@panguard-ai/manager 0.2.0 → 1.0.0

package/dist/db.d.ts

@@ -0,0 +1,78 @@
+/**
+ * SQLite database layer for Panguard Manager
+ * Manager SQLite 資料庫持久化層
+ *
+ * Persists agent registrations, aggregated threats, and policy updates
+ * so data survives process restarts.
+ *
+ * @module @panguard-ai/manager/db
+ */
+import type { AgentRegistration, AgentStatus, AggregatedThreat, PolicyUpdate } from './types.js';
+/**
+ * ManagerDB - SQLite persistence for the Panguard Manager
+ * 基於 SQLite 的 Manager 資料持久化
+ *
+ * Follows the same pattern as ThreatCloudDB and AuthDB:
+ * - WAL mode for concurrent read performance
+ * - Prepared statements for all queries (no string interpolation)
+ * - JSON serialization for complex fields
+ */
+export declare class ManagerDB {
+    private readonly db;
+    private readonly stmts;
+    constructor(dbPath: string);
+    private initialize;
+    private prepareStatements;
+    /** Insert or update an agent registration / 插入或更新代理登錄 */
+    upsertAgent(agent: AgentRegistration): void;
+    /** Get a single agent by ID / 依 ID 取得單一代理 */
+    getAgent(agentId: string): AgentRegistration | undefined;
+    /** Get all registered agents / 取得所有已登錄代理 */
+    getAllAgents(): AgentRegistration[];
+    /** Get agents filtered by status / 依狀態篩選代理 */
+    getAgentsByStatus(status: AgentStatus): AgentRegistration[];
+    /** Update an agent's status / 更新代理狀態 */
+    updateAgentStatus(agentId: string, status: AgentStatus): boolean;
+    /** Update an agent's heartbeat timestamp / 更新代理心跳時間戳 */
+    updateHeartbeat(agentId: string, timestamp: string): boolean;
+    /** Delete an agent from the registry / 從登錄簿中刪除代理 */
+    deleteAgent(agentId: string): boolean;
+    /** Get total number of registered agents / 取得已登錄代理總數 */
+    getAgentCount(): number;
+    /** Insert an aggregated threat / 插入聚合威脅 */
+    insertThreat(threat: AggregatedThreat): void;
+    /** Get all threats from a specific agent / 取得特定代理的所有威脅 */
+    getThreatsByAgent(agentId: string): AggregatedThreat[];
+    /** Get threats received after a given ISO timestamp / 取得指定時間後接收的威脅 */
+    getRecentThreats(since: string): AggregatedThreat[];
+    /** Get total number of stored threats / 取得已儲存威脅總數 */
+    getThreatCount(): number;
+    /** Purge threats older than a given ISO date, returns number deleted / 清除指定日期前的威脅 */
+    purgeOldThreats(beforeDate: string): number;
+    /**
+     * Insert a policy update. If active=true, deactivates all existing policies first.
+     * 插入策略更新。若 active=true，先停用所有現有策略。
+     */
+    insertPolicy(policy: PolicyUpdate, active: boolean): void;
+    /** Get the currently active policy, or null if none / 取得當前啟用的策略 */
+    getActivePolicy(): PolicyUpdate | null;
+    /** Get all policies ordered by version descending / 取得所有策略（依版本降冪） */
+    getPolicyHistory(): PolicyUpdate[];
+    /** Deactivate all policies / 停用所有策略 */
+    deactivateAllPolicies(): void;
+    /** Get agents filtered by organization ID / 依組織 ID 篩選代理 */
+    getAgentsByOrg(orgId: string): AgentRegistration[];
+    /** Get threats filtered by organization ID / 依組織 ID 篩選威脅 */
+    getThreatsByOrg(orgId: string): AggregatedThreat[];
+    /** Get the active policy for a specific organization / 取得特定組織的啟用策略 */
+    getActivePolicyForOrg(orgId: string): PolicyUpdate | null;
+    /** Close the database connection / 關閉資料庫連線 */
+    close(): void;
+    /** Convert a database row to an AgentRegistration / 將資料庫列轉換為 AgentRegistration */
+    private rowToAgent;
+    /** Convert a database row to an AggregatedThreat / 將資料庫列轉換為 AggregatedThreat */
+    private rowToThreat;
+    /** Convert a database row to a PolicyUpdate / 將資料庫列轉換為 PolicyUpdate */
+    private rowToPolicy;
+}
+//# sourceMappingURL=db.d.ts.map

package/dist/db.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"db.d.ts","sourceRoot":"","sources":["../src/db.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,KAAK,EACV,iBAAiB,EACjB,WAAW,EACX,gBAAgB,EAEhB,YAAY,EAEb,MAAM,YAAY,CAAC;AA8EpB;;;;;;;;GAQG;AACH,qBAAa,SAAS;IACpB,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAoB;IACvC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAa;gBAEvB,MAAM,EAAE,MAAM;IAmB1B,OAAO,CAAC,UAAU;IAuDlB,OAAO,CAAC,iBAAiB;IAqFzB,yDAAyD;IACzD,WAAW,CAAC,KAAK,EAAE,iBAAiB,GAAG,IAAI;IAe3C,6CAA6C;IAC7C,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS;IAKxD,4CAA4C;IAC5C,YAAY,IAAI,iBAAiB,EAAE;IAKnC,8CAA8C;IAC9C,iBAAiB,CAAC,MAAM,EAAE,WAAW,GAAG,iBAAiB,EAAE;IAK3D,wCAAwC;IACxC,iBAAiB,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,GAAG,OAAO;IAKhE,wDAAwD;IACxD,eAAe,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO;IAK5D,oDAAoD;IACpD,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO;IAKrC,wDAAwD;IACxD,aAAa,IAAI,MAAM;IASvB,2CAA2C;IAC3C,YAAY,CAAC,MAAM,EAAE,gBAAgB,GAAG,IAAI;IAe5C,0DAA0D;IAC1D,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,gBAAgB,EAAE;IAKtD,sEAAsE;IACtE,gBAAgB,CAAC,KAAK,EAAE,MAAM,GAAG,gBAAgB,EAAE;IAKnD,qDAAqD;IACrD,cAAc,IAAI,MAAM;IAKxB,qFAAqF;IACrF,eAAe,CAAC,UAAU,EAAE,MAAM,GAAG,MAAM;IAS3C;;;OAGG;IACH,YAAY,CAAC,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,OAAO,GAAG,IAAI;IAkBzD,mEAAmE;IACnE,eAAe,IAAI,YAAY,GAAG,IAAI;IAKtC,qEAAqE;IACrE,gBAAgB,IAAI,YAAY,EAAE;IAKlC,uCAAuC;IACvC,qBAAqB,IAAI,IAAI;IAQ7B,2DAA2D;IAC3D,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,iBAAiB,EAAE;IAKlD,4DAA4D;IAC5D,eAAe,CAAC,KAAK,EAAE,MAAM,GAAG,gBAAgB,EAAE;IAKlD,sEAAsE;IACtE,qBAAqB,CAAC,KAAK,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI;IASzD,8CAA8C;IAC9C,KAAK,IAAI,IAAI;IAQb,kFAAkF;IAClF,OAAO,CAAC,UAAU;IAkBlB,gFAAgF;IAChF,OAAO,CAAC,WAAW;IAenB,uEAAuE;IACvE,OAAO,CAAC,WAAW;CAapB"}

package/dist/db.js

@@ -0,0 +1,339 @@
+/**
+ * SQLite database layer for Panguard Manager
+ * Manager SQLite 資料庫持久化層
+ *
+ * Persists agent registrations, aggregated threats, and policy updates
+ * so data survives process restarts.
