npm - @theokit/sdk - Versions diffs - 1.6.1 → 1.7.0 - Mend

@theokit/sdk 1.6.1 → 1.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (351) hide show

package/CHANGELOG.md +187 -0
package/dist/a2a/agent-mailbox.d.cts +27 -0
package/dist/a2a/agent-mailbox.d.ts +27 -0
package/dist/a2a/index.cjs +16850 -0
package/dist/a2a/index.cjs.map +1 -0
package/dist/a2a/index.d.cts +9 -0
package/dist/a2a/index.d.ts +9 -0
package/dist/a2a/index.js +16844 -0
package/dist/a2a/index.js.map +1 -0
package/dist/a2a/message-bus.d.cts +27 -0
package/dist/a2a/message-bus.d.ts +27 -0
package/dist/a2a/subagent.d.cts +25 -0
package/dist/a2a/subagent.d.ts +25 -0
package/dist/a2a/types.d.cts +12 -0
package/dist/a2a/types.d.ts +12 -0
package/dist/agent.d.ts +1 -1
package/dist/client/index.cjs +73 -0
package/dist/client/index.cjs.map +1 -0
package/dist/client/index.d.cts +7 -0
package/dist/client/index.d.ts +7 -0
package/dist/client/index.js +71 -0
package/dist/client/index.js.map +1 -0
package/dist/client/theokit-client.d.cts +18 -0
package/dist/client/theokit-client.d.ts +18 -0
package/dist/client/types.d.cts +19 -0
package/dist/client/types.d.ts +19 -0
package/dist/{run-DkCD5DeO.d.cts → cron-BnywDYLq.d.cts} +496 -910
package/dist/{run-DkCD5DeO.d.ts → cron-CtZvJD9J.d.ts} +496 -910
package/dist/cron.cjs +4285 -2893
package/dist/cron.cjs.map +1 -1
package/dist/cron.d.cts +2 -3
package/dist/cron.d.ts +2 -71
package/dist/cron.js +4289 -2897
package/dist/cron.js.map +1 -1
package/dist/{errors-CvAeEWgE.d.ts → errors-ChqOmFH1.d.cts} +52 -6
package/dist/{errors-CK8brCJ1.d.cts → errors-DV9e0rcp.d.ts} +52 -6
package/dist/errors.cjs +218 -3
package/dist/errors.cjs.map +1 -1
package/dist/errors.d.cts +2 -3
package/dist/errors.d.ts +50 -4
package/dist/errors.js +217 -4
package/dist/errors.js.map +1 -1
package/dist/eval.cjs +4285 -2893
package/dist/eval.cjs.map +1 -1
package/dist/eval.d.cts +35 -0
package/dist/eval.js +4289 -2897
package/dist/eval.js.map +1 -1
package/dist/event-bus.d.ts +23 -0
package/dist/index.cjs +5132 -4200
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +298 -278
package/dist/index.d.ts +1898 -24
package/dist/index.js +6441 -5509
package/dist/index.js.map +1 -1
package/dist/internal/agent-loop/loop-context-init.d.ts +2 -0
package/dist/internal/agent-loop/tool-dispatch.d.ts +22 -1
package/dist/internal/auth/api-key-validator.d.ts +46 -0
package/dist/internal/llm/anthropic-shared.d.ts +8 -1
package/dist/internal/llm/retry.d.ts +22 -0
package/dist/internal/llm/types.d.ts +47 -1
package/dist/internal/memory/active-memory-cache.d.ts +3 -3
package/dist/internal/memory/active-memory-types.d.ts +8 -0
package/dist/internal/memory/active-memory.d.ts +24 -20
package/dist/internal/memory/adapters/azure-openai-embedding.d.ts +2 -0
package/dist/internal/memory/adapters/cohere-embedding.d.ts +2 -0
package/dist/internal/memory/adapters/gemini-embedding.d.ts +2 -0
package/dist/internal/memory/adapters/jina-embedding.d.ts +2 -0
package/dist/internal/memory/index-manager-contract.d.ts +26 -0
package/dist/internal/memory/index-manager-dispatch.d.ts +1 -1
package/dist/internal/memory/index-manager.d.ts +8 -26
package/dist/internal/memory/{chunk-markdown.d.ts → storage/chunk-markdown.d.ts} +1 -1
package/dist/internal/memory/{markdown-store.d.ts → storage/markdown-store.d.ts} +1 -1
package/dist/internal/memory/{reader.d.ts → storage/reader.d.ts} +1 -1
package/dist/internal/observability/context.d.cts +23 -0
package/dist/internal/observability/context.d.ts +23 -0
package/dist/internal/observability/index.cjs +38 -0
package/dist/internal/observability/index.cjs.map +1 -0
package/dist/internal/observability/index.d.cts +8 -0
package/dist/internal/observability/index.d.ts +8 -0
package/dist/internal/observability/index.js +33 -0
package/dist/internal/observability/index.js.map +1 -0
package/dist/internal/observability/tracer-loader.d.cts +20 -0
package/dist/internal/persistence/conversation-storage-fs.d.cts +37 -0
package/dist/internal/persistence/conversation-storage-memory.d.cts +24 -0
package/dist/internal/persistence/credential-pool-store.d.cts +32 -0
package/dist/internal/persistence/credential-pool-store.d.ts +32 -0
package/dist/internal/persistence/cwd-mutex.d.cts +1 -0
package/dist/internal/persistence/exclusive-create.d.cts +22 -0
package/dist/internal/persistence/exclusive-create.d.ts +22 -0
package/dist/internal/persistence/file-lock.d.cts +14 -0
package/dist/internal/persistence/fts5-sanitize.d.cts +16 -0
package/dist/internal/persistence/index.cjs +359 -0
package/dist/internal/persistence/index.cjs.map +1 -0
package/dist/internal/persistence/index.d.cts +20 -0
package/dist/internal/persistence/index.d.ts +20 -0
package/dist/internal/persistence/index.js +341 -0
package/dist/internal/persistence/index.js.map +1 -0
package/dist/internal/persistence/markdown-config-loader.d.cts +35 -0
package/dist/internal/persistence/paths.d.cts +19 -0
package/dist/internal/persistence/persistence-schema.d.cts +21 -0
package/dist/internal/persistence/persistence-schema.d.ts +4 -0
package/dist/internal/persistence/schema-version.d.cts +13 -0
package/dist/internal/persistence/sqlite-cas.d.cts +25 -0
package/dist/internal/persistence/sqlite-cas.d.ts +25 -0
package/dist/internal/persistence/sqlite-wal.d.cts +10 -0
package/dist/internal/plugins/context.d.cts +31 -0
package/dist/internal/plugins/index.cjs +228 -0
package/dist/internal/plugins/index.cjs.map +1 -0
package/dist/internal/plugins/index.d.cts +8 -0
package/dist/internal/plugins/index.d.ts +8 -0
package/dist/internal/plugins/index.js +222 -0
package/dist/internal/plugins/index.js.map +1 -0
package/dist/internal/plugins/lifecycle.d.cts +14 -0
package/dist/internal/plugins/lifecycle.d.ts +14 -0
package/dist/internal/plugins/manager.d.cts +37 -0
package/dist/internal/plugins/types.d.cts +102 -0
package/dist/internal/providers/catalog-loader.d.ts +39 -0
package/dist/internal/runtime/agent-session-store.d.ts +1 -1
package/dist/internal/runtime/agent-session.d.ts +1 -0
package/dist/internal/runtime/budget-tracker.d.ts +73 -0
package/dist/internal/runtime/{context-manager.d.ts → context/context-manager.d.ts} +1 -1
package/dist/internal/runtime/{fixture-events.d.ts → fixtures/fixture-events.d.ts} +1 -1
package/dist/internal/runtime/{fixture-run-base.d.ts → fixtures/fixture-run-base.d.ts} +4 -4
package/dist/internal/runtime/{fixture-scripts.d.ts → fixtures/fixture-scripts.d.ts} +1 -1
package/dist/internal/runtime/local-agent-bootstrap.d.ts +2 -2
package/dist/internal/runtime/local-agent-memory-provider.d.ts +57 -0
package/dist/internal/runtime/memory-path-selector.d.ts +73 -0
package/dist/internal/runtime/memory-provider.d.ts +165 -0
package/dist/internal/runtime/{agent-registry.d.ts → registry/agent-registry-contract.d.ts} +15 -9
package/dist/internal/runtime/registry/agent-registry.d.ts +7 -0
package/dist/internal/runtime/{live-agent-registry.d.ts → registry/live-agent-registry.d.ts} +1 -1
package/dist/internal/runtime/{run-registry.d.ts → registry/run-registry.d.ts} +1 -1
package/dist/internal/runtime/session-types.d.ts +35 -0
package/dist/internal/runtime/system-prompt/sources/skills-provider.d.ts +1 -0
package/dist/internal/runtime/validate-response.d.ts +18 -0
package/dist/internal/security/index.cjs +361 -0
package/dist/internal/security/index.cjs.map +1 -0
package/dist/internal/security/index.d.cts +11 -0
package/dist/internal/security/index.js +350 -0
package/dist/internal/security/index.js.map +1 -0
package/dist/internal/security/path-guard.d.cts +59 -0
package/dist/internal/security/path-guard.d.ts +3 -0
package/dist/internal/security/redact.d.cts +21 -0
package/dist/internal/security/secret-redactor.d.cts +1 -0
package/dist/internal/security/secret-redactor.d.ts +1 -0
package/dist/internal/security/test-reset.d.cts +10 -0
package/dist/internal/security/test-reset.d.ts +10 -0
package/dist/internal/telemetry/adapters/arize.d.ts +2 -0
package/dist/internal/telemetry/adapters/braintrust.d.ts +2 -0
package/dist/internal/telemetry/adapters/datadog.d.ts +2 -0
package/dist/internal/telemetry/adapters/langsmith.d.ts +2 -0
package/dist/internal/telemetry/span-names.d.ts +6 -0
package/dist/internal/telemetry/tracer.d.ts +1 -0
package/dist/internal/workflow/evented-executor.d.ts +42 -0
package/dist/internal/workflow/scheduler.d.ts +23 -0
package/dist/internal/zod/to-json-schema.d.ts +5 -15
package/dist/job-queue.d.ts +28 -0
package/dist/path-safety.cjs +67 -6
package/dist/path-safety.cjs.map +1 -1
package/dist/path-safety.d.cts +15 -0
package/dist/path-safety.d.ts +1 -1
package/dist/path-safety.js +67 -7
package/dist/path-safety.js.map +1 -1
package/dist/permission-engine.d.ts +21 -0
package/dist/provider-catalog.json +702 -0
package/dist/rag/index.cjs +136 -0
package/dist/rag/index.cjs.map +1 -0
package/dist/rag/index.d.cts +11 -0
package/dist/rag/index.d.ts +11 -0
package/dist/rag/index.js +129 -0
package/dist/rag/index.js.map +1 -0
package/dist/rag/reranker.d.cts +26 -0
package/dist/rag/reranker.d.ts +26 -0
package/dist/rag/retriever.d.cts +25 -0
package/dist/rag/retriever.d.ts +25 -0
package/dist/rag/text-splitter.d.cts +12 -0
package/dist/rag/text-splitter.d.ts +12 -0
package/dist/rag/types.d.cts +37 -0
package/dist/rag/types.d.ts +37 -0
package/dist/run-DrwUpFxZ.d.cts +823 -0
