@windagency/valora 2.2.0 → 2.3.0

package/dist/mcp/mcp-tool-handler.js.map

@@ -1 +1 @@
-{"version":3,"file":"mcp-tool-handler.js","sourceRoot":"","sources":["../../src/mcp/mcp-tool-handler.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAC1C,OAAO,EAAE,qBAAqB,EAAE,MAAM,4BAA4B,CAAC;AACnE,OAAO,EAAE,kBAAkB,EAAgB,MAAM,qBAAqB,CAAC;AA0BvE;;GAEG;AACH,MAAM,OAAO,cAAc;IAKjB;IACA;IACA;IACA;IACA;IART,8DAA8D;IACtD,gBAAgB,GAAgB,IAAI,GAAG,EAAE,CAAC;IAElD,YACS,aAAsC,EACtC,mBAA2C,EAC3C,aAAsC,EACtC,WAAkC,EAClC,gBAAqC;QAJrC,kBAAa,GAAb,aAAa,CAAyB;QACtC,wBAAmB,GAAnB,mBAAmB,CAAwB;QAC3C,kBAAa,GAAb,aAAa,CAAyB;QACtC,gBAAW,GAAX,WAAW,CAAuB;QAClC,qBAAgB,GAAhB,gBAAgB,CAAqB;IAC3C,CAAC;IAEJ;;;OAGG;IACH,KAAK,CAAC,2BAA2B,CAAC,QAAmB;QACpD,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAElC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QAC3E,MAAM,QAAQ,GAAG,qBAAqB,EAAE,CAAC;QAEzC,4CAA4C;QAC5C,QAAQ,CAAC,aAAa,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACzC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,WAAW,CAChB,OAAgB,EAChB,QAAgB,EAChB,IAA6B;QAE7B,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,MAAM,QAAQ,GAAG,qBAAqB,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,mCAAmC;QACnC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAE7C,MAAM,CAAC,KAAK,CAAC,oBAAoB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;QAE1E,IAAI,CAAC;YACJ,uDAAuD;YACvD,MAAM,IAAI,CAAC,qBAAqB,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;YAErD,mBAAmB;YACnB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC;gBAChD,IAAI;gBACJ,SAAS,EAAE,GAAG,QAAQ,IAAI,QAAQ,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE;gBAClD,QAAQ;gBACR,QAAQ;aACR,CAAC,CAAC;YAEH,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAE1C,qCAAqC;YACrC,QAAQ,CAAC,eAAe,CAAC,QAAQ,EAAE,QAAQ,EAAE,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;YAEzE,OAAO;gBACN,UAAU;gBACV,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,MAAM,EAAE,MAAM,CAAC,OAAO;gBACtB,QAAQ;gBACR,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,QAAQ;aACR,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,MAAM,YAAY,GAAI,KAAe,CAAC,OAAO,CAAC;YAE9C,oCAAoC;YACpC,QAAQ,CAAC,eAAe,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC;YAEhE,MAAM,CAAC,KAAK,CAAC,8BAA8B,QAAQ,EAAE,EAAE,KAAc,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YAErF,OAAO;gBACN,UAAU;gBACV,KAAK,EAAE,YAAY;gBACnB,MAAM,EAAE,IAAI;gBACZ,QAAQ;gBACR,OAAO,EAAE,KAAK;gBACd,QAAQ;aACR,CAAC;QACH,CAAC;IACF,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,qBAAqB,CAAC,QAAgB,EAAE,QAAgB;QACrE,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAE3B,6BAA6B;QAC7B,IAAI,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC9C,OAAO;QACR,CAAC;QAED,6DAA6D;QAC7D,IAAI,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YACzC,4DAA4D;YAC5D,MAAM,IAAI,KAAK,CAAC,UAAU,QAAQ,mBAAmB,CAAC,CAAC;QACxD,CAAC;QAED,2BAA2B;QAC3B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;QAClE,IAAI,CAAC,MAAM,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,qCAAqC,QAAQ,EAAE,CAAC,CAAC;QAClE,CAAC;QAED,IAAI,MAAM,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,2BAA2B,QAAQ,EAAE,CAAC,CAAC;QACxD,CAAC;QAED,gCAAgC;QAChC,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;QAE1E,IAAI,aAAa,EAAE,CAAC;YACnB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;YACxE,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACf,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,2BAA2B;gBAChE,MAAM,IAAI,KAAK,CAAC,yCAAyC,QAAQ,EAAE,CAAC,CAAC;YACtE,CAAC;QACF,CAAC;QAED,wBAAwB;QACxB,MAAM,CAAC,IAAI,CAAC,6BAA6B,QAAQ,EAAE,CAAC,CAAC;QACrD,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC3C,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAEpC,6BAA6B;QAC7B,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;QAC/D,IAAI,CAAC,gBAAgB,CAAC,wBAAwB,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,cAAc,CAAC,MAAM,IAAI,CAAC,EAAE,IAAI,CAAC,CAAC;IACjH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,eAAe,CAAC,QAAgB,EAAE,MAA+B,EAAE,QAAgB;QAChG,wBAAwB;QACxB,MAAM,IAAI,CAAC,aAAa,CAAC,mBAAmB,EAAE,CAAC;QAE/C,wBAAwB;QACxB,MAAM,aAAa,GAAqB;YACvC,MAAM,EAAE,cAAc,QAAQ,EAAE;YAChC,WAAW,EAAE,kBAAkB;YAC/B,cAAc,EAAE,CAAC,QAAQ,CAAC;YAC1B,QAAQ;YACR,SAAS,EAAE,IAAI,IAAI,EAAE;SACrB,CAAC;QAEF,mDAAmD;QACnD,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAEnE,oCAAoC;QACpC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,eAAe,CAAC,MAAM,EAAE,aAAa,EAAE,cAAc,CAAC,CAAC;QAElG,mBAAmB;QACnB,MAAM,IAAI,CAAC,WAAW,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC;QAE7F,oBAAoB;QACpB,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YACrB,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC,iBAAiB,CAAC,CAAC;QACpF,CAAC;QAED,OAAO,MAAM,CAAC,QAAQ,CAAC;IACxB,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,OAAgB;QACjC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAC1D,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IACjC,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,OAAgB;QACjC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAC7C,OAAO,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa;QAClB,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAC9C,IAAI,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC9C,MAAM,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAC/C,CAAC;QACF,CAAC;QACD,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;IAED;;OAEG;IACH,KAAK;QACJ,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;CACD;AAED;;GAEG;AACH,IAAI,QAAQ,GAA0B,IAAI,CAAC;AAE3C;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAChC,aAAsC,EACtC,mBAA2C,EAC3C,aAAsC,EACtC,WAAkC,EAClC,gBAAqC;IAErC,QAAQ,KAAK,IAAI,cAAc,CAAC,aAAa,EAAE,mBAAmB,EAAE,aAAa,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC;IAClH,OAAO,QAAQ,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB;IAClC,QAAQ,GAAG,IAAI,CAAC;AACjB,CAAC"}
