@orbytautomation/engine 0.4.0 → 0.5.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/automation/BackoffStrategy.d.ts +1 -19
- package/dist/automation/BackoffStrategy.d.ts.map +1 -1
- package/dist/automation/BackoffStrategy.js.map +1 -1
- package/dist/automation/FailureStrategy.d.ts +1 -34
- package/dist/automation/FailureStrategy.d.ts.map +1 -1
- package/dist/automation/FailureStrategy.js.map +1 -1
- package/dist/automation/RetryPolicy.d.ts +2 -22
- package/dist/automation/RetryPolicy.d.ts.map +1 -1
- package/dist/automation/RetryPolicy.js.map +1 -1
- package/dist/automation/TimeoutManager.d.ts +1 -26
- package/dist/automation/TimeoutManager.d.ts.map +1 -1
- package/dist/automation/TimeoutManager.js.map +1 -1
- package/dist/automation/runtime/FailureHandler.d.ts +2 -57
- package/dist/automation/runtime/FailureHandler.d.ts.map +1 -1
- package/dist/automation/runtime/FailureHandler.js.map +1 -1
- package/dist/context/ContextStore.d.ts +1 -36
- package/dist/context/ContextStore.d.ts.map +1 -1
- package/dist/context/ContextStore.js.map +1 -1
- package/dist/context/VariableResolver.d.ts +1 -44
- package/dist/context/VariableResolver.d.ts.map +1 -1
- package/dist/context/VariableResolver.js.map +1 -1
- package/dist/core/EngineConfig.d.ts +1 -138
- package/dist/core/EngineConfig.d.ts.map +1 -1
- package/dist/core/EngineConfig.js.map +1 -1
- package/dist/core/EngineContext.d.ts +1 -62
- package/dist/core/EngineContext.d.ts.map +1 -1
- package/dist/core/EngineContext.js.map +1 -1
- package/dist/core/OrbytEngine.d.ts +4 -28
- package/dist/core/OrbytEngine.d.ts.map +1 -1
- package/dist/core/OrbytEngine.js +35 -139
- package/dist/core/OrbytEngine.js.map +1 -1
- package/dist/errors/OrbytError.d.ts +1 -20
- package/dist/errors/OrbytError.d.ts.map +1 -1
- package/dist/errors/OrbytError.js.map +1 -1
- package/dist/errors/SecurityErrors.d.ts +2 -38
- package/dist/errors/SecurityErrors.d.ts.map +1 -1
- package/dist/errors/SecurityErrors.js +0 -20
- package/dist/errors/SecurityErrors.js.map +1 -1
- package/dist/errors/WorkflowError.d.ts +2 -1
- package/dist/errors/WorkflowError.d.ts.map +1 -1
- package/dist/errors/WorkflowError.js.map +1 -1
- package/dist/events/EngineEvents.d.ts +1 -123
- package/dist/events/EngineEvents.d.ts.map +1 -1
- package/dist/events/EngineEvents.js +0 -35
- package/dist/events/EngineEvents.js.map +1 -1
- package/dist/events/EventBus.d.ts +1 -1
- package/dist/events/EventBus.d.ts.map +1 -1
- package/dist/events/EventBus.js.map +1 -1
- package/dist/execution/ExecutionEngine.d.ts +1 -68
- package/dist/execution/ExecutionEngine.d.ts.map +1 -1
- package/dist/execution/ExecutionEngine.js +7 -5
- package/dist/execution/ExecutionEngine.js.map +1 -1
- package/dist/execution/ExecutionLimits.d.ts +1 -47
- package/dist/execution/ExecutionLimits.d.ts.map +1 -1
- package/dist/execution/ExecutionLimits.js +1 -60
- package/dist/execution/ExecutionLimits.js.map +1 -1
- package/dist/execution/ExecutionNode.d.ts +1 -64
- package/dist/execution/ExecutionNode.d.ts.map +1 -1
- package/dist/execution/ExecutionNode.js.map +1 -1
- package/dist/execution/ExecutionPlan.d.ts +1 -31
- package/dist/execution/ExecutionPlan.d.ts.map +1 -1
- package/dist/execution/ExecutionPlan.js.map +1 -1
- package/dist/execution/ExecutionStrategyResolver.d.ts +1 -54
- package/dist/execution/ExecutionStrategyResolver.d.ts.map +1 -1
- package/dist/execution/ExecutionStrategyResolver.js.map +1 -1
- package/dist/execution/IntentAnalyzer.d.ts +1 -37
- package/dist/execution/IntentAnalyzer.d.ts.map +1 -1
- package/dist/execution/IntentAnalyzer.js.map +1 -1
- package/dist/execution/InternalExecutionContext.d.ts +1 -196
- package/dist/execution/InternalExecutionContext.d.ts.map +1 -1
- package/dist/execution/InternalExecutionContext.js.map +1 -1
- package/dist/execution/StepExecutor.d.ts +1 -39
- package/dist/execution/StepExecutor.d.ts.map +1 -1
- package/dist/execution/StepExecutor.js +2 -1
- package/dist/execution/StepExecutor.js.map +1 -1
- package/dist/execution/WorkflowExecutor.d.ts +1 -48
- package/dist/execution/WorkflowExecutor.d.ts.map +1 -1
- package/dist/execution/WorkflowExecutor.js +2 -1
- package/dist/execution/WorkflowExecutor.js.map +1 -1
- package/dist/execution/drivers/AdapterDriver.d.ts +2 -1
- package/dist/execution/drivers/AdapterDriver.d.ts.map +1 -1
- package/dist/execution/drivers/AdapterDriver.js.map +1 -1
- package/dist/execution/drivers/DriverResolver.d.ts +1 -1
- package/dist/execution/drivers/DriverResolver.d.ts.map +1 -1
- package/dist/execution/drivers/DriverResolver.js.map +1 -1
- package/dist/execution/drivers/ExecutionDriver.d.ts +1 -94
- package/dist/execution/drivers/ExecutionDriver.d.ts.map +1 -1
- package/dist/execution/drivers/ExecutionDriver.js.map +1 -1
- package/dist/explanation/ExplanationGenerator.d.ts +1 -2
- package/dist/explanation/ExplanationGenerator.d.ts.map +1 -1
- package/dist/explanation/ExplanationGenerator.js.map +1 -1
- package/dist/explanation/ExplanationLogger.d.ts +1 -1
- package/dist/explanation/ExplanationLogger.d.ts.map +1 -1
- package/dist/explanation/ExplanationLogger.js.map +1 -1
- package/dist/explanation/index.d.ts +2 -3
- package/dist/explanation/index.d.ts.map +1 -1
- package/dist/explanation/index.js +2 -2
- package/dist/explanation/index.js.map +1 -1
- package/dist/graph/CycleDetector.d.ts +1 -10
- package/dist/graph/CycleDetector.d.ts.map +1 -1
- package/dist/graph/CycleDetector.js +1 -12
- package/dist/graph/CycleDetector.js.map +1 -1
- package/dist/graph/DependencyGraph.d.ts +3 -3
- package/dist/graph/DependencyGraph.d.ts.map +1 -1
- package/dist/graph/DependencyGraph.js +1 -1
- package/dist/graph/DependencyGraph.js.map +1 -1
- package/dist/graph/DependencyResolver.d.ts +1 -23
- package/dist/graph/DependencyResolver.d.ts.map +1 -1
- package/dist/graph/DependencyResolver.js.map +1 -1
- package/dist/graph/TopologicalSorter.d.ts +1 -34
- package/dist/graph/TopologicalSorter.d.ts.map +1 -1
- package/dist/graph/TopologicalSorter.js.map +1 -1
- package/dist/guards/ResourceGuard.d.ts +1 -20
- package/dist/guards/ResourceGuard.d.ts.map +1 -1
- package/dist/guards/ResourceGuard.js.map +1 -1
- package/dist/guards/StepGuard.d.ts +1 -1
- package/dist/guards/StepGuard.d.ts.map +1 -1
- package/dist/guards/StepGuard.js.map +1 -1
- package/dist/guards/WorkflowGuard.d.ts +1 -1
- package/dist/guards/WorkflowGuard.d.ts.map +1 -1
- package/dist/guards/WorkflowGuard.js.map +1 -1
- package/dist/index.d.ts +3 -1
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +4 -0
- package/dist/index.js.map +1 -1
- package/dist/loader/WorkflowLoader.d.ts +7 -24
- package/dist/loader/WorkflowLoader.d.ts.map +1 -1
- package/dist/loader/WorkflowLoader.js +64 -14
- package/dist/loader/WorkflowLoader.js.map +1 -1
- package/dist/loader/index.d.ts +0 -8
- package/dist/loader/index.d.ts.map +1 -1
