npm - predicate-claw - Versions diffs - 0.1.0 - Mend

predicate-claw 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (136) hide show

package/.github/workflows/release.yml +76 -0
package/.github/workflows/tests.yml +34 -0
package/.markdownlint.yaml +5 -0
package/.pre-commit-config.yaml +100 -0
package/README.md +405 -0
package/dist/src/adapter.d.ts +17 -0
package/dist/src/adapter.js +36 -0
package/dist/src/authority-client.d.ts +21 -0
package/dist/src/authority-client.js +22 -0
package/dist/src/circuit-breaker.d.ts +86 -0
package/dist/src/circuit-breaker.js +174 -0
package/dist/src/config.d.ts +8 -0
package/dist/src/config.js +7 -0
package/dist/src/control-plane-sync.d.ts +57 -0
package/dist/src/control-plane-sync.js +99 -0
package/dist/src/errors.d.ts +6 -0
package/dist/src/errors.js +6 -0
package/dist/src/index.d.ts +12 -0
package/dist/src/index.js +12 -0
package/dist/src/non-web-evidence.d.ts +46 -0
package/dist/src/non-web-evidence.js +54 -0
package/dist/src/openclaw-hooks.d.ts +27 -0
package/dist/src/openclaw-hooks.js +54 -0
package/dist/src/openclaw-plugin-api.d.ts +18 -0
package/dist/src/openclaw-plugin-api.js +17 -0
package/dist/src/provider.d.ts +48 -0
package/dist/src/provider.js +154 -0
package/dist/src/runtime-integration.d.ts +20 -0
package/dist/src/runtime-integration.js +43 -0
package/dist/src/web-evidence.d.ts +48 -0
package/dist/src/web-evidence.js +49 -0
package/dist/tests/adapter.test.d.ts +1 -0
package/dist/tests/adapter.test.js +63 -0
package/dist/tests/audit-event-e2e.test.d.ts +1 -0
package/dist/tests/audit-event-e2e.test.js +209 -0
package/dist/tests/authority-client.test.d.ts +1 -0
package/dist/tests/authority-client.test.js +46 -0
package/dist/tests/circuit-breaker.test.d.ts +1 -0
package/dist/tests/circuit-breaker.test.js +200 -0
package/dist/tests/control-plane-sync.test.d.ts +1 -0
package/dist/tests/control-plane-sync.test.js +90 -0
package/dist/tests/hack-vs-fix-demo.test.d.ts +1 -0
package/dist/tests/hack-vs-fix-demo.test.js +36 -0
package/dist/tests/jwks-rotation.test.d.ts +1 -0
package/dist/tests/jwks-rotation.test.js +232 -0
package/dist/tests/load-latency.test.d.ts +1 -0
package/dist/tests/load-latency.test.js +175 -0
package/dist/tests/multi-tenant-isolation.test.d.ts +1 -0
package/dist/tests/multi-tenant-isolation.test.js +146 -0
package/dist/tests/non-web-evidence.test.d.ts +1 -0
package/dist/tests/non-web-evidence.test.js +139 -0
package/dist/tests/openclaw-hooks.test.d.ts +1 -0
package/dist/tests/openclaw-hooks.test.js +38 -0
package/dist/tests/openclaw-plugin-api.test.d.ts +1 -0
package/dist/tests/openclaw-plugin-api.test.js +40 -0
package/dist/tests/provider.test.d.ts +1 -0
package/dist/tests/provider.test.js +190 -0
package/dist/tests/runtime-integration.test.d.ts +1 -0
package/dist/tests/runtime-integration.test.js +57 -0
package/dist/tests/web-evidence.test.d.ts +1 -0
package/dist/tests/web-evidence.test.js +89 -0
package/docs/MIGRATION_GUIDE.md +405 -0
package/docs/OPERATIONAL_RUNBOOK.md +389 -0
package/docs/PRODUCTION_READINESS.md +134 -0
package/docs/SLO_THRESHOLDS.md +193 -0
package/examples/README.md +171 -0
package/examples/docker/Dockerfile.test +16 -0
package/examples/docker/README.md +48 -0
package/examples/docker/docker-compose.test.yml +16 -0
package/examples/non-web-evidence-demo.ts +184 -0
package/examples/openclaw-plugin-smoke/index.ts +30 -0
package/examples/openclaw-plugin-smoke/openclaw.plugin.json +11 -0
package/examples/openclaw-plugin-smoke/package.json +9 -0
package/examples/openclaw_integration_example.py +41 -0
package/examples/policy/README.md +165 -0
package/examples/policy/approved-hosts.yaml +137 -0
package/examples/policy/dev-workflow.yaml +206 -0
package/examples/policy/policy.example.yaml +17 -0
package/examples/policy/production-strict.yaml +97 -0
package/examples/policy/sensitive-paths.yaml +114 -0
package/examples/policy/source-trust.yaml +129 -0
package/examples/policy/workspace-isolation.yaml +51 -0
package/examples/runtime_registry_example.py +75 -0
package/package.json +27 -0
package/pyproject.toml +41 -0
package/src/adapter.ts +45 -0
package/src/authority-client.ts +50 -0
