hackmyagent 0.7.2 → 0.8.0

package/dist/oasb/harness/dvaa-client.d.ts

@@ -0,0 +1,46 @@
+interface ChatResponse {
+    id: string;
+    choices: Array<{
+        message: {
+            role: string;
+            content: string;
+        };
+        finish_reason: string;
+    }>;
+}
+interface MCPToolResponse {
+    success: boolean;
+    content?: string;
+    output?: string;
+    results?: unknown[];
+    note?: string;
+}
+interface HealthResponse {
+    status: string;
+    agent: string;
+    port: number;
+}
+interface StatsResponse {
+    totalRequests: number;
+    attacksDetected: number;
+    attacksSuccessful: number;
+}
+/**
+ * HTTP client for DVAA agent endpoints.
+ */
+export declare class DVAAClient {
+    /** Send a chat message to an API agent */
+    chat(port: number, message: string): Promise<ChatResponse>;
+    /** Execute an MCP tool on an MCP agent */
+    mcpExecute(port: number, tool: string, args: Record<string, unknown>): Promise<MCPToolResponse>;
+    /** Send an A2A message */
+    a2aMessage(port: number, from: string, message: string): Promise<ChatResponse>;
+    /** Health check */
+    health(port: number): Promise<HealthResponse>;
+    /** Get stats */
+    stats(port: number): Promise<StatsResponse>;
+    private get;
+    private post;
+}
+export {};
+//# sourceMappingURL=dvaa-client.d.ts.map

package/dist/oasb/harness/dvaa-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dvaa-client.d.ts","sourceRoot":"","sources":["../../../src/oasb/harness/dvaa-client.ts"],"names":[],"mappings":"AAEA,UAAU,YAAY;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,KAAK,CAAC;QACb,OAAO,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;QAC3C,aAAa,EAAE,MAAM,CAAC;KACvB,CAAC,CAAC;CACJ;AAED,UAAU,eAAe;IACvB,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,OAAO,EAAE,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,UAAU,cAAc;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;CACd;AAED,UAAU,aAAa;IACrB,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,CAAC;IACxB,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AAED;;GAEG;AACH,qBAAa,UAAU;IACrB,0CAA0C;IACpC,IAAI,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IAMhE,0CAA0C;IACpC,UAAU,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,eAAe,CAAC;IAOrG,0BAA0B;IACpB,UAAU,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC;IASpF,mBAAmB;IACb,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,CAAC;IAInD,gBAAgB;IACV,KAAK,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC;IAIjD,OAAO,CAAC,GAAG;IAsBX,OAAO,CAAC,IAAI;CAsCb"}

package/dist/oasb/harness/dvaa-client.js

@@ -0,0 +1,98 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DVAAClient = void 0;
+const http_1 = __importDefault(require("http"));
+/**
+ * HTTP client for DVAA agent endpoints.
+ */
+class DVAAClient {
+    /** Send a chat message to an API agent */
+    async chat(port, message) {
+        return this.post(port, '/v1/chat/completions', {
+            messages: [{ role: 'user', content: message }],
+        });
+    }
+    /** Execute an MCP tool on an MCP agent */
+    async mcpExecute(port, tool, args) {
+        return this.post(port, '/mcp/execute', {
+            tool,
+            arguments: args,
+        });
+    }
+    /** Send an A2A message */
+    async a2aMessage(port, from, message) {
+        return this.post(port, '/v1/chat/completions', {
+            messages: [
+                { role: 'system', content: `Message from agent: ${from}` },
+                { role: 'user', content: message },
+            ],
+        });
+    }
+    /** Health check */
+    async health(port) {
+        return this.get(port, '/health');
+    }
+    /** Get stats */
+    async stats(port) {
+        return this.get(port, '/stats');
+    }
+    get(port, path) {
+        return new Promise((resolve, reject) => {
+            const req = http_1.default.get(`http://localhost:${port}${path}`, (res) => {
+                let body = '';
+                res.on('data', (chunk) => { body += chunk; });
+                res.on('end', () => {
+                    try {
+                        resolve(JSON.parse(body));
+                    }
+                    catch {
+                        reject(new Error(`Invalid JSON from port ${port}${path}: ${body.slice(0, 200)}`));
+                    }
+                });
+            });
+            req.on('error', reject);
+            req.setTimeout(10000, () => {
+                req.destroy();
+                reject(new Error(`Request to port ${port}${path} timed out`));
+            });
+        });
+    }
+    post(port, path, body) {
+        const payload = JSON.stringify(body);
+        return new Promise((resolve, reject) => {
+            const req = http_1.default.request({
+                hostname: 'localhost',
+                port,
+                path,
+                method: 'POST',
+                headers: {
+                    'Content-Type': 'application/json',
+                    'Content-Length': Buffer.byteLength(payload),
+                },
+            }, (res) => {
+                let data = '';
+                res.on('data', (chunk) => { data += chunk; });
+                res.on('end', () => {
+                    try {
+                        resolve(JSON.parse(data));
+                    }
+                    catch {
+                        reject(new Error(`Invalid JSON from port ${port}${path}: ${data.slice(0, 200)}`));
+                    }
+                });
+            });
+            req.on('error', reject);
+            req.setTimeout(10000, () => {
+                req.destroy();
+                reject(new Error(`POST to port ${port}${path} timed out`));
+            });
+            req.write(payload);
+            req.end();
+        });
+    }
+}
+exports.DVAAClient = DVAAClient;
+//# sourceMappingURL=dvaa-client.js.map

