@opentrust/shared 7.1.0

package/dist/constants.d.ts

@@ -0,0 +1,12 @@
+export declare const DEFAULT_TENANT_ID = "default";
+export declare const MAX_AGENTS = 10;
+export interface DefaultScanner {
+    scannerId: string;
+    name: string;
+    description: string;
+}
+export declare const DEFAULT_SCANNERS: DefaultScanner[];
+export declare const SESSION_TOKEN_PREFIX = "og-session-";
+export declare const SESSION_COOKIE_NAME = "og_session";
+export declare const IP_RATE_LIMIT_PER_MIN = 100;
+//# sourceMappingURL=constants.d.ts.map

package/dist/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AACA,eAAO,MAAM,iBAAiB,YAAY,CAAC;AAG3C,eAAO,MAAM,UAAU,KAAK,CAAC;AAG7B,MAAM,WAAW,cAAc;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,eAAO,MAAM,gBAAgB,EAAE,cAAc,EAW5C,CAAC;AAGF,eAAO,MAAM,oBAAoB,gBAAgB,CAAC;AAClD,eAAO,MAAM,mBAAmB,eAAe,CAAC;AAGhD,eAAO,MAAM,qBAAqB,MAAM,CAAC"}

package/dist/constants.js

@@ -0,0 +1,21 @@
+// -- Tenant --
+export const DEFAULT_TENANT_ID = "default";
+// -- Limits --
+export const MAX_AGENTS = 10;
+export const DEFAULT_SCANNERS = [
+    { scannerId: "S01", name: "Prompt Injection", description: "Detect and block attempts to override system instructions or hijack agent behavior through crafted inputs." },
+    { scannerId: "S02", name: "System Override", description: "Prevent attackers from manipulating the agent into ignoring safety boundaries or executing unauthorized actions." },
+    { scannerId: "S03", name: "Web Attacks", description: "Guard against XSS, CSRF, and other web-based exploits targeting agent-powered interfaces and APIs." },
+    { scannerId: "S04", name: "MCP Tool Poisoning", description: "Detect compromised or malicious tool definitions in Model Context Protocol integrations before execution." },
+    { scannerId: "S05", name: "Malicious Code Execution", description: "Block attempts to generate, inject, or execute harmful code through agent code interpreters and sandboxes." },
+    { scannerId: "S06", name: "NSFW Content", description: "Filter unsafe, explicit, or inappropriate content across 12 risk categories with configurable sensitivity." },
+    { scannerId: "S07", name: "PII Exposure", description: "Identify and redact personally identifiable information before it reaches external models or storage." },
+    { scannerId: "S08", name: "Credential Leakage", description: "Detect API keys, tokens, passwords, and secrets in agent inputs and outputs to prevent unauthorized access." },
+    { scannerId: "S09", name: "Confidential Data", description: "Prevent sensitive business data, trade secrets, and proprietary information from leaking through AI interactions." },
+    { scannerId: "S10", name: "Off-Topic Drift", description: "Keep agents focused on their intended purpose and prevent misuse for unrelated or unauthorized tasks." },
+];
+// -- Session --
+export const SESSION_TOKEN_PREFIX = "og-session-";
+export const SESSION_COOKIE_NAME = "og_session";
+// -- Rate Limiting --
+export const IP_RATE_LIMIT_PER_MIN = 100;

package/dist/index.d.ts

@@ -0,0 +1,4 @@
+export * from "./types.js";
+export * from "./constants.js";
+export * from "./utils.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,YAAY,CAAC;AAC3B,cAAc,gBAAgB,CAAC;AAC/B,cAAc,YAAY,CAAC"}

package/dist/index.js

@@ -0,0 +1,3 @@
+export * from "./types.js";
+export * from "./constants.js";
+export * from "./utils.js";

