npm - @letterblack/lbe-core - Versions diffs - 1.3.5 → 1.3.6 - Mend

@letterblack/lbe-core 1.3.5 → 1.3.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (27) hide show

package/CHANGELOG.md +6 -0
package/README.md +181 -166
package/RELEASE_WORKSPACE_RULES.md +179 -110
package/Release-README.md +2 -0
package/_proof.mjs +246 -246
package/config/identity.config.json +2 -2
package/config/policy.default.json +24 -24
package/dist/cli/lbe.js +2 -3
package/dist/hooks/register.cjs +505 -505
package/exec/cli.js +472 -472
package/npm-pack.json +0 -0
package/package.json +77 -77
package/release/TRUST.md +88 -88
package/release-exec/dist/cli.js +2841 -2841
package/release-exec/dist/index.js +1835 -1835
package/release-exec/hooks/register.cjs +473 -473
package/release-exec/package.json +35 -35
package/src/cli/commands/assertConsumer.js +164 -164
package/src/cli/commands/init.js +306 -306
package/src/cli/commands/proof.js +2 -22
package/src/cli/main.js +181 -181
package/src/hooks/register.cjs +505 -505
package/src/state/fileIndex.js +1 -1
package/src/state/intentRegistry.js +3 -2
package/src/state/proofRunner.js +1 -1
package/src/state/targetRegistry.js +3 -2
package/lbe.audit.jsonl +0 -46

package/src/cli/main.js CHANGED Viewed

@@ -1,181 +1,181 @@
-// src/cli/main.js
-// LetterBlack Sentinel CLI entrypoint
-import fs from 'fs';
-import path from 'path';
-import { fileURLToPath } from 'url';
-import { parseArgs, printHelp } from './parseArgs.js';
-import { initCommand } from './commands/init.js';
-import { verifyCommand } from './commands/verify.js';
-import { dryrunCommand } from './commands/dryrun.js';
-import { runCommand } from './commands/run.js';
-import { auditVerifyCommand } from './commands/auditVerify.js';
-import { integrityCheckCommand, integrityGenerateCommand } from './commands/integrityCheck.js';
-import { performIntegrityCheck } from '../core/integrity.js';
-import { policySignCommand } from './commands/policySign.js';
-import { healthCommand } from './commands/health.js';
-import { policyAddCommand } from './commands/policyAdd.js';
-import { policyModeCommand } from './commands/policyMode.js';
-import { statusCommand } from './commands/status.js';
-import { logsCommand } from './commands/logs.js';
-import { openStateCommand } from './commands/openState.js';
-import { proofCommand } from './commands/proof.js';
-import { assertConsumerCommand } from './commands/assertConsumer.js';
-function toBoolean(value, defaultValue = false) {
-    if (value === undefined) return defaultValue;
-    if (value === true || value === false) return value;
-    const normalized = String(value).trim().toLowerCase();
-    if (normalized === 'true' || normalized === '1' || normalized === 'yes') return true;
-    if (normalized === 'false' || normalized === '0' || normalized === 'no') return false;
-    return defaultValue;
-}
-const __dirname = path.dirname(fileURLToPath(import.meta.url));
-const packageJsonPath = path.join(__dirname, '../../package.json');
-const packageJson = JSON.parse(fs.readFileSync(packageJsonPath, 'utf-8'));
-export async function main() {
-    const argv = process.argv.slice(2);
-    if (argv.includes('--version')) {
-        console.log(`LetterBlack Sentinel v${packageJson.version}`);
-        process.exit(0);
-    }
-    if (argv.length === 0 || argv.includes('--help') || argv.includes('-h')) {
-        printHelp(packageJson.version);
-        process.exit(0);
-    }
-    const { command, opts } = parseArgs(argv);
-    // Handle version flag
-    if (opts.version) {
-        console.log(`LetterBlack Sentinel v${packageJson.version}`);
-        process.exit(0);
-    }
-    // Handle help flag or no command
-    if (opts.help || !command || command === 'help') {
-        printHelp(packageJson.version);
-        process.exit(0);
-    }
-    try {
-        // Parse --pub-key-file if provided
-        if (opts['pub-key-file']) {
-            try {
-                opts['pub-key'] = fs.readFileSync(path.resolve(opts['pub-key-file']), 'utf-8').trim();
-            } catch (error) {
-                console.error(`Error reading public key file: ${error.message}`);
-                process.exit(1);
-            }
-        }
-        // Route to command handler
-        if (['verify', 'dryrun', 'run'].includes(command)) {
-            const integrityStrict = toBoolean(opts['integrity-strict'], false);
-            const integrityManifestPath = path.resolve(opts['integrity-manifest'] || '.lbe/config/integrity.manifest.json');
