@lumenflow/kernel 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (127) hide show
  1. package/LICENSE.md +190 -0
  2. package/README.md +26 -0
  3. package/dist/canonical-json.d.ts +7 -0
  4. package/dist/canonical-json.d.ts.map +1 -0
  5. package/dist/canonical-json.js +50 -0
  6. package/dist/canonical-json.js.map +1 -0
  7. package/dist/event-kinds.d.ts +32 -0
  8. package/dist/event-kinds.d.ts.map +1 -0
  9. package/dist/event-kinds.js +49 -0
  10. package/dist/event-kinds.js.map +1 -0
  11. package/dist/event-store/index.d.ts +64 -0
  12. package/dist/event-store/index.d.ts.map +1 -0
  13. package/dist/event-store/index.js +634 -0
  14. package/dist/event-store/index.js.map +1 -0
  15. package/dist/evidence/evidence-store.d.ts +78 -0
  16. package/dist/evidence/evidence-store.d.ts.map +1 -0
  17. package/dist/evidence/evidence-store.js +409 -0
  18. package/dist/evidence/evidence-store.js.map +1 -0
  19. package/dist/evidence/fs-helpers.d.ts +13 -0
  20. package/dist/evidence/fs-helpers.d.ts.map +1 -0
  21. package/dist/evidence/fs-helpers.js +38 -0
  22. package/dist/evidence/fs-helpers.js.map +1 -0
  23. package/dist/evidence/index.d.ts +3 -0
  24. package/dist/evidence/index.d.ts.map +1 -0
  25. package/dist/evidence/index.js +5 -0
  26. package/dist/evidence/index.js.map +1 -0
  27. package/dist/index.d.ts +17 -0
  28. package/dist/index.d.ts.map +1 -0
  29. package/dist/index.js +19 -0
  30. package/dist/index.js.map +1 -0
  31. package/dist/kernel.schemas.d.ts +642 -0
  32. package/dist/kernel.schemas.d.ts.map +1 -0
  33. package/dist/kernel.schemas.js +331 -0
  34. package/dist/kernel.schemas.js.map +1 -0
  35. package/dist/pack/hash.d.ts +7 -0
  36. package/dist/pack/hash.d.ts.map +1 -0
  37. package/dist/pack/hash.js +56 -0
  38. package/dist/pack/hash.js.map +1 -0
  39. package/dist/pack/index.d.ts +4 -0
  40. package/dist/pack/index.d.ts.map +1 -0
  41. package/dist/pack/index.js +6 -0
  42. package/dist/pack/index.js.map +1 -0
  43. package/dist/pack/manifest.d.ts +100 -0
  44. package/dist/pack/manifest.d.ts.map +1 -0
  45. package/dist/pack/manifest.js +50 -0
  46. package/dist/pack/manifest.js.map +1 -0
  47. package/dist/pack/pack-loader.d.ts +108 -0
  48. package/dist/pack/pack-loader.d.ts.map +1 -0
  49. package/dist/pack/pack-loader.js +282 -0
  50. package/dist/pack/pack-loader.js.map +1 -0
  51. package/dist/policy/approval-event.d.ts +29 -0
  52. package/dist/policy/approval-event.d.ts.map +1 -0
  53. package/dist/policy/approval-event.js +17 -0
  54. package/dist/policy/approval-event.js.map +1 -0
  55. package/dist/policy/index.d.ts +3 -0
  56. package/dist/policy/index.d.ts.map +1 -0
  57. package/dist/policy/index.js +5 -0
  58. package/dist/policy/index.js.map +1 -0
  59. package/dist/policy/policy-engine.d.ts +52 -0
  60. package/dist/policy/policy-engine.d.ts.map +1 -0
  61. package/dist/policy/policy-engine.js +83 -0
  62. package/dist/policy/policy-engine.js.map +1 -0
  63. package/dist/runtime/index.d.ts +2 -0
  64. package/dist/runtime/index.d.ts.map +1 -0
  65. package/dist/runtime/index.js +4 -0
  66. package/dist/runtime/index.js.map +1 -0
  67. package/dist/runtime/kernel-runtime.d.ts +170 -0
  68. package/dist/runtime/kernel-runtime.d.ts.map +1 -0
  69. package/dist/runtime/kernel-runtime.js +751 -0
  70. package/dist/runtime/kernel-runtime.js.map +1 -0
  71. package/dist/sandbox/bwrap-invocation.d.ts +13 -0
  72. package/dist/sandbox/bwrap-invocation.d.ts.map +1 -0
  73. package/dist/sandbox/bwrap-invocation.js +105 -0
  74. package/dist/sandbox/bwrap-invocation.js.map +1 -0
  75. package/dist/sandbox/index.d.ts +5 -0
  76. package/dist/sandbox/index.d.ts.map +1 -0
  77. package/dist/sandbox/index.js +7 -0
  78. package/dist/sandbox/index.js.map +1 -0
  79. package/dist/sandbox/profile.d.ts +32 -0
  80. package/dist/sandbox/profile.d.ts.map +1 -0
  81. package/dist/sandbox/profile.js +101 -0
  82. package/dist/sandbox/profile.js.map +1 -0
  83. package/dist/sandbox/subprocess-dispatcher.d.ts +38 -0
  84. package/dist/sandbox/subprocess-dispatcher.d.ts.map +1 -0
  85. package/dist/sandbox/subprocess-dispatcher.js +145 -0
  86. package/dist/sandbox/subprocess-dispatcher.js.map +1 -0
  87. package/dist/sandbox/tool-runner-worker.d.ts +54 -0
  88. package/dist/sandbox/tool-runner-worker.d.ts.map +1 -0
  89. package/dist/sandbox/tool-runner-worker.js +159 -0
  90. package/dist/sandbox/tool-runner-worker.js.map +1 -0
  91. package/dist/shared-constants.d.ts +48 -0
  92. package/dist/shared-constants.d.ts.map +1 -0
  93. package/dist/shared-constants.js +49 -0
  94. package/dist/shared-constants.js.map +1 -0
  95. package/dist/state-machine/index.d.ts +30 -0
  96. package/dist/state-machine/index.d.ts.map +1 -0
  97. package/dist/state-machine/index.js +92 -0
  98. package/dist/state-machine/index.js.map +1 -0
  99. package/dist/tool-host/builtins/capabilities.d.ts +20 -0
  100. package/dist/tool-host/builtins/capabilities.d.ts.map +1 -0
  101. package/dist/tool-host/builtins/capabilities.js +211 -0
  102. package/dist/tool-host/builtins/capabilities.js.map +1 -0
  103. package/dist/tool-host/builtins/index.d.ts +2 -0
  104. package/dist/tool-host/builtins/index.d.ts.map +1 -0
  105. package/dist/tool-host/builtins/index.js +4 -0
