multicorn-shield 1.9.5 → 1.11.0

package/dist/index.cjs

@@ -2,6 +2,7 @@
 
 var lit = require('lit');
 var decorators_js = require('lit/decorators.js');
+var cssTag_js = require('@lit/reactive-element/css-tag.js');
 
 var __defProp = Object.defineProperty;
 var __decorateClass = (decorators, target, key, kind) => {
@@ -40,6 +41,7 @@ var AGENT_STATUSES = {
 var PERMISSION_LEVELS = {
   Read: "read",
   Write: "write",
+  Delete: "delete",
   Execute: "execute",
   Publish: "publish",
   Create: "create"
@@ -74,6 +76,11 @@ var BUILT_IN_SERVICES = {
     description: "Google Drive: file browsing, uploading, and sharing",
     capabilities: [PERMISSION_LEVELS.Read, PERMISSION_LEVELS.Write]
   },
+  filesystem: {
+    name: "filesystem",
+    description: "Sandboxed Multicorn workspace: reading, writing, and deleting files",
+    capabilities: [PERMISSION_LEVELS.Read, PERMISSION_LEVELS.Write, PERMISSION_LEVELS.Delete]
+  },
   payments: {
     name: "payments",
     description: "Payment processing: balance enquiries and transaction execution",
@@ -343,6 +350,7 @@ var SERVICE_DISPLAY_NAMES = {
   calendar: "Google Calendar",
   slack: "Slack",
   drive: "Google Drive",
+  filesystem: "Workspace files",
   payments: "Payments",
   github: "GitHub",
   jira: "Jira",
@@ -354,6 +362,7 @@ var SERVICE_ICONS = {
   calendar: "\u{1F4C5}",
   slack: "\u{1F4AC}",
   drive: "\u{1F4C1}",
+  filesystem: "\u{1F4C2}",
   payments: "\u{1F4B3}",
   github: "\u{1F419}",
   jira: "\u{1F3AF}",
@@ -363,6 +372,7 @@ var SERVICE_ICONS = {
 var PERMISSION_DESCRIPTIONS = {
   [PERMISSION_LEVELS.Read]: "Read",
   [PERMISSION_LEVELS.Write]: "Create and modify",
+  [PERMISSION_LEVELS.Delete]: "Delete",
   [PERMISSION_LEVELS.Execute]: "Execute actions",
   [PERMISSION_LEVELS.Publish]: "Publish",
   [PERMISSION_LEVELS.Create]: "Create"
@@ -370,6 +380,7 @@ var PERMISSION_DESCRIPTIONS = {
 var PERMISSION_FULL_DESCRIPTIONS = {
   [PERMISSION_LEVELS.Read]: (serviceName) => `Read your ${serviceName}`,
   [PERMISSION_LEVELS.Write]: (serviceName) => `Create and modify ${serviceName} content`,
+  [PERMISSION_LEVELS.Delete]: (serviceName) => `Delete ${serviceName} content`,
   [PERMISSION_LEVELS.Execute]: (serviceName) => {
     if (serviceName.toLowerCase().includes("payment")) {
       return "Make purchases on your behalf";
@@ -473,7 +484,7 @@ var SHIELD_COLORS = {
 };
 
