@vorim/sdk 3.6.0 → 3.6.1

package/dist/types-B22WnXEW.d.ts

@@ -0,0 +1,234 @@
+type AgentStatus = 'pending' | 'active' | 'suspended' | 'revoked' | 'expired';
+interface Agent {
+    id: string;
+    agent_id: string;
+    org_id: string;
+    owner_user_id: string;
+    name: string;
+    description?: string;
+    status: AgentStatus;
+    key_fingerprint: string;
+    trust_score: number;
+    capabilities: string[];
+    metadata: Record<string, unknown>;
+    expires_at?: string;
+    created_at: string;
+    updated_at: string;
+    revoked_at?: string;
+    revoked_by?: string;
+}
+interface AgentRegistrationInput {
+    name: string;
+    description?: string;
+    capabilities: string[];
+    scopes: PermissionScope[];
+}
+interface AgentRegistrationResult {
+    agent: Agent;
+    private_key: string;
+    public_key: string;
+    key_fingerprint: string;
+}
+type PermissionScope = 'agent:read' | 'agent:write' | 'agent:execute' | 'agent:transact' | 'agent:communicate' | 'agent:delegate' | 'agent:elevate';
+interface PermissionCheckResult {
+    allowed: boolean;
+    scope: PermissionScope;
+    agent_id: string;
+    reason?: string;
+    remaining_quota?: number;
+}
+type AuditEventType = 'tool_call' | 'api_request' | 'message_sent' | 'permission_change' | 'status_change' | 'key_rotation' | 'login' | 'export';
+type AuditResult = 'success' | 'denied' | 'error';
+interface AuditEventInput {
+    agent_id: string;
+    event_type: AuditEventType;
+    action: string;
+    resource?: string;
+    input_hash?: string;
+    output_hash?: string;
+    permission?: PermissionScope;
+    result: AuditResult;
+    latency_ms?: number;
+    error_code?: string;
+    signature?: string;
+    metadata?: Record<string, unknown>;
+    /**
+     * Replayable agent decision evidence (VAIP -02 schema fields).
+     *
+     * Stored and exported but NOT covered by the v0 canonical signature
+     * form. They will enter canonical bytes in v1 (RFC 8785 JCS) in a
+     * follow-up release. Until then, advisory.
+     *
+     * Use the helpers from this package to compute the hashes:
+     *   - {@link hashToolCatalogue}
+     *   - {@link hashSystemPrompt}
+     */
+    model_version?: string;
+    tool_catalogue_hash?: string;
+    system_prompt_hash?: string;
+    prev_event_hash?: string;
+    /**
+     * Canonical-form recipe the `signature` was computed over.
+     * Absent/null ↔ 'v0' (pipe-joined six-field form). Set to 'v1' for
+     * RFC 8785 JCS over the full event minus signature and canonical_form.
+     * The SDK sets this automatically when {@link VorimConfig.canonicalForm}
+     * is `"v1"`; you can also pass it on a per-event basis.
+     */
+    canonical_form?: 'v0' | 'v1';
+    /**
+     * Per-event delegation context (VAIP -02 § 6). Populated by the
+     * server when the emitting agent is acting via a delegation chain;
+     * callers may also set these manually for events recorded outside
+     * the standard delegation flow. v1 signatures cover these fields.
+     */
+    on_behalf_of?: string;
+    delegator_agent_id?: string;
+    delegation_chain_id?: string;
+    delegation_depth?: number;
+    /**
+     * Runtime-control linkage. When this action was gated through
+     * {@link VorimSDK.beforeAction} before being performed, pass the
+     * returned `decisionId` here (the SDK maps it to `decision_id` on the
+     * wire) so the audit event links back to the runtime decision that
+     * authorised it.
+     */
+    decision_id?: string;
+}
+/**
+ * Claims structure for one VAIP -02 § 5 delegation link.
