@longarc/mdash 3.1.1 → 3.1.3

package/dist/context/index.js

@@ -0,0 +1,180 @@
+/**
+ * mdash v3.1 — Context Module (formerly Caret)
+ * @module @longarcstudios/mdash/context
+ * @version 3.1.0
+ *
+ * The context primitive runtime, now integrated into mdash.
+ *
+ * Architecture: LLM at the edges, cryptography at the core.
+ *
+ * v3.1.0: Merged into mdash from Caret v0.2.0
+ * - MdashActionCode for standardized action vocabulary
+ * - InfluenceBudget for MCCA-compliant bounds
+ * - InfluenceConstraint for influence-based resolution
+ * - Outcome<T> for Intent-Experience-Utility tracking
+ * - Atomic encoding with coreference resolution
+ * - Utility learning and credit assignment utilities
+ *
+ * @example
+ * ```ts
+ * import { createCaret, requireInfluence } from '@longarcstudios/caret';
+ *
+ * const caret = createCaret({ seal_key: 'your-secret-key' });
+ *
+ * // Seal content into a fragment with MCCA constraints
+ * const fragment = await caret.seal({
+ *   content: { message: 'Hello, world!' },
+ *   source: 'app://example/greeting',
+ *   attribution: 'system',
+ *   constraints: [
+ *     requireInfluence({ system: 0.45, user: 0.30, environment: 0.15, assistant: 0.10 })
+ *   ],
+ *   atomic_encoding: { enabled: true }
+ * });
+ *
+ * // Compose multiple fragments
+ * const manifold = await caret.compose([
+ *   fragment,
+ *   anotherFragment
+ * ], { ceiling: '8k tokens' });
+ *
+ * // Resolve through constraints
+ * const result = await caret.resolve(fragment);
+ * if (result.success) {
+ *   console.log('Fragment is valid:', result.fragment);
+ * }
+ * ```
+ */
+import { createFragment, verifyFragment, setTokenizer, } from './fragment.js';
+import { compose } from './compose.js';
+import { resolve } from './resolve.js';
+import { MemoryStore } from './store.js';
+/**
+ * Create the Caret runtime.
+ */
+function createRuntime(state) {
+    const { config, store } = state;
+    return {
+        async seal(options) {
+            const fragment = await createFragment({
+                content: options.content,
+                source: options.source,
+                attribution: options.attribution,
+                trust_level: options.trust_level ?? getDefaultTrust(options.attribution, config),
+                constraints: options.constraints,
+                parent: options.parent,
+                signature: options.signature,
+                seal_key: config.seal_key,
+            });
+            // Store the fragment
+            await store.put(fragment);
+            return fragment;
+        },
+        async compose(fragments, options) {
+            return compose(fragments, options, config.seal_key);
+        },
+        async resolve(fragment, context) {
+            return resolve(fragment, context);
+        },
+        async verify(fragment) {
+            const result = await verifyFragment(fragment, config.seal_key);
+            return result.valid;
+        },
+        get store() {
+            return store;
+        },
+    };
+}
+/**
+ * Get default trust level for attribution.
+ */
+function getDefaultTrust(attribution, config) {
+    switch (attribution) {
+        case 'system':
+            return 100;
+        case 'operator':
+            return 90;
+        case 'user':
+            return 70;
+        case 'derived':
+            return 60;
+        case 'agent':
+            return 50;
+        case 'external':
+            return 30;
+        default:
+            return config.default_trust;
+    }
+}
+/**
+ * Create a Caret runtime instance.
