@neurosec/sentry 1.0.19 → 1.1.0

package/README.md

@@ -40,6 +40,9 @@ sudo neuroshield-sentry install
 # Check status
 neuroshield-sentry status
 
+# Launch an agent through Sentry's platform sandbox wrapper
+neuroshield-sentry launch --framework=codex -- node agent.js
+
 # View real-time enforcement decisions
 neuroshield-sentry logs -f
 
@@ -53,6 +56,7 @@ sudo neuroshield-sentryd
 |---------|-------------|
 | `setup` | Generate sentry.yaml configuration |
 | `install` | Install system service (systemd/launchd) |
+| `launch` | Start an agent through Sentry's launch-time sandbox wrapper |
 | `status` | Show daemon status and active processes |
 | `logs` | Tail the audit log (`-f` to follow, `-n 100` for lines) |
 | `version` | Print version |

package/dist/api-auth.d.ts

@@ -0,0 +1,31 @@
+import http from 'http';
+export interface LocalApiAuthOptions {
+    stateDir: string;
+    /** Endpoints (exact pathname match) that may be queried without a token. */
+    publicPaths?: ReadonlyArray<string>;
+}
+export declare class LocalApiAuth {
+    private token;
+    private readonly tokenBuf;
+    private readonly tokenPath;
+    private readonly publicPaths;
+    constructor(opts: LocalApiAuthOptions);
+    /** Token suitable for `Authorization: Bearer <token>`. */
+    getToken(): string;
+    getTokenPath(): string;
+    /** Rotate the on-disk token. Existing clients lose access. */
+    rotate(): string;
+    /**
+     * Returns true if the request is authorized. Anonymous reads to `publicPaths`
+     * are allowed. Everything else requires a matching Bearer token.
+     */
+    authorize(req: http.IncomingMessage): {
+        ok: true;
+    } | {
+        ok: false;
+        reason: string;
+    };
+    private loadOrCreate;
+    private generate;
+}
+//# sourceMappingURL=api-auth.d.ts.map

package/dist/api-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-auth.d.ts","sourceRoot":"","sources":["../src/api-auth.ts"],"names":[],"mappings":"AAkBA,OAAO,IAAI,MAAM,MAAM,CAAC;AAMxB,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,MAAM,CAAC;IACjB,4EAA4E;IAC5E,WAAW,CAAC,EAAE,aAAa,CAAC,MAAM,CAAC,CAAC;CACrC;AAED,qBAAa,YAAY;IACvB,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAsB;gBAEtC,IAAI,EAAE,mBAAmB;IAOrC,0DAA0D;IAC1D,QAAQ,IAAI,MAAM;IAIlB,YAAY,IAAI,MAAM;IAItB,8DAA8D;IAC9D,MAAM,IAAI,MAAM;IAOhB;;;OAGG;IACH,SAAS,CAAC,GAAG,EAAE,IAAI,CAAC,eAAe,GAAG;QAAE,EAAE,EAAE,IAAI,CAAA;KAAE,GAAG;QAAE,EAAE,EAAE,KAAK,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE;IAsBlF,OAAO,CAAC,YAAY;IAsBpB,OAAO,CAAC,QAAQ;CAIjB"}

