agentlock-shared 0.1.0

package/dist/redact.js

@@ -0,0 +1,115 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.redact = redact;
+exports.redactHeaders = redactHeaders;
+exports.sanitizeActionRequest = sanitizeActionRequest;
+// Exact-match field names (checked after lowercasing)
+const SECRET_FIELDS = new Set([
+    'authorization',
+    'api_key',
+    'apikey',
+    'api-key',
+    'token',
+    'secret',
+    'password',
+    'passwd',
+    'private_key',
+    'privatekey',
+    'access_token',
+    'refresh_token',
+    'client_secret',
+    'x-api-key',
+    'x-auth-token',
+    'credentials',
+    'bearer',
+    'session_token',
+    'session_key',
+    'cookie',
+    'set-cookie',
+    'aws_secret_access_key',
+    'aws_session_token',
+    'database_url',
+    'connection_string',
+    'private-key',
+    'master_key',
+    'encryption_key',
+    'signing_key',
+    'service_role_key',
+    'supabase_service_role_key',
+]);
+// Substring patterns: if the lowercased key contains any of these, redact
+const SECRET_SUBSTRINGS = [
+    'secret',
+    'password',
+    'passwd',
+    'token',
+    'api_key',
+    'apikey',
+    'private_key',
+    'privatekey',
+    'credential',
+    'authorization',
+    'auth_key',
+    'master_key',
+    'encryption_key',
+    'signing_key',
+    'connection_string',
+    'database_url',
+    'access_key',
+    'session_id',
+];
+const REDACTED = '[REDACTED]';
+// Value-based patterns to detect secrets regardless of field name
+const SECRET_VALUE_PATTERNS = [
+    /^(sk|pk|rk)_(live|test)_[a-zA-Z0-9]{10,}$/, // Stripe keys
+    /^r[us]_[a-zA-Z0-9]{20,}$/, // Stripe restricted keys
+    /^ghp_[a-zA-Z0-9]{36}$/, // GitHub PATs
+    /^github_pat_[a-zA-Z0-9_]{20,}$/, // GitHub fine-grained PATs
+    /^gho_[a-zA-Z0-9]{36}$/, // GitHub OAuth tokens
+    /^AKIA[A-Z0-9]{16}$/, // AWS access key IDs
+    /^eyJ[a-zA-Z0-9_-]{20,}\.[a-zA-Z0-9_-]{20,}/, // JWTs (eyJ prefix)
+    /^xox[bpras]-[a-zA-Z0-9-]{10,}$/, // Slack tokens
+    /^Bearer\s+[a-zA-Z0-9._\-]{20,}$/, // Bearer tokens
+    /^AIza[a-zA-Z0-9_-]{35}$/, // Google API keys
+    /^sk-[a-zA-Z0-9]{20,}$/, // OpenAI API keys
+    /^sk-ant-[a-zA-Z0-9_-]{20,}$/, // Anthropic API keys
+    /^SG\.[a-zA-Z0-9_-]{20,}$/, // SendGrid API keys
+    /^SK[a-f0-9]{32}$/, // Twilio API keys
+];
+function isSecretField(key) {
+    const lower = key.toLowerCase();
+    if (SECRET_FIELDS.has(lower))
+        return true;
+    return SECRET_SUBSTRINGS.some((sub) => lower.includes(sub));
+}
+function isSecretValue(value) {
+    return SECRET_VALUE_PATTERNS.some((pattern) => pattern.test(value));
+}
+function redact(obj, depth = 0) {
+    if (depth > 10)
+        return obj;
+    if (obj === null || obj === undefined)
+        return obj;
+    if (typeof obj === 'string')
+        return isSecretValue(obj) ? REDACTED : obj;
+    if (typeof obj !== 'object')
+        return obj;
+    if (Array.isArray(obj))
+        return obj.map((item) => redact(item, depth + 1));
+    const result = {};
+    for (const [key, value] of Object.entries(obj)) {
+        result[key] = isSecretField(key) ? REDACTED : redact(value, depth + 1);
+    }
+    return result;
+}
+function redactHeaders(headers) {
+    const result = {};
+    for (const [key, value] of Object.entries(headers)) {
+        result[key] = isSecretField(key) ? REDACTED : value;
+    }
+    return result;
+}
+function sanitizeActionRequest(request) {
+    return redact(request);
+}
+//# sourceMappingURL=redact.js.map

