agentskeptic 2.4.0 → 3.1.0

package/dist/trustDecisionBlockedError.js

@@ -0,0 +1,21 @@
+/**
+ * Raised when **`assertSafeForIrreversibleAction`** / LangGraph checkpoint production gate denies trust.
+ * Carries deterministic **`record`** suitable for ingestion and UI (**`human_blocker_lines`** parallel **`message`** joined by newlines).
+ */
+export class TrustDecisionBlockedError extends Error {
+    record;
+    /** Mirrors **`record.trust_decision`** (non-**`safe`** when thrown). */
+    trustDecision;
+    /** Original certificate when available (**host-only consumers**). */
+    outcomeCertificate;
+    constructor(record, outcomeCertificate) {
+        super(record.human_blocker_lines.join("\n"));
+        this.name = "TrustDecisionBlockedError";
+        this.record = record;
+        this.trustDecision = record.trust_decision;
+        if (outcomeCertificate !== undefined) {
+            this.outcomeCertificate = outcomeCertificate;
+        }
+    }
+}
+//# sourceMappingURL=trustDecisionBlockedError.js.map

package/dist/trustDecisionBlockedError.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"trustDecisionBlockedError.js","sourceRoot":"","sources":["../src/trustDecisionBlockedError.ts"],"names":[],"mappings":"AAIA;;;GAGG;AACH,MAAM,OAAO,yBAA0B,SAAQ,KAAK;IACzC,MAAM,CAAwB;IACvC,wEAAwE;IAC/D,aAAa,CAAgB;IACtC,qEAAqE;IAC5D,kBAAkB,CAAwB;IAEnD,YAAY,MAA6B,EAAE,kBAAyC;QAClF,KAAK,CAAC,MAAM,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAC7C,IAAI,CAAC,IAAI,GAAG,2BAA2B,CAAC;QACxC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,aAAa,GAAG,MAAM,CAAC,cAAc,CAAC;QAC3C,IAAI,kBAAkB,KAAK,SAAS,EAAE,CAAC;YACrC,IAAI,CAAC,kBAAkB,GAAG,kBAAkB,CAAC;QAC/C,CAAC;IACH,CAAC;CACF"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "agentskeptic",
-  "version": "2.4.0",
+  "version": "3.1.0",
   "description": "AgentSkeptic compares agent claims with real downstream state — databases, APIs, object stores, and vector stores — and returns a clear verdict.",
   "license": "MIT",
   "type": "module",

package/schemas/governance-audit-bundle-v1.schema.json

@@ -0,0 +1,33 @@
+{
+  "$id": "https://agentskeptic.com/schemas/governance-audit-bundle-v1.schema.json",
+  "title": "GovernanceAuditBundleV1",
+  "type": "object",
+  "additionalProperties": false,
+  "required": ["schemaVersion", "generatedAt", "userId", "workflowId", "baseline", "events"],
+  "properties": {
+    "schemaVersion": { "type": "integer", "const": 1 },
+    "generatedAt": { "type": "string", "format": "date-time" },
+    "userId": { "type": "string", "minLength": 1 },
+    "workflowId": { "type": "string", "minLength": 1 },
+    "window": {
+      "type": "object",
+      "additionalProperties": false,
+      "required": ["from", "to"],
+      "properties": {
+        "from": { "type": "string", "format": "date-time" },
+        "to": { "type": "string", "format": "date-time" }
+      }
+    },
+    "baseline": {
+      "type": ["object", "null"],
+      "additionalProperties": true
+    },
+    "events": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "additionalProperties": true
+      }
+    }
+  }
+}

