palaryn 0.1.0

package/dist/src/config/validate.js

@@ -0,0 +1,105 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.validateConfig = validateConfig;
+const fs = __importStar(require("fs"));
+/**
+ * Validate gateway configuration before startup.
+ * Returns fatal errors (should prevent startup) and warnings (log and continue).
+ */
+function validateConfig(config) {
+    const issues = [];
+    const isProduction = process.env.NODE_ENV === 'production';
+    // Port validation
+    if (!Number.isInteger(config.port) || config.port < 1 || config.port > 65535) {
+        issues.push({ level: 'fatal', message: `Invalid port: ${config.port}. Must be between 1 and 65535.` });
+    }
+    // Policy file must be readable
+    try {
+        fs.accessSync(config.policy.pack_path, fs.constants.R_OK);
+    }
+    catch {
+        issues.push({ level: 'fatal', message: `Policy file not readable: ${config.policy.pack_path}` });
+    }
+    // Weak secrets in production
+    if (isProduction) {
+        if (!process.env.JWT_SECRET) {
+            issues.push({ level: 'fatal', message: 'JWT_SECRET must be set in production.' });
+        }
+        if (!process.env.APPROVAL_SECRET) {
+            issues.push({ level: 'fatal', message: 'APPROVAL_SECRET must be set in production.' });
+        }
+    }
+    // Warnings: no persistent storage
+    if (!process.env.REDIS_URL && !process.env.DATABASE_URL) {
+        issues.push({ level: 'warning', message: 'No persistent storage configured (REDIS_URL or DATABASE_URL). Data will be lost on restart.' });
+    }
+    // Auth enabled but no keys
+    if (config.auth.enabled && Object.keys(config.auth.api_keys).length === 0 && !config.auth.jwt?.enabled) {
+        issues.push({ level: 'warning', message: 'Auth is enabled but no API keys or JWT configured. All authenticated requests will fail.' });
+    }
+    // Audit log directory
+    if (config.audit.enabled && config.audit.log_dir) {
+        try {
+            fs.accessSync(config.audit.log_dir, fs.constants.W_OK);
+        }
+        catch {
+            issues.push({ level: 'warning', message: `Audit log directory not writable: ${config.audit.log_dir}` });
+        }
+    }
+    // Auth must be enabled — MCP HTTP transport requires authentication
+    if (!config.auth.enabled) {
+        issues.push({ level: 'fatal', message: 'Auth is disabled. MCP HTTP transport requires authentication. Set AUTH_ENABLED=true.' });
+    }
+    // RBAC default_role must not be admin or operator
+    if (config.auth.rbac?.default_role) {
+        const dr = config.auth.rbac.default_role;
+        if (dr === 'admin' || dr === 'operator') {
+            issues.push({ level: 'fatal', message: `RBAC default_role '${dr}' is a privileged role. Use 'agent', 'readonly', or a custom role.` });
+        }
+    }
+    // Proxy port validation
+    if (config.proxy?.enabled) {
+        if (!Number.isInteger(config.proxy.port) || config.proxy.port < 1 || config.proxy.port > 65535) {
+            issues.push({ level: 'fatal', message: `Invalid proxy port: ${config.proxy.port}. Must be between 1 and 65535.` });
+        }
+        if (config.proxy.port === config.port) {
+            issues.push({ level: 'fatal', message: `Proxy port (${config.proxy.port}) conflicts with server port (${config.port}).` });
+        }
+    }
+    const hasFatal = issues.some(i => i.level === 'fatal');
+    return { valid: !hasFatal, issues };
+}
+//# sourceMappingURL=validate.js.map

package/dist/src/config/validate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate.js","sourceRoot":"","sources":["../../../src/config/validate.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiBA,wCAsEC;AAvFD,uCAAyB;AAazB;;;GAGG;AACH,SAAgB,cAAc,CAAC,MAAqB;IAClD,MAAM,MAAM,GAAkB,EAAE,CAAC;IACjC,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,YAAY,CAAC;IAE3D,kBAAkB;IAClB,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC,IAAI,MAAM,CAAC,IAAI,GAAG,KAAK,EAAE,CAAC;QAC7E,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,iBAAiB,MAAM,CAAC,IAAI,gCAAgC,EAAE,CAAC,CAAC;IACzG,CAAC;IAED,+BAA+B;IAC/B,IAAI,CAAC;QACH,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;IAC5D,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,6BAA6B,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;IACnG,CAAC;IAED,6BAA6B;IAC7B,IAAI,YAAY,EAAE,CAAC;QACjB,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,UAAU,EAAE,CAAC;YAC5B,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,uCAAuC,EAAE,CAAC,CAAC;QACpF,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,CAAC;YACjC,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,4CAA4C,EAAE,CAAC,CAAC;QACzF,CAAC;IACH,CAAC;IAED,kCAAkC;IAClC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,SAAS,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC;QACxD,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,6FAA6F,EAAE,CAAC,CAAC;IAC5I,CAAC;IAED,2BAA2B;IAC3B,IAAI,MAAM,CAAC,IAAI,CAAC,OAAO,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,EAAE,CAAC;QACvG,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,0FAA0F,EAAE,CAAC,CAAC;IACzI,CAAC;IAED,sBAAsB;IACtB,IAAI,MAAM,CAAC,KAAK,CAAC,OAAO,IAAI,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC;QACjD,IAAI,CAAC;YACH,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;QACzD,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,SAAS,EAAE,OAAO,EAAE,qCAAqC,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QAC1G,CAAC;IACH,CAAC;IAED,oEAAoE;IACpE,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,CAAC;QACzB,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,sFAAsF,EAAE,CAAC,CAAC;IACnI,CAAC;IAED,kDAAkD;IAClD,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,EAAE,YAAY,EAAE,CAAC;QACnC,MAAM,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,CAAC;QACzC,IAAI,EAAE,KAAK,OAAO,IAAI,EAAE,KAAK,UAAU,EAAE,CAAC;YACxC,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,sBAAsB,EAAE,oEAAoE,EAAE,CAAC,CAAC;QACzI,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,IAAI,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,CAAC;QAC1B,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,KAAK,EAAE,CAAC;YAC/F,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,uBAAuB,MAAM,CAAC,KAAK,CAAC,IAAI,gCAAgC,EAAE,CAAC,CAAC;QACrH,CAAC;QACD,IAAI,MAAM,CAAC,KAAK,CAAC,IAAI,KAAK,MAAM,CAAC,IAAI,EAAE,CAAC;YACtC,MAAM,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,eAAe,MAAM,CAAC,KAAK,CAAC,IAAI,iCAAiC,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC;QAC7H,CAAC;IACH,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,OAAO,CAAC,CAAC;IACvD,OAAO,EAAE,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,CAAC;AACtC,CAAC"}

