npm - @vauban-org/agent-sdk - Versions diffs - 1.0.0 → 1.2.0 - Mend

@vauban-org/agent-sdk 1.0.0 → 1.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (442) hide show

package/CONTRACT.md +6401 -813
package/dist/adapters/llm/anthropic-direct.d.ts +1 -0
package/dist/adapters/llm/anthropic-direct.d.ts.map +1 -1
package/dist/adapters/llm/anthropic-direct.js +43 -0
package/dist/adapters/llm/anthropic-direct.js.map +1 -1
package/dist/adapters/llm/cascade.d.ts.map +1 -1
package/dist/adapters/llm/cascade.js +57 -14
package/dist/adapters/llm/cascade.js.map +1 -1
package/dist/adapters/llm/litellm.d.ts +2 -0
package/dist/adapters/llm/litellm.d.ts.map +1 -1
package/dist/adapters/llm/litellm.js +44 -0
package/dist/adapters/llm/litellm.js.map +1 -1
package/dist/compute/difficulty-estimator.d.ts +53 -0
package/dist/compute/difficulty-estimator.d.ts.map +1 -0
package/dist/compute/difficulty-estimator.js +82 -0
package/dist/compute/difficulty-estimator.js.map +1 -0
package/dist/compute/strategies/mixture-of-agents.d.ts +40 -0
package/dist/compute/strategies/mixture-of-agents.d.ts.map +1 -0
package/dist/compute/strategies/mixture-of-agents.js +110 -0
package/dist/compute/strategies/mixture-of-agents.js.map +1 -0
package/dist/compute/strategies/tree-of-thoughts.d.ts +48 -0
package/dist/compute/strategies/tree-of-thoughts.d.ts.map +1 -0
package/dist/compute/strategies/tree-of-thoughts.js +242 -0
package/dist/compute/strategies/tree-of-thoughts.js.map +1 -0
package/dist/compute/strategies/two-phase-orient.d.ts +72 -0
package/dist/compute/strategies/two-phase-orient.d.ts.map +1 -0
package/dist/compute/strategies/two-phase-orient.js +85 -0
package/dist/compute/strategies/two-phase-orient.js.map +1 -0
package/dist/constitution/types.d.ts +10 -10
package/dist/container/protocol.d.ts +134 -0
package/dist/container/protocol.d.ts.map +1 -0
package/dist/container/protocol.js +157 -0
package/dist/container/protocol.js.map +1 -0
package/dist/container/runtime.d.ts +140 -0
package/dist/container/runtime.d.ts.map +1 -0
package/dist/container/runtime.js +256 -0
package/dist/container/runtime.js.map +1 -0
package/dist/events/catalogue.d.ts +46 -46
package/dist/events/schemas/agent.completed.v1.d.ts +4 -4
package/dist/events/schemas/agent.failed.v1.d.ts +2 -2
package/dist/events/schemas/agent.hitl_resolved.v1.d.ts +2 -2
package/dist/events/schemas/agent.started.v1.d.ts +2 -2
package/dist/events/schemas/brain.skill.extracted.v1.d.ts +4 -4
package/dist/events/schemas/cc.cost.anomaly_detected.v1.d.ts +2 -2
package/dist/events/schemas/cc.cost.recorded.v1.d.ts +4 -4
package/dist/events/schemas/citadel.sprint.analyzed.v1.d.ts +6 -6
package/dist/events/schemas/citadel.sprint.closed.v1.d.ts +2 -2
package/dist/events/schemas/forge.inbox.reply_classified.v1.d.ts +6 -6
package/dist/events/schemas/forge.lead.qualified.v1.d.ts +2 -2
package/dist/events/schemas/forge.outreach.sent.v1.d.ts +4 -4
package/dist/events/schemas/incident.detected.v1.d.ts +2 -2
package/dist/events/schemas/vauban.goal.checked.v1.d.ts +2 -2
package/dist/events/schemas/vauban.rebalancing.checked.v1.d.ts +2 -2
package/dist/events/schemas/vauban.tax.checked.v1.d.ts +2 -2
package/dist/events/schemas/vauban.vault.analyzed.v1.d.ts +6 -6
package/dist/identity/agent-persona.d.ts +73 -0
package/dist/identity/agent-persona.d.ts.map +1 -0
package/dist/identity/agent-persona.js +165 -0
package/dist/identity/agent-persona.js.map +1 -0
package/dist/identity/persona-prompt.d.ts +25 -0
package/dist/identity/persona-prompt.d.ts.map +1 -0
package/dist/identity/persona-prompt.js +71 -0
package/dist/identity/persona-prompt.js.map +1 -0
package/dist/identity/persona-schema.d.ts +120 -0
package/dist/identity/persona-schema.d.ts.map +1 -0
package/dist/identity/persona-schema.js +103 -0
package/dist/identity/persona-schema.js.map +1 -0
package/dist/index.d.ts +37 -2
package/dist/index.d.ts.map +1 -1
package/dist/index.js +29 -1
package/dist/index.js.map +1 -1
package/dist/loop/minimal-loop.js +293 -287
package/dist/memory/episodic-rrf.d.ts +114 -0
package/dist/memory/episodic-rrf.d.ts.map +1 -0
package/dist/memory/episodic-rrf.js +148 -0
package/dist/memory/episodic-rrf.js.map +1 -0
package/dist/mesh/attenuation.d.ts +78 -0
package/dist/mesh/attenuation.d.ts.map +1 -0
package/dist/mesh/attenuation.js +141 -0
package/dist/mesh/attenuation.js.map +1 -0
package/dist/mesh/delegate.d.ts +96 -0
package/dist/mesh/delegate.d.ts.map +1 -0
package/dist/mesh/delegate.js +172 -0
package/dist/mesh/delegate.js.map +1 -0
package/dist/mesh/dispatcher.d.ts +119 -0
package/dist/mesh/dispatcher.d.ts.map +1 -0
package/dist/mesh/dispatcher.js +207 -0
package/dist/mesh/dispatcher.js.map +1 -0
package/dist/mesh/index.d.ts +12 -0
package/dist/mesh/index.d.ts.map +1 -0
package/dist/mesh/index.js +11 -0
package/dist/mesh/index.js.map +1 -0
package/dist/mesh/types.d.ts +30 -0
package/dist/mesh/types.d.ts.map +1 -0
package/dist/mesh/types.js +11 -0
package/dist/mesh/types.js.map +1 -0
package/dist/orchestration/ooda/skills.d.ts +104 -0
package/dist/orchestration/ooda/skills.d.ts.map +1 -1
package/dist/orchestration/ooda/skills.js +106 -0
package/dist/orchestration/ooda/skills.js.map +1 -1
package/dist/ports/bastion-action.contract.test.d.ts +11 -0
package/dist/ports/bastion-action.contract.test.d.ts.map +1 -0
package/dist/ports/bastion-action.contract.test.js +238 -0
package/dist/ports/bastion-action.contract.test.js.map +1 -0
package/dist/ports/bastion-action.d.ts +133 -0
