npm - @veritera.ai/forge-openclaw - Versions diffs - 1.1.2 - Mend

@veritera.ai/forge-openclaw 1.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/index.cjs ADDED Viewed

@@ -0,0 +1,160 @@
+"use strict";
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/index.ts
+var index_exports = {};
+__export(index_exports, {
+  ForgeSkill: () => ForgeSkill,
+  default: () => index_default
+});
+module.exports = __toCommonJS(index_exports);
+var import_sdk = __toESM(require("@veritera.ai/sdk"), 1);
+var ForgeSkill = class {
+  forge;
+  policy;
+  agentId;
+  skipActions;
+  onBlocked;
+  onVerified;
+  debug;
+  /** Skill metadata for OpenClaw registration */
+  static skillName = "forge-verify";
+  static version = "1.1.2";
+  static description = "Forge verification \u2014 verifies every action before execution";
+  constructor(config) {
+    if (!config.apiKey) {
+      throw new Error("Forge OpenClaw Skill: apiKey is required");
+    }
+    this.forge = new import_sdk.default({
+      apiKey: config.apiKey,
+      baseUrl: config.baseUrl
+    });
+    this.policy = config.policy;
+    this.agentId = config.agentId ?? "openclaw-agent";
+    this.skipActions = new Set(config.skipActions ?? []);
+    this.onBlocked = config.onBlocked;
+    this.onVerified = config.onVerified;
+    this.debug = config.debug ?? false;
+  }
+  /**
+   * Verify a tool call before execution.
+   * Returns the verification result. If not verified, the action should be blocked.
+   *
+   * @param toolCall - The OpenClaw tool call to verify
+   * @returns SkillResult with verification status
+   */
+  async verify(toolCall) {
+    const action = toolCall.name;
+    if (this.skipActions.has(action)) {
+      if (this.debug) console.log(`[Forge] Skipping verification for: ${action}`);
+      return { verified: true, action };
+    }
+    try {
+      const result = await this.forge.verifyDecision({
+        agentId: this.agentId,
+        action,
+        params: toolCall.arguments ?? {},
+        policy: this.policy
+      });
+      if (this.debug) {
+        console.log(`[Forge] ${result.verified ? "\u2714 VERIFIED" : "\u2717 BLOCKED"}: ${action} (${result.latencyMs}ms)`);
+      }
+      if (result.verified) {
+        this.onVerified?.(action, result);
+      } else {
+        this.onBlocked?.(action, result.reason, result);
+      }
+      return {
+        verified: result.verified,
+        action,
+        verificationId: result.verificationId,
+        latencyMs: result.latencyMs,
+        reason: result.reason
+      };
+    } catch (err) {
+      if (this.debug) {
+        console.error(`[Forge] Verification failed for ${action}:`, err);
+      }
+      return {
+        verified: false,
+        action,
+        reason: "Verification service unreachable \u2014 action blocked (fail-closed)"
+      };
+    }
+  }
+  /**
+   * Pre-execution interceptor for OpenClaw.
+   * Register this as a skill hook to verify every action automatically.
+   *
+   * @param toolCall - The tool call from OpenClaw
+   * @returns The tool call if verified, null if blocked
+   */
+  async intercept(toolCall) {
+    const result = await this.verify(toolCall);
+    if (!result.verified) {
+      return null;
+    }
+    return toolCall;
+  }
+  /**
+   * Express/Connect-style middleware for custom integrations.
+   * Verifies the action in req.body and blocks if denied.
+   */
+  middleware() {
+    return async (req, res, next) => {
+      const toolCall = {
+        name: req.body?.action ?? req.body?.name ?? "unknown",
+        arguments: req.body?.params ?? req.body?.arguments ?? {}
+      };
+      const result = await this.verify(toolCall);
+      if (!result.verified) {
+        return res.status(403).json({
+          blocked: true,
+          action: toolCall.name,
+          reason: result.reason,
+          verificationId: result.verificationId
+        });
+      }
+      req.forgeVerification = result;
+      next();
+    };
+  }
+  /**
+   * Get the Forge client instance for direct API access.
