@vorionsys/contracts 0.1.1 → 0.1.3

package/dist/aci/attestation.js

@@ -1,299 +0,0 @@
-"use strict";
-/**
- * @fileoverview ACI Attestation Types
- *
- * Defines types for attestations - cryptographic proofs issued by certification
- * authorities that verify agent capabilities, identity, or compliance.
- *
- * Attestations are the foundation of trust in the ACI system, providing
- * verifiable evidence that an agent has been certified at a particular level.
- *
- * @module @vorionsys/contracts/aci/attestation
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.attestationVerificationResultSchema = exports.attestationVerificationWarningSchema = exports.attestationVerificationErrorSchema = exports.attestationSchema = exports.attestationProofSchema = exports.attestationEvidenceSchema = exports.attestationStatusSchema = exports.ATTESTATION_SCOPE_DESCRIPTIONS = exports.attestationScopeSchema = exports.ATTESTATION_SCOPES = void 0;
-exports.createAttestation = createAttestation;
-exports.verifyAttestation = verifyAttestation;
-exports.isAttestationValid = isAttestationValid;
-exports.getAttestationRemainingValidity = getAttestationRemainingValidity;
-exports.attestationCoversDomain = attestationCoversDomain;
-exports.isAttestationScope = isAttestationScope;
-exports.isAttestationStatus = isAttestationStatus;
-const zod_1 = require("zod");
-const tiers_js_1 = require("./tiers.js");
-const domains_js_1 = require("./domains.js");
-/**
- * Array of all attestation scopes.
- */
-exports.ATTESTATION_SCOPES = [
-    'full',
-    'domain',
-    'level',
-    'training',
-    'security',
-    'compliance',
-    'identity',
-];
-/**
- * Zod schema for AttestationScope validation.
- */
-exports.attestationScopeSchema = zod_1.z.enum(['full', 'domain', 'level', 'training', 'security', 'compliance', 'identity'], { errorMap: () => ({ message: 'Invalid attestation scope' }) });
-/**
- * Descriptions for attestation scopes.
- */
-exports.ATTESTATION_SCOPE_DESCRIPTIONS = {
-    full: 'Complete capability attestation covering all aspects of agent certification',
-    domain: 'Attestation for a specific capability domain',
-    level: 'Attestation for a specific autonomy level',
-    training: 'Attestation for training data quality and methodology',
-    security: 'Security audit attestation',
-    compliance: 'Regulatory compliance attestation',
-    identity: 'Identity verification attestation',
-};
-/**
- * Zod schema for AttestationStatus validation.
- */
-exports.attestationStatusSchema = zod_1.z.enum(['active', 'expired', 'revoked', 'suspended', 'pending'], { errorMap: () => ({ message: 'Invalid attestation status' }) });
-/**
- * Zod schema for AttestationEvidence validation.
- */
-exports.attestationEvidenceSchema = zod_1.z.object({
-    testResults: zod_1.z.string().url().optional(),
-    auditReport: zod_1.z.string().url().optional(),
-    trainingVerification: zod_1.z.string().url().optional(),
-    complianceDocumentation: zod_1.z.string().url().optional(),
-}).catchall(zod_1.z.string().url().optional());
-/**
- * Zod schema for AttestationProof validation.
- */
-exports.attestationProofSchema = zod_1.z.object({
-    type: zod_1.z.string().min(1),
-    created: zod_1.z.string().datetime(),
-    verificationMethod: zod_1.z.string().min(1),
-    proofPurpose: zod_1.z.string().min(1),
-    jws: zod_1.z.string().min(1),
-    nonce: zod_1.z.string().optional(),
-    challenge: zod_1.z.string().optional(),
-    domain: zod_1.z.string().optional(),
-});
-/**
- * Zod schema for Attestation validation.
- */
-exports.attestationSchema = zod_1.z.object({
-    id: zod_1.z.string().min(1),
-    issuer: zod_1.z.string().min(1),
-    subject: zod_1.z.string().min(1),
-    scope: exports.attestationScopeSchema,
-    certificationTier: tiers_js_1.certificationTierSchema,
-    domains: zod_1.z.array(domains_js_1.domainCodeSchema).optional(),
-    issuedAt: zod_1.z.date(),
-    expiresAt: zod_1.z.date(),
-    status: exports.attestationStatusSchema,
-    evidence: exports.attestationEvidenceSchema.optional(),
-    proof: exports.attestationProofSchema.optional(),
-    metadata: zod_1.z.record(zod_1.z.unknown()).optional(),
-});
-/**
- * Zod schema for AttestationVerificationError.
