npm - kavachos - Versions diffs - 0.2.1 → 0.4.0 - Mend

kavachos 0.2.1 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (25) hide show

package/dist/a2a/index.d.ts +2 -2
package/dist/agent/index.d.ts +3 -3
package/dist/agent/index.js +4 -0
package/dist/agent/index.js.map +1 -1
package/dist/audit/index.d.ts +2 -2
package/dist/audit/index.js +4 -0
package/dist/audit/index.js.map +1 -1
package/dist/auth/index.d.ts +64 -3
package/dist/auth/index.js +91 -2
package/dist/auth/index.js.map +1 -1
package/dist/index.d.ts +40 -6
package/dist/index.js +1239 -202
package/dist/index.js.map +1 -1
package/dist/mcp/index.d.ts +2 -2
package/dist/mcp/index.js +38 -1
package/dist/mcp/index.js.map +1 -1
package/dist/permission/index.d.ts +8 -3
package/dist/permission/index.js +68 -59
package/dist/permission/index.js.map +1 -1
package/dist/{types-BuHrZcjE.d.ts → types-BiUe9e8u.d.ts} +24 -0
package/dist/{types-B02D3kZy.d.ts → types-RJPOU4un.d.ts} +114 -2
package/dist/vc/index.d.ts +254 -65
package/dist/vc/index.js +160 -12
package/dist/vc/index.js.map +1 -1
package/package.json +2 -1

package/dist/index.js CHANGED Viewed

@@ -2,7 +2,7 @@ import { eq, like, sql, and, lt, gte, lte, desc, asc, gt, inArray, or, notInArra
 export { and, eq, like } from 'drizzle-orm';
 import { sqliteTable, integer, text } from 'drizzle-orm/sqlite-core';
 import * as jose2 from 'jose';
-import { jwtVerify, generateKeyPair, exportJWK, importJWK, SignJWT, decodeJwt, createRemoteJWKSet, errors, compactVerify } from 'jose';
+import { jwtVerify, generateKeyPair, exportJWK, importJWK, SignJWT, decodeJwt, createRemoteJWKSet, CompactSign, errors, compactVerify } from 'jose';
 import { z } from 'zod';
 import { deflateRaw } from 'zlib';
@@ -319,6 +319,8 @@ var permissions = sqliteTable("kavach_permissions", {
   actions: text("actions", { mode: "json" }).notNull().$type(),
   // ["read", "write", "execute"]
   constraints: text("constraints", { mode: "json" }).$type(),
+  // When set, the policy engine consults the ReBAC graph for this permission.
+  relation: text("relation"),
   createdAt: integer("created_at", { mode: "timestamp" }).notNull()
 });
 var delegationChains = sqliteTable("kavach_delegation_chains", {
@@ -348,6 +350,8 @@ var auditLogs = sqliteTable("kavach_audit_logs", {
   tokensCost: integer("tokens_cost"),
   ip: text("ip"),
   userAgent: text("user_agent"),
+  // True when this audit row corresponds to a policy-engine cache-hit evaluation.
+  cacheHit: integer("cache_hit", { mode: "boolean" }).notNull().default(false),
   timestamp: integer("timestamp", { mode: "timestamp" }).notNull()
 });
 var rateLimits = sqliteTable("kavach_rate_limits", {
@@ -4844,6 +4848,77 @@ var HibpApiError = class extends Error {
     this.name = "HibpApiError";
   }
 };
+// src/standards/claims.ts
+var AGENTIC_JWT_CLAIMS = {
+  /**
+   * Stable identifier of the agent making the call.
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.1
+   */
+  AGENT_ID: "agent_id",
+  /**
+   * Operational mode of the agent: `autonomous`, `delegated`, or `supervised`.
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.2
+   */
+  AGENT_TYPE: "agent_type",
+  /**
+   * Subject principal the agent is acting on behalf of (human user or upstream agent).
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.3
+   */
+  ON_BEHALF_OF: "on_behalf_of",
+  /**
+   * Actor claim per RFC 8693. Identifies the current actor in an
+   * impersonation or delegation chain.
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.4
+   * @see RFC 8693
+   */
+  ACT: "act",
+  /**
+   * Authorized future actors for delegation chains (RFC 8693 `may_act`).
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.5
+   * @see RFC 8693
+   */
+  MAY_ACT: "may_act",
+  /**
+   * Trust score band at token issuance (e.g. `standard`, `elevated`).
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.6
+   */
+  TRUST_TIER: "trust_tier",
+  /**
+   * Correlation id for tracing this token back to an entry in the audit log.
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.7
+   */
+  AUDIT_REF: "audit_ref",
+  /**
+   * Per-tool budget or rate constraints encoded as a structured object.
+   *
+   * @see draft-goswami-agentic-jwt-00 §3.8
+   */
+  TOOL_CONSTRAINTS: "tool_constraints",
+  /**
+   * Workload Identity Token (WIT). Present only when three-layer cryptographic
+   * binding is active (draft-liu §4.2). Absent in standard issuance paths.
+   *
+   * @see draft-liu-agent-operation-authorization-01 §4.2
+   * TODO(v3): populate from WIT issuance when three-layer binding is implemented.
+   */
+  WORKLOAD_BINDING: "wit",
+  /**
+   * The scoped operation this token authorizes (e.g. `read:documents`).
+   *
+   * @see draft-liu-agent-operation-authorization-01 §4.3
+   */
+  OPERATION: "operation"
+};
+// src/auth/jwt-session.ts
 var configSchema = z.object({
   secret: z.union([z.string().min(1), z.instanceof(Object)]),
   algorithm: z.string().optional(),
@@ -4924,6 +4999,18 @@ function createJwtSessionModule(config, db) {
         });
         Object.assign(claimsFromUser, extra);
       }
+      if (config.emitAgenticJwtClaims === true && user.agenticContext !== void 0) {
+        const ac = user.agenticContext;
+        if (ac.agentId !== void 0) {
+          claimsFromUser[AGENTIC_JWT_CLAIMS.AGENT_ID] = ac.agentId;
+        }
+        if (ac.agentType !== void 0) {
+          claimsFromUser[AGENTIC_JWT_CLAIMS.AGENT_TYPE] = ac.agentType;
+        }
+        if (ac.trustTier !== void 0) {
+          claimsFromUser[AGENTIC_JWT_CLAIMS.TRUST_TIER] = ac.trustTier;
+        }
+      }
       let builder = new SignJWT({
         sub: user.id,
         ...user.email !== void 0 ? { email: user.email } : {},
@@ -5954,7 +6041,8 @@ var AUTHORIZATION_URL2 = "https://discord.com/api/oauth2/authorize";
 var TOKEN_URL2 = "https://discord.com/api/oauth2/token";
 var USER_INFO_URL = "https://discord.com/api/users/@me";
 var CDN_BASE = "https://cdn.discordapp.com";
-var DEFAULT_SCOPES2 = ["identify", "email"];
+var DEFAULT_DISCORD_SCOPES = ["identify", "email"];
+var DEFAULT_SCOPES2 = DEFAULT_DISCORD_SCOPES;
 function createDiscordProvider(config) {
   const scopes = mergeScopes2(DEFAULT_SCOPES2, config.scopes);
   async function getAuthorizationUrl(state, codeVerifier, redirectUri) {
@@ -6555,7 +6643,8 @@ function mergeScopes7(defaults, extras) {
 var AUTHORIZATION_URL8 = "https://slack.com/oauth/v2/authorize";
 var TOKEN_URL8 = "https://slack.com/api/oauth.v2.access";
 var USER_INFO_URL6 = "https://slack.com/api/openid.connect.userInfo";
-var DEFAULT_SCOPES8 = ["openid", "profile", "email"];
+var DEFAULT_SLACK_SCOPES = ["openid", "profile", "email"];
+var DEFAULT_SCOPES8 = DEFAULT_SLACK_SCOPES;
 function createSlackProvider(config) {
   const scopes = mergeScopes8(DEFAULT_SCOPES8, config.scopes);
   async function getAuthorizationUrl(state, codeVerifier, redirectUri) {
@@ -15430,6 +15519,70 @@ function createDatabaseSync(config) {
 }
 // src/db/migrations.ts
+var ALL_FEATURES_ENABLED = {
+  core: true,
+  session: true,
+  agent: true,
+  audit: true,
+  oauth: true,
+  tenant: true,
+  mcp: true,
+  org: true,
+  rateLimit: true,
+  budget: true,
+  magicLink: true,
+  emailOtp: true,
+  totp: true,
+  passkey: true,
+  sso: true,
+  apiKey: true,
+  username: true,
+  phone: true,
+  device: true,
+  oneTimeToken: true,
+  loginHistory: true,
+  oidcProvider: true,
+  jwt: true,
+  rebac: true,
+  federation: true
+};
+function resolveEnabledFeatures(config) {
+  if (!config) {
+    return ALL_FEATURES_ENABLED;
+  }
+  const hasAgents = !!config.agents || !!config.did;
+  const hasSession = !!config.auth?.session;
+  const hasOAuth = config.plugins?.some((p2) => p2.id === "kavach-oauth") ?? false;
+  const hasOidc = config.plugins?.some((p2) => p2.id === "kavach-oidc-provider") ?? false;
+  return {
+    core: true,
+    session: hasSession,
+    agent: hasAgents,
+    audit: hasAgents,
+    oauth: hasOAuth,
+    tenant: hasAgents,
+    mcp: !!config.mcp,
+    org: !!config.org,
+    rateLimit: hasAgents,
+    budget: hasAgents,
+    magicLink: !!config.magicLink,
+    emailOtp: !!config.emailOtp,
+    totp: !!config.totp,
+    passkey: !!config.passkey,
+    sso: !!config.sso,
+    apiKey: !!config.apiKeys,
+    username: !!config.username,
+    phone: !!config.phone,
+    device: hasSession,
+    oneTimeToken: !!config.magicLink || !!config.emailOtp || !!config.passwordReset,
+    loginHistory: hasSession,
+    oidcProvider: hasOidc,
+    jwt: hasSession,
+    rebac: hasAgents,
+    federation: false
+    // only when explicitly configured (no config key yet)
+  };
+}
 function buildStatements(provider) {
   const isPostgres = provider === "postgres";
   const isMysql = provider === "mysql";
@@ -15442,7 +15595,9 @@ function buildStatements(provider) {
     // ------------------------------------------------------------------
     // kavach_users
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_users (
+    {
+      feature: "core",
+      sql: `CREATE TABLE ${ifne} kavach_users (
   id                   TEXT        NOT NULL PRIMARY KEY,
   email                TEXT        NOT NULL UNIQUE,
   username             TEXT        UNIQUE,
@@ -15469,11 +15624,14 @@ function buildStatements(provider) {
   polar_cancel_at_period_end   ${bool}     NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   created_at                   ${ts}       NOT NULL,
   updated_at                   ${ts}       NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_tenants  (must come before kavach_agents – agents FK to tenants)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_tenants (
+    {
+      feature: "tenant",
+      sql: `CREATE TABLE ${ifne} kavach_tenants (
   id         TEXT NOT NULL PRIMARY KEY,
   name       TEXT NOT NULL,
   slug       TEXT NOT NULL UNIQUE,
@@ -15481,11 +15639,14 @@ function buildStatements(provider) {
