hackmyagent 0.7.2 → 0.8.1

package/dist/abgr/tier.d.ts

@@ -0,0 +1,27 @@
+/**
+ * Agent Tier Detection
+ *
+ * Detects agent tier from SOUL.md / system prompt content by analyzing
+ * capability indicators. The tier determines which governance controls
+ * are applicable.
+ */
+import type { AgentTier } from './types';
+/**
+ * Detect the agent tier from document content.
+ *
+ * Checks for multi-agent indicators first (highest tier), then agentic,
+ * then tool-using. If none match, defaults to 'basic'.
+ *
+ * @param content - The SOUL.md or system prompt content to analyze
+ * @returns The detected agent tier
+ */
+export declare function detectTier(content: string): AgentTier;
+/**
+ * Get a human-readable label for a tier.
+ */
+export declare function getTierLabel(tier: AgentTier): string;
+/**
+ * Get the tier hierarchy level (0 = basic, 3 = multi-agent).
+ */
+export declare function getTierLevel(tier: AgentTier): number;
+//# sourceMappingURL=tier.d.ts.map

package/dist/abgr/tier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tier.d.ts","sourceRoot":"","sources":["../../src/abgr/tier.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAsDzC;;;;;;;;GAQG;AACH,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,CAYrD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,SAAS,GAAG,MAAM,CAQpD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,SAAS,GAAG,MAAM,CAQpD"}

package/dist/abgr/tier.js

@@ -0,0 +1,115 @@
+"use strict";
+/**
+ * Agent Tier Detection
+ *
+ * Detects agent tier from SOUL.md / system prompt content by analyzing
+ * capability indicators. The tier determines which governance controls
+ * are applicable.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.detectTier = detectTier;
+exports.getTierLabel = getTierLabel;
+exports.getTierLevel = getTierLevel;
+/**
+ * Keyword groups for each tier. Higher tiers subsume lower ones.
+ * Detection checks from highest to lowest, returning the first match.
+ */
+const TIER_INDICATORS = [
+    {
+        tier: 'multi-agent',
+        keywords: [
+            ['sub-agent', 'delegate'],
+            ['multi-agent', 'orchestrat'],
+            ['agent coordination'],
+            ['spawn', 'agent'],
+            ['child agent'],
+            ['agent-to-agent'],
+            ['delegate to', 'agent'],
+            ['swarm'],
+            ['multi-agent system'],
+        ],
+    },
+    {
+        tier: 'agentic',
+        keywords: [
+            ['autonomous', 'plan'],
+            ['multi-step', 'execut'],
+            ['autonomous decision'],
+            ['self-directed'],
+            ['planning', 'execution'],
+            ['agent loop'],
+            ['iterative', 'reasoning'],
+            ['autonomous', 'act'],
+            ['chain of thought', 'action'],
+            ['goal-directed'],
+        ],
+    },
+    {
+        tier: 'tool-using',
+        keywords: [
+            ['tool', 'use'],
+            ['function call'],
+            ['tool call'],
+            ['api', 'call'],
+            ['execute', 'command'],
+            ['file', 'read'],
+            ['file', 'write'],
+            ['search', 'web'],
+            ['database', 'query'],
+            ['mcp', 'server'],
+            ['tool', 'invok'],
+        ],
+    },
+];
+/**
+ * Detect the agent tier from document content.
+ *
+ * Checks for multi-agent indicators first (highest tier), then agentic,
+ * then tool-using. If none match, defaults to 'basic'.
+ *
+ * @param content - The SOUL.md or system prompt content to analyze
+ * @returns The detected agent tier
+ */
+function detectTier(content) {
+    const lower = content.toLowerCase();
+    for (const { tier, keywords } of TIER_INDICATORS) {
+        for (const group of keywords) {
+            if (matchKeywordGroup(lower, group)) {
+                return tier;
+            }
+        }
+    }
+    return 'basic';
+}
+/**
+ * Get a human-readable label for a tier.
+ */
+function getTierLabel(tier) {
+    const labels = {
+        'basic': 'Basic (conversational)',
+        'tool-using': 'Tool-Using',
+        'agentic': 'Agentic (autonomous)',
+        'multi-agent': 'Multi-Agent (orchestrated)',
+    };
+    return labels[tier];
+}
+/**
+ * Get the tier hierarchy level (0 = basic, 3 = multi-agent).
+ */
+function getTierLevel(tier) {
+    const levels = {
+        'basic': 0,
+        'tool-using': 1,
+        'agentic': 2,
+        'multi-agent': 3,
+    };
+    return levels[tier];
+}
+/**
+ * Check if all keywords in a group appear within the content.
+ * Uses substring matching (case-insensitive, content already lowercased).
+ */
+function matchKeywordGroup(lowerContent, group) {
+    return group.every(kw => lowerContent.includes(kw.toLowerCase()));
+}
+//# sourceMappingURL=tier.js.map

