@peac/capture-core 0.10.7

package/README.md

@@ -0,0 +1,291 @@
+# @peac/capture-core
+
+Runtime-neutral capture pipeline for PEAC interaction evidence.
+
+## Overview
+
+`@peac/capture-core` provides a deterministic, tamper-evident capture pipeline for recording
+agent interactions. It is designed to be runtime-agnostic (no Node.js/filesystem dependencies)
+and can run in any JavaScript environment with WebCrypto support.
+
+## Installation
+
+```bash
+pnpm add @peac/capture-core
+```
+
+## Quick Start
+
+```typescript
+import { createCaptureSession, createHasher } from '@peac/capture-core';
+import { createInMemorySpoolStore, createInMemoryDedupeIndex } from '@peac/capture-core/testkit';
+
+// Create a capture session
+const session = createCaptureSession({
+  store: createInMemorySpoolStore(),
+  dedupe: createInMemoryDedupeIndex(),
+  hasher: createHasher(),
+});
+
+// Capture an action
+const result = await session.capture({
+  id: 'action-001',
+  kind: 'tool.call',
+  platform: 'my-agent',
+  started_at: new Date().toISOString(),
+  tool_name: 'web_search',
+  input_bytes: new TextEncoder().encode('{"query": "hello"}'),
+  output_bytes: new TextEncoder().encode('{"results": []}'),
+});
+
+if (result.success) {
+  console.log('Captured:', result.entry.entry_digest);
+}
+
+await session.close();
+```
+
+## Determinism Contract
+
+This package guarantees deterministic output for identical inputs. The following behaviors
+are normative and MUST NOT change without a wire format version bump.
+
+### Entry Digest Computation
+
+The `entry_digest` is computed by:
+
+1. Serializing the entry (minus `entry_digest` field) using JCS (RFC 8785)
+2. Computing SHA-256 of the canonical JSON bytes
+3. Encoding as lowercase hex (64 characters)
+
+**Fields included in hash:**
+
+- `captured_at` (RFC 3339 timestamp)
+- `action` (full action object, minus `input_bytes`/`output_bytes`)
+- `input_digest` (if present)
+- `output_digest` (if present)
+- `prev_entry_digest` (chain linkage)
+- `sequence` (monotonic counter)
+
+### Genesis Digest
+
+The first entry in a chain has `prev_entry_digest` set to `GENESIS_DIGEST`, a
+**protocol-defined sentinel value** consisting of 64 zero characters:
+
+```text
+0000000000000000000000000000000000000000000000000000000000000000
+```
+
+This is NOT the SHA-256 hash of an empty string (which would be `e3b0c44...`).
+It is an arbitrary constant chosen to be obviously distinguishable and to
+simplify chain verification (check for all-zeros rather than compute a hash).
+
+### Timestamp Derivation
+
+`captured_at` is derived deterministically from action timestamps:
+
+```typescript
+captured_at = action.completed_at ?? action.started_at;
+```
+
+This ensures the same action stream produces identical chain digests across sessions.
+Wall-clock time is NOT used.
+
+**Monotonicity caveat:** `captured_at` values may be non-monotonic (out of order) even
+though the chain is strictly ordered by sequence number. This can happen when actions
+complete in a different order than they started. The chain ordering is by invocation
+order, NOT by timestamp order.
+
+### Payload Hashing
+
+Payloads are hashed according to truncation thresholds:
+
+| Size   | Algorithm         | Label              |
+| ------ | ----------------- | ------------------ |
+| <= 1MB | Full SHA-256      | `sha-256`          |
+| > 1MB  | First 1MB SHA-256 | `sha-256:trunc-1m` |
+
+The `bytes` field always contains the original payload size (for audit).
+
+### JCS Canonicalization
+
+JSON canonicalization follows RFC 8785 with JavaScript-specific `undefined` handling:
+
+- Object properties with `undefined` values are **omitted**
+- Array elements that are `undefined` become **`null`**
+- Top-level `undefined` **throws an error**
+
+This matches `JSON.stringify` behavior. See `@peac/crypto` documentation for details.