- package/dist/loader/index.js +0 -8
- package/dist/loader/index.js.map +1 -1
- package/dist/logging/EngineLogger.d.ts +93 -57
- package/dist/logging/EngineLogger.d.ts.map +1 -1
- package/dist/logging/EngineLogger.js +188 -54
- package/dist/logging/EngineLogger.js.map +1 -1
- package/dist/logging/LoggerManager.d.ts +16 -3
- package/dist/logging/LoggerManager.d.ts.map +1 -1
- package/dist/logging/LoggerManager.js +26 -9
- package/dist/logging/LoggerManager.js.map +1 -1
- package/dist/parser/StepParser.d.ts +1 -38
- package/dist/parser/StepParser.d.ts.map +1 -1
- package/dist/parser/StepParser.js.map +1 -1
- package/dist/parser/WorkflowParser.d.ts +1 -68
- package/dist/parser/WorkflowParser.d.ts.map +1 -1
- package/dist/parser/WorkflowParser.js +0 -5
- package/dist/parser/WorkflowParser.js.map +1 -1
- package/dist/queue/InMemoryQueue.d.ts +1 -1
- package/dist/queue/InMemoryQueue.d.ts.map +1 -1
- package/dist/queue/InMemoryQueue.js.map +1 -1
- package/dist/queue/JobQueue.d.ts +1 -186
- package/dist/queue/JobQueue.d.ts.map +1 -1
- package/dist/queue/JobQueue.js +1 -10
- package/dist/queue/JobQueue.js.map +1 -1
- package/dist/scheduling/CronScheduler.d.ts +1 -31
- package/dist/scheduling/CronScheduler.d.ts.map +1 -1
- package/dist/scheduling/CronScheduler.js +1 -1
- package/dist/scheduling/CronScheduler.js.map +1 -1
- package/dist/scheduling/JobScheduler.d.ts +2 -3
- package/dist/scheduling/JobScheduler.d.ts.map +1 -1
- package/dist/scheduling/JobScheduler.js +2 -1
- package/dist/scheduling/JobScheduler.js.map +1 -1
- package/dist/scheduling/ScheduleTypes.d.ts +1 -131
- package/dist/scheduling/ScheduleTypes.d.ts.map +1 -1
- package/dist/scheduling/ScheduleTypes.js.map +1 -1
- package/dist/scheduling/Scheduler.d.ts +2 -3
- package/dist/scheduling/Scheduler.d.ts.map +1 -1
- package/dist/scheduling/Scheduler.js.map +1 -1
- package/dist/security/PermissionPolicy.d.ts +1 -13
- package/dist/security/PermissionPolicy.d.ts.map +1 -1
- package/dist/security/PermissionPolicy.js +1 -14
- package/dist/security/PermissionPolicy.js.map +1 -1
- package/dist/security/ReservedFields.d.ts +11 -20
- package/dist/security/ReservedFields.d.ts.map +1 -1
- package/dist/security/ReservedFields.js +72 -104
- package/dist/security/ReservedFields.js.map +1 -1
- package/dist/security/SandboxManager.d.ts +1 -29
- package/dist/security/SandboxManager.d.ts.map +1 -1
- package/dist/security/SandboxManager.js.map +1 -1
- package/dist/state/ExecutionState.d.ts +1 -123
- package/dist/state/ExecutionState.d.ts.map +1 -1
- package/dist/state/ExecutionState.js +1 -51
- package/dist/state/ExecutionState.js.map +1 -1
- package/dist/state/StateMachine.d.ts +1 -25
- package/dist/state/StateMachine.d.ts.map +1 -1
- package/dist/state/StateMachine.js +1 -1
- package/dist/state/StateMachine.js.map +1 -1
- package/dist/testing/EngineTestHarness.d.ts +1 -1
- package/dist/testing/EngineTestHarness.d.ts.map +1 -1
- package/dist/types/core-types.d.ts +2306 -4
- package/dist/types/core-types.d.ts.map +1 -1
- package/dist/types/core-types.js +272 -1
- package/dist/types/core-types.js.map +1 -1
- package/dist/types/index.d.ts +3 -0
- package/dist/types/index.d.ts.map +1 -0
- package/dist/types/index.js +3 -0
- package/dist/types/index.js.map +1 -0
- package/dist/types/log-types.d.ts +95 -2
- package/dist/types/log-types.d.ts.map +1 -1
- package/dist/types/log-types.js +10 -0
- package/dist/types/log-types.js.map +1 -1
- package/package.json +2 -2
- package/dist/explanation/ExplanationTypes.d.ts +0 -252
- package/dist/explanation/ExplanationTypes.d.ts.map +0 -1
- package/dist/explanation/ExplanationTypes.js +0 -10
- package/dist/explanation/ExplanationTypes.js.map +0 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"Scheduler.js","sourceRoot":"","sources":["../../src/scheduling/Scheduler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAClD,OAAO,EAAE,aAAa,
|
|
1
|
+
{"version":3,"file":"Scheduler.js","sourceRoot":"","sources":["../../src/scheduling/Scheduler.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AACnD,OAAO,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AACjD,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AACpD,OAAO,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AA2D5D;;;GAGG;AACH,MAAM,OAAO,SAAS;IACZ,aAAa,CAAgB;IAC7B,YAAY,CAAe;IAC3B,SAAS,GAAG,IAAI,GAAG,EAA4B,CAAC;IAChD,aAAa,GAAG,IAAI,GAAG,EAAuB,CAAC,CAAC,+BAA+B;IAC/E,eAAe,GAAG,IAAI,GAAG,EAAuB,CAAC,CAAC,2BAA2B;IAC7E,eAAe,CAA4B;IAClC,MAAM,CAA4B;IAEnD,YACE,QAAkB,EAClB,SAA0B,EAAE,EAC5B,eAA0C;QAE1C,IAAI,CAAC,MAAM,GAAG;YACZ,IAAI,EAAE;gBACJ,OAAO,EAAE,MAAM,CAAC,IAAI,EAAE,OAAO,IAAI,IAAI;gBACrC,aAAa,EAAE,MAAM,CAAC,IAAI,EAAE,aAAa,IAAI,EAAE;gBAC/C,eAAe,EAAE,MAAM,CAAC,IAAI,EAAE,eAAe,IAAI,KAAK;aACvD;YACD,GAAG,EAAE;gBACH,WAAW,EAAE,MAAM,CAAC,GAAG,EAAE,WAAW,IAAI,CAAC;gBACzC,aAAa,EAAE,MAAM,CAAC,GAAG,EAAE,aAAa,IAAI,EAAE;aAC/C;YACD,KAAK,EAAE;gBACL,OAAO,EAAE,MAAM,CAAC,KAAK,EAAE,OAAO,IAAI,IAAI;aACvC;YACD,OAAO,EAAE;gBACP,OAAO,EAAE,MAAM,CAAC,OAAO,EAAE,OAAO,IAAI,IAAI;gBACxC,IAAI,EAAE,MAAM,CAAC,OAAO,EAAE,IAAI,IAAI,IAAI;aACnC;SACF,CAAC;QAEF,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;QAEvC,wBAAwB;QACxB,MAAM,SAAS,GAA4B;YACzC,iBAAiB,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,EAAE;gBAC/C,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;YAClD,CAAC;SACF,CAAC;QAEF,IAAI,CAAC,aAAa,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;QACpE,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,CAAC,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAClE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,KAAK;QACT,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,EAAE,CAAC;QACzC,MAAM,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;QAE/C,MAAM,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;QACjC,MAAM,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAEhC,MAAM,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;IACjE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI;QACR,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,EAAE,CAAC;QACzC,MAAM,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;QAE/C,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC;QAChC,MAAM,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC;QAE/B,MAAM,CAAC,IAAI,CAAC,oCAAoC,CAAC,CAAC;IACpD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,KAA0B;QAC1C,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,EAAE,CAAC;QACzC,MAAM,QAAQ,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;QACvC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;QAE1C,MAAM,CAAC,IAAI,CAAC,gCAAgC,QAAQ,CAAC,IAAI,KAAK,QAAQ,CAAC,WAAW,GAAG,EAAE;YACrF,UAAU,EAAE,QAAQ,CAAC,EAAE;YACvB,WAAW,EAAE,QAAQ,CAAC,WAAW;YACjC,UAAU,EAAE,QAAQ,CAAC,UAAU;SAChC,CAAC,CAAC;QAEH,QAAQ,QAAQ,CAAC,WAAW,EAAE,CAAC;YAC7B,KAAK,WAAW,CAAC,IAAI;gBACnB,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;gBAC/C,MAAM;YAER