@trigguard/agent-sdk 0.1.0

package/README.md

@@ -0,0 +1,83 @@
+# @trigguard/agent-sdk
+
+**Canonical TrigGuard agent integration layer.**
+
+Wraps [`@trigguard/execution-sdk`](../trigguard-execution-sdk) — all authority decisions come from production `POST /execute`. No duplicate policy logic. No parallel authority systems.
+
+## Quick start
+
+```typescript
+import { createTrigGuardAgent } from "@trigguard/agent-sdk";
+
+const trigguard = createTrigGuardAgent({
+  gatewayUrl: process.env.TRIGGUARD_GATEWAY_URL ?? "https://api.trigguardai.com",
+  apiKey: process.env.TRIGGUARD_API_KEY,
+  defaultActorId: "my-agent",
+});
+
+const decision = await trigguard.authorize({
+  surface: "deploy.release",
+  context: { repository: "TrigGuard-AI/example", environment: "staging" },
+});
+
+if (decision.permit()) {
+  await runProtectedAction();
+} else if (decision.deny()) {
+  stop("Authority denied");
+} else if (decision.silence()) {
+  await requestHumanReview();
+}
+
+const verified = await decision.verifyOffline();
+console.log(decision.executionId, decision.label(), verified.ok);
+```
+
+## Authority flow
+
+```
+Agent intent
+    ↓
+trigguard.authorize({ surface, context })
+    ↓
+POST /execute  (via @trigguard/execution-sdk)
+    ↓
+PERMIT | DENY | SILENCE + signed receipt
+    ↓
+AgentDecision.permit() | deny() | silence()
+    ↓
+Optional: verifyOffline() or verifyRemote()
+```
+
+## When to use this vs execution-sdk
+
+| Package | Use when |
+|---|---|
+| `@trigguard/agent-sdk` | Building agents (Cursor, Claude Code, MCP hosts, custom bots) |
+| `@trigguard/execution-sdk` | CI pipelines, low-level HTTP control, `withExecute` fail-closed |
+
+Agent SDK adds typed `AgentDecision`, receipt-first decision extraction, and verify helpers.
+
+## Examples
+
+- [`examples/cursor-governed-agent`](../../examples/cursor-governed-agent/) — Cursor-style tool governance (mock actions)
+- [`examples/claude-code-governed-agent`](../../examples/claude-code-governed-agent/) — Claude Code-style repo mutations (mock actions)
+
+## Design partner guide
+
+See [`docs/integrations/FIRST_DESIGN_PARTNER_GUIDE.md`](../../docs/integrations/FIRST_DESIGN_PARTNER_GUIDE.md).
+
+## MCP integration
+
+Production MCP server: [`@trigguard/mcp-server`](../trigguard-mcp-server/) — stdio transport, tools `authorize_action`, `verify_receipt`, `get_surface`, `get_policy`.
+
+- Quickstart: [`docs/adoption/MCP_CURSOR_QUICKSTART.md`](../../docs/adoption/MCP_CURSOR_QUICKSTART.md)
+- Tool reference: [`docs/adoption/MCP_TOOL_REFERENCE.md`](../../docs/adoption/MCP_TOOL_REFERENCE.md)
+- Architecture: [`docs/architecture/TRIGGUARD_MCP_ARCHITECTURE.md`](../../docs/architecture/TRIGGUARD_MCP_ARCHITECTURE.md)
+
+MCP calls this SDK internally — do not duplicate authority logic in MCP handlers.
+
+## Non-goals
+
+- No client-side policy evaluation
+- No `/decide` rail (receipt-less)
+- No console UI changes