package/dist/ports/bastion-action.d.ts.map +1 -0
package/dist/ports/bastion-action.js +73 -0
package/dist/ports/bastion-action.js.map +1 -0
package/dist/ports/brain.d.ts +31 -0
package/dist/ports/brain.d.ts.map +1 -1
package/dist/ports/brain.js +115 -1
package/dist/ports/brain.js.map +1 -1
package/dist/ports/citadel-action.contract.test.d.ts +11 -0
package/dist/ports/citadel-action.contract.test.d.ts.map +1 -0
package/dist/ports/citadel-action.contract.test.js +317 -0
package/dist/ports/citadel-action.contract.test.js.map +1 -0
package/dist/ports/citadel-action.d.ts +111 -0
package/dist/ports/citadel-action.d.ts.map +1 -0
package/dist/ports/citadel-action.js +62 -0
package/dist/ports/citadel-action.js.map +1 -0
package/dist/ports/compliance-contract.d.ts +123 -0
package/dist/ports/compliance-contract.d.ts.map +1 -0
package/dist/ports/compliance-contract.js +35 -0
package/dist/ports/compliance-contract.js.map +1 -0
package/dist/ports/db.d.ts +38 -0
package/dist/ports/db.d.ts.map +1 -1
package/dist/ports/db.js +88 -1
package/dist/ports/db.js.map +1 -1
package/dist/ports/delegation.contract.test.d.ts +9 -0
package/dist/ports/delegation.contract.test.d.ts.map +1 -0
package/dist/ports/delegation.contract.test.js +337 -0
package/dist/ports/delegation.contract.test.js.map +1 -0
package/dist/ports/delegation.d.ts +134 -0
package/dist/ports/delegation.d.ts.map +1 -0
package/dist/ports/delegation.js +105 -0
package/dist/ports/delegation.js.map +1 -0
package/dist/ports/event-bus.d.ts +29 -0
package/dist/ports/event-bus.d.ts.map +1 -1
package/dist/ports/event-bus.js +106 -1
package/dist/ports/event-bus.js.map +1 -1
package/dist/ports/federation.contract.test.d.ts +9 -0
package/dist/ports/federation.contract.test.d.ts.map +1 -0
package/dist/ports/federation.contract.test.js +279 -0
package/dist/ports/federation.contract.test.js.map +1 -0
package/dist/ports/federation.d.ts +140 -0
package/dist/ports/federation.d.ts.map +1 -0
package/dist/ports/federation.js +57 -0
package/dist/ports/federation.js.map +1 -0
package/dist/ports/index.d.ts +28 -2
package/dist/ports/index.d.ts.map +1 -1
package/dist/ports/index.js +17 -2
package/dist/ports/index.js.map +1 -1
package/dist/ports/llm-provider.d.ts +37 -0
package/dist/ports/llm-provider.d.ts.map +1 -1
package/dist/ports/llm-provider.js +99 -1
package/dist/ports/llm-provider.js.map +1 -1
package/dist/ports/logger.d.ts +27 -0
package/dist/ports/logger.d.ts.map +1 -1
package/dist/ports/logger.js +87 -0
package/dist/ports/logger.js.map +1 -1
package/dist/ports/manifest-registry.contract.test.d.ts +9 -0
package/dist/ports/manifest-registry.contract.test.d.ts.map +1 -0
package/dist/ports/manifest-registry.contract.test.js +246 -0
package/dist/ports/manifest-registry.contract.test.js.map +1 -0
package/dist/ports/manifest-registry.d.ts +116 -0
package/dist/ports/manifest-registry.d.ts.map +1 -0
package/dist/ports/manifest-registry.js +79 -0
package/dist/ports/manifest-registry.js.map +1 -0
package/dist/ports/observability.contract.test.d.ts +12 -0
package/dist/ports/observability.contract.test.d.ts.map +1 -0
package/dist/ports/observability.contract.test.js +260 -0
package/dist/ports/observability.contract.test.js.map +1 -0
package/dist/ports/observability.d.ts +98 -0
package/dist/ports/observability.d.ts.map +1 -0
package/dist/ports/observability.js +59 -0
package/dist/ports/observability.js.map +1 -0
package/dist/ports/outcome.d.ts +26 -0
package/dist/ports/outcome.d.ts.map +1 -1
package/dist/ports/outcome.js +62 -1
package/dist/ports/outcome.js.map +1 -1
package/dist/ports/privacy.contract.test.d.ts +12 -0
package/dist/ports/privacy.contract.test.d.ts.map +1 -0
package/dist/ports/privacy.contract.test.js +325 -0
package/dist/ports/privacy.contract.test.js.map +1 -0
package/dist/ports/privacy.d.ts +132 -0
package/dist/ports/privacy.d.ts.map +1 -0
package/dist/ports/privacy.js +83 -0
package/dist/ports/privacy.js.map +1 -0
package/dist/ports/tenant-context.contract.test.d.ts +14 -0
package/dist/ports/tenant-context.contract.test.d.ts.map +1 -0
package/dist/ports/tenant-context.contract.test.js +352 -0
package/dist/ports/tenant-context.contract.test.js.map +1 -0
package/dist/ports/tenant-context.d.ts +103 -0
package/dist/ports/tenant-context.d.ts.map +1 -0
package/dist/ports/tenant-context.js +48 -0
package/dist/ports/tenant-context.js.map +1 -0
package/dist/ports/vauban-finance-action.contract.test.d.ts +11 -0
package/dist/ports/vauban-finance-action.contract.test.d.ts.map +1 -0
package/dist/ports/vauban-finance-action.contract.test.js +260 -0
package/dist/ports/vauban-finance-action.contract.test.js.map +1 -0
package/dist/ports/vauban-finance-action.d.ts +106 -0
package/dist/ports/vauban-finance-action.d.ts.map +1 -0
package/dist/ports/vauban-finance-action.js +60 -0
package/dist/ports/vauban-finance-action.js.map +1 -0
package/dist/ports/workflow-runtime.d.ts +204 -0
package/dist/ports/workflow-runtime.d.ts.map +1 -0
package/dist/ports/workflow-runtime.js +72 -0
package/dist/ports/workflow-runtime.js.map +1 -0
package/dist/proof/cert-verify.d.ts +80 -0
package/dist/proof/cert-verify.d.ts.map +1 -0
package/dist/proof/cert-verify.js +178 -0
package/dist/proof/cert-verify.js.map +1 -0
package/dist/replay/replay.d.ts.map +1 -1
package/dist/replay/replay.js +5 -1
package/dist/replay/replay.js.map +1 -1
package/dist/retry/index.d.ts +129 -0
package/dist/retry/index.d.ts.map +1 -0
package/dist/retry/index.js +156 -0
package/dist/retry/index.js.map +1 -0
