npm - @smplkit/sdk - Versions diffs - 3.0.33 → 3.0.34 - Mend

@smplkit/sdk 3.0.33 → 3.0.34

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.d.cts CHANGED Viewed

@@ -57,6 +57,36 @@ interface ListEventsPage {
     /** Opaque cursor for the next page, or null if this is the last page. */
     nextCursor: string | null;
 }
+interface ResourceType {
+    /** The resource_type slug. */
+    id: string;
+    createdAt: string;
+}
+interface ListResourceTypesParams {
+    pageSize?: number;
+    pageAfter?: string;
+}
+interface ListResourceTypesPage {
+    resourceTypes: ResourceType[];
+    /** Opaque cursor for the next page, or null if this is the last page. */
+    nextCursor: string | null;
+}
+interface Action {
+    /** The action slug. */
+    id: string;
+    createdAt: string;
+}
+interface ListActionsParams {
+    /** When set, returns only the actions seen with this resource_type. */
+    filterResourceType?: string;
+    pageSize?: number;
+    pageAfter?: string;
+}
+interface ActionListPage {
+    actions: Action[];
+    /** Opaque cursor for the next page, or null if this is the last page. */
+    nextCursor: string | null;
+}
 interface HttpHeader {
     name: string;
     value: string;
@@ -91,7 +121,6 @@ interface Forwarder {
     transform: string | null;
     /** Header values are returned redacted on reads. */
     http: ForwarderHttp;
-    data: Record<string, unknown>;
     createdAt: string | null;
     updatedAt: string | null;
     deletedAt: string | null;
@@ -104,7 +133,6 @@ interface CreateForwarderInput {
     enabled?: boolean;
     filter?: Record<string, unknown>;
     transform?: string;
-    data?: Record<string, unknown>;
 }
 interface UpdateForwarderInput extends CreateForwarderInput {
 }
@@ -118,73 +146,31 @@ interface ListForwardersPage {
     forwarders: Forwarder[];
     nextCursor: string | null;
 }
-type ForwarderDeliveryStatus = "SUCCEEDED" | "FAILED" | "FILTERED_OUT" | "SKIPPED_DO_NOT_FORWARD";
-interface ForwarderDelivery {
-    id: string;
-    forwarderId: string;
-    eventId: string;
-    attemptNumber: number;
-    status: ForwarderDeliveryStatus;
-    request: Record<string, unknown> | null;
-    responseStatus: number | null;
-    responseBody: string | null;
-    latencyMs: number | null;
-    error: string | null;
-    createdAt: string | null;
-}
-interface ListDeliveriesParams {
-    status?: ForwarderDeliveryStatus;
-    /** Range notation per ADR-014, e.g. `[2026-01-01T00:00:00Z,*)`. */
-    createdAtRange?: string;
-    eventId?: string;
-    pageSize?: number;
-    pageAfter?: string;
-}
-interface ListDeliveriesPage {
-    deliveries: ForwarderDelivery[];
-    nextCursor: string | null;
-}
-interface RetryFailedDeliveriesSummary {
-    attempted: number;
-    succeeded: number;
-    failed: number;
-}
-interface TestForwarderRequest {
-    url: string;
-    method?: string;
-    headers?: HttpHeader[];
-    body?: string | null;
-    successStatus?: string;
-    /** Capped at 30s server-side. */
-    timeoutMs?: number;
-}
-interface TestForwarderResult {
-    succeeded: boolean;
-    responseStatus: number | null;
-    responseHeaders: Record<string, string>;
-    responseBody: string;
-    latencyMs: number | null;
-    error: string | null;
-}
 /**
- * Audit namespace — `client.audit.events.{record,list,get}`.
+ * Audit namespace — runtime client.
+ *
+ * Public surface:
+ *   client.audit.events.{record,list,get,flush}
+ *   client.audit.resourceTypes.list(...)
+ *   client.audit.actions.list(...)
