npm - @vorionsys/platform-core - Versions diffs - 0.1.0 - Mend

@vorionsys/platform-core 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (1847) hide show

package/LICENSE +190 -0
package/README.md +88 -0
package/dist/a2a/attestation.d.ts +145 -0
package/dist/a2a/attestation.d.ts.map +1 -0
package/dist/a2a/attestation.js +353 -0
package/dist/a2a/attestation.js.map +1 -0
package/dist/a2a/chain-of-trust.d.ts +143 -0
package/dist/a2a/chain-of-trust.d.ts.map +1 -0
package/dist/a2a/chain-of-trust.js +422 -0
package/dist/a2a/chain-of-trust.js.map +1 -0
package/dist/a2a/index.d.ts +15 -0
package/dist/a2a/index.d.ts.map +1 -0
package/dist/a2a/index.js +23 -0
package/dist/a2a/index.js.map +1 -0
package/dist/a2a/openapi.d.ts +22 -0
package/dist/a2a/openapi.d.ts.map +1 -0
package/dist/a2a/openapi.js +1133 -0
package/dist/a2a/openapi.js.map +1 -0
package/dist/a2a/router.d.ts +167 -0
package/dist/a2a/router.d.ts.map +1 -0
package/dist/a2a/router.js +454 -0
package/dist/a2a/router.js.map +1 -0
package/dist/a2a/routes.d.ts +11 -0
package/dist/a2a/routes.d.ts.map +1 -0
package/dist/a2a/routes.js +442 -0
package/dist/a2a/routes.js.map +1 -0
package/dist/a2a/trust-negotiation.d.ts +119 -0
package/dist/a2a/trust-negotiation.d.ts.map +1 -0
package/dist/a2a/trust-negotiation.js +425 -0
package/dist/a2a/trust-negotiation.js.map +1 -0
package/dist/a2a/types.d.ts +413 -0
package/dist/a2a/types.d.ts.map +1 -0
package/dist/a2a/types.js +38 -0
package/dist/a2a/types.js.map +1 -0
package/dist/agent-registry/a3i-cache.d.ts +113 -0
package/dist/agent-registry/a3i-cache.d.ts.map +1 -0
package/dist/agent-registry/a3i-cache.js +305 -0
package/dist/agent-registry/a3i-cache.js.map +1 -0
package/dist/agent-registry/index.d.ts +14 -0
package/dist/agent-registry/index.d.ts.map +1 -0
package/dist/agent-registry/index.js +17 -0
package/dist/agent-registry/index.js.map +1 -0
package/dist/agent-registry/openapi.d.ts +23 -0
package/dist/agent-registry/openapi.d.ts.map +1 -0
package/dist/agent-registry/openapi.js +1377 -0
package/dist/agent-registry/openapi.js.map +1 -0
package/dist/agent-registry/routes.d.ts +10 -0
package/dist/agent-registry/routes.d.ts.map +1 -0
package/dist/agent-registry/routes.js +485 -0
package/dist/agent-registry/routes.js.map +1 -0
package/dist/agent-registry/service.d.ts +159 -0
package/dist/agent-registry/service.d.ts.map +1 -0
package/dist/agent-registry/service.js +652 -0
package/dist/agent-registry/service.js.map +1 -0
package/dist/agent-registry/tenant-service.d.ts +104 -0
package/dist/agent-registry/tenant-service.d.ts.map +1 -0
package/dist/agent-registry/tenant-service.js +313 -0
package/dist/agent-registry/tenant-service.js.map +1 -0
package/dist/api/auth.d.ts +55 -0
package/dist/api/auth.d.ts.map +1 -0
package/dist/api/auth.js +322 -0
package/dist/api/auth.js.map +1 -0
package/dist/api/errors.d.ts +146 -0
package/dist/api/errors.d.ts.map +1 -0
package/dist/api/errors.js +464 -0
package/dist/api/errors.js.map +1 -0
package/dist/api/index.d.ts +15 -0
package/dist/api/index.d.ts.map +1 -0
package/dist/api/index.js +19 -0
package/dist/api/index.js.map +1 -0
package/dist/api/middleware/api-key-enforcement.d.ts +131 -0
package/dist/api/middleware/api-key-enforcement.d.ts.map +1 -0
package/dist/api/middleware/api-key-enforcement.js +674 -0
package/dist/api/middleware/api-key-enforcement.js.map +1 -0
package/dist/api/middleware/audit.d.ts +151 -0
package/dist/api/middleware/audit.d.ts.map +1 -0
package/dist/api/middleware/audit.js +384 -0
package/dist/api/middleware/audit.js.map +1 -0
package/dist/api/middleware/dpop-enforcement.d.ts +176 -0
package/dist/api/middleware/dpop-enforcement.d.ts.map +1 -0
package/dist/api/middleware/dpop-enforcement.js +596 -0
package/dist/api/middleware/dpop-enforcement.js.map +1 -0
package/dist/api/middleware/index.d.ts +24 -0
package/dist/api/middleware/index.d.ts.map +1 -0
package/dist/api/middleware/index.js +43 -0
package/dist/api/middleware/index.js.map +1 -0
package/dist/api/middleware/metrics.d.ts +41 -0
package/dist/api/middleware/metrics.d.ts.map +1 -0
package/dist/api/middleware/metrics.js +150 -0
package/dist/api/middleware/metrics.js.map +1 -0
package/dist/api/middleware/rate-limits.d.ts +224 -0
package/dist/api/middleware/rate-limits.d.ts.map +1 -0
package/dist/api/middleware/rate-limits.js +686 -0
package/dist/api/middleware/rate-limits.js.map +1 -0
package/dist/api/middleware/rateLimit.d.ts +165 -0
package/dist/api/middleware/rateLimit.d.ts.map +1 -0
package/dist/api/middleware/rateLimit.js +477 -0
package/dist/api/middleware/rateLimit.js.map +1 -0
package/dist/api/middleware/redis-rate-limiter.d.ts +279 -0
package/dist/api/middleware/redis-rate-limiter.d.ts.map +1 -0
package/dist/api/middleware/redis-rate-limiter.js +1074 -0
package/dist/api/middleware/redis-rate-limiter.js.map +1 -0
package/dist/api/middleware/security-headers.d.ts +248 -0
package/dist/api/middleware/security-headers.d.ts.map +1 -0
package/dist/api/middleware/security-headers.js +410 -0
package/dist/api/middleware/security-headers.js.map +1 -0
package/dist/api/middleware/security.d.ts +156 -0
package/dist/api/middleware/security.d.ts.map +1 -0
package/dist/api/middleware/security.js +412 -0
package/dist/api/middleware/security.js.map +1 -0
package/dist/api/middleware/validation.d.ts +132 -0
package/dist/api/middleware/validation.d.ts.map +1 -0
package/dist/api/middleware/validation.js +363 -0
package/dist/api/middleware/validation.js.map +1 -0
package/dist/api/middleware/webhook-verify.d.ts +130 -0
package/dist/api/middleware/webhook-verify.d.ts.map +1 -0
package/dist/api/middleware/webhook-verify.js +366 -0
package/dist/api/middleware/webhook-verify.js.map +1 -0
package/dist/api/rate-limit.d.ts +115 -0
package/dist/api/rate-limit.d.ts.map +1 -0
package/dist/api/rate-limit.js +335 -0
package/dist/api/rate-limit.js.map +1 -0
package/dist/api/server.d.ts +37 -0
package/dist/api/server.d.ts.map +1 -0
package/dist/api/server.js +2086 -0
package/dist/api/server.js.map +1 -0
package/dist/api/validation.d.ts +243 -0
package/dist/api/validation.d.ts.map +1 -0
package/dist/api/validation.js +247 -0
package/dist/api/validation.js.map +1 -0
package/dist/audit/compliance-reporter.d.ts +271 -0
package/dist/audit/compliance-reporter.d.ts.map +1 -0
package/dist/audit/compliance-reporter.js +587 -0
package/dist/audit/compliance-reporter.js.map +1 -0
package/dist/audit/db-store.d.ts +689 -0
package/dist/audit/db-store.d.ts.map +1 -0
package/dist/audit/db-store.js +589 -0
package/dist/audit/db-store.js.map +1 -0
package/dist/audit/event-schema.d.ts +605 -0
package/dist/audit/event-schema.d.ts.map +1 -0
package/dist/audit/event-schema.js +566 -0
package/dist/audit/event-schema.js.map +1 -0
package/dist/audit/index.d.ts +16 -0
package/dist/audit/index.d.ts.map +1 -0
package/dist/audit/index.js +44 -0
package/dist/audit/index.js.map +1 -0
package/dist/audit/security-events.d.ts +1624 -0
package/dist/audit/security-events.d.ts.map +1 -0
package/dist/audit/security-events.js +775 -0
package/dist/audit/security-events.js.map +1 -0
package/dist/audit/security-logger.d.ts +288 -0
package/dist/audit/security-logger.d.ts.map +1 -0
package/dist/audit/security-logger.js +820 -0
package/dist/audit/security-logger.js.map +1 -0
package/dist/audit/service.d.ts +206 -0
package/dist/audit/service.d.ts.map +1 -0
package/dist/audit/service.js +756 -0
package/dist/audit/service.js.map +1 -0
package/dist/audit/siem/elastic.d.ts +94 -0
package/dist/audit/siem/elastic.d.ts.map +1 -0
package/dist/audit/siem/elastic.js +412 -0
package/dist/audit/siem/elastic.js.map +1 -0
package/dist/audit/siem/index.d.ts +179 -0
package/dist/audit/siem/index.d.ts.map +1 -0
package/dist/audit/siem/index.js +368 -0
package/dist/audit/siem/index.js.map +1 -0
package/dist/audit/siem/loki.d.ts +100 -0
package/dist/audit/siem/loki.d.ts.map +1 -0
package/dist/audit/siem/loki.js +406 -0
package/dist/audit/siem/loki.js.map +1 -0
package/dist/audit/siem/splunk.d.ts +91 -0
package/dist/audit/siem/splunk.d.ts.map +1 -0
package/dist/audit/siem/splunk.js +375 -0
package/dist/audit/siem/splunk.js.map +1 -0
package/dist/audit/siem/types.d.ts +547 -0
package/dist/audit/siem/types.d.ts.map +1 -0
package/dist/audit/siem/types.js +270 -0
package/dist/audit/siem/types.js.map +1 -0
package/dist/audit/types.d.ts +410 -0
package/dist/audit/types.d.ts.map +1 -0
package/dist/audit/types.js +130 -0
package/dist/audit/types.js.map +1 -0
package/dist/auth/index.d.ts +10 -0
package/dist/auth/index.d.ts.map +1 -0
package/dist/auth/index.js +10 -0
package/dist/auth/index.js.map +1 -0
package/dist/auth/mfa/index.d.ts +9 -0
package/dist/auth/mfa/index.d.ts.map +1 -0
package/dist/auth/mfa/index.js +9 -0
package/dist/auth/mfa/index.js.map +1 -0
package/dist/auth/mfa/totp.d.ts +222 -0
package/dist/auth/mfa/totp.d.ts.map +1 -0
package/dist/auth/mfa/totp.js +329 -0
package/dist/auth/mfa/totp.js.map +1 -0
package/dist/auth/piv-cac/card-removal-handler.d.ts +197 -0
package/dist/auth/piv-cac/card-removal-handler.d.ts.map +1 -0
package/dist/auth/piv-cac/card-removal-handler.js +560 -0
package/dist/auth/piv-cac/card-removal-handler.js.map +1 -0
package/dist/auth/piv-cac/certificate-auth.d.ts +117 -0
package/dist/auth/piv-cac/certificate-auth.d.ts.map +1 -0
package/dist/auth/piv-cac/certificate-auth.js +727 -0
package/dist/auth/piv-cac/certificate-auth.js.map +1 -0
package/dist/auth/piv-cac/certificate-mapper.d.ts +141 -0
package/dist/auth/piv-cac/certificate-mapper.d.ts.map +1 -0
package/dist/auth/piv-cac/certificate-mapper.js +569 -0
package/dist/auth/piv-cac/certificate-mapper.js.map +1 -0
package/dist/auth/piv-cac/crl-validator.d.ts +195 -0
package/dist/auth/piv-cac/crl-validator.d.ts.map +1 -0
package/dist/auth/piv-cac/crl-validator.js +824 -0
package/dist/auth/piv-cac/crl-validator.js.map +1 -0
package/dist/auth/piv-cac/index.d.ts +72 -0
package/dist/auth/piv-cac/index.d.ts.map +1 -0
package/dist/auth/piv-cac/index.js +172 -0
package/dist/auth/piv-cac/index.js.map +1 -0
package/dist/auth/piv-cac/ocsp-validator.d.ts +183 -0
package/dist/auth/piv-cac/ocsp-validator.d.ts.map +1 -0
package/dist/auth/piv-cac/ocsp-validator.js +657 -0
package/dist/auth/piv-cac/ocsp-validator.js.map +1 -0
package/dist/auth/piv-cac/piv-middleware.d.ts +95 -0
package/dist/auth/piv-cac/piv-middleware.d.ts.map +1 -0
package/dist/auth/piv-cac/piv-middleware.js +524 -0
package/dist/auth/piv-cac/piv-middleware.js.map +1 -0
package/dist/auth/piv-cac/piv-routes.d.ts +29 -0
package/dist/auth/piv-cac/piv-routes.d.ts.map +1 -0
package/dist/auth/piv-cac/piv-routes.js +534 -0
package/dist/auth/piv-cac/piv-routes.js.map +1 -0
package/dist/auth/piv-cac/pkcs11-provider.d.ts +280 -0
package/dist/auth/piv-cac/pkcs11-provider.d.ts.map +1 -0
package/dist/auth/piv-cac/pkcs11-provider.js +535 -0
package/dist/auth/piv-cac/pkcs11-provider.js.map +1 -0
package/dist/auth/piv-cac/types.d.ts +4098 -0
package/dist/auth/piv-cac/types.d.ts.map +1 -0
package/dist/auth/piv-cac/types.js +495 -0
package/dist/auth/piv-cac/types.js.map +1 -0
package/dist/basis/evaluator.d.ts +72 -0
package/dist/basis/evaluator.d.ts.map +1 -0
package/dist/basis/evaluator.js +275 -0
package/dist/basis/evaluator.js.map +1 -0
package/dist/basis/expression-evaluator.d.ts +77 -0
package/dist/basis/expression-evaluator.d.ts.map +1 -0
package/dist/basis/expression-evaluator.js +826 -0
package/dist/basis/expression-evaluator.js.map +1 -0
package/dist/basis/index.d.ts +13 -0
package/dist/basis/index.d.ts.map +1 -0
package/dist/basis/index.js +13 -0
package/dist/basis/index.js.map +1 -0
package/dist/basis/parser.d.ts +376 -0
package/dist/basis/parser.d.ts.map +1 -0
package/dist/basis/parser.js +178 -0
package/dist/basis/parser.js.map +1 -0
package/dist/basis/types.d.ts +115 -0
package/dist/basis/types.d.ts.map +1 -0
package/dist/basis/types.js +5 -0
package/dist/basis/types.js.map +1 -0
package/dist/car-extensions/aci-string-extensions.d.ts +10 -0
package/dist/car-extensions/aci-string-extensions.d.ts.map +1 -0
package/dist/car-extensions/aci-string-extensions.js +24 -0
package/dist/car-extensions/aci-string-extensions.js.map +1 -0
package/dist/car-extensions/builtin-extensions/audit.d.ts +88 -0
package/dist/car-extensions/builtin-extensions/audit.d.ts.map +1 -0
package/dist/car-extensions/builtin-extensions/audit.js +445 -0
package/dist/car-extensions/builtin-extensions/audit.js.map +1 -0
package/dist/car-extensions/builtin-extensions/governance.d.ts +32 -0
package/dist/car-extensions/builtin-extensions/governance.d.ts.map +1 -0
package/dist/car-extensions/builtin-extensions/governance.js +534 -0
package/dist/car-extensions/builtin-extensions/governance.js.map +1 -0
package/dist/car-extensions/builtin-extensions/monitoring.d.ts +43 -0
package/dist/car-extensions/builtin-extensions/monitoring.d.ts.map +1 -0
package/dist/car-extensions/builtin-extensions/monitoring.js +416 -0
package/dist/car-extensions/builtin-extensions/monitoring.js.map +1 -0
package/dist/car-extensions/car-string-extensions.d.ts +355 -0
package/dist/car-extensions/car-string-extensions.d.ts.map +1 -0
package/dist/car-extensions/car-string-extensions.js +473 -0
package/dist/car-extensions/car-string-extensions.js.map +1 -0
package/dist/car-extensions/executor.d.ts +208 -0
package/dist/car-extensions/executor.d.ts.map +1 -0
package/dist/car-extensions/executor.js +789 -0
package/dist/car-extensions/executor.js.map +1 -0
package/dist/car-extensions/index.d.ts +94 -0
package/dist/car-extensions/index.d.ts.map +1 -0
package/dist/car-extensions/index.js +159 -0
package/dist/car-extensions/index.js.map +1 -0
package/dist/car-extensions/registry.d.ts +217 -0
package/dist/car-extensions/registry.d.ts.map +1 -0
package/dist/car-extensions/registry.js +450 -0
package/dist/car-extensions/registry.js.map +1 -0
package/dist/car-extensions/service.d.ts +220 -0
package/dist/car-extensions/service.d.ts.map +1 -0
package/dist/car-extensions/service.js +486 -0
package/dist/car-extensions/service.js.map +1 -0
package/dist/car-extensions/types.d.ts +2269 -0
package/dist/car-extensions/types.d.ts.map +1 -0
package/dist/car-extensions/types.js +389 -0
package/dist/car-extensions/types.js.map +1 -0
package/dist/cognigate/index.d.ts +192 -0
package/dist/cognigate/index.d.ts.map +1 -0
package/dist/cognigate/index.js +435 -0
package/dist/cognigate/index.js.map +1 -0
package/dist/cognigate/sandbox/capability-broker.d.ts +166 -0
package/dist/cognigate/sandbox/capability-broker.d.ts.map +1 -0
package/dist/cognigate/sandbox/capability-broker.js +461 -0
package/dist/cognigate/sandbox/capability-broker.js.map +1 -0
package/dist/cognigate/sandbox/filesystem-policy.d.ts +139 -0
package/dist/cognigate/sandbox/filesystem-policy.d.ts.map +1 -0
package/dist/cognigate/sandbox/filesystem-policy.js +426 -0
package/dist/cognigate/sandbox/filesystem-policy.js.map +1 -0
package/dist/cognigate/sandbox/index.d.ts +17 -0
package/dist/cognigate/sandbox/index.d.ts.map +1 -0
package/dist/cognigate/sandbox/index.js +24 -0
package/dist/cognigate/sandbox/index.js.map +1 -0
package/dist/cognigate/sandbox/network-policy.d.ts +126 -0
package/dist/cognigate/sandbox/network-policy.d.ts.map +1 -0
package/dist/cognigate/sandbox/network-policy.js +382 -0
package/dist/cognigate/sandbox/network-policy.js.map +1 -0
package/dist/cognigate/sandbox/sandbox-service.d.ts +70 -0
package/dist/cognigate/sandbox/sandbox-service.d.ts.map +1 -0
package/dist/cognigate/sandbox/sandbox-service.js +472 -0
package/dist/cognigate/sandbox/sandbox-service.js.map +1 -0
package/dist/cognigate/sandbox/types.d.ts +376 -0
package/dist/cognigate/sandbox/types.d.ts.map +1 -0
package/dist/cognigate/sandbox/types.js +179 -0
package/dist/cognigate/sandbox/types.js.map +1 -0
package/dist/common/adapters/index.d.ts +34 -0
package/dist/common/adapters/index.d.ts.map +1 -0
package/dist/common/adapters/index.js +46 -0
package/dist/common/adapters/index.js.map +1 -0
package/dist/common/adapters/memory-cache.d.ts +91 -0
package/dist/common/adapters/memory-cache.d.ts.map +1 -0
package/dist/common/adapters/memory-cache.js +201 -0
package/dist/common/adapters/memory-cache.js.map +1 -0
package/dist/common/adapters/memory-lock.d.ts +75 -0
package/dist/common/adapters/memory-lock.d.ts.map +1 -0
package/dist/common/adapters/memory-lock.js +219 -0
package/dist/common/adapters/memory-lock.js.map +1 -0
package/dist/common/adapters/memory-queue.d.ts +64 -0
package/dist/common/adapters/memory-queue.d.ts.map +1 -0
package/dist/common/adapters/memory-queue.js +233 -0
package/dist/common/adapters/memory-queue.js.map +1 -0
package/dist/common/adapters/memory-ratelimit.d.ts +78 -0
package/dist/common/adapters/memory-ratelimit.d.ts.map +1 -0