+   */
+  getClient() {
+    return this.forge;
+  }
+};
+var index_default = ForgeSkill;
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  ForgeSkill
+});
+//# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts"],"sourcesContent":["/**\n * Forge OpenClaw Skill\n * ===================\n * Verification skill for OpenClaw agents.\n * Intercepts every tool call and verifies it through Forge before execution.\n *\n * Usage:\n * import { ForgeSkill } from \"@veritera.ai/forge-openclaw\"\n *\n * const skill = new ForgeSkill({ apiKey: \"vt_live_...\" })\n * agent.addSkill(skill)\n *\n * Every action your agent takes is now verified before execution.\n * Blocked actions never reach your tools.\n */\n\nimport Forge from \"@veritera.ai/sdk\";\nimport type { VeriteraConfig, VerifyResponse } from \"@veritera.ai/sdk\";\n\n// ── Types ──\n\nexport interface ForgeSkillConfig {\n /** Forge API key (vt_live_... or vt_test_...) */\n apiKey: string;\n /** Base URL for Forge API (default: https://veritera.ai) */\n baseUrl?: string;\n /** Policy name to evaluate against (optional) */\n policy?: string;\n /** Agent ID override (default: auto-detected from OpenClaw context) */\n agentId?: string;\n /** Actions to skip verification for (e.g., [\"read_file\", \"list_dir\"]) */\n skipActions?: string[];\n /** Called when an action is blocked */\n onBlocked?: (action: string, reason: string | null, result: VerifyResponse) => void;\n /** Called when an action is verified */\n onVerified?: (action: string, result: VerifyResponse) => void;\n /** Enable debug logging */\n debug?: boolean;\n}\n\nexport interface ToolCall {\n name: string;\n arguments?: Record<string, unknown>;\n [key: string]: unknown;\n}\n\nexport interface SkillResult {\n verified: boolean;\n action: string;\n verificationId?: string;\n latencyMs?: number;\n reason?: string | null;\n}\n\n// ── Forge OpenClaw Skill ──\n\nexport class ForgeSkill {\n private forge: InstanceType<typeof Forge>;\n private policy: string | undefined;\n private agentId: string;\n private skipActions: Set<string>;\n private onBlocked?: ForgeSkillConfig[\"onBlocked\"];\n private onVerified?: ForgeSkillConfig[\"onVerified\"];\n private debug: boolean;\n\n /** Skill metadata for OpenClaw registration */\n static readonly skillName = \"forge-verify\";\n static readonly version = \"1.1.2\";\n static readonly description = \"Forge verification — verifies every action before execution\";\n\n constructor(config: ForgeSkillConfig) {\n if (!config.apiKey) {\n throw new Error(\"Forge OpenClaw Skill: apiKey is required\");\n }\n\n this.forge = new Forge({\n apiKey: config.apiKey,\n baseUrl: config.baseUrl,\n });\n this.policy = config.policy;\n this.agentId = config.agentId ?? \"openclaw-agent\";\n this.skipActions = new Set(config.skipActions ?? []);\n this.onBlocked = config.onBlocked;\n this.onVerified = config.onVerified;\n this.debug = config.debug ?? false;\n }\n\n /**\n * Verify a tool call before execution.\n * Returns the verification result. If not verified, the action should be blocked.\n *\n * @param toolCall - The OpenClaw tool call to verify\n * @returns SkillResult with verification status\n */\n async verify(toolCall: ToolCall): Promise<SkillResult> {\n const action = toolCall.name;\n\n // Skip verification for whitelisted actions\n if (this.skipActions.has(action)) {\n if (this.debug) console.log(`[Forge] Skipping verification for: ${action}`);\n return { verified: true, action };\n }\n\n try {\n const result = await this.forge.verifyDecision({\n agentId: this.agentId,\n action,\n params: (toolCall.arguments ?? {}) as Record<string, unknown>,\n policy: this.policy,\n });\n\n if (this.debug) {\n console.log(`[Forge] ${result.verified ? \"✔ VERIFIED\" : \"✗ BLOCKED\"}: ${action} (${result.latencyMs}ms)`);\n }\n\n if (result.verified) {\n this.onVerified?.(action, result);\n } else {\n this.onBlocked?.