package/dist/src/dlp/composite-scanner.d.ts

@@ -0,0 +1,47 @@
+import { DLPReport } from '../types/tool-result';
+import { DLPConfig } from '../types/config';
+import { DLPScanner } from './scanner';
+import { DLPBackend } from './interfaces';
+/**
+ * CompositeDLPScanner wraps the existing DLPScanner and augments it with
+ * additional pluggable DLP backends (e.g. TruffleHog, regex backend).
+ *
+ * The scan flow:
+ *   1. Run the standard DLPScanner.scan() for full existing behavior
+ *   2. Extract all string values from the data object recursively
+ *   3. For each additional backend, call scanString on each extracted string
+ *   4. Merge backend detections into the DLPReport (deduplicate by pattern_name)
+ *   5. Recalculate severity based on all combined findings
+ *
+ * This design preserves full backward compatibility -- the existing DLPScanner
+ * continues to handle redaction, policy integration, and all current features.
+ * The backends provide supplemental detections that are merged into the report.
+ */
+export declare class CompositeDLPScanner {
+    private readonly dlpScanner;
+    private readonly backends;
+    private readonly config;
+    constructor(config: DLPConfig, backends: DLPBackend[]);
+    /**
+     * Get the underlying DLPScanner instance (for redaction operations, etc.).
+     */
+    get scanner(): DLPScanner;
+    /**
+     * Scan data for secrets and PII using the built-in scanner and all backends.
+     *
+     * @param data - The data to scan (object, array, string, or primitive).
+     * @param basePath - Dot-notation prefix for paths within the data structure.
+     * @returns A merged DLPReport with detections from all sources.
+     */
+    scan(data: unknown, basePath?: string): DLPReport;
+    /**
+     * Recursively extract all string values and their dot-notation paths
+     * from a nested data structure.
+     */
+    private extractStrings;
+    /**
+     * Return the highest severity from an array of severities.
+     */
+    private highestSeverity;
+}
+//# sourceMappingURL=composite-scanner.d.ts.map

package/dist/src/dlp/composite-scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"composite-scanner.d.ts","sourceRoot":"","sources":["../../../src/dlp/composite-scanner.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAA6B,MAAM,sBAAsB,CAAC;AAC5E,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACvC,OAAO,EAAE,UAAU,EAAgB,MAAM,cAAc,CAAC;AAKxD;;;;;;;;;;;;;;GAcG;AACH,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAa;IACxC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAe;IACxC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAY;gBAEvB,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,UAAU,EAAE;IAMrD;;OAEG;IACH,IAAI,OAAO,IAAI,UAAU,CAExB;IAED;;;;;;OAMG;IACH,IAAI,CAAC,IAAI,EAAE,OAAO,EAAE,QAAQ,GAAE,MAAW,GAAG,SAAS;IAyGrD;;;OAGG;IACH,OAAO,CAAC,cAAc;IAuCtB;;OAEG;IACH,OAAO,CAAC,eAAe;CAaxB"}

