monora-ai 2.1.0 → 2.1.4

package/dist/report.d.ts

@@ -2,8 +2,9 @@
  * CLI report generation utilities.
  */
 import { MonoraConfig } from './config';
+import { ModelRegistryConfig } from './registry';
 export declare function loadJsonl(path: string): Array<Record<string, any>>;
-export declare function buildReport(events: Array<Record<string, any>>, policies?: MonoraConfig['policies']): Record<string, any>;
+export declare function buildReport(events: Array<Record<string, any>>, policies?: MonoraConfig['policies'], registryConfig?: ModelRegistryConfig): Record<string, any>;
 export declare function buildUsageSummary(events: Array<Record<string, any>>): Record<string, any>;
 export declare function writeJson(path: string, report: Record<string, any>): void;
 export declare function writeMarkdown(path: string, report: Record<string, any>): void;

package/dist/report.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"report.d.ts","sourceRoot":"","sources":["../src/report.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAKxC,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAelE;AAqJD,wBAAgB,WAAW,CACzB,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,EAClC,QAAQ,CAAC,EAAE,YAAY,CAAC,UAAU,CAAC,GAClC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CA6PrB;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CA4EzF;AAED,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CAEzE;AAED,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CAsD7E;AAED,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CA4DnF"}
+{"version":3,"file":"report.d.ts","sourceRoot":"","sources":["../src/report.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAiB,mBAAmB,EAAE,MAAM,YAAY,CAAC;AAKhE,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,CAelE;AAmPD,wBAAgB,WAAW,CACzB,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,EAClC,QAAQ,CAAC,EAAE,YAAY,CAAC,UAAU,CAAC,EACnC,cAAc,CAAC,EAAE,mBAAmB,GACnC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CA8RrB;AAED,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CA2GzF;AAED,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CAEzE;AAED,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CA6E7E;AAED,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI,CAmFnF"}

package/dist/report.js

@@ -43,6 +43,7 @@ exports.writeJson = writeJson;
 exports.writeMarkdown = writeMarkdown;
 exports.writeUsageMarkdown = writeUsageMarkdown;
 const fs = __importStar(require("fs"));
+const registry_1 = require("./registry");
 const logger_1 = require("./logger");
 function loadJsonl(path) {
     const events = [];
@@ -164,6 +165,83 @@ function extractUsage(body) {
     }
     return null;
 }
+function coerceCost(value) {
+    if (value === null || value === undefined) {
+        return null;
+    }
+    const numberValue = Number(value);
+    return Number.isFinite(numberValue) ? numberValue : null;
+}
+function extractUsagePayload(body) {
+    const response = body.response;
+    if (response && typeof response === 'object' && response.usage && typeof response.usage === 'object') {
+        return response.usage;
+    }
+    if (body.usage && typeof body.usage === 'object') {
+        return body.usage;
+    }
+    if (body.token_usage && typeof body.token_usage === 'object') {
+        return body.token_usage;
+    }
+    return null;
+}
+function estimateCostFromPricing(pricing, usage) {
+    if (!pricing || typeof pricing !== 'object' || !usage) {
+        return null;
+    }
+    const unit = String(pricing.unit || '1k_tokens').toLowerCase();
+    let scale = 1000;
+    if (unit === '1m_tokens' || unit === '1m' || unit === 'per_1m') {
+        scale = 1000000;
+    }
+    else if (unit === 'token' || unit === 'per_token') {
+        scale = 1;
+    }
+    const totalRate = coerceCost(pricing.cost_per_1k_tokens ||
+        pricing.total_cost_per_1k ||
+        pricing.cost_per_1m_tokens ||
+        pricing.total_cost_per_1m);
+    const promptRate = coerceCost(pricing.prompt_cost_per_1k ||
+        pricing.input_cost_per_1k ||