package/dist/oasb/harness/dvaa-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dvaa-client.js","sourceRoot":"","sources":["../../../src/oasb/harness/dvaa-client.ts"],"names":[],"mappings":";;;;;;AAAA,gDAAwB;AA8BxB;;GAEG;AACH,MAAa,UAAU;IACrB,0CAA0C;IAC1C,KAAK,CAAC,IAAI,CAAC,IAAY,EAAE,OAAe;QACtC,OAAO,IAAI,CAAC,IAAI,CAAe,IAAI,EAAE,sBAAsB,EAAE;YAC3D,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC;SAC/C,CAAC,CAAC;IACL,CAAC;IAED,0CAA0C;IAC1C,KAAK,CAAC,UAAU,CAAC,IAAY,EAAE,IAAY,EAAE,IAA6B;QACxE,OAAO,IAAI,CAAC,IAAI,CAAkB,IAAI,EAAE,cAAc,EAAE;YACtD,IAAI;YACJ,SAAS,EAAE,IAAI;SAChB,CAAC,CAAC;IACL,CAAC;IAED,0BAA0B;IAC1B,KAAK,CAAC,UAAU,CAAC,IAAY,EAAE,IAAY,EAAE,OAAe;QAC1D,OAAO,IAAI,CAAC,IAAI,CAAe,IAAI,EAAE,sBAAsB,EAAE;YAC3D,QAAQ,EAAE;gBACR,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,uBAAuB,IAAI,EAAE,EAAE;gBAC1D,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE;aACnC;SACF,CAAC,CAAC;IACL,CAAC;IAED,mBAAmB;IACnB,KAAK,CAAC,MAAM,CAAC,IAAY;QACvB,OAAO,IAAI,CAAC,GAAG,CAAiB,IAAI,EAAE,SAAS,CAAC,CAAC;IACnD,CAAC;IAED,gBAAgB;IAChB,KAAK,CAAC,KAAK,CAAC,IAAY;QACtB,OAAO,IAAI,CAAC,GAAG,CAAgB,IAAI,EAAE,QAAQ,CAAC,CAAC;IACjD,CAAC;IAEO,GAAG,CAAI,IAAY,EAAE,IAAY;QACvC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,GAAG,GAAG,cAAI,CAAC,GAAG,CAAC,oBAAoB,IAAI,GAAG,IAAI,EAAE,EAAE,CAAC,GAAG,EAAE,EAAE;gBAC9D,IAAI,IAAI,GAAG,EAAE,CAAC;gBACd,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC9C,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;oBACjB,IAAI,CAAC;wBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAM,CAAC,CAAC;oBACjC,CAAC;oBAAC,MAAM,CAAC;wBACP,MAAM,CAAC,IAAI,KAAK,CAAC,0BAA0B,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;oBACpF,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YAEH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YACxB,GAAG,CAAC,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE;gBACzB,GAAG,CAAC,OAAO,EAAE,CAAC;gBACd,MAAM,CAAC,IAAI,KAAK,CAAC,mBAAmB,IAAI,GAAG,IAAI,YAAY,CAAC,CAAC,CAAC;YAChE,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,IAAI,CAAI,IAAY,EAAE,IAAY,EAAE,IAAa;QACvD,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QAErC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,GAAG,GAAG,cAAI,CAAC,OAAO,CACtB;gBACE,QAAQ,EAAE,WAAW;gBACrB,IAAI;gBACJ,IAAI;gBACJ,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,gBAAgB,EAAE,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC;iBAC7C;aACF,EACD,CAAC,GAAG,EAAE,EAAE;gBACN,IAAI,IAAI,GAAG,EAAE,CAAC;gBACd,GAAG,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,EAAE,GAAG,IAAI,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC9C,GAAG,CAAC,EAAE,CAAC,KAAK,EAAE,GAAG,EAAE;oBACjB,IAAI,CAAC;wBACH,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAM,CAAC,CAAC;oBACjC,CAAC;oBAAC,MAAM,CAAC;wBACP,MAAM,CAAC,IAAI,KAAK,CAAC,0BAA0B,IAAI,GAAG,IAAI,KAAK,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;oBACpF,CAAC;gBACH,CAAC,CAAC,CAAC;YACL,CAAC,CACF,CAAC;YAEF,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;YACxB,GAAG,CAAC,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE;gBACzB,GAAG,CAAC,OAAO,EAAE,CAAC;gBACd,MAAM,CAAC,IAAI,KAAK,CAAC,gBAAgB,IAAI,GAAG,IAAI,YAAY,CAAC,CAAC,CAAC;YAC7D,CAAC,CAAC,CAAC;YAEH,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YACnB,GAAG,CAAC,GAAG,EAAE,CAAC;QACZ,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAhGD,gCAgGC"}

package/dist/oasb/harness/dvaa-manager.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Manages the DVAA (Damn Vulnerable AI Agent) process lifecycle for integration tests.
+ */
+export declare class DVAAManager {
+    private process;
+    private started;
+    /** Start DVAA with all agents */
+    start(): Promise<void>;
+    /** Stop DVAA gracefully */
+    stop(): Promise<void>;
+    /** Get the DVAA process PID (for ARP to monitor) */
+    getPid(): number | undefined;
+    /** Check if DVAA is running */
+    isRunning(): boolean;
+    private waitForHealth;
+}
+//# sourceMappingURL=dvaa-manager.d.ts.map

