moeba-sdk 1.0.0

package/dist/handler.js

@@ -0,0 +1,136 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.WebhookHandler = void 0;
+const security_1 = require("./security");
+const response_1 = require("./response");
+/**
+ * Framework-agnostic webhook handler for processing Moeba A2A requests.
+ *
+ * Usage:
+ *   const handler = new WebhookHandler({
+ *     webhookSecret: 'whsec_...',
+ *     onMessage: async (message, ctx) => ctx.reply(`You said: ${message.text}`),
+ *   });
+ *
+ *   // In your framework route:
+ *   const response = await handler.handle(rawBodyString, headers);
+ *   res.json(response);
+ */
+class WebhookHandler {
+    secret;
+    onMessage;
+    onAction;
+    onPing;
+    constructor(options) {
+        this.secret = options.webhookSecret;
+        this.onMessage = options.onMessage;
+        this.onAction = options.onAction;
+        this.onPing = options.onPing;
+    }
+    /**
+     * Process an incoming webhook request.
+     *
+     * @param rawBody - The raw request body string (must be unparsed for signature verification)
+     * @param headers - Request headers (needs x-moeba-signature at minimum)
+     * @returns JSON-RPC response object ready to send back
+     */
+    async handle(rawBody, headers) {
+        let parsed;
+        try {
+            parsed = JSON.parse(rawBody);
+        }
+        catch {
+            return this.errorResponse('parse_error', -32700, 'Invalid JSON');
+        }
+        // Verify HMAC signature
+        const signature = headers['x-moeba-signature'];
+        if (!signature || !(0, security_1.verifySignature)(signature, rawBody, this.secret)) {
+            return this.errorResponse(parsed.id || 'unknown', -32001, 'Invalid signature');
+        }
+        // Build handler context
+        const ctx = this.buildContext(parsed, headers);
+        try {
+            switch (parsed.method) {
+                case 'agent.ping':
+                    return this.handlePing(parsed, ctx);
+                case 'agent.message':
+                    return this.handleMessage(parsed, ctx);
+                case 'agent.action':
+                    return this.handleAction(parsed, ctx);
+                default:
+                    return this.errorResponse(parsed.id, -32601, `Unknown method: ${parsed.method}`);
+            }
+        }
+        catch (err) {
+            return this.errorResponse(parsed.id, -32000, err.message || 'Internal handler error');
+        }
+    }
+    async handlePing(request, ctx) {
+        if (this.onPing) {
+            const result = await this.onPing(ctx);
+            return this.normalizeResult(request.id, result ?? { status: 'ok' });
+        }
+        return { jsonrpc: '2.0', id: request.id, result: { status: 'ok' } };
+    }
+    async handleMessage(request, ctx) {
+        const message = request.params?.message ?? { text: '', attachments: [] };
+        const result = await this.onMessage({ text: message.text || '', attachments: message.attachments || [] }, ctx);
+        return this.normalizeResult(request.id, result);
+    }
+    async handleAction(request, ctx) {
+        if (!this.onAction) {
+            return { jsonrpc: '2.0', id: request.id, result: { message: { text: 'Action received.' } } };
+        }
+        const action = request.params?.action ?? {};
+        const result = await this.onAction(action, ctx);
+        return this.normalizeResult(request.id, result);
+    }
+    buildContext(request, headers) {
+        const requestId = request.id;
+        return {
+            phoneNumber: request.context?.phoneNumber || headers['x-moeba-user'] || '',
+            sessionId: request.context?.sessionId,
+            connectionId: headers['x-moeba-connection-id'],
+            userName: headers['x-moeba-user-name'],
+            userRole: headers['x-moeba-user-role'],
+            requestId,
+            timestamp: request.context?.timestamp || Date.now(),
+            reply: (text) => new response_1.ResponseBuilder(requestId, text),
+        };
+    }
+    /**
+     * Normalize handler return values:
+     * - string → { message: { text } }
+     * - ResponseBuilder → .build()
+     * - object with .build() → call .build()
+     * - plain object → wrap as result
+     */
+    normalizeResult(requestId, value) {
+        if (value === undefined || value === null) {
+            return { jsonrpc: '2.0', id: requestId, result: { message: { text: '' } } };
+        }
+        // String shorthand
+        if (typeof value === 'string') {
+            return { jsonrpc: '2.0', id: requestId, result: { message: { text: value } } };
+        }
+        // ResponseBuilder instance
+        if (value instanceof response_1.ResponseBuilder) {
+            return value.build();
+        }
+        // Object with build() method (duck-typed ResponseBuilder)
+        if (typeof value.build === 'function') {
+            return value.build();
+        }
+        // Already a full JSON-RPC response
+        if (value.jsonrpc === '2.0') {
+            return value;
+        }
+        // Plain result object — wrap it
+        return { jsonrpc: '2.0', id: requestId, result: value };
+    }
+    errorResponse(id, code, message) {
+        return { jsonrpc: '2.0', id, error: { code, message } };
+    }
+}
+exports.WebhookHandler = WebhookHandler;
+//# sourceMappingURL=handler.js.map