+ *
+ * The runtime audit client owns event recording and read-side queries —
+ * fire-and-forget `record`, plus the audit-log list/get and the
+ * distinct-value listings that back the Activity tab filter dropdowns.
  *
- * ADR-047 §2.6. Writes are fire-and-forget by default: `record` enqueues the
- * event onto an in-memory bounded buffer and returns immediately. The buffer
- * worker flushes on a timer or when depth crosses a watermark, and retries
- * transient failures with exponential backoff. Reads are async and return
- * Promises that resolve to typed `AuditEvent` instances.
+ * Management-plane operations (SIEM forwarder CRUD) live on
+ * `SmplManagementClient` under `mgmt.audit.*`. ADR-047 §2.7.
  *
  * All HTTP work is delegated to the auto-generated openapi-fetch client
  * over `../generated/audit.d.ts` — the wrapper does not issue raw fetch
  * calls.
  */
-type AuditHttp = ReturnType<typeof createClient<paths>>;
+type AuditHttp$1 = ReturnType<typeof createClient<paths>>;
 declare class EventsClient {
     /** @internal */
-    readonly _http: AuditHttp;
+    readonly _http: AuditHttp$1;
     private readonly _buffer;
     constructor(opts: {
         apiKey: string;
@@ -209,56 +195,35 @@ declare class EventsClient {
     /** @internal */
     _close(): Promise<void>;
 }
-declare class DeliveryActionsClient {
-    private readonly _http;
-    constructor(_http: AuditHttp);
-    /** Retry a single failed delivery. Records a new attempt row with
-     *  attempt_number = prior + 1; the prior row is unchanged. */
-    retry(forwarderId: string, deliveryId: string): Promise<ForwarderDelivery>;
-}
-declare class DeliveriesClient {
-    private readonly _http;
-    readonly actions: DeliveryActionsClient;
-    constructor(_http: AuditHttp);
-    list(forwarderId: string, params?: ListDeliveriesParams): Promise<ListDeliveriesPage>;
-}
-declare class ForwarderActionsClient {
-    private readonly _http;
-    constructor(_http: AuditHttp);
-    /** Retry every failed delivery for a forwarder. Returns a count summary. */
-    retryFailedDeliveries(forwarderId: string): Promise<RetryFailedDeliveriesSummary>;
-}
-declare class ForwardersClient {
+declare class ResourceTypesClient {
     private readonly _http;
-    readonly deliveries: DeliveriesClient;
-    readonly actions: ForwarderActionsClient;
-    constructor(_http: AuditHttp);
-    create(input: CreateForwarderInput): Promise<Forwarder>;
-    list(params?: ListForwardersParams): Promise<ListForwardersPage>;
-    get(forwarderId: string): Promise<Forwarder>;
-    update(forwarderId: string, input: UpdateForwarderInput): Promise<Forwarder>;
-    delete(forwarderId: string): Promise<void>;
+    constructor(_http: AuditHttp$1);
+    /**
+     * List the distinct `resource_type` slugs recorded for this account.
+     *
+     * Backed by a maintain-by-write side table (ADR-047 §2.5), so the
+     * response time is independent of event volume. Sorted alphabetically;
+     * cursor pagination via `pageAfter`.
+     */
+    list(params?: ListResourceTypesParams): Promise<ListResourceTypesPage>;
 }
-declare class TestForwarderActionsClient {
+declare class ActionsClient {
     private readonly _http;
-    constructor(_http: AuditHttp);
-    /** Server-side proxy to a customer-supplied URL. SSRF-guarded; the
-     *  audit service rejects private/loopback/link-local addresses (incl.
-     *  the EC2 IMDS at 169.254.169.254) and ports outside the allowlist. */
-    execute(input: TestForwarderRequest): Promise<TestForwarderResult>;
-}
-declare class TestForwarderClient {
-    readonly actions: TestForwarderActionsClient;
-    constructor(http: AuditHttp);
-}
-declare class FunctionsClient {
-    readonly test_forwarder: TestForwarderClient;
-    constructor(http: AuditHttp);
+    constructor(_http: AuditHttp$1);
+    /**
+     * List the distinct `action` slugs recorded for this account.
