hackmyagent 0.7.2 → 0.8.0

package/dist/arp/intelligence/anomaly.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"anomaly.js","sourceRoot":"","sources":["../../../src/arp/intelligence/anomaly.ts"],"names":[],"mappings":";;;AAaA;;;;GAIG;AACH,MAAa,eAAe;IAA5B;QACE,0CAA0C;QACzB,eAAU,GAAG,IAAI,GAAG,EAAkC,CAAC;QACxE,yCAAyC;QACxB,cAAS,GAAG,IAAI,GAAG,EAA8B,CAAC;QACnE,8DAA8D;QAC7C,eAAU,GAAG,KAAK,CAAC;QACpC,6DAA6D;QAC5C,kBAAa,GAAG,EAAE,CAAC;IA0EtC,CAAC;IAxEC,oFAAoF;IACpF,KAAK,CAAC,KAAe;QACnB,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,CAAC;QACrD,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QAEvD,iCAAiC;QACjC,MAAM,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,aAAa,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;QAEpF,eAAe;QACf,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAClD,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,KAAK,GAAG,IAAI,CAAC,aAAa,EAAE,CAAC;YACrD,OAAO,CAAC,CAAC,CAAC,wCAAwC;QACpD,CAAC;QAED,mDAAmD;QACnD,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,YAAY,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAChD,CAAC;QAED,OAAO,IAAI,CAAC,GAAG,CAAC,YAAY,GAAG,QAAQ,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC;IAClE,CAAC;IAED,4CAA4C;IAC5C,MAAM,CAAC,KAAe;QACpB,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,CAAC;QAErD,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;YACvC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QACxC,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAE,CAAC;QAClD,MAAM,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;QAEpD,gBAAgB;QAChB,MAAM,MAAM,GAAG,aAAa,GAAG,IAAI,CAAC,UAAU,CAAC;QAC/C,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,IAAI,MAAM,CAAC,CAAC;QACjE,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;YAClB,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC;QAC9B,CAAC;QAED,4CAA4C;QAC5C,IAAI,CAAC,cAAc,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC5C,CAAC;IAED,6CAA6C;IAC7C,WAAW,CAAC,MAAmB;QAC7B,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC;IAC5C,CAAC;IAED,0BAA0B;IAC1B,KAAK;QACH,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;QACxB,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;IACzB,CAAC;IAEO,cAAc,CAAC,MAAmB,EAAE,MAAyB;QACnE,4CAA4C;QAC5C,MAAM,YAAY,GAAG,IAAI,GAAG,EAAkB,CAAC;QAC/C,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC,YAAY,CAAC,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QAClF,CAAC;QAED,MAAM,MAAM,GAAG,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;QACjD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO;QAEhC,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC;QAC5B,MAAM,IAAI,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC;QACvD,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC;QACzE,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAEnC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,CAAC;IACtD,CAAC;CACF;AAlFD,0CAkFC"}

package/dist/arp/intelligence/budget.d.ts

@@ -0,0 +1,33 @@
+import type { IntelligenceConfig } from '../types';
+/**
+ * Tracks LLM usage costs with hard limits to prevent runaway spending.
+ * Resets monthly. Persists to disk so restarts don't lose tracking.
+ */
+export declare class BudgetController {
+    private state;
+    private readonly budgetUsd;
+    private readonly maxCallsPerHour;
+    private readonly dataDir;
+    constructor(dataDir: string, config?: IntelligenceConfig);
+    /** Check if we can afford an LLM call. Returns false if budget exhausted. */
+    canAfford(estimatedCostUsd: number): boolean;
+    /** Record a completed LLM call */
+    record(costUsd: number, tokens: number): void;
+    /** Get current budget status */
+    getStatus(): {
+        spent: number;
+        budget: number;
+        remaining: number;
+        percentUsed: number;
+        callsThisHour: number;
+        maxCallsPerHour: number;
+        totalCalls: number;
+    };
+    /** Reset budget for new period */
+    reset(): void;
+    private rolloverIfNeeded;
+    private rolloverHourIfNeeded;
+    private loadState;
+    private saveState;
+}
+//# sourceMappingURL=budget.d.ts.map

package/dist/arp/intelligence/budget.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"budget.d.ts","sourceRoot":"","sources":["../../../src/arp/intelligence/budget.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAe,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAMhE;;;GAGG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,KAAK,CAAc;IAC3B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAS;IACnC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAS;IACzC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAS;gBAErB,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,kBAAkB;IAOxD,6EAA6E;IAC7E,SAAS,CAAC,gBAAgB,EAAE,MAAM,GAAG,OAAO;IAiB5C,kCAAkC;IAClC,MAAM,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,IAAI;IAsB7C,gCAAgC;IAChC,SAAS,IAAI;QACX,KAAK,EAAE,MAAM,CAAC;QACd,MAAM,EAAE,MAAM,CAAC;QACf,SAAS,EAAE,MAAM,CAAC;QAClB,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,CAAC;QACtB,eAAe,EAAE,MAAM,CAAC;QACxB,UAAU,EAAE,MAAM,CAAC;KACpB;IAaD,kCAAkC;IAClC,KAAK,IAAI,IAAI;IAKb,OAAO,CAAC,gBAAgB;IAWxB,OAAO,CAAC,oBAAoB;IAU5B,OAAO,CAAC,SAAS;IAYjB,OAAO,CAAC,SAAS;CAKlB"}

