@salimassili/ai-costguard 1.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (490) hide show
  1. package/README.md +112 -0
  2. package/dist/aecl/ExecutionInterceptor.d.ts +111 -0
  3. package/dist/aecl/ExecutionInterceptor.d.ts.map +1 -0
  4. package/dist/aecl/ExecutionInterceptor.js +280 -0
  5. package/dist/aecl/ExecutionInterceptor.js.map +1 -0
  6. package/dist/aecl/ExecutionMemory.d.ts +103 -0
  7. package/dist/aecl/ExecutionMemory.d.ts.map +1 -0
  8. package/dist/aecl/ExecutionMemory.js +164 -0
  9. package/dist/aecl/ExecutionMemory.js.map +1 -0
  10. package/dist/aecl/PolicyEngine.d.ts +77 -0
  11. package/dist/aecl/PolicyEngine.d.ts.map +1 -0
  12. package/dist/aecl/PolicyEngine.js +170 -0
  13. package/dist/aecl/PolicyEngine.js.map +1 -0
  14. package/dist/aecl/ROITelemetry.d.ts +110 -0
  15. package/dist/aecl/ROITelemetry.d.ts.map +1 -0
  16. package/dist/aecl/ROITelemetry.js +211 -0
  17. package/dist/aecl/ROITelemetry.js.map +1 -0
  18. package/dist/aecl/RiskEngine.d.ts +90 -0
  19. package/dist/aecl/RiskEngine.d.ts.map +1 -0
  20. package/dist/aecl/RiskEngine.js +207 -0
  21. package/dist/aecl/RiskEngine.js.map +1 -0
  22. package/dist/aecl/index.d.ts +76 -0
  23. package/dist/aecl/index.d.ts.map +1 -0
  24. package/dist/aecl/index.js +111 -0
  25. package/dist/aecl/index.js.map +1 -0
  26. package/dist/aerl/ExecutionGraph.d.ts +123 -0
  27. package/dist/aerl/ExecutionGraph.d.ts.map +1 -0
  28. package/dist/aerl/ExecutionGraph.js +289 -0
  29. package/dist/aerl/ExecutionGraph.js.map +1 -0
  30. package/dist/aerl/ExecutionInterceptor.d.ts +94 -0
  31. package/dist/aerl/ExecutionInterceptor.d.ts.map +1 -0
  32. package/dist/aerl/ExecutionInterceptor.js +246 -0
  33. package/dist/aerl/ExecutionInterceptor.js.map +1 -0
  34. package/dist/aerl/ExecutionMemory.d.ts +138 -0
  35. package/dist/aerl/ExecutionMemory.d.ts.map +1 -0
  36. package/dist/aerl/ExecutionMemory.js +284 -0
  37. package/dist/aerl/ExecutionMemory.js.map +1 -0
  38. package/dist/aerl/FailurePrediction.d.ts +71 -0
  39. package/dist/aerl/FailurePrediction.d.ts.map +1 -0
  40. package/dist/aerl/FailurePrediction.js +204 -0
  41. package/dist/aerl/FailurePrediction.js.map +1 -0
  42. package/dist/aerl/RecoveryEngine.d.ts +74 -0
  43. package/dist/aerl/RecoveryEngine.d.ts.map +1 -0
  44. package/dist/aerl/RecoveryEngine.js +194 -0
  45. package/dist/aerl/RecoveryEngine.js.map +1 -0
  46. package/dist/aerl/ReliabilityEngine.d.ts +74 -0
  47. package/dist/aerl/ReliabilityEngine.d.ts.map +1 -0
  48. package/dist/aerl/ReliabilityEngine.js +205 -0
  49. package/dist/aerl/ReliabilityEngine.js.map +1 -0
  50. package/dist/aerl/ReliabilityTelemetry.d.ts +118 -0
  51. package/dist/aerl/ReliabilityTelemetry.d.ts.map +1 -0
  52. package/dist/aerl/ReliabilityTelemetry.js +247 -0
  53. package/dist/aerl/ReliabilityTelemetry.js.map +1 -0
  54. package/dist/aerl/index.d.ts +170 -0
  55. package/dist/aerl/index.d.ts.map +1 -0
  56. package/dist/aerl/index.js +223 -0
  57. package/dist/aerl/index.js.map +1 -0
  58. package/dist/ambient/AmbientProtection.d.ts +79 -0
  59. package/dist/ambient/AmbientProtection.d.ts.map +1 -0
  60. package/dist/ambient/AmbientProtection.js +251 -0
  61. package/dist/ambient/AmbientProtection.js.map +1 -0
  62. package/dist/bin/start.d.ts +14 -0
  63. package/dist/bin/start.d.ts.map +1 -0
  64. package/dist/bin/start.js +54 -0
  65. package/dist/bin/start.js.map +1 -0
  66. package/dist/cli/index.d.ts +3 -0
  67. package/dist/cli/index.d.ts.map +1 -0
  68. package/dist/cli/index.js +64 -0
  69. package/dist/cli/index.js.map +1 -0
  70. package/dist/cli/outputContract.d.ts +19 -0
  71. package/dist/cli/outputContract.d.ts.map +1 -0
  72. package/dist/cli/outputContract.js +54 -0
  73. package/dist/cli/outputContract.js.map +1 -0
  74. package/dist/cli/storage.d.ts +61 -0
  75. package/dist/cli/storage.d.ts.map +1 -0
  76. package/dist/cli/storage.js +143 -0
  77. package/dist/cli/storage.js.map +1 -0
  78. package/dist/client.d.ts +29 -0
  79. package/dist/client.d.ts.map +1 -0
  80. package/dist/client.js +58 -0
  81. package/dist/client.js.map +1 -0
  82. package/dist/config/constants.d.ts +109 -0
  83. package/dist/config/constants.d.ts.map +1 -0
  84. package/dist/config/constants.js +151 -0
  85. package/dist/config/constants.js.map +1 -0
  86. package/dist/config/index.d.ts +5 -0
  87. package/dist/config/index.d.ts.map +1 -0
  88. package/dist/config/index.js +21 -0
  89. package/dist/config/index.js.map +1 -0
  90. package/dist/config/pricing.d.ts +12 -0
  91. package/dist/config/pricing.d.ts.map +1 -0
  92. package/dist/config/pricing.js +45 -0
  93. package/dist/config/pricing.js.map +1 -0
  94. package/dist/config/productionConfig.d.ts +8 -0
  95. package/dist/config/productionConfig.d.ts.map +1 -0
  96. package/dist/config/productionConfig.js +21 -0
  97. package/dist/config/productionConfig.js.map +1 -0
  98. package/dist/config/userConfig.d.ts +31 -0
  99. package/dist/config/userConfig.d.ts.map +1 -0
  100. package/dist/config/userConfig.js +116 -0
  101. package/dist/config/userConfig.js.map +1 -0
  102. package/dist/controlPlane/configServer.d.ts +7 -0
  103. package/dist/controlPlane/configServer.d.ts.map +1 -0
  104. package/dist/controlPlane/configServer.js +47 -0
  105. package/dist/controlPlane/configServer.js.map +1 -0
  106. package/dist/core/AgentBehaviorGraph.d.ts +163 -0
  107. package/dist/core/AgentBehaviorGraph.d.ts.map +1 -0
  108. package/dist/core/AgentBehaviorGraph.js +341 -0
  109. package/dist/core/AgentBehaviorGraph.js.map +1 -0
  110. package/dist/core/AlertManager.d.ts +19 -0
  111. package/dist/core/AlertManager.d.ts.map +1 -0
  112. package/dist/core/AlertManager.js +64 -0
  113. package/dist/core/AlertManager.js.map +1 -0
  114. package/dist/core/AuditTrail.d.ts +107 -0
  115. package/dist/core/AuditTrail.d.ts.map +1 -0
  116. package/dist/core/AuditTrail.js +256 -0
  117. package/dist/core/AuditTrail.js.map +1 -0
  118. package/dist/core/CostLedger.d.ts +135 -0
  119. package/dist/core/CostLedger.d.ts.map +1 -0
  120. package/dist/core/CostLedger.js +224 -0
  121. package/dist/core/CostLedger.js.map +1 -0
  122. package/dist/core/CostPredictionEngine.d.ts +110 -0
  123. package/dist/core/CostPredictionEngine.d.ts.map +1 -0
  124. package/dist/core/CostPredictionEngine.js +225 -0
  125. package/dist/core/CostPredictionEngine.js.map +1 -0
  126. package/dist/core/CostTruthEngine.d.ts +108 -0
  127. package/dist/core/CostTruthEngine.d.ts.map +1 -0
  128. package/dist/core/CostTruthEngine.js +170 -0
  129. package/dist/core/CostTruthEngine.js.map +1 -0
  130. package/dist/core/DetectionEngine.d.ts +147 -0
  131. package/dist/core/DetectionEngine.d.ts.map +1 -0
  132. package/dist/core/DetectionEngine.js +429 -0
  133. package/dist/core/DetectionEngine.js.map +1 -0
  134. package/dist/core/ExecutionInterceptor.d.ts +135 -0