+{"version":3,"file":"mcp-tool-handler.js","sourceRoot":"","sources":["../../src/mcp/mcp-tool-handler.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAC/D,OAAO,EAAE,0BAA0B,EAAE,MAAM,oCAAoC,CAAC;AAIhF,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAC1C,OAAO,EAAE,qBAAqB,EAAE,MAAM,4BAA4B,CAAC;AACnE,OAAO,EAAE,kBAAkB,EAAgB,MAAM,qBAAqB,CAAC;AA0BvE;;GAEG;AACH,MAAM,OAAO,cAAc;IAKjB;IACA;IACA;IACA;IACA;IART,8DAA8D;IACtD,gBAAgB,GAAgB,IAAI,GAAG,EAAE,CAAC;IAElD,YACS,aAAsC,EACtC,mBAA2C,EAC3C,aAAsC,EACtC,WAAkC,EAClC,gBAAqC;QAJrC,kBAAa,GAAb,aAAa,CAAyB;QACtC,wBAAmB,GAAnB,mBAAmB,CAAwB;QAC3C,kBAAa,GAAb,aAAa,CAAyB;QACtC,gBAAW,GAAX,WAAW,CAAuB;QAClC,qBAAgB,GAAhB,gBAAgB,CAAqB;IAC3C,CAAC;IAEJ;;;OAGG;IACH,KAAK,CAAC,2BAA2B,CAAC,QAAmB;QACpD,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAElC,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QAC3E,MAAM,QAAQ,GAAG,qBAAqB,EAAE,CAAC;QAEzC,4CAA4C;QAC5C,QAAQ,CAAC,aAAa,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACzC,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,WAAW,CAChB,OAAgB,EAChB,QAAgB,EAChB,IAA6B;QAE7B,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,MAAM,QAAQ,GAAG,qBAAqB,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,mCAAmC;QACnC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAE7C,MAAM,CAAC,KAAK,CAAC,oBAAoB,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;QAE1E,IAAI,CAAC;YACJ,uDAAuD;YACvD,MAAM,IAAI,CAAC,qBAAqB,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;YAErD,mBAAmB;YACnB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC;gBAChD,IAAI;gBACJ,SAAS,EAAE,GAAG,QAAQ,IAAI,QAAQ,IAAI,IAAI,CAAC,GAAG,EAAE,EAAE;gBAClD,QAAQ;gBACR,QAAQ;aACR,CAAC,CAAC;YAEH,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAE1C,qCAAqC;YACrC,QAAQ,CAAC,eAAe,CAAC,QAAQ,EAAE,QAAQ,EAAE,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;YAEzE,mDAAmD;YACnD,IAAI,eAAe,GAAY,MAAM,CAAC,OAAO,CAAC;YAC9C,IAAI,OAAO,MAAM,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;gBACxC,MAAM,OAAO,GAAG,kBAAkB,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;gBAChE,eAAe,GAAG,0BAA0B,EAAE,CAAC,kBAAkB,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YACtF,CAAC;iBAAM,IAAI,MAAM,CAAC,OAAO,IAAI,OAAO,MAAM,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;gBACjE,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;gBACjD,MAAM,UAAU,GAAG,kBAAkB,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;gBAC9D,MAAM,YAAY,GAAG,0BAA0B,EAAE,CAAC,kBAAkB,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;gBAC3F,IAAI,YAAY,KAAK,SAAS,EAAE,CAAC;oBAChC,eAAe,GAAG,YAAY,CAAC;gBAChC,CAAC;YACF,CAAC;YAED,OAAO;gBACN,UAAU;gBACV,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,MAAM,EAAE,eAAe;gBACvB,QAAQ;gBACR,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,QAAQ;aACR,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YAChB,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,MAAM,YAAY,GAAI,KAAe,CAAC,OAAO,CAAC;YAE9C,oCAAoC;YACpC,QAAQ,CAAC,eAAe,CAAC,QAAQ,EAAE,QAAQ,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC;YAEhE,MAAM,CAAC,KAAK,CAAC,8BAA8B,QAAQ,EAAE,EAAE,KAAc,EAAE,EAAE,QAAQ,EAAE,CAAC,CAAC;YAErF,OAAO;gBACN,UAAU;gBACV,KAAK,EAAE,YAAY;gBACnB,MAAM,EAAE,IAAI;gBACZ,QAAQ;gBACR,OAAO,EAAE,KAAK;gBACd,QAAQ;aACR,CAAC;QACH,CAAC;IACF,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,qBAAqB,CAAC,QAAgB,EAAE,QAAgB;QACrE,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAE3B,6BAA6B;QAC7B,IAAI,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC9C,OAAO;QACR,CAAC;QAED,6DAA6D;QAC7D,IAAI,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YACzC,4DAA4D;YAC5D,MAAM,IAAI,KAAK,CAAC,UAAU,QAAQ,mBAAmB,CAAC,CAAC;QACxD,CAAC;QAED,2BAA2B;QAC3B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC;QAClE,IAAI,CAAC,MAAM,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,qCAAqC,QAAQ,EAAE,CAAC,CAAC;QAClE,CAAC;QAED,IAAI,MAAM,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,2BAA2B,QAAQ,EAAE,CAAC,CAAC;QACxD,CAAC;QAED,gCAAgC;QAChC,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;QAE1E,IAAI,aAAa,EAAE,CAAC;YACnB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;YACxE,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACf,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,2BAA2B;gBAChE,MAAM,IAAI,KAAK,CAAC,yCAAyC,QAAQ,EAAE,CAAC,CAAC;YACtE,CAAC;QACF,CAAC;QAED,wBAAwB;QACxB,MAAM,CAAC,IAAI,CAAC,6BAA6B,QAAQ,EAAE,CAAC,CAAC;QACrD,MAAM,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC3C,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAEpC,6BAA6B;QAC7B,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,QAAQ,CAAC,CAAC;QAC/D,IAAI,CAAC,gBAAgB,CAAC,wBAAwB,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,cAAc,CAAC,MAAM,IAAI,CAAC,EAAE,IAAI,CAAC,CAAC;IACjH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,eAAe,CAAC,QAAgB,EAAE,MAA+B,EAAE,QAAgB;QAChG,wBAAwB;QACxB,MAAM,IAAI,CAAC,aAAa,CAAC,mBAAmB,EAAE,CAAC;QAE/C,wBAAwB;QACxB,MAAM,aAAa,GAAqB;YACvC,MAAM,EAAE,cAAc,QAAQ,EAAE;YAChC,WAAW,EAAE,kBAAkB;YAC/B,cAAc,EAAE,CAAC,QAAQ,CAAC;YAC1B,QAAQ;YACR,SAAS,EAAE,IAAI,IAAI,EAAE;SACrB,CAAC;QAEF,mDAAmD;QACnD,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAEnE,oCAAoC;QACpC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,gBAAgB,CAAC,eAAe,CAAC,MAAM,EAAE,aAAa,EAAE,cAAc,CAAC,CAAC;QAElG,mBAAmB;QACnB,MAAM,IAAI,CAAC,WAAW,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,CAAC;QAE7F,oBAAoB;QACpB,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YACrB,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC,iBAAiB,CAAC,CAAC;QACpF,CAAC;QAED,OAAO,MAAM,CAAC,QAAQ,CAAC;IACxB,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,OAAgB;QACjC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC;QAC1D,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IACjC,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,OAAgB;QACjC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;QAC7C,OAAO,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa;QAClB,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAC9C,IAAI,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC9C,MAAM,IAAI,CAAC,aAAa,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAC/C,CAAC;QACF,CAAC;QACD,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;IAED;;OAEG;IACH,KAAK;QACJ,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;IAC/B,CAAC;CACD;AAED;;GAEG;AACH,IAAI,QAAQ,GAA0B,IAAI,CAAC;AAE3C;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAChC,aAAsC,EACtC,mBAA2C,EAC3C,aAAsC,EACtC,WAAkC,EAClC,gBAAqC;IAErC,QAAQ,KAAK,IAAI,cAAc,CAAC,aAAa,EAAE,mBAAmB,EAAE,aAAa,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC;IAClH,OAAO,QAAQ,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB;IAClC,QAAQ,GAAG,IAAI,CAAC;AACjB,CAAC"}