package/dist/arp/intelligence/budget.js

@@ -0,0 +1,150 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.BudgetController = void 0;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const BUDGET_FILE = 'budget.json';
+const DEFAULT_BUDGET_USD = 5.0;
+const DEFAULT_MAX_CALLS_PER_HOUR = 20;
+/**
+ * Tracks LLM usage costs with hard limits to prevent runaway spending.
+ * Resets monthly. Persists to disk so restarts don't lose tracking.
+ */
+class BudgetController {
+    constructor(dataDir, config) {
+        this.dataDir = dataDir;
+        this.budgetUsd = config?.budgetUsd ?? DEFAULT_BUDGET_USD;
+        this.maxCallsPerHour = config?.maxCallsPerHour ?? DEFAULT_MAX_CALLS_PER_HOUR;
+        this.state = this.loadState();
+    }
+    /** Check if we can afford an LLM call. Returns false if budget exhausted. */
+    canAfford(estimatedCostUsd) {
+        this.rolloverIfNeeded();
+        // Hard budget limit
+        if (this.state.totalSpentUsd + estimatedCostUsd > this.budgetUsd) {
+            return false;
+        }
+        // Hourly rate limit
+        this.rolloverHourIfNeeded();
+        if (this.state.callsThisHour >= this.maxCallsPerHour) {
+            return false;
+        }
+        return true;
+    }
+    /** Record a completed LLM call */
+    record(costUsd, tokens) {
+        this.rolloverIfNeeded();
+        this.rolloverHourIfNeeded();
+        this.state.totalSpentUsd += costUsd;
+        this.state.totalCalls += 1;
+        this.state.callsThisHour += 1;
+        this.state.recentCosts.push({
+            timestamp: new Date().toISOString(),
+            cost: costUsd,
+            tokens,
+        });
+        // Keep last 100 entries
+        if (this.state.recentCosts.length > 100) {
+            this.state.recentCosts = this.state.recentCosts.slice(-100);
+        }
+        this.saveState();
+    }
+    /** Get current budget status */
+    getStatus() {
+        this.rolloverIfNeeded();
+        return {
+            spent: Math.round(this.state.totalSpentUsd * 10000) / 10000,
+            budget: this.budgetUsd,
+            remaining: Math.round((this.budgetUsd - this.state.totalSpentUsd) * 10000) / 10000,
+            percentUsed: Math.round((this.state.totalSpentUsd / this.budgetUsd) * 100),
+            callsThisHour: this.state.callsThisHour,
+            maxCallsPerHour: this.maxCallsPerHour,
+            totalCalls: this.state.totalCalls,
+        };
+    }
+    /** Reset budget for new period */
+    reset() {
+        this.state = freshState();
+        this.saveState();
+    }
+    rolloverIfNeeded() {
+        const periodStart = new Date(this.state.periodStart);
+        const now = new Date();
+        // Reset monthly
+        if (now.getMonth() !== periodStart.getMonth() || now.getFullYear() !== periodStart.getFullYear()) {
+            this.state = freshState();
+            this.saveState();
+        }
+    }
+    rolloverHourIfNeeded() {
+        const hourStart = new Date(this.state.hourStart);
+        const now = new Date();
+        if (now.getTime() - hourStart.getTime() > 3600000) {
+            this.state.callsThisHour = 0;
+            this.state.hourStart = now.toISOString();
+        }
+    }
+    loadState() {
+        const filePath = path.join(this.dataDir, BUDGET_FILE);
+        try {
+            if (fs.existsSync(filePath)) {
+                return JSON.parse(fs.readFileSync(filePath, 'utf-8'));
+            }
+        }
+        catch {
+            // Corrupted file — start fresh
+        }
+        return freshState();
+    }
+    saveState() {
+        fs.mkdirSync(this.dataDir, { recursive: true });
+        const filePath = path.join(this.dataDir, BUDGET_FILE);
+        fs.writeFileSync(filePath, JSON.stringify(this.state, null, 2), 'utf-8');
+    }
+}
+exports.BudgetController = BudgetController;
+function freshState() {
+    const now = new Date().toISOString();
+    return {
+        totalSpentUsd: 0,
+        periodStart: now,
+        totalCalls: 0,
+        callsThisHour: 0,
+        hourStart: now,
+        recentCosts: [],
+    };
+}
+//# sourceMappingURL=budget.js.map

