@queno/agent-node 0.1.2

package/dist/redaction/engine.js

@@ -0,0 +1,143 @@
+/**
+ * Redaction engine - sanitises an event payload before it leaves the process.
+ *
+ * Layers (Addendum B.2):
+ *  1. Key-based redaction: object keys matching a {@link RedactionPattern} are
+ *     replaced wholesale.
+ *  2. Value-based redaction: string leaves are scanned for sensitive shapes
+ *     (credit cards, SIN, email, health IDs, IPs, SQL literals) and masked.
+ *  3. Mode:
+ *     - `denylist` (default): strip known-sensitive data, pass everything else.
+ *     - `allowlist`: redact every value except explicitly approved keys (and a
+ *       fixed set of structural envelope keys required by the collector).
+ *
+ * The walker returns a new object - the input is never mutated. A thrown error
+ * is treated by the agent as a fatal redaction failure (the event is dropped).
+ */
+import { DEFAULT_REDACTION_PATTERNS, redactValueString, } from "./patterns.js";
+/**
+ * Structural envelope keys that must survive allowlist mode so the collector
+ * can still validate and route the event.
+ */
+const STRUCTURAL_KEYS = new Set([
+    "projectId",
+    "agentId",
+    "agentVersion",
+    "runtime",
+    "framework",
+    "eventType",
+    "severity",
+    "action",
+    "method",
+    "path",
+    "sourceIp",
+    "timestamp",
+    "redacted",
+    "matchedRule",
+    "auditLoggedLocally",
+]);
+export class RedactionEngine {
+    patterns;
+    mode;
+    allowKeyPatterns;
+    valueRedaction;
+    ipMode;
+    constructor(extraPatternsOrOptions = []) {
+        const opts = Array.isArray(extraPatternsOrOptions)
+            ? { keyPatterns: extraPatternsOrOptions }
+            : extraPatternsOrOptions;
+        this.patterns = [...DEFAULT_REDACTION_PATTERNS, ...(opts.keyPatterns ?? [])];
+        this.mode = opts.mode ?? "denylist";
+        this.allowKeyPatterns = opts.allowKeyPatterns ?? [];
+        this.valueRedaction = opts.valueRedaction ?? true;
+        this.ipMode = opts.ipMode ?? "hash";
+    }
+    /**
+     * Build an engine from a policy-supplied {@link RedactionConfig}. Unknown or
+     * absent fields fall back to safe defaults (denylist + value redaction).
+     */
+    static fromConfig(cfg) {
+        if (!cfg)
+            return new RedactionEngine();
+        const customKey = (cfg.customKeyPatterns ?? [])
+            .map((src) => safeRegex(src))
+            .filter((r) => r !== null)
+            .map((re, i) => ({ name: `custom-${i}`, matchKey: re }));
+        const allowKey = (cfg.allowKeyPatterns ?? [])
+            .map((src) => safeRegex(src))
+            .filter((r) => r !== null);
+        // metadata-only / local-only are handled at the data-residency layer; for
+        // redaction purposes they behave like an aggressive allowlist with no
+        // approved keys, masking every value.
+        const mode = cfg.mode === "allowlist" ? "allowlist" : "denylist";
+        return new RedactionEngine({
+            mode,
+            keyPatterns: customKey,
+            allowKeyPatterns: allowKey,
+            valueRedaction: cfg.valueRedaction ?? true,
+            ipMode: cfg.ipMode ?? "hash",
+        });
+    }
+    redact(value, path = "") {
+        const redactedFields = [];
+        const redacted = this.walk(value, path, redactedFields, false);
+        return { redacted, redactedFields };
+    }
+    walk(value, path, redactedFields, keyApproved) {
+        if (value === null || value === undefined)
+            return value;
+        if (Array.isArray(value)) {
+            return value.map((item, i) => this.walk(item, `${path}[${i}]`, redactedFields, keyApproved));
+        }
+        if (typeof value === "object") {
+            const result = {};
+            for (const [k, v] of Object.entries(value)) {
+                const fieldPath = path ? `${path}.${k}` : k;
+                // Key-based denylist match → redact the whole subtree.
+                if (this.shouldRedactKey(k)) {
+                    result[k] = "[REDACTED]";
+                    redactedFields.push(fieldPath);
+                    continue;
+                }
+                const approved = keyApproved || this.isApprovedKey(k);
+                result[k] = this.walk(v, fieldPath, redactedFields, approved);
+            }
+            return result;
+        }
+        if (typeof value === "string") {
+            return this.redactLeaf(value, path, redactedFields, keyApproved);
+        }
+        return value;
+    }
+    redactLeaf(value, path, redactedFields, keyApproved) {
+        // Allowlist mode: anything not under an approved/structural key is masked.
+        if (this.mode === "allowlist" && !keyApproved) {
+            redactedFields.push(path);
+            return "[REDACTED]";
+        }
+        if (this.valueRedaction) {
+            const { value: out, redacted } = redactValueString(value, this.ipMode);
+            if (redacted)
+                redactedFields.push(path);
+            return out;
+        }
+        return value;
+    }
+    isApprovedKey(key) {
+        if (STRUCTURAL_KEYS.has(key))
+            return true;
+        return this.allowKeyPatterns.some((p) => p.test(key));
+    }
+    shouldRedactKey(key) {
+        return this.patterns.some((p) => p.matchKey.test(key));
+    }
+}
+function safeRegex(src) {
+    try {
+        return new RegExp(src, "i");
+    }
+    catch {
+        return null;
+    }
+}
+//# sourceMappingURL=engine.js.map

