recoder-a2a-sdk 1.0.0

package/dist/validation.js

@@ -0,0 +1,850 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/validation.ts
+var validation_exports = {};
+__export(validation_exports, {
+  assertAuditEvent: () => assertAuditEvent,
+  assertTaskEnvelope: () => assertTaskEnvelope,
+  isValidA2AError: () => isValidA2AError,
+  isValidAuditEvent: () => isValidAuditEvent,
+  isValidTaskEnvelope: () => isValidTaskEnvelope,
+  validateA2AError: () => validateA2AError,
+  validateAuditEvent: () => validateAuditEvent,
+  validateTaskEnvelope: () => validateTaskEnvelope
+});
+module.exports = __toCommonJS(validation_exports);
+
+// ../../shared/src/a2a/schemas/task-envelope.ts
+var TASK_ENVELOPE_VERSION = "1.0.0";
+var TaskStateEnum = {
+  /** Task has been created and is awaiting execution. */
+  Submitted: "submitted",
+  /** Task is actively being processed by the assignee agent. */
+  Working: "working",
+  /** The assignee needs additional input before it can continue. */
+  InputRequired: "input-required",
+  /** Task finished successfully. */
+  Completed: "completed",
+  /** Task terminated with an error. */
+  Failed: "failed",
+  /** Task was explicitly cancelled by a requester or operator. */
+  Cancelled: "cancelled"
+};
+var TASK_STATES = [
+  TaskStateEnum.Submitted,
+  TaskStateEnum.Working,
+  TaskStateEnum.InputRequired,
+  TaskStateEnum.Completed,
+  TaskStateEnum.Failed,
+  TaskStateEnum.Cancelled
+];
+var TERMINAL_TASK_STATES = /* @__PURE__ */ new Set([
+  TaskStateEnum.Completed,
+  TaskStateEnum.Failed,
+  TaskStateEnum.Cancelled
+]);
+var ALLOWED_STATE_TRANSITIONS = {
+  [TaskStateEnum.Submitted]: [TaskStateEnum.Working, TaskStateEnum.Cancelled, TaskStateEnum.Failed],
+  [TaskStateEnum.Working]: [
+    TaskStateEnum.Completed,
+    TaskStateEnum.Failed,
+    TaskStateEnum.Cancelled,
+    TaskStateEnum.InputRequired
+  ],
+  [TaskStateEnum.InputRequired]: [TaskStateEnum.Working, TaskStateEnum.Cancelled, TaskStateEnum.Failed],
+  [TaskStateEnum.Completed]: [],
+  [TaskStateEnum.Failed]: [],
+  [TaskStateEnum.Cancelled]: []
+};
+
+// ../../shared/src/a2a/schemas/audit-event.ts
+var AUDIT_EVENT_VERSION = "1.0.0";
+var AuditEventTypeEnum = {
+  // -- task lifecycle ---------------------------------------------------------
+  /** A new task was submitted. */
+  TaskSubmitted: "task.submitted",
+  /** Task execution started. */
+  TaskStarted: "task.started",
+  /** Task made progress (intermediate update). */
+  TaskProgress: "task.progress",
+  /** Assignee agent needs additional input. */
+  TaskInputRequired: "task.input_required",
+  /** Task completed successfully. */
+  TaskCompleted: "task.completed",
+  /** Task failed with an error. */
+  TaskFailed: "task.failed",
+  /** Task was cancelled. */
+  TaskCancelled: "task.cancelled",
+  // -- policy decisions -------------------------------------------------------
+  /** A policy check was performed. */
+  PolicyChecked: "policy.checked",
+  /** A policy action was approved (auto or prompt). */
+  PolicyApproved: "policy.approved",
+  /** A policy action was denied. */
+  PolicyDenied: "policy.denied",
+  // -- connector events -------------------------------------------------------
+  /** A connector was attached to an agent. */
+  ConnectorAttached: "connector.attached",
+  /** A connector was detached from an agent. */
+  ConnectorDetached: "connector.detached",
+  /** A connector emitted a diagnostic or health event. */
+  ConnectorHealth: "connector.health",
+  /** A connector encountered an error. */
+  ConnectorError: "connector.error",
