ai-cred 1.0.0

package/dist/cli/utils/display.d.ts

@@ -0,0 +1,14 @@
+/**
+ * Display utilities for CLI output: secret masking and formatting.
+ */
+import type { Credential } from '../../types/credential.js';
+/**
+ * Mask a secret value for safe display.
+ * Short values (<=6 chars) become "****".
+ * Longer values show first 2 and last 2 characters: "ak...3f".
+ */
+export declare function maskSecret(value: string): string;
+/**
+ * Extract the primary secret field from a credential for masked display.
+ */
+export declare function getPrimarySecret(credential: Credential): string;

package/dist/cli/utils/display.js

@@ -0,0 +1,31 @@
+/**
+ * Display utilities for CLI output: secret masking and formatting.
+ */
+/**
+ * Mask a secret value for safe display.
+ * Short values (<=6 chars) become "****".
+ * Longer values show first 2 and last 2 characters: "ak...3f".
+ */
+export function maskSecret(value) {
+    if (value.length <= 6)
+        return '****';
+    return `${value.slice(0, 2)}...${value.slice(-2)}`;
+}
+/**
+ * Extract the primary secret field from a credential for masked display.
+ */
+export function getPrimarySecret(credential) {
+    switch (credential.type) {
+        case 'ssh':
+            return credential.password ?? credential.keyPath ?? '(key-based)';
+        case 'jenkins':
+            return credential.apiToken;
+        case 'portainer':
+            return credential.apiToken;
+        case 'aws':
+            return credential.secretAccessKey;
+        case 'api-key':
+            return credential.key;
+    }
+}
+//# sourceMappingURL=display.js.map

package/dist/cli/utils/display.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"display.js","sourceRoot":"","sources":["../../../src/cli/utils/display.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH;;;;GAIG;AACH,MAAM,UAAU,UAAU,CAAC,KAAa;IACtC,IAAI,KAAK,CAAC,MAAM,IAAI,CAAC;QAAE,OAAO,MAAM,CAAC;IACrC,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;AACrD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,UAAsB;IACrD,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;QACxB,KAAK,KAAK;YACR,OAAO,UAAU,CAAC,QAAQ,IAAI,UAAU,CAAC,OAAO,IAAI,aAAa,CAAC;QACpE,KAAK,SAAS;YACZ,OAAO,UAAU,CAAC,QAAQ,CAAC;QAC7B,KAAK,WAAW;YACd,OAAO,UAAU,CAAC,QAAQ,CAAC;QAC7B,KAAK,KAAK;YACR,OAAO,UAAU,CAAC,eAAe,CAAC;QACpC,KAAK,SAAS;YACZ,OAAO,UAAU,CAAC,GAAG,CAAC;IAC1B,CAAC;AACH,CAAC"}

package/dist/cli/utils/prompt.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Masked password input for CLI secret prompts.
+ *
+ * Handles both TTY (interactive) and non-TTY (piped/CI) input streams.
+ */
+export declare function promptSecret(prompt: string): Promise<string>;

package/dist/cli/utils/prompt.js

@@ -0,0 +1,66 @@
+/**
+ * Masked password input for CLI secret prompts.
+ *
+ * Handles both TTY (interactive) and non-TTY (piped/CI) input streams.
+ */
+export function promptSecret(prompt) {
+    return new Promise((resolve, reject) => {
+        process.stdout.write(prompt);
+        // Non-TTY: read a single line without masking (setRawMode unavailable)
+        if (!process.stdin.isTTY) {
+            let data = '';
+            process.stdin.setEncoding('utf8');
+            process.stdin.on('data', (chunk) => {
+                data += chunk;
+                const newlineIdx = data.indexOf('\n');
+                if (newlineIdx !== -1) {
+                    process.stdin.pause();
+                    resolve(data.slice(0, newlineIdx).replace(/\r$/, ''));
+                }
+            });
+            process.stdin.on('end', () => {
+                resolve(data.replace(/[\r\n]+$/, ''));
+            });
+            process.stdin.resume();
+            return;
+        }
+        // TTY: character-by-character reading with asterisk echo
+        const input = [];
+        process.stdin.setRawMode(true);
+        process.stdin.setEncoding('utf8');
+        process.stdin.resume();
+        const onData = (ch) => {
+            const code = ch.charCodeAt(0);
+            // Ctrl+C
+            if (ch === '\u0003') {
+                process.stdin.setRawMode(false);
+                process.stdin.pause();
+                process.stdin.removeListener('data', onData);
+                process.stdout.write('\n');
+                process.exit(1);
+            }
+            // Enter
+            if (ch === '\r' || ch === '\n') {
+                process.stdin.setRawMode(false);
+                process.stdin.pause();
+                process.stdin.removeListener('data', onData);
+                process.stdout.write('\n');
+                resolve(input.join(''));
+                return;
+            }
+            // Backspace / Delete
+            if (code === 127 || code === 8) {
+                if (input.length > 0) {
+                    input.pop();
+                    process.stdout.write('\b \b');
+                }
+                return;
+            }
+            // Regular character
+            input.push(ch);
+            process.stdout.write('*');
+        };
+        process.stdin.on('data', onData);
+    });
+}
+//# sourceMappingURL=prompt.js.map