+     *
+     * Without `filterResourceType`, returns one row per distinct action.
+     * With `filterResourceType`, returns only the actions recorded with
+     * that resource_type, powering cascading-filter UIs (ADR-047 §2.5).
+     * Sorted alphabetically; cursor pagination via `pageAfter`.
+     */
+    list(params?: ListActionsParams): Promise<ActionListPage>;
 }
 declare class AuditClient {
     readonly events: EventsClient;
-    readonly forwarders: ForwardersClient;
-    readonly functions: FunctionsClient;
+    readonly resourceTypes: ResourceTypesClient;
+    readonly actions: ActionsClient;
     constructor(opts: {
         apiKey: string;
         baseUrl: string;
@@ -2804,6 +2769,44 @@ declare class LogGroupsClient {
     _updateGroup(group: LogGroup): Promise<LogGroup>;
 }
+/**
+ * Smpl Audit management surface — `mgmt.audit.*`.
+ *
+ * Counterpart to the runtime `AuditClient`. The runtime client owns event
+ * recording and read-side queries; this client owns SIEM forwarder CRUD:
+ *
+ *   mgmt.audit.forwarders.{create,get,list,update,delete}
+ *
+ * New audit-management capabilities should be added here, not in
+ * `src/audit/client.ts`.
+ */
+type AuditHttp = ReturnType<typeof createClient<paths>>;
+/** `mgmt.audit.forwarders.*` — CRUD for SIEM forwarders. */
+declare class ForwardersClient {
+    private readonly _http;
+    /** @internal */
+    constructor(_http: AuditHttp);
+    create(input: CreateForwarderInput): Promise<Forwarder>;
+    list(params?: ListForwardersParams): Promise<ListForwardersPage>;
+    get(forwarderId: string): Promise<Forwarder>;
+    /**
+     * Full-replace update. PUT semantics — every field is overwritten.
+     *
+     * Header values must be re-supplied as plaintext; the GET path
+     * returns them in plaintext for exactly this round-trip.
+     */
+    update(forwarderId: string, input: UpdateForwarderInput): Promise<Forwarder>;
+    delete(forwarderId: string): Promise<void>;
+}
+/** `mgmt.audit.*` — management surface for the audit service. */
+declare class ManagementAuditClient {
+    /** SIEM forwarder CRUD. */
+    readonly forwarders: ForwardersClient;
+    /** @internal */
+    constructor(http: AuditHttp);
+}
 type AppHttp = ReturnType<typeof createClient<___generated_app_d_ts.paths>>;
 type ConfigHttp = ReturnType<typeof createClient<___generated_config_d_ts.paths>>;
 type FlagsHttp = ReturnType<typeof createClient<___generated_flags_d_ts.paths>>;
@@ -2959,6 +2962,8 @@ declare class SmplManagementClient {
     readonly loggers: LoggersClient;
     /** Log group CRUD. */
     readonly logGroups: LogGroupsClient;
+    /** Audit SIEM forwarder CRUD. */
+    readonly audit: ManagementAuditClient;
     /** @internal — shared HTTP transports (so SmplClient can alias them). */
     readonly _appHttp: AppHttp;
     /** @internal */
@@ -2976,6 +2981,7 @@ declare class SmplManagementClient {
     private _flagsRef;
     private _loggersRef;
     private _logGroupsRef;
+    private _auditRef;
     private _appHttpRef;
     private _configHttpRef;
     private _flagsHttpRef;
@@ -3519,8 +3525,12 @@ declare class SmplConflictError extends SmplError {
 declare class SmplValidationError extends SmplError {
     constructor(message: string, statusCode?: number, responseBody?: string, errors?: ApiErrorDetail[]);
 }
+/** Raised when the server requires a higher plan tier (HTTP 402). */
