npm - @openkeyai/tool-manifest - Versions diffs - 0.1.0 - Mend

@openkeyai/tool-manifest 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (21) hide show

package/dist/index.d.cts ADDED Viewed

@@ -0,0 +1,110 @@
+import { ToolManifest } from './schema.cjs';
+export { ProviderSlug, ProviderSlugEnum, RuntimeTier, RuntimeTierEnum, ToolManifestSchema, ToolOwner, ToolOwnerSchema, ToolScope, ToolScopeEnum } from './schema.cjs';
+export { ZodError } from 'zod';
+/**
+ * Parse + validate a `tool.json` payload. Pass either the parsed object or
+ * the raw JSON string; we handle both.
+ *
+ * Returns the typed manifest on success.
+ * Throws `ZodError` on schema failure (caller can `instanceof ZodError`).
+ * Throws `Error` on JSON parse failure.
+ */
+declare function validateManifest(input: unknown): ToolManifest;
+/**
+ * Convenience — read + parse + validate a tool.json from disk.
+ *
+ * Used by the CLI and by the auto-scaffolder. Returns the manifest on
+ * success; throws otherwise.
+ */
+declare function validateManifestFile(path: string): ToolManifest;
+/**
+ * Source scanner.
+ *
+ * Walks a tool's source tree and returns a list of contract violations.
+ * The CLI (`okai-scan`) wraps this; tool CI calls it directly.
+ *
+ * Design notes:
+ *
+ *   - **Regex / text scanning over AST.** A real TS AST parse (ts-morph)
+ *     catches more edge cases but adds ~5MB of deps and noticeable cold-
+ *     start time on every tool's CI. The patterns we enforce in v1 are
+ *     simple string matches; we're catching obvious violations, not
+ *     adversarial code. If we ever need to enforce something subtle (e.g.
+ *     "you mounted HubHeader but inside a `{false && ...}` branch") we
+ *     can swap the backend later — the public function signature won't
+ *     change.
+ *
+ *   - **Heuristic file matching.** We treat any file matching
+ *     `**\/layout.{ts,tsx,js,jsx,mjs,cjs}` as a "layout" candidate, which
+ *     covers both Next.js App Router (`app/layout.tsx`) and the variants
+ *     containers use (`src/layout.tsx`, etc).
+ *
+ *   - **Single-pass walk.** Bigger tools have hundreds of source files;
+ *     doing one walk and routing each file to all rules keeps it linear.
+ *
+ *   - **No file IO outside `srcDir`.** Safe to point at any directory;
+ *     we don't write anything.
+ */
+type ScannerViolation = {
+    /** Stable code so tool authors can suppress / look up. */
+    code: "missing-hubheader-import" | "missing-hubheader-mount" | "banned-internal-import" | "manifest-missing" | "manifest-invalid" | "io-error";
+    /** Human-readable. Surface this in CI logs. */
+    message: string;
+    /** Relative path inside `srcDir` (or `tool.json` for manifest issues). */
+    file?: string;
+    /** 1-based line number for source-file violations. */
+    line?: number;
+};
+type ScanInput = {
+    /**
+     * Directory containing the tool's source code (usually `src/` or `app/`
+     * or the repo root). The scanner walks recursively.
+     */
+    srcDir: string;
+    /**
+     * Optional path to `tool.json`. If provided, the manifest is loaded and
+     * validated against the schema; failures are reported as scanner
+     * violations. Defaults to no manifest check (you can call
+     * `validateManifestFile` directly).
+     */
+    manifestPath?: string;
+};
+type ScanResult = {
+    violations: ScannerViolation[];
+    /** Files actually walked — useful for CI logs. */
+    scannedFileCount: number;
+};
+/**
+ * Scan a tool's source tree for contract violations.
+ *
+ * This function makes no assumptions about the tool's framework. It just
+ * walks `srcDir`, applies a small set of rules, and reports what it sees.
+ */
+declare function scanToolSource(input: ScanInput): ScanResult;
+/**
+ * `@openkeyai/tool-manifest` — public entry.
+ *
+ * Three surfaces:
+ *
+ *   1. The Zod schema (`ToolManifestSchema`) — frozen shape of every
+ *      tool's `tool.json`. Re-exported via the `./schema` subpath too,
+ *      so consumers that ONLY need the schema can avoid pulling the
+ *      filesystem-touching scanner code.
+ *
+ *   2. `validateManifest(json)` / `validateManifestFile(path)` —
+ *      convenience wrappers around `ToolManifestSchema.parse`.
+ *
+ *   3. `scanToolSource({ srcDir, manifestPath? })` — walks the tool's
+ *      source tree and returns contract violations. Used by tool CI
+ *      and the auto-scaffolder.
+ *
+ * The CLI (`okai-scan`) is a thin wrapper around these — `bin/cli.ts`.
+ */
+/** Bumped on each release. */
+declare const TOOL_MANIFEST_VERSION = "0.1.0";
+export { type ScanInput, type ScanResult, type ScannerViolation, TOOL_MANIFEST_VERSION, ToolManifest, scanToolSource, validateManifest, validateManifestFile };

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,110 @@
+import { ToolManifest } from './schema.js';
+export { ProviderSlug, ProviderSlugEnum, RuntimeTier, RuntimeTierEnum, ToolManifestSchema, ToolOwner, ToolOwnerSchema, ToolScope, ToolScopeEnum } from './schema.js';
+export { ZodError } from 'zod';
+/**
+ * Parse + validate a `tool.json` payload. Pass either the parsed object or
+ * the raw JSON string; we handle both.
+ *
+ * Returns the typed manifest on success.
+ * Throws `ZodError` on schema failure (caller can `instanceof ZodError`).
+ * Throws `Error` on JSON parse failure.
+ */
+declare function validateManifest(input: unknown): ToolManifest;
+/**
+ * Convenience — read + parse + validate a tool.json from disk.
+ *
+ * Used by the CLI and by the auto-scaffolder. Returns the manifest on
+ * success; throws otherwise.
+ */
+declare function validateManifestFile(path: string): ToolManifest;
+/**
+ * Source scanner.
+ *
+ * Walks a tool's source tree and returns a list of contract violations.
+ * The CLI (`okai-scan`) wraps this; tool CI calls it directly.
+ *
+ * Design notes:
+ *
+ *   - **Regex / text scanning over AST.** A real TS AST parse (ts-morph)
+ *     catches more edge cases but adds ~5MB of deps and noticeable cold-
+ *     start time on every tool's CI. The patterns we enforce in v1 are
+ *     simple string matches; we're catching obvious violations, not
+ *     adversarial code. If we ever need to enforce something subtle (e.g.
+ *     "you mounted HubHeader but inside a `{false && ...}` branch") we
+ *     can swap the backend later — the public function signature won't
+ *     change.
+ *
+ *   - **Heuristic file matching.** We treat any file matching
+ *     `**\/layout.{ts,tsx,js,jsx,mjs,cjs}` as a "layout" candidate, which
+ *     covers both Next.js App Router (`app/layout.tsx`) and the variants
+ *     containers use (`src/layout.tsx`, etc).
+ *
+ *   - **Single-pass walk.** Bigger tools have hundreds of source files;
+ *     doing one walk and routing each file to all rules keeps it linear.
+ *
+ *   - **No file IO outside `srcDir`.** Safe to point at any directory;
+ *     we don't write anything.
+ */
+type ScannerViolation = {
+    /** Stable code so tool authors can suppress / look up. */
+    code: "missing-hubheader-import" | "missing-hubheader-mount" | "banned-internal-import" | "manifest-missing" | "manifest-invalid" | "io-error";
+    /** Human-readable. Surface this in CI logs. */
+    message: string;
+    /** Relative path inside `srcDir` (or `tool.json` for manifest issues). */
+    file?: string;
+    /** 1-based line number for source-file violations. */
+    line?: number;
+};
+type ScanInput = {
+    /**
+     * Directory containing the tool's source code (usually `src/` or `app/`
+     * or the repo root). The scanner walks recursively.
