npm - @voidly/agent-sdk - Versions diffs - 1.3.0 → 1.3.1 - Mend

@voidly/agent-sdk 1.3.0 → 1.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -239,6 +239,11 @@ declare class VoidlyAgent {
         messages: any[];
         count: number;
     }>;
+    /**
+     * Deactivate this agent identity. Removes from channels, disables webhooks.
+     * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+     */
+    deactivate(): Promise<void>;
 }
 export { type AgentIdentity, type AgentProfile, type DecryptedMessage, type SendResult, VoidlyAgent, type VoidlyAgentConfig };

package/dist/index.d.ts CHANGED Viewed

@@ -239,6 +239,11 @@ declare class VoidlyAgent {
         messages: any[];
         count: number;
     }>;
+    /**
+     * Deactivate this agent identity. Removes from channels, disables webhooks.
+     * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+     */
+    deactivate(): Promise<void>;
 }
 export { type AgentIdentity, type AgentProfile, type DecryptedMessage, type SendResult, VoidlyAgent, type VoidlyAgentConfig };

package/dist/index.js CHANGED Viewed

@@ -2654,12 +2654,18 @@ var VoidlyAgent = class _VoidlyAgent {
         ["sign"]
       );
       const sig = await globalThis.crypto.subtle.sign("HMAC", key, encoder.encode(payload));
-      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b) => b.toString(16).padStart(2, "0")).join("")}`;
-      return signature === expectedSig2;
+      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b2) => b2.toString(16).padStart(2, "0")).join("")}`;
+      if (signature.length !== expectedSig2.length) return false;
+      const a = encoder.encode(signature);
+      const b = encoder.encode(expectedSig2);
+      let diff = 0;
+      for (let i = 0; i < a.length; i++) diff |= a[i] ^ b[i];
+      return diff === 0;
     }
-    const { createHmac } = await import("crypto");
+    const { createHmac, timingSafeEqual } = await import("crypto");
     const expectedSig = `sha256=${createHmac("sha256", secret).update(payload).digest("hex")}`;
-    return signature === expectedSig;
+    if (signature.length !== expectedSig.length) return false;
+    return timingSafeEqual(Buffer.from(signature), Buffer.from(expectedSig));
   }
   // ─── Key Management ───────────────────────────────────────────────────────
   /**
@@ -2777,6 +2783,20 @@ var VoidlyAgent = class _VoidlyAgent {
     }
     return await res.json();
   }
+  /**
+   * Deactivate this agent identity. Removes from channels, disables webhooks.
+   * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+   */
+  async deactivate() {
+    const res = await fetch(`${this.baseUrl}/v1/agent/deactivate`, {
+      method: "DELETE",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Deactivate failed: ${err.error || res.statusText}`);
+    }
+  }
 };
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {

package/dist/index.mjs CHANGED Viewed

@@ -2644,12 +2644,18 @@ var VoidlyAgent = class _VoidlyAgent {
         ["sign"]
       );
       const sig = await globalThis.crypto.subtle.sign("HMAC", key, encoder.encode(payload));
-      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b) => b.toString(16).padStart(2, "0")).join("")}`;
-      return signature === expectedSig2;
+      const expectedSig2 = `sha256=${Array.from(new Uint8Array(sig)).map((b2) => b2.toString(16).padStart(2, "0")).join("")}`;
+      if (signature.length !== expectedSig2.length) return false;
+      const a = encoder.encode(signature);
+      const b = encoder.encode(expectedSig2);
+      let diff = 0;
+      for (let i = 0; i < a.length; i++) diff |= a[i] ^ b[i];
+      return diff === 0;
     }
-    const { createHmac } = await import("crypto");
+    const { createHmac, timingSafeEqual } = await import("crypto");
     const expectedSig = `sha256=${createHmac("sha256", secret).update(payload).digest("hex")}`;
-    return signature === expectedSig;
+    if (signature.length !== expectedSig.length) return false;
+    return timingSafeEqual(Buffer.from(signature), Buffer.from(expectedSig));
   }
   // ─── Key Management ───────────────────────────────────────────────────────
   /**
@@ -2767,6 +2773,20 @@ var VoidlyAgent = class _VoidlyAgent {
     }
     return await res.json();
   }
+  /**
+   * Deactivate this agent identity. Removes from channels, disables webhooks.
+   * This is a soft delete — messages expire per TTL. Re-register for a new identity.
+   */
+  async deactivate() {
+    const res = await fetch(`${this.baseUrl}/v1/agent/deactivate`, {
+      method: "DELETE",
+      headers: { "X-Agent-Key": this.apiKey }
+    });
+    if (!res.ok) {
+      const err = await res.json().catch(() => ({}));
+      throw new Error(`Deactivate failed: ${err.error || res.statusText}`);
+    }
+  }
 };
 var export_decodeBase64 = import_tweetnacl_util.decodeBase64;
 var export_decodeUTF8 = import_tweetnacl_util.decodeUTF8;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@voidly/agent-sdk",
-  "version": "1.3.0",
+  "version": "1.3.1",
   "description": "E2E encrypted agent-to-agent communication SDK — true client-side encryption",
   "main": "dist/index.js",
   "module": "dist/index.mjs",