npm - @peac/schema - Versions diffs - 0.11.1 → 0.11.2 - Mend

@peac/schema 0.11.1 → 0.11.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/dist/carrier.d.ts CHANGED Viewed

@@ -33,10 +33,16 @@ export declare const CarrierFormatSchema: z.ZodEnum<{
     embed: "embed";
     reference: "reference";
 }>;
+/**
+ * Validates receipt_url: HTTPS-only, max 2048 chars, no credentials (DD-135).
+ * Validation only (DD-141): no I/O, no fetch. Resolution lives in Layer 4.
+ */
+export declare const ReceiptUrlSchema: z.ZodString;
 /** Schema for PeacEvidenceCarrier */
 export declare const PeacEvidenceCarrierSchema: z.ZodObject<{
     receipt_ref: z.ZodString;
     receipt_jws: z.ZodOptional<z.ZodString>;
+    receipt_url: z.ZodOptional<z.ZodString>;
     policy_binding: z.ZodOptional<z.ZodString>;
     actor_binding: z.ZodOptional<z.ZodString>;
     request_nonce: z.ZodOptional<z.ZodString>;

package/dist/carrier.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"carrier.d.ts","sourceRoot":"","sources":["../src/carrier.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,KAAK,EAEV,WAAW,EACX,uBAAuB,EACvB,mBAAmB,EACnB,UAAU,EACX,MAAM,cAAc,CAAC;AAQtB,kDAAkD;AAClD,eAAO,MAAM,wBAAwB;IACnC,uBAAuB;;IAEvB,0BAA0B;;IAE1B,mDAAmD;;;IAGnD,8BAA8B;;IAE9B,oDAAoD;;;IAGpD,8BAA8B;;CAEtB,CAAC;AAMX,6EAA6E;AAC7E,eAAO,MAAM,gBAAgB,aAEiD,CAAC;AAE/E,0EAA0E;AAC1E,eAAO,MAAM,gBAAgB,aAK1B,CAAC;AAEJ,4BAA4B;AAC5B,eAAO,MAAM,mBAAmB;;;EAAiC,CAAC;AAElE,qCAAqC;AACrC,eAAO,MAAM,yBAAyB~~;;;;;;;;;;iBAUpC~~,CAAC;AAEH,6BAA6B;AAC7B,eAAO,MAAM,iBAAiB;;;;;;;;iBAK5B,CAAC;AAMH;;;;;;GAMG;AACH,wBAAsB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAaxE;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,mBAAmB,EAC5B,IAAI,EAAE,WAAW,GAChB,uBAAuB,~~CA8CzB~~;AAED;;;;;;;;;GASG;AACH,wBAAsB,2BAA2B,CAC/C,OAAO,EAAE,mBAAmB,GAC3B,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CASxB;AAMD,YAAY,EACV,aAAa,EACb,WAAW,EACX,uBAAuB,EACvB,mBAAmB,EACnB,UAAU,EACV,cAAc,GACf,MAAM,cAAc,CAAC"}
1	+ {"version":3,"file":"carrier.d.ts","sourceRoot":"","sources":["../src/carrier.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AACH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,KAAK,EAEV,WAAW,EACX,uBAAuB,EACvB,mBAAmB,EACnB,UAAU,EACX,MAAM,cAAc,CAAC;AAQtB,kDAAkD;AAClD,eAAO,MAAM,wBAAwB;IACnC,uBAAuB;;IAEvB,0BAA0B;;IAE1B,mDAAmD;;;IAGnD,8BAA8B;;IAE9B,oDAAoD;;;IAGpD,8BAA8B;;CAEtB,CAAC;AAMX,6EAA6E;AAC7E,eAAO,MAAM,gBAAgB,aAEiD,CAAC;AAE/E,0EAA0E;AAC1E,eAAO,MAAM,gBAAgB,aAK1B,CAAC;AAEJ,4BAA4B;AAC5B,eAAO,MAAM,mBAAmB;;;EAAiC,CAAC;AAElE;;;GAGG;AACH,eAAO,MAAM,gBAAgB,aAmB1B,CAAC;AAEJ,qCAAqC;AACrC,eAAO,MAAM,yBAAyB;;;;;;;;;;;iBAWpC,CAAC;AAEH,6BAA6B;AAC7B,eAAO,MAAM,iBAAiB;;;;;;;;iBAK5B,CAAC;AAMH;;;;;;GAMG;AACH,wBAAsB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAaxE;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,mBAAmB,EAC5B,IAAI,EAAE,WAAW,GAChB,uBAAuB,CAwDzB;AAED;;;;;;;;;GASG;AACH,wBAAsB,2BAA2B,CAC/C,OAAO,EAAE,mBAAmB,GAC3B,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CASxB;AAMD,YAAY,EACV,aAAa,EACb,WAAW,EACX,uBAAuB,EACvB,mBAAmB,EACnB,UAAU,EACV,cAAc,GACf,MAAM,cAAc,CAAC"}

