mcp-image 0.1.0 → 0.2.0

package/dist/infrastructure/security/OrchestrationSecurityMiddleware.d.ts

@@ -0,0 +1,304 @@
+/**
+ * Orchestration Security Middleware - Comprehensive security framework for structured prompt generation
+ * Provides API key management, data sanitization, threat detection, and secure handling
+ * Addresses SECURITY1, SECURITY2, SECURITY3 test cases
+ */
+/**
+ * Threat types that can be detected in prompts and requests
+ */
+export declare enum ThreatType {
+    PROMPT_INJECTION = "prompt_injection",
+    DATA_EXFILTRATION = "data_exfiltration",
+    API_ABUSE = "api_abuse",
+    RESOURCE_EXHAUSTION = "resource_exhaustion",
+    SENSITIVE_DATA_EXPOSURE = "sensitive_data_exposure"
+}
+/**
+ * Security severity levels for threat assessment
+ */
+export declare enum SecuritySeverity {
+    LOW = "low",
+    MEDIUM = "medium",
+    HIGH = "high",
+    CRITICAL = "critical"
+}
+/**
+ * Security actions that can be recommended or taken
+ */
+export declare enum SecurityAction {
+    ALLOW = "allow",
+    BLOCK = "block",
+    SANITIZE = "sanitize",
+    MONITOR = "monitor",
+    ESCALATE = "escalate"
+}
+/**
+ * Time periods for security metrics analysis
+ */
+export declare enum TimePeriod {
+    HOUR = "hour",
+    DAY = "day",
+    WEEK = "week",
+    MONTH = "month"
+}
+/**
+ * Orchestration request structure for security validation
+ */
+export interface OrchestrationRequest {
+    prompt: string;
+    sessionId: string;
+    userId?: string;
+    clientId?: string;
+    timestamp: number;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Detailed threat assessment information
+ */
+export interface ThreatAssessment {
+    type: ThreatType;
+    severity: SecuritySeverity;
+    description: string;
+    indicators: ThreatIndicator[];
+    recommendedAction: SecurityAction;
+    confidence: number;
+    pattern?: string;
+}
+/**
+ * Individual threat indicators found in content
+ */
+export interface ThreatIndicator {
+    pattern: string;
+    location: number;
+    matchedText: string;
+    severity: SecuritySeverity;
+}
+/**
+ * Security mitigation measures
+ */
+export interface SecurityMitigation {
+    action: SecurityAction;
+    description: string;
+    automated: boolean;
+    impactLevel: SecuritySeverity;
+}
+/**
+ * Audit entry for security events
+ */
+export interface AuditEntry {
+    timestamp: number;
+    sessionId: string;
+    eventType: string;
+    userId?: string;
+    clientId?: string;
+    details: Record<string, unknown>;
+    riskScore: number;
+}
+/**
+ * Security validation result
+ */
+export interface SecurityValidationResult {
+    allowed: boolean;
+    threats: ThreatAssessment[];
+    mitigations: SecurityMitigation[];
+    riskScore: number;
+    auditTrail: AuditEntry;
+    sanitizedPrompt?: string;
+}
+/**
+ * Sanitized prompt with security information
+ */
+export interface SanitizedPrompt {
+    sanitizedPrompt: string;
+    modificationsApplied: SecurityModification[];
+    securityScore: number;
