@opendatalabs/personal-server-ts-core 0.0.1-canary.0d0705b

package/dist/signing/index.js

@@ -0,0 +1,4 @@
+export { fileRegistrationDomain, grantRegistrationDomain, grantRevocationDomain, serverRegistrationDomain, FILE_REGISTRATION_TYPES, GRANT_REGISTRATION_TYPES, GRANT_REVOCATION_TYPES, SERVER_REGISTRATION_TYPES, } from "./eip712.js";
+export { createServerSigner } from "./signer.js";
+export { createRequestSigner } from "./request-signer.js";
+//# sourceMappingURL=index.js.map

package/dist/signing/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/signing/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,sBAAsB,EACtB,uBAAuB,EACvB,qBAAqB,EACrB,wBAAwB,EACxB,uBAAuB,EACvB,wBAAwB,EACxB,sBAAsB,EACtB,yBAAyB,GAK1B,MAAM,aAAa,CAAC;AAErB,OAAO,EAAE,kBAAkB,EAAqB,MAAM,aAAa,CAAC;AACpE,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC"}

package/dist/signing/request-signer.d.ts

@@ -0,0 +1,12 @@
+/**
+ * RequestSigner — produces Web3Signed Authorization headers for HTTP requests.
+ * Used by the Vana Storage adapter for authenticated blob operations.
+ */
+import type { ServerAccount } from "../keys/server-account.js";
+import type { RequestSigner } from "../storage/adapters/vana.js";
+/**
+ * Create a RequestSigner that produces Web3Signed Authorization headers
+ * using the server account's EIP-191 signing capability.
+ */
+export declare function createRequestSigner(account: ServerAccount): RequestSigner;
+//# sourceMappingURL=request-signer.d.ts.map

package/dist/signing/request-signer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"request-signer.d.ts","sourceRoot":"","sources":["../../src/signing/request-signer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC/D,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAWjE;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,aAAa,GAAG,aAAa,CAsCzE"}

package/dist/signing/request-signer.js

@@ -0,0 +1,47 @@
+/**
+ * RequestSigner — produces Web3Signed Authorization headers for HTTP requests.
+ * Used by the Vana Storage adapter for authenticated blob operations.
+ */
+import { createHash } from "node:crypto";
+/** Base64url encode a string (no padding). */
+function base64urlEncode(input) {
+    return Buffer.from(input, "utf-8")
+        .toString("base64")
+        .replace(/\+/g, "-")
+        .replace(/\//g, "_")
+        .replace(/=+$/, "");
+}
+/**
+ * Create a RequestSigner that produces Web3Signed Authorization headers
+ * using the server account's EIP-191 signing capability.
+ */
+export function createRequestSigner(account) {
+    return {
+        async signRequest(params) {
+            const now = Math.floor(Date.now() / 1000);
+            const payload = {
+                aud: params.aud,
+                bodyHash: params.body
+                    ? createHash("sha256").update(params.body).digest("hex")
+                    : "",
+                exp: now + 300,
+                iat: now,
+                method: params.method,
+                uri: params.uri,
+            };
+            // Sort keys for deterministic serialization
+            const sortedPayload = Object.keys(payload)
+                .sort()
+                .reduce((acc, key) => {
+                acc[key] = payload[key];
+                return acc;
+            }, {});
+            const payloadJson = JSON.stringify(sortedPayload);
+            const payloadBase64 = base64urlEncode(payloadJson);
+            // Sign the base64url string via EIP-191
+            const signature = await account.signMessage(payloadBase64);
+            return `Web3Signed ${payloadBase64}.${signature}`;
+        },
+    };
+}
+//# sourceMappingURL=request-signer.js.map

package/dist/signing/request-signer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"request-signer.js","sourceRoot":"","sources":["../../src/signing/request-signer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAIzC,8CAA8C;AAC9C,SAAS,eAAe,CAAC,KAAa;IACpC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,OAAO,CAAC;SAC/B,QAAQ,CAAC,QAAQ,CAAC;SAClB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;SACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AACxB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAAsB;IACxD,OAAO;QACL,KAAK,CAAC,WAAW,CAAC,MAKjB;YACC,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;YAE1C,MAAM,OAAO,GAA4B;gBACvC,GAAG,EAAE,MAAM,CAAC,GAAG;gBACf,QAAQ,EAAE,MAAM,CAAC,IAAI;oBACnB,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;oBACxD,CAAC,CAAC,EAAE;gBACN,GAAG,EAAE,GAAG,GAAG,GAAG;gBACd,GAAG,EAAE,GAAG;gBACR,MAAM,EAAE,MAAM,CAAC,MAAM;gBACrB,GAAG,EAAE,MAAM,CAAC,GAAG;aAChB,CAAC;YAEF,4CAA4C;YAC5C,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC;iBACvC,IAAI,EAAE;iBACN,MAAM,CAA0B,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;gBAC5C,GAAG,CAAC,GAAG,CAAC,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;gBACxB,OAAO,GAAG,CAAC;YACb,CAAC,EAAE,EAAE,CAAC,CAAC;YAET,MAAM,WAAW,GAAG,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YAClD,MAAM,aAAa,GAAG,eAAe,CAAC,WAAW,CAAC,CAAC;YAEnD,wCAAwC;YACxC,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;YAE3D,OAAO,cAAc,aAAa,IAAI,SAAS,EAAE,CAAC;QACpD,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/signing/signer.d.ts

