hackmyagent 0.7.2 → 0.8.1

package/dist/plugins/signcrypt.d.ts

@@ -0,0 +1,27 @@
+export declare const VERSION = "0.1.0";
+import type { OpenA2APlugin, PluginMetadata, PluginStatus, Finding, Remediation, FixOptions, PluginInitOptions } from './core';
+export interface SignatureRecord {
+    target: string;
+    hash: string;
+    signature: string;
+    signerPublicKey: string;
+    signedAt: string;
+    expiresAt?: string;
+}
+export interface SignCryptConfig {
+    dataDir?: string;
+    maxHeartbeatAge?: number;
+}
+export declare const metadata: PluginMetadata;
+export declare class SignCryptPlugin implements OpenA2APlugin {
+    readonly metadata: PluginMetadata;
+    private aimCore?;
+    private config;
+    init(options?: PluginInitOptions): Promise<void>;
+    scan(agentDir: string): Promise<Finding[]>;
+    fix(agentDir: string, options?: FixOptions): Promise<Remediation[]>;
+    status(): Promise<PluginStatus>;
+    uninstall(agentDir: string): Promise<void>;
+}
+export declare function createPlugin(): SignCryptPlugin;
+//# sourceMappingURL=signcrypt.d.ts.map

package/dist/plugins/signcrypt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signcrypt.d.ts","sourceRoot":"","sources":["../../src/plugins/signcrypt.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,OAAO,UAAU,CAAC;AAE/B,OAAO,KAAK,EACV,aAAa,EACb,cAAc,EACd,YAAY,EACZ,OAAO,EACP,WAAW,EACX,UAAU,EACV,iBAAiB,EAClB,MAAM,QAAQ,CAAC;AAQhB,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,MAAM,CAAC;IAClB,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AA6MD,eAAO,MAAM,QAAQ,EAAE,cAOtB,CAAC;AAEF,qBAAa,eAAgB,YAAW,aAAa;IACnD,QAAQ,CAAC,QAAQ,iBAAY;IAC7B,OAAO,CAAC,OAAO,CAAC,CAAU;IAC1B,OAAO,CAAC,MAAM,CAAuB;IAE/B,IAAI,CAAC,OAAO,CAAC,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC;IAKhD,IAAI,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;IAmB1C,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IA0DnE,MAAM,IAAI,OAAO,CAAC,YAAY,CAAC;IAS/B,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAMjD;AAED,wBAAgB,YAAY,IAAI,eAAe,CAE9C"}

package/dist/plugins/signcrypt.js

@@ -0,0 +1,317 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignCryptPlugin = exports.metadata = exports.VERSION = void 0;
+exports.createPlugin = createPlugin;
+exports.VERSION = '0.1.0';
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const crypto = __importStar(require("crypto"));
+// --- Constants ---
+const SIGNATURE_DIR = '.opena2a/signcrypt';
+const SIGNATURES_FILE = 'signatures.json';
+const MAX_HEARTBEAT_AGE_SECONDS = 604800; // 7 days
+const MAX_SCAN_DEPTH = 5;
+// --- Scan helpers ---
+function findFiles(dir, pattern, depth = 0) {
+    if (depth > MAX_SCAN_DEPTH)
+        return [];
+    const results = [];
+    try {
+        const entries = fs.readdirSync(dir, { withFileTypes: true });
+        for (const entry of entries) {
+            if (entry.name === 'node_modules' || entry.name === '.git')
+                continue;
+            const fullPath = path.join(dir, entry.name);
+            if (entry.isDirectory()) {
+                results.push(...findFiles(fullPath, pattern, depth + 1));
+            }
+            else if (pattern.test(entry.name)) {
+                results.push(fullPath);
+            }
+        }
+    }
+    catch {
+        // Not readable
+    }
+    return results;
+}
+function checkForSignature(content) {
+    return (content.includes('opena2a_signature:') ||