  135. package/dist/core/ExecutionInterceptor.d.ts.map +1 -0
  136. package/dist/core/ExecutionInterceptor.js +285 -0
  137. package/dist/core/ExecutionInterceptor.js.map +1 -0
  138. package/dist/core/ExplainabilityLayer.d.ts +109 -0
  139. package/dist/core/ExplainabilityLayer.d.ts.map +1 -0
  140. package/dist/core/ExplainabilityLayer.js +277 -0
  141. package/dist/core/ExplainabilityLayer.js.map +1 -0
  142. package/dist/core/LearningSystem.d.ts +124 -0
  143. package/dist/core/LearningSystem.d.ts.map +1 -0
  144. package/dist/core/LearningSystem.js +294 -0
  145. package/dist/core/LearningSystem.js.map +1 -0
  146. package/dist/core/Logger.d.ts +122 -0
  147. package/dist/core/Logger.d.ts.map +1 -0
  148. package/dist/core/Logger.js +233 -0
  149. package/dist/core/Logger.js.map +1 -0
  150. package/dist/core/PolicyEngine.d.ts +148 -0
  151. package/dist/core/PolicyEngine.d.ts.map +1 -0
  152. package/dist/core/PolicyEngine.js +336 -0
  153. package/dist/core/PolicyEngine.js.map +1 -0
  154. package/dist/core/PricingConfig.d.ts +55 -0
  155. package/dist/core/PricingConfig.d.ts.map +1 -0
  156. package/dist/core/PricingConfig.js +132 -0
  157. package/dist/core/PricingConfig.js.map +1 -0
  158. package/dist/core/SessionStats.d.ts +101 -0
  159. package/dist/core/SessionStats.d.ts.map +1 -0
  160. package/dist/core/SessionStats.js +261 -0
  161. package/dist/core/SessionStats.js.map +1 -0
  162. package/dist/core/StateStore.d.ts +100 -0
  163. package/dist/core/StateStore.d.ts.map +1 -0
  164. package/dist/core/StateStore.js +336 -0
  165. package/dist/core/StateStore.js.map +1 -0
  166. package/dist/core/index.d.ts +3 -0
  167. package/dist/core/index.d.ts.map +1 -0
  168. package/dist/core/index.js +19 -0
  169. package/dist/core/index.js.map +1 -0
  170. package/dist/core/types.d.ts +26 -0
  171. package/dist/core/types.d.ts.map +1 -0
  172. package/dist/core/types.js +3 -0
  173. package/dist/core/types.js.map +1 -0
  174. package/dist/cost-guard.d.ts +41 -0
  175. package/dist/cost-guard.d.ts.map +1 -0
  176. package/dist/cost-guard.js +274 -0
  177. package/dist/cost-guard.js.map +1 -0
  178. package/dist/dashboard/roiDashboard.d.ts +12 -0
  179. package/dist/dashboard/roiDashboard.d.ts.map +1 -0
  180. package/dist/dashboard/roiDashboard.js +28 -0
  181. package/dist/dashboard/roiDashboard.js.map +1 -0
  182. package/dist/demo/compareExecution.d.ts +9 -0
  183. package/dist/demo/compareExecution.d.ts.map +1 -0
  184. package/dist/demo/compareExecution.js +43 -0
  185. package/dist/demo/compareExecution.js.map +1 -0
  186. package/dist/demo/demoRunner.d.ts +16 -0
  187. package/dist/demo/demoRunner.d.ts.map +1 -0
  188. package/dist/demo/demoRunner.js +73 -0
  189. package/dist/demo/demoRunner.js.map +1 -0
  190. package/dist/firewall/costEstimator.d.ts +3 -0
  191. package/dist/firewall/costEstimator.d.ts.map +1 -0
  192. package/dist/firewall/costEstimator.js +22 -0
  193. package/dist/firewall/costEstimator.js.map +1 -0
  194. package/dist/firewall/executionGuard.d.ts +18 -0
  195. package/dist/firewall/executionGuard.d.ts.map +1 -0
  196. package/dist/firewall/executionGuard.js +80 -0
  197. package/dist/firewall/executionGuard.js.map +1 -0
  198. package/dist/firewall/loopDetector.d.ts +13 -0
  199. package/dist/firewall/loopDetector.d.ts.map +1 -0
  200. package/dist/firewall/loopDetector.js +24 -0
  201. package/dist/firewall/loopDetector.js.map +1 -0
  202. package/dist/firewall/policy.d.ts +4 -0
  203. package/dist/firewall/policy.d.ts.map +1 -0
  204. package/dist/firewall/policy.js +16 -0
  205. package/dist/firewall/policy.js.map +1 -0
  206. package/dist/firewall/types.d.ts +38 -0
  207. package/dist/firewall/types.d.ts.map +1 -0
  208. package/dist/firewall/types.js +3 -0
  209. package/dist/firewall/types.js.map +1 -0
  210. package/dist/index.d.ts +40 -0
  211. package/dist/index.d.ts.map +1 -0
  212. package/dist/index.js +76 -0
  213. package/dist/index.js.map +1 -0
  214. package/dist/logger/console.d.ts +27 -0
  215. package/dist/logger/console.d.ts.map +1 -0
  216. package/dist/logger/console.js +68 -0
  217. package/dist/logger/console.js.map +1 -0
  218. package/dist/logger/database.d.ts +40 -0
  219. package/dist/logger/database.d.ts.map +1 -0
  220. package/dist/logger/database.js +127 -0
  221. package/dist/logger/database.js.map +1 -0
  222. package/dist/logger/index.d.ts +3 -0
  223. package/dist/logger/index.d.ts.map +1 -0
  224. package/dist/logger/index.js +11 -0
  225. package/dist/logger/index.js.map +1 -0
  226. package/dist/loop-shield.d.ts +48 -0
  227. package/dist/loop-shield.d.ts.map +1 -0
  228. package/dist/loop-shield.js +436 -0
  229. package/dist/loop-shield.js.map +1 -0
  230. package/dist/metrics/BusinessMetricsEngine.d.ts +109 -0
  231. package/dist/metrics/BusinessMetricsEngine.d.ts.map +1 -0
  232. package/dist/metrics/BusinessMetricsEngine.js +222 -0
  233. package/dist/metrics/BusinessMetricsEngine.js.map +1 -0
  234. package/dist/metrics/index.d.ts +11 -0
  235. package/dist/metrics/index.d.ts.map +1 -0
  236. package/dist/metrics/index.js +17 -0
  237. package/dist/metrics/index.js.map +1 -0
  238. package/dist/middleware/expressFirewall.d.ts +51 -0
  239. package/dist/middleware/expressFirewall.d.ts.map +1 -0
  240. package/dist/middleware/expressFirewall.js +140 -0
  241. package/dist/middleware/expressFirewall.js.map +1 -0
  242. package/dist/middleware/index.d.ts +8 -0
  243. package/dist/middleware/index.d.ts.map +1 -0
  244. package/dist/middleware/index.js +15 -0
  245. package/dist/middleware/index.js.map +1 -0
  246. package/dist/middleware/withFirewall.d.ts +50 -0
  247. package/dist/middleware/withFirewall.d.ts.map +1 -0
  248. package/dist/middleware/withFirewall.js +155 -0
  249. package/dist/middleware/withFirewall.js.map +1 -0
  250. package/dist/observability/logger.d.ts +14 -0
  251. package/dist/observability/logger.d.ts.map +1 -0
  252. package/dist/observability/logger.js +21 -0
  253. package/dist/observability/logger.js.map +1 -0
  254. package/dist/observability/metrics.d.ts +17 -0
  255. package/dist/observability/metrics.d.ts.map +1 -0
  256. package/dist/observability/metrics.js +36 -0
  257. package/dist/observability/metrics.js.map +1 -0
  258. package/dist/os/ExecutionOS.d.ts +220 -0
  259. package/dist/os/ExecutionOS.d.ts.map +1 -0
  260. package/dist/os/ExecutionOS.js +398 -0
  261. package/dist/os/ExecutionOS.js.map +1 -0
  262. package/dist/os/GlobalIntelligence.d.ts +154 -0
  263. package/dist/os/GlobalIntelligence.d.ts.map +1 -0
  264. package/dist/os/GlobalIntelligence.js +374 -0
  265. package/dist/os/GlobalIntelligence.js.map +1 -0
  266. package/dist/os/PolicyMarketplace.d.ts +192 -0
  267. package/dist/os/PolicyMarketplace.d.ts.map +1 -0
  268. package/dist/os/PolicyMarketplace.js +384 -0
  269. package/dist/os/PolicyMarketplace.js.map +1 -0
  270. package/dist/os/SDKInterception.d.ts +115 -0