+  // -- agent registry ---------------------------------------------------------
+  /** An agent was registered. */
+  AgentRegistered: "agent.registered",
+  /** An agent was unregistered. */
+  AgentUnregistered: "agent.unregistered",
+  /** An agent's capabilities were updated. */
+  AgentUpdated: "agent.updated",
+  // -- collaboration ----------------------------------------------------------
+  /** A collaboration channel was created. */
+  ChannelCreated: "collaboration.channel_created",
+  /** A collaboration thread was created. */
+  ThreadCreated: "collaboration.thread_created",
+  /** A message was sent in a collaboration thread. */
+  MessageSent: "collaboration.message_sent",
+  // -- system -----------------------------------------------------------------
+  /** A system-level configuration change. */
+  SystemConfig: "system.config",
+  /** A system-level error or warning. */
+  SystemError: "system.error"
+};
+var AUDIT_EVENT_TYPES = Object.values(AuditEventTypeEnum);
+
+// ../../shared/src/a2a/schemas/error-taxonomy.ts
+var A2AErrorSeverityEnum = {
+  /** Low impact -- informational or gracefully handled. */
+  Low: "low",
+  /** Medium impact -- degraded functionality but system continues. */
+  Medium: "medium",
+  /** High impact -- a key operation failed and needs attention. */
+  High: "high",
+  /** Critical -- system stability at risk, immediate action required. */
+  Critical: "critical"
+};
+var A2AErrorCategoryEnum = {
+  /** Errors in the envelope or message format (validation, parsing). */
+  Envelope: "envelope",
+  /** Errors in the connector/adapter layer. */
+  Connector: "connector",
+  /** Errors in the policy/approval plane. */
+  Policy: "policy",
+  /** Errors in the task orchestration layer. */
+  Task: "task",
+  /** Errors in the agent registry. */
+  Registry: "registry",
+  /** Errors in the collaboration service. */
+  Collaboration: "collaboration",
+  /** Transport/network-level errors. */
+  Transport: "transport",
+  /** Authentication and authorization errors. */
+  Auth: "auth",
+  /** Rate-limiting and quota errors. */
+  RateLimit: "rate_limit",
+  /** Internal / unexpected errors. */
+  Internal: "internal"
+};
+var A2AErrorCodeEnum = {
+  // -- envelope ---------------------------------------------------------------
+  /** The envelope failed structural validation. */
+  InvalidEnvelope: "INVALID_ENVELOPE",
+  /** The envelope version is unsupported. */
+  UnsupportedEnvelopeVersion: "UNSUPPORTED_ENVELOPE_VERSION",
+  /** A required field is missing from the envelope. */
+  MissingEnvelopeField: "MISSING_ENVELOPE_FIELD",
+  /** The payload kind is unknown or malformed. */
+  InvalidPayload: "INVALID_PAYLOAD",
+  /** Compatibility alias used by older gateway/workspace routes. */
+  InvalidParams: "INVALID_ENVELOPE",
+  // -- connector --------------------------------------------------------------
+  /** No connector is attached for the target agent. */
+  ConnectorNotFound: "CONNECTOR_NOT_FOUND",
+  /** The connector timed out during task execution. */
+  ConnectorTimeout: "CONNECTOR_TIMEOUT",
+  /** The connector returned an unexpected error. */
+  ConnectorError: "CONNECTOR_ERROR",
+  /** The connector is temporarily unavailable. */
+  ConnectorUnavailable: "CONNECTOR_UNAVAILABLE",
+  /** Protocol mismatch between connector and remote agent. */
+  ProtocolMismatch: "PROTOCOL_MISMATCH",
+  // -- policy -----------------------------------------------------------------
+  /** The policy plane denied the requested action. */
+  PolicyDenied: "POLICY_DENIED",
