@xemahq/kernel-contracts 0.22.3 → 0.23.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (146) hide show
  1. package/dist/agent-workspace/awp-spec.json +0 -1
  2. package/dist/agent-workspace/lib/workspace-layout.d.ts.map +1 -1
  3. package/dist/agent-workspace/lib/workspace-layout.js.map +1 -1
  4. package/dist/biome/lib/biome-manifest.d.ts +0 -8
  5. package/dist/biome/lib/biome-manifest.d.ts.map +1 -1
  6. package/dist/biome/lib/biome-manifest.js +4 -50
  7. package/dist/biome/lib/biome-manifest.js.map +1 -1
  8. package/dist/capability/lib/errors.d.ts.map +1 -1
  9. package/dist/capability/lib/errors.js.map +1 -1
  10. package/dist/capability/lib/meta-tool.d.ts.map +1 -1
  11. package/dist/capability/lib/meta-tool.js.map +1 -1
  12. package/dist/connector/lib/connector-descriptor.d.ts.map +1 -1
  13. package/dist/connector/lib/credential-kind.d.ts.map +1 -1
  14. package/dist/connector/lib/credential-kind.js.map +1 -1
  15. package/dist/connector/lib/filter-expr.js +6 -0
  16. package/dist/connector/lib/filter-expr.js.map +1 -1
  17. package/dist/contribution/lib/contribution-kind.d.ts.map +1 -1
  18. package/dist/contribution/lib/contribution-kind.js.map +1 -1
  19. package/dist/contribution/lib/contribution-source.d.ts.map +1 -1
  20. package/dist/contribution/lib/contribution-source.js.map +1 -1
  21. package/dist/contribution/lib/contribution.d.ts.map +1 -1
  22. package/dist/contribution/lib/contribution.js.map +1 -1
  23. package/dist/document-render/lib/render-enums.d.ts.map +1 -1
  24. package/dist/document-render/lib/render-enums.js.map +1 -1
  25. package/dist/execution-context/lib/execution-context.d.ts.map +1 -1
  26. package/dist/execution-context/lib/execution-context.js.map +1 -1
  27. package/dist/execution-environment/lib/built-in-environments.d.ts.map +1 -1
  28. package/dist/execution-environment/lib/built-in-environments.js.map +1 -1
  29. package/dist/execution-environment/lib/execution-environment.d.ts.map +1 -1
  30. package/dist/execution-environment/lib/execution-environment.js +1 -1
  31. package/dist/execution-environment/lib/execution-environment.js.map +1 -1
  32. package/dist/inquiry/index.d.ts.map +1 -1
  33. package/dist/inquiry/index.js.map +1 -1
  34. package/dist/object/lib/object-lifecycle.d.ts.map +1 -1
  35. package/dist/object/lib/object-lifecycle.js.map +1 -1
  36. package/dist/policy/lib/obligations.d.ts.map +1 -1
  37. package/dist/policy/lib/obligations.js.map +1 -1
  38. package/dist/runner/lib/runner-registration.d.ts.map +1 -1
  39. package/dist/runner/lib/runner-registration.js.map +1 -1
  40. package/dist/service-registry/lib/service-names.generated.d.ts.map +1 -1
  41. package/dist/service-registry/lib/service-names.generated.js.map +1 -1
  42. package/dist/space/lib/space.d.ts.map +1 -1
  43. package/dist/space/lib/space.js.map +1 -1
  44. package/dist/workflow/index.d.ts.map +1 -1
  45. package/dist/workflow/index.js.map +1 -1
  46. package/dist/workflow/lib/activity-outputs.d.ts.map +1 -1
  47. package/package.json +11 -2
  48. package/src/agent-composition/lib/agent-workspace-config.ts +3 -3
  49. package/src/agent-composition/lib/capability-layer.ts +2 -2
  50. package/src/agent-composition/lib/intrinsic-floor.ts +1 -1
  51. package/src/agent-session/lib/participant.ts +1 -1
  52. package/src/agent-workspace/lib/context-json.ts +1 -1
  53. package/src/agent-workspace/lib/mount-apply.ts +2 -2
  54. package/src/agent-workspace/lib/workspace-layout.ts +2 -4
  55. package/src/app-runtime/lib/app-client.ts +1 -1
  56. package/src/app-runtime/lib/app-lockfile.ts +2 -2
  57. package/src/app-runtime/lib/app.ts +4 -4
  58. package/src/app-runtime/lib/audience-policy.ts +2 -2
  59. package/src/app-runtime/lib/biome-install.ts +3 -3
  60. package/src/app-runtime/lib/branding-config.ts +1 -1
  61. package/src/app-runtime/lib/delegated-session.ts +1 -1
  62. package/src/app-runtime/lib/external-subject.ts +1 -1
  63. package/src/biome/lib/biome-capability-refs.ts +3 -3