- */
-exports.attestationVerificationErrorSchema = zod_1.z.object({
-    code: zod_1.z.enum([
-        'INVALID_SIGNATURE',
-        'EXPIRED',
-        'REVOKED',
-        'SUSPENDED',
-        'ISSUER_NOT_TRUSTED',
-        'SUBJECT_MISMATCH',
-        'INVALID_FORMAT',
-        'PROOF_MISSING',
-        'VERIFICATION_FAILED',
-    ]),
-    message: zod_1.z.string(),
-});
-/**
- * Zod schema for AttestationVerificationWarning.
- */
-exports.attestationVerificationWarningSchema = zod_1.z.object({
-    code: zod_1.z.string(),
-    message: zod_1.z.string(),
-});
-/**
- * Zod schema for AttestationVerificationResult.
- */
-exports.attestationVerificationResultSchema = zod_1.z.object({
-    valid: zod_1.z.boolean(),
-    errors: zod_1.z.array(exports.attestationVerificationErrorSchema),
-    warnings: zod_1.z.array(exports.attestationVerificationWarningSchema),
-    attestation: exports.attestationSchema.optional(),
-    verifiedAt: zod_1.z.date(),
-    verificationMethod: zod_1.z.string().optional(),
-});
-/**
- * Creates a new attestation.
- *
- * @param options - Attestation creation options
- * @returns New attestation (without proof - must be signed separately)
- *
- * @example
- * ```typescript
- * const attestation = createAttestation({
- *   issuer: 'did:web:certifier.example.com',
- *   subject: 'did:web:agent.acme.com',
- *   scope: 'full',
- *   certificationTier: CertificationTier.T3_CERTIFIED,
- *   validityMs: 365 * 24 * 60 * 60 * 1000, // 1 year
- * });
- * ```
- */
-function createAttestation(options) {
-    const now = new Date();
-    const validityMs = options.validityMs ?? 365 * 24 * 60 * 60 * 1000; // Default: 1 year
-    return {
-        id: options.id ?? `urn:uuid:${crypto.randomUUID()}`,
-        issuer: options.issuer,
-        subject: options.subject,
-        scope: options.scope,
-        certificationTier: options.certificationTier,
-        domains: options.domains,
-        issuedAt: now,
-        expiresAt: new Date(now.getTime() + validityMs),
-        status: 'active',
-        evidence: options.evidence,
-        metadata: options.metadata,
-    };
-}
-/**
- * Verifies an attestation (basic validation without cryptographic verification).
- *
- * This function performs structural and temporal validation. Cryptographic
- * verification of the proof requires additional libraries and is not
- * performed here.
- *
- * @param attestation - The attestation to verify
- * @param expectedSubject - Optional expected subject DID
- * @param trustedIssuers - Optional list of trusted issuer DIDs
- * @returns Verification result
- */
-function verifyAttestation(attestation, expectedSubject, trustedIssuers) {
-    const errors = [];
-    const warnings = [];
-    const now = new Date();
-    // Check expiration
-    if (attestation.expiresAt < now) {
-        errors.push({
-            code: 'EXPIRED',
-            message: `Attestation expired on ${attestation.expiresAt.toISOString()}`,
-        });
-    }
-    // Check status
-    if (attestation.status === 'revoked') {
-        errors.push({
-            code: 'REVOKED',
-            message: 'Attestation has been revoked',
-        });
-    }
-    else if (attestation.status === 'suspended') {
-        errors.push({
-            code: 'SUSPENDED',
-            message: 'Attestation is currently suspended',
-        });
-    }
-    else if (attestation.status === 'pending') {
-        warnings.push({
-            code: 'PENDING',
-            message: 'Attestation is still pending validation',
-        });
-    }
-    // Check subject match
-    if (expectedSubject && attestation.subject !== expectedSubject) {
-        errors.push({
-            code: 'SUBJECT_MISMATCH',
-            message: `Attestation subject ${attestation.subject} does not match expected ${expectedSubject}`,
-        });
-    }
-    // Check trusted issuer
-    if (trustedIssuers && !trustedIssuers.includes(attestation.issuer)) {
-        errors.push({
-            code: 'ISSUER_NOT_TRUSTED',
-            message: `Issuer ${attestation.issuer} is not in the trusted issuers list`,
-        });
-    }
-    // Check proof presence
-    if (!attestation.proof) {
-        warnings.push({
-            code: 'NO_PROOF',
-            message: 'Attestation does not include cryptographic proof',
-        });
-    }
-    // Check for near expiration
-    const daysUntilExpiry = (attestation.expiresAt.getTime() - now.getTime()) / (24 * 60 * 60 * 1000);
-    if (daysUntilExpiry > 0 && daysUntilExpiry < 30) {
-        warnings.push({
-            code: 'EXPIRING_SOON',
-            message: `Attestation expires in ${Math.ceil(daysUntilExpiry)} days`,
-        });
-    }
-    return {
-        valid: errors.length === 0,
-        errors,
-        warnings,
-        attestation: errors.length === 0 ? attestation : undefined,
-        verifiedAt: now,
-    };
-}
-// ============================================================================
-// Attestation Helpers
-// ============================================================================
-/**
- * Checks if an attestation is currently valid.