package/dist/common/adapters/memory-ratelimit.js +196 -0
package/dist/common/adapters/memory-ratelimit.js.map +1 -0
package/dist/common/adapters/memory-session.d.ts +105 -0
package/dist/common/adapters/memory-session.d.ts.map +1 -0
package/dist/common/adapters/memory-session.js +302 -0
package/dist/common/adapters/memory-session.js.map +1 -0
package/dist/common/adapters/provider.d.ts +47 -0
package/dist/common/adapters/provider.d.ts.map +1 -0
package/dist/common/adapters/provider.js +347 -0
package/dist/common/adapters/provider.js.map +1 -0
package/dist/common/adapters/types.d.ts +247 -0
package/dist/common/adapters/types.d.ts.map +1 -0
package/dist/common/adapters/types.js +11 -0
package/dist/common/adapters/types.js.map +1 -0
package/dist/common/alerts.d.ts +57 -0
package/dist/common/alerts.d.ts.map +1 -0
package/dist/common/alerts.js +216 -0
package/dist/common/alerts.js.map +1 -0
package/dist/common/authorization.d.ts +137 -0
package/dist/common/authorization.d.ts.map +1 -0
package/dist/common/authorization.js +270 -0
package/dist/common/authorization.js.map +1 -0
package/dist/common/canonical-bridge.d.ts +153 -0
package/dist/common/canonical-bridge.d.ts.map +1 -0
package/dist/common/canonical-bridge.js +236 -0
package/dist/common/canonical-bridge.js.map +1 -0
package/dist/common/canonical-json.d.ts +64 -0
package/dist/common/canonical-json.d.ts.map +1 -0
package/dist/common/canonical-json.js +95 -0
package/dist/common/canonical-json.js.map +1 -0
package/dist/common/circuit-breaker.d.ts +320 -0
package/dist/common/circuit-breaker.d.ts.map +1 -0
package/dist/common/circuit-breaker.js +887 -0
package/dist/common/circuit-breaker.js.map +1 -0
package/dist/common/config.d.ts +2053 -0
package/dist/common/config.d.ts.map +1 -0
package/dist/common/config.js +1314 -0
package/dist/common/config.js.map +1 -0
package/dist/common/contracts/index.d.ts +2 -0
package/dist/common/contracts/index.d.ts.map +1 -0
package/dist/common/contracts/index.js +2 -0
package/dist/common/contracts/index.js.map +1 -0
package/dist/common/contracts/output.d.ts +81 -0
package/dist/common/contracts/output.d.ts.map +1 -0
package/dist/common/contracts/output.js +38 -0
package/dist/common/contracts/output.js.map +1 -0
package/dist/common/crypto-utils.d.ts +103 -0
package/dist/common/crypto-utils.d.ts.map +1 -0
package/dist/common/crypto-utils.js +275 -0
package/dist/common/crypto-utils.js.map +1 -0
package/dist/common/crypto.d.ts +70 -0
package/dist/common/crypto.d.ts.map +1 -0
package/dist/common/crypto.js +201 -0
package/dist/common/crypto.js.map +1 -0
package/dist/common/database-resilience.d.ts +156 -0
package/dist/common/database-resilience.d.ts.map +1 -0
package/dist/common/database-resilience.js +269 -0
package/dist/common/database-resilience.js.map +1 -0
package/dist/common/db-metrics.d.ts +90 -0
package/dist/common/db-metrics.d.ts.map +1 -0
package/dist/common/db-metrics.js +219 -0
package/dist/common/db-metrics.js.map +1 -0
package/dist/common/db-pool.d.ts +307 -0
package/dist/common/db-pool.d.ts.map +1 -0
package/dist/common/db-pool.js +879 -0
package/dist/common/db-pool.js.map +1 -0
package/dist/common/db.d.ts +105 -0
package/dist/common/db.d.ts.map +1 -0
package/dist/common/db.js +216 -0
package/dist/common/db.js.map +1 -0
package/dist/common/debug-auth-middleware.d.ts +111 -0
package/dist/common/debug-auth-middleware.d.ts.map +1 -0
package/dist/common/debug-auth-middleware.js +285 -0
package/dist/common/debug-auth-middleware.js.map +1 -0
package/dist/common/di.d.ts +202 -0
package/dist/common/di.d.ts.map +1 -0
package/dist/common/di.js +219 -0
package/dist/common/di.js.map +1 -0
package/dist/common/encryption.d.ts +233 -0
package/dist/common/encryption.d.ts.map +1 -0
package/dist/common/encryption.js +527 -0
package/dist/common/encryption.js.map +1 -0
package/dist/common/error-sanitizer.d.ts +67 -0
package/dist/common/error-sanitizer.d.ts.map +1 -0
package/dist/common/error-sanitizer.js +298 -0
package/dist/common/error-sanitizer.js.map +1 -0
package/dist/common/errors.d.ts +229 -0
package/dist/common/errors.d.ts.map +1 -0
package/dist/common/errors.js +349 -0
package/dist/common/errors.js.map +1 -0
package/dist/common/expression/evaluator.d.ts +58 -0
package/dist/common/expression/evaluator.d.ts.map +1 -0
package/dist/common/expression/evaluator.js +326 -0
package/dist/common/expression/evaluator.js.map +1 -0
package/dist/common/expression/index.d.ts +180 -0
package/dist/common/expression/index.d.ts.map +1 -0
package/dist/common/expression/index.js +198 -0
package/dist/common/expression/index.js.map +1 -0
package/dist/common/expression/lexer.d.ts +69 -0
package/dist/common/expression/lexer.d.ts.map +1 -0
package/dist/common/expression/lexer.js +255 -0
package/dist/common/expression/lexer.js.map +1 -0
package/dist/common/expression/parser.d.ts +133 -0
package/dist/common/expression/parser.d.ts.map +1 -0
package/dist/common/expression/parser.js +293 -0
package/dist/common/expression/parser.js.map +1 -0
package/dist/common/group-membership.d.ts +119 -0
package/dist/common/group-membership.d.ts.map +1 -0
package/dist/common/group-membership.js +250 -0
package/dist/common/group-membership.js.map +1 -0
package/dist/common/index.d.ts +14 -0
package/dist/common/index.d.ts.map +1 -0
package/dist/common/index.js +15 -0
package/dist/common/index.js.map +1 -0
package/dist/common/leader-election.d.ts +40 -0
package/dist/common/leader-election.d.ts.map +1 -0
package/dist/common/leader-election.js +232 -0
package/dist/common/leader-election.js.map +1 -0
package/dist/common/lock.d.ts +77 -0
package/dist/common/lock.d.ts.map +1 -0
package/dist/common/lock.js +167 -0
package/dist/common/lock.js.map +1 -0
package/dist/common/logger.d.ts +19 -0
package/dist/common/logger.d.ts.map +1 -0
package/dist/common/logger.js +80 -0
package/dist/common/logger.js.map +1 -0
package/dist/common/metrics-registry.d.ts +48 -0
package/dist/common/metrics-registry.d.ts.map +1 -0
package/dist/common/metrics-registry.js +77 -0
package/dist/common/metrics-registry.js.map +1 -0
package/dist/common/metrics.d.ts +204 -0
package/dist/common/metrics.d.ts.map +1 -0
package/dist/common/metrics.js +497 -0
package/dist/common/metrics.js.map +1 -0
package/dist/common/operation-tracker.d.ts +137 -0
package/dist/common/operation-tracker.d.ts.map +1 -0
package/dist/common/operation-tracker.js +366 -0
package/dist/common/operation-tracker.js.map +1 -0
package/dist/common/provenance/chain.d.ts +54 -0
package/dist/common/provenance/chain.d.ts.map +1 -0
package/dist/common/provenance/chain.js +252 -0
package/dist/common/provenance/chain.js.map +1 -0
package/dist/common/provenance/index.d.ts +14 -0
package/dist/common/provenance/index.d.ts.map +1 -0
package/dist/common/provenance/index.js +19 -0
package/dist/common/provenance/index.js.map +1 -0
package/dist/common/provenance/query.d.ts +111 -0
package/dist/common/provenance/query.d.ts.map +1 -0
package/dist/common/provenance/query.js +310 -0
package/dist/common/provenance/query.js.map +1 -0
package/dist/common/provenance/storage.d.ts +297 -0
package/dist/common/provenance/storage.d.ts.map +1 -0
package/dist/common/provenance/storage.js +436 -0
package/dist/common/provenance/storage.js.map +1 -0
package/dist/common/provenance/tracker.d.ts +57 -0
package/dist/common/provenance/tracker.d.ts.map +1 -0
package/dist/common/provenance/tracker.js +209 -0
package/dist/common/provenance/tracker.js.map +1 -0
package/dist/common/provenance/types.d.ts +146 -0
package/dist/common/provenance/types.d.ts.map +1 -0
package/dist/common/provenance/types.js +10 -0
package/dist/common/provenance/types.js.map +1 -0
package/dist/common/random.d.ts +84 -0
package/dist/common/random.d.ts.map +1 -0
package/dist/common/random.js +130 -0
package/dist/common/random.js.map +1 -0
package/dist/common/redaction.d.ts +49 -0
package/dist/common/redaction.d.ts.map +1 -0
package/dist/common/redaction.js +217 -0
package/dist/common/redaction.js.map +1 -0
package/dist/common/redis-cluster.d.ts +538 -0
package/dist/common/redis-cluster.d.ts.map +1 -0
package/dist/common/redis-cluster.js +1539 -0
package/dist/common/redis-cluster.js.map +1 -0
package/dist/common/redis-resilience.d.ts +270 -0
package/dist/common/redis-resilience.d.ts.map +1 -0
package/dist/common/redis-resilience.js +586 -0
package/dist/common/redis-resilience.js.map +1 -0
package/dist/common/redis.d.ts +19 -0
package/dist/common/redis.d.ts.map +1 -0
package/dist/common/redis.js +73 -0
package/dist/common/redis.js.map +1 -0
package/dist/common/safe-json.d.ts +246 -0
package/dist/common/safe-json.d.ts.map +1 -0
package/dist/common/safe-json.js +442 -0
package/dist/common/safe-json.js.map +1 -0
package/dist/common/secret-generator.d.ts +142 -0
package/dist/common/secret-generator.d.ts.map +1 -0
package/dist/common/secret-generator.js +286 -0
package/dist/common/secret-generator.js.map +1 -0
package/dist/common/secure-fetch.d.ts +182 -0
package/dist/common/secure-fetch.d.ts.map +1 -0
package/dist/common/secure-fetch.js +657 -0
package/dist/common/secure-fetch.js.map +1 -0
package/dist/common/security-mode.d.ts +151 -0
package/dist/common/security-mode.d.ts.map +1 -0
package/dist/common/security-mode.js +482 -0
package/dist/common/security-mode.js.map +1 -0
package/dist/common/telemetry/index.d.ts +82 -0
package/dist/common/telemetry/index.d.ts.map +1 -0
package/dist/common/telemetry/index.js +198 -0
package/dist/common/telemetry/index.js.map +1 -0
package/dist/common/telemetry/instrumentation.d.ts +167 -0
package/dist/common/telemetry/instrumentation.d.ts.map +1 -0
package/dist/common/telemetry/instrumentation.js +492 -0
package/dist/common/telemetry/instrumentation.js.map +1 -0
package/dist/common/telemetry/metrics-bridge.d.ts +227 -0
package/dist/common/telemetry/metrics-bridge.d.ts.map +1 -0
package/dist/common/telemetry/metrics-bridge.js +437 -0
package/dist/common/telemetry/metrics-bridge.js.map +1 -0
package/dist/common/telemetry/middleware.d.ts +114 -0
package/dist/common/telemetry/middleware.d.ts.map +1 -0
package/dist/common/telemetry/middleware.js +353 -0
package/dist/common/telemetry/middleware.js.map +1 -0
package/dist/common/telemetry/propagation.d.ts +221 -0
package/dist/common/telemetry/propagation.d.ts.map +1 -0
package/dist/common/telemetry/propagation.js +409 -0
package/dist/common/telemetry/propagation.js.map +1 -0
package/dist/common/telemetry/spans.d.ts +295 -0
package/dist/common/telemetry/spans.d.ts.map +1 -0
package/dist/common/telemetry/spans.js +439 -0
package/dist/common/telemetry/spans.js.map +1 -0
package/dist/common/telemetry/tracer.d.ts +155 -0
package/dist/common/telemetry/tracer.d.ts.map +1 -0
package/dist/common/telemetry/tracer.js +343 -0
package/dist/common/telemetry/tracer.js.map +1 -0
package/dist/common/telemetry.d.ts +15 -0
package/dist/common/telemetry.d.ts.map +1 -0
package/dist/common/telemetry.js +61 -0
package/dist/common/telemetry.js.map +1 -0
package/dist/common/tenant-context.d.ts +253 -0
package/dist/common/tenant-context.d.ts.map +1 -0
package/dist/common/tenant-context.js +259 -0
package/dist/common/tenant-context.js.map +1 -0
package/dist/common/tenant-verification.d.ts +86 -0
package/dist/common/tenant-verification.d.ts.map +1 -0
package/dist/common/tenant-verification.js +184 -0
package/dist/common/tenant-verification.js.map +1 -0
package/dist/common/timeout.d.ts +40 -0
package/dist/common/timeout.d.ts.map +1 -0
package/dist/common/timeout.js +82 -0
package/dist/common/timeout.js.map +1 -0
package/dist/common/token-revocation.d.ts +44 -0
package/dist/common/token-revocation.d.ts.map +1 -0
package/dist/common/token-revocation.js +169 -0
package/dist/common/token-revocation.js.map +1 -0
package/dist/common/trace.d.ts +149 -0
package/dist/common/trace.d.ts.map +1 -0
package/dist/common/trace.js +328 -0
package/dist/common/trace.js.map +1 -0
package/dist/common/trust-cache.d.ts +263 -0
package/dist/common/trust-cache.d.ts.map +1 -0
package/dist/common/trust-cache.js +670 -0
package/dist/common/trust-cache.js.map +1 -0
package/dist/common/types.d.ts +351 -0
package/dist/common/types.d.ts.map +1 -0
package/dist/common/types.js +55 -0
package/dist/common/types.js.map +1 -0
package/dist/common/validation.d.ts +113 -0
package/dist/common/validation.d.ts.map +1 -0
package/dist/common/validation.js +221 -0
package/dist/common/validation.js.map +1 -0
package/dist/db/client.d.ts +72 -0
package/dist/db/client.d.ts.map +1 -0
package/dist/db/client.js +110 -0
package/dist/db/client.js.map +1 -0
package/dist/db/index.d.ts +9 -0
package/dist/db/index.d.ts.map +1 -0
package/dist/db/index.js +9 -0
package/dist/db/index.js.map +1 -0
package/dist/db/schema/merkle.d.ts +475 -0
package/dist/db/schema/merkle.d.ts.map +1 -0
package/dist/db/schema/merkle.js +100 -0
package/dist/db/schema/merkle.js.map +1 -0
package/dist/db/schema/proofs.d.ts +412 -0
package/dist/db/schema/proofs.d.ts.map +1 -0
package/dist/db/schema/proofs.js +63 -0
package/dist/db/schema/proofs.js.map +1 -0
package/dist/enforce/adapters.d.ts +73 -0
package/dist/enforce/adapters.d.ts.map +1 -0
package/dist/enforce/adapters.js +293 -0
package/dist/enforce/adapters.js.map +1 -0
package/dist/enforce/index.d.ts +213 -0
package/dist/enforce/index.d.ts.map +1 -0
package/dist/enforce/index.js +630 -0
package/dist/enforce/index.js.map +1 -0
package/dist/enforce/repository.d.ts +203 -0
package/dist/enforce/repository.d.ts.map +1 -0
package/dist/enforce/repository.js +359 -0
package/dist/enforce/repository.js.map +1 -0
package/dist/enforce/schema.d.ts +1198 -0
package/dist/enforce/schema.d.ts.map +1 -0
package/dist/enforce/schema.js +257 -0
package/dist/enforce/schema.js.map +1 -0
package/dist/friction/index.d.ts +235 -0
package/dist/friction/index.d.ts.map +1 -0
package/dist/friction/index.js +636 -0
package/dist/friction/index.js.map +1 -0
package/dist/friction/openapi.d.ts +23 -0
package/dist/friction/openapi.d.ts.map +1 -0
package/dist/friction/openapi.js +883 -0
package/dist/friction/openapi.js.map +1 -0
package/dist/friction/routes.d.ts +14 -0
package/dist/friction/routes.d.ts.map +1 -0
package/dist/friction/routes.js +206 -0
package/dist/friction/routes.js.map +1 -0
package/dist/governance/engine.d.ts +158 -0
package/dist/governance/engine.d.ts.map +1 -0
package/dist/governance/engine.js +248 -0
package/dist/governance/engine.js.map +1 -0
package/dist/governance/evaluator.d.ts +106 -0
package/dist/governance/evaluator.d.ts.map +1 -0
package/dist/governance/evaluator.js +277 -0
package/dist/governance/evaluator.js.map +1 -0
package/dist/governance/index.d.ts +11 -0
package/dist/governance/index.d.ts.map +1 -0
package/dist/governance/index.js +14 -0
package/dist/governance/index.js.map +1 -0
package/dist/governance/policy.d.ts +152 -0
package/dist/governance/policy.d.ts.map +1 -0
package/dist/governance/policy.js +152 -0
package/dist/governance/policy.js.map +1 -0
package/dist/index.d.ts +50 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +61 -0
package/dist/index.js.map +1 -0
package/dist/intent/adapters.d.ts +101 -0
package/dist/intent/adapters.d.ts.map +1 -0
package/dist/intent/adapters.js +250 -0
package/dist/intent/adapters.js.map +1 -0
package/dist/intent/audit.d.ts +119 -0
package/dist/intent/audit.d.ts.map +1 -0
package/dist/intent/audit.js +463 -0
package/dist/intent/audit.js.map +1 -0
package/dist/intent/classifier/index.d.ts +121 -0
package/dist/intent/classifier/index.d.ts.map +1 -0
package/dist/intent/classifier/index.js +232 -0
package/dist/intent/classifier/index.js.map +1 -0
package/dist/intent/classifier/patterns.d.ts +129 -0
package/dist/intent/classifier/patterns.d.ts.map +1 -0
package/dist/intent/classifier/patterns.js +471 -0
package/dist/intent/classifier/patterns.js.map +1 -0
package/dist/intent/classifier/risk.d.ts +177 -0
package/dist/intent/classifier/risk.d.ts.map +1 -0
package/dist/intent/classifier/risk.js +335 -0
package/dist/intent/classifier/risk.js.map +1 -0
package/dist/intent/cleanup.d.ts +24 -0
package/dist/intent/cleanup.d.ts.map +1 -0
package/dist/intent/cleanup.js +104 -0
package/dist/intent/cleanup.js.map +1 -0
package/dist/intent/consent.d.ts +238 -0
package/dist/intent/consent.d.ts.map +1 -0
package/dist/intent/consent.js +427 -0
package/dist/intent/consent.js.map +1 -0
package/dist/intent/escalation.d.ts +284 -0
package/dist/intent/escalation.d.ts.map +1 -0
package/dist/intent/escalation.js +618 -0
package/dist/intent/escalation.js.map +1 -0
package/dist/intent/gdpr-rate-limiter.d.ts +170 -0
package/dist/intent/gdpr-rate-limiter.d.ts.map +1 -0
package/dist/intent/gdpr-rate-limiter.js +385 -0
package/dist/intent/gdpr-rate-limiter.js.map +1 -0
package/dist/intent/gdpr.d.ts +323 -0
package/dist/intent/gdpr.d.ts.map +1 -0