package/dist/abgr/tier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tier.js","sourceRoot":"","sources":["../../src/abgr/tier.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;AAiEH,gCAYC;AAKD,oCAQC;AAKD,oCAQC;AAnGD;;;GAGG;AACH,MAAM,eAAe,GAAgD;IACnE;QACE,IAAI,EAAE,aAAa;QACnB,QAAQ,EAAE;YACR,CAAC,WAAW,EAAE,UAAU,CAAC;YACzB,CAAC,aAAa,EAAE,YAAY,CAAC;YAC7B,CAAC,oBAAoB,CAAC;YACtB,CAAC,OAAO,EAAE,OAAO,CAAC;YAClB,CAAC,aAAa,CAAC;YACf,CAAC,gBAAgB,CAAC;YAClB,CAAC,aAAa,EAAE,OAAO,CAAC;YACxB,CAAC,OAAO,CAAC;YACT,CAAC,oBAAoB,CAAC;SACvB;KACF;IACD;QACE,IAAI,EAAE,SAAS;QACf,QAAQ,EAAE;YACR,CAAC,YAAY,EAAE,MAAM,CAAC;YACtB,CAAC,YAAY,EAAE,QAAQ,CAAC;YACxB,CAAC,qBAAqB,CAAC;YACvB,CAAC,eAAe,CAAC;YACjB,CAAC,UAAU,EAAE,WAAW,CAAC;YACzB,CAAC,YAAY,CAAC;YACd,CAAC,WAAW,EAAE,WAAW,CAAC;YAC1B,CAAC,YAAY,EAAE,KAAK,CAAC;YACrB,CAAC,kBAAkB,EAAE,QAAQ,CAAC;YAC9B,CAAC,eAAe,CAAC;SAClB;KACF;IACD;QACE,IAAI,EAAE,YAAY;QAClB,QAAQ,EAAE;YACR,CAAC,MAAM,EAAE,KAAK,CAAC;YACf,CAAC,eAAe,CAAC;YACjB,CAAC,WAAW,CAAC;YACb,CAAC,KAAK,EAAE,MAAM,CAAC;YACf,CAAC,SAAS,EAAE,SAAS,CAAC;YACtB,CAAC,MAAM,EAAE,MAAM,CAAC;YAChB,CAAC,MAAM,EAAE,OAAO,CAAC;YACjB,CAAC,QAAQ,EAAE,KAAK,CAAC;YACjB,CAAC,UAAU,EAAE,OAAO,CAAC;YACrB,CAAC,KAAK,EAAE,QAAQ,CAAC;YACjB,CAAC,MAAM,EAAE,OAAO,CAAC;SAClB;KACF;CACF,CAAC;AAEF;;;;;;;;GAQG;AACH,SAAgB,UAAU,CAAC,OAAe;IACxC,MAAM,KAAK,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IAEpC,KAAK,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,eAAe,EAAE,CAAC;QACjD,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;YAC7B,IAAI,iBAAiB,CAAC,KAAK,EAAE,KAAK,CAAC,EAAE,CAAC;gBACpC,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,SAAgB,YAAY,CAAC,IAAe;IAC1C,MAAM,MAAM,GAA8B;QACxC,OAAO,EAAE,wBAAwB;QACjC,YAAY,EAAE,YAAY;QAC1B,SAAS,EAAE,sBAAsB;QACjC,aAAa,EAAE,4BAA4B;KAC5C,CAAC;IACF,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC;AACtB,CAAC;AAED;;GAEG;AACH,SAAgB,YAAY,CAAC,IAAe;IAC1C,MAAM,MAAM,GAA8B;QACxC,OAAO,EAAE,CAAC;QACV,YAAY,EAAE,CAAC;QACf,SAAS,EAAE,CAAC;QACZ,aAAa,EAAE,CAAC;KACjB,CAAC;IACF,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC;AACtB,CAAC;AAED;;;GAGG;AACH,SAAS,iBAAiB,CAAC,YAAoB,EAAE,KAAe;IAC9D,OAAO,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,EAAE,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;AACpE,CAAC"}