+ *
+ * @module @panguard-ai/manager/db
+ */
+import Database from 'better-sqlite3';
+/**
+ * ManagerDB - SQLite persistence for the Panguard Manager
+ * 基於 SQLite 的 Manager 資料持久化
+ *
+ * Follows the same pattern as ThreatCloudDB and AuthDB:
+ * - WAL mode for concurrent read performance
+ * - Prepared statements for all queries (no string interpolation)
+ * - JSON serialization for complex fields
+ */
+export class ManagerDB {
+    db;
+    stmts;
+    constructor(dbPath) {
+        this.db = new Database(dbPath);
+        // Enable WAL mode and performance pragmas / 啟用 WAL 模式及效能 pragma
+        this.db.pragma('journal_mode = WAL');
+        this.db.pragma('foreign_keys = ON');
+        this.db.pragma('busy_timeout = 15000');
+        this.db.pragma('synchronous = NORMAL');
+        this.db.pragma('cache_size = -64000');
+        this.db.pragma('temp_store = MEMORY');
+        this.initialize();
+        this.stmts = this.prepareStatements();
+    }
+    // =========================================================================
+    // Schema initialization / 資料表初始化
+    // =========================================================================
+    initialize() {
+        this.db.exec(`
+      CREATE TABLE IF NOT EXISTS agents (
+        agent_id TEXT PRIMARY KEY,
+        hostname TEXT NOT NULL,
+        os TEXT NOT NULL,
+        arch TEXT NOT NULL,
+        ip TEXT,
+        version TEXT NOT NULL,
+        status TEXT NOT NULL DEFAULT 'online',
+        last_heartbeat TEXT NOT NULL,
+        registered_at TEXT NOT NULL,
+        org_id TEXT NOT NULL DEFAULT 'default'
+      );
+
+      CREATE TABLE IF NOT EXISTS threats (
+        id TEXT PRIMARY KEY,
+        agent_id TEXT NOT NULL,
+        source_hostname TEXT NOT NULL,
+        event_json TEXT NOT NULL,
+        verdict_conclusion TEXT NOT NULL,
+        verdict_confidence REAL NOT NULL,
+        verdict_action TEXT NOT NULL,
+        correlated_with TEXT DEFAULT '[]',
+        received_at TEXT NOT NULL,
+        org_id TEXT NOT NULL DEFAULT 'default',
+        FOREIGN KEY (agent_id) REFERENCES agents(agent_id)
+      );
+
+      CREATE TABLE IF NOT EXISTS policies (
+        policy_id TEXT PRIMARY KEY,
+        version INTEGER NOT NULL,
+        rules_json TEXT NOT NULL,
+        applied_to TEXT DEFAULT '[]',
+        updated_at TEXT NOT NULL,
+        active INTEGER NOT NULL DEFAULT 0,
+        org_id TEXT NOT NULL DEFAULT 'default'
+      );
+
+      CREATE INDEX IF NOT EXISTS idx_threats_agent_id ON threats(agent_id);
+      CREATE INDEX IF NOT EXISTS idx_threats_received_at ON threats(received_at);
+      CREATE INDEX IF NOT EXISTS idx_threats_verdict ON threats(verdict_conclusion);
+      CREATE INDEX IF NOT EXISTS idx_agents_status ON agents(status);
+      CREATE INDEX IF NOT EXISTS idx_policies_active ON policies(active);
+      CREATE INDEX IF NOT EXISTS idx_policies_version ON policies(version);
+      CREATE INDEX IF NOT EXISTS idx_agents_org_id ON agents(org_id);
+      CREATE INDEX IF NOT EXISTS idx_threats_org_id ON threats(org_id);
+      CREATE INDEX IF NOT EXISTS idx_policies_org_id ON policies(org_id);
+    `);
+    }
+    // =========================================================================
+    // Prepared statements / 預編譯語句
+    // =========================================================================
+    prepareStatements() {
+        return {
+            // --- Agent statements ---
+            upsertAgent: this.db.prepare(`
+        INSERT INTO agents (agent_id, hostname, os, arch, ip, version, status, last_heartbeat, registered_at, org_id)
+        VALUES (@agent_id, @hostname, @os, @arch, @ip, @version, @status, @last_heartbeat, @registered_at, @org_id)
+        ON CONFLICT(agent_id) DO UPDATE SET
+          hostname = excluded.hostname,
+          os = excluded.os,
+          arch = excluded.arch,
+          ip = excluded.ip,
+          version = excluded.version,
+          status = excluded.status,
+          last_heartbeat = excluded.last_heartbeat,
+          org_id = excluded.org_id
+      `),
+            getAgent: this.db.prepare('SELECT * FROM agents WHERE agent_id = ?'),
+            getAllAgents: this.db.prepare('SELECT * FROM agents ORDER BY registered_at DESC'),
+            getAgentsByStatus: this.db.prepare('SELECT * FROM agents WHERE status = ? ORDER BY last_heartbeat DESC'),
+            updateAgentStatus: this.db.prepare('UPDATE agents SET status = ? WHERE agent_id = ?'),
+            updateHeartbeat: this.db.prepare('UPDATE agents SET last_heartbeat = ?, status = ? WHERE agent_id = ?'),
+            deleteAgent: this.db.prepare('DELETE FROM agents WHERE agent_id = ?'),
+            getAgentCount: this.db.prepare('SELECT COUNT(*) as count FROM agents'),
+            getAgentsByOrg: this.db.prepare('SELECT * FROM agents WHERE org_id = ? ORDER BY registered_at DESC'),
+            // --- Threat statements ---
+            insertThreat: this.db.prepare(`
+        INSERT INTO threats (id, agent_id, source_hostname, event_json, verdict_conclusion, verdict_confidence, verdict_action, correlated_with, received_at, org_id)
+        VALUES (@id, @agent_id, @source_hostname, @event_json, @verdict_conclusion, @verdict_confidence, @verdict_action, @correlated_with, @received_at, @org_id)
+      `),
+            getThreatsByAgent: this.db.prepare('SELECT * FROM threats WHERE agent_id = ? ORDER BY received_at DESC'),
