audit-ledger-mcp 0.1.0

package/dist/hashing.d.ts

@@ -0,0 +1,23 @@
+/**
+ * SHA-256 helpers — mirror the hashing behaviour of the Python and Node SDKs
+ * shipped in the main audit-ledger repo. PII is hashed locally before any
+ * payload leaves the MCP server, so raw personal data never reaches the
+ * audit ledger API.
+ */
+/** SHA-256 hex digest of a UTF-8 string. Lowercased, 64 chars. */
+export declare function sha256(input: string): string;
+/**
+ * Hash a system prompt before sending. Whitespace is normalised so that
+ * formatting-only changes do not produce a different hash — this matches
+ * the behaviour of the SDKs in the main repo and keeps prompt-version
+ * tracking stable across minor edits.
+ */
+export declare function hashPrompt(rawPrompt: string): string;
+/**
+ * Hash raw user input (e.g. a CV, a transaction payload, a customer record)
+ * before sending. No normalisation — the input is hashed verbatim so any
+ * change in the input produces a different hash, which is the right
+ * behaviour for an audit trail of model inputs.
+ */
+export declare function hashPii(rawInput: string): string;
+//# sourceMappingURL=hashing.d.ts.map

package/dist/hashing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hashing.d.ts","sourceRoot":"","sources":["../src/hashing.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,kEAAkE;AAClE,wBAAgB,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAE5C;AAED;;;;;GAKG;AACH,wBAAgB,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,CAGpD;AAED;;;;;GAKG;AACH,wBAAgB,OAAO,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAEhD"}

package/dist/hashing.js

@@ -0,0 +1,31 @@
+/**
+ * SHA-256 helpers — mirror the hashing behaviour of the Python and Node SDKs
+ * shipped in the main audit-ledger repo. PII is hashed locally before any
+ * payload leaves the MCP server, so raw personal data never reaches the
+ * audit ledger API.
+ */
+import { createHash } from "node:crypto";
+/** SHA-256 hex digest of a UTF-8 string. Lowercased, 64 chars. */
+export function sha256(input) {
+    return createHash("sha256").update(input, "utf8").digest("hex");
+}
+/**
+ * Hash a system prompt before sending. Whitespace is normalised so that
+ * formatting-only changes do not produce a different hash — this matches
+ * the behaviour of the SDKs in the main repo and keeps prompt-version
+ * tracking stable across minor edits.
+ */
+export function hashPrompt(rawPrompt) {
+    const normalised = rawPrompt.replace(/\s+/g, " ").trim();
+    return sha256(normalised);
+}
+/**
+ * Hash raw user input (e.g. a CV, a transaction payload, a customer record)
+ * before sending. No normalisation — the input is hashed verbatim so any
+ * change in the input produces a different hash, which is the right
+ * behaviour for an audit trail of model inputs.
+ */
+export function hashPii(rawInput) {
+    return sha256(rawInput);
+}
+//# sourceMappingURL=hashing.js.map

package/dist/hashing.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hashing.js","sourceRoot":"","sources":["../src/hashing.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAEzC,kEAAkE;AAClE,MAAM,UAAU,MAAM,CAAC,KAAa;IAClC,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAClE,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,UAAU,CAAC,SAAiB;IAC1C,MAAM,UAAU,GAAG,SAAS,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IACzD,OAAO,MAAM,CAAC,UAAU,CAAC,CAAC;AAC5B,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,OAAO,CAAC,QAAgB;IACtC,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC;AAC1B,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,14 @@
+#!/usr/bin/env node
+/**
+ * audit-ledger-mcp — Model Context Protocol server for AI Audit Ledger.
+ *
+ * Stdio transport — designed to be spawned by an MCP client (Claude Desktop,
+ * Cursor, LangGraph adapter, custom). Three tools exposed: record_decision,
+ * verify_decision, list_decisions.
+ *
+ * Configuration via environment variables — see .env.example. The server
+ * reads them at startup and refuses to start if AUDIT_API_URL is missing,
+ * since no tool can do anything useful without it.
+ */
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AACA;;;;;;;;;;GAUG"}