   status     TEXT NOT NULL DEFAULT 'active',
   created_at ${ts} NOT NULL,
   updated_at ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_agents
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_agents (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_agents (
   id              TEXT  NOT NULL PRIMARY KEY,
   owner_id        TEXT  NOT NULL REFERENCES kavach_users(id),
   tenant_id       TEXT  REFERENCES kavach_tenants(id),
@@ -15499,22 +15660,29 @@ function buildStatements(provider) {
   metadata        ${json2},
   created_at      ${ts} NOT NULL,
   updated_at      ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_permissions
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_permissions (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_permissions (
   id          TEXT  NOT NULL PRIMARY KEY,
   agent_id    TEXT  NOT NULL REFERENCES kavach_agents(id) ON DELETE CASCADE,
   resource    TEXT  NOT NULL,
   actions     ${json2} NOT NULL,
   constraints ${json2},
+  relation    TEXT,
   created_at  ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_delegation_chains
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_delegation_chains (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_delegation_chains (
   id            TEXT    NOT NULL PRIMARY KEY,
   from_agent_id TEXT    NOT NULL REFERENCES kavach_agents(id),
   to_agent_id   TEXT    NOT NULL REFERENCES kavach_agents(id),
@@ -15524,11 +15692,14 @@ function buildStatements(provider) {
   status        TEXT    NOT NULL DEFAULT 'active',
   expires_at    ${ts}   NOT NULL,
   created_at    ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_audit_logs
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_audit_logs (
+    {
+      feature: "audit",
+      sql: `CREATE TABLE ${ifne} kavach_audit_logs (
   id           TEXT    NOT NULL PRIMARY KEY,
   agent_id     TEXT    NOT NULL REFERENCES kavach_agents(id),
   user_id      TEXT    NOT NULL REFERENCES kavach_users(id),
@@ -15541,22 +15712,29 @@ function buildStatements(provider) {
   tokens_cost  INTEGER,
   ip           TEXT,
   user_agent   TEXT,
+  cache_hit    ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   timestamp    ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_rate_limits
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_rate_limits (
+    {
+      feature: "rateLimit",
+      sql: `CREATE TABLE ${ifne} kavach_rate_limits (
   id           TEXT    NOT NULL PRIMARY KEY,
   agent_id     TEXT    NOT NULL REFERENCES kavach_agents(id) ON DELETE CASCADE,
   resource     TEXT    NOT NULL,
   window_start ${ts}   NOT NULL,
   count        INTEGER NOT NULL DEFAULT 0
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_mcp_servers
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_mcp_servers (
+    {
+      feature: "mcp",
+      sql: `CREATE TABLE ${ifne} kavach_mcp_servers (
   id               TEXT    NOT NULL PRIMARY KEY,
   name             TEXT    NOT NULL,
   endpoint         TEXT    NOT NULL UNIQUE,
@@ -15566,21 +15744,27 @@ function buildStatements(provider) {
   status           TEXT    NOT NULL DEFAULT 'active',
   created_at       ${ts}   NOT NULL,
   updated_at       ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_sessions
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_sessions (
+    {
+      feature: "session",
+      sql: `CREATE TABLE ${ifne} kavach_sessions (
   id         TEXT    NOT NULL PRIMARY KEY,
   user_id    TEXT    NOT NULL REFERENCES kavach_users(id),
   expires_at ${ts}   NOT NULL,
   metadata   ${json2},
   created_at ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oauth_clients
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oauth_clients (
+    {
+      feature: "oauth",
+      sql: `CREATE TABLE ${ifne} kavach_oauth_clients (
   id                          TEXT    NOT NULL PRIMARY KEY,
   client_id                   TEXT    NOT NULL UNIQUE,
   client_secret               TEXT,
@@ -15595,11 +15779,14 @@ function buildStatements(provider) {
   metadata                    ${json2},
   created_at                  ${ts}   NOT NULL,
   updated_at                  ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oauth_access_tokens
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oauth_access_tokens (
+    {
+      feature: "oauth",
+      sql: `CREATE TABLE ${ifne} kavach_oauth_access_tokens (
   id                        TEXT NOT NULL PRIMARY KEY,
   access_token              TEXT NOT NULL UNIQUE,
   refresh_token             TEXT UNIQUE,
@@ -15610,11 +15797,14 @@ function buildStatements(provider) {
   access_token_expires_at   ${ts} NOT NULL,
   refresh_token_expires_at  ${tsNull},
   created_at                ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oauth_authorization_codes
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oauth_authorization_codes (
+    {
+      feature: "oauth",
+      sql: `CREATE TABLE ${ifne} kavach_oauth_authorization_codes (
   id                     TEXT NOT NULL PRIMARY KEY,
   code                   TEXT NOT NULL UNIQUE,
   client_id              TEXT NOT NULL REFERENCES kavach_oauth_clients(client_id),
@@ -15626,11 +15816,14 @@ function buildStatements(provider) {
   resource               TEXT,
   expires_at             ${ts} NOT NULL,
   created_at             ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oauth_accounts (provider account linking)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oauth_accounts (
+    {
+      feature: "oauth",
+      sql: `CREATE TABLE ${ifne} kavach_oauth_accounts (
   id                   TEXT NOT NULL PRIMARY KEY,
   user_id              TEXT NOT NULL,
   provider             TEXT NOT NULL,
@@ -15640,22 +15833,28 @@ function buildStatements(provider) {
   expires_at           ${tsNull},
   created_at           ${ts} NOT NULL,
   updated_at           ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oauth_states (PKCE state for CSRF protection)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oauth_states (
+    {
+      feature: "oauth",
+      sql: `CREATE TABLE ${ifne} kavach_oauth_states (
   state          TEXT NOT NULL PRIMARY KEY,
   code_verifier  TEXT NOT NULL,
   redirect_uri   TEXT NOT NULL,
   provider       TEXT NOT NULL,
   expires_at     ${ts} NOT NULL,
   created_at     ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_budget_policies
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_budget_policies (
+    {
+      feature: "budget",
+      sql: `CREATE TABLE ${ifne} kavach_budget_policies (
   id            TEXT    NOT NULL PRIMARY KEY,
   agent_id      TEXT    REFERENCES kavach_agents(id) ON DELETE CASCADE,
   user_id       TEXT    REFERENCES kavach_users(id),
@@ -15665,11 +15864,14 @@ function buildStatements(provider) {
   action        TEXT    NOT NULL DEFAULT 'warn',
   status        TEXT    NOT NULL DEFAULT 'active',
   created_at    ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_agent_cards  (A2A discovery)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_agent_cards (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_agent_cards (
   id                TEXT    NOT NULL PRIMARY KEY,
   agent_id          TEXT    NOT NULL REFERENCES kavach_agents(id) ON DELETE CASCADE,
   name              TEXT    NOT NULL,
@@ -15682,11 +15884,14 @@ function buildStatements(provider) {
   metadata          ${json2},
   created_at        ${ts}   NOT NULL,
   updated_at        ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_approval_requests  (CIBA async approval flows)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_approval_requests (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_approval_requests (
   id            TEXT NOT NULL PRIMARY KEY,
   agent_id      TEXT NOT NULL REFERENCES kavach_agents(id) ON DELETE CASCADE,
   user_id       TEXT NOT NULL REFERENCES kavach_users(id),
@@ -15698,21 +15903,27 @@ function buildStatements(provider) {
   responded_at  ${tsNull},
   responded_by  TEXT,
   created_at    ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_trust_scores  (graduated autonomy scoring)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_trust_scores (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_trust_scores (
   agent_id    TEXT    NOT NULL PRIMARY KEY REFERENCES kavach_agents(id) ON DELETE CASCADE,
   score       INTEGER NOT NULL,
   level       TEXT    NOT NULL,
   factors     ${json2} NOT NULL,
   computed_at ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_organizations
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_organizations (
+    {
+      feature: "org",
+      sql: `CREATE TABLE ${ifne} kavach_organizations (
   id         TEXT    NOT NULL PRIMARY KEY,
   name       TEXT    NOT NULL,
   slug       TEXT    NOT NULL UNIQUE,
@@ -15720,22 +15931,28 @@ function buildStatements(provider) {
   metadata   ${json2},
   created_at ${ts}   NOT NULL,
   updated_at ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_org_members
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_org_members (
+    {
+      feature: "org",
+      sql: `CREATE TABLE ${ifne} kavach_org_members (
   id        TEXT    NOT NULL PRIMARY KEY,
   org_id    TEXT    NOT NULL REFERENCES kavach_organizations(id) ON DELETE CASCADE,
   user_id   TEXT    NOT NULL REFERENCES kavach_users(id),
   role      TEXT    NOT NULL DEFAULT 'member',
   joined_at ${ts}   NOT NULL,
   UNIQUE(org_id, user_id)
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_org_invitations
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_org_invitations (
+    {
+      feature: "org",
+      sql: `CREATE TABLE ${ifne} kavach_org_invitations (
   id         TEXT    NOT NULL PRIMARY KEY,
   org_id     TEXT    NOT NULL REFERENCES kavach_organizations(id) ON DELETE CASCADE,
   email      TEXT    NOT NULL,
@@ -15744,21 +15961,27 @@ function buildStatements(provider) {