package/dist/client.d.ts

@@ -0,0 +1,17 @@
+import { AgentDecision } from "./decision.js";
+import type { AgentAuthorizeParams, TrigGuardAgentOptions } from "./types.js";
+export type TrigGuardAgent = {
+    readonly authorize: (params: AgentAuthorizeParams) => Promise<AgentDecision>;
+    readonly verifyExecution: (executionId: string) => Promise<{
+        valid: boolean;
+        receipt?: unknown;
+    }>;
+};
+/**
+ * Create the canonical TrigGuard agent client.
+ * Wraps @trigguard/execution-sdk — all authority from production execute rail.
+ */
+export declare function createTrigGuardAgent(options: TrigGuardAgentOptions): TrigGuardAgent;
+/** Ergonomic one-shot authorize (same as createTrigGuardAgent(...).authorize). */
+export declare function authorizeAgent(options: TrigGuardAgentOptions, params: AgentAuthorizeParams): Promise<AgentDecision>;
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,aAAa,EAAuB,MAAM,eAAe,CAAC;AAEnE,OAAO,KAAK,EAAE,oBAAoB,EAAE,qBAAqB,EAAE,MAAM,YAAY,CAAC;AAQ9E,MAAM,MAAM,cAAc,GAAG;IAC3B,QAAQ,CAAC,SAAS,EAAE,CAAC,MAAM,EAAE,oBAAoB,KAAK,OAAO,CAAC,aAAa,CAAC,CAAC;IAC7E,QAAQ,CAAC,eAAe,EAAE,CAAC,WAAW,EAAE,MAAM,KAAK,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC,CAAC;CACnG,CAAC;AAEF;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,qBAAqB,GAAG,cAAc,CAqEnF;AAED,kFAAkF;AAClF,wBAAsB,cAAc,CAClC,OAAO,EAAE,qBAAqB,EAC9B,MAAM,EAAE,oBAAoB,GAC3B,OAAO,CAAC,aAAa,CAAC,CAExB"}

package/dist/client.js

@@ -0,0 +1,60 @@
+import { createExecutionClient } from "@trigguard/execution-sdk";
+import { AgentDecision, TrigGuardAgentError } from "./decision.js";
+import { extractAgentReceipt, extractAuthorityDecision } from "./extractDecision.js";
+function joinUrl(base, path) {
+    const b = base.replace(/\/$/, "");
+    const p = path.startsWith("/") ? path : `/${path}`;
+    return `${b}${p}`;
+}
+/**
+ * Create the canonical TrigGuard agent client.
+ * Wraps @trigguard/execution-sdk — all authority from production execute rail.
+ */
+export function createTrigGuardAgent(options) {
+    const defaultActorId = options.defaultActorId ?? "trigguard-agent";
+    async function authorize(params) {
+        const client = createExecutionClient({
+            gatewayUrl: options.gatewayUrl,
+            apiKey: options.apiKey,
+            getBearerToken: options.getBearerToken,
+            fetchImpl: options.fetchImpl,
+            timeoutMs: options.timeoutMs,
+        });
+        const result = await client.authorize({
+            surface: params.surface,
+            actorId: params.actorId ?? defaultActorId,
+            subjectDigest: params.subjectDigest,
+            context: params.context,
+            sessionId: params.sessionId,
+        });
+        if (!result.ok) {
+            throw new TrigGuardAgentError(`TrigGuard execute failed: HTTP ${result.status}`);
+        }
+        const value = extractAuthorityDecision(result);
+        if (!value) {
+            throw new TrigGuardAgentError("TrigGuard returned no authoritative PERMIT/DENY/SILENCE decision");
+        }
+        const receipt = extractAgentReceipt(result.receipt);
+        const executionId = receipt?.executionId ??
+            result.executionId ??
+            undefined;
+        return new AgentDecision(value, executionId, receipt, result, options.gatewayUrl, options.getBearerToken, options.apiKey, options.fetchImpl);
+    }
+    async function verifyExecution(executionId) {
+        const base = options.gatewayUrl.replace(/\/$/, "");
+        const url = joinUrl(base, `/verify/${encodeURIComponent(executionId)}`);
+        const headers = { Accept: "application/json" };
+        const token = options.apiKey ?? (await options.getBearerToken?.());
+        if (token)
+            headers.Authorization = `Bearer ${token}`;
+        const fetchFn = options.fetchImpl ?? globalThis.fetch;
+        const res = await fetchFn(url, { headers });
+        const body = (await res.json().catch(() => ({})));
+        return { valid: Boolean(body.valid), receipt: body.receipt };
+    }
+    return { authorize, verifyExecution };
+}
+/** Ergonomic one-shot authorize (same as createTrigGuardAgent(...).authorize). */
+export async function authorizeAgent(options, params) {
+    return createTrigGuardAgent(options).authorize(params);
+}