package/dist/index.js

@@ -0,0 +1,98 @@
+#!/usr/bin/env node
+/**
+ * audit-ledger-mcp — Model Context Protocol server for AI Audit Ledger.
+ *
+ * Stdio transport — designed to be spawned by an MCP client (Claude Desktop,
+ * Cursor, LangGraph adapter, custom). Three tools exposed: record_decision,
+ * verify_decision, list_decisions.
+ *
+ * Configuration via environment variables — see .env.example. The server
+ * reads them at startup and refuses to start if AUDIT_API_URL is missing,
+ * since no tool can do anything useful without it.
+ */
+import { Server } from "@modelcontextprotocol/sdk/server/index.js";
+import { StdioServerTransport } from "@modelcontextprotocol/sdk/server/stdio.js";
+import { CallToolRequestSchema, ListToolsRequestSchema, } from "@modelcontextprotocol/sdk/types.js";
+import { AuditLedgerClient, AuditLedgerError } from "./client.js";
+import { executeRecordDecision, recordDecisionToolDefinition, } from "./tools/record_decision.js";
+import { executeVerifyDecision, verifyDecisionToolDefinition, } from "./tools/verify_decision.js";
+import { executeListDecisions, listDecisionsToolDefinition, } from "./tools/list_decisions.js";
+const PKG_NAME = "audit-ledger-mcp";
+const PKG_VERSION = "0.1.0";
+function requireEnv(name) {
+    const value = process.env[name];
+    if (!value) {
+        process.stderr.write(`[${PKG_NAME}] missing required env var: ${name}\n` +
+            `See .env.example or the README for required configuration.\n`);
+        process.exit(1);
+    }
+    return value;
+}
+function buildClient() {
+    const apiUrl = requireEnv("AUDIT_API_URL");
+    const writeKey = process.env.AUDIT_WRITE_KEY;
+    const readKey = process.env.AUDIT_READ_KEY;
+    const timeoutMs = process.env.AUDIT_TIMEOUT_MS
+        ? Number(process.env.AUDIT_TIMEOUT_MS)
+        : undefined;
+    const retryAttempts = process.env.AUDIT_RETRY_ATTEMPTS
+        ? Number(process.env.AUDIT_RETRY_ATTEMPTS)
+        : undefined;
+    if (!writeKey && !readKey) {
+        process.stderr.write(`[${PKG_NAME}] neither AUDIT_WRITE_KEY nor AUDIT_READ_KEY is set — ` +
+            `all tools will fail. Set at least one. See .env.example.\n`);
+    }
+    return new AuditLedgerClient({ apiUrl, writeKey, readKey, timeoutMs, retryAttempts });
+}
+async function main() {
+    const client = buildClient();
+    const server = new Server({ name: PKG_NAME, version: PKG_VERSION }, { capabilities: { tools: {} } });
+    server.setRequestHandler(ListToolsRequestSchema, async () => ({
+        tools: [
+            recordDecisionToolDefinition,
+            verifyDecisionToolDefinition,
+            listDecisionsToolDefinition,
+        ],
+    }));
+    server.setRequestHandler(CallToolRequestSchema, async (req) => {
+        const { name, arguments: args } = req.params;
+        try {
+            let result;
+            switch (name) {
+                case "record_decision":
+                    result = await executeRecordDecision(client, args);
+                    break;
+                case "verify_decision":
+                    result = await executeVerifyDecision(client, args);
+                    break;
+                case "list_decisions":
+                    result = await executeListDecisions(client, args);
+                    break;
+                default:
+                    throw new Error(`Unknown tool: ${name}`);
+            }
+            return {
+                content: [{ type: "text", text: JSON.stringify(result, null, 2) }],
+            };
+        }
+        catch (err) {
+            const message = err instanceof AuditLedgerError
+                ? `${err.message}${err.status ? ` (HTTP ${err.status})` : ""}${err.body ? `\n${err.body}` : ""}`
+                : err instanceof Error
+                    ? err.message
+                    : String(err);
+            return {
+                content: [{ type: "text", text: `Error: ${message}` }],
+                isError: true,
+            };
+        }
+    });
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+    process.stderr.write(`[${PKG_NAME}] ${PKG_VERSION} listening on stdio\n`);
+}
+main().catch((err) => {
+    process.stderr.write(`[${PKG_NAME}] fatal: ${err instanceof Error ? err.message : String(err)}\n`);
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AACA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAC;AACjF,OAAO,EACL,qBAAqB,EACrB,sBAAsB,GACvB,MAAM,oCAAoC,CAAC;AAE5C,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAClE,OAAO,EACL,qBAAqB,EACrB,4BAA4B,GAC7B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,qBAAqB,EACrB,4BAA4B,GAC7B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EACL,oBAAoB,EACpB,2BAA2B,GAC5B,MAAM,2BAA2B,CAAC;AAEnC,MAAM,QAAQ,GAAG,kBAAkB,CAAC;AACpC,MAAM,WAAW,GAAG,OAAO,CAAC;AAE5B,SAAS,UAAU,CAAC,IAAY;IAC9B,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAChC,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,IAAI,QAAQ,+BAA+B,IAAI,IAAI;YACjD,8DAA8D,CACjE,CAAC;QACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,WAAW;IAClB,MAAM,MAAM,GAAG,UAAU,CAAC,eAAe,CAAC,CAAC;IAC3C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC;IAC7C,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;IAC3C,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB;QAC5C,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC;QACtC,CAAC,CAAC,SAAS,CAAC;IACd,MAAM,aAAa,GAAG,OAAO,CAAC,GAAG,CAAC,oBAAoB;QACpD,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC;QAC1C,CAAC,CAAC,SAAS,CAAC;IAEd,IAAI,CAAC,QAAQ,IAAI,CAAC,OAAO,EAAE,CAAC;QAC1B,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,IAAI,QAAQ,wDAAwD;YAClE,4DAA4D,CAC/D,CAAC;IACJ,CAAC;IACD,OAAO,IAAI,iBAAiB,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,aAAa,EAAE,CAAC,CAAC;AACxF,CAAC;AAED,KAAK,UAAU,IAAI;IACjB,MAAM,MAAM,GAAG,WAAW,EAAE,CAAC;IAC7B,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,WAAW,EAAE,EACxC,EAAE,YAAY,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,EAAE,CAChC,CAAC;IAEF,MAAM,CAAC,iBAAiB,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC;QAC5D,KAAK,EAAE;YACL,4BAA4B;YAC5B,4BAA4B;YAC5B,2BAA2B;SAC5B;KACF,CAAC,CAAC,CAAC;IAEJ,MAAM,CAAC,iBAAiB,CAAC,qBAAqB,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE;QAC5D,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC;QAC7C,IAAI,CAAC;YACH,IAAI,MAAe,CAAC;YACpB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,iBAAiB;oBACpB,MAAM,GAAG,MAAM,qBAAqB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;oBACnD,MAAM;gBACR,KAAK,iBAAiB;oBACpB,MAAM,GAAG,MAAM,qBAAqB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;oBACnD,MAAM;gBACR,KAAK,gBAAgB;oBACnB,MAAM,GAAG,MAAM,oBAAoB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;oBAClD,MAAM;gBACR;oBACE,MAAM,IAAI,KAAK,CAAC,iBAAiB,IAAI,EAAE,CAAC,CAAC;YAC7C,CAAC;YACD,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;aACnE,CAAC;QACJ,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,OAAO,GACX,GAAG,YAAY,gBAAgB;gBAC7B,CAAC,CAAC,GAAG,GAAG,CAAC,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,UAAU,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE;gBAChG,CAAC,CAAC,GAAG,YAAY,KAAK;oBACpB,CAAC,CAAC,GAAG,CAAC,OAAO;oBACb,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACpB,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,UAAU,OAAO,EAAE,EAAE,CAAC;gBACtD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IAChC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,QAAQ,KAAK,WAAW,uBAAuB,CAAC,CAAC;AAC5E,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE;IACnB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,QAAQ,YAAY,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IACnG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/tools/list_decisions.d.ts

