@tenova/swt3-ai 0.3.4 → 0.4.1

package/README.md

@@ -8,9 +8,9 @@ Witness your AI. Prove it followed the rules. Cryptographic accountability for e
 
 **SWT3 AI Witness SDK for TypeScript**: tamper-proof evidence that your AI is doing what you say it does. Every inference hashed. Every tool call recorded. Every resource access checked against scope. No prompts or responses ever leave your infrastructure.
 
-Works with OpenAI, Anthropic, Vercel AI SDK, and any OpenAI-compatible endpoint (vLLM, Ollama, Azure, Llama.cpp).
+Works with OpenAI, Anthropic, AWS Bedrock, Vercel AI SDK, and any OpenAI-compatible endpoint (vLLM, Ollama, Azure, Llama.cpp).
 
-The EU AI Act takes effect **August 2, 2026**. When regulators ask "prove your AI followed the rules," you need more than logs. You need cryptographic proof.
+GPAI transparency obligations are enforceable now. EU AI Act high-risk enforcement begins **December 2, 2027**. This SDK gives you the evidence chain.
 
 ## See It Work (No Account Needed)
 
@@ -127,7 +127,7 @@ const results = await search("SELECT * FROM transactions WHERE amount > 10000");
 // An AI-TOOL.1 anchor is minted recording: tool name, latency, success/failure
 ```
 
-When an auditor asks "what tools did your agent use?" you have the cryptographic record.
+Each anchor records the tool name, input/output hashes, latency, and success or failure.
 
 ## Witness Agent Resource Access
 
@@ -147,7 +147,7 @@ const results = await queryCustomers("SELECT name FROM customers");
 //   - Was access granted? (yes)
 ```
 
-If the agent tries to access something outside its declared scope, the anchor records a FAIL verdict. When a CISO asks "can you prove your AI agent only accessed what it was authorized to access?" this is the answer.
+If the agent tries to access something outside its declared scope, the anchor records a FAIL verdict with a full evidence trail.
 
 ## Detect Instruction Drift
 
@@ -178,6 +178,75 @@ The `agentId` survives all clearing levels. The `signingKey` produces a cryptogr
 - Fleet-wide governance dashboards
 - Agent-scoped evidence packages for auditors
 
+## Gatekeeper Mode (Pre-Call Enforcement)
+
+New in v0.3.4. Require guardrails to be active *before* the model is called, not just observed after:
+
+```typescript
+import { Witness, GatekeeperError } from "@tenova/swt3-ai";
+
+const witness = new Witness({
+  endpoint: "...",
+  apiKey: "axm_...",
+  tenantId: "...",
+  strict: true,
+  guardrailsRequired: 2,
+  guardrailNames: ["content-filter", "pii-scanner"],
+});
+
+const client = witness.wrap(new OpenAI()) as OpenAI;
+
+// If fewer than 2 guardrails are active, this throws GatekeeperError
+// BEFORE the model call happens. No inference runs without safeguards.
+try {
+  const response = await client.chat.completions.create({
+    model: "gpt-4o",
+    messages: [{ role: "user", content: "..." }],
+  });
+} catch (e) {
+  if (e instanceof GatekeeperError) {
+    console.log(`Blocked: ${e.message}`);
+    // An AI-GRD.3 FAIL anchor is minted recording the gate failure
+  }
+}
+```
+
+Gatekeeper mode mints an **AI-GRD.3** anchor with:
+- **factor_a** = required guardrail count
+- **factor_b** = actual guardrail count
+- **factor_c** = 1 if gate passed, 0 if blocked
+
+## Multi-Agent Chain Linking
+
+New in v0.3.4. Link anchors across agents in a multi-step pipeline using `cycleId`:
+
+```typescript
+const witness = new Witness({
+  endpoint: "...",
+  apiKey: "axm_...",
+  tenantId: "...",
+  agentId: "step-1-classifier",
+  cycleId: "txn-review-abc123",  // shared across all agents in the chain
+});
+```
+
+The `cycleId` survives all clearing levels and appears in every anchor. An auditor can reconstruct the full decision chain by filtering on a single cycle ID.
+
+## Policy Version Binding
+
+New in v0.3.4. Tie every anchor to the specific policy configuration that was in effect:
+
+```typescript
+const witness = new Witness({
+  endpoint: "...",
+  apiKey: "axm_...",
+  tenantId: "...",
+  policyVersion: "v2.1.0-prod-2026-04-20",
+});
+```
+
+The SDK hashes the policy version string (SHA-256, first 12 characters) and includes it in every payload. When policies change between audit periods, the hash changes -proving which rules were in effect for each inference.
+
 ## What Gets Witnessed
 
 Each inference produces anchors for these checks. Every check maps to a regulation.
@@ -196,24 +265,24 @@ Each inference produces anchors for these checks. Every check maps to a regulati
 
