npm - @private.me/xbind - Versions diffs - 3.0.0 → 3.0.2 - Mend

@private.me/xbind 3.0.0 → 3.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (217) hide show

package/README.md +55 -7
package/dist-standalone/_deps/mldsa-wasm/dist/mldsa.js +1920 -1
package/dist-standalone/_deps/shared/cjs/errors.js +729 -1
package/dist-standalone/_deps/shared/cjs/index.js +463 -1
package/dist-standalone/_deps/shared/cjs/types.js +315 -1
package/dist-standalone/_deps/shared/errors.js +244 -1
package/dist-standalone/_deps/shared/index.js +72 -1
package/dist-standalone/_deps/shared/types.js +86 -1
package/dist-standalone/_deps/ux-helpers/cjs/errors.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/index.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/pagination.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/progress.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/search.js +1 -1
package/dist-standalone/_deps/ux-helpers/cjs/types.js +1 -1
package/dist-standalone/_deps/ux-helpers/errors.js +1 -1
package/dist-standalone/_deps/ux-helpers/index.js +1 -1
package/dist-standalone/_deps/ux-helpers/pagination.js +1 -1
package/dist-standalone/_deps/ux-helpers/progress.js +1 -1
package/dist-standalone/_deps/ux-helpers/search.js +1 -1
package/dist-standalone/_deps/xchange/auto-accept.js +1 -1
package/dist-standalone/_deps/xchange/cjs/auto-accept.js +1 -1
package/dist-standalone/_deps/xchange/cjs/errors.js +1 -1
package/dist-standalone/_deps/xchange/cjs/index.js +1 -1
package/dist-standalone/_deps/xchange/cjs/invite-client.js +1 -1
package/dist-standalone/_deps/xchange/cjs/lazy-init.js +1 -1
package/dist-standalone/_deps/xchange/cjs/trust-integration.js +1 -1
package/dist-standalone/_deps/xchange/cjs/xchange.js +1 -1
package/dist-standalone/_deps/xchange/errors.js +1 -1
package/dist-standalone/_deps/xchange/index.js +1 -1
package/dist-standalone/_deps/xchange/invite-client.js +1 -1
package/dist-standalone/_deps/xchange/lazy-init.js +1 -1
package/dist-standalone/_deps/xchange/trust-integration.js +1 -1
package/dist-standalone/_deps/xchange/xchange.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/discovery.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/errors.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/index.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/registry.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/schema.js +1 -1
package/dist-standalone/_deps/xregistry/cjs/types.js +1 -1
package/dist-standalone/_deps/xregistry/discovery.js +1 -1
package/dist-standalone/_deps/xregistry/errors.js +1 -1
package/dist-standalone/_deps/xregistry/index.js +1 -1
package/dist-standalone/_deps/xregistry/registry.js +1 -1
package/dist-standalone/_deps/xregistry/schema.js +1 -1
package/dist-standalone/_deps/xregistry/types.js +1 -1
package/dist-standalone/agent-call.js +659 -1
package/dist-standalone/agent-sdk.js +328 -1
package/dist-standalone/agent.js +1800 -1
package/dist-standalone/approval.js +193 -1
package/dist-standalone/async-iterators.js +382 -1
package/dist-standalone/auth.js +219 -1
package/dist-standalone/auto-accept.js +229 -1
package/dist-standalone/backup-config.js +201 -1
package/dist-standalone/backup.js +326 -1
package/dist-standalone/batch-operations.js +388 -1
package/dist-standalone/cancellation.js +477 -1
package/dist-standalone/checkpoint.js +186 -1
package/dist-standalone/circuit-breaker.js +468 -1
package/dist-standalone/cjs/agent-call.js +701 -1
package/dist-standalone/cjs/agent-sdk.js +332 -1
package/dist-standalone/cjs/agent.js +1837 -1
package/dist-standalone/cjs/approval.js +199 -1
package/dist-standalone/cjs/async-iterators.js +392 -1
package/dist-standalone/cjs/auth.js +225 -1
package/dist-standalone/cjs/auto-accept.js +233 -1
package/dist-standalone/cjs/backup-config.js +207 -1
package/dist-standalone/cjs/backup.js +330 -1
package/dist-standalone/cjs/batch-operations.js +397 -1
package/dist-standalone/cjs/cancellation.js +490 -1
package/dist-standalone/cjs/checkpoint.js +193 -1
package/dist-standalone/cjs/circuit-breaker.js +476 -1
package/dist-standalone/cjs/cli/init.js +492 -1
package/dist-standalone/cjs/config-validation.js +522 -1
package/dist-standalone/cjs/connect.js +312 -1
package/dist-standalone/cjs/connection-pool.js +506 -1
package/dist-standalone/cjs/correlation-id.js +339 -1
package/dist-standalone/cjs/crypto-utils.js +176 -1
package/dist-standalone/cjs/debug-mode.js +534 -1
