@the-ai-company/cbio-node-runtime 1.58.0 → 1.60.0

package/README.md

@@ -114,8 +114,8 @@ const tokens = await client.ownerIssueAllSessionTokens();
 ### 5. Secret Management (Owner)
 
 ```ts
-// Write a secret. Source metadata is recorded by the vault.
-const record = await client.ownerWriteSecret({
+// Create a secret. Active aliases must stay unique.
+const record = await client.ownerCreateSecret({
   alias: 'api-token',
   plaintext: 'super-secret-value'
 });
@@ -123,9 +123,12 @@ const record = await client.ownerWriteSecret({
 // 4. Grant agent capabilities
 await client.ownerGrantCapability({
   agentId,
-  secretAliases: ['api-token'],
-  scope: 'https://api.example.com/*',
-  methods: ['POST']
+  write: {
+    secretIds: [record.secretId.value],
+    scope: 'https://api.example.com/*',
+    methods: ['POST']
+  },
+  read: { mode: 'full' }
 });
 ```
 
@@ -145,37 +148,59 @@ const agent = createAgentClient({
 });
 
 const result = await agent.agentDispatch({ ... });
+const requests = await agent.agentListRequests();
+const request = await agent.agentGetRequest(result.requestId);
+const ownerView = await client.ownerGetRequest({ requestId: result.requestId });
 ```
 
 The agent process does not execute directly with its raw private key. If it has an identity key, it still needs to exchange that trust for a session token before dispatching.
 
+LLM-facing rule of thumb:
+- `agentDispatch(...)` means "do the task now". It attempts real execution immediately.
+- `agentSubmitCapabilityRequest(...)` means "ask for permission". It never executes the task by itself.
+- `agentListRequests()` / `agentGetRequest(...)` are how the agent checks asynchronous results after execution.
+- `ownerListRequests()` / `ownerGetRequest(...)` are how the owner reviews the full sealed request record before approving read.
+
 ### 7. Proactive Capability Requests
 
-If an LLM or orchestration layer already knows it needs a broader scope, it can create a `PENDING` capability state up front instead of discovering one URL at a time through failed dispatch attempts.
+If an LLM or orchestration layer already knows it needs a broader scope, it can create a capability carrier up front instead of discovering one URL at a time through failed dispatch attempts.
 
 ```ts
 const request = await client.ownerSubmitCapabilityRequest({
   requester: { kind: 'trusted_executor', id: 'llm-planner' },
   agentId,
-  secretAliases: ['api-token'],
-  scope: 'https://api.example.com/users/*',
-  methods: ['GET'],
+  write: {
+    secretIds: [record.secretId.value],
+    scope: 'https://api.example.com/users/*',
+    methods: ['GET']
+  },
+  read: { mode: 'full' },
   justification: 'Need collection-level user read access'
 });
 
-const pendingRequests = await client.ownerListCapabilityStates({ status: 'PENDING' });
+const pendingRequests = await client.ownerListCapabilityStates({ writeStatus: 'PENDING' });
+
+await client.ownerApproveCapabilityWrite({
+  requestId: pendingRequests[0].requestId
+});
 
-await client.ownerExecuteCapabilityStateAndGrant({
+await client.ownerAllowAlways({
+  requestId: pendingRequests[0].requestId
+});
+
+await client.ownerApproveCapabilityRead({
   requestId: pendingRequests[0].requestId
 });
 ```
 
-This uses the same capability-state model as dispatch discovery:
-- `ownerSubmitCapabilityRequest(...)` creates a `PENDING` capability state for owner review.
-- `ownerOnCapabilityState(...)` pushes new capability-state changes to the owner UI or controller.
-- `ownerExecuteCapabilityStateAndGrant(...)` executes the pending request and turns the state into `GRANTED`.
-- `ownerExecuteCapabilityStateOnce(...)` executes the pending request once and then deletes the state.
-- `ownerRejectCapabilityState(...)` turns the state into `REJECTED`.
+This uses the same carrier model as dispatch discovery:
+- `ownerSubmitCapabilityRequest(...)` creates a capability carrier for owner review.
+- `ownerOnCapabilityState(...)` pushes new carrier changes to the owner UI or controller.
+- `ownerApproveCapabilityWrite(...)` approves the outbound write action first.
+- `ownerAllowAlways(...)` persists the carrier as an active capability. For dispatch discovery it also executes the blocked request; for explicit requests it grants the capability without sending network traffic.
+- `ownerAllowOnce(...)` executes the approved write action once and then deletes the carrier record. This option is only valid for dispatch discovery carriers that already contain a concrete blocked request.
+- `ownerApproveCapabilityRead(...)` approves response release separately on the same carrier record.
+- `ownerDeny(...)` rejects the currently pending action on the carrier.
 
 ### 8. Zero-Configuration Agent Discovery (v1.56.0+)
 
@@ -187,13 +212,13 @@ const manifest = await agent.agentIntrospect();
 console.log(manifest.agent.agentId);      // Vault-known agent ID
 console.log(manifest.agent.identityId);   // Stable identity ID
 console.log(manifest.agent.nickname);     // Optional nickname
-console.log(manifest.capabilities);       // Unified capability view: GRANTED + PENDING
+console.log(manifest.capabilities);       // Capability carriers with write/read action states
 console.log(manifest.tools);              // List of available API tools with JSON-Schema
 ```
 
 This manifest can be directly fed into an LLM's system prompt or tool-calling configuration to enable fully autonomous, zero-config integration.