   status     TEXT    NOT NULL DEFAULT 'pending',
   expires_at ${ts}   NOT NULL,
   created_at ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_org_roles
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_org_roles (
+    {
+      feature: "org",
+      sql: `CREATE TABLE ${ifne} kavach_org_roles (
   id          TEXT    NOT NULL PRIMARY KEY,
   org_id      TEXT    NOT NULL REFERENCES kavach_organizations(id) ON DELETE CASCADE,
   name        TEXT    NOT NULL,
   permissions ${json2} NOT NULL,
   UNIQUE(org_id, name)
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_passkey_credentials  (WebAuthn / FIDO2 passkeys)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_passkey_credentials (
+    {
+      feature: "passkey",
+      sql: `CREATE TABLE ${ifne} kavach_passkey_credentials (
   id            TEXT    NOT NULL PRIMARY KEY,
   user_id       TEXT    NOT NULL REFERENCES kavach_users(id),
   credential_id TEXT    NOT NULL UNIQUE,
@@ -15768,22 +15991,28 @@ function buildStatements(provider) {
   transports    TEXT,
   created_at    ${ts}   NOT NULL,
   last_used_at  ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_passkey_challenges  (short-lived WebAuthn challenges)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_passkey_challenges (
+    {
+      feature: "passkey",
+      sql: `CREATE TABLE ${ifne} kavach_passkey_challenges (
   id         TEXT NOT NULL PRIMARY KEY,
   challenge  TEXT NOT NULL UNIQUE,
   user_id    TEXT,
   type       TEXT NOT NULL,
   expires_at ${ts} NOT NULL,
   created_at ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_one_time_tokens  (email verify, password reset, invitation)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_one_time_tokens (
+    {
+      feature: "oneTimeToken",
+      sql: `CREATE TABLE ${ifne} kavach_one_time_tokens (
   id          TEXT    NOT NULL PRIMARY KEY,
   token_hash  TEXT    NOT NULL UNIQUE,
   purpose     TEXT    NOT NULL,
@@ -15792,55 +16021,70 @@ function buildStatements(provider) {
   used        ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   expires_at  ${ts}   NOT NULL,
   created_at  ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_agent_dids  (W3C Decentralized Identifiers per agent)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_agent_dids (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_agent_dids (
   agent_id       TEXT NOT NULL PRIMARY KEY REFERENCES kavach_agents(id) ON DELETE CASCADE,
   did            TEXT NOT NULL UNIQUE,
   method         TEXT NOT NULL,
   public_key_jwk TEXT NOT NULL,
   did_document   TEXT NOT NULL,
   created_at     ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_magic_links  (passwordless email login)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_magic_links (
+    {
+      feature: "magicLink",
+      sql: `CREATE TABLE ${ifne} kavach_magic_links (
   id         TEXT    NOT NULL PRIMARY KEY,
   email      TEXT    NOT NULL,
   token      TEXT    NOT NULL UNIQUE,
   expires_at ${ts}   NOT NULL,
   used       ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   created_at ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_email_otps  (one-time password login)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_email_otps (
+    {
+      feature: "emailOtp",
+      sql: `CREATE TABLE ${ifne} kavach_email_otps (
   id         TEXT    NOT NULL PRIMARY KEY,
   email      TEXT    NOT NULL,
   code_hash  TEXT    NOT NULL,
   expires_at ${ts}   NOT NULL,
   attempts   INTEGER NOT NULL DEFAULT 0,
   created_at ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_totp  (TOTP two-factor authentication)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_totp (
+    {
+      feature: "totp",
+      sql: `CREATE TABLE ${ifne} kavach_totp (
   user_id      TEXT    NOT NULL PRIMARY KEY REFERENCES kavach_users(id),
   secret       TEXT    NOT NULL,
   enabled      ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   backup_codes ${json2} NOT NULL,
   created_at   ${ts}   NOT NULL,
   updated_at   ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_sso_connections  (SAML 2.0 / OIDC enterprise SSO)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_sso_connections (
+    {
+      feature: "sso",
+      sql: `CREATE TABLE ${ifne} kavach_sso_connections (
   id          TEXT    NOT NULL PRIMARY KEY,
   org_id      TEXT    NOT NULL,
   provider_id TEXT    NOT NULL,
@@ -15848,11 +16092,14 @@ function buildStatements(provider) {
   domain      TEXT    NOT NULL UNIQUE,
   enabled     INTEGER NOT NULL DEFAULT 1,
   created_at  ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_api_keys  (static bearer tokens with permission scopes)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_api_keys (
+    {
+      feature: "apiKey",
+      sql: `CREATE TABLE ${ifne} kavach_api_keys (
   id           TEXT    NOT NULL PRIMARY KEY,
   user_id      TEXT    NOT NULL REFERENCES kavach_users(id),
   name         TEXT    NOT NULL,
@@ -15862,57 +16109,75 @@ function buildStatements(provider) {
   expires_at   ${tsNull},
   last_used_at ${tsNull},
   created_at   ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_username_accounts  (username + password auth)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_username_accounts (
+    {
+      feature: "username",
+      sql: `CREATE TABLE ${ifne} kavach_username_accounts (
   id            TEXT NOT NULL PRIMARY KEY,
   user_id       TEXT NOT NULL REFERENCES kavach_users(id) ON DELETE CASCADE,
   username      TEXT NOT NULL UNIQUE,
   password_hash TEXT NOT NULL,
   created_at    ${ts} NOT NULL,
   updated_at    ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_phone_verifications  (SMS OTP)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_phone_verifications (
+    {
+      feature: "phone",
+      sql: `CREATE TABLE ${ifne} kavach_phone_verifications (
   id           TEXT    NOT NULL PRIMARY KEY,
   phone_number TEXT    NOT NULL,
   code_hash    TEXT    NOT NULL,
   attempts     INTEGER NOT NULL DEFAULT 0,
   expires_at   ${ts}   NOT NULL,
   created_at   ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_trusted_devices  (skip 2FA on trusted devices for a window)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_trusted_devices (
+    {
+      feature: "device",
+      sql: `CREATE TABLE ${ifne} kavach_trusted_devices (
   id          TEXT NOT NULL PRIMARY KEY,
   user_id     TEXT NOT NULL REFERENCES kavach_users(id) ON DELETE CASCADE,
   fingerprint TEXT NOT NULL,
   label       TEXT NOT NULL,
   trusted_at  ${ts} NOT NULL,
   expires_at  ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_login_history  (last-login method tracking per user)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_login_history (
+    {
+      feature: "loginHistory",
+      sql: `CREATE TABLE ${ifne} kavach_login_history (
   id         TEXT NOT NULL PRIMARY KEY,
   user_id    TEXT NOT NULL REFERENCES kavach_users(id) ON DELETE CASCADE,
   method     TEXT NOT NULL,
   ip         TEXT,
   user_agent TEXT,
   timestamp  ${ts} NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_login_history_user_ts
-  ON kavach_login_history (user_id, timestamp DESC)`,
+)`
+    },
+    {
+      feature: "loginHistory",
+      sql: `CREATE INDEX ${ifne} kavach_login_history_user_ts
+  ON kavach_login_history (user_id, timestamp DESC)`
+    },
     // ------------------------------------------------------------------
     // kavach_oidc_clients  (OIDC Provider — registered relying parties)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oidc_clients (
+    {
+      feature: "oidcProvider",
+      sql: `CREATE TABLE ${ifne} kavach_oidc_clients (
   id                          TEXT    NOT NULL PRIMARY KEY,
   client_id                   TEXT    NOT NULL UNIQUE,
   client_secret_hash          TEXT    NOT NULL,
@@ -15924,11 +16189,14 @@ function buildStatements(provider) {
   token_endpoint_auth_method  TEXT    NOT NULL DEFAULT 'client_secret_post',
   created_at                  ${ts}   NOT NULL,
   updated_at                  ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oidc_auth_codes  (OIDC Provider — authorization codes)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oidc_auth_codes (
+    {
+      feature: "oidcProvider",
+      sql: `CREATE TABLE ${ifne} kavach_oidc_auth_codes (
   id                     TEXT    NOT NULL PRIMARY KEY,
   code_hash              TEXT    NOT NULL UNIQUE,
   client_id              TEXT    NOT NULL,
@@ -15941,11 +16209,14 @@ function buildStatements(provider) {
   used                   ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   expires_at             ${ts}   NOT NULL,
   created_at             ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_oidc_refresh_tokens  (OIDC Provider — refresh tokens)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_oidc_refresh_tokens (
+    {
+      feature: "oidcProvider",
+      sql: `CREATE TABLE ${ifne} kavach_oidc_refresh_tokens (
   id          TEXT    NOT NULL PRIMARY KEY,
   token_hash  TEXT    NOT NULL UNIQUE,
   client_id   TEXT    NOT NULL,
@@ -15954,11 +16225,14 @@ function buildStatements(provider) {
   revoked     ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   expires_at  ${ts}   NOT NULL,
   created_at  ${ts}   NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_cost_events  (per-agent cost attribution)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_cost_events (
+    {
+      feature: "audit",
+      sql: `CREATE TABLE ${ifne} kavach_cost_events (
   id                  TEXT    NOT NULL PRIMARY KEY,
   agent_id            TEXT    NOT NULL REFERENCES kavach_agents(id) ON DELETE CASCADE,
   tool                TEXT    NOT NULL,
@@ -15969,15 +16243,24 @@ function buildStatements(provider) {
   metadata            ${json2},
   delegation_chain_id TEXT,
   recorded_at         ${ts}   NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_cost_events_agent_recorded