package/dist-standalone/cjs/did-document.js +101 -1
package/dist-standalone/cjs/did-privateme.js +130 -1
package/dist-standalone/cjs/did-web.js +201 -1
package/dist-standalone/cjs/discovery.js +462 -1
package/dist-standalone/cjs/dual-mode.js +251 -1
package/dist-standalone/cjs/email-templates.js +313 -1
package/dist-standalone/cjs/email-transport.js +239 -1
package/dist-standalone/cjs/envelope.js +538 -1
package/dist-standalone/cjs/errors.js +913 -1
package/dist-standalone/cjs/event-emitter.js +461 -1
package/dist-standalone/cjs/gateway-state.js +55 -1
package/dist-standalone/cjs/gateway-transport.js +120 -1
package/dist-standalone/cjs/graceful-degradation.js +403 -1
package/dist-standalone/cjs/guardrails.js +223 -1
package/dist-standalone/cjs/health-check.js +336 -1
package/dist-standalone/cjs/http-compat.js +272 -1
package/dist-standalone/cjs/http-status-map.js +571 -1
package/dist-standalone/cjs/identity.js +645 -1
package/dist-standalone/cjs/index.js +406 -1
package/dist-standalone/cjs/invitation.js +421 -1
package/dist-standalone/cjs/invite.js +328 -1
package/dist-standalone/cjs/key-agreement.js +335 -1
package/dist-standalone/cjs/lazy-init.js +300 -1
package/dist-standalone/cjs/logger.js +291 -1
package/dist-standalone/cjs/mdns-discovery.js +202 -1
package/dist-standalone/cjs/nonce-store.js +80 -1
package/dist-standalone/cjs/pairing-manager.js +223 -1
package/dist-standalone/cjs/plugin-system.js +264 -1
package/dist-standalone/cjs/plugins/logging.js +168 -1
package/dist-standalone/cjs/plugins/metrics.js +181 -1
package/dist-standalone/cjs/plugins/validation.js +302 -1
package/dist-standalone/cjs/policy.js +320 -1
package/dist-standalone/cjs/progress-callbacks.js +583 -1
package/dist-standalone/cjs/redis-nonce-store.js +76 -1
package/dist-standalone/cjs/registry-middleware.js +50 -1
package/dist-standalone/cjs/retry-strategies.js +544 -1
package/dist-standalone/cjs/retry-transport.js +102 -1
package/dist-standalone/cjs/runtime/browser.js +533 -1
package/dist-standalone/cjs/runtime/edge.js +526 -1
package/dist-standalone/cjs/runtime/react-native.js +394 -1
package/dist-standalone/cjs/security-policy.js +245 -1
package/dist-standalone/cjs/serialization.js +1040 -1
package/dist-standalone/cjs/split-channel.js +225 -1
package/dist-standalone/cjs/subscription-proof.js +230 -1
package/dist-standalone/cjs/succession.js +148 -1
package/dist-standalone/cjs/timeouts.js +412 -1
package/dist-standalone/cjs/trace-context.js +424 -1
package/dist-standalone/cjs/trace-spans.js +495 -1
package/dist-standalone/cjs/transport.js +63 -1
package/dist-standalone/cjs/trust-registry.js +991 -1
package/dist-standalone/cjs/types/error-response.js +56 -1
package/dist-standalone/cjs/vault-auth.js +178 -1
package/dist-standalone/cjs/vault-store-loader.js +194 -1
package/dist-standalone/cjs/verify.js +25 -1
package/dist-standalone/cjs/version-info.js +543 -1
package/dist-standalone/cjs/xfetch.js +340 -1
package/dist-standalone/cli/init.js +455 -1
package/dist-standalone/cli/setup.js +514 -1
package/dist-standalone/cli/types.js +27 -1
package/dist-standalone/cli/xbind.js +148 -1
package/dist-standalone/config-validation.js +513 -1
package/dist-standalone/connect.js +274 -1
package/dist-standalone/connection-pool.js +500 -1
package/dist-standalone/correlation-id.js +326 -1
package/dist-standalone/crypto-utils.js +157 -1
package/dist-standalone/debug-mode.js +510 -1
package/dist-standalone/did-document.js +96 -1
package/dist-standalone/did-privateme.js +121 -1
package/dist-standalone/did-web.js +196 -1
package/dist-standalone/discovery.js +458 -1
package/dist-standalone/dual-mode.js +247 -1
package/dist-standalone/email-templates.js +309 -1
package/dist-standalone/email-transport.js +232 -1
package/dist-standalone/envelope.js +525 -1
package/dist-standalone/errors.js +896 -1
package/dist-standalone/event-emitter.js +456 -1
package/dist-standalone/gateway-state.js +51 -1
package/dist-standalone/gateway-transport.js +116 -1
package/dist-standalone/graceful-degradation.js +396 -1
package/dist-standalone/guardrails.js +216 -1
package/dist-standalone/health-check.js +332 -1
package/dist-standalone/http-compat.js +267 -1
package/dist-standalone/http-status-map.js +561 -1
package/dist-standalone/identity.js +619 -1
package/dist-standalone/index.js +78 -1
package/dist-standalone/invitation.js +415 -1
package/dist-standalone/invite.js +324 -1