+     */
+    srcDir: string;
+    /**
+     * Optional path to `tool.json`. If provided, the manifest is loaded and
+     * validated against the schema; failures are reported as scanner
+     * violations. Defaults to no manifest check (you can call
+     * `validateManifestFile` directly).
+     */
+    manifestPath?: string;
+};
+type ScanResult = {
+    violations: ScannerViolation[];
+    /** Files actually walked — useful for CI logs. */
+    scannedFileCount: number;
+};
+/**
+ * Scan a tool's source tree for contract violations.
+ *
+ * This function makes no assumptions about the tool's framework. It just
+ * walks `srcDir`, applies a small set of rules, and reports what it sees.
+ */
+declare function scanToolSource(input: ScanInput): ScanResult;
+/**
+ * `@openkeyai/tool-manifest` — public entry.
+ *
+ * Three surfaces:
+ *
+ *   1. The Zod schema (`ToolManifestSchema`) — frozen shape of every
+ *      tool's `tool.json`. Re-exported via the `./schema` subpath too,
+ *      so consumers that ONLY need the schema can avoid pulling the
+ *      filesystem-touching scanner code.
+ *
+ *   2. `validateManifest(json)` / `validateManifestFile(path)` —
+ *      convenience wrappers around `ToolManifestSchema.parse`.
+ *
+ *   3. `scanToolSource({ srcDir, manifestPath? })` — walks the tool's
+ *      source tree and returns contract violations. Used by tool CI
+ *      and the auto-scaffolder.
+ *
+ * The CLI (`okai-scan`) is a thin wrapper around these — `bin/cli.ts`.
+ */
+/** Bumped on each release. */
+declare const TOOL_MANIFEST_VERSION = "0.1.0";
+export { type ScanInput, type ScanResult, type ScannerViolation, TOOL_MANIFEST_VERSION, ToolManifest, scanToolSource, validateManifest, validateManifestFile };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,218 @@
+import { z } from 'zod';
+export { ZodError } from 'zod';
+import { readFileSync, statSync, readdirSync } from 'fs';
+import { join, relative } from 'path';
+// src/schema.ts
+var slugRegex = /^[a-z][a-z0-9-]{1,38}[a-z0-9]$/;
+var ToolScopeEnum = z.enum(["keys.read", "user.read", "billing.read"]);
+var ProviderSlugEnum = z.enum([
+  "openai",
+  "anthropic",
+  "google",
+  "replicate",
+  "elevenlabs",
+  "fal"
+]);
+var RuntimeTierEnum = z.enum(["edge", "container"]);
+var ToolOwnerSchema = z.object({
+  name: z.string().min(1).max(80),
+  email: z.string().email().optional(),
+  github: z.string().regex(/^[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,38}[a-zA-Z0-9])?$/, "github handle").optional()
+});
+var ToolManifestSchema = z.object({
+  /** Stable URL-safe identifier. Becomes the JWT's `aud` claim. */
+  slug: z.string().regex(slugRegex, "slug must be lowercase kebab-case, 3\u201340 chars"),
+  /** Human-readable name shown in the catalog and HubHeader. */
+  name: z.string().min(1).max(80),
+  /** One-sentence catalog description. */
+  description: z.string().max(280).default(""),
+  /** Tool version (semver). */
+  version: z.string().regex(/^\d+\.\d+\.\d+(?:-[\w.+-]+)?$/, "semver"),
+  /** Runtime tier — picks template + deploy pipeline. */
+  runtime: RuntimeTierEnum,
+  /** Scopes the tool may request when minting a JWT. Min 1. */
+  scopes: z.array(ToolScopeEnum).min(1),
+  /** API provider slugs the tool may fetch keys for. */
+  providers: z.array(ProviderSlugEnum).default([]),
+  /** Public homepage / docs URL. Surfaced in the hub catalog. */
+  homepage: z.string().url().optional(),
+  /** Where the hub sends users after issuing a token. https only. */
+  callback_url: z.string().url().refine((u) => u.startsWith("https://"), "callback_url must be https://"),
+  /** Tool owner. */
+  owner: ToolOwnerSchema,
+  /** Semver range the tool was built against. Hub uses this for compat warnings. */
+  sdk_version: z.string().min(1),
+  /** Optional category for catalog grouping (e.g. "media", "writing"). */
+  category: z.string().min(1).max(40).optional()
+});
+function validateManifest(input) {
+  let json;
+  if (typeof input === "string") {
+    json = JSON.parse(input);
+  } else {
+    json = input;
+  }
+  return ToolManifestSchema.parse(json);
+}
+function validateManifestFile(path) {
+  const raw = readFileSync(path, "utf8");
+  return validateManifest(raw);
+}
+var SOURCE_EXTS = /* @__PURE__ */ new Set([".ts", ".tsx", ".js", ".jsx", ".mjs", ".cjs"]);
+var SKIP_DIRS = /* @__PURE__ */ new Set([
+  "node_modules",
+  "dist",
+  ".next",
+  ".open-next",
+  ".turbo",
+  "build",
+  "out",
+  "coverage",
+  ".git"
+]);
+var PATTERNS = {
+  /** ESM/CJS import OR a `require()` of @openkeyai/ui. */
+  uiImport: /\bfrom\s+['"]@openkeyai\/ui(?:\/[^'"]+)?['"]|require\(\s*['"]@openkeyai\/ui(?:\/[^'"]+)?['"]/,
+  /** Mounted JSX: `<HubHeader …` (open tag). */
+  hubHeaderJsx: /<\s*HubHeader\b/,
+  /** Named import containing `HubHeader`. */
+  hubHeaderImport: /\bimport\b[^;\n]*?\bHubHeader\b[^;\n]*?from\s+['"]@openkeyai\/ui/,
+  /** Any import from `@openkeyai/sdk/_internal/*` — banned. */
+  bannedInternal: /from\s+['"]@openkeyai\/sdk\/_internal(?:\/[^'"]*)?['"]|require\(\s*['"]@openkeyai\/sdk\/_internal(?:\/[^'"]*)?['"]/
+};
+function isLayoutFile(relPath) {
+  const segments = relPath.split(/[\\/]/);
+  const base = segments[segments.length - 1] ?? "";
+  return /^layout\.(ts|tsx|js|jsx|mjs|cjs)$/.test(base);
+}
+function* walkSourceFiles(root, dir) {
+  let entries;
+  try {
+    entries = readdirSync(dir, { withFileTypes: true });
+  } catch {
+    return;
+  }
+  for (const entry of entries) {
+    if (entry.isDirectory()) {
+      if (SKIP_DIRS.has(entry.name) || entry.name.startsWith(".")) continue;
+      yield* walkSourceFiles(root, join(dir, entry.name));
+      continue;
+    }
+    if (!entry.isFile()) continue;
+    const idx = entry.name.lastIndexOf(".");
+    const ext = idx === -1 ? "" : entry.name.slice(idx).toLowerCase();
+    if (!SOURCE_EXTS.has(ext)) continue;
+    const absPath = join(dir, entry.name);
