@wytness/sdk 0.3.1 → 0.4.0

package/README.md

@@ -30,9 +30,11 @@ await sendEmail("team@company.com", "Report", "Weekly summary");
 
 ## Features
 
+- **Response capture** — AI agent responses are automatically captured, truncated to 5K chars, and PII-redacted
+- **PII redaction** — emails, SSN, TFN, credit cards, and phone numbers are automatically redacted from responses and parameter values
 - **Cryptographic signing** — every event is signed with Ed25519 (tweetnacl)
 - **Hash chaining** — tamper-evident chain of events per agent session
-- **Automatic redaction** — secrets in parameters are automatically redacted
+- **Automatic secret redaction** — secrets in parameter names are automatically redacted
 - **HTTP transport** — stream events to api.wytness.dev over HTTPS
 - **File fallback** — events are saved locally if the API is unreachable
 
@@ -66,7 +68,7 @@ const client = new AuditClient({
 
 ### `auditTool(client, fn, options)`
 
-Wraps a function to automatically log audit events. Captures function name, parameters, execution duration, success/failure status, cryptographic signature, and hash chain link.
+Wraps a function to automatically log audit events. Captures function name, parameters, **response text** (truncated to 5K chars, PII-redacted), execution duration, success/failure status, cryptographic signature, and hash chain link.
 
 ### `client.sessionId`
 
@@ -114,6 +116,7 @@ import {
   AuditClientOptions,
   auditTool,
   hashValue,
+  redactPii,
   AuditEvent,
   AuditEventSchema,
   generateKeypair,

package/dist/index.cjs

@@ -38,6 +38,7 @@ __export(src_exports, {
   createHttpEmitter: () => createHttpEmitter,
   generateKeypair: () => generateKeypair,
   hashValue: () => hashValue,
+  redactPii: () => redactPii,
   signEvent: () => signEvent,
   verifyChain: () => verifyChain,
   verifyEvent: () => verifyEvent
@@ -72,6 +73,7 @@ var AuditEventSchema = import_zod.z.object({
   inputs_source: import_zod.z.string().default(""),
   outputs_hash: import_zod.z.string().default(""),
   outputs_destination: import_zod.z.string().default(""),
+  response: import_zod.z.string().default(""),
   // Layer 5: Outcome
   status: import_zod.z.string().default("success"),
   error_code: import_zod.z.string().nullable().default(null),
@@ -299,10 +301,29 @@ var AuditClient = class {
 // src/decorator.ts
 var import_crypto4 = require("crypto");
 var SECRET_PATTERN = /key|secret|token|password|passwd|pwd|credential|auth/i;
+var PII_PATTERNS = [
+  [/\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Z|a-z]{2,}\b/g, "[EMAIL_REDACTED]"],
+  [/\b\d{3}[-.\s]?\d{2}[-.\s]?\d{4}\b/g, "[SSN_REDACTED]"],
+  [/\b\d{3}[-.\s]?\d{3}[-.\s]?\d{3}\b/g, "[TFN_REDACTED]"],
+  [/\b(?:\d{4}[-\s]?){3}\d{4}\b/g, "[CARD_REDACTED]"],
+  [/\b(?:\+?\d{1,3}[-.\s]?)?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}\b/g, "[PHONE_REDACTED]"]
+];
+var RESPONSE_MAX_CHARS = 5e3;
+function redactPii(text) {
+  for (const [pattern, replacement] of PII_PATTERNS) {
+    pattern.lastIndex = 0;
+    text = text.replace(pattern, replacement);
+  }
+  return text;
+}
 function sanitise(params) {
   const result = {};
   for (const [k, v] of Object.entries(params)) {
-    result[k] = SECRET_PATTERN.test(k) ? "[REDACTED]" : String(v).slice(0, 500);
+    if (SECRET_PATTERN.test(k)) {
+      result[k] = "[REDACTED]";
+    } else {
+      result[k] = redactPii(String(v).slice(0, 500));
+    }
   }
   return result;
 }
@@ -314,6 +335,8 @@ function recordEvent(client, toolName, taskId, prompt, args, start, status, erro
   args.forEach((arg, i) => {
     params[`arg${i}`] = arg;
   });
+  const outputsHash = result != null ? hashValue(result) : "";
+  const response = result != null ? redactPii(String(result).slice(0, RESPONSE_MAX_CHARS)) : "";
   const event = AuditEventSchema.parse({
     agent_id: client.agentId,
     agent_version: client.agentVersion,
@@ -324,7 +347,8 @@ function recordEvent(client, toolName, taskId, prompt, args, start, status, erro
     tool_parameters: sanitise(params),
     prompt,
     inputs_hash: hashValue(args),
-    outputs_hash: result != null ? hashValue(result) : "",
+    outputs_hash: outputsHash,
+    response,
     status,
     error_code: errorCode,
     duration_ms: Math.round(performance.now() - start)
@@ -381,6 +405,7 @@ function auditTool(client, fnOrTaskId, options) {
   createHttpEmitter,
   generateKeypair,
   hashValue,
+  redactPii,
   signEvent,
   verifyChain,
   verifyEvent