+ *
+ * @param options - Configuration options
+ * @returns The Caret runtime
+ *
+ * @example
+ * ```ts
+ * const caret = createCaret({
+ *   seal_key: process.env.CARET_SEAL_KEY!,
+ *   default_trust: 50,
+ * });
+ * ```
+ */
+export function createCaret(options) {
+    if (!options.seal_key) {
+        throw new Error('seal_key is required');
+    }
+    // Enforce minimum key length for security (P5 fix: increased to 32)
+    if (options.seal_key.length < 32) {
+        throw new Error('seal_key must be at least 32 characters for security');
+    }
+    // Build config with defaults
+    const config = {
+        seal_key: options.seal_key,
+        default_trust: (options.default_trust ?? 50),
+        require_signatures: options.require_signatures ?? false,
+        tokenizer: options.tokenizer ?? 'cl100k',
+        custom_tokenizer: options.custom_tokenizer,
+    };
+    // Set up tokenizer if custom provided
+    if (options.custom_tokenizer) {
+        setTokenizer((content) => {
+            const text = typeof content === 'string' ? content : JSON.stringify(content);
+            return options.custom_tokenizer(text);
+        });
+    }
+    // Create or use provided store
+    const store = options.store ?? new MemoryStore(config.seal_key);
+    return createRuntime({ config, store });
+}
+// Re-export constraint builders
+export { maxAge, notBefore, notAfter, allowDomains, requireTrust, requireSignature, requireInfluence, requireMCCA, } from './resolve.js';
+// Re-export store utilities
+export { MemoryStore, CachedStore, CompositeStore, ExtendedMemoryStore, createStore, } from './store.js';
+// Re-export fragment utilities
+export { verifyFragment, serializeFragment, deserializeFragment, getFragmentAge, getFragmentTrust, isFragmentExpired, countTokens, setTokenizer, } from './fragment.js';
+// Re-export composition utilities
+export { verifyManifold, getManifoldStats, fitsInBudget, parseTokenCeiling, } from './compose.js';
+// Re-export provenance utilities
+export { createProvenanceRecord, createProvenanceChain, extendProvenanceChain, flattenChain, verifyChain, mergeChains, getMinTrust, getMaxTrust, } from './provenance.js';
+// Re-export crypto utilities
+export { sha256, sha256Object, sha256Binary, rollingHash, verifyHash, isValidHash, deterministicStringify, } from './crypto/hash.js';
+export { hmacSeal, hmacVerify, isValidSeal, } from './crypto/hmac.js';
+// Re-export type guards
+export { isHash, isFragmentId, isTimestamp, isTrustLevel, isTokenCount, isContextFragment, isValidInfluenceBudget, isMdashActionCode, sumInfluence, } from './types.js';
+// Re-export research pattern utilities
+export { 
+// Atomic encoding
+resolveCoreferences, createDefaultContext, hasUnresolvedCoreferences, extractEntityIds, canonicalEncode, computeCommitmentHash, isValidSubject, isValidTimestamp, } from './utils/atomic.js';
+export { 
+// Utility learning
+updateUtilityScore, updateOutcomeUtility, createInitialUtility, createUtilityFromHistory, predictSuccess, expectedUtility, compareUtility, selectBestOutcome, } from './utils/utility.js';
+export { 
+// Credit assignment
+assignCredit, validateCreditAssignment, attributeLiability, validateLiabilityShares, createDefaultInfluenceBudget, isMCCACompliant, normalizeInfluenceBudget, addInfluenceBudgets, computeTraceInfluence, } from './utils/credit.js';
+// Version export
+export const VERSION = '3.1.0';
+export const FORMERLY = 'Caret v0.2.0';
+/** Alias for createCaret - use this for new code */
+export const createContext = createCaret;
+//# sourceMappingURL=index.js.map

