proofscan 0.10.2 → 0.10.4

package/dist/popl/artifacts.d.ts

@@ -0,0 +1,78 @@
+/**
+ * POPL Artifacts Generator (Phase 6.0)
+ *
+ * Generates sanitized artifacts for POPL entries:
+ * - status.json: Safe summary of session/connector state
+ * - logs.sanitized.jsonl: Sanitized proxy logs
+ * - rpc.sanitized.jsonl: Sanitized RPC events
+ * - validation-run.log: Validation/generation log
+ */
+import type { SessionWithStats, RpcCall, Event } from '../db/types.js';
+import type { PoplArtifact, PoplCaptureSummary } from './types.js';
+/**
+ * Session status (safe for public disclosure)
+ */
+export interface SessionStatus {
+    session_id: string;
+    connector_id: string;
+    started_at: string;
+    ended_at: string | null;
+    exit_reason: string | null;
+    rpc_count: number;
+    event_count: number;
+    duration_ms: number | null;
+    actor_kind: string | null;
+}
+/**
+ * Status.json structure (safe for public disclosure)
+ */
+export interface StatusJson {
+    generated_at: string;
+    sanitizer_version: number;
+    session: SessionStatus;
+    summary: PoplCaptureSummary;
+    rpc_methods: string[];
+}
+/**
+ * Artifact generation result
+ */
+export interface ArtifactResult {
+    /** Artifact metadata */
+    artifact: PoplArtifact;
+    /** File content */
+    content: string;
+}
+/**
+ * All artifacts for an entry
+ */
+export interface GeneratedArtifacts {
+    status: ArtifactResult;
+    logs?: ArtifactResult;
+    rpc: ArtifactResult;
+    validation: ArtifactResult;
+}
+/**
+ * Generate status.json artifact
+ */
+export declare function generateStatusArtifact(session: SessionWithStats, rpcs: RpcCall[], events: Event[]): ArtifactResult;
+/**
+ * Generate rpc.sanitized.jsonl artifact
+ */
+export declare function generateRpcArtifact(sessionId: string, configDir: string): ArtifactResult;
+/**
+ * Generate logs.sanitized.jsonl artifact (if proxy logs exist)
+ */
+export declare function generateLogsArtifact(logsPath: string | null, sessionStarted: string, sessionEnded: string | null): ArtifactResult | null;
+/**
+ * Generate validation-run.log artifact
+ */
+export declare function generateValidationArtifact(sessionId: string, steps: string[]): ArtifactResult;
+/**
+ * Generate all artifacts for a session POPL entry
+ */
+export declare function generateSessionArtifacts(sessionId: string, configDir: string): Promise<{
+    artifacts: GeneratedArtifacts;
+    session: SessionWithStats;
+    summary: PoplCaptureSummary;
+}>;
+//# sourceMappingURL=artifacts.d.ts.map

package/dist/popl/artifacts.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"artifacts.d.ts","sourceRoot":"","sources":["../../src/popl/artifacts.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAKH,OAAO,KAAK,EAAE,gBAAgB,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,gBAAgB,CAAC;AAQvE,OAAO,KAAK,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAEnE;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,UAAU,EAAE,MAAM,CAAC;IACnB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,iBAAiB,EAAE,MAAM,CAAC;IAC1B,OAAO,EAAE,aAAa,CAAC;IACvB,OAAO,EAAE,kBAAkB,CAAC;IAC5B,WAAW,EAAE,MAAM,EAAE,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,wBAAwB;IACxB,QAAQ,EAAE,YAAY,CAAC;IACvB,mBAAmB;IACnB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,cAAc,CAAC;IACvB,IAAI,CAAC,EAAE,cAAc,CAAC;IACtB,GAAG,EAAE,cAAc,CAAC;IACpB,UAAU,EAAE,cAAc,CAAC;CAC5B;AAqCD;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,gBAAgB,EACzB,IAAI,EAAE,OAAO,EAAE,EACf,MAAM,EAAE,KAAK,EAAE,GACd,cAAc,CAoDhB;AAED;;GAEG;AACH,wBAAgB,mBAAmB,CACjC,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,MAAM,GAChB,cAAc,CAgChB;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAClC,QAAQ,EAAE,MAAM,GAAG,IAAI,EACvB,cAAc,EAAE,MAAM,EACtB,YAAY,EAAE,MAAM,GAAG,IAAI,GAC1B,cAAc,GAAG,IAAI,CAIvB;AAED;;GAEG;AACH,wBAAgB,0BAA0B,CACxC,SAAS,EAAE,MAAM,EACjB,KAAK,EAAE,MAAM,EAAE,GACd,cAAc,CAyBhB;AAED;;GAEG;AACH,wBAAsB,wBAAwB,CAC5C,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC;IACT,SAAS,EAAE,kBAAkB,CAAC;IAC9B,OAAO,EAAE,gBAAgB,CAAC;IAC1B,OAAO,EAAE,kBAAkB,CAAC;CAC7B,CAAC,CA6DD"}