package/dist/run-DrwUpFxZ.d.ts +823 -0
package/dist/sandbox/index.cjs +133 -0
package/dist/sandbox/index.cjs.map +1 -0
package/dist/sandbox/index.d.cts +2 -0
package/dist/sandbox/index.d.ts +2 -0
package/dist/sandbox/index.js +128 -0
package/dist/sandbox/index.js.map +1 -0
package/dist/sandbox/local-sandbox.d.cts +17 -0
package/dist/sandbox/local-sandbox.d.ts +17 -0
package/dist/sandbox/types.d.cts +44 -0
package/dist/sandbox/types.d.ts +44 -0
package/dist/server/adapter/express.d.cts +9 -0
package/dist/server/adapter/express.d.ts +9 -0
package/dist/server/adapter/fastify.d.cts +9 -0
package/dist/server/adapter/fastify.d.ts +9 -0
package/dist/server/adapter/hono.d.cts +9 -0
package/dist/server/adapter/hono.d.ts +9 -0
package/dist/server/adapter/index.d.cts +8 -0
package/dist/server/adapter/index.d.ts +8 -0
package/dist/server/adapter/shared-handler.d.cts +9 -0
package/dist/server/adapter/shared-handler.d.ts +9 -0
package/dist/server/adapter/types.d.cts +33 -0
package/dist/server/adapter/types.d.ts +33 -0
package/dist/server/auth/errors.d.cts +53 -0
package/dist/server/auth/errors.d.ts +53 -0
package/dist/server/auth/index.cjs +48 -42
package/dist/server/auth/index.cjs.map +1 -1
package/dist/server/auth/index.d.cts +11 -172
package/dist/server/auth/index.d.ts +11 -172
package/dist/server/auth/index.js +49 -43
package/dist/server/auth/index.js.map +1 -1
package/dist/server/auth/oauth-transaction-store.d.cts +39 -0
package/dist/server/auth/oauth-transaction-store.d.ts +39 -0
package/dist/server/auth/orchestrator.d.cts +8 -0
package/dist/server/auth/orchestrator.d.ts +8 -0
package/dist/server/auth/types.d.cts +91 -0
package/dist/server/auth/types.d.ts +91 -0
package/dist/server/auth/validate-return-to.d.cts +17 -0
package/dist/server/auth/validate-return-to.d.ts +17 -0
package/dist/server/errors-envelope.cjs +409 -0
package/dist/server/errors-envelope.cjs.map +1 -0
package/dist/server/errors-envelope.d.cts +61 -0
package/dist/server/errors-envelope.d.ts +61 -0
package/dist/server/errors-envelope.js +405 -0
package/dist/server/errors-envelope.js.map +1 -0
package/dist/subscription/define-subscription.d.cts +63 -0
package/dist/subscription/define-subscription.d.ts +63 -0
package/dist/subscription/index.cjs +402 -0
package/dist/subscription/index.cjs.map +1 -0
package/dist/subscription/index.d.cts +18 -0
package/dist/subscription/index.d.ts +18 -0
package/dist/subscription/index.js +394 -0
package/dist/subscription/index.js.map +1 -0
package/dist/subscription/internal/adapter-types.d.cts +11 -0
package/dist/subscription/internal/adapter-types.d.ts +11 -0
package/dist/subscription/internal/backpressure.d.cts +24 -0
package/dist/subscription/internal/backpressure.d.ts +24 -0
package/dist/subscription/internal/server-integration.d.cts +17 -0
package/dist/subscription/internal/server-integration.d.ts +17 -0
package/dist/subscription/internal/sse-encoder.d.cts +13 -0
package/dist/subscription/internal/sse-encoder.d.ts +13 -0
package/dist/subscription/internal/sse-parser.d.cts +15 -0
package/dist/subscription/internal/sse-parser.d.ts +15 -0
package/dist/subscription/internal/subscription-runtime.d.cts +9 -0
package/dist/subscription/internal/subscription-runtime.d.ts +9 -0
package/dist/subscription/internal/ws-adapter-node.d.cts +10 -0
package/dist/subscription/internal/ws-adapter-node.d.ts +10 -0
package/dist/subscription/theokit-subscribe.d.cts +41 -0
package/dist/subscription/theokit-subscribe.d.ts +41 -0
package/dist/subscription/types.d.cts +140 -0
package/dist/subscription/types.d.ts +140 -0
package/dist/task-store.cjs +30 -2
package/dist/task-store.cjs.map +1 -1
package/dist/task-store.d.cts +8 -0
package/dist/task-store.js +31 -3
package/dist/task-store.js.map +1 -1
package/dist/types/agent-prims.d.ts +61 -0
package/dist/types/agent.d.ts +48 -53
package/dist/types/conversation.d.ts +20 -8
package/dist/types/index.d.ts +0 -2
package/dist/types/messages-base.d.ts +20 -0
package/dist/types/messages.d.ts +1 -1
package/dist/types/run.d.ts +1 -1
package/dist/types/updates.d.ts +1 -1
package/dist/voice/index.d.ts +7 -0
package/dist/voice/openai-realtime.d.ts +21 -0
package/dist/voice/types.d.ts +35 -0
package/dist/workflow.cjs +179 -88
package/dist/workflow.cjs.map +1 -1
package/dist/workflow.d.cts +97 -0
package/dist/workflow.js +180 -89
package/dist/workflow.js.map +1 -1
package/package.json +126 -25
package/dist/budget.d.ts +0 -48
package/dist/cache.d.ts +0 -74
package/dist/cron-1yxL3K2S.d.cts +0 -221
package/dist/cron-BYVdYzob.d.ts +0 -221
package/dist/handoff.d.ts +0 -55
package/dist/internal/budget/calendar-window.d.ts +0 -19
package/dist/internal/budget/enforcement.d.ts +0 -32
package/dist/internal/budget/ledger.d.ts +0 -25
package/dist/internal/budget/normalize-usage.d.ts +0 -27
package/dist/internal/budget/registry.d.ts +0 -16
package/dist/internal/cache/cosine.d.ts +0 -14
package/dist/internal/cache/embed-helper.d.ts +0 -15
package/dist/internal/cache/key.d.ts +0 -15
package/dist/internal/cache/lookup.d.ts +0 -28
package/dist/internal/cache/store-handler.d.ts +0 -24
package/dist/internal/cache/store-json.d.ts +0 -48
package/dist/internal/cache/store.d.ts +0 -54
package/dist/internal/cache/telemetry.d.ts +0 -20
package/dist/internal/cache/ttl.d.ts +0 -11
package/dist/internal/catalog/fixtures.d.ts +0 -16
package/dist/internal/catalog/local-models.d.ts +0 -24
package/dist/internal/handoff/dispatcher.d.ts +0 -29
package/dist/internal/handoff/registry.d.ts +0 -23
package/dist/internal/handoff/telemetry.d.ts +0 -18
package/dist/internal/handoff/tool-injector.d.ts +0 -34
package/dist/internal/memory/atomic-write.d.ts +0 -7
package/dist/internal/memory/dreaming/diary.d.ts +0 -4
package/dist/internal/memory/dreaming/phases.d.ts +0 -15
package/dist/internal/memory/dreaming/run.d.ts +0 -10
package/dist/internal/memory/migrate-sqlite-to-lance.d.ts +0 -15
package/dist/memory-adapter-helpers.d.ts +0 -28
package/dist/memory.d.ts +0 -123
package/dist/migrate.d.ts +0 -33
package/dist/security.d.ts +0 -67
package/dist/task.d.ts +0 -87
package/dist/theokit.d.ts +0 -84
package/dist/tools/_path-scope.d.ts +0 -8
package/dist/tools/_subprocess.d.ts +0 -28
package/dist/tools/git-diff.d.ts +0 -22
package/dist/tools/index.d.ts +0 -29
package/dist/tools/list-dir.d.ts +0 -26
package/dist/tools/read-file.d.ts +0 -31
package/dist/tools/run-vitest.d.ts +0 -46
package/dist/tools/search-text.d.ts +0 -32
package/dist/tools.cjs +0 -690
package/dist/tools.cjs.map +0 -1
package/dist/tools.js +0 -683
package/dist/tools.js.map +0 -1
package/dist/trajectory-helpers.d.ts +0 -31
package/dist/types/cache.d.ts +0 -76
package/dist/types/handoff.d.ts +0 -135
/package/dist/{internal/cron/run-job.d.ts → agent-helpers.d.ts} +0 -0
/package/dist/internal/{cron/scheduler.d.ts → agent-loop/loop-llm-stream.d.ts} +0 -0
/package/dist/internal/{cron/store.d.ts → agent-loop/tool-executors.d.ts} +0 -0
/package/dist/internal/{cron/validate.d.ts → memory/index-manager-helpers.d.ts} +0 -0
/package/dist/internal/memory/{session-loader.d.ts → storage/session-loader.d.ts} +0 -0
/package/dist/internal/memory/{session-summary-writer.d.ts → storage/session-summary-writer.d.ts} +0 -0
/package/dist/internal/memory/{transcript-store.d.ts → storage/transcript-store.d.ts} +0 -0
/package/dist/internal/memory/{wiki-loader.d.ts → storage/wiki-loader.d.ts} +0 -0
/package/dist/internal/{memory/cwd-mutex.d.ts → persistence/atomic-write.d.cts} +0 -0
/package/dist/internal/runtime/{context-aggregator.d.ts → context/context-aggregator.d.ts} +0 -0
/package/dist/internal/runtime/{context-discovery-runner.d.ts → context/context-discovery-runner.d.ts} +0 -0
/package/dist/internal/runtime/{context-discovery.d.ts → context/context-discovery.d.ts} +0 -0
/package/dist/internal/runtime/{context-frontmatter.d.ts → context/context-frontmatter.d.ts} +0 -0
/package/dist/internal/runtime/{context-import-resolver.d.ts → context/context-import-resolver.d.ts} +0 -0
/package/dist/internal/runtime/{context-loaders.d.ts → context/context-loaders.d.ts} +0 -0
/package/dist/internal/runtime/{context-mdc-parser.d.ts → context/context-mdc-parser.d.ts} +0 -0
/package/dist/internal/runtime/{fixture-responder.d.ts → fixtures/fixture-responder.d.ts} +0 -0
/package/dist/internal/runtime/{fixture-types.d.ts → fixtures/fixture-types.d.ts} +0 -0
/package/dist/internal/runtime/{plugins-manager.d.ts → local-agent-send.d.ts} +0 -0
/package/dist/internal/runtime/{plugin-frontmatter.d.ts → plugins/plugin-frontmatter.d.ts} +0 -0
/package/dist/internal/runtime/{system-prompt/providers/active-memory-provider.d.ts → plugins/plugins-manager.d.ts} +0 -0
/package/dist/internal/runtime/{agent-factory-registry.d.ts → registry/agent-factory-registry.d.ts} +0 -0
/package/dist/internal/runtime/{agent-registry-store.d.ts → registry/agent-registry-store.d.ts} +0 -0
/package/dist/internal/runtime/system-prompt/{providers/base-provider.d.ts → sources/active-memory-provider.d.ts} +0 -0
/package/dist/internal/runtime/system-prompt/{providers/context-provider.d.ts → sources/base-provider.d.ts} +0 -0
/package/dist/internal/runtime/system-prompt/{providers/memory-provider.d.ts → sources/context-provider.d.ts} +0 -0
/package/dist/internal/runtime/system-prompt/{providers/skills-provider.d.ts → sources/memory-provider.d.ts} +0 -0

