend STILL verify,
+ *                                   re-run against state as of its own commit?
+ *   L1  OrgSpendLedger semantics  — did aggregate exposure breach the org cap?
+ *   L1  AutonomyLadder.demote     — punish the agent the instant a provable
+ *                                   cryptographic anomaly is found.
+ *
+ * The audit produces a `KyaAuditAttestation`: an Ed25519 signature by the
+ * auditor's own key over the canonical set of findings + the chain head. Like
+ * a mandate, an intent, or a CFO approval, the audit-of-record is a verifiable
+ * object — not a database row asserting "trust me."
+ *
+ * Reconciliation principle (inherited from the Procurer's savings report): if
+ * the hash chain does not verify, the committed record cannot be trusted, so
+ * the report says so loudly rather than quietly reporting clean.
+ */
+import { canonicalBytes, fromBase58, publicKeyFromDid, sign, toBase58, verifySignature, verifyTransaction, MemorySpendStore, } from '@kyaki/core';
+const DAY_MS = 24 * 3600 * 1000;
+/** Kernel deny-reasons that prove cryptographic misbehavior by a named agent
+ *  key — these, and only these, cost the agent a rung on the autonomy ladder. */
+const SECURITY_REASONS = new Set([
+    'MANDATE_SIGNATURE_INVALID',
+    'INTENT_SIGNATURE_INVALID',
+    'AGENT_MISMATCH',
+    'MANDATE_ID_MISMATCH',
+]);
+const GENESIS = '0'.repeat(64);
+const DEFAULT_COMMIT_TYPES = ['procurement.purchased', 'approval.executed'];
+const EMPTY_SUMMARY = () => ({ info: 0, warning: 0, violation: 0, critical: 0 });
+/** Recompute and check an attestation's signature. Tampering with any finding,
+ *  the chain head, or the timestamp invalidates it — exactly like a mandate. */
+export function verifyAuditAttestation(att) {
+    try {
+        const { signature, ...doc } = att;
+        const publicKey = publicKeyFromDid(att.auditor);
+        return verifySignature(fromBase58(signature), canonicalBytes(doc), publicKey);
+    }
+    catch {
+        return false;
+    }
+}
+export class AuditorAgent {
+    cfg;
+    constructor(cfg) {
+        this.cfg = cfg;
+    }
+    now() { return this.cfg.now ?? new Date(); }
+    /** The intent id a commit-class chain event points at (txnId or intentId). */
+    intentIdOf(event) {
+        return event.txnId
+            ?? event.intentId;
+    }
+    commitTypes() {
+        return new Set(this.cfg.committedEventTypes ?? DEFAULT_COMMIT_TYPES);
+    }
+    async audit(input) {
+        const at = this.now().toISOString();
+        const findings = [];
+        const revokedAt = new Map();
+        for (const r of input.revocations ?? [])
+            revokedAt.set(r.mandateId, Date.parse(r.at));
+        // 1. Chain integrity. If the record is forged, nothing built on it is trustworthy.
+        const chainValid = this.cfg.audit.verifyChain();
+        if (!chainValid) {
+            findings.push({
+                code: 'CHAIN_BROKEN', severity: 'critical',
+                detail: 'Audit hash chain failed verification — the committed record has been tampered with; downstream reconciliation is not trustworthy.',
+            });
+        }
+        // Order committed spends by their own timestamp so per-mandate cumulative
+        // and velocity re-checks see only what preceded each spend.
+        const ordered = input.committed
+            .map((c, i) => ({ c, i, t: Date.parse(c.intent.timestamp) }))
+            .sort((a, b) => (a.t - b.t) || (a.i - b.i));
+        const mandates = new Set();
+        const nonceSeen = new Map(); // nonce -> first intentId
+        const intentIdSeen = new Map();
+        // 2. Per-spend re-verification, AS OF the spend's own commit time.
+        for (let pos = 0; pos < ordered.length; pos++) {
+            const { c } = ordered[pos];
+            const { intent, mandate } = c;
+            mandates.add(mandate.id);
+            // Reconstruct mandate state as it stood just before this spend: every
+            // strictly-earlier committed spend on the SAME mandate (ordered is a
+            // stable timestamp sort, so positions < pos are exactly those).
