@marktoflow/core 2.0.0-alpha.12

package/dist/sdk-registry.js

@@ -0,0 +1,328 @@
+/**
+ * SDK Registry for marktoflow v2.0
+ *
+ * Dynamically loads and manages SDK instances for workflow execution.
+ * Supports lazy loading and caching of SDK instances.
+ */
+import { McpLoader } from './mcp-loader.js';
+// ============================================================================
+// Default SDK Loader (dynamic import)
+// ============================================================================
+export const defaultSDKLoader = {
+    async load(packageName) {
+        try {
+            // Dynamic import of npm package
+            return await import(packageName);
+        }
+        catch (error) {
+            throw new Error(`Failed to load SDK '${packageName}'. ` +
+                `Make sure it's installed: npm install ${packageName}\n` +
+                `Original error: ${error}`);
+        }
+    },
+};
+// ============================================================================
+// SDK Package Name Mappings
+// ============================================================================
+/**
+ * Maps SDK names to actual npm package names.
+ * Used when the SDK name in workflows differs from the npm package name.
+ */
+export const packageNameMappings = {
+    'google-gmail': 'googleapis',
+    'google-sheets': 'googleapis',
+    'google-calendar': 'googleapis',
+    'google-drive': 'googleapis',
+    'google-docs': 'googleapis',
+};
+// ============================================================================
+// SDK Initializers for common services
+// ============================================================================
+export const defaultInitializers = {
+    '@slack/web-api': {
+        async initialize(module, config) {
+            const { WebClient } = module;
+            const token = config.auth?.['token'];
+            if (!token) {
+                throw new Error('Slack SDK requires auth.token');
+            }
+            return new WebClient(token);
+        },
+    },
+    '@octokit/rest': {
+        async initialize(module, config) {
+            const { Octokit } = module;
+            const token = config.auth?.['token'];
+            return new Octokit({ auth: token });
+        },
+    },
+    '@anthropic-ai/sdk': {
+        async initialize(module, config) {
+            const Anthropic = module
+                .default;
+            const apiKey = config.auth?.['api_key'];
+            if (!apiKey) {
+                throw new Error('Anthropic SDK requires auth.api_key');
+            }
+            return new Anthropic({ apiKey });
+        },
+    },
+    openai: {
+        async initialize(module, config) {
+            const OpenAI = module.default;
+            const apiKey = config.auth?.['api_key'];
+            if (!apiKey) {
+                throw new Error('OpenAI SDK requires auth.api_key');
+            }
+            return new OpenAI({ apiKey });
+        },
+    },
+    'jira.js': {
+        async initialize(module, config) {
+            const { Version2Client, Version3Client } = module;
+            const host = config.auth?.['host'];
+            const email = config.auth?.['email'];
+            const apiToken = config.auth?.['api_token'];
+            const apiVersion = config.auth?.['api_version'] || 'auto';
+            if (!host || !email || !apiToken) {
+                throw new Error('Jira SDK requires auth.host, auth.email, and auth.api_token');
+            }
+            // Auto-detect API version based on host
+            // Cloud (*.atlassian.net) uses v3, self-hosted uses v2
+            let useVersion3 = true;
+            if (apiVersion === 'auto') {
+                useVersion3 = host.includes('.atlassian.net');
+            }
+            else {
+                useVersion3 = apiVersion === '3' || apiVersion === 'v3';
+            }
+            const authConfig = {
+                host,
+                authentication: {
+                    basic: { email, apiToken },
+                },
+            };
+            return useVersion3 ? new Version3Client(authConfig) : new Version2Client(authConfig);
+        },
+    },
+};
+// ============================================================================
+// SDK Registry Implementation
+// ============================================================================
+export class SDKRegistry {
+    sdks = new Map();
+    loader;
+    initializers;
+    mcpLoader;
+    constructor(loader = defaultSDKLoader, initializers = defaultInitializers, mcpLoader) {
+        this.loader = loader;
+        this.initializers = new Map(Object.entries(initializers));
+        this.mcpLoader = mcpLoader || new McpLoader();
+    }
+    /**
+     * Register tool configurations from a workflow.