package/dist/package.json

@@ -1,6 +1,6 @@
 {
 	"name": "@windagency/valora",
-	"version": "2.2.0",
+	"version": "2.3.0",
 	"description": "VALORA - AI-assisted development workflow orchestration with agnostic multi-LLM support, session-based state, and Cursor MCP integration",
 	"keywords": [
 		"valora",
@@ -140,8 +140,11 @@
 		"openai": "^4.67.0",
 		"ora": "^8.0.0",
 		"react": "^19.2.1",
+		"tree-sitter-wasms": "0.1.11",
 		"undici": "^7.16.0",
 		"unzipper": "^0.12.0",
+		"vscode-languageserver-protocol": "^3.17.5",
+		"web-tree-sitter": "^0.24.7",
 		"yaml": "^2.4.0",
 		"zod": "^3.22.4"
 	},

package/dist/security/command-guard.d.ts

@@ -0,0 +1,58 @@
+/**
+ * Command Guard
+ *
+ * Validates terminal commands before execution to prevent:
+ * - Data exfiltration via network tools
+ * - Arbitrary code execution via eval/exec patterns
+ * - Environment variable credential theft
+ * - Chained command exploitation
+ */
+import { type SecurityEvent } from './security-event.types.js';
+export interface CommandValidationResult {
+    allowed: boolean;
+    reason?: string;
+}
+export declare class CommandGuard {
+    private events;
+    /**
+     * Validate a command string before execution.
+     */
+    validate(command: string): CommandValidationResult;
+    /**
+     * Get recorded security events.
+     */
+    getEvents(): SecurityEvent[];
+    /**
+     * Clear recorded events.
+     */
+    clearEvents(): void;
+    /**
+     * Split a command string on shell chain operators.
+     */
+    private splitCommand;
+    /**
+     * Check if the character toggles a quote state. Returns null if not a quote.
+     */
+    private handleQuote;
+    /**
+     * Match a chain operator at position i. Returns extra chars to skip, or null.
+     */
+    private matchOperator;
+    /**
+     * Validate a single command segment.
+     */
+    private validateSegment;
+    /**
+     * Check for data exfiltration patterns.
+     */
+    private checkExfiltrationPatterns;
+    /**
+     * Check for environment variable credential access.
+     */
+    private block;
+    private checkEnvAccess;
+    private logEvent;
+}
+export declare function getCommandGuard(): CommandGuard;
+export declare function resetCommandGuard(): void;
+//# sourceMappingURL=command-guard.d.ts.map

package/dist/security/command-guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"command-guard.d.ts","sourceRoot":"","sources":["../../src/security/command-guard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,OAAO,EAAuB,KAAK,aAAa,EAAE,MAAM,wBAAwB,CAAC;AA8DjF,MAAM,WAAW,uBAAuB;IACvC,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,qBAAa,YAAY;IACxB,OAAO,CAAC,MAAM,CAAuB;IAErC;;OAEG;IACH,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,uBAAuB;IA2BlD;;OAEG;IACH,SAAS,IAAI,aAAa,EAAE;IAI5B;;OAEG;IACH,WAAW,IAAI,IAAI;IAInB;;OAEG;IACH,OAAO,CAAC,YAAY;IAkDpB;;OAEG;IACH,OAAO,CAAC,WAAW;IAcnB;;OAEG;IACH,OAAO,CAAC,aAAa;IASrB;;OAEG;IACH,OAAO,CAAC,eAAe;IAyBvB;;OAEG;IACH,OAAO,CAAC,yBAAyB;IASjC;;OAEG;IACH,OAAO,CAAC,KAAK;IAKb,OAAO,CAAC,cAAc;IAStB,OAAO,CAAC,QAAQ;CAUhB;AAOD,wBAAgB,eAAe,IAAI,YAAY,CAG9C;AAED,wBAAgB,iBAAiB,IAAI,IAAI,CAExC"}