package/dist/api-auth.js

@@ -0,0 +1,105 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LocalApiAuth = void 0;
+/**
+ * Local-API authentication for the Sentry daemon.
+ *
+ * The daemon binds an HTTP server on 127.0.0.1 for operator queries (status,
+ * processes, decisions, sandbox controls). Without auth, ANY local user can
+ * disable enforcement. We protect it with a per-host bearer token written once
+ * on first start to `${stateDir}/api.token` with 0600 permissions.
+ *
+ *   - Token lifetime: stable across daemon restarts (re-read from file).
+ *   - Token rotation: delete the file or call rotateLocalApiToken().
+ *   - Read-only endpoints (`GET /api/v1/status`) optionally bypass auth so
+ *     unprivileged health-checks still work.
+ *
+ * NOTE: This is a defense-in-depth layer. The PRIMARY protection is binding
+ * to 127.0.0.1 only — never bind to 0.0.0.0.
+ */
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const crypto_1 = require("crypto");
+const logger_1 = require("./logger");
+const TOKEN_FILENAME = 'api.token';
+class LocalApiAuth {
+    constructor(opts) {
+        this.tokenPath = path_1.default.join(opts.stateDir, TOKEN_FILENAME);
+        this.token = this.loadOrCreate();
+        this.tokenBuf = Buffer.from(this.token, 'utf8');
+        this.publicPaths = new Set(opts.publicPaths ?? ['/api/v1/status', '/health']);
+    }
+    /** Token suitable for `Authorization: Bearer <token>`. */
+    getToken() {
+        return this.token;
+    }
+    getTokenPath() {
+        return this.tokenPath;
+    }
+    /** Rotate the on-disk token. Existing clients lose access. */
+    rotate() {
+        this.token = this.generate();
+        fs_1.default.writeFileSync(this.tokenPath, this.token, { mode: 0o600 });
+        logger_1.logger.info('Local API token rotated', { tokenPath: this.tokenPath });
+        return this.token;
+    }
+    /**
+     * Returns true if the request is authorized. Anonymous reads to `publicPaths`
+     * are allowed. Everything else requires a matching Bearer token.
+     */
+    authorize(req) {
+        const url = req.url ?? '';
+        const pathname = url.split('?')[0];
+        if ((req.method ?? 'GET') === 'GET' && this.publicPaths.has(pathname)) {
+            return { ok: true };
+        }
+        const header = req.headers['authorization'];
+        if (typeof header !== 'string' || !header.toLowerCase().startsWith('bearer ')) {
+            return { ok: false, reason: 'missing_bearer' };
+        }
+        const presented = header.slice(7).trim();
+        if (presented.length !== this.tokenBuf.length)
+            return { ok: false, reason: 'token_mismatch' };
+        const presentedBuf = Buffer.from(presented, 'utf8');
+        let match = false;
+        try {
+            match = (0, crypto_1.timingSafeEqual)(presentedBuf, this.tokenBuf);
+        }
+        catch {
+            return { ok: false, reason: 'token_mismatch' };
+        }
+        return match ? { ok: true } : { ok: false, reason: 'token_mismatch' };
+    }
+    loadOrCreate() {
+        try {
+            if (fs_1.default.existsSync(this.tokenPath)) {
+                const existing = fs_1.default.readFileSync(this.tokenPath, 'utf8').trim();
+                if (existing.length >= 32)
+                    return existing;
+                logger_1.logger.warn('Existing local API token is too short; regenerating', {
+                    tokenPath: this.tokenPath,
+                });
+            }
+        }
+        catch (err) {
+            logger_1.logger.warn('Failed to read local API token; regenerating', {
+                tokenPath: this.tokenPath,
+                err: err.message,
+            });
+        }
+        const token = this.generate();
+        fs_1.default.mkdirSync(path_1.default.dirname(this.tokenPath), { recursive: true });
+        fs_1.default.writeFileSync(this.tokenPath, token, { mode: 0o600 });
+        logger_1.logger.info('Local API token created', { tokenPath: this.tokenPath });
+        return token;
+    }
+    generate() {
+        // 32 bytes → 64 hex chars; ample entropy for a local-only secret.
+        return (0, crypto_1.randomBytes)(32).toString('hex');
+    }
+}
+exports.LocalApiAuth = LocalApiAuth;
+//# sourceMappingURL=api-auth.js.map