+     */
+    registerTools(tools) {
+        // Always register built-in tools (core and workflow) if not already present
+        const builtInTools = ['core', 'workflow'];
+        for (const toolName of builtInTools) {
+            if (!this.sdks.has(toolName)) {
+                this.sdks.set(toolName, {
+                    name: toolName,
+                    sdk: null,
+                    config: { sdk: toolName }, // Minimal config for built-in tools
+                });
+            }
+        }
+        // Register workflow-specific tools
+        for (const [name, config] of Object.entries(tools)) {
+            if (!this.sdks.has(name)) {
+                // Store config for lazy loading
+                this.sdks.set(name, {
+                    name,
+                    sdk: null,
+                    config,
+                });
+            }
+        }
+    }
+    /**
+     * Check if an SDK is registered.
+     */
+    has(name) {
+        return this.sdks.has(name);
+    }
+    /**
+     * Load and initialize an SDK.
+     */
+    async load(name) {
+        const instance = this.sdks.get(name);
+        if (!instance) {
+            throw new Error(`SDK '${name}' is not registered. Add it to workflow tools.`);
+        }
+        // Return cached SDK if already loaded
+        if (instance.sdk) {
+            return instance.sdk;
+        }
+        // Load the SDK module
+        // Check if there's a package name mapping (e.g., 'google-gmail' -> 'googleapis')
+        const packageName = packageNameMappings[instance.config.sdk] || instance.config.sdk;
+        let module;
+        try {
+            module = await this.loader.load(packageName);
+        }
+        catch (error) {
+            // If we have an initializer, ignore load error and pass null (e.g. for 'script' tool)
+            if (this.initializers.has(instance.config.sdk)) {
+                module = null;
+            }
+            else {
+                throw error;
+            }
+        }
+        // Initialize with config
+        const initializer = this.initializers.get(instance.config.sdk);
+        if (initializer) {
+            instance.sdk = await initializer.initialize(module, instance.config);
+        }
+        else {
+            // Check for MCP
+            if (this.isMcpModule(module)) {
+                try {
+                    const client = await this.mcpLoader.connectModule(module, instance.config);
+                    instance.sdk = this.createMcpProxy(client);
+                }
+                catch (error) {
+                    throw new Error(`Failed to connect to MCP module '${instance.config.sdk}': ${error}`);
+                }
+            }
+            else {
+                // No custom initializer - use generic initialization
+                instance.sdk = await this.genericInitialize(module, instance.config);
+            }
+        }
+        return instance.sdk;
+    }
+    isMcpModule(module) {
+        return typeof module.createMcpServer === 'function';
+    }
+    createMcpProxy(client) {
+        return new Proxy(client, {
+            get: (target, prop) => {
+                if (typeof prop === 'string') {
+                    // Avoid treating the proxy as a Thenable
+                    if (prop === 'then') {
+                        return undefined;
+                    }
+                    // If property is 'close', return the close method
+                    if (prop === 'close') {
+                        return target.close.bind(target);
+                    }
+                    // Otherwise, treat as tool name
+                    return async (args) => {
+                        const result = await client.callTool({
+                            name: prop,
+                            arguments: args,
+                        });
+                        // If tool call fails, it throws? No, Client.callTool throws on error.
+                        // Result content handling?
+                        // For now return result.
+                        return result;
+                    };
+                }
+                return Reflect.get(target, prop);
+            },
+        });
+    }
+    /**
+     * Generic SDK initialization for unknown packages.
+     */
+    async genericInitialize(module, config) {
+        // Try common patterns
+        const mod = module;
+        // Pattern 1: Default export is a class
+        if (typeof mod.default === 'function') {
+            const Constructor = mod.default;
+            return new Constructor(config.options || config.auth);
+        }
+        // Pattern 2: Named export 'Client'
+        if (typeof mod.Client === 'function') {
+            const Client = mod.Client;
+            return new Client(config.options || config.auth);
+        }
+        // Pattern 3: Return module as-is (for utility modules)
+        return module;
+    }
+    /**
+     * Register a custom initializer for an SDK.
+     */
+    registerInitializer(sdkName, initializer) {
+        this.initializers.set(sdkName, initializer);
+    }
+    /**
+     * Get all registered SDK names.
+     */
+    getRegisteredNames() {
+        return Array.from(this.sdks.keys());
+    }
+    /**
+     * Clear all cached SDK instances.
