@the-ai-company/cbio-node-runtime 1.65.0 → 1.67.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (133) hide show
  1. package/dist/vault-core/contracts.d.ts +8 -2
  2. package/dist/vault-core/core.js +6 -8
  3. package/dist/vault-core/core.js.map +1 -1
  4. package/dist/vault-core/defaults.d.ts +7 -6
  5. package/dist/vault-core/defaults.js +44 -20
  6. package/dist/vault-core/defaults.js.map +1 -1
  7. package/dist/vault-core/persistence.d.ts +17 -2
  8. package/dist/vault-core/persistence.js +81 -22
  9. package/dist/vault-core/persistence.js.map +1 -1
  10. package/dist/vault-core/ports.d.ts +3 -3
  11. package/docs/IDENTITY_MODEL.md +1 -1
  12. package/docs/REFERENCE.md +1 -1
  13. package/docs/SECURITY_AUDIT.md +117 -0
  14. package/docs/api/README.md +2 -2
  15. package/docs/api/classes/IdentityError.md +1 -1
  16. package/docs/api/classes/OwnerClientError.md +1 -1
  17. package/docs/api/classes/PersistentVaultAgentIdentityRegistry.md +1 -1
  18. package/docs/api/classes/PersistentVaultAgentSecretGrantRegistry.md +1 -1
  19. package/docs/api/classes/PersistentVaultAuditLog.md +1 -1
  20. package/docs/api/classes/PersistentVaultSecretCustody.md +1 -1
  21. package/docs/api/classes/PersistentVaultSecretDestinationGrantRegistry.md +1 -1
  22. package/docs/api/classes/PersistentVaultSecretRepository.md +1 -1
  23. package/docs/api/classes/VaultCore.md +1 -1
  24. package/docs/api/classes/VaultCoreError.md +1 -1
  25. package/docs/api/enumerations/AuditOperation.md +1 -1
  26. package/docs/api/enumerations/DispatchStatus.md +1 -1
  27. package/docs/api/enumerations/IdentityErrorCode.md +1 -1
  28. package/docs/api/enumerations/OwnerClientErrorCode.md +1 -1
  29. package/docs/api/functions/createAgentClient.md +1 -1
  30. package/docs/api/functions/createIdentity.md +1 -1
  31. package/docs/api/functions/createOwnerClient.md +1 -1
  32. package/docs/api/functions/createOwnerSession.md +1 -1
  33. package/docs/api/functions/createPersistentVaultCoreDependencies.md +1 -1
  34. package/docs/api/functions/createVault.md +1 -1
  35. package/docs/api/functions/createVaultCore.md +1 -1
  36. package/docs/api/functions/createVaultCoreDependencies.md +1 -1
  37. package/docs/api/functions/createVaultService.md +1 -1
  38. package/docs/api/functions/createWorkspaceStorage.md +1 -1
  39. package/docs/api/functions/deriveRootAgentId.md +1 -1
  40. package/docs/api/functions/deriveVaultWorkingKeyFromPassword.md +1 -1
  41. package/docs/api/functions/getDefaultWorkspaceDir.md +1 -1
  42. package/docs/api/functions/handleVaultAgentControlHttp.md +1 -1
  43. package/docs/api/functions/handleVaultHttpDispatch.md +1 -1
  44. package/docs/api/functions/initializeVaultCustody.md +1 -1
  45. package/docs/api/functions/listVaults.md +1 -1
  46. package/docs/api/functions/readVaultProfile.md +1 -1
  47. package/docs/api/functions/recoverVault.md +1 -1
  48. package/docs/api/functions/recoverVaultWorkingKey.md +1 -1
  49. package/docs/api/functions/restoreIdentity.md +1 -1
  50. package/docs/api/functions/updateVaultMetadata.md +1 -1
  51. package/docs/api/functions/writeVaultProfile.md +1 -1
  52. package/docs/api/interfaces/AgentClient.md +1 -1
  53. package/docs/api/interfaces/AgentDispatchIntent.md +1 -1
  54. package/docs/api/interfaces/AgentDispatchTransport.md +1 -1
  55. package/docs/api/interfaces/AgentIdentity.md +1 -1
  56. package/docs/api/interfaces/AgentIdentityRecord.md +3 -3
  57. package/docs/api/interfaces/AgentRequestResult.md +1 -1
  58. package/docs/api/interfaces/AgentRuntimeManifest.md +1 -1
  59. package/docs/api/interfaces/AgentSecretGrant.md +1 -1
  60. package/docs/api/interfaces/AgentSigner.md +1 -1
  61. package/docs/api/interfaces/AgentVisibleRequestRecord.md +1 -1
  62. package/docs/api/interfaces/AgentVisibleSecretRecord.md +1 -1
  63. package/docs/api/interfaces/AuditEntry.md +1 -1
  64. package/docs/api/interfaces/CbioRuntime.md +1 -1
  65. package/docs/api/interfaces/CreateAgentClientOptions.md +1 -1
  66. package/docs/api/interfaces/CreateIdentityOptions.md +1 -1
  67. package/docs/api/interfaces/CreateOwnerClientOptions.md +1 -1
  68. package/docs/api/interfaces/CreateOwnerSessionOptions.md +91 -1
  69. package/docs/api/interfaces/CreatePersistentVaultCoreDependenciesOptions.md +71 -1
  70. package/docs/api/interfaces/CreateVaultOptions.md +91 -1
  71. package/docs/api/interfaces/CreatedVault.md +1 -1
  72. package/docs/api/interfaces/DefaultPolicyEngineOptions.md +1 -1
  73. package/docs/api/interfaces/DispatchAuthorization.md +1 -1
  74. package/docs/api/interfaces/DispatchInstruction.md +1 -1
  75. package/docs/api/interfaces/DispatchRequest.md +1 -1
  76. package/docs/api/interfaces/DispatchResult.md +1 -1
  77. package/docs/api/interfaces/IStorageProvider.md +1 -1
  78. package/docs/api/interfaces/InitializeVaultCustodyOptions.md +1 -1
  79. package/docs/api/interfaces/InitializedVaultCustody.md +1 -1
  80. package/docs/api/interfaces/OwnerAgentProvisionResult.md +1 -1
  81. package/docs/api/interfaces/OwnerClient.md +1 -1
  82. package/docs/api/interfaces/OwnerCreateSecretInput.md +1 -1
  83. package/docs/api/interfaces/OwnerRemoveSecretInput.md +1 -1
  84. package/docs/api/interfaces/OwnerRequestRecord.md +1 -1
