clawsec 0.0.1

package/dist/src/config/schema.d.ts

@@ -0,0 +1,627 @@
+/**
+ * Clawsec Configuration Schema
+ * Zod schemas and TypeScript types for the security plugin configuration
+ */
+import { z } from 'zod';
+/**
+ * Severity levels for security detections
+ */
+export declare const SeveritySchema: z.ZodEnum<{
+    critical: "critical";
+    high: "high";
+    medium: "medium";
+    low: "low";
+}>;
+export type Severity = z.infer<typeof SeveritySchema>;
+/**
+ * Actions that can be taken when a threat is detected
+ */
+export declare const ActionSchema: z.ZodEnum<{
+    block: "block";
+    confirm: "confirm";
+    "agent-confirm": "agent-confirm";
+    warn: "warn";
+    log: "log";
+}>;
+export type Action = z.infer<typeof ActionSchema>;
+/**
+ * Log levels for the plugin
+ */
+export declare const LogLevelSchema: z.ZodEnum<{
+    warn: "warn";
+    debug: "debug";
+    info: "info";
+    error: "error";
+}>;
+export type LogLevel = z.infer<typeof LogLevelSchema>;
+/**
+ * Mode for domain/website filtering
+ */
+export declare const FilterModeSchema: z.ZodEnum<{
+    blocklist: "blocklist";
+    allowlist: "allowlist";
+}>;
+export type FilterMode = z.infer<typeof FilterModeSchema>;
+/**
+ * Global plugin settings
+ */
+export declare const GlobalConfigSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    logLevel: z.ZodDefault<z.ZodEnum<{
+        warn: "warn";
+        debug: "debug";
+        info: "info";
+        error: "error";
+    }>>;
+}, z.core.$strip>>;
+export type GlobalConfig = z.infer<typeof GlobalConfigSchema>;
+/**
+ * LLM integration settings
+ */
+export declare const LLMConfigSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    model: z.ZodDefault<z.ZodNullable<z.ZodString>>;
+}, z.core.$strip>>;
+export type LLMConfig = z.infer<typeof LLMConfigSchema>;
+/**
+ * Spending limits for purchase protection
+ */
+export declare const SpendLimitsSchema: z.ZodDefault<z.ZodObject<{
+    perTransaction: z.ZodDefault<z.ZodNumber>;
+    daily: z.ZodDefault<z.ZodNumber>;
+}, z.core.$strip>>;
+export type SpendLimits = z.infer<typeof SpendLimitsSchema>;
+/**
+ * Domain filtering configuration for purchases
+ */
+export declare const PurchaseDomainsSchema: z.ZodDefault<z.ZodObject<{
+    mode: z.ZodDefault<z.ZodEnum<{
+        blocklist: "blocklist";
+        allowlist: "allowlist";
+    }>>;
+    blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+}, z.core.$strip>>;
+export type PurchaseDomains = z.infer<typeof PurchaseDomainsSchema>;
+/**
+ * Purchase protection rule configuration
+ */
+export declare const PurchaseRuleSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    severity: z.ZodDefault<z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>>;
+    action: z.ZodDefault<z.ZodEnum<{
+        block: "block";
+        confirm: "confirm";
+        "agent-confirm": "agent-confirm";
+        warn: "warn";
+        log: "log";
+    }>>;
+    spendLimits: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        perTransaction: z.ZodDefault<z.ZodNumber>;
+        daily: z.ZodDefault<z.ZodNumber>;
+    }, z.core.$strip>>>>;
+    domains: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        mode: z.ZodDefault<z.ZodEnum<{
+            blocklist: "blocklist";
+            allowlist: "allowlist";
+        }>>;
+        blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+    }, z.core.$strip>>>>;
+}, z.core.$strip>>;
+export type PurchaseRule = z.infer<typeof PurchaseRuleSchema>;
+/**
+ * Website control rule configuration
+ */
+export declare const WebsiteRuleSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    mode: z.ZodDefault<z.ZodEnum<{
+        blocklist: "blocklist";
+        allowlist: "allowlist";
+    }>>;
+    severity: z.ZodDefault<z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>>;
+    action: z.ZodDefault<z.ZodEnum<{
+        block: "block";
+        confirm: "confirm";
+        "agent-confirm": "agent-confirm";
+        warn: "warn";
+        log: "log";
+    }>>;
+    blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+    allowlist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+}, z.core.$strip>>;
