patchwork-os 0.2.0-alpha.0

package/dist/analyticsSend.js

@@ -0,0 +1,34 @@
+/**
+ * Sends an anonymized analytics summary to the usage endpoint.
+ * - Fire-and-forget is NOT used: callers must await this with a timeout race.
+ * - All errors are caught and swallowed — telemetry must never affect bridge operation.
+ * - Endpoint is hardcoded (not runtime-configurable) to prevent redirect attacks.
+ */
+/** Hardcoded endpoint — not configurable at runtime. */
+const ANALYTICS_ENDPOINT = "https://analytics.claude-ide-bridge.dev/v1/usage";
+const SEND_TIMEOUT_MS = 3000;
+/**
+ * Sends the summary to the analytics endpoint.
+ * Resolves (never rejects) — all errors are swallowed silently.
+ */
+export async function sendAnalytics(summary) {
+    try {
+        const controller = new AbortController();
+        const timer = setTimeout(() => controller.abort(), SEND_TIMEOUT_MS);
+        try {
+            await fetch(ANALYTICS_ENDPOINT, {
+                method: "POST",
+                headers: { "Content-Type": "application/json" },
+                body: JSON.stringify(summary),
+                signal: controller.signal,
+            });
+        }
+        finally {
+            clearTimeout(timer);
+        }
+    }
+    catch {
+        // Silently swallow all errors — telemetry must never surface to the user
+    }
+}
+//# sourceMappingURL=analyticsSend.js.map

package/dist/analyticsSend.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"analyticsSend.js","sourceRoot":"","sources":["../src/analyticsSend.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,wDAAwD;AACxD,MAAM,kBAAkB,GAAG,kDAAkD,CAAC;AAE9E,MAAM,eAAe,GAAG,IAAI,CAAC;AAE7B;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,OAAyB;IAC3D,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,eAAe,CAAC,CAAC;QACpE,IAAI,CAAC;YACH,MAAM,KAAK,CAAC,kBAAkB,EAAE;gBAC9B,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;gBAC7B,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;QACL,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,KAAK,CAAC,CAAC;QACtB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,yEAAyE;IAC3E,CAAC;AACH,CAAC"}

package/dist/approvalHttp.d.ts

@@ -0,0 +1,46 @@
+import type { ApprovalQueue } from "./approvalQueue.js";
+import { loadCcPermissions } from "./ccPermissions.js";
+/**
+ * HTTP route handlers for the Patchwork approval surface. Pure functions —
+ * bridge HTTP server (src/transport.ts) mounts them in a follow-up PR; this
+ * file is mount-ready but not yet wired.
+ *
+ * Routes:
+ *   GET    /approvals              → list pending
+ *   POST   /approvals              → request approval (called by PreToolUse hook)
+ *   POST   /approve/:callId
+ *   POST   /reject/:callId
+ *
+ * The hook flow:
+ *   1. Claude Code fires PreToolUse hook (scripts/patchwork-approval-hook.sh)
+ *   2. Hook POSTs { toolName, specifier, params, summary } to /approvals
+ *   3. Bridge checks CC's settings.json → deny/ask/allow precedence
+ *      - deny → respond immediately { decision: "deny" } (hook exits 2)
+ *      - allow → respond immediately { decision: "allow" } (hook exits 0)
+ *      - ask OR no rule → queue for dashboard, block until decided
+ *   4. Dashboard approves/rejects → resolves queue → hook exits
+ */
+export interface ApprovalHttpDeps {
+    queue: ApprovalQueue;
+    workspace: string;
+    /** Absolute path to a managed settings file (admin-controlled, highest precedence). */
+    managedSettingsPath?: string;
+    ccLoader?: typeof loadCcPermissions;
+    /** Optional hook — called after every approval decision for audit/activity logging. */
+    onDecision?: (event: string, meta: Record<string, unknown>) => void;
+    /** Optional webhook URL — POST notification dispatched when approval is queued. */
+    webhookUrl?: string;
+    /** Gate tier — "off" bypasses all queueing; "high" only queues high-tier tools; "all" queues everything. */
+    approvalGate?: "off" | "high" | "all";
+}
+export interface HttpRequest {
+    method: string;
+    path: string;
+    body?: Record<string, unknown>;
+    query?: URLSearchParams;
+}
+export interface HttpResponse {
+    status: number;
+    body: unknown;
+}
+export declare function routeApprovalRequest(req: HttpRequest, deps: ApprovalHttpDeps): Promise<HttpResponse>;

package/dist/approvalHttp.js

@@ -0,0 +1,370 @@
+import * as dns from "node:dns/promises";
+import * as path from "node:path";
+import { evaluateRules, loadCcPermissions, loadCcPermissionsAttributed, } from "./ccPermissions.js";
+import { classifyTool } from "./riskTier.js";
+// Tools CC allows in plan mode (read-only — no filesystem or network writes).