package/dist/cli/utils/prompt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompt.js","sourceRoot":"","sources":["../../../src/cli/utils/prompt.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,MAAM,UAAU,YAAY,CAAC,MAAc;IACzC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAE7B,uEAAuE;QACvE,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;YACzB,IAAI,IAAI,GAAG,EAAE,CAAC;YACd,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;YAClC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAa,EAAE,EAAE;gBACzC,IAAI,IAAI,KAAK,CAAC;gBACd,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;gBACtC,IAAI,UAAU,KAAK,CAAC,CAAC,EAAE,CAAC;oBACtB,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;oBACtB,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC;gBACxD,CAAC;YACH,CAAC,CAAC,CAAC;YACH,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;gBAC3B,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC,CAAC;YACxC,CAAC,CAAC,CAAC;YACH,OAAO,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;YACvB,OAAO;QACT,CAAC;QAED,yDAAyD;QACzD,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAC/B,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;QAClC,OAAO,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;QAEvB,MAAM,MAAM,GAAG,CAAC,EAAU,EAAE,EAAE;YAC5B,MAAM,IAAI,GAAG,EAAE,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;YAE9B,SAAS;YACT,IAAI,EAAE,KAAK,QAAQ,EAAE,CAAC;gBACpB,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;gBAChC,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;gBACtB,OAAO,CAAC,KAAK,CAAC,cAAc,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;gBAC7C,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBAC3B,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;YAED,QAAQ;YACR,IAAI,EAAE,KAAK,IAAI,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC;gBAC/B,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;gBAChC,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;gBACtB,OAAO,CAAC,KAAK,CAAC,cAAc,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;gBAC7C,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBAC3B,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;gBACxB,OAAO;YACT,CAAC;YAED,qBAAqB;YACrB,IAAI,IAAI,KAAK,GAAG,IAAI,IAAI,KAAK,CAAC,EAAE,CAAC;gBAC/B,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBACrB,KAAK,CAAC,GAAG,EAAE,CAAC;oBACZ,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;gBAChC,CAAC;gBACD,OAAO;YACT,CAAC;YAED,oBAAoB;YACpB,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACf,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC5B,CAAC,CAAC;QAEF,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/core/audit-logger.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Append-only audit logger for credential operations.
+ *
+ * Writes JSON Lines to ~/.ai-cred/audit.log.
+ * CRITICAL: Only operation metadata is logged -- never credential values.
+ * The AuditEntry type enforces this by design.
+ */
+export interface AuditEntry {
+    timestamp: string;
+    operation: 'store' | 'get' | 'delete' | 'update' | 'list' | 'find';
+    service: string;
+    environment: string;
+}
+/**
+ * Returns the path to the audit log file.
+ * Exported for testing purposes.
+ */
+export declare function getAuditLogPath(): string;
+/**
+ * Append a single audit entry to the log file.
+ *
+ * Adds an ISO 8601 timestamp automatically.
+ * Silently fails on write errors -- audit logging must never break credential operations.
+ */
+export declare function auditLog(entry: Omit<AuditEntry, 'timestamp'>, logPath?: string): Promise<void>;