package/dist-standalone/key-agreement.js +325 -1
package/dist-standalone/lazy-init.js +295 -1
package/dist-standalone/logger.js +285 -1
package/dist-standalone/mdns-discovery.js +195 -1
package/dist-standalone/nonce-store.js +76 -1
package/dist-standalone/pairing-manager.js +219 -1
package/dist-standalone/plugin-system.js +257 -1
package/dist-standalone/plugins/logging.d.ts +84 -0
package/dist-standalone/plugins/logging.js +163 -0
package/dist-standalone/plugins/metrics.d.ts +111 -0
package/dist-standalone/plugins/metrics.js +176 -0
package/dist-standalone/plugins/validation.d.ts +104 -0
package/dist-standalone/plugins/validation.js +297 -0
package/dist-standalone/policy.js +315 -1
package/dist-standalone/progress-callbacks.js +576 -1
package/dist-standalone/redis-nonce-store.js +72 -1
package/dist-standalone/registry-middleware.js +47 -1
package/dist-standalone/retry-strategies.js +534 -1
package/dist-standalone/retry-transport.js +98 -1
package/dist-standalone/runtime/browser.d.ts +311 -0
package/dist-standalone/runtime/browser.js +516 -0
package/dist-standalone/runtime/edge.d.ts +282 -0
package/dist-standalone/runtime/edge.js +511 -0
package/dist-standalone/runtime/react-native.d.ts +157 -0
package/dist-standalone/runtime/react-native.js +383 -0
package/dist-standalone/security-policy.js +239 -1
package/dist-standalone/serialization.js +1031 -1
package/dist-standalone/split-channel.js +219 -1
package/dist-standalone/subscription-proof.js +224 -1
package/dist-standalone/succession.js +142 -1
package/dist-standalone/timeouts.js +398 -1
package/dist-standalone/trace-context.js +414 -1
package/dist-standalone/trace-spans.js +488 -1
package/dist-standalone/transport.js +59 -1
package/dist-standalone/trust-registry.js +950 -1
package/dist-standalone/types/error-response.d.ts +209 -0
package/dist-standalone/types/error-response.js +52 -0
package/dist-standalone/vault-auth.js +174 -1
package/dist-standalone/vault-store-loader.js +187 -1
package/dist-standalone/verify.js +16 -1
package/dist-standalone/version-info.js +530 -1
package/dist-standalone/xfetch.js +335 -1
package/package.json +4 -10
package/share1.dat +0 -0
package/dist-standalone/_deps/mldsa-wasm/LICENSE +0 -24
package/dist-standalone/_deps/mldsa-wasm/package.json +0 -46
package/dist-standalone/_deps/shared/cjs/package.json +0 -1
package/dist-standalone/_deps/ux-helpers/cjs/package.json +0 -1
package/dist-standalone/_deps/xchange/cjs/package.json +0 -1
package/dist-standalone/_deps/xregistry/cjs/package.json +0 -1
package/dist-standalone/cjs/package.json +0 -3
package/dist-standalone/package.json +0 -10

package/dist-standalone/cjs/approval.js CHANGED Viewed

@@ -1 +1,199 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.ApprovalFlow=exports.CLIApprovalPresenter=exports.ApprovalError=exports.ApprovalErrorCode=void 0;const shared_1=require("../_deps/shared/index.js");var ApprovalErrorCode;!function(r){r.USER_DENIED="APPROVAL_USER_DENIED",r.TIMEOUT="APPROVAL_TIMEOUT",r.INVALID_DURATION="APPROVAL_INVALID_DURATION",r.SIGNATURE_FAILED="APPROVAL_SIGNATURE_FAILED",r.TOKEN_EXPIRED="APPROVAL_TOKEN_EXPIRED",r.TOKEN_REVOKED="APPROVAL_TOKEN_REVOKED",r.INVALID_TOKEN="APPROVAL_INVALID_TOKEN"}(ApprovalErrorCode||(exports.ApprovalErrorCode=ApprovalErrorCode={}));class ApprovalError extends Error{code;details;constructor(r,e,o){super(e),this.code=r,this.details=o,this.name="ApprovalError"}}exports.ApprovalError=ApprovalError;class CLIApprovalPresenter{async present(r){console.log("\n=== AGENT APPROVAL REQUEST ==="),console.log(`Agent: ${r.agentDid}`),console.log(`Duration: ${r.duration}`),console.log("\nRequested Scopes:");for(const e of r.scopes)console.log(`  - ${e}`);return r.limits&&(console.log("\nPolicy Limits:"),r.limits.amountPerTxn&&console.log(`  - Max per transaction: $${r.limits.amountPerTxn.toLocaleString()}`),r.limits.dailyAmount&&console.log(`  - Daily limit: $${r.limits.dailyAmount.toLocaleString()}`),r.limits.callsPerMinute&&console.log(`  - Rate limit: ${r.limits.callsPerMinute} calls/minute`)),r.description&&console.log(`\nDescription: ${r.description}`),console.log("\n[This is a mock presenter - auto-approving for development]"),console.log("In production, this would prompt for user input.