package/dist/handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"handler.js","sourceRoot":"","sources":["../src/handler.ts"],"names":[],"mappings":";;;AAAA,yCAA6C;AAC7C,yCAA6C;AAS7C;;;;;;;;;;;;GAYG;AACH,MAAa,cAAc;IACjB,MAAM,CAAS;IACf,SAAS,CAAqC;IAC9C,QAAQ,CAAoC;IAC5C,MAAM,CAAkC;IAEhD,YAAY,OAA8B;QACxC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC;QACpC,IAAI,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;QACnC,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QACjC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAC/B,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,MAAM,CAAC,OAAe,EAAE,OAAwB;QACpD,IAAI,MAAsB,CAAC;QAE3B,IAAI,CAAC;YACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC/B,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC,aAAa,CAAC,aAAa,EAAE,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;QACnE,CAAC;QAED,wBAAwB;QACxB,MAAM,SAAS,GAAG,OAAO,CAAC,mBAAmB,CAAC,CAAC;QAC/C,IAAI,CAAC,SAAS,IAAI,CAAC,IAAA,0BAAe,EAAC,SAAS,EAAE,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;YACpE,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,IAAI,SAAS,EAAE,CAAC,KAAK,EAAE,mBAAmB,CAAC,CAAC;QACjF,CAAC;QAED,wBAAwB;QACxB,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAE/C,IAAI,CAAC;YACH,QAAQ,MAAM,CAAC,MAAM,EAAE,CAAC;gBACtB,KAAK,YAAY;oBACf,OAAO,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;gBAEtC,KAAK,eAAe;oBAClB,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;gBAEzC,KAAK,cAAc;oBACjB,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;gBAExC;oBACE,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC,KAAK,EAAE,mBAAmB,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;YACrF,CAAC;QACH,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,EAAE,EAAE,CAAC,KAAK,EAAE,GAAG,CAAC,OAAO,IAAI,wBAAwB,CAAC,CAAC;QACxF,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,UAAU,CAAC,OAAuB,EAAE,GAAmB;QACnE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;YACtC,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,EAAE,MAAM,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,CAAC;IACtE,CAAC;IAEO,KAAK,CAAC,aAAa,CAAC,OAAuB,EAAE,GAAmB;QACtE,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,EAAE,OAAO,IAAI,EAAE,IAAI,EAAE,EAAE,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC;QACzE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CACjC,EAAE,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,EAAE,EAAE,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,EAAE,EAAE,EACpE,GAAG,CACJ,CAAC;QACF,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAClD,CAAC;IAEO,KAAK,CAAC,YAAY,CAAC,OAAuB,EAAE,GAAmB;QACrE,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,CAAC;YACnB,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,EAAE,MAAM,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,kBAAkB,EAAE,EAAE,EAAE,CAAC;QAC/F,CAAC;QACD,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,EAAE,MAAM,IAAI,EAAE,CAAC;QAC5C,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QAChD,OAAO,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;IAClD,CAAC;IAEO,YAAY,CAAC,OAAuB,EAAE,OAAwB;QACpE,MAAM,SAAS,GAAG,OAAO,CAAC,EAAE,CAAC;QAC7B,OAAO;YACL,WAAW,EAAE,OAAO,CAAC,OAAO,EAAE,WAAW,IAAI,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE;YAC1E,SAAS,EAAE,OAAO,CAAC,OAAO,EAAE,SAAS;YACrC,YAAY,EAAE,OAAO,CAAC,uBAAuB,CAAC;YAC9C,QAAQ,EAAE,OAAO,CAAC,mBAAmB,CAAC;YACtC,QAAQ,EAAE,OAAO,CAAC,mBAAmB,CAAC;YACtC,SAAS;YACT,SAAS,EAAE,OAAO,CAAC,OAAO,EAAE,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE;YACnD,KAAK,EAAE,CAAC,IAAY,EAAE,EAAE,CAAC,IAAI,0BAAe,CAAC,SAAS,EAAE,IAAI,CAAC;SAC9D,CAAC;IACJ,CAAC;IAED;;;;;;OAMG;IACK,eAAe,CAAC,SAAiB,EAAE,KAAU;QACnD,IAAI,KAAK,KAAK,SAAS,IAAI,KAAK,KAAK,IAAI,EAAE,CAAC;YAC1C,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,EAAE,EAAE,CAAC;QAC9E,CAAC;QAED,mBAAmB;QACnB,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC;QACjF,CAAC;QAED,2BAA2B;QAC3B,IAAI,KAAK,YAAY,0BAAe,EAAE,CAAC;YACrC,OAAO,KAAK,CAAC,KAAK,EAAE,CAAC;QACvB,CAAC;QAED,0DAA0D;QAC1D,IAAI,OAAO,KAAK,CAAC,KAAK,KAAK,UAAU,EAAE,CAAC;YACtC,OAAO,KAAK,CAAC,KAAK,EAAE,CAAC;QACvB,CAAC;QAED,mCAAmC;QACnC,IAAI,KAAK,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;YAC5B,OAAO,KAAK,CAAC;QACf,CAAC;QAED,gCAAgC;QAChC,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,SAAS,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;IAC1D,CAAC;IAEO,aAAa,CAAC,EAAU,EAAE,IAAY,EAAE,OAAe;QAC7D,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,CAAC;IAC1D,CAAC;CACF;AAxID,wCAwIC"}

