pseudonym-mcp 0.1.0

package/dist/core/engine.js

@@ -0,0 +1,110 @@
+import { MappingStore } from './mapping-store.js';
+import { OllamaClient } from './ollama-client.js';
+import { ConfigManager } from '../config/manager.js';
+import { EnglishRules } from '../languages/en/rules.js';
+import { PolishRules } from '../languages/pl/rules.js';
+const LANGUAGE_MAP = {
+    en: EnglishRules,
+    pl: PolishRules,
+};
+/**
+ * Main orchestrator. Coordinates regex-based masking and optional Ollama LLM NER.
+ *
+ * @param store       - Optional pre-constructed MappingStore (useful for session reuse)
+ * @param ollamaClientOverride - Pass an OllamaClient (or null) to override auto-creation.
+ *                               Used in tests to inject mocks without vi.mock hoisting.
+ */
+export class Engine {
+    store;
+    ollamaClient;
+    constructor(store, ollamaClientOverride) {
+        this.store = store ?? new MappingStore();
+        if (ollamaClientOverride !== undefined) {
+            // Explicit injection (tests pass mock or null here)
+            this.ollamaClient = ollamaClientOverride;
+        }
+        else {
+            const cfg = ConfigManager.getInstance().get();
+            const needsLlm = cfg.engines === 'hybrid' || cfg.engines === 'llm';
+            this.ollamaClient = needsLlm
+                ? new OllamaClient({ baseUrl: cfg.ollamaBaseUrl, model: cfg.ollamaModel })
+                : null;
+        }
+    }
+    getStore() {
+        return this.store;
+    }
+    /**
+     * Pseudonymize sensitive data in the given text.
+     *
+     * Phase 1 (regex | hybrid): Apply pattern-based masking for structured data
+     *   (PESEL, IBAN, email, phone).
+     * Phase 2 (llm | hybrid): Call Ollama NER to detect PERSON / ORG names.
+     *   If Ollama is unavailable, this phase is silently skipped.
+     */
+    async process(text) {
+        const cfg = ConfigManager.getInstance().get();
+        const rules = LANGUAGE_MAP[cfg.lang] ?? EnglishRules;
+        let result = text;
+        if (cfg.engines === 'regex' || cfg.engines === 'hybrid') {
+            result = this.applyRegexRules(result, rules, cfg.strictValidation);
+        }
+        if ((cfg.engines === 'llm' || cfg.engines === 'hybrid') &&
+            this.ollamaClient !== null) {
+            result = await this.applyLlmNer(result);
+        }
+        return result;
+    }
+    applyRegexRules(text, rules, strictValidation) {
+        let result = text;
+        for (const patternDef of rules.patterns) {
+            // Clone the regex to reset lastIndex — /g regexes are stateful
+            const regex = new RegExp(patternDef.regex.source, patternDef.regex.flags);
+            result = result.replace(regex, (match) => {
+                if (patternDef.validate && strictValidation) {
+                    const clean = match.replace(/\s/g, '');
+                    if (!patternDef.validate(clean))
+                        return match;
+                }
+                return this.store.add(patternDef.tag, match);
+            });
+        }
+        return result;
+    }
+    async applyLlmNer(text) {
+        let entities;
+        try {
+            entities = await this.ollamaClient.extractEntities(text);
+        }
+        catch (err) {
+            process.stderr.write(`[pseudonym-mcp] Ollama NER failed (skipping LLM phase): ${String(err)}\n`);
+            return text;
+        }
+        if (entities.length === 0)
+            return text;
+        let result = text;
+        // Sort longest-first to prevent partial matches
+        // e.g. "Auto-Lux International" must be replaced before "Auto-Lux"
+        const sorted = [...entities].sort((a, b) => b.value.length - a.value.length);
+        for (const entity of sorted) {
+            const val = entity.value.trim();
+            if (!val)
+                continue;
+            // Escape regex special characters in the entity value
+            const escaped = val.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+            const re = new RegExp(escaped, 'g');
+            result = result.replace(re, () => this.store.add(entity.type, val));
+        }
+        return result;
+    }
+    /**
+     * Restore all [TAG:N] tokens in text to their original values.
+     * Tokens not found in the store are left unchanged.
+     */
+    revert(text) {
+        return text.replace(/\[[A-Z]+:\d+\]/g, (token) => {
+            return this.store.get(token) ?? token;
+        });
+    }
+}
+//# sourceMappingURL=engine.js.map