package/dist/retry/presets.d.ts +39 -0
package/dist/retry/presets.d.ts.map +1 -0
package/dist/retry/presets.js +69 -0
package/dist/retry/presets.js.map +1 -0
package/dist/skill-loop/ab-runner.d.ts +67 -0
package/dist/skill-loop/ab-runner.d.ts.map +1 -0
package/dist/skill-loop/ab-runner.js +160 -0
package/dist/skill-loop/ab-runner.js.map +1 -0
package/dist/skill-loop/adoption.d.ts +67 -0
package/dist/skill-loop/adoption.d.ts.map +1 -0
package/dist/skill-loop/adoption.js +126 -0
package/dist/skill-loop/adoption.js.map +1 -0
package/dist/skill-loop/candidate.d.ts +45 -0
package/dist/skill-loop/candidate.d.ts.map +1 -0
package/dist/skill-loop/candidate.js +43 -0
package/dist/skill-loop/candidate.js.map +1 -0
package/dist/skill-loop/evaluator.d.ts +42 -0
package/dist/skill-loop/evaluator.d.ts.map +1 -0
package/dist/skill-loop/evaluator.js +184 -0
package/dist/skill-loop/evaluator.js.map +1 -0
package/dist/skill-loop/index.d.ts +27 -0
package/dist/skill-loop/index.d.ts.map +1 -0
package/dist/skill-loop/index.js +27 -0
package/dist/skill-loop/index.js.map +1 -0
package/dist/skill-loop/reflexion-replay.d.ts +87 -0
package/dist/skill-loop/reflexion-replay.d.ts.map +1 -0
package/dist/skill-loop/reflexion-replay.js +110 -0
package/dist/skill-loop/reflexion-replay.js.map +1 -0
package/dist/skill-loop/sign-off.d.ts +88 -0
package/dist/skill-loop/sign-off.d.ts.map +1 -0
package/dist/skill-loop/sign-off.js +146 -0
package/dist/skill-loop/sign-off.js.map +1 -0
package/dist/skill-loop/value-metric.d.ts +55 -0
package/dist/skill-loop/value-metric.d.ts.map +1 -0
package/dist/skill-loop/value-metric.js +69 -0
package/dist/skill-loop/value-metric.js.map +1 -0
package/dist/skill-loop/versioning.d.ts +36 -0
package/dist/skill-loop/versioning.d.ts.map +1 -0
package/dist/skill-loop/versioning.js +47 -0
package/dist/skill-loop/versioning.js.map +1 -0
package/dist/skill-manifest/anchor.d.ts +91 -0
package/dist/skill-manifest/anchor.d.ts.map +1 -0
package/dist/skill-manifest/anchor.js +331 -0
package/dist/skill-manifest/anchor.js.map +1 -0
package/dist/skill-manifest/builder.d.ts +47 -0
package/dist/skill-manifest/builder.d.ts.map +1 -0
package/dist/skill-manifest/builder.js +93 -0
package/dist/skill-manifest/builder.js.map +1 -0
package/dist/skill-manifest/index.d.ts +13 -0
package/dist/skill-manifest/index.d.ts.map +1 -0
package/dist/skill-manifest/index.js +9 -0
package/dist/skill-manifest/index.js.map +1 -0
package/dist/skill-manifest/types.d.ts +67 -0
package/dist/skill-manifest/types.d.ts.map +1 -0
package/dist/skill-manifest/types.js +16 -0
package/dist/skill-manifest/types.js.map +1 -0
package/dist/skill-manifest/verifier.d.ts +42 -0
package/dist/skill-manifest/verifier.d.ts.map +1 -0
package/dist/skill-manifest/verifier.js +136 -0
package/dist/skill-manifest/verifier.js.map +1 -0
package/dist/skills/brain-query.d.ts +4 -4
package/dist/skills/brain-store.d.ts +6 -6
package/dist/skills/errors.d.ts +15 -0
package/dist/skills/errors.d.ts.map +1 -1
package/dist/skills/errors.js +21 -0
package/dist/skills/errors.js.map +1 -1
package/dist/skills/hitl-request.d.ts +2 -2
package/dist/skills/index.d.ts +3 -1
package/dist/skills/index.d.ts.map +1 -1
package/dist/skills/index.js +4 -1
package/dist/skills/index.js.map +1 -1
package/dist/skills/markdown/loader.d.ts +52 -0
package/dist/skills/markdown/loader.d.ts.map +1 -0
package/dist/skills/markdown/loader.js +93 -0
package/dist/skills/markdown/loader.js.map +1 -0
package/dist/skills/markdown/schema.d.ts +432 -0
package/dist/skills/markdown/schema.d.ts.map +1 -0
package/dist/skills/markdown/schema.js +121 -0
package/dist/skills/markdown/schema.js.map +1 -0
package/dist/skills/poc-md-loader/markdown-loader.d.ts +77 -0
package/dist/skills/poc-md-loader/markdown-loader.d.ts.map +1 -0
package/dist/skills/poc-md-loader/markdown-loader.js +125 -0
package/dist/skills/poc-md-loader/markdown-loader.js.map +1 -0
package/dist/skills/poc-md-loader/runner.d.ts +24 -0
package/dist/skills/poc-md-loader/runner.d.ts.map +1 -0
package/dist/skills/poc-md-loader/runner.js +57 -0
package/dist/skills/poc-md-loader/runner.js.map +1 -0
package/dist/skills/poc-md-loader/vitest.poc.config.d.ts +3 -0
package/dist/skills/poc-md-loader/vitest.poc.config.d.ts.map +1 -0
package/dist/skills/poc-md-loader/vitest.poc.config.js +13 -0
package/dist/skills/poc-md-loader/vitest.poc.config.js.map +1 -0
package/dist/skills/poc-md-loader/web-search/script.d.ts +33 -0
package/dist/skills/poc-md-loader/web-search/script.d.ts.map +1 -0
package/dist/skills/poc-md-loader/web-search/script.js +75 -0
package/dist/skills/poc-md-loader/web-search/script.js.map +1 -0
package/dist/skills/record-outcome.d.ts +4 -4
package/dist/skills/send-email.d.ts.map +1 -1
package/dist/skills/send-email.js +15 -3
package/dist/skills/send-email.js.map +1 -1
package/dist/skills/slack-notify.d.ts +4 -4
package/dist/skills/starknet-balance.d.ts +1 -1
package/dist/skills/telegram-notify.d.ts +4 -4
package/dist/skills/web-search.d.ts +1 -1
package/dist/testing/index.d.ts +3 -0
package/dist/testing/test-brain-port.d.ts +4 -0
package/dist/testing/test-brain-port.d.ts.map +1 -1
package/dist/testing/test-brain-port.js +75 -20
package/dist/testing/test-brain-port.js.map +1 -1
package/dist/testing/test-event-bus.d.ts.map +1 -1
package/dist/testing/test-event-bus.js +89 -36
package/dist/testing/test-event-bus.js.map +1 -1
package/dist/trace/schema.d.ts +1 -1
package/dist/trace/schema.d.ts.map +1 -1
package/dist/trace/schema.js +1 -1