package/dist/index.d.ts

@@ -0,0 +1,7 @@
+export { MoebaClient, MoebaApiError } from './client';
+export { WebhookHandler } from './handler';
+export { ResponseBuilder } from './response';
+export { WorkflowBuilder, OAuthConnect, SecretInput } from './components';
+export { verifySignature, signPayload, signUpload } from './security';
+export type { JsonRpcRequest, JsonRpcResponse, RequestContext, HandlerContext, Attachment, MessageResponse, Component, WorkflowComponent, OAuthConnectComponent, SecretInputComponent, WorkflowTemplate, WorkflowStep, WorkflowFieldType, SelectOption, FieldValidation, PhotoConfig, LocationConfig, AgentAction, WorkflowCompletedAction, OAuthCompleteAction, SecretSubmittedAction, MoebaClientOptions, SendMessagePayload, SendResponse, OAuthTokenResponse, WebhookHandlerOptions, IncomingHeaders, } from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,WAAW,CAAC;AAC3C,OAAO,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAG7C,OAAO,EAAE,eAAe,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAG1E,OAAO,EAAE,eAAe,EAAE,WAAW,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAGtE,YAAY,EAEV,cAAc,EACd,eAAe,EAGf,cAAc,EACd,cAAc,EAGd,UAAU,EACV,eAAe,EAGf,SAAS,EACT,iBAAiB,EACjB,qBAAqB,EACrB,oBAAoB,EAGpB,gBAAgB,EAChB,YAAY,EACZ,iBAAiB,EACjB,YAAY,EACZ,eAAe,EACf,WAAW,EACX,cAAc,EAGd,WAAW,EACX,uBAAuB,EACvB,mBAAmB,EACnB,qBAAqB,EAGrB,kBAAkB,EAClB,kBAAkB,EAClB,YAAY,EACZ,kBAAkB,EAGlB,qBAAqB,EACrB,eAAe,GAChB,MAAM,SAAS,CAAC"}

package/dist/index.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.signUpload = exports.signPayload = exports.verifySignature = exports.SecretInput = exports.OAuthConnect = exports.WorkflowBuilder = exports.ResponseBuilder = exports.WebhookHandler = exports.MoebaApiError = exports.MoebaClient = void 0;
+// Core classes
+var client_1 = require("./client");
+Object.defineProperty(exports, "MoebaClient", { enumerable: true, get: function () { return client_1.MoebaClient; } });
+Object.defineProperty(exports, "MoebaApiError", { enumerable: true, get: function () { return client_1.MoebaApiError; } });
+var handler_1 = require("./handler");
+Object.defineProperty(exports, "WebhookHandler", { enumerable: true, get: function () { return handler_1.WebhookHandler; } });
+var response_1 = require("./response");
+Object.defineProperty(exports, "ResponseBuilder", { enumerable: true, get: function () { return response_1.ResponseBuilder; } });
+// Component builders
+var components_1 = require("./components");
+Object.defineProperty(exports, "WorkflowBuilder", { enumerable: true, get: function () { return components_1.WorkflowBuilder; } });
+Object.defineProperty(exports, "OAuthConnect", { enumerable: true, get: function () { return components_1.OAuthConnect; } });
+Object.defineProperty(exports, "SecretInput", { enumerable: true, get: function () { return components_1.SecretInput; } });
+// Security utilities
+var security_1 = require("./security");
+Object.defineProperty(exports, "verifySignature", { enumerable: true, get: function () { return security_1.verifySignature; } });
+Object.defineProperty(exports, "signPayload", { enumerable: true, get: function () { return security_1.signPayload; } });
+Object.defineProperty(exports, "signUpload", { enumerable: true, get: function () { return security_1.signUpload; } });
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AAAA,eAAe;AACf,mCAAsD;AAA7C,qGAAA,WAAW,OAAA;AAAE,uGAAA,aAAa,OAAA;AACnC,qCAA2C;AAAlC,yGAAA,cAAc,OAAA;AACvB,uCAA6C;AAApC,2GAAA,eAAe,OAAA;AAExB,qBAAqB;AACrB,2CAA0E;AAAjE,6GAAA,eAAe,OAAA;AAAE,0GAAA,YAAY,OAAA;AAAE,yGAAA,WAAW,OAAA;AAEnD,qBAAqB;AACrB,uCAAsE;AAA7D,2GAAA,eAAe,OAAA;AAAE,uGAAA,WAAW,OAAA;AAAE,sGAAA,UAAU,OAAA"}