package/dist/decision.d.ts

@@ -0,0 +1,34 @@
+import { type VerifyReceiptDetailedResult } from "@trigguard/execution-sdk";
+import type { AgentReceipt, AgentAuthorizeRaw, AuthorityDecisionValue } from "./types.js";
+export declare class TrigGuardAgentError extends Error {
+    constructor(message: string);
+}
+/**
+ * Typed authority outcome from a governed execute.
+ * All decisions originate from TrigGuard — no client-side policy evaluation.
+ */
+export declare class AgentDecision {
+    private readonly gatewayUrl;
+    private readonly getBearerToken?;
+    private readonly apiKey?;
+    private readonly fetchImpl?;
+    readonly value: AuthorityDecisionValue;
+    readonly executionId: string | undefined;
+    readonly receipt: AgentReceipt | undefined;
+    readonly raw: AgentAuthorizeRaw;
+    constructor(value: AuthorityDecisionValue, executionId: string | undefined, receipt: AgentReceipt | undefined, raw: AgentAuthorizeRaw, gatewayUrl: string, getBearerToken?: (() => Promise<string | undefined>) | undefined, apiKey?: string | undefined, fetchImpl?: typeof fetch | undefined);
+    permit(): boolean;
+    deny(): boolean;
+    silence(): boolean;
+    /** Human-readable decision for logs and agent UX. */
+    label(): AuthorityDecisionValue;
+    verifyUrl(): string | undefined;
+    /** Offline Ed25519 verify using gateway JWKS (same trust model as CI). */
+    verifyOffline(): Promise<VerifyReceiptDetailedResult>;
+    /** Gateway GET /verify/:executionId lookup. */
+    verifyRemote(): Promise<{
+        valid: boolean;
+        receipt?: unknown;
+    }>;
+}
+//# sourceMappingURL=decision.d.ts.map

package/dist/decision.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"decision.d.ts","sourceRoot":"","sources":["../src/decision.ts"],"names":[],"mappings":"AAAA,OAAO,EAGL,KAAK,2BAA2B,EACjC,MAAM,0BAA0B,CAAC;AAClC,OAAO,KAAK,EAAE,YAAY,EAAE,iBAAiB,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAE1F,qBAAa,mBAAoB,SAAQ,KAAK;gBAChC,OAAO,EAAE,MAAM;CAI5B;AAED;;;GAGG;AACH,qBAAa,aAAa;IAWtB,OAAO,CAAC,QAAQ,CAAC,UAAU;IAC3B,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC;IAChC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IACxB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC;IAb7B,QAAQ,CAAC,KAAK,EAAE,sBAAsB,CAAC;IACvC,QAAQ,CAAC,WAAW,EAAE,MAAM,GAAG,SAAS,CAAC;IACzC,QAAQ,CAAC,OAAO,EAAE,YAAY,GAAG,SAAS,CAAC;IAC3C,QAAQ,CAAC,GAAG,EAAE,iBAAiB,CAAC;gBAG9B,KAAK,EAAE,sBAAsB,EAC7B,WAAW,EAAE,MAAM,GAAG,SAAS,EAC/B,OAAO,EAAE,YAAY,GAAG,SAAS,EACjC,GAAG,EAAE,iBAAiB,EACL,UAAU,EAAE,MAAM,EAClB,cAAc,CAAC,GAAE,MAAM,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,aAAA,EAClD,MAAM,CAAC,EAAE,MAAM,YAAA,EACf,SAAS,CAAC,EAAE,OAAO,KAAK,YAAA;IAQ3C,MAAM,IAAI,OAAO;IAIjB,IAAI,IAAI,OAAO;IAIf,OAAO,IAAI,OAAO;IAIlB,qDAAqD;IACrD,KAAK,IAAI,sBAAsB;IAI/B,SAAS,IAAI,MAAM,GAAG,SAAS;IAM/B,0EAA0E;IACpE,aAAa,IAAI,OAAO,CAAC,2BAA2B,CAAC;IAY3D,+CAA+C;IACzC,YAAY,IAAI,OAAO,CAAC;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,OAAO,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;CAiBrE"}

