@zenalexa/unicli 0.217.0 → 0.217.3

package/dist/engine/kernel/execute.js

@@ -10,13 +10,16 @@
  * Callers (CLI/MCP/ACP) format the returned `InvocationResult` for their
  * transport; they do not rebuild envelopes.
  */
-import { runPipeline } from "../executor.js";
+import { PipelineError, runPipeline } from "../executor.js";
 import { hardenArgs, InputHardeningError } from "../harden.js";
 import { defaultSuccessNextActions, defaultErrorNextActions, } from "../../output/next-actions.js";
+import { createApprovalStore, rememberApproval } from "../approval-store.js";
 import { errorTypeToCode, errorToAgentFields, mapErrorToExitCode, } from "../../output/error-map.js";
 import { commandStrategy, resolveCommand } from "../../registry.js";
 import { ExitCode } from "../../types.js";
-import { evaluateOperationPolicy, InvalidPermissionProfileError, resolveOperationAdapterPath, resolveOperationTargetSurface, } from "../operation-policy.js";
+import { InvalidPermissionProfileError, resolveOperationAdapterPath, resolveOperationTargetSurface, } from "../operation-policy.js";
+import { evaluateOperationPolicyWithApprovals } from "../permission-runtime.js";
+import { PermissionRulesConfigError } from "../permission-rules.js";
 import { getCompiled } from "./compile.js";
 import { newULID } from "./ulid.js";
 /**
@@ -31,6 +34,49 @@ export class KernelLookupError extends Error {
         this.name = "KernelLookupError";
     }
 }
+function isRecord(value) {
+    return value !== null && typeof value === "object" && !Array.isArray(value);
+}
+function resourcesFromPermissionConfig(config) {
+    if (!isRecord(config) || !isRecord(config.resources))
+        return undefined;
+    const resources = {};
+    for (const [bucket, raw] of Object.entries(config.resources)) {
+        if (!Array.isArray(raw))
+            continue;
+        const values = raw.filter((value) => {
+            return typeof value === "string";
+        });
+        if (values.length > 0)
+            resources[bucket] = values;
+    }
+    return Object.keys(resources).length > 0 ? resources : undefined;
+}
+function runtimePermissionDeniedDiagnostic(err) {
+    if (!(err instanceof PipelineError) ||
+        err.detail.errorType !== "permission_denied") {
+        return undefined;
+    }
+    const config = err.detail.config;
+    const resources = resourcesFromPermissionConfig(config);
+    const ruleId = isRecord(config) && typeof config.rule_id === "string"
+        ? config.rule_id
+        : undefined;
+    return {
+        kind: "runtime_permission_denied",
+        code: "permission_denied",
+        action: err.detail.action,
+        step: err.detail.step,
+        retryable: err.detail.retryable ?? false,
+        ...(ruleId ? { rule_id: ruleId } : {}),
+        resource_buckets: resources ? Object.keys(resources).sort() : [],
+        ...(resources ? { resources } : {}),
+    };
+}
+function diagnosticsForError(err) {
+    const diagnostic = runtimePermissionDeniedDiagnostic(err);
+    return diagnostic ? [diagnostic] : undefined;
+}
 /**
  * Look up an adapter + command pair and return an Invocation ready for
  * execute(). Returns `null` if either the site or command is unknown —
@@ -48,6 +94,7 @@ export function buildInvocation(surface, site, cmd, bag, options = {}) {
         surface,
         permissionProfile: options.permissionProfile,
         approved: options.approved,
+        rememberApproval: options.rememberApproval,
         trace_id: newULID(),
     };
 }
@@ -73,19 +120,55 @@ export async function execute(inv) {
     // a clear error instead of silently recompiling.
     if (!compiled)
         throw new KernelLookupError(key);
+    let operationPolicy;
     try {
-        const operationPolicy = evaluateOperationPolicy({
+        operationPolicy = await evaluateOperationPolicyWithApprovals({
             site: inv.adapter.name,
             command: inv.cmdName,
             description: inv.command.description,
             adapterType: inv.adapter.type,
             targetSurface,
             strategy,
+            domain: inv.command.domain ?? inv.adapter.domain,
+            base: inv.command.base ?? inv.adapter.base,
             browser: inv.adapter.browser === true || inv.command.browser === true,
             args: inv.command.adapterArgs,
             profile: inv.permissionProfile,
             approved: inv.approved,
         });
+        if (operationPolicy.enforcement === "deny") {
+            const ruleId = operationPolicy.deny_rule?.id ?? "unknown";
+            const ruleReason = operationPolicy.deny_rule?.reason ?? "permission rule matched";
+            const err = {
+                code: "permission_denied",
+                message: `permission rule "${ruleId}" denies ${operationPolicy.effect}: ${ruleReason}`,
+                adapter_path: adapterPath,
+                step: 0,
+                suggestion: operationPolicy.approval_hint ??
+                    "edit or remove the matching permission rule",
+                retryable: false,
+                alternatives: [
+                    `unicli --dry-run ${inv.adapter.name} ${inv.cmdName}`,
+                    "edit ~/.unicli/permission-rules.json",
+                ],
+            };
+            const durationMs = Date.now() - startedAt;
+            return {
+                results: [],
+                envelope: {
+                    command: key,
+                    duration_ms: durationMs,
+                    adapter_version: inv.adapter.version,
+                    surface: targetSurface,
+                    error: err,
+                    next_actions: defaultErrorNextActions(inv.adapter.name, inv.cmdName, "permission_denied"),
+                },
+                durationMs,
+                exitCode: ExitCode.AUTH_REQUIRED,
+                warnings,
+                error: err,
+            };
+        }
         if (operationPolicy.enforcement === "needs_approval") {
             const err = {
                 code: "permission_denied",
@@ -146,6 +229,32 @@ export async function execute(inv) {
                 error: agentErr,
             };
         }
+        if (err instanceof PermissionRulesConfigError) {
+            const agentErr = {
+                code: err.code,
+                message: err.message,
+                adapter_path: adapterPath,
+                step: 0,
+                suggestion: err.suggestion,
+                retryable: false,
+            };
+            const durationMs = Date.now() - startedAt;
+            return {
+                results: [],
+                envelope: {
+                    command: key,
+                    duration_ms: durationMs,
+                    adapter_version: inv.adapter.version,
+                    surface: targetSurface,
+                    error: agentErr,
+                    next_actions: defaultErrorNextActions(inv.adapter.name, inv.cmdName, "invalid_input"),
+                },
+                durationMs,
+                exitCode: ExitCode.USAGE_ERROR,
+                warnings,
+                error: agentErr,
+            };
+        }
         throw err;
     }
     // 1. JSON Schema validation (fail-closed via ajv strict mode).
@@ -213,6 +322,16 @@ export async function execute(inv) {
         }
         throw err;
     }
+    if (inv.rememberApproval === true) {
+        try {
+            await rememberApproval(createApprovalStore(), {
+                policy: operationPolicy,
+            });
+        }
+        catch (error) {
+            warnings.push(`failed to persist approval memory: ${error instanceof Error ? error.message : String(error)}`);
+        }
+    }
     // 3. Pipeline / func execution. runPipeline requires a ResolvedArgs bag
     //    as of v0.213.3 P3 (D6); surface + trace_id are plumbed through so
     //    YAML templates can reference ${{ surface }} / ${{ trace_id }}.
@@ -221,6 +340,7 @@ export async function execute(inv) {
         if (inv.command.pipeline) {
             results = await runPipeline(inv.command.pipeline, inv.bag, inv.adapter.base, {
                 site: inv.adapter.name,
+                command: inv.cmdName,
                 strategy,
                 surface: inv.surface,
                 trace_id: inv.trace_id,
@@ -285,6 +405,7 @@ export async function execute(inv) {
             message: err instanceof Error ? err.message : String(err),
             ...fields,
         };
+        const diagnostics = diagnosticsForError(err);
         const durationMs = Date.now() - startedAt;
         return {
             results: [],
@@ -300,6 +421,7 @@ export async function execute(inv) {
             exitCode: mapErrorToExitCode(err),
             warnings,
             error: agentErr,
+            ...(diagnostics ? { diagnostics } : {}),
         };
     }
     // 4. Success envelope. next_actions built at runtime with the literal

