cbrowser 16.1.0 → 16.3.0

package/dist/stealth/index.d.ts

@@ -18,4 +18,5 @@
  */
 export { DEFAULT_STEALTH_CONFIG, MINIMUM_RATE_LIMITS, STEALTH_TERMS_OF_SERVICE, matchesDomainPattern, isProhibitedDomain, validateAcknowledgment, mergeStealthConfig, BaseConstitutionalEnforcer, NoOpConstitutionalEnforcer, } from "./framework.js";
 export type { StealthConfig, StealthAuthorization, StealthAcknowledgment, StealthRateLimits, StealthAuditEntry, StealthCheckResult, IConstitutionalEnforcer, } from "./framework.js";
+export { getEnforcer, getEnforcerSync, isEnterpriseAvailable, getEnterpriseVersion, printEnterpriseStatus, } from "./loader.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/stealth/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/stealth/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH;;;;;GAKG;AAEH,OAAO,EACL,sBAAsB,EACtB,mBAAmB,EACnB,wBAAwB,EACxB,oBAAoB,EACpB,kBAAkB,EAClB,sBAAsB,EACtB,kBAAkB,EAClB,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gBAAgB,CAAC;AAExB,YAAY,EACV,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,iBAAiB,EACjB,iBAAiB,EACjB,kBAAkB,EAClB,uBAAuB,GACxB,MAAM,gBAAgB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/stealth/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH;;;;;GAKG;AAEH,OAAO,EACL,sBAAsB,EACtB,mBAAmB,EACnB,wBAAwB,EACxB,oBAAoB,EACpB,kBAAkB,EAClB,sBAAsB,EACtB,kBAAkB,EAClB,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gBAAgB,CAAC;AAExB,YAAY,EACV,aAAa,EACb,oBAAoB,EACpB,qBAAqB,EACrB,iBAAiB,EACjB,iBAAiB,EACjB,kBAAkB,EAClB,uBAAuB,GACxB,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EACL,WAAW,EACX,eAAe,EACf,qBAAqB,EACrB,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,aAAa,CAAC"}

package/dist/stealth/index.js

@@ -17,4 +17,6 @@
  * Full implementation available in cbrowser-enterprise.
  */
 export { DEFAULT_STEALTH_CONFIG, MINIMUM_RATE_LIMITS, STEALTH_TERMS_OF_SERVICE, matchesDomainPattern, isProhibitedDomain, validateAcknowledgment, mergeStealthConfig, BaseConstitutionalEnforcer, NoOpConstitutionalEnforcer, } from "./framework.js";
+// Enterprise loader (v15.0.0)
+export { getEnforcer, getEnforcerSync, isEnterpriseAvailable, getEnterpriseVersion, printEnterpriseStatus, } from "./loader.js";
 //# sourceMappingURL=index.js.map

package/dist/stealth/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/stealth/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH;;;;;GAKG;AAEH,OAAO,EACL,sBAAsB,EACtB,mBAAmB,EACnB,wBAAwB,EACxB,oBAAoB,EACpB,kBAAkB,EAClB,sBAAsB,EACtB,kBAAkB,EAClB,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gBAAgB,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/stealth/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH;;;;;GAKG;AAEH,OAAO,EACL,sBAAsB,EACtB,mBAAmB,EACnB,wBAAwB,EACxB,oBAAoB,EACpB,kBAAkB,EAClB,sBAAsB,EACtB,kBAAkB,EAClB,0BAA0B,EAC1B,0BAA0B,GAC3B,MAAM,gBAAgB,CAAC;AAYxB,8BAA8B;AAC9B,OAAO,EACL,WAAW,EACX,eAAe,EACf,qBAAqB,EACrB,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,aAAa,CAAC"}