+        content.includes('signature:') ||
+        content.includes('-----BEGIN SIGNATURE-----'));
+}
+function checkForHashPin(content) {
+    return (content.includes('pinned_hash:') ||
+        content.includes('sha256:') ||
+        content.includes('hash:'));
+}
+function scanSkillFiles(agentDir) {
+    const findings = [];
+    // Check root SKILL.md
+    const rootSkill = path.join(agentDir, 'SKILL.md');
+    if (fs.existsSync(rootSkill)) {
+        const content = fs.readFileSync(rootSkill, 'utf-8');
+        if (!checkForSignature(content)) {
+            findings.push({
+                id: 'SKILL-001',
+                title: 'Unsigned skill',
+                description: 'SKILL.md has no cryptographic signature. Sign with Ed25519 to verify authorship.',
+                severity: 'medium',
+                filePath: 'SKILL.md',
+                autoFixable: true,
+            });
+        }
+    }
+    // Check *.skill.md files
+    const skillFiles = findFiles(agentDir, /\.skill\.md$/);
+    for (const file of skillFiles) {
+        const content = fs.readFileSync(file, 'utf-8');
+        const relativePath = path.relative(agentDir, file);
+        if (!checkForSignature(content)) {
+            findings.push({
+                id: 'SKILL-001',
+                title: 'Unsigned skill',
+                description: `${relativePath} has no cryptographic signature. Sign with Ed25519 to verify authorship.`,
+                severity: 'medium',
+                filePath: relativePath,
+                autoFixable: true,
+            });
+        }
+    }
+    return findings;
+}
+function scanHeartbeatFiles(agentDir) {
+    const findings = [];
+    const heartbeatFiles = [
+        path.join(agentDir, 'HEARTBEAT.md'),
+        ...findFiles(agentDir, /\.heartbeat\.md$/),
+    ];
+    for (const file of heartbeatFiles) {
+        if (!fs.existsSync(file))
+            continue;
+        const content = fs.readFileSync(file, 'utf-8');
+        const relativePath = path.relative(agentDir, file);
+        // HEARTBEAT-002: No hash pinning
+        if (!checkForHashPin(content)) {
+            findings.push({
+                id: 'HEARTBEAT-002',
+                title: 'No hash pinning on heartbeat',
+                description: `${relativePath} has no hash pin. Pin the SHA-256 hash to detect unauthorized changes.`,
+                severity: 'high',
+                filePath: relativePath,
+                autoFixable: true,
+            });
+        }
+        // HEARTBEAT-003: Unsigned heartbeat
+        if (!checkForSignature(content)) {
+            findings.push({
+                id: 'HEARTBEAT-003',
+                title: 'Unsigned heartbeat',
+                description: `${relativePath} has no cryptographic signature. Sign with Ed25519 to verify authorship.`,
+                severity: 'high',
+                filePath: relativePath,
+                autoFixable: true,
+            });
+        }
+    }
+    return findings;
+}
+// --- Fix helpers ---
+const MAX_FILE_SIZE = 50 * 1024 * 1024; // 50MB limit for hash computation
+function computeFileHash(filePath) {
+    const stat = fs.statSync(filePath);
+    if (!stat.isFile() || stat.size > MAX_FILE_SIZE)
+        return null;
+    const content = fs.readFileSync(filePath);
+    return crypto.createHash('sha256').update(content).digest('hex');
+}
+function appendSignatureBlock(filePath, hash, aimCore) {