@@ -0,0 +1,57 @@
+/**
+ * list_decisions tool — query recent decisions for the calling tenant. Useful
+ * for an agent to review its own recent activity, for compliance dashboards,
+ * and for spot-checks during an audit.
+ *
+ * Defaults: last 7 days, sorted newest first. Tenant scope is enforced by the
+ * read key — a tenant key only returns that tenant's records.
+ */
+import { z } from "zod";
+import type { AuditLedgerClient } from "../client.js";
+export declare const listDecisionsInputSchema: z.ZodObject<{
+    from: z.ZodOptional<z.ZodString>;
+    to: z.ZodOptional<z.ZodString>;
+    limit: z.ZodOptional<z.ZodNumber>;
+}, "strip", z.ZodTypeAny, {
+    from?: string | undefined;
+    to?: string | undefined;
+    limit?: number | undefined;
+}, {
+    from?: string | undefined;
+    to?: string | undefined;
+    limit?: number | undefined;
+}>;
+export type ListDecisionsInput = z.infer<typeof listDecisionsInputSchema>;
+export declare const listDecisionsToolDefinition: {
+    readonly name: "list_decisions";
+    readonly description: "List recorded AI decisions for the calling tenant within a time window. Returns newest first. The read key scopes the result to the caller's tenant — cross-tenant reads require an admin read key. Use this for compliance review, audit prep, or agent self-inspection of recent activity.";
+    readonly inputSchema: {
+        readonly type: "object";
+        readonly properties: {
+            readonly from: {
+                readonly type: "string";
+                readonly format: "date-time";
+                readonly description: string | undefined;
+            };
+            readonly to: {
+                readonly type: "string";
+                readonly format: "date-time";
+                readonly description: string | undefined;
+            };
+            readonly limit: {
+                readonly type: "number";
+                readonly minimum: 1;
+                readonly maximum: 500;
+                readonly description: string | undefined;
+            };
+        };
+        readonly required: readonly [];
+    };
+};
+export declare function executeListDecisions(client: AuditLedgerClient, rawInput: unknown): Promise<{
+    count: number;
+    from: string;
+    to: string;
+    decisions: unknown[];
+}>;
+//# sourceMappingURL=list_decisions.d.ts.map

