governance-sdk 0.5.0

package/dist/plugins/openai-agents-types.d.ts

@@ -0,0 +1,130 @@
+/**
+ * Types for the OpenAI Agents SDK governance integration.
+ *
+ * Mirrors @openai/agents-core v0.6.0 FunctionTool shape without
+ * requiring the SDK as a dependency. Structurally compatible at runtime.
+ *
+ * v0.6.0 (March 2026): tool search support GA, computer use GA.
+ * SDK uses `invoke`, `parameters`, `strict` (required in SDK,
+ * optional here for governance wrapper flexibility).
+ */
+import type { GovernanceInstance, AuditEvent } from "../index";
+import type { EnforcementDecision, PolicyAction } from "../policy";
+import type { AgentFramework } from "../types";
+/** Run context passed to tool invocations */
+export interface OpenAIRunContext {
+    usage?: Record<string, unknown>;
+    /** User-provided context (generic TContext in SDK) */
+    context?: unknown;
+    /** Structured input for the current agent tool run, when available */
+    toolInput?: unknown;
+    [key: string]: unknown;
+}
+/** Tool call details passed as third argument to invoke (SDK: ToolCallDetails) */
+export interface OpenAIToolCallDetails {
+    /** The original function call item (protocol.FunctionCallItem in SDK) */
+    toolCall?: Record<string, unknown>;
+    /** Resume state for continuations */
+    resumeState?: string;
+    signal?: AbortSignal;
+    /** Parent run configuration (Partial<RunConfig> in SDK) */
+    parentRunConfig?: Record<string, unknown>;
+}
+/**
+ * OpenAI Agents SDK function tool shape (matches @openai/agents-core FunctionTool v0.6.0).
+ *
+ * In the SDK, `parameters`, `strict`, `needsApproval`, and `isEnabled` are required.
+ * They are optional here for governance wrapper flexibility — we wrap tools that
+ * already exist rather than constructing new ones.
+ */
+export interface OpenAIFunctionTool {
+    type: "function";
+    name: string;
+    description: string;
+    /** JSON Schema for tool parameters (required in SDK, optional here for wrapper flexibility) */
+    parameters?: Record<string, unknown>;
+    /** Whether schema validation is strict (required in SDK, optional here for wrapper flexibility) */
+    strict?: boolean;
+    /** Tool invocation handler — receives RunContext, JSON string args, optional details */
+    invoke?: (ctx: OpenAIRunContext, args: string, details?: OpenAIToolCallDetails) => Promise<string | unknown>;
+    /** Whether this tool is currently enabled (required in SDK as ToolEnabledFunction) */
+    isEnabled?: (ctx: OpenAIRunContext, agent?: OpenAIAgent) => boolean | Promise<boolean>;
+    /** Defer loading the tool definition */
+    deferLoading?: boolean;
+    /** Human-in-the-loop approval function (required in SDK as ToolApprovalFunction) */
+    needsApproval?: (ctx: OpenAIRunContext, input: unknown, callId?: string) => boolean | Promise<boolean>;
+    /** Per-tool timeout in milliseconds */
+    timeoutMs?: number;
+    /** Behavior on timeout */
+    timeoutBehavior?: "error_as_result" | "raise_exception";
+    /** Custom error message function for timeouts — receives ToolTimeoutError (Error subclass) */
+    timeoutErrorFunction?: (ctx: OpenAIRunContext, error: Error) => string | Promise<string>;
+    /** SDK-native input guardrails */
+    inputGuardrails?: unknown[];
+    /** SDK-native output guardrails */
+    outputGuardrails?: unknown[];
+    /** @deprecated Governance wrapper legacy — does not exist in SDK. Use invoke instead. */
+    execute?: (args: Record<string, unknown>) => Promise<unknown>;
+}
+/** OpenAI Agents SDK agent shape (matches @openai/agents Agent) */
+export interface OpenAIAgent {
+    name: string;
+    instructions?: string | ((runContext: OpenAIRunContext, agent: OpenAIAgent) => string | Promise<string>);
+    tools?: OpenAIFunctionTool[];
+    /** Model name string or Model instance */
+    model?: string | unknown;
+    handoffs?: unknown[];
+    /** Model configuration settings */
+    modelSettings?: Record<string, unknown>;
+    /** Output type schema */
+    outputType?: Record<string, unknown>;
+    /** Description for handoff */
+    handoffDescription?: string;
+    /** Responses API prompt template */
+    prompt?: unknown;
+    /** MCP servers for this agent */
+    mcpServers?: unknown[];
+    /** Agent-level input guardrails */
+    inputGuardrails?: unknown[];
+    /** Agent-level output guardrails */
+    outputGuardrails?: unknown[];
+    /** Controls behavior after tool calls */
+    toolUseBehavior?: "run_llm_again" | "stop_on_first_tool" | {
+        stopAtToolNames: string[];
+    } | ((context: unknown, toolResults: unknown[]) => unknown | Promise<unknown>);
+    /** Whether to reset tool choice after each turn */
+    resetToolChoice?: boolean;
+}
+export interface GovernAgentConfig {
+    agentName: string;
+    owner: string;
+    framework?: AgentFramework;
+    description?: string;
+    version?: string;
+    channels?: string[];
+    hasAuth?: boolean;
+    hasGuardrails?: boolean;
+    hasObservability?: boolean;
+    permissions?: Record<string, unknown>;
+    metadata?: Record<string, unknown>;
+    onBlocked?: (decision: EnforcementDecision, toolName: string) => void;
+    onDecision?: (decision: EnforcementDecision, toolName: string) => void;
+    actionMapper?: (toolName: string) => PolicyAction;
+    sessionTokenTracker?: () => number;
+}
+export interface GovernedAgentResult<T extends OpenAIAgent> {
+    agent: T;
+    agentId: string;
+    score: number;
+    level: number;
+    governance: GovernanceInstance;
+    enforce: (toolName: string, input?: Record<string, unknown>) => Promise<EnforcementDecision>;
+    audit: (toolName: string, outcome: "success" | "failure", detail?: Record<string, unknown>) => Promise<AuditEvent>;
+}
+export interface GovernedToolsResult {
+    tools: OpenAIFunctionTool[];
+    agentId: string;
+    score: number;
+    level: number;
+}
+//# sourceMappingURL=openai-agents-types.d.ts.map