package/dist/sandbox/index.cjs ADDED Viewed

@@ -0,0 +1,133 @@
+'use strict';
+var child_process = require('child_process');
+var promises = require('fs/promises');
+var path = require('path');
+// src/sandbox/local-sandbox.ts
+// src/sandbox/types.ts
+var SandboxSecurityError = class extends Error {
+  code = "sandbox_security";
+  constructor(message) {
+    super(message);
+    this.name = "SandboxSecurityError";
+  }
+};
+var SandboxNotAvailableError = class extends Error {
+  code = "sandbox_not_available";
+  constructor(message) {
+    super(message);
+    this.name = "SandboxNotAvailableError";
+  }
+};
+var SHELL_METACHARACTERS = /[;&|`$(){}]/;
+var SandboxBackend = class {
+  config;
+  constructor(config = {}) {
+    this.config = {
+      workDir: config.workDir ?? "/tmp",
+      timeoutMs: config.timeoutMs ?? 3e4,
+      maxOutputBytes: config.maxOutputBytes ?? 5 * 1024 * 1024
+    };
+  }
+  async readFile(path) {
+    const result = await this.execute(`cat ${this.shellEscape(path)}`);
+    if (result.exitCode !== 0) {
+      throw new Error(`readFile failed: ${result.stderr}`);
+    }
+    return result.stdout;
+  }
+  async writeFile(path, content) {
+    await this.uploadFile(path, content);
+  }
+  async glob(pattern, cwd) {
+    const dir = cwd ?? this.config.workDir ?? ".";
+    const result = await this.execute(
+      `find ${this.shellEscape(dir)} -name ${this.shellEscape(pattern)} -type f 2>/dev/null`
+    );
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  async grep(pattern, path) {
+    const target = path ?? ".";
+    const result = await this.execute(
+      `grep -rn ${this.shellEscape(pattern)} ${this.shellEscape(target)} 2>/dev/null`
+    );
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  async listDir(path) {
+    const result = await this.execute(`ls -1 ${this.shellEscape(path)}`);
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  validateCommand(command) {
+    if (SHELL_METACHARACTERS.test(command)) {
+      throw new SandboxSecurityError(
+        `Command contains shell metacharacters: ${command.slice(0, 80)}`
+      );
+    }
+  }
+  truncateOutput(output) {
+    const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;
+    if (Buffer.byteLength(output) > max) {
+      return `${output.slice(0, max)}
+...(truncated)`;
+    }
+    return output;
+  }
+  shellEscape(arg) {
+    return `'${arg.replace(/'/g, "'\\''")}'`;
+  }
+};
+// src/sandbox/local-sandbox.ts
+var LocalSandbox = class extends SandboxBackend {
+  constructor(config = {}) {
+    super(config);
+  }
+  async execute(command, opts) {
+    const timeout = opts?.timeoutMs ?? this.config.timeoutMs ?? 3e4;
+    const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;
+    return new Promise((resolve) => {
+      const child = child_process.execFile(
+        "/bin/sh",
+        ["-c", command],
+        {
+          cwd: this.config.workDir,
+          timeout,
+          maxBuffer: max,
+          encoding: "utf-8"
+        },
+        (error, stdout, stderr) => {
+          resolve(this.buildResult(error, stdout ?? "", stderr ?? ""));
+        }
+      );
+      child.on("error", () => {
+        resolve({ stdout: "", stderr: "spawn error", exitCode: 1, timedOut: false });
+      });
+    });
+  }
+  buildResult(error, stdout, stderr) {
+    const timedOut = error !== null && "killed" in error && error.killed;
+    return {
+      stdout: this.truncateOutput(stdout),
+      stderr: this.truncateOutput(stderr),
+      exitCode: timedOut ? 124 : error ? 1 : 0,
+      timedOut
+    };
+  }
+  async uploadFile(path$1, content) {
+    const fullPath = path$1.startsWith("/") ? path$1 : `${this.config.workDir}/${path$1}`;
+    await promises.mkdir(path.dirname(fullPath), { recursive: true });
+    await promises.writeFile(fullPath, content, "utf-8");
+  }
+};
+exports.LocalSandbox = LocalSandbox;
+exports.SandboxBackend = SandboxBackend;
+exports.SandboxNotAvailableError = SandboxNotAvailableError;
+exports.SandboxSecurityError = SandboxSecurityError;
+//# sourceMappingURL=index.cjs.map
+//# sourceMappingURL=index.cjs.map