package/dist/redaction/engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../src/redaction/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AACH,OAAO,EACL,0BAA0B,EAC1B,iBAAiB,GAGlB,MAAM,eAAe,CAAC;AAUvB;;;GAGG;AACH,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC;IAC9B,WAAW;IACX,SAAS;IACT,cAAc;IACd,SAAS;IACT,WAAW;IACX,WAAW;IACX,UAAU;IACV,QAAQ;IACR,QAAQ;IACR,MAAM;IACN,UAAU;IACV,WAAW;IACX,UAAU;IACV,aAAa;IACb,oBAAoB;CACrB,CAAC,CAAC;AAUH,MAAM,OAAO,eAAe;IACT,QAAQ,CAAqB;IAC7B,IAAI,CAA2B;IAC/B,gBAAgB,CAAW;IAC3B,cAAc,CAAU;IACxB,MAAM,CAAS;IAEhC,YAAY,yBAAsE,EAAE;QAClF,MAAM,IAAI,GAA2B,KAAK,CAAC,OAAO,CAAC,sBAAsB,CAAC;YACxE,CAAC,CAAC,EAAE,WAAW,EAAE,sBAAsB,EAAE;YACzC,CAAC,CAAC,sBAAsB,CAAC;QAE3B,IAAI,CAAC,QAAQ,GAAG,CAAC,GAAG,0BAA0B,EAAE,GAAG,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC,CAAC;QAC7E,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,IAAI,UAAU,CAAC;QACpC,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,IAAI,EAAE,CAAC;QACpD,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC;QAClD,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC;IACtC,CAAC;IAED;;;OAGG;IACH,MAAM,CAAC,UAAU,CAAC,GAAqB;QACrC,IAAI,CAAC,GAAG;YAAE,OAAO,IAAI,eAAe,EAAE,CAAC;QAEvC,MAAM,SAAS,GAAG,CAAC,GAAG,CAAC,iBAAiB,IAAI,EAAE,CAAC;aAC5C,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;aAC5B,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC;aACtC,GAAG,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,UAAU,CAAC,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC,CAAC;QAE3D,MAAM,QAAQ,GAAG,CAAC,GAAG,CAAC,gBAAgB,IAAI,EAAE,CAAC;aAC1C,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;aAC5B,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;QAE1C,0EAA0E;QAC1E,sEAAsE;QACtE,sCAAsC;QACtC,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,UAAU,CAAC;QAEjE,OAAO,IAAI,eAAe,CAAC;YACzB,IAAI;YACJ,WAAW,EAAE,SAAS;YACtB,gBAAgB,EAAE,QAAQ;YAC1B,cAAc,EAAE,GAAG,CAAC,cAAc,IAAI,IAAI;YAC1C,MAAM,EAAE,GAAG,CAAC,MAAM,IAAI,MAAM;SAC7B,CAAC,CAAC;IACL,CAAC;IAED,MAAM,CAAC,KAAc,EAAE,IAAI,GAAG,EAAE;QAC9B,MAAM,cAAc,GAAa,EAAE,CAAC;QACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,CAAC,CAAC;QAC/D,OAAO,EAAE,QAAQ,EAAE,cAAc,EAAE,CAAC;IACtC,CAAC;IAEO,IAAI,CACV,KAAc,EACd,IAAY,EACZ,cAAwB,EACxB,WAAoB;QAEpB,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS;YAAE,OAAO,KAAK,CAAC;QAExD,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAC3B,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE,cAAc,EAAE,WAAW,CAAC,CAC9D,CAAC;QACJ,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,MAAM,MAAM,GAA4B,EAAE,CAAC;YAC3C,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAgC,CAAC,EAAE,CAAC;gBACtE,MAAM,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;gBAE5C,uDAAuD;gBACvD,IAAI,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC;oBAC5B,MAAM,CAAC,CAAC,CAAC,GAAG,YAAY,CAAC;oBACzB,cAAc,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;oBAC/B,SAAS;gBACX,CAAC;gBAED,MAAM,QAAQ,GAAG,WAAW,IAAI,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC;gBACtD,MAAM,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAE,SAAS,EAAE,cAAc,EAAE,QAAQ,CAAC,CAAC;YAChE,CAAC;YACD,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,IAAI,EAAE,cAAc,EAAE,WAAW,CAAC,CAAC;QACnE,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,UAAU,CAChB,KAAa,EACb,IAAY,EACZ,cAAwB,EACxB,WAAoB;QAEpB,2EAA2E;QAC3E,IAAI,IAAI,CAAC,IAAI,KAAK,WAAW,IAAI,CAAC,WAAW,EAAE,CAAC;YAC9C,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1B,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YACxB,MAAM,EAAE,KAAK,EAAE,GAAG,EAAE,QAAQ,EAAE,GAAG,iBAAiB,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;YACvE,IAAI,QAAQ;gBAAE,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACxC,OAAO,GAAG,CAAC;QACb,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,aAAa,CAAC,GAAW;QAC/B,IAAI,eAAe,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,OAAO,IAAI,CAAC;QAC1C,OAAO,IAAI,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACxD,CAAC;IAEO,eAAe,CAAC,GAAW;QACjC,OAAO,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACzD,CAAC;CACF;AAED,SAAS,SAAS,CAAC,GAAW;IAC5B,IAAI,CAAC;QACH,OAAO,IAAI,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IAC9B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC"}

package/dist/redaction/patterns.d.ts

@@ -0,0 +1,24 @@
+/**
+ * Declarative key-based redaction rule.
+ */
+export interface RedactionPattern {
+    /** Human-readable name surfaced in the audit log. */
+    name: string;
+    /** Regex tested case-insensitively against the field name (object key). */
+    matchKey: RegExp;
+    /** Replacement string (default `[REDACTED]`). */
+    replacement?: string;
+}
+export declare const DEFAULT_REDACTION_PATTERNS: RedactionPattern[];
+/** IP handling for value redaction. */
+export type IpMode = "hash" | "mask" | "passthrough";
+/**
+ * Scan a string for sensitive value shapes and mask them in place.
+ *
+ * @returns The possibly-transformed string and whether anything was redacted.
+ */
+export declare function redactValueString(input: string, ipMode?: IpMode): {
+    value: string;
+    redacted: boolean;
+};
+//# sourceMappingURL=patterns.d.ts.map

