@spendguard/sdk 0.5.0

package/dist/proto.d.ts

@@ -0,0 +1,609 @@
+import { H as HandshakeRequest, b as HandshakeResponse, D as DecisionRequest, c as DecisionResponse, P as PublishOutcomeRequest, d as PublishOutcomeResponse, e as TraceEvent, f as TraceEventAck, I as IssueBudgetGrantRequest, g as IssueBudgetGrantResponse, h as RevokeBudgetGrantRequest, i as RevokeBudgetGrantResponse, j as ConsumeBudgetGrantRequest, k as ConsumeBudgetGrantResponse, l as DrainSubscribeRequest, m as DrainSignal, n as ResumeAfterApprovalRequest, o as ResumeAfterApprovalResponse, p as ReleaseReservationRequest, q as ReleaseReservationResponse, a as ReserveSessionRequest, r as ReserveSessionOutcome, C as CommitSessionDeltaRequest, s as CommitSessionDeltaOutcome, R as ReleaseSessionRequest, t as ReleaseSessionOutcome } from './adapter-D9T3yEEw.js';
+export { u as adapter, v as common } from './adapter-D9T3yEEw.js';
+import { RpcOptions, UnaryCall, DuplexStreamingCall, ServerStreamingCall, ServiceInfo, RpcTransport, ServiceType } from '@protobuf-ts/runtime-rpc';
+import { MessageType } from '@protobuf-ts/runtime';
+
+/**
+ * -- Handshake (per Sidecar §5 protocol_handshake) ------------------------
+ *
+ * @generated from protobuf service spendguard.sidecar_adapter.v1.SidecarAdapter
+ */
+interface ISidecarAdapterClient {
+    /**
+     * Initial handshake; mandatory before any other RPC. Negotiates SDK version,
+     * runtime kind, capability level, tenant_id assertion, key epochs.
+     *
+     * @generated from protobuf rpc: Handshake
+     */
+    handshake(input: HandshakeRequest, options?: RpcOptions): UnaryCall<HandshakeRequest, HandshakeResponse>;
+    /**
+     * Adapter requests a decision at a *.pre trigger point.
+     * Sidecar runs Contract §6 stages 1-5 and returns DecisionResult.
+     * Sidecar may take up to Contract §14 latency budget (50ms p99 warm).
+     *
+     * @generated from protobuf rpc: RequestDecision
+     */
+    requestDecision(input: DecisionRequest, options?: RpcOptions): UnaryCall<DecisionRequest, DecisionResponse>;
+    /**
+     * Adapter confirms publish_effect outcome (per Contract §6 stage 7).
+     * Idempotent via effect_hash (Stage 2 §4.6).
+     *
+     * @generated from protobuf rpc: ConfirmPublishOutcome
+     */
+    confirmPublishOutcome(input: PublishOutcomeRequest, options?: RpcOptions): UnaryCall<PublishOutcomeRequest, PublishOutcomeResponse>;
+    /**
+     * Adapter emits canonical/lifecycle events (agent.run.start, agent.step.post
+     * tool.call.post, llm.call.post for commit, etc.). Server-streamed because
+     * sidecar may emit follow-up acks or correction events.
+     *
+     * @generated from protobuf rpc: EmitTraceEvents
+     */
+    emitTraceEvents(options?: RpcOptions): DuplexStreamingCall<TraceEvent, TraceEventAck>;
+    /**
+     * Parent agent requests budget_grant JWT to delegate to child agent.
+     *
+     * @generated from protobuf rpc: IssueBudgetGrant
+     */
+    issueBudgetGrant(input: IssueBudgetGrantRequest, options?: RpcOptions): UnaryCall<IssueBudgetGrantRequest, IssueBudgetGrantResponse>;
+    /**
+     * Parent revokes a previously issued grant.