package/dist/core/engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../src/core/engine.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAA;AACjD,OAAO,EAAE,YAAY,EAAqB,MAAM,oBAAoB,CAAA;AACpE,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAA;AAEpD,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAA;AACvD,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAA;AAEtD,MAAM,YAAY,GAAkC;IAClD,EAAE,EAAE,YAAY;IAChB,EAAE,EAAE,WAAW;CAChB,CAAA;AAED;;;;;;GAMG;AACH,MAAM,OAAO,MAAM;IACA,KAAK,CAAc;IACnB,YAAY,CAAqB;IAElD,YACE,KAAoB,EACpB,oBAA0C;QAE1C,IAAI,CAAC,KAAK,GAAG,KAAK,IAAI,IAAI,YAAY,EAAE,CAAA;QAExC,IAAI,oBAAoB,KAAK,SAAS,EAAE,CAAC;YACvC,oDAAoD;YACpD,IAAI,CAAC,YAAY,GAAG,oBAAoB,CAAA;QAC1C,CAAC;aAAM,CAAC;YACN,MAAM,GAAG,GAAG,aAAa,CAAC,WAAW,EAAE,CAAC,GAAG,EAAE,CAAA;YAC7C,MAAM,QAAQ,GAAG,GAAG,CAAC,OAAO,KAAK,QAAQ,IAAI,GAAG,CAAC,OAAO,KAAK,KAAK,CAAA;YAClE,IAAI,CAAC,YAAY,GAAG,QAAQ;gBAC1B,CAAC,CAAC,IAAI,YAAY,CAAC,EAAE,OAAO,EAAE,GAAG,CAAC,aAAa,EAAE,KAAK,EAAE,GAAG,CAAC,WAAW,EAAE,CAAC;gBAC1E,CAAC,CAAC,IAAI,CAAA;QACV,CAAC;IACH,CAAC;IAED,QAAQ;QACN,OAAO,IAAI,CAAC,KAAK,CAAA;IACnB,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,GAAG,GAAG,aAAa,CAAC,WAAW,EAAE,CAAC,GAAG,EAAE,CAAA;QAC7C,MAAM,KAAK,GAAG,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,YAAY,CAAA;QAEpD,IAAI,MAAM,GAAG,IAAI,CAAA;QAEjB,IAAI,GAAG,CAAC,OAAO,KAAK,OAAO,IAAI,GAAG,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YACxD,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,KAAK,EAAE,GAAG,CAAC,gBAAgB,CAAC,CAAA;QACpE,CAAC;QAED,IACE,CAAC,GAAG,CAAC,OAAO,KAAK,KAAK,IAAI,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC;YACnD,IAAI,CAAC,YAAY,KAAK,IAAI,EAC1B,CAAC;YACD,MAAM,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAA;QACzC,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAEO,eAAe,CACrB,IAAY,EACZ,KAAoB,EACpB,gBAAyB;QAEzB,IAAI,MAAM,GAAG,IAAI,CAAA;QAEjB,KAAK,MAAM,UAAU,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;YACxC,+DAA+D;YAC/D,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,CAAC,KAAK,CAAC,KAAK,CAAC,CAAA;YAEzE,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,KAAK,EAAE,EAAE;gBACvC,IAAI,UAAU,CAAC,QAAQ,IAAI,gBAAgB,EAAE,CAAC;oBAC5C,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAA;oBACtC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,CAAC;wBAAE,OAAO,KAAK,CAAA;gBAC/C,CAAC;gBACD,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,EAAE,KAAK,CAAC,CAAA;YAC9C,CAAC,CAAC,CAAA;QACJ,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAEO,KAAK,CAAC,WAAW,CAAC,IAAY;QACpC,IAAI,QAAwB,CAAA;QAC5B,IAAI,CAAC;YACH,QAAQ,GAAG,MAAM,IAAI,CAAC,YAAa,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;QAC3D,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,2DAA2D,MAAM,CAAC,GAAG,CAAC,IAAI,CAC3E,CAAA;YACD,OAAO,IAAI,CAAA;QACb,CAAC;QAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAA;QAEtC,IAAI,MAAM,GAAG,IAAI,CAAA;QAEjB,gDAAgD;QAChD,mEAAmE;QACnE,MAAM,MAAM,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAA;QAE5E,KAAK,MAAM,MAAM,IAAI,MAAM,EAAE,CAAC;YAC5B,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,IAAI,EAAE,CAAA;YAC/B,IAAI,CAAC,GAAG;gBAAE,SAAQ;YAClB,sDAAsD;YACtD,MAAM,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAA;YAC1D,MAAM,EAAE,GAAG,IAAI,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,CAAA;YACnC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,EAAE,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,CAAA;QACrE,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAED;;;OAGG;IACH,MAAM,CAAC,IAAY;QACjB,OAAO,IAAI,CAAC,OAAO,CAAC,iBAAiB,EAAE,CAAC,KAAK,EAAE,EAAE;YAC/C,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,KAAK,CAAA;QACvC,CAAC,CAAC,CAAA;IACJ,CAAC;CACF"}

package/dist/core/mapping-store.d.ts

@@ -0,0 +1,24 @@
+/**
+ * Session-isolated store that maps [TAG:N] tokens to their original values.
+ *
+ * The `add()` method is idempotent: if the same original value is added
+ * under the same tag more than once, the existing token is returned,
+ * preserving reference coherence in the masked text.
+ */
+export declare class MappingStore {
+    private readonly sessionId;
+    private readonly store;
+    private readonly counters;
+    constructor(sessionId?: string);
+    getSessionId(): string;
+    /**
+     * Register an original value and return its token `[TAG:N]`.
+     * If the same original+tag combination was already registered,
+     * the existing token is returned (idempotent).
+     */
+    add(tag: string, original: string): string;
+    get(token: string): string | undefined;
+    getAll(): ReadonlyMap<string, string>;
+    clear(): void;
+}
+//# sourceMappingURL=mapping-store.d.ts.map