+  /** No prompt handler is configured for the policy rule. */
+  PolicyHandlerMissing: "POLICY_HANDLER_MISSING",
+  /** The policy evaluation timed out. */
+  PolicyTimeout: "POLICY_TIMEOUT",
+  // -- task -------------------------------------------------------------------
+  /** The task was not found. */
+  TaskNotFound: "TASK_NOT_FOUND",
+  /** An invalid state transition was attempted. */
+  InvalidStateTransition: "INVALID_STATE_TRANSITION",
+  /** The task has already reached a terminal state. */
+  TaskAlreadyTerminal: "TASK_ALREADY_TERMINAL",
+  /** The task failed during execution. */
+  TaskExecutionFailed: "TASK_EXECUTION_FAILED",
+  /** The task was cancelled. */
+  TaskCancelled: "TASK_CANCELLED",
+  // -- registry ---------------------------------------------------------------
+  /** The agent was not found in the registry. */
+  AgentNotFound: "AGENT_NOT_FOUND",
+  /** The agent is already registered. */
+  AgentAlreadyRegistered: "AGENT_ALREADY_REGISTERED",
+  /** The agent does not have the requested capability. */
+  CapabilityNotFound: "CAPABILITY_NOT_FOUND",
+  // -- collaboration ----------------------------------------------------------
+  /** The channel was not found. */
+  ChannelNotFound: "CHANNEL_NOT_FOUND",
+  /** The thread was not found. */
+  ThreadNotFound: "THREAD_NOT_FOUND",
+  /** The message was not found. */
+  MessageNotFound: "MESSAGE_NOT_FOUND",
+  /** The sender is not a member of the target channel. */
+  NotChannelMember: "NOT_CHANNEL_MEMBER",
+  // -- transport --------------------------------------------------------------
+  /** A network request failed. */
+  NetworkError: "NETWORK_ERROR",
+  /** The remote endpoint returned an unexpected status. */
+  UnexpectedStatus: "UNEXPECTED_STATUS",
+  /** The request or response body could not be parsed. */
+  SerializationError: "SERIALIZATION_ERROR",
+  // -- auth -------------------------------------------------------------------
+  /** Authentication failed (invalid or missing credentials). */
+  AuthenticationFailed: "AUTHENTICATION_FAILED",
+  /** The caller is not authorized for the requested operation. */
+  AuthorizationDenied: "AUTHORIZATION_DENIED",
+  /** The access token has expired. */
+  TokenExpired: "TOKEN_EXPIRED",
+  // -- rate limit -------------------------------------------------------------
+  /** The caller has exceeded the rate limit. */
+  RateLimitExceeded: "RATE_LIMIT_EXCEEDED",
+  /** The caller has exceeded their usage quota. */
+  QuotaExceeded: "QUOTA_EXCEEDED",
+  // -- internal ---------------------------------------------------------------
+  /** An unexpected internal error occurred. */
+  InternalError: "INTERNAL_ERROR",
+  /** A configuration error was detected. */
+  ConfigurationError: "CONFIGURATION_ERROR"
+};
+var A2A_ERROR_CODE_REGISTRY = {
+  // envelope
+  [A2AErrorCodeEnum.InvalidEnvelope]: {
+    code: A2AErrorCodeEnum.InvalidEnvelope,
+    category: A2AErrorCategoryEnum.Envelope,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The envelope failed structural validation."
+  },
+  [A2AErrorCodeEnum.UnsupportedEnvelopeVersion]: {
+    code: A2AErrorCodeEnum.UnsupportedEnvelopeVersion,
+    category: A2AErrorCategoryEnum.Envelope,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The envelope version is not supported by this service."
+  },
+  [A2AErrorCodeEnum.MissingEnvelopeField]: {
+    code: A2AErrorCodeEnum.MissingEnvelopeField,
+    category: A2AErrorCategoryEnum.Envelope,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "A required field is missing from the envelope."