+     *
+     * @generated from protobuf rpc: RevokeBudgetGrant
+     */
+    revokeBudgetGrant(input: RevokeBudgetGrantRequest, options?: RpcOptions): UnaryCall<RevokeBudgetGrantRequest, RevokeBudgetGrantResponse>;
+    /**
+     * Child agent uses grant to bootstrap budget context.
+     *
+     * @generated from protobuf rpc: ConsumeBudgetGrant
+     */
+    consumeBudgetGrant(input: ConsumeBudgetGrantRequest, options?: RpcOptions): UnaryCall<ConsumeBudgetGrantRequest, ConsumeBudgetGrantResponse>;
+    /**
+     * Sidecar signals adapter that drain has begun; adapter should stop
+     * initiating new decision boundaries and let in-flight finish.
+     *
+     * @generated from protobuf rpc: StreamDrainSignal
+     */
+    streamDrainSignal(input: DrainSubscribeRequest, options?: RpcOptions): ServerStreamingCall<DrainSubscribeRequest, DrainSignal>;
+    /**
+     * Adapter calls this AFTER the human approver has approved/denied the
+     * pending approval (REQUIRE_APPROVAL outcome from RequestDecision).
+     * Sidecar:
+     *   1. Looks up the approval by (tenant_id, decision_id, approval_id).
+     *   2. Reads the current state (must be `approved` or `denied`).
+     *   3. For `approved`: re-runs Contract evaluation + Ledger.ReserveSet
+     *      with a NEW idempotency key derived from approval_id (so a
+     *      replay can never double-publish the effect).
+     *   4. For `denied`: emits the deny audit row + returns Decision::STOP.
+     *   5. For other states (pending/expired/cancelled): returns the
+     *      typed Error code so the adapter raises the right exception.
+     *
+     * Idempotent: repeated ResumeAfterApproval calls with the same
+     * (decision_id, approval_id) produce the same DecisionResponse
+     * because the idempotency key includes both.
+     *
+     * @generated from protobuf rpc: ResumeAfterApproval
+     */
+    resumeAfterApproval(input: ResumeAfterApprovalRequest, options?: RpcOptions): UnaryCall<ResumeAfterApprovalRequest, ResumeAfterApprovalResponse>;
+    /**
+     * Adapter-initiated release of a held reservation before commit.
+     * Use when the provider call is aborted, the client times out, or the
+     * agent run is cancelled — and the adapter wants to surface that
+     * explicitly rather than waiting for an outcome-driven (APPLY_FAILED
+     * or trace-event-driven) implicit release.
+     *
+     * Coexists with the implicit release paths in ConfirmPublishOutcome and
+     * EmitTraceEvents; those remain unchanged. Implicit paths are still the
+     * default for adapters that report outcomes naturally; the explicit RPC
+     * is for adapters that want to match the Agent Spend Protocol Draft-01
+     * wire shape (docs/specs/agent-spend-protocol/draft-01.md §4).
+     *
+     * Idempotent: repeated ReleaseReservation calls with the same
+     * (reservation_id, idempotency_key) pair return the original outcome.
+     *
+     * @generated from protobuf rpc: ReleaseReservation
+     */
+    releaseReservation(input: ReleaseReservationRequest, options?: RpcOptions): UnaryCall<ReleaseReservationRequest, ReleaseReservationResponse>;
+    /**
+     * Reserve a session-scoped ledger hold before a realtime voice session
+     * connects to paid model providers. Idempotent by
+     * (tenant_id, session_id, route, idempotency_key).
+     *
+     * @generated from protobuf rpc: ReserveSession
+     */
+    reserveSession(input: ReserveSessionRequest, options?: RpcOptions): UnaryCall<ReserveSessionRequest, ReserveSessionOutcome>;
+    /**
+     * Commit one positive streaming spend delta against an existing session
+     * reservation. Idempotent by (session_reservation_id,
+     * streaming_commit_id). amount_atomic_delta MUST be > 0.