  85. package/docs/api/interfaces/OwnerSensitiveActionConfirmation.md +1 -1
  86. package/docs/api/interfaces/OwnerSensitiveActionContext.md +1 -1
  87. package/docs/api/interfaces/OwnerSession.md +1 -1
  88. package/docs/api/interfaces/OwnerUpdateSecretInput.md +1 -1
  89. package/docs/api/interfaces/OwnerVisibleRequestRecord.md +1 -1
  90. package/docs/api/interfaces/RecoverVaultOptions.md +91 -1
  91. package/docs/api/interfaces/RecoveredVault.md +1 -1
  92. package/docs/api/interfaces/RequestRecord.md +1 -1
  93. package/docs/api/interfaces/RestoreIdentityOptions.md +1 -1
  94. package/docs/api/interfaces/SecretAlias.md +1 -1
  95. package/docs/api/interfaces/SecretDestinationGrant.md +1 -1
  96. package/docs/api/interfaces/SecretId.md +1 -1
  97. package/docs/api/interfaces/SecretRecord.md +1 -1
  98. package/docs/api/interfaces/Signer.md +1 -1
  99. package/docs/api/interfaces/VaultApproveDispatchInput.md +1 -1
  100. package/docs/api/interfaces/VaultAuditQueryInput.md +1 -1
  101. package/docs/api/interfaces/VaultCoreDependenciesOptions.md +3 -3
  102. package/docs/api/interfaces/VaultCreateAgentInput.md +1 -1
  103. package/docs/api/interfaces/VaultExportSecretInput.md +1 -1
  104. package/docs/api/interfaces/VaultGetRequestInput.md +1 -1
  105. package/docs/api/interfaces/VaultGrantAgentSecretInput.md +1 -1
  106. package/docs/api/interfaces/VaultGrantSecretDestinationInput.md +1 -1
  107. package/docs/api/interfaces/VaultId.md +1 -1
  108. package/docs/api/interfaces/VaultImportAgentInput.md +1 -1
  109. package/docs/api/interfaces/VaultIssueSessionTokenInput.md +1 -1
  110. package/docs/api/interfaces/VaultListAgentsInput.md +1 -1
  111. package/docs/api/interfaces/VaultListGrantsInput.md +1 -1
  112. package/docs/api/interfaces/VaultListRequestsInput.md +1 -1
  113. package/docs/api/interfaces/VaultListSecretsInput.md +1 -1
  114. package/docs/api/interfaces/VaultMetadata.md +1 -1
  115. package/docs/api/interfaces/VaultObject.md +1 -1
  116. package/docs/api/interfaces/VaultPrincipal.md +1 -1
  117. package/docs/api/interfaces/VaultProfile.md +1 -1
  118. package/docs/api/interfaces/VaultReadAgentPrivateKeyInput.md +1 -1
  119. package/docs/api/interfaces/VaultReadSecretPlaintextInput.md +1 -1
  120. package/docs/api/interfaces/VaultRevokeAgentSecretInput.md +1 -1
  121. package/docs/api/interfaces/VaultRevokeSecretDestinationInput.md +1 -1
  122. package/docs/api/interfaces/VaultRevokeSessionTokenInput.md +1 -1
  123. package/docs/api/interfaces/VaultService.md +1 -1
  124. package/docs/api/interfaces/VaultUpdateAgentInput.md +1 -1
  125. package/docs/api/type-aliases/AgentId.md +1 -1
  126. package/docs/api/type-aliases/CbioRuntimeModule.md +1 -1
  127. package/docs/api/type-aliases/DispatchApprovalDecision.md +1 -1
  128. package/docs/api/type-aliases/GrantStatus.md +1 -1
  129. package/docs/api/type-aliases/SecretLifecycleStatus.md +1 -1
  130. package/docs/api/type-aliases/VaultPrincipalKind.md +1 -1
  131. package/docs/api/variables/DEFAULT_VAULT_KEY_CUSTODY_BLOB_KEY.md +1 -1
  132. package/docs/zh/README.md +2 -2
  133. package/package.json +2 -2
package/docs/api/interfaces/VaultGrantAgentSecretInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultGrantSecretDestinationInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultId.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultImportAgentInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultIssueSessionTokenInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListAgentsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListGrantsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListRequestsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultListSecretsInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultMetadata.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultObject.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultPrincipal.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultProfile.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultReadAgentPrivateKeyInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultReadSecretPlaintextInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultRevokeAgentSecretInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultRevokeSecretDestinationInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultRevokeSessionTokenInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultService.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/interfaces/VaultUpdateAgentInput.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/AgentId.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/CbioRuntimeModule.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/DispatchApprovalDecision.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/GrantStatus.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/SecretLifecycleStatus.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/type-aliases/VaultPrincipalKind.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/api/variables/DEFAULT_VAULT_KEY_CUSTODY_BLOB_KEY.md CHANGED
@@ -1,4 +1,4 @@
1
- [**CBIO Node Runtime Agent API v1.65.0**](../README.md)
1
+ [**CBIO Node Runtime Agent API v1.67.0**](../README.md)
2
2
 