package/dist/popl/artifacts.js

@@ -0,0 +1,205 @@
+/**
+ * POPL Artifacts Generator (Phase 6.0)
+ *
+ * Generates sanitized artifacts for POPL entries:
+ * - status.json: Safe summary of session/connector state
+ * - logs.sanitized.jsonl: Sanitized proxy logs
+ * - rpc.sanitized.jsonl: Sanitized RPC events
+ * - validation-run.log: Validation/generation log
+ */
+import { EventsStore } from '../db/events-store.js';
+import { getEventsDb } from '../db/connection.js';
+import { sanitizeRpcEvent, hashFileContent, SANITIZER_RULESET_VERSION, } from './sanitizer.js';
+/**
+ * Calculate latency percentiles from RPC calls
+ */
+function calculateLatencyPercentiles(rpcs) {
+    const latencies = [];
+    for (const rpc of rpcs) {
+        if (rpc.request_ts && rpc.response_ts) {
+            const reqTs = new Date(rpc.request_ts).getTime();
+            const resTs = new Date(rpc.response_ts).getTime();
+            const latency = resTs - reqTs;
+            if (latency >= 0) {
+                latencies.push(latency);
+            }
+        }
+    }
+    if (latencies.length === 0) {
+        return {};
+    }
+    // Sort for percentile calculation
+    latencies.sort((a, b) => a - b);
+    const p50Index = Math.floor(latencies.length * 0.5);
+    const p95Index = Math.floor(latencies.length * 0.95);
+    return {
+        p50: latencies[p50Index],
+        p95: latencies[Math.min(p95Index, latencies.length - 1)],
+    };
+}
+/**
+ * Generate status.json artifact
+ */
+export function generateStatusArtifact(session, rpcs, events) {
+    // Calculate duration
+    let durationMs = null;
+    if (session.ended_at) {
+        const startMs = new Date(session.started_at).getTime();
+        const endMs = new Date(session.ended_at).getTime();
+        durationMs = endMs - startMs;
+    }
+    // Calculate error count
+    const errorCount = rpcs.filter((r) => r.success === 0).length;
+    // Calculate latency percentiles
+    const { p50, p95 } = calculateLatencyPercentiles(rpcs);
+    // Get unique RPC methods
+    const rpcMethods = [...new Set(rpcs.map((r) => r.method))].sort();
+    const status = {
+        generated_at: new Date().toISOString(),
+        sanitizer_version: SANITIZER_RULESET_VERSION,
+        session: {
+            session_id: session.session_id,
+            connector_id: session.connector_id,
+            started_at: session.started_at,
+            ended_at: session.ended_at,
+            exit_reason: session.exit_reason,
+            rpc_count: rpcs.length,
+            event_count: events.length,
+            duration_ms: durationMs,
+            actor_kind: session.actor_kind,
+        },
+        summary: {
+            rpc_total: rpcs.length,
+            errors: errorCount,
+            latency_ms_p50: p50,
+            latency_ms_p95: p95,
+        },
+        rpc_methods: rpcMethods,
+    };
+    const content = JSON.stringify(status, null, 2);
+    const sha256 = hashFileContent(content);
+    return {
+        artifact: {
+            name: 'status.json',
+            path: 'status.json',
+            sha256,
+        },
+        content,
+    };
+}
+/**
+ * Generate rpc.sanitized.jsonl artifact
+ */
+export function generateRpcArtifact(sessionId, configDir) {
+    const db = getEventsDb(configDir);
+    // Get all events for this session
+    const events = db
+        .prepare(`
+    SELECT * FROM events
+    WHERE session_id = ?
+    ORDER BY ts ASC
+  `)
+        .all(sessionId);
+    // Sanitize each event and write as JSONL
+    const lines = [];