package/dist/tools/list_decisions.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"list_decisions.d.ts","sourceRoot":"","sources":["../../src/tools/list_decisions.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AAEtD,eAAO,MAAM,wBAAwB;;;;;;;;;;;;EAwBnC,CAAC;AAEH,MAAM,MAAM,kBAAkB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,wBAAwB,CAAC,CAAC;AAE1E,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;;;;;CAa9B,CAAC;AAEX,wBAAsB,oBAAoB,CACxC,MAAM,EAAE,iBAAiB,EACzB,QAAQ,EAAE,OAAO,GAChB,OAAO,CAAC;IACT,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,OAAO,EAAE,CAAC;CACtB,CAAC,CAkBD"}

package/dist/tools/list_decisions.js

@@ -0,0 +1,59 @@
+/**
+ * list_decisions tool — query recent decisions for the calling tenant. Useful
+ * for an agent to review its own recent activity, for compliance dashboards,
+ * and for spot-checks during an audit.
+ *
+ * Defaults: last 7 days, sorted newest first. Tenant scope is enforced by the
+ * read key — a tenant key only returns that tenant's records.
+ */
+import { z } from "zod";
+export const listDecisionsInputSchema = z.object({
+    from: z
+        .string()
+        .datetime()
+        .optional()
+        .describe("ISO 8601 start of the time window (inclusive). Defaults to 7 days before now."),
+    to: z
+        .string()
+        .datetime()
+        .optional()
+        .describe("ISO 8601 end of the time window (inclusive). Defaults to now."),
+    limit: z
+        .number()
+        .int()
+        .positive()
+        .max(500)
+        .optional()
+        .describe("Maximum number of records to return (default 100, max 500). Returned newest-first."),
+});
+export const listDecisionsToolDefinition = {
+    name: "list_decisions",
+    description: "List recorded AI decisions for the calling tenant within a time window. Returns newest first. The read key scopes the result to the caller's tenant — cross-tenant reads require an admin read key. Use this for compliance review, audit prep, or agent self-inspection of recent activity.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            from: { type: "string", format: "date-time", description: listDecisionsInputSchema.shape.from.description },
+            to: { type: "string", format: "date-time", description: listDecisionsInputSchema.shape.to.description },
+            limit: { type: "number", minimum: 1, maximum: 500, description: listDecisionsInputSchema.shape.limit.description },
+        },
+        required: [],
+    },
+};
+export async function executeListDecisions(client, rawInput) {
+    const input = listDecisionsInputSchema.parse(rawInput ?? {});
+    const to = input.to ?? new Date().toISOString().replace(/\.\d{3}Z$/, "Z");
+    const from = input.from ??
+        new Date(Date.now() - 7 * 24 * 60 * 60 * 1000)
+            .toISOString()
+            .replace(/\.\d{3}Z$/, "Z");
+    const limit = input.limit ?? 100;
+    const all = await client.listDecisions({ from, to });
+    const decisions = all.slice(0, limit);
+    return {
+        count: decisions.length,
+        from,
+        to,
+        decisions,
+    };
+}
+//# sourceMappingURL=list_decisions.js.map

package/dist/tools/list_decisions.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"list_decisions.js","sourceRoot":"","sources":["../../src/tools/list_decisions.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAIxB,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC/C,IAAI,EAAE,CAAC;SACJ,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,EAAE;SACV,QAAQ,CACP,+EAA+E,CAChF;IACH,EAAE,EAAE,CAAC;SACF,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,EAAE;SACV,QAAQ,CACP,+DAA+D,CAChE;IACH,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,GAAG,EAAE;SACL,QAAQ,EAAE;SACV,GAAG,CAAC,GAAG,CAAC;SACR,QAAQ,EAAE;SACV,QAAQ,CACP,oFAAoF,CACrF;CACJ,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,2BAA2B,GAAG;IACzC,IAAI,EAAE,gBAAgB;IACtB,WAAW,EACT,8RAA8R;IAChS,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,IAAI,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,wBAAwB,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,EAAE;YAC3G,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,wBAAwB,CAAC,KAAK,CAAC,EAAE,CAAC,WAAW,EAAE;YACvG,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,EAAE,WAAW,EAAE,wBAAwB,CAAC,KAAK,CAAC,KAAK,CAAC,WAAW,EAAE;SACnH;QACD,QAAQ,EAAE,EAAE;KACb;CACO,CAAC;AAEX,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,MAAyB,EACzB,QAAiB;IAOjB,MAAM,KAAK,GAAG,wBAAwB,CAAC,KAAK,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC;IAC7D,MAAM,EAAE,GAAG,KAAK,CAAC,EAAE,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IAC1E,MAAM,IAAI,GACR,KAAK,CAAC,IAAI;QACV,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;aAC3C,WAAW,EAAE;aACb,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IAC/B,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,IAAI,GAAG,CAAC;IAEjC,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;IACrD,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;IACtC,OAAO;QACL,KAAK,EAAE,SAAS,CAAC,MAAM;QACvB,IAAI;QACJ,EAAE;QACF,SAAS;KACV,CAAC;AACJ,CAAC"}

