npm - domainforge - Versions diffs - 0.13.0 - Mend

domainforge 0.13.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (481) hide show

package/.cargo/config.toml +6 -0
package/.claude/settings.local.json +18 -0
package/.coderabbit.yml +43 -0
package/.codex/skills/release-management/SKILL.md +151 -0
package/.codex/skills/release-management/agents/openai.yaml +4 -0
package/.github/actions/decrypt-secrets/action.yml +121 -0
package/.github/agents/Coder.agent.md +97 -0
package/.github/agents/DeepResearch.agent.md +61 -0
package/.github/chatmodes/tdd.vibepro.chatmode.md +1183 -0
package/.github/copilot-instructions.md +13 -0
package/.github/dependabot.yml +68 -0
package/.github/workflows/README.md +165 -0
package/.github/workflows/ci.yml +335 -0
package/.github/workflows/dependabot-automerge.yml +114 -0
package/.github/workflows/dependency-review.yml +27 -0
package/.github/workflows/deploy.yml +87 -0
package/.github/workflows/prepare-release.yml +168 -0
package/.github/workflows/release-crates.yml +42 -0
package/.github/workflows/release-npm.yml +137 -0
package/.github/workflows/release-please.yml +29 -0
package/.github/workflows/release-pypi.yml +96 -0
package/.gitkeep +1 -0
package/.release-please-manifest.json +5 -0
package/.sea-registry.toml +10 -0
package/.serena/project.yml +133 -0
package/.sops.yaml +10 -0
package/AGENTS.md +216 -0
package/CHANGELOG.md +400 -0
package/CLAUDE.md +62 -0
package/CONTRIBUTING.md +323 -0
package/Cargo.lock +3612 -0
package/Cargo.toml +12 -0
package/LICENSE +201 -0
package/README.md +660 -0
package/README_PYTHON.md +256 -0
package/README_TYPESCRIPT.md +305 -0
package/README_WASM.md +329 -0
package/RELEASE_NOTES.md +41 -0
package/bun.lock +378 -0
package/bunfig.toml +11 -0
package/check_output.txt +83 -0
package/clippy_output.txt +80 -0
package/commitlint.config.cjs +8 -0
package/deny.toml +42 -0
package/devbox.json +14 -0
package/devbox.lock +76 -0
package/docs/RELEASE_PROCESS.md +360 -0
package/docs/diagnostics.md +161 -0
package/docs/doc_guidelines.md +53 -0
package/docs/explanations/README.md +21 -0
package/docs/explanations/architecture-overview.md +109 -0
package/docs/explanations/cross-language-binding-strategy.md +68 -0
package/docs/explanations/graph-store-design.md +47 -0
package/docs/explanations/performance-benchmarks.md +63 -0
package/docs/explanations/policy-evaluation-logic.md +106 -0
package/docs/explanations/semantic-modeling-concepts.md +109 -0
package/docs/explanations/three-valued-logic.md +66 -0
package/docs/explanations/versioning-strategy.md +45 -0
package/docs/governance.md +168 -0
package/docs/how-tos/README.md +46 -0
package/docs/how-tos/ci-cd-validation.md +93 -0
package/docs/how-tos/create-custom-units.md +125 -0
package/docs/how-tos/define-policies.md +119 -0
package/docs/how-tos/export-to-calm.md +110 -0
package/docs/how-tos/export-to-protobuf.md +312 -0
package/docs/how-tos/extend-grammar.md +133 -0
package/docs/how-tos/generate-rdf-turtle.md +106 -0
package/docs/how-tos/import-from-calm.md +114 -0
package/docs/how-tos/import-from-sbvr.md +249 -0
package/docs/how-tos/install-cli.md +126 -0
package/docs/how-tos/parse-sea-files.md +132 -0
package/docs/how-tos/policy-evaluation-modes.md +30 -0
package/docs/how-tos/run-cross-language-tests.md +115 -0
package/docs/how-tos/troubleshoot-napi-builds.md +55 -0
package/docs/how-tos/use-modules-imports.md +285 -0
package/docs/index.md +13 -0
package/docs/plans/canonical-normalizer.md +121 -0
package/docs/plans/cd_improvement.md +112 -0
package/docs/plans/cli-ast.md +29 -0
package/docs/plans/expression-bindings-and-normalizer-integration.md +174 -0
package/docs/plans/protobuf_advanced_features_plan.md +597 -0
package/docs/plans/protobuf_plan.yml +525 -0
package/docs/plans/refactor_dsl_architecture.md +131 -0
package/docs/plans/release-plan.md +163 -0
package/docs/plans/sea_fmt_implementation_plan.md +516 -0
package/docs/playbooks/README.md +18 -0
package/docs/playbooks/adding-new-primitive.md +68 -0
package/docs/playbooks/debugging-parser-failures.md +42 -0
package/docs/playbooks/local-release-preparation.md +139 -0
package/docs/playbooks/migrating-schema-versions.md +43 -0
package/docs/playbooks/onboarding-contributors.md +64 -0
package/docs/playbooks/releasing-beta.md +86 -0
package/docs/playbooks/secret-management.md +64 -0
package/docs/reference/README.md +199 -0
package/docs/reference/ast-json-api.md +427 -0
package/docs/reference/calm-mapping.md +519 -0
package/docs/reference/cli-commands.md +588 -0
package/docs/reference/configuration.md +202 -0
package/docs/reference/error-codes.md +664 -0
package/docs/reference/generated-artifacts-policy.md +53 -0
package/docs/reference/grammar-spec.md +255 -0
package/docs/reference/primitives-api.md +317 -0
package/docs/reference/protobuf-api.md +426 -0
package/docs/reference/python-api.md +485 -0
package/docs/reference/registry.md +50 -0
package/docs/reference/sea-dsl-ai-cheatsheet.yaml +913 -0
package/docs/reference/security-model.md +74 -0
package/docs/reference/typescript-api.md +508 -0
package/docs/reference/wasm-api.md +420 -0
package/docs/semantic-pack-review.md +144 -0
package/docs/semantic-pack-signing.md +234 -0
package/docs/semantic-packs.md +284 -0
package/docs/specs/ADR-001-sea-dsl-semantic-source-of-truth.md +33 -0
package/docs/specs/ADR-002-projection-first-class-construct.md +50 -0
package/docs/specs/ADR-003-protobuf-projection-target.md +51 -0
package/docs/specs/ADR-004-projection-compatibility-semantics.md +57 -0
package/docs/specs/ADR-005-multi-language-support-strategy.md +112 -0
package/docs/specs/ADR-006-error-handling-strategy.md +115 -0
package/docs/specs/ADR-007-policy-evaluation-engine.md +95 -0
package/docs/specs/ADR-008-knowledge-graph-integration.md +90 -0
package/docs/specs/ADR-009-module-resolution-strategy.md +115 -0
package/docs/specs/ADR-010-unit-system.md +106 -0
package/docs/specs/PRD-001-sea-projection-framework.md +155 -0
package/docs/specs/PRD-002-sea-cli-tooling.md +169 -0
package/docs/specs/PRD-003-dsl-core-capabilities.md +275 -0
package/docs/specs/README.md +62 -0
package/docs/specs/SDS-001-protobuf-projection-engine.md +451 -0
package/docs/specs/SDS-002-sea-core-architecture.md +268 -0
package/docs/specs/SDS-003-parser-semantic-graph.md +377 -0
package/docs/specs/SDS-004-policy-engine-design.md +362 -0
package/docs/specs/SDS-005-knowledge-graph-module.md +364 -0
package/docs/specs/SDS-006-calm-integration.md +367 -0
package/docs/specs/SDS-007-sbvr-import.md +347 -0
package/docs/templates/template_explanation.md +14 -0