  271. package/dist/os/SDKInterception.d.ts.map +1 -0
  272. package/dist/os/SDKInterception.js +317 -0
  273. package/dist/os/SDKInterception.js.map +1 -0
  274. package/dist/os/index.d.ts +60 -0
  275. package/dist/os/index.d.ts.map +1 -0
  276. package/dist/os/index.js +82 -0
  277. package/dist/os/index.js.map +1 -0
  278. package/dist/proxy/index.d.ts +2 -0
  279. package/dist/proxy/index.d.ts.map +1 -0
  280. package/dist/proxy/index.js +18 -0
  281. package/dist/proxy/index.js.map +1 -0
  282. package/dist/proxy/server.d.ts +24 -0
  283. package/dist/proxy/server.d.ts.map +1 -0
  284. package/dist/proxy/server.js +395 -0
  285. package/dist/proxy/server.js.map +1 -0
  286. package/dist/public/BenchmarksPage.d.ts +60 -0
  287. package/dist/public/BenchmarksPage.d.ts.map +1 -0
  288. package/dist/public/BenchmarksPage.js +397 -0
  289. package/dist/public/BenchmarksPage.js.map +1 -0
  290. package/dist/public/DocsPage.d.ts +11 -0
  291. package/dist/public/DocsPage.d.ts.map +1 -0
  292. package/dist/public/DocsPage.js +496 -0
  293. package/dist/public/DocsPage.js.map +1 -0
  294. package/dist/public/StatusPage.d.ts +55 -0
  295. package/dist/public/StatusPage.d.ts.map +1 -0
  296. package/dist/public/StatusPage.js +344 -0
  297. package/dist/public/StatusPage.js.map +1 -0
  298. package/dist/public/index.d.ts +12 -0
  299. package/dist/public/index.d.ts.map +1 -0
  300. package/dist/public/index.js +20 -0
  301. package/dist/public/index.js.map +1 -0
  302. package/dist/replacements/axios.d.ts +14 -0
  303. package/dist/replacements/axios.d.ts.map +1 -0
  304. package/dist/replacements/axios.js +35 -0
  305. package/dist/replacements/axios.js.map +1 -0
  306. package/dist/replacements/fetch.d.ts +13 -0
  307. package/dist/replacements/fetch.d.ts.map +1 -0
  308. package/dist/replacements/fetch.js +20 -0
  309. package/dist/replacements/fetch.js.map +1 -0
  310. package/dist/replacements/openai.d.ts +14 -0
  311. package/dist/replacements/openai.d.ts.map +1 -0
  312. package/dist/replacements/openai.js +22 -0
  313. package/dist/replacements/openai.js.map +1 -0
  314. package/dist/saas/CostExplosionDemo.d.ts +56 -0
  315. package/dist/saas/CostExplosionDemo.d.ts.map +1 -0
  316. package/dist/saas/CostExplosionDemo.js +190 -0
  317. package/dist/saas/CostExplosionDemo.js.map +1 -0
  318. package/dist/saas/LiveProtection.d.ts +61 -0
  319. package/dist/saas/LiveProtection.d.ts.map +1 -0
  320. package/dist/saas/LiveProtection.js +187 -0
  321. package/dist/saas/LiveProtection.js.map +1 -0
  322. package/dist/saas/ProductionSaaS.d.ts +56 -0
  323. package/dist/saas/ProductionSaaS.d.ts.map +1 -0
  324. package/dist/saas/ProductionSaaS.js +831 -0
  325. package/dist/saas/ProductionSaaS.js.map +1 -0
  326. package/dist/saas/SaaSServer.d.ts +50 -0
  327. package/dist/saas/SaaSServer.d.ts.map +1 -0
  328. package/dist/saas/SaaSServer.js +669 -0
  329. package/dist/saas/SaaSServer.js.map +1 -0
  330. package/dist/saas/UserStore.d.ts +49 -0
  331. package/dist/saas/UserStore.d.ts.map +1 -0
  332. package/dist/saas/UserStore.js +137 -0
  333. package/dist/saas/UserStore.js.map +1 -0
  334. package/dist/saas/billingMetrics.d.ts +14 -0
  335. package/dist/saas/billingMetrics.d.ts.map +1 -0
  336. package/dist/saas/billingMetrics.js +23 -0
  337. package/dist/saas/billingMetrics.js.map +1 -0
  338. package/dist/saas/index.d.ts +12 -0
  339. package/dist/saas/index.d.ts.map +1 -0
  340. package/dist/saas/index.js +23 -0
  341. package/dist/saas/index.js.map +1 -0
  342. package/dist/saas/telemetry.d.ts +24 -0
  343. package/dist/saas/telemetry.d.ts.map +1 -0
  344. package/dist/saas/telemetry.js +30 -0
  345. package/dist/saas/telemetry.js.map +1 -0
  346. package/dist/saas/usageMeter.d.ts +28 -0
  347. package/dist/saas/usageMeter.d.ts.map +1 -0
  348. package/dist/saas/usageMeter.js +41 -0
  349. package/dist/saas/usageMeter.js.map +1 -0
  350. package/dist/security/TrustBoundaryValidator.d.ts +105 -0
  351. package/dist/security/TrustBoundaryValidator.d.ts.map +1 -0
  352. package/dist/security/TrustBoundaryValidator.js +305 -0
  353. package/dist/security/TrustBoundaryValidator.js.map +1 -0
  354. package/dist/starters/express-protected.d.ts +18 -0
  355. package/dist/starters/express-protected.d.ts.map +1 -0
  356. package/dist/starters/express-protected.js +93 -0
  357. package/dist/starters/express-protected.js.map +1 -0
  358. package/dist/starters/langchain-protected.d.ts +18 -0
  359. package/dist/starters/langchain-protected.d.ts.map +1 -0
  360. package/dist/starters/langchain-protected.js +85 -0
  361. package/dist/starters/langchain-protected.js.map +1 -0
  362. package/dist/starters/openai-protected.d.ts +19 -0
  363. package/dist/starters/openai-protected.d.ts.map +1 -0
  364. package/dist/starters/openai-protected.js +84 -0
  365. package/dist/starters/openai-protected.js.map +1 -0
  366. package/dist/starters/serverless-protected.d.ts +19 -0
  367. package/dist/starters/serverless-protected.d.ts.map +1 -0
  368. package/dist/starters/serverless-protected.js +83 -0
  369. package/dist/starters/serverless-protected.js.map +1 -0
  370. package/dist/storage/adapters.d.ts +24 -0
  371. package/dist/storage/adapters.d.ts.map +1 -0
  372. package/dist/storage/adapters.js +123 -0
  373. package/dist/storage/adapters.js.map +1 -0
  374. package/dist/storage/index.d.ts +2 -0
  375. package/dist/storage/index.d.ts.map +1 -0
  376. package/dist/storage/index.js +8 -0
  377. package/dist/storage/index.js.map +1 -0
  378. package/dist/tests/b2b-hardening.test.d.ts +2 -0
  379. package/dist/tests/b2b-hardening.test.d.ts.map +1 -0
  380. package/dist/tests/b2b-hardening.test.js +164 -0
  381. package/dist/tests/b2b-hardening.test.js.map +1 -0
  382. package/dist/tests/cli.contract.test.d.ts +2 -0
  383. package/dist/tests/cli.contract.test.d.ts.map +1 -0
  384. package/dist/tests/cli.contract.test.js +28 -0
  385. package/dist/tests/cli.contract.test.js.map +1 -0
  386. package/dist/tests/cli.snapshot.test.d.ts +14 -0
  387. package/dist/tests/cli.snapshot.test.d.ts.map +1 -0
  388. package/dist/tests/cli.snapshot.test.js +132 -0
  389. package/dist/tests/cli.snapshot.test.js.map +1 -0
  390. package/dist/tests/cli.strict.test.d.ts +6 -0
  391. package/dist/tests/cli.strict.test.d.ts.map +1 -0
  392. package/dist/tests/cli.strict.test.js +173 -0
  393. package/dist/tests/cli.strict.test.js.map +1 -0
  394. package/dist/tests/cli.test.d.ts +5 -0
  395. package/dist/tests/cli.test.d.ts.map +1 -0
  396. package/dist/tests/cli.test.js +54 -0
  397. package/dist/tests/cli.test.js.map +1 -0
  398. package/dist/tests/concurrency.state.test.d.ts +6 -0
  399. package/dist/tests/concurrency.state.test.d.ts.map +1 -0
  400. package/dist/tests/concurrency.state.test.js +231 -0
  401. package/dist/tests/concurrency.state.test.js.map +1 -0
