@tuent/sentinel 0.1.1 → 0.1.2

package/dist/cli.js

@@ -1,5 +1,5 @@
 #!/usr/bin/env node
-import{runInitClaudeCode as de}from"./chunk-WPTJBRX5.js";import{AgentProfileManager as H,AlertManager as ge,AuditTrail as A,BaselineBuilder as N,CorrelationDetector as ue,DeviationDetector as B,FileStorageBackend as fe,ProfileStore as pe,ReportGenerator as me,Sentinel as T,SentinelRunner as he,generateFleetReport as ye}from"./chunk-NS6ZLMDK.js";import{readReleaseToken as we}from"./chunk-LATQNIRW.js";import{deriveAgentId as $e}from"./chunk-B5QKJHSV.js";import"./chunk-FMZWHT4M.js";import"./chunk-QHE56MEO.js";import{loadPolicy as ve}from"./chunk-2FFMYSVC.js";import{getOrCreateKeyPair as E}from"./chunk-NUXSUSYY.js";import{join as u}from"path";import{homedir as m}from"os";import{readFile as M,writeFile as R,access as K,mkdir as W}from"fs/promises";function Ae(e){const o=new Date(e);if(isNaN(o.getTime()))return"unknown";const t=Date.now()-o.getTime();if(t<0)return"just now";const a=Math.floor(t/6e4);if(a<1)return"just now";if(a<60)return`${a} minute${a===1?"":"s"} ago`;const r=Math.floor(a/60);if(r<24)return`${r} hour${r===1?"":"s"} ago`;const i=Math.floor(r/24);if(i<14)return`${i} day${i===1?"":"s"} ago`;const d=Math.floor(i/7);if(i<60)return`${d} week${d===1?"":"s"} ago`;if(i>=365)return"over a year ago";const c=Math.floor(i/30);return`${c} month${c===1?"":"s"} ago`}function Ie(e,o){const n=new Date(o),t=isNaN(n.getTime())?1/0:Math.floor((Date.now()-n.getTime())/864e5);return e<.3||t>30?"declining":e>.7&&t<7?"rising":"stable"}function Se(e){return e<.3?"inner":e<.65?"middle":"outer"}function G(e){if(e.length===0)return"No petals selected.";const o=new Map;for(const t of e)o.set(t.id,t.label);const n=[`Selected petals (${e.length}):
+import{runInitClaudeCode as de}from"./chunk-FWIISAZZ.js";import{AgentProfileManager as H,AlertManager as ge,AuditTrail as A,BaselineBuilder as N,CorrelationDetector as ue,DeviationDetector as B,FileStorageBackend as fe,ProfileStore as pe,ReportGenerator as me,Sentinel as T,SentinelRunner as he,generateFleetReport as ye}from"./chunk-GRN5P3H2.js";import{readReleaseToken as we}from"./chunk-LATQNIRW.js";import{deriveAgentId as $e}from"./chunk-B5QKJHSV.js";import"./chunk-FMZWHT4M.js";import"./chunk-QIYQWOLO.js";import{loadPolicy as ve}from"./chunk-WLIDSTS4.js";import{getOrCreateKeyPair as E}from"./chunk-NUXSUSYY.js";import{join as u}from"path";import{homedir as m}from"os";import{readFile as M,writeFile as R,access as K,mkdir as W}from"fs/promises";function Ae(e){const o=new Date(e);if(isNaN(o.getTime()))return"unknown";const t=Date.now()-o.getTime();if(t<0)return"just now";const a=Math.floor(t/6e4);if(a<1)return"just now";if(a<60)return`${a} minute${a===1?"":"s"} ago`;const r=Math.floor(a/60);if(r<24)return`${r} hour${r===1?"":"s"} ago`;const i=Math.floor(r/24);if(i<14)return`${i} day${i===1?"":"s"} ago`;const d=Math.floor(i/7);if(i<60)return`${d} week${d===1?"":"s"} ago`;if(i>=365)return"over a year ago";const c=Math.floor(i/30);return`${c} month${c===1?"":"s"} ago`}function Ie(e,o){const n=new Date(o),t=isNaN(n.getTime())?1/0:Math.floor((Date.now()-n.getTime())/864e5);return e<.3||t>30?"declining":e>.7&&t<7?"rising":"stable"}function Se(e){return e<.3?"inner":e<.65?"middle":"outer"}function G(e){if(e.length===0)return"No petals selected.";const o=new Map;for(const t of e)o.set(t.id,t.label);const n=[`Selected petals (${e.length}):
 `];for(const t of e){const a=Se(t.layer),r=t.isRichData?"":" [filler]";n.push(`- ${t.label}${r}`),n.push(`  Category: ${t.category}`),n.push(`  Layer zone: ${a} (${(t.layer*100).toFixed(0)}%)`),n.push(`  Openness: ${(t.openness*100).toFixed(0)}%`),n.push(`  Description: ${t.description}`),n.push(`  Last active: ${t.lastActive}`);const i=Ae(t.lastActive),d=t.weight!=null?Ie(t.weight,t.lastActive):"stable";if(n.push(`  Temporal: Last active ${i} | Weight trend: ${d}`),t.source){const c={seed:"seed data",agent:"observed from activity",manual:"filesystem scan",diary:"personal diary entry",conversation:"created from conversation","agent-monitor":"monitored agent activity"};n.push(`  Source: ${c[t.source]??t.source}`)}if(t.weight!=null&&n.push(`  Weight: ${t.weight.toFixed(2)}`),t.connections.length>0){const c=t.connections.map(s=>o.get(s)??De(s));n.push(`  Connections: ${c.join(", ")}`)}if(t.files&&t.files.length>0){const c=t.files.slice(0,10).map(s=>s.split("/").pop()??s);n.push(`  Key files: ${c.join(", ")}`)}if(t.fileContents&&t.fileContents.length>0){n.push("  File contents:");for(const c of t.fileContents)n.push(`  --- ${c.name} ---`),n.push(c.content.split(`
 `).map(s=>`  ${s}`).join(`
 `))}n.push("")}return n.join(`