package/dist/stealth/loader.d.ts

@@ -0,0 +1,60 @@
+/**
+ * CBrowser - Cognitive Browser Automation
+ *
+ * Copyright (c) 2026 WF Media (Alexandria Eden)
+ * Email: alexandria.shai.eden@gmail.com
+ *
+ * This source code is licensed under the Business Source License 1.1
+ * found in the LICENSE file in the root directory of this source tree.
+ */
+/**
+ * Enterprise Loader (v15.0.0)
+ *
+ * Dynamically loads cbrowser-enterprise if installed.
+ * Falls back to NoOpConstitutionalEnforcer for public-only users.
+ */
+import type { IConstitutionalEnforcer, StealthConfig } from "../types.js";
+/**
+ * Check if enterprise module is available
+ */
+export declare function isEnterpriseAvailable(): Promise<boolean>;
+/**
+ * Get enterprise version if available
+ */
+export declare function getEnterpriseVersion(): string | null;
+/**
+ * Get the appropriate constitutional enforcer
+ *
+ * Returns EnterpriseConstitutionalEnforcer if cbrowser-enterprise is installed,
+ * otherwise returns NoOpConstitutionalEnforcer.
+ *
+ * @param config - Optional stealth configuration
+ * @returns Constitutional enforcer instance
+ *
+ * @example
+ * ```typescript
+ * // Auto-detect enterprise
+ * const enforcer = await getEnforcer();
+ *
+ * // With custom config
+ * const enforcer = await getEnforcer({
+ *   enabled: true,
+ *   authorization: {
+ *     authorizedDomains: ["*.mycompany.com"],
+ *   },
+ * });
+ * ```
+ */
+export declare function getEnforcer(config?: Partial<StealthConfig>): Promise<IConstitutionalEnforcer>;
+/**
+ * Create enforcer synchronously (uses cached module)
+ *
+ * Must call isEnterpriseAvailable() first to load module.
+ * If called before loading, returns NoOp enforcer.
+ */
+export declare function getEnforcerSync(config?: Partial<StealthConfig>): IConstitutionalEnforcer;
+/**
+ * Print enterprise status for diagnostics
+ */
+export declare function printEnterpriseStatus(): Promise<void>;
+//# sourceMappingURL=loader.d.ts.map

package/dist/stealth/loader.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"loader.d.ts","sourceRoot":"","sources":["../../src/stealth/loader.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,uBAAuB,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAa1E;;GAEG;AACH,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,OAAO,CAAC,CAW9D;AAED;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,MAAM,GAAG,IAAI,CAEpD;AA4CD;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAsB,WAAW,CAC/B,MAAM,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,GAC9B,OAAO,CAAC,uBAAuB,CAAC,CASlC;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,CAC7B,MAAM,CAAC,EAAE,OAAO,CAAC,aAAa,CAAC,GAC9B,uBAAuB,CAMzB;AAED;;GAEG;AACH,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,IAAI,CAAC,CAoB3D"}

