npm - @private.me/xbind - Versions diffs - 1.2.0 - Mend

@private.me/xbind 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (295) hide show

package/AGENTS.md +778 -0
package/LICENSE.md +27 -0
package/README.md +400 -0
package/dist-standalone/_deps/crypto/base64.d.ts +29 -0
package/dist-standalone/_deps/crypto/base64.js +97 -0
package/dist-standalone/_deps/crypto/cjs/base64.js +103 -0
package/dist-standalone/_deps/crypto/cjs/errors.js +119 -0
package/dist-standalone/_deps/crypto/cjs/hmac.js +71 -0
package/dist-standalone/_deps/crypto/cjs/index.js +86 -0
package/dist-standalone/_deps/crypto/cjs/padding.js +57 -0
package/dist-standalone/_deps/crypto/cjs/share-header.js +68 -0
package/dist-standalone/_deps/crypto/cjs/shares.js +152 -0
package/dist-standalone/_deps/crypto/cjs/tlv.js +199 -0
package/dist-standalone/_deps/crypto/cjs/uuid.js +61 -0
package/dist-standalone/_deps/crypto/cjs/verify.js +24 -0
package/dist-standalone/_deps/crypto/cjs/xorida.js +221 -0
package/dist-standalone/_deps/crypto/errors.d.ts +51 -0
package/dist-standalone/_deps/crypto/errors.js +109 -0
package/dist-standalone/_deps/crypto/hmac.d.ts +39 -0
package/dist-standalone/_deps/crypto/hmac.js +66 -0
package/dist-standalone/_deps/crypto/index.d.ts +20 -0
package/dist-standalone/_deps/crypto/index.js +45 -0
package/dist-standalone/_deps/crypto/padding.d.ts +19 -0
package/dist-standalone/_deps/crypto/padding.js +53 -0
package/dist-standalone/_deps/crypto/share-header.d.ts +44 -0
package/dist-standalone/_deps/crypto/share-header.js +63 -0
package/dist-standalone/_deps/crypto/shares.d.ts +27 -0
package/dist-standalone/_deps/crypto/shares.js +148 -0
package/dist-standalone/_deps/crypto/tlv.d.ts +26 -0
package/dist-standalone/_deps/crypto/tlv.js +195 -0
package/dist-standalone/_deps/crypto/uuid.d.ts +22 -0
package/dist-standalone/_deps/crypto/uuid.js +56 -0
package/dist-standalone/_deps/crypto/verify.d.ts +15 -0
package/dist-standalone/_deps/crypto/verify.js +15 -0
package/dist-standalone/_deps/crypto/xorida.d.ts +44 -0
package/dist-standalone/_deps/crypto/xorida.js +215 -0
package/dist-standalone/_deps/mldsa-wasm/LICENSE +24 -0
package/dist-standalone/_deps/mldsa-wasm/dist/mldsa.js +1920 -0
package/dist-standalone/_deps/mldsa-wasm/package.json +46 -0
package/dist-standalone/_deps/mldsa-wasm/types/mldsa.d.ts +30 -0
package/dist-standalone/_deps/shared/cjs/errors.js +582 -0
package/dist-standalone/_deps/shared/cjs/index.js +492 -0
package/dist-standalone/_deps/shared/cjs/package.json +1 -0
package/dist-standalone/_deps/shared/cjs/types.js +403 -0
package/dist-standalone/_deps/shared/errors.d.ts +48 -0
package/dist-standalone/_deps/shared/errors.d.ts.map +1 -0
package/dist-standalone/_deps/shared/errors.js +192 -0
package/dist-standalone/_deps/shared/errors.js.map +1 -0
package/dist-standalone/_deps/shared/index.d.ts +4 -0
package/dist-standalone/_deps/shared/index.d.ts.map +1 -0
package/dist-standalone/_deps/shared/index.js +78 -0
package/dist-standalone/_deps/shared/index.js.map +1 -0
package/dist-standalone/_deps/shared/types.d.ts +1097 -0
package/dist-standalone/_deps/shared/types.d.ts.map +1 -0
package/dist-standalone/_deps/shared/types.js +89 -0
package/dist-standalone/_deps/shared/types.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.d.ts +115 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.js +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/errors.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.d.ts +13 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.js +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/index.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/package.json +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.d.ts +39 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.js +83 -0
package/dist-standalone/_deps/ux-helpers/cjs/pagination.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.d.ts +99 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.js +143 -0
package/dist-standalone/_deps/ux-helpers/cjs/progress.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.d.ts +32 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.js +119 -0