+
+## Concurrency Contract
+
+### Single-Writer Per Session
+
+Each `CaptureSession` instance maintains internal state (sequence number, head digest)
+that is NOT thread-safe across multiple sessions. For concurrent agents:
+
+- Create one session per agent/workflow
+- Do NOT share sessions across async boundaries without serialization
+
+### Capture Serialization
+
+Concurrent `capture()` calls on the same session are automatically serialized:
+
+```typescript
+// These run sequentially (not in parallel) to maintain chain integrity
+const [r1, r2, r3] = await Promise.all([
+  session.capture(action1),
+  session.capture(action2),
+  session.capture(action3),
+]);
+```
+
+**Ordering:** Captures are ordered by invocation time (when `capture()` was called),
+NOT by action timestamps. If timestamp-ordered chains are required, sort actions
+before capturing.
+
+### Never-Throw Guarantee
+
+`capture()` NEVER throws exceptions. All failures are returned as `CaptureResult`:
+
+```typescript
+const result = await session.capture(action);
+if (!result.success) {
+  console.error(result.code, result.message);
+}
+```
+
+Error codes:
+
+- `E_CAPTURE_DUPLICATE` - Action ID already captured
+- `E_CAPTURE_INVALID_ACTION` - Missing required fields
+- `E_CAPTURE_HASH_FAILED` - Hashing operation failed
+- `E_CAPTURE_STORE_FAILED` - Storage backend failed
+- `E_CAPTURE_SESSION_CLOSED` - Session was closed
+- `E_CAPTURE_INTERNAL` - Unexpected internal error
+
+### Queue Recovery
+
+If a capture fails, subsequent captures can still succeed. The queue is designed to
+be resilient:
+
+```typescript
+const r1 = await session.capture(badAction); // Fails
+const r2 = await session.capture(goodAction); // Succeeds (queue not wedged)
+```
+
+### Session Lifecycle and close()
+
+The `close()` method releases session resources. Its behavior is:
+
+**Semantics:**
+
+- **Immediate:** `close()` does NOT wait for in-flight captures to drain. Any
+  capture already in progress may complete or fail.
+- **Idempotent:** Multiple `close()` calls are safe and have no additional effect.
+- **Terminal:** After `close()`, all subsequent `capture()` calls return
+  `E_CAPTURE_SESSION_CLOSED` (never throw).
+
+**Best practice:** Wait for all captures to complete before closing:
+
+```typescript
+// Good: wait for captures, then close
+const results = await Promise.all([session.capture(action1), session.capture(action2)]);
+await session.close();
+
+// Risky: closing while captures in-flight
+session.capture(action1); // May or may not complete
+await session.close(); // Immediate - doesn't wait
+```
+
+**Resource cleanup:** `close()` calls `store.close()` on the underlying SpoolStore.
+Custom SpoolStore implementations should release file handles, database connections,
+or other resources in their `close()` method.