+     *
+     * @generated from protobuf rpc: CommitSessionDelta
+     */
+    commitSessionDelta(input: CommitSessionDeltaRequest, options?: RpcOptions): UnaryCall<CommitSessionDeltaRequest, CommitSessionDeltaOutcome>;
+    /**
+     * Release the uncommitted remainder of a session-scoped reservation.
+     * Idempotent by (session_reservation_id, idempotency_key).
+     *
+     * @generated from protobuf rpc: ReleaseSession
+     */
+    releaseSession(input: ReleaseSessionRequest, options?: RpcOptions): UnaryCall<ReleaseSessionRequest, ReleaseSessionOutcome>;
+}
+/**
+ * -- Handshake (per Sidecar §5 protocol_handshake) ------------------------
+ *
+ * @generated from protobuf service spendguard.sidecar_adapter.v1.SidecarAdapter
+ */
+declare class SidecarAdapterClient implements ISidecarAdapterClient, ServiceInfo {
+    private readonly _transport;
+    typeName: any;
+    methods: any;
+    options: any;
+    constructor(_transport: RpcTransport);
+    /**
+     * Initial handshake; mandatory before any other RPC. Negotiates SDK version,
+     * runtime kind, capability level, tenant_id assertion, key epochs.
+     *
+     * @generated from protobuf rpc: Handshake
+     */
+    handshake(input: HandshakeRequest, options?: RpcOptions): UnaryCall<HandshakeRequest, HandshakeResponse>;
+    /**
+     * Adapter requests a decision at a *.pre trigger point.
+     * Sidecar runs Contract §6 stages 1-5 and returns DecisionResult.
+     * Sidecar may take up to Contract §14 latency budget (50ms p99 warm).
+     *
+     * @generated from protobuf rpc: RequestDecision
+     */
+    requestDecision(input: DecisionRequest, options?: RpcOptions): UnaryCall<DecisionRequest, DecisionResponse>;
+    /**
+     * Adapter confirms publish_effect outcome (per Contract §6 stage 7).
+     * Idempotent via effect_hash (Stage 2 §4.6).
+     *
+     * @generated from protobuf rpc: ConfirmPublishOutcome
+     */
+    confirmPublishOutcome(input: PublishOutcomeRequest, options?: RpcOptions): UnaryCall<PublishOutcomeRequest, PublishOutcomeResponse>;
+    /**
+     * Adapter emits canonical/lifecycle events (agent.run.start, agent.step.post
+     * tool.call.post, llm.call.post for commit, etc.). Server-streamed because
+     * sidecar may emit follow-up acks or correction events.
+     *
+     * @generated from protobuf rpc: EmitTraceEvents
+     */
+    emitTraceEvents(options?: RpcOptions): DuplexStreamingCall<TraceEvent, TraceEventAck>;
+    /**
+     * Parent agent requests budget_grant JWT to delegate to child agent.
+     *
+     * @generated from protobuf rpc: IssueBudgetGrant
+     */
+    issueBudgetGrant(input: IssueBudgetGrantRequest, options?: RpcOptions): UnaryCall<IssueBudgetGrantRequest, IssueBudgetGrantResponse>;
+    /**
+     * Parent revokes a previously issued grant.
+     *
+     * @generated from protobuf rpc: RevokeBudgetGrant
+     */
+    revokeBudgetGrant(input: RevokeBudgetGrantRequest, options?: RpcOptions): UnaryCall<RevokeBudgetGrantRequest, RevokeBudgetGrantResponse>;
+    /**
+     * Child agent uses grant to bootstrap budget context.
+     *
+     * @generated from protobuf rpc: ConsumeBudgetGrant
+     */
+    consumeBudgetGrant(input: ConsumeBudgetGrantRequest, options?: RpcOptions): UnaryCall<ConsumeBudgetGrantRequest, ConsumeBudgetGrantResponse>;
+    /**
+     * Sidecar signals adapter that drain has begun; adapter should stop
+     * initiating new decision boundaries and let in-flight finish.