package/dist/src/dlp/composite-scanner.js

@@ -0,0 +1,186 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.CompositeDLPScanner = void 0;
+const scanner_1 = require("./scanner");
+/** Maximum recursion depth for extracting string values from nested structures. */
+const MAX_EXTRACT_DEPTH = 32;
+/**
+ * CompositeDLPScanner wraps the existing DLPScanner and augments it with
+ * additional pluggable DLP backends (e.g. TruffleHog, regex backend).
+ *
+ * The scan flow:
+ *   1. Run the standard DLPScanner.scan() for full existing behavior
+ *   2. Extract all string values from the data object recursively
+ *   3. For each additional backend, call scanString on each extracted string
+ *   4. Merge backend detections into the DLPReport (deduplicate by pattern_name)
+ *   5. Recalculate severity based on all combined findings
+ *
+ * This design preserves full backward compatibility -- the existing DLPScanner
+ * continues to handle redaction, policy integration, and all current features.
+ * The backends provide supplemental detections that are merged into the report.
+ */
+class CompositeDLPScanner {
+    constructor(config, backends) {
+        this.config = config;
+        this.dlpScanner = new scanner_1.DLPScanner(config);
+        this.backends = backends;
+    }
+    /**
+     * Get the underlying DLPScanner instance (for redaction operations, etc.).
+     */
+    get scanner() {
+        return this.dlpScanner;
+    }
+    /**
+     * Scan data for secrets and PII using the built-in scanner and all backends.
+     *
+     * @param data - The data to scan (object, array, string, or primitive).
+     * @param basePath - Dot-notation prefix for paths within the data structure.
+     * @returns A merged DLPReport with detections from all sources.
+     */
+    scan(data, basePath = '') {
+        // Step 1: Run the standard DLPScanner for existing behavior
+        const baseReport = this.dlpScanner.scan(data, basePath);
+        // If DLP is disabled or there are no backends, return the base report as-is
+        if (!this.config.enabled || this.backends.length === 0) {
+            return baseReport;
+        }
+        // Step 2: Extract all string values with their paths from the data,
+        // including fields that the default recursive walker would miss
+        // (context.purpose, context.labels, actor.display).
+        const stringEntries = this.extractStrings(data, basePath, 0);
+        // Step 2.5: Explicitly extract commonly-missed ToolCall text fields.
+        // The generic walker handles args.* but context and actor are top-level
+        // fields that may not be traversed if 'data' is the full ToolCall object
+        // or if basePath filtering skips them.
+        if (data && typeof data === 'object' && !Array.isArray(data)) {
+            const obj = data;
+            // context.purpose
+            if (obj.context && typeof obj.context === 'object') {
+                const ctx = obj.context;
+                if (typeof ctx.purpose === 'string') {
+                    const p = basePath ? `${basePath}.context.purpose` : 'context.purpose';
+                    if (!stringEntries.some(e => e.path === p)) {
+                        stringEntries.push({ value: ctx.purpose, path: p });
+                    }
+                }
+                // context.labels[]
+                if (Array.isArray(ctx.labels)) {
+                    for (let i = 0; i < ctx.labels.length; i++) {
+                        if (typeof ctx.labels[i] === 'string') {
+                            const p = basePath ? `${basePath}.context.labels[${i}]` : `context.labels[${i}]`;
+                            if (!stringEntries.some(e => e.path === p)) {
+                                stringEntries.push({ value: ctx.labels[i], path: p });
+                            }
+                        }
+                    }
+                }
+            }
+            // actor.display
+            if (obj.actor && typeof obj.actor === 'object') {
+                const actor = obj.actor;
+                if (typeof actor.display === 'string') {
+                    const p = basePath ? `${basePath}.actor.display` : 'actor.display';
+                    if (!stringEntries.some(e => e.path === p)) {
+                        stringEntries.push({ value: actor.display, path: p });
+                    }
+                }
+            }
+        }
+        // Step 3: Run each backend on each string value
+        const backendDetections = [];
+        for (const backend of this.backends) {
+            for (const entry of stringEntries) {
+                try {
+                    const detections = backend.scanString(entry.value);
+                    for (const detection of detections) {
+                        backendDetections.push({ detection, path: entry.path });
+                    }
+                }
+                catch (err) {
+                    // Graceful degradation: log and continue with other backends/strings
+                    const message = err instanceof Error ? err.message : String(err);
+                    console.warn(`[CompositeDLPScanner] backend '${backend.name}' failed on path '${entry.path}': ${message}`);
+                }
+            }
+        }
+        // Step 4: Merge backend detections into the base report (deduplicate by pattern_name)
+        const existingPatterns = new Set(baseReport.detected);
+        const additionalDetected = [];
+        const additionalRedactions = [];
+        for (const { detection, path } of backendDetections) {
+            if (!existingPatterns.has(detection.pattern_name)) {
+                existingPatterns.add(detection.pattern_name);
+                additionalDetected.push(detection.pattern_name);
+                additionalRedactions.push({
+                    path,
+                    method: this.config.default_redaction_method,
+                    original_type: detection.pattern_name,
+                });
+            }
+        }
+        const mergedDetected = [...baseReport.detected, ...additionalDetected];
+        const mergedRedactions = [...baseReport.redactions, ...additionalRedactions];
+        // Step 5: Recalculate severity based on all findings
+        const allSeverities = [baseReport.severity];
+        for (const { detection } of backendDetections) {
+            allSeverities.push(detection.severity);
+        }
+        const severity = this.highestSeverity(allSeverities);
+        return {
+            detected: mergedDetected,
+            redactions: mergedRedactions,
+            severity,
+        };
+    }
+    /**
+     * Recursively extract all string values and their dot-notation paths
+     * from a nested data structure.
+     */
+    extractStrings(data, path, depth) {
+        if (depth > MAX_EXTRACT_DEPTH) {
+            return [];
+        }
+        if (data === null || data === undefined) {
+            return [];
+        }
+        if (typeof data === 'string') {
+            return [{ value: data, path }];
+        }
+        if (Array.isArray(data)) {
+            const results = [];
+            for (let i = 0; i < data.length; i++) {
+                const childPath = path ? `${path}[${i}]` : `[${i}]`;
+                results.push(...this.extractStrings(data[i], childPath, depth + 1));
+            }
+            return results;
+        }
+        if (typeof data === 'object') {
+            const results = [];
+            for (const [key, value] of Object.entries(data)) {
+                const childPath = path ? `${path}.${key}` : key;
+                results.push(...this.extractStrings(value, childPath, depth + 1));
+            }
+            return results;
+        }
+        // Non-string primitives are ignored
+        return [];
+    }
+    /**
+     * Return the highest severity from an array of severities.
+     */
+    highestSeverity(severities) {
+        const rank = { low: 0, medium: 1, high: 2 };
+        let highest = 'low';
+        for (const sev of severities) {
+            if (rank[sev] > rank[highest]) {
+                highest = sev;
+            }
+            if (highest === 'high')
+                break; // Short-circuit
+        }
+        return highest;
+    }
+}
+exports.CompositeDLPScanner = CompositeDLPScanner;
+//# sourceMappingURL=composite-scanner.js.map