+
+## API Reference
+
+### Main Exports
+
+```typescript
+import {
+  // Constants
+  GENESIS_DIGEST, // Protocol-defined sentinel: 64 zeros (NOT sha256 of empty)
+  SIZE_CONSTANTS, // { TRUNC_64K: 65536, TRUNC_1M: 1048576 }
+
+  // Factories
+  createHasher, // Create a Hasher instance
+  createCaptureSession, // Create a CaptureSession
+
+  // Mappers
+  toInteractionEvidence, // SpoolEntry -> InteractionEvidenceV01
+  toInteractionEvidenceBatch, // SpoolEntry[] -> InteractionEvidenceV01[]
+
+  // Types
+  type CapturedAction,
+  type SpoolEntry,
+  type CaptureResult,
+  type Hasher,
+  type SpoolStore,
+  type DedupeIndex,
+} from '@peac/capture-core';
+```
+
+### Testkit Exports
+
+For testing only. Do NOT use in production:
+
+```typescript
+import {
+  createInMemorySpoolStore,
+  createInMemoryDedupeIndex,
+  InMemorySpoolStore,
+  InMemoryDedupeIndex,
+} from '@peac/capture-core/testkit';
+```
+
+## Implementing Custom Backends
+
+### SpoolStore
+
+```typescript
+interface SpoolStore {
+  append(entry: SpoolEntry): Promise<void>;
+  getHeadDigest(): Promise<string>;
+  getSequence(): Promise<number>;
+  commit(): Promise<void>;
+  close(): Promise<void>;
+}
+```
+
+### DedupeIndex
+
+```typescript
+interface DedupeIndex {
+  has(actionId: string): Promise<boolean>;
+  get(actionId: string): Promise<DedupeEntry | undefined>;
+  set(actionId: string, entry: DedupeEntry): Promise<void>;
+  markEmitted(actionId: string): Promise<boolean>;
+  delete(actionId: string): Promise<boolean>;
+  size(): Promise<number>;
+  clear(): Promise<void>;
+}
+```
+
+## Module Format
+
+This package ships **CommonJS** output. ESM `import` is supported via Node's CJS interop:
+
+```typescript
+// Both work
+import { createCaptureSession } from '@peac/capture-core'; // ESM (Node synthesizes default)
+const { createCaptureSession } = require('@peac/capture-core'); // CJS
+```
+
+## Runtime Requirements
+
+- **WebCrypto API**: `crypto.subtle` must be available
+- Supported environments: Node.js 18+, Deno, Bun, modern browsers, Cloudflare Workers
+
+## License
+
+Apache-2.0

package/dist/hasher.d.ts

@@ -0,0 +1,42 @@
+/**
+ * @peac/capture-core - Action Hasher
+ *
+ * Deterministic hashing for capture pipeline.
+ * Uses @peac/crypto for JCS (RFC 8785) and SHA-256.
+ *
+ * RUNTIME REQUIREMENT: WebCrypto (crypto.subtle) must be available.
+ * Works in: Node.js 18+, Deno, Bun, modern browsers, Cloudflare Workers.
+ */
+import type { Digest } from '@peac/schema';
+import type { Hasher, HasherConfig, SpoolEntry } from './types';
+/**
+ * Default hasher implementation using JCS + SHA-256.
+ *
+ * Determinism guarantees:
+ * - Same input bytes -> same digest
+ * - Same SpoolEntry (minus entry_digest) -> same chain hash
+ * - Truncation algorithm is deterministic (first N bytes)
+ *
+ * Supported truncation thresholds:
+ * - 64k (65536 bytes) -> alg: 'sha-256:trunc-64k'
+ * - 1m (1048576 bytes) -> alg: 'sha-256:trunc-1m'
+ */
+export declare class ActionHasher implements Hasher {
+    private readonly truncateThreshold;
+    constructor(config?: HasherConfig);
+    /**
+     * Compute digest for payload bytes.
+     * Automatically truncates if payload exceeds threshold.
+     */
+    digest(payload: Uint8Array): Promise<Digest>;
+    /**
+     * Compute digest for a spool entry (for chaining).
+     * Uses JCS (RFC 8785) for deterministic serialization.
+     */
+    digestEntry(entry: Omit<SpoolEntry, 'entry_digest'>): Promise<string>;
+}
+/**
+ * Create a default hasher instance.