package/dist-standalone/_deps/ux-helpers/cjs/search.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.d.ts +109 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.js +8 -0
package/dist-standalone/_deps/ux-helpers/cjs/types.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/errors.d.ts +115 -0
package/dist-standalone/_deps/ux-helpers/errors.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/errors.js +253 -0
package/dist-standalone/_deps/ux-helpers/errors.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/index.d.ts +13 -0
package/dist-standalone/_deps/ux-helpers/index.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/index.js +16 -0
package/dist-standalone/_deps/ux-helpers/index.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/pagination.d.ts +39 -0
package/dist-standalone/_deps/ux-helpers/pagination.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/pagination.js +79 -0
package/dist-standalone/_deps/ux-helpers/pagination.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/progress.d.ts +99 -0
package/dist-standalone/_deps/ux-helpers/progress.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/progress.js +138 -0
package/dist-standalone/_deps/ux-helpers/progress.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/search.d.ts +32 -0
package/dist-standalone/_deps/ux-helpers/search.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/search.js +116 -0
package/dist-standalone/_deps/ux-helpers/search.js.map +1 -0
package/dist-standalone/_deps/ux-helpers/types.d.ts +109 -0
package/dist-standalone/_deps/ux-helpers/types.d.ts.map +1 -0
package/dist-standalone/_deps/ux-helpers/types.js +7 -0
package/dist-standalone/_deps/ux-helpers/types.js.map +1 -0
package/dist-standalone/_deps/xchange/auto-accept.d.ts +127 -0
package/dist-standalone/_deps/xchange/auto-accept.js +1 -0
package/dist-standalone/_deps/xchange/cjs/auto-accept.js +1 -0
package/dist-standalone/_deps/xchange/cjs/errors.js +1 -0
package/dist-standalone/_deps/xchange/cjs/index.js +1 -0
package/dist-standalone/_deps/xchange/cjs/invite-client.js +1 -0
package/dist-standalone/_deps/xchange/cjs/lazy-init.js +1 -0
package/dist-standalone/_deps/xchange/cjs/package.json +1 -0
package/dist-standalone/_deps/xchange/cjs/trust-integration.js +1 -0
package/dist-standalone/_deps/xchange/cjs/xchange.js +1 -0
package/dist-standalone/_deps/xchange/errors.d.ts +69 -0
package/dist-standalone/_deps/xchange/errors.js +1 -0
package/dist-standalone/_deps/xchange/index.d.ts +15 -0
package/dist-standalone/_deps/xchange/index.js +1 -0
package/dist-standalone/_deps/xchange/invite-client.d.ts +178 -0
package/dist-standalone/_deps/xchange/invite-client.js +1 -0
package/dist-standalone/_deps/xchange/lazy-init.d.ts +176 -0
package/dist-standalone/_deps/xchange/lazy-init.js +1 -0
package/dist-standalone/_deps/xchange/trust-integration.d.ts +102 -0
package/dist-standalone/_deps/xchange/trust-integration.js +1 -0
package/dist-standalone/_deps/xchange/xchange.d.ts +60 -0
package/dist-standalone/_deps/xchange/xchange.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/discovery.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/errors.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/index.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/package.json +1 -0
package/dist-standalone/_deps/xregistry/cjs/registry.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/schema.js +1 -0
package/dist-standalone/_deps/xregistry/cjs/types.js +1 -0
package/dist-standalone/_deps/xregistry/discovery.d.ts +126 -0
package/dist-standalone/_deps/xregistry/discovery.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/discovery.js +1 -0
package/dist-standalone/_deps/xregistry/discovery.js.map +1 -0
package/dist-standalone/_deps/xregistry/errors.d.ts +41 -0
package/dist-standalone/_deps/xregistry/errors.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/errors.js +1 -0
package/dist-standalone/_deps/xregistry/errors.js.map +1 -0
package/dist-standalone/_deps/xregistry/index.d.ts +8 -0
package/dist-standalone/_deps/xregistry/index.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/index.js +1 -0