package/dist/plugins/openai-agents-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-agents-types.d.ts","sourceRoot":"","sources":["../../src/plugins/openai-agents-types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAC/D,OAAO,KAAK,EAAE,mBAAmB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AACnE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AAI/C,6CAA6C;AAC7C,MAAM,WAAW,gBAAgB;IAC/B,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,sDAAsD;IACtD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,sEAAsE;IACtE,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,kFAAkF;AAClF,MAAM,WAAW,qBAAqB;IACpC,yEAAyE;IACzE,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,qCAAqC;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,WAAW,CAAC;IACrB,2DAA2D;IAC3D,eAAe,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAC3C;AAED;;;;;;GAMG;AACH,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,UAAU,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,+FAA+F;IAC/F,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrC,mGAAmG;IACnG,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,wFAAwF;IACxF,MAAM,CAAC,EAAE,CAAC,GAAG,EAAE,gBAAgB,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,qBAAqB,KAAK,OAAO,CAAC,MAAM,GAAG,OAAO,CAAC,CAAC;IAC7G,sFAAsF;IACtF,SAAS,CAAC,EAAE,CAAC,GAAG,EAAE,gBAAgB,EAAE,KAAK,CAAC,EAAE,WAAW,KAAK,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACvF,wCAAwC;IACxC,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,oFAAoF;IACpF,aAAa,CAAC,EAAE,CAAC,GAAG,EAAE,gBAAgB,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IACvG,uCAAuC;IACvC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0BAA0B;IAC1B,eAAe,CAAC,EAAE,iBAAiB,GAAG,iBAAiB,CAAC;IACxD,8FAA8F;IAC9F,oBAAoB,CAAC,EAAE,CAAC,GAAG,EAAE,gBAAgB,EAAE,KAAK,EAAE,KAAK,KAAK,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IACzF,kCAAkC;IAClC,eAAe,CAAC,EAAE,OAAO,EAAE,CAAC;IAC5B,mCAAmC;IACnC,gBAAgB,CAAC,EAAE,OAAO,EAAE,CAAC;IAC7B,yFAAyF;IACzF,OAAO,CAAC,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;CAC/D;AAED,mEAAmE;AACnE,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,CAAC,EAAE,MAAM,GAAG,CAAC,CAAC,UAAU,EAAE,gBAAgB,EAAE,KAAK,EAAE,WAAW,KAAK,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC;IACzG,KAAK,CAAC,EAAE,kBAAkB,EAAE,CAAC;IAC7B,0CAA0C;IAC1C,KAAK,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC;IACzB,QAAQ,CAAC,EAAE,OAAO,EAAE,CAAC;IACrB,mCAAmC;IACnC,aAAa,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACxC,yBAAyB;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrC,8BAA8B;IAC9B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,oCAAoC;IACpC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,iCAAiC;IACjC,UAAU,CAAC,EAAE,OAAO,EAAE,CAAC;IACvB,mCAAmC;IACnC,eAAe,CAAC,EAAE,OAAO,EAAE,CAAC;IAC5B,oCAAoC;IACpC,gBAAgB,CAAC,EAAE,OAAO,EAAE,CAAC;IAC7B,yCAAyC;IACzC,eAAe,CAAC,EAAE,eAAe,GAAG,oBAAoB,GAAG;QAAE,eAAe,EAAE,MAAM,EAAE,CAAA;KAAE,GAAG,CAAC,CAAC,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,KAAK,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;IACtK,mDAAmD;IACnD,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAID,MAAM,WAAW,iBAAiB;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,cAAc,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,SAAS,CAAC,EAAE,CAAC,QAAQ,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,CAAC;IACtE,UAAU,CAAC,EAAE,CAAC,QAAQ,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,CAAC;IACvE,YAAY,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,YAAY,CAAC;IAClD,mBAAmB,CAAC,EAAE,MAAM,MAAM,CAAC;CACpC;AAID,MAAM,WAAW,mBAAmB,CAAC,CAAC,SAAS,WAAW;IACxD,KAAK,EAAE,CAAC,CAAC;IACT,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,kBAAkB,CAAC;IAC/B,OAAO,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAC7F,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,GAAG,SAAS,EAAE,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,UAAU,CAAC,CAAC;CACpH;AAED,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,kBAAkB,EAAE,CAAC;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;CACf"}