package/dist/trace/schema.js.map +1 -1
package/dist/verify/formal/index.d.ts +44 -0
package/dist/verify/formal/index.d.ts.map +1 -0
package/dist/verify/formal/index.js +98 -0
package/dist/verify/formal/index.js.map +1 -0
package/dist/verify/formal/policy.d.ts +105 -0
package/dist/verify/formal/policy.d.ts.map +1 -0
package/dist/verify/formal/policy.js +159 -0
package/dist/verify/formal/policy.js.map +1 -0
package/dist/verify/formal/result.d.ts +50 -0
package/dist/verify/formal/result.d.ts.map +1 -0
package/dist/verify/formal/result.js +21 -0
package/dist/verify/formal/result.js.map +1 -0
package/dist/verify/formal/solver.d.ts +67 -0
package/dist/verify/formal/solver.d.ts.map +1 -0
package/dist/verify/formal/solver.js +184 -0
package/dist/verify/formal/solver.js.map +1 -0
package/dist/verify/formal/spec-language.d.ts +80 -0
package/dist/verify/formal/spec-language.d.ts.map +1 -0
package/dist/verify/formal/spec-language.js +219 -0
package/dist/verify/formal/spec-language.js.map +1 -0
package/docs/attestation.md +199 -0
package/docs/identity.md +193 -0
package/package.json +34 -17
package/src/adapters/llm/anthropic-direct.ts +51 -0
package/src/adapters/llm/cascade.ts +64 -19
package/src/adapters/llm/litellm.ts +49 -0
package/src/compute/difficulty-estimator.ts +111 -0
package/src/compute/strategies/mixture-of-agents.ts +150 -0
package/src/compute/strategies/tree-of-thoughts.ts +293 -0
package/src/compute/strategies/two-phase-orient.ts +147 -0
package/src/container/protocol.ts +243 -0
package/src/container/runtime.ts +424 -0
package/src/db/migrations/026_formal_verify_results.sql +30 -0
package/src/identity/agent-persona.ts +203 -0
package/src/identity/persona-prompt.ts +84 -0
package/src/identity/persona-schema.ts +127 -0
package/src/index.ts +338 -1
package/src/memory/episodic-rrf.ts +224 -0
package/src/mesh/attenuation.ts +190 -0
package/src/mesh/delegate.ts +254 -0
package/src/mesh/dispatcher.ts +301 -0
package/src/mesh/index.ts +39 -0
package/src/mesh/types.ts +31 -0
package/src/orchestration/ooda/skills.ts +177 -0
package/src/ports/bastion-action.contract.test.ts +355 -0
package/src/ports/bastion-action.ts +198 -0
package/src/ports/brain.ts +177 -15
package/src/ports/citadel-action.contract.test.ts +430 -0
package/src/ports/citadel-action.ts +174 -0
package/src/ports/compliance-contract.ts +191 -0
package/src/ports/db.ts +98 -0
package/src/ports/delegation.contract.test.ts +428 -0
package/src/ports/delegation.ts +211 -0
package/src/ports/event-bus.ts +133 -0
package/src/ports/federation.contract.test.ts +355 -0
package/src/ports/federation.ts +190 -0
package/src/ports/index.ts +186 -1
package/src/ports/llm-provider.ts +123 -0
package/src/ports/logger.ts +104 -0
package/src/ports/manifest-registry.contract.test.ts +324 -0
package/src/ports/manifest-registry.ts +188 -0
package/src/ports/observability.contract.test.ts +315 -0
package/src/ports/observability.ts +150 -0
package/src/ports/outcome.ts +69 -0
package/src/ports/privacy.contract.test.ts +413 -0
package/src/ports/privacy.ts +207 -0
package/src/ports/tenant-context.contract.test.ts +454 -0
package/src/ports/tenant-context.ts +150 -0
package/src/ports/vauban-finance-action.contract.test.ts +335 -0
package/src/ports/vauban-finance-action.ts +166 -0
package/src/ports/workflow-runtime.ts +327 -0
package/src/proof/cert-verify.ts +249 -0
package/src/replay/replay.ts +11 -8
package/src/retry/index.ts +227 -0
package/src/retry/presets.ts +75 -0
package/src/skill-loop/ab-runner.ts +196 -0
package/src/skill-loop/adoption.ts +188 -0
package/src/skill-loop/candidate.ts +75 -0
package/src/skill-loop/evaluator.ts +238 -0
package/src/skill-loop/index.ts +51 -0
package/src/skill-loop/reflexion-replay.ts +173 -0
package/src/skill-loop/sign-off.ts +247 -0
package/src/skill-loop/value-metric.ts +120 -0
package/src/skill-loop/versioning.ts +75 -0
package/src/skill-manifest/anchor.ts +401 -0
package/src/skill-manifest/builder.ts +129 -0
package/src/skill-manifest/index.ts +18 -0
package/src/skill-manifest/types.ts +72 -0
package/src/skill-manifest/verifier.ts +198 -0
package/src/skills/errors.ts +30 -2
package/src/skills/index.ts +19 -0
package/src/skills/markdown/loader.ts +129 -0
package/src/skills/markdown/schema.ts +144 -0
package/src/skills/poc-md-loader/e2e-parity.test.ts +237 -0
package/src/skills/poc-md-loader/markdown-loader.ts +161 -0
package/src/skills/poc-md-loader/runner.ts +82 -0
package/src/skills/poc-md-loader/vitest.poc.config.ts +13 -0
package/src/skills/poc-md-loader/web-search/SKILL.md +42 -0
package/src/skills/poc-md-loader/web-search/script.ts +109 -0
package/src/skills/send-email.ts +15 -3
package/src/testing/test-brain-port.ts +98 -24
package/src/testing/test-event-bus.ts +104 -43
package/src/trace/schema.ts +1 -1
package/src/verify/formal/index.ts +154 -0
package/src/verify/formal/policy.ts +253 -0
package/src/verify/formal/result.ts +52 -0
package/src/verify/formal/solver.ts +235 -0
package/src/verify/formal/spec-language.ts +274 -0

package/src/ports/tenant-context.contract.test.ts ADDED Viewed

@@ -0,0 +1,454 @@
+/**
+ * TenantContextPort contract tests.
+ *
+ * Applied to any TenantContextPort implementation.
+ * Tests verify: isolation, degraded mode transitions, §5.4 cap enforcement,
+ * and cumulative metric computation per S2 spec.
+ */
+import { describe, expect, test } from "vitest";
+import {
+  type TenantContextPort,
+  type TenantContext,
+  TenantNotFoundError,