+ *
+ * Each delegation step in a chain is one of these objects, RFC 8785 JCS
+ * canonicalised and Ed25519-signed by the delegator. Mirrors the same
+ * type in `@vorim/shared-types`; duplicated here so the SDK ships zero
+ * runtime dependencies. Byte-equivalence with the shared definition is
+ * enforced by the cross-language parity script.
+ */
+interface DelegationLinkClaims {
+    v: 0;
+    type: 'vaip-delegation-link';
+    chain_id: string;
+    depth: number;
+    delegator: string;
+    delegate: string;
+    scopes: string[];
+    max_chain_depth: number;
+    valid_from: string;
+    valid_until: string | null;
+    parent_link_hash: string | null;
+}
+/**
+ * One step in an agent-to-agent identity delegation chain (VAIP -02 § 5).
+ *
+ * Returned by {@link VorimSDK.delegateToAgent} and the listing endpoints.
+ */
+interface AgentDelegationRecord {
+    /** Internal row id. */
+    id: string;
+    /** Public chain identifier (format `chain_<32hex>`). Stamped on
+     *  every audit event in this chain. */
+    publicChainId: string;
+    /** Organisation id. */
+    orgId: string;
+    /** Internal DB id of the delegator agent. */
+    delegatorAgentId: string;
+    /** Internal DB id of the delegate agent. */
+    delegateAgentId: string;
+    /** Public agent_id of the delegator (e.g. agid_acme_abc). */
+    delegatorAgentPublicId: string;
+    /** Public agent_id of the delegate. */
+    delegateAgentPublicId: string;
+    /** Scopes the delegate may exercise. */
+    scopesDelegated: string[];
+    /** How many further hops the delegate is permitted. */
+    maxChainDepth: number;
+    /** This step's depth from the root (root delegator step = 1). */
+    currentDepth: number;
+    /** Active / suspended / revoked / expired. */
+    status: 'active' | 'suspended' | 'revoked' | 'expired';
+    /** Parent delegation row (null for the root of an identity chain). */
+    parentDelegationId: string | null;
+    /** Public agent_id of the root principal of this chain. */
+    onBehalfOf: string;
+    /** ISO8601 creation timestamp. */
+    createdAt: string;
+    /** Optional ISO8601 expiry. */
+    validUntil: string | null;
+}
+interface TrustRecord {
+    agent_id: string;
+    owner: {
+        org_name: string;
+        verified: boolean;
+    };
+    trust_score: number;
+    status: AgentStatus;
+    created_at: string;
+    active_scopes: PermissionScope[];
+    key_fingerprint: string;
+    revocation_status: boolean;
+    last_active?: string;
+}
+/**
+ * The verdict a runtime decision can carry.
+ *
+ * - `allow`    — proceed with the action.
+ * - `deny`     — do NOT perform the action. {@link VorimSDK.beforeAction}
+ *                throws {@link VorimDeniedError} on this when `throwOnDeny`.
+ * - `modify`   — proceed, but with `modifiedPayload` instead of the
+ *                original payload (e.g. PII masked by a policy rule).
+ * - `escalate` — a human must approve. Poll
+ *                {@link VorimSDK.waitForDecisionResolution} for the outcome.
+ * - `fallback` — the engine could not decide (timeout / error) and the
+ *                org's fail-open/closed setting was applied. `isFallback`
+ *                is true. The SDK also returns this shape locally when the
+ *                decision API is unreachable and `runtimeFailOpen` is set.
+ */
+type DecisionVerdict = 'allow' | 'deny' | 'modify' | 'escalate' | 'fallback';
+/** Input to {@link VorimSDK.beforeAction}. Always use the public `agid_*` id. */
+interface BeforeActionInput {
+    /** Public agent identifier (`agid_*`). UUIDs are accepted but discouraged. */
+    agentId: string;
+    /** Coarse action category, e.g. `tool_call`, `api_request`. */
+    actionType: string;
+    /** Specific target, e.g. the tool name `sendEmail`. */
+    actionTarget?: string;
+    /** The action's arguments. Capped at 64KB serialised by the server. */
+    payload?: Record<string, unknown>;
+    /** Free-form context the policy engine may match on. */
+    context?: Record<string, unknown>;
+    /** Permission scope the action requires; checked against the agent's grants. */
+    requiredScope?: string;
+    /**
+     * Idempotency key. Pass the SAME key when retrying a failed request so
+     * the server returns the original decision instead of creating a new one.