package/dist/api-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-auth.js","sourceRoot":"","sources":["../src/api-auth.ts"],"names":[],"mappings":";;;;;;AAAA;;;;;;;;;;;;;;;GAeG;AACH,4CAAoB;AACpB,gDAAwB;AAExB,mCAAsD;AACtD,qCAAkC;AAElC,MAAM,cAAc,GAAG,WAAW,CAAC;AAQnC,MAAa,YAAY;IAMvB,YAAY,IAAyB;QACnC,IAAI,CAAC,SAAS,GAAG,cAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;QAC1D,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QACjC,IAAI,CAAC,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAChD,IAAI,CAAC,WAAW,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,WAAW,IAAI,CAAC,gBAAgB,EAAE,SAAS,CAAC,CAAC,CAAC;IAChF,CAAC;IAED,0DAA0D;IAC1D,QAAQ;QACN,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED,YAAY;QACV,OAAO,IAAI,CAAC,SAAS,CAAC;IACxB,CAAC;IAED,8DAA8D;IAC9D,MAAM;QACJ,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC7B,YAAE,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,KAAK,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QAC9D,eAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;QACtE,OAAO,IAAI,CAAC,KAAK,CAAC;IACpB,CAAC;IAED;;;OAGG;IACH,SAAS,CAAC,GAAyB;QACjC,MAAM,GAAG,GAAG,GAAG,CAAC,GAAG,IAAI,EAAE,CAAC;QAC1B,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACnC,IAAI,CAAC,GAAG,CAAC,MAAM,IAAI,KAAK,CAAC,KAAK,KAAK,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YACtE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;QACtB,CAAC;QACD,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;QAC5C,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC9E,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC;QACjD,CAAC;QACD,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACzC,IAAI,SAAS,CAAC,MAAM,KAAK,IAAI,CAAC,QAAQ,CAAC,MAAM;YAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC;QAC9F,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QACpD,IAAI,KAAK,GAAG,KAAK,CAAC;QAClB,IAAI,CAAC;YACH,KAAK,GAAG,IAAA,wBAAe,EAAC,YAAY,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QACvD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC;QACjD,CAAC;QACD,OAAO,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC;IACxE,CAAC;IAEO,YAAY;QAClB,IAAI,CAAC;YACH,IAAI,YAAE,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;gBAClC,MAAM,QAAQ,GAAG,YAAE,CAAC,YAAY,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;gBAChE,IAAI,QAAQ,CAAC,MAAM,IAAI,EAAE;oBAAE,OAAO,QAAQ,CAAC;gBAC3C,eAAM,CAAC,IAAI,CAAC,qDAAqD,EAAE;oBACjE,SAAS,EAAE,IAAI,CAAC,SAAS;iBAC1B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,eAAM,CAAC,IAAI,CAAC,8CAA8C,EAAE;gBAC1D,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,GAAG,EAAG,GAAa,CAAC,OAAO;aAC5B,CAAC,CAAC;QACL,CAAC;QACD,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC9B,YAAE,CAAC,SAAS,CAAC,cAAI,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAChE,YAAE,CAAC,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACzD,eAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,SAAS,EAAE,CAAC,CAAC;QACtE,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,QAAQ;QACd,kEAAkE;QAClE,OAAO,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IACzC,CAAC;CACF;AAlFD,oCAkFC"}

package/dist/api-auth.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=api-auth.test.d.ts.map

package/dist/api-auth.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-auth.test.d.ts","sourceRoot":"","sources":["../src/api-auth.test.ts"],"names":[],"mappings":""}