+const PLAN_MODE_READ_TOOLS = new Set([
+    "Read",
+    "Glob",
+    "Grep",
+    "WebFetch",
+    "WebSearch",
+    "LS",
+]);
+export async function routeApprovalRequest(req, deps) {
+    const { method, path } = req;
+    if (method === "GET" && path === "/approvals") {
+        const sessionId = req.query?.get("session");
+        const list = deps.queue.list();
+        const filtered = sessionId
+            ? list.filter((a) => a.sessionId === sessionId)
+            : list;
+        return { status: 200, body: filtered };
+    }
+    if (method === "GET" && path === "/cc-permissions") {
+        const rules = (deps.ccLoader ?? loadCcPermissions)(deps.workspace, {
+            managedPath: deps.managedSettingsPath,
+        });
+        const attributed = loadCcPermissionsAttributed(deps.workspace, {
+            managedPath: deps.managedSettingsPath,
+        });
+        return {
+            status: 200,
+            body: {
+                allow: rules.allow,
+                ask: rules.ask,
+                deny: rules.deny,
+                workspace: deps.workspace,
+                attributed,
+            },
+        };
+    }
+    if (method === "POST" && path === "/approvals") {
+        return await handleApprovalRequest(req, deps);
+    }
+    const approveMatch = /^\/approve\/([A-Za-z0-9-]+)$/.exec(path);
+    if (method === "POST" && approveMatch) {
+        const callId = approveMatch[1];
+        const ok = deps.queue.approve(callId);
+        return {
+            status: ok ? 200 : 404,
+            body: ok ? { decision: "allow", callId } : { error: "unknown callId" },
+        };
+    }
+    const rejectMatch = /^\/reject\/([A-Za-z0-9-]+)$/.exec(path);
+    if (method === "POST" && rejectMatch) {
+        const callId = rejectMatch[1];
+        const ok = deps.queue.reject(callId);
+        return {
+            status: ok ? 200 : 404,
+            body: ok ? { decision: "deny", callId } : { error: "unknown callId" },
+        };
+    }
+    return { status: 404, body: { error: "not found" } };
+}
+/**
+ * Blocked IP patterns for SSRF defense.
+ * Covers loopback, RFC-1918 private ranges, and link-local.
+ */
+function isBlockedIp(ip) {
+    // IPv6 loopback
+    if (ip === "::1" || ip === "0:0:0:0:0:0:0:1")
+        return true;
+    const parts = ip.split(".").map(Number);
+    if (parts.length !== 4)
+        return false;
+    const [a, b] = parts;
+    // 127.0.0.0/8 — loopback
+    if (a === 127)
+        return true;
+    // 10.0.0.0/8 — private
+    if (a === 10)
+        return true;
+    // 172.16.0.0/12 — private
+    if (a === 172 && b >= 16 && b <= 31)
+        return true;
+    // 192.168.0.0/16 — private
+    if (a === 192 && b === 168)
+        return true;
+    // 169.254.0.0/16 — link-local
+    if (a === 169 && b === 254)
+        return true;
+    return false;
+}
+/**
+ * Dispatch a JSON webhook notification when an approval is queued.
+ * Failures are logged but never thrown — webhook errors must not block
+ * the approval flow.
+ */
+async function dispatchApprovalWebhook(webhookUrl, payload) {
+    // Only HTTPS targets allowed
+    if (!webhookUrl.startsWith("https://")) {
+        console.warn(`[webhook] Rejected non-HTTPS webhook URL: ${webhookUrl.slice(0, 60)}`);
+        return;
+    }
+    let hostname;
+    try {
+        hostname = new URL(webhookUrl).hostname;
+    }
+    catch {
+        console.warn(`[webhook] Malformed webhook URL — skipping dispatch`);
+        return;
+    }
+    // Reject bare "localhost" hostname before DNS resolution
+    if (hostname === "localhost") {
+        console.warn(`[webhook] Blocked loopback webhook hostname: ${hostname}`);
+        return;
+    }
+    // Resolve hostname and check resolved IP against blocklist
+    try {
+        const resolved = await dns.lookup(hostname);
+        if (isBlockedIp(resolved.address)) {
+            console.warn(`[webhook] Blocked private/loopback IP for webhook: ${resolved.address}`);
+            return;
+        }
+    }
+    catch (err) {
+        console.warn(`[webhook] DNS resolution failed for ${hostname}: ${err instanceof Error ? err.message : String(err)}`);
+        return;
+    }
+    const controller = new AbortController();
+    const timer = setTimeout(() => controller.abort(), 5_000);
+    try {
+        const res = await fetch(webhookUrl, {
+            method: "POST",
+            headers: { "Content-Type": "application/json" },
+            body: JSON.stringify(payload),
+            signal: controller.signal,
+        });
+        if (!res.ok) {
+            console.warn(`[webhook] Non-2xx response from webhook: ${res.status} ${res.statusText}`);
+        }
+    }
+    catch (err) {
+        console.warn(`[webhook] Dispatch failed: ${err instanceof Error ? err.message : String(err)}`);
+    }
+    finally {
+        clearTimeout(timer);
+    }
+}
+function computeRiskSignals(toolName, params, workspace) {
+    const signals = [];
+    // Destructive flags — Bash / runCommand
+    if (toolName === "Bash" || toolName === "runCommand") {
+        const cmd = typeof params.command === "string" ? params.command : "";