package/dist/redaction/patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.d.ts","sourceRoot":"","sources":["../../src/redaction/patterns.ts"],"names":[],"mappings":"AAeA;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,qDAAqD;IACrD,IAAI,EAAE,MAAM,CAAC;IACb,2EAA2E;IAC3E,QAAQ,EAAE,MAAM,CAAC;IACjB,iDAAiD;IACjD,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,eAAO,MAAM,0BAA0B,EAAE,gBAAgB,EAqBxD,CAAC;AAEF,uCAAuC;AACvC,MAAM,MAAM,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,aAAa,CAAC;AAqDrD;;;;GAIG;AACH,wBAAgB,iBAAiB,CAC/B,KAAK,EAAE,MAAM,EACb,MAAM,GAAE,MAAe,GACtB;IAAE,KAAK,EAAE,MAAM,CAAC;IAAC,QAAQ,EAAE,OAAO,CAAA;CAAE,CAsDtC"}

package/dist/redaction/patterns.js

@@ -0,0 +1,142 @@
+/**
+ * Redaction patterns and value redactors.
+ *
+ * Two complementary layers (Addendum B.2.1):
+ *  - **Key-based** ({@link RedactionPattern}): an object key whose name matches
+ *    is replaced wholesale. Cheap, never inspects the value.
+ *  - **Value-based** ({@link redactValueString}): string leaves are scanned for
+ *    sensitive data shapes (credit cards, SIN, email, health IDs, IPs, SQL
+ *    literals) and masked in place. This catches secrets that live under benign
+ *    key names.
+ *
+ * No raw sensitive value is ever logged or memoised by these helpers.
+ */
+import { createHash } from "node:crypto";
+export const DEFAULT_REDACTION_PATTERNS = [
+    { name: "authorization", matchKey: /^authorization$/i },
+    { name: "cookie", matchKey: /^cookie$/i },
+    { name: "set-cookie", matchKey: /^set-cookie$/i },
+    { name: "password", matchKey: /password/i },
+    { name: "passwd", matchKey: /passwd/i },
+    { name: "secret", matchKey: /secret/i },
+    { name: "token", matchKey: /token/i },
+    { name: "api.?key", matchKey: /api[_-]?key/i },
+    { name: "access.?key", matchKey: /access[_-]?key/i },
+    { name: "private.?key", matchKey: /private[_-]?key/i },
+    { name: "client.?secret", matchKey: /client[_-]?secret/i },
+    { name: "ssn", matchKey: /^ssn$/i },
+    { name: "sin", matchKey: /^sin$/i },
+    { name: "credit.?card", matchKey: /credit[_-]?card/i },
+    { name: "card.?number", matchKey: /card[_-]?number/i },
+    { name: "cvv", matchKey: /^cvv$/i },
+    { name: "pin", matchKey: /^pin$/i },
+    { name: "x-api-key", matchKey: /^x-api-key$/i },
+    { name: "x-auth-token", matchKey: /^x-auth-token$/i },
+    { name: "x-access-token", matchKey: /^x-access-token$/i },
+];
+/** Luhn checksum validation (used for credit cards). */
+function luhnValid(digits) {
+    let sum = 0;
+    let alt = false;
+    for (let i = digits.length - 1; i >= 0; i--) {
+        let n = digits.charCodeAt(i) - 48;
+        if (n < 0 || n > 9)
+            return false;
+        if (alt) {
+            n *= 2;
+            if (n > 9)
+                n -= 9;
+        }
+        sum += n;
+        alt = !alt;
+    }
+    return sum % 10 === 0;
+}
+function sha256Short(input) {
+    return createHash("sha256").update(input).digest("hex").slice(0, 16);
+}
+// --- Value detectors, applied in priority order. ---
+const EMAIL_RE = /[A-Z0-9._%+-]+@[A-Z0-9.-]+\.[A-Z]{2,}/gi;
+// Candidate card: 13-19 digits, optionally separated by spaces/dashes.
+const CARD_RE = /\b(?:\d[ -]?){13,19}\b/g;
+// Canadian SIN: NNN-NNN-NNN or 9 contiguous digits.
+const SIN_RE = /\b\d{3}[-\s]?\d{3}[-\s]?\d{3}\b/g;
+// RAMQ (Quebec): 4 letters + 8 digits. OHIP (Ontario): 10 digits + optional 2-letter version.
+const RAMQ_RE = /\b[A-Z]{4}\d{8}\b/gi;
+const OHIP_RE = /\b\d{4}[-\s]?\d{3}[-\s]?\d{3}[-\s]?[A-Z]{2}\b/gi;
+const IPV4_RE = /\b(?:(?:25[0-5]|2[0-4]\d|1?\d?\d)\.){3}(?:25[0-5]|2[0-4]\d|1?\d?\d)\b/g;
+const SQL_HINT_RE = /\b(select|insert|update|delete|where|values|set)\b/i;
+function maskIp(ip, mode) {
+    if (mode === "passthrough")
+        return ip;
+    if (mode === "hash")
+        return `[IP:${sha256Short(ip)}]`;
+    // mask last octet
+    const parts = ip.split(".");
+    if (parts.length === 4)
+        return `${parts[0]}.${parts[1]}.${parts[2]}.x`;
+    return "[IP REDACTED]";
+}
+/** Replace string literals and numeric literals in a SQL-looking string. */
+function scrubSql(input) {
+    return input
+        .replace(/'[^']*'/g, "[STRING]")
+        .replace(/"[^"]*"/g, "[STRING]")
+        .replace(/(=\s*)(-?\d+(\.\d+)?)/g, "$1[INT]");
+}
+/**
+ * Scan a string for sensitive value shapes and mask them in place.
+ *
+ * @returns The possibly-transformed string and whether anything was redacted.
+ */
+export function redactValueString(input, ipMode = "hash") {
+    if (!input || input.length > 20_000)
+        return { value: input, redacted: false };
+    let out = input;
+    let redacted = false;
+    // SQL scrubbing first so literals (incl. emails/cards inside quotes) collapse.
+    if (SQL_HINT_RE.test(out)) {
+        const scrubbed = scrubSql(out);
+        if (scrubbed !== out) {
+            out = scrubbed;
+            redacted = true;
+        }
+    }
+    // Email → stable hash (preserves correlation without exposing identity).
+    out = out.replace(EMAIL_RE, (m) => {
+        redacted = true;
+        return `[EMAIL:${sha256Short(m.toLowerCase())}]`;
+    });
+    // Credit cards (Luhn-validated).
+    out = out.replace(CARD_RE, (m) => {
+        const digits = m.replace(/[ -]/g, "");
+        if (digits.length >= 13 && digits.length <= 19 && luhnValid(digits)) {
+            redacted = true;
+            return `****-****-****-${digits.slice(-4)}`;
+        }
+        return m;
+    });
+    // Health IDs (RAMQ / OHIP) before SIN so digit shapes don't collide.
+    out = out.replace(RAMQ_RE, () => {
+        redacted = true;
+        return "[HEALTH_ID REDACTED]";
+    });
+    out = out.replace(OHIP_RE, () => {
+        redacted = true;
+        return "[HEALTH_ID REDACTED]";
+    });
+    // Canadian SIN.
+    out = out.replace(SIN_RE, () => {
+        redacted = true;
+        return "[SIN REDACTED]";
+    });
+    // IP addresses.
+    out = out.replace(IPV4_RE, (m) => {
+        if (ipMode === "passthrough")
+            return m;
+        redacted = true;
+        return maskIp(m, ipMode);
+    });
+    return { value: out, redacted };
+}
+//# sourceMappingURL=patterns.js.map

