agentfootprint 6.9.0 → 6.10.0

package/dist/adapters/identity/agentcore.js

@@ -0,0 +1,84 @@
+"use strict";
+/**
+ * agentCoreIdentity — AWS Bedrock AgentCore Identity adapter (peer-dep
+ * `@aws-sdk/client-bedrock-agentcore`).
+ *
+ *   import { agentCoreIdentity } from 'agentfootprint/identity';
+ *   const credentials = agentCoreIdentity({ region: 'us-east-1' });
+ *
+ * Maps the {@link CredentialProvider} port onto AgentCore Identity's
+ * `GetResourceOauth2Token` (the SDK's `@requires_access_token` underneath):
+ *   - request.mode 'machine' → `M2M`; 'user' → `USER_FEDERATION`
+ *   - request.service        → the configured OAuth2 credential-provider name
+ *   - a returned access token → `{ status: 'token' }`
+ *   - a returned auth URL     → `{ status: 'authorization-required' }` (3LO consent)
+ *
+ * The token vault + refresh-token handling live in AgentCore, so repeat calls
+ * usually return a token directly (no consent round-trip).
+ *
+ * Pattern: Adapter (GoF) + lazy peer-dep load — the AWS SDK is required only when
+ * `getCredential` first runs (or never, if you inject `_client`). NOTE: confirm
+ * the SDK command/field names against your installed
+ * `@aws-sdk/client-bedrock-agentcore` version — this adapter targets the
+ * `GetResourceOauth2Token` shape and is structured so the request→result mapping
+ * is unit-tested via the `_client` seam independent of the SDK.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.agentCoreIdentity = void 0;
+const lazyRequire_js_1 = require("../../lib/lazyRequire.js");
+function resolveClient(options) {
+    if (options._client)
+        return options._client;
+    // Lazy peer-dep: only loaded when no _client is injected and getCredential runs.
+    const sdk = (0, lazyRequire_js_1.lazyRequire)('@aws-sdk/client-bedrock-agentcore');
+    const Ctor = sdk.BedrockAgentCoreClient;
+    if (!Ctor) {
+        throw new Error('agentCoreIdentity: @aws-sdk/client-bedrock-agentcore did not expose BedrockAgentCoreClient. ' +
+            'Install/upgrade the SDK, or pass `_client` for a custom integration.');
+    }
+    const client = new Ctor({ ...(options.region && { region: options.region }) });
+    if (typeof client.getResourceOauth2Token !== 'function') {
+        throw new Error('agentCoreIdentity: the SDK client has no getResourceOauth2Token. Confirm the ' +
+            '@aws-sdk/client-bedrock-agentcore version, or pass `_client`.');
+    }
+    return {
+        getResourceOauth2Token: (input) => client.getResourceOauth2Token(input),
+    };
+}
+/** Build a {@link CredentialProvider} backed by AWS Bedrock AgentCore Identity. */
+function agentCoreIdentity(options = {}) {
+    let client;
+    const getClient = () => (client ??= resolveClient(options));
+    return {
+        id: options.id ?? 'agentcore-identity',
+        async getCredential(req) {
+            const res = await getClient().getResourceOauth2Token({
+                resourceCredentialProviderName: req.service,
+                scopes: req.scopes ?? [],
+                oauth2Flow: req.mode === 'user' ? 'USER_FEDERATION' : 'M2M',
+                forceAuthentication: req.forceReauth ?? false,
+                ...(options.workloadIdentityToken && {
+                    workloadIdentityToken: options.workloadIdentityToken,
+                }),
+            });
+            if (res.accessToken) {
+                return {
+                    status: 'token',
+                    token: res.accessToken,
+                    ...(res.expiresAt !== undefined && { expiresAt: res.expiresAt }),
+                };
+            }
+            if (res.authorizationUrl) {
+                return {
+                    status: 'authorization-required',
+                    authorizationUrl: res.authorizationUrl,
+                    sessionId: res.sessionId ?? '',
+                };
+            }
+            throw new Error(`agentCoreIdentity: GetResourceOauth2Token for '${req.service}' returned neither ` +
+                'an access token nor an authorization URL.');
+        },
+    };
+}
+exports.agentCoreIdentity = agentCoreIdentity;
+//# sourceMappingURL=agentcore.js.map

