@xemahq/kernel-contracts 0.22.3 → 0.23.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/agent-workspace/awp-spec.json +0 -1
- package/dist/agent-workspace/lib/workspace-layout.d.ts.map +1 -1
- package/dist/agent-workspace/lib/workspace-layout.js.map +1 -1
- package/dist/biome/lib/biome-manifest.d.ts +0 -8
- package/dist/biome/lib/biome-manifest.d.ts.map +1 -1
- package/dist/biome/lib/biome-manifest.js +4 -50
- package/dist/biome/lib/biome-manifest.js.map +1 -1
- package/dist/capability/lib/errors.d.ts.map +1 -1
- package/dist/capability/lib/errors.js.map +1 -1
- package/dist/capability/lib/meta-tool.d.ts.map +1 -1
- package/dist/capability/lib/meta-tool.js.map +1 -1
- package/dist/connector/lib/connector-descriptor.d.ts.map +1 -1
- package/dist/connector/lib/credential-kind.d.ts.map +1 -1
- package/dist/connector/lib/credential-kind.js.map +1 -1
- package/dist/connector/lib/filter-expr.js +6 -0
- package/dist/connector/lib/filter-expr.js.map +1 -1
- package/dist/contribution/lib/contribution-kind.d.ts.map +1 -1
- package/dist/contribution/lib/contribution-kind.js.map +1 -1
- package/dist/contribution/lib/contribution-source.d.ts.map +1 -1
- package/dist/contribution/lib/contribution-source.js.map +1 -1
- package/dist/contribution/lib/contribution.d.ts.map +1 -1
- package/dist/contribution/lib/contribution.js.map +1 -1
- package/dist/document-render/lib/render-enums.d.ts.map +1 -1
- package/dist/document-render/lib/render-enums.js.map +1 -1
- package/dist/execution-context/lib/execution-context.d.ts.map +1 -1
- package/dist/execution-context/lib/execution-context.js.map +1 -1
- package/dist/execution-environment/lib/built-in-environments.d.ts.map +1 -1
- package/dist/execution-environment/lib/built-in-environments.js.map +1 -1
- package/dist/execution-environment/lib/execution-environment.d.ts.map +1 -1
- package/dist/execution-environment/lib/execution-environment.js +1 -1
- package/dist/execution-environment/lib/execution-environment.js.map +1 -1
- package/dist/inquiry/index.d.ts.map +1 -1
- package/dist/inquiry/index.js.map +1 -1
- package/dist/object/lib/object-lifecycle.d.ts.map +1 -1
- package/dist/object/lib/object-lifecycle.js.map +1 -1
- package/dist/policy/lib/obligations.d.ts.map +1 -1
- package/dist/policy/lib/obligations.js.map +1 -1
- package/dist/runner/lib/runner-registration.d.ts.map +1 -1
- package/dist/runner/lib/runner-registration.js.map +1 -1
- package/dist/service-registry/lib/service-names.generated.d.ts.map +1 -1
- package/dist/service-registry/lib/service-names.generated.js.map +1 -1
- package/dist/space/lib/space.d.ts.map +1 -1
- package/dist/space/lib/space.js.map +1 -1
- package/dist/workflow/index.d.ts.map +1 -1
- package/dist/workflow/index.js.map +1 -1
- package/dist/workflow/lib/activity-outputs.d.ts.map +1 -1
- package/package.json +11 -2
- package/src/agent-composition/lib/agent-workspace-config.ts +3 -3
- package/src/agent-composition/lib/capability-layer.ts +2 -2
- package/src/agent-composition/lib/intrinsic-floor.ts +1 -1
- package/src/agent-session/lib/participant.ts +1 -1
- package/src/agent-workspace/lib/context-json.ts +1 -1
- package/src/agent-workspace/lib/mount-apply.ts +2 -2
- package/src/agent-workspace/lib/workspace-layout.ts +2 -4
- package/src/app-runtime/lib/app-client.ts +1 -1
- package/src/app-runtime/lib/app-lockfile.ts +2 -2
- package/src/app-runtime/lib/app.ts +4 -4
- package/src/app-runtime/lib/audience-policy.ts +2 -2
- package/src/app-runtime/lib/biome-install.ts +3 -3
- package/src/app-runtime/lib/branding-config.ts +1 -1
- package/src/app-runtime/lib/delegated-session.ts +1 -1
- package/src/app-runtime/lib/external-subject.ts +1 -1
- package/src/biome/lib/biome-capability-refs.ts +3 -3
- package/src/biome/lib/biome-engines.ts +2 -2
- package/src/biome/lib/biome-lifecycle-hooks.ts +1 -1
- package/src/biome/lib/biome-lifecycle.ts +3 -3
- package/src/biome/lib/biome-manifest.ts +68 -122
- package/src/biome/lib/biome-permissions.ts +2 -2
- package/src/biome/lib/biome-scope.ts +2 -2
- package/src/biome/lib/biome-trust-tier.ts +1 -1
- package/src/biome/lib/trust-tier-policies.ts +2 -2