package/dist/core/audit-logger.js

@@ -0,0 +1,41 @@
+/**
+ * Append-only audit logger for credential operations.
+ *
+ * Writes JSON Lines to ~/.ai-cred/audit.log.
+ * CRITICAL: Only operation metadata is logged -- never credential values.
+ * The AuditEntry type enforces this by design.
+ */
+import { appendFileSync, mkdirSync, existsSync } from 'node:fs';
+import { homedir } from 'node:os';
+import { join, dirname } from 'node:path';
+/**
+ * Returns the path to the audit log file.
+ * Exported for testing purposes.
+ */
+export function getAuditLogPath() {
+    return join(homedir(), '.ai-cred', 'audit.log');
+}
+/**
+ * Append a single audit entry to the log file.
+ *
+ * Adds an ISO 8601 timestamp automatically.
+ * Silently fails on write errors -- audit logging must never break credential operations.
+ */
+export async function auditLog(entry, logPath) {
+    try {
+        const resolvedPath = logPath ?? getAuditLogPath();
+        const dir = dirname(resolvedPath);
+        if (!existsSync(dir)) {
+            mkdirSync(dir, { recursive: true });
+        }
+        const fullEntry = {
+            timestamp: new Date().toISOString(),
+            ...entry,
+        };
+        appendFileSync(resolvedPath, JSON.stringify(fullEntry) + '\n');
+    }
+    catch {
+        // Silently fail -- audit must not break credential operations
+    }
+}
+//# sourceMappingURL=audit-logger.js.map

package/dist/core/audit-logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-logger.js","sourceRoot":"","sources":["../../src/core/audit-logger.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,cAAc,EAAE,SAAS,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAChE,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAS1C;;;GAGG;AACH,MAAM,UAAU,eAAe;IAC7B,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,UAAU,EAAE,WAAW,CAAC,CAAC;AAClD,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,QAAQ,CAAC,KAAoC,EAAE,OAAgB;IACnF,IAAI,CAAC;QACH,MAAM,YAAY,GAAG,OAAO,IAAI,eAAe,EAAE,CAAC;QAClD,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;QAElC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACrB,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACtC,CAAC;QAED,MAAM,SAAS,GAAe;YAC5B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,GAAG,KAAK;SACT,CAAC;QAEF,cAAc,CAAC,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,CAAC;IACjE,CAAC;IAAC,MAAM,CAAC;QACP,8DAA8D;IAChE,CAAC;AACH,CAAC"}

package/dist/core/audit-logger.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/core/audit-logger.test.js