+        pricing.prompt_cost_per_1m ||
+        pricing.input_cost_per_1m);
+    const completionRate = coerceCost(pricing.completion_cost_per_1k ||
+        pricing.output_cost_per_1k ||
+        pricing.completion_cost_per_1m ||
+        pricing.output_cost_per_1m);
+    if (totalRate !== null) {
+        return (usage.total / scale) * totalRate;
+    }
+    if (promptRate === null && completionRate === null) {
+        return null;
+    }
+    let cost = 0;
+    if (promptRate !== null) {
+        cost += (usage.prompt / scale) * promptRate;
+    }
+    if (completionRate !== null) {
+        cost += (usage.completion / scale) * completionRate;
+    }
+    return cost;
+}
+function estimateCost(body, model, usage, registry) {
+    const usagePayload = extractUsagePayload(body);
+    if (usagePayload) {
+        for (const key of ['total_cost', 'cost', 'estimated_cost', 'total_cost_usd', 'cost_usd']) {
+            const value = usagePayload[key];
+            const cost = coerceCost(value);
+            if (cost !== null) {
+                return cost;
+            }
+        }
+    }
+    if (!registry || !model) {
+        return null;
+    }
+    const metadata = registry.getModelMetadata(model);
+    const pricing = metadata && typeof metadata === 'object' ? metadata.pricing : null;
+    return estimateCostFromPricing(pricing, usage);
+}
 function classifyPolicyViolation(policyName) {
     const lowered = policyName.toLowerCase();
     if (lowered.includes('unknown_model')) {
@@ -194,8 +272,9 @@ function matchesAny(patterns, model, used) {
     }
     return false;
 }
-function buildReport(events, policies) {
+function buildReport(events, policies, registryConfig) {
     const filteredEvents = events.filter((event) => event.event_type !== 'trust_summary');
+    const registry = new registry_1.ModelRegistry(registryConfig || {});
     const traceIds = new Set();
     const timestamps = [];
     const byEventType = {};
@@ -210,6 +289,12 @@ function buildReport(events, policies) {
         missing_usage_events: 0,
         missing_usage_models: [],
     };
+    const costUsage = {
+        total_cost_usd: 0,
+        by_model: {},
+        missing_cost_events: 0,
+        missing_cost_models: [],
+    };
     const violations = [];
     const errors = [];
     const modelsUsed = new Set();
@@ -218,9 +303,12 @@ function buildReport(events, policies) {
     const allowedModelsUsed = new Set();
     const usedAllowlistPatterns = new Set();
     const missingUsageModels = new Set();
+    const missingCostModels = new Set();
     let missingUsageEvents = 0;
+    let missingCostEvents = 0;
     const modelEventIds = {};
     const missingUsageEventIds = [];
+    const missingCostEventIds = [];
     const unknownViolationEventIds = {};
     const forbiddenViolationEventIds = {};
     for (const event of filteredEvents) {
@@ -292,8 +380,9 @@ function buildReport(events, policies) {
                 }
                 modelEventIds[model].push(event.event_id);
             }
+            let usage = null;
             if (!isBlocked) {
-                const usage = extractUsage(body);
+                usage = extractUsage(body);
                 if (!usage) {
                     missingUsageEvents += 1;
                     if (model) {
@@ -315,6 +404,25 @@ function buildReport(events, policies) {
                     }
                 }
             }
+            if (!isBlocked) {
+                const cost = estimateCost(body, model, usage, registry);
+                if (cost === null) {
+                    missingCostEvents += 1;
+                    missingCostEventIds.push(event.event_id);
+                    if (model) {
+                        missingCostModels.add(model);
+                    }
+                }
+                else {
+                    costUsage.total_cost_usd += cost;
+                    if (model) {
+                        if (!costUsage.by_model[model]) {