-  ON kavach_cost_events (agent_id, recorded_at DESC)`,
-    `CREATE INDEX ${ifne} kavach_cost_events_chain_id
-  ON kavach_cost_events (delegation_chain_id)`,
+)`
+    },
+    {
+      feature: "audit",
+      sql: `CREATE INDEX ${ifne} kavach_cost_events_agent_recorded
+  ON kavach_cost_events (agent_id, recorded_at DESC)`
+    },
+    {
+      feature: "audit",
+      sql: `CREATE INDEX ${ifne} kavach_cost_events_chain_id
+  ON kavach_cost_events (delegation_chain_id)`
+    },
     // ------------------------------------------------------------------
     // kavach_ephemeral_sessions  (short-lived agent credentials)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_ephemeral_sessions (
+    {
+      feature: "agent",
+      sql: `CREATE TABLE ${ifne} kavach_ephemeral_sessions (
   id             TEXT    NOT NULL PRIMARY KEY,
   agent_id       TEXT    NOT NULL REFERENCES kavach_agents(id) ON DELETE CASCADE,
   owner_id       TEXT    NOT NULL REFERENCES kavach_users(id),
@@ -15989,55 +16272,85 @@ function buildStatements(provider) {
   audit_group_id TEXT    NOT NULL,
   created_at     ${ts}   NOT NULL,
   updated_at     ${ts}   NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_ephemeral_sessions_owner_status
-  ON kavach_ephemeral_sessions (owner_id, status)`,
-    `CREATE INDEX ${ifne} kavach_ephemeral_sessions_expires_at
-  ON kavach_ephemeral_sessions (expires_at)`,
+)`
+    },
+    {
+      feature: "agent",
+      sql: `CREATE INDEX ${ifne} kavach_ephemeral_sessions_owner_status
+  ON kavach_ephemeral_sessions (owner_id, status)`
+    },
+    {
+      feature: "agent",
+      sql: `CREATE INDEX ${ifne} kavach_ephemeral_sessions_expires_at
+  ON kavach_ephemeral_sessions (expires_at)`
+    },
     // ------------------------------------------------------------------
     // kavach_jwt_refresh_tokens  (JWT session plugin — general purpose)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_jwt_refresh_tokens (
+    {
+      feature: "jwt",
+      sql: `CREATE TABLE ${ifne} kavach_jwt_refresh_tokens (
   id          TEXT    NOT NULL PRIMARY KEY,
   token_hash  TEXT    NOT NULL UNIQUE,
   user_id     TEXT    NOT NULL REFERENCES kavach_users(id) ON DELETE CASCADE,
   used        ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   expires_at  ${ts}   NOT NULL,
   created_at  ${ts}   NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_jwt_refresh_tokens_user_id
-  ON kavach_jwt_refresh_tokens (user_id)`,
+)`
+    },
+    {
+      feature: "jwt",
+      sql: `CREATE INDEX ${ifne} kavach_jwt_refresh_tokens_user_id
+  ON kavach_jwt_refresh_tokens (user_id)`
+    },
     // ------------------------------------------------------------------
     // kavach_stream_events  (persisted SSE events for replay)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_stream_events (
+    {
+      feature: "audit",
+      sql: `CREATE TABLE ${ifne} kavach_stream_events (
   id        TEXT    NOT NULL PRIMARY KEY,
   type      TEXT    NOT NULL,
   timestamp ${ts}   NOT NULL,
   data      ${json2} NOT NULL,
   agent_id  TEXT,
   user_id   TEXT
-)`,
-    `CREATE INDEX ${ifne} kavach_stream_events_timestamp
-  ON kavach_stream_events (timestamp DESC)`,
-    `CREATE INDEX ${ifne} kavach_stream_events_type_timestamp
-  ON kavach_stream_events (type, timestamp DESC)`,
+)`
+    },
+    {
+      feature: "audit",
+      sql: `CREATE INDEX ${ifne} kavach_stream_events_timestamp
+  ON kavach_stream_events (timestamp DESC)`
+    },
+    {
+      feature: "audit",
+      sql: `CREATE INDEX ${ifne} kavach_stream_events_type_timestamp
+  ON kavach_stream_events (type, timestamp DESC)`
+    },
     // ------------------------------------------------------------------
     // kavach_rebac_resources  (ReBAC resource hierarchy)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_rebac_resources (
+    {
+      feature: "rebac",
+      sql: `CREATE TABLE ${ifne} kavach_rebac_resources (
   id          TEXT NOT NULL PRIMARY KEY,
   type        TEXT NOT NULL,
   parent_id   TEXT,
   parent_type TEXT,
   created_at  ${ts} NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_rebac_resources_parent
-  ON kavach_rebac_resources (parent_id, parent_type)`,
+)`
+    },
+    {
+      feature: "rebac",
+      sql: `CREATE INDEX ${ifne} kavach_rebac_resources_parent
+  ON kavach_rebac_resources (parent_id, parent_type)`
+    },
     // ------------------------------------------------------------------
     // kavach_rebac_relationships  (Zanzibar-style subject-relation-object tuples)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_rebac_relationships (
+    {
+      feature: "rebac",
+      sql: `CREATE TABLE ${ifne} kavach_rebac_relationships (
   id           TEXT NOT NULL PRIMARY KEY,
   subject_type TEXT NOT NULL,
   subject_id   TEXT NOT NULL,
@@ -16045,17 +16358,29 @@ function buildStatements(provider) {
   object_type  TEXT NOT NULL,
   object_id    TEXT NOT NULL,
   created_at   ${ts} NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_rebac_relationships_subject
-  ON kavach_rebac_relationships (subject_type, subject_id)`,
-    `CREATE INDEX ${ifne} kavach_rebac_relationships_object
-  ON kavach_rebac_relationships (object_type, object_id)`,
-    `CREATE UNIQUE INDEX ${ifne} kavach_rebac_relationships_tuple
-  ON kavach_rebac_relationships (subject_type, subject_id, relation, object_type, object_id)`,
+)`
+    },
+    {
+      feature: "rebac",
+      sql: `CREATE INDEX ${ifne} kavach_rebac_relationships_subject
+  ON kavach_rebac_relationships (subject_type, subject_id)`
+    },
+    {
+      feature: "rebac",
+      sql: `CREATE INDEX ${ifne} kavach_rebac_relationships_object
+  ON kavach_rebac_relationships (object_type, object_id)`
+    },
+    {
+      feature: "rebac",
+      sql: `CREATE UNIQUE INDEX ${ifne} kavach_rebac_relationships_tuple
+  ON kavach_rebac_relationships (subject_type, subject_id, relation, object_type, object_id)`
+    },
     // ------------------------------------------------------------------
     // kavach_federation_instances  (trusted remote KavachOS instances)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_federation_instances (
+    {
+      feature: "federation",
+      sql: `CREATE TABLE ${ifne} kavach_federation_instances (
   id            TEXT NOT NULL PRIMARY KEY,
   instance_id   TEXT NOT NULL UNIQUE,
   instance_url  TEXT NOT NULL,
@@ -16064,11 +16389,14 @@ function buildStatements(provider) {
   discovered_at ${tsNull},
   created_at    ${ts} NOT NULL,
   updated_at    ${ts} NOT NULL
-)`,
+)`
+    },
     // ------------------------------------------------------------------
     // kavach_federation_tokens  (issued/received federation tokens)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_federation_tokens (
+    {
+      feature: "federation",
+      sql: `CREATE TABLE ${ifne} kavach_federation_tokens (
   id                  TEXT    NOT NULL PRIMARY KEY,
   token_jti           TEXT    NOT NULL UNIQUE,
   agent_id            TEXT    NOT NULL,
@@ -16079,45 +16407,61 @@ function buildStatements(provider) {
   trust_score         INTEGER,
   expires_at          ${ts}   NOT NULL,
   created_at          ${ts}   NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_federation_tokens_agent
-  ON kavach_federation_tokens (agent_id)`,
-    `CREATE INDEX ${ifne} kavach_federation_tokens_source
-  ON kavach_federation_tokens (source_instance_id)`,
+)`
+    },
+    {
+      feature: "federation",
+      sql: `CREATE INDEX ${ifne} kavach_federation_tokens_agent
+  ON kavach_federation_tokens (agent_id)`
+    },
+    {
+      feature: "federation",
+      sql: `CREATE INDEX ${ifne} kavach_federation_tokens_source
+  ON kavach_federation_tokens (source_instance_id)`
+    },
     // ------------------------------------------------------------------
     // kavach_refresh_token_families  (token rotation / reuse detection)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_refresh_token_families (
+    {
+      feature: "jwt",
+      sql: `CREATE TABLE ${ifne} kavach_refresh_token_families (
   id                   TEXT    NOT NULL PRIMARY KEY,
   user_id              TEXT    NOT NULL REFERENCES kavach_users(id) ON DELETE CASCADE,
   absolute_expires_at  ${ts}   NOT NULL,
   revoked              ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   created_at           ${ts}   NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_refresh_token_families_user_id
-  ON kavach_refresh_token_families (user_id)`,
+)`
+    },
+    {
+      feature: "jwt",
+      sql: `CREATE INDEX ${ifne} kavach_refresh_token_families_user_id
+  ON kavach_refresh_token_families (user_id)`
+    },
     // ------------------------------------------------------------------
     // kavach_refresh_tokens  (individual one-time-use tokens per family)
     // ------------------------------------------------------------------
-    `CREATE TABLE ${ifne} kavach_refresh_tokens (
+    {
+      feature: "jwt",
+      sql: `CREATE TABLE ${ifne} kavach_refresh_tokens (
   id          TEXT    NOT NULL PRIMARY KEY,
   family_id   TEXT    NOT NULL REFERENCES kavach_refresh_token_families(id) ON DELETE CASCADE,
   token_hash  TEXT    NOT NULL UNIQUE,
   used        ${bool} NOT NULL DEFAULT ${isPostgres ? "FALSE" : "0"},
   expires_at  ${ts}   NOT NULL,
   created_at  ${ts}   NOT NULL
-)`,
-    `CREATE INDEX ${ifne} kavach_refresh_tokens_family_id
+)`
+    },
+    {
+      feature: "jwt",
+      sql: `CREATE INDEX ${ifne} kavach_refresh_tokens_family_id
   ON kavach_refresh_tokens (family_id)`
-    // ------------------------------------------------------------------
-    // kavach_users ban columns  (ALTER TABLE IF NOT EXISTS — safe no-ops)
-    // These are appended as separate ALTER statements for existing DBs.
-    // For SQLite we use a separate migration path since SQLite ALTER is limited.