package/dist/plugins/openai-agents-types.js

@@ -0,0 +1,12 @@
+/**
+ * Types for the OpenAI Agents SDK governance integration.
+ *
+ * Mirrors @openai/agents-core v0.6.0 FunctionTool shape without
+ * requiring the SDK as a dependency. Structurally compatible at runtime.
+ *
+ * v0.6.0 (March 2026): tool search support GA, computer use GA.
+ * SDK uses `invoke`, `parameters`, `strict` (required in SDK,
+ * optional here for governance wrapper flexibility).
+ */
+export {};
+//# sourceMappingURL=openai-agents-types.js.map

package/dist/plugins/openai-agents-types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-agents-types.js","sourceRoot":"","sources":["../../src/plugins/openai-agents-types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG"}

package/dist/plugins/openai-agents.d.ts

@@ -0,0 +1,37 @@
+/**
+ * governance-sdk OpenAI Agents SDK Plugin
+ *
+ * Integrates governance enforcement into OpenAI Agents SDK tool execution.
+ * Wraps tools with before-action policy checks and audit logging.
+ * Types are in openai-agents-types.ts.
+ *
+ * @example
+ * ```ts
+ * import { createGovernance, blockTools } from 'governance-sdk';
+ * import { governAgent } from 'governance-sdk/plugins/openai-agents';
+ *
+ * const gov = createGovernance({
+ *   rules: [blockTools(['shell_exec', 'database_drop'])],
+ * });
+ *
+ * const governed = await governAgent(gov, {
+ *   name: 'research-agent',
+ *   tools: [webSearchTool, fileWriteTool],
+ * }, {
+ *   agentName: 'research-agent',
+ *   owner: 'research-team',
+ * });
+ * ```
+ */
+import type { GovernanceInstance } from "../index";
+import type { EnforcementDecision } from "../policy";
+import type { OpenAIFunctionTool, OpenAIAgent, GovernAgentConfig, GovernedAgentResult, GovernedToolsResult } from "./openai-agents-types.js";
+export type { OpenAIFunctionTool, OpenAIAgent, OpenAIRunContext, OpenAIToolCallDetails, GovernAgentConfig, GovernedAgentResult, GovernedToolsResult, } from "./openai-agents-types.js";
+export declare class GovernanceBlockedError extends Error {
+    readonly decision: EnforcementDecision;
+    readonly toolName: string;
+    constructor(decision: EnforcementDecision, toolName: string);
+}
+export declare function governAgent<T extends OpenAIAgent>(governance: GovernanceInstance, agent: T, config: GovernAgentConfig): Promise<GovernedAgentResult<T>>;
+export declare function governTools(governance: GovernanceInstance, tools: OpenAIFunctionTool[], config: GovernAgentConfig): Promise<GovernedToolsResult>;
+//# sourceMappingURL=openai-agents.d.ts.map

package/dist/plugins/openai-agents.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-agents.d.ts","sourceRoot":"","sources":["../../src/plugins/openai-agents.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAc,MAAM,UAAU,CAAC;AAC/D,OAAO,KAAK,EAAE,mBAAmB,EAAgB,MAAM,WAAW,CAAC;AAEnE,OAAO,KAAK,EACV,kBAAkB,EAClB,WAAW,EACX,iBAAiB,EACjB,mBAAmB,EACnB,mBAAmB,EACpB,MAAM,0BAA0B,CAAC;AAGlC,YAAY,EACV,kBAAkB,EAAE,WAAW,EAAE,gBAAgB,EAAE,qBAAqB,EACxE,iBAAiB,EAAE,mBAAmB,EAAE,mBAAmB,GAC5D,MAAM,0BAA0B,CAAC;AAIlC,qBAAa,sBAAuB,SAAQ,KAAK;IAC/C,SAAgB,QAAQ,EAAE,mBAAmB,CAAC;IAC9C,SAAgB,QAAQ,EAAE,MAAM,CAAC;gBAErB,QAAQ,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM;CAM5D;AA6FD,wBAAsB,WAAW,CAAC,CAAC,SAAS,WAAW,EACrD,UAAU,EAAE,kBAAkB,EAC9B,KAAK,EAAE,CAAC,EACR,MAAM,EAAE,iBAAiB,GACxB,OAAO,CAAC,mBAAmB,CAAC,CAAC,CAAC,CAAC,CAmBjC;AAID,wBAAsB,WAAW,CAC/B,UAAU,EAAE,kBAAkB,EAC9B,KAAK,EAAE,kBAAkB,EAAE,EAC3B,MAAM,EAAE,iBAAiB,GACxB,OAAO,CAAC,mBAAmB,CAAC,CAc9B"}