package/dist/types.d.ts

@@ -0,0 +1,111 @@
+export type DashboardMode = "embedded" | "selfhosted" | "saas";
+export type GatewayMode = "embedded" | "selfhosted" | "saas";
+export interface TenantContext {
+    tenantId: string;
+    mode: DashboardMode;
+}
+export type AgentStatus = "active" | "inactive" | "disconnected";
+export type AgentProvider = "openclaw" | "langchain" | "crewai" | "autogen" | "custom";
+export interface Agent {
+    id: string;
+    tenantId: string;
+    name: string;
+    description: string | null;
+    provider: AgentProvider;
+    status: AgentStatus;
+    lastSeenAt: string | null;
+    metadata: Record<string, unknown>;
+    createdAt: string;
+    updatedAt: string;
+}
+export type PolicyAction = "block" | "alert" | "log";
+export interface Policy {
+    id: string;
+    tenantId: string;
+    name: string;
+    description: string | null;
+    scannerIds: string[];
+    action: PolicyAction;
+    sensitivityThreshold: number;
+    isEnabled: boolean;
+    createdAt: string;
+    updatedAt: string;
+}
+export interface DetectionResult {
+    id: string;
+    tenantId: string;
+    agentId: string | null;
+    safe: boolean;
+    categories: string[];
+    sensitivityScore: number;
+    findings: unknown[];
+    latencyMs: number;
+    requestId: string;
+    createdAt: string;
+}
+export interface UsageLog {
+    id: string;
+    tenantId: string;
+    agentId: string | null;
+    endpoint: string;
+    statusCode: number;
+    responseSafe: boolean | null;
+    categories: string[];
+    latencyMs: number;
+    requestId: string;
+    createdAt: string;
+}
+export interface UsageSummary {
+    totalCalls: number;
+    safeCount: number;
+    unsafeCount: number;
+}
+export interface ScannerDefinition {
+    id: string;
+    tenantId: string;
+    scannerId: string;
+    name: string;
+    description: string;
+    config: Record<string, unknown>;
+    isEnabled: boolean;
+    isDefault: boolean;
+}
+export type MessageRole = "system" | "user" | "assistant" | "tool";
+export interface CoreScannerDef {
+    scannerId: string;
+    name: string;
+    description: string;
+    isEnabled: boolean;
+}
+export interface CoreDetectRequest {
+    messages: unknown[];
+    format?: "openai" | "anthropic" | "gemini" | "raw";
+    scanners: CoreScannerDef[];
+    role?: MessageRole;
+}
+export interface CoreDetectResponse {
+    safe: boolean;
+    verdict: "safe" | "unsafe";
+    categories: string[];
+    sensitivity_score: number;
+    findings: Array<{
+        scanner: string;
+        name: string;
+        description: string;
+    }>;
+    latency_ms: number;
+    request_id: string;
+}
+export interface ApiResponse<T = unknown> {
+    success: boolean;
+    data?: T;
+    error?: string;
+}
+export type Feature = "discovery" | "detection" | "protection";
+export type TierId = "free" | "starter" | "pro" | "business" | "enterprise";
+export interface TierConfig {
+    features: Feature[];
+    maxAgents: number;
+}
+export declare const TIERS: Record<TierId, TierConfig>;
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AACA,MAAM,MAAM,aAAa,GAAG,UAAU,GAAG,YAAY,GAAG,MAAM,CAAC;AAC/D,MAAM,MAAM,WAAW,GAAG,UAAU,GAAG,YAAY,GAAG,MAAM,CAAC;AAE7D,MAAM,WAAW,aAAa;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,aAAa,CAAC;CACrB;AAGD,MAAM,MAAM,WAAW,GAAG,QAAQ,GAAG,UAAU,GAAG,cAAc,CAAC;AACjE,MAAM,MAAM,aAAa,GAAG,UAAU,GAAG,WAAW,GAAG,QAAQ,GAAG,SAAS,GAAG,QAAQ,CAAC;AAEvF,MAAM,WAAW,KAAK;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,QAAQ,EAAE,aAAa,CAAC;IACxB,MAAM,EAAE,WAAW,CAAC;IACpB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAGD,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,OAAO,GAAG,KAAK,CAAC;AAErD,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,MAAM,EAAE,YAAY,CAAC;IACrB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,SAAS,EAAE,OAAO,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAGD,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,IAAI,EAAE,OAAO,CAAC;IACd,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAGD,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,OAAO,GAAG,IAAI,CAAC;IAC7B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,YAAY;IAC3B,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;CACrB;AAGD,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,SAAS,EAAE,OAAO,CAAC;IACnB,SAAS,EAAE,OAAO,CAAC;CACpB;AAGD,MAAM,MAAM,WAAW,GAAG,QAAQ,GAAG,MAAM,GAAG,WAAW,GAAG,MAAM,CAAC;AAEnE,MAAM,WAAW,cAAc;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,iBAAiB;IAChC,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,MAAM,CAAC,EAAE,QAAQ,GAAG,WAAW,GAAG,QAAQ,GAAG,KAAK,CAAC;IACnD,QAAQ,EAAE,cAAc,EAAE,CAAC;IAC3B,IAAI,CAAC,EAAE,WAAW,CAAC;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,OAAO,CAAC;IACd,OAAO,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC3B,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,QAAQ,EAAE,KAAK,CAAC;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACxE,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAGD,MAAM,WAAW,WAAW,CAAC,CAAC,GAAG,OAAO;IACtC,OAAO,EAAE,OAAO,CAAC;IACjB,IAAI,CAAC,EAAE,CAAC,CAAC;IACT,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAGD,MAAM,MAAM,OAAO,GAAG,WAAW,GAAG,WAAW,GAAG,YAAY,CAAC;AAG/D,MAAM,MAAM,MAAM,GAAG,MAAM,GAAG,SAAS,GAAG,KAAK,GAAG,UAAU,GAAG,YAAY,CAAC;AAE5E,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,eAAO,MAAM,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CAM5C,CAAC"}

