@vurb/core 3.2.3 → 3.3.4

package/dist/presenter/PresenterPipeline.d.ts

@@ -0,0 +1,147 @@
+/**
+ * PresenterPipeline — Decomposed Make Pipeline
+ *
+ * Extracted from `Presenter.make()` to uphold SRP and enable isolated testing.
+ * Each step is a pure function that receives a `PresenterSnapshot` (read-only
+ * config) and produces side-effects on a `ResponseBuilder`.
+ *
+ * The `executePipeline()` orchestrator replaces the inline logic previously
+ * in `Presenter.make()`, maintaining the exact same behavior and output.
+ *
+ * @internal
+ * @module
+ */
+import { ZodType } from 'zod';
+import { ResponseBuilder } from './ResponseBuilder.js';
+import { type UiBlock } from './ui.js';
+import { type ActionSuggestion } from './Presenter.js';
+import { type RedactConfig, type RedactFn } from './RedactEngine.js';
+import { type StringifyFn } from '../core/serialization/JsonSerializer.js';
+import { type Presenter } from './Presenter.js';
+/** Static rules (string array) OR dynamic rules with context (function) */
+export type RulesConfig<T> = readonly string[] | ((data: T, ctx?: unknown) => (string | null)[]);
+/** Collection-level rules — static or dynamic */
+export type CollectionRulesFn<T> = readonly string[] | ((items: T[], ctx?: unknown) => (string | null)[]);
+/** UI blocks callback — with optional context */
+export type ItemUiBlocksFn<T> = (item: T, ctx?: unknown) => (UiBlock | null)[];
+/** Collection UI blocks callback — with optional context */
+export type CollectionUiBlocksFn<T> = (items: T[], ctx?: unknown) => (UiBlock | null)[];
+/** Suggest actions callback — with optional context */
+export type SuggestActionsFn<T> = (data: T, ctx?: unknown) => ActionSuggestion[];
+/** Collection-level suggest actions callback */
+export type CollectionSuggestActionsFn<T> = (items: T[], ctx?: unknown) => (ActionSuggestion | null)[];
+/** Agent limit configuration */
+export interface AgentLimitConfig {
+    readonly max: number;
+    readonly onTruncate: (omittedCount: number) => UiBlock;
+}
+/** An embedded child Presenter for relational composition */
+export interface EmbedEntry {
+    readonly key: string;
+    readonly presenter: Presenter<unknown>;
+}
+/**
+ * Read-only snapshot of Presenter configuration for the pipeline.
+ *
+ * Created by `Presenter._toSnapshot()` on each `make()` call.
+ * Avoids exposing private state while enabling standalone step functions.
+ *
+ * @typeParam T - The validated output type
+ * @internal
+ */
+export interface PresenterSnapshot<T> {
+    readonly name: string;
+    readonly schema?: ZodType<any, any, any> | undefined;
+    readonly rules: RulesConfig<T>;
+    readonly collectionRules: CollectionRulesFn<T>;
+    readonly itemUiBlocks?: ItemUiBlocksFn<T> | undefined;
+    readonly collectionUiBlocks?: CollectionUiBlocksFn<T> | undefined;
+    readonly suggestActions?: SuggestActionsFn<T> | undefined;
+    readonly collectionSuggestActions?: CollectionSuggestActionsFn<T> | undefined;
+    readonly agentLimit?: AgentLimitConfig | undefined;
+    readonly embeds: readonly EmbedEntry[];
+    readonly redactConfig?: RedactConfig | undefined;
+    readonly compiledStringify?: StringifyFn | undefined;
+    /** Mutable: may be lazily compiled */
+    compiledRedactor?: RedactFn | undefined;
+}
+/**
+ * Step 0: Cognitive Guardrails — truncate array by agentLimit.
+ *
+ * If the data is an array larger than the configured limit, it is sliced
+ * and a truncation UiBlock is returned for insertion.
+ *
+ * @returns Potentially truncated data + optional truncation UiBlock
+ * @internal
+ */
+export declare function stepTruncate<T>(data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>): {
+    data: T | T[];
+    truncationBlock?: UiBlock | undefined;
+};
+/**
+ * Step 1: Validate data through the Zod schema (if configured).
+ * For arrays, each item is validated independently.
+ *
+ * @throws {PresenterValidationError} on schema mismatch
+ * @internal
+ */
+export declare function stepValidate<T>(data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>): T | T[];
+/**
+ * Step 2: Apply PII redaction to wire-facing data.
+ * Creates a deep clone to preserve original data for UI/rules.
+ *
+ * @internal
+ */
+export declare function stepRedact<T>(data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>): T | T[];
+/**
+ * Step 3: Generate and attach UI blocks to the response builder.
+ * Auto-detects single vs collection. Filters `null` blocks.
+ *
+ * @internal
+ */
+export declare function stepUiBlocks<T>(builder: ResponseBuilder, data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>, ctx?: unknown): void;
+/**
+ * Step 4: Resolve and attach domain rules to the response builder.
+ * Supports both static arrays and dynamic context-aware functions.
+ *
+ * For collections: also evaluates `collectionRules` (if defined) and
+ * merges them after per-item rules.
+ *
+ * @internal
+ */
+export declare function stepRules<T>(builder: ResponseBuilder, data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>, ctx?: unknown): void;
+/**
+ * Step 5: Evaluate and attach action suggestions to the response.
