clawsec 0.0.1

package/dist/src/config/defaults.js

@@ -0,0 +1,123 @@
+/**
+ * Clawsec Default Configuration
+ * Sensible default values for the security plugin
+ */
+/**
+ * Default configuration for Clawsec
+ *
+ * All features enabled by default with conservative settings:
+ * - Purchases are blocked by default
+ * - Destructive commands require confirmation
+ * - Secrets and exfiltration are blocked
+ */
+export const defaultConfig = {
+    version: '1.0',
+    global: {
+        enabled: true,
+        logLevel: 'info',
+    },
+    llm: {
+        enabled: true,
+        model: null, // Use OpenClaw's configured model
+    },
+    rules: {
+        purchase: {
+            enabled: true,
+            severity: 'critical',
+            action: 'block',
+            spendLimits: {
+                perTransaction: 100,
+                daily: 500,
+            },
+            domains: {
+                mode: 'blocklist',
+                blocklist: [
+                    'amazon.com',
+                    'stripe.com',
+                    'paypal.com',
+                    'checkout.stripe.com',
+                    'buy.stripe.com',
+                    'billing.stripe.com',
+                ],
+            },
+        },
+        website: {
+            enabled: true,
+            mode: 'blocklist',
+            severity: 'high',
+            action: 'block',
+            blocklist: [
+                '*.malware.com',
+                'phishing-*.com',
+                '*.darkweb.*',
+            ],
+            allowlist: [
+                'docs.openclaw.ai',
+                'github.com',
+                'stackoverflow.com',
+                'developer.mozilla.org',
+            ],
+        },
+        destructive: {
+            enabled: true,
+            severity: 'critical',
+            action: 'confirm',
+            shell: {
+                enabled: true,
+            },
+            cloud: {
+                enabled: true,
+            },
+            code: {
+                enabled: true,
+            },
+        },
+        secrets: {
+            enabled: true,
+            severity: 'critical',
+            action: 'block',
+        },
+        exfiltration: {
+            enabled: true,
+            severity: 'high',
+            action: 'block',
+        },
+        sanitization: {
+            enabled: true,
+            severity: 'high',
+            action: 'block',
+            minConfidence: 0.5,
+            redactMatches: false,
+            categories: {
+                instructionOverride: true,
+                systemLeak: true,
+                jailbreak: true,
+                encodedPayload: true,
+            },
+        },
+    },
+    approval: {
+        native: {
+            enabled: true,
+            timeout: 300, // 5 minutes
+        },
+        agentConfirm: {
+            enabled: true,
+            parameterName: '_clawsec_confirm',
+        },
+        webhook: {
+            enabled: false,
+            url: undefined,
+            timeout: 30,
+            headers: {},
+        },
+    },
+};
+/**
+ * Returns a deep clone of the default configuration
+ * to prevent accidental mutations
+ */
+export function getDefaultConfig() {