+        if (/\brm\b.*-[a-z]*r[a-z]*f|\brm\b.*-[a-z]*f[a-z]*r/i.test(cmd)) {
+            signals.push({
+                kind: "destructive_flag",
+                label: "rm with -rf flags",
+                severity: "high",
+            });
+        }
+        if (/--force\b/i.test(cmd)) {
+            signals.push({
+                kind: "destructive_flag",
+                label: "contains --force flag",
+                severity: "medium",
+            });
+        }
+        if (/\bsudo\b/i.test(cmd)) {
+            signals.push({
+                kind: "destructive_flag",
+                label: "runs as sudo",
+                severity: "high",
+            });
+        }
+        if (/\bDROP\s+(TABLE|DATABASE|SCHEMA)\b/i.test(cmd)) {
+            signals.push({
+                kind: "destructive_flag",
+                label: "SQL DROP statement",
+                severity: "high",
+            });
+        }
+        if (/\bTRUNCATE\b/i.test(cmd)) {
+            signals.push({
+                kind: "destructive_flag",
+                label: "SQL TRUNCATE statement",
+                severity: "medium",
+            });
+        }
+        if (/[`$()]\s*|&&|\|\|/.test(cmd)) {
+            signals.push({
+                kind: "chaining",
+                label: "command chaining or substitution",
+                severity: "low",
+            });
+        }
+    }
+    // Domain reputation — WebFetch / sendHttpRequest
+    if (toolName === "WebFetch" || toolName === "sendHttpRequest") {
+        const url = typeof params.url === "string" ? params.url : "";
+        if (url && !url.startsWith("https://")) {
+            signals.push({
+                kind: "domain_reputation",
+                label: "non-HTTPS URL",
+                severity: "medium",
+            });
+        }
+        try {
+            const hostname = new URL(url).hostname;
+            if (/^\d+\.\d+\.\d+\.\d+$/.test(hostname)) {
+                signals.push({
+                    kind: "domain_reputation",
+                    label: "direct IP address",
+                    severity: "medium",
+                });
+            }
+        }
+        catch {
+            // unparseable URL — skip hostname check
+        }
+    }
+    // Path escape — Write / Edit / Read
+    if (toolName === "Write" || toolName === "Edit" || toolName === "Read") {
+        const filePath = typeof params.file_path === "string" ? params.file_path : "";
+        if (filePath) {
+            const resolved = path.resolve(filePath);
+            const wsRoot = path.resolve(workspace) + path.sep;
+            if (!resolved.startsWith(wsRoot)) {
+                signals.push({
+                    kind: "path_escape",
+                    label: "file path outside workspace",
+                    severity: "high",
+                });
+            }
+        }
+    }
+    return signals;
+}
+async function handleApprovalRequest(req, deps) {
+    const body = req.body ?? {};
+    const toolName = typeof body.toolName === "string" ? body.toolName : "";
+    const specifier = typeof body.specifier === "string" ? body.specifier : undefined;
+    const params = typeof body.params === "object" && body.params !== null
+        ? body.params
+        : {};
+    const summary = typeof body.summary === "string" ? body.summary : undefined;
+    const permissionMode = typeof body.permissionMode === "string" ? body.permissionMode : undefined;
+    const sessionId = typeof body.sessionId === "string" ? body.sessionId : undefined;
+    // riskSignals are computed lazily — most short-circuit branches skip the
+    // cost by never calling computeRiskSignals. The queue-awaiting branch
+    // passes the already-computed signals via the optional arg.
+    const emit = (decision, reason, extras) => deps.onDecision?.("approval_decision", {
+        toolName,
+        specifier,
+        decision,
+        reason,
+        permissionMode,
+        sessionId,
+        ...(summary !== undefined && { summary }),
+        ...(extras?.riskSignals &&
+            extras.riskSignals.length > 0 && {
+            riskSignals: extras.riskSignals,
+        }),
+        ...(extras?.callId && { callId: extras.callId }),
+    });
+    if (!toolName) {
+        return { status: 400, body: { error: "toolName required" } };
+    }
+    // CC settings.json precedence
+    const rules = (deps.ccLoader ?? loadCcPermissions)(deps.workspace, {
+        managedPath: deps.managedSettingsPath,
+    });
+    const decision = evaluateRules(toolName, specifier, rules);
+    if (decision === "deny") {
+        emit("deny", "cc_deny_rule");
+        return { status: 200, body: { decision: "deny", reason: "cc_deny_rule" } };
+    }
+    if (decision === "allow") {
+        emit("allow", "cc_allow_rule");
+        return {
+            status: 200,
+            body: { decision: "allow", reason: "cc_allow_rule" },
+        };
+    }
+    // Per the permission-modes doc, `dontAsk` is non-interactive: `ask` rules
+    // and unmatched tools must auto-deny rather than queue for a dashboard
+    // human. Honor that so we don't hang CC on a prompt it will never get.
