@zcloak/ai-agent 1.0.0

package/dist/utils.js

@@ -0,0 +1,382 @@
+"use strict";
+/**
+ * zCloak.ai Common Utilities
+ *
+ * Provides PoW computation, file hashing, argument parsing, formatted output, and more.
+ * All other scripts depend on this module.
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.computePow = computePow;
+exports.parseArgs = parseArgs;
+exports.parseTags = parseTags;
+exports.hashFile = hashFile;
+exports.getFileSize = getFileSize;
+exports.getMimeType = getMimeType;
+exports.listFiles = listFiles;
+exports.generateManifest = generateManifest;
+exports.parseManifestEntries = parseManifestEntries;
+exports.verifyManifestEntries = verifyManifestEntries;
+exports.formatSignEvent = formatSignEvent;
+exports.formatSignEvents = formatSignEvents;
+exports.buildEventUrl = buildEventUrl;
+exports.formatSignResult = formatSignResult;
+exports.formatOptText = formatOptText;
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const crypto_1 = __importDefault(require("crypto"));
+const config_1 = __importDefault(require("./config"));
+const identity_1 = require("./identity");
+// ========== PoW Computation ==========
+/**
+ * Compute PoW nonce
+ * Finds a nonce such that sha256(base + nonce) starts with a specified number of zeros
+ * @param base - Base string (usually the latest sign event id)
+ * @param zeros - Number of leading zeros, defaults to config.pow_zeros
+ */
+/** Default PoW timeout in milliseconds (5 minutes) — prevents runaway CPU usage */
+const POW_TIMEOUT_MS = 5 * 60 * 1000;
+function computePow(base, zeros) {
+    const effectiveZeros = zeros ?? config_1.default.pow_zeros;
+    const prefix = '0'.repeat(effectiveZeros);
+    const start = Date.now();
+    let nonce = 0;
+    for (;;) {
+        const candidate = base + nonce.toString();
+        const hash = crypto_1.default.createHash('sha256').update(candidate).digest('hex');
+        if (hash.startsWith(prefix)) {
+            const timeMs = Date.now() - start;
+            return { nonce, hash, timeMs };
+        }
+        nonce++;
+        // Check timeout every 10000 iterations to avoid excessive Date.now() calls
+        if (nonce % 10000 === 0) {
+            const elapsed = Date.now() - start;
+            if (elapsed > POW_TIMEOUT_MS) {
+                throw new Error(`PoW computation timed out after ${Math.round(elapsed / 1000)}s ` +
+                    `(${nonce} hashes tried, zeros=${effectiveZeros}). ` +
+                    `Consider reducing the zeros parameter.`);
+            }
+        }
+    }
+}
+// ========== Command Line Arguments ==========
+/**
+ * Parse command line arguments into a structured object.
+ * Supports both --key=value and --flag formats.
+ * Positional arguments (not starting with --) are placed in _args array in order.
+ *
+ * When called with an explicit argv array, uses that instead of process.argv.
+ * The first two elements (node path and script path) are always skipped,
+ * matching the process.argv convention.
+ *
+ * @param argv - Optional explicit argument array (defaults to process.argv)
+ */
+function parseArgs(argv) {
+    const result = { _args: [] };
+    // Skip node and script path (first 2 elements)
+    const effectiveArgv = (argv ?? process.argv).slice(2);
+    for (const arg of effectiveArgv) {
+        if (arg.startsWith('--')) {
+            const eqIdx = arg.indexOf('=');
+            if (eqIdx > 0) {
+                result[arg.slice(2, eqIdx)] = arg.slice(eqIdx + 1);
+            }
+            else {
+                result[arg.slice(2)] = true;
+            }
+        }
+        else {
+            result._args.push(arg);
+        }
+    }
+    return result;
+}
+/**
+ * Parse --tags argument into a tag array
+ * Format: "t:crypto,sub:web3,m:alice_id"
+ */
+function parseTags(tagsStr) {
+    if (!tagsStr || typeof tagsStr !== 'string')
+        return [];
+    return tagsStr.split(',').map(pair => {
+        const parts = pair.split(':');
+        if (parts.length < 2) {
+            throw new Error(`Invalid tag format: "${pair}", expected key:value`);
+        }
+        return [parts[0], parts.slice(1).join(':')];
+    });
+}
+// ========== File Hash & MIME ==========
+/**
+ * Compute SHA256 hash of a file (pure Node.js implementation, no shell dependency)
+ * @param filePath - File path
+ * @returns 64-character hex hash value
+ * @throws {Error} If the file cannot be read
+ */
+function hashFile(filePath) {
+    try {
+        const content = fs_1.default.readFileSync(filePath);
+        return crypto_1.default.createHash('sha256').update(content).digest('hex');
+    }
+    catch (err) {
+        throw new Error(`Failed to compute file hash: ${filePath}: ${err instanceof Error ? err.message : String(err)}`);
+    }
+}
+/**
+ * Get file size (bytes)
+ * @throws {Error} If the file cannot be stat'd
+ */
+function getFileSize(filePath) {
+    try {
+        return fs_1.default.statSync(filePath).size;
+    }
+    catch (err) {
+        throw new Error(`Failed to get file size: ${filePath}: ${err instanceof Error ? err.message : String(err)}`);
+    }
+}
+/**
+ * Common MIME type mapping table
+ * Returns the corresponding MIME type based on file extension
+ */
+const MIME_MAP = {
+    '.pdf': 'application/pdf',
+    '.png': 'image/png',
+    '.jpg': 'image/jpeg',
+    '.jpeg': 'image/jpeg',
+    '.gif': 'image/gif',
+    '.webp': 'image/webp',
+    '.svg': 'image/svg+xml',
+    '.md': 'text/markdown',