package/dist/tools/record_decision.d.ts

@@ -0,0 +1,83 @@
+/**
+ * record_decision tool — agent logs an AI decision to the audit ledger.
+ *
+ * PII (raw_system_prompt and raw_user_input) is hashed locally inside this
+ * tool before any payload leaves the MCP server. The ledger never sees the
+ * raw values — only SHA-256 hashes, the structured decision output, and
+ * metadata.
+ */
+import { z } from "zod";
+import type { AuditLedgerClient } from "../client.js";
+export declare const recordDecisionInputSchema: z.ZodObject<{
+    model_version: z.ZodString;
+    raw_system_prompt: z.ZodString;
+    raw_user_input: z.ZodString;
+    ai_decision_output: z.ZodRecord<z.ZodString, z.ZodUnknown>;
+    human_in_loop: z.ZodBoolean;
+    event_id: z.ZodOptional<z.ZodString>;
+    timestamp: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    model_version: string;
+    ai_decision_output: Record<string, unknown>;
+    human_in_loop: boolean;
+    raw_system_prompt: string;
+    raw_user_input: string;
+    event_id?: string | undefined;
+    timestamp?: string | undefined;
+}, {
+    model_version: string;
+    ai_decision_output: Record<string, unknown>;
+    human_in_loop: boolean;
+    raw_system_prompt: string;
+    raw_user_input: string;
+    event_id?: string | undefined;
+    timestamp?: string | undefined;
+}>;
+export type RecordDecisionInput = z.infer<typeof recordDecisionInputSchema>;
+export declare const recordDecisionToolDefinition: {
+    readonly name: "record_decision";
+    readonly description: "Record an AI decision to the audit ledger. Stores model version, hashed inputs, structured output, and human-review flag. The record is immutably sealed in S3 Object Lock for 7 years and queryable for the lifetime of the decision. Use this immediately after any AI decision that may need to be audited later — credit, hiring, fraud, customer routing, content moderation.";
+    readonly inputSchema: {
+        readonly type: "object";
+        readonly properties: {
+            readonly model_version: {
+                readonly type: "string";
+                readonly description: string | undefined;
+            };
+            readonly raw_system_prompt: {
+                readonly type: "string";
+                readonly description: string | undefined;
+            };
+            readonly raw_user_input: {
+                readonly type: "string";
+                readonly description: string | undefined;
+            };
+            readonly ai_decision_output: {
+                readonly type: "object";
+                readonly description: string | undefined;
+                readonly additionalProperties: true;
+            };
+            readonly human_in_loop: {
+                readonly type: "boolean";
+                readonly description: string | undefined;
+            };
+            readonly event_id: {
+                readonly type: "string";
+                readonly format: "uuid";
+                readonly description: string | undefined;
+            };
+            readonly timestamp: {
+                readonly type: "string";
+                readonly format: "date-time";
+                readonly description: string | undefined;
+            };
+        };
+        readonly required: readonly ["model_version", "raw_system_prompt", "raw_user_input", "ai_decision_output", "human_in_loop"];
+    };
+};
+export declare function executeRecordDecision(client: AuditLedgerClient, rawInput: unknown): Promise<{
+    event_id: string;
+    recorded_at: string;
+    note: string;
+}>;
+//# sourceMappingURL=record_decision.d.ts.map

package/dist/tools/record_decision.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"record_decision.d.ts","sourceRoot":"","sources":["../../src/tools/record_decision.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AAGtD,eAAO,MAAM,yBAAyB;;;;;;;;;;;;;;;;;;;;;;;;EAyCpC,CAAC;AAEH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAC;AAE5E,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAiB/B,CAAC;AAEX,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,iBAAiB,EACzB,QAAQ,EAAE,OAAO,GAChB,OAAO,CAAC;IAAE,QAAQ,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAE,CAAC,CAqBlE"}