+  },
+  [A2AErrorCodeEnum.InvalidPayload]: {
+    code: A2AErrorCodeEnum.InvalidPayload,
+    category: A2AErrorCategoryEnum.Envelope,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The payload kind is unknown or malformed."
+  },
+  // connector
+  [A2AErrorCodeEnum.ConnectorNotFound]: {
+    code: A2AErrorCodeEnum.ConnectorNotFound,
+    category: A2AErrorCategoryEnum.Connector,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: false,
+    description: "No connector is attached for the target agent."
+  },
+  [A2AErrorCodeEnum.ConnectorTimeout]: {
+    code: A2AErrorCodeEnum.ConnectorTimeout,
+    category: A2AErrorCategoryEnum.Connector,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: true,
+    description: "The connector timed out during task execution."
+  },
+  [A2AErrorCodeEnum.ConnectorError]: {
+    code: A2AErrorCodeEnum.ConnectorError,
+    category: A2AErrorCategoryEnum.Connector,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: true,
+    description: "The connector returned an unexpected error."
+  },
+  [A2AErrorCodeEnum.ConnectorUnavailable]: {
+    code: A2AErrorCodeEnum.ConnectorUnavailable,
+    category: A2AErrorCategoryEnum.Connector,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: true,
+    description: "The connector is temporarily unavailable."
+  },
+  [A2AErrorCodeEnum.ProtocolMismatch]: {
+    code: A2AErrorCodeEnum.ProtocolMismatch,
+    category: A2AErrorCategoryEnum.Connector,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: false,
+    description: "Protocol mismatch between connector and remote agent."
+  },
+  // policy
+  [A2AErrorCodeEnum.PolicyDenied]: {
+    code: A2AErrorCodeEnum.PolicyDenied,
+    category: A2AErrorCategoryEnum.Policy,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The policy plane denied the requested action."
+  },
+  [A2AErrorCodeEnum.PolicyHandlerMissing]: {
+    code: A2AErrorCodeEnum.PolicyHandlerMissing,
+    category: A2AErrorCategoryEnum.Policy,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "No prompt handler is configured for the policy rule."
+  },
+  [A2AErrorCodeEnum.PolicyTimeout]: {
+    code: A2AErrorCodeEnum.PolicyTimeout,
+    category: A2AErrorCategoryEnum.Policy,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: true,
+    description: "The policy evaluation timed out."
+  },
+  // task
+  [A2AErrorCodeEnum.TaskNotFound]: {
+    code: A2AErrorCodeEnum.TaskNotFound,
+    category: A2AErrorCategoryEnum.Task,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The task was not found."
+  },
+  [A2AErrorCodeEnum.InvalidStateTransition]: {
+    code: A2AErrorCodeEnum.InvalidStateTransition,
+    category: A2AErrorCategoryEnum.Task,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "An invalid state transition was attempted."
+  },
+  [A2AErrorCodeEnum.TaskAlreadyTerminal]: {
+    code: A2AErrorCodeEnum.TaskAlreadyTerminal,
+    category: A2AErrorCategoryEnum.Task,
+    severity: A2AErrorSeverityEnum.Low,
+    retryable: false,
+    description: "The task has already reached a terminal state."
+  },
+  [A2AErrorCodeEnum.TaskExecutionFailed]: {
+    code: A2AErrorCodeEnum.TaskExecutionFailed,
+    category: A2AErrorCategoryEnum.Task,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: true,
+    description: "The task failed during execution."
+  },
+  [A2AErrorCodeEnum.TaskCancelled]: {
+    code: A2AErrorCodeEnum.TaskCancelled,
+    category: A2AErrorCategoryEnum.Task,
+    severity: A2AErrorSeverityEnum.Low,
+    retryable: false,
+    description: "The task was cancelled."
+  },
+  // registry
+  [A2AErrorCodeEnum.AgentNotFound]: {
+    code: A2AErrorCodeEnum.AgentNotFound,
+    category: A2AErrorCategoryEnum.Registry,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The agent was not found in the registry."
