@parmanasystems/governance 1.0.19

package/README.md

@@ -0,0 +1,175 @@
+# @parmanasystems/governance
+
+Policy lifecycle tooling for the parmanasystems deterministic governance runtime.
+
+[![npm](https://img.shields.io/npm/v/@parmanasystems/governance)](https://www.npmjs.com/package/@parmanasystems/governance)
+
+## Overview
+
+`@parmanasystems/governance` provides the policy management layer — creating, validating, versioning, and bundling governance policies before they enter the deterministic execution runtime.
+
+## Installation
+
+```bash
+npm install @parmanasystems/governance
+```
+
+## Policy structure
+
+Policies live at `policies/{policyId}/{version}/policy.json`:
+
+```json
+{
+  "schemaVersion": "1.0.0",
+  "signalsSchema": {
+    "insurance_active": { "type": "boolean", "required": true },
+    "risk_score":        { "type": "integer", "required": true },
+    "claim_amount":      { "type": "integer", "required": false }
+  },
+  "rules": [
+    {
+      "id": "rule_low_risk",
+      "condition": {
+        "all": [
+          { "signal": "insurance_active", "equals": true },
+          { "signal": "risk_score", "less_than": 50 }
+        ]
+      },
+      "outcome": {
+        "action": "approve",
+        "requires_override": false,
+        "reason": "Low risk profile"
+      }
+    },
+    {
+      "id": "rule_high_risk",
+      "condition": { "signal": "risk_score", "greater_than": 80 },
+      "outcome": {
+        "action": "reject",
+        "requires_override": false,
+        "reason": "Risk score too high"
+      }
+    }
+  ]
+}
+```
+
+Rules are evaluated in order. The first matching rule determines the outcome. If no rule matches, execution fails closed.
+
+## API
+
+### `createPolicy(policyId: string): Promise<void>`
+
+Scaffolds a new policy directory at `./policies/{policyId}/v1/policy.json`.
+
+```typescript
+import { createPolicy } from "@parmanasystems/governance";
+await createPolicy("fraud-detection");
+```
+
+### `definePolicy(options): PolicyDefinition`
+
+Builds a `PolicyDefinition` object in memory.
+
+```typescript
+import { definePolicy } from "@parmanasystems/governance";
+
+const policy = definePolicy({
+  id:      "claims-approval",
+  version: "v1",
+  rules:   [...],
+});
+```
+
+### `validatePolicy(policy): void`
+
+Validates policy structure. Throws on missing `schemaVersion`, invalid `signalsSchema`, missing `rules`, or malformed `outcome` fields.
+
+```typescript
+import { validatePolicy } from "@parmanasystems/governance";
+validatePolicy(policy);
+```
+
+### `upgradePolicy(policy, nextVersion): PolicyDefinition`
+
+Creates a new version of an existing policy.
+
+```typescript
+import { upgradePolicy } from "@parmanasystems/governance";
+const v2 = upgradePolicy(policyV1, "v2");
+```
+
+### `generateBundle(policyId, version, directory): Promise<BundleGenerationResult>`
+
+Generates `bundle.manifest.json` and signs it as `bundle.sig`.
+
+```typescript
+import { generateBundle } from "@parmanasystems/governance";
+
+const result = await generateBundle("claims-approval", "v1", "./policies/claims-approval/v1");
+console.log(result.bundle_hash);   // SHA-256 of manifest
+console.log(result.signature_path); // path to bundle.sig
+```
+
+### `verifyBundle(directory): Promise<boolean>`
+
+Verifies the `bundle.manifest.json` signature and hash integrity.
