npm - domainforge - Versions diffs - 0.13.0 - Mend

domainforge 0.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (481) hide show

package/.cargo/config.toml +6 -0
package/.claude/settings.local.json +18 -0
package/.coderabbit.yml +43 -0
package/.codex/skills/release-management/SKILL.md +151 -0
package/.codex/skills/release-management/agents/openai.yaml +4 -0
package/.github/actions/decrypt-secrets/action.yml +121 -0
package/.github/agents/Coder.agent.md +97 -0
package/.github/agents/DeepResearch.agent.md +61 -0
package/.github/chatmodes/tdd.vibepro.chatmode.md +1183 -0
package/.github/copilot-instructions.md +13 -0
package/.github/dependabot.yml +68 -0
package/.github/workflows/README.md +165 -0
package/.github/workflows/ci.yml +335 -0
package/.github/workflows/dependabot-automerge.yml +114 -0
package/.github/workflows/dependency-review.yml +27 -0
package/.github/workflows/deploy.yml +87 -0
package/.github/workflows/prepare-release.yml +168 -0
package/.github/workflows/release-crates.yml +42 -0
package/.github/workflows/release-npm.yml +137 -0
package/.github/workflows/release-please.yml +29 -0
package/.github/workflows/release-pypi.yml +96 -0
package/.gitkeep +1 -0
package/.release-please-manifest.json +5 -0
package/.sea-registry.toml +10 -0
package/.serena/project.yml +133 -0
package/.sops.yaml +10 -0
package/AGENTS.md +216 -0
package/CHANGELOG.md +400 -0
package/CLAUDE.md +62 -0
package/CONTRIBUTING.md +323 -0
package/Cargo.lock +3612 -0
package/Cargo.toml +12 -0
package/LICENSE +201 -0
package/README.md +660 -0
package/README_PYTHON.md +256 -0
package/README_TYPESCRIPT.md +305 -0
package/README_WASM.md +329 -0
package/RELEASE_NOTES.md +41 -0
package/bun.lock +378 -0
package/bunfig.toml +11 -0
package/check_output.txt +83 -0
package/clippy_output.txt +80 -0
package/commitlint.config.cjs +8 -0
package/deny.toml +42 -0
package/devbox.json +14 -0
package/devbox.lock +76 -0
package/docs/RELEASE_PROCESS.md +360 -0
package/docs/diagnostics.md +161 -0
package/docs/doc_guidelines.md +53 -0
package/docs/explanations/README.md +21 -0
package/docs/explanations/architecture-overview.md +109 -0
package/docs/explanations/cross-language-binding-strategy.md +68 -0
package/docs/explanations/graph-store-design.md +47 -0
package/docs/explanations/performance-benchmarks.md +63 -0
package/docs/explanations/policy-evaluation-logic.md +106 -0
package/docs/explanations/semantic-modeling-concepts.md +109 -0
package/docs/explanations/three-valued-logic.md +66 -0
package/docs/explanations/versioning-strategy.md +45 -0
package/docs/governance.md +168 -0
package/docs/how-tos/README.md +46 -0
package/docs/how-tos/ci-cd-validation.md +93 -0
package/docs/how-tos/create-custom-units.md +125 -0
package/docs/how-tos/define-policies.md +119 -0
package/docs/how-tos/export-to-calm.md +110 -0
package/docs/how-tos/export-to-protobuf.md +312 -0
package/docs/how-tos/extend-grammar.md +133 -0
package/docs/how-tos/generate-rdf-turtle.md +106 -0
package/docs/how-tos/import-from-calm.md +114 -0
package/docs/how-tos/import-from-sbvr.md +249 -0
package/docs/how-tos/install-cli.md +126 -0
package/docs/how-tos/parse-sea-files.md +132 -0
package/docs/how-tos/policy-evaluation-modes.md +30 -0
package/docs/how-tos/run-cross-language-tests.md +115 -0
package/docs/how-tos/troubleshoot-napi-builds.md +55 -0
package/docs/how-tos/use-modules-imports.md +285 -0
package/docs/index.md +13 -0
package/docs/plans/canonical-normalizer.md +121 -0
package/docs/plans/cd_improvement.md +112 -0
package/docs/plans/cli-ast.md +29 -0
package/docs/plans/expression-bindings-and-normalizer-integration.md +174 -0
package/docs/plans/protobuf_advanced_features_plan.md +597 -0
package/docs/plans/protobuf_plan.yml +525 -0
package/docs/plans/refactor_dsl_architecture.md +131 -0
package/docs/plans/release-plan.md +163 -0
package/docs/plans/sea_fmt_implementation_plan.md +516 -0
package/docs/playbooks/README.md +18 -0
package/docs/playbooks/adding-new-primitive.md +68 -0
package/docs/playbooks/debugging-parser-failures.md +42 -0
package/docs/playbooks/local-release-preparation.md +139 -0
package/docs/playbooks/migrating-schema-versions.md +43 -0
package/docs/playbooks/onboarding-contributors.md +64 -0
package/docs/playbooks/releasing-beta.md +86 -0
package/docs/playbooks/secret-management.md +64 -0
package/docs/reference/README.md +199 -0
package/docs/reference/ast-json-api.md +427 -0
package/docs/reference/calm-mapping.md +519 -0
package/docs/reference/cli-commands.md +588 -0
package/docs/reference/configuration.md +202 -0
package/docs/reference/error-codes.md +664 -0
package/docs/reference/generated-artifacts-policy.md +53 -0
package/docs/reference/grammar-spec.md +255 -0
package/docs/reference/primitives-api.md +317 -0
package/docs/reference/protobuf-api.md +426 -0
package/docs/reference/python-api.md +485 -0
package/docs/reference/registry.md +50 -0
package/docs/reference/sea-dsl-ai-cheatsheet.yaml +913 -0
package/docs/reference/security-model.md +74 -0
package/docs/reference/typescript-api.md +508 -0
package/docs/reference/wasm-api.md +420 -0
package/docs/semantic-pack-review.md +144 -0
package/docs/semantic-pack-signing.md +234 -0
package/docs/semantic-packs.md +284 -0
package/docs/specs/ADR-001-sea-dsl-semantic-source-of-truth.md +33 -0
package/docs/specs/ADR-002-projection-first-class-construct.md +50 -0
package/docs/specs/ADR-003-protobuf-projection-target.md +51 -0
package/docs/specs/ADR-004-projection-compatibility-semantics.md +57 -0
package/docs/specs/ADR-005-multi-language-support-strategy.md +112 -0
package/docs/specs/ADR-006-error-handling-strategy.md +115 -0
package/docs/specs/ADR-007-policy-evaluation-engine.md +95 -0
package/docs/specs/ADR-008-knowledge-graph-integration.md +90 -0
package/docs/specs/ADR-009-module-resolution-strategy.md +115 -0