+    return structuredClone(defaultConfig);
+}
+//# sourceMappingURL=defaults.js.map

package/dist/src/config/defaults.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"defaults.js","sourceRoot":"","sources":["../../../src/config/defaults.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH;;;;;;;GAOG;AACH,MAAM,CAAC,MAAM,aAAa,GAAkB;IAC1C,OAAO,EAAE,KAAK;IAEd,MAAM,EAAE;QACN,OAAO,EAAE,IAAI;QACb,QAAQ,EAAE,MAAM;KACjB;IAED,GAAG,EAAE;QACH,OAAO,EAAE,IAAI;QACb,KAAK,EAAE,IAAI,EAAE,kCAAkC;KAChD;IAED,KAAK,EAAE;QACL,QAAQ,EAAE;YACR,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE,UAAU;YACpB,MAAM,EAAE,OAAO;YACf,WAAW,EAAE;gBACX,cAAc,EAAE,GAAG;gBACnB,KAAK,EAAE,GAAG;aACX;YACD,OAAO,EAAE;gBACP,IAAI,EAAE,WAAW;gBACjB,SAAS,EAAE;oBACT,YAAY;oBACZ,YAAY;oBACZ,YAAY;oBACZ,qBAAqB;oBACrB,gBAAgB;oBAChB,oBAAoB;iBACrB;aACF;SACF;QAED,OAAO,EAAE;YACP,OAAO,EAAE,IAAI;YACb,IAAI,EAAE,WAAW;YACjB,QAAQ,EAAE,MAAM;YAChB,MAAM,EAAE,OAAO;YACf,SAAS,EAAE;gBACT,eAAe;gBACf,gBAAgB;gBAChB,aAAa;aACd;YACD,SAAS,EAAE;gBACT,kBAAkB;gBAClB,YAAY;gBACZ,mBAAmB;gBACnB,uBAAuB;aACxB;SACF;QAED,WAAW,EAAE;YACX,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE,UAAU;YACpB,MAAM,EAAE,SAAS;YACjB,KAAK,EAAE;gBACL,OAAO,EAAE,IAAI;aACd;YACD,KAAK,EAAE;gBACL,OAAO,EAAE,IAAI;aACd;YACD,IAAI,EAAE;gBACJ,OAAO,EAAE,IAAI;aACd;SACF;QAED,OAAO,EAAE;YACP,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE,UAAU;YACpB,MAAM,EAAE,OAAO;SAChB;QAED,YAAY,EAAE;YACZ,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE,MAAM;YAChB,MAAM,EAAE,OAAO;SAChB;QAED,YAAY,EAAE;YACZ,OAAO,EAAE,IAAI;YACb,QAAQ,EAAE,MAAM;YAChB,MAAM,EAAE,OAAO;YACf,aAAa,EAAE,GAAG;YAClB,aAAa,EAAE,KAAK;YACpB,UAAU,EAAE;gBACV,mBAAmB,EAAE,IAAI;gBACzB,UAAU,EAAE,IAAI;gBAChB,SAAS,EAAE,IAAI;gBACf,cAAc,EAAE,IAAI;aACrB;SACF;KACF;IAED,QAAQ,EAAE;QACR,MAAM,EAAE;YACN,OAAO,EAAE,IAAI;YACb,OAAO,EAAE,GAAG,EAAE,YAAY;SAC3B;QACD,YAAY,EAAE;YACZ,OAAO,EAAE,IAAI;YACb,aAAa,EAAE,kBAAkB;SAClC;QACD,OAAO,EAAE;YACP,OAAO,EAAE,KAAK;YACd,GAAG,EAAE,SAAS;YACd,OAAO,EAAE,EAAE;YACX,OAAO,EAAE,EAAE;SACZ;KACF;CACF,CAAC;AAEF;;;GAGG;AACH,MAAM,UAAU,gBAAgB;IAC9B,OAAO,eAAe,CAAC,aAAa,CAAC,CAAC;AACxC,CAAC"}

package/dist/src/config/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Clawsec Configuration Module
+ * Re-exports for clean imports
+ */
+export { SeveritySchema, ActionSchema, LogLevelSchema, FilterModeSchema, type Severity, type Action, type LogLevel, type FilterMode, GlobalConfigSchema, type GlobalConfig, LLMConfigSchema, type LLMConfig, SpendLimitsSchema, PurchaseDomainsSchema, PurchaseRuleSchema, type SpendLimits, type PurchaseDomains, type PurchaseRule, WebsiteRuleSchema, type WebsiteRule, ShellProtectionSchema, CloudProtectionSchema, CodeProtectionSchema, DestructiveRuleSchema, type ShellProtection, type CloudProtection, type CodeProtection, type DestructiveRule, SecretsRuleSchema, type SecretsRule, ExfiltrationRuleSchema, type ExfiltrationRule, RulesConfigSchema, type RulesConfig, NativeApprovalSchema, AgentConfirmSchema, WebhookApprovalSchema, ApprovalConfigSchema, type NativeApproval, type AgentConfirm, type WebhookApproval, type ApprovalConfig, ClawsecConfigSchema, type ClawsecConfig, type PartialClawsecConfig, } from './schema.js';
+export { defaultConfig, getDefaultConfig } from './defaults.js';