+
+```typescript
+import { verifyBundle } from "@parmanasystems/governance";
+const ok = await verifyBundle("./policies/claims-approval/v1");
+```
+
+## Types
+
+### PolicyDefinition
+
+```typescript
+interface PolicyDefinition {
+  id: string;
+  version: string;
+  rules: PolicyRule[];
+}
+
+interface PolicyRule {
+  id: string;
+  condition: string;
+  action: string;
+}
+```
+
+### BundleGenerationResult
+
+```typescript
+interface BundleGenerationResult {
+  success: boolean;
+  manifest_path: string;
+  signature_path: string;
+  bundle_hash: string;
+}
+```
+
+### RuntimeRequirements
+
+```typescript
+interface RuntimeRequirements {
+  required_capabilities: string[];
+  supported_runtime_versions: string[];
+  supported_schema_versions: string[];
+}
+```
+
+## Included policies
+
+The repository ships with example policies under `policies/`:
+
+| Policy | Versions | Description |
+|---|---|---|
+| `claims-approval` | v1, v2 | Insurance claim approval with risk scoring |
+| `patient-triage` | v1 | Patient triage routing by severity |
+| `fraud-detection` | v1 | Transaction fraud detection |
+| `claims-advanced` | v1 | Advanced claims with multi-condition rules |
+
+## License
+
+Apache-2.0

package/dist/index.d.ts

@@ -0,0 +1,109 @@
+/**
+ * Scaffolds a new policy directory at `./policies/<policyId>/v1/` and writes
+ * a skeleton `policy.json` to it.
+ *
+ * @param policyId - Unique policy identifier.  Must not already exist on disk.
+ * @returns Absolute path of the created `v1` version directory.
+ * @throws When `./policies/<policyId>` already exists.
+ */
+declare function createPolicy(policyId: string): string;
+
+/** Outcome of a {@link generateBundle} call. */
+interface BundleGenerationResult {
+    /** `true` when the manifest was generated and signed successfully. */
+    success: boolean;
+    /** Absolute path of the written `bundle.manifest.json` file. */
+    manifest_path: string;
+    /** Absolute path of the written `bundle.sig` file. */
+    signature_path: string;
+    /** Deterministic bundle hash embedded in the manifest. */
+    bundle_hash: string;
+}
+/** A single rule within a {@link PolicyDefinition}. */
+interface PolicyRule {
+    /** Unique rule identifier. */
+    id: string;
+    /** Condition expression that must evaluate to true for the rule to apply. */
+    condition: string;
+    /** Action to take when the condition is satisfied. */
+    action: string;
+}
+/**
+ * An in-memory policy definition constructed by {@link definePolicy} before
+ * being serialized and passed to {@link generateBundle}.
+ */
+interface PolicyDefinition {
+    /** Policy identifier. */
+    id: string;
+    /** Semantic version string (e.g. `"v1"`). */
+    version: string;
+    /** Ordered list of rules that make up the policy. */
+    rules: PolicyRule[];
+}
+
+/**
+ * Generates a signed bundle for `policyId`/`policyVersion` in `policyDirectory`:
+ * 1. Hashes all artifacts and writes `bundle.manifest.json`.
+ * 2. Signs the manifest and writes `bundle.sig`.
+ *
+ * The signing key is loaded via `loadPrivateKey()` (dev-keys or env injection).
+ *
+ * @param policyId        - Policy identifier embedded in the manifest.
+ * @param policyVersion   - Policy version string (e.g. `"v1"`).
+ * @param policyDirectory - Path to the directory containing the policy artifacts.
+ * @returns Paths to the written files and the deterministic bundle hash.
+ */
+declare function generateBundle(policyId: string, policyVersion: string, policyDirectory: string): BundleGenerationResult;
+
+/**
+ * Creates the next version directory for `policyId` by copying the latest
+ * existing version and incrementing its numeric suffix (e.g. `v1` → `v2`).
+ * The copied `policy.json` has its `version` field updated to the new version
+ * string.
+ *
+ * @param policyId - An existing policy identifier under `./policies/`.
+ * @returns Absolute path of the newly created version directory.
+ * @throws When the policy does not exist on disk.
+ */
+declare function upgradePolicy(policyId: string): string;
+
+/**
+ * Validates every version directory under `./policies/<policyId>` by
+ * re-verifying all bundle manifests (content hashes) and cryptographic
+ * signatures (bundle.sig).
+ *
+ * Returns `true` only when every version passes all checks.
+ *
+ * @param policyId - Policy identifier whose version directories will be checked.
+ * @throws When the policy directory does not exist.
+ */
+declare function validatePolicy(policyId: string): boolean;
+
+/**
+ * Capability and version constraints that a runtime must satisfy before it is
+ * permitted to execute a bundle.  Stored inside every {@link BundleManifest}
+ * and re-validated at execution time.