+    for (const event of events) {
+        const sanitized = sanitizeRpcEvent(event);
+        lines.push(JSON.stringify(sanitized));
+    }
+    const content = lines.join('\n') + (lines.length > 0 ? '\n' : '');
+    const sha256 = hashFileContent(content);
+    return {
+        artifact: {
+            name: 'rpc.sanitized.jsonl',
+            path: 'rpc.sanitized.jsonl',
+            sha256,
+        },
+        content,
+    };
+}
+/**
+ * Generate logs.sanitized.jsonl artifact (if proxy logs exist)
+ */
+export function generateLogsArtifact(logsPath, sessionStarted, sessionEnded) {
+    // For now, return null - proxy logs are separate from session data
+    // This will be implemented when we have access to proxy logs for the session window
+    return null;
+}
+/**
+ * Generate validation-run.log artifact
+ */
+export function generateValidationArtifact(sessionId, steps) {
+    const lines = [
+        `# POPL Entry Validation Log`,
+        `# Generated: ${new Date().toISOString()}`,
+        `# Session: ${sessionId}`,
+        `# Sanitizer Version: ${SANITIZER_RULESET_VERSION}`,
+        ``,
+        `## Steps`,
+        ...steps.map((step, i) => `${i + 1}. ${step}`),
+        ``,
+        `## Result`,
+        `Entry generated successfully.`,
+    ];
+    const content = lines.join('\n') + '\n';
+    const sha256 = hashFileContent(content);
+    return {
+        artifact: {
+            name: 'validation-run.log',
+            path: 'validation-run.log',
+            sha256,
+        },
+        content,
+    };
+}
+/**
+ * Generate all artifacts for a session POPL entry
+ */
+export async function generateSessionArtifacts(sessionId, configDir) {
+    const validationSteps = [];
+    // Get session data
+    validationSteps.push(`Loading session ${sessionId}`);
+    const eventsStore = new EventsStore(configDir);
+    const session = eventsStore.getSession(sessionId);
+    if (!session) {
+        throw new Error(`Session not found: ${sessionId}`);
+    }
+    validationSteps.push(`Found session for connector: ${session.connector_id}`);
+    // Get RPC calls
+    const rpcs = eventsStore.getRpcCallsBySession(sessionId);
+    validationSteps.push(`Found ${rpcs.length} RPC calls`);
+    // Get events
+    const db = getEventsDb(configDir);
+    const events = db
+        .prepare(`SELECT * FROM events WHERE session_id = ?`)
+        .all(sessionId);
+    validationSteps.push(`Found ${events.length} events`);
+    // Generate status.json
+    validationSteps.push('Generating status.json');
+    const statusResult = generateStatusArtifact(session, rpcs, events);
+    // Generate rpc.sanitized.jsonl
+    validationSteps.push('Generating rpc.sanitized.jsonl');
+    const rpcResult = generateRpcArtifact(sessionId, configDir);
+    // Generate validation log
+    validationSteps.push('Generating validation-run.log');
+    const validationResult = generateValidationArtifact(sessionId, validationSteps);
+    // Calculate summary for POPL.yml
+    const errorCount = rpcs.filter((r) => r.success === 0).length;
+    const { p50, p95 } = calculateLatencyPercentiles(rpcs);
+    const summary = {
+        rpc_total: rpcs.length,
+        errors: errorCount,
+        latency_ms_p50: p50,
+        latency_ms_p95: p95,
+    };
+    return {
+        artifacts: {
+            status: statusResult,
+            rpc: rpcResult,
+            validation: validationResult,
+        },
+        session: session,
+        summary,
+    };
+}
+//# sourceMappingURL=artifacts.js.map