@@ -0,0 +1,89 @@
+import { describe, it, expect, afterEach } from 'vitest';
+import { mkdtempSync, readFileSync, rmSync } from 'node:fs';
+import { tmpdir } from 'node:os';
+import { join } from 'node:path';
+import { auditLog } from './audit-logger.js';
+describe('auditLog', () => {
+    let tempDir;
+    let logPath;
+    // Create a fresh temp directory before each test via the setup in each test
+    // Clean up after each test
+    afterEach(() => {
+        if (tempDir) {
+            rmSync(tempDir, { recursive: true, force: true });
+        }
+    });
+    function setup() {
+        tempDir = mkdtempSync(join(tmpdir(), 'audit-test-'));
+        logPath = join(tempDir, 'audit.log');
+    }
+    it('writes audit entry with correct fields', async () => {
+        setup();
+        await auditLog({ operation: 'store', service: 'jenkins', environment: 'prod' }, logPath);
+        const content = readFileSync(logPath, 'utf-8').trim();
+        const entry = JSON.parse(content);
+        expect(entry).toHaveProperty('timestamp');
+        expect(entry.operation).toBe('store');
+        expect(entry.service).toBe('jenkins');
+        expect(entry.environment).toBe('prod');
+    });
+    it('appends multiple entries without overwriting', async () => {
+        setup();
+        await auditLog({ operation: 'store', service: 'jenkins', environment: 'prod' }, logPath);
+        await auditLog({ operation: 'get', service: 'aws', environment: 'dev' }, logPath);
+        await auditLog({ operation: 'delete', service: 'ssh', environment: 'staging' }, logPath);
+        const lines = readFileSync(logPath, 'utf-8').trim().split('\n');
+        expect(lines).toHaveLength(3);
+        // Each line is valid JSON
+        for (const line of lines) {
+            expect(() => JSON.parse(line)).not.toThrow();
+        }
+    });
+    it('never contains credential values', async () => {
+        setup();
+        // The audit logger only accepts operation metadata fields.
+        // Even if a credential with secrets exists, the AuditEntry type
+        // excludes credential values by design.
+        const secretPassword = 'super-secret-123';
+        const secretToken = 'tok-abc';
+        // Log an operation that would correspond to storing a credential with secrets
+        await auditLog({ operation: 'store', service: 'jenkins', environment: 'prod' }, logPath);
+        const content = readFileSync(logPath, 'utf-8');
+        expect(content).not.toContain(secretPassword);
+        expect(content).not.toContain(secretToken);
+        // Verify only expected fields are present
+        const entry = JSON.parse(content.trim());
+        const keys = Object.keys(entry);
+        expect(keys).toEqual(['timestamp', 'operation', 'service', 'environment']);
+    });
+    it('creates directory if it does not exist', async () => {
+        tempDir = mkdtempSync(join(tmpdir(), 'audit-test-'));
+        const nestedPath = join(tempDir, 'nested', 'deep', 'audit.log');
+        await auditLog({ operation: 'get', service: 'aws', environment: 'dev' }, nestedPath);
+        const content = readFileSync(nestedPath, 'utf-8').trim();
+        expect(content.length).toBeGreaterThan(0);
+        const entry = JSON.parse(content);
+        expect(entry.operation).toBe('get');
+    });
+    it('persists across separate calls (simulating restart)', async () => {
+        setup();
+        // First "session": write 2 entries
+        await auditLog({ operation: 'store', service: 'jenkins', environment: 'prod' }, logPath);
+        await auditLog({ operation: 'get', service: 'jenkins', environment: 'prod' }, logPath);
+        // Simulate process restart: no in-memory state carried over.
+        // Just call auditLog again with the same path -- it uses appendFileSync,
+        // so there is no in-memory state to carry.
+        await auditLog({ operation: 'delete', service: 'jenkins', environment: 'prod' }, logPath);
+        const lines = readFileSync(logPath, 'utf-8').trim().split('\n');
+        expect(lines).toHaveLength(3);
+    });
+    it('timestamp is valid ISO 8601', async () => {
+        setup();
+        await auditLog({ operation: 'list', service: 'all', environment: 'global' }, logPath);
+        const content = readFileSync(logPath, 'utf-8').trim();
+        const entry = JSON.parse(content);
+        // A valid ISO 8601 timestamp round-trips through Date
+        expect(new Date(entry.timestamp).toISOString()).toBe(entry.timestamp);
+    });
+});
+//# sourceMappingURL=audit-logger.test.js.map