package/dist/arp/intelligence/budget.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"budget.js","sourceRoot":"","sources":["../../../src/arp/intelligence/budget.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,uCAAyB;AACzB,2CAA6B;AAG7B,MAAM,WAAW,GAAG,aAAa,CAAC;AAClC,MAAM,kBAAkB,GAAG,GAAG,CAAC;AAC/B,MAAM,0BAA0B,GAAG,EAAE,CAAC;AAEtC;;;GAGG;AACH,MAAa,gBAAgB;IAM3B,YAAY,OAAe,EAAE,MAA2B;QACtD,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC;QACvB,IAAI,CAAC,SAAS,GAAG,MAAM,EAAE,SAAS,IAAI,kBAAkB,CAAC;QACzD,IAAI,CAAC,eAAe,GAAG,MAAM,EAAE,eAAe,IAAI,0BAA0B,CAAC;QAC7E,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;IAChC,CAAC;IAED,6EAA6E;IAC7E,SAAS,CAAC,gBAAwB;QAChC,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAExB,oBAAoB;QACpB,IAAI,IAAI,CAAC,KAAK,CAAC,aAAa,GAAG,gBAAgB,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC;YACjE,OAAO,KAAK,CAAC;QACf,CAAC;QAED,oBAAoB;QACpB,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,IAAI,IAAI,CAAC,KAAK,CAAC,aAAa,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;YACrD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED,kCAAkC;IAClC,MAAM,CAAC,OAAe,EAAE,MAAc;QACpC,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACxB,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAE5B,IAAI,CAAC,KAAK,CAAC,aAAa,IAAI,OAAO,CAAC;QACpC,IAAI,CAAC,KAAK,CAAC,UAAU,IAAI,CAAC,CAAC;QAC3B,IAAI,CAAC,KAAK,CAAC,aAAa,IAAI,CAAC,CAAC;QAE9B,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC;YAC1B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,IAAI,EAAE,OAAO;YACb,MAAM;SACP,CAAC,CAAC;QAEH,wBAAwB;QACxB,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YACxC,IAAI,CAAC,KAAK,CAAC,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,GAAG,CAAC,CAAC;QAC9D,CAAC;QAED,IAAI,CAAC,SAAS,EAAE,CAAC;IACnB,CAAC;IAED,gCAAgC;IAChC,SAAS;QASP,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACxB,OAAO;YACL,KAAK,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,GAAG,KAAK,CAAC,GAAG,KAAK;YAC3D,MAAM,EAAE,IAAI,CAAC,SAAS;YACtB,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,KAAK,CAAC,GAAG,KAAK;YAClF,WAAW,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,GAAG,CAAC;YAC1E,aAAa,EAAE,IAAI,CAAC,KAAK,CAAC,aAAa;YACvC,eAAe,EAAE,IAAI,CAAC,eAAe;YACrC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,UAAU;SAClC,CAAC;IACJ,CAAC;IAED,kCAAkC;IAClC,KAAK;QACH,IAAI,CAAC,KAAK,GAAG,UAAU,EAAE,CAAC;QAC1B,IAAI,CAAC,SAAS,EAAE,CAAC;IACnB,CAAC;IAEO,gBAAgB;QACtB,MAAM,WAAW,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;QACrD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QAEvB,gBAAgB;QAChB,IAAI,GAAG,CAAC,QAAQ,EAAE,KAAK,WAAW,CAAC,QAAQ,EAAE,IAAI,GAAG,CAAC,WAAW,EAAE,KAAK,WAAW,CAAC,WAAW,EAAE,EAAE,CAAC;YACjG,IAAI,CAAC,KAAK,GAAG,UAAU,EAAE,CAAC;YAC1B,IAAI,CAAC,SAAS,EAAE,CAAC;QACnB,CAAC;IACH,CAAC;IAEO,oBAAoB;QAC1B,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QACjD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QAEvB,IAAI,GAAG,CAAC,OAAO,EAAE,GAAG,SAAS,CAAC,OAAO,EAAE,GAAG,OAAO,EAAE,CAAC;YAClD,IAAI,CAAC,KAAK,CAAC,aAAa,GAAG,CAAC,CAAC;YAC7B,IAAI,CAAC,KAAK,CAAC,SAAS,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;QAC3C,CAAC;IACH,CAAC;IAEO,SAAS;QACf,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QACtD,IAAI,CAAC;YACH,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5B,OAAO,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;YACxD,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,+BAA+B;QACjC,CAAC;QACD,OAAO,UAAU,EAAE,CAAC;IACtB,CAAC;IAEO,SAAS;QACf,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAChD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QACtD,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;IAC3E,CAAC;CACF;AAxHD,4CAwHC;AAED,SAAS,UAAU;IACjB,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrC,OAAO;QACL,aAAa,EAAE,CAAC;QAChB,WAAW,EAAE,GAAG;QAChB,UAAU,EAAE,CAAC;QACb,aAAa,EAAE,CAAC;QAChB,SAAS,EAAE,GAAG;QACd,WAAW,EAAE,EAAE;KAChB,CAAC;AACJ,CAAC"}

package/dist/arp/intelligence/coordinator.d.ts

@@ -0,0 +1,43 @@
+import type { ARPEvent, ARPConfig, LLMAssessment } from '../types';
+/**
+ * The 3-Layer Intelligence Coordinator.
+ *
+ * L0: Rules (free)      — Pattern matching, allowlists, thresholds. Every event.
+ * L1: Statistical (free) — Z-score anomaly detection, baseline deviation. L0 flags.
+ * L2: LLM-Assisted ($)   — Micro-prompt to agent's LLM. Only L1 flags + budget check.
+ *
+ * 99% of events never reach L2. Cost is ~$0.01/day for most agents.
+ */
+export declare class IntelligenceCoordinator {
+    private readonly config;
+    private readonly agentContext;
+    private readonly budget;
+    private readonly anomaly;
+    private adapter;
+    private batchQueue;
+    private batchTimer?;
+    constructor(arpConfig: ARPConfig, dataDir: string);
+    /**
+     * Analyze an event through the 3-layer stack.
+     * Mutates the event's category, severity, and classifiedBy fields.
+     * Returns the LLM assessment if L2 was invoked.
+     */
+    analyze(event: ARPEvent): Promise<LLMAssessment | null>;
+    /** Get budget status */
+    getBudgetStatus(): {
+        spent: number;
+        budget: number;
+        remaining: number;
+        percentUsed: number;
+        callsThisHour: number;
+        maxCallsPerHour: number;
+        totalCalls: number;
+    };
+    /** Stop the coordinator (flush batches, clean up) */
+    stop(): Promise<void>;
+    private shouldEscalateToL2;
+    private assessWithLlm;
+    private queueForBatch;
+    private flushBatch;
+}
+//# sourceMappingURL=coordinator.d.ts.map