package/dist/redact.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"redact.js","sourceRoot":"","sources":["../src/redact.ts"],"names":[],"mappings":";;AAuFA,wBAYC;AAED,sCAMC;AAED,sDAIC;AAjHD,sDAAsD;AACtD,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC;IAC5B,eAAe;IACf,SAAS;IACT,QAAQ;IACR,SAAS;IACT,OAAO;IACP,QAAQ;IACR,UAAU;IACV,QAAQ;IACR,aAAa;IACb,YAAY;IACZ,cAAc;IACd,eAAe;IACf,eAAe;IACf,WAAW;IACX,cAAc;IACd,aAAa;IACb,QAAQ;IACR,eAAe;IACf,aAAa;IACb,QAAQ;IACR,YAAY;IACZ,uBAAuB;IACvB,mBAAmB;IACnB,cAAc;IACd,mBAAmB;IACnB,aAAa;IACb,YAAY;IACZ,gBAAgB;IAChB,aAAa;IACb,kBAAkB;IAClB,2BAA2B;CAC5B,CAAC,CAAC;AAEH,0EAA0E;AAC1E,MAAM,iBAAiB,GAAG;IACxB,QAAQ;IACR,UAAU;IACV,QAAQ;IACR,OAAO;IACP,SAAS;IACT,QAAQ;IACR,aAAa;IACb,YAAY;IACZ,YAAY;IACZ,eAAe;IACf,UAAU;IACV,YAAY;IACZ,gBAAgB;IAChB,aAAa;IACb,mBAAmB;IACnB,cAAc;IACd,YAAY;IACZ,YAAY;CACb,CAAC;AAEF,MAAM,QAAQ,GAAG,YAAY,CAAC;AAE9B,kEAAkE;AAClE,MAAM,qBAAqB,GAAG;IAC5B,2CAA2C,EAAG,cAAc;IAC5D,0BAA0B,EAAuB,yBAAyB;IAC1E,uBAAuB,EAA0B,cAAc;IAC/D,gCAAgC,EAAiB,2BAA2B;IAC5E,uBAAuB,EAA0B,sBAAsB;IACvE,oBAAoB,EAA6B,qBAAqB;IACtE,4CAA4C,EAAI,oBAAoB;IACpE,gCAAgC,EAAgB,eAAe;IAC/D,iCAAiC,EAAe,gBAAgB;IAChE,yBAAyB,EAAwB,kBAAkB;IACnE,uBAAuB,EAA0B,kBAAkB;IACnE,6BAA6B,EAAoB,qBAAqB;IACtE,0BAA0B,EAAuB,oBAAoB;IACrE,kBAAkB,EAA+B,kBAAkB;CACpE,CAAC;AAEF,SAAS,aAAa,CAAC,GAAW;IAChC,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;IAChC,IAAI,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC1C,OAAO,iBAAiB,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;AAC9D,CAAC;AAED,SAAS,aAAa,CAAC,KAAa;IAClC,OAAO,qBAAqB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;AACtE,CAAC;AAED,SAAgB,MAAM,CAAC,GAAY,EAAE,KAAK,GAAG,CAAC;IAC5C,IAAI,KAAK,GAAG,EAAE;QAAE,OAAO,GAAG,CAAC;IAC3B,IAAI,GAAG,KAAK,IAAI,IAAI,GAAG,KAAK,SAAS;QAAE,OAAO,GAAG,CAAC;IAClD,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC;IACxE,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,GAAG,CAAC;IACxC,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;IAE1E,MAAM,MAAM,GAA4B,EAAE,CAAC;IAC3C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAA8B,CAAC,EAAE,CAAC;QAC1E,MAAM,CAAC,GAAG,CAAC,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC;IACzE,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAgB,aAAa,CAAC,OAA+B;IAC3D,MAAM,MAAM,GAA2B,EAAE,CAAC;IAC1C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QACnD,MAAM,CAAC,GAAG,CAAC,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC;IACtD,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAgB,qBAAqB,CACnC,OAAgC;IAEhC,OAAO,MAAM,CAAC,OAAO,CAA4B,CAAC;AACpD,CAAC"}

