antpath 0.2.1 → 0.4.0

package/dist/platform/client.d.ts

@@ -1,204 +0,0 @@
-type FetchLike = (input: string | URL | Request, init?: RequestInit) => Promise<Response>;
-export type PlatformJsonPrimitive = string | number | boolean | null;
-export type PlatformJsonValue = PlatformJsonPrimitive | readonly PlatformJsonValue[] | {
-    readonly [key: string]: PlatformJsonValue;
-};
-export interface PlatformTemplateSubmission {
-    readonly name: string;
-    readonly model: string;
-    readonly templateHash: string;
-    readonly system?: string;
-    readonly messages: readonly string[];
-    readonly metadata?: Record<string, PlatformJsonValue>;
-}
-export type PlatformClaudeSessionCleanup = "retain" | "delete";
-export interface PlatformCleanupPolicy {
-    readonly session?: PlatformClaudeSessionCleanup;
-    readonly claudeSession?: PlatformClaudeSessionCleanup;
-}
-export interface PlatformAnthropicSecrets {
-    readonly apiKey: string;
-    readonly baseUrl?: string;
-}
-export interface PlatformMcpServerSecret {
-    readonly name: string;
-    readonly url: string;
-    readonly headers?: Record<string, string>;
-}
-export interface PlatformSkillReference {
-    readonly skillId: string;
-    readonly version?: string;
-}
-export interface PlatformInlineSecrets {
-    readonly anthropic: PlatformAnthropicSecrets;
-    readonly mcpServers?: readonly PlatformMcpServerSecret[];
-    readonly skills?: readonly PlatformSkillReference[];
-    /**
-     * Auth values for proxy endpoints declared at the top level of the
-     * submission. Each entry's `name` must match a declared
-     * `proxyEndpoints[i].name` and its `value.type` must match the
-     * declared `authShape.type`. Validate eagerly with
-     * {@link validateProxyAuth}.
-     */
-    readonly proxyEndpointAuth?: readonly PlatformProxyEndpointAuth[];
-}
-/**
- * Structural description of how the upstream endpoint expects auth.
- * The actual value lives in {@link PlatformProxyEndpointAuth.value} and
- * is supplied separately so it never enters the idempotency hash.
- */
-export type PlatformProxyAuthShape = {
-    readonly type: "bearer";
-} | {
-    readonly type: "basic";
-} | {
-    readonly type: "header";
-    readonly name: string;
-} | {
-    readonly type: "query";
-    readonly name: string;
-};
-export type PlatformProxyMethod = "GET" | "POST" | "PUT" | "PATCH" | "DELETE";
-export type PlatformProxyResponseMode = "full" | "status_only" | "headers_only";
-export interface PlatformProxyEndpoint {
-    readonly name: string;
-    readonly baseUrl: string;
-    readonly authShape: PlatformProxyAuthShape;
-    readonly allowMethods: readonly PlatformProxyMethod[];
-    readonly allowPathPrefixes: readonly string[];
-    readonly allowHeaders?: readonly string[];
-    readonly responseMode?: PlatformProxyResponseMode;
-    readonly maxRequestBytes?: number;
-    readonly maxResponseBytes?: number;
-    readonly timeoutMs?: number;
-    readonly perCallBudget?: number;
-    readonly responseByteBudget?: number;
-}
-export interface PlatformProxyEndpointAuth {
-    readonly name: string;
-    readonly value: {
-        readonly type: "bearer";
-        readonly token: string;
-    } | {
-        readonly type: "basic";
-        readonly username: string;
-        readonly password: string;
-    } | {
-        readonly type: "header";
-        readonly value: string;
-    } | {
-        readonly type: "query";
-        readonly value: string;
-    };
-}
-/**
- * Submission shape accepted by `AntpathPlatformClient.submitRun`. The `secrets`
- * block may be omitted at the call site if a client-level default was provided
- * to the constructor; the merged value is always sent on the wire.