+     */
+    clear() {
+        this.sdks.clear();
+    }
+}
+/**
+ * Create a step executor that invokes SDK methods.
+ */
+export function createSDKStepExecutor() {
+    return async (step, executionContext, sdkRegistry) => {
+        // Sub-workflows are handled by the engine, not by this executor
+        if (step.workflow) {
+            throw new Error('Sub-workflow steps should be handled by the engine, not the step executor');
+        }
+        if (!step.action) {
+            throw new Error('Step must have either "action" or "workflow" field');
+        }
+        const parts = step.action.split('.');
+        if (parts.length < 2) {
+            throw new Error(`Invalid action format: ${step.action}. Expected: sdk.method or sdk.namespace.method`);
+        }
+        const sdkName = parts[0];
+        const methodPath = parts.slice(1);
+        // Load SDK
+        const sdk = await sdkRegistry.load(sdkName);
+        // Navigate to method
+        let current = sdk;
+        let parent = sdk;
+        for (const part of methodPath) {
+            if (current === null || current === undefined) {
+                throw new Error(`Cannot find ${part} in ${step.action}`);
+            }
+            parent = current;
+            current = current[part];
+        }
+        if (typeof current !== 'function') {
+            throw new Error(`${step.action} is not a function`);
+        }
+        // For script.execute, automatically inject workflow context variables
+        let inputs = step.inputs;
+        if (sdkName === 'script' && methodPath[0] === 'execute') {
+            const ctx = executionContext;
+            if (ctx && !inputs.context) {
+                // Inject workflow variables and inputs as context for the script
+                inputs = {
+                    ...inputs,
+                    context: {
+                        ...ctx.variables,
+                        inputs: ctx.inputs,
+                    },
+                };
+            }
+        }
+        // Call the method with correct 'this' context (parent object, not root SDK)
+        const method = current;
+        return method.call(parent, inputs);
+    };
+}
+//# sourceMappingURL=sdk-registry.js.map

package/dist/sdk-registry.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sdk-registry.js","sourceRoot":"","sources":["../src/sdk-registry.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAgC5C,+EAA+E;AAC/E,sCAAsC;AACtC,+EAA+E;AAE/E,MAAM,CAAC,MAAM,gBAAgB,GAAc;IACzC,KAAK,CAAC,IAAI,CAAC,WAAmB;QAC5B,IAAI,CAAC;YACH,gCAAgC;YAChC,OAAO,MAAM,MAAM,CAAC,WAAW,CAAC,CAAC;QACnC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CACb,uBAAuB,WAAW,KAAK;gBACrC,yCAAyC,WAAW,IAAI;gBACxD,mBAAmB,KAAK,EAAE,CAC7B,CAAC;QACJ,CAAC;IACH,CAAC;CACF,CAAC;AAEF,+EAA+E;AAC/E,4BAA4B;AAC5B,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAA2B;IACzD,cAAc,EAAE,YAAY;IAC5B,eAAe,EAAE,YAAY;IAC7B,iBAAiB,EAAE,YAAY;IAC/B,cAAc,EAAE,YAAY;IAC5B,aAAa,EAAE,YAAY;CAC5B,CAAC;AAEF,+EAA+E;AAC/E,uCAAuC;AACvC,+EAA+E;AAE/E,MAAM,CAAC,MAAM,mBAAmB,GAAmC;IACjE,gBAAgB,EAAE;QAChB,KAAK,CAAC,UAAU,CAAC,MAAe,EAAE,MAAkB;YAClD,MAAM,EAAE,SAAS,EAAE,GAAG,MAAuD,CAAC;YAC9E,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,OAAO,CAAW,CAAC;YAC/C,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;YACnD,CAAC;YACD,OAAO,IAAI,SAAS,CAAC,KAAK,CAAC,CAAC;QAC9B,CAAC;KACF;IAED,eAAe,EAAE;QACf,KAAK,CAAC,UAAU