 // src/consent/consent-styles.ts
-var consentStyles = lit.css`
+var consentStyles = cssTag_js.css`
   :host {
     display: block;
     font-family:
@@ -487,25 +498,25 @@ var consentStyles = lit.css`
     /* SECURITY: Every unsafeCSS() call below uses compile-time constants from
        SHIELD_COLORS. Never pass user input or dynamic values to unsafeCSS() as
        it bypasses Lit's CSS sanitisation and would create a CSS injection vector. */
-    color: ${lit.unsafeCSS(SHIELD_COLORS.text)};
-    --shield-bg: ${lit.unsafeCSS(SHIELD_COLORS.bg)};
-    --shield-surface: ${lit.unsafeCSS(SHIELD_COLORS.surface)};
-    --shield-surface-hover: ${lit.unsafeCSS(SHIELD_COLORS.surfaceHover)};
-    --shield-border: ${lit.unsafeCSS(SHIELD_COLORS.border)};
-    --shield-border-light: ${lit.unsafeCSS(SHIELD_COLORS.borderLight)};
-    --shield-text: ${lit.unsafeCSS(SHIELD_COLORS.text)};
-    --shield-text-muted: ${lit.unsafeCSS(SHIELD_COLORS.textMuted)};
-    --shield-text-dim: ${lit.unsafeCSS(SHIELD_COLORS.textDim)};
-    --shield-accent: ${lit.unsafeCSS(SHIELD_COLORS.accent)};
-    --shield-accent-light: ${lit.unsafeCSS(SHIELD_COLORS.accentLight)};
-    --shield-accent-dim: ${lit.unsafeCSS(SHIELD_COLORS.accentDim)};
-    --shield-accent-glow: ${lit.unsafeCSS(SHIELD_COLORS.accentGlow)};
-    --shield-green: ${lit.unsafeCSS(SHIELD_COLORS.green)};
-    --shield-green-dim: ${lit.unsafeCSS(SHIELD_COLORS.greenDim)};
-    --shield-amber: ${lit.unsafeCSS(SHIELD_COLORS.amber)};
-    --shield-amber-dim: ${lit.unsafeCSS(SHIELD_COLORS.amberDim)};
-    --shield-red: ${lit.unsafeCSS(SHIELD_COLORS.red)};
-    --shield-red-dim: ${lit.unsafeCSS(SHIELD_COLORS.redDim)};
+    color: ${cssTag_js.unsafeCSS(SHIELD_COLORS.text)};
+    --shield-bg: ${cssTag_js.unsafeCSS(SHIELD_COLORS.bg)};
+    --shield-surface: ${cssTag_js.unsafeCSS(SHIELD_COLORS.surface)};
+    --shield-surface-hover: ${cssTag_js.unsafeCSS(SHIELD_COLORS.surfaceHover)};
+    --shield-border: ${cssTag_js.unsafeCSS(SHIELD_COLORS.border)};
+    --shield-border-light: ${cssTag_js.unsafeCSS(SHIELD_COLORS.borderLight)};
+    --shield-text: ${cssTag_js.unsafeCSS(SHIELD_COLORS.text)};
+    --shield-text-muted: ${cssTag_js.unsafeCSS(SHIELD_COLORS.textMuted)};
+    --shield-text-dim: ${cssTag_js.unsafeCSS(SHIELD_COLORS.textDim)};
+    --shield-accent: ${cssTag_js.unsafeCSS(SHIELD_COLORS.accent)};
+    --shield-accent-light: ${cssTag_js.unsafeCSS(SHIELD_COLORS.accentLight)};
+    --shield-accent-dim: ${cssTag_js.unsafeCSS(SHIELD_COLORS.accentDim)};
+    --shield-accent-glow: ${cssTag_js.unsafeCSS(SHIELD_COLORS.accentGlow)};
+    --shield-green: ${cssTag_js.unsafeCSS(SHIELD_COLORS.green)};
+    --shield-green-dim: ${cssTag_js.unsafeCSS(SHIELD_COLORS.greenDim)};
+    --shield-amber: ${cssTag_js.unsafeCSS(SHIELD_COLORS.amber)};
+    --shield-amber-dim: ${cssTag_js.unsafeCSS(SHIELD_COLORS.amberDim)};
+    --shield-red: ${cssTag_js.unsafeCSS(SHIELD_COLORS.red)};
+    --shield-red-dim: ${cssTag_js.unsafeCSS(SHIELD_COLORS.redDim)};
   }
 
   /* Modal backdrop */

package/dist/index.d.cts

@@ -1,4 +1,4 @@
-import * as lit from 'lit';
+import * as _lit_reactive_element_css_tag_js from '@lit/reactive-element/css-tag.js';
 import { LitElement, PropertyValues, HTMLTemplateResult } from 'lit';
 