package/dist/engine/kernel/execute.js.map

@@ -1 +1 @@
-{"version":3,"file":"execute.js","sourceRoot":"","sources":["../../../src/engine/kernel/execute.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC/D,OAAO,EACL,yBAAyB,EACzB,uBAAuB,GACxB,MAAM,8BAA8B,CAAC;AACtC,OAAO,EACL,eAAe,EACf,kBAAkB,EAClB,kBAAkB,GACnB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAEpE,OAAO,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAE1C,OAAO,EACL,uBAAuB,EACvB,6BAA6B,EAC7B,2BAA2B,EAC3B,6BAA6B,GAC9B,MAAM,wBAAwB,CAAC;AAEhC,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAE3C,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC;;;;GAIG;AACH,MAAM,OAAO,iBAAkB,SAAQ,KAAK;IAC1C,YAAY,GAAW;QACrB,KAAK,CACH,kDAAkD,GAAG,IAAI;YACvD,oGAAoG,CACvG,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,mBAAmB,CAAC;IAClC,CAAC;CACF;AAED;;;;GAIG;AACH,MAAM,UAAU,eAAe,CAC7B,OAA8B,EAC9B,IAAY,EACZ,GAAW,EACX,GAAiB,EACjB,UAA8D,EAAE;IAEhE,MAAM,QAAQ,GAAG,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3C,IAAI,CAAC,QAAQ;QAAE,OAAO,IAAI,CAAC;IAC3B,OAAO;QACL,OAAO,EAAE,QAAQ,CAAC,OAAO;QACzB,OAAO,EAAE,QAAQ,CAAC,OAAO;QACzB,OAAO,EAAE,GAAG;QACZ,GAAG;QACH,OAAO;QACP,iBAAiB,EAAE,OAAO,CAAC,iBAAiB;QAC5C,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,QAAQ,EAAE,OAAO,EAAE;KACpB,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,GAAe;IAC3C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,GAAG,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;IACjD,MAAM,QAAQ,GAAG,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,MAAM,QAAQ,GAAG,eAAe,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IAC3D,MAAM,aAAa,GAAG,6BAA6B,CAAC;QAClD,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;QAC7B,aAAa,EAAE,GAAG,CAAC,OAAO,CAAC,cAAc;KAC1C,CAAC,CAAC;IACH,MAAM,WAAW,GAAG,2BAA2B,CAC7C,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,GAAG,CAAC,OAAO,CAAC,YAAY,CACzB,CAAC;IAEF,oEAAoE;IACpE,qEAAqE;IACrE,uEAAuE;IACvE,iDAAiD;IACjD,IAAI,CAAC,QAAQ;QAAE,MAAM,IAAI,iBAAiB,CAAC,GAAG,CAAC,CAAC;IAEhD,IAAI,CAAC;QACH,MAAM,eAAe,GAAG,uBAAuB,CAAC;YAC9C,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;YACtB,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,WAAW;YACpC,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;YAC7B,aAAa;YACb,QAAQ;YACR,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO,KAAK,IAAI,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,KAAK,IAAI;YACrE,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,WAAW;YAC7B,OAAO,EAAE,GAAG,CAAC,iBAAiB;YAC9B,QAAQ,EAAE,GAAG,CAAC,QAAQ;SACvB,CAAC,CAAC;QAEH,IAAI,eAAe,CAAC,WAAW,KAAK,gBAAgB,EAAE,CAAC;YACrD,MAAM,GAAG,GAAe;gBACtB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,uBAAuB,eAAe,CAAC,OAAO,2BAA2B,eAAe,CAAC,MAAM,EAAE;gBAC1G,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EACR,eAAe,CAAC,aAAa;oBAC7B,mDAAmD;gBACrD,SAAS,EAAE,KAAK;gBAChB,YAAY,EAAE;oBACZ,oBAAoB,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;oBACrD,qCAAqC,eAAe,CAAC,OAAO,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;oBACjG,oCAAoC,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;iBACtE;aACF,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,GAAG;oBACV,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,mBAAmB,CACpB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,aAAa;gBAChC,QAAQ;gBACR,KAAK,EAAE,GAAG;aACX,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,6BAA6B,EAAE,CAAC;YACjD,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,eAAe;gBACrB,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EAAE,mCAAmC;gBAC/C,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;oBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,+DAA+D;IAC/D,MAAM,CAAC,GAAG,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC1C,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;QACV,MAAM,KAAK,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,EAAE,OAAO,EAAE,mBAAmB,EAAE,CAAC;QAC9D,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,YAAY,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAC3D,MAAM,IAAI,GAAG,IAAI,IAAI,MAAM,CAAC;QAC5B,MAAM,GAAG,GAAe;YACtB,IAAI,EAAE,eAAe;YACrB,OAAO,EAAE,QAAQ,IAAI,KAAK,KAAK,CAAC,OAAO,IAAI,SAAS,EAAE;YACtD,YAAY,EAAE,WAAW;YACzB,IAAI,EAAE,CAAC;YACP,UAAU,EAAE,8CAA8C,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,IAAI;YAC7F,SAAS,EAAE,KAAK;SACjB,CAAC;QACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAC1C,OAAO;YACL,OAAO,EAAE,EAAE;YACX,QAAQ,EAAE;gBACR,OAAO,EAAE,GAAG;gBACZ,WAAW,EAAE,UAAU;gBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;gBACpC,OAAO,EAAE,aAAa;gBACtB,KAAK,EAAE,GAAG;gBACV,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;aACF;YACD,UAAU;YACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;YAC9B,QAAQ;YACR,KAAK,EAAE,GAAG;SACX,CAAC;IACJ,CAAC;IAED,qEAAqE;IACrE,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,CAAC,SAAS,CAAC,CAAC;QACvD,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC/B,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,mBAAmB,EAAE,CAAC;YACvC,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,eAAe;gBACrB,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;oBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,wEAAwE;IACxE,uEAAuE;IACvE,oEAAoE;IACpE,IAAI,OAAO,GAAc,EAAE,CAAC;IAC5B,IAAI,CAAC;QACH,IAAI,GAAG,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;YACzB,OAAO,GAAG,MAAM,WAAW,CACzB,GAAG,CAAC,OAAO,CAAC,QAAQ,EACpB,GAAG,CAAC,GAAG,EACP,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB;gBACE,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;gBACtB,QAAQ;gBACR,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,QAAQ,EAAE,GAAG,CAAC,QAAQ;aACvB,CACF,CAAC;QACJ,CAAC;aAAM,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YAC5B,IAAI,IAAI,GAAY,IAAI,CAAC;YACzB,IAAI,CAAC;gBACH,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,KAAK,IAAI,EAAE,CAAC;oBACjC,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;oBACpE,IAAI,GAAG,MAAM,WAAW,CAAC;wBACvB,IAAI,EAAE,IAAI;wBACV,IAAI,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI;wBAClB,IAAI,EAAE,EAAE;wBACR,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;wBACtB,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,MAAM;wBACtB,OAAO,EAAE,GAAG,CAAC,OAAO;wBACpB,QAAQ,EAAE,GAAG,CAAC,QAAQ;qBACvB,CAAC,CAAC;gBACL,CAAC;gBACD,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAa,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBAChE,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;YAC7C,CAAC;oBAAS,CAAC;gBACT,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,OAAO,IAAI,IAAI,EAAE,CAAC;oBACxD,MAAM,OAAO,CAAC,OAAO,CAClB,IAAiC,CAAC,KAAK,EAAE,CAC3C,CAAC,KAAK,CAAC,GAAG,EAAE;wBACX,iBAAiB;oBACnB,CAAC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,WAAW,GAAG,gCAAgC;gBACvD,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EACR,mEAAmE;gBACrE,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;iBAChB;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,YAAY;gBAC/B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,MAAM,GAAG,kBAAkB,CAAC,GAAG,EAAE,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACtE,MAAM,QAAQ,GAAe;YAC3B,IAAI,EAAE,eAAe,CAAC,GAAG,CAAC;YAC1B,OAAO,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;YACzD,GAAG,MAAM;SACV,CAAC;QACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAC1C,OAAO;YACL,OAAO,EAAE,EAAE;YACX,QAAQ,EAAE;gBACR,OAAO,EAAE,GAAG;gBACZ,WAAW,EAAE,UAAU;gBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;gBACpC,OAAO,EAAE,aAAa;gBACtB,KAAK,EAAE,QAAQ;gBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,QAAQ,CAAC,IAAI,CACd;aACF;YACD,UAAU;YACV,QAAQ,EAAE,kBAAkB,CAAC,GAAG,CAAC;YACjC,QAAQ;YACR,KAAK,EAAE,QAAQ;SAChB,CAAC;IACJ,CAAC;IAED,sEAAsE;IACtE,yEAAyE;IACzE,2DAA2D;IAC3D,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAC1C,MAAM,WAAW,GAAG,yBAAyB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,OAAO,EAAE;QAC3E,kBAAkB,EAAE,GAAG,CAAC,OAAO,CAAC,SAAS,KAAK,IAAI;KACnD,CAAC,CAAC;IACH,OAAO;QACL,OAAO;QACP,QAAQ,EAAE;YACR,OAAO,EAAE,GAAG;YACZ,WAAW,EAAE,UAAU;YACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YACpC,OAAO,EAAE,aAAa;YACtB,YAAY,EAAE,WAAW;SAC1B;QACD,UAAU;QACV,QAAQ,EAAE,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO;QACzE,QAAQ;KACT,CAAC;AACJ,CAAC"}
+{"version":3,"file":"execute.js","sourceRoot":"","sources":["../../../src/engine/kernel/execute.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC5D,OAAO,EAAE,UAAU,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAC/D,OAAO,EACL,yBAAyB,EACzB,uBAAuB,GACxB,MAAM,8BAA8B,CAAC;AACtC,OAAO,EAAE,mBAAmB,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAC7E,OAAO,EACL,eAAe,EACf,kBAAkB,EAClB,kBAAkB,GACnB,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAEpE,OAAO,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAG1C,OAAO,EACL,6BAA6B,EAC7B,2BAA2B,EAC3B,6BAA6B,GAC9B,MAAM,wBAAwB,CAAC;AAChC,OAAO,EAAE,oCAAoC,EAAE,MAAM,0BAA0B,CAAC;AAChF,OAAO,EAAE,0BAA0B,EAAE,MAAM,wBAAwB,CAAC;AAEpE,OAAO,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAM3C,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAEpC;;;;GAIG;AACH,MAAM,OAAO,iBAAkB,SAAQ,KAAK;IAC1C,YAAY,GAAW;QACrB,KAAK,CACH,kDAAkD,GAAG,IAAI;YACvD,oGAAoG,CACvG,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,mBAAmB,CAAC;IAClC,CAAC;CACF;AAED,SAAS,QAAQ,CAAC,KAAc;IAC9B,OAAO,KAAK,KAAK,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,6BAA6B,CACpC,MAAe;IAEf,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC;QAAE,OAAO,SAAS,CAAC;IAEvE,MAAM,SAAS,GAA6B,EAAE,CAAC;IAC/C,KAAK,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC;QAC7D,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC;YAAE,SAAS;QAClC,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,KAAK,EAAmB,EAAE;YACnD,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAC;QACnC,CAAC,CAAC,CAAC;QACH,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;YAAE,SAAS,CAAC,MAAM,CAAC,GAAG,MAAM,CAAC;IACpD,CAAC;IAED,OAAO,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;AACnE,CAAC;AAED,SAAS,iCAAiC,CACxC,GAAY;IAEZ,IACE,CAAC,CAAC,GAAG,YAAY,aAAa,CAAC;QAC/B,GAAG,CAAC,MAAM,CAAC,SAAS,KAAK,mBAAmB,EAC5C,CAAC;QACD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC;IACjC,MAAM,SAAS,GAAG,6BAA6B,CAAC,MAAM,CAAC,CAAC;IACxD,MAAM,MAAM,GACV,QAAQ,CAAC,MAAM,CAAC,IAAI,OAAO,MAAM,CAAC,OAAO,KAAK,QAAQ;QACpD,CAAC,CAAC,MAAM,CAAC,OAAO;QAChB,CAAC,CAAC,SAAS,CAAC;IAEhB,OAAO;QACL,IAAI,EAAE,2BAA2B;QACjC,IAAI,EAAE,mBAAmB;QACzB,MAAM,EAAE,GAAG,CAAC,MAAM,CAAC,MAAM;QACzB,IAAI,EAAE,GAAG,CAAC,MAAM,CAAC,IAAI;QACrB,SAAS,EAAE,GAAG,CAAC,MAAM,CAAC,SAAS,IAAI,KAAK;QACxC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACtC,gBAAgB,EAAE,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE;QAChE,GAAG,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;KACpC,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,GAAY;IACvC,MAAM,UAAU,GAAG,iCAAiC,CAAC,GAAG,CAAC,CAAC;IAC1D,OAAO,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;AAC/C,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,eAAe,CAC7B,OAA8B,EAC9B,IAAY,EACZ,GAAW,EACX,GAAiB,EACjB,UAII,EAAE;IAEN,MAAM,QAAQ,GAAG,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3C,IAAI,CAAC,QAAQ;QAAE,OAAO,IAAI,CAAC;IAC3B,OAAO;QACL,OAAO,EAAE,QAAQ,CAAC,OAAO;QACzB,OAAO,EAAE,QAAQ,CAAC,OAAO;QACzB,OAAO,EAAE,GAAG;QACZ,GAAG;QACH,OAAO;QACP,iBAAiB,EAAE,OAAO,CAAC,iBAAiB;QAC5C,QAAQ,EAAE,OAAO,CAAC,QAAQ;QAC1B,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;QAC1C,QAAQ,EAAE,OAAO,EAAE;KACpB,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,GAAe;IAC3C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,GAAG,GAAG,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;IACjD,MAAM,QAAQ,GAAG,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,MAAM,QAAQ,GAAG,eAAe,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;IAC3D,MAAM,aAAa,GAAG,6BAA6B,CAAC;QAClD,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;QAC7B,aAAa,EAAE,GAAG,CAAC,OAAO,CAAC,cAAc;KAC1C,CAAC,CAAC;IACH,MAAM,WAAW,GAAG,2BAA2B,CAC7C,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,GAAG,CAAC,OAAO,CAAC,YAAY,CACzB,CAAC;IAEF,oEAAoE;IACpE,qEAAqE;IACrE,uEAAuE;IACvE,iDAAiD;IACjD,IAAI,CAAC,QAAQ;QAAE,MAAM,IAAI,iBAAiB,CAAC,GAAG,CAAC,CAAC;IAEhD,IAAI,eAAgC,CAAC;IACrC,IAAI,CAAC;QACH,eAAe,GAAG,MAAM,oCAAoC,CAAC;YAC3D,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;YACtB,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,WAAW;YACpC,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;YAC7B,aAAa;YACb,QAAQ;YACR,MAAM,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,GAAG,CAAC,OAAO,CAAC,MAAM;YAChD,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI;YAC1C,OAAO,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO,KAAK,IAAI,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,KAAK,IAAI;YACrE,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,WAAW;YAC7B,OAAO,EAAE,GAAG,CAAC,iBAAiB;YAC9B,QAAQ,EAAE,GAAG,CAAC,QAAQ;SACvB,CAAC,CAAC;QAEH,IAAI,eAAe,CAAC,WAAW,KAAK,MAAM,EAAE,CAAC;YAC3C,MAAM,MAAM,GAAG,eAAe,CAAC,SAAS,EAAE,EAAE,IAAI,SAAS,CAAC;YAC1D,MAAM,UAAU,GACd,eAAe,CAAC,SAAS,EAAE,MAAM,IAAI,yBAAyB,CAAC;YACjE,MAAM,GAAG,GAAe;gBACtB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,oBAAoB,MAAM,YAAY,eAAe,CAAC,MAAM,KAAK,UAAU,EAAE;gBACtF,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EACR,eAAe,CAAC,aAAa;oBAC7B,6CAA6C;gBAC/C,SAAS,EAAE,KAAK;gBAChB,YAAY,EAAE;oBACZ,oBAAoB,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;oBACrD,sCAAsC;iBACvC;aACF,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,GAAG;oBACV,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,mBAAmB,CACpB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,aAAa;gBAChC,QAAQ;gBACR,KAAK,EAAE,GAAG;aACX,CAAC;QACJ,CAAC;QAED,IAAI,eAAe,CAAC,WAAW,KAAK,gBAAgB,EAAE,CAAC;YACrD,MAAM,GAAG,GAAe;gBACtB,IAAI,EAAE,mBAAmB;gBACzB,OAAO,EAAE,uBAAuB,eAAe,CAAC,OAAO,2BAA2B,eAAe,CAAC,MAAM,EAAE;gBAC1G,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EACR,eAAe,CAAC,aAAa;oBAC7B,mDAAmD;gBACrD,SAAS,EAAE,KAAK;gBAChB,YAAY,EAAE;oBACZ,oBAAoB,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;oBACrD,qCAAqC,eAAe,CAAC,OAAO,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;oBACjG,oCAAoC,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,EAAE;iBACtE;aACF,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,GAAG;oBACV,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,mBAAmB,CACpB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,aAAa;gBAChC,QAAQ;gBACR,KAAK,EAAE,GAAG;aACX,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,6BAA6B,EAAE,CAAC;YACjD,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,eAAe;gBACrB,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EAAE,mCAAmC;gBAC/C,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;oBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;QACD,IAAI,GAAG,YAAY,0BAA0B,EAAE,CAAC;YAC9C,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;oBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,+DAA+D;IAC/D,MAAM,CAAC,GAAG,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC1C,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;QACV,MAAM,KAAK,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,EAAE,OAAO,EAAE,mBAAmB,EAAE,CAAC;QAC9D,MAAM,IAAI,GAAG,CAAC,KAAK,CAAC,YAAY,IAAI,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAC3D,MAAM,IAAI,GAAG,IAAI,IAAI,MAAM,CAAC;QAC5B,MAAM,GAAG,GAAe;YACtB,IAAI,EAAE,eAAe;YACrB,OAAO,EAAE,QAAQ,IAAI,KAAK,KAAK,CAAC,OAAO,IAAI,SAAS,EAAE;YACtD,YAAY,EAAE,WAAW;YACzB,IAAI,EAAE,CAAC;YACP,UAAU,EAAE,8CAA8C,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,GAAG,CAAC,OAAO,IAAI;YAC7F,SAAS,EAAE,KAAK;SACjB,CAAC;QACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAC1C,OAAO;YACL,OAAO,EAAE,EAAE;YACX,QAAQ,EAAE;gBACR,OAAO,EAAE,GAAG;gBACZ,WAAW,EAAE,UAAU;gBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;gBACpC,OAAO,EAAE,aAAa;gBACtB,KAAK,EAAE,GAAG;gBACV,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;aACF;YACD,UAAU;YACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;YAC9B,QAAQ;YACR,KAAK,EAAE,GAAG;SACX,CAAC;IACJ,CAAC;IAED,qEAAqE;IACrE,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,QAAQ,CAAC,SAAS,CAAC,CAAC;QACvD,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC/B,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,mBAAmB,EAAE,CAAC;YACvC,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,eAAe;gBACrB,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EAAE,GAAG,CAAC,UAAU;gBAC1B,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;oBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,eAAe,CAChB;iBACF;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,WAAW;gBAC9B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;QACD,MAAM,GAAG,CAAC;IACZ,CAAC;IAED,IAAI,GAAG,CAAC,gBAAgB,KAAK,IAAI,EAAE,CAAC;QAClC,IAAI,CAAC;YACH,MAAM,gBAAgB,CAAC,mBAAmB,EAAE,EAAE;gBAC5C,MAAM,EAAE,eAAe;aACxB,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,QAAQ,CAAC,IAAI,CACX,sCACE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CACvD,EAAE,CACH,CAAC;QACJ,CAAC;IACH,CAAC;IAED,wEAAwE;IACxE,uEAAuE;IACvE,oEAAoE;IACpE,IAAI,OAAO,GAAc,EAAE,CAAC;IAC5B,IAAI,CAAC;QACH,IAAI,GAAG,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;YACzB,OAAO,GAAG,MAAM,WAAW,CACzB,GAAG,CAAC,OAAO,CAAC,QAAQ,EACpB,GAAG,CAAC,GAAG,EACP,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB;gBACE,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;gBACtB,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,QAAQ;gBACR,OAAO,EAAE,GAAG,CAAC,OAAO;gBACpB,QAAQ,EAAE,GAAG,CAAC,QAAQ;aACvB,CACF,CAAC;QACJ,CAAC;aAAM,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;YAC5B,IAAI,IAAI,GAAY,IAAI,CAAC;YACzB,IAAI,CAAC;gBACH,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,KAAK,IAAI,EAAE,CAAC;oBACjC,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,MAAM,CAAC,6BAA6B,CAAC,CAAC;oBACpE,IAAI,GAAG,MAAM,WAAW,CAAC;wBACvB,IAAI,EAAE,IAAI;wBACV,IAAI,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI;wBAClB,IAAI,EAAE,EAAE;wBACR,IAAI,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI;wBACtB,MAAM,EAAE,GAAG,CAAC,GAAG,CAAC,MAAM;wBACtB,OAAO,EAAE,GAAG,CAAC,OAAO;wBACpB,QAAQ,EAAE,GAAG,CAAC,QAAQ;qBACvB,CAAC,CAAC;gBACL,CAAC;gBACD,MAAM,GAAG,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAa,EAAE,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBAChE,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;YAC7C,CAAC;oBAAS,CAAC;gBACT,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,OAAO,IAAI,IAAI,EAAE,CAAC;oBACxD,MAAM,OAAO,CAAC,OAAO,CAClB,IAAiC,CAAC,KAAK,EAAE,CAC3C,CAAC,KAAK,CAAC,GAAG,EAAE;wBACX,iBAAiB;oBACnB,CAAC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,QAAQ,GAAe;gBAC3B,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,WAAW,GAAG,gCAAgC;gBACvD,YAAY,EAAE,WAAW;gBACzB,IAAI,EAAE,CAAC;gBACP,UAAU,EACR,mEAAmE;gBACrE,SAAS,EAAE,KAAK;aACjB,CAAC;YACF,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAC1C,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,QAAQ,EAAE;oBACR,OAAO,EAAE,GAAG;oBACZ,WAAW,EAAE,UAAU;oBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;oBACpC,OAAO,EAAE,aAAa;oBACtB,KAAK,EAAE,QAAQ;iBAChB;gBACD,UAAU;gBACV,QAAQ,EAAE,QAAQ,CAAC,YAAY;gBAC/B,QAAQ;gBACR,KAAK,EAAE,QAAQ;aAChB,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,MAAM,GAAG,kBAAkB,CAAC,GAAG,EAAE,WAAW,EAAE,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACtE,MAAM,QAAQ,GAAe;YAC3B,IAAI,EAAE,eAAe,CAAC,GAAG,CAAC;YAC1B,OAAO,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;YACzD,GAAG,MAAM;SACV,CAAC;QACF,MAAM,WAAW,GAAG,mBAAmB,CAAC,GAAG,CAAC,CAAC;QAC7C,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAC1C,OAAO;YACL,OAAO,EAAE,EAAE;YACX,QAAQ,EAAE;gBACR,OAAO,EAAE,GAAG;gBACZ,WAAW,EAAE,UAAU;gBACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;gBACpC,OAAO,EAAE,aAAa;gBACtB,KAAK,EAAE,QAAQ;gBACf,YAAY,EAAE,uBAAuB,CACnC,GAAG,CAAC,OAAO,CAAC,IAAI,EAChB,GAAG,CAAC,OAAO,EACX,QAAQ,CAAC,IAAI,CACd;aACF;YACD,UAAU;YACV,QAAQ,EAAE,kBAAkB,CAAC,GAAG,CAAC;YACjC,QAAQ;YACR,KAAK,EAAE,QAAQ;YACf,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;SACxC,CAAC;IACJ,CAAC;IAED,sEAAsE;IACtE,yEAAyE;IACzE,2DAA2D;IAC3D,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IAC1C,MAAM,WAAW,GAAG,yBAAyB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,OAAO,EAAE;QAC3E,kBAAkB,EAAE,GAAG,CAAC,OAAO,CAAC,SAAS,KAAK,IAAI;KACnD,CAAC,CAAC;IACH,OAAO;QACL,OAAO;QACP,QAAQ,EAAE;YACR,OAAO,EAAE,GAAG;YACZ,WAAW,EAAE,UAAU;YACvB,eAAe,EAAE,GAAG,CAAC,OAAO,CAAC,OAAO;YACpC,OAAO,EAAE,aAAa;YACtB,YAAY,EAAE,WAAW;SAC1B;QACD,UAAU;QACV,QAAQ,EAAE,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO;QACzE,QAAQ;KACT,CAAC;AACJ,CAAC"}