+declare class SmplPaymentRequiredError extends SmplError {
+    constructor(message: string, statusCode?: number, responseBody?: string, errors?: ApiErrorDetail[]);
+}
 /** @deprecated Use {@link ApiErrorDetail}. */
 type ApiErrorObject = ApiErrorDetail;
-export { AccountSettings, AccountSettingsClient, type ApiErrorDetail, type ApiErrorObject, AuditClient, type AuditEvent, type ListEventsPage as AuditEventListPage, type ListEventsParams as AuditEventListParams, BooleanFlag, Color, Config, ConfigChangeEvent, ConfigClient, ConfigEnvironment, ConfigItem, Context, ContextType, ContextTypesClient, ContextsClient, type CreateEventInput as CreateAuditEventInput, Environment, EnvironmentClassification, EnvironmentsClient, Flag, FlagChangeEvent, FlagDeclaration, FlagEnvironment, FlagRule, FlagStats, FlagValue, FlagsClient, ItemType, JsonFlag, LiveConfigProxy, LogGroup, LogLevel, Logger, LoggerChangeEvent, LoggerEnvironment, LoggerSource, type LoggingAdapter, LoggingClient, NumberFlag, Op, PinoAdapter, type PinoAdapterConfig, Rule, SharedWebSocket, SmplClient, type SmplClientOptions, SmplConflictError, SmplConnectionError, SmplError, SmplManagementClient, type SmplManagementClientOptions, SmplNotFoundError, SmplTimeoutError, SmplValidationError, SmplConflictError as SmplkitConflictError, SmplConnectionError as SmplkitConnectionError, SmplError as SmplkitError, SmplNotFoundError as SmplkitNotFoundError, SmplTimeoutError as SmplkitTimeoutError, SmplValidationError as SmplkitValidationError, StringFlag, WinstonAdapter, type WinstonAdapterConfig };
+export { AccountSettings, AccountSettingsClient, type ApiErrorDetail, type ApiErrorObject, type Action as AuditAction, type ActionListPage as AuditActionListPage, AuditClient, type AuditEvent, type ListEventsPage as AuditEventListPage, type ListEventsParams as AuditEventListParams, ForwardersClient as AuditForwardersClient, type ListActionsParams as AuditListActionsParams, type ListResourceTypesParams as AuditListResourceTypesParams, type ResourceType as AuditResourceType, type ListResourceTypesPage as AuditResourceTypeListPage, BooleanFlag, Color, Config, ConfigChangeEvent, ConfigClient, ConfigEnvironment, ConfigItem, Context, ContextType, ContextTypesClient, ContextsClient, type CreateEventInput as CreateAuditEventInput, Environment, EnvironmentClassification, EnvironmentsClient, Flag, FlagChangeEvent, FlagDeclaration, FlagEnvironment, FlagRule, FlagStats, FlagValue, FlagsClient, ItemType, JsonFlag, LiveConfigProxy, LogGroup, LogLevel, Logger, LoggerChangeEvent, LoggerEnvironment, LoggerSource, type LoggingAdapter, LoggingClient, ManagementAuditClient, NumberFlag, Op, PinoAdapter, type PinoAdapterConfig, Rule, SharedWebSocket, SmplClient, type SmplClientOptions, SmplConflictError, SmplConnectionError, SmplError, SmplManagementClient, type SmplManagementClientOptions, SmplNotFoundError, SmplPaymentRequiredError, SmplTimeoutError, SmplValidationError, SmplConflictError as SmplkitConflictError, SmplConnectionError as SmplkitConnectionError, SmplError as SmplkitError, SmplNotFoundError as SmplkitNotFoundError, SmplPaymentRequiredError as SmplkitPaymentRequiredError, SmplTimeoutError as SmplkitTimeoutError, SmplValidationError as SmplkitValidationError, StringFlag, WinstonAdapter, type WinstonAdapterConfig };

package/dist/index.d.ts CHANGED Viewed