  402. package/dist/tests/detection-engine.strict.test.d.ts +6 -0
  403. package/dist/tests/detection-engine.strict.test.d.ts.map +1 -0
  404. package/dist/tests/detection-engine.strict.test.js +323 -0
  405. package/dist/tests/detection-engine.strict.test.js.map +1 -0
  406. package/dist/tests/e2e.system.test.d.ts +7 -0
  407. package/dist/tests/e2e.system.test.d.ts.map +1 -0
  408. package/dist/tests/e2e.system.test.js +189 -0
  409. package/dist/tests/e2e.system.test.js.map +1 -0
  410. package/dist/tests/edge-cases.test.d.ts +6 -0
  411. package/dist/tests/edge-cases.test.d.ts.map +1 -0
  412. package/dist/tests/edge-cases.test.js +357 -0
  413. package/dist/tests/edge-cases.test.js.map +1 -0
  414. package/dist/tests/performance.benchmark.test.d.ts +2 -0
  415. package/dist/tests/performance.benchmark.test.d.ts.map +1 -0
  416. package/dist/tests/performance.benchmark.test.js +24 -0
  417. package/dist/tests/performance.benchmark.test.js.map +1 -0
  418. package/dist/tests/proxy.production.test.d.ts +6 -0
  419. package/dist/tests/proxy.production.test.d.ts.map +1 -0
  420. package/dist/tests/proxy.production.test.js +274 -0
  421. package/dist/tests/proxy.production.test.js.map +1 -0
  422. package/dist/tests/proxy.strict.test.d.ts +6 -0
  423. package/dist/tests/proxy.strict.test.d.ts.map +1 -0
  424. package/dist/tests/proxy.strict.test.js +188 -0
  425. package/dist/tests/proxy.strict.test.js.map +1 -0
  426. package/dist/tests/proxy.test.d.ts +5 -0
  427. package/dist/tests/proxy.test.d.ts.map +1 -0
  428. package/dist/tests/proxy.test.js +61 -0
  429. package/dist/tests/proxy.test.js.map +1 -0
  430. package/dist/tests/roi.scenario.test.d.ts +2 -0
  431. package/dist/tests/roi.scenario.test.d.ts.map +1 -0
  432. package/dist/tests/roi.scenario.test.js +26 -0
  433. package/dist/tests/roi.scenario.test.js.map +1 -0
  434. package/dist/tests/server.contract.test.d.ts +6 -0
  435. package/dist/tests/server.contract.test.d.ts.map +1 -0
  436. package/dist/tests/server.contract.test.js +48 -0
  437. package/dist/tests/server.contract.test.js.map +1 -0
  438. package/dist/tests/tokenCounter.test.d.ts +5 -0
  439. package/dist/tests/tokenCounter.test.d.ts.map +1 -0
  440. package/dist/tests/tokenCounter.test.js +66 -0
  441. package/dist/tests/tokenCounter.test.js.map +1 -0
  442. package/dist/tests/v113/client.test.d.ts +2 -0
  443. package/dist/tests/v113/client.test.d.ts.map +1 -0
  444. package/dist/tests/v113/client.test.js +22 -0
  445. package/dist/tests/v113/client.test.js.map +1 -0
  446. package/dist/tests/v113/executionGuard.test.d.ts +2 -0
  447. package/dist/tests/v113/executionGuard.test.d.ts.map +1 -0
  448. package/dist/tests/v113/executionGuard.test.js +39 -0
  449. package/dist/tests/v113/executionGuard.test.js.map +1 -0
  450. package/dist/token-counter/index.d.ts +2 -0
  451. package/dist/token-counter/index.d.ts.map +1 -0
  452. package/dist/token-counter/index.js +18 -0
  453. package/dist/token-counter/index.js.map +1 -0
  454. package/dist/token-counter/tokenCounter.d.ts +18 -0
  455. package/dist/token-counter/tokenCounter.d.ts.map +1 -0
  456. package/dist/token-counter/tokenCounter.js +91 -0
  457. package/dist/token-counter/tokenCounter.js.map +1 -0
  458. package/dist/trust/ImmutableAudit.d.ts +159 -0
  459. package/dist/trust/ImmutableAudit.d.ts.map +1 -0
  460. package/dist/trust/ImmutableAudit.js +340 -0
  461. package/dist/trust/ImmutableAudit.js.map +1 -0
  462. package/dist/trust/PublicVerificationLedger.d.ts +91 -0
  463. package/dist/trust/PublicVerificationLedger.d.ts.map +1 -0
  464. package/dist/trust/PublicVerificationLedger.js +223 -0
  465. package/dist/trust/PublicVerificationLedger.js.map +1 -0
  466. package/dist/trust/index.d.ts +11 -0
  467. package/dist/trust/index.d.ts.map +1 -0
  468. package/dist/trust/index.js +20 -0
  469. package/dist/trust/index.js.map +1 -0
  470. package/dist/utils/alert.d.ts +13 -0
  471. package/dist/utils/alert.d.ts.map +1 -0
  472. package/dist/utils/alert.js +49 -0
  473. package/dist/utils/alert.js.map +1 -0
  474. package/dist/utils/index.d.ts +2 -0
  475. package/dist/utils/index.d.ts.map +1 -0
  476. package/dist/utils/index.js +18 -0
  477. package/dist/utils/index.js.map +1 -0
  478. package/dist/wrapper/aiFirewall.d.ts +61 -0
  479. package/dist/wrapper/aiFirewall.d.ts.map +1 -0
  480. package/dist/wrapper/aiFirewall.js +117 -0
  481. package/dist/wrapper/aiFirewall.js.map +1 -0
  482. package/dist/wrapper/index.d.ts +3 -0
  483. package/dist/wrapper/index.d.ts.map +1 -0
  484. package/dist/wrapper/index.js +21 -0
  485. package/dist/wrapper/index.js.map +1 -0
  486. package/dist/wrapper/sdk.d.ts +49 -0
  487. package/dist/wrapper/sdk.d.ts.map +1 -0
  488. package/dist/wrapper/sdk.js +140 -0
  489. package/dist/wrapper/sdk.js.map +1 -0
  490. package/package.json +84 -0
@@ -0,0 +1,49 @@
1
+ /**
2
+ * UserStore.ts - SaaS User Management
3
+ *
4
+ * Minimal, focused user system:
5
+ * - Email OR anonymous accounts
6
+ * - API key generation
7
+ * - Session management
8
+ * - Usage tracking per user
9
+ */
10
+ export interface User {
11
+ id: string;
12
+ email: string | null;
13
+ anonymous: boolean;
14
+ createdAt: number;
15
+ lastActiveAt: number;
16
+ }
17
+ export interface ApiKey {
18
+ id: string;
19
+ userId: string;
20
+ key: string;
21
+ name: string;
22
+ createdAt: number;
23
+ lastUsedAt: number | null;
24
+ }
25
+ export interface Session {
26
+ token: string;
27
+ userId: string;
28
+ createdAt: number;
29
+ expiresAt: number;
30
+ }
31
+ export declare class UserStore {
32
+ private users;
33
+ private apiKeys;
34
+ private sessions;
35
+ private emailIndex;
36
+ createUser(email: string): User;
37
+ createAnonymousUser(): User;
38
+ findByEmail(email: string): User | undefined;
39
+ getUser(id: string): User | undefined;
40
+ createApiKey(userId: string, name: string): ApiKey;
41
+ getApiKeys(userId: string): ApiKey[];
42
+ findApiKey(key: string): ApiKey | undefined;
43
+ updateApiKeyLastUsed(id: string): void;
44
+ createSession(userId: string): Session;
45
+ getSession(token: string): Session | undefined;
46
+ private generateId;
47
+ }
48
+ export declare const userStore: UserStore;
49
+ //# sourceMappingURL=UserStore.d.ts.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"UserStore.d.ts","sourceRoot":"","sources":["../../src/saas/UserStore.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,SAAS,EAAE,OAAO,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED,MAAM,WAAW,OAAO;IACtB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,qBAAa,SAAS;IACpB,OAAO,CAAC,KAAK,CAAgC;IAC7C,OAAO,CAAC,OAAO,CAAkC;IACjD,OAAO,CAAC,QAAQ,CAAmC;IACnD,OAAO,CAAC,UAAU,CAAkC;IAEpD,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI;IAiB/B,mBAAmB,IAAI,IAAI;IAgB3B,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS;IAK5C,OAAO,CAAC,EAAE,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS;IAIrC,YAAY,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,MAAM;IAiBlD,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE;IAMpC,UAAU,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS;IAI3C,oBAAoB,CAAC,EAAE,EAAE,MAAM,GAAG,IAAI;IAKtC,aAAa,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAgBtC,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,GAAG,SAAS;IAI9C,OAAO,CAAC,UAAU;CAGnB;AAED,eAAO,MAAM,SAAS,WAAkB,CAAC"}