package/dist/src/dlp/composite-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"composite-scanner.js","sourceRoot":"","sources":["../../../src/dlp/composite-scanner.ts"],"names":[],"mappings":";;;AAEA,uCAAuC;AAGvC,mFAAmF;AACnF,MAAM,iBAAiB,GAAG,EAAE,CAAC;AAE7B;;;;;;;;;;;;;;GAcG;AACH,MAAa,mBAAmB;IAK9B,YAAY,MAAiB,EAAE,QAAsB;QACnD,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,UAAU,GAAG,IAAI,oBAAU,CAAC,MAAM,CAAC,CAAC;QACzC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC3B,CAAC;IAED;;OAEG;IACH,IAAI,OAAO;QACT,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED;;;;;;OAMG;IACH,IAAI,CAAC,IAAa,EAAE,WAAmB,EAAE;QACvC,4DAA4D;QAC5D,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAExD,4EAA4E;QAC5E,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,OAAO,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvD,OAAO,UAAU,CAAC;QACpB,CAAC;QAED,oEAAoE;QACpE,gEAAgE;QAChE,oDAAoD;QACpD,MAAM,aAAa,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC;QAE7D,qEAAqE;QACrE,wEAAwE;QACxE,yEAAyE;QACzE,uCAAuC;QACvC,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7D,MAAM,GAAG,GAAG,IAA+B,CAAC;YAC5C,kBAAkB;YAClB,IAAI,GAAG,CAAC,OAAO,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;gBACnD,MAAM,GAAG,GAAG,GAAG,CAAC,OAAkC,CAAC;gBACnD,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;oBACpC,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,GAAG,QAAQ,kBAAkB,CAAC,CAAC,CAAC,iBAAiB,CAAC;oBACvE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC;wBAC3C,aAAa,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;oBACtD,CAAC;gBACH,CAAC;gBACD,mBAAmB;gBACnB,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC9B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;wBAC3C,IAAI,OAAO,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,QAAQ,EAAE,CAAC;4BACtC,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,GAAG,QAAQ,mBAAmB,CAAC,GAAG,CAAC,CAAC,CAAC,kBAAkB,CAAC,GAAG,CAAC;4BACjF,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC;gCAC3C,aAAa,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAW,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;4BAClE,CAAC;wBACH,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;YACD,gBAAgB;YAChB,IAAI,GAAG,CAAC,KAAK,IAAI,OAAO,GAAG,CAAC,KAAK,KAAK,QAAQ,EAAE,CAAC;gBAC/C,MAAM,KAAK,GAAG,GAAG,CAAC,KAAgC,CAAC;gBACnD,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;oBACtC,MAAM,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,GAAG,QAAQ,gBAAgB,CAAC,CAAC,CAAC,eAAe,CAAC;oBACnE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,EAAE,CAAC;wBAC3C,aAAa,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC;oBACxD,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,gDAAgD;QAChD,MAAM,iBAAiB,GAAqD,EAAE,CAAC;QAE/E,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YACpC,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;gBAClC,IAAI,CAAC;oBACH,MAAM,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;oBACnD,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;wBACnC,iBAAiB,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;oBAC1D,CAAC;gBACH,CAAC;gBAAC,OAAO,GAAY,EAAE,CAAC;oBACtB,qEAAqE;oBACrE,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;oBACjE,OAAO,CAAC,IAAI,CAAC,kCAAkC,OAAO,CAAC,IAAI,qBAAqB,KAAK,CAAC,IAAI,MAAM,OAAO,EAAE,CAAC,CAAC;gBAC7G,CAAC;YACH,CAAC;QACH,CAAC;QAED,sFAAsF;QACtF,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QACtD,MAAM,kBAAkB,GAAa,EAAE,CAAC;QACxC,MAAM,oBAAoB,GAAmB,EAAE,CAAC;QAEhD,KAAK,MAAM,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,iBAAiB,EAAE,CAAC;YACpD,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,EAAE,CAAC;gBAClD,gBAAgB,CAAC,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;gBAC7C,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;gBAChD,oBAAoB,CAAC,IAAI,CAAC;oBACxB,IAAI;oBACJ,MAAM,EAAE,IAAI,CAAC,MAAM,CAAC,wBAAwB;oBAC5C,aAAa,EAAE,SAAS,CAAC,YAAY;iBACtC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,MAAM,cAAc,GAAG,CAAC,GAAG,UAAU,CAAC,QAAQ,EAAE,GAAG,kBAAkB,CAAC,CAAC;QACvE,MAAM,gBAAgB,GAAG,CAAC,GAAG,UAAU,CAAC,UAAU,EAAE,GAAG,oBAAoB,CAAC,CAAC;QAE7E,qDAAqD;QACrD,MAAM,aAAa,GAAkB,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAC3D,KAAK,MAAM,EAAE,SAAS,EAAE,IAAI,iBAAiB,EAAE,CAAC;YAC9C,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QACzC,CAAC;QACD,MAAM,QAAQ,GAAG,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC,CAAC;QAErD,OAAO;YACL,QAAQ,EAAE,cAAc;YACxB,UAAU,EAAE,gBAAgB;YAC5B,QAAQ;SACT,CAAC;IACJ,CAAC;IAED;;;OAGG;IACK,cAAc,CACpB,IAAa,EACb,IAAY,EACZ,KAAa;QAEb,IAAI,KAAK,GAAG,iBAAiB,EAAE,CAAC;YAC9B,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,IAAI,KAAK,IAAI,IAAI,IAAI,KAAK,SAAS,EAAE,CAAC;YACxC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,OAAO,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;QACjC,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YACxB,MAAM,OAAO,GAA2C,EAAE,CAAC;YAC3D,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACrC,MAAM,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC;gBACpD,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;YACtE,CAAC;YACD,OAAO,OAAO,CAAC;QACjB,CAAC;QAED,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC7B,MAAM,OAAO,GAA2C,EAAE,CAAC;YAC3D,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAA+B,CAAC,EAAE,CAAC;gBAC3E,MAAM,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,IAAI,GAAG,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC;gBAChD,OAAO,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,SAAS,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;YACpE,CAAC;YACD,OAAO,OAAO,CAAC;QACjB,CAAC;QAED,oCAAoC;QACpC,OAAO,EAAE,CAAC;IACZ,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,UAAyB;QAC/C,MAAM,IAAI,GAAgC,EAAE,GAAG,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;QACzE,IAAI,OAAO,GAAgB,KAAK,CAAC;QAEjC,KAAK,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;YAC7B,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC9B,OAAO,GAAG,GAAG,CAAC;YAChB,CAAC;YACD,IAAI,OAAO,KAAK,MAAM;gBAAE,MAAM,CAAC,gBAAgB;QACjD,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CACF;AA7LD,kDA6LC"}