package/dist/stealth/loader.js

@@ -0,0 +1,139 @@
+/**
+ * CBrowser - Cognitive Browser Automation
+ *
+ * Copyright (c) 2026 WF Media (Alexandria Eden)
+ * Email: alexandria.shai.eden@gmail.com
+ *
+ * This source code is licensed under the Business Source License 1.1
+ * found in the LICENSE file in the root directory of this source tree.
+ */
+import { NoOpConstitutionalEnforcer } from "./framework.js";
+/** Cache the loaded module */
+let enterpriseModule = null;
+let loadAttempted = false;
+/**
+ * Check if enterprise module is available
+ */
+export async function isEnterpriseAvailable() {
+    if (loadAttempted) {
+        return enterpriseModule !== null;
+    }
+    try {
+        await loadEnterpriseModule();
+        return enterpriseModule !== null;
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Get enterprise version if available
+ */
+export function getEnterpriseVersion() {
+    return enterpriseModule?.version ?? null;
+}
+/**
+ * Attempt to load enterprise module
+ */
+async function loadEnterpriseModule() {
+    if (loadAttempted) {
+        return enterpriseModule;
+    }
+    loadAttempted = true;
+    try {
+        // Dynamic import of enterprise package
+        // This will fail gracefully if not installed
+        // Use string variable to prevent TypeScript from resolving at compile time
+        const enterprisePackage = "cbrowser-enterprise";
+        const module = await import(/* webpackIgnore: true */ enterprisePackage);
+        // Validate module shape
+        if (module.EnterpriseConstitutionalEnforcer &&
+            typeof module.EnterpriseConstitutionalEnforcer === "function") {
+            enterpriseModule = module;
+            console.log(`[CBrowser] Enterprise module loaded (v${module.version || "unknown"})`);
+            return enterpriseModule;
+        }
+        else {
+            console.warn("[CBrowser] Enterprise module found but invalid shape");
+            return null;
+        }
+    }
+    catch (error) {
+        // Not installed - this is expected for public-only users
+        if (error.code === "ERR_MODULE_NOT_FOUND") {
+            // Silent - enterprise not installed
+            return null;
+        }
+        // Unexpected error
+        console.warn("[CBrowser] Failed to load enterprise module:", error);
+        return null;
+    }
+}
+/**
+ * Get the appropriate constitutional enforcer
+ *
+ * Returns EnterpriseConstitutionalEnforcer if cbrowser-enterprise is installed,
+ * otherwise returns NoOpConstitutionalEnforcer.
+ *
+ * @param config - Optional stealth configuration
+ * @returns Constitutional enforcer instance
+ *
+ * @example
+ * ```typescript
+ * // Auto-detect enterprise
+ * const enforcer = await getEnforcer();
+ *
+ * // With custom config
+ * const enforcer = await getEnforcer({
+ *   enabled: true,
+ *   authorization: {
+ *     authorizedDomains: ["*.mycompany.com"],
+ *   },
+ * });
+ * ```
+ */
+export async function getEnforcer(config) {
+    const enterprise = await loadEnterpriseModule();
+    if (enterprise) {
+        return new enterprise.EnterpriseConstitutionalEnforcer(config);
+    }
+    // Fall back to NoOp
+    return new NoOpConstitutionalEnforcer(config);
+}
+/**
+ * Create enforcer synchronously (uses cached module)
+ *
+ * Must call isEnterpriseAvailable() first to load module.
+ * If called before loading, returns NoOp enforcer.
+ */
+export function getEnforcerSync(config) {
+    if (enterpriseModule) {
+        return new enterpriseModule.EnterpriseConstitutionalEnforcer(config);
+    }
+    return new NoOpConstitutionalEnforcer(config);
+}
+/**
+ * Print enterprise status for diagnostics
+ */
+export async function printEnterpriseStatus() {
+    const available = await isEnterpriseAvailable();
+    if (available) {
+        console.log("╔══════════════════════════════════════════════════════════╗");
+        console.log("║  CBrowser Enterprise: ACTIVE                             ║");
+        console.log(`║  Version: ${(getEnterpriseVersion() || "unknown").padEnd(47)}║`);
+        console.log("║  Stealth capabilities: ENABLED                           ║");
+        console.log("╚══════════════════════════════════════════════════════════╝");
+    }
+    else {
+        console.log("╔══════════════════════════════════════════════════════════╗");
+        console.log("║  CBrowser Enterprise: NOT INSTALLED                      ║");
+        console.log("║  Stealth capabilities: DISABLED (NoOp mode)              ║");
+        console.log("║                                                          ║");
+        console.log("║  To enable enterprise features:                          ║");
+        console.log("║  npm install cbrowser-enterprise --registry <private>    ║");
+        console.log("║                                                          ║");
+        console.log("║  Contact: alexandria.shai.eden@gmail.com                 ║");
+        console.log("╚══════════════════════════════════════════════════════════╝");
+    }
+}
+//# sourceMappingURL=loader.js.map