package/dist/context/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/context/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8CG;AAgBH,OAAO,EACL,cAAc,EACd,cAAc,EACd,YAAY,GACb,MAAM,eAAe,CAAC;AAEvB,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,OAAO,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAczC;;GAEG;AACH,SAAS,aAAa,CAAC,KAAmB;IACxC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,GAAG,KAAK,CAAC;IAEhC,OAAO;QACL,KAAK,CAAC,IAAI,CAAI,OAAuB;YACnC,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC;gBACpC,OAAO,EAAE,OAAO,CAAC,OAAO;gBACxB,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,WAAW,EAAE,OAAO,CAAC,WAAW;gBAChC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,eAAe,CAAC,OAAO,CAAC,WAAW,EAAE,MAAM,CAAC;gBAChF,WAAW,EAAE,OAAO,CAAC,WAAuC;gBAC5D,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,QAAQ,EAAE,MAAM,CAAC,QAAQ;aAC1B,CAAC,CAAC;YAEH,qBAAqB;YACrB,MAAM,KAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAE1B,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,KAAK,CAAC,OAAO,CACX,SAAqC,EACrC,OAAuB;YAEvB,OAAO,OAAO,CAAC,SAAS,EAAE,OAAO,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;QACtD,CAAC;QAED,KAAK,CAAC,OAAO,CACX,QAA4B,EAC5B,OAA2B;YAE3B,OAAO,OAAO,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QACpC,CAAC;QAED,KAAK,CAAC,MAAM,CAAC,QAAyB;YACpC,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;YAC/D,OAAO,MAAM,CAAC,KAAK,CAAC;QACtB,CAAC;QAED,IAAI,KAAK;YACP,OAAO,KAAK,CAAC;QACf,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,WAAwB,EAAE,MAAmB;IACpE,QAAQ,WAAW,EAAE,CAAC;QACpB,KAAK,QAAQ;YACX,OAAO,GAAG,CAAC;QACb,KAAK,UAAU;YACb,OAAO,EAAE,CAAC;QACZ,KAAK,MAAM;YACT,OAAO,EAAE,CAAC;QACZ,KAAK,SAAS;YACZ,OAAO,EAAE,CAAC;QACZ,KAAK,OAAO;YACV,OAAO,EAAE,CAAC;QACZ,KAAK,UAAU;YACb,OAAO,EAAE,CAAC;QACZ;YACE,OAAO,MAAM,CAAC,aAAuB,CAAC;IAC1C,CAAC;AACH,CAAC;AA6BD;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,WAAW,CAAC,OAA2B;IACrD,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;IAC1C,CAAC;IAED,oEAAoE;IACpE,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QACjC,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC1E,CAAC;IAED,6BAA6B;IAC7B,MAAM,MAAM,GAAG;QACb,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,aAAa,EAAE,CAAC,OAAO,CAAC,aAAa,IAAI,EAAE,CAAe;QAC1D,kBAAkB,EAAE,OAAO,CAAC,kBAAkB,IAAI,KAAK;QACvD,SAAS,EAAE,OAAO,CAAC,SAAS,IAAI,QAAiB;QACjD,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;KAC3C,CAAC;IAEF,sCAAsC;IACtC,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;QAC7B,YAAY,CAAC,CAAC,OAAO,EAAE,EAAE;YACvB,MAAM,IAAI,GAAG,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;YAC7E,OAAO,OAAO,CAAC,gBAAiB,CAAC,IAAI,CAAQ,CAAC;QAChD,CAAC,CAAC,CAAC;IACL,CAAC;IAED,+BAA+B;IAC/B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,IAAI,WAAW,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;IAEhE,OAAO,aAAa,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;AAC1C,CAAC;AAkED,gCAAgC;AAChC,OAAO,EACL,MAAM,EACN,SAAS,EACT,QAAQ,EACR,YAAY,EACZ,YAAY,EACZ,gBAAgB,EAChB,gBAAgB,EAChB,WAAW,GACZ,MAAM,cAAc,CAAC;AAKtB,4BAA4B;AAC5B,OAAO,EACL,WAAW,EACX,WAAW,EACX,cAAc,EACd,mBAAmB,EACnB,WAAW,GACZ,MAAM,YAAY,CAAC;AAIpB,+BAA+B;AAC/B,OAAO,EACL,cAAc,EACd,iBAAiB,EACjB,mBAAmB,EACnB,cAAc,EACd,gBAAgB,EAChB,iBAAiB,EACjB,WAAW,EACX,YAAY,GACb,MAAM,eAAe,CAAC;AAEvB,kCAAkC;AAClC,OAAO,EACL,cAAc,EACd,gBAAgB,EAChB,YAAY,EACZ,iBAAiB,GAClB,MAAM,cAAc,CAAC;AAEtB,iCAAiC;AACjC,OAAO,EACL,sBAAsB,EACtB,qBAAqB,EACrB,qBAAqB,EACrB,YAAY,EACZ,WAAW,EACX,WAAW,EACX,WAAW,EACX,WAAW,GACZ,MAAM,iBAAiB,CAAC;AAEzB,6BAA6B;AAC7B,OAAO,EACL,MAAM,EACN,YAAY,EACZ,YAAY,EACZ,WAAW,EACX,UAAU,EACV,WAAW,EACX,sBAAsB,GACvB,MAAM,kBAAkB,CAAC;AAE1B,OAAO,EACL,QAAQ,EACR,UAAU,EACV,WAAW,GACZ,MAAM,kBAAkB,CAAC;AAE1B,wBAAwB;AACxB,OAAO,EACL,MAAM,EACN,YAAY,EACZ,WAAW,EACX,YAAY,EACZ,YAAY,EACZ,iBAAiB,EACjB,sBAAsB,EACtB,iBAAiB,EACjB,YAAY,GACb,MAAM,YAAY,CAAC;AAEpB,uCAAuC;AACvC,OAAO;AACL,kBAAkB;AAClB,mBAAmB,EACnB,oBAAoB,EACpB,yBAAyB,EACzB,gBAAgB,EAChB,eAAe,EACf,qBAAqB,EACrB,cAAc,EACd,gBAAgB,GACjB,MAAM,mBAAmB,CAAC;AAE3B,OAAO;AACL,mBAAmB;AACnB,kBAAkB,EAClB,oBAAoB,EACpB,oBAAoB,EACpB,wBAAwB,EACxB,cAAc,EACd,eAAe,EACf,cAAc,EACd,iBAAiB,GAClB,MAAM,oBAAoB,CAAC;AAE5B,OAAO;AACL,oBAAoB;AACpB,YAAY,EACZ,wBAAwB,EACxB,kBAAkB,EAClB,uBAAuB,EACvB,4BAA4B,EAC5B,eAAe,EACf,wBAAwB,EACxB,mBAAmB,EACnB,qBAAqB,GACtB,MAAM,mBAAmB,CAAC;AAE3B,iBAAiB;AACjB,MAAM,CAAC,MAAM,OAAO,GAAG,OAAO,CAAC;AAC/B,MAAM,CAAC,MAAM,QAAQ,GAAG,cAAc,CAAC;AAEvC,oDAAoD;AACpD,MAAM,CAAC,MAAM,aAAa,GAAG,WAAW,CAAC"}

package/dist/context/provenance.d.ts

@@ -0,0 +1,80 @@
+/**
+ * Caret — Provenance Chain Implementation
+ * @module @longarcstudios/caret/provenance
+ *
+ * Immutable provenance tracking for context fragments.