+ */
+interface RuntimeRequirements {
+    /** Runtime capability strings that must appear in the executing runtime's capability list. */
+    required_capabilities: string[];
+    /** Runtime version strings (e.g. `"1.0.0"`) acceptable to this bundle. */
+    supported_runtime_versions: string[];
+    /** Schema version strings (e.g. `"1.0.0"`) that this bundle's artifacts conform to. */
+    supported_schema_versions: string[];
+}
+
+/**
+ * Constructs a {@link PolicyDefinition} from a plain config object.
+ * Use this as the first step in the policy-authoring pipeline before
+ * serializing the policy to disk and calling {@link generateBundle}.
+ *
+ * @param config - Policy id, version, and rules.
+ */
+declare function definePolicy(config: {
+    id: string;
+    version: string;
+    rules: PolicyRule[];
+}): PolicyDefinition;
+
+export { type BundleGenerationResult, type PolicyDefinition, type PolicyRule, type RuntimeRequirements, createPolicy, definePolicy, generateBundle, upgradePolicy, validatePolicy };

package/dist/index.js

@@ -0,0 +1,222 @@
+// src/create-policy.ts
+import fs from "fs";
+import path from "path";
+function createPolicy(policyId) {
+  const policyRoot = path.join(
+    "./policies",
+    policyId
+  );
+  const versionDirectory = path.join(
+    policyRoot,
+    "v1"
+  );
+  if (fs.existsSync(policyRoot)) {
+    throw new Error(
+      `Policy already exists: ${policyId}`
+    );
+  }
+  fs.mkdirSync(
+    versionDirectory,
+    {
+      recursive: true
+    }
+  );
+  fs.writeFileSync(
+    path.join(
+      versionDirectory,
+      "policy.json"
+    ),
+    JSON.stringify(
+      {
+        policy: policyId,
+        version: "v1"
+      },
+      null,
+      2
+    ),
+    "utf8"
+  );
+  return versionDirectory;
+}
+
+// src/generate-bundle.ts
+import path2 from "path";
+import {
+  generateManifest,
+  writeManifest
+} from "@parmanasystems/bundle";
+import {
+  signManifest,
+  writeSignature
+} from "@parmanasystems/crypto";
+function generateBundle(policyId, policyVersion, policyDirectory) {
+  const directory = path2.resolve(
+    policyDirectory
+  );
+  const manifest = generateManifest(
+    policyId,
+    policyVersion,
+    directory
+  );
+  writeManifest(
+    manifest,
+    directory
+  );
+  const manifestPath = path2.join(
+    directory,
+    "bundle.manifest.json"
+  );
+  const signature = signManifest(
+    manifestPath
+  );
+  writeSignature(
+    signature,
+    directory
+  );
+  return {
+    success: true,
+    manifest_path: manifestPath,
+    signature_path: path2.join(
+      directory,
+      "bundle.sig"
+    ),
+    bundle_hash: manifest.bundle_hash
+  };
+}
+
+// src/upgrade-policy.ts
+import fs2 from "fs";
+import path3 from "path";
+function upgradePolicy(policyId) {
+  const policyRoot = path3.join(
+    "./policies",
+    policyId
+  );
+  if (!fs2.existsSync(policyRoot)) {
+    throw new Error(
+      `Policy does not exist: ${policyId}`
+    );
+  }
+  const versions = fs2.readdirSync(policyRoot).filter(
+    (entry) => entry.startsWith("v")
+  ).sort();
+  const latestVersion = versions[versions.length - 1];
+  const latestNumber = Number(
+    latestVersion.replace("v", "")
+  );
+  const nextVersion = `v${latestNumber + 1}`;
+  const latestDirectory = path3.join(
+    policyRoot,