package/dist/tools/record_decision.js

@@ -0,0 +1,76 @@
+/**
+ * record_decision tool — agent logs an AI decision to the audit ledger.
+ *
+ * PII (raw_system_prompt and raw_user_input) is hashed locally inside this
+ * tool before any payload leaves the MCP server. The ledger never sees the
+ * raw values — only SHA-256 hashes, the structured decision output, and
+ * metadata.
+ */
+import { randomUUID } from "node:crypto";
+import { z } from "zod";
+import { hashPii, hashPrompt } from "../hashing.js";
+export const recordDecisionInputSchema = z.object({
+    model_version: z
+        .string()
+        .min(1)
+        .describe("The model and version that produced the decision (e.g. 'claude-sonnet-4.7', 'gpt-4o-2024-08-06'). Required for traceability and model risk audits."),
+    raw_system_prompt: z
+        .string()
+        .describe("The system prompt used. Hashed locally before transit — the raw text never leaves this MCP server."),
+    raw_user_input: z
+        .string()
+        .describe("The user input the model decided on (CV text, transaction, customer message, etc.). Hashed locally before transit — raw PII never leaves this MCP server."),
+    ai_decision_output: z
+        .record(z.unknown())
+        .describe("The structured decision the model produced. Stored verbatim. Should NOT contain raw PII — only the decision itself (score, classification, recommendation, reasoning summary)."),
+    human_in_loop: z
+        .boolean()
+        .describe("Whether a human reviewed or approved this decision before it took effect. Critical for EU AI Act Article 14 (human oversight) compliance."),
+    event_id: z
+        .string()
+        .uuid()
+        .optional()
+        .describe("Optional UUID v4 to identify this decision. Auto-generated if omitted. Useful when the calling system already has its own decision ID."),
+    timestamp: z
+        .string()
+        .datetime()
+        .optional()
+        .describe("Optional ISO 8601 timestamp of when the decision was made. Defaults to the current time. Use this only if recording a backfilled decision."),
+});
+export const recordDecisionToolDefinition = {
+    name: "record_decision",
+    description: "Record an AI decision to the audit ledger. Stores model version, hashed inputs, structured output, and human-review flag. The record is immutably sealed in S3 Object Lock for 7 years and queryable for the lifetime of the decision. Use this immediately after any AI decision that may need to be audited later — credit, hiring, fraud, customer routing, content moderation.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            model_version: { type: "string", description: recordDecisionInputSchema.shape.model_version.description },
+            raw_system_prompt: { type: "string", description: recordDecisionInputSchema.shape.raw_system_prompt.description },
+            raw_user_input: { type: "string", description: recordDecisionInputSchema.shape.raw_user_input.description },
+            ai_decision_output: { type: "object", description: recordDecisionInputSchema.shape.ai_decision_output.description, additionalProperties: true },
+            human_in_loop: { type: "boolean", description: recordDecisionInputSchema.shape.human_in_loop.description },
+            event_id: { type: "string", format: "uuid", description: recordDecisionInputSchema.shape.event_id.description },
+            timestamp: { type: "string", format: "date-time", description: recordDecisionInputSchema.shape.timestamp.description },
+        },
+        required: ["model_version", "raw_system_prompt", "raw_user_input", "ai_decision_output", "human_in_loop"],
+    },
+};
+export async function executeRecordDecision(client, rawInput) {
+    const input = recordDecisionInputSchema.parse(rawInput);
+    const eventId = input.event_id ?? randomUUID();
+    const timestamp = input.timestamp ?? new Date().toISOString().replace(/\.\d{3}Z$/, "Z");
+    const result = await client.recordDecision({
+        event_id: eventId,
+        timestamp,
+        model_version: input.model_version,
+        system_prompt_hash: hashPrompt(input.raw_system_prompt),
+        input_data_hash: hashPii(input.raw_user_input),
+        ai_decision_output: input.ai_decision_output,
+        human_in_loop: input.human_in_loop,
+    });
+    return {
+        event_id: result.event_id,
+        recorded_at: timestamp,
+        note: "Decision recorded. PII was hashed locally — only the SHA-256 hashes were sent to the ledger. The record is now immutably stored in S3 Object Lock and queryable via verify_decision and list_decisions.",
+    };
+}
+//# sourceMappingURL=record_decision.js.map