@@ -57,6 +57,36 @@ interface ListEventsPage {
     /** Opaque cursor for the next page, or null if this is the last page. */
     nextCursor: string | null;
 }
+interface ResourceType {
+    /** The resource_type slug. */
+    id: string;
+    createdAt: string;
+}
+interface ListResourceTypesParams {
+    pageSize?: number;
+    pageAfter?: string;
+}
+interface ListResourceTypesPage {
+    resourceTypes: ResourceType[];
+    /** Opaque cursor for the next page, or null if this is the last page. */
+    nextCursor: string | null;
+}
+interface Action {
+    /** The action slug. */
+    id: string;
+    createdAt: string;
+}
+interface ListActionsParams {
+    /** When set, returns only the actions seen with this resource_type. */
+    filterResourceType?: string;
+    pageSize?: number;
+    pageAfter?: string;
+}
+interface ActionListPage {
+    actions: Action[];
+    /** Opaque cursor for the next page, or null if this is the last page. */
+    nextCursor: string | null;
+}
 interface HttpHeader {
     name: string;
     value: string;
@@ -91,7 +121,6 @@ interface Forwarder {
     transform: string | null;
     /** Header values are returned redacted on reads. */
     http: ForwarderHttp;
-    data: Record<string, unknown>;
     createdAt: string | null;
     updatedAt: string | null;
     deletedAt: string | null;
@@ -104,7 +133,6 @@ interface CreateForwarderInput {
     enabled?: boolean;
     filter?: Record<string, unknown>;
     transform?: string;
-    data?: Record<string, unknown>;
 }
 interface UpdateForwarderInput extends CreateForwarderInput {
 }
@@ -118,73 +146,31 @@ interface ListForwardersPage {
     forwarders: Forwarder[];
     nextCursor: string | null;
 }
-type ForwarderDeliveryStatus = "SUCCEEDED" | "FAILED" | "FILTERED_OUT" | "SKIPPED_DO_NOT_FORWARD";
-interface ForwarderDelivery {
-    id: string;
-    forwarderId: string;
-    eventId: string;
-    attemptNumber: number;
-    status: ForwarderDeliveryStatus;
-    request: Record<string, unknown> | null;
-    responseStatus: number | null;
-    responseBody: string | null;
-    latencyMs: number | null;
-    error: string | null;
-    createdAt: string | null;
-}
-interface ListDeliveriesParams {
-    status?: ForwarderDeliveryStatus;
-    /** Range notation per ADR-014, e.g. `[2026-01-01T00:00:00Z,*)`. */
-    createdAtRange?: string;
-    eventId?: string;
-    pageSize?: number;
-    pageAfter?: string;
-}
-interface ListDeliveriesPage {
-    deliveries: ForwarderDelivery[];
-    nextCursor: string | null;
-}
-interface RetryFailedDeliveriesSummary {
-    attempted: number;
-    succeeded: number;
-    failed: number;
-}
-interface TestForwarderRequest {
-    url: string;
-    method?: string;
-    headers?: HttpHeader[];
-    body?: string | null;
-    successStatus?: string;
-    /** Capped at 30s server-side. */
-    timeoutMs?: number;
-}
-interface TestForwarderResult {
-    succeeded: boolean;
-    responseStatus: number | null;
-    responseHeaders: Record<string, string>;
-    responseBody: string;
-    latencyMs: number | null;
-    error: string | null;
-}
 /**
- * Audit namespace — `client.audit.events.{record,list,get}`.
+ * Audit namespace — runtime client.
+ *
+ * Public surface:
+ *   client.audit.events.{record,list,get,flush}
+ *   client.audit.resourceTypes.list(...)
+ *   client.audit.actions.list(...)