(action, result.reason, result);\n }\n\n return {\n verified: result.verified,\n action,\n verificationId: result.verificationId,\n latencyMs: result.latencyMs,\n reason: result.reason,\n };\n } catch (err) {\n // Fail-closed: if verification service is unreachable, block the action\n if (this.debug) {\n console.error(`[Forge] Verification failed for ${action}:`, err);\n }\n return {\n verified: false,\n action,\n reason: \"Verification service unreachable — action blocked (fail-closed)\",\n };\n }\n }\n\n /**\n * Pre-execution interceptor for OpenClaw.\n * Register this as a skill hook to verify every action automatically.\n *\n * @param toolCall - The tool call from OpenClaw\n * @returns The tool call if verified, null if blocked\n */\n async intercept(toolCall: ToolCall): Promise<ToolCall | null> {\n const result = await this.verify(toolCall);\n if (!result.verified) {\n return null; // Blocked — OpenClaw will not execute this tool call\n }\n return toolCall; // Verified — proceed with execution\n }\n\n /**\n * Express/Connect-style middleware for custom integrations.\n * Verifies the action in req.body and blocks if denied.\n */\n middleware() {\n return async (req: any, res: any, next: any) => {\n const toolCall: ToolCall = {\n name: req.body?.action ?? req.body?.name ?? \"unknown\",\n arguments: req.body?.params ?? req.body?.arguments ?? {},\n };\n\n const result = await this.verify(toolCall);\n\n if (!result.verified) {\n return res.status(403).json({\n blocked: true,\n action: toolCall.name,\n reason: result.reason,\n verificationId: result.verificationId,\n });\n }\n\n // Attach verification result to request for downstream use\n req.forgeVerification = result;\n next();\n };\n }\n\n /**\n * Get the Forge client instance for direct API access.\n */\n getClient(): InstanceType<typeof Forge> {\n return this.forge;\n }\n}\n\n// Default export for convenience\nexport default ForgeSkill;\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAgBA,iBAAkB;AAwCX,IAAM,aAAN,MAAiB;AAAA,EACd;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA;AAAA,EAGR,OAAgB,YAAY;AAAA,EAC5B,OAAgB,UAAU;AAAA,EAC1B,OAAgB,cAAc;AAAA,EAE9B,YAAY,QAA0B;AACpC,QAAI,CAAC,OAAO,QAAQ;AAClB,YAAM,IAAI,MAAM,0CAA0C;AAAA,IAC5D;AAEA,SAAK,QAAQ,IAAI,WAAAA,QAAM;AAAA,MACrB,QAAQ,OAAO;AAAA,MACf,SAAS,OAAO;AAAA,IAClB,CAAC;AACD,SAAK,SAAS,OAAO;AACrB,SAAK,UAAU,OAAO,WAAW;AACjC,SAAK,cAAc,IAAI,IAAI,OAAO,eAAe,CAAC,CAAC;AACnD,SAAK,YAAY,OAAO;AACxB,SAAK,aAAa,OAAO;AACzB,SAAK,QAAQ,OAAO,SAAS;AAAA,EAC/B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAO,UAA0C;AACrD,UAAM,SAAS,SAAS;AAGxB,QAAI,KAAK,YAAY,IAAI,MAAM,GAAG;AAChC,UAAI,KAAK,MAAO,SAAQ,IAAI,sCAAsC,MAAM,EAAE;AAC1E,aAAO,EAAE,UAAU,MAAM,OAAO;AAAA,IAClC;AAEA,QAAI;AACF,YAAM,SAAS,MAAM,KAAK,MAAM,eAAe;AAAA,QAC7C,SAAS,KAAK;AAAA,QACd;AAAA,QACA,QAAS,SAAS,aAAa,CAAC;AAAA,QAChC,QAAQ,KAAK;AAAA,MACf,CAAC;AAED,UAAI,KAAK,OAAO;AACd,gBAAQ,IAAI,WAAW,OAAO,WAAW,oBAAe,gBAAW,KAAK,MAAM,KAAK,OAAO,SAAS,KAAK;AAAA,MAC1G;AAEA,UAAI,OAAO,UAAU;AACnB,aAAK,aAAa,QAAQ,MAAM;AAAA,MAClC,OAAO;AACL,aAAK,YAAY,QAAQ,OAAO,QAAQ,MAAM;AAAA,MAChD;AAEA,aAAO;AAAA,QACL,UAAU,OAAO;AAAA,QACjB;AAAA,QACA,gBAAgB,OAAO;AAAA,QACvB,WAAW,OAAO;AAAA,QAClB,QAAQ,OAAO;AAAA,MACjB;AAAA,IACF,SAAS,KAAK;AAEZ,UAAI,KAAK,OAAO;AACd,gBAAQ,MAAM,mCAAmC,MAAM,KAAK,GAAG;AAAA,MACjE;AACA,aAAO;AAAA,QACL,UAAU;AAAA,QACV;AAAA,QACA,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAU,UAA8C;AAC5D,UAAM,SAAS,MAAM,KAAK,OAAO,QAAQ;AACzC,QAAI,CAAC,OAAO,UAAU;AACpB,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAa;AACX,WAAO,OAAO,KAAU,KAAU,SAAc;AAC9C,YAAM,WAAqB;AAAA,QACzB,MAAM,IAAI,MAAM,UAAU,IAAI,MAAM,QAAQ;AAAA,QAC5C,WAAW,IAAI,MAAM,UAAU,IAAI,MAAM,aAAa,CAAC;AAAA,MACzD;AAEA,YAAM,SAAS,MAAM,KAAK,OAAO,QAAQ;AAEzC,UAAI,CAAC,OAAO,UAAU;AACpB,eAAO,IAAI,OAAO,GAAG,EAAE,KAAK;AAAA,UAC1B,SAAS;AAAA,UACT,QAAQ,SAAS;AAAA,UACjB,QAAQ,OAAO;AAAA,UACf,gBAAgB,OAAO;AAAA,QACzB,CAAC;AAAA,MACH;AAGA,UAAI,oBAAoB;AACxB,WAAK;AAAA,IACP;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,YAAwC;AACtC,WAAO,KAAK;AAAA,EACd;AACF;AAGA,IAAO,gBAAQ;","names":["Forge"]}

package/dist/index.d.cts ADDED Viewed

@@ -0,0 +1,89 @@
+import Forge, { VerifyResponse } from '@veritera.ai/sdk';
+/**
+ * Forge OpenClaw Skill
+ * ===================
+ * Verification skill for OpenClaw agents.