package/dist/adapters/identity/agentcore.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agentcore.js","sourceRoot":"","sources":["../../../src/adapters/identity/agentcore.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;;;AAEH,6DAAuD;AAuCvD,SAAS,aAAa,CAAC,OAAiC;IACtD,IAAI,OAAO,CAAC,OAAO;QAAE,OAAO,OAAO,CAAC,OAAO,CAAC;IAC5C,iFAAiF;IACjF,MAAM,GAAG,GAAG,IAAA,4BAAW,EAA0B,mCAAmC,CAAC,CAAC;IACtF,MAAM,IAAI,GAAG,GAAG,CAAC,sBAEJ,CAAC;IACd,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,IAAI,KAAK,CACb,8FAA8F;YAC5F,sEAAsE,CACzE,CAAC;IACJ,CAAC;IACD,MAAM,MAAM,GAAG,IAAI,IAAI,CAAC,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,CAE5E,CAAC;IACF,IAAI,OAAO,MAAM,CAAC,sBAAsB,KAAK,UAAU,EAAE,CAAC;QACxD,MAAM,IAAI,KAAK,CACb,+EAA+E;YAC7E,+DAA+D,CAClE,CAAC;IACJ,CAAC;IACD,OAAO;QACL,sBAAsB,EAAE,CAAC,KAAK,EAAE,EAAE,CAChC,MAAM,CAAC,sBAAuB,CAAC,KAAK,CAAoC;KAC3E,CAAC;AACJ,CAAC;AAED,mFAAmF;AACnF,SAAgB,iBAAiB,CAAC,UAAoC,EAAE;IACtE,IAAI,MAA+C,CAAC;IACpD,MAAM,SAAS,GAAG,GAAgC,EAAE,CAAC,CAAC,MAAM,KAAK,aAAa,CAAC,OAAO,CAAC,CAAC,CAAC;IAEzF,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,oBAAoB;QACtC,KAAK,CAAC,aAAa,CAAC,GAAsB;YACxC,MAAM,GAAG,GAAG,MAAM,SAAS,EAAE,CAAC,sBAAsB,CAAC;gBACnD,8BAA8B,EAAE,GAAG,CAAC,OAAO;gBAC3C,MAAM,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE;gBACxB,UAAU,EAAE,GAAG,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,KAAK;gBAC3D,mBAAmB,EAAE,GAAG,CAAC,WAAW,IAAI,KAAK;gBAC7C,GAAG,CAAC,OAAO,CAAC,qBAAqB,IAAI;oBACnC,qBAAqB,EAAE,OAAO,CAAC,qBAAqB;iBACrD,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;gBACpB,OAAO;oBACL,MAAM,EAAE,OAAO;oBACf,KAAK,EAAE,GAAG,CAAC,WAAW;oBACtB,GAAG,CAAC,GAAG,CAAC,SAAS,KAAK,SAAS,IAAI,EAAE,SAAS,EAAE,GAAG,CAAC,SAAS,EAAE,CAAC;iBACjE,CAAC;YACJ,CAAC;YACD,IAAI,GAAG,CAAC,gBAAgB,EAAE,CAAC;gBACzB,OAAO;oBACL,MAAM,EAAE,wBAAwB;oBAChC,gBAAgB,EAAE,GAAG,CAAC,gBAAgB;oBACtC,SAAS,EAAE,GAAG,CAAC,SAAS,IAAI,EAAE;iBAC/B,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,KAAK,CACb,kDAAkD,GAAG,CAAC,OAAO,qBAAqB;gBAChF,2CAA2C,CAC9C,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC;AArCD,8CAqCC"}

package/dist/esm/adapters/identity/agentcore.js

@@ -0,0 +1,80 @@
+/**
+ * agentCoreIdentity — AWS Bedrock AgentCore Identity adapter (peer-dep
+ * `@aws-sdk/client-bedrock-agentcore`).
+ *
+ *   import { agentCoreIdentity } from 'agentfootprint/identity';
+ *   const credentials = agentCoreIdentity({ region: 'us-east-1' });
+ *
+ * Maps the {@link CredentialProvider} port onto AgentCore Identity's
+ * `GetResourceOauth2Token` (the SDK's `@requires_access_token` underneath):
+ *   - request.mode 'machine' → `M2M`; 'user' → `USER_FEDERATION`
+ *   - request.service        → the configured OAuth2 credential-provider name
+ *   - a returned access token → `{ status: 'token' }`
+ *   - a returned auth URL     → `{ status: 'authorization-required' }` (3LO consent)
+ *
+ * The token vault + refresh-token handling live in AgentCore, so repeat calls
+ * usually return a token directly (no consent round-trip).
+ *
+ * Pattern: Adapter (GoF) + lazy peer-dep load — the AWS SDK is required only when
+ * `getCredential` first runs (or never, if you inject `_client`). NOTE: confirm
+ * the SDK command/field names against your installed
+ * `@aws-sdk/client-bedrock-agentcore` version — this adapter targets the
+ * `GetResourceOauth2Token` shape and is structured so the request→result mapping
+ * is unit-tested via the `_client` seam independent of the SDK.
+ */
+import { lazyRequire } from '../../lib/lazyRequire.js';
+function resolveClient(options) {
+    if (options._client)
+        return options._client;
+    // Lazy peer-dep: only loaded when no _client is injected and getCredential runs.
+    const sdk = lazyRequire('@aws-sdk/client-bedrock-agentcore');
+    const Ctor = sdk.BedrockAgentCoreClient;
+    if (!Ctor) {
+        throw new Error('agentCoreIdentity: @aws-sdk/client-bedrock-agentcore did not expose BedrockAgentCoreClient. ' +
+            'Install/upgrade the SDK, or pass `_client` for a custom integration.');
+    }
+    const client = new Ctor({ ...(options.region && { region: options.region }) });
+    if (typeof client.getResourceOauth2Token !== 'function') {
+        throw new Error('agentCoreIdentity: the SDK client has no getResourceOauth2Token. Confirm the ' +
+            '@aws-sdk/client-bedrock-agentcore version, or pass `_client`.');
+    }
+    return {
+        getResourceOauth2Token: (input) => client.getResourceOauth2Token(input),
+    };
+}
+/** Build a {@link CredentialProvider} backed by AWS Bedrock AgentCore Identity. */
+export function agentCoreIdentity(options = {}) {
+    let client;
+    const getClient = () => (client ??= resolveClient(options));
+    return {
+        id: options.id ?? 'agentcore-identity',
+        async getCredential(req) {
+            const res = await getClient().getResourceOauth2Token({
+                resourceCredentialProviderName: req.service,
+                scopes: req.scopes ?? [],
+                oauth2Flow: req.mode === 'user' ? 'USER_FEDERATION' : 'M2M',
+                forceAuthentication: req.forceReauth ?? false,
+                ...(options.workloadIdentityToken && {
+                    workloadIdentityToken: options.workloadIdentityToken,
+                }),
+            });
+            if (res.accessToken) {
+                return {
+                    status: 'token',
+                    token: res.accessToken,
+                    ...(res.expiresAt !== undefined && { expiresAt: res.expiresAt }),
+                };
+            }
+            if (res.authorizationUrl) {
+                return {
+                    status: 'authorization-required',
+                    authorizationUrl: res.authorizationUrl,
+                    sessionId: res.sessionId ?? '',
+                };
+            }
+            throw new Error(`agentCoreIdentity: GetResourceOauth2Token for '${req.service}' returned neither ` +
+                'an access token nor an authorization URL.');
+        },
+    };
+}
+//# sourceMappingURL=agentcore.js.map