package/schemas/material-truth-v1.schema.json

@@ -0,0 +1,62 @@
+{
+  "$id": "https://agentskeptic.com/schemas/material-truth-v1.schema.json",
+  "title": "MaterialTruthV1",
+  "type": "object",
+  "additionalProperties": false,
+  "required": [
+    "schemaVersion",
+    "workflowId",
+    "runKind",
+    "stateRelation",
+    "reasonCodes",
+    "steps",
+    "checkpointVerdicts"
+  ],
+  "properties": {
+    "schemaVersion": { "type": "integer", "const": 1 },
+    "workflowId": { "type": "string", "minLength": 1, "maxLength": 512 },
+    "runKind": {
+      "type": "string",
+      "enum": ["contract_sql", "contract_sql_langgraph_checkpoint_trust", "quick_preview"]
+    },
+    "stateRelation": {
+      "type": "string",
+      "enum": ["matches_expectations", "does_not_match", "not_established"]
+    },
+    "reasonCodes": {
+      "type": "array",
+      "items": { "type": "string", "minLength": 1, "maxLength": 256 }
+    },
+    "steps": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "additionalProperties": false,
+        "required": ["seq", "toolId", "declaredAction", "expectedOutcome", "observedOutcome"],
+        "properties": {
+          "seq": { "type": "integer", "minimum": 0 },
+          "toolId": { "type": "string", "maxLength": 512 },
+          "declaredAction": { "type": "string", "minLength": 1, "maxLength": 4096 },
+          "expectedOutcome": { "type": "string", "minLength": 1, "maxLength": 4096 },
+          "observedOutcome": { "type": "string", "minLength": 1, "maxLength": 8192 }
+        }
+      }
+    },
+    "checkpointVerdicts": {
+      "type": "array",
+      "items": {
+        "type": "object",
+        "additionalProperties": false,
+        "required": ["checkpointKey", "verdict", "seqs"],
+        "properties": {
+          "checkpointKey": { "type": "string", "minLength": 1, "maxLength": 2048 },
+          "verdict": { "type": "string", "enum": ["verified", "inconsistent", "incomplete"] },
+          "seqs": {
+            "type": "array",
+            "items": { "type": "integer", "minimum": 0 }
+          }
+        }
+      }
+    }
+  }
+}