package/dist/abgr/types.d.ts

@@ -0,0 +1,59 @@
+/**
+ * OASB v2 Behavioral Governance Types
+ *
+ * Defines the type system for domains 7-14 of the Open Agent Security
+ * Benchmark, covering behavioral governance controls derived from the
+ * Agent Behavioral Governance Rubric (ABGR).
+ */
+export type GovernanceSeverity = 'critical' | 'high' | 'medium' | 'low';
+export type GovernanceDomain = 'trust-hierarchy' | 'capability-boundaries' | 'injection-hardening' | 'data-handling' | 'hardcoded-behaviors' | 'agentic-safety' | 'honesty-transparency' | 'human-oversight';
+export type AgentTier = 'basic' | 'tool-using' | 'agentic' | 'multi-agent';
+export type GovernanceGrade = 'A' | 'B' | 'C' | 'D' | 'F';
+export interface GovernanceControl {
+    id: string;
+    domain: GovernanceDomain;
+    domainNumber: number;
+    name: string;
+    description: string;
+    severity: GovernanceSeverity;
+    keywords: string[][];
+    requiredForTier: AgentTier[];
+}
+export interface GovernanceDetectionResult {
+    controlId: string;
+    detected: boolean;
+    confidence: number;
+    evidence: string[];
+    layer: 'structural' | 'keyword' | 'both';
+}
+export interface GovernanceResult {
+    controlId: string;
+    controlName: string;
+    domain: GovernanceDomain;
+    severity: GovernanceSeverity;
+    passed: boolean;
+    confidence: number;
+    evidence: string[];
+    remediation?: string;
+}
+export interface DomainScore {
+    domain: GovernanceDomain;
+    domainNumber: number;
+    domainName: string;
+    score: number;
+    controlsPassed: number;
+    controlsTotal: number;
+    controlsFailed: string[];
+}
+export interface GovernanceScore {
+    overall: number;
+    grade: GovernanceGrade;
+    domains: DomainScore[];
+    results: GovernanceResult[];
+    criticalFailures: string[];
+    tier: AgentTier;
+    tierApplicable: number;
+    tierPassed: number;
+    sourceFile: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/abgr/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/abgr/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,MAAM,MAAM,kBAAkB,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;AAExE,MAAM,MAAM,gBAAgB,GACxB,iBAAiB,GACjB,uBAAuB,GACvB,qBAAqB,GACrB,eAAe,GACf,qBAAqB,GACrB,gBAAgB,GAChB,sBAAsB,GACtB,iBAAiB,CAAC;AAEtB,MAAM,MAAM,SAAS,GAAG,OAAO,GAAG,YAAY,GAAG,SAAS,GAAG,aAAa,CAAC;AAE3E,MAAM,MAAM,eAAe,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;AAE1D,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,gBAAgB,CAAC;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,QAAQ,EAAE,MAAM,EAAE,EAAE,CAAC;IACrB,eAAe,EAAE,SAAS,EAAE,CAAC;CAC9B;AAED,MAAM,WAAW,yBAAyB;IACxC,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,OAAO,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,EAAE,YAAY,GAAG,SAAS,GAAG,MAAM,CAAC;CAC1C;AAED,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,gBAAgB,CAAC;IACzB,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,MAAM,EAAE,OAAO,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE,gBAAgB,CAAC;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;IACd,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;IACtB,cAAc,EAAE,MAAM,EAAE,CAAC;CAC1B;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,eAAe,CAAC;IACvB,OAAO,EAAE,WAAW,EAAE,CAAC;IACvB,OAAO,EAAE,gBAAgB,EAAE,CAAC;IAC5B,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,IAAI,EAAE,SAAS,CAAC;IAChB,cAAc,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB"}

package/dist/abgr/types.js

@@ -0,0 +1,10 @@
+"use strict";
+/**
+ * OASB v2 Behavioral Governance Types
+ *
+ * Defines the type system for domains 7-14 of the Open Agent Security
+ * Benchmark, covering behavioral governance controls derived from the
+ * Agent Behavioral Governance Rubric (ABGR).
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/abgr/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/abgr/types.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG"}

package/dist/agent-scan/checks.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Agent card security check definitions (AGENT-001 through AGENT-012).
+ */
+import type { AgentScanCheck } from './types';
+export declare const AGENT_SCAN_CHECKS: AgentScanCheck[];
+//# sourceMappingURL=checks.d.ts.map

package/dist/agent-scan/checks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"checks.d.ts","sourceRoot":"","sources":["../../src/agent-scan/checks.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAE9C,eAAO,MAAM,iBAAiB,EAAE,cAAc,EAqF7C,CAAC"}