package/dist/esm/adapters/identity/agentcore.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agentcore.js","sourceRoot":"","sources":["../../../../src/adapters/identity/agentcore.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AAuCvD,SAAS,aAAa,CAAC,OAAiC;IACtD,IAAI,OAAO,CAAC,OAAO;QAAE,OAAO,OAAO,CAAC,OAAO,CAAC;IAC5C,iFAAiF;IACjF,MAAM,GAAG,GAAG,WAAW,CAA0B,mCAAmC,CAAC,CAAC;IACtF,MAAM,IAAI,GAAG,GAAG,CAAC,sBAEJ,CAAC;IACd,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,MAAM,IAAI,KAAK,CACb,8FAA8F;YAC5F,sEAAsE,CACzE,CAAC;IACJ,CAAC;IACD,MAAM,MAAM,GAAG,IAAI,IAAI,CAAC,EAAE,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,CAE5E,CAAC;IACF,IAAI,OAAO,MAAM,CAAC,sBAAsB,KAAK,UAAU,EAAE,CAAC;QACxD,MAAM,IAAI,KAAK,CACb,+EAA+E;YAC7E,+DAA+D,CAClE,CAAC;IACJ,CAAC;IACD,OAAO;QACL,sBAAsB,EAAE,CAAC,KAAK,EAAE,EAAE,CAChC,MAAM,CAAC,sBAAuB,CAAC,KAAK,CAAoC;KAC3E,CAAC;AACJ,CAAC;AAED,mFAAmF;AACnF,MAAM,UAAU,iBAAiB,CAAC,UAAoC,EAAE;IACtE,IAAI,MAA+C,CAAC;IACpD,MAAM,SAAS,GAAG,GAAgC,EAAE,CAAC,CAAC,MAAM,KAAK,aAAa,CAAC,OAAO,CAAC,CAAC,CAAC;IAEzF,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,oBAAoB;QACtC,KAAK,CAAC,aAAa,CAAC,GAAsB;YACxC,MAAM,GAAG,GAAG,MAAM,SAAS,EAAE,CAAC,sBAAsB,CAAC;gBACnD,8BAA8B,EAAE,GAAG,CAAC,OAAO;gBAC3C,MAAM,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE;gBACxB,UAAU,EAAE,GAAG,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,KAAK;gBAC3D,mBAAmB,EAAE,GAAG,CAAC,WAAW,IAAI,KAAK;gBAC7C,GAAG,CAAC,OAAO,CAAC,qBAAqB,IAAI;oBACnC,qBAAqB,EAAE,OAAO,CAAC,qBAAqB;iBACrD,CAAC;aACH,CAAC,CAAC;YAEH,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;gBACpB,OAAO;oBACL,MAAM,EAAE,OAAO;oBACf,KAAK,EAAE,GAAG,CAAC,WAAW;oBACtB,GAAG,CAAC,GAAG,CAAC,SAAS,KAAK,SAAS,IAAI,EAAE,SAAS,EAAE,GAAG,CAAC,SAAS,EAAE,CAAC;iBACjE,CAAC;YACJ,CAAC;YACD,IAAI,GAAG,CAAC,gBAAgB,EAAE,CAAC;gBACzB,OAAO;oBACL,MAAM,EAAE,wBAAwB;oBAChC,gBAAgB,EAAE,GAAG,CAAC,gBAAgB;oBACtC,SAAS,EAAE,GAAG,CAAC,SAAS,IAAI,EAAE;iBAC/B,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,KAAK,CACb,kDAAkD,GAAG,CAAC,OAAO,qBAAqB;gBAChF,2CAA2C,CAC9C,CAAC;QACJ,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/esm/identity/staticTokens.js

@@ -0,0 +1,33 @@
+/**
+ * staticTokens — a dev/test {@link CredentialProvider} backed by canned tokens.
+ *
+ * No network, no SDK. Use it to develop tools that need credentials without
+ * standing up AgentCore Identity (or any IdP). Production swaps it for
+ * `agentCoreIdentity()` — the tool code never changes.
+ *
+ *   const credentials = staticTokens({ github: 'ghp_dev_xxx', slack: 'xoxb-dev' });
+ *   const r = await credentials.getCredential({ service: 'github' });
+ *   if (r.status === 'token') useHeader(`Bearer ${r.token}`);
+ */
+/**
+ * Build a {@link CredentialProvider} from a `service → token` map. Always 2-legged
+ * (returns the token directly); throws if a requested service has no token.
+ */
+export function staticTokens(tokens, options = {}) {
+    return {
+        id: options.id ?? 'static-tokens',
+        getCredential(req) {
+            const token = tokens[req.service];
+            if (!token) {
+                return Promise.reject(new Error(`staticTokens: no token configured for service '${req.service}'. ` +
+                    `Known services: ${Object.keys(tokens).join(', ') || '(none)'}.`));
+            }
+            return Promise.resolve({
+                status: 'token',
+                token,
+                ...(options.expiresAt !== undefined && { expiresAt: options.expiresAt }),
+            });
+        },
+    };
+}
+//# sourceMappingURL=staticTokens.js.map