+ *
+ * For collections: uses `collectionSuggestActions` if defined,
+ * otherwise falls back to per-item evaluation on the first item.
+ *
+ * @internal
+ */
+export declare function stepSuggestions<T>(builder: ResponseBuilder, data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>, ctx?: unknown): void;
+/**
+ * Step 6: Process embedded child Presenters for nested relational data.
+ * Merges child UI blocks and rules into the parent builder.
+ *
+ * For collections: iterates all array items. Rules are deduplicated
+ * via a Set to avoid repetition. UI blocks are emitted only for the
+ * first item to prevent context window explosion.
+ *
+ * @internal
+ */
+export declare function stepEmbeds<T>(builder: ResponseBuilder, data: T | T[], isArray: boolean, snapshot: PresenterSnapshot<T>, ctx?: unknown): void;
+/**
+ * Execute the full Presenter pipeline.
+ *
+ * Orchestrates: truncate → validate → embed → render UI → attach rules
+ * → suggest actions → **Late Guillotine** (`_select` filter).
+ *
+ * @param data - Raw data from handler
+ * @param snapshot - Read-only configuration snapshot
+ * @param ctx - Optional request context
+ * @param selectFields - Optional field names for context window optimization
+ * @returns A fully-composed ResponseBuilder
+ * @internal
+ */
+export declare function executePipeline<T>(data: T | T[], snapshot: PresenterSnapshot<T>, ctx?: unknown, selectFields?: string[]): ResponseBuilder;
+//# sourceMappingURL=PresenterPipeline.d.ts.map

package/dist/presenter/PresenterPipeline.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"PresenterPipeline.d.ts","sourceRoot":"","sources":["../../src/presenter/PresenterPipeline.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,EAAE,OAAO,EAAY,MAAM,KAAK,CAAC;AACxC,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,KAAK,OAAO,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,KAAK,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAGvD,OAAO,EAAmB,KAAK,YAAY,EAAE,KAAK,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AACtF,OAAO,EAAE,KAAK,WAAW,EAAE,MAAM,yCAAyC,CAAC;AAC3E,OAAO,EAAE,KAAK,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAIhD,2EAA2E;AAC3E,MAAM,MAAM,WAAW,CAAC,CAAC,IAAI,SAAS,MAAM,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,EAAE,OAAO,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;AAEjG,iDAAiD;AACjD,MAAM,MAAM,iBAAiB,CAAC,CAAC,IAAI,SAAS,MAAM,EAAE,GAAG,CAAC,CAAC,KAAK,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,OAAO,KAAK,CAAC,MAAM,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;AAE1G,iDAAiD;AACjD,MAAM,MAAM,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,EAAE,OAAO,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC,EAAE,CAAC;AAE/E,4DAA4D;AAC5D,MAAM,MAAM,oBAAoB,CAAC,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,OAAO,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC,EAAE,CAAC;AAExF,uDAAuD;AACvD,MAAM,MAAM,gBAAgB,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,EAAE,GAAG,CAAC,EAAE,OAAO,KAAK,gBAAgB,EAAE,CAAC;AAEjF,gDAAgD;AAChD,MAAM,MAAM,0BAA0B,CAAC,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,OAAO,KAAK,CAAC,gBAAgB,GAAG,IAAI,CAAC,EAAE,CAAC;AAEvG,gCAAgC;AAChC,MAAM,WAAW,gBAAgB;IAC7B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,UAAU,EAAE,CAAC,YAAY,EAAE,MAAM,KAAK,OAAO,CAAC;CAC1D;AAED,6DAA6D;AAC7D,MAAM,WAAW,UAAU;IACvB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,SAAS,EAAE,SAAS,CAAC,OAAO,CAAC,CAAC;CAC1C;AAED;;;;;;;;GAQG;AACH,MAAM,WAAW,iBAAiB,CAAC,CAAC;IAChC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,GAAG,SAAS,CAAC;IACrD,QAAQ,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,CAAC;IAC/B,QAAQ,CAAC,eAAe,EAAE,iBAAiB,CAAC,CAAC,CAAC,CAAC;IAC/C,QAAQ,CAAC,YAAY,CAAC,EAAE,cAAc,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC;IACtD,QAAQ,CAAC,kBAAkB,CAAC,EAAE,oBAAoB,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC;IAClE,QAAQ,CAAC,cAAc,CAAC,EAAE,gBAAgB,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC;IAC1D,QAAQ,CAAC,wBAAwB,CAAC,EAAE,0BAA0B,CAAC,CAAC,CAAC,GAAG,SAAS,CAAC;IAC9E,QAAQ,CAAC,UAAU,CAAC,EAAE,gBAAgB,GAAG,SAAS,CAAC;IACnD,QAAQ,CAAC,MAAM,EAAE,SAAS,UAAU,EAAE,CAAC;IACvC,QAAQ,CAAC,YAAY,CAAC,EAAE,YAAY,GAAG,SAAS,CAAC;IACjD,QAAQ,CAAC,iBAAiB,CAAC,EAAE,WAAW,GAAG,SAAS,CAAC;IACrD,sCAAsC;IACtC,gBAAgB,CAAC,EAAE,QAAQ,GAAG,SAAS,CAAC;CAC3C;AAID;;;;;;;;GAQG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAC1B,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,GAC/B;IAAE,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC;IAAC,eAAe,CAAC,EAAE,OAAO,GAAG,SAAS,CAAA;CAAE,CAU1D;AAED;;;;;;GAMG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAC1B,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