  64. package/src/biome/lib/biome-engines.ts +2 -2
  65. package/src/biome/lib/biome-lifecycle-hooks.ts +1 -1
  66. package/src/biome/lib/biome-lifecycle.ts +3 -3
  67. package/src/biome/lib/biome-manifest.ts +68 -122
  68. package/src/biome/lib/biome-permissions.ts +2 -2
  69. package/src/biome/lib/biome-scope.ts +2 -2
  70. package/src/biome/lib/biome-trust-tier.ts +1 -1
  71. package/src/biome/lib/trust-tier-policies.ts +2 -2
  72. package/src/biome-availability/lib/biome-availability.ts +1 -1
  73. package/src/capability/lib/capability-contribution.ts +3 -3
  74. package/src/capability/lib/capability-grant.ts +5 -5
  75. package/src/capability/lib/capability-policy.ts +2 -2
  76. package/src/capability/lib/capability-ref.ts +4 -4
  77. package/src/capability/lib/errors.ts +4 -10
  78. package/src/capability/lib/meta-tool.ts +2 -5
  79. package/src/capability/lib/permission-profile.ts +7 -7
  80. package/src/capability/lib/shell-command-descriptor.ts +3 -3
  81. package/src/connector/lib/adapter-kind.ts +1 -1
  82. package/src/connector/lib/capability-refs.ts +1 -1
  83. package/src/connector/lib/connector-descriptor.ts +4 -3
  84. package/src/connector/lib/credential-kind.ts +3 -4
  85. package/src/connector/lib/envelope-schema.ts +2 -2
  86. package/src/connector/lib/filter-expr-validate.ts +1 -1
  87. package/src/connector/lib/filter-expr.ts +8 -0
  88. package/src/contribution/lib/contribution-kind.ts +11 -12
  89. package/src/contribution/lib/contribution-source.ts +1 -2
  90. package/src/contribution/lib/contribution.ts +3 -6
  91. package/src/document-render/lib/render-enums.ts +1 -2
  92. package/src/execution-context/lib/caller.ts +2 -2
  93. package/src/execution-context/lib/execution-context.ts +12 -18
  94. package/src/execution-environment/lib/approval-rule.ts +2 -2
  95. package/src/execution-environment/lib/built-in-environments.ts +9 -11
  96. package/src/execution-environment/lib/execution-environment.ts +25 -26
  97. package/src/inquiry/index.ts +1 -2
  98. package/src/invocation/lib/invocation-mode.ts +1 -1
  99. package/src/invocation/lib/invocation-record.ts +1 -1
  100. package/src/invocation/lib/isolation-level.ts +1 -1
  101. package/src/kernel-state/lib/adapter-kind.ts +3 -3
  102. package/src/kernel-state/lib/kernel-state.ts +1 -1
  103. package/src/kernel-state/lib/key-grammar.ts +1 -1
  104. package/src/mcp-tool/lib/tool-selection.ts +1 -1
  105. package/src/object/lib/object-lifecycle.ts +1 -2
  106. package/src/object/lib/xema-object-kind.ts +1 -1
  107. package/src/object/lib/xema-object-ref.ts +2 -2
  108. package/src/org-database/lib/db-result-event.ts +3 -3
  109. package/src/policy/lib/obligations.ts +5 -6
  110. package/src/policy/lib/policy.ts +7 -7
  111. package/src/policy/lib/route-hints.ts +1 -1
  112. package/src/provisioning/index.ts +1 -1
  113. package/src/provisioning/lib/provisioning.ts +4 -4
  114. package/src/resource/lib/resource-ownership-contribution.ts +2 -2
  115. package/src/runner/lib/dispatch.ts +5 -5
  116. package/src/runner/lib/job-token.ts +2 -2
  117. package/src/runner/lib/runner-attestation.ts +2 -2
  118. package/src/runner/lib/runner-job.ts +2 -2
  119. package/src/runner/lib/runner-mode.ts +1 -1
  120. package/src/runner/lib/runner-plane.ts +2 -2
  121. package/src/runner/lib/runner-registration.ts +9 -10
  122. package/src/runner/lib/runner.ts +7 -7
  123. package/src/runner-input-hash/lib/input-hash.ts +2 -2
  124. package/src/service-registry/lib/service-descriptor.ts +1 -1
  125. package/src/service-registry/lib/service-names.generated.ts +1 -3
  126. package/src/space/lib/space-ref-parser.ts +1 -1
  127. package/src/space/lib/space.ts +4 -5
  128. package/src/widget/lib/chat-widget-envelope.ts +1 -1
  129. package/src/worker-runtime/lib/capabilities.ts +1 -1
  130. package/src/workflow/index.ts +2 -3
  131. package/src/workflow/lib/activity-outputs.ts +3 -4
  132. package/src/workflow/lib/agent-role.ts +5 -5