,KAAK,UAAU,CAAC;YAChB,KAAK,MAAM;gBACT,gCAAgC;gBAChC,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;gBAC/C,MAAM;YAER,KAAK,WAAW,CAAC,KAAK;gBACpB,yBAAyB;gBACzB,IAAI,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,IAAI,KAAK,CAAC,WAAW,EAAE,CAAC;oBACnD,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,WAAW,CAAC,EAAE,CAAC;wBAC/C,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,WAAW,EAAE,IAAI,GAAG,EAAE,CAAC,CAAC;oBACvD,CAAC;oBACD,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,WAAW,CAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;gBAC9D,CAAC;gBACD,MAAM;YAER,KAAK,WAAW,CAAC,OAAO;gBACtB,2BAA2B;gBAC3B,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;oBACzD,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,eAAe,CAAC,EAAE,CAAC;wBACrD,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,eAAe,EAAE,IAAI,GAAG,EAAE,CAAC,CAAC;oBAC7D,CAAC;oBACD,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAC,eAAe,CAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;gBACpE,CAAC;gBACD,MAAM;YAER,KAAK,WAAW,CAAC,MAAM;gBACrB,kDAAkD;gBAClD,MAAM;YAER;gBACE,OAAO,CAAC,IAAI,CAAC,yBAAyB,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;QAClE,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,UAAkB;QACrC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAChD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,KAAK,CAAC;QACf,CAAC;QAED,oCAAoC;QACpC,QAAQ,QAAQ,CAAC,WAAW,EAAE,CAAC;YAC7B,KAAK,WAAW,CAAC,IAAI,CAAC;YACtB,KAAK,UAAU,CAAC;YAChB,KAAK,MAAM;gBACT,MAAM,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;gBACpD,MAAM;YAER,KAAK,WAAW,CAAC,KAAK;gBACpB,uBAAuB;gBACvB,KAAK,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,IAAI,IAAI,CAAC,aAAa,EAAE,CAAC;oBACvD,WAAW,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;oBAC/B,IAAI,WAAW,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;wBAC3B,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;oBACpC,CAAC;gBACH,CAAC;gBACD,MAAM;YAER,KAAK,WAAW,CAAC,OAAO;gBACtB,yBAAyB;gBACzB,KAAK,MAAM,CAAC,QAAQ,EAAE,WAAW,CAAC,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;oBAC3D,WAAW,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;oBAC/B,IAAI,WAAW,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;wBAC3B,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;oBACxC,CAAC;gBACH,CAAC;gBACD,MAAM;QACV,CAAC;QAED,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAC3C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,UAAkB,EAAE,KAA2B;QACjE,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAChD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,uBAAuB,UAAU,EAAE,CAAC,CAAC;QACvD,CAAC;QAED,MAAM,SAAS,GAAsB;YACnC,EAAE,EAAE,QAAQ,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE;YACnE,UAAU,EAAE,QAAQ,CAAC,EAAE;YACvB,UAAU,EAAE,QAAQ,CAAC,UAAU;YAC/B,WAAW,EAAE,IAAI,IAAI,EAAE;YACvB,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,MAAM,EAAE,SAAS;SAClB,CAAC;QAEF,6BAA6B;QAC7B,IAAI,KAAK,EAAE,CAAC;YACV,QAAQ,CAAC,KAAK,GAAG,EAAE,GAAG,QAAQ,CAAC,KAAK,EAAE,GAAG,KAAK,EAAE,CAAC;QACnD,CAAC;QAED,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QAChD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,OAAqB;QACtC,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;YAC/B,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QAC3D,IAAI,CAAC,WAAW,IAAI,WAAW,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;YAC3C,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,UAAU,GAAwB,EAAE,CAAC;QAE3C,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;YACrC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;YAChD,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;gBAC9C,SAAS;YACX,CAAC;YAED,oCAAoC;YAEpC,MAAM,SAAS,GAAsB;gBACnC,EAAE,EAAE,QAAQ,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE;gBACnE,UAAU,EAAE,QAAQ,CAAC,EAAE;gBACvB,UAAU,EAAE,QAAQ,CAAC,UAAU;gBAC/B,WAAW,EAAE,IAAI,IAAI,EAAE;gBACvB,SAAS,EAAE,IAAI,IAAI,EAAE;gBACrB,MAAM,EAAE,SAAS;aAClB,CAAC;YAEF,uCAAuC;YACvC,QAAQ,CAAC,KAAK,GAAG,EAAE,GAAG,QAAQ,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC;YAE5D,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;YAChD,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC7B,CAAC;QAED,OAAO,UAAU,CAAC;IACpB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,OAAuB;QAC1C,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;YACjC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,WAAW,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC/D,IAAI,CAAC,WAAW,IAAI,WAAW,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;YAC3C,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,UAAU,GAAwB,EAAE,CAAC;QAE3C,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;YACrC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;YAChD,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;gBAC9C,SAAS;YACX,CAAC;YAED,MAAM,SAAS,GAAsB;gBACnC,EAAE,EAAE,QAAQ,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE;gBACnE,UAAU,EAAE,QAAQ,CAAC,EAAE;gBACvB,UAAU,EAAE,QAAQ,CAAC,UAAU;gBAC/B,WAAW,EAAE,IAAI,IAAI,EAAE;gBACvB,SAAS,EAAE,IAAI,IAAI,EAAE;gBACrB,MAAM,EAAE,SAAS;aAClB,CAAC;YAEF,yCAAyC;YACzC,QAAQ,CAAC,KAAK,GAAG;gBACf,GAAG,QAAQ,CAAC,KAAK;gBACjB,OAAO,EAAE;oBACP,MAAM,EAAE,OAAO,CAAC,MAAM;oBACtB,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,OAAO,EAAE,OAAO,CAAC,OAAO;iBACzB;aACF,CAAC;YAEF,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;YAChD,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC7B,CAAC;QAED,OAAO,UAAU,CAAC;IACpB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,UAAkB,EAAE,KAA2B;QAC5D,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAChD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,uBAAuB,UAAU,EAAE,CAAC,CAAC;QACvD,CAAC;QAED,6BAA6B;QAC7B,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,EAAE,GAAG,QAAQ,CAAC,KAAK,EAAE,GAAG,KAAK,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC;QAE1E,OAAO,MAAM,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,QAAQ,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;IAC3E,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,eAAe,CAC3B,QAA0B,EAC1B,SAA4B;QAE5B,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACzB,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QAClD,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,IAAI,CAAC,iDAAiD,SAAS,CAAC,EAAE,EAAE,CAAC,CAAC;QAChF,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,UAAkB;QAClC,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,IAAI,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe;QACnB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,kBAAkB,CAAC,WAA8C;QACrE,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,KAAK,WAAW,CAAC,CAAC;IACxF,CAAC;IAED;;OAEG;IACH,QAAQ;QACN,OAAO;YACL,cAAc,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI;YACnC,aAAa,EAAE,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE;YAC5C,YAAY,EAAE,IAAI,CAAC,YAAY,CAAC,QAAQ,EAAE;YAC1C,aAAa,EAAE,IAAI,CAAC,aAAa,CAAC,IAAI;YACtC,eAAe,EAAE,IAAI,CAAC,eAAe,CAAC,IAAI;SAC3C,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,kBAAkB,CAAC,OAAiC;QAClD,IAAI,CAAC,eAAe,GAAG,OAAO,CAAC;IACjC,CAAC;CACF"}