+    threatAssessment: ThreatAssessmentSummary;
+    originalLength: number;
+    sanitizedLength: number;
+}
+/**
+ * Security modifications applied during sanitization
+ */
+export interface SecurityModification {
+    type: string;
+    location: number;
+    originalText: string;
+    replacementText: string;
+    reason: string;
+    severity: SecuritySeverity;
+}
+/**
+ * Threat assessment summary
+ */
+export interface ThreatAssessmentSummary {
+    clean: boolean;
+    confidence: number;
+    threatsFound: number;
+    highestSeverity: SecuritySeverity;
+}
+/**
+ * API key operation types
+ */
+export declare enum APIKeyOperationType {
+    RETRIEVE = "retrieve",
+    ROTATE = "rotate",
+    VALIDATE = "validate",
+    REVOKE = "revoke"
+}
+/**
+ * API key operation request
+ */
+export interface APIKeyOperation {
+    type: APIKeyOperationType;
+    service: string;
+    operation: string;
+    sessionId: string;
+    metadata?: Record<string, unknown>;
+}
+/**
+ * API key operation result
+ */
+export interface APIKeyResult {
+    success: boolean;
+    keyId?: string;
+    expiresAt?: number;
+    permissions?: string[];
+    error?: string;
+    auditTrail: AuditEntry;
+}
+/**
+ * Session data for cleanup operations
+ */
+export interface SessionData {
+    sessionId: string;
+    userId?: string;
+    createdAt: number;
+    lastAccessedAt: number;
+    temporaryData: TemporaryDataItem[];
+    sensitiveOperations: SensitiveOperation[];
+}
+/**
+ * Individual temporary data item
+ */
+export interface TemporaryDataItem {
+    id: string;
+    type: string;
+    data: unknown;
+    createdAt: number;
+    expiresAt: number;
+    sensitive: boolean;
+    encrypted: boolean;
+}
+/**
+ * Sensitive operations tracking
+ */
+export interface SensitiveOperation {
+    operationId: string;
+    type: string;
+    timestamp: number;
+    dataInvolved: string[];
+    auditRequired: boolean;
+}
+/**
+ * Cleanup operation result
+ */
+export interface CleanupResult {
+    success: boolean;
+    itemsRemoved: number;
+    dataSize: number;
+    securelyDeleted: boolean;
+    errors?: string[];
+    auditTrail: AuditEntry;
+}
+/**
+ * Security event for audit logging
+ */
+export interface SecurityEvent {
+    eventId: string;
+    type: string;
+    severity: SecuritySeverity;
+    timestamp: number;
+    sessionId: string;
+    userId?: string;
+    description: string;
+    details: Record<string, unknown>;
+    automated: boolean;
+    responseAction?: SecurityAction;
+}
+/**
+ * Security metrics for monitoring
+ */
+export interface SecurityMetrics {
+    period: TimePeriod;
+    totalRequests: number;
+    threatsDetected: number;
+    threatsBlocked: number;
+    riskScoreAverage: number;
+    topThreatTypes: Array<{
+        type: ThreatType;
+        count: number;
+    }>;
+    apiKeyRotations: number;
+    dataCleanupOperations: number;
+    securityIncidents: number;
+    recommendations: string[];
+}
+/**
+ * Main orchestration security middleware interface
