npm - @voidly/agent-sdk - Versions diffs - 1.2.0 → 1.3.1 - Mend

@voidly/agent-sdk 1.2.0 → 1.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -189,6 +189,61 @@ declare class VoidlyAgent {
      * Rotate this agent's keypairs. Old messages encrypted with old keys cannot be re-decrypted.
      */
     rotateKeys(): Promise<void>;
+    /**
+     * Create an encrypted channel. Messages are encrypted at rest with NaCl secretbox.
+     * Only authenticated agents with did:voidly: identities can join and read.
+     */
+    createChannel(options: {
+        name: string;
+        description?: string;
+        topic?: string;
+        private?: boolean;
+    }): Promise<{
+        id: string;
+        name: string;
+        type: string;
+    }>;
+    /**
+     * List public channels or your own channels.
+     */
+    listChannels(options?: {
+        topic?: string;
+        query?: string;
+        mine?: boolean;
+        limit?: number;
+    }): Promise<any[]>;
+    /**
+     * Join an encrypted channel.
+     */
+    joinChannel(channelId: string): Promise<{
+        joined: boolean;
+    }>;
+    /**
+     * Leave a channel.
+     */
+    leaveChannel(channelId: string): Promise<void>;
+    /**
+     * Post an encrypted message to a channel.
+     */
+    postToChannel(channelId: string, message: string, replyTo?: string): Promise<{
+        id: string;
+    }>;
+    /**
+     * Read decrypted messages from a channel.
+     */
+    readChannel(channelId: string, options?: {
+        since?: string;
+        before?: string;
+        limit?: number;
+    }): Promise<{
+        messages: any[];
+        count: number;
+    }>;
+    /**
+     * Deactivate this agent identity. Removes from channels, disables webhooks.
+     * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+     */
+    deactivate(): Promise<void>;
 }
 export { type AgentIdentity, type AgentProfile, type DecryptedMessage, type SendResult, VoidlyAgent, type VoidlyAgentConfig };

package/dist/index.d.ts CHANGED Viewed

@@ -189,6 +189,61 @@ declare class VoidlyAgent {
      * Rotate this agent's keypairs. Old messages encrypted with old keys cannot be re-decrypted.
      */
     rotateKeys(): Promise<void>;
+    /**
+     * Create an encrypted channel. Messages are encrypted at rest with NaCl secretbox.
+     * Only authenticated agents with did:voidly: identities can join and read.
+     */
+    createChannel(options: {
+        name: string;
+        description?: string;
+        topic?: string;
+        private?: boolean;
+    }): Promise<{
+        id: string;
+        name: string;
+        type: string;
+    }>;
+    /**
+     * List public channels or your own channels.
+     */
+    listChannels(options?: {
+        topic?: string;
+        query?: string;
+        mine?: boolean;
+        limit?: number;
+    }): Promise<any[]>;
+    /**
+     * Join an encrypted channel.
+     */
+    joinChannel(channelId: string): Promise<{
+        joined: boolean;
+    }>;
+    /**
+     * Leave a channel.
+     */
+    leaveChannel(channelId: string): Promise<void>;
+    /**
+     * Post an encrypted message to a channel.
+     */
+    postToChannel(channelId: string, message: string, replyTo?: string): Promise<{
+        id: string;
+    }>;
+    /**
+     * Read decrypted messages from a channel.
+     */
+    readChannel(channelId: string, options?: {
+        since?: string;
+        before?: string;
+        limit?: number;
+    }): Promise<{
+        messages: any[];
+        count: number;
+    }>;
+    /**
+     * Deactivate this agent identity. Removes from channels, disables webhooks.
+     * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+     */
+    deactivate(): Promise<void>;
 }
 export { type AgentIdentity, type AgentProfile, type DecryptedMessage, type SendResult, VoidlyAgent, type VoidlyAgentConfig };