  106. package/dist/tool-host/builtins/index.js.map +1 -0
  107. package/dist/tool-host/index.d.ts +5 -0
  108. package/dist/tool-host/index.d.ts.map +1 -0
  109. package/dist/tool-host/index.js +7 -0
  110. package/dist/tool-host/index.js.map +1 -0
  111. package/dist/tool-host/scope-intersection.d.ts +10 -0
  112. package/dist/tool-host/scope-intersection.d.ts.map +1 -0
  113. package/dist/tool-host/scope-intersection.js +188 -0
  114. package/dist/tool-host/scope-intersection.js.map +1 -0
  115. package/dist/tool-host/subprocess-dispatcher.d.ts +14 -0
  116. package/dist/tool-host/subprocess-dispatcher.d.ts.map +1 -0
  117. package/dist/tool-host/subprocess-dispatcher.js +14 -0
  118. package/dist/tool-host/subprocess-dispatcher.js.map +1 -0
  119. package/dist/tool-host/tool-host.d.ts +42 -0
  120. package/dist/tool-host/tool-host.d.ts.map +1 -0
  121. package/dist/tool-host/tool-host.js +395 -0
  122. package/dist/tool-host/tool-host.js.map +1 -0
  123. package/dist/tool-host/tool-registry.d.ts +9 -0
  124. package/dist/tool-host/tool-registry.d.ts.map +1 -0
  125. package/dist/tool-host/tool-registry.js +28 -0
  126. package/dist/tool-host/tool-registry.js.map +1 -0
  127. package/package.json +71 -0
package/dist/tool-host/tool-host.js ADDED
@@ -0,0 +1,395 @@
1
+ // Copyright (c) 2026 Hellmai Ltd
2
+ // SPDX-License-Identifier: Apache-2.0
3
+ import { randomUUID } from 'node:crypto';
4
+ import { intersectToolScopes } from './scope-intersection.js';
5
+ import { TOOL_TRACE_KINDS } from '../event-kinds.js';
6
+ import { ExecutionContextSchema, ToolOutputSchema, ToolScopeSchema, TOOL_ERROR_CODES, TOOL_HANDLER_KINDS, } from '../kernel.schemas.js';
7
+ import { DEFAULT_KERNEL_RUNTIME_VERSION, DEFAULT_WORKSPACE_CONFIG_HASH, EXECUTION_METADATA_KEYS, KERNEL_POLICY_IDS, RESERVED_FRAMEWORK_SCOPE_GLOB, RESERVED_FRAMEWORK_SCOPE_PREFIX, RESERVED_FRAMEWORK_SCOPE_ROOT, SHA256_HEX_REGEX, } from '../shared-constants.js';
8
+ import { EvidenceStore } from '../evidence/evidence-store.js';
9
+ import { ToolRegistry } from './tool-registry.js';
10
+ import { DefaultSubprocessDispatcher } from './subprocess-dispatcher.js';
11
+ function resolveMetadata(context) {
12
+ if (!context.metadata || typeof context.metadata !== 'object') {
13
+ return {};
14
+ }
15
+ return context.metadata;
16
+ }
17
+ function parseScopeList(candidate, fallback) {
18
+ const parsed = ToolScopeSchema.array().safeParse(candidate);
19
+ if (parsed.success) {
20
+ return parsed.data;
21
+ }
22
+ return fallback;
23
+ }
24
+ function parseOptionalString(candidate) {
25
+ return typeof candidate === 'string' && candidate.trim().length > 0 ? candidate : undefined;
26
+ }
27
+ function normalizeScopePattern(pattern) {
28
+ return pattern.replaceAll('\\', '/').replace(/^\.\//, '');
29
+ }
30
+ function isReservedFrameworkWriteScope(scope) {
31
+ if (scope.type !== 'path' || scope.access !== 'write') {
32
+ return false;
33
+ }
34
+ const normalized = normalizeScopePattern(scope.pattern);
35
+ return (normalized === RESERVED_FRAMEWORK_SCOPE_ROOT ||
36
+ normalized.startsWith(RESERVED_FRAMEWORK_SCOPE_PREFIX));
37
+ }
38
+ function collectReservedFrameworkWriteScopes(scopes) {
39
+ const blocked = scopes
40
+ .filter((scope) => isReservedFrameworkWriteScope(scope))
41
+ .map((scope) => normalizeScopePattern(scope.pattern));
42
+ return [...new Set(blocked)];
43
+ }
44
+ export async function allowAllPolicyHook() {
45
+ return [
46
+ {
47
+ policy_id: KERNEL_POLICY_IDS.ALLOW_ALL,
48
+ decision: 'allow',
49
+ reason: 'Phase 2 default allow-all policy',
50
+ },
51
+ ];
52
+ }
53
+ export class ToolHost {
54
+ registry;
55
+ evidenceStore;
56
+ subprocessDispatcher;
57
+ policyHook;
58
+ runtimeVersion;
59
+ now;
60
+ onTraceError;
61
+ constructor(options) {
62
+ if (!options.policyHook) {
63
+ throw new Error('ToolHost requires an explicit policyHook. ' +
64
+ 'Use allowAllPolicyHook for development or provide a production policy.');
65
+ }
66
+ this.registry = options.registry;
67
+ this.evidenceStore = options.evidenceStore;
68
+ this.subprocessDispatcher = options.subprocessDispatcher ?? new DefaultSubprocessDispatcher();
69
+ this.policyHook = options.policyHook;
70
+ this.runtimeVersion = options.runtimeVersion ?? DEFAULT_KERNEL_RUNTIME_VERSION;
71
+ this.now = options.now ?? (() => new Date());
72
+ this.onTraceError = options.onTraceError;
73
+ }
74
+ async onStartup() {
75
+ return this.evidenceStore.reconcileOrphanedStarts();
76
+ }
77
+ async onShutdown() {
78
+ return this.evidenceStore.reconcileOrphanedStarts();
79
+ }
80
+ async execute(name, input, ctx) {
81
+ const context = ExecutionContextSchema.parse(ctx);
82
+ const capability = this.registry.lookup(name);
83
+ if (!capability) {
84
+ return {
85
+ success: false,
86
+ error: {
87
+ code: TOOL_ERROR_CODES.TOOL_NOT_FOUND,
88
+ message: `Tool "${name}" is not registered`,
89
+ },
90
+ };
91
+ }
92
+ const metadata = resolveMetadata(context);
93
+ const { scopeRequested, scopeAllowed, scopeEnforced, reservedFrameworkWriteScopes } = this.resolveScope(capability, context, metadata);
94
+ const { dataHash: inputHash, dataRef: inputRef } = await this.evidenceStore.persistData(input);
95
+ const receiptId = randomUUID();
96
+ const startedAt = this.now().getTime();