package/docs/templates/template_howto.md +21 -0
package/docs/templates/template_playbook.md +21 -0
package/docs/templates/template_reference.md +17 -0
package/docs/templates/template_tutorial.md +24 -0
package/docs/tutorials/README.md +12 -0
package/docs/tutorials/first-sea-model.md +85 -0
package/docs/tutorials/getting-started.md +98 -0
package/docs/tutorials/python-binding-quickstart.md +107 -0
package/docs/tutorials/typescript-binding-quickstart.md +91 -0
package/docs/tutorials/wasm-in-browser.md +75 -0
package/domainforge-core/CHANGELOG.md +138 -0
package/domainforge-core/Cargo.toml +101 -0
package/domainforge-core/MIGRATING.md +32 -0
package/domainforge-core/README.md +197 -0
package/domainforge-core/benchmark_results.txt +51 -0
package/domainforge-core/build.rs +6 -0
package/domainforge-core/deny.toml +31 -0
package/domainforge-core/docs/specs/projections/sbvr_kg_mapping.md +43 -0
package/domainforge-core/examples/basic.sea +7 -0
package/domainforge-core/examples/cli/import_export_workflow.sh +38 -0
package/domainforge-core/examples/cli/validate_example.sh +30 -0
package/domainforge-core/examples/evolution_semantics.sea +31 -0
package/domainforge-core/examples/parser_demo.rs +203 -0
package/domainforge-core/grammar/sea.pest +408 -0
package/domainforge-core/schemas/calm-v1.schema.json +170 -0
package/domainforge-core/schemas/shacl/sea_shapes.ttl +19 -0
package/domainforge-core/src/authority/compiler.rs +309 -0
package/domainforge-core/src/authority/environment.rs +203 -0
package/domainforge-core/src/authority/error.rs +164 -0
package/domainforge-core/src/authority/fact_resolver.rs +224 -0
package/domainforge-core/src/authority/mod.rs +25 -0
package/domainforge-core/src/authority/pack.rs +133 -0
package/domainforge-core/src/authority/policy.rs +224 -0
package/domainforge-core/src/authority/resolver.rs +446 -0
package/domainforge-core/src/authority/trace.rs +217 -0
package/domainforge-core/src/authority/transform.rs +168 -0
package/domainforge-core/src/authority/types.rs +617 -0
package/domainforge-core/src/bin/domainforge.rs +25 -0
package/domainforge-core/src/calm/export.rs +538 -0
package/domainforge-core/src/calm/import.rs +1220 -0
package/domainforge-core/src/calm/mod.rs +9 -0
package/domainforge-core/src/calm/models.rs +108 -0
package/domainforge-core/src/calm/sbvr_import.rs +9 -0
package/domainforge-core/src/cli/authority.rs +149 -0
package/domainforge-core/src/cli/format.rs +85 -0
package/domainforge-core/src/cli/import.rs +133 -0
package/domainforge-core/src/cli/mod.rs +64 -0
package/domainforge-core/src/cli/normalize.rs +180 -0
package/domainforge-core/src/cli/pack.rs +904 -0
package/domainforge-core/src/cli/parse.rs +112 -0
package/domainforge-core/src/cli/project.rs +294 -0
package/domainforge-core/src/cli/registry.rs +41 -0
package/domainforge-core/src/cli/test.rs +12 -0
package/domainforge-core/src/cli/validate.rs +195 -0
package/domainforge-core/src/cli/validate_kg.rs +80 -0
package/domainforge-core/src/concept_id.rs +89 -0
package/domainforge-core/src/error/diagnostics.rs +426 -0
package/domainforge-core/src/error/fuzzy.rs +253 -0
package/domainforge-core/src/error/mod.rs +13 -0
package/domainforge-core/src/formatter/comments.rs +223 -0
package/domainforge-core/src/formatter/config.rs +114 -0
package/domainforge-core/src/formatter/mod.rs +22 -0
package/domainforge-core/src/formatter/printer.rs +906 -0
package/domainforge-core/src/graph/mod.rs +858 -0
package/domainforge-core/src/graph/to_ast.rs +66 -0
package/domainforge-core/src/kg.rs +1476 -0
package/domainforge-core/src/kg_import.rs +251 -0
package/domainforge-core/src/lib.rs +203 -0
package/domainforge-core/src/module/mod.rs +1 -0
package/domainforge-core/src/module/resolver.rs +260 -0
package/domainforge-core/src/parser/ast.rs +2919 -0
package/domainforge-core/src/parser/ast_convert.rs +494 -0
package/domainforge-core/src/parser/ast_schema.rs +491 -0
package/domainforge-core/src/parser/error.rs +291 -0
package/domainforge-core/src/parser/lint.rs +39 -0
package/domainforge-core/src/parser/mod.rs +193 -0
package/domainforge-core/src/parser/printer.rs +702 -0
package/domainforge-core/src/parser/profiles.rs +71 -0
package/domainforge-core/src/parser/string_utils.rs +138 -0
package/domainforge-core/src/patterns.rs +68 -0
package/domainforge-core/src/policy/core.rs +1148 -0
package/domainforge-core/src/policy/expression.rs +399 -0
package/domainforge-core/src/policy/mod.rs +18 -0
package/domainforge-core/src/policy/normalize.rs +1028 -0
package/domainforge-core/src/policy/quantifier.rs +940 -0
package/domainforge-core/src/policy/three_valued.rs +140 -0
package/domainforge-core/src/policy/three_valued_microbench.rs +104 -0
package/domainforge-core/src/policy/type_inference.rs +67 -0
package/domainforge-core/src/policy/violation.rs +36 -0
package/domainforge-core/src/primitives/concept_change.rs +61 -0
package/domainforge-core/src/primitives/entity.rs +224 -0
package/domainforge-core/src/primitives/flow.rs +111 -0
package/domainforge-core/src/primitives/instance.rs +93 -0
package/domainforge-core/src/primitives/mapping_contract.rs +50 -0
package/domainforge-core/src/primitives/metric.rs +79 -0
package/domainforge-core/src/primitives/mod.rs +25 -0
package/domainforge-core/src/primitives/projection_contract.rs +50 -0
package/domainforge-core/src/primitives/quantity.rs +56 -0
package/domainforge-core/src/primitives/relation.rs +68 -0
package/domainforge-core/src/primitives/resource.rs +237 -0
package/domainforge-core/src/primitives/resource_instance.rs +88 -0
package/domainforge-core/src/primitives/role.rs +49 -0
package/domainforge-core/src/projection/buf.rs +404 -0
package/domainforge-core/src/projection/contracts.rs +22 -0
package/domainforge-core/src/projection/engine.rs +19 -0
package/domainforge-core/src/projection/mod.rs +16 -0
package/domainforge-core/src/projection/protobuf.rs +3331 -0
package/domainforge-core/src/projection/registry.rs +43 -0
package/domainforge-core/src/python/authority.rs +253 -0
package/domainforge-core/src/python/error.rs +227 -0
package/domainforge-core/src/python/formatter.rs +86 -0
package/domainforge-core/src/python/graph.rs +366 -0
package/domainforge-core/src/python/mod.rs +9 -0
package/domainforge-core/src/python/policy.rs +651 -0
package/domainforge-core/src/python/primitives.rs +796 -0
package/domainforge-core/src/python/registry.rs +98 -0
package/domainforge-core/src/python/semantic_pack.rs +619 -0
package/domainforge-core/src/python/units.rs +96 -0
package/domainforge-core/src/registry/mod.rs +432 -0
package/domainforge-core/src/registry/tests.rs +210 -0