package/dist/index.d.cts

@@ -21,6 +21,7 @@ declare const AuditEventSchema: z.ZodObject<{
     inputs_source: z.ZodDefault<z.ZodString>;
     outputs_hash: z.ZodDefault<z.ZodString>;
     outputs_destination: z.ZodDefault<z.ZodString>;
+    response: z.ZodDefault<z.ZodString>;
     status: z.ZodDefault<z.ZodString>;
     error_code: z.ZodDefault<z.ZodNullable<z.ZodString>>;
     duration_ms: z.ZodDefault<z.ZodNumber>;
@@ -49,6 +50,7 @@ declare const AuditEventSchema: z.ZodObject<{
     inputs_source: string;
     outputs_hash: string;
     outputs_destination: string;
+    response: string;
     error_code: string | null;
     duration_ms: number;
     retry_count: number;
@@ -76,6 +78,7 @@ declare const AuditEventSchema: z.ZodObject<{
     inputs_source?: string | undefined;
     outputs_hash?: string | undefined;
     outputs_destination?: string | undefined;
+    response?: string | undefined;
     error_code?: string | null | undefined;
     duration_ms?: number | undefined;
     retry_count?: number | undefined;
@@ -133,6 +136,7 @@ declare class AuditClient {
     flush(): Promise<void>;
 }
 
+declare function redactPii(text: string): string;
 declare function hashValue(value: unknown): string;
 interface AuditToolOptions {
     toolName?: string;
@@ -153,4 +157,4 @@ interface AuditToolOptions {
  */
 declare function auditTool(client: AuditClient, fnOrTaskId?: ((...args: unknown[]) => unknown) | string, options?: AuditToolOptions | string): any;
 
-export { AuditClient, type AuditClientOptions, type AuditEvent, AuditEventSchema, auditTool, computeEventHash, createFileEmitter, createHttpEmitter, generateKeypair, hashValue, signEvent, verifyChain, verifyEvent };
+export { AuditClient, type AuditClientOptions, type AuditEvent, AuditEventSchema, auditTool, computeEventHash, createFileEmitter, createHttpEmitter, generateKeypair, hashValue, redactPii, signEvent, verifyChain, verifyEvent };

package/dist/index.d.ts

@@ -21,6 +21,7 @@ declare const AuditEventSchema: z.ZodObject<{
     inputs_source: z.ZodDefault<z.ZodString>;
     outputs_hash: z.ZodDefault<z.ZodString>;
     outputs_destination: z.ZodDefault<z.ZodString>;
+    response: z.ZodDefault<z.ZodString>;
     status: z.ZodDefault<z.ZodString>;
     error_code: z.ZodDefault<z.ZodNullable<z.ZodString>>;
     duration_ms: z.ZodDefault<z.ZodNumber>;
@@ -49,6 +50,7 @@ declare const AuditEventSchema: z.ZodObject<{
     inputs_source: string;
     outputs_hash: string;
     outputs_destination: string;
+    response: string;
     error_code: string | null;
     duration_ms: number;
     retry_count: number;
@@ -76,6 +78,7 @@ declare const AuditEventSchema: z.ZodObject<{
     inputs_source?: string | undefined;
     outputs_hash?: string | undefined;
     outputs_destination?: string | undefined;
+    response?: string | undefined;
     error_code?: string | null | undefined;
     duration_ms?: number | undefined;
     retry_count?: number | undefined;
@@ -133,6 +136,7 @@ declare class AuditClient {
     flush(): Promise<void>;
 }
 