+    latestVersion
+  );
+  const nextDirectory = path3.join(
+    policyRoot,
+    nextVersion
+  );
+  fs2.cpSync(
+    latestDirectory,
+    nextDirectory,
+    {
+      recursive: true
+    }
+  );
+  const policyFile = path3.join(
+    nextDirectory,
+    "policy.json"
+  );
+  const content = JSON.parse(
+    fs2.readFileSync(
+      policyFile,
+      "utf8"
+    )
+  );
+  content.version = nextVersion;
+  fs2.writeFileSync(
+    policyFile,
+    JSON.stringify(
+      content,
+      null,
+      2
+    ),
+    "utf8"
+  );
+  return nextDirectory;
+}
+
+// src/validate-policy.ts
+import fs3 from "fs";
+import path4 from "path";
+import {
+  readManifest,
+  verifyManifest
+} from "@parmanasystems/bundle";
+import {
+  readSignature,
+  verifySignature
+} from "@parmanasystems/crypto";
+function validatePolicy(policyId) {
+  const policyRoot = path4.join(
+    "./policies",
+    policyId
+  );
+  if (!fs3.existsSync(
+    policyRoot
+  )) {
+    throw new Error(
+      `Policy does not exist: ${policyId}`
+    );
+  }
+  const versions = fs3.readdirSync(
+    policyRoot
+  ).filter(
+    (entry) => entry.startsWith("v")
+  ).sort();
+  for (const version of versions) {
+    const versionDirectory = path4.join(
+      policyRoot,
+      version
+    );
+    const manifest = readManifest(
+      versionDirectory
+    );
+    const manifestResult = verifyManifest(
+      manifest,
+      versionDirectory
+    );
+    if (!manifestResult.valid) {
+      return false;
+    }
+    const signature = readSignature(
+      versionDirectory
+    );
+    const manifestPath = path4.join(
+      versionDirectory,
+      "bundle.manifest.json"
+    );
+    const signatureValid = verifySignature(
+      manifestPath,
+      signature
+    );
+    if (!signatureValid) {
+      return false;
+    }
+  }
+  return true;
+}
+
+// src/define-policy.ts
+function definePolicy(config) {
+  return {
+    id: config.id,
+    version: config.version,
+    rules: config.rules
+  };
+}
+export {
+  createPolicy,
+  definePolicy,
+  generateBundle,
+  upgradePolicy,
+  validatePolicy
+};
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/create-policy.ts","../src/generate-bundle.ts","../src/upgrade-policy.ts","../src/validate-policy.ts","../src/define-policy.ts"],"sourcesContent":["import fs from \"fs\";\nimport path from \"path\";\n\n/**\n * Scaffolds a new policy directory at `./policies/<policyId>/v1/` and writes\n * a skeleton `policy.json` to it.\n *\n * @param policyId - Unique policy identifier.  Must not already exist on disk.\n * @returns Absolute path of the created `v1` version directory.\n * @throws When `./policies/<policyId>` already exists.\n */\nexport function createPolicy(\n  policyId: string\n): string {\n  const policyRoot = path.join(\n    \"./policies\",\n    policyId\n  );\n\n  const versionDirectory =\n    path.join(\n      policyRoot,\n      \"v1\"\n    );\n\n  if (fs.existsSync(policyRoot)) {\n    throw new Error(\n      `Policy already exists: ${policyId}`\n    );\n  }\n\n  fs.mkdirSync(\n    versionDirectory,\n    {\n      recursive: true,\n    }\n  );\n\n  fs.writeFileSync(\n    path.join(\n      versionDirectory,\n      \"policy.json\"\n    ),\n\n    JSON.stringify(\n      {\n        policy: policyId,\n        version: \"v1\",\n      },\n      null,\n      2\n    ),\n\n    \"utf8\"\n  );\n\n  return versionDirectory;\n}\n\n\n\n\n","import path from \"path\";\n\nimport {\n  generateManifest,\n  writeManifest,\n} from \"@parmanasystems/bundle\";\n\nimport {\n  signManifest,\n  writeSignature,\n} from \"@parmanasystems/crypto\";\n\nimport type {\n  BundleGenerationResult,\n} from \"./types\";\n\n/**\n * Generates a signed bundle for `policyId`/`policyVersion` in `policyDirectory`:\n * 1. Hashes all artifacts and writes `bundle.manifest.json`.