package/dist/core/mapping-store.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"mapping-store.d.ts","sourceRoot":"","sources":["../../src/core/mapping-store.ts"],"names":[],"mappings":"AAEA;;;;;;GAMG;AACH,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAQ;IAClC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAA4B;IAClD,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAA4B;gBAEzC,SAAS,CAAC,EAAE,MAAM;IAI9B,YAAY,IAAI,MAAM;IAItB;;;;OAIG;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM;IAa1C,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS;IAItC,MAAM,IAAI,WAAW,CAAC,MAAM,EAAE,MAAM,CAAC;IAIrC,KAAK,IAAI,IAAI;CAId"}

package/dist/core/mapping-store.js

@@ -0,0 +1,47 @@
+import { randomUUID } from 'node:crypto';
+/**
+ * Session-isolated store that maps [TAG:N] tokens to their original values.
+ *
+ * The `add()` method is idempotent: if the same original value is added
+ * under the same tag more than once, the existing token is returned,
+ * preserving reference coherence in the masked text.
+ */
+export class MappingStore {
+    sessionId;
+    store = new Map();
+    counters = new Map();
+    constructor(sessionId) {
+        this.sessionId = sessionId ?? randomUUID();
+    }
+    getSessionId() {
+        return this.sessionId;
+    }
+    /**
+     * Register an original value and return its token `[TAG:N]`.
+     * If the same original+tag combination was already registered,
+     * the existing token is returned (idempotent).
+     */
+    add(tag, original) {
+        for (const [token, value] of this.store) {
+            if (value === original && token.startsWith(`[${tag}:`)) {
+                return token;
+            }
+        }
+        const n = (this.counters.get(tag) ?? 0) + 1;
+        this.counters.set(tag, n);
+        const token = `[${tag}:${n}]`;
+        this.store.set(token, original);
+        return token;
+    }
+    get(token) {
+        return this.store.get(token);
+    }
+    getAll() {
+        return this.store;
+    }
+    clear() {
+        this.store.clear();
+        this.counters.clear();
+    }
+}
+//# sourceMappingURL=mapping-store.js.map

package/dist/core/mapping-store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mapping-store.js","sourceRoot":"","sources":["../../src/core/mapping-store.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAExC;;;;;;GAMG;AACH,MAAM,OAAO,YAAY;IACN,SAAS,CAAQ;IACjB,KAAK,GAAG,IAAI,GAAG,EAAkB,CAAA;IACjC,QAAQ,GAAG,IAAI,GAAG,EAAkB,CAAA;IAErD,YAAY,SAAkB;QAC5B,IAAI,CAAC,SAAS,GAAG,SAAS,IAAI,UAAU,EAAE,CAAA;IAC5C,CAAC;IAED,YAAY;QACV,OAAO,IAAI,CAAC,SAAS,CAAA;IACvB,CAAC;IAED;;;;OAIG;IACH,GAAG,CAAC,GAAW,EAAE,QAAgB;QAC/B,KAAK,MAAM,CAAC,KAAK,EAAE,KAAK,CAAC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;YACxC,IAAI,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,UAAU,CAAC,IAAI,GAAG,GAAG,CAAC,EAAE,CAAC;gBACvD,OAAO,KAAK,CAAA;YACd,CAAC;QACH,CAAC;QACD,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAA;QAC3C,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,CAAA;QACzB,MAAM,KAAK,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,CAAA;QAC7B,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAA;QAC/B,OAAO,KAAK,CAAA;IACd,CAAC;IAED,GAAG,CAAC,KAAa;QACf,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;IAC9B,CAAC;IAED,MAAM;QACJ,OAAO,IAAI,CAAC,KAAK,CAAA;IACnB,CAAC;IAED,KAAK;QACH,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAA;QAClB,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAA;IACvB,CAAC;CACF"}

package/dist/core/ollama-client.d.ts

@@ -0,0 +1,21 @@
+export interface OllamaEntity {
+    type: 'PERSON' | 'ORG';
+    value: string;
+}
+export interface OllamaClientOptions {
+    baseUrl: string;
+    model: string;
+    timeoutMs?: number;
+}
+/**
+ * Thin wrapper around the Ollama /api/chat endpoint.
+ * Designed to be injected into Engine so it can be mocked in tests.
+ */
+export declare class OllamaClient {
+    private readonly baseUrl;
+    private readonly model;
+    private readonly timeoutMs;
+    constructor(opts: OllamaClientOptions);
+    extractEntities(text: string): Promise<OllamaEntity[]>;
+}
+//# sourceMappingURL=ollama-client.d.ts.map

package/dist/core/ollama-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ollama-client.d.ts","sourceRoot":"","sources":["../../src/core/ollama-client.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,QAAQ,GAAG,KAAK,CAAA;IACtB,KAAK,EAAE,MAAM,CAAA;CACd;AAED,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,MAAM,CAAA;IACf,KAAK,EAAE,MAAM,CAAA;IACb,SAAS,CAAC,EAAE,MAAM,CAAA;CACnB;AAQD;;;GAGG;AACH,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAQ;IAChC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAQ;IAC9B,OAAO,CAAC,QAAQ,CAAC,SAAS,CAAQ;gBAEtB,IAAI,EAAE,mBAAmB;IAM/B,eAAe,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC;CAqD7D"}