@@ -0,0 +1,137 @@
1
+ "use strict";
2
+ /**
3
+ * UserStore.ts - SaaS User Management
4
+ *
5
+ * Minimal, focused user system:
6
+ * - Email OR anonymous accounts
7
+ * - API key generation
8
+ * - Session management
9
+ * - Usage tracking per user
10
+ */
11
+ var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
12
+ if (k2 === undefined) k2 = k;
13
+ var desc = Object.getOwnPropertyDescriptor(m, k);
14
+ if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
15
+ desc = { enumerable: true, get: function() { return m[k]; } };
16
+ }
17
+ Object.defineProperty(o, k2, desc);
18
+ }) : (function(o, m, k, k2) {
19
+ if (k2 === undefined) k2 = k;
20
+ o[k2] = m[k];
21
+ }));
22
+ var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
23
+ Object.defineProperty(o, "default", { enumerable: true, value: v });
24
+ }) : function(o, v) {
25
+ o["default"] = v;
26
+ });
27
+ var __importStar = (this && this.__importStar) || (function () {
28
+ var ownKeys = function(o) {
29
+ ownKeys = Object.getOwnPropertyNames || function (o) {
30
+ var ar = [];
31
+ for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
32
+ return ar;
33
+ };
34
+ return ownKeys(o);
35
+ };
36
+ return function (mod) {
37
+ if (mod && mod.__esModule) return mod;
38
+ var result = {};
39
+ if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
40
+ __setModuleDefault(result, mod);
41
+ return result;
42
+ };
43
+ })();
44
+ Object.defineProperty(exports, "__esModule", { value: true });
45
+ exports.userStore = exports.UserStore = void 0;
46
+ const crypto = __importStar(require("crypto"));
47
+ class UserStore {
48
+ constructor() {
49
+ this.users = new Map();
50
+ this.apiKeys = new Map();
51
+ this.sessions = new Map();
52
+ this.emailIndex = new Map();
53
+ }
54
+ createUser(email) {
55
+ const id = this.generateId();
56
+ const now = Date.now();
57
+ const user = {
58
+ id,
59
+ email,
60
+ anonymous: false,
61
+ createdAt: now,
62
+ lastActiveAt: now,
63
+ };
64
+ this.users.set(id, user);
65
+ this.emailIndex.set(email, id);
66
+ return user;
67
+ }
68
+ createAnonymousUser() {
69
+ const id = this.generateId();
70
+ const now = Date.now();
71
+ const user = {
72
+ id,
73
+ email: null,
74
+ anonymous: true,
75
+ createdAt: now,
76
+ lastActiveAt: now,
77
+ };
78
+ this.users.set(id, user);
79
+ return user;
80
+ }
81
+ findByEmail(email) {
82
+ const id = this.emailIndex.get(email);
83
+ return id ? this.users.get(id) : undefined;
84
+ }
85
+ getUser(id) {
86
+ return this.users.get(id);
87
+ }
88
+ createApiKey(userId, name) {
89
+ const id = this.generateId();
90
+ const key = 'ak_live_' + crypto.randomBytes(24).toString('base64url');
91
+ const apiKey = {
92
+ id,
93
+ userId,
94
+ key,
95
+ name,
96
+ createdAt: Date.now(),
97
+ lastUsedAt: null,
98
+ };
99
+ this.apiKeys.set(id, apiKey);
100
+ return apiKey;
101
+ }
102
+ getApiKeys(userId) {
103
+ return Array.from(this.apiKeys.values())
104
+ .filter(k => k.userId === userId)
105
+ .sort((a, b) => b.createdAt - a.createdAt);
106
+ }
107
+ findApiKey(key) {
108
+ return Array.from(this.apiKeys.values()).find(k => k.key === key);
109
+ }
110
+ updateApiKeyLastUsed(id) {
111
+ const key = this.apiKeys.get(id);
112
+ if (key)
113
+ key.lastUsedAt = Date.now();
114
+ }
115
+ createSession(userId) {
116
+ const token = crypto.randomBytes(32).toString('base64url');
117
+ const now = Date.now();
118
+ const expiresAt = now + (7 * 24 * 60 * 60 * 1000); // 7 days
119
+ const session = {
120
+ token,
121
+ userId,
122
+ createdAt: now,
123
+ expiresAt,
124
+ };
125
+ this.sessions.set(token, session);
126
+ return session;
127
+ }
128
+ getSession(token) {
129
+ return this.sessions.get(token);
130
+ }
131
+ generateId() {
132
+ return crypto.randomBytes(12).toString('base64url');
133
+ }
134
+ }
135
+ exports.UserStore = UserStore;
136
+ exports.userStore = new UserStore();
137
+ //# sourceMappingURL=UserStore.js.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"UserStore.js","sourceRoot":"","sources":["../../src/saas/UserStore.ts"],"names":[],"mappings":";AAAA;;;;;;;;GAQG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,+CAAiC;AA0BjC,MAAa,SAAS;IAAtB;QACU,UAAK,GAAsB,IAAI,GAAG,EAAE,CAAC;QACrC,YAAO,GAAwB,IAAI,GAAG,EAAE,CAAC;QACzC,aAAQ,GAAyB,IAAI,GAAG,EAAE,CAAC;QAC3C,eAAU,GAAwB,IAAI,GAAG,EAAE,CAAC;IAmGtD,CAAC;IAjGC,UAAU,CAAC,KAAa;QACtB,MAAM,EAAE,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;QAC7B,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,MAAM,IAAI,GAAS;YACjB,EAAE;YACF,KAAK;YACL,SAAS,EAAE,KAAK;YAChB,SAAS,EAAE,GAAG;YACd,YAAY,EAAE,GAAG;SAClB,CAAC;QAEF,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;QACzB,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAC/B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,mBAAmB;QACjB,MAAM,EAAE,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;QAC7B,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAEvB,MAAM,IAAI,GAAS;YACjB,EAAE;YACF,KAAK,EAAE,IAAI;YACX,SAAS,EAAE,IAAI;YACf,SAAS,EAAE,GAAG;YACd,YAAY,EAAE,GAAG;SAClB,CAAC;QAEF,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,CAAC,CAAC;QACzB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,WAAW,CAAC,KAAa;QACvB,MAAM,EAAE,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACtC,OAAO,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC7C,CAAC;IAED,OAAO,CAAC,EAAU;QAChB,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAC5B,CAAC;IAED,YAAY,CAAC,MAAc,EAAE,IAAY;QACvC,MAAM,EAAE,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC;QAC7B,MAAM,GAAG,GAAG,UAAU,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAEtE,MAAM,MAAM,GAAW;YACrB,EAAE;YACF,MAAM;YACN,GAAG;YACH,IAAI;YACJ,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;YACrB,UAAU,EAAE,IAAI;SACjB,CAAC;QAEF,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QAC7B,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,UAAU,CAAC,MAAc;QACvB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;aACrC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC;aAChC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC;IAC/C,CAAC;IAED,UAAU,CAAC,GAAW;QACpB,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC;IACpE,CAAC;IAED,oBAAoB,CAAC,EAAU;QAC7B,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACjC,IAAI,GAAG;YAAE,GAAG,CAAC,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvC,CAAC;IAED,aAAa,CAAC,MAAc;QAC1B,MAAM,KAAK,GAAG,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;QAC3D,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,SAAS,GAAG,GAAG,GAAG,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC,SAAS;QAE5D,MAAM,OAAO,GAAY;YACvB,KAAK;YACL,MAAM;YACN,SAAS,EAAE,GAAG;YACd,SAAS;SACV,CAAC;QAEF,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;QAClC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,UAAU,CAAC,KAAa;QACtB,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAEO,UAAU;QAChB,OAAO,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACtD,CAAC;CACF;AAvGD,8BAuGC;AAEY,QAAA,SAAS,GAAG,IAAI,SAAS,EAAE,CAAC"}