- */
-export interface PlatformRunSubmissionRequest {
-    readonly workspaceId: string;
-    readonly idempotencyKey: string;
-    readonly template: PlatformTemplateSubmission;
-    readonly variables?: Record<string, PlatformJsonValue>;
-    readonly cleanup?: PlatformCleanupPolicy;
-    readonly secrets?: PlatformInlineSecrets;
-    /**
-     * HTTP endpoints reachable via the antpath managed proxy during this
-     * run. Each entry declares the policy (URL, allow lists, caps); the
-     * corresponding auth value goes in
-     * `secrets.proxyEndpointAuth[i]` with a matching `name`.
-     *
-     * Empty / omitted → no proxy surface is provisioned (the in-container
-     * `/antpath/index.json` reports `endpoints: []`).
-     */
-    readonly proxyEndpoints?: readonly PlatformProxyEndpoint[];
-}
-export interface AntpathPlatformClientOptions {
-    readonly baseUrl: string;
-    readonly apiToken: string;
-    readonly fetch?: FetchLike;
-    /**
-     * Optional default secrets applied to every submission that does not
-     * override the `secrets` block per-call.
-     *
-     * @deprecated The agent-first invariant requires every secret-bearing
-     * field to be visible at the call site. Pass `secrets` explicitly on
-     * each `submitRun` call instead; this option will be removed in a
-     * future release. See
-     * `references/development-principles.md` (Agent-first surface design).
-     */
-    readonly defaultSecrets?: PlatformInlineSecrets;
-}
-export interface PlatformRun {
-    readonly id: string;
-    readonly status: string;
-    readonly [key: string]: unknown;
-}
-export interface PlatformEvent {
-    readonly id: string;
-    readonly [key: string]: unknown;
-}
-export interface PlatformOutput {
-    readonly id: string;
-    readonly [key: string]: unknown;
-}
-export interface SignedOutputLink {
-    readonly url: string;
-    readonly [key: string]: unknown;
-}
-export declare class PlatformApiError extends Error {
-    readonly status: number;
-    readonly details: unknown;
-    constructor(status: number, message: string, details: unknown);
-}
-export declare class AntpathPlatformClient {
-    private readonly baseUrl;
-    private readonly apiToken;
-    private readonly fetchImpl;
-    private readonly defaultSecrets?;
-    constructor(options: AntpathPlatformClientOptions);
-    submitRun(request: PlatformRunSubmissionRequest): Promise<PlatformRun>;
-    getRun(workspaceId: string, runId: string): Promise<PlatformRun>;
-    listRunEvents(workspaceId: string, runId: string): Promise<readonly PlatformEvent[]>;
-    listOutputs(workspaceId: string, runId: string): Promise<readonly PlatformOutput[]>;
-    createOutputLink(workspaceId: string, runId: string, outputId: string): Promise<SignedOutputLink>;
-    cancelRun(workspaceId: string, runId: string): Promise<void>;
-    deleteRun(workspaceId: string, runId: string): Promise<void>;
-    private request;
-}
-/**
- * Test-only: reset the "warn once" guard for the `defaultSecrets`
- * deprecation message. Production code should not call this.
- *
- * @internal
- */
-export declare function resetDefaultSecretsDeprecationWarning(): void;
-/**
- * Cross-validate a `proxyEndpoints` policy list against a
- * `secrets.proxyEndpointAuth` value list. Throws on the first
- * mismatch with an actionable, field-named error message.
- *
- * Mirrors the BFF's authoritative validator so misconfigured
- * submissions fail fast in the SDK before going over the wire. Use it
- * directly in tests or wrappers — `submitRun` already invokes it when
- * `proxyEndpoints` is non-empty.
- */
-export declare function validateProxyAuth(endpoints: readonly PlatformProxyEndpoint[], auth: readonly PlatformProxyEndpointAuth[] | undefined): void;
-/**
- * Build an `allowedHosts` list for `environment.network` that includes
- * the antpath proxy host (and optionally Anthropic's MCP host) when
- * the caller is hand-rolling networking. The worker auto-injects the
- * proxy host server-side when proxy endpoints are declared; use this
- * helper when you also want client-side template validation parity
- * (e.g. to assert at build time that a `limited` config can reach the
- * surfaces you intended).