 ### EU AI Act Article Mapping
 
-All 12 SWT3 AI witnessing procedures map to specific EU AI Act obligations:
+All 36 SWT3 AI witnessing procedures map to specific EU AI Act obligations:
 
 | Procedure | EU AI Act Article | Obligation | Demo | Production |
 |-----------|-------------------|------------|------|------------|
 | AI-INF.1 | Art. 12(1) | Automatic Logging of Use Periods | ✓ | ✓ |
-| AI-INF.2 | Art. 15(3) | Performance Consistency Monitoring | — | ✓ |
-| AI-INF.3 | Art. 12(1) | Volume & Usage Logging | — | ✓ |
+| AI-INF.2 | Art. 15(3) | Performance Consistency Monitoring | -| ✓ |
+| AI-INF.3 | Art. 12(1) | Volume & Usage Logging | -| ✓ |
 | AI-MDL.1 | Art. 9(4a) | Model Risk Identification | ✓ | ✓ |
-| AI-MDL.2 | Art. 12(2b) | Version & Lineage Tracking | — | ✓ |
-| AI-MDL.3 | Art. 72(1) | Post-Market Drift Monitoring | — | ✓ |
-| AI-MDL.4 | Art. 15(4) | Feedback Loop Isolation | — | ✓ |
+| AI-MDL.2 | Art. 12(2b) | Version & Lineage Tracking | -| ✓ |
+| AI-MDL.3 | Art. 72(1) | Post-Market Drift Monitoring | -| ✓ |
+| AI-MDL.4 | Art. 15(4) | Feedback Loop Isolation | -| ✓ |
 | AI-GRD.1 | Art. 9(2a) | Risk Mitigation Measures | ✓ | ✓ |
-| AI-GRD.2 | Art. 9(4b) | Content Safety Filtering | — | ✓ |
-| AI-GRD.3 | Art. 10(2f) | PII & Data Protection | — | ✓ |
-| AI-EXPL.1 | Art. 13(1) | Transparency & Explainability | — | ✓ |
-| AI-EXPL.2 | Art. 13(3b) | Confidence Calibration | — | ✓ |
+| AI-GRD.2 | Art. 9(4b) | Content Safety Filtering | -| ✓ |
+| AI-GRD.3 | Art. 10(2f) | PII & Data Protection | -| ✓ |
+| AI-EXPL.1 | Art. 13(1) | Transparency & Explainability | -| ✓ |
+| AI-EXPL.2 | Art. 13(3b) | Confidence Calibration | -| ✓ |
 
-The demo demonstrates 3 procedures using simulated data. All 12 are available in production with real inference data. [See live conformity →](https://sovereign.tenova.io/audit/axm_audit_demo_eu_ai_act_public)
+The demo demonstrates 3 procedures using simulated data. All 36 are available in production with real inference data. [See live conformity →](https://sovereign.tenova.io/audit/axm_audit_demo_eu_ai_act_public)
 
 ## How Verdicts Work
 
@@ -249,6 +318,7 @@ Translation: "Access attempt occurred. Target was outside declared scope. Access
 | AI-MDL.2 | 1 (required) | 1 if version recorded | 0 | PASS if b >= a |
 | AI-GRD.1 | Required count | Active count | 1 if all passed | PASS if b >= a |
 | AI-GRD.2 | 1 (clean expected) | 0 if refusal | 0 | PASS if b >= a |
+| AI-GRD.3 | Required count | Active count | 1=passed, 0=blocked | PASS if b >= a AND c == 1 |
 | AI-TOOL.1 | 1 (called) | Latency (ms) | 1=success, 0=error | PASS if b >= a |
 | AI-ACC.1 | 1 (accessed) | 1=in scope, 0=out | 1=granted, 0=denied | PASS if b >= a |
 | AI-ID.1 | 1 (required) | 1 if identity present | 0 | PASS if b >= a |
@@ -336,9 +406,9 @@ const witness = new Witness({
 | EU AI Act conformity | No | Yes (Pro) |
 | Auditor evidence packages | No | Yes (Pro) |
 | Access violation tracking | No | Yes (Pro) |
-| **Survives an audit** | **No** | **Yes** |
+| Audit-ready evidence chain | No | Yes |
 
-> Local anchors prove it to you. A connected engine proves it to your auditor.
+> Local mode is for development and testing. Connected mode is for production evidence.
 
 ## Resilience (Flight Recorder)
 
@@ -372,6 +442,12 @@ const witness = new Witness({
 | `guardrailNames` | [] | Active guardrail names |
 | `agentId` | - | Agent identity (survives all clearing levels) |
 | `signingKey` | - | HMAC-SHA256 key for payload signing |
+| `cycleId` | - | Multi-agent chain link (survives all clearing levels) |
+| `policyVersion` | - | Policy config identifier (hashed in payloads) |
+| `strict` | false | Gatekeeper mode: block inference if guardrails insufficient |
+| `latencyThresholdMs` | 30000 | AI-INF.2 latency limit (ms) |
+| `guardrailsRequired` | 0 | AI-GRD.1 minimum guardrail count |
+| `onFlush` | - | Callback `(payloads, receipts) => void` after each flush |
 | `factorHandoff` | - | "file" for local factor export |
 | `factorHandoffPath` | - | Directory for handoff files |
 
@@ -379,13 +455,37 @@ const witness = new Witness({
 
 | Method | Description |
 |--------|-------------|
-| `witness.wrap(client)` | Returns a Proxy that behaves identically to the original client. Supports OpenAI and Anthropic. |
+| `witness.wrap(client)` | Returns a Proxy that behaves identically to the original client. Supports OpenAI, Anthropic, and AWS Bedrock. |
 | `witness.wrapTool(fn, name?)` | Wraps a function for tool call witnessing (AI-TOOL.1). |
 | `witness.wrapAccess(fn, resource?, scope?)` | Wraps a function for resource access witnessing (AI-ACC.1). |
 | `witness.vercelOnFinish(opts?)` | Returns an onFinish callback for Vercel AI SDK streamText/generateText. |
 | `witness.flush()` | Force-flush all buffered payloads. Returns receipts. |
 | `witness.stop()` | Stop the witness and flush remaining payloads. |
 