package/dist/intent/gdpr.js +1013 -0
package/dist/intent/gdpr.js.map +1 -0
package/dist/intent/health.d.ts +214 -0
package/dist/intent/health.d.ts.map +1 -0
package/dist/intent/health.js +526 -0
package/dist/intent/health.js.map +1 -0
package/dist/intent/index.d.ts +565 -0
package/dist/intent/index.d.ts.map +1 -0
package/dist/intent/index.js +756 -0
package/dist/intent/index.js.map +1 -0
package/dist/intent/metrics.d.ts +399 -0
package/dist/intent/metrics.d.ts.map +1 -0
package/dist/intent/metrics.js +886 -0
package/dist/intent/metrics.js.map +1 -0
package/dist/intent/openapi.d.ts +22 -0
package/dist/intent/openapi.d.ts.map +1 -0
package/dist/intent/openapi.js +1674 -0
package/dist/intent/openapi.js.map +1 -0
package/dist/intent/planner/dependency.d.ts +78 -0
package/dist/intent/planner/dependency.d.ts.map +1 -0
package/dist/intent/planner/dependency.js +334 -0
package/dist/intent/planner/dependency.js.map +1 -0
package/dist/intent/planner/index.d.ts +130 -0
package/dist/intent/planner/index.d.ts.map +1 -0
package/dist/intent/planner/index.js +372 -0
package/dist/intent/planner/index.js.map +1 -0
package/dist/intent/planner/rollback.d.ts +92 -0
package/dist/intent/planner/rollback.d.ts.map +1 -0
package/dist/intent/planner/rollback.js +326 -0
package/dist/intent/planner/rollback.js.map +1 -0
package/dist/intent/planner/templates.d.ts +81 -0
package/dist/intent/planner/templates.d.ts.map +1 -0
package/dist/intent/planner/templates.js +560 -0
package/dist/intent/planner/templates.js.map +1 -0
package/dist/intent/planner/types.d.ts +38 -0
package/dist/intent/planner/types.d.ts.map +1 -0
package/dist/intent/planner/types.js +10 -0
package/dist/intent/planner/types.js.map +1 -0
package/dist/intent/queue.d.ts +150 -0
package/dist/intent/queue.d.ts.map +1 -0
package/dist/intent/queue.js +339 -0
package/dist/intent/queue.js.map +1 -0
package/dist/intent/queues.d.ts +176 -0
package/dist/intent/queues.d.ts.map +1 -0
package/dist/intent/queues.js +1393 -0
package/dist/intent/queues.js.map +1 -0
package/dist/intent/ratelimit.d.ts +147 -0
package/dist/intent/ratelimit.d.ts.map +1 -0
package/dist/intent/ratelimit.js +301 -0
package/dist/intent/ratelimit.js.map +1 -0
package/dist/intent/replay/comparator.d.ts +73 -0
package/dist/intent/replay/comparator.d.ts.map +1 -0
package/dist/intent/replay/comparator.js +320 -0
package/dist/intent/replay/comparator.js.map +1 -0
package/dist/intent/replay/index.d.ts +104 -0
package/dist/intent/replay/index.d.ts.map +1 -0
package/dist/intent/replay/index.js +487 -0
package/dist/intent/replay/index.js.map +1 -0
package/dist/intent/replay/simulator.d.ts +184 -0
package/dist/intent/replay/simulator.d.ts.map +1 -0
package/dist/intent/replay/simulator.js +512 -0
package/dist/intent/replay/simulator.js.map +1 -0
package/dist/intent/replay/snapshot.d.ts +149 -0
package/dist/intent/replay/snapshot.d.ts.map +1 -0
package/dist/intent/replay/snapshot.js +245 -0
package/dist/intent/replay/snapshot.js.map +1 -0
package/dist/intent/replay/types.d.ts +143 -0
package/dist/intent/replay/types.d.ts.map +1 -0
package/dist/intent/replay/types.js +10 -0
package/dist/intent/replay/types.js.map +1 -0
package/dist/intent/repository.d.ts +198 -0
package/dist/intent/repository.d.ts.map +1 -0
package/dist/intent/repository.js +538 -0
package/dist/intent/repository.js.map +1 -0
package/dist/intent/response-middleware.d.ts +156 -0
package/dist/intent/response-middleware.d.ts.map +1 -0
package/dist/intent/response-middleware.js +346 -0
package/dist/intent/response-middleware.js.map +1 -0
package/dist/intent/response.d.ts +267 -0
package/dist/intent/response.d.ts.map +1 -0
package/dist/intent/response.js +402 -0
package/dist/intent/response.js.map +1 -0
package/dist/intent/routes.d.ts +35 -0
package/dist/intent/routes.d.ts.map +1 -0
package/dist/intent/routes.js +1023 -0
package/dist/intent/routes.js.map +1 -0
package/dist/intent/scheduler.d.ts +45 -0
package/dist/intent/scheduler.d.ts.map +1 -0
package/dist/intent/scheduler.js +221 -0
package/dist/intent/scheduler.js.map +1 -0
package/dist/intent/schema.d.ts +3817 -0
package/dist/intent/schema.d.ts.map +1 -0
package/dist/intent/schema.js +631 -0
package/dist/intent/schema.js.map +1 -0
package/dist/intent/shutdown.d.ts +145 -0
package/dist/intent/shutdown.d.ts.map +1 -0
package/dist/intent/shutdown.js +468 -0
package/dist/intent/shutdown.js.map +1 -0
package/dist/intent/state-machine.d.ts +111 -0
package/dist/intent/state-machine.d.ts.map +1 -0
package/dist/intent/state-machine.js +242 -0
package/dist/intent/state-machine.js.map +1 -0
package/dist/intent/tracing.d.ts +152 -0
package/dist/intent/tracing.d.ts.map +1 -0
package/dist/intent/tracing.js +658 -0
package/dist/intent/tracing.js.map +1 -0
package/dist/intent/types.d.ts +188 -0
package/dist/intent/types.d.ts.map +1 -0
package/dist/intent/types.js +25 -0
package/dist/intent/types.js.map +1 -0
package/dist/intent/webhooks/delivery-repository.d.ts +80 -0
package/dist/intent/webhooks/delivery-repository.d.ts.map +1 -0
package/dist/intent/webhooks/delivery-repository.js +251 -0
package/dist/intent/webhooks/delivery-repository.js.map +1 -0
package/dist/intent/webhooks/dns-pinning.d.ts +30 -0
package/dist/intent/webhooks/dns-pinning.d.ts.map +1 -0
package/dist/intent/webhooks/dns-pinning.js +69 -0
package/dist/intent/webhooks/dns-pinning.js.map +1 -0
package/dist/intent/webhooks/index.d.ts +14 -0
package/dist/intent/webhooks/index.d.ts.map +1 -0
package/dist/intent/webhooks/index.js +17 -0
package/dist/intent/webhooks/index.js.map +1 -0
package/dist/intent/webhooks/signature.d.ts +47 -0
package/dist/intent/webhooks/signature.d.ts.map +1 -0
package/dist/intent/webhooks/signature.js +80 -0
package/dist/intent/webhooks/signature.js.map +1 -0
package/dist/intent/webhooks/ssrf-protection.d.ts +29 -0
package/dist/intent/webhooks/ssrf-protection.d.ts.map +1 -0
package/dist/intent/webhooks/ssrf-protection.js +161 -0
package/dist/intent/webhooks/ssrf-protection.js.map +1 -0
package/dist/intent/webhooks/types.d.ts +132 -0
package/dist/intent/webhooks/types.d.ts.map +1 -0
package/dist/intent/webhooks/types.js +14 -0
package/dist/intent/webhooks/types.js.map +1 -0
package/dist/intent/webhooks.d.ts +618 -0
package/dist/intent/webhooks.d.ts.map +1 -0
package/dist/intent/webhooks.js +1836 -0
package/dist/intent/webhooks.js.map +1 -0
package/dist/intent-gateway/ai-act-classifier.d.ts +18 -0
package/dist/intent-gateway/ai-act-classifier.d.ts.map +1 -0
package/dist/intent-gateway/ai-act-classifier.js +296 -0
package/dist/intent-gateway/ai-act-classifier.js.map +1 -0
package/dist/intent-gateway/index.d.ts +43 -0
package/dist/intent-gateway/index.d.ts.map +1 -0
package/dist/intent-gateway/index.js +236 -0
package/dist/intent-gateway/index.js.map +1 -0
package/dist/intent-gateway/jurisdiction-resolver.d.ts +19 -0
package/dist/intent-gateway/jurisdiction-resolver.d.ts.map +1 -0
package/dist/intent-gateway/jurisdiction-resolver.js +236 -0
package/dist/intent-gateway/jurisdiction-resolver.js.map +1 -0
package/dist/intent-gateway/policy-composer.d.ts +27 -0
package/dist/intent-gateway/policy-composer.d.ts.map +1 -0
package/dist/intent-gateway/policy-composer.js +418 -0
package/dist/intent-gateway/policy-composer.js.map +1 -0
package/dist/intent-gateway/regime-selector.d.ts +26 -0
package/dist/intent-gateway/regime-selector.d.ts.map +1 -0
package/dist/intent-gateway/regime-selector.js +185 -0
package/dist/intent-gateway/regime-selector.js.map +1 -0
package/dist/intent-gateway/types.d.ts +103 -0
package/dist/intent-gateway/types.d.ts.map +1 -0
package/dist/intent-gateway/types.js +85 -0
package/dist/intent-gateway/types.js.map +1 -0
package/dist/observability/alerts.d.ts +136 -0
package/dist/observability/alerts.d.ts.map +1 -0
package/dist/observability/alerts.js +485 -0
package/dist/observability/alerts.js.map +1 -0
package/dist/observability/health.d.ts +102 -0
package/dist/observability/health.d.ts.map +1 -0
package/dist/observability/health.js +415 -0
package/dist/observability/health.js.map +1 -0
package/dist/observability/index.d.ts +29 -0
package/dist/observability/index.d.ts.map +1 -0
package/dist/observability/index.js +72 -0
package/dist/observability/index.js.map +1 -0
package/dist/observability/logging.d.ts +90 -0
package/dist/observability/logging.d.ts.map +1 -0
package/dist/observability/logging.js +260 -0
package/dist/observability/logging.js.map +1 -0
package/dist/observability/metrics.d.ts +226 -0
package/dist/observability/metrics.d.ts.map +1 -0
package/dist/observability/metrics.js +527 -0
package/dist/observability/metrics.js.map +1 -0
package/dist/observability/tracing.d.ts +120 -0
package/dist/observability/tracing.d.ts.map +1 -0
package/dist/observability/tracing.js +285 -0
package/dist/observability/tracing.js.map +1 -0
package/dist/persistence/audit.d.ts +169 -0
package/dist/persistence/audit.d.ts.map +1 -0
package/dist/persistence/audit.js +342 -0
package/dist/persistence/audit.js.map +1 -0
package/dist/persistence/index.d.ts +13 -0
package/dist/persistence/index.d.ts.map +1 -0
package/dist/persistence/index.js +15 -0
package/dist/persistence/index.js.map +1 -0
package/dist/persistence/repository.d.ts +192 -0
package/dist/persistence/repository.d.ts.map +1 -0
package/dist/persistence/repository.js +223 -0
package/dist/persistence/repository.js.map +1 -0
package/dist/policy/diff.d.ts +88 -0
package/dist/policy/diff.d.ts.map +1 -0
package/dist/policy/diff.js +325 -0
package/dist/policy/diff.js.map +1 -0
package/dist/policy/distributed-cache.d.ts +205 -0
package/dist/policy/distributed-cache.d.ts.map +1 -0
package/dist/policy/distributed-cache.js +683 -0
package/dist/policy/distributed-cache.js.map +1 -0
package/dist/policy/evaluator.d.ts +102 -0
package/dist/policy/evaluator.d.ts.map +1 -0
package/dist/policy/evaluator.js +648 -0
package/dist/policy/evaluator.js.map +1 -0
package/dist/policy/index.d.ts +24 -0
package/dist/policy/index.d.ts.map +1 -0
package/dist/policy/index.js +27 -0
package/dist/policy/index.js.map +1 -0
package/dist/policy/loader.d.ts +63 -0
package/dist/policy/loader.d.ts.map +1 -0
package/dist/policy/loader.js +176 -0
package/dist/policy/loader.js.map +1 -0
package/dist/policy/service.d.ts +240 -0
package/dist/policy/service.d.ts.map +1 -0
package/dist/policy/service.js +1032 -0
package/dist/policy/service.js.map +1 -0
package/dist/policy/types.d.ts +220 -0
package/dist/policy/types.d.ts.map +1 -0
package/dist/policy/types.js +36 -0
package/dist/policy/types.js.map +1 -0
package/dist/policy/visual-builder/index.d.ts +201 -0
package/dist/policy/visual-builder/index.d.ts.map +1 -0
package/dist/policy/visual-builder/index.js +727 -0
package/dist/policy/visual-builder/index.js.map +1 -0
package/dist/policy/visual-builder/inheritance.d.ts +151 -0
package/dist/policy/visual-builder/inheritance.d.ts.map +1 -0
package/dist/policy/visual-builder/inheritance.js +314 -0
package/dist/policy/visual-builder/inheritance.js.map +1 -0
package/dist/policy/visual-builder/propagation.d.ts +146 -0
package/dist/policy/visual-builder/propagation.d.ts.map +1 -0
package/dist/policy/visual-builder/propagation.js +299 -0
package/dist/policy/visual-builder/propagation.js.map +1 -0
package/dist/policy/visual-builder/routes.d.ts +14 -0
package/dist/policy/visual-builder/routes.d.ts.map +1 -0
package/dist/policy/visual-builder/routes.js +528 -0
package/dist/policy/visual-builder/routes.js.map +1 -0
package/dist/policy/visual-builder/simulator.d.ts +161 -0
package/dist/policy/visual-builder/simulator.d.ts.map +1 -0
package/dist/policy/visual-builder/simulator.js +413 -0
package/dist/policy/visual-builder/simulator.js.map +1 -0
package/dist/policy/visual-builder/templates.d.ts +119 -0
package/dist/policy/visual-builder/templates.d.ts.map +1 -0
package/dist/policy/visual-builder/templates.js +627 -0
package/dist/policy/visual-builder/templates.js.map +1 -0
package/dist/proof/chain/index.d.ts +271 -0
package/dist/proof/chain/index.d.ts.map +1 -0
package/dist/proof/chain/index.js +483 -0
package/dist/proof/chain/index.js.map +1 -0
package/dist/proof/index.d.ts +206 -0
package/dist/proof/index.d.ts.map +1 -0
package/dist/proof/index.js +597 -0
package/dist/proof/index.js.map +1 -0
package/dist/proof/merkle-service.d.ts +194 -0
package/dist/proof/merkle-service.d.ts.map +1 -0
package/dist/proof/merkle-service.js +463 -0
package/dist/proof/merkle-service.js.map +1 -0
package/dist/proof/merkle.d.ts +118 -0
package/dist/proof/merkle.d.ts.map +1 -0
package/dist/proof/merkle.js +265 -0
package/dist/proof/merkle.js.map +1 -0
package/dist/security/ai-governance/access-policy.d.ts +197 -0
package/dist/security/ai-governance/access-policy.d.ts.map +1 -0
package/dist/security/ai-governance/access-policy.js +522 -0
package/dist/security/ai-governance/access-policy.js.map +1 -0
package/dist/security/ai-governance/audit-trail.d.ts +241 -0
package/dist/security/ai-governance/audit-trail.d.ts.map +1 -0
package/dist/security/ai-governance/audit-trail.js +645 -0
package/dist/security/ai-governance/audit-trail.js.map +1 -0
package/dist/security/ai-governance/bias-detection.d.ts +221 -0
package/dist/security/ai-governance/bias-detection.d.ts.map +1 -0
package/dist/security/ai-governance/bias-detection.js +615 -0
package/dist/security/ai-governance/bias-detection.js.map +1 -0
package/dist/security/ai-governance/index.d.ts +92 -0
package/dist/security/ai-governance/index.d.ts.map +1 -0
package/dist/security/ai-governance/index.js +184 -0
package/dist/security/ai-governance/index.js.map +1 -0
package/dist/security/ai-governance/middleware.d.ts +110 -0
package/dist/security/ai-governance/middleware.d.ts.map +1 -0
package/dist/security/ai-governance/middleware.js +359 -0
package/dist/security/ai-governance/middleware.js.map +1 -0
package/dist/security/ai-governance/model-registry.d.ts +229 -0
package/dist/security/ai-governance/model-registry.d.ts.map +1 -0
package/dist/security/ai-governance/model-registry.js +535 -0
package/dist/security/ai-governance/model-registry.js.map +1 -0
package/dist/security/ai-governance/output-filter.d.ts +150 -0
package/dist/security/ai-governance/output-filter.d.ts.map +1 -0
package/dist/security/ai-governance/output-filter.js +561 -0
package/dist/security/ai-governance/output-filter.js.map +1 -0
package/dist/security/ai-governance/prompt-injection.d.ts +153 -0
package/dist/security/ai-governance/prompt-injection.d.ts.map +1 -0
package/dist/security/ai-governance/prompt-injection.js +614 -0
package/dist/security/ai-governance/prompt-injection.js.map +1 -0
package/dist/security/ai-governance/rate-limiter.d.ts +156 -0
package/dist/security/ai-governance/rate-limiter.d.ts.map +1 -0
package/dist/security/ai-governance/rate-limiter.js +541 -0
package/dist/security/ai-governance/rate-limiter.js.map +1 -0
package/dist/security/ai-governance/types.d.ts +594 -0
package/dist/security/ai-governance/types.d.ts.map +1 -0
package/dist/security/ai-governance/types.js +6 -0
package/dist/security/ai-governance/types.js.map +1 -0
package/dist/security/alerting/channels/base.d.ts +91 -0
package/dist/security/alerting/channels/base.d.ts.map +1 -0
package/dist/security/alerting/channels/base.js +128 -0
package/dist/security/alerting/channels/base.js.map +1 -0
package/dist/security/alerting/channels/email.d.ts +92 -0
package/dist/security/alerting/channels/email.d.ts.map +1 -0
package/dist/security/alerting/channels/email.js +418 -0
package/dist/security/alerting/channels/email.js.map +1 -0
package/dist/security/alerting/channels/http-base.d.ts +86 -0
package/dist/security/alerting/channels/http-base.d.ts.map +1 -0
package/dist/security/alerting/channels/http-base.js +133 -0
package/dist/security/alerting/channels/http-base.js.map +1 -0
package/dist/security/alerting/channels/index.d.ts +30 -0
package/dist/security/alerting/channels/index.d.ts.map +1 -0
package/dist/security/alerting/channels/index.js +22 -0
package/dist/security/alerting/channels/index.js.map +1 -0
package/dist/security/alerting/channels/pagerduty.d.ts +70 -0
package/dist/security/alerting/channels/pagerduty.d.ts.map +1 -0
package/dist/security/alerting/channels/pagerduty.js +248 -0
package/dist/security/alerting/channels/pagerduty.js.map +1 -0
package/dist/security/alerting/channels/slack.d.ts +55 -0
package/dist/security/alerting/channels/slack.d.ts.map +1 -0
package/dist/security/alerting/channels/slack.js +215 -0
package/dist/security/alerting/channels/slack.js.map +1 -0
package/dist/security/alerting/channels/sns.d.ts +87 -0
package/dist/security/alerting/channels/sns.d.ts.map +1 -0
package/dist/security/alerting/channels/sns.js +251 -0
package/dist/security/alerting/channels/sns.js.map +1 -0