+    '.txt': 'text/plain',
+    '.json': 'application/json',
+    '.js': 'text/javascript',
+    '.ts': 'text/typescript',
+    '.html': 'text/html',
+    '.css': 'text/css',
+    '.py': 'text/x-python',
+    '.rs': 'text/x-rust',
+    '.wasm': 'application/wasm',
+};
+/**
+ * Return MIME type based on file path
+ */
+function getMimeType(filePath) {
+    const ext = path_1.default.extname(filePath).toLowerCase();
+    return MIME_MAP[ext] || 'application/octet-stream';
+}
+// ========== MANIFEST Generation ==========
+/**
+ * Recursively list all files in a directory (excluding MANIFEST.sha256, .git, node_modules)
+ * @param dir - Directory path
+ * @param prefix - Path prefix (for recursion)
+ * @returns Sorted list of relative paths
+ */
+function listFiles(dir, prefix) {
+    const effectivePrefix = prefix || '';
+    const results = [];
+    const entries = fs_1.default.readdirSync(dir, { withFileTypes: true });
+    for (const entry of entries) {
+        const relativePath = effectivePrefix ? `${effectivePrefix}/${entry.name}` : entry.name;
+        // Exclude MANIFEST.sha256, .git, and node_modules
+        if (entry.name === 'MANIFEST.sha256')
+            continue;
+        if (entry.name === '.git')
+            continue;
+        if (entry.name === 'node_modules')
+            continue;
+        if (entry.isDirectory()) {
+            results.push(...listFiles(path_1.default.join(dir, entry.name), relativePath));
+        }
+        else if (entry.isFile()) {
+            results.push(relativePath);
+        }
+    }
+    return results.sort();
+}
+/**
+ * Generate MANIFEST.sha256 file (with metadata header)
+ * Format compatible with GNU sha256sum, metadata represented as # comment lines
+ *
+ * This version uses pure Node.js implementation, no shell command dependency.
+ * The author field is obtained via identity.ts; left empty if identity cannot be loaded.
+ */
+function generateManifest(folderPath, options) {
+    const version = options?.version || '1.0.0';
+    const manifestPath = path_1.default.join(folderPath, 'MANIFEST.sha256');
+    // Get author (current principal, if a PEM file is available).
+    // Identity is optional for MANIFEST generation — leave author empty if unavailable.
+    let author = '';
+    try {
+        const pemPath = (0, identity_1.getPemPath)();
+        author = (0, identity_1.loadIdentityFromPath)(pemPath).getPrincipal().toText();
+    }
+    catch {
+        // No identity configured or PEM parse failed — leave author field empty
+    }
+    // Build metadata header
+    const folderName = path_1.default.basename(path_1.default.resolve(folderPath));
+    const dateStr = new Date().toISOString().replace(/\.\d{3}Z$/, 'Z');
+    const header = [
+        `# skill: ${folderName}`,
+        `# date: ${dateStr}`,
+        `# version: ${version}`,
+        `# author: ${author}`,
+    ].join('\n');
+    // Recursively get all files and compute hashes
+    const files = listFiles(folderPath);
+    const hashLines = files.map(relativePath => {
+        const fullPath = path_1.default.join(folderPath, relativePath);
+        const hash = hashFile(fullPath);
+        // Compatible with sha256sum output format: <hash>  ./<relative_path>
+        return `${hash}  ./${relativePath}`;
+    });
+    // Write MANIFEST.sha256
+    const content = header + '\n' + hashLines.join('\n') + '\n';
+    fs_1.default.writeFileSync(manifestPath, content, 'utf-8');
+    // Compute MANIFEST's own hash and size
+    const manifestHash = hashFile(manifestPath);
+    const manifestSize = getFileSize(manifestPath);
+    return { manifestPath, manifestHash, manifestSize, fileCount: files.length };
+}
+// ========== MANIFEST Parsing & Verification ==========
+/**
+ * Parse MANIFEST.sha256 file content into structured entries.
+ *
+ * Skips comment lines (starting with #) and empty lines.
+ * Each valid line must match: <64-hex-hash> <whitespace> <path>
+ * Non-empty non-comment lines that don't match this format cause an error
+ * (strict mode — prevents silently ignoring corrupted MANIFEST content).
+ *
+ * @param manifestContent - Full text content of the MANIFEST.sha256 file
+ * @returns Array of parsed ManifestEntry objects
+ * @throws {Error} If a non-empty non-comment line has invalid format
+ */
+function parseManifestEntries(manifestContent) {
+    const entries = [];
+    for (const rawLine of manifestContent.split('\n')) {
+        // Trim trailing \r for Windows CRLF compatibility
+        const line = rawLine.trimEnd();
+        // Skip empty lines and comment lines
+        if (!line || line.startsWith('#'))
+            continue;
+        // Parse format: <hash>  ./<relative_path> or <hash>  <relative_path>
+        const match = line.match(/^([a-f0-9]{64})\s+(.+)$/);
+        if (!match) {
+            throw new Error(`Invalid MANIFEST line: "${line}"`);
+        }
+        entries.push({
+            expectedHash: match[1],
+            relativePath: match[2].replace(/^\.\//, ''), // Remove leading ./
+        });
+    }
+    return entries;
+}
+/**
+ * Verify file integrity against MANIFEST entries.
+ *
+ * Parses the MANIFEST content, then checks each listed file:
+ * - If the file does not exist → { passed: false, reason: 'not_found' }
+ * - If the file hash doesn't match → { passed: false, reason: 'hash_mismatch' }
+ * - If the hash matches → { passed: true }
+ *
+ * Returns structured results; the caller decides how to format output.