package/dist/src/dlp/index.d.ts

@@ -0,0 +1,10 @@
+export { DLPScanner } from './scanner';
+export { DLPBackend, DLPDetection } from './interfaces';
+export { DLPPattern, SECRET_PATTERNS, PII_PATTERNS } from './patterns';
+export { RegexDLPBackend, RegexBackendConfig } from './regex-backend';
+export { TruffleHogBackend, TruffleHogConfig } from './trufflehog-backend';
+export { CompositeDLPScanner } from './composite-scanner';
+export { PROMPT_INJECTION_PATTERNS, OUTPUT_INJECTION_PATTERNS } from './prompt-injection-patterns';
+export { PromptInjectionBackend, PromptInjectionConfig } from './prompt-injection-backend';
+export { normalizeText, normalizeLeetspeak, ZERO_WIDTH_REGEX, HOMOGLYPH_MAP, LEETSPEAK_MAP } from './text-normalizer';
+//# sourceMappingURL=index.d.ts.map

package/dist/src/dlp/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/dlp/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACvC,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AACvE,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AACtE,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAC3E,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,EAAE,yBAAyB,EAAE,yBAAyB,EAAE,MAAM,6BAA6B,CAAC;AACnG,OAAO,EAAE,sBAAsB,EAAE,qBAAqB,EAAE,MAAM,4BAA4B,CAAC;AAC3F,OAAO,EAAE,aAAa,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,aAAa,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC"}