package/dist/security/alerting/channels/webhook.d.ts +92 -0
package/dist/security/alerting/channels/webhook.d.ts.map +1 -0
package/dist/security/alerting/channels/webhook.js +203 -0
package/dist/security/alerting/channels/webhook.js.map +1 -0
package/dist/security/alerting/detector.d.ts +217 -0
package/dist/security/alerting/detector.d.ts.map +1 -0
package/dist/security/alerting/detector.js +725 -0
package/dist/security/alerting/detector.js.map +1 -0
package/dist/security/alerting/index.d.ts +57 -0
package/dist/security/alerting/index.d.ts.map +1 -0
package/dist/security/alerting/index.js +214 -0
package/dist/security/alerting/index.js.map +1 -0
package/dist/security/alerting/service.d.ts +190 -0
package/dist/security/alerting/service.d.ts.map +1 -0
package/dist/security/alerting/service.js +815 -0
package/dist/security/alerting/service.js.map +1 -0
package/dist/security/alerting/types.d.ts +2165 -0
package/dist/security/alerting/types.d.ts.map +1 -0
package/dist/security/alerting/types.js +278 -0
package/dist/security/alerting/types.js.map +1 -0
package/dist/security/anomaly/detectors/account-compromise.d.ts +198 -0
package/dist/security/anomaly/detectors/account-compromise.d.ts.map +1 -0
package/dist/security/anomaly/detectors/account-compromise.js +815 -0
package/dist/security/anomaly/detectors/account-compromise.js.map +1 -0
package/dist/security/anomaly/detectors/data-exfiltration.d.ts +175 -0
package/dist/security/anomaly/detectors/data-exfiltration.d.ts.map +1 -0
package/dist/security/anomaly/detectors/data-exfiltration.js +733 -0
package/dist/security/anomaly/detectors/data-exfiltration.js.map +1 -0
package/dist/security/anomaly/detectors/geographic.d.ts +100 -0
package/dist/security/anomaly/detectors/geographic.d.ts.map +1 -0
package/dist/security/anomaly/detectors/geographic.js +348 -0
package/dist/security/anomaly/detectors/geographic.js.map +1 -0
package/dist/security/anomaly/detectors/index.d.ts +86 -0
package/dist/security/anomaly/detectors/index.d.ts.map +1 -0
package/dist/security/anomaly/detectors/index.js +118 -0
package/dist/security/anomaly/detectors/index.js.map +1 -0
package/dist/security/anomaly/detectors/lateral-movement.d.ts +168 -0
package/dist/security/anomaly/detectors/lateral-movement.d.ts.map +1 -0
package/dist/security/anomaly/detectors/lateral-movement.js +795 -0
package/dist/security/anomaly/detectors/lateral-movement.js.map +1 -0
package/dist/security/anomaly/detectors/privilege-escalation.d.ts +177 -0
package/dist/security/anomaly/detectors/privilege-escalation.d.ts.map +1 -0
package/dist/security/anomaly/detectors/privilege-escalation.js +741 -0
package/dist/security/anomaly/detectors/privilege-escalation.js.map +1 -0
package/dist/security/anomaly/detectors/temporal.d.ts +71 -0
package/dist/security/anomaly/detectors/temporal.d.ts.map +1 -0
package/dist/security/anomaly/detectors/temporal.js +398 -0
package/dist/security/anomaly/detectors/temporal.js.map +1 -0
package/dist/security/anomaly/detectors/volume.d.ts +97 -0
package/dist/security/anomaly/detectors/volume.d.ts.map +1 -0
package/dist/security/anomaly/detectors/volume.js +424 -0
package/dist/security/anomaly/detectors/volume.js.map +1 -0
package/dist/security/anomaly/index.d.ts +128 -0
package/dist/security/anomaly/index.d.ts.map +1 -0
package/dist/security/anomaly/index.js +378 -0
package/dist/security/anomaly/index.js.map +1 -0
package/dist/security/anomaly/types.d.ts +1209 -0
package/dist/security/anomaly/types.d.ts.map +1 -0
package/dist/security/anomaly/types.js +193 -0
package/dist/security/anomaly/types.js.map +1 -0
package/dist/security/api-keys/cache.d.ts +255 -0
package/dist/security/api-keys/cache.d.ts.map +1 -0
package/dist/security/api-keys/cache.js +595 -0
package/dist/security/api-keys/cache.js.map +1 -0
package/dist/security/api-keys/db-store.d.ts +150 -0
package/dist/security/api-keys/db-store.d.ts.map +1 -0
package/dist/security/api-keys/db-store.js +694 -0
package/dist/security/api-keys/db-store.js.map +1 -0
package/dist/security/api-keys/index.d.ts +29 -0
package/dist/security/api-keys/index.d.ts.map +1 -0
package/dist/security/api-keys/index.js +81 -0
package/dist/security/api-keys/index.js.map +1 -0
package/dist/security/api-keys/middleware.d.ts +164 -0
package/dist/security/api-keys/middleware.d.ts.map +1 -0
package/dist/security/api-keys/middleware.js +392 -0
package/dist/security/api-keys/middleware.js.map +1 -0
package/dist/security/api-keys/service.d.ts +226 -0
package/dist/security/api-keys/service.d.ts.map +1 -0
package/dist/security/api-keys/service.js +861 -0
package/dist/security/api-keys/service.js.map +1 -0
package/dist/security/api-keys/store.d.ts +241 -0
package/dist/security/api-keys/store.d.ts.map +1 -0
package/dist/security/api-keys/store.js +360 -0
package/dist/security/api-keys/store.js.map +1 -0
package/dist/security/api-keys/types.d.ts +718 -0
package/dist/security/api-keys/types.d.ts.map +1 -0
package/dist/security/api-keys/types.js +162 -0
package/dist/security/api-keys/types.js.map +1 -0
package/dist/security/brute-force.d.ts +390 -0
package/dist/security/brute-force.d.ts.map +1 -0
package/dist/security/brute-force.js +677 -0
package/dist/security/brute-force.js.map +1 -0
package/dist/security/config-validator.d.ts +152 -0
package/dist/security/config-validator.d.ts.map +1 -0
package/dist/security/config-validator.js +667 -0
package/dist/security/config-validator.js.map +1 -0
package/dist/security/crypto/fips-mode.d.ts +726 -0
package/dist/security/crypto/fips-mode.d.ts.map +1 -0
package/dist/security/crypto/fips-mode.js +1297 -0
package/dist/security/crypto/fips-mode.js.map +1 -0
package/dist/security/crypto/index.d.ts +203 -0
package/dist/security/crypto/index.d.ts.map +1 -0
package/dist/security/crypto/index.js +293 -0
package/dist/security/crypto/index.js.map +1 -0
package/dist/security/crypto/post-quantum/benchmark.d.ts +125 -0
package/dist/security/crypto/post-quantum/benchmark.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/benchmark.js +530 -0
package/dist/security/crypto/post-quantum/benchmark.js.map +1 -0
package/dist/security/crypto/post-quantum/dilithium.d.ts +146 -0
package/dist/security/crypto/post-quantum/dilithium.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/dilithium.js +662 -0
package/dist/security/crypto/post-quantum/dilithium.js.map +1 -0
package/dist/security/crypto/post-quantum/hybrid.d.ts +267 -0
package/dist/security/crypto/post-quantum/hybrid.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/hybrid.js +457 -0
package/dist/security/crypto/post-quantum/hybrid.js.map +1 -0
package/dist/security/crypto/post-quantum/index.d.ts +166 -0
package/dist/security/crypto/post-quantum/index.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/index.js +236 -0
package/dist/security/crypto/post-quantum/index.js.map +1 -0
package/dist/security/crypto/post-quantum/kyber.d.ts +131 -0
package/dist/security/crypto/post-quantum/kyber.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/kyber.js +640 -0
package/dist/security/crypto/post-quantum/kyber.js.map +1 -0
package/dist/security/crypto/post-quantum/migration.d.ts +230 -0
package/dist/security/crypto/post-quantum/migration.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/migration.js +563 -0
package/dist/security/crypto/post-quantum/migration.js.map +1 -0
package/dist/security/crypto/post-quantum/types.d.ts +1056 -0
package/dist/security/crypto/post-quantum/types.d.ts.map +1 -0
package/dist/security/crypto/post-quantum/types.js +350 -0
package/dist/security/crypto/post-quantum/types.js.map +1 -0
package/dist/security/crypto/shamir/comparison.d.ts +128 -0
package/dist/security/crypto/shamir/comparison.d.ts.map +1 -0
package/dist/security/crypto/shamir/comparison.js +423 -0
package/dist/security/crypto/shamir/comparison.js.map +1 -0
package/dist/security/crypto/shamir/index.d.ts +76 -0
package/dist/security/crypto/shamir/index.d.ts.map +1 -0
package/dist/security/crypto/shamir/index.js +155 -0
package/dist/security/crypto/shamir/index.js.map +1 -0
package/dist/security/crypto/shamir/proofs.d.ts +259 -0
package/dist/security/crypto/shamir/proofs.d.ts.map +1 -0
package/dist/security/crypto/shamir/proofs.js +605 -0
package/dist/security/crypto/shamir/proofs.js.map +1 -0
package/dist/security/crypto/shamir/property-tests.d.ts +104 -0
package/dist/security/crypto/shamir/property-tests.d.ts.map +1 -0
package/dist/security/crypto/shamir/property-tests.js +480 -0
package/dist/security/crypto/shamir/property-tests.js.map +1 -0
package/dist/security/crypto/shamir/security-analysis.d.ts +97 -0
package/dist/security/crypto/shamir/security-analysis.d.ts.map +1 -0
package/dist/security/crypto/shamir/security-analysis.js +503 -0
package/dist/security/crypto/shamir/security-analysis.js.map +1 -0
package/dist/security/crypto/shamir/test-vectors.d.ts +116 -0
package/dist/security/crypto/shamir/test-vectors.d.ts.map +1 -0
package/dist/security/crypto/shamir/test-vectors.js +377 -0
package/dist/security/crypto/shamir/test-vectors.js.map +1 -0
package/dist/security/crypto/shamir/types.d.ts +281 -0
package/dist/security/crypto/shamir/types.d.ts.map +1 -0
package/dist/security/crypto/shamir/types.js +82 -0
package/dist/security/crypto/shamir/types.js.map +1 -0
package/dist/security/crypto/shamir/verified-shamir.d.ts +170 -0
package/dist/security/crypto/shamir/verified-shamir.d.ts.map +1 -0
package/dist/security/crypto/shamir/verified-shamir.js +624 -0
package/dist/security/crypto/shamir/verified-shamir.js.map +1 -0
package/dist/security/csrf.d.ts +215 -0
package/dist/security/csrf.d.ts.map +1 -0
package/dist/security/csrf.js +467 -0
package/dist/security/csrf.js.map +1 -0
package/dist/security/distributed-state.d.ts +331 -0
package/dist/security/distributed-state.d.ts.map +1 -0
package/dist/security/distributed-state.js +768 -0
package/dist/security/distributed-state.js.map +1 -0
package/dist/security/dlp/index.d.ts +27 -0
package/dist/security/dlp/index.d.ts.map +1 -0
package/dist/security/dlp/index.js +54 -0
package/dist/security/dlp/index.js.map +1 -0
package/dist/security/dlp/scanner.d.ts +451 -0
package/dist/security/dlp/scanner.d.ts.map +1 -0
package/dist/security/dlp/scanner.js +1241 -0
package/dist/security/dlp/scanner.js.map +1 -0
package/dist/security/dpop.d.ts +260 -0
package/dist/security/dpop.d.ts.map +1 -0
package/dist/security/dpop.js +1058 -0
package/dist/security/dpop.js.map +1 -0
package/dist/security/encryption/decorators.d.ts +263 -0
package/dist/security/encryption/decorators.d.ts.map +1 -0
package/dist/security/encryption/decorators.js +359 -0
package/dist/security/encryption/decorators.js.map +1 -0
package/dist/security/encryption/index.d.ts +83 -0
package/dist/security/encryption/index.d.ts.map +1 -0
package/dist/security/encryption/index.js +140 -0
package/dist/security/encryption/index.js.map +1 -0
package/dist/security/encryption/key-provider.d.ts +335 -0
package/dist/security/encryption/key-provider.d.ts.map +1 -0
package/dist/security/encryption/key-provider.js +853 -0
package/dist/security/encryption/key-provider.js.map +1 -0
package/dist/security/encryption/middleware.d.ts +279 -0
package/dist/security/encryption/middleware.d.ts.map +1 -0
package/dist/security/encryption/middleware.js +493 -0
package/dist/security/encryption/middleware.js.map +1 -0
package/dist/security/encryption/service.d.ts +164 -0
package/dist/security/encryption/service.d.ts.map +1 -0
package/dist/security/encryption/service.js +623 -0
package/dist/security/encryption/service.js.map +1 -0
package/dist/security/encryption/types.d.ts +745 -0
package/dist/security/encryption/types.d.ts.map +1 -0
package/dist/security/encryption/types.js +229 -0
package/dist/security/encryption/types.js.map +1 -0
package/dist/security/error-sanitizer.d.ts +329 -0
package/dist/security/error-sanitizer.d.ts.map +1 -0
package/dist/security/error-sanitizer.js +700 -0
package/dist/security/error-sanitizer.js.map +1 -0
package/dist/security/fingerprint-service.d.ts +139 -0
package/dist/security/fingerprint-service.d.ts.map +1 -0
package/dist/security/fingerprint-service.js +240 -0
package/dist/security/fingerprint-service.js.map +1 -0
package/dist/security/headers/csp.d.ts +270 -0
package/dist/security/headers/csp.d.ts.map +1 -0
package/dist/security/headers/csp.js +655 -0
package/dist/security/headers/csp.js.map +1 -0
package/dist/security/headers/hsts.d.ts +161 -0
package/dist/security/headers/hsts.d.ts.map +1 -0
package/dist/security/headers/hsts.js +346 -0
package/dist/security/headers/hsts.js.map +1 -0
package/dist/security/headers/index.d.ts +47 -0
package/dist/security/headers/index.d.ts.map +1 -0
package/dist/security/headers/index.js +110 -0
package/dist/security/headers/index.js.map +1 -0
package/dist/security/headers/middleware.d.ts +70 -0
package/dist/security/headers/middleware.d.ts.map +1 -0
package/dist/security/headers/middleware.js +549 -0
package/dist/security/headers/middleware.js.map +1 -0
package/dist/security/headers/permissions-policy.d.ts +189 -0
package/dist/security/headers/permissions-policy.d.ts.map +1 -0
package/dist/security/headers/permissions-policy.js +508 -0
package/dist/security/headers/permissions-policy.js.map +1 -0
package/dist/security/headers/types.d.ts +1570 -0
package/dist/security/headers/types.d.ts.map +1 -0
package/dist/security/headers/types.js +281 -0
package/dist/security/headers/types.js.map +1 -0
package/dist/security/headers/validator.d.ts +36 -0
package/dist/security/headers/validator.d.ts.map +1 -0
package/dist/security/headers/validator.js +616 -0
package/dist/security/headers/validator.js.map +1 -0
package/dist/security/hsm/aws-cloudhsm.d.ts +157 -0
package/dist/security/hsm/aws-cloudhsm.d.ts.map +1 -0
package/dist/security/hsm/aws-cloudhsm.js +712 -0
package/dist/security/hsm/aws-cloudhsm.js.map +1 -0
package/dist/security/hsm/azure-hsm.d.ts +174 -0
package/dist/security/hsm/azure-hsm.d.ts.map +1 -0
package/dist/security/hsm/azure-hsm.js +792 -0
package/dist/security/hsm/azure-hsm.js.map +1 -0
package/dist/security/hsm/gcp-hsm.d.ts +184 -0
package/dist/security/hsm/gcp-hsm.d.ts.map +1 -0
package/dist/security/hsm/gcp-hsm.js +817 -0
package/dist/security/hsm/gcp-hsm.js.map +1 -0
package/dist/security/hsm/hsm-service.d.ts +264 -0
package/dist/security/hsm/hsm-service.d.ts.map +1 -0
package/dist/security/hsm/hsm-service.js +772 -0
package/dist/security/hsm/hsm-service.js.map +1 -0
package/dist/security/hsm/index.d.ts +248 -0
package/dist/security/hsm/index.d.ts.map +1 -0
package/dist/security/hsm/index.js +329 -0
package/dist/security/hsm/index.js.map +1 -0
package/dist/security/hsm/key-ceremony.d.ts +214 -0
package/dist/security/hsm/key-ceremony.d.ts.map +1 -0
package/dist/security/hsm/key-ceremony.js +636 -0
package/dist/security/hsm/key-ceremony.js.map +1 -0
package/dist/security/hsm/key-operations.d.ts +218 -0
package/dist/security/hsm/key-operations.d.ts.map +1 -0
package/dist/security/hsm/key-operations.js +625 -0
package/dist/security/hsm/key-operations.js.map +1 -0
package/dist/security/hsm/local-softHSM.d.ts +122 -0
package/dist/security/hsm/local-softHSM.d.ts.map +1 -0
package/dist/security/hsm/local-softHSM.js +786 -0
package/dist/security/hsm/local-softHSM.js.map +1 -0
package/dist/security/hsm/pkcs11-wrapper.d.ts +386 -0
package/dist/security/hsm/pkcs11-wrapper.d.ts.map +1 -0
package/dist/security/hsm/pkcs11-wrapper.js +1149 -0
package/dist/security/hsm/pkcs11-wrapper.js.map +1 -0
package/dist/security/hsm/provider.d.ts +333 -0
package/dist/security/hsm/provider.d.ts.map +1 -0
package/dist/security/hsm/provider.js +264 -0
package/dist/security/hsm/provider.js.map +1 -0
package/dist/security/hsm/thales-luna.d.ts +209 -0
package/dist/security/hsm/thales-luna.d.ts.map +1 -0
package/dist/security/hsm/thales-luna.js +820 -0
package/dist/security/hsm/thales-luna.js.map +1 -0
package/dist/security/incident/actions/block-ip.d.ts +82 -0
package/dist/security/incident/actions/block-ip.d.ts.map +1 -0
package/dist/security/incident/actions/block-ip.js +454 -0
package/dist/security/incident/actions/block-ip.js.map +1 -0
package/dist/security/incident/actions/collect-evidence.d.ts +93 -0
package/dist/security/incident/actions/collect-evidence.d.ts.map +1 -0
package/dist/security/incident/actions/collect-evidence.js +449 -0
package/dist/security/incident/actions/collect-evidence.js.map +1 -0
package/dist/security/incident/actions/index.d.ts +39 -0
package/dist/security/incident/actions/index.d.ts.map +1 -0
package/dist/security/incident/actions/index.js +52 -0
package/dist/security/incident/actions/index.js.map +1 -0
package/dist/security/incident/actions/isolate-system.d.ts +61 -0
package/dist/security/incident/actions/isolate-system.d.ts.map +1 -0