|
|
@@ -7,19 +7,7 @@
|
|
|
7
7
|
* @module security
|
|
8
8
|
* @status stub - will be implemented when core engine is stable
|
|
9
9
|
*/
|
|
10
|
-
|
|
11
|
-
* Permission types for workflow execution
|
|
12
|
-
*/
|
|
13
|
-
export declare enum Permission {
|
|
14
|
-
HTTP_REQUEST = "http:request",
|
|
15
|
-
SHELL_EXECUTE = "shell:execute",
|
|
16
|
-
FILE_READ = "file:read",
|
|
17
|
-
FILE_WRITE = "file:write",
|
|
18
|
-
DB_READ = "db:read",
|
|
19
|
-
DB_WRITE = "db:write",
|
|
20
|
-
NETWORK_ACCESS = "network:access",
|
|
21
|
-
SYSTEM_ACCESS = "system:access"
|
|
22
|
-
}
|
|
10
|
+
import { Permission } from "../types/core-types.js";
|
|
23
11
|
/**
|
|
24
12
|
* Permission policy configuration
|
|
25
13
|
*/
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PermissionPolicy.d.ts","sourceRoot":"","sources":["../../src/security/PermissionPolicy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH
|
|
1
|
+
{"version":3,"file":"PermissionPolicy.d.ts","sourceRoot":"","sources":["../../src/security/PermissionPolicy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAEpD;;GAEG;AACH,MAAM,WAAW,sBAAsB;IACrC,0BAA0B;IAC1B,KAAK,EAAE,UAAU,EAAE,CAAC;IAEpB,yBAAyB;IACzB,IAAI,EAAE,UAAU,EAAE,CAAC;IAEnB,sBAAsB;IACtB,MAAM,CAAC,EAAE;QACP,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,CAAC;CACH;AAED;;;;GAIG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAAyB;gBAE3B,MAAM,EAAE,sBAAsB;IAI1C;;;;;OAKG;IACH,SAAS,CAAC,UAAU,EAAE,UAAU,GAAG,OAAO;IAO1C;;OAEG;IACH,SAAS;oBAnCK,MAAM;iBACT,MAAM;qBACF,MAAM;mBACR,MAAM;;IAoCnB;;OAEG;IACH,MAAM,CAAC,aAAa,IAAI,gBAAgB;IAWxC;;OAEG;IACH,MAAM,CAAC,gBAAgB,IAAI,gBAAgB;CAkB5C"}
|
|
@@ -7,20 +7,7 @@
|
|
|
7
7
|
* @module security
|
|
8
8
|
* @status stub - will be implemented when core engine is stable
|
|
9
9
|
*/
|
|
10
|
-
|
|
11
|
-
* Permission types for workflow execution
|
|
12
|
-
*/
|
|
13
|
-
export var Permission;
|
|
14
|
-
(function (Permission) {
|
|
15
|
-
Permission["HTTP_REQUEST"] = "http:request";
|
|
16
|
-
Permission["SHELL_EXECUTE"] = "shell:execute";
|
|
17
|
-
Permission["FILE_READ"] = "file:read";
|
|
18
|
-
Permission["FILE_WRITE"] = "file:write";
|
|
19
|
-
Permission["DB_READ"] = "db:read";
|
|
20
|
-
Permission["DB_WRITE"] = "db:write";
|
|
21
|
-
Permission["NETWORK_ACCESS"] = "network:access";
|
|
22
|
-
Permission["SYSTEM_ACCESS"] = "system:access";
|
|
23
|
-
})(Permission || (Permission = {}));
|
|
10
|
+
import { Permission } from "../types/core-types.js";
|
|
24
11
|
/**
|
|
25
12
|
* Permission Policy Manager
|
|
26
13
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PermissionPolicy.js","sourceRoot":"","sources":["../../src/security/PermissionPolicy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH
|
|
1
|
+
{"version":3,"file":"PermissionPolicy.js","sourceRoot":"","sources":["../../src/security/PermissionPolicy.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAqBpD;;;;GAIG;AACH,MAAM,OAAO,gBAAgB;IACnB,MAAM,CAAyB;IAEvC,YAAY,MAA8B;QACxC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED;;;;;OAKG;IACH,SAAS,CAAC,UAAsB;QAC9B,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YAC1C,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,SAAS;QACP,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,aAAa;QAClB,OAAO,IAAI,gBAAgB,CAAC;YAC1B,KAAK,EAAE,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC;YAChC,IAAI,EAAE,EAAE;YACR,MAAM,EAAE;gBACN,UAAU,EAAE,MAAM,EAAE,YAAY;gBAChC,QAAQ,EAAE,GAAG;aACd;SACF,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,gBAAgB;QACrB,OAAO,IAAI,gBAAgB,CAAC;YAC1B,KAAK,EAAE;gBACL,UAAU,CAAC,YAAY;gBACvB,UAAU,CAAC,SAAS;gBACpB,UAAU,CAAC,OAAO;aACnB;YACD,IAAI,EAAE;gBACJ,UAAU,CAAC,aAAa;gBACxB,UAAU,CAAC,aAAa;gBACxB,UAAU,CAAC,UAAU;aACtB;YACD,MAAM,EAAE;gBACN,UAAU,EAAE,KAAK,EAAE,WAAW;gBAC9B,QAAQ,EAAE,EAAE;aACb;SACF,CAAC,CAAC;IACL,CAAC;CACF"}
|
|
@@ -11,26 +11,7 @@
|
|
|
11
11
|
*
|
|
12
12
|
* @module security
|
|
13
13
|
*/
|
|
14
|
-
|
|
15
|
-
* Reserved top-level workflow fields
|
|
16
|
-
* These are NEVER user-controlled, always engine-injected
|
|
17
|
-
*/
|
|
18
|
-
export declare const RESERVED_WORKFLOW_FIELDS: readonly ["_internal", "_identity", "_ownership", "_billing", "_usage", "_audit", "_system", "_engine", "_execution", "_runtime", "_security", "_metadata"];
|
|
19
|
-
/**
|
|
20
|
-
* Reserved context field names
|
|
21
|
-
* Users cannot set these in workflow context
|
|
22
|
-
*/
|
|
23
|
-
export declare const RESERVED_CONTEXT_FIELDS: readonly ["_internal", "_identity", "_ownership", "_billing", "_usage", "_audit", "_system", "_engine", "_security", "executionId", "runId", "traceId", "userId", "workspaceId", "subscriptionId", "subscriptionTier", "billingId", "billingMode", "pricingTier", "pricingModel", "billingSnapshot"];
|
|
24
|
-
/**
|
|
25
|
-
* Reserved step field names
|
|
26
|
-
* Users cannot set these in step definitions
|
|
27
|
-
*/
|
|
28
|
-
export declare const RESERVED_STEP_FIELDS: readonly ["_internal", "_billing", "_usage", "_audit", "executionId", "runId", "stepExecutionId"];
|
|
29
|
-
/**
|
|
30
|
-
* Reserved annotation prefixes
|
|
31
|
-
* These annotation namespaces are reserved for engine use
|
|
32
|
-
*/
|
|
33
|
-
export declare const RESERVED_ANNOTATION_PREFIXES: readonly ["engine.", "system.", "internal.", "billing.", "audit.", "security."];
|
|
14
|
+
import { SecurityErrorCode } from '../types/core-types.js';
|
|
34
15
|
/**
|
|
35
16
|
* Check if a field name is reserved
|
|
36
17
|
*/
|
|
@@ -61,4 +42,14 @@ export declare function findReservedFields(obj: Record<string, any>, reservedLis
|
|
|
61
42
|
* @throws {SecurityError} If reserved fields are found
|
|
62
43
|
*/
|
|
63
44
|
export declare function validateWorkflowSecurity(workflow: any): void;
|
|
45
|
+
/**
|
|
46
|
+
* Collect all reserved field violations in a workflow (for advanced use/testing)
|
|
47
|
+
* Returns an array of violation objects with code, reason, and location
|
|
48
|
+
*/
|
|
49
|
+
export declare function getAllReservedFieldViolations(workflow: any): Array<{
|
|
50
|
+
field: string;
|
|
51
|
+
location: string;
|
|
52
|
+
code: SecurityErrorCode;
|
|
53
|
+
reason: string;
|
|
54
|
+
}>;
|
|
64
55
|
//# sourceMappingURL=ReservedFields.d.ts.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ReservedFields.d.ts","sourceRoot":"","sources":["../../src/security/ReservedFields.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;
|
|
1
|
+