+ * Intercepts every tool call and verifies it through Forge before execution.
+ *
+ * Usage:
+ *   import { ForgeSkill } from "@veritera.ai/forge-openclaw"
+ *
+ *   const skill = new ForgeSkill({ apiKey: "vt_live_..." })
+ *   agent.addSkill(skill)
+ *
+ * Every action your agent takes is now verified before execution.
+ * Blocked actions never reach your tools.
+ */
+interface ForgeSkillConfig {
+    /** Forge API key (vt_live_... or vt_test_...) */
+    apiKey: string;
+    /** Base URL for Forge API (default: https://veritera.ai) */
+    baseUrl?: string;
+    /** Policy name to evaluate against (optional) */
+    policy?: string;
+    /** Agent ID override (default: auto-detected from OpenClaw context) */
+    agentId?: string;
+    /** Actions to skip verification for (e.g., ["read_file", "list_dir"]) */
+    skipActions?: string[];
+    /** Called when an action is blocked */
+    onBlocked?: (action: string, reason: string | null, result: VerifyResponse) => void;
+    /** Called when an action is verified */
+    onVerified?: (action: string, result: VerifyResponse) => void;
+    /** Enable debug logging */
+    debug?: boolean;
+}
+interface ToolCall {
+    name: string;
+    arguments?: Record<string, unknown>;
+    [key: string]: unknown;
+}
+interface SkillResult {
+    verified: boolean;
+    action: string;
+    verificationId?: string;
+    latencyMs?: number;
+    reason?: string | null;
+}
+declare class ForgeSkill {
+    private forge;
+    private policy;
+    private agentId;
+    private skipActions;
+    private onBlocked?;
+    private onVerified?;
+    private debug;
+    /** Skill metadata for OpenClaw registration */
+    static readonly skillName = "forge-verify";
+    static readonly version = "1.1.2";
+    static readonly description = "Forge verification \u2014 verifies every action before execution";
+    constructor(config: ForgeSkillConfig);
+    /**
+     * Verify a tool call before execution.
+     * Returns the verification result. If not verified, the action should be blocked.
+     *
+     * @param toolCall - The OpenClaw tool call to verify
+     * @returns SkillResult with verification status
+     */
+    verify(toolCall: ToolCall): Promise<SkillResult>;
+    /**
+     * Pre-execution interceptor for OpenClaw.
+     * Register this as a skill hook to verify every action automatically.
+     *
+     * @param toolCall - The tool call from OpenClaw
+     * @returns The tool call if verified, null if blocked
+     */
+    intercept(toolCall: ToolCall): Promise<ToolCall | null>;
+    /**
+     * Express/Connect-style middleware for custom integrations.
+     * Verifies the action in req.body and blocks if denied.
+     */
+    middleware(): (req: any, res: any, next: any) => Promise<any>;
+    /**
+     * Get the Forge client instance for direct API access.
+     */
+    getClient(): InstanceType<typeof Forge>;
+}
+export { ForgeSkill, type ForgeSkillConfig, type SkillResult, type ToolCall, ForgeSkill as default };

package/dist/index.d.ts ADDED Viewed

@@ -0,0 +1,89 @@
+import Forge, { VerifyResponse } from '@veritera.ai/sdk';
+/**
+ * Forge OpenClaw Skill
+ * ===================
+ * Verification skill for OpenClaw agents.
+ * Intercepts every tool call and verifies it through Forge before execution.