+export { ConfigValidationError, ConfigLoadError, validateConfig, isValidConfig, mergeWithDefaults, mergeConfigs, findConfigFile, loadConfig, loadConfigFromString, } from './loader.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/src/config/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/config/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EAEL,cAAc,EACd,YAAY,EACZ,cAAc,EACd,gBAAgB,EAEhB,KAAK,QAAQ,EACb,KAAK,MAAM,EACX,KAAK,QAAQ,EACb,KAAK,UAAU,EAEf,kBAAkB,EAClB,KAAK,YAAY,EAEjB,eAAe,EACf,KAAK,SAAS,EAEd,iBAAiB,EACjB,qBAAqB,EACrB,kBAAkB,EAClB,KAAK,WAAW,EAChB,KAAK,eAAe,EACpB,KAAK,YAAY,EAEjB,iBAAiB,EACjB,KAAK,WAAW,EAEhB,qBAAqB,EACrB,qBAAqB,EACrB,oBAAoB,EACpB,qBAAqB,EACrB,KAAK,eAAe,EACpB,KAAK,eAAe,EACpB,KAAK,cAAc,EACnB,KAAK,eAAe,EAEpB,iBAAiB,EACjB,KAAK,WAAW,EAEhB,sBAAsB,EACtB,KAAK,gBAAgB,EAErB,iBAAiB,EACjB,KAAK,WAAW,EAEhB,oBAAoB,EACpB,kBAAkB,EAClB,qBAAqB,EACrB,oBAAoB,EACpB,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,eAAe,EACpB,KAAK,cAAc,EAEnB,mBAAmB,EACnB,KAAK,aAAa,EAClB,KAAK,oBAAoB,GAC1B,MAAM,aAAa,CAAC;AAGrB,OAAO,EAAE,aAAa,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAGhE,OAAO,EAEL,qBAAqB,EACrB,eAAe,EAEf,cAAc,EACd,aAAa,EAEb,iBAAiB,EACjB,YAAY,EAEZ,cAAc,EACd,UAAU,EACV,oBAAoB,GACrB,MAAM,aAAa,CAAC"}

package/dist/src/config/index.js

@@ -0,0 +1,41 @@
+/**
+ * Clawsec Configuration Module
+ * Re-exports for clean imports
+ */
+// Schema and types
+export { 
+// Enums
+SeveritySchema, ActionSchema, LogLevelSchema, FilterModeSchema, 
+// Global config
+GlobalConfigSchema, 
+// LLM config
+LLMConfigSchema, 
+// Purchase rule
+SpendLimitsSchema, PurchaseDomainsSchema, PurchaseRuleSchema, 
+// Website rule
+WebsiteRuleSchema, 
+// Destructive rule
+ShellProtectionSchema, CloudProtectionSchema, CodeProtectionSchema, DestructiveRuleSchema, 
+// Secrets rule
+SecretsRuleSchema, 
+// Exfiltration rule
+ExfiltrationRuleSchema, 
+// Rules config
+RulesConfigSchema, 
+// Approval config
+NativeApprovalSchema, AgentConfirmSchema, WebhookApprovalSchema, ApprovalConfigSchema, 
+// Root config
+ClawsecConfigSchema, } from './schema.js';
+// Defaults
+export { defaultConfig, getDefaultConfig } from './defaults.js';
+// Loader
+export { 
+// Error types
+ConfigValidationError, ConfigLoadError, 
+// Validation functions
+validateConfig, isValidConfig, 
+// Merging functions
+mergeWithDefaults, mergeConfigs, 
+// File loading functions
+findConfigFile, loadConfig, loadConfigFromString, } from './loader.js';
+//# sourceMappingURL=index.js.map

package/dist/src/config/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/config/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,mBAAmB;AACnB,OAAO;AACL,QAAQ;AACR,cAAc,EACd,YAAY,EACZ,cAAc,EACd,gBAAgB;AAMhB,gBAAgB;AAChB,kBAAkB;AAElB,aAAa;AACb,eAAe;AAEf,gBAAgB;AAChB,iBAAiB,EACjB,qBAAqB,EACrB,kBAAkB;AAIlB,eAAe;AACf,iBAAiB;AAEjB,mBAAmB;AACnB,qBAAqB,EACrB,qBAAqB,EACrB,oBAAoB,EACpB,qBAAqB;AAKrB,eAAe;AACf,iBAAiB;AAEjB,oBAAoB;AACpB,sBAAsB;AAEtB,eAAe;AACf,iBAAiB;AAEjB,kBAAkB;AAClB,oBAAoB,EACpB,kBAAkB,EAClB,qBAAqB,EACrB,oBAAoB;AAKpB,cAAc;AACd,mBAAmB,GAGpB,MAAM,aAAa,CAAC;AAErB,WAAW;AACX,OAAO,EAAE,aAAa,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAEhE,SAAS;AACT,OAAO;AACL,cAAc;AACd,qBAAqB,EACrB,eAAe;AACf,uBAAuB;AACvB,cAAc,EACd,aAAa;AACb,oBAAoB;AACpB,iBAAiB,EACjB,YAAY;AACZ,yBAAyB;AACzB,cAAc,EACd,UAAU,EACV,oBAAoB,GACrB,MAAM,aAAa,CAAC"}