package/domainforge-core/src/sbvr.rs +744 -0
package/domainforge-core/src/semantic_pack/builder.rs +470 -0
package/domainforge-core/src/semantic_pack/canonical_json.rs +184 -0
package/domainforge-core/src/semantic_pack/diagnostics.rs +214 -0
package/domainforge-core/src/semantic_pack/diff.rs +216 -0
package/domainforge-core/src/semantic_pack/mod.rs +31 -0
package/domainforge-core/src/semantic_pack/pack_set.rs +240 -0
package/domainforge-core/src/semantic_pack/resolver.rs +437 -0
package/domainforge-core/src/semantic_pack/review.rs +125 -0
package/domainforge-core/src/semantic_pack/schema.rs +342 -0
package/domainforge-core/src/semantic_pack/signing.rs +105 -0
package/domainforge-core/src/semantic_pack/validator.rs +368 -0
package/domainforge-core/src/semantic_version.rs +140 -0
package/domainforge-core/src/test_utils.rs +12 -0
package/domainforge-core/src/typescript/authority.rs +184 -0
package/domainforge-core/src/typescript/error.rs +146 -0
package/domainforge-core/src/typescript/formatter.rs +76 -0
package/domainforge-core/src/typescript/graph.rs +391 -0
package/domainforge-core/src/typescript/mod.rs +9 -0
package/domainforge-core/src/typescript/policy.rs +564 -0
package/domainforge-core/src/typescript/primitives.rs +784 -0
package/domainforge-core/src/typescript/registry.rs +88 -0
package/domainforge-core/src/typescript/semantic_pack.rs +470 -0
package/domainforge-core/src/typescript/units.rs +76 -0
package/domainforge-core/src/units/mod.rs +462 -0
package/domainforge-core/src/uuid_module.rs +42 -0
package/domainforge-core/src/validation_error.rs +818 -0
package/domainforge-core/src/validation_result.rs +30 -0
package/domainforge-core/src/wasm/authority.rs +192 -0
package/domainforge-core/src/wasm/error.rs +145 -0
package/domainforge-core/src/wasm/formatter.rs +69 -0
package/domainforge-core/src/wasm/graph.rs +471 -0
package/domainforge-core/src/wasm/mod.rs +16 -0
package/domainforge-core/src/wasm/policy.rs +607 -0
package/domainforge-core/src/wasm/primitives.rs +295 -0
package/domainforge-core/src/wasm/semantic_pack.rs +471 -0
package/domainforge-core/src/wasm/units.rs +62 -0
package/domainforge-core/std/aws.sea +6 -0
package/domainforge-core/std/core.sea +6 -0
package/domainforge-core/std/http.sea +27 -0
package/domainforge-core/tests/aggregation_enhanced_tests.rs +162 -0
package/domainforge-core/tests/aggregation_eval_tests.rs +248 -0
package/domainforge-core/tests/aggregation_integration_tests.rs +379 -0
package/domainforge-core/tests/aggregation_parser_tests.rs +92 -0
package/domainforge-core/tests/aggregation_tests.rs +102 -0
package/domainforge-core/tests/authority_conformance_tests.rs +1173 -0
package/domainforge-core/tests/calm_round_trip_tests.rs +283 -0
package/domainforge-core/tests/calm_schema_validation_tests.rs +137 -0
package/domainforge-core/tests/cast_operator_tests.rs +85 -0
package/domainforge-core/tests/cli_binary_check.rs +37 -0
package/domainforge-core/tests/cli_import_tests.rs +291 -0
package/domainforge-core/tests/cli_path_traversal_tests.rs +124 -0
package/domainforge-core/tests/cli_tests.rs +63 -0
package/domainforge-core/tests/diagnostics_tests.rs +203 -0
package/domainforge-core/tests/dimension_unit_tests.rs +80 -0
package/domainforge-core/tests/entity_tests.rs +69 -0
package/domainforge-core/tests/evolution_semantics_tests.rs +157 -0
package/domainforge-core/tests/flow_tests.rs +78 -0
package/domainforge-core/tests/flow_unit_validation_tests.rs +31 -0
package/domainforge-core/tests/graph_integration_tests.rs +218 -0
package/domainforge-core/tests/graph_tests.rs +626 -0
package/domainforge-core/tests/import_parsing_tests.rs +23 -0
package/domainforge-core/tests/instance_integration_tests.rs +98 -0
package/domainforge-core/tests/instance_parsing_tests.rs +58 -0
package/domainforge-core/tests/instance_tests.rs +61 -0
package/domainforge-core/tests/kg_uri_encoding_tests.rs +53 -0
package/domainforge-core/tests/lint_tests.rs +19 -0
package/domainforge-core/tests/metric_tests.rs +143 -0
package/domainforge-core/tests/module_resolution_tests.rs +100 -0
package/domainforge-core/tests/namespace_registry_tests.rs +247 -0
package/domainforge-core/tests/null_handling_tests.rs +26 -0
package/domainforge-core/tests/parser_ast_v3.rs +53 -0
package/domainforge-core/tests/parser_dimension_registry_tests.rs +20 -0
package/domainforge-core/tests/parser_integration_tests.rs +294 -0
package/domainforge-core/tests/parser_metadata_tests.rs +97 -0
package/domainforge-core/tests/parser_resource_domain_only_graph_test.rs +21 -0
package/domainforge-core/tests/parser_resource_limits_tests.rs +122 -0
package/domainforge-core/tests/parser_tests.rs +512 -0
package/domainforge-core/tests/pattern_semantics_tests.rs +87 -0
package/domainforge-core/tests/phase_14_determinism_tests.rs +166 -0
package/domainforge-core/tests/phase_15_validation_error_tests.rs +136 -0
package/domainforge-core/tests/phase_16_unicode_tests.rs +248 -0
package/domainforge-core/tests/phase_17_export_tests.rs +285 -0
package/domainforge-core/tests/phase_17_round_trip_tests.rs +264 -0
package/domainforge-core/tests/policy_tests.rs +635 -0
package/domainforge-core/tests/primitives_integration_tests.rs +151 -0
package/domainforge-core/tests/print_rdf_xml.rs +14 -0
package/domainforge-core/tests/printer_tests.rs +204 -0
package/domainforge-core/tests/profile_tests.rs +35 -0
package/domainforge-core/tests/projection_contracts_tests.rs +154 -0
package/domainforge-core/tests/protobuf_projection_tests.rs +199 -0
package/domainforge-core/tests/quantity_tests.rs +41 -0
package/domainforge-core/tests/rdf_xml_typed_literal_tests.rs +105 -0
package/domainforge-core/tests/registry_schema_tests.rs +33 -0
package/domainforge-core/tests/resource_tests.rs +50 -0
package/domainforge-core/tests/resource_unit_tests.rs +24 -0
package/domainforge-core/tests/roles_relations_tests.rs +61 -0
package/domainforge-core/tests/round_trip_tests.rs +34 -0
package/domainforge-core/tests/runtime_toggle_tests.rs +70 -0
package/domainforge-core/tests/sbvr_fact_schema_tests.rs +60 -0
package/domainforge-core/tests/sbvr_flow_facts_tests.rs +55 -0
package/domainforge-core/tests/sbvr_parsing_tests.rs +53 -0
package/domainforge-core/tests/semantic_pack_alias_resolution.rs +197 -0
package/domainforge-core/tests/semantic_pack_build.rs +302 -0
package/domainforge-core/tests/semantic_pack_consumer_smoke.rs +150 -0
package/domainforge-core/tests/semantic_pack_pack_set.rs +160 -0
package/domainforge-core/tests/semantic_pack_signing.rs +157 -0
package/domainforge-core/tests/semantic_pack_three_valued.rs +250 -0