@@ -0,0 +1,14 @@
+/**
+ * ServerSigner — signs EIP-712 messages for gateway write operations.
+ * Uses the ServerAccount's derived key for all signatures.
+ */
+import type { ServerAccount } from "../keys/server-account.js";
+import type { GatewayConfig } from "../schemas/server-config.js";
+import { type FileRegistrationMessage, type GrantRegistrationMessage, type GrantRevocationMessage } from "./eip712.js";
+export interface ServerSigner {
+    signFileRegistration(msg: FileRegistrationMessage): Promise<`0x${string}`>;
+    signGrantRegistration(msg: GrantRegistrationMessage): Promise<`0x${string}`>;
+    signGrantRevocation(msg: GrantRevocationMessage): Promise<`0x${string}`>;
+}
+export declare function createServerSigner(account: ServerAccount, gatewayConfig: GatewayConfig): ServerSigner;
+//# sourceMappingURL=signer.d.ts.map

package/dist/signing/signer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signer.d.ts","sourceRoot":"","sources":["../../src/signing/signer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC/D,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AACjE,OAAO,EAOL,KAAK,uBAAuB,EAC5B,KAAK,wBAAwB,EAC7B,KAAK,sBAAsB,EAC5B,MAAM,aAAa,CAAC;AAErB,MAAM,WAAW,YAAY;IAC3B,oBAAoB,CAAC,GAAG,EAAE,uBAAuB,GAAG,OAAO,CAAC,KAAK,MAAM,EAAE,CAAC,CAAC;IAC3E,qBAAqB,CAAC,GAAG,EAAE,wBAAwB,GAAG,OAAO,CAAC,KAAK,MAAM,EAAE,CAAC,CAAC;IAC7E,mBAAmB,CAAC,GAAG,EAAE,sBAAsB,GAAG,OAAO,CAAC,KAAK,MAAM,EAAE,CAAC,CAAC;CAC1E;AAED,wBAAgB,kBAAkB,CAChC,OAAO,EAAE,aAAa,EACtB,aAAa,EAAE,aAAa,GAC3B,YAAY,CAsCd"}

package/dist/signing/signer.js

@@ -0,0 +1,37 @@
+/**
+ * ServerSigner — signs EIP-712 messages for gateway write operations.
+ * Uses the ServerAccount's derived key for all signatures.
+ */
+import { fileRegistrationDomain, grantRegistrationDomain, grantRevocationDomain, FILE_REGISTRATION_TYPES, GRANT_REGISTRATION_TYPES, GRANT_REVOCATION_TYPES, } from "./eip712.js";
+export function createServerSigner(account, gatewayConfig) {
+    return {
+        async signFileRegistration(msg) {
+            return account.signTypedData({
+                domain: fileRegistrationDomain(gatewayConfig),
+                types: FILE_REGISTRATION_TYPES,
+                primaryType: "FileRegistration",
+                message: msg,
+            });
+        },
+        async signGrantRegistration(msg) {
+            return account.signTypedData({
+                domain: grantRegistrationDomain(gatewayConfig),
+                types: GRANT_REGISTRATION_TYPES,
+                primaryType: "GrantRegistration",
+                message: {
+                    ...msg,
+                    fileIds: msg.fileIds.map((id) => id),
+                },
+            });
+        },
+        async signGrantRevocation(msg) {
+            return account.signTypedData({
+                domain: grantRevocationDomain(gatewayConfig),
+                types: GRANT_REVOCATION_TYPES,
+                primaryType: "GrantRevocation",
+                message: msg,
+            });
+        },
+    };
+}
+//# sourceMappingURL=signer.js.map

package/dist/signing/signer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signer.js","sourceRoot":"","sources":["../../src/signing/signer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,EACL,sBAAsB,EACtB,uBAAuB,EACvB,qBAAqB,EACrB,uBAAuB,EACvB,wBAAwB,EACxB,sBAAsB,GAIvB,MAAM,aAAa,CAAC;AAQrB,MAAM,UAAU,kBAAkB,CAChC,OAAsB,EACtB,aAA4B;IAE5B,OAAO;QACL,KAAK,CAAC,oBAAoB,CACxB,GAA4B;YAE5B,OAAO,OAAO,CAAC,aAAa,CAAC;gBAC3B,MAAM,EAAE,sBAAsB,CAAC,aAAa,CAAC;gBAC7C,KAAK,EAAE,uBAAuB;gBAC9B,WAAW,EAAE,kBAAkB;gBAC/B,OAAO,EAAE,GAAyC;aACnD,CAAC,CAAC;QACL,CAAC;QAED,KAAK,CAAC,qBAAqB,CACzB,GAA6B;YAE7B,OAAO,OAAO,CAAC,aAAa,CAAC;gBAC3B,MAAM,EAAE,uBAAuB,CAAC,aAAa,CAAC;gBAC9C,KAAK,EAAE,wBAAwB;gBAC/B,WAAW,EAAE,mBAAmB;gBAChC,OAAO,EAAE;oBACP,GAAG,GAAG;oBACN,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC;iBACC;aACxC,CAAC,CAAC;QACL,CAAC;QAED,KAAK,CAAC,mBAAmB,CACvB,GAA2B;YAE3B,OAAO,OAAO,CAAC,aAAa,CAAC;gBAC3B,MAAM,EAAE,qBAAqB,CAAC,aAAa,CAAC;gBAC5C,KAAK,EAAE,sBAAsB;gBAC7B,WAAW,EAAE,iBAAiB;gBAC9B,OAAO,EAAE,GAAyC;aACnD,CAAC,CAAC;QACL,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/storage/adapters/index.d.ts