+    if (permissionMode === "dontAsk") {
+        emit("deny", "dontAsk_mode");
+        return {
+            status: 200,
+            body: { decision: "deny", reason: "dontAsk_mode" },
+        };
+    }
+    // `auto` mode: CC's classifier owns escalation decisions autonomously.
+    // Queuing for a human dashboard would block indefinitely — allow through.
+    if (permissionMode === "auto") {
+        emit("allow", "auto_mode");
+        return {
+            status: 200,
+            body: { decision: "allow", reason: "auto_mode" },
+        };
+    }
+    // `plan` mode: CC blocks all write operations at its own layer.
+    // Read-only tools → allow (CC won't block them anyway).
+    // Write/exec tools → deny without queuing (CC would reject the write even
+    // if we approved it, so queuing for a human is pointless churn).
+    if (permissionMode === "plan") {
+        if (PLAN_MODE_READ_TOOLS.has(toolName)) {
+            emit("allow", "plan_mode_read");
+            return {
+                status: 200,
+                body: { decision: "allow", reason: "plan_mode_read" },
+            };
+        }
+        emit("deny", "plan_mode_write");
+        return {
+            status: 200,
+            body: { decision: "deny", reason: "plan_mode_write" },
+        };
+    }
+    // Fall through to dashboard approval
+    const tier = classifyTool(toolName);
+    // Respect approvalGate setting — "off" bypasses, "high" only queues high-tier tools
+    const gate = deps.approvalGate ?? "off";
+    if (gate === "off") {
+        emit("allow", "gate_off");
+        return { status: 200, body: { decision: "allow", reason: "gate_off" } };
+    }
+    if (gate === "high" && tier !== "high") {
+        emit("allow", "gate_below_threshold");
+        return {
+            status: 200,
+            body: { decision: "allow", reason: "gate_below_threshold" },
+        };
+    }
+    const riskSignals = computeRiskSignals(toolName, params, deps.workspace);
+    const { callId, promise } = deps.queue.request({
+        toolName,
+        params,
+        tier,
+        summary,
+        sessionId,
+        riskSignals,
+    });
+    // Fire webhook notification in the background — never block approval flow
+    if (deps.webhookUrl) {
+        dispatchApprovalWebhook(deps.webhookUrl, {
+            toolName,
+            tier,
+            callId,
+            requestedAt: Date.now(),
+            summary,
+        }).catch(() => { });
+    }
+    const outcome = await promise;
+    emit(outcome === "approved" ? "allow" : "deny", outcome, {
+        riskSignals,
+        callId,
+    });
+    return {
+        status: 200,
+        body: {
+            decision: outcome === "approved" ? "allow" : "deny",
+            reason: outcome,
+            callId,
+        },
+    };
+}
+//# sourceMappingURL=approvalHttp.js.map

package/dist/approvalHttp.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"approvalHttp.js","sourceRoot":"","sources":["../src/approvalHttp.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,GAAG,MAAM,mBAAmB,CAAC;AACzC,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAElC,OAAO,EACL,aAAa,EACb,iBAAiB,EACjB,2BAA2B,GAC5B,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAE7C,8EAA8E;AAC9E,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC;IACnC,MAAM;IACN,MAAM;IACN,MAAM;IACN,UAAU;IACV,WAAW;IACX,IAAI;CACL,CAAC,CAAC;AAiDH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,GAAgB,EAChB,IAAsB;IAEtB,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,GAAG,CAAC;IAE7B,IAAI,MAAM,KAAK,KAAK,IAAI,IAAI,KAAK,YAAY,EAAE,CAAC;QAC9C,MAAM,SAAS,GAAG,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,SAAS,CAAC,CAAC;QAC5C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC;QAC/B,MAAM,QAAQ,GAAG,SAAS;YACxB,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,SAAS,CAAC;YAC/C,CAAC,CAAC,IAAI,CAAC;QACT,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;IACzC,CAAC;IAED,IAAI,MAAM,KAAK,KAAK,IAAI,IAAI,KAAK,iBAAiB,EAAE,CAAC;QACnD,MAAM,KAAK,GAAG,CAAC,IAAI,CAAC,QAAQ,IAAI,iBAAiB,CAAC,CAAC,IAAI,CAAC,SAAS,EAAE;YACjE,WAAW,EAAE,IAAI,CAAC,mBAAmB;SACtC,CAAC,CAAC;QACH,MAAM,UAAU,GAAG,2BAA2B,CAAC,IAAI,CAAC,SAAS,EAAE;YAC7D,WAAW,EAAE,IAAI,CAAC,mBAAmB;SACtC,CAAC,CAAC;QACH,OAAO;YACL,MAAM,EAAE,GAAG;YACX,IAAI,EAAE;gBACJ,KAAK,EAAE,KAAK,CAAC,KAAK;gBAClB,GAAG,EAAE,KAAK,CAAC,GAAG;gBACd,IAAI,EAAE,KAAK,CAAC,IAAI;