package/dist/response.d.ts

@@ -0,0 +1,36 @@
+import type { JsonRpcResponse, Component, WorkflowComponent, OAuthConnectComponent, SecretInputComponent } from './types';
+/**
+ * Fluent builder for constructing JSON-RPC responses.
+ *
+ * Usage:
+ *   new ResponseBuilder('req_123', 'Hello!')
+ *     .withWorkflow(workflow)
+ *     .escalateToOperator()
+ *     .build()
+ */
+export declare class ResponseBuilder {
+    private _requestId;
+    private _text;
+    private _components;
+    private _secretRef?;
+    private _escalate;
+    private _approvalRequired;
+    constructor(requestId: string, text: string);
+    /** Attach a workflow component. */
+    withWorkflow(workflow: WorkflowComponent): this;
+    /** Attach an OAuth connect component. */
+    withOAuthConnect(oauth: OAuthConnectComponent): this;
+    /** Attach a secret input component. */
+    withSecretInput(secret: SecretInputComponent): this;
+    /** Attach any component. */
+    withComponent(component: Component): this;
+    /** Set a secret reference in the response (after storing a user-submitted secret). */
+    secretRef(ref: string): this;
+    /** Signal that this conversation should be escalated to a human operator. */
+    escalateToOperator(): this;
+    /** Signal that this response requires operator approval before delivery. */
+    operatorApprovalRequired(): this;
+    /** Build the final JSON-RPC response object. */
+    build(): JsonRpcResponse;
+}
+//# sourceMappingURL=response.d.ts.map

package/dist/response.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"response.d.ts","sourceRoot":"","sources":["../src/response.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,eAAe,EACf,SAAS,EACT,iBAAiB,EACjB,qBAAqB,EACrB,oBAAoB,EACrB,MAAM,SAAS,CAAC;AAEjB;;;;;;;;GAQG;AACH,qBAAa,eAAe;IAC1B,OAAO,CAAC,UAAU,CAAS;IAC3B,OAAO,CAAC,KAAK,CAAS;IACtB,OAAO,CAAC,WAAW,CAAmB;IACtC,OAAO,CAAC,UAAU,CAAC,CAAS;IAC5B,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,iBAAiB,CAAS;gBAEtB,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM;IAK3C,mCAAmC;IACnC,YAAY,CAAC,QAAQ,EAAE,iBAAiB,GAAG,IAAI;IAK/C,yCAAyC;IACzC,gBAAgB,CAAC,KAAK,EAAE,qBAAqB,GAAG,IAAI;IAKpD,uCAAuC;IACvC,eAAe,CAAC,MAAM,EAAE,oBAAoB,GAAG,IAAI;IAKnD,4BAA4B;IAC5B,aAAa,CAAC,SAAS,EAAE,SAAS,GAAG,IAAI;IAKzC,sFAAsF;IACtF,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAK5B,6EAA6E;IAC7E,kBAAkB,IAAI,IAAI;IAK1B,4EAA4E;IAC5E,wBAAwB,IAAI,IAAI;IAKhC,gDAAgD;IAChD,KAAK,IAAI,eAAe;CAwBzB"}

package/dist/response.js

@@ -0,0 +1,84 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ResponseBuilder = void 0;
+/**
+ * Fluent builder for constructing JSON-RPC responses.
+ *
+ * Usage:
+ *   new ResponseBuilder('req_123', 'Hello!')
+ *     .withWorkflow(workflow)
+ *     .escalateToOperator()
+ *     .build()
+ */
+class ResponseBuilder {
+    _requestId;
+    _text;
+    _components = [];
+    _secretRef;
+    _escalate = false;
+    _approvalRequired = false;
+    constructor(requestId, text) {
+        this._requestId = requestId;
+        this._text = text;
+    }
+    /** Attach a workflow component. */
+    withWorkflow(workflow) {
+        this._components.push(workflow);
+        return this;
+    }
+    /** Attach an OAuth connect component. */
+    withOAuthConnect(oauth) {
+        this._components.push(oauth);
+        return this;
+    }
+    /** Attach a secret input component. */
+    withSecretInput(secret) {
+        this._components.push(secret);
+        return this;
+    }
+    /** Attach any component. */
+    withComponent(component) {
+        this._components.push(component);
+        return this;
+    }
+    /** Set a secret reference in the response (after storing a user-submitted secret). */
+    secretRef(ref) {
+        this._secretRef = ref;
+        return this;
+    }
+    /** Signal that this conversation should be escalated to a human operator. */
+    escalateToOperator() {
+        this._escalate = true;
+        return this;
+    }
+    /** Signal that this response requires operator approval before delivery. */
+    operatorApprovalRequired() {
+        this._approvalRequired = true;
+        return this;
+    }
+    /** Build the final JSON-RPC response object. */
+    build() {
+        const result = {
+            message: {
+                text: this._text,
+                ...(this._components.length > 0 ? { components: this._components } : {}),
+            },
+        };
+        if (this._secretRef) {
+            result.secretRef = this._secretRef;
+        }
+        if (this._escalate) {
+            result.escalateToOperator = true;
+        }
+        if (this._approvalRequired) {
+            result.operatorApprovalRequired = true;
+        }
+        return {
+            jsonrpc: '2.0',
+            id: this._requestId,
+            result,
+        };
+    }
+}
+exports.ResponseBuilder = ResponseBuilder;
+//# sourceMappingURL=response.js.map