package/src/circuit-breaker.ts +245 -0
package/src/config.ts +15 -0
package/src/control-plane-sync.ts +159 -0
package/src/errors.ts +5 -0
package/src/index.ts +12 -0
package/src/non-web-evidence.ts +116 -0
package/src/openclaw-hooks.ts +76 -0
package/src/openclaw-plugin-api.ts +51 -0
package/src/openclaw_predicate_provider/__init__.py +16 -0
package/src/openclaw_predicate_provider/__main__.py +5 -0
package/src/openclaw_predicate_provider/adapter.py +84 -0
package/src/openclaw_predicate_provider/agentidentity_backend.py +78 -0
package/src/openclaw_predicate_provider/cli.py +160 -0
package/src/openclaw_predicate_provider/config.py +42 -0
package/src/openclaw_predicate_provider/errors.py +13 -0
package/src/openclaw_predicate_provider/integrations/__init__.py +5 -0
package/src/openclaw_predicate_provider/integrations/openclaw_runtime.py +74 -0
package/src/openclaw_predicate_provider/models.py +19 -0
package/src/openclaw_predicate_provider/openclaw_hooks.py +75 -0
package/src/openclaw_predicate_provider/provider.py +69 -0
package/src/openclaw_predicate_provider/py.typed +1 -0
package/src/openclaw_predicate_provider/sidecar.py +59 -0
package/src/provider.ts +220 -0
package/src/runtime-integration.ts +68 -0
package/src/web-evidence.ts +95 -0
package/tests/adapter.test.ts +76 -0
package/tests/audit-event-e2e.test.ts +258 -0
package/tests/authority-client.test.ts +52 -0
package/tests/circuit-breaker.test.ts +266 -0
package/tests/conftest.py +9 -0
package/tests/control-plane-sync.test.ts +114 -0
package/tests/hack-vs-fix-demo.test.ts +44 -0
package/tests/jwks-rotation.test.ts +274 -0
package/tests/load-latency.test.ts +214 -0
package/tests/multi-tenant-isolation.test.ts +183 -0
package/tests/non-web-evidence.test.ts +168 -0
package/tests/openclaw-hooks.test.ts +46 -0
package/tests/openclaw-plugin-api.test.ts +50 -0
package/tests/provider.test.ts +227 -0
package/tests/runtime-integration.test.ts +70 -0
package/tests/test_adapter.py +46 -0
package/tests/test_cli.py +26 -0
package/tests/test_openclaw_hooks.py +53 -0
package/tests/test_provider.py +59 -0
package/tests/test_runtime_integration.py +77 -0
package/tests/test_sidecar_client.py +198 -0
package/tests/web-evidence.test.ts +113 -0
package/tsconfig.json +14 -0
package/vitest.config.ts +7 -0

package/dist/tests/provider.test.js ADDED Viewed

@@ -0,0 +1,190 @@
+import { describe, expect, it } from "vitest";
+import { ActionDeniedError, GuardedProvider, SidecarUnavailableError, } from "../src/provider.js";
+describe("GuardedProvider", () => {
+    it("builds deterministic intent hash", () => {
+        const first = GuardedProvider.intentHash({ cmd: "ls", flags: ["-la"] });
+        const second = GuardedProvider.intentHash({ flags: ["-la"], cmd: "ls" });
+        expect(first).toBe(second);
+    });
+    it("fails closed when sidecar is unavailable", async () => {
+        const provider = new GuardedProvider({
+            principal: "p1",
+            config: { failClosed: true },
+            authorityClient: {
+                authorize: async () => {
+                    throw new SidecarUnavailableError("down");
+                },
+            },
+        });
+        await expect(provider.guardOrThrow({
+            action: "shell.execute",
+            resource: "echo hi",
+            args: { command: "echo hi" },
+        })).rejects.toBeInstanceOf(SidecarUnavailableError);
+    });
+    it("returns null in fail-open mode when sidecar is unavailable", async () => {
+        const provider = new GuardedProvider({
+            principal: "p1",
+            config: { failClosed: false },
+            authorityClient: {
+                authorize: async () => {
+                    throw new SidecarUnavailableError("down");
+                },
+            },
+        });
+        await expect(provider.guardOrThrow({
+            action: "shell.execute",
+            resource: "echo hi",
+            args: { command: "echo hi" },
+        })).resolves.toBeNull();
+    });
+    it("emits decision telemetry for allow and deny", async () => {
+        const events = [];
+        const provider = new GuardedProvider({