-    // ------------------------------------------------------------------
+    }
   ];
 }
-async function createTables(db, provider) {
-  const statements = buildStatements(provider);
+async function createTables(db, provider, config) {
+  const allStatements = buildStatements(provider);
+  const features = resolveEnabledFeatures(config);
+  const statements = allStatements.filter((s) => features[s.feature]).map((s) => s.sql);
   if (provider === "sqlite" || provider === "sqlite-native") {
     const session = db.session;
     if (session?.client?.exec) {
@@ -17227,6 +17571,9 @@ function validateArgPatterns(patterns, args) {
   return { valid: true };
 }
 async function checkRateLimit(db, agentId, resource, maxCallsPerHour) {
+  if (!agentId) {
+    return { allowed: true };
+  }
   const oneHourAgo = new Date(Date.now() - 60 * 60 * 1e3);
   const rows = await db.select().from(rateLimits).where(
     and(
@@ -17257,66 +17604,20 @@ async function checkRateLimit(db, agentId, resource, maxCallsPerHour) {
   }
   return { allowed: true };
 }
-function createPermissionEngine(config) {
-  const { db, auditAll } = config;
-  async function authorize(agent, request) {
-    const startTime = performance.now();
-    const auditId = generateId();
-    const matchingPermission = agent.permissions.find(
-      (p2) => matchResource(p2.resource, request.resource) && matchAction(p2.actions, request.action)
-    );
-    if (!matchingPermission) {
-      const result2 = {
-        allowed: false,
-        reason: `No permission grants agent "${agent.name}" access to "${request.action}" on "${request.resource}"`,
-        auditId
-      };
-      if (auditAll) {
-        await writeAuditLog(db, agent, request, result2, startTime, auditId);
-      }
-      return result2;
-    }
-    if (matchingPermission.constraints) {
-      const constraintResult = await evaluateConstraints(
-        db,
-        agent,
-        request,
-        matchingPermission.constraints
-      );
-      if (!constraintResult.allowed) {
-        const result2 = {
-          allowed: false,
-          reason: constraintResult.reason,
-          auditId
-        };
-        if (auditAll) {
-          await writeAuditLog(db, agent, request, result2, startTime, auditId);
-        }
-        return result2;
-      }
-    }
-    const result = { allowed: true, auditId };
-    if (auditAll) {
-      await writeAuditLog(db, agent, request, result, startTime, auditId);
-    }
-    return result;
-  }
-  return { authorize };
-}
-async function evaluateConstraints(db, agent, request, constraints) {
+async function evaluateConstraints(db, input, constraints) {
   if (constraints.maxCallsPerHour) {
     const rateResult = await checkRateLimit(
       db,
-      agent.id,
-      request.resource,
+      input.subjectId,
+      input.resource,
       constraints.maxCallsPerHour
     );
     if (!rateResult.allowed) {
       return rateResult;
     }
   }
-  if (constraints.allowedArgPatterns && request.arguments) {
-    const patternResult = validateArgPatterns(constraints.allowedArgPatterns, request.arguments);
+  if (constraints.allowedArgPatterns && input.arguments) {
+    const patternResult = validateArgPatterns(constraints.allowedArgPatterns, input.arguments);
     if (!patternResult.valid) {
       return { allowed: false, reason: patternResult.reason };
     }
@@ -17340,21 +17641,77 @@ async function evaluateConstraints(db, agent, request, constraints) {
     }
   }
   if (constraints.ipAllowlist && constraints.ipAllowlist.length > 0) {
-    if (!request.ip) {
+    if (!input.ip) {
       return {
         allowed: false,
         reason: "IP_NOT_ALLOWED: No IP address provided; resource requires an IP allowlist match"
       };
     }
-    if (!isIPAllowed(constraints.ipAllowlist, request.ip)) {
+    if (!isIPAllowed(constraints.ipAllowlist, input.ip)) {
       return {
         allowed: false,
-        reason: `IP_NOT_ALLOWED: IP "${request.ip}" is not in the allowlist for this resource`
+        reason: `IP_NOT_ALLOWED: IP "${input.ip}" is not in the allowlist for this resource`
       };
     }
   }
   return { allowed: true };
 }
+function isCacheUnsafe(constraints) {
+  if (!constraints) return false;
+  return Boolean(constraints.maxCallsPerHour) || Boolean(constraints.timeWindow) || Array.isArray(constraints.allowedArgPatterns) && constraints.allowedArgPatterns.length > 0;
+}
+// src/permission/engine.ts
+function createPermissionEngine(config) {
+  const { db, auditAll } = config;
+  async function authorize(agent, request) {
+    const startTime = performance.now();
+    const auditId = generateId();
+    const matchingPermission = agent.permissions.find(
+      (p2) => matchResource(p2.resource, request.resource) && matchAction(p2.actions, request.action)
+    );
+    if (!matchingPermission) {
+      const result2 = {
+        allowed: false,
+        reason: `No permission grants agent "${agent.name}" access to "${request.action}" on "${request.resource}"`,
+        auditId
+      };
+      if (auditAll) {
+        await writeAuditLog(db, agent, request, result2, startTime, auditId);
+      }
+      return result2;
+    }
+    if (matchingPermission.constraints) {
+      const constraintResult = await evaluateConstraints(
+        db,
+        {
+          subjectId: agent.id,
+          resource: request.resource,
+          arguments: request.arguments,
+          ip: request.ip
+        },
+        matchingPermission.constraints
+      );
+      if (!constraintResult.allowed) {
+        const result2 = {
+          allowed: false,
+          reason: constraintResult.reason,
+          auditId
+        };
+        if (auditAll) {
+          await writeAuditLog(db, agent, request, result2, startTime, auditId);
+        }
+        return result2;
+      }
+    }
+    const result = { allowed: true, auditId };
+    if (auditAll) {
+      await writeAuditLog(db, agent, request, result, startTime, auditId);
+    }
+    return result;
+  }
+  return { authorize };
+}
 async function writeAuditLog(db, agent, request, result, startTime, auditId) {
   const durationMs = Math.round(performance.now() - startTime);
   await db.insert(auditLogs).values({
@@ -17737,6 +18094,509 @@ function createPolicyModule(db) {
   return { create, get, list, update, remove, checkBudget, recordUsage, resetDaily, resetMonthly };
 }
+// src/policy/cache.ts
+function readEnvNumber(name) {
+  if (typeof process === "undefined") return void 0;
+  const raw = process.env[name];
+  if (raw === void 0 || raw === "") return void 0;
+  const n = Number(raw);
+  return Number.isFinite(n) ? n : void 0;
+}
+function readEnvBool(name) {
+  if (typeof process === "undefined") return void 0;
+  const raw = process.env[name];
+  if (raw === void 0 || raw === "") return void 0;
+  return raw.toLowerCase() !== "false" && raw !== "0";
+}
+var DEFAULT_MAX_ENTRIES = 1e4;
+var DEFAULT_TTL_MS = 6e4;
+function createPolicyCache(config) {
+  const rawMax = config.maxEntries ?? readEnvNumber("KAVACH_POLICY_CACHE_MAX") ?? DEFAULT_MAX_ENTRIES;
+  const maxEntries = rawMax > 0 ? rawMax : DEFAULT_MAX_ENTRIES;
+  const ttlMs = config.ttlMs ?? readEnvNumber("KAVACH_POLICY_CACHE_TTL_MS") ?? DEFAULT_TTL_MS;
+  const enabled = config.enabled ?? readEnvBool("KAVACH_POLICY_CACHE") ?? true;
+  const store = /* @__PURE__ */ new Map();
+  let hits = 0;
+  let misses = 0;
+  let evictions = 0;
+  function evictOldest() {
+    const firstKey = store.keys().next().value;
+    if (firstKey !== void 0) {
+      store.delete(firstKey);
+      evictions++;
+    }
+  }
+  function isExpired(entry) {
+    return Date.now() >= entry.expiresAt;
+  }
+  function get(key) {
+    if (!enabled) {
+      misses++;
+      return void 0;
+    }
+    const entry = store.get(key);
+    if (entry === void 0) {
+      misses++;
+      return void 0;
+    }
+    if (isExpired(entry)) {
+      store.delete(key);
+      evictions++;
+      misses++;
+      return void 0;
+    }
+    store.delete(key);
+    store.set(key, entry);
+    hits++;
+    return entry.value;
+  }
+  function set(key, value, options) {
+    if (!enabled || options?.skipCache === true) return;
+    const existing = store.get(key);
+    if (existing !== void 0) {
+      store.delete(key);
+    }
+    while (store.size >= maxEntries) {
+      evictOldest();
+    }
+    store.set(key, { value, expiresAt: Date.now() + ttlMs });
+  }
+  function del(key) {
+    return store.delete(key);
+  }
+  function clear() {
+    store.clear();
+  }
+  function invalidatePrefix(prefix) {
+    let count = 0;
+    for (const key of store.keys()) {
+      if (key.startsWith(prefix)) {
+        store.delete(key);
+        count++;
+      }
+    }
+    return count;
+  }
+  function stats() {
+    return {
+      hits,
+      misses,
+      size: store.size,
+      evictions
+    };
+  }
+  return { get, set, delete: del, clear, invalidatePrefix, stats };
+}
+// src/policy/types.ts
+var POLICY_ERROR_CODES = {
+  INVALID_INPUT: "POLICY_INVALID_INPUT",
+  SUBJECT_NOT_FOUND: "POLICY_SUBJECT_NOT_FOUND",
+  GRAPH_QUERY_FAILED: "POLICY_GRAPH_QUERY_FAILED",
+  NO_MATCHING_PERMISSION: "POLICY_NO_MATCHING_PERMISSION",
+  CONSTRAINT_FAILED: "POLICY_CONSTRAINT_FAILED"
+};
+// src/policy/combiner.ts
+function combine(partials, strategy = "deny-overrides") {
+  if (partials.length === 0) {
+    return {
+      allowed: false,
+      effect: "indeterminate",
+      reason: POLICY_ERROR_CODES.NO_MATCHING_PERMISSION
+    };
+  }
+  if (strategy === "deny-overrides") {
+    const firstDeny = partials.find((p2) => p2.effect === "deny");
+    if (firstDeny !== void 0) {
+      return {
+        allowed: false,
+        effect: "deny",
+        reason: firstDeny.reason,
+        matchedPermissionId: firstDeny.matchedPermissionId,
+        matchedRelation: firstDeny.matchedRelation
+      };
+    }
+    const firstPermit = partials.find((p2) => p2.effect === "permit");
+    if (firstPermit !== void 0) {
+      return {
+        allowed: true,
+        effect: "permit",
+        reason: firstPermit.reason,
+        matchedPermissionId: firstPermit.matchedPermissionId,
+        matchedRelation: firstPermit.matchedRelation
+      };
+    }
+  }
+  if (strategy === "permit-overrides") {
+    const firstPermit = partials.find((p2) => p2.effect === "permit");
+    if (firstPermit !== void 0) {
+      return {
+        allowed: true,
+        effect: "permit",
+        reason: firstPermit.reason,
+        matchedPermissionId: firstPermit.matchedPermissionId,
+        matchedRelation: firstPermit.matchedRelation
+      };
+    }
+    const firstDeny = partials.find((p2) => p2.effect === "deny");
+    if (firstDeny !== void 0) {
+      return {
+        allowed: false,
+        effect: "deny",
+        reason: firstDeny.reason,
+        matchedPermissionId: firstDeny.matchedPermissionId,
+        matchedRelation: firstDeny.matchedRelation
+      };
+    }
+  }
+  return {
+    allowed: false,
+    effect: "indeterminate",
+    reason: POLICY_ERROR_CODES.NO_MATCHING_PERMISSION
+  };
+}
+function parsePermissionString(raw) {
+  const idx = raw.lastIndexOf(":");
+  if (idx === -1) return null;
+  const resource = raw.slice(0, idx);
+  const action = raw.slice(idx + 1);
+  if (!resource || !action) return null;
+  return { resource, action };
+}
+function toPermissions(rawStrings) {
+  const map = /* @__PURE__ */ new Map();
+  for (const raw of rawStrings) {
+    const parsed = parsePermissionString(raw);
+    if (!parsed) continue;
+    const existing = map.get(parsed.resource);
+    if (existing) {
+      existing.add(parsed.action);
+    } else {