package/dist/plugins/openai-agents.js

@@ -0,0 +1,151 @@
+/**
+ * governance-sdk OpenAI Agents SDK Plugin
+ *
+ * Integrates governance enforcement into OpenAI Agents SDK tool execution.
+ * Wraps tools with before-action policy checks and audit logging.
+ * Types are in openai-agents-types.ts.
+ *
+ * @example
+ * ```ts
+ * import { createGovernance, blockTools } from 'governance-sdk';
+ * import { governAgent } from 'governance-sdk/plugins/openai-agents';
+ *
+ * const gov = createGovernance({
+ *   rules: [blockTools(['shell_exec', 'database_drop'])],
+ * });
+ *
+ * const governed = await governAgent(gov, {
+ *   name: 'research-agent',
+ *   tools: [webSearchTool, fileWriteTool],
+ * }, {
+ *   agentName: 'research-agent',
+ *   owner: 'research-team',
+ * });
+ * ```
+ */
+// ─── Blocked Error ──────────────────────────────────────────
+export class GovernanceBlockedError extends Error {
+    decision;
+    toolName;
+    constructor(decision, toolName) {
+        super(`Governance blocked: ${decision.reason} (tool: ${toolName})`);
+        this.name = "GovernanceBlockedError";
+        this.decision = decision;
+        this.toolName = toolName;
+    }
+}
+// ─── Shared Helpers ─────────────────────────────────────────
+function buildRegistration(config, toolNames, description) {
+    return {
+        name: config.agentName,
+        framework: config.framework ?? "openai",
+        owner: config.owner,
+        description: config.description ?? description,
+        version: config.version,
+        channels: config.channels,
+        tools: toolNames,
+        hasAuth: config.hasAuth,
+        hasGuardrails: config.hasGuardrails,
+        hasObservability: config.hasObservability,
+        hasAuditLog: true,
+        permissions: config.permissions,
+        metadata: config.metadata,
+    };
+}
+function createEnforcer(governance, agentId, config) {
+    return async (toolName, input) => {
+        const action = config.actionMapper?.(toolName) ?? "tool_call";
+        const decision = await governance.enforce({
+            agentId, agentName: config.agentName, agentLevel: 0,
+            action, tool: toolName, input,
+            sessionTokensUsed: config.sessionTokenTracker?.(),
+        });
+        config.onDecision?.(decision, toolName);
+        if (decision.blocked)
+            config.onBlocked?.(decision, toolName);
+        return decision;
+    };
+}
+function createAuditor(governance, agentId) {
+    return (toolName, outcome, detail) => governance.audit.log({
+        agentId, eventType: "tool_call", outcome,
+        severity: outcome === "failure" ? "warning" : "info",
+        detail: { tool: toolName, ...detail },
+    });
+}
+function wrapTool(tool, enforce, audit) {
+    const hasHandler = tool.invoke ?? tool.execute;
+    if (!hasHandler)
+        return tool;
+    const wrapped = { ...tool };
+    // Wrap invoke (SDK canonical method — args is JSON string, optional details)
+    if (tool.invoke) {
+        wrapped.invoke = async (ctx, args, details) => {
+            const parsed = JSON.parse(args);
+            const decision = await enforce(tool.name, parsed);
+            if (decision.blocked)
+                throw new GovernanceBlockedError(decision, tool.name);
+            try {
+                const output = await tool.invoke(ctx, args, details);
+                await audit(tool.name, "success");
+                return output;
+            }
+            catch (error) {
+                await audit(tool.name, "failure", { error: error instanceof Error ? error.message : String(error) });
+                throw error;
+            }
+        };
+    }
+    // Wrap legacy execute (governance wrapper convenience — does not exist in SDK)
+    if (tool.execute) {
+        wrapped.execute = async (args) => {
+            const decision = await enforce(tool.name, args);
+            if (decision.blocked)
+                throw new GovernanceBlockedError(decision, tool.name);
+            try {
+                const output = await tool.execute(args);
+                await audit(tool.name, "success");
+                return output;
+            }
+            catch (error) {
+                await audit(tool.name, "failure", { error: error instanceof Error ? error.message : String(error) });
+                throw error;
+            }
+        };
+    }
+    return wrapped;
+}
+// ─── Govern Agent ───────────────────────────────────────────
+export async function governAgent(governance, agent, config) {
+    const toolNames = (agent.tools ?? []).filter((t) => t.type === "function").map((t) => t.name);
+    const desc = typeof agent.instructions === "string" ? agent.instructions : undefined;
+    const reg = buildRegistration(config, toolNames, desc);
+    const result = await governance.register(reg);
+    const enforce = createEnforcer(governance, result.id, config);
+    const audit = createAuditor(governance, result.id);
+    const wrappedTools = (agent.tools ?? []).map((tool) => tool.type === "function" ? wrapTool(tool, enforce, audit) : tool);
+    return {
+        agent: { ...agent, tools: wrappedTools },
+        agentId: result.id,
+        score: result.score,
+        level: result.level,
+        governance,
+        enforce,
+        audit,
+    };
+}
+// ─── Govern Tools Only ──────────────────────────────────────
+export async function governTools(governance, tools, config) {
+    const toolNames = tools.map((t) => t.name);
+    const reg = buildRegistration(config, toolNames);
+    const result = await governance.register(reg);
+    const enforce = createEnforcer(governance, result.id, config);
+    const audit = createAuditor(governance, result.id);
+    return {
+        tools: tools.map((tool) => wrapTool(tool, enforce, audit)),
+        agentId: result.id,
+        score: result.score,
+        level: result.level,
+    };
+}
+//# sourceMappingURL=openai-agents.js.map