package/dist/engine/kernel/types.d.ts

@@ -16,6 +16,7 @@ export interface Invocation {
     surface: "cli" | "mcp" | "acp" | "bench" | "hub";
     permissionProfile?: string;
     approved?: boolean;
+    rememberApproval?: boolean;
     /** ULID — 26-char Crockford Base32, time-sortable and monotonic within ms. */
     trace_id: string;
 }
@@ -47,5 +48,17 @@ export interface InvocationResult {
     exitCode: number;
     warnings: string[];
     error?: AgentError;
+    diagnostics?: InvocationDiagnostic[];
+}
+export type InvocationDiagnostic = RuntimePermissionDeniedDiagnostic;
+export interface RuntimePermissionDeniedDiagnostic {
+    kind: "runtime_permission_denied";
+    code: "permission_denied";
+    action: string;
+    step: number;
+    retryable: boolean;
+    rule_id?: string;
+    resource_buckets: string[];
+    resources?: Record<string, string[]>;
 }
 //# sourceMappingURL=types.d.ts.map

package/dist/engine/kernel/types.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/engine/kernel/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AACzE,OAAO,KAAK,EACV,UAAU,EACV,cAAc,EACd,eAAe,EAChB,MAAM,gBAAgB,CAAC;AAExB,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,eAAe,CAAC;IACzB,OAAO,EAAE,cAAc,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,YAAY,CAAC;IAClB,OAAO,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,GAAG,OAAO,GAAG,KAAK,CAAC;IACjD,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,8EAA8E;IAC9E,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,MAAM,aAAa,GAAG;IAC1B,CAAC,IAAI,EAAE,OAAO,GAAG,OAAO,CAAC;IACzB,MAAM,CAAC,EAAE,KAAK,CAAC;QACb,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;KAClC,CAAC,GAAG,IAAI,CAAC;CACX,CAAC;AAEF,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,QAAQ,EAAE,SAAS,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;IAC9C,SAAS,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACnC,QAAQ,EAAE,CACR,IAAI,EAAE,OAAO,KAEX;QAAE,EAAE,EAAE,IAAI,CAAA;KAAE,GACZ;QAAE,EAAE,EAAE,KAAK,CAAC;QAAC,MAAM,EAAE,WAAW,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAA;KAAE,CAAC;CACjE;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,OAAO,EAAE,CAAC;IACnB,QAAQ,EAAE,YAAY,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,UAAU,CAAC;CACpB"}
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/engine/kernel/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AACzE,OAAO,KAAK,EACV,UAAU,EACV,cAAc,EACd,eAAe,EAChB,MAAM,gBAAgB,CAAC;AAExB,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,eAAe,CAAC;IACzB,OAAO,EAAE,cAAc,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,YAAY,CAAC;IAClB,OAAO,EAAE,KAAK,GAAG,KAAK,GAAG,KAAK,GAAG,OAAO,GAAG,KAAK,CAAC;IACjD,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,8EAA8E;IAC9E,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,MAAM,aAAa,GAAG;IAC1B,CAAC,IAAI,EAAE,OAAO,GAAG,OAAO,CAAC;IACzB,MAAM,CAAC,EAAE,KAAK,CAAC;QACb,YAAY,CAAC,EAAE,MAAM,CAAC;QACtB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;KAClC,CAAC,GAAG,IAAI,CAAC;CACX,CAAC;AAEF,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,QAAQ,EAAE,SAAS,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;IAC9C,SAAS,EAAE,GAAG,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IACnC,QAAQ,EAAE,CACR,IAAI,EAAE,OAAO,KAEX;QAAE,EAAE,EAAE,IAAI,CAAA;KAAE,GACZ;QAAE,EAAE,EAAE,KAAK,CAAC;QAAC,MAAM,EAAE,WAAW,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAA;KAAE,CAAC;CACjE;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,OAAO,EAAE,CAAC;IACnB,QAAQ,EAAE,YAAY,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,UAAU,CAAC;IACnB,WAAW,CAAC,EAAE,oBAAoB,EAAE,CAAC;CACtC;AAED,MAAM,MAAM,oBAAoB,GAAG,iCAAiC,CAAC;AAErE,MAAM,WAAW,iCAAiC;IAChD,IAAI,EAAE,2BAA2B,CAAC;IAClC,IAAI,EAAE,mBAAmB,CAAC;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;CACtC"}

package/dist/engine/operation-policy.d.ts

@@ -17,6 +17,8 @@ export interface OperationPolicyInput {
     adapterType?: string;
     targetSurface?: TargetSurface;
     strategy?: string;
+    domain?: string;
+    base?: string;
     browser?: boolean;
     args?: Array<{
         name: string;
@@ -24,6 +26,7 @@ export interface OperationPolicyInput {
     }>;
     profile?: string;
     approved?: boolean;
+    approvalSource?: "none" | "invocation" | "env" | "memory";
 }
 export interface OperationPolicy {
     profile: PermissionProfile;
@@ -33,9 +36,14 @@ export interface OperationPolicy {
     approval_memory: CapabilityApprovalMemory;
     approval_required: boolean;
     approved: boolean;
-    enforcement: "allow" | "needs_approval";
+    enforcement: "allow" | "needs_approval" | "deny";
     reason: string;
     approval_hint?: string;
+    deny_rule?: {
+        id: string;
+        reason: string;
+    };
+    deny_reason?: string;
 }
 export declare class InvalidPermissionProfileError extends Error {
     constructor(profile: string);