,GAC/B,CAAC,GAAG,CAAC,EAAE,CAcT;AAED;;;;;GAKG;AACH,wBAAgB,UAAU,CAAC,CAAC,EACxB,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,GAC/B,CAAC,GAAG,CAAC,EAAE,CAmBT;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAC1B,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,EAC9B,GAAG,CAAC,EAAE,OAAO,GACd,IAAI,CAQN;AAED;;;;;;;;GAQG;AACH,wBAAgB,SAAS,CAAC,CAAC,EACvB,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,EAC9B,GAAG,CAAC,EAAE,OAAO,GACd,IAAI,CA2BN;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,CAAC,EAC7B,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,EAC9B,GAAG,CAAC,EAAE,OAAO,GACd,IAAI,CAsBN;AAED;;;;;;;;;GASG;AACH,wBAAgB,UAAU,CAAC,CAAC,EACxB,OAAO,EAAE,eAAe,EACxB,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,OAAO,EAAE,OAAO,EAChB,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,EAC9B,GAAG,CAAC,EAAE,OAAO,GACd,IAAI,CAqCN;AAID;;;;;;;;;;;;GAYG;AACH,wBAAgB,eAAe,CAAC,CAAC,EAC7B,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,EACb,QAAQ,EAAE,iBAAiB,CAAC,CAAC,CAAC,EAC9B,GAAG,CAAC,EAAE,OAAO,EACb,YAAY,CAAC,EAAE,MAAM,EAAE,GACxB,eAAe,CA8CjB"}

package/dist/presenter/PresenterPipeline.js

@@ -0,0 +1,271 @@
+/**
+ * PresenterPipeline — Decomposed Make Pipeline
+ *
+ * Extracted from `Presenter.make()` to uphold SRP and enable isolated testing.
+ * Each step is a pure function that receives a `PresenterSnapshot` (read-only
+ * config) and produces side-effects on a `ResponseBuilder`.
+ *
+ * The `executePipeline()` orchestrator replaces the inline logic previously
+ * in `Presenter.make()`, maintaining the exact same behavior and output.
+ *
+ * @internal
+ * @module
+ */
+import { ZodType, ZodError } from 'zod';
+import { ResponseBuilder } from './ResponseBuilder.js';
+import {} from './ui.js';
+import {} from './Presenter.js';
+import { PresenterValidationError } from './PresenterValidationError.js';
+import { applySelectFilter } from './SelectUtils.js';
+import { compileRedactor } from './RedactEngine.js';
+import {} from '../core/serialization/JsonSerializer.js';
+import {} from './Presenter.js';
+// ── Step Functions ──────────────────────────────────────
+/**
+ * Step 0: Cognitive Guardrails — truncate array by agentLimit.
+ *
+ * If the data is an array larger than the configured limit, it is sliced
+ * and a truncation UiBlock is returned for insertion.
+ *
+ * @returns Potentially truncated data + optional truncation UiBlock
+ * @internal
+ */
+export function stepTruncate(data, isArray, snapshot) {
+    if (isArray && snapshot.agentLimit && data.length > snapshot.agentLimit.max) {
+        const fullLength = data.length;
+        const omitted = fullLength - snapshot.agentLimit.max;
+        return {
+            data: data.slice(0, snapshot.agentLimit.max),
+            truncationBlock: snapshot.agentLimit.onTruncate(omitted),
+        };
+    }
+    return { data };
+}
+/**
+ * Step 1: Validate data through the Zod schema (if configured).
+ * For arrays, each item is validated independently.
+ *
+ * @throws {PresenterValidationError} on schema mismatch
+ * @internal
+ */
+export function stepValidate(data, isArray, snapshot) {
+    if (!snapshot.schema)
+        return data;
+    try {
+        if (isArray) {
+            return data.map(item => snapshot.schema.parse(item));
+        }
+        return snapshot.schema.parse(data);
+    }
+    catch (err) {
+        if (err instanceof ZodError) {
+            throw new PresenterValidationError(snapshot.name, err);
+        }
+        throw err;
+    }
+}
+/**
+ * Step 2: Apply PII redaction to wire-facing data.
+ * Creates a deep clone to preserve original data for UI/rules.
+ *
+ * @internal
+ */
+export function stepRedact(data, isArray, snapshot) {
+    // Lazy recompilation: if redactPII was called before fast-redact loaded
+    if (!snapshot.compiledRedactor && snapshot.redactConfig) {
+        snapshot.compiledRedactor = compileRedactor(snapshot.redactConfig);
+        if (!snapshot.compiledRedactor) {
+            console.warn(`[vurb] Presenter "${snapshot.name}": PII redaction configured but fast-redact is not available. ` +
+                `Data will pass through WITHOUT redaction. Ensure initVurb() completes before .make() is called, ` +
+                `or install fast-redact as a dependency.`);
+        }
+    }
+    if (!snapshot.compiledRedactor)
+        return data;
+    if (isArray) {
+        return data.map(item => snapshot.compiledRedactor(item));
+    }
+    return snapshot.compiledRedactor(data);
+}
+/**
+ * Step 3: Generate and attach UI blocks to the response builder.
+ * Auto-detects single vs collection. Filters `null` blocks.
