npm - @namzu/sdk - Versions diffs - 0.6.0 → 1.0.0 - Mend

@namzu/sdk 0.6.0 → 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (302) hide show

package/CHANGELOG.md +362 -0
package/dist/advisory/executor.d.ts.map +1 -1
package/dist/advisory/executor.js +9 -2
package/dist/advisory/executor.js.map +1 -1
package/dist/advisory/executor.test.d.ts +2 -1
package/dist/advisory/executor.test.d.ts.map +1 -1
package/dist/advisory/executor.test.js +7 -4
package/dist/advisory/executor.test.js.map +1 -1
package/dist/agents/ReactiveAgent.d.ts.map +1 -1
package/dist/agents/ReactiveAgent.js +2 -0
package/dist/agents/ReactiveAgent.js.map +1 -1
package/dist/agents/SupervisorAgent.d.ts.map +1 -1
package/dist/agents/SupervisorAgent.js +7 -0
package/dist/agents/SupervisorAgent.js.map +1 -1
package/dist/bridge/sse/mapper.test.js +2 -2
package/dist/constants/compaction/index.d.ts.map +1 -1
package/dist/constants/compaction/index.js +8 -3
package/dist/constants/compaction/index.js.map +1 -1
package/dist/constants/sandbox/index.d.ts +21 -0
package/dist/constants/sandbox/index.d.ts.map +1 -1
package/dist/constants/sandbox/index.js +30 -0
package/dist/constants/sandbox/index.js.map +1 -1
package/dist/constants/tools/index.d.ts.map +1 -1
package/dist/constants/tools/index.js +33 -2
package/dist/constants/tools/index.js.map +1 -1
package/dist/manager/run/persistence.d.ts.map +1 -1
package/dist/manager/run/persistence.js +35 -5
package/dist/manager/run/persistence.js.map +1 -1
package/dist/persona/assembler.d.ts +1 -0
package/dist/persona/assembler.d.ts.map +1 -1
package/dist/persona/assembler.js +28 -6
package/dist/persona/assembler.js.map +1 -1
package/dist/provider/collect.test.js +2 -2
package/dist/public-runtime.d.ts +5 -4
package/dist/public-runtime.d.ts.map +1 -1
package/dist/public-runtime.js +5 -4
package/dist/public-runtime.js.map +1 -1
package/dist/public-tools.d.ts +2 -0
package/dist/public-tools.d.ts.map +1 -1
package/dist/public-tools.js +2 -0
package/dist/public-tools.js.map +1 -1
package/dist/public-types.d.ts +3 -0
package/dist/public-types.d.ts.map +1 -1
package/dist/registry/index.d.ts +2 -0
package/dist/registry/index.d.ts.map +1 -1
package/dist/registry/index.js +1 -0
package/dist/registry/index.js.map +1 -1
package/dist/registry/tool/execute.d.ts.map +1 -1
package/dist/registry/tool/execute.js +87 -5
package/dist/registry/tool/execute.js.map +1 -1
package/dist/registry/tool/execute.test.d.ts +4 -2
package/dist/registry/tool/execute.test.d.ts.map +1 -1
package/dist/registry/tool/execute.test.js +112 -3
package/dist/registry/tool/execute.test.js.map +1 -1
package/dist/registry/toolset/catalog.d.ts +42 -0
package/dist/registry/toolset/catalog.d.ts.map +1 -0
package/dist/registry/toolset/catalog.js +217 -0
package/dist/registry/toolset/catalog.js.map +1 -0
package/dist/registry/toolset/catalog.test.d.ts +2 -0
package/dist/registry/toolset/catalog.test.d.ts.map +1 -0
package/dist/registry/toolset/catalog.test.js +85 -0
package/dist/registry/toolset/catalog.test.js.map +1 -0
package/dist/runtime/query/__tests__/deferred-tools.test.d.ts +2 -0
package/dist/runtime/query/__tests__/deferred-tools.test.d.ts.map +1 -0
package/dist/runtime/query/__tests__/deferred-tools.test.js +147 -0
package/dist/runtime/query/__tests__/deferred-tools.test.js.map +1 -0
package/dist/runtime/query/__tests__/executor-concurrency.test.d.ts +2 -0
package/dist/runtime/query/__tests__/executor-concurrency.test.d.ts.map +1 -0
package/dist/runtime/query/__tests__/executor-concurrency.test.js +98 -0
package/dist/runtime/query/__tests__/executor-concurrency.test.js.map +1 -0
package/dist/runtime/query/__tests__/executor-plugin-hooks.test.js +38 -3
package/dist/runtime/query/__tests__/executor-plugin-hooks.test.js.map +1 -1