 
-`agentListCapabilities()` now returns the same unified capability-state view used by the manifest, so agents and schedulers can see both granted and pending entries through one table.
+`agentListCapabilities()` returns the same carrier view used by the manifest, and `agentListRequests()` / `agentGetRequest()` expose sealed request history and per-request results through controlled interfaces.
 
 ---
 
@@ -211,7 +236,7 @@ This manifest can be directly fed into an LLM's system prompt or tool-calling co
 
 ### Human-in-the-Loop (HITL) Workflow
 
-The system uses a unified capability-state model. If an agent attempts an action not explicitly in its white-list (the "Iron Triangle" of Agent-Key-Action), the dispatch returns `PENDING` and the runtime records a `PENDING` capability state:
+If an agent attempts an action not explicitly in its white-list, the dispatch returns `PENDING` and the runtime records a capability carrier whose `write` action is still pending owner approval:
 
 ```ts
 // In Agent process
@@ -222,15 +247,21 @@ if (result.status === 'PENDING') {
 
 // OR: Use the observer for real-time push
 client.ownerOnCapabilityState((state) => {
-  if (state.status === 'PENDING') {
-    console.log("New pending capability state:", state.requestId);
+  if (state.actions.write.status === 'PENDING') {
+    console.log("New pending capability carrier:", state.requestId);
   }
 });
 
 // In Owner process (GUI or Script)
-const pending = await client.ownerListCapabilityStates({ status: 'PENDING' });
+const pending = await client.ownerListCapabilityStates({ writeStatus: 'PENDING' });
 if (pending.length > 0) {
-  await client.ownerExecuteCapabilityStateAndGrant({
+  await client.ownerApproveCapabilityWrite({
+    requestId: pending[0].requestId
+  });
+  await client.ownerAllowAlways({
+    requestId: pending[0].requestId
+  });
+  await client.ownerApproveCapabilityRead({
     requestId: pending[0].requestId
   });
 }

package/dist/clients/agent/client.d.ts

@@ -1,13 +1,16 @@
 import type { CreatedIdentity } from "../../runtime/identity.js";
 import { type Clock } from "../../vault-core/index.js";
 import type { VaultService } from "../../vault-ingress/index.js";
-import type { AgentCapabilityEnvelope, AgentDispatchIntent, AgentDispatchTransport, AgentSubmitCapabilityRequestInput, AgentVisibleSecretRecord } from "./contracts.js";
+import type { AgentCapabilityEnvelope, AgentDispatchIntent, AgentDispatchTransport, AgentSubmitCapabilityRequestInput, AgentVisibleRequestRecord, AgentVisibleSecretRecord } from "./contracts.js";
 export interface AgentIdentity {
     agentId: string;
 }
 /**
  * A client for agents to perform authorized operations (e.g., dispatch HTTP requests with secrets).
  * This client uses a delegated capability granted by the owner.
+ * Agents can use secrets and request broader access, but they do not directly manage
+ * the secret lifecycle inside the vault. Newly obtained credentials are persisted only
+ * through owner actions or owner-configured vault flows that explicitly capture them.
  */
 export interface AgentClient {
     /**
@@ -29,9 +32,14 @@ export interface AgentClient {
     agentDispatch(intent: AgentDispatchIntent): Promise<import("../../vault-core/index.js").DispatchResult>;
     agentListCapabilities(): Promise<readonly import("../../vault-core/index.js").AgentCapabilityState[]>;
     agentListSecrets(): Promise<readonly AgentVisibleSecretRecord[]>;
+    agentListRequests(): Promise<readonly AgentVisibleRequestRecord[]>;
+    agentGetRequest(requestId: string): Promise<import("../../vault-core/index.js").AgentRequestResult>;
     /**
      * Introspects the current runtime environment, providing identity, capabilities, and a toolbox manifest.
      * Equivalent to '--help' or 'llms.txt' for the agent.
+     * This is the primary place where an agent should learn its operational boundary:
+     * it can use existing secrets and request more permission, but it cannot directly
+     * create, update, or remove secrets in the vault.