package/dist/sandbox/index.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../src/sandbox/types.ts","../../src/sandbox/local-sandbox.ts"],"names":["execFile","path","mkdir","dirname","fsWriteFile"],"mappings":";;;;;;;;;AAuBO,IAAM,oBAAA,GAAN,cAAmC,KAAA,CAAM;AAAA,EACrC,IAAA,GAAO,kBAAA;AAAA,EAChB,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,sBAAA;AAAA,EACd;AACF;AAEO,IAAM,wBAAA,GAAN,cAAuC,KAAA,CAAM;AAAA,EACzC,IAAA,GAAO,uBAAA;AAAA,EAChB,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,0BAAA;AAAA,EACd;AACF;AAEA,IAAM,oBAAA,GAAuB,aAAA;AAEtB,IAAe,iBAAf,MAA8B;AAAA,EACzB,MAAA;AAAA,EAEV,WAAA,CAAY,MAAA,GAAwB,EAAC,EAAG;AACtC,IAAA,IAAA,CAAK,MAAA,GAAS;AAAA,MACZ,OAAA,EAAS,OAAO,OAAA,IAAW,MAAA;AAAA,MAC3B,SAAA,EAAW,OAAO,SAAA,IAAa,GAAA;AAAA,MAC/B,cAAA,EAAgB,MAAA,CAAO,cAAA,IAAkB,CAAA,GAAI,IAAA,GAAO;AAAA,KACtD;AAAA,EACF;AAAA,EAMA,MAAM,SAAS,IAAA,EAA+B;AAC5C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA,CAAQ,OAAO,IAAA,CAAK,WAAA,CAAY,IAAI,CAAC,CAAA,CAAE,CAAA;AACjE,IAAA,IAAI,MAAA,CAAO,aAAa,CAAA,EAAG;AACzB,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,MAAA,CAAO,MAAM,CAAA,CAAE,CAAA;AAAA,IACrD;AACA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB;AAAA,EAEA,MAAM,SAAA,CAAU,IAAA,EAAc,OAAA,EAAgC;AAC5D,IAAA,MAAM,IAAA,CAAK,UAAA,CAAW,IAAA,EAAM,OAAO,CAAA;AAAA,EACrC;AAAA,EAEA,MAAM,IAAA,CAAK,OAAA,EAAiB,GAAA,EAAiC;AAC3D,IAAA,MAAM,GAAA,GAAM,GAAA,IAAO,IAAA,CAAK,MAAA,CAAO,OAAA,IAAW,GAAA;AAC1C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA;AAAA,MACxB,CAAA,KAAA,EAAQ,KAAK,WAAA,CAAY,GAAG,CAAC,CAAA,OAAA,EAAU,IAAA,CAAK,WAAA,CAAY,OAAO,CAAC,CAAA,oBAAA;AAAA,KAClE;AACA,IAAA,IAAI,MAAA,CAAO,QAAA,KAAa,CAAA,EAAG,OAAO,EAAC;AACnC,IAAA,OAAO,MAAA,CAAO,OAAO,IAAA,EAAK,CAAE,MAAM,IAAI,CAAA,CAAE,OAAO,OAAO,CAAA;AAAA,EACxD;AAAA,EAEA,MAAM,IAAA,CAAK,OAAA,EAAiB,IAAA,EAAkC;AAC5D,IAAA,MAAM,SAAS,IAAA,IAAQ,GAAA;AACvB,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA;AAAA,MACxB,CAAA,SAAA,EAAY,KAAK,WAAA,CAAY,OAAO,CAAC,CAAA,CAAA,EAAI,IAAA,CAAK,WAAA,CAAY,MAAM,CAAC,CAAA,YAAA;AAAA,KACnE;AACA,IAAA,IAAI,MAAA,CAAO,QAAA,KAAa,CAAA,EAAG,OAAO,EAAC;AACnC,IAAA,OAAO,MAAA,CAAO,OAAO,IAAA,EAAK,CAAE,MAAM,IAAI,CAAA,CAAE,OAAO,OAAO,CAAA;AAAA,EACxD;AAAA,EAEA,MAAM,QAAQ,IAAA,EAAiC;AAC7C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA,CAAQ,SAAS,IAAA,CAAK,WAAA,CAAY,IAAI,CAAC,CAAA,CAAE,CAAA;AACnE,IAAA,IAAI,MAAA,CAAO,QAAA,KAAa,CAAA,EAAG,OAAO,EAAC;AACnC,IAAA,OAAO,MAAA,CAAO,OAAO,IAAA,EAAK,CAAE,MAAM,IAAI,CAAA,CAAE,OAAO,OAAO,CAAA;AAAA,EACxD;AAAA,EAEU,gBAAgB,OAAA,EAAuB;AAC/C,IAAA,IAAI,oBAAA,CAAqB,IAAA,CAAK,OAAO,CAAA,EAAG;AACtC,MAAA,MAAM,IAAI,oBAAA;AAAA,QACR,CAAA,uCAAA,EAA0C,OAAA,CAAQ,KAAA,CAAM,CAAA,EAAG,EAAE,CAAC,CAAA;AAAA,OAChE;AAAA,IACF;AAAA,EACF;AAAA,EAEU,eAAe,MAAA,EAAwB;AAC/C,IAAA,MAAM,GAAA,GAAM,IAAA,CAAK,MAAA,CAAO,cAAA,IAAkB,IAAI,IAAA,GAAO,IAAA;AACrD,IAAA,IAAI,MAAA,CAAO,UAAA,CAAW,MAAM,CAAA,GAAI,GAAA,EAAK;AACnC,MAAA,OAAO,CAAA,EAAG,MAAA,CAAO,KAAA,CAAM,CAAA,EAAG,GAAG,CAAC;AAAA,cAAA,CAAA;AAAA,IAChC;AACA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEQ,YAAY,GAAA,EAAqB;AACvC,IAAA,OAAO,CAAA,CAAA,EAAI,GAAA,CAAI,OAAA,CAAQ,IAAA,EAAM,OAAO,CAAC,CAAA,CAAA,CAAA;AAAA,EACvC;AACF;;;AChGO,IAAM,YAAA,GAAN,cAA2B,cAAA,CAAe;AAAA,EAC/C,WAAA,CAAY,MAAA,GAAwB,EAAC,EAAG;AACtC,IAAA,KAAA,CAAM,MAAM,CAAA;AAAA,EACd;AAAA,EAEA,MAAM,OAAA,CAAQ,OAAA,EAAiB,IAAA,EAAuD;AACpF,IAAA,MAAM,OAAA,GAAU,IAAA,EAAM,SAAA,IAAa,IAAA,CAAK,OAAO,SAAA,IAAa,GAAA;AAC5D,IAAA,MAAM,GAAA,GAAM,IAAA,CAAK,MAAA,CAAO,cAAA,IAAkB,IAAI,IAAA,GAAO,IAAA;AAErD,IAAA,OAAO,IAAI,OAAA,CAAuB,CAAC,OAAA,KAAY;AAC7C,MAAA,MAAM,KAAA,GAAQA,sBAAA;AAAA,QACZ,SAAA;AAAA,QACA,CAAC,MAAM,OAAO,CAAA;AAAA,QACd;AAAA,UACE,GAAA,EAAK,KAAK,MAAA,CAAO,OAAA;AAAA,UACjB,OAAA;AAAA,UACA,SAAA,EAAW,GAAA;AAAA,UACX,QAAA,EAAU;AAAA,SACZ;AAAA,QACA,CAAC,KAAA,EAAO,MAAA,EAAQ,MAAA,KAAW;AACzB,UAAA,OAAA,CAAQ,KAAK,WAAA,CAAY,KAAA,EAAO,UAAU,EAAA,EAAI,MAAA,IAAU,EAAE,CAAC,CAAA;AAAA,QAC7D;AAAA,OACF;AAGA,MAAA,KAAA,CAAM,EAAA,CAAG,SAAS,MAAM;AACtB,QAAA,OAAA,CAAQ,EAAE,QAAQ,EAAA,EAAI,MAAA,EAAQ,eAAe,QAAA,EAAU,CAAA,EAAG,QAAA,EAAU,KAAA,EAAO,CAAA;AAAA,MAC7E,CAAC,CAAA;AAAA,IACH,CAAC,CAAA;AAAA,EACH;AAAA,EAEQ,WAAA,CAAY,KAAA,EAAqB,MAAA,EAAgB,MAAA,EAA+B;AACtF,IAAA,MAAM,QAAA,GAAW,KAAA,KAAU,IAAA,IAAQ,QAAA,IAAY,SAAU,KAAA,CAA8B,MAAA;AACvF,IAAA,OAAO;AAAA,MACL,MAAA,EAAQ,IAAA,CAAK,cAAA,CAAe,MAAM,CAAA;AAAA,MAClC,MAAA,EAAQ,IAAA,CAAK,cAAA,CAAe,MAAM,CAAA;AAAA,MAClC,QAAA,EAAU,QAAA,GAAW,GAAA,GAAM,KAAA,GAAQ,CAAA,GAAI,CAAA;AAAA,MACvC;AAAA,KACF;AAAA,EACF;AAAA,EAEA,MAAM,UAAA,CAAWC,MAAA,EAAc,OAAA,EAAyC;AACtE,IAAA,MAAM,QAAA,GAAWA,MAAA,CAAK,UAAA,CAAW,GAAG,CAAA,GAAIA,MAAA,GAAO,CAAA,EAAG,IAAA,CAAK,MAAA,CAAO,OAAO,CAAA,CAAA,EAAIA,MAAI,CAAA,CAAA;AAC7E,IAAA,MAAMC,eAAMC,YAAA,CAAQ,QAAQ,GAAG,EAAE,SAAA,EAAW,MAAM,CAAA;AAClD,IAAA,MAAMC,kBAAA,CAAY,QAAA,EAAU,OAAA,EAAS,OAAO,CAAA;AAAA,EAC9C;AACF","file":"index.cjs","sourcesContent":["/**\n * Sandbox backend protocol — pluggable execution environment for agent tools.\n *\n * Per ADR D1: only 2 abstract methods (`execute` + `uploadFile`). All\n * higher-level operations are derived on the base class. New backends\n * (Docker, Firecracker, E2B) only implement those 2 methods.\n *\n * @public\n */\n\nexport interface ExecuteResult {\n stdout: string;\n stderr: string;\n exitCode: number;\n timedOut: boolean;\n}\n\nexport interface SandboxConfig {\n workDir?: string;\n timeoutMs?: number;\n maxOutputBytes?: number;\n}\n\nexport class SandboxSecurityError extends Error {\n readonly code = \"sandbox_security\" as const;\n constructor(message: string) {\n super(message);\n this.name = \"SandboxSecurityError\";\n }\n}\n\nexport class SandboxNotAvailableError extends Error {\n readonly code = \"sandbox_not_available\" as const;\n constructor(message: string) {\n super(message);\n this.name = \"SandboxNotAvailableError\";\n }\n}\n\nconst SHELL_METACHARACTERS = /[;&|`$(){}]/;\n\nexport abstract class SandboxBackend {\n protected config: SandboxConfig;\n\n constructor(config: SandboxConfig = {}) {\n this.config = {\n workDir: config.workDir ?? \"/tmp\",\n timeoutMs: config.timeoutMs ?? 30_000,\n maxOutputBytes: config.maxOutputBytes ?? 5 * 1024 * 1024,\n };\n }\n\n abstract execute(command: string, opts?: { timeoutMs?: number }): Promise<ExecuteResult>;\n\n abstract uploadFile(path: string, content: string | Buffer): Promise<void>;\n\n async readFile(path: string): Promise<string> {\n const result = await this.execute(`cat ${this.shellEscape(path)}`);\n if (result.exitCode !== 0) {\n throw new Error(`readFile failed: ${result.stderr}`);\n }\n return result.stdout;\n }\n\n async writeFile(path: string, content: string): Promise<void> {\n await this.uploadFile(path, content);\n }\n\n async glob(pattern: string, cwd?: string): Promise<string[]> {\n const dir = cwd ?? this.config.workDir ?? \".\";\n const result = await this.execute(\n `find ${this.shellEscape(dir)} -name ${this.shellEscape(pattern)} -type f 2>/dev/null`,\n );\n if (result.exitCode !== 0) return [];\n return result.stdout.trim().split(\"\\n\").filter(Boolean);\n }\n\n async grep(pattern: string, path?: string): Promise<string[]> {\n const target = path ?? \".\";\n const result = await this.execute(\n `grep -rn ${this.shellEscape(pattern)} ${this.shellEscape(target)} 2>/dev/null`,\n );\n if (result.exitCode !== 0) return [];\n return result.stdout.trim().split(\"\\n\").filter(Boolean);\n }\n\n async listDir(path: string): Promise<string[]> {\n const result = await this.execute(`ls -1 ${this.shellEscape(path)}`);\n if (result.exitCode !== 0) return [];\n return result.stdout.trim().split(\"\\n\").filter(Boolean);\n }\n\n protected validateCommand(command: string): void {\n if (SHELL_METACHARACTERS.test(command)) {\n throw new SandboxSecurityError(\n `Command contains shell metacharacters: ${command.slice(0, 80)}`,\n );\n }\n }\n\n protected truncateOutput(output: string): string {\n const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;\n if (Buffer.byteLength(output) > max) {\n return `${output.slice(0, max)}\\n...(truncated)`;\n }\n return output;\n }\n\n private shellEscape(arg: string): string {\n return `'${arg.replace(/'/g, \"'\\\\''\")}'`;\n }\n}\n","/**\n * LocalSandbox — subprocess-based execution with NO isolation.\n *\n * Uses `execFile` with split args (NOT `exec` with string) per EC-1.\n * This is NOT a security boundary — only DockerSandbox provides isolation.\n *\n * @public\n */\n\nimport { execFile } from \"node:child_process\";\nimport { writeFile as fsWriteFile, mkdir } from \"node:fs/promises\";\nimport { dirname } from \"node:path\";\n\nimport { type ExecuteResult, SandboxBackend, type SandboxConfig } from \"./types.js\";\n\nexport class LocalSandbox extends SandboxBackend {\n constructor(config: SandboxConfig = {}) {\n super(config);\n }\n\n async execute(command: string, opts?: { timeoutMs?: number }): Promise<ExecuteResult> {\n const timeout = opts?.timeoutMs ?? this.config.timeoutMs ?? 30_000;\n const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;\n\n return new Promise<ExecuteResult>((resolve) => {\n const child = execFile(\n \"/bin/sh\",\n [\"-c\", command],\n {\n cwd: this.config.workDir,\n timeout,\n maxBuffer: max,\n encoding: \"utf-8\",\n },\n (error, stdout, stderr) => {\n resolve(this.buildResult(error, stdout ?? \"\", stderr ?? \"\"));\n },\n );\n\n // Safety: if child somehow doesn't callback\n child.on(\"error\", () => {\n resolve({ stdout: \"\", stderr: \"spawn error\", exitCode: 1, timedOut: false });\n });\n });\n }\n\n private buildResult(error: Error | null, stdout: string, stderr: string): ExecuteResult {\n const timedOut = error !== null && \"killed\" in error && (error as { killed: boolean }).killed;\n return {\n stdout: this.truncateOutput(stdout),\n stderr: this.truncateOutput(stderr),\n exitCode: timedOut ? 124 : error ? 1 : 0,\n timedOut,\n };\n }\n\n async uploadFile(path: string, content: string | Buffer): Promise<void> {\n const fullPath = path.startsWith(\"/\") ? path : `${this.config.workDir}/${path}`;\n await mkdir(dirname(fullPath), { recursive: true });\n await fsWriteFile(fullPath, content, \"utf-8\");\n }\n}\n"]}