package/dist/response.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"response.js","sourceRoot":"","sources":["../src/response.ts"],"names":[],"mappings":";;;AAQA;;;;;;;;GAQG;AACH,MAAa,eAAe;IAClB,UAAU,CAAS;IACnB,KAAK,CAAS;IACd,WAAW,GAAgB,EAAE,CAAC;IAC9B,UAAU,CAAU;IACpB,SAAS,GAAG,KAAK,CAAC;IAClB,iBAAiB,GAAG,KAAK,CAAC;IAElC,YAAY,SAAiB,EAAE,IAAY;QACzC,IAAI,CAAC,UAAU,GAAG,SAAS,CAAC;QAC5B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;IACpB,CAAC;IAED,mCAAmC;IACnC,YAAY,CAAC,QAA2B;QACtC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAChC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,yCAAyC;IACzC,gBAAgB,CAAC,KAA4B;QAC3C,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC7B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,uCAAuC;IACvC,eAAe,CAAC,MAA4B;QAC1C,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC9B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,4BAA4B;IAC5B,aAAa,CAAC,SAAoB;QAChC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACjC,OAAO,IAAI,CAAC;IACd,CAAC;IAED,sFAAsF;IACtF,SAAS,CAAC,GAAW;QACnB,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,6EAA6E;IAC7E,kBAAkB;QAChB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IAED,4EAA4E;IAC5E,wBAAwB;QACtB,IAAI,CAAC,iBAAiB,GAAG,IAAI,CAAC;QAC9B,OAAO,IAAI,CAAC;IACd,CAAC;IAED,gDAAgD;IAChD,KAAK;QACH,MAAM,MAAM,GAA8B;YACxC,OAAO,EAAE;gBACP,IAAI,EAAE,IAAI,CAAC,KAAK;gBAChB,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;aACzE;SACF,CAAC;QAEF,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;YACpB,MAAO,CAAC,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC;QACtC,CAAC;QACD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,MAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC;QACpC,CAAC;QACD,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC3B,MAAO,CAAC,wBAAwB,GAAG,IAAI,CAAC;QAC1C,CAAC;QAED,OAAO;YACL,OAAO,EAAE,KAAK;YACd,EAAE,EAAE,IAAI,CAAC,UAAU;YACnB,MAAM;SACP,CAAC;IACJ,CAAC;CACF;AAhFD,0CAgFC"}

package/dist/security.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Verify an incoming HMAC signature from Moeba.
+ * Parses `t={timestamp},v1={hmac}`, checks 5-minute replay window,
+ * and performs timing-safe comparison.
+ */
+export declare function verifySignature(header: string, body: string, secret: string): boolean;
+/**
+ * Sign an outbound JSON payload (e.g. for OAuth refresh requests).
+ * Returns header value: `t={timestamp},v1={hmac}`
+ */
+export declare function signPayload(payload: object, secret: string, timestamp?: number): string;
+/**
+ * Sign a file upload request using phone number (multipart/form-data).
+ * Returns header value: `t={timestamp},v1={hmac}`
+ */
+export declare function signUpload(phoneNumber: string, secret: string, timestamp?: number): string;
+//# sourceMappingURL=security.d.ts.map

package/dist/security.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAIA;;;;GAIG;AACH,wBAAgB,eAAe,CAC7B,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,GACb,OAAO,CAuBT;AAED;;;GAGG;AACH,wBAAgB,WAAW,CACzB,OAAO,EAAE,MAAM,EACf,MAAM,EAAE,MAAM,EACd,SAAS,GAAE,MAAmB,GAC7B,MAAM,CAQR;AAED;;;GAGG;AACH,wBAAgB,UAAU,CACxB,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE,MAAM,EACd,SAAS,GAAE,MAAmB,GAC7B,MAAM,CAQR"}

package/dist/security.js

@@ -0,0 +1,63 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.verifySignature = verifySignature;
+exports.signPayload = signPayload;
+exports.signUpload = signUpload;
+const crypto_1 = __importDefault(require("crypto"));
+const REPLAY_WINDOW_MS = 5 * 60 * 1000; // 5 minutes
+/**
+ * Verify an incoming HMAC signature from Moeba.
+ * Parses `t={timestamp},v1={hmac}`, checks 5-minute replay window,
+ * and performs timing-safe comparison.
+ */
+function verifySignature(header, body, secret) {
+    const [tPart, vPart] = header.split(',');
+    if (!tPart || !vPart)
+        return false;
+    const timestamp = parseInt(tPart.split('=')[1], 10);
+    const signature = vPart.split('=')[1];
+    if (!timestamp || !signature)
+        return false;
+    // Replay attack prevention
+    if (Math.abs(Date.now() - timestamp) > REPLAY_WINDOW_MS)
+        return false;
+    // Reconstruct expected signature
+    const expected = crypto_1.default
+        .createHmac('sha256', secret)
+        .update(`${timestamp}.${body}`)
+        .digest('hex');
+    // Timing-safe comparison
+    const source = Buffer.from(signature);
+    const comparison = Buffer.from(expected);
+    if (source.length !== comparison.length)
+        return false;
+    return crypto_1.default.timingSafeEqual(source, comparison);
+}
+/**
+ * Sign an outbound JSON payload (e.g. for OAuth refresh requests).
+ * Returns header value: `t={timestamp},v1={hmac}`
+ */
+function signPayload(payload, secret, timestamp = Date.now()) {
+    const data = `${timestamp}.${JSON.stringify(payload)}`;
+    const signature = crypto_1.default
+        .createHmac('sha256', secret)
+        .update(data)
+        .digest('hex');
+    return `t=${timestamp},v1=${signature}`;
+}
+/**
+ * Sign a file upload request using phone number (multipart/form-data).
+ * Returns header value: `t={timestamp},v1={hmac}`
+ */
+function signUpload(phoneNumber, secret, timestamp = Date.now()) {
+    const data = `${timestamp}.${phoneNumber}`;
+    const signature = crypto_1.default
+        .createHmac('sha256', secret)
+        .update(data)
+        .digest('hex');
+    return `t=${timestamp},v1=${signature}`;
+}
+//# sourceMappingURL=security.js.map