+ *
+ * Usage:
+ *   import { ForgeSkill } from "@veritera.ai/forge-openclaw"
+ *
+ *   const skill = new ForgeSkill({ apiKey: "vt_live_..." })
+ *   agent.addSkill(skill)
+ *
+ * Every action your agent takes is now verified before execution.
+ * Blocked actions never reach your tools.
+ */
+interface ForgeSkillConfig {
+    /** Forge API key (vt_live_... or vt_test_...) */
+    apiKey: string;
+    /** Base URL for Forge API (default: https://veritera.ai) */
+    baseUrl?: string;
+    /** Policy name to evaluate against (optional) */
+    policy?: string;
+    /** Agent ID override (default: auto-detected from OpenClaw context) */
+    agentId?: string;
+    /** Actions to skip verification for (e.g., ["read_file", "list_dir"]) */
+    skipActions?: string[];
+    /** Called when an action is blocked */
+    onBlocked?: (action: string, reason: string | null, result: VerifyResponse) => void;
+    /** Called when an action is verified */
+    onVerified?: (action: string, result: VerifyResponse) => void;
+    /** Enable debug logging */
+    debug?: boolean;
+}
+interface ToolCall {
+    name: string;
+    arguments?: Record<string, unknown>;
+    [key: string]: unknown;
+}
+interface SkillResult {
+    verified: boolean;
+    action: string;
+    verificationId?: string;
+    latencyMs?: number;
+    reason?: string | null;
+}
+declare class ForgeSkill {
+    private forge;
+    private policy;
+    private agentId;
+    private skipActions;
+    private onBlocked?;
+    private onVerified?;
+    private debug;
+    /** Skill metadata for OpenClaw registration */
+    static readonly skillName = "forge-verify";
+    static readonly version = "1.1.2";
+    static readonly description = "Forge verification \u2014 verifies every action before execution";
+    constructor(config: ForgeSkillConfig);
+    /**
+     * Verify a tool call before execution.
+     * Returns the verification result. If not verified, the action should be blocked.
+     *
+     * @param toolCall - The OpenClaw tool call to verify
+     * @returns SkillResult with verification status
+     */
+    verify(toolCall: ToolCall): Promise<SkillResult>;
+    /**
+     * Pre-execution interceptor for OpenClaw.
+     * Register this as a skill hook to verify every action automatically.
+     *
+     * @param toolCall - The tool call from OpenClaw
+     * @returns The tool call if verified, null if blocked
+     */
+    intercept(toolCall: ToolCall): Promise<ToolCall | null>;
+    /**
+     * Express/Connect-style middleware for custom integrations.
+     * Verifies the action in req.body and blocks if denied.
+     */
+    middleware(): (req: any, res: any, next: any) => Promise<any>;
+    /**
+     * Get the Forge client instance for direct API access.
+     */
+    getClient(): InstanceType<typeof Forge>;
+}
+export { ForgeSkill, type ForgeSkillConfig, type SkillResult, type ToolCall, ForgeSkill as default };

package/dist/index.js ADDED Viewed

@@ -0,0 +1,125 @@
+// src/index.ts
+import Forge from "@veritera.ai/sdk";
+var ForgeSkill = class {
+  forge;
+  policy;
+  agentId;
+  skipActions;
+  onBlocked;
+  onVerified;
+  debug;
+  /** Skill metadata for OpenClaw registration */
+  static skillName = "forge-verify";
+  static version = "1.1.2";
+  static description = "Forge verification \u2014 verifies every action before execution";
+  constructor(config) {
+    if (!config.apiKey) {
+      throw new Error("Forge OpenClaw Skill: apiKey is required");
+    }
+    this.forge = new Forge({
+      apiKey: config.apiKey,
+      baseUrl: config.baseUrl
+    });
+    this.policy = config.policy;
+    this.agentId = config.agentId ?? "openclaw-agent";
+    this.skipActions = new Set(config.skipActions ?? []);
+    this.onBlocked = config.onBlocked;
+    this.onVerified = config.onVerified;
+    this.debug = config.debug ?? false;
+  }
+  /**
+   * Verify a tool call before execution.
+   * Returns the verification result. If not verified, the action should be blocked.