package/dist/sandbox/index.d.cts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { LocalSandbox } from "./local-sandbox.js";
2	+ export { type ExecuteResult, SandboxBackend, type SandboxConfig, SandboxNotAvailableError, SandboxSecurityError, } from "./types.js";

package/dist/sandbox/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { LocalSandbox } from "./local-sandbox.js";
2	+ export { type ExecuteResult, SandboxBackend, type SandboxConfig, SandboxNotAvailableError, SandboxSecurityError, } from "./types.js";

package/dist/sandbox/index.js ADDED Viewed

@@ -0,0 +1,128 @@
+import { execFile } from 'child_process';
+import { mkdir, writeFile } from 'fs/promises';
+import { dirname } from 'path';
+// src/sandbox/local-sandbox.ts
+// src/sandbox/types.ts
+var SandboxSecurityError = class extends Error {
+  code = "sandbox_security";
+  constructor(message) {
+    super(message);
+    this.name = "SandboxSecurityError";
+  }
+};
+var SandboxNotAvailableError = class extends Error {
+  code = "sandbox_not_available";
+  constructor(message) {
+    super(message);
+    this.name = "SandboxNotAvailableError";
+  }
+};
+var SHELL_METACHARACTERS = /[;&|`$(){}]/;
+var SandboxBackend = class {
+  config;
+  constructor(config = {}) {
+    this.config = {
+      workDir: config.workDir ?? "/tmp",
+      timeoutMs: config.timeoutMs ?? 3e4,
+      maxOutputBytes: config.maxOutputBytes ?? 5 * 1024 * 1024
+    };
+  }
+  async readFile(path) {
+    const result = await this.execute(`cat ${this.shellEscape(path)}`);
+    if (result.exitCode !== 0) {
+      throw new Error(`readFile failed: ${result.stderr}`);
+    }
+    return result.stdout;
+  }
+  async writeFile(path, content) {
+    await this.uploadFile(path, content);
+  }
+  async glob(pattern, cwd) {
+    const dir = cwd ?? this.config.workDir ?? ".";
+    const result = await this.execute(
+      `find ${this.shellEscape(dir)} -name ${this.shellEscape(pattern)} -type f 2>/dev/null`
+    );
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  async grep(pattern, path) {
+    const target = path ?? ".";
+    const result = await this.execute(
+      `grep -rn ${this.shellEscape(pattern)} ${this.shellEscape(target)} 2>/dev/null`
+    );
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  async listDir(path) {
+    const result = await this.execute(`ls -1 ${this.shellEscape(path)}`);
+    if (result.exitCode !== 0) return [];
+    return result.stdout.trim().split("\n").filter(Boolean);
+  }
+  validateCommand(command) {
+    if (SHELL_METACHARACTERS.test(command)) {
+      throw new SandboxSecurityError(
+        `Command contains shell metacharacters: ${command.slice(0, 80)}`
+      );
+    }
+  }
+  truncateOutput(output) {
+    const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;
+    if (Buffer.byteLength(output) > max) {
+      return `${output.slice(0, max)}
+...(truncated)`;
+    }
+    return output;
+  }
+  shellEscape(arg) {
+    return `'${arg.replace(/'/g, "'\\''")}'`;
+  }
+};
+// src/sandbox/local-sandbox.ts
+var LocalSandbox = class extends SandboxBackend {
+  constructor(config = {}) {
+    super(config);
+  }
+  async execute(command, opts) {
+    const timeout = opts?.timeoutMs ?? this.config.timeoutMs ?? 3e4;
+    const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;
+    return new Promise((resolve) => {
+      const child = execFile(
+        "/bin/sh",
+        ["-c", command],
+        {
+          cwd: this.config.workDir,
+          timeout,
+          maxBuffer: max,
+          encoding: "utf-8"
+        },
+        (error, stdout, stderr) => {
+          resolve(this.buildResult(error, stdout ?? "", stderr ?? ""));
+        }
+      );
+      child.on("error", () => {
+        resolve({ stdout: "", stderr: "spawn error", exitCode: 1, timedOut: false });
+      });
+    });
+  }
+  buildResult(error, stdout, stderr) {
+    const timedOut = error !== null && "killed" in error && error.killed;
+    return {
+      stdout: this.truncateOutput(stdout),
+      stderr: this.truncateOutput(stderr),
+      exitCode: timedOut ? 124 : error ? 1 : 0,
+      timedOut
+    };
+  }
+  async uploadFile(path, content) {
+    const fullPath = path.startsWith("/") ? path : `${this.config.workDir}/${path}`;
+    await mkdir(dirname(fullPath), { recursive: true });
+    await writeFile(fullPath, content, "utf-8");
+  }
+};
+export { LocalSandbox, SandboxBackend, SandboxNotAvailableError, SandboxSecurityError };
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/sandbox/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../src/sandbox/types.ts","../../src/sandbox/local-sandbox.ts"],"names":["fsWriteFile"],"mappings":";;;;;;;AAuBO,IAAM,oBAAA,GAAN,cAAmC,KAAA,CAAM;AAAA,EACrC,IAAA,GAAO,kBAAA;AAAA,EAChB,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,sBAAA;AAAA,EACd;AACF;AAEO,IAAM,wBAAA,GAAN,cAAuC,KAAA,CAAM;AAAA,EACzC,IAAA,GAAO,uBAAA;AAAA,EAChB,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,0BAAA;AAAA,EACd;AACF;AAEA,IAAM,oBAAA,GAAuB,aAAA;AAEtB,IAAe,iBAAf,MAA8B;AAAA,EACzB,MAAA;AAAA,EAEV,WAAA,CAAY,MAAA,GAAwB,EAAC,EAAG;AACtC,IAAA,IAAA,CAAK,MAAA,GAAS;AAAA,MACZ,OAAA,EAAS,OAAO,OAAA,IAAW,MAAA;AAAA,MAC3B,SAAA,EAAW,OAAO,SAAA,IAAa,GAAA;AAAA,MAC/B,cAAA,EAAgB,MAAA,CAAO,cAAA,IAAkB,CAAA,GAAI,IAAA,GAAO;AAAA,KACtD;AAAA,EACF;AAAA,EAMA,MAAM,SAAS,IAAA,EAA+B;AAC5C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA,CAAQ,OAAO,IAAA,CAAK,WAAA,CAAY,IAAI,CAAC,CAAA,CAAE,CAAA;AACjE,IAAA,IAAI,MAAA,CAAO,aAAa,CAAA,EAAG;AACzB,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,MAAA,CAAO,MAAM,CAAA,CAAE,CAAA;AAAA,IACrD;AACA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB;AAAA,EAEA,MAAM,SAAA,CAAU,IAAA,EAAc,OAAA,EAAgC;AAC5D,IAAA,MAAM,IAAA,CAAK,UAAA,CAAW,IAAA,EAAM,OAAO,CAAA;AAAA,EACrC;AAAA,EAEA,MAAM,IAAA,CAAK,OAAA,EAAiB,GAAA,EAAiC;AAC3D,IAAA,MAAM,GAAA,GAAM,GAAA,IAAO,IAAA,CAAK,MAAA,CAAO,OAAA,IAAW,GAAA;AAC1C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA;AAAA,MACxB,CAAA,KAAA,EAAQ,KAAK,WAAA,CAAY,GAAG,CAAC,CAAA,OAAA,EAAU,IAAA,CAAK,WAAA,CAAY,OAAO,CAAC,CAAA,oBAAA;AAAA,KAClE;AACA,IAAA,IAAI,MAAA,CAAO,QAAA,KAAa,CAAA,EAAG,OAAO,EAAC;AACnC,IAAA,OAAO,MAAA,CAAO,OAAO,IAAA,EAAK,CAAE,MAAM,IAAI,CAAA,CAAE,OAAO,OAAO,CAAA;AAAA,EACxD;AAAA,EAEA,MAAM,IAAA,CAAK,OAAA,EAAiB,IAAA,EAAkC;AAC5D,IAAA,MAAM,SAAS,IAAA,IAAQ,GAAA;AACvB,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA;AAAA,MACxB,CAAA,SAAA,EAAY,KAAK,WAAA,CAAY,OAAO,CAAC,CAAA,CAAA,EAAI,IAAA,CAAK,WAAA,CAAY,MAAM,CAAC,CAAA,YAAA;AAAA,KACnE;AACA,IAAA,IAAI,MAAA,CAAO,QAAA,KAAa,CAAA,EAAG,OAAO,EAAC;AACnC,IAAA,OAAO,MAAA,CAAO,OAAO,IAAA,EAAK,CAAE,MAAM,IAAI,CAAA,CAAE,OAAO,OAAO,CAAA;AAAA,EACxD;AAAA,EAEA,MAAM,QAAQ,IAAA,EAAiC;AAC7C,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,OAAA,CAAQ,SAAS,IAAA,CAAK,WAAA,CAAY,IAAI,CAAC,CAAA,CAAE,CAAA;AACnE,IAAA,IAAI,MAAA,CAAO,QAAA,KAAa,CAAA,EAAG,OAAO,EAAC;AACnC,IAAA,OAAO,MAAA,CAAO,OAAO,IAAA,EAAK,CAAE,MAAM,IAAI,CAAA,CAAE,OAAO,OAAO,CAAA;AAAA,EACxD;AAAA,EAEU,gBAAgB,OAAA,EAAuB;AAC/C,IAAA,IAAI,oBAAA,CAAqB,IAAA,CAAK,OAAO,CAAA,EAAG;AACtC,MAAA,MAAM,IAAI,oBAAA;AAAA,QACR,CAAA,uCAAA,EAA0C,OAAA,CAAQ,KAAA,CAAM,CAAA,EAAG,EAAE,CAAC,CAAA;AAAA,OAChE;AAAA,IACF;AAAA,EACF;AAAA,EAEU,eAAe,MAAA,EAAwB;AAC/C,IAAA,MAAM,GAAA,GAAM,IAAA,CAAK,MAAA,CAAO,cAAA,IAAkB,IAAI,IAAA