package/dist/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":";;;;;AASA,0CA2BC;AAMD,kCAYC;AAMD,gCAYC;AAxED,oDAA4B;AAE5B,MAAM,gBAAgB,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,YAAY;AAEpD;;;;GAIG;AACH,SAAgB,eAAe,CAC7B,MAAc,EACd,IAAY,EACZ,MAAc;IAEd,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACzC,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK;QAAE,OAAO,KAAK,CAAC;IAEnC,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACpD,MAAM,SAAS,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;IACtC,IAAI,CAAC,SAAS,IAAI,CAAC,SAAS;QAAE,OAAO,KAAK,CAAC;IAE3C,2BAA2B;IAC3B,IAAI,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC,GAAG,gBAAgB;QAAE,OAAO,KAAK,CAAC;IAEtE,iCAAiC;IACjC,MAAM,QAAQ,GAAG,gBAAM;SACpB,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC;SAC5B,MAAM,CAAC,GAAG,SAAS,IAAI,IAAI,EAAE,CAAC;SAC9B,MAAM,CAAC,KAAK,CAAC,CAAC;IAEjB,yBAAyB;IACzB,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IACtC,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACzC,IAAI,MAAM,CAAC,MAAM,KAAK,UAAU,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IAEtD,OAAO,gBAAM,CAAC,eAAe,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;AACpD,CAAC;AAED;;;GAGG;AACH,SAAgB,WAAW,CACzB,OAAe,EACf,MAAc,EACd,YAAoB,IAAI,CAAC,GAAG,EAAE;IAE9B,MAAM,IAAI,GAAG,GAAG,SAAS,IAAI,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,EAAE,CAAC;IACvD,MAAM,SAAS,GAAG,gBAAM;SACrB,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC;SAC5B,MAAM,CAAC,IAAI,CAAC;SACZ,MAAM,CAAC,KAAK,CAAC,CAAC;IAEjB,OAAO,KAAK,SAAS,OAAO,SAAS,EAAE,CAAC;AAC1C,CAAC;AAED;;;GAGG;AACH,SAAgB,UAAU,CACxB,WAAmB,EACnB,MAAc,EACd,YAAoB,IAAI,CAAC,GAAG,EAAE;IAE9B,MAAM,IAAI,GAAG,GAAG,SAAS,IAAI,WAAW,EAAE,CAAC;IAC3C,MAAM,SAAS,GAAG,gBAAM;SACrB,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC;SAC5B,MAAM,CAAC,IAAI,CAAC;SACZ,MAAM,CAAC,KAAK,CAAC,CAAC;IAEjB,OAAO,KAAK,SAAS,OAAO,SAAS,EAAE,CAAC;AAC1C,CAAC"}