+ *
+ * @internal
+ */
+export function stepUiBlocks(builder, data, isArray, snapshot, ctx) {
+    if (isArray && snapshot.collectionUiBlocks) {
+        const blocks = snapshot.collectionUiBlocks(data, ctx).filter(Boolean);
+        if (blocks.length > 0)
+            builder.uiBlocks(blocks);
+    }
+    else if (!isArray && snapshot.itemUiBlocks) {
+        const blocks = snapshot.itemUiBlocks(data, ctx).filter(Boolean);
+        if (blocks.length > 0)
+            builder.uiBlocks(blocks);
+    }
+}
+/**
+ * Step 4: Resolve and attach domain rules to the response builder.
+ * Supports both static arrays and dynamic context-aware functions.
+ *
+ * For collections: also evaluates `collectionRules` (if defined) and
+ * merges them after per-item rules.
+ *
+ * @internal
+ */
+export function stepRules(builder, data, isArray, snapshot, ctx) {
+    // Per-item rules
+    if (typeof snapshot.rules === 'function') {
+        const singleData = isArray ? data[0] : data;
+        if (singleData !== undefined) {
+            const resolved = snapshot.rules(singleData, ctx)
+                .filter((r) => r !== null);
+            if (resolved.length > 0)
+                builder.systemRules(resolved);
+        }
+    }
+    else if (snapshot.rules.length > 0) {
+        builder.systemRules(snapshot.rules);
+    }
+    // Collection-level rules (additive — appended after per-item rules)
+    const hasCollectionRules = typeof snapshot.collectionRules === 'function'
+        || snapshot.collectionRules.length > 0;
+    if (isArray && hasCollectionRules) {
+        const items = data;
+        if (typeof snapshot.collectionRules === 'function') {
+            const resolved = snapshot.collectionRules(items, ctx)
+                .filter((r) => r !== null);
+            if (resolved.length > 0)
+                builder.systemRules(resolved);
+        }
+        else if (snapshot.collectionRules.length > 0) {
+            builder.systemRules(snapshot.collectionRules);
+        }
+    }
+}
+/**
+ * Step 5: Evaluate and attach action suggestions to the response.
+ *
+ * For collections: uses `collectionSuggestActions` if defined,
+ * otherwise falls back to per-item evaluation on the first item.
+ *
+ * @internal
+ */
+export function stepSuggestions(builder, data, isArray, snapshot, ctx) {
+    // Collection-level suggestions (preferred for arrays)
+    if (isArray && snapshot.collectionSuggestActions) {
+        const items = data;
+        if (items.length === 0)
+            return;
+        const suggestions = snapshot.collectionSuggestActions(items, ctx)
+            .filter((s) => s !== null);
+        if (suggestions.length > 0) {
+            builder.systemHint(suggestions);
+        }
+        return;
+    }
+    // Per-item fallback (single item or first item of array)
+    if (!snapshot.suggestActions)
+        return;
+    const singleData = isArray ? data[0] : data;
+    if (singleData === undefined)
+        return;
+    const suggestions = snapshot.suggestActions(singleData, ctx);
+    if (suggestions.length > 0) {
+        builder.systemHint(suggestions);
+    }
+}
+/**
+ * Step 6: Process embedded child Presenters for nested relational data.
+ * Merges child UI blocks and rules into the parent builder.
+ *
+ * For collections: iterates all array items. Rules are deduplicated
+ * via a Set to avoid repetition. UI blocks are emitted only for the
+ * first item to prevent context window explosion.
+ *
+ * @internal
+ */
+export function stepEmbeds(builder, data, isArray, snapshot, ctx) {
+    if (snapshot.embeds.length === 0)
+        return;
+    const items = isArray
+        ? data.filter((item) => item !== undefined && typeof item === 'object')
+        : [data].filter((item) => item !== undefined && typeof item === 'object');
+    if (items.length === 0)
+        return;
+    // Track which rule blocks we've already emitted (dedup for arrays)
+    const emittedRules = new Set();
+    for (let itemIdx = 0; itemIdx < items.length; itemIdx++) {
+        const item = items[itemIdx];
+        for (const embed of snapshot.embeds) {
+            const nestedData = item[embed.key];
+            if (nestedData === undefined || nestedData === null)
+                continue;
+            const childBuilder = embed.presenter.make(nestedData, ctx);
+            const childResponse = childBuilder.build();
+            // Skip the first block (data) — parent already has it
+            for (let i = 1; i < childResponse.content.length; i++) {
+                const blockText = childResponse.content[i].text;
+                // For arrays: deduplicate rule/hint blocks, emit UI only for first item
+                if (isArray && itemIdx > 0) {
+                    if (emittedRules.has(blockText))
+                        continue;
+                    if (blockText.includes('<ui_passthrough'))
+                        continue;
+                }
+                emittedRules.add(blockText);
+                builder.rawBlock(blockText);
+            }
+        }
+    }
+}
+// ── Pipeline Orchestrator ───────────────────────────────
+/**
+ * Execute the full Presenter pipeline.
+ *
+ * Orchestrates: truncate → validate → embed → render UI → attach rules
+ * → suggest actions → **Late Guillotine** (`_select` filter).