,GAAO,IAAA;AACrD,IAAA,IAAI,MAAA,CAAO,UAAA,CAAW,MAAM,CAAA,GAAI,GAAA,EAAK;AACnC,MAAA,OAAO,CAAA,EAAG,MAAA,CAAO,KAAA,CAAM,CAAA,EAAG,GAAG,CAAC;AAAA,cAAA,CAAA;AAAA,IAChC;AACA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEQ,YAAY,GAAA,EAAqB;AACvC,IAAA,OAAO,CAAA,CAAA,EAAI,GAAA,CAAI,OAAA,CAAQ,IAAA,EAAM,OAAO,CAAC,CAAA,CAAA,CAAA;AAAA,EACvC;AACF;;;AChGO,IAAM,YAAA,GAAN,cAA2B,cAAA,CAAe;AAAA,EAC/C,WAAA,CAAY,MAAA,GAAwB,EAAC,EAAG;AACtC,IAAA,KAAA,CAAM,MAAM,CAAA;AAAA,EACd;AAAA,EAEA,MAAM,OAAA,CAAQ,OAAA,EAAiB,IAAA,EAAuD;AACpF,IAAA,MAAM,OAAA,GAAU,IAAA,EAAM,SAAA,IAAa,IAAA,CAAK,OAAO,SAAA,IAAa,GAAA;AAC5D,IAAA,MAAM,GAAA,GAAM,IAAA,CAAK,MAAA,CAAO,cAAA,IAAkB,IAAI,IAAA,GAAO,IAAA;AAErD,IAAA,OAAO,IAAI,OAAA,CAAuB,CAAC,OAAA,KAAY;AAC7C,MAAA,MAAM,KAAA,GAAQ,QAAA;AAAA,QACZ,SAAA;AAAA,QACA,CAAC,MAAM,OAAO,CAAA;AAAA,QACd;AAAA,UACE,GAAA,EAAK,KAAK,MAAA,CAAO,OAAA;AAAA,UACjB,OAAA;AAAA,UACA,SAAA,EAAW,GAAA;AAAA,UACX,QAAA,EAAU;AAAA,SACZ;AAAA,QACA,CAAC,KAAA,EAAO,MAAA,EAAQ,MAAA,KAAW;AACzB,UAAA,OAAA,CAAQ,KAAK,WAAA,CAAY,KAAA,EAAO,UAAU,EAAA,EAAI,MAAA,IAAU,EAAE,CAAC,CAAA;AAAA,QAC7D;AAAA,OACF;AAGA,MAAA,KAAA,CAAM,EAAA,CAAG,SAAS,MAAM;AACtB,QAAA,OAAA,CAAQ,EAAE,QAAQ,EAAA,EAAI,MAAA,EAAQ,eAAe,QAAA,EAAU,CAAA,EAAG,QAAA,EAAU,KAAA,EAAO,CAAA;AAAA,MAC7E,CAAC,CAAA;AAAA,IACH,CAAC,CAAA;AAAA,EACH;AAAA,EAEQ,WAAA,CAAY,KAAA,EAAqB,MAAA,EAAgB,MAAA,EAA+B;AACtF,IAAA,MAAM,QAAA,GAAW,KAAA,KAAU,IAAA,IAAQ,QAAA,IAAY,SAAU,KAAA,CAA8B,MAAA;AACvF,IAAA,OAAO;AAAA,MACL,MAAA,EAAQ,IAAA,CAAK,cAAA,CAAe,MAAM,CAAA;AAAA,MAClC,MAAA,EAAQ,IAAA,CAAK,cAAA,CAAe,MAAM,CAAA;AAAA,MAClC,QAAA,EAAU,QAAA,GAAW,GAAA,GAAM,KAAA,GAAQ,CAAA,GAAI,CAAA;AAAA,MACvC;AAAA,KACF;AAAA,EACF;AAAA,EAEA,MAAM,UAAA,CAAW,IAAA,EAAc,OAAA,EAAyC;AACtE,IAAA,MAAM,QAAA,GAAW,IAAA,CAAK,UAAA,CAAW,GAAG,CAAA,GAAI,IAAA,GAAO,CAAA,EAAG,IAAA,CAAK,MAAA,CAAO,OAAO,CAAA,CAAA,EAAI,IAAI,CAAA,CAAA;AAC7E,IAAA,MAAM,MAAM,OAAA,CAAQ,QAAQ,GAAG,EAAE,SAAA,EAAW,MAAM,CAAA;AAClD,IAAA,MAAMA,SAAA,CAAY,QAAA,EAAU,OAAA,EAAS,OAAO,CAAA;AAAA,EAC9C;AACF","file":"index.js","sourcesContent":["/**\n * Sandbox backend protocol — pluggable execution environment for agent tools.\n *\n * Per ADR D1: only 2 abstract methods (`execute` + `uploadFile`). All\n * higher-level operations are derived on the base class. New backends\n * (Docker, Firecracker, E2B) only implement those 2 methods.\n *\n * @public\n */\n\nexport interface ExecuteResult {\n stdout: string;\n stderr: string;\n exitCode: number;\n timedOut: boolean;\n}\n\nexport interface SandboxConfig {\n workDir?: string;\n timeoutMs?: number;\n maxOutputBytes?: number;\n}\n\nexport class SandboxSecurityError extends Error {\n readonly code = \"sandbox_security\" as const;\n constructor(message: string) {\n super(message);\n this.name = \"SandboxSecurityError\";\n }\n}\n\nexport class SandboxNotAvailableError extends Error {\n readonly code = \"sandbox_not_available\" as const;\n constructor(message: string) {\n super(message);\n this.name = \"SandboxNotAvailableError\";\n }\n}\n\nconst SHELL_METACHARACTERS = /[;&|`$(){}]/;\n\nexport abstract class SandboxBackend {\n protected config: SandboxConfig;\n\n constructor(config: SandboxConfig = {}) {\n this.config = {\n workDir: config.workDir ?? \"/tmp\",\n timeoutMs: config.timeoutMs ?? 30_000,\n maxOutputBytes: config.maxOutputBytes ?? 5 * 1024 * 1024,\n };\n }\n\n abstract execute(command: string, opts?: { timeoutMs?: number }): Promise<ExecuteResult>;\n\n abstract uploadFile(path: string, content: string | Buffer): Promise<void>;\n\n async readFile(path: string): Promise<string> {\n const result = await this.execute(`cat ${this.shellEscape(path)}`);\n if (result.exitCode !== 0) {\n throw new Error(`readFile failed: ${result.stderr}`);\n }\n return result.stdout;\n }\n\n async writeFile(path: string, content: string): Promise<void> {\n await this.uploadFile(path, content);\n }\n\n async glob(pattern: string, cwd?: string): Promise<string[]> {\n const dir = cwd ?? this.config.workDir ?? \".\";\n const result = await this.execute(\n `find ${this.shellEscape(dir)} -name ${this.shellEscape(pattern)} -type f 2>/dev/null`,\n );\n if (result.exitCode !== 0) return [];\n return result.stdout.trim().split(\"\\n\").filter(Boolean);\n }\n\n async grep(pattern: string, path?: string): Promise<string[]> {\n const target = path ?? \".\";\n const result = await this.execute(\n `grep -rn ${this.shellEscape(pattern)} ${this.shellEscape(target)} 2>/dev/null`,\n );\n if (result.exitCode !== 0) return [];\n return result.stdout.trim().split(\"\\n\").filter(Boolean);\n }\n\n async listDir(path: string): Promise<string[]> {\n const result = await this.execute(`ls -1 ${this.shellEscape(path)}`);\n if (result.exitCode !== 0) return [];\n return result.stdout.trim().split(\"\\n\").filter(Boolean);\n }\n\n protected validateCommand(command: string): void {\n if (SHELL_METACHARACTERS.test(command)) {\n throw new SandboxSecurityError(\n `Command contains shell metacharacters: ${command.slice(0, 80)}`,\n );\n }\n }\n\n protected truncateOutput(output: string): string {\n const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;\n if (Buffer.byteLength(output) > max) {\n return `${output.slice(0, max)}\\n...(truncated)`;\n }\n return output;\n }\n\n private shellEscape(arg: string): string {\n return `'${arg.replace(/'/g, \"'\\\\''\")}'`;\n }\n}\n","/**\n * LocalSandbox — subprocess-based execution with NO isolation.\n *\n * Uses `execFile` with split args (NOT `exec` with string) per EC-1.\n * This is NOT a security boundary — only DockerSandbox provides isolation.\n *\n * @public\n */\n\nimport { execFile } from \"node:child_process\";\nimport { writeFile as fsWriteFile, mkdir } from \"node:fs/promises\";\nimport { dirname } from \"node:path\";\n\nimport { type ExecuteResult, SandboxBackend, type SandboxConfig } from \"./types.js\";\n\nexport class LocalSandbox extends SandboxBackend {\n constructor(config: SandboxConfig = {}) {\n super(config);\n }\n\n async execute(command: string, opts?: { timeoutMs?: number }): Promise<ExecuteResult> {\n const timeout = opts?.timeoutMs ?? this.config.timeoutMs ?? 30_000;\n const max = this.config.maxOutputBytes ?? 5 * 1024 * 1024;\n\n return new Promise<ExecuteResult>((resolve) => {\n const child = execFile(\n \"/bin/sh\",\n [\"-c\", command],\n {\n cwd: this.config.workDir,\n timeout,\n maxBuffer: max,\n encoding: \"utf-8\",\n },\n (error, stdout, stderr) => {\n resolve(this.buildResult(error, stdout ?? \"\", stderr ?? \"\"));\n },\n );\n\n // Safety: if child somehow doesn't callback\n child.on(\"error\", () => {\n resolve({ stdout: \"\", stderr: \"spawn error\", exitCode: 1, timedOut: false });\n });\n });\n }\n\n private buildResult(error: Error | null, stdout: string, stderr: string): ExecuteResult {\n const timedOut = error !== null && \"killed\" in error && (error as { killed: boolean }).killed;\n return {\n stdout: this.truncateOutput(stdout),\n stderr: this.truncateOutput(stderr),\n exitCode: timedOut ? 124 : error ? 1 : 0,\n timedOut,\n };\n }\n\n async uploadFile(path: string, content: string | Buffer): Promise<void> {\n const fullPath = path.startsWith(\"/\") ? path : `${this.config.workDir}/${path}`;\n await mkdir(dirname(fullPath), { recursive: true });\n await fsWriteFile(fullPath, content, \"utf-8\");\n }\n}\n"]}