+ */
+export interface OrchestrationSecurityMiddleware {
+    /**
+     * Validate incoming request for security threats
+     */
+    validateRequest(request: OrchestrationRequest): Promise<SecurityValidationResult>;
+    /**
+     * Sanitize prompt data to remove security threats
+     */
+    sanitizePromptData(prompt: string): Promise<SanitizedPrompt>;
+    /**
+     * Manage API key operations with security controls
+     */
+    manageAPIKeys(operation: APIKeyOperation): Promise<APIKeyResult>;
+    /**
+     * Clean up temporary data securely
+     */
+    cleanupTemporaryData(session: SessionData): Promise<CleanupResult>;
+    /**
+     * Audit security events
+     */
+    auditSecurityEvent(event: SecurityEvent): Promise<void>;
+    /**
+     * Get security metrics for monitoring
+     */
+    getSecurityMetrics(period: TimePeriod): Promise<SecurityMetrics>;
+    /**
+     * Initialize security middleware with configuration
+     */
+    initialize(config: SecurityConfiguration): Promise<void>;
+    /**
+     * Shutdown security middleware and cleanup resources
+     */
+    shutdown(): Promise<void>;
+}
+/**
+ * Security configuration options
+ */
+export interface SecurityConfiguration {
+    apiKeyRotationInterval: number;
+    dataRetentionPeriod: number;
+    threatDetectionEnabled: boolean;
+    auditLoggingEnabled: boolean;
+    encryptionEnabled: boolean;
+    maxRiskScore: number;
+    alertThresholds: SecurityAlertThresholds;
+}
+/**
+ * Security alert thresholds
+ */
+export interface SecurityAlertThresholds {
+    highRiskScore: number;
+    criticalThreatDetection: number;
+    suspiciousActivityRate: number;
+    dataExfiltrationAttempts: number;
+}
+//# sourceMappingURL=OrchestrationSecurityMiddleware.d.ts.map

package/dist/infrastructure/security/OrchestrationSecurityMiddleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OrchestrationSecurityMiddleware.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/security/OrchestrationSecurityMiddleware.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;GAEG;AACH,oBAAY,UAAU;IACpB,gBAAgB,qBAAqB;IACrC,iBAAiB,sBAAsB;IACvC,SAAS,cAAc;IACvB,mBAAmB,wBAAwB;IAC3C,uBAAuB,4BAA4B;CACpD;AAED;;GAEG;AACH,oBAAY,gBAAgB;IAC1B,GAAG,QAAQ;IACX,MAAM,WAAW;IACjB,IAAI,SAAS;IACb,QAAQ,aAAa;CACtB;AAED;;GAEG;AACH,oBAAY,cAAc;IACxB,KAAK,UAAU;IACf,KAAK,UAAU;IACf,QAAQ,aAAa;IACrB,OAAO,YAAY;IACnB,QAAQ,aAAa;CACtB;AAED;;GAEG;AACH,oBAAY,UAAU;IACpB,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,KAAK,UAAU;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,MAAM,EAAE,MAAM,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;IACjB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,MAAM,CAAA;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,UAAU,CAAA;IAChB,QAAQ,EAAE,gBAAgB,CAAA;IAC1B,WAAW,EAAE,MAAM,CAAA;IACnB,UAAU,EAAE,eAAe,EAAE,CAAA;IAC7B,iBAAiB,EAAE,cAAc,CAAA;IACjC,UAAU,EAAE,MAAM,CAAA;IAClB,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE,MAAM,CAAA;IAChB,WAAW,EAAE,MAAM,CAAA;IACnB,QAAQ,EAAE,gBAAgB,CAAA;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,cAAc,CAAA;IACtB,WAAW,EAAE,MAAM,CAAA;IACnB,SAAS,EAAE,OAAO,CAAA;IAClB,WAAW,EAAE,gBAAgB,CAAA;CAC9B;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,SAAS,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,MAAM,CAAA;IACjB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IAChC,SAAS,EAAE,MAAM,CAAA;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,OAAO,EAAE,OAAO,CAAA;IAChB,OAAO,EAAE,gBAAgB,EAAE,CAAA;IAC3B,WAAW,EAAE,kBAAkB,EAAE,CAAA;IACjC,SAAS,EAAE,MAAM,CAAA;IACjB,UAAU,EAAE,UAAU,CAAA;IACtB,eAAe,CAAC,EAAE,MAAM,CAAA;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,eAAe,EAAE,MAAM,CAAA;IACvB,oBAAoB,EAAE,oBAAoB,EAAE,CAAA;IAC5C,aAAa,EAAE,MAAM,CAAA;IACrB,gBAAgB,EAAE,uBAAuB,CAAA;IACzC,cAAc,EAAE,MAAM,CAAA;IACtB,eAAe,EAAE,MAAM,CAAA;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,MAAM,CAAA;IACZ,QAAQ,EAAE,MAAM,CAAA;IAChB,YAAY,EAAE,MAAM,CAAA;IACpB,eAAe,EAAE,MAAM,CAAA;IACvB,MAAM,EAAE,MAAM,CAAA;IACd,QAAQ,EAAE,gBAAgB,CAAA;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,KAAK,EAAE,OAAO,CAAA;IACd,UAAU,EAAE,MAAM,CAAA;IAClB,YAAY,EAAE,MAAM,CAAA;IACpB,eAAe,EAAE,gBAAgB,CAAA;CAClC;AAED;;GAEG;AACH,oBAAY,mBAAmB;IAC7B,QAAQ,aAAa;IACrB,MAAM,WAAW;IACjB,QAAQ,aAAa;IACrB,MAAM,WAAW;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,mBAAmB,CAAA;IACzB,OAAO,EAAE,MAAM,CAAA;IACf,SAAS,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,MAAM,CAAA;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;CACnC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,OAAO,CAAA;IAChB,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAA;IACtB,KAAK,CAAC,EAAE,MAAM,CAAA;IACd,UAAU,EAAE,UAAU,CAAA;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAA;IACjB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,SAAS,EAAE,MAAM,CAAA;IACjB,cAAc,EAAE,MAAM,CAAA;IACtB,aAAa,EAAE,iBAAiB,EAAE,CAAA;IAClC,mBAAmB,EAAE,kBAAkB,EAAE,CAAA;CAC1C;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAA;IACV,IAAI,EAAE,MAAM,CAAA;IACZ,IAAI,EAAE,OAAO,CAAA;IACb,SAAS,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,OAAO,CAAA;IAClB,SAAS,EAAE,OAAO,CAAA;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,WAAW,EAAE,MAAM,CAAA;IACnB,IAAI,EAAE,MAAM,CAAA;IACZ,SAAS,EAAE,MAAM,CAAA;IACjB,YAAY,EAAE,MAAM,EAAE,CAAA;IACtB,aAAa,EAAE,OAAO,CAAA;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,OAAO,CAAA;IAChB,YAAY,EAAE,MAAM,CAAA;IACpB,QAAQ,EAAE,MAAM,CAAA;IAChB,eAAe,EAAE,OAAO,CAAA;IACxB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAA;IACjB,UAAU,EAAE,UAAU,CAAA;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,MAAM,CAAA;IACf,IAAI,EAAE,MAAM,CAAA;IACZ,QAAQ,EAAE,gBAAgB,CAAA;IAC1B,SAAS,EAAE,MAAM,CAAA;IACjB,SAAS,EAAE,MAAM,CAAA;IACjB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,WAAW,EAAE,MAAM,CAAA;IACnB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;IAChC,SAAS,EAAE,OAAO,CAAA;IAClB,cAAc,CAAC,EAAE,cAAc,CAAA;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,UAAU,CAAA;IAClB,aAAa,EAAE,MAAM,CAAA;IACrB,eAAe,EAAE,MAAM,CAAA;IACvB,cAAc,EAAE,MAAM,CAAA;IACtB,gBAAgB,EAAE,MAAM,CAAA;IACxB,cAAc,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,UAAU,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAA;IAC1D,eAAe,EAAE,MAAM,CAAA;IACvB,qBAAqB,EAAE,MAAM,CAAA;IAC7B,iBAAiB,EAAE,MAAM,CAAA;IACzB,eAAe,EAAE,MAAM,EAAE,CAAA;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,+BAA+B;IAC9C;;OAEG;IACH,eAAe,CAAC,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,wBAAwB,CAAC,CAAA;IAEjF;;OAEG;IACH,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC,CAAA;IAE5D;;OAEG;IACH,aAAa,CAAC,SAAS,EAAE,eAAe,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IAEhE;;OAEG;IACH,oBAAoB,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,aAAa,CAAC,CAAA;IAElE;;OAEG;IACH,kBAAkB,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAEvD;;OAEG;IACH,kBAAkB,CAAC,MAAM,EAAE,UAAU,GAAG,OAAO,CAAC,eAAe,CAAC,CAAA;IAEhE;;OAEG;IACH,UAAU,CAAC,MAAM,EAAE,qBAAqB,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAExD;;OAEG;IACH,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC,CAAA;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,sBAAsB,EAAE,MAAM,CAAA;IAC9B,mBAAmB,EAAE,MAAM,CAAA;IAC3B,sBAAsB,EAAE,OAAO,CAAA;IAC/B,mBAAmB,EAAE,OAAO,CAAA;IAC5B,iBAAiB,EAAE,OAAO,CAAA;IAC1B,YAAY,EAAE,MAAM,CAAA;IACpB,eAAe,EAAE,uBAAuB,CAAA;CACzC;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,aAAa,EAAE,MAAM,CAAA;IACrB,uBAAuB,EAAE,MAAM,CAAA;IAC/B,sBAAsB,EAAE,MAAM,CAAA;IAC9B,wBAAwB,EAAE,MAAM,CAAA;CACjC"}

package/dist/infrastructure/security/OrchestrationSecurityMiddleware.js

@@ -0,0 +1,61 @@
+"use strict";
+/**
+ * Orchestration Security Middleware - Comprehensive security framework for structured prompt generation
+ * Provides API key management, data sanitization, threat detection, and secure handling
+ * Addresses SECURITY1, SECURITY2, SECURITY3 test cases
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.APIKeyOperationType = exports.TimePeriod = exports.SecurityAction = exports.SecuritySeverity = exports.ThreatType = void 0;
+/**
+ * Threat types that can be detected in prompts and requests
+ */
+var ThreatType;
+(function (ThreatType) {
+    ThreatType["PROMPT_INJECTION"] = "prompt_injection";
+    ThreatType["DATA_EXFILTRATION"] = "data_exfiltration";
+    ThreatType["API_ABUSE"] = "api_abuse";
+    ThreatType["RESOURCE_EXHAUSTION"] = "resource_exhaustion";
+    ThreatType["SENSITIVE_DATA_EXPOSURE"] = "sensitive_data_exposure";
+})(ThreatType || (exports.ThreatType = ThreatType = {}));
+/**
+ * Security severity levels for threat assessment
+ */
+var SecuritySeverity;
+(function (SecuritySeverity) {
+    SecuritySeverity["LOW"] = "low";
+    SecuritySeverity["MEDIUM"] = "medium";
+    SecuritySeverity["HIGH"] = "high";
+    SecuritySeverity["CRITICAL"] = "critical";
+})(SecuritySeverity || (exports.SecuritySeverity = SecuritySeverity = {}));
+/**
+ * Security actions that can be recommended or taken
+ */
+var SecurityAction;
+(function (SecurityAction) {
+    SecurityAction["ALLOW"] = "allow";
+    SecurityAction["BLOCK"] = "block";