package/dist/core/ollama-client.js

@@ -0,0 +1,67 @@
+const SYSTEM_PROMPT = `You are a Named Entity Recognition engine.
+Extract all PERSON names and ORGANIZATION names from the user's text.
+Return ONLY a JSON array of objects with this exact shape:
+[{"type":"PERSON","value":"..."}, {"type":"ORG","value":"..."}]
+Do not return any text outside the JSON array. If no entities are found, return [].`;
+/**
+ * Thin wrapper around the Ollama /api/chat endpoint.
+ * Designed to be injected into Engine so it can be mocked in tests.
+ */
+export class OllamaClient {
+    baseUrl;
+    model;
+    timeoutMs;
+    constructor(opts) {
+        this.baseUrl = opts.baseUrl;
+        this.model = opts.model;
+        this.timeoutMs = opts.timeoutMs ?? 10_000;
+    }
+    async extractEntities(text) {
+        const controller = new AbortController();
+        const timeout = setTimeout(() => controller.abort(), this.timeoutMs);
+        let res;
+        try {
+            res = await fetch(`${this.baseUrl}/api/chat`, {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                signal: controller.signal,
+                body: JSON.stringify({
+                    model: this.model,
+                    stream: false,
+                    messages: [
+                        { role: 'system', content: SYSTEM_PROMPT },
+                        { role: 'user', content: text },
+                    ],
+                }),
+            });
+        }
+        finally {
+            clearTimeout(timeout);
+        }
+        if (!res.ok) {
+            throw new Error(`Ollama returned HTTP ${res.status}`);
+        }
+        const data = (await res.json());
+        const content = data?.message?.content ?? '[]';
+        // Robustly extract the JSON array even if the LLM wraps it in prose
+        const jsonMatch = content.match(/\[[\s\S]*\]/);
+        if (!jsonMatch)
+            return [];
+        let parsed;
+        try {
+            parsed = JSON.parse(jsonMatch[0]);
+        }
+        catch {
+            return [];
+        }
+        return parsed.filter((e) => typeof e === 'object' &&
+            e !== null &&
+            'type' in e &&
+            'value' in e &&
+            (e.type === 'PERSON' ||
+                e.type === 'ORG') &&
+            typeof e.value === 'string' &&
+            e.value.trim().length > 0);
+    }
+}
+//# sourceMappingURL=ollama-client.js.map

package/dist/core/ollama-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ollama-client.js","sourceRoot":"","sources":["../../src/core/ollama-client.ts"],"names":[],"mappings":"AAWA,MAAM,aAAa,GAAG;;;;oFAI8D,CAAA;AAEpF;;;GAGG;AACH,MAAM,OAAO,YAAY;IACN,OAAO,CAAQ;IACf,KAAK,CAAQ;IACb,SAAS,CAAQ;IAElC,YAAY,IAAyB;QACnC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,OAAO,CAAA;QAC3B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAA;QACvB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,MAAM,CAAA;IAC3C,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,IAAY;QAChC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAA;QACxC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,SAAS,CAAC,CAAA;QAEpE,IAAI,GAAa,CAAA;QACjB,IAAI,CAAC;YACH,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,IAAI,CAAC,OAAO,WAAW,EAAE;gBAC5C,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;gBAC/C,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,KAAK,EAAE,IAAI,CAAC,KAAK;oBACjB,MAAM,EAAE,KAAK;oBACb,QAAQ,EAAE;wBACR,EAAE,IAAI,EAAE,QAAQ,EAAE,OAAO,EAAE,aAAa,EAAE;wBAC1C,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE;qBAChC;iBACF,CAAC;aACH,CAAC,CAAA;QACJ,CAAC;gBAAS,CAAC;YACT,YAAY,CAAC,OAAO,CAAC,CAAA;QACvB,CAAC;QAED,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,MAAM,IAAI,KAAK,CAAC,wBAAwB,GAAG,CAAC,MAAM,EAAE,CAAC,CAAA;QACvD,CAAC;QAED,MAAM,IAAI,GAAG,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAuC,CAAA;QACrE,MAAM,OAAO,GAAG,IAAI,EAAE,OAAO,EAAE,OAAO,IAAI,IAAI,CAAA;QAE9C,oEAAoE;QACpE,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,CAAA;QAC9C,IAAI,CAAC,SAAS;YAAE,OAAO,EAAE,CAAA;QAEzB,IAAI,MAAiB,CAAA;QACrB,IAAI,CAAC;YACH,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAc,CAAA;QAChD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,CAAA;QACX,CAAC;QAED,OAAO,MAAM,CAAC,MAAM,CAClB,CAAC,CAAC,EAAqB,EAAE,CACvB,OAAO,CAAC,KAAK,QAAQ;YACrB,CAAC,KAAK,IAAI;YACV,MAAM,IAAI,CAAC;YACX,OAAO,IAAI,CAAC;YACZ,CAAE,CAA6B,CAAC,IAAI,KAAK,QAAQ;gBAC9C,CAA6B,CAAC,IAAI,KAAK,KAAK,CAAC;YAChD,OAAQ,CAA6B,CAAC,KAAK,KAAK,QAAQ;YACtD,CAA6B,CAAC,KAAgB,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CACrE,CAAA;IACH,CAAC;CACF"}