+      map.set(parsed.resource, /* @__PURE__ */ new Set([parsed.action]));
+    }
+  }
+  return Array.from(map.entries()).map(([resource, actionsSet]) => ({
+    resource,
+    actions: Array.from(actionsSet).sort()
+  }));
+}
+function deduplicate(permissions2) {
+  const seen = /* @__PURE__ */ new Set();
+  const result = [];
+  for (const perm of permissions2) {
+    const key = `${perm.resource}|${[...perm.actions].sort().join(",")}`;
+    if (!seen.has(key)) {
+      seen.add(key);
+      result.push(perm);
+    }
+  }
+  return result;
+}
+function createRbacResolver(deps) {
+  const { db } = deps;
+  async function resolveRolePermissions(input) {
+    const { userId, orgId } = input;
+    const baseWhere = orgId ? and(eq(orgMembers.userId, userId), eq(orgMembers.orgId, orgId)) : eq(orgMembers.userId, userId);
+    const roleRows = await db.select({ permissions: orgRoles.permissions }).from(orgMembers).innerJoin(
+      orgRoles,
+      and(eq(orgRoles.orgId, orgMembers.orgId), eq(orgRoles.name, orgMembers.role))
+    ).where(baseWhere);
+    if (roleRows.length === 0) return [];
+    const allRawPermissions = roleRows.flatMap((r) => r.permissions);
+    if (allRawPermissions.length === 0) return [];
+    return deduplicate(toPermissions(allRawPermissions));
+  }
+  return { resolveRolePermissions };
+}
+// src/policy/rebac-bridge.ts
+var WILDCARD_REASON = "rebac:wildcard-resource-not-supported";
+var INVALID_SUBJECT_REASON = "rebac:invalid-subject";
+var GRAPH_FAILED_REASON = "rebac:graph-query-failed";
+var MATCHED_REASON = "rebac:matched";
+var NO_TUPLE_REASON = "rebac:no-tuple";
+function parseResource(resource) {
+  if (resource.includes("*")) return null;
+  const colonIdx = resource.indexOf(":");
+  if (colonIdx === -1) return null;
+  const objectType = resource.slice(0, colonIdx);
+  const objectId = resource.slice(colonIdx + 1);
+  if (!objectType || !objectId) return null;
+  return { objectType, objectId };
+}
+function parseSubject(subject) {
+  if (subject.agentId !== void 0 && subject.userId !== void 0) {
+    return null;
+  }
+  if (subject.agentId !== void 0) {
+    return { subjectType: "agent", subjectId: subject.agentId };
+  }
+  if (subject.userId !== void 0) {
+    return { subjectType: "user", subjectId: subject.userId };
+  }
+  if (subject.orgId !== void 0) {
+    return { subjectType: "org", subjectId: subject.orgId };
+  }
+  return null;
+}
+function createRebacBridge(deps) {
+  const rebac = createReBACModule({}, deps.db);
+  async function checkRelation(input) {
+    const parsed = parseResource(input.resource);
+    if (!parsed) {
+      return { matched: false, reason: WILDCARD_REASON };
+    }
+    const subject = parseSubject(input.subject);
+    if (!subject) {
+      return { matched: false, reason: INVALID_SUBJECT_REASON };
+    }
+    const { objectType, objectId } = parsed;
+    const { subjectType, subjectId } = subject;
+    let result;
+    try {
+      result = await rebac.check({
+        subjectType,
+        subjectId,
+        permission: input.relation,
+        objectType,
+        objectId
+      });
+    } catch {
+      return { matched: false, reason: GRAPH_FAILED_REASON };
+    }
+    if (!result.success) {
+      return { matched: false, reason: GRAPH_FAILED_REASON };
+    }
+    return result.data.allowed ? { matched: true, reason: MATCHED_REASON } : { matched: false, reason: NO_TUPLE_REASON };
+  }
+  return { checkRelation };
+}
+// src/policy/engine.ts
+function createPolicyEngine(deps) {
+  const { db, config = {} } = deps;
+  const cache = createPolicyCache(config.cache ?? {});
+  const rbac = createRbacResolver({ db });
+  const rebac = createRebacBridge({ db });
+  const strategy = config.combineStrategy ?? "deny-overrides";
+  const auditEnabled = config.audit !== false;
+  const sampleRate = clampSampleRate(config.auditSampleRate);
+  async function evaluate(input) {
+    const start = performance.now();
+    const validation = validateInput(input);
+    if (!validation.ok) {
+      return finalize(
+        {
+          allowed: false,
+          effect: "indeterminate",
+          reason: validation.reason,
+          cacheHit: false,
+          durationMs: 0
+        },
+        start
+      );
+    }
+    const cacheKey = buildCacheKey(input);
+    const cached = cache.get(cacheKey);
+    if (cached) {
+      const auditIdForHit = willEmitAudit(input) ? generateId() : void 0;
+      const decision2 = {
+        ...cached,
+        auditId: auditIdForHit,
+        cacheHit: true,
+        durationMs: Math.round(performance.now() - start)
+      };
+      emitAudit(decision2, input, auditIdForHit).catch(noop);
+      return decision2;
+    }
+    let effective;
+    try {
+      effective = await resolveEffectivePermissions(db, rbac, input);
+    } catch {
+      return finalize(
+        {
+          allowed: false,
+          effect: "indeterminate",
+          reason: POLICY_ERROR_CODES.SUBJECT_NOT_FOUND,
+          cacheHit: false,
+          durationMs: 0
+        },
+        start
+      );
+    }
+    const partials = [];
+    let cacheUnsafeSeen = false;
+    for (const perm of effective) {
+      if (!matchResource(perm.resource, input.resource)) continue;
+      if (!matchAction(perm.actions, input.action)) continue;
+      if (perm.relation) {
+        const result = await rebac.checkRelation({
+          subject: input.subject,
+          relation: perm.relation,
+          resource: input.resource
+        });
+        if (result.reason === "rebac:graph-query-failed") {
+          return finalize(
+            {
+              allowed: false,
+              effect: "indeterminate",
+              reason: POLICY_ERROR_CODES.GRAPH_QUERY_FAILED,
+              cacheHit: false,
+              durationMs: 0
+            },
+            start
+          );
+        }
+        if (!result.matched) continue;
+      }
+      if (perm.constraints) {
+        if (isCacheUnsafe(perm.constraints)) cacheUnsafeSeen = true;
+        const constraintResult = await evaluateConstraints(
+          db,
+          {
+            subjectId: input.subject.agentId ?? "",
+            resource: input.resource,
+            arguments: input.context?.arguments,
+            ip: input.context?.ip
+          },
+          perm.constraints
+        );
+        if (!constraintResult.allowed) {
+          partials.push({
+            effect: "deny",
+            reason: constraintResult.reason ?? POLICY_ERROR_CODES.CONSTRAINT_FAILED,
+            matchedRelation: perm.relation
+          });
+          continue;
+        }
+      }
+      partials.push({
+        effect: "permit",
+        reason: "matched",
+        matchedRelation: perm.relation
+      });
+    }
+    const combined = combine(partials, strategy);
+    const auditIdForMiss = willEmitAudit(input) ? generateId() : void 0;
+    const decision = {
+      ...combined,
+      auditId: auditIdForMiss,
+      cacheHit: false,
+      durationMs: Math.round(performance.now() - start)
+    };
+    if (!cacheUnsafeSeen) {
+      cache.set(cacheKey, decision);
+    }
+    emitAudit(decision, input, auditIdForMiss).catch(noop);
+    return decision;
+  }
+  function willEmitAudit(input) {
+    if (!auditEnabled) return false;
+    if (!input.subject.agentId) return false;
+    return sampleRate >= 1 || Math.random() < sampleRate;
+  }
+  function invalidate(scope) {
+    if (scope.agentId) cache.invalidatePrefix(`${scope.agentId}|`);
+    if (scope.userId) cache.invalidatePrefix(`${scope.userId}|`);
+    if (scope.resource) cache.clear();
+  }
+  function stats() {
+    return cache.stats();
+  }
+  async function emitAudit(decision, input, auditId) {
+    if (!auditId || !input.subject.agentId) return;
+    let userId = input.subject.userId;
+    if (!userId) {
+      const ownerRows = await db.select({ ownerId: agents.ownerId }).from(agents).where(eq(agents.id, input.subject.agentId)).limit(1);
+      userId = ownerRows[0]?.ownerId;
+      if (!userId) return;
+    }
+    try {
+      await db.insert(auditLogs).values({
+        id: auditId,
+        agentId: input.subject.agentId,
+        userId,
+        action: input.action,
+        resource: input.resource,
+        parameters: input.context?.arguments ?? {},
+        result: decision.allowed ? "allowed" : "denied",
+        reason: decision.reason ?? null,
+        durationMs: decision.durationMs,
+        timestamp: /* @__PURE__ */ new Date(),
+        ip: input.context?.ip ?? null,
+        userAgent: typeof input.context?.userAgent === "string" ? input.context.userAgent : null,
+        cacheHit: decision.cacheHit
+      });
+    } catch {
+    }
+  }
+  return { evaluate, invalidate, stats };
+}
+function buildCacheKey(input) {
+  const subjectKey = input.subject.agentId ?? input.subject.userId ?? "";
+  const orgKey = input.subject.orgId ?? "__noorg__";
+  const ipKey = input.context?.ip ?? "";
+  return `${subjectKey}|${orgKey}|${input.action}|${input.resource}|${ipKey}`;
+}
+function validateInput(input) {
+  if (!input || !input.subject || !input.action || !input.resource) {
+    return { ok: false, reason: POLICY_ERROR_CODES.INVALID_INPUT };
+  }
+  if (!input.subject.agentId && !input.subject.userId) {
+    return { ok: false, reason: POLICY_ERROR_CODES.INVALID_INPUT };
+  }
+  return { ok: true };
+}
+function clampSampleRate(rate) {
+  if (typeof rate !== "number" || Number.isNaN(rate)) return 1;
+  if (rate < 0) return 0;
+  if (rate > 1) return 1;
+  return rate;
+}
+function finalize(decision, start) {
+  return {
+    ...decision,
+    durationMs: Math.round(performance.now() - start)
+  };
+}
+async function resolveEffectivePermissions(db, rbac, input) {
+  const direct = input.subject.agentId ? await fetchDirectPermissions(db, input.subject.agentId) : [];
+  const delegated = input.subject.agentId ? await fetchDelegatedPermissions(db, input.subject.agentId) : [];
+  const roles = input.subject.userId ? await rbac.resolveRolePermissions({
+    userId: input.subject.userId,
+    orgId: input.subject.orgId
+  }) : [];
+  return [...direct, ...delegated, ...roles];
+}
+async function fetchDirectPermissions(db, agentId) {
+  const rows = await db.select().from(permissions).where(eq(permissions.agentId, agentId));
+  return rows.map((r) => ({
+    resource: r.resource,
+    actions: r.actions,
+    constraints: r.constraints ?? void 0,
+    relation: r.relation ?? void 0
+  }));
+}
+async function fetchDelegatedPermissions(db, agentId) {
+  const now = /* @__PURE__ */ new Date();
+  const chains = await db.select().from(delegationChains).where(
+    and(
+      eq(delegationChains.toAgentId, agentId),
+      eq(delegationChains.status, "active"),
+      gt(delegationChains.expiresAt, now)
+    )
+  );
+  return chains.flatMap(
+    (chain) => chain.permissions.map((perm) => ({
+      resource: perm.resource,
+      actions: perm.actions
+    }))
+  );
+}
+function noop() {
+}
 // src/redirect/chain.ts
 var DEFAULT_COOKIE_NAME = "kavach_redirect";
 var DEFAULT_MAX_AGE = 600;
@@ -18299,8 +19159,9 @@ async function createKavach(config) {
   const authAdapter = config.auth?.adapter ?? null;
   const db = await createDatabase(config.database);
   if (!config.database.skipMigrations) {
-    await createTables(db, config.database.provider);
+    await createTables(db, config.database.provider, config);
   }
+  const policyEngine = createPolicyEngine({ db, config: config.policy });
   const agentConfig = {
     db,
     maxPerUser: config.agents?.maxPerUser ?? 10,
@@ -18950,6 +19811,34 @@ async function createKavach(config) {
      * ```
      */
     redirects: redirectChain,
+    /**
+     * Unified policy engine.