+ *
+ * The runtime audit client owns event recording and read-side queries —
+ * fire-and-forget `record`, plus the audit-log list/get and the
+ * distinct-value listings that back the Activity tab filter dropdowns.
  *
- * ADR-047 §2.6. Writes are fire-and-forget by default: `record` enqueues the
- * event onto an in-memory bounded buffer and returns immediately. The buffer
- * worker flushes on a timer or when depth crosses a watermark, and retries
- * transient failures with exponential backoff. Reads are async and return
- * Promises that resolve to typed `AuditEvent` instances.
+ * Management-plane operations (SIEM forwarder CRUD) live on
+ * `SmplManagementClient` under `mgmt.audit.*`. ADR-047 §2.7.
  *
  * All HTTP work is delegated to the auto-generated openapi-fetch client
  * over `../generated/audit.d.ts` — the wrapper does not issue raw fetch
  * calls.
  */
-type AuditHttp = ReturnType<typeof createClient<paths>>;
+type AuditHttp$1 = ReturnType<typeof createClient<paths>>;
 declare class EventsClient {
     /** @internal */
-    readonly _http: AuditHttp;
+    readonly _http: AuditHttp$1;
     private readonly _buffer;
     constructor(opts: {
         apiKey: string;
@@ -209,56 +195,35 @@ declare class EventsClient {
     /** @internal */
     _close(): Promise<void>;
 }
-declare class DeliveryActionsClient {
-    private readonly _http;
-    constructor(_http: AuditHttp);
-    /** Retry a single failed delivery. Records a new attempt row with
-     *  attempt_number = prior + 1; the prior row is unchanged. */
-    retry(forwarderId: string, deliveryId: string): Promise<ForwarderDelivery>;
-}
-declare class DeliveriesClient {
-    private readonly _http;
-    readonly actions: DeliveryActionsClient;
-    constructor(_http: AuditHttp);
-    list(forwarderId: string, params?: ListDeliveriesParams): Promise<ListDeliveriesPage>;
-}
-declare class ForwarderActionsClient {
-    private readonly _http;
-    constructor(_http: AuditHttp);
-    /** Retry every failed delivery for a forwarder. Returns a count summary. */
-    retryFailedDeliveries(forwarderId: string): Promise<RetryFailedDeliveriesSummary>;
-}
-declare class ForwardersClient {
+declare class ResourceTypesClient {
     private readonly _http;
-    readonly deliveries: DeliveriesClient;
-    readonly actions: ForwarderActionsClient;
-    constructor(_http: AuditHttp);
-    create(input: CreateForwarderInput): Promise<Forwarder>;
-    list(params?: ListForwardersParams): Promise<ListForwardersPage>;
-    get(forwarderId: string): Promise<Forwarder>;
-    update(forwarderId: string, input: UpdateForwarderInput): Promise<Forwarder>;
-    delete(forwarderId: string): Promise<void>;
+    constructor(_http: AuditHttp$1);
+    /**
+     * List the distinct `resource_type` slugs recorded for this account.
+     *
+     * Backed by a maintain-by-write side table (ADR-047 §2.5), so the
+     * response time is independent of event volume. Sorted alphabetically;
+     * cursor pagination via `pageAfter`.
+     */
+    list(params?: ListResourceTypesParams): Promise<ListResourceTypesPage>;
 }
-declare class TestForwarderActionsClient {
+declare class ActionsClient {
     private readonly _http;
-    constructor(_http: AuditHttp);
-    /** Server-side proxy to a customer-supplied URL. SSRF-guarded; the
-     *  audit service rejects private/loopback/link-local addresses (incl.
-     *  the EC2 IMDS at 169.254.169.254) and ports outside the allowlist. */
-    execute(input: TestForwarderRequest): Promise<TestForwarderResult>;
-}
-declare class TestForwarderClient {
-    readonly actions: TestForwarderActionsClient;
-    constructor(http: AuditHttp);
-}
-declare class FunctionsClient {
-    readonly test_forwarder: TestForwarderClient;
-    constructor(http: AuditHttp);
+    constructor(_http: AuditHttp$1);
+    /**
+     * List the distinct `action` slugs recorded for this account.