+  },
+  [A2AErrorCodeEnum.AgentAlreadyRegistered]: {
+    code: A2AErrorCodeEnum.AgentAlreadyRegistered,
+    category: A2AErrorCategoryEnum.Registry,
+    severity: A2AErrorSeverityEnum.Low,
+    retryable: false,
+    description: "The agent is already registered."
+  },
+  [A2AErrorCodeEnum.CapabilityNotFound]: {
+    code: A2AErrorCodeEnum.CapabilityNotFound,
+    category: A2AErrorCategoryEnum.Registry,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The agent does not have the requested capability."
+  },
+  // collaboration
+  [A2AErrorCodeEnum.ChannelNotFound]: {
+    code: A2AErrorCodeEnum.ChannelNotFound,
+    category: A2AErrorCategoryEnum.Collaboration,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The channel was not found."
+  },
+  [A2AErrorCodeEnum.ThreadNotFound]: {
+    code: A2AErrorCodeEnum.ThreadNotFound,
+    category: A2AErrorCategoryEnum.Collaboration,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The thread was not found."
+  },
+  [A2AErrorCodeEnum.MessageNotFound]: {
+    code: A2AErrorCodeEnum.MessageNotFound,
+    category: A2AErrorCategoryEnum.Collaboration,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The message was not found."
+  },
+  [A2AErrorCodeEnum.NotChannelMember]: {
+    code: A2AErrorCodeEnum.NotChannelMember,
+    category: A2AErrorCategoryEnum.Collaboration,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The sender is not a member of the target channel."
+  },
+  // transport
+  [A2AErrorCodeEnum.NetworkError]: {
+    code: A2AErrorCodeEnum.NetworkError,
+    category: A2AErrorCategoryEnum.Transport,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: true,
+    description: "A network request failed."
+  },
+  [A2AErrorCodeEnum.UnexpectedStatus]: {
+    code: A2AErrorCodeEnum.UnexpectedStatus,
+    category: A2AErrorCategoryEnum.Transport,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: true,
+    description: "The remote endpoint returned an unexpected status."
+  },
+  [A2AErrorCodeEnum.SerializationError]: {
+    code: A2AErrorCodeEnum.SerializationError,
+    category: A2AErrorCategoryEnum.Transport,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The request or response body could not be parsed."
+  },
+  // auth
+  [A2AErrorCodeEnum.AuthenticationFailed]: {
+    code: A2AErrorCodeEnum.AuthenticationFailed,
+    category: A2AErrorCategoryEnum.Auth,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: false,
+    description: "Authentication failed (invalid or missing credentials)."
+  },
+  [A2AErrorCodeEnum.AuthorizationDenied]: {
+    code: A2AErrorCodeEnum.AuthorizationDenied,
+    category: A2AErrorCategoryEnum.Auth,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The caller is not authorized for the requested operation."
+  },
+  [A2AErrorCodeEnum.TokenExpired]: {
+    code: A2AErrorCodeEnum.TokenExpired,
+    category: A2AErrorCategoryEnum.Auth,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: true,
+    description: "The access token has expired."
+  },
+  // rate limit
+  [A2AErrorCodeEnum.RateLimitExceeded]: {
+    code: A2AErrorCodeEnum.RateLimitExceeded,
+    category: A2AErrorCategoryEnum.RateLimit,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: true,
+    description: "The caller has exceeded the rate limit."
+  },
+  [A2AErrorCodeEnum.QuotaExceeded]: {
+    code: A2AErrorCodeEnum.QuotaExceeded,
+    category: A2AErrorCategoryEnum.RateLimit,
+    severity: A2AErrorSeverityEnum.Medium,
+    retryable: false,
+    description: "The caller has exceeded their usage quota."
+  },
+  // internal
+  [A2AErrorCodeEnum.InternalError]: {
+    code: A2AErrorCodeEnum.InternalError,
+    category: A2AErrorCategoryEnum.Internal,
+    severity: A2AErrorSeverityEnum.Critical,
+    retryable: false,
+    description: "An unexpected internal error occurred."