package/schemas/openapi-commercial-v1.in.yaml

@@ -125,7 +125,7 @@ paths:
         content:
           application/json:
             schema:
-              $ref: "#/components/schemas/EnforcementProjectionRequest"
+              $ref: "#/components/schemas/EnforcementEvidenceRequestV2"
       responses:
         "200":
           description: Baseline created or replaced
@@ -156,7 +156,7 @@ paths:
         content:
           application/json:
             schema:
-              $ref: "#/components/schemas/EnforcementProjectionRequest"
+              $ref: "#/components/schemas/EnforcementEvidenceRequestV2"
       responses:
         "200":
           description: Comparison result (ok or drift)
@@ -181,7 +181,7 @@ paths:
         content:
           application/json:
             schema:
-              $ref: "#/components/schemas/EnforcementProjectionRequest"
+              $ref: "#/components/schemas/EnforcementEvidenceRequestV2"
       responses:
         "200":
           description: Drift accepted
@@ -213,6 +213,47 @@ paths:
             application/json:
               schema:
                 $ref: "#/components/schemas/EnforcementHistoryResponse"
+  /api/v1/governance/export:
+    get:
+      operationId: exportGovernanceAuditBundle
+      summary: Export governance audit bundle for one workflow (session auth)
+      parameters:
+        - name: workflow_id
+          in: query
+          required: true
+          schema:
+            type: string
+        - name: from
+          in: query
+          required: false
+          schema:
+            type: string
+            format: date-time
+        - name: to
+          in: query
+          required: false
+          schema:
+            type: string
+            format: date-time
+      responses:
+        "200":
+          description: Governance audit bundle
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/GovernanceAuditBundleV1"
+        "400":
+          description: Invalid request
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/ProblemDetails"
+        "401":
+          description: Not authenticated
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/ProblemDetails"
   /api/public/verification-reports:
     post:
       operationId: createPublicVerificationReport
@@ -304,6 +345,48 @@ paths:
             application/json:
               schema:
                 $ref: "#/components/schemas/ProblemDetails"
+  /api/v1/funnel/trust-decision-blocked:
+    post:
+      operationId: postTrustDecisionBlocked
+      summary: Record a blocked irreversible trust decision (idempotent per API key + fingerprint)
+      description: >
+        POST when an in-process gate blocks an irreversible action. Success is HTTP 204.
+        Requires Bearer API key with report scope. Duplicate fingerprint returns 204 without a second funnel insert.
+      security:
+        - bearerAuth: []
+      requestBody:
+        required: true
+        content:
+          application/json:
+            schema:
+              $ref: "#/components/schemas/TrustDecisionRecordRequestV1"
+      responses:
+        "204":
+          description: Record accepted or duplicate ignored
+        "400":
+          description: Invalid JSON or validation failure
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/ProblemDetails"
+        "401":
+          description: Invalid API key
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/ProblemDetails"
+        "413":
+          description: Payload too large
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/ProblemDetails"
+        "503":
+          description: Server error
+          content:
+            application/json:
+              schema:
+                $ref: "#/components/schemas/ProblemDetails"
   /api/oss/claim-ticket:
     post:
       operationId: postOssClaimTicket
@@ -461,19 +544,24 @@ components:
       scheme: bearer
       bearerFormat: API key
   schemas:
-    EnforcementProjectionRequest:
+    EnforcementEvidenceRequestV2:
       type: object
-      required: [run_id, workflow_id, projection_hash, projection]
+      required: [schema_version, run_id, workflow_id, outcome_certificate_v1, material_truth_sha256, certificate_sha256]
       properties:
+        schema_version:
+          type: integer
+          const: 2
         run_id:
           type: string
         workflow_id:
           type: string
-        projection_hash:
-          type: string
-        projection:
+        outcome_certificate_v1:
           type: object
           additionalProperties: true
+        material_truth_sha256:
+          type: string
+        certificate_sha256:
+          type: string
     EnforcementStateResponse:
       type: object
       required: [schema_version, status, workflow_id]
@@ -509,6 +597,39 @@ components:
           items:
             type: object
             additionalProperties: true
+    GovernanceAuditBundleV1:
+      type: object
+      required: [schemaVersion, generatedAt, userId, workflowId, baseline, events]
+      properties:
+        schemaVersion:
+          type: integer
+          const: 1
+        generatedAt:
+          type: string
+          format: date-time
+        userId:
+          type: string
+        workflowId:
+          type: string
+        window:
+          type: object
+          required: [from, to]
+          properties:
+            from:
+              type: string
+              format: date-time
+            to:
+              type: string
+              format: date-time
+        baseline:
+          type: object
+          nullable: true
+          additionalProperties: true
+        events:
+          type: array
+          items:
+            type: object
+            additionalProperties: true
     ProblemDetails:
       type: object
       required: [type, title, status, detail]
@@ -564,6 +685,102 @@ components:
         subcommand:
           type: string
           enum: [batch_verify, quick_verify, verify_integrator_owned]
+    TrustDecisionRecordRequestV1:
+      type: object
+      additionalProperties: false
+      required:
+        - schema_version
+        - trust_decision
+        - gate_kind
+        - routing
+        - certificate_snapshot
+        - human_blocker_lines
+      properties:
+        schema_version:
+          type: integer
+          const: 1
+        trust_decision:
+          type: string
+          enum: [safe, unsafe, unknown]
+        gate_kind:
+          type: string
+          enum: [contract_sql_irreversible, langgraph_checkpoint_terminal]
+        routing:
+          type: object
+          additionalProperties: false
+          required:
+            - routing_key
+          properties:
+            routing_key:
+              type: string
+              maxLength: 512
+            team:
+              type: string
+              maxLength: 256
+            owner_slug:
+              type: string
+              maxLength: 256
+        certificate_snapshot:
+          $ref: "#/components/schemas/TrustCertificateSnapshotRequestV1"
+        human_blocker_lines:
+          type: array
+          minItems: 6
+          maxItems: 6
+          items:
+            type: string
+    TrustCertificateSnapshotRequestV1:
+      type: object
+      additionalProperties: false
+      required:
+        - schema_version
+        - workflow_id
+        - run_kind
+        - state_relation
+        - high_stakes_reliance
+        - reason_codes
+        - first_problem
+      properties:
+        schema_version:
+          type: integer
+          const: 1
+        workflow_id:
+          type: string
+          maxLength: 512
+        run_kind:
+          type: string
+          enum: [contract_sql, contract_sql_langgraph_checkpoint_trust, quick_preview]
+        state_relation:
+          type: string
+          enum: [matches_expectations, does_not_match, not_established]
+        high_stakes_reliance:
+          type: string
+          enum: [permitted, prohibited]
+        reason_codes:
+          type: array
+          maxItems: 24
+          items:
+            type: string
+        first_problem:
+          nullable: true
+          type: object
+          additionalProperties: false
+          required:
+            - seq
+            - tool_id
+            - observed_trunc
+            - expected_trunc
+          properties:
+            seq:
+              type: integer
+              minimum: 0
+            tool_id:
+              type: string
+            observed_trunc:
+              type: string
+              maxLength: 512
+            expected_trunc:
+              type: string
+              maxLength: 512
     OssClaimTicketRequest:
       type: object
       description: v1 or v2 OSS claim ticket wire shape (see website/src/lib/ossClaimTicketPayload.ts).