+ *
+ * @param manifestContent - MANIFEST.sha256 file content
+ * @param basePath - Absolute path of the folder containing the files
+ * @returns Array of verification results, one per file entry
+ * @throws {Error} If the MANIFEST format is invalid
+ */
+function verifyManifestEntries(manifestContent, basePath) {
+    const entries = parseManifestEntries(manifestContent);
+    const results = [];
+    for (const entry of entries) {
+        const fullPath = path_1.default.join(basePath, entry.relativePath);
+        if (!fs_1.default.existsSync(fullPath)) {
+            results.push({ relativePath: entry.relativePath, passed: false, reason: 'not_found' });
+            continue;
+        }
+        const actualHash = hashFile(fullPath);
+        results.push({
+            relativePath: entry.relativePath,
+            passed: actualHash === entry.expectedHash,
+            reason: actualHash === entry.expectedHash ? undefined : 'hash_mismatch',
+        });
+    }
+    return results;
+}
+// ========== Output Formatting ==========
+/**
+ * Format a SignEvent object into readable text
+ * Candid opt types are represented as [] | [value] in JS
+ */
+function formatSignEvent(event) {
+    const lines = [];
+    lines.push(`  id = "${event.id}"`);
+    lines.push(`  kind = ${event.kind}`);
+    lines.push(`  ai_id = "${event.ai_id}"`);
+    lines.push(`  created_at = ${event.created_at}`);
+    lines.push(`  content_hash = "${event.content_hash}"`);
+    // Handle opt counter — [] means null, [n] means has value
+    if (event.counter && event.counter.length > 0) {
+        lines.push(`  counter = ${event.counter[0]}`);
+    }
+    // Handle opt content
+    if (event.content && event.content.length > 0) {
+        lines.push(`  content = "${event.content[0]}"`);
+    }
+    // Handle opt tags
+    if (event.tags && event.tags.length > 0) {
+        const tagsStr = event.tags[0]
+            .map(t => `[${t.map(s => `"${s}"`).join(', ')}]`)
+            .join(', ');
+        lines.push(`  tags = [${tagsStr}]`);
+    }
+    return `record {\n${lines.join('\n')}\n}`;
+}
+/**
+ * Format a SignEvent array
+ */
+function formatSignEvents(events) {
+    if (!events || events.length === 0) {
+        return '(vec {})';
+    }
+    return `(vec {\n${events.map(e => formatSignEvent(e)).join(';\n')}\n})`;
+}
+/**
+ * Build a full event view URL from an event ID.
+ * Uses the configured event_url prefix from config.
+ * @param eventId - The unique event ID (sha256 hash)
+ * @returns Full URL to view the event on the website
+ */
+function buildEventUrl(eventId) {
+    return `${config_1.default.event_url}${eventId}`;
+}
+/**
+ * Format agent_sign return value (Ok/Err variant).
+ * On success, appends a "View:" line with the event URL so the agent
+ * can present a clickable link to the user.
+ */
+function formatSignResult(result) {
+    if ('Ok' in result) {
+        const formatted = `(variant { Ok = ${formatSignEvent(result.Ok)} })`;
+        const url = buildEventUrl(result.Ok.id);
+        return `${formatted}\n\nView: ${url}`;
+    }
+    if ('Err' in result) {
+        return `(variant { Err = "${result.Err}" })`;
+    }
+    return JSON.stringify(result, null, 2);
+}
+/**
+ * Format opt text type
+ */
+function formatOptText(optText) {
+    if (optText && optText.length > 0) {
+        return `(opt "${optText[0]}")`;
+    }
+    return '(null)';
+}
+//# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;AAqBH,gCA2BC;AAeD,8BAkBC;AAMD,8BASC;AAUD,4BASC;AAMD,kCAQC;AA6BD,kCAGC;AAUD,8BAqBC;AASD,4CA0CC;AAgBD,oDAsBC;AAiBD,sDAwBC;AAQD,0CA2BC;AAKD,4CAKC;AAQD,sCAEC;AAOD,4CAUC;AAKD,sCAKC;AAlZD,4CAAoB;AACpB,gDAAwB;AACxB,oDAA4B;AAC5B,sDAA8B;AAC9B,yCAA8D;AAI9D,wCAAwC;AAExC;;;;;GAKG;AACH,mFAAmF;AACnF,MAAM,cAAc,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AAErC,SAAgB,UAAU,CAAC,IAAY,EAAE,KAAc;IACrD,MAAM,cAAc,GAAG,KAAK,IAAI,gBAAM,CAAC,SAAS,CAAC;IACjD,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IAC1C,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACzB,IAAI,KAAK,GAAG,CAAC,CAAC;IAEd,SAAS,CAAC;QACR,MAAM,SAAS,GAAG,IAAI,GAAG,KAAK,CAAC,QAAQ,EAAE,CAAC;QAC1C,MAAM,IAAI,GAAG,gBAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACzE,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YAC5B,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC;YAClC,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;QACjC,CAAC;QACD,KAAK,EAAE,CAAC;QAER,2EAA2E;QAC3E,IAAI,KAAK,GAAG,KAAK,KAAK,CAAC,EAAE,CAAC;YACxB,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC;YACnC,IAAI,OAAO,GAAG,cAAc,EAAE,CAAC;gBAC7B,MAAM,IAAI,KAAK,CACb,mCAAmC,IAAI,CAAC,KAAK,CAAC,OAAO,GAAG,IAAI,CAAC,IAAI;oBACjE,IAAI,KAAK,wBAAwB,cAAc,KAAK;oBACpD,wCAAwC,CACzC,CAAC;YACJ,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC;AAED,+CAA+C;AAE/C;;;;;;;;;;GAUG;AACH,SAAgB,SAAS,CAAC,IAAe;IACvC,MAAM,MAAM,GAAe,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC;IACzC,+CAA+C;IAC/C,MAAM,aAAa,GAAG,CAAC,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAEtD,KAAK,MAAM,GAAG,IAAI,aAAa,EAAE,CAAC;QAChC,IAAI,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACzB,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;YAC/B,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;gBACd,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,GAAG,GAAG,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;YACrD,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;YAC9B,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACzB,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;GAGG;AACH,SAAgB,SAAS,CAAC,OAAgD;IACxE,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ;QAAE,OAAO,EAAE,CAAC;IACvD,OAAO,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE;QACnC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC9B,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,wBAAwB,IAAI,uBAAuB,CAAC,CAAC;QACvE,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,CAAC,CAAE,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;AACL,CAAC;AAED,yCAAyC;AAEzC;;;;;GAKG;AACH,SAAgB,QAAQ,CAAC,QAAgB;IACvC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,YAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;QAC1C,OAAO,gBAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACnE,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CACb,gCAAgC,QAAQ,KAAK,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAChG,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAgB,WAAW,CAAC,QAAgB;IAC1C,IAAI,CAAC;QACH,OAAO,YAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC;IACpC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CACb,4BAA4B,QAAQ,KAAK,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC5F,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,QAAQ,GAA2B;IACvC,MAAM,EAAE,iBAAiB;IACzB,MAAM,EAAE,WAAW;IACnB,MAAM,EAAE,YAAY;IACpB,OAAO,EAAE,YAAY;IACrB,MAAM,EAAE,WAAW;IACnB,OAAO,EAAE,YAAY;IACrB,MAAM,EAAE,eAAe;IACvB,KAAK,EAAE,eAAe;IACtB,MAAM,EAAE,YAAY;IACpB,OAAO,EAAE,kBAAkB;IAC3B,KAAK,EAAE,iBAAiB;IACxB,KAAK,EAAE,iBAAiB;IACxB,OAAO,EAAE,WAAW;IACpB,MAAM,EAAE,UAAU;IAClB,KAAK,EAAE,eAAe;IACtB,KAAK,EAAE,aAAa;IACpB,OAAO,EAAE,kBAAkB;CAC5B,CAAC;AAEF;;GAEG;AACH,SAAgB,WAAW,CAAC,QAAgB;IAC1C,MAAM,GAAG,GAAG,cAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;IACjD,OAAO,QAAQ,CAAC,GAAG,CAAC,IAAI,0BAA0B,CAAC;AACrD,CAAC;AAED,4CAA4C;AAE5C;;;;;GAKG;AACH,SAAgB,SAAS,CAAC,GAAW,EAAE,MAAe;IACpD,MAAM,eAAe,GAAG,MAAM,IAAI,EAAE,CAAC;IACrC,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,OAAO,GAAG,YAAE,CAAC,WAAW,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;IAE7D,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,MAAM,YAAY,GAAG,eAAe,CAAC,CAAC,CAAC,GAAG,eAAe,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC;QAEvF,kDAAkD;QAClD,IAAI,KAAK,CAAC,IAAI,KAAK,iBAAiB;YAAE,SAAS;QAC/C,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM;YAAE,SAAS;QACpC,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc;YAAE,SAAS;QAE5C,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;YACxB,OAAO,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,cAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,EAAE,YAAY,CAAC,CAAC,CAAC;QACvE,CAAC;aAAM,IAAI,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;YAC1B,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC7B,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC,IAAI,EAAE,CAAC;AACxB,CAAC;AAED;;;;;;GAMG;AACH,SAAgB,gBAAgB,CAAC,UAAkB,EAAE,OAAyB;IAC5E,MAAM,OAAO,GAAG,OAAO,EAAE,OAAO,IAAI,OAAO,CAAC;IAC5C,MAAM,YAAY,GAAG,cAAI,CAAC,IAAI,CAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;IAE9D,8DAA8D;IAC9D,oFAAoF;IACpF,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,IAAA,qBAAU,GAAE,CAAC;QAC7B,MAAM,GAAG,IAAA,+BAAoB,EAAC,OAAO,CAAC,CAAC,YAAY,EAAE,CAAC,MAAM,EAAE,CAAC;IACjE,CAAC;IAAC,MAAM,CAAC;QACP,wEAAwE;IAC1E,CAAC;IAED,wBAAwB;IACxB,MAAM,UAAU,GAAG,cAAI,CAAC,QAAQ,CAAC,cAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC;IAC3D,MAAM,OAAO,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IACnE,MAAM,MAAM,GAAG;QACb,YAAY,UAAU,EAAE;QACxB,WAAW,OAAO,EAAE;QACpB,cAAc,OAAO,EAAE;QACvB,aAAa,MAAM,EAAE;KACtB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAEb,+CAA+C;IAC/C,MAAM,KAAK,GAAG,SAAS,CAAC,UAAU,CAAC,CAAC;IACpC,MAAM,SAAS,GAAG,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE;QACzC,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC;QACrD,MAAM,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAChC,qEAAqE;QACrE,OAAO,GAAG,IAAI,OAAO,YAAY,EAAE,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,wBAAwB;IACxB,MAAM,OAAO,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IAC5D,YAAE,CAAC,aAAa,CAAC,YAAY,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;IAEjD,uCAAuC;IACvC,MAAM,YAAY,GAAG,QAAQ,CAAC,YAAY,CAAC,CAAC;IAC5C,MAAM,YAAY,GAAG,WAAW,CAAC,YAAY,CAAC,CAAC;IAE/C,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,SAAS,EAAE,KAAK,CAAC,MAAM,EAAE,CAAC;AAC/E,CAAC;AAED,wDAAwD;AAExD;;;;;;;;;;;GAWG;AACH,SAAgB,oBAAoB,CAAC,eAAuB;IAC1D,MAAM,OAAO,GAAoB,EAAE,CAAC;IAEpC,KAAK,MAAM,OAAO,IAAI,eAAe,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QAClD,kDAAkD;QAClD,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;QAC/B,qCAAqC;QACrC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAE5C,qEAAqE;QACrE,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;QACpD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,2BAA2B,IAAI,GAAG,CAAC,CAAC;QACtD,CAAC;QAED,OAAO,CAAC,IAAI,CAAC;YACX,YAAY,EAAE,KAAK,CAAC,CAAC,CAAE;YACvB,YAAY,EAAE,KAAK,CAAC,CAAC,CAAE,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,EAAE,oBAAoB;SACnE,CAAC,CAAC;IACL,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,SAAgB,qBAAqB,CACnC,eAAuB,EACvB,QAAgB;IAEhB,MAAM,OAAO,GAAG,oBAAoB,CAAC,eAAe,CAAC,CAAC;IACtD,MAAM,OAAO,GAA2B,EAAE,CAAC;IAE3C,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,MAAM,QAAQ,GAAG,cAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,CAAC,YAAY,CAAC,CAAC;QAEzD,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC7B,OAAO,CAAC,IAAI,CAAC,EAAE,YAAY,EAAE,KAAK,CAAC,YAAY,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC,CAAC;YACvF,SAAS;QACX,CAAC;QAED,MAAM,UAAU,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;QACtC,OAAO,CAAC,IAAI,CAAC;YACX,YAAY,EAAE,KAAK,CAAC,YAAY;YAChC,MAAM,EAAE,UAAU,KAAK,KAAK,CAAC,YAAY;YACzC,MAAM,EAAE,UAAU,KAAK,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,eAAe;SACxE,CAAC,CAAC;IACL,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,0CAA0C;AAE1C;;;GAGG;AACH,SAAgB,eAAe,CAAC,KAAgB;IAC9C,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,CAAC,IAAI,CAAC,WAAW,KAAK,CAAC,EAAE,GAAG,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,YAAY,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;IACrC,KAAK,CAAC,IAAI,CAAC,cAAc,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC;IACzC,KAAK,CAAC,IAAI,CAAC,kBAAkB,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC,qBAAqB,KAAK,CAAC,YAAY,GAAG,CAAC,CAAC;IAEvD,0DAA0D;IAC1D,IAAI,KAAK,CAAC,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,eAAe,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;IAChD,CAAC;IAED,qBAAqB;IACrB,IAAI,KAAK,CAAC,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,gBAAgB,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IAClD,CAAC;IAED,kBAAkB;IAClB,IAAI,KAAK,CAAC,IAAI,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAE;aAC3B,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;aAChD,IAAI,CAAC,IAAI,CAAC,CAAC;QACd,KAAK,CAAC,IAAI,CAAC,aAAa,OAAO,GAAG,CAAC,CAAC;IACtC,CAAC;IAED,OAAO,aAAa,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC;AAC5C,CAAC;AAED;;GAEG;AACH,SAAgB,gBAAgB,CAAC,MAAmB;IAClD,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACnC,OAAO,UAAU,CAAC;IACpB,CAAC;IACD,OAAO,WAAW,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;AAC1E,CAAC;AAED;;;;;GAKG;AACH,SAAgB,aAAa,CAAC,OAAe;IAC3C,OAAO,GAAG,gBAAM,CAAC,SAAS,GAAG,OAAO,EAAE,CAAC;AACzC,CAAC;AAED;;;;GAIG;AACH,SAAgB,gBAAgB,CAAC,MAAkB;IACjD,IAAI,IAAI,IAAI,MAAM,EAAE,CAAC;QACnB,MAAM,SAAS,GAAG,mBAAmB,eAAe,CAAC,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC;QACrE,MAAM,GAAG,GAAG,aAAa,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC;QACxC,OAAO,GAAG,SAAS,aAAa,GAAG,EAAE,CAAC;IACxC,CAAC;IACD,IAAI,KAAK,IAAI,MAAM,EAAE,CAAC;QACpB,OAAO,qBAAqB,MAAM,CAAC,GAAG,MAAM,CAAC;IAC/C,CAAC;IACD,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;AACzC,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,OAAsB;IAClD,IAAI,OAAO,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAClC,OAAO,SAAS,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC;IACjC,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/verify.d.ts

@@ -0,0 +1,23 @@
+#!/usr/bin/env node
+/**
+ * zCloak.ai Verification Tool
+ *
+ * Provides message verification, file verification, folder verification, and more.
+ * Automatically resolves signer agent name and outputs profile URL during verification.
+ * Uses @dfinity JS SDK to interact directly with ICP canister, no dfx required.
+ *
+ * Usage:
+ *   zcloak-ai verify message <content>            Verify message content
+ *   zcloak-ai verify file <file_path>             Verify single file signature
+ *   zcloak-ai verify folder <folder_path>         Verify folder signature (MANIFEST.sha256)
+ *   zcloak-ai verify profile <principal>          Query Kind 1 identity profile
+ *
+ * All commands support --identity=<pem_path> to specify identity file.
+ */
+import { Session } from './session';
+/**
+ * Entry point when invoked via cli.ts.
+ * Receives a Session instance with pre-parsed arguments.