package/dist/core/audit-logger.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-logger.test.js","sourceRoot":"","sources":["../../src/core/audit-logger.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACzD,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAC5D,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,QAAQ,EAAmB,MAAM,mBAAmB,CAAC;AAE9D,QAAQ,CAAC,UAAU,EAAE,GAAG,EAAE;IACxB,IAAI,OAAe,CAAC;IACpB,IAAI,OAAe,CAAC;IAEpB,4EAA4E;IAC5E,2BAA2B;IAC3B,SAAS,CAAC,GAAG,EAAE;QACb,IAAI,OAAO,EAAE,CAAC;YACZ,MAAM,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QACpD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,SAAS,KAAK;QACZ,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,aAAa,CAAC,CAAC,CAAC;QACrD,OAAO,GAAG,IAAI,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IACvC,CAAC;IAED,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,KAAK,EAAE,CAAC;QACR,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,CAAC;QAEzF,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;QACtD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAe,CAAC;QAEhD,MAAM,CAAC,KAAK,CAAC,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;QAC1C,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACtC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACtC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC5D,KAAK,EAAE,CAAC;QACR,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,CAAC;QACzF,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,EAAE,OAAO,CAAC,CAAC;QAClF,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,WAAW,EAAE,SAAS,EAAE,EAAE,OAAO,CAAC,CAAC;QAEzF,MAAM,KAAK,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChE,MAAM,CAAC,KAAK,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAE9B,0BAA0B;QAC1B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,EAAE,CAAC;QAC/C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kCAAkC,EAAE,KAAK,IAAI,EAAE;QAChD,KAAK,EAAE,CAAC;QACR,2DAA2D;QAC3D,gEAAgE;QAChE,wCAAwC;QACxC,MAAM,cAAc,GAAG,kBAAkB,CAAC;QAC1C,MAAM,WAAW,GAAG,SAAS,CAAC;QAE9B,8EAA8E;QAC9E,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,CAAC;QAEzF,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAC/C,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC;QAC9C,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAC3C,0CAA0C;QAC1C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAe,CAAC;QACvD,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChC,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,WAAW,EAAE,SAAS,EAAE,aAAa,CAAC,CAAC,CAAC;IAC7E,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,OAAO,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,aAAa,CAAC,CAAC,CAAC;QACrD,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,WAAW,CAAC,CAAC;QAEhE,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,EAAE,UAAU,CAAC,CAAC;QAErF,MAAM,OAAO,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;QACzD,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC1C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAe,CAAC;QAChD,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qDAAqD,EAAE,KAAK,IAAI,EAAE;QACnE,KAAK,EAAE,CAAC;QACR,mCAAmC;QACnC,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,CAAC;QACzF,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,CAAC;QAEvF,6DAA6D;QAC7D,yEAAyE;QACzE,2CAA2C;QAC3C,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,MAAM,EAAE,EAAE,OAAO,CAAC,CAAC;QAE1F,MAAM,KAAK,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAChE,MAAM,CAAC,KAAK,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;IAChC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6BAA6B,EAAE,KAAK,IAAI,EAAE;QAC3C,KAAK,EAAE,CAAC;QACR,MAAM,QAAQ,CAAC,EAAE,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,WAAW,EAAE,QAAQ,EAAE,EAAE,OAAO,CAAC,CAAC;QAEtF,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;QACtD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAe,CAAC;QAEhD,sDAAsD;QACtD,MAAM,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;IACxE,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/core/errors.d.ts

@@ -0,0 +1,23 @@
+/**
+ * KeychainError: Security boundary for all keychain operation errors.
+ *
+ * CRITICAL (SEC-05): This class is designed to NEVER expose credential data,
+ * stderr output, or raw subprocess error messages. The `message` property and
+ * `toString()` return only pre-mapped safe messages derived from exit codes.
+ */
+export declare class KeychainError extends Error {
+    readonly operation: string;
+    readonly service: string | undefined;
+    readonly exitCode: number;
+    readonly name = "KeychainError";
+    constructor(operation: string, exitCode: number, service?: string, _originalMessage?: string);
+    toString(): string;
+}
+/**
+ * Convert an unknown subprocess error into a KeychainError.
+ *
+ * CRITICAL (SEC-05): This function deliberately does NOT pass stderr, stdout,
+ * or any subprocess output into the KeychainError. Only the numeric exit code
+ * is forwarded; all textual subprocess data is discarded.
+ */
+export declare function toKeychainError(error: unknown, operation: string, service?: string): KeychainError;