package/dist/index.cjs CHANGED Viewed

@@ -1872,7 +1872,8 @@ var WELL_KNOWN_KINDS = [
   "http.request",
   "fs.read",
   "fs.write",
-  "message"
+  "message",
+  "inference.chat_completion"
 ];
 var RESERVED_KIND_PREFIXES = ["peac.", "org.peacprotocol."];
 var INTERACTION_LIMITS = {
@@ -2672,9 +2673,25 @@ var CompactJwsSchema = zod.z.string().regex(
   "receipt_jws must be a valid compact JWS (header.payload.signature)"
 );
 var CarrierFormatSchema = zod.z.enum(["embed", "reference"]);
+var ReceiptUrlSchema = zod.z.string().url().max(2048).refine((url) => url.startsWith("https://"), {
+  message: "receipt_url must use HTTPS scheme"
+}).refine(
+  (url) => {
+    try {
+      const parsed = new URL(url);
+      return !parsed.username && !parsed.password;
+    } catch {
+      return false;
+    }
+  },
+  {
+    message: "receipt_url must not contain credentials"
+  }
+);
 var PeacEvidenceCarrierSchema = zod.z.object({
   receipt_ref: ReceiptRefSchema2,
   receipt_jws: CompactJwsSchema.optional(),
+  receipt_url: ReceiptUrlSchema.optional(),
   policy_binding: zod.z.string().max(KERNEL_CONSTRAINTS.MAX_STRING_LENGTH).optional(),
   actor_binding: zod.z.string().max(KERNEL_CONSTRAINTS.MAX_STRING_LENGTH).optional(),
   request_nonce: zod.z.string().max(KERNEL_CONSTRAINTS.MAX_STRING_LENGTH).optional(),
@@ -2719,6 +2736,14 @@ function validateCarrierConstraints(carrier, meta) {
       `carrier size ${sizeBytes} bytes exceeds transport limit ${meta.max_size} bytes for ${meta.transport}`
     );
   }
+  if (carrier.receipt_url !== void 0) {
+    const urlResult = ReceiptUrlSchema.safeParse(carrier.receipt_url);
+    if (!urlResult.success) {
+      for (const issue of urlResult.error.issues) {
+        violations.push(`invalid receipt_url: ${issue.message}`);
+      }
+    }
+  }
   const stringFields = [
     ["policy_binding", carrier.policy_binding],
     ["actor_binding", carrier.actor_binding],
@@ -2936,6 +2961,7 @@ exports.RESULT_STATUSES = RESULT_STATUSES;
 exports.ReceiptClaims = ReceiptClaims;
 exports.ReceiptClaimsSchema = ReceiptClaimsSchema;
 exports.ReceiptRefSchema = ReceiptRefSchema2;
+exports.ReceiptUrlSchema = ReceiptUrlSchema;
 exports.RefsSchema = RefsSchema;
 exports.RemediationSchema = RemediationSchema;
 exports.RemediationTypeSchema = RemediationTypeSchema;