package/domainforge-core/tests/semantic_pack_validate.rs +196 -0
package/domainforge-core/tests/std_lib_tests.rs +37 -0
package/domainforge-core/tests/temporal_evaluation_tests.rs +159 -0
package/domainforge-core/tests/temporal_semantics_tests.rs +214 -0
package/domainforge-core/tests/three_valued_quantifiers_tests.rs +164 -0
package/domainforge-core/tests/turtle_entity_export_tests.rs +38 -0
package/domainforge-core/tests/turtle_escaping_tests.rs +53 -0
package/domainforge-core/tests/turtle_resource_export_tests.rs +34 -0
package/domainforge-core/tests/type_inference_tests.rs +40 -0
package/domainforge-core/tests/unicode_validation_tests.rs +169 -0
package/domainforge-core/tests/unit_tests.rs +81 -0
package/domainforge-core/tests/validate_tests.rs +38 -0
package/domainforge-core/tests/validation_unit_mismatch_tests.rs +83 -0
package/domainforge-core/tests/wasm_tests.rs +229 -0
package/domainforge-python/CHANGELOG-python.md +12 -0
package/domainforge-python/MIGRATING.md +24 -0
package/domainforge-python/README.md +256 -0
package/domainforge-python/domainforge/__init__.py +95 -0
package/domainforge-python/domainforge/domainforge.pyi +519 -0
package/domainforge-python/pyproject.toml +36 -0
package/domainforge-typescript/CHANGELOG-typescript.md +12 -0
package/domainforge-typescript/LICENSE +201 -0
package/domainforge-typescript/MIGRATING.md +24 -0
package/domainforge-typescript/README.md +305 -0
package/domainforge-typescript/index.d.ts +452 -0
package/domainforge-typescript/index.js +361 -0
package/domainforge-typescript/package.json +60 -0
package/example.js +61 -0
package/examples/browser.html +366 -0
package/examples/namespaces/finance/cashflow.sea +5 -0
package/examples/namespaces/logistics/core.sea +7 -0
package/examples/observability_metrics.sea +38 -0
package/fixtures/semantic_packs/acme_procurement/domain/entities.sea +39 -0
package/fixtures/semantic_packs/acme_procurement/domain/metrics.sea +11 -0
package/fixtures/semantic_packs/acme_procurement/domain/relations.sea +7 -0
package/fixtures/semantic_packs/acme_procurement/domain/resources.sea +9 -0
package/fixtures/semantic_packs/acme_procurement/review/acme.procurement.semantic-review.jsonl +7 -0
package/fixtures/semantic_packs/acme_procurement/tests/ambiguous_vendor_alias.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/deprecated_vendor_alias.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/invalid_relation.sea +3 -0
package/fixtures/semantic_packs/acme_procurement/tests/proposed_concept.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/rejected_concept.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/unit_mismatch.sea +7 -0
package/fixtures/semantic_packs/acme_procurement/tests/unknown_vendor_policy.sea +8 -0
package/fixtures/semantic_packs/acme_procurement/tests/valid_purchase_policy.sea +8 -0
package/index.d.ts +2 -0
package/index.js +8 -0
package/justfile +200 -0
package/lefthook.yml +13 -0
package/lib/validate_native_exports.d.ts +4 -0
package/lib/validate_native_exports.js +12 -0
package/package.json +22 -0
package/pytest.ini +5 -0
package/python/tests/test_registry.py +75 -0
package/python/tests/test_units.py +18 -0
package/release-please-config.json +49 -0
package/requirements-dev.txt +3 -0
package/requirements.txt +3 -0
package/rust-toolchain.toml +3 -0
package/schemas/ast-v1.schema.json +72 -0
package/schemas/ast-v2.schema.json +1200 -0
package/schemas/ast-v3.schema.json +1200 -0
package/schemas/sea-registry.schema.json +45 -0
package/scripts/build-python.sh +37 -0
package/scripts/build-release.sh +279 -0
package/scripts/build-typescript.sh +13 -0
package/scripts/build-wasm.sh +113 -0
package/scripts/bump-version.sh +245 -0
package/scripts/check_unused_test_imports.py +85 -0
package/scripts/ci_tasks.py +379 -0
package/scripts/clear_debug_test.sh +10 -0
package/scripts/create-github-release.sh +262 -0
package/scripts/create-tag.sh +203 -0
package/scripts/find_and_link_test_binary.sh +70 -0
package/scripts/generate-changelog.sh +271 -0
package/scripts/generate-release-notes.sh +205 -0
package/scripts/lint_release_security.py +96 -0
package/scripts/lint_release_workflows.py +82 -0
package/scripts/lint_workflow_gates.py +113 -0
package/scripts/optimized-wasm-build.sh +61 -0
package/scripts/patch_napi_types.py +62 -0
package/scripts/pre-release-check.sh +289 -0
package/scripts/prepare_rust_debug.sh +52 -0
package/scripts/release.sh +373 -0
package/scripts/resolve_rust_binary.py +230 -0
package/scripts/run_commitlint.sh +29 -0
package/scripts/test-all.sh +77 -0
package/scripts/update_launch_program.py +93 -0
package/secrets/README.md +27 -0
package/secrets/secrets.yaml +21 -0
package/test_integration.py +67 -0
package/tests/test_authority.py +328 -0
package/tests/test_ci_tasks.py +143 -0
package/tests/test_expression.py +256 -0
package/tests/test_golden_payment_flow.py +42 -0
package/tests/test_graph.py +127 -0
package/tests/test_instance.py +136 -0
package/tests/test_parser.py +82 -0
package/tests/test_primitives.py +68 -0
package/tests/test_role_relation_parity.py +56 -0
package/tests/test_runtime_toggle.py +156 -0
package/tests/test_semantic_pack.py +639 -0
package/tests/test_three_valued_eval.py +159 -0
package/tsconfig.json +30 -0
package/typescript-tests/advanced.test.ts +165 -0
package/typescript-tests/authority.test.ts +216 -0
package/typescript-tests/expression.test.ts +228 -0
package/typescript-tests/golden-payment-flow.test.ts +51 -0
package/typescript-tests/graph.test.ts +142 -0
package/typescript-tests/native-binding.test.ts +20 -0
package/typescript-tests/primitives.test.ts +88 -0
package/typescript-tests/registry.test.ts +122 -0
package/typescript-tests/role_relation.test.ts +63 -0
package/typescript-tests/runtime_toggle.test.ts +141 -0
package/typescript-tests/semantic-pack.test.ts +556 -0
package/typescript-tests/three_valued_eval.test.ts +135 -0
package/typescript-tests/units.test.ts +36 -0
package/vitest.config.ts +13 -0
package/wasm_demo.html +225 -0

package/domainforge-core/src/semantic_pack/validator.rs ADDED Viewed

@@ -0,0 +1,368 @@
+use super::canonical_json;
+use super::diagnostics::{
+    DiagnosticSeverity, SemanticDiagnostic, SemanticDiagnosticCode, SemanticTruth,
+    SemanticValidationResult, SemanticValidationStatus, ValidationMode, ValidationOptions,
+};
+use super::resolver::{self, ResolveRequest};
+use super::schema::{ConceptStatus, PackRef, PackSetRef, SemanticPack, SignatureState, SourceRef};
+const CURRENT_SCHEMA_VERSION: &str = "0.3";
+/// Validate a semantic pack itself (internal consistency).