+    yield { relPath: relative(root, absPath), absPath };
+  }
+}
+function lineOf(text, regex) {
+  const m = regex.exec(text);
+  if (!m) return void 0;
+  const upto = text.slice(0, m.index);
+  return upto.split("\n").length;
+}
+function scanToolSource(input) {
+  const violations = [];
+  let scannedFileCount = 0;
+  let foundHubHeaderImport = false;
+  let foundHubHeaderMount = false;
+  let firstLayoutFile;
+  let srcExists = false;
+  try {
+    statSync(input.srcDir);
+    srcExists = true;
+  } catch {
+    violations.push({
+      code: "io-error",
+      message: `srcDir does not exist: ${input.srcDir}`
+    });
+  }
+  if (srcExists) {
+    for (const { relPath, absPath } of walkSourceFiles(
+      input.srcDir,
+      input.srcDir
+    )) {
+      scannedFileCount += 1;
+      let body;
+      try {
+        body = readFileSync(absPath, "utf8");
+      } catch (err) {
+        violations.push({
+          code: "io-error",
+          message: `Could not read file: ${err instanceof Error ? err.message : "unknown"}`,
+          file: relPath
+        });
+        continue;
+      }
+      const bannedLine = lineOf(body, PATTERNS.bannedInternal);
+      if (bannedLine !== void 0) {
+        violations.push({
+          code: "banned-internal-import",
+          message: "@openkeyai/sdk/_internal is not a public surface and may change without notice. Import only from the package root.",
+          file: relPath,
+          line: bannedLine
+        });
+      }
+      if (isLayoutFile(relPath)) {
+        if (firstLayoutFile === void 0) firstLayoutFile = relPath;
+        if (PATTERNS.hubHeaderImport.test(body)) {
+          foundHubHeaderImport = true;
+        }
+        if (PATTERNS.hubHeaderJsx.test(body)) {
+          foundHubHeaderMount = true;
+        }
+      } else if (PATTERNS.uiImport.test(body) && PATTERNS.hubHeaderJsx.test(body)) {
+        foundHubHeaderMount = true;
+        if (PATTERNS.hubHeaderImport.test(body)) {
+          foundHubHeaderImport = true;
+        }
+      }
+    }
+    if (!foundHubHeaderImport) {
+      violations.push({
+        code: "missing-hubheader-import",
+        message: "No layout file imports `HubHeader` from `@openkeyai/ui`. Every tool must mount the shared header.",
+        file: firstLayoutFile ?? "app/layout.tsx"
+      });
+    }
+    if (!foundHubHeaderMount) {
+      violations.push({
+        code: "missing-hubheader-mount",
+        message: "`<HubHeader />` is not mounted anywhere in the source tree. Place it in your root layout.",
+        file: firstLayoutFile ?? "app/layout.tsx"
+      });
+    }
+  }
+  if (input.manifestPath) {
+    try {
+      const raw = readFileSync(input.manifestPath, "utf8");
+      const json = JSON.parse(raw);
+      const parsed = ToolManifestSchema.safeParse(json);
+      if (!parsed.success) {
+        for (const issue of parsed.error.issues) {
+          violations.push({
+            code: "manifest-invalid",
+            message: `${issue.path.join(".") || "(root)"} \u2014 ${issue.message}`,
+            file: input.manifestPath
+          });
+        }
+      }
+    } catch (err) {
+      violations.push({
+        code: "manifest-missing",
+        message: `Could not read tool.json: ${err instanceof Error ? err.message : "unknown"}`,
+        file: input.manifestPath
+      });
+    }
+  }
+  return { violations, scannedFileCount };
+}
+// src/index.ts
+var TOOL_MANIFEST_VERSION = "0.1.0";
+export { ProviderSlugEnum, RuntimeTierEnum, TOOL_MANIFEST_VERSION, ToolManifestSchema, ToolOwnerSchema, ToolScopeEnum, scanToolSource, validateManifest, validateManifestFile };
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/schema.ts","../src/validate.ts","../src/scanner.ts","../src/index.ts"],"names":["readFileSync"],"mappings":";;;;;;AAsBA,IAAM,SAAA,GAAY,gCAAA;AAGX,IAAM,gBAAgB,CAAA,CAAE,IAAA,CAAK,CAAC,WAAA,EAAa,WAAA,EAAa,cAAc,CAAC;AAIvE,IAAM,gBAAA,GAAmB,EAAE,IAAA,CAAK;AAAA,EACrC,QAAA;AAAA,EACA,WAAA;AAAA,EACA,QAAA;AAAA,EACA,WAAA;AAAA,EACA,YAAA;AAAA,EACA;AACF,CAAC;AAIM,IAAM,kBAAkB,CAAA,CAAE,IAAA,CAAK,CAAC,MAAA,EAAQ,WAAW,CAAC;AAIpD,IAAM,eAAA,GAAkB,EAAE,MAAA,CAAO;AAAA,EACtC,IAAA,EAAM,EAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EAC9B,OAAO,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,GAAQ,QAAA,EAAS;AAAA,EACnC,MAAA,EAAQ,EACL,MAAA,EAAO,CACP,MAAM,iDAAA,EAAmD,eAAe,EACxE,QAAA;AACL,CAAC;AAIM,IAAM,kBAAA,GAAqB,EAAE,MAAA,CAAO;AAAA;AAAA,EAEzC,MAAM,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,WAAW,oDAA+C,CAAA;AAAA;AAAA,EAEjF,IAAA,EAAM,EAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA;AAAA,EAE9B,WAAA,EAAa,EAAE,MAAA,EAAO,CAAE,IAAI,GAAG,CAAA,CAAE,QAAQ,EAAE,CAAA;AAAA;AAAA,EAE3C,SAAS,CAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,iCAAiC,QAAQ,CAAA;AAAA;AAAA,EAEnE,OAAA,EAAS,eAAA;AAAA;AAAA,EAET,QAAQ,CAAA,CAAE,KAAA,CAAM,aAAa,CAAA,CAAE,IAAI,CAAC,CAAA;AAAA;AAAA,EAEpC,WAAW,CAAA,CAAE,KAAA,CAAM,gBAAgB,CAAA,CAAE,OAAA,CAAQ,EAAE,CAAA;AAAA;AAAA,EAE/C,UAAU,CAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA,EAAS;AAAA;AAAA,EAEpC,YAAA,EAAc,CAAA,CACX,MAAA,EAAO,CACP,GAAA,EAAI,CACJ,MAAA,CAAO,CAAC,CAAA,KAAM,CAAA,CAAE,UAAA,CAAW,UAAU,GAAG,+BAA+B,CAAA;AAAA;AAAA,EAE1E,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,WAAA,EAAa,CAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA;AAAA,EAE7B,QAAA,EAAU,CAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,CAAC,CAAA,CAAE,GAAA,CAAI,EAAE,CAAA,CAAE,QAAA;AACtC,CAAC;ACxEM,SAAS,iBAAiB,KAAA,EAA8B;AAC7D,EAAA,IAAI,IAAA;AACJ,EAAA,IAAI,OAAO,UAAU,QAAA,EAAU;AAC7B,IAAA,IAAA,GAAO,IAAA,CAAK,MAAM,KAAK,CAAA;AAAA,EACzB,CAAA,MAAO;AACL,IAAA,IAAA,GAAO,KAAA;AAAA,EACT;AACA,EAAA,OAAO,kBAAA,CAAmB,MAAM,IAAI,CAAA;AACtC;AAQO,SAAS,qBAAqB,IAAA,EAA4B;AAC/D,EAAA,MAAM,GAAA,GAAM,YAAA,CAAa,IAAA,EAAM,MAAM,CAAA;AACrC,EAAA,OAAO,iBAAiB,GAAG,CAAA;AAC7B;AC0CA,IAAM,WAAA,mBAAc,IAAI,GAAA,CAAI,CAAC,KAAA,EAAO,QAAQ,KAAA,EAAO,MAAA,EAAQ,MAAA,EAAQ,MAAM,CAAC,CAAA;AAG1E,IAAM,SAAA,uBAAgB,GAAA,CAAI;AAAA,EACxB,cAAA;AAAA,EACA,MAAA;AAAA,EACA,OAAA;AAAA,EACA,YAAA;AAAA,EACA,QAAA;AAAA,EACA,OAAA;AAAA,EACA,KAAA;AAAA,EACA,UAAA;AAAA,EACA;AACF,CAAC,CAAA;AAID,IAAM,QAAA,GAAW;AAAA;AAAA,EAEf,QAAA,EAAU,8FAAA;AAAA;AAAA,EAEV,YAAA,EAAc,iBAAA;AAAA;AAAA,EAEd,eAAA,EAAiB,kEAAA;AAAA;AAAA,EAEjB,cAAA,EAAgB;AAClB,CAAA;AAGA,SAAS,aAAa,OAAA,EAA0B;AAG9C,EAAA,MAAM,QAAA,GAAW,OAAA,CAAQ,KAAA,CAAM,OAAO,CAAA;AACtC,EAAA,MAAM,IAAA,GAAO,QAAA,CAAS,QAAA,CAAS,MAAA,GAAS,CAAC,CAAA,IAAK,EAAA;AAC9C,EAAA,OAAO,mCAAA,CAAoC,KAAK,IAAI,CAAA;AACtD;AAGA,UAAU,eAAA,CACR,MACA,GAAA,EACiD;AACjD,EAAA,IAAI,OAAA;AACJ,EAAA,IAAI;AACF,IAAA,OAAA,GAAU,WAAA,CAAY,GAAA,EAAK,EAAE,aAAA,EAAe,MAAM,CAAA;AAAA,EACpD,CAAA,CAAA,MAAQ;AACN,IAAA;AAAA,EACF;AACA,EAAA,KAAA,MAAW,SAAS,OAAA,EAAS;AAC3B,IAAA,IAAI,KAAA,CAAM,aAAY,EAAG;AACvB,MAAA,IAAI,SAAA,CAAU,IAAI,KAAA,CAAM,IAAI,KAAK,KAAA,CAAM,IAAA,CAAK,UAAA,CAAW,GAAG,CAAA,EAAG;AAC7D,MAAA,OAAO,gBAAgB,IAAA,EAAM,IAAA,CAAK,GAAA,EAAK,KAAA,CAAM,IAAI,CAAC,CAAA;AAClD,MAAA;AAAA,IACF;AACA,IAAA,IAAI,CAAC,KAAA,CAAM,MAAA,EAAO,EAAG;AACrB,IAAA,MAAM,GAAA,GAAM,KAAA,CAAM,IAAA,CAAK,WAAA,CAAY,GAAG,CAAA;AACtC,IAAA,MAAM,GAAA,GAAM,QAAQ,EAAA,GAAK,EAAA,GAAK,MAAM,IAAA,CAAK,KAAA,CAAM,GAAG,CAAA,CAAE,WAAA,EAAY;AAChE,IAAA,IAAI,CAAC,WAAA,CAAY,GAAA,CAAI,GAAG,CAAA,EAAG;AAC3B,IAAA,MAAM,OAAA,GAAU,IAAA,CAAK,GAAA,EAAK,KAAA,CAAM,IAAI,CAAA;AACpC,IAAA,MAAM,EAAE,OAAA,EAAS,QAAA,CAAS,IAAA,EAAM,OAAO,GAAG,OAAA,EAAQ;AAAA,EACpD;AACF;AAGA,SAAS,MAAA,CAAO,MAAc,KAAA,EAAmC;AAC/D,EAAA,MAAM,CAAA,GAAI,KAAA,CAAM,IAAA,CAAK,IAAI,CAAA;AACzB,EAAA,IAAI,CAAC,GAAG,OAAO,MAAA;AACf,EAAA,MAAM,IAAA,GAAO,IAAA,CAAK,KAAA,CAAM,CAAA,EAAG,EAAE,KAAK,CAAA;AAClC,EAAA,OAAO,IAAA,CAAK,KAAA,CAAM,IAAI,CAAA,CAAE,MAAA;AAC1B;AAQO,SAAS,eAAe,KAAA,EAA8B;AAC3D,EAAA,MAAM,aAAiC,EAAC;AACxC,EAAA,IAAI,gBAAA,GAAmB,CAAA;AAEvB,EAAA,IAAI,oBAAA,GAAuB,KAAA;AAC3B,EAAA,IAAI,mBAAA,GAAsB,KAAA;AAE1B,EAAA,IAAI,eAAA;AAEJ,EAAA,IAAI,SAAA,GAAY,KAAA;AAChB,EAAA,IAAI;AACF,IAAA,QAAA,CAAS,MAAM,MAAM,CAAA;AACrB,IAAA,SAAA,GAAY,IAAA;AAAA,EACd,CAAA,CAAA,MAAQ;AACN,IAAA,UAAA,CAAW,IAAA,CAAK;AAAA,MACd,IAAA,EAAM,UAAA;AAAA,MACN,OAAA,EAAS,CAAA,uBAAA,EAA0B,KAAA,CAAM,MAAM,CAAA;AAAA,KAChD,CAAA;AAAA,EACH;AAEA,EAAA,IAAI,SAAA,EAAW;AACb,IAAA,KAAA,MAAW,EAAE,OAAA,EAAS,OAAA,EAAQ,IAAK,eAAA;AAAA,MACjC,KAAA,CAAM,MAAA;AAAA,MACN,KAAA,CAAM;AAAA,KACR,EAAG;AACD,MAAA,gBAAA,IAAoB,CAAA;AACpB,MAAA,IAAI,IAAA;AACJ,MAAA,IAAI;AACF,QAAA,IAAA,GAAOA,YAAAA,CAAa,SAAS,MAAM,CAAA;AAAA,MACrC,SAAS,GAAA,EAAK;AACZ,QAAA,UAAA,CAAW,IAAA,CAAK;AAAA,UACd,IAAA,EAAM,UAAA;AAAA,UACN,SAAS,CAAA,qBAAA,EAAwB,GAAA,YAAe,KAAA,GAAQ,GAAA,CAAI,UAAU,SAAS,CAAA,CAAA;AAAA,UAC/E,IAAA,EAAM;AAAA,SACP,CAAA;AACD,QAAA;AAAA,MACF;AAGA,MAAA,MAAM,UAAA,GAAa,MAAA,CAAO,IAAA,EAAM,QAAA,CAAS,cAAc,CAAA;AACvD,MAAA,IAAI,eAAe,MAAA,EAAW;AAC5B,QAAA,UAAA,CAAW,IAAA,CAAK;AAAA,UACd,IAAA,EAAM,wBAAA;AAAA,UACN,OAAA,EACE,oHAAA;AAAA,UACF,IAAA,EAAM,OAAA;AAAA,UACN,IAAA,EAAM;AAAA,SACP,CAAA;AAAA,MACH;AAGA,MAAA,IAAI,YAAA,CAAa,OAAO,CAAA,EAAG;AACzB,QAAA,IAAI,eAAA,KAAoB,QAAW,eAAA,GAAkB,OAAA;AACrD,QAAA,IAAI,QAAA,CAAS,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA,EAAG;AACvC,UAAA,oBAAA,GAAuB,IAAA;AAAA,QACzB;AACA,QAAA,IAAI,QAAA,CAAS,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA,EAAG;AACpC,UAAA,mBAAA,GAAsB,IAAA;AAAA,QACxB;AAAA,MACF,CAAA,MAAA,IAAW,QAAA,CAAS,QAAA,CAAS,IAAA,CAAK,IAAI,KAAK,QAAA,CAAS,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA,EAAG;AAG3E,QAAA,mBAAA,GAAsB,IAAA;AACtB,QAAA,IAAI,QAAA,CAAS,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA,EAAG;AACvC,UAAA,oBAAA,GAAuB,IAAA;AAAA,QACzB;AAAA,MACF;AAAA,IACF;AAEA,IAAA,IAAI,CAAC,oBAAA,EAAsB;AACzB,MAAA,UAAA,CAAW,IAAA,CAAK;AAAA,QACd,IAAA,EAAM,0BAAA;AAAA,QACN,OAAA,EACE,mGAAA;AAAA,QACF,MAAM,eAAA,IAAmB;AAAA,OAC1B,CAAA;AAAA,IACH;AACA,IAAA,IAAI,CAAC,mBAAA,EAAqB;AACxB,MAAA,UAAA,CAAW,IAAA,CAAK;AAAA,QACd,IAAA,EAAM,yBAAA;AAAA,QACN,OAAA,EACE,2FAAA;AAAA,QACF,MAAM,eAAA,IAAmB;AAAA,OAC1B,CAAA;AAAA,IACH;AAAA,EACF;AAGA,EAAA,IAAI,MAAM,YAAA,EAAc;AACtB,IAAA,IAAI;AACF,MAAA,MAAM,GAAA,GAAMA,YAAAA,CAAa,KAAA,CAAM,YAAA,EAAc,MAAM,CAAA;AACnD,MAAA,MAAM,IAAA,GAAO,IAAA,CAAK,KAAA,CAAM,GAAG,CAAA;AAC3B,MAAA,MAAM,MAAA,GAAS,kBAAA,CAAmB,SAAA,CAAU,IAAI,CAAA;AAChD,MAAA,IAAI,CAAC,OAAO,OAAA,EAAS;AACnB,QAAA,KAAA,MAAW,KAAA,IAAS,MAAA,CAAO,KAAA,CAAM,MAAA,EAAQ;AACvC,UAAA,UAAA,CAAW,IAAA,CAAK;AAAA,YACd,IAAA,EAAM,kBAAA;AAAA,YACN,OAAA,EAAS,CAAA,EAAG,KAAA,CAAM,IAAA,CAAK,IAAA,CAAK,GAAG,CAAA,IAAK,QAAQ,CAAA,QAAA,EAAM,KAAA,CAAM,OAAO,CAAA,CAAA;AAAA,YAC/D,MAAM,KAAA,CAAM;AAAA,WACb,CAAA;AAAA,QACH;AAAA,MACF;AAAA,IACF,SAAS,GAAA,EAAK;AACZ,MAAA,UAAA,CAAW,IAAA,CAAK;AAAA,QACd,IAAA,EAAM,kBAAA;AAAA,QACN,SAAS,CAAA,0BAAA,EAA6B,GAAA,YAAe,KAAA,GAAQ,GAAA,CAAI,UAAU,SAAS,CAAA,CAAA;AAAA,QACpF,MAAM,KAAA,CAAM;AAAA,OACb,CAAA;AAAA,IACH;AAAA,EACF;AAEA,EAAA,OAAO,EAAE,YAAY,gBAAA,EAAiB;AACxC;;;AC3NO,IAAM,qBAAA,GAAwB","file":"index.js","sourcesContent":["import { z } from \"zod\";\n\n/**\n * `tool.json` — the manifest every OpenKey AI tool ships at the repo root.\n *\n * This schema is the SOURCE OF TRUTH for the contract. The hub's tool\n * registry sync (Phase 9b, lands in the hub repo) imports\n * `ToolManifestSchema` from this package and rejects any insert that\n * doesn't parse cleanly. The Phase 13 auto-scaffolder uses the same\n * schema to produce a starter `tool.json` for newly-voted tools.\n *\n * Status of fields:\n * - FROZEN — changing the shape (rename, type swap, required→optional)\n * is a major version bump with 60-day notice to tool authors\n * - ADDITIONS — new optional fields are minor version bumps\n *\n * We deliberately keep the schema lean. A field exists here only if either\n * (a) the hub needs it to register the tool, (b) the SDK needs it at\n * runtime, or (c) the scanner needs it to enforce a rule.