+                            costUsage.by_model[model] = { estimated_cost_usd: 0 };
+                        }
+                        costUsage.by_model[model].estimated_cost_usd += cost;
+                    }
+                }
+            }
         }
         if (body.error) {
             errors.push({
@@ -368,6 +476,8 @@ function buildReport(events, policies) {
     }
     tokenUsage.missing_usage_events = missingUsageEvents;
     tokenUsage.missing_usage_models = Array.from(missingUsageModels).sort();
+    costUsage.missing_cost_events = missingCostEvents;
+    costUsage.missing_cost_models = Array.from(missingCostModels).sort();
     const unusedAllowlistPatterns = allowlistPatterns.length > 0
         ? allowlistPatterns
             .map(([raw]) => raw)
@@ -413,6 +523,7 @@ function buildReport(events, policies) {
         violations,
         errors,
         token_usage: tokenUsage,
+        cost_usage: costUsage,
         model_compliance: {
             allowed_models_used: Array.from(allowedModelsUsed).sort(),
             forbidden_models_blocked: Array.from(forbiddenModelsBlocked).sort(),
@@ -427,17 +538,23 @@ function buildReport(events, policies) {
             forbidden_models: forbiddenModelsEvidence,
             errors,
             missing_usage_events: dedupe(missingUsageEventIds),
+            missing_cost_events: dedupe(missingCostEventIds),
         },
     };
 }
 function buildUsageSummary(events) {
     const filteredEvents = events.filter((event) => event.event_type !== 'trust_summary');
+    const registry = new registry_1.ModelRegistry({});
     const traceIds = new Set();
     const timestamps = [];
     const dailyCounts = {};
     const apiByType = {};
     const apiStatusCounts = {};
     const modelCounts = {};
+    const costByModel = {};
+    let totalCostUsd = 0;
+    let missingCostEvents = 0;
+    const missingCostModels = new Set();
     let sdkInits = 0;
     for (const event of filteredEvents) {
         if (event.trace_id) {
@@ -465,6 +582,22 @@ function buildUsageSummary(events) {
                 if (model) {
                     modelCounts[model] = (modelCounts[model] || 0) + 1;
                 }
+                if (status !== 'policy_violation') {
+                    const usage = extractUsage(body);
+                    const cost = estimateCost(body, model, usage, registry);
+                    if (cost === null) {
+                        missingCostEvents += 1;
+                        if (model) {
+                            missingCostModels.add(model);
+                        }
+                    }
+                    else {
+                        totalCostUsd += cost;
+                        if (model) {
+                            costByModel[model] = (costByModel[model] || 0) + cost;
+                        }
+                    }
+                }
             }
         }
     }
@@ -484,6 +617,10 @@ function buildUsageSummary(events) {
         .sort(([, a], [, b]) => b - a)
         .slice(0, 5)
         .map(([model, count]) => ({ model, count }));
+    const topCostModels = Object.entries(costByModel)
+        .sort(([, a], [, b]) => b - a)
+        .slice(0, 5)
+        .map(([model, cost]) => ({ model, estimated_cost_usd: cost }));
     return {
         period: { start, end },
         total_events: filteredEvents.length,
@@ -498,6 +635,13 @@ function buildUsageSummary(events) {
         active_days: Object.keys(dailyCounts).length,
         daily_activity: dailyActivity,
         top_models: topModels,
+        cost_usage: {
+            total_cost_usd: totalCostUsd,
+            by_model: costByModel,
+            missing_cost_events: missingCostEvents,
+            missing_cost_models: Array.from(missingCostModels).sort(),
+        },
+        top_cost_models: topCostModels,
     };
 }
 function writeJson(path, report) {
@@ -522,6 +666,29 @@ function writeMarkdown(path, report) {
     for (const [model, count] of Object.entries(report.by_model || {})) {
         lines.push(`- ${model}: ${count} calls`);