+    SecurityAction["SANITIZE"] = "sanitize";
+    SecurityAction["MONITOR"] = "monitor";
+    SecurityAction["ESCALATE"] = "escalate";
+})(SecurityAction || (exports.SecurityAction = SecurityAction = {}));
+/**
+ * Time periods for security metrics analysis
+ */
+var TimePeriod;
+(function (TimePeriod) {
+    TimePeriod["HOUR"] = "hour";
+    TimePeriod["DAY"] = "day";
+    TimePeriod["WEEK"] = "week";
+    TimePeriod["MONTH"] = "month";
+})(TimePeriod || (exports.TimePeriod = TimePeriod = {}));
+/**
+ * API key operation types
+ */
+var APIKeyOperationType;
+(function (APIKeyOperationType) {
+    APIKeyOperationType["RETRIEVE"] = "retrieve";
+    APIKeyOperationType["ROTATE"] = "rotate";
+    APIKeyOperationType["VALIDATE"] = "validate";
+    APIKeyOperationType["REVOKE"] = "revoke";
+})(APIKeyOperationType || (exports.APIKeyOperationType = APIKeyOperationType = {}));
+//# sourceMappingURL=OrchestrationSecurityMiddleware.js.map

package/dist/infrastructure/security/OrchestrationSecurityMiddleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"OrchestrationSecurityMiddleware.js","sourceRoot":"","sources":["../../../src/infrastructure/security/OrchestrationSecurityMiddleware.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;AAEH;;GAEG;AACH,IAAY,UAMX;AAND,WAAY,UAAU;IACpB,mDAAqC,CAAA;IACrC,qDAAuC,CAAA;IACvC,qCAAuB,CAAA;IACvB,yDAA2C,CAAA;IAC3C,iEAAmD,CAAA;AACrD,CAAC,EANW,UAAU,0BAAV,UAAU,QAMrB;AAED;;GAEG;AACH,IAAY,gBAKX;AALD,WAAY,gBAAgB;IAC1B,+BAAW,CAAA;IACX,qCAAiB,CAAA;IACjB,iCAAa,CAAA;IACb,yCAAqB,CAAA;AACvB,CAAC,EALW,gBAAgB,gCAAhB,gBAAgB,QAK3B;AAED;;GAEG;AACH,IAAY,cAMX;AAND,WAAY,cAAc;IACxB,iCAAe,CAAA;IACf,iCAAe,CAAA;IACf,uCAAqB,CAAA;IACrB,qCAAmB,CAAA;IACnB,uCAAqB,CAAA;AACvB,CAAC,EANW,cAAc,8BAAd,cAAc,QAMzB;AAED;;GAEG;AACH,IAAY,UAKX;AALD,WAAY,UAAU;IACpB,2BAAa,CAAA;IACb,yBAAW,CAAA;IACX,2BAAa,CAAA;IACb,6BAAe,CAAA;AACjB,CAAC,EALW,UAAU,0BAAV,UAAU,QAKrB;AA0GD;;GAEG;AACH,IAAY,mBAKX;AALD,WAAY,mBAAmB;IAC7B,4CAAqB,CAAA;IACrB,wCAAiB,CAAA;IACjB,4CAAqB,CAAA;IACrB,wCAAiB,CAAA;AACnB,CAAC,EALW,mBAAmB,mCAAnB,mBAAmB,QAK9B"}

package/dist/infrastructure/security/OrchestrationSecurityMiddlewareImpl.d.ts

@@ -0,0 +1,62 @@
+/**
+ * Orchestration Security Middleware Implementation
+ * Concrete implementation of comprehensive security framework
+ * Addresses SECURITY1, SECURITY2, SECURITY3 test requirements
+ */
+import { type APIKeyOperation, type APIKeyResult, type CleanupResult, type OrchestrationRequest, type OrchestrationSecurityMiddleware, type SanitizedPrompt, type SecurityConfiguration, type SecurityEvent, type SecurityMetrics, type SecurityValidationResult, type SessionData, TimePeriod } from './OrchestrationSecurityMiddleware';
+/**
+ * Main security middleware implementation
+ */
+export declare class OrchestrationSecurityMiddlewareImpl implements OrchestrationSecurityMiddleware {
+    private apiKeyManager;
+    private dataSanitizer;
+    private securityEvents;
+    private securityMetrics;
+    private config;
+    private initialized;
+    constructor();
+    /**