+    let content = fs.readFileSync(filePath, 'utf-8');
+    // Don't add if already signed
+    if (checkForSignature(content))
+        return;
+    const now = new Date().toISOString();
+    const expiresAt = new Date(Date.now() + MAX_HEARTBEAT_AGE_SECONDS * 1000).toISOString();
+    let signatureHex = 'unsigned';
+    let signerKey = 'none';
+    if (aimCore) {
+        try {
+            const identity = aimCore.getIdentity();
+            const data = Buffer.from(hash, 'hex');
+            const sig = aimCore.sign(data);
+            signatureHex = Buffer.from(sig).toString('hex');
+            signerKey = identity.publicKey;
+        }
+        catch {
+            // No identity available — still add hash pin
+        }
+    }
+    const block = [
+        '',
+        '---',
+        '<!-- opena2a:signcrypt -->',
+        `pinned_hash: sha256:${hash}`,
+        `opena2a_signature: ${signatureHex}`,
+        `signer: ${signerKey}`,
+        `signed_at: ${now}`,
+        `expires_at: ${expiresAt}`,
+        '<!-- /opena2a:signcrypt -->',
+    ].join('\n');
+    content += block + '\n';
+    fs.writeFileSync(filePath, content, 'utf-8');
+}
+function saveSignatureRecord(agentDir, record) {
+    const sigDir = path.join(agentDir, SIGNATURE_DIR);
+    fs.mkdirSync(sigDir, { recursive: true });
+    const sigFile = path.join(sigDir, SIGNATURES_FILE);
+    let records = [];
+    if (fs.existsSync(sigFile)) {
+        try {
+            records = JSON.parse(fs.readFileSync(sigFile, 'utf-8'));
+        }
+        catch {
+            records = [];
+        }
+    }
+    // Replace existing record for same target
+    records = records.filter((r) => r.target !== record.target);
+    records.push(record);
+    fs.writeFileSync(sigFile, JSON.stringify(records, null, 2), 'utf-8');
+}
+// --- Plugin Implementation ---
+exports.metadata = {
+    packageName: 'hackmyagent',
+    displayName: 'SignCrypt',
+    description: 'Configuration integrity — Ed25519 signing, hash pinning, heartbeat expiry enforcement',
+    version: exports.VERSION,
+    findings: ['SKILL-001', 'HEARTBEAT-002', 'HEARTBEAT-003'],
+    scoreImprovement: 8,
+};
+class SignCryptPlugin {
+    constructor() {
+        this.metadata = exports.metadata;
+        this.config = {};
+    }
+    async init(options) {
+        this.aimCore = options?.aimCore;
+        this.config = options?.config ?? {};
+    }
+    async scan(agentDir) {
+        const findings = [];
+        findings.push(...scanSkillFiles(agentDir));
+        findings.push(...scanHeartbeatFiles(agentDir));
+        if (this.aimCore) {
+            this.aimCore.logEvent({
+                plugin: 'signcrypt',
+                action: 'scan.complete',
+                target: agentDir,
+                result: findings.length > 0 ? 'denied' : 'allowed',
+                metadata: { findingsCount: findings.length },
+            });
+        }
+        return findings;
+    }
+    async fix(agentDir, options) {
+        const remediations = [];
+        const findings = await this.scan(agentDir);
+        if (options?.dryRun) {
+            return findings
+                .filter((f) => f.autoFixable)
+                .map((f) => ({
+                findingId: f.id,
+                description: `Would sign: ${f.filePath}`,
+                filesModified: f.filePath ? [f.filePath] : [],