package/dist/plugins/openai-agents.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-agents.js","sourceRoot":"","sources":["../../src/plugins/openai-agents.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAmBH,+DAA+D;AAE/D,MAAM,OAAO,sBAAuB,SAAQ,KAAK;IAC/B,QAAQ,CAAsB;IAC9B,QAAQ,CAAS;IAEjC,YAAY,QAA6B,EAAE,QAAgB;QACzD,KAAK,CAAC,uBAAuB,QAAQ,CAAC,MAAM,WAAW,QAAQ,GAAG,CAAC,CAAC;QACpE,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAC;QACrC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC3B,CAAC;CACF;AAED,+DAA+D;AAE/D,SAAS,iBAAiB,CAAC,MAAyB,EAAE,SAAmB,EAAE,WAAoB;IAC7F,OAAO;QACL,IAAI,EAAE,MAAM,CAAC,SAAS;QACtB,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,QAAQ;QACvC,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,WAAW;QAC9C,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,KAAK,EAAE,SAAS;QAChB,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,aAAa,EAAE,MAAM,CAAC,aAAa;QACnC,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;QACzC,WAAW,EAAE,IAAI;QACjB,WAAW,EAAE,MAAM,CAAC,WAAW;QAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ;KAC1B,CAAC;AACJ,CAAC;AAED,SAAS,cAAc,CAAC,UAA8B,EAAE,OAAe,EAAE,MAAyB;IAChG,OAAO,KAAK,EAAE,QAAgB,EAAE,KAA+B,EAAgC,EAAE;QAC/F,MAAM,MAAM,GAAG,MAAM,CAAC,YAAY,EAAE,CAAC,QAAQ,CAAC,IAAK,WAA4B,CAAC;QAChF,MAAM,QAAQ,GAAG,MAAM,UAAU,CAAC,OAAO,CAAC;YACxC,OAAO,EAAE,SAAS,EAAE,MAAM,CAAC,SAAS,EAAE,UAAU,EAAE,CAAC;YACnD,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK;YAC7B,iBAAiB,EAAE,MAAM,CAAC,mBAAmB,EAAE,EAAE;SAClD,CAAC,CAAC;QACH,MAAM,CAAC,UAAU,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACxC,IAAI,QAAQ,CAAC,OAAO;YAAE,MAAM,CAAC,SAAS,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAC7D,OAAO,QAAQ,CAAC;IAClB,CAAC,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CAAC,UAA8B,EAAE,OAAe;IACpE,OAAO,CAAC,QAAgB,EAAE,OAA8B,EAAE,MAAgC,EAAuB,EAAE,CACjH,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC;QACnB,OAAO,EAAE,SAAS,EAAE,WAAW,EAAE,OAAO;QACxC,QAAQ,EAAE,OAAO,KAAK,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM;QACpD,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,GAAG,MAAM,EAAE;KACtC,CAAC,CAAC;AACP,CAAC;AAED,SAAS,QAAQ,CACf,IAAwB,EACxB,OAA0C,EAC1C,KAAuC;IAEvC,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC;IAC/C,IAAI,CAAC,UAAU;QAAE,OAAO,IAAI,CAAC;IAE7B,MAAM,OAAO,GAAuB,EAAE,GAAG,IAAI,EAAE,CAAC;IAEhD,6EAA6E;IAC7E,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;QAChB,OAAO,CAAC,MAAM,GAAG,KAAK,EAAE,GAAG,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE;YAC5C,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAA4B,CAAC;YAC3D,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YAClD,IAAI,QAAQ,CAAC,OAAO;gBAAE,MAAM,IAAI,sBAAsB,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