{"version":3,"file":"ReservedFields.d.ts","sourceRoot":"","sources":["../../src/security/ReservedFields.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAGH,OAAO,EAAyG,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAGlK;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAElE;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAEjE;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAE9D;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,aAAa,EAAE,MAAM,GAAG,OAAO,CAEnE;AAsED;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACxB,YAAY,EAAE,SAAS,MAAM,EAAE,EAC/B,WAAW,UAAO,GACjB,MAAM,EAAE,CAeV;AAGD;;;;;;;GAOG;AACH,wBAAgB,wBAAwB,CAAC,QAAQ,EAAE,GAAG,GAAG,IAAI,CAiD5D;AAED;;;GAGG;AACH,wBAAgB,6BAA6B,CAAC,QAAQ,EAAE,GAAG,GAAG,KAAK,CAAC;IAAE,KAAK,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,iBAAiB,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC,CAqDhJ"}
|
|
@@ -11,77 +11,8 @@
|
|
|
11
11
|
*
|
|
12
12
|
* @module security
|
|
13
13
|
*/
|
|
14
|
-
import { SecurityError
|
|
15
|
-
|
|
16
|
-
* Reserved top-level workflow fields
|
|
17
|
-
* These are NEVER user-controlled, always engine-injected
|
|
18
|
-
*/
|
|
19
|
-
export const RESERVED_WORKFLOW_FIELDS = [
|
|
20
|
-
'_internal', // Internal execution context
|
|
21
|
-
'_identity', // Execution identity
|
|
22
|
-
'_ownership', // Ownership context
|
|
23
|
-
'_billing', // Billing context
|
|
24
|
-
'_usage', // Usage tracking
|
|
25
|
-
'_audit', // Audit trail
|
|
26
|
-
'_system', // System fields
|
|
27
|
-
'_engine', // Engine metadata
|
|
28
|
-
'_execution', // Execution context (internal)
|
|
29
|
-
'_runtime', // Runtime context (internal)
|
|
30
|
-
'_security', // Security context
|
|
31
|
-
'_metadata', // Internal metadata
|
|
32
|
-
];
|
|
33
|
-
/**
|
|
34
|
-
* Reserved context field names
|
|
35
|
-
* Users cannot set these in workflow context
|
|
36
|
-
*/
|
|
37
|
-
export const RESERVED_CONTEXT_FIELDS = [
|
|
38
|
-
'_internal',
|
|
39
|
-
'_identity',
|
|
40
|
-
'_ownership',
|
|
41
|
-
'_billing',
|
|
42
|
-
'_usage',
|
|
43
|
-
'_audit',
|
|
44
|
-
'_system',
|
|
45
|
-
'_engine',
|
|
46
|
-
'_security',
|
|
47
|
-
'executionId',
|
|
48
|
-
'runId',
|
|
49
|
-
'traceId',
|
|
50
|
-
'userId',
|
|
51
|
-
'workspaceId',
|
|
52
|
-
'subscriptionId',
|
|
53
|
-
'subscriptionTier',
|
|
54
|
-
'billingId',
|
|
55
|
-
'billingMode',
|
|
56
|
-
'pricingTier',
|
|
57
|
-
'pricingModel',
|
|
58
|
-
'billingSnapshot',
|
|
59
|
-
];
|
|
60
|
-
/**
|
|
61
|
-
* Reserved step field names
|
|
62
|
-
* Users cannot set these in step definitions
|
|
63
|
-
*/
|
|
64
|
-
export const RESERVED_STEP_FIELDS = [
|
|
65
|
-
'_internal',
|
|
66
|
-
'_billing',
|
|
67
|
-
'_usage',
|
|
68
|
-
'_audit',
|
|
69
|
-
'executionId',
|
|
70
|
-
'runId',
|
|
71
|
-
'stepExecutionId',
|
|
72
|
-
];
|
|
73
|
-
/**
|
|
74
|
-
* Reserved annotation prefixes
|
|
75
|
-
* These annotation namespaces are reserved for engine use
|
|
76
|
-
*/
|
|
77
|
-
export const RESERVED_ANNOTATION_PREFIXES = [
|
|
78
|
-
'engine.',
|
|
79
|
-
'system.',
|
|
80
|
-
'internal.',
|
|
81
|
-
'billing.',
|
|
82
|
-
'audit.',
|
|
83
|
-
'security.',
|
|
84
|
-
];
|
|
14
|
+
import { SecurityError } from '../errors/SecurityErrors.js';
|
|
15
|
+
import { RESERVED_ANNOTATION_PREFIXES, RESERVED_CONTEXT_FIELDS, RESERVED_STEP_FIELDS, RESERVED_WORKFLOW_FIELDS, SecurityErrorCode } from '../types/core-types.js';
|
|
85
16
|
/**
|
|
86
17
|
* Check if a field name is reserved
|
|
87
18
|
*/
|
|
@@ -187,67 +118,104 @@ export function findReservedFields(obj, reservedList, checkPrefix = true) {
|
|
|
187
118
|
* @throws {SecurityError} If reserved fields are found
|
|
188
119
|
*/
|
|
189
120
|
export function validateWorkflowSecurity(workflow) {
|
|
121
|
+
// 1. Check top-level workflow fields for reserved/internal fields
|
|
122
|
+
for (const key of Object.keys(workflow)) {
|
|
123
|
+
if (isReservedWorkflowField(key)) {
|
|
124
|
+
const code = determineErrorCode(key);
|
|
125
|
+
const reason = getFieldReason(key);
|
|
126
|
+
const err = SecurityError.reservedFieldOverride(key, 'workflow (root level)', code === SecurityErrorCode.BILLING_FIELD_OVERRIDE ? 'billing' : 'internal');
|
|
127
|
+
err.reason = reason;
|
|
128
|
+
throw err;
|
|
129
|
+
}
|
|
130
|
+
}
|
|
131
|
+
// 2. workflow.context fields
|
|
132
|
+
if (workflow.context && typeof workflow.context === 'object') {
|
|
133
|
+
const contextViolations = findReservedFields(workflow.context, RESERVED_CONTEXT_FIELDS);
|
|
134
|
+
if (contextViolations.length > 0) {
|
|
135
|
+
const key = contextViolations[0];
|
|
136
|
+
const code = determineErrorCode(key);
|
|
137
|
+
const reason = getFieldReason(key);
|
|
138
|
+
const err = SecurityError.reservedFieldOverride(key, 'workflow.context', code === SecurityErrorCode.BILLING_FIELD_OVERRIDE ? 'billing' : 'internal');
|
|
139
|
+
err.reason = reason;
|
|
140
|
+
throw err;
|
|
141
|
+
}
|
|
142
|
+
}
|
|
143
|
+
// 3. Annotations
|
|
144
|
+
if (workflow.annotations && typeof workflow.annotations === 'object') {
|
|
145
|
+
for (const key of Object.keys(workflow.annotations)) {
|
|
146
|
+
if (isReservedAnnotation(key)) {
|
|
147
|
+
throw SecurityError.reservedAnnotation(key, 'workflow.annotations');
|
|
148
|
+
}
|
|
149
|
+
}
|
|
150
|
+
}
|
|
151
|
+
// 4. Steps
|
|
152
|
+
if (workflow.workflow?.steps && Array.isArray(workflow.workflow.steps)) {
|
|
153
|
+
for (let index = 0; index < workflow.workflow.steps.length; index++) {
|
|
154
|
+
const step = workflow.workflow.steps[index];
|
|
155
|
+
const stepViolations = findReservedFields(step, RESERVED_STEP_FIELDS);
|
|
156
|
+
if (stepViolations.length > 0) {
|
|
157
|
+
const key = stepViolations[0];
|
|
158
|
+
const code = determineErrorCode(key);
|
|
159
|
+
const reason = getFieldReason(key);
|
|
160
|
+
const err = SecurityError.reservedFieldOverride(key, `workflow.steps[${index}] (${step.id || 'unnamed'})`, code === SecurityErrorCode.BILLING_FIELD_OVERRIDE ? 'billing' : 'internal');
|
|
161
|
+
err.reason = reason;
|
|
162
|
+
throw err;
|
|
163
|
+
}
|
|
164
|
+
}
|
|
165
|
+
}
|
|
166
|
+
}
|
|
167
|
+
/**
|
|
168
|
+
* Collect all reserved field violations in a workflow (for advanced use/testing)
|
|
169
|
+
* Returns an array of violation objects with code, reason, and location
|
|
170
|
+
*/
|
|
171
|
+
export function getAllReservedFieldViolations(workflow) {
|
|
190
172
|
const violations = [];
|
|
191
|
-
// 1.
|
|
192
|
-
const
|
|
193
|
-
for (const field of topLevelViolations) {
|
|
173
|
+
// 1. Top-level
|
|
174
|
+
for (const key of findReservedFields(workflow, RESERVED_WORKFLOW_FIELDS)) {
|
|
194
175
|
violations.push({
|
|
195
|
-
|
|
176
|
+
field: key,
|
|
196
177
|
location: 'workflow (root level)',
|
|
197
|
-
|
|
198
|
-
|
|
199
|
-
reason: getFieldReason(field),
|
|
200
|
-
suggestion: `Remove '${field}' from your workflow YAML. The engine will inject this field automatically during execution.`,
|
|
178
|
+
code: determineErrorCode(key),
|
|
179
|
+
reason: getFieldReason(key),
|
|
201
180
|
});
|
|
202
181
|
}
|
|
203
|
-
// 2.