@@ -0,0 +1,14 @@
1
+ import { TelemetryStore } from './telemetry';
2
+ import { UsageSnapshot } from './usageMeter';
3
+ export interface DashboardMetrics {
4
+ apiKey: string;
5
+ totalSavedUsd: number;
6
+ estimatedSpendUsd: number;
7
+ roiRatio: number;
8
+ blockedVsAllowedRatio: number;
9
+ }
10
+ export declare class BillingMetrics {
11
+ compute(apiKey: string, telemetry: TelemetryStore, usage: UsageSnapshot, monthlyProductCostUsd?: number): DashboardMetrics;
12
+ exportDashboardJson(metrics: DashboardMetrics): string;
13
+ }
14
+ //# sourceMappingURL=billingMetrics.d.ts.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"billingMetrics.d.ts","sourceRoot":"","sources":["../../src/saas/billingMetrics.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAE7C,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,MAAM,CAAC;IACtB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,qBAAqB,EAAE,MAAM,CAAC;CAC/B;AAED,qBAAa,cAAc;IACzB,OAAO,CACL,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,cAAc,EACzB,KAAK,EAAE,aAAa,EACpB,qBAAqB,SAAK,GACzB,gBAAgB;IAenB,mBAAmB,CAAC,OAAO,EAAE,gBAAgB,GAAG,MAAM;CAGvD"}
@@ -0,0 +1,23 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.BillingMetrics = void 0;
4
+ class BillingMetrics {
5
+ compute(apiKey, telemetry, usage, monthlyProductCostUsd = 99) {
6
+ const summary = telemetry.getSummary();
7
+ const totalSavedUsd = summary.costSavedEstimateUsd;
8
+ const estimatedSpendUsd = usage.monthlyCostUsd;
9
+ const roiRatio = monthlyProductCostUsd === 0 ? 0 : totalSavedUsd / monthlyProductCostUsd;
10
+ return {
11
+ apiKey,
12
+ totalSavedUsd: Number(totalSavedUsd.toFixed(6)),
13
+ estimatedSpendUsd: Number(estimatedSpendUsd.toFixed(6)),
14
+ roiRatio: Number(roiRatio.toFixed(4)),
15
+ blockedVsAllowedRatio: Number(summary.blockedVsAllowedRatio.toFixed(4)),
16
+ };
17
+ }
18
+ exportDashboardJson(metrics) {
19
+ return JSON.stringify(metrics, null, 2);
20
+ }
21
+ }
22
+ exports.BillingMetrics = BillingMetrics;
23
+ //# sourceMappingURL=billingMetrics.js.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"billingMetrics.js","sourceRoot":"","sources":["../../src/saas/billingMetrics.ts"],"names":[],"mappings":";;;AAWA,MAAa,cAAc;IACzB,OAAO,CACL,MAAc,EACd,SAAyB,EACzB,KAAoB,EACpB,qBAAqB,GAAG,EAAE;QAE1B,MAAM,OAAO,GAAG,SAAS,CAAC,UAAU,EAAE,CAAC;QACvC,MAAM,aAAa,GAAG,OAAO,CAAC,oBAAoB,CAAC;QACnD,MAAM,iBAAiB,GAAG,KAAK,CAAC,cAAc,CAAC;QAC/C,MAAM,QAAQ,GAAG,qBAAqB,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,aAAa,GAAG,qBAAqB,CAAC;QAEzF,OAAO;YACL,MAAM;YACN,aAAa,EAAE,MAAM,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC/C,iBAAiB,EAAE,MAAM,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YACvD,QAAQ,EAAE,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YACrC,qBAAqB,EAAE,MAAM,CAAC,OAAO,CAAC,qBAAqB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;SACxE,CAAC;IACJ,CAAC;IAED,mBAAmB,CAAC,OAAyB;QAC3C,OAAO,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAC1C,CAAC;CACF;AAxBD,wCAwBC"}
@@ -0,0 +1,12 @@
1
+ /**
2
+ * SaaS Layer - Production AI Cost Protection Infrastructure
3
+ *
4
+ * Production-grade infrastructure:
5
+ * - ProductionSaaS: Enterprise API server
6
+ * - LiveProtection: Real-time interception engine
7
+ * - UserStore: Account management
8
+ */
9
+ export { ProductionSaaS, SaaSConfig, productionSaaS, startProductionSaaS, } from './ProductionSaaS';
10
+ export { UserStore, User, ApiKey, Session, userStore, } from './UserStore';
11
+ export { runLiveProtection, ProtectionResult, ProtectionMode, getLiveProtectionConfig, setProtectionMode, } from './LiveProtection';
12
+ //# sourceMappingURL=index.d.ts.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/saas/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EACL,cAAc,EACd,UAAU,EACV,cAAc,EACd,mBAAmB,GACpB,MAAM,kBAAkB,CAAC;AAE1B,OAAO,EACL,SAAS,EACT,IAAI,EACJ,MAAM,EACN,OAAO,EACP,SAAS,GACV,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,iBAAiB,EACjB,gBAAgB,EAChB,cAAc,EACd,uBAAuB,EACvB,iBAAiB,GAClB,MAAM,kBAAkB,CAAC"}
@@ -0,0 +1,23 @@
1
+ "use strict";
2
+ /**
3
+ * SaaS Layer - Production AI Cost Protection Infrastructure
4
+ *
5
+ * Production-grade infrastructure:
6
+ * - ProductionSaaS: Enterprise API server
7
+ * - LiveProtection: Real-time interception engine
8
+ * - UserStore: Account management
9
+ */
10
+ Object.defineProperty(exports, "__esModule", { value: true });
11
+ exports.setProtectionMode = exports.getLiveProtectionConfig = exports.runLiveProtection = exports.userStore = exports.UserStore = exports.startProductionSaaS = exports.productionSaaS = exports.ProductionSaaS = void 0;
12
+ var ProductionSaaS_1 = require("./ProductionSaaS");
13
+ Object.defineProperty(exports, "ProductionSaaS", { enumerable: true, get: function () { return ProductionSaaS_1.ProductionSaaS; } });
14
+ Object.defineProperty(exports, "productionSaaS", { enumerable: true, get: function () { return ProductionSaaS_1.productionSaaS; } });
15
+ Object.defineProperty(exports, "startProductionSaaS", { enumerable: true, get: function () { return ProductionSaaS_1.startProductionSaaS; } });
16
+ var UserStore_1 = require("./UserStore");
17
+ Object.defineProperty(exports, "UserStore", { enumerable: true, get: function () { return UserStore_1.UserStore; } });
18
+ Object.defineProperty(exports, "userStore", { enumerable: true, get: function () { return UserStore_1.userStore; } });
19
+ var LiveProtection_1 = require("./LiveProtection");
20
+ Object.defineProperty(exports, "runLiveProtection", { enumerable: true, get: function () { return LiveProtection_1.runLiveProtection; } });
21
+ Object.defineProperty(exports, "getLiveProtectionConfig", { enumerable: true, get: function () { return LiveProtection_1.getLiveProtectionConfig; } });
22
+ Object.defineProperty(exports, "setProtectionMode", { enumerable: true, get: function () { return LiveProtection_1.setProtectionMode; } });
23
+ //# sourceMappingURL=index.js.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/saas/index.ts"],"names":[],"mappings":";AAAA;;;;;;;GAOG;;;AAEH,mDAK0B;AAJxB,gHAAA,cAAc,OAAA;AAEd,gHAAA,cAAc,OAAA;AACd,qHAAA,mBAAmB,OAAA;AAGrB,yCAMqB;AALnB,sGAAA,SAAS,OAAA;AAIT,sGAAA,SAAS,OAAA;AAGX,mDAM0B;AALxB,mHAAA,iBAAiB,OAAA;AAGjB,yHAAA,uBAAuB,OAAA;AACvB,mHAAA,iBAAiB,OAAA"}
@@ -0,0 +1,24 @@
1
+ import { GuardDecision } from '../firewall/types';
2
+ export interface TelemetryEvent {
3
+ apiKey: string;
4
+ requestId: string;
5