- *
- * @param attestation - The attestation to check
- * @returns True if the attestation is valid
- */
-function isAttestationValid(attestation) {
-    const now = new Date();
-    return (attestation.status === 'active' &&
-        attestation.issuedAt <= now &&
-        attestation.expiresAt > now);
-}
-/**
- * Gets the remaining validity duration of an attestation.
- *
- * @param attestation - The attestation to check
- * @returns Remaining validity in milliseconds (negative if expired)
- */
-function getAttestationRemainingValidity(attestation) {
-    return attestation.expiresAt.getTime() - Date.now();
-}
-/**
- * Checks if an attestation covers a specific domain.
- *
- * @param attestation - The attestation to check
- * @param domain - The domain to check for
- * @returns True if the attestation covers the domain
- */
-function attestationCoversDomain(attestation, domain) {
-    // Full scope covers all domains
-    if (attestation.scope === 'full') {
-        return true;
-    }
-    // Domain scope must include the specific domain
-    if (attestation.scope === 'domain' && attestation.domains) {
-        return attestation.domains.includes(domain);
-    }
-    return false;
-}
-/**
- * Type guard to check if a value is a valid AttestationScope.
- */
-function isAttestationScope(value) {
-    return typeof value === 'string' && exports.ATTESTATION_SCOPES.includes(value);
-}
-/**
- * Type guard to check if a value is a valid AttestationStatus.
- */
-function isAttestationStatus(value) {
-    return (typeof value === 'string' &&
-        ['active', 'expired', 'revoked', 'suspended', 'pending'].includes(value));
-}
-//# sourceMappingURL=attestation.js.map

package/dist/aci/attestation.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"attestation.js","sourceRoot":"","sources":["../../src/aci/attestation.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;GAUG;;;AAiWH,8CAiBC;AAcD,8CA2EC;AAYD,gDAOC;AAQD,0EAEC;AASD,0DAeC;AAKD,gDAEC;AAKD,kDAKC;AA/gBD,6BAAwB;AACxB,yCAAwE;AACxE,6CAAiE;AA2BjE;;GAEG;AACU,QAAA,kBAAkB,GAAgC;IAC7D,MAAM;IACN,QAAQ;IACR,OAAO;IACP,UAAU;IACV,UAAU;IACV,YAAY;IACZ,UAAU;CACF,CAAC;AAEX;;GAEG;AACU,QAAA,sBAAsB,GAAG,OAAC,CAAC,IAAI,CAC1C,CAAC,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,YAAY,EAAE,UAAU,CAAC,EAC7E,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,2BAA2B,EAAE,CAAC,EAAE,CAC/D,CAAC;AAEF;;GAEG;AACU,QAAA,8BAA8B,GAA+C;IACxF,IAAI,EAAE,6EAA6E;IACnF,MAAM,EAAE,8CAA8C;IACtD,KAAK,EAAE,2CAA2C;IAClD,QAAQ,EAAE,uDAAuD;IACjE,QAAQ,EAAE,4BAA4B;IACtC,UAAU,EAAE,mCAAmC;IAC/C,QAAQ,EAAE,mCAAmC;CACrC,CAAC;AAgBX;;GAEG;AACU,QAAA,uBAAuB,GAAG,OAAC,CAAC,IAAI,CAC3C,CAAC,QAAQ,EAAE,SAAS,EAAE,SAAS,EAAE,WAAW,EAAE,SAAS,CAAC,EACxD,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,4BAA4B,EAAE,CAAC,EAAE,CAChE,CAAC;AAsBF;;GAEG;AACU,QAAA,yBAAyB,GAAG,OAAC,CAAC,MAAM,CAAC;IAChD,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACxC,WAAW,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACxC,oBAAoB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;IACjD,uBAAuB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE;CACrD,CAAC,CAAC,QAAQ,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC;AA8BzC;;GAEG;AACU,QAAA,sBAAsB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC7C,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,kBAAkB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrC,YAAY,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC/B,GAAG,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACtB,KAAK,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,SAAS,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC9B,CAAC,CAAC;AAuCH;;GAEG;AACU,QAAA,iBAAiB,GAAG,OAAC,CAAC,MAAM,CAAC;IACxC,EAAE,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACrB,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACzB,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,KAAK,EAAE,8BAAsB;IAC7B,iBAAiB,EAAE,kCAAuB;IAC1C,OAAO,EAAE,OAAC,CAAC,KAAK,CAAC,6BAAgB,CAAC,CAAC,QAAQ,EAAE;IAC7C,QAAQ,EAAE,OAAC,CAAC,IAAI,EAAE;IAClB,SAAS,EAAE,OAAC,CAAC,IAAI,EAAE;IACnB,MAAM,EAAE,+BAAuB;IAC/B,QAAQ,EAAE,iCAAyB,CAAC,QAAQ,EAAE;IAC9C,KAAK,EAAE,8BAAsB,CAAC,QAAQ,EAAE;IACxC,QAAQ,EAAE,OAAC,CAAC,MAAM,CAAC,OAAC,CAAC,OAAO,EAAE,CAAC,CAAC,QAAQ,EAAE;CAC3C,CAAC,CAAC;AA0DH;;GAEG;AACU,QAAA,kCAAkC,GAAG,OAAC,CAAC,MAAM,CAAC;IACzD,IAAI,EAAE,OAAC,CAAC,IAAI,CAAC;QACX,mBAAmB;QACnB,SAAS;QACT,SAAS;QACT,WAAW;QACX,oBAAoB;QACpB,kBAAkB;QAClB,gBAAgB;QAChB,eAAe;QACf,qBAAqB;KACtB,CAAC;IACF,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE;CACpB,CAAC,CAAC;AAEH;;GAEG;AACU,QAAA,oCAAoC,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3D,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE;IAChB,OAAO,EAAE,OAAC,CAAC,MAAM,EAAE;CACpB,CAAC,CAAC;AAEH;;GAEG;AACU,QAAA,mCAAmC,GAAG,OAAC,CAAC,MAAM,CAAC;IAC1D,KAAK,EAAE,OAAC,CAAC,OAAO,EAAE;IAClB,MAAM,EAAE,OAAC,CAAC,KAAK,CAAC,0CAAkC,CAAC;IACnD,QAAQ,EAAE,OAAC,CAAC,KAAK,CAAC,4CAAoC,CAAC;IACvD,WAAW,EAAE,yBAAiB,CAAC,QAAQ,EAAE;IACzC,UAAU,EAAE,OAAC,CAAC,IAAI,EAAE;IACpB,kBAAkB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC1C,CAAC,CAAC;AA8BH;;;;;;;;;;;;;;;;GAgBG;AACH,SAAgB,iBAAiB,CAAC,OAAiC;IACjE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,IAAI,GAAG,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,kBAAkB;IAEtF,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,YAAY,MAAM,CAAC,UAAU,EAAE,EAAE;QACnD,MAAM,EAAE,OAAO,CAAC,MAAM;QACtB,OAAO,EAAE,OAAO,CAAC,OAAO;QACxB,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,iBAAiB,EAAE,OAAO,CAAC,iBAAiB;QAC5C,OAAO,EAAE,OAAO,CAAC,OAAO;QACxB,QAAQ,EAAE,GAAG;QACb,SAAS,EAAE,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,UAAU,CAAC;QAC/C,MAAM,EAAE,QAAQ;QAChB,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,QAAQ,EAAE,OAAO,CAAC,QAAQ;KAC3B,CAAC;AACJ,CAAC;AAED;;;;;;;;;;;GAWG;AACH,SAAgB,iBAAiB,CAC/B,WAAwB,EACxB,eAAwB,EACxB,cAAkC;IAElC,MAAM,MAAM,GAAmC,EAAE,CAAC;IAClD,MAAM,QAAQ,GAAqC,EAAE,CAAC;IACtD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IAEvB,mBAAmB;IACnB,IAAI,WAAW,CAAC,SAAS,GAAG,GAAG,EAAE,CAAC;QAChC,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,SAAS;YACf,OAAO,EAAE,0BAA0B,WAAW,CAAC,SAAS,CAAC,WAAW,EAAE,EAAE;SACzE,CAAC,CAAC;IACL,CAAC;IAED,eAAe;IACf,