package/dist/redaction/patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.js","sourceRoot":"","sources":["../../src/redaction/patterns.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAczC,MAAM,CAAC,MAAM,0BAA0B,GAAuB;IAC5D,EAAE,IAAI,EAAE,eAAe,EAAE,QAAQ,EAAE,kBAAkB,EAAE;IACvD,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,EAAE;IACzC,EAAE,IAAI,EAAE,YAAY,EAAE,QAAQ,EAAE,eAAe,EAAE;IACjD,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,WAAW,EAAE;IAC3C,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE;IACvC,EAAE,IAAI,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE;IACvC,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACrC,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,EAAE,cAAc,EAAE;IAC9C,EAAE,IAAI,EAAE,aAAa,EAAE,QAAQ,EAAE,iBAAiB,EAAE;IACpD,EAAE,IAAI,EAAE,cAAc,EAAE,QAAQ,EAAE,kBAAkB,EAAE;IACtD,EAAE,IAAI,EAAE,gBAAgB,EAAE,QAAQ,EAAE,oBAAoB,EAAE;IAC1D,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACnC,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACnC,EAAE,IAAI,EAAE,cAAc,EAAE,QAAQ,EAAE,kBAAkB,EAAE;IACtD,EAAE,IAAI,EAAE,cAAc,EAAE,QAAQ,EAAE,kBAAkB,EAAE;IACtD,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACnC,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACnC,EAAE,IAAI,EAAE,WAAW,EAAE,QAAQ,EAAE,cAAc,EAAE;IAC/C,EAAE,IAAI,EAAE,cAAc,EAAE,QAAQ,EAAE,iBAAiB,EAAE;IACrD,EAAE,IAAI,EAAE,gBAAgB,EAAE,QAAQ,EAAE,mBAAmB,EAAE;CAC1D,CAAC;AAKF,wDAAwD;AACxD,SAAS,SAAS,CAAC,MAAc;IAC/B,IAAI,GAAG,GAAG,CAAC,CAAC;IACZ,IAAI,GAAG,GAAG,KAAK,CAAC;IAChB,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5C,IAAI,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,EAAE,CAAC;QAClC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QACjC,IAAI,GAAG,EAAE,CAAC;YACR,CAAC,IAAI,CAAC,CAAC;YACP,IAAI,CAAC,GAAG,CAAC;gBAAE,CAAC,IAAI,CAAC,CAAC;QACpB,CAAC;QACD,GAAG,IAAI,CAAC,CAAC;QACT,GAAG,GAAG,CAAC,GAAG,CAAC;IACb,CAAC;IACD,OAAO,GAAG,GAAG,EAAE,KAAK,CAAC,CAAC;AACxB,CAAC;AAED,SAAS,WAAW,CAAC,KAAa;IAChC,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;AACvE,CAAC;AAED,sDAAsD;AAEtD,MAAM,QAAQ,GAAG,yCAAyC,CAAC;AAC3D,uEAAuE;AACvE,MAAM,OAAO,GAAG,yBAAyB,CAAC;AAC1C,oDAAoD;AACpD,MAAM,MAAM,GAAG,kCAAkC,CAAC;AAClD,8FAA8F;AAC9F,MAAM,OAAO,GAAG,qBAAqB,CAAC;AACtC,MAAM,OAAO,GAAG,iDAAiD,CAAC;AAClE,MAAM,OAAO,GAAG,wEAAwE,CAAC;AACzF,MAAM,WAAW,GAAG,qDAAqD,CAAC;AAE1E,SAAS,MAAM,CAAC,EAAU,EAAE,IAAY;IACtC,IAAI,IAAI,KAAK,aAAa;QAAE,OAAO,EAAE,CAAC;IACtC,IAAI,IAAI,KAAK,MAAM;QAAE,OAAO,OAAO,WAAW,CAAC,EAAE,CAAC,GAAG,CAAC;IACtD,kBAAkB;IAClB,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC5B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC;IACvE,OAAO,eAAe,CAAC;AACzB,CAAC;AAED,4EAA4E;AAC5E,SAAS,QAAQ,CAAC,KAAa;IAC7B,OAAO,KAAK;SACT,OAAO,CAAC,UAAU,EAAE,UAAU,CAAC;SAC/B,OAAO,CAAC,UAAU,EAAE,UAAU,CAAC;SAC/B,OAAO,CAAC,wBAAwB,EAAE,SAAS,CAAC,CAAC;AAClD,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,iBAAiB,CAC/B,KAAa,EACb,SAAiB,MAAM;IAEvB,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,GAAG,MAAM;QAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;IAC9E,IAAI,GAAG,GAAG,KAAK,CAAC;IAChB,IAAI,QAAQ,GAAG,KAAK,CAAC;IAErB,+EAA+E;IAC/E,IAAI,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;QAC1B,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,QAAQ,KAAK,GAAG,EAAE,CAAC;YACrB,GAAG,GAAG,QAAQ,CAAC;YACf,QAAQ,GAAG,IAAI,CAAC;QAClB,CAAC;IACH,CAAC;IAED,yEAAyE;IACzE,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE;QAChC,QAAQ,GAAG,IAAI,CAAC;QAChB,OAAO,UAAU,WAAW,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,GAAG,CAAC;IACnD,CAAC,CAAC,CAAC;IAEH,iCAAiC;IACjC,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC,EAAE,EAAE;QAC/B,MAAM,MAAM,GAAG,CAAC,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACtC,IAAI,MAAM,CAAC,MAAM,IAAI,EAAE,IAAI,MAAM,CAAC,MAAM,IAAI,EAAE,IAAI,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;YACpE,QAAQ,GAAG,IAAI,CAAC;YAChB,OAAO,kBAAkB,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC9C,CAAC;QACD,OAAO,CAAC,CAAC;IACX,CAAC,CAAC,CAAC;IAEH,qEAAqE;IACrE,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,GAAG,EAAE;QAC9B,QAAQ,GAAG,IAAI,CAAC;QAChB,OAAO,sBAAsB,CAAC;IAChC,CAAC,CAAC,CAAC;IACH,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,GAAG,EAAE;QAC9B,QAAQ,GAAG,IAAI,CAAC;QAChB,OAAO,sBAAsB,CAAC;IAChC,CAAC,CAAC,CAAC;IAEH,gBAAgB;IAChB,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,EAAE;QAC7B,QAAQ,GAAG,IAAI,CAAC;QAChB,OAAO,gBAAgB,CAAC;IAC1B,CAAC,CAAC,CAAC;IAEH,gBAAgB;IAChB,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC,EAAE,EAAE;QAC/B,IAAI,MAAM,KAAK,aAAa;YAAE,OAAO,CAAC,CAAC;QACvC,QAAQ,GAAG,IAAI,CAAC;QAChB,OAAO,MAAM,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,QAAQ,EAAE,CAAC;AAClC,CAAC"}