      */
     agentIntrospect(): Promise<import("../../vault-core/index.js").AgentRuntimeManifest>;
     agentSubmitCapabilityRequest(input: AgentSubmitCapabilityRequestInput): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;

package/dist/clients/agent/client.js

@@ -29,11 +29,10 @@ class DefaultAgentClient {
                 vaultId: this._capability.vaultId,
                 capabilityId: this._capability.capabilityId,
                 agentId: this._capability.agentId,
-                secretIds: this._capability.secretIds,
-                secretAliases: this._capability.secretAliases,
                 operation: this._capability.operation,
-                scope: this._capability.scope,
-                methods: this._capability.methods,
+                customFlowId: this._capability.customFlowId,
+                write: this._capability.write,
+                read: this._capability.read,
                 issuedAt: this._capability.issuedAt,
                 expiresAt: this._capability.expiresAt,
                 revocationVersion: this._capability.revocationVersion,
@@ -94,14 +93,39 @@ class DefaultAgentClient {
             proof: await this._createProof(requestId, requestedAt, "get_manifest"),
         });
     }
+    async agentListRequests() {
+        const requestedAt = this._clock.nowIso();
+        const requestId = createRequestIdValue("list_requests");
+        return this._transport.agentListRequests({
+            vaultId: this._capability.vaultId,
+            requestId,
+            requestedAt,
+            agent: { kind: "agent", id: this._identity.agentId },
+            proof: await this._createProof(requestId, requestedAt, "list_requests"),
+        });
+    }
+    async agentGetRequest(targetRequestId) {
+        const requestedAt = this._clock.nowIso();
+        const requestId = createRequestIdValue("read_request_result");
+        return this._transport.agentGetRequest({
+            vaultId: this._capability.vaultId,
+            requestId,
+            requestedAt,
+            targetRequestId,
+            agent: { kind: "agent", id: this._identity.agentId },
+            proof: await this._createProof(requestId, requestedAt, "read_request_result", { targetRequestId }),
+        });
+    }
     async agentSubmitCapabilityRequest(input) {
         const requestedAt = input.requestedAt ?? this._clock.nowIso();
         const requestId = createRequestIdValue("submit_capability_request");
         const payload = {
-            scope: input.scope,
-            methods: input.methods,
+            write: {
+                ...input.write,
+                secretAliases: input.secretAliases ?? null,
+            },
+            read: input.read,
             operation: input.operation ?? "dispatch_http",
-            secretAliases: input.secretAliases ?? [],
             justification: input.justification ?? null,
         };
         return this._transport.agentSubmitCapabilityRequest({
@@ -110,12 +134,18 @@ class DefaultAgentClient {
             requestedAt,
             agent: { kind: "agent", id: this._identity.agentId },
             proof: await this._createProof(requestId, requestedAt, "submit_capability_request", payload),
-            scope: {
+            capability: {
                 operation: input.operation ?? "dispatch_http",
-                secretAliases: input.secretAliases ?? [],
-                scope: input.scope,
-                methods: [...input.methods],
+                write: {
+                    scope: input.write.scope,
+                    methods: [...input.write.methods],
+                },
+                read: {
+                    mode: input.read.mode,
+                    paths: input.read.paths ? [...input.read.paths] : undefined,
+                },
             },
+            secretAliases: input.secretAliases ? [...input.secretAliases] : undefined,
             justification: input.justification,
         });
     }

package/dist/clients/agent/client.js.map

@@ -1 +1 @@
-{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/clients/agent/client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,WAAW,EAAc,MAAM,2BAA2B,CAAC;AACpE,OAAO,EAAE,mBAAmB,EAAE,MAAM,iCAAiC,CAAC;AAuDtE,MAAM,kBAAkB;IAEH;IACA;IACA;IACA;IACA;IALnB,YACmB,SAAwB,EACxB,WAAoC,EACpC,UAAkC,EAClC,MAAa,EACb,MAAc;QAJd,cAAS,GAAT,SAAS,CAAe;QACxB,gBAAW,GAAX,WAAW,CAAyB;QACpC,eAAU,GAAV,UAAU,CAAwB;QAClC,WAAM,GAAN,MAAM,CAAO;QACb,WAAM,GAAN,MAAM,CAAQ;IAC9B,CAAC;IAEJ,KAAK,CAAC,aAAa,CAAC,MAA2B;QAC7C,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QAC/D,MAAM,SAAS,GAAG,oBAAoB,CAAC,UAAU,CAAC,CAAC;QAEnD,OAAO,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC;YACnC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE;gBACL,IAAI,EAAE,OAAO;gBACb,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO;aAC3B;YACD,UAAU,EAAE;gBACV,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