chainlesschain 0.81.0 → 0.143.0

package/src/lib/cowork-task-runner.js

@@ -465,3 +465,108 @@ function _appendHistory(cwd, entry, userMessage) {
     // Best-effort — don't fail the task for history write errors
   }
 }
+
+
+// ===== V2 Surface: Cowork Task Runner governance overlay (CLI v0.139.0) =====
+export const RUNNER_PROFILE_MATURITY_V2 = Object.freeze({
+  PENDING: "pending", ACTIVE: "active", PAUSED: "paused", RETIRED: "retired",
+});
+export const RUNNER_EXEC_LIFECYCLE_V2 = Object.freeze({
+  QUEUED: "queued", RUNNING: "running", SUCCEEDED: "succeeded", FAILED: "failed", CANCELLED: "cancelled",
+});
+
+const _rpTrans = new Map([
+  [RUNNER_PROFILE_MATURITY_V2.PENDING, new Set([RUNNER_PROFILE_MATURITY_V2.ACTIVE, RUNNER_PROFILE_MATURITY_V2.RETIRED])],
+  [RUNNER_PROFILE_MATURITY_V2.ACTIVE, new Set([RUNNER_PROFILE_MATURITY_V2.PAUSED, RUNNER_PROFILE_MATURITY_V2.RETIRED])],
+  [RUNNER_PROFILE_MATURITY_V2.PAUSED, new Set([RUNNER_PROFILE_MATURITY_V2.ACTIVE, RUNNER_PROFILE_MATURITY_V2.RETIRED])],
+  [RUNNER_PROFILE_MATURITY_V2.RETIRED, new Set()],
+]);
+const _rpTerminal = new Set([RUNNER_PROFILE_MATURITY_V2.RETIRED]);
+const _reTrans = new Map([
+  [RUNNER_EXEC_LIFECYCLE_V2.QUEUED, new Set([RUNNER_EXEC_LIFECYCLE_V2.RUNNING, RUNNER_EXEC_LIFECYCLE_V2.CANCELLED])],
+  [RUNNER_EXEC_LIFECYCLE_V2.RUNNING, new Set([RUNNER_EXEC_LIFECYCLE_V2.SUCCEEDED, RUNNER_EXEC_LIFECYCLE_V2.FAILED, RUNNER_EXEC_LIFECYCLE_V2.CANCELLED])],
+  [RUNNER_EXEC_LIFECYCLE_V2.SUCCEEDED, new Set()],
+  [RUNNER_EXEC_LIFECYCLE_V2.FAILED, new Set()],
+  [RUNNER_EXEC_LIFECYCLE_V2.CANCELLED, new Set()],
+]);
+
+const _rpsV2 = new Map();
+const _resV2 = new Map();
+let _rpMaxActivePerOwner = 8;
+let _rpMaxPendingExecsPerProfile = 15;
+let _rpIdleMs = 14 * 24 * 60 * 60 * 1000;
+let _reStuckMs = 20 * 60 * 1000;
+
+function _rpPos(n, lbl) { const v = Math.floor(Number(n)); if (!Number.isFinite(v) || v <= 0) throw new Error(`${lbl} must be positive integer`); return v; }
+
+export function setMaxActiveRunnerProfilesPerOwnerV2(n) { _rpMaxActivePerOwner = _rpPos(n, "maxActiveRunnerProfilesPerOwner"); }
+export function getMaxActiveRunnerProfilesPerOwnerV2() { return _rpMaxActivePerOwner; }
+export function setMaxPendingRunnerExecsPerProfileV2(n) { _rpMaxPendingExecsPerProfile = _rpPos(n, "maxPendingRunnerExecsPerProfile"); }
+export function getMaxPendingRunnerExecsPerProfileV2() { return _rpMaxPendingExecsPerProfile; }
+export function setRunnerProfileIdleMsV2(n) { _rpIdleMs = _rpPos(n, "runnerProfileIdleMs"); }
+export function getRunnerProfileIdleMsV2() { return _rpIdleMs; }
+export function setRunnerExecStuckMsV2(n) { _reStuckMs = _rpPos(n, "runnerExecStuckMs"); }
+export function getRunnerExecStuckMsV2() { return _reStuckMs; }
+
+export function _resetStateRunnerV2() {
+  _rpsV2.clear(); _resV2.clear();
+  _rpMaxActivePerOwner = 8; _rpMaxPendingExecsPerProfile = 15;
+  _rpIdleMs = 14 * 24 * 60 * 60 * 1000; _reStuckMs = 20 * 60 * 1000;
+}
+
+export function registerRunnerProfileV2({ id, owner, template, metadata } = {}) {
+  if (!id || typeof id !== "string") throw new Error("id is required");
+  if (!owner || typeof owner !== "string") throw new Error("owner is required");
+  if (_rpsV2.has(id)) throw new Error(`runner profile ${id} already registered`);
+  const now = Date.now();
+  const p = { id, owner, template: template || "default", status: RUNNER_PROFILE_MATURITY_V2.PENDING, createdAt: now, updatedAt: now, activatedAt: null, retiredAt: null, lastTouchedAt: now, metadata: { ...(metadata || {}) } };
+  _rpsV2.set(id, p);
+  return { ...p, metadata: { ...p.metadata } };
+}
+function _rpCheckP(from, to) { const a = _rpTrans.get(from); if (!a || !a.has(to)) throw new Error(`invalid runner profile transition ${from} → ${to}`); }
+function _rpCountActive(owner) { let n = 0; for (const p of _rpsV2.values()) if (p.owner === owner && p.status === RUNNER_PROFILE_MATURITY_V2.ACTIVE) n++; return n; }
+
+export function activateRunnerProfileV2(id) {
+  const p = _rpsV2.get(id); if (!p) throw new Error(`runner profile ${id} not found`);