+            principal: "p1",
+            telemetry: {
+                onDecision: (event) => {
+                    events.push({ outcome: event.outcome, reason: event.reason });
+                },
+            },
+            authorityClient: {
+                authorize: async (request) => ({
+                    allow: request.action !== "fs.read",
+                    reason: request.action === "fs.read" ? "explicit_deny" : "allowed",
+                    mandateId: request.action === "fs.read" ? undefined : "mnd_ok",
+                }),
+            },
+        });
+        await expect(provider.guardOrThrow({
+            action: "shell.execute",
+            resource: "echo hi",
+            args: { command: "echo hi" },
+            context: { source: "trusted_ui" },
+        })).resolves.toBe("mnd_ok");
+        await expect(provider.guardOrThrow({
+            action: "fs.read",
+            resource: "/etc/passwd",
+            args: { path: "/etc/passwd" },
+            context: { source: "untrusted_dm" },
+        })).rejects.toBeInstanceOf(ActionDeniedError);
+        expect(events).toEqual([
+            { outcome: "allow", reason: "allowed" },
+            { outcome: "deny", reason: "explicit_deny" },
+        ]);
+    });
+    it("sends canonical wire request fields to authority client", async () => {
+        let captured;
+        const provider = new GuardedProvider({
+            principal: "agent:openclaw-local",
+            authorityClient: {
+                authorize: async (request) => {
+                    captured = request;
+                    return { allow: true, reason: "allowed", mandateId: "mnd_ok" };
+                },
+            },
+        });
+        await provider.guardOrThrow({
+            action: "shell.execute",
+            resource: "echo hi",
+            args: { command: "echo hi", flags: ["-n"] },
+            context: { source: "trusted_ui", session_id: "s1" },
+        });
+        expect(captured).toBeDefined();
+        expect(captured?.principal).toBe("agent:openclaw-local");
+        expect(captured?.action).toBe("shell.execute");
+        expect(captured?.resource).toBe("echo hi");
+        expect(captured?.intent_hash).toEqual(expect.any(String));
+        expect(captured?.labels).toEqual(["source:trusted_ui"]);
+    });
+    it("exports decision audit events with correlation context", async () => {
+        const exported = [];
+        const provider = new GuardedProvider({
+            principal: "agent:openclaw-local",
+            auditExporter: {
+                exportDecision: async (event) => {
+                    exported.push(event);
+                },
+            },
+            authorityClient: {
+                authorize: async () => ({
+                    allow: true,
+                    reason: "allowed",
+                    mandateId: "mnd_123",
+                }),
+            },
+        });
+        await provider.guardOrThrow({
+            action: "shell.execute",
+            resource: "echo hi",
+            args: { command: "echo hi" },
+            context: {
+                source: "trusted_ui",
+                session_id: "session-1",
+                tenant_id: "tenant-1",
+                trace_id: "trace-1",
+            },
+        });
+        expect(exported).toHaveLength(1);
+        expect(exported[0]).toMatchObject({
+            principal: "agent:openclaw-local",
+            action: "shell.execute",
+            outcome: "allow",
+            mandateId: "mnd_123",
+            sessionId: "session-1",
+            tenantId: "tenant-1",
+            traceId: "trace-1",
+        });
+    });
+    it("does not block authorization if audit export fails", async () => {
+        const provider = new GuardedProvider({
+            principal: "agent:openclaw-local",
+            auditExporter: {
+                exportDecision: async () => {
+                    throw new Error("audit export unavailable");
+                },
+            },
+            authorityClient: {
+                authorize: async () => ({
+                    allow: true,
+                    reason: "allowed",