;gBACjC,YAAY,EAAE,IAAI,CAAC,WAAW,CAAC,YAAY;gBAC3C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;gBACjC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,aAAa,EAAE,IAAI,CAAC,WAAW,CAAC,aAAa;gBAC7C,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,KAAK,EAAE,IAAI,CAAC,WAAW,CAAC,KAAK;gBAC7B,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;gBACjC,QAAQ,EAAE,IAAI,CAAC,WAAW,CAAC,QAAQ;gBACnC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,iBAAiB,EAAE,IAAI,CAAC,WAAW,CAAC,iBAAiB;gBACrD,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;aACtC;YACD,KAAK,EAAE;gBACL,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO;gBAC/B,KAAK,EAAE,IAAI,CAAC,MAAM;gBAClB,SAAS;gBACT,WAAW;aACZ;YACD,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,IAAI,EAAE,MAAM,CAAC,IAAI;SAClB,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,YAAY,CACxB,SAAiB,EACjB,WAAmB,EACnB,OAAe,EACf,WAAoC,EAAE;QAEtC,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO;YAC/B,KAAK,EAAE,IAAI,CAAC,MAAM;YAClB,SAAS;YACT,WAAW;SACZ,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,qBAAqB;QACzB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,mBAAmB,CAAC,CAAC;QAC5D,OAAO,IAAI,CAAC,UAAU,CAAC,qBAAqB,CAAC;YAC3C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,mBAAmB,CAAC;SAC5E,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,gBAAgB;QACpB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;QACvD,OAAO,IAAI,CAAC,UAAU,CAAC,gBAAgB,CAAC;YACtC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,cAAc,CAAC;SACvE,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,eAAe;QACnB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;QACvD,OAAO,IAAI,CAAC,UAAU,CAAC,uBAAuB,CAAC;YAC7C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,cAAc,CAAC;SACvE,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,4BAA4B,CAAC,KAAwC;QACzE,MAAM,WAAW,GAAG,KAAK,CAAC,WAAW,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QAC9D,MAAM,SAAS,GAAG,oBAAoB,CAAC,2BAA2B,CAAC,CAAC;QACpE,MAAM,OAAO,GAAG;YACd,KAAK,EAAE,KAAK,CAAC,KAAK;YAClB,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,eAAe;YAC7C,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,EAAE;YACxC,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,IAAI;SAC3C,CAAC;QACF,OAAO,IAAI,CAAC,UAAU,CAAC,4BAA4B,CAAC;YAClD,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,2BAA2B,EAAE,OAAO,CAAC;YAC5F,KAAK,EAAE;gBACL,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,eAAe;gBAC7C,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,EAAE;gBACxC,KAAK,EAAE,KAAK,CAAC,KAAK;gBAClB,OAAO,EAAE,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC;aAC5B;YACD,aAAa,EAAE,KAAK,CAAC,aAAa;SACnC,CAAC,CAAC;IACL,CAAC;CACF;AAED,SAAS,0BAA0B,CAAC,KAAc;IAChD,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,eAAe,IAAI,KAAK,IAAI,YAAY,IAAI,KAAK,CAAC;AAC1G,CAAC;AAED,SAAS,oBAAoB,CAAC,OAAiC;IAC7D,OAAO,SAAS,IAAI,OAAO,CAAC,aAAa;QACvC,CAAC,CAAC,OAAO,CAAC,aAAa;QACvB,CAAC,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,aAAa,CAAC,UAAU,EAAE,CAAC;AACpD,CAAC;AAED,SAAS,iBAAiB,CAAC,OAAiC;IAC1D,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,0FAA0F,CAAC,CAAC;IAC9G,CAAC;IACD,OAAO,OAAO,CAAC,KAAK,CAAC;AACvB,CAAC;AAED,SAAS,qBAAqB,CAC5B,OAAiC;IAEjC,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QACtB,OAAO,OAAO,CAAC,SAAS,CAAC;IAC3B,CAAC;IACD,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;QAClB,OAAO,IAAI,mBAAmB,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;AACrE,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAAiC;IACjE,IAAI,CAAC,0BAA0B,CAAC,OAAO,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC1E,CAAC;IACD,OAAO,IAAI,kBAAkB,CAC3B,oBAAoB,CAAC,OAAO,CAAC,EAC7B,OAAO,CAAC,UAAU,EAClB,qBAAqB,CAAC,OAAO,CAAC,EAC9B,OAAO,CAAC,KAAK,IAAI,IAAI,WAAW,EAAE,EAClC,iBAAiB,CAAC,OAAO,CAAC,CAC3B,CAAC;AACJ,CAAC"}
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../../src/clients/agent/client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,WAAW,EAAc,MAAM,2BAA2B,CAAC;AACpE,OAAO,EAAE,mBAAmB,EAAE,MAAM,iCAAiC,CAAC;AAgEtE,MAAM,kBAAkB;IAEH;IACA;IACA;IACA;IACA;IALnB,YACmB,SAAwB,EACxB,WAAoC,EACpC,UAAkC,EAClC,MAAa,EACb,MAAc;QAJd,cAAS,GAAT,SAAS,CAAe;QACxB,gBAAW,GAAX,WAAW,CAAyB;QACpC,eAAU,GAAV,UAAU,CAAwB;QAClC,WAAM,GAAN,MAAM,CAAO;QACb,WAAM,GAAN,MAAM,CAAQ;IAC9B,CAAC;IAEJ,KAAK,CAAC,aAAa,CAAC,MAA2B;QAC7C,MAAM,WAAW,GAAG,MAAM,CAAC,WAAW,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QAC/D,MAAM,SAAS,GAAG,oBAAoB,CAAC,UAAU,CAAC,CAAC;QAEnD,OAAO,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC;YACnC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE;gBACL,IAAI,EAAE,OAAO;gBACb,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO;aAC3B;YACD,UAAU,EAAE;gBACV,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;gBACjC,YAAY,EAAE,IAAI,CAAC,WAAW,CAAC,YAAY;gBAC3C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;gBACjC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,YAAY,EAAE,IAAI,CAAC,WAAW,CAAC,YAAY;gBAC3C,KAAK,EAAE,IAAI,CAAC