package/docs/specs/ADR-010-unit-system.md +106 -0
package/docs/specs/PRD-001-sea-projection-framework.md +155 -0
package/docs/specs/PRD-002-sea-cli-tooling.md +169 -0
package/docs/specs/PRD-003-dsl-core-capabilities.md +275 -0
package/docs/specs/README.md +62 -0
package/docs/specs/SDS-001-protobuf-projection-engine.md +451 -0
package/docs/specs/SDS-002-sea-core-architecture.md +268 -0
package/docs/specs/SDS-003-parser-semantic-graph.md +377 -0
package/docs/specs/SDS-004-policy-engine-design.md +362 -0
package/docs/specs/SDS-005-knowledge-graph-module.md +364 -0
package/docs/specs/SDS-006-calm-integration.md +367 -0
package/docs/specs/SDS-007-sbvr-import.md +347 -0
package/docs/templates/template_explanation.md +14 -0
package/docs/templates/template_howto.md +21 -0
package/docs/templates/template_playbook.md +21 -0
package/docs/templates/template_reference.md +17 -0
package/docs/templates/template_tutorial.md +24 -0
package/docs/tutorials/README.md +12 -0
package/docs/tutorials/first-sea-model.md +85 -0
package/docs/tutorials/getting-started.md +98 -0
package/docs/tutorials/python-binding-quickstart.md +107 -0
package/docs/tutorials/typescript-binding-quickstart.md +91 -0
package/docs/tutorials/wasm-in-browser.md +75 -0
package/domainforge-core/CHANGELOG.md +138 -0
package/domainforge-core/Cargo.toml +101 -0
package/domainforge-core/MIGRATING.md +32 -0
package/domainforge-core/README.md +197 -0
package/domainforge-core/benchmark_results.txt +51 -0
package/domainforge-core/build.rs +6 -0
package/domainforge-core/deny.toml +31 -0
package/domainforge-core/docs/specs/projections/sbvr_kg_mapping.md +43 -0
package/domainforge-core/examples/basic.sea +7 -0
package/domainforge-core/examples/cli/import_export_workflow.sh +38 -0
package/domainforge-core/examples/cli/validate_example.sh +30 -0
package/domainforge-core/examples/evolution_semantics.sea +31 -0
package/domainforge-core/examples/parser_demo.rs +203 -0
package/domainforge-core/grammar/sea.pest +408 -0
package/domainforge-core/schemas/calm-v1.schema.json +170 -0
package/domainforge-core/schemas/shacl/sea_shapes.ttl +19 -0
package/domainforge-core/src/authority/compiler.rs +309 -0
package/domainforge-core/src/authority/environment.rs +203 -0
package/domainforge-core/src/authority/error.rs +164 -0
package/domainforge-core/src/authority/fact_resolver.rs +224 -0
package/domainforge-core/src/authority/mod.rs +25 -0
package/domainforge-core/src/authority/pack.rs +133 -0
package/domainforge-core/src/authority/policy.rs +224 -0
package/domainforge-core/src/authority/resolver.rs +446 -0
package/domainforge-core/src/authority/trace.rs +217 -0
package/domainforge-core/src/authority/transform.rs +168 -0
package/domainforge-core/src/authority/types.rs +617 -0
package/domainforge-core/src/bin/domainforge.rs +25 -0
package/domainforge-core/src/calm/export.rs +538 -0
package/domainforge-core/src/calm/import.rs +1220 -0
package/domainforge-core/src/calm/mod.rs +9 -0
package/domainforge-core/src/calm/models.rs +108 -0
package/domainforge-core/src/calm/sbvr_import.rs +9 -0
package/domainforge-core/src/cli/authority.rs +149 -0
package/domainforge-core/src/cli/format.rs +85 -0
package/domainforge-core/src/cli/import.rs +133 -0
package/domainforge-core/src/cli/mod.rs +64 -0
package/domainforge-core/src/cli/normalize.rs +180 -0
package/domainforge-core/src/cli/pack.rs +904 -0
package/domainforge-core/src/cli/parse.rs +112 -0
package/domainforge-core/src/cli/project.rs +294 -0
package/domainforge-core/src/cli/registry.rs +41 -0
package/domainforge-core/src/cli/test.rs +12 -0
package/domainforge-core/src/cli/validate.rs +195 -0
package/domainforge-core/src/cli/validate_kg.rs +80 -0
package/domainforge-core/src/concept_id.rs +89 -0
package/domainforge-core/src/error/diagnostics.rs +426 -0
package/domainforge-core/src/error/fuzzy.rs +253 -0
package/domainforge-core/src/error/mod.rs +13 -0
package/domainforge-core/src/formatter/comments.rs +223 -0
package/domainforge-core/src/formatter/config.rs +114 -0
package/domainforge-core/src/formatter/mod.rs +22 -0
package/domainforge-core/src/formatter/printer.rs +906 -0
package/domainforge-core/src/graph/mod.rs +858 -0
package/domainforge-core/src/graph/to_ast.rs +66 -0
package/domainforge-core/src/kg.rs +1476 -0
package/domainforge-core/src/kg_import.rs +251 -0
package/domainforge-core/src/lib.rs +203 -0
package/domainforge-core/src/module/mod.rs +1 -0
package/domainforge-core/src/module/resolver.rs +260 -0
package/domainforge-core/src/parser/ast.rs +2919 -0
package/domainforge-core/src/parser/ast_convert.rs +494 -0
package/domainforge-core/src/parser/ast_schema.rs +491 -0
package/domainforge-core/src/parser/error.rs +291 -0
package/domainforge-core/src/parser/lint.rs +39 -0
package/domainforge-core/src/parser/mod.rs +193 -0
package/domainforge-core/src/parser/printer.rs +702 -0
package/domainforge-core/src/parser/profiles.rs +71 -0
package/domainforge-core/src/parser/string_utils.rs +138 -0
package/domainforge-core/src/patterns.rs +68 -0
package/domainforge-core/src/policy/core.rs +1148 -0
package/domainforge-core/src/policy/expression.rs +399 -0
package/domainforge-core/src/policy/mod.rs +18 -0
package/domainforge-core/src/policy/normalize.rs +1028 -0
package/domainforge-core/src/policy/quantifier.rs +940 -0
package/domainforge-core/src/policy/three_valued.rs +140 -0
package/domainforge-core/src/policy/three_valued_microbench.rs +104 -0
package/domainforge-core/src/policy/type_inference.rs +67 -0
package/domainforge-core/src/policy/violation.rs +36 -0
package/domainforge-core/src/primitives/concept_change.rs +61 -0
package/domainforge-core/src/primitives/entity.rs +224 -0
package/domainforge-core/src/primitives/flow.rs +111 -0
package/domainforge-core/src/primitives/instance.rs +93 -0
package/domainforge-core/src/primitives/mapping_contract.rs +50 -0