IAAI,WAAW,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QACrC,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,SAAS;YACf,OAAO,EAAE,8BAA8B;SACxC,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,WAAW,CAAC,MAAM,KAAK,WAAW,EAAE,CAAC;QAC9C,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,WAAW;YACjB,OAAO,EAAE,oCAAoC;SAC9C,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,WAAW,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;QAC5C,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,SAAS;YACf,OAAO,EAAE,yCAAyC;SACnD,CAAC,CAAC;IACL,CAAC;IAED,sBAAsB;IACtB,IAAI,eAAe,IAAI,WAAW,CAAC,OAAO,KAAK,eAAe,EAAE,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,kBAAkB;YACxB,OAAO,EAAE,uBAAuB,WAAW,CAAC,OAAO,4BAA4B,eAAe,EAAE;SACjG,CAAC,CAAC;IACL,CAAC;IAED,uBAAuB;IACvB,IAAI,cAAc,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC;QACnE,MAAM,CAAC,IAAI,CAAC;YACV,IAAI,EAAE,oBAAoB;YAC1B,OAAO,EAAE,UAAU,WAAW,CAAC,MAAM,qCAAqC;SAC3E,CAAC,CAAC;IACL,CAAC;IAED,uBAAuB;IACvB,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC;QACvB,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,UAAU;YAChB,OAAO,EAAE,kDAAkD;SAC5D,CAAC,CAAC;IACL,CAAC;IAED,4BAA4B;IAC5B,MAAM,eAAe,GAAG,CAAC,WAAW,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,GAAG,CAAC,OAAO,EAAE,CAAC,GAAG,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAClG,IAAI,eAAe,GAAG,CAAC,IAAI,eAAe,GAAG,EAAE,EAAE,CAAC;QAChD,QAAQ,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,eAAe;YACrB,OAAO,EAAE,0BAA0B,IAAI,CAAC,IAAI,CAAC,eAAe,CAAC,OAAO;SACrE,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;QAC1B,MAAM;QACN,QAAQ;QACR,WAAW,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;QAC1D,UAAU,EAAE,GAAG;KAChB,CAAC;AACJ,CAAC;AAED,+EAA+E;AAC/E,sBAAsB;AACtB,+EAA+E;AAE/E;;;;;GAKG;AACH,SAAgB,kBAAkB,CAAC,WAAwB;IACzD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,OAAO,CACL,WAAW,CAAC,MAAM,KAAK,QAAQ;QAC/B,WAAW,CAAC,QAAQ,IAAI,GAAG;QAC3B,WAAW,CAAC,SAAS,GAAG,GAAG,CAC5B,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,SAAgB,+BAA+B,CAAC,WAAwB;IACtE,OAAO,WAAW,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;AACtD,CAAC;AAED;;;;;;GAMG;AACH,SAAgB,uBAAuB,CACrC,WAAwB,EACxB,MAAkB;IAElB,gCAAgC;IAChC,IAAI,WAAW,CAAC,KAAK,KAAK,MAAM,EAAE,CAAC;QACjC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,gDAAgD;IAChD,IAAI,WAAW,CAAC,KAAK,KAAK,QAAQ,IAAI,WAAW,CAAC,OAAO,EAAE,CAAC;QAC1D,OAAO,WAAW,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC9C,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAgB,kBAAkB,CAAC,KAAc;IAC/C,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,0BAAkB,CAAC,QAAQ,CAAC,KAAyB,CAAC,CAAC;AAC7F,CAAC;AAED;;GAEG;AACH,SAAgB,mBAAmB,CAAC,KAAc;IAChD,OAAO,CACL,OAAO,KAAK,KAAK,QAAQ;QACzB,CAAC,QAAQ,EAAE,SAAS,EAAE,SAAS,EAAE,WAAW,EAAE,SAAS,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CACzE,CAAC;AACJ,CAAC"}

package/dist/aci/domains.d.ts

@@ -1,260 +0,0 @@
-/**
- * @fileoverview ACI Domain Codes and Bitmask Operations
- *
- * Defines the capability domain codes used in ACI strings, with bitmask
- * encoding for efficient queries and domain matching.