package/dist/schemas.d.ts

@@ -0,0 +1,128 @@
+import { z } from 'zod';
+export declare const AgentActionRequestSchema: z.ZodObject<{
+    action_type: z.ZodEnum<["read", "write", "financial", "admin"]>;
+    tool: z.ZodString;
+    payload: z.ZodEffects<z.ZodRecord<z.ZodString, z.ZodUnknown>, Record<string, unknown>, Record<string, unknown>>;
+    idempotency_key: z.ZodOptional<z.ZodString>;
+    cost_estimate: z.ZodOptional<z.ZodNumber>;
+}, "strip", z.ZodTypeAny, {
+    action_type: "admin" | "read" | "write" | "financial";
+    tool: string;
+    payload: Record<string, unknown>;
+    idempotency_key?: string | undefined;
+    cost_estimate?: number | undefined;
+}, {
+    action_type: "admin" | "read" | "write" | "financial";
+    tool: string;
+    payload: Record<string, unknown>;
+    idempotency_key?: string | undefined;
+    cost_estimate?: number | undefined;
+}>;
+export declare const RegisterAgentSchema: z.ZodObject<{
+    name: z.ZodString;
+    environment: z.ZodDefault<z.ZodEnum<["development", "staging", "production"]>>;
+    public_key: z.ZodString;
+    allowed_tools: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+}, "strip", z.ZodTypeAny, {
+    name: string;
+    environment: "development" | "staging" | "production";
+    public_key: string;
+    allowed_tools: string[];
+}, {
+    name: string;
+    public_key: string;
+    environment?: "development" | "staging" | "production" | undefined;
+    allowed_tools?: string[] | undefined;
+}>;
+export declare const PolicyRulesSchema: z.ZodObject<{
+    defaultMode: z.ZodEnum<["allow", "require_approval", "block"]>;
+    rules: z.ZodArray<z.ZodObject<{
+        action_type: z.ZodOptional<z.ZodEnum<["read", "write", "financial", "admin"]>>;
+        tool: z.ZodOptional<z.ZodString>;
+        domain: z.ZodOptional<z.ZodString>;
+        decision: z.ZodEnum<["ALLOW", "REQUIRE_APPROVAL", "BLOCK"]>;
+        require_two_approvals: z.ZodOptional<z.ZodBoolean>;
+    }, "strip", z.ZodTypeAny, {
+        decision: "ALLOW" | "REQUIRE_APPROVAL" | "BLOCK";
+        action_type?: "admin" | "read" | "write" | "financial" | undefined;
+        tool?: string | undefined;
+        domain?: string | undefined;
+        require_two_approvals?: boolean | undefined;
+    }, {
+        decision: "ALLOW" | "REQUIRE_APPROVAL" | "BLOCK";
+        action_type?: "admin" | "read" | "write" | "financial" | undefined;
+        tool?: string | undefined;
+        domain?: string | undefined;
+        require_two_approvals?: boolean | undefined;
+    }>, "many">;
+    http: z.ZodOptional<z.ZodObject<{
+        allowedDomains: z.ZodArray<z.ZodString, "many">;
+        allowedMethods: z.ZodArray<z.ZodString, "many">;
+        blockList: z.ZodArray<z.ZodString, "many">;
+    }, "strip", z.ZodTypeAny, {
+        allowedDomains: string[];
+        allowedMethods: string[];
+        blockList: string[];
+    }, {
+        allowedDomains: string[];
+        allowedMethods: string[];
+        blockList: string[];
+    }>>;
+    limits: z.ZodOptional<z.ZodObject<{
+        maxCostPerAction: z.ZodOptional<z.ZodNumber>;
+        maxActionsPerHour: z.ZodOptional<z.ZodNumber>;
+    }, "strip", z.ZodTypeAny, {
+        maxActionsPerHour?: number | undefined;
+        maxCostPerAction?: number | undefined;
+    }, {
+        maxActionsPerHour?: number | undefined;
+        maxCostPerAction?: number | undefined;
+    }>>;
+}, "strip", z.ZodTypeAny, {
+    defaultMode: "allow" | "require_approval" | "block";
+    rules: {
+        decision: "ALLOW" | "REQUIRE_APPROVAL" | "BLOCK";
+        action_type?: "admin" | "read" | "write" | "financial" | undefined;
+        tool?: string | undefined;
+        domain?: string | undefined;
+        require_two_approvals?: boolean | undefined;
+    }[];
+    http?: {
+        allowedDomains: string[];
+        allowedMethods: string[];
+        blockList: string[];
+    } | undefined;
+    limits?: {
+        maxActionsPerHour?: number | undefined;
+        maxCostPerAction?: number | undefined;
+    } | undefined;
+}, {
+    defaultMode: "allow" | "require_approval" | "block";
+    rules: {
+        decision: "ALLOW" | "REQUIRE_APPROVAL" | "BLOCK";
+        action_type?: "admin" | "read" | "write" | "financial" | undefined;
+        tool?: string | undefined;
+        domain?: string | undefined;
+        require_two_approvals?: boolean | undefined;
+    }[];
+    http?: {
+        allowedDomains: string[];
+        allowedMethods: string[];
+        blockList: string[];
+    } | undefined;
+    limits?: {
+        maxActionsPerHour?: number | undefined;
+        maxCostPerAction?: number | undefined;
+    } | undefined;
+}>;
+export declare const ApproveRequestSchema: z.ZodObject<{
+    action: z.ZodEnum<["approve", "deny"]>;
+    reason: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    action: "approve" | "deny";
+    reason?: string | undefined;
+}, {
+    action: "approve" | "deny";
+    reason?: string | undefined;
+}>;
+//# sourceMappingURL=schemas.d.ts.map

package/dist/schemas.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAKxB,eAAO,MAAM,wBAAwB;;;;;;;;;;;;;;;;;;EASnC,CAAC;AAEH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;EAK9B,CAAC;AAEH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAwB5B,CAAC;AAEH,eAAO,MAAM,oBAAoB;;;;;;;;;EAG/B,CAAC"}