package/dist/tools/record_decision.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"record_decision.js","sourceRoot":"","sources":["../../src/tools/record_decision.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAEpD,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAAC,CAAC,MAAM,CAAC;IAChD,aAAa,EAAE,CAAC;SACb,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,CAAC;SACN,QAAQ,CACP,oJAAoJ,CACrJ;IACH,iBAAiB,EAAE,CAAC;SACjB,MAAM,EAAE;SACR,QAAQ,CACP,oGAAoG,CACrG;IACH,cAAc,EAAE,CAAC;SACd,MAAM,EAAE;SACR,QAAQ,CACP,2JAA2J,CAC5J;IACH,kBAAkB,EAAE,CAAC;SAClB,MAAM,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;SACnB,QAAQ,CACP,gLAAgL,CACjL;IACH,aAAa,EAAE,CAAC;SACb,OAAO,EAAE;SACT,QAAQ,CACP,2IAA2I,CAC5I;IACH,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,IAAI,EAAE;SACN,QAAQ,EAAE;SACV,QAAQ,CACP,wIAAwI,CACzI;IACH,SAAS,EAAE,CAAC;SACT,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,EAAE;SACV,QAAQ,CACP,4IAA4I,CAC7I;CACJ,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,IAAI,EAAE,iBAAiB;IACvB,WAAW,EACT,oXAAoX;IACtX,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,aAAa,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,aAAa,CAAC,WAAW,EAAE;YACzG,iBAAiB,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,iBAAiB,CAAC,WAAW,EAAE;YACjH,cAAc,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,cAAc,CAAC,WAAW,EAAE;YAC3G,kBAAkB,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,kBAAkB,CAAC,WAAW,EAAE,oBAAoB,EAAE,IAAI,EAAE;YAC/I,aAAa,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,aAAa,CAAC,WAAW,EAAE;YAC1G,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,EAAE;YAC/G,SAAS,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,SAAS,CAAC,WAAW,EAAE;SACvH;QACD,QAAQ,EAAE,CAAC,eAAe,EAAE,mBAAmB,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,eAAe,CAAC;KAC1G;CACO,CAAC;AAEX,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,MAAyB,EACzB,QAAiB;IAEjB,MAAM,KAAK,GAAG,yBAAyB,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IACxD,MAAM,OAAO,GAAG,KAAK,CAAC,QAAQ,IAAI,UAAU,EAAE,CAAC;IAC/C,MAAM,SAAS,GAAG,KAAK,CAAC,SAAS,IAAI,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;IAExF,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC;QACzC,QAAQ,EAAE,OAAO;QACjB,SAAS;QACT,aAAa,EAAE,KAAK,CAAC,aAAa;QAClC,kBAAkB,EAAE,UAAU,CAAC,KAAK,CAAC,iBAAiB,CAAC;QACvD,eAAe,EAAE,OAAO,CAAC,KAAK,CAAC,cAAc,CAAC;QAC9C,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;QAC5C,aAAa,EAAE,KAAK,CAAC,aAAa;KACnC,CAAC,CAAC;IAEH,OAAO;QACL,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,WAAW,EAAE,SAAS;QACtB,IAAI,EACF,yMAAyM;KAC5M,CAAC;AACJ,CAAC"}

package/dist/tools/verify_decision.d.ts

@@ -0,0 +1,39 @@
+/**
+ * verify_decision tool — check that a recorded decision has not been tampered
+ * with. Hits the read API's tamper-evidence endpoint, which independently
+ * fetches the DynamoDB record AND the S3 Object Lock record and compares
+ * them. A mismatch is what an integrity failure looks like.
+ */
+import { z } from "zod";
+import type { AuditLedgerClient } from "../client.js";
+export declare const verifyDecisionInputSchema: z.ZodObject<{
+    event_id: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    event_id: string;
+}, {
+    event_id: string;
+}>;
+export type VerifyDecisionInput = z.infer<typeof verifyDecisionInputSchema>;
+export declare const verifyDecisionToolDefinition: {
+    readonly name: "verify_decision";
+    readonly description: "Verify a recorded AI decision has not been altered since it was written. The ledger fetches the queryable copy (DynamoDB) and the immutable copy (S3 Object Lock COMPLIANCE mode) independently and compares them. Returns integrity_verified=true if they match. Use this to satisfy a regulator request or to prove an audit trail to a compliance team.";
+    readonly inputSchema: {
+        readonly type: "object";
+        readonly properties: {
+            readonly event_id: {
+                readonly type: "string";
+                readonly format: "uuid";
+                readonly description: string | undefined;
+            };
+        };
+        readonly required: readonly ["event_id"];
+    };
+};
+export declare function executeVerifyDecision(client: AuditLedgerClient, rawInput: unknown): Promise<{
+    event_id: string;
+    integrity_verified: boolean;
+    note: string;
+    dynamodb_record: unknown;
+    s3_record: unknown;
+}>;
+//# sourceMappingURL=verify_decision.d.ts.map

package/dist/tools/verify_decision.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify_decision.d.ts","sourceRoot":"","sources":["../../src/tools/verify_decision.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AAEtD,eAAO,MAAM,yBAAyB;;;;;;EAKpC,CAAC;AAEH,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAC;AAE5E,eAAO,MAAM,4BAA4B;;;;;;;;;;;;;;CAW/B,CAAC;AAEX,wBAAsB,qBAAqB,CACzC,MAAM,EAAE,iBAAiB,EACzB,QAAQ,EAAE,OAAO,GAChB,OAAO,CAAC;IACT,QAAQ,EAAE,MAAM,CAAC;IACjB,kBAAkB,EAAE,OAAO,CAAC;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,eAAe,EAAE,OAAO,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;CACpB,CAAC,CAUD"}