gBAChB,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,UAAU;aACX;SACF,CAAC;IACJ,CAAC;IAED,IAAI,MAAM,KAAK,MAAM,IAAI,IAAI,KAAK,YAAY,EAAE,CAAC;QAC/C,OAAO,MAAM,qBAAqB,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IAChD,CAAC;IAED,MAAM,YAAY,GAAG,8BAA8B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC/D,IAAI,MAAM,KAAK,MAAM,IAAI,YAAY,EAAE,CAAC;QACtC,MAAM,MAAM,GAAG,YAAY,CAAC,CAAC,CAAW,CAAC;QACzC,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QACtC,OAAO;YACL,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;YACtB,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE;SACvE,CAAC;IACJ,CAAC;IAED,MAAM,WAAW,GAAG,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC7D,IAAI,MAAM,KAAK,MAAM,IAAI,WAAW,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,WAAW,CAAC,CAAC,CAAW,CAAC;QACxC,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QACrC,OAAO;YACL,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;YACtB,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE;SACtE,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,CAAC;AACvD,CAAC;AAED;;;GAGG;AACH,SAAS,WAAW,CAAC,EAAU;IAC7B,gBAAgB;IAChB,IAAI,EAAE,KAAK,KAAK,IAAI,EAAE,KAAK,iBAAiB;QAAE,OAAO,IAAI,CAAC;IAC1D,MAAM,KAAK,GAAG,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACxC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IACrC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,KAAyC,CAAC;IACzD,yBAAyB;IACzB,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IAC3B,uBAAuB;IACvB,IAAI,CAAC,KAAK,EAAE;QAAE,OAAO,IAAI,CAAC;IAC1B,0BAA0B;IAC1B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;QAAE,OAAO,IAAI,CAAC;IACjD,2BAA2B;IAC3B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IACxC,8BAA8B;IAC9B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IACxC,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,uBAAuB,CACpC,UAAkB,EAClB,OAMC;IAED,6BAA6B;IAC7B,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACvC,OAAO,CAAC,IAAI,CACV,6CAA6C,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CACvE,CAAC;QACF,OAAO;IACT,CAAC;IAED,IAAI,QAAgB,CAAC;IACrB,IAAI,CAAC;QACH,QAAQ,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,IAAI,CAAC,qDAAqD,CAAC,CAAC;QACpE,OAAO;IACT,CAAC;IAED,yDAAyD;IACzD,IAAI,QAAQ,KAAK,WAAW,EAAE,CAAC;QAC7B,OAAO,CAAC,IAAI,CAAC,gDAAgD,QAAQ,EAAE,CAAC,CAAC;QACzE,OAAO;IACT,CAAC;IAED,2DAA2D;IAC3D,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC5C,IAAI,WAAW,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAClC,OAAO,CAAC,IAAI,CACV,sDAAsD,QAAQ,CAAC,OAAO,EAAE,CACzE,CAAC;YACF,OAAO;QACT,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,IAAI,CACV,uCAAuC,QAAQ,KAAK,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CACvG,CAAC;QACF,OAAO;IACT,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;IACzC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,KAAK,CAAC,CAAC;IAC1D,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,UAAU,EAAE;YAClC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;YAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;YAC7B,MAAM,EAAE,UAAU,CAAC,MAAM;SAC1B,CAAC,CAAC;QACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,OAAO,CAAC,IAAI,CACV,4CAA4C,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,CAC3E,CAAC;QACJ,CAAC;IACH,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,IAAI,CACV,8BAA8B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CACjF,CAAC;IACJ,CAAC;YAAS,CAAC;QACT,YAAY,CAAC,KAAK,CAAC,CAAC;IACtB,CAAC;AACH,CAAC;AAED,SAAS,kBAAkB,CACzB,QAAgB,EAChB,MAA+B,EAC/B,SAAiB;IAEjB,MAAM,OAAO,GAAiB,EAAE,CAAC;IAEjC,wCAAwC;IACxC,IAAI,QAAQ,KAAK,MAAM,IAAI,QAAQ,KAAK,YAAY,EAAE,CAAC;QACrD,MAAM,GAAG,GAAG,OAAO,MAAM,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC;QACrE,IAAI,kDAAkD,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACjE,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,kBAAkB;gBACxB,KAAK,EAAE,mBAAmB;gBAC1B,QAAQ,EAAE,MAAM;aACjB,CAAC,CAAC;QACL,CAAC;QACD,IAAI,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAC3B,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,kBAAkB;gBACxB,KAAK,EAAE,uBAAuB;gBAC9B,QAAQ,EAAE,QAAQ;aACnB,CAAC,CAAC;QACL,CAAC;QACD,IAAI,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,kBAAkB;gBACxB,KAAK,EAAE,cAAc;gBACrB,QAAQ,EAAE,MAAM;aACjB,CAAC,CAAC;QACL,CAAC;QACD,IAAI,qCAAqC,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACpD,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,kBAAkB;gBACxB,KAAK,EAAE,oBAAoB;gBAC3B,QAAQ,EAAE,MAAM;aACjB,CAAC,CAAC;QACL,CAAC;QACD,IAAI,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,kBAAkB;gBACxB,KAAK,EAAE,wBAAwB;gBAC/B,QAAQ,EAAE,QAAQ;aACnB,CAAC,CAAC;QACL,CAAC;QACD,IAAI,mBAAmB,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAClC,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,UAAU;gBAChB,KAAK,EAAE,kCAAkC;gBACzC,QAAQ,EAAE,KAAK;aAChB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,iDAAiD;IACjD,IAAI,QAAQ,KAAK,UAAU,IAAI,QAAQ,KAAK,iBAAiB,EAAE,CAAC;QAC9D,MAAM,GAAG,GAAG,OAAO,MAAM,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7D,IAAI,GAAG,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YACvC,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,mBAAmB;gBACzB,KAAK,EAAE,eAAe;gBACtB,QAAQ,EAAE,QAAQ;aACnB,CAAC,CAAC;QACL,CAAC;QACD,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;YACvC,IAAI,sBAAsB,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC1C,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,mBAAmB;oBACzB,KAAK,EAAE,mBAAmB;oBAC1B,QAAQ,EAAE,QAAQ;iBACnB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,wCAAwC;QAC1C,CAAC;IACH,CAAC;IAED,oCAAoC;IACpC,IAAI,QAAQ,KAAK,OAAO,IAAI,QAAQ,KAAK,MAAM,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QACvE,MAAM,QAAQ,GACZ,OAAO,MAAM,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/D,IAAI,QAAQ,EAAE,CAAC;YACb,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YACxC,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC;YAClD,IAAI,CAAC,QAAQ,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;gBACjC,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,aAAa;oBACnB,KAAK,EAAE,6BAA6B;oBACpC,QAAQ,EAAE,MAAM;iBACjB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,KAAK,UAAU,qBAAqB,CAClC,GAAgB,EAChB,IAAsB;IAEtB,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAG,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;IACxE,MAAM,SAAS,GACb,OAAO,IAAI,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;IAClE,MAAM,MAAM,GACV,OAAO,IAAI,CAAC,MAAM,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,KAAK,IAAI;QACrD,CAAC,CAAE,IAAI,CAAC,MAAkC;QAC1C,CAAC,CAAC,EAAE,CAAC;IACT,MAAM,OAAO,GAAG,OAAO,IAAI,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC;IAC5E,MAAM,cAAc,GAClB,OAAO,IAAI,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,SAAS,CAAC;IAC5E,MAAM,SAAS,GACb,OAAO,IAAI,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;IAElE,yEAAyE;IACzE,sEAAsE;IACtE,4DAA4D;IAC5D,MAAM,IAAI,GAAG,CACX,QAAgB,EAChB,MAAc,EACd,MAGC,EACD,EAAE,CACF,IAAI,CAAC,UAAU,EAAE,CAAC,mBAAmB,EAAE;QACrC,QAAQ;QACR,SAAS;QACT,QAAQ;QACR,MAAM;QACN,cAAc;QACd,SAAS;QACT,GAAG,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,CAAC;QACzC,GAAG,CAAC,MAAM,EAAE,WAAW;YACrB,MAAM,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,IAAI;YAC/B,WAAW,EAAE,MAAM,CAAC,WAAW;SAChC,CAAC;QACJ,GAAG,CAAC,MAAM,EAAE,MAAM,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,CAAC;KACjD,CAAC,CAAC;IAEL,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE,KAAK,EAAE,mBAAmB,EAAE,EAAE,CAAC;IAC/D,CAAC;IAED,8BAA8B;IAC9B,MAAM,KAAK,GAAG,CAAC,IAAI,CAAC,QAAQ,IAAI,iBAAiB,CAAC,CAAC,IAAI,CAAC,SAAS,EAAE;QACjE,WAAW,EAAE,IAAI,CAAC,mBAAmB;KACtC,CAAC,CAAC;IACH,MAAM,QAAQ,GAAG,aAAa,CAAC,QAAQ,EAAE,SAAS,EAAE,KAAK,CAAC,CAAC;IAC3D,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QACxB,IAAI,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;QAC7B,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE,EAAE,CAAC;IAC7E,CAAC;IACD,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;QACzB,IAAI,CAAC,OAAO,EAAE,eAAe,CAAC,CAAC;QAC/B,OAAO;YACL,MAAM,EAAE,GAAG;YACX,IAAI,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,eAAe,EAAE;SACrD,CAAC;IACJ,CAAC;IAED,0EAA0E;IAC1E,uEAAuE;IACvE,uEAAuE;IACvE,IAAI,cAAc,KAAK,SAAS,EAAE,CAAC;QACjC,IAAI,CAAC,MAAM,EAAE,cAAc,CAAC,CAAC;QAC7B,OAAO;YACL,MAAM,EAAE,GAAG;YACX,IAAI,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,cAAc,EAAE;SACnD,CAAC;IACJ,CAAC;IAED,uEAAuE;IACvE,0EAA0E;IAC1E,IAAI,cAAc,KAAK,MAAM,EAAE,CAAC;QAC9B,IAAI,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;QAC3B,OAAO;YACL,MAAM,EAAE,GAAG;YACX,IAAI,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE;SACjD,CAAC;IACJ,CAAC;IAED,gEAAgE;IAChE,wDAAwD;IACxD,0EAA0E;IAC1E,iEAAiE;IACjE,IAAI,cAAc,KAAK,MAAM,EAAE,CAAC;QAC9B,IAAI,oBAAoB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YACvC,IAAI,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC;YAChC,OAAO;gBACL,MAAM,EAAE,GAAG;gBACX,IAAI,