- *
- * The proxy host is derived from the dashboard URL. Pass the same
- * value you used for the `AntpathPlatformClient` `baseUrl`.
- */
-export declare function buildPlatformAllowedHosts(input: {
-    readonly dashboardBaseUrl: string;
-    readonly extraHosts?: readonly string[];
-}): readonly string[];
-export {};

package/dist/platform/client.js

@@ -1,203 +0,0 @@
-export class PlatformApiError extends Error {
-    status;
-    details;
-    constructor(status, message, details) {
-        super(message);
-        this.name = "PlatformApiError";
-        this.status = status;
-        this.details = details;
-    }
-}
-export class AntpathPlatformClient {
-    baseUrl;
-    apiToken;
-    fetchImpl;
-    defaultSecrets;
-    constructor(options) {
-        const record = options;
-        if ("anthropicApiKey" in record || "providerApiKey" in record) {
-            throw new Error("Platform client does not accept provider keys at the client root — pass them inside `defaultSecrets.anthropic` or per-call `secrets.anthropic`");
-        }
-        if (!options.apiToken) {
-            throw new Error("apiToken is required");
-        }
-        this.baseUrl = new URL(options.baseUrl.endsWith("/") ? options.baseUrl : `${options.baseUrl}/`);
-        this.apiToken = options.apiToken;
-        this.fetchImpl = options.fetch ?? fetch;
-        if (options.defaultSecrets) {
-            this.defaultSecrets = options.defaultSecrets;
-            emitDefaultSecretsDeprecationWarning();
-        }
-    }
-    async submitRun(request) {
-        const secrets = request.secrets ?? this.defaultSecrets;
-        if (!secrets) {
-            throw new Error("submitRun requires `secrets` either per-call or via `defaultSecrets` on the client");
-        }
-        if (request.proxyEndpoints && request.proxyEndpoints.length > 0) {
-            // Catch the most common mistake at submission time so the error
-            // doesn't only surface deep inside the BFF parser. The BFF still
-            // performs the same cross-validation authoritatively.
-            validateProxyAuth(request.proxyEndpoints, secrets.proxyEndpointAuth);
-        }
-        const payload = { ...request, secrets };
-        return this.request("/api/runs", {
-            method: "POST",
-            body: JSON.stringify(payload)
-        });
-    }
-    async getRun(workspaceId, runId) {
-        const response = await this.request(`/api/runs/${encodeURIComponent(runId)}`, {}, { workspaceId });
-        return hasRun(response) ? response.run : response;
-    }
-    async listRunEvents(workspaceId, runId) {
-        const response = await this.request(`/api/runs/${encodeURIComponent(runId)}/events`, {}, { workspaceId });
-        return response.events;
-    }
-    async listOutputs(workspaceId, runId) {
-        const response = await this.request(`/api/runs/${encodeURIComponent(runId)}/outputs`, {}, { workspaceId });
-        return response.outputs;
-    }
-    async createOutputLink(workspaceId, runId, outputId) {
-        return this.request(`/api/runs/${encodeURIComponent(runId)}/outputs/${encodeURIComponent(outputId)}/link`, { method: "POST" }, { workspaceId });
-    }
-    async cancelRun(workspaceId, runId) {
-        await this.request(`/api/runs/${encodeURIComponent(runId)}/cancel`, { method: "POST" }, { workspaceId });
-    }
-    async deleteRun(workspaceId, runId) {
-        await this.request(`/api/runs/${encodeURIComponent(runId)}`, { method: "DELETE" }, { workspaceId });
-    }
-    async request(path, init = {}, query = {}) {
-        const url = new URL(path.replace(/^\//, ""), this.baseUrl);
-        for (const [key, value] of Object.entries(query)) {
-            url.searchParams.set(key, value);
-        }
-        const headers = {
-            accept: "application/json",
-            ...(init.body ? { "content-type": "application/json" } : {}),
-            authorization: `Bearer ${this.apiToken}`,
-            ...normalizeHeaders(init.headers)
-        };
-        const response = await this.fetchImpl(url, { ...init, headers });
-        const body = await readJson(response);
-        if (!response.ok) {
-            throw new PlatformApiError(response.status, extractErrorMessage(body), body);