+ */
+export declare function createHasher(config?: HasherConfig): Hasher;
+//# sourceMappingURL=hasher.d.ts.map

package/dist/hasher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hasher.d.ts","sourceRoot":"","sources":["../src/hasher.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,KAAK,EAAE,MAAM,EAAa,MAAM,cAAc,CAAC;AACtD,OAAO,KAAK,EAAE,MAAM,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAwDhE;;;;;;;;;;;GAWG;AACH,qBAAa,YAAa,YAAW,MAAM;IACzC,OAAO,CAAC,QAAQ,CAAC,iBAAiB,CAAyB;gBAE/C,MAAM,GAAE,YAAiB;IAiBrC;;;OAGG;IACG,MAAM,CAAC,OAAO,EAAE,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC;IA+BlD;;;OAGG;IACG,WAAW,CAAC,KAAK,EAAE,IAAI,CAAC,UAAU,EAAE,cAAc,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC;CAM5E;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,MAAM,CAAC,EAAE,YAAY,GAAG,MAAM,CAE1D"}

package/dist/hasher.js

@@ -0,0 +1,133 @@
+"use strict";
+/**
+ * @peac/capture-core - Action Hasher
+ *
+ * Deterministic hashing for capture pipeline.
+ * Uses @peac/crypto for JCS (RFC 8785) and SHA-256.
+ *
+ * RUNTIME REQUIREMENT: WebCrypto (crypto.subtle) must be available.
+ * Works in: Node.js 18+, Deno, Bun, modern browsers, Cloudflare Workers.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ActionHasher = void 0;
+exports.createHasher = createHasher;
+const crypto_1 = require("@peac/crypto");
+const types_1 = require("./types");
+// =============================================================================
+// Constants
+// =============================================================================
+/**
+ * Valid truncation thresholds (only these are supported).
+ * Using other values would produce digests that don't match any declared algorithm.
+ */
+const VALID_TRUNCATE_THRESHOLDS = [types_1.SIZE_CONSTANTS.TRUNC_64K, types_1.SIZE_CONSTANTS.TRUNC_1M];
+// =============================================================================
+// WebCrypto Runtime Check
+// =============================================================================
+/**
+ * Get WebCrypto subtle interface with explicit runtime check.
+ * Prefer globalThis.crypto over bare crypto to avoid bundler ambiguity.
+ *
+ * @throws Error if WebCrypto is not available
+ */
+function getSubtle() {
+    const subtle = globalThis.crypto?.subtle;
+    if (!subtle) {
+        throw new Error('WebCrypto (crypto.subtle) is required but not available. ' +
+            'Ensure you are running in Node.js 18+, Deno, Bun, or a modern browser.');
+    }
+    return subtle;
+}
+// =============================================================================
+// SHA-256 Helper (Web Crypto API - Runtime Neutral)
+// =============================================================================
+/**
+ * Compute SHA-256 hash of bytes using Web Crypto API.
+ * Returns lowercase hex string.
+ */
+async function sha256Hex(data) {
+    const subtle = getSubtle();
+    const hashBuffer = await subtle.digest('SHA-256', data);
+    const hashArray = new Uint8Array(hashBuffer);
+    return Array.from(hashArray)
+        .map((b) => b.toString(16).padStart(2, '0'))
+        .join('');
+}
+// =============================================================================
+// Action Hasher Implementation
+// =============================================================================
+/**
+ * Default hasher implementation using JCS + SHA-256.
+ *
+ * Determinism guarantees:
+ * - Same input bytes -> same digest
+ * - Same SpoolEntry (minus entry_digest) -> same chain hash
+ * - Truncation algorithm is deterministic (first N bytes)
+ *
+ * Supported truncation thresholds:
+ * - 64k (65536 bytes) -> alg: 'sha-256:trunc-64k'
+ * - 1m (1048576 bytes) -> alg: 'sha-256:trunc-1m'
+ */
+class ActionHasher {
+    truncateThreshold;
+    constructor(config = {}) {
+        const threshold = config.truncateThreshold ?? types_1.SIZE_CONSTANTS.TRUNC_1M;
+        // Validate threshold is one of the supported values
+        if (!VALID_TRUNCATE_THRESHOLDS.includes(threshold)) {
+            throw new RangeError(`truncateThreshold must be 64k (${types_1.SIZE_CONSTANTS.TRUNC_64K}) or 1m (${types_1.SIZE_CONSTANTS.TRUNC_1M}), ` +
+                `got ${threshold}`);
+        }
+        this.truncateThreshold = threshold;
+        // Validate WebCrypto is available at construction time
+        getSubtle();
+    }
+    /**
+     * Compute digest for payload bytes.