+export type WebsiteRule = z.infer<typeof WebsiteRuleSchema>;
+/**
+ * Shell command protection configuration
+ */
+export declare const ShellProtectionSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+}, z.core.$strip>>;
+export type ShellProtection = z.infer<typeof ShellProtectionSchema>;
+/**
+ * Cloud operation protection configuration
+ */
+export declare const CloudProtectionSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+}, z.core.$strip>>;
+export type CloudProtection = z.infer<typeof CloudProtectionSchema>;
+/**
+ * Code pattern protection configuration
+ */
+export declare const CodeProtectionSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+}, z.core.$strip>>;
+export type CodeProtection = z.infer<typeof CodeProtectionSchema>;
+/**
+ * Destructive commands rule configuration
+ */
+export declare const DestructiveRuleSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    severity: z.ZodDefault<z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>>;
+    action: z.ZodDefault<z.ZodEnum<{
+        block: "block";
+        confirm: "confirm";
+        "agent-confirm": "agent-confirm";
+        warn: "warn";
+        log: "log";
+    }>>;
+    shell: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+    }, z.core.$strip>>>>;
+    cloud: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+    }, z.core.$strip>>>>;
+    code: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+    }, z.core.$strip>>>>;
+}, z.core.$strip>>;
+export type DestructiveRule = z.infer<typeof DestructiveRuleSchema>;
+/**
+ * Injection scanner category configuration
+ */
+export declare const InjectionCategoriesSchema: z.ZodDefault<z.ZodObject<{
+    instructionOverride: z.ZodDefault<z.ZodBoolean>;
+    systemLeak: z.ZodDefault<z.ZodBoolean>;
+    jailbreak: z.ZodDefault<z.ZodBoolean>;
+    encodedPayload: z.ZodDefault<z.ZodBoolean>;
+}, z.core.$strip>>;
+export type InjectionCategories = z.infer<typeof InjectionCategoriesSchema>;
+/**
+ * Output sanitization rule configuration
+ */
+export declare const SanitizationRuleSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    severity: z.ZodDefault<z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>>;
+    action: z.ZodDefault<z.ZodEnum<{
+        block: "block";
+        confirm: "confirm";
+        "agent-confirm": "agent-confirm";
+        warn: "warn";
+        log: "log";
+    }>>;
+    minConfidence: z.ZodDefault<z.ZodNumber>;
+    redactMatches: z.ZodDefault<z.ZodBoolean>;
+    categories: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        instructionOverride: z.ZodDefault<z.ZodBoolean>;
+        systemLeak: z.ZodDefault<z.ZodBoolean>;
+        jailbreak: z.ZodDefault<z.ZodBoolean>;
+        encodedPayload: z.ZodDefault<z.ZodBoolean>;
+    }, z.core.$strip>>>>;
+}, z.core.$strip>>;
+export type SanitizationRule = z.infer<typeof SanitizationRuleSchema>;
+/**
+ * Secrets and PII detection rule configuration
+ */
+export declare const SecretsRuleSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    severity: z.ZodDefault<z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>>;
+    action: z.ZodDefault<z.ZodEnum<{
+        block: "block";
+        confirm: "confirm";
+        "agent-confirm": "agent-confirm";
+        warn: "warn";
+        log: "log";
+    }>>;
+}, z.core.$strip>>;
+export type SecretsRule = z.infer<typeof SecretsRuleSchema>;
+/**
+ * Data exfiltration detection rule configuration
+ */
+export declare const ExfiltrationRuleSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    severity: z.ZodDefault<z.ZodEnum<{
+        critical: "critical";
+        high: "high";
+        medium: "medium";
+        low: "low";
+    }>>;
+    action: z.ZodDefault<z.ZodEnum<{
+        block: "block";
+        confirm: "confirm";
+        "agent-confirm": "agent-confirm";
+        warn: "warn";
+        log: "log";
+    }>>;
+}, z.core.$strip>>;
+export type ExfiltrationRule = z.infer<typeof ExfiltrationRuleSchema>;
+/**
+ * All security rules configuration
+ */
+export declare const RulesConfigSchema: z.ZodDefault<z.ZodObject<{