package/dist/security/command-guard.js

@@ -0,0 +1,249 @@
+/**
+ * Command Guard
+ *
+ * Validates terminal commands before execution to prevent:
+ * - Data exfiltration via network tools
+ * - Arbitrary code execution via eval/exec patterns
+ * - Environment variable credential theft
+ * - Chained command exploitation
+ */
+import { getLogger } from '../output/logger.js';
+import { createSecurityEvent } from './security-event.types.js';
+/**
+ * Commands that enable network data exfiltration.
+ */
+const NETWORK_COMMANDS = ['curl', 'wget', 'nc', 'ncat', 'netcat'];
+/**
+ * Commands that enable arbitrary remote access.
+ */
+const REMOTE_ACCESS_COMMANDS = ['ssh', 'scp', 'rsync', 'ftp', 'sftp'];
+/**
+ * Eval/exec patterns that enable arbitrary code execution.
+ */
+const EVAL_PATTERNS = [
+    /\beval\s+/,
+    /\bexec\s+/,
+    /\bbash\s+-c\b/,
+    /\bsh\s+-c\b/,
+    /\bzsh\s+-c\b/,
+    /\bpython[23]?\s+-c\b/,
+    /\bnode\s+-e\b/,
+    /\bruby\s+-e\b/,
+    /\bperl\s+-e\b/
+];
+/**
+ * Patterns that indicate environment variable credential access in commands.
+ */
+const ENV_ACCESS_PATTERNS = [
+    /\$ANTHROPIC_/,
+    /\$OPENAI_/,
+    /\$GOOGLE_/,
+    /\$AWS_/,
+    /\$AZURE_/,
+    /\$\{?[A-Z_]*API_KEY\}?/,
+    /\$\{?[A-Z_]*TOKEN\}?/,
+    /\$\{?[A-Z_]*SECRET\}?/,
+    /\$\{?[A-Z_]*PASSWORD\}?/,
+    /\$\{?DATABASE_URL\}?/,
+    /\$\{?REDIS_URL\}?/,
+    /\$\{?PRIVATE_KEY\}?/
+];
+/**
+ * Exfiltration patterns: data extraction piped to network commands.
+ */
+const EXFILTRATION_PATTERNS = [
+    // Reading credentials and piping to network
+    /cat\s+.*\.env.*\|/,
+    /cat\s+.*id_rsa.*\|/,
+    /cat\s+.*\.pem.*\|/,
+    // Base64 encoding of credential files
+    /base64\s+.*\.env/,
+    /base64\s+.*id_rsa/,
+    /base64\s+.*\.pem/,
+    /base64\s+.*\.key/,
+    // Subshell reading env vars
+    /\$\(.*\$[A-Z_]*(?:API_KEY|TOKEN|SECRET|PASSWORD)/
+];
+export class CommandGuard {
+    events = [];
+    /**
+     * Validate a command string before execution.
+     */
+    validate(command) {
+        if (!command || typeof command !== 'string') {
+            return { allowed: false, reason: 'Empty or invalid command' };
+        }
+        // Check exfiltration patterns on the full command first
+        const exfilResult = this.checkExfiltrationPatterns(command);
+        if (!exfilResult.allowed)
+            return exfilResult;
+        // Check env var access patterns on the full command
+        const envResult = this.checkEnvAccess(command);
+        if (!envResult.allowed)
+            return envResult;
+        // Split on chain operators and validate each segment
+        const segments = this.splitCommand(command);
+        for (const segment of segments) {
+            const trimmed = segment.trim();
+            if (!trimmed)
+                continue;
+            const result = this.validateSegment(trimmed);
+            if (!result.allowed)
+                return result;
+        }
+        return { allowed: true };
+    }
+    /**
+     * Get recorded security events.
+     */
+    getEvents() {
+        return [...this.events];
+    }
+    /**
+     * Clear recorded events.
+     */
+    clearEvents() {
+        this.events = [];
+    }
+    /**
+     * Split a command string on shell chain operators.
+     */
+    splitCommand(command) {
+        const segments = [];
+        let current = '';
+        let inSingleQuote = false;
+        let inDoubleQuote = false;
+        let escaped = false;
+        for (let i = 0; i < command.length; i++) {
+            const char = command[i];
+            if (escaped) {
+                current += char;
+                escaped = false;
+                continue;
+            }
+            if (char === '\\') {
+                current += char;
+                escaped = true;
+                continue;
+            }
+            const quoteResult = this.handleQuote(char, inSingleQuote, inDoubleQuote);
+            if (quoteResult !== null) {
+                inSingleQuote = quoteResult.inSingleQuote;
+                inDoubleQuote = quoteResult.inDoubleQuote;
+                current += char;
+                continue;
+            }
+            if (!inSingleQuote && !inDoubleQuote) {
+                const split = this.matchOperator(command, i);
+                if (split !== null) {
+                    segments.push(current);
+                    current = '';
+                    i += split; // skip extra chars for && or ||
+                    continue;
+                }
+            }
+            current += char;
+        }
+        if (current.trim()) {
+            segments.push(current);
+        }
+        return segments;
+    }
+    /**
+     * Check if the character toggles a quote state. Returns null if not a quote.
+     */
+    handleQuote(char, inSingleQuote, inDoubleQuote) {
+        if (char === "'" && !inDoubleQuote) {
+            return { inDoubleQuote, inSingleQuote: !inSingleQuote };
+        }
+        if (char === '"' && !inSingleQuote) {
+            return { inDoubleQuote: !inDoubleQuote, inSingleQuote };
+        }
+        return null;
+    }
+    /**
+     * Match a chain operator at position i. Returns extra chars to skip, or null.
+     */
+    matchOperator(command, i) {
+        const char = command[i];
+        if (char === ';')
+            return 0;
+        if (char === '|' && command[i + 1] === '|')
+            return 1;
+        if (char === '&' && command[i + 1] === '&')
+            return 1;
+        if (char === '|')
+            return 0;
+        return null;
+    }
+    /**
+     * Validate a single command segment.
+     */
+    validateSegment(segment) {
+        const command = segment.trim();
+        // Extract the base command (first word)
+        const baseCommand = command.split(/\s+/)[0]?.replace(/^.*\//, '') ?? '';
+        // Check network commands
+        if (NETWORK_COMMANDS.includes(baseCommand)) {
+            return this.block(command, `Network command blocked: ${baseCommand} — potential data exfiltration vector`);
+        }
+        // Check remote access commands
+        if (REMOTE_ACCESS_COMMANDS.includes(baseCommand)) {
+            return this.block(command, `Remote access command blocked: ${baseCommand} — potential data exfiltration vector`);
+        }
+        // Check eval/exec patterns
+        for (const pattern of EVAL_PATTERNS) {
+            if (pattern.test(command)) {
+                return this.block(command, `Arbitrary code execution blocked: matches pattern ${pattern.source}`);
+            }
+        }
+        return { allowed: true };
+    }
+    /**
+     * Check for data exfiltration patterns.
+     */
+    checkExfiltrationPatterns(command) {
+        for (const pattern of EXFILTRATION_PATTERNS) {
+            if (pattern.test(command)) {
+                return this.block(command, `Exfiltration pattern detected: ${pattern.source}`);
+            }
+        }
+        return { allowed: true };
+    }
+    /**
+     * Check for environment variable credential access.
+     */
+    block(command, reason) {
+        this.logEvent(command, reason);
+        return { allowed: false, reason };
+    }
+    checkEnvAccess(command) {
+        for (const pattern of ENV_ACCESS_PATTERNS) {
+            if (pattern.test(command)) {
+                return this.block(command, `Environment variable credential access detected: ${pattern.source}`);
+            }
+        }
+        return { allowed: true };
+    }
+    logEvent(command, reason) {
+        const event = createSecurityEvent('command_blocked', 'critical', {
+            command: command.slice(0, 200),
+            reason
+        });
+        this.events.push(event);
+        const logger = getLogger();
+        logger.warn(`[Security] Command blocked`, { command: command.slice(0, 200), reason });
+    }
+}
+/**
+ * Singleton instance
+ */
+let instance = null;
+export function getCommandGuard() {
+    instance ??= new CommandGuard();
+    return instance;
+}
+export function resetCommandGuard() {
+    instance = null;
+}
+//# sourceMappingURL=command-guard.js.map