package/dist/src/dlp/index.js

@@ -0,0 +1,26 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LEETSPEAK_MAP = exports.HOMOGLYPH_MAP = exports.ZERO_WIDTH_REGEX = exports.normalizeLeetspeak = exports.normalizeText = exports.PromptInjectionBackend = exports.OUTPUT_INJECTION_PATTERNS = exports.PROMPT_INJECTION_PATTERNS = exports.CompositeDLPScanner = exports.TruffleHogBackend = exports.RegexDLPBackend = exports.PII_PATTERNS = exports.SECRET_PATTERNS = exports.DLPScanner = void 0;
+var scanner_1 = require("./scanner");
+Object.defineProperty(exports, "DLPScanner", { enumerable: true, get: function () { return scanner_1.DLPScanner; } });
+var patterns_1 = require("./patterns");
+Object.defineProperty(exports, "SECRET_PATTERNS", { enumerable: true, get: function () { return patterns_1.SECRET_PATTERNS; } });
+Object.defineProperty(exports, "PII_PATTERNS", { enumerable: true, get: function () { return patterns_1.PII_PATTERNS; } });
+var regex_backend_1 = require("./regex-backend");
+Object.defineProperty(exports, "RegexDLPBackend", { enumerable: true, get: function () { return regex_backend_1.RegexDLPBackend; } });
+var trufflehog_backend_1 = require("./trufflehog-backend");
+Object.defineProperty(exports, "TruffleHogBackend", { enumerable: true, get: function () { return trufflehog_backend_1.TruffleHogBackend; } });
+var composite_scanner_1 = require("./composite-scanner");
+Object.defineProperty(exports, "CompositeDLPScanner", { enumerable: true, get: function () { return composite_scanner_1.CompositeDLPScanner; } });
+var prompt_injection_patterns_1 = require("./prompt-injection-patterns");
+Object.defineProperty(exports, "PROMPT_INJECTION_PATTERNS", { enumerable: true, get: function () { return prompt_injection_patterns_1.PROMPT_INJECTION_PATTERNS; } });
+Object.defineProperty(exports, "OUTPUT_INJECTION_PATTERNS", { enumerable: true, get: function () { return prompt_injection_patterns_1.OUTPUT_INJECTION_PATTERNS; } });
+var prompt_injection_backend_1 = require("./prompt-injection-backend");
+Object.defineProperty(exports, "PromptInjectionBackend", { enumerable: true, get: function () { return prompt_injection_backend_1.PromptInjectionBackend; } });
+var text_normalizer_1 = require("./text-normalizer");
+Object.defineProperty(exports, "normalizeText", { enumerable: true, get: function () { return text_normalizer_1.normalizeText; } });
+Object.defineProperty(exports, "normalizeLeetspeak", { enumerable: true, get: function () { return text_normalizer_1.normalizeLeetspeak; } });
+Object.defineProperty(exports, "ZERO_WIDTH_REGEX", { enumerable: true, get: function () { return text_normalizer_1.ZERO_WIDTH_REGEX; } });
+Object.defineProperty(exports, "HOMOGLYPH_MAP", { enumerable: true, get: function () { return text_normalizer_1.HOMOGLYPH_MAP; } });
+Object.defineProperty(exports, "LEETSPEAK_MAP", { enumerable: true, get: function () { return text_normalizer_1.LEETSPEAK_MAP; } });
+//# sourceMappingURL=index.js.map

package/dist/src/dlp/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/dlp/index.ts"],"names":[],"mappings":";;;AAAA,qCAAuC;AAA9B,qGAAA,UAAU,OAAA;AAEnB,uCAAuE;AAAlD,2GAAA,eAAe,OAAA;AAAE,wGAAA,YAAY,OAAA;AAClD,iDAAsE;AAA7D,gHAAA,eAAe,OAAA;AACxB,2DAA2E;AAAlE,uHAAA,iBAAiB,OAAA;AAC1B,yDAA0D;AAAjD,wHAAA,mBAAmB,OAAA;AAC5B,yEAAmG;AAA1F,sIAAA,yBAAyB,OAAA;AAAE,sIAAA,yBAAyB,OAAA;AAC7D,uEAA2F;AAAlF,kIAAA,sBAAsB,OAAA;AAC/B,qDAAsH;AAA7G,gHAAA,aAAa,OAAA;AAAE,qHAAA,kBAAkB,OAAA;AAAE,mHAAA,gBAAgB,OAAA;AAAE,gHAAA,aAAa,OAAA;AAAE,gHAAA,aAAa,OAAA"}

package/dist/src/dlp/interfaces.d.ts

@@ -0,0 +1,33 @@
+import { DLPSeverity } from '../types/tool-result';
+/**
+ * A detection returned by a DLP backend scanner.
+ *
+ * Each detection identifies a single sensitive value found within a string,
+ * including its location so that upstream consumers can apply redactions.
+ */
+export interface DLPDetection {
+    /** Name of the pattern or detector that matched (e.g. 'aws_access_key', 'GitHubToken'). */
+    pattern_name: string;
+    /** Severity of the detection. */
+    severity: DLPSeverity;
+    /** The matched text. */
+    match: string;
+    /** Start index within the scanned string. */
+    start: number;
+    /** End index (exclusive) within the scanned string. */
+    end: number;
+}
+/**
+ * Pluggable backend interface for DLP secret/PII scanning.
+ *
+ * Implementations scan raw string values and return structured detections.
+ * The gateway can compose multiple backends (regex, trufflehog, etc.) via
+ * the CompositeDLPScanner.
+ */
+export interface DLPBackend {
+    /** Scan a string for secrets/PII. Returns detected pattern names and their locations. */
+    scanString(value: string): DLPDetection[];
+    /** Name of this backend for logging. */
+    readonly name: string;
+}
+//# sourceMappingURL=interfaces.d.ts.map