+pub fn validate_semantic_pack(
+    pack: &SemanticPack,
+) -> Result<Vec<SemanticDiagnostic>, SemanticPackError> {
+    let mut diagnostics = Vec::new();
+    let pack_ref = make_pack_ref(pack);
+    // Schema version check
+    if pack.schema_version != CURRENT_SCHEMA_VERSION {
+        diagnostics.push(SemanticDiagnostic {
+            code: SemanticDiagnosticCode::PackSchemaMismatch,
+            severity: DiagnosticSeverity::Error,
+            semantic_truth: SemanticTruth::Invalid,
+            message: format!(
+                "Expected schema_version '{}', got '{}'",
+                CURRENT_SCHEMA_VERSION, pack.schema_version
+            ),
+            source_ref: SourceRef::pack_uri(&pack.pack_id),
+            pack_ref: pack_ref.clone(),
+            suggestions: vec![],
+            recoverability_hint: format!("Update schema_version to {}", CURRENT_SCHEMA_VERSION),
+        });
+    }
+    // Duplicate concept IDs
+    let mut seen_ids: std::collections::HashSet<String> = std::collections::HashSet::new();
+    for c in &pack.concepts {
+        if !seen_ids.insert(c.id.clone()) {
+            diagnostics.push(SemanticDiagnostic {
+                code: SemanticDiagnosticCode::DuplicateConceptId,
+                severity: DiagnosticSeverity::Error,
+                semantic_truth: SemanticTruth::Invalid,
+                message: format!("Duplicate concept ID: '{}'", c.id),
+                source_ref: SourceRef::pack_uri(&pack.pack_id),
+                pack_ref: pack_ref.clone(),
+                suggestions: vec![],
+                recoverability_hint: "Rename one of the duplicate concepts".to_string(),
+            });
+        }
+    }
+    // Duplicate canonical names targeting different IDs
+    let mut seen_names: std::collections::HashMap<String, String> =
+        std::collections::HashMap::new();
+    for c in &pack.concepts {
+        let norm = resolver::normalize_lookup_key(&c.canonical_name);
+        if let Some(existing_id) = seen_names.get(&norm) {
+            if existing_id != &c.id {
+                diagnostics.push(SemanticDiagnostic {
+                    code: SemanticDiagnosticCode::DuplicateCanonicalName,
+                    severity: DiagnosticSeverity::Error,
+                    semantic_truth: SemanticTruth::Invalid,
+                    message: format!(
+                        "Duplicate canonical name '{}' targets '{}' and '{}'",
+                        c.canonical_name, existing_id, c.id
+                    ),
+                    source_ref: SourceRef::pack_uri(&pack.pack_id),
+                    pack_ref: pack_ref.clone(),
+                    suggestions: vec![],
+                    recoverability_hint: "Ensure canonical names are unique".to_string(),
+                });
+            }
+        } else {
+            seen_names.insert(norm, c.id.clone());
+        }
+    }
+    // Missing definitions on active concepts
+    for c in &pack.concepts {
+        if matches!(c.status, ConceptStatus::Active | ConceptStatus::Proposed) {
+            if c.definition.text.is_empty() {
+                diagnostics.push(SemanticDiagnostic {
+                    code: SemanticDiagnosticCode::MissingDefinition,
+                    severity: DiagnosticSeverity::Warning,
+                    semantic_truth: SemanticTruth::Unknown,
+                    message: format!("Active concept '{}' has no definition", c.id),
+                    source_ref: SourceRef::pack_uri(&pack.pack_id),
+                    pack_ref: pack_ref.clone(),
+                    suggestions: vec![],
+                    recoverability_hint: "Add a definition text".to_string(),
+                });
+            }
+            if c.owner.is_empty() {
+                diagnostics.push(SemanticDiagnostic {
+                    code: SemanticDiagnosticCode::MissingOwner,
+                    severity: DiagnosticSeverity::Warning,
+                    semantic_truth: SemanticTruth::Unknown,
+                    message: format!("Active concept '{}' has no owner", c.id),
+                    source_ref: SourceRef::pack_uri(&pack.pack_id),
+                    pack_ref: pack_ref.clone(),
+                    suggestions: vec![],
+                    recoverability_hint: "Assign an owner".to_string(),
+                });
+            }
+        }
+    }
+    // Alias target validation
+    let concept_ids: std::collections::HashSet<&str> =
+        pack.concepts.iter().map(|c| c.id.as_str()).collect();
+    for a in &pack.aliases {
+        if !concept_ids.contains(a.target_concept_id.as_str()) {
+            diagnostics.push(SemanticDiagnostic {
+                code: SemanticDiagnosticCode::UnknownConcept,
+                severity: DiagnosticSeverity::Error,
+                semantic_truth: SemanticTruth::Invalid,
+                message: format!(
+                    "Alias '{}' targets unknown concept '{}'",
+                    a.alias, a.target_concept_id
+                ),
+                source_ref: SourceRef::pack_uri(&pack.pack_id),
+                pack_ref: pack_ref.clone(),
+                suggestions: vec![],
+                recoverability_hint: "Add the target concept or fix the alias".to_string(),
+            });
+        }
+    }
+    // Relation endpoint validation
+    for r in &pack.relations {
+        if !concept_ids.contains(r.subject_id.as_str()) {
+            diagnostics.push(SemanticDiagnostic {
+                code: SemanticDiagnosticCode::InvalidRelation,
+                severity: DiagnosticSeverity::Error,
+                semantic_truth: SemanticTruth::Invalid,
+                message: format!(
+                    "Relation '{}' references unknown subject '{}'",
+                    r.id, r.subject_id
+                ),
+                source_ref: SourceRef::pack_uri(&pack.pack_id),