package/dist/languages/en/rules.d.ts

@@ -0,0 +1,3 @@
+import type { LanguageRules } from '../types.js';
+export declare const EnglishRules: LanguageRules;
+//# sourceMappingURL=rules.d.ts.map

package/dist/languages/en/rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.d.ts","sourceRoot":"","sources":["../../../src/languages/en/rules.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;AAwChD,eAAO,MAAM,YAAY,EAAE,aA0B1B,CAAA"}

package/dist/languages/en/rules.js

@@ -0,0 +1,69 @@
+/**
+ * Luhn algorithm for credit card number validation.
+ * Strips spaces and dashes, verifies the checksum digit.
+ */
+function luhnCheck(number) {
+    const digits = number.replace(/[\s-]/g, '');
+    if (!/^\d{13,19}$/.test(digits))
+        return false;
+    let sum = 0;
+    let double = false;
+    for (let i = digits.length - 1; i >= 0; i--) {
+        let digit = Number(digits[i]);
+        if (double) {
+            digit *= 2;
+            if (digit > 9)
+                digit -= 9;
+        }
+        sum += digit;
+        double = !double;
+    }
+    return sum % 10 === 0;
+}
+/**
+ * Basic SSN area-number validation.
+ * Rejects known invalid patterns: area 000, 666, 900-999.
+ */
+function ssnValidate(ssn) {
+    const clean = ssn.replace(/[\s-]/g, '');
+    if (!/^\d{9}$/.test(clean))
+        return false;
+    const area = parseInt(clean.substring(0, 3), 10);
+    const group = parseInt(clean.substring(3, 5), 10);
+    const serial = parseInt(clean.substring(5, 9), 10);
+    if (area === 0 || area === 666 || area >= 900)
+        return false;
+    if (group === 0)
+        return false;
+    if (serial === 0)
+        return false;
+    return true;
+}
+export const EnglishRules = {
+    patterns: [
+        {
+            tag: 'SSN',
+            // US Social Security Number: XXX-XX-XXXX (with required dashes to avoid false positives)
+            regex: /\b\d{3}-\d{2}-\d{4}\b/g,
+            validate: ssnValidate,
+        },
+        {
+            tag: 'CREDIT_CARD',
+            // 13–19 digits, optionally separated by spaces or dashes in groups of 4
+            // Covers Visa (4xxx), Mastercard (5[1-5]xx, 2[2-7]xx), Amex (3[47]x), Discover (6xxx)
+            regex: /\b(?:\d[ -]*?){13,19}\b/g,
+            validate: luhnCheck,
+        },
+        {
+            tag: 'EMAIL',
+            regex: /\b[a-zA-Z0-9._%+\-]+@[a-zA-Z0-9.\-]+\.[a-zA-Z]{2,}\b/g,
+        },
+        {
+            tag: 'PHONE',
+            // US/international phone formats:
+            // +1 (XXX) XXX-XXXX, +1-XXX-XXX-XXXX, (XXX) XXX-XXXX, XXX-XXX-XXXX, XXX.XXX.XXXX
+            regex: /(?:\+1[\s.-]?)?\(?\d{3}\)?[\s.-]\d{3}[\s.-]\d{4}\b/g,
+        },
+    ],
+};
+//# sourceMappingURL=rules.js.map

package/dist/languages/en/rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.js","sourceRoot":"","sources":["../../../src/languages/en/rules.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,SAAS,SAAS,CAAC,MAAc;IAC/B,MAAM,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAA;IAC3C,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC;QAAE,OAAO,KAAK,CAAA;IAE7C,IAAI,GAAG,GAAG,CAAC,CAAA;IACX,IAAI,MAAM,GAAG,KAAK,CAAA;IAClB,KAAK,IAAI,CAAC,GAAG,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;QAC5C,IAAI,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAA;QAC7B,IAAI,MAAM,EAAE,CAAC;YACX,KAAK,IAAI,CAAC,CAAA;YACV,IAAI,KAAK,GAAG,CAAC;gBAAE,KAAK,IAAI,CAAC,CAAA;QAC3B,CAAC;QACD,GAAG,IAAI,KAAK,CAAA;QACZ,MAAM,GAAG,CAAC,MAAM,CAAA;IAClB,CAAC;IACD,OAAO,GAAG,GAAG,EAAE,KAAK,CAAC,CAAA;AACvB,CAAC;AAED;;;GAGG;AACH,SAAS,WAAW,CAAC,GAAW;IAC9B,MAAM,KAAK,GAAG,GAAG,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAA;IACvC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACxC,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;IAChD,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;IACjD,MAAM,MAAM,GAAG,QAAQ,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAA;IAClD,IAAI,IAAI,KAAK,CAAC,IAAI,IAAI,KAAK,GAAG,IAAI,IAAI,IAAI,GAAG;QAAE,OAAO,KAAK,CAAA;IAC3D,IAAI,KAAK,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IAC7B,IAAI,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IAC9B,OAAO,IAAI,CAAA;AACb,CAAC;AAED,MAAM,CAAC,MAAM,YAAY,GAAkB;IACzC,QAAQ,EAAE;QACR;YACE,GAAG,EAAE,KAAK;YACV,yFAAyF;YACzF,KAAK,EAAE,wBAAwB;YAC/B,QAAQ,EAAE,WAAW;SACtB;QACD;YACE,GAAG,EAAE,aAAa;YAClB,wEAAwE;YACxE,sFAAsF;YACtF,KAAK,EAAE,0BAA0B;YACjC,QAAQ,EAAE,SAAS;SACpB;QACD;YACE,GAAG,EAAE,OAAO;YACZ,KAAK,EAAE,uDAAuD;SAC/D;QACD;YACE,GAAG,EAAE,OAAO;YACZ,kCAAkC;YAClC,iFAAiF;YACjF,KAAK,EAAE,qDAAqD;SAC7D;KACF;CACF,CAAA"}

