@sentropic/h2a-cli 0.11.0 → 0.13.0

package/dist/runtime/sysml/client.js

@@ -0,0 +1,52 @@
+/**
+ * DEC-098 — SysML v2 interop S2 (spec: docs/sysml-interop.md §7, DEC-081). The
+ * I/O adapter: fetch a referenced element from the SysML v2 API & Services and
+ * canonical-hash it for content-integrity (trust level (b), §4). Pure ref types
+ * stay in core (S1); all I/O lives here. The verify path + CLI are S3.
+ *
+ * Endpoint follows the OMG SysML v2 API & Services REST/HTTP PSM:
+ *   GET {apiBase}/projects/{project}/commits/{commit}/elements/{element}
+ *
+ * The HTTP client is injectable (`fetchImpl`) so the adapter is unit-testable
+ * against a mock API with no network. API credentials are held out-of-band and
+ * passed per call (`auth`); h2a never embeds them in envelopes (§6).
+ */
+import { computeHash } from "@sentropic/h2a";
+function resolveBase(ref, options) {
+    const base = options.apiBase ?? ref.apiBase;
+    if (!base) {
+        throw new Error("resolveSysmlElement: apiBase is required (pass it or set ref.apiBase)");
+    }
+    return base.replace(/\/+$/, "");
+}
+/**
+ * Fetch the referenced element at its immutable commit. Requires `ref.element`
+ * (whole-project resolution — `element` omitted — is a later slice; default
+ * documented in docs/loop-decisions.md). Throws on a non-OK HTTP status.
+ */
+export async function resolveSysmlElement(ref, options = {}) {
+    if (!ref.element) {
+        throw new Error("resolveSysmlElement: ref.element is required (whole-project resolution is not supported yet)");
+    }
+    const base = resolveBase(ref, options);
+    const url = `${base}/projects/${encodeURIComponent(ref.project)}/commits/${encodeURIComponent(ref.commit)}/elements/${encodeURIComponent(ref.element)}`;
+    const fetchImpl = options.fetchImpl ?? globalThis.fetch;
+    if (!fetchImpl) {
+        throw new Error("resolveSysmlElement: no fetch implementation available (pass fetchImpl)");
+    }
+    const headers = options.auth ? { Authorization: `Bearer ${options.auth}` } : undefined;
+    const res = await fetchImpl(url, headers ? { headers } : undefined);
+    if (!res.ok) {
+        throw new Error(`resolveSysmlElement: ${url} returned HTTP ${res.status}`);
+    }
+    return res.json();
+}
+/**
+ * Canonical hash of a fetched element, for content-integrity (trust level (b)).
+ * Reuses the core canonical hashing (DEC-035) so the value is comparable to a
+ * `ref.elementHash` embedded at sign time.
+ */
+export function hashSysmlElement(element) {
+    return computeHash(element);
+}
+//# sourceMappingURL=client.js.map

package/dist/runtime/sysml/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/runtime/sysml/client.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,OAAO,EAAE,WAAW,EAAoB,MAAM,gBAAgB,CAAC;AAuB/D,SAAS,WAAW,CAAC,GAAgB,EAAE,OAA4B;IACjE,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,IAAI,GAAG,CAAC,OAAO,CAAC;IAC5C,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,IAAI,KAAK,CAAC,uEAAuE,CAAC,CAAC;IAC3F,CAAC;IACD,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;AAClC,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,GAAgB,EAChB,UAA+B,EAAE;IAEjC,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CACb,8FAA8F,CAC/F,CAAC;IACJ,CAAC;IACD,MAAM,IAAI,GAAG,WAAW,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACvC,MAAM,GAAG,GAAG,GAAG,IAAI,aAAa,kBAAkB,CAAC,GAAG,CAAC,OAAO,CAAC,YAAY,kBAAkB,CAC3F,GAAG,CAAC,MAAM,CACX,aAAa,kBAAkB,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;IAChD,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAK,UAAU,CAAC,KAA+C,CAAC;IACnG,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,yEAAyE,CAAC,CAAC;IAC7F,CAAC;IACD,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,aAAa,EAAE,UAAU,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IACvF,MAAM,GAAG,GAAG,MAAM,SAAS,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IACpE,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,wBAAwB,GAAG,kBAAkB,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7E,CAAC;IACD,OAAO,GAAG,CAAC,IAAI,EAAE,CAAC;AACpB,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,gBAAgB,CAAC,OAAgB;IAC/C,OAAO,WAAW,CAAC,OAAO,CAAC,CAAC;AAC9B,CAAC"}