package/dist/decision.js

@@ -0,0 +1,74 @@
+import { fetchPublicKeys, verifyReceiptSignatureDetailed, } from "@trigguard/execution-sdk";
+export class TrigGuardAgentError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = "TrigGuardAgentError";
+    }
+}
+/**
+ * Typed authority outcome from a governed execute.
+ * All decisions originate from TrigGuard — no client-side policy evaluation.
+ */
+export class AgentDecision {
+    gatewayUrl;
+    getBearerToken;
+    apiKey;
+    fetchImpl;
+    value;
+    executionId;
+    receipt;
+    raw;
+    constructor(value, executionId, receipt, raw, gatewayUrl, getBearerToken, apiKey, fetchImpl) {
+        this.gatewayUrl = gatewayUrl;
+        this.getBearerToken = getBearerToken;
+        this.apiKey = apiKey;
+        this.fetchImpl = fetchImpl;
+        this.value = value;
+        this.executionId = executionId;
+        this.receipt = receipt;
+        this.raw = raw;
+    }
+    permit() {
+        return this.value === "PERMIT";
+    }
+    deny() {
+        return this.value === "DENY";
+    }
+    silence() {
+        return this.value === "SILENCE";
+    }
+    /** Human-readable decision for logs and agent UX. */
+    label() {
+        return this.value;
+    }
+    verifyUrl() {
+        if (!this.executionId)
+            return undefined;
+        const base = this.gatewayUrl.replace(/\/$/, "");
+        return `${base}/verify/${encodeURIComponent(this.executionId)}`;
+    }
+    /** Offline Ed25519 verify using gateway JWKS (same trust model as CI). */
+    async verifyOffline() {
+        if (!this.receipt?.receiptHash || !this.receipt.authoritySignature) {
+            return { ok: false, reason: "unsigned" };
+        }
+        const keys = await fetchPublicKeys(this.gatewayUrl, this.apiKey ? async () => this.apiKey : this.getBearerToken, this.fetchImpl);
+        return verifyReceiptSignatureDetailed(this.receipt, keys);
+    }
+    /** Gateway GET /verify/:executionId lookup. */
+    async verifyRemote() {
+        if (!this.executionId) {
+            throw new TrigGuardAgentError("No executionId — cannot verify remotely");
+        }
+        const base = this.gatewayUrl.replace(/\/$/, "");
+        const url = `${base}/verify/${encodeURIComponent(this.executionId)}`;
+        const headers = { Accept: "application/json" };
+        const token = this.apiKey ?? (await this.getBearerToken?.());
+        if (token)
+            headers.Authorization = `Bearer ${token}`;
+        const fetchFn = this.fetchImpl ?? globalThis.fetch;
+        const res = await fetchFn(url, { headers });
+        const body = (await res.json().catch(() => ({})));
+        return { valid: Boolean(body.valid), receipt: body.receipt };
+    }
+}

package/dist/extractDecision.d.ts

@@ -0,0 +1,8 @@
+import type { AuthorizeResult } from "@trigguard/execution-sdk";
+import type { AgentReceipt, AuthorityDecisionValue } from "./types.js";
+/**
+ * Trust receipt.decision over top-level JSON (matches CI authority gate).
+ */
+export declare function extractAuthorityDecision(result: AuthorizeResult): AuthorityDecisionValue | null;
+export declare function extractAgentReceipt(receipt: unknown): AgentReceipt | undefined;
+//# sourceMappingURL=extractDecision.d.ts.map

package/dist/extractDecision.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"extractDecision.d.ts","sourceRoot":"","sources":["../src/extractDecision.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAC;AAChE,OAAO,KAAK,EAAE,YAAY,EAAE,sBAAsB,EAAE,MAAM,YAAY,CAAC;AAQvE;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,MAAM,EAAE,eAAe,GAAG,sBAAsB,GAAG,IAAI,CAQ/F;AAED,wBAAgB,mBAAmB,CAAC,OAAO,EAAE,OAAO,GAAG,YAAY,GAAG,SAAS,CAsC9E"}