-        }
-        return body;
-    }
-}
-function normalizeHeaders(headers) {
-    if (!headers) {
-        return {};
-    }
-    if (headers instanceof Headers) {
-        return Object.fromEntries(headers.entries());
-    }
-    if (Array.isArray(headers)) {
-        return Object.fromEntries(headers);
-    }
-    return headers;
-}
-async function readJson(response) {
-    const text = await response.text();
-    if (text.length === 0) {
-        return {};
-    }
-    return JSON.parse(text);
-}
-function extractErrorMessage(body) {
-    if (body && typeof body === "object" && "error" in body) {
-        const error = body.error;
-        if (error && typeof error === "object" && "message" in error) {
-            const message = error.message;
-            if (typeof message === "string") {
-                return message;
-            }
-        }
-    }
-    return "Platform request failed";
-}
-function hasRun(input) {
-    return Boolean(input && typeof input === "object" && "run" in input);
-}
-let defaultSecretsWarned = false;
-function emitDefaultSecretsDeprecationWarning() {
-    // Emit once per process to avoid log spam in long-running apps that
-    // construct many clients (e.g. one per workspace). Tests that need
-    // to observe the warning can reset the flag via
-    // {@link resetDefaultSecretsDeprecationWarning}.
-    if (defaultSecretsWarned)
-        return;
-    defaultSecretsWarned = true;
-    console.warn("[antpath] AntpathPlatformClientOptions.defaultSecrets is deprecated and will be removed in a future release. " +
-        "Pass `secrets` explicitly on every submitRun call so the active credentials are visible to the agent reading the call site.");
-}
-/**
- * Test-only: reset the "warn once" guard for the `defaultSecrets`
- * deprecation message. Production code should not call this.
- *
- * @internal
- */
-export function resetDefaultSecretsDeprecationWarning() {
-    defaultSecretsWarned = false;
-}
-/**
- * Cross-validate a `proxyEndpoints` policy list against a
- * `secrets.proxyEndpointAuth` value list. Throws on the first
- * mismatch with an actionable, field-named error message.
- *
- * Mirrors the BFF's authoritative validator so misconfigured
- * submissions fail fast in the SDK before going over the wire. Use it
- * directly in tests or wrappers — `submitRun` already invokes it when
- * `proxyEndpoints` is non-empty.
- */
-export function validateProxyAuth(endpoints, auth) {
-    const authList = auth ?? [];
-    const endpointNames = new Set(endpoints.map((e) => e.name));
-    const authNames = new Set();
-    for (const entry of authList) {
-        if (authNames.has(entry.name)) {
-            throw new Error(`secrets.proxyEndpointAuth contains duplicate name '${entry.name}'`);
-        }
-        authNames.add(entry.name);
-        if (!endpointNames.has(entry.name)) {
-            throw new Error(`secrets.proxyEndpointAuth[].name='${entry.name}' has no matching proxyEndpoints[].name`);
-        }
-    }
-    for (const endpoint of endpoints) {
-        const match = authList.find((a) => a.name === endpoint.name);
-        if (!match) {
-            throw new Error(`proxyEndpoints[].name='${endpoint.name}' is missing a matching secrets.proxyEndpointAuth entry`);
-        }
-        if (match.value.type !== endpoint.authShape.type) {
-            throw new Error(`secrets.proxyEndpointAuth[name='${endpoint.name}'].value.type='${match.value.type}' does not match proxyEndpoints[name='${endpoint.name}'].authShape.type='${endpoint.authShape.type}'`);
-        }
-    }
-}
-/**
- * Build an `allowedHosts` list for `environment.network` that includes
- * the antpath proxy host (and optionally Anthropic's MCP host) when
- * the caller is hand-rolling networking. The worker auto-injects the
- * proxy host server-side when proxy endpoints are declared; use this
- * helper when you also want client-side template validation parity
- * (e.g. to assert at build time that a `limited` config can reach the
- * surfaces you intended).
- *
- * The proxy host is derived from the dashboard URL. Pass the same
- * value you used for the `AntpathPlatformClient` `baseUrl`.