package/dist/runtime-context.d.ts

@@ -0,0 +1,33 @@
+export interface DbQueryRecord {
+    /** Driver that issued the query (e.g. `pg`, `mysql2`, `mongoose`). */
+    driver: string;
+    /** Truncated, non-parameterised query text or operation descriptor. */
+    op: string;
+    /** Id-like literals (numeric / UUID) extracted from the query text. */
+    ids: string[];
+}
+export interface RequestContext {
+    method: string;
+    path: string;
+    /** Resource id taken from the URL path, if any. */
+    pathId: string | null;
+    /** Authenticated user id (JWT sub or req.user.id), if known. */
+    userId: string | null;
+    sourceIp?: string;
+    /** Whether an authorization middleware was confirmed for this request. */
+    authEnforced: boolean;
+    /** DB queries observed during this request. */
+    dbQueries: DbQueryRecord[];
+}
+/**
+ * Bind a context to the current async execution for the remainder of the
+ * request. Uses `enterWith` so it survives across framework hooks and awaits
+ * without needing to wrap the downstream handler.
+ */
+export declare function enterContext(ctx: RequestContext): void;
+export declare function getContext(): RequestContext | undefined;
+/** Record a DB query against the active request context (no-op if none). */
+export declare function recordDbQuery(record: DbQueryRecord): void;
+/** Extract id-like literals from a query string (bounded). */
+export declare function extractIdLiterals(sql: string): string[];
+//# sourceMappingURL=runtime-context.d.ts.map

package/dist/runtime-context.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"runtime-context.d.ts","sourceRoot":"","sources":["../src/runtime-context.ts"],"names":[],"mappings":"AAcA,MAAM,WAAW,aAAa;IAC5B,sEAAsE;IACtE,MAAM,EAAE,MAAM,CAAC;IACf,uEAAuE;IACvE,EAAE,EAAE,MAAM,CAAC;IACX,uEAAuE;IACvE,GAAG,EAAE,MAAM,EAAE,CAAC;CACf;AAED,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,mDAAmD;IACnD,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,gEAAgE;IAChE,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,0EAA0E;IAC1E,YAAY,EAAE,OAAO,CAAC;IACtB,+CAA+C;IAC/C,SAAS,EAAE,aAAa,EAAE,CAAC;CAC5B;AAID;;;;GAIG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,cAAc,GAAG,IAAI,CAEtD;AAED,wBAAgB,UAAU,IAAI,cAAc,GAAG,SAAS,CAEvD;AAED,4EAA4E;AAC5E,wBAAgB,aAAa,CAAC,MAAM,EAAE,aAAa,GAAG,IAAI,CAKzD;AAKD,8DAA8D;AAC9D,wBAAgB,iBAAiB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CAQvD"}