package/dist/oasb/harness/dvaa-manager.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dvaa-manager.d.ts","sourceRoot":"","sources":["../../../src/oasb/harness/dvaa-manager.ts"],"names":[],"mappings":"AAQA;;GAEG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,OAAO,CAA6B;IAC5C,OAAO,CAAC,OAAO,CAAS;IAExB,iCAAiC;IAC3B,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAuB5B,2BAA2B;IACrB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAsB3B,oDAAoD;IACpD,MAAM,IAAI,MAAM,GAAG,SAAS;IAI5B,+BAA+B;IAC/B,SAAS,IAAI,OAAO;IAIpB,OAAO,CAAC,aAAa;CAiCtB"}

package/dist/oasb/harness/dvaa-manager.js

@@ -0,0 +1,132 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DVAAManager = void 0;
+const child_process_1 = require("child_process");
+const path = __importStar(require("path"));
+const http_1 = __importDefault(require("http"));
+const DVAA_PATH = path.resolve(__dirname, '../../../damn-vulnerable-ai-agent');
+const HEALTH_CHECK_TIMEOUT = 30000;
+const HEALTH_CHECK_INTERVAL = 500;
+/**
+ * Manages the DVAA (Damn Vulnerable AI Agent) process lifecycle for integration tests.
+ */
+class DVAAManager {
+    constructor() {
+        this.process = null;
+        this.started = false;
+    }
+    /** Start DVAA with all agents */
+    async start() {
+        if (this.started)
+            return;
+        const entryPoint = path.join(DVAA_PATH, 'src', 'index.js');
+        this.process = (0, child_process_1.fork)(entryPoint, [], {
+            cwd: DVAA_PATH,
+            stdio: 'pipe',
+            env: { ...process.env, NODE_ENV: 'test' },
+        });
+        this.process.on('error', (err) => {
+            console.error('DVAA process error:', err.message);
+        });
+        // Wait for health checks on key ports
+        await this.waitForHealth(3000); // Dashboard
+        await this.waitForHealth(3001); // SecureBot
+        await this.waitForHealth(3003); // LegacyBot
+        this.started = true;
+    }
+    /** Stop DVAA gracefully */
+    async stop() {
+        if (!this.process || !this.started)
+            return;
+        return new Promise((resolve) => {
+            const timeout = setTimeout(() => {
+                if (this.process) {
+                    this.process.kill('SIGKILL');
+                }
+                resolve();
+            }, 5000);
+            this.process.once('exit', () => {
+                clearTimeout(timeout);
+                resolve();
+            });
+            this.process.kill('SIGTERM');
+            this.started = false;
+            this.process = null;
+        });
+    }
+    /** Get the DVAA process PID (for ARP to monitor) */
+    getPid() {
+        return this.process?.pid;
+    }
+    /** Check if DVAA is running */
+    isRunning() {
+        return this.started && this.process !== null;
+    }
+    waitForHealth(port) {
+        const deadline = Date.now() + HEALTH_CHECK_TIMEOUT;
+        return new Promise((resolve, reject) => {
+            const check = () => {
+                if (Date.now() > deadline) {
+                    reject(new Error(`DVAA health check timed out on port ${port}`));
+                    return;
+                }
+                const req = http_1.default.get(`http://localhost:${port}/health`, (res) => {
+                    if (res.statusCode === 200) {
+                        res.resume();
+                        resolve();
+                    }
+                    else {
+                        res.resume();
+                        setTimeout(check, HEALTH_CHECK_INTERVAL);
+                    }
+                });
+                req.on('error', () => {
+                    setTimeout(check, HEALTH_CHECK_INTERVAL);
+                });
+                req.setTimeout(2000, () => {
+                    req.destroy();
+                    setTimeout(check, HEALTH_CHECK_INTERVAL);
+                });
+            };
+            check();
+        });
+    }
+}
+exports.DVAAManager = DVAAManager;
+//# sourceMappingURL=dvaa-manager.js.map