\n"),(0,shared_1.ok)({approved:!0})}}exports.CLIApprovalPresenter=CLIApprovalPresenter;class ApprovalFlow{presenter;tokens=new Map;constructor(r={}){this.presenter=r.presenter??new CLIApprovalPresenter}async requestApproval(r){const e=this.parseDuration(r.duration);if(e<=0)return(0,shared_1.err)(new ApprovalError(ApprovalErrorCode.INVALID_DURATION,`Invalid duration: ${r.duration}`));const o=await this.presenter.present(r);if(!o.ok)return o;if(!o.value.approved)return(0,shared_1.ok)({approved:!1,reason:o.value.reason??"User denied approval"});const t=Date.now(),s={id:this.generateTokenId(),agentDid:r.agentDid,scopes:r.scopes,limits:r.limits,expiresAt:t+e,createdAt:t,valid:!0,signature:await this.signToken(r.agentDid,r.scopes,t+e)};return this.tokens.set(s.id,s),(0,shared_1.ok)({approved:!0,token:s})}verifyToken(r){const e=this.tokens.get(r);return e?e.valid?Date.now()>e.expiresAt?(0,shared_1.err)(new ApprovalError(ApprovalErrorCode.TOKEN_EXPIRED,`Token ${r} expired at ${new Date(e.expiresAt).toISOString()}`)):(0,shared_1.ok)(e):(0,shared_1.err)(new ApprovalError(ApprovalErrorCode.TOKEN_REVOKED,`Token ${r} has been revoked`)):(0,shared_1.err)(new ApprovalError(ApprovalErrorCode.INVALID_TOKEN,`Token ${r} not found`))}revokeToken(r){const e=this.tokens.get(r);e&&this.tokens.set(r,{...e,valid:!1})}parseDuration(r){if("number"==typeof r)return r;const e=r.match(/^(\d+)([smhd])$/);if(!e)return-1;const o=parseInt(e[1]??"0",10);switch(e[2]){case"s":return 1e3*o;case"m":return 60*o*1e3;case"h":return 60*o*60*1e3;case"d":return 24*o*60*60*1e3;default:return-1}}generateTokenId(){const r=new Uint8Array(12);crypto.getRandomValues(r);const e=Array.from(r,r=>r.toString(16).padStart(2,"0")).join("");return`appr_${Date.now()}_${e}`}async signToken(r,e,o){const t=JSON.stringify({agentDid:r,scopes:e,expiresAt:o});return btoa(t).substring(0,32)}}exports.ApprovalFlow=ApprovalFlow;
+"use strict";
+/**
+ * @module approval
+ * OAuth-style approval flow for agents
+ *
+ * Enterprise agents require explicit user consent before performing
+ * sensitive operations. This module implements OAuth-style consent
+ * screens and approval tokens.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApprovalFlow = exports.CLIApprovalPresenter = exports.ApprovalError = exports.ApprovalErrorCode = void 0;
+const shared_1 = require("../_deps/shared/index.js");
+/**
+ * Approval error codes
+ */
+var ApprovalErrorCode;
+(function (ApprovalErrorCode) {
+    ApprovalErrorCode["USER_DENIED"] = "APPROVAL_USER_DENIED";
+    ApprovalErrorCode["TIMEOUT"] = "APPROVAL_TIMEOUT";
+    ApprovalErrorCode["INVALID_DURATION"] = "APPROVAL_INVALID_DURATION";
+    ApprovalErrorCode["SIGNATURE_FAILED"] = "APPROVAL_SIGNATURE_FAILED";
+    ApprovalErrorCode["TOKEN_EXPIRED"] = "APPROVAL_TOKEN_EXPIRED";
+    ApprovalErrorCode["TOKEN_REVOKED"] = "APPROVAL_TOKEN_REVOKED";
+    ApprovalErrorCode["INVALID_TOKEN"] = "APPROVAL_INVALID_TOKEN";
+})(ApprovalErrorCode || (exports.ApprovalErrorCode = ApprovalErrorCode = {}));
+/**
+ * Approval error
+ */
+class ApprovalError extends Error {
+    code;
+    details;
+    constructor(code, message, details) {
+        super(message);
+        this.code = code;
+        this.details = details;
+        this.name = 'ApprovalError';
+    }
+}
+exports.ApprovalError = ApprovalError;
+/**
+ * CLI approval presenter (prints to console, reads stdin)
+ * This is a legitimate CLI interface - console output is intentional
+ */
+class CLIApprovalPresenter {
+    /* eslint-disable no-console */
+    async present(options) {
+        console.log('\n=== AGENT APPROVAL REQUEST ===');
+        console.log(`Agent: ${options.agentDid}`);
+        console.log(`Duration: ${options.duration}`);
+        console.log('\nRequested Scopes:');
+        for (const scope of options.scopes) {
+            console.log(`  - ${scope}`);
+        }
+        if (options.limits) {
+            console.log('\nPolicy Limits:');
+            if (options.limits.amountPerTxn) {
+                console.log(`  - Max per transaction: $${options.limits.amountPerTxn.toLocaleString()}`);
+            }
+            if (options.limits.dailyAmount) {
+                console.log(`  - Daily limit: $${options.limits.dailyAmount.toLocaleString()}`);
+            }
+            if (options.limits.callsPerMinute) {
+                console.log(`  - Rate limit: ${options.limits.callsPerMinute} calls/minute`);
+            }
+        }
+        if (options.description) {
+            console.log(`\nDescription: ${options.description}`);
+        }