package/dist/runtime-context.js

@@ -0,0 +1,46 @@
+/**
+ * Per-request runtime context, propagated via {@link AsyncLocalStorage}.
+ *
+ * The framework integration enters a context at the start of each request; the
+ * database hooks ({@link instrumentDatabaseDrivers}) then record every query
+ * issued while handling that request into the same context. At response time
+ * the agent correlates the request (path/user) with the observed DB queries to
+ * detect Broken Object Level Authorization (BOLA / IDOR).
+ *
+ * All accessors are fail-safe: if no context is active they no-op, so DB hooks
+ * never throw in code paths unrelated to an HTTP request.
+ */
+import { AsyncLocalStorage } from "node:async_hooks";
+const storage = new AsyncLocalStorage();
+/**
+ * Bind a context to the current async execution for the remainder of the
+ * request. Uses `enterWith` so it survives across framework hooks and awaits
+ * without needing to wrap the downstream handler.
+ */
+export function enterContext(ctx) {
+    storage.enterWith(ctx);
+}
+export function getContext() {
+    return storage.getStore();
+}
+/** Record a DB query against the active request context (no-op if none). */
+export function recordDbQuery(record) {
+    const ctx = storage.getStore();
+    if (!ctx)
+        return;
+    // Bound memory: keep at most 200 queries per request.
+    if (ctx.dbQueries.length < 200)
+        ctx.dbQueries.push(record);
+}
+const ID_LITERAL_RE = /\b(\d{1,12}|[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12})\b/gi;
+/** Extract id-like literals from a query string (bounded). */
+export function extractIdLiterals(sql) {
+    const out = [];
+    let m;
+    ID_LITERAL_RE.lastIndex = 0;
+    while ((m = ID_LITERAL_RE.exec(sql)) !== null && out.length < 20) {
+        out.push(m[1]);
+    }
+    return out;
+}
+//# sourceMappingURL=runtime-context.js.map

package/dist/runtime-context.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"runtime-context.js","sourceRoot":"","sources":["../src/runtime-context.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AACH,OAAO,EAAE,iBAAiB,EAAE,MAAM,kBAAkB,CAAC;AAyBrD,MAAM,OAAO,GAAG,IAAI,iBAAiB,EAAkB,CAAC;AAExD;;;;GAIG;AACH,MAAM,UAAU,YAAY,CAAC,GAAmB;IAC9C,OAAO,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;AACzB,CAAC;AAED,MAAM,UAAU,UAAU;IACxB,OAAO,OAAO,CAAC,QAAQ,EAAE,CAAC;AAC5B,CAAC;AAED,4EAA4E;AAC5E,MAAM,UAAU,aAAa,CAAC,MAAqB;IACjD,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC;IAC/B,IAAI,CAAC,GAAG;QAAE,OAAO;IACjB,sDAAsD;IACtD,IAAI,GAAG,CAAC,SAAS,CAAC,MAAM,GAAG,GAAG;QAAE,GAAG,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;AAC7D,CAAC;AAED,MAAM,aAAa,GACjB,+EAA+E,CAAC;AAElF,8DAA8D;AAC9D,MAAM,UAAU,iBAAiB,CAAC,GAAW;IAC3C,MAAM,GAAG,GAAa,EAAE,CAAC;IACzB,IAAI,CAAyB,CAAC;IAC9B,aAAa,CAAC,SAAS,GAAG,CAAC,CAAC;IAC5B,OAAO,CAAC,CAAC,GAAG,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,KAAK,IAAI,IAAI,GAAG,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QACjE,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAE,CAAC,CAAC;IAClB,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/self-protect.d.ts

@@ -0,0 +1,34 @@
+/**
+ * Encrypts string secrets in memory under a per-process key. The key lives only
+ * in this closure and is never persisted, so the stored ciphertext is useless
+ * outside the running process.
+ */
+export declare class SecureStore {
+    private readonly key;
+    private readonly entries;
+    set(name: string, value: string): void;
+    get(name: string): string | null;
+    has(name: string): boolean;
+    clear(): void;
+}
+/**
+ * Detect whether a V8 inspector/debugger is attached or was requested via exec
+ * args (`--inspect`, `--inspect-brk`, `--debug`). Returns the reason, or null.
+ */
+export declare function detectDebugger(): string | null;
+export interface SelfProtectionOptions {
+    /** Verify DB hook integrity (only meaningful when DB instrumentation is on). */
+    checkHooks?: boolean;
+    /** Watch for an attached debugger. */
+    antiDebug?: boolean;
+    /** Poll interval in ms. Default 30s. */
+    intervalMs?: number;
+    /** Sink for warnings. Defaults to `console.warn`. */
+    onWarning?: (message: string, detail: unknown) => void;
+}
+/**
+ * Start periodic self-protection checks. Returns a stop function. The timer is
+ * `unref`'d so it never keeps the host process alive.
+ */
+export declare function startSelfProtection(options?: SelfProtectionOptions): () => void;
+//# sourceMappingURL=self-protect.d.ts.map

package/dist/self-protect.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"self-protect.d.ts","sourceRoot":"","sources":["../src/self-protect.ts"],"names":[],"mappings":"AAwBA;;;;GAIG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAmB;IACvC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAgE;IAExF,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,IAAI;IAQtC,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI;IAYhC,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAI1B,KAAK,IAAI,IAAI;CAGd;AAED;;;GAGG;AACH,wBAAgB,cAAc,IAAI,MAAM,GAAG,IAAI,CAiB9C;AAED,MAAM,WAAW,qBAAqB;IACpC,gFAAgF;IAChF,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,sCAAsC;IACtC,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,wCAAwC;IACxC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,qDAAqD;IACrD,SAAS,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,KAAK,IAAI,CAAC;CACxD;AAED;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,OAAO,GAAE,qBAA0B,GAAG,MAAM,IAAI,CA8CnF"}