+     *
+     * @generated from protobuf rpc: StreamDrainSignal
+     */
+    streamDrainSignal(input: DrainSubscribeRequest, options?: RpcOptions): ServerStreamingCall<DrainSubscribeRequest, DrainSignal>;
+    /**
+     * Adapter calls this AFTER the human approver has approved/denied the
+     * pending approval (REQUIRE_APPROVAL outcome from RequestDecision).
+     * Sidecar:
+     *   1. Looks up the approval by (tenant_id, decision_id, approval_id).
+     *   2. Reads the current state (must be `approved` or `denied`).
+     *   3. For `approved`: re-runs Contract evaluation + Ledger.ReserveSet
+     *      with a NEW idempotency key derived from approval_id (so a
+     *      replay can never double-publish the effect).
+     *   4. For `denied`: emits the deny audit row + returns Decision::STOP.
+     *   5. For other states (pending/expired/cancelled): returns the
+     *      typed Error code so the adapter raises the right exception.
+     *
+     * Idempotent: repeated ResumeAfterApproval calls with the same
+     * (decision_id, approval_id) produce the same DecisionResponse
+     * because the idempotency key includes both.
+     *
+     * @generated from protobuf rpc: ResumeAfterApproval
+     */
+    resumeAfterApproval(input: ResumeAfterApprovalRequest, options?: RpcOptions): UnaryCall<ResumeAfterApprovalRequest, ResumeAfterApprovalResponse>;
+    /**
+     * Adapter-initiated release of a held reservation before commit.
+     * Use when the provider call is aborted, the client times out, or the
+     * agent run is cancelled — and the adapter wants to surface that
+     * explicitly rather than waiting for an outcome-driven (APPLY_FAILED
+     * or trace-event-driven) implicit release.
+     *
+     * Coexists with the implicit release paths in ConfirmPublishOutcome and
+     * EmitTraceEvents; those remain unchanged. Implicit paths are still the
+     * default for adapters that report outcomes naturally; the explicit RPC
+     * is for adapters that want to match the Agent Spend Protocol Draft-01
+     * wire shape (docs/specs/agent-spend-protocol/draft-01.md §4).
+     *
+     * Idempotent: repeated ReleaseReservation calls with the same
+     * (reservation_id, idempotency_key) pair return the original outcome.
+     *
+     * @generated from protobuf rpc: ReleaseReservation
+     */
+    releaseReservation(input: ReleaseReservationRequest, options?: RpcOptions): UnaryCall<ReleaseReservationRequest, ReleaseReservationResponse>;
+    /**
+     * Reserve a session-scoped ledger hold before a realtime voice session
+     * connects to paid model providers. Idempotent by
+     * (tenant_id, session_id, route, idempotency_key).
+     *
+     * @generated from protobuf rpc: ReserveSession
+     */
+    reserveSession(input: ReserveSessionRequest, options?: RpcOptions): UnaryCall<ReserveSessionRequest, ReserveSessionOutcome>;
+    /**
+     * Commit one positive streaming spend delta against an existing session
+     * reservation. Idempotent by (session_reservation_id,
+     * streaming_commit_id). amount_atomic_delta MUST be > 0.
+     *
+     * @generated from protobuf rpc: CommitSessionDelta
+     */
+    commitSessionDelta(input: CommitSessionDeltaRequest, options?: RpcOptions): UnaryCall<CommitSessionDeltaRequest, CommitSessionDeltaOutcome>;
+    /**
+     * Release the uncommitted remainder of a session-scoped reservation.
+     * Idempotent by (session_reservation_id, idempotency_key).
