@the-ai-company/cbio-node-runtime 1.64.0 → 1.66.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (136) hide show
  1. package/dist/clients/agent/client.d.ts +1 -1
  2. package/dist/vault-core/contracts.d.ts +3 -4
  3. package/dist/vault-core/contracts.js +2 -2
  4. package/dist/vault-core/contracts.js.map +1 -1
  5. package/dist/vault-core/core.d.ts +2 -0
  6. package/dist/vault-core/core.js +40 -15
  7. package/dist/vault-core/core.js.map +1 -1
  8. package/dist/vault-core/defaults.d.ts +5 -4
  9. package/dist/vault-core/defaults.js +32 -15
  10. package/dist/vault-core/defaults.js.map +1 -1
  11. package/dist/vault-core/persistence.d.ts +17 -2
  12. package/dist/vault-core/persistence.js +70 -22
  13. package/dist/vault-core/persistence.js.map +1 -1
  14. package/dist/vault-core/ports.d.ts +1 -1
  15. package/docs/IDENTITY_MODEL.md +1 -1
  16. package/docs/REFERENCE.md +3 -3
  17. package/docs/api/README.md +2 -2
  18. package/docs/api/classes/IdentityError.md +1 -1
  19. package/docs/api/classes/OwnerClientError.md +1 -1
  20. package/docs/api/classes/PersistentVaultAgentIdentityRegistry.md +1 -1
  21. package/docs/api/classes/PersistentVaultAgentSecretGrantRegistry.md +1 -1
  22. package/docs/api/classes/PersistentVaultAuditLog.md +1 -1
  23. package/docs/api/classes/PersistentVaultSecretCustody.md +1 -1
  24. package/docs/api/classes/PersistentVaultSecretDestinationGrantRegistry.md +1 -1
  25. package/docs/api/classes/PersistentVaultSecretRepository.md +1 -1
  26. package/docs/api/classes/VaultCore.md +1 -1
  27. package/docs/api/classes/VaultCoreError.md +1 -1
  28. package/docs/api/enumerations/AuditOperation.md +1 -1
  29. package/docs/api/enumerations/DispatchStatus.md +9 -9
  30. package/docs/api/enumerations/IdentityErrorCode.md +1 -1
  31. package/docs/api/enumerations/OwnerClientErrorCode.md +1 -1
  32. package/docs/api/functions/createAgentClient.md +1 -1
  33. package/docs/api/functions/createIdentity.md +1 -1
  34. package/docs/api/functions/createOwnerClient.md +1 -1
  35. package/docs/api/functions/createOwnerSession.md +1 -1
  36. package/docs/api/functions/createPersistentVaultCoreDependencies.md +1 -1
  37. package/docs/api/functions/createVault.md +1 -1
  38. package/docs/api/functions/createVaultCore.md +1 -1
  39. package/docs/api/functions/createVaultCoreDependencies.md +1 -1
  40. package/docs/api/functions/createVaultService.md +1 -1
  41. package/docs/api/functions/createWorkspaceStorage.md +1 -1
  42. package/docs/api/functions/deriveRootAgentId.md +1 -1
  43. package/docs/api/functions/deriveVaultWorkingKeyFromPassword.md +1 -1
  44. package/docs/api/functions/getDefaultWorkspaceDir.md +1 -1
  45. package/docs/api/functions/handleVaultAgentControlHttp.md +1 -1
  46. package/docs/api/functions/handleVaultHttpDispatch.md +1 -1
  47. package/docs/api/functions/initializeVaultCustody.md +1 -1
  48. package/docs/api/functions/listVaults.md +1 -1
  49. package/docs/api/functions/readVaultProfile.md +1 -1
  50. package/docs/api/functions/recoverVault.md +1 -1
  51. package/docs/api/functions/recoverVaultWorkingKey.md +1 -1
  52. package/docs/api/functions/restoreIdentity.md +1 -1
  53. package/docs/api/functions/updateVaultMetadata.md +1 -1
  54. package/docs/api/functions/writeVaultProfile.md +1 -1
  55. package/docs/api/interfaces/AgentClient.md +2 -2
  56. package/docs/api/interfaces/AgentDispatchIntent.md +1 -1
  57. package/docs/api/interfaces/AgentDispatchTransport.md +1 -1
  58. package/docs/api/interfaces/AgentIdentity.md +1 -1
  59. package/docs/api/interfaces/AgentIdentityRecord.md +3 -3
  60. package/docs/api/interfaces/AgentRequestResult.md +1 -1
  61. package/docs/api/interfaces/AgentRuntimeManifest.md +1 -1
  62. package/docs/api/interfaces/AgentSecretGrant.md +1 -1
  63. package/docs/api/interfaces/AgentSigner.md +1 -1
  64. package/docs/api/interfaces/AgentVisibleRequestRecord.md +1 -1
  65. package/docs/api/interfaces/AgentVisibleSecretRecord.md +1 -1
  66. package/docs/api/interfaces/AuditEntry.md +1 -1
  67. package/docs/api/interfaces/CbioRuntime.md +1 -1
  68. package/docs/api/interfaces/CreateAgentClientOptions.md +1 -1
  69. package/docs/api/interfaces/CreateIdentityOptions.md +1 -1
  70. package/docs/api/interfaces/CreateOwnerClientOptions.md +1 -1
  71. package/docs/api/interfaces/CreateOwnerSessionOptions.md +91 -1