package/dist/types.d.ts

@@ -0,0 +1,192 @@
+export interface JsonRpcRequest {
+    jsonrpc: '2.0';
+    id: string;
+    method: 'agent.ping' | 'agent.message' | 'agent.action';
+    params: {
+        message?: {
+            text: string;
+            attachments?: Attachment[];
+        };
+        action?: Record<string, any>;
+    };
+    context: RequestContext;
+}
+export interface JsonRpcResponse {
+    jsonrpc: '2.0';
+    id: string;
+    result?: {
+        status?: string;
+        message?: MessageResponse;
+        secretRef?: string;
+        escalateToOperator?: boolean;
+        operatorApprovalRequired?: boolean;
+    };
+    error?: {
+        code: number;
+        message: string;
+        data?: any;
+    };
+}
+export interface RequestContext {
+    protocolVersion: '4.0';
+    timestamp: number;
+    phoneNumber: string;
+    sessionId?: string;
+}
+export interface HandlerContext {
+    phoneNumber: string;
+    sessionId?: string;
+    connectionId?: string;
+    userName?: string;
+    userRole?: string;
+    requestId: string;
+    timestamp: number;
+    reply: (text: string) => ResponseBuilder;
+}
+export interface ResponseBuilder {
+    withWorkflow(workflow: WorkflowComponent): this;
+    withOAuthConnect(oauth: OAuthConnectComponent): this;
+    withSecretInput(secret: SecretInputComponent): this;
+    secretRef(ref: string): this;
+    escalateToOperator(): this;
+    operatorApprovalRequired(): this;
+    build(): JsonRpcResponse;
+}
+export interface Attachment {
+    type: 'image' | 'file' | 'location';
+    uri?: string;
+    url?: string;
+    name?: string;
+    mimeType?: string;
+    latitude?: number;
+    longitude?: number;
+}
+export interface MessageResponse {
+    text: string;
+    components?: Component[];
+    data?: any;
+}
+export type Component = WorkflowComponent | OAuthConnectComponent | SecretInputComponent;
+export interface WorkflowComponent {
+    type: 'workflow';
+    template: WorkflowTemplate;
+}
+export interface OAuthConnectComponent {
+    type: 'oauthConnect';
+    provider: 'gmail' | 'office365' | 'github';
+    label?: string;
+    description?: string;
+    scopes?: string[];
+}
+export interface SecretInputComponent {
+    type: 'secretInput';
+    name: string;
+    label: string;
+    description?: string;
+}
+export interface WorkflowTemplate {
+    name: string;
+    referencePrefix: string;
+    steps: WorkflowStep[];
+}
+export type WorkflowFieldType = 'text' | 'email' | 'phone' | 'number' | 'date' | 'textarea' | 'select' | 'checkbox' | 'photo' | 'location';
+export interface WorkflowStep {
+    order: number;
+    name: string;
+    title: string;
+    description?: string;
+    type: WorkflowFieldType;
+    required?: boolean;
+    canSkip: boolean;
+    placeholder?: string;
+    options?: SelectOption[];
+    validation?: FieldValidation;
+    photoConfig?: PhotoConfig;
+    locationConfig?: LocationConfig;
+}
+export interface SelectOption {
+    label: string;
+    value: string;
+}
+export interface FieldValidation {
+    pattern?: string;
+    patternMessage?: string;
+    min?: number;
+    max?: number;
+    minLength?: number;
+    maxLength?: number;
+}
+export interface PhotoConfig {
+    maxCount: number;
+    requireGeoTag: boolean;
+}
+export interface LocationConfig {
+    requireHighAccuracy: boolean;
+}
+export interface WorkflowCompletedAction {
+    type: 'workflow_completed';
+    workflowName: string;
+    data: Record<string, any>;
+}
+export interface OAuthCompleteAction {
+    actionId: 'oauth_complete';
+    data: {
+        provider: string;
+        businessId: string;
+        connectionId: string;
+        access_token: string;
+        refresh_token?: string;
+        expires_in: number;
+        scope?: string;
+        token_type: string;
+    };
+}
+export interface SecretSubmittedAction {
+    actionId: 'secret_submitted';
+    connectionId: string;
+    data: {
+        name: string;
+        value: string;
+    };
+}
+export type AgentAction = WorkflowCompletedAction | OAuthCompleteAction | SecretSubmittedAction | Record<string, any>;
+export interface MoebaClientOptions {
+    apiKey: string;
+    baseUrl?: string;
+    timeout?: number;
+}
+export interface SendMessagePayload {
+    text?: string;
+    components?: Component[];
+}
+export interface SendResponse {
+    success: boolean;
+    conversationId: string;
+    connectionId: string;
+    messageId?: string;
+}
+export interface OAuthTokenResponse {
+    access_token: string;
+    refresh_token?: string;
+    expires_in: number;
+    scope?: string;
+    token_type: string;
+}
+export interface WebhookHandlerOptions {
+    webhookSecret: string;
+    onMessage: (message: {
+        text: string;
+        attachments: Attachment[];
+    }, ctx: HandlerContext) => Promise<any>;
+    onAction?: (action: AgentAction, ctx: HandlerContext) => Promise<any>;
+    onPing?: (ctx: HandlerContext) => Promise<any>;
+}
+export interface IncomingHeaders {
+    'x-moeba-signature'?: string;
+    'x-moeba-user'?: string;
+    'x-moeba-user-name'?: string;