,CAAC,MAAe,EAAE,MAAkB;YAClD,MAAM,EAAE,OAAO,EAAE,GAAG,MAAiE,CAAC;YACtF,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,OAAO,CAAW,CAAC;YAC/C,OAAO,IAAI,OAAO,CAAC,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACtC,CAAC;KACF;IAED,mBAAmB,EAAE;QACnB,KAAK,CAAC,UAAU,CAAC,MAAe,EAAE,MAAkB;YAClD,MAAM,SAAS,GAAI,MAAoE;iBACpF,OAAO,CAAC;YACX,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,SAAS,CAAW,CAAC;YAClD,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CAAC,qCAAqC,CAAC,CAAC;YACzD,CAAC;YACD,OAAO,IAAI,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QACnC,CAAC;KACF;IAED,MAAM,EAAE;QACN,KAAK,CAAC,UAAU,CAAC,MAAe,EAAE,MAAkB;YAClD,MAAM,MAAM,GAAI,MAAoE,CAAC,OAAO,CAAC;YAC7F,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,SAAS,CAAW,CAAC;YAClD,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;YACtD,CAAC;YACD,OAAO,IAAI,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;QAChC,CAAC;KACF;IAED,SAAS,EAAE;QACT,KAAK,CAAC,UAAU,CAAC,MAAe,EAAE,MAAkB;YAClD,MAAM,EAAE,cAAc,EAAE,cAAc,EAAE,GAAG,MAS1C,CAAC;YACF,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,MAAM,CAAW,CAAC;YAC7C,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,OAAO,CAAW,CAAC;YAC/C,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,WAAW,CAAW,CAAC;YACtD,MAAM,UAAU,GAAI,MAAM,CAAC,IAAI,EAAE,CAAC,aAAa,CAAY,IAAI,MAAM,CAAC;YAEtE,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,6DAA6D,CAAC,CAAC;YACjF,CAAC;YAED,wCAAwC;YACxC,uDAAuD;YACvD,IAAI,WAAW,GAAG,IAAI,CAAC;YACvB,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;gBAC1B,WAAW,GAAG,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;YAChD,CAAC;iBAAM,CAAC;gBACN,WAAW,GAAG,UAAU,KAAK,GAAG,IAAI,UAAU,KAAK,IAAI,CAAC;YAC1D,CAAC;YAED,MAAM,UAAU,GAAG;gBACjB,IAAI;gBACJ,cAAc,EAAE;oBACd,KAAK,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE;iBAC3B;aACF,CAAC;YAEF,OAAO,WAAW,CAAC,CAAC,CAAC,IAAI,cAAc,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,IAAI,cAAc,CAAC,UAAU,CAAC,CAAC;QACvF,CAAC;KACF;CACF,CAAC;AAEF,+EAA+E;AAC/E,8BAA8B;AAC9B,+EAA+E;AAE/E,MAAM,OAAO,WAAW;IACd,IAAI,GAA6B,IAAI,GAAG,EAAE,CAAC;IAC3C,MAAM,CAAY;IAClB,YAAY,CAA8B;IAC1C,SAAS,CAAY;IAE7B,YACE,SAAoB,gBAAgB,EACpC,eAA+C,mBAAmB,EAClE,SAAqB;QAErB,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,YAAY,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC;QAC1D,IAAI,CAAC,SAAS,GAAG,SAAS,IAAI,IAAI,SAAS,EAAE,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,KAAiC;QAC7C,4EAA4E;QAC5E,MAAM,YAAY,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;QAC1C,KAAK,MAAM,QAAQ,IAAI,YAAY,EAAE,CAAC;YACpC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC7B,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE;oBACtB,IAAI,EAAE,QAAQ;oBACd,GAAG,EAAE,IAAI;oBACT,MAAM,EAAE,EAAE,GAAG,EAAE,QAAQ,EAAE,EAAE,oCAAoC;iBAChE,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,mCAAmC;QACnC,KAAK,MAAM,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACnD,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;gBACzB,gCAAgC;gBAChC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE;oBAClB,IAAI;oBACJ,GAAG,EAAE,IAAI;oBACT,MAAM;iBACP,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACH,GAAG,CAAC,IAAY;QACd,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC7B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CAAC,IAAY;QACrB,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACrC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,QAAQ,IAAI,gDAAgD,CAAC,CAAC;QAChF,