package/dist/stealth/loader.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"loader.js","sourceRoot":"","sources":["../../src/stealth/loader.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAUH,OAAO,EAAE,0BAA0B,EAAE,MAAM,gBAAgB,CAAC;AAQ5D,8BAA8B;AAC9B,IAAI,gBAAgB,GAA4B,IAAI,CAAC;AACrD,IAAI,aAAa,GAAG,KAAK,CAAC;AAE1B;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB;IACzC,IAAI,aAAa,EAAE,CAAC;QAClB,OAAO,gBAAgB,KAAK,IAAI,CAAC;IACnC,CAAC;IAED,IAAI,CAAC;QACH,MAAM,oBAAoB,EAAE,CAAC;QAC7B,OAAO,gBAAgB,KAAK,IAAI,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB;IAClC,OAAO,gBAAgB,EAAE,OAAO,IAAI,IAAI,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,oBAAoB;IACjC,IAAI,aAAa,EAAE,CAAC;QAClB,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAED,aAAa,GAAG,IAAI,CAAC;IAErB,IAAI,CAAC;QACH,uCAAuC;QACvC,6CAA6C;QAC7C,2EAA2E;QAC3E,MAAM,iBAAiB,GAAG,qBAAqB,CAAC;QAChD,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,yBAAyB,CAAC,iBAAiB,CAAC,CAAC;QAEzE,wBAAwB;QACxB,IACE,MAAM,CAAC,gCAAgC;YACvC,OAAO,MAAM,CAAC,gCAAgC,KAAK,UAAU,EAC7D,CAAC;YACD,gBAAgB,GAAG,MAA0B,CAAC;YAC9C,OAAO,CAAC,GAAG,CAAC,yCAAyC,MAAM,CAAC,OAAO,IAAI,SAAS,GAAG,CAAC,CAAC;YACrF,OAAO,gBAAgB,CAAC;QAC1B,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,IAAI,CAAC,sDAAsD,CAAC,CAAC;YACrE,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,yDAAyD;QACzD,IAAK,KAA+B,CAAC,IAAI,KAAK,sBAAsB,EAAE,CAAC;YACrE,oCAAoC;YACpC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,mBAAmB;QACnB,OAAO,CAAC,IAAI,CAAC,8CAA8C,EAAE,KAAK,CAAC,CAAC;QACpE,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAA+B;IAE/B,MAAM,UAAU,GAAG,MAAM,oBAAoB,EAAE,CAAC;IAEhD,IAAI,UAAU,EAAE,CAAC;QACf,OAAO,IAAI,UAAU,CAAC,gCAAgC,CAAC,MAAM,CAAC,CAAC;IACjE,CAAC;IAED,oBAAoB;IACpB,OAAO,IAAI,0BAA0B,CAAC,MAAM,CAAC,CAAC;AAChD,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,eAAe,CAC7B,MAA+B;IAE/B,IAAI,gBAAgB,EAAE,CAAC;QACrB,OAAO,IAAI,gBAAgB,CAAC,gCAAgC,CAAC,MAAM,CAAC,CAAC;IACvE,CAAC;IAED,OAAO,IAAI,0BAA0B,CAAC,MAAM,CAAC,CAAC;AAChD,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB;IACzC,MAAM,SAAS,GAAG,MAAM,qBAAqB,EAAE,CAAC;IAEhD,IAAI,SAAS,EAAE,CAAC;QACd,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,eAAe,CAAC,oBAAoB,EAAE,IAAI,SAAS,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC;QAChF,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;IAC9E,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;QAC5E,OAAO,CAAC,GAAG,CAAC,8DAA8D,CAAC,CAAC;IAC9E,CAAC;AACH,CAAC"}