package/dist/src/dlp/interfaces.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"interfaces.d.ts","sourceRoot":"","sources":["../../../src/dlp/interfaces.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAEnD;;;;;GAKG;AACH,MAAM,WAAW,YAAY;IAC3B,2FAA2F;IAC3F,YAAY,EAAE,MAAM,CAAC;IACrB,iCAAiC;IACjC,QAAQ,EAAE,WAAW,CAAC;IACtB,wBAAwB;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,6CAA6C;IAC7C,KAAK,EAAE,MAAM,CAAC;IACd,uDAAuD;IACvD,GAAG,EAAE,MAAM,CAAC;CACb;AAED;;;;;;GAMG;AACH,MAAM,WAAW,UAAU;IACzB,yFAAyF;IACzF,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,YAAY,EAAE,CAAC;IAC1C,wCAAwC;IACxC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;CACvB"}

package/dist/src/dlp/interfaces.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=interfaces.js.map

package/dist/src/dlp/interfaces.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"interfaces.js","sourceRoot":"","sources":["../../../src/dlp/interfaces.ts"],"names":[],"mappings":""}

package/dist/src/dlp/patterns.d.ts

@@ -0,0 +1,9 @@
+import { DLPSeverity } from '../types/tool-result';
+export interface DLPPattern {
+    name: string;
+    pattern: RegExp;
+    severity: DLPSeverity;
+}
+export declare const SECRET_PATTERNS: DLPPattern[];
+export declare const PII_PATTERNS: DLPPattern[];
+//# sourceMappingURL=patterns.d.ts.map

package/dist/src/dlp/patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.d.ts","sourceRoot":"","sources":["../../../src/dlp/patterns.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAEnD,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,WAAW,CAAC;CACvB;AAGD,eAAO,MAAM,eAAe,EAAE,UAAU,EAWvC,CAAC;AAGF,eAAO,MAAM,YAAY,EAAE,UAAU,EAMpC,CAAC"}

package/dist/src/dlp/patterns.js

@@ -0,0 +1,25 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PII_PATTERNS = exports.SECRET_PATTERNS = void 0;
+// Detection patterns for secrets
+exports.SECRET_PATTERNS = [
+    { name: 'aws_access_key', pattern: /AKIA[0-9A-Z]{16}/g, severity: 'high' },
+    { name: 'aws_secret_key', pattern: /(?:aws_secret_access_key|secret_key)\s*[=:]\s*[A-Za-z0-9/+=]{40}/gi, severity: 'high' },
+    { name: 'github_token', pattern: /gh[pousr]_[A-Za-z0-9_]{36,255}/g, severity: 'high' },
+    { name: 'generic_api_key', pattern: /(?:api[_-]?key|apikey)\s*[=:]\s*['"]?[A-Za-z0-9_\-]{20,}['"]?/gi, severity: 'medium' },
+    { name: 'bearer_token', pattern: /Bearer\s+[A-Za-z0-9\-._~+/]+=*/g, severity: 'high' },
+    { name: 'jwt_token', pattern: /eyJ[A-Za-z0-9_-]*\.eyJ[A-Za-z0-9_-]*\.[A-Za-z0-9_\-]+/g, severity: 'high' },
+    { name: 'private_key', pattern: /-----BEGIN (?:RSA |EC |DSA )?PRIVATE KEY-----/g, severity: 'high' },
+    { name: 'password_field', pattern: /(?:password|passwd|pwd)\s*[=:]\s*['"]?[^\s'"]{8,}['"]?/gi, severity: 'high' },
+    { name: 'slack_token', pattern: /xox[baprs]-[0-9a-zA-Z-]{10,}/g, severity: 'high' },
+    { name: 'generic_secret', pattern: /(?:secret|token|credential)\s*[=:]\s*['"]?[A-Za-z0-9_\-]{16,}['"]?/gi, severity: 'medium' },
+];
+// PII patterns
+exports.PII_PATTERNS = [
+    { name: 'email', pattern: /[a-zA-Z0-9._%+\-]+@(?!(?:\d{1,3}\.){3}\d{1,3}\b)[a-zA-Z0-9\-]+(?:\.[a-zA-Z0-9\-]+)*\.[a-zA-Z]{2,}/g, severity: 'medium' },
+    { name: 'phone_us', pattern: /(?:\+1[-.\s]?)?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}/g, severity: 'medium' },
+    { name: 'ssn', pattern: /\b\d{3}-\d{2}-\d{4}\b/g, severity: 'high' },
+    { name: 'credit_card', pattern: /\b(?:\d{4}[-\s]?){3}\d{4}\b/g, severity: 'high' },
+    { name: 'ip_address', pattern: /\b(?:\d{1,3}\.){3}\d{1,3}\b/g, severity: 'low' },
+];
+//# sourceMappingURL=patterns.js.map