@@ -0,0 +1,3 @@
+export type { StorageAdapter } from "./interface.js";
+export { createVanaStorageAdapter, type VanaStorageOptions, type RequestSigner, } from "./vana.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/storage/adapters/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/storage/adapters/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AACrD,OAAO,EACL,wBAAwB,EACxB,KAAK,kBAAkB,EACvB,KAAK,aAAa,GACnB,MAAM,WAAW,CAAC"}

package/dist/storage/adapters/index.js

@@ -0,0 +1,2 @@
+export { createVanaStorageAdapter, } from "./vana.js";
+//# sourceMappingURL=index.js.map

package/dist/storage/adapters/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/storage/adapters/index.ts"],"names":[],"mappings":"AACA,OAAO,EACL,wBAAwB,GAGzB,MAAM,WAAW,CAAC"}

package/dist/storage/adapters/interface.d.ts

@@ -0,0 +1,47 @@
+/**
+ * Abstract storage backend adapter.
+ * All methods operate on encrypted binary blobs.
+ * Keys are opaque strings (e.g., "{scope}/{collectedAt}").
+ */
+export interface StorageAdapter {
+    /**
+     * Upload an encrypted blob to the storage backend.
+     * @param key - unique storage key / path
+     * @param data - encrypted binary data
+     * @returns URL where the blob is accessible
+     */
+    upload(key: string, data: Uint8Array): Promise<string>;
+    /**
+     * Download an encrypted blob from the storage backend.
+     * @param url - storage URL returned by upload()
+     * @returns encrypted binary data
+     * @throws if blob not found
+     */
+    download(url: string): Promise<Uint8Array>;
+    /**
+     * Delete an encrypted blob from the storage backend.
+     * @param url - storage URL
+     * @returns true if deleted, false if not found
+     */
+    delete(url: string): Promise<boolean>;
+    /**
+     * Check if a blob exists in the storage backend.
+     * @param url - storage URL
+     * @returns true if blob exists
+     */
+    exists(url: string): Promise<boolean>;
+    /**
+     * Bulk delete all blobs for a scope.
+     * Optional — not all backends support bulk delete.
+     * @param scope - scope identifier (dot notation)
+     * @returns count of blobs deleted
+     */
+    deleteScope?(scope: string): Promise<number>;
+    /**
+     * Delete all blobs for the owner.
+     * Optional — not all backends support bulk delete.
+     * @returns count of blobs deleted
+     */
+    deleteAll?(): Promise<number>;
+}
+//# sourceMappingURL=interface.d.ts.map

package/dist/storage/adapters/interface.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"interface.d.ts","sourceRoot":"","sources":["../../../src/storage/adapters/interface.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,WAAW,cAAc;IAC7B;;;;;OAKG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAEvD;;;;;OAKG;IACH,QAAQ,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IAE3C;;;;OAIG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAEtC;;;;OAIG;IACH,MAAM,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAEtC;;;;;OAKG;IACH,WAAW,CAAC,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAE7C;;;;OAIG;IACH,SAAS,CAAC,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC;CAC/B"}

package/dist/storage/adapters/interface.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=interface.js.map

package/dist/storage/adapters/interface.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"interface.js","sourceRoot":"","sources":["../../../src/storage/adapters/interface.ts"],"names":[],"mappings":""}

package/dist/storage/adapters/vana.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Vana Storage adapter.
+ * Uses REST: PUT/GET/DELETE/HEAD against {apiUrl}/v1/blobs/{ownerAddress}/{key}
+ * Auth: Web3Signed header on all requests (see vana-storage-design.md Section 3).
+ * URL format: full HTTPS URL (no vana:// scheme).
+ */
+import type { StorageAdapter } from "./interface.js";
+/**
+ * Signs HTTP requests for Web3Signed auth.
+ * Produces "Web3Signed {base64url(payload)}.{signature}" header values.
+ * Implementation provided by the caller (typically wraps the server keypair).
+ */
+export interface RequestSigner {
+    /**
+     * Produce a Web3Signed Authorization header value for an HTTP request.
+     * @param params - request metadata to sign
+     * @returns full Authorization header value (e.g., "Web3Signed ...")
+     */
+    signRequest(params: {
+        aud: string;
+        method: string;
+        uri: string;
+        body?: Uint8Array;
+    }): Promise<string>;
+}
+export interface VanaStorageOptions {
+    apiUrl: string;
+    ownerAddress: string;
+    signer: RequestSigner;
+}
+export declare function createVanaStorageAdapter(options: VanaStorageOptions): StorageAdapter;
+//# sourceMappingURL=vana.d.ts.map