package/docs/ENTERPRISE-INTEGRATION.md

@@ -0,0 +1,244 @@
+# CBrowser Enterprise Integration Guide
+
+This document explains how to integrate the private `cbrowser-enterprise` package with the public `cbrowser` package.
+
+## Architecture Overview
+
+```
+┌─────────────────────────────────────────────────────────────┐
+│  cbrowser (public npm)                                      │
+│  ├── IConstitutionalEnforcer (interface)                    │
+│  ├── BaseConstitutionalEnforcer (abstract base class)       │
+│  ├── NoOpConstitutionalEnforcer (fallback)                  │
+│  └── getEnforcer() → dynamic loader                         │
+└─────────────────────────────────────────────────────────────┘
+                           │
+                           │ dynamic import (optional)
+                           ▼
+┌─────────────────────────────────────────────────────────────┐
+│  cbrowser-enterprise (private npm/GitHub Packages)          │
+│  ├── EnterpriseConstitutionalEnforcer                       │
+│  │   ├── applyStealthMeasures() — real implementation       │
+│  │   ├── persistAuditEntry() — database logging             │
+│  │   └── Full fingerprint evasion suite                     │
+│  └── exports { EnterpriseConstitutionalEnforcer, version }  │
+└─────────────────────────────────────────────────────────────┘
+```
+
+## Enterprise Package Structure
+
+Create a private repository `cbrowser-enterprise`:
+
+```
+cbrowser-enterprise/
+├── package.json
+├── tsconfig.json
+├── src/
+│   ├── index.ts                    # Main exports
+│   ├── enforcer.ts                 # EnterpriseConstitutionalEnforcer
+│   ├── stealth/
+│   │   ├── fingerprint.ts          # Browser fingerprint normalization
+│   │   ├── webdriver.ts            # WebDriver flag patching
+│   │   ├── timing.ts               # Human-like timing injection
+│   │   └── canvas.ts               # Canvas/WebGL normalization
+│   └── audit/
+│       └── persistence.ts          # Audit log database
+└── dist/                           # Compiled output
+```
+
+### package.json (Enterprise)
+
+```json
+{
+  "name": "cbrowser-enterprise",
+  "version": "1.0.0",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "private": true,
+  "peerDependencies": {
+    "cbrowser": ">=15.0.0"
+  },
+  "publishConfig": {
+    "registry": "https://npm.pkg.github.com"
+  }
+}
+```
+
+### src/index.ts (Enterprise)
+
+```typescript
+export { EnterpriseConstitutionalEnforcer } from "./enforcer.js";
+export const version = "1.0.0";
+```
+
+### src/enforcer.ts (Enterprise Template)
+
+```typescript
+import {
+  BaseConstitutionalEnforcer,
+  type StealthConfig,
+  type StealthAuditEntry,
+} from "cbrowser";
+import type { Page } from "playwright";
+
+export class EnterpriseConstitutionalEnforcer extends BaseConstitutionalEnforcer {
+  constructor(config?: Partial<StealthConfig>) {
+    super(config);
+  }
+
+  /**
+   * Persist audit entries to database
+   */
+  protected async persistAuditEntry(entry: StealthAuditEntry): Promise<void> {
+    // TODO: Implement database persistence
+    // - SQLite for local
+    // - PostgreSQL for production
+    console.log("[Enterprise] Audit:", JSON.stringify(entry));
+  }
+
+  /**
+   * Apply stealth measures to page
+   */
+  async applyStealthMeasures(page: Page): Promise<void> {
+    // 1. Patch navigator.webdriver
+    await page.addInitScript(() => {
+      Object.defineProperty(navigator, "webdriver", {
+        get: () => undefined,
+      });
+    });
+
+    // 2. Inject realistic plugins
+    await page.addInitScript(() => {
+      Object.defineProperty(navigator, "plugins", {
+        get: () => [
+          { name: "Chrome PDF Plugin" },
+          { name: "Chrome PDF Viewer" },
+          { name: "Native Client" },
+        ],
+      });
+    });
+
+    // 3. Patch chrome object
+    await page.addInitScript(() => {
+      (window as any).chrome = {