package/dist/esm/identity/staticTokens.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"staticTokens.js","sourceRoot":"","sources":["../../../src/identity/staticTokens.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAWH;;;GAGG;AACH,MAAM,UAAU,YAAY,CAC1B,MAAwC,EACxC,UAA+B,EAAE;IAEjC,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,eAAe;QACjC,aAAa,CAAC,GAAG;YACf,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAClC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,OAAO,CAAC,MAAM,CACnB,IAAI,KAAK,CACP,kDAAkD,GAAG,CAAC,OAAO,KAAK;oBAChE,mBAAmB,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,QAAQ,GAAG,CACnE,CACF,CAAC;YACJ,CAAC;YACD,OAAO,OAAO,CAAC,OAAO,CAAC;gBACrB,MAAM,EAAE,OAAO;gBACf,KAAK;gBACL,GAAG,CAAC,OAAO,CAAC,SAAS,KAAK,SAAS,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC;aACzE,CAAC,CAAC;QACL,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/esm/identity/types.js

@@ -0,0 +1,30 @@
+/**
+ * agentfootprint/identity — the CredentialProvider port.
+ *
+ * OUTBOUND auth: vend a credential/token so a tool can call a downstream service
+ * (GitHub, Slack, Google…) on behalf of the agent or the end user. This is
+ * DISTINCT from `agentfootprint/security` (authorization — "is this tool
+ * allowed"); identity answers "get me a token to call X".
+ *
+ * Pattern: Port (Hexagonal). Vendors plug in as adapters:
+ *   - `agentCoreIdentity()` — AWS Bedrock AgentCore Identity (token vault + OAuth)
+ *   - `staticTokens()`      — dev/test (canned tokens, no network)
+ *
+ * Two flows, mirroring OAuth (and AgentCore's `M2M` vs `USER_FEDERATION`):
+ *   - `mode: 'machine'` (2-legged) — client-credentials; returns a token directly.
+ *   - `mode: 'user'`    (3-legged) — user-delegated; may need consent. When it
+ *     does, the provider returns `authorization-required` with a URL; the agent
+ *     surfaces it to the human (e.g. via pause/resume) and retries after consent.
+ *     (Most calls skip consent — providers cache refresh tokens.)
+ *
+ * **Security invariant:** a vended token is a SECRET. Callers MUST use it locally
+ * (e.g. as an HTTP header inside a tool's `execute`) and MUST NOT write it to
+ * tracked scope (`setValue`) — tracked writes flow to the commit log, recorders,
+ * and observability exporters, which would leak the token into the trace. Pair
+ * with `RedactionPolicy` for defence in depth.
+ */
+/** Narrow a {@link CredentialResult} to the token branch. */
+export function isCredentialToken(r) {
+    return r.status === 'token';
+}
+//# sourceMappingURL=types.js.map

package/dist/esm/identity/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/identity/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAyCH,6DAA6D;AAC7D,MAAM,UAAU,iBAAiB,CAAC,CAAmB;IACnD,OAAO,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC;AAC9B,CAAC"}

package/dist/esm/identity.js

@@ -0,0 +1,29 @@
+/**
+ * agentfootprint/identity — outbound credential vending for agent tools.
+ *
+ * The {@link CredentialProvider} port + adapters. A tool calls
+ * `provider.getCredential({ service })` to get a token for a downstream service;
+ * `agentCoreIdentity()` backs it with AWS Bedrock AgentCore Identity, or
+ * `staticTokens()` for dev/test.
+ *
+ * SECURITY: a vended token is a secret — use it locally inside a tool's
+ * `execute` (e.g. an HTTP header); never write it to tracked scope. See
+ * `./identity/types` for the full invariant.
+ *
+ * @example
+ * ```ts
+ * import { agentCoreIdentity } from 'agentfootprint/identity';
+ *
+ * const credentials = agentCoreIdentity({ region: 'us-east-1' });
+ * const r = await credentials.getCredential({ service: 'github', mode: 'user', scopes: ['repo'] });
+ * if (r.status === 'authorization-required') {
+ *   // surface r.authorizationUrl to the user (e.g. pause the run), then retry.
+ * } else {
+ *   callGitHub({ headers: { authorization: `Bearer ${r.token}` } });
+ * }
+ * ```
+ */
+export { isCredentialToken } from './identity/types.js';
+export { staticTokens } from './identity/staticTokens.js';
+export { agentCoreIdentity, } from './adapters/identity/agentcore.js';
+//# sourceMappingURL=identity.js.map

package/dist/esm/identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.js","sourceRoot":"","sources":["../../src/identity.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AASH,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,OAAO,EAAE,YAAY,EAA4B,MAAM,4BAA4B,CAAC;AACpF,OAAO,EACL,iBAAiB,GAIlB,MAAM,kCAAkC,CAAC"}

