npm - @objectstack/core - Versions diffs - 1.0.4 → 1.0.5 - Mend

@objectstack/core 1.0.4 → 1.0.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (125) hide show

package/.turbo/turbo-build.log +58 -0
package/CHANGELOG.md +12 -0
package/dist/index.cjs +4294 -0
package/dist/index.cjs.map +1 -0
package/dist/index.d.cts +1777 -0
package/dist/index.d.ts +1776 -21
package/dist/index.js +4246 -23
package/dist/index.js.map +1 -0
package/package.json +4 -4
package/tsconfig.json +1 -3
package/dist/api-registry-plugin.d.ts +0 -54
package/dist/api-registry-plugin.d.ts.map +0 -1
package/dist/api-registry-plugin.js +0 -53
package/dist/api-registry-plugin.test.d.ts +0 -2
package/dist/api-registry-plugin.test.d.ts.map +0 -1
package/dist/api-registry-plugin.test.js +0 -334
package/dist/api-registry.d.ts +0 -259
package/dist/api-registry.d.ts.map +0 -1
package/dist/api-registry.js +0 -600
package/dist/api-registry.test.d.ts +0 -2
package/dist/api-registry.test.d.ts.map +0 -1
package/dist/api-registry.test.js +0 -957
package/dist/contracts/data-engine.d.ts +0 -62
package/dist/contracts/data-engine.d.ts.map +0 -1
package/dist/contracts/data-engine.js +0 -1
package/dist/contracts/http-server.d.ts +0 -119
package/dist/contracts/http-server.d.ts.map +0 -1
package/dist/contracts/http-server.js +0 -11
package/dist/contracts/logger.d.ts +0 -63
package/dist/contracts/logger.d.ts.map +0 -1
package/dist/contracts/logger.js +0 -1
package/dist/dependency-resolver.d.ts +0 -62
package/dist/dependency-resolver.d.ts.map +0 -1
package/dist/dependency-resolver.js +0 -317
package/dist/dependency-resolver.test.d.ts +0 -2
package/dist/dependency-resolver.test.d.ts.map +0 -1
package/dist/dependency-resolver.test.js +0 -241
package/dist/health-monitor.d.ts +0 -65
package/dist/health-monitor.d.ts.map +0 -1
package/dist/health-monitor.js +0 -269
package/dist/health-monitor.test.d.ts +0 -2
package/dist/health-monitor.test.d.ts.map +0 -1
package/dist/health-monitor.test.js +0 -68
package/dist/hot-reload.d.ts +0 -79
package/dist/hot-reload.d.ts.map +0 -1
package/dist/hot-reload.js +0 -313
package/dist/index.d.ts.map +0 -1
package/dist/kernel-base.d.ts +0 -84
package/dist/kernel-base.d.ts.map +0 -1
package/dist/kernel-base.js +0 -219
package/dist/kernel.d.ts +0 -113
package/dist/kernel.d.ts.map +0 -1
package/dist/kernel.js +0 -472
package/dist/kernel.test.d.ts +0 -2
package/dist/kernel.test.d.ts.map +0 -1
package/dist/kernel.test.js +0 -414
package/dist/lite-kernel.d.ts +0 -55
package/dist/lite-kernel.d.ts.map +0 -1
package/dist/lite-kernel.js +0 -112
package/dist/lite-kernel.test.d.ts +0 -2
package/dist/lite-kernel.test.d.ts.map +0 -1
package/dist/lite-kernel.test.js +0 -161
package/dist/logger.d.ts +0 -71
package/dist/logger.d.ts.map +0 -1
package/dist/logger.js +0 -312
package/dist/logger.test.d.ts +0 -2
package/dist/logger.test.d.ts.map +0 -1
package/dist/logger.test.js +0 -92
package/dist/plugin-loader.d.ts +0 -164
package/dist/plugin-loader.d.ts.map +0 -1
package/dist/plugin-loader.js +0 -319
package/dist/plugin-loader.test.d.ts +0 -2
package/dist/plugin-loader.test.d.ts.map +0 -1
package/dist/plugin-loader.test.js +0 -348
package/dist/qa/adapter.d.ts +0 -14
package/dist/qa/adapter.d.ts.map +0 -1
package/dist/qa/adapter.js +0 -1
package/dist/qa/http-adapter.d.ts +0 -16
package/dist/qa/http-adapter.d.ts.map +0 -1
package/dist/qa/http-adapter.js +0 -107
package/dist/qa/index.d.ts +0 -4
package/dist/qa/index.d.ts.map +0 -1
package/dist/qa/index.js +0 -3
package/dist/qa/runner.d.ts +0 -27
package/dist/qa/runner.d.ts.map +0 -1
package/dist/qa/runner.js +0 -157
package/dist/security/index.d.ts +0 -17
package/dist/security/index.d.ts.map +0 -1
package/dist/security/index.js +0 -17
package/dist/security/permission-manager.d.ts +0 -96
package/dist/security/permission-manager.d.ts.map +0 -1
package/dist/security/permission-manager.js +0 -235
package/dist/security/permission-manager.test.d.ts +0 -2
package/dist/security/permission-manager.test.d.ts.map +0 -1
package/dist/security/permission-manager.test.js +0 -220