package/dist-standalone/_deps/xregistry/index.js.map +1 -0
package/dist-standalone/_deps/xregistry/registry.d.ts +85 -0
package/dist-standalone/_deps/xregistry/registry.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/registry.js +1 -0
package/dist-standalone/_deps/xregistry/registry.js.map +1 -0
package/dist-standalone/_deps/xregistry/schema.d.ts +81 -0
package/dist-standalone/_deps/xregistry/schema.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/schema.js +1 -0
package/dist-standalone/_deps/xregistry/schema.js.map +1 -0
package/dist-standalone/_deps/xregistry/types.d.ts +95 -0
package/dist-standalone/_deps/xregistry/types.d.ts.map +1 -0
package/dist-standalone/_deps/xregistry/types.js +1 -0
package/dist-standalone/_deps/xregistry/types.js.map +1 -0
package/dist-standalone/agent-call.d.ts +286 -0
package/dist-standalone/agent-call.js +642 -0
package/dist-standalone/agent-sdk.d.ts +207 -0
package/dist-standalone/agent-sdk.js +328 -0
package/dist-standalone/agent.d.ts +670 -0
package/dist-standalone/agent.js +1529 -0
package/dist-standalone/approval.d.ts +145 -0
package/dist-standalone/approval.js +193 -0
package/dist-standalone/auth.d.ts +75 -0
package/dist-standalone/auth.js +219 -0
package/dist-standalone/auto-accept.d.ts +102 -0
package/dist-standalone/auto-accept.js +229 -0
package/dist-standalone/backup-config.d.ts +150 -0
package/dist-standalone/backup-config.js +201 -0
package/dist-standalone/checkpoint.d.ts +125 -0
package/dist-standalone/checkpoint.js +186 -0
package/dist-standalone/cjs/agent-call.js +651 -0
package/dist-standalone/cjs/agent-sdk.js +332 -0
package/dist-standalone/cjs/agent.js +1566 -0
package/dist-standalone/cjs/approval.js +199 -0
package/dist-standalone/cjs/auth.js +225 -0
package/dist-standalone/cjs/auto-accept.js +233 -0
package/dist-standalone/cjs/backup-config.js +207 -0
package/dist-standalone/cjs/checkpoint.js +193 -0
package/dist-standalone/cjs/cli/init.js +487 -0
package/dist-standalone/cjs/connect.js +312 -0
package/dist-standalone/cjs/did-document.js +101 -0
package/dist-standalone/cjs/did-privateme.js +130 -0
package/dist-standalone/cjs/did-web.js +201 -0
package/dist-standalone/cjs/discovery.js +462 -0
package/dist-standalone/cjs/dual-mode.js +251 -0
package/dist-standalone/cjs/email-templates.js +313 -0
package/dist-standalone/cjs/email-transport.js +239 -0
package/dist-standalone/cjs/envelope.js +510 -0
package/dist-standalone/cjs/errors.js +562 -0
package/dist-standalone/cjs/gateway-state.js +55 -0
package/dist-standalone/cjs/gateway-transport.js +120 -0
package/dist-standalone/cjs/guardrails.js +223 -0
package/dist-standalone/cjs/http-compat.js +272 -0
package/dist-standalone/cjs/identity.js +541 -0
package/dist-standalone/cjs/index.js +224 -0
package/dist-standalone/cjs/invitation.js +421 -0
package/dist-standalone/cjs/invite.js +328 -0
package/dist-standalone/cjs/key-agreement.js +246 -0
package/dist-standalone/cjs/lazy-init.js +300 -0
package/dist-standalone/cjs/mdns-discovery.js +202 -0
package/dist-standalone/cjs/nonce-store.js +66 -0
package/dist-standalone/cjs/package.json +3 -0
package/dist-standalone/cjs/pairing-manager.js +223 -0
package/dist-standalone/cjs/policy.js +320 -0
package/dist-standalone/cjs/redis-nonce-store.js +76 -0
package/dist-standalone/cjs/registry-middleware.js +50 -0
package/dist-standalone/cjs/retry-transport.js +102 -0
package/dist-standalone/cjs/security-policy.js +204 -0
package/dist-standalone/cjs/split-channel.js +177 -0
package/dist-standalone/cjs/subscription-proof.js +230 -0
package/dist-standalone/cjs/succession.js +148 -0
package/dist-standalone/cjs/transport.js +63 -0
package/dist-standalone/cjs/trust-registry.js +742 -0
package/dist-standalone/cjs/verify.js +25 -0
package/dist-standalone/cjs/xfetch.js +252 -0
package/dist-standalone/cli/init.d.ts +63 -0
package/dist-standalone/cli/init.js +450 -0
package/dist-standalone/connect.d.ts +143 -0
package/dist-standalone/connect.js +274 -0
package/dist-standalone/did-document.d.ts +65 -0
package/dist-standalone/did-document.js +96 -0
package/dist-standalone/did-privateme.d.ts +70 -0
package/dist-standalone/did-privateme.js +121 -0