package/dist/oasb/harness/dvaa-manager.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dvaa-manager.js","sourceRoot":"","sources":["../../../src/oasb/harness/dvaa-manager.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,iDAAwD;AACxD,2CAA6B;AAC7B,gDAAwB;AAExB,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,mCAAmC,CAAC,CAAC;AAC/E,MAAM,oBAAoB,GAAG,KAAK,CAAC;AACnC,MAAM,qBAAqB,GAAG,GAAG,CAAC;AAElC;;GAEG;AACH,MAAa,WAAW;IAAxB;QACU,YAAO,GAAwB,IAAI,CAAC;QACpC,YAAO,GAAG,KAAK,CAAC;IA4F1B,CAAC;IA1FC,iCAAiC;IACjC,KAAK,CAAC,KAAK;QACT,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QAEzB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC;QAE3D,IAAI,CAAC,OAAO,GAAG,IAAA,oBAAI,EAAC,UAAU,EAAE,EAAE,EAAE;YAClC,GAAG,EAAE,SAAS;YACd,KAAK,EAAE,MAAM;YACb,GAAG,EAAE,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,QAAQ,EAAE,MAAM,EAAE;SAC1C,CAAC,CAAC;QAEH,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,GAAG,EAAE,EAAE;YAC/B,OAAO,CAAC,KAAK,CAAC,qBAAqB,EAAE,GAAG,CAAC,OAAO,CAAC,CAAC;QACpD,CAAC,CAAC,CAAC;QAEH,sCAAsC;QACtC,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY;QAC5C,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY;QAC5C,MAAM,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,YAAY;QAE5C,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;IACtB,CAAC;IAED,2BAA2B;IAC3B,KAAK,CAAC,IAAI;QACR,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO;QAE3C,OAAO,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;YACnC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC9B,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;oBACjB,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;gBAC/B,CAAC;gBACD,OAAO,EAAE,CAAC;YACZ,CAAC,EAAE,IAAI,CAAC,CAAC;YAET,IAAI,CAAC,OAAQ,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE;gBAC9B,YAAY,CAAC,OAAO,CAAC,CAAC;gBACtB,OAAO,EAAE,CAAC;YACZ,CAAC,CAAC,CAAC;YAEH,IAAI,CAAC,OAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC9B,IAAI,CAAC,OAAO,GAAG,KAAK,CAAC;YACrB,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QACtB,CAAC,CAAC,CAAC;IACL,CAAC;IAED,oDAAoD;IACpD,MAAM;QACJ,OAAO,IAAI,CAAC,OAAO,EAAE,GAAG,CAAC;IAC3B,CAAC;IAED,+BAA+B;IAC/B,SAAS;QACP,OAAO,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO,KAAK,IAAI,CAAC;IAC/C,CAAC;IAEO,aAAa,CAAC,IAAY;QAChC,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,oBAAoB,CAAC;QAEnD,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,KAAK,GAAG,GAAG,EAAE;gBACjB,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,QAAQ,EAAE,CAAC;oBAC1B,MAAM,CAAC,IAAI,KAAK,CAAC,uCAAuC,IAAI,EAAE,CAAC,CAAC,CAAC;oBACjE,OAAO;gBACT,CAAC;gBAED,MAAM,GAAG,GAAG,cAAI,CAAC,GAAG,CAAC,oBAAoB,IAAI,SAAS,EAAE,CAAC,GAAG,EAAE,EAAE;oBAC9D,IAAI,GAAG,CAAC,UAAU,KAAK,GAAG,EAAE,CAAC;wBAC3B,GAAG,CAAC,MAAM,EAAE,CAAC;wBACb,OAAO,EAAE,CAAC;oBACZ,CAAC;yBAAM,CAAC;wBACN,GAAG,CAAC,MAAM,EAAE,CAAC;wBACb,UAAU,CAAC,KAAK,EAAE,qBAAqB,CAAC,CAAC;oBAC3C,CAAC;gBACH,CAAC,CAAC,CAAC;gBAEH,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE;oBACnB,UAAU,CAAC,KAAK,EAAE,qBAAqB,CAAC,CAAC;gBAC3C,CAAC,CAAC,CAAC;gBAEH,GAAG,CAAC,UAAU,CAAC,IAAI,EAAE,GAAG,EAAE;oBACxB,GAAG,CAAC,OAAO,EAAE,CAAC;oBACd,UAAU,CAAC,KAAK,EAAE,qBAAqB,CAAC,CAAC;gBAC3C,CAAC,CAAC,CAAC;YACL,CAAC,CAAC;YAEF,KAAK,EAAE,CAAC;QACV,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AA9FD,kCA8FC"}

package/dist/oasb/harness/event-collector.d.ts

@@ -0,0 +1,33 @@
+import type { ARPEvent, EnforcementResult } from '../../arp';
+/**
+ * Collects ARP events and enforcement results for test assertions.
+ * Supports async waiting for specific events with timeout.
+ */
+export declare class EventCollector {
+    private events;
+    private enforcements;
+    private waiters;
+    /** Handler to register on ARP's onEvent */
+    readonly eventHandler: (event: ARPEvent) => void;
+    /** Handler to register on ARP's onEnforcement */
+    readonly enforcementHandler: (result: EnforcementResult) => void;
+    /** Wait for an event matching a predicate, with timeout */
+    waitForEvent(predicate: (event: ARPEvent) => boolean, timeoutMs?: number): Promise<ARPEvent>;
+    /** Check if any event matches a predicate */
+    hasEvent(predicate: (event: ARPEvent) => boolean): boolean;
+    /** Get all events */
+    getEvents(): ARPEvent[];
+    /** Get events by category */
+    eventsByCategory(category: string): ARPEvent[];
+    /** Get events by severity */
+    eventsBySeverity(severity: string): ARPEvent[];
+    /** Get events by source */
+    eventsBySource(source: string): ARPEvent[];
+    /** Get all enforcement results */
+    getEnforcements(): EnforcementResult[];
+    /** Get enforcement results by action */
+    enforcementsByAction(action: string): EnforcementResult[];
+    /** Reset all collected data */
+    reset(): void;
+}
+//# sourceMappingURL=event-collector.d.ts.map