package/dist/security/command-guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"command-guard.js","sourceRoot":"","sources":["../../src/security/command-guard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAE1C,OAAO,EAAE,mBAAmB,EAAsB,MAAM,wBAAwB,CAAC;AAEjF;;GAEG;AACH,MAAM,gBAAgB,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;AAElE;;GAEG;AACH,MAAM,sBAAsB,GAAG,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;AAEtE;;GAEG;AACH,MAAM,aAAa,GAAa;IAC/B,WAAW;IACX,WAAW;IACX,eAAe;IACf,aAAa;IACb,cAAc;IACd,sBAAsB;IACtB,eAAe;IACf,eAAe;IACf,eAAe;CACf,CAAC;AAEF;;GAEG;AACH,MAAM,mBAAmB,GAAa;IACrC,cAAc;IACd,WAAW;IACX,WAAW;IACX,QAAQ;IACR,UAAU;IACV,wBAAwB;IACxB,sBAAsB;IACtB,uBAAuB;IACvB,yBAAyB;IACzB,sBAAsB;IACtB,mBAAmB;IACnB,qBAAqB;CACrB,CAAC;AAEF;;GAEG;AACH,MAAM,qBAAqB,GAAa;IACvC,4CAA4C;IAC5C,mBAAmB;IACnB,oBAAoB;IACpB,mBAAmB;IACnB,sCAAsC;IACtC,kBAAkB;IAClB,mBAAmB;IACnB,kBAAkB;IAClB,kBAAkB;IAClB,4BAA4B;IAC5B,kDAAkD;CAClD,CAAC;AAOF,MAAM,OAAO,YAAY;IAChB,MAAM,GAAoB,EAAE,CAAC;IAErC;;OAEG;IACH,QAAQ,CAAC,OAAe;QACvB,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;YAC7C,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,0BAA0B,EAAE,CAAC;QAC/D,CAAC;QAED,wDAAwD;QACxD,MAAM,WAAW,GAAG,IAAI,CAAC,yBAAyB,CAAC,OAAO,CAAC,CAAC;QAC5D,IAAI,CAAC,WAAW,CAAC,OAAO;YAAE,OAAO,WAAW,CAAC;QAE7C,oDAAoD;QACpD,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC/C,IAAI,CAAC,SAAS,CAAC,OAAO;YAAE,OAAO,SAAS,CAAC;QAEzC,qDAAqD;QACrD,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,OAAO,CAAC,CAAC;QAE5C,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAChC,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;YAC/B,IAAI,CAAC,OAAO;gBAAE,SAAS;YAEvB,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;YAC7C,IAAI,CAAC,MAAM,CAAC,OAAO;gBAAE,OAAO,MAAM,CAAC;QACpC,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC;IAED;;OAEG;IACH,SAAS;QACR,OAAO,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,WAAW;QACV,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC;IAClB,CAAC;IAED;;OAEG;IACK,YAAY,CAAC,OAAe;QACnC,MAAM,QAAQ,GAAa,EAAE,CAAC;QAC9B,IAAI,OAAO,GAAG,EAAE,CAAC;QACjB,IAAI,aAAa,GAAG,KAAK,CAAC;QAC1B,IAAI,aAAa,GAAG,KAAK,CAAC;QAC1B,IAAI,OAAO,GAAG,KAAK,CAAC;QAEpB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACzC,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,CAAE,CAAC;YAEzB,IAAI,OAAO,EAAE,CAAC;gBACb,OAAO,IAAI,IAAI,CAAC;gBAChB,OAAO,GAAG,KAAK,CAAC;gBAChB,SAAS;YACV,CAAC;YAED,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;gBACnB,OAAO,IAAI,IAAI,CAAC;gBAChB,OAAO,GAAG,IAAI,CAAC;gBACf,SAAS;YACV,CAAC;YAED,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,aAAa,EAAE,aAAa,CAAC,CAAC;YACzE,IAAI,WAAW,KAAK,IAAI,EAAE,CAAC;gBAC1B,aAAa,GAAG,WAAW,CAAC,aAAa,CAAC;gBAC1C,aAAa,GAAG,WAAW,CAAC,aAAa,CAAC;gBAC1C,OAAO,IAAI,IAAI,CAAC;gBAChB,SAAS;YACV,CAAC;YAED,IAAI,CAAC,aAAa,IAAI,CAAC,aAAa,EAAE,CAAC;gBACtC,MAAM,KAAK,GAAG,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;gBAC7C,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;oBACpB,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBACvB,OAAO,GAAG,EAAE,CAAC;oBACb,CAAC,IAAI,KAAK,CAAC,CAAC,gCAAgC;oBAC5C,SAAS;gBACV,CAAC;YACF,CAAC;YAED,OAAO,IAAI,IAAI,CAAC;QACjB,CAAC;QAED,IAAI,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;YACpB,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;QAED,OAAO,QAAQ,CAAC;IACjB,CAAC;IAED;;OAEG;IACK,WAAW,CAClB,IAAY,EACZ,aAAsB,EACtB,aAAsB;QAEtB,IAAI,IAAI,KAAK,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;YACpC,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,CAAC,aAAa,EAAE,CAAC;QACzD,CAAC;QACD,IAAI,IAAI,KAAK,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;YACpC,OAAO,EAAE,aAAa,EAAE,CAAC,aAAa,EAAE,aAAa,EAAE,CAAC;QACzD,CAAC;QACD,OAAO,IAAI,CAAC;IACb,CAAC;IAED;;OAEG;IACK,aAAa,CAAC,OAAe,EAAE,CAAS;QAC/C,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;QACxB,IAAI,IAAI,KAAK,GAAG;YAAE,OAAO,CAAC,CAAC;QAC3B,IAAI,IAAI,KAAK,GAAG,IAAI,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG;YAAE,OAAO,CAAC,CAAC;QACrD,IAAI,IAAI,KAAK,GAAG,IAAI,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG;YAAE,OAAO,CAAC,CAAC;QACrD,IAAI,IAAI,KAAK,GAAG;YAAE,OAAO,CAAC,CAAC;QAC3B,OAAO,IAAI,CAAC;IACb,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,OAAe;QACtC,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;QAC/B,wCAAwC;QACxC,MAAM,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,IAAI,EAAE,CAAC;QAExE,yBAAyB;QACzB,IAAI,gBAAgB,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YAC5C,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,4BAA4B,WAAW,uCAAuC,CAAC,CAAC;QAC5G,CAAC;QAED,+BAA+B;QAC/B,IAAI,sBAAsB,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;YAClD,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,kCAAkC,WAAW,uCAAuC,CAAC,CAAC;QAClH,CAAC;QAED,2BAA2B;QAC3B,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE,CAAC;YACrC,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC3B,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,qDAAqD,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YACnG,CAAC;QACF,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC;IAED;;OAEG;IACK,yBAAyB,CAAC,OAAe;QAChD,KAAK,MAAM,OAAO,IAAI,qBAAqB,EAAE,CAAC;YAC7C,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC3B,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,kCAAkC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YAChF,CAAC;QACF,CAAC;QACD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,OAAe,EAAE,MAAc;QAC5C,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAC/B,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC;IACnC,CAAC;IAEO,cAAc,CAAC,OAAe;QACrC,KAAK,MAAM,OAAO,IAAI,mBAAmB,EAAE,CAAC;YAC3C,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC3B,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,oDAAoD,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YAClG,CAAC;QACF,CAAC;QACD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC;IAEO,QAAQ,CAAC,OAAe,EAAE,MAAc;QAC/C,MAAM,KAAK,GAAG,mBAAmB,CAAC,iBAAiB,EAAE,UAAU,EAAE;YAChE,OAAO,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;YAC9B,MAAM;SACN,CAAC,CAAC;QACH,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAExB,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE,EAAE,OAAO,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;IACvF,CAAC;CACD;AAED;;GAEG;AACH,IAAI,QAAQ,GAAwB,IAAI,CAAC;AAEzC,MAAM,UAAU,eAAe;IAC9B,QAAQ,KAAK,IAAI,YAAY,EAAE,CAAC;IAChC,OAAO,QAAQ,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,iBAAiB;IAChC,QAAQ,GAAG,IAAI,CAAC;AACjB,CAAC"}