package/dist/src/config/loader.d.ts

@@ -0,0 +1,99 @@
+/**
+ * Clawsec Configuration Loader
+ * YAML file loading and validation utilities
+ */
+import { z } from 'zod';
+import { type ClawsecConfig, type PartialClawsecConfig } from './schema.js';
+/**
+ * Error thrown when configuration validation fails
+ */
+export declare class ConfigValidationError extends Error {
+    readonly errors: Array<{
+        path: string;
+        message: string;
+    }>;
+    constructor(message: string, errors: Array<{
+        path: string;
+        message: string;
+    }>);
+    /**
+     * Create a ConfigValidationError from a ZodError
+     */
+    static fromZodError(zodError: z.ZodError): ConfigValidationError;
+}
+/**
+ * Error thrown when configuration file cannot be loaded
+ */
+export declare class ConfigLoadError extends Error {
+    readonly filePath: string;
+    readonly cause?: Error | undefined;
+    constructor(message: string, filePath: string, cause?: Error | undefined);
+}
+/**
+ * Validates a configuration object using the Zod schema.
+ *
+ * @param config - Unknown configuration object to validate
+ * @returns Validated and typed configuration
+ * @throws ConfigValidationError if validation fails
+ */
+export declare function validateConfig(config: unknown): ClawsecConfig;
+/**
+ * Checks if a configuration object is valid without throwing.
+ *
+ * @param config - Unknown configuration object to validate
+ * @returns Object with success status and either data or errors
+ */
+export declare function isValidConfig(config: unknown): {
+    valid: true;
+    config: ClawsecConfig;
+} | {
+    valid: false;
+    errors: Array<{
+        path: string;
+        message: string;
+    }>;
+};
+/**
+ * Deep merges a partial configuration with the default configuration.
+ * Partial config values take precedence over defaults.
+ *
+ * @param partial - Partial configuration object
+ * @returns Complete configuration merged with defaults
+ */
+export declare function mergeWithDefaults(partial: PartialClawsecConfig): ClawsecConfig;
+/**
+ * Finds a configuration file in the specified directory or its parents.
+ *
+ * @param startDir - Directory to start searching from
+ * @returns Path to found config file, or null if not found
+ */
+export declare function findConfigFile(startDir?: string): string | null;
+/**
+ * Loads configuration from a YAML file.
+ *
+ * If no path is provided, searches for config file in standard locations.
+ * If no config file is found, returns default configuration.
+ *
+ * @param configPath - Optional path to configuration file
+ * @returns Validated configuration
+ * @throws ConfigLoadError if specified file doesn't exist or can't be parsed
+ * @throws ConfigValidationError if configuration is invalid
+ */
+export declare function loadConfig(configPath?: string): ClawsecConfig;
+/**
+ * Loads configuration from a YAML string.
+ *
+ * @param yamlContent - YAML string to parse
+ * @returns Validated configuration
+ * @throws ConfigValidationError if configuration is invalid
+ */
+export declare function loadConfigFromString(yamlContent: string): ClawsecConfig;
+/**
+ * Loads and merges configuration from multiple sources.
+ * Later sources override earlier ones.