\n * 2. Signs the manifest and writes `bundle.sig`.\n *\n * The signing key is loaded via `loadPrivateKey()` (dev-keys or env injection).\n *\n * @param policyId        - Policy identifier embedded in the manifest.\n * @param policyVersion   - Policy version string (e.g. `\"v1\"`).\n * @param policyDirectory - Path to the directory containing the policy artifacts.\n * @returns Paths to the written files and the deterministic bundle hash.\n */\nexport function generateBundle(\n  policyId: string,\n  policyVersion: string,\n  policyDirectory: string\n): BundleGenerationResult {\n\n  const directory =\n    path.resolve(\n      policyDirectory\n    );\n\n  const manifest =\n    generateManifest(\n      policyId,\n      policyVersion,\n      directory\n    );\n\n  writeManifest(\n    manifest,\n    directory\n  );\n\n  const manifestPath =\n    path.join(\n      directory,\n      \"bundle.manifest.json\"\n    );\n\n  const signature =\n    signManifest(\n      manifestPath\n    );\n\n  writeSignature(\n    signature,\n    directory\n  );\n\n  return {\n    success: true,\n\n    manifest_path:\n      manifestPath,\n\n    signature_path:\n      path.join(\n        directory,\n        \"bundle.sig\"\n      ),\n\n    bundle_hash:\n      manifest.bundle_hash,\n  };\n}\n\n\n\n\n","import fs from \"fs\";\nimport path from \"path\";\n\n/**\n * Creates the next version directory for `policyId` by copying the latest\n * existing version and incrementing its numeric suffix (e.g. `v1` → `v2`).\n * The copied `policy.json` has its `version` field updated to the new version\n * string.\n *\n * @param policyId - An existing policy identifier under `./policies/`.\n * @returns Absolute path of the newly created version directory.\n * @throws When the policy does not exist on disk.\n */\nexport function upgradePolicy(\n  policyId: string\n): string {\n  const policyRoot = path.join(\n    \"./policies\",\n    policyId\n  );\n\n  if (!fs.existsSync(policyRoot)) {\n    throw new Error(\n      `Policy does not exist: ${policyId}`\n    );\n  }\n\n  const versions = fs\n    .readdirSync(policyRoot)\n    .filter((entry) =>\n      entry.startsWith(\"v\")\n    )\n    .sort();\n\n  const latestVersion =\n    versions[\n      versions.length - 1\n    ];\n\n  const latestNumber =\n    Number(\n      latestVersion.replace(\"v\", \"\")\n    );\n\n  const nextVersion =\n    `v${latestNumber + 1}`;\n\n  const latestDirectory =\n    path.join(\n      policyRoot,\n      latestVersion\n    );\n\n  const nextDirectory =\n    path.join(\n      policyRoot,\n      nextVersion\n    );\n\n  fs.cpSync(\n    latestDirectory,\n    nextDirectory,\n    {\n      recursive: true,\n    }\n  );\n\n  const policyFile =\n    path.join(\n      nextDirectory,\n      \"policy.json\"\n    );\n\n  const content =\n    JSON.parse(\n      