,WAAW,CAAC,KAAK;gBAC7B,IAAI,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI;gBAC3B,QAAQ,EAAE,IAAI,CAAC,WAAW,CAAC,QAAQ;gBACnC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,iBAAiB,EAAE,IAAI,CAAC,WAAW,CAAC,iBAAiB;gBACrD,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;gBACrC,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,SAAS;aACtC;YACD,KAAK,EAAE;gBACL,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO;gBAC/B,KAAK,EAAE,IAAI,CAAC,MAAM;gBAClB,SAAS;gBACT,WAAW;aACZ;YACD,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,OAAO,EAAE,MAAM,CAAC,OAAO;YACvB,IAAI,EAAE,MAAM,CAAC,IAAI;SAClB,CAAC,CAAC;IACL,CAAC;IAEO,KAAK,CAAC,YAAY,CACxB,SAAiB,EACjB,WAAmB,EACnB,OAAe,EACf,WAAoC,EAAE;QAEtC,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO;YAC/B,KAAK,EAAE,IAAI,CAAC,MAAM;YAClB,SAAS;YACT,WAAW;SACZ,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,qBAAqB;QACzB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,mBAAmB,CAAC,CAAC;QAC5D,OAAO,IAAI,CAAC,UAAU,CAAC,qBAAqB,CAAC;YAC3C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,mBAAmB,CAAC;SAC5E,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,gBAAgB;QACpB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;QACvD,OAAO,IAAI,CAAC,UAAU,CAAC,gBAAgB,CAAC;YACtC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,cAAc,CAAC;SACvE,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,eAAe;QACnB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;QACvD,OAAO,IAAI,CAAC,UAAU,CAAC,uBAAuB,CAAC;YAC7C,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,cAAc,CAAC;SACvE,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,iBAAiB;QACrB,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,eAAe,CAAC,CAAC;QACxD,OAAO,IAAI,CAAC,UAAU,CAAC,iBAAiB,CAAC;YACvC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,eAAe,CAAC;SACxE,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,eAAuB;QAC3C,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,oBAAoB,CAAC,qBAAqB,CAAC,CAAC;QAC9D,OAAO,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC;YACrC,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,eAAe;YACf,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,qBAAqB,EAAE,EAAE,eAAe,EAAE,CAAC;SACnG,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,4BAA4B,CAAC,KAAwC;QACzE,MAAM,WAAW,GAAG,KAAK,CAAC,WAAW,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC;QAC9D,MAAM,SAAS,GAAG,oBAAoB,CAAC,2BAA2B,CAAC,CAAC;QACpE,MAAM,OAAO,GAAG;YACd,KAAK,EAAE;gBACL,GAAG,KAAK,CAAC,KAAK;gBACd,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,IAAI;aAC3C;YACD,IAAI,EAAE,KAAK,CAAC,IAAI;YAChB,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,eAAe;YAC7C,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,IAAI;SAC3C,CAAC;QACF,OAAO,IAAI,CAAC,UAAU,CAAC,4BAA4B,CAAC;YAClD,OAAO,EAAE,IAAI,CAAC,WAAW,CAAC,OAAO;YACjC,SAAS;YACT,WAAW;YACX,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE;YACpD,KAAK,EAAE,MAAM,IAAI,CAAC,YAAY,CAAC,SAAS,EAAE,WAAW,EAAE,2BAA2B,EAAE,OAAO,CAAC;YAC5F,UAAU,EAAE;gBACV,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,eAAe;gBAC7C,KAAK,EAAE;oBACL,KAAK,EAAE,KAAK,CAAC,KAAK,CAAC,KAAK;oBACxB,OAAO,EAAE,CAAC,GAAG,KAAK,CAAC,KAAK,CAAC,OAAO,CAAC;iBAClC;gBACD,IAAI,EAAE;oBACJ,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,IAAI;oBACrB,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,SAAS;iBAC5D;aACF;YACD,aAAa,EAAE,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,SAAS;YACzE,aAAa,EAAE,KAAK,CAAC,aAAa;SACnC,CAAC,CAAC;IACL,CAAC;CACF;AAED,SAAS,0BAA0B,CAAC,KAAc;IAChD,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,eAAe,IAAI,KAAK,IAAI,YAAY,IAAI,KAAK,CAAC;AAC1G,CAAC;AAED,SAAS,oBAAoB,CAAC,OAAiC;IAC7D,OAAO,SAAS,IAAI,OAAO,CAAC,aAAa;QACvC,CAAC,CAAC,OAAO,CAAC,aAAa;QACvB,CAAC,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,aAAa,CAAC,UAAU,EAAE,CAAC;AACpD,CAAC;AAED,SAAS,iBAAiB,CAAC,OAAiC;IAC1D,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACnB,MAAM,IAAI,KAAK,CAAC,0FAA0F,CAAC,CAAC;IAC9G,CAAC;IACD,OAAO,OAAO,CAAC,KAAK,CAAC;AACvB,CAAC;AAED,SAAS,qBAAqB,CAC5B,OAAiC;IAEjC,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QACtB,OAAO,OAAO,CAAC,SAAS,CAAC;IAC3B,CAAC;IACD,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;QAClB,OAAO,IAAI,mBAAmB,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAChD,CAAC;IACD,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;AACrE,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAAiC;IACjE,IAAI,CAAC,0BAA0B,CAAC,OAAO,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC1E,CAAC;IACD,OAAO,IAAI,kBAAkB,CAC3B,oBAAoB,CAAC,OAAO,CAAC,EAC7B,OAAO,CAAC,UAAU,EAClB,qBAAqB,CAAC,OAAO,CAAC,EAC9B,OAAO,CAAC,KAAK,IAAI,IAAI,WAAW,EAAE,EAClC,iBAAiB,CAAC,OAAO,CAAC,CAC3B,CAAC;AACJ,CAAC"}

package/dist/clients/agent/contracts.d.ts

@@ -9,14 +9,15 @@ export interface AgentDispatchIntent {
 export interface AgentSubmitCapabilityRequestInput {
     operation?: "dispatch_http" | "custom_http";
     secretAliases?: readonly string[];
-    scope: string;