package/dist/identity/staticTokens.js

@@ -0,0 +1,37 @@
+"use strict";
+/**
+ * staticTokens — a dev/test {@link CredentialProvider} backed by canned tokens.
+ *
+ * No network, no SDK. Use it to develop tools that need credentials without
+ * standing up AgentCore Identity (or any IdP). Production swaps it for
+ * `agentCoreIdentity()` — the tool code never changes.
+ *
+ *   const credentials = staticTokens({ github: 'ghp_dev_xxx', slack: 'xoxb-dev' });
+ *   const r = await credentials.getCredential({ service: 'github' });
+ *   if (r.status === 'token') useHeader(`Bearer ${r.token}`);
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.staticTokens = void 0;
+/**
+ * Build a {@link CredentialProvider} from a `service → token` map. Always 2-legged
+ * (returns the token directly); throws if a requested service has no token.
+ */
+function staticTokens(tokens, options = {}) {
+    return {
+        id: options.id ?? 'static-tokens',
+        getCredential(req) {
+            const token = tokens[req.service];
+            if (!token) {
+                return Promise.reject(new Error(`staticTokens: no token configured for service '${req.service}'. ` +
+                    `Known services: ${Object.keys(tokens).join(', ') || '(none)'}.`));
+            }
+            return Promise.resolve({
+                status: 'token',
+                token,
+                ...(options.expiresAt !== undefined && { expiresAt: options.expiresAt }),
+            });
+        },
+    };
+}
+exports.staticTokens = staticTokens;
+//# sourceMappingURL=staticTokens.js.map

package/dist/identity/staticTokens.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"staticTokens.js","sourceRoot":"","sources":["../../src/identity/staticTokens.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;GAUG;;;AAWH;;;GAGG;AACH,SAAgB,YAAY,CAC1B,MAAwC,EACxC,UAA+B,EAAE;IAEjC,OAAO;QACL,EAAE,EAAE,OAAO,CAAC,EAAE,IAAI,eAAe;QACjC,aAAa,CAAC,GAAG;YACf,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAClC,IAAI,CAAC,KAAK,EAAE,CAAC;gBACX,OAAO,OAAO,CAAC,MAAM,CACnB,IAAI,KAAK,CACP,kDAAkD,GAAG,CAAC,OAAO,KAAK;oBAChE,mBAAmB,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,QAAQ,GAAG,CACnE,CACF,CAAC;YACJ,CAAC;YACD,OAAO,OAAO,CAAC,OAAO,CAAC;gBACrB,MAAM,EAAE,OAAO;gBACf,KAAK;gBACL,GAAG,CAAC,OAAO,CAAC,SAAS,KAAK,SAAS,IAAI,EAAE,SAAS,EAAE,OAAO,CAAC,SAAS,EAAE,CAAC;aACzE,CAAC,CAAC;QACL,CAAC;KACF,CAAC;AACJ,CAAC;AAvBD,oCAuBC"}

package/dist/identity/types.js

@@ -0,0 +1,34 @@
+"use strict";
+/**
+ * agentfootprint/identity — the CredentialProvider port.
+ *
+ * OUTBOUND auth: vend a credential/token so a tool can call a downstream service
+ * (GitHub, Slack, Google…) on behalf of the agent or the end user. This is
+ * DISTINCT from `agentfootprint/security` (authorization — "is this tool
+ * allowed"); identity answers "get me a token to call X".
+ *
+ * Pattern: Port (Hexagonal). Vendors plug in as adapters:
+ *   - `agentCoreIdentity()` — AWS Bedrock AgentCore Identity (token vault + OAuth)
+ *   - `staticTokens()`      — dev/test (canned tokens, no network)
+ *
+ * Two flows, mirroring OAuth (and AgentCore's `M2M` vs `USER_FEDERATION`):
+ *   - `mode: 'machine'` (2-legged) — client-credentials; returns a token directly.
+ *   - `mode: 'user'`    (3-legged) — user-delegated; may need consent. When it
+ *     does, the provider returns `authorization-required` with a URL; the agent
+ *     surfaces it to the human (e.g. via pause/resume) and retries after consent.
+ *     (Most calls skip consent — providers cache refresh tokens.)
+ *
+ * **Security invariant:** a vended token is a SECRET. Callers MUST use it locally
+ * (e.g. as an HTTP header inside a tool's `execute`) and MUST NOT write it to
+ * tracked scope (`setValue`) — tracked writes flow to the commit log, recorders,
+ * and observability exporters, which would leak the token into the trace. Pair
+ * with `RedactionPolicy` for defence in depth.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isCredentialToken = void 0;
+/** Narrow a {@link CredentialResult} to the token branch. */
+function isCredentialToken(r) {
+    return r.status === 'token';
+}
+exports.isCredentialToken = isCredentialToken;
+//# sourceMappingURL=types.js.map

package/dist/identity/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/identity/types.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;;;AAyCH,6DAA6D;AAC7D,SAAgB,iBAAiB,CAAC,CAAmB;IACnD,OAAO,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC;AAC9B,CAAC;AAFD,8CAEC"}

package/dist/identity.js

@@ -0,0 +1,35 @@
+"use strict";
+/**
+ * agentfootprint/identity — outbound credential vending for agent tools.
+ *
+ * The {@link CredentialProvider} port + adapters. A tool calls
+ * `provider.getCredential({ service })` to get a token for a downstream service;
+ * `agentCoreIdentity()` backs it with AWS Bedrock AgentCore Identity, or
+ * `staticTokens()` for dev/test.
+ *
+ * SECURITY: a vended token is a secret — use it locally inside a tool's
+ * `execute` (e.g. an HTTP header); never write it to tracked scope. See
+ * `./identity/types` for the full invariant.
+ *
+ * @example
+ * ```ts
+ * import { agentCoreIdentity } from 'agentfootprint/identity';
+ *
+ * const credentials = agentCoreIdentity({ region: 'us-east-1' });
+ * const r = await credentials.getCredential({ service: 'github', mode: 'user', scopes: ['repo'] });
+ * if (r.status === 'authorization-required') {
+ *   // surface r.authorizationUrl to the user (e.g. pause the run), then retry.
+ * } else {
+ *   callGitHub({ headers: { authorization: `Bearer ${r.token}` } });
+ * }
+ * ```
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.agentCoreIdentity = exports.staticTokens = exports.isCredentialToken = void 0;
+var types_js_1 = require("./identity/types.js");
+Object.defineProperty(exports, "isCredentialToken", { enumerable: true, get: function () { return types_js_1.isCredentialToken; } });
+var staticTokens_js_1 = require("./identity/staticTokens.js");
+Object.defineProperty(exports, "staticTokens", { enumerable: true, get: function () { return staticTokens_js_1.staticTokens; } });
+var agentcore_js_1 = require("./adapters/identity/agentcore.js");
+Object.defineProperty(exports, "agentCoreIdentity", { enumerable: true, get: function () { return agentcore_js_1.agentCoreIdentity; } });
+//# sourceMappingURL=identity.js.map