+        runtime: {},
+        loadTimes: () => {},
+        csi: () => {},
+      };
+    });
+
+    // 4. Normalize WebGL fingerprint
+    await this.normalizeWebGL(page);
+
+    // 5. Add human-like mouse movement patterns
+    // (Injected via persona's humanBehavior traits)
+  }
+
+  private async normalizeWebGL(page: Page): Promise<void> {
+    await page.addInitScript(() => {
+      const getParameterProxy = new Proxy(
+        WebGLRenderingContext.prototype.getParameter,
+        {
+          apply(target, thisArg, args) {
+            const param = args[0];
+            // Normalize common fingerprint vectors
+            if (param === 37445) return "Intel Inc."; // UNMASKED_VENDOR
+            if (param === 37446) return "Intel Iris OpenGL Engine"; // UNMASKED_RENDERER
+            return Reflect.apply(target, thisArg, args);
+          },
+        }
+      );
+      WebGLRenderingContext.prototype.getParameter = getParameterProxy;
+    });
+  }
+}
+```
+
+## Publishing Enterprise Package
+
+### Option 1: GitHub Packages (Recommended)
+
+```bash
+# In cbrowser-enterprise repo
+npm login --registry=https://npm.pkg.github.com --scope=@yourorg
+npm publish
+```
+
+### Option 2: Private npm Registry
+
+```bash
+# Using Verdaccio or npm Enterprise
+npm publish --registry https://your-private-registry.com
+```
+
+### Option 3: Git Dependency
+
+```json
+{
+  "dependencies": {
+    "cbrowser-enterprise": "git+ssh://git@github.com:yourorg/cbrowser-enterprise.git"
+  }
+}
+```
+
+## Installing Enterprise for MCP Server
+
+On your MCP server host:
+
+```bash
+# Install public package
+npm install cbrowser
+
+# Install enterprise (with auth)
+npm install cbrowser-enterprise --registry https://npm.pkg.github.com
+
+# Or with .npmrc
+echo "@yourorg:registry=https://npm.pkg.github.com" >> .npmrc
+echo "//npm.pkg.github.com/:_authToken=${GITHUB_TOKEN}" >> .npmrc
+npm install @yourorg/cbrowser-enterprise
+```
+
+## Usage in MCP Server
+
+The MCP server automatically detects enterprise:
+
+```typescript
+import { getEnforcer, printEnterpriseStatus } from "cbrowser";
+
+// On startup
+await printEnterpriseStatus();
+
+// When creating browser with stealth
+const enforcer = await getEnforcer({
+  enabled: true,
+  authorization: {
+    authorizedDomains: ["*.yourdomain.com"],
+  },
+});
+
+// Use enforcer with browser
+const browser = new CBrowser({ enforcer });
+```
+
+## Verification
+
+```bash
+# Check if enterprise is detected
+npx cbrowser status
+
+# Output with enterprise:
+# ╔══════════════════════════════════════════════════════════╗
+# ║  CBrowser Enterprise: ACTIVE                             ║
+# ║  Version: 1.0.0                                          ║
+# ║  Stealth capabilities: ENABLED                           ║
+# ╚══════════════════════════════════════════════════════════╝
+```
+
+## Security Notes
+
+1. **Never commit enterprise to public repo** - It's a separate private package
+2. **Use GitHub Packages or private npm** - Not public npm registry
+3. **Rotate access tokens** - Use short-lived tokens for CI/CD
+4. **Audit logs are immutable** - Cannot be disabled or cleared
+5. **Rate limits enforced** - Minimum limits cannot be lowered

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cbrowser",
-  "version": "16.1.0",
+  "version": "16.3.0",
   "type": "module",
   "description": "Cognitive browser automation that thinks like your users. Simulate real user cognition with abandonment detection, constitutional safety, chaos engineering, and UX friction discovery.",
   "main": "dist/index.js",
@@ -33,6 +33,11 @@
       "types": "./dist/performance/index.d.ts",
       "import": "./dist/performance/index.js",
       "require": "./dist/performance/index.js"
+    },
+    "./stealth": {
+      "types": "./dist/stealth/index.d.ts",
+      "import": "./dist/stealth/index.js",
+      "require": "./dist/stealth/index.js"
     }
   },
   "scripts": {