+     * Initialize security middleware with configuration
+     */
+    initialize(config: SecurityConfiguration): Promise<void>;
+    /**
+     * Validate incoming request for security threats
+     */
+    validateRequest(request: OrchestrationRequest): Promise<SecurityValidationResult>;
+    /**
+     * Sanitize prompt data to remove security threats
+     */
+    sanitizePromptData(prompt: string): Promise<SanitizedPrompt>;
+    /**
+     * Manage API key operations with security controls
+     */
+    manageAPIKeys(operation: APIKeyOperation): Promise<APIKeyResult>;
+    /**
+     * Clean up temporary data securely
+     */
+    cleanupTemporaryData(session: SessionData): Promise<CleanupResult>;
+    /**
+     * Audit security events
+     */
+    auditSecurityEvent(event: SecurityEvent): Promise<void>;
+    /**
+     * Get security metrics for monitoring
+     */
+    getSecurityMetrics(period: TimePeriod): Promise<SecurityMetrics>;
+    /**
+     * Shutdown security middleware
+     */
+    shutdown(): Promise<void>;
+    private detectPromptInjection;
+    private detectSensitiveData;
+    private detectAPIAbuse;
+    private calculateRiskScore;
+    private incrementMetric;
+    private getPeriodInMs;
+    private generateRecommendations;
+    private getDefaultConfig;
+    private createMockKeyVault;
+    private createMockRotationScheduler;
+    private createMockAccessLogger;
+}
+//# sourceMappingURL=OrchestrationSecurityMiddlewareImpl.d.ts.map

package/dist/infrastructure/security/OrchestrationSecurityMiddlewareImpl.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"OrchestrationSecurityMiddlewareImpl.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/security/OrchestrationSecurityMiddlewareImpl.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EACL,KAAK,eAAe,EACpB,KAAK,YAAY,EAEjB,KAAK,aAAa,EAClB,KAAK,oBAAoB,EACzB,KAAK,+BAA+B,EACpC,KAAK,eAAe,EAEpB,KAAK,qBAAqB,EAC1B,KAAK,aAAa,EAClB,KAAK,eAAe,EAGpB,KAAK,wBAAwB,EAC7B,KAAK,WAAW,EAGhB,UAAU,EACX,MAAM,mCAAmC,CAAA;AAW1C;;GAEG;AACH,qBAAa,mCAAoC,YAAW,+BAA+B;IACzF,OAAO,CAAC,aAAa,CAAe;IACpC,OAAO,CAAC,aAAa,CAAe;IACpC,OAAO,CAAC,cAAc,CAAsB;IAC5C,OAAO,CAAC,eAAe,CAAiC;IACxD,OAAO,CAAC,MAAM,CAAuB;IACrC,OAAO,CAAC,WAAW,CAAQ;;IAa3B;;OAEG;IACG,UAAU,CAAC,MAAM,EAAE,qBAAqB,GAAG,OAAO,CAAC,IAAI,CAAC;IAa9D;;OAEG;IACG,eAAe,CAAC,OAAO,EAAE,oBAAoB,GAAG,OAAO,CAAC,wBAAwB,CAAC;IA+EvF;;OAEG;IACG,kBAAkB,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;IAQlE;;OAEG;IACG,aAAa,CAAC,SAAS,EAAE,eAAe,GAAG,OAAO,CAAC,YAAY,CAAC;IA0FtE;;OAEG;IACG,oBAAoB,CAAC,OAAO,EAAE,WAAW,GAAG,OAAO,CAAC,aAAa,CAAC;IAwExE;;OAEG;IACG,kBAAkB,CAAC,KAAK,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC;IAc7D;;OAEG;IACG,kBAAkB,CAAC,MAAM,EAAE,UAAU,GAAG,OAAO,CAAC,eAAe,CAAC;IA+DtE;;OAEG;IACG,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC;YAQjB,qBAAqB;YA+CrB,mBAAmB;YA8CnB,cAAc;IAgC5B,OAAO,CAAC,kBAAkB;IAyB1B,OAAO,CAAC,eAAe;IAKvB,OAAO,CAAC,aAAa;IAarB,OAAO,CAAC,uBAAuB;IA4B/B,OAAO,CAAC,gBAAgB;IAkBxB,OAAO,CAAC,kBAAkB;IA4E1B,OAAO,CAAC,2BAA2B;IAqBnC,OAAO,CAAC,sBAAsB;CAW/B"}