97
+ const timestamp = new Date(startedAt).toISOString();
98
+ const workspaceConfigHashCandidate = parseOptionalString(metadata[EXECUTION_METADATA_KEYS.WORKSPACE_CONFIG_HASH]);
99
+ const workspaceConfigHash = workspaceConfigHashCandidate && SHA256_HEX_REGEX.test(workspaceConfigHashCandidate)
100
+ ? workspaceConfigHashCandidate
101
+ : DEFAULT_WORKSPACE_CONFIG_HASH;
102
+ const runtimeVersion = parseOptionalString(metadata[EXECUTION_METADATA_KEYS.RUNTIME_VERSION]) ?? this.runtimeVersion;
103
+ const packVersion = parseOptionalString(metadata[EXECUTION_METADATA_KEYS.PACK_VERSION]);
104
+ const packIntegrity = parseOptionalString(metadata[EXECUTION_METADATA_KEYS.PACK_INTEGRITY]);
105
+ const packId = capability.pack ?? parseOptionalString(metadata[EXECUTION_METADATA_KEYS.PACK_ID]);
106
+ try {
107
+ await this.evidenceStore.appendTrace({
108
+ schema_version: 1,
109
+ kind: TOOL_TRACE_KINDS.TOOL_CALL_STARTED,
110
+ receipt_id: receiptId,
111
+ run_id: context.run_id,
112
+ task_id: context.task_id,
113
+ session_id: context.session_id,
114
+ timestamp,
115
+ tool_name: capability.name,
116
+ execution_mode: capability.handler.kind,
117
+ scope_requested: scopeRequested,
118
+ scope_allowed: scopeAllowed,
119
+ scope_enforced: scopeEnforced,
120
+ input_hash: inputHash,
121
+ input_ref: inputRef,
122
+ tool_version: capability.version,
123
+ pack_id: packId,
124
+ pack_version: packVersion,
125
+ pack_integrity: packIntegrity,
126
+ workspace_config_hash: workspaceConfigHash,
127
+ runtime_version: runtimeVersion,
128
+ });
129
+ }
130
+ catch (error) {
131
+ // Started trace failure must not prevent tool execution.
132
+ this.onTraceError?.(error);
133
+ }
134
+ const authResult = await this.authorize({
135
+ receiptId,
136
+ startedAt,
137
+ capability,
138
+ input,
139
+ context,
140
+ scopeRequested,
141
+ scopeAllowed,
142
+ scopeEnforced,
143
+ reservedFrameworkWriteScopes,
144
+ });
145
+ if (authResult.denied) {
146
+ return authResult.output;
147
+ }
148
+ const parsedInput = capability.input_schema.safeParse(input);
149
+ if (!parsedInput.success) {
150
+ const invalidInputOutput = {
151
+ success: false,
152
+ error: {
153
+ code: TOOL_ERROR_CODES.INVALID_INPUT,
154
+ message: parsedInput.error.message,
155
+ },
156
+ };
157
+ try {
158
+ await this.recordDeniedTrace({
159
+ receiptId,
160
+ startedAt,
161
+ result: 'failure',
162
+ scopeEnforcementNote: 'Input validation failed before dispatch.',
163
+ policyDecisions: authResult.policyDecisions,
164
+ });
165
+ }
166
+ catch (error) {
167
+ // Denied trace failure must not suppress the denial output.
168
+ this.onTraceError?.(error);
169
+ }
170
+ return invalidInputOutput;
171
+ }
172
+ let output = await this.dispatch(capability, parsedInput.data, context, scopeEnforced);
173
+ output = this.normalizeOutput(output, capability);
174
+ try {
175
+ await this.recordTrace({
176
+ receiptId,
177
+ startedAt,
178
+ output,
179
+ policyDecisions: authResult.policyDecisions,
180
+ });
181
+ }
182
+ catch (error) {
183
+ // Trace recording failure must not swallow the tool execution result.
184
+ // The tool output is more important to the caller than the audit trail.
185
+ this.onTraceError?.(error);
186
+ }
187
+ return output;
188
+ }
189
+ resolveScope(capability, context, metadata) {
190
+ const workspaceAllowed = parseScopeList(metadata[EXECUTION_METADATA_KEYS.WORKSPACE_ALLOWED_SCOPES], context.allowed_scopes);
191
+ const laneAllowed = parseScopeList(metadata[EXECUTION_METADATA_KEYS.LANE_ALLOWED_SCOPES], context.allowed_scopes);
192
+ const taskDeclared = parseScopeList(metadata[EXECUTION_METADATA_KEYS.TASK_DECLARED_SCOPES], context.allowed_scopes);
193
+ const scopeRequested = capability.required_scopes;
194
+ const reservedFrameworkWriteScopes = collectReservedFrameworkWriteScopes(scopeRequested);
195
+ const scopeAllowed = intersectToolScopes({
196
+ workspaceAllowed,
197
+ laneAllowed,
198
+ taskDeclared,
199
+ toolRequired: scopeRequested,
200
+ });
201
+ const scopeEnforced = scopeAllowed;
202
+ return { scopeRequested, scopeAllowed, scopeEnforced, reservedFrameworkWriteScopes };
203
+ }
204
+ async authorize(params) {
205
+ const { receiptId, startedAt, capability, input, context, scopeRequested, scopeAllowed, scopeEnforced, reservedFrameworkWriteScopes, } = params;
206
+ if (reservedFrameworkWriteScopes.length > 0) {
207
+ const output = {
208
+ success: false,
209
+ error: {
210
+ code: TOOL_ERROR_CODES.SCOPE_DENIED,
211
+ message: `Reserved scope violation: pack/tool write scopes under ${RESERVED_FRAMEWORK_SCOPE_GLOB} are not allowed.`,
212
+ details: {
213
+ reserved_scopes: reservedFrameworkWriteScopes,
214
+ },
215
+ },
216
+ };
217
+ try {
218
+ await this.recordDeniedTrace({
219
+ receiptId,
220
+ startedAt,
221
+ result: 'denied',
222
+ scopeEnforcementNote: `Denied by reserved framework boundary: ${RESERVED_FRAMEWORK_SCOPE_GLOB} is framework-owned.`,
223
+ policyDecisions: [
224
+ {
225
+ policy_id: KERNEL_POLICY_IDS.SCOPE_RESERVED_PATH,
226
+ decision: 'deny',
227
+ reason: `Pack/tool declared write scope targets reserved ${RESERVED_FRAMEWORK_SCOPE_GLOB} namespace`,
228
+ },
229
+ ],
230
+ });
231
+ }
232
+ catch (error) {
233
+ // Denied trace failure must not suppress the denial output.