+    'x-moeba-user-role'?: string;
+    'x-moeba-connection-id'?: string;
+    [key: string]: string | undefined;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,YAAY,GAAG,eAAe,GAAG,cAAc,CAAC;IACxD,MAAM,EAAE;QACN,OAAO,CAAC,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,WAAW,CAAC,EAAE,UAAU,EAAE,CAAA;SAAE,CAAC;QACvD,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;KAC9B,CAAC;IACF,OAAO,EAAE,cAAc,CAAC;CACzB;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,KAAK,CAAC;IACf,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,CAAC,EAAE;QACP,MAAM,CAAC,EAAE,MAAM,CAAC;QAChB,OAAO,CAAC,EAAE,eAAe,CAAC;QAC1B,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,kBAAkB,CAAC,EAAE,OAAO,CAAC;QAC7B,wBAAwB,CAAC,EAAE,OAAO,CAAC;KACpC,CAAC;IACF,KAAK,CAAC,EAAE;QACN,IAAI,EAAE,MAAM,CAAC;QACb,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,CAAC,EAAE,GAAG,CAAC;KACZ,CAAC;CACH;AAMD,MAAM,WAAW,cAAc;IAC7B,eAAe,EAAE,KAAK,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,CAAC,IAAI,EAAE,MAAM,KAAK,eAAe,CAAC;CAC1C;AAGD,MAAM,WAAW,eAAe;IAC9B,YAAY,CAAC,QAAQ,EAAE,iBAAiB,GAAG,IAAI,CAAC;IAChD,gBAAgB,CAAC,KAAK,EAAE,qBAAqB,GAAG,IAAI,CAAC;IACrD,eAAe,CAAC,MAAM,EAAE,oBAAoB,GAAG,IAAI,CAAC;IACpD,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,kBAAkB,IAAI,IAAI,CAAC;IAC3B,wBAAwB,IAAI,IAAI,CAAC;IACjC,KAAK,IAAI,eAAe,CAAC;CAC1B;AAMD,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,OAAO,GAAG,MAAM,GAAG,UAAU,CAAC;IACpC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAMD,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;IACzB,IAAI,CAAC,EAAE,GAAG,CAAC;CACZ;AAMD,MAAM,MAAM,SAAS,GAAG,iBAAiB,GAAG,qBAAqB,GAAG,oBAAoB,CAAC;AAEzF,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,UAAU,CAAC;IACjB,QAAQ,EAAE,gBAAgB,CAAC;CAC5B;AAED,MAAM,WAAW,qBAAqB;IACpC,IAAI,EAAE,cAAc,CAAC;IACrB,QAAQ,EAAE,OAAO,GAAG,WAAW,GAAG,QAAQ,CAAC;IAC3C,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,aAAa,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAMD,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,eAAe,EAAE,MAAM,CAAC;IACxB,KAAK,EAAE,YAAY,EAAE,CAAC;CACvB;AAED,MAAM,MAAM,iBAAiB,GACzB,MAAM,GACN,OAAO,GACP,OAAO,GACP,QAAQ,GACR,MAAM,GACN,UAAU,GACV,QAAQ,GACR,UAAU,GACV,OAAO,GACP,UAAU,CAAC;AAEf,MAAM,WAAW,YAAY;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,iBAAiB,CAAC;IACxB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,YAAY,EAAE,CAAC;IACzB,UAAU,CAAC,EAAE,eAAe,CAAC;IAC7B,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,cAAc,CAAC,EAAE,cAAc,CAAC;CACjC;AAED,MAAM,WAAW,YAAY;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,EAAE,OAAO,CAAC;CACxB;AAED,MAAM,WAAW,cAAc;IAC7B,mBAAmB,EAAE,OAAO,CAAC;CAC9B;AAMD,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,oBAAoB,CAAC;IAC3B,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAC3B;AAED,MAAM,WAAW,mBAAmB;IAClC,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,IAAI,EAAE;QACJ,QAAQ,EAAE,MAAM,CAAC;QACjB,UAAU,EAAE,MAAM,CAAC;QACnB,YAAY,EAAE,MAAM,CAAC;QACrB,YAAY,EAAE,MAAM,CAAC;QACrB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,UAAU,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,UAAU,EAAE,MAAM,CAAC;KACpB,CAAC;CACH;AAED,MAAM,WAAW,qBAAqB;IACpC,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,YAAY,EAAE,MAAM,CAAC;IACrB,IAAI,EAAE;QACJ,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;CACH;AAED,MAAM,MAAM,WAAW,GAAG,uBAAuB,GAAG,mBAAmB,GAAG,qBAAqB,GAAG,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;AAMtH,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,kBAAkB;IACjC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;CAC1B;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,OAAO,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;IACvB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,kBAAkB;IACjC,YAAY,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;CACpB;AAMD,MAAM,WAAW,qBAAqB;IACpC,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,CAAC,OAAO,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,WAAW,EAAE,UAAU,EAAE,CAAA;KAAE,EAAE,GAAG,EAAE,cAAc,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;IACvG,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE,WAAW,EAAE,GAAG,EAAE,cAAc,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;IACtE,MAAM,CAAC,EAAE,CAAC,GAAG,EAAE,cAAc,KAAK,OAAO,CAAC,GAAG,CAAC,CAAC;CAChD;AAED,MAAM,WAAW,eAAe;IAC9B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC;CACnC"}

package/dist/types.js

@@ -0,0 +1,6 @@
+"use strict";
+// =============================================================================
+// JSON-RPC 2.0
+// =============================================================================
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":";AAAA,gFAAgF;AAChF,eAAe;AACf,gFAAgF"}

package/package.json

@@ -0,0 +1,22 @@
+{
+  "name": "moeba-sdk",
+  "version": "1.0.0",
+  "description": "TypeScript SDK for building Moeba business agents",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "prepublishOnly": "npm run build"
+  },
+  "devDependencies": {
+    "typescript": "^5.9.0",
+    "@types/node": "^20.0.0"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  },
+  "license": "MIT"
+}