- *
- * Domain codes represent high-level capability areas that agents can operate in.
- * Each domain has a single-character code, a human-readable name, a bitmask value,
- * and a description of its scope.
- *
- * @module @vorionsys/contracts/aci/domains
- */
-import { z } from 'zod';
-/**
- * Single-character domain codes representing capability areas.
- *
- * Each code maps to a specific area of agent capability:
- * - A: Administration - System administration, user management
- * - B: Business - Business logic, workflows, approvals
- * - C: Communications - Email, messaging, notifications
- * - D: Data - Data processing, analytics, reporting
- * - E: External - Third-party integrations, APIs
- * - F: Finance - Financial operations, payments, accounting
- * - G: Governance - Policy, compliance, oversight
- * - H: Hospitality - Venue, events, catering management
- * - I: Infrastructure - Compute, storage, networking
- * - S: Security - Authentication, authorization, audit
- */
-export type DomainCode = 'A' | 'B' | 'C' | 'D' | 'E' | 'F' | 'G' | 'H' | 'I' | 'S';
-/**
- * Array of all valid domain codes.
- */
-export declare const DOMAIN_CODES: readonly DomainCode[];
-/**
- * Zod schema for DomainCode validation.
- */
-export declare const domainCodeSchema: z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>;
-/**
- * Complete definition for a capability domain.
- */
-export interface DomainDefinition {
-    /** Single-character domain code */
-    readonly code: DomainCode;
-    /** Human-readable domain name */
-    readonly name: string;
-    /** Bitmask value for efficient queries (power of 2) */
-    readonly bit: number;
-    /** Description of the domain's scope */
-    readonly description: string;
-}
-/**
- * Capability domains with their definitions.
- *
- * Each domain has a unique bitmask value (power of 2) for efficient
- * storage and querying of domain combinations.
- */
-export declare const CAPABILITY_DOMAINS: Readonly<Record<DomainCode, DomainDefinition>>;
-/**
- * Human-readable domain names indexed by code.
- */
-export declare const DOMAIN_NAMES: Readonly<Record<DomainCode, string>>;
-/**
- * Bitmask value representing all domains combined.
- */
-export declare const ALL_DOMAINS_BITMASK: number;
-/**
- * Encodes an array of domain codes into a bitmask.
- *
- * @param domains - Array of domain codes to encode
- * @returns Bitmask integer representing the domains
- *
- * @example
- * ```typescript
- * encodeDomains(['A', 'B']);     // 0x003 (3)
- * encodeDomains(['A', 'S']);     // 0x201 (513)
- * encodeDomains([]);             // 0
- * ```
- */
-export declare function encodeDomains(domains: readonly DomainCode[]): number;
-/**
- * Decodes a bitmask into an array of domain codes.
- *
- * @param bitmask - Bitmask integer to decode
- * @returns Array of domain codes present in the bitmask
- *
- * @example
- * ```typescript
- * decodeDomains(0x003);  // ['A', 'B']
- * decodeDomains(0x201);  // ['A', 'S']
- * decodeDomains(0);      // []
- * ```
- */
-export declare function decodeDomains(bitmask: number): DomainCode[];
-/**
- * Converts a domain string (e.g., "ABS") to an array of domain codes.
- *
- * @param domainString - String containing domain codes (e.g., "ABS")
- * @returns Array of domain codes
- * @throws Error if any character is not a valid domain code
- *
- * @example
- * ```typescript
- * parseDomainString('ABS');  // ['A', 'B', 'S']
- * parseDomainString('D');    // ['D']
- * ```
- */
-export declare function parseDomainString(domainString: string): DomainCode[];
-/**
- * Converts an array of domain codes to a domain string.