package/dist/arp/intelligence/coordinator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"coordinator.d.ts","sourceRoot":"","sources":["../../../src/arp/intelligence/coordinator.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,QAAQ,EACR,SAAS,EAGT,aAAa,EAEd,MAAM,UAAU,CAAC;AAQlB;;;;;;;;GAQG;AACH,qBAAa,uBAAuB;IAClC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAqB;IAC5C,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAS;IACtC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAmB;IAC1C,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAkB;IAC1C,OAAO,CAAC,OAAO,CAA2B;IAC1C,OAAO,CAAC,UAAU,CAAkB;IACpC,OAAO,CAAC,UAAU,CAAC,CAAgC;gBAEvC,SAAS,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM;IAuBjD;;;;OAIG;IACG,OAAO,CAAC,KAAK,EAAE,QAAQ,GAAG,OAAO,CAAC,aAAa,GAAG,IAAI,CAAC;IAoC7D,wBAAwB;IACxB,eAAe;;;;;;;;;IAIf,qDAAqD;IAC/C,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAW3B,OAAO,CAAC,kBAAkB;YAsBZ,aAAa;IAiC3B,OAAO,CAAC,aAAa;YAkBP,UAAU;CAezB"}

package/dist/arp/intelligence/coordinator.js

@@ -0,0 +1,301 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IntelligenceCoordinator = void 0;
+const budget_1 = require("./budget");
+const adapters_1 = require("./adapters");
+const anomaly_1 = require("./anomaly");
+const license_1 = require("../license");
+const SEVERITY_ORDER = ['info', 'low', 'medium', 'high', 'critical'];
+/**
+ * The 3-Layer Intelligence Coordinator.
+ *
+ * L0: Rules (free)      — Pattern matching, allowlists, thresholds. Every event.
+ * L1: Statistical (free) — Z-score anomaly detection, baseline deviation. L0 flags.
+ * L2: LLM-Assisted ($)   — Micro-prompt to agent's LLM. Only L1 flags + budget check.
+ *
+ * 99% of events never reach L2. Cost is ~$0.01/day for most agents.
+ */
+class IntelligenceCoordinator {
+    constructor(arpConfig, dataDir) {
+        this.adapter = null;
+        this.batchQueue = [];
+        this.config = arpConfig.intelligence ?? {};
+        this.budget = new budget_1.BudgetController(dataDir, this.config);
+        this.anomaly = new anomaly_1.AnomalyDetector();
+        // Build agent context for LLM prompts
+        this.agentContext = buildAgentContext(arpConfig);
+        // Initialize LLM adapter if intelligence is enabled
+        if (this.config.enabled !== false) {
+            try {
+                if (this.config.adapter) {
+                    this.adapter = (0, adapters_1.createAdapter)(this.config.adapter, this.config.adapterConfig);
+                }
+                else {
+                    this.adapter = (0, adapters_1.autoDetectAdapter)(this.config.adapterConfig);
+                }
+            }
+            catch {
+                // No adapter available — L2 disabled, L0+L1 still work
+                this.adapter = null;
+            }
+        }
+    }
+    /**
+     * Analyze an event through the 3-layer stack.
+     * Mutates the event's category, severity, and classifiedBy fields.
+     * Returns the LLM assessment if L2 was invoked.
+     */
+    async analyze(event) {
+        // L0: Already classified by the monitor that emitted it
+        // L1: Statistical anomaly detection (free)
+        const anomalyScore = this.anomaly.score(event);
+        if (anomalyScore > 2.0) {
+            // Z-score > 2 standard deviations — flag as anomaly
+            if (event.category === 'normal') {
+                event.category = 'anomaly';
+            }
+            if (severityIndex(event.severity) < severityIndex('medium')) {
+                event.severity = 'medium';
+            }
+            event.classifiedBy = 'L1-statistical';
+        }
+        // L1 records this event for future baseline
+        this.anomaly.record(event);
+        // L2: LLM assessment (only if L1 flagged and budget allows)
+        if (this.shouldEscalateToL2(event)) {
+            // AI-layer L2 assessment requires premium license
+            if (AI_LAYER_SOURCES.has(event.source)) {
+                const licensed = await (0, license_1.hasFeature)(license_1.PREMIUM_FEATURES.AI_LAYER_L2);
+                if (!licensed)
+                    return null;
+            }
+            if (this.config.enableBatching && event.severity !== 'critical') {
+                return this.queueForBatch(event);
+            }
+            return this.assessWithLlm(event);
+        }
+        return null;
+    }
+    /** Get budget status */
+    getBudgetStatus() {
+        return this.budget.getStatus();
+    }
+    /** Stop the coordinator (flush batches, clean up) */
+    async stop() {
+        if (this.batchTimer) {
+            clearTimeout(this.batchTimer);
+            this.batchTimer = undefined;
+        }
+        // Flush remaining batch
+        if (this.batchQueue.length > 0) {
+            await this.flushBatch();
+        }
+    }
+    shouldEscalateToL2(event) {
+        // L2 disabled
+        if (this.config.enabled === false)
+            return false;
+        if (!this.adapter)
+            return false;
+        // Only escalate if L1 flagged it
+        if (event.category === 'normal')
+            return false;
+        // Minimum severity check
+        const minSev = this.config.minSeverityForLlm ?? 'medium';
+        if (severityIndex(event.severity) < severityIndex(minSev))
+            return false;
+        // Budget check
+        const estimatedCost = this.adapter.estimateCost(200, // ~200 input tokens for micro-prompt
+        this.config.maxTokensPerCall ?? 300);
+        if (!this.budget.canAfford(estimatedCost))
+            return false;
+        return true;
+    }
+    async assessWithLlm(event) {
+        if (!this.adapter)
+            return null;
+        const prompt = buildMicroPrompt(this.agentContext, event);
+        const maxTokens = this.config.maxTokensPerCall ?? 300;
+        try {
+            const response = await this.adapter.assess(prompt, maxTokens);
+            const cost = this.adapter.estimateCost(response.inputTokens, response.outputTokens);
+            this.budget.record(cost, response.inputTokens + response.outputTokens);
+            const assessment = parseAssessment(response.content, response.inputTokens + response.outputTokens, cost);
+            event.llmAssessment = assessment;
+            event.classifiedBy = 'L2-llm';
+            // LLM can upgrade severity
+            if (assessment.recommendation === 'kill') {
+                event.severity = 'critical';
+                event.category = 'threat';
+            }
+            else if (assessment.recommendation === 'pause') {
+                event.severity = 'high';
+                event.category = 'violation';
+            }