\n */\n\n/** Slug — lowercase kebab-case, 3–40 chars. Matches the hub's `tools.slug` CHECK. */\nconst slugRegex = /^[a-z][a-z0-9-]{1,38}[a-z0-9]$/;\n\n/** Scopes are the FROZEN set from ARCHITECTURE.md Appendix B. */\nexport const ToolScopeEnum = z.enum([\"keys.read\", \"user.read\", \"billing.read\"]);\nexport type ToolScope = z.infer<typeof ToolScopeEnum>;\n\n/** Provider slugs aligned with the hub vault's `PROVIDERS` registry. */\nexport const ProviderSlugEnum = z.enum([\n \"openai\",\n \"anthropic\",\n \"google\",\n \"replicate\",\n \"elevenlabs\",\n \"fal\",\n]);\nexport type ProviderSlug = z.infer<typeof ProviderSlugEnum>;\n\n/** Runtime tier — pick the right template + deploy pipeline. */\nexport const RuntimeTierEnum = z.enum([\"edge\", \"container\"]);\nexport type RuntimeTier = z.infer<typeof RuntimeTierEnum>;\n\n/** Owner — at least a name; email + github are nice-to-have for support. */\nexport const ToolOwnerSchema = z.object({\n name: z.string().min(1).max(80),\n email: z.string().email().optional(),\n github: z\n .string()\n .regex(/^[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,38}[a-zA-Z0-9])?$/, \"github handle\")\n .optional(),\n});\nexport type ToolOwner = z.infer<typeof ToolOwnerSchema>;\n\n/** Top-level schema. */\nexport const ToolManifestSchema = z.object({\n /** Stable URL-safe identifier. Becomes the JWT's `aud` claim. */\n slug: z.string().regex(slugRegex, \"slug must be lowercase kebab-case, 3–40 chars\"),\n /** Human-readable name shown in the catalog and HubHeader. */\n name: z.string().min(1).max(80),\n /** One-sentence catalog description. */\n description: z.string().max(280).default(\"\"),\n /** Tool version (semver). */\n version: z.string().regex(/^\\d+\\.\\d+\\.\\d+(?:-[\\w.+-]+)?$/, \"semver\"),\n /** Runtime tier — picks template + deploy pipeline. */\n runtime: RuntimeTierEnum,\n /** Scopes the tool may request when minting a JWT. Min 1. */\n scopes: z.array(ToolScopeEnum).min(1),\n /** API provider slugs the tool may fetch keys for. */\n providers: z.array(ProviderSlugEnum).default([]),\n /** Public homepage / docs URL. Surfaced in the hub catalog. */\n homepage: z.string().url().optional(),\n /** Where the hub sends users after issuing a token. https only. */\n callback_url: z\n .string()\n .url()\n .refine((u) => u.startsWith(\"https://\"), \"callback_url must be https://\"),\n /** Tool owner. */\n owner: ToolOwnerSchema,\n /** Semver range the tool was built against. Hub uses this for compat warnings. */\n sdk_version: z.string().min(1),\n /** Optional category for catalog grouping (e.g. \"media\", \"writing\"). */\n category: z.string().min(1).max(40).optional(),\n});\n\nexport type ToolManifest = z.infer<typeof ToolManifestSchema>;\n\n/** Re-export Zod errors verbatim — consumers can `instanceof` check them. */\nexport { ZodError } from \"zod\";\n","import { readFileSync } from \"node:fs\";\nimport { ToolManifestSchema, type ToolManifest } from \"./schema\";\n\n/**\n * Parse + validate a `tool.json` payload. Pass either the parsed object or\n * the raw JSON string; we handle both.\n *\n * Returns the typed manifest on success.\n * Throws `ZodError` on schema failure (caller can `instanceof ZodError`).\n * Throws `Error` on JSON parse failure.\n */\nexport function validateManifest(input: unknown): ToolManifest {\n let json: unknown;\n if (typeof input === \"string\") {\n json = JSON.parse(input);\n } else {\n json = input;\n }\n return ToolManifestSchema.parse(json);\n}\n\n/**\n * Convenience — read + parse + validate a tool.json from disk.\n *\n * Used by the CLI and by the auto-scaffolder. Returns the manifest on\n * success; throws otherwise.\n */\nexport function validateManifestFile(path: string): ToolManifest {\n const raw = readFileSync(path, \"utf8\");\n return validateManifest(raw);\n}\n","import { readdirSync, readFileSync, statSync } from \"node:fs\";\nimport { join, relative } from \"node:path\";\nimport { ToolManifestSchema } from \"./schema\";\n\n/**\n * Source scanner.\n *\n * Walks a tool's source tree and returns a list of contract violations.\n * The CLI (`okai-scan`) wraps this; tool CI calls it directly.\n *\n * Design notes:\n *\n * - **Regex / text scanning over AST.** A real TS AST parse (ts-morph)\n * catches more edge cases but adds ~5MB of deps and noticeable cold-\n * start time on every tool's CI. The patterns we enforce in v1 are\n * simple string matches; we're catching obvious violations, not\n * adversarial code. If we ever need to enforce something subtle (e.g.\n * \"you mounted HubHeader but inside a `{false && ...}` branch\") we\n * can swap the backend later — the public function signature won't\n * change.\n *\n * - **Heuristic file matching.** We treat any file matching\n * `**\\/layout.{ts,tsx,js,jsx,mjs,cjs}` as a \"layout\" candidate, which\n * covers both Next.js App Router (`app/layout.tsx`) and the variants\n * containers use (`src/layout.tsx`, etc).\n *\n * - **Single-pass walk.** Bigger tools have hundreds of source files;\n * doing one walk and routing each file to all rules keeps it linear.\n *\n * - **No file IO outside `srcDir`.** Safe to point at any directory;\n * we don't write anything.\n */\n\nexport type ScannerViolation = {\n /** Stable code so tool authors can suppress / look up. */\n code:\n | \"missing-hubheader-import\"\n | \"missing-hubheader-mount\"\n | \"banned-internal-import\"\n | \"manifest-missing\"\n | \"manifest-invalid\"\n | \"io-error\";\n /** Human-readable. Surface this in CI logs. */\n message: string;\n /** Relative path inside `srcDir` (or `tool.json` for manifest issues). */\n file?: string;\n /** 1-based line number for source-file violations. */\n line?: number;\n};\n\nexport type ScanInput = {\n /**\n * Directory containing the tool's source code (usually `src/` or `app/`\n * or the repo root). The scanner walks recursively.\n */\n srcDir: string;\n /**\n * Optional path to `tool.json`. If provided, the manifest is loaded and\n * validated against the schema; failures are reported as scanner\n * violations. Defaults to no manifest check (you can call\n * `validateManifestFile` directly).