3
3
  ***
4
4
 
package/docs/zh/README.md CHANGED
@@ -9,7 +9,7 @@ cbio Vault Runtime 采用 **Vault(保险箱)** 架构:管理权限扎根
9
9
  - **库优先**:纯 JavaScript/TypeScript 库,无 CLI 或 TUI。
10
10
  - **权限中心化**:管理权限绑定于保险箱主密码,而非外部身份密钥。
11
11
  - **Agent 身份托管**:支持在保险箱内直接生成并加密存储 Agent 私钥。
12
- - **Agent Session Token**:为 Agent 发放可撤销的 session token,避免在消费进程中持有原始私钥。
12
+ - **Agent Session Token**:为 Agent 发放可撤销的 session token,避免在消费进程中持有原始私钥。默认内存实现中,每个 Agent 任意时刻只保留一个当前 token。
13
13
  - **进程隔离**:安全进程(Security Process)与 Agent 进程(Consumer Process)物理分离。
14
14
  - **零泄露发现**:保险箱元数据全加密,未解锁前对外部完全透明。
15
15
 
@@ -67,7 +67,7 @@ const createdAgent = await session.withClient((client) =>
67
67
 
68
68
  const ownerClient = await session.client();
69
69
  const agents = await ownerClient.ownerListAgents();
70
- // ownerListAgents() 会直接返回每个 agent 当前的 sessionTokens
70
+ // ownerListAgents() 会直接返回每个 agent 当前的 session_token
71
71
 
72
72
  session.invalidate();
73
73
  ```
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@the-ai-company/cbio-node-runtime",
3
- "version": "1.65.0",
3
+ "version": "1.67.0",
4
4
  "publishConfig": {
5
5
  "access": "public"
6
6
  },
@@ -32,7 +32,7 @@
32
32
  "prepare": "npm run build && npm run build:docs",
33
33
  "test": "npm run build && npm run test:types && npm run test:acceptance",
34
34
  "test:types": "tsc -p tsconfig.type-tests.json --noEmit",
35
- "test:acceptance": "node tests/smoke/runtime-surface.js && node tests/smoke/policy-and-persistence.js && node tests/smoke/replay-guard.js && node tests/smoke/security-guards.js"
35
+ "test:acceptance": "node tests/smoke/runtime-surface.js && node tests/smoke/policy-and-persistence.js && node tests/smoke/persistent-runtime-security.js && node tests/smoke/replay-guard.js && node tests/smoke/security-guards.js"
36
36
  },
37
37
  "keywords": [
38
38
  "claw-biometric",