+ *
+ * @param data - Raw data from handler
+ * @param snapshot - Read-only configuration snapshot
+ * @param ctx - Optional request context
+ * @param selectFields - Optional field names for context window optimization
+ * @returns A fully-composed ResponseBuilder
+ * @internal
+ */
+export function executePipeline(data, snapshot, ctx, selectFields) {
+    const isArray = Array.isArray(data);
+    // Step 0: Cognitive Guardrails — truncate if needed
+    const truncated = stepTruncate(data, isArray, snapshot);
+    data = truncated.data;
+    // Step 1: Process embedded child Presenters (on RAW data, before validation)
+    const rawForEmbeds = data;
+    // Step 2: Validate — produces the FULL validated data
+    const validated = stepValidate(data, isArray, snapshot);
+    // ── Late Guillotine ──────────────────────────────────
+    // Steps 3-6 use the FULL validated data so that UI blocks,
+    // system rules, and action suggestions never see undefined
+    // for pruned fields.
+    // Step 3: Determine wire-facing data (filtered or full)
+    const wireData = (selectFields && selectFields.length > 0)
+        ? applySelectFilter(validated, selectFields, isArray)
+        : validated;
+    // Step 3.1: DLP Redaction — mask PII on the wire-facing data
+    const safeWireData = stepRedact(wireData, isArray, snapshot);
+    const builder = new ResponseBuilder(safeWireData, snapshot.compiledStringify);
+    // Step 3.5: Truncation warning (first UI block, before all others)
+    if (truncated.truncationBlock) {
+        builder.uiBlock(truncated.truncationBlock);
+    }
+    // Step 4: Merge embedded child Presenter blocks (using FULL data)
+    stepEmbeds(builder, rawForEmbeds, isArray, snapshot, ctx);
+    // Step 5: Attach UI blocks (using FULL validated data)
+    stepUiBlocks(builder, validated, isArray, snapshot, ctx);
+    // Step 6: Attach rules (using FULL validated data)
+    stepRules(builder, validated, isArray, snapshot, ctx);
+    // Step 7: Attach action suggestions (using FULL validated data)
+    stepSuggestions(builder, validated, isArray, snapshot, ctx);
+    return builder;
+}
+//# sourceMappingURL=PresenterPipeline.js.map

package/dist/presenter/PresenterPipeline.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"PresenterPipeline.js","sourceRoot":"","sources":["../../src/presenter/PresenterPipeline.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AACH,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,KAAK,CAAC;AACxC,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAgB,MAAM,SAAS,CAAC;AACvC,OAAO,EAAyB,MAAM,gBAAgB,CAAC;AACvD,OAAO,EAAE,wBAAwB,EAAE,MAAM,+BAA+B,CAAC;AACzE,OAAO,EAAE,iBAAiB,EAAE,MAAM,kBAAkB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAoC,MAAM,mBAAmB,CAAC;AACtF,OAAO,EAAoB,MAAM,yCAAyC,CAAC;AAC3E,OAAO,EAAkB,MAAM,gBAAgB,CAAC;AA4DhD,2DAA2D;AAE3D;;;;;;;;GAQG;AACH,MAAM,UAAU,YAAY,CACxB,IAAa,EACb,OAAgB,EAChB,QAA8B;IAE9B,IAAI,OAAO,IAAI,QAAQ,CAAC,UAAU,IAAK,IAAY,CAAC,MAAM,GAAG,QAAQ,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC;QACnF,MAAM,UAAU,GAAI,IAAY,CAAC,MAAM,CAAC;QACxC,MAAM,OAAO,GAAG,UAAU,GAAG,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAC;QACrD,OAAO;YACH,IAAI,EAAG,IAAY,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,UAAU,CAAC,GAAG,CAAQ;YAC5D,eAAe,EAAE,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC,OAAO,CAAC;SAC3D,CAAC;IACN,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,CAAC;AACpB,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,YAAY,CACxB,IAAa,EACb,OAAgB,EAChB,QAA8B;IAE9B,IAAI,CAAC,QAAQ,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IAElC,IAAI,CAAC;QACD,IAAI,OAAO,EAAE,CAAC;YACV,OAAQ,IAAY,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,MAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACnE,CAAC;QACD,OAAO,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACvC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACX,IAAI,GAAG,YAAY,QAAQ,EAAE,CAAC;YAC1B,MAAM,IAAI,wBAAwB,CAAC,QAAQ,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QAC3D,CAAC;QACD,MAAM,GAAG,CAAC;IACd,CAAC;AACL,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,UAAU,CACtB,IAAa,EACb,OAAgB,EAChB,QAA8B;IAE9B,wEAAwE;IACxE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,IAAI,QAAQ,CAAC,YAAY,EAAE,CAAC;QACtD,QAAQ,CAAC,gBAAgB,GAAG,eAAe,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC;QACnE,IAAI,CAAC,QAAQ,CAAC,gBAAgB,EAAE,CAAC;YAC7B,OAAO,CAAC,IAAI,CACR,qBAAqB,QAAQ,CAAC,IAAI,gEAAgE;gBAClG,kGAAkG;gBAClG,yCAAyC,CAC5C,CAAC;QACN,CAAC;IACL,CAAC;IACD,IAAI,CAAC,QAAQ,CAAC,gBAAgB;QAAE,OAAO,IAAI,CAAC;IAE5C,IAAI,OAAO,EAAE,CAAC;QACV,OAAQ,IAAY,