 /**
@@ -32,6 +32,8 @@ type AgentStatus = (typeof AGENT_STATUSES)[keyof typeof AGENT_STATUSES];
  *
  * - `read`: observe data without modification
  * - `write`: create or modify data
+ * - `delete`: destroy data (kept distinct from `write` so saving a file never
+ *   implies the right to delete one; used by the hosted workspace filesystem)
  * - `execute`: trigger side-effects (e.g. send an email, make a payment)
  * - `publish`: make existing content publicly accessible (e.g. deploy, publish, make live)
  * - `create`: create new content that is immediately public (e.g. tweet, public commit, forum post)
@@ -39,6 +41,7 @@ type AgentStatus = (typeof AGENT_STATUSES)[keyof typeof AGENT_STATUSES];
 declare const PERMISSION_LEVELS: {
     readonly Read: "read";
     readonly Write: "write";
+    readonly Delete: "delete";
     readonly Execute: "execute";
     readonly Publish: "publish";
     readonly Create: "create";
@@ -233,6 +236,11 @@ declare const BUILT_IN_SERVICES: {
         readonly description: "Google Drive: file browsing, uploading, and sharing";
         readonly capabilities: readonly ["read", "write"];
     };
+    readonly filesystem: {
+        readonly name: "filesystem";
+        readonly description: "Sandboxed Multicorn workspace: reading, writing, and deleting files";
+        readonly capabilities: readonly ["read", "write", "delete"];
+    };
     readonly payments: {
         readonly name: "payments";
         readonly description: "Payment processing: balance enquiries and transaction execution";
@@ -448,7 +456,7 @@ type ScopeParseResult = {
  * Parse a scope string into a structured {@link Scope} object.
  *
  * Scope strings use the format `"permission:service"` where:
- * - **permission** is one of `read`, `write`, `execute`, `publish`, or `create`
+ * - **permission** is one of `read`, `write`, `delete`, `execute`, `publish`, or `create`
  * - **service** is a lowercase identifier (letters, digits, hyphens, underscores)
  *
  * @param input - The scope string to parse (e.g. `"read:gmail"`).
@@ -463,8 +471,8 @@ type ScopeParseResult = {
  *
  * @example
  * ```ts
- * parseScope("delete:gmail");
- * // throws ScopeParseError: Unknown permission level "delete" …
+ * parseScope("destroy:gmail");
+ * // throws ScopeParseError: Unknown permission level "destroy" …
  * ```
  */
 declare function parseScope(input: string): Scope;
@@ -533,7 +541,7 @@ declare function formatScope(scope: Scope): string;
  * @example
  * ```ts
  * isValidScopeString("read:gmail");     // true
- * isValidScopeString("delete:gmail");   // false
+ * isValidScopeString("destroy:gmail");  // false
  * isValidScopeString("");               // false
  * ```
  */
@@ -721,7 +729,7 @@ declare const CONSENT_ELEMENT_TAG = "multicorn-consent";
  * ```
  */
 declare class MulticornConsent extends LitElement {
-    static styles: lit.CSSResult[];
+    static styles: _lit_reactive_element_css_tag_js.CSSResult[];
     /**
      * The name of the agent requesting access.
      *

package/dist/index.d.ts

@@ -1,4 +1,4 @@
-import * as lit from 'lit';
+import * as _lit_reactive_element_css_tag_js from '@lit/reactive-element/css-tag.js';
 import { LitElement, PropertyValues, HTMLTemplateResult } from 'lit';
 
 /**
@@ -32,6 +32,8 @@ type AgentStatus = (typeof AGENT_STATUSES)[keyof typeof AGENT_STATUSES];
  *
  * - `read`: observe data without modification
  * - `write`: create or modify data
+ * - `delete`: destroy data (kept distinct from `write` so saving a file never
+ *   implies the right to delete one; used by the hosted workspace filesystem)
  * - `execute`: trigger side-effects (e.g. send an email, make a payment)
  * - `publish`: make existing content publicly accessible (e.g. deploy, publish, make live)
  * - `create`: create new content that is immediately public (e.g. tweet, public commit, forum post)
@@ -39,6 +41,7 @@ type AgentStatus = (typeof AGENT_STATUSES)[keyof typeof AGENT_STATUSES];
 declare const PERMISSION_LEVELS: {
     readonly Read: "read";
     readonly Write: "write";
+    readonly Delete: "delete";
     readonly Execute: "execute";
     readonly Publish: "publish";
     readonly Create: "create";
@@ -233,6 +236,11 @@ declare const BUILT_IN_SERVICES: {
         readonly description: "Google Drive: file browsing, uploading, and sharing";
         readonly capabilities: readonly ["read", "write"];
     };
+    readonly filesystem: {
+        readonly name: "filesystem";
+        readonly description: "Sandboxed Multicorn workspace: reading, writing, and deleting files";
+        readonly capabilities: readonly ["read", "write", "delete"];
+    };
     readonly payments: {
         readonly name: "payments";
         readonly description: "Payment processing: balance enquiries and transaction execution";
@@ -448,7 +456,7 @@ type ScopeParseResult = {
  * Parse a scope string into a structured {@link Scope} object.
  *
  * Scope strings use the format `"permission:service"` where:
- * - **permission** is one of `read`, `write`, `execute`, `publish`, or `create`
+ * - **permission** is one of `read`, `write`, `delete`, `execute`, `publish`, or `create`
  * - **service** is a lowercase identifier (letters, digits, hyphens, underscores)
  *
  * @param input - The scope string to parse (e.g. `"read:gmail"`).
@@ -463,8 +471,8 @@ type ScopeParseResult = {
  *
  * @example
  * ```ts
- * parseScope("delete:gmail");
- * // throws ScopeParseError: Unknown permission level "delete" …
+ * parseScope("destroy:gmail");
+ * // throws ScopeParseError: Unknown permission level "destroy" …
  * ```
  */
 declare function parseScope(input: string): Scope;
@@ -533,7 +541,7 @@ declare function formatScope(scope: Scope): string;
  * @example
  * ```ts
  * isValidScopeString("read:gmail");     // true
- * isValidScopeString("delete:gmail");   // false
+ * isValidScopeString("destroy:gmail");  // false
  * isValidScopeString("");               // false
  * ```
  */
@@ -721,7 +729,7 @@ declare const CONSENT_ELEMENT_TAG = "multicorn-consent";
  * ```
  */
 declare class MulticornConsent extends LitElement {
-    static styles: lit.CSSResult[];
+    static styles: _lit_reactive_element_css_tag_js.CSSResult[];
     /**
      * The name of the agent requesting access.
      *