+## OpenTelemetry Export
+
+New in v0.3.6. Send SWT3 anchors to your existing observability stack as OTel spans:
+
+```typescript
+import { Witness } from "@tenova/swt3-ai";
+import { OTelExporter } from "@tenova/swt3-ai/exporters/otel";
+
+const exporter = new OTelExporter({ tracerName: "swt3-witness" });
+const witness = new Witness({
+  endpoint: "...",
+  apiKey: "axm_...",
+  tenantId: "...",
+  onFlush: exporter.export.bind(exporter),
+});
+
+// Anchors now appear as spans in Datadog, Grafana, Jaeger, Honeycomb, etc.
+// Span attributes: swt3.procedure_id, swt3.verdict, swt3.fingerprint, swt3.model_id, ...
+```
+
+Install: `npm install @opentelemetry/api`
+
+The `onFlush` callback fires after each successful batch transmission. You can use it for any custom export destination, not just OTel.
+
 ## Installation
 
 ```bash
@@ -394,6 +494,7 @@ npm install @tenova/swt3-ai
 # Peer dependencies (install whichever you use)
 npm install openai              # for OpenAI adapter
 npm install @anthropic-ai/sdk   # for Anthropic adapter
+npm install @opentelemetry/api  # for OTel exporter
 ```
 
 ## Regulatory Coverage
@@ -420,12 +521,43 @@ This SDK produces identical fingerprints to the Python SDK (`swt3-ai`). A unifie
 | API routes / Edge | TypeScript | @tenova/swt3-ai |
 | Frontend (Next.js) | TypeScript | @tenova/swt3-ai + Vercel AI SDK |
 
+## MCP Server (Agentic AI)
+
+AI agents can discover SWT3 compliance tools automatically via the Model Context Protocol. No developer integration required. The agent finds the tools and uses them on its own.
+
+```bash
+npm install @tenova/swt3-mcp
+```
+
+Add to your MCP config:
+
+```json
+{ "mcpServers": { "swt3": { "command": "npx", "args": ["@tenova/swt3-mcp"] } } }
+```
+
+Zero configuration required. Works immediately in demo mode. Add `SWT3_API_KEY` to connect to a production ledger. Compatible with Claude, GPT, and any MCP-compatible agent.
+
+**Tools provided:** `witness_inference`, `verify_anchor`, `list_anchors`, `posture`, `signup`, `health`
+
+This is the first compliance protocol with native MCP support. Agents discover witnessing through standard tool enumeration, making compliance an infrastructure capability rather than a developer burden.
+
 ## Privacy
 
 Your prompts and responses **never leave your infrastructure**. The SDK computes SHA-256 hashes locally and transmits only irreversible hashes and numeric factors. At Clearing Level 3, even the model name is hashed. The witness endpoint is a blind registrar: it stores cryptographic proofs, not your data.
 
 ---
 
+## Documentation
+
+- [SDK Reference](https://sovereign.tenova.io/docs/) -- full API, all providers, clearing levels, configuration
+- [10-Minute Quickstart](https://sovereign.tenova.io/guides/ai-witness-quickstart.html) -- from install to first anchor
+- [SWT3 Protocol Spec](https://sovereign.tenova.io/guides/swt3-protocol.html) -- formal specification with ABNF grammar
+- [Design Rationale](https://sovereign.tenova.io/guides/swt3-design-rationale.html) -- why every protocol decision was made
+- [UCT Registry](https://sovereign.tenova.io/registry) -- 162 procedures, full factor definitions
+- [Anchor Verifier](https://sovereign.tenova.io/verify) -- verify any anchor, zero server calls
+
+---
+
 *SWT3: Sovereign Witness Traceability. We don't run your models. We witness them.*
 
 SWT3 and Sovereign Witness Traceability are trademarks of Tenable Nova LLC. Patent pending. Apache 2.0 licensed.

package/dist/adapters/anthropic.d.ts

@@ -0,0 +1,32 @@
+/**
+ * SWT3 AI Witness SDK — Anthropic Adapter (ES6 Proxy).
+ *
+ * Wraps the Anthropic client so that `client.messages.create()` is
+ * intercepted for witnessing. Two levels deep (simpler than OpenAI).
+ *
+ * Handles both:
+ *   - Non-streaming: Message response object
+ *   - Streaming: MessageStream — accumulates content_block_delta events
+ *     for hashing, witnesses after stream_message_stop
+ *
+ * Anthropic response structure:
+ *   response.content      → ContentBlock[] (text, tool_use, etc.)
+ *   response.model        → string
+ *   response.stop_reason  → "end_turn" | "max_tokens" | "stop_sequence" | "tool_use"
+ *   response.usage        → { input_tokens, output_tokens }
+ *
+ * Anthropic streaming:
+ *   The SDK returns a MessageStream with:
+ *   - Symbol.asyncIterator → yields MessageStreamEvent objects
+ *   - .on("message", cb) → fires when complete message is assembled
+ *   - .finalMessage() → Promise<Message> (the assembled message)
+ *
+ *   Events: message_start, content_block_start, content_block_delta,
+ *           content_block_stop, message_delta, message_stop
+ */
+import type { Witness } from "../witness.js";
+/**
+ * Wrap an Anthropic client with an ES6 Proxy for transparent witnessing.
+ */
+export declare function wrapAnthropic(client: unknown, witness: Witness): unknown;
+//# sourceMappingURL=anthropic.d.ts.map

package/dist/adapters/anthropic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic.d.ts","sourceRoot":"","sources":["../../src/adapters/anthropic.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAIH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AAE7C;;GAEG;AACH,wBAAgB,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAYxE"}