+ * Every fragment knows exactly where it came from.
+ */
+import type { ProvenanceRecord, ProvenanceChain, SourceURI, Attribution, TrustLevel, Timestamp, Hash } from './types.js';
+/**
+ * Create a new ProvenanceRecord.
+ */
+export declare function createProvenanceRecord(options: {
+    source: SourceURI | string;
+    attribution: Attribution;
+    trust_level?: number;
+    parent_hash?: Hash | null;
+    signature?: string;
+}): Promise<ProvenanceRecord>;
+/**
+ * Create a new ProvenanceChain with a single record.
+ */
+export declare function createProvenanceChain(record: ProvenanceRecord): Promise<ProvenanceChain>;
+/**
+ * Extend an existing ProvenanceChain with a new record.
+ * Returns a new chain (immutable).
+ */
+export declare function extendProvenanceChain(chain: ProvenanceChain, record: ProvenanceRecord): Promise<ProvenanceChain>;
+/**
+ * Get all records in the chain as an array (head to tail).
+ */
+export declare function flattenChain(chain: ProvenanceChain): ProvenanceRecord[];
+/**
+ * Find a record in the chain by source URI.
+ */
+export declare function findBySource(chain: ProvenanceChain, source: SourceURI | string): ProvenanceRecord | null;
+/**
+ * Get the minimum trust level in the chain.
+ */
+export declare function getMinTrust(chain: ProvenanceChain): TrustLevel;
+/**
+ * Get the maximum trust level in the chain.
+ */
+export declare function getMaxTrust(chain: ProvenanceChain): TrustLevel;
+/**
+ * Check if chain contains a specific attribution type.
+ */
+export declare function hasAttribution(chain: ProvenanceChain, attribution: Attribution): boolean;
+/**
+ * Get all unique attributions in the chain.
+ */
+export declare function getAttributions(chain: ProvenanceChain): Attribution[];
+/**
+ * Verify the integrity of a provenance chain.
+ * Checks that all hash links are valid.
+ */
+export declare function verifyChain(chain: ProvenanceChain): Promise<{
+    valid: boolean;
+    errors: string[];
+}>;
+/**
+ * Merge multiple provenance chains into one.
+ * Used when composing multiple fragments into a manifold.
+ *
+ * Strategy: Creates a new chain with all records, ordered by timestamp.
+ */
+export declare function mergeChains(chains: readonly ProvenanceChain[]): Promise<ProvenanceChain>;
+/**
+ * Parse a source string into a SourceURI.
+ * Validates the format if strict mode is enabled.
+ */
+export declare function parseSourceURI(source: string, strict?: boolean): SourceURI;
+/**
+ * Create a timestamp for the current moment.
+ */
+export declare function now(): Timestamp;
+/**
+ * Check if a timestamp is expired given a max age.