234
+ this.onTraceError?.(error);
235
+ }
236
+ return { denied: true, output };
237
+ }
238
+ if (scopeEnforced.length === 0) {
239
+ const output = {
240
+ success: false,
241
+ error: {
242
+ code: TOOL_ERROR_CODES.SCOPE_DENIED,
243
+ message: 'Scope intersection denied: no allowed scopes remain after intersection.',
244
+ details: {
245
+ scope_requested: scopeRequested,
246
+ scope_allowed: scopeAllowed,
247
+ },
248
+ },
249
+ };
250
+ try {
251
+ await this.recordDeniedTrace({
252
+ receiptId,
253
+ startedAt,
254
+ result: 'denied',
255
+ scopeEnforcementNote: 'Denied by hard boundary: empty scope intersection.',
256
+ policyDecisions: [
257
+ {
258
+ policy_id: KERNEL_POLICY_IDS.SCOPE_BOUNDARY,
259
+ decision: 'deny',
260
+ reason: 'No intersecting scopes after scope resolution',
261
+ },
262
+ ],
263
+ });
264
+ }
265
+ catch (error) {
266
+ // Denied trace failure must not suppress the denial output.
267
+ this.onTraceError?.(error);
268
+ }
269
+ return { denied: true, output };
270
+ }
271
+ const policyDecisions = await this.policyHook({
272
+ capability,
273
+ input,
274
+ context,
275
+ scopeEnforced,
276
+ });
277
+ if (policyDecisions.some((decision) => decision.decision === 'deny')) {
278
+ const output = {
279
+ success: false,
280
+ error: {
281
+ code: TOOL_ERROR_CODES.POLICY_DENIED,
282
+ message: 'Policy hook denied tool execution.',
283
+ },
284
+ };
285
+ try {
286
+ await this.recordDeniedTrace({
287
+ receiptId,
288
+ startedAt,
289
+ result: 'denied',
290
+ scopeEnforcementNote: 'Denied by policy hook decision.',
291
+ policyDecisions,
292
+ });
293
+ }
294
+ catch (error) {
295
+ // Denied trace failure must not suppress the denial output.
296
+ this.onTraceError?.(error);
297
+ }
298
+ return { denied: true, output };
299
+ }
300
+ return { denied: false, policyDecisions };
301
+ }
302
+ async dispatch(capability, input, context, scopeEnforced) {
303
+ try {
304
+ if (capability.handler.kind === TOOL_HANDLER_KINDS.IN_PROCESS) {
305
+ return await capability.handler.fn(input, context);
306
+ }
307
+ return await this.subprocessDispatcher.dispatch({
308
+ capability,
309
+ input,
310
+ context,
311
+ scopeEnforced,
312
+ });
313
+ }
314
+ catch (error) {
315
+ return {
316
+ success: false,
317
+ error: {
318
+ code: TOOL_ERROR_CODES.TOOL_EXECUTION_FAILED,
319
+ message: error.message,
320
+ },
321
+ };
322
+ }
323
+ }
324
+ normalizeOutput(output, capability) {
325
+ const normalizedOutputResult = ToolOutputSchema.safeParse(output);
326
+ if (!normalizedOutputResult.success) {
327
+ return {
328
+ success: false,
329
+ error: {
330
+ code: TOOL_ERROR_CODES.INVALID_OUTPUT,
331
+ message: normalizedOutputResult.error.message,
332
+ },
333
+ };
334
+ }
335
+ let normalized = normalizedOutputResult.data;
336
+ if (capability.output_schema && normalized.success) {
337
+ const parsedData = capability.output_schema.safeParse(normalized.data);
338
+ if (!parsedData.success) {
339
+ normalized = {
340
+ success: false,
341
+ error: {
342
+ code: TOOL_ERROR_CODES.INVALID_OUTPUT,
343
+ message: parsedData.error.message,
344
+ },
345
+ };
346
+ }
347
+ }
348
+ return normalized;
349
+ }
350
+ async recordDeniedTrace(params) {
351
+ const finishedAt = this.now();
352
+ await this.evidenceStore.appendTrace({
353
+ schema_version: 1,
354
+ kind: TOOL_TRACE_KINDS.TOOL_CALL_FINISHED,
355
+ receipt_id: params.receiptId,
356
+ timestamp: finishedAt.toISOString(),
357
+ result: params.result,
358
+ duration_ms: finishedAt.getTime() - params.startedAt,
359
+ scope_enforcement_note: params.scopeEnforcementNote,
360
+ policy_decisions: params.policyDecisions,
361
+ artifacts_written: [],
362
+ });
363
+ }
364
+ async recordTrace(params) {
365
+ const { receiptId, startedAt, output, policyDecisions } = params;
366
+ const outputRef = output.data === undefined ? undefined : await this.evidenceStore.persistData(output.data);
367
+ const outputHash = outputRef?.dataHash;
368
+ const outputReference = outputRef?.dataRef;
369
+ const result = output.success
370
+ ? 'success'
371
+ : output.error?.code === TOOL_ERROR_CODES.SCOPE_DENIED
372
+ ? 'denied'
373
+ : 'failure';
374
+ const finishedAt = this.now();
375
+ await this.evidenceStore.appendTrace({
376
+ schema_version: 1,
377
+ kind: TOOL_TRACE_KINDS.TOOL_CALL_FINISHED,
378
+ receipt_id: receiptId,
379
+ timestamp: finishedAt.toISOString(),
380
+ result,
381
+ duration_ms: finishedAt.getTime() - startedAt,
382
+ output_hash: outputHash,
383
+ output_ref: outputReference,
384
+ scope_enforcement_note: result === 'success'
385
+ ? 'Allowed by scope intersection and policy.'