|
|
182
|
+
// 2. Context
|
|
204
183
|
if (workflow.context && typeof workflow.context === 'object') {
|
|
205
|
-
const
|
|
206
|
-
for (const field of contextViolations) {
|
|
184
|
+
for (const key of findReservedFields(workflow.context, RESERVED_CONTEXT_FIELDS)) {
|
|
207
185
|
violations.push({
|
|
208
|
-
|
|
186
|
+
field: key,
|
|
209
187
|
location: 'workflow.context',
|
|
210
|
-
|
|
211
|
-
|
|
212
|
-
reason: getFieldReason(field),
|
|
213
|
-
suggestion: `Remove '${field}' from workflow.context. Use custom field names like 'myContext' or 'customData' instead.`,
|
|
188
|
+
code: determineErrorCode(key),
|
|
189
|
+
reason: getFieldReason(key),
|
|
214
190
|
});
|
|
215
191
|
}
|
|
216
192
|
}
|
|
217
|
-
// 3.
|
|
193
|
+
// 3. Annotations
|
|
218
194
|
if (workflow.annotations && typeof workflow.annotations === 'object') {
|
|
219
195
|
for (const key of Object.keys(workflow.annotations)) {
|
|
220
196
|
if (isReservedAnnotation(key)) {
|
|
221
197
|
violations.push({
|
|
222
|
-
code: SecurityErrorCode.RESERVED_ANNOTATION_NAMESPACE,
|
|
223
|
-
location: 'workflow.annotations',
|
|
224
198
|
field: key,
|
|
225
|
-
|
|
199
|
+
location: 'workflow.annotations',
|
|
200
|
+
code: SecurityErrorCode.RESERVED_ANNOTATION_NAMESPACE,
|
|
226
201
|
reason: `Annotation namespace '${key.split('.')[0]}.' is reserved for engine use.`,
|
|
227
|
-
suggestion: `Use a custom prefix like 'custom.${key}' or 'my.${key}' instead.`,
|
|
228
202
|
});
|
|
229
203
|
}
|
|
230
204
|
}
|
|
231
205
|
}
|
|
232
|
-
// 4.
|
|
206
|
+
// 4. Steps
|
|
233
207
|
if (workflow.workflow?.steps && Array.isArray(workflow.workflow.steps)) {
|
|
234
208
|
workflow.workflow.steps.forEach((step, index) => {
|
|
235
|
-
const
|
|
236
|
-
for (const field of stepViolations) {
|
|
209
|
+
for (const key of findReservedFields(step, RESERVED_STEP_FIELDS)) {
|
|
237
210
|
violations.push({
|
|
238
|
-
|
|
211
|
+
field: key,
|
|
239
212
|
location: `workflow.steps[${index}] (${step.id || 'unnamed'})`,
|
|
240
|
-
|
|
241
|
-
|
|
242
|
-
reason: getFieldReason(field),
|
|
243
|
-
suggestion: `Remove '${field}' from step definition. The engine tracks execution state internally.`,
|
|
213
|
+
code: determineErrorCode(key),
|
|
214
|
+
reason: getFieldReason(key),
|
|
244
215
|
});
|
|
245
216
|
}
|
|
246
217
|
});
|
|
247
218
|
}
|
|
248
|
-
|
|
249
|
-
if (violations.length > 0) {
|
|
250
|
-
throw new SecurityError(violations);
|
|
251
|
-
}
|
|
219
|
+
return violations;
|
|
252
220
|
}
|
|
253
221
|
//# sourceMappingURL=ReservedFields.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ReservedFields.js","sourceRoot":"","sources":["../../src/security/ReservedFields.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,
|
|
1
|
+
{"version":3,"file":"ReservedFields.js","sourceRoot":"","sources":["../../src/security/ReservedFields.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,6BAA6B,CAAC;AAC5D,OAAO,EAAE,4BAA4B,EAAE,uBAAuB,EAAE,oBAAoB,EAAE,wBAAwB,EAAE,iBAAiB,EAAE,MAAM,wBAAwB,CAAC;AAGlK;;GAEG;AACH,MAAM,UAAU,uBAAuB,CAAC,SAAiB;IACvD,OAAO,wBAAwB,CAAC,QAAQ,CAAC,SAAgB,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;AAC1F,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,SAAiB;IACtD,OAAO,uBAAuB,CAAC,QAAQ,CAAC,SAAgB,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;AACzF,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,SAAiB;IACnD,OAAO,oBAAoB,CAAC,QAAQ,CAAC,SAAgB,CAAC,CAAC;AACzD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAAC,aAAqB;IACxD,OAAO,4BAA4B,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;AACvF,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,KAAa;IACvC,yBAAyB;IACzB,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QACvH,OAAO,iBAAiB,CAAC,sBAAsB,CAAC;IAClD,CAAC;IAED,kBAAkB;IAClB,IAAI,KAAK,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QAC1F,OAAO,iBAAiB,CAAC,uBAAuB,CAAC;IACnD,CAAC;IAED,mBAAmB;IACnB,IAAI,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;QAClG,OAAO,iBAAiB,CAAC,wBAAwB,CAAC;IACpD,CAAC;IAED,uBAAuB;IACvB,IAAI,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;QACrF,OAAO,iBAAiB,CAAC,sBAAsB,CAAC;IAClD,CAAC;IAED,mDAAmD;IACnD,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC1B,OAAO,iBAAiB,CAAC,uBAAuB,CAAC;IACnD,CAAC;IAED,qCAAqC;IACrC,OAAO,iBAAiB,CAAC,uBAAuB,CAAC;AACnD,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,KAAa;IACnC,IAAI,KAAK,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QAC9D,OAAO,4GAA4G,CAAC;IACtH,CAAC;IAED,IAAI,KAAK,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAClC,OAAO,mGAAmG,CAAC;IAC7G,CAAC;IAED,IAAI,KAAK,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAClC,OAAO,+FAA+F,CAAC;IACzG,CAAC;IAED,IAAI,KAAK,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;QACnC,OAAO,4FAA4F,CAAC;IACtG,CAAC;IAED,IAAI,KAAK,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC/B,OAAO,mGAAmG,CAAC;IAC7G,CAAC;IAED,IAAI,KAAK,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC7D,OAAO,sFAAsF,CAAC;IAChG,CAAC;IAED,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC1B,OAAO,2FAA2F,CAAC;IACrG,CAAC;IAED,OAAO,uEAAuE,CAAC;AACjF,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAChC,GAAwB,EACxB,YAA+B,EAC/B,WAAW,GAAG,IAAI;IAElB,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;QACnC,8BAA8B;QAC9B,IAAI,YAAY,CAAC,QAAQ,CAAC,GAAU,CAAC,EAAE,CAAC;YACtC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAClB,CAAC;QACD,oDAAoD;aAC/C,IAAI,WAAW,IAAI,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC5C,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAClB,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAGD;;;;;;;GAOG;AACH,MAAM,UAAU,wBAAwB,CAAC,QAAa;IACpD,kEAAkE;IAClE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;QACxC,IAAI,uBAAuB,CAAC,GAAG,CAAC,EAAE,CAAC;YACjC,MAAM,IAAI,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;YACrC,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;YACnC,MAAM,GAAG,GAAG,aAAa,CAAC,qBAAqB,CAAC,GAAG,EAAE,uBAAuB,EAAE,IAAI,KAAK,iBAAiB,CAAC,sBAAsB,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;YACzJ,GAAW,CAAC,MAAM,GAAG,MAAM,CAAC;YAC7B,MAAM,GAAG,CAAC;QACZ,CAAC;IACH,CAAC;IAED,6BAA6B;IAC7B,IAAI,QAAQ,CAAC,OAAO,IAAI,OAAO,QAAQ,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QAC7D,MAAM,iBAAiB,GAAG,kBAAkB,CAAC,QAAQ,CAAC,OAAO,EAAE,uBAAuB,CAAC,CAAC;QACxF,IAAI,iBAAiB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACjC,MAAM,GAAG,GAAG,iBAAiB,CAAC,CAAC,CAAC,CAAC;YACjC,MAAM,IAAI,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;YACrC,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