+    purchase: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        severity: z.ZodDefault<z.ZodEnum<{
+            critical: "critical";
+            high: "high";
+            medium: "medium";
+            low: "low";
+        }>>;
+        action: z.ZodDefault<z.ZodEnum<{
+            block: "block";
+            confirm: "confirm";
+            "agent-confirm": "agent-confirm";
+            warn: "warn";
+            log: "log";
+        }>>;
+        spendLimits: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            perTransaction: z.ZodDefault<z.ZodNumber>;
+            daily: z.ZodDefault<z.ZodNumber>;
+        }, z.core.$strip>>>>;
+        domains: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            mode: z.ZodDefault<z.ZodEnum<{
+                blocklist: "blocklist";
+                allowlist: "allowlist";
+            }>>;
+            blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+        }, z.core.$strip>>>>;
+    }, z.core.$strip>>>>;
+    website: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        mode: z.ZodDefault<z.ZodEnum<{
+            blocklist: "blocklist";
+            allowlist: "allowlist";
+        }>>;
+        severity: z.ZodDefault<z.ZodEnum<{
+            critical: "critical";
+            high: "high";
+            medium: "medium";
+            low: "low";
+        }>>;
+        action: z.ZodDefault<z.ZodEnum<{
+            block: "block";
+            confirm: "confirm";
+            "agent-confirm": "agent-confirm";
+            warn: "warn";
+            log: "log";
+        }>>;
+        blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+        allowlist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+    }, z.core.$strip>>>>;
+    destructive: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        severity: z.ZodDefault<z.ZodEnum<{
+            critical: "critical";
+            high: "high";
+            medium: "medium";
+            low: "low";
+        }>>;
+        action: z.ZodDefault<z.ZodEnum<{
+            block: "block";
+            confirm: "confirm";
+            "agent-confirm": "agent-confirm";
+            warn: "warn";
+            log: "log";
+        }>>;
+        shell: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+        }, z.core.$strip>>>>;
+        cloud: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+        }, z.core.$strip>>>>;
+        code: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+        }, z.core.$strip>>>>;
+    }, z.core.$strip>>>>;
+    secrets: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        severity: z.ZodDefault<z.ZodEnum<{
+            critical: "critical";
+            high: "high";
+            medium: "medium";
+            low: "low";
+        }>>;
+        action: z.ZodDefault<z.ZodEnum<{
+            block: "block";
+            confirm: "confirm";
+            "agent-confirm": "agent-confirm";
+            warn: "warn";
+            log: "log";
+        }>>;
+    }, z.core.$strip>>>>;
+    exfiltration: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        severity: z.ZodDefault<z.ZodEnum<{
+            critical: "critical";
+            high: "high";
+            medium: "medium";
+            low: "low";
+        }>>;
+        action: z.ZodDefault<z.ZodEnum<{
+            block: "block";
+            confirm: "confirm";
+            "agent-confirm": "agent-confirm";
+            warn: "warn";
+            log: "log";
+        }>>;
+    }, z.core.$strip>>>>;
+    sanitization: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        severity: z.ZodDefault<z.ZodEnum<{
+            critical: "critical";
+            high: "high";
+            medium: "medium";
+            low: "low";
+        }>>;
+        action: z.ZodDefault<z.ZodEnum<{
+            block: "block";
+            confirm: "confirm";
+            "agent-confirm": "agent-confirm";
+            warn: "warn";
+            log: "log";
+        }>>;
+        minConfidence: z.ZodDefault<z.ZodNumber>;
+        redactMatches: z.ZodDefault<z.ZodBoolean>;