package/dist/gateway/index.d.ts

@@ -1,4 +1,4 @@
-import { v as Sentinel, e as AgentRole, S as SecurityFinding } from '../Sentinel-B_sv8Kiy.js';
+import { v as Sentinel, e as AgentRole, S as SecurityFinding } from '../Sentinel-xFCyXH45.js';
 import 'node:crypto';
 
 /**
@@ -55,6 +55,26 @@ interface SentinelGatewayOptions {
      * is disabled (503) — there is no unauthenticated release path.
      */
     releaseToken?: string;
+    /**
+     * Sprint 26 Gate-A Item D (F-8) — disposition for tool names outside the
+     * recognized native set (MCP-shaped names never reach this; they have their
+     * own translation path). "warn" (default) allows the call and persists an
+     * observational unknown_tool finding to the audit trail — no unknown tool
+     * passes unlogged; "deny" is the hardened opt-in that blocks the call with
+     * a non-escalation-eligible unknown_tool finding. warn ships as the default
+     * because the recognized set is inventoried, not provably complete — the
+     * default flips to deny after warn-mode dogfooding reconciles the inventory
+     * against live traffic. Operator-only: sourced from the launch --policy
+     * yaml; workspace yamls contribute roles via the ceiling merge, never
+     * gateway config.
+     */
+    unknownTools?: "deny" | "warn";
+    /**
+     * Item D escape hatch: native-shaped names to treat as known
+     * tool_invocation (e.g. a cc tool newer than this Sentinel build).
+     * Operator-only, same channel as unknownTools.
+     */
+    allowUnknownTools?: string[];
 }
 declare class SentinelGateway {
     private readonly configuredPort;
@@ -68,6 +88,8 @@ declare class SentinelGateway {
     private readonly operatorCeiling;
     private readonly home;
     private readonly releaseToken;
+    /** Item D (F-8): disposition for unknown (non-MCP, unrecognized) tool names. */
+    private readonly unknownTools;
     private server;
     private running;
     private signalHandlersInstalled;

package/dist/gateway/index.js

@@ -1,10 +1,10 @@
 import {
   SentinelGateway
-} from "../chunk-IYC5E7RL.js";
+} from "../chunk-L4R3LPJS.js";
 import "../chunk-B5QKJHSV.js";
 import "../chunk-FMZWHT4M.js";
-import "../chunk-QHE56MEO.js";
-import "../chunk-2FFMYSVC.js";
+import "../chunk-QIYQWOLO.js";
+import "../chunk-WLIDSTS4.js";
 export {
   SentinelGateway
 };

package/dist/gatewayDaemon.js

@@ -1,11 +1,11 @@
 #!/usr/bin/env node
 import {
   runGatewayDaemon
-} from "./chunk-IYC5E7RL.js";
+} from "./chunk-L4R3LPJS.js";
 import "./chunk-B5QKJHSV.js";
 import "./chunk-FMZWHT4M.js";
-import "./chunk-QHE56MEO.js";
-import "./chunk-2FFMYSVC.js";
+import "./chunk-QIYQWOLO.js";
+import "./chunk-WLIDSTS4.js";
 
 // src/gatewayDaemon.ts
 var args = process.argv.slice(2);