package/dist/security/incident/actions/isolate-system.js +369 -0
package/dist/security/incident/actions/isolate-system.js.map +1 -0
package/dist/security/incident/actions/notify-stakeholders.d.ts +70 -0
package/dist/security/incident/actions/notify-stakeholders.d.ts.map +1 -0
package/dist/security/incident/actions/notify-stakeholders.js +377 -0
package/dist/security/incident/actions/notify-stakeholders.js.map +1 -0
package/dist/security/incident/actions/revoke-credentials.d.ts +75 -0
package/dist/security/incident/actions/revoke-credentials.d.ts.map +1 -0
package/dist/security/incident/actions/revoke-credentials.js +320 -0
package/dist/security/incident/actions/revoke-credentials.js.map +1 -0
package/dist/security/incident/actions/scale-monitoring.d.ts +88 -0
package/dist/security/incident/actions/scale-monitoring.d.ts.map +1 -0
package/dist/security/incident/actions/scale-monitoring.js +473 -0
package/dist/security/incident/actions/scale-monitoring.js.map +1 -0
package/dist/security/incident/executor.d.ts +128 -0
package/dist/security/incident/executor.d.ts.map +1 -0
package/dist/security/incident/executor.js +695 -0
package/dist/security/incident/executor.js.map +1 -0
package/dist/security/incident/index.d.ts +220 -0
package/dist/security/incident/index.d.ts.map +1 -0
package/dist/security/incident/index.js +1284 -0
package/dist/security/incident/index.js.map +1 -0
package/dist/security/incident/notification.d.ts +68 -0
package/dist/security/incident/notification.d.ts.map +1 -0
package/dist/security/incident/notification.js +512 -0
package/dist/security/incident/notification.js.map +1 -0
package/dist/security/incident/playbooks/account-compromise.d.ts +13 -0
package/dist/security/incident/playbooks/account-compromise.d.ts.map +1 -0
package/dist/security/incident/playbooks/account-compromise.js +379 -0
package/dist/security/incident/playbooks/account-compromise.js.map +1 -0
package/dist/security/incident/playbooks/configuration-error.d.ts +17 -0
package/dist/security/incident/playbooks/configuration-error.d.ts.map +1 -0
package/dist/security/incident/playbooks/configuration-error.js +340 -0
package/dist/security/incident/playbooks/configuration-error.js.map +1 -0
package/dist/security/incident/playbooks/data-breach.d.ts +13 -0
package/dist/security/incident/playbooks/data-breach.d.ts.map +1 -0
package/dist/security/incident/playbooks/data-breach.js +394 -0
package/dist/security/incident/playbooks/data-breach.js.map +1 -0
package/dist/security/incident/playbooks/denial-of-service.d.ts +13 -0
package/dist/security/incident/playbooks/denial-of-service.d.ts.map +1 -0
package/dist/security/incident/playbooks/denial-of-service.js +540 -0
package/dist/security/incident/playbooks/denial-of-service.js.map +1 -0
package/dist/security/incident/playbooks/index.d.ts +36 -0
package/dist/security/incident/playbooks/index.d.ts.map +1 -0
package/dist/security/incident/playbooks/index.js +56 -0
package/dist/security/incident/playbooks/index.js.map +1 -0
package/dist/security/incident/playbooks/insider-threat.d.ts +18 -0
package/dist/security/incident/playbooks/insider-threat.d.ts.map +1 -0
package/dist/security/incident/playbooks/insider-threat.js +600 -0
package/dist/security/incident/playbooks/insider-threat.js.map +1 -0
package/dist/security/incident/playbooks/malware.d.ts +13 -0
package/dist/security/incident/playbooks/malware.d.ts.map +1 -0
package/dist/security/incident/playbooks/malware.js +515 -0
package/dist/security/incident/playbooks/malware.js.map +1 -0
package/dist/security/incident/playbooks/ransomware.d.ts +14 -0
package/dist/security/incident/playbooks/ransomware.d.ts.map +1 -0
package/dist/security/incident/playbooks/ransomware.js +693 -0
package/dist/security/incident/playbooks/ransomware.js.map +1 -0
package/dist/security/incident/playbooks/unauthorized-access.d.ts +13 -0
package/dist/security/incident/playbooks/unauthorized-access.d.ts.map +1 -0
package/dist/security/incident/playbooks/unauthorized-access.js +412 -0
package/dist/security/incident/playbooks/unauthorized-access.js.map +1 -0
package/dist/security/incident/triggers.d.ts +120 -0
package/dist/security/incident/triggers.d.ts.map +1 -0
package/dist/security/incident/triggers.js +708 -0
package/dist/security/incident/triggers.js.map +1 -0
package/dist/security/incident/types.d.ts +1517 -0
package/dist/security/incident/types.d.ts.map +1 -0
package/dist/security/incident/types.js +222 -0
package/dist/security/incident/types.js.map +1 -0
package/dist/security/index.d.ts +59 -0
package/dist/security/index.d.ts.map +1 -0
package/dist/security/index.js +295 -0
package/dist/security/index.js.map +1 -0
package/dist/security/injection-detector.d.ts +510 -0
package/dist/security/injection-detector.d.ts.map +1 -0
package/dist/security/injection-detector.js +1325 -0
package/dist/security/injection-detector.js.map +1 -0
package/dist/security/introspection.d.ts +137 -0
package/dist/security/introspection.d.ts.map +1 -0
package/dist/security/introspection.js +451 -0
package/dist/security/introspection.js.map +1 -0
package/dist/security/key-rotation.d.ts +213 -0
package/dist/security/key-rotation.d.ts.map +1 -0
package/dist/security/key-rotation.js +530 -0
package/dist/security/key-rotation.js.map +1 -0
package/dist/security/kms/aws-kms.d.ts +152 -0
package/dist/security/kms/aws-kms.d.ts.map +1 -0
package/dist/security/kms/aws-kms.js +808 -0
package/dist/security/kms/aws-kms.js.map +1 -0
package/dist/security/kms/index.d.ts +165 -0
package/dist/security/kms/index.d.ts.map +1 -0
package/dist/security/kms/index.js +351 -0
package/dist/security/kms/index.js.map +1 -0
package/dist/security/kms/local.d.ts +127 -0
package/dist/security/kms/local.d.ts.map +1 -0
package/dist/security/kms/local.js +682 -0
package/dist/security/kms/local.js.map +1 -0
package/dist/security/kms/types.d.ts +1000 -0
package/dist/security/kms/types.d.ts.map +1 -0
package/dist/security/kms/types.js +167 -0
package/dist/security/kms/types.js.map +1 -0
package/dist/security/kms/vault.d.ts +165 -0
package/dist/security/kms/vault.d.ts.map +1 -0
package/dist/security/kms/vault.js +820 -0
package/dist/security/kms/vault.js.map +1 -0
package/dist/security/mfa/index.d.ts +17 -0
package/dist/security/mfa/index.d.ts.map +1 -0
package/dist/security/mfa/index.js +37 -0
package/dist/security/mfa/index.js.map +1 -0
package/dist/security/mfa/mfa-middleware.d.ts +74 -0
package/dist/security/mfa/mfa-middleware.d.ts.map +1 -0
package/dist/security/mfa/mfa-middleware.js +244 -0
package/dist/security/mfa/mfa-middleware.js.map +1 -0
package/dist/security/mfa/mfa-service.d.ts +115 -0
package/dist/security/mfa/mfa-service.d.ts.map +1 -0
package/dist/security/mfa/mfa-service.js +509 -0
package/dist/security/mfa/mfa-service.js.map +1 -0
package/dist/security/mfa/mfa-store.d.ts +615 -0
package/dist/security/mfa/mfa-store.d.ts.map +1 -0
package/dist/security/mfa/mfa-store.js +431 -0
package/dist/security/mfa/mfa-store.js.map +1 -0
package/dist/security/mfa/types.d.ts +417 -0
package/dist/security/mfa/types.d.ts.map +1 -0
package/dist/security/mfa/types.js +123 -0
package/dist/security/mfa/types.js.map +1 -0
package/dist/security/middleware.d.ts +179 -0
package/dist/security/middleware.d.ts.map +1 -0
package/dist/security/middleware.js +534 -0
package/dist/security/middleware.js.map +1 -0
package/dist/security/pairwise-did.d.ts +157 -0
package/dist/security/pairwise-did.d.ts.map +1 -0
package/dist/security/pairwise-did.js +450 -0
package/dist/security/pairwise-did.js.map +1 -0
package/dist/security/pam/break-glass.d.ts +776 -0
package/dist/security/pam/break-glass.d.ts.map +1 -0
package/dist/security/pam/break-glass.js +1137 -0
package/dist/security/pam/break-glass.js.map +1 -0
package/dist/security/pam/index.d.ts +120 -0
package/dist/security/pam/index.d.ts.map +1 -0
package/dist/security/pam/index.js +179 -0
package/dist/security/pam/index.js.map +1 -0
package/dist/security/pam/jit-access.d.ts +482 -0
package/dist/security/pam/jit-access.d.ts.map +1 -0
package/dist/security/pam/jit-access.js +1030 -0
package/dist/security/pam/jit-access.js.map +1 -0
package/dist/security/pam/session-recording.d.ts +1007 -0
package/dist/security/pam/session-recording.d.ts.map +1 -0
package/dist/security/pam/session-recording.js +1047 -0
package/dist/security/pam/session-recording.js.map +1 -0
package/dist/security/password-hashing.d.ts +199 -0
package/dist/security/password-hashing.d.ts.map +1 -0
package/dist/security/password-hashing.js +366 -0
package/dist/security/password-hashing.js.map +1 -0
package/dist/security/password-policy.d.ts +304 -0
package/dist/security/password-policy.d.ts.map +1 -0
package/dist/security/password-policy.js +730 -0
package/dist/security/password-policy.js.map +1 -0
package/dist/security/pkce.d.ts +269 -0
package/dist/security/pkce.d.ts.map +1 -0
package/dist/security/pkce.js +408 -0
package/dist/security/pkce.js.map +1 -0
package/dist/security/policy-engine/built-in-policies.d.ts +90 -0
package/dist/security/policy-engine/built-in-policies.d.ts.map +1 -0
package/dist/security/policy-engine/built-in-policies.js +627 -0
package/dist/security/policy-engine/built-in-policies.js.map +1 -0
package/dist/security/policy-engine/condition-evaluator.d.ts +129 -0
package/dist/security/policy-engine/condition-evaluator.d.ts.map +1 -0
package/dist/security/policy-engine/condition-evaluator.js +647 -0
package/dist/security/policy-engine/condition-evaluator.js.map +1 -0
package/dist/security/policy-engine/engine.d.ts +200 -0
package/dist/security/policy-engine/engine.d.ts.map +1 -0
package/dist/security/policy-engine/engine.js +752 -0
package/dist/security/policy-engine/engine.js.map +1 -0
package/dist/security/policy-engine/index.d.ts +58 -0
package/dist/security/policy-engine/index.d.ts.map +1 -0
package/dist/security/policy-engine/index.js +80 -0
package/dist/security/policy-engine/index.js.map +1 -0
package/dist/security/policy-engine/middleware.d.ts +77 -0
package/dist/security/policy-engine/middleware.d.ts.map +1 -0
package/dist/security/policy-engine/middleware.js +375 -0
package/dist/security/policy-engine/middleware.js.map +1 -0
package/dist/security/policy-engine/rule-evaluator.d.ts +140 -0
package/dist/security/policy-engine/rule-evaluator.d.ts.map +1 -0
package/dist/security/policy-engine/rule-evaluator.js +593 -0
package/dist/security/policy-engine/rule-evaluator.js.map +1 -0
package/dist/security/policy-engine/types.d.ts +2855 -0
package/dist/security/policy-engine/types.d.ts.map +1 -0
package/dist/security/policy-engine/types.js +443 -0
package/dist/security/policy-engine/types.js.map +1 -0
package/dist/security/rbac/index.d.ts +317 -0
package/dist/security/rbac/index.d.ts.map +1 -0
package/dist/security/rbac/index.js +618 -0
package/dist/security/rbac/index.js.map +1 -0
package/dist/security/rbac/permissions.d.ts +305 -0
package/dist/security/rbac/permissions.d.ts.map +1 -0
package/dist/security/rbac/permissions.js +947 -0
package/dist/security/rbac/permissions.js.map +1 -0
package/dist/security/rbac/policy-engine.d.ts +542 -0
package/dist/security/rbac/policy-engine.d.ts.map +1 -0
package/dist/security/rbac/policy-engine.js +1244 -0
package/dist/security/rbac/policy-engine.js.map +1 -0
package/dist/security/rbac/roles.d.ts +478 -0
package/dist/security/rbac/roles.d.ts.map +1 -0
package/dist/security/rbac/roles.js +363 -0
package/dist/security/rbac/roles.js.map +1 -0
package/dist/security/refresh-token.d.ts +305 -0
package/dist/security/refresh-token.d.ts.map +1 -0
package/dist/security/refresh-token.js +674 -0
package/dist/security/refresh-token.js.map +1 -0
package/dist/security/request-integrity.d.ts +289 -0
package/dist/security/request-integrity.d.ts.map +1 -0
package/dist/security/request-integrity.js +663 -0
package/dist/security/request-integrity.js.map +1 -0
package/dist/security/revocation-check.d.ts +188 -0
package/dist/security/revocation-check.d.ts.map +1 -0
package/dist/security/revocation-check.js +606 -0
package/dist/security/revocation-check.js.map +1 -0
package/dist/security/revocation.d.ts +191 -0
package/dist/security/revocation.d.ts.map +1 -0
package/dist/security/revocation.js +522 -0
package/dist/security/revocation.js.map +1 -0
package/dist/security/secrets-rotation.d.ts +501 -0
package/dist/security/secrets-rotation.d.ts.map +1 -0
package/dist/security/secrets-rotation.js +934 -0
package/dist/security/secrets-rotation.js.map +1 -0
package/dist/security/secure-memory.d.ts +325 -0
package/dist/security/secure-memory.d.ts.map +1 -0
package/dist/security/secure-memory.js +595 -0
package/dist/security/secure-memory.js.map +1 -0
package/dist/security/security-service.d.ts +186 -0
package/dist/security/security-service.d.ts.map +1 -0
package/dist/security/security-service.js +531 -0
package/dist/security/security-service.js.map +1 -0
package/dist/security/service-auth/index.d.ts +20 -0
package/dist/security/service-auth/index.d.ts.map +1 -0
package/dist/security/service-auth/index.js +61 -0
package/dist/security/service-auth/index.js.map +1 -0
package/dist/security/service-auth/service-account.d.ts +357 -0
package/dist/security/service-auth/service-account.d.ts.map +1 -0
package/dist/security/service-auth/service-account.js +475 -0
package/dist/security/service-auth/service-account.js.map +1 -0
package/dist/security/service-auth/service-auth-middleware.d.ts +174 -0
package/dist/security/service-auth/service-auth-middleware.d.ts.map +1 -0
package/dist/security/service-auth/service-auth-middleware.js +461 -0
package/dist/security/service-auth/service-auth-middleware.js.map +1 -0
package/dist/security/service-auth/service-token.d.ts +391 -0
package/dist/security/service-auth/service-token.d.ts.map +1 -0
package/dist/security/service-auth/service-token.js +472 -0
package/dist/security/service-auth/service-token.js.map +1 -0
package/dist/security/session-manager.d.ts +177 -0
package/dist/security/session-manager.d.ts.map +1 -0
package/dist/security/session-manager.js +353 -0
package/dist/security/session-manager.js.map +1 -0
package/dist/security/session-store.d.ts +205 -0
package/dist/security/session-store.d.ts.map +1 -0
package/dist/security/session-store.js +581 -0
package/dist/security/session-store.js.map +1 -0
package/dist/security/siem/connector.d.ts +147 -0
package/dist/security/siem/connector.d.ts.map +1 -0
package/dist/security/siem/connector.js +254 -0
package/dist/security/siem/connector.js.map +1 -0
package/dist/security/siem/datadog.d.ts +81 -0
package/dist/security/siem/datadog.d.ts.map +1 -0
package/dist/security/siem/datadog.js +362 -0
package/dist/security/siem/datadog.js.map +1 -0
package/dist/security/siem/elastic.d.ts +83 -0
package/dist/security/siem/elastic.d.ts.map +1 -0
package/dist/security/siem/elastic.js +514 -0
package/dist/security/siem/elastic.js.map +1 -0
package/dist/security/siem/enrichment.d.ts +133 -0
package/dist/security/siem/enrichment.d.ts.map +1 -0
package/dist/security/siem/enrichment.js +434 -0
package/dist/security/siem/enrichment.js.map +1 -0
package/dist/security/siem/formatter.d.ts +118 -0
package/dist/security/siem/formatter.d.ts.map +1 -0
package/dist/security/siem/formatter.js +381 -0
package/dist/security/siem/formatter.js.map +1 -0
package/dist/security/siem/hooks.d.ts +107 -0
package/dist/security/siem/hooks.d.ts.map +1 -0
package/dist/security/siem/hooks.js +459 -0
package/dist/security/siem/hooks.js.map +1 -0
package/dist/security/siem/index.d.ts +83 -0
package/dist/security/siem/index.d.ts.map +1 -0
package/dist/security/siem/index.js +95 -0
package/dist/security/siem/index.js.map +1 -0
package/dist/security/siem/service.d.ts +153 -0
package/dist/security/siem/service.d.ts.map +1 -0
package/dist/security/siem/service.js +615 -0
package/dist/security/siem/service.js.map +1 -0
package/dist/security/siem/splunk.d.ts +76 -0
package/dist/security/siem/splunk.d.ts.map +1 -0
package/dist/security/siem/splunk.js +283 -0
package/dist/security/siem/splunk.js.map +1 -0
package/dist/security/siem/types.d.ts +1980 -0
package/dist/security/siem/types.d.ts.map +1 -0
package/dist/security/siem/types.js +268 -0
package/dist/security/siem/types.js.map +1 -0
package/dist/security/tee-production.d.ts +157 -0
package/dist/security/tee-production.d.ts.map +1 -0
package/dist/security/tee-production.js +792 -0
package/dist/security/tee-production.js.map +1 -0
package/dist/security/tee.d.ts +182 -0
package/dist/security/tee.d.ts.map +1 -0
package/dist/security/tee.js +1031 -0
package/dist/security/tee.js.map +1 -0
package/dist/security/threat-intel/bot-detection.d.ts +275 -0
package/dist/security/threat-intel/bot-detection.d.ts.map +1 -0