CAAC;QAED,sCAAsC;QACtC,IAAI,QAAQ,CAAC,GAAG,EAAE,CAAC;YACjB,OAAO,QAAQ,CAAC,GAAG,CAAC;QACtB,CAAC;QAED,sBAAsB;QACtB,iFAAiF;QACjF,MAAM,WAAW,GAAG,mBAAmB,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC;QAEpF,IAAI,MAAe,CAAC;QACpB,IAAI,CAAC;YACH,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC/C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,sFAAsF;YACtF,IAAI,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC/C,MAAM,GAAG,IAAI,CAAC;YAChB,CAAC;iBAAM,CAAC;gBACN,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC;QAED,yBAAyB;QACzB,MAAM,WAAW,GAAG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC/D,IAAI,WAAW,EAAE,CAAC;YAChB,QAAQ,CAAC,GAAG,GAAG,MAAM,WAAW,CAAC,UAAU,CAAC,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;QACvE,CAAC;aAAM,CAAC;YACN,gBAAgB;YAChB,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC7B,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;oBAC3E,QAAQ,CAAC,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC;gBAC7C,CAAC;gBAAC,OAAO,KAAK,EAAE,CAAC;oBACf,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,MAAM,CAAC,GAAG,MAAM,KAAK,EAAE,CAAC,CAAC;gBACxF,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,qDAAqD;gBACrD,QAAQ,CAAC,GAAG,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YACvE,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC,GAAG,CAAC;IACtB,CAAC;IAEO,WAAW,CAAC,MAAe;QACjC,OAAO,OAAQ,MAAwC,CAAC,eAAe,KAAK,UAAU,CAAC;IACzF,CAAC;IAEO,cAAc,CAAC,MAAc;QACnC,OAAO,IAAI,KAAK,CAAC,MAAM,EAAE;YACvB,GAAG,EAAE,CAAC,MAAM,EAAE,IAAI,EAAE,EAAE;gBACpB,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;oBAC7B,yCAAyC;oBACzC,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;wBACpB,OAAO,SAAS,CAAC;oBACnB,CAAC;oBAED,kDAAkD;oBAClD,IAAI,IAAI,KAAK,OAAO,EAAE,CAAC;wBACrB,OAAO,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;oBACnC,CAAC;oBAED,gCAAgC;oBAChC,OAAO,KAAK,EAAE,IAA6B,EAAE,EAAE;wBAC7C,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC;4BACnC,IAAI,EAAE,IAAI;4BACV,SAAS,EAAE,IAAI;yBAChB,CAAC,CAAC;wBAEH,sEAAsE;wBACtE,2BAA2B;wBAC3B,yBAAyB;wBACzB,OAAO,MAAM,CAAC;oBAChB,CAAC,CAAC;gBACJ,CAAC;gBACD,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YACnC,CAAC;SACF,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,iBAAiB,CAAC,MAAe,EAAE,MAAkB;QACjE,sBAAsB;QACtB,MAAM,GAAG,GAAG,MAAiC,CAAC;QAE9C,uCAAuC;QACvC,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,UAAU,EAAE,CAAC;YACtC,MAAM,WAAW,GAAG,GAAG,CAAC,OAA6C,CAAC;YACtE,OAAO,IAAI,WAAW,CAAC,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC;QACxD,CAAC;QAED,mCAAmC;QACnC,IAAI,OAAO,GAAG,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;YACrC,MAAM,MAAM,GAAG,GAAG,CAAC,MAA4C,CAAC;YAChE,OAAO,IAAI,MAAM,CAAC,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,CAAC;QACnD,CAAC;QAED,uDAAuD;QACvD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,OAAe,EAAE,WAA2B;QAC9D,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IAC9C,CAAC;IAED;;OAEG;IACH,kBAAkB;QAChB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,KAAK;QACH,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;IACpB,CAAC;CACF;AAmBD;;GAEG;AACH,MAAM,UAAU,qBAAqB;IACnC,OAAO,KAAK,EACV,IAA6E,EAC7E,gBAAyB,EACzB,WAA4B,EACV,EAAE;QACpB,gEAAgE;QAChE,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAClB,MAAM,IAAI,KAAK,CAAC,2EAA2E,CAAC,CAAC;QAC/F,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QACrC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CACb,0BAA0B,IAAI,CAAC,MAAM,gDAAgD,CACtF,CAAC;QACJ,CAAC;QAED,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAElC,WAAW;QACX,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAE5C,qBAAqB;QACrB,IAAI,OAAO,GAAY,GAAG,CAAC;QAC3B,IAAI,MAAM,GAAY,GAAG,CAAC;QAC1B,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;YAC9B,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;gBAC9C,MAAM,IAAI,KAAK,CAAC,eAAe,IAAI,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;YAC3D,CAAC;YACD,MAAM,GAAG,OAAO,CAAC;YACjB,OAAO,GAAI,OAAmC,CAAC,IAAI,CAAC,CAAC;QACvD,CAAC;QAED,IAAI,OAAO,OAAO,KAAK,UAAU,EAAE,CAAC;YAClC,MAAM,IAAI,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,oBAAoB,CAAC,CAAC;QACtD,CAAC;QAED,sEAAsE;QACtE,IAAI,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC;QACzB,IAAI,OAAO,KAAK,QAAQ,IAAI,UAAU,CAAC,CAAC,CAAC,KAAK,SAAS,EAAE,CAAC;YACxD,MAAM,GAAG,GAAG,gBAAoD,CAAC;YACjE,IAAI,GAAG,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;gBAC3B,iEAAiE;gBACjE,MAAM,GAAG;oBACP,GAAG,MAAM;oBACT,OAAO,EAAE;wBACP,GAAG,GAAG,CAAC,SAAS;wBAChB,MAAM,EAAE,GAAG,CAAC,MAAM;qBACnB;iBACF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,4EAA4E;QAC5E,MAAM,MAAM,GAAG,OAAgD,CAAC;QAChE,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACrC,CAAC,CAAC;AACJ,CAAC"}

package/dist/security.d.ts

@@ -0,0 +1,155 @@
+/**
+ * Security module for marktoflow.
+ *
+ * Provides RBAC (Role-Based Access Control), approval workflows, and audit logging.
+ */
+export declare enum Permission {
+    WORKFLOW_READ = "workflow:read",
+    WORKFLOW_EXECUTE = "workflow:execute",
+    WORKFLOW_CREATE = "workflow:create",
+    WORKFLOW_EDIT = "workflow:edit",
+    WORKFLOW_DELETE = "workflow:delete",
+    TOOL_USE = "tool:use",
+    TOOL_CONFIGURE = "tool:configure",
+    USER_MANAGE = "user:manage",
+    ROLE_MANAGE = "role:manage",
+    CONFIG_MANAGE = "config:manage",
+    AUDIT_READ = "audit:read",
+    APPROVAL_REQUEST = "approval:request",
+    APPROVAL_APPROVE = "approval:approve",
+    APPROVAL_REJECT = "approval:reject"
+}
+export interface Role {
+    name: string;
+    permissions: Set<Permission>;
+    description?: string;
+    inheritsFrom?: string[];
+}
+export interface User {
+    id: string;
+    username: string;
+    email?: string;
+    roles: string[];
+    isActive: boolean;
+    metadata?: Record<string, unknown>;
+    createdAt: Date;
+    updatedAt: Date;
+}
+export declare const PREDEFINED_ROLES: Record<string, Role>;
+export declare class RBACManager {
+    private roles;
+    private users;
+    constructor(customRoles?: Role[]);
+    addRole(role: Role): void;
+    getRole(name: string): Role | undefined;
+    addUser(user: User): void;
+    getUser(userId: string): User | undefined;
+    getUserPermissions(userId: string): Set<Permission>;
+    checkPermission(userId: string, permission: Permission): boolean;
+}
+export declare enum ApprovalStatus {
+    PENDING = "pending",
+    APPROVED = "approved",
+    REJECTED = "rejected",
+    EXPIRED = "expired",
+    CANCELLED = "cancelled"
+}
+export interface ApprovalRequest {
+    id: string;
+    workflowId: string;
+    requesterId: string;
+    title: string;
+    description?: string | undefined;
+    status: ApprovalStatus;
+    requiredApprovers: string[];
+    minApprovals: number;
+    approvals: Array<{
+        approverId: string;
+        comment?: string | undefined;
+        timestamp: Date;
+    }>;
+    rejections: Array<{