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,gBAAiB,CAAC,IAAI,CAAM,CAAC,CAAC;IAC5E,CAAC;IAED,OAAO,QAAQ,CAAC,gBAAgB,CAAC,IAAI,CAAM,CAAC;AAChD,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CACxB,OAAwB,EACxB,IAAa,EACb,OAAgB,EAChB,QAA8B,EAC9B,GAAa;IAEb,IAAI,OAAO,IAAI,QAAQ,CAAC,kBAAkB,EAAE,CAAC;QACzC,MAAM,MAAM,GAAG,QAAQ,CAAC,kBAAkB,CAAC,IAAW,EAAE,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAc,CAAC;QAC1F,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;YAAE,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACpD,CAAC;SAAM,IAAI,CAAC,OAAO,IAAI,QAAQ,CAAC,YAAY,EAAE,CAAC;QAC3C,MAAM,MAAM,GAAG,QAAQ,CAAC,YAAY,CAAC,IAAS,EAAE,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAc,CAAC;QAClF,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;YAAE,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACpD,CAAC;AACL,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,SAAS,CACrB,OAAwB,EACxB,IAAa,EACb,OAAgB,EAChB,QAA8B,EAC9B,GAAa;IAEb,iBAAiB;IACjB,IAAI,OAAO,QAAQ,CAAC,KAAK,KAAK,UAAU,EAAE,CAAC;QACvC,MAAM,UAAU,GAAG,OAAO,CAAC,CAAC,CAAE,IAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAS,CAAC;QAC1D,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;YAC3B,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,UAAU,EAAE,GAAG,CAAC;iBAC3C,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;YAC5C,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC;gBAAE,OAAO,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;QAC3D,CAAC;IACL,CAAC;SAAM,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnC,OAAO,CAAC,WAAW,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IACxC,CAAC;IAED,oEAAoE;IACpE,MAAM,kBAAkB,GAAG,OAAO,QAAQ,CAAC,eAAe,KAAK,UAAU;WAClE,QAAQ,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC;IAE3C,IAAI,OAAO,IAAI,kBAAkB,EAAE,CAAC;QAChC,MAAM,KAAK,GAAG,IAAW,CAAC;QAC1B,IAAI,OAAO,QAAQ,CAAC,eAAe,KAAK,UAAU,EAAE,CAAC;YACjD,MAAM,QAAQ,GAAG,QAAQ,CAAC,eAAe,CAAC,KAAK,EAAE,GAAG,CAAC;iBAChD,MAAM,CAAC,CAAC,CAAC,EAAe,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;YAC5C,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC;gBAAE,OAAO,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;QAC3D,CAAC;aAAM,IAAI,QAAQ,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7C,OAAO,CAAC,WAAW,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC;QAClD,CAAC;IACL,CAAC;AACL,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,eAAe,CAC3B,OAAwB,EACxB,IAAa,EACb,OAAgB,EAChB,QAA8B,EAC9B,GAAa;IAEb,sDAAsD;IACtD,IAAI,OAAO,IAAI,QAAQ,CAAC,wBAAwB,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAG,IAAW,CAAC;QAC1B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAC/B,MAAM,WAAW,GAAG,QAAQ,CAAC,wBAAwB,CAAC,KAAK,EAAE,GAAG,CAAC;aAC5D,MAAM,CAAC,CAAC,CAAC,EAAyB,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;QACtD,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACzB,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;QACpC,CAAC;QACD,OAAO;IACX,CAAC;IAED,yDAAyD;IACzD,IAAI,CAAC,QAAQ,CAAC,cAAc;QAAE,OAAO;IACrC,MAAM,UAAU,GAAG,OAAO,CAAC,CAAC,CAAE,IAAY,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAS,CAAC;IAC1D,IAAI,UAAU,KAAK,SAAS;QAAE,OAAO;IAErC,MAAM,WAAW,GAAG,QAAQ,CAAC,cAAc,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;IAC7D,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC;IACpC,CAAC;AACL,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,UAAU,CACtB,OAAwB,EACxB,IAAa,EACb,OAAgB,EAChB,QAA8B,EAC9B,GAAa;IAEb,IAAI,QAAQ,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO;IAEzC,MAAM,KAAK,GAAG,OAAO;QACjB,CAAC,CAAE,IAAY,CAAC,MAAM,CAAC,CAAC,IAAI,EAAa,EAAE,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,IAAI,KAAK,QAAQ,CAAC;QAC3F,CAAC,CAAC,CAAC,IAAS,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,EAAa,EAAE,CAAC,IAAI,KAAK,SAAS,IAAI,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC;IAE9F,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO;IAE/B,mEAAmE;IACnE,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IAEvC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,KAAK,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,CAAC;QACtD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAE,CAAC;QAE7B,KAAK,MAAM,KAAK,IAAI,QAAQ,CAAC,MAAM,EAAE,CAAC;YAClC,MAAM,UAAU,GAAI,IAAgC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAChE,IAAI,UAAU,KAAK,SAAS,IAAI,UAAU,KAAK,IAAI;gBAAE,SAAS;YAE9D,MAAM,YAAY,GAAG,KAAK,CAAC,SAAS,CAAC,IAAI,CAAC,UAAU,EAAE,GAAG,CAAC,CAAC;YAC3D,MAAM,aAAa,GAAG,YAAY,CAAC,KAAK,EAAE,CAAC;YAE3C,sDAAsD;YACtD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,aAAa,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpD,MAAM,SAAS,GAAG,aAAa,CAAC,OAAO,CAAC,CAAC,CAAE,CAAC,IAAI,CAAC;gBAEjD,wEAAwE;gBACxE,IAAI,OAAO,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;oBACzB,IAAI,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC;wBAAE,SAAS;oBAC1C,IAAI,SAAS,CAAC,QAAQ,CAAC,iBAAiB,CAAC;wBAAE,SAAS;gBACxD,CAAC;gBAED,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;gBAC5B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;YAChC,CAAC;QACL,CAAC;IACL,CAAC;AACL,CAAC;AAED,2DAA2D;AAE3D;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,eAAe,CAC3B,IAAa,EACb,QAA8B,EAC9B,GAAa,EACb,YAAuB;IAEvB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IAEpC,oDAAoD;IACpD,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;IACxD,IAAI,GAAG,SAAS,CAAC,IAAI,CAAC;IAEtB,6EAA6E;IAC7E,MAAM,YAAY,GAAG,IAAI,CAAC;IAE1B,sDAAsD;IACtD,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;IAExD,wDAAwD;IACxD,2DAA2D;IAC3D,2DAA2D;IAC3D,qBAAqB;IAErB,wDAAwD;IACxD,MAAM,QAAQ,GAAG,CAAC,YAAY,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,CAAC;QACtD,CAAC,CAAC,iBAAiB,CAAC,SAAS,EAAE,YAAY,EAAE,OAAO,CAAC;QACrD,CAAC,CAAC,SAAS,CAAC;IAEhB,6DAA6D;IAC7D,MAAM,YAAY,GAAG,UAAU,CAAC,QAAQ,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC;IAE7D,MAAM,OAAO,GAAG,IAAI,eAAe,CAAC,YAA+B,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC;IAEjG,mEAAmE;IACnE,IAAI,SAAS,CAAC,eAAe,EAAE,CAAC;QAC5B,OAAO,CAAC,OAAO,CAAC,SAAS,CAAC,eAAe,CAAC,CAAC;IAC/C,CAAC;IAED,kEAAkE;IAClE,UAAU,CAAC,OAAO,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;IAE1D,uDAAuD;IACvD,YAAY,CAAC,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;IAEzD,mDAAmD;IACnD,SAAS,CAAC,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;IAEtD,gEAAgE;IAChE,eAAe,CAAC,OAAO,EAAE,SAAS,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;IAE5D,OAAO,OAAO,CAAC;AACnB,CAAC"}

package/dist/presenter/PromptFirewall.d.ts

@@ -0,0 +1,160 @@
+/**
+ * PromptFirewall — LLM-as-Judge Output Protection
+ *
+ * Evaluates dynamically-generated system rules via a {@link JudgeChain}
+ * before they reach the LLM as `<domain_rules>`. This prevents prompt
+ * injection attacks where tainted data (e.g., user input stored in a
+ * database) is interpolated into system rules.
+ *
+ * The firewall operates inside `Presenter.makeAsync()`, AFTER all sync
+ * and async rules have been resolved. This means:
+ * - `executePipeline()` is NOT modified (zero async ripple)
+ * - `make()` throws if a firewall is configured (forces async path)
+ *
+ * **Design**: The framework provides the judge prompt via
+ * `buildFirewallPrompt()`. The developer only brings the LLM adapter(s).
+ *
+ * @example
+ * ```typescript
+ * import { createPresenter } from '@vurb/core';
+ *
+ * const InvoicePresenter = createPresenter('Invoice')
+ *     .schema(invoiceSchema)
+ *     .systemRules((inv) => [`Status: ${inv.description}`])
+ *     .promptFirewall({
+ *         adapter: { name: 'gpt-4o-mini', evaluate: (p) => openai.chat(p) },
+ *         timeoutMs: 3000,
+ *     });
+ *
+ * // MUST use makeAsync():
+ * return (await InvoicePresenter.makeAsync(data, ctx)).build();
+ * ```
+ *
+ * @module
+ */
+import type { SemanticProbeAdapter } from '../introspection/SemanticProbe.js';
+import type { TelemetrySink } from '../observability/TelemetryEvent.js';
+import { type JudgeChain, type JudgeChainResult } from './JudgeChain.js';
+/**
+ * Configuration for the PromptFirewall.
+ *
+ * Accepts either a single adapter or a pre-built JudgeChain for
+ * multi-adapter evaluation (fallback/consensus).
+ *
+ * @example
+ * ```typescript
+ * // Single adapter:
+ * .promptFirewall({ adapter: gptMini })
+ *
+ * // Multi-adapter (fallback):
+ * .promptFirewall({
+ *     chain: createJudgeChain({
+ *         adapters: [gptMini, claudeHaiku],
+ *         strategy: 'fallback',
+ *     }),
+ * })
+ *
+ * // Multi-adapter (consensus — both must agree):
+ * .promptFirewall({
+ *     chain: createJudgeChain({
+ *         adapters: [gptMini, claudeHaiku],
+ *         strategy: 'consensus',
+ *     }),
+ * })
+ * ```
+ */
+export interface PromptFirewallConfig {
+    /**
+     * Single LLM adapter for evaluation.
+     * Mutually exclusive with `chain`. If both provided, `chain` wins.
+     */
+    readonly adapter?: SemanticProbeAdapter;
+    /**
+     * Pre-built JudgeChain for multi-adapter evaluation.
+     * Takes precedence over `adapter` if both are set.
+     */
+    readonly chain?: JudgeChain;
+    /**
+     * Timeout per individual adapter call in milliseconds.
+     * Only used when `adapter` is set (JudgeChain manages its own timeouts).
+     *
+     * @default 5000
+     */
+    readonly timeoutMs?: number;
+    /**
+     * Behavior when ALL judges fail (timeout, error, unparseable).