+     *
+     * Without `filterResourceType`, returns one row per distinct action.
+     * With `filterResourceType`, returns only the actions recorded with
+     * that resource_type, powering cascading-filter UIs (ADR-047 §2.5).
+     * Sorted alphabetically; cursor pagination via `pageAfter`.
+     */
+    list(params?: ListActionsParams): Promise<ActionListPage>;
 }
 declare class AuditClient {
     readonly events: EventsClient;
-    readonly forwarders: ForwardersClient;
-    readonly functions: FunctionsClient;
+    readonly resourceTypes: ResourceTypesClient;
+    readonly actions: ActionsClient;
     constructor(opts: {
         apiKey: string;
         baseUrl: string;
@@ -2804,6 +2769,44 @@ declare class LogGroupsClient {
     _updateGroup(group: LogGroup): Promise<LogGroup>;
 }
+/**
+ * Smpl Audit management surface — `mgmt.audit.*`.
+ *
+ * Counterpart to the runtime `AuditClient`. The runtime client owns event
+ * recording and read-side queries; this client owns SIEM forwarder CRUD:
+ *
+ *   mgmt.audit.forwarders.{create,get,list,update,delete}
+ *
+ * New audit-management capabilities should be added here, not in
+ * `src/audit/client.ts`.
+ */
+type AuditHttp = ReturnType<typeof createClient<paths>>;
+/** `mgmt.audit.forwarders.*` — CRUD for SIEM forwarders. */
+declare class ForwardersClient {
+    private readonly _http;
+    /** @internal */
+    constructor(_http: AuditHttp);
+    create(input: CreateForwarderInput): Promise<Forwarder>;
+    list(params?: ListForwardersParams): Promise<ListForwardersPage>;
+    get(forwarderId: string): Promise<Forwarder>;
+    /**
+     * Full-replace update. PUT semantics — every field is overwritten.
+     *
+     * Header values must be re-supplied as plaintext; the GET path
+     * returns them in plaintext for exactly this round-trip.
+     */
+    update(forwarderId: string, input: UpdateForwarderInput): Promise<Forwarder>;
+    delete(forwarderId: string): Promise<void>;
+}
+/** `mgmt.audit.*` — management surface for the audit service. */
+declare class ManagementAuditClient {
+    /** SIEM forwarder CRUD. */
+    readonly forwarders: ForwardersClient;
+    /** @internal */
+    constructor(http: AuditHttp);
+}
 type AppHttp = ReturnType<typeof createClient<___generated_app_d_ts.paths>>;
 type ConfigHttp = ReturnType<typeof createClient<___generated_config_d_ts.paths>>;
 type FlagsHttp = ReturnType<typeof createClient<___generated_flags_d_ts.paths>>;
@@ -2959,6 +2962,8 @@ declare class SmplManagementClient {
     readonly loggers: LoggersClient;
     /** Log group CRUD. */
     readonly logGroups: LogGroupsClient;
+    /** Audit SIEM forwarder CRUD. */
+    readonly audit: ManagementAuditClient;
     /** @internal — shared HTTP transports (so SmplClient can alias them). */
     readonly _appHttp: AppHttp;
     /** @internal */
@@ -2976,6 +2981,7 @@ declare class SmplManagementClient {
     private _flagsRef;
     private _loggersRef;
     private _logGroupsRef;
+    private _auditRef;
     private _appHttpRef;
     private _configHttpRef;
     private _flagsHttpRef;
@@ -3519,8 +3525,12 @@ declare class SmplConflictError extends SmplError {
 declare class SmplValidationError extends SmplError {
     constructor(message: string, statusCode?: number, responseBody?: string, errors?: ApiErrorDetail[]);
 }