+            const spendTime = new Date(Date.parse(intent.timestamp));
+            const spend = new MemorySpendStore();
+            for (let k = 0; k < pos; k++) {
+                const prior = ordered[k].c.intent;
+                if (prior.mandateId !== intent.mandateId)
+                    continue;
+                await spend.record(prior.mandateId, prior.amount, prior.id, new Date(ordered[k].t));
+            }
+            const ctx = { spend, now: spendTime };
+            const res = await verifyTransaction(mandate, intent, ctx);
+            if (res.decision === 'deny') {
+                for (const reason of res.reasons) {
+                    findings.push({
+                        code: reason,
+                        severity: SECURITY_REASONS.has(reason) ? 'critical' : 'violation',
+                        detail: `Committed spend fails re-verification as of its own timestamp: ${reason}. The kernel should never have allowed it.`,
+                        agentDid: intent.agent, mandateId: mandate.id, intentId: intent.id,
+                    });
+                }
+            }
+            // 2b. Authority that has since lapsed (the spend was fine; the mandate is now dead).
+            if (Date.parse(mandate.validUntil) < this.now().getTime()) {
+                findings.push({
+                    code: 'AUTHORITY_LAPSED', severity: 'warning',
+                    detail: 'The mandate behind a committed spend has since expired. The spend was authorized when made; the authority is no longer live.',
+                    agentDid: intent.agent, mandateId: mandate.id, intentId: intent.id,
+                });
+            }
+            // 2c. Spend AFTER revocation — a real breach.
+            const rev = revokedAt.get(mandate.id);
+            if (rev !== undefined && Date.parse(intent.timestamp) >= rev) {
+                findings.push({
+                    code: 'SPEND_AFTER_REVOCATION', severity: 'critical',
+                    detail: 'A spend committed at or after the mandate was revoked.',
+                    agentDid: intent.agent, mandateId: mandate.id, intentId: intent.id,
+                });
+            }
+            // 3. Ledger-level duplicate detection: replay / double-spend that slipped in.
+            const priorNonce = nonceSeen.get(intent.nonce);
+            if (priorNonce && priorNonce !== intent.id) {
+                findings.push({
+                    code: 'REPLAY_IN_LEDGER', severity: 'critical',
+                    detail: `Duplicate nonce across committed intents (${priorNonce} and ${intent.id}) — a replay reached the ledger.`,
+                    agentDid: intent.agent, mandateId: mandate.id, intentId: intent.id,
+                });
+            }
+            else if (!priorNonce) {
+                nonceSeen.set(intent.nonce, intent.id);
+            }
+            intentIdSeen.set(intent.id, (intentIdSeen.get(intent.id) ?? 0) + 1);
+        }
+        for (const [intentId, count] of intentIdSeen) {
+            if (count > 1) {
+                findings.push({
+                    code: 'DUPLICATE_INTENT_ID', severity: 'critical',
+                    detail: `Intent id ${intentId} appears ${count}× in the committed ledger.`,
+                    intentId,
+                });
+            }
+        }
+        // 4. Aggregate org exposure (cross-mandate) within the rolling day.
+        const dailyCap = this.cfg.policy?.orgLimits?.dailyCap;
+        if (dailyCap !== undefined) {
+            const tNow = this.now().getTime();
+            const spentToday = input.committed
+                .filter((c) => tNow - Date.parse(c.intent.timestamp) < DAY_MS)
+                .reduce((s, c) => s + c.intent.amount, 0);
+            if (spentToday > dailyCap) {
+                findings.push({
+                    code: 'ORG_EXPOSURE_BREACH', severity: 'violation',
+                    detail: `Aggregate spend in the last 24h (${spentToday}) exceeds the org daily cap (${dailyCap}).`,
+                });
+            }
+        }
+        // 5. Coverage: the chain and the signed objects must reconcile, both ways.
+        //    (Only meaningful if the chain verifies in the first place.)