package/dist/adapters/anthropic.js

@@ -0,0 +1,301 @@
+/**
+ * SWT3 AI Witness SDK — Anthropic Adapter (ES6 Proxy).
+ *
+ * Wraps the Anthropic client so that `client.messages.create()` is
+ * intercepted for witnessing. Two levels deep (simpler than OpenAI).
+ *
+ * Handles both:
+ *   - Non-streaming: Message response object
+ *   - Streaming: MessageStream — accumulates content_block_delta events
+ *     for hashing, witnesses after stream_message_stop
+ *
+ * Anthropic response structure:
+ *   response.content      → ContentBlock[] (text, tool_use, etc.)
+ *   response.model        → string
+ *   response.stop_reason  → "end_turn" | "max_tokens" | "stop_sequence" | "tool_use"
+ *   response.usage        → { input_tokens, output_tokens }
+ *
+ * Anthropic streaming:
+ *   The SDK returns a MessageStream with:
+ *   - Symbol.asyncIterator → yields MessageStreamEvent objects
+ *   - .on("message", cb) → fires when complete message is assembled
+ *   - .finalMessage() → Promise<Message> (the assembled message)
+ *
+ *   Events: message_start, content_block_start, content_block_delta,
+ *           content_block_stop, message_delta, message_stop
+ */
+import { sha256Truncated } from "../fingerprint.js";
+/**
+ * Wrap an Anthropic client with an ES6 Proxy for transparent witnessing.
+ */
+export function wrapAnthropic(client, witness) {
+    return new Proxy(client, {
+        get(target, prop) {
+            if (typeof prop === "symbol")
+                return Reflect.get(target, prop);
+            const real = Reflect.get(target, prop);
+            if (prop === "messages") {
+                return createMessagesProxy(real, witness);
+            }
+            return real;
+        },
+    });
+}
+function createMessagesProxy(messages, witness) {
+    return new Proxy(messages, {
+        get(target, prop) {
+            if (typeof prop === "symbol")
+                return Reflect.get(target, prop);
+            const real = Reflect.get(target, prop);
+            if (prop === "create") {
+                return createInterceptor(real, witness);
+            }
+            // Anthropic also has messages.stream() — intercept that too
+            if (prop === "stream") {
+                return createStreamInterceptor(real, witness);
+            }
+            return real;
+        },
+    });
+}
+// ── Non-streaming / auto-detect interceptor ─────────────────────────
+function createInterceptor(realMethod, witness) {
+    return function interceptedCreate(...args) {
+        const kwargs = (args[0] ?? {});
+        const messages = kwargs.messages;
+        const system = kwargs.system;
+        const model = kwargs.model ?? "unknown";
+        const isStreaming = kwargs.stream === true;
+        const promptText = extractPromptText(messages, system);
+        const promptHash = sha256Truncated(promptText);
+        // Hash system prompt separately (instruction drift detection)
+        const systemPromptText = extractSystemOnly(system);
+        const systemPromptHash = systemPromptText ? sha256Truncated(systemPromptText) : undefined;
+        // Gatekeeper pre-call check (strict mode only)
+        let authorizationId;
+        if (witness.strict) {
+            authorizationId = witness.gateCheck(messages, model);
+        }
+        const start = performance.now();
+        const result = realMethod.call(this, ...args);
+        if (isStreaming) {
+            // Streaming via create({ stream: true }) — returns a Stream
+            return handleStreaming(result, witness, model, promptHash, start, systemPromptHash, authorizationId);
+        }
+        // Non-streaming — result is Promise<Message>
+        return result.then((response) => {
+            const elapsedMs = Math.round(performance.now() - start);
+            const record = extractRecord(response, model, promptHash, elapsedMs, systemPromptHash);
+            witness.record(record, authorizationId);
+            return response;
+        });
+    };
+}
+// ── Explicit .stream() interceptor ──────────────────────────────────
+function createStreamInterceptor(realMethod, witness) {
+    return function interceptedStream(...args) {
+        const kwargs = (args[0] ?? {});
+        const messages = kwargs.messages;
+        const system = kwargs.system;
+        const model = kwargs.model ?? "unknown";
+        const promptText = extractPromptText(messages, system);
+        const promptHash = sha256Truncated(promptText);
+        const systemPromptText = extractSystemOnly(system);
+        const systemPromptHash = systemPromptText ? sha256Truncated(systemPromptText) : undefined;
+        // Gatekeeper pre-call check (strict mode only)
+        let authorizationId;
+        if (witness.strict) {
+            authorizationId = witness.gateCheck(messages, model);
+        }
+        const start = performance.now();
+        const result = realMethod.call(this, ...args);
+        return handleStreaming(result, witness, model, promptHash, start, systemPromptHash, authorizationId);
+    };
+}
+// ── Streaming Handler ───────────────────────────────────────────────
+async function* streamAccumulator(stream, witness, model, promptHash, startTime, systemPromptHash, authorizationId) {
+    const textParts = [];
+    let actualModel = model;
+    let stopReason = "";
+    let inputTokens;
+    let outputTokens;
+    for await (const event of stream) {
+        // Yield to developer immediately
+        yield event;
+        const e = event;
+        const type = e.type;
+        if (type === "message_start") {
+            const msg = e.message;
+            if (msg?.model)
+                actualModel = msg.model;
+            const usage = msg?.usage;
+            if (usage?.input_tokens)
+                inputTokens = usage.input_tokens;
+        }
+        if (type === "content_block_delta") {
+            const delta = e.delta;
+            if (delta?.type === "text_delta" && delta?.text) {
+                textParts.push(delta.text);
+            }
+        }
+        if (type === "message_delta") {
+            const delta = e.delta;