+        console.log('\n[This is a mock presenter - auto-approving for development]');
+        console.log('In production, this would prompt for user input.\n');
+        // Auto-approve for development (production would prompt for y/n)
+        return (0, shared_1.ok)({
+            approved: true,
+        });
+    }
+}
+exports.CLIApprovalPresenter = CLIApprovalPresenter;
+/**
+ * Approval flow coordinator
+ *
+ * Orchestrates the consent flow: present to user → sign token → track expiry
+ */
+class ApprovalFlow {
+    presenter;
+    tokens = new Map();
+    constructor(options = {}) {
+        this.presenter = options.presenter ?? new CLIApprovalPresenter();
+    }
+    /**
+     * Request approval from user
+     *
+     * @param options - Approval request options
+     * @returns Approval result with token (if approved)
+     */
+    async requestApproval(options) {
+        // Validate duration
+        const durationMs = this.parseDuration(options.duration);
+        if (durationMs <= 0) {
+            return (0, shared_1.err)(new ApprovalError(ApprovalErrorCode.INVALID_DURATION, `Invalid duration: ${options.duration}`));
+        }
+        // Present to user
+        const result = await this.presenter.present(options);
+        if (!result.ok)
+            return result;
+        if (!result.value.approved) {
+            return (0, shared_1.ok)({
+                approved: false,
+                reason: result.value.reason ?? 'User denied approval',
+            });
+        }
+        // Generate approval token
+        const now = Date.now();
+        const token = {
+            id: this.generateTokenId(),
+            agentDid: options.agentDid,
+            scopes: options.scopes,
+            limits: options.limits,
+            expiresAt: now + durationMs,
+            createdAt: now,
+            valid: true,
+            signature: await this.signToken(options.agentDid, options.scopes, now + durationMs),
+        };
+        // Store token
+        this.tokens.set(token.id, token);
+        return (0, shared_1.ok)({
+            approved: true,
+            token,
+        });
+    }
+    /**
+     * Verify an approval token
+     *
+     * @param tokenId - Token ID to verify
+     * @returns Token if valid, error otherwise
+     */
+    verifyToken(tokenId) {
+        const token = this.tokens.get(tokenId);
+        if (!token) {
+            return (0, shared_1.err)(new ApprovalError(ApprovalErrorCode.INVALID_TOKEN, `Token ${tokenId} not found`));
+        }
+        if (!token.valid) {
+            return (0, shared_1.err)(new ApprovalError(ApprovalErrorCode.TOKEN_REVOKED, `Token ${tokenId} has been revoked`));
+        }
+        if (Date.now() > token.expiresAt) {
+            return (0, shared_1.err)(new ApprovalError(ApprovalErrorCode.TOKEN_EXPIRED, `Token ${tokenId} expired at ${new Date(token.expiresAt).toISOString()}`));
+        }
+        return (0, shared_1.ok)(token);
+    }
+    /**
+     * Revoke an approval token
+     *
+     * @param tokenId - Token ID to revoke
+     */
+    revokeToken(tokenId) {
+        const token = this.tokens.get(tokenId);
+        if (token) {
+            this.tokens.set(tokenId, { ...token, valid: false });
+        }
+    }
+    /**
+     * Parse duration string to milliseconds
+     */
+    parseDuration(duration) {
+        if (typeof duration === 'number')
+            return duration;
+        // Parse ISO 8601 duration or simple format
+        const matches = duration.match(/^(\d+)([smhd])$/);
+        if (!matches)
+            return -1;
+        const value = parseInt(matches[1] ?? '0', 10);
+        const unit = matches[2];
+        switch (unit) {
+            case 's': return value * 1000;
+            case 'm': return value * 60 * 1000;
+            case 'h': return value * 60 * 60 * 1000;
+            case 'd': return value * 24 * 60 * 60 * 1000;
+            default: return -1;
+        }
+    }
+    /**
+     * Generate a unique token ID
+     */
+    generateTokenId() {
+        const randomBytes = new Uint8Array(12);
+        crypto.getRandomValues(randomBytes);
+        const randomString = Array.from(randomBytes, b => b.toString(16).padStart(2, '0')).join('');
+        return `appr_${Date.now()}_${randomString}`;
+    }
+    /**
+     * Sign an approval token (stub - production would use Ed25519)
+     */
+    async signToken(agentDid, scopes, expiresAt) {