+  DegradedModeExhaustedError,
+  InvalidGlacisAttestationError,
+} from "./tenant-context.js";
+/**
+ * Factory function — tests accept any TenantContextPort implementation.
+ * Example: factory = () => new MemoryTenantContextStore()
+ */
+export const tenantContextPortContract = (factory: () => TenantContextPort) => {
+  describe("TenantContextPort contract", () => {
+    // ─── T-S2-1: getCurrent returns context for verified tenant ───────────────
+    test("T-S2-1: getCurrent returns verified context", async () => {
+      const port = factory();
+      const tenantId = "0x" + "a".repeat(64);
+      // Assuming implementation has a way to bootstrap a tenant (e.g., via setup fixture)
+      // For now, we test the contract shape if a tenant exists
+      // Handle both: returns null (lenient), OR throws (stricter variant)
+      try {
+        const result = await port.getCurrent(tenantId);
+        // If implementation returns the context, validate structure
+        if (result !== null) {
+          expect(result).toHaveProperty("canonical_id");
+          expect(result).toHaveProperty("mode");
+          expect(result).toHaveProperty("kek_id");
+          expect(result).toHaveProperty("jurisdictions");
+          expect(result).toHaveProperty("verified_human");
+        } else {
+          // Contract satisfied: getCurrent returns either TenantContext or null
+          expect(result).toBeNull();
+        }
+      } catch (err) {
+        // Contract also allows throws (TenantNotFoundError variant)
+        expect(err).toBeInstanceOf(TenantNotFoundError);
+      }
+    });
+    // ─── T-S2-2: enterDegradedMode flips mode + verified_human remains true ────
+    test("T-S2-2: enterDegradedMode transitions verified → degraded_verified", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-001";
+      // Mock setup: assume implementation allows test setup
+      // Real implementation would have bootstrapped this tenant with verified context
+      await port.enterDegradedMode(tenantId, "glacis.downtime");
+      const after = await port.getCurrent(tenantId);
+      if (after !== null) {
+        expect(after.mode).toBe("degraded_verified");
+        expect(after.verified_human).toBe(true);
+        expect(after.degraded_since).toBeDefined();
+      }
+    });
+    // ─── T-S2-3: restoreVerified returns to verified mode ────────────────────
+    test("T-S2-3: restoreVerified transitions degraded_verified → verified", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-002";
+      // Setup: assume tenant is in degraded_verified state
+      // Mock Glacis attestation
+      const attestation = {
+        txRef: "0x456def",
+        nullifierRoot: "0x" + "b".repeat(64),
+        blockNumber: 123456,
+      };
+      await port.restoreVerified(tenantId, attestation);
+      const after = await port.getCurrent(tenantId);
+      if (after !== null) {
+        expect(after.mode).toBe("verified");
+        expect(after.degraded_since).toBeUndefined();
+        expect(after.glacis_attestation_ref).toBe(attestation.txRef);
+      }
+    });
+    // ─── T-S2-4: getCumulativeDegradedTime computes window correctly ──────────
+    test("T-S2-4: getCumulativeDegradedTime computes 90d rolling window", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-003";
+      // Initialize tenant first by entering degraded mode (which auto-bootstraps)
+      await port.enterDegradedMode(tenantId, "test.setup");
+      // Then restore to get valid cumulative time
+      const attestation = {
+        txRef: "0x123abc",
+        nullifierRoot: "0x" + "c".repeat(64),
+        blockNumber: 100,
+      };
+      await port.restoreVerified(tenantId, attestation);
+      const cumulative = await port.getCumulativeDegradedTime(tenantId, 90);
+      expect(cumulative).toBeGreaterThanOrEqual(0);
+      expect(typeof cumulative).toBe("number");
+    });
+    // ─── T-S2-5: DegradedModeExhaustedError thrown when cap exceeded ──────────
+    test("T-S2-5: DegradedModeExhaustedError thrown when 30/90d cap exceeded", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-exhausted";
+      // Scenario: tenant has already accumulated 30+ days in last 90 days
+      // Attempting to enter degraded mode again should fail
+      // Initialize tenant first
+      await port.enterDegradedMode(tenantId, "setup");
+      const attestation = {
+        txRef: "0x123abc",
+        nullifierRoot: "0x" + "c".repeat(64),
+        blockNumber: 100,
+      };
+      await port.restoreVerified(tenantId, attestation);
+      const capSeconds = 30 * 86400; // 30 days
+      const cumulativeSoFar = await port.getCumulativeDegradedTime(
+        tenantId,
+        90
+      );
+      // If already at cap, entering degraded mode should throw
+      if (cumulativeSoFar >= capSeconds) {
+        await expect(
+          port.enterDegradedMode(tenantId, "test.failure")
+        ).rejects.toThrow(DegradedModeExhaustedError);
+      }
+    });
+    // ─── T-S2-6: getKek returns KEK reference (not key material) ──────────────
+    test("T-S2-6: getKek returns string KEK identifier", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-004";
+      // Initialize tenant first
+      await port.enterDegradedMode(tenantId, "setup");
+      const attestation = {
+        txRef: "0x123abc",
+        nullifierRoot: "0x" + "c".repeat(64),
+        blockNumber: 100,
+      };
+      await port.restoreVerified(tenantId, attestation);