+     *
+     * @generated from protobuf rpc: ReleaseSession
+     */
+    releaseSession(input: ReleaseSessionRequest, options?: RpcOptions): UnaryCall<ReleaseSessionRequest, ReleaseSessionOutcome>;
+}
+
+type adapter_client_ISidecarAdapterClient = ISidecarAdapterClient;
+type adapter_client_SidecarAdapterClient = SidecarAdapterClient;
+declare const adapter_client_SidecarAdapterClient: typeof SidecarAdapterClient;
+declare namespace adapter_client {
+  export { type adapter_client_ISidecarAdapterClient as ISidecarAdapterClient, adapter_client_SidecarAdapterClient as SidecarAdapterClient };
+}
+
+declare class TokenizeRequest$Type extends MessageType<TokenizeRequest> {
+    constructor();
+}
+/**
+ * Round-2 fix M6 + Round-3 fix N3 (DoS protection): the server-side
+ * TokenizerSvc rejects requests that exceed the following per-field
+ * caps with gRPC InvalidArgument:
+ *   model.len()      <= 256 bytes
+ *   raw_text.len()   <= 4 MiB
+ *   messages.len()   <= 1000 elements
+ *   message.content  <= 4 MiB each
+ * Plus a protocol-layer cap configured in main.rs:
+ *   max_decoding_message_size = 4 MiB     (matches field caps)
+ * The protocol cap is the dominant hard cap — anything larger than
+ * 4 MiB is rejected by tonic with ResourceExhausted BEFORE proto
+ * deserialisation. The field caps are redundant defense-in-depth that
+ * also defend the in-process library form (no tonic protocol layer)
+ * and provide more specific InvalidArgument errors for callers that
+ * want to metric per-field violations. Real workloads sit far below.
+ *
+ * @generated from protobuf message spendguard.tokenizer.v1.TokenizeRequest
+ */
+interface TokenizeRequest {
+    /**
+     * Required. Model string as appears in the LLM request body
+     * (e.g., "gpt-4o-mini", "claude-3-5-sonnet-20240620").
+     * Server rejects with InvalidArgument if len > 256 bytes (M6).
+     *
+     * @generated from protobuf field: string model = 1
+     */
+    model: string;
+    /**
+     * Messages array per OpenAI Chat Completions shape; tokenizer
+     * applies model-specific message envelope tokens (system + user +
+     * assistant role markers + content separators) where applicable.
+     * For non-chat models or alternate envelope shapes, use raw_text.
+     * Server rejects with InvalidArgument if len > 1000 (M6).
+     *
+     * @generated from protobuf field: repeated spendguard.tokenizer.v1.TokenizeRequest.Message messages = 2
+     */
+    messages: TokenizeRequest_Message[];
+    /**
+     * Mutually exclusive with messages; for text-completion shape.
+     * PROTOCOL CAP: 4 MiB.
+     * Server rejects with InvalidArgument if len > 4 MiB (M6 / R3 N3 / POST_GA_03 #114).
+     *
+     * @generated from protobuf field: string raw_text = 3
+     */
+    rawText: string;
+    /**
+     * Caller-supplied request_id for tracing/audit; mints UUIDv7 if
+     * empty. Non-empty ids must parse as UUIDv7; UUIDv4 remains accepted
+     * for backward compatibility and increments a migration metric.
+     * Surfaced in tokenize span (per trace-schema-spec §3.1).
+     *
+     * @generated from protobuf field: string request_id = 4
+     */
+    requestId: string;
+}
+/**
+ * @generated MessageType for protobuf message spendguard.tokenizer.v1.TokenizeRequest
+ */
+declare const TokenizeRequest: TokenizeRequest$Type;
+declare class TokenizeRequest_Message$Type extends MessageType<TokenizeRequest_Message> {
+    constructor();
+}
+/**
+ * @generated from protobuf message spendguard.tokenizer.v1.TokenizeRequest.Message
+ */
+interface TokenizeRequest_Message {
+    /**
+     * "system" | "user" | "assistant" | "tool"
+     *
+     * @generated from protobuf field: string role = 1
+     */
+    role: string;
+    /**
+     * Text content; vision/multimodal v2 will add binary
+     * content_parts as a separate additive field.