+        // Production would use Ed25519 signature over JSON.stringify({ agentDid, scopes, expiresAt })
+        // For now, return a mock signature
+        const payload = JSON.stringify({ agentDid, scopes, expiresAt });
+        return btoa(payload).substring(0, 32);
+    }
+}
+exports.ApprovalFlow = ApprovalFlow;

package/dist-standalone/cjs/async-iterators.js CHANGED Viewed

@@ -1 +1,392 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0}),exports.MessageStream=void 0,exports.collectMessages=collectMessages,exports.mapStream=mapStream,exports.filterStream=filterStream,exports.takeStream=takeStream,exports.mergeStreams=mergeStreams,exports.installAsyncIterators=installAsyncIterators;class MessageStream{agent;options;state;constructor(e,t={}){this.agent=e,this.options={from:t.from,scope:t.scope,bufferSize:t.bufferSize??100,signal:t.signal,allowCleartext:t.allowCleartext??!1},this.state={buffer:[],pending:[],done:!1},this.options.signal&&this.options.signal.addEventListener("abort",()=>{this.close(new Error("Stream aborted"))});const s=e=>{this.handleEnvelope(e)},r=this.agent.getTransports()[0];r&&(r.onReceive(s),this.state.cleanup=()=>{})}async handleEnvelope(e){if(this.state.done)return;const t=await this.agent.receive(e,{allowCleartext:this.options.allowCleartext});if(!t.ok)return;const s=t.value;if(!(this.options.from&&s.sender!==this.options.from||this.options.scope&&s.scope!==this.options.scope))if(this.state.pending.length>0){this.state.pending.shift()({value:s,done:!1})}else this.state.buffer.length<this.options.bufferSize&&this.state.buffer.push(s)}close(e){if(!this.state.done){this.state.done=!0,this.state.error=e;for(const e of this.state.pending)e({value:void 0,done:!0});this.state.pending=[],this.state.cleanup&&this.state.cleanup()}}async next(){if(this.state.done)return{value:void 0,done:!0};if(this.options.signal?.aborted)return this.close(new Error("Stream aborted")),{value:void 0,done:!0};if(this.state.buffer.length>0){return{value:this.state.buffer.shift(),done:!1}}return new Promise(e=>{this.state.pending.push(e)})}async return(e){return this.close(),{value:void 0,done:!0}}async throw(e){return this.close(e instanceof Error?e:new Error(String(e))),{value:void 0,done:!0}}[Symbol.asyncIterator](){return this}get bufferedCount(){return this.state.buffer.length}get closed(){return this.state.done}get error(){return this.state.error}}async function collectMessages(e,t={}){const s=[],r=new MessageStream(e,t);let a;t.timeout&&(a=setTimeout(()=>{r.return()},t.timeout));try{for await(const e of r)if(s.push(e),t.limit&&s.length>=t.limit)break}finally{a&&clearTimeout(a),r.closed||await r.return()}return s}async function*mapStream(e,t){for await(const s of e)yield await t(s)}async function*filterStream(e,t){for await(const s of e)await t(s)&&(yield s)}async function*takeStream(e,t){let s=0;for await(const r of e){if(s>=t)break;yield r,s++}}async function*mergeStreams(e){const t=e.map(e=>e[Symbol.asyncIterator]()),s=new Map;for(let e=0;e<t.length;e++)s.set(e,t[e].next());for(;s.size>0;){const e=Array.from(s.entries()),r=await Promise.race(e.map(async([e,t])=>({idx:e,result:await t})));s.delete(r.idx),r.result.done||(yield r.result.value,s.set(r.idx,t[r.idx].next()))}}function installAsyncIterators(e){"subscribe"in e.prototype||(e.prototype.subscribe=function(e){return new MessageStream(this,e)})}exports.MessageStream=MessageStream;
+"use strict";
+/**
+ * @fileoverview Async iterator API for xBind message streams.
+ *
+ * Provides modern async iteration patterns for consuming message streams
+ * with backpressure handling, stream cancellation, and error propagation.
+ *
+ * @example
+ * ```typescript
+ * // Subscribe to messages with async iteration
+ * for await (const message of agent.subscribe({ from: 'did:key:alice' })) {
+ *   console.log('Received:', message.payload);
+ * }
+ * ```
+ *
+ * @module async-iterators
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MessageStream = void 0;
+exports.collectMessages = collectMessages;
+exports.mapStream = mapStream;
+exports.filterStream = filterStream;
+exports.takeStream = takeStream;
+exports.mergeStreams = mergeStreams;
+exports.installAsyncIterators = installAsyncIterators;
+/**
+ * Async iterable message stream.
+ *
+ * Implements AsyncIterableIterator for use with `for await...of` syntax.
+ * Handles backpressure, cancellation, and error propagation.