  72. package/docs/api/interfaces/CreatePersistentVaultCoreDependenciesOptions.md +71 -1
  73. package/docs/api/interfaces/CreateVaultOptions.md +91 -1
  74. package/docs/api/interfaces/CreatedVault.md +1 -1
  75. package/docs/api/interfaces/DefaultPolicyEngineOptions.md +1 -1
  76. package/docs/api/interfaces/DispatchAuthorization.md +1 -1
  77. package/docs/api/interfaces/DispatchInstruction.md +1 -1
  78. package/docs/api/interfaces/DispatchRequest.md +1 -1
  79. package/docs/api/interfaces/DispatchResult.md +1 -1
  80. package/docs/api/interfaces/IStorageProvider.md +1 -1
  81. package/docs/api/interfaces/InitializeVaultCustodyOptions.md +1 -1
  82. package/docs/api/interfaces/InitializedVaultCustody.md +1 -1
  83. package/docs/api/interfaces/OwnerAgentProvisionResult.md +1 -1
  84. package/docs/api/interfaces/OwnerClient.md +1 -1
  85. package/docs/api/interfaces/OwnerCreateSecretInput.md +1 -1
  86. package/docs/api/interfaces/OwnerRemoveSecretInput.md +1 -1
  87. package/docs/api/interfaces/OwnerRequestRecord.md +1 -1
  88. package/docs/api/interfaces/OwnerSensitiveActionConfirmation.md +1 -1
  89. package/docs/api/interfaces/OwnerSensitiveActionContext.md +1 -1
  90. package/docs/api/interfaces/OwnerSession.md +1 -1
  91. package/docs/api/interfaces/OwnerUpdateSecretInput.md +1 -1
  92. package/docs/api/interfaces/OwnerVisibleRequestRecord.md +1 -1
  93. package/docs/api/interfaces/RecoverVaultOptions.md +91 -1
  94. package/docs/api/interfaces/RecoveredVault.md +1 -1
  95. package/docs/api/interfaces/RequestRecord.md +1 -1
  96. package/docs/api/interfaces/RestoreIdentityOptions.md +1 -1
  97. package/docs/api/interfaces/SecretAlias.md +1 -1
  98. package/docs/api/interfaces/SecretDestinationGrant.md +1 -1
  99. package/docs/api/interfaces/SecretId.md +1 -1
  100. package/docs/api/interfaces/SecretRecord.md +1 -1
  101. package/docs/api/interfaces/Signer.md +1 -1
  102. package/docs/api/interfaces/VaultApproveDispatchInput.md +1 -1
  103. package/docs/api/interfaces/VaultAuditQueryInput.md +1 -1
  104. package/docs/api/interfaces/VaultCoreDependenciesOptions.md +3 -3
  105. package/docs/api/interfaces/VaultCreateAgentInput.md +1 -1
  106. package/docs/api/interfaces/VaultExportSecretInput.md +1 -1
  107. package/docs/api/interfaces/VaultGetRequestInput.md +1 -1
  108. package/docs/api/interfaces/VaultGrantAgentSecretInput.md +1 -1
  109. package/docs/api/interfaces/VaultGrantSecretDestinationInput.md +1 -1
  110. package/docs/api/interfaces/VaultId.md +1 -1
  111. package/docs/api/interfaces/VaultImportAgentInput.md +1 -1
  112. package/docs/api/interfaces/VaultIssueSessionTokenInput.md +1 -1
  113. package/docs/api/interfaces/VaultListAgentsInput.md +1 -1
  114. package/docs/api/interfaces/VaultListGrantsInput.md +1 -1
  115. package/docs/api/interfaces/VaultListRequestsInput.md +1 -1
  116. package/docs/api/interfaces/VaultListSecretsInput.md +1 -1
  117. package/docs/api/interfaces/VaultMetadata.md +1 -1
  118. package/docs/api/interfaces/VaultObject.md +1 -1
  119. package/docs/api/interfaces/VaultPrincipal.md +1 -1
  120. package/docs/api/interfaces/VaultProfile.md +1 -1
  121. package/docs/api/interfaces/VaultReadAgentPrivateKeyInput.md +1 -1
  122. package/docs/api/interfaces/VaultReadSecretPlaintextInput.md +1 -1
  123. package/docs/api/interfaces/VaultRevokeAgentSecretInput.md +1 -1
  124. package/docs/api/interfaces/VaultRevokeSecretDestinationInput.md +1 -1
  125. package/docs/api/interfaces/VaultRevokeSessionTokenInput.md +1 -1
  126. package/docs/api/interfaces/VaultService.md +1 -1
  127. package/docs/api/interfaces/VaultUpdateAgentInput.md +1 -1
  128. package/docs/api/type-aliases/AgentId.md +1 -1
  129. package/docs/api/type-aliases/CbioRuntimeModule.md +1 -1
  130. package/docs/api/type-aliases/DispatchApprovalDecision.md +1 -1
  131. package/docs/api/type-aliases/GrantStatus.md +1 -1
  132. package/docs/api/type-aliases/SecretLifecycleStatus.md +1 -1
  133. package/docs/api/type-aliases/VaultPrincipalKind.md +1 -1
  134. package/docs/api/variables/DEFAULT_VAULT_KEY_CUSTODY_BLOB_KEY.md +1 -1
  135. package/docs/zh/README.md +3 -3
  136. package/package.json +2 -2
package/docs/api/interfaces/VaultCoreDependenciesOptions.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
@@ -88,9 +88,9 @@
88
88
 