  133. package/src/workflow/lib/artifact-ref.ts +1 -1
  134. package/src/workflow/lib/compiled-run.ts +2 -2
  135. package/src/workflow/lib/compiled-workspace-manifest.ts +2 -2
  136. package/src/workflow/lib/enums.ts +4 -4
  137. package/src/workflow/lib/errors.ts +1 -1
  138. package/src/workflow/lib/model-ref.ts +1 -1
  139. package/src/workflow/lib/mount-plan.ts +1 -1
  140. package/src/workflow/lib/platform-task-queue.ts +3 -3
  141. package/src/workflow/lib/role-capability.ts +1 -1
  142. package/src/workflow/lib/run-progress.ts +2 -2
  143. package/src/workflow/lib/trigger-payload.ts +2 -2
  144. package/src/workflow/lib/variable-requirement.ts +1 -1
  145. package/src/workflow/lib/workspace-manifest-enums.ts +1 -1
  146. package/src/workspace-storage/lib/types.ts +1 -1
@@ -3,7 +3,7 @@
3
3
  //
4
4
  // Closed domains for every workflow/job/step state + policy value.
5
5
  // Every workflow-plane decision point uses one of these enums. Free-form
6
- // strings are forbidden for closed sets (see docs/API_STANDARDS.md §5.3).
6
+ // strings are forbidden for closed sets per the API standards.
7
7
  // ═══════════════════════════════════════════════════════════════════════════
8
8
 
9
9
  /** How a workflow run was initiated. */
@@ -227,8 +227,8 @@ export enum BuiltInActionId {
227
227
  SCM_POST_REVIEW = 'software-dev/scm-post-review',
228
228
  DISPATCH_WORKFLOW = 'xema/dispatch-workflow',
229
229
  /**
230
- * Send an email via AWS Simple Email Service. Shipped by
231
- * `biomes/platform/aws-integration`. Credentials come from the
230
+ * Send an email via AWS Simple Email Service. Shipped by the
231
+ * `aws-integration` biome. Credentials come from the
232
232
  * caller's wallet via `${{ secrets.AWS_SECRET_ACCESS_KEY }}` etc.
233
233
  */
234
234
  AWS_SES_SEND = 'aws-integration/ses-send',
@@ -252,7 +252,7 @@ export enum BuiltInActionId {
252
252
  /**
253
253
  * Trigger an org-database migration via org-database-pool-api and
254
254
  * block until the run reaches a terminal state. Generic primitive
255
- * (Phase G of the org-managed-databases plan) — any sub-app that
255
+ * — any sub-app that
256
256
  * needs to materialize a schema against a pool-managed database
257
257
  * dispatches this action; the caller is responsible for resolving
258
258
  * the `databaseId` and providing a `workspaceDir` containing the
@@ -3,7 +3,7 @@
3
3
  * the engine, compiler, evaluator, or worker picks a code from this enum.
4
4
  *
5
5
  * Enum-based so:
6
- * - OpenAPI emits a stable `code` field (docs/API_STANDARDS §3.5).
6
+ * - OpenAPI emits a stable `code` field per the API standards.
7
7
  * - The retry policy can mark specific codes as non-retryable
8
8
  * deterministically (see CompiledRetryPolicy.nonRetryableErrorTypes).
9
9
  * - Frontend switches are exhaustive.
@@ -30,7 +30,7 @@ import type { PermissionMap } from '../../agent-permission';
30
30
  * consumer (DTOs, Zod schemas, frontend lookups) MUST import from here
31
31
  * (or re-export this enum) instead of restating the literal list.
32
32
  *
33
- * Mirrors `biomes/agent-runtime/api/llm-registry-api`'s Prisma `ModelClass` column.
33
+ * Mirrors llm-registry-api's Prisma `ModelClass` column.
34
34
  *
35
35
  * IMPORTANT — the one allowed copy is in `@xemahq/biome-sdk/builder`'s
36
36
  * `contribution-schemas.ts`, kept inline so the public biome-authoring SDK
@@ -110,7 +110,7 @@ export type MountSource =
110
110
  | { readonly kind: 'deliverable-specs'; readonly contractKey: string }
111
111
  | { readonly kind: 'deliverables'; readonly contractKey: string }
112
112
  | { readonly kind: 'static-literal'; readonly pathWithinWorkspace: string; readonly bytes: string }
113
- // Platform-rendered (PR 1 of unified-workspace-image refactor):
113
+ // Platform-rendered:
114
114
  | {
115
115
  readonly kind: 'agent-kernel';
116
116
  readonly orgId: string;
@@ -1,6 +1,6 @@
1
1
  /**
2
- * Internal-workflow task-queue naming Epic T (Temporal internal-workflow
3
- * platform).