+            return assessment;
+        }
+        catch {
+            // LLM failure — fall back to L1 classification
+            return null;
+        }
+    }
+    queueForBatch(event) {
+        this.batchQueue.push(event);
+        if (!this.batchTimer) {
+            const windowMs = this.config.batchWindowMs ?? 300000;
+            this.batchTimer = setTimeout(() => {
+                this.flushBatch().catch(() => { });
+                this.batchTimer = undefined;
+            }, windowMs);
+            if (this.batchTimer.unref) {
+                this.batchTimer.unref();
+            }
+        }
+        return null; // Assessment will come later
+    }
+    async flushBatch() {
+        if (this.batchQueue.length === 0 || !this.adapter)
+            return;
+        const events = this.batchQueue.splice(0);
+        const prompt = buildBatchPrompt(this.agentContext, events);
+        const maxTokens = Math.min((this.config.maxTokensPerCall ?? 300) * 2, 1000);
+        try {
+            const response = await this.adapter.assess(prompt, maxTokens);
+            const cost = this.adapter.estimateCost(response.inputTokens, response.outputTokens);
+            this.budget.record(cost, response.inputTokens + response.outputTokens);
+        }
+        catch {
+            // Batch failure — events remain at L1 classification
+        }
+    }
+}
+exports.IntelligenceCoordinator = IntelligenceCoordinator;
+// --- Prompt Engineering (the craft) ---
+function buildAgentContext(config) {
+    const parts = [`Agent: ${config.agentName}`];
+    if (config.agentDescription) {
+        parts.push(`Purpose: ${config.agentDescription}`);
+    }
+    if (config.declaredCapabilities?.length) {
+        parts.push(`Capabilities: ${config.declaredCapabilities.join(', ')}`);
+    }
+    return parts.join('\n');
+}
+/** AI-layer monitor sources that use specialized prompts */
+const AI_LAYER_SOURCES = new Set(['prompt', 'mcp-protocol', 'a2a-protocol']);
+/**
+ * Micro-prompt: ~200 tokens in, ~100 tokens out.
+ * Designed for speed and cost efficiency. No chain-of-thought.
+ * Uses specialized templates for AI-layer threats.
+ */
+function buildMicroPrompt(agentContext, event) {
+    if (AI_LAYER_SOURCES.has(event.source)) {
+        return buildAILayerPrompt(agentContext, event);
+    }
+    return `SECURITY ASSESSMENT — answer concisely.
+
+${agentContext}
+
+Event: ${event.source} monitor detected ${event.category} (${event.severity})
+Detail: ${event.description}
+Data: ${JSON.stringify(event.data).slice(0, 500)}
+
+Is this behavior consistent with the agent's declared purpose and capabilities?
+Respond in exactly this format:
+CONSISTENT: YES or NO
+CONFIDENCE: 0.0-1.0
+REASONING: one sentence
+ACTION: ALLOW, ALERT, PAUSE, or KILL`;
+}
+/**
+ * Specialized prompt for AI-layer threats (prompt injection, MCP exploitation, A2A spoofing).
+ * Provides the LLM with pattern match context for true/false positive assessment.
+ */
+function buildAILayerPrompt(agentContext, event) {
+    const data = event.data;
+    const patternId = data.patternId ?? 'unknown';
+    const patternCategory = data.patternCategory ?? event.source;
+    const matchedText = data.matchedText ?? '';
+    const direction = data.direction ?? '';
+    let contentContext = '';
+    if (event.source === 'prompt') {
+        contentContext = direction === 'input'
+            ? `User/agent sent input that matched pattern ${patternId} (${patternCategory}).`
+            : `LLM response matched output leak pattern ${patternId} (${patternCategory}).`;
+    }
+    else if (event.source === 'mcp-protocol') {
+        const toolName = data.toolName ?? 'unknown';
+        contentContext = `MCP tool call "${toolName}" has parameters matching exploitation pattern ${patternId}.`;
+    }
+    else if (event.source === 'a2a-protocol') {
+        const from = data.from ?? 'unknown';
+        const to = data.to ?? 'unknown';
+        contentContext = `A2A message from "${from}" to "${to}" matched attack pattern ${patternId}.`;
+    }
+    return `AI-LAYER THREAT ASSESSMENT — determine if this is a true positive or false positive.
+
+${agentContext}
+
+Detection: ${event.description}
+Context: ${contentContext}
+Matched text: "${String(matchedText).slice(0, 300)}"
+Pattern: ${patternId} — ${patternCategory}
+Severity: ${event.severity}
+
+Could this be legitimate usage given the agent's purpose, or is this a genuine attack attempt?
+Consider: obfuscation techniques, benign edge cases, and the agent's declared capabilities.
+
+Respond in exactly this format:
+CONSISTENT: YES (benign/false positive) or NO (genuine threat)
+CONFIDENCE: 0.0-1.0
+REASONING: one sentence explaining why
+ACTION: ALLOW, ALERT, PAUSE, or KILL`;
+}
+function buildBatchPrompt(agentContext, events) {
+    const summary = events.map((e, i) => `${i + 1}. [${e.source}] ${e.severity}: ${e.description}`).join('\n');
+    return `BATCH SECURITY ASSESSMENT — ${events.length} anomalies.
+
+${agentContext}
+
+Events:
+${summary}
+
+Are any of these inconsistent with the agent's purpose? Flag only genuinely suspicious items.
+Format: EVENT_NUM: ALLOW/ALERT/PAUSE/KILL — one sentence reason`;
+}
+function parseAssessment(content, tokens, cost) {
+    const lines = content.trim().split('\n');
+    let consistent = true;
+    let confidence = 0.5;
+    let reasoning = 'No assessment available';
+    let recommendation = 'allow';
+    for (const line of lines) {
+        const upper = line.toUpperCase();
+        if (upper.startsWith('CONSISTENT:')) {
+            consistent = upper.includes('YES');
+        }
+        else if (upper.startsWith('CONFIDENCE:')) {
+            const val = parseFloat(line.split(':')[1]?.trim() ?? '0.5');
+            confidence = isNaN(val) ? 0.5 : Math.max(0, Math.min(1, val));
+        }
+        else if (upper.startsWith('REASONING:')) {
+            reasoning = line.split(':').slice(1).join(':').trim();
+        }
+        else if (upper.startsWith('ACTION:')) {
+            const action = line.split(':')[1]?.trim().toUpperCase();
+            if (action === 'ALERT')
+                recommendation = 'alert';
+            else if (action === 'PAUSE')
+                recommendation = 'pause';
+            else if (action === 'KILL')
+                recommendation = 'kill';
+            else
+                recommendation = 'allow';
+        }
+    }
+    return { consistent, confidence, reasoning, recommendation, tokensUsed: tokens, estimatedCost: cost };
+}
+function severityIndex(severity) {
+    return SEVERITY_ORDER.indexOf(severity);
+}
+//# sourceMappingURL=coordinator.js.map