;YAC5E,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAO,CAAC,GAAG,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;gBACtD,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;gBAClC,OAAO,MAAM,CAAC;YAChB,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,EAAE,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;gBACrG,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC,CAAC;IACJ,CAAC;IAED,+EAA+E;IAC/E,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;QACjB,OAAO,CAAC,OAAO,GAAG,KAAK,EAAE,IAA6B,EAAE,EAAE;YACxD,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;YAChD,IAAI,QAAQ,CAAC,OAAO;gBAAE,MAAM,IAAI,sBAAsB,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;YAC5E,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,OAAQ,CAAC,IAAI,CAAC,CAAC;gBACzC,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;gBAClC,OAAO,MAAM,CAAC;YAChB,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,EAAE,EAAE,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;gBACrG,MAAM,KAAK,CAAC;YACd,CAAC;QACH,CAAC,CAAC;IACJ,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,+DAA+D;AAE/D,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,UAA8B,EAC9B,KAAQ,EACR,MAAyB;IAEzB,MAAM,SAAS,GAAG,CAAC,KAAK,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAA2B,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IACvH,MAAM,IAAI,GAAG,OAAO,KAAK,CAAC,YAAY,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,SAAS,CAAC;IACrF,MAAM,GAAG,GAAG,iBAAiB,CAAC,MAAM,EAAE,SAAS,EAAE,IAAI,CAAC,CAAC;IACvD,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IAE9C,MAAM,OAAO,GAAG,cAAc,CAAC,UAAU,EAAE,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAC9D,MAAM,KAAK,GAAG,aAAa,CAAC,UAAU,EAAE,MAAM,CAAC,EAAE,CAAC,CAAC;IACnD,MAAM,YAAY,GAAG,CAAC,KAAK,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IAEzH,OAAO;QACL,KAAK,EAAE,EAAE,GAAG,KAAK,EAAE,KAAK,EAAE,YAAY,EAAO;QAC7C,OAAO,EAAE,MAAM,CAAC,EAAE;QAClB,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,UAAU;QACV,OAAO;QACP,KAAK;KACN,CAAC;AACJ,CAAC;AAED,+DAA+D;AAE/D,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,UAA8B,EAC9B,KAA2B,EAC3B,MAAyB;IAEzB,MAAM,SAAS,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IAC3C,MAAM,GAAG,GAAG,iBAAiB,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;IACjD,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;IAE9C,MAAM,OAAO,GAAG,cAAc,CAAC,UAAU,EAAE,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAC9D,MAAM,KAAK,GAAG,aAAa,CAAC,UAAU,EAAE,MAAM,CAAC,EAAE,CAAC,CAAC;IAEnD,OAAO;QACL,KAAK,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;QAC1D,OAAO,EAAE,MAAM,CAAC,EAAE;QAClB,KAAK,EAAE,MAAM,CAAC,KAAK;QACnB,KAAK,EAAE,MAAM,CAAC,KAAK;KACpB,CAAC;AACJ,CAAC"}