package/dist/security/plugin-config-validator.d.ts +0 -79
package/dist/security/plugin-config-validator.d.ts.map +0 -1
package/dist/security/plugin-config-validator.js +0 -166
package/dist/security/plugin-config-validator.test.d.ts +0 -2
package/dist/security/plugin-config-validator.test.d.ts.map +0 -1
package/dist/security/plugin-config-validator.test.js +0 -223
package/dist/security/plugin-permission-enforcer.d.ts +0 -154
package/dist/security/plugin-permission-enforcer.d.ts.map +0 -1
package/dist/security/plugin-permission-enforcer.js +0 -323
package/dist/security/plugin-permission-enforcer.test.d.ts +0 -2
package/dist/security/plugin-permission-enforcer.test.d.ts.map +0 -1
package/dist/security/plugin-permission-enforcer.test.js +0 -205
package/dist/security/plugin-signature-verifier.d.ts +0 -96
package/dist/security/plugin-signature-verifier.d.ts.map +0 -1
package/dist/security/plugin-signature-verifier.js +0 -250
package/dist/security/sandbox-runtime.d.ts +0 -115
package/dist/security/sandbox-runtime.d.ts.map +0 -1
package/dist/security/sandbox-runtime.js +0 -311
package/dist/security/security-scanner.d.ts +0 -92
package/dist/security/security-scanner.d.ts.map +0 -1
package/dist/security/security-scanner.js +0 -273
package/dist/types.d.ts +0 -89
package/dist/types.d.ts.map +0 -1
package/dist/types.js +0 -1
package/dist/utils/env.d.ts +0 -20
package/dist/utils/env.d.ts.map +0 -1
package/dist/utils/env.js +0 -46
package/dist/utils/env.test.d.ts +0 -2
package/dist/utils/env.test.d.ts.map +0 -1
package/dist/utils/env.test.js +0 -52

package/dist/security/plugin-config-validator.test.js DELETED Viewed

@@ -1,223 +0,0 @@
-import { describe, it, expect, beforeEach } from 'vitest';
-import { z } from 'zod';
-import { PluginConfigValidator } from './plugin-config-validator.js';
-import { createLogger } from '../logger.js';
-describe('PluginConfigValidator', () => {
-    let validator;
-    let logger;
-    beforeEach(() => {
-        logger = createLogger({ level: 'error' });
-        validator = new PluginConfigValidator(logger);
-    });
-    describe('validatePluginConfig', () => {
-        it('should validate valid configuration', () => {
-            const configSchema = z.object({
-                port: z.number().min(1000).max(65535),
-                host: z.string(),
-                debug: z.boolean().default(false),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const config = {
-                port: 3000,
-                host: 'localhost',
-                debug: true,
-            };
-            const validatedConfig = validator.validatePluginConfig(plugin, config);
-            expect(validatedConfig).toEqual(config);
-        });
-        it('should apply defaults for missing optional fields', () => {
-            const configSchema = z.object({
-                port: z.number().default(3000),
-                host: z.string().default('localhost'),
-                debug: z.boolean().default(false),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const config = {
-                port: 8080,
-            };
-            const validatedConfig = validator.validatePluginConfig(plugin, config);
-            expect(validatedConfig).toEqual({
-                port: 8080,
-                host: 'localhost',
-                debug: false,
-            });
-        });
-        it('should throw error for invalid configuration', () => {
-            const configSchema = z.object({
-                port: z.number().min(1000).max(65535),
-                host: z.string(),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const config = {
-                port: 100, // Invalid: < 1000
-                host: 'localhost',
-            };
-            expect(() => validator.validatePluginConfig(plugin, config)).toThrow();
-        });
-        it('should provide detailed error messages', () => {
-            const configSchema = z.object({
-                port: z.number().min(1000),
-                host: z.string().min(1),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const config = {