package/dist/arp/intelligence/coordinator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"coordinator.js","sourceRoot":"","sources":["../../../src/arp/intelligence/coordinator.ts"],"names":[],"mappings":";;;AAQA,qCAA4C;AAC5C,yCAA8D;AAC9D,uCAA4C;AAC5C,wCAA0D;AAE1D,MAAM,cAAc,GAAoB,CAAC,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,UAAU,CAAC,CAAC;AAEtF;;;;;;;;GAQG;AACH,MAAa,uBAAuB;IASlC,YAAY,SAAoB,EAAE,OAAe;QAJzC,YAAO,GAAsB,IAAI,CAAC;QAClC,eAAU,GAAe,EAAE,CAAC;QAIlC,IAAI,CAAC,MAAM,GAAG,SAAS,CAAC,YAAY,IAAI,EAAE,CAAC;QAC3C,IAAI,CAAC,MAAM,GAAG,IAAI,yBAAgB,CAAC,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;QACzD,IAAI,CAAC,OAAO,GAAG,IAAI,yBAAe,EAAE,CAAC;QAErC,sCAAsC;QACtC,IAAI,CAAC,YAAY,GAAG,iBAAiB,CAAC,SAAS,CAAC,CAAC;QAEjD,oDAAoD;QACpD,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;YAClC,IAAI,CAAC;gBACH,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;oBACxB,IAAI,CAAC,OAAO,GAAG,IAAA,wBAAa,EAAC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;gBAC/E,CAAC;qBAAM,CAAC;oBACN,IAAI,CAAC,OAAO,GAAG,IAAA,4BAAiB,EAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC;gBAC9D,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,uDAAuD;gBACvD,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;YACtB,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;;OAIG;IACH,KAAK,CAAC,OAAO,CAAC,KAAe;QAC3B,wDAAwD;QAExD,2CAA2C;QAC3C,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAC/C,IAAI,YAAY,GAAG,GAAG,EAAE,CAAC;YACvB,oDAAoD;YACpD,IAAI,KAAK,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;gBAChC,KAAK,CAAC,QAAQ,GAAG,SAAS,CAAC;YAC7B,CAAC;YACD,IAAI,aAAa,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,aAAa,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC5D,KAAK,CAAC,QAAQ,GAAG,QAAQ,CAAC;YAC5B,CAAC;YACD,KAAK,CAAC,YAAY,GAAG,gBAAgB,CAAC;QACxC,CAAC;QAED,4CAA4C;QAC5C,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAE3B,4DAA4D;QAC5D,IAAI,IAAI,CAAC,kBAAkB,CAAC,KAAK,CAAC,EAAE,CAAC;YACnC,kDAAkD;YAClD,IAAI,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;gBACvC,MAAM,QAAQ,GAAG,MAAM,IAAA,oBAAU,EAAC,0BAAgB,CAAC,WAAW,CAAC,CAAC;gBAChE,IAAI,CAAC,QAAQ;oBAAE,OAAO,IAAI,CAAC;YAC7B,CAAC;YAED,IAAI,IAAI,CAAC,MAAM,CAAC,cAAc,IAAI,KAAK,CAAC,QAAQ,KAAK,UAAU,EAAE,CAAC;gBAChE,OAAO,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;YACnC,CAAC;YACD,OAAO,IAAI,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;QACnC,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED,wBAAwB;IACxB,eAAe;QACb,OAAO,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;IACjC,CAAC;IAED,qDAAqD;IACrD,KAAK,CAAC,IAAI;QACR,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YACpB,YAAY,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAC9B,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC;QAC9B,CAAC;QACD,wBAAwB;QACxB,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,MAAM,IAAI,CAAC,UAAU,EAAE,CAAC;QAC1B,CAAC;IACH,CAAC;IAEO,kBAAkB,CAAC,KAAe;QACxC,cAAc;QACd,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,KAAK,KAAK;YAAE,OAAO,KAAK,CAAC;QAChD,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO,KAAK,CAAC;QAEhC,iCAAiC;QACjC,IAAI,KAAK,CAAC,QAAQ,KAAK,QAAQ;YAAE,OAAO,KAAK,CAAC;QAE9C,yBAAyB;QACzB,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,CAAC,iBAAiB,IAAI,QAAQ,CAAC;QACzD,IAAI,aAAa,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,aAAa,CAAC,MAAM,CAAC;YAAE,OAAO,KAAK,CAAC;QAExE,eAAe;QACf,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAC7C,GAAG,EAAE,qCAAqC;QAC1C,IAAI,CAAC,MAAM,CAAC,gBAAgB,IAAI,GAAG,CACpC,CAAC;QACF,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,CAAC;YAAE,OAAO,KAAK,CAAC;QAExD,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,KAAe;QACzC,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO,IAAI,CAAC;QAE/B,MAAM,MAAM,GAAG,gBAAgB,CAAC,IAAI,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;QAC1D,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,gBAAgB,IAAI,GAAG,CAAC;QAEtD,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;YAC9D,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,QAAQ,CAAC,YAAY,CAAC,CAAC;YAEpF,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,WAAW,GAAG,QAAQ,CAAC,YAAY,CAAC,CAAC;YAEvE,MAAM,UAAU,GAAG,eAAe,CAAC,QAAQ,CAAC,OAAO,EAAE,QAAQ,CAAC,WAAW,GAAG,QAAQ,CAAC,YAAY,EAAE,IAAI,CAAC,CAAC;YAEzG,KAAK,CAAC,aAAa,GAAG,UAAU,CAAC;YACjC,KAAK,CAAC,YAAY,GAAG,QAAQ,CAAC;YAE9B,2BAA2B;YAC3B,IAAI,UAAU,CAAC,cAAc,KAAK,MAAM,EAAE,CAAC;gBACzC,KAAK,CAAC,QAAQ,GAAG,UAAU,CAAC;gBAC5B,KAAK,CAAC,QAAQ,GAAG,QAAQ,CAAC;YAC5B,CAAC;iBAAM,IAAI,UAAU,CAAC,cAAc,KAAK,OAAO,EAAE,CAAC;gBACjD,KAAK,CAAC,QAAQ,GAAG,MAAM,CAAC;gBACxB,KAAK,CAAC,QAAQ,GAAG,WAAW,CAAC;YAC/B,CAAC;YAED,OAAO,UAAU,CAAC;QACpB,CAAC;QAAC,MAAM,CAAC;YACP,+CAA+C;YAC/C,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAEO,aAAa,CAAC,KAAe;QACnC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAE5B,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,CAAC;YACrB,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,aAAa,IAAI,MAAM,