+  _rpCheckP(p.status, RUNNER_PROFILE_MATURITY_V2.ACTIVE);
+  const recovery = p.status === RUNNER_PROFILE_MATURITY_V2.PAUSED;
+  if (!recovery) { const c = _rpCountActive(p.owner); if (c >= _rpMaxActivePerOwner) throw new Error(`max active runner profiles per owner (${_rpMaxActivePerOwner}) reached for ${p.owner}`); }
+  const now = Date.now(); p.status = RUNNER_PROFILE_MATURITY_V2.ACTIVE; p.updatedAt = now; p.lastTouchedAt = now; if (!p.activatedAt) p.activatedAt = now;
+  return { ...p, metadata: { ...p.metadata } };
+}
+export function pauseRunnerProfileV2(id) { const p = _rpsV2.get(id); if (!p) throw new Error(`runner profile ${id} not found`); _rpCheckP(p.status, RUNNER_PROFILE_MATURITY_V2.PAUSED); p.status = RUNNER_PROFILE_MATURITY_V2.PAUSED; p.updatedAt = Date.now(); return { ...p, metadata: { ...p.metadata } }; }
+export function retireRunnerProfileV2(id) { const p = _rpsV2.get(id); if (!p) throw new Error(`runner profile ${id} not found`); _rpCheckP(p.status, RUNNER_PROFILE_MATURITY_V2.RETIRED); const now = Date.now(); p.status = RUNNER_PROFILE_MATURITY_V2.RETIRED; p.updatedAt = now; if (!p.retiredAt) p.retiredAt = now; return { ...p, metadata: { ...p.metadata } }; }
+export function touchRunnerProfileV2(id) { const p = _rpsV2.get(id); if (!p) throw new Error(`runner profile ${id} not found`); if (_rpTerminal.has(p.status)) throw new Error(`cannot touch terminal runner profile ${id}`); const now = Date.now(); p.lastTouchedAt = now; p.updatedAt = now; return { ...p, metadata: { ...p.metadata } }; }
+export function getRunnerProfileV2(id) { const p = _rpsV2.get(id); if (!p) return null; return { ...p, metadata: { ...p.metadata } }; }
+export function listRunnerProfilesV2() { return [..._rpsV2.values()].map((p) => ({ ...p, metadata: { ...p.metadata } })); }
+
+function _reCountPending(profileId) { let n = 0; for (const e of _resV2.values()) if (e.profileId === profileId && (e.status === RUNNER_EXEC_LIFECYCLE_V2.QUEUED || e.status === RUNNER_EXEC_LIFECYCLE_V2.RUNNING)) n++; return n; }
+
+export function createRunnerExecV2({ id, profileId, taskInput, metadata } = {}) {
+  if (!id || typeof id !== "string") throw new Error("id is required");
+  if (!profileId || typeof profileId !== "string") throw new Error("profileId is required");
+  if (_resV2.has(id)) throw new Error(`runner exec ${id} already exists`);
+  if (!_rpsV2.has(profileId)) throw new Error(`runner profile ${profileId} not found`);
+  const pending = _reCountPending(profileId);
+  if (pending >= _rpMaxPendingExecsPerProfile) throw new Error(`max pending runner execs per profile (${_rpMaxPendingExecsPerProfile}) reached for ${profileId}`);
+  const now = Date.now();
+  const e = { id, profileId, taskInput: taskInput || "", status: RUNNER_EXEC_LIFECYCLE_V2.QUEUED, createdAt: now, updatedAt: now, startedAt: null, settledAt: null, metadata: { ...(metadata || {}) } };
+  _resV2.set(id, e);
+  return { ...e, metadata: { ...e.metadata } };
+}
+function _reCheckE(from, to) { const a = _reTrans.get(from); if (!a || !a.has(to)) throw new Error(`invalid runner exec transition ${from} → ${to}`); }
+export function startRunnerExecV2(id) { const e = _resV2.get(id); if (!e) throw new Error(`runner exec ${id} not found`); _reCheckE(e.status, RUNNER_EXEC_LIFECYCLE_V2.RUNNING); const now = Date.now(); e.status = RUNNER_EXEC_LIFECYCLE_V2.RUNNING; e.updatedAt = now; if (!e.startedAt) e.startedAt = now; return { ...e, metadata: { ...e.metadata } }; }
+export function succeedRunnerExecV2(id) { const e = _resV2.get(id); if (!e) throw new Error(`runner exec ${id} not found`); _reCheckE(e.status, RUNNER_EXEC_LIFECYCLE_V2.SUCCEEDED); const now = Date.now(); e.status = RUNNER_EXEC_LIFECYCLE_V2.SUCCEEDED; e.updatedAt = now; if (!e.settledAt) e.settledAt = now; return { ...e, metadata: { ...e.metadata } }; }