package/dist/runtime/sysml/disclosure.d.ts

@@ -0,0 +1,23 @@
+/**
+ * DEC-100 — SysML v2 interop S4 (spec §5, DEC-081). Map an h2a disclosure mode
+ * (DEC-045) onto a SysML v2 **query scope**: what a CONTROL / recipient may read
+ * through the API, expressed abstractly (the concrete API params / SysML `view`
+ * id are repo-specific — this is the policy→scope decision, not the wire call).
+ *
+ * Pure + total over the six disclosure modes.
+ */
+import type { H2ADisclosureMode } from "@sentropic/h2a";
+/** How much of the referenced element the recipient may read. */
+export type H2ASysmlQueryDetail = "none" | "attestation" | "metadata" | "redacted" | "full";
+export interface H2ASysmlQueryScope {
+    readonly mode: H2ADisclosureMode;
+    /** Whether the adapter should fetch element content at all. */
+    readonly fetch: boolean;
+    readonly detail: H2ASysmlQueryDetail;
+    /** Suggested SysML view id (viewpoint/view mechanism) when a filtered query applies. */
+    readonly view?: string;
+    readonly note: string;
+}
+/** Total: every disclosure mode maps to a query scope. */
+export declare function sysmlQueryScope(mode: H2ADisclosureMode): H2ASysmlQueryScope;
+//# sourceMappingURL=disclosure.d.ts.map

package/dist/runtime/sysml/disclosure.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"disclosure.d.ts","sourceRoot":"","sources":["../../../src/runtime/sysml/disclosure.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,gBAAgB,CAAC;AAExD,iEAAiE;AACjE,MAAM,MAAM,mBAAmB,GAAG,MAAM,GAAG,aAAa,GAAG,UAAU,GAAG,UAAU,GAAG,MAAM,CAAC;AAE5F,MAAM,WAAW,kBAAkB;IACjC,QAAQ,CAAC,IAAI,EAAE,iBAAiB,CAAC;IACjC,+DAA+D;IAC/D,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;IACxB,QAAQ,CAAC,MAAM,EAAE,mBAAmB,CAAC;IACrC,wFAAwF;IACxF,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;CACvB;AA2CD,0DAA0D;AAC1D,wBAAgB,eAAe,CAAC,IAAI,EAAE,iBAAiB,GAAG,kBAAkB,CAE3E"}

package/dist/runtime/sysml/disclosure.js

@@ -0,0 +1,53 @@
+/**
+ * DEC-100 — SysML v2 interop S4 (spec §5, DEC-081). Map an h2a disclosure mode
+ * (DEC-045) onto a SysML v2 **query scope**: what a CONTROL / recipient may read
+ * through the API, expressed abstractly (the concrete API params / SysML `view`
+ * id are repo-specific — this is the policy→scope decision, not the wire call).
+ *
+ * Pure + total over the six disclosure modes.
+ */
+const SCOPES = {
+    denied: {
+        mode: "denied",
+        fetch: false,
+        detail: "none",
+        note: "no access — the recipient may not query the model"
+    },
+    "hash-only": {
+        mode: "hash-only",
+        fetch: false,
+        detail: "none",
+        note: "compare the embedded elementHash only; no content query"
+    },
+    attestation: {
+        mode: "attestation",
+        fetch: false,
+        detail: "attestation",
+        note: "the signed envelope (with elementHash) is the attestation; no content query"
+    },
+    "evidence-package": {
+        mode: "evidence-package",
+        fetch: true,
+        detail: "metadata",
+        note: "fetch element metadata + hash for an evidence package (not full content)"
+    },
+    "redacted-view": {
+        mode: "redacted-view",
+        fetch: true,
+        detail: "redacted",
+        view: "redacted",
+        note: "query a SysML redacted view (sensitive members excluded)"
+    },
+    "full-view": {
+        mode: "full-view",
+        fetch: true,
+        detail: "full",
+        view: "full",
+        note: "query the full element"
+    }
+};
+/** Total: every disclosure mode maps to a query scope. */
+export function sysmlQueryScope(mode) {
+    return SCOPES[mode];
+}
+//# sourceMappingURL=disclosure.js.map