+            getRecentThreats: this.db.prepare('SELECT * FROM threats WHERE received_at >= ? ORDER BY received_at DESC'),
+            getThreatCount: this.db.prepare('SELECT COUNT(*) as count FROM threats'),
+            purgeOldThreats: this.db.prepare('DELETE FROM threats WHERE received_at < ?'),
+            getThreatsByOrg: this.db.prepare('SELECT * FROM threats WHERE org_id = ? ORDER BY received_at DESC'),
+            // --- Policy statements ---
+            insertPolicy: this.db.prepare(`
+        INSERT INTO policies (policy_id, version, rules_json, applied_to, updated_at, active, org_id)
+        VALUES (@policy_id, @version, @rules_json, @applied_to, @updated_at, @active, @org_id)
+      `),
+            getActivePolicy: this.db.prepare('SELECT * FROM policies WHERE active = 1 ORDER BY version DESC LIMIT 1'),
+            getPolicyHistory: this.db.prepare('SELECT * FROM policies ORDER BY version DESC'),
+            deactivateAllPolicies: this.db.prepare('UPDATE policies SET active = 0'),
+            getActivePolicyForOrg: this.db.prepare('SELECT * FROM policies WHERE active = 1 AND org_id = ? ORDER BY version DESC LIMIT 1'),
+        };
+    }
+    // =========================================================================
+    // Agent methods / 代理方法
+    // =========================================================================
+    /** Insert or update an agent registration / 插入或更新代理登錄 */
+    upsertAgent(agent) {
+        this.stmts.upsertAgent.run({
+            agent_id: agent.agentId,
+            hostname: agent.hostname,
+            os: agent.platform.os,
+            arch: agent.platform.arch,
+            ip: agent.platform.ip ?? null,
+            version: agent.version,
+            status: agent.status,
+            last_heartbeat: agent.lastHeartbeat,
+            registered_at: agent.registeredAt,
+            org_id: agent.organizationId ?? 'default',
+        });
+    }
+    /** Get a single agent by ID / 依 ID 取得單一代理 */
+    getAgent(agentId) {
+        const row = this.stmts.getAgent.get(agentId);
+        return row ? this.rowToAgent(row) : undefined;
+    }
+    /** Get all registered agents / 取得所有已登錄代理 */
+    getAllAgents() {
+        const rows = this.stmts.getAllAgents.all();
+        return rows.map((row) => this.rowToAgent(row));
+    }
+    /** Get agents filtered by status / 依狀態篩選代理 */
+    getAgentsByStatus(status) {
+        const rows = this.stmts.getAgentsByStatus.all(status);
+        return rows.map((row) => this.rowToAgent(row));
+    }
+    /** Update an agent's status / 更新代理狀態 */
+    updateAgentStatus(agentId, status) {
+        const result = this.stmts.updateAgentStatus.run(status, agentId);
+        return result.changes > 0;
+    }
+    /** Update an agent's heartbeat timestamp / 更新代理心跳時間戳 */
+    updateHeartbeat(agentId, timestamp) {
+        const result = this.stmts.updateHeartbeat.run(timestamp, 'online', agentId);
+        return result.changes > 0;
+    }
+    /** Delete an agent from the registry / 從登錄簿中刪除代理 */
+    deleteAgent(agentId) {
+        const result = this.stmts.deleteAgent.run(agentId);
+        return result.changes > 0;
+    }
+    /** Get total number of registered agents / 取得已登錄代理總數 */
+    getAgentCount() {
+        const row = this.stmts.getAgentCount.get();
+        return row.count;
+    }
+    // =========================================================================
+    // Threat methods / 威脅方法
+    // =========================================================================
+    /** Insert an aggregated threat / 插入聚合威脅 */
+    insertThreat(threat) {
+        this.stmts.insertThreat.run({
+            id: threat.id,
+            agent_id: threat.sourceAgentId,
+            source_hostname: threat.sourceHostname,
+            event_json: JSON.stringify(threat.originalThreat),
+            verdict_conclusion: threat.originalThreat.verdict.conclusion,
+            verdict_confidence: threat.originalThreat.verdict.confidence,
+            verdict_action: threat.originalThreat.verdict.action,
+            correlated_with: JSON.stringify(threat.correlatedWith),
+            received_at: threat.receivedAt,
+            org_id: threat.organizationId ?? 'default',
+        });
+    }
+    /** Get all threats from a specific agent / 取得特定代理的所有威脅 */
+    getThreatsByAgent(agentId) {
+        const rows = this.stmts.getThreatsByAgent.all(agentId);
+        return rows.map((row) => this.rowToThreat(row));
+    }
+    /** Get threats received after a given ISO timestamp / 取得指定時間後接收的威脅 */
+    getRecentThreats(since) {
+        const rows = this.stmts.getRecentThreats.all(since);
+        return rows.map((row) => this.rowToThreat(row));
+    }
+    /** Get total number of stored threats / 取得已儲存威脅總數 */
+    getThreatCount() {
+        const row = this.stmts.getThreatCount.get();
+        return row.count;
+    }
+    /** Purge threats older than a given ISO date, returns number deleted / 清除指定日期前的威脅 */
+    purgeOldThreats(beforeDate) {
+        const result = this.stmts.purgeOldThreats.run(beforeDate);
+        return result.changes;
+    }
+    // =========================================================================
+    // Policy methods / 策略方法
+    // =========================================================================
+    /**
+     * Insert a policy update. If active=true, deactivates all existing policies first.