CAAC;YACrD,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC,GAAG,EAAE;gBAChC,IAAI,CAAC,UAAU,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;gBAClC,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC;YAC9B,CAAC,EAAE,QAAQ,CAAC,CAAC;YAEb,IAAI,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;gBAC1B,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC,CAAC,6BAA6B;IAC5C,CAAC;IAEO,KAAK,CAAC,UAAU;QACtB,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO;YAAE,OAAO;QAE1D,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACzC,MAAM,MAAM,GAAG,gBAAgB,CAAC,IAAI,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;QAC3D,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,gBAAgB,IAAI,GAAG,CAAC,GAAG,CAAC,EAAE,IAAI,CAAC,CAAC;QAE5E,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;YAC9D,MAAM,IAAI,GAAG,IAAI,CAAC,OAAO,CAAC,YAAY,CAAC,QAAQ,CAAC,WAAW,EAAE,QAAQ,CAAC,YAAY,CAAC,CAAC;YACpF,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,WAAW,GAAG,QAAQ,CAAC,YAAY,CAAC,CAAC;QACzE,CAAC;QAAC,MAAM,CAAC;YACP,qDAAqD;QACvD,CAAC;IACH,CAAC;CACF;AAlLD,0DAkLC;AAED,yCAAyC;AAEzC,SAAS,iBAAiB,CAAC,MAAiB;IAC1C,MAAM,KAAK,GAAG,CAAC,UAAU,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IAC7C,IAAI,MAAM,CAAC,gBAAgB,EAAE,CAAC;QAC5B,KAAK,CAAC,IAAI,CAAC,YAAY,MAAM,CAAC,gBAAgB,EAAE,CAAC,CAAC;IACpD,CAAC;IACD,IAAI,MAAM,CAAC,oBAAoB,EAAE,MAAM,EAAE,CAAC;QACxC,KAAK,CAAC,IAAI,CAAC,iBAAiB,MAAM,CAAC,oBAAoB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACxE,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,4DAA4D;AAC5D,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,cAAc,EAAE,cAAc,CAAC,CAAC,CAAC;AAE7E;;;;GAIG;AACH,SAAS,gBAAgB,CAAC,YAAoB,EAAE,KAAe;IAC7D,IAAI,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;QACvC,OAAO,kBAAkB,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;IACjD,CAAC;IAED,OAAO;;EAEP,YAAY;;SAEL,KAAK,CAAC,MAAM,qBAAqB,KAAK,CAAC,QAAQ,KAAK,KAAK,CAAC,QAAQ;UACjE,KAAK,CAAC,WAAW;QACnB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;;;;;;;qCAOX,CAAC;AACtC,CAAC;AAED;;;GAGG;AACH,SAAS,kBAAkB,CAAC,YAAoB,EAAE,KAAe;IAC/D,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;IACxB,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC;IAC9C,MAAM,eAAe,GAAG,IAAI,CAAC,eAAe,IAAI,KAAK,CAAC,MAAM,CAAC;IAC7D,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC;IAC3C,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,EAAE,CAAC;IAEvC,IAAI,cAAc,GAAG,EAAE,CAAC;IACxB,IAAI,KAAK,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;QAC9B,cAAc,GAAG,SAAS,KAAK,OAAO;YACpC,CAAC,CAAC,8CAA8C,SAAS,KAAK,eAAe,IAAI;YACjF,CAAC,CAAC,4CAA4C,SAAS,KAAK,eAAe,IAAI,CAAC;IACpF,CAAC;SAAM,IAAI,KAAK,CAAC,MAAM,KAAK,cAAc,EAAE,CAAC;QAC3C,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,SAAS,CAAC;QAC5C,cAAc,GAAG,kBAAkB,QAAQ,kDAAkD,SAAS,GAAG,CAAC;IAC5G,CAAC;SAAM,IAAI,KAAK,CAAC,MAAM,KAAK,cAAc,EAAE,CAAC;QAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,IAAI,SAAS,CAAC;QACpC,MAAM,EAAE,GAAG,IAAI,CAAC,EAAE,IAAI,SAAS,CAAC;QAChC,cAAc,GAAG,qBAAqB,IAAI,SAAS,EAAE,4BAA4B,SAAS,GAAG,CAAC;IAChG,CAAC;IAED,OAAO;;EAEP,YAAY;;aAED,KAAK,CAAC,WAAW;WACnB,cAAc;iBACR,MAAM,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;WACvC,SAAS,MAAM,eAAe;YAC7B,KAAK,CAAC,QAAQ;;;;;;;;;qCASW,CAAC;AACtC,CAAC;AAED,SAAS,gBAAgB,CAAC,YAAoB,EAAE,MAAkB;IAChE,MAAM,OAAO,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAClC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,WAAW,EAAE,CAC1D,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAEb,OAAO,+BAA+B,MAAM,CAAC,MAAM;;EAEnD,YAAY;;;EAGZ,OAAO;;;gEAGuD,CAAC;AACjE,CAAC;AAED,SAAS,eAAe,CAAC,OAAe,EAAE,MAAc,EAAE,IAAY;IACpE,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACzC,IAAI,UAAU,GAAG,IAAI,CAAC;IACtB,IAAI,UAAU,GAAG,GAAG,CAAC;IACrB,IAAI,SAAS,GAAG,yBAAyB,CAAC;IAC1C,IAAI,cAAc,GAAoC,OAAO,CAAC;IAE9D,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;QACjC,IAAI,KAAK,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;YACpC,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QACrC,CAAC;aAAM,IAAI,KAAK,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;YAC3C,MAAM,GAAG,GAAG,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,IAAI,KAAK,CAAC,CAAC;YAC5D,UAAU,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QAChE,CAAC;aAAM,IAAI,KAAK,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC1C,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;QACxD,CAAC;aAAM,IAAI,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACvC,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YACxD,IAAI,MAAM,KAAK,OAAO;gBAAE,cAAc,GAAG,OAAO,CAAC;iBAC5C,IAAI,MAAM,KAAK,OAAO;gBAAE,cAAc,GAAG,OAAO,CAAC;iBACjD,IAAI,MAAM,KAAK,MAAM;gBAAE,cAAc,GAAG,MAAM,CAAC;;gBAC/C,cAAc,GAAG,OAAO,CAAC;QAChC,CAAC;IACH,CAAC;IAED,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,SAAS,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC;AACxG,CAAC;AAED,SAAS,aAAa,CAAC,QAAuB;IAC5C,OAAO,cAAc,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;AAC1C,CAAC"}