package/dist/storage/adapters/vana.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vana.d.ts","sourceRoot":"","sources":["../../../src/storage/adapters/vana.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAErD;;;;GAIG;AACH,MAAM,WAAW,aAAa;IAC5B;;;;OAIG;IACH,WAAW,CAAC,MAAM,EAAE;QAClB,GAAG,EAAE,MAAM,CAAC;QACZ,MAAM,EAAE,MAAM,CAAC;QACf,GAAG,EAAE,MAAM,CAAC;QACZ,IAAI,CAAC,EAAE,UAAU,CAAC;KACnB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CACrB;AAED,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,aAAa,CAAC;CACvB;AAED,wBAAgB,wBAAwB,CACtC,OAAO,EAAE,kBAAkB,GAC1B,cAAc,CA6GhB"}

package/dist/storage/adapters/vana.js

@@ -0,0 +1,96 @@
+/**
+ * Vana Storage adapter.
+ * Uses REST: PUT/GET/DELETE/HEAD against {apiUrl}/v1/blobs/{ownerAddress}/{key}
+ * Auth: Web3Signed header on all requests (see vana-storage-design.md Section 3).
+ * URL format: full HTTPS URL (no vana:// scheme).
+ */
+export function createVanaStorageAdapter(options) {
+    const base = options.apiUrl.replace(/\/+$/, "");
+    const { ownerAddress, signer } = options;
+    function blobUrl(key) {
+        return `${base}/v1/blobs/${ownerAddress}/${key}`;
+    }
+    async function authHeaders(method, uri, body) {
+        const header = await signer.signRequest({
+            aud: options.apiUrl,
+            method,
+            uri,
+            body,
+        });
+        return { Authorization: header };
+    }
+    return {
+        async upload(key, data) {
+            const url = blobUrl(key);
+            const uri = `/v1/blobs/${ownerAddress}/${key}`;
+            const auth = await authHeaders("PUT", uri, data);
+            const res = await fetch(url, {
+                method: "PUT",
+                body: Buffer.from(data),
+                headers: {
+                    "Content-Type": "application/octet-stream",
+                    ...auth,
+                },
+            });
+            if (!res.ok) {
+                throw new Error(`Vana Storage upload failed: ${res.status} ${res.statusText}`);
+            }
+            return url;
+        },
+        async download(storageUrl) {
+            const uri = new URL(storageUrl).pathname;
+            const auth = await authHeaders("GET", uri);
+            const res = await fetch(storageUrl, { headers: auth });
+            if (res.status === 404) {
+                throw new Error(`Blob not found: ${storageUrl}`);
+            }
+            if (!res.ok) {
+                throw new Error(`Vana Storage download failed: ${res.status} ${res.statusText}`);
+            }
+            return new Uint8Array(await res.arrayBuffer());
+        },
+        async delete(storageUrl) {
+            const uri = new URL(storageUrl).pathname;
+            const auth = await authHeaders("DELETE", uri);
+            const res = await fetch(storageUrl, {
+                method: "DELETE",
+                headers: auth,
+            });
+            if (res.status === 404)
+                return false;
+            if (!res.ok) {
+                throw new Error(`Vana Storage delete failed: ${res.status} ${res.statusText}`);
+            }
+            return true;
+        },
+        async exists(storageUrl) {
+            const uri = new URL(storageUrl).pathname;
+            const auth = await authHeaders("HEAD", uri);
+            const res = await fetch(storageUrl, { method: "HEAD", headers: auth });
+            return res.ok;
+        },
+        async deleteScope(scope) {
+            const url = `${base}/v1/blobs/${ownerAddress}/${scope}`;
+            const uri = `/v1/blobs/${ownerAddress}/${scope}`;
+            const auth = await authHeaders("DELETE", uri);
+            const res = await fetch(url, { method: "DELETE", headers: auth });
+            if (!res.ok) {
+                throw new Error(`Vana Storage deleteScope failed: ${res.status} ${res.statusText}`);
+            }
+            const body = (await res.json());
+            return body.count ?? 0;
+        },
+        async deleteAll() {
+            const url = `${base}/v1/blobs/${ownerAddress}`;
+            const uri = `/v1/blobs/${ownerAddress}`;
+            const auth = await authHeaders("DELETE", uri);
+            const res = await fetch(url, { method: "DELETE", headers: auth });
+            if (!res.ok) {
+                throw new Error(`Vana Storage deleteAll failed: ${res.status} ${res.statusText}`);
+            }
+            const body = (await res.json());
+            return body.count ?? 0;
+        },
+    };
+}
+//# sourceMappingURL=vana.js.map