+     * 插入策略更新。若 active=true，先停用所有現有策略。
+     */
+    insertPolicy(policy, active) {
+        const insertWithActivation = this.db.transaction(() => {
+            if (active) {
+                this.stmts.deactivateAllPolicies.run();
+            }
+            this.stmts.insertPolicy.run({
+                policy_id: policy.policyId,
+                version: policy.version,
+                rules_json: JSON.stringify(policy.rules),
+                applied_to: JSON.stringify(policy.appliedTo),
+                updated_at: policy.updatedAt,
+                active: active ? 1 : 0,
+                org_id: policy.organizationId ?? 'default',
+            });
+        });
+        insertWithActivation();
+    }
+    /** Get the currently active policy, or null if none / 取得當前啟用的策略 */
+    getActivePolicy() {
+        const row = this.stmts.getActivePolicy.get();
+        return row ? this.rowToPolicy(row) : null;
+    }
+    /** Get all policies ordered by version descending / 取得所有策略（依版本降冪） */
+    getPolicyHistory() {
+        const rows = this.stmts.getPolicyHistory.all();
+        return rows.map((row) => this.rowToPolicy(row));
+    }
+    /** Deactivate all policies / 停用所有策略 */
+    deactivateAllPolicies() {
+        this.stmts.deactivateAllPolicies.run();
+    }
+    // =========================================================================
+    // Organization-scoped queries / 組織範圍查詢
+    // =========================================================================
+    /** Get agents filtered by organization ID / 依組織 ID 篩選代理 */
+    getAgentsByOrg(orgId) {
+        const rows = this.stmts.getAgentsByOrg.all(orgId);
+        return rows.map((row) => this.rowToAgent(row));
+    }
+    /** Get threats filtered by organization ID / 依組織 ID 篩選威脅 */
+    getThreatsByOrg(orgId) {
+        const rows = this.stmts.getThreatsByOrg.all(orgId);
+        return rows.map((row) => this.rowToThreat(row));
+    }
+    /** Get the active policy for a specific organization / 取得特定組織的啟用策略 */
+    getActivePolicyForOrg(orgId) {
+        const row = this.stmts.getActivePolicyForOrg.get(orgId);
+        return row ? this.rowToPolicy(row) : null;
+    }
+    // =========================================================================
+    // Lifecycle / 生命週期
+    // =========================================================================
+    /** Close the database connection / 關閉資料庫連線 */
+    close() {
+        this.db.close();
+    }
+    // =========================================================================
+    // Row-to-domain converters (private) / 列轉網域物件（私有）
+    // =========================================================================
+    /** Convert a database row to an AgentRegistration / 將資料庫列轉換為 AgentRegistration */
+    rowToAgent(row) {
+        return {
+            agentId: row.agent_id,
+            hostname: row.hostname,
+            endpoint: '',
+            platform: {
+                os: row.os,
+                arch: row.arch,
+                ip: row.ip ?? undefined,
+            },
+            version: row.version,
+            status: row.status,
+            lastHeartbeat: row.last_heartbeat,
+            registeredAt: row.registered_at,
+            organizationId: row.org_id,
+        };
+    }
+    /** Convert a database row to an AggregatedThreat / 將資料庫列轉換為 AggregatedThreat */
+    rowToThreat(row) {
+        const originalThreat = JSON.parse(row.event_json);
+        const correlatedWith = JSON.parse(row.correlated_with);
+        return {
+            id: row.id,
+            originalThreat,
+            sourceAgentId: row.agent_id,
+            sourceHostname: row.source_hostname,
+            receivedAt: row.received_at,
+            correlatedWith,
+            organizationId: row.org_id,
+        };
+    }
+    /** Convert a database row to a PolicyUpdate / 將資料庫列轉換為 PolicyUpdate */
+    rowToPolicy(row) {
+        const rules = JSON.parse(row.rules_json);
+        const appliedTo = JSON.parse(row.applied_to);
+        return {
+            policyId: row.policy_id,
+            version: row.version,
+            rules,
+            updatedAt: row.updated_at,
+            appliedTo,
+            organizationId: row.org_id,
+        };
+    }
+}
+//# sourceMappingURL=db.js.map

package/dist/db.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"db.js","sourceRoot":"","sources":["../src/db.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,QAAQ,MAAM,gBAAgB,CAAC;AAsFtC;;;;;;;;GAQG;AACH,MAAM,OAAO,SAAS;IACH,EAAE,CAAoB;IACtB,KAAK,CAAa;IAEnC,YAAY,MAAc;QACxB,IAAI,CAAC,EAAE,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC;QAE/B,gEAAgE;QAChE,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,oBAAoB,CAAC,CAAC;QACrC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;QACpC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,sBAAsB,CAAC,CAAC;QACvC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,sBAAsB,CAAC,CAAC;QACvC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,qBAAqB,CAAC,CAAC;QACtC,IAAI,CAAC,EAAE,CAAC,MAAM,CAAC,qBAAqB,CAAC,CAAC;QAEtC,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,iBAAiB,EAAE,CAAC;IACxC,CAAC;IAED,4EAA4E;IAC5E,iCAAiC;IACjC,4EAA4E;IAEpE,UAAU;QAChB,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;KA+CZ,CAAC,CAAC;IACL,CAAC;IAED,4EAA4E;IAC5E,8BAA8B;IAC9B,4EAA4E;IAEpE,iBAAiB;QACvB,OAAO;YACL,2BAA2B;YAC3B,WAAW,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC;;;;;;;;;;;;OAY5B,CAAC;YAEF,QAAQ,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,yCAAyC,CAAC;YAEpE,YAAY,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,kDAAkD,CAAC;YAEjF,iBAAiB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAChC,oEAAoE,CACrE;YAED,iBAAiB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,iDAAiD,CAAC;YAErF,eAAe,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAC9B,qEAAqE,CACtE;YAED,WAAW,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,uCAAuC,CAAC;YAErE,aAAa,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,sCAAsC,CAAC;YAEtE,cAAc,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAC7B,mEAAmE,CACpE;YAED,4BAA4B;YAC5B,YAAY,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC;;;OAG7B,CAAC;YAEF,iBAAiB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAChC,oEAAoE,CACrE;YAED,gBAAgB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAC/B,wEAAwE,CACzE;YAED,cAAc,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,uCAAuC,CAAC;YAExE,eAAe,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,2CAA2C,CAAC;YAE7E,eAAe,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAC9B,kEAAkE,CACnE;YAED,4BAA4B;YAC5B,YAAY,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC;;;OAG7B,CAAC;YAEF,eAAe,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAC9B,uEAAuE,CACxE;YAED,gBAAgB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,8CAA8C,CAAC;YAEjF,qBAAqB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CAAC,gCAAgC,CAAC;YAExE,qBAAqB,EAAE,IAAI,CAAC,EAAE,CAAC,OAAO,CACpC,sFAAsF,CACvF;SACF,CAAC;IACJ,CAAC;IAED,4EAA4E;IAC5E,uBAAuB;IACvB,4EAA4E;IAE5E,yDAAyD;IACzD,WAAW,CAAC,KAAwB;QAClC,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC;YACzB,QAAQ,EAAE,KAAK,CAAC,OAAO;YACvB,QAAQ,EAAE,KAAK,CAAC,QAAQ;YACxB,EAAE,EAAE,KAAK,CAAC,QAAQ,CAAC,EAAE;YACrB,IAAI,EAAE,KAAK,CAAC,QAAQ,CAAC,IAAI;YACzB,EAAE,EAAE,KAAK,CAAC,QAAQ,CAAC,EAAE,IAAI,IAAI;YAC7B,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,cAAc,EAAE,KAAK,CAAC,aAAa;YACnC,aAAa,EAAE,KAAK,CAAC,YAAY;YACjC,MAAM,EAAE,KAAK,CAAC,cAAc,IAAI,SAAS;SAC1C,CAAC,CAAC;IACL,CAAC;IAED,6CAA6C;IAC7C,QAAQ,CAAC,OAAe;QACtB,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAyB,CAAC;QACrE,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAChD,CAAC;IAED,4CAA4C;IAC5C,YAAY;QACV,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,GAAG,EAAgB,CAAC;QACzD,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IACjD,CAAC;IAED,8CAA8C;IAC9C,iBAAiB,CAAC,MAAmB;QACnC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,GAAG,CAAC,MAAM,CAAe,CAAC;QACpE,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IACjD,CAAC;IAED,wCAAwC;IACxC,iBAAiB,CAAC,OAAe,EAAE,MAAmB;QACpD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QACjE,OAAO,MAAM,CAAC,OAAO,GAAG,CAAC,CAAC;IAC5B,CAAC;IAED,wDAAwD;IACxD,eAAe,CAAC,OAAe,EAAE,SAAiB;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,SAAS,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC5E,OAAO,MAAM,CAAC,OAAO,GAAG,CAAC,CAAC;IAC5B,CAAC;IAED,oDAAoD;IACpD,WAAW,CAAC,OAAe;QACzB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACnD,OAAO,MAAM,CAAC,OAAO,GAAG,CAAC,CAAC;IAC5B,CAAC;IAED,wDAAwD;IACxD,aAAa;QACX,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,EAAc,CAAC;QACvD,OAAO,GAAG,CAAC,KAAK,CAAC;IACnB,CAAC;IAED,4EAA4E;IAC5E,wBAAwB;IACxB,4EAA4E;IAE5E,2CAA2C;IAC3C,YAAY,CAAC,MAAwB;QACnC,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,GAAG,CAAC;YAC1B,EAAE,EAAE,MAAM,CAAC,EAAE;YACb,QAAQ,EAAE,MAAM,CAAC,aAAa;YAC9B,eAAe,EAAE,MAAM,CAAC,cAAc;YACtC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,cAAc,CAAC;YACjD,kBAAkB,EAAE,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,UAAU;YAC5D,kBAAkB,EAAE,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,UAAU;YAC5D,cAAc,EAAE,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,MAAM;YACpD,eAAe,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,cAAc,CAAC;YACtD,WAAW,EAAE,MAAM,CAAC,UAAU;YAC9B,MAAM,EAAE,MAAM,CAAC,cAAc,IAAI,SAAS;SAC3C,CAAC,CAAC;IACL,CAAC;IAED,0DAA0D;IAC1D,iBAAiB,CAAC,OAAe;QAC/B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,iBAAiB,CAAC,GAAG,CAAC,OAAO,CAAgB,CAAC;QACtE,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC;IAClD,CAAC;IAED,sEAAsE;IACtE,gBAAgB,CAAC,KAAa;QAC5B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAgB,CAAC;QACnE,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC;IAClD,CAAC;IAED,qDAAqD;IACrD,cAAc;QACZ,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,GAAG,EAAc,CAAC;QACxD,OAAO,GAAG,CAAC,KAAK,CAAC;IACnB,CAAC;IAED,qFAAqF;IACrF,eAAe,CAAC,UAAkB;QAChC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QAC1D,OAAO,MAAM,CAAC,OAAO,CAAC;IACxB,CAAC;IAED,4EAA4E;IAC5E,wBAAwB;IACxB,4EAA4E;IAE5E;;;OAGG;IACH,YAAY,CAAC,MAAoB,EAAE,MAAe;QAChD,MAAM,oBAAoB,GAAG,IAAI,CAAC,EAAE,CAAC,WAAW,CAAC,GAAG,EAAE;YACpD,IAAI,MAAM,EAAE,CAAC;gBACX,IAAI,CAAC,KAAK,CAAC,qBAAqB,CAAC,GAAG,EAAE,CAAC;YACzC,CAAC;YACD,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,GAAG,CAAC;gBAC1B,SAAS,EAAE,MAAM,CAAC,QAAQ;gBAC1B,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC;gBACxC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,SAAS,CAAC;gBAC5C,UAAU,EAAE,MAAM,CAAC,SAAS;gBAC5B,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBACtB,MAAM,EAAE,MAAM,CAAC,cAAc,IAAI,SAAS;aAC3C,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;QACH,oBAAoB,EAAE,CAAC;IACzB,CAAC;IAED,mEAAmE;IACnE,eAAe;QACb,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,GAAG,EAA2B,CAAC;QACtE,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC5C,CAAC;IAED,qEAAqE;IACrE,gBAAgB;QACd,