package/domainforge-core/src/primitives/metric.rs +79 -0
package/domainforge-core/src/primitives/mod.rs +25 -0
package/domainforge-core/src/primitives/projection_contract.rs +50 -0
package/domainforge-core/src/primitives/quantity.rs +56 -0
package/domainforge-core/src/primitives/relation.rs +68 -0
package/domainforge-core/src/primitives/resource.rs +237 -0
package/domainforge-core/src/primitives/resource_instance.rs +88 -0
package/domainforge-core/src/primitives/role.rs +49 -0
package/domainforge-core/src/projection/buf.rs +404 -0
package/domainforge-core/src/projection/contracts.rs +22 -0
package/domainforge-core/src/projection/engine.rs +19 -0
package/domainforge-core/src/projection/mod.rs +16 -0
package/domainforge-core/src/projection/protobuf.rs +3331 -0
package/domainforge-core/src/projection/registry.rs +43 -0
package/domainforge-core/src/python/authority.rs +253 -0
package/domainforge-core/src/python/error.rs +227 -0
package/domainforge-core/src/python/formatter.rs +86 -0
package/domainforge-core/src/python/graph.rs +366 -0
package/domainforge-core/src/python/mod.rs +9 -0
package/domainforge-core/src/python/policy.rs +651 -0
package/domainforge-core/src/python/primitives.rs +796 -0
package/domainforge-core/src/python/registry.rs +98 -0
package/domainforge-core/src/python/semantic_pack.rs +619 -0
package/domainforge-core/src/python/units.rs +96 -0
package/domainforge-core/src/registry/mod.rs +432 -0
package/domainforge-core/src/registry/tests.rs +210 -0
package/domainforge-core/src/sbvr.rs +744 -0
package/domainforge-core/src/semantic_pack/builder.rs +470 -0
package/domainforge-core/src/semantic_pack/canonical_json.rs +184 -0
package/domainforge-core/src/semantic_pack/diagnostics.rs +214 -0
package/domainforge-core/src/semantic_pack/diff.rs +216 -0
package/domainforge-core/src/semantic_pack/mod.rs +31 -0
package/domainforge-core/src/semantic_pack/pack_set.rs +240 -0
package/domainforge-core/src/semantic_pack/resolver.rs +437 -0
package/domainforge-core/src/semantic_pack/review.rs +125 -0
package/domainforge-core/src/semantic_pack/schema.rs +342 -0
package/domainforge-core/src/semantic_pack/signing.rs +105 -0
package/domainforge-core/src/semantic_pack/validator.rs +368 -0
package/domainforge-core/src/semantic_version.rs +140 -0
package/domainforge-core/src/test_utils.rs +12 -0
package/domainforge-core/src/typescript/authority.rs +184 -0
package/domainforge-core/src/typescript/error.rs +146 -0
package/domainforge-core/src/typescript/formatter.rs +76 -0
package/domainforge-core/src/typescript/graph.rs +391 -0
package/domainforge-core/src/typescript/mod.rs +9 -0
package/domainforge-core/src/typescript/policy.rs +564 -0
package/domainforge-core/src/typescript/primitives.rs +784 -0
package/domainforge-core/src/typescript/registry.rs +88 -0
package/domainforge-core/src/typescript/semantic_pack.rs +470 -0
package/domainforge-core/src/typescript/units.rs +76 -0
package/domainforge-core/src/units/mod.rs +462 -0
package/domainforge-core/src/uuid_module.rs +42 -0
package/domainforge-core/src/validation_error.rs +818 -0
package/domainforge-core/src/validation_result.rs +30 -0
package/domainforge-core/src/wasm/authority.rs +192 -0
package/domainforge-core/src/wasm/error.rs +145 -0
package/domainforge-core/src/wasm/formatter.rs +69 -0
package/domainforge-core/src/wasm/graph.rs +471 -0
package/domainforge-core/src/wasm/mod.rs +16 -0
package/domainforge-core/src/wasm/policy.rs +607 -0
package/domainforge-core/src/wasm/primitives.rs +295 -0
package/domainforge-core/src/wasm/semantic_pack.rs +471 -0
package/domainforge-core/src/wasm/units.rs +62 -0
package/domainforge-core/std/aws.sea +6 -0
package/domainforge-core/std/core.sea +6 -0
package/domainforge-core/std/http.sea +27 -0
package/domainforge-core/tests/aggregation_enhanced_tests.rs +162 -0
package/domainforge-core/tests/aggregation_eval_tests.rs +248 -0
package/domainforge-core/tests/aggregation_integration_tests.rs +379 -0
package/domainforge-core/tests/aggregation_parser_tests.rs +92 -0
package/domainforge-core/tests/aggregation_tests.rs +102 -0
package/domainforge-core/tests/authority_conformance_tests.rs +1173 -0
package/domainforge-core/tests/calm_round_trip_tests.rs +283 -0
package/domainforge-core/tests/calm_schema_validation_tests.rs +137 -0
package/domainforge-core/tests/cast_operator_tests.rs +85 -0
package/domainforge-core/tests/cli_binary_check.rs +37 -0
package/domainforge-core/tests/cli_import_tests.rs +291 -0
package/domainforge-core/tests/cli_path_traversal_tests.rs +124 -0
package/domainforge-core/tests/cli_tests.rs +63 -0
package/domainforge-core/tests/diagnostics_tests.rs +203 -0
package/domainforge-core/tests/dimension_unit_tests.rs +80 -0
package/domainforge-core/tests/entity_tests.rs +69 -0
package/domainforge-core/tests/evolution_semantics_tests.rs +157 -0
package/domainforge-core/tests/flow_tests.rs +78 -0
package/domainforge-core/tests/flow_unit_validation_tests.rs +31 -0
package/domainforge-core/tests/graph_integration_tests.rs +218 -0
package/domainforge-core/tests/graph_tests.rs +626 -0
package/domainforge-core/tests/import_parsing_tests.rs +23 -0
package/domainforge-core/tests/instance_integration_tests.rs +98 -0
package/domainforge-core/tests/instance_parsing_tests.rs +58 -0
package/domainforge-core/tests/instance_tests.rs +61 -0
package/domainforge-core/tests/kg_uri_encoding_tests.rs +53 -0
package/domainforge-core/tests/lint_tests.rs +19 -0
package/domainforge-core/tests/metric_tests.rs +143 -0
package/domainforge-core/tests/module_resolution_tests.rs +100 -0
package/domainforge-core/tests/namespace_registry_tests.rs +247 -0
package/domainforge-core/tests/null_handling_tests.rs +26 -0
package/domainforge-core/tests/parser_ast_v3.rs +53 -0
package/domainforge-core/tests/parser_dimension_registry_tests.rs +20 -0