package/dist/identity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.js","sourceRoot":"","sources":["../src/identity.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;;;AASH,gDAAwD;AAA/C,6GAAA,iBAAiB,OAAA;AAC1B,8DAAoF;AAA3E,+GAAA,YAAY,OAAA;AACrB,iEAK0C;AAJxC,iHAAA,iBAAiB,OAAA"}

package/dist/types/adapters/identity/agentcore.d.ts

@@ -0,0 +1,57 @@
+/**
+ * agentCoreIdentity — AWS Bedrock AgentCore Identity adapter (peer-dep
+ * `@aws-sdk/client-bedrock-agentcore`).
+ *
+ *   import { agentCoreIdentity } from 'agentfootprint/identity';
+ *   const credentials = agentCoreIdentity({ region: 'us-east-1' });
+ *
+ * Maps the {@link CredentialProvider} port onto AgentCore Identity's
+ * `GetResourceOauth2Token` (the SDK's `@requires_access_token` underneath):
+ *   - request.mode 'machine' → `M2M`; 'user' → `USER_FEDERATION`
+ *   - request.service        → the configured OAuth2 credential-provider name
+ *   - a returned access token → `{ status: 'token' }`
+ *   - a returned auth URL     → `{ status: 'authorization-required' }` (3LO consent)
+ *
+ * The token vault + refresh-token handling live in AgentCore, so repeat calls
+ * usually return a token directly (no consent round-trip).
+ *
+ * Pattern: Adapter (GoF) + lazy peer-dep load — the AWS SDK is required only when
+ * `getCredential` first runs (or never, if you inject `_client`). NOTE: confirm
+ * the SDK command/field names against your installed
+ * `@aws-sdk/client-bedrock-agentcore` version — this adapter targets the
+ * `GetResourceOauth2Token` shape and is structured so the request→result mapping
+ * is unit-tested via the `_client` seam independent of the SDK.
+ */
+import type { CredentialProvider } from '../../identity/types.js';
+/** Raw result shape we consume from the AgentCore identity client. */
+export interface AgentCoreOauthResponse {
+    readonly accessToken?: string;
+    readonly authorizationUrl?: string;
+    readonly sessionId?: string;
+    /** Unix seconds. */
+    readonly expiresAt?: number;
+}
+/** The minimal client surface the adapter calls — wraps `GetResourceOauth2Token`.
+ *  The real AWS SDK client is adapted to this; tests inject a fake via `_client`. */
+export interface AgentCoreIdentityClientLike {
+    getResourceOauth2Token(input: {
+        readonly resourceCredentialProviderName: string;
+        readonly scopes: readonly string[];
+        readonly oauth2Flow: 'M2M' | 'USER_FEDERATION';
+        readonly forceAuthentication: boolean;
+        readonly workloadIdentityToken?: string;
+    }): Promise<AgentCoreOauthResponse>;
+}
+export interface AgentCoreIdentityOptions {
+    readonly region?: string;
+    /** The agent's workload access token (AgentCore Runtime injects one in-container;
+     *  supply it explicitly when running elsewhere). */
+    readonly workloadIdentityToken?: string;
+    /** Stable provider id (default 'agentcore-identity'). */
+    readonly id?: string;
+    /** Test seam — inject a client implementing {@link AgentCoreIdentityClientLike}. */
+    readonly _client?: AgentCoreIdentityClientLike;
+}
+/** Build a {@link CredentialProvider} backed by AWS Bedrock AgentCore Identity. */
+export declare function agentCoreIdentity(options?: AgentCoreIdentityOptions): CredentialProvider;
+//# sourceMappingURL=agentcore.d.ts.map

package/dist/types/adapters/identity/agentcore.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"agentcore.d.ts","sourceRoot":"","sources":["../../../../src/adapters/identity/agentcore.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAGH,OAAO,KAAK,EACV,kBAAkB,EAGnB,MAAM,yBAAyB,CAAC;AAEjC,sEAAsE;AACtE,MAAM,WAAW,sBAAsB;IACrC,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC;IAC9B,QAAQ,CAAC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IACnC,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;IAC5B,oBAAoB;IACpB,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;CAC7B;AAED;qFACqF;AACrF,MAAM,WAAW,2BAA2B;IAC1C,sBAAsB,CAAC,KAAK,EAAE;QAC5B,QAAQ,CAAC,8BAA8B,EAAE,MAAM,CAAC;QAChD,QAAQ,CAAC,MAAM,EAAE,SAAS,MAAM,EAAE,CAAC;QACnC,QAAQ,CAAC,UAAU,EAAE,KAAK,GAAG,iBAAiB,CAAC;QAC/C,QAAQ,CAAC,mBAAmB,EAAE,OAAO,CAAC;QACtC,QAAQ,CAAC,qBAAqB,CAAC,EAAE,MAAM,CAAC;KACzC,GAAG,OAAO,CAAC,sBAAsB,CAAC,CAAC;CACrC;AAED,MAAM,WAAW,wBAAwB;IACvC,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;IACzB;wDACoD;IACpD,QAAQ,CAAC,qBAAqB,CAAC,EAAE,MAAM,CAAC;IACxC,yDAAyD;IACzD,QAAQ,CAAC,EAAE,CAAC,EAAE,MAAM,CAAC;IACrB,oFAAoF;IACpF,QAAQ,CAAC,OAAO,CAAC,EAAE,2BAA2B,CAAC;CAChD;AA8BD,mFAAmF;AACnF,wBAAgB,iBAAiB,CAAC,OAAO,GAAE,wBAA6B,GAAG,kBAAkB,CAqC5F"}