package/dist/runtime/sysml/disclosure.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"disclosure.js","sourceRoot":"","sources":["../../../src/runtime/sysml/disclosure.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAiBH,MAAM,MAAM,GAAkD;IAC5D,MAAM,EAAE;QACN,IAAI,EAAE,QAAQ;QACd,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,mDAAmD;KAC1D;IACD,WAAW,EAAE;QACX,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,yDAAyD;KAChE;IACD,WAAW,EAAE;QACX,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,aAAa;QACrB,IAAI,EAAE,6EAA6E;KACpF;IACD,kBAAkB,EAAE;QAClB,IAAI,EAAE,kBAAkB;QACxB,KAAK,EAAE,IAAI;QACX,MAAM,EAAE,UAAU;QAClB,IAAI,EAAE,0EAA0E;KACjF;IACD,eAAe,EAAE;QACf,IAAI,EAAE,eAAe;QACrB,KAAK,EAAE,IAAI;QACX,MAAM,EAAE,UAAU;QAClB,IAAI,EAAE,UAAU;QAChB,IAAI,EAAE,0DAA0D;KACjE;IACD,WAAW,EAAE;QACX,IAAI,EAAE,WAAW;QACjB,KAAK,EAAE,IAAI;QACX,MAAM,EAAE,MAAM;QACd,IAAI,EAAE,MAAM;QACZ,IAAI,EAAE,wBAAwB;KAC/B;CACF,CAAC;AAEF,0DAA0D;AAC1D,MAAM,UAAU,eAAe,CAAC,IAAuB;IACrD,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC;AACtB,CAAC"}

package/dist/runtime/sysml/index.d.ts

@@ -0,0 +1,4 @@
+export { resolveSysmlElement, hashSysmlElement, type SysmlFetchImpl, type SysmlFetchResponse, type ResolveSysmlOptions } from "./client.js";
+export { verifyEnvelopeSysmlRef, extractSysmlRef, type VerifyEnvelopeSysmlOptions, type VerifyEnvelopeSysmlResult } from "./verify.js";
+export { sysmlQueryScope, type H2ASysmlQueryScope, type H2ASysmlQueryDetail } from "./disclosure.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/runtime/sysml/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/runtime/sysml/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,gBAAgB,EAChB,KAAK,cAAc,EACnB,KAAK,kBAAkB,EACvB,KAAK,mBAAmB,EACzB,MAAM,aAAa,CAAC;AACrB,OAAO,EACL,sBAAsB,EACtB,eAAe,EACf,KAAK,0BAA0B,EAC/B,KAAK,yBAAyB,EAC/B,MAAM,aAAa,CAAC;AACrB,OAAO,EACL,eAAe,EACf,KAAK,kBAAkB,EACvB,KAAK,mBAAmB,EACzB,MAAM,iBAAiB,CAAC"}

package/dist/runtime/sysml/index.js

@@ -0,0 +1,4 @@
+export { resolveSysmlElement, hashSysmlElement } from "./client.js";
+export { verifyEnvelopeSysmlRef, extractSysmlRef } from "./verify.js";
+export { sysmlQueryScope } from "./disclosure.js";
+//# sourceMappingURL=index.js.map

package/dist/runtime/sysml/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/runtime/sysml/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,mBAAmB,EACnB,gBAAgB,EAIjB,MAAM,aAAa,CAAC;AACrB,OAAO,EACL,sBAAsB,EACtB,eAAe,EAGhB,MAAM,aAAa,CAAC;AACrB,OAAO,EACL,eAAe,EAGhB,MAAM,iBAAiB,CAAC"}