package/dist-standalone/did-web.d.ts +73 -0
package/dist-standalone/did-web.js +196 -0
package/dist-standalone/discovery.d.ts +176 -0
package/dist-standalone/discovery.js +458 -0
package/dist-standalone/dual-mode.d.ts +145 -0
package/dist-standalone/dual-mode.js +247 -0
package/dist-standalone/email-templates.d.ts +41 -0
package/dist-standalone/email-templates.js +309 -0
package/dist-standalone/email-transport.d.ts +139 -0
package/dist-standalone/email-transport.js +232 -0
package/dist-standalone/envelope.d.ts +288 -0
package/dist-standalone/envelope.js +497 -0
package/dist-standalone/errors.d.ts +74 -0
package/dist-standalone/errors.js +548 -0
package/dist-standalone/gateway-state.d.ts +32 -0
package/dist-standalone/gateway-state.js +51 -0
package/dist-standalone/gateway-transport.d.ts +59 -0
package/dist-standalone/gateway-transport.js +116 -0
package/dist-standalone/guardrails.d.ts +136 -0
package/dist-standalone/guardrails.js +216 -0
package/dist-standalone/http-compat.d.ts +150 -0
package/dist-standalone/http-compat.js +267 -0
package/dist-standalone/identity.d.ts +176 -0
package/dist-standalone/identity.js +516 -0
package/dist-standalone/index.d.ts +83 -0
package/dist-standalone/index.js +51 -0
package/dist-standalone/invitation.d.ts +211 -0
package/dist-standalone/invitation.js +415 -0
package/dist-standalone/invite.d.ts +192 -0
package/dist-standalone/invite.js +324 -0
package/dist-standalone/key-agreement.d.ts +122 -0
package/dist-standalone/key-agreement.js +236 -0
package/dist-standalone/lazy-init.d.ts +167 -0
package/dist-standalone/lazy-init.js +295 -0
package/dist-standalone/mdns-discovery.d.ts +117 -0
package/dist-standalone/mdns-discovery.js +195 -0
package/dist-standalone/nonce-store.d.ts +39 -0
package/dist-standalone/nonce-store.js +62 -0
package/dist-standalone/package.json +11 -0
package/dist-standalone/pairing-manager.d.ts +147 -0
package/dist-standalone/pairing-manager.js +219 -0
package/dist-standalone/policy.d.ts +150 -0
package/dist-standalone/policy.js +315 -0
package/dist-standalone/redis-nonce-store.d.ts +93 -0
package/dist-standalone/redis-nonce-store.js +72 -0
package/dist-standalone/registry-middleware.d.ts +38 -0
package/dist-standalone/registry-middleware.js +47 -0
package/dist-standalone/retry-transport.d.ts +76 -0
package/dist-standalone/retry-transport.js +98 -0
package/dist-standalone/security-policy.d.ts +146 -0
package/dist-standalone/security-policy.js +198 -0
package/dist-standalone/split-channel.d.ts +69 -0
package/dist-standalone/split-channel.js +171 -0
package/dist-standalone/subscription-proof.d.ts +103 -0
package/dist-standalone/subscription-proof.js +224 -0
package/dist-standalone/succession.d.ts +57 -0
package/dist-standalone/succession.js +142 -0
package/dist-standalone/transport.d.ts +50 -0
package/dist-standalone/transport.js +59 -0
package/dist-standalone/trust-registry.d.ts +286 -0
package/dist-standalone/trust-registry.js +702 -0
package/dist-standalone/verify.d.ts +16 -0
package/dist-standalone/verify.js +16 -0
package/dist-standalone/xfetch.d.ts +129 -0
package/dist-standalone/xfetch.js +247 -0
package/llms.txt +800 -0
package/package.json +79 -0
package/share1.dat +0 -0

package/dist-standalone/cjs/retry-transport.js ADDED Viewed

@@ -0,0 +1,102 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RetryTransportAdapter = void 0;
+/* ── Implementation ── */
+/**
+ * Decorator that adds exponential backoff retry logic to any transport adapter.
+ *
+ * Retry delays follow exponential backoff with jitter:
+ * - Formula: 2^attempt * baseDelay + jitter
+ * - Jitter: Math.random() * maxJitter * 2 - maxJitter
+ * - Default delays: 1s, 2s, 4s (with ±200ms jitter)
+ *
+ * Use case: Push notification delivery failures requiring automatic retry.
+ *
+ * @example
+ * ```typescript
+ * const transport = new RetryTransportAdapter(baseTransport, {
+ *   maxRetries: 3,
+ *   baseDelayMs: 1000,
+ *   maxJitterMs: 200
+ * });
+ * ```
+ */
+class RetryTransportAdapter {
+    inner;
+    maxRetries;
+    baseDelayMs;
+    maxJitterMs;
+    /**
+     * Create a new RetryTransportAdapter wrapping an existing transport.