package/dist/sandbox/local-sandbox.d.cts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * LocalSandbox — subprocess-based execution with NO isolation.
+ *
+ * Uses `execFile` with split args (NOT `exec` with string) per EC-1.
+ * This is NOT a security boundary — only DockerSandbox provides isolation.
+ *
+ * @public
+ */
+import { type ExecuteResult, SandboxBackend, type SandboxConfig } from "./types.js";
+export declare class LocalSandbox extends SandboxBackend {
+    constructor(config?: SandboxConfig);
+    execute(command: string, opts?: {
+        timeoutMs?: number;
+    }): Promise<ExecuteResult>;
+    private buildResult;
+    uploadFile(path: string, content: string | Buffer): Promise<void>;
+}

package/dist/sandbox/local-sandbox.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/**
+ * LocalSandbox — subprocess-based execution with NO isolation.
+ *
+ * Uses `execFile` with split args (NOT `exec` with string) per EC-1.
+ * This is NOT a security boundary — only DockerSandbox provides isolation.
+ *
+ * @public
+ */
+import { type ExecuteResult, SandboxBackend, type SandboxConfig } from "./types.js";
+export declare class LocalSandbox extends SandboxBackend {
+    constructor(config?: SandboxConfig);
+    execute(command: string, opts?: {
+        timeoutMs?: number;
+    }): Promise<ExecuteResult>;
+    private buildResult;
+    uploadFile(path: string, content: string | Buffer): Promise<void>;
+}