     }
+    const costUsage = report.cost_usage || {};
+    if (Object.keys(costUsage).length > 0) {
+        const totalCost = typeof costUsage.total_cost_usd === 'number'
+            ? costUsage.total_cost_usd.toFixed(6)
+            : 'N/A';
+        lines.push('');
+        lines.push('## Cost Usage');
+        lines.push(`- Total estimated cost (USD): ${totalCost}`);
+        const byModelCost = costUsage.by_model || {};
+        const sortedModels = Object.entries(byModelCost)
+            .sort(([, a], [, b]) => (b.estimated_cost_usd || 0) - (a.estimated_cost_usd || 0))
+            .slice(0, 5);
+        if (sortedModels.length > 0) {
+            lines.push('- By model:');
+            for (const [model, data] of sortedModels) {
+                const costData = data;
+                const costValue = costData && typeof costData.estimated_cost_usd === 'number'
+                    ? costData.estimated_cost_usd.toFixed(6)
+                    : '0.000000';
+                lines.push(`  - ${model}: ${costValue}`);
+            }
+        }
+    }
     const violations = report.violations || [];
     lines.push('');
     lines.push(`## Policy Violations (${violations.length})`);
@@ -584,6 +751,26 @@ function writeUsageMarkdown(path, summary) {
             lines.push(`  - ${status}: ${count}`);
         }
     }
+    const costUsage = summary.cost_usage || {};
+    if (Object.keys(costUsage).length > 0) {
+        const totalCost = typeof costUsage.total_cost_usd === 'number'
+            ? costUsage.total_cost_usd.toFixed(6)
+            : 'N/A';
+        lines.push('');
+        lines.push('## Cost Usage');
+        lines.push(`- Total estimated cost (USD): ${totalCost}`);
+        const topCostModels = summary.top_cost_models || [];
+        if (topCostModels.length > 0) {
+            lines.push('- Top models by cost:');
+            for (const entry of topCostModels) {
+                const model = entry.model;
+                const costValue = typeof entry.estimated_cost_usd === 'number'
+                    ? entry.estimated_cost_usd.toFixed(6)
+                    : '0.000000';
+                lines.push(`  - ${model}: ${costValue}`);
+            }
+        }
+    }
     lines.push('');
     lines.push('## Daily Activity');
     const dailyActivity = summary.daily_activity || [];

package/dist/reporting.d.ts

@@ -3,6 +3,131 @@
  */
 import { MonoraConfig } from './config';
 export declare const TRUST_SUMMARY_EVENT_TYPE = "trust_summary";
+export declare const COMPLIANCE_DRIFT_EVENT_TYPE = "compliance_drift";
+/**
+ * Compliance score snapshot for monitoring.
+ */
+export interface ComplianceScoreSnapshot {
+    traceId: string;
+    score: number;
+    grade: string;
+    timestamp: string;
+    framework?: string;
+}
+/**
+ * Compliance drift event data.
+ */
+export interface ComplianceDriftEvent {
+    eventType: typeof COMPLIANCE_DRIFT_EVENT_TYPE;
+    previousScore: number;
+    currentScore: number;
+    scoreDelta: number;
+    previousGrade: string;
+    currentGrade: string;
+    traceId: string;
+    previousTraceId: string;
+    timestamp: string;
+    driftDirection: 'improved' | 'degraded' | 'stable';
+    threshold: number;
+}
+/**
+ * Callback for compliance drift events.
+ */
+export type ComplianceDriftCallback = (event: ComplianceDriftEvent) => void;
+/**
+ * Options for compliance monitoring.
+ */
+export interface ComplianceMonitorOptions {
+    /** Score change threshold to trigger drift event (default: 5) */
+    driftThreshold?: number;
+    /** Maximum number of snapshots to retain (default: 100) */
+    maxSnapshots?: number;
+    /** Framework to monitor (optional, monitors all if not set) */
+    framework?: string;
+    /** Callback for drift events */
+    onDrift?: ComplianceDriftCallback;
+}
+/**
+ * Continuous compliance monitoring for tracking score changes.
+ *
+ * Monitors compliance scores across traces and emits drift events
+ * when scores change significantly.