+                pack_ref: pack_ref.clone(),
+                suggestions: vec![],
+                recoverability_hint: "Add the missing concept or fix the relation".to_string(),
+            });
+        }
+        if !concept_ids.contains(r.object_id.as_str()) {
+            diagnostics.push(SemanticDiagnostic {
+                code: SemanticDiagnosticCode::InvalidRelation,
+                severity: DiagnosticSeverity::Error,
+                semantic_truth: SemanticTruth::Invalid,
+                message: format!(
+                    "Relation '{}' references unknown object '{}'",
+                    r.id, r.object_id
+                ),
+                source_ref: SourceRef::pack_uri(&pack.pack_id),
+                pack_ref: pack_ref.clone(),
+                suggestions: vec![],
+                recoverability_hint: "Add the missing concept or fix the relation".to_string(),
+            });
+        }
+    }
+    // Metric dimension/unit validation
+    let dimension_ids: std::collections::HashSet<&str> =
+        pack.dimensions.iter().map(|d| d.id.as_str()).collect();
+    let unit_ids: std::collections::HashSet<&str> =
+        pack.units.iter().map(|u| u.id.as_str()).collect();
+    for m in &pack.metrics {
+        if let Some(ref dim_id) = m.dimension_id {
+            if !dimension_ids.contains(dim_id.as_str()) {
+                diagnostics.push(SemanticDiagnostic {
+                    code: SemanticDiagnosticCode::UnknownDimension,
+                    severity: DiagnosticSeverity::Warning,
+                    semantic_truth: SemanticTruth::Unknown,
+                    message: format!(
+                        "Metric '{}' references unknown dimension '{}'",
+                        m.id, dim_id
+                    ),
+                    source_ref: SourceRef::pack_uri(&pack.pack_id),
+                    pack_ref: pack_ref.clone(),
+                    suggestions: vec![],
+                    recoverability_hint: "Add the missing dimension".to_string(),
+                });
+            }
+        }
+        if let Some(ref unit_id) = m.unit_id {
+            if !unit_ids.contains(unit_id.as_str()) {
+                diagnostics.push(SemanticDiagnostic {
+                    code: SemanticDiagnosticCode::UnknownUnit,
+                    severity: DiagnosticSeverity::Warning,
+                    semantic_truth: SemanticTruth::Unknown,
+                    message: format!("Metric '{}' references unknown unit '{}'", m.id, unit_id),
+                    source_ref: SourceRef::pack_uri(&pack.pack_id),
+                    pack_ref: pack_ref.clone(),
+                    suggestions: vec![],
+                    recoverability_hint: "Add the missing unit".to_string(),
+                });
+            }
+        }
+    }
+    Ok(diagnostics)
+}
+/// Validate a parsed graph against a semantic pack.
+pub fn validate_graph_with_pack(
+    pack: &SemanticPack,
+    source_uri: &str,
+    options: &ValidationOptions,
+) -> SemanticValidationResult {
+    let pack_ref = make_pack_ref(pack);
+    // Check unsigned requirement
+    if options.require_signed_pack
+        && pack.trust.signature_state != SignatureState::Signed
+        && !options.allow_unsigned_test_fixtures
+    {
+        let mut result = empty_result(&pack_ref, options);
+        result.status = SemanticValidationStatus::Blocked;
+        result.diagnostics.push(SemanticDiagnostic {
+            code: SemanticDiagnosticCode::PackUnsigned,
+            severity: DiagnosticSeverity::Error,
+            semantic_truth: SemanticTruth::Invalid,
+            message: format!(
+                "Pack '{}' is unsigned but signature is required",
+                pack.pack_id
+            ),
+            source_ref: SourceRef::pack_uri(&pack.pack_id),
+            pack_ref: pack_ref.clone(),
+            suggestions: vec![],
+            recoverability_hint: "Sign the pack or use --allow-unsigned-for-test-fixtures"
+                .to_string(),
+        });
+        return result;
+    }
+    // Run pack self-validation first
+    let mut diagnostics = match validate_semantic_pack(pack) {
+        Ok(d) => d,
+        Err(e) => {
+            let mut result = empty_result(&pack_ref, options);
+            result.status = SemanticValidationStatus::Failed;
+            result.diagnostics.push(SemanticDiagnostic {
+                code: SemanticDiagnosticCode::PackSchemaMismatch,
+                severity: DiagnosticSeverity::Error,
+                semantic_truth: SemanticTruth::Invalid,
+                message: format!("Pack self-validation failed: {:?}", e),
+                source_ref: SourceRef::synthetic("internal"),
+                pack_ref: pack_ref.clone(),
+                suggestions: vec![],
+                recoverability_hint: "Check pack structure and retry".to_string(),
+            });
+            return result;
+        }
+    };
+    // Sort diagnostics deterministically
+    super::canonical_json::sort_diagnostics(&mut diagnostics);
+    // Compute status per §4.7
+    let status = compute_status(&diagnostics, options);
+    SemanticValidationResult {
+        status,
+        diagnostics,
+        pack_set_ref: PackSetRef {
+            merged_pack_hash: pack_ref.pack_content_hash.clone(),
+            pack_refs: vec![pack_ref.clone()],
+        },
+        input_hash: canonical_json::hash_canonical_json(&serde_json::json!({
+            "source_uri": source_uri,
+            "pack_id": pack.pack_id,
+        })),
+        validation_mode: options.mode,
+        expected_hashes: vec![],
+        unsigned_fixture_bypass_used: options.allow_unsigned_test_fixtures,
+        first_approved_version_bypass_used: false,
+        evidence_ref: None,
+    }
+}
+/// Validate a specific term against a pack (resolver-backed).