+     *
+     * @param inner - The transport adapter to wrap with retry logic
+     * @param options - Retry configuration options
+     */
+    constructor(inner, options = {}) {
+        this.inner = inner;
+        this.maxRetries = options.maxRetries ?? 3;
+        this.baseDelayMs = options.baseDelayMs ?? 1000;
+        this.maxJitterMs = options.maxJitterMs ?? 200;
+    }
+    /**
+     * Send an envelope with exponential backoff retry logic.
+     *
+     * Retries on all error types (SEND_FAILED, NETWORK_ERROR, RECIPIENT_UNREACHABLE, TIMEOUT).
+     * Throws error after all retries are exhausted.
+     *
+     * @param envelope - The envelope to send
+     * @param recipientDid - The recipient's DID
+     * @returns Result with void on success, or TransportError on failure
+     * @throws Error if all retry attempts are exhausted
+     */
+    async send(envelope, recipientDid) {
+        let lastError;
+        for (let attempt = 0; attempt <= this.maxRetries; attempt++) {
+            const result = await this.inner.send(envelope, recipientDid);
+            // Success - return immediately
+            if (result.ok) {
+                return result;
+            }
+            // Store error for final throw
+            lastError = result.error;
+            // Don't delay after final attempt
+            if (attempt < this.maxRetries) {
+                // Exponential backoff: 2^attempt * baseDelay + jitter
+                const delay = Math.pow(2, attempt) * this.baseDelayMs;
+                // SAFETY: Using crypto.getRandomValues for OWASP-compliant secure random jitter
+                const jitterArray = new Uint32Array(1);
+                crypto.getRandomValues(jitterArray);
+                const jitter = (jitterArray[0] / 0xffffffff) * this.maxJitterMs * 2 -
+                    this.maxJitterMs;
+                await this.sleep(delay + jitter);
+            }
+        }
+        // All retries exhausted - throw error with clear message
+        throw new Error(`Failed after ${this.maxRetries} retries: ${lastError ?? 'unknown error'}`);
+    }
+    /**
+     * Register a handler for incoming envelopes.
+     * Delegates directly to the inner transport.
+     *
+     * @param handler - The envelope handler function
+     */
+    onReceive(handler) {
+        this.inner.onReceive(handler);
+    }
+    /**
+     * Shut down the transport.
+     * Delegates directly to the inner transport.
+     */
+    dispose() {
+        this.inner.dispose();
+    }
+    /**
+     * Sleep for a specified duration.
+     *
+     * @param ms - Duration in milliseconds
+     */
+    sleep(ms) {
+        return new Promise((resolve) => setTimeout(resolve, ms));
+    }
+}
+exports.RetryTransportAdapter = RetryTransportAdapter;

package/dist-standalone/cjs/security-policy.js ADDED Viewed

@@ -0,0 +1,204 @@
+"use strict";
+/**
+ * Security policy interface for automatic risk-based Xorida activation.
+ *
+ * Determines when to apply information-theoretic security (XorIDA split-channel)
+ * vs standard encrypted transport based on action semantics and parameters.
+ *
+ * Design principle: Security should be invisible to users. The policy classifies
+ * risk automatically so developers don't need to understand threshold cryptography.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DefaultSecurityPolicy = void 0;
+exports.describeSecurityMode = describeSecurityMode;
+exports.describeSecurityModeStructured = describeSecurityModeStructured;
+/**
+ * Default security policy for basic XBind.
+ *
+ * Rules:
+ * - Transfers over $100,000: High security (3 shares, 2-of-3 threshold)
+ * - Cross-entity communication: High security (3 shares, 2-of-3 threshold)
+ * - Explicit 'high' override: High security (3 shares, 2-of-3 threshold)
+ * - Explicit 'critical' override: Critical security (5 shares, 3-of-5 threshold)
+ * - Everything else: Standard encrypted transport (V3 hybrid PQ)
+ *
+ * Enterprise and Government variants extend this with custom rules.
+ */
+class DefaultSecurityPolicy {
+    options;
+    /**
+     * Create a default security policy.