+                rollbackAvailable: false,
+            }));
+        }
+        for (const finding of findings) {
+            if (!finding.filePath || !finding.autoFixable)
+                continue;
+            const fullPath = path.join(agentDir, finding.filePath);
+            if (!fs.existsSync(fullPath))
+                continue;
+            const hash = computeFileHash(fullPath);
+            if (!hash)
+                continue; // Skip files too large or not regular files
+            appendSignatureBlock(fullPath, hash, this.aimCore);
+            const now = new Date().toISOString();
+            saveSignatureRecord(agentDir, {
+                target: finding.filePath,
+                hash: `sha256:${hash}`,
+                signature: 'applied',
+                signerPublicKey: this.aimCore ? this.aimCore.getIdentity().publicKey : 'none',
+                signedAt: now,
+                expiresAt: new Date(Date.now() + MAX_HEARTBEAT_AGE_SECONDS * 1000).toISOString(),
+            });
+            remediations.push({
+                findingId: finding.id,
+                description: `Signed ${finding.filePath} with SHA-256 hash pin and Ed25519 signature`,
+                filesModified: [finding.filePath],
+                rollbackAvailable: false,
+            });
+        }
+        if (this.aimCore && remediations.length > 0) {
+            this.aimCore.logEvent({
+                plugin: 'signcrypt',
+                action: 'fix.applied',
+                target: agentDir,
+                result: 'allowed',
+                metadata: { signedFiles: remediations.length },
+            });
+            this.aimCore.setTrustHints({ configSigned: true });
+        }
+        return remediations;
+    }
+    async status() {
+        return {
+            name: exports.metadata.displayName,
+            version: exports.metadata.version,
+            active: false,
+            findingsCount: 0,
+        };
+    }
+    async uninstall(agentDir) {
+        const sigDir = path.join(agentDir, SIGNATURE_DIR);
+        if (fs.existsSync(sigDir)) {
+            fs.rmSync(sigDir, { recursive: true, force: true });
+        }
+    }
+}
+exports.SignCryptPlugin = SignCryptPlugin;
+function createPlugin() {
+    return new SignCryptPlugin();
+}
+//# sourceMappingURL=signcrypt.js.map

package/dist/plugins/signcrypt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signcrypt.js","sourceRoot":"","sources":["../../src/plugins/signcrypt.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA4VA,oCAEC;AA9VY,QAAA,OAAO,GAAG,OAAO,CAAC;AAY/B,uCAAyB;AACzB,2CAA6B;AAC7B,+CAAiC;AAkBjC,oBAAoB;AAEpB,MAAM,aAAa,GAAG,oBAAoB,CAAC;AAC3C,MAAM,eAAe,GAAG,iBAAiB,CAAC;AAC1C,MAAM,yBAAyB,GAAG,MAAM,CAAC,CAAC,SAAS;AACnD,MAAM,cAAc,GAAG,CAAC,CAAC;AAEzB,uBAAuB;AAEvB,SAAS,SAAS,CAAC,GAAW,EAAE,OAAe,EAAE,QAAgB,CAAC;IAChE,IAAI,KAAK,GAAG,cAAc;QAAE,OAAO,EAAE,CAAC;IAEtC,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAC7D,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM;gBAAE,SAAS;YAErE,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;YAC5C,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,OAAO,CAAC,IAAI,CAAC,GAAG,SAAS,CAAC,QAAQ,EAAE,OAAO,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;YAC3D,CAAC;iBAAM,IAAI,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;gBACpC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,eAAe;IACjB,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