- package/src/biome-availability/lib/biome-availability.ts +1 -1
- package/src/capability/lib/capability-contribution.ts +3 -3
- package/src/capability/lib/capability-grant.ts +5 -5
- package/src/capability/lib/capability-policy.ts +2 -2
- package/src/capability/lib/capability-ref.ts +4 -4
- package/src/capability/lib/errors.ts +4 -10
- package/src/capability/lib/meta-tool.ts +2 -5
- package/src/capability/lib/permission-profile.ts +7 -7
- package/src/capability/lib/shell-command-descriptor.ts +3 -3
- package/src/connector/lib/adapter-kind.ts +1 -1
- package/src/connector/lib/capability-refs.ts +1 -1
- package/src/connector/lib/connector-descriptor.ts +4 -3
- package/src/connector/lib/credential-kind.ts +3 -4
- package/src/connector/lib/envelope-schema.ts +2 -2
- package/src/connector/lib/filter-expr-validate.ts +1 -1
- package/src/connector/lib/filter-expr.ts +8 -0
- package/src/contribution/lib/contribution-kind.ts +11 -12
- package/src/contribution/lib/contribution-source.ts +1 -2
- package/src/contribution/lib/contribution.ts +3 -6
- package/src/document-render/lib/render-enums.ts +1 -2
- package/src/execution-context/lib/caller.ts +2 -2
- package/src/execution-context/lib/execution-context.ts +12 -18
- package/src/execution-environment/lib/approval-rule.ts +2 -2
- package/src/execution-environment/lib/built-in-environments.ts +9 -11
- package/src/execution-environment/lib/execution-environment.ts +25 -26
- package/src/inquiry/index.ts +1 -2
- package/src/invocation/lib/invocation-mode.ts +1 -1
- package/src/invocation/lib/invocation-record.ts +1 -1
- package/src/invocation/lib/isolation-level.ts +1 -1
- package/src/kernel-state/lib/adapter-kind.ts +3 -3
- package/src/kernel-state/lib/kernel-state.ts +1 -1
- package/src/kernel-state/lib/key-grammar.ts +1 -1
- package/src/mcp-tool/lib/tool-selection.ts +1 -1
- package/src/object/lib/object-lifecycle.ts +1 -2
- package/src/object/lib/xema-object-kind.ts +1 -1
- package/src/object/lib/xema-object-ref.ts +2 -2
- package/src/org-database/lib/db-result-event.ts +3 -3
- package/src/policy/lib/obligations.ts +5 -6
- package/src/policy/lib/policy.ts +7 -7
- package/src/policy/lib/route-hints.ts +1 -1
- package/src/provisioning/index.ts +1 -1
- package/src/provisioning/lib/provisioning.ts +4 -4
- package/src/resource/lib/resource-ownership-contribution.ts +2 -2
- package/src/runner/lib/dispatch.ts +5 -5
- package/src/runner/lib/job-token.ts +2 -2
- package/src/runner/lib/runner-attestation.ts +2 -2
- package/src/runner/lib/runner-job.ts +2 -2
- package/src/runner/lib/runner-mode.ts +1 -1
- package/src/runner/lib/runner-plane.ts +2 -2
- package/src/runner/lib/runner-registration.ts +9 -10
- package/src/runner/lib/runner.ts +7 -7
- package/src/runner-input-hash/lib/input-hash.ts +2 -2
- package/src/service-registry/lib/service-descriptor.ts +1 -1
- package/src/service-registry/lib/service-names.generated.ts +1 -3
- package/src/space/lib/space-ref-parser.ts +1 -1
- package/src/space/lib/space.ts +4 -5
- package/src/widget/lib/chat-widget-envelope.ts +1 -1
- package/src/worker-runtime/lib/capabilities.ts +1 -1
- package/src/workflow/index.ts +2 -3
- package/src/workflow/lib/activity-outputs.ts +3 -4
- package/src/workflow/lib/agent-role.ts +5 -5
- package/src/workflow/lib/artifact-ref.ts +1 -1
- package/src/workflow/lib/compiled-run.ts +2 -2
- package/src/workflow/lib/compiled-workspace-manifest.ts +2 -2
- package/src/workflow/lib/enums.ts +4 -4
- package/src/workflow/lib/errors.ts +1 -1
- package/src/workflow/lib/model-ref.ts +1 -1
- package/src/workflow/lib/mount-plan.ts +1 -1
- package/src/workflow/lib/platform-task-queue.ts +3 -3
- package/src/workflow/lib/role-capability.ts +1 -1
- package/src/workflow/lib/run-progress.ts +2 -2
- package/src/workflow/lib/trigger-payload.ts +2 -2
- package/src/workflow/lib/variable-requirement.ts +1 -1
- package/src/workflow/lib/workspace-manifest-enums.ts +1 -1
- package/src/workspace-storage/lib/types.ts +1 -1
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
//
|
|
4
4
|
// Closed domains for every workflow/job/step state + policy value.