package/dist/plugins/semantic-kernel-types.d.ts

@@ -0,0 +1,103 @@
+/**
+ * Types for the Microsoft Semantic Kernel governance integration.
+ *
+ * NOTE: As of March 2026, there is NO official @microsoft/semantic-kernel
+ * npm package. A community package @semantic-kernel-typescript/core exists.
+ * These types mirror the C#/Python SDK shapes (KernelFunction, KernelPlugin)
+ * for TypeScript governance wrapping purposes.
+ *
+ * Microsoft is merging AutoGen + Semantic Kernel into "Microsoft
+ * Agent Framework" — watch for a unified TS SDK.
+ */
+import type { GovernanceInstance, AuditEvent } from "../index";
+import type { EnforcementDecision, PolicyAction } from "../policy";
+import type { AgentFramework } from "../types";
+/** Semantic Kernel function shape */
+export interface KernelFunction {
+    name: string;
+    pluginName?: string;
+    description?: string;
+    parameters?: KernelParameter[];
+    /** Return parameter metadata (describes function output) */
+    returnParameter?: {
+        description?: string;
+        type?: string;
+        schema?: Record<string, unknown>;
+    };
+    invoke: (args: Record<string, unknown>) => Promise<unknown>;
+}
+/** Semantic Kernel function parameter */
+export interface KernelParameter {
+    name: string;
+    description?: string;
+    type?: string;
+    required?: boolean;
+    defaultValue?: unknown;
+    /** JSON Schema for parameter validation (schema_data in Python SDK) */
+    schema?: Record<string, unknown>;
+    /** Whether to include in function choices (defaults to true in Python SDK) */
+    includeInFunctionChoices?: boolean;
+}
+/** Semantic Kernel plugin shape */
+export interface KernelPlugin {
+    name: string;
+    description?: string;
+    /** Functions keyed by name (dict in Python SDK, not array) */
+    functions: Record<string, KernelFunction>;
+}
+/** Semantic Kernel function filter context */
+export interface FunctionFilterContext {
+    function: KernelFunction;
+    arguments: Record<string, unknown>;
+    result?: unknown;
+    /** Reference to the Kernel instance (required in Python SDK FilterContextBase) */
+    kernel: unknown;
+    /** Whether the invocation is streaming (defaults to false in Python SDK) */
+    isStreaming?: boolean;
+}
+/**
+ * Semantic Kernel function invocation filter.
+ *
+ * Modern SDK uses single-method next-delegate pattern:
+ * `onFunctionInvocation(context, next)` where calling `next(context)`
+ * proceeds with execution.
+ */
+export interface FunctionFilter {
+    onFunctionInvocation: (context: FunctionFilterContext, next: (ctx: FunctionFilterContext) => Promise<void>) => Promise<void>;
+}
+export interface GovernSKConfig {
+    agentName: string;
+    owner: string;
+    framework?: AgentFramework;
+    description?: string;
+    version?: string;
+    channels?: string[];
+    hasAuth?: boolean;
+    hasGuardrails?: boolean;
+    hasObservability?: boolean;
+    permissions?: Record<string, unknown>;
+    metadata?: Record<string, unknown>;
+    onBlocked?: (decision: EnforcementDecision, toolName: string) => void;
+    onDecision?: (decision: EnforcementDecision, toolName: string) => void;
+    actionMapper?: (toolName: string) => PolicyAction;
+    sessionTokenTracker?: () => number;
+}
+export interface GovernedSKResult {
+    /** Governed functions with policy enforcement */
+    functions: KernelFunction[];
+    /** Function filter for Kernel-level integration */
+    filter: FunctionFilter;
+    agentId: string;
+    score: number;
+    level: number;
+    governance: GovernanceInstance;
+    enforce: (toolName: string, input?: Record<string, unknown>) => Promise<EnforcementDecision>;
+    audit: (toolName: string, outcome: "success" | "failure", detail?: Record<string, unknown>) => Promise<AuditEvent>;
+}
+export interface GovernedSKPluginResult {
+    plugin: KernelPlugin;
+    agentId: string;
+    score: number;
+    level: number;
+}
+//# sourceMappingURL=semantic-kernel-types.d.ts.map

package/dist/plugins/semantic-kernel-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"semantic-kernel-types.d.ts","sourceRoot":"","sources":["../../src/plugins/semantic-kernel-types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,UAAU,EAAE,MAAM,UAAU,CAAC;AAC/D,OAAO,KAAK,EAAE,mBAAmB,EAAE,YAAY,EAAE,MAAM,WAAW,CAAC;AACnE,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AAI/C,qCAAqC;AACrC,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,eAAe,EAAE,CAAC;IAC/B,4DAA4D;IAC5D,eAAe,CAAC,EAAE;QAAE,WAAW,CAAC,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;KAAE,CAAC;IAC5F,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;CAC7D;AAED,yCAAyC;AACzC,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,uEAAuE;IACvE,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,8EAA8E;IAC9E,wBAAwB,CAAC,EAAE,OAAO,CAAC;CACpC;AAED,mCAAmC;AACnC,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,8DAA8D;IAC9D,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;CAC3C;AAED,8CAA8C;AAC9C,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,cAAc,CAAC;IACzB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,kFAAkF;IAClF,MAAM,EAAE,OAAO,CAAC;IAChB,4EAA4E;IAC5E,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;;;;GAMG;AACH,MAAM,WAAW,cAAc;IAC7B,oBAAoB,EAAE,CAAC,OAAO,EAAE,qBAAqB,EAAE,IAAI,EAAE,CAAC,GAAG,EAAE,qBAAqB,KAAK,OAAO,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9H;AAID,MAAM,WAAW,cAAc;IAC7B,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,cAAc,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,SAAS,CAAC,EAAE,CAAC,QAAQ,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,CAAC;IACtE,UAAU,CAAC,EAAE,CAAC,QAAQ,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,CAAC;IACvE,YAAY,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,YAAY,CAAC;IAClD,mBAAmB,CAAC,EAAE,MAAM,MAAM,CAAC;CACpC;AAID,MAAM,WAAW,gBAAgB;IAC/B,iDAAiD;IACjD,SAAS,EAAE,cAAc,EAAE,CAAC;IAC5B,mDAAmD;IACnD,MAAM,EAAE,cAAc,CAAC;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,kBAAkB,CAAC;IAC/B,OAAO,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAC7F,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,SAAS,GAAG,SAAS,EAAE,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,UAAU,CAAC,CAAC;CACpH;AAED,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,YAAY,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;CACf"}