package/dist/core/errors.js

@@ -0,0 +1,78 @@
+/**
+ * KeychainError: Security boundary for all keychain operation errors.
+ *
+ * CRITICAL (SEC-05): This class is designed to NEVER expose credential data,
+ * stderr output, or raw subprocess error messages. The `message` property and
+ * `toString()` return only pre-mapped safe messages derived from exit codes.
+ */
+/**
+ * Known macOS security CLI exit codes mapped to safe user-facing messages.
+ */
+const EXIT_CODE_MESSAGES = {
+    0: 'Success',
+    36: 'Keychain access was denied',
+    44: 'Credential not found',
+    45: 'Credential already exists',
+    51: 'Keychain is locked',
+};
+function safeMessage(exitCode, service) {
+    if (exitCode === 44) {
+        const base = EXIT_CODE_MESSAGES[44];
+        return service ? `${base} for ${service}` : base;
+    }
+    if (exitCode === 45) {
+        const base = EXIT_CODE_MESSAGES[45];
+        return service ? `${base} for ${service}` : base;
+    }
+    if (exitCode in EXIT_CODE_MESSAGES) {
+        return EXIT_CODE_MESSAGES[exitCode];
+    }
+    return `Keychain operation failed (code ${exitCode})`;
+}
+export class KeychainError extends Error {
+    operation;
+    service;
+    exitCode;
+    name = 'KeychainError';
+    constructor(operation, exitCode, service, 
+    // originalMessage is accepted but deliberately discarded -- never stored or exposed
+    _originalMessage) {
+        const msg = safeMessage(exitCode, service);
+        super(msg);
+        this.operation = operation;
+        this.exitCode = exitCode;
+        this.service = service;
+        // Ensure the prototype chain is set correctly for instanceof checks
+        Object.setPrototypeOf(this, KeychainError.prototype);
+    }
+    toString() {
+        return `KeychainError: ${this.message}`;
+    }
+}
+/**
+ * Convert an unknown subprocess error into a KeychainError.
+ *
+ * CRITICAL (SEC-05): This function deliberately does NOT pass stderr, stdout,
+ * or any subprocess output into the KeychainError. Only the numeric exit code
+ * is forwarded; all textual subprocess data is discarded.
+ */
+export function toKeychainError(error, operation, service) {
+    let exitCode = -1;
+    if (error !== null && typeof error === 'object') {
+        const err = error;
+        // Node.js subprocess errors expose the exit code as a numeric `code` on
+        // ChildProcessError/Error objects -- but `code` may also be a string like
+        // 'ERR_CHILD_PROCESS_STDIO_MAXBUFFER'. Only accept numeric codes.
+        if (typeof err['code'] === 'number') {
+            exitCode = err['code'];
+        }
+        // Some wrappers expose the numeric exit code under `exitCode`
+        if (exitCode === -1 && typeof err['exitCode'] === 'number') {
+            exitCode = err['exitCode'];
+        }
+        // If `code` is a non-numeric string signal/error-code, keep exitCode as -1
+    }
+    // Deliberately NOT forwarding any stderr/stdout/message content
+    return new KeychainError(operation, exitCode, service);
+}
+//# sourceMappingURL=errors.js.map

package/dist/core/errors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"errors.js","sourceRoot":"","sources":["../../src/core/errors.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH;;GAEG;AACH,MAAM,kBAAkB,GAA2B;IACjD,CAAC,EAAE,SAAS;IACZ,EAAE,EAAE,4BAA4B;IAChC,EAAE,EAAE,sBAAsB;IAC1B,EAAE,EAAE,2BAA2B;IAC/B,EAAE,EAAE,oBAAoB;CACzB,CAAC;AAEF,SAAS,WAAW,CAAC,QAAgB,EAAE,OAAgB;IACrD,IAAI,QAAQ,KAAK,EAAE,EAAE,CAAC;QACpB,MAAM,IAAI,GAAG,kBAAkB,CAAC,EAAE,CAAE,CAAC;QACrC,OAAO,OAAO,CAAC,CAAC,CAAC,GAAG,IAAI,QAAQ,OAAO,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACnD,CAAC;IACD,IAAI,QAAQ,KAAK,EAAE,EAAE,CAAC;QACpB,MAAM,IAAI,GAAG,kBAAkB,CAAC,EAAE,CAAE,CAAC;QACrC,OAAO,OAAO,CAAC,CAAC,CAAC,GAAG,IAAI,QAAQ,OAAO,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACnD,CAAC;IACD,IAAI,QAAQ,IAAI,kBAAkB,EAAE,CAAC;QACnC,OAAO,kBAAkB,CAAC,QAAQ,CAAE,CAAC;IACvC,CAAC;IACD,OAAO,mCAAmC,QAAQ,GAAG,CAAC;AACxD,CAAC;AAED,MAAM,OAAO,aAAc,SAAQ,KAAK;IAC7B,SAAS,CAAS;IAClB,OAAO,CAAqB;IAC5B,QAAQ,CAAS;IACR,IAAI,GAAG,eAAe,CAAC;IAEzC,YACE,SAAiB,EACjB,QAAgB,EAChB,OAAgB;IAChB,oFAAoF;IACpF,gBAAyB;QAEzB,MAAM,GAAG,GAAG,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC3C,KAAK,CAAC,GAAG,CAAC,CAAC;QACX,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAC3B,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QAEvB,oEAAoE;QACpE,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,aAAa,CAAC,SAAS,CAAC,CAAC;IACvD,CAAC;IAEQ,QAAQ;QACf,OAAO,kBAAkB,IAAI,CAAC,OAAO,EAAE,CAAC;IAC1C,CAAC;CACF;AAED;;;;;;GAMG;AACH,MAAM,UAAU,eAAe,CAC7B,KAAc,EACd,SAAiB,EACjB,OAAgB;IAEhB,IAAI,QAAQ,GAAG,CAAC,CAAC,CAAC;IAElB,IAAI,KAAK,KAAK,IAAI,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAChD,MAAM,GAAG,GAAG,KAAgC,CAAC;QAE7C,wEAAwE;QACxE,0EAA0E;QAC1E,kEAAkE;QAClE,IAAI,OAAO,GAAG,CAAC,MAAM,CAAC,KAAK,QAAQ,EAAE,CAAC;YACpC,QAAQ,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC;QACzB,CAAC;QACD,8DAA8D;QAC9D,IAAI,QAAQ,KAAK,CAAC,CAAC,IAAI,OAAO,GAAG,CAAC,UAAU,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC3D,QAAQ,GAAG,GAAG,CAAC,UAAU,CAAC,CAAC;QAC7B,CAAC;QACD,2EAA2E;IAC7E,CAAC;IAED,gEAAgE;IAChE,OAAO,IAAI,aAAa,CAAC,SAAS,EAAE,QAAQ,EAAE,OAAO,CAAC,CAAC;AACzD,CAAC"}