package/dist/security/threat-intel/bot-detection.js +890 -0
package/dist/security/threat-intel/bot-detection.js.map +1 -0
package/dist/security/threat-intel/credential-stuffing.d.ts +368 -0
package/dist/security/threat-intel/credential-stuffing.d.ts.map +1 -0
package/dist/security/threat-intel/credential-stuffing.js +957 -0
package/dist/security/threat-intel/credential-stuffing.js.map +1 -0
package/dist/security/threat-intel/index.d.ts +10 -0
package/dist/security/threat-intel/index.d.ts.map +1 -0
package/dist/security/threat-intel/index.js +18 -0
package/dist/security/threat-intel/index.js.map +1 -0
package/dist/security/threat-intel/ip-reputation.d.ts +323 -0
package/dist/security/threat-intel/ip-reputation.d.ts.map +1 -0
package/dist/security/threat-intel/ip-reputation.js +923 -0
package/dist/security/threat-intel/ip-reputation.js.map +1 -0
package/dist/security/token-lifecycle.d.ts +272 -0
package/dist/security/token-lifecycle.d.ts.map +1 -0
package/dist/security/token-lifecycle.js +732 -0
package/dist/security/token-lifecycle.js.map +1 -0
package/dist/security/token-lifetime.d.ts +206 -0
package/dist/security/token-lifetime.d.ts.map +1 -0
package/dist/security/token-lifetime.js +388 -0
package/dist/security/token-lifetime.js.map +1 -0
package/dist/security/trust-oracle/alerts.d.ts +202 -0
package/dist/security/trust-oracle/alerts.d.ts.map +1 -0
package/dist/security/trust-oracle/alerts.js +763 -0
package/dist/security/trust-oracle/alerts.js.map +1 -0
package/dist/security/trust-oracle/api.d.ts +116 -0
package/dist/security/trust-oracle/api.d.ts.map +1 -0
package/dist/security/trust-oracle/api.js +721 -0
package/dist/security/trust-oracle/api.js.map +1 -0
package/dist/security/trust-oracle/continuous-monitoring.d.ts +105 -0
package/dist/security/trust-oracle/continuous-monitoring.d.ts.map +1 -0
package/dist/security/trust-oracle/continuous-monitoring.js +696 -0
package/dist/security/trust-oracle/continuous-monitoring.js.map +1 -0
package/dist/security/trust-oracle/data-sources.d.ts +126 -0
package/dist/security/trust-oracle/data-sources.d.ts.map +1 -0
package/dist/security/trust-oracle/data-sources.js +867 -0
package/dist/security/trust-oracle/data-sources.js.map +1 -0
package/dist/security/trust-oracle/index.d.ts +79 -0
package/dist/security/trust-oracle/index.d.ts.map +1 -0
package/dist/security/trust-oracle/index.js +206 -0
package/dist/security/trust-oracle/index.js.map +1 -0
package/dist/security/trust-oracle/oracle.d.ts +125 -0
package/dist/security/trust-oracle/oracle.d.ts.map +1 -0
package/dist/security/trust-oracle/oracle.js +489 -0
package/dist/security/trust-oracle/oracle.js.map +1 -0
package/dist/security/trust-oracle/reporting.d.ts +145 -0
package/dist/security/trust-oracle/reporting.d.ts.map +1 -0
package/dist/security/trust-oracle/reporting.js +1098 -0
package/dist/security/trust-oracle/reporting.js.map +1 -0
package/dist/security/trust-oracle/risk-scorer.d.ts +207 -0
package/dist/security/trust-oracle/risk-scorer.d.ts.map +1 -0
package/dist/security/trust-oracle/risk-scorer.js +1033 -0
package/dist/security/trust-oracle/risk-scorer.js.map +1 -0
package/dist/security/trust-oracle/types.d.ts +444 -0
package/dist/security/trust-oracle/types.d.ts.map +1 -0
package/dist/security/trust-oracle/types.js +6 -0
package/dist/security/trust-oracle/types.js.map +1 -0
package/dist/security/trust-oracle/vendor-registry.d.ts +228 -0
package/dist/security/trust-oracle/vendor-registry.d.ts.map +1 -0
package/dist/security/trust-oracle/vendor-registry.js +727 -0
package/dist/security/trust-oracle/vendor-registry.js.map +1 -0
package/dist/security/types.d.ts +1777 -0
package/dist/security/types.d.ts.map +1 -0
package/dist/security/types.js +388 -0
package/dist/security/types.js.map +1 -0
package/dist/security/webauthn/index.d.ts +47 -0
package/dist/security/webauthn/index.d.ts.map +1 -0
package/dist/security/webauthn/index.js +48 -0
package/dist/security/webauthn/index.js.map +1 -0
package/dist/security/webauthn/middleware.d.ts +109 -0
package/dist/security/webauthn/middleware.d.ts.map +1 -0
package/dist/security/webauthn/middleware.js +629 -0
package/dist/security/webauthn/middleware.js.map +1 -0
package/dist/security/webauthn/service.d.ts +179 -0
package/dist/security/webauthn/service.d.ts.map +1 -0
package/dist/security/webauthn/service.js +758 -0
package/dist/security/webauthn/service.js.map +1 -0
package/dist/security/webauthn/store.d.ts +240 -0
package/dist/security/webauthn/store.d.ts.map +1 -0
package/dist/security/webauthn/store.js +505 -0
package/dist/security/webauthn/store.js.map +1 -0
package/dist/security/webauthn/types.d.ts +678 -0
package/dist/security/webauthn/types.d.ts.map +1 -0
package/dist/security/webauthn/types.js +176 -0
package/dist/security/webauthn/types.js.map +1 -0
package/dist/security/zkp/circuits.d.ts +296 -0
package/dist/security/zkp/circuits.d.ts.map +1 -0
package/dist/security/zkp/circuits.js +771 -0
package/dist/security/zkp/circuits.js.map +1 -0
package/dist/security/zkp/commitment.d.ts +319 -0
package/dist/security/zkp/commitment.d.ts.map +1 -0
package/dist/security/zkp/commitment.js +591 -0
package/dist/security/zkp/commitment.js.map +1 -0
package/dist/security/zkp/compliance.d.ts +251 -0
package/dist/security/zkp/compliance.d.ts.map +1 -0
package/dist/security/zkp/compliance.js +734 -0
package/dist/security/zkp/compliance.js.map +1 -0
package/dist/security/zkp/index.d.ts +184 -0
package/dist/security/zkp/index.d.ts.map +1 -0
package/dist/security/zkp/index.js +285 -0
package/dist/security/zkp/index.js.map +1 -0
package/dist/security/zkp/integration.d.ts +289 -0
package/dist/security/zkp/integration.d.ts.map +1 -0
package/dist/security/zkp/integration.js +571 -0
package/dist/security/zkp/integration.js.map +1 -0
package/dist/security/zkp/prover.d.ts +158 -0
package/dist/security/zkp/prover.d.ts.map +1 -0
package/dist/security/zkp/prover.js +465 -0
package/dist/security/zkp/prover.js.map +1 -0
package/dist/security/zkp/snark-utils.d.ts +321 -0
package/dist/security/zkp/snark-utils.d.ts.map +1 -0
package/dist/security/zkp/snark-utils.js +640 -0
package/dist/security/zkp/snark-utils.js.map +1 -0
package/dist/security/zkp/types.d.ts +1192 -0
package/dist/security/zkp/types.d.ts.map +1 -0
package/dist/security/zkp/types.js +264 -0
package/dist/security/zkp/types.js.map +1 -0
package/dist/security/zkp/verifier.d.ts +111 -0
package/dist/security/zkp/verifier.d.ts.map +1 -0
package/dist/security/zkp/verifier.js +554 -0
package/dist/security/zkp/verifier.js.map +1 -0
package/dist/semantic-governance/context-validator.d.ts +158 -0
package/dist/semantic-governance/context-validator.d.ts.map +1 -0
package/dist/semantic-governance/context-validator.js +598 -0
package/dist/semantic-governance/context-validator.js.map +1 -0
package/dist/semantic-governance/credential-manager.d.ts +156 -0
package/dist/semantic-governance/credential-manager.d.ts.map +1 -0
package/dist/semantic-governance/credential-manager.js +438 -0
package/dist/semantic-governance/credential-manager.js.map +1 -0
package/dist/semantic-governance/dual-channel.d.ts +138 -0
package/dist/semantic-governance/dual-channel.d.ts.map +1 -0
package/dist/semantic-governance/dual-channel.js +333 -0
package/dist/semantic-governance/dual-channel.js.map +1 -0
package/dist/semantic-governance/index.d.ts +107 -0
package/dist/semantic-governance/index.d.ts.map +1 -0
package/dist/semantic-governance/index.js +141 -0
package/dist/semantic-governance/index.js.map +1 -0
package/dist/semantic-governance/inference-validator.d.ts +114 -0
package/dist/semantic-governance/inference-validator.d.ts.map +1 -0
package/dist/semantic-governance/inference-validator.js +390 -0
package/dist/semantic-governance/inference-validator.js.map +1 -0
package/dist/semantic-governance/instruction-validator.d.ts +146 -0
package/dist/semantic-governance/instruction-validator.d.ts.map +1 -0
package/dist/semantic-governance/instruction-validator.js +363 -0
package/dist/semantic-governance/instruction-validator.js.map +1 -0
package/dist/semantic-governance/integration.d.ts +253 -0
package/dist/semantic-governance/integration.d.ts.map +1 -0
package/dist/semantic-governance/integration.js +658 -0
package/dist/semantic-governance/integration.js.map +1 -0
package/dist/semantic-governance/output-validator.d.ts +135 -0
package/dist/semantic-governance/output-validator.d.ts.map +1 -0
package/dist/semantic-governance/output-validator.js +448 -0
package/dist/semantic-governance/output-validator.js.map +1 -0
package/dist/semantic-governance/service.d.ts +120 -0
package/dist/semantic-governance/service.d.ts.map +1 -0
package/dist/semantic-governance/service.js +527 -0
package/dist/semantic-governance/service.js.map +1 -0
package/dist/semantic-governance/types.d.ts +3925 -0
package/dist/semantic-governance/types.d.ts.map +1 -0
package/dist/semantic-governance/types.js +471 -0
package/dist/semantic-governance/types.js.map +1 -0
package/dist/trust-engine/car-integration.d.ts +263 -0
package/dist/trust-engine/car-integration.d.ts.map +1 -0
package/dist/trust-engine/car-integration.js +320 -0
package/dist/trust-engine/car-integration.js.map +1 -0
package/dist/trust-engine/context.d.ts +198 -0
package/dist/trust-engine/context.d.ts.map +1 -0
package/dist/trust-engine/context.js +308 -0
package/dist/trust-engine/context.js.map +1 -0
package/dist/trust-engine/diminishing-returns.d.ts +123 -0
package/dist/trust-engine/diminishing-returns.d.ts.map +1 -0
package/dist/trust-engine/diminishing-returns.js +197 -0
package/dist/trust-engine/diminishing-returns.js.map +1 -0
package/dist/trust-engine/index.d.ts +433 -0
package/dist/trust-engine/index.d.ts.map +1 -0
package/dist/trust-engine/index.js +1241 -0
package/dist/trust-engine/index.js.map +1 -0
package/dist/trust-engine/observability.d.ts +175 -0
package/dist/trust-engine/observability.d.ts.map +1 -0
package/dist/trust-engine/observability.js +246 -0
package/dist/trust-engine/observability.js.map +1 -0
package/dist/trust-engine/signal-diversity.d.ts +130 -0
package/dist/trust-engine/signal-diversity.d.ts.map +1 -0
package/dist/trust-engine/signal-diversity.js +238 -0
package/dist/trust-engine/signal-diversity.js.map +1 -0
package/dist/versioning/deprecation.d.ts +65 -0
package/dist/versioning/deprecation.d.ts.map +1 -0
package/dist/versioning/deprecation.js +199 -0
package/dist/versioning/deprecation.js.map +1 -0
package/dist/versioning/index.d.ts +46 -0
package/dist/versioning/index.d.ts.map +1 -0
package/dist/versioning/index.js +76 -0
package/dist/versioning/index.js.map +1 -0
package/dist/versioning/semver.d.ts +116 -0
package/dist/versioning/semver.d.ts.map +1 -0
package/dist/versioning/semver.js +321 -0
package/dist/versioning/semver.js.map +1 -0
package/package.json +161 -0

package/dist/security/pam/jit-access.js ADDED Viewed

@@ -0,0 +1,1030 @@
+/**
+ * Privileged Access Management (PAM) - Just-In-Time Access
+ *
+ * Provides time-limited privilege elevation with:
+ * - Request-based elevation workflow
+ * - Multi-approver support
+ * - Automatic session expiration
+ * - Full audit trail
+ * - Alerting integration
+ * - Escalation for SLA breaches
+ *
+ * @packageDocumentation
+ * @module security/pam/jit-access
+ */
+import { z } from 'zod';
+import { createLogger } from '../../common/logger.js';
+import { getRedis } from '../../common/redis.js';
+import { getSecurityAuditLogger, } from '../../audit/security-logger.js';
+import { getSecurityAlertService, } from '../alerting/service.js';
+import { AlertSeverity, SecurityEventType } from '../alerting/types.js';
+const logger = createLogger({ component: 'jit-access' });
+// =============================================================================
+// Constants
+// =============================================================================
+/** Redis key prefixes */
+const KEY_PREFIX = {
+    TICKET: 'vorion:pam:ticket:',
+    SESSION: 'vorion:pam:session:',
+    USER_TICKETS: 'vorion:pam:user:tickets:',
+    USER_SESSIONS: 'vorion:pam:user:sessions:',
+    RESOURCE_SESSIONS: 'vorion:pam:resource:sessions:',
+    AUDIT: 'vorion:pam:audit:',
+    ESCALATION: 'vorion:pam:escalation:',
+};
+/** Maximum elevation duration in minutes (8 hours) */
+const MAX_ELEVATION_DURATION_MINUTES = 480;
+/** Pending ticket expiration in seconds (1 hour) */
+const PENDING_TICKET_TTL_SECONDS = 3600;
+/** Default SLA for approval in minutes by urgency */
+const APPROVAL_SLA_MINUTES = {
+    low: 60,
+    medium: 30,
+    high: 15,
+    critical: 5,
+};
+// =============================================================================
+// Zod Schemas
+// =============================================================================
+/**
+ * Elevation urgency levels
+ */
+export const ElevationUrgencySchema = z.enum(['low', 'medium', 'high', 'critical']);
+/**
+ * Ticket status
+ */
+export const TicketStatusSchema = z.enum([
+    'pending',
+    'approved',
+    'denied',
+    'expired',
+    'revoked',
+]);
+/**
+ * Elevation request schema
+ */
+export const ElevationRequestSchema = z.object({
+    userId: z.string().min(1),
+    resource: z.string().min(1),
+    permissions: z.array(z.string().min(1)).min(1),
+    reason: z.string().min(10).max(1000),
+    durationMinutes: z.number().int().positive().max(MAX_ELEVATION_DURATION_MINUTES),
+    urgency: ElevationUrgencySchema,
+    metadata: z.record(z.unknown()).optional(),
+});
+/**
+ * Approval record schema
+ */
+export const ApprovalSchema = z.object({
+    approverId: z.string().min(1),
+    approvedAt: z.string().datetime(),
+    comment: z.string().optional(),
+});
+/**
+ * Elevation ticket schema
+ */
+export const ElevationTicketSchema = z.object({
+    id: z.string().uuid(),
+    status: TicketStatusSchema,
+    request: ElevationRequestSchema,
+    requiredApprovers: z.array(z.string().min(1)),
+    requiredApprovalCount: z.number().int().positive(),
+    currentApprovals: z.array(ApprovalSchema),
+    deniedBy: z.string().optional(),
+    deniedAt: z.string().datetime().optional(),
+    denialReason: z.string().optional(),
+    revokedBy: z.string().optional(),
+    revokedAt: z.string().datetime().optional(),
+    revocationReason: z.string().optional(),
+    createdAt: z.string().datetime(),
+    expiresAt: z.string().datetime(),
+    escalatedAt: z.string().datetime().optional(),
+});
+/**
+ * Elevated session schema
+ */
+export const ElevatedSessionSchema = z.object({
+    id: z.string().uuid(),
+    ticketId: z.string().uuid(),
+    userId: z.string().min(1),
+    grantedPermissions: z.array(z.string().min(1)),
+    resource: z.string().min(1),
+    startedAt: z.string().datetime(),
+    expiresAt: z.string().datetime(),
+    lastActivityAt: z.string().datetime(),
+    revokedAt: z.string().datetime().optional(),
+    revokedBy: z.string().optional(),
+    revocationReason: z.string().optional(),
+});
+/**
+ * Audit action schema
+ */
+export const AuditActionSchema = z.enum([
+    'request_created',
+    'approval_granted',
+    'approval_denied',
+    'session_started',
+    'session_activity',
+    'session_expired',
+    'session_revoked',
+    'ticket_expired',
+    'ticket_escalated',
+]);
+/**
+ * PAM audit entry schema
+ */
+export const PAMAuditEntrySchema = z.object({
+    id: z.string().uuid(),
+    timestamp: z.string().datetime(),
+    action: AuditActionSchema,
+    ticketId: z.string().uuid().optional(),
+    sessionId: z.string().uuid().optional(),
+    userId: z.string().min(1),
+    actorId: z.string().min(1),
+    resource: z.string().min(1),
+    details: z.record(z.unknown()).optional(),
+});
+// =============================================================================
+// JITAccessService Class
+// =============================================================================
+/**
+ * Just-In-Time Access Service
+ *
+ * Manages temporary privilege elevation with full approval workflow,
+ * session management, and audit trail.
+ */
+export class JITAccessService {
+    redis;
+    securityLogger;
+    alertService;
+    config;
+    escalationCheckInterval = null;
+    sessionExpirationTimers = new Map();
+    constructor(config = {}, deps = {}) {
+        this.redis = deps.redis ?? getRedis();
+        this.securityLogger = deps.securityLogger ?? getSecurityAuditLogger();
+        this.alertService = deps.alertService ?? getSecurityAlertService();
+        this.config = {
+            keyPrefix: config.keyPrefix ?? 'vorion:pam:',
+            defaultApprovalCount: config.defaultApprovalCount ?? 1,
+            approvalSLAMinutes: {
+                ...APPROVAL_SLA_MINUTES,
+                ...config.approvalSLAMinutes,
+            },