package/dist/plugins/semantic-kernel-types.js

@@ -0,0 +1,13 @@
+/**
+ * Types for the Microsoft Semantic Kernel governance integration.
+ *
+ * NOTE: As of March 2026, there is NO official @microsoft/semantic-kernel
+ * npm package. A community package @semantic-kernel-typescript/core exists.
+ * These types mirror the C#/Python SDK shapes (KernelFunction, KernelPlugin)
+ * for TypeScript governance wrapping purposes.
+ *
+ * Microsoft is merging AutoGen + Semantic Kernel into "Microsoft
+ * Agent Framework" — watch for a unified TS SDK.
+ */
+export {};
+//# sourceMappingURL=semantic-kernel-types.js.map

package/dist/plugins/semantic-kernel-types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"semantic-kernel-types.js","sourceRoot":"","sources":["../../src/plugins/semantic-kernel-types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG"}

package/dist/plugins/semantic-kernel.d.ts

@@ -0,0 +1,37 @@
+/**
+ * governance-sdk Microsoft Semantic Kernel Plugin
+ *
+ * Integrates governance enforcement into Semantic Kernel function execution.
+ * Wraps kernel functions and provides a FunctionFilter for kernel-level integration.
+ *
+ * @example
+ * ```ts
+ * import { createGovernance, blockTools } from 'governance-sdk';
+ * import { governSKFunctions } from 'governance-sdk/plugins/semantic-kernel';
+ *
+ * const gov = createGovernance({
+ *   rules: [blockTools(['delete_file', 'send_payment'])],
+ * });
+ *
+ * const { functions, filter } = await governSKFunctions(gov, myFunctions, {
+ *   agentName: 'sk-agent',
+ *   owner: 'ai-team',
+ * });
+ *
+ * // Option 1: Use governed functions directly
+ * // Option 2: Add filter to kernel for automatic governance
+ * kernel.addFunctionFilter(filter);
+ * ```
+ */
+import type { GovernanceInstance } from "../index";
+import type { EnforcementDecision } from "../policy";
+import type { KernelFunction, KernelPlugin, GovernSKConfig, GovernedSKResult, GovernedSKPluginResult } from "./semantic-kernel-types.js";
+export type { KernelFunction, KernelParameter, KernelPlugin, FunctionFilter, FunctionFilterContext, GovernSKConfig, GovernedSKResult, GovernedSKPluginResult, } from "./semantic-kernel-types.js";
+export declare class GovernanceBlockedError extends Error {
+    readonly decision: EnforcementDecision;
+    readonly toolName: string;
+    constructor(decision: EnforcementDecision, toolName: string);
+}
+export declare function governSKFunctions(governance: GovernanceInstance, functions: KernelFunction[], config: GovernSKConfig): Promise<GovernedSKResult>;
+export declare function governSKPlugin(governance: GovernanceInstance, plugin: KernelPlugin, config: GovernSKConfig): Promise<GovernedSKPluginResult>;
+//# sourceMappingURL=semantic-kernel.d.ts.map

package/dist/plugins/semantic-kernel.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"semantic-kernel.d.ts","sourceRoot":"","sources":["../../src/plugins/semantic-kernel.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAc,MAAM,UAAU,CAAC;AAC/D,OAAO,KAAK,EAAE,mBAAmB,EAAgB,MAAM,WAAW,CAAC;AAEnE,OAAO,KAAK,EACV,cAAc,EAAE,YAAY,EAC5B,cAAc,EAAE,gBAAgB,EAAE,sBAAsB,EACzD,MAAM,4BAA4B,CAAC;AAGpC,YAAY,EACV,cAAc,EAAE,eAAe,EAAE,YAAY,EAC7C,cAAc,EAAE,qBAAqB,EACrC,cAAc,EAAE,gBAAgB,EAAE,sBAAsB,GACzD,MAAM,4BAA4B,CAAC;AAIpC,qBAAa,sBAAuB,SAAQ,KAAK;IAC/C,SAAgB,QAAQ,EAAE,mBAAmB,CAAC;IAC9C,SAAgB,QAAQ,EAAE,MAAM,CAAC;gBAErB,QAAQ,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM;CAM5D;AA0ED,wBAAsB,iBAAiB,CACrC,UAAU,EAAE,kBAAkB,EAC9B,SAAS,EAAE,cAAc,EAAE,EAC3B,MAAM,EAAE,cAAc,GACrB,OAAO,CAAC,gBAAgB,CAAC,CA4B3B;AAID,wBAAsB,cAAc,CAClC,UAAU,EAAE,kBAAkB,EAC9B,MAAM,EAAE,YAAY,EACpB,MAAM,EAAE,cAAc,GACrB,OAAO,CAAC,sBAAsB,CAAC,CAuBjC"}