package/dist/popl/artifacts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"artifacts.js","sourceRoot":"","sources":["../../src/popl/artifacts.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC;AACpD,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAElD,OAAO,EAEL,gBAAgB,EAEhB,eAAe,EACf,yBAAyB,GAC1B,MAAM,gBAAgB,CAAC;AAiDxB;;GAEG;AACH,SAAS,2BAA2B,CAClC,IAAe;IAEf,MAAM,SAAS,GAAa,EAAE,CAAC;IAE/B,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,IAAI,GAAG,CAAC,UAAU,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;YACtC,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC;YACjD,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,OAAO,EAAE,CAAC;YAClD,MAAM,OAAO,GAAG,KAAK,GAAG,KAAK,CAAC;YAC9B,IAAI,OAAO,IAAI,CAAC,EAAE,CAAC;gBACjB,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC3B,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,kCAAkC;IAClC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAEhC,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC;IACpD,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IAErD,OAAO;QACL,GAAG,EAAE,SAAS,CAAC,QAAQ,CAAC;QACxB,GAAG,EAAE,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;KACzD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,OAAyB,EACzB,IAAe,EACf,MAAe;IAEf,qBAAqB;IACrB,IAAI,UAAU,GAAkB,IAAI,CAAC;IACrC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACrB,MAAM,OAAO,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC;QACvD,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,CAAC;QACnD,UAAU,GAAG,KAAK,GAAG,OAAO,CAAC;IAC/B,CAAC;IAED,wBAAwB;IACxB,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;IAE9D,gCAAgC;IAChC,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAEvD,yBAAyB;IACzB,MAAM,UAAU,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAElE,MAAM,MAAM,GAAe;QACzB,YAAY,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACtC,iBAAiB,EAAE,yBAAyB;QAC5C,OAAO,EAAE;YACP,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,YAAY,EAAE,OAAO,CAAC,YAAY;YAClC,UAAU,EAAE,OAAO,CAAC,UAAU;YAC9B,QAAQ,EAAE,OAAO,CAAC,QAAQ;YAC1B,WAAW,EAAE,OAAO,CAAC,WAAW;YAChC,SAAS,EAAE,IAAI,CAAC,MAAM;YACtB,WAAW,EAAE,MAAM,CAAC,MAAM;YAC1B,WAAW,EAAE,UAAU;YACvB,UAAU,EAAE,OAAO,CAAC,UAAU;SAC/B;QACD,OAAO,EAAE;YACP,SAAS,EAAE,IAAI,CAAC,MAAM;YACtB,MAAM,EAAE,UAAU;YAClB,cAAc,EAAE,GAAG;YACnB,cAAc,EAAE,GAAG;SACpB;QACD,WAAW,EAAE,UAAU;KACxB,CAAC;IAEF,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAChD,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAExC,OAAO;QACL,QAAQ,EAAE;YACR,IAAI,EAAE,aAAa;YACnB,IAAI,EAAE,aAAa;YACnB,MAAM;SACP;QACD,OAAO;KACR,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,mBAAmB,CACjC,SAAiB,EACjB,SAAiB;IAEjB,MAAM,EAAE,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;IAElC,kCAAkC;IAClC,MAAM,MAAM,GAAG,EAAE;SACd,OAAO,CACN;;;;GAIH,CACE;SACA,GAAG,CAAC,SAAS,CAAY,CAAC;IAE7B,yCAAyC;IACzC,