+ */
+class MessageStream {
+    agent;
+    options;
+    state;
+    constructor(agent, options = {}) {
+        this.agent = agent;
+        this.options = {
+            from: options.from,
+            scope: options.scope,
+            bufferSize: options.bufferSize ?? 100,
+            signal: options.signal,
+            allowCleartext: options.allowCleartext ?? false,
+        };
+        this.state = {
+            buffer: [],
+            pending: [],
+            done: false,
+        };
+        // Setup abort signal handler
+        if (this.options.signal) {
+            this.options.signal.addEventListener('abort', () => {
+                this.close(new Error('Stream aborted'));
+            });
+        }
+        // Register envelope handler
+        const handler = (envelope) => {
+            void this.handleEnvelope(envelope);
+        };
+        // Get first transport adapter and register handler
+        const transports = this.agent.getTransports();
+        const transport = transports[0];
+        if (transport) {
+            transport.onReceive(handler);
+            this.state.cleanup = () => {
+                // Remove handler by creating new transport without this handler
+                // (Transport interface doesn't support handler removal)
+            };
+        }
+    }
+    /**
+     * Handle incoming envelope from transport.
+     * @internal
+     */
+    async handleEnvelope(envelope) {
+        if (this.state.done)
+            return;
+        // Verify and decrypt the envelope
+        const result = await this.agent.receive(envelope, {
+            allowCleartext: this.options.allowCleartext,
+        });
+        if (!result.ok) {
+            // Ignore verification errors (not all envelopes are for this stream)
+            return;
+        }
+        const message = result.value;
+        // Apply filters
+        if (this.options.from && message.sender !== this.options.from) {
+            return;
+        }
+        if (this.options.scope && message.scope !== this.options.scope) {
+            return;
+        }
+        // Deliver message
+        if (this.state.pending.length > 0) {
+            // Consumer is waiting - deliver immediately
+            const resolve = this.state.pending.shift();
+            resolve({ value: message, done: false });
+        }
+        else if (this.state.buffer.length < this.options.bufferSize) {
+            // Buffer has space - enqueue
+            this.state.buffer.push(message);
+        }
+        // else: buffer full - drop message (backpressure)
+    }
+    /**
+     * Close the stream with optional error.
+     * @internal
+     */
+    close(error) {
+        if (this.state.done)
+            return;
+        this.state.done = true;
+        this.state.error = error;
+        // Resolve all pending next() calls
+        for (const resolve of this.state.pending) {
+            if (error) {
+                resolve({ value: undefined, done: true });
+            }
+            else {
+                resolve({ value: undefined, done: true });
+            }
+        }
+        this.state.pending = [];
+        // Cleanup resources
+        if (this.state.cleanup) {
+            this.state.cleanup();
+        }
+    }
+    /**
+     * Get next message from the stream.
+     *
+     * Returns a promise that resolves when:
+     * - A message is available in the buffer
+     * - A new message arrives from the transport
+     * - The stream is closed
+     *
+     * @returns Promise resolving to iterator result
+     */
+    async next() {
+        // Stream already done
+        if (this.state.done) {
+            return { value: undefined, done: true };
+        }
+        // Check abort signal
+        if (this.options.signal?.aborted) {
+            this.close(new Error('Stream aborted'));
+            return { value: undefined, done: true };
+        }
+        // Message available in buffer
+        if (this.state.buffer.length > 0) {
+            const message = this.state.buffer.shift();
+            return { value: message, done: false };
+        }
+        // Wait for next message
+        return new Promise((resolve) => {
+            this.state.pending.push(resolve);
+        });
+    }
+    /**
+     * Return method for iterator protocol.
+     * Closes the stream and completes iteration.
+     *
+     * @param value - Optional value (ignored)
+     * @returns Promise resolving to done result
+     */
+    async return(value) {
+        this.close();
+        return { value: undefined, done: true };
+    }
+    /**
+     * Throw method for iterator protocol.
+     * Closes the stream with error.
+     *
+     * @param error - Error to propagate
+     * @returns Promise resolving to done result
+     */
+    async throw(error) {
+        this.close(error instanceof Error ? error : new Error(String(error)));
+        return { value: undefined, done: true };
+    }
+    /**
+     * Make this object async iterable.
+     * Enables `for await...of` syntax.
+     *
+     * @returns This stream instance
+     */
+    [Symbol.asyncIterator]() {
+        return this;
+    }
+    /**
+     * Get number of buffered messages.
+     * Useful for monitoring backpressure.
+     */
+    get bufferedCount() {
+        return this.state.buffer.length;
+    }
+    /**
+     * Check if stream is closed.
+     */
+    get closed() {
+        return this.state.done;
+    }
+    /**
+     * Get stream error if any.
+     */
+    get error() {
+        return this.state.error;
+    }
+}
+exports.MessageStream = MessageStream;
+/**
+ * Collect messages from a stream into an array.