package/dist/storage/adapters/vana.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vana.js","sourceRoot":"","sources":["../../../src/storage/adapters/vana.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AA6BH,MAAM,UAAU,wBAAwB,CACtC,OAA2B;IAE3B,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IAChD,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;IAEzC,SAAS,OAAO,CAAC,GAAW;QAC1B,OAAO,GAAG,IAAI,aAAa,YAAY,IAAI,GAAG,EAAE,CAAC;IACnD,CAAC;IAED,KAAK,UAAU,WAAW,CACxB,MAAc,EACd,GAAW,EACX,IAAiB;QAEjB,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC;YACtC,GAAG,EAAE,OAAO,CAAC,MAAM;YACnB,MAAM;YACN,GAAG;YACH,IAAI;SACL,CAAC,CAAC;QACH,OAAO,EAAE,aAAa,EAAE,MAAM,EAAE,CAAC;IACnC,CAAC;IAED,OAAO;QACL,KAAK,CAAC,MAAM,CAAC,GAAG,EAAE,IAAI;YACpB,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;YACzB,MAAM,GAAG,GAAG,aAAa,YAAY,IAAI,GAAG,EAAE,CAAC;YAC/C,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;YACjD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAC3B,MAAM,EAAE,KAAK;gBACb,IAAI,EAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC;gBACvB,OAAO,EAAE;oBACP,cAAc,EAAE,0BAA0B;oBAC1C,GAAG,IAAI;iBACR;aACF,CAAC,CAAC;YACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CACb,+BAA+B,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CAC9D,CAAC;YACJ,CAAC;YACD,OAAO,GAAG,CAAC;QACb,CAAC;QAED,KAAK,CAAC,QAAQ,CAAC,UAAU;YACvB,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC;YACzC,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;YAC3C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YACvD,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBACvB,MAAM,IAAI,KAAK,CAAC,mBAAmB,UAAU,EAAE,CAAC,CAAC;YACnD,CAAC;YACD,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CACb,iCAAiC,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CAChE,CAAC;YACJ,CAAC;YACD,OAAO,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;QACjD,CAAC;QAED,KAAK,CAAC,MAAM,CAAC,UAAU;YACrB,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC;YACzC,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;YAC9C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,EAAE;gBAClC,MAAM,EAAE,QAAQ;gBAChB,OAAO,EAAE,IAAI;aACd,CAAC,CAAC;YACH,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG;gBAAE,OAAO,KAAK,CAAC;YACrC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CACb,+BAA+B,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CAC9D,CAAC;YACJ,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,KAAK,CAAC,MAAM,CAAC,UAAU;YACrB,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC;YACzC,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;YAC5C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YACvE,OAAO,GAAG,CAAC,EAAE,CAAC;QAChB,CAAC;QAED,KAAK,CAAC,WAAW,CAAC,KAAK;YACrB,MAAM,GAAG,GAAG,GAAG,IAAI,aAAa,YAAY,IAAI,KAAK,EAAE,CAAC;YACxD,MAAM,GAAG,GAAG,aAAa,YAAY,IAAI,KAAK,EAAE,CAAC;YACjD,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;YAC9C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YAClE,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CACb,oCAAoC,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CACnE,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAuB,CAAC;YACtD,OAAO,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC;QACzB,CAAC;QAED,KAAK,CAAC,SAAS;YACb,MAAM,GAAG,GAAG,GAAG,IAAI,aAAa,YAAY,EAAE,CAAC;YAC/C,MAAM,GAAG,GAAG,aAAa,YAAY,EAAE,CAAC;YACxC,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;YAC9C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;YAClE,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,IAAI,KAAK,CACb,kCAAkC,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CACjE,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAuB,CAAC;YACtD,OAAO,IAAI,CAAC,KAAK,IAAI,CAAC,CAAC;QACzB,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/storage/encryption/decrypt.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Decrypt an OpenPGP password-encrypted binary.
+ *
+ * @param encrypted - OpenPGP encrypted binary data
+ * @param password - hex-encoded scope key
+ * @returns plaintext Uint8Array
+ * @throws if password is wrong or data is corrupted
+ */
+export declare function decryptWithPassword(encrypted: Uint8Array, password: string): Promise<Uint8Array>;
+//# sourceMappingURL=decrypt.d.ts.map

package/dist/storage/encryption/decrypt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"decrypt.d.ts","sourceRoot":"","sources":["../../../src/storage/encryption/decrypt.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,wBAAsB,mBAAmB,CACvC,SAAS,EAAE,UAAU,EACrB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,UAAU,CAAC,CAQrB"}

package/dist/storage/encryption/decrypt.js

@@ -0,0 +1,19 @@
+import * as openpgp from "openpgp";
+/**
+ * Decrypt an OpenPGP password-encrypted binary.
+ *
+ * @param encrypted - OpenPGP encrypted binary data
+ * @param password - hex-encoded scope key
+ * @returns plaintext Uint8Array
+ * @throws if password is wrong or data is corrupted
+ */
+export async function decryptWithPassword(encrypted, password) {
+    const message = await openpgp.readMessage({ binaryMessage: encrypted });
+    const { data } = await openpgp.decrypt({
+        message,
+        passwords: [password],
+        format: "binary",
+    });
+    return data;
+}
+//# sourceMappingURL=decrypt.js.map