\n */\n manifestPath?: string;\n};\n\nexport type ScanResult = {\n violations: ScannerViolation[];\n /** Files actually walked — useful for CI logs. */\n scannedFileCount: number;\n};\n\n/** File extensions that contain JS/TS that we'll grep. */\nconst SOURCE_EXTS = new Set([\".ts\", \".tsx\", \".js\", \".jsx\", \".mjs\", \".cjs\"]);\n\n/** Directories to skip outright. */\nconst SKIP_DIRS = new Set([\n \"node_modules\",\n \"dist\",\n \".next\",\n \".open-next\",\n \".turbo\",\n \"build\",\n \"out\",\n \"coverage\",\n \".git\",\n]);\n\n/** Regex catalogues. Kept inline so they can be tweaked without breaking\n * the function signatures consumers depend on. */\nconst PATTERNS = {\n /** ESM/CJS import OR a `require()` of @openkeyai/ui. */\n uiImport: /\\bfrom\\s+['\"]@openkeyai\\/ui(?:\\/[^'\"]+)?['\"]|require\\(\\s*['\"]@openkeyai\\/ui(?:\\/[^'\"]+)?['\"]/,\n /** Mounted JSX: `<HubHeader …` (open tag). */\n hubHeaderJsx: /<\\s*HubHeader\\b/,\n /** Named import containing `HubHeader`. */\n hubHeaderImport: /\\bimport\\b[^;\\n]*?\\bHubHeader\\b[^;\\n]*?from\\s+['\"]@openkeyai\\/ui/,\n /** Any import from `@openkeyai/sdk/_internal/*` — banned. */\n bannedInternal: /from\\s+['\"]@openkeyai\\/sdk\\/_internal(?:\\/[^'\"]*)?['\"]|require\\(\\s*['\"]@openkeyai\\/sdk\\/_internal(?:\\/[^'\"]*)?['\"]/,\n} as const;\n\n/** Heuristic — is this file a Next.js / similar layout? */\nfunction isLayoutFile(relPath: string): boolean {\n // Match `…/layout.tsx`, `app/layout.ts`, etc.\n // Avoid `…/sublayout.tsx` collisions by requiring the basename to start with `layout`.\n const segments = relPath.split(/[\\\\/]/);\n const base = segments[segments.length - 1] ?? \"\";\n return /^layout\\.(ts|tsx|js|jsx|mjs|cjs)$/.test(base);\n}\n\n/** Recursively yield (relPath, absPath) for every source file under `dir`. */\nfunction* walkSourceFiles(\n root: string,\n dir: string,\n): Generator<{ relPath: string; absPath: string }> {\n let entries: import(\"node:fs\").Dirent[];\n try {\n entries = readdirSync(dir, { withFileTypes: true });\n } catch {\n return; // unreadable dir — silently skip.\n }\n for (const entry of entries) {\n if (entry.isDirectory()) {\n if (SKIP_DIRS.has(entry.name) || entry.name.startsWith(\".\")) continue;\n yield* walkSourceFiles(root, join(dir, entry.name));\n continue;\n }\n if (!entry.isFile()) continue;\n const idx = entry.name.lastIndexOf(\".\");\n const ext = idx === -1 ? \"\" : entry.name.slice(idx).toLowerCase();\n if (!SOURCE_EXTS.has(ext)) continue;\n const absPath = join(dir, entry.name);\n yield { relPath: relative(root, absPath), absPath };\n }\n}\n\n/** Find the 1-based line of the first match of `regex` in `text`. */\nfunction lineOf(text: string, regex: RegExp): number | undefined {\n const m = regex.exec(text);\n if (!m) return undefined;\n const upto = text.slice(0, m.index);\n return upto.split(\"\\n\").length;\n}\n\n/**\n * Scan a tool's source tree for contract violations.\n *\n * This function makes no assumptions about the tool's framework. It just\n * walks `srcDir`, applies a small set of rules, and reports what it sees.\n */\nexport function scanToolSource(input: ScanInput): ScanResult {\n const violations: ScannerViolation[] = [];\n let scannedFileCount = 0;\n\n let foundHubHeaderImport = false;\n let foundHubHeaderMount = false;\n /** First layout file we saw — used as the location for the \"no mount\" violation. */\n let firstLayoutFile: string | undefined;\n\n let srcExists = false;\n try {\n statSync(input.srcDir);\n srcExists = true;\n } catch {\n violations.push({\n code: \"io-error\",\n message: `srcDir does not exist: ${input.srcDir}`,\n });\n }\n\n if (srcExists) {\n for (const { relPath, absPath } of walkSourceFiles(\n input.srcDir,\n input.srcDir,\n )) {\n scannedFileCount += 1;\n let body: string;\n try {\n body = readFileSync(absPath, \"utf8\");\n } catch (err) {\n violations.push({\n code: \"io-error\",\n message: `Could not read file: ${err instanceof Error ? err.message : \"unknown\"}`,\n file: relPath,\n });\n continue;\n }\n\n // Rule 1: banned _internal import — ANY file.\n const bannedLine = lineOf(body, PATTERNS.bannedInternal);\n if (bannedLine !== undefined) {\n violations.push({\n code: \"banned-internal-import\",\n message:\n \"@openkeyai/sdk/_internal is not a public surface and may change without notice. Import only from the package root.\",\n file: relPath,\n line: bannedLine,\n });\n }\n\n // Rules 2-3: HubHeader presence — only meaningful in layout files.\n if (isLayoutFile(relPath)) {\n if (firstLayoutFile === undefined) firstLayoutFile = relPath;\n if (PATTERNS.hubHeaderImport.test(body)) {\n foundHubHeaderImport = true;\n }\n if (PATTERNS.hubHeaderJsx.test(body)) {\n foundHubHeaderMount = true;\n }\n } else if (PATTERNS.uiImport.test(body) && PATTERNS.hubHeaderJsx.test(body)) {\n // HubHeader mounted in a non-layout file. That's allowed (it's still\n // visible) — count it as a mount but no separate rule.\n foundHubHeaderMount = true;\n if (PATTERNS.hubHeaderImport.test(body)) {\n foundHubHeaderImport = true;\n }\n }\n }\n\n if (!foundHubHeaderImport) {\n violations.push({\n code: \"missing-hubheader-import\",\n message:\n \"No layout file imports `HubHeader` from `@openkeyai/ui`. Every tool must mount the shared header.\",\n file: firstLayoutFile ?? \"app/layout.tsx\",\n });\n }\n if (!foundHubHeaderMount) {\n violations.push({\n code: \"missing-hubheader-mount\",\n message:\n \"`<HubHeader />` is not mounted anywhere in the source tree. Place it in your root layout.\",\n file: firstLayoutFile ?? \"app/layout.tsx\",\n });\n }\n }\n\n // Manifest check (optional path).\n if (input.manifestPath) {\n try {\n const raw = readFileSync(input.manifestPath, \"utf8\");\n const json = JSON.parse(raw);\n const parsed = ToolManifestSchema.safeParse(json);\n if (!parsed.success) {\n for (const issue of parsed.error.issues) {\n violations.push({\n code: \"manifest-invalid\",\n message: `${issue.path.join(\".\") || \"(root)\"} — ${issue.message}`,\n file: input.manifestPath,\n });\n }\n }\n } catch (err) {\n violations.push({\n code: \"manifest-missing\",\n message: `Could not read tool.json: ${err instanceof Error ? err.message : \"unknown\"}`,\n file: input.manifestPath,\n });\n }\n }\n\n return { violations, scannedFileCount };\n}\n","/**\n * `@openkeyai/tool-manifest` — public entry.