+        if (chainValid) {
+            const commitTypes = this.commitTypes();
+            const chainIntentIds = new Set();
+            for (const e of this.cfg.audit.entries()) {
+                if (!commitTypes.has(e.event.type))
+                    continue;
+                const id = this.intentIdOf(e.event);
+                if (id)
+                    chainIntentIds.add(id);
+            }
+            const committedIds = new Set(input.committed.map((c) => c.intent.id));
+            for (const c of input.committed) {
+                if (!chainIntentIds.has(c.intent.id)) {
+                    findings.push({
+                        code: 'UNRECORDED_SPEND', severity: 'critical',
+                        detail: 'A signed, committed intent has no matching entry in the audit chain — money moved with no record.',
+                        agentDid: c.intent.agent, mandateId: c.intent.mandateId, intentId: c.intent.id,
+                    });
+                }
+            }
+            for (const id of chainIntentIds) {
+                if (!committedIds.has(id)) {
+                    findings.push({
+                        code: 'PHANTOM_ENTRY', severity: 'critical',
+                        detail: 'A commit entry in the audit chain references an intent with no backing signed object — a record with no provable spend.',
+                        intentId: id,
+                    });
+                }
+            }
+        }
+        // 6. Enforcement: demote every agent provably caught in a security anomaly,
+        //    once per audit (asymmetric, instant — the ladder's whole purpose).
+        const offenders = new Set();
+        for (const f of findings) {
+            const isSecurity = SECURITY_REASONS.has(f.code) || f.code === 'SPEND_AFTER_REVOCATION' || f.code === 'REPLAY_IN_LEDGER';
+            if (isSecurity && f.agentDid)
+                offenders.add(f.agentDid);
+        }
+        const demoted = [];
+        if (this.cfg.ladder) {
+            for (const agentDid of offenders) {
+                this.cfg.ladder.record(agentDid, 'security_anomaly');
+                demoted.push(agentDid);
+            }
+        }
+        // 7. Tally, sign the attestation, and anchor the audit-of-the-audit.
+        const summary = EMPTY_SUMMARY();
+        for (const f of findings)
+            summary[f.severity] += 1;
+        const clean = summary.violation === 0 && summary.critical === 0;
+        const entries = this.cfg.audit.entries();
+        const chainHead = entries.length > 0 ? entries[entries.length - 1].hash : GENESIS;
+        const attestation = this.signAttestation(chainHead, at, findings);
+        this.cfg.oversight?.append({
+            type: 'audit.completed',
+            auditor: this.cfg.auditorKeys.did,
+            chainHead, chainValid, clean,
+            findingCount: findings.length,
+            summary,
+            demoted,
+        }, this.now());
+        return {
+            at, chainValid, clean, findings, summary,
+            reconciledMandates: mandates.size,
+            reconciledSpends: input.committed.length,
+            demoted, attestation,
+        };
+    }
+    signAttestation(chainHead, at, findings) {
+        const doc = {
+            type: 'KyaAuditAttestation',
+            auditor: this.cfg.auditorKeys.did,
+            chainHead, at, findings,
+        };
+        const signature = toBase58(sign(canonicalBytes(doc), this.cfg.auditorKeys.privateKey));
+        return { ...doc, signature };
+    }
+}
+//# sourceMappingURL=auditor.js.map