+     *
+     * Single decision point that combines RBAC role expansion, ABAC constraint
+     * evaluation, and ReBAC graph queries. Backed by a process-local LRU cache
+     * with deterministic invalidation.
+     *
+     * @example
+     * ```typescript
+     * const decision = await kavach.policy.evaluate({
+     *   subject: { agentId: 'agent-abc' },
+     *   action: 'read',
+     *   resource: 'tool:github:list_issues',
+     * });
+     * if (!decision.allowed) throw new Error(decision.reason);
+     *
+     * // Flush cached decisions after a permission change
+     * kavach.policy.invalidate({ agentId: 'agent-abc' });
+     *
+     * // Inspect cache health
+     * const { hits, misses, size, evictions } = kavach.policy.stats();
+     * ```
+     */
+    policy: {
+      evaluate: policyEngine.evaluate,
+      invalidate: policyEngine.invalidate,
+      stats: policyEngine.stats
+    },
     /**
      * Plugin system.
      *
@@ -20088,7 +20977,7 @@ var CredentialSubjectSchema = z.object({
   ).optional(),
   name: z.string().optional(),
   type: z.string().optional()
-});
+}).passthrough();
 var VerifiableCredentialSchema = z.object({
   "@context": z.array(z.string()).min(1),
   id: z.string().optional(),
@@ -20109,8 +20998,156 @@ var VerifiablePresentationSchema = z.object({
   proof: ProofSchema.optional()
 });
-// src/vc/issuer.ts
+// src/vc/audit-export.ts
+var KAVACHOS_AUDIT_CREDENTIAL = "KavachosAuditCredential";
+var KAVACHOS_AUDIT_CONTEXT = "https://kavachos.com/contexts/audit/v1.jsonld";
+var KAVACHOS_VERSION = "0.3.0";
 var DEFAULT_TTL_SECONDS2 = 86400;
+function toDecision(result) {
+  if (result === "allowed") return "allow";
+  return "deny";
+}
+function buildAuditCredential(record, issuerDid) {
+  const subject = {
+    id: record.id,
+    agentId: record.agentId,
+    ...record.userId ? { principalId: record.userId } : {},
+    operation: record.action,
+    target: record.resource,
+    decision: toDecision(record.result),
+    ...record.reason ? { policyName: record.reason } : {},
+    timestamp: record.timestamp.toISOString(),
+    kavachosVersion: KAVACHOS_VERSION
+  };
+  return {
+    "@context": [VC_CONTEXT_V2, KAVACHOS_AUDIT_CONTEXT],
+    id: `urn:uuid:${generateId()}`,
+    type: [VC_TYPE_CREDENTIAL, KAVACHOS_AUDIT_CREDENTIAL],
+    issuer: issuerDid,
+    issuanceDate: (/* @__PURE__ */ new Date()).toISOString(),
+    expirationDate: new Date(Date.now() + DEFAULT_TTL_SECONDS2 * 1e3).toISOString(),
+    // Cast: AuditCredentialSubject is intentionally wider than CredentialSubject
+    // because the VC schema uses an open-ended subject. The additional fields
+    // (operation, target, decision, etc.) are preserved via spread at runtime.
+    credentialSubject: subject
+  };
+}
+async function signAsJsonLd(credential, config) {
+  const { issuerDid, privateKeyJwk } = config;
+  const kid = `${issuerDid}#${issuerDid.split(":").pop() ?? "key-1"}`;
+  const key = await importJWK(privateKeyJwk, "EdDSA");
+  const { proof: _proof, ...vcWithoutProof } = credential;
+  const payload = new TextEncoder().encode(JSON.stringify(vcWithoutProof));
+  const jws = await new CompactSign(payload).setProtectedHeader({ alg: "EdDSA", kid }).sign(key);
+  const proof = {
+    type: "JsonWebSignature2020",
+    created: (/* @__PURE__ */ new Date()).toISOString(),
+    verificationMethod: kid,
+    proofPurpose: "assertionMethod",
+    jws
+  };
+  return { ...credential, proof };
+}
+async function signAsJwt(credential, config) {
+  const { issuerDid, privateKeyJwk } = config;
+  const ttl = config.defaultTtl ?? DEFAULT_TTL_SECONDS2;
+  const kid = `${issuerDid}#${issuerDid.split(":").pop() ?? "key-1"}`;
+  const key = await importJWK(privateKeyJwk, "EdDSA");
+  const { proof: _proof, ...vcWithoutProof } = credential;
+  const builder = new SignJWT({ vc: vcWithoutProof }).setProtectedHeader({ alg: "EdDSA", kid, typ: "JWT" }).setIssuer(issuerDid).setIssuedAt().setExpirationTime(Math.floor(Date.now() / 1e3) + ttl);
+  if (credential.id) builder.setJti(credential.id);
+  if (credential.credentialSubject.id) builder.setSubject(credential.credentialSubject.id);
+  const jwt = await builder.sign(key);
+  return { credential, jwt };
+}
+async function signPresentationAsJsonLd(presentation, config) {
+  const { issuerDid, privateKeyJwk } = config;
+  const kid = `${issuerDid}#${issuerDid.split(":").pop() ?? "key-1"}`;
+  const key = await importJWK(privateKeyJwk, "EdDSA");
+  const { proof: _proof, ...vpWithoutProof } = presentation;
+  const payload = new TextEncoder().encode(JSON.stringify(vpWithoutProof));
+  const jws = await new CompactSign(payload).setProtectedHeader({ alg: "EdDSA", kid }).sign(key);
+  const proof = {
+    type: "JsonWebSignature2020",
+    created: (/* @__PURE__ */ new Date()).toISOString(),
+    verificationMethod: kid,
+    proofPurpose: "assertionMethod",
+    jws
+  };
+  return { ...presentation, proof };
+}
+async function exportAuditAsVC(options) {
+  const {
+    since,
+    until,
+    issuerDid,
+    issuerConfig,
+    format = "ldp_vc",
+    output = "individual",
+    filter,
+    records
+  } = options;
+  const inRange = records.filter((r) => {
+    const t = r.timestamp.getTime();
+    return t >= since.getTime() && t <= until.getTime();
+  });
+  const filtered = filter ? inRange.filter(filter) : inRange;
+  if (filtered.length === 0) {
+    return {
+      credentials: [],
+      format,
+      issuedAt: /* @__PURE__ */ new Date(),
+      count: 0
+    };
+  }
+  const credentials = [];
+  const jwts = [];
+  for (const record of filtered) {
+    const base = buildAuditCredential(record, issuerDid);
+    if (format === "jwt_vc") {
+      const { credential, jwt } = await signAsJwt(base, issuerConfig);
+      credentials.push(credential);
+      jwts.push(jwt);
+    } else {
+      const signed = await signAsJsonLd(base, issuerConfig);
+      credentials.push(signed);
+    }
+  }
+  const issuedAt = /* @__PURE__ */ new Date();
+  if (output === "individual") {
+    return {
+      credentials,
+      ...format === "jwt_vc" ? { jwts } : {},
+      format,
+      issuedAt,
+      count: credentials.length
+    };
+  }
+  const basePresentation = {
+    "@context": [VC_CONTEXT_V2, KAVACHOS_AUDIT_CONTEXT],
+    id: `urn:uuid:${generateId()}`,
+    type: [VC_TYPE_PRESENTATION],
+    holder: issuerDid,
+    verifiableCredential: credentials
+  };
+  const presentation = format === "jwt_vc" ? basePresentation : await signPresentationAsJsonLd(basePresentation, issuerConfig);
+  return {
+    credentials,
+    ...format === "jwt_vc" ? { jwts } : {},
+    presentation,
+    format,
+    issuedAt,
+    count: credentials.length
+  };
+}
+function listAuditRecords(records, since, until, filter) {
+  const inRange = records.filter((r) => {
+    const t = r.timestamp.getTime();
+    return t >= since.getTime() && t <= until.getTime();
+  });
+  return filter ? inRange.filter(filter) : inRange;
+}
+var DEFAULT_TTL_SECONDS3 = 86400;
 function makeError8(code2, message, details) {
   return { code: code2, message, ...{} };
 }
@@ -20121,9 +21158,9 @@ function futureISO(seconds) {
   return new Date(Date.now() + seconds * 1e3).toISOString();
 }
 function createVCIssuer(config) {
-  const { issuerDid, privateKeyJwk, defaultTtl = DEFAULT_TTL_SECONDS2 } = config;
+  const { issuerDid, privateKeyJwk, defaultTtl = DEFAULT_TTL_SECONDS3 } = config;
   const kid = `${issuerDid}#${issuerDid.split(":").pop() ?? "key-1"}`;
-  async function signAsJwt(credential, subject, ttl) {
+  async function signAsJwt2(credential, subject, ttl) {
     try {
       const key = await importJWK(privateKeyJwk, "EdDSA");
       const { proof: _proof, ...vcWithoutProof } = credential;
@@ -20148,13 +21185,13 @@ function createVCIssuer(config) {
       };
     }
   }
-  async function signAsJsonLd(credential) {
+  async function signAsJsonLd2(credential) {
     try {
       const key = await importJWK(privateKeyJwk, "EdDSA");
       const { proof: _proof, ...vcWithoutProof } = credential;
       const payload = new TextEncoder().encode(JSON.stringify(vcWithoutProof));
-      const { CompactSign } = await import('jose');