package/dist/schemas.js

@@ -0,0 +1,47 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ApproveRequestSchema = exports.PolicyRulesSchema = exports.RegisterAgentSchema = exports.AgentActionRequestSchema = void 0;
+const zod_1 = require("zod");
+/** Max payload size: 64KB when serialized */
+const MAX_PAYLOAD_SIZE = 65_536;
+exports.AgentActionRequestSchema = zod_1.z.object({
+    action_type: zod_1.z.enum(['read', 'write', 'financial', 'admin']),
+    tool: zod_1.z.string().min(1).max(100).regex(/^[a-zA-Z0-9._\-:]+$/, 'Tool name must be alphanumeric with dots, dashes, underscores, or colons'),
+    payload: zod_1.z.record(zod_1.z.unknown()).refine((val) => JSON.stringify(val).length <= MAX_PAYLOAD_SIZE, { message: `Payload exceeds maximum size of ${MAX_PAYLOAD_SIZE} bytes` }),
+    idempotency_key: zod_1.z.string().max(128).optional(),
+    cost_estimate: zod_1.z.number().optional(),
+});
+exports.RegisterAgentSchema = zod_1.z.object({
+    name: zod_1.z.string().min(1).max(100),
+    environment: zod_1.z.enum(['development', 'staging', 'production']).default('production'),
+    public_key: zod_1.z.string().min(40),
+    allowed_tools: zod_1.z.array(zod_1.z.string()).default([]),
+});
+exports.PolicyRulesSchema = zod_1.z.object({
+    defaultMode: zod_1.z.enum(['allow', 'require_approval', 'block']),
+    rules: zod_1.z.array(zod_1.z.object({
+        action_type: zod_1.z.enum(['read', 'write', 'financial', 'admin']).optional(),
+        tool: zod_1.z.string().optional(),
+        domain: zod_1.z.string().optional(),
+        decision: zod_1.z.enum(['ALLOW', 'REQUIRE_APPROVAL', 'BLOCK']),
+        require_two_approvals: zod_1.z.boolean().optional(),
+    })),
+    http: zod_1.z
+        .object({
+        allowedDomains: zod_1.z.array(zod_1.z.string()),
+        allowedMethods: zod_1.z.array(zod_1.z.string()),
+        blockList: zod_1.z.array(zod_1.z.string()),
+    })
+        .optional(),
+    limits: zod_1.z
+        .object({
+        maxCostPerAction: zod_1.z.number().optional(),
+        maxActionsPerHour: zod_1.z.number().optional(),
+    })
+        .optional(),
+});
+exports.ApproveRequestSchema = zod_1.z.object({
+    action: zod_1.z.enum(['approve', 'deny']),
+    reason: zod_1.z.string().max(1000).optional(),
+});
+//# sourceMappingURL=schemas.js.map

package/dist/schemas.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schemas.js","sourceRoot":"","sources":["../src/schemas.ts"],"names":[],"mappings":";;;AAAA,6BAAwB;AAExB,6CAA6C;AAC7C,MAAM,gBAAgB,GAAG,MAAM,CAAC;AAEnB,QAAA,wBAAwB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC/C,WAAW,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;IAC5D,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,qBAAqB,EAAE,0EAA0E,CAAC;IACzI,OAAO,EAAE,OAAC,CAAC,MAAM,CAAC,OAAC,CAAC,OAAO,EAAE,CAAC,CAAC,MAAM,CACnC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,MAAM,IAAI,gBAAgB,EACvD,EAAE,OAAO,EAAE,mCAAmC,gBAAgB,QAAQ,EAAE,CACzE;IACD,eAAe,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC/C,aAAa,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACrC,CAAC,CAAC;AAEU,QAAA,mBAAmB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC1C,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;IAChC,WAAW,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,SAAS,EAAE,YAAY,CAAC,CAAC,CAAC,OAAO,CAAC,YAAY,CAAC;IACnF,UAAU,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC;IAC9B,aAAa,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;CAC/C,CAAC,CAAC;AAEU,QAAA,iBAAiB,GAAG,OAAC,CAAC,MAAM,CAAC;IACxC,WAAW,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAC;IAC3D,KAAK,EAAE,OAAC,CAAC,KAAK,CACZ,OAAC,CAAC,MAAM,CAAC;QACP,WAAW,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC,CAAC,QAAQ,EAAE;QACvE,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC3B,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QAC7B,QAAQ,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAC;QACxD,qBAAqB,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;KAC9C,CAAC,CACH;IACD,IAAI,EAAE,OAAC;SACJ,MAAM,CAAC;QACN,cAAc,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;QACnC,cAAc,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;QACnC,SAAS,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC;KAC/B,CAAC;SACD,QAAQ,EAAE;IACb,MAAM,EAAE,OAAC;SACN,MAAM,CAAC;QACN,gBAAgB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;QACvC,iBAAiB,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KACzC,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEU,QAAA,oBAAoB,GAAG,OAAC,CAAC,MAAM,CAAC;IAC3C,MAAM,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;IACnC,MAAM,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE;CACxC,CAAC,CAAC"}