+   *
+   * @param toolCall - The OpenClaw tool call to verify
+   * @returns SkillResult with verification status
+   */
+  async verify(toolCall) {
+    const action = toolCall.name;
+    if (this.skipActions.has(action)) {
+      if (this.debug) console.log(`[Forge] Skipping verification for: ${action}`);
+      return { verified: true, action };
+    }
+    try {
+      const result = await this.forge.verifyDecision({
+        agentId: this.agentId,
+        action,
+        params: toolCall.arguments ?? {},
+        policy: this.policy
+      });
+      if (this.debug) {
+        console.log(`[Forge] ${result.verified ? "\u2714 VERIFIED" : "\u2717 BLOCKED"}: ${action} (${result.latencyMs}ms)`);
+      }
+      if (result.verified) {
+        this.onVerified?.(action, result);
+      } else {
+        this.onBlocked?.(action, result.reason, result);
+      }
+      return {
+        verified: result.verified,
+        action,
+        verificationId: result.verificationId,
+        latencyMs: result.latencyMs,
+        reason: result.reason
+      };
+    } catch (err) {
+      if (this.debug) {
+        console.error(`[Forge] Verification failed for ${action}:`, err);
+      }
+      return {
+        verified: false,
+        action,
+        reason: "Verification service unreachable \u2014 action blocked (fail-closed)"
+      };
+    }
+  }
+  /**
+   * Pre-execution interceptor for OpenClaw.
+   * Register this as a skill hook to verify every action automatically.
+   *
+   * @param toolCall - The tool call from OpenClaw
+   * @returns The tool call if verified, null if blocked
+   */
+  async intercept(toolCall) {
+    const result = await this.verify(toolCall);
+    if (!result.verified) {
+      return null;
+    }
+    return toolCall;
+  }
+  /**
+   * Express/Connect-style middleware for custom integrations.
+   * Verifies the action in req.body and blocks if denied.
+   */
+  middleware() {
+    return async (req, res, next) => {
+      const toolCall = {
+        name: req.body?.action ?? req.body?.name ?? "unknown",
+        arguments: req.body?.params ?? req.body?.arguments ?? {}
+      };
+      const result = await this.verify(toolCall);
+      if (!result.verified) {
+        return res.status(403).json({
+          blocked: true,
+          action: toolCall.name,
+          reason: result.reason,
+          verificationId: result.verificationId
+        });
+      }
+      req.forgeVerification = result;
+      next();
+    };
+  }
+  /**
+   * Get the Forge client instance for direct API access.
+   */
+  getClient() {
+    return this.forge;
+  }
+};
+var index_default = ForgeSkill;
+export {
+  ForgeSkill,
+  index_default as default
+};
+//# sourceMappingURL=index.js.map

package/dist/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../src/index.ts"],"sourcesContent":["/**\n * Forge OpenClaw Skill\n * ===================\n * Verification skill for OpenClaw agents.\n * Intercepts every tool call and verifies it through Forge before execution.\n *\n * Usage:\n * import { ForgeSkill } from \"@veritera.ai/forge-openclaw\"\n *\n * const skill = new ForgeSkill({ apiKey: \"vt_live_...\" })\n * agent.addSkill(skill)\n *\n * Every action your agent takes is now verified before execution.\n * Blocked actions never reach your tools.