package/dist/runtime/sysml/verify.d.ts

@@ -0,0 +1,32 @@
+/**
+ * DEC-099 — SysML v2 interop S3 (spec §4, DEC-081). Verify that an envelope's
+ * embedded `H2ASysmlRef` is (a) signed by the claimed actor — **commit-trust**,
+ * the default: a valid signature over an immutable commit is enough — and
+ * optionally (b) **content-integrity**: re-fetch the element (S2) and check its
+ * canonical hash against the `elementHash` embedded at sign time, catching a
+ * repository that violated immutability or a wrong `apiBase`.
+ */
+import { type H2AEnvelope, type H2ASysmlRef } from "@sentropic/h2a";
+import { type SysmlFetchImpl } from "./client.js";
+/** Extract the ref from the conventional location `body.subject.sysmlRef` (spec §2). */
+export declare function extractSysmlRef(envelope: H2AEnvelope): H2ASysmlRef | undefined;
+export interface VerifyEnvelopeSysmlOptions {
+    /** Public key to verify the envelope signature against (commit-trust). */
+    readonly publicKeyPem: string;
+    /** Only accept a signature from this signer id. */
+    readonly by?: string;
+    /** Also re-fetch + re-hash the element and compare to `ref.elementHash`. */
+    readonly contentIntegrity?: boolean;
+    readonly apiBase?: string;
+    readonly auth?: string;
+    readonly fetchImpl?: SysmlFetchImpl;
+}
+export interface VerifyEnvelopeSysmlResult {
+    readonly ok: boolean;
+    readonly ref?: H2ASysmlRef;
+    readonly signatureVerified: boolean;
+    readonly contentVerified?: boolean;
+    readonly reason?: string;
+}
+export declare function verifyEnvelopeSysmlRef(envelope: H2AEnvelope, options: VerifyEnvelopeSysmlOptions): Promise<VerifyEnvelopeSysmlResult>;
+//# sourceMappingURL=verify.d.ts.map

package/dist/runtime/sysml/verify.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../../../src/runtime/sysml/verify.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAIL,KAAK,WAAW,EAChB,KAAK,WAAW,EACjB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAyC,KAAK,cAAc,EAAE,MAAM,aAAa,CAAC;AAEzF,wFAAwF;AACxF,wBAAgB,eAAe,CAAC,QAAQ,EAAE,WAAW,GAAG,WAAW,GAAG,SAAS,CAO9E;AAED,MAAM,WAAW,0BAA0B;IACzC,0EAA0E;IAC1E,QAAQ,CAAC,YAAY,EAAE,MAAM,CAAC;IAC9B,mDAAmD;IACnD,QAAQ,CAAC,EAAE,CAAC,EAAE,MAAM,CAAC;IACrB,4EAA4E;IAC5E,QAAQ,CAAC,gBAAgB,CAAC,EAAE,OAAO,CAAC;IACpC,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,SAAS,CAAC,EAAE,cAAc,CAAC;CACrC;AAED,MAAM,WAAW,yBAAyB;IACxC,QAAQ,CAAC,EAAE,EAAE,OAAO,CAAC;IACrB,QAAQ,CAAC,GAAG,CAAC,EAAE,WAAW,CAAC;IAC3B,QAAQ,CAAC,iBAAiB,EAAE,OAAO,CAAC;IACpC,QAAQ,CAAC,eAAe,CAAC,EAAE,OAAO,CAAC;IACnC,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,wBAAsB,sBAAsB,CAC1C,QAAQ,EAAE,WAAW,EACrB,OAAO,EAAE,0BAA0B,GAClC,OAAO,CAAC,yBAAyB,CAAC,CA8CpC"}