-                port: 100,
-                host: '',
-            };
-            try {
-                validator.validatePluginConfig(plugin, config);
-                expect.fail('Should have thrown validation error');
-            }
-            catch (error) {
-                const errorMessage = error.message;
-                expect(errorMessage).toContain('com.test.plugin');
-                expect(errorMessage).toContain('port');
-                expect(errorMessage).toContain('host');
-            }
-        });
-        it('should skip validation when no schema is provided', () => {
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                init: async () => { },
-            };
-            const config = { anything: 'goes' };
-            const validatedConfig = validator.validatePluginConfig(plugin, config);
-            expect(validatedConfig).toEqual(config);
-        });
-    });
-    describe('validatePartialConfig', () => {
-        it('should validate partial configuration', () => {
-            const configSchema = z.object({
-                port: z.number().min(1000),
-                host: z.string(),
-                debug: z.boolean(),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const partialConfig = {
-                port: 8080,
-            };
-            const validatedConfig = validator.validatePartialConfig(plugin, partialConfig);
-            expect(validatedConfig).toEqual({ port: 8080 });
-        });
-    });
-    describe('getDefaultConfig', () => {
-        it('should extract default configuration', () => {
-            const configSchema = z.object({
-                port: z.number().default(3000),
-                host: z.string().default('localhost'),
-                debug: z.boolean().default(false),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const defaults = validator.getDefaultConfig(plugin);
-            expect(defaults).toEqual({
-                port: 3000,
-                host: 'localhost',
-                debug: false,
-            });
-        });
-        it('should return undefined when schema requires fields', () => {
-            const configSchema = z.object({
-                port: z.number(),
-                host: z.string(),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const defaults = validator.getDefaultConfig(plugin);
-            expect(defaults).toBeUndefined();
-        });
-    });
-    describe('isConfigValid', () => {
-        it('should return true for valid config', () => {
-            const configSchema = z.object({
-                port: z.number(),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const isValid = validator.isConfigValid(plugin, { port: 3000 });
-            expect(isValid).toBe(true);
-        });
-        it('should return false for invalid config', () => {
-            const configSchema = z.object({
-                port: z.number(),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const isValid = validator.isConfigValid(plugin, { port: 'invalid' });
-            expect(isValid).toBe(false);
-        });
-    });
-    describe('getConfigErrors', () => {
-        it('should return errors for invalid config', () => {
-            const configSchema = z.object({
-                port: z.number().min(1000),
-                host: z.string().min(1),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const errors = validator.getConfigErrors(plugin, { port: 100, host: '' });
-            expect(errors).toHaveLength(2);
-            expect(errors[0].path).toBe('port');
-            expect(errors[1].path).toBe('host');
-        });
-        it('should return empty array for valid config', () => {
-            const configSchema = z.object({
-                port: z.number(),
-            });
-            const plugin = {
-                name: 'com.test.plugin',
-                version: '1.0.0',
-                configSchema,
-                init: async () => { },
-            };
-            const errors = validator.getConfigErrors(plugin, { port: 3000 });