+                    mandateId: "mnd_456",
+                }),
+            },
+        });
+        await expect(provider.guardOrThrow({
+            action: "shell.execute",
+            resource: "echo ok",
+            args: { command: "echo ok" },
+            context: { source: "trusted_ui" },
+        })).resolves.toBe("mnd_456");
+    });
+    it("preserves deny reason and redacts sensitive resource in audit export", async () => {
+        const exported = [];
+        const provider = new GuardedProvider({
+            principal: "agent:openclaw-local",
+            auditExporter: {
+                exportDecision: async (event) => {
+                    exported.push(event);
+                },
+            },
+            authorityClient: {
+                authorize: async () => ({
+                    allow: false,
+                    reason: "deny_sensitive_read_from_untrusted_context",
+                }),
+            },
+        });
+        await expect(provider.guardOrThrow({
+            action: "fs.read",
+            resource: "/Users/demo/.ssh/id_rsa",
+            args: { path: "/Users/demo/.ssh/id_rsa" },
+            context: { source: "untrusted_dm" },
+        })).rejects.toBeInstanceOf(ActionDeniedError);
+        expect(exported).toHaveLength(1);
+        expect(exported[0]).toMatchObject({
+            outcome: "deny",
+            reason: "deny_sensitive_read_from_untrusted_context",
+            resource: "[REDACTED]",
+        });
+    });
+});

package/dist/tests/runtime-integration.test.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist/tests/runtime-integration.test.js ADDED Viewed

@@ -0,0 +1,57 @@
+import { describe, expect, it } from "vitest";
+import { HookEnvelope } from "../src/openclaw-hooks.js";
+import { OpenClawRuntimeIntegrator } from "../src/runtime-integration.js";
+class Registry {
+    handlers = {
+        "cmd.run": async (args) => ({ tool: "cmd.run", args }),
+        "fs.readFile": async (args) => ({ tool: "fs.readFile", args }),
+        "http.request": async (args) => ({ tool: "http.request", args }),
+    };
+    get(toolName) {
+        return this.handlers[toolName];
+    }
+    set(toolName, handler) {
+        this.handlers[toolName] = handler;
+    }
+    invoke(toolName, args) {
+        return this.handlers[toolName](args);
+    }
+}
+describe("OpenClawRuntimeIntegrator", () => {
+    it("wraps sensitive handlers and routes through hooks", async () => {
+        const seen = [];
+        const registry = new Registry();
+        const hooks = {
+            onCmdRun: async (envelope, execute) => {
+                seen.push(`cmd:${envelope.toolName}`);
+                return execute(envelope.args);
+            },
+            onFsRead: async (envelope, execute) => {
+                seen.push(`fs:${envelope.toolName}`);
+                return execute(envelope.args);
+            },
+            onHttpRequest: async (envelope, execute) => {
+                seen.push(`http:${envelope.toolName}`);
+                return execute(envelope.args);
+            },
+        };
+        const integrator = new OpenClawRuntimeIntegrator({
+            hooks,
+            contextBuilder: (toolName, args) => new HookEnvelope({
+                toolName,
+                args,
+                sessionId: "s1",
+                source: "trusted_ui",
+                tenantId: "t1",
+            }),
+        });
+        integrator.register(registry);
+        const cmd = await registry.invoke("cmd.run", { command: "echo hi" });
+        const fs = await registry.invoke("fs.readFile", { path: "/tmp/demo" });
+        const http = await registry.invoke("http.request", { url: "https://example.com" });
+        expect(cmd).toMatchObject({ tool: "cmd.run" });
+        expect(fs).toMatchObject({ tool: "fs.readFile" });
+        expect(http).toMatchObject({ tool: "http.request" });
+        expect(seen).toEqual(["cmd:cmd.run", "fs:fs.readFile", "http:http.request"]);
+    });
+});

package/dist/tests/web-evidence.test.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist/tests/web-evidence.test.js ADDED Viewed