package/dist/runtime/sysml/verify.js

@@ -0,0 +1,67 @@
+/**
+ * DEC-099 — SysML v2 interop S3 (spec §4, DEC-081). Verify that an envelope's
+ * embedded `H2ASysmlRef` is (a) signed by the claimed actor — **commit-trust**,
+ * the default: a valid signature over an immutable commit is enough — and
+ * optionally (b) **content-integrity**: re-fetch the element (S2) and check its
+ * canonical hash against the `elementHash` embedded at sign time, catching a
+ * repository that violated immutability or a wrong `apiBase`.
+ */
+import { isH2ASysmlRef, validateSysmlRef, verifyEnvelopeSignature } from "@sentropic/h2a";
+import { hashSysmlElement, resolveSysmlElement } from "./client.js";
+/** Extract the ref from the conventional location `body.subject.sysmlRef` (spec §2). */
+export function extractSysmlRef(envelope) {
+    const body = envelope.body;
+    if (!body || typeof body !== "object")
+        return undefined;
+    const subject = body.subject;
+    if (!subject || typeof subject !== "object")
+        return undefined;
+    const ref = subject.sysmlRef;
+    return isH2ASysmlRef(ref) ? ref : undefined;
+}
+export async function verifyEnvelopeSysmlRef(envelope, options) {
+    const ref = extractSysmlRef(envelope);
+    if (!ref)
+        return { ok: false, signatureVerified: false, reason: "no-sysml-ref" };
+    const validation = validateSysmlRef(ref);
+    if (!validation.ok) {
+        return { ok: false, ref, signatureVerified: false, reason: `invalid-ref:${validation.errors.join(",")}` };
+    }
+    const signatureVerified = verifyEnvelopeSignature(envelope, options.publicKeyPem, options.by ? { by: options.by } : {});
+    if (!signatureVerified) {
+        return { ok: false, ref, signatureVerified: false, reason: "signature-failed" };
+    }
+    // (a) commit-trust: a valid signature over the immutable commit is enough.
+    if (!options.contentIntegrity) {
+        return { ok: true, ref, signatureVerified: true };
+    }
+    // (b) content-integrity: re-fetch + re-hash + compare.
+    if (!ref.elementHash) {
+        return { ok: false, ref, signatureVerified: true, contentVerified: false, reason: "no-element-hash" };
+    }
+    try {
+        const element = await resolveSysmlElement(ref, {
+            ...(options.apiBase ? { apiBase: options.apiBase } : {}),
+            ...(options.auth ? { auth: options.auth } : {}),
+            ...(options.fetchImpl ? { fetchImpl: options.fetchImpl } : {})
+        });
+        const contentVerified = hashSysmlElement(element) === ref.elementHash;
+        return {
+            ok: contentVerified,
+            ref,
+            signatureVerified: true,
+            contentVerified,
+            ...(contentVerified ? {} : { reason: "content-hash-mismatch" })
+        };
+    }
+    catch (err) {
+        return {
+            ok: false,
+            ref,
+            signatureVerified: true,
+            contentVerified: false,
+            reason: `fetch-failed:${err.message}`
+        };
+    }
+}
+//# sourceMappingURL=verify.js.map

package/dist/runtime/sysml/verify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.js","sourceRoot":"","sources":["../../../src/runtime/sysml/verify.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EACL,aAAa,EACb,gBAAgB,EAChB,uBAAuB,EAGxB,MAAM,gBAAgB,CAAC;AAExB,OAAO,EAAE,gBAAgB,EAAE,mBAAmB,EAAuB,MAAM,aAAa,CAAC;AAEzF,wFAAwF;AACxF,MAAM,UAAU,eAAe,CAAC,QAAqB;IACnD,MAAM,IAAI,GAAG,QAAQ,CAAC,IAA2C,CAAC;IAClE,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ;QAAE,OAAO,SAAS,CAAC;IACxD,MAAM,OAAO,GAAG,IAAI,CAAC,OAA8C,CAAC;IACpE,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ;QAAE,OAAO,SAAS,CAAC;IAC9D,MAAM,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC;IAC7B,OAAO,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC;AAC9C,CAAC;AAsBD,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,QAAqB,EACrB,OAAmC;IAEnC,MAAM,GAAG,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;IACtC,IAAI,CAAC,GAAG;QAAE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,iBAAiB,EAAE,KAAK,EAAE,MAAM,EAAE,cAAc,EAAE,CAAC;IACjF,MAAM,UAAU,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC;IACzC,IAAI,CAAC,UAAU,CAAC,EAAE,EAAE,CAAC;QACnB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,iBAAiB,EAAE,KAAK,EAAE,MAAM,EAAE,eAAe,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;IAC5G,CAAC;IACD,MAAM,iBAAiB,GAAG,uBAAuB,CAC/C,QAAQ,EACR,OAAO,CAAC,YAAY,EACpB,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CACrC,CAAC;IACF,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,iBAAiB,EAAE,KAAK,EAAE,MAAM,EAAE,kBAAkB,EAAE,CAAC;IAClF,CAAC;IACD,2EAA2E;IAC3E,IAAI,CAAC,OAAO,CAAC,gBAAgB,EAAE,CAAC;QAC9B,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,iBAAiB,EAAE,IAAI,EAAE,CAAC;IACpD,CAAC;IACD,uDAAuD;IACvD,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC;QACrB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,iBAAiB,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,MAAM,EAAE,iBAAiB,EAAE,CAAC;IACxG,CAAC;IACD,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,mBAAmB,CAAC,GAAG,EAAE;YAC7C,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACxD,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC/C,GAAG,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SAC/D,CAAC,CAAC;QACH,MAAM,eAAe,GAAG,gBAAgB,CAAC,OAAO,CAAC,KAAK,GAAG,CAAC,WAAW,CAAC;QACtE,OAAO;YACL,EAAE,EAAE,eAAe;YACnB,GAAG;YACH,iBAAiB,EAAE,IAAI;YACvB,eAAe;YACf,GAAG,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,uBAAuB,EAAE,CAAC;SAChE,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO;YACL,EAAE,EAAE,KAAK;YACT,GAAG;YACH,iBAAiB,EAAE,IAAI;YACvB,eAAe,EAAE,KAAK;YACtB,MAAM,EAAE,gBAAiB,GAAa,CAAC,OAAO,EAAE;SACjD,CAAC;IACJ,CAAC;AACH,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@sentropic/h2a-cli",
-  "version": "0.11.0",
+  "version": "0.13.0",
   "description": "Unified CLI surface for h2a hosts and MCP-oriented coordination flows.",
   "license": "MIT",
   "type": "module",
@@ -40,7 +40,7 @@
     "skills"
   ],
   "dependencies": {
-    "@sentropic/h2a": "^0.11.0"
+    "@sentropic/h2a": "^0.13.0"
   },
   "publishConfig": {
     "access": "public"