+pub fn validate_term(
+    raw_text: &str,
+    pack: &SemanticPack,
+    options: &ValidationOptions,
+    source_ref: SourceRef,
+) -> Option<SemanticDiagnostic> {
+    let request = ResolveRequest {
+        raw_text,
+        expected_kind: None,
+        source_ref: source_ref.clone(),
+    };
+    let result = resolver::resolve_concept(&request, pack, options);
+    if let Some(code) = result.diagnostic_code {
+        let pack_ref = make_pack_ref(pack);
+        Some(SemanticDiagnostic {
+            code,
+            severity: result.diagnostic_severity,
+            semantic_truth: result.semantic_truth,
+            message: result.message,
+            source_ref,
+            pack_ref,
+            suggestions: result.suggestions,
+            recoverability_hint: String::new(),
+        })
+    } else {
+        None
+    }
+}
+fn compute_status(
+    diagnostics: &[SemanticDiagnostic],
+    options: &ValidationOptions,
+) -> SemanticValidationStatus {
+    if matches!(options.mode, ValidationMode::Off) {
+        return SemanticValidationStatus::Passed;
+    }
+    let has_blocking_error = diagnostics
+        .iter()
+        .any(|d| d.severity == DiagnosticSeverity::Error);
+    let has_unknown = diagnostics
+        .iter()
+        .any(|d| d.semantic_truth == SemanticTruth::Unknown);
+    if has_blocking_error || (matches!(options.mode, ValidationMode::Strict) && has_unknown) {
+        SemanticValidationStatus::Failed
+    } else if has_unknown {
+        SemanticValidationStatus::Unknown
+    } else {
+        SemanticValidationStatus::Passed
+    }
+}
+fn make_pack_ref(pack: &SemanticPack) -> PackRef {
+    PackRef {
+        pack_id: pack.pack_id.clone(),
+        pack_content_hash: canonical_json::compute_pack_content_hash(pack),
+        path_or_uri: format!("pack://{}", pack.pack_id),
+        priority: 0,
+    }
+}
+fn empty_result(pack_ref: &PackRef, options: &ValidationOptions) -> SemanticValidationResult {
+    SemanticValidationResult {
+        status: SemanticValidationStatus::Passed,
+        diagnostics: vec![],
+        pack_set_ref: PackSetRef {
+            merged_pack_hash: pack_ref.pack_content_hash.clone(),
+            pack_refs: vec![pack_ref.clone()],
+        },
+        input_hash: String::new(),
+        validation_mode: options.mode,
+        expected_hashes: vec![],
+        unsigned_fixture_bypass_used: false,
+        first_approved_version_bypass_used: false,
+        evidence_ref: None,
+    }
+}
+#[derive(Debug, Clone)]
+pub enum SemanticPackError {
+    IoError(String),
+    JsonError(String),
+    ValidationError(String),
+}

package/domainforge-core/src/semantic_version.rs ADDED Viewed

@@ -0,0 +1,140 @@
+use serde::{Deserialize, Serialize};
+#[derive(Debug, Clone, PartialEq, Eq, PartialOrd, Ord, Serialize, Deserialize)]
+pub struct SemanticVersion {
+    pub major: u32,
+    pub minor: u32,
+    pub patch: u32,
+}
+impl SemanticVersion {
+    pub fn new(major: u32, minor: u32, patch: u32) -> Self {
+        Self {
+            major,
+            minor,
+            patch,
+        }
+    }
+    pub fn parse(s: &str) -> Result<Self, String> {
+        let parts: Vec<&str> = s.split('.').collect();
+        if parts.len() != 3 {
+            return Err("Version must be in format major.minor.patch".to_string());
+        }
+        Ok(Self {
+            major: parts[0]
+                .parse()
+                .map_err(|_| "Invalid major version".to_string())?,
+            minor: parts[1]
+                .parse()
+                .map_err(|_| "Invalid minor version".to_string())?,
+            patch: parts[2]
+                .parse()
+                .map_err(|_| "Invalid patch version".to_string())?,
+        })
+    }
+    pub fn bump_major(&mut self) {
+        self.major += 1;
+        self.minor = 0;
+        self.patch = 0;
+    }
+    pub fn bump_minor(&mut self) {
+        self.minor += 1;
+        self.patch = 0;
+    }
+    pub fn bump_patch(&mut self) {
+        self.patch += 1;
+    }
+}
+impl std::fmt::Display for SemanticVersion {
+    fn fmt(&self, f: &mut std::fmt::Formatter) -> std::fmt::Result {
+        write!(f, "{}.{}.{}", self.major, self.minor, self.patch)
+    }
+}
+impl Default for SemanticVersion {
+    fn default() -> Self {
+        Self::new(1, 0, 0)
+    }
+}
+#[cfg(test)]
+mod tests {
+    use super::*;
+    #[test]
+    fn test_semantic_version_parsing() {
+        let v = SemanticVersion::parse("1.2.3").unwrap();
+        assert_eq!(v.major, 1);
+        assert_eq!(v.minor, 2);
+        assert_eq!(v.patch, 3);
+    }
+    #[test]
+    fn test_semantic_version_parsing_invalid() {
+        assert!(SemanticVersion::parse("1.2").is_err());
+        assert!(SemanticVersion::parse("1.2.3.4").is_err());
+        assert!(SemanticVersion::parse("a.b.c").is_err());
+    }
+    #[test]
+    fn test_version_comparison() {
+        let v1 = SemanticVersion::new(1, 0, 0);
+        let v2 = SemanticVersion::new(2, 0, 0);
+        assert!(v1 < v2);
+        let v3 = SemanticVersion::new(1, 2, 0);
+        let v4 = SemanticVersion::new(1, 1, 0);
+        assert!(v3 > v4);
+        let v5 = SemanticVersion::new(1, 1, 2);
+        let v6 = SemanticVersion::new(1, 1, 1);
+        assert!(v5 > v6);
+    }
+    #[test]
+    fn test_version_bump_major() {
+        let mut v = SemanticVersion::new(1, 2, 3);
+        v.bump_major();
+        assert_eq!(v, SemanticVersion::new(2, 0, 0));
+    }
+    #[test]
+    fn test_version_bump_minor() {
+        let mut v = SemanticVersion::new(1, 2, 3);
+        v.bump_minor();
+        assert_eq!(v, SemanticVersion::new(1, 3, 0));
+    }
+    #[test]
+    fn test_version_bump_patch() {
+        let mut v = SemanticVersion::new(1, 2, 3);
+        v.bump_patch();
+        assert_eq!(v, SemanticVersion::new(1, 2, 4));
+    }
+    #[test]
+    fn test_version_display() {
+        let v = SemanticVersion::new(1, 2, 3);
+        assert_eq!(format!("{}", v), "1.2.3");
+    }
+    #[test]
+    fn test_version_default() {
+        let v = SemanticVersion::default();
+        assert_eq!(v, SemanticVersion::new(1, 0, 0));
+    }
+    #[test]
+    fn test_version_serialization() {
+        let v = SemanticVersion::new(1, 2, 3);
+        let json = serde_json::to_string(&v).unwrap();
+        let deserialized: SemanticVersion = serde_json::from_str(&json).unwrap();
+        assert_eq!(v, deserialized);
+    }
+}

package/domainforge-core/src/test_utils.rs ADDED Viewed

@@ -0,0 +1,12 @@
+#[cfg(test)]
+mod proptest_integration {
+    use crate::uuid_module;
+    use proptest::prelude::*;
+    proptest! {
+        #[test]
+        fn uuid_generation_never_panics(_seed in 0u64..1_000_000) {
+            let _ = uuid_module::generate_uuid_v7();