+ */
+export declare function run(session: Session): Promise<void>;
+//# sourceMappingURL=verify.d.ts.map

package/dist/verify.js

@@ -0,0 +1,207 @@
+#!/usr/bin/env node
+"use strict";
+/**
+ * zCloak.ai Verification Tool
+ *
+ * Provides message verification, file verification, folder verification, and more.
+ * Automatically resolves signer agent name and outputs profile URL during verification.
+ * Uses @dfinity JS SDK to interact directly with ICP canister, no dfx required.
+ *
+ * Usage:
+ *   zcloak-ai verify message <content>            Verify message content
+ *   zcloak-ai verify file <file_path>             Verify single file signature
+ *   zcloak-ai verify folder <folder_path>         Verify folder signature (MANIFEST.sha256)
+ *   zcloak-ai verify profile <principal>          Query Kind 1 identity profile
+ *
+ * All commands support --identity=<pem_path> to specify identity file.
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.run = run;
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const utils_1 = require("./utils");
+// ========== Help Information ==========
+function showHelp() {
+    console.log('zCloak.ai Verification Tool');
+    console.log('');
+    console.log('Usage:');
+    console.log('  zcloak-ai verify message <content>        Verify message content');
+    console.log('  zcloak-ai verify file <file_path>         Verify single file signature');
+    console.log('  zcloak-ai verify folder <folder_path>     Verify folder signature (MANIFEST.sha256)');
+    console.log('  zcloak-ai verify profile <principal>      Query Kind 1 identity profile');
+    console.log('');
+    console.log('');
+    console.log('Examples:');
+    console.log('  zcloak-ai verify message "hello"');
+    console.log('  zcloak-ai verify file ./report.pdf');
+    console.log('  zcloak-ai verify folder ./my-skill/');
+}
+/**
+ * Extract ai_id list from verification results and resolve agent names
+ * Output signer information and profile URL
+ */
+async function resolveSigners(session, events) {
+    const profileBase = session.getProfileUrl();
+    // Extract all unique ai_ids
+    const aiIds = new Set();
+    for (const event of events) {
+        if (event.ai_id) {
+            aiIds.add(event.ai_id);
+        }
+    }
+    if (aiIds.size === 0) {
+        console.log('\nNo signer information found.');
+        return;
+    }
+    const actor = await session.getAnonymousRegistryActor();
+    console.log('\n--- Signer Information ---');
+    for (const aiId of aiIds) {
+        console.log(`\nAgent Principal: ${aiId}`);
+        // Query agent name
+        try {
+            const nameResult = await actor.get_username_by_principal(aiId);
+            if (nameResult && nameResult.length > 0) {
+                const username = nameResult[0];
+                console.log(`Agent Name: ${username}`);
+                console.log(`Profile URL: ${profileBase}${encodeURIComponent(username)}`);
+            }
+            else {
+                console.log('Agent Name: (not registered)');
+            }
+        }
+        catch {
+            console.log('Agent Name: (query failed)');
+        }
+    }
+}
+// ========== Command Implementations ==========
+/** Verify message content */
+async function cmdVerifyMessage(session, content) {
+    if (!content) {
+        console.error('Error: message content is required');
+        process.exit(1);
+    }
+    const actor = await session.getAnonymousSignActor();
+    const events = await actor.verify_message(content);
+    console.log((0, utils_1.formatSignEvents)(events));
+    await resolveSigners(session, events);
+}
+/** Verify single file signature */
+async function cmdVerifyFile(session, filePath) {
+    if (!filePath) {
+        console.error('Error: file path is required');
+        process.exit(1);
+    }
+    if (!fs_1.default.existsSync(filePath)) {
+        console.error(`Error: file does not exist: ${filePath}`);
+        process.exit(1);
+    }
+    // Compute file hash
+    const fileHash = (0, utils_1.hashFile)(filePath);
+    console.log(`File: ${path_1.default.basename(filePath)}`);
+    console.log(`SHA256: ${fileHash}`);
+    console.log('');
+    // On-chain verification
+    const actor = await session.getAnonymousSignActor();
+    const events = await actor.verify_file_hash(fileHash);
+    console.log((0, utils_1.formatSignEvents)(events));
+    await resolveSigners(session, events);
+}
+/** Verify folder signature (MANIFEST.sha256) */
+async function cmdVerifyFolder(session, folderPath) {
+    if (!folderPath) {
+        console.error('Error: folder path is required');
+        process.exit(1);
+    }
+    if (!fs_1.default.existsSync(folderPath) || !fs_1.default.statSync(folderPath).isDirectory()) {
+        console.error(`Error: directory does not exist: ${folderPath}`);
+        process.exit(1);
+    }
+    const manifestPath = path_1.default.join(folderPath, 'MANIFEST.sha256');
+    if (!fs_1.default.existsSync(manifestPath)) {
+        console.error(`Error: MANIFEST.sha256 not found: ${manifestPath}`);
+        process.exit(1);
+    }
+    // Step 1: Local file integrity verification using shared MANIFEST parser
+    console.log('=== Step 1: Local File Integrity Verification ===');
+    const manifestContent = fs_1.default.readFileSync(manifestPath, 'utf-8');
+    const results = (0, utils_1.verifyManifestEntries)(manifestContent, folderPath);
+    let allPassed = true;
+    for (const r of results) {
+        if (r.passed) {
+            console.log(`OK: ${r.relativePath}`);
+        }
+        else {
+            const suffix = r.reason === 'not_found' ? ' (file not found)' : '';
+            console.log(`FAILED: ${r.relativePath}${suffix}`);
+            allPassed = false;
+        }
+    }
+    if (!allPassed) {
+        console.error('\nLocal verification failed! Some files may have been modified.');
+        process.exit(1);
+    }
+    console.log('\nLocal verification passed!');
+    // Step 2: Compute MANIFEST hash and verify on-chain
+    console.log('\n=== Step 2: On-chain Signature Verification ===');
+    const manifestHash = (0, utils_1.hashFile)(manifestPath);
+    console.log(`MANIFEST SHA256: ${manifestHash}`);
+    const actor = await session.getAnonymousSignActor();
+    const events = await actor.verify_file_hash(manifestHash);
+    console.log((0, utils_1.formatSignEvents)(events));
+    await resolveSigners(session, events);
+}
+/** Query Kind 1 identity profile */
+async function cmdVerifyProfile(session, principal) {
+    if (!principal) {
+        console.error('Error: principal ID is required');
+        process.exit(1);
+    }
+    const actor = await session.getAnonymousSignActor();
+    const result = await actor.get_kind1_event_by_principal(principal);
+    // opt SignEvent → formatted output
+    if (result && result.length > 0) {
+        console.log(`(opt ${(0, utils_1.formatSignEvent)(result[0])})`);
+    }
+    else {
+        console.log('(null)');
+    }
+}
+// ========== Exported run() — called by cli.ts ==========
+/**
+ * Entry point when invoked via cli.ts.