+     * Automatically truncates if payload exceeds threshold.
+     */
+    async digest(payload) {
+        const bytes = payload.length;
+        // No truncation needed - full SHA-256
+        if (bytes <= this.truncateThreshold) {
+            return {
+                alg: 'sha-256',
+                value: await sha256Hex(payload),
+                bytes,
+            };
+        }
+        // Large payload: truncate to threshold
+        const truncated = payload.slice(0, this.truncateThreshold);
+        // Determine algorithm label based on truncation size
+        let alg;
+        if (this.truncateThreshold === types_1.SIZE_CONSTANTS.TRUNC_64K) {
+            alg = 'sha-256:trunc-64k';
+        }
+        else {
+            // SIZE_CONSTANTS.TRUNC_1M
+            alg = 'sha-256:trunc-1m';
+        }
+        return {
+            alg,
+            value: await sha256Hex(truncated),
+            bytes, // Original size for audit
+        };
+    }
+    /**
+     * Compute digest for a spool entry (for chaining).
+     * Uses JCS (RFC 8785) for deterministic serialization.
+     */
+    async digestEntry(entry) {
+        // JCS canonicalization ensures deterministic serialization
+        const canonical = (0, crypto_1.canonicalize)(entry);
+        const bytes = new TextEncoder().encode(canonical);
+        return sha256Hex(bytes);
+    }
+}
+exports.ActionHasher = ActionHasher;
+/**
+ * Create a default hasher instance.
+ */
+function createHasher(config) {
+    return new ActionHasher(config);
+}
+//# sourceMappingURL=hasher.js.map

package/dist/hasher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hasher.js","sourceRoot":"","sources":["../src/hasher.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG;;;AA8IH,oCAEC;AA9ID,yCAA4C;AAG5C,mCAAyC;AAEzC,gFAAgF;AAChF,YAAY;AACZ,gFAAgF;AAEhF;;;GAGG;AACH,MAAM,yBAAyB,GAAG,CAAC,sBAAc,CAAC,SAAS,EAAE,sBAAc,CAAC,QAAQ,CAAU,CAAC;AAG/F,gFAAgF;AAChF,0BAA0B;AAC1B,gFAAgF;AAEhF;;;;;GAKG;AACH,SAAS,SAAS;IAChB,MAAM,MAAM,GAAG,UAAU,CAAC,MAAM,EAAE,MAAM,CAAC;IACzC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CACb,2DAA2D;YACzD,wEAAwE,CAC3E,CAAC;IACJ,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,gFAAgF;AAChF,oDAAoD;AACpD,gFAAgF;AAEhF;;;GAGG;AACH,KAAK,UAAU,SAAS,CAAC,IAAgB;IACvC,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;IAC3B,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IACxD,MAAM,SAAS,GAAG,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC;IAC7C,OAAO,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC;SACzB,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;SAC3C,IAAI,CAAC,EAAE,CAAC,CAAC;AACd,CAAC;AAED,gFAAgF;AAChF,+BAA+B;AAC/B,gFAAgF;AAEhF;;;;;;;;;;;GAWG;AACH,MAAa,YAAY;IACN,iBAAiB,CAAyB;IAE3D,YAAY,SAAuB,EAAE;QACnC,MAAM,SAAS,GAAG,MAAM,CAAC,iBAAiB,IAAI,sBAAc,CAAC,QAAQ,CAAC;QAEtE,oDAAoD;QACpD,IAAI,CAAC,yBAAyB,CAAC,QAAQ,CAAC,SAAmC,CAAC,EAAE,CAAC;YAC7E,MAAM,IAAI,UAAU,CAClB,kCAAkC,sBAAc,CAAC,SAAS,YAAY,sBAAc,CAAC,QAAQ,KAAK;gBAChG,OAAO,SAAS,EAAE,CACrB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,iBAAiB,GAAG,SAAmC,CAAC;QAE7D,uDAAuD;QACvD,SAAS,EAAE,CAAC;IACd,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,MAAM,CAAC,OAAmB