,iBAAiB,CAAC,OAAe;IACxC,OAAO,CACL,OAAO,CAAC,QAAQ,CAAC,oBAAoB,CAAC;QACtC,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;QAC9B,OAAO,CAAC,QAAQ,CAAC,2BAA2B,CAAC,CAC9C,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,OAAe;IACtC,OAAO,CACL,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC;QAChC,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAC;QAC3B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,CAC1B,CAAC;AACJ,CAAC;AAED,SAAS,cAAc,CAAC,QAAgB;IACtC,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,sBAAsB;IACtB,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;IAClD,IAAI,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QACpD,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE,CAAC;YAChC,QAAQ,CAAC,IAAI,CAAC;gBACZ,EAAE,EAAE,WAAW;gBACf,KAAK,EAAE,gBAAgB;gBACvB,WAAW,EAAE,kFAAkF;gBAC/F,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,UAAU;gBACpB,WAAW,EAAE,IAAI;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,yBAAyB;IACzB,MAAM,UAAU,GAAG,SAAS,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;IACvD,KAAK,MAAM,IAAI,IAAI,UAAU,EAAE,CAAC;QAC9B,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAC/C,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QACnD,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE,CAAC;YAChC,QAAQ,CAAC,IAAI,CAAC;gBACZ,EAAE,EAAE,WAAW;gBACf,KAAK,EAAE,gBAAgB;gBACvB,WAAW,EAAE,GAAG,YAAY,0EAA0E;gBACtG,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,YAAY;gBACtB,WAAW,EAAE,IAAI;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAS,kBAAkB,CAAC,QAAgB;IAC1C,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,MAAM,cAAc,GAAG;QACrB,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,cAAc,CAAC;QACnC,GAAG,SAAS,CAAC,QAAQ,EAAE,kBAAkB,CAAC;KAC3C,CAAC;IAEF,KAAK,MAAM,IAAI,IAAI,cAAc,EAAE,CAAC;QAClC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC;YAAE,SAAS;QAEnC,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QAC/C,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAEnD,iCAAiC;QACjC,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9B,QAAQ,CAAC,IAAI,CAAC;gBACZ,EAAE,EAAE,eAAe;gBACnB,KAAK,EAAE,8BAA8B;gBACrC,WAAW,EAAE,GAAG,YAAY,wEAAwE;gBACpG,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,YAAY;gBACtB,WAAW,EAAE,IAAI;aAClB,CAAC,CAAC;QACL,CAAC;QAED,oCAAoC;QACpC,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,EAAE,CAAC;YAChC,QAAQ,CAAC,IAAI,CAAC;gBACZ,EAAE,EAAE,eAAe;gBACnB,KAAK,EAAE,oBAAoB;gBAC3B,WAAW,EAAE,GAAG,YAAY,0EAA0E;gBACtG,QAAQ,EAAE,MAAM;gBAChB,QAAQ,EAAE,YAAY;gBACtB,WAAW,EAAE,IAAI;aAClB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,sBAAsB;AAEtB,MAAM,aAAa,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,kCAAkC;AAE1E,SAAS,eAAe,CAAC,QAAgB;IACvC,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACnC,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,IAAI,IAAI,CAAC,IAAI,GAAG,aAAa;QAAE,OAAO,IAAI,CAAC;IAC7D,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC;IAC1C,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AACnE,CAAC;AAED,SAAS,oBAAoB,CAAC,QAAgB,EAAE,IAAY,EAAE,OAAiB;IAC7E,IAAI,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAEjD,8BAA8B;IAC9B,IAAI,iBAAiB,CAAC,OAAO,CAAC;QAAE,OAAO;IAEvC,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrC,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,yBAAyB,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IAExF,IAAI,YAAY,GAAG,UAAU,CAAC;IAC9B,IAAI,SAAS,GAAG,MAAM,CAAC;IAEvB,IAAI,OAAO,EAAE,CAAC;QACZ,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;YACvC,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YACtC,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC/B,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YAChD,SAAS,GAAG,QAAQ,CAAC,SAAS,CAAC;QACjC,CAAC;QAAC,MAAM,CAAC;YACP,6CAA6C;QAC/C,CAAC;IACH,CAAC;IAED,MAAM,KAAK,GAAG;QACZ,EAAE;QACF,KAAK;QACL,4BAA4B;QAC5B,uBAAuB,IAAI,EAAE;QAC7B,sBAAsB,YAAY,EAAE;QACpC,WAAW,SAAS,EAAE;QACtB,cAAc,GAAG,EAAE;QACnB,eAAe,SAAS,EAAE;QAC1B,6BAA6B;KAC9B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAEb,OAAO,IAAI,KAAK,GAAG,IAAI,CAAC;IACxB,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;AAC/C,CAAC;AAED,SAAS,mBAAmB,CAAC,QAAgB,EAAE,MAAuB;IACpE,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;IAClD,EAAE,CAAC,SAAS,CAAC,MAAM,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE1C,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;IACnD,IAAI,OAAO,GAAsB,EAAE,CAAC;IAEpC,IAAI,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;QAC1D,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,GAAG,EAAE,CAAC;QACf,CAAC;IACH,CAAC;IAED,0CAA0C;IAC1C,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,MAAM,CAAC,CAAC;IAC5D,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAErB,EAAE,CAAC,aAAa,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;AACvE,CAAC;AAED,gCAAgC;AAEnB,QAAA,QAAQ,GAAmB;IACtC,WAAW,EAAE,aAAa;IAC1B,WAAW,EAAE,WAAW;IACxB,WAAW,EAAE,uFAAuF;IACpG,OAAO,EAAE,eAAO;IAChB,QAAQ,EAAE,CAAC,WAAW,EAAE,eAAe,EAAE,eAAe,CAAC;IACzD,gBAAgB,EAAE,CAAC;CACpB,CAAC;AAEF,MAAa,eAAe;IAA5B;QACW,aAAQ,GAAG,gBAAQ,CAAC;QAErB,WAAM,GAAoB,EAAE,CAAC;IAmGvC,CAAC;IAjGC,KAAK,CAAC,IAAI,CAAC,OAA2B;QACpC,IAAI,CAAC,OAAO,GAAG,OAAO,EAAE,OAAO,CAAC;QAChC,IAAI,CAAC,MAAM,GAAI,OAAO,EAAE,MAA0B,IAAI,EAAE,CAAC;IAC3D,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,QAAgB;QACzB,MAAM,QAAQ,GAAc,EAAE,CAAC;QAE/B,QAAQ,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC3C,QAAQ,CAAC,IAAI,CAAC,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC,CAAC;QAE/C,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;YACjB,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC;gBACpB,MAAM,EAAE,WAAW;gBACnB,MAAM,EAAE,eAAe;gBACvB,MAAM,EAAE,QAAQ;gBAChB,MAAM,EAAE,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS;gBAClD,QAAQ,EAAE,EAAE,aAAa,EAAE,QAAQ,CAAC,MAAM,EAAE;aAC7C,CAAC,CAAC;QACL,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,KAAK,CAAC,GAAG,CAAC,QAAgB,EAAE,OAAoB;QAC9C,MAAM,YAAY,GAAkB,EAAE,CAAC;QACvC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAE3C,IAAI,OAAO,EAAE,MAAM,EAAE,CAAC;YACpB,OAAO,QAAQ;iBACZ,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC;iBAC5B,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACX,SAAS,EAAE,CAAC,CAAC,EAAE;gBACf,WAAW,EAAE,eAAe,CAAC,CAAC,QAAQ,EAAE;gBACxC,aAAa,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE;gBAC7C,iBAAiB,EAAE,KAAK;aACzB,CAAC,CAAC,CAAC;QACR,CAAC;QAED,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,IAAI,CAAC,OAAO,CAAC,QAAQ,IAAI,CAAC,OAAO,CAAC,WAAW;gBAAE,SAAS;YAExD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;YACvD,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC;gBAAE,SAAS;YAEvC,MAAM,IAAI,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;YACvC,IAAI,CAAC,IAAI;gBAAE,SAAS,CAAC,4CAA4C;YACjE,oBAAoB,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;YAEnD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;YACrC,mBAAmB,CAAC,QAAQ,EAAE;gBAC5B,MAAM,EAAE,OAAO,CAAC,QAAQ;gBACxB,IAAI,EAAE,UAAU,IAAI,EAAE;gBACtB,SAAS,EAAE,SAAS;gBACpB,eAAe,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM;gBAC7E,QAAQ,EAAE,GAAG;gBACb,SAAS,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,yBAAyB,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE;aACjF,CAAC,CAAC;YAEH,YAAY,CAAC,IAAI,CAAC;gBAChB,SAAS,EAAE,OAAO,CAAC,EAAE;gBACrB,WAAW,EAAE,UAAU,OAAO,CAAC,QAAQ,8CAA8C;gBACrF,aAAa,EAAE,CAAC,OAAO,CAAC,QAAQ,CAAC;gBACjC,iBAAiB,EAAE,KAAK;aACzB,CAAC,CAAC;QACL,CAAC;QAED,IAAI,IAAI,CAAC,OAAO,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC5C,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC;gBACpB,MAAM,EAAE,WAAW;gBACnB,MAAM,EAAE,aAAa;gBACrB,MAAM,EAAE,QAAQ;gBAChB,MAAM,EAAE,SAAS;gBACjB,QAAQ,EAAE,EAAE,WAAW,EAAE,YAAY,CAAC,MAAM,EAAE;aAC/C,CAAC,CAAC;YAEH,IAAI,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC;QACrD,CAAC;QAED,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,KAAK,CAAC,MAAM;QACV,OAAO;YACL,IAAI,EAAE,gBAAQ,CAAC,WAAW;YAC1B,OAAO,EAAE,gBAAQ,CAAC,OAAO;YACzB,MAAM,EAAE,KAAK;YACb,aAAa,EAAE,CAAC;SACjB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,SAAS,CAAC,QAAgB;QAC9B,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;QAClD,IAAI,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YAC1B,EAAE,CAAC,MAAM,CAAC,MAAM,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QACtD,CAAC;IACH,CAAC;CACF;AAtGD,0CAsGC;AAED,SAAgB,YAAY;IAC1B,OAAO,IAAI,eAAe,EAAE,CAAC;AAC/B,CAAC"}

package/dist/plugins/skillguard.d.ts

@@ -0,0 +1,25 @@
+export declare const VERSION = "0.1.0";
+import type { OpenA2APlugin, PluginMetadata, PluginStatus, Finding, Remediation, FixOptions, PluginInitOptions } from './core';
+export interface SkillPin {
+    skillName: string;
+    hash: string;
+    pinnedAt: string;
+    filePath: string;
+}
+export interface SkillGuardConfig {
+    dataDir?: string;
+    autoPin?: boolean;
+}
+export declare const metadata: PluginMetadata;
+export declare class SkillGuardPlugin implements OpenA2APlugin {
+    readonly metadata: PluginMetadata;
+    private aimCore?;
+    private config;
+    init(options?: PluginInitOptions): Promise<void>;
+    scan(agentDir: string): Promise<Finding[]>;
+    fix(agentDir: string, options?: FixOptions): Promise<Remediation[]>;
+    status(): Promise<PluginStatus>;
+    uninstall(agentDir: string): Promise<void>;
+}
+export declare function createPlugin(): SkillGuardPlugin;
+//# sourceMappingURL=skillguard.d.ts.map

package/dist/plugins/skillguard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"skillguard.d.ts","sourceRoot":"","sources":["../../src/plugins/skillguard.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,OAAO,UAAU,CAAC;AAE/B,OAAO,KAAK,EACV,aAAa,EACb,cAAc,EACd,YAAY,EACZ,OAAO,EACP,WAAW,EACX,UAAU,EACV,iBAAiB,EAClB,MAAM,QAAQ,CAAC;AAQhB,MAAM,WAAW,QAAQ;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAkOD,eAAO,MAAM,QAAQ,EAAE,cAOtB,CAAC;AAEF,qBAAa,gBAAiB,YAAW,aAAa;IACpD,QAAQ,CAAC,QAAQ,iBAAY;IAC7B,OAAO,CAAC,OAAO,CAAC,CAAU;IAC1B,OAAO,CAAC,MAAM,CAAwB;IAEhC,IAAI,CAAC,OAAO,CAAC,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC;IAKhD,IAAI,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;IA4B1C,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,UAAU,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IA+DnE,MAAM,IAAI,OAAO,CAAC,YAAY,CAAC;IAS/B,SAAS,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;CAMjD;AAED,wBAAgB,YAAY,IAAI,gBAAgB,CAE/C"}