package/dist/engine/operation-policy.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"operation-policy.d.ts","sourceRoot":"","sources":["../../src/engine/operation-policy.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAe,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AAK9D,OAAO,KAAK,EACV,wBAAwB,EACxB,eAAe,EAChB,MAAM,wBAAwB,CAAC;AAEhC,MAAM,MAAM,iBAAiB,GAAG,MAAM,GAAG,SAAS,GAAG,QAAQ,CAAC;AAC9D,MAAM,MAAM,aAAa,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;AAC/D,MAAM,MAAM,eAAe,GACvB,MAAM,GACN,cAAc,GACd,iBAAiB,GACjB,eAAe,GACf,kBAAkB,GAClB,iBAAiB,GACjB,eAAe,GACf,WAAW,GACX,YAAY,GACZ,aAAa,GACb,eAAe,CAAC;AAEpB,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC,CAAC;IACnD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,iBAAiB,CAAC;IAC3B,MAAM,EAAE,eAAe,CAAC;IACxB,IAAI,EAAE,aAAa,CAAC;IACpB,gBAAgB,EAAE,eAAe,CAAC;IAClC,eAAe,EAAE,wBAAwB,CAAC;IAC1C,iBAAiB,EAAE,OAAO,CAAC;IAC3B,QAAQ,EAAE,OAAO,CAAC;IAClB,WAAW,EAAE,OAAO,GAAG,gBAAgB,CAAC;IACxC,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,qBAAa,6BAA8B,SAAQ,KAAK;gBAC1C,OAAO,EAAE,MAAM;CAM5B;AAqSD,wBAAgB,wBAAwB,CAAC,KAAK,CAAC,EAAE,MAAM,GAAG,iBAAiB,CAS1E;AAED,wBAAgB,6BAA6B,CAAC,KAAK,EAAE;IACnD,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,aAAa,CAAC;CAC/B,GAAG,aAAa,CAWhB;AAED,wBAAgB,2BAA2B,CACzC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,WAAW,CAAC,EAAE,MAAM,GACnB,MAAM,CAER;AAED,wBAAgB,oBAAoB,CAClC,KAAK,EAAE,oBAAoB,GAC1B,eAAe,CAmBjB;AAED,wBAAgB,aAAa,CAAC,MAAM,EAAE,eAAe,GAAG,aAAa,CAmBpE;AAWD,wBAAgB,uBAAuB,CACrC,KAAK,EAAE,oBAAoB,GAC1B,eAAe,CAwCjB"}
+{"version":3,"file":"operation-policy.d.ts","sourceRoot":"","sources":["../../src/engine/operation-policy.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAe,KAAK,aAAa,EAAE,MAAM,aAAa,CAAC;AAK9D,OAAO,KAAK,EACV,wBAAwB,EACxB,eAAe,EAChB,MAAM,wBAAwB,CAAC;AAEhC,MAAM,MAAM,iBAAiB,GAAG,MAAM,GAAG,SAAS,GAAG,QAAQ,CAAC;AAC9D,MAAM,MAAM,aAAa,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;AAC/D,MAAM,MAAM,eAAe,GACvB,MAAM,GACN,cAAc,GACd,iBAAiB,GACjB,eAAe,GACf,kBAAkB,GAClB,iBAAiB,GACjB,eAAe,GACf,WAAW,GACX,YAAY,GACZ,aAAa,GACb,eAAe,CAAC;AAEpB,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,aAAa,CAAC;IAC9B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,IAAI,CAAC,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC,CAAC;IACnD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,cAAc,CAAC,EAAE,MAAM,GAAG,YAAY,GAAG,KAAK,GAAG,QAAQ,CAAC;CAC3D;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,iBAAiB,CAAC;IAC3B,MAAM,EAAE,eAAe,CAAC;IACxB,IAAI,EAAE,aAAa,CAAC;IACpB,gBAAgB,EAAE,eAAe,CAAC;IAClC,eAAe,EAAE,wBAAwB,CAAC;IAC1C,iBAAiB,EAAE,OAAO,CAAC;IAC3B,QAAQ,EAAE,OAAO,CAAC;IAClB,WAAW,EAAE,OAAO,GAAG,gBAAgB,GAAG,MAAM,CAAC;IACjD,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,SAAS,CAAC,EAAE;QACV,EAAE,EAAE,MAAM,CAAC;QACX,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;IACF,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,qBAAa,6BAA8B,SAAQ,KAAK;gBAC1C,OAAO,EAAE,MAAM;CAM5B;AAqSD,wBAAgB,wBAAwB,CAAC,KAAK,CAAC,EAAE,MAAM,GAAG,iBAAiB,CAS1E;AAED,wBAAgB,6BAA6B,CAAC,KAAK,EAAE;IACnD,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,aAAa,CAAC;CAC/B,GAAG,aAAa,CAWhB;AAED,wBAAgB,2BAA2B,CACzC,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,WAAW,CAAC,EAAE,MAAM,GACnB,MAAM,CAER;AAED,wBAAgB,oBAAoB,CAClC,KAAK,EAAE,oBAAoB,GAC1B,eAAe,CAmBjB;AAED,wBAAgB,aAAa,CAAC,MAAM,EAAE,eAAe,GAAG,aAAa,CAmBpE;AAWD,wBAAgB,uBAAuB,CACrC,KAAK,EAAE,oBAAoB,GAC1B,eAAe,CA6CjB"}

package/dist/engine/operation-policy.js

@@ -325,7 +325,10 @@ export function evaluateOperationPolicy(input) {
     const profile = resolvePermissionProfile(input.profile);
     const effect = inferOperationEffect(input);
     const risk = riskForEffect(effect);
-    const approved = input.approved === true || process.env.UNICLI_APPROVE === "1";
+    const envApproved = process.env.UNICLI_APPROVE === "1";
+    const approvalSource = input.approvalSource ??
+        (input.approved === true ? "invocation" : envApproved ? "env" : "none");
+    const approved = input.approved === true || envApproved || approvalSource === "memory";
     const approval_required = approvalRequired(profile, risk);
     const enforcement = approval_required && !approved ? "needs_approval" : "allow";
     const capability_scope = deriveCapabilityScope(input, effect);
@@ -335,6 +338,7 @@ export function evaluateOperationPolicy(input) {
         profile,
         effect,
         approved,
+        approvalSource,
         scope: capability_scope,
     });
     const reason = effect === "read"
@@ -352,7 +356,7 @@ export function evaluateOperationPolicy(input) {
         reason,
         ...(enforcement === "needs_approval"
             ? {
-                approval_hint: "rerun with --yes, set UNICLI_APPROVE=1, or use --permission-profile open",
+                approval_hint: "rerun with --yes, add --remember-approval to persist this command scope, set UNICLI_APPROVE=1, or use --permission-profile open",
             }
             : {}),
     };