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,gBAAgB,CAAC,GAAG,EAAiB,CAAC;QAC9D,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC;IAClD,CAAC;IAED,uCAAuC;IACvC,qBAAqB;QACnB,IAAI,CAAC,KAAK,CAAC,qBAAqB,CAAC,GAAG,EAAE,CAAC;IACzC,CAAC;IAED,4EAA4E;IAC5E,uCAAuC;IACvC,4EAA4E;IAE5E,2DAA2D;IAC3D,cAAc,CAAC,KAAa;QAC1B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,GAAG,CAAC,KAAK,CAAe,CAAC;QAChE,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IACjD,CAAC;IAED,4DAA4D;IAC5D,eAAe,CAAC,KAAa;QAC3B,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,eAAe,CAAC,GAAG,CAAC,KAAK,CAAgB,CAAC;QAClE,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC;IAClD,CAAC;IAED,sEAAsE;IACtE,qBAAqB,CAAC,KAAa;QACjC,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,qBAAqB,CAAC,GAAG,CAAC,KAAK,CAA0B,CAAC;QACjF,OAAO,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAC5C,CAAC;IAED,4EAA4E;IAC5E,mBAAmB;IACnB,4EAA4E;IAE5E,8CAA8C;IAC9C,KAAK;QACH,IAAI,CAAC,EAAE,CAAC,KAAK,EAAE,CAAC;IAClB,CAAC;IAED,4EAA4E;IAC5E,kDAAkD;IAClD,4EAA4E;IAE5E,kFAAkF;IAC1E,UAAU,CAAC,GAAa;QAC9B,OAAO;YACL,OAAO,EAAE,GAAG,CAAC,QAAQ;YACrB,QAAQ,EAAE,GAAG,CAAC,QAAQ;YACtB,QAAQ,EAAE,EAAE;YACZ,QAAQ,EAAE;gBACR,EAAE,EAAE,GAAG,CAAC,EAAE;gBACV,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,EAAE,EAAE,GAAG,CAAC,EAAE,IAAI,SAAS;aACxB;YACD,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,MAAM,EAAE,GAAG,CAAC,MAAqB;YACjC,aAAa,EAAE,GAAG,CAAC,cAAc;YACjC,YAAY,EAAE,GAAG,CAAC,aAAa;YAC/B,cAAc,EAAE,GAAG,CAAC,MAAM;SAC3B,CAAC;IACJ,CAAC;IAED,gFAAgF;IACxE,WAAW,CAAC,GAAc;QAChC,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAgB,CAAC;QACjE,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,eAAe,CAAa,CAAC;QAEnE,OAAO;YACL,EAAE,EAAE,GAAG,CAAC,EAAE;YACV,cAAc;YACd,aAAa,EAAE,GAAG,CAAC,QAAQ;YAC3B,cAAc,EAAE,GAAG,CAAC,eAAe;YACnC,UAAU,EAAE,GAAG,CAAC,WAAW;YAC3B,cAAc;YACd,cAAc,EAAE,GAAG,CAAC,MAAM;SAC3B,CAAC;IACJ,CAAC;IAED,uEAAuE;IAC/D,WAAW,CAAC,GAAc;QAChC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAiB,CAAC;QACzD,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAa,CAAC;QAEzD,OAAO;YACL,QAAQ,EAAE,GAAG,CAAC,SAAS;YACvB,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,KAAK;YACL,SAAS,EAAE,GAAG,CAAC,UAAU;YACzB,SAAS;YACT,cAAc,EAAE,GAAG,CAAC,MAAM;SAC3B,CAAC;IACJ,CAAC;CACF"}

package/dist/index.d.ts

@@ -11,12 +11,15 @@
  * @module @panguard-ai/manager
  */
 export { Manager } from './manager.js';
+export { ManagerServer } from './server.js';
 export { AgentRegistry } from './agent-registry.js';
 export { ThreatAggregator } from './threat-aggregator.js';
 export { PolicyEngine } from './policy-engine.js';
+export { DashboardRelay } from './dashboard-relay.js';
+export type { DashboardRelayConfig } from './dashboard-relay.js';
 export { generateAgentId, generateThreatId, generatePolicyId, generateAuthToken, extractSourceIP, extractFileHash, } from './utils.js';
-export type { AgentStatus, AgentPlatformInfo, AgentRegistration, AgentRegistrationRequest, AgentHeartbeat, ThreatEvent, ThreatReport, AggregatedThreat, CorrelationMatch, ThreatSummary, PolicyRule, PolicyUpdate, ManagerConfig, AgentOverview, ManagerOverview, PolicyBroadcastResult, } from './types.js';
+export type { AgentStatus, AgentPlatformInfo, AgentRegistration, AgentRegistrationRequest, AgentHeartbeat, ThreatEvent, ThreatReport, AggregatedThreat, CorrelationMatch, ThreatSummary, PolicyRule, PolicyUpdate, ManagerConfig, AgentOverview, ManagerOverview, AgentPushResult, PolicyBroadcastResult, } from './types.js';
 export { DEFAULT_MANAGER_CONFIG } from './types.js';
 /** Manager package version / Manager 套件版本 */
-export declare const MANAGER_VERSION = "0.2.0";
+export declare const MANAGER_VERSION: string;
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAGH,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAGvC,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAGlD,OAAO,EACL,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,eAAe,EACf,eAAe,GAChB,MAAM,YAAY,CAAC;AAGpB,YAAY,EACV,WAAW,EACX,iBAAiB,EACjB,iBAAiB,EACjB,wBAAwB,EACxB,cAAc,EACd,WAAW,EACX,YAAY,EACZ,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,UAAU,EACV,YAAY,EACZ,aAAa,EACb,aAAa,EACb,eAAe,EACf,qBAAqB,GACtB,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAEpD,6CAA6C;AAC7C,eAAO,MAAM,eAAe,UAAU,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAGH,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAGvC,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAG5C,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AACtD,YAAY,EAAE,oBAAoB,EAAE,MAAM,sBAAsB,CAAC;AAGjE,OAAO,EACL,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,eAAe,EACf,eAAe,GAChB,MAAM,YAAY,CAAC;AAGpB,YAAY,EACV,WAAW,EACX,iBAAiB,EACjB,iBAAiB,EACjB,wBAAwB,EACxB,cAAc,EACd,WAAW,EACX,YAAY,EACZ,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,UAAU,EACV,YAAY,EACZ,aAAa,EACb,aAAa,EACb,eAAe,EACf,eAAe,EACf,qBAAqB,GACtB,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAMpD,6CAA6C;AAC7C,eAAO,MAAM,eAAe,EAAE,MAAqB,CAAC"}

package/dist/index.js

@@ -12,14 +12,20 @@
  */
 // Main orchestrator / 主協調器
 export { Manager } from './manager.js';
+// HTTP Server / HTTP 伺服器
+export { ManagerServer } from './server.js';
 // Components / 元件
 export { AgentRegistry } from './agent-registry.js';
 export { ThreatAggregator } from './threat-aggregator.js';
 export { PolicyEngine } from './policy-engine.js';
+export { DashboardRelay } from './dashboard-relay.js';
 // Utilities / 工具函式