package/dist/agent-scan/checks.js

@@ -0,0 +1,93 @@
+"use strict";
+/**
+ * Agent card security check definitions (AGENT-001 through AGENT-012).
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AGENT_SCAN_CHECKS = void 0;
+exports.AGENT_SCAN_CHECKS = [
+    {
+        checkId: 'AGENT-001',
+        name: 'Card well-formedness',
+        description: 'Required fields present (agentId, name, url, version, skills)',
+        severity: 'critical',
+        category: 'Structure',
+    },
+    {
+        checkId: 'AGENT-002',
+        name: 'Cryptographic identity',
+        description: 'publicKey field present and non-empty',
+        severity: 'critical',
+        category: 'Identity',
+    },
+    {
+        checkId: 'AGENT-003',
+        name: 'AIM attestation present',
+        description: 'aimAttestation field present with required subfields',
+        severity: 'high',
+        category: 'Trust',
+    },
+    {
+        checkId: 'AGENT-004',
+        name: 'Attestation not expired',
+        description: 'aimAttestation.expiresAt is in the future',
+        severity: 'critical',
+        category: 'Trust',
+    },
+    {
+        checkId: 'AGENT-005',
+        name: 'Trust score threshold',
+        description: 'aimAttestation.trustScore meets minimum threshold',
+        severity: 'high',
+        category: 'Trust',
+    },
+    {
+        checkId: 'AGENT-006',
+        name: 'Skill schemas declared',
+        description: 'Every skill has inputSchema defined',
+        severity: 'medium',
+        category: 'Skills',
+    },
+    {
+        checkId: 'AGENT-007',
+        name: 'Skills verified',
+        description: 'At least one skill has isVerified=true',
+        severity: 'medium',
+        category: 'Skills',
+    },
+    {
+        checkId: 'AGENT-008',
+        name: 'No excessive capabilities',
+        description: 'Capabilities array does not contain dangerous entries',
+        severity: 'high',
+        category: 'Capabilities',
+    },
+    {
+        checkId: 'AGENT-009',
+        name: 'HTTPS transport',
+        description: 'url and cardUrl use https:// (not http://)',
+        severity: 'high',
+        category: 'Transport',
+    },
+    {
+        checkId: 'AGENT-010',
+        name: 'URL consistency',
+        description: 'cardUrl domain matches url domain (no impersonation)',
+        severity: 'medium',
+        category: 'Transport',
+    },
+    {
+        checkId: 'AGENT-011',
+        name: 'Version format',
+        description: 'version field matches semver pattern',
+        severity: 'low',
+        category: 'Metadata',
+    },
+    {
+        checkId: 'AGENT-012',
+        name: 'Agent ID format',
+        description: 'agentId is non-empty and reasonable length (<256 chars)',
+        severity: 'low',
+        category: 'Metadata',
+    },
+];
+//# sourceMappingURL=checks.js.map

package/dist/agent-scan/checks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"checks.js","sourceRoot":"","sources":["../../src/agent-scan/checks.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAIU,QAAA,iBAAiB,GAAqB;IACjD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,sBAAsB;QAC5B,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,wBAAwB;QAC9B,WAAW,EAAE,uCAAuC;QACpD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,yBAAyB;QAC/B,WAAW,EAAE,sDAAsD;QACnE,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,OAAO;KAClB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,yBAAyB;QAC/B,WAAW,EAAE,2CAA2C;QACxD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,OAAO;KAClB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,uBAAuB;QAC7B,WAAW,EAAE,mDAAmD;QAChE,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,OAAO;KAClB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,wBAAwB;QAC9B,WAAW,EAAE,qCAAqC;QAClD,QAAQ,EAAE,QAAQ;QAClB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,iBAAiB;QACvB,WAAW,EAAE,wCAAwC;QACrD,QAAQ,EAAE,QAAQ;QAClB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,2BAA2B;QACjC,WAAW,EAAE,uDAAuD;QACpE,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,cAAc;KACzB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,iBAAiB;QACvB,WAAW,EAAE,4CAA4C;QACzD,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,iBAAiB;QACvB,WAAW,EAAE,sDAAsD;QACnE,QAAQ,EAAE,QAAQ;QAClB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,gBAAgB;QACtB,WAAW,EAAE,sCAAsC;QACnD,QAAQ,EAAE,KAAK;QACf,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,IAAI,EAAE,iBAAiB;QACvB,WAAW,EAAE,yDAAyD;QACtE,QAAQ,EAAE,KAAK;QACf,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC"}