+      const kekId = await port.getKek(tenantId);
+      expect(typeof kekId).toBe("string");
+      expect(kekId.length).toBeGreaterThan(0);
+      // Verify it looks like a KMS reference, not raw key material
+      expect(kekId).not.toMatch(/^-----BEGIN/); // Not a PEM key
+    });
+    // ─── T-S2-7: getDegradedMetrics returns custody DD metrics ────────────────
+    test("T-S2-7: getDegradedMetrics returns pct_time_degraded", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-005";
+      // Initialize tenant first
+      await port.enterDegradedMode(tenantId, "setup");
+      const attestation = {
+        txRef: "0x123abc",
+        nullifierRoot: "0x" + "c".repeat(64),
+        blockNumber: 100,
+      };
+      await port.restoreVerified(tenantId, attestation);
+      const metrics = await port.getDegradedMetrics(tenantId);
+      expect(metrics).toHaveProperty("total_degraded_last_90d");
+      expect(metrics).toHaveProperty("episodes_count");
+      expect(metrics).toHaveProperty("pct_time_degraded");
+      expect(typeof metrics.total_degraded_last_90d).toBe("number");
+      expect(typeof metrics.episodes_count).toBe("number");
+      expect(typeof metrics.pct_time_degraded).toBe("number");
+      expect(metrics.pct_time_degraded).toBeGreaterThanOrEqual(0);
+      expect(metrics.pct_time_degraded).toBeLessThanOrEqual(100);
+    });
+    // ─── T-S2-8: TenantNotFoundError thrown for nonexistent tenant ─────────────
+    test("T-S2-8: TenantNotFoundError thrown for nonexistent tenant", async () => {
+      const port = factory();
+      const nonexistentId = "nonexistent-" + crypto.randomUUID();
+      await expect(port.getCurrent(nonexistentId)).rejects.toThrow(
+        TenantNotFoundError
+      );
+      await expect(port.getKek(nonexistentId)).rejects.toThrow(
+        TenantNotFoundError
+      );
+      await expect(port.getDegradedMetrics(nonexistentId)).rejects.toThrow(
+        TenantNotFoundError
+      );
+    });
+    // ─── T-S2-9: InvalidGlacisAttestationError on restore with bad attestation ─
+    test("T-S2-9: InvalidGlacisAttestationError for invalid Glacis attestation", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-006";
+      const badAttestation = {
+        txRef: "0xinvalid",
+        nullifierRoot: "0x" + "c".repeat(32), // Too short
+        blockNumber: -1, // Invalid block number
+      };
+      await expect(
+        port.restoreVerified(tenantId, badAttestation)
+      ).rejects.toThrow(InvalidGlacisAttestationError);
+    });
+    // ─── T-S2-10: Degraded mode cap resets on verification restore ─────────────
+    test("T-S2-10: Degraded cumulative counter resets 90-day rolling window", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-007";
+      // Initialize tenant first
+      await port.enterDegradedMode(tenantId, "setup");
+      const attestation = {
+        txRef: "0x123abc",
+        nullifierRoot: "0x" + "c".repeat(64),
+        blockNumber: 100,
+      };
+      await port.restoreVerified(tenantId, attestation);
+      // Get baseline
+      const before = await port.getCumulativeDegradedTime(tenantId, 90);
+      // Simulate: time passes such that old degraded episodes fall out of 90d window
+      // (Implementation-dependent; this test verifies the contract)
+      const after90Days = await port.getCumulativeDegradedTime(tenantId, 90);
+      // Both should be valid numbers; after entering new degraded episodes,
+      // old ones should eventually age out of the 90d window
+      expect(before).toBeGreaterThanOrEqual(0);
+      expect(after90Days).toBeGreaterThanOrEqual(0);
+    });
+    // ─── T-S2-11: Multiple verified_human indicators (isolation check) ─────────
+    test("T-S2-11: Tenant context preserves verified_human flag", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-008";
+      try {
+        const ctx = await port.getCurrent(tenantId);
+        if (ctx !== null) {
+          expect(typeof ctx.verified_human).toBe("boolean");
+          // Verified mode must have verified_human = true
+          if (ctx.mode === "verified") {
+            expect(ctx.verified_human).toBe(true);
+          }
+        }
+      } catch (err) {
+        // Contract allows throws; just verify the error type
+        expect(err).toBeInstanceOf(TenantNotFoundError);
+      }
+    });
+    // ─── T-S2-12: Jurisdictions immutable in context ─────────────────────────
+    test("T-S2-12: Jurisdictions array in context is readonly", async () => {
+      const port = factory();
+      const tenantId = "test-tenant-009";
+      try {
+        const ctx = await port.getCurrent(tenantId);
+        if (ctx !== null) {
+          expect(Array.isArray(ctx.jurisdictions)).toBe(true);
+          expect(ctx.jurisdictions.length).toBeGreaterThanOrEqual(0);
+        }
+      } catch (err) {
+        // Contract allows throws; just verify the error type
+        expect(err).toBeInstanceOf(TenantNotFoundError);
+      }
+    });
+  });
+};
+// ─── Contract export (for test integration) ────────────────────────────────────
+// Example mock implementation for documentation
+class MockTenantContextStore implements TenantContextPort {
+  private readonly store = new Map<
+    string,
+    {
+      context: TenantContext;
+      degradedEpisodes: { start: Date; end?: Date }[];
+    }
+  >();
+  private readonly initialized = new Set<string>();
+  /**
+   * Helper to initialize a tenant explicitly (called before test operations).