package/dist/types.js

@@ -0,0 +1,7 @@
+export const TIERS = {
+    free: { features: ["discovery", "detection"], maxAgents: 1 },
+    starter: { features: ["discovery", "detection"], maxAgents: 3 },
+    pro: { features: ["discovery", "detection"], maxAgents: 5 },
+    business: { features: ["discovery", "detection", "protection"], maxAgents: 10 },
+    enterprise: { features: ["discovery", "detection", "protection"], maxAgents: 100 },
+};

package/dist/utils.d.ts

@@ -0,0 +1,10 @@
+export declare function generateSessionToken(): string;
+export declare function generateId(): string;
+export declare function formatNumber(n: number): string;
+export declare function sleep(ms: number): Promise<void>;
+export declare function maskSecret(value: string): string;
+/** Format relative time (e.g. "2m ago", "3h ago") */
+export declare function formatRelativeTime(dateStr: string | null): string;
+/** Categorize a skill by name */
+export declare function categorizeSkill(name: string): string;
+//# sourceMappingURL=utils.d.ts.map

package/dist/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAGA,wBAAgB,oBAAoB,IAAI,MAAM,CAE7C;AAED,wBAAgB,UAAU,IAAI,MAAM,CAEnC;AAED,wBAAgB,YAAY,CAAC,CAAC,EAAE,MAAM,GAAG,MAAM,CAE9C;AAED,wBAAgB,KAAK,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAE/C;AAED,wBAAgB,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAGhD;AAED,qDAAqD;AACrD,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,GAAG,MAAM,CAWjE;AAED,iCAAiC;AACjC,wBAAgB,eAAe,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAQpD"}

package/dist/utils.js

@@ -0,0 +1,51 @@
+import { randomBytes } from "crypto";
+import { SESSION_TOKEN_PREFIX } from "./constants.js";
+export function generateSessionToken() {
+    return `${SESSION_TOKEN_PREFIX}${randomBytes(32).toString("hex")}`;
+}
+export function generateId() {
+    return crypto.randomUUID();
+}
+export function formatNumber(n) {
+    return n.toLocaleString("en-US");
+}
+export function sleep(ms) {
+    return new Promise((resolve) => setTimeout(resolve, ms));
+}
+export function maskSecret(value) {
+    if (value.length <= 8)
+        return "****";
+    return "****" + value.slice(-4);
+}
+/** Format relative time (e.g. "2m ago", "3h ago") */
+export function formatRelativeTime(dateStr) {
+    if (!dateStr)
+        return "never";
+    const diff = Date.now() - new Date(dateStr).getTime();
+    const seconds = Math.floor(diff / 1000);
+    if (seconds < 60)
+        return "just now";
+    const minutes = Math.floor(seconds / 60);
+    if (minutes < 60)
+        return `${minutes}m ago`;
+    const hours = Math.floor(minutes / 60);
+    if (hours < 24)
+        return `${hours}h ago`;
+    const days = Math.floor(hours / 24);
+    return `${days}d ago`;
+}
+/** Categorize a skill by name */
+export function categorizeSkill(name) {
+    const n = name.toLowerCase();
+    if (n.includes("code") || n.includes("dev") || n.includes("debug"))
+        return "Development";
+    if (n.includes("write") || n.includes("doc") || n.includes("blog"))
+        return "Writing";
+    if (n.includes("search") || n.includes("web") || n.includes("browse"))
+        return "Research";
+    if (n.includes("deploy") || n.includes("ci") || n.includes("build"))
+        return "DevOps";
+    if (n.includes("data") || n.includes("sql") || n.includes("csv"))
+        return "Data";
+    return "Other";
+}

package/package.json

@@ -0,0 +1,29 @@
+{
+  "name": "@opentrust/shared",
+  "version": "7.1.0",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "description": "Shared types and constants for the OpenTrust platform",
+  "files": [
+    "dist"
+  ],
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.7.0"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/opentrust/opentrust.git",
+    "directory": "dashboard/packages/shared"
+  },
+  "author": "OpenTrust",
+  "license": "Apache-2.0",
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch"
+  }
+}