-    methods: readonly string[];
+    write: Omit<import("../../vault-core/index.js").CapabilityWritePolicy, "secretIds">;
+    read: import("../../vault-core/index.js").CapabilityReadPolicy;
     justification?: string;
     requestedAt?: string;
 }
 export type AgentCapabilityEnvelope = import("../../vault-core/index.js").AgentCapability;
 export type AgentCapabilityState = import("../../vault-core/index.js").AgentCapabilityState;
 export type AgentVisibleSecretRecord = import("../../vault-core/index.js").AgentVisibleSecretRecord;
+export type AgentVisibleRequestRecord = import("../../vault-core/index.js").AgentVisibleRequestRecord;
 export interface AgentSigner {
     sign(input: string): Promise<string>;
 }
@@ -24,6 +25,8 @@ export interface AgentDispatchTransport {
     agentDispatch(request: import("../../vault-core/index.js").DispatchRequest): Promise<import("../../vault-core/index.js").DispatchResult>;
     agentListCapabilities(request: import("../../vault-core/index.js").AgentListCapabilitiesRequest): Promise<readonly AgentCapabilityState[]>;
     agentListSecrets(request: import("../../vault-core/index.js").AgentListSecretsRequest): Promise<readonly AgentVisibleSecretRecord[]>;
+    agentListRequests(request: import("../../vault-core/index.js").AgentListRequestsRequest): Promise<readonly AgentVisibleRequestRecord[]>;
+    agentGetRequest(request: import("../../vault-core/index.js").AgentGetRequestRequest): Promise<import("../../vault-core/index.js").AgentRequestResult>;
     agentGetRuntimeManifest(request: import("../../vault-core/index.js").AgentGetRuntimeManifestRequest): Promise<import("../../vault-core/index.js").AgentRuntimeManifest>;
     agentSubmitCapabilityRequest(request: import("../../vault-core/index.js").AgentSubmitCapabilityRequestCommand): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;
 }

package/dist/clients/owner/client.d.ts

@@ -1,7 +1,7 @@
 import { type CreatedIdentity } from "../../runtime/identity.js";
 import { type Clock } from "../../vault-core/index.js";
 import type { VaultService } from "../../vault-ingress/index.js";
-import type { VaultAuditQueryInput, VaultExportSecretInput, VaultReadSecretPlaintextInput, VaultReadAgentPrivateKeyInput, OwnerGrantCapabilityInput, VaultRegisterFlowInput, VaultImportAgentInput, VaultCreateAgentInput, OwnerAgentProvisionResult, OwnerStoreSecretInput, OwnerWriteSecretInput, VaultDeleteSecretInput, VaultUpdateAgentInput, VaultListAgentsInput, VaultListCapabilitiesInput, VaultListCapabilityStatesInput, VaultListSecretsInput, VaultRevokeCapabilityInput, VaultIssueSessionTokenInput, VaultRevokeSessionTokenInput, VaultSubmitCapabilityRequestInput, VaultApproveCapabilityRequestInput, OwnerSensitiveActionConfirmation, OwnerSensitiveActionContext } from "./contracts.js";
+import type { VaultAuditQueryInput, VaultExportSecretInput, VaultReadSecretPlaintextInput, VaultReadAgentPrivateKeyInput, OwnerGrantCapabilityInput, VaultRegisterFlowInput, VaultImportAgentInput, VaultCreateAgentInput, OwnerAgentProvisionResult, OwnerCreateSecretInput, OwnerUpdateSecretInput, OwnerRemoveSecretInput, VaultUpdateAgentInput, VaultListAgentsInput, VaultListCapabilitiesInput, VaultListRequestsInput, VaultGetRequestInput, VaultListCapabilityStatesInput, VaultListSecretsInput, VaultRevokeCapabilityInput, VaultIssueSessionTokenInput, VaultRevokeSessionTokenInput, VaultSubmitCapabilityRequestInput, VaultApproveCapabilityRequestInput, OwnerSensitiveActionConfirmation, OwnerSensitiveActionContext } from "./contracts.js";
 export interface VaultIdentity {
     identityId: string;
 }
@@ -14,13 +14,13 @@ export interface VaultSigner {
  */
 export interface VaultClient {
     /**
-     * Securely stores a new secret in the vault.
+     * Inserts a new active secret into the vault.
      */
-    ownerStoreSecret(input: OwnerStoreSecretInput): Promise<import("../../vault-core/index.js").SecretRecord>;
+    ownerCreateSecret(input: OwnerCreateSecretInput): Promise<import("../../vault-core/index.js").SecretRecord>;
     /**
-     * Stores a manually provided secret in the vault.
+     * Inserts a new successor secret and marks the previous active version as superseded.
      */
-    ownerWriteSecret(input: OwnerWriteSecretInput): Promise<import("../../vault-core/index.js").SecretRecord>;
+    ownerUpdateSecret(input: OwnerUpdateSecretInput): Promise<import("../../vault-core/index.js").SecretRecord>;
     /**
      * Exports a secret's plaintext.
      */
@@ -43,13 +43,13 @@ export interface VaultClient {
     ownerCreateAgent(input: VaultCreateAgentInput): Promise<OwnerAgentProvisionResult>;
     ownerUpdateAgent(input: VaultUpdateAgentInput): Promise<import("../../vault-core/index.js").AgentIdentityRecord>;
     /**
-     * Registers a custom HTTP flow for complex secret usage.
+     * Registers a reusable HTTP request template for complex secret exchange patterns.