package/dist/languages/pl/rules.d.ts

@@ -0,0 +1,3 @@
+import type { LanguageRules } from '../types.js';
+export declare const PolishRules: LanguageRules;
+//# sourceMappingURL=rules.d.ts.map

package/dist/languages/pl/rules.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.d.ts","sourceRoot":"","sources":["../../../src/languages/pl/rules.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,aAAa,CAAA;AAgBhD,eAAO,MAAM,WAAW,EAAE,aA4BzB,CAAA"}

package/dist/languages/pl/rules.js

@@ -0,0 +1,44 @@
+/**
+ * Validates a Polish PESEL number using the official checksum algorithm.
+ * Weights: [1, 3, 7, 9, 1, 3, 7, 9, 1, 3]
+ * Check digit = (10 - (weighted_sum % 10)) % 10
+ */
+function peselChecksum(pesel) {
+    if (!/^\d{11}$/.test(pesel))
+        return false;
+    const weights = [1, 3, 7, 9, 1, 3, 7, 9, 1, 3];
+    const digits = pesel.split('').map(Number);
+    const sum = weights.reduce((acc, w, i) => acc + w * digits[i], 0);
+    const check = (10 - (sum % 10)) % 10;
+    return check === digits[10];
+}
+export const PolishRules = {
+    patterns: [
+        {
+            tag: 'PESEL',
+            // Matches exactly 11 consecutive digits NOT adjacent to another digit
+            regex: /(?<!\d)\d{11}(?!\d)/g,
+            validate: peselChecksum,
+        },
+        {
+            tag: 'IBAN',
+            // Matches PL + 26 digits (2 check + 24 BBAN), optionally space-separated every 4 chars
+            // e.g. PL27114020040000300201355387 or PL 27 1140 2004 0000 3002 0135 5387
+            // Structure: PL + \d{2} (check) + (\d{4}){6} (24 BBAN) = 26 total digits
+            regex: /\bPL\s*\d{2}\s*(?:\d{4}\s*){6}\b/gi,
+        },
+        {
+            tag: 'EMAIL',
+            regex: /\b[a-zA-Z0-9._%+\-]+@[a-zA-Z0-9.\-]+\.[a-zA-Z]{2,}\b/g,
+        },
+        {
+            tag: 'PHONE',
+            // Three alternatives:
+            // 1. International prefix: +48 or 0048, then 9 digits (with optional spaces/dashes)
+            // 2. 9-digit mobile starting with 4–8 (Polish numbering plan)
+            // 3. Landline with area code in parens: (XX) XXX-XX-XX
+            regex: /(?:\+48|0048)[\s\-]?\d{3}[\s\-]?\d{3}[\s\-]?\d{3}|\b[4-8]\d{2}[\s\-]?\d{3}[\s\-]?\d{3}\b|\(\d{2}\)[\s\-]?\d{3}[\s\-]?\d{2}[\s\-]?\d{2}/g,
+        },
+    ],
+};
+//# sourceMappingURL=rules.js.map

package/dist/languages/pl/rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.js","sourceRoot":"","sources":["../../../src/languages/pl/rules.ts"],"names":[],"mappings":"AAEA;;;;GAIG;AACH,SAAS,aAAa,CAAC,KAAa;IAClC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACzC,MAAM,OAAO,GAAG,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,CAAA;IAC9C,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;IAC1C,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAA;IACjE,MAAM,KAAK,GAAG,CAAC,EAAE,GAAG,CAAC,GAAG,GAAG,EAAE,CAAC,CAAC,GAAG,EAAE,CAAA;IACpC,OAAO,KAAK,KAAK,MAAM,CAAC,EAAE,CAAC,CAAA;AAC7B,CAAC;AAED,MAAM,CAAC,MAAM,WAAW,GAAkB;IACxC,QAAQ,EAAE;QACR;YACE,GAAG,EAAE,OAAO;YACZ,sEAAsE;YACtE,KAAK,EAAE,sBAAsB;YAC7B,QAAQ,EAAE,aAAa;SACxB;QACD;YACE,GAAG,EAAE,MAAM;YACX,uFAAuF;YACvF,2EAA2E;YAC3E,yEAAyE;YACzE,KAAK,EAAE,oCAAoC;SAC5C;QACD;YACE,GAAG,EAAE,OAAO;YACZ,KAAK,EAAE,uDAAuD;SAC/D;QACD;YACE,GAAG,EAAE,OAAO;YACZ,sBAAsB;YACtB,oFAAoF;YACpF,8DAA8D;YAC9D,uDAAuD;YACvD,KAAK,EAAE,yIAAyI;SACjJ;KACF;CACF,CAAA"}