package/dist/runtime/query/__tests__/prompt.test.js +47 -2
package/dist/runtime/query/__tests__/prompt.test.js.map +1 -1
package/dist/runtime/query/__tests__/stream-recovery.test.d.ts +2 -0
package/dist/runtime/query/__tests__/stream-recovery.test.d.ts.map +1 -0
package/dist/runtime/query/__tests__/stream-recovery.test.js +126 -0
package/dist/runtime/query/__tests__/stream-recovery.test.js.map +1 -0
package/dist/runtime/query/continuation.d.ts +16 -0
package/dist/runtime/query/continuation.d.ts.map +1 -0
package/dist/runtime/query/continuation.js +16 -0
package/dist/runtime/query/continuation.js.map +1 -0
package/dist/runtime/query/executor.d.ts +3 -0
package/dist/runtime/query/executor.d.ts.map +1 -1
package/dist/runtime/query/executor.js +71 -3
package/dist/runtime/query/executor.js.map +1 -1
package/dist/runtime/query/index.d.ts.map +1 -1
package/dist/runtime/query/index.js +19 -3
package/dist/runtime/query/index.js.map +1 -1
package/dist/runtime/query/iteration/index.d.ts +22 -0
package/dist/runtime/query/iteration/index.d.ts.map +1 -1
package/dist/runtime/query/iteration/index.js +227 -60
package/dist/runtime/query/iteration/index.js.map +1 -1
package/dist/runtime/query/iteration/phases/context.d.ts +10 -0
package/dist/runtime/query/iteration/phases/context.d.ts.map +1 -1
package/dist/runtime/query/iteration/phases/context.js.map +1 -1
package/dist/runtime/query/prompt.d.ts.map +1 -1
package/dist/runtime/query/prompt.js +21 -1
package/dist/runtime/query/prompt.js.map +1 -1
package/dist/runtime/query/tooling.d.ts +1 -0
package/dist/runtime/query/tooling.d.ts.map +1 -1
package/dist/runtime/query/tooling.js +1 -0
package/dist/runtime/query/tooling.js.map +1 -1
package/dist/sandbox/provider/local.d.ts.map +1 -1
package/dist/sandbox/provider/local.js +32 -1
package/dist/sandbox/provider/local.js.map +1 -1
package/dist/session/workspace/__tests__/shared-run.test.d.ts +2 -0
package/dist/session/workspace/__tests__/shared-run.test.d.ts.map +1 -0
package/dist/session/workspace/__tests__/shared-run.test.js +147 -0
package/dist/session/workspace/__tests__/shared-run.test.js.map +1 -0
package/dist/session/workspace/index.d.ts +2 -0
package/dist/session/workspace/index.d.ts.map +1 -1
package/dist/session/workspace/index.js +1 -0
package/dist/session/workspace/index.js.map +1 -1
package/dist/session/workspace/shared-run.d.ts +81 -0
package/dist/session/workspace/shared-run.d.ts.map +1 -0
package/dist/session/workspace/shared-run.js +251 -0
package/dist/session/workspace/shared-run.js.map +1 -0
package/dist/skills/loader.d.ts.map +1 -1
package/dist/skills/loader.js +36 -6
package/dist/skills/loader.js.map +1 -1
package/dist/skills/loader.test.d.ts +2 -0
package/dist/skills/loader.test.d.ts.map +1 -0
package/dist/skills/loader.test.js +65 -0
package/dist/skills/loader.test.js.map +1 -0
package/dist/streaming/coalesce.test.js +1 -1
package/dist/tools/builtins/__tests__/edit.test.d.ts +2 -0
package/dist/tools/builtins/__tests__/edit.test.d.ts.map +1 -0
package/dist/tools/builtins/__tests__/edit.test.js +38 -0
package/dist/tools/builtins/__tests__/edit.test.js.map +1 -0
package/dist/tools/builtins/__tests__/payload-budget.test.d.ts +2 -0
package/dist/tools/builtins/__tests__/payload-budget.test.d.ts.map +1 -0
package/dist/tools/builtins/__tests__/payload-budget.test.js +22 -0
package/dist/tools/builtins/__tests__/payload-budget.test.js.map +1 -0
package/dist/tools/builtins/__tests__/read-file.test.d.ts +2 -0
package/dist/tools/builtins/__tests__/read-file.test.d.ts.map +1 -0
package/dist/tools/builtins/__tests__/read-file.test.js +24 -0
package/dist/tools/builtins/__tests__/read-file.test.js.map +1 -0
package/dist/tools/builtins/__tests__/verify-outputs.test.d.ts +2 -0