package/dist/api-auth.test.js

@@ -0,0 +1,89 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const vitest_1 = require("vitest");
+const fs_1 = __importDefault(require("fs"));
+const os_1 = __importDefault(require("os"));
+const path_1 = __importDefault(require("path"));
+const api_auth_1 = require("./api-auth");
+function tmpStateDir() {
+    return fs_1.default.mkdtempSync(path_1.default.join(os_1.default.tmpdir(), 'sentry-auth-'));
+}
+function fakeReq(method, url, headers = {}) {
+    return { method, url, headers };
+}
+(0, vitest_1.describe)('LocalApiAuth', () => {
+    let dir;
+    (0, vitest_1.beforeEach)(() => { dir = tmpStateDir(); });
+    (0, vitest_1.it)('creates a token on first start and writes it 0600', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        const tokenPath = auth.getTokenPath();
+        (0, vitest_1.expect)(fs_1.default.existsSync(tokenPath)).toBe(true);
+        const stat = fs_1.default.statSync(tokenPath);
+        // Mode bits: 0o600 = 384. On some platforms the higher bits may be set;
+        // we assert the world/group permissions are not granted.
+        (0, vitest_1.expect)(stat.mode & 0o077).toBe(0);
+        (0, vitest_1.expect)(auth.getToken().length).toBeGreaterThanOrEqual(32);
+    });
+    (0, vitest_1.it)('reuses the same token across instances', () => {
+        const a = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        const b = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(a.getToken()).toBe(b.getToken());
+    });
+    (0, vitest_1.it)('regenerates if existing token is too short', () => {
+        fs_1.default.writeFileSync(path_1.default.join(dir, 'api.token'), 'shorty', { mode: 0o600 });
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.getToken().length).toBeGreaterThanOrEqual(32);
+        (0, vitest_1.expect)(auth.getToken()).not.toBe('shorty');
+    });
+    (0, vitest_1.it)('allows anonymous GET to /api/v1/status', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/api/v1/status'))).toEqual({ ok: true });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/api/v1/status?refresh=1'))).toEqual({ ok: true });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/health'))).toEqual({ ok: true });
+    });
+    (0, vitest_1.it)('rejects POST to public path without token', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('POST', '/api/v1/status'))).toMatchObject({ ok: false });
+    });
+    (0, vitest_1.it)('rejects request without Authorization header on protected endpoint', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/api/v1/processes'))).toEqual({ ok: false, reason: 'missing_bearer' });
+    });
+    (0, vitest_1.it)('rejects Authorization with wrong scheme', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/api/v1/processes', {
+            authorization: 'Basic xyz',
+        }))).toEqual({ ok: false, reason: 'missing_bearer' });
+    });
+    (0, vitest_1.it)('rejects wrong token', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/api/v1/processes', {
+            authorization: 'Bearer ' + 'a'.repeat(auth.getToken().length),
+        }))).toEqual({ ok: false, reason: 'token_mismatch' });
+    });
+    (0, vitest_1.it)('accepts correct token', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('POST', '/api/v1/sandbox/123/disable', {
+            authorization: `Bearer ${auth.getToken()}`,
+        }))).toEqual({ ok: true });
+    });
+    (0, vitest_1.it)('rotate() generates a new token and persists it', () => {
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        const before = auth.getToken();
+        const after = auth.rotate();
+        (0, vitest_1.expect)(after).not.toBe(before);
+        (0, vitest_1.expect)(fs_1.default.readFileSync(auth.getTokenPath(), 'utf8')).toBe(after);
+    });
+    (0, vitest_1.it)('token comparison is constant-time (timingSafeEqual semantics)', () => {
+        // We can only test the API contract — that mismatched-length presented
+        // tokens return cleanly without throwing.
+        const auth = new api_auth_1.LocalApiAuth({ stateDir: dir });
+        (0, vitest_1.expect)(auth.authorize(fakeReq('GET', '/api/v1/processes', {
+            authorization: 'Bearer x',
+        }))).toEqual({ ok: false, reason: 'token_mismatch' });
+    });
+});
+//# sourceMappingURL=api-auth.test.js.map