package/dist/languages/types.d.ts

@@ -0,0 +1,12 @@
+export interface PatternDef {
+    /** Tag name used in replacement tokens, e.g. "PESEL", "PHONE" */
+    tag: string;
+    /** Regex to match raw candidates — must have the 'g' flag */
+    regex: RegExp;
+    /** Optional post-match validator (e.g. PESEL checksum). Receives the match with whitespace stripped. */
+    validate?: (match: string) => boolean;
+}
+export interface LanguageRules {
+    patterns: PatternDef[];
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/languages/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/languages/types.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,UAAU;IACzB,iEAAiE;IACjE,GAAG,EAAE,MAAM,CAAA;IACX,6DAA6D;IAC7D,KAAK,EAAE,MAAM,CAAA;IACb,wGAAwG;IACxG,QAAQ,CAAC,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAA;CACtC;AAED,MAAM,WAAW,aAAa;IAC5B,QAAQ,EAAE,UAAU,EAAE,CAAA;CACvB"}

package/dist/languages/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/languages/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/languages/types.ts"],"names":[],"mappings":""}

package/dist/mcp/server.d.ts

@@ -0,0 +1,4 @@
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+export declare function createMcpServer(): McpServer;
+export declare function startServer(): Promise<void>;
+//# sourceMappingURL=server.d.ts.map

package/dist/mcp/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AAmBnE,wBAAgB,eAAe,IAAI,SAAS,CA4F3C;AAED,wBAAsB,WAAW,IAAI,OAAO,CAAC,IAAI,CAAC,CAIjD"}

package/dist/mcp/server.js

@@ -0,0 +1,93 @@
+import { McpServer } from '@modelcontextprotocol/sdk/server/mcp.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import { z } from 'zod';
+import { Engine } from '../core/engine.js';
+import { MappingStore } from '../core/mapping-store.js';
+import { ConfigManager } from '../config/manager.js';
+// Session registry: session_id → Engine (each Engine holds its own MappingStore)
+const sessions = new Map();
+function getOrCreateEngine(sessionId) {
+    let engine = sessions.get(sessionId);
+    if (!engine) {
+        engine = new Engine(new MappingStore(sessionId));
+        sessions.set(sessionId, engine);
+    }
+    return engine;
+}
+export function createMcpServer() {
+    const server = new McpServer({
+        name: 'pseudonym-mcp',
+        version: '0.1.0',
+    });
+    server.tool('mask_text', `Pseudonymize sensitive entities in text before sending to a cloud LLM.
+
+Replaces PESEL numbers, phone numbers, IBANs, and email addresses via regex,
+and person names and organization names via local Ollama NER — with opaque
+tokens like [PESEL:1], [PERSON:2], [ORG:1].
+
+Returns the masked text plus a session_id. Store the session_id to restore
+the original values later using unmask_text.`, {
+        text: z.string().describe('The text to pseudonymize'),
+        session_id: z
+            .string()
+            .optional()
+            .describe('Optional: reuse an existing session to preserve token numbering across multiple calls'),
+    }, async ({ text, session_id }) => {
+        const sid = session_id ?? crypto.randomUUID();
+        const engine = getOrCreateEngine(sid);
+        let maskedText;
+        try {
+            maskedText = await engine.process(text);
+        }
+        catch (err) {
+            return {
+                content: [{ type: 'text', text: `Error during masking: ${String(err)}` }],
+                isError: true,
+            };
+        }
+        const cfg = ConfigManager.getInstance().get();
+        return {
+            content: [
+                {
+                    type: 'text',
+                    text: JSON.stringify({
+                        session_id: sid,
+                        masked_text: maskedText,
+                        auto_unmask: cfg.autoUnmask,
+                    }, null, 2),
+                },
+            ],
+        };
+    });
+    server.tool('unmask_text', `Restore original sensitive values in text that was previously masked by mask_text.
+
+Replaces tokens like [PESEL:1], [PERSON:2] with the original values stored
+in the session identified by session_id.`, {
+        text: z.string().describe('The text containing [TAG:N] tokens to restore'),
+        session_id: z.string().describe('The session_id returned by mask_text'),
+    }, async ({ text, session_id }) => {
+        const engine = sessions.get(session_id);
+        if (!engine) {
+            return {
+                content: [
+                    {
+                        type: 'text',
+                        text: `Error: session "${session_id}" not found. It may have expired or never existed.`,
+                    },
+                ],
+                isError: true,
+            };
+        }
+        const restored = engine.revert(text);
+        return {
+            content: [{ type: 'text', text: restored }],
+        };
+    });
+    return server;
+}
+export async function startServer() {
+    const server = createMcpServer();
+    const transport = new StdioServerTransport();
+    await server.connect(transport);
+}
+//# sourceMappingURL=server.js.map