package/dist/types/identity/staticTokens.d.ts

@@ -0,0 +1,24 @@
+/**
+ * staticTokens — a dev/test {@link CredentialProvider} backed by canned tokens.
+ *
+ * No network, no SDK. Use it to develop tools that need credentials without
+ * standing up AgentCore Identity (or any IdP). Production swaps it for
+ * `agentCoreIdentity()` — the tool code never changes.
+ *
+ *   const credentials = staticTokens({ github: 'ghp_dev_xxx', slack: 'xoxb-dev' });
+ *   const r = await credentials.getCredential({ service: 'github' });
+ *   if (r.status === 'token') useHeader(`Bearer ${r.token}`);
+ */
+import type { CredentialProvider } from './types.js';
+export interface StaticTokensOptions {
+    /** Optional id (defaults to 'static-tokens'). */
+    readonly id?: string;
+    /** Optional fixed expiry (unix seconds) applied to every token. */
+    readonly expiresAt?: number;
+}
+/**
+ * Build a {@link CredentialProvider} from a `service → token` map. Always 2-legged
+ * (returns the token directly); throws if a requested service has no token.
+ */
+export declare function staticTokens(tokens: Readonly<Record<string, string>>, options?: StaticTokensOptions): CredentialProvider;
+//# sourceMappingURL=staticTokens.d.ts.map

package/dist/types/identity/staticTokens.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"staticTokens.d.ts","sourceRoot":"","sources":["../../../src/identity/staticTokens.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAoB,MAAM,YAAY,CAAC;AAEvE,MAAM,WAAW,mBAAmB;IAClC,iDAAiD;IACjD,QAAQ,CAAC,EAAE,CAAC,EAAE,MAAM,CAAC;IACrB,mEAAmE;IACnE,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;CAC7B;AAED;;;GAGG;AACH,wBAAgB,YAAY,CAC1B,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,EACxC,OAAO,GAAE,mBAAwB,GAChC,kBAAkB,CAoBpB"}

package/dist/types/identity/types.d.ts

@@ -0,0 +1,65 @@
+/**
+ * agentfootprint/identity — the CredentialProvider port.
+ *
+ * OUTBOUND auth: vend a credential/token so a tool can call a downstream service
+ * (GitHub, Slack, Google…) on behalf of the agent or the end user. This is
+ * DISTINCT from `agentfootprint/security` (authorization — "is this tool
+ * allowed"); identity answers "get me a token to call X".
+ *
+ * Pattern: Port (Hexagonal). Vendors plug in as adapters:
+ *   - `agentCoreIdentity()` — AWS Bedrock AgentCore Identity (token vault + OAuth)
+ *   - `staticTokens()`      — dev/test (canned tokens, no network)
+ *
+ * Two flows, mirroring OAuth (and AgentCore's `M2M` vs `USER_FEDERATION`):
+ *   - `mode: 'machine'` (2-legged) — client-credentials; returns a token directly.
+ *   - `mode: 'user'`    (3-legged) — user-delegated; may need consent. When it
+ *     does, the provider returns `authorization-required` with a URL; the agent
+ *     surfaces it to the human (e.g. via pause/resume) and retries after consent.
+ *     (Most calls skip consent — providers cache refresh tokens.)
+ *
+ * **Security invariant:** a vended token is a SECRET. Callers MUST use it locally
+ * (e.g. as an HTTP header inside a tool's `execute`) and MUST NOT write it to
+ * tracked scope (`setValue`) — tracked writes flow to the commit log, recorders,
+ * and observability exporters, which would leak the token into the trace. Pair
+ * with `RedactionPolicy` for defence in depth.
+ */
+/** What a tool/agent asks for. `service` ↔ the provider's downstream service id. */
+export interface CredentialRequest {
+    /** Downstream service id, e.g. 'github', 'slack', 'google'. */
+    readonly service: string;
+    /** OAuth scopes to request. */
+    readonly scopes?: readonly string[];
+    /** `machine` = 2-legged (M2M); `user` = 3-legged (on behalf of a user). Default `machine`. */
+    readonly mode?: 'machine' | 'user';
+    /** The principal/tenant the token is for (the agent + end-user identity). */
+    readonly identity?: {
+        readonly principal?: string;
+        readonly tenant?: string;
+    };
+    /** Force a fresh authorization, bypassing any cached/refresh token. */
+    readonly forceReauth?: boolean;
+}
+/** A ready-to-use credential. `token` is a SECRET — see the security invariant. */
+export interface CredentialToken {
+    readonly status: 'token';
+    readonly token: string;
+    /** Unix seconds when the token expires, if known. */
+    readonly expiresAt?: number;
+}
+/** 3-legged consent is required: surface `authorizationUrl` to the user, then
+ *  retry `getCredential` after they authorize (`sessionId` correlates the flow). */
+export interface CredentialAuthorizationRequired {
+    readonly status: 'authorization-required';
+    readonly authorizationUrl: string;
+    readonly sessionId: string;
+}
+export type CredentialResult = CredentialToken | CredentialAuthorizationRequired;
+/** The port. An adapter implements this against a specific identity backend. */
+export interface CredentialProvider {
+    /** Stable id (for logging / "which provider vended this"). */
+    readonly id: string;
+    getCredential(req: CredentialRequest): Promise<CredentialResult>;
+}
+/** Narrow a {@link CredentialResult} to the token branch. */
+export declare function isCredentialToken(r: CredentialResult): r is CredentialToken;
+//# sourceMappingURL=types.d.ts.map