package/dist/security/credential-guard.d.ts

@@ -0,0 +1,42 @@
+/**
+ * Credential Guard
+ *
+ * Prevents credential leakage through:
+ * - Environment sanitisation for terminal commands
+ * - Tool output credential scanning
+ * - Sensitive file read blocking
+ * - ENV variable filtering
+ */
+import { type SecurityEvent } from './security-event.types.js';
+export declare class CredentialGuard {
+    private events;
+    /**
+     * Sanitise environment variables for subprocess execution.
+     * Returns a copy with sensitive values replaced by [REDACTED].
+     */
+    sanitiseEnvironment(env: NodeJS.ProcessEnv): NodeJS.ProcessEnv;
+    /**
+     * Check if an environment variable name matches sensitive patterns.
+     */
+    isSensitiveEnvVar(name: string): boolean;
+    /**
+     * Scan tool output for credentials and redact them.
+     */
+    scanOutput(content: string): string;
+    /**
+     * Check if a file path points to a sensitive file.
+     */
+    isSensitiveFile(filePath: string): boolean;
+    /**
+     * Get recorded security events (for testing/monitoring).
+     */
+    getEvents(): SecurityEvent[];
+    /**
+     * Clear recorded events.
+     */
+    clearEvents(): void;
+    private logEvent;
+}
+export declare function getCredentialGuard(): CredentialGuard;
+export declare function resetCredentialGuard(): void;
+//# sourceMappingURL=credential-guard.d.ts.map

package/dist/security/credential-guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential-guard.d.ts","sourceRoot":"","sources":["../../src/security/credential-guard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAMH,OAAO,EAAuB,KAAK,aAAa,EAAE,MAAM,wBAAwB,CAAC;AA0EjF,qBAAa,eAAe;IAC3B,OAAO,CAAC,MAAM,CAAuB;IAErC;;;OAGG;IACH,mBAAmB,CAAC,GAAG,EAAE,MAAM,CAAC,UAAU,GAAG,MAAM,CAAC,UAAU;IAe9D;;OAEG;IACH,iBAAiB,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAIxC;;OAEG;IACH,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM;IAsBnC;;OAEG;IACH,eAAe,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO;IA2B1C;;OAEG;IACH,SAAS,IAAI,aAAa,EAAE;IAI5B;;OAEG;IACH,WAAW,IAAI,IAAI;IAInB,OAAO,CAAC,QAAQ;CAWhB;AAOD,wBAAgB,kBAAkB,IAAI,eAAe,CAGpD;AAED,wBAAgB,oBAAoB,IAAI,IAAI,CAE3C"}