package/dist/signing.d.ts

@@ -0,0 +1,23 @@
+export interface SignedHeaders {
+    'x-agent-id': string;
+    'x-timestamp': string;
+    'x-signature': string;
+    'x-nonce'?: string;
+}
+export interface KeyPair {
+    publicKey: string;
+    privateKey: string;
+}
+export declare function generateKeypair(): KeyPair;
+export declare function canonicalStringify(obj: Record<string, unknown>): string;
+export declare function signRequest(body: Record<string, unknown>, agentId: string, privateKeyBase64: string): SignedHeaders;
+export declare function verifyRequest(body: Record<string, unknown>, headers: {
+    'x-agent-id'?: string;
+    'x-timestamp'?: string;
+    'x-signature'?: string;
+    'x-nonce'?: string;
+}, publicKeyBase64: string, maxSkewMs?: number): {
+    agentId: string;
+    nonce: string;
+};
+//# sourceMappingURL=signing.d.ts.map

package/dist/signing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signing.d.ts","sourceRoot":"","sources":["../src/signing.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,aAAa;IAC5B,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,OAAO;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,wBAAgB,eAAe,IAAI,OAAO,CAMzC;AAoCD,wBAAgB,kBAAkB,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAEvE;AAED,wBAAgB,WAAW,CACzB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7B,OAAO,EAAE,MAAM,EACf,gBAAgB,EAAE,MAAM,GACvB,aAAa,CAef;AAED,wBAAgB,aAAa,CAC3B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7B,OAAO,EAAE;IACP,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB,EACD,eAAe,EAAE,MAAM,EACvB,SAAS,SAAgB,GACxB;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAA;CAAE,CA2BpC"}

package/dist/signing.js

@@ -0,0 +1,96 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateKeypair = generateKeypair;
+exports.canonicalStringify = canonicalStringify;
+exports.signRequest = signRequest;
+exports.verifyRequest = verifyRequest;
+const tweetnacl_1 = __importDefault(require("tweetnacl"));
+const tweetnacl_util_1 = require("tweetnacl-util");
+function generateKeypair() {
+    const pair = tweetnacl_1.default.sign.keyPair();
+    return {
+        publicKey: (0, tweetnacl_util_1.encodeBase64)(pair.publicKey),
+        privateKey: (0, tweetnacl_util_1.encodeBase64)(pair.secretKey),
+    };
+}
+/**
+ * Recursively stable-stringify: sorts object keys at every nesting level.
+ * This is critical for signature verification — every language SDK must produce
+ * the exact same canonical string for the same payload.
+ *
+ * Bug fixed: JSON.stringify(obj, replacerArray) only serializes keys named in the
+ * replacer at every nesting level, so nested objects would be serialized as {}.
+ */
+function stableStringify(val) {
+    if (val === undefined)
+        return undefined;
+    if (val === null)
+        return 'null';
+    if (typeof val === 'number') {
+        // NaN, Infinity, -Infinity serialize to null per JSON spec
+        if (!Number.isFinite(val))
+            return 'null';
+        return JSON.stringify(val);
+    }
+    if (typeof val === 'boolean' || typeof val === 'string')
+        return JSON.stringify(val);
+    if (Array.isArray(val)) {
+        return `[${val.map((v) => stableStringify(v) ?? 'null').join(',')}]`;
+    }
+    if (typeof val === 'object') {
+        const sorted = Object.keys(val).sort();
+        const pairs = [];
+        for (const k of sorted) {
+            const v = stableStringify(val[k]);
+            if (v !== undefined) {
+                pairs.push(`${JSON.stringify(k)}:${v}`);
+            }
+        }
+        return `{${pairs.join(',')}}`;
+    }
+    return JSON.stringify(val);
+}
+function canonicalStringify(obj) {
+    return stableStringify(obj) ?? '{}';
+}
+function signRequest(body, agentId, privateKeyBase64) {
+    const timestamp = Date.now().toString();
+    const nonce = (0, tweetnacl_util_1.encodeBase64)(tweetnacl_1.default.randomBytes(16));
+    const canonical = canonicalStringify(body);
+    const message = (0, tweetnacl_util_1.decodeUTF8)(`${canonical}:${timestamp}:${nonce}`);
+    const privateKey = (0, tweetnacl_util_1.decodeBase64)(privateKeyBase64);
+    const signature = tweetnacl_1.default.sign.detached(message, privateKey);
+    return {
+        'x-agent-id': agentId,
+        'x-timestamp': timestamp,
+        'x-signature': (0, tweetnacl_util_1.encodeBase64)(signature),
+        'x-nonce': nonce,
+    };
+}
+function verifyRequest(body, headers, publicKeyBase64, maxSkewMs = 5 * 60 * 1000) {
+    const agentId = headers['x-agent-id'];
+    const timestamp = headers['x-timestamp'];
+    const signatureB64 = headers['x-signature'];
+    const nonce = headers['x-nonce'];
+    if (!agentId || !timestamp || !signatureB64 || !nonce) {
+        throw new Error('Missing required signature headers');
+    }
+    const ts = parseInt(timestamp, 10);
+    const now = Date.now();
+    if (Math.abs(now - ts) > maxSkewMs) {
+        throw new Error(`Timestamp skew too large: ${Math.abs(now - ts)}ms`);
+    }
+    const canonical = canonicalStringify(body);
+    const message = (0, tweetnacl_util_1.decodeUTF8)(`${canonical}:${timestamp}:${nonce}`);
+    const signature = (0, tweetnacl_util_1.decodeBase64)(signatureB64);
+    const publicKey = (0, tweetnacl_util_1.decodeBase64)(publicKeyBase64);
+    const valid = tweetnacl_1.default.sign.detached.verify(message, signature, publicKey);
+    if (!valid) {
+        throw new Error('Invalid signature');
+    }
+    return { agentId, nonce };
+}
+//# sourceMappingURL=signing.js.map