+ *
+ * @example
+ * ```typescript
+ * const monitor = new ComplianceMonitor({
+ *   driftThreshold: 5,
+ *   onDrift: (event) => {
+ *     if (event.driftDirection === 'degraded') {
+ *       console.warn(`Compliance degraded: ${event.scoreDelta} points`);
+ *     }
+ *   },
+ * });
+ *
+ * // Record score after each trace
+ * monitor.recordScore('trace_1', 85, 'B');
+ * monitor.recordScore('trace_2', 78, 'C'); // Triggers drift event
+ * ```
+ */
+export declare class ComplianceMonitor {
+    private snapshots;
+    private driftThreshold;
+    private maxSnapshots;
+    private framework?;
+    private onDrift?;
+    private driftCallbacks;
+    constructor(options?: ComplianceMonitorOptions);
+    /**
+     * Record a compliance score snapshot.
+     *
+     * @param traceId - Trace identifier
+     * @param score - Compliance score (0-100)
+     * @param grade - Grade letter (A-F)
+     * @param framework - Optional framework name
+     * @returns Drift event if threshold exceeded, null otherwise
+     */
+    recordScore(traceId: string, score: number, grade: string, framework?: string): ComplianceDriftEvent | null;
+    /**
+     * Get the latest score snapshot.
+     */
+    getLatestSnapshot(): ComplianceScoreSnapshot | null;
+    /**
+     * Get all score snapshots.
+     */
+    getSnapshots(): ComplianceScoreSnapshot[];
+    /**
+     * Get score trend (average change over recent snapshots).
+     *
+     * @param windowSize - Number of recent snapshots to consider (default: 5)
+     */
+    getScoreTrend(windowSize?: number): {
+        trend: 'improving' | 'degrading' | 'stable';
+        avgChange: number;
+    };
+    /**
+     * Get compliance statistics.
+     */
+    getStatistics(): {
+        currentScore: number | null;
+        averageScore: number;
+        minScore: number;
+        maxScore: number;
+        snapshotCount: number;
+        trend: 'improving' | 'degrading' | 'stable';
+    };
+    /**
+     * Register a callback for drift events.
+     *
+     * @param callback - Function to call on drift
+     * @returns Unsubscribe function
+     */
+    onDriftEvent(callback: ComplianceDriftCallback): () => void;
+    /**
+     * Clear all snapshots.
+     */
+    reset(): void;
+    private notifyDrift;
+}
 interface RegistryMetadata {
     version?: string;
     hash?: string;

package/dist/reporting.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"reporting.d.ts","sourceRoot":"","sources":["../src/reporting.ts"],"names":[],"mappings":"AAAA;;GAEG;AAcH,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAWxC,eAAO,MAAM,wBAAwB,kBAAkB,CAAC;AAWxD,UAAU,gBAAgB;IACxB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,KAAK,CAAC;QACd,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,EAAE,MAAM,EAAE,CAAC;KACnB,CAAC,CAAC;CACJ;AAED,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,gBAAgB,CAAU;IAClC,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,OAAO,CAAW;IAC1B,OAAO,CAAC,qBAAqB,CAAU;IACvC,OAAO,CAAC,iBAAiB,CAAgB;IACzC,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,aAAa,CAAsD;IAC3E,OAAO,CAAC,cAAc,CAAkC;gBAE5C,MAAM,EAAE,YAAY;IAWhC,SAAS,IAAI,OAAO;IAIpB,sBAAsB,IAAI,OAAO;IAIjC,WAAW,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI;IAoB7C,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,IAAI;IAWlE;;;OAGG;IACH,kBAAkB,IAAI,MAAM,EAAE;IAI9B,aAAa,CACX,OAAO,EAAE,MAAM,EACf,gBAAgB,CAAC,EAAE,gBAAgB,GAAG,IAAI,GACzC;QAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;KAAE,GAAG,IAAI;CAwH3C"}
