multicorn-shield 1.10.0 → 1.11.1

package/dist/proxy.cjs

@@ -224,6 +224,7 @@ async function fetchGrantedScopes(agentId, apiKey, baseUrl) {
     if (perm.revoked_at !== null) continue;
     if (perm.read) scopes.push({ service: perm.service, permissionLevel: "read" });
     if (perm.write) scopes.push({ service: perm.service, permissionLevel: "write" });
+    if (perm.delete === true) scopes.push({ service: perm.service, permissionLevel: "delete" });
     if (perm.execute) scopes.push({ service: perm.service, permissionLevel: "execute" });
   }
   return scopes;
@@ -289,6 +290,7 @@ function isValidLogLevel(value) {
 var PERMISSION_LEVELS = {
   Read: "read",
   Write: "write",
+  Delete: "delete",
   Execute: "execute",
   Publish: "publish",
   Create: "create"

package/dist/proxy.d.cts

@@ -56,6 +56,8 @@ declare function extractActionFromToolName(toolName: string): string;
  *
  * - `read`: observe data without modification
  * - `write`: create or modify data
+ * - `delete`: destroy data (kept distinct from `write` so saving a file never
+ *   implies the right to delete one; used by the hosted workspace filesystem)
  * - `execute`: trigger side-effects (e.g. send an email, make a payment)
  * - `publish`: make existing content publicly accessible (e.g. deploy, publish, make live)
  * - `create`: create new content that is immediately public (e.g. tweet, public commit, forum post)
@@ -63,6 +65,7 @@ declare function extractActionFromToolName(toolName: string): string;
 declare const PERMISSION_LEVELS: {
     readonly Read: "read";
     readonly Write: "write";
+    readonly Delete: "delete";
     readonly Execute: "execute";
     readonly Publish: "publish";
     readonly Create: "create";

package/dist/proxy.d.ts

@@ -56,6 +56,8 @@ declare function extractActionFromToolName(toolName: string): string;
  *
  * - `read`: observe data without modification
  * - `write`: create or modify data
+ * - `delete`: destroy data (kept distinct from `write` so saving a file never
+ *   implies the right to delete one; used by the hosted workspace filesystem)
  * - `execute`: trigger side-effects (e.g. send an email, make a payment)
  * - `publish`: make existing content publicly accessible (e.g. deploy, publish, make live)
  * - `create`: create new content that is immediately public (e.g. tweet, public commit, forum post)
@@ -63,6 +65,7 @@ declare function extractActionFromToolName(toolName: string): string;
 declare const PERMISSION_LEVELS: {
     readonly Read: "read";
     readonly Write: "write";
+    readonly Delete: "delete";
     readonly Execute: "execute";
     readonly Publish: "publish";
     readonly Create: "create";

package/dist/proxy.js

@@ -222,6 +222,7 @@ async function fetchGrantedScopes(agentId, apiKey, baseUrl) {
     if (perm.revoked_at !== null) continue;
     if (perm.read) scopes.push({ service: perm.service, permissionLevel: "read" });
     if (perm.write) scopes.push({ service: perm.service, permissionLevel: "write" });
+    if (perm.delete === true) scopes.push({ service: perm.service, permissionLevel: "delete" });
     if (perm.execute) scopes.push({ service: perm.service, permissionLevel: "execute" });
   }
   return scopes;
@@ -287,6 +288,7 @@ function isValidLogLevel(value) {
 var PERMISSION_LEVELS = {
   Read: "read",
   Write: "write",
+  Delete: "delete",
   Execute: "execute",
   Publish: "publish",
   Create: "create"