|
|
5
5
|
// Every workflow-plane decision point uses one of these enums. Free-form
|
|
6
|
-
// strings are forbidden for closed sets
|
|
6
|
+
// strings are forbidden for closed sets per the API standards.
|
|
7
7
|
// ═══════════════════════════════════════════════════════════════════════════
|
|
8
8
|
|
|
9
9
|
/** How a workflow run was initiated. */
|
|
@@ -227,8 +227,8 @@ export enum BuiltInActionId {
|
|
|
227
227
|
SCM_POST_REVIEW = 'software-dev/scm-post-review',
|
|
228
228
|
DISPATCH_WORKFLOW = 'xema/dispatch-workflow',
|
|
229
229
|
/**
|
|
230
|
-
* Send an email via AWS Simple Email Service. Shipped by
|
|
231
|
-
* `
|
|
230
|
+
* Send an email via AWS Simple Email Service. Shipped by the
|
|
231
|
+
* `aws-integration` biome. Credentials come from the
|
|
232
232
|
* caller's wallet via `${{ secrets.AWS_SECRET_ACCESS_KEY }}` etc.
|
|
233
233
|
*/
|
|
234
234
|
AWS_SES_SEND = 'aws-integration/ses-send',
|
|
@@ -252,7 +252,7 @@ export enum BuiltInActionId {
|
|
|
252
252
|
/**
|
|
253
253
|
* Trigger an org-database migration via org-database-pool-api and
|
|
254
254
|
* block until the run reaches a terminal state. Generic primitive
|
|
255
|
-
*
|
|
255
|
+
* — any sub-app that
|
|
256
256
|
* needs to materialize a schema against a pool-managed database
|
|
257
257
|
* dispatches this action; the caller is responsible for resolving
|
|
258
258
|
* the `databaseId` and providing a `workspaceDir` containing the
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
* the engine, compiler, evaluator, or worker picks a code from this enum.
|
|
4
4
|
*
|
|
5
5
|
* Enum-based so:
|
|
6
|
-
* - OpenAPI emits a stable `code` field
|
|
6
|
+
* - OpenAPI emits a stable `code` field per the API standards.
|
|
7
7
|
* - The retry policy can mark specific codes as non-retryable
|
|
8
8
|
* deterministically (see CompiledRetryPolicy.nonRetryableErrorTypes).
|
|
9
9
|
* - Frontend switches are exhaustive.
|
|
@@ -30,7 +30,7 @@ import type { PermissionMap } from '../../agent-permission';
|
|
|
30
30
|
* consumer (DTOs, Zod schemas, frontend lookups) MUST import from here
|
|
31
31
|
* (or re-export this enum) instead of restating the literal list.
|
|
32
32
|
*
|
|
33
|
-
* Mirrors
|
|
33
|
+
* Mirrors llm-registry-api's Prisma `ModelClass` column.
|
|
34
34
|
*
|
|
35
35
|
* IMPORTANT — the one allowed copy is in `@xemahq/biome-sdk/builder`'s
|
|
36
36
|
* `contribution-schemas.ts`, kept inline so the public biome-authoring SDK
|
|
@@ -110,7 +110,7 @@ export type MountSource =
|
|
|
110
110
|
| { readonly kind: 'deliverable-specs'; readonly contractKey: string }
|
|
111
111
|
| { readonly kind: 'deliverables'; readonly contractKey: string }
|
|
112
112
|
| { readonly kind: 'static-literal'; readonly pathWithinWorkspace: string; readonly bytes: string }
|
|
113
|
-
// Platform-rendered
|
|
113
|
+
// Platform-rendered:
|
|
114
114
|
| {
|
|
115
115
|
readonly kind: 'agent-kernel';
|
|
116
116
|
readonly orgId: string;
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
/**
|
|
2
|
-
* Internal-workflow task-queue naming
|
|
3
|
-
* platform
|
|
2
|
+
* Internal-workflow task-queue naming for the Temporal internal-workflow
|
|
3
|
+
* platform.