package/dist/sandbox/types.d.cts ADDED Viewed

@@ -0,0 +1,44 @@
+/**
+ * Sandbox backend protocol — pluggable execution environment for agent tools.
+ *
+ * Per ADR D1: only 2 abstract methods (`execute` + `uploadFile`). All
+ * higher-level operations are derived on the base class. New backends
+ * (Docker, Firecracker, E2B) only implement those 2 methods.
+ *
+ * @public
+ */
+export interface ExecuteResult {
+    stdout: string;
+    stderr: string;
+    exitCode: number;
+    timedOut: boolean;
+}
+export interface SandboxConfig {
+    workDir?: string;
+    timeoutMs?: number;
+    maxOutputBytes?: number;
+}
+export declare class SandboxSecurityError extends Error {
+    readonly code: "sandbox_security";
+    constructor(message: string);
+}
+export declare class SandboxNotAvailableError extends Error {
+    readonly code: "sandbox_not_available";
+    constructor(message: string);
+}
+export declare abstract class SandboxBackend {
+    protected config: SandboxConfig;
+    constructor(config?: SandboxConfig);
+    abstract execute(command: string, opts?: {
+        timeoutMs?: number;
+    }): Promise<ExecuteResult>;
+    abstract uploadFile(path: string, content: string | Buffer): Promise<void>;
+    readFile(path: string): Promise<string>;
+    writeFile(path: string, content: string): Promise<void>;
+    glob(pattern: string, cwd?: string): Promise<string[]>;
+    grep(pattern: string, path?: string): Promise<string[]>;
+    listDir(path: string): Promise<string[]>;
+    protected validateCommand(command: string): void;
+    protected truncateOutput(output: string): string;
+    private shellEscape;
+}

package/dist/sandbox/types.d.ts ADDED Viewed

@@ -0,0 +1,44 @@
+/**
+ * Sandbox backend protocol — pluggable execution environment for agent tools.
+ *
+ * Per ADR D1: only 2 abstract methods (`execute` + `uploadFile`). All
+ * higher-level operations are derived on the base class. New backends
+ * (Docker, Firecracker, E2B) only implement those 2 methods.
+ *
+ * @public
+ */
+export interface ExecuteResult {
+    stdout: string;
+    stderr: string;
+    exitCode: number;
+    timedOut: boolean;
+}
+export interface SandboxConfig {
+    workDir?: string;
+    timeoutMs?: number;
+    maxOutputBytes?: number;
+}
+export declare class SandboxSecurityError extends Error {
+    readonly code: "sandbox_security";
+    constructor(message: string);
+}
+export declare class SandboxNotAvailableError extends Error {
+    readonly code: "sandbox_not_available";
+    constructor(message: string);
+}
+export declare abstract class SandboxBackend {
+    protected config: SandboxConfig;
+    constructor(config?: SandboxConfig);
+    abstract execute(command: string, opts?: {
+        timeoutMs?: number;
+    }): Promise<ExecuteResult>;
+    abstract uploadFile(path: string, content: string | Buffer): Promise<void>;
+    readFile(path: string): Promise<string>;
+    writeFile(path: string, content: string): Promise<void>;
+    glob(pattern: string, cwd?: string): Promise<string[]>;
+    grep(pattern: string, path?: string): Promise<string[]>;
+    listDir(path: string): Promise<string[]>;
+    protected validateCommand(command: string): void;
+    protected truncateOutput(output: string): string;
+    private shellEscape;
+}

package/dist/server/adapter/express.d.cts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Express server adapter — mounts a TheoKit agent as Express middleware (T12.2).
+ *
+ * Optional peer dep: express@^4||^5
+ *
+ * @public
+ */
+import type { AgentHandlerOptions, AgentLike } from "./types.js";
+export declare function createAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): import("./types.js").AgentHandler;

package/dist/server/adapter/express.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Express server adapter — mounts a TheoKit agent as Express middleware (T12.2).
+ *
+ * Optional peer dep: express@^4||^5
+ *
+ * @public
+ */
+import type { AgentHandlerOptions, AgentLike } from "./types.js";
+export declare function createAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): import("./types.js").AgentHandler;

package/dist/server/adapter/fastify.d.cts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Fastify server adapter — mounts a TheoKit agent as Fastify plugin (T12.2).
+ *
+ * Optional peer dep: fastify@^5
+ *
+ * @public
+ */
+import type { AgentHandlerOptions, AgentLike } from "./types.js";
+export declare function createAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): import("./types.js").AgentHandler;

package/dist/server/adapter/fastify.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Fastify server adapter — mounts a TheoKit agent as Fastify plugin (T12.2).
+ *
+ * Optional peer dep: fastify@^5
+ *
+ * @public
+ */
+import type { AgentHandlerOptions, AgentLike } from "./types.js";
+export declare function createAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): import("./types.js").AgentHandler;

package/dist/server/adapter/hono.d.cts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Hono server adapter — mounts a TheoKit agent as Hono middleware (T12.2).
+ *
+ * Optional peer dep: hono@^4
+ *
+ * @public
+ */
+import type { AgentHandlerOptions, AgentLike } from "./types.js";
+export declare function createAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): import("./types.js").AgentHandler;

package/dist/server/adapter/hono.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Hono server adapter — mounts a TheoKit agent as Hono middleware (T12.2).
+ *
+ * Optional peer dep: hono@^4
+ *
+ * @public
+ */
+import type { AgentHandlerOptions, AgentLike } from "./types.js";
+export declare function createAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): import("./types.js").AgentHandler;

package/dist/server/adapter/index.d.cts ADDED Viewed

@@ -0,0 +1,8 @@
+/**
+ * Server adapter barrel — exports all framework adapters (T12.2).
+ * @public
+ */
+export { createAgentHandler as createExpressAgentHandler } from "./express.js";
+export { createAgentHandler as createFastifyAgentHandler } from "./fastify.js";
+export { createAgentHandler as createHonoAgentHandler } from "./hono.js";
+export type { AgentHandlerOptions, AgentLike } from "./types.js";

package/dist/server/adapter/index.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+/**
+ * Server adapter barrel — exports all framework adapters (T12.2).
+ * @public
+ */
+export { createAgentHandler as createExpressAgentHandler } from "./express.js";
+export { createAgentHandler as createFastifyAgentHandler } from "./fastify.js";
+export { createAgentHandler as createHonoAgentHandler } from "./hono.js";
+export type { AgentHandlerOptions, AgentLike } from "./types.js";

package/dist/server/adapter/shared-handler.d.cts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Shared agent handler factory — common logic used by all framework adapters (T12.2).
+ *
+ * Each adapter re-exports its own `createAgentHandler` for tree-shaking
+ * friendliness, but the actual implementation lives here.
+ *
+ * @internal
+ */
+export declare function createSharedAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): AgentHandler;

package/dist/server/adapter/shared-handler.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Shared agent handler factory — common logic used by all framework adapters (T12.2).
+ *
+ * Each adapter re-exports its own `createAgentHandler` for tree-shaking
+ * friendliness, but the actual implementation lives here.
+ *
+ * @internal
+ */
+export declare function createSharedAgentHandler(agent: AgentLike, opts?: AgentHandlerOptions): AgentHandler;

package/dist/server/adapter/types.d.cts ADDED Viewed

@@ -0,0 +1,33 @@
+/**
+ * AgentMiddleware — shared contract for server adapters (T12.2).
+ * @public
+ */
+export interface AgentHandlerOptions {
+    basePath?: string;
+    onError?: (err: Error) => void;
+}
+export interface AgentLike {
+    send(input: string, opts?: {
+        signal?: AbortSignal;
+    }): {
+        stream(): AsyncIterable<unknown>;
+        wait(): Promise<unknown>;
+    };
+    dispose(): void;
+}
+export interface AgentHandler {
+    routes: ReadonlyArray<{
+        method: string;
+        path: string;
+    }>;
+    handleRequest(req: {
+        method: string;
+        url: string;
+        body?: unknown;
+        signal?: AbortSignal;
+    }): Promise<{
+        status: number;
+        body?: unknown;
+        stream?: AsyncIterable<unknown>;
+    }>;
+}

package/dist/server/adapter/types.d.ts ADDED Viewed

@@ -0,0 +1,33 @@
+/**
+ * AgentMiddleware — shared contract for server adapters (T12.2).
+ * @public
+ */
+export interface AgentHandlerOptions {
+    basePath?: string;
+    onError?: (err: Error) => void;
+}
+export interface AgentLike {
+    send(input: string, opts?: {
+        signal?: AbortSignal;
+    }): {
+        stream(): AsyncIterable<unknown>;
+        wait(): Promise<unknown>;
+    };
+    dispose(): void;
+}
+export interface AgentHandler {
+    routes: ReadonlyArray<{
+        method: string;
+        path: string;
+    }>;
+    handleRequest(req: {
+        method: string;
+        url: string;
+        body?: unknown;
+        signal?: AbortSignal;
+    }): Promise<{
+        status: number;
+        body?: unknown;
+        stream?: AsyncIterable<unknown>;
+    }>;
+}