\n */\n\nimport Forge from \"@veritera.ai/sdk\";\nimport type { VeriteraConfig, VerifyResponse } from \"@veritera.ai/sdk\";\n\n// ── Types ──\n\nexport interface ForgeSkillConfig {\n /** Forge API key (vt_live_... or vt_test_...) */\n apiKey: string;\n /** Base URL for Forge API (default: https://veritera.ai) */\n baseUrl?: string;\n /** Policy name to evaluate against (optional) */\n policy?: string;\n /** Agent ID override (default: auto-detected from OpenClaw context) */\n agentId?: string;\n /** Actions to skip verification for (e.g., [\"read_file\", \"list_dir\"]) */\n skipActions?: string[];\n /** Called when an action is blocked */\n onBlocked?: (action: string, reason: string | null, result: VerifyResponse) => void;\n /** Called when an action is verified */\n onVerified?: (action: string, result: VerifyResponse) => void;\n /** Enable debug logging */\n debug?: boolean;\n}\n\nexport interface ToolCall {\n name: string;\n arguments?: Record<string, unknown>;\n [key: string]: unknown;\n}\n\nexport interface SkillResult {\n verified: boolean;\n action: string;\n verificationId?: string;\n latencyMs?: number;\n reason?: string | null;\n}\n\n// ── Forge OpenClaw Skill ──\n\nexport class ForgeSkill {\n private forge: InstanceType<typeof Forge>;\n private policy: string | undefined;\n private agentId: string;\n private skipActions: Set<string>;\n private onBlocked?: ForgeSkillConfig[\"onBlocked\"];\n private onVerified?: ForgeSkillConfig[\"onVerified\"];\n private debug: boolean;\n\n /** Skill metadata for OpenClaw registration */\n static readonly skillName = \"forge-verify\";\n static readonly version = \"1.1.2\";\n static readonly description = \"Forge verification — verifies every action before execution\";\n\n constructor(config: ForgeSkillConfig) {\n if (!config.apiKey) {\n throw new Error(\"Forge OpenClaw Skill: apiKey is required\");\n }\n\n this.forge = new Forge({\n apiKey: config.apiKey,\n baseUrl: config.baseUrl,\n });\n this.policy = config.policy;\n this.agentId = config.agentId ?? \"openclaw-agent\";\n this.skipActions = new Set(config.skipActions ?? []);\n this.onBlocked = config.onBlocked;\n this.onVerified = config.onVerified;\n this.debug = config.debug ?? false;\n }\n\n /**\n * Verify a tool call before execution.\n * Returns the verification result. If not verified, the action should be blocked.\n *\n * @param toolCall - The OpenClaw tool call to verify\n * @returns SkillResult with verification status\n */\n async verify(toolCall: ToolCall): Promise<SkillResult> {\n const action = toolCall.name;\n\n // Skip verification for whitelisted actions\n if (this.skipActions.has(action)) {\n if (this.debug) console.log(`[Forge] Skipping verification for: ${action}`);\n return { verified: true, action };\n }\n\n try {\n const result = await this.forge.verifyDecision({\n agentId: this.agentId,\n action,\n params: (toolCall.arguments ?? {}) as Record<string, unknown>,\n policy: this.policy,\n });\n\n if (this.debug) {\n console.log(`[Forge] ${result.verified ? \"✔ VERIFIED\" : \"✗ BLOCKED\"}: ${action} (${result.latencyMs}ms)`);\n }\n\n if (result.verified) {\n this.onVerified?.(action, result);\n } else {\n this.onBlocked?.(action, result.reason, result);\n }\n\n return {\n verified: result.verified,\n action,\n verificationId: result.verificationId,\n latencyMs: result.latencyMs,\n reason: result.reason,\n };\n } catch (err) {\n // Fail-closed: if verification service is unreachable, block the action\n if (this.debug) {\n console.error(`[Forge] Verification failed for ${action}:`, err);\n }\n return {\n verified: false,\n action,\n reason: \"Verification service unreachable — action blocked (fail-closed)\",\n };\n }\n }\n\n /**\n * Pre-execution interceptor for OpenClaw.\n * Register this as a skill hook to verify every action automatically.\n *\n * @param toolCall - The tool call from OpenClaw\n * @returns The tool call if verified, null if blocked\n */\n async intercept(toolCall: ToolCall): Promise<ToolCall | null> {\n const result = await this.verify(toolCall);\n if (!result.verified) {\n return null; // Blocked — OpenClaw will not execute this tool call\n }\n return toolCall; // Verified — proceed with execution\n }\n\n /**\n * Express/Connect-style middleware for custom integrations.