package/dist/oasb/harness/event-collector.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"event-collector.d.ts","sourceRoot":"","sources":["../../../src/oasb/harness/event-collector.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,iBAAiB,EAAE,MAAM,WAAW,CAAC;AAE7D;;;GAGG;AACH,qBAAa,cAAc;IACzB,OAAO,CAAC,MAAM,CAAkB;IAChC,OAAO,CAAC,YAAY,CAA2B;IAC/C,OAAO,CAAC,OAAO,CAIP;IAER,2CAA2C;IAC3C,QAAQ,CAAC,YAAY,GAAI,OAAO,QAAQ,KAAG,IAAI,CAY7C;IAEF,iDAAiD;IACjD,QAAQ,CAAC,kBAAkB,GAAI,QAAQ,iBAAiB,KAAG,IAAI,CAE7D;IAEF,2DAA2D;IAC3D,YAAY,CACV,SAAS,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,OAAO,EACvC,SAAS,GAAE,MAAc,GACxB,OAAO,CAAC,QAAQ,CAAC;IAgBpB,6CAA6C;IAC7C,QAAQ,CAAC,SAAS,EAAE,CAAC,KAAK,EAAE,QAAQ,KAAK,OAAO,GAAG,OAAO;IAI1D,qBAAqB;IACrB,SAAS,IAAI,QAAQ,EAAE;IAIvB,6BAA6B;IAC7B,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,QAAQ,EAAE;IAI9C,6BAA6B;IAC7B,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,QAAQ,EAAE;IAI9C,2BAA2B;IAC3B,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,QAAQ,EAAE;IAI1C,kCAAkC;IAClC,eAAe,IAAI,iBAAiB,EAAE;IAItC,wCAAwC;IACxC,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,iBAAiB,EAAE;IAIzD,+BAA+B;IAC/B,KAAK,IAAI,IAAI;CAQd"}

package/dist/oasb/harness/event-collector.js

@@ -0,0 +1,86 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EventCollector = void 0;
+/**
+ * Collects ARP events and enforcement results for test assertions.
+ * Supports async waiting for specific events with timeout.
+ */
+class EventCollector {
+    constructor() {
+        this.events = [];
+        this.enforcements = [];
+        this.waiters = [];
+        /** Handler to register on ARP's onEvent */
+        this.eventHandler = (event) => {
+            this.events.push(event);
+            // Check if any waiters match
+            for (let i = this.waiters.length - 1; i >= 0; i--) {
+                const waiter = this.waiters[i];
+                if (waiter.predicate(event)) {
+                    clearTimeout(waiter.timer);
+                    waiter.resolve(event);
+                    this.waiters.splice(i, 1);
+                }
+            }
+        };
+        /** Handler to register on ARP's onEnforcement */
+        this.enforcementHandler = (result) => {
+            this.enforcements.push(result);
+        };
+    }
+    /** Wait for an event matching a predicate, with timeout */
+    waitForEvent(predicate, timeoutMs = 10000) {
+        // Check existing events first
+        const existing = this.events.find(predicate);
+        if (existing)
+            return Promise.resolve(existing);
+        return new Promise((resolve, reject) => {
+            const timer = setTimeout(() => {
+                const idx = this.waiters.findIndex((w) => w.resolve === resolve);
+                if (idx >= 0)
+                    this.waiters.splice(idx, 1);
+                reject(new Error(`Timed out after ${timeoutMs}ms waiting for event`));
+            }, timeoutMs);
+            this.waiters.push({ predicate, resolve, timer });
+        });
+    }
+    /** Check if any event matches a predicate */
+    hasEvent(predicate) {
+        return this.events.some(predicate);
+    }
+    /** Get all events */
+    getEvents() {
+        return [...this.events];
+    }
+    /** Get events by category */
+    eventsByCategory(category) {
+        return this.events.filter((e) => e.category === category);
+    }
+    /** Get events by severity */
+    eventsBySeverity(severity) {
+        return this.events.filter((e) => e.severity === severity);
+    }
+    /** Get events by source */
+    eventsBySource(source) {
+        return this.events.filter((e) => e.source === source);
+    }
+    /** Get all enforcement results */
+    getEnforcements() {
+        return [...this.enforcements];
+    }
+    /** Get enforcement results by action */
+    enforcementsByAction(action) {
+        return this.enforcements.filter((e) => e.action === action);
+    }
+    /** Reset all collected data */
+    reset() {
+        this.events = [];
+        this.enforcements = [];
+        for (const waiter of this.waiters) {
+            clearTimeout(waiter.timer);
+        }
+        this.waiters = [];
+    }
+}
+exports.EventCollector = EventCollector;
+//# sourceMappingURL=event-collector.js.map