-      const jws = await new CompactSign(payload).setProtectedHeader({ alg: "EdDSA", kid }).sign(key);
+      const { CompactSign: CompactSign2 } = await import('jose');
+      const jws = await new CompactSign2(payload).setProtectedHeader({ alg: "EdDSA", kid }).sign(key);
       const proof = {
         type: "JsonWebSignature2020",
         created: nowISO(),
@@ -20190,9 +21227,9 @@ function createVCIssuer(config) {
   }
   async function signCredential(credential, subject, ttl, format) {
     if (format === "jwt") {
-      return signAsJwt(credential, subject, ttl);
+      return signAsJwt2(credential, subject, ttl);
     }
-    return signAsJsonLd(credential);
+    return signAsJsonLd2(credential);
   }
   async function issueAgentCredential(input) {
     const {
@@ -20717,6 +21754,6 @@ async function verifyWebhookSignature3(secret, rawBody, signature) {
   return diff === 0;
 }
-export { CredentialStatusSchema, CredentialSubjectSchema, EVENT_TYPES, HibpApiError, HibpBreachedError, KAVACH_AGENT_CREDENTIAL, KAVACH_DELEGATION_CREDENTIAL, KAVACH_PERMISSION_CREDENTIAL, KVStore, MemoryStore, MultiSessionLimitError, OAuthProxyError, OneTapVerifyError, ProofSchema, RefreshTokenError, SSO_ERROR, SsoError, VC_CONTEXT_V1, VC_CONTEXT_V2, VC_TYPE_CREDENTIAL, VC_TYPE_PRESENTATION, VerifiableCredentialSchema, VerifiablePresentationSchema, additionalFields, admin, agentCards, agentDids, agents, anonymousAuth, apiKeys2 as apiKeys, apiKeys as apiKeysTable, approvalRequests, auditLogs, bearerAuth, budgetPolicies, buildDidDocument, buildSessionMetadata, classifyViolation, constantTimeEqual, createAdditionalFieldsModule, createAdminModule, createAgentModule, createAnonymousAuthModule, createApiKeyManagerModule, createAppleProvider, createApprovalModule, createAuditModule, createCaptchaModule, createCookieSessionManager, createCostAttributionModule, createCustomSessionModule, createDatabase, createDatabaseSync, createDelegationModule, createDeviceAuthModule, createDidModule, createDiscordProvider, createEmailOtpModule, createEmailTemplates, createEmailVerificationModule, createEphemeralSessionModule, createEventStreamModule, createFederationModule, createGdprModule, createGithubProvider, createGitlabProvider, createGoogleProvider, createHibpModule, createI18n, createJwtSessionModule, createKavach, createLastLoginModule, createLinkedInProvider, createMagicLinkModule, createMicrosoftProvider, createMultiSessionModule, createOAuthModule, createOAuthProxyModule, createOidcProviderModule, createOneTapModule, createOneTimeTokenModule, createOpenApiModule, createOrgModule, createPasskeyModule, createPasswordResetModule, createPermissionEngine, createPhoneAuthModule, createPluginRouter, createPolarModule, createPolicyModule, createPresentation, createPrivilegeAnalyzer, createRateLimiter, createReBACModule, createRedirectChain, createScimModule, createSessionFreshnessModule, createSessionManager, createSessionRefresher, createSiweModule, createSlackProvider, createSsoModule, createStripeModule, createTables, createTenantModule, createTokenFamilyStore, createTotpModule, createTrustModule, createTrustedDeviceModule, createTwitterProvider, createUsernameAuthModule, createVCIssuer, createVCVerifier, createWebhookModule2 as createWebhookModule, customAuth, customSession, de, delegationChains, deviceAuth, deviceLabelFromRequest, emailOtp, emailOtps, en, es, fr, fromBase64Url, fromHex, gdpr, generateCsrfToken, generateDidKey, generateDidWeb, generateId, generateOpenAPISpec, getCookie2 as getCookie, getDidWebUrl, getPermissionTemplate, headerAuth, hmacSha1Raw, hmacSha256, hmacSha256Raw, importHmacKey, initializePlugins, ja, kvStore, magicLink, magicLinks, mcpServers, oauth, oauthAccessTokens, oauthAuthorizationCodes, oauthClients, oauthProxy, oneTap, orgInvitations, orgMembers, orgRoles, organization, organizations, parseCookies2 as parseCookies, parseCookiesFromRequest, passkey, passkeyChallenges, passkeyCredentials, pbkdf2Hash, pbkdf2Verify, permissionTemplates, permissions, polar, randomBytes, randomBytesHex, rateLimit, rateLimits, resolveDidKey, resolveDidWeb, scim, serializeCookie, serializeCookieDeletion, sessions, sha1, sha256, sha256Raw, signPayload2 as signPayload, siwe, ssoConnections, stripe, tenants, toBase64Url, toHex, totpRecords, trustScores, twoFactor, users, validateCsrfToken, validateOrigin, verifyPayload, verifyPresentation, verifyWebhookSignature3 as verifyWebhookSignature, withRateLimit, zh };
+export { CredentialStatusSchema, CredentialSubjectSchema, EVENT_TYPES, HibpApiError, HibpBreachedError, KAVACHOS_AUDIT_CONTEXT, KAVACHOS_AUDIT_CREDENTIAL, KAVACH_AGENT_CREDENTIAL, KAVACH_DELEGATION_CREDENTIAL, KAVACH_PERMISSION_CREDENTIAL, KVStore, MemoryStore, MultiSessionLimitError, OAuthProxyError, OneTapVerifyError, ProofSchema, RefreshTokenError, SSO_ERROR, SsoError, VC_CONTEXT_V1, VC_CONTEXT_V2, VC_TYPE_CREDENTIAL, VC_TYPE_PRESENTATION, VerifiableCredentialSchema, VerifiablePresentationSchema, additionalFields, admin, agentCards, agentDids, agents, anonymousAuth, apiKeys2 as apiKeys, apiKeys as apiKeysTable, approvalRequests, auditLogs, bearerAuth, budgetPolicies, buildDidDocument, buildSessionMetadata, classifyViolation, constantTimeEqual, createAdditionalFieldsModule, createAdminModule, createAgentModule, createAnonymousAuthModule, createApiKeyManagerModule, createAppleProvider, createApprovalModule, createAuditModule, createCaptchaModule, createCookieSessionManager, createCostAttributionModule, createCustomSessionModule, createDatabase, createDatabaseSync, createDelegationModule, createDeviceAuthModule, createDidModule, createDiscordProvider, createEmailOtpModule, createEmailTemplates, createEmailVerificationModule, createEphemeralSessionModule, createEventStreamModule, createFederationModule, createGdprModule, createGithubProvider, createGitlabProvider, createGoogleProvider, createHibpModule, createI18n, createJwtSessionModule, createKavach, createLastLoginModule, createLinkedInProvider, createMagicLinkModule, createMicrosoftProvider, createMultiSessionModule, createOAuthModule, createOAuthProxyModule, createOidcProviderModule, createOneTapModule, createOneTimeTokenModule, createOpenApiModule, createOrgModule, createPasskeyModule, createPasswordResetModule, createPermissionEngine, createPhoneAuthModule, createPluginRouter, createPolarModule, createPolicyModule, createPresentation, createPrivilegeAnalyzer, createRateLimiter, createReBACModule, createRedirectChain, createScimModule, createSessionFreshnessModule, createSessionManager, createSessionRefresher, createSiweModule, createSlackProvider, createSsoModule, createStripeModule, createTables, createTenantModule, createTokenFamilyStore, createTotpModule, createTrustModule, createTrustedDeviceModule, createTwitterProvider, createUsernameAuthModule, createVCIssuer, createVCVerifier, createWebhookModule2 as createWebhookModule, customAuth, customSession, de, delegationChains, deviceAuth, deviceLabelFromRequest, emailOtp, emailOtps, en, es, exportAuditAsVC, fr, fromBase64Url, fromHex, gdpr, generateCsrfToken, generateDidKey, generateDidWeb, generateId, generateOpenAPISpec, getCookie2 as getCookie, getDidWebUrl, getPermissionTemplate, headerAuth, hmacSha1Raw, hmacSha256, hmacSha256Raw, importHmacKey, initializePlugins, ja, kvStore, listAuditRecords, magicLink, magicLinks, mcpServers, oauth, oauthAccessTokens, oauthAuthorizationCodes, oauthClients, oauthProxy, oneTap, orgInvitations, orgMembers, orgRoles, organization, organizations, parseCookies2 as parseCookies, parseCookiesFromRequest, passkey, passkeyChallenges, passkeyCredentials, pbkdf2Hash, pbkdf2Verify, permissionTemplates, permissions, polar, randomBytes, randomBytesHex, rateLimit, rateLimits, resolveDidKey, resolveDidWeb, scim, serializeCookie, serializeCookieDeletion, sessions, sha1, sha256, sha256Raw, signPayload2 as signPayload, siwe, ssoConnections, stripe, tenants, toBase64Url, toHex, totpRecords, trustScores, twoFactor, users, validateCsrfToken, validateOrigin, verifyPayload, verifyPresentation, verifyWebhookSignature3 as verifyWebhookSignature, withRateLimit, zh };
 //# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map