package/dist/storage/encryption/decrypt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"decrypt.js","sourceRoot":"","sources":["../../../src/storage/encryption/decrypt.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,OAAO,MAAM,SAAS,CAAC;AAEnC;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,SAAqB,EACrB,QAAgB;IAEhB,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,EAAE,aAAa,EAAE,SAAS,EAAE,CAAC,CAAC;IACxE,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC;QACrC,OAAO;QACP,SAAS,EAAE,CAAC,QAAQ,CAAC;QACrB,MAAM,EAAE,QAAQ;KACjB,CAAC,CAAC;IACH,OAAO,IAAkB,CAAC;AAC5B,CAAC"}

package/dist/storage/encryption/encrypt.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Encrypt plaintext using OpenPGP password-based encryption.
+ * Produces the same binary format as vana-sdk.
+ *
+ * @param plaintext - data to encrypt (typically JSON.stringify of envelope)
+ * @param password - hex-encoded scope key from deriveScopeKey()
+ * @returns OpenPGP encrypted binary (Uint8Array)
+ */
+export declare function encryptWithPassword(plaintext: Uint8Array, password: string): Promise<Uint8Array>;
+//# sourceMappingURL=encrypt.d.ts.map

package/dist/storage/encryption/encrypt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypt.d.ts","sourceRoot":"","sources":["../../../src/storage/encryption/encrypt.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,wBAAsB,mBAAmB,CACvC,SAAS,EAAE,UAAU,EACrB,QAAQ,EAAE,MAAM,GACf,OAAO,CAAC,UAAU,CAAC,CAQrB"}

package/dist/storage/encryption/encrypt.js

@@ -0,0 +1,19 @@
+import * as openpgp from "openpgp";
+/**
+ * Encrypt plaintext using OpenPGP password-based encryption.
+ * Produces the same binary format as vana-sdk.
+ *
+ * @param plaintext - data to encrypt (typically JSON.stringify of envelope)
+ * @param password - hex-encoded scope key from deriveScopeKey()
+ * @returns OpenPGP encrypted binary (Uint8Array)
+ */
+export async function encryptWithPassword(plaintext, password) {
+    const message = await openpgp.createMessage({ binary: plaintext });
+    const encrypted = await openpgp.encrypt({
+        message,
+        passwords: [password],
+        format: "binary",
+    });
+    return encrypted;
+}
+//# sourceMappingURL=encrypt.js.map

package/dist/storage/encryption/encrypt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypt.js","sourceRoot":"","sources":["../../../src/storage/encryption/encrypt.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,OAAO,MAAM,SAAS,CAAC;AAEnC;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,SAAqB,EACrB,QAAgB;IAEhB,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,aAAa,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC;IACnE,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,OAAO,CAAC;QACtC,OAAO;QACP,SAAS,EAAE,CAAC,QAAQ,CAAC;QACrB,MAAM,EAAE,QAAQ;KACjB,CAAC,CAAC;IACH,OAAO,SAAuB,CAAC;AACjC,CAAC"}

package/dist/storage/encryption/index.d.ts

@@ -0,0 +1,3 @@
+export { encryptWithPassword } from "./encrypt.js";
+export { decryptWithPassword } from "./decrypt.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/storage/encryption/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/storage/encryption/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC"}

package/dist/storage/encryption/index.js

@@ -0,0 +1,3 @@
+export { encryptWithPassword } from "./encrypt.js";
+export { decryptWithPassword } from "./decrypt.js";
+//# sourceMappingURL=index.js.map

package/dist/storage/encryption/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/storage/encryption/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC"}

package/dist/storage/hierarchy/index.d.ts

@@ -0,0 +1,4 @@
+export { timestampToFilename, filenameToTimestamp, buildDataFilePath, buildScopeDir, generateCollectedAt, } from "./paths.js";
+export { writeDataFile, readDataFile, listVersions, deleteDataFile, deleteAllForScope, } from "./manager.js";
+export type { HierarchyManagerOptions, WriteResult } from "./manager.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/storage/hierarchy/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/storage/hierarchy/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,mBAAmB,EACnB,iBAAiB,EACjB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAEpB,OAAO,EACL,aAAa,EACb,YAAY,EACZ,YAAY,EACZ,cAAc,EACd,iBAAiB,GAClB,MAAM,cAAc,CAAC;AAEtB,YAAY,EAAE,uBAAuB,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC"}

package/dist/storage/hierarchy/index.js

@@ -0,0 +1,3 @@
+export { timestampToFilename, filenameToTimestamp, buildDataFilePath, buildScopeDir, generateCollectedAt, } from "./paths.js";
+export { writeDataFile, readDataFile, listVersions, deleteDataFile, deleteAllForScope, } from "./manager.js";
+//# sourceMappingURL=index.js.map

package/dist/storage/hierarchy/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/storage/hierarchy/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,mBAAmB,EACnB,iBAAiB,EACjB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAEpB,OAAO,EACL,aAAa,EACb,YAAY,EACZ,YAAY,EACZ,cAAc,EACd,iBAAiB,GAClB,MAAM,cAAc,CAAC"}