package/dist/index.js

@@ -1,5 +1,6 @@
-import { unsafeCSS, css, LitElement, html } from 'lit';
+import { LitElement, html } from 'lit';
 import { property, state } from 'lit/decorators.js';
+import { unsafeCSS, css } from '@lit/reactive-element/css-tag.js';
 
 var __defProp = Object.defineProperty;
 var __decorateClass = (decorators, target, key, kind) => {
@@ -38,6 +39,7 @@ var AGENT_STATUSES = {
 var PERMISSION_LEVELS = {
   Read: "read",
   Write: "write",
+  Delete: "delete",
   Execute: "execute",
   Publish: "publish",
   Create: "create"
@@ -72,6 +74,11 @@ var BUILT_IN_SERVICES = {
     description: "Google Drive: file browsing, uploading, and sharing",
     capabilities: [PERMISSION_LEVELS.Read, PERMISSION_LEVELS.Write]
   },
+  filesystem: {
+    name: "filesystem",
+    description: "Sandboxed Multicorn workspace: reading, writing, and deleting files",
+    capabilities: [PERMISSION_LEVELS.Read, PERMISSION_LEVELS.Write, PERMISSION_LEVELS.Delete]
+  },
   payments: {
     name: "payments",
     description: "Payment processing: balance enquiries and transaction execution",
@@ -341,6 +348,7 @@ var SERVICE_DISPLAY_NAMES = {
   calendar: "Google Calendar",
   slack: "Slack",
   drive: "Google Drive",
+  filesystem: "Workspace files",
   payments: "Payments",
   github: "GitHub",
   jira: "Jira",
@@ -352,6 +360,7 @@ var SERVICE_ICONS = {
   calendar: "\u{1F4C5}",
   slack: "\u{1F4AC}",
   drive: "\u{1F4C1}",
+  filesystem: "\u{1F4C2}",
   payments: "\u{1F4B3}",
   github: "\u{1F419}",
   jira: "\u{1F3AF}",
@@ -361,6 +370,7 @@ var SERVICE_ICONS = {
 var PERMISSION_DESCRIPTIONS = {
   [PERMISSION_LEVELS.Read]: "Read",
   [PERMISSION_LEVELS.Write]: "Create and modify",
+  [PERMISSION_LEVELS.Delete]: "Delete",
   [PERMISSION_LEVELS.Execute]: "Execute actions",
   [PERMISSION_LEVELS.Publish]: "Publish",
   [PERMISSION_LEVELS.Create]: "Create"
@@ -368,6 +378,7 @@ var PERMISSION_DESCRIPTIONS = {
 var PERMISSION_FULL_DESCRIPTIONS = {
   [PERMISSION_LEVELS.Read]: (serviceName) => `Read your ${serviceName}`,
   [PERMISSION_LEVELS.Write]: (serviceName) => `Create and modify ${serviceName} content`,
+  [PERMISSION_LEVELS.Delete]: (serviceName) => `Delete ${serviceName} content`,
   [PERMISSION_LEVELS.Execute]: (serviceName) => {
     if (serviceName.toLowerCase().includes("payment")) {
       return "Make purchases on your behalf";