;QAC9B,MAAM,KAAK,GAAG,OAAO,CAAC,MAAM,CAAC;QAE7B,sCAAsC;QACtC,IAAI,KAAK,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;YACpC,OAAO;gBACL,GAAG,EAAE,SAAsB;gBAC3B,KAAK,EAAE,MAAM,SAAS,CAAC,OAAO,CAAC;gBAC/B,KAAK;aACN,CAAC;QACJ,CAAC;QAED,uCAAuC;QACvC,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAE3D,qDAAqD;QACrD,IAAI,GAAc,CAAC;QACnB,IAAI,IAAI,CAAC,iBAAiB,KAAK,sBAAc,CAAC,SAAS,EAAE,CAAC;YACxD,GAAG,GAAG,mBAAgC,CAAC;QACzC,CAAC;aAAM,CAAC;YACN,0BAA0B;YAC1B,GAAG,GAAG,kBAA+B,CAAC;QACxC,CAAC;QAED,OAAO;YACL,GAAG;YACH,KAAK,EAAE,MAAM,SAAS,CAAC,SAAS,CAAC;YACjC,KAAK,EAAE,0BAA0B;SAClC,CAAC;IACJ,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,WAAW,CAAC,KAAuC;QACvD,2DAA2D;QAC3D,MAAM,SAAS,GAAG,IAAA,qBAAY,EAAC,KAAK,CAAC,CAAC;QACtC,MAAM,KAAK,GAAG,IAAI,WAAW,EAAE,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QAClD,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC;IAC1B,CAAC;CACF;AAjED,oCAiEC;AAED;;GAEG;AACH,SAAgB,YAAY,CAAC,MAAqB;IAChD,OAAO,IAAI,YAAY,CAAC,MAAM,CAAC,CAAC;AAClC,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,54 @@
+/**
+ * @peac/capture-core
+ *
+ * Runtime-neutral capture pipeline for PEAC interaction evidence.
+ *
+ * This package provides:
+ * - Types for captured actions and spool entries
+ * - Interfaces for storage (SpoolStore) and deduplication (DedupeIndex)
+ * - Hasher for deterministic payload hashing
+ * - Mapper for converting to InteractionEvidence
+ * - CaptureSession for orchestrating the pipeline
+ *
+ * NO FILESYSTEM OPERATIONS - those belong in @peac/capture-node.
+ *
+ * For in-memory test implementations, import from '@peac/capture-core/testkit'.
+ *
+ * @example
+ * ```typescript
+ * import {
+ *   createCaptureSession,
+ *   createHasher,
+ *   toInteractionEvidence,
+ * } from '@peac/capture-core';
+ * import {
+ *   createInMemorySpoolStore,
+ *   createInMemoryDedupeIndex,
+ * } from '@peac/capture-core/testkit';
+ *
+ * const session = createCaptureSession({
+ *   store: createInMemorySpoolStore(),
+ *   dedupe: createInMemoryDedupeIndex(),
+ *   hasher: createHasher(),
+ * });
+ *
+ * const result = await session.capture({
+ *   id: 'action-123',
+ *   kind: 'tool.call',
+ *   platform: 'my-platform',
+ *   started_at: new Date().toISOString(),
+ *   tool_name: 'search',
+ * });
+ *
+ * if (result.success) {
+ *   const evidence = toInteractionEvidence(result.entry);
+ * }
+ * ```
+ */
+export type { CapturedAction, ActionStatus, PolicySnapshot, SpoolEntry, SpoolStore, DedupeIndex, DedupeEntry, Hasher, HasherConfig, CaptureSession, CaptureSessionConfig, CaptureResult, CaptureErrorCode, SpoolAnchor, } from './types';
+export { GENESIS_DIGEST, SIZE_CONSTANTS } from './types';
+export { ActionHasher, createHasher } from './hasher';
+export { toInteractionEvidence, toInteractionEvidenceBatch } from './mapper';
+export type { MapperOptions } from './mapper';