+{"version":3,"file":"reporting.d.ts","sourceRoot":"","sources":["../src/reporting.ts"],"names":[],"mappings":"AAAA;;GAEG;AAcH,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAWxC,eAAO,MAAM,wBAAwB,kBAAkB,CAAC;AACxD,eAAO,MAAM,2BAA2B,qBAAqB,CAAC;AAE9D;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,oBAAoB;IACnC,SAAS,EAAE,OAAO,2BAA2B,CAAC;IAC9C,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,eAAe,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,cAAc,EAAE,UAAU,GAAG,UAAU,GAAG,QAAQ,CAAC;IACnD,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,MAAM,uBAAuB,GAAG,CAAC,KAAK,EAAE,oBAAoB,KAAK,IAAI,CAAC;AAE5E;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,iEAAiE;IACjE,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,2DAA2D;IAC3D,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,+DAA+D;IAC/D,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,gCAAgC;IAChC,OAAO,CAAC,EAAE,uBAAuB,CAAC;CACnC;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,qBAAa,iBAAiB;IAC5B,OAAO,CAAC,SAAS,CAAiC;IAClD,OAAO,CAAC,cAAc,CAAS;IAC/B,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,SAAS,CAAC,CAAS;IAC3B,OAAO,CAAC,OAAO,CAAC,CAA0B;IAC1C,OAAO,CAAC,cAAc,CAAiC;gBAE3C,OAAO,GAAE,wBAA6B;IAOlD;;;;;;;;OAQG;IACH,WAAW,CACT,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,KAAK,EAAE,MAAM,EACb,SAAS,CAAC,EAAE,MAAM,GACjB,oBAAoB,GAAG,IAAI;IA8C9B;;OAEG;IACH,iBAAiB,IAAI,uBAAuB,GAAG,IAAI;IAInD;;OAEG;IACH,YAAY,IAAI,uBAAuB,EAAE;IAIzC;;;;OAIG;IACH,aAAa,CAAC,UAAU,GAAE,MAAU,GAAG;QAAE,KAAK,EAAE,WAAW,GAAG,WAAW,GAAG,QAAQ,CAAC;QAAC,SAAS,EAAE,MAAM,CAAA;KAAE;IA6BzG;;OAEG;IACH,aAAa,IAAI;QACf,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;QAC5B,YAAY,EAAE,MAAM,CAAC;QACrB,QAAQ,EAAE,MAAM,CAAC;QACjB,QAAQ,EAAE,MAAM,CAAC;QACjB,aAAa,EAAE,MAAM,CAAC;QACtB,KAAK,EAAE,WAAW,GAAG,WAAW,GAAG,QAAQ,CAAC;KAC7C;IAyBD;;;;;OAKG;IACH,YAAY,CAAC,QAAQ,EAAE,uBAAuB,GAAG,MAAM,IAAI;IAW3D;;OAEG;IACH,KAAK,IAAI,IAAI;IAIb,OAAO,CAAC,WAAW;CAmBpB;AAWD,UAAU,gBAAgB;IACxB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,KAAK,CAAC;QACd,OAAO,EAAE,MAAM,CAAC;QAChB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,OAAO,EAAE,MAAM,EAAE,CAAC;KACnB,CAAC,CAAC;CACJ;AAED,qBAAa,kBAAkB;IAC7B,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,gBAAgB,CAAU;IAClC,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,OAAO,CAAW;IAC1B,OAAO,CAAC,qBAAqB,CAAU;IACvC,OAAO,CAAC,iBAAiB,CAAgB;IACzC,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,aAAa,CAAsD;IAC3E,OAAO,CAAC,cAAc,CAAkC;gBAE5C,MAAM,EAAE,YAAY;IAWhC,SAAS,IAAI,OAAO;IAIpB,sBAAsB,IAAI,OAAO;IAIjC,WAAW,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,GAAG,IAAI;IAoB7C,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,IAAI;IAWlE;;;OAGG;IACH,kBAAkB,IAAI,MAAM,EAAE;IAI9B,aAAa,CACX,OAAO,EAAE,MAAM,EACf,gBAAgB,CAAC,EAAE,gBAAgB,GAAG,IAAI,GACzC;QAAE,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;KAAE,GAAG,IAAI;CA4H3C"}

package/dist/reporting.js

@@ -36,7 +36,7 @@ var __importStar = (this && this.__importStar) || (function () {
     };
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.TraceReportManager = exports.TRUST_SUMMARY_EVENT_TYPE = void 0;
+exports.TraceReportManager = exports.ComplianceMonitor = exports.COMPLIANCE_DRIFT_EVENT_TYPE = exports.TRUST_SUMMARY_EVENT_TYPE = void 0;