package/dist/engine/operation-policy.js.map

@@ -1 +1 @@
-{"version":3,"file":"operation-policy.js","sourceRoot":"","sources":["../../src/engine/operation-policy.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,WAAW,EAAsB,MAAM,aAAa,CAAC;AAC9D,OAAO,EACL,6BAA6B,EAC7B,qBAAqB,GACtB,MAAM,wBAAwB,CAAC;AA+ChC,MAAM,OAAO,6BAA8B,SAAQ,KAAK;IACtD,YAAY,OAAe;QACzB,KAAK,CACH,+BAA+B,OAAO,2CAA2C,CAClF,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,+BAA+B,CAAC;IAC9C,CAAC;CACF;AAED,MAAM,aAAa,GAAG,IAAI,GAAG,CAAoB,CAAC,MAAM,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC;AAEhF,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC;IAC7B,KAAK;IACL,IAAI;IACJ,OAAO;IACP,WAAW;IACX,eAAe;IACf,OAAO;IACP,UAAU;IACV,MAAM;CACP,CAAC,CAAC;AAEH,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC;IAC7B,SAAS;IACT,cAAc;IACd,OAAO;IACP,MAAM;IACN,SAAS;IACT,MAAM;IACN,QAAQ;IACR,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC;IACnC,QAAQ;IACR,YAAY;IACZ,OAAO;IACP,UAAU;IACV,MAAM;IACN,QAAQ;IACR,YAAY;IACZ,MAAM;IACN,UAAU;IACV,aAAa;IACb,MAAM;IACN,KAAK;IACL,MAAM;IACN,MAAM;IACN,WAAW;IACX,SAAS;IACT,YAAY;IACZ,UAAU;IACV,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,MAAM;CACP,CAAC,CAAC;AAEH,MAAM,0BAA0B,GAAG,IAAI,GAAG,CAAC;IACzC,QAAQ;IACR,aAAa;IACb,SAAS;IACT,aAAa;IACb,IAAI;IACJ,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;AAE5E,MAAM,uBAAuB,GAAG,IAAI,GAAG,CAAC;IACtC,YAAY;IACZ,WAAW;IACX,gBAAgB;IAChB,WAAW;IACX,SAAS;IACT,QAAQ;IACR,SAAS;CACV,CAAC,CAAC;AAEH,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC;IACnC,KAAK;IACL,QAAQ;IACR,aAAa;IACb,KAAK;IACL,QAAQ;CACT,CAAC,CAAC;AAEH,MAAM,sBAAsB,GAAG,IAAI,GAAG,CAAC;IACrC,MAAM;IACN,QAAQ;IACR,cAAc;IACd,OAAO;IACP,MAAM;IACN,IAAI;IACJ,QAAQ;CACT,CAAC,CAAC;AAEH,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IACpC,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,WAAW;IACX,IAAI;CACL,CAAC,CAAC;AAEH,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,iBAAiB;IACjB,YAAY;IACZ,gBAAgB;IAChB,aAAa;IACb,OAAO;IACP,KAAK;IACL,QAAQ;IACR,MAAM;IACN,UAAU;IACV,OAAO;IACP,iBAAiB;IACjB,oBAAoB;IACpB,aAAa;IACb,eAAe;IACf,OAAO;IACP,WAAW;IACX,WAAW;CACZ,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,WAAW;IACX,SAAS;IACT,QAAQ;IACR,eAAe;IACf,aAAa;IACb,aAAa;IACb,mBAAmB;IACnB,KAAK;IACL,QAAQ;IACR,WAAW;IACX,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,kBAAkB;IAClB,YAAY;IACZ,WAAW;IACX,MAAM;IACN,QAAQ;CACT,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,MAAM;IACN,SAAS;IACT,SAAS;IACT,OAAO;IACP,QAAQ;IACR,SAAS;IACT,MAAM;IACN,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,SAAS,aAAa,CAAC,IAAY,EAAE,OAAe;IAClD,MAAM,GAAG,GAAG,GAAG,IAAI,IAAI,OAAO,EAAE,CAAC,WAAW,EAAE,CAAC;IAC/C,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACvD,OAAO,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,OAAO,CAAC,WAAW,EAAE,EAAE,GAAG,MAAM,CAAC,CAAC,CAAC;AAC1D,CAAC;AAED,SAAS,MAAM,CAAC,MAAmB,EAAE,UAAuB;IAC1D,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;QACnC,IAAI,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC;YAAE,OAAO,IAAI,CAAC;IACzC,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,OAAqC,EAAE;IAC5D,OAAO,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,iBAAiB,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;AAC3E,CAAC;AAED,SAAS,qBAAqB,CAAC,KAA2B;IACxD,OAAO,CAAC,KAAK,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;AACxD,CAAC;AAED,SAAS,oBAAoB,CAAC,KAA2B;IACvD,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,IAAI,CAAC,mDAAmD,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;QAC3E,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,CAAC,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,sBAAsB,CAAC,OAAuB;IACrD,OAAO,OAAO,KAAK,SAAS,IAAI,OAAO,KAAK,QAAQ,CAAC;AACvD,CAAC;AAED,SAAS,kBAAkB,CAAC,KAA2B;IACrD,IACE,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,MAAM;QACxC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,sBAAsB,CAAC,KAAK,CAAC,aAAa,CAAC,EAC3C,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,CACL,CAAC,KAAK,CAAC,aAAa,KAAK,SAAS,IAAI,KAAK,CAAC,WAAW,KAAK,SAAS,CAAC;QACtE,KAAK,CAAC,aAAa,KAAK,KAAK;QAC7B,KAAK,CAAC,aAAa,KAAK,QAAQ;QAChC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,KAAK,CAAC,OAAO,KAAK,IAAI;QACtB,CAAC,KAAK,CAAC,QAAQ,KAAK,SAAS,IAAI,qBAAqB,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAC5E,CAAC;AACJ,CAAC;AAED,SAAS,oBAAoB,CAC3B,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;IAC5C,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,0BAA0B,CAAC,GAAG,CAAC,OAAO,CAAC;QACvC,MAAM,CAAC,MAAM,EAAE,0BAA0B,CAAC;QAC1C,MAAM,CAAC,MAAM,EAAE,kBAAkB,CAAC;QAClC,0BAA0B,CAAC,IAAI,CAAC,WAAW,CAAC,CAC7C,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAC1B,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,CAAC,MAAM,CAAC,MAAM,EAAE,cAAc,CAAC,IAAI,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7D,6BAA6B,CAAC,IAAI,CAAC,WAAW,CAAC,CAChD,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAC1B,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,CAAC,MAAM,CAAC,MAAM,EAAE,cAAc,CAAC,IAAI,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7D,0BAA0B,CAAC,IAAI,CAAC,WAAW,CAAC;QAC5C,2CAA2C,CAAC,IAAI,CAAC,WAAW,CAAC;QAC7D,sBAAsB,CAAC,IAAI,CAAC,WAAW,CAAC;QACxC,sBAAsB,CAAC,IAAI,CAAC,WAAW,CAAC,CACzC,CAAC;AACJ,CAAC;AAED,SAAS,2BAA2B,CAClC,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,kBAAkB,CAAC,KAAK,CAAC;QACzB,CAAC,MAAM,CAAC,MAAM,EAAE,uBAAuB,CAAC;YACtC,wBAAwB,CAAC,IAAI,CAAC,WAAW,CAAC;YAC1C,qCAAqC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAC3D,CAAC;AACJ,CAAC;AAED,SAAS,yBAAyB,CAChC,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,CAAC,oBAAoB,CAAC,KAAK,EAAE,MAAM,CAAC;YAClC,MAAM,CAAC,MAAM,EAAE,oBAAoB,CAAC;YACpC,4BAA4B,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAClD,CAAC;AACJ,CAAC;AAED,SAAS,0BAA0B,CACjC,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,kBAAkB,CAAC,KAAK,CAAC;QACzB,CAAC,MAAM,CAAC,MAAM,EAAE,sBAAsB,CAAC;YACrC,0CAA0C,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAChE,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,KAAc;IACrC,OAAO,CACL,KAAK,KAAK,KAAK;QACf,KAAK,KAAK,SAAS;QACnB,KAAK,KAAK,QAAQ;QAClB,KAAK,KAAK,QAAQ,CACnB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,KAAc;IACrD,MAAM,UAAU,GAAG,KAAK,IAAI,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC;IAClE,IAAI,UAAU,KAAK,SAAS,IAAI,UAAU,CAAC,IAAI,EAAE,KAAK,EAAE;QAAE,OAAO,MAAM,CAAC;IAExE,MAAM,GAAG,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAC5C,IAAI,aAAa,CAAC,GAAG,CAAC,GAAwB,CAAC,EAAE,CAAC;QAChD,OAAO,GAAwB,CAAC;IAClC,CAAC;IACD,MAAM,IAAI,6BAA6B,CAAC,UAAU,CAAC,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,6BAA6B,CAAC,KAG7C;IACC,IAAI,eAAe,CAAC,KAAK,CAAC,aAAa,CAAC;QAAE,OAAO,KAAK,CAAC,aAAa,CAAC;IACrE,QAAQ,KAAK,CAAC,WAAW,EAAE,CAAC;QAC1B,KAAK,WAAW,CAAC,OAAO;YACtB,OAAO,SAAS,CAAC;QACnB,KAAK,WAAW,CAAC,MAAM,CAAC;QACxB,KAAK,WAAW,CAAC,OAAO;YACtB,OAAO,QAAQ,CAAC;QAClB;YACE,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,2BAA2B,CACzC,IAAY,EACZ,OAAe,EACf,WAAoB;IAEpB,OAAO,WAAW,IAAI,gBAAgB,IAAI,IAAI,OAAO,OAAO,CAAC;AAC/D,CAAC;AAED,MAAM,UAAU,oBAAoB,CAClC,KAA2B;IAE3B,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;IAExD,IAAI,oBAAoB,CAAC,KAAK,CAAC;QAAE,OAAO,MAAM,CAAC;IAC/C,IAAI,MAAM,CAAC,MAAM,EAAE,oBAAoB,CAAC;QAAE,OAAO,eAAe,CAAC;IACjE,IAAI,mBAAmB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,cAAc,CAAC;IAC9D,IAAI,mBAAmB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,iBAAiB,CAAC;IACjE,IAAI,2BAA2B,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,kBAAkB,CAAC;IAC1E,IAAI,yBAAyB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,eAAe,CAAC;IACrE,IAAI,oBAAoB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,aAAa,CAAC;IAC9D,IAAI,0BAA0B,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,iBAAiB,CAAC;IACxE,IAAI,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC;QAAE,OAAO,WAAW,CAAC;IACzD,IACE,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,MAAM,CAAC,MAAM,EAAE,iBAAiB,CAAC,EACjC,CAAC;QACD,OAAO,YAAY,CAAC;IACtB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,MAAuB;IACnD,QAAQ,MAAM,EAAE,CAAC;QACf,KAAK,MAAM;YACT,OAAO,KAAK,CAAC;QACf,KAAK,eAAe,CAAC;QACrB,KAAK,kBAAkB,CAAC;QACxB,KAAK,iBAAiB,CAAC;QACvB,KAAK,WAAW,CAAC;QACjB,KAAK,YAAY,CAAC;QAClB,KAAK,eAAe;YAClB,OAAO,QAAQ,CAAC;QAClB,KAAK,aAAa,CAAC;QACnB,KAAK,eAAe,CAAC;QACrB,KAAK,iBAAiB,CAAC;QACvB,KAAK,cAAc;YACjB,OAAO,MAAM,CAAC;QAChB;YACE,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAS,gBAAgB,CACvB,OAA0B,EAC1B,IAAmB;IAEnB,IAAI,OAAO,KAAK,MAAM;QAAE,OAAO,KAAK,CAAC;IACrC,IAAI,OAAO,KAAK,SAAS;QAAE,OAAO,IAAI,KAAK,MAAM,CAAC;IAClD,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,MAAM,CAAC;AAC9C,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,KAA2B;IAE3B,MAAM,OAAO,GAAG,wBAAwB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACxD,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;IAC3C,MAAM,IAAI,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IACnC,MAAM,QAAQ,GACZ,KAAK,CAAC,QAAQ,KAAK,IAAI,IAAI,OAAO,CAAC,GAAG,CAAC,cAAc,KAAK,GAAG,CAAC;IAChE,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAC1D,MAAM,WAAW,GACf,iBAAiB,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,OAAO,CAAC;IAC9D,MAAM,gBAAgB,GAAG,qBAAqB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAC9D,MAAM,eAAe,GAAG,6BAA6B,CAAC;QACpD,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,OAAO;QACP,MAAM;QACN,QAAQ;QACR,KAAK,EAAE,gBAAgB;KACxB,CAAC,CAAC;IACH,MAAM,MAAM,GACV,MAAM,KAAK,MAAM;QACf,CAAC,CAAC,6CAA6C;QAC/C,CAAC,CAAC,iBAAiB,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,GAAG,CAAC,SAAS,IAAI,OAAO,CAAC;IAEvE,OAAO;QACL,OAAO;QACP,MAAM;QACN,IAAI;QACJ,gBAAgB;QAChB,eAAe;QACf,iBAAiB;QACjB,QAAQ;QACR,WAAW;QACX,MAAM;QACN,GAAG,CAAC,WAAW,KAAK,gBAAgB;YAClC,CAAC,CAAC;gBACE,aAAa,EACX,0EAA0E;aAC7E;YACH,CAAC,CAAC,EAAE,CAAC;KACR,CAAC;AACJ,CAAC"}