+declare function redactPii(text: string): string;
 declare function hashValue(value: unknown): string;
 interface AuditToolOptions {
     toolName?: string;
@@ -153,4 +157,4 @@ interface AuditToolOptions {
  */
 declare function auditTool(client: AuditClient, fnOrTaskId?: ((...args: unknown[]) => unknown) | string, options?: AuditToolOptions | string): any;
 
-export { AuditClient, type AuditClientOptions, type AuditEvent, AuditEventSchema, auditTool, computeEventHash, createFileEmitter, createHttpEmitter, generateKeypair, hashValue, signEvent, verifyChain, verifyEvent };
+export { AuditClient, type AuditClientOptions, type AuditEvent, AuditEventSchema, auditTool, computeEventHash, createFileEmitter, createHttpEmitter, generateKeypair, hashValue, redactPii, signEvent, verifyChain, verifyEvent };

package/dist/index.js

@@ -26,6 +26,7 @@ var AuditEventSchema = z.object({
   inputs_source: z.string().default(""),
   outputs_hash: z.string().default(""),
   outputs_destination: z.string().default(""),
+  response: z.string().default(""),
   // Layer 5: Outcome
   status: z.string().default("success"),
   error_code: z.string().nullable().default(null),
@@ -253,10 +254,29 @@ var AuditClient = class {
 // src/decorator.ts
 import { createHash as createHash2 } from "crypto";
 var SECRET_PATTERN = /key|secret|token|password|passwd|pwd|credential|auth/i;
+var PII_PATTERNS = [
+  [/\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Z|a-z]{2,}\b/g, "[EMAIL_REDACTED]"],
+  [/\b\d{3}[-.\s]?\d{2}[-.\s]?\d{4}\b/g, "[SSN_REDACTED]"],
+  [/\b\d{3}[-.\s]?\d{3}[-.\s]?\d{3}\b/g, "[TFN_REDACTED]"],
+  [/\b(?:\d{4}[-\s]?){3}\d{4}\b/g, "[CARD_REDACTED]"],
+  [/\b(?:\+?\d{1,3}[-.\s]?)?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}\b/g, "[PHONE_REDACTED]"]
+];
+var RESPONSE_MAX_CHARS = 5e3;
+function redactPii(text) {
+  for (const [pattern, replacement] of PII_PATTERNS) {
+    pattern.lastIndex = 0;
+    text = text.replace(pattern, replacement);
+  }
+  return text;
+}
 function sanitise(params) {
   const result = {};
   for (const [k, v] of Object.entries(params)) {
-    result[k] = SECRET_PATTERN.test(k) ? "[REDACTED]" : String(v).slice(0, 500);
+    if (SECRET_PATTERN.test(k)) {
+      result[k] = "[REDACTED]";
+    } else {
+      result[k] = redactPii(String(v).slice(0, 500));
+    }
   }
   return result;
 }
@@ -268,6 +288,8 @@ function recordEvent(client, toolName, taskId, prompt, args, start, status, erro
   args.forEach((arg, i) => {
     params[`arg${i}`] = arg;
   });
+  const outputsHash = result != null ? hashValue(result) : "";
+  const response = result != null ? redactPii(String(result).slice(0, RESPONSE_MAX_CHARS)) : "";
   const event = AuditEventSchema.parse({
     agent_id: client.agentId,
     agent_version: client.agentVersion,
@@ -278,7 +300,8 @@ function recordEvent(client, toolName, taskId, prompt, args, start, status, erro
     tool_parameters: sanitise(params),
     prompt,
     inputs_hash: hashValue(args),
-    outputs_hash: result != null ? hashValue(result) : "",
+    outputs_hash: outputsHash,
+    response,
     status,
     error_code: errorCode,
     duration_ms: Math.round(performance.now() - start)
@@ -334,6 +357,7 @@ export {
   createHttpEmitter,
   generateKeypair,
   hashValue,
+  redactPii,
   signEvent,
   verifyChain,
   verifyEvent

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@wytness/sdk",
-  "version": "0.3.1",
+  "version": "0.4.0",
   "description": "TypeScript SDK for Wytness — audit logging for AI agents with cryptographic signing and chain integrity",
   "license": "MIT",
   "author": "Wytness <hello@wytness.dev>",