+        categories: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            instructionOverride: z.ZodDefault<z.ZodBoolean>;
+            systemLeak: z.ZodDefault<z.ZodBoolean>;
+            jailbreak: z.ZodDefault<z.ZodBoolean>;
+            encodedPayload: z.ZodDefault<z.ZodBoolean>;
+        }, z.core.$strip>>>>;
+    }, z.core.$strip>>>>;
+}, z.core.$strip>>;
+export type RulesConfig = z.infer<typeof RulesConfigSchema>;
+/**
+ * Native approval flow configuration
+ */
+export declare const NativeApprovalSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    timeout: z.ZodDefault<z.ZodNumber>;
+}, z.core.$strip>>;
+export type NativeApproval = z.infer<typeof NativeApprovalSchema>;
+/**
+ * Agent confirm approval flow configuration
+ */
+export declare const AgentConfirmSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    parameterName: z.ZodDefault<z.ZodString>;
+}, z.core.$strip>>;
+export type AgentConfirm = z.infer<typeof AgentConfirmSchema>;
+/**
+ * Webhook approval flow configuration
+ */
+export declare const WebhookApprovalSchema: z.ZodDefault<z.ZodObject<{
+    enabled: z.ZodDefault<z.ZodBoolean>;
+    url: z.ZodOptional<z.ZodURL>;
+    timeout: z.ZodDefault<z.ZodNumber>;
+    headers: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodString>>;
+}, z.core.$strip>>;
+export type WebhookApproval = z.infer<typeof WebhookApprovalSchema>;
+/**
+ * Approval flow configuration
+ */
+export declare const ApprovalConfigSchema: z.ZodDefault<z.ZodObject<{
+    native: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        timeout: z.ZodDefault<z.ZodNumber>;
+    }, z.core.$strip>>>>;
+    agentConfirm: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        parameterName: z.ZodDefault<z.ZodString>;
+    }, z.core.$strip>>>>;
+    webhook: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        url: z.ZodOptional<z.ZodURL>;
+        timeout: z.ZodDefault<z.ZodNumber>;
+        headers: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodString>>;
+    }, z.core.$strip>>>>;
+}, z.core.$strip>>;
+export type ApprovalConfig = z.infer<typeof ApprovalConfigSchema>;
+/**
+ * Root configuration schema for clawsec.yaml
+ */
+export declare const ClawsecConfigSchema: z.ZodDefault<z.ZodObject<{
+    version: z.ZodDefault<z.ZodString>;
+    global: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        logLevel: z.ZodDefault<z.ZodEnum<{
+            warn: "warn";
+            debug: "debug";
+            info: "info";
+            error: "error";
+        }>>;
+    }, z.core.$strip>>>>;
+    llm: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        enabled: z.ZodDefault<z.ZodBoolean>;
+        model: z.ZodDefault<z.ZodNullable<z.ZodString>>;
+    }, z.core.$strip>>>>;
+    rules: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        purchase: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            severity: z.ZodDefault<z.ZodEnum<{
+                critical: "critical";
+                high: "high";
+                medium: "medium";
+                low: "low";
+            }>>;
+            action: z.ZodDefault<z.ZodEnum<{
+                block: "block";
+                confirm: "confirm";
+                "agent-confirm": "agent-confirm";
+                warn: "warn";
+                log: "log";
+            }>>;
+            spendLimits: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+                perTransaction: z.ZodDefault<z.ZodNumber>;
+                daily: z.ZodDefault<z.ZodNumber>;
+            }, z.core.$strip>>>>;
+            domains: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+                mode: z.ZodDefault<z.ZodEnum<{
+                    blocklist: "blocklist";
+                    allowlist: "allowlist";
+                }>>;
+                blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+            }, z.core.$strip>>>>;
+        }, z.core.$strip>>>>;
+        website: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            mode: z.ZodDefault<z.ZodEnum<{
+                blocklist: "blocklist";
+                allowlist: "allowlist";
+            }>>;