package/dist/auditor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auditor.js","sourceRoot":"","sources":["../src/auditor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,OAAO,EACL,cAAc,EAAE,UAAU,EAAE,gBAAgB,EAAE,IAAI,EAAE,QAAQ,EAAE,eAAe,EAC7E,iBAAiB,EAAE,gBAAgB,GAGpC,MAAM,aAAa,CAAC;AAGrB,MAAM,MAAM,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC;AAEhC;iFACiF;AACjF,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,2BAA2B;IAC3B,0BAA0B;IAC1B,gBAAgB;IAChB,qBAAqB;CACtB,CAAC,CAAC;AAwEH,MAAM,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;AAC/B,MAAM,oBAAoB,GAAG,CAAC,uBAAuB,EAAE,mBAAmB,CAAC,CAAC;AAE5E,MAAM,aAAa,GAAG,GAA6B,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC;AAE3G;gFACgF;AAChF,MAAM,UAAU,sBAAsB,CAAC,GAAqB;IAC1D,IAAI,CAAC;QACH,MAAM,EAAE,SAAS,EAAE,GAAG,GAAG,EAAE,GAAG,GAAG,CAAC;QAClC,MAAM,SAAS,GAAG,gBAAgB,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAChD,OAAO,eAAe,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,cAAc,CAAC,GAAG,CAAC,EAAE,SAAS,CAAC,CAAC;IAChF,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,MAAM,OAAO,YAAY;IACM;IAA7B,YAA6B,GAAkB;QAAlB,QAAG,GAAH,GAAG,CAAe;IAAG,CAAC;IAE3C,GAAG,KAAW,OAAO,IAAI,CAAC,GAAG,CAAC,GAAG,IAAI,IAAI,IAAI,EAAE,CAAC,CAAC,CAAC;IAE1D,8EAA8E;IACtE,UAAU,CAAC,KAAiB;QAClC,OAAQ,KAA+C,CAAC,KAAK;eACvD,KAA+B,CAAC,QAAQ,CAAC;IACjD,CAAC;IAEO,WAAW;QACjB,OAAO,IAAI,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,mBAAmB,IAAI,oBAAoB,CAAC,CAAC;IACvE,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,KAAiB;QAC3B,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC;QACpC,MAAM,QAAQ,GAAc,EAAE,CAAC;QAC/B,MAAM,SAAS,GAAG,IAAI,GAAG,EAAkB,CAAC;QAC5C,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,WAAW,IAAI,EAAE;YAAE,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAEtF,mFAAmF;QACnF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;QAChD,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,cAAc,EAAE,QAAQ,EAAE,UAAU;gBAC1C,MAAM,EAAE,mIAAmI;aAC5I,CAAC,CAAC;QACL,CAAC;QAED,0EAA0E;QAC1E,4DAA4D;QAC5D,MAAM,OAAO,GAAG,KAAK,CAAC,SAAS;aAC5B,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;aAC5D,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAE9C,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;QACnC,MAAM,SAAS,GAAG,IAAI,GAAG,EAAkB,CAAC,CAAG,0BAA0B;QACzE,MAAM,YAAY,GAAG,IAAI,GAAG,EAAkB,CAAC;QAE/C,mEAAmE;QACnE,KAAK,IAAI,GAAG,GAAG,CAAC,EAAE,GAAG,GAAG,OAAO,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE,CAAC;YAC9C,MAAM,EAAE,CAAC,EAAE,GAAG,OAAO,CAAC,GAAG,CAAE,CAAC;YAC5B,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,CAAC,CAAC;YAC9B,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YAEzB,sEAAsE;YACtE,qEAAqE;YACrE,gEAAgE;YAChE,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC;YACzD,MAAM,KAAK,GAAG,IAAI,gBAAgB,EAAE,CAAC;YACrC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC7B,MAAM,KAAK,GAAG,OAAO,CAAC,CAAC,CAAE,CAAC,CAAC,CAAC,MAAM,CAAC;gBACnC,IAAI,KAAK,CAAC,SAAS,KAAK,MAAM,CAAC,SAAS;oBAAE,SAAS;gBACnD,MAAM,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,SAAS,EAAE,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,EAAE,IAAI,IAAI,CAAC,OAAO,CAAC,CAAC,CAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YACvF,CAAC;YACD,MAAM,GAAG,GAAwB,EAAE,KAAK,EAAE,GAAG,EAAE,SAAS,EAAE,CAAC;YAC3D,MAAM,GAAG,GAAG,MAAM,iBAAiB,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC;YAC1D,IAAI,GAAG,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;gBAC5B,KAAK,MAAM,MAAM,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;oBACjC,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,MAAM;wBACZ,QAAQ,EAAE,gBAAgB,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,WAAW;wBACjE,MAAM,EAAE,kEAAkE,MAAM,4CAA4C;wBAC5H,QAAQ,EAAE,MAAM,CAAC,KAAK,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,EAAE;qBACnE,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,qFAAqF;YACrF,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC;gBAC1D,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,kBAAkB,EAAE,QAAQ,EAAE,SAAS;oBAC7C,MAAM,EAAE,8HAA8H;oBACtI,QAAQ,EAAE,MAAM,CAAC,KAAK,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,EAAE;iBACnE,CAAC,CAAC;YACL,CAAC;YAED,8CAA8C;YAC9C,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