+     */
+    idempotencyKey?: string;
+}
+/** A runtime decision, as returned by {@link VorimSDK.beforeAction}. */
+interface RuntimeDecision {
+    /** Server-assigned id. Carry into {@link AuditEventInput.decision_id}. */
+    decisionId: string;
+    decision: DecisionVerdict;
+    reason: string;
+    /** The policy rule that produced this decision, or null for defaults. */
+    decisionRuleId: string | null;
+    /** Present (object) when `decision === 'modify'`; null otherwise. */
+    modifiedPayload: Record<string, unknown> | null;
+    /** ISO8601 — after this the decision is stale and should not be relied on. */
+    expiresAt: string;
+    latencyMs: number;
+    /** True when the engine fell back (timeout/error/unreachable). */
+    isFallback: boolean;
+    policyVersion: number;
+    /**
+     * The human verdict on an escalation, once resolved by an operator:
+     * `'approved'`, `'denied'`, or `null` if not (yet) an escalation outcome.
+     *
+     * When this is set, {@link decision} is already translated for you
+     * (`approved` → `'allow'`, `denied` → `'deny'`) so the normal verdict
+     * checks work — this field is the raw resolution for callers who want it.
+     */
+    escalationResolution: 'approved' | 'denied' | null;
+}
+
+export type { AgentRegistrationResult as A, BeforeActionInput as B, DelegationLinkClaims as D, PermissionScope as P, RuntimeDecision as R, TrustRecord as T, AuditEventInput as a, AgentRegistrationInput as b, Agent as c, PermissionCheckResult as d, AgentDelegationRecord as e, AgentStatus as f, AuditEventType as g, AuditResult as h, DecisionVerdict as i };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@vorim/sdk",
-  "version": "3.6.0",
+  "version": "3.6.1",
   "description": "Official TypeScript SDK for Vorim AI — AI Agent Identity, Permissions & Audit",
   "type": "module",
   "main": "dist/index.cjs",
@@ -66,6 +66,46 @@
         "types": "./dist/integrations/anthropic.d.cts",
         "default": "./dist/integrations/anthropic.cjs"
       }
+    },
+    "./integrations/langgraph": {
+      "import": {
+        "types": "./dist/integrations/langgraph.d.ts",
+        "default": "./dist/integrations/langgraph.js"
+      },
+      "require": {
+        "types": "./dist/integrations/langgraph.d.cts",
+        "default": "./dist/integrations/langgraph.cjs"
+      }
+    },
+    "./integrations/vercel-ai": {
+      "import": {
+        "types": "./dist/integrations/vercel-ai.d.ts",
+        "default": "./dist/integrations/vercel-ai.js"
+      },
+      "require": {
+        "types": "./dist/integrations/vercel-ai.d.cts",
+        "default": "./dist/integrations/vercel-ai.cjs"
+      }
+    },
+    "./integrations/stripe-acp": {
+      "import": {
+        "types": "./dist/integrations/stripe-acp.d.ts",
+        "default": "./dist/integrations/stripe-acp.js"
+      },
+      "require": {
+        "types": "./dist/integrations/stripe-acp.d.cts",
+        "default": "./dist/integrations/stripe-acp.cjs"
+      }
+    },
+    "./integrations/siem": {
+      "import": {
+        "types": "./dist/integrations/siem.d.ts",
+        "default": "./dist/integrations/siem.js"
+      },
+      "require": {
+        "types": "./dist/integrations/siem.d.cts",
+        "default": "./dist/integrations/siem.cjs"
+      }
     }
   },
   "files": [