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,gBAAgB,EAAE;aACtD,CAAC;QACJ,CAAC;QACD,IAAI,CAAC,MAAM,EAAE,iBAAiB,CAAC,CAAC;QAChC,OAAO;YACL,MAAM,EAAE,GAAG;YACX,IAAI,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,iBAAiB,EAAE;SACtD,CAAC;IACJ,CAAC;IAED,qCAAqC;IACrC,MAAM,IAAI,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;IAEpC,oFAAoF;IACpF,MAAM,IAAI,GAAG,IAAI,CAAC,YAAY,IAAI,KAAK,CAAC;IACxC,IAAI,IAAI,KAAK,KAAK,EAAE,CAAC;QACnB,IAAI,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;QAC1B,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,CAAC;IAC1E,CAAC;IACD,IAAI,IAAI,KAAK,MAAM,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;QACvC,IAAI,CAAC,OAAO,EAAE,sBAAsB,CAAC,CAAC;QACtC,OAAO;YACL,MAAM,EAAE,GAAG;YACX,IAAI,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,EAAE,sBAAsB,EAAE;SAC5D,CAAC;IACJ,CAAC;IAED,MAAM,WAAW,GAAG,kBAAkB,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC;IACzE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC;QAC7C,QAAQ;QACR,MAAM;QACN,IAAI;QACJ,OAAO;QACP,SAAS;QACT,WAAW;KACZ,CAAC,CAAC;IAEH,0EAA0E;IAC1E,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;QACpB,uBAAuB,CAAC,IAAI,CAAC,UAAU,EAAE;YACvC,QAAQ;YACR,IAAI;YACJ,MAAM;YACN,WAAW,EAAE,IAAI,CAAC,GAAG,EAAE;YACvB,OAAO;SACR,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;IACrB,CAAC;IAED,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC;IAC9B,IAAI,CAAC,OAAO,KAAK,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE;QACvD,WAAW;QACX,MAAM;KACP,CAAC,CAAC;IACH,OAAO;QACL,MAAM,EAAE,GAAG;QACX,IAAI,EAAE;YACJ,QAAQ,EAAE,OAAO,KAAK,UAAU,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM;YACnD,MAAM,EAAE,OAAO;YACf,MAAM;SACP;KACF,CAAC;AACJ,CAAC"}

package/dist/approvalQueue.d.ts

@@ -0,0 +1,49 @@
+import type { RiskTier } from "./riskTier.js";
+/**
+ * ApprovalQueue — tiny in-memory registry of pending high-risk tool calls
+ * awaiting human approve/reject from the dashboard. Replaces no existing
+ * mechanism; bridge tool dispatch does not currently gate on risk tier. This
+ * is the landing pad for that future wiring.
+ *
+ * Design:
+ *  - Each pending call gets a UUID callId
+ *  - Dashboard GET /approvals lists them; POST /approve/:callId or /reject/:callId resolves
+ *  - TTL prevents zombie entries if the dashboard never responds
+ */
+export interface RiskSignal {
+    kind: "destructive_flag" | "domain_reputation" | "path_escape" | "chaining";
+    label: string;
+    severity: "low" | "medium" | "high";
+}
+export interface PendingApproval {
+    callId: string;
+    toolName: string;
+    params: Record<string, unknown>;
+    tier: RiskTier;
+    requestedAt: number;
+    sessionId?: string;
+    summary?: string;
+    riskSignals?: RiskSignal[];
+}
+export type ApprovalDecision = "approved" | "rejected" | "expired";
+export declare class ApprovalQueue {
+    private readonly entries;
+    private readonly ttlMs;
+    constructor(opts?: {
+        ttlMs?: number;
+    });
+    request(input: Omit<PendingApproval, "callId" | "requestedAt">): {
+        callId: string;
+        promise: Promise<ApprovalDecision>;
+    };
+    approve(callId: string): boolean;
+    reject(callId: string): boolean;
+    list(): PendingApproval[];
+    size(): number;
+    /** Clear all pending entries (test hook, also on bridge shutdown). */
+    clear(): void;
+    private resolveEntry;
+}
+export declare function getApprovalQueue(): ApprovalQueue;
+/** Test hook only. */
+export declare function resetApprovalQueueForTests(): void;

package/dist/approvalQueue.js

@@ -0,0 +1,84 @@
+import { randomUUID } from "node:crypto";
+export class ApprovalQueue {
+    entries = new Map();
+    ttlMs;
+    constructor(opts = {}) {
+        this.ttlMs = opts.ttlMs ?? 5 * 60_000;
+    }
+    request(input) {
+        const callId = randomUUID();
+        const requestedAt = Date.now();
+        let resolveFn;
+        const promise = new Promise((res) => {
+            resolveFn = res;
+        });
+        const timer = setTimeout(() => {
+            const entry = this.entries.get(callId);
+            if (!entry)
+                return;
+            this.entries.delete(callId);
+            entry.resolve("expired");
+        }, this.ttlMs);
+        if (typeof timer === "object" && "unref" in timer)
+            timer.unref();
+        this.entries.set(callId, {
+            callId,
+            requestedAt,
+            resolve: resolveFn,