+            if (delta?.stop_reason)
+                stopReason = delta.stop_reason;
+            const usage = e.usage;
+            if (usage?.output_tokens)
+                outputTokens = usage.output_tokens;
+        }
+    }
+    // Stream complete — witness
+    const elapsedMs = Math.round(performance.now() - startTime);
+    const responseText = textParts.join("");
+    const hasRefusal = !["end_turn", "max_tokens", "stop_sequence", "tool_use"].includes(stopReason);
+    const record = {
+        modelId: actualModel,
+        modelHash: sha256Truncated(actualModel),
+        promptHash,
+        responseHash: sha256Truncated(responseText),
+        latencyMs: elapsedMs,
+        inputTokens,
+        outputTokens,
+        guardrailsActive: 0,
+        guardrailsRequired: 0,
+        guardrailPassed: true,
+        hasRefusal,
+        provider: "anthropic",
+        systemPromptHash,
+        guardrailNames: [],
+    };
+    witness.record(record, authorizationId);
+}
+function handleStreaming(streamResult, witness, model, promptHash, startTime, systemPromptHash, authorizationId) {
+    // Anthropic's stream() returns a MessageStream directly (not a Promise)
+    // But create({ stream: true }) may return a Promise<Stream>
+    if (streamResult && typeof streamResult.then === "function") {
+        return streamResult.then((stream) => wrapAnthropicStream(stream, witness, model, promptHash, startTime, systemPromptHash, authorizationId));
+    }
+    return wrapAnthropicStream(streamResult, witness, model, promptHash, startTime, systemPromptHash, authorizationId);
+}
+function wrapAnthropicStream(stream, witness, model, promptHash, startTime, systemPromptHash, authorizationId) {
+    const s = stream;
+    const gen = streamAccumulator(s, witness, model, promptHash, startTime, systemPromptHash, authorizationId);
+    return new Proxy(s, {
+        get(target, prop) {
+            if (prop === Symbol.asyncIterator) {
+                return () => gen;
+            }
+            const value = Reflect.get(target, prop);
+            if (typeof value === "function") {
+                // Wrap finalMessage() to also witness the complete response
+                if (prop === "finalMessage") {
+                    return async function wrappedFinalMessage() {
+                        const msg = await value.call(target);
+                        // The stream accumulator will have already witnessed via iteration,
+                        // but if someone calls finalMessage() WITHOUT iterating, we need
+                        // to witness from the assembled message.
+                        return msg;
+                    };
+                }
+                return value.bind(target);
+            }
+            return value;
+        },
+    });
+}
+// ── Factor Extraction ──────────────────────────────────────────────
+function extractSystemOnly(system) {
+    if (typeof system === "string" && system)
+        return system;
+    if (Array.isArray(system)) {
+        const parts = [];
+        for (const block of system) {
+            if (typeof block === "object" && block !== null) {
+                const b = block;
+                if (b.type === "text" && typeof b.text === "string") {
+                    parts.push(b.text);
+                }
+            }
+        }
+        return parts.length > 0 ? parts.join("\n") : undefined;
+    }
+    return undefined;
+}
+function extractPromptText(messages, system = "") {
+    const parts = [];
+    // System prompt
+    if (typeof system === "string" && system) {
+        parts.push(system);
+    }
+    else if (Array.isArray(system)) {
+        for (const block of system) {
+            if (typeof block === "object" && block !== null) {
+                const b = block;
+                if (b.type === "text" && typeof b.text === "string") {
+                    parts.push(b.text);
+                }
+            }
+        }
+    }
+    // Messages
+    if (Array.isArray(messages)) {
+        for (const msg of messages) {
+            if (typeof msg === "object" && msg !== null) {
+                const m = msg;
+                const content = m.content;
+                if (typeof content === "string") {
+                    parts.push(content);
+                }
+                else if (Array.isArray(content)) {
+                    for (const block of content) {
+                        if (typeof block === "object" && block !== null) {
+                            const b = block;
+                            if (b.type === "text" && typeof b.text === "string") {
+                                parts.push(b.text);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+    }
+    return parts.join("\n");
+}
+function extractRecord(response, model, promptHash, elapsedMs, systemPromptHash) {
+    const r = response;
+    // Extract text from content blocks
+    let responseText = "";
+    const contentBlocks = r.content;
+    if (Array.isArray(contentBlocks)) {
+        const texts = [];
+        for (const block of contentBlocks) {
+            if (block.type === "text" && typeof block.text === "string") {
+                texts.push(block.text);
+            }
+        }
+        responseText = texts.join("\n");
+    }
+    const stopReason = r.stop_reason ?? "";
+    const hasRefusal = !["end_turn", "max_tokens", "stop_sequence", "tool_use"].includes(stopReason);
+    const usage = r.usage;
+    const inputTokens = usage?.input_tokens;
+    const outputTokens = usage?.output_tokens;
+    const actualModel = r.model ?? model;
+    return {
+        modelId: actualModel,
+        modelHash: sha256Truncated(actualModel),
+        promptHash,
+        responseHash: sha256Truncated(responseText),
+        latencyMs: elapsedMs,
+        inputTokens,
+        outputTokens,
+        guardrailsActive: 0,
+        guardrailsRequired: 0,
+        guardrailPassed: true,
+        hasRefusal,
+        provider: "anthropic",
+        systemPromptHash,
+        guardrailNames: [],
+    };
+}
+//# sourceMappingURL=anthropic.js.map