package/domainforge-core/tests/parser_integration_tests.rs +294 -0
package/domainforge-core/tests/parser_metadata_tests.rs +97 -0
package/domainforge-core/tests/parser_resource_domain_only_graph_test.rs +21 -0
package/domainforge-core/tests/parser_resource_limits_tests.rs +122 -0
package/domainforge-core/tests/parser_tests.rs +512 -0
package/domainforge-core/tests/pattern_semantics_tests.rs +87 -0
package/domainforge-core/tests/phase_14_determinism_tests.rs +166 -0
package/domainforge-core/tests/phase_15_validation_error_tests.rs +136 -0
package/domainforge-core/tests/phase_16_unicode_tests.rs +248 -0
package/domainforge-core/tests/phase_17_export_tests.rs +285 -0
package/domainforge-core/tests/phase_17_round_trip_tests.rs +264 -0
package/domainforge-core/tests/policy_tests.rs +635 -0
package/domainforge-core/tests/primitives_integration_tests.rs +151 -0
package/domainforge-core/tests/print_rdf_xml.rs +14 -0
package/domainforge-core/tests/printer_tests.rs +204 -0
package/domainforge-core/tests/profile_tests.rs +35 -0
package/domainforge-core/tests/projection_contracts_tests.rs +154 -0
package/domainforge-core/tests/protobuf_projection_tests.rs +199 -0
package/domainforge-core/tests/quantity_tests.rs +41 -0
package/domainforge-core/tests/rdf_xml_typed_literal_tests.rs +105 -0
package/domainforge-core/tests/registry_schema_tests.rs +33 -0
package/domainforge-core/tests/resource_tests.rs +50 -0
package/domainforge-core/tests/resource_unit_tests.rs +24 -0
package/domainforge-core/tests/roles_relations_tests.rs +61 -0
package/domainforge-core/tests/round_trip_tests.rs +34 -0
package/domainforge-core/tests/runtime_toggle_tests.rs +70 -0
package/domainforge-core/tests/sbvr_fact_schema_tests.rs +60 -0
package/domainforge-core/tests/sbvr_flow_facts_tests.rs +55 -0
package/domainforge-core/tests/sbvr_parsing_tests.rs +53 -0
package/domainforge-core/tests/semantic_pack_alias_resolution.rs +197 -0
package/domainforge-core/tests/semantic_pack_build.rs +302 -0
package/domainforge-core/tests/semantic_pack_consumer_smoke.rs +150 -0
package/domainforge-core/tests/semantic_pack_pack_set.rs +160 -0
package/domainforge-core/tests/semantic_pack_signing.rs +157 -0
package/domainforge-core/tests/semantic_pack_three_valued.rs +250 -0
package/domainforge-core/tests/semantic_pack_validate.rs +196 -0
package/domainforge-core/tests/std_lib_tests.rs +37 -0
package/domainforge-core/tests/temporal_evaluation_tests.rs +159 -0
package/domainforge-core/tests/temporal_semantics_tests.rs +214 -0
package/domainforge-core/tests/three_valued_quantifiers_tests.rs +164 -0
package/domainforge-core/tests/turtle_entity_export_tests.rs +38 -0
package/domainforge-core/tests/turtle_escaping_tests.rs +53 -0
package/domainforge-core/tests/turtle_resource_export_tests.rs +34 -0
package/domainforge-core/tests/type_inference_tests.rs +40 -0
package/domainforge-core/tests/unicode_validation_tests.rs +169 -0
package/domainforge-core/tests/unit_tests.rs +81 -0
package/domainforge-core/tests/validate_tests.rs +38 -0
package/domainforge-core/tests/validation_unit_mismatch_tests.rs +83 -0
package/domainforge-core/tests/wasm_tests.rs +229 -0
package/domainforge-python/CHANGELOG-python.md +12 -0
package/domainforge-python/MIGRATING.md +24 -0
package/domainforge-python/README.md +256 -0
package/domainforge-python/domainforge/__init__.py +95 -0
package/domainforge-python/domainforge/domainforge.pyi +519 -0
package/domainforge-python/pyproject.toml +36 -0
package/domainforge-typescript/CHANGELOG-typescript.md +12 -0
package/domainforge-typescript/LICENSE +201 -0
package/domainforge-typescript/MIGRATING.md +24 -0
package/domainforge-typescript/README.md +305 -0
package/domainforge-typescript/index.d.ts +452 -0
package/domainforge-typescript/index.js +361 -0
package/domainforge-typescript/package.json +60 -0
package/example.js +61 -0
package/examples/browser.html +366 -0
package/examples/namespaces/finance/cashflow.sea +5 -0
package/examples/namespaces/logistics/core.sea +7 -0
package/examples/observability_metrics.sea +38 -0
package/fixtures/semantic_packs/acme_procurement/domain/entities.sea +39 -0
package/fixtures/semantic_packs/acme_procurement/domain/metrics.sea +11 -0
package/fixtures/semantic_packs/acme_procurement/domain/relations.sea +7 -0
package/fixtures/semantic_packs/acme_procurement/domain/resources.sea +9 -0
package/fixtures/semantic_packs/acme_procurement/review/acme.procurement.semantic-review.jsonl +7 -0
package/fixtures/semantic_packs/acme_procurement/tests/ambiguous_vendor_alias.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/deprecated_vendor_alias.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/invalid_relation.sea +3 -0
package/fixtures/semantic_packs/acme_procurement/tests/proposed_concept.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/rejected_concept.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/unit_mismatch.sea +7 -0
package/fixtures/semantic_packs/acme_procurement/tests/unknown_vendor_policy.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/valid_purchase_policy.sea +8 -0
package/index.d.ts +2 -0
package/index.js +8 -0
package/justfile +200 -0
package/lefthook.yml +13 -0
package/lib/validate_native_exports.d.ts +4 -0
package/lib/validate_native_exports.js +12 -0
package/package.json +22 -0
package/pytest.ini +5 -0
package/python/tests/test_registry.py +75 -0
package/python/tests/test_units.py +18 -0
package/release-please-config.json +49 -0
package/requirements-dev.txt +3 -0
package/requirements.txt +3 -0
package/rust-toolchain.toml +3 -0
package/schemas/ast-v1.schema.json +72 -0
package/schemas/ast-v2.schema.json +1200 -0
package/schemas/ast-v3.schema.json +1200 -0
package/schemas/sea-registry.schema.json +45 -0
package/scripts/build-python.sh +37 -0
package/scripts/build-release.sh +279 -0