 const crypto = __importStar(require("crypto"));
 const fs = __importStar(require("fs"));
 const path = __importStar(require("path"));
@@ -47,6 +47,196 @@ const report_1 = require("./report");
 const security_report_1 = require("./security_report");
 const verify_1 = require("./verify");
 exports.TRUST_SUMMARY_EVENT_TYPE = 'trust_summary';
+exports.COMPLIANCE_DRIFT_EVENT_TYPE = 'compliance_drift';
+/**
+ * Continuous compliance monitoring for tracking score changes.
+ *
+ * Monitors compliance scores across traces and emits drift events
+ * when scores change significantly.
+ *
+ * @example
+ * ```typescript
+ * const monitor = new ComplianceMonitor({
+ *   driftThreshold: 5,
+ *   onDrift: (event) => {
+ *     if (event.driftDirection === 'degraded') {
+ *       console.warn(`Compliance degraded: ${event.scoreDelta} points`);
+ *     }
+ *   },
+ * });
+ *
+ * // Record score after each trace
+ * monitor.recordScore('trace_1', 85, 'B');
+ * monitor.recordScore('trace_2', 78, 'C'); // Triggers drift event
+ * ```
+ */
+class ComplianceMonitor {
+    constructor(options = {}) {
+        this.snapshots = [];
+        this.driftCallbacks = [];
+        this.driftThreshold = options.driftThreshold ?? 5;
+        this.maxSnapshots = options.maxSnapshots ?? 100;
+        this.framework = options.framework;
+        this.onDrift = options.onDrift;
+    }
+    /**
+     * Record a compliance score snapshot.
+     *
+     * @param traceId - Trace identifier
+     * @param score - Compliance score (0-100)
+     * @param grade - Grade letter (A-F)
+     * @param framework - Optional framework name
+     * @returns Drift event if threshold exceeded, null otherwise
+     */
+    recordScore(traceId, score, grade, framework) {
+        const snapshot = {
+            traceId,
+            score,
+            grade,
+            timestamp: new Date().toISOString(),
+            framework,
+        };
+        const previousSnapshot = this.getLatestSnapshot();
+        this.snapshots.push(snapshot);
+        // Trim old snapshots
+        if (this.snapshots.length > this.maxSnapshots) {
+            this.snapshots = this.snapshots.slice(-this.maxSnapshots);
+        }
+        // Check for drift
+        if (previousSnapshot) {
+            const scoreDelta = score - previousSnapshot.score;
+            const absDelta = Math.abs(scoreDelta);
+            if (absDelta >= this.driftThreshold) {
+                const driftEvent = {
+                    eventType: exports.COMPLIANCE_DRIFT_EVENT_TYPE,
+                    previousScore: previousSnapshot.score,
+                    currentScore: score,
+                    scoreDelta,
+                    previousGrade: previousSnapshot.grade,
+                    currentGrade: grade,
+                    traceId,
+                    previousTraceId: previousSnapshot.traceId,
+                    timestamp: snapshot.timestamp,
+                    driftDirection: scoreDelta > 0 ? 'improved' : scoreDelta < 0 ? 'degraded' : 'stable',
+                    threshold: this.driftThreshold,
+                };
+                // Notify callbacks
+                this.notifyDrift(driftEvent);
+                return driftEvent;
+            }
+        }
+        return null;
+    }
+    /**
+     * Get the latest score snapshot.