;YACnC,MAAM,GAAG,GAAG,aAAa,CAAC,qBAAqB,CAAC,GAAG,EAAE,kBAAkB,EAAE,IAAI,KAAK,iBAAiB,CAAC,sBAAsB,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;YACpJ,GAAW,CAAC,MAAM,GAAG,MAAM,CAAC;YAC7B,MAAM,GAAG,CAAC;QACZ,CAAC;IACH,CAAC;IAED,iBAAiB;IACjB,IAAI,QAAQ,CAAC,WAAW,IAAI,OAAO,QAAQ,CAAC,WAAW,KAAK,QAAQ,EAAE,CAAC;QACrE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YACpD,IAAI,oBAAoB,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC9B,MAAM,aAAa,CAAC,kBAAkB,CAAC,GAAG,EAAE,sBAAsB,CAAC,CAAC;YACtE,CAAC;QACH,CAAC;IACH,CAAC;IAED,WAAW;IACX,IAAI,QAAQ,CAAC,QAAQ,EAAE,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACvE,KAAK,IAAI,KAAK,GAAG,CAAC,EAAE,KAAK,GAAG,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,CAAC;YACpE,MAAM,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YAC5C,MAAM,cAAc,GAAG,kBAAkB,CAAC,IAAI,EAAE,oBAAoB,CAAC,CAAC;YACtE,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAC9B,MAAM,GAAG,GAAG,cAAc,CAAC,CAAC,CAAC,CAAC;gBAC9B,MAAM,IAAI,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;gBACrC,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,CAAC;gBACnC,MAAM,GAAG,GAAG,aAAa,CAAC,qBAAqB,CAAC,GAAG,EAAE,kBAAkB,KAAK,MAAM,IAAI,CAAC,EAAE,IAAI,SAAS,GAAG,EAAE,IAAI,KAAK,iBAAiB,CAAC,sBAAsB,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;gBACtL,GAAW,CAAC,MAAM,GAAG,MAAM,CAAC;gBAC7B,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,6BAA6B,CAAC,QAAa;IACzD,MAAM,UAAU,GAAwF,EAAE,CAAC;IAE3G,eAAe;IACf,KAAK,MAAM,GAAG,IAAI,kBAAkB,CAAC,QAAQ,EAAE,wBAAwB,CAAC,EAAE,CAAC;QACzE,UAAU,CAAC,IAAI,CAAC;YACd,KAAK,EAAE,GAAG;YACV,QAAQ,EAAE,uBAAuB;YACjC,IAAI,EAAE,kBAAkB,CAAC,GAAG,CAAC;YAC7B,MAAM,EAAE,cAAc,CAAC,GAAG,CAAC;SAC5B,CAAC,CAAC;IACL,CAAC;IAED,aAAa;IACb,IAAI,QAAQ,CAAC,OAAO,IAAI,OAAO,QAAQ,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QAC7D,KAAK,MAAM,GAAG,IAAI,kBAAkB,CAAC,QAAQ,CAAC,OAAO,EAAE,uBAAuB,CAAC,EAAE,CAAC;YAChF,UAAU,CAAC,IAAI,CAAC;gBACd,KAAK,EAAE,GAAG;gBACV,QAAQ,EAAE,kBAAkB;gBAC5B,IAAI,EAAE,kBAAkB,CAAC,GAAG,CAAC;gBAC7B,MAAM,EAAE,cAAc,CAAC,GAAG,CAAC;aAC5B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,iBAAiB;IACjB,IAAI,QAAQ,CAAC,WAAW,IAAI,OAAO,QAAQ,CAAC,WAAW,KAAK,QAAQ,EAAE,CAAC;QACrE,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YACpD,IAAI,oBAAoB,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC9B,UAAU,CAAC,IAAI,CAAC;oBACd,KAAK,EAAE,GAAG;oBACV,QAAQ,EAAE,sBAAsB;oBAChC,IAAI,EAAE,iBAAiB,CAAC,6BAA6B;oBACrD,MAAM,EAAE,yBAAyB,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,gCAAgC;iBACnF,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,WAAW;IACX,IAAI,QAAQ,CAAC,QAAQ,EAAE,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACvE,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAS,EAAE,KAAa,EAAE,EAAE;YAC3D,KAAK,MAAM,GAAG,IAAI,kBAAkB,CAAC,IAAI,EAAE,oBAAoB,CAAC,EAAE,CAAC;gBACjE,UAAU,CAAC,IAAI,CAAC;oBACd,KAAK,EAAE,GAAG;oBACV,QAAQ,EAAE,kBAAkB,KAAK,MAAM,IAAI,CAAC,EAAE,IAAI,SAAS,GAAG;oBAC9D,IAAI,EAAE,kBAAkB,CAAC,GAAG,CAAC;oBAC7B,MAAM,EAAE,cAAc,CAAC,GAAG,CAAC;iBAC5B,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IACD,OAAO,UAAU,CAAC;AACpB,CAAC"}
|
|
@@ -7,35 +7,7 @@
|
|
|
7
7
|
* @module security
|
|
8
8
|
* @status stub - will be implemented when core engine is stable
|
|
9
9
|
*/
|
|
10
|
-
import
|
|
11
|
-
/**
|
|
12
|
-
* Sandbox configuration
|
|
13
|
-
*/
|
|
14
|
-
export interface SandboxConfig {
|
|
15
|
-
/** Policy to enforce */
|
|
16
|
-
policy: PermissionPolicy;
|
|
17
|
-
/** Isolated environment variables */
|
|
18
|
-
env?: Record<string, string>;
|
|
19
|
-
/** Working directory */
|
|
20
|
-
cwd?: string;
|
|
21
|
-
}
|
|
22
|
-
/**
|
|
23
|
-
* Sandbox execution context
|
|
24
|
-
*/
|
|
25
|
-
export interface SandboxContext {
|
|
26
|
-
/** Sandbox ID */
|
|
27
|
-
id: string;
|
|
28
|
-
/** Policy being enforced */
|
|
29
|
-
policy: PermissionPolicy;
|
|
30
|
-
/** Start time */
|
|
31
|
-
startedAt: Date;
|
|
32
|
-
/** Resource usage tracking */
|
|
33
|
-
usage: {
|
|
34
|
-
memory: number;
|
|
35
|
-
cpu: number;
|
|
36
|
-
duration: number;
|
|
37
|
-
};
|
|
38
|
-
}
|
|
10
|
+
import { SandboxConfig, SandboxContext } from "../types/core-types.js";
|
|
39
11
|
/**
|
|
40
12
|
* Sandbox Manager
|
|
41
13
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"SandboxManager.d.ts","sourceRoot":"","sources":["../../src/security/SandboxManager.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,
|
|
1
|
+
{"version":3,"file":"SandboxManager.d.ts","sourceRoot":"","sources":["../../src/security/SandboxManager.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAEvE;;;;GAIG;AACH,qBAAa,cAAc;IACzB,OAAO,CAAC,eAAe,CAAqC;IAE5D;;;;;OAKG;IACG,aAAa,CAAC,MAAM,EAAE,aAAa,GAAG,OAAO,CAAC,cAAc,CAAC;IAkBnE;;;;;;OAMG;IACG,OAAO,CAAC,CAAC,EAAE,SAAS,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC;IAoBrE;;;;OAIG;IACG,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAItD;;OAEG;IACH,qBAAqB,IAAI,MAAM;CAGhC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"SandboxManager.js","sourceRoot":"","sources":["../../src/security/SandboxManager.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;
|
|
1
|
+
{"version":3,"file":"SandboxManager.js","sourceRoot":"","sources":["../../src/security/SandboxManager.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH;;;;GAIG;AACH,MAAM,OAAO,cAAc;IACjB,eAAe,GAAG,IAAI,GAAG,EAA0B,CAAC;IAE5D;;;;;OAKG;IACH,KAAK,CAAC,aAAa,CAAC,MAAqB;QACvC,MAAM,SAAS,GAAG,WAAW,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC;QAErF,MAAM,OAAO,GAAmB;YAC9B,EAAE,EAAE,SAAS;YACb,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,KAAK,EAAE;gBACL,MAAM,EAAE,CAAC;gBACT,GAAG,EAAE,CAAC;gBACN,QAAQ,EAAE,CAAC;aACZ;SACF,CAAC;QAEF,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAC7C,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,OAAO,CAAI,SAAiB,EAAE,EAAoB;QACtD,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QACpD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,sBAAsB,SAAS,EAAE,CAAC,CAAC;QACrD,CAAC;QAED,yDAAyD;QACzD,iCAAiC;QACjC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,EAAE,EAAE,CAAC;YAC1B,OAAO,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAChD,OAAO,MAAM,CAAC;QAChB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAChD,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,cAAc,CAAC,SAAiB;QACpC,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACH,qBAAqB;QACnB,OAAO,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC;IACnC,CAAC;CACF"}
|
|
@@ -6,129 +6,7 @@
|
|
|
6
6
|
*
|
|
7
7
|
* @module state
|
|
8
8
|
*/
|
|
9
|
-
|
|
10
|
-
* Step execution status