-            expect(errors).toEqual([]);
-        });
-    });
-});

package/dist/security/plugin-permission-enforcer.d.ts DELETED Viewed

@@ -1,154 +0,0 @@
-import type { Logger } from '@objectstack/spec/contracts';
-import type { PluginCapability } from '@objectstack/spec/kernel';
-import type { PluginContext } from '../types.js';
-/**
- * Plugin Permissions
- * Defines what actions a plugin is allowed to perform
- */
-export interface PluginPermissions {
-    canAccessService(serviceName: string): boolean;
-    canTriggerHook(hookName: string): boolean;
-    canReadFile(path: string): boolean;
-    canWriteFile(path: string): boolean;
-    canNetworkRequest(url: string): boolean;
-}
-/**
- * Permission Check Result
- */
-export interface PermissionCheckResult {
-    allowed: boolean;
-    reason?: string;
-    capability?: string;
-}
-/**
- * Plugin Permission Enforcer
- *
- * Implements capability-based security model to enforce:
- * 1. Service access control - which services a plugin can use
- * 2. Hook restrictions - which hooks a plugin can trigger
- * 3. File system permissions - what files a plugin can read/write
- * 4. Network permissions - what URLs a plugin can access
- *
- * Architecture:
- * - Uses capability declarations from plugin manifest
- * - Checks permissions before allowing operations
- * - Logs all permission denials for security audit
- * - Supports allowlist and denylist patterns
- *
- * Security Model:
- * - Principle of least privilege - plugins get minimal permissions
- * - Explicit declaration - all capabilities must be declared
- * - Runtime enforcement - checks happen at operation time
- * - Audit trail - all denials are logged
- *
- * Usage:
- * ```typescript
- * const enforcer = new PluginPermissionEnforcer(logger);
- * enforcer.registerPluginPermissions(pluginName, capabilities);
- * enforcer.enforceServiceAccess(pluginName, 'database');
- * ```
- */
-export declare class PluginPermissionEnforcer {
-    private logger;
-    private permissionRegistry;
-    private capabilityRegistry;
-    constructor(logger: Logger);
-    /**
-     * Register plugin capabilities and build permission set
-     *
-     * @param pluginName - Plugin identifier
-     * @param capabilities - Array of capability declarations
-     */
-    registerPluginPermissions(pluginName: string, capabilities: PluginCapability[]): void;
-    /**
-     * Enforce service access permission
-     *
-     * @param pluginName - Plugin requesting access
-     * @param serviceName - Service to access
-     * @throws Error if permission denied
-     */
-    enforceServiceAccess(pluginName: string, serviceName: string): void;
-    /**
-     * Enforce hook trigger permission
-     *
-     * @param pluginName - Plugin requesting access
-     * @param hookName - Hook to trigger
-     * @throws Error if permission denied
-     */
-    enforceHookTrigger(pluginName: string, hookName: string): void;
-    /**
-     * Enforce file read permission
-     *
-     * @param pluginName - Plugin requesting access
-     * @param path - File path to read
-     * @throws Error if permission denied
-     */
-    enforceFileRead(pluginName: string, path: string): void;
-    /**
-     * Enforce file write permission
-     *
-     * @param pluginName - Plugin requesting access
-     * @param path - File path to write
-     * @throws Error if permission denied
-     */
-    enforceFileWrite(pluginName: string, path: string): void;
-    /**
-     * Enforce network request permission
-     *
-     * @param pluginName - Plugin requesting access
-     * @param url - URL to access
-     * @throws Error if permission denied
-     */
-    enforceNetworkRequest(pluginName: string, url: string): void;
-    /**
-     * Get plugin capabilities
-     *
-     * @param pluginName - Plugin identifier
-     * @returns Array of capabilities or undefined
-     */
-    getPluginCapabilities(pluginName: string): PluginCapability[] | undefined;
-    /**
-     * Get plugin permissions
-     *