 export { generateAgentId, generateThreatId, generatePolicyId, generateAuthToken, extractSourceIP, extractFileHash, } from './utils.js';
 // Constants / 常數
 export { DEFAULT_MANAGER_CONFIG } from './types.js';
+import { createRequire } from 'node:module';
+const _require = createRequire(import.meta.url);
+const _pkg = _require('../package.json');
 /** Manager package version / Manager 套件版本 */
-export const MANAGER_VERSION = '0.2.0';
+export const MANAGER_VERSION = _pkg.version;
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,2BAA2B;AAC3B,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,kBAAkB;AAClB,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAElD,mBAAmB;AACnB,OAAO,EACL,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,eAAe,EACf,eAAe,GAChB,MAAM,YAAY,CAAC;AAsBpB,iBAAiB;AACjB,OAAO,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAEpD,6CAA6C;AAC7C,MAAM,CAAC,MAAM,eAAe,GAAG,OAAO,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,2BAA2B;AAC3B,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AAEvC,yBAAyB;AACzB,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAE5C,kBAAkB;AAClB,OAAO,EAAE,aAAa,EAAE,MAAM,qBAAqB,CAAC;AACpD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AAGtD,mBAAmB;AACnB,OAAO,EACL,eAAe,EACf,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,eAAe,EACf,eAAe,GAChB,MAAM,YAAY,CAAC;AAuBpB,iBAAiB;AACjB,OAAO,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAEpD,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,MAAM,QAAQ,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAChD,MAAM,IAAI,GAAG,QAAQ,CAAC,iBAAiB,CAAwB,CAAC;AAEhE,6CAA6C;AAC7C,MAAM,CAAC,MAAM,eAAe,GAAW,IAAI,CAAC,OAAO,CAAC"}

package/dist/manager.d.ts

@@ -10,7 +10,10 @@
  *
  * @module @panguard-ai/manager/manager
  */
-import type { ManagerConfig, AgentRegistrationRequest, AgentRegistration, AgentHeartbeat, ThreatReport, AggregatedThreat, PolicyUpdate, PolicyRule, ManagerOverview, ThreatSummary, PolicyBroadcastResult } from './types.js';
+import { DashboardRelay } from './dashboard-relay.js';
+import type { IncomingMessage } from 'node:http';
+import type { Socket } from 'node:net';
+import type { ManagerConfig, AgentRegistrationRequest, AgentRegistration, AgentHeartbeat, ThreatReport, AggregatedThreat, PolicyUpdate, PolicyRule, ManagerOverview, ThreatSummary, AgentPushResult, PolicyBroadcastResult } from './types.js';
 /**
  * Manager is the main orchestrator for the distributed Guard architecture.
  *
@@ -22,6 +25,8 @@ export declare class Manager {
     private readonly registry;
     private readonly aggregator;
     private readonly policyEngine;
+    /** Dashboard relay for proxying remote dashboard connections / 用於代理遠端 dashboard 連接的 relay */
+    private readonly relay;
     private running;
     private startTime;
     private staleCheckTimer;
@@ -38,6 +43,16 @@ export declare class Manager {
      * Clears all periodic timers.
      */
     stop(): void;
+    /**
+     * Handle WebSocket upgrade for dashboard relay paths.
+     * Routes /api/dashboard/ paths to the DashboardRelay.
+     * 處理 dashboard relay 路徑的 WebSocket 升級。
+     *
+     * @returns true if the path was handled, false if not a dashboard path
+     */
+    handleDashboardUpgrade(req: IncomingMessage, socket: Socket, head: Buffer): boolean;
+    /** Get the dashboard relay instance / 取得 dashboard relay 實例 */
+    getDashboardRelay(): DashboardRelay;
     /**
      * Handle a new agent registration request.
      *
@@ -71,19 +86,38 @@ export declare class Manager {
     handleDeregistration(agentId: string): boolean;
     /**
      * Create and optionally broadcast a new security policy.
+     * 建立並選擇性廣播新的安全策略。
      *
      * @param rules - Policy rules to include
-     * @param broadcast - Whether to queue broadcast to all active agents
+     * @param broadcast - Whether to push broadcast to all active agents
      * @returns The created policy
      */
-    createPolicy(rules: readonly PolicyRule[], broadcast?: boolean): PolicyUpdate;
+    createPolicy(rules: readonly PolicyRule[], broadcast?: boolean): Promise<PolicyUpdate>;
+    /**
+     * Push a policy update to a single agent via HTTP POST.
+     * 透過 HTTP POST 將策略更新推送至單一代理。
+     *
+     * Looks up the agent's endpoint from the registry, sends a POST to
+     * `{agent.endpoint}/api/policy/push` with JSON body `{ policy, timestamp }`.
+     * Retries once on network failure. Timeout is 5 seconds per attempt.
+     *
+     * @param agentId - The target agent's unique identifier
+     * @param policy - The policy update to push
+     * @returns Push result indicating success or failure
+     */
+    pushPolicyToAgent(agentId: string, policy: PolicyUpdate): Promise<AgentPushResult>;
     /**
-     * Queue a policy update for broadcast to all active agents.
+     * Broadcast a policy update to active agents via HTTP POST push.
+     * 透過 HTTP POST 推送將策略更新廣播至活躍代理。
+     *
+     * Gets target agents (specified IDs or all active), pushes policy to each,
+     * and collects results into the broadcast queue.
      *
      * @param policy - The policy to broadcast
-     * @returns Broadcast result with target agent list
+     * @param targetAgentIds - Optional list of specific agent IDs to target
+     * @returns Broadcast result with per-agent outcomes
      */
-    broadcastPolicy(policy: PolicyUpdate): PolicyBroadcastResult;
+    broadcastPolicy(policy: PolicyUpdate, targetAgentIds?: string[]): Promise<PolicyBroadcastResult>;
     /**
      * Get the active global policy.