+     *
+     * - `false` (default) — **Fail-closed**: rules are DROPPED.
+     * - `true` — **Fail-open**: rules PASS (use at your own risk).
+     *
+     * Only used when `adapter` is set. JudgeChain manages its own failOpen.
+     *
+     * @default false
+     */
+    readonly failOpen?: boolean;
+    /**
+     * Optional telemetry sink for `security.firewall` events.
+     * When provided, emits an event after every evaluation with
+     * verdict details (allowed/rejected counts, duration, fallback).
+     */
+    readonly telemetry?: TelemetrySink;
+}
+/**
+ * Structured result of a firewall evaluation.
+ *
+ * Contains both allowed and rejected rules with reasoning,
+ * enabling telemetry and audit trails.
+ */
+export interface FirewallVerdict {
+    /** Rules that passed the firewall (safe to send to LLM) */
+    readonly allowed: readonly string[];
+    /** Rules that were rejected (stripped from the response) */
+    readonly rejected: readonly FirewallRejection[];
+    /** Whether the verdict was determined by failOpen/failClosed */
+    readonly fallbackTriggered: boolean;
+    /** Total evaluation duration in milliseconds */
+    readonly durationMs: number;
+    /** Raw chain result for telemetry */
+    readonly chainResult: JudgeChainResult;
+}
+/**
+ * A single rejected rule with the reason for rejection.
+ */
+export interface FirewallRejection {
+    /** The rule string that was rejected */
+    readonly rule: string;
+    /** Reason for rejection (from the judge) */
+    readonly reason: string;
+}
+/**
+ * Build the evaluation prompt for the firewall judge.
+ *
+ * The prompt asks the LLM to evaluate whether any of the provided
+ * system rules appear to contain prompt injection attempts.
+ *
+ * @param rules - Array of system rules to evaluate
+ * @returns Complete evaluation prompt
+ */
+export declare function buildFirewallPrompt(rules: readonly string[]): string;
+/**
+ * Parse the firewall judge's response into a structured verdict.
+ *
+ * @param rules - Original rules array
+ * @param chainResult - Result from the JudgeChain
+ * @returns Structured {@link FirewallVerdict}
+ *
+ * @internal
+ */
+export declare function parseFirewallVerdict(rules: readonly string[], chainResult: JudgeChainResult): FirewallVerdict;
+/**
+ * Evaluate system rules through the firewall.
+ *
+ * Builds the judge prompt, sends it through the chain, and
+ * parses the response into a structured {@link FirewallVerdict}.
+ *
+ * @param rules - System rules to evaluate
+ * @param config - Firewall configuration
+ * @returns A structured verdict with allowed and rejected rules
+ */
+export declare function evaluateRules(rules: readonly string[], config: PromptFirewallConfig): Promise<FirewallVerdict>;
+//# sourceMappingURL=PromptFirewall.d.ts.map

package/dist/presenter/PromptFirewall.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"PromptFirewall.d.ts","sourceRoot":"","sources":["../../src/presenter/PromptFirewall.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAiCG;AACH,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,mCAAmC,CAAC;AAC9E,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,oCAAoC,CAAC;AACxE,OAAO,EAEH,KAAK,UAAU,EAEf,KAAK,gBAAgB,EACxB,MAAM,iBAAiB,CAAC;AAIzB;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AACH,MAAM,WAAW,oBAAoB;IACjC;;;OAGG;IACH,QAAQ,CAAC,OAAO,CAAC,EAAE,oBAAoB,CAAC;IAExC;;;OAGG;IACH,QAAQ,CAAC,KAAK,CAAC,EAAE,UAAU,CAAC;IAE5B;;;;;OAKG;IACH,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;IAE5B;;;;;;;;;OASG;IACH,QAAQ,CAAC,QAAQ,CAAC,EAAE,OAAO,CAAC;IAE5B;;;;OAIG;IACH,QAAQ,CAAC,SAAS,CAAC,EAAE,aAAa,CAAC;CACtC;AAED;;;;;GAKG;AACH,MAAM,WAAW,eAAe;IAC5B,2DAA2D;IAC3D,QAAQ,CAAC,OAAO,EAAE,SAAS,MAAM,EAAE,CAAC;IAEpC,4DAA4D;IAC5D,QAAQ,CAAC,QAAQ,EAAE,SAAS,iBAAiB,EAAE,CAAC;IAEhD,gEAAgE;IAChE,QAAQ,CAAC,iBAAiB,EAAE,OAAO,CAAC;IAEpC,gDAAgD;IAChD,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAE5B,qCAAqC;IACrC,QAAQ,CAAC,WAAW,EAAE,gBAAgB,CAAC;CAC1C;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAC9B,wCAAwC;IACxC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,4CAA4C;IAC5C,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;CAC3B;AAID;;;;;;;;GAQG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,GAAG,MAAM,CAgCpE;AAID;;;;;;;;GAQG;AACH,wBAAgB,oBAAoB,CAChC,KAAK,EAAE,SAAS,MAAM,EAAE,EACxB,WAAW,EAAE,gBAAgB,GAC9B,eAAe,CAsFjB;AAoCD;;;;;;;;;GASG;AACH,wBAAsB,aAAa,CAC/B,KAAK,EAAE,SAAS,MAAM,EAAE,EACxB,MAAM,EAAE,oBAAoB,GAC7B,OAAO,CAAC,eAAe,CAAC,CA6C1B"}