package/scripts/build-typescript.sh +13 -0
package/scripts/build-wasm.sh +113 -0
package/scripts/bump-version.sh +245 -0
package/scripts/check_unused_test_imports.py +85 -0
package/scripts/ci_tasks.py +379 -0
package/scripts/clear_debug_test.sh +10 -0
package/scripts/create-github-release.sh +262 -0
package/scripts/create-tag.sh +203 -0
package/scripts/find_and_link_test_binary.sh +70 -0
package/scripts/generate-changelog.sh +271 -0
package/scripts/generate-release-notes.sh +205 -0
package/scripts/lint_release_security.py +96 -0
package/scripts/lint_release_workflows.py +82 -0
package/scripts/lint_workflow_gates.py +113 -0
package/scripts/optimized-wasm-build.sh +61 -0
package/scripts/patch_napi_types.py +62 -0
package/scripts/pre-release-check.sh +289 -0
package/scripts/prepare_rust_debug.sh +52 -0
package/scripts/release.sh +373 -0
package/scripts/resolve_rust_binary.py +230 -0
package/scripts/run_commitlint.sh +29 -0
package/scripts/test-all.sh +77 -0
package/scripts/update_launch_program.py +93 -0
package/secrets/README.md +27 -0
package/secrets/secrets.yaml +21 -0
package/test_integration.py +67 -0
package/tests/test_authority.py +328 -0
package/tests/test_ci_tasks.py +143 -0
package/tests/test_expression.py +256 -0
package/tests/test_golden_payment_flow.py +42 -0
package/tests/test_graph.py +127 -0
package/tests/test_instance.py +136 -0
package/tests/test_parser.py +82 -0
package/tests/test_primitives.py +68 -0
package/tests/test_role_relation_parity.py +56 -0
package/tests/test_runtime_toggle.py +156 -0
package/tests/test_semantic_pack.py +639 -0
package/tests/test_three_valued_eval.py +159 -0
package/tsconfig.json +30 -0
package/typescript-tests/advanced.test.ts +165 -0
package/typescript-tests/authority.test.ts +216 -0
package/typescript-tests/expression.test.ts +228 -0
package/typescript-tests/golden-payment-flow.test.ts +51 -0
package/typescript-tests/graph.test.ts +142 -0
package/typescript-tests/native-binding.test.ts +20 -0
package/typescript-tests/primitives.test.ts +88 -0
package/typescript-tests/registry.test.ts +122 -0
package/typescript-tests/role_relation.test.ts +63 -0
package/typescript-tests/runtime_toggle.test.ts +141 -0
package/typescript-tests/semantic-pack.test.ts +556 -0
package/typescript-tests/three_valued_eval.test.ts +135 -0
package/typescript-tests/units.test.ts +36 -0
package/vitest.config.ts +13 -0
package/wasm_demo.html +225 -0

package/domainforge-core/src/authority/fact_resolver.rs ADDED Viewed

@@ -0,0 +1,224 @@
+use chrono::Utc;
+use indexmap::IndexMap;
+use serde::{Deserialize, Serialize};
+use super::error::AuthorityError;
+use super::types::*;
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct FactSourceRegistry {
+    pub sources: IndexMap<String, FactSource>,
+}
+impl FactSourceRegistry {
+    pub fn new() -> Self {
+        Self {
+            sources: IndexMap::new(),
+        }
+    }
+    pub fn register(&mut self, source: FactSource) -> Result<(), AuthorityError> {
+        if source.id.is_empty() {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::InvalidFactSourceError,
+                "Fact source id is required",
+            ));
+        }
+        self.sources.insert(source.id.clone(), source);
+        Ok(())
+    }
+    pub fn get(&self, id: &str) -> Option<&FactSource> {
+        self.sources.get(id)
+    }
+    pub fn validate(&self) -> Result<(), AuthorityError> {
+        for source in self.sources.values() {
+            if source.allowed_paths.is_empty() {
+                return Err(AuthorityError::new(
+                    super::error::AuthorityErrorCode::InvalidFactSourceError,
+                    format!("Source '{}' must declare allowed_paths", source.id),
+                ));
+            }
+        }
+        Ok(())
+    }
+}
+impl Default for FactSourceRegistry {
+    fn default() -> Self {
+        Self::new()
+    }
+}
+pub struct FactResolver {
+    registry: FactSourceRegistry,
+}
+impl FactResolver {
+    pub fn new(registry: FactSourceRegistry) -> Self {
+        Self { registry }
+    }
+    pub fn wrap_context_as_caller_supplied(
+        &self,
+        context: &serde_json::Value,
+        observed_at: chrono::DateTime<Utc>,
+    ) -> Vec<FactEnvelope> {
+        let mut envelopes = Vec::new();
+        if let Some(obj) = context.as_object() {
+            Self::flatten_context(obj, "", observed_at, &mut envelopes);
+        }
+        envelopes
+    }
+    fn flatten_context(
+        obj: &serde_json::Map<String, serde_json::Value>,
+        prefix: &str,
+        observed_at: chrono::DateTime<Utc>,
+        envelopes: &mut Vec<FactEnvelope>,
+    ) {
+        for (key, value) in obj {
+            let path = if prefix.is_empty() {
+                key.clone()
+            } else {
+                format!("{}.{}", prefix, key)
+            };
+            match value {
+                serde_json::Value::Object(inner) => {
+                    Self::flatten_context(inner, &path, observed_at, envelopes);
+                }
+                _ => {
+                    envelopes.push(FactEnvelope {
+                        path,
+                        value: value.clone(),
+                        source_class: SourceClass::CallerSupplied,
+                        source_id: "caller".to_string(),
+                        observed_at,
+                        expires_at: None,
+                        evidence_ref: None,
+                        signature: None,
+                        confidence: None,
+                        lineage: None,
+                    });
+                }
+            }
+        }
+    }
+    pub fn resolve_trusted_facts(
+        &self,
+        raw_facts: &[FactEnvelope],
+        provided_trusted: &[FactEnvelope],
+        now: chrono::DateTime<Utc>,