386
+ : 'Denied or failed during execution.',
387
+ policy_decisions: policyDecisions,
388
+ artifacts_written: Array.isArray(output.metadata?.artifacts_written) &&
389
+ output.metadata?.artifacts_written.every((artifact) => typeof artifact === 'string')
390
+ ? output.metadata.artifacts_written
391
+ : [],
392
+ });
393
+ }
394
+ }
395
+ //# sourceMappingURL=tool-host.js.map
package/dist/tool-host/tool-host.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"tool-host.js","sourceRoot":"","sources":["../../src/tool-host/tool-host.ts"],"names":[],"mappings":"AAAA,iCAAiC;AACjC,sCAAsC;AAEtC,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AAC9D,OAAO,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AACrD,OAAO,EACL,sBAAsB,EACtB,gBAAgB,EAChB,eAAe,EACf,gBAAgB,EAChB,kBAAkB,GAMnB,MAAM,sBAAsB,CAAC;AAC9B,OAAO,EACL,8BAA8B,EAC9B,6BAA6B,EAC7B,uBAAuB,EACvB,iBAAiB,EACjB,6BAA6B,EAC7B,+BAA+B,EAC/B,6BAA6B,EAC7B,gBAAgB,GACjB,MAAM,wBAAwB,CAAC;AAChC,OAAO,EAAE,aAAa,EAAE,MAAM,+BAA+B,CAAC;AAC9D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,2BAA2B,EAA6B,MAAM,4BAA4B,CAAC;AAiCpG,SAAS,eAAe,CAAC,OAAyB;IAChD,IAAI,CAAC,OAAO,CAAC,QAAQ,IAAI,OAAO,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC9D,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,OAAO,OAAO,CAAC,QAAQ,CAAC;AAC1B,CAAC;AAED,SAAS,cAAc,CAAC,SAAkB,EAAE,QAAqB;IAC/D,MAAM,MAAM,GAAG,eAAe,CAAC,KAAK,EAAE,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IAC5D,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,OAAO,MAAM,CAAC,IAAI,CAAC;IACrB,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,mBAAmB,CAAC,SAAkB;IAC7C,OAAO,OAAO,SAAS,KAAK,QAAQ,IAAI,SAAS,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;AAC9F,CAAC;AAED,SAAS,qBAAqB,CAAC,OAAe;IAC5C,OAAO,OAAO,CAAC,UAAU,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;AAC5D,CAAC;AAED,SAAS,6BAA6B,CACpC,KAAgB;IAEhB,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,IAAI,KAAK,CAAC,MAAM,KAAK,OAAO,EAAE,CAAC;QACtD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,UAAU,GAAG,qBAAqB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACxD,OAAO,CACL,UAAU,KAAK,6BAA6B;QAC5C,UAAU,CAAC,UAAU,CAAC,+BAA+B,CAAC,CACvD,CAAC;AACJ,CAAC;AAED,SAAS,mCAAmC,CAAC,MAAmB;IAC9D,MAAM,OAAO,GAAG,MAAM;SACnB,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,6BAA6B,CAAC,KAAK,CAAC,CAAC;SACvD,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,qBAAqB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC;IACxD,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC;AAC/B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,kBAAkB;IACtC,OAAO;QACL;YACE,SAAS,EAAE,iBAAiB,CAAC,SAAS;YACtC,QAAQ,EAAE,OAAO;YACjB,MAAM,EAAE,kCAAkC;SAC3C;KACF,CAAC;AACJ,CAAC;AAED,MAAM,OAAO,QAAQ;IACF,QAAQ,CAAe;IACvB,aAAa,CAAgB;IAC7B,oBAAoB,CAAuB;IAC3C,UAAU,CAAa;IACvB,cAAc,CAAS;IACvB,GAAG,CAAa;IAChB,YAAY,CAA0B;IAEvD,YAAY,OAAwB;QAClC,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC;YACxB,MAAM,IAAI,KAAK,CACb,4CAA4C;gBAC1C,wEAAwE,CAC3E,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QACjC,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,aAAa,CAAC;QAC3C,IAAI,CAAC,oBAAoB,GAAG,OAAO,CAAC,oBAAoB,IAAI,IAAI,2BAA2B,EAAE,CAAC;QAC9F,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;QACrC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,IAAI,8BAA8B,CAAC;QAC/E,IAAI,CAAC,GAAG,GAAG,OAAO,CAAC,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC;QAC7C,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC;IAC3C,CAAC;IAED,KAAK,CAAC,SAAS;QACb,OAAO,IAAI,CAAC,aAAa,CAAC,uBAAuB,EAAE,CAAC;IACtD,CAAC;IAED,KAAK,CAAC,UAAU;QACd,OAAO,IAAI,CAAC,aAAa,CAAC,uBAAuB,EAAE,CAAC;IACtD,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,IAAY,EAAE,KAAc,EAAE,GAAqB;QAC/D,MAAM,OAAO,GAAG,sBAAsB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAElD,MAAM,UAAU,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAC9C,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,cAAc;oBACrC,OAAO,EAAE,SAAS,IAAI,qBAAqB;iBAC5C;aACF,CAAC;QACJ,CAAC;QAED,MAAM,QAAQ,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;QAC1C,MAAM,EAAE,cAAc,EAAE,YAAY,EAAE,aAAa,EAAE,4BAA4B,EAAE,GACjF,IAAI,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;QAEnD,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC/F,MAAM,SAAS,GAAG,UAAU,EAAE,CAAC;QAC/B,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC;QACvC,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAC;QAEpD,MAAM,4BAA4B,GAAG,mBAAmB,CACtD,QAAQ,CAAC,uBAAuB,CAAC,qBAAqB,CAAC,CACxD,CAAC;QACF,MAAM,mBAAmB,GACvB,4BAA4B,IAAI,gBAAgB,CAAC,IAAI,CAAC,4BAA4B,CAAC;YACjF,CAAC,CAAC,4BAA4B;YAC9