package/dist/api-auth.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-auth.test.js","sourceRoot":"","sources":["../src/api-auth.test.ts"],"names":[],"mappings":";;;;;AAAA,mCAA0D;AAC1D,4CAAoB;AACpB,4CAAoB;AACpB,gDAAwB;AAExB,yCAA0C;AAE1C,SAAS,WAAW;IAClB,OAAO,YAAE,CAAC,WAAW,CAAC,cAAI,CAAC,IAAI,CAAC,YAAE,CAAC,MAAM,EAAE,EAAE,cAAc,CAAC,CAAC,CAAC;AAChE,CAAC;AAED,SAAS,OAAO,CAAC,MAAc,EAAE,GAAW,EAAE,UAA8C,EAAE;IAC5F,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAqC,CAAC;AACrE,CAAC;AAED,IAAA,iBAAQ,EAAC,cAAc,EAAE,GAAG,EAAE;IAC5B,IAAI,GAAW,CAAC;IAChB,IAAA,mBAAU,EAAC,GAAG,EAAE,GAAG,GAAG,GAAG,WAAW,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;IAE3C,IAAA,WAAE,EAAC,mDAAmD,EAAE,GAAG,EAAE;QAC3D,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QACtC,IAAA,eAAM,EAAC,YAAE,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC5C,MAAM,IAAI,GAAG,YAAE,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;QACpC,wEAAwE;QACxE,yDAAyD;QACzD,IAAA,eAAM,EAAC,IAAI,CAAC,IAAI,GAAG,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClC,IAAA,eAAM,EAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,MAAM,CAAC,CAAC,sBAAsB,CAAC,EAAE,CAAC,CAAC;IAC5D,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,wCAAwC,EAAE,GAAG,EAAE;QAChD,MAAM,CAAC,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QAC9C,MAAM,CAAC,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QAC9C,IAAA,eAAM,EAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,4CAA4C,EAAE,GAAG,EAAE;QACpD,YAAE,CAAC,aAAa,CAAC,cAAI,CAAC,IAAI,CAAC,GAAG,EAAE,WAAW,CAAC,EAAE,QAAQ,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACzE,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,MAAM,CAAC,CAAC,sBAAsB,CAAC,EAAE,CAAC,CAAC;QAC1D,IAAA,eAAM,EAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAC7C,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,wCAAwC,EAAE,GAAG,EAAE;QAChD,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;QAC/E,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,0BAA0B,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;QACzF,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;IAC1E,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,2CAA2C,EAAE,GAAG,EAAE;QACnD,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;IACzF,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,oEAAoE,EAAE,GAAG,EAAE;QAC5E,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,mBAAmB,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;IAC/G,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,yCAAyC,EAAE,GAAG,EAAE;QACjD,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,mBAAmB,EAAE;YACxD,aAAa,EAAE,WAAW;SAC3B,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,qBAAqB,EAAE,GAAG,EAAE;QAC7B,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,mBAAmB,EAAE;YACxD,aAAa,EAAE,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC,MAAM,CAAC;SAC9D,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,uBAAuB,EAAE,GAAG,EAAE;QAC/B,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,6BAA6B,EAAE;YACnE,aAAa,EAAE,UAAU,IAAI,CAAC,QAAQ,EAAE,EAAE;SAC3C,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC;IAC7B,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,gDAAgD,EAAE,GAAG,EAAE;QACxD,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC;QAC5B,IAAA,eAAM,EAAC,KAAK,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC/B,IAAA,eAAM,EAAC,YAAE,CAAC,YAAY,CAAC,IAAI,CAAC,YAAY,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACnE,CAAC,CAAC,CAAC;IAEH,IAAA,WAAE,EAAC,+DAA+D,EAAE,GAAG,EAAE;QACvE,uEAAuE;QACvE,0CAA0C;QAC1C,MAAM,IAAI,GAAG,IAAI,uBAAY,CAAC,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;QACjD,IAAA,eAAM,EAAC,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,mBAAmB,EAAE;YACxD,aAAa,EAAE,UAAU;SAC1B,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/api.d.ts

@@ -2,9 +2,8 @@ import { SentryConfig } from './config';
 import { TaggedProcess, SentryStatus } from './types';
 import { EnforcementEngine } from './enforcement/enforcement-engine';
 import { SkillEvaluator } from './skill-authz/skill-evaluator';
-import { AgentRegistry } from './agent-registry';
-import { ActionLogger } from './action-logger';
-import { AnomalyDetector } from './anomaly-detector';
+import { LLMProxyServer } from './proxy/proxy-server';
+import { PolicyEnforcer } from './proxy/policy-enforcer';
 export declare class SentryApiServer {
     private config;
     private getTaggedProcesses;
@@ -12,12 +11,14 @@ export declare class SentryApiServer {
     private getSkillEvaluator;
     private getPolicyVersion;
     private getLastSyncAt;
-    private getAgentRegistry;
-    private getActionLogger;
-    private getAnomalyDetector;
+    private getProxy;
+    private getPolicyEnforcer;
     private server;
     private startTime;
-    constructor(config: SentryConfig, getTaggedProcesses: () => TaggedProcess[], getEngine: () => EnforcementEngine, getSkillEvaluator: () => SkillEvaluator, getPolicyVersion: () => string, getLastSyncAt: () => string | null, getAgentRegistry: () => AgentRegistry, getActionLogger: () => ActionLogger, getAnomalyDetector: () => AnomalyDetector);
+    private auth;
+    constructor(config: SentryConfig, getTaggedProcesses: () => TaggedProcess[], getEngine: () => EnforcementEngine, getSkillEvaluator: () => SkillEvaluator, getPolicyVersion: () => string, getLastSyncAt: () => string | null, getProxy?: () => LLMProxyServer | undefined, getPolicyEnforcer?: () => PolicyEnforcer | undefined);
+    /** Returns the bearer token for use by trusted local tooling. */
+    getAuthToken(): string;
     start(): Promise<void>;
     stop(): Promise<void>;
     getStatus(): SentryStatus;