\n * Verifies the action in req.body and blocks if denied.\n */\n middleware() {\n return async (req: any, res: any, next: any) => {\n const toolCall: ToolCall = {\n name: req.body?.action ?? req.body?.name ?? \"unknown\",\n arguments: req.body?.params ?? req.body?.arguments ?? {},\n };\n\n const result = await this.verify(toolCall);\n\n if (!result.verified) {\n return res.status(403).json({\n blocked: true,\n action: toolCall.name,\n reason: result.reason,\n verificationId: result.verificationId,\n });\n }\n\n // Attach verification result to request for downstream use\n req.forgeVerification = result;\n next();\n };\n }\n\n /**\n * Get the Forge client instance for direct API access.\n */\n getClient(): InstanceType<typeof Forge> {\n return this.forge;\n }\n}\n\n// Default export for convenience\nexport default ForgeSkill;\n"],"mappings":";AAgBA,OAAO,WAAW;AAwCX,IAAM,aAAN,MAAiB;AAAA,EACd;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA;AAAA,EAGR,OAAgB,YAAY;AAAA,EAC5B,OAAgB,UAAU;AAAA,EAC1B,OAAgB,cAAc;AAAA,EAE9B,YAAY,QAA0B;AACpC,QAAI,CAAC,OAAO,QAAQ;AAClB,YAAM,IAAI,MAAM,0CAA0C;AAAA,IAC5D;AAEA,SAAK,QAAQ,IAAI,MAAM;AAAA,MACrB,QAAQ,OAAO;AAAA,MACf,SAAS,OAAO;AAAA,IAClB,CAAC;AACD,SAAK,SAAS,OAAO;AACrB,SAAK,UAAU,OAAO,WAAW;AACjC,SAAK,cAAc,IAAI,IAAI,OAAO,eAAe,CAAC,CAAC;AACnD,SAAK,YAAY,OAAO;AACxB,SAAK,aAAa,OAAO;AACzB,SAAK,QAAQ,OAAO,SAAS;AAAA,EAC/B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAO,UAA0C;AACrD,UAAM,SAAS,SAAS;AAGxB,QAAI,KAAK,YAAY,IAAI,MAAM,GAAG;AAChC,UAAI,KAAK,MAAO,SAAQ,IAAI,sCAAsC,MAAM,EAAE;AAC1E,aAAO,EAAE,UAAU,MAAM,OAAO;AAAA,IAClC;AAEA,QAAI;AACF,YAAM,SAAS,MAAM,KAAK,MAAM,eAAe;AAAA,QAC7C,SAAS,KAAK;AAAA,QACd;AAAA,QACA,QAAS,SAAS,aAAa,CAAC;AAAA,QAChC,QAAQ,KAAK;AAAA,MACf,CAAC;AAED,UAAI,KAAK,OAAO;AACd,gBAAQ,IAAI,WAAW,OAAO,WAAW,oBAAe,gBAAW,KAAK,MAAM,KAAK,OAAO,SAAS,KAAK;AAAA,MAC1G;AAEA,UAAI,OAAO,UAAU;AACnB,aAAK,aAAa,QAAQ,MAAM;AAAA,MAClC,OAAO;AACL,aAAK,YAAY,QAAQ,OAAO,QAAQ,MAAM;AAAA,MAChD;AAEA,aAAO;AAAA,QACL,UAAU,OAAO;AAAA,QACjB;AAAA,QACA,gBAAgB,OAAO;AAAA,QACvB,WAAW,OAAO;AAAA,QAClB,QAAQ,OAAO;AAAA,MACjB;AAAA,IACF,SAAS,KAAK;AAEZ,UAAI,KAAK,OAAO;AACd,gBAAQ,MAAM,mCAAmC,MAAM,KAAK,GAAG;AAAA,MACjE;AACA,aAAO;AAAA,QACL,UAAU;AAAA,QACV;AAAA,QACA,QAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAU,UAA8C;AAC5D,UAAM,SAAS,MAAM,KAAK,OAAO,QAAQ;AACzC,QAAI,CAAC,OAAO,UAAU;AACpB,aAAO;AAAA,IACT;AACA,WAAO;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAa;AACX,WAAO,OAAO,KAAU,KAAU,SAAc;AAC9C,YAAM,WAAqB;AAAA,QACzB,MAAM,IAAI,MAAM,UAAU,IAAI,MAAM,QAAQ;AAAA,QAC5C,WAAW,IAAI,MAAM,UAAU,IAAI,MAAM,aAAa,CAAC;AAAA,MACzD;AAEA,YAAM,SAAS,MAAM,KAAK,OAAO,QAAQ;AAEzC,UAAI,CAAC,OAAO,UAAU;AACpB,eAAO,IAAI,OAAO,GAAG,EAAE,KAAK;AAAA,UAC1B,SAAS;AAAA,UACT,QAAQ,SAAS;AAAA,UACjB,QAAQ,OAAO;AAAA,UACf,gBAAgB,OAAO;AAAA,QACzB,CAAC;AAAA,MACH;AAGA,UAAI,oBAAoB;AACxB,WAAK;AAAA,IACP;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,YAAwC;AACtC,WAAO,KAAK;AAAA,EACd;AACF;AAGA,IAAO,gBAAQ;","names":[]}

package/package.json ADDED Viewed

@@ -0,0 +1,31 @@
+{
+  "name": "@veritera.ai/forge-openclaw",
+  "version": "1.1.2",
+  "description": "Forge verification skill for OpenClaw agents — verify every action before execution",
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs",
+      "types": "./dist/index.d.ts"
+    }
+  },
+  "files": ["dist"],
+  "scripts": {
+    "build": "tsup",
+    "test": "vitest run"
+  },
+  "keywords": ["forge", "veritera", "openclaw", "ai", "verification", "agent", "skill"],
+  "author": "Veritera AI <engineering@veritera.ai>",
+  "license": "MIT",
+  "dependencies": {
+    "@veritera.ai/sdk": "^1.1.2"
+  },
+  "devDependencies": {
+    "tsup": "^8.0.0",
+    "typescript": "^5.0.0"
+  }
+}