+{"version":3,"file":"operation-policy.js","sourceRoot":"","sources":["../../src/engine/operation-policy.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,WAAW,EAAsB,MAAM,aAAa,CAAC;AAC9D,OAAO,EACL,6BAA6B,EAC7B,qBAAqB,GACtB,MAAM,wBAAwB,CAAC;AAuDhC,MAAM,OAAO,6BAA8B,SAAQ,KAAK;IACtD,YAAY,OAAe;QACzB,KAAK,CACH,+BAA+B,OAAO,2CAA2C,CAClF,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,+BAA+B,CAAC;IAC9C,CAAC;CACF;AAED,MAAM,aAAa,GAAG,IAAI,GAAG,CAAoB,CAAC,MAAM,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC;AAEhF,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC;IAC7B,KAAK;IACL,IAAI;IACJ,OAAO;IACP,WAAW;IACX,eAAe;IACf,OAAO;IACP,UAAU;IACV,MAAM;CACP,CAAC,CAAC;AAEH,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC;IAC7B,SAAS;IACT,cAAc;IACd,OAAO;IACP,MAAM;IACN,SAAS;IACT,MAAM;IACN,QAAQ;IACR,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC;IACnC,QAAQ;IACR,YAAY;IACZ,OAAO;IACP,UAAU;IACV,MAAM;IACN,QAAQ;IACR,YAAY;IACZ,MAAM;IACN,UAAU;IACV,aAAa;IACb,MAAM;IACN,KAAK;IACL,MAAM;IACN,MAAM;IACN,WAAW;IACX,SAAS;IACT,YAAY;IACZ,UAAU;IACV,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,MAAM;CACP,CAAC,CAAC;AAEH,MAAM,0BAA0B,GAAG,IAAI,GAAG,CAAC;IACzC,QAAQ;IACR,aAAa;IACb,SAAS;IACT,aAAa;IACb,IAAI;IACJ,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,MAAM,kBAAkB,GAAG,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;AAE5E,MAAM,uBAAuB,GAAG,IAAI,GAAG,CAAC;IACtC,YAAY;IACZ,WAAW;IACX,gBAAgB;IAChB,WAAW;IACX,SAAS;IACT,QAAQ;IACR,SAAS;CACV,CAAC,CAAC;AAEH,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC;IACnC,KAAK;IACL,QAAQ;IACR,aAAa;IACb,KAAK;IACL,QAAQ;CACT,CAAC,CAAC;AAEH,MAAM,sBAAsB,GAAG,IAAI,GAAG,CAAC;IACrC,MAAM;IACN,QAAQ;IACR,cAAc;IACd,OAAO;IACP,MAAM;IACN,IAAI;IACJ,QAAQ;CACT,CAAC,CAAC;AAEH,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IACpC,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,WAAW;IACX,IAAI;CACL,CAAC,CAAC;AAEH,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC;IAC/B,iBAAiB;IACjB,YAAY;IACZ,gBAAgB;IAChB,aAAa;IACb,OAAO;IACP,KAAK;IACL,QAAQ;IACR,MAAM;IACN,UAAU;IACV,OAAO;IACP,iBAAiB;IACjB,oBAAoB;IACpB,aAAa;IACb,eAAe;IACf,OAAO;IACP,WAAW;IACX,WAAW;CACZ,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,WAAW;IACX,SAAS;IACT,QAAQ;IACR,eAAe;IACf,aAAa;IACb,aAAa;IACb,mBAAmB;IACnB,KAAK;IACL,QAAQ;IACR,WAAW;IACX,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,kBAAkB;IAClB,YAAY;IACZ,WAAW;IACX,MAAM;IACN,QAAQ;CACT,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,MAAM;IACN,SAAS;IACT,SAAS;IACT,OAAO;IACP,QAAQ;IACR,SAAS;IACT,MAAM;IACN,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,SAAS,aAAa,CAAC,IAAY,EAAE,OAAe;IAClD,MAAM,GAAG,GAAG,GAAG,IAAI,IAAI,OAAO,EAAE,CAAC,WAAW,EAAE,CAAC;IAC/C,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACvD,OAAO,IAAI,GAAG,CAAC,CAAC,GAAG,EAAE,OAAO,CAAC,WAAW,EAAE,EAAE,GAAG,MAAM,CAAC,CAAC,CAAC;AAC1D,CAAC;AAED,SAAS,MAAM,CAAC,MAAmB,EAAE,UAAuB;IAC1D,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;QACnC,IAAI,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC;YAAE,OAAO,IAAI,CAAC;IACzC,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,OAAqC,EAAE;IAC5D,OAAO,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,iBAAiB,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;AAC3E,CAAC;AAED,SAAS,qBAAqB,CAAC,KAA2B;IACxD,OAAO,CAAC,KAAK,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;AACxD,CAAC;AAED,SAAS,oBAAoB,CAAC,KAA2B;IACvD,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,IAAI,CAAC,mDAAmD,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;QAC3E,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,CAAC,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,sBAAsB,CAAC,OAAuB;IACrD,OAAO,OAAO,KAAK,SAAS,IAAI,OAAO,KAAK,QAAQ,CAAC;AACvD,CAAC;AAED,SAAS,kBAAkB,CAAC,KAA2B;IACrD,IACE,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,MAAM;QACxC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,sBAAsB,CAAC,KAAK,CAAC,aAAa,CAAC,EAC3C,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,CACL,CAAC,KAAK,CAAC,aAAa,KAAK,SAAS,IAAI,KAAK,CAAC,WAAW,KAAK,SAAS,CAAC;QACtE,KAAK,CAAC,aAAa,KAAK,KAAK;QAC7B,KAAK,CAAC,aAAa,KAAK,QAAQ;QAChC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,KAAK,CAAC,OAAO,KAAK,IAAI;QACtB,CAAC,KAAK,CAAC,QAAQ,KAAK,SAAS,IAAI,qBAAqB,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAC5E,CAAC;AACJ,CAAC;AAED,SAAS,oBAAoB,CAC3B,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;IAC5C,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,0BAA0B,CAAC,GAAG,CAAC,OAAO,CAAC;QACvC,MAAM,CAAC,MAAM,EAAE,0BAA0B,CAAC;QAC1C,MAAM,CAAC,MAAM,EAAE,kBAAkB,CAAC;QAClC,0BAA0B,CAAC,IAAI,CAAC,WAAW,CAAC,CAC7C,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAC1B,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,CAAC,MAAM,CAAC,MAAM,EAAE,cAAc,CAAC,IAAI,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7D,6BAA6B,CAAC,IAAI,CAAC,WAAW,CAAC,CAChD,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAC1B,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,CAAC,MAAM,CAAC,MAAM,EAAE,cAAc,CAAC,IAAI,aAAa,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC7D,0BAA0B,CAAC,IAAI,CAAC,WAAW,CAAC;QAC5C,2CAA2C,CAAC,IAAI,CAAC,WAAW,CAAC;QAC7D,sBAAsB,CAAC,IAAI,CAAC,WAAW,CAAC;QACxC,sBAAsB,CAAC,IAAI,CAAC,WAAW,CAAC,CACzC,CAAC;AACJ,CAAC;AAED,SAAS,2BAA2B,CAClC,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,kBAAkB,CAAC,KAAK,CAAC;QACzB,CAAC,MAAM,CAAC,MAAM,EAAE,uBAAuB,CAAC;YACtC,wBAAwB,CAAC,IAAI,CAAC,WAAW,CAAC;YAC1C,qCAAqC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAC3D,CAAC;AACJ,CAAC;AAED,SAAS,yBAAyB,CAChC,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,CAAC,oBAAoB,CAAC,KAAK,EAAE,MAAM,CAAC;YAClC,MAAM,CAAC,MAAM,EAAE,oBAAoB,CAAC;YACpC,4BAA4B,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAClD,CAAC;AACJ,CAAC;AAED,SAAS,0BAA0B,CACjC,KAA2B,EAC3B,MAAmB;IAEnB,MAAM,WAAW,GAAG,qBAAqB,CAAC,KAAK,CAAC,CAAC;IACjD,OAAO,CACL,kBAAkB,CAAC,KAAK,CAAC;QACzB,CAAC,MAAM,CAAC,MAAM,EAAE,sBAAsB,CAAC;YACrC,0CAA0C,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAChE,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,KAAc;IACrC,OAAO,CACL,KAAK,KAAK,KAAK;QACf,KAAK,KAAK,SAAS;QACnB,KAAK,KAAK,QAAQ;QAClB,KAAK,KAAK,QAAQ,CACnB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,wBAAwB,CAAC,KAAc;IACrD,MAAM,UAAU,GAAG,KAAK,IAAI,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC;IAClE,IAAI,UAAU,KAAK,SAAS,IAAI,UAAU,CAAC,IAAI,EAAE,KAAK,EAAE;QAAE,OAAO,MAAM,CAAC;IAExE,MAAM,GAAG,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAC5C,IAAI,aAAa,CAAC,GAAG,CAAC,GAAwB,CAAC,EAAE,CAAC;QAChD,OAAO,GAAwB,CAAC;IAClC,CAAC;IACD,MAAM,IAAI,6BAA6B,CAAC,UAAU,CAAC,CAAC;AACtD,CAAC;AAED,MAAM,UAAU,6BAA6B,CAAC,KAG7C;IACC,IAAI,eAAe,CAAC,KAAK,CAAC,aAAa,CAAC;QAAE,OAAO,KAAK,CAAC,aAAa,CAAC;IACrE,QAAQ,KAAK,CAAC,WAAW,EAAE,CAAC;QAC1B,KAAK,WAAW,CAAC,OAAO;YACtB,OAAO,SAAS,CAAC;QACnB,KAAK,WAAW,CAAC,MAAM,CAAC;QACxB,KAAK,WAAW,CAAC,OAAO;YACtB,OAAO,QAAQ,CAAC;QAClB;YACE,OAAO,KAAK,CAAC;IACjB,CAAC;AACH,CAAC;AAED,MAAM,UAAU,2BAA2B,CACzC,IAAY,EACZ,OAAe,EACf,WAAoB;IAEpB,OAAO,WAAW,IAAI,gBAAgB,IAAI,IAAI,OAAO,OAAO,CAAC;AAC/D,CAAC;AAED,MAAM,UAAU,oBAAoB,CAClC,KAA2B;IAE3B,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,CAAC,IAAI,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;IAExD,IAAI,oBAAoB,CAAC,KAAK,CAAC;QAAE,OAAO,MAAM,CAAC;IAC/C,IAAI,MAAM,CAAC,MAAM,EAAE,oBAAoB,CAAC;QAAE,OAAO,eAAe,CAAC;IACjE,IAAI,mBAAmB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,cAAc,CAAC;IAC9D,IAAI,mBAAmB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,iBAAiB,CAAC;IACjE,IAAI,2BAA2B,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,kBAAkB,CAAC;IAC1E,IAAI,yBAAyB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,eAAe,CAAC;IACrE,IAAI,oBAAoB,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,aAAa,CAAC;IAC9D,IAAI,0BAA0B,CAAC,KAAK,EAAE,MAAM,CAAC;QAAE,OAAO,iBAAiB,CAAC;IACxE,IAAI,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC;QAAE,OAAO,WAAW,CAAC;IACzD,IACE,KAAK,CAAC,WAAW,KAAK,WAAW,CAAC,OAAO;QACzC,MAAM,CAAC,MAAM,EAAE,iBAAiB,CAAC,EACjC,CAAC;QACD,OAAO,YAAY,CAAC;IACtB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,aAAa,CAAC,MAAuB;IACnD,QAAQ,MAAM,EAAE,CAAC;QACf,KAAK,MAAM;YACT,OAAO,KAAK,CAAC;QACf,KAAK,eAAe,CAAC;QACrB,KAAK,kBAAkB,CAAC;QACxB,KAAK,iBAAiB,CAAC;QACvB,KAAK,WAAW,CAAC;QACjB,KAAK,YAAY,CAAC;QAClB,KAAK,eAAe;YAClB,OAAO,QAAQ,CAAC;QAClB,KAAK,aAAa,CAAC;QACnB,KAAK,eAAe,CAAC;QACrB,KAAK,iBAAiB,CAAC;QACvB,KAAK,cAAc;YACjB,OAAO,MAAM,CAAC;QAChB;YACE,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAED,SAAS,gBAAgB,CACvB,OAA0B,EAC1B,IAAmB;IAEnB,IAAI,OAAO,KAAK,MAAM;QAAE,OAAO,KAAK,CAAC;IACrC,IAAI,OAAO,KAAK,SAAS;QAAE,OAAO,IAAI,KAAK,MAAM,CAAC;IAClD,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,MAAM,CAAC;AAC9C,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,KAA2B;IAE3B,MAAM,OAAO,GAAG,wBAAwB,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACxD,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;IAC3C,MAAM,IAAI,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IACnC,MAAM,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,KAAK,GAAG,CAAC;IACvD,MAAM,cAAc,GAClB,KAAK,CAAC,cAAc;QACpB,CAAC,KAAK,CAAC,QAAQ,KAAK,IAAI,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IAC1E,MAAM,QAAQ,GACZ,KAAK,CAAC,QAAQ,KAAK,IAAI,IAAI,WAAW,IAAI,cAAc,KAAK,QAAQ,CAAC;IACxE,MAAM,iBAAiB,GAAG,gBAAgB,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;IAC1D,MAAM,WAAW,GACf,iBAAiB,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,OAAO,CAAC;IAC9D,MAAM,gBAAgB,GAAG,qBAAqB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;IAC9D,MAAM,eAAe,GAAG,6BAA6B,CAAC;QACpD,IAAI,EAAE,KAAK,CAAC,IAAI;QAChB,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,OAAO;QACP,MAAM;QACN,QAAQ;QACR,cAAc;QACd,KAAK,EAAE,gBAAgB;KACxB,CAAC,CAAC;IACH,MAAM,MAAM,GACV,MAAM,KAAK,MAAM;QACf,CAAC,CAAC,6CAA6C;QAC/C,CAAC,CAAC,iBAAiB,MAAM,CAAC,UAAU,CAAC,GAAG,EAAE,GAAG,CAAC,SAAS,IAAI,OAAO,CAAC;IAEvE,OAAO;QACL,OAAO;QACP,MAAM;QACN,IAAI;QACJ,gBAAgB;QAChB,eAAe;QACf,iBAAiB;QACjB,QAAQ;QACR,WAAW;QACX,MAAM;QACN,GAAG,CAAC,WAAW,KAAK,gBAAgB;YAClC,CAAC,CAAC;gBACE,aAAa,EACX,iIAAiI;aACpI;YACH,CAAC,CAAC,EAAE,CAAC;KACR,CAAC;AACJ,CAAC"}