      *

package/dist/manager.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"manager.d.ts","sourceRoot":"","sources":["../src/manager.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAMH,OAAO,KAAK,EACV,aAAa,EACb,wBAAwB,EACxB,iBAAiB,EACjB,cAAc,EACd,YAAY,EACZ,gBAAgB,EAChB,YAAY,EACZ,UAAU,EACV,eAAe,EAEf,aAAa,EACb,qBAAqB,EACtB,MAAM,YAAY,CAAC;AAIpB;;;;;GAKG;AACH,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;IACvC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAgB;IACzC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAmB;IAC9C,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAe;IAE5C,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,eAAe,CAAwC;IAC/D,OAAO,CAAC,UAAU,CAAwC;IAG1D,OAAO,CAAC,QAAQ,CAAC,cAAc,CAA0B;gBAE7C,MAAM,EAAE,aAAa;IAsBjC;;;OAGG;IACH,KAAK,IAAI,IAAI;IA6Bb;;;OAGG;IACH,IAAI,IAAI,IAAI;IAsBZ;;;;;;OAMG;IACH,kBAAkB,CAChB,OAAO,EAAE,wBAAwB,GAChC,iBAAiB;IAWpB;;;;;;OAMG;IACH,eAAe,CACb,SAAS,EAAE,cAAc,GACxB,iBAAiB,GAAG,SAAS;IAIhC;;;;;;OAMG;IACH,kBAAkB,CAChB,MAAM,EAAE,YAAY,GACnB,SAAS,gBAAgB,EAAE;IAoB9B;;;;;OAKG;IACH,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO;IAM9C;;;;;;OAMG;IACH,YAAY,CACV,KAAK,EAAE,SAAS,UAAU,EAAE,EAC5B,SAAS,UAAO,GACf,YAAY;IAcf;;;;;OAKG;IACH,eAAe,CAAC,MAAM,EAAE,YAAY,GAAG,qBAAqB;IAuB5D;;;;OAIG;IACH,eAAe,IAAI,YAAY,GAAG,IAAI;IAItC;;;;;OAKG;IACH,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI;IAIvD;;;;OAIG;IACH,oBAAoB,IAAI,SAAS,qBAAqB,EAAE;IASxD;;;OAGG;IACH,OAAO,CAAC,gBAAgB;IAexB;;;;OAIG;IACH,WAAW,IAAI,eAAe;IA6B9B;;;;OAIG;IACH,gBAAgB,IAAI,aAAa;IAIjC;;;;;OAKG;IACH,iBAAiB,CACf,OAAO,EAAE,MAAM,GACd,SAAS,gBAAgB,EAAE;IAI9B;;;;;OAKG;IACH,gBAAgB,CAAC,KAAK,EAAE,IAAI,GAAG,SAAS,gBAAgB,EAAE;IAI1D;;;;;OAKG;IACH,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS;IAIxD;;OAEG;IACH,SAAS,IAAI,OAAO;IAIpB;;OAEG;IACH,aAAa,IAAI,MAAM;CAGxB"}
+{"version":3,"file":"manager.d.ts","sourceRoot":"","sources":["../src/manager.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAMH,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAC;AACtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AACjD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,KAAK,EACV,aAAa,EACb,wBAAwB,EACxB,iBAAiB,EACjB,cAAc,EACd,YAAY,EACZ,gBAAgB,EAChB,YAAY,EACZ,UAAU,EACV,eAAe,EAEf,aAAa,EACb,eAAe,EACf,qBAAqB,EACtB,MAAM,YAAY,CAAC;AAIpB;;;;;GAKG;AACH,qBAAa,OAAO;IAClB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAgB;IACvC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAgB;IACzC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAmB;IAC9C,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAe;IAC5C,6FAA6F;IAC7F,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAiB;IAEvC,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,eAAe,CAAwC;IAC/D,OAAO,CAAC,UAAU,CAAwC;IAG1D,OAAO,CAAC,QAAQ,CAAC,cAAc,CAA0B;gBAE7C,MAAM,EAAE,aAAa;IAoBjC;;;OAGG;IACH,KAAK,IAAI,IAAI;IA4Bb;;;OAGG;IACH,IAAI,IAAI,IAAI;IAqBZ;;;;;;OAMG;IACH,sBAAsB,CAAC,GAAG,EAAE,eAAe,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO;IASnF,+DAA+D;IAC/D,iBAAiB,IAAI,cAAc;IAMnC;;;;;;OAMG;IACH,kBAAkB,CAAC,OAAO,EAAE,wBAAwB,GAAG,iBAAiB;IAWxE;;;;;;OAMG;IACH,eAAe,CAAC,SAAS,EAAE,cAAc,GAAG,iBAAiB,GAAG,SAAS;IAIzE;;;;;;OAMG;IACH,kBAAkB,CAAC,MAAM,EAAE,YAAY,GAAG,SAAS,gBAAgB,EAAE;IAkBrE;;;;;OAKG;IACH,oBAAoB,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO;IAM9C;;;;;;;OAOG;IACG,YAAY,CAAC,KAAK,EAAE,SAAS,UAAU,EAAE,EAAE,SAAS,UAAO,GAAG,OAAO,CAAC,YAAY,CAAC;IAYzF;;;;;;;;;;;OAWG;IACG,iBAAiB,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAG,OAAO,CAAC,eAAe,CAAC;IA0ExF;;;;;;;;;;OAUG;IACG,eAAe,CACnB,MAAM,EAAE,YAAY,EACpB,cAAc,CAAC,EAAE,MAAM,EAAE,GACxB,OAAO,CAAC,qBAAqB,CAAC;IAuCjC;;;;OAIG;IACH,eAAe,IAAI,YAAY,GAAG,IAAI;IAItC;;;;;OAKG;IACH,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,YAAY,GAAG,IAAI;IAIvD;;;;OAIG;IACH,oBAAoB,IAAI,SAAS,qBAAqB,EAAE;IASxD;;;OAGG;IACH,OAAO,CAAC,gBAAgB;IAYxB;;;;OAIG;IACH,WAAW,IAAI,eAAe;IA6B9B;;;;OAIG;IACH,gBAAgB,IAAI,aAAa;IAIjC;;;;;OAKG;IACH,iBAAiB,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,gBAAgB,EAAE;IAI/D;;;;;OAKG;IACH,gBAAgB,CAAC,KAAK,EAAE,IAAI,GAAG,SAAS,gBAAgB,EAAE;IAI1D;;;;;OAKG;IACH,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,iBAAiB,GAAG,SAAS;IAIxD;;OAEG;IACH,SAAS,IAAI,OAAO;IAIpB;;OAEG;IACH,aAAa,IAAI,MAAM;CAGxB"}