+export function failRunnerExecV2(id, reason) { const e = _resV2.get(id); if (!e) throw new Error(`runner exec ${id} not found`); _reCheckE(e.status, RUNNER_EXEC_LIFECYCLE_V2.FAILED); const now = Date.now(); e.status = RUNNER_EXEC_LIFECYCLE_V2.FAILED; e.updatedAt = now; if (!e.settledAt) e.settledAt = now; if (reason) e.metadata.failReason = String(reason); return { ...e, metadata: { ...e.metadata } }; }
+export function cancelRunnerExecV2(id, reason) { const e = _resV2.get(id); if (!e) throw new Error(`runner exec ${id} not found`); _reCheckE(e.status, RUNNER_EXEC_LIFECYCLE_V2.CANCELLED); const now = Date.now(); e.status = RUNNER_EXEC_LIFECYCLE_V2.CANCELLED; e.updatedAt = now; if (!e.settledAt) e.settledAt = now; if (reason) e.metadata.cancelReason = String(reason); return { ...e, metadata: { ...e.metadata } }; }
+export function getRunnerExecV2(id) { const e = _resV2.get(id); if (!e) return null; return { ...e, metadata: { ...e.metadata } }; }
+export function listRunnerExecsV2() { return [..._resV2.values()].map((e) => ({ ...e, metadata: { ...e.metadata } })); }
+
+export function autoPauseIdleRunnerProfilesV2({ now } = {}) { const t = now ?? Date.now(); const flipped = []; for (const p of _rpsV2.values()) if (p.status === RUNNER_PROFILE_MATURITY_V2.ACTIVE && (t - p.lastTouchedAt) >= _rpIdleMs) { p.status = RUNNER_PROFILE_MATURITY_V2.PAUSED; p.updatedAt = t; flipped.push(p.id); } return { flipped, count: flipped.length }; }
+export function autoFailStuckRunnerExecsV2({ now } = {}) { const t = now ?? Date.now(); const flipped = []; for (const e of _resV2.values()) if (e.status === RUNNER_EXEC_LIFECYCLE_V2.RUNNING && e.startedAt != null && (t - e.startedAt) >= _reStuckMs) { e.status = RUNNER_EXEC_LIFECYCLE_V2.FAILED; e.updatedAt = t; if (!e.settledAt) e.settledAt = t; e.metadata.failReason = "auto-fail-stuck"; flipped.push(e.id); } return { flipped, count: flipped.length }; }
+
+export function getRunnerGovStatsV2() {
+  const profilesByStatus = {}; for (const s of Object.values(RUNNER_PROFILE_MATURITY_V2)) profilesByStatus[s] = 0; for (const p of _rpsV2.values()) profilesByStatus[p.status]++;
+  const execsByStatus = {}; for (const s of Object.values(RUNNER_EXEC_LIFECYCLE_V2)) execsByStatus[s] = 0; for (const e of _resV2.values()) execsByStatus[e.status]++;
+  return { totalRunnerProfilesV2: _rpsV2.size, totalRunnerExecsV2: _resV2.size, maxActiveRunnerProfilesPerOwner: _rpMaxActivePerOwner, maxPendingRunnerExecsPerProfile: _rpMaxPendingExecsPerProfile, runnerProfileIdleMs: _rpIdleMs, runnerExecStuckMs: _reStuckMs, profilesByStatus, execsByStatus };
+}

package/src/lib/cross-chain.js

@@ -1012,3 +1012,108 @@ export function getCrossChainStatsV2() {
     configuredChains: _chainConfigs.size,
   };
 }
+
+
+// ===== V2 Surface: Cross-Chain governance overlay (CLI v0.136.0) =====
+export const XCHAIN_CHANNEL_MATURITY_V2 = Object.freeze({
+  PENDING: "pending", ACTIVE: "active", PAUSED: "paused", DECOMMISSIONED: "decommissioned",
+});
+export const XCHAIN_TRANSFER_LIFECYCLE_V2 = Object.freeze({
+  QUEUED: "queued", RELAYING: "relaying", CONFIRMED: "confirmed", FAILED: "failed", CANCELLED: "cancelled",
+});
+
+const _xcChanTrans = new Map([
+  [XCHAIN_CHANNEL_MATURITY_V2.PENDING, new Set([XCHAIN_CHANNEL_MATURITY_V2.ACTIVE, XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED])],
+  [XCHAIN_CHANNEL_MATURITY_V2.ACTIVE, new Set([XCHAIN_CHANNEL_MATURITY_V2.PAUSED, XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED])],
+  [XCHAIN_CHANNEL_MATURITY_V2.PAUSED, new Set([XCHAIN_CHANNEL_MATURITY_V2.ACTIVE, XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED])],
+  [XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED, new Set()],
+]);
+const _xcChanTerminal = new Set([XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED]);
+const _xcTxTrans = new Map([
+  [XCHAIN_TRANSFER_LIFECYCLE_V2.QUEUED, new Set([XCHAIN_TRANSFER_LIFECYCLE_V2.RELAYING, XCHAIN_TRANSFER_LIFECYCLE_V2.CANCELLED])],
+  [XCHAIN_TRANSFER_LIFECYCLE_V2.RELAYING, new Set([XCHAIN_TRANSFER_LIFECYCLE_V2.CONFIRMED, XCHAIN_TRANSFER_LIFECYCLE_V2.FAILED, XCHAIN_TRANSFER_LIFECYCLE_V2.CANCELLED])],
+  [XCHAIN_TRANSFER_LIFECYCLE_V2.CONFIRMED, new Set()],