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,MAAM,SAAS,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;QAC1C,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC;IACxC,CAAC;IAED,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;IAClE,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAExC,OAAO;QACL,QAAQ,EAAE;YACR,IAAI,EAAE,qBAAqB;YAC3B,IAAI,EAAE,qBAAqB;YAC3B,MAAM;SACP;QACD,OAAO;KACR,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAClC,QAAuB,EACvB,cAAsB,EACtB,YAA2B;IAE3B,mEAAmE;IACnE,oFAAoF;IACpF,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,0BAA0B,CACxC,SAAiB,EACjB,KAAe;IAEf,MAAM,KAAK,GAAa;QACtB,6BAA6B;QAC7B,gBAAgB,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE;QAC1C,cAAc,SAAS,EAAE;QACzB,wBAAwB,yBAAyB,EAAE;QACnD,EAAE;QACF,UAAU;QACV,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,IAAI,EAAE,CAAC;QAC9C,EAAE;QACF,WAAW;QACX,+BAA+B;KAChC,CAAC;IAEF,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;IACxC,MAAM,MAAM,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IAExC,OAAO;QACL,QAAQ,EAAE;YACR,IAAI,EAAE,oBAAoB;YAC1B,IAAI,EAAE,oBAAoB;YAC1B,MAAM;SACP;QACD,OAAO;KACR,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,SAAiB,EACjB,SAAiB;IAMjB,MAAM,eAAe,GAAa,EAAE,CAAC;IAErC,mBAAmB;IACnB,eAAe,CAAC,IAAI,CAAC,mBAAmB,SAAS,EAAE,CAAC,CAAC;IACrD,MAAM,WAAW,GAAG,IAAI,WAAW,CAAC,SAAS,CAAC,CAAC;IAC/C,MAAM,OAAO,GAAG,WAAW,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC;IAElD,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CAAC,sBAAsB,SAAS,EAAE,CAAC,CAAC;IACrD,CAAC;IAED,eAAe,CAAC,IAAI,CAAC,gCAAgC,OAAO,CAAC,YAAY,EAAE,CAAC,CAAC;IAE7E,gBAAgB;IAChB,MAAM,IAAI,GAAG,WAAW,CAAC,oBAAoB,CAAC,SAAS,CAAC,CAAC;IACzD,eAAe,CAAC,IAAI,CAAC,SAAS,IAAI,CAAC,MAAM,YAAY,CAAC,CAAC;IAEvD,aAAa;IACb,MAAM,EAAE,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;IAClC,MAAM,MAAM,GAAG,EAAE;SACd,OAAO,CAAC,2CAA2C,CAAC;SACpD,GAAG,CAAC,SAAS,CAAY,CAAC;IAC7B,eAAe,CAAC,IAAI,CAAC,SAAS,MAAM,CAAC,MAAM,SAAS,CAAC,CAAC;IAEtD,uBAAuB;IACvB,eAAe,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;IAC/C,MAAM,YAAY,GAAG,sBAAsB,CACzC,OAA2B,EAC3B,IAAI,EACJ,MAAM,CACP,CAAC;IAEF,+BAA+B;IAC/B,eAAe,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC;IACvD,MAAM,SAAS,GAAG,mBAAmB,CAAC,SAAS,EAAE,SAAS,CAAC,CAAC;IAE5D,0BAA0B;IAC1B,eAAe,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;IACtD,MAAM,gBAAgB,GAAG,0BAA0B,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC;IAEhF,iCAAiC;IACjC,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;IAC9D,MAAM,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,2BAA2B,CAAC,IAAI,CAAC,CAAC;IAEvD,MAAM,OAAO,GAAuB;QAClC,SAAS,EAAE,IAAI,CAAC,MAAM;QACtB,MAAM,EAAE,UAAU;QAClB,cAAc,EAAE,GAAG;QACnB,cAAc,EAAE,GAAG;KACpB,CAAC;IAEF,OAAO;QACL,SAAS,EAAE;YACT,MAAM,EAAE,YAAY;YACpB,GAAG,EAAE,SAAS;YACd,UAAU,EAAE,gBAAgB;SAC7B;QACD,OAAO,EAAE,OAA2B;QACpC,OAAO;KACR,CAAC;AACJ,CAAC"}