B,CAAC,CAAC,6BAA6B,CAAC;QAEpC,MAAM,cAAc,GAClB,mBAAmB,CAAC,QAAQ,CAAC,uBAAuB,CAAC,eAAe,CAAC,CAAC,IAAI,IAAI,CAAC,cAAc,CAAC;QAChG,MAAM,WAAW,GAAG,mBAAmB,CAAC,QAAQ,CAAC,uBAAuB,CAAC,YAAY,CAAC,CAAC,CAAC;QACxF,MAAM,aAAa,GAAG,mBAAmB,CAAC,QAAQ,CAAC,uBAAuB,CAAC,cAAc,CAAC,CAAC,CAAC;QAC5F,MAAM,MAAM,GACV,UAAU,CAAC,IAAI,IAAI,mBAAmB,CAAC,QAAQ,CAAC,uBAAuB,CAAC,OAAO,CAAC,CAAC,CAAC;QAEpF,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC;gBACnC,cAAc,EAAE,CAAC;gBACjB,IAAI,EAAE,gBAAgB,CAAC,iBAAiB;gBACxC,UAAU,EAAE,SAAS;gBACrB,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,OAAO,EAAE,OAAO,CAAC,OAAO;gBACxB,UAAU,EAAE,OAAO,CAAC,UAAU;gBAC9B,SAAS;gBACT,SAAS,EAAE,UAAU,CAAC,IAAI;gBAC1B,cAAc,EAAE,UAAU,CAAC,OAAO,CAAC,IAAI;gBACvC,eAAe,EAAE,cAAc;gBAC/B,aAAa,EAAE,YAAY;gBAC3B,cAAc,EAAE,aAAa;gBAC7B,UAAU,EAAE,SAAS;gBACrB,SAAS,EAAE,QAAQ;gBACnB,YAAY,EAAE,UAAU,CAAC,OAAO;gBAChC,OAAO,EAAE,MAAM;gBACf,YAAY,EAAE,WAAW;gBACzB,cAAc,EAAE,aAAa;gBAC7B,qBAAqB,EAAE,mBAAmB;gBAC1C,eAAe,EAAE,cAAc;aAChC,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,yDAAyD;YACzD,IAAI,CAAC,YAAY,EAAE,CAAC,KAAc,CAAC,CAAC;QACtC,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC;YACtC,SAAS;YACT,SAAS;YACT,UAAU;YACV,KAAK;YACL,OAAO;YACP,cAAc;YACd,YAAY;YACZ,aAAa;YACb,4BAA4B;SAC7B,CAAC,CAAC;QACH,IAAI,UAAU,CAAC,MAAM,EAAE,CAAC;YACtB,OAAO,UAAU,CAAC,MAAM,CAAC;QAC3B,CAAC;QAED,MAAM,WAAW,GAAG,UAAU,CAAC,YAAY,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QAC7D,IAAI,CAAC,WAAW,CAAC,OAAO,EAAE,CAAC;YACzB,MAAM,kBAAkB,GAAe;gBACrC,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,aAAa;oBACpC,OAAO,EAAE,WAAW,CAAC,KAAK,CAAC,OAAO;iBACnC;aACF,CAAC;YACF,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,iBAAiB,CAAC;oBAC3B,SAAS;oBACT,SAAS;oBACT,MAAM,EAAE,SAAS;oBACjB,oBAAoB,EAAE,0CAA0C;oBAChE,eAAe,EAAE,UAAU,CAAC,eAAe;iBAC5C,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,4DAA4D;gBAC5D,IAAI,CAAC,YAAY,EAAE,CAAC,KAAc,CAAC,CAAC;YACtC,CAAC;YACD,OAAO,kBAAkB,CAAC;QAC5B,CAAC;QAED,IAAI,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,UAAU,EAAE,WAAW,CAAC,IAAI,EAAE,OAAO,EAAE,aAAa,CAAC,CAAC;QACvF,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;QAElD,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,WAAW,CAAC;gBACrB,SAAS;gBACT,SAAS;gBACT,MAAM;gBACN,eAAe,EAAE,UAAU,CAAC,eAAe;aAC5C,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,sEAAsE;YACtE,wEAAwE;YACxE,IAAI,CAAC,YAAY,EAAE,CAAC,KAAc,CAAC,CAAC;QACtC,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,YAAY,CAClB,UAA0B,EAC1B,OAAyB,EACzB,QAAiC;QAEjC,MAAM,gBAAgB,GAAG,cAAc,CACrC,QAAQ,CAAC,uBAAuB,CAAC,wBAAwB,CAAC,EAC1D,OAAO,CAAC,cAAc,CACvB,CAAC;QACF,MAAM,WAAW,GAAG,cAAc,CAChC,QAAQ,CAAC,uBAAuB,CAAC,mBAAmB,CAAC,EACrD,OAAO,CAAC,cAAc,CACvB,CAAC;QACF,MAAM,YAAY,GAAG,cAAc,CACjC,QAAQ,CAAC,uBAAuB,CAAC,oBAAoB,CAAC,EACtD,OAAO,CAAC,cAAc,CACvB,CAAC;QAEF,MAAM,cAAc,GAAG,UAAU,CAAC,eAAe,CAAC;QAClD,MAAM,4BAA4B,GAAG,mCAAmC,CAAC,cAAc,CAAC,CAAC;QACzF,MAAM,YAAY,GAAG,mBAAmB,CAAC;YACvC,gBAAgB;YAChB,WAAW;YACX,YAAY;YACZ,YAAY,EAAE,cAAc;SAC7B,CAAC,CAAC;QACH,MAAM,aAAa,GAAG,YAAY,CAAC;QAEnC,OAAO,EAAE,cAAc,EAAE,YAAY,EAAE,aAAa,EAAE,4BAA4B,EAAE,CAAC;IACvF,CAAC;IAEO,KAAK,CAAC,SAAS,CAAC,MAUvB;QACC,MAAM,EACJ,SAAS,EACT,SAAS,EACT,UAAU,EACV,KAAK,EACL,OAAO,EACP,cAAc,EACd,YAAY,EACZ,aAAa,EACb,4BAA4B,GAC7B,GAAG,MAAM,CAAC;QAEX,IAAI,4BAA4B,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5C,MAAM,MAAM,GAAe;gBACzB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,YAAY;oBACnC,OAAO,EAAE,0DAA0D,6BAA6B,mBAAmB;oBACnH,OAAO,EAAE;wBACP,eAAe,EAAE,4BAA4B;qBAC9C;iBACF;aACF,CAAC;YACF,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,iBAAiB,CAAC;oBAC3B,SAAS;oBACT,SAAS;oBACT,MAAM,EAAE,QAAQ;oBAChB,oBAAoB,EAAE,0CAA0C,6BAA6B,sBAAsB;oBACnH,eAAe,EAAE;wBACf;4BACE,SAAS,EAAE,iBAAiB,CAAC,mBAAmB;4BAChD,QAAQ,EAAE,MAAM;4BAChB,MAAM,EAAE,mDAAmD,6BAA6B,YAAY;yBACrG;qBACF;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,4DAA4D;gBAC5D,IAAI,CAAC,YAAY,EAAE,CAAC,KAAc,CAAC,CAAC;YACtC,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;QAClC,CAAC;QAED,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,MAAM,MAAM,GAAe;gBACzB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,YAAY;oBACnC,OAAO,EAAE,yEAAyE;oBAClF,OAAO,EAAE;wBACP,eAAe,EAAE,cAAc;wBAC/B,aAAa,EAAE,YAAY;qBAC5B;iBACF;aACF,CAAC;YACF,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,iBAAiB,CAAC;oBAC3B,SAAS;oBACT,SAAS;oBACT,MAAM,EAAE,QAAQ;oBAChB,oBAAoB,EAAE,oDAAoD;oBAC1E,eAAe,EAAE;wBACf;4BACE,SAAS,EAAE,iBAAiB,CAAC,cAAc;4BAC3C,QAAQ,EAAE,MAAM;4BAChB,MAAM,EAAE,+CAA+C;yBACxD;qBACF;iBACF,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,4DAA4D;gBAC5D,IAAI,CAAC,YAAY,EAAE,CAAC,KAAc,CAAC,CAAC;YACtC,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;QAClC,CAAC;QAED,MAAM,eAAe,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC;YAC5C,UAAU;YACV,KAAK;YACL,OAAO;YACP,aAAa;SACd,CAAC,CAAC;QAEH,IAAI,eAAe,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,QAAQ,CAAC,QAAQ,KAAK,MAAM,CAAC,EAAE,CAAC;YACrE,MAAM,MAAM,GAAe;gBACzB,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,aAAa;oBACpC,OAAO,EAAE,oCAAoC;iBAC9C;aACF,CAAC;YACF,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,iBAAiB,CAAC;oBAC3B,SAAS;oBACT,SAAS;oBACT,MAAM,EAAE,QAAQ;oBAChB,oBAAoB,EAAE,iCAAiC;oBACvD,eAAe;iBAChB,CAAC,CAAC;YACL,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,4DAA4D;gBAC5D,IAAI,CAAC,YAAY,EAAE,CAAC,KAAc,CAAC,CAAC;YACtC,CAAC;YACD,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;QAClC,CAAC;QAED,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,eAAe,EAAE,CAAC;IAC5C,CAAC;IAEO,KAAK,CAAC,QAAQ,CACpB,UAA0B,EAC1B,KAAc,EACd,OAAyB,EACzB,aAA0B;QAE1B,IAAI,CAAC;YACH,IAAI,UAAU,CAAC,OAAO,CAAC,IAAI,KAAK,kBAAkB,CAAC,UAAU,EAAE,CAAC;gBAC9D,OAAO,MAAM,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;YACrD,CAAC;YACD,OAAO,MAAM,IAAI,CAAC,oBAAoB,CAAC,QAAQ,CAAC;gBAC9C,UAAU;gBACV,KAAK;gBACL,OAAO;gBACP,aAAa;aACd,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,qBAAqB;oBAC5C,OAAO,EAAG,KAAe,CAAC,OAAO;iBAClC;aACF,CAAC;QACJ,CAAC;IACH,CAAC;IAEO,eAAe,CAAC,MAAkB,EAAE,UAA0B;QACpE,MAAM,sBAAsB,GAAG,gBAAgB,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QAClE,IAAI,CAAC,sBAAsB,CAAC,OAAO,EAAE,CAAC;YACpC,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE;oBACL,IAAI,EAAE,gBAAgB,CAAC,cAAc;oBACrC,OAAO,EAAE,sBAAsB,CAAC,KAAK,CAAC,OAAO;iBAC9C;aACF,CAAC;QACJ,CAAC;QAED,IAAI,UAAU,GAAG,sBAAsB,CAAC,IAAI,CAAC;QAE7C,IAAI,UAAU,CAAC,aAAa,IAAI,UAAU,CAAC,OAAO,EAAE,CAAC;YACnD,MAAM,UAAU,GAAG,UAAU,CAAC,aAAa,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YACvE,IAAI,CAAC,UAAU,CAAC,OAAO,EAAE,CAAC;gBACxB,UAAU,GAAG;oBACX,OAAO,EAAE,KAAK;oBACd,KAAK,EAAE;wBACL,IAAI,EAAE,gBAAgB,CAAC,cAAc;wBACrC,OAAO,EAAE,UAAU,CAAC,KAAK,CAAC,OAAO;qBAClC;iBACF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,UAAU,CAAC;IACpB,CAAC;IAEO,KAAK,CAAC,iBAAiB,CAAC,MAM/B;QACC,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC9B,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC;YACnC,cAAc,EAAE,CAAC;YACjB,IAAI,EAAE,gBAAgB,CAAC,kBAAkB;YACzC,UAAU,EAAE,MAAM,CAAC,SAAS;YAC5B,SAAS,EAAE,UAAU,CAAC,WAAW,EAAE;YACnC,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,WAAW,EAAE,UAAU,CAAC,OAAO,EAAE,GAAG,MAAM,CAAC,SAAS;YACpD,sBAAsB,EAAE,MAAM,CAAC,oBAAoB;YACnD,gBAAgB,EAAE,MAAM,CAAC,eAAe;YACxC,iBAAiB,EAAE,EAAE;SACtB,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,MAKzB;QACC,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,EAAE,eAAe,EAAE,GAAG,MAAM,CAAC;QAEjE,MAAM,SAAS,GACb,MAAM,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAC5F,MAAM,UAAU,GAAG,SAAS,EAAE,QAAQ,CAAC;QACvC,MAAM,eAAe,GAAG,SAAS,EAAE,OAAO,CAAC;QAC3C,MAAM,MAAM,GAAG,MAAM,CAAC,OAAO;YAC3B,CAAC,CAAC,SAAS;YACX,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,KAAK,gBAAgB,CAAC,YAAY;gBACpD,CAAC,CAAC,QAAQ;gBACV,CAAC,CAAC,SAAS,CAAC;QAEhB,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC9B,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC;YACnC,cAAc,EAAE,CAAC;YACjB,IAAI,EAAE,gBAAgB,CAAC,kBAAkB;YACzC,UAAU,EAAE,SAAS;YACrB,SAAS,EAAE,UAAU,CAAC,WAAW,EAAE;YACnC,MAAM;YACN,WAAW,EAAE,UAAU,CAAC,OAAO,EAAE,GAAG,SAAS;YAC7C,WAAW,EAAE,UAAU;YACvB,UAAU,EAAE,eAAe;YAC3B,sBAAsB,EACpB,MAAM,KAAK,SAAS;gBAClB,CAAC,CAAC,2CAA2C;gBAC7C,CAAC,CAAC,oCAAoC;YAC1C,gBAAgB,EAAE,eAAe;YACjC,iBAAiB,EACf,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,iBAAiB,CAAC;gBACjD,MAAM,CAAC,QAAQ,EAAE,iBAAiB,CAAC,KAAK,CAAC,CAAC,QAAQ,EAAE,EAAE,CAAC,OAAO,QAAQ,KAAK,QAAQ,CAAC;gBAClF,CAAC,CAAE,MAAM,CAAC,QAAQ,CAAC,iBAA8B;gBACjD,CAAC,CAAC,EAAE;SACT,CAAC,CAAC;IACL,CAAC;CACF"}
package/dist/tool-host/tool-registry.d.ts ADDED
@@ -0,0 +1,9 @@
1
+ import { type ToolCapability } from '../kernel.schemas.js';
2
+ export declare class ToolRegistry {
3
+ private readonly capabilities;
4
+ register(capability: unknown): ToolCapability;
5
+ lookup(name: string): ToolCapability | null;
6
+ list(): ToolCapability[];
7
+ validate(capability: unknown): ToolCapability;
8
+ }
9
+ //# sourceMappingURL=tool-registry.d.ts.map