+export { DefaultCaptureSession, createCaptureSession } from './session';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8CG;AAMH,YAAY,EAEV,cAAc,EACd,YAAY,EACZ,cAAc,EACd,UAAU,EAGV,UAAU,EACV,WAAW,EACX,WAAW,EACX,MAAM,EACN,YAAY,EACZ,cAAc,EACd,oBAAoB,EAGpB,aAAa,EACb,gBAAgB,EAGhB,WAAW,GACZ,MAAM,SAAS,CAAC;AAMjB,OAAO,EAAE,cAAc,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAMzD,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAMtD,OAAO,EAAE,qBAAqB,EAAE,0BAA0B,EAAE,MAAM,UAAU,CAAC;AAC7E,YAAY,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAM9C,OAAO,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,MAAM,WAAW,CAAC"}

package/dist/index.js

@@ -0,0 +1,75 @@
+"use strict";
+/**
+ * @peac/capture-core
+ *
+ * Runtime-neutral capture pipeline for PEAC interaction evidence.
+ *
+ * This package provides:
+ * - Types for captured actions and spool entries
+ * - Interfaces for storage (SpoolStore) and deduplication (DedupeIndex)
+ * - Hasher for deterministic payload hashing
+ * - Mapper for converting to InteractionEvidence
+ * - CaptureSession for orchestrating the pipeline
+ *
+ * NO FILESYSTEM OPERATIONS - those belong in @peac/capture-node.
+ *
+ * For in-memory test implementations, import from '@peac/capture-core/testkit'.
+ *
+ * @example
+ * ```typescript
+ * import {
+ *   createCaptureSession,
+ *   createHasher,
+ *   toInteractionEvidence,
+ * } from '@peac/capture-core';
+ * import {
+ *   createInMemorySpoolStore,
+ *   createInMemoryDedupeIndex,
+ * } from '@peac/capture-core/testkit';
+ *
+ * const session = createCaptureSession({
+ *   store: createInMemorySpoolStore(),
+ *   dedupe: createInMemoryDedupeIndex(),
+ *   hasher: createHasher(),
+ * });
+ *
+ * const result = await session.capture({
+ *   id: 'action-123',
+ *   kind: 'tool.call',
+ *   platform: 'my-platform',
+ *   started_at: new Date().toISOString(),
+ *   tool_name: 'search',
+ * });
+ *
+ * if (result.success) {
+ *   const evidence = toInteractionEvidence(result.entry);
+ * }
+ * ```
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createCaptureSession = exports.DefaultCaptureSession = exports.toInteractionEvidenceBatch = exports.toInteractionEvidence = exports.createHasher = exports.ActionHasher = exports.SIZE_CONSTANTS = exports.GENESIS_DIGEST = void 0;
+// =============================================================================
+// Constants (public API)
+// =============================================================================
+var types_1 = require("./types");
+Object.defineProperty(exports, "GENESIS_DIGEST", { enumerable: true, get: function () { return types_1.GENESIS_DIGEST; } });
+Object.defineProperty(exports, "SIZE_CONSTANTS", { enumerable: true, get: function () { return types_1.SIZE_CONSTANTS; } });
+// =============================================================================
+// Hasher (public API)
+// =============================================================================
+var hasher_1 = require("./hasher");
+Object.defineProperty(exports, "ActionHasher", { enumerable: true, get: function () { return hasher_1.ActionHasher; } });
+Object.defineProperty(exports, "createHasher", { enumerable: true, get: function () { return hasher_1.createHasher; } });
+// =============================================================================
+// Mapper (public API)
+// =============================================================================
+var mapper_1 = require("./mapper");