package/dist/agent-scan/index.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Agent card security scanner module.
+ *
+ * Scans A2A agent cards (/.well-known/agent.json) for security issues.
+ */
+export { AGENT_SCAN_CHECKS } from './checks';
+export { parseAgentCard, fetchAgentCard, loadAgentCard, scanAgentCard, } from './scanner';
+export type { AgentScanOptions } from './scanner';
+export type { AgentCard, AgentSkill, AgentAttestation, AgentScanCheck, AgentScanFinding, AgentScanResult, } from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/agent-scan/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/agent-scan/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAC7C,OAAO,EACL,cAAc,EACd,cAAc,EACd,aAAa,EACb,aAAa,GACd,MAAM,WAAW,CAAC;AACnB,YAAY,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAClD,YAAY,EACV,SAAS,EACT,UAAU,EACV,gBAAgB,EAChB,cAAc,EACd,gBAAgB,EAChB,eAAe,GAChB,MAAM,SAAS,CAAC"}

package/dist/agent-scan/index.js

@@ -0,0 +1,16 @@
+"use strict";
+/**
+ * Agent card security scanner module.
+ *
+ * Scans A2A agent cards (/.well-known/agent.json) for security issues.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scanAgentCard = exports.loadAgentCard = exports.fetchAgentCard = exports.parseAgentCard = exports.AGENT_SCAN_CHECKS = void 0;
+var checks_1 = require("./checks");
+Object.defineProperty(exports, "AGENT_SCAN_CHECKS", { enumerable: true, get: function () { return checks_1.AGENT_SCAN_CHECKS; } });
+var scanner_1 = require("./scanner");
+Object.defineProperty(exports, "parseAgentCard", { enumerable: true, get: function () { return scanner_1.parseAgentCard; } });
+Object.defineProperty(exports, "fetchAgentCard", { enumerable: true, get: function () { return scanner_1.fetchAgentCard; } });
+Object.defineProperty(exports, "loadAgentCard", { enumerable: true, get: function () { return scanner_1.loadAgentCard; } });
+Object.defineProperty(exports, "scanAgentCard", { enumerable: true, get: function () { return scanner_1.scanAgentCard; } });
+//# sourceMappingURL=index.js.map

package/dist/agent-scan/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/agent-scan/index.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;AAEH,mCAA6C;AAApC,2GAAA,iBAAiB,OAAA;AAC1B,qCAKmB;AAJjB,yGAAA,cAAc,OAAA;AACd,yGAAA,cAAc,OAAA;AACd,wGAAA,aAAa,OAAA;AACb,wGAAA,aAAa,OAAA"}

package/dist/agent-scan/scanner.d.ts

@@ -0,0 +1,31 @@
+/**
+ * Agent card security scanner.
+ *
+ * Evaluates A2A agent cards (/.well-known/agent.json) against
+ * 12 security controls covering structure, identity, trust,
+ * capabilities, transport, and metadata.
+ */
+import type { AgentCard, AgentScanResult } from './types';
+export interface AgentScanOptions {
+    /** Minimum trust score to pass AGENT-005 (default: 0.6). */
+    minTrustScore?: number;
+}
+/**
+ * Parse raw JSON string into an AgentCard.
+ * Throws if JSON is invalid or required fields are missing.
+ */
+export declare function parseAgentCard(content: string): AgentCard;
+/**
+ * Fetch an agent card from a URL.
+ * If the URL does not end with `.json`, appends `/.well-known/agent.json`.
+ */
+export declare function fetchAgentCard(url: string): Promise<AgentCard>;
+/**
+ * Load an agent card from a local file.
+ */
+export declare function loadAgentCard(filePath: string): AgentCard;
+/**
+ * Run all 12 security checks against an agent card.
+ */
+export declare function scanAgentCard(card: AgentCard, options?: AgentScanOptions): AgentScanResult;
+//# sourceMappingURL=scanner.d.ts.map

package/dist/agent-scan/scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner.d.ts","sourceRoot":"","sources":["../../src/agent-scan/scanner.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,OAAO,KAAK,EACV,SAAS,EAET,eAAe,EAChB,MAAM,SAAS,CAAC;AAmBjB,MAAM,WAAW,gBAAgB;IAC/B,4DAA4D;IAC5D,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED;;;GAGG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,SAAS,CAgCzD;AAED;;;GAGG;AACH,wBAAsB,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,SAAS,CAAC,CAapE;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,SAAS,CAMzD;AAED;;GAEG;AACH,wBAAgB,aAAa,CAC3B,IAAI,EAAE,SAAS,EACf,OAAO,CAAC,EAAE,gBAAgB,GACzB,eAAe,CA6CjB"}