package/dist/extractDecision.js

@@ -0,0 +1,52 @@
+function receiptDecision(receipt) {
+    if (!receipt || typeof receipt !== "object")
+        return undefined;
+    const r = receipt;
+    return typeof r.decision === "string" ? r.decision : undefined;
+}
+/**
+ * Trust receipt.decision over top-level JSON (matches CI authority gate).
+ */
+export function extractAuthorityDecision(result) {
+    const fromReceipt = receiptDecision(result.receipt);
+    const raw = (fromReceipt ?? result.decision ?? "").trim().toUpperCase();
+    if (raw === "PERMIT" || raw === "DENY" || raw === "SILENCE") {
+        return raw;
+    }
+    return null;
+}
+export function extractAgentReceipt(receipt) {
+    if (!receipt || typeof receipt !== "object")
+        return undefined;
+    const r = receipt;
+    return {
+        executionId: typeof r.executionId === "string"
+            ? r.executionId
+            : typeof r.execution_id === "string"
+                ? r.execution_id
+                : undefined,
+        decision: typeof r.decision === "string" ? r.decision : undefined,
+        surface: typeof r.surface === "string" ? r.surface : undefined,
+        receiptHash: typeof r.receiptHash === "string"
+            ? r.receiptHash
+            : typeof r.receipt_hash === "string"
+                ? r.receipt_hash
+                : undefined,
+        authoritySignature: typeof r.authoritySignature === "string"
+            ? r.authoritySignature
+            : typeof r.authority_signature === "string"
+                ? r.authority_signature
+                : undefined,
+        authorityKeyId: typeof r.authorityKeyId === "string"
+            ? r.authorityKeyId
+            : typeof r.authority_key_id === "string"
+                ? r.authority_key_id
+                : undefined,
+        policyId: typeof r.policyId === "string"
+            ? r.policyId
+            : typeof r.policy_id === "string"
+                ? r.policy_id
+                : undefined,
+        timestamp: typeof r.timestamp === "string" ? r.timestamp : undefined,
+    };
+}

package/dist/index.d.ts

@@ -0,0 +1,6 @@
+export { createTrigGuardAgent, authorizeAgent, type TrigGuardAgent, } from "./client.js";
+export { AgentDecision, TrigGuardAgentError } from "./decision.js";
+export { extractAuthorityDecision, extractAgentReceipt } from "./extractDecision.js";
+export type { AgentAuthorizeParams, AgentAuthorizeRaw, AgentReceipt, AuthorityDecisionValue, TrigGuardAgentOptions, } from "./types.js";
+export { ExecutionNotPermittedError, withExecute, attemptExecute, fetchPublicKeys, verifyReceiptSignature, verifyReceiptSignatureDetailed, TrigGuardSdkError, } from "@trigguard/execution-sdk";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,oBAAoB,EACpB,cAAc,EACd,KAAK,cAAc,GACpB,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,eAAe,CAAC;AACnE,OAAO,EAAE,wBAAwB,EAAE,mBAAmB,EAAE,MAAM,sBAAsB,CAAC;AACrF,YAAY,EACV,oBAAoB,EACpB,iBAAiB,EACjB,YAAY,EACZ,sBAAsB,EACtB,qBAAqB,GACtB,MAAM,YAAY,CAAC;AAGpB,OAAO,EACL,0BAA0B,EAC1B,WAAW,EACX,cAAc,EACd,eAAe,EACf,sBAAsB,EACtB,8BAA8B,EAC9B,iBAAiB,GAClB,MAAM,0BAA0B,CAAC"}

package/dist/index.js

@@ -0,0 +1,5 @@
+export { createTrigGuardAgent, authorizeAgent, } from "./client.js";
+export { AgentDecision, TrigGuardAgentError } from "./decision.js";
+export { extractAuthorityDecision, extractAgentReceipt } from "./extractDecision.js";
+// Re-export execution-sdk helpers agents commonly need (no duplicate implementations).
+export { ExecutionNotPermittedError, withExecute, attemptExecute, fetchPublicKeys, verifyReceiptSignature, verifyReceiptSignatureDetailed, TrigGuardSdkError, } from "@trigguard/execution-sdk";