+ * Receives a Session instance with pre-parsed arguments.
+ */
+async function run(session) {
+    const command = session.args._args[0];
+    try {
+        switch (command) {
+            case 'message':
+                await cmdVerifyMessage(session, session.args._args[1]);
+                break;
+            case 'file':
+                await cmdVerifyFile(session, session.args._args[1]);
+                break;
+            case 'folder':
+                await cmdVerifyFolder(session, session.args._args[1]);
+                break;
+            case 'profile':
+                await cmdVerifyProfile(session, session.args._args[1]);
+                break;
+            default:
+                showHelp();
+                if (command) {
+                    console.error(`\nUnknown command: ${command}`);
+                }
+                process.exit(1);
+        }
+    }
+    catch (err) {
+        console.error(`Operation failed: ${err instanceof Error ? err.message : String(err)}`);
+        process.exit(1);
+    }
+}
+//# sourceMappingURL=verify.js.map

package/dist/verify.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify.js","sourceRoot":"","sources":["../src/verify.ts"],"names":[],"mappings":";;AACA;;;;;;;;;;;;;;GAcG;;;;;AA+LH,kBA4BC;AAzND,4CAAoB;AACpB,gDAAwB;AACxB,mCAKiB;AAIjB,yCAAyC;AACzC,SAAS,QAAQ;IACf,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAC3C,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACtB,OAAO,CAAC,GAAG,CAAC,oEAAoE,CAAC,CAAC;IAClF,OAAO,CAAC,GAAG,CAAC,0EAA0E,CAAC,CAAC;IACxF,OAAO,CAAC,GAAG,CAAC,uFAAuF,CAAC,CAAC;IACrG,OAAO,CAAC,GAAG,CAAC,2EAA2E,CAAC,CAAC;IACzF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACzB,OAAO,CAAC,GAAG,CAAC,oCAAoC,CAAC,CAAC;IAClD,OAAO,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAC;IACpD,OAAO,CAAC,GAAG,CAAC,uCAAuC,CAAC,CAAC;AACvD,CAAC;AAED;;;GAGG;AACH,KAAK,UAAU,cAAc,CAAC,OAAgB,EAAE,MAAmB;IACjE,MAAM,WAAW,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC;IAE5C,4BAA4B;IAC5B,MAAM,KAAK,GAAG,IAAI,GAAG,EAAU,CAAC;IAChC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QACzB,CAAC;IACH,CAAC;IAED,IAAI,KAAK,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC;QACrB,OAAO,CAAC,GAAG,CAAC,gCAAgC,CAAC,CAAC;QAC9C,OAAO;IACT,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,yBAAyB,EAAE,CAAC;IAExD,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;IAC5C,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC;QAE1C,mBAAmB;QACnB,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,MAAM,KAAK,CAAC,yBAAyB,CAAC,IAAI,CAAC,CAAC;YAE/D,IAAI,UAAU,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACxC,MAAM,QAAQ,GAAG,UAAU,CAAC,CAAC,CAAE,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,eAAe,QAAQ,EAAE,CAAC,CAAC;gBACvC,OAAO,CAAC,GAAG,CAAC,gBAAgB,WAAW,GAAG,kBAAkB,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;YAC5E,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;YAC9C,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;AACH,CAAC;AAED,gDAAgD;AAEhD,6BAA6B;AAC7B,KAAK,UAAU,gBAAgB,CAAC,OAAgB,EAAE,OAA2B;IAC3E,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,oCAAoC,CAAC,CAAC;QACpD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,qBAAqB,EAAE,CAAC;IACpD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;IAEnD,OAAO,CAAC,GAAG,CAAC,IAAA,wBAAgB,EAAC,MAAM,CAAC,CAAC,CAAC;IACtC,MAAM,cAAc,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;AACxC,CAAC;AAED,mCAAmC;AACnC,KAAK,UAAU,aAAa,CAAC,OAAgB,EAAE,QAA4B;IACzE,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,CAAC,KAAK,CAAC,8BAA8B,CAAC,CAAC;QAC9C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7B,OAAO,CAAC,KAAK,CAAC,+BAA+B,QAAQ,EAAE,CAAC,CAAC;QACzD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,oBAAoB;IACpB,MAAM,QAAQ,GAAG,IAAA,gBAAQ,EAAC,QAAQ,CAAC,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC,SAAS,cAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;IAChD,OAAO,CAAC,GAAG,CAAC,WAAW,QAAQ,EAAE,CAAC,CAAC;IACnC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAEhB,wBAAwB;IACxB,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,qBAAqB,EAAE,CAAC;IACpD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,gBAAgB,CAAC,QAAQ,CAAC,CAAC;IAEtD,OAAO,CAAC,GAAG,CAAC,IAAA,wBAAgB,EAAC,MAAM,CAAC,CAAC,CAAC;IACtC,MAAM,cAAc,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;AACxC,CAAC;AAED,gDAAgD;AAChD,KAAK,UAAU,eAAe,CAAC,OAAgB,EAAE,UAA8B;IAC7E,