YACtC,IAAI,GAAG,KAAK,SAAS,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,GAAG,EAAE,CAAC;gBAC7D,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,wBAAwB,EAAE,QAAQ,EAAE,UAAU;oBACpD,MAAM,EAAE,wDAAwD;oBAChE,QAAQ,EAAE,MAAM,CAAC,KAAK,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,EAAE;iBACnE,CAAC,CAAC;YACL,CAAC;YAED,8EAA8E;YAC9E,MAAM,UAAU,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC/C,IAAI,UAAU,IAAI,UAAU,KAAK,MAAM,CAAC,EAAE,EAAE,CAAC;gBAC3C,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAU;oBAC9C,MAAM,EAAE,6CAA6C,UAAU,QAAQ,MAAM,CAAC,EAAE,kCAAkC;oBAClH,QAAQ,EAAE,MAAM,CAAC,KAAK,EAAE,SAAS,EAAE,OAAO,CAAC,EAAE,EAAE,QAAQ,EAAE,MAAM,CAAC,EAAE;iBACnE,CAAC,CAAC;YACL,CAAC;iBAAM,IAAI,CAAC,UAAU,EAAE,CAAC;gBACvB,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,EAAE,CAAC,CAAC;YACzC,CAAC;YACD,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QACtE,CAAC;QAED,KAAK,MAAM,CAAC,QAAQ,EAAE,KAAK,CAAC,IAAI,YAAY,EAAE,CAAC;YAC7C,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;gBACd,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,qBAAqB,EAAE,QAAQ,EAAE,UAAU;oBACjD,MAAM,EAAE,aAAa,QAAQ,YAAY,KAAK,4BAA4B;oBAC1E,QAAQ;iBACT,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,oEAAoE;QACpE,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,SAAS,EAAE,QAAQ,CAAC;QACtD,IAAI,QAAQ,KAAK,SAAS,EAAE,CAAC;YAC3B,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC;YAClC,MAAM,UAAU,GAAG,KAAK,CAAC,SAAS;iBAC/B,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,MAAM,CAAC;iBAC7D,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;YAC5C,IAAI,UAAU,GAAG,QAAQ,EAAE,CAAC;gBAC1B,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,qBAAqB,EAAE,QAAQ,EAAE,WAAW;oBAClD,MAAM,EAAE,oCAAoC,UAAU,gCAAgC,QAAQ,IAAI;iBACnG,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,2EAA2E;QAC3E,iEAAiE;QACjE,IAAI,UAAU,EAAE,CAAC;YACf,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;YACvC,MAAM,cAAc,GAAG,IAAI,GAAG,EAAU,CAAC;YACzC,KAAK,MAAM,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;gBACzC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC;oBAAE,SAAS;gBAC7C,MAAM,EAAE,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;gBACpC,IAAI,EAAE;oBAAE,cAAc,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YACjC,CAAC;YACD,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;YAEtE,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,SAAS,EAAE,CAAC;gBAChC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;oBACrC,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAU;wBAC9C,MAAM,EAAE,mGAAmG;wBAC3G,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,SAAS,EAAE,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,EAAE;qBAC/E,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YACD,KAAK,MAAM,EAAE,IAAI,cAAc,EAAE,CAAC;gBAChC,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;oBAC1B,QAAQ,CAAC,IAAI,CAAC;wBACZ,IAAI,EAAE,eAAe,EAAE,QAAQ,EAAE,UAAU;wBAC3C,MAAM,EAAE,yHAAyH;wBACjI,QAAQ,EAAE,EAAE;qBACb,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QAED,4EAA4E;QAC5E,wEAAwE;QACxE,MAAM,SAAS,GAAG,IAAI,GAAG,EAAU,CAAC;QACpC,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;YACzB,MAAM,UAAU,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,KAAK,wBAAwB,IAAI,CAAC,CAAC,IAAI,KAAK,kBAAkB,CAAC;YACxH,IAAI,UAAU,IAAI,CAAC,CAAC,QAAQ;gBAAE,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;QAC1D,CAAC;QACD,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC;YACpB,KAAK,MAAM,QAAQ,IAAI,SAAS,EAAE,CAAC;gBACjC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,EAAE,kBAAkB,CAAC,CAAC;gBACrD,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;QAED,qEAAqE;QACrE,MAAM,OAAO,GAAG,aAAa,EAAE,CAAC;QAChC,KAAK,MAAM,CAAC,IAAI,QAAQ;YAAE,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACnD,MAAM,KAAK,GAAG,OAAO,CAAC,SAAS,KAAK,CAAC,IAAI,OAAO,CAAC,QAAQ,KAAK,CAAC,CAAC;QAEhE,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAE,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC;QACnF,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,CAAC,SAAS,EAAE,EAAE,EAAE,QAAQ,CAAC,CAAC;QAElE,IAAI,CAAC,GAAG,CAAC,SAAS,EAAE,MAAM,CAAC;YACzB,IAAI,EAAE,iBAAiB;YACvB,OAAO,EAAE,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,GAAG;YACjC,SAAS,EAAE,UAAU,EAAE,KAAK;YAC5B,YAAY,EAAE,QAAQ,CAAC,MAAM;YAC7B,OAAO;YACP,OAAO;SACM,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QAE7B,OAAO;YACL,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO;YACxC,kBAAkB,EAAE,QAAQ,CAAC,IAAI;YACjC,gBAAgB,EAAE,KAAK,CAAC,SAAS,CAAC,MAAM;YACxC,OAAO,EAAE,WAAW;SACrB,CAAC;IACJ,CAAC;IAEO,eAAe,CAAC,SAAiB,EAAE,EAAU,EAAE,QAAmB;QACxE,MAAM,GAAG,GAAG;YACV,IAAI,EAAE,qBAA8B;YACpC,OAAO,EAAE,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,GAAG;YACjC,SAAS,EAAE,EAAE,EAAE,QAAQ;SACxB,CAAC;QACF,MAAM,SAAS,GAAG,QAAQ,CAAC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC,CAAC;QACvF,OAAO,EAAE,GAAG,GAAG,EAAE,SAAS,EAAE,CAAC;IAC/B,CAAC;CACF"}

package/dist/continuous-auditor.d.ts

@@ -0,0 +1,38 @@
+/**
+ * continuous-auditor.ts — the operator surface around the Auditor.
+ *
+ * The Auditor answers one question per call. An operator (or the CFO inbox)
+ * wants the *running* answer: has the fleet ever drifted, how long has it been
+ * clean, and what is the tamper-evident history of every attestation it signed?
+ *
+ * This wraps AuditorAgent into a run-on-demand loop — drive it from a cron, a
+ * queue, or a `while` loop — and folds each pass into a running record. The
+ * `oversight` AuditLog shared via config anchors every run into a hash chain,
+ * so the audit history is itself audited. Each signed attestation is a portable
+ * object the human-governance ring can ingest and verify offline.
+ */
+import { type AuditAttestation, type AuditInput, type AuditReport, type AuditorConfig } from './auditor.js';
+export interface AuditHealth {
+    runs: number;
+    /** Has ANY pass come back non-clean? Monitors latch on this. */
+    everDirty: boolean;
+    /** Consecutive clean passes ending at the latest run. */
+    cleanStreak: number;
+    /** Findings in the most recent pass. */
+    openFindings: number;
+    lastAuditAt?: string;
+    lastAttestation?: AuditAttestation;
+}
+export declare class ContinuousAuditor {
+    private readonly auditor;
+    private readonly reports;
+    constructor(cfg: AuditorConfig);
+    /** Run one audit pass and fold it into the running record. */
+    run(input: AuditInput): Promise<AuditReport>;
+    /** Every signed attestation, in run order — the audit-of-record stream. */
+    attestations(): AuditAttestation[];
+    history(): readonly AuditReport[];
+    /** A one-glance operational summary for a dashboard or the CFO inbox. */
+    health(): AuditHealth;
+}
+//# sourceMappingURL=continuous-auditor.d.ts.map

package/dist/continuous-auditor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"continuous-auditor.d.ts","sourceRoot":"","sources":["../src/continuous-auditor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,EAAgB,KAAK,gBAAgB,EAAE,KAAK,UAAU,EAAE,KAAK,WAAW,EAAE,KAAK,aAAa,EAAE,MAAM,cAAc,CAAC;AAE1H,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,gEAAgE;IAChE,SAAS,EAAE,OAAO,CAAC;IACnB,yDAAyD;IACzD,WAAW,EAAE,MAAM,CAAC;IACpB,wCAAwC;IACxC,YAAY,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,eAAe,CAAC,EAAE,gBAAgB,CAAC;CACpC;AAED,qBAAa,iBAAiB;IAC5B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAe;IACvC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAqB;gBAEjC,GAAG,EAAE,aAAa;IAI9B,8DAA8D;IACxD,GAAG,CAAC,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,WAAW,CAAC;IAMlD,2EAA2E;IAC3E,YAAY,IAAI,gBAAgB,EAAE;IAIlC,OAAO,IAAI,SAAS,WAAW,EAAE;IAIjC,yEAAyE;IACzE,MAAM,IAAI,WAAW;CAetB"}

package/dist/continuous-auditor.js

@@ -0,0 +1,52 @@
+/**
+ * continuous-auditor.ts — the operator surface around the Auditor.