+  [XCHAIN_TRANSFER_LIFECYCLE_V2.FAILED, new Set()],
+  [XCHAIN_TRANSFER_LIFECYCLE_V2.CANCELLED, new Set()],
+]);
+
+const _xcChans = new Map();
+const _xcTxs = new Map();
+let _xcMaxActivePerOwner = 10;
+let _xcMaxPendingPerChan = 20;
+let _xcChanIdleMs = 24 * 60 * 60 * 1000;
+let _xcTxStuckMs = 15 * 60 * 1000;
+
+function _xcPos(n, lbl) { const v = Math.floor(Number(n)); if (!Number.isFinite(v) || v <= 0) throw new Error(`${lbl} must be positive integer`); return v; }
+
+export function setMaxActiveXchainChannelsPerOwnerV2(n) { _xcMaxActivePerOwner = _xcPos(n, "maxActiveXchainChannelsPerOwner"); }
+export function getMaxActiveXchainChannelsPerOwnerV2() { return _xcMaxActivePerOwner; }
+export function setMaxPendingXchainTransfersPerChannelV2(n) { _xcMaxPendingPerChan = _xcPos(n, "maxPendingXchainTransfersPerChannel"); }
+export function getMaxPendingXchainTransfersPerChannelV2() { return _xcMaxPendingPerChan; }
+export function setXchainChannelIdleMsV2(n) { _xcChanIdleMs = _xcPos(n, "xchainChannelIdleMs"); }
+export function getXchainChannelIdleMsV2() { return _xcChanIdleMs; }
+export function setXchainTransferStuckMsV2(n) { _xcTxStuckMs = _xcPos(n, "xchainTransferStuckMs"); }
+export function getXchainTransferStuckMsV2() { return _xcTxStuckMs; }
+
+export function _resetStateCrossChainV2() {
+  _xcChans.clear(); _xcTxs.clear();
+  _xcMaxActivePerOwner = 10; _xcMaxPendingPerChan = 20;
+  _xcChanIdleMs = 24 * 60 * 60 * 1000; _xcTxStuckMs = 15 * 60 * 1000;
+}
+
+export function registerXchainChannelV2({ id, owner, fromChain, toChain, metadata } = {}) {
+  if (!id || typeof id !== "string") throw new Error("id is required");
+  if (!owner || typeof owner !== "string") throw new Error("owner is required");
+  if (_xcChans.has(id)) throw new Error(`xchain channel ${id} already registered`);
+  const now = Date.now();
+  const c = { id, owner, fromChain: fromChain || "", toChain: toChain || "", status: XCHAIN_CHANNEL_MATURITY_V2.PENDING, createdAt: now, updatedAt: now, activatedAt: null, decommissionedAt: null, lastTouchedAt: now, metadata: { ...(metadata || {}) } };
+  _xcChans.set(id, c);
+  return { ...c, metadata: { ...c.metadata } };
+}
+function _xcCheckC(from, to) { const a = _xcChanTrans.get(from); if (!a || !a.has(to)) throw new Error(`invalid xchain channel transition ${from} → ${to}`); }
+function _xcCountActive(owner) { let n = 0; for (const c of _xcChans.values()) if (c.owner === owner && c.status === XCHAIN_CHANNEL_MATURITY_V2.ACTIVE) n++; return n; }
+
+export function activateXchainChannelV2(id) {
+  const c = _xcChans.get(id); if (!c) throw new Error(`xchain channel ${id} not found`);
+  _xcCheckC(c.status, XCHAIN_CHANNEL_MATURITY_V2.ACTIVE);
+  const recovery = c.status === XCHAIN_CHANNEL_MATURITY_V2.PAUSED;
+  if (!recovery) { const a = _xcCountActive(c.owner); if (a >= _xcMaxActivePerOwner) throw new Error(`max active xchain channels per owner (${_xcMaxActivePerOwner}) reached for ${c.owner}`); }
+  const now = Date.now(); c.status = XCHAIN_CHANNEL_MATURITY_V2.ACTIVE; c.updatedAt = now; c.lastTouchedAt = now; if (!c.activatedAt) c.activatedAt = now;
+  return { ...c, metadata: { ...c.metadata } };
+}
+export function pauseXchainChannelV2(id) { const c = _xcChans.get(id); if (!c) throw new Error(`xchain channel ${id} not found`); _xcCheckC(c.status, XCHAIN_CHANNEL_MATURITY_V2.PAUSED); c.status = XCHAIN_CHANNEL_MATURITY_V2.PAUSED; c.updatedAt = Date.now(); return { ...c, metadata: { ...c.metadata } }; }
+export function decommissionXchainChannelV2(id) { const c = _xcChans.get(id); if (!c) throw new Error(`xchain channel ${id} not found`); _xcCheckC(c.status, XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED); const now = Date.now(); c.status = XCHAIN_CHANNEL_MATURITY_V2.DECOMMISSIONED; c.updatedAt = now; if (!c.decommissionedAt) c.decommissionedAt = now; return { ...c, metadata: { ...c.metadata } }; }