+            enableEscalation: config.enableEscalation ?? true,
+            escalationCheckIntervalMs: config.escalationCheckIntervalMs ?? 60000,
+            getApprovers: config.getApprovers,
+            notifyApprovers: config.notifyApprovers,
+        };
+        // Start escalation check if enabled
+        if (this.config.enableEscalation) {
+            this.startEscalationCheck();
+        }
+        logger.info({
+            defaultApprovalCount: this.config.defaultApprovalCount,
+            escalationEnabled: this.config.enableEscalation,
+        }, 'JITAccessService initialized');
+    }
+    // ===========================================================================
+    // Public API - Elevation Requests
+    // ===========================================================================
+    /**
+     * Request temporary privilege elevation
+     *
+     * Creates a new elevation ticket that requires approval before
+     * privileges are granted.
+     *
+     * @param request - Elevation request details
+     * @returns Created elevation ticket
+     */
+    async requestElevation(request) {
+        // Validate request
+        const validatedRequest = ElevationRequestSchema.parse(request);
+        // Get approvers
+        let approvers;
+        let requiredCount;
+        if (this.config.getApprovers) {
+            const result = await this.config.getApprovers(validatedRequest);
+            approvers = result.approvers;
+            requiredCount = result.requiredCount;
+        }
+        else {
+            // Default: require system admins approval
+            approvers = ['admin'];
+            requiredCount = this.config.defaultApprovalCount;
+        }
+        const now = new Date();
+        const expiresAt = new Date(now.getTime() + PENDING_TICKET_TTL_SECONDS * 1000);
+        const ticket = {
+            id: crypto.randomUUID(),
+            status: 'pending',
+            request: validatedRequest,
+            requiredApprovers: approvers,
+            requiredApprovalCount: requiredCount,
+            currentApprovals: [],
+            createdAt: now.toISOString(),
+            expiresAt: expiresAt.toISOString(),
+        };
+        // Store ticket
+        await this.storeTicket(ticket);
+        // Add to user's tickets index
+        await this.redis.sadd(`${KEY_PREFIX.USER_TICKETS}${validatedRequest.userId}`, ticket.id);
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'request_created',
+            ticketId: ticket.id,
+            userId: validatedRequest.userId,
+            actorId: validatedRequest.userId,
+            resource: validatedRequest.resource,
+            details: {
+                permissions: validatedRequest.permissions,
+                durationMinutes: validatedRequest.durationMinutes,
+                urgency: validatedRequest.urgency,
+                requiredApprovalCount: requiredCount,
+            },
+        });
+        // Security audit log
+        const actor = this.buildActor(validatedRequest.userId);
+        const resource = this.buildResource(validatedRequest.resource);
+        await this.securityLogger.log({
+            eventType: 'PRIVILEGE_ESCALATED',
+            actor,
+            action: 'request_elevation',
+            resource,
+            outcome: 'success',
+            metadata: {
+                ticketId: ticket.id,
+                permissions: validatedRequest.permissions,
+                durationMinutes: validatedRequest.durationMinutes,
+                urgency: validatedRequest.urgency,
+            },
+        });
+        // Send alert for elevation request
+        await this.alertService.createAlert({
+            severity: this.getSeverityForUrgency(validatedRequest.urgency),
+            type: SecurityEventType.PRIVILEGE_ESCALATION,
+            title: 'Privilege Elevation Requested',
+            message: `User ${validatedRequest.userId} requested ${validatedRequest.permissions.join(', ')} access to ${validatedRequest.resource}. Reason: ${validatedRequest.reason}`,
+            context: {
+                userId: validatedRequest.userId,
+                resource: validatedRequest.resource,
+                metadata: {
+                    ticketId: ticket.id,
+                    urgency: validatedRequest.urgency,
+                },
+            },
+            source: 'pam-jit-access',
+            suggestedActions: [
+                'Review the elevation request',
+                'Verify user identity and need',
+                'Approve or deny within SLA',
+            ],
+            tags: ['pam', 'elevation-request', validatedRequest.urgency],
+        });
+        // Notify approvers
+        if (this.config.notifyApprovers) {
+            await this.config.notifyApprovers(ticket, approvers);
+        }
+        logger.info({
+            ticketId: ticket.id,
+            userId: validatedRequest.userId,
+            resource: validatedRequest.resource,
+            urgency: validatedRequest.urgency,
+            requiredApprovers: approvers,
+        }, 'Elevation request created');
+        return ticket;
+    }
+    /**
+     * Approve an elevation request
+     *
+     * Adds an approval to the ticket. If sufficient approvals are reached,
+     * creates an elevated session.
+     *
+     * @param ticketId - Ticket to approve
+     * @param approverId - ID of the approving user
+     * @param comment - Optional approval comment
+     * @returns Created elevated session if approval threshold met
+     */
+    async approveElevation(ticketId, approverId, comment) {
+        const ticket = await this.getTicket(ticketId);
+        if (!ticket) {
+            throw new ElevationError('TICKET_NOT_FOUND', `Ticket ${ticketId} not found`);
+        }
+        if (ticket.status !== 'pending') {
+            throw new ElevationError('INVALID_TICKET_STATUS', `Ticket is ${ticket.status}, cannot approve`);
+        }
+        // Check if approver is authorized
+        if (!ticket.requiredApprovers.includes(approverId)) {
+            throw new ElevationError('UNAUTHORIZED_APPROVER', `User ${approverId} is not authorized to approve this ticket`);
+        }
+        // Check if already approved by this user
+        if (ticket.currentApprovals.some((a) => a.approverId === approverId)) {
+            throw new ElevationError('ALREADY_APPROVED', `User ${approverId} has already approved this ticket`);
+        }
+        // Add approval
+        const approval = {
+            approverId,
+            approvedAt: new Date().toISOString(),
+            comment,
+        };
+        ticket.currentApprovals.push(approval);
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'approval_granted',
+            ticketId: ticket.id,
+            userId: ticket.request.userId,
+            actorId: approverId,
+            resource: ticket.request.resource,
+            details: { comment, approvalCount: ticket.currentApprovals.length },
+        });
+        // Check if we have enough approvals
+        if (ticket.currentApprovals.length >= ticket.requiredApprovalCount) {
+            ticket.status = 'approved';
+            // Create elevated session
+            const session = await this.createElevatedSession(ticket);
+            // Update ticket
+            await this.storeTicket(ticket);
+            // Security audit log
+            const actor = this.buildActor(approverId);
+            const resource = this.buildResource(ticket.request.resource);
+            await this.securityLogger.log({
+                eventType: 'PRIVILEGE_ESCALATED',
+                actor,
+                action: 'approve_elevation',
+                resource,
+                outcome: 'success',
+                metadata: {
+                    ticketId: ticket.id,
+                    sessionId: session.id,
+                    grantedPermissions: session.grantedPermissions,
+                },
+            });
+            // Send alert for approved elevation
+            await this.alertService.createAlert({
+                severity: AlertSeverity.MEDIUM,
+                type: SecurityEventType.ADMIN_ACTION,
+                title: 'Privilege Elevation Approved',
+                message: `Elevation request for ${ticket.request.userId} to access ${ticket.request.resource} has been approved. Session expires at ${session.expiresAt}`,
+                context: {
+                    userId: ticket.request.userId,
+                    resource: ticket.request.resource,
+                    metadata: {
+                        ticketId: ticket.id,
+                        sessionId: session.id,
+                        approverId,
+                    },
+                },
+                source: 'pam-jit-access',
+                tags: ['pam', 'elevation-approved'],
+            });
+            logger.info({
+                ticketId: ticket.id,
+                sessionId: session.id,
+                userId: ticket.request.userId,
+                resource: ticket.request.resource,
+                approverId,
+            }, 'Elevation approved and session created');
+            return session;
+        }
+        // Not enough approvals yet, just update ticket
+        await this.storeTicket(ticket);
+        logger.info({
+            ticketId: ticket.id,
+            approverId,
+            currentApprovals: ticket.currentApprovals.length,
+            requiredApprovals: ticket.requiredApprovalCount,
+        }, 'Approval added, waiting for more approvals');
+        // Return a placeholder - in practice caller should check ticket status
+        throw new ElevationError('PENDING_APPROVALS', `Ticket requires ${ticket.requiredApprovalCount - ticket.currentApprovals.length} more approval(s)`);
+    }
+    /**
+     * Deny an elevation request
+     *
+     * @param ticketId - Ticket to deny
+     * @param approverId - ID of the denying user
+     * @param reason - Reason for denial
+     */
+    async denyElevation(ticketId, approverId, reason) {
+        const ticket = await this.getTicket(ticketId);
+        if (!ticket) {
+            throw new ElevationError('TICKET_NOT_FOUND', `Ticket ${ticketId} not found`);
+        }
+        if (ticket.status !== 'pending') {
+            throw new ElevationError('INVALID_TICKET_STATUS', `Ticket is ${ticket.status}, cannot deny`);
+        }
+        // Check if approver is authorized
+        if (!ticket.requiredApprovers.includes(approverId)) {
+            throw new ElevationError('UNAUTHORIZED_APPROVER', `User ${approverId} is not authorized to deny this ticket`);
+        }
+        ticket.status = 'denied';
+        ticket.deniedBy = approverId;
+        ticket.deniedAt = new Date().toISOString();
+        ticket.denialReason = reason;
+        await this.storeTicket(ticket);
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'approval_denied',
+            ticketId: ticket.id,
+            userId: ticket.request.userId,
+            actorId: approverId,
+            resource: ticket.request.resource,
+            details: { reason },
+        });
+        // Security audit log
+        const actor = this.buildActor(approverId);
+        const resource = this.buildResource(ticket.request.resource);
+        await this.securityLogger.log({
+            eventType: 'ACCESS_DENIED',
+            actor,
+            action: 'deny_elevation',
+            resource,
+            outcome: 'blocked',
+            reason,
+            metadata: {
+                ticketId: ticket.id,
+                requestedBy: ticket.request.userId,
+            },
+        });
+        logger.info({
+            ticketId: ticket.id,
+            userId: ticket.request.userId,
+            approverId,
+            reason,
+        }, 'Elevation denied');
+    }
+    /**
+     * Revoke an active elevation session
+     *
+     * @param sessionId - Session to revoke
+     * @param reason - Reason for revocation
+     * @param revokedBy - ID of the revoking user (default: 'system')
+     */
+    async revokeElevation(sessionId, reason, revokedBy = 'system') {
+        const session = await this.getSession(sessionId);
+        if (!session) {
+            throw new ElevationError('SESSION_NOT_FOUND', `Session ${sessionId} not found`);
+        }
+        if (session.revokedAt) {
+            throw new ElevationError('SESSION_ALREADY_REVOKED', `Session ${sessionId} is already revoked`);
+        }
+        session.revokedAt = new Date().toISOString();
+        session.revokedBy = revokedBy;
+        session.revocationReason = reason;
+        await this.storeSession(session);
+        // Cancel expiration timer
+        this.cancelSessionTimer(sessionId);
+        // Remove from active sessions indexes
+        await this.redis.srem(`${KEY_PREFIX.USER_SESSIONS}${session.userId}`, sessionId);
+        await this.redis.srem(`${KEY_PREFIX.RESOURCE_SESSIONS}${session.resource}`, sessionId);
+        // Update ticket
+        const ticket = await this.getTicket(session.ticketId);
+        if (ticket) {
+            ticket.status = 'revoked';
+            ticket.revokedBy = revokedBy;
+            ticket.revokedAt = session.revokedAt;
+            ticket.revocationReason = reason;
+            await this.storeTicket(ticket);
+        }
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'session_revoked',
+            ticketId: session.ticketId,
+            sessionId: session.id,
+            userId: session.userId,
+            actorId: revokedBy,
+            resource: session.resource,
+            details: { reason },
+        });
+        // Security audit log
+        const actor = this.buildActor(revokedBy);
+        const resource = this.buildResource(session.resource);
+        await this.securityLogger.logSessionRevoked(actor, sessionId, reason, {
+            ticketId: session.ticketId,
+            userId: session.userId,
+            permissions: session.grantedPermissions,
+        });
+        // Send alert for revocation
+        await this.alertService.createAlert({
+            severity: AlertSeverity.HIGH,
+            type: SecurityEventType.ADMIN_ACTION,
+            title: 'Elevated Session Revoked',
+            message: `Elevated session for ${session.userId} on ${session.resource} was revoked. Reason: ${reason}`,
+            context: {
+                userId: session.userId,
+                resource: session.resource,
+                metadata: {
+                    sessionId: session.id,
+                    ticketId: session.ticketId,
+                    revokedBy,
+                },
+            },
+            source: 'pam-jit-access',
+            suggestedActions: [
+                'Investigate reason for revocation',
+                'Review user activity during session',
+            ],
+            tags: ['pam', 'session-revoked'],
+        });
+        logger.info({
+            sessionId,
+            userId: session.userId,
+            resource: session.resource,
+            revokedBy,
+            reason,
+        }, 'Elevated session revoked');
+    }
+    // ===========================================================================
+    // Public API - Query Methods
+    // ===========================================================================
+    /**
+     * Get all active elevation sessions for a user
+     *
+     * @param userId - User ID to query
+     * @returns Array of active elevated sessions
+     */
+    async getActiveElevations(userId) {
+        const sessionIds = await this.redis.smembers(`${KEY_PREFIX.USER_SESSIONS}${userId}`);
+        const sessions = [];
+        const now = new Date();
+        for (const sessionId of sessionIds) {
+            const session = await this.getSession(sessionId);
+            if (session &&
+                !session.revokedAt &&
+                new Date(session.expiresAt) > now) {
+                sessions.push(session);
+            }
+        }
+        return sessions;
+    }
+    /**
+     * Check if a user has elevation for a specific resource
+     *
+     * @param userId - User ID to check
+     * @param resource - Resource to check access for
+     * @param permission - Optional specific permission to check
+     * @returns True if user has active elevation
+     */
+    async checkElevation(userId, resource, permission) {
+        const sessions = await this.getActiveElevations(userId);
+        const now = new Date();
+        for (const session of sessions) {
+            // Check resource match
+            if (session.resource !== resource) {
+                continue;
+            }
+            // Check not expired