package/dist/adapters/anthropic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic.js","sourceRoot":"","sources":["../../src/adapters/anthropic.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAIpD;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,MAAe,EAAE,OAAgB;IAC7D,OAAO,IAAI,KAAK,CAAC,MAAgB,EAAE;QACjC,GAAG,CAAC,MAAc,EAAE,IAAqB;YACvC,IAAI,OAAO,IAAI,KAAK,QAAQ;gBAAE,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAC/D,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAEvC,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;gBACxB,OAAO,mBAAmB,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YAC5C,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED,SAAS,mBAAmB,CAAC,QAAiB,EAAE,OAAgB;IAC9D,OAAO,IAAI,KAAK,CAAC,QAAkB,EAAE;QACnC,GAAG,CAAC,MAAc,EAAE,IAAqB;YACvC,IAAI,OAAO,IAAI,KAAK,QAAQ;gBAAE,OAAO,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAC/D,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YAEvC,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACtB,OAAO,iBAAiB,CAAC,IAAuC,EAAE,OAAO,CAAC,CAAC;YAC7E,CAAC;YAED,4DAA4D;YAC5D,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;gBACtB,OAAO,uBAAuB,CAAC,IAAuC,EAAE,OAAO,CAAC,CAAC;YACnF,CAAC;YAED,OAAO,IAAI,CAAC;QACd,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED,uEAAuE;AAEvE,SAAS,iBAAiB,CACxB,UAA2C,EAC3C,OAAgB;IAEhB,OAAO,SAAS,iBAAiB,CAAgB,GAAG,IAAe;QACjE,MAAM,MAAM,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAA4B,CAAC;QAC1D,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAqB,CAAC;QAC9C,MAAM,MAAM,GAAG,MAAM,CAAC,MAAiB,CAAC;QACxC,MAAM,KAAK,GAAI,MAAM,CAAC,KAAgB,IAAI,SAAS,CAAC;QACpD,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,KAAK,IAAI,CAAC;QAE3C,MAAM,UAAU,GAAG,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACvD,MAAM,UAAU,GAAG,eAAe,CAAC,UAAU,CAAC,CAAC;QAE/C,8DAA8D;QAC9D,MAAM,gBAAgB,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;QACnD,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,CAAC,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAE1F,+CAA+C;QAC/C,IAAI,eAAmC,CAAC;QACxC,IAAK,OAAe,CAAC,MAAM,EAAE,CAAC;YAC5B,eAAe,GAAI,OAAe,CAAC,SAAS,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QAChE,CAAC;QAED,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;QAEhC,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,IAAI,CAAC,CAAC;QAE9C,IAAI,WAAW,EAAE,CAAC;YAChB,4DAA4D;YAC5D,OAAO,eAAe,CAAC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,gBAAgB,EAAE,eAAe,CAAC,CAAC;QACvG,CAAC;QAED,6CAA6C;QAC7C,OAAQ,MAA2B,CAAC,IAAI,CAAC,CAAC,QAAiB,EAAE,EAAE;YAC7D,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,CAAC;YACxD,MAAM,MAAM,GAAG,aAAa,CAAC,QAAQ,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB,CAAC,CAAC;YACvF,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;YACxC,OAAO,QAAQ,CAAC;QAClB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC;AACJ,CAAC;AAED,uEAAuE;AAEvE,SAAS,uBAAuB,CAC9B,UAA2C,EAC3C,OAAgB;IAEhB,OAAO,SAAS,iBAAiB,CAAgB,GAAG,IAAe;QACjE,MAAM,MAAM,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAA4B,CAAC;QAC1D,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAqB,CAAC;QAC9C,MAAM,MAAM,GAAG,MAAM,CAAC,MAAiB,CAAC;QACxC,MAAM,KAAK,GAAI,MAAM,CAAC,KAAgB,IAAI,SAAS,CAAC;QAEpD,MAAM,UAAU,GAAG,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACvD,MAAM,UAAU,GAAG,eAAe,CAAC,UAAU,CAAC,CAAC;QAE/C,MAAM,gBAAgB,GAAG,iBAAiB,CAAC,MAAM,CAAC,CAAC;QACnD,MAAM,gBAAgB,GAAG,gBAAgB,CAAC,CAAC,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QAE1F,+CAA+C;QAC/C,IAAI,eAAmC,CAAC;QACxC,IAAK,OAAe,CAAC,MAAM,EAAE,CAAC;YAC5B,eAAe,GAAI,OAAe,CAAC,SAAS,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;QAChE,CAAC;QAED,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;QAEhC,MAAM,MAAM,GAAG,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,GAAG,IAAI,CAAC,CAAC;QAC9C,OAAO,eAAe,CAAC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,KAAK,EAAE,gBAAgB,EAAE,eAAe,CAAC,CAAC;IACvG,CAAC,CAAC;AACJ,CAAC;AAED,uEAAuE;AAEvE,KAAK,SAAS,CAAC,CAAC,iBAAiB,CAC/B,MAA8B,EAC9B,OAAgB,EAChB,KAAa,EACb,UAAkB,EAClB,SAAiB,EACjB,gBAAyB,EACzB,eAAwB;IAExB,MAAM,SAAS,GAAa,EAAE,CAAC;IAC/B,IAAI,WAAW,GAAG,KAAK,CAAC;IACxB,IAAI,UAAU,GAAG,EAAE,CAAC;IACpB,IAAI,WAA+B,CAAC;IACpC,IAAI,YAAgC,CAAC;IAErC,IAAI,KAAK,EAAE,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QACjC,iCAAiC;QACjC,MAAM,KAAK,CAAC;QAEZ,MAAM,CAAC,GAAG,KAAgC,CAAC;QAC3C,MAAM,IAAI,GAAG,CAAC,CAAC,IAAc,CAAC;QAE9B,IAAI,IAAI,KAAK,eAAe,EAAE,CAAC;YAC7B,MAAM,GAAG,GAAG,CAAC,CAAC,OAA8C,CAAC;YAC7D,IAAI,GAAG,EAAE,KAAK;gBAAE,WAAW,GAAG,GAAG,CAAC,KAAe,CAAC;YAClD,MAAM,KAAK,GAAG,GAAG,EAAE,KAA4C,CAAC;YAChE,IAAI,KAAK,EAAE,YAAY;gBAAE,WAAW,GAAG,KAAK,CAAC,YAAsB,CAAC;QACtE,CAAC;QAED,IAAI,IAAI,KAAK,qBAAqB,EAAE,CAAC;YACnC,MAAM,KAAK,GAAG,CAAC,CAAC,KAA4C,CAAC;YAC7D,IAAI,KAAK,EAAE,IAAI,KAAK,YAAY,IAAI,KAAK,EAAE,IAAI,EAAE,CAAC;gBAChD,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,IAAc,CAAC,CAAC;YACvC,CAAC;QACH,CAAC;QAED,IAAI,IAAI,KAAK,eAAe,EAAE,CAAC;YAC7B,MAAM,KAAK,GAAG,CAAC,CAAC,KAA4C,CAAC;YAC7D,IAAI,KAAK,EAAE,WAAW;gBAAE,UAAU,GAAG,KAAK,CAAC,WAAqB,CAAC;YACjE,MAAM,KAAK,GAAG,CAAC,CAAC,KAA4C,CAAC;YAC7D,IAAI,KAAK,EAAE,aAAa;gBAAE,YAAY,GAAG,KAAK,CAAC,aAAuB,CAAC;QACzE,CAAC;IACH,CAAC;IAED,4BAA4B;IAC5B,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,CAAC;IAC5D,MAAM,YAAY,GAAG,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACxC,MAAM,UAAU,GAAG,CAAC,CAAC,UAAU,EAAE,YAAY,EAAE,eAAe,EAAE,UAAU,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAEjG,MAAM,MAAM,GAAoB;QAC9B,OAAO,EAAE,WAAW;QACpB,SAAS,EAAE,eAAe,CAAC,WAAW,CAAC;QACvC,UAAU;QACV,YAAY,EAAE,eAAe,CAAC,YAAY,CAAC;QAC3C,SAAS,EAAE,SAAS;QACpB,WAAW;QACX,YAAY;QACZ,gBAAgB,EAAE,CAAC;QACnB,kBAAkB,EAAE,CAAC;QACrB,eAAe,EAAE,IAAI;QACrB,UAAU;QACV,QAAQ,EAAE,WAAW;QACrB,gBAAgB;QAChB,cAAc,EAAE,EAAE;KACnB,CAAC;IAEF,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;AAC1C,CAAC;AAED,SAAS,eAAe,CACtB,YAAqB,EACrB,OAAgB,EAChB,KAAa,EACb,UAAkB,EAClB,SAAiB,EACjB,gBAAyB,EACzB,eAAwB;IAExB,wEAAwE;IACxE,4DAA4D;IAC5D,IAAI,YAAY,IAAI,OAAQ,YAAiC,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;QAClF,OAAQ,YAAiC,CAAC,IAAI,CAAC,CAAC,MAAe,EAAE,EAAE,CACjE,mBAAmB,CAAC,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB,EAAE,eAAe,CAAC,CACtG,CAAC;IACJ,CAAC;IACD,OAAO,mBAAmB,CAAC,YAAY,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB,EAAE,eAAe,CAAC,CAAC;AACrH,CAAC;AAED,SAAS,mBAAmB,CAC1B,MAAe,EACf,OAAgB,EAChB,KAAa,EACb,UAAkB,EAClB,SAAiB,EACjB,gBAAyB,EACzB,eAAwB;IAExB,MAAM,CAAC,GAAG,MAA0C,CAAC;IAErD,MAAM,GAAG,GAAG,iBAAiB,CAC3B,CAAsC,EACtC,OAAO,EACP,KAAK,EACL,UAAU,EACV,SAAS,EACT,gBAAgB,EAChB,eAAe,CAChB,CAAC;IAEF,OAAO,IAAI,KAAK,CAAC,CAAC,EAAE;QAClB,GAAG,CAAC,MAAwC,EAAE,IAAqB;YACjE,IAAI,IAAI,KAAK,MAAM,CAAC,aAAa,EAAE,CAAC;gBAClC,OAAO,GAAG,EAAE,CAAC,GAAG,CAAC;YACnB,CAAC;YAED,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;YACxC,IAAI,OAAO,KAAK,KAAK,UAAU,EAAE,CAAC;gBAChC,4DAA4D;gBAC5D,IAAI,IAAI,KAAK,cAAc,EAAE,CAAC;oBAC5B,OAAO,KAAK,UAAU,mBAAmB;wBACvC,MAAM,GAAG,GAAG,MAAO,KAAgC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;wBACjE,oEAAoE;wBACpE,iEAAiE;wBACjE,yCAAyC;wBACzC,OAAO,GAAG,CAAC;oBACb,CAAC,CAAC;gBACJ,CAAC;gBACD,OAAQ,KAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC1C,CAAC;YACD,OAAO,KAAK,CAAC;QACf,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED,sEAAsE;AAEtE,SAAS,iBAAiB,CAAC,MAAe;IACxC,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM;QAAE,OAAO,MAAM,CAAC;IACxD,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAC1B,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;gBAChD,MAAM,CAAC,GAAG,KAAgC,CAAC;gBAC3C,IAAI,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;oBACpD,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;gBACrB,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACzD,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAS,iBAAiB,CAAC,QAAiB,EAAE,SAAkB,EAAE;IAChE,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,gBAAgB;IAChB,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,EAAE,CAAC;QACzC,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACrB,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QACjC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;gBAChD,MAAM,CAAC,GAAG,KAAgC,CAAC;gBAC3C,IAAI,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;oBACpD,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;gBACrB,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,WAAW;IACX,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;gBAC5C,MAAM,CAAC,GAAG,GAA8B,CAAC;gBACzC,MAAM,OAAO,GAAG,CAAC,CAAC,OAAO,CAAC;gBAC1B,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;oBAChC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBACtB,CAAC;qBAAM,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;oBAClC,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;wBAC5B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;4BAChD,MAAM,CAAC,GAAG,KAAgC,CAAC;4BAC3C,IAAI,CAAC,CAAC,IAAI,KAAK,MAAM,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gCACpD,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;4BACrB,CAAC;wBACH,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,SAAS,aAAa,CACpB,QAAiB,EACjB,KAAa,EACb,UAAkB,EAClB,SAAiB,EACjB,gBAAyB;IAEzB,MAAM,CAAC,GAAG,QAAmC,CAAC;IAE9C,mCAAmC;IACnC,IAAI,YAAY,GAAG,EAAE,CAAC;IACtB,MAAM,aAAa,GAAG,CAAC,CAAC,OAAqD,CAAC;IAC9E,IAAI,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;QACjC,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;YAClC,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;gBAC5D,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;QACD,YAAY,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC;IAED,MAAM,UAAU,GAAI,CAAC,CAAC,WAAsB,IAAI,EAAE,CAAC;IACnD,MAAM,UAAU,GAAG,CAAC,CAAC,UAAU,EAAE,YAAY,EAAE,eAAe,EAAE,UAAU,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAEjG,MAAM,KAAK,GAAG,CAAC,CAAC,KAA4C,CAAC;IAC7D,MAAM,WAAW,GAAG,KAAK,EAAE,YAAkC,CAAC;IAC9D,MAAM,YAAY,GAAG,KAAK,EAAE,aAAmC,CAAC;IAEhE,MAAM,WAAW,GAAI,CAAC,CAAC,KAAgB,IAAI,KAAK,CAAC;IAEjD,OAAO;QACL,OAAO,EAAE,WAAW;QACpB,SAAS,EAAE,eAAe,CAAC,WAAW,CAAC;QACvC,UAAU;QACV,YAAY,EAAE,eAAe,CAAC,YAAY,CAAC;QAC3C,SAAS,EAAE,SAAS;QACpB,WAAW;QACX,YAAY;QACZ,gBAAgB,EAAE,CAAC;QACnB,kBAAkB,EAAE,CAAC;QACrB,eAAe,EAAE,IAAI;QACrB,UAAU;QACV,QAAQ,EAAE,WAAW;QACrB,gBAAgB;QAChB,cAAc,EAAE,EAAE;KACnB,CAAC;AACJ,CAAC"}