      */
     ownerRegisterFlow(input: VaultRegisterFlowInput): Promise<import("../../vault-core/index.js").CustomHttpFlowDefinition>;
     /**
-     * Permanently deletes a secret from the vault.
+     * Logically removes the current active secret.
      */
-    ownerDeleteSecret(input: VaultDeleteSecretInput): Promise<void>;
+    ownerRemoveSecret(input: OwnerRemoveSecretInput): Promise<void>;
     /**
      * Lists all agents registered in the vault.
      */
@@ -58,6 +58,8 @@ export interface VaultClient {
      * Lists all active capabilities granted to agents.
      */
     ownerListCapabilities(input?: VaultListCapabilitiesInput): Promise<readonly import("../../vault-core/index.js").AgentCapability[]>;
+    ownerListRequests(input?: VaultListRequestsInput): Promise<readonly import("../../vault-core/index.js").OwnerVisibleRequestRecord[]>;
+    ownerGetRequest(input: VaultGetRequestInput): Promise<import("../../vault-core/index.js").OwnerRequestRecord>;
     ownerListCapabilityStates(input?: VaultListCapabilityStatesInput): Promise<readonly import("../../vault-core/index.js").CapabilityStateRecord[]>;
     ownerListSecrets(input?: VaultListSecretsInput): Promise<readonly import("../../vault-core/index.js").AgentVisibleSecretRecord[]>;
     /**
@@ -68,9 +70,11 @@ export interface VaultClient {
     ownerIssueAllSessionTokens(): Promise<readonly import("../../vault-core/index.js").OwnerSessionToken[]>;
     ownerRevokeSessionToken(input: VaultRevokeSessionTokenInput): Promise<void>;
     ownerSubmitCapabilityRequest(input: VaultSubmitCapabilityRequestInput): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;
-    ownerExecuteCapabilityStateOnce(input: VaultApproveCapabilityRequestInput): Promise<import("../../vault-core/index.js").DispatchResult>;
-    ownerExecuteCapabilityStateAndGrant(input: VaultApproveCapabilityRequestInput): Promise<import("../../vault-core/index.js").DispatchResult>;
-    ownerRejectCapabilityState(requestId: string): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;
+    ownerApproveCapabilityWrite(input: VaultApproveCapabilityRequestInput): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;
+    ownerApproveCapabilityRead(input: VaultApproveCapabilityRequestInput): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;
+    ownerAllowOnce(input: VaultApproveCapabilityRequestInput): Promise<import("../../vault-core/index.js").DispatchResult>;
+    ownerAllowAlways(input: VaultApproveCapabilityRequestInput): Promise<import("../../vault-core/index.js").DispatchResult>;
+    ownerDeny(requestId: string): Promise<import("../../vault-core/index.js").CapabilityStateRecord>;
     ownerOnCapabilityState(callback: (record: import("../../vault-core/index.js").CapabilityStateRecord) => void): () => void;
 }
 export interface CreateVaultClientOptions {

package/dist/clients/owner/client.js

@@ -55,11 +55,9 @@ class DefaultVaultClient {
                     capabilityId: input.capability.capabilityId,
                     agentId: input.capability.agentId,
                     operation: input.capability.operation,
-                    secretAliases: input.capability.secretAliases,
-                    secretIds: input.capability.secretIds,
                     customFlowId: input.capability.customFlowId,
-                    scope: input.capability.scope,
-                    methods: input.capability.methods,
+                    write: input.capability.write,
+                    read: input.capability.read,
                     issuedAt: input.capability.issuedAt,
                     expiresAt: input.capability.expiresAt,
                     rateLimit: input.capability.rateLimit,
@@ -73,11 +71,11 @@ class DefaultVaultClient {
             capability: input,
         };
     }
-    async ownerStoreSecret(input) {
+    async ownerCreateSecret(input) {
         const requestedAt = input.requestedAt ?? this._clock.nowIso();
-        const requestId = createRequestIdValue("write_secret");
-        return this._vault.ownerWriteSecret({
-            kind: "owner.write_secret",
+        const requestId = createRequestIdValue("create_secret");
+        return this._vault.ownerCreateSecret({
+            kind: "owner.create_secret",
             vaultId: this._vault.vaultId,
             requestId,
             owner: {
@@ -90,11 +88,11 @@ class DefaultVaultClient {
             requestedAt,
         });
     }
-    async ownerWriteSecret(input) {
+    async ownerUpdateSecret(input) {
         const requestedAt = input.requestedAt ?? this._clock.nowIso();
-        const requestId = createRequestIdValue("write_secret");
-        return this._vault.ownerWriteSecret({
-            kind: "owner.write_secret",
+        const requestId = createRequestIdValue("update_secret");
+        return this._vault.ownerUpdateSecret({
+            kind: "owner.update_secret",
             vaultId: this._vault.vaultId,
             requestId,
             owner: {
@@ -288,11 +286,16 @@ class DefaultVaultClient {
             agentId: normalized.capability.agentId,
             capabilityId,
             operation: normalized.capability.operation ?? "dispatch_http",
-            secretAliases: normalized.capability.secretAliases ? [...normalized.capability.secretAliases] : undefined,
-            secretIds: normalized.capability.secretIds ? [...normalized.capability.secretIds] : undefined,
             customFlowId: normalized.capability.customFlowId,
-            scope: normalized.capability.scope,
-            methods: [...normalized.capability.methods],
+            write: {