+ *
+ * @param sources - Array of config objects to merge
+ * @returns Merged and validated configuration
+ */
+export declare function mergeConfigs(...sources: PartialClawsecConfig[]): ClawsecConfig;
+//# sourceMappingURL=loader.d.ts.map

package/dist/src/config/loader.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"loader.d.ts","sourceRoot":"","sources":["../../../src/config/loader.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAuB,KAAK,aAAa,EAAE,KAAK,oBAAoB,EAAE,MAAM,aAAa,CAAC;AAOjG;;GAEG;AACH,qBAAa,qBAAsB,SAAQ,KAAK;aAG5B,MAAM,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;gBADhE,OAAO,EAAE,MAAM,EACC,MAAM,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAMlE;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,QAAQ,EAAE,CAAC,CAAC,QAAQ,GAAG,qBAAqB;CAUjE;AAED;;GAEG;AACH,qBAAa,eAAgB,SAAQ,KAAK;aAGtB,QAAQ,EAAE,MAAM;aAChB,KAAK,CAAC,EAAE,KAAK;gBAF7B,OAAO,EAAE,MAAM,EACC,QAAQ,EAAE,MAAM,EAChB,KAAK,CAAC,EAAE,KAAK,YAAA;CAKhC;AAMD;;;;;;GAMG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,OAAO,GAAG,aAAa,CAQ7D;AAED;;;;;GAKG;AACH,wBAAgB,aAAa,CAC3B,MAAM,EAAE,OAAO,GACd;IAAE,KAAK,EAAE,IAAI,CAAC;IAAC,MAAM,EAAE,aAAa,CAAA;CAAE,GAAG;IAAE,KAAK,EAAE,KAAK,CAAC;IAAC,MAAM,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,CAAA;CAAE,CAc7G;AAMD;;;;;;GAMG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,oBAAoB,GAAG,aAAa,CAI9E;AAiCD;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,QAAQ,GAAE,MAAsB,GAAG,MAAM,GAAG,IAAI,CAuB9E;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,UAAU,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,aAAa,CA8B7D;AAED;;;;;;GAMG;AACH,wBAAgB,oBAAoB,CAAC,WAAW,EAAE,MAAM,GAAG,aAAa,CASvE;AAED;;;;;;GAMG;AACH,wBAAgB,YAAY,CAAC,GAAG,OAAO,EAAE,oBAAoB,EAAE,GAAG,aAAa,CAQ9E"}

package/dist/src/config/loader.js

@@ -0,0 +1,242 @@
+/**
+ * Clawsec Configuration Loader
+ * YAML file loading and validation utilities
+ */
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { parse as parseYaml } from 'yaml';
+import { ClawsecConfigSchema } from './schema.js';
+import { getDefaultConfig } from './defaults.js';
+// =============================================================================
+// ERROR TYPES
+// =============================================================================
+/**
+ * Error thrown when configuration validation fails
+ */
+export class ConfigValidationError extends Error {
+    errors;
+    constructor(message, errors) {
+        super(message);
+        this.errors = errors;
+        this.name = 'ConfigValidationError';
+    }
+    /**
+     * Create a ConfigValidationError from a ZodError
+     */
+    static fromZodError(zodError) {
+        const errors = zodError.issues.map((issue) => ({
+            path: issue.path.map(String).join('.'),
+            message: issue.message,
+        }));
+        const message = `Configuration validation failed:\n${errors
+            .map((e) => `  - ${e.path || '(root)'}: ${e.message}`)
+            .join('\n')}`;
+        return new ConfigValidationError(message, errors);
+    }
+}
+/**
+ * Error thrown when configuration file cannot be loaded
+ */
+export class ConfigLoadError extends Error {
+    filePath;
+    cause;
+    constructor(message, filePath, cause) {
+        super(message);
+        this.filePath = filePath;
+        this.cause = cause;
+        this.name = 'ConfigLoadError';
+    }
+}
+// =============================================================================
+// VALIDATION
+// =============================================================================
+/**
+ * Validates a configuration object using the Zod schema.
+ *
+ * @param config - Unknown configuration object to validate
+ * @returns Validated and typed configuration
+ * @throws ConfigValidationError if validation fails
+ */
+export function validateConfig(config) {
+    const result = ClawsecConfigSchema.safeParse(config);
+    if (!result.success) {
+        throw ConfigValidationError.fromZodError(result.error);
+    }
+    return result.data;
+}
+/**
+ * Checks if a configuration object is valid without throwing.
+ *
+ * @param config - Unknown configuration object to validate
+ * @returns Object with success status and either data or errors
+ */
+export function isValidConfig(config) {
+    const result = ClawsecConfigSchema.safeParse(config);
+    if (result.success) {
+        return { valid: true, config: result.data };
+    }
+    return {
+        valid: false,
+        errors: result.error.issues.map((issue) => ({
+            path: issue.path.map(String).join('.'),
+            message: issue.message,
+        })),
+    };
+}
+// =============================================================================
+// MERGING
+// =============================================================================
+/**
+ * Deep merges a partial configuration with the default configuration.