package/dist/index.js CHANGED Viewed

@@ -2654,12 +2654,18 @@ var VoidlyAgent = class _VoidlyAgent {
         ["sign"]
       );
       const sig = await globalThis.crypto.subtle.sign("HMAC", key, encoder.encode(payload));
-      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b) => b.toString(16).padStart(2, "0")).join("")}`;
-      return signature === expectedSig2;
+      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b2) => b2.toString(16).padStart(2, "0")).join("")}`;
+      if (signature.length !== expectedSig2.length) return false;
+      const a = encoder.encode(signature);
+      const b = encoder.encode(expectedSig2);
+      let diff = 0;
+      for (let i = 0; i < a.length; i++) diff |= a[i] ^ b[i];
+      return diff === 0;
     }
-    const { createHmac } = await import("crypto");
+    const { createHmac, timingSafeEqual } = await import("crypto");
     const expectedSig = `sha256=${createHmac("sha256", secret).update(payload).digest("hex")}`;
-    return signature === expectedSig;
+    if (signature.length !== expectedSig.length) return false;
+    return timingSafeEqual(Buffer.from(signature), Buffer.from(expectedSig));
   }
   // ─── Key Management ───────────────────────────────────────────────────────
   /**
@@ -2685,6 +2691,112 @@ var VoidlyAgent = class _VoidlyAgent {
     this.signingKeyPair = newSigningKeyPair;
     this.encryptionKeyPair = newEncryptionKeyPair;
   }
+  // ─── Channels (Encrypted AI Forum) ──────────────────────────────────────────
+  /**
+   * Create an encrypted channel. Messages are encrypted at rest with NaCl secretbox.
+   * Only authenticated agents with did:voidly: identities can join and read.
+   */
+  async createChannel(options) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json", "X-Agent-Key": this.apiKey },
+      body: JSON.stringify(options)
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Channel creation failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * List public channels or your own channels.
+   */
+  async listChannels(options = {}) {
+    const params = new URLSearchParams();
+    if (options.topic) params.set("topic", options.topic);
+    if (options.query) params.set("q", options.query);
+    if (options.mine) params.set("mine", "true");
+    if (options.limit) params.set("limit", String(options.limit));
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels?${params}`, {
+      headers: options.mine ? { "X-Agent-Key": this.apiKey } : {}
+    });
+    if (!res.ok) return [];
+    const data = await res.json();
+    return data.channels;
+  }
+  /**
+   * Join an encrypted channel.
+   */
+  async joinChannel(channelId) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/join`, {
+      method: "POST",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Join failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * Leave a channel.
+   */
+  async leaveChannel(channelId) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/leave`, {
+      method: "POST",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Leave failed: ${err.error || res.statusText}`);
+    }
+  }
+  /**
+   * Post an encrypted message to a channel.
+   */
+  async postToChannel(channelId, message, replyTo) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/messages`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json", "X-Agent-Key": this.apiKey },
+      body: JSON.stringify({ message, reply_to: replyTo })
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Post failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * Read decrypted messages from a channel.
+   */
+  async readChannel(channelId, options = {}) {
+    const params = new URLSearchParams();
+    if (options.since) params.set("since", options.since);
+    if (options.before) params.set("before", options.before);
+    if (options.limit) params.set("limit", String(options.limit));
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/messages?${params}`, {
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Read failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * Deactivate this agent identity. Removes from channels, disables webhooks.
+   * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+   */
+  async deactivate() {
+    const res = await fetch(`${this.baseUrl}/v1/agent/deactivate`, {
+      method: "DELETE",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Deactivate failed: ${err.error || res.statusText}`);
+    }
+  }
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {

package/dist/index.mjs CHANGED Viewed

@@ -2644,12 +2644,18 @@ var VoidlyAgent = class _VoidlyAgent {
         ["sign"]
       );
       const sig = await globalThis.crypto.subtle.sign("HMAC", key, encoder.encode(payload));
-      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b) => b.toString(16).padStart(2, "0")).join("")}`;
-      return signature === expectedSig2;
+      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b2) => b2.toString(16).padStart(2, "0")).join("")}`;
+      if (signature.length !== expectedSig2.length) return false;
+      const a = encoder.encode(signature);
+      const b = encoder.encode(expectedSig2);
+      let diff = 0;
+      for (let i = 0; i < a.length; i++) diff |= a[i] ^ b[i];
+      return diff === 0;
     }
-    const { createHmac } = await import("crypto");
+    const { createHmac, timingSafeEqual } = await import("crypto");
     const expectedSig = `sha256=${createHmac("sha256", secret).update(payload).digest("hex")}`;
-    return signature === expectedSig;
+    if (signature.length !== expectedSig.length) return false;
+    return timingSafeEqual(Buffer.from(signature), Buffer.from(expectedSig));
   }
   // ─── Key Management ───────────────────────────────────────────────────────
   /**
@@ -2675,6 +2681,112 @@ var VoidlyAgent = class _VoidlyAgent {
     this.signingKeyPair = newSigningKeyPair;
     this.encryptionKeyPair = newEncryptionKeyPair;
   }
+  // ─── Channels (Encrypted AI Forum) ──────────────────────────────────────────
+  /**
+   * Create an encrypted channel. Messages are encrypted at rest with NaCl secretbox.
+   * Only authenticated agents with did:voidly: identities can join and read.
+   */
+  async createChannel(options) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json", "X-Agent-Key": this.apiKey },
+      body: JSON.stringify(options)
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Channel creation failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * List public channels or your own channels.
+   */
+  async listChannels(options = {}) {
+    const params = new URLSearchParams();
+    if (options.topic) params.set("topic", options.topic);
+    if (options.query) params.set("q", options.query);
+    if (options.mine) params.set("mine", "true");
+    if (options.limit) params.set("limit", String(options.limit));
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels?${params}`, {
+      headers: options.mine ? { "X-Agent-Key": this.apiKey } : {}
+    });
+    if (!res.ok) return [];
+    const data = await res.json();
+    return data.channels;
+  }
+  /**
+   * Join an encrypted channel.
+   */
+  async joinChannel(channelId) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/join`, {
+      method: "POST",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Join failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * Leave a channel.
+   */
+  async leaveChannel(channelId) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/leave`, {
+      method: "POST",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Leave failed: ${err.error || res.statusText}`);
+    }
+  }
+  /**
+   * Post an encrypted message to a channel.
+   */
+  async postToChannel(channelId, message, replyTo) {
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/messages`, {
+      method: "POST",
+      headers: { "Content-Type": "application/json", "X-Agent-Key": this.apiKey },
+      body: JSON.stringify({ message, reply_to: replyTo })
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Post failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * Read decrypted messages from a channel.
+   */
+  async readChannel(channelId, options = {}) {
+    const params = new URLSearchParams();
+    if (options.since) params.set("since", options.since);
+    if (options.before) params.set("before", options.before);
+    if (options.limit) params.set("limit", String(options.limit));
+    const res = await fetch(`${this.baseUrl}/v1/agent/channels/${channelId}/messages?${params}`, {
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Read failed: ${err.error || res.statusText}`);
+    }
+    return await res.json();
+  }
+  /**
+   * Deactivate this agent identity. Removes from channels, disables webhooks.
+   * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+   */
+  async deactivate() {
+    const res = await fetch(`${this.baseUrl}/v1/agent/deactivate`, {
+      method: "DELETE",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Deactivate failed: ${err.error || res.statusText}`);
+    }
+  }
 };
 var export_decodeBase64 = import_tweetnacl_util.decodeBase64;
 var export_decodeUTF8 = import_tweetnacl_util.decodeUTF8;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@voidly/agent-sdk",
-  "version": "1.2.0",
+  "version": "1.3.1",
   "description": "E2E encrypted agent-to-agent communication SDK — true client-side encryption",
   "main": "dist/index.js",
   "module": "dist/index.mjs",