-     * @param pluginName - Plugin identifier
-     * @returns Permissions object or undefined
-     */
-    getPluginPermissions(pluginName: string): PluginPermissions | undefined;
-    /**
-     * Revoke all permissions for a plugin
-     *
-     * @param pluginName - Plugin identifier
-     */
-    revokePermissions(pluginName: string): void;
-    private checkPermission;
-    private checkServiceAccess;
-    private checkHookAccess;
-    private checkFileRead;
-    private checkFileWrite;
-    private checkNetworkAccess;
-}
-/**
- * Secure Plugin Context
- * Wraps PluginContext with permission checks
- */
-export declare class SecurePluginContext implements PluginContext {
-    private pluginName;
-    private permissionEnforcer;
-    private baseContext;
-    constructor(pluginName: string, permissionEnforcer: PluginPermissionEnforcer, baseContext: PluginContext);
-    registerService(name: string, service: any): void;
-    getService<T>(name: string): T;
-    getServices(): Map<string, any>;
-    hook(name: string, handler: (...args: any[]) => void | Promise<void>): void;
-    trigger(name: string, ...args: any[]): Promise<void>;
-    get logger(): Logger;
-    getKernel(): import("../kernel.js").ObjectKernel;
-}
-/**
- * Create a plugin permission enforcer
- *
- * @param logger - Logger instance
- * @returns Plugin permission enforcer
- */
-export declare function createPluginPermissionEnforcer(logger: Logger): PluginPermissionEnforcer;
-//# sourceMappingURL=plugin-permission-enforcer.d.ts.map

package/dist/security/plugin-permission-enforcer.d.ts.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"plugin-permission-enforcer.d.ts","sourceRoot":"","sources":["../../src/security/plugin-permission-enforcer.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,6BAA6B,CAAC;AAC1D,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,0BAA0B,CAAC;AACjE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAEjD;;;GAGG;AACH,MAAM,WAAW,iBAAiB;IAChC,gBAAgB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;IAC/C,cAAc,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC;IAC1C,WAAW,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;IACnC,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC;IACpC,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACzC;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,qBAAa,wBAAwB;IACnC,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,kBAAkB,CAA6C;IACvE,OAAO,CAAC,kBAAkB,CAA8C;gBAE5D,MAAM,EAAE,MAAM;IAI1B;;;;;OAKG;IACH,yBAAyB,CAAC,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,gBAAgB,EAAE,GAAG,IAAI;IAmBrF;;;;;;OAMG;IACH,oBAAoB,CAAC,UAAU,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,IAAI;IAgBnE;;;;;;OAMG;IACH,kBAAkB,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,IAAI;IAgB9D;;;;;;OAMG;IACH,eAAe,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAgBvD;;;;;;OAMG;IACH,gBAAgB,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,IAAI;IAgBxD;;;;;;OAMG;IACH,qBAAqB,CAAC,UAAU,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,GAAG,IAAI;IAgB5D;;;;;OAKG;IACH,qBAAqB,CAAC,UAAU,EAAE,MAAM,GAAG,gBAAgB,EAAE,GAAG,SAAS;IAIzE;;;;;OAKG;IACH,oBAAoB,CAAC,UAAU,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS;IAIvE;;;;OAIG;IACH,iBAAiB,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAQ3C,OAAO,CAAC,eAAe;IAqBvB,OAAO,CAAC,kBAAkB;IAyB1B,OAAO,CAAC,eAAe;IAyBvB,OAAO,CAAC,aAAa;IAerB,OAAO,CAAC,cAAc;IAetB,OAAO,CAAC,kBAAkB;CAc3B;AAED;;;GAGG;AACH,qBAAa,mBAAoB,YAAW,aAAa;IAErD,OAAO,CAAC,UAAU;IAClB,OAAO,CAAC,kBAAkB;IAC1B,OAAO,CAAC,WAAW;gBAFX,UAAU,EAAE,MAAM,EAClB,kBAAkB,EAAE,wBAAwB,EAC5C,WAAW,EAAE,aAAa;IAGpC,eAAe,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,GAAG,IAAI;IAKjD,UAAU,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,GAAG,CAAC;IAM9B,WAAW,IAAI,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC;IAK/B,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI;IAKrE,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC;IAM1D,IAAI,MAAM,WAET;IAED,SAAS;CAGV;AAED;;;;;GAKG;AACH,wBAAgB,8BAA8B,CAAC,MAAM,EAAE,MAAM,GAAG,wBAAwB,CAEvF"}