package/dist/mcp/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,yCAAyC,CAAA;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,2CAA2C,CAAA;AAChF,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAA;AACvB,OAAO,EAAE,MAAM,EAAE,MAAM,mBAAmB,CAAA;AAC1C,OAAO,EAAE,YAAY,EAAE,MAAM,0BAA0B,CAAA;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,sBAAsB,CAAA;AAEpD,iFAAiF;AACjF,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAkB,CAAA;AAE1C,SAAS,iBAAiB,CAAC,SAAiB;IAC1C,IAAI,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAA;IACpC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,YAAY,CAAC,SAAS,CAAC,CAAC,CAAA;QAChD,QAAQ,CAAC,GAAG,CAAC,SAAS,EAAE,MAAM,CAAC,CAAA;IACjC,CAAC;IACD,OAAO,MAAM,CAAA;AACf,CAAC;AAED,MAAM,UAAU,eAAe;IAC7B,MAAM,MAAM,GAAG,IAAI,SAAS,CAAC;QAC3B,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,OAAO;KACjB,CAAC,CAAA;IAEF,MAAM,CAAC,IAAI,CACT,WAAW,EACX;;;;;;;6CAOyC,EACzC;QACE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,0BAA0B,CAAC;QACrD,UAAU,EAAE,CAAC;aACV,MAAM,EAAE;aACR,QAAQ,EAAE;aACV,QAAQ,CACP,uFAAuF,CACxF;KACJ,EACD,KAAK,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,EAAE;QAC7B,MAAM,GAAG,GAAG,UAAU,IAAI,MAAM,CAAC,UAAU,EAAE,CAAA;QAC7C,MAAM,MAAM,GAAG,iBAAiB,CAAC,GAAG,CAAC,CAAA;QAErC,IAAI,UAAkB,CAAA;QACtB,IAAI,CAAC;YACH,UAAU,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAA;QACzC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO;gBACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,yBAAyB,MAAM,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBAClF,OAAO,EAAE,IAAI;aACd,CAAA;QACH,CAAC;QAED,MAAM,GAAG,GAAG,aAAa,CAAC,WAAW,EAAE,CAAC,GAAG,EAAE,CAAA;QAE7C,OAAO;YACL,OAAO,EAAE;gBACP;oBACE,IAAI,EAAE,MAAe;oBACrB,IAAI,EAAE,IAAI,CAAC,SAAS,CAClB;wBACE,UAAU,EAAE,GAAG;wBACf,WAAW,EAAE,UAAU;wBACvB,WAAW,EAAE,GAAG,CAAC,UAAU;qBAC5B,EACD,IAAI,EACJ,CAAC,CACF;iBACF;aACF;SACF,CAAA;IACH,CAAC,CACF,CAAA;IAED,MAAM,CAAC,IAAI,CACT,aAAa,EACb;;;yCAGqC,EACrC;QACE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,+CAA+C,CAAC;QAC1E,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,sCAAsC,CAAC;KACxE,EACD,KAAK,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,EAAE;QAC7B,MAAM,MAAM,GAAG,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,CAAA;QACvC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,mBAAmB,UAAU,oDAAoD;qBACxF;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAA;QACH,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,CAAA;QACpC,OAAO;YACL,OAAO,EAAE,CAAC,EAAE,IAAI,EAAE,MAAe,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;SACrD,CAAA;IACH,CAAC,CACF,CAAA;IAED,OAAO,MAAM,CAAA;AACf,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,WAAW;IAC/B,MAAM,MAAM,GAAG,eAAe,EAAE,CAAA;IAChC,MAAM,SAAS,GAAG,IAAI,oBAAoB,EAAE,CAAA;IAC5C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAA;AACjC,CAAC"}

package/dist/setup/check-ollama.d.ts

@@ -0,0 +1,15 @@
+export interface OllamaCheckResult {
+    running: boolean;
+    modelAvailable: boolean;
+    error?: string;
+}
+/**
+ * Check whether Ollama is running and whether the required model is available.
+ */
+export declare function checkOllama(baseUrl: string, model: string, timeoutMs?: number): Promise<OllamaCheckResult>;
+/**
+ * Print a user-friendly warning to stderr if Ollama is unavailable or
+ * the required model is missing. Never throws — errors are non-fatal.
+ */
+export declare function printOllamaStatus(baseUrl: string, model: string): Promise<void>;
+//# sourceMappingURL=check-ollama.d.ts.map

package/dist/setup/check-ollama.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"check-ollama.d.ts","sourceRoot":"","sources":["../../src/setup/check-ollama.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,OAAO,CAAA;IAChB,cAAc,EAAE,OAAO,CAAA;IACvB,KAAK,CAAC,EAAE,MAAM,CAAA;CACf;AAED;;GAEG;AACH,wBAAsB,WAAW,CAC/B,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,SAAS,SAAQ,GAChB,OAAO,CAAC,iBAAiB,CAAC,CAmC5B;AAED;;;GAGG;AACH,wBAAsB,iBAAiB,CACrC,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,IAAI,CAAC,CAqBf"}