+            severity: z.ZodDefault<z.ZodEnum<{
+                critical: "critical";
+                high: "high";
+                medium: "medium";
+                low: "low";
+            }>>;
+            action: z.ZodDefault<z.ZodEnum<{
+                block: "block";
+                confirm: "confirm";
+                "agent-confirm": "agent-confirm";
+                warn: "warn";
+                log: "log";
+            }>>;
+            blocklist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+            allowlist: z.ZodDefault<z.ZodArray<z.ZodString>>;
+        }, z.core.$strip>>>>;
+        destructive: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            severity: z.ZodDefault<z.ZodEnum<{
+                critical: "critical";
+                high: "high";
+                medium: "medium";
+                low: "low";
+            }>>;
+            action: z.ZodDefault<z.ZodEnum<{
+                block: "block";
+                confirm: "confirm";
+                "agent-confirm": "agent-confirm";
+                warn: "warn";
+                log: "log";
+            }>>;
+            shell: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+                enabled: z.ZodDefault<z.ZodBoolean>;
+            }, z.core.$strip>>>>;
+            cloud: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+                enabled: z.ZodDefault<z.ZodBoolean>;
+            }, z.core.$strip>>>>;
+            code: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+                enabled: z.ZodDefault<z.ZodBoolean>;
+            }, z.core.$strip>>>>;
+        }, z.core.$strip>>>>;
+        secrets: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            severity: z.ZodDefault<z.ZodEnum<{
+                critical: "critical";
+                high: "high";
+                medium: "medium";
+                low: "low";
+            }>>;
+            action: z.ZodDefault<z.ZodEnum<{
+                block: "block";
+                confirm: "confirm";
+                "agent-confirm": "agent-confirm";
+                warn: "warn";
+                log: "log";
+            }>>;
+        }, z.core.$strip>>>>;
+        exfiltration: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            severity: z.ZodDefault<z.ZodEnum<{
+                critical: "critical";
+                high: "high";
+                medium: "medium";
+                low: "low";
+            }>>;
+            action: z.ZodDefault<z.ZodEnum<{
+                block: "block";
+                confirm: "confirm";
+                "agent-confirm": "agent-confirm";
+                warn: "warn";
+                log: "log";
+            }>>;
+        }, z.core.$strip>>>>;
+        sanitization: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            severity: z.ZodDefault<z.ZodEnum<{
+                critical: "critical";
+                high: "high";
+                medium: "medium";
+                low: "low";
+            }>>;
+            action: z.ZodDefault<z.ZodEnum<{
+                block: "block";
+                confirm: "confirm";
+                "agent-confirm": "agent-confirm";
+                warn: "warn";
+                log: "log";
+            }>>;
+            minConfidence: z.ZodDefault<z.ZodNumber>;
+            redactMatches: z.ZodDefault<z.ZodBoolean>;
+            categories: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+                instructionOverride: z.ZodDefault<z.ZodBoolean>;
+                systemLeak: z.ZodDefault<z.ZodBoolean>;
+                jailbreak: z.ZodDefault<z.ZodBoolean>;
+                encodedPayload: z.ZodDefault<z.ZodBoolean>;
+            }, z.core.$strip>>>>;
+        }, z.core.$strip>>>>;
+    }, z.core.$strip>>>>;
+    approval: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+        native: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            timeout: z.ZodDefault<z.ZodNumber>;
+        }, z.core.$strip>>>>;
+        agentConfirm: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            parameterName: z.ZodDefault<z.ZodString>;