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC;QAChD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,CAAC,YAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC;QACzE,OAAO,CAAC,KAAK,CAAC,oCAAoC,UAAU,EAAE,CAAC,CAAC;QAChE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,YAAY,GAAG,cAAI,CAAC,IAAI,CAAC,UAAU,EAAE,iBAAiB,CAAC,CAAC;IAC9D,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;QACjC,OAAO,CAAC,KAAK,CAAC,qCAAqC,YAAY,EAAE,CAAC,CAAC;QACnE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,yEAAyE;IACzE,OAAO,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;IACjE,MAAM,eAAe,GAAG,YAAE,CAAC,YAAY,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;IAC/D,MAAM,OAAO,GAAG,IAAA,6BAAqB,EAAC,eAAe,EAAE,UAAU,CAAC,CAAC;IAEnE,IAAI,SAAS,GAAG,IAAI,CAAC;IACrB,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,IAAI,CAAC,CAAC,MAAM,EAAE,CAAC;YACb,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,YAAY,EAAE,CAAC,CAAC;QACvC,CAAC;aAAM,CAAC;YACN,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,KAAK,WAAW,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,EAAE,CAAC;YACnE,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,YAAY,GAAG,MAAM,EAAE,CAAC,CAAC;YAClD,SAAS,GAAG,KAAK,CAAC;QACpB,CAAC;IACH,CAAC;IAED,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,iEAAiE,CAAC,CAAC;QACjF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC;IAE5C,oDAAoD;IACpD,OAAO,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;IACjE,MAAM,YAAY,GAAG,IAAA,gBAAQ,EAAC,YAAY,CAAC,CAAC;IAC5C,OAAO,CAAC,GAAG,CAAC,oBAAoB,YAAY,EAAE,CAAC,CAAC;IAEhD,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,qBAAqB,EAAE,CAAC;IACpD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,gBAAgB,CAAC,YAAY,CAAC,CAAC;IAE1D,OAAO,CAAC,GAAG,CAAC,IAAA,wBAAgB,EAAC,MAAM,CAAC,CAAC,CAAC;IACtC,MAAM,cAAc,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;AACxC,CAAC;AAED,oCAAoC;AACpC,KAAK,UAAU,gBAAgB,CAAC,OAAgB,EAAE,SAA6B;IAC7E,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACjD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,qBAAqB,EAAE,CAAC;IACpD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,4BAA4B,CAAC,SAAS,CAAC,CAAC;IAEnE,mCAAmC;IACnC,IAAI,MAAM,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAChC,OAAO,CAAC,GAAG,CAAC,QAAQ,IAAA,uBAAe,EAAC,MAAM,CAAC,CAAC,CAAE,CAAC,GAAG,CAAC,CAAC;IACtD,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACxB,CAAC;AACH,CAAC;AAED,0DAA0D;AAE1D;;;GAGG;AACI,KAAK,UAAU,GAAG,CAAC,OAAgB;IACxC,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAEtC,IAAI,CAAC;QACH,QAAQ,OAAO,EAAE,CAAC;YAChB,KAAK,SAAS;gBACZ,MAAM,gBAAgB,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACvD,MAAM;YACR,KAAK,MAAM;gBACT,MAAM,aAAa,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACpD,MAAM;YACR,KAAK,QAAQ;gBACX,MAAM,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACtD,MAAM;YACR,KAAK,SAAS;gBACZ,MAAM,gBAAgB,CAAC,OAAO,EAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACvD,MAAM;YACR;gBACE,QAAQ,EAAE,CAAC;gBACX,IAAI,OAAO,EAAE,CAAC;oBACZ,OAAO,CAAC,KAAK,CAAC,sBAAsB,OAAO,EAAE,CAAC,CAAC;gBACjD,CAAC;gBACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACpB,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,qBAAqB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACvF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/vetkey.d.ts

@@ -0,0 +1,27 @@
+/**
+ * VetKey CLI Module — VetKey IBE encryption/decryption and daemon management
+ *
+ * Provides two encryption modes:
+ *   1. IBE mode: Per-operation Identity-Based Encryption for Kind5 PrivatePost
+ *   2. Daemon mode: Long-running AES-256-GCM daemon for fast file encryption
+ *
+ * Sub-commands:
+ *   encrypt-sign    Encrypt + sign Kind5 PrivatePost in one step
+ *   decrypt         Decrypt Kind5 PrivatePost by event ID
+ *   encrypt-only    Encrypt locally without canister sign
+ *   pubkey          Get IBE public key from canister
+ *   serve           Start daemon (UDS or stdio mode)
+ *   stop            Stop a running daemon
+ *   status          Query daemon status
+ *
+ * Usage: zcloak-ai vetkey <sub-command> [options]
+ */
+import type { Session } from './session';
+/**
+ * Run the vetkey sub-command.
+ * Follows the same pattern as other CLI modules (sign.ts, verify.ts, etc.).
+ *
+ * @param session - CLI session with parsed args and canister access
+ */
+export declare function run(session: Session): Promise<void>;
+//# sourceMappingURL=vetkey.d.ts.map