package/dist/oasb/harness/event-collector.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"event-collector.js","sourceRoot":"","sources":["../../../src/oasb/harness/event-collector.ts"],"names":[],"mappings":";;;AAEA;;;GAGG;AACH,MAAa,cAAc;IAA3B;QACU,WAAM,GAAe,EAAE,CAAC;QACxB,iBAAY,GAAwB,EAAE,CAAC;QACvC,YAAO,GAIV,EAAE,CAAC;QAER,2CAA2C;QAClC,iBAAY,GAAG,CAAC,KAAe,EAAQ,EAAE;YAChD,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAExB,6BAA6B;YAC7B,KAAK,IAAI,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;gBAClD,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;gBAC/B,IAAI,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,CAAC;oBAC5B,YAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;oBAC3B,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;oBACtB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;gBAC5B,CAAC;YACH,CAAC;QACH,CAAC,CAAC;QAEF,iDAAiD;QACxC,uBAAkB,GAAG,CAAC,MAAyB,EAAQ,EAAE;YAChE,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACjC,CAAC,CAAC;IAkEJ,CAAC;IAhEC,2DAA2D;IAC3D,YAAY,CACV,SAAuC,EACvC,YAAoB,KAAK;QAEzB,8BAA8B;QAC9B,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAC7C,IAAI,QAAQ;YAAE,OAAO,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QAE/C,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;gBAC5B,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,OAAO,CAAC,CAAC;gBACjE,IAAI,GAAG,IAAI,CAAC;oBAAE,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;gBAC1C,MAAM,CAAC,IAAI,KAAK,CAAC,mBAAmB,SAAS,sBAAsB,CAAC,CAAC,CAAC;YACxE,CAAC,EAAE,SAAS,CAAC,CAAC;YAEd,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;IACL,CAAC;IAED,6CAA6C;IAC7C,QAAQ,CAAC,SAAuC;QAC9C,OAAO,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACrC,CAAC;IAED,qBAAqB;IACrB,SAAS;QACP,OAAO,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC;IAC1B,CAAC;IAED,6BAA6B;IAC7B,gBAAgB,CAAC,QAAgB;QAC/B,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;IAC5D,CAAC;IAED,6BAA6B;IAC7B,gBAAgB,CAAC,QAAgB;QAC/B,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;IAC5D,CAAC;IAED,2BAA2B;IAC3B,cAAc,CAAC,MAAc;QAC3B,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IACxD,CAAC;IAED,kCAAkC;IAClC,eAAe;QACb,OAAO,CAAC,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC;IAChC,CAAC;IAED,wCAAwC;IACxC,oBAAoB,CAAC,MAAc;QACjC,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAC9D,CAAC;IAED,+BAA+B;IAC/B,KAAK;QACH,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC;QACjB,IAAI,CAAC,YAAY,GAAG,EAAE,CAAC;QACvB,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YAClC,YAAY,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC7B,CAAC;QACD,IAAI,CAAC,OAAO,GAAG,EAAE,CAAC;IACpB,CAAC;CACF;AA7FD,wCA6FC"}

package/dist/oasb/harness/metrics.d.ts

@@ -0,0 +1,14 @@
+import type { TestResult, TestAnnotation, SuiteMetrics } from './types';
+/**
+ * Computes detection effectiveness metrics from test results.
+ */
+export declare function computeMetrics(results: TestResult[]): SuiteMetrics;
+/** Create a test annotation for attack scenarios */
+export declare function attackAnnotation(opts: {
+    atlasId?: string;
+    owaspId?: string;
+    expectedSeverity?: 'info' | 'low' | 'medium' | 'high' | 'critical';
+}): TestAnnotation;
+/** Create a test annotation for benign scenarios */
+export declare function benignAnnotation(): TestAnnotation;
+//# sourceMappingURL=metrics.d.ts.map

package/dist/oasb/harness/metrics.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"metrics.d.ts","sourceRoot":"","sources":["../../../src/oasb/harness/metrics.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAExE;;GAEG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,UAAU,EAAE,GAAG,YAAY,CAqClE;AAED,oDAAoD;AACpD,wBAAgB,gBAAgB,CAAC,IAAI,EAAE;IACrC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;CACpE,GAAG,cAAc,CAMjB;AAED,oDAAoD;AACpD,wBAAgB,gBAAgB,IAAI,cAAc,CAKjD"}

package/dist/oasb/harness/metrics.js

@@ -0,0 +1,56 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.computeMetrics = computeMetrics;
+exports.attackAnnotation = attackAnnotation;
+exports.benignAnnotation = benignAnnotation;
+/**
+ * Computes detection effectiveness metrics from test results.
+ */
+function computeMetrics(results) {
+    const attacks = results.filter((r) => r.annotation.isAttack);
+    const benign = results.filter((r) => !r.annotation.isAttack);
+    const truePositives = attacks.filter((r) => r.detected).length;
+    const falseNegatives = attacks.filter((r) => !r.detected).length;
+    const trueNegatives = benign.filter((r) => !r.detected).length;
+    const falsePositives = benign.filter((r) => r.detected).length;
+    const detectionTimes = attacks
+        .filter((r) => r.detected && r.detectionTimeMs !== undefined)
+        .map((r) => r.detectionTimeMs);
+    detectionTimes.sort((a, b) => a - b);
+    const meanDetectionTimeMs = detectionTimes.length > 0
+        ? detectionTimes.reduce((sum, t) => sum + t, 0) / detectionTimes.length
+        : 0;
+    const p95Index = Math.ceil(detectionTimes.length * 0.95) - 1;
+    const p95DetectionTimeMs = detectionTimes.length > 0
+        ? detectionTimes[Math.max(0, p95Index)]
+        : 0;
+    return {
+        totalTests: results.length,
+        attacks: attacks.length,
+        benign: benign.length,
+        truePositives,
+        falsePositives,
+        trueNegatives,
+        falseNegatives,
+        detectionRate: attacks.length > 0 ? truePositives / attacks.length : 1,
+        falsePositiveRate: benign.length > 0 ? falsePositives / benign.length : 0,
+        meanDetectionTimeMs,
+        p95DetectionTimeMs,
+    };
+}
+/** Create a test annotation for attack scenarios */
+function attackAnnotation(opts) {
+    return {
+        isAttack: true,
+        expectedDetection: true,
+        ...opts,
+    };
+}
+/** Create a test annotation for benign scenarios */
+function benignAnnotation() {
+    return {
+        isAttack: false,
+        expectedDetection: false,
+    };
+}
+//# sourceMappingURL=metrics.js.map