package/dist/signing.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signing.js","sourceRoot":"","sources":["../src/signing.ts"],"names":[],"mappings":";;;;;AAeA,0CAMC;AAoCD,gDAEC;AAED,kCAmBC;AAED,sCAqCC;AAvHD,0DAA6B;AAC7B,mDAAwE;AAcxE,SAAgB,eAAe;IAC7B,MAAM,IAAI,GAAG,mBAAI,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;IACjC,OAAO;QACL,SAAS,EAAE,IAAA,6BAAY,EAAC,IAAI,CAAC,SAAS,CAAC;QACvC,UAAU,EAAE,IAAA,6BAAY,EAAC,IAAI,CAAC,SAAS,CAAC;KACzC,CAAC;AACJ,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,eAAe,CAAC,GAAY;IACnC,IAAI,GAAG,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IACxC,IAAI,GAAG,KAAK,IAAI;QAAE,OAAO,MAAM,CAAC;IAChC,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,2DAA2D;QAC3D,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;YAAE,OAAO,MAAM,CAAC;QACzC,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IAC7B,CAAC;IACD,IAAI,OAAO,GAAG,KAAK,SAAS,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;IACpF,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;IACvE,CAAC;IACD,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,GAAa,CAAC,CAAC,IAAI,EAAE,CAAC;QACjD,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;YACvB,MAAM,CAAC,GAAG,eAAe,CAAE,GAA+B,CAAC,CAAC,CAAC,CAAC,CAAC;YAC/D,IAAI,CAAC,KAAK,SAAS,EAAE,CAAC;gBACpB,KAAK,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YAC1C,CAAC;QACH,CAAC;QACD,OAAO,IAAI,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;IAChC,CAAC;IACD,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;AAC7B,CAAC;AAED,SAAgB,kBAAkB,CAAC,GAA4B;IAC7D,OAAO,eAAe,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC;AACtC,CAAC;AAED,SAAgB,WAAW,CACzB,IAA6B,EAC7B,OAAe,EACf,gBAAwB;IAExB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC;IACxC,MAAM,KAAK,GAAG,IAAA,6BAAY,EAAC,mBAAI,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC,CAAC;IACjD,MAAM,SAAS,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAC3C,MAAM,OAAO,GAAG,IAAA,2BAAU,EAAC,GAAG,SAAS,IAAI,SAAS,IAAI,KAAK,EAAE,CAAC,CAAC;IAEjE,MAAM,UAAU,GAAG,IAAA,6BAAY,EAAC,gBAAgB,CAAC,CAAC;IAClD,MAAM,SAAS,GAAG,mBAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;IAE1D,OAAO;QACL,YAAY,EAAE,OAAO;QACrB,aAAa,EAAE,SAAS;QACxB,aAAa,EAAE,IAAA,6BAAY,EAAC,SAAS,CAAC;QACtC,SAAS,EAAE,KAAK;KACjB,CAAC;AACJ,CAAC;AAED,SAAgB,aAAa,CAC3B,IAA6B,EAC7B,OAKC,EACD,eAAuB,EACvB,SAAS,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI;IAEzB,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IACtC,MAAM,SAAS,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;IACzC,MAAM,YAAY,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;IAC5C,MAAM,KAAK,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;IAEjC,IAAI,CAAC,OAAO,IAAI,CAAC,SAAS,IAAI,CAAC,YAAY,IAAI,CAAC,KAAK,EAAE,CAAC;QACtD,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxD,CAAC;IAED,MAAM,EAAE,GAAG,QAAQ,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;IACnC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,EAAE,CAAC,GAAG,SAAS,EAAE,CAAC;QACnC,MAAM,IAAI,KAAK,CAAC,6BAA6B,IAAI,CAAC,GAAG,CAAC,GAAG,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;IACvE,CAAC;IAED,MAAM,SAAS,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAC3C,MAAM,OAAO,GAAG,IAAA,2BAAU,EAAC,GAAG,SAAS,IAAI,SAAS,IAAI,KAAK,EAAE,CAAC,CAAC;IACjE,MAAM,SAAS,GAAG,IAAA,6BAAY,EAAC,YAAY,CAAC,CAAC;IAC7C,MAAM,SAAS,GAAG,IAAA,6BAAY,EAAC,eAAe,CAAC,CAAC;IAEhD,MAAM,KAAK,GAAG,mBAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;IACvE,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAC;IACvC,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;AAC5B,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,184 @@
+export type WorkspaceRole = 'owner' | 'admin' | 'approver' | 'member';
+export type AgentStatus = 'active' | 'revoked' | 'suspended';
+export type AgentEnvironment = 'development' | 'staging' | 'production';
+export type ApprovalStatus = 'PENDING' | 'NEEDS_SECOND_APPROVAL' | 'APPROVED' | 'DENIED' | 'EXPIRED' | 'CANCELLED';
+export type ExecutionStatus = 'PENDING' | 'RUNNING' | 'SUCCEEDED' | 'FAILED' | 'UNDONE';
+export type ActionType = 'read' | 'write' | 'financial' | 'admin';
+export type PolicyDecision = 'ALLOW' | 'REQUIRE_APPROVAL' | 'BLOCK';