package/dist/arp/interceptors/a2a-protocol.d.ts

@@ -0,0 +1,29 @@
+import type { Monitor, MonitorType } from '../types';
+import type { EventEngine } from '../engine/event-engine';
+import { type ScanResult } from '../patterns/ai-threats';
+/**
+ * A2A Protocol interceptor -- scans agent-to-agent messages for
+ * identity spoofing, delegation abuse, and embedded prompt injection.
+ *
+ * Enforces a trusted agent list and validates message content.
+ */
+export declare class A2AProtocolInterceptor implements Monitor {
+    readonly type: MonitorType;
+    private readonly engine;
+    private readonly trustedAgents;
+    private active;
+    constructor(engine: EventEngine, trustedAgents?: string[]);
+    start(): Promise<void>;
+    stop(): Promise<void>;
+    isRunning(): boolean;
+    /**
+     * Scan an A2A message for identity spoofing, delegation abuse,
+     * and embedded prompt injection.
+     *
+     * @param from - Sending agent identifier
+     * @param to - Receiving agent identifier
+     * @param content - Message content
+     */
+    scanMessage(from: string, to: string, content: string): ScanResult;
+}
+//# sourceMappingURL=a2a-protocol.d.ts.map

package/dist/arp/interceptors/a2a-protocol.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"a2a-protocol.d.ts","sourceRoot":"","sources":["../../../src/arp/interceptors/a2a-protocol.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,WAAW,EAAE,MAAM,UAAU,CAAC;AACrD,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAA0B,KAAK,UAAU,EAAE,MAAM,wBAAwB,CAAC;AAEjF;;;;;GAKG;AACH,qBAAa,sBAAuB,YAAW,OAAO;IACpD,QAAQ,CAAC,IAAI,EAAE,WAAW,CAAkB;IAC5C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAc;IACrC,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAc;IAC5C,OAAO,CAAC,MAAM,CAAS;gBAEX,MAAM,EAAE,WAAW,EAAE,aAAa,CAAC,EAAE,MAAM,EAAE;IAKnD,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAItB,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAI3B,SAAS,IAAI,OAAO;IAIpB;;;;;;;OAOG;IACH,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,GAAG,UAAU;CA8EnE"}