\n *\n * Three surfaces:\n *\n * 1. The Zod schema (`ToolManifestSchema`) — frozen shape of every\n * tool's `tool.json`. Re-exported via the `./schema` subpath too,\n * so consumers that ONLY need the schema can avoid pulling the\n * filesystem-touching scanner code.\n *\n * 2. `validateManifest(json)` / `validateManifestFile(path)` —\n * convenience wrappers around `ToolManifestSchema.parse`.\n *\n * 3. `scanToolSource({ srcDir, manifestPath? })` — walks the tool's\n * source tree and returns contract violations. Used by tool CI\n * and the auto-scaffolder.\n *\n * The CLI (`okai-scan`) is a thin wrapper around these — `bin/cli.ts`.\n */\n\nexport {\n ToolManifestSchema,\n ProviderSlugEnum,\n ToolScopeEnum,\n RuntimeTierEnum,\n ToolOwnerSchema,\n ZodError,\n} from \"./schema\";\nexport type {\n ToolManifest,\n ToolScope,\n ProviderSlug,\n RuntimeTier,\n ToolOwner,\n} from \"./schema\";\n\nexport { validateManifest, validateManifestFile } from \"./validate\";\n\nexport { scanToolSource } from \"./scanner\";\nexport type { ScanInput, ScanResult, ScannerViolation } from \"./scanner\";\n\n/** Bumped on each release. */\nexport const TOOL_MANIFEST_VERSION = \"0.1.0\";\n"]}

package/dist/schema.cjs ADDED Viewed

@@ -0,0 +1,59 @@
+'use strict';
+var zod = require('zod');
+// src/schema.ts
+var slugRegex = /^[a-z][a-z0-9-]{1,38}[a-z0-9]$/;
+var ToolScopeEnum = zod.z.enum(["keys.read", "user.read", "billing.read"]);
+var ProviderSlugEnum = zod.z.enum([
+  "openai",
+  "anthropic",
+  "google",
+  "replicate",
+  "elevenlabs",
+  "fal"
+]);
+var RuntimeTierEnum = zod.z.enum(["edge", "container"]);
+var ToolOwnerSchema = zod.z.object({
+  name: zod.z.string().min(1).max(80),
+  email: zod.z.string().email().optional(),
+  github: zod.z.string().regex(/^[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,38}[a-zA-Z0-9])?$/, "github handle").optional()
+});
+var ToolManifestSchema = zod.z.object({
+  /** Stable URL-safe identifier. Becomes the JWT's `aud` claim. */
+  slug: zod.z.string().regex(slugRegex, "slug must be lowercase kebab-case, 3\u201340 chars"),
+  /** Human-readable name shown in the catalog and HubHeader. */
+  name: zod.z.string().min(1).max(80),
+  /** One-sentence catalog description. */
+  description: zod.z.string().max(280).default(""),
+  /** Tool version (semver). */
+  version: zod.z.string().regex(/^\d+\.\d+\.\d+(?:-[\w.+-]+)?$/, "semver"),
+  /** Runtime tier — picks template + deploy pipeline. */
+  runtime: RuntimeTierEnum,
+  /** Scopes the tool may request when minting a JWT. Min 1. */
+  scopes: zod.z.array(ToolScopeEnum).min(1),
+  /** API provider slugs the tool may fetch keys for. */
+  providers: zod.z.array(ProviderSlugEnum).default([]),
+  /** Public homepage / docs URL. Surfaced in the hub catalog. */
+  homepage: zod.z.string().url().optional(),
+  /** Where the hub sends users after issuing a token. https only. */
+  callback_url: zod.z.string().url().refine((u) => u.startsWith("https://"), "callback_url must be https://"),
+  /** Tool owner. */
+  owner: ToolOwnerSchema,
+  /** Semver range the tool was built against. Hub uses this for compat warnings. */
+  sdk_version: zod.z.string().min(1),
+  /** Optional category for catalog grouping (e.g. "media", "writing"). */
+  category: zod.z.string().min(1).max(40).optional()
+});
+Object.defineProperty(exports, "ZodError", {
+  enumerable: true,
+  get: function () { return zod.ZodError; }
+});
+exports.ProviderSlugEnum = ProviderSlugEnum;
+exports.RuntimeTierEnum = RuntimeTierEnum;
+exports.ToolManifestSchema = ToolManifestSchema;
+exports.ToolOwnerSchema = ToolOwnerSchema;
+exports.ToolScopeEnum = ToolScopeEnum;
+//# sourceMappingURL=schema.cjs.map
+//# sourceMappingURL=schema.cjs.map

package/dist/schema.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/schema.ts"],"names":["z"],"mappings":";;;;;AAsBA,IAAM,SAAA,GAAY,gCAAA;AAGX,IAAM,gBAAgBA,KAAA,CAAE,IAAA,CAAK,CAAC,WAAA,EAAa,WAAA,EAAa,cAAc,CAAC;AAIvE,IAAM,gBAAA,GAAmBA,MAAE,IAAA,CAAK;AAAA,EACrC,QAAA;AAAA,EACA,WAAA;AAAA,EACA,QAAA;AAAA,EACA,WAAA;AAAA,EACA,YAAA;AAAA,EACA;AACF,CAAC;AAIM,IAAM,kBAAkBA,KAAA,CAAE,IAAA,CAAK,CAAC,MAAA,EAAQ,WAAW,CAAC;AAIpD,IAAM,eAAA,GAAkBA,MAAE,MAAA,CAAO;AAAA,EACtC,IAAA,EAAMA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EAC9B,OAAOA,KAAA,CAAE,MAAA,EAAO,CAAE,KAAA,GAAQ,QAAA,EAAS;AAAA,EACnC,MAAA,EAAQA,MACL,MAAA,EAAO,CACP,MAAM,iDAAA,EAAmD,eAAe,EACxE,QAAA;AACL,CAAC;AAIM,IAAM,kBAAA,GAAqBA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEzC,MAAMA,KAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,WAAW,oDAA+C,CAAA;AAAA;AAAA,EAEjF,IAAA,EAAMA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA;AAAA,EAE9B,WAAA,EAAaA,MAAE,MAAA,EAAO,CAAE,IAAI,GAAG,CAAA,CAAE,QAAQ,EAAE,CAAA;AAAA;AAAA,EAE3C,SAASA,KAAA,CAAE,MAAA,EAAO,CAAE,KAAA,CAAM,iCAAiC,QAAQ,CAAA;AAAA;AAAA,EAEnE,OAAA,EAAS,eAAA;AAAA;AAAA,EAET,QAAQA,KAAA,CAAE,KAAA,CAAM,aAAa,CAAA,CAAE,IAAI,CAAC,CAAA;AAAA;AAAA,EAEpC,WAAWA,KAAA,CAAE,KAAA,CAAM,gBAAgB,CAAA,CAAE,OAAA,CAAQ,EAAE,CAAA;AAAA;AAAA,EAE/C,UAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA,EAAS;AAAA;AAAA,EAEpC,YAAA,EAAcA,KAAA,CACX,MAAA,EAAO,CACP,GAAA,EAAI,CACJ,MAAA,CAAO,CAAC,CAAA,KAAM,CAAA,CAAE,UAAA,CAAW,UAAU,GAAG,+BAA+B,CAAA;AAAA;AAAA,EAE1E,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,WAAA,EAAaA,KAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA;AAAA,EAE7B,QAAA,EAAUA,KAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,CAAC,CAAA,CAAE,GAAA,CAAI,EAAE,CAAA,CAAE,QAAA;AACtC,CAAC","file":"schema.cjs","sourcesContent":["import { z } from \"zod\";\n\n/**\n * `tool.json` — the manifest every OpenKey AI tool ships at the repo root.