package/dist/tools/builtins/__tests__/verify-outputs.test.d.ts.map +1 -0
package/dist/tools/builtins/__tests__/verify-outputs.test.js +52 -0
package/dist/tools/builtins/__tests__/verify-outputs.test.js.map +1 -0
package/dist/tools/builtins/__tests__/write-file.test.d.ts +2 -0
package/dist/tools/builtins/__tests__/write-file.test.d.ts.map +1 -0
package/dist/tools/builtins/__tests__/write-file.test.js +74 -0
package/dist/tools/builtins/__tests__/write-file.test.js.map +1 -0
package/dist/tools/builtins/bash.d.ts.map +1 -1
package/dist/tools/builtins/bash.js +40 -7
package/dist/tools/builtins/bash.js.map +1 -1
package/dist/tools/builtins/edit.d.ts +5 -2
package/dist/tools/builtins/edit.d.ts.map +1 -1
package/dist/tools/builtins/edit.js +114 -18
package/dist/tools/builtins/edit.js.map +1 -1
package/dist/tools/builtins/index.d.ts +1 -0
package/dist/tools/builtins/index.d.ts.map +1 -1
package/dist/tools/builtins/index.js +13 -13
package/dist/tools/builtins/index.js.map +1 -1
package/dist/tools/builtins/read-file.d.ts +1 -0
package/dist/tools/builtins/read-file.d.ts.map +1 -1
package/dist/tools/builtins/read-file.js +23 -8
package/dist/tools/builtins/read-file.js.map +1 -1
package/dist/tools/builtins/search-tools.d.ts.map +1 -1
package/dist/tools/builtins/search-tools.js +4 -1
package/dist/tools/builtins/search-tools.js.map +1 -1
package/dist/tools/builtins/verify-outputs.d.ts +5 -0
package/dist/tools/builtins/verify-outputs.d.ts.map +1 -0
package/dist/tools/builtins/verify-outputs.js +103 -0
package/dist/tools/builtins/verify-outputs.js.map +1 -0
package/dist/tools/builtins/write-file.d.ts +3 -2
package/dist/tools/builtins/write-file.d.ts.map +1 -1
package/dist/tools/builtins/write-file.js +72 -12
package/dist/tools/builtins/write-file.js.map +1 -1
package/dist/tools/coordinator/__tests__/agent.test.d.ts +15 -0
package/dist/tools/coordinator/__tests__/agent.test.d.ts.map +1 -0
package/dist/tools/coordinator/__tests__/agent.test.js +142 -0
package/dist/tools/coordinator/__tests__/agent.test.js.map +1 -0
package/dist/tools/coordinator/__tests__/task-list.test.d.ts +13 -0
package/dist/tools/coordinator/__tests__/task-list.test.d.ts.map +1 -0
package/dist/tools/coordinator/__tests__/task-list.test.js +162 -0
package/dist/tools/coordinator/__tests__/task-list.test.js.map +1 -0
package/dist/tools/coordinator/agent.d.ts +34 -0
package/dist/tools/coordinator/agent.d.ts.map +1 -0
package/dist/tools/coordinator/agent.js +107 -0
package/dist/tools/coordinator/agent.js.map +1 -0
package/dist/tools/coordinator/index.d.ts +7 -0
package/dist/tools/coordinator/index.d.ts.map +1 -1
package/dist/tools/coordinator/index.js +111 -21
package/dist/tools/coordinator/index.js.map +1 -1
package/dist/types/agent/base.d.ts +8 -0
package/dist/types/agent/base.d.ts.map +1 -1
package/dist/types/agent/reactive.d.ts +23 -0
package/dist/types/agent/reactive.d.ts.map +1 -1
package/dist/types/agent/supervisor.d.ts +14 -0
package/dist/types/agent/supervisor.d.ts.map +1 -1
package/dist/types/message/index.d.ts +22 -1
package/dist/types/message/index.d.ts.map +1 -1
package/dist/types/message/index.js +7 -2
package/dist/types/message/index.js.map +1 -1
package/dist/types/provider/chat.d.ts +2 -9
package/dist/types/provider/chat.d.ts.map +1 -1
package/dist/types/run/events.d.ts +6 -0
package/dist/types/run/events.d.ts.map +1 -1
package/dist/types/run/events.js.map +1 -1
package/dist/types/sandbox/index.d.ts +193 -0
package/dist/types/sandbox/index.d.ts.map +1 -1
package/dist/types/sandbox/index.js.map +1 -1
package/dist/types/skills/index.d.ts +2 -0
package/dist/types/skills/index.d.ts.map +1 -1
package/dist/types/tool/index.d.ts +22 -0
package/dist/types/tool/index.d.ts.map +1 -1
package/dist/types/toolset/index.d.ts +71 -0