+        }
+    }
+}

package/domainforge-core/src/typescript/authority.rs ADDED Viewed

@@ -0,0 +1,184 @@
+use crate::authority::{
+    AuthorityEnvironment as RustAuthorityEnvironment,
+    AuthorityEnvironmentConfig as RustAuthorityEnvironmentConfig, ClaimLevel as RustClaimLevel,
+    FactEnvelope as RustFactEnvelope, FinalDecision as RustFinalDecision,
+    PolicyModality as RustPolicyModality, SourceClass as RustSourceClass,
+};
+use napi_derive::napi;
+// =============================================================================
+// Enums
+// =============================================================================
+#[napi]
+pub enum FinalDecision {
+    Allow,
+    Deny,
+    Escalate,
+    NotApplicable,
+    Reject,
+}
+impl From<FinalDecision> for RustFinalDecision {
+    fn from(v: FinalDecision) -> Self {
+        match v {
+            FinalDecision::Allow => RustFinalDecision::Allow,
+            FinalDecision::Deny => RustFinalDecision::Deny,
+            FinalDecision::Escalate => RustFinalDecision::Escalate,
+            FinalDecision::NotApplicable => RustFinalDecision::NotApplicable,
+            FinalDecision::Reject => RustFinalDecision::Reject,
+        }
+    }
+}
+impl From<RustFinalDecision> for FinalDecision {
+    fn from(v: RustFinalDecision) -> Self {
+        match v {
+            RustFinalDecision::Allow => FinalDecision::Allow,
+            RustFinalDecision::Deny => FinalDecision::Deny,
+            RustFinalDecision::Escalate => FinalDecision::Escalate,
+            RustFinalDecision::NotApplicable => FinalDecision::NotApplicable,
+            RustFinalDecision::Reject => FinalDecision::Reject,
+        }
+    }
+}
+#[napi]
+pub enum PolicyModality {
+    Permission,
+    Prohibition,
+    Obligation,
+    Override,
+}
+impl From<PolicyModality> for RustPolicyModality {
+    fn from(v: PolicyModality) -> Self {
+        match v {
+            PolicyModality::Permission => RustPolicyModality::Permission,
+            PolicyModality::Prohibition => RustPolicyModality::Prohibition,
+            PolicyModality::Obligation => RustPolicyModality::Obligation,
+            PolicyModality::Override => RustPolicyModality::Override,
+        }
+    }
+}
+impl From<RustPolicyModality> for PolicyModality {
+    fn from(v: RustPolicyModality) -> Self {
+        match v {
+            RustPolicyModality::Permission => PolicyModality::Permission,
+            RustPolicyModality::Prohibition => PolicyModality::Prohibition,
+            RustPolicyModality::Obligation => PolicyModality::Obligation,
+            RustPolicyModality::Override => PolicyModality::Override,
+        }
+    }
+}
+#[napi]
+pub enum SourceClass {
+    CallerSupplied,
+    RuntimeObserved,
+    SystemOfRecord,
+    Attested,
+    ManualApproval,
+    Derived,
+    UnknownSource,
+}
+impl From<SourceClass> for RustSourceClass {
+    fn from(v: SourceClass) -> Self {
+        match v {
+            SourceClass::CallerSupplied => RustSourceClass::CallerSupplied,
+            SourceClass::RuntimeObserved => RustSourceClass::RuntimeObserved,
+            SourceClass::SystemOfRecord => RustSourceClass::SystemOfRecord,
+            SourceClass::Attested => RustSourceClass::Attested,
+            SourceClass::ManualApproval => RustSourceClass::ManualApproval,
+            SourceClass::Derived => RustSourceClass::Derived,
+            SourceClass::UnknownSource => RustSourceClass::UnknownSource,
+        }
+    }
+}
+impl From<RustSourceClass> for SourceClass {
+    fn from(v: RustSourceClass) -> Self {
+        match v {
+            RustSourceClass::CallerSupplied => SourceClass::CallerSupplied,
+            RustSourceClass::RuntimeObserved => SourceClass::RuntimeObserved,
+            RustSourceClass::SystemOfRecord => SourceClass::SystemOfRecord,
+            RustSourceClass::Attested => SourceClass::Attested,
+            RustSourceClass::ManualApproval => SourceClass::ManualApproval,
+            RustSourceClass::Derived => SourceClass::Derived,
+            RustSourceClass::UnknownSource => SourceClass::UnknownSource,
+        }
+    }
+}
+#[napi]
+pub enum ClaimLevel {
+    AuditBacked,
+    Validated,
+    FormallyProven,
+}
+impl From<ClaimLevel> for RustClaimLevel {
+    fn from(v: ClaimLevel) -> Self {
+        match v {
+            ClaimLevel::AuditBacked => RustClaimLevel::AuditBacked,
+            ClaimLevel::Validated => RustClaimLevel::Validated,
+            ClaimLevel::FormallyProven => RustClaimLevel::FormallyProven,
+        }
+    }
+}
+impl From<RustClaimLevel> for ClaimLevel {
+    fn from(v: RustClaimLevel) -> Self {
+        match v {
+            RustClaimLevel::AuditBacked => ClaimLevel::AuditBacked,
+            RustClaimLevel::Validated => ClaimLevel::Validated,
+            RustClaimLevel::FormallyProven => ClaimLevel::FormallyProven,
+        }
+    }
+}
+// =============================================================================
+// Functions
+// =============================================================================
+/// Evaluate an authority request against a policy environment.
+#[napi]
+pub fn evaluate_authority(
+    config_json: String,
+    request_json: String,
+    facts_json: Option<String>,
+) -> napi::Result<EvaluateAuthorityResult> {
+    let facts = facts_json.unwrap_or_else(|| "[]".to_string());
+    let config: RustAuthorityEnvironmentConfig = serde_json::from_str(&config_json)
+        .map_err(|e| napi::Error::from_reason(format!("Invalid config: {}", e)))?;
+    let mut env = RustAuthorityEnvironment::new(config)
+        .map_err(|e| napi::Error::from_reason(format!("Environment error: {}", e)))?;
+    env.validate()
+        .map_err(|e| napi::Error::from_reason(format!("Validation error: {}", e)))?;
+    let request: crate::authority::AuthorityRequest = serde_json::from_str(&request_json)
+        .map_err(|e| napi::Error::from_reason(format!("Invalid request: {}", e)))?;
+    let fact_envs: Vec<RustFactEnvelope> = serde_json::from_str(&facts)
+        .map_err(|e| napi::Error::from_reason(format!("Invalid facts: {}", e)))?;
+    let (trace, decision) = env
+        .evaluate(&request, &fact_envs)
+        .map_err(|e| napi::Error::from_reason(format!("Evaluation error: {}", e)))?;
+    Ok(EvaluateAuthorityResult {
+        trace_json: serde_json::to_string(&trace)
+            .map_err(|e| napi::Error::from_reason(format!("Trace serialization error: {}", e)))?,
+        decision_json: serde_json::to_string(&decision).map_err(|e| {
+            napi::Error::from_reason(format!("Decision serialization error: {}", e))
+        })?,
+    })
+}
+#[napi(object)]
+pub struct EvaluateAuthorityResult {
+    pub trace_json: String,
+    pub decision_json: String,
+}