|
|
11
|
-
*
|
|
12
|
-
* Lifecycle:
|
|
13
|
-
* PENDING → RUNNING → SUCCESS → COMPLETED
|
|
14
|
-
* OR
|
|
15
|
-
* PENDING → RUNNING → FAILED → RETRYING → RUNNING → SUCCESS → COMPLETED
|
|
16
|
-
* OR
|
|
17
|
-
* PENDING → SKIPPED
|
|
18
|
-
*/
|
|
19
|
-
export declare enum StepStatus {
|
|
20
|
-
/** Step is queued, not yet started */
|
|
21
|
-
PENDING = "PENDING",
|
|
22
|
-
/** Step is currently executing */
|
|
23
|
-
RUNNING = "RUNNING",
|
|
24
|
-
/** Step completed successfully */
|
|
25
|
-
SUCCESS = "SUCCESS",
|
|
26
|
-
/** Step failed */
|
|
27
|
-
FAILED = "FAILED",
|
|
28
|
-
/** Step is retrying after failure */
|
|
29
|
-
RETRYING = "RETRYING",
|
|
30
|
-
/** Step was skipped (conditional execution) */
|
|
31
|
-
SKIPPED = "SKIPPED",
|
|
32
|
-
/** Step timed out */
|
|
33
|
-
TIMEOUT = "TIMEOUT",
|
|
34
|
-
/** Step was cancelled */
|
|
35
|
-
CANCELLED = "CANCELLED"
|
|
36
|
-
}
|
|
37
|
-
/**
|
|
38
|
-
* Workflow execution status
|
|
39
|
-
*/
|
|
40
|
-
export declare enum WorkflowStatus {
|
|
41
|
-
/** Workflow is queued, not yet started */
|
|
42
|
-
QUEUED = "QUEUED",
|
|
43
|
-
/** Workflow is currently executing */
|
|
44
|
-
RUNNING = "RUNNING",
|
|
45
|
-
/** Workflow completed successfully (all steps success) */
|
|
46
|
-
COMPLETED = "COMPLETED",
|
|
47
|
-
/** Workflow failed (one or more steps failed) */
|
|
48
|
-
FAILED = "FAILED",
|
|
49
|
-
/** Workflow partially completed (some steps failed but continueOnError=true) */
|
|
50
|
-
PARTIAL = "PARTIAL",
|
|
51
|
-
/** Workflow timed out */
|
|
52
|
-
TIMEOUT = "TIMEOUT",
|
|
53
|
-
/** Workflow was cancelled */
|
|
54
|
-
CANCELLED = "CANCELLED",
|
|
55
|
-
/** Workflow is paused (future feature) */
|
|
56
|
-
PAUSED = "PAUSED"
|
|
57
|
-
}
|
|
58
|
-
/**
|
|
59
|
-
* Step execution state
|
|
60
|
-
*/
|
|
61
|
-
export interface StepExecutionState {
|
|
62
|
-
/** Unique step ID */
|
|
63
|
-
stepId: string;
|
|
64
|
-
/** Current status */
|
|
65
|
-
status: StepStatus;
|
|
66
|
-
/** Number of execution attempts */
|
|
67
|
-
attempts: number;
|
|
68
|
-
/** Start timestamp (ms since epoch) */
|
|
69
|
-
startTime?: number;
|
|
70
|
-
/** End timestamp (ms since epoch) */
|
|
71
|
-
endTime?: number;
|
|
72
|
-
/** Error information if failed */
|
|
73
|
-
error?: {
|
|
74
|
-
message: string;
|
|
75
|
-
code?: string;
|
|
76
|
-
stack?: string;
|
|
77
|
-
};
|
|
78
|
-
/** Step output data (if successful) */
|
|
79
|
-
output?: any;
|
|
80
|
-
/** Execution duration in milliseconds */
|
|
81
|
-
duration?: number;
|
|
82
|
-
/** Last updated timestamp */
|
|
83
|
-
updatedAt: number;
|
|
84
|
-
}
|
|
85
|
-
/**
|
|
86
|
-
* Workflow execution state
|
|
87
|
-
*/
|
|
88
|
-
export interface WorkflowExecutionState {
|
|
89
|
-
/** Unique workflow execution ID */
|
|
90
|
-
executionId: string;
|
|
91
|
-
/** Workflow name/ID */
|
|
92
|
-
workflowId: string;
|
|
93
|
-
/** Current workflow status */
|
|
94
|
-
status: WorkflowStatus;
|
|
95
|
-
/** State of all steps (keyed by step ID) */
|
|
96
|
-
steps: Record<string, StepExecutionState>;
|
|
97
|
-
/** Workflow start timestamp (ms since epoch) */
|
|
98
|
-
startedAt?: number;
|
|
99
|
-
/** Workflow completion timestamp (ms since epoch) */
|
|
100
|
-
finishedAt?: number;
|
|
101
|
-
/** Total workflow duration in milliseconds */
|
|
102
|
-
duration?: number;
|
|
103
|
-
/** Workflow-level error (if failed) */
|
|
104
|
-
error?: {
|
|
105
|
-
message: string;
|
|
106
|
-
stepId?: string;
|
|
107
|
-
code?: string;
|
|
108
|
-
};
|
|
109
|
-
/** Execution metadata */
|
|
110
|
-
metadata: {
|
|
111
|
-
/** Total number of steps */
|
|
112
|
-
totalSteps: number;
|
|
113
|
-
/** Number of completed steps */
|
|
114
|
-
completedSteps: number;
|
|
115
|
-
/** Number of failed steps */
|
|
116
|
-
failedSteps: number;
|
|
117
|
-
/** Number of skipped steps */
|
|
118
|
-
skippedSteps: number;
|
|
119
|
-
/** Current phase being executed */
|
|
120
|
-
currentPhase?: number;
|
|
121
|
-
/** Total number of phases */
|
|
122
|
-
totalPhases?: number;
|
|
123
|
-
};
|
|
124
|
-
/** Last state update timestamp */
|
|
125
|
-
updatedAt: number;
|
|
126
|
-
/** Execution context snapshot */
|
|
127
|
-
context?: {
|
|
128
|
-
env?: Record<string, any>;
|
|
129
|
-
inputs?: Record<string, any>;
|
|
130
|
-
};
|
|
131
|
-
}
|
|
9
|
+
import { StepExecutionState, StepStatus, WorkflowExecutionState, WorkflowStatus } from "../types/core-types.js";
|
|
132
10
|
/**
|
|
133
11
|
* Execution State Manager
|
|
134
12
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ExecutionState.d.ts","sourceRoot":"","sources":["../../src/state/ExecutionState.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH
|
|
1
|
+
{"version":3,"file":"ExecutionState.d.ts","sourceRoot":"","sources":["../../src/state/ExecutionState.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,kBAAkB,EAAE,UAAU,EAAE,sBAAsB,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAEhH;;;;GAIG;AACH,qBAAa,qBAAqB;IAChC,OAAO,CAAC,MAAM,CAAkD;IAEhE;;OAEG;IACH,kBAAkB,CAChB,WAAW,EAAE,MAAM,EACnB,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,MAAM,EAAE,EACjB,OAAO,CAAC,EAAE;QAAE,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;KAAE,GACpE,sBAAsB;IAgCzB;;OAEG;IACH,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,sBAAsB,GAAG,SAAS;IAIjE;;OAEG;IACH,oBAAoB,CAClB,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE,cAAc,EACtB,KAAK,CAAC,EAAE;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,GAC1D,IAAI;IA0BP;;OAEG;IACH,gBAAgB,CACd,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,UAAU,EAClB,IAAI,CAAC,EAAE;QACL,KAAK,CAAC,EAAE;YAAE,OAAO,EAAE,MAAM,CAAC;YAAC,IAAI,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAC3D,MAAM,CAAC,EAAE,GAAG,CAAC;QACb,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GACA,IAAI;IA+CP;;OAEG;IACH,YAAY,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,kBAAkB,GAAG,SAAS;IAKjF;;OAEG;IACH,eAAe,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAO7D;;OAEG;IACH,gBAAgB,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAK9D;;OAEG;IACH,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,kBAAkB,EAAE;IASzD;;OAEG;IACH,iBAAiB,CAAC,WAAW,EAAE,MAAM,GAAG,kBAAkB,EAAE;IAS5D;;OAEG;IACH,UAAU,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO;IAIxC;;OAEG;IACH,kBAAkB,IAAI,MAAM,EAAE;IAI9B;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAUxB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAU5B;;OAEG;IACH,OAAO,CAAC,sBAAsB;CAe/B"}
|