+ * Partial config values take precedence over defaults.
+ *
+ * @param partial - Partial configuration object
+ * @returns Complete configuration merged with defaults
+ */
+export function mergeWithDefaults(partial) {
+    // Zod's parse with defaults handles the merging for us
+    // by applying defaults for any missing fields
+    return validateConfig(partial);
+}
+// =============================================================================
+// FILE LOADING
+// =============================================================================
+/**
+ * Standard config file names to look for
+ */
+const CONFIG_FILE_NAMES = ['clawsec.yaml', 'clawsec.yml', '.clawsec.yaml', '.clawsec.yml'];
+/**
+ * Reads and parses a YAML configuration file.
+ *
+ * @param filePath - Path to the YAML file
+ * @returns Parsed YAML content as unknown
+ * @throws ConfigLoadError if file cannot be read or parsed
+ */
+function readYamlFile(filePath) {
+    try {
+        const content = fs.readFileSync(filePath, 'utf-8');
+        return parseYaml(content);
+    }
+    catch (error) {
+        if (error instanceof Error && 'code' in error && error.code === 'ENOENT') {
+            throw new ConfigLoadError(`Configuration file not found: ${filePath}`, filePath, error);
+        }
+        if (error instanceof Error) {
+            throw new ConfigLoadError(`Failed to parse YAML file: ${error.message}`, filePath, error);
+        }
+        throw new ConfigLoadError(`Failed to read configuration file`, filePath);
+    }
+}
+/**
+ * Finds a configuration file in the specified directory or its parents.
+ *
+ * @param startDir - Directory to start searching from
+ * @returns Path to found config file, or null if not found
+ */
+export function findConfigFile(startDir = process.cwd()) {
+    let currentDir = path.resolve(startDir);
+    const root = path.parse(currentDir).root;
+    while (currentDir !== root) {
+        for (const fileName of CONFIG_FILE_NAMES) {
+            const filePath = path.join(currentDir, fileName);
+            if (fs.existsSync(filePath)) {
+                return filePath;
+            }
+        }
+        currentDir = path.dirname(currentDir);
+    }
+    // Check root directory as well
+    for (const fileName of CONFIG_FILE_NAMES) {
+        const filePath = path.join(root, fileName);
+        if (fs.existsSync(filePath)) {
+            return filePath;
+        }
+    }
+    return null;
+}
+/**
+ * Loads configuration from a YAML file.
+ *
+ * If no path is provided, searches for config file in standard locations.
+ * If no config file is found, returns default configuration.
+ *
+ * @param configPath - Optional path to configuration file
+ * @returns Validated configuration
+ * @throws ConfigLoadError if specified file doesn't exist or can't be parsed
+ * @throws ConfigValidationError if configuration is invalid
+ */
+export function loadConfig(configPath) {
+    // If explicit path provided, load from that path
+    if (configPath) {
+        const resolvedPath = path.resolve(configPath);
+        const content = readYamlFile(resolvedPath);
+        // Handle empty file case
+        if (content === null || content === undefined) {
+            return getDefaultConfig();
+        }
+        return validateConfig(content);
+    }
+    // Try to find config file
+    const foundPath = findConfigFile();
+    if (foundPath) {
+        const content = readYamlFile(foundPath);
+        // Handle empty file case
+        if (content === null || content === undefined) {
+            return getDefaultConfig();
+        }
+        return validateConfig(content);
+    }
+    // No config file found, return defaults
+    return getDefaultConfig();
+}
+/**
+ * Loads configuration from a YAML string.
+ *
+ * @param yamlContent - YAML string to parse
+ * @returns Validated configuration
+ * @throws ConfigValidationError if configuration is invalid
+ */
+export function loadConfigFromString(yamlContent) {
+    const content = parseYaml(yamlContent);
+    // Handle empty content
+    if (content === null || content === undefined) {
+        return getDefaultConfig();
+    }
+    return validateConfig(content);
+}
+/**
+ * Loads and merges configuration from multiple sources.
+ * Later sources override earlier ones.
+ *
+ * @param sources - Array of config objects to merge
+ * @returns Merged and validated configuration
+ */
+export function mergeConfigs(...sources) {
+    // Start with an empty object and deep merge all sources
+    const merged = sources.reduce((acc, source) => deepMerge(acc, source), {});
+    return validateConfig(merged);
+}
+/**
+ * Deep merges two objects. Source values override target values.