+ *
+ * The Auditor answers one question per call. An operator (or the CFO inbox)
+ * wants the *running* answer: has the fleet ever drifted, how long has it been
+ * clean, and what is the tamper-evident history of every attestation it signed?
+ *
+ * This wraps AuditorAgent into a run-on-demand loop — drive it from a cron, a
+ * queue, or a `while` loop — and folds each pass into a running record. The
+ * `oversight` AuditLog shared via config anchors every run into a hash chain,
+ * so the audit history is itself audited. Each signed attestation is a portable
+ * object the human-governance ring can ingest and verify offline.
+ */
+import { AuditorAgent } from './auditor.js';
+export class ContinuousAuditor {
+    auditor;
+    reports = [];
+    constructor(cfg) {
+        this.auditor = new AuditorAgent(cfg);
+    }
+    /** Run one audit pass and fold it into the running record. */
+    async run(input) {
+        const report = await this.auditor.audit(input);
+        this.reports.push(report);
+        return report;
+    }
+    /** Every signed attestation, in run order — the audit-of-record stream. */
+    attestations() {
+        return this.reports.map((r) => r.attestation);
+    }
+    history() {
+        return this.reports;
+    }
+    /** A one-glance operational summary for a dashboard or the CFO inbox. */
+    health() {
+        let cleanStreak = 0;
+        for (let i = this.reports.length - 1; i >= 0; i--) {
+            if (!this.reports[i].clean)
+                break;
+            cleanStreak += 1;
+        }
+        const last = this.reports[this.reports.length - 1];
+        return {
+            runs: this.reports.length,
+            everDirty: this.reports.some((r) => !r.clean),
+            cleanStreak,
+            openFindings: last ? last.findings.length : 0,
+            ...(last ? { lastAuditAt: last.at, lastAttestation: last.attestation } : {}),
+        };
+    }
+}
+//# sourceMappingURL=continuous-auditor.js.map

package/dist/continuous-auditor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"continuous-auditor.js","sourceRoot":"","sources":["../src/continuous-auditor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,EAAE,YAAY,EAAgF,MAAM,cAAc,CAAC;AAc1H,MAAM,OAAO,iBAAiB;IACX,OAAO,CAAe;IACtB,OAAO,GAAkB,EAAE,CAAC;IAE7C,YAAY,GAAkB;QAC5B,IAAI,CAAC,OAAO,GAAG,IAAI,YAAY,CAAC,GAAG,CAAC,CAAC;IACvC,CAAC;IAED,8DAA8D;IAC9D,KAAK,CAAC,GAAG,CAAC,KAAiB;QACzB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAC/C,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC1B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,2EAA2E;IAC3E,YAAY;QACV,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;IAChD,CAAC;IAED,OAAO;QACL,OAAO,IAAI,CAAC,OAAO,CAAC;IACtB,CAAC;IAED,yEAAyE;IACzE,MAAM;QACJ,IAAI,WAAW,GAAG,CAAC,CAAC;QACpB,KAAK,IAAI,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAClD,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAE,CAAC,KAAK;gBAAE,MAAM;YACnC,WAAW,IAAI,CAAC,CAAC;QACnB,CAAC;QACD,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QACnD,OAAO;YACL,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,MAAM;YACzB,SAAS,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;YAC7C,WAAW;YACX,YAAY,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;YAC7C,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,EAAE,EAAE,eAAe,EAAE,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC7E,CAAC;IACJ,CAAC;CACF"}

package/dist/index.d.ts

@@ -0,0 +1,20 @@
+/**
+ * @kyaki/agents — L2 Agent Runtime.