package/dist/popl/index.d.ts

@@ -0,0 +1,10 @@
+/**
+ * POPL Module Exports (Phase 6.0)
+ *
+ * Public Observable Proof Ledger
+ */
+export { POPL_VERSION, TRUST_LABELS, type TrustLevel, type TargetKind, type RedactionPolicy, type PoplAuthor, type PoplTrust, type PoplTargetIds, type PoplTarget, type PoplCaptureSummary, type PoplMcpClient, type PoplMcpServer, type PoplMcp, type PoplCaptureWindow, type PoplCapture, type PoplArtifact, type PoplEvidencePolicy, type PoplEvidence, type PoplEntry, type PoplDocument, type CreatePoplOptions, type CreatePoplResult, type PoplConfig, } from './types.js';
+export { SANITIZER_RULESET_VERSION, sanitize, sanitizeRpcPayload, sanitizeLogLine, sanitizeRpcEvent, hashValue, hashFileContent, type SanitizeResult, } from './sanitizer.js';
+export { generateStatusArtifact, generateRpcArtifact, generateLogsArtifact, generateValidationArtifact, generateSessionArtifacts, type SessionStatus, type StatusJson, type ArtifactResult, type GeneratedArtifacts, } from './artifacts.js';
+export { hasPoplDir, getPoplDir, getPoplEntriesDir, initPoplDir, loadPoplConfig, createSessionPoplEntry, listPoplEntries, readPoplEntry, } from './service.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/popl/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/popl/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,EACL,YAAY,EACZ,YAAY,EACZ,KAAK,UAAU,EACf,KAAK,UAAU,EACf,KAAK,eAAe,EACpB,KAAK,UAAU,EACf,KAAK,SAAS,EACd,KAAK,aAAa,EAClB,KAAK,UAAU,EACf,KAAK,kBAAkB,EACvB,KAAK,aAAa,EAClB,KAAK,aAAa,EAClB,KAAK,OAAO,EACZ,KAAK,iBAAiB,EACtB,KAAK,WAAW,EAChB,KAAK,YAAY,EACjB,KAAK,kBAAkB,EACvB,KAAK,YAAY,EACjB,KAAK,SAAS,EACd,KAAK,YAAY,EACjB,KAAK,iBAAiB,EACtB,KAAK,gBAAgB,EACrB,KAAK,UAAU,GAChB,MAAM,YAAY,CAAC;AAGpB,OAAO,EACL,yBAAyB,EACzB,QAAQ,EACR,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,SAAS,EACT,eAAe,EACf,KAAK,cAAc,GACpB,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EACL,sBAAsB,EACtB,mBAAmB,EACnB,oBAAoB,EACpB,0BAA0B,EAC1B,wBAAwB,EACxB,KAAK,aAAa,EAClB,KAAK,UAAU,EACf,KAAK,cAAc,EACnB,KAAK,kBAAkB,GACxB,MAAM,gBAAgB,CAAC;AAGxB,OAAO,EACL,UAAU,EACV,UAAU,EACV,iBAAiB,EACjB,WAAW,EACX,cAAc,EACd,sBAAsB,EACtB,eAAe,EACf,aAAa,GACd,MAAM,cAAc,CAAC"}

package/dist/popl/index.js

@@ -0,0 +1,14 @@
+/**
+ * POPL Module Exports (Phase 6.0)
+ *
+ * Public Observable Proof Ledger
+ */
+// Types
+export { POPL_VERSION, TRUST_LABELS, } from './types.js';
+// Sanitizer
+export { SANITIZER_RULESET_VERSION, sanitize, sanitizeRpcPayload, sanitizeLogLine, sanitizeRpcEvent, hashValue, hashFileContent, } from './sanitizer.js';
+// Artifacts
+export { generateStatusArtifact, generateRpcArtifact, generateLogsArtifact, generateValidationArtifact, generateSessionArtifacts, } from './artifacts.js';
+// Service
+export { hasPoplDir, getPoplDir, getPoplEntriesDir, initPoplDir, loadPoplConfig, createSessionPoplEntry, listPoplEntries, readPoplEntry, } from './service.js';
+//# sourceMappingURL=index.js.map

package/dist/popl/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/popl/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,QAAQ;AACR,OAAO,EACL,YAAY,EACZ,YAAY,GAsBb,MAAM,YAAY,CAAC;AAEpB,YAAY;AACZ,OAAO,EACL,yBAAyB,EACzB,QAAQ,EACR,kBAAkB,EAClB,eAAe,EACf,gBAAgB,EAChB,SAAS,EACT,eAAe,GAEhB,MAAM,gBAAgB,CAAC;AAExB,YAAY;AACZ,OAAO,EACL,sBAAsB,EACtB,mBAAmB,EACnB,oBAAoB,EACpB,0BAA0B,EAC1B,wBAAwB,GAKzB,MAAM,gBAAgB,CAAC;AAExB,UAAU;AACV,OAAO,EACL,UAAU,EACV,UAAU,EACV,iBAAiB,EACjB,WAAW,EACX,cAAc,EACd,sBAAsB,EACtB,eAAe,EACf,aAAa,GACd,MAAM,cAAc,CAAC"}