package/dist/types/toolset/index.d.ts.map +1 -0
package/dist/types/toolset/index.js +2 -0
package/dist/types/toolset/index.js.map +1 -0
package/dist/types/workspace/index.d.ts +1 -0
package/dist/types/workspace/index.d.ts.map +1 -1
package/dist/types/workspace/shared-run.d.ts +61 -0
package/dist/types/workspace/shared-run.d.ts.map +1 -0
package/dist/types/workspace/shared-run.js +2 -0
package/dist/types/workspace/shared-run.js.map +1 -0
package/dist/verification/index.d.ts +1 -0
package/dist/verification/index.d.ts.map +1 -1
package/dist/verification/index.js +1 -0
package/dist/verification/index.js.map +1 -1
package/dist/verification/presets.d.ts +53 -0
package/dist/verification/presets.d.ts.map +1 -0
package/dist/verification/presets.js +70 -0
package/dist/verification/presets.js.map +1 -0
package/dist/verification/presets.test.d.ts +16 -0
package/dist/verification/presets.test.d.ts.map +1 -0
package/dist/verification/presets.test.js +79 -0
package/dist/verification/presets.test.js.map +1 -0
package/package.json +3 -2
package/src/advisory/executor.test.ts +7 -4
package/src/advisory/executor.ts +11 -2
package/src/agents/ReactiveAgent.ts +2 -0
package/src/agents/SupervisorAgent.ts +7 -0
package/src/bridge/sse/mapper.test.ts +2 -2
package/src/constants/compaction/index.ts +8 -3
package/src/constants/sandbox/index.ts +37 -0
package/src/constants/tools/index.ts +33 -2
package/src/manager/run/persistence.ts +34 -6
package/src/persona/assembler.ts +31 -8
package/src/provider/collect.test.ts +2 -2
package/src/public-runtime.ts +14 -1
package/src/public-tools.ts +2 -0
package/src/public-types.ts +7 -0
package/src/registry/index.ts +7 -0
package/src/registry/tool/execute.test.ts +132 -3
package/src/registry/tool/execute.ts +94 -9
package/src/registry/toolset/catalog.test.ts +97 -0
package/src/registry/toolset/catalog.ts +283 -0
package/src/runtime/query/__tests__/deferred-tools.test.ts +183 -0
package/src/runtime/query/__tests__/executor-concurrency.test.ts +122 -0
package/src/runtime/query/__tests__/executor-plugin-hooks.test.ts +48 -3
package/src/runtime/query/__tests__/prompt.test.ts +51 -2
package/src/runtime/query/__tests__/stream-recovery.test.ts +156 -0
package/src/runtime/query/continuation.ts +16 -0
package/src/runtime/query/executor.ts +82 -13
package/src/runtime/query/index.ts +24 -3
package/src/runtime/query/iteration/index.ts +263 -68
package/src/runtime/query/iteration/phases/context.ts +10 -0
package/src/runtime/query/prompt.ts +17 -1
package/src/runtime/query/tooling.ts +2 -0
package/src/sandbox/provider/local.ts +33 -0
package/src/session/workspace/__tests__/shared-run.test.ts +181 -0
package/src/session/workspace/index.ts +6 -0
package/src/session/workspace/shared-run.ts +316 -0
package/src/skills/loader.test.ts +89 -0
package/src/skills/loader.ts +37 -6
package/src/streaming/coalesce.test.ts +1 -1
package/src/tools/builtins/__tests__/edit.test.ts +57 -0
package/src/tools/builtins/__tests__/payload-budget.test.ts +29 -0
package/src/tools/builtins/__tests__/read-file.test.ts +31 -0
package/src/tools/builtins/__tests__/verify-outputs.test.ts +71 -0
package/src/tools/builtins/__tests__/write-file.test.ts +97 -0
package/src/tools/builtins/bash.ts +48 -7
package/src/tools/builtins/edit.ts +162 -27
package/src/tools/builtins/index.ts +13 -13
package/src/tools/builtins/read-file.ts +31 -8
package/src/tools/builtins/search-tools.ts +5 -1
package/src/tools/builtins/verify-outputs.ts +126 -0
package/src/tools/builtins/write-file.ts +83 -14
package/src/tools/coordinator/__tests__/agent.test.ts +172 -0
package/src/tools/coordinator/__tests__/task-list.test.ts +182 -0
package/src/tools/coordinator/agent.ts +157 -0
package/src/tools/coordinator/index.ts +128 -22
package/src/types/agent/base.ts +8 -0