+export type RiskLevel = 'low' | 'medium' | 'high' | 'critical';
+export interface Workspace {
+    id: string;
+    name: string;
+    slug: string;
+    safe_mode: boolean;
+    safe_mode_enabled_at?: string;
+    safe_mode_enabled_by?: string;
+    timeline_enabled: boolean;
+    audit_log_enabled: boolean;
+    retention_days?: number | null;
+    created_at: string;
+    updated_at: string;
+}
+export interface WorkspaceMember {
+    id: string;
+    workspace_id: string;
+    user_id: string;
+    role: WorkspaceRole;
+    created_at: string;
+}
+export interface Agent {
+    id: string;
+    workspace_id: string;
+    name: string;
+    environment: AgentEnvironment;
+    public_key: string;
+    allowed_tools: string[];
+    status: AgentStatus;
+    created_by?: string;
+    created_at: string;
+    updated_at: string;
+    last_seen_at?: string;
+}
+export interface ApiCredential {
+    id: string;
+    workspace_id: string;
+    name: string;
+    connector_type: string;
+    last_four?: string;
+    created_by?: string;
+    created_at: string;
+    updated_at: string;
+}
+export interface Policy {
+    id: string;
+    workspace_id: string;
+    name: string;
+    is_default: boolean;
+    rules: PolicyRules;
+    created_at: string;
+    updated_at: string;
+}
+export interface PolicyRules {
+    defaultMode: 'allow' | 'require_approval' | 'block';
+    rules: PolicyRule[];
+    http?: {
+        allowedDomains: string[];
+        allowedMethods: string[];
+        blockList: string[];
+    };
+    limits?: {
+        maxCostPerAction?: number;
+        maxActionsPerHour?: number;
+    };
+}
+export interface PolicyRule {
+    action_type?: ActionType;
+    tool?: string;
+    domain?: string;
+    decision: PolicyDecision;
+    require_two_approvals?: boolean;
+}
+export interface PolicyEvaluationResult {
+    decision: PolicyDecision;
+    risk_level: RiskLevel;
+    reason: string;
+    matched_rule?: PolicyRule;
+}
+export interface ApprovalRequest {
+    id: string;
+    workspace_id: string;
+    agent_id: string;
+    status: ApprovalStatus;
+    action_type: ActionType;
+    tool: string;
+    preview: ActionPreview;
+    risk_level: RiskLevel;
+    policy_decision: string;
+    policy_reason?: string;
+    expires_at: string;
+    requires_two_approvals: boolean;
+    approved_by?: string;
+    denied_by?: string;
+    decided_at?: string;
+    second_approved_by?: string;
+    second_decided_at?: string;
+    request_hash: string;
+    request_body: Record<string, unknown>;
+    created_at: string;
+    updated_at: string;
+}
+export interface ActionPreview {
+    summary: string;
+    target?: string;
+    impact?: string;
+    cost_estimate?: number;
+    raw_action?: Record<string, unknown>;
+}
+export interface ActionExecution {
+    id: string;
+    workspace_id: string;
+    approval_request_id?: string;
+    agent_id: string;
+    connector: string;
+    action_type: ActionType;
+    status: ExecutionStatus;
+    sanitized_request: Record<string, unknown>;
+    sanitized_response?: Record<string, unknown>;
+    undo_supported: boolean;
+    error_message?: string;
+    executed_at?: string;
+    completed_at?: string;
+    undone_at?: string;
+    created_at: string;
+    updated_at: string;
+}
+export interface AuditEvent {
+    id: string;
+    workspace_id: string;
+    event_type: string;
+    actor_id?: string;
+    actor_type: 'user' | 'agent' | 'system';
+    agent_id?: string;
+    resource_type?: string;
+    resource_id?: string;
+    metadata: Record<string, unknown>;
+    created_at: string;
+}
+export type BrowserSessionStatus = 'active' | 'closed' | 'expired';
+export type BrowserTool = 'browser.open' | 'browser.click' | 'browser.type' | 'browser.fill_credentials' | 'browser.navigate' | 'browser.snapshot' | 'browser.screenshot' | 'browser.press_key' | 'browser.select' | 'browser.scroll' | 'browser.close';
+export interface BrowserSession {
+    id: string;
+    workspace_id: string;
+    agent_id: string;
+    approval_request_id: string;
+    status: BrowserSessionStatus;