- */
-export function buildPlatformAllowedHosts(input) {
-    const result = [];
-    try {
-        result.push(new URL(input.dashboardBaseUrl).host);
-    }
-    catch {
-        throw new Error("buildPlatformAllowedHosts: dashboardBaseUrl must be an absolute URL");
-    }
-    for (const host of input.extraHosts ?? []) {
-        if (!result.includes(host))
-            result.push(host);
-    }
-    return result;
-}
-//# sourceMappingURL=client.js.map

package/dist/platform/client.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/platform/client.ts"],"names":[],"mappings":"AA0JA,MAAM,OAAO,gBAAiB,SAAQ,KAAK;IAChC,MAAM,CAAS;IACf,OAAO,CAAU;IAE1B,YAAY,MAAc,EAAE,OAAe,EAAE,OAAgB;QAC3D,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,kBAAkB,CAAC;QAC/B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;IACzB,CAAC;CACF;AAED,MAAM,OAAO,qBAAqB;IACf,OAAO,CAAM;IACb,QAAQ,CAAS;IACjB,SAAS,CAAY;IACrB,cAAc,CAAyB;IAExD,YAAY,OAAqC;QAC/C,MAAM,MAAM,GAAG,OAA6C,CAAC;QAC7D,IAAI,iBAAiB,IAAI,MAAM,IAAI,gBAAgB,IAAI,MAAM,EAAE,CAAC;YAC9D,MAAM,IAAI,KAAK,CAAC,gJAAgJ,CAAC,CAAC;QACpK,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAC;QAC1C,CAAC;QAED,IAAI,CAAC,OAAO,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,OAAO,GAAG,CAAC,CAAC;QAChG,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QACjC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,KAAK,IAAI,KAAK,CAAC;QACxC,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;YAC3B,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;YAC7C,oCAAoC,EAAE,CAAC;QACzC,CAAC;IACH,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,OAAqC;QACnD,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,IAAI,CAAC,cAAc,CAAC;QACvD,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,MAAM,IAAI,KAAK,CAAC,oFAAoF,CAAC,CAAC;QACxG,CAAC;QACD,IAAI,OAAO,CAAC,cAAc,IAAI,OAAO,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChE,gEAAgE;YAChE,iEAAiE;YACjE,sDAAsD;YACtD,iBAAiB,CAAC,OAAO,CAAC,cAAc,EAAE,OAAO,CAAC,iBAAiB,CAAC,CAAC;QACvE,CAAC;QACD,MAAM,OAAO,GAAiC,EAAE,GAAG,OAAO,EAAE,OAAO,EAAE,CAAC;QACtE,OAAO,IAAI,CAAC,OAAO,CAAc,WAAW,EAAE;YAC5C,MAAM,EAAE,MAAM;YACd,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;SAC9B,CAAC,CAAC;IACL,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,WAAmB,EAAE,KAAa;QAC7C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CACjC,aAAa,kBAAkB,CAAC,KAAK,CAAC,EAAE,EACxC,EAAE,EACF,EAAE,WAAW,EAAE,CAChB,CAAC;QACF,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC;IACpD,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,WAAmB,EAAE,KAAa;QACpD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CACjC,aAAa,kBAAkB,CAAC,KAAK,CAAC,SAAS,EAC/C,EAAE,EACF,EAAE,WAAW,EAAE,CAChB,CAAC;QACF,OAAO,QAAQ,CAAC,MAAM,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,WAAW,CAAC,WAAmB,EAAE,KAAa;QAClD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CACjC,aAAa,kBAAkB,CAAC,KAAK,CAAC,UAAU,EAChD,EAAE,EACF,EAAE,WAAW,EAAE,CAChB,CAAC;QACF,OAAO,QAAQ,CAAC,OAAO,CAAC;IAC1B,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,WAAmB,EAAE,KAAa,EAAE,QAAgB;QACzE,OAAO,IAAI,CAAC,OAAO,CACjB,aAAa,kBAAkB,CAAC,KAAK,CAAC,YAAY,kBAAkB,CAAC,QAAQ,CAAC,OAAO,EACrF,EAAE,MAAM,EAAE,MAAM,EAAE,EAClB,EAAE,WAAW,EAAE,CAChB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,WAAmB,EAAE,KAAa;QAChD,MAAM,IAAI,CAAC,OAAO,CAAU,aAAa,kBAAkB,CAAC,KAAK,CAAC,SAAS,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE,EAAE,WAAW,EAAE,CAAC,CAAC;IACpH,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,WAAmB,EAAE,KAAa;QAChD,MAAM,IAAI,CAAC,OAAO,CAAU,aAAa,kBAAkB,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,EAAE,WAAW,EAAE,CAAC,CAAC;IAC/G,CAAC;IAEO,KAAK,CAAC,OAAO,CACnB,IAAY,EACZ,OAAoB,EAAE,EACtB,QAAgC,EAAE;QAElC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QAC3D,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACjD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QACnC,CAAC;QACD,MAAM,OAAO,GAAG;YACd,MAAM,EAAE,kBAAkB;YAC1B,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,cAAc,EAAE,kBAAkB,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5D,aAAa,EAAE,UAAU,IAAI,CAAC,QAAQ,EAAE;YACxC,GAAG,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC;SAClC,CAAC;QAEF,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,CAAC,CAAC;QACjE,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,QAAQ,CAAC,CAAC;QACtC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,gBAAgB,CAAC,QAAQ,CAAC,MAAM,EAAE,mBAAmB,CAAC,IAAI,CAAC,EAAE,IAAI,CAAC,CAAC;QAC/E,CAAC;QACD,OAAO,IAAS,CAAC;IACnB,CAAC;CACF;AAED,SAAS,gBAAgB,CAAC,OAAgC;IACxD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,IAAI,OAAO,YAAY,OAAO,EAAE,CAAC;QAC/B,OAAO,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,OAAO,MAAM,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;IACrC,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,KAAK,UAAU,QAAQ,CAAC,QAAkB;IACxC,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO,EAAE,CAAC;IACZ,CAAC;IACD,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAY,CAAC;AACrC,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAa;IACxC,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,OAAO,IAAI,IAAI,EAAE,CAAC;QACxD,MAAM,KAAK,GAAI,IAAqC,CAAC,KAAK,CAAC;QAC3D,IAAI,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,SAAS,IAAI,KAAK,EAAE,CAAC;YAC7D,MAAM,OAAO,GAAI,KAAwC,CAAC,OAAO,CAAC;YAClE,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;gBAChC,OAAO,OAAO,CAAC;YACjB,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,yBAAyB,CAAC;AACnC,CAAC;AAED,SAAS,MAAM,CAAC,KAAkD;IAChE,OAAO,OAAO,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,IAAI,KAAK,CAAC,CAAC;AACvE,CAAC;AAED,IAAI,oBAAoB,GAAG,KAAK,CAAC;AACjC,SAAS,oCAAoC;IAC3C,oEAAoE;IACpE,mEAAmE;IACnE,gDAAgD;IAChD,iDAAiD;IACjD,IAAI,oBAAoB;QAAE,OAAO;IACjC,oBAAoB,GAAG,IAAI,CAAC;IAC5B,OAAO,CAAC,IAAI,CACV,+GAA+G;QAC7G,6HAA6H,CAChI,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,qCAAqC;IACnD,oBAAoB,GAAG,KAAK,CAAC;AAC/B,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,iBAAiB,CAC/B,SAA2C,EAC3C,IAAsD;IAEtD,MAAM,QAAQ,GAAG,IAAI,IAAI,EAAE,CAAC;IAC5B,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAC5D,MAAM,SAAS,GAAG,IAAI,GAAG,EAAU,CAAC;IACpC,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;QAC7B,IAAI,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,MAAM,IAAI,KAAK,CAAC,sDAAsD,KAAK,CAAC,IAAI,GAAG,CAAC,CAAC;QACvF,CAAC;QACD,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC1B,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,MAAM,IAAI,KAAK,CAAC,qCAAqC,KAAK,CAAC,IAAI,yCAAyC,CAAC,CAAC;QAC5G,CAAC;IACH,CAAC;IACD,KAAK,MAAM,QAAQ,IAAI,SAAS,EAAE,CAAC;QACjC,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,IAAI,CAAC,CAAC;QAC7D,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,MAAM,IAAI,KAAK,CAAC,0BAA0B,QAAQ,CAAC,IAAI,yDAAyD,CAAC,CAAC;QACpH,CAAC;QACD,IAAI,KAAK,CAAC,KAAK,CAAC,IAAI,KAAK,QAAQ,CAAC,SAAS,CAAC,IAAI,EAAE,CAAC;YACjD,MAAM,IAAI,KAAK,CACb,mCAAmC,QAAQ,CAAC,IAAI,kBAAkB,KAAK,CAAC,KAAK,CAAC,IAAI,yCAAyC,QAAQ,CAAC,IAAI,sBAAsB,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CACzL,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,yBAAyB,CAAC,KAGzC;IACC,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,IAAI,CAAC;QACH,MAAM,CAAC,IAAI,CAAC,IAAI,GAAG,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,IAAI,CAAC,CAAC;IACpD,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,qEAAqE,CAAC,CAAC;IACzF,CAAC;IACD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,UAAU,IAAI,EAAE,EAAE,CAAC;QAC1C,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,CAAC;YAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAChD,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/platform/index.d.ts

@@ -1 +0,0 @@
-export * from "./client.js";

package/dist/platform/index.js

@@ -1,2 +0,0 @@
-export * from "./client.js";
-//# sourceMappingURL=index.js.map

package/dist/platform/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/platform/index.ts"],"names":[],"mappings":"AAAA,cAAc,aAAa,CAAC"}

package/dist/providers/anthropic/provider.d.ts

@@ -1,36 +0,0 @@
-import type { CredentialInput, ProviderEvent, ProviderFile, ProviderResourceIds, UsageSummary } from "../../types.js";
-import { SecretString } from "../../utils/secrets.js";
-import type { ResolvedTemplate } from "../../template/compiler.js";
-import type { CleanupResult } from "../../types.js";
-import type { CreatedCredential, ManagedAgentProvider, ProviderSkillRef, SessionResourceInput, UploadFileInput } from "../types.js";
-export interface AnthropicProviderRetryOptions {
-    maxAttempts?: number | undefined;
-    baseDelayMs?: number | undefined;
-    maxDelayMs?: number | undefined;
-}
-export interface AnthropicManagedAgentsProviderOptions {
-    apiKey: string | SecretString;
-    baseUrl?: string;
-    fetch?: typeof fetch;
-    retry?: AnthropicProviderRetryOptions | undefined;
-}
-export declare class AnthropicManagedAgentsProvider implements ManagedAgentProvider {
-    #private;
-    constructor(options: AnthropicManagedAgentsProviderOptions);
-    createEnvironment(template: ResolvedTemplate): Promise<string>;
-    uploadFile(input: UploadFileInput): Promise<string>;
-    createAgent(template: ResolvedTemplate, providerSkillRefs: ProviderSkillRef[]): Promise<string>;
-    createVault(displayName: string, metadata?: Record<string, string>): Promise<string>;
-    createCredential(vaultId: string, serverUrl: string, credential: CredentialInput): Promise<CreatedCredential>;
-    createSession(agentId: string, environmentId: string, vaultIds: string[], resources: SessionResourceInput[]): Promise<string>;
-    sendUserMessage(sessionId: string, message: string): Promise<void>;
-    streamEvents(sessionId: string, signal?: AbortSignal): AsyncIterable<ProviderEvent>;
-    getSession(sessionId: string): Promise<{
-        status?: string | undefined;
-        usage?: UsageSummary | undefined;
-    }>;
-    listFiles(sessionId: string): Promise<ProviderFile[]>;
-    downloadFile(fileId: string): Promise<Uint8Array>;
-    terminateSession(sessionId: string): Promise<void>;
-    cleanup(ids: ProviderResourceIds, policy?: string): Promise<CleanupResult>;
-}