+     * PROTOCOL CAP: 4 MiB.
+     * Server rejects with InvalidArgument if len > 4 MiB (M6 / R3 N3 / POST_GA_03 #114).
+     *
+     * @generated from protobuf field: string content = 2
+     */
+    content: string;
+    /**
+     * Tool call payload tokens count for tool-using agents.
+     * Tokenizer adds function name + arguments JSON encoding to
+     * total count using the model's tokenizer.
+     *
+     * @generated from protobuf field: repeated spendguard.tokenizer.v1.TokenizeRequest.Message.ToolCall tool_calls = 3
+     */
+    toolCalls: TokenizeRequest_Message_ToolCall[];
+}
+/**
+ * @generated MessageType for protobuf message spendguard.tokenizer.v1.TokenizeRequest.Message
+ */
+declare const TokenizeRequest_Message: TokenizeRequest_Message$Type;
+declare class TokenizeRequest_Message_ToolCall$Type extends MessageType<TokenizeRequest_Message_ToolCall> {
+    constructor();
+}
+/**
+ * @generated from protobuf message spendguard.tokenizer.v1.TokenizeRequest.Message.ToolCall
+ */
+interface TokenizeRequest_Message_ToolCall {
+    /**
+     * @generated from protobuf field: string name = 1
+     */
+    name: string;
+    /**
+     * Canonical JSON encoding of arguments (already serialised).
+     *
+     * @generated from protobuf field: string arguments_json = 2
+     */
+    argumentsJson: string;
+}
+/**
+ * @generated MessageType for protobuf message spendguard.tokenizer.v1.TokenizeRequest.Message.ToolCall
+ */
+declare const TokenizeRequest_Message_ToolCall: TokenizeRequest_Message_ToolCall$Type;
+declare class TokenizeResponse$Type extends MessageType<TokenizeResponse> {
+    constructor();
+}
+/**
+ * @generated from protobuf message spendguard.tokenizer.v1.TokenizeResponse
+ */
+interface TokenizeResponse {
+    /**
+     * Authoritative token count for the input.
+     *
+     * @generated from protobuf field: int64 input_tokens = 1
+     */
+    inputTokens: string;
+    /**
+     * Which tier was used. Always one of T2 | T3 (T1 never on hot
+     * path per §1.3 invariant).
+     * "T2" | "T3"
+     *
+     * @generated from protobuf field: string tier = 2
+     */
+    tier: string;
+    /**
+     * Encoder version that produced this count. Empty string for
+     * Tier 3 (no versioned encoder used). Maps to audit_outbox
+     * tokenizer_version_id via the mirror crate
+     * (spendguard-prediction-mirror).
+     * UUIDv7 of tokenizer_versions row.
+     *
+     * @generated from protobuf field: string tokenizer_version_id = 3
+     */
+    tokenizerVersionId: string;
+    /**
+     * Encoder kind for diagnostics; redundant with version_id but
+     * cheap. Mirrors tokenizer_versions.kind CHECK constraint.
+     * "OPENAI_TIKTOKEN" | "ANTHROPIC_BPE" | "GEMINI_BPE" |
+     * "COHERE_BPE" | "SENTENCEPIECE_LLAMA" | "HEURISTIC"
+     *
+     * @generated from protobuf field: string kind = 4
+     */
+    kind: string;
+    /**
+     * For Tier 3 fallback only: the underlying char count + the
+     * conservative margin applied; lets caller log / metric.
+     * Both are zero for Tier 2 (proto3 default).
+     *
+     * @generated from protobuf field: int64 fallback_char_count = 5
+     */
+    fallbackCharCount: string;
+    /**
+     * e.g., 1.05 for 5% conservative (per spec §5.1).