+        rejectorId: string;
+        reason?: string | undefined;
+        timestamp: Date;
+    }>;
+    metadata: Record<string, unknown>;
+    createdAt: Date;
+    expiresAt?: Date | undefined;
+    resolvedAt?: Date | undefined;
+}
+export interface ApprovalHandler {
+    onApprovalRequested(request: ApprovalRequest): Promise<void>;
+    onApprovalApproved(request: ApprovalRequest, approverId: string): Promise<void>;
+    onApprovalRejected(request: ApprovalRequest, rejectorId: string): Promise<void>;
+}
+export declare class ApprovalManager {
+    private requests;
+    private handlers;
+    private rbac?;
+    constructor(rbac?: RBACManager | undefined);
+    addHandler(handler: ApprovalHandler): void;
+    createRequest(params: {
+        requesterId: string;
+        workflowId: string;
+        title: string;
+        description?: string;
+        requiredApprovers?: string[];
+        minApprovals?: number;
+        expiresInHours?: number;
+        metadata?: Record<string, unknown>;
+    }): Promise<ApprovalRequest>;
+    getRequest(requestId: string): ApprovalRequest | undefined;
+    approve(requestId: string, approverId: string, comment?: string): Promise<ApprovalRequest>;
+    reject(requestId: string, rejectorId: string, reason?: string): Promise<ApprovalRequest>;
+}
+export declare enum AuditEventType {
+    LOGIN = "auth.login",
+    WORKFLOW_EXECUTED = "workflow.executed",
+    WORKFLOW_COMPLETED = "workflow.completed",
+    WORKFLOW_FAILED = "workflow.failed",
+    PERMISSION_DENIED = "security.permission_denied"
+}
+export interface AuditEvent {
+    id: string;
+    eventType: AuditEventType | string;
+    userId?: string;
+    resourceType?: string;
+    resourceId?: string;
+    action?: string;
+    details: Record<string, unknown>;
+    ipAddress?: string;
+    userAgent?: string;
+    timestamp: Date;
+    success: boolean;
+    errorMessage?: string;
+}
+export interface AuditStore {
+    save(event: AuditEvent): Promise<void>;
+    query(filters: {
+        eventType?: string;
+        userId?: string;
+        startTime?: Date;
+        endTime?: Date;
+        limit?: number;
+        offset?: number;
+    }): Promise<AuditEvent[]>;
+}
+export declare class InMemoryAuditStore implements AuditStore {
+    private events;
+    save(event: AuditEvent): Promise<void>;
+    query(filters: any): Promise<AuditEvent[]>;
+}
+export declare class SQLiteAuditStore implements AuditStore {
+    private db;
+    constructor(dbPath?: string);
+    private init;
+    save(event: AuditEvent): Promise<void>;
+    query(filters: any): Promise<AuditEvent[]>;
+}
+export declare class AuditLogger {
+    private store;
+    constructor(store?: AuditStore);
+    log(event: Omit<AuditEvent, 'id' | 'timestamp'>): Promise<string>;
+}
+//# sourceMappingURL=security.d.ts.map

package/dist/security.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAUH,oBAAY,UAAU;IAEpB,aAAa,kBAAkB;IAC/B,gBAAgB,qBAAqB;IACrC,eAAe,oBAAoB;IACnC,aAAa,kBAAkB;IAC/B,eAAe,oBAAoB;IAGnC,QAAQ,aAAa;IACrB,cAAc,mBAAmB;IAGjC,WAAW,gBAAgB;IAC3B,WAAW,gBAAgB;IAC3B,aAAa,kBAAkB;IAC/B,UAAU,eAAe;IAGzB,gBAAgB,qBAAqB;IACrC,gBAAgB,qBAAqB;IACrC,eAAe,oBAAoB;CACpC;AAED,MAAM,WAAW,IAAI;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,GAAG,CAAC,UAAU,CAAC,CAAC;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;CACzB;AAED,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