+ *
+ * Useful for batch processing or testing. Stream completes when:
+ * - Limit is reached
+ * - Timeout expires
+ * - Stream is aborted via signal
+ *
+ * @param agent - Agent instance to collect messages from
+ * @param options - Collection options
+ * @returns Promise resolving to array of messages
+ *
+ * @example
+ * ```typescript
+ * // Collect up to 10 messages with 5 second timeout
+ * const messages = await collectMessages(agent, {
+ *   from: 'did:key:alice',
+ *   limit: 10,
+ *   timeout: 5000
+ * });
+ * ```
+ */
+async function collectMessages(agent, options = {}) {
+    const messages = [];
+    const stream = new MessageStream(agent, options);
+    // Setup timeout if specified
+    let timeoutId;
+    if (options.timeout) {
+        timeoutId = setTimeout(() => {
+            void stream.return();
+        }, options.timeout);
+    }
+    try {
+        for await (const message of stream) {
+            messages.push(message);
+            if (options.limit && messages.length >= options.limit) {
+                break;
+            }
+        }
+    }
+    finally {
+        if (timeoutId) {
+            clearTimeout(timeoutId);
+        }
+        if (!stream.closed) {
+            await stream.return();
+        }
+    }
+    return messages;
+}
+/**
+ * Transform message stream with async mapping function.
+ *
+ * Enables functional-style stream processing with backpressure preservation.
+ *
+ * @param stream - Source message stream
+ * @param fn - Async transform function
+ * @returns Async iterable of transformed values
+ *
+ * @example
+ * ```typescript
+ * const stream = agent.subscribe({ from: 'did:key:alice' });
+ * const payloads = mapStream(stream, async (msg) => msg.payload);
+ *
+ * for await (const payload of payloads) {
+ *   console.log('Payload:', payload);
+ * }
+ * ```
+ */
+async function* mapStream(stream, fn) {
+    for await (const value of stream) {
+        yield await fn(value);
+    }
+}
+/**
+ * Filter message stream with async predicate.
+ *
+ * Only yields messages that satisfy the predicate.
+ *
+ * @param stream - Source message stream
+ * @param predicate - Async filter predicate
+ * @returns Async iterable of filtered messages
+ *
+ * @example
+ * ```typescript
+ * const stream = agent.subscribe({ scope: 'notifications' });
+ * const urgent = filterStream(stream, async (msg) =>
+ *   msg.payload.priority === 'high'
+ * );
+ *
+ * for await (const message of urgent) {
+ *   await handleUrgent(message);
+ * }
+ * ```
+ */
+async function* filterStream(stream, predicate) {
+    for await (const value of stream) {
+        if (await predicate(value)) {
+            yield value;
+        }
+    }
+}
+/**
+ * Take first N messages from stream.
+ *
+ * Stream completes after yielding N messages.
+ *
+ * @param stream - Source message stream
+ * @param count - Maximum messages to take
+ * @returns Async iterable with at most count messages
+ *
+ * @example
+ * ```typescript
+ * const stream = agent.subscribe();
+ * const first5 = takeStream(stream, 5);
+ *
+ * for await (const message of first5) {
+ *   console.log('Message:', message);
+ * }
+ * ```
+ */
+async function* takeStream(stream, count) {
+    let taken = 0;
+    for await (const value of stream) {
+        if (taken >= count)
+            break;
+        yield value;
+        taken++;
+    }
+}
+/**
+ * Merge multiple message streams into one.
+ *
+ * Yields messages from all streams as they arrive.
+ * Completes when all source streams complete.
+ *
+ * @param streams - Array of source streams
+ * @returns Async iterable of merged messages
+ *
+ * @example
+ * ```typescript
+ * const stream1 = agent.subscribe({ from: 'did:key:alice' });
+ * const stream2 = agent.subscribe({ from: 'did:key:bob' });
+ * const merged = mergeStreams([stream1, stream2]);
+ *
+ * for await (const message of merged) {
+ *   console.log('From:', message.sender);
+ * }
+ * ```
+ */
+async function* mergeStreams(streams) {
+    const iterators = streams.map((s) => s[Symbol.asyncIterator]());
+    const pending = new Map();
+    // Start all iterators
+    for (let i = 0; i < iterators.length; i++) {
+        pending.set(i, iterators[i].next());
+    }
+    while (pending.size > 0) {
+        // Race all pending next() calls
+        const entries = Array.from(pending.entries());
+        const winner = await Promise.race(entries.map(async ([idx, promise]) => ({ idx, result: await promise })));
+        pending.delete(winner.idx);
+        if (!winner.result.done) {
+            yield winner.result.value;
+            // Start next iteration for this stream
+            pending.set(winner.idx, iterators[winner.idx].next());
+        }
+    }
+}
+/**
+ * Add subscribe method to Agent prototype.
+ * @internal
+ */
+function installAsyncIterators(AgentClass) {
+    if ('subscribe' in AgentClass.prototype) {
+        return; // Already installed
+    }
+    AgentClass.prototype.subscribe = function (options) {
+        return new MessageStream(this, options);
+    };
+}