+     *
+     * @generated from protobuf field: float fallback_margin_ratio = 6
+     */
+    fallbackMarginRatio: number;
+    /**
+     * Time spent inside Tokenize (excludes RPC overhead). Useful for
+     * SLO tracking; not on audit chain.
+     *
+     * @generated from protobuf field: int64 latency_ns = 7
+     */
+    latencyNs: string;
+}
+/**
+ * @generated MessageType for protobuf message spendguard.tokenizer.v1.TokenizeResponse
+ */
+declare const TokenizeResponse: TokenizeResponse$Type;
+declare class ShadowVerifyRequest$Type extends MessageType<ShadowVerifyRequest> {
+    constructor();
+}
+/**
+ * @generated from protobuf message spendguard.tokenizer.v1.ShadowVerifyRequest
+ */
+interface ShadowVerifyRequest {
+    /**
+     * Same shape as TokenizeRequest; shadow worker passes through.
+     *
+     * @generated from protobuf field: string model = 1
+     */
+    model: string;
+    /**
+     * @generated from protobuf field: repeated spendguard.tokenizer.v1.TokenizeRequest.Message messages = 2
+     */
+    messages: TokenizeRequest_Message[];
+    /**
+     * @generated from protobuf field: string raw_text = 3
+     */
+    rawText: string;
+    /**
+     * Tier 2 result captured at hot-path time, for drift comparison.
+     *
+     * @generated from protobuf field: int64 t2_input_tokens = 4
+     */
+    t2InputTokens: string;
+    /**
+     * @generated from protobuf field: string t2_tokenizer_version_id = 5
+     */
+    t2TokenizerVersionId: string;
+}
+/**
+ * @generated MessageType for protobuf message spendguard.tokenizer.v1.ShadowVerifyRequest
+ */
+declare const ShadowVerifyRequest: ShadowVerifyRequest$Type;
+declare class ShadowVerifyResponse$Type extends MessageType<ShadowVerifyResponse> {
+    constructor();
+}
+/**
+ * @generated from protobuf message spendguard.tokenizer.v1.ShadowVerifyResponse
+ */
+interface ShadowVerifyResponse {
+    /**
+     * Provider-reported count.
+     *
+     * @generated from protobuf field: int64 t1_input_tokens = 1
+     */
+    t1InputTokens: string;
+    /**
+     * Absolute drift |T1 - T2| / T1; alert threshold compare against
+     * configured per-kind threshold (default 1.0%).
+     *
+     * @generated from protobuf field: float drift_ratio = 2
+     */
+    driftRatio: number;
+    /**
+     * Whether this sample triggered a drift_alert event emission.
+     *
+     * @generated from protobuf field: bool drift_alert_emitted = 3
+     */
+    driftAlertEmitted: boolean;
+    /**
+     * Latency to provider; for circuit-breaker metrics.
+     *
+     * @generated from protobuf field: int64 provider_latency_ms = 4
+     */
+    providerLatencyMs: string;
+    /**
+     * Provider response identifiers for debugging.