,EAAE,IAAI,CAAC;CACjB;AAED,eAAO,MAAM,gBAAgB,EAAE,MAAM,CAAC,MAAM,EAAE,IAAI,CA+CjD,CAAC;AAEF,qBAAa,WAAW;IACtB,OAAO,CAAC,KAAK,CAAgC;IAC7C,OAAO,CAAC,KAAK,CAAgC;gBAEjC,WAAW,CAAC,EAAE,IAAI,EAAE;IAahC,OAAO,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI;IAIzB,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS;IAIvC,OAAO,CAAC,IAAI,EAAE,IAAI,GAAG,IAAI;IAIzB,OAAO,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS;IAIzC,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,GAAG,CAAC,UAAU,CAAC;IAiCnD,eAAe,CAAC,MAAM,EAAE,MAAM,EAAE,UAAU,EAAE,UAAU,GAAG,OAAO;CAIjE;AAMD,oBAAY,cAAc;IACxB,OAAO,YAAY;IACnB,QAAQ,aAAa;IACrB,QAAQ,aAAa;IACrB,OAAO,YAAY;IACnB,SAAS,cAAc;CACxB;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC,MAAM,EAAE,cAAc,CAAC;IACvB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,KAAK,CAAC;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;QAAC,SAAS,EAAE,IAAI,CAAA;KAAE,CAAC,CAAC;IACxF,UAAU,EAAE,KAAK,CAAC;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;QAAC,SAAS,EAAE,IAAI,CAAA;KAAE,CAAC,CAAC;IACxF,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,CAAC,EAAE,IAAI,GAAG,SAAS,CAAC;IAC7B,UAAU,CAAC,EAAE,IAAI,GAAG,SAAS,CAAC;CAC/B;AAED,MAAM,WAAW,eAAe;IAC9B,mBAAmB,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7D,kBAAkB,CAAC,OAAO,EAAE,eAAe,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAChF,kBAAkB,CAAC,OAAO,EAAE,eAAe,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CACjF;AAED,qBAAa,eAAe;IAC1B,OAAO,CAAC,QAAQ,CAA2C;IAC3D,OAAO,CAAC,QAAQ,CAAyB;IACzC,OAAO,CAAC,IAAI,CAAC,CAA0B;gBAE3B,IAAI,CAAC,EAAE,WAAW,GAAG,SAAS;IAI1C,UAAU,CAAC,OAAO,EAAE,eAAe,GAAG,IAAI;IAIpC,aAAa,CAAC,MAAM,EAAE;QAC1B,WAAW,EAAE,MAAM,CAAC;QACpB,UAAU,EAAE,MAAM,CAAC;QACnB,KAAK,EAAE,MAAM,CAAC;QACd,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,iBAAiB,CAAC,EAAE,MAAM,EAAE,CAAC;QAC7B,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;KACpC,GAAG,OAAO,CAAC,eAAe,CAAC;IAoC5B,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,eAAe,GAAG,SAAS;IAQpD,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAmC1F,MAAM,CAAC,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CA4B/F;AAMD,oBAAY,cAAc;IACxB,KAAK,eAAe;IACpB,iBAAiB,sBAAsB;IACvC,kBAAkB,uBAAuB;IACzC,eAAe,oBAAoB;IACnC,iBAAiB,+BAA+B;CACjD;AAED,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,cAAc,GAAG,MAAM,CAAC;IACnC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,IAAI,CAAC;IAChB,OAAO,EAAE,OAAO,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,CAAC,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACvC,KAAK,CAAC,OAAO,EAAE;QACb,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,SAAS,CAAC,EAAE,IAAI,CAAC;QACjB,OAAO,CAAC,EAAE,IAAI,CAAC;QACf,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;CAC3B;AAED,qBAAa,kBAAmB,YAAW,UAAU;IACnD,OAAO,CAAC,MAAM,CAAoB;IAE5B,IAAI,CAAC,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,IAAI,CAAC;IAItC,KAAK,CAAC,OAAO,EAAE,GAAG,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;CAOjD;AAED,qBAAa,gBAAiB,YAAW,UAAU;IACjD,OAAO,CAAC,EAAE,CAAoB;gBAElB,MAAM,GAAE,MAAqC;IASzD,OAAO,CAAC,IAAI;IAoBN,IAAI,CAAC,KAAK,EAAE,UAAU,GAAG,OAAO,CAAC,IAAI,CAAC;IAwBtC,KAAK,CAAC,OAAO,EAAE,GAAG,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;CAgCjD;AAED,qBAAa,WAAW;IACtB,OAAO,CAAC,KAAK,CAAa;gBAEd,KAAK,CAAC,EAAE,UAAU;IAIxB,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,EAAE,IAAI,GAAG,WAAW,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC;CASxE"}