+ */
+export declare function isExpired(timestamp: Timestamp, maxAgeMs: number): boolean;
+//# sourceMappingURL=provenance.d.ts.map

package/dist/context/provenance.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"provenance.d.ts","sourceRoot":"","sources":["../../src/context/provenance.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EACV,gBAAgB,EAChB,eAAe,EACf,SAAS,EACT,WAAW,EACX,UAAU,EACV,SAAS,EACT,IAAI,EACL,MAAM,YAAY,CAAC;AAOpB;;GAEG;AACH,wBAAsB,sBAAsB,CAAC,OAAO,EAAE;IACpD,MAAM,EAAE,SAAS,GAAG,MAAM,CAAC;IAC3B,WAAW,EAAE,WAAW,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IAC1B,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAW5B;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,gBAAgB,GACvB,OAAO,CAAC,eAAe,CAAC,CAS1B;AAED;;;GAGG;AACH,wBAAsB,qBAAqB,CACzC,KAAK,EAAE,eAAe,EACtB,MAAM,EAAE,gBAAgB,GACvB,OAAO,CAAC,eAAe,CAAC,CAiB1B;AAMD;;GAEG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,eAAe,GAAG,gBAAgB,EAAE,CAUvE;AAED;;GAEG;AACH,wBAAgB,YAAY,CAC1B,KAAK,EAAE,eAAe,EACtB,MAAM,EAAE,SAAS,GAAG,MAAM,GACzB,gBAAgB,GAAG,IAAI,CAWzB;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,eAAe,GAAG,UAAU,CAY9D;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,eAAe,GAAG,UAAU,CAY9D;AAED;;GAEG;AACH,wBAAgB,cAAc,CAC5B,KAAK,EAAE,eAAe,EACtB,WAAW,EAAE,WAAW,GACvB,OAAO,CAWT;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,KAAK,EAAE,eAAe,GAAG,WAAW,EAAE,CAUrE;AAMD;;;GAGG;AACH,wBAAsB,WAAW,CAAC,KAAK,EAAE,eAAe,GAAG,OAAO,CAAC;IACjE,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,EAAE,MAAM,EAAE,CAAC;CAClB,CAAC,CAmCD;AAmBD;;;;;GAKG;AACH,wBAAsB,WAAW,CAC/B,MAAM,EAAE,SAAS,eAAe,EAAE,GACjC,OAAO,CAAC,eAAe,CAAC,CA+C1B;AAoCD;;;GAGG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,UAAQ,GAAG,SAAS,CAUxE;AAED;;GAEG;AACH,wBAAgB,GAAG,IAAI,SAAS,CAE/B;AAED;;GAEG;AACH,wBAAgB,SAAS,CAAC,SAAS,EAAE,SAAS,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAIzE"}

package/dist/context/provenance.js

@@ -0,0 +1,294 @@
+/**
+ * Caret — Provenance Chain Implementation
+ * @module @longarcstudios/caret/provenance
+ *
+ * Immutable provenance tracking for context fragments.
+ * Every fragment knows exactly where it came from.
+ */
+import { sha256Object, rollingHash } from './crypto/hash.js';
+// ============================================================================
+// FACTORY FUNCTIONS
+// ============================================================================
+/**
+ * Create a new ProvenanceRecord.
+ */
+export async function createProvenanceRecord(options) {
+    const trust = validateTrustLevel(options.trust_level ?? getDefaultTrust(options.attribution));
+    return {
+        source: options.source,
+        attribution: options.attribution,
+        trust_level: trust,
+        timestamp: new Date().toISOString(),
+        parent_hash: options.parent_hash ?? null,
+        signature: options.signature,
+    };
+}
+/**
+ * Create a new ProvenanceChain with a single record.
+ */
+export async function createProvenanceChain(record) {
+    const chain_hash = await sha256Object(record);
+    return {
+        head: record,
+        tail: null,
+        length: 1,
+        chain_hash,
+    };
+}
+/**
+ * Extend an existing ProvenanceChain with a new record.
+ * Returns a new chain (immutable).
+ */
+export async function extendProvenanceChain(chain, record) {
+    // Update record's parent_hash to point to current chain
+    const linkedRecord = {
+        ...record,
+        parent_hash: chain.chain_hash,
+    };
+    // Compute new chain hash
+    const recordHash = await sha256Object(linkedRecord);
+    const chain_hash = await rollingHash([chain.chain_hash, recordHash]);
+    return {
+        head: linkedRecord,
+        tail: chain,
+        length: chain.length + 1,
+        chain_hash,
+    };
+}
+// ============================================================================
+// CHAIN OPERATIONS
+// ============================================================================
+/**
+ * Get all records in the chain as an array (head to tail).
+ */
+export function flattenChain(chain) {
+    const records = [];
+    let current = chain;
+    while (current !== null) {
+        records.push(current.head);
+        current = current.tail;
+    }
+    return records;
+}
+/**
+ * Find a record in the chain by source URI.
+ */
+export function findBySource(chain, source) {
+    let current = chain;
+    while (current !== null) {
+        if (current.head.source === source) {
+            return current.head;
+        }
+        current = current.tail;
+    }
+    return null;
+}
+/**
+ * Get the minimum trust level in the chain.
+ */
+export function getMinTrust(chain) {
+    let min = chain.head.trust_level;
+    let current = chain.tail;
+    while (current !== null) {
+        if (current.head.trust_level < min) {
+            min = current.head.trust_level;
+        }
+        current = current.tail;
+    }
+    return min;
+}
+/**
+ * Get the maximum trust level in the chain.