package/dist/popl/sanitizer.d.ts

@@ -0,0 +1,86 @@
+/**
+ * POPL Sanitizer (Phase 6.0)
+ *
+ * Sanitization ruleset v1 for public disclosure safety.
+ *
+ * Rules:
+ * 1. Path removal - Windows and POSIX absolute paths
+ * 2. Secret token removal - Authorization, Bearer, api_key, token, secret
+ * 3. RPC payload handling - Replace values with hashes, keep key structure
+ */
+/** Current sanitization ruleset version */
+export declare const SANITIZER_RULESET_VERSION = 1;
+/**
+ * Result of sanitization
+ */
+export interface SanitizeResult {
+    /** Sanitized value */
+    value: unknown;
+    /** Number of items redacted */
+    redactedCount: number;
+    /** Categories of redactions made */
+    redactedCategories: Set<'path' | 'secret' | 'value'>;
+}
+/**
+ * Compute SHA-256 hash of a value (first 16 chars)
+ */
+export declare function hashValue(value: unknown): string;
+/**
+ * Sanitize a JSON-like value for public disclosure.
+ *
+ * @param value - Any JSON-serializable value
+ * @param options - Sanitization options
+ * @returns Sanitized value and statistics
+ */
+export declare function sanitize(value: unknown, options?: {
+    deep?: boolean;
+    context?: {
+        key?: string;
+    };
+}): SanitizeResult;
+/**
+ * Sanitize RPC payload for public disclosure.
+ *
+ * This is more aggressive than general sanitization:
+ * - Replaces all argument values with hashes
+ * - Keeps key structure for auditability
+ * - Stores original hash for verification
+ *
+ * @param payload - RPC arguments or result
+ * @returns Sanitized structure with hashes
+ */
+export declare function sanitizeRpcPayload(payload: Record<string, unknown> | null | undefined): {
+    sanitized: Record<string, unknown> | null;
+    payload_sha256: string;
+    keys: string[];
+};
+/**
+ * Sanitize a log line for public disclosure.
+ *
+ * @param line - Log line object
+ * @returns Sanitized log line
+ */
+export declare function sanitizeLogLine(line: Record<string, unknown>): Record<string, unknown>;
+/**
+ * Sanitize RPC event for public disclosure.
+ *
+ * @param event - RPC event object from events.db
+ * @returns Sanitized event
+ */
+export declare function sanitizeRpcEvent(event: {
+    event_id: string;
+    session_id: string;
+    rpc_id: string | null;
+    direction: string;
+    kind: string;
+    ts: string;
+    seq: number | null;
+    summary: string | null;
+    payload_hash: string | null;
+    raw_json: string | null;
+}): Record<string, unknown>;
+/**
+ * Compute SHA-256 hash of file contents
+ */
+export declare function hashFileContent(content: string | Buffer): string;
+//# sourceMappingURL=sanitizer.d.ts.map

package/dist/popl/sanitizer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sanitizer.d.ts","sourceRoot":"","sources":["../../src/popl/sanitizer.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAIH,2CAA2C;AAC3C,eAAO,MAAM,yBAAyB,IAAI,CAAC;AAqE3C;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,sBAAsB;IACtB,KAAK,EAAE,OAAO,CAAC;IACf,+BAA+B;IAC/B,aAAa,EAAE,MAAM,CAAC;IACtB,oCAAoC;IACpC,kBAAkB,EAAE,GAAG,CAAC,MAAM,GAAG,QAAQ,GAAG,OAAO,CAAC,CAAC;CACtD;AAsCD;;GAEG;AACH,wBAAgB,SAAS,CAAC,KAAK,EAAE,OAAO,GAAG,MAAM,CAIhD;AAED;;;;;;GAMG;AACH,wBAAgB,QAAQ,CACtB,KAAK,EAAE,OAAO,EACd,OAAO,GAAE;IAAE,IAAI,CAAC,EAAE,OAAO,CAAC;IAAC,OAAO,CAAC,EAAE;QAAE,GAAG,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAAO,GAC3D,cAAc,CAwDhB;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,kBAAkB,CAChC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,GAAG,SAAS,GAClD;IACD,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IAC1C,cAAc,EAAE,MAAM,CAAC;IACvB,IAAI,EAAE,MAAM,EAAE,CAAC;CAChB,CAyBA;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,CAC7B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC5B,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAGzB;AAED;;;;;GAKG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE;IACtC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IACnB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;CACzB,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAoD1B;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,CAEhE"}