\n *\n * This schema is the SOURCE OF TRUTH for the contract. The hub's tool\n * registry sync (Phase 9b, lands in the hub repo) imports\n * `ToolManifestSchema` from this package and rejects any insert that\n * doesn't parse cleanly. The Phase 13 auto-scaffolder uses the same\n * schema to produce a starter `tool.json` for newly-voted tools.\n *\n * Status of fields:\n * - FROZEN — changing the shape (rename, type swap, required→optional)\n * is a major version bump with 60-day notice to tool authors\n * - ADDITIONS — new optional fields are minor version bumps\n *\n * We deliberately keep the schema lean. A field exists here only if either\n * (a) the hub needs it to register the tool, (b) the SDK needs it at\n * runtime, or (c) the scanner needs it to enforce a rule.\n */\n\n/** Slug — lowercase kebab-case, 3–40 chars. Matches the hub's `tools.slug` CHECK. */\nconst slugRegex = /^[a-z][a-z0-9-]{1,38}[a-z0-9]$/;\n\n/** Scopes are the FROZEN set from ARCHITECTURE.md Appendix B. */\nexport const ToolScopeEnum = z.enum([\"keys.read\", \"user.read\", \"billing.read\"]);\nexport type ToolScope = z.infer<typeof ToolScopeEnum>;\n\n/** Provider slugs aligned with the hub vault's `PROVIDERS` registry. */\nexport const ProviderSlugEnum = z.enum([\n \"openai\",\n \"anthropic\",\n \"google\",\n \"replicate\",\n \"elevenlabs\",\n \"fal\",\n]);\nexport type ProviderSlug = z.infer<typeof ProviderSlugEnum>;\n\n/** Runtime tier — pick the right template + deploy pipeline. */\nexport const RuntimeTierEnum = z.enum([\"edge\", \"container\"]);\nexport type RuntimeTier = z.infer<typeof RuntimeTierEnum>;\n\n/** Owner — at least a name; email + github are nice-to-have for support. */\nexport const ToolOwnerSchema = z.object({\n name: z.string().min(1).max(80),\n email: z.string().email().optional(),\n github: z\n .string()\n .regex(/^[a-zA-Z0-9](?:[a-zA-Z0-9-]{0,38}[a-zA-Z0-9])?$/, \"github handle\")\n .optional(),\n});\nexport type ToolOwner = z.infer<typeof ToolOwnerSchema>;\n\n/** Top-level schema. */\nexport const ToolManifestSchema = z.object({\n /** Stable URL-safe identifier. Becomes the JWT's `aud` claim. */\n slug: z.string().regex(slugRegex, \"slug must be lowercase kebab-case, 3–40 chars\"),\n /** Human-readable name shown in the catalog and HubHeader. */\n name: z.string().min(1).max(80),\n /** One-sentence catalog description. */\n description: z.string().max(280).default(\"\"),\n /** Tool version (semver). */\n version: z.string().regex(/^\\d+\\.\\d+\\.\\d+(?:-[\\w.+-]+)?$/, \"semver\"),\n /** Runtime tier — picks template + deploy pipeline. */\n runtime: RuntimeTierEnum,\n /** Scopes the tool may request when minting a JWT. Min 1. */\n scopes: z.array(ToolScopeEnum).min(1),\n /** API provider slugs the tool may fetch keys for. */\n providers: z.array(ProviderSlugEnum).default([]),\n /** Public homepage / docs URL. Surfaced in the hub catalog. */\n homepage: z.string().url().optional(),\n /** Where the hub sends users after issuing a token. https only. */\n callback_url: z\n .string()\n .url()\n .refine((u) => u.startsWith(\"https://\"), \"callback_url must be https://\"),\n /** Tool owner. */\n owner: ToolOwnerSchema,\n /** Semver range the tool was built against. Hub uses this for compat warnings. */\n sdk_version: z.string().min(1),\n /** Optional category for catalog grouping (e.g. \"media\", \"writing\"). */\n category: z.string().min(1).max(40).optional(),\n});\n\nexport type ToolManifest = z.infer<typeof ToolManifestSchema>;\n\n/** Re-export Zod errors verbatim — consumers can `instanceof` check them. */\nexport { ZodError } from \"zod\";\n"]}

package/dist/schema.d.cts ADDED Viewed

@@ -0,0 +1,69 @@
+import { z } from 'zod';
+export { ZodError } from 'zod';
+/** Scopes are the FROZEN set from ARCHITECTURE.md Appendix B. */
+declare const ToolScopeEnum: z.ZodEnum<{
+    "keys.read": "keys.read";
+    "user.read": "user.read";
+    "billing.read": "billing.read";
+}>;
+type ToolScope = z.infer<typeof ToolScopeEnum>;
+/** Provider slugs aligned with the hub vault's `PROVIDERS` registry. */
+declare const ProviderSlugEnum: z.ZodEnum<{
+    openai: "openai";
+    anthropic: "anthropic";
+    google: "google";
+    replicate: "replicate";
+    elevenlabs: "elevenlabs";
+    fal: "fal";
+}>;
+type ProviderSlug = z.infer<typeof ProviderSlugEnum>;
+/** Runtime tier — pick the right template + deploy pipeline. */
+declare const RuntimeTierEnum: z.ZodEnum<{
+    edge: "edge";
+    container: "container";
+}>;
+type RuntimeTier = z.infer<typeof RuntimeTierEnum>;
+/** Owner — at least a name; email + github are nice-to-have for support. */
+declare const ToolOwnerSchema: z.ZodObject<{
+    name: z.ZodString;
+    email: z.ZodOptional<z.ZodString>;
+    github: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+type ToolOwner = z.infer<typeof ToolOwnerSchema>;
+/** Top-level schema. */
+declare const ToolManifestSchema: z.ZodObject<{
+    slug: z.ZodString;
+    name: z.ZodString;
+    description: z.ZodDefault<z.ZodString>;
+    version: z.ZodString;
+    runtime: z.ZodEnum<{
+        edge: "edge";
+        container: "container";
+    }>;
+    scopes: z.ZodArray<z.ZodEnum<{
+        "keys.read": "keys.read";
+        "user.read": "user.read";
+        "billing.read": "billing.read";
+    }>>;
+    providers: z.ZodDefault<z.ZodArray<z.ZodEnum<{
+        openai: "openai";
+        anthropic: "anthropic";
+        google: "google";
+        replicate: "replicate";
+        elevenlabs: "elevenlabs";
+        fal: "fal";
+    }>>>;
+    homepage: z.ZodOptional<z.ZodString>;
+    callback_url: z.ZodString;
+    owner: z.ZodObject<{
+        name: z.ZodString;
+        email: z.ZodOptional<z.ZodString>;
+        github: z.ZodOptional<z.ZodString>;
+    }, z.core.$strip>;
+    sdk_version: z.ZodString;
+    category: z.ZodOptional<z.ZodString>;
+}, z.core.$strip>;
+type ToolManifest = z.infer<typeof ToolManifestSchema>;
+export { type ProviderSlug, ProviderSlugEnum, type RuntimeTier, RuntimeTierEnum, type ToolManifest, ToolManifestSchema, type ToolOwner, ToolOwnerSchema, type ToolScope, ToolScopeEnum };