package/dist/self-protect.js

@@ -0,0 +1,134 @@
+/**
+ * Agent self-protection (Addendum E.7).
+ *
+ * Three best-effort, fail-open defences that raise the bar for tampering with
+ * the agent at runtime:
+ *
+ *  1. {@link SecureStore} - keeps secrets (API key, HMAC secret) encrypted in
+ *     memory with a per-process random key, so a heap dump or accidental log of
+ *     the config object does not leak them in plaintext.
+ *  2. Hook-integrity monitoring - periodically verifies the DB instrumentation
+ *     hooks are still installed and unmodified (detects an attacker un-hooking
+ *     the agent to evade BOLA-via-DB detection).
+ *  3. Basic anti-debug - detects an attached V8 inspector / `--inspect` flag,
+ *     which is a common foothold for tampering with a running process.
+ *
+ * None of these are a substitute for OS-level hardening; they are defence in
+ * depth and never crash the host application.
+ */
+import { createCipheriv, createDecipheriv, randomBytes } from "node:crypto";
+import { createRequire } from "node:module";
+import { verifyHookIntegrity } from "./db-hooks/instrument.js";
+const nodeRequire = createRequire(import.meta.url);
+/**
+ * Encrypts string secrets in memory under a per-process key. The key lives only
+ * in this closure and is never persisted, so the stored ciphertext is useless
+ * outside the running process.
+ */
+export class SecureStore {
+    key = randomBytes(32);
+    entries = new Map();
+    set(name, value) {
+        const iv = randomBytes(12);
+        const cipher = createCipheriv("aes-256-gcm", this.key, iv);
+        const data = Buffer.concat([cipher.update(value, "utf8"), cipher.final()]);
+        const tag = cipher.getAuthTag();
+        this.entries.set(name, { iv, tag, data });
+    }
+    get(name) {
+        const e = this.entries.get(name);
+        if (!e)
+            return null;
+        try {
+            const decipher = createDecipheriv("aes-256-gcm", this.key, e.iv);
+            decipher.setAuthTag(e.tag);
+            return Buffer.concat([decipher.update(e.data), decipher.final()]).toString("utf8");
+        }
+        catch {
+            return null;
+        }
+    }
+    has(name) {
+        return this.entries.has(name);
+    }
+    clear() {
+        this.entries.clear();
+    }
+}
+/**
+ * Detect whether a V8 inspector/debugger is attached or was requested via exec
+ * args (`--inspect`, `--inspect-brk`, `--debug`). Returns the reason, or null.
+ */
+export function detectDebugger() {
+    try {
+        const inspectArg = process.execArgv.find((a) => /^--(inspect|debug)/.test(a));
+        if (inspectArg)
+            return `exec-arg:${inspectArg}`;
+    }
+    catch {
+        /* ignore */
+    }
+    try {
+        // Lazy require so environments without the module are unaffected.
+        const inspector = nodeRequire("node:inspector");
+        if (typeof inspector.url === "function" && inspector.url()) {
+            return "inspector-attached";
+        }
+    }
+    catch {
+        /* ignore */
+    }
+    return null;
+}
+/**
+ * Start periodic self-protection checks. Returns a stop function. The timer is
+ * `unref`'d so it never keeps the host process alive.
+ */
+export function startSelfProtection(options = {}) {
+    const interval = options.intervalMs ?? 30_000;
+    const warn = options.onWarning ??
+        ((message, detail) => {
+            try {
+                console.warn(`[rasp:self-protect] ${message}`, detail);
+            }
+            catch {
+                /* ignore */
+            }
+        });
+    let debuggerReported = false;
+    const tick = () => {
+        if (options.checkHooks) {
+            try {
+                const tampered = verifyHookIntegrity();
+                if (tampered.length > 0) {
+                    warn("DB hook integrity violation detected", tampered);
+                }
+            }
+            catch {
+                /* fail open */
+            }
+        }
+        if (options.antiDebug) {
+            try {
+                const reason = detectDebugger();
+                if (reason && !debuggerReported) {
+                    debuggerReported = true;
+                    warn("debugger/inspector detected", { reason });
+                }
+                else if (!reason) {
+                    debuggerReported = false;
+                }
+            }
+            catch {
+                /* fail open */
+            }
+        }
+    };
+    const timer = setInterval(tick, interval);
+    if (typeof timer.unref === "function")
+        timer.unref();
+    // Run one immediate check so violations present at boot are surfaced fast.
+    tick();
+    return () => clearInterval(timer);
+}
+//# sourceMappingURL=self-protect.js.map