+export function touchXchainChannelV2(id) { const c = _xcChans.get(id); if (!c) throw new Error(`xchain channel ${id} not found`); if (_xcChanTerminal.has(c.status)) throw new Error(`cannot touch terminal xchain channel ${id}`); const now = Date.now(); c.lastTouchedAt = now; c.updatedAt = now; return { ...c, metadata: { ...c.metadata } }; }
+export function getXchainChannelV2(id) { const c = _xcChans.get(id); if (!c) return null; return { ...c, metadata: { ...c.metadata } }; }
+export function listXchainChannelsV2() { return [..._xcChans.values()].map((c) => ({ ...c, metadata: { ...c.metadata } })); }
+
+function _xcCountPending(cid) { let n = 0; for (const t of _xcTxs.values()) if (t.channelId === cid && (t.status === XCHAIN_TRANSFER_LIFECYCLE_V2.QUEUED || t.status === XCHAIN_TRANSFER_LIFECYCLE_V2.RELAYING)) n++; return n; }
+
+export function createXchainTransferV2({ id, channelId, amount, metadata } = {}) {
+  if (!id || typeof id !== "string") throw new Error("id is required");
+  if (!channelId || typeof channelId !== "string") throw new Error("channelId is required");
+  if (_xcTxs.has(id)) throw new Error(`xchain transfer ${id} already exists`);
+  if (!_xcChans.has(channelId)) throw new Error(`xchain channel ${channelId} not found`);
+  const pending = _xcCountPending(channelId);
+  if (pending >= _xcMaxPendingPerChan) throw new Error(`max pending xchain transfers per channel (${_xcMaxPendingPerChan}) reached for ${channelId}`);
+  const now = Date.now();
+  const t = { id, channelId, amount: amount || "0", status: XCHAIN_TRANSFER_LIFECYCLE_V2.QUEUED, createdAt: now, updatedAt: now, startedAt: null, settledAt: null, metadata: { ...(metadata || {}) } };
+  _xcTxs.set(id, t);
+  return { ...t, metadata: { ...t.metadata } };
+}
+function _xcCheckT(from, to) { const a = _xcTxTrans.get(from); if (!a || !a.has(to)) throw new Error(`invalid xchain transfer transition ${from} → ${to}`); }
+export function startXchainTransferV2(id) { const t = _xcTxs.get(id); if (!t) throw new Error(`xchain transfer ${id} not found`); _xcCheckT(t.status, XCHAIN_TRANSFER_LIFECYCLE_V2.RELAYING); const now = Date.now(); t.status = XCHAIN_TRANSFER_LIFECYCLE_V2.RELAYING; t.updatedAt = now; if (!t.startedAt) t.startedAt = now; return { ...t, metadata: { ...t.metadata } }; }
+export function confirmXchainTransferV2(id) { const t = _xcTxs.get(id); if (!t) throw new Error(`xchain transfer ${id} not found`); _xcCheckT(t.status, XCHAIN_TRANSFER_LIFECYCLE_V2.CONFIRMED); const now = Date.now(); t.status = XCHAIN_TRANSFER_LIFECYCLE_V2.CONFIRMED; t.updatedAt = now; if (!t.settledAt) t.settledAt = now; return { ...t, metadata: { ...t.metadata } }; }
+export function failXchainTransferV2(id, reason) { const t = _xcTxs.get(id); if (!t) throw new Error(`xchain transfer ${id} not found`); _xcCheckT(t.status, XCHAIN_TRANSFER_LIFECYCLE_V2.FAILED); const now = Date.now(); t.status = XCHAIN_TRANSFER_LIFECYCLE_V2.FAILED; t.updatedAt = now; if (!t.settledAt) t.settledAt = now; if (reason) t.metadata.failReason = String(reason); return { ...t, metadata: { ...t.metadata } }; }
+export function cancelXchainTransferV2(id, reason) { const t = _xcTxs.get(id); if (!t) throw new Error(`xchain transfer ${id} not found`); _xcCheckT(t.status, XCHAIN_TRANSFER_LIFECYCLE_V2.CANCELLED); const now = Date.now(); t.status = XCHAIN_TRANSFER_LIFECYCLE_V2.CANCELLED; t.updatedAt = now; if (!t.settledAt) t.settledAt = now; if (reason) t.metadata.cancelReason = String(reason); return { ...t, metadata: { ...t.metadata } }; }
+export function getXchainTransferV2(id) { const t = _xcTxs.get(id); if (!t) return null; return { ...t, metadata: { ...t.metadata } }; }
+export function listXchainTransfersV2() { return [..._xcTxs.values()].map((t) => ({ ...t, metadata: { ...t.metadata } })); }
+
+export function autoPauseIdleXchainChannelsV2({ now } = {}) { const t = now ?? Date.now(); const flipped = []; for (const c of _xcChans.values()) if (c.status === XCHAIN_CHANNEL_MATURITY_V2.ACTIVE && (t - c.lastTouchedAt) >= _xcChanIdleMs) { c.status = XCHAIN_CHANNEL_MATURITY_V2.PAUSED; c.updatedAt = t; flipped.push(c.id); } return { flipped, count: flipped.length }; }