+/** Raised when the server requires a higher plan tier (HTTP 402). */
+declare class SmplPaymentRequiredError extends SmplError {
+    constructor(message: string, statusCode?: number, responseBody?: string, errors?: ApiErrorDetail[]);
+}
 /** @deprecated Use {@link ApiErrorDetail}. */
 type ApiErrorObject = ApiErrorDetail;
-export { AccountSettings, AccountSettingsClient, type ApiErrorDetail, type ApiErrorObject, AuditClient, type AuditEvent, type ListEventsPage as AuditEventListPage, type ListEventsParams as AuditEventListParams, BooleanFlag, Color, Config, ConfigChangeEvent, ConfigClient, ConfigEnvironment, ConfigItem, Context, ContextType, ContextTypesClient, ContextsClient, type CreateEventInput as CreateAuditEventInput, Environment, EnvironmentClassification, EnvironmentsClient, Flag, FlagChangeEvent, FlagDeclaration, FlagEnvironment, FlagRule, FlagStats, FlagValue, FlagsClient, ItemType, JsonFlag, LiveConfigProxy, LogGroup, LogLevel, Logger, LoggerChangeEvent, LoggerEnvironment, LoggerSource, type LoggingAdapter, LoggingClient, NumberFlag, Op, PinoAdapter, type PinoAdapterConfig, Rule, SharedWebSocket, SmplClient, type SmplClientOptions, SmplConflictError, SmplConnectionError, SmplError, SmplManagementClient, type SmplManagementClientOptions, SmplNotFoundError, SmplTimeoutError, SmplValidationError, SmplConflictError as SmplkitConflictError, SmplConnectionError as SmplkitConnectionError, SmplError as SmplkitError, SmplNotFoundError as SmplkitNotFoundError, SmplTimeoutError as SmplkitTimeoutError, SmplValidationError as SmplkitValidationError, StringFlag, WinstonAdapter, type WinstonAdapterConfig };
+export { AccountSettings, AccountSettingsClient, type ApiErrorDetail, type ApiErrorObject, type Action as AuditAction, type ActionListPage as AuditActionListPage, AuditClient, type AuditEvent, type ListEventsPage as AuditEventListPage, type ListEventsParams as AuditEventListParams, ForwardersClient as AuditForwardersClient, type ListActionsParams as AuditListActionsParams, type ListResourceTypesParams as AuditListResourceTypesParams, type ResourceType as AuditResourceType, type ListResourceTypesPage as AuditResourceTypeListPage, BooleanFlag, Color, Config, ConfigChangeEvent, ConfigClient, ConfigEnvironment, ConfigItem, Context, ContextType, ContextTypesClient, ContextsClient, type CreateEventInput as CreateAuditEventInput, Environment, EnvironmentClassification, EnvironmentsClient, Flag, FlagChangeEvent, FlagDeclaration, FlagEnvironment, FlagRule, FlagStats, FlagValue, FlagsClient, ItemType, JsonFlag, LiveConfigProxy, LogGroup, LogLevel, Logger, LoggerChangeEvent, LoggerEnvironment, LoggerSource, type LoggingAdapter, LoggingClient, ManagementAuditClient, NumberFlag, Op, PinoAdapter, type PinoAdapterConfig, Rule, SharedWebSocket, SmplClient, type SmplClientOptions, SmplConflictError, SmplConnectionError, SmplError, SmplManagementClient, type SmplManagementClientOptions, SmplNotFoundError, SmplPaymentRequiredError, SmplTimeoutError, SmplValidationError, SmplConflictError as SmplkitConflictError, SmplConnectionError as SmplkitConnectionError, SmplError as SmplkitError, SmplNotFoundError as SmplkitNotFoundError, SmplPaymentRequiredError as SmplkitPaymentRequiredError, SmplTimeoutError as SmplkitTimeoutError, SmplValidationError as SmplkitValidationError, StringFlag, WinstonAdapter, type WinstonAdapterConfig };