-            const integrityResult = await performIntegrityCheck({
-                strict: integrityStrict,
-                manifestPath: integrityManifestPath
-            });
-            if (!integrityResult.valid) {
-                console.error(JSON.stringify({
-                    status: 'error',
-                    error: integrityResult.reason || 'INTEGRITY_CHECK_FAILED',
-                    message: integrityResult.message
-                }, null, 2));
-                process.exit(8);
-            }
-        }
-        switch (command) {
-            case 'init':
-                await initCommand(opts);
-                break;
-            case 'verify':
-                await verifyCommand(opts);
-                break;
-            case 'dryrun':
-                await dryrunCommand(opts);
-                break;
-            case 'run':
-                await runCommand(opts);
-                break;
-            case 'audit-verify':
-                await auditVerifyCommand(opts);
-                break;
-            case 'integrity-check':
-                await integrityCheckCommand(opts);
-                break;
-            case 'integrity-generate':
-                await integrityGenerateCommand(opts);
-                break;
-            case 'policy-sign':
-                await policySignCommand(opts);
-                break;
-            case 'health':
-                await healthCommand(opts);
-                break;
-            case 'policy-add':
-                await policyAddCommand(opts);
-                break;
-            case 'observe':
-            case 'enforce':
-                await policyModeCommand(command, opts);
-                break;
-            case 'status':
-                await statusCommand(opts);
-                break;
-            case 'logs':
-                await logsCommand(opts);
-                break;
-            case 'open-state':
-                await openStateCommand(opts);
-                break;
-            case 'proof':
-                await proofCommand(opts);
-                break;
-            case 'assert-consumer':
-                await assertConsumerCommand(opts);
-                break;
-            default:
-                console.error(`Unknown command: ${command}`);
-                printHelp(packageJson.version);
-                process.exit(1);
-        }
-    } catch (error) {
-        console.error(JSON.stringify({
-            status: 'error',
-            error: 'INTERNAL_ERROR',
-            message: error.message,
-            stack: process.env.DEBUG ? error.stack : undefined
-        }));
-        process.exit(9);
-    }
-}
-main().catch((error) => {
-    console.error(JSON.stringify({
-        status: 'error',
-        error: 'FATAL_ERROR',
-        message: error.message
-    }));
-    process.exit(9);
-});
+// src/cli/main.js
+// LetterBlack Sentinel CLI entrypoint
+import fs from 'fs';
+import path from 'path';
+import { fileURLToPath } from 'url';
+import { parseArgs, printHelp } from './parseArgs.js';
+import { initCommand } from './commands/init.js';
+import { verifyCommand } from './commands/verify.js';
+import { dryrunCommand } from './commands/dryrun.js';
+import { runCommand } from './commands/run.js';
+import { auditVerifyCommand } from './commands/auditVerify.js';
+import { integrityCheckCommand, integrityGenerateCommand } from './commands/integrityCheck.js';
+import { performIntegrityCheck } from '../core/integrity.js';
+import { policySignCommand } from './commands/policySign.js';
+import { healthCommand } from './commands/health.js';
+import { policyAddCommand } from './commands/policyAdd.js';
+import { policyModeCommand } from './commands/policyMode.js';
+import { statusCommand } from './commands/status.js';
+import { logsCommand } from './commands/logs.js';
+import { openStateCommand } from './commands/openState.js';
+import { proofCommand } from './commands/proof.js';
+import { assertConsumerCommand } from './commands/assertConsumer.js';
+function toBoolean(value, defaultValue = false) {
+    if (value === undefined) return defaultValue;
+    if (value === true || value === false) return value;
+    const normalized = String(value).trim().toLowerCase();
+    if (normalized === 'true' || normalized === '1' || normalized === 'yes') return true;
+    if (normalized === 'false' || normalized === '0' || normalized === 'no') return false;
+    return defaultValue;
+}