+     *
+     * @param options - Optional configuration
+     * @param options.highValueThreshold - Amount threshold for high security (default: 100000)
+     * @param options.enableXchange - Allow Xchange mode for performance (default: false)
+     */
+    constructor(options = {}) {
+        this.options = options;
+    }
+    classify(context) {
+        const { action, params, securityOverride } = context;
+        const threshold = this.options.highValueThreshold ?? 100_000;
+        // Explicit override: critical
+        if (securityOverride === 'critical') {
+            return {
+                mode: { type: 'split', shares: 5, threshold: 3 },
+                reason: 'User requested critical security level (5 shares, 3-of-5 threshold)',
+                wasOverridden: true,
+            };
+        }
+        // Explicit override: high
+        if (securityOverride === 'high') {
+            return {
+                mode: { type: 'split', shares: 3, threshold: 2 },
+                reason: 'User requested high security level (3 shares, 2-of-3 threshold)',
+                wasOverridden: true,
+            };
+        }
+        // Explicit override: standard
+        if (securityOverride === 'standard') {
+            return {
+                mode: { type: 'standard' },
+                reason: 'User requested standard security level (encrypted transport)',
+                wasOverridden: true,
+            };
+        }
+        // Auto-detection: High-value transfer
+        if ((action === 'transfer' || action === 'execute') &&
+            typeof params.amount === 'number' &&
+            params.amount > threshold) {
+            return {
+                mode: { type: 'split', shares: 3, threshold: 2 },
+                reason: `High-value transfer ($${params.amount.toLocaleString()}) requires multi-party approval (2 of 3)`,
+                wasOverridden: false,
+            };
+        }
+        // Auto-detection: Cross-entity communication
+        if (params.crossEntity === true) {
+            return {
+                mode: { type: 'split', shares: 3, threshold: 2 },
+                reason: 'Cross-organization communication requires multi-party approval (2 of 3)',
+                wasOverridden: false,
+            };
+        }
+        // Auto-detection: Sensitive scopes
+        if (context.scope.includes('admin') ||
+            context.scope.includes('custody') ||
+            context.scope.includes('settlement')) {
+            return {
+                mode: { type: 'split', shares: 3, threshold: 2 },
+                reason: `Sensitive scope "${context.scope}" requires multi-party approval (2 of 3)`,
+                wasOverridden: false,
+            };
+        }
+        // Xchange mode: opt-in performance mode (if enabled)
+        if (this.options.enableXchange && params.xchange === true) {
+            return {
+                mode: { type: 'xchange' },
+                reason: 'Xchange mode enabled for performance (~180x faster)',
+                wasOverridden: false,
+            };
+        }
+        // Default: Standard encrypted transport
+        return {
+            mode: { type: 'standard' },
+            reason: 'Standard encrypted transport (hybrid post-quantum)',
+            wasOverridden: false,
+        };
+    }
+}
+exports.DefaultSecurityPolicy = DefaultSecurityPolicy;
+/**
+ * Get a human-readable security mode description.
+ *
+ * Used for logging and user feedback.
+ *
+ * @param mode - Security mode
+ * @returns User-friendly description
+ *
+ * @deprecated Use describeSecurityModeStructured() for new code. This function remains for backward compatibility.
+ */
+function describeSecurityMode(mode) {
+    switch (mode.type) {
+        case 'standard':
+            return 'Standard (encrypted)';
+        case 'split':
+            return `Multi-party approval (${mode.threshold} of ${mode.shares})`;
+        case 'xchange':
+            return 'Xchange (fast mode)';
+    }
+}
+/**
+ * Get a structured security mode description with multiple formats.
+ *
+ * Returns an object with the security classification and formatted descriptions
+ * optimized for different use cases (display, logging, APIs, docs).