package/dist/api.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../src/api.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,aAAa,EAAuB,YAAY,EAAE,MAAM,SAAS,CAAC;AAC3E,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAC/D,OAAO,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAGrD,qBAAa,eAAe;IAKxB,OAAO,CAAC,MAAM;IACd,OAAO,CAAC,kBAAkB;IAC1B,OAAO,CAAC,SAAS;IACjB,OAAO,CAAC,iBAAiB;IACzB,OAAO,CAAC,gBAAgB;IACxB,OAAO,CAAC,aAAa;IACrB,OAAO,CAAC,gBAAgB;IACxB,OAAO,CAAC,eAAe;IACvB,OAAO,CAAC,kBAAkB;IAZ5B,OAAO,CAAC,MAAM,CAA4B;IAC1C,OAAO,CAAC,SAAS,CAAc;gBAGrB,MAAM,EAAE,YAAY,EACpB,kBAAkB,EAAE,MAAM,aAAa,EAAE,EACzC,SAAS,EAAE,MAAM,iBAAiB,EAClC,iBAAiB,EAAE,MAAM,cAAc,EACvC,gBAAgB,EAAE,MAAM,MAAM,EAC9B,aAAa,EAAE,MAAM,MAAM,GAAG,IAAI,EAClC,gBAAgB,EAAE,MAAM,aAAa,EACrC,eAAe,EAAE,MAAM,YAAY,EACnC,kBAAkB,EAAE,MAAM,eAAe;IAG7C,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAqBtB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAQ3B,SAAS,IAAI,YAAY;YAmBX,aAAa;YA2Ob,IAAI;CAInB"}
+{"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../src/api.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,aAAa,EAAuB,YAAY,EAAE,MAAM,SAAS,CAAC;AAC3E,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAC/D,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAC;AAMzD,qBAAa,eAAe;IAMxB,OAAO,CAAC,MAAM;IACd,OAAO,CAAC,kBAAkB;IAC1B,OAAO,CAAC,SAAS;IACjB,OAAO,CAAC,iBAAiB;IACzB,OAAO,CAAC,gBAAgB;IACxB,OAAO,CAAC,aAAa;IACrB,OAAO,CAAC,QAAQ;IAChB,OAAO,CAAC,iBAAiB;IAZ3B,OAAO,CAAC,MAAM,CAA4B;IAC1C,OAAO,CAAC,SAAS,CAAc;IAC/B,OAAO,CAAC,IAAI,CAAe;gBAGjB,MAAM,EAAE,YAAY,EACpB,kBAAkB,EAAE,MAAM,aAAa,EAAE,EACzC,SAAS,EAAE,MAAM,iBAAiB,EAClC,iBAAiB,EAAE,MAAM,cAAc,EACvC,gBAAgB,EAAE,MAAM,MAAM,EAC9B,aAAa,EAAE,MAAM,MAAM,GAAG,IAAI,EAClC,QAAQ,GAAE,MAAM,cAAc,GAAG,SAA2B,EAC5D,iBAAiB,GAAE,MAAM,cAAc,GAAG,SAA2B;IAa/E,iEAAiE;IACjE,YAAY,IAAI,MAAM;IAIhB,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAqBtB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAQ3B,SAAS,IAAI,YAAY;YAyBX,aAAa;YA4Lb,IAAI;CAInB"}