package/dist/security/credential-guard.js

@@ -0,0 +1,181 @@
+/**
+ * Credential Guard
+ *
+ * Prevents credential leakage through:
+ * - Environment sanitisation for terminal commands
+ * - Tool output credential scanning
+ * - Sensitive file read blocking
+ * - ENV variable filtering
+ */
+import { resolve } from 'path';
+import { getLogger } from '../output/logger.js';
+import { createSecurityEvent } from './security-event.types.js';
+/**
+ * Glob-style patterns for sensitive environment variables.
+ * Matched case-insensitively against variable names.
+ */
+const SENSITIVE_ENV_PATTERNS = [
+    /^ANTHROPIC_/i,
+    /^OPENAI_/i,
+    /^GOOGLE_/i,
+    /^AWS_/i,
+    /^AZURE_/i,
+    /_API_KEY$/i,
+    /_TOKEN$/i,
+    /_SECRET$/i,
+    /_PASSWORD$/i,
+    /_CREDENTIAL$/i,
+    /^DATABASE_URL$/i,
+    /^REDIS_URL$/i,
+    /^MONGO_URI$/i,
+    /^PRIVATE_KEY$/i,
+    /^ENCRYPTION_KEY$/i
+];
+/**
+ * File path patterns that indicate sensitive files.
+ * Checked against the basename and resolved path.
+ */
+const SENSITIVE_FILE_PATTERNS = [
+    /^\.env$/,
+    /^\.env\..+$/,
+    /\.pem$/,
+    /\.key$/,
+    /^id_rsa$/,
+    /^id_ed25519$/,
+    /^id_ecdsa$/,
+    /^id_dsa$/,
+    /^credentials$/,
+    /^credentials\.json$/,
+    /^token\.json$/,
+    /\.keystore$/,
+    /\.jks$/,
+    /^known_hosts$/,
+    /^authorized_keys$/
+];
+/**
+ * Directory paths that are always sensitive.
+ * Checked against resolved absolute paths.
+ */
+const SENSITIVE_DIRECTORIES = ['/.ssh/', '/.aws/', '/.gnupg/', '/.config/gcloud/'];
+/**
+ * Patterns for detecting credentials in tool output text.
+ */
+const OUTPUT_CREDENTIAL_PATTERNS = [
+    // API keys with common prefixes (sk-ant-api03-..., sk-proj-..., etc.)
+    /sk-[a-zA-Z0-9_-]{20,}/g,
+    /pk-[a-zA-Z0-9_-]{20,}/g,
+    /api[_-]?key[=:]\s*["']?[a-zA-Z0-9_-]{16,}/gi,
+    // AWS access keys
+    /AKIA[0-9A-Z]{16}/g,
+    // Bearer tokens
+    /Bearer\s+[a-zA-Z0-9_\-.]{20,}/g,
+    // Generic long secrets (base64-ish with prefix)
+    /(?:token|secret|password|credential)[=:]\s*["']?[a-zA-Z0-9+/=_-]{20,}/gi,
+    // Private key blocks
+    /-----BEGIN\s+(?:RSA\s+)?PRIVATE\s+KEY-----/g,
+    // Connection strings with credentials
+    /(?:mongodb|postgres|mysql|redis):\/\/[^:]+:[^@]+@/gi
+];
+const REDACTED = '[REDACTED]';
+export class CredentialGuard {
+    events = [];
+    /**
+     * Sanitise environment variables for subprocess execution.
+     * Returns a copy with sensitive values replaced by [REDACTED].
+     */
+    sanitiseEnvironment(env) {
+        const sanitised = {};
+        for (const [key, value] of Object.entries(env)) {
+            if (this.isSensitiveEnvVar(key)) {
+                sanitised[key] = REDACTED;
+                this.logEvent('credential_redacted', 'medium', { source: 'environment', variable: key });
+            }
+            else {
+                sanitised[key] = value;
+            }
+        }
+        return sanitised;
+    }
+    /**
+     * Check if an environment variable name matches sensitive patterns.
+     */
+    isSensitiveEnvVar(name) {
+        return SENSITIVE_ENV_PATTERNS.some((pattern) => pattern.test(name));
+    }
+    /**
+     * Scan tool output for credentials and redact them.
+     */
+    scanOutput(content) {
+        if (!content || typeof content !== 'string')
+            return content;
+        let result = content;
+        let redacted = false;
+        for (const pattern of OUTPUT_CREDENTIAL_PATTERNS) {
+            // Reset lastIndex for global patterns
+            const regex = new RegExp(pattern.source, pattern.flags);
+            if (regex.test(result)) {
+                redacted = true;
+                result = result.replace(new RegExp(pattern.source, pattern.flags), REDACTED);
+            }
+        }
+        if (redacted) {
+            this.logEvent('credential_redacted', 'high', { source: 'tool_output' });
+        }
+        return result;
+    }
+    /**
+     * Check if a file path points to a sensitive file.
+     */
+    isSensitiveFile(filePath) {
+        const normalised = filePath.replace(/\\/g, '/');
+        const basename = normalised.split('/').pop() ?? '';
+        // Check basename against sensitive file patterns
+        if (SENSITIVE_FILE_PATTERNS.some((pattern) => pattern.test(basename))) {
+            return true;
+        }
+        // Check resolved path against sensitive directories
+        const resolvedPath = resolve(filePath).replace(/\\/g, '/');
+        const homedir = process.env['HOME'] ?? process.env['USERPROFILE'] ?? '';
+        const normalisedHome = homedir.replace(/\\/g, '/');
+        for (const dir of SENSITIVE_DIRECTORIES) {
+            if (resolvedPath.includes(`${normalisedHome}${dir}`)) {
+                return true;
+            }
+            // Also match the directory pattern without home prefix
+            if (resolvedPath.includes(dir)) {
+                return true;
+            }
+        }
+        return false;
+    }
+    /**
+     * Get recorded security events (for testing/monitoring).
+     */
+    getEvents() {
+        return [...this.events];
+    }
+    /**
+     * Clear recorded events.
+     */
+    clearEvents() {
+        this.events = [];
+    }
+    logEvent(type, severity, details) {
+        const event = createSecurityEvent(type, severity, details);
+        this.events.push(event);
+        const logger = getLogger();
+        logger.warn(`[Security] ${type}`, details);
+    }
+}
+/**
+ * Singleton instance
+ */
+let instance = null;
+export function getCredentialGuard() {
+    instance ??= new CredentialGuard();
+    return instance;
+}
+export function resetCredentialGuard() {
+    instance = null;
+}
+//# sourceMappingURL=credential-guard.js.map

package/dist/security/credential-guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential-guard.js","sourceRoot":"","sources":["../../src/security/credential-guard.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAE/B,OAAO,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAE1C,OAAO,EAAE,mBAAmB,EAAsB,MAAM,wBAAwB,CAAC;AAEjF;;;GAGG;AACH,MAAM,sBAAsB,GAAa;IACxC,cAAc;IACd,WAAW;IACX,WAAW;IACX,QAAQ;IACR,UAAU;IACV,YAAY;IACZ,UAAU;IACV,WAAW;IACX,aAAa;IACb,eAAe;IACf,iBAAiB;IACjB,cAAc;IACd,cAAc;IACd,gBAAgB;IAChB,mBAAmB;CACnB,CAAC;AAEF;;;GAGG;AACH,MAAM,uBAAuB,GAAa;IACzC,SAAS;IACT,aAAa;IACb,QAAQ;IACR,QAAQ;IACR,UAAU;IACV,cAAc;IACd,YAAY;IACZ,UAAU;IACV,eAAe;IACf,qBAAqB;IACrB,eAAe;IACf,aAAa;IACb,QAAQ;IACR,eAAe;IACf,mBAAmB;CACnB,CAAC;AAEF;;;GAGG;AACH,MAAM,qBAAqB,GAAG,CAAC,QAAQ,EAAE,QAAQ,EAAE,UAAU,EAAE,kBAAkB,CAAC,CAAC;AAEnF;;GAEG;AACH,MAAM,0BAA0B,GAAa;IAC5C,sEAAsE;IACtE,wBAAwB;IACxB,wBAAwB;IACxB,6CAA6C;IAC7C,kBAAkB;IAClB,mBAAmB;IACnB,gBAAgB;IAChB,gCAAgC;IAChC,gDAAgD;IAChD,yEAAyE;IACzE,qBAAqB;IACrB,6CAA6C;IAC7C,sCAAsC;IACtC,qDAAqD;CACrD,CAAC;AAEF,MAAM,QAAQ,GAAG,YAAY,CAAC;AAE9B,MAAM,OAAO,eAAe;IACnB,MAAM,GAAoB,EAAE,CAAC;IAErC;;;OAGG;IACH,mBAAmB,CAAC,GAAsB;QACzC,MAAM,SAAS,GAAsB,EAAE,CAAC;QAExC,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YAChD,IAAI,IAAI,CAAC,iBAAiB,CAAC,GAAG,CAAC,EAAE,CAAC;gBACjC,SAAS,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC;gBAC1B,IAAI,CAAC,QAAQ,CAAC,qBAAqB,EAAE,QAAQ,EAAE,EAAE,MAAM,EAAE,aAAa,EAAE,QAAQ,EAAE,GAAG,EAAE,CAAC,CAAC;YAC1F,CAAC;iBAAM,CAAC;gBACP,SAAS,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;YACxB,CAAC;QACF,CAAC;QAED,OAAO,SAAS,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,IAAY;QAC7B,OAAO,sBAAsB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IACrE,CAAC;IAED;;OAEG;IACH,UAAU,CAAC,OAAe;QACzB,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ;YAAE,OAAO,OAAO,CAAC;QAE5D,IAAI,MAAM,GAAG,OAAO,CAAC;QACrB,IAAI,QAAQ,GAAG,KAAK,CAAC;QAErB,KAAK,MAAM,OAAO,IAAI,0BAA0B,EAAE,CAAC;YAClD,sCAAsC;YACtC,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC;YACxD,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;gBACxB,QAAQ,GAAG,IAAI,CAAC;gBAChB,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,CAAC,EAAE,QAAQ,CAAC,CAAC;YAC9E,CAAC;QACF,CAAC;QAED,IAAI,QAAQ,EAAE,CAAC;YACd,IAAI,CAAC,QAAQ,CAAC,qBAAqB,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,aAAa,EAAE,CAAC,CAAC;QACzE,CAAC;QAED,OAAO,MAAM,CAAC;IACf,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,QAAgB;QAC/B,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAChD,MAAM,QAAQ,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC;QAEnD,iDAAiD;QACjD,IAAI,uBAAuB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;YACvE,OAAO,IAAI,CAAC;QACb,CAAC;QAED,oDAAoD;QACpD,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAC3D,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC;QACxE,MAAM,cAAc,GAAG,OAAO,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;QAEnD,KAAK,MAAM,GAAG,IAAI,qBAAqB,EAAE,CAAC;YACzC,IAAI,YAAY,CAAC,QAAQ,CAAC,GAAG,cAAc,GAAG,GAAG,EAAE,CAAC,EAAE,CAAC;gBACtD,OAAO,IAAI,CAAC;YACb,CAAC;YACD,uDAAuD;YACvD,IAAI,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBAChC,OAAO,IAAI,CAAC;YACb,CAAC;QACF,CAAC;QAED,OAAO,KAAK,CAAC;IACd,CAAC;IAED;;OAEG;IACH,SAAS;QACR,OAAO,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,WAAW;QACV,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC;IAClB,CAAC;IAEO,QAAQ,CACf,IAA2B,EAC3B,QAAmC,EACnC,OAAgC;QAEhC,MAAM,KAAK,GAAG,mBAAmB,CAAC,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC3D,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAExB,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,MAAM,CAAC,IAAI,CAAC,cAAc,IAAI,EAAE,EAAE,OAAO,CAAC,CAAC;IAC5C,CAAC;CACD;AAED;;GAEG;AACH,IAAI,QAAQ,GAA2B,IAAI,CAAC;AAE5C,MAAM,UAAU,kBAAkB;IACjC,QAAQ,KAAK,IAAI,eAAe,EAAE,CAAC;IACnC,OAAO,QAAQ,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,oBAAoB;IACnC,QAAQ,GAAG,IAAI,CAAC;AACjB,CAAC"}