+export function autoFailStuckXchainTransfersV2({ now } = {}) { const t = now ?? Date.now(); const flipped = []; for (const tx of _xcTxs.values()) if (tx.status === XCHAIN_TRANSFER_LIFECYCLE_V2.RELAYING && tx.startedAt != null && (t - tx.startedAt) >= _xcTxStuckMs) { tx.status = XCHAIN_TRANSFER_LIFECYCLE_V2.FAILED; tx.updatedAt = t; if (!tx.settledAt) tx.settledAt = t; tx.metadata.failReason = "auto-fail-stuck"; flipped.push(tx.id); } return { flipped, count: flipped.length }; }
+
+export function getCrossChainGovStatsV2() {
+  const channelsByStatus = {}; for (const s of Object.values(XCHAIN_CHANNEL_MATURITY_V2)) channelsByStatus[s] = 0; for (const c of _xcChans.values()) channelsByStatus[c.status]++;
+  const transfersByStatus = {}; for (const s of Object.values(XCHAIN_TRANSFER_LIFECYCLE_V2)) transfersByStatus[s] = 0; for (const t of _xcTxs.values()) transfersByStatus[t.status]++;
+  return { totalChannelsV2: _xcChans.size, totalTransfersV2: _xcTxs.size, maxActiveXchainChannelsPerOwner: _xcMaxActivePerOwner, maxPendingXchainTransfersPerChannel: _xcMaxPendingPerChan, xchainChannelIdleMs: _xcChanIdleMs, xchainTransferStuckMs: _xcTxStuckMs, channelsByStatus, transfersByStatus };
+}

package/src/lib/crypto-manager.js

@@ -244,3 +244,353 @@ export function getEncryptedFileInfo(filePath) {
     modified: stats.mtime.toISOString(),
   };
 }
+
+/* ─────────────────────────────────────────────────────────────────────────
+ * V2 in-memory governance layer (independent of file/buffer crypto helpers)
+ * ───────────────────────────────────────────────────────────────────────── */
+
+export const KEY_MATURITY_V2 = Object.freeze({
+  PENDING: "pending",
+  ACTIVE: "active",
+  ROTATED: "rotated",
+  RETIRED: "retired",
+});
+
+export const CRYPTO_JOB_LIFECYCLE_V2 = Object.freeze({
+  QUEUED: "queued",
+  RUNNING: "running",
+  COMPLETED: "completed",
+  FAILED: "failed",
+  CANCELLED: "cancelled",
+});
+
+const KEY_TERMINAL_V2 = new Set([KEY_MATURITY_V2.RETIRED]);
+const JOB_TERMINAL_V2 = new Set([
+  CRYPTO_JOB_LIFECYCLE_V2.COMPLETED,
+  CRYPTO_JOB_LIFECYCLE_V2.FAILED,
+  CRYPTO_JOB_LIFECYCLE_V2.CANCELLED,
+]);
+
+const KEY_TRANSITIONS_V2 = new Map([
+  [
+    KEY_MATURITY_V2.PENDING,
+    new Set([KEY_MATURITY_V2.ACTIVE, KEY_MATURITY_V2.RETIRED]),
+  ],
+  [
+    KEY_MATURITY_V2.ACTIVE,
+    new Set([KEY_MATURITY_V2.ROTATED, KEY_MATURITY_V2.RETIRED]),
+  ],
+  [
+    KEY_MATURITY_V2.ROTATED,
+    new Set([KEY_MATURITY_V2.ACTIVE, KEY_MATURITY_V2.RETIRED]),
+  ],
+]);
+
+const JOB_TRANSITIONS_V2 = new Map([
+  [
+    CRYPTO_JOB_LIFECYCLE_V2.QUEUED,
+    new Set([
+      CRYPTO_JOB_LIFECYCLE_V2.RUNNING,
+      CRYPTO_JOB_LIFECYCLE_V2.CANCELLED,
+    ]),
+  ],
+  [
+    CRYPTO_JOB_LIFECYCLE_V2.RUNNING,
+    new Set([
+      CRYPTO_JOB_LIFECYCLE_V2.COMPLETED,
+      CRYPTO_JOB_LIFECYCLE_V2.FAILED,
+      CRYPTO_JOB_LIFECYCLE_V2.CANCELLED,
+    ]),
+  ],
+]);
+
+export const CRYPTO_DEFAULT_MAX_ACTIVE_KEYS_PER_OWNER = 12;
+export const CRYPTO_DEFAULT_MAX_PENDING_JOBS_PER_KEY = 16;
+export const CRYPTO_DEFAULT_KEY_IDLE_MS = 14 * 24 * 60 * 60 * 1000;
+export const CRYPTO_DEFAULT_JOB_STUCK_MS = 5 * 60 * 1000;
+
+let _maxActiveKeysPerOwnerV2 = CRYPTO_DEFAULT_MAX_ACTIVE_KEYS_PER_OWNER;
+let _maxPendingJobsPerKeyV2 = CRYPTO_DEFAULT_MAX_PENDING_JOBS_PER_KEY;
+let _keyIdleMsV2 = CRYPTO_DEFAULT_KEY_IDLE_MS;
+let _jobStuckMsV2 = CRYPTO_DEFAULT_JOB_STUCK_MS;
+
+const _keysV2 = new Map();
+const _jobsV2 = new Map();
+
+function _posIntCryptoV2(n, label) {
+  if (typeof n !== "number" || !Number.isFinite(n) || n <= 0) {
+    throw new Error(`${label} must be a positive number`);
+  }
+  return Math.floor(n);
+}
+
+export function getMaxActiveKeysPerOwnerV2() {
+  return _maxActiveKeysPerOwnerV2;
+}
+export function setMaxActiveKeysPerOwnerV2(n) {
+  _maxActiveKeysPerOwnerV2 = _posIntCryptoV2(n, "maxActiveKeysPerOwner");
+  return _maxActiveKeysPerOwnerV2;
+}
+export function getMaxPendingJobsPerKeyV2() {
+  return _maxPendingJobsPerKeyV2;
+}