- *
- * @param domains - Array of domain codes
- * @param sort - Whether to sort the codes alphabetically (default: true)
- * @returns String containing the domain codes
- *
- * @example
- * ```typescript
- * formatDomainString(['S', 'A', 'B']);  // 'ABS'
- * formatDomainString(['S', 'A'], false); // 'SA'
- * ```
- */
-export declare function formatDomainString(domains: readonly DomainCode[], sort?: boolean): string;
-/**
- * Checks if a set of domains includes all required domains.
- *
- * @param agentDomains - Domains the agent has (array or bitmask)
- * @param requiredDomains - Domains required (array or bitmask)
- * @returns True if agent has all required domains
- *
- * @example
- * ```typescript
- * hasDomains(['A', 'B', 'C'], ['A', 'B']);  // true
- * hasDomains(['A', 'B'], ['A', 'B', 'C']);  // false
- * hasDomains(0x007, 0x003);                  // true (ABC has AB)
- * ```
- */
-export declare function hasDomains(agentDomains: readonly DomainCode[] | number, requiredDomains: readonly DomainCode[] | number): boolean;
-/**
- * Checks if a set of domains satisfies domain requirements.
- *
- * This is an alias for hasDomains with more semantic naming for
- * authorization contexts.
- *
- * @param agentDomains - Domains the agent has
- * @param requirements - Domain requirements to satisfy
- * @returns True if all requirements are satisfied
- */
-export declare function satisfiesDomainRequirements(agentDomains: readonly DomainCode[] | number, requirements: readonly DomainCode[] | number): boolean;
-/**
- * Gets the intersection of two domain sets.
- *
- * @param domainsA - First domain set
- * @param domainsB - Second domain set
- * @returns Array of domains present in both sets
- *
- * @example
- * ```typescript
- * intersectDomains(['A', 'B', 'C'], ['B', 'C', 'D']);  // ['B', 'C']
- * ```
- */
-export declare function intersectDomains(domainsA: readonly DomainCode[] | number, domainsB: readonly DomainCode[] | number): DomainCode[];
-/**
- * Gets the union of two domain sets.
- *
- * @param domainsA - First domain set
- * @param domainsB - Second domain set
- * @returns Array of domains present in either set
- *
- * @example
- * ```typescript
- * unionDomains(['A', 'B'], ['B', 'C']);  // ['A', 'B', 'C']
- * ```
- */
-export declare function unionDomains(domainsA: readonly DomainCode[] | number, domainsB: readonly DomainCode[] | number): DomainCode[];
-/**
- * Gets domains in the first set that are not in the second.
- *
- * @param domainsA - First domain set
- * @param domainsB - Second domain set
- * @returns Array of domains in A but not in B
- *
- * @example
- * ```typescript
- * differenceDomains(['A', 'B', 'C'], ['B', 'C']);  // ['A']
- * ```
- */
-export declare function differenceDomains(domainsA: readonly DomainCode[] | number, domainsB: readonly DomainCode[] | number): DomainCode[];
-/**
- * Gets the full definition for a domain code.
- *
- * @param code - Domain code
- * @returns Domain definition
- */
-export declare function getDomainDefinition(code: DomainCode): DomainDefinition;
-/**
- * Gets the human-readable name for a domain code.
- *
- * @param code - Domain code
- * @returns Domain name
- */
-export declare function getDomainName(code: DomainCode): string;
-/**
- * Gets the bitmask value for a domain code.
- *
- * @param code - Domain code
- * @returns Bitmask value
- */
-export declare function getDomainBit(code: DomainCode): number;
-/**
- * Counts the number of domains in a bitmask.
- *
- * @param bitmask - Domain bitmask
- * @returns Number of domains
- */
-export declare function countDomains(bitmask: number): number;
-/**
- * Type guard to check if a value is a valid DomainCode.
- *
- * @param value - Value to check
- * @returns True if value is a valid DomainCode
- */
-export declare function isDomainCode(value: unknown): value is DomainCode;
-/**
- * Type guard to check if all values in an array are valid DomainCodes.