package/dist/storage/hierarchy/manager.d.ts

@@ -0,0 +1,23 @@
+import type { DataFileEnvelope } from "../../schemas/data-file.js";
+export interface HierarchyManagerOptions {
+    dataDir: string;
+}
+export interface WriteResult {
+    path: string;
+    relativePath: string;
+    sizeBytes: number;
+}
+/** Atomic write: mkdir -p, write temp file, rename */
+export declare function writeDataFile(options: HierarchyManagerOptions, envelope: DataFileEnvelope): Promise<WriteResult>;
+/** Read and parse a data file */
+export declare function readDataFile(options: HierarchyManagerOptions, scope: string, collectedAt: string): Promise<DataFileEnvelope>;
+/** List version filenames for a scope, newest first. Empty array if scope dir doesn't exist. */
+export declare function listVersions(options: HierarchyManagerOptions, scope: string): Promise<string[]>;
+/** Delete a single data file */
+export declare function deleteDataFile(options: HierarchyManagerOptions, scope: string, collectedAt: string): Promise<void>;
+/**
+ * Delete all files for a scope by removing the scope directory recursively.
+ * No-op if directory doesn't exist.
+ */
+export declare function deleteAllForScope(options: HierarchyManagerOptions, scope: string): Promise<void>;
+//# sourceMappingURL=manager.d.ts.map

package/dist/storage/hierarchy/manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"manager.d.ts","sourceRoot":"","sources":["../../../src/storage/hierarchy/manager.ts"],"names":[],"mappings":"AAYA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,4BAA4B,CAAC;AAQnE,MAAM,WAAW,uBAAuB;IACtC,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,sDAAsD;AACtD,wBAAsB,aAAa,CACjC,OAAO,EAAE,uBAAuB,EAChC,QAAQ,EAAE,gBAAgB,GACzB,OAAO,CAAC,WAAW,CAAC,CAuBtB;AAED,iCAAiC;AACjC,wBAAsB,YAAY,CAChC,OAAO,EAAE,uBAAuB,EAChC,KAAK,EAAE,MAAM,EACb,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,gBAAgB,CAAC,CAI3B;AAED,gGAAgG;AAChG,wBAAsB,YAAY,CAChC,OAAO,EAAE,uBAAuB,EAChC,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,MAAM,EAAE,CAAC,CAmBnB;AAED,gCAAgC;AAChC,wBAAsB,cAAc,CAClC,OAAO,EAAE,uBAAuB,EAChC,KAAK,EAAE,MAAM,EACb,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,IAAI,CAAC,CAGf;AAED;;;GAGG;AACH,wBAAsB,iBAAiB,CACrC,OAAO,EAAE,uBAAuB,EAChC,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,IAAI,CAAC,CAGf"}

package/dist/storage/hierarchy/manager.js

@@ -0,0 +1,60 @@
+import { mkdir, readFile, writeFile, readdir, unlink, rename, stat, rm, } from "node:fs/promises";
+import { dirname, relative } from "node:path";
+import { randomUUID } from "node:crypto";
+import { DataFileEnvelopeSchema } from "../../schemas/data-file.js";
+import { buildDataFilePath, buildScopeDir, filenameToTimestamp, } from "./paths.js";
+/** Atomic write: mkdir -p, write temp file, rename */
+export async function writeDataFile(options, envelope) {
+    const filePath = buildDataFilePath(options.dataDir, envelope.scope, envelope.collectedAt);
+    const dir = dirname(filePath);
+    await mkdir(dir, { recursive: true });
+    const content = JSON.stringify(envelope, null, 2);
+    const tempPath = filePath + ".tmp." + randomUUID();
+    await writeFile(tempPath, content, "utf-8");
+    await rename(tempPath, filePath);
+    const stats = await stat(filePath);
+    return {
+        path: filePath,
+        relativePath: relative(options.dataDir, filePath),
+        sizeBytes: stats.size,
+    };
+}
+/** Read and parse a data file */
+export async function readDataFile(options, scope, collectedAt) {
+    const filePath = buildDataFilePath(options.dataDir, scope, collectedAt);
+    const content = await readFile(filePath, "utf-8");
+    return DataFileEnvelopeSchema.parse(JSON.parse(content));
+}
+/** List version filenames for a scope, newest first. Empty array if scope dir doesn't exist. */
+export async function listVersions(options, scope) {
+    const scopeDir = buildScopeDir(options.dataDir, scope);
+    let entries;
+    try {
+        entries = await readdir(scopeDir);
+    }
+    catch (err) {
+        if (err.code === "ENOENT") {
+            return [];
+        }
+        throw err;
+    }
+    const jsonFiles = entries
+        .filter((f) => f.endsWith(".json"))
+        .sort()
+        .reverse();
+    return jsonFiles.map((f) => filenameToTimestamp(f.replace(".json", "")));
+}
+/** Delete a single data file */
+export async function deleteDataFile(options, scope, collectedAt) {
+    const filePath = buildDataFilePath(options.dataDir, scope, collectedAt);
+    await unlink(filePath);
+}
+/**
+ * Delete all files for a scope by removing the scope directory recursively.
+ * No-op if directory doesn't exist.
+ */
+export async function deleteAllForScope(options, scope) {
+    const scopeDir = buildScopeDir(options.dataDir, scope);
+    await rm(scopeDir, { recursive: true, force: true });
+}
+//# sourceMappingURL=manager.js.map