fs.readFileSync(\n        policyFile,\n        \"utf8\"\n      )\n    );\n\n  content.version =\n    nextVersion;\n\n  fs.writeFileSync(\n    policyFile,\n    JSON.stringify(\n      content,\n      null,\n      2\n    ),\n    \"utf8\"\n  );\n\n  return nextDirectory;\n}\n\n\n\n\n","import fs from \"fs\";\nimport path from \"path\";\n\nimport {\n  readManifest,\n  verifyManifest,\n} from \"@parmanasystems/bundle\";\n\nimport {\n  readSignature,\n  verifySignature,\n} from \"@parmanasystems/crypto\";\n\n/**\n * Validates every version directory under `./policies/<policyId>` by\n * re-verifying all bundle manifests (content hashes) and cryptographic\n * signatures (bundle.sig).\n *\n * Returns `true` only when every version passes all checks.\n *\n * @param policyId - Policy identifier whose version directories will be checked.\n * @throws When the policy directory does not exist.\n */\nexport function validatePolicy(\n  policyId: string\n): boolean {\n\n  const policyRoot =\n    path.join(\n      \"./policies\",\n      policyId\n    );\n\n  if (\n    !fs.existsSync(\n      policyRoot\n    )\n  ) {\n    throw new Error(\n      `Policy does not exist: ${policyId}`\n    );\n  }\n\n  const versions =\n    fs\n      .readdirSync(\n        policyRoot\n      )\n      .filter(\n        (entry) =>\n          entry.startsWith(\"v\")\n      )\n      .sort();\n\n  for (const version of versions) {\n\n    const versionDirectory =\n      path.join(\n        policyRoot,\n        version\n      );\n\n    const manifest =\n      readManifest(\n        versionDirectory\n      );\n\n    const manifestResult =\n      verifyManifest(\n        manifest,\n        versionDirectory\n      );\n\n    if (\n      !manifestResult.valid\n    ) {\n      return false;\n    }\n\n    const signature =\n      readSignature(\n        versionDirectory\n      );\n\n    const manifestPath =\n      path.join(\n        versionDirectory,\n        \"bundle.manifest.json\"\n      );\n\n    const signatureValid =\n      verifySignature(\n        manifestPath,\n        signature\n      );\n\n    if (\n      !signatureValid\n    ) {\n      return false;\n    }\n  }\n\n  return true;\n}\n\n\n\n\n","import type {\n  PolicyDefinition,\n  PolicyRule,\n} from \"./types\";\n\n/**\n * Constructs a {@link PolicyDefinition} from a plain config object.\n * Use this as the first step in the policy-authoring pipeline before\n * serializing the policy to disk and calling {@link generateBundle}.\n *\n * @param config - Policy id, version, and rules.\n */\nexport function definePolicy(config: {\n  id: string;\n  version: string;\n  rules: PolicyRule[];\n}): PolicyDefinition {\n\n  return {\n    id: config.id,\n\n    version: config.version,\n\n    rules: config.rules,\n  };\n}\n"],"mappings":";AAAA,OAAO,QAAQ;AACf,OAAO,UAAU;AAUV,SAAS,aACd,UACQ;AACR,QAAM,aAAa,KAAK;AAAA,IACtB;AAAA,IACA;AAAA,EACF;AAEA,QAAM,mBACJ,KAAK;AAAA,IACH;AAAA,IACA;AAAA,EACF;AAEF,MAAI,GAAG,WAAW,UAAU,GAAG;AAC7B,UAAM,IAAI;AAAA,MACR,0BAA0B,QAAQ;AAAA,IACpC;AAAA,EACF;AAEA,KAAG;AAAA,IACD;AAAA,IACA;AAAA,MACE,WAAW;AAAA,IACb;AAAA,EACF;AAEA,KAAG;AAAA,IACD,KAAK;AAAA,MACH;AAAA,MACA;AAAA,IACF;AAAA,IAEA,KAAK;AAAA,MACH;AAAA,QACE,QAAQ;AAAA,QACR,SAAS;AAAA,MACX;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,IAEA;AAAA,EACF;AAEA,SAAO;AACT;;;ACzDA,OAAOA,WAAU;AAEjB;AAAA,