+ *
+ * @param mode - Security mode
+ * @returns Security mode description with formats
+ *
+ * @example
+ * ```typescript
+ * const mode: SecurityMode = { type: 'split', shares: 3, threshold: 2 };
+ * const description = describeSecurityModeStructured(mode);
+ *
+ * console.log(description.formats.singleline);
+ * // "high | split | 2-of-3"
+ *
+ * console.log(description.formats.multiline);
+ * // "Security Level: High
+ * //  Mode: Split-channel (XorIDA)
+ * //  Shares: 3 total, 2 required"
+ *
+ * console.log(description.shares);
+ * // { total: 3, threshold: 2 }
+ * ```
+ */
+function describeSecurityModeStructured(mode) {
+    let level;
+    let multiline;
+    let singleline;
+    let markdown;
+    let shares;
+    switch (mode.type) {
+        case 'standard':
+            level = 'standard';
+            multiline = 'Security Level: Standard\nMode: Encrypted transport (hybrid post-quantum)';
+            singleline = 'standard | encrypted';
+            markdown = '**Security Level:** Standard\n\n**Mode:** Encrypted transport (hybrid post-quantum)';
+            break;
+        case 'split':
+            // Classify split mode as high or critical based on threshold
+            level = mode.shares >= 5 ? 'critical' : 'high';
+            shares = { total: mode.shares, threshold: mode.threshold };
+            multiline = `Security Level: ${level === 'critical' ? 'Critical' : 'High'}\nMode: Split-channel (XorIDA)\nShares: ${mode.shares} total, ${mode.threshold} required`;
+            singleline = `${level} | split | ${mode.threshold}-of-${mode.shares}`;
+            markdown = `**Security Level:** ${level === 'critical' ? 'Critical' : 'High'}\n\n**Mode:** Split-channel (XorIDA)\n\n**Shares:** ${mode.shares} total, ${mode.threshold} required`;
+            break;
+        case 'xchange':
+            level = 'performance';
+            multiline = 'Security Level: Performance\nMode: Xchange (single IT layer, ~180x faster)';
+            singleline = 'performance | xchange';
+            markdown = '**Security Level:** Performance\n\n**Mode:** Xchange (single IT layer, ~180x faster)';
+            break;
+    }
+    const jsonObj = {
+        type: mode.type,
+        level,
+    };
+    if (shares) {
+        jsonObj.shares = shares;
+    }
+    const json = JSON.stringify(jsonObj);
+    return {
+        type: mode.type,
+        level,
+        shares,
+        formats: {
+            multiline,
+            singleline,
+            json,
+            markdown,
+        },
+    };
+}

package/dist-standalone/cjs/split-channel.js ADDED Viewed

@@ -0,0 +1,177 @@
+"use strict";
+/**
+ * XorIDA split-channel bridge for @private.me/xbind.
+ *
+ * Bridges @private.me/crypto threshold sharing with the agent-sdk
+ * TransportEnvelope format. Splits plaintext into n shares with HMAC
+ * integrity, each share wrapped in its own envelope for independent routing.
+ *
+ * Pipeline:
+ *   split:  pad -> HMAC -> XorIDA split -> share Uint8Arrays with metadata
+ *   reconstruct: collect k shares -> XorIDA reconstruct -> HMAC verify -> unpad
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DEFAULT_SPLIT_CONFIG = void 0;
+exports.splitForChannel = splitForChannel;
+exports.splitForChannelWithGroupId = splitForChannelWithGroupId;
+exports.reconstructFromChannel = reconstructFromChannel;
+const shared_1 = require("../_deps/shared/index.js");
+const crypto_1 = require("../_deps/crypto/index.js");
+/** Default split-channel configuration: 3 shares, threshold 2. */
+exports.DEFAULT_SPLIT_CONFIG = {
+    totalShares: 3,
+    threshold: 2,
+};
+/* ── Split ── */
+/**
+ * Split plaintext into n shares via XorIDA with HMAC integrity.
+ *
+ * Pipeline: pad(PKCS#7) -> HMAC(padded) -> XorIDA split -> ChannelShare[]
+ *
+ * @param plaintext - Raw plaintext bytes to split
+ * @param config - Split configuration (totalShares, threshold)
+ * @returns Array of n ChannelShare objects ready for envelope wrapping
+ */
+async function splitForChannel(plaintext, config = exports.DEFAULT_SPLIT_CONFIG) {
+    const { totalShares: n, threshold: k } = config;
+    if (n < 2 || k < 2 || k > n) {
+        return (0, shared_1.err)('SPLIT_FAILED:INVALID_PARAMS');
+    }
+    const groupId = (0, crypto_1.generateUUID)();
+    return splitForChannelWithGroupId(plaintext, config, groupId);
+}
+/**
+ * Split plaintext with a specific groupId (for testability).
+ *
+ * @param plaintext - Raw plaintext bytes
+ * @param config - Split configuration
+ * @param groupId - UUID to use for the share group
+ * @returns Array of ChannelShare objects
+ */
+async function splitForChannelWithGroupId(plaintext, config, groupId) {
+    const { totalShares: n, threshold: k } = config;
+    if (n < 2 || k < 2 || k > n) {
+        return (0, shared_1.err)('SPLIT_FAILED:INVALID_PARAMS');
+    }
+    const p = (0, crypto_1.nextOddPrime)(n);
+    const blockSize = p - 1;
+    const padded = (0, crypto_1.pkcs7Pad)(plaintext, blockSize);
+    const { key: hmacKey, signature: hmacSig } = await (0, crypto_1.generateHMAC)(padded);
+    let shareArrays;
+    try {
+        shareArrays = (0, crypto_1.splitXorIDA)(padded, n, k);
+    }
+    catch {
+        return (0, shared_1.err)('SPLIT_FAILED');
+    }
+    const hmacKeyB64 = (0, crypto_1.toBase64)(hmacKey);
+    const hmacSigB64 = (0, crypto_1.toBase64)(hmacSig);
+    const shares = shareArrays.map((data, index) => ({
+        data: (0, crypto_1.formatShareHeader)((0, crypto_1.toBase64)(data)),
+        index,
+        total: n,
+        threshold: k,
+        groupId,
+        hmacKey: hmacKeyB64,
+        hmacSig: hmacSigB64,
+    }));
+    return (0, shared_1.ok)(shares);
+}
+/* ── Reconstruct ── */
+/**
+ * Reconstruct plaintext from k-of-n shares.