+ */
+function deepMerge(target, source) {
+    const result = { ...target };
+    for (const key of Object.keys(source)) {
+        const sourceValue = source[key];
+        const targetValue = result[key];
+        if (isPlainObject(sourceValue) && isPlainObject(targetValue)) {
+            result[key] = deepMerge(targetValue, sourceValue);
+        }
+        else if (sourceValue !== undefined) {
+            result[key] = sourceValue;
+        }
+    }
+    return result;
+}
+/**
+ * Checks if a value is a plain object (not an array, null, or other type)
+ */
+function isPlainObject(value) {
+    return typeof value === 'object' && value !== null && !Array.isArray(value);
+}
+//# sourceMappingURL=loader.js.map

package/dist/src/config/loader.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"loader.js","sourceRoot":"","sources":["../../../src/config/loader.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,KAAK,IAAI,SAAS,EAAE,MAAM,MAAM,CAAC;AAE1C,OAAO,EAAE,mBAAmB,EAAiD,MAAM,aAAa,CAAC;AACjG,OAAO,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAEjD,gFAAgF;AAChF,cAAc;AACd,gFAAgF;AAEhF;;GAEG;AACH,MAAM,OAAO,qBAAsB,SAAQ,KAAK;IAG5B;IAFlB,YACE,OAAe,EACC,MAAgD;QAEhE,KAAK,CAAC,OAAO,CAAC,CAAC;QAFC,WAAM,GAAN,MAAM,CAA0C;QAGhE,IAAI,CAAC,IAAI,GAAG,uBAAuB,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,YAAY,CAAC,QAAoB;QACtC,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAC7C,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC;YACtC,OAAO,EAAE,KAAK,CAAC,OAAO;SACvB,CAAC,CAAC,CAAC;QACJ,MAAM,OAAO,GAAG,qCAAqC,MAAM;aACxD,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,CAAC,IAAI,IAAI,QAAQ,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC;aACrD,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAChB,OAAO,IAAI,qBAAqB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IACpD,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,eAAgB,SAAQ,KAAK;IAGtB;IACA;IAHlB,YACE,OAAe,EACC,QAAgB,EAChB,KAAa;QAE7B,KAAK,CAAC,OAAO,CAAC,CAAC;QAHC,aAAQ,GAAR,QAAQ,CAAQ;QAChB,UAAK,GAAL,KAAK,CAAQ;QAG7B,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;IAChC,CAAC;CACF;AAED,gFAAgF;AAChF,aAAa;AACb,gFAAgF;AAEhF;;;;;;GAMG;AACH,MAAM,UAAU,cAAc,CAAC,MAAe;IAC5C,MAAM,MAAM,GAAG,mBAAmB,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAErD,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,qBAAqB,CAAC,YAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACzD,CAAC;IAED,OAAO,MAAM,CAAC,IAAI,CAAC;AACrB,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,aAAa,CAC3B,MAAe;IAEf,MAAM,MAAM,GAAG,mBAAmB,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAErD,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,IAAI,EAAE,CAAC;IAC9C,CAAC;IAED,OAAO;QACL,KAAK,EAAE,KAAK;QACZ,MAAM,EAAE,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAC1C,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC;YACtC,OAAO,EAAE,KAAK,CAAC,OAAO;SACvB,CAAC,CAAC;KACJ,CAAC;AACJ,CAAC;AAED,gFAAgF;AAChF,UAAU;AACV,gFAAgF;AAEhF;;;;;;GAMG;AACH,MAAM,UAAU,iBAAiB,CAAC,OAA6B;IAC7D,uDAAuD;IACvD,8CAA8C;IAC9C,OAAO,cAAc,CAAC,OAAO,CAAC,CAAC;AACjC,CAAC;AAED,gFAAgF;AAChF,eAAe;AACf,gFAAgF;AAEhF;;GAEG;AACH,MAAM,iBAAiB,GAAG,CAAC,cAAc,EAAE,aAAa,EAAE,eAAe,EAAE,cAAc,CAAC,CAAC;AAE3F;;;;;;GAMG;AACH,SAAS,YAAY,CAAC,QAAgB;IACpC