package/dist/storage/hierarchy/manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"manager.js","sourceRoot":"","sources":["../../../src/storage/hierarchy/manager.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,EACL,QAAQ,EACR,SAAS,EACT,OAAO,EACP,MAAM,EACN,MAAM,EACN,IAAI,EACJ,EAAE,GACH,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAC9C,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,OAAO,EAAE,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AACpE,OAAO,EACL,iBAAiB,EACjB,aAAa,EACb,mBAAmB,GACpB,MAAM,YAAY,CAAC;AAYpB,sDAAsD;AACtD,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,OAAgC,EAChC,QAA0B;IAE1B,MAAM,QAAQ,GAAG,iBAAiB,CAChC,OAAO,CAAC,OAAO,EACf,QAAQ,CAAC,KAAK,EACd,QAAQ,CAAC,WAAW,CACrB,CAAC;IACF,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;IAE9B,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAEtC,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAClD,MAAM,QAAQ,GAAG,QAAQ,GAAG,OAAO,GAAG,UAAU,EAAE,CAAC;IAEnD,MAAM,SAAS,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;IAC5C,MAAM,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAEjC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,CAAC;IAEnC,OAAO;QACL,IAAI,EAAE,QAAQ;QACd,YAAY,EAAE,QAAQ,CAAC,OAAO,CAAC,OAAO,EAAE,QAAQ,CAAC;QACjD,SAAS,EAAE,KAAK,CAAC,IAAI;KACtB,CAAC;AACJ,CAAC;AAED,iCAAiC;AACjC,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,OAAgC,EAChC,KAAa,EACb,WAAmB;IAEnB,MAAM,QAAQ,GAAG,iBAAiB,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;IACxE,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAClD,OAAO,sBAAsB,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC;AAC3D,CAAC;AAED,gGAAgG;AAChG,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,OAAgC,EAChC,KAAa;IAEb,MAAM,QAAQ,GAAG,aAAa,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IAEvD,IAAI,OAAiB,CAAC;IACtB,IAAI,CAAC;QACH,OAAO,GAAG,MAAM,OAAO,CAAC,QAAQ,CAAC,CAAC;IACpC,CAAC;IAAC,OAAO,GAAY,EAAE,CAAC;QACtB,IAAK,GAA6B,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YACrD,OAAO,EAAE,CAAC;QACZ,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,MAAM,SAAS,GAAG,OAAO;SACtB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;SAClC,IAAI,EAAE;SACN,OAAO,EAAE,CAAC;IAEb,OAAO,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,mBAAmB,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC;AAC3E,CAAC;AAED,gCAAgC;AAChC,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,OAAgC,EAChC,KAAa,EACb,WAAmB;IAEnB,MAAM,QAAQ,GAAG,iBAAiB,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;IACxE,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;AACzB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,OAAgC,EAChC,KAAa;IAEb,MAAM,QAAQ,GAAG,aAAa,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IACvD,MAAM,EAAE,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;AACvD,CAAC"}

package/dist/storage/hierarchy/paths.d.ts

@@ -0,0 +1,11 @@
+/** "2026-01-21T10:00:00Z" → "2026-01-21T10-00-00Z" */
+export declare function timestampToFilename(isoTimestamp: string): string;
+/** "2026-01-21T10-00-00Z" → "2026-01-21T10:00:00Z" */
+export declare function filenameToTimestamp(filename: string): string;
+/** Full file path: join(baseDir, ...scopeSegments, timestamp.json) */
+export declare function buildDataFilePath(baseDir: string, scope: string, collectedAt: string): string;
+/** Directory path for a scope */
+export declare function buildScopeDir(baseDir: string, scope: string): string;
+/** Generate current UTC timestamp without milliseconds, ending in Z */
+export declare function generateCollectedAt(): string;
+//# sourceMappingURL=paths.d.ts.map

package/dist/storage/hierarchy/paths.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"paths.d.ts","sourceRoot":"","sources":["../../../src/storage/hierarchy/paths.ts"],"names":[],"mappings":"AAGA,sDAAsD;AACtD,wBAAgB,mBAAmB,CAAC,YAAY,EAAE,MAAM,GAAG,MAAM,CAEhE;AAED,sDAAsD;AACtD,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAS5D;AAED,sEAAsE;AACtE,wBAAgB,iBAAiB,CAC/B,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,WAAW,EAAE,MAAM,GAClB,MAAM,CAIR;AAED,iCAAiC;AACjC,wBAAgB,aAAa,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,CAGpE;AAED,uEAAuE;AACvE,wBAAgB,mBAAmB,IAAI,MAAM,CAI5C"}