package/dist/oasb/harness/metrics.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"metrics.js","sourceRoot":"","sources":["../../../src/oasb/harness/metrics.ts"],"names":[],"mappings":";;AAKA,wCAqCC;AAGD,4CAUC;AAGD,4CAKC;AA7DD;;GAEG;AACH,SAAgB,cAAc,CAAC,OAAqB;IAClD,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC7D,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAE7D,MAAM,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC;IAC/D,MAAM,cAAc,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC;IACjE,MAAM,aAAa,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC;IAC/D,MAAM,cAAc,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC;IAE/D,MAAM,cAAc,GAAG,OAAO;SAC3B,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,IAAI,CAAC,CAAC,eAAe,KAAK,SAAS,CAAC;SAC5D,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,eAAgB,CAAC,CAAC;IAElC,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAErC,MAAM,mBAAmB,GAAG,cAAc,CAAC,MAAM,GAAG,CAAC;QACnD,CAAC,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,EAAE,CAAC,CAAC,GAAG,cAAc,CAAC,MAAM;QACvE,CAAC,CAAC,CAAC,CAAC;IAEN,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC;IAC7D,MAAM,kBAAkB,GAAG,cAAc,CAAC,MAAM,GAAG,CAAC;QAClD,CAAC,CAAC,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC,CAAC;IAEN,OAAO;QACL,UAAU,EAAE,OAAO,CAAC,MAAM;QAC1B,OAAO,EAAE,OAAO,CAAC,MAAM;QACvB,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,aAAa;QACb,cAAc;QACd,aAAa;QACb,cAAc;QACd,aAAa,EAAE,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACtE,iBAAiB,EAAE,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,cAAc,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzE,mBAAmB;QACnB,kBAAkB;KACnB,CAAC;AACJ,CAAC;AAED,oDAAoD;AACpD,SAAgB,gBAAgB,CAAC,IAIhC;IACC,OAAO;QACL,QAAQ,EAAE,IAAI;QACd,iBAAiB,EAAE,IAAI;QACvB,GAAG,IAAI;KACR,CAAC;AACJ,CAAC;AAED,oDAAoD;AACpD,SAAgB,gBAAgB;IAC9B,OAAO;QACL,QAAQ,EAAE,KAAK;QACf,iBAAiB,EAAE,KAAK;KACzB,CAAC;AACJ,CAAC"}

package/dist/oasb/harness/mock-llm-adapter.d.ts

@@ -0,0 +1,34 @@
+import type { LLMAdapter, LLMResponse } from '../../arp';
+interface MockCall {
+    prompt: string;
+    maxTokens: number;
+    timestamp: number;
+}
+/**
+ * Deterministic LLM adapter for testing L2 intelligence layer.
+ * Returns structured responses based on input patterns.
+ */
+export declare class MockLLMAdapter implements LLMAdapter {
+    readonly name = "mock";
+    private calls;
+    private latencyMs;
+    private costPerCall;
+    constructor(options?: {
+        latencyMs?: number;
+        costPerCall?: number;
+    });
+    assess(prompt: string, maxTokens: number): Promise<LLMResponse>;
+    estimateCost(inputTokens: number, outputTokens: number): number;
+    healthCheck(): Promise<boolean>;
+    /** Get number of calls made */
+    getCallCount(): number;
+    /** Get all calls for assertions */
+    getCalls(): MockCall[];
+    /** Get the most recent call */
+    getLastCall(): MockCall | undefined;
+    /** Reset call history */
+    reset(): void;
+    private generateResponse;
+}
+export {};
+//# sourceMappingURL=mock-llm-adapter.d.ts.map

package/dist/oasb/harness/mock-llm-adapter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mock-llm-adapter.d.ts","sourceRoot":"","sources":["../../../src/oasb/harness/mock-llm-adapter.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AAEzD,UAAU,QAAQ;IAChB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,qBAAa,cAAe,YAAW,UAAU;IAC/C,QAAQ,CAAC,IAAI,UAAU;IACvB,OAAO,CAAC,KAAK,CAAkB;IAC/B,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,WAAW,CAAS;gBAEhB,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,WAAW,CAAC,EAAE,MAAM,CAAA;KAAE;IAK5D,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,WAAW,CAAC;IAiBrE,YAAY,CAAC,WAAW,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,GAAG,MAAM;IAIzD,WAAW,IAAI,OAAO,CAAC,OAAO,CAAC;IAIrC,+BAA+B;IAC/B,YAAY,IAAI,MAAM;IAItB,mCAAmC;IACnC,QAAQ,IAAI,QAAQ,EAAE;IAItB,+BAA+B;IAC/B,WAAW,IAAI,QAAQ,GAAG,SAAS;IAInC,yBAAyB;IACzB,KAAK,IAAI,IAAI;IAIb,OAAO,CAAC,gBAAgB;CAqBzB"}