+ */
+export function getMaxTrust(chain) {
+    let max = chain.head.trust_level;
+    let current = chain.tail;
+    while (current !== null) {
+        if (current.head.trust_level > max) {
+            max = current.head.trust_level;
+        }
+        current = current.tail;
+    }
+    return max;
+}
+/**
+ * Check if chain contains a specific attribution type.
+ */
+export function hasAttribution(chain, attribution) {
+    let current = chain;
+    while (current !== null) {
+        if (current.head.attribution === attribution) {
+            return true;
+        }
+        current = current.tail;
+    }
+    return false;
+}
+/**
+ * Get all unique attributions in the chain.
+ */
+export function getAttributions(chain) {
+    const attributions = new Set();
+    let current = chain;
+    while (current !== null) {
+        attributions.add(current.head.attribution);
+        current = current.tail;
+    }
+    return Array.from(attributions);
+}
+// ============================================================================
+// CHAIN VERIFICATION
+// ============================================================================
+/**
+ * Verify the integrity of a provenance chain.
+ * Checks that all hash links are valid.
+ */
+export async function verifyChain(chain) {
+    const errors = [];
+    // Single-record chain
+    if (chain.length === 1) {
+        const expectedHash = await sha256Object(chain.head);
+        if (expectedHash !== chain.chain_hash) {
+            errors.push('Chain hash mismatch for single-record chain');
+        }
+        return { valid: errors.length === 0, errors };
+    }
+    // Multi-record chain
+    let current = chain;
+    const recordHashes = [];
+    while (current !== null) {
+        const recordHash = await sha256Object(current.head);
+        recordHashes.unshift(recordHash); // Add to front (we're traversing head to tail)
+        // Check parent_hash linkage
+        if (current.tail !== null && current.head.parent_hash !== current.tail.chain_hash) {
+            errors.push(`Parent hash mismatch at depth ${recordHashes.length}`);
+        }
+        current = current.tail;
+    }
+    // Verify rolling hash
+    const expectedChainHash = await computeChainHash(chain);
+    if (expectedChainHash !== chain.chain_hash) {
+        errors.push('Rolling chain hash verification failed');
+    }
+    return { valid: errors.length === 0, errors };
+}
+/**
+ * Recompute the chain hash from records.
+ */
+async function computeChainHash(chain) {
+    if (chain.tail === null) {
+        return sha256Object(chain.head);
+    }
+    const tailHash = await computeChainHash(chain.tail);
+    const headHash = await sha256Object(chain.head);
+    return rollingHash([tailHash, headHash]);
+}
+// ============================================================================
+// CHAIN MERGING
+// ============================================================================
+/**
+ * Merge multiple provenance chains into one.
+ * Used when composing multiple fragments into a manifold.
+ *
+ * Strategy: Creates a new chain with all records, ordered by timestamp.
+ */
+export async function mergeChains(chains) {
+    if (chains.length === 0) {
+        throw new Error('Cannot merge empty chain array');
+    }
+    if (chains.length === 1) {
+        const first = chains[0];
+        if (!first)
+            throw new Error('Invalid chain');
+        return first;
+    }
+    // Collect all records
+    const allRecords = [];
+    for (const chain of chains) {
+        allRecords.push(...flattenChain(chain));
+    }
+    // Sort by timestamp (oldest first)
+    allRecords.sort((a, b) => new Date(a.timestamp).getTime() - new Date(b.timestamp).getTime());
+    // Deduplicate by source + timestamp
+    const seen = new Set();
+    const uniqueRecords = allRecords.filter(record => {
+        const key = `${record.source}:${record.timestamp}`;
+        if (seen.has(key))
+            return false;
+        seen.add(key);
+        return true;
+    });
+    // Build new chain
+    const firstRecord = uniqueRecords[0];
+    if (!firstRecord) {
+        throw new Error('No records to merge');
+    }
+    let result = await createProvenanceChain(firstRecord);
+    for (let i = 1; i < uniqueRecords.length; i++) {
+        const record = uniqueRecords[i];
+        if (record) {
+            result = await extendProvenanceChain(result, record);
+        }
+    }
+    return result;
+}
+// ============================================================================
+// UTILITY FUNCTIONS
+// ============================================================================
+/**
+ * Get default trust level for an attribution type.
+ */
+function getDefaultTrust(attribution) {
+    switch (attribution) {
+        case 'system':
+            return 100;
+        case 'operator':
+            return 90;
+        case 'user':
+            return 70;
+        case 'derived':
+            return 60;
+        case 'agent':
+            return 50;
+        case 'external':
+            return 30;
+        default:
+            return 50;
+    }
+}
+/**
+ * Validate and clamp trust level to 0-100.