package/dist/types.d.ts

@@ -0,0 +1,32 @@
+import type { AuthorizeResult, ExecutionContext } from "@trigguard/execution-sdk";
+/** Authoritative gateway decision values (production-proven). */
+export type AuthorityDecisionValue = "PERMIT" | "DENY" | "SILENCE";
+/** Minimal receipt fields agents need for verify and audit. */
+export type AgentReceipt = {
+    readonly executionId?: string;
+    readonly decision?: string;
+    readonly surface?: string;
+    readonly receiptHash?: string;
+    readonly authoritySignature?: string;
+    readonly authorityKeyId?: string;
+    readonly policyId?: string;
+    readonly timestamp?: string;
+};
+export type AgentAuthorizeParams = {
+    readonly surface: string;
+    readonly actorId?: string;
+    readonly subjectDigest?: string;
+    readonly context?: ExecutionContext;
+    readonly sessionId?: string;
+};
+export type TrigGuardAgentOptions = {
+    readonly gatewayUrl: string;
+    readonly apiKey?: string;
+    readonly getBearerToken?: () => Promise<string | undefined>;
+    readonly fetchImpl?: typeof fetch;
+    readonly timeoutMs?: number;
+    /** Default actor id when authorize() omits actorId. */
+    readonly defaultActorId?: string;
+};
+export type AgentAuthorizeRaw = AuthorizeResult;
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,gBAAgB,EAAE,MAAM,0BAA0B,CAAC;AAElF,iEAAiE;AACjE,MAAM,MAAM,sBAAsB,GAAG,QAAQ,GAAG,MAAM,GAAG,SAAS,CAAC;AAEnE,+DAA+D;AAC/D,MAAM,MAAM,YAAY,GAAG;IACzB,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC;IAC9B,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC;IAC9B,QAAQ,CAAC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IACrC,QAAQ,CAAC,cAAc,CAAC,EAAE,MAAM,CAAC;IACjC,QAAQ,CAAC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;CAC7B,CAAC;AAEF,MAAM,MAAM,oBAAoB,GAAG;IACjC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,aAAa,CAAC,EAAE,MAAM,CAAC;IAChC,QAAQ,CAAC,OAAO,CAAC,EAAE,gBAAgB,CAAC;IACpC,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;CAC7B,CAAC;AAEF,MAAM,MAAM,qBAAqB,GAAG;IAClC,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,cAAc,CAAC,EAAE,MAAM,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAAC;IAC5D,QAAQ,CAAC,SAAS,CAAC,EAAE,OAAO,KAAK,CAAC;IAClC,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;IAC5B,uDAAuD;IACvD,QAAQ,CAAC,cAAc,CAAC,EAAE,MAAM,CAAC;CAClC,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG,eAAe,CAAC"}

package/dist/types.js

@@ -0,0 +1 @@
+export {};

package/package.json

@@ -0,0 +1,58 @@
+{
+  "name": "@trigguard/agent-sdk",
+  "version": "0.1.0",
+  "description": "Canonical TrigGuard agent integration SDK — authorize, decide PERMIT/DENY/SILENCE, verify receipts. Wraps @trigguard/execution-sdk; no duplicate policy logic.",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.js",
+      "default": "./dist/index.js"
+    }
+  },
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "pretest": "npm run build",
+    "test": "node --test test/*.test.mjs",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "trigguard",
+    "agent",
+    "authorization",
+    "governance",
+    "mcp",
+    "cursor",
+    "claude"
+  ],
+  "license": "Apache-2.0",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/TrigGuard-AI/TrigGuard.git",
+    "directory": "packages/trigguard-agent-sdk"
+  },
+  "homepage": "https://github.com/TrigGuard-AI/TrigGuard/tree/main/packages/trigguard-agent-sdk#readme",
+  "bugs": {
+    "url": "https://github.com/TrigGuard-AI/TrigGuard/issues"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "dependencies": {
+    "@trigguard/execution-sdk": "^0.1.1"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "typescript": "^5.6.0"
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "publishConfig": {
+    "access": "public"
+  }
+}