+export function setMaxPendingJobsPerKeyV2(n) {
+  _maxPendingJobsPerKeyV2 = _posIntCryptoV2(n, "maxPendingJobsPerKey");
+  return _maxPendingJobsPerKeyV2;
+}
+export function getKeyIdleMsV2() {
+  return _keyIdleMsV2;
+}
+export function setKeyIdleMsV2(ms) {
+  _keyIdleMsV2 = _posIntCryptoV2(ms, "keyIdleMs");
+  return _keyIdleMsV2;
+}
+export function getJobStuckMsV2() {
+  return _jobStuckMsV2;
+}
+export function setJobStuckMsV2(ms) {
+  _jobStuckMsV2 = _posIntCryptoV2(ms, "jobStuckMs");
+  return _jobStuckMsV2;
+}
+
+export function getActiveKeyCountV2(ownerId) {
+  let n = 0;
+  for (const k of _keysV2.values()) {
+    if (k.status !== KEY_MATURITY_V2.ACTIVE) continue;
+    if (ownerId && k.ownerId !== ownerId) continue;
+    n++;
+  }
+  return n;
+}
+
+export function getPendingJobCountV2(keyId) {
+  let n = 0;
+  for (const j of _jobsV2.values()) {
+    if (
+      j.status !== CRYPTO_JOB_LIFECYCLE_V2.QUEUED &&
+      j.status !== CRYPTO_JOB_LIFECYCLE_V2.RUNNING
+    )
+      continue;
+    if (keyId && j.keyId !== keyId) continue;
+    n++;
+  }
+  return n;
+}
+
+function _cloneKeyCryptoV2(k) {
+  return { ...k, metadata: { ...k.metadata } };
+}
+function _cloneJobCryptoV2(j) {
+  return { ...j, metadata: { ...j.metadata } };
+}
+
+export function registerKeyV2(
+  id,
+  { ownerId, algorithm, purpose, metadata } = {},
+) {
+  if (!id || typeof id !== "string") throw new Error("key id required");
+  if (!ownerId || typeof ownerId !== "string")
+    throw new Error("ownerId required");
+  if (!algorithm || typeof algorithm !== "string")
+    throw new Error("algorithm required");
+  if (_keysV2.has(id)) throw new Error(`key ${id} already exists`);
+  const now = Date.now();
+  const key = {
+    id,
+    ownerId,
+    algorithm,
+    purpose: purpose || "encryption",
+    status: KEY_MATURITY_V2.PENDING,
+    createdAt: now,
+    activatedAt: null,
+    retiredAt: null,
+    lastSeenAt: now,
+    metadata: metadata ? { ...metadata } : {},
+  };
+  _keysV2.set(id, key);
+  return _cloneKeyCryptoV2(key);
+}
+
+export function getKeyV2(id) {
+  const k = _keysV2.get(id);
+  return k ? _cloneKeyCryptoV2(k) : null;
+}
+
+export function listKeysV2({ ownerId, status, algorithm } = {}) {
+  const out = [];
+  for (const k of _keysV2.values()) {
+    if (ownerId && k.ownerId !== ownerId) continue;
+    if (status && k.status !== status) continue;
+    if (algorithm && k.algorithm !== algorithm) continue;
+    out.push(_cloneKeyCryptoV2(k));
+  }
+  return out;
+}
+
+export function setKeyStatusV2(id, next) {
+  const k = _keysV2.get(id);
+  if (!k) throw new Error(`unknown key ${id}`);
+  if (KEY_TERMINAL_V2.has(k.status)) {
+    throw new Error(`key ${id} is terminal (${k.status})`);
+  }
+  const allowed = KEY_TRANSITIONS_V2.get(k.status);
+  if (!allowed || !allowed.has(next)) {
+    throw new Error(`invalid key transition ${k.status} -> ${next}`);
+  }
+  if (next === KEY_MATURITY_V2.ACTIVE && k.status === KEY_MATURITY_V2.PENDING) {
+    const owned = getActiveKeyCountV2(k.ownerId);
+    if (owned >= _maxActiveKeysPerOwnerV2) {
+      throw new Error(
+        `owner ${k.ownerId} active key cap reached (${_maxActiveKeysPerOwnerV2})`,
+      );
+    }
+  }
+  const now = Date.now();
+  k.status = next;
+  if (next === KEY_MATURITY_V2.ACTIVE && !k.activatedAt) k.activatedAt = now;
+  if (next === KEY_MATURITY_V2.RETIRED && !k.retiredAt) k.retiredAt = now;
+  k.lastSeenAt = now;
+  return _cloneKeyCryptoV2(k);
+}
+
+export function activateKeyV2(id) {
+  return setKeyStatusV2(id, KEY_MATURITY_V2.ACTIVE);
+}
+export function rotateKeyV2(id) {
+  return setKeyStatusV2(id, KEY_MATURITY_V2.ROTATED);
+}
+export function retireKeyV2(id) {
+  return setKeyStatusV2(id, KEY_MATURITY_V2.RETIRED);
+}
+
+export function touchKeyV2(id) {
+  const k = _keysV2.get(id);
+  if (!k) throw new Error(`unknown key ${id}`);
+  k.lastSeenAt = Date.now();
+  return _cloneKeyCryptoV2(k);
+}
+
+export function createJobV2(id, { keyId, kind, metadata } = {}) {