+ */
+function validateTrustLevel(value) {
+    const clamped = Math.max(0, Math.min(100, Math.round(value)));
+    return clamped;
+}
+/**
+ * Parse a source string into a SourceURI.
+ * Validates the format if strict mode is enabled.
+ */
+export function parseSourceURI(source, strict = false) {
+    if (strict) {
+        // Validate URI format: scheme://path
+        const uriPattern = /^[a-z][a-z0-9+.-]*:\/\/.+$/i;
+        if (!uriPattern.test(source)) {
+            throw new Error('Invalid source URI format');
+        }
+    }
+    return source;
+}
+/**
+ * Create a timestamp for the current moment.
+ */
+export function now() {
+    return new Date().toISOString();
+}
+/**
+ * Check if a timestamp is expired given a max age.
+ */
+export function isExpired(timestamp, maxAgeMs) {
+    const then = new Date(timestamp).getTime();
+    const now = Date.now();
+    return (now - then) > maxAgeMs;
+}
+//# sourceMappingURL=provenance.js.map

package/dist/context/provenance.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provenance.js","sourceRoot":"","sources":["../../src/context/provenance.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAWH,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,kBAAkB,CAAC;AAE7D,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,OAM5C;IACC,MAAM,KAAK,GAAG,kBAAkB,CAAC,OAAO,CAAC,WAAW,IAAI,eAAe,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC;IAE9F,OAAO;QACL,MAAM,EAAE,OAAO,CAAC,MAAmB;QACnC,WAAW,EAAE,OAAO,CAAC,WAAW;QAChC,WAAW,EAAE,KAAK;QAClB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAe;QAChD,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,IAAI;QACxC,SAAS,EAAE,OAAO,CAAC,SAAS;KAC7B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,MAAwB;IAExB,MAAM,UAAU,GAAG,MAAM,YAAY,CAAC,MAAM,CAAC,CAAC;IAE9C,OAAO;QACL,IAAI,EAAE,MAAM;QACZ,IAAI,EAAE,IAAI;QACV,MAAM,EAAE,CAAC;QACT,UAAU;KACX,CAAC;AACJ,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,KAAsB,EACtB,MAAwB;IAExB,wDAAwD;IACxD,MAAM,YAAY,GAAqB;QACrC,GAAG,MAAM;QACT,WAAW,EAAE,KAAK,CAAC,UAAU;KAC9B,CAAC;IAEF,yBAAyB;IACzB,MAAM,UAAU,GAAG,MAAM,YAAY,CAAC,YAAY,CAAC,CAAC;IACpD,MAAM,UAAU,GAAG,MAAM,WAAW,CAAC,CAAC,KAAK,CAAC,UAAU,EAAE,UAAU,CAAC,CAAC,CAAC;IAErE,OAAO;QACL,IAAI,EAAE,YAAY;QAClB,IAAI,EAAE,KAAK;QACX,MAAM,EAAE,KAAK,CAAC,MAAM,GAAG,CAAC;QACxB,UAAU;KACX,CAAC;AACJ,CAAC;AAED,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,KAAsB;IACjD,MAAM,OAAO,GAAuB,EAAE,CAAC;IACvC,IAAI,OAAO,GAA2B,KAAK,CAAC;IAE5C,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAC3B,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAC1B,KAAsB,EACtB,MAA0B;IAE1B,IAAI,OAAO,GAA2B,KAAK,CAAC;IAE5C,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YACnC,OAAO,OAAO,CAAC,IAAI,CAAC;QACtB,CAAC;QACD,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,KAAsB;IAChD,IAAI,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC;IACjC,IAAI,OAAO,GAA2B,KAAK,CAAC,IAAI,CAAC;IAEjD,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,GAAG,GAAG,EAAE,CAAC;YACnC,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC;QACjC,CAAC;QACD,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,KAAsB;IAChD,IAAI,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC;IACjC,IAAI,OAAO,GAA2B,KAAK,CAAC,IAAI,CAAC;IAEjD,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,GAAG,GAAG,EAAE,CAAC;YACnC,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC;QACjC,CAAC;QACD,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAC5B,KAAsB,EACtB,WAAwB;IAExB,IAAI,OAAO,GAA2B,KAAK,CAAC;IAE5C,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,KAAK,WAAW,EAAE,CAAC;YAC7C,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,KAAsB;IACpD,MAAM,YAAY,GAAG,IAAI,GAAG,EAAe,CAAC;IAC5C,IAAI,OAAO,GAA2B,KAAK,CAAC;IAE5C,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC3C,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;AAClC,CAAC;AAED,+EAA+E;AAC/E,qBAAqB;AACrB,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,KAAsB;IAItD,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,sBAAsB;IACtB,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACvB,MAAM,YAAY,GAAG,MAAM,YAAY,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACpD,IAAI,YAAY,KAAK,KAAK,CAAC,UAAU,EAAE,CAAC;YACtC,MAAM,CAAC,IAAI,CAAC,6CAA6C,CAAC,CAAC;QAC7D,CAAC;QACD,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IAChD,CAAC;IAED,qBAAqB;IACrB,IAAI,OAAO,GAA2B,KAAK,CAAC;IAC5C,MAAM,YAAY,GAAW,EAAE,CAAC;IAEhC,OAAO,OAAO,KAAK,IAAI,EAAE,CAAC;QACxB,MAAM,UAAU,GAAG,MAAM,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACpD,YAAY,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,+CAA+C;QAEjF,4BAA4B;QAC5B,IAAI,OAAO,CAAC,IAAI,KAAK,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,KAAK,OAAO,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;YAClF,MAAM,CAAC,IAAI,CAAC,iCAAiC,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;QACtE,CAAC;QAED,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC;IACzB,CAAC;IAED,sBAAsB;IACtB,MAAM,iBAAiB,GAAG,MAAM,gBAAgB,CAAC,KAAK,CAAC,CAAC;IACxD,IAAI,iBAAiB,KAAK,KAAK,CAAC,UAAU,EAAE,CAAC;QAC3C,MAAM,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;IACxD,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;AAChD,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,gBAAgB,CAAC,KAAsB;IACpD,IAAI,KAAK,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;QACxB,OAAO,YAAY,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,gBAAgB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACpD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAChD,OAAO,WAAW,CAAC,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC;AAC3C,CAAC;AAED,+EAA+E;AAC/E,gBAAgB;AAChB,+EAA+E;AAE/E;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAAkC;IAElC,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxB,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;IACpD,CAAC;IAED,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxB,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;QACxB,IAAI,CAAC,KAAK;YAAE,MAAM,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;QAC7C,OAAO,KAAK,CAAC;IACf,CAAC;IAED,sBAAsB;IACtB,MAAM,UAAU,GAAuB,EAAE,CAAC;IAC1C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,UAAU,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,CAAC;IAC1C,CAAC;IAED,mCAAmC;IACnC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CACvB,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAClE,CAAC;IAEF,oCAAoC;IACpC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE;QAC/C,MAAM,GAAG,GAAG,GAAG,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;QACnD,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAChC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACd,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;IAEH,kBAAkB;IAClB,MAAM,WAAW,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;IACrC,IAAI,CAAC,WAAW,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;IACzC,CAAC;IAED,IAAI,MAAM,GAAG,MAAM,qBAAqB,CAAC,WAAW,CAAC,CAAC;IAEtD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,aAAa,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC9C,MAAM,MAAM,GAAG,aAAa,CAAC,CAAC,CAAC,CAAC;QAChC,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,GAAG,MAAM,qBAAqB,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E;;GAEG;AACH,SAAS,eAAe,CAAC,WAAwB;IAC/C,QAAQ,WAAW,EAAE,CAAC;QACpB,KAAK,QAAQ;YACX,OAAO,GAAG,CAAC;QACb,KAAK,UAAU;YACb,OAAO,EAAE,CAAC;QACZ,KAAK,MAAM;YACT,OAAO,EAAE,CAAC;QACZ,KAAK,SAAS;YACZ,OAAO,EAAE,CAAC;QACZ,KAAK,OAAO;YACV,OAAO,EAAE,CAAC;QACZ,KAAK,UAAU;YACb,OAAO,EAAE,CAAC;QACZ;YACE,OAAO,EAAE,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,KAAa;IACvC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC9D,OAAO,OAAqB,CAAC;AAC/B,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,cAAc,CAAC,MAAc,EAAE,MAAM,GAAG,KAAK;IAC3D,IAAI,MAAM,EAAE,CAAC;QACX,qCAAqC;QACrC,MAAM,UAAU,GAAG,6BAA6B,CAAC;QACjD,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CAAC,2BAA2B,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,OAAO,MAAmB,CAAC;AAC7B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,GAAG;IACjB,OAAO,IAAI,IAAI,EAAE,CAAC,WAAW,EAAe,CAAC;AAC/C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,SAAS,CAAC,SAAoB,EAAE,QAAgB;IAC9D,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;IAC3C,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,OAAO,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG,QAAQ,CAAC;AACjC,CAAC"}