- *
- * @param values - Array to check
- * @returns True if all values are valid DomainCodes
- */
-export declare function isDomainCodeArray(values: unknown): values is DomainCode[];
-/**
- * Zod schema for domain definition.
- */
-export declare const domainDefinitionSchema: z.ZodObject<{
-    code: z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>;
-    name: z.ZodString;
-    bit: z.ZodNumber;
-    description: z.ZodString;
-}, "strip", z.ZodTypeAny, {
-    name: string;
-    code: "A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S";
-    description: string;
-    bit: number;
-}, {
-    name: string;
-    code: "A" | "B" | "C" | "D" | "E" | "F" | "G" | "H" | "I" | "S";
-    description: string;
-    bit: number;
-}>;
-/**
- * Zod schema for an array of domain codes.
- */
-export declare const domainCodeArraySchema: z.ZodArray<z.ZodEnum<["A", "B", "C", "D", "E", "F", "G", "H", "I", "S"]>, "many">;
-/**
- * Zod schema for a domain bitmask (positive integer).
- */
-export declare const domainBitmaskSchema: z.ZodNumber;
-/**
- * Zod schema for domain string (e.g., "ABS").
- */
-export declare const domainStringSchema: z.ZodEffects<z.ZodString, DomainCode[], string>;
-//# sourceMappingURL=domains.d.ts.map

package/dist/aci/domains.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"domains.d.ts","sourceRoot":"","sources":["../../src/aci/domains.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAMxB;;;;;;;;;;;;;;GAcG;AACH,MAAM,MAAM,UAAU,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;AAEnF;;GAEG;AACH,eAAO,MAAM,YAAY,EAAE,SAAS,UAAU,EAEpC,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,gBAAgB,+DAE3B,CAAC;AAMH;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,mCAAmC;IACnC,QAAQ,CAAC,IAAI,EAAE,UAAU,CAAC;IAC1B,iCAAiC;IACjC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,uDAAuD;IACvD,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,wCAAwC;IACxC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;CAC9B;AAED;;;;;GAKG;AACH,eAAO,MAAM,kBAAkB,EAAE,QAAQ,CAAC,MAAM,CAAC,UAAU,EAAE,gBAAgB,CAAC,CAWpE,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,YAAY,EAAE,QAAQ,CAAC,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,CAWpD,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,mBAAmB,QAG/B,CAAC;AAMF;;;;;;;;;;;;GAYG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,CAKpE;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,EAAE,CAE3D;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,iBAAiB,CAAC,YAAY,EAAE,MAAM,GAAG,UAAU,EAAE,CASpE;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,SAAS,UAAU,EAAE,EAAE,IAAI,UAAO,GAAG,MAAM,CAGtF;AAMD;;;;;;;;;;;;;GAaG;AACH,wBAAgB,UAAU,CACxB,YAAY,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,EAC5C,eAAe,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,GAC9C,OAAO,CAST;AAED;;;;;;;;;GASG;AACH,wBAAgB,2BAA2B,CACzC,YAAY,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,EAC5C,YAAY,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,GAC3C,OAAO,CAET;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,gBAAgB,CAC9B,QAAQ,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,EACxC,QAAQ,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,GACvC,UAAU,EAAE,CAId;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,YAAY,CAC1B,QAAQ,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,EACxC,QAAQ,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,GACvC,UAAU,EAAE,CAId;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,EACxC,QAAQ,EAAE,SAAS,UAAU,EAAE,GAAG,MAAM,GACvC,UAAU,EAAE,CAId;AAMD;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,IAAI,EAAE,UAAU,GAAG,gBAAgB,CAEtE;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,UAAU,GAAG,MAAM,CAEtD;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,UAAU,GAAG,MAAM,CAErD;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAQpD;AAMD;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,OAAO,GAAG,KAAK,IAAI,UAAU,CAEhE;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,OAAO,GAAG,MAAM,IAAI,UAAU,EAAE,CAEzE;AAMD;;GAEG;AACH,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;EAKjC,CAAC;AAEH;;GAEG;AACH,eAAO,MAAM,qBAAqB,mFAA4B,CAAC;AAE/D;;GAEG;AACH,eAAO,MAAM,mBAAmB,aAAmD,CAAC;AAEpF;;GAEG;AACH,eAAO,MAAM,kBAAkB,iDAGc,CAAC"}