package/dist/src/dlp/patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"patterns.js","sourceRoot":"","sources":["../../../src/dlp/patterns.ts"],"names":[],"mappings":";;;AAQA,iCAAiC;AACpB,QAAA,eAAe,GAAiB;IAC3C,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,EAAE;IAC1E,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,oEAAoE,EAAE,QAAQ,EAAE,MAAM,EAAE;IAC3H,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,iCAAiC,EAAE,QAAQ,EAAE,MAAM,EAAE;IACtF,EAAE,IAAI,EAAE,iBAAiB,EAAE,OAAO,EAAE,iEAAiE,EAAE,QAAQ,EAAE,QAAQ,EAAE;IAC3H,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,iCAAiC,EAAE,QAAQ,EAAE,MAAM,EAAE;IACtF,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,wDAAwD,EAAE,QAAQ,EAAE,MAAM,EAAE;IAC1G,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,gDAAgD,EAAE,QAAQ,EAAE,MAAM,EAAE;IACpG,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,0DAA0D,EAAE,QAAQ,EAAE,MAAM,EAAE;IACjH,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,+BAA+B,EAAE,QAAQ,EAAE,MAAM,EAAE;IACnF,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,sEAAsE,EAAE,QAAQ,EAAE,QAAQ,EAAE;CAChI,CAAC;AAEF,eAAe;AACF,QAAA,YAAY,GAAiB;IACxC,EAAE,IAAI,EAAE,OAAO,EAAE,OAAO,EAAE,oGAAoG,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACpJ,EAAE,IAAI,EAAE,UAAU,EAAE,OAAO,EAAE,qDAAqD,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACxG,EAAE,IAAI,EAAE,KAAK,EAAE,OAAO,EAAE,wBAAwB,EAAE,QAAQ,EAAE,MAAM,EAAE;IACpE,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,8BAA8B,EAAE,QAAQ,EAAE,MAAM,EAAE;IAClF,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,8BAA8B,EAAE,QAAQ,EAAE,KAAK,EAAE;CACjF,CAAC"}

package/dist/src/dlp/prompt-injection-backend.d.ts

@@ -0,0 +1,68 @@
+import { DLPBackend, DLPDetection } from './interfaces';
+import { DLPPattern } from './patterns';
+export interface PromptInjectionConfig {
+    /** Enable prompt injection detection. Default true. */
+    enabled?: boolean;
+    /** Additional custom patterns to scan alongside the built-in set. */
+    custom_patterns?: DLPPattern[];
+    /** Enable output-side pattern scanning. Default false. */
+    scan_output?: boolean;
+}
+/**
+ * DLP backend that detects common prompt injection patterns in text.
+ *
+ * Scans for 13 categories of prompt injection:
+ *   - Direct instruction overrides
+ *   - Role manipulation
+ *   - Jailbreak keywords
+ *   - System prompt extraction attempts
+ *   - Delimiter injection
+ *   - Context manipulation
+ *   - Authority impersonation
+ *   - Indirect injection
+ *   - Encoding indicators
+ *   - Synonym variants
+ *   - Prompt leakage requests
+ *   - Obfuscation markers
+ *   - Multi-turn manipulation
+ *
+ * All text is normalized before pattern matching to resist evasion via
+ * zero-width chars, HTML entities, homoglyphs, URL encoding, etc.
+ *
+ * Combination severity scoring: 3+ medium = effective high, 2+ high = effective critical.
+ */
+export declare class PromptInjectionBackend implements DLPBackend {
+    readonly name = "prompt_injection";
+    private readonly enabled;
+    private readonly patterns;
+    private readonly outputPatterns;
+    private readonly scanOutput;
+    constructor(config?: PromptInjectionConfig);
+    /**
+     * Scan a string for prompt injection patterns.
+     *
+     * Text is normalized before matching to defeat evasion techniques.
+     * Patterns are matched against both the standard-normalized text and
+     * the leetspeak-normalized variant. Positions in detections refer to
+     * the original (un-normalized) string for accurate redaction.
+     */
+    scanString(value: string): DLPDetection[];
+    /**
+     * Scan output text specifically for output-side injection patterns.
+     * Called during postExecute DLP scanning.
+     */
+    scanOutputText(value: string): DLPDetection[];
+    /**
+     * Run all patterns against a text value and append matches to the detections array.
+     */
+    private matchPatterns;
+    /**
+     * Apply combination severity escalation:
+     * - 3+ medium detections -> add effective_severity 'high' metadata
+     * - 2+ high detections -> add effective_severity 'critical' metadata
+     *
+     * Mutates detections in place by upgrading severity where applicable.
+     */
+    private applyCombinationScoring;
+}
+//# sourceMappingURL=prompt-injection-backend.d.ts.map

package/dist/src/dlp/prompt-injection-backend.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompt-injection-backend.d.ts","sourceRoot":"","sources":["../../../src/dlp/prompt-injection-backend.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AACxD,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAKxC,MAAM,WAAW,qBAAqB;IACpC,uDAAuD;IACvD,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,qEAAqE;IACrE,eAAe,CAAC,EAAE,UAAU,EAAE,CAAC;IAC/B,0DAA0D;IAC1D,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,qBAAa,sBAAuB,YAAW,UAAU;IACvD,QAAQ,CAAC,IAAI,sBAAsB;IAEnC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAU;IAClC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAe;IACxC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAe;IAC9C,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAU;gBAEzB,MAAM,CAAC,EAAE,qBAAqB;IAU1C;;;;;;;OAOG;IACH,UAAU,CAAC,KAAK,EAAE,MAAM,GAAG,YAAY,EAAE;IAyCzC;;;OAGG;IACH,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,YAAY,EAAE;IAW7C;;OAEG;IACH,OAAO,CAAC,aAAa;IAyBrB;;;;;;OAMG;IACH,OAAO,CAAC,uBAAuB;CAyBhC"}