+    allowed_domains: string[];
+    action_count: number;
+    created_at: string;
+    last_activity_at: string;
+    expires_at: string;
+    closed_at?: string;
+}
+export interface BrowserActionResult {
+    session_id: string;
+    snapshot: string;
+    page_url: string;
+    page_title: string;
+    action_performed: string;
+    screenshot?: string;
+}
+export interface AgentActionRequest {
+    action_type: ActionType;
+    tool: string;
+    payload: Record<string, unknown>;
+    idempotency_key?: string;
+    cost_estimate?: number;
+}
+export interface GatewayRequestResult {
+    request_id: string;
+    decision: PolicyDecision;
+    status: ApprovalStatus | 'ALLOWED' | 'BLOCKED';
+    message?: string;
+    expires_at?: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,aAAa,GAAG,OAAO,GAAG,OAAO,GAAG,UAAU,GAAG,QAAQ,CAAC;AACtE,MAAM,MAAM,WAAW,GAAG,QAAQ,GAAG,SAAS,GAAG,WAAW,CAAC;AAC7D,MAAM,MAAM,gBAAgB,GAAG,aAAa,GAAG,SAAS,GAAG,YAAY,CAAC;AACxE,MAAM,MAAM,cAAc,GAAG,SAAS,GAAG,uBAAuB,GAAG,UAAU,GAAG,QAAQ,GAAG,SAAS,GAAG,WAAW,CAAC;AACnH,MAAM,MAAM,eAAe,GAAG,SAAS,GAAG,SAAS,GAAG,WAAW,GAAG,QAAQ,GAAG,QAAQ,CAAC;AACxF,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,OAAO,GAAG,WAAW,GAAG,OAAO,CAAC;AAClE,MAAM,MAAM,cAAc,GAAG,OAAO,GAAG,kBAAkB,GAAG,OAAO,CAAC;AACpE,MAAM,MAAM,SAAS,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;AAE/D,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,OAAO,CAAC;IACnB,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,gBAAgB,EAAE,OAAO,CAAC;IAC1B,iBAAiB,EAAE,OAAO,CAAC;IAC3B,cAAc,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,aAAa,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,KAAK;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,gBAAgB,CAAC;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,MAAM,EAAE,WAAW,CAAC;IACpB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,OAAO,CAAC;IACpB,KAAK,EAAE,WAAW,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,WAAW,EAAE,OAAO,GAAG,kBAAkB,GAAG,OAAO,CAAC;IACpD,KAAK,EAAE,UAAU,EAAE,CAAC;IACpB,IAAI,CAAC,EAAE;QACL,cAAc,EAAE,MAAM,EAAE,CAAC;QACzB,cAAc,EAAE,MAAM,EAAE,CAAC;QACzB,SAAS,EAAE,MAAM,EAAE,CAAC;KACrB,CAAC;IACF,MAAM,CAAC,EAAE;QACP,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B,iBAAiB,CAAC,EAAE,MAAM,CAAC;KAC5B,CAAC;CACH;AAED,MAAM,WAAW,UAAU;IACzB,WAAW,CAAC,EAAE,UAAU,CAAC;IACzB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,cAAc,CAAC;IACzB,qBAAqB,CAAC,EAAE,OAAO,CAAC;CACjC;AAED,MAAM,WAAW,sBAAsB;IACrC,QAAQ,EAAE,cAAc,CAAC;IACzB,UAAU,EAAE,SAAS,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,CAAC,EAAE,UAAU,CAAC;CAC3B;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,cAAc,CAAC;IACvB,WAAW,EAAE,UAAU,CAAC;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,aAAa,CAAC;IACvB,UAAU,EAAE,SAAS,CAAC;IACtB,eAAe,EAAE,MAAM,CAAC;IACxB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,sBAAsB,EAAE,OAAO,CAAC;IAChC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACtC,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACtC;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,UAAU,CAAC;IACxB,MAAM,EAAE,eAAe,CAAC;IACxB,iBAAiB,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC3C,kBAAkB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC7C,cAAc,EAAE,OAAO,CAAC;IACxB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,GAAG,OAAO,GAAG,QAAQ,CAAC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,MAAM,oBAAoB,GAAG,QAAQ,GAAG,QAAQ,GAAG,SAAS,CAAC;AAEnE,MAAM,MAAM,WAAW,GACnB,cAAc,GACd,eAAe,GACf,cAAc,GACd,0BAA0B,GAC1B,kBAAkB,GAClB,kBAAkB,GAClB,oBAAoB,GACpB,mBAAmB,GACnB,gBAAgB,GAChB,gBAAgB,GAChB,eAAe,CAAC;AAEpB,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,MAAM,EAAE,oBAAoB,CAAC;IAC7B,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,mBAAmB;IAClC,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,kBAAkB;IACjC,WAAW,EAAE,UAAU,CAAC;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,oBAAoB;IACnC,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,cAAc,CAAC;IACzB,MAAM,EAAE,cAAc,GAAG,SAAS,GAAG,SAAS,CAAC;IAC/C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB"}

package/dist/types.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":""}