package/dist/tool-host/tool-registry.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"tool-registry.d.ts","sourceRoot":"","sources":["../../src/tool-host/tool-registry.ts"],"names":[],"mappings":"AAGA,OAAO,EAAwB,KAAK,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAEjF,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAqC;IAElE,QAAQ,CAAC,UAAU,EAAE,OAAO,GAAG,cAAc;IAS7C,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,cAAc,GAAG,IAAI;IAI3C,IAAI,IAAI,cAAc,EAAE;IAIxB,QAAQ,CAAC,UAAU,EAAE,OAAO,GAAG,cAAc;CAO9C"}
package/dist/tool-host/tool-registry.js ADDED
@@ -0,0 +1,28 @@
1
+ // Copyright (c) 2026 Hellmai Ltd
2
+ // SPDX-License-Identifier: Apache-2.0
3
+ import { ToolCapabilitySchema } from '../kernel.schemas.js';
4
+ export class ToolRegistry {
5
+ capabilities = new Map();
6
+ register(capability) {
7
+ const validated = this.validate(capability);
8
+ if (this.capabilities.has(validated.name)) {
9
+ throw new Error(`Tool "${validated.name}" is already registered`);
10
+ }
11
+ this.capabilities.set(validated.name, validated);
12
+ return validated;
13
+ }
14
+ lookup(name) {
15
+ return this.capabilities.get(name) ?? null;
16
+ }
17
+ list() {
18
+ return [...this.capabilities.values()];
19
+ }
20
+ validate(capability) {
21
+ const parsed = ToolCapabilitySchema.safeParse(capability);
22
+ if (!parsed.success) {
23
+ throw new Error(`ToolCapability validation failed: ${parsed.error.message}`);
24
+ }
25
+ return parsed.data;
26
+ }
27
+ }
28
+ //# sourceMappingURL=tool-registry.js.map
package/dist/tool-host/tool-registry.js.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"tool-registry.js","sourceRoot":"","sources":["../../src/tool-host/tool-registry.ts"],"names":[],"mappings":"AAAA,iCAAiC;AACjC,sCAAsC;AAEtC,OAAO,EAAE,oBAAoB,EAAuB,MAAM,sBAAsB,CAAC;AAEjF,MAAM,OAAO,YAAY;IACN,YAAY,GAAG,IAAI,GAAG,EAA0B,CAAC;IAElE,QAAQ,CAAC,UAAmB;QAC1B,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;QAC5C,IAAI,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,KAAK,CAAC,SAAS,SAAS,CAAC,IAAI,yBAAyB,CAAC,CAAC;QACpE,CAAC;QACD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;QACjD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,CAAC,IAAY;QACjB,OAAO,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC;IAC7C,CAAC;IAED,IAAI;QACF,OAAO,CAAC,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;IACzC,CAAC;IAED,QAAQ,CAAC,UAAmB;QAC1B,MAAM,MAAM,GAAG,oBAAoB,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QAC1D,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,IAAI,KAAK,CAAC,qCAAqC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QAC/E,CAAC;QACD,OAAO,MAAM,CAAC,IAAI,CAAC;IACrB,CAAC;CACF"}
package/package.json ADDED
@@ -0,0 +1,71 @@
1
+ {
2
+ "name": "@lumenflow/kernel",
3
+ "version": "3.0.0",
4
+ "description": "Domain-agnostic runtime primitives and contracts for LumenFlow",
5
+ "keywords": [
6
+ "lumenflow",
7
+ "kernel",
8
+ "runtime",
9
+ "schemas"
10
+ ],
11
+ "homepage": "https://github.com/hellmai/lumenflow",
12
+ "repository": {
13
+ "type": "git",
14
+ "url": "https://github.com/hellmai/lumenflow.git",
15
+ "directory": "packages/@lumenflow/kernel"
16
+ },
17
+ "license": "Apache-2.0",
18
+ "author": {
19
+ "name": "HellmAI",
20
+ "url": "https://hellm.ai"
21
+ },
22
+ "type": "module",
23
+ "exports": {
24
+ ".": "./dist/index.js",
25
+ "./event-kinds": "./dist/event-kinds.js",
26
+ "./schemas": "./dist/kernel.schemas.js",
27
+ "./canonical-json": "./dist/canonical-json.js",
28
+ "./event-store": "./dist/event-store/index.js",
29
+ "./evidence": "./dist/evidence/index.js",
30
+ "./pack": "./dist/pack/index.js",
31
+ "./policy": "./dist/policy/index.js",
32
+ "./runtime": "./dist/runtime/index.js",
33
+ "./sandbox": "./dist/sandbox/index.js",
34
+ "./shared-constants": "./dist/shared-constants.js",
35
+ "./state-machine": "./dist/state-machine/index.js",
36
+ "./tool-host": "./dist/tool-host/index.js"
37
+ },
38
+ "main": "./dist/index.js",
39
+ "types": "./dist/index.d.ts",
40
+ "files": [
41
+ "dist",
42
+ "LICENSE.md",
43
+ "README.md"
44
+ ],
45
+ "dependencies": {
46
+ "micromatch": "^4.0.8",
47
+ "yaml": "^2.8.2",
48
+ "zod": "^4.3.6"
49
+ },
50
+ "devDependencies": {
51
+ "@vitest/coverage-v8": "^4.0.18",
52
+ "fast-check": "^4.5.3",
53
+ "typescript": "^5.9.3",
54
+ "vitest": "^4.0.18"
55
+ },
56
+ "engines": {
57
+ "node": ">=22"
58
+ },
59
+ "publishConfig": {
60
+ "access": "public"
61
+ },
62
+ "scripts": {
63
+ "build": "tsc",
64
+ "build:dist": "tsc -p tsconfig.build.json",
65
+ "pack:dist": "pnpm pack",
66
+ "clean": "rm -rf dist *.tgz",
67
+ "test": "vitest run",
68
+ "lint": "eslint src --quiet --rule no-console:off --rule @typescript-eslint/no-unused-vars:off --rule sonarjs/concise-regex:off",
69
+ "typecheck": "tsc --noEmit"
70
+ }
71
+ }