+ *
+ * Pipeline: validate -> XorIDA reconstruct -> HMAC verify -> unpad -> plaintext
+ * HMAC verification happens BEFORE the data is trusted.
+ *
+ * @param shares - Array of at least k ChannelShare objects
+ * @returns Reconstructed plaintext bytes
+ */
+async function reconstructFromChannel(shares) {
+    const validationResult = validateShares(shares);
+    if (!validationResult.ok)
+        return validationResult;
+    const { k, n } = validationResult.value;
+    const usedShares = shares.slice(0, k);
+    return reconstructValidated(usedShares, n, k);
+}
+/**
+ * Validate share consistency before reconstruction.
+ *
+ * @param shares - Shares to validate
+ * @returns Validated parameters or error
+ */
+function validateShares(shares) {
+    if (shares.length === 0) {
+        return (0, shared_1.err)('INSUFFICIENT_SHARES');
+    }
+    const first = shares[0];
+    const k = first.threshold;
+    const n = first.total;
+    if (shares.length < k) {
+        return (0, shared_1.err)('INSUFFICIENT_SHARES');
+    }
+    const indexSet = new Set();
+    for (const share of shares) {
+        if (share.groupId !== first.groupId) {
+            return (0, shared_1.err)('INCONSISTENT_SHARES');
+        }
+        if (share.total !== n || share.threshold !== k) {
+            return (0, shared_1.err)('INCONSISTENT_SHARES');
+        }
+        if (share.index < 0 || share.index >= n) {
+            return (0, shared_1.err)('INVALID_SHARE_DATA');
+        }
+        if (indexSet.has(share.index)) {
+            return (0, shared_1.err)('INVALID_SHARE_DATA');
+        }
+        indexSet.add(share.index);
+    }
+    return (0, shared_1.ok)({ k, n, groupId: first.groupId });
+}
+/**
+ * Perform XorIDA reconstruction and HMAC verification.
+ *
+ * @param usedShares - Exactly k validated shares
+ * @param n - Total shares
+ * @param k - Threshold
+ * @returns Reconstructed plaintext
+ */
+async function reconstructValidated(usedShares, n, k) {
+    let shareData;
+    try {
+        shareData = usedShares.map((s) => (0, crypto_1.fromBase64)((0, crypto_1.parseShareHeader)(s.data)));
+    }
+    catch {
+        return (0, shared_1.err)('INVALID_SHARE_DATA:BASE64');
+    }
+    const indices = usedShares.map((s) => s.index);
+    let padded;
+    try {
+        padded = (0, crypto_1.reconstructXorIDA)(shareData, indices, n, k);
+    }
+    catch {
+        return (0, shared_1.err)('SPLIT_FAILED:RECONSTRUCT');
+    }
+    const first = usedShares[0];
+    let hmacKey;
+    let hmacSig;
+    try {
+        hmacKey = (0, crypto_1.fromBase64)(first.hmacKey);
+        hmacSig = (0, crypto_1.fromBase64)(first.hmacSig);
+    }
+    catch {
+        return (0, shared_1.err)('INVALID_SHARE_DATA:HMAC_DECODE');
+    }
+    const hmacValid = await (0, crypto_1.verifyHMAC)(hmacKey, padded, hmacSig);
+    if (!hmacValid) {
+        return (0, shared_1.err)('HMAC_VERIFICATION_FAILED');
+    }
+    const p = (0, crypto_1.nextOddPrime)(n);
+    const blockSize = p - 1;
+    const unpadResult = (0, crypto_1.pkcs7Unpad)(padded, blockSize);
+    if (!unpadResult.ok) {
+        return (0, shared_1.err)('UNPAD_FAILED');
+    }
+    return (0, shared_1.ok)(unpadResult.value);
+}