+        }, z.core.$strip>>>>;
+        webhook: z.ZodDefault<z.ZodOptional<z.ZodDefault<z.ZodObject<{
+            enabled: z.ZodDefault<z.ZodBoolean>;
+            url: z.ZodOptional<z.ZodURL>;
+            timeout: z.ZodDefault<z.ZodNumber>;
+            headers: z.ZodDefault<z.ZodRecord<z.ZodString, z.ZodString>>;
+        }, z.core.$strip>>>>;
+    }, z.core.$strip>>>>;
+}, z.core.$strip>>;
+/**
+ * Main configuration type for Clawsec
+ */
+export type ClawsecConfig = z.infer<typeof ClawsecConfigSchema>;
+/**
+ * Partial configuration type (for merging with defaults)
+ */
+export type PartialClawsecConfig = z.input<typeof ClawsecConfigSchema>;
+//# sourceMappingURL=schema.d.ts.map

package/dist/src/config/schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.d.ts","sourceRoot":"","sources":["../../../src/config/schema.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAMxB;;GAEG;AACH,eAAO,MAAM,cAAc;;;;;EAAgD,CAAC;AAC5E,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,cAAc,CAAC,CAAC;AAEtD;;GAEG;AACH,eAAO,MAAM,YAAY;;;;;;EAA+D,CAAC;AACzF,MAAM,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,YAAY,CAAC,CAAC;AAElD;;GAEG;AACH,eAAO,MAAM,cAAc;;;;;EAA6C,CAAC;AACzE,MAAM,MAAM,QAAQ,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,cAAc,CAAC,CAAC;AAEtD;;GAEG;AACH,eAAO,MAAM,gBAAgB;;;EAAqC,CAAC;AACnE,MAAM,MAAM,UAAU,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,gBAAgB,CAAC,CAAC;AAM1D;;GAEG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;kBAQ5B,CAAC;AACJ,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAM9D;;GAEG;AACH,eAAO,MAAM,eAAe;;;kBAQzB,CAAC;AACJ,MAAM,MAAM,SAAS,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,eAAe,CAAC,CAAC;AAMxD;;GAEG;AACH,eAAO,MAAM,iBAAiB;;;kBAQ3B,CAAC;AACJ,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAE5D;;GAEG;AACH,eAAO,MAAM,qBAAqB;;;;;;kBAQ/B,CAAC;AACJ,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE;;GAEG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;;;;;;;;;kBAuB5B,CAAC;AACJ,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAM9D;;GAEG;AACH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;kBAoB3B,CAAC;AACJ,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAM5D;;GAEG;AACH,eAAO,MAAM,qBAAqB;;kBAGG,CAAC;AACtC,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE;;GAEG;AACH,eAAO,MAAM,qBAAqB;;kBAGG,CAAC;AACtC,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE;;GAEG;AACH,eAAO,MAAM,oBAAoB;;kBAGI,CAAC;AACtC,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAElE;;GAEG;AACH,eAAO,MAAM,qBAAqB;;;;;;;;;;;;;;;;;;;;;;;;kBAoB/B,CAAC;AACJ,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAMpE;;GAEG;AACH,eAAO,MAAM,yBAAyB;;;;;kBAcnC,CAAC;AACJ,MAAM,MAAM,mBAAmB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,yBAAyB,CAAC,CAAC;AAE5E;;GAEG;AACH,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;kBA8BhC,CAAC;AACJ,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAMtE;;GAEG;AACH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;kBAW3B,CAAC;AACJ,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAM5D;;GAEG;AACH,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;kBAWhC,CAAC;AACJ,MAAM,MAAM,gBAAgB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAMtE;;GAEG;AACH,eAAO,MAAM,iBAAiB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBAoG3B,CAAC;AACJ,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,iBAAiB,CAAC,CAAC;AAM5D;;GAEG;AACH,eAAO,MAAM,oBAAoB;;;kBAQ9B,CAAC;AACJ,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAElE;;GAEG;AACH,eAAO,MAAM,kBAAkB;;;kBAQ5B,CAAC;AACJ,MAAM,MAAM,YAAY,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,kBAAkB,CAAC,CAAC;AAE9D;;GAEG;AACH,eAAO,MAAM,qBAAqB;;;;;kBAc/B,CAAC;AACJ,MAAM,MAAM,eAAe,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAEpE;;GAEG;AACH,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;kBAsB9B,CAAC;AACJ,MAAM,MAAM,cAAc,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAMlE;;GAEG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kBA6H7B,CAAC;AAEJ;;GAEG;AACH,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAEhE;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC"}