+            timer,
+            ...input,
+        });
+        return { callId, promise };
+    }
+    approve(callId) {
+        return this.resolveEntry(callId, "approved");
+    }
+    reject(callId) {
+        return this.resolveEntry(callId, "rejected");
+    }
+    list() {
+        return [...this.entries.values()].map((e) => ({
+            callId: e.callId,
+            toolName: e.toolName,
+            params: e.params,
+            tier: e.tier,
+            requestedAt: e.requestedAt,
+            sessionId: e.sessionId,
+            summary: e.summary,
+            riskSignals: e.riskSignals,
+        }));
+    }
+    size() {
+        return this.entries.size;
+    }
+    /** Clear all pending entries (test hook, also on bridge shutdown). */
+    clear() {
+        for (const entry of this.entries.values()) {
+            clearTimeout(entry.timer);
+            entry.resolve("expired");
+        }
+        this.entries.clear();
+    }
+    resolveEntry(callId, decision) {
+        const entry = this.entries.get(callId);
+        if (!entry)
+            return false;
+        clearTimeout(entry.timer);
+        this.entries.delete(callId);
+        entry.resolve(decision);
+        return true;
+    }
+}
+/** Process-wide singleton — dashboard + bridge share one queue. */
+let singleton;
+export function getApprovalQueue() {
+    if (!singleton)
+        singleton = new ApprovalQueue();
+    return singleton;
+}
+/** Test hook only. */
+export function resetApprovalQueueForTests() {
+    singleton?.clear();
+    singleton = undefined;
+}
+//# sourceMappingURL=approvalQueue.js.map

package/dist/approvalQueue.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"approvalQueue.js","sourceRoot":"","sources":["../src/approvalQueue.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAuCzC,MAAM,OAAO,aAAa;IACP,OAAO,GAAG,IAAI,GAAG,EAAiB,CAAC;IACnC,KAAK,CAAS;IAE/B,YAAY,OAA2B,EAAE;QACvC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC;IACxC,CAAC;IAED,OAAO,CAAC,KAAsD;QAI5D,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;QAC5B,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC/B,IAAI,SAAyC,CAAC;QAC9C,MAAM,OAAO,GAAG,IAAI,OAAO,CAAmB,CAAC,GAAG,EAAE,EAAE;YACpD,SAAS,GAAG,GAAG,CAAC;QAClB,CAAC,CAAC,CAAC;QACH,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;YAC5B,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YACvC,IAAI,CAAC,KAAK;gBAAE,OAAO;YACnB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAC5B,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAC3B,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;QACf,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,OAAO,IAAI,KAAK;YAAE,KAAK,CAAC,KAAK,EAAE,CAAC;QAEjE,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE;YACvB,MAAM;YACN,WAAW;YACX,OAAO,EAAE,SAAS;YAClB,KAAK;YACL,GAAG,KAAK;SACT,CAAC,CAAC;QACH,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;IAC7B,CAAC;IAED,OAAO,CAAC,MAAc;QACpB,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAC/C,CAAC;IAED,MAAM,CAAC,MAAc;QACnB,OAAO,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC;IAC/C,CAAC;IAED,IAAI;QACF,OAAO,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YAC5C,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,WAAW,EAAE,CAAC,CAAC,WAAW;YAC1B,SAAS,EAAE,CAAC,CAAC,SAAS;YACtB,OAAO,EAAE,CAAC,CAAC,OAAO;YAClB,WAAW,EAAE,CAAC,CAAC,WAAW;SAC3B,CAAC,CAAC,CAAC;IACN,CAAC;IAED,IAAI;QACF,OAAO,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC;IAC3B,CAAC;IAED,sEAAsE;IACtE,KAAK;QACH,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC;YAC1C,YAAY,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;YAC1B,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;QAC3B,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IACvB,CAAC;IAEO,YAAY,CAAC,MAAc,EAAE,QAA0B;QAC7D,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACvC,IAAI,CAAC,KAAK;YAAE,OAAO,KAAK,CAAC;QACzB,YAAY,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;QAC1B,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC5B,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;QACxB,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAED,mEAAmE;AACnE,IAAI,SAAoC,CAAC;AACzC,MAAM,UAAU,gBAAgB;IAC9B,IAAI,CAAC,SAAS;QAAE,SAAS,GAAG,IAAI,aAAa,EAAE,CAAC;IAChD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,sBAAsB;AACtB,MAAM,UAAU,0BAA0B;IACxC,SAAS,EAAE,KAAK,EAAE,CAAC;IACnB,SAAS,GAAG,SAAS,CAAC;AACxB,CAAC"}