2
+ * Internal-workflow task-queue naming for the Temporal internal-workflow
3
+ * platform.
4
4
  *
5
5
  * Every internal/platform workflow runs in the `xema` namespace
6
6
  * (`PLATFORM_TEMPORAL_NAMESPACE`) on a task queue named for its domain. One
@@ -43,7 +43,7 @@ export enum PlatformWorkflowDomain {
43
43
  /** Biome-installation cleanup cascade. */
44
44
  BIOME_LIFECYCLE = 'biome-lifecycle',
45
45
  /**
46
- * Integration-ingress webhook-outbox forward dispatch (Phase J). One
46
+ * Integration-ingress webhook-outbox forward dispatch. One
47
47
  * workflow per outbox row; Temporal owns retries + DLQ semantics.
48
48
  */
49
49
  INTEGRATION_INGRESS = 'integration-ingress',
@@ -2,7 +2,7 @@
2
2
  // ── RoleCapabilityProfile types + closed-domain enums ──
3
3
  //
4
4
  // The DATA (one profile per `AgentRunRole`) lives in biome contributions
5
- // at `biomes/kernel/runtime/role-capabilities/<role>.role-capability.yaml`.
5
+ // as per-role role-capability definitions.
6
6
  // llm-registry-api's `RoleCapabilityRegistryService` loads + serves them
7
7
  // in-process, exposes them via `GET /role-capabilities/:role`, and writes
8
8
  // the resolved `allowedXemaTools` array into each invocation's
@@ -52,8 +52,8 @@ export enum RunActivityKind {
52
52
  SCHEDULED_DISPATCH = 'scheduled_dispatch',
53
53
  REVIEW = 'review',
54
54
  /**
55
- * Org-database migration dispatched via `xema/run-migrations@v1`
56
- * (Phase G of the org-managed-databases plan). The activity calls
55
+ * Org-database migration dispatched via `xema/run-migrations@v1`.
56
+ * The activity calls
57
57
  * org-database-pool-api to start a migration workflow and polls
58
58
  * the per-database migration listing until the run reaches a
59
59
  * terminal state.
@@ -6,8 +6,8 @@ import { WorkflowTriggerKind } from './enums';
6
6
  * every consumer switches exhaustively; unknown `kind` is a compile error.
7
7
  *
8
8
  * Webhook trigger payloads are the canonical envelopes produced by
9
- * `integration-adapters-api` (see `docs/API_STANDARDS.md §17`), so the
10
- * workflow plane never touches provider-specific shapes.
9
+ * `integration-adapters-api`, so the workflow plane never touches
10
+ * provider-specific shapes.
11
11
  */
12
12
  export type TriggerPayload =
13
13
  | WorkflowDispatchTriggerPayload
@@ -2,7 +2,7 @@
2
2
  * Variable + secret contract a workflow declares it needs.
3
3
  *
4
4
  * Authored in YAML under `requires.variables`. Each entry is the name of an
5
- * org/project Variable (per `biomes/project-registry/api/project-registry-api`) that the workflow
5
+ * org/project Variable (managed by project-registry-api) that the workflow
6
6
  * expects to be present at dispatch time. Names follow the same
7
7
  * `[A-Z][A-Z0-9_]*` convention as `CreateVariableDto.key`.
8
8
  *
@@ -69,7 +69,7 @@ export const CREDENTIAL_KINDS: readonly CredentialKind[] = [
69
69
 
70
70
  /**
71
71
  * Kinds of output surface a workspace can expose. Consumed by
72
- * `biomes/workspace-proxy/api/workspace-proxy/src/output-surface/engine.ts` to wire route lifecycle.
72
+ * workspace-proxy's output-surface engine to wire route lifecycle.
73
73
  *
74
74
  * `none` is the explicit no-output-surface default (omitting `outputSurface`
75
75
  * is equivalent). `web` is a long-running webserver on `port`. `static`
@@ -47,7 +47,7 @@ export interface PoolSpec {
47
47
  */
48
48
  readonly driverConfig: Record<string, unknown>;
49
49
  readonly capacityBytes: bigint;
50
- /** Required for region-aware co-scheduling (see plan §15). */
50
+ /** Required for region-aware co-scheduling. */
51
51
  readonly region: string;
52
52
  readonly environment?: string;
53
53
  /** Free-form cost class label for billing/observability dashboards. */