+            if (new Date(session.expiresAt) <= now) {
+                continue;
+            }
+            // Check permission if specified
+            if (permission && !session.grantedPermissions.includes(permission)) {
+                continue;
+            }
+            // Update last activity
+            await this.updateSessionActivity(session.id);
+            return true;
+        }
+        return false;
+    }
+    /**
+     * Get pending tickets for a user
+     *
+     * @param userId - User ID to query
+     * @returns Array of pending tickets
+     */
+    async getPendingTickets(userId) {
+        const ticketIds = await this.redis.smembers(`${KEY_PREFIX.USER_TICKETS}${userId}`);
+        const tickets = [];
+        for (const ticketId of ticketIds) {
+            const ticket = await this.getTicket(ticketId);
+            if (ticket && ticket.status === 'pending') {
+                tickets.push(ticket);
+            }
+        }
+        return tickets;
+    }
+    /**
+     * Get tickets pending approval for an approver
+     *
+     * @param approverId - Approver user ID
+     * @returns Array of tickets awaiting approval
+     */
+    async getTicketsForApproval(approverId) {
+        // This is a simplified implementation - in production you'd want
+        // an index of tickets by approver
+        const keys = await this.redis.keys(`${KEY_PREFIX.TICKET}*`);
+        const tickets = [];
+        for (const key of keys) {
+            const data = await this.redis.get(key);
+            if (!data)
+                continue;
+            try {
+                const ticket = ElevationTicketSchema.parse(JSON.parse(data));
+                if (ticket.status === 'pending' &&
+                    ticket.requiredApprovers.includes(approverId) &&
+                    !ticket.currentApprovals.some((a) => a.approverId === approverId)) {
+                    tickets.push(ticket);
+                }
+            }
+            catch {
+                // Skip invalid tickets
+            }
+        }
+        return tickets;
+    }
+    /**
+     * Get a specific ticket by ID
+     */
+    async getTicket(ticketId) {
+        const key = `${KEY_PREFIX.TICKET}${ticketId}`;
+        const data = await this.redis.get(key);
+        if (!data) {
+            return null;
+        }
+        try {
+            return ElevationTicketSchema.parse(JSON.parse(data));
+        }
+        catch (error) {
+            logger.warn({ ticketId, error }, 'Failed to parse ticket data');
+            return null;
+        }
+    }
+    /**
+     * Get a specific session by ID
+     */
+    async getSession(sessionId) {
+        const key = `${KEY_PREFIX.SESSION}${sessionId}`;
+        const data = await this.redis.get(key);
+        if (!data) {
+            return null;
+        }
+        try {
+            return ElevatedSessionSchema.parse(JSON.parse(data));
+        }
+        catch (error) {
+            logger.warn({ sessionId, error }, 'Failed to parse session data');
+            return null;
+        }
+    }
+    // ===========================================================================
+    // Middleware
+    // ===========================================================================
+    /**
+     * Create middleware to check elevation for a resource
+     *
+     * @param resource - Resource identifier
+     * @param permissions - Required permissions
+     * @returns Fastify preHandler hook
+     */
+    requireElevation(resource, permissions) {
+        return async (request, reply) => {
+            // Extract user ID from request
+            const user = request.user;
+            const userId = user?.id ?? user?.sub;
+            if (!userId) {
+                return reply.status(401).send({
+                    error: {
+                        code: 'UNAUTHORIZED',
+                        message: 'Authentication required',
+                    },
+                });
+            }
+            // Check each required permission
+            for (const permission of permissions) {
+                const hasElevation = await this.checkElevation(userId, resource, permission);
+                if (!hasElevation) {
+                    // Log access denied
+                    const actor = this.buildActor(userId);
+                    const resourceObj = this.buildResource(resource);
+                    await this.securityLogger.logAccessDenied(actor, resourceObj, `Missing elevation for permission: ${permission}`, { requiredPermissions: permissions });
+                    return reply.status(403).send({
+                        error: {
+                            code: 'ELEVATION_REQUIRED',
+                            message: `Elevated access required for ${resource}`,
+                            requiredPermissions: permissions,
+                            missingPermission: permission,
+                        },
+                    });
+                }
+            }
+            // Log access granted
+            const actor = this.buildActor(userId);
+            const resourceObj = this.buildResource(resource);
+            await this.securityLogger.logAccessGranted(actor, resourceObj, {
+                elevatedAccess: true,
+                permissions,
+            });
+        };
+    }
+    // ===========================================================================
+    // Lifecycle
+    // ===========================================================================
+    /**
+     * Stop the service and clean up resources
+     */
+    async stop() {
+        // Stop escalation check
+        if (this.escalationCheckInterval) {
+            clearInterval(this.escalationCheckInterval);
+            this.escalationCheckInterval = null;
+        }
+        // Cancel all session timers
+        const timers = Array.from(this.sessionExpirationTimers.values());
+        for (const timer of timers) {
+            clearTimeout(timer);
+        }
+        this.sessionExpirationTimers.clear();
+        logger.info('JITAccessService stopped');
+    }
+    // ===========================================================================
+    // Private Methods
+    // ===========================================================================
+    /**
+     * Store ticket in Redis
+     */
+    async storeTicket(ticket) {
+        const key = `${KEY_PREFIX.TICKET}${ticket.id}`;
+        const ttl = Math.max(1, Math.ceil((new Date(ticket.expiresAt).getTime() - Date.now()) / 1000));
+        await this.redis.setex(key, ttl + 3600, JSON.stringify(ticket)); // Keep 1hr after expiry
+    }
+    /**
+     * Store session in Redis
+     */
+    async storeSession(session) {
+        const key = `${KEY_PREFIX.SESSION}${session.id}`;
+        const ttl = Math.max(1, Math.ceil((new Date(session.expiresAt).getTime() - Date.now()) / 1000));
+        await this.redis.setex(key, ttl + 3600, JSON.stringify(session)); // Keep 1hr after expiry
+    }
+    /**
+     * Create an elevated session from an approved ticket
+     */
+    async createElevatedSession(ticket) {
+        const now = new Date();
+        const expiresAt = new Date(now.getTime() + ticket.request.durationMinutes * 60 * 1000);
+        const session = {
+            id: crypto.randomUUID(),
+            ticketId: ticket.id,
+            userId: ticket.request.userId,
+            grantedPermissions: ticket.request.permissions,
+            resource: ticket.request.resource,
+            startedAt: now.toISOString(),
+            expiresAt: expiresAt.toISOString(),
+            lastActivityAt: now.toISOString(),
+        };
+        await this.storeSession(session);
+        // Add to indexes
+        await this.redis.sadd(`${KEY_PREFIX.USER_SESSIONS}${session.userId}`, session.id);
+        await this.redis.sadd(`${KEY_PREFIX.RESOURCE_SESSIONS}${session.resource}`, session.id);
+        // Set expiration timer
+        this.setSessionExpirationTimer(session);
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'session_started',
+            ticketId: ticket.id,
+            sessionId: session.id,
+            userId: session.userId,
+            actorId: 'system',
+            resource: session.resource,
+            details: {
+                permissions: session.grantedPermissions,
+                expiresAt: session.expiresAt,
+            },
+        });
+        return session;
+    }
+    /**
+     * Set timer to handle session expiration
+     */
+    setSessionExpirationTimer(session) {
+        const expiresAt = new Date(session.expiresAt).getTime();
+        const delay = expiresAt - Date.now();
+        if (delay <= 0) {
+            this.handleSessionExpiration(session.id);
+            return;
+        }
+        const timer = setTimeout(() => this.handleSessionExpiration(session.id), delay);
+        this.sessionExpirationTimers.set(session.id, timer);
+    }
+    /**
+     * Cancel session expiration timer
+     */
+    cancelSessionTimer(sessionId) {
+        const timer = this.sessionExpirationTimers.get(sessionId);
+        if (timer) {
+            clearTimeout(timer);
+            this.sessionExpirationTimers.delete(sessionId);
+        }
+    }
+    /**
+     * Handle session expiration
+     */
+    async handleSessionExpiration(sessionId) {
+        const session = await this.getSession(sessionId);
+        if (!session || session.revokedAt) {
+            return;
+        }
+        // Remove from indexes
+        await this.redis.srem(`${KEY_PREFIX.USER_SESSIONS}${session.userId}`, sessionId);
+        await this.redis.srem(`${KEY_PREFIX.RESOURCE_SESSIONS}${session.resource}`, sessionId);
+        // Clean up timer
+        this.sessionExpirationTimers.delete(sessionId);
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'session_expired',
+            ticketId: session.ticketId,
+            sessionId: session.id,
+            userId: session.userId,
+            actorId: 'system',
+            resource: session.resource,
+        });
+        logger.info({
+            sessionId,
+            userId: session.userId,
+            resource: session.resource,
+        }, 'Elevated session expired');
+    }
+    /**
+     * Update session last activity timestamp
+     */
+    async updateSessionActivity(sessionId) {
+        const session = await this.getSession(sessionId);
+        if (!session) {
+            return;
+        }
+        session.lastActivityAt = new Date().toISOString();
+        await this.storeSession(session);
+    }
+    /**
+     * Start periodic escalation check
+     */
+    startEscalationCheck() {
+        this.escalationCheckInterval = setInterval(() => this.checkForEscalations(), this.config.escalationCheckIntervalMs);
+        // Don't prevent process exit
+        this.escalationCheckInterval.unref();
+    }
+    /**
+     * Check for tickets that need escalation
+     */
+    async checkForEscalations() {
+        const keys = await this.redis.keys(`${KEY_PREFIX.TICKET}*`);
+        const now = Date.now();
+        for (const key of keys) {
+            try {
+                const data = await this.redis.get(key);
+                if (!data)
+                    continue;
+                const ticket = ElevationTicketSchema.parse(JSON.parse(data));
+                // Skip if not pending or already escalated
+                if (ticket.status !== 'pending' || ticket.escalatedAt) {
+                    continue;
+                }
+                // Check SLA
+                const slaMinutes = this.config.approvalSLAMinutes[ticket.request.urgency] ?? 60;
+                const createdAt = new Date(ticket.createdAt).getTime();
+                const slaDeadline = createdAt + slaMinutes * 60 * 1000;
+                if (now > slaDeadline) {
+                    await this.escalateTicket(ticket);
+                }
+            }
+            catch (error) {
+                logger.warn({ key, error }, 'Error checking ticket for escalation');
+            }
+        }
+    }
+    /**
+     * Escalate a ticket that has breached SLA
+     */
+    async escalateTicket(ticket) {
+        ticket.escalatedAt = new Date().toISOString();
+        await this.storeTicket(ticket);
+        // Create audit entry
+        await this.createAuditEntry({
+            action: 'ticket_escalated',
+            ticketId: ticket.id,
+            userId: ticket.request.userId,
+            actorId: 'system',
+            resource: ticket.request.resource,
+            details: {
+                urgency: ticket.request.urgency,
+                pendingApprovals: ticket.requiredApprovalCount - ticket.currentApprovals.length,
+            },
+        });
+        // Send escalation alert
+        await this.alertService.createAlert({
+            severity: AlertSeverity.HIGH,
+            type: SecurityEventType.ADMIN_ACTION,
+            title: 'Elevation Request SLA Breached',
+            message: `Elevation request for ${ticket.request.userId} to access ${ticket.request.resource} has not been approved within SLA (${ticket.request.urgency} urgency)`,
+            context: {
+                userId: ticket.request.userId,
+                resource: ticket.request.resource,
+                metadata: {
+                    ticketId: ticket.id,
+                    urgency: ticket.request.urgency,
+                    pendingApprovals: ticket.requiredApprovalCount - ticket.currentApprovals.length,
+                },
+            },
+            source: 'pam-jit-access',
+            suggestedActions: [
+                'Review and approve/deny the elevation request immediately',
+                'Contact approvers if they are unavailable',
+            ],
+            tags: ['pam', 'sla-breach', 'escalation'],
+        });
+        logger.warn({
+            ticketId: ticket.id,
+            userId: ticket.request.userId,
+            urgency: ticket.request.urgency,
+        }, 'Elevation request escalated due to SLA breach');
+    }
+    /**
+     * Create a PAM audit entry
+     */
+    async createAuditEntry(params) {
+        const entry = {
+            id: crypto.randomUUID(),
+            timestamp: new Date().toISOString(),
+            ...params,
+        };
+        const key = `${KEY_PREFIX.AUDIT}${entry.id}`;
+        await this.redis.setex(key, 90 * 24 * 60 * 60, JSON.stringify(entry)); // 90 days
+        // Add to time-sorted index
+        await this.redis.zadd(`${this.config.keyPrefix}audit_index`, Date.now(), entry.id);
+    }
+    /**
+     * Build security actor from user ID
+     */
+    buildActor(userId) {
+        return {
+            type: userId === 'system' ? 'system' : 'user',
+            id: userId,
+        };
+    }
+    /**
+     * Build security resource from resource string
+     */
+    buildResource(resource) {
+        return {
+            type: 'privileged_resource',
+            id: resource,
+            name: resource,
+        };
+    }
+    /**
+     * Get alert severity for elevation urgency
+     */
+    getSeverityForUrgency(urgency) {
+        switch (urgency) {
+            case 'critical':
+                return AlertSeverity.CRITICAL;
+            case 'high':
+                return AlertSeverity.HIGH;
+            case 'medium':
+                return AlertSeverity.MEDIUM;
+            case 'low':
+                return AlertSeverity.LOW;
+            default:
+                return AlertSeverity.MEDIUM;
+        }
+    }
+}
+/**
+ * Custom error for elevation operations
+ */
+export class ElevationError extends Error {
+    code;
+    constructor(code, message) {
+        super(message);
+        this.code = code;
+        this.name = 'ElevationError';
+    }
+}
+// =============================================================================
+// Factory & Singleton
+// =============================================================================
+let jitAccessInstance = null;
+/**
+ * Get the singleton JITAccessService instance
+ */
+export function getJITAccessService(config, deps) {
+    if (!jitAccessInstance) {
+        jitAccessInstance = new JITAccessService(config, deps);
+    }
+    return jitAccessInstance;
+}
+/**
+ * Create a new JITAccessService instance
+ */
+export function createJITAccessService(config, deps) {
+    return new JITAccessService(config, deps);
+}
+/**
+ * Reset the singleton instance (for testing)
+ */
+export async function resetJITAccessService() {
+    if (jitAccessInstance) {
+        await jitAccessInstance.stop();
+        jitAccessInstance = null;
+    }
+}
+//# sourceMappingURL=jit-access.js.map