89
89
  ***
90
90
 
91
- ### session\_tokens?
91
+ ### sessionTokenRegistry?
92
92
 
93
- > `optional` **session\_tokens?**: `ISessionTokenRegistry`
93
+ > `optional` **sessionTokenRegistry?**: `ISessionTokenRegistry`
94
94
 
95
95
  ***
96
96
 
package/docs/api/interfaces/VaultCreateAgentInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultExportSecretInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultGetRequestInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultGrantAgentSecretInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultGrantSecretDestinationInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultId.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultImportAgentInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultIssueSessionTokenInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListAgentsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListGrantsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListRequestsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListSecretsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultMetadata.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultObject.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultPrincipal.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultProfile.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultReadAgentPrivateKeyInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultReadSecretPlaintextInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultRevokeAgentSecretInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultRevokeSecretDestinationInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultRevokeSessionTokenInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultService.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultUpdateAgentInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/AgentId.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/CbioRuntimeModule.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/DispatchApprovalDecision.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/GrantStatus.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/SecretLifecycleStatus.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/VaultPrincipalKind.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/variables/DEFAULT_VAULT_KEY_CUSTODY_BLOB_KEY.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.64.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.66.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/zh/README.md CHANGED
@@ -9,7 +9,7 @@ cbio Vault Runtime 采用 **Vault(保险箱)** 架构:管理权限扎根
9
9
  - **库优先**:纯 JavaScript/TypeScript 库,无 CLI 或 TUI。
10
10
  - **权限中心化**:管理权限绑定于保险箱主密码,而非外部身份密钥。
11
11
  - **Agent 身份托管**:支持在保险箱内直接生成并加密存储 Agent 私钥。
12
- - **Agent Session Token**:为 Agent 发放可撤销的 session token,避免在消费进程中持有原始私钥。
12
+ - **Agent Session Token**:为 Agent 发放可撤销的 session token,避免在消费进程中持有原始私钥。默认内存实现中,每个 Agent 任意时刻只保留一个当前 token。
13
13
  - **进程隔离**:安全进程(Security Process)与 Agent 进程(Consumer Process)物理分离。
14
14
  - **零泄露发现**:保险箱元数据全加密,未解锁前对外部完全透明。
15
15
 
@@ -67,7 +67,7 @@ const createdAgent = await session.withClient((client) =>
67
67
 
68
68
  const ownerClient = await session.client();
69
69
  const agents = await ownerClient.ownerListAgents();
70
- // ownerListAgents() 会直接返回每个 agent 当前的 sessionTokens
70
+ // ownerListAgents() 会直接返回每个 agent 当前的 session_token
71
71
 
72
72
  session.invalidate();
73
73
  ```
@@ -150,7 +150,7 @@ console.log(manifest.grants.agentSecrets); // 已获得的机密授权
150
150
 
151
151
  ### 7. 人机协同(HITL)与语义化审计
152
152
 
153
- 如果 Agent 尝试的请求未获授权,`agentDispatch` 会返回 `PENDING` 状态,进入人工审批流。
153
+ 如果 Agent 尝试的请求未获授权,`agentDispatch` 会返回 `AWAITING_APPROVAL` 状态,进入人工审批流。
154
154
 
155
155
  ```ts
156
156
  // 审批待处理的请求
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@the-ai-company/cbio-node-runtime",
3
- "version": "1.64.0",
3
+ "version": "1.66.0",
4
4
  "publishConfig": {
5
5
  "access": "public"
6
6
  },
@@ -32,7 +32,7 @@
32
32
  "prepare": "npm run build && npm run build:docs",
33
33
  "test": "npm run build && npm run test:types && npm run test:acceptance",
34
34
  "test:types": "tsc -p tsconfig.type-tests.json --noEmit",
35
- "test:acceptance": "node tests/smoke/runtime-surface.js && node tests/smoke/policy-and-persistence.js && node tests/smoke/replay-guard.js && node tests/smoke/security-guards.js"
35
+ "test:acceptance": "node tests/smoke/runtime-surface.js && node tests/smoke/policy-and-persistence.js && node tests/smoke/persistent-runtime-security.js && node tests/smoke/replay-guard.js && node tests/smoke/security-guards.js"
36
36
  },
37
37
  "keywords": [
38
38
  "claw-biometric",