+    ) -> (Vec<FactEnvelope>, Vec<FactTrustDecision>) {
+        let mut resolved = raw_facts.to_vec();
+        let mut trust_decisions = Vec::new();
+        for fact in provided_trusted {
+            let source_id = &fact.source_id;
+            let _source_class = &fact.source_class;
+            let is_registered = self.registry.sources.contains_key(source_id);
+            if !is_registered {
+                trust_decisions.push(FactTrustDecision {
+                    fact_path: fact.path.clone(),
+                    required_sources: vec![],
+                    observed_source: fact.source_class,
+                    trusted: false,
+                    reason: "unregistered_source".to_string(),
+                    evidence_ref: fact.evidence_ref.clone(),
+                });
+                continue;
+            }
+            let source = self.registry.get(source_id).unwrap();
+            // Verify source_class matches the registry entry's declared class
+            if fact.source_class != source.source_class {
+                trust_decisions.push(FactTrustDecision {
+                    fact_path: fact.path.clone(),
+                    required_sources: vec![source.source_class],
+                    observed_source: fact.source_class,
+                    trusted: false,
+                    reason: "source_class_mismatch".to_string(),
+                    evidence_ref: fact.evidence_ref.clone(),
+                });
+                continue;
+            }
+            let path_allowed = source.allowed_paths.iter().any(|allowed_path| {
+                fact.path == *allowed_path
+                    || if allowed_path.ends_with('.') {
+                        fact.path.starts_with(allowed_path)
+                    } else {
+                        fact.path.starts_with(&format!("{}.", allowed_path))
+                    }
+            });
+            if !path_allowed {
+                trust_decisions.push(FactTrustDecision {
+                    fact_path: fact.path.clone(),
+                    required_sources: vec![source.source_class],
+                    observed_source: fact.source_class,
+                    trusted: false,
+                    reason: "path_not_allowed".to_string(),
+                    evidence_ref: fact.evidence_ref.clone(),
+                });
+                continue;
+            }
+            if source.evidence_required && fact.evidence_ref.is_none() {
+                trust_decisions.push(FactTrustDecision {
+                    fact_path: fact.path.clone(),
+                    required_sources: vec![source.source_class],
+                    observed_source: fact.source_class,
+                    trusted: false,
+                    reason: "missing_evidence_ref".to_string(),
+                    evidence_ref: None,
+                });
+                continue;
+            }
+            if source.signature_required && fact.signature.is_none() {
+                trust_decisions.push(FactTrustDecision {
+                    fact_path: fact.path.clone(),
+                    required_sources: vec![source.source_class],
+                    observed_source: fact.source_class,
+                    trusted: false,
+                    reason: "missing_signature".to_string(),
+                    evidence_ref: fact.evidence_ref.clone(),
+                });
+                continue;
+            }
+            if !fact.is_fresh(now) {
+                trust_decisions.push(FactTrustDecision {
+                    fact_path: fact.path.clone(),
+                    required_sources: vec![source.source_class],
+                    observed_source: fact.source_class,
+                    trusted: false,
+                    reason: "stale_fact".to_string(),
+                    evidence_ref: fact.evidence_ref.clone(),
+                });
+                continue;
+            }
+            trust_decisions.push(FactTrustDecision {
+                fact_path: fact.path.clone(),
+                required_sources: vec![source.source_class],
+                observed_source: fact.source_class,
+                trusted: true,
+                reason: "trusted".to_string(),
+                evidence_ref: fact.evidence_ref.clone(),
+            });
+            if let Some(pos) = resolved.iter().position(|f| f.path == fact.path) {
+                resolved[pos] = fact.clone();
+            } else {
+                resolved.push(fact.clone());
+            }
+        }
+        (resolved, trust_decisions)
+    }
+}

package/domainforge-core/src/authority/mod.rs ADDED Viewed

@@ -0,0 +1,25 @@
+pub mod compiler;
+pub mod environment;
+pub mod error;
+pub mod fact_resolver;
+pub mod pack;
+pub mod policy;
+pub mod resolver;
+pub mod trace;
+pub mod transform;
+pub mod types;
+pub use compiler::{
+    CompatibilityLoweringAuditor, LoweredPolicy, PolicyCompiler, RawFactRequirement, RawPolicy,
+};
+pub use environment::{AuthorityEnvironment, AuthorityEnvironmentConfig};
+pub use error::{AuthorityError, AuthorityErrorCode};
+pub use fact_resolver::{FactResolver, FactSourceRegistry};
+pub use pack::{compute_pack_hash, AuthorityPack};
+pub use policy::{
+    AuthorityPolicy, ConditionPredicates, ObligationSpec, OverrideSpec, StructuralPredicates,
+};
+pub use resolver::AuthorityResolver;
+pub use trace::{AuthorityTrace, AuthorityTraceEmitter, EvidenceSink};
+pub use transform::{DerivedFactEngine, FactTransformRegistry};
+pub use types::*;

package/domainforge-core/src/authority/pack.rs ADDED Viewed

@@ -0,0 +1,133 @@
+use serde::{Deserialize, Serialize};
+use super::error::AuthorityError;
+use super::policy::AuthorityPolicy;
+use super::types::*;
+#[derive(Serialize)]
+struct PackHashPayload<'a> {
+    id: &'a str,
+    version: &'a str,