+   * This marks the tenant as "known to the system".
+   */
+  private ensureInitialized(tenantId: string): void {
+    if (!this.initialized.has(tenantId)) {
+      const context: TenantContext = {
+        canonical_id: "0x" + tenantId.slice(0, 64).padEnd(64, "0"),
+        mode: "verified",
+        kek_id: `kek-${tenantId}`,
+        jurisdictions: ["EU.v1"],
+        verified_human: true,
+      };
+      this.store.set(tenantId, {
+        context,
+        degradedEpisodes: [],
+      });
+      this.initialized.add(tenantId);
+    }
+  }
+  async getCurrent(tenantId: string): Promise<TenantContext | null> {
+    // Per contract: getCurrent may return null OR throw TenantNotFoundError
+    // Implementation: throw if tenant was never initialized by any method
+    if (!this.initialized.has(tenantId)) {
+      throw new TenantNotFoundError(tenantId);
+    }
+    const entry = this.store.get(tenantId);
+    return entry?.context ?? null;
+  }
+  async enterDegradedMode(tenantId: string, _reason: string): Promise<void> {
+    // Ensure tenant is initialized (auto-bootstrap on first use)
+    this.ensureInitialized(tenantId);
+    const entry = this.store.get(tenantId);
+    if (!entry) throw new TenantNotFoundError(tenantId);
+    const capSeconds = 30 * 86400;
+    const cumulative = await this.getCumulativeDegradedTime(tenantId, 90);
+    if (cumulative >= capSeconds) {
+      throw new DegradedModeExhaustedError(tenantId, cumulative, capSeconds);
+    }
+    const now = new Date();
+    entry.context = {
+      ...entry.context,
+      mode: "degraded_verified",
+      degraded_since: now,
+    };
+    entry.degradedEpisodes.push({ start: now });
+  }
+  async restoreVerified(
+    tenantId: string,
+    attestation: { txRef: string; nullifierRoot: string; blockNumber: number }
+  ): Promise<void> {
+    // Ensure tenant is initialized (auto-bootstrap on first use)
+    this.ensureInitialized(tenantId);
+    const entry = this.store.get(tenantId);
+    if (!entry) throw new TenantNotFoundError(tenantId);
+    // Validate attestation: txRef must be non-empty, blockNumber must be >= 0
+    if (!attestation.txRef || attestation.blockNumber < 0) {
+      throw new InvalidGlacisAttestationError(
+        tenantId,
+        "invalid attestation fields"
+      );
+    }
+    // Also validate nullifierRoot is properly formatted (64 hex chars)
+    if (!/^0x[0-9a-fA-F]{64}$/.test(attestation.nullifierRoot)) {
+      throw new InvalidGlacisAttestationError(
+        tenantId,
+        "nullifierRoot must be 0x followed by 64 hex characters"
+      );
+    }
+    entry.context = {
+      ...entry.context,
+      mode: "verified",
+      glacis_attestation_ref: attestation.txRef,
+      degraded_since: undefined,
+    };
+    const currentEpisode =
+      entry.degradedEpisodes[entry.degradedEpisodes.length - 1];
+    if (currentEpisode) {
+      currentEpisode.end = new Date();
+    }
+  }
+  async getKek(tenantId: string): Promise<string> {
+    // Don't auto-initialize; require tenant to exist
+    const entry = this.store.get(tenantId);
+    if (!entry) throw new TenantNotFoundError(tenantId);
+    return entry.context.kek_id;
+  }
+  async getCumulativeDegradedTime(
+    tenantId: string,
+    windowDays = 90
+  ): Promise<number> {
+    // Don't auto-initialize; require tenant to exist
+    const entry = this.store.get(tenantId);
+    if (!entry) throw new TenantNotFoundError(tenantId);
+    const windowMs = windowDays * 24 * 60 * 60 * 1000;
+    const cutoff = new Date(Date.now() - windowMs);
+    let totalMs = 0;
+    for (const ep of entry.degradedEpisodes) {
+      if (ep.start < cutoff) continue;
+      const endTime = ep.end ?? new Date();
+      if (endTime > cutoff) {
+        totalMs +=
+          endTime.getTime() - Math.max(ep.start.getTime(), cutoff.getTime());
+      }
+    }
+    return Math.floor(totalMs / 1000);
+  }
+  async getDegradedMetrics(tenantId: string) {
+    // Don't auto-initialize; require tenant to exist
+    const entry = this.store.get(tenantId);
+    if (!entry) throw new TenantNotFoundError(tenantId);
+    const totalSecs = await this.getCumulativeDegradedTime(tenantId, 90);
+    const windowSecs = 90 * 86400;
+    return {
+      total_degraded_last_90d: totalSecs,
+      episodes_count: entry.degradedEpisodes.length,
+      pct_time_degraded: (totalSecs / windowSecs) * 100,
+    };
+  }
+}
+// Apply contract to mock for testing
+tenantContextPortContract(() => new MockTenantContextStore());

package/src/ports/tenant-context.ts ADDED Viewed

@@ -0,0 +1,150 @@
+/**
+ * TenantContextPort — tenant isolation primitive (S2 spec).