+ decision: GuardDecision;
6
+ estimatedCostUsd: number;
7
+ costAvoidedUsd: number;
8
+ latencyMs: number;
9
+ at: number;
10
+ }
11
+ export declare class TelemetryStore {
12
+ private events;
13
+ capture(event: TelemetryEvent): void;
14
+ getSummary(): {
15
+ totalDecisions: number;
16
+ blocked: number;
17
+ allowed: number;
18
+ throttled: number;
19
+ blockedVsAllowedRatio: number;
20
+ costSavedEstimateUsd: number;
21
+ avgLatencyImpactMs: number;
22
+ };
23
+ }
24
+ //# sourceMappingURL=telemetry.d.ts.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"telemetry.d.ts","sourceRoot":"","sources":["../../src/saas/telemetry.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAElD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,aAAa,CAAC;IACxB,gBAAgB,EAAE,MAAM,CAAC;IACzB,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,EAAE,EAAE,MAAM,CAAC;CACZ;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,MAAM,CAAwB;IAEtC,OAAO,CAAC,KAAK,EAAE,cAAc,GAAG,IAAI;IAIpC,UAAU;;;;;;;;;CAmBX"}
@@ -0,0 +1,30 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.TelemetryStore = void 0;
4
+ class TelemetryStore {
5
+ constructor() {
6
+ this.events = [];
7
+ }
8
+ capture(event) {
9
+ this.events.push(event);
10
+ }
11
+ getSummary() {
12
+ const total = this.events.length;
13
+ const blocked = this.events.filter(e => e.decision === 'block').length;
14
+ const allowed = this.events.filter(e => e.decision === 'allow').length;
15
+ const throttled = this.events.filter(e => e.decision === 'throttle').length;
16
+ const costSavedEstimate = this.events.reduce((sum, e) => sum + e.costAvoidedUsd, 0);
17
+ const avgLatencyMs = total === 0 ? 0 : this.events.reduce((sum, e) => sum + e.latencyMs, 0) / total;
18
+ return {
19
+ totalDecisions: total,
20
+ blocked,
21
+ allowed,
22
+ throttled,
23
+ blockedVsAllowedRatio: allowed === 0 ? blocked : blocked / allowed,
24
+ costSavedEstimateUsd: Number(costSavedEstimate.toFixed(6)),
25
+ avgLatencyImpactMs: Number(avgLatencyMs.toFixed(3)),
26
+ };
27
+ }
28
+ }
29
+ exports.TelemetryStore = TelemetryStore;
30
+ //# sourceMappingURL=telemetry.js.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"telemetry.js","sourceRoot":"","sources":["../../src/saas/telemetry.ts"],"names":[],"mappings":";;;AAYA,MAAa,cAAc;IAA3B;QACU,WAAM,GAAqB,EAAE,CAAC;IAyBxC,CAAC;IAvBC,OAAO,CAAC,KAAqB;QAC3B,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC1B,CAAC;IAED,UAAU;QACR,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;QACjC,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,OAAO,CAAC,CAAC,MAAM,CAAC;QACvE,MAAM,OAAO,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,OAAO,CAAC,CAAC,MAAM,CAAC;QACvE,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC5E,MAAM,iBAAiB,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,cAAc,EAAE,CAAC,CAAC,CAAC;QACpF,MAAM,YAAY,GAChB,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC;QAEjF,OAAO;YACL,cAAc,EAAE,KAAK;YACrB,OAAO;YACP,OAAO;YACP,SAAS;YACT,qBAAqB,EAAE,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,GAAG,OAAO;YAClE,oBAAoB,EAAE,MAAM,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC1D,kBAAkB,EAAE,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;SACpD,CAAC;IACJ,CAAC;CACF;AA1BD,wCA0BC"}
@@ -0,0 +1,28 @@
1
+ export interface UsageRecord {
2
+ apiKey: string;
3
+ at: number;
4
+ estimatedCostUsd: number;
5
+ }
6
+ export interface UsageLimitConfig {
7
+ dailyRequestLimit: number;
8
+ monthlyRequestLimit: number;
9
+ dailyCostLimitUsd: number;
10
+ monthlyCostLimitUsd: number;
11
+ }
12
+ export interface UsageSnapshot {
13
+ apiKey: string;
14
+ dailyRequests: number;
15
+ monthlyRequests: number;
16
+ dailyCostUsd: number;
17
+ monthlyCostUsd: number;
18
+ exceedsDailyLimit: boolean;
19
+ exceedsMonthlyLimit: boolean;
20
+ }
21
+ export declare class UsageMeter {
22
+ private records;
23
+ private readonly limits;
24
+ constructor(limits?: Partial<UsageLimitConfig>);
25
+ track(apiKey: string, estimatedCostUsd: number, at?: number): UsageSnapshot;
26
+ getSnapshot(apiKey: string, now?: number): UsageSnapshot;
27
+ }
28
+ //# sourceMappingURL=usageMeter.d.ts.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"usageMeter.d.ts","sourceRoot":"","sources":["../../src/saas/usageMeter.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,EAAE,EAAE,MAAM,CAAC;IACX,gBAAgB,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,gBAAgB;IAC/B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,mBAAmB,EAAE,MAAM,CAAC;CAC7B;AAED,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,CAAC;IACxB,YAAY,EAAE,MAAM,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,iBAAiB,EAAE,OAAO,CAAC;IAC3B,mBAAmB,EAAE,OAAO,CAAC;CAC9B;AASD,qBAAa,UAAU;IACrB,OAAO,CAAC,OAAO,CAAoC;IACnD,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAmB;gBAE9B,MAAM,GAAE,OAAO,CAAC,gBAAgB,CAAM;IAIlD,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,gBAAgB,EAAE,MAAM,EAAE,EAAE,SAAa,GAAG,aAAa;IAO/E,WAAW,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,SAAa,GAAG,aAAa;CAoB7D"}
@@ -0,0 +1,41 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.UsageMeter = void 0;
4
+ const DEFAULT_LIMITS = {
5
+ dailyRequestLimit: 10000,
6
+ monthlyRequestLimit: 250000,
7
+ dailyCostLimitUsd: 100,
8
+ monthlyCostLimitUsd: 2000,
9
+ };
10
+ class UsageMeter {
11
+ constructor(limits = {}) {
12
+ this.records = new Map();
13
+ this.limits = { ...DEFAULT_LIMITS, ...limits };
14
+ }
15
+ track(apiKey, estimatedCostUsd, at = Date.now()) {
16
+ const list = this.records.get(apiKey) ?? [];
17
+ list.push({ apiKey, at, estimatedCostUsd });
18
+ this.records.set(apiKey, list);
19
+ return this.getSnapshot(apiKey, at);
20
+ }
21
+ getSnapshot(apiKey, now = Date.now()) {
22
+ const list = this.records.get(apiKey) ?? [];
23
+ const dayAgo = now - 86400000;
24
+ const monthAgo = now - 30 * 86400000;
25
+ const day = list.filter(r => r.at >= dayAgo);
26
+ const month = list.filter(r => r.at >= monthAgo);
27
+ const dailyCost = day.reduce((sum, item) => sum + item.estimatedCostUsd, 0);
28
+ const monthlyCost = month.reduce((sum, item) => sum + item.estimatedCostUsd, 0);
29
+ return {
30
+ apiKey,
31
+ dailyRequests: day.length,
32
+ monthlyRequests: month.length,
33
+ dailyCostUsd: Number(dailyCost.toFixed(6)),
34
+ monthlyCostUsd: Number(monthlyCost.toFixed(6)),
35
+ exceedsDailyLimit: day.length > this.limits.dailyRequestLimit || dailyCost > this.limits.dailyCostLimitUsd,
36
+ exceedsMonthlyLimit: month.length > this.limits.monthlyRequestLimit || monthlyCost > this.limits.monthlyCostLimitUsd,
37
+ };
38
+ }
39
+ }
40
+ exports.UsageMeter = UsageMeter;
41