package/dist/adapters/bedrock.d.ts

@@ -0,0 +1,33 @@
+/**
+ * SWT3 AI Witness SDK — AWS Bedrock Adapter (ES6 Proxy).
+ *
+ * Wraps the @aws-sdk/client-bedrock-runtime client so that
+ * `client.send(new ConverseCommand(...))` and
+ * `client.send(new InvokeModelCommand(...))` are intercepted.
+ *
+ * AWS Bedrock uses the Command pattern:
+ *   const response = await client.send(new ConverseCommand({ modelId, messages }));
+ *
+ * The adapter intercepts `send()` and checks if the command is a
+ * ConverseCommand or InvokeModelCommand to extract factors.
+ *
+ * Copyright (c) 2026 Tenable Nova LLC. Apache 2.0. Patent pending.
+ */
+import type { Witness } from "../witness.js";
+/**
+ * Wrap a BedrockRuntimeClient with transparent witnessing.
+ *
+ * Usage:
+ *   import { BedrockRuntimeClient, ConverseCommand } from "@aws-sdk/client-bedrock-runtime";
+ *   import { Witness } from "@tenova/swt3-ai";
+ *
+ *   const witness = new Witness({ endpoint, apiKey, tenantId });
+ *   const client = witness.wrap(new BedrockRuntimeClient({ region: "us-east-1" }));
+ *
+ *   const response = await client.send(new ConverseCommand({
+ *     modelId: "anthropic.claude-3-5-sonnet-20241022-v2:0",
+ *     messages: [{ role: "user", content: [{ text: "Hello" }] }],
+ *   }));
+ */
+export declare function wrapBedrock(client: unknown, witness: Witness): unknown;
+//# sourceMappingURL=bedrock.d.ts.map

package/dist/adapters/bedrock.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"bedrock.d.ts","sourceRoot":"","sources":["../../src/adapters/bedrock.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAIH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AAE7C;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAatE"}