package/dist/engine/permission-rules.d.ts

@@ -0,0 +1,43 @@
+import type { CapabilityAccess, CapabilityDimensionName, CapabilityResourceScope } from "./capability-policy.js";
+import type { OperationEffect, OperationPolicy } from "./operation-policy.js";
+export interface PermissionRuleMatchResult {
+    decision: "deny";
+    id: string;
+    reason: string;
+}
+export declare class PermissionRulesConfigError extends Error {
+    readonly code = "invalid_input";
+    readonly suggestion = "fix or remove the permission rules file";
+    constructor(message: string);
+}
+interface PermissionRulesStore {
+    path: string;
+}
+type ResourceBucketName = keyof CapabilityResourceScope;
+export interface RuntimeResourceCheckInput {
+    site?: string;
+    command?: string;
+    effect?: OperationEffect;
+    dimensions?: Partial<Record<CapabilityDimensionName, CapabilityAccess>>;
+    resources?: Partial<Record<ResourceBucketName, string[]>>;
+    resource_summary?: string[];
+}
+export declare function createPermissionRulesStore(options?: {
+    path?: string;
+    homeDir?: string;
+}): PermissionRulesStore;
+export declare function findDenyRuleForPolicy(policy: OperationPolicy, options?: {
+    path?: string;
+    homeDir?: string;
+}): Promise<PermissionRuleMatchResult | undefined>;
+export declare function applyDenyRuleToPolicy(policy: OperationPolicy, rule: PermissionRuleMatchResult): OperationPolicy;
+export declare function findDenyRuleForPolicySync(policy: OperationPolicy, options?: {
+    path?: string;
+    homeDir?: string;
+}): PermissionRuleMatchResult | undefined;
+export declare function findDenyRuleForRuntimeResourceSync(input: RuntimeResourceCheckInput, options?: {
+    path?: string;
+    homeDir?: string;
+}): PermissionRuleMatchResult | undefined;
+export {};
+//# sourceMappingURL=permission-rules.d.ts.map

package/dist/engine/permission-rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission-rules.d.ts","sourceRoot":"","sources":["../../src/engine/permission-rules.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EACV,gBAAgB,EAChB,uBAAuB,EACvB,uBAAuB,EACxB,MAAM,wBAAwB,CAAC;AAChC,OAAO,KAAK,EAAE,eAAe,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAG9E,MAAM,WAAW,yBAAyB;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,qBAAa,0BAA2B,SAAQ,KAAK;IACnD,QAAQ,CAAC,IAAI,mBAAmB;IAChC,QAAQ,CAAC,UAAU,6CAA6C;gBAEpD,OAAO,EAAE,MAAM;CAI5B;AAED,UAAU,oBAAoB;IAC5B,IAAI,EAAE,MAAM,CAAC;CACd;AAED,KAAK,kBAAkB,GAAG,MAAM,uBAAuB,CAAC;AAExD,MAAM,WAAW,yBAAyB;IACxC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,eAAe,CAAC;IACzB,UAAU,CAAC,EAAE,OAAO,CAAC,MAAM,CAAC,uBAAuB,EAAE,gBAAgB,CAAC,CAAC,CAAC;IACxE,SAAS,CAAC,EAAE,OAAO,CAAC,MAAM,CAAC,kBAAkB,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC;IAC1D,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;CAC7B;AA+DD,wBAAgB,0BAA0B,CAAC,OAAO,CAAC,EAAE;IACnD,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB,GAAG,oBAAoB,CAavB;AAED,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,eAAe,EACvB,OAAO,CAAC,EAAE;IAAE,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAA;CAAE,GAC5C,OAAO,CAAC,yBAAyB,GAAG,SAAS,CAAC,CAEhD;AAED,wBAAgB,qBAAqB,CACnC,MAAM,EAAE,eAAe,EACvB,IAAI,EAAE,yBAAyB,GAC9B,eAAe,CAcjB;AAED,wBAAgB,yBAAyB,CACvC,MAAM,EAAE,eAAe,EACvB,OAAO,CAAC,EAAE;IAAE,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAA;CAAE,GAC5C,yBAAyB,GAAG,SAAS,CAUvC;AAED,wBAAgB,kCAAkC,CAChD,KAAK,EAAE,yBAAyB,EAChC,OAAO,CAAC,EAAE;IAAE,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAA;CAAE,GAC5C,yBAAyB,GAAG,SAAS,CAUvC"}