+                secretIds: normalized.capability.write.secretIds ? [...normalized.capability.write.secretIds] : undefined,
+                scope: normalized.capability.write.scope,
+                methods: [...normalized.capability.write.methods],
+            },
+            read: {
+                mode: normalized.capability.read.mode,
+                paths: normalized.capability.read.paths ? [...normalized.capability.read.paths] : undefined,
+            },
             expiresAt: normalized.capability.expiresAt,
             rateLimit: normalized.capability.rateLimit,
             skipAudit,
@@ -344,7 +347,7 @@ class DefaultVaultClient {
             createdAt: requestedAt,
         };
     }
-    async ownerDeleteSecret(input) {
+    async ownerRemoveSecret(input) {
         await this._confirmSensitiveAction({
             password: input.password,
             verificationCode: input.verificationCode,
@@ -353,8 +356,9 @@ class DefaultVaultClient {
             subject: input.alias,
         });
         const requestedAt = input.requestedAt ?? this._clock.nowIso();
-        const requestId = createRequestIdValue("delete_secret");
-        await this._vault.ownerDeleteSecret({
+        const requestId = createRequestIdValue("remove_secret");
+        await this._vault.ownerRemoveSecret({
+            kind: "owner.remove_secret",
             vaultId: this._vault.vaultId,
             requestId,
             owner: {
@@ -396,12 +400,41 @@ class DefaultVaultClient {
             agentId: input.agentId,
         });
     }
+    async ownerListRequests(input = {}) {
+        const requestedAt = input.requestedAt ?? this._clock.nowIso();
+        const requestId = createRequestIdValue("list_requests");
+        return this._vault.ownerListRequests({
+            vaultId: this._vault.vaultId,
+            requestId,
+            requestedAt,
+            actor: {
+                kind: "owner",
+                id: this._identityId,
+            },
+            agentId: input.agentId,
+        });
+    }
+    async ownerGetRequest(input) {
+        const requestedAt = input.requestedAt ?? this._clock.nowIso();
+        const requestId = createRequestIdValue("get_request");
+        return this._vault.ownerGetRequest({
+            vaultId: this._vault.vaultId,
+            requestId,
+            requestedAt,
+            actor: {
+                kind: "owner",
+                id: this._identityId,
+            },
+            targetRequestId: input.requestId,
+        });
+    }
     async ownerListCapabilityStates(input = {}) {
         return this._vault.ownerListCapabilityStates({
             vaultId: this._vault.vaultId,
             owner: { kind: "owner", id: this._identityId },
             agentId: input.agentId,
-            status: input.status,
+            writeStatus: input.writeStatus,
+            readStatus: input.readStatus,
         });
     }
     async ownerListSecrets(input = {}) {
@@ -463,11 +496,17 @@ class DefaultVaultClient {
             requestId,
             requester: input.requester,
             agentId: input.agentId,
-            scope: {
+            capability: {
                 operation: input.operation ?? "dispatch_http",
-                secretAliases: input.secretAliases ? [...input.secretAliases] : [],
-                scope: input.scope,
-                methods: [...input.methods],
+                write: {
+                    secretIds: input.write.secretIds ? [...input.write.secretIds] : undefined,
+                    scope: input.write.scope,
+                    methods: [...input.write.methods],
+                },
+                read: {
+                    mode: input.read.mode,
+                    paths: input.read.paths ? [...input.read.paths] : undefined,
+                },
                 rateLimit: input.rateLimit,
                 skipAudit: input.skipAudit,
                 expiresAt: input.expiresAt,
@@ -482,22 +521,36 @@ class DefaultVaultClient {
             actor: { kind: "owner", id: this._identityId },
         });
     }
-    async ownerExecuteCapabilityStateOnce(input) {
-        return this._vault.ownerExecuteCapabilityStateOnce({
+    async ownerApproveCapabilityWrite(input) {
+        return this._vault.ownerApproveCapabilityWrite({
+            vaultId: this._vault.vaultId,
+            requestId: input.requestId,
+            owner: { kind: "owner", id: this._identityId },
+        });
+    }
+    async ownerApproveCapabilityRead(input) {
+        return this._vault.ownerApproveCapabilityRead({
+            vaultId: this._vault.vaultId,
+            requestId: input.requestId,
+            owner: { kind: "owner", id: this._identityId },
+        });
+    }
+    async ownerAllowOnce(input) {
+        return this._vault.ownerAllowOnce({
             vaultId: this._vault.vaultId,
             requestId: input.requestId,
             owner: { kind: "owner", id: this._identityId },
         });
     }
-    async ownerExecuteCapabilityStateAndGrant(input) {
-        return this._vault.ownerExecuteCapabilityStateAndGrant({
+    async ownerAllowAlways(input) {
+        return this._vault.ownerAllowAlways({
             vaultId: this._vault.vaultId,
             requestId: input.requestId,
             owner: { kind: "owner", id: this._identityId },
         });
     }
-    async ownerRejectCapabilityState(requestId) {
-        return this._vault.ownerRejectCapabilityState({
+    async ownerDeny(requestId) {
+        return this._vault.ownerDeny({
             vaultId: this._vault.vaultId,
             requestId,
             owner: { kind: "owner", id: this._identityId },