package/src/types/agent/reactive.ts +25 -0
package/src/types/agent/supervisor.ts +16 -0
package/src/types/message/index.ts +32 -2
package/src/types/provider/chat.ts +2 -9
package/src/types/run/events.ts +6 -0
package/src/types/sandbox/index.ts +219 -0
package/src/types/skills/index.ts +4 -0
package/src/types/tool/index.ts +24 -0
package/src/types/toolset/index.ts +86 -0
package/src/types/workspace/index.ts +9 -0
package/src/types/workspace/shared-run.ts +65 -0
package/src/verification/index.ts +1 -0
package/src/verification/presets.test.ts +112 -0
package/src/verification/presets.ts +72 -0

package/src/verification/presets.ts ADDED Viewed

@@ -0,0 +1,72 @@
+import type { VerificationGateConfig } from '../types/verification/index.js'
+/**
+ * Sensible defaults for an agent that runs inside a host-provided
+ * sandbox (isolated working directory, isolated container, or both).
+ *
+ * The model: the sandbox is the safety boundary. Anything that
+ * stays inside the sandbox auto-approves. Things that try to escape
+ * (network reach, shell tricks the dangerous-pattern list catches)
+ * fall through to a human review prompt. This mirrors Codex CLI's
+ * `workspace-write` + `on-request` default and Claude Code's
+ * sandboxed permission mode.
+ *
+ * What this enables:
+ * - `allowReadOnlyTools` — anything `tool.isReadOnly(input)` reports
+ *   as read-only auto-approves (file reads, lookups, web search).
+ * - `denyDangerousPatterns` — the canonical brick-the-host shell
+ *   tricks (`rm -rf /`, sudo, `curl … | sh`, etc.) hard-deny.
+ * - `allow_by_category: ['filesystem', 'analysis', 'custom']` —
+ *   in-sandbox file mutation (write_file / edit) auto-approves
+ *   because the FS boundary is enforced by the sandbox layer, not
+ *   by per-call review.
+ *
+ * What still prompts for review:
+ * - `category: 'shell'` and `category: 'network'` tools — bash and
+ *   network calls do NOT auto-approve. The host is expected to
+ *   either layer additional rules for its own threat model or rely
+ *   on the review prompt. This is the conservative choice; hosts
+ *   that trust their sandbox enough to auto-approve shell can opt
+ *   in via {@link defaultSandboxedShellGateConfig}.
+ *
+ * Hosts override individual fields by spreading: `{ ...defaultSandboxedGateConfig(), logDecisions: false }`.
+ */
+export function defaultSandboxedGateConfig(): VerificationGateConfig {
+	return {
+		enabled: true,
+		allowReadOnlyTools: true,
+		denyDangerousPatterns: true,
+		logDecisions: false,
+		rules: [{ type: 'allow_by_category', categories: ['filesystem', 'analysis', 'custom'] }],
+	}
+}
+/**
+ * Like {@link defaultSandboxedGateConfig} but additionally trusts
+ * `category: 'shell'` tools (bash, etc.) to auto-approve inside the
+ * sandbox, on the assumption that the host has real OS-level
+ * isolation around the agent's working directory and outbound
+ * network. The dangerous-patterns deny rule still hard-denies the
+ * canonical brick patterns.
+ *
+ * Use this when:
+ * - The agent runs inside a per-task container or VM.
+ * - Outbound network is gated by an egress allowlist proxy.
+ * - The cost of a per-call review prompt outweighs the cost of an
+ *   in-sandbox shell mistake.
+ *
+ * Don't use this when the agent runs in a shared process with
+ * other tenants, or when the working directory is the user's
+ * actual home/repo without an extra isolation layer.
+ */
+export function defaultSandboxedShellGateConfig(): VerificationGateConfig {
+	return {
+		enabled: true,
+		allowReadOnlyTools: true,
+		denyDangerousPatterns: true,
+		logDecisions: false,
+		rules: [
+			{ type: 'allow_by_category', categories: ['filesystem', 'shell', 'analysis', 'custom'] },
+		],
+	}
+}