+     */
+    getLatestSnapshot() {
+        return this.snapshots.length > 0 ? this.snapshots[this.snapshots.length - 1] : null;
+    }
+    /**
+     * Get all score snapshots.
+     */
+    getSnapshots() {
+        return [...this.snapshots];
+    }
+    /**
+     * Get score trend (average change over recent snapshots).
+     *
+     * @param windowSize - Number of recent snapshots to consider (default: 5)
+     */
+    getScoreTrend(windowSize = 5) {
+        if (this.snapshots.length < 2) {
+            return { trend: 'stable', avgChange: 0 };
+        }
+        const recentSnapshots = this.snapshots.slice(-windowSize);
+        if (recentSnapshots.length < 2) {
+            return { trend: 'stable', avgChange: 0 };
+        }
+        let totalChange = 0;
+        for (let i = 1; i < recentSnapshots.length; i++) {
+            totalChange += recentSnapshots[i].score - recentSnapshots[i - 1].score;
+        }
+        const avgChange = totalChange / (recentSnapshots.length - 1);
+        let trend;
+        if (avgChange > 1) {
+            trend = 'improving';
+        }
+        else if (avgChange < -1) {
+            trend = 'degrading';
+        }
+        else {
+            trend = 'stable';
+        }
+        return { trend, avgChange: Number(avgChange.toFixed(2)) };
+    }
+    /**
+     * Get compliance statistics.
+     */
+    getStatistics() {
+        if (this.snapshots.length === 0) {
+            return {
+                currentScore: null,
+                averageScore: 0,
+                minScore: 0,
+                maxScore: 0,
+                snapshotCount: 0,
+                trend: 'stable',
+            };
+        }
+        const scores = this.snapshots.map((s) => s.score);
+        const sum = scores.reduce((a, b) => a + b, 0);
+        return {
+            currentScore: scores[scores.length - 1],
+            averageScore: Number((sum / scores.length).toFixed(2)),
+            minScore: Math.min(...scores),
+            maxScore: Math.max(...scores),
+            snapshotCount: this.snapshots.length,
+            trend: this.getScoreTrend().trend,
+        };
+    }
+    /**
+     * Register a callback for drift events.
+     *
+     * @param callback - Function to call on drift
+     * @returns Unsubscribe function
+     */
+    onDriftEvent(callback) {
+        this.driftCallbacks.push(callback);
+        return () => {
+            const index = this.driftCallbacks.indexOf(callback);
+            if (index !== -1) {
+                this.driftCallbacks.splice(index, 1);
+            }
+        };
+    }
+    /**
+     * Clear all snapshots.
+     */
+    reset() {
+        this.snapshots = [];
+    }
+    notifyDrift(event) {
+        // Call constructor callback
+        if (this.onDrift) {
+            try {
+                this.onDrift(event);
+            }
+            catch {
+                // Ignore callback errors
+            }
+        }
+        // Call registered callbacks
+        for (const callback of this.driftCallbacks) {
+            try {
+                callback(event);
+            }
+            catch {
+                // Ignore callback errors
+            }
+        }
+    }
+}
+exports.ComplianceMonitor = ComplianceMonitor;
 class TraceReportManager {
     constructor(config) {
         this.eventsByTrace = new Map();
@@ -113,7 +303,7 @@ class TraceReportManager {
         this.eventsByTrace.delete(traceId);
         const dropped = this.droppedByTrace.get(traceId) || 0;
         this.droppedByTrace.delete(traceId);
-        const report = (0, report_1.buildReport)(events, this.config.policies || {});
+        const report = (0, report_1.buildReport)(events, this.config.policies || {}, this.config.registry);
         const artifacts = [];
         const reportPaths = {};
         let reportDir = resolveReportDir(this.outputDir, traceId);