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+const packageJsonPath = path.join(__dirname, '../../package.json');
+const packageJson = JSON.parse(fs.readFileSync(packageJsonPath, 'utf-8'));
+export async function main() {
+    const argv = process.argv.slice(2);
+    if (argv.includes('--version')) {
+        console.log(`LetterBlack Sentinel v${packageJson.version}`);
+        process.exit(0);
+    }
+    if (argv.length === 0 || argv.includes('--help') || argv.includes('-h')) {
+        printHelp(packageJson.version);
+        process.exit(0);
+    }
+    const { command, opts } = parseArgs(argv);
+    // Handle version flag
+    if (opts.version) {
+        console.log(`LetterBlack Sentinel v${packageJson.version}`);
+        process.exit(0);
+    }
+    // Handle help flag or no command
+    if (opts.help || !command || command === 'help') {
+        printHelp(packageJson.version);
+        process.exit(0);
+    }
+    try {
+        // Parse --pub-key-file if provided
+        if (opts['pub-key-file']) {
+            try {
+                opts['pub-key'] = fs.readFileSync(path.resolve(opts['pub-key-file']), 'utf-8').trim();
+            } catch (error) {
+                console.error(`Error reading public key file: ${error.message}`);
+                process.exit(1);
+            }
+        }
+        // Route to command handler
+        if (['verify', 'dryrun', 'run'].includes(command)) {
+            const integrityStrict = toBoolean(opts['integrity-strict'], false);
+            const integrityManifestPath = path.resolve(opts['integrity-manifest'] || '.lbe/config/integrity.manifest.json');
+            const integrityResult = await performIntegrityCheck({
+                strict: integrityStrict,
+                manifestPath: integrityManifestPath
+            });
+            if (!integrityResult.valid) {
+                console.error(JSON.stringify({
+                    status: 'error',
+                    error: integrityResult.reason || 'INTEGRITY_CHECK_FAILED',
+                    message: integrityResult.message
+                }, null, 2));
+                process.exit(8);
+            }
+        }
+        switch (command) {
+            case 'init':
+                await initCommand(opts);
+                break;
+            case 'verify':
+                await verifyCommand(opts);
+                break;
+            case 'dryrun':
+                await dryrunCommand(opts);
+                break;
+            case 'run':
+                await runCommand(opts);
+                break;
+            case 'audit-verify':
+                await auditVerifyCommand(opts);
+                break;
+            case 'integrity-check':
+                await integrityCheckCommand(opts);
+                break;
+            case 'integrity-generate':
+                await integrityGenerateCommand(opts);
+                break;
+            case 'policy-sign':
+                await policySignCommand(opts);
+                break;
+            case 'health':
+                await healthCommand(opts);
+                break;
+            case 'policy-add':
+                await policyAddCommand(opts);
+                break;
+            case 'observe':
+            case 'enforce':
+                await policyModeCommand(command, opts);
+                break;
+            case 'status':
+                await statusCommand(opts);
+                break;
+            case 'logs':
+                await logsCommand(opts);
+                break;
+            case 'open-state':
+                await openStateCommand(opts);
+                break;
+            case 'proof':
+                await proofCommand(opts);
+                break;
+            case 'assert-consumer':
+                await assertConsumerCommand(opts);
+                break;
+            default:
+                console.error(`Unknown command: ${command}`);
+                printHelp(packageJson.version);
+                process.exit(1);
+        }
+    } catch (error) {
+        console.error(JSON.stringify({
+            status: 'error',
+            error: 'INTERNAL_ERROR',
+            message: error.message,
+            stack: process.env.DEBUG ? error.stack : undefined
+        }));
+        process.exit(9);
+    }
+}
+main().catch((error) => {
+    console.error(JSON.stringify({
+        status: 'error',
+        error: 'FATAL_ERROR',
+        message: error.message
+    }));
+    process.exit(9);
+});