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QACnD,OAAO,SAAS,CAAC,OAAO,CAAC,CAAC;IAC5B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,KAAK,IAAI,MAAM,IAAI,KAAK,IAAI,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YACzE,MAAM,IAAI,eAAe,CAAC,iCAAiC,QAAQ,EAAE,EAAE,QAAQ,EAAE,KAAc,CAAC,CAAC;QACnG,CAAC;QACD,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;YAC3B,MAAM,IAAI,eAAe,CAAC,8BAA8B,KAAK,CAAC,OAAO,EAAE,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;QAC5F,CAAC;QACD,MAAM,IAAI,eAAe,CAAC,mCAAmC,EAAE,QAAQ,CAAC,CAAC;IAC3E,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,cAAc,CAAC,WAAmB,OAAO,CAAC,GAAG,EAAE;IAC7D,IAAI,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACxC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC;IAEzC,OAAO,UAAU,KAAK,IAAI,EAAE,CAAC;QAC3B,KAAK,MAAM,QAAQ,IAAI,iBAAiB,EAAE,CAAC;YACzC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,QAAQ,CAAC,CAAC;YACjD,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,OAAO,QAAQ,CAAC;YAClB,CAAC;QACH,CAAC;QACD,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IACxC,CAAC;IAED,+BAA+B;IAC/B,KAAK,MAAM,QAAQ,IAAI,iBAAiB,EAAE,CAAC;QACzC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC3C,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC5B,OAAO,QAAQ,CAAC;QAClB,CAAC;IACH,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,UAAU,CAAC,UAAmB;IAC5C,iDAAiD;IACjD,IAAI,UAAU,EAAE,CAAC;QACf,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;QAC9C,MAAM,OAAO,GAAG,YAAY,CAAC,YAAY,CAAC,CAAC;QAE3C,yBAAyB;QACzB,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;YAC9C,OAAO,gBAAgB,EAAE,CAAC;QAC5B,CAAC;QAED,OAAO,cAAc,CAAC,OAAO,CAAC,CAAC;IACjC,CAAC;IAED,0BAA0B;IAC1B,MAAM,SAAS,GAAG,cAAc,EAAE,CAAC;IAEnC,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,OAAO,GAAG,YAAY,CAAC,SAAS,CAAC,CAAC;QAExC,yBAAyB;QACzB,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;YAC9C,OAAO,gBAAgB,EAAE,CAAC;QAC5B,CAAC;QAED,OAAO,cAAc,CAAC,OAAO,CAAC,CAAC;IACjC,CAAC;IAED,wCAAwC;IACxC,OAAO,gBAAgB,EAAE,CAAC;AAC5B,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,oBAAoB,CAAC,WAAmB;IACtD,MAAM,OAAO,GAAG,SAAS,CAAC,WAAW,CAAC,CAAC;IAEvC,uBAAuB;IACvB,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC9C,OAAO,gBAAgB,EAAE,CAAC;IAC5B,CAAC;IAED,OAAO,cAAc,CAAC,OAAO,CAAC,CAAC;AACjC,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,YAAY,CAAC,GAAG,OAA+B;IAC7D,wDAAwD;IACxD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAC3B,CAAC,GAAG,EAAE,MAAM,EAAE,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,MAAiC,CAAC,EAClE,EAAE,CACH,CAAC;IAEF,OAAO,cAAc,CAAC,MAAM,CAAC,CAAC;AAChC,CAAC;AAED;;GAEG;AACH,SAAS,SAAS,CAAC,MAA+B,EAAE,MAA+B;IACjF,MAAM,MAAM,GAAG,EAAE,GAAG,MAAM,EAAE,CAAC;IAE7B,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;QACtC,MAAM,WAAW,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;QAChC,MAAM,WAAW,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;QAEhC,IAAI,aAAa,CAAC,WAAW,CAAC,IAAI,aAAa,CAAC,WAAW,CAAC,EAAE,CAAC;YAC7D,MAAM,CAAC,GAAG,CAAC,GAAG,SAAS,CACrB,WAAsC,EACtC,WAAsC,CACvC,CAAC;QACJ,CAAC;aAAM,IAAI,WAAW,KAAK,SAAS,EAAE,CAAC;YACrC,MAAM,CAAC,GAAG,CAAC,GAAG,WAAW,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CAAC,KAAc;IACnC,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;AAC9E,CAAC"}