+ *
+ * Two spenders, a watcher, and a steward:
+ *   ProcurerAgent — sources compliant vendors, spends outward, proves savings.
+ *   Treasurer     — manages the balance sheet: obligations, FX sourcing, sweeps.
+ *   AuditorAgent  — spends nothing; proves the fleet stayed inside authority
+ *                   and signs a verifiable audit-of-record.
+ *   Steward       — acts on the PRINCIPAL's key: issues mandates from policy and
+ *                   revokes them when the Auditor proves an agent misbehaved.
+ */
+export type { ApprovalRequest, Market, OutcomeStatus, ProcurementNeed, ProcurementOutcome, SkippedOffer, VendorOffer } from './types.js';
+export { MockMarket } from './market.js';
+export { ApprovalInbox, signApproval, verifyApproval, type SignedApproval } from './approvals.js';
+export { ProcurerAgent, type ProcurerConfig } from './procurer.js';
+export { Treasurer, StaticFX, TreasuryApprovalInbox, type Account, type AccountType, type ActionKind, type ActionStatus, type CashPosition, type FXProvider, type Obligation, type PendingMovement, type MovementStatus, type TreasurerConfig, type TreasuryAction, } from './treasury.js';
+export { AuditorAgent, verifyAuditAttestation, type AuditAttestation, type AuditInput, type AuditReport, type AuditorConfig, type CommittedSpend, type Finding, type RevocationRecord, type Severity, } from './auditor.js';
+export { ContinuousAuditor, type AuditHealth } from './continuous-auditor.js';
+export { Steward, verifyGovernanceAttestation, type AuthorityAction, type AuthorityActionKind, type GovernanceAttestation, type StewardConfig, } from './steward.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AACH,YAAY,EAAE,eAAe,EAAE,MAAM,EAAE,aAAa,EAAE,eAAe,EAAE,kBAAkB,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AACzI,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,aAAa,EAAE,YAAY,EAAE,cAAc,EAAE,KAAK,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAClG,OAAO,EAAE,aAAa,EAAE,KAAK,cAAc,EAAE,MAAM,eAAe,CAAC;AACnE,OAAO,EACL,SAAS,EAAE,QAAQ,EAAE,qBAAqB,EAC1C,KAAK,OAAO,EAAE,KAAK,WAAW,EAAE,KAAK,UAAU,EAAE,KAAK,YAAY,EAClE,KAAK,YAAY,EAAE,KAAK,UAAU,EAAE,KAAK,UAAU,EAAE,KAAK,eAAe,EACzE,KAAK,cAAc,EAAE,KAAK,eAAe,EAAE,KAAK,cAAc,GAC/D,MAAM,eAAe,CAAC;AACvB,OAAO,EACL,YAAY,EAAE,sBAAsB,EACpC,KAAK,gBAAgB,EAAE,KAAK,UAAU,EAAE,KAAK,WAAW,EAAE,KAAK,aAAa,EAC5E,KAAK,cAAc,EAAE,KAAK,OAAO,EAAE,KAAK,gBAAgB,EAAE,KAAK,QAAQ,GACxE,MAAM,cAAc,CAAC;AACtB,OAAO,EAAE,iBAAiB,EAAE,KAAK,WAAW,EAAE,MAAM,yBAAyB,CAAC;AAC9E,OAAO,EACL,OAAO,EAAE,2BAA2B,EACpC,KAAK,eAAe,EAAE,KAAK,mBAAmB,EAAE,KAAK,qBAAqB,EAAE,KAAK,aAAa,GAC/F,MAAM,cAAc,CAAC"}