+    semantics_version: &'a str,
+    required_specificity_profile: &'a str,
+    policies: &'a [AuthorityPolicy],
+}
+pub fn compute_pack_hash(
+    id: &str,
+    version: &str,
+    semantics_version: &str,
+    required_specificity_profile: &str,
+    policies: &[AuthorityPolicy],
+) -> Result<String, AuthorityError> {
+    let payload = PackHashPayload {
+        id,
+        version,
+        semantics_version,
+        required_specificity_profile,
+        policies,
+    };
+    let canonical = serde_json::to_string(&payload).map_err(|e| {
+        AuthorityError::new(
+            super::error::AuthorityErrorCode::InvalidPolicyPack,
+            format!(
+                "Failed to serialize pack '{}' for hash computation: {}",
+                id, e
+            ),
+        )
+    })?;
+    Ok(compute_deterministic_hash(&canonical))
+}
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct AuthorityPack {
+    pub id: String,
+    pub version: String,
+    pub semantics_version: String,
+    pub required_specificity_profile: String,
+    pub policies: Vec<AuthorityPolicy>,
+    pub hash: String,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub signature: Option<String>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub owner: Option<String>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub created_at: Option<String>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub approved_by: Option<String>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub evidence_ref: Option<String>,
+}
+impl AuthorityPack {
+    pub fn validate(&self) -> Result<(), AuthorityError> {
+        if self.id.is_empty() {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::InvalidPolicyPack,
+                "Pack id is required",
+            ));
+        }
+        if self.version.is_empty() {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::InvalidPolicyPack,
+                format!("Pack '{}' version is required", self.id),
+            ));
+        }
+        for policy in &self.policies {
+            policy.validate()?;
+        }
+        Ok(())
+    }
+    pub fn validate_hash(&self) -> Result<(), AuthorityError> {
+        if self.hash.is_empty() {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::InvalidPolicyPack,
+                format!("Pack '{}' hash is required", self.id),
+            ));
+        }
+        let payload = PackHashPayload {
+            id: &self.id,
+            version: &self.version,
+            semantics_version: &self.semantics_version,
+            required_specificity_profile: &self.required_specificity_profile,
+            policies: &self.policies,
+        };
+        let canonical = serde_json::to_string(&payload).map_err(|e| {
+            AuthorityError::new(
+                super::error::AuthorityErrorCode::InvalidPolicyPack,
+                format!(
+                    "Pack '{}' failed to serialize for hash validation: {}",
+                    self.id, e
+                ),
+            )
+        })?;
+        let computed = compute_deterministic_hash(&canonical);
+        if self.hash != computed {
+            return Err(AuthorityError::pack_hash_mismatch(&self.id));
+        }
+        Ok(())
+    }
+    pub fn validate_semantics_version(&self, supported: &str) -> Result<(), AuthorityError> {
+        if self.semantics_version != supported {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::InvalidPolicyPack,
+                format!(
+                    "Pack '{}' requires semantics '{}' but '{}' is supported",
+                    self.id, self.semantics_version, supported
+                ),
+            ));
+        }
+        Ok(())
+    }
+    pub fn identity_key(&self) -> String {
+        format!("{}@{}#{}", self.id, self.version, self.hash)
+    }
+}

package/domainforge-core/src/authority/policy.rs ADDED Viewed

@@ -0,0 +1,224 @@
+use serde::{Deserialize, Serialize};
+use std::collections::HashMap;
+use super::error::AuthorityError;
+use super::types::*;
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct AuthorityPolicy {
+    pub policy_id: String,
+    pub modality: PolicyModality,
+    pub priority: i32,
+    pub applies_to: StructuralPredicates,
+    #[serde(default)]
+    pub when: Option<ConditionPredicates>,
+    #[serde(default)]
+    pub requires_fact: Vec<FactRequirement>,
+    pub semantics_version: String,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub override_spec: Option<OverrideSpec>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub obligation_spec: Option<ObligationSpec>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub description: Option<String>,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub evidence_ref: Option<String>,
+}
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct StructuralPredicates {
+    #[serde(flatten)]
+    pub predicates: HashMap<String, serde_json::Value>,
+}
+impl StructuralPredicates {
+    pub fn matches(&self, request: &AuthorityRequest) -> bool {
+        for (key, expected) in &self.predicates {
+            let actual = match key.as_str() {
+                "action" => serde_json::Value::String(request.operation.clone()),
+                "actor.id" => serde_json::Value::String(request.actor.id.clone()),
+                "actor.role" => request
+                    .actor
+                    .role
+                    .as_ref()
+                    .map(|r| serde_json::Value::String(r.clone()))
+                    .unwrap_or(serde_json::Value::Null),
+                "resource.id" => request
+                    .resource
+                    .id
+                    .as_ref()
+                    .map(|r| serde_json::Value::String(r.clone()))
+                    .unwrap_or(serde_json::Value::Null),
+                "resource.type" => request