+Object.defineProperty(exports, "toInteractionEvidence", { enumerable: true, get: function () { return mapper_1.toInteractionEvidence; } });
+Object.defineProperty(exports, "toInteractionEvidenceBatch", { enumerable: true, get: function () { return mapper_1.toInteractionEvidenceBatch; } });
+// =============================================================================
+// Session (public API)
+// =============================================================================
+var session_1 = require("./session");
+Object.defineProperty(exports, "DefaultCaptureSession", { enumerable: true, get: function () { return session_1.DefaultCaptureSession; } });
+Object.defineProperty(exports, "createCaptureSession", { enumerable: true, get: function () { return session_1.createCaptureSession; } });
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8CG;;;AA8BH,gFAAgF;AAChF,yBAAyB;AACzB,gFAAgF;AAEhF,iCAAyD;AAAhD,uGAAA,cAAc,OAAA;AAAE,uGAAA,cAAc,OAAA;AAEvC,gFAAgF;AAChF,sBAAsB;AACtB,gFAAgF;AAEhF,mCAAsD;AAA7C,sGAAA,YAAY,OAAA;AAAE,sGAAA,YAAY,OAAA;AAEnC,gFAAgF;AAChF,sBAAsB;AACtB,gFAAgF;AAEhF,mCAA6E;AAApE,+GAAA,qBAAqB,OAAA;AAAE,oHAAA,0BAA0B,OAAA;AAG1D,gFAAgF;AAChF,uBAAuB;AACvB,gFAAgF;AAEhF,qCAAwE;AAA/D,gHAAA,qBAAqB,OAAA;AAAE,+GAAA,oBAAoB,OAAA"}

package/dist/mapper.d.ts

@@ -0,0 +1,35 @@
+/**
+ * @peac/capture-core - Evidence Mapper
+ *
+ * Transforms SpoolEntry into InteractionEvidenceV01.
+ * This is a pure transformation with no side effects.
+ */
+import type { InteractionEvidenceV01 } from '@peac/schema';
+import type { SpoolEntry } from './types';
+/**
+ * Options for mapping SpoolEntry to InteractionEvidence.
+ */
+export interface MapperOptions {
+    /**
+     * Default redaction mode for payloads.
+     * @default 'hash_only'
+     */
+    defaultRedaction?: 'hash_only' | 'redacted' | 'plaintext_allowlisted';
+    /**
+     * Include spool anchor in evidence extensions.
+     * @default false
+     */
+    includeSpoolAnchor?: boolean;
+}
+/**
+ * Convert a SpoolEntry to InteractionEvidenceV01.
+ *
+ * This is a pure, deterministic transformation.
+ * The same SpoolEntry will always produce the same InteractionEvidence.
+ */
+export declare function toInteractionEvidence(entry: SpoolEntry, options?: MapperOptions): InteractionEvidenceV01;
+/**
+ * Batch convert SpoolEntries to InteractionEvidence array.
+ */
+export declare function toInteractionEvidenceBatch(entries: SpoolEntry[], options?: MapperOptions): InteractionEvidenceV01[];
+//# sourceMappingURL=mapper.d.ts.map

package/dist/mapper.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mapper.d.ts","sourceRoot":"","sources":["../src/mapper.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EACV,sBAAsB,EAQvB,MAAM,cAAc,CAAC;AACtB,OAAO,KAAK,EAAE,UAAU,EAAe,MAAM,SAAS,CAAC;AAYvD;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B;;;OAGG;IACH,gBAAgB,CAAC,EAAE,WAAW,GAAG,UAAU,GAAG,uBAAuB,CAAC;IAEtE;;;OAGG;IACH,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B;AAuID;;;;;GAKG;AACH,wBAAgB,qBAAqB,CACnC,KAAK,EAAE,UAAU,EACjB,OAAO,GAAE,aAAkB,GAC1B,sBAAsB,CAsGxB;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,UAAU,EAAE,EACrB,OAAO,GAAE,aAAkB,GAC1B,sBAAsB,EAAE,CAE1B"}