EACE;AAAA,EACA;AAAA,OACK;AAEP;AAAA,EACE;AAAA,EACA;AAAA,OACK;AAkBA,SAAS,eACd,UACA,eACA,iBACwB;AAExB,QAAM,YACJA,MAAK;AAAA,IACH;AAAA,EACF;AAEF,QAAM,WACJ;AAAA,IACE;AAAA,IACA;AAAA,IACA;AAAA,EACF;AAEF;AAAA,IACE;AAAA,IACA;AAAA,EACF;AAEA,QAAM,eACJA,MAAK;AAAA,IACH;AAAA,IACA;AAAA,EACF;AAEF,QAAM,YACJ;AAAA,IACE;AAAA,EACF;AAEF;AAAA,IACE;AAAA,IACA;AAAA,EACF;AAEA,SAAO;AAAA,IACL,SAAS;AAAA,IAET,eACE;AAAA,IAEF,gBACEA,MAAK;AAAA,MACH;AAAA,MACA;AAAA,IACF;AAAA,IAEF,aACE,SAAS;AAAA,EACb;AACF;;;AClFA,OAAOC,SAAQ;AACf,OAAOC,WAAU;AAYV,SAAS,cACd,UACQ;AACR,QAAM,aAAaA,MAAK;AAAA,IACtB;AAAA,IACA;AAAA,EACF;AAEA,MAAI,CAACD,IAAG,WAAW,UAAU,GAAG;AAC9B,UAAM,IAAI;AAAA,MACR,0BAA0B,QAAQ;AAAA,IACpC;AAAA,EACF;AAEA,QAAM,WAAWA,IACd,YAAY,UAAU,EACtB;AAAA,IAAO,CAAC,UACP,MAAM,WAAW,GAAG;AAAA,EACtB,EACC,KAAK;AAER,QAAM,gBACJ,SACE,SAAS,SAAS,CACpB;AAEF,QAAM,eACJ;AAAA,IACE,cAAc,QAAQ,KAAK,EAAE;AAAA,EAC/B;AAEF,QAAM,cACJ,IAAI,eAAe,CAAC;AAEtB,QAAM,kBACJC,MAAK;AAAA,IACH;AAAA,IACA;AAAA,EACF;AAEF,QAAM,gBACJA,MAAK;AAAA,IACH;AAAA,IACA;AAAA,EACF;AAEF,EAAAD,IAAG;AAAA,IACD;AAAA,IACA;AAAA,IACA;AAAA,MACE,WAAW;AAAA,IACb;AAAA,EACF;AAEA,QAAM,aACJC,MAAK;AAAA,IACH;AAAA,IACA;AAAA,EACF;AAEF,QAAM,UACJ,KAAK;AAAA,IACHD,IAAG;AAAA,MACD;AAAA,MACA;AAAA,IACF;AAAA,EACF;AAEF,UAAQ,UACN;AAEF,EAAAA,IAAG;AAAA,IACD;AAAA,IACA,KAAK;AAAA,MACH;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAAA,IACA;AAAA,EACF;AAEA,SAAO;AACT;;;AC/FA,OAAOE,SAAQ;AACf,OAAOC,WAAU;AAEjB;AAAA,EACE;AAAA,EACA;AAAA,OACK;AAEP;AAAA,EACE;AAAA,EACA;AAAA,OACK;AAYA,SAAS,eACd,UACS;AAET,QAAM,aACJA,MAAK;AAAA,IACH;AAAA,IACA;AAAA,EACF;AAEF,MACE,CAACD,IAAG;AAAA,IACF;AAAA,EACF,GACA;AACA,UAAM,IAAI;AAAA,MACR,0BAA0B,QAAQ;AAAA,IACpC;AAAA,EACF;AAEA,QAAM,WACJA,IACG;AAAA,IACC;AAAA,EACF,EACC;AAAA,IACC,CAAC,UACC,MAAM,WAAW,GAAG;AAAA,EACxB,EACC,KAAK;AAEV,aAAW,WAAW,UAAU;AAE9B,UAAM,mBACJC,MAAK;AAAA,MACH;AAAA,MACA;AAAA,IACF;AAEF,UAAM,WACJ;AAAA,MACE;AAAA,IACF;AAEF,UAAM,iBACJ;AAAA,MACE;AAAA,MACA;AAAA,IACF;AAEF,QACE,CAAC,eAAe,OAChB;AACA,aAAO;AAAA,IACT;AAEA,UAAM,YACJ;AAAA,MACE;AAAA,IACF;AAEF,UAAM,eACJA,MAAK;AAAA,MACH;AAAA,MACA;AAAA,IACF;AAEF,UAAM,iBACJ;AAAA,MACE;AAAA,MACA;AAAA,IACF;AAEF,QACE,CAAC,gBACD;AACA,aAAO;AAAA,IACT;AAAA,EACF;AAEA,SAAO;AACT;;;AC5FO,SAAS,aAAa,QAIR;AAEnB,SAAO;AAAA,IACL,IAAI,OAAO;AAAA,IAEX,SAAS,OAAO;AAAA,IAEhB,OAAO,OAAO;AAAA,EAChB;AACF;","names":["path","fs","path","fs","path"]}

package/package.json

@@ -0,0 +1,47 @@
+{
+  "name": "@parmanasystems/governance",
+  "version": "1.0.19",
+  "private": false,
+  "type": "module",
+  "scripts": {
+    "build": "tsup"
+  },
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "files": [
+    "dist"
+  ],
+  "sideEffects": false,
+  "dependencies": {
+    "@parmanasystems/bundle": "^1.0.19",
+    "@parmanasystems/crypto": "^1.0.19"
+  },
+  "description": "Deterministic governance lifecycle and policy infrastructure for parmanasystems.",
+  "license": "Apache-2.0",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/pavancharak/parmanasystems-core.git"
+  },
+  "homepage": "https://github.com/pavancharak/parmanasystems-core",
+  "bugs": {
+    "url": "https://github.com/pavancharak/parmanasystems-core/issues"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "keywords": [
+    "governance",
+    "policy",
+    "deterministic",
+    "compliance",
+    "runtime",
+    "workflow"
+  ],
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts"
+}