+ //# sourceMappingURL=usageMeter.js.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"usageMeter.js","sourceRoot":"","sources":["../../src/saas/usageMeter.ts"],"names":[],"mappings":";;;AAuBA,MAAM,cAAc,GAAqB;IACvC,iBAAiB,EAAE,KAAM;IACzB,mBAAmB,EAAE,MAAO;IAC5B,iBAAiB,EAAE,GAAG;IACtB,mBAAmB,EAAE,IAAK;CAC3B,CAAC;AAEF,MAAa,UAAU;IAIrB,YAAY,SAAoC,EAAE;QAH1C,YAAO,GAAG,IAAI,GAAG,EAAyB,CAAC;QAIjD,IAAI,CAAC,MAAM,GAAG,EAAE,GAAG,cAAc,EAAE,GAAG,MAAM,EAAE,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,MAAc,EAAE,gBAAwB,EAAE,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE;QAC7D,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAC5C,IAAI,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,gBAAgB,EAAE,CAAC,CAAC;QAC5C,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAC/B,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;IACtC,CAAC;IAED,WAAW,CAAC,MAAc,EAAE,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE;QAC1C,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAC5C,MAAM,MAAM,GAAG,GAAG,GAAG,QAAU,CAAC;QAChC,MAAM,QAAQ,GAAG,GAAG,GAAG,EAAE,GAAG,QAAU,CAAC;QACvC,MAAM,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,MAAM,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,QAAQ,CAAC,CAAC;QACjD,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC,CAAC,CAAC;QAC5E,MAAM,WAAW,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC,CAAC,CAAC;QAEhF,OAAO;YACL,MAAM;YACN,aAAa,EAAE,GAAG,CAAC,MAAM;YACzB,eAAe,EAAE,KAAK,CAAC,MAAM;YAC7B,YAAY,EAAE,MAAM,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC1C,cAAc,EAAE,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;YAC9C,iBAAiB,EAAE,GAAG,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,iBAAiB,IAAI,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,iBAAiB;YAC1G,mBAAmB,EACjB,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,mBAAmB,IAAI,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,mBAAmB;SAClG,CAAC;IACJ,CAAC;CACF;AAnCD,gCAmCC"}
@@ -0,0 +1,105 @@
1
+ /**
2
+ * TrustBoundaryValidator.ts - Enterprise API Security Layer
3
+ *
4
+ * Stripe-level API discipline:
5
+ * - HMAC-signed API requests (prevents tampering)
6
+ * - Request expiration timestamps (prevents replay attacks)
7
+ * - Rate limiting per API key (hard enforcement)
8
+ * - Idempotency keys (prevents duplicate processing)
9
+ * - Environment isolation (dev/staging/production)
10
+ * - Schema validation at runtime
11
+ * - Unsafe payload blocking
12
+ *
13
+ * Core principle: Trust nothing, validate everything
14
+ */
15
+ export interface SignedRequest {
16
+ apiKey: string;
17
+ timestamp: number;
18
+ signature: string;
19
+ idempotencyKey?: string;
20
+ bodyHash?: string;
21
+ }
22
+ export interface ValidationResult {
23
+ valid: boolean;
24
+ rejected: boolean;
25
+ reason?: string;
26
+ code: 'VALID' | 'INVALID_SIGNATURE' | 'EXPIRED_REQUEST' | 'RATE_LIMITED' | 'IDEMPOTENCY_CONFLICT' | 'MALFORMED_PAYLOAD' | 'INVALID_ENVIRONMENT';
27
+ apiKeyId?: string;
28
+ userId?: string;
29
+ environment: 'dev' | 'staging' | 'production';
30
+ rateLimitRemaining?: number;
31
+ idempotencyKey?: string;
32
+ }
33
+ export interface RateLimitState {
34
+ count: number;
35
+ resetAt: number;
36
+ windowMs: number;
37
+ }
38
+ export interface EnvironmentConfig {
39
+ name: 'dev' | 'staging' | 'production';
40
+ strictMode: boolean;
41
+ requestMaxAgeMs: number;
42
+ rateLimitWindowMs: number;
43
+ rateLimitMaxRequests: number;
44
+ requireIdempotency: boolean;
45
+ requireBodyHash: boolean;
46
+ }
47
+ /**
48
+ * TrustBoundaryValidator - Enterprise-grade API security
49
+ *
50
+ * Behaves like Stripe: every request is signed, timestamped, and rate-limited.
51
+ * No request crosses the boundary without validation.
52
+ */
53
+ export declare class TrustBoundaryValidator {
54
+ private apiKeySecrets;
55
+ private rateLimits;
56
+ private idempotencyStore;
57
+ private environments;
58
+ private requestLog;
59
+ constructor();
60
+ /**
61
+ * Validate incoming request against trust boundary
62
+ * This is the ONLY entry point for API requests
63
+ */
64
+ validateRequest(params: {
65
+ apiKey: string;
66
+ signature: string;
67
+ timestamp: number;
68
+ idempotencyKey?: string;
69
+ bodyHash?: string;
70
+ body?: string;
71
+ path: string;
72
+ method: string;
73
+ }): ValidationResult;
74
+ /**
75
+ * Register idempotency key as processed
76
+ */
77
+ recordIdempotency(key: string, result: unknown): void;
78
+ /**
79
+ * Register API key with its signing secret
80
+ */
81
+ registerApiKey(apiKey: string, userId: string, environment: 'dev' | 'staging' | 'production'): void;
82
+ /**
83
+ * Generate signed request (for client SDK)
84
+ */
85
+ generateSignedRequest(apiKey: string, body: string, idempotencyKey?: string): SignedRequest;
86
+ /**
87
+ * Get current rate limit status
88
+ */
89
+ getRateLimitStatus(apiKey: string): {
90
+ remaining: number;
91
+ resetAt: number;
92
+ windowMs: number;
93
+ };
94
+ private setupEnvironments;
95
+ private detectEnvironment;
96
+ private extractKeyId;
97
+ private extractUserId;
98
+ private computeHMAC;
99
+ private checkRateLimit;
100
+ private validatePayloadSchema;
101
+ private reject;
102
+ }
103
+ export declare const trustBoundary: TrustBoundaryValidator;
104
+ export declare function createTrustBoundary(): TrustBoundaryValidator;
105
+ //# sourceMappingURL=TrustBoundaryValidator.d.ts.map
@@ -0,0 +1 @@
1
+ {"version":3,"file":"TrustBoundaryValidator.d.ts","sourceRoot":"","sources":["../../src/security/TrustBoundaryValidator.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAIH,MAAM,WAAW,aAAa;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,OAAO,CAAC;IACf,QAAQ,EAAE,OAAO,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,OAAO,GAAG,mBAAmB,GAAG,iBAAiB,GAAG,cAAc,GAAG,sBAAsB,GAAG,mBAAmB,GAAG,qBAAqB,CAAC;IAChJ,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,KAAK,GAAG,SAAS,GAAG,YAAY,CAAC;IAC9C,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,KAAK,GAAG,SAAS,GAAG,YAAY,CAAC;IACvC,UAAU,EAAE,OAAO,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;IACxB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,kBAAkB,EAAE,OAAO,CAAC;IAC5B,eAAe,EAAE,OAAO,CAAC;CAC1B;AAED;;;;;GAKG;AACH,qBAAa,sBAAsB;IACjC,OAAO,CAAC,aAAa,CAAkC;IACvD,OAAO,CAAC,UAAU,CAA0C;IAC5D,OAAO,CAAC,gBAAgB,CAAoE;IAC5F,OAAO,CAAC,YAAY,CAA6C;IACjE,OAAO,CAAC,UAAU,CAA0B;;IAM5C;;;OAGG;IACH,eAAe,CAAC,MAAM,EAAE;QACtB,MAAM,EAAE,MAAM,CAAC;QACf,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;QAClB,cAAc,CAAC,EAAE,MAAM,CAAC;QACxB,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,MAAM,CAAC;KAChB,GAAG,gBAAgB;IAiFpB;;OAEG;IACH,iBAAiB,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,GAAG,IAAI;IAUrD;;OAEG;IACH,cAAc,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,KAAK,GAAG,SAAS,GAAG,YAAY,GAAG,IAAI;IAMnG;;OAEG;IACH,qBAAqB,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,cAAc,CAAC,EAAE,MAAM,GAAG,aAAa;IAmB3F;;OAEG;IACH,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE;IAsB5F,OAAO,CAAC,iBAAiB;IAgCzB,OAAO,CAAC,iBAAiB;IAMzB,OAAO,CAAC,YAAY;IAKpB,OAAO,CAAC,aAAa;IAKrB,OAAO,CAAC,WAAW;IAMnB,OAAO,CAAC,cAAc;IAqBtB,OAAO,CAAC,qBAAqB;IA2B7B,OAAO,CAAC,MAAM;CAiBf;AAGD,eAAO,MAAM,aAAa,wBAA+B,CAAC;AAC1D,wBAAgB,mBAAmB,IAAI,sBAAsB,CAE5D"}