package/dist/self-protect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"self-protect.js","sourceRoot":"","sources":["../src/self-protect.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AACH,OAAO,EAAE,cAAc,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAC5E,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAC;AAE/D,MAAM,WAAW,GAAG,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAEnD;;;;GAIG;AACH,MAAM,OAAO,WAAW;IACL,GAAG,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;IACtB,OAAO,GAAG,IAAI,GAAG,EAAqD,CAAC;IAExF,GAAG,CAAC,IAAY,EAAE,KAAa;QAC7B,MAAM,EAAE,GAAG,WAAW,CAAC,EAAE,CAAC,CAAC;QAC3B,MAAM,MAAM,GAAG,cAAc,CAAC,aAAa,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QAC3D,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,EAAE,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;QAC3E,MAAM,GAAG,GAAG,MAAM,CAAC,UAAU,EAAE,CAAC;QAChC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,EAAE,EAAE,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED,GAAG,CAAC,IAAY;QACd,MAAM,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACjC,IAAI,CAAC,CAAC;YAAE,OAAO,IAAI,CAAC;QACpB,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,gBAAgB,CAAC,aAAa,EAAE,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC;YACjE,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;YAC3B,OAAO,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QACrF,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAED,GAAG,CAAC,IAAY;QACd,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED,KAAK;QACH,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IACvB,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,UAAU,cAAc;IAC5B,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;QAC9E,IAAI,UAAU;YAAE,OAAO,YAAY,UAAU,EAAE,CAAC;IAClD,CAAC;IAAC,MAAM,CAAC;QACP,YAAY;IACd,CAAC;IACD,IAAI,CAAC;QACH,kEAAkE;QAClE,MAAM,SAAS,GAAG,WAAW,CAAC,gBAAgB,CAAuC,CAAC;QACtF,IAAI,OAAO,SAAS,CAAC,GAAG,KAAK,UAAU,IAAI,SAAS,CAAC,GAAG,EAAE,EAAE,CAAC;YAC3D,OAAO,oBAAoB,CAAC;QAC9B,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,YAAY;IACd,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAaD;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,UAAiC,EAAE;IACrE,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,IAAI,MAAM,CAAC;IAC9C,MAAM,IAAI,GACR,OAAO,CAAC,SAAS;QACjB,CAAC,CAAC,OAAe,EAAE,MAAe,EAAE,EAAE;YACpC,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,uBAAuB,OAAO,EAAE,EAAE,MAAM,CAAC,CAAC;YACzD,CAAC;YAAC,MAAM,CAAC;gBACP,YAAY;YACd,CAAC;QACH,CAAC,CAAC,CAAC;IAEL,IAAI,gBAAgB,GAAG,KAAK,CAAC;IAE7B,MAAM,IAAI,GAAG,GAAG,EAAE;QAChB,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;YACvB,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,mBAAmB,EAAE,CAAC;gBACvC,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACxB,IAAI,CAAC,sCAAsC,EAAE,QAAQ,CAAC,CAAC;gBACzD,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,eAAe;YACjB,CAAC;QACH,CAAC;QACD,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;YACtB,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,cAAc,EAAE,CAAC;gBAChC,IAAI,MAAM,IAAI,CAAC,gBAAgB,EAAE,CAAC;oBAChC,gBAAgB,GAAG,IAAI,CAAC;oBACxB,IAAI,CAAC,6BAA6B,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;gBAClD,CAAC;qBAAM,IAAI,CAAC,MAAM,EAAE,CAAC;oBACnB,gBAAgB,GAAG,KAAK,CAAC;gBAC3B,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,eAAe;YACjB,CAAC;QACH,CAAC;IACH,CAAC,CAAC;IAEF,MAAM,KAAK,GAAG,WAAW,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IAC1C,IAAI,OAAO,KAAK,CAAC,KAAK,KAAK,UAAU;QAAE,KAAK,CAAC,KAAK,EAAE,CAAC;IACrD,2EAA2E;IAC3E,IAAI,EAAE,CAAC;IAEP,OAAO,GAAG,EAAE,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;AACpC,CAAC"}

package/dist/transport/buffer.d.ts

@@ -0,0 +1,52 @@
+/**
+ * In-memory event buffer with periodic and size-triggered flushing.
+ *
+ * Acts as a small queue between {@link RaspAgent.inspect} (synchronous, in
+ * the request hot path) and the network-bound {@link TransportClient}.
+ *
+ * Flush triggers:
+ *  - **Periodic**: `setInterval(flush, flushIntervalMs)`.
+ *  - **Size-based**: as soon as the queue reaches `maxSize`, `enqueue`
+ *    triggers an opportunistic flush.
+ *  - **Final**: {@link stop} cancels the timer and drains the queue once.
+ *
+ * Fail-open guarantees:
+ *  - Individual `sendEvent` failures are swallowed (the event is dropped).
+ *  - The flush timer is `unref`'d so it never keeps the Node process alive.
+ */
+import type { EventPayload } from "../types.js";
+import type { TransportClient } from "./client.js";
+export interface BufferConfig {
+    /** Periodic flush interval in ms. */
+    flushIntervalMs: number;
+    /** Queue length above which `enqueue` triggers an opportunistic flush. */
+    maxSize: number;
+}
+export declare class EventBuffer {
+    private readonly queue;
+    private readonly client;
+    private readonly maxSize;
+    private timer;
+    constructor(client: TransportClient, cfg: BufferConfig);
+    /**
+     * Append an event. Triggers an immediate flush once the queue reaches
+     * `maxSize`.
+     *
+     * The event is expected to have already passed through the redaction
+     * engine - the buffer does not sanitise.
+     */
+    enqueue(event: EventPayload): void;
+    /**
+     * Atomically drain the queue and fire all sends in parallel.
+     *
+     * Uses `Promise.allSettled` so a single failed send cannot block the
+     * others. Per-event errors are caught and ignored (the event is lost).
+     */
+    flush(): Promise<void>;
+    /**
+     * Cancel the timer and perform a final drain. Awaited during agent
+     * shutdown.
+     */
+    stop(): Promise<void>;
+}
+//# sourceMappingURL=buffer.d.ts.map

package/dist/transport/buffer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"buffer.d.ts","sourceRoot":"","sources":["../../src/transport/buffer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AACH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAChD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAEnD,MAAM,WAAW,YAAY;IAC3B,qCAAqC;IACrC,eAAe,EAAE,MAAM,CAAC;IACxB,0EAA0E;IAC1E,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAsB;IAC5C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAkB;IACzC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;IACjC,OAAO,CAAC,KAAK,CAA+C;gBAEhD,MAAM,EAAE,eAAe,EAAE,GAAG,EAAE,YAAY;IAetD;;;;;;OAMG;IACH,OAAO,CAAC,KAAK,EAAE,YAAY,GAAG,IAAI;IAQlC;;;;;OAKG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAc5B;;;OAGG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;CAO5B"}