+  if (!id || typeof id !== "string") throw new Error("job id required");
+  if (!keyId || typeof keyId !== "string") throw new Error("keyId required");
+  if (_jobsV2.has(id)) throw new Error(`job ${id} already exists`);
+  if (!_keysV2.has(keyId)) throw new Error(`unknown key ${keyId}`);
+  const pending = getPendingJobCountV2(keyId);
+  if (pending >= _maxPendingJobsPerKeyV2) {
+    throw new Error(
+      `key ${keyId} pending job cap reached (${_maxPendingJobsPerKeyV2})`,
+    );
+  }
+  const now = Date.now();
+  const job = {
+    id,
+    keyId,
+    kind: kind || "encrypt",
+    status: CRYPTO_JOB_LIFECYCLE_V2.QUEUED,
+    createdAt: now,
+    startedAt: null,
+    settledAt: null,
+    metadata: metadata ? { ...metadata } : {},
+  };
+  _jobsV2.set(id, job);
+  return _cloneJobCryptoV2(job);
+}
+
+export function getJobV2(id) {
+  const j = _jobsV2.get(id);
+  return j ? _cloneJobCryptoV2(j) : null;
+}
+
+export function listJobsV2({ keyId, status, kind } = {}) {
+  const out = [];
+  for (const j of _jobsV2.values()) {
+    if (keyId && j.keyId !== keyId) continue;
+    if (status && j.status !== status) continue;
+    if (kind && j.kind !== kind) continue;
+    out.push(_cloneJobCryptoV2(j));
+  }
+  return out;
+}
+
+export function setJobStatusV2(id, next) {
+  const j = _jobsV2.get(id);
+  if (!j) throw new Error(`unknown job ${id}`);
+  if (JOB_TERMINAL_V2.has(j.status)) {
+    throw new Error(`job ${id} is terminal (${j.status})`);
+  }
+  const allowed = JOB_TRANSITIONS_V2.get(j.status);
+  if (!allowed || !allowed.has(next)) {
+    throw new Error(`invalid job transition ${j.status} -> ${next}`);
+  }
+  const now = Date.now();
+  j.status = next;
+  if (next === CRYPTO_JOB_LIFECYCLE_V2.RUNNING && !j.startedAt)
+    j.startedAt = now;
+  if (JOB_TERMINAL_V2.has(next) && !j.settledAt) j.settledAt = now;
+  return _cloneJobCryptoV2(j);
+}
+
+export function startJobV2(id) {
+  return setJobStatusV2(id, CRYPTO_JOB_LIFECYCLE_V2.RUNNING);
+}
+export function completeJobV2(id) {
+  return setJobStatusV2(id, CRYPTO_JOB_LIFECYCLE_V2.COMPLETED);
+}
+export function failJobV2(id) {
+  return setJobStatusV2(id, CRYPTO_JOB_LIFECYCLE_V2.FAILED);
+}
+export function cancelJobV2(id) {
+  return setJobStatusV2(id, CRYPTO_JOB_LIFECYCLE_V2.CANCELLED);
+}
+
+export function autoRotateIdleKeysV2({ now = Date.now() } = {}) {
+  const out = [];
+  for (const k of _keysV2.values()) {
+    if (k.status !== KEY_MATURITY_V2.ACTIVE) continue;
+    if (now - k.lastSeenAt < _keyIdleMsV2) continue;
+    k.status = KEY_MATURITY_V2.ROTATED;
+    k.lastSeenAt = now;
+    out.push(_cloneKeyCryptoV2(k));
+  }
+  return out;
+}
+
+export function autoFailStuckJobsV2({ now = Date.now() } = {}) {
+  const out = [];
+  for (const j of _jobsV2.values()) {
+    if (j.status !== CRYPTO_JOB_LIFECYCLE_V2.RUNNING) continue;
+    if (!j.startedAt || now - j.startedAt < _jobStuckMsV2) continue;
+    j.status = CRYPTO_JOB_LIFECYCLE_V2.FAILED;
+    j.settledAt = now;
+    out.push(_cloneJobCryptoV2(j));
+  }
+  return out;
+}
+
+export function getCryptoManagerStatsV2() {
+  const keysByStatus = {};
+  for (const s of Object.values(KEY_MATURITY_V2)) keysByStatus[s] = 0;
+  for (const k of _keysV2.values()) keysByStatus[k.status]++;
+  const jobsByStatus = {};
+  for (const s of Object.values(CRYPTO_JOB_LIFECYCLE_V2)) jobsByStatus[s] = 0;
+  for (const j of _jobsV2.values()) jobsByStatus[j.status]++;
+  return {
+    totalKeysV2: _keysV2.size,
+    totalJobsV2: _jobsV2.size,
+    maxActiveKeysPerOwner: _maxActiveKeysPerOwnerV2,
+    maxPendingJobsPerKey: _maxPendingJobsPerKeyV2,
+    keyIdleMs: _keyIdleMsV2,
+    jobStuckMs: _jobStuckMsV2,
+    keysByStatus,
+    jobsByStatus,
+  };
+}
+
+export function _resetStateCryptoManagerV2() {
+  _keysV2.clear();
+  _jobsV2.clear();
+  _maxActiveKeysPerOwnerV2 = CRYPTO_DEFAULT_MAX_ACTIVE_KEYS_PER_OWNER;
+  _maxPendingJobsPerKeyV2 = CRYPTO_DEFAULT_MAX_PENDING_JOBS_PER_KEY;
+  _keyIdleMsV2 = CRYPTO_DEFAULT_KEY_IDLE_MS;
+  _jobStuckMsV2 = CRYPTO_DEFAULT_JOB_STUCK_MS;
+}