+ *
+ * TenantContext is the canonical cross-product isolation identifier.
+ * canonical_id = poseidon(glacis_nullifier_root, "vauban.platform.v1")
+ *
+ * 3 modes: 'verified' (Glacis PoH passed) | 'degraded_verified' (fallback during Glacis downtime)
+ * | 'unverified' (dev/test, limited capabilities).
+ *
+ * §5.4 Cumulative degraded cap: ≤30 days per 90-day rolling window.
+ * Invariants: I-S2-1..10 per S2 spec.
+ */
+// ─── Mode types ───────────────────────────────────────────────────────────────
+export type TenantMode = "verified" | "degraded_verified" | "unverified";
+// ─── TenantContext (S2 §3.1) ──────────────────────────────────────────────────
+export interface TenantContext {
+  readonly canonical_id: string; // Poseidon hash (Felt252), hex-encoded
+  readonly mode: TenantMode;
+  readonly kek_id: string; // KEK identifier (KMS reference, NOT the key itself)
+  readonly jurisdictions: string[]; // e.g. ["FR.v1", "EU.v1"]
+  readonly verified_human: boolean; // true if human identity proven by Glacis PoH
+  readonly glacis_attestation_ref?: string; // mainnet tx ref (verified mode)
+  readonly degraded_since?: Date; // when did degraded mode start
+}
+// ─── Degraded mode metrics (§5.4.2) ──────────────────────────────────────────
+export interface DegradedMetrics {
+  readonly total_degraded_last_90d: number; // seconds
+  readonly episodes_count: number;
+  readonly pct_time_degraded: number; // 0-100, decimal
+}
+// ─── Claim types ──────────────────────────────────────────────────────────────
+export interface DegradedModeEnteredClaim {
+  readonly tenant_id: string;
+  readonly reason: string; // e.g. "glacis.downtime", "temporary.mitigation"
+  readonly entered_at: Date;
+  readonly window_remaining_seconds?: number;
+}
+export interface DegradedModeExhaustedClaim {
+  readonly tenant_id: string;
+  readonly total_degraded_90d_seconds: number;
+  readonly cap_seconds: number; // 30 * 86400
+  readonly fallback_mode: "unverified";
+  readonly exhausted_at: Date;
+}
+// ─── TenantContextPort ─────────────────────────────────────────────────────────
+export interface TenantContextPort {
+  /**
+   * Get current tenant context by ID.
+   * Returns null if tenant does not exist or has been revoked.
+   */
+  getCurrent(tenantId: string): Promise<TenantContext | null>;
+  /**
+   * Enter degraded mode due to Glacis downtime or other temporary issue.
+   * Emits DegradedModeEnteredClaim.
+   * Throws TenantNotFoundError if tenant does not exist.
+   * Throws DegradedModeExhaustedError if 30/90d cap already exceeded.
+   *
+   * Precondition: tenant.mode = 'verified'
+   * Effect: tenant.mode = 'degraded_verified', tenant.degraded_since = now()
+   */
+  enterDegradedMode(tenantId: string, reason: string): Promise<void>;
+  /**
+   * Restore verified mode from degraded mode after Glacis recovery.
+   * Verifies the provided Glacis attestation is valid before accepting.
+   *
+   * Precondition: tenant.mode = 'degraded_verified'
+   * Effect: tenant.mode = 'verified', tenant.degraded_since = null
+   * Throws InvalidGlacisAttestationError if attestation invalid or expired
+   */
+  restoreVerified(
+    tenantId: string,
+    glacisAttestation: {
+      txRef: string;
+      nullifierRoot: string;
+      blockNumber: number;
+    }
+  ): Promise<void>;
+  /**
+   * Get KEK (Key Encryption Key) identifier for a tenant.
+   * Returns the KMS reference string, NOT the key material itself.
+   * Throws TenantNotFoundError if tenant does not exist.
+   */
+  getKek(tenantId: string): Promise<string>;
+  /**
+   * Compute cumulative degraded time in the rolling window.
+   * windowDays defaults to 90 if not specified.
+   * Returns time in seconds.
+   */
+  getCumulativeDegradedTime(
+    tenantId: string,
+    windowDays?: number
+  ): Promise<number>;
+  /**
+   * Get metrics for custody due diligence reporting.
+   * Throws TenantNotFoundError if tenant does not exist.
+   */
+  getDegradedMetrics(tenantId: string): Promise<DegradedMetrics>;
+}
+// ─── Typed errors ─────────────────────────────────────────────────────────────
+export class TenantNotFoundError extends Error {
+  constructor(public readonly tenantId: string) {
+    super(`Tenant not found: ${tenantId}`);
+    this.name = "TenantNotFoundError";
+    Object.setPrototypeOf(this, new.target.prototype);
+  }
+}
+export class DegradedModeExhaustedError extends Error {
+  constructor(
+    public readonly tenantId: string,
+    public readonly totalDegradedSeconds: number,
+    public readonly capSeconds: number
+  ) {
+    super(
+      `Degraded mode cap exhausted for tenant ${tenantId}: ` +
+        `${totalDegradedSeconds}s ≥ ${capSeconds}s (30 days)`
+    );
+    this.name = "DegradedModeExhaustedError";
+    Object.setPrototypeOf(this, new.target.prototype);
+  }
+}
+export class InvalidGlacisAttestationError extends Error {
+  constructor(
+    public readonly tenantId: string,
+    public readonly reason: string
+  ) {
+    super(`Invalid Glacis attestation for tenant ${tenantId}: ${reason}`);
+    this.name = "InvalidGlacisAttestationError";
+    Object.setPrototypeOf(this, new.target.prototype);
+  }
+}