+     *
+     * @generated from protobuf field: string provider_request_id = 5
+     */
+    providerRequestId: string;
+}
+/**
+ * @generated MessageType for protobuf message spendguard.tokenizer.v1.ShadowVerifyResponse
+ */
+declare const ShadowVerifyResponse: ShadowVerifyResponse$Type;
+/**
+ * @generated ServiceType for protobuf service spendguard.tokenizer.v1.Tokenizer
+ */
+declare const Tokenizer: ServiceType;
+
+declare const tokenizer_ShadowVerifyRequest: typeof ShadowVerifyRequest;
+declare const tokenizer_ShadowVerifyResponse: typeof ShadowVerifyResponse;
+declare const tokenizer_TokenizeRequest: typeof TokenizeRequest;
+declare const tokenizer_TokenizeRequest_Message: typeof TokenizeRequest_Message;
+declare const tokenizer_TokenizeRequest_Message_ToolCall: typeof TokenizeRequest_Message_ToolCall;
+declare const tokenizer_TokenizeResponse: typeof TokenizeResponse;
+declare const tokenizer_Tokenizer: typeof Tokenizer;
+declare namespace tokenizer {
+  export { tokenizer_ShadowVerifyRequest as ShadowVerifyRequest, tokenizer_ShadowVerifyResponse as ShadowVerifyResponse, tokenizer_TokenizeRequest as TokenizeRequest, tokenizer_TokenizeRequest_Message as TokenizeRequest_Message, tokenizer_TokenizeRequest_Message_ToolCall as TokenizeRequest_Message_ToolCall, tokenizer_TokenizeResponse as TokenizeResponse, tokenizer_Tokenizer as Tokenizer };
+}
+
+/**
+ * @generated from protobuf service spendguard.tokenizer.v1.Tokenizer
+ */
+interface ITokenizerClient {
+    /**
+     * Hot-path tokenize. Synchronous; returns Tier 2 result (or Tier 3
+     * fallback) under 1ms p99 (library form) / 3ms p99 (gRPC over UDS).
+     * Per spec §10.1 latency SLO.
+     *
+     * @generated from protobuf rpc: Tokenize
+     */
+    tokenize(input: TokenizeRequest, options?: RpcOptions): UnaryCall<TokenizeRequest, TokenizeResponse>;
+    /**
+     * Async shadow check via provider count_tokens API. Caller is
+     * expected to be the shadow sampling worker, NOT the hot path.
+     * Returns Tier 1 (provider-reported) count.
+     *
+     * SLICE_03: stub — returns gRPC UNIMPLEMENTED. SLICE_05 wires the
+     * real shadow worker + Anthropic / Gemini provider clients.
+     *
+     * @generated from protobuf rpc: ShadowVerify
+     */
+    shadowVerify(input: ShadowVerifyRequest, options?: RpcOptions): UnaryCall<ShadowVerifyRequest, ShadowVerifyResponse>;
+}
+/**
+ * @generated from protobuf service spendguard.tokenizer.v1.Tokenizer
+ */
+declare class TokenizerClient implements ITokenizerClient, ServiceInfo {
+    private readonly _transport;
+    typeName: any;
+    methods: any;
+    options: any;
+    constructor(_transport: RpcTransport);
+    /**
+     * Hot-path tokenize. Synchronous; returns Tier 2 result (or Tier 3
+     * fallback) under 1ms p99 (library form) / 3ms p99 (gRPC over UDS).
+     * Per spec §10.1 latency SLO.
+     *
+     * @generated from protobuf rpc: Tokenize
+     */
+    tokenize(input: TokenizeRequest, options?: RpcOptions): UnaryCall<TokenizeRequest, TokenizeResponse>;
+    /**
+     * Async shadow check via provider count_tokens API. Caller is
+     * expected to be the shadow sampling worker, NOT the hot path.
+     * Returns Tier 1 (provider-reported) count.
+     *
+     * SLICE_03: stub — returns gRPC UNIMPLEMENTED. SLICE_05 wires the
+     * real shadow worker + Anthropic / Gemini provider clients.
+     *
+     * @generated from protobuf rpc: ShadowVerify
+     */
+    shadowVerify(input: ShadowVerifyRequest, options?: RpcOptions): UnaryCall<ShadowVerifyRequest, ShadowVerifyResponse>;
+}
+
+type tokenizer_client_ITokenizerClient = ITokenizerClient;
+type tokenizer_client_TokenizerClient = TokenizerClient;
+declare const tokenizer_client_TokenizerClient: typeof TokenizerClient;
+declare namespace tokenizer_client {
+  export { type tokenizer_client_ITokenizerClient as ITokenizerClient, tokenizer_client_TokenizerClient as TokenizerClient };
+}
+
+export { adapter_client as adapterClient, tokenizer, tokenizer_client as tokenizerClient };