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-import { A as AgentActivityEvent, S as SecurityFinding } from './Sentinel-B_sv8Kiy.js';
-export { a as AcceptableAction, b as AdapterConfig, c as AgentBaseline, d as AgentMode, e as AgentRole, f as AlertChannel, g as AlertConfig, h as AllowResponse, i as AuditEntry, j as AuditQueryOptions, B as BlockResponse, C as CorrelationFinding, E as ExceptionApprovalContext, k as ExceptionApprovalFn, G as GuideResponse, H as HookCheckpoint, l as HookContext, m as HookHandler, n as HookRegistration, o as HookResponse, I as IntentAlignmentConfig, p as IntentAlignmentResult, M as ModifiableEventFields, q as MonitorOptions, O as OverlayDecisionType, R as RepoSensitivityMap, r as ReportOptions, s as RoleException, t as SecuritySeverity, u as SensitivityOverlay, v as Sentinel, w as SentinelConfig, T as TaskIntent } from './Sentinel-B_sv8Kiy.js';
+import { A as AgentActivityEvent, S as SecurityFinding } from './Sentinel-xFCyXH45.js';
+export { a as AcceptableAction, b as AdapterConfig, c as AgentBaseline, d as AgentMode, e as AgentRole, f as AlertChannel, g as AlertConfig, h as AllowResponse, i as AuditEntry, j as AuditQueryOptions, B as BlockResponse, C as CorrelationFinding, E as ExceptionApprovalContext, k as ExceptionApprovalFn, G as GuideResponse, H as HookCheckpoint, l as HookContext, m as HookHandler, n as HookRegistration, o as HookResponse, I as IntentAlignmentConfig, p as IntentAlignmentResult, M as ModifiableEventFields, q as MonitorOptions, O as OverlayDecisionType, R as RepoSensitivityMap, r as ReportOptions, s as RoleException, t as SecuritySeverity, u as SensitivityOverlay, v as Sentinel, w as SentinelConfig, T as TaskIntent } from './Sentinel-xFCyXH45.js';
 import 'node:crypto';
 
 interface SentinelPolicy {
@@ -57,6 +57,15 @@ interface SentinelPolicy {
             minDaysObserved?: number;
             minCategoryDiversity?: number;
         };
+        /**
+         * Item D (F-8): disposition for tool names outside the recognized native
+         * set. Default "warn" (allow + persisted observational finding); "deny"
+         * is the hardened opt-in. Operator launch policy only — the gateway reads
+         * it once at start.
+         */
+        unknownTools?: "deny" | "warn";
+        /** Item D escape hatch: native-shaped names to treat as known. */
+        allowUnknownTools?: string[];
     };
     alerts?: {
         channels: (string | {

package/dist/index.js

@@ -1,20 +1,20 @@
 import {
   runInitClaudeCode,
   runSessionStart
-} from "./chunk-WPTJBRX5.js";
+} from "./chunk-FWIISAZZ.js";
 import {
   Sentinel,
   createCliApproval
-} from "./chunk-NS6ZLMDK.js";
+} from "./chunk-GRN5P3H2.js";
 import "./chunk-LATQNIRW.js";
 import {
   discoverPolicy
 } from "./chunk-FMZWHT4M.js";
-import "./chunk-QHE56MEO.js";
+import "./chunk-QIYQWOLO.js";
 import {
   loadPolicy,
   loadPolicyFromString
-} from "./chunk-2FFMYSVC.js";
+} from "./chunk-WLIDSTS4.js";
 import "./chunk-NUXSUSYY.js";
 export {
   Sentinel,

package/dist/{policyLoader-6KR5VFVV.js → policyLoader-KZL2U4M2.js}

@@ -4,7 +4,7 @@ import {
   loadPolicyFromString,
   policyToConfig,
   policyToRole
-} from "./chunk-2FFMYSVC.js";
+} from "./chunk-WLIDSTS4.js";
 export {
   LOCKED_ACTIONABLE_TYPES,
   loadPolicy,
@@ -12,4 +12,4 @@ export {
   policyToConfig,
   policyToRole
 };
-//# sourceMappingURL=policyLoader-6KR5VFVV.js.map
+//# sourceMappingURL=policyLoader-KZL2U4M2.js.map

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tuent/sentinel",
-  "version": "0.1.1",
+  "version": "0.1.2",
   "description": "AI agent behavioral security monitoring SDK",
   "author": "Tuent LLC",
   "keywords": [

package/dist/Sentinel-QHMQ67W3.js

@@ -1,10 +0,0 @@
-import {
-  Sentinel
-} from "./chunk-NS6ZLMDK.js";
-import "./chunk-QHE56MEO.js";
-import "./chunk-2FFMYSVC.js";
-import "./chunk-NUXSUSYY.js";
-export {
-  Sentinel
-};
-//# sourceMappingURL=Sentinel-QHMQ67W3.js.map