package/dist/oasb/harness/mock-llm-adapter.js

@@ -0,0 +1,69 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MockLLMAdapter = void 0;
+/**
+ * Deterministic LLM adapter for testing L2 intelligence layer.
+ * Returns structured responses based on input patterns.
+ */
+class MockLLMAdapter {
+    constructor(options) {
+        this.name = 'mock';
+        this.calls = [];
+        this.latencyMs = options?.latencyMs ?? 10;
+        this.costPerCall = options?.costPerCall ?? 0.001;
+    }
+    async assess(prompt, maxTokens) {
+        this.calls.push({ prompt, maxTokens, timestamp: Date.now() });
+        if (this.latencyMs > 0) {
+            await new Promise((r) => setTimeout(r, this.latencyMs));
+        }
+        const response = this.generateResponse(prompt);
+        return {
+            content: response,
+            inputTokens: Math.ceil(prompt.length / 4),
+            outputTokens: Math.ceil(response.length / 4),
+            model: 'mock-llm',
+        };
+    }
+    estimateCost(inputTokens, outputTokens) {
+        return this.costPerCall;
+    }
+    async healthCheck() {
+        return true;
+    }
+    /** Get number of calls made */
+    getCallCount() {
+        return this.calls.length;
+    }
+    /** Get all calls for assertions */
+    getCalls() {
+        return [...this.calls];
+    }
+    /** Get the most recent call */
+    getLastCall() {
+        return this.calls[this.calls.length - 1];
+    }
+    /** Reset call history */
+    reset() {
+        this.calls = [];
+    }
+    generateResponse(prompt) {
+        const lower = prompt.toLowerCase();
+        // Threat patterns - always flag
+        if (lower.includes('threat') || lower.includes('critical') || lower.includes('kill')) {
+            return 'CONSISTENT: NO\nCONFIDENCE: 0.95\nREASONING: Activity matches known attack pattern\nACTION: KILL';
+        }
+        // Violation patterns - flag as suspicious
+        if (lower.includes('violation') || lower.includes('suspicious') || lower.includes('high')) {
+            return 'CONSISTENT: NO\nCONFIDENCE: 0.80\nREASONING: Behavior deviates from declared capabilities\nACTION: ALERT';
+        }
+        // Anomaly patterns - moderate concern
+        if (lower.includes('anomaly') || lower.includes('unusual')) {
+            return 'CONSISTENT: NO\nCONFIDENCE: 0.60\nREASONING: Statistical anomaly detected but uncertain\nACTION: ALERT';
+        }
+        // Default - allow
+        return 'CONSISTENT: YES\nCONFIDENCE: 0.90\nREASONING: Activity consistent with agent purpose\nACTION: ALLOW';
+    }
+}
+exports.MockLLMAdapter = MockLLMAdapter;
+//# sourceMappingURL=mock-llm-adapter.js.map

package/dist/oasb/harness/mock-llm-adapter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mock-llm-adapter.js","sourceRoot":"","sources":["../../../src/oasb/harness/mock-llm-adapter.ts"],"names":[],"mappings":";;;AAQA;;;GAGG;AACH,MAAa,cAAc;IAMzB,YAAY,OAAsD;QALzD,SAAI,GAAG,MAAM,CAAC;QACf,UAAK,GAAe,EAAE,CAAC;QAK7B,IAAI,CAAC,SAAS,GAAG,OAAO,EAAE,SAAS,IAAI,EAAE,CAAC;QAC1C,IAAI,CAAC,WAAW,GAAG,OAAO,EAAE,WAAW,IAAI,KAAK,CAAC;IACnD,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,MAAc,EAAE,SAAiB;QAC5C,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;QAE9D,IAAI,IAAI,CAAC,SAAS,GAAG,CAAC,EAAE,CAAC;YACvB,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC;QAC1D,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC;QAE/C,OAAO;YACL,OAAO,EAAE,QAAQ;YACjB,WAAW,EAAE,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,CAAC;YACzC,YAAY,EAAE,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;YAC5C,KAAK,EAAE,UAAU;SAClB,CAAC;IACJ,CAAC;IAED,YAAY,CAAC,WAAmB,EAAE,YAAoB;QACpD,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,KAAK,CAAC,WAAW;QACf,OAAO,IAAI,CAAC;IACd,CAAC;IAED,+BAA+B;IAC/B,YAAY;QACV,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;IAC3B,CAAC;IAED,mCAAmC;IACnC,QAAQ;QACN,OAAO,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC;IACzB,CAAC;IAED,+BAA+B;IAC/B,WAAW;QACT,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IAC3C,CAAC;IAED,yBAAyB;IACzB,KAAK;QACH,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC;IAClB,CAAC;IAEO,gBAAgB,CAAC,MAAc;QACrC,MAAM,KAAK,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;QAEnC,gCAAgC;QAChC,IAAI,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,UAAU,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACrF,OAAO,kGAAkG,CAAC;QAC5G,CAAC;QAED,0CAA0C;QAC1C,IAAI,KAAK,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC1F,OAAO,0GAA0G,CAAC;QACpH,CAAC;QAED,sCAAsC;QACtC,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;YAC3D,OAAO,wGAAwG,CAAC;QAClH,CAAC;QAED,kBAAkB;QAClB,OAAO,qGAAqG,CAAC;IAC/G,CAAC;CACF;AA7ED,wCA6EC"}