package/dist/types/identity/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/identity/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,oFAAoF;AACpF,MAAM,WAAW,iBAAiB;IAChC,+DAA+D;IAC/D,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,+BAA+B;IAC/B,QAAQ,CAAC,MAAM,CAAC,EAAE,SAAS,MAAM,EAAE,CAAC;IACpC,8FAA8F;IAC9F,QAAQ,CAAC,IAAI,CAAC,EAAE,SAAS,GAAG,MAAM,CAAC;IACnC,6EAA6E;IAC7E,QAAQ,CAAC,QAAQ,CAAC,EAAE;QAAE,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC;IAC9E,uEAAuE;IACvE,QAAQ,CAAC,WAAW,CAAC,EAAE,OAAO,CAAC;CAChC;AAED,mFAAmF;AACnF,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,MAAM,EAAE,OAAO,CAAC;IACzB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,qDAAqD;IACrD,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;CAC7B;AAED;oFACoF;AACpF,MAAM,WAAW,+BAA+B;IAC9C,QAAQ,CAAC,MAAM,EAAE,wBAAwB,CAAC;IAC1C,QAAQ,CAAC,gBAAgB,EAAE,MAAM,CAAC;IAClC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;CAC5B;AAED,MAAM,MAAM,gBAAgB,GAAG,eAAe,GAAG,+BAA+B,CAAC;AAEjF,gFAAgF;AAChF,MAAM,WAAW,kBAAkB;IACjC,8DAA8D;IAC9D,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,GAAG,EAAE,iBAAiB,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC;CAClE;AAED,6DAA6D;AAC7D,wBAAgB,iBAAiB,CAAC,CAAC,EAAE,gBAAgB,GAAG,CAAC,IAAI,eAAe,CAE3E"}

package/dist/types/identity.d.ts

@@ -0,0 +1,30 @@
+/**
+ * agentfootprint/identity — outbound credential vending for agent tools.
+ *
+ * The {@link CredentialProvider} port + adapters. A tool calls
+ * `provider.getCredential({ service })` to get a token for a downstream service;
+ * `agentCoreIdentity()` backs it with AWS Bedrock AgentCore Identity, or
+ * `staticTokens()` for dev/test.
+ *
+ * SECURITY: a vended token is a secret — use it locally inside a tool's
+ * `execute` (e.g. an HTTP header); never write it to tracked scope. See
+ * `./identity/types` for the full invariant.
+ *
+ * @example
+ * ```ts
+ * import { agentCoreIdentity } from 'agentfootprint/identity';
+ *
+ * const credentials = agentCoreIdentity({ region: 'us-east-1' });
+ * const r = await credentials.getCredential({ service: 'github', mode: 'user', scopes: ['repo'] });
+ * if (r.status === 'authorization-required') {
+ *   // surface r.authorizationUrl to the user (e.g. pause the run), then retry.
+ * } else {
+ *   callGitHub({ headers: { authorization: `Bearer ${r.token}` } });
+ * }
+ * ```
+ */
+export type { CredentialProvider, CredentialRequest, CredentialResult, CredentialToken, CredentialAuthorizationRequired, } from './identity/types.js';
+export { isCredentialToken } from './identity/types.js';
+export { staticTokens, type StaticTokensOptions } from './identity/staticTokens.js';
+export { agentCoreIdentity, type AgentCoreIdentityOptions, type AgentCoreIdentityClientLike, type AgentCoreOauthResponse, } from './adapters/identity/agentcore.js';
+//# sourceMappingURL=identity.d.ts.map

package/dist/types/identity.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"identity.d.ts","sourceRoot":"","sources":["../../src/identity.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,YAAY,EACV,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,EAChB,eAAe,EACf,+BAA+B,GAChC,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,KAAK,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AACpF,OAAO,EACL,iBAAiB,EACjB,KAAK,wBAAwB,EAC7B,KAAK,2BAA2B,EAChC,KAAK,sBAAsB,GAC5B,MAAM,kCAAkC,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentfootprint",
-  "version": "6.9.0",
+  "version": "6.10.0",
   "description": "The explainable agent framework — build AI agents you can explain, audit, and trust. Built on footprintjs.",
   "license": "MIT",
   "author": "Sanjay Krishna Anbalagan",
@@ -145,6 +145,11 @@
       "import": "./dist/esm/security/index.js",
       "require": "./dist/security/index.js"
     },
+    "./identity": {
+      "types": "./dist/types/identity.d.ts",
+      "import": "./dist/esm/identity.js",
+      "require": "./dist/identity.js"
+    },
     "./reliability": {
       "types": "./dist/types/reliability/index.d.ts",
       "import": "./dist/esm/reliability/index.js",