@@ -0,0 +1,89 @@
+import crypto from "node:crypto";
+import { describe, expect, it } from "vitest";
+import { buildWebEvidenceFromProvider, buildWebEvidenceFromRuntimeSnapshot, OpenClawWebEvidenceProvider, } from "../src/web-evidence.js";
+function sha256(input) {
+    return crypto.createHash("sha256").update(input).digest("hex");
+}
+describe("web evidence providers", () => {
+    it("builds web state evidence from OpenClaw runtime context", async () => {
+        const mockContext = {
+            url: "https://example.com/dashboard",
+            title: "Dashboard - Example App",
+            domHtml: "<html><body><h1>Dashboard</h1></body></html>",
+            visibleText: "Dashboard",
+            eventId: "evt-123",
+            observedAt: "2026-02-20T12:00:00Z",
+            dominantGroupKey: "main-content",
+            confidence: 0.95,
+            confidenceReasons: ["stable_dom", "no_pending_requests"],
+        };
+        const provider = new OpenClawWebEvidenceProvider(() => mockContext);
+        const evidence = await buildWebEvidenceFromProvider(provider);
+        expect(evidence.source).toBe("browser");
+        expect(evidence.schema_version).toBe("v1");
+        expect(evidence.state_hash).toBeDefined();
+        expect(typeof evidence.state_hash).toBe("string");
+        expect(evidence.confidence).toBe(0.95);
+    });
+    it("computes dom_hash when domHtml provided without domHash", async () => {
+        const domHtml = "<html><body>Test</body></html>";
+        const expectedHash = sha256(domHtml);
+        const provider = new OpenClawWebEvidenceProvider(() => ({
+            url: "https://example.com",
+            domHtml,
+        }));
+        const snapshot = await provider.captureWebSnapshot();
+        expect(snapshot.dom_hash).toBe(expectedHash);
+    });
+    it("computes visible_text_hash when visibleText provided without hash", async () => {
+        const visibleText = "Hello World";
+        const expectedHash = sha256(visibleText);
+        const provider = new OpenClawWebEvidenceProvider(() => ({
+            url: "https://example.com",
+            visibleText,
+        }));
+        const snapshot = await provider.captureWebSnapshot();
+        expect(snapshot.visible_text_hash).toBe(expectedHash);
+    });
+    it("uses provided hashes when available", async () => {
+        const precomputedDomHash = "abc123";
+        const precomputedTextHash = "def456";
+        const provider = new OpenClawWebEvidenceProvider(() => ({
+            url: "https://example.com",
+            domHash: precomputedDomHash,
+            visibleTextHash: precomputedTextHash,
+        }));
+        const snapshot = await provider.captureWebSnapshot();
+        expect(snapshot.dom_hash).toBe(precomputedDomHash);
+        expect(snapshot.visible_text_hash).toBe(precomputedTextHash);
+    });
+    it("builds evidence from predicate-runtime snapshot format", () => {
+        const runtimeSnapshot = {
+            url: "https://example.com/page",
+            timestamp: "2026-02-20T12:00:00Z",
+            dominant_group_key: "content-area",
+            diagnostics: {
+                confidence: 0.88,
+                reasons: ["dom_stable"],
+            },
+        };
+        const evidence = buildWebEvidenceFromRuntimeSnapshot(runtimeSnapshot);
+        expect(evidence.source).toBe("browser");
+        expect(evidence.schema_version).toBe("v1");
+        expect(evidence.confidence).toBe(0.88);
+    });
+    it("handles async capture functions", async () => {
+        const asyncCapture = async () => {
+            await new Promise((resolve) => setTimeout(resolve, 1));
+            return {
+                url: "https://async.example.com",
+                title: "Async Page",
+            };
+        };
+        const provider = new OpenClawWebEvidenceProvider(asyncCapture);
+        const snapshot = await provider.captureWebSnapshot();
+        expect(snapshot.url).toBe("https://async.example.com");
+        expect(snapshot.title).toBe("Async Page");
+        expect(snapshot.observed_at).toBeDefined();
+    });
+});