package/skills/h2a/SKILL.md

@@ -35,7 +35,7 @@ Steps:
 1. Verify the `h2a` binary is on PATH (`h2a --help`). If absent, instruct the user to run `npm i -g @sentropic/h2a-cli@latest` and stop.
 2. Decide the shared root. If `[root]` was passed, use it; otherwise prefer `<this-workspace>/.h2a`, else `~/h2a-workspace/.h2a`. Confirm with the user only if ambiguous.
 3. Run `h2a init --root <root>` (idempotent).
-4. Pick an instance id. Default: `<host>:<workspace-leaf>` (host = claude|codex|gemini; workspace-leaf = `basename <cwd>`).
+4. Pick an instance id. Default: `<host>:<workspace-leaf>` (host = claude|codex|gemini|agy; workspace-leaf = `basename <cwd>`).
 5. Call the MCP tool `h2a_session_open` with `{ instance, host, interests: { scopes: ["scope:default"], negotiations: [] } }`.
 6. Print a short summary: instance id, session id, peers currently live, the four notification topics this session is subscribed to.
 
@@ -180,4 +180,12 @@ These can be invoked directly from the shell at any time, outside the slash-comm
 - `h2a doctor [--root <path>]` — quick health probe.
 - `h2a sessions [--root <path>]` — same listing as `/h2a discover` but from the shell.
 - `h2a keys generate --instance <id>` — produce an ed25519 PEM keypair.
-- `h2a install-skills --host <claude|codex|gemini>` — re-install or update this skill on another host.
+- `h2a install-skills --host <claude|codex|gemini|agy>` — re-install or update this skill on another host. *(For **agy**/Antigravity the skill is written to the shared `~/.gemini/commands/h2a.toml`; the command then prints an `importHint` — run `agy plugin import gemini` (then `agy plugin enable h2a`) to pull it into agy. DEC-096/101.)*
+
+**Operational surfaces** (also shell-invocable; matching `h2a_*` MCP tools where noted):
+
+- `h2a nhi report|inventory|attest|offboard|export` — Non-Human-Identity posture / inventory / signed attestation / coordinated offboard / SPIFFE-bundle export (`h2a_nhi_*`, DEC-087..090/094).
+- `h2a blockage raise|list|resolve` — the peer blockage feedback loop, distinct from the drumbeat and from escalation (`h2a_blockage_*`, DEC-092). Subscribed sessions get `peer.blocked`/`peer.unblocked` pushes.
+- `h2a drumbeat record|scan|clear|escalations|watch` — anti-stall relance daemon + escalation-to-PRINCIPAL (DEC-086/091/095).
+- `h2a sysml verify --json <env> --public-key <pem>` — verify a SysML-v2 ref embedded in a signed envelope (commit-trust + content-integrity, DEC-099).
+- `h2a host setup|status|plugin --host <codex|claude|gemini|agy>` — render the per-host MCP config / stop-hook glue (DEC-093/096).