package/dist/tools/verify_decision.js

@@ -0,0 +1,36 @@
+/**
+ * verify_decision tool — check that a recorded decision has not been tampered
+ * with. Hits the read API's tamper-evidence endpoint, which independently
+ * fetches the DynamoDB record AND the S3 Object Lock record and compares
+ * them. A mismatch is what an integrity failure looks like.
+ */
+import { z } from "zod";
+export const verifyDecisionInputSchema = z.object({
+    event_id: z
+        .string()
+        .uuid()
+        .describe("The UUID v4 event ID of the decision to verify."),
+});
+export const verifyDecisionToolDefinition = {
+    name: "verify_decision",
+    description: "Verify a recorded AI decision has not been altered since it was written. The ledger fetches the queryable copy (DynamoDB) and the immutable copy (S3 Object Lock COMPLIANCE mode) independently and compares them. Returns integrity_verified=true if they match. Use this to satisfy a regulator request or to prove an audit trail to a compliance team.",
+    inputSchema: {
+        type: "object",
+        properties: {
+            event_id: { type: "string", format: "uuid", description: verifyDecisionInputSchema.shape.event_id.description },
+        },
+        required: ["event_id"],
+    },
+};
+export async function executeVerifyDecision(client, rawInput) {
+    const input = verifyDecisionInputSchema.parse(rawInput);
+    const result = await client.verifyDecision(input.event_id);
+    return {
+        event_id: input.event_id,
+        integrity_verified: result.integrity_verified,
+        note: result.note,
+        dynamodb_record: result.dynamodb_record,
+        s3_record: result.s3_record,
+    };
+}
+//# sourceMappingURL=verify_decision.js.map

package/dist/tools/verify_decision.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify_decision.js","sourceRoot":"","sources":["../../src/tools/verify_decision.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAIxB,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAAC,CAAC,MAAM,CAAC;IAChD,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,IAAI,EAAE;SACN,QAAQ,CAAC,iDAAiD,CAAC;CAC/D,CAAC,CAAC;AAIH,MAAM,CAAC,MAAM,4BAA4B,GAAG;IAC1C,IAAI,EAAE,iBAAiB;IACvB,WAAW,EACT,4VAA4V;IAC9V,WAAW,EAAE;QACX,IAAI,EAAE,QAAiB;QACvB,UAAU,EAAE;YACV,QAAQ,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,yBAAyB,CAAC,KAAK,CAAC,QAAQ,CAAC,WAAW,EAAE;SAChH;QACD,QAAQ,EAAE,CAAC,UAAU,CAAC;KACvB;CACO,CAAC;AAEX,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,MAAyB,EACzB,QAAiB;IAQjB,MAAM,KAAK,GAAG,yBAAyB,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IACxD,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IAC3D,OAAO;QACL,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,kBAAkB,EAAE,MAAM,CAAC,kBAAkB;QAC7C,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,eAAe,EAAE,MAAM,CAAC,eAAe;QACvC,SAAS,EAAE,MAAM,CAAC,SAAS;KAC5B,CAAC;AACJ,CAAC"}

package/package.json

@@ -0,0 +1,59 @@
+{
+  "name": "audit-ledger-mcp",
+  "version": "0.1.0",
+  "description": "MCP server for AI Audit Ledger — record AI decisions to a tamper-evident ledger from any agent (Claude, Cursor, LangGraph, custom).",
+  "type": "module",
+  "bin": {
+    "audit-ledger-mcp": "./dist/index.js"
+  },
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "start": "node dist/index.js",
+    "dev": "tsc --watch",
+    "test": "node --test --import tsx tests/*.test.ts",
+    "integration-test": "tsx tests/integration.test.ts",
+    "prepublishOnly": "npm run build"
+  },
+  "keywords": [
+    "mcp",
+    "model-context-protocol",
+    "ai-audit",
+    "audit-trail",
+    "eu-ai-act",
+    "fca",
+    "compliance",
+    "fintech",
+    "hitl",
+    "langgraph",
+    "claude"
+  ],
+  "author": "Shahid (https://github.com/shahidh68)",
+  "license": "Apache-2.0",
+  "homepage": "https://github.com/shahidh68/audit-ledger-mcp",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/shahidh68/audit-ledger-mcp.git"
+  },
+  "bugs": {
+    "url": "https://github.com/shahidh68/audit-ledger-mcp/issues"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.0.0",
+    "zod": "^3.23.0"
+  },
+  "devDependencies": {
+    "@types/node": "^22.0.0",
+    "tsx": "^4.19.0",
+    "typescript": "^5.6.0"
+  }
+}