package/dist/core/keychain-adapter.d.ts

@@ -0,0 +1,65 @@
+/**
+ * KeychainAdapter: Wraps the macOS `security` CLI for all credential operations.
+ *
+ * Security invariants enforced throughout this file:
+ * - SEC-01: Every exec() call targets this.keychainPath (dedicated keychain only)
+ * - SEC-02: All subprocess calls use execFile (not exec) with argument arrays --
+ *           shell string interpolation is never used
+ * - SEC-04: list() returns metadata only -- no secret values, no -d/-w flags
+ * - SEC-05: No logging of subprocess arguments or output (they may contain credentials)
+ */
+import type { Credential, Environment } from '../types/credential.js';
+export { KeychainError } from './errors.js';
+/**
+ * Metadata returned by list() -- NEVER includes secret values (SEC-04).
+ */
+export interface CredentialMetadata {
+    service: string;
+    environment: Environment;
+    type: string;
+    createdAt: string;
+    modifiedAt: string;
+}
+export declare class KeychainAdapter {
+    private readonly keychainPath;
+    constructor(keychainPath?: string);
+    /**
+     * Internal helper: invoke the macOS `security` binary with the given args.
+     *
+     * SECURITY: Never log args (may include credentials in -w values).
+     * SECURITY: Errors are converted via toKeychainError which strips subprocess output.
+     */
+    private exec;
+    /**
+     * Initialize the dedicated keychain.
+     *
+     * First run: creates keychain, disables auto-lock, adds to search list.
+     * Every run: unlocks the keychain so operations can proceed.
+     */
+    initialize(): Promise<void>;
+    /**
+     * Store a credential in the dedicated keychain.
+     * Uses -U to update if the entry already exists.
+     */
+    store(env: Environment, service: string, credential: Credential): Promise<void>;
+    /**
+     * Retrieve a credential from the dedicated keychain.
+     * Validates the returned JSON against CredentialSchema before returning.
+     */
+    get(env: Environment, service: string): Promise<Credential>;
+    /**
+     * Delete a credential from the dedicated keychain.
+     */
+    delete(env: Environment, service: string): Promise<void>;
+    /**
+     * List all ai-cred credentials as metadata (no secret values) (SEC-04).
+     *
+     * Uses dump-keychain without -d flag so password data is NEVER retrieved.
+     * Filters entries by APP_MARKER in the description field.
+     */
+    list(): Promise<CredentialMetadata[]>;
+    /**
+     * Delete the entire keychain file. Intended for test cleanup only.
+     */
+    destroy(): Promise<void>;
+}