package/dist/security/index.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Security Module
+ *
+ * Agentic AI security services for detection and prevention of:
+ * - Credential leakage
+ * - Command injection / exfiltration
+ * - Prompt injection via tool results
+ * - MCP tool poisoning
+ * - Tool-set drift (rug pull attacks)
+ */
+export { CommandGuard, getCommandGuard, resetCommandGuard } from './command-guard.js';
+export type { CommandValidationResult } from './command-guard.js';
+export { CredentialGuard, getCredentialGuard, resetCredentialGuard } from './credential-guard.js';
+export { getPromptInjectionDetector, PromptInjectionDetector, resetPromptInjectionDetector } from './prompt-injection-detector.js';
+export type { InjectionScanResult } from './prompt-injection-detector.js';
+export type { SecurityEvent, SecurityEventType, SecuritySeverity } from './security-event.types.js';
+export { createSecurityEvent } from './security-event.types.js';
+export { getToolDefinitionValidator, resetToolDefinitionValidator, ToolDefinitionValidator } from './tool-definition-validator.js';
+export type { ToolValidationResult } from './tool-definition-validator.js';
+export { getToolIntegrityMonitor, resetToolIntegrityMonitor, ToolIntegrityMonitor } from './tool-integrity-monitor.js';
+export type { IntegrityCheckResult, ToolSetDiff } from './tool-integrity-monitor.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/security/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/security/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,YAAY,EAAE,eAAe,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAC;AACnF,YAAY,EAAE,uBAAuB,EAAE,MAAM,iBAAiB,CAAC;AAC/D,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAC/F,OAAO,EACN,0BAA0B,EAC1B,uBAAuB,EACvB,4BAA4B,EAC5B,MAAM,6BAA6B,CAAC;AACrC,YAAY,EAAE,mBAAmB,EAAE,MAAM,6BAA6B,CAAC;AACvE,YAAY,EAAE,aAAa,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AACjG,OAAO,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,EACN,0BAA0B,EAC1B,4BAA4B,EAC5B,uBAAuB,EACvB,MAAM,6BAA6B,CAAC;AACrC,YAAY,EAAE,oBAAoB,EAAE,MAAM,6BAA6B,CAAC;AACxE,OAAO,EAAE,uBAAuB,EAAE,yBAAyB,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC;AACpH,YAAY,EAAE,oBAAoB,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC"}

package/dist/security/index.js

@@ -0,0 +1,17 @@
+/**
+ * Security Module
+ *
+ * Agentic AI security services for detection and prevention of:
+ * - Credential leakage
+ * - Command injection / exfiltration
+ * - Prompt injection via tool results
+ * - MCP tool poisoning
+ * - Tool-set drift (rug pull attacks)
+ */
+export { CommandGuard, getCommandGuard, resetCommandGuard } from './command-guard.js';
+export { CredentialGuard, getCredentialGuard, resetCredentialGuard } from './credential-guard.js';
+export { getPromptInjectionDetector, PromptInjectionDetector, resetPromptInjectionDetector } from './prompt-injection-detector.js';
+export { createSecurityEvent } from './security-event.types.js';
+export { getToolDefinitionValidator, resetToolDefinitionValidator, ToolDefinitionValidator } from './tool-definition-validator.js';
+export { getToolIntegrityMonitor, resetToolIntegrityMonitor, ToolIntegrityMonitor } from './tool-integrity-monitor.js';
+//# sourceMappingURL=index.js.map

package/dist/security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/security/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,YAAY,EAAE,eAAe,EAAE,iBAAiB,EAAE,MAAM,iBAAiB,CAAC;AAEnF,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,oBAAoB,EAAE,MAAM,oBAAoB,CAAC;AAC/F,OAAO,EACN,0BAA0B,EAC1B,uBAAuB,EACvB,4BAA4B,EAC5B,MAAM,6BAA6B,CAAC;AAGrC,OAAO,EAAE,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AAC7D,OAAO,EACN,0BAA0B,EAC1B,4BAA4B,EAC5B,uBAAuB,EACvB,MAAM,6BAA6B,CAAC;AAErC,OAAO,EAAE,uBAAuB,EAAE,yBAAyB,EAAE,oBAAoB,EAAE,MAAM,0BAA0B,CAAC"}