+                    .resource
+                    .type_
+                    .as_ref()
+                    .map(|r| serde_json::Value::String(r.clone()))
+                    .unwrap_or(serde_json::Value::Null),
+                _ => request
+                    .metadata
+                    .get(key)
+                    .cloned()
+                    .unwrap_or(serde_json::Value::Null),
+            };
+            if *expected != actual {
+                return false;
+            }
+        }
+        true
+    }
+    pub fn specificity_score(&self, profile: &SpecificityProfile) -> SpecificityVector {
+        let mut dims = Vec::new();
+        for dim_name in &profile.dimensions {
+            let score = self
+                .predicates
+                .iter()
+                .filter(|(k, _)| *k == dim_name || k.starts_with(&format!("{}.", dim_name)))
+                .count() as u32;
+            dims.push((dim_name.clone(), score));
+        }
+        SpecificityVector::new(dims)
+    }
+}
+#[derive(Debug, Clone, Serialize, Deserialize, Default)]
+pub struct ConditionPredicates {
+    #[serde(flatten)]
+    pub conditions: HashMap<String, serde_json::Value>,
+}
+impl ConditionPredicates {
+    pub fn evaluate(&self, facts: &[FactEnvelope]) -> Result<ThreeValuedResult, AuthorityError> {
+        if self.conditions.is_empty() {
+            return Ok(ThreeValuedResult::True);
+        }
+        let mut results = Vec::new();
+        for (path, expected) in &self.conditions {
+            let fact = facts.iter().find(|f| f.path == *path);
+            match fact {
+                Some(f) if f.value.is_null() => {
+                    results.push(ThreeValuedResult::Unknown);
+                }
+                Some(f) => {
+                    if let Some(obj) = expected.as_object() {
+                        if let Some(neq) = obj.get("__neq") {
+                            results.push(if &f.value != neq {
+                                ThreeValuedResult::True
+                            } else {
+                                ThreeValuedResult::False
+                            });
+                            continue;
+                        }
+                    }
+                    if &f.value == expected {
+                        results.push(ThreeValuedResult::True);
+                    } else {
+                        results.push(ThreeValuedResult::False);
+                    }
+                }
+                None => {
+                    results.push(ThreeValuedResult::Unknown);
+                }
+            }
+        }
+        let all_true = results.iter().all(|r| *r == ThreeValuedResult::True);
+        let any_false = results.contains(&ThreeValuedResult::False);
+        let any_unknown = results.contains(&ThreeValuedResult::Unknown);
+        if any_false {
+            Ok(ThreeValuedResult::False)
+        } else if any_unknown {
+            Ok(ThreeValuedResult::Unknown)
+        } else if all_true {
+            Ok(ThreeValuedResult::True)
+        } else {
+            Ok(ThreeValuedResult::Unknown)
+        }
+    }
+    pub fn condition_specificity_score(&self, profile: &SpecificityProfile) -> u32 {
+        let condition_dim = "condition";
+        if profile.dimensions.contains(&condition_dim.to_string()) {
+            self.conditions.len() as u32
+        } else {
+            0
+        }
+    }
+}
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct OverrideSpec {
+    pub permits: String,
+}
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct ObligationSpec {
+    pub action: String,
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub deadline: Option<String>,
+}
+impl AuthorityPolicy {
+    pub fn validate(&self) -> Result<(), AuthorityError> {
+        if self.policy_id.is_empty() {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::PolicyParseError,
+                "policy_id is required",
+            ));
+        }
+        if self.modality == PolicyModality::Override && self.override_spec.is_none() {
+            return Err(AuthorityError::new(
+                super::error::AuthorityErrorCode::PolicyParseError,
+                format!(
+                    "Override policy '{}' must have override_spec",
+                    self.policy_id
+                ),
+            ));
+        }
+        Ok(())
+    }
+    pub fn is_candidate(&self, request: &AuthorityRequest) -> bool {
+        self.applies_to.matches(request)
+    }
+    pub fn evaluate_conditions(
+        &self,
+        facts: &[FactEnvelope],
+    ) -> Result<ThreeValuedResult, AuthorityError> {
+        match &self.when {
+            Some(cond) => cond.evaluate(facts),
+            None => Ok(ThreeValuedResult::True),
+        }
+    }
+    pub fn check_fact_requirements(
+        &self,
+        facts: &[FactEnvelope],
+        now: &chrono::DateTime<chrono::Utc>,
+    ) -> Vec<(FactRequirement, bool, Option<FactEnvelope>)> {
+        self.requires_fact
+            .iter()
+            .map(|req| {
+                let matched = facts.iter().find(|f| req.is_satisfied_by(f, now));
+                let satisfied = matched.is_some();
+                (req.clone(), satisfied, matched.cloned())
+            })
+            .collect()
+    }
+    pub fn compute_specificity(&self, profile: &SpecificityProfile) -> SpecificityVector {
+        let mut dims = self.applies_to.specificity_score(profile).dimensions;
+        if let Some(ref when) = self.when {
+            let cond_idx = dims.iter().position(|(d, _)| d == "condition");
+            if let Some(idx) = cond_idx {
+                dims[idx].1 += when.condition_specificity_score(profile);
+            }
+        }
+        SpecificityVector::new(dims)
+    }
+}