|
|
4
4
|
*
|
|
5
5
|
* Every internal/platform workflow runs in the `xema` namespace
|
|
6
6
|
* (`PLATFORM_TEMPORAL_NAMESPACE`) on a task queue named for its domain. One
|
|
@@ -43,7 +43,7 @@ export enum PlatformWorkflowDomain {
|
|
|
43
43
|
/** Biome-installation cleanup cascade. */
|
|
44
44
|
BIOME_LIFECYCLE = 'biome-lifecycle',
|
|
45
45
|
/**
|
|
46
|
-
* Integration-ingress webhook-outbox forward dispatch
|
|
46
|
+
* Integration-ingress webhook-outbox forward dispatch. One
|
|
47
47
|
* workflow per outbox row; Temporal owns retries + DLQ semantics.
|
|
48
48
|
*/
|
|
49
49
|
INTEGRATION_INGRESS = 'integration-ingress',
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
// ── RoleCapabilityProfile types + closed-domain enums ──
|
|
3
3
|
//
|
|
4
4
|
// The DATA (one profile per `AgentRunRole`) lives in biome contributions
|
|
5
|
-
//
|
|
5
|
+
// as per-role role-capability definitions.
|
|
6
6
|
// llm-registry-api's `RoleCapabilityRegistryService` loads + serves them
|
|
7
7
|
// in-process, exposes them via `GET /role-capabilities/:role`, and writes
|
|
8
8
|
// the resolved `allowedXemaTools` array into each invocation's
|
|
@@ -52,8 +52,8 @@ export enum RunActivityKind {
|
|
|
52
52
|
SCHEDULED_DISPATCH = 'scheduled_dispatch',
|
|
53
53
|
REVIEW = 'review',
|
|
54
54
|
/**
|
|
55
|
-
* Org-database migration dispatched via `xema/run-migrations@v1
|
|
56
|
-
*
|
|
55
|
+
* Org-database migration dispatched via `xema/run-migrations@v1`.
|
|
56
|
+
* The activity calls
|
|
57
57
|
* org-database-pool-api to start a migration workflow and polls
|
|
58
58
|
* the per-database migration listing until the run reaches a
|
|
59
59
|
* terminal state.
|
|
@@ -6,8 +6,8 @@ import { WorkflowTriggerKind } from './enums';
|
|
|
6
6
|
* every consumer switches exhaustively; unknown `kind` is a compile error.
|
|
7
7
|
*
|
|
8
8
|
* Webhook trigger payloads are the canonical envelopes produced by
|
|
9
|
-
* `integration-adapters-api
|
|
10
|
-
*
|
|
9
|
+
* `integration-adapters-api`, so the workflow plane never touches
|
|
10
|
+
* provider-specific shapes.
|
|
11
11
|
*/
|
|
12
12
|
export type TriggerPayload =
|
|
13
13
|
| WorkflowDispatchTriggerPayload
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
* Variable + secret contract a workflow declares it needs.
|
|
3
3
|
*
|
|
4
4
|
* Authored in YAML under `requires.variables`. Each entry is the name of an
|
|
5
|
-
* org/project Variable (
|
|
5
|
+
* org/project Variable (managed by project-registry-api) that the workflow
|
|
6
6
|
* expects to be present at dispatch time. Names follow the same
|
|
7
7
|
* `[A-Z][A-Z0-9_]*` convention as `CreateVariableDto.key`.
|
|
8
8
|
*
|
|
@@ -69,7 +69,7 @@ export const CREDENTIAL_KINDS: readonly CredentialKind[] = [
|
|
|
69
69
|
|
|
70
70
|
/**
|
|
71
71
|
* Kinds of output surface a workspace can expose. Consumed by
|
|
72
|
-
*
|
|
72
|
+
* workspace-proxy's output-surface engine to wire route lifecycle.
|
|
73
73
|
*
|
|
74
74
|
* `none` is the explicit no-output-surface default (omitting `outputSurface`
|
|
75
75
|
* is equivalent). `web` is a long-running webserver on `port`. `static`
|
|
@@ -47,7 +47,7 @@ export interface PoolSpec {
|
|
|
47
47
|
*/
|
|
48
48
|
readonly driverConfig: Record<string, unknown>;
|
|
49
49
|
readonly capacityBytes: bigint;
|
|
50
|
-
/** Required for region-aware co-scheduling
|
|
50
|
+
/** Required for region-aware co-scheduling. */
|
|
51
51
|
readonly region: string;
|
|
52
52
|
readonly environment?: string;
|
|
53
53
|
/** Free-form cost class label for billing/observability dashboards. */
|