+  },
+  [A2AErrorCodeEnum.ConfigurationError]: {
+    code: A2AErrorCodeEnum.ConfigurationError,
+    category: A2AErrorCategoryEnum.Internal,
+    severity: A2AErrorSeverityEnum.High,
+    retryable: false,
+    description: "A configuration error was detected."
+  }
+};
+function isA2AErrorCode(code) {
+  return code in A2A_ERROR_CODE_REGISTRY;
+}
+
+// src/validation.ts
+function isRecord(value) {
+  return typeof value === "object" && value !== null && !Array.isArray(value);
+}
+function isNonEmptyString(value) {
+  return typeof value === "string" && value.trim().length > 0;
+}
+function isValidISODate(value) {
+  return typeof value === "string" && !Number.isNaN(Date.parse(value));
+}
+var VALID_PLATFORMS = /* @__PURE__ */ new Set([
+  "codex",
+  "claude_code",
+  "recoder_web",
+  "recoder_pm",
+  "recoder_agency",
+  "recoder_backend",
+  "recoder_desktop",
+  "custom"
+]);
+var VALID_PROTOCOLS = /* @__PURE__ */ new Set(["a2a", "mcp", "jsonrpc", "rest", "file_git"]);
+var VALID_TASK_STATES = new Set(TASK_STATES);
+var VALID_AUDIT_EVENT_TYPES = new Set(AUDIT_EVENT_TYPES);
+var VALID_ACTOR_KINDS = /* @__PURE__ */ new Set(["agent", "user", "system", "connector"]);
+var VALID_TARGET_KINDS = /* @__PURE__ */ new Set([
+  "task",
+  "agent",
+  "connector",
+  "channel",
+  "thread",
+  "message",
+  "policy",
+  "workspace",
+  "system"
+]);
+var VALID_SEVERITIES = /* @__PURE__ */ new Set(["low", "medium", "high", "critical"]);
+var VALID_AUDIT_SEVERITIES = /* @__PURE__ */ new Set(["info", "warning", "error", "critical"]);
+function validateAgentRef(value, path, issues) {
+  if (!isRecord(value)) {
+    issues.push({ path, message: "must be an object" });
+    return;
+  }
+  if (!isNonEmptyString(value.agent_id)) {
+    issues.push({ path: `${path}.agent_id`, message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.platform) || !VALID_PLATFORMS.has(value.platform)) {
+    issues.push({
+      path: `${path}.platform`,
+      message: `must be one of: ${[...VALID_PLATFORMS].join(", ")}`
+    });
+  }
+}
+function validateConnectorInfo(value, path, issues) {
+  if (!isRecord(value)) {
+    issues.push({ path, message: "must be an object" });
+    return;
+  }
+  if (!isNonEmptyString(value.platform) || !VALID_PLATFORMS.has(value.platform)) {
+    issues.push({
+      path: `${path}.platform`,
+      message: `must be one of: ${[...VALID_PLATFORMS].join(", ")}`
+    });
+  }
+  if (!isNonEmptyString(value.protocol) || !VALID_PROTOCOLS.has(value.protocol)) {
+    issues.push({
+      path: `${path}.protocol`,
+      message: `must be one of: ${[...VALID_PROTOCOLS].join(", ")}`
+    });
+  }
+  if (!isNonEmptyString(value.connector_id)) {
+    issues.push({
+      path: `${path}.connector_id`,
+      message: "must be a non-empty string"
+    });
+  }
+}
+function validatePayloadItem(value, path, issues) {
+  if (!isRecord(value)) {
+    issues.push({ path, message: "must be an object" });
+    return;
+  }
+  const validKinds = /* @__PURE__ */ new Set(["text", "json", "command", "artifact"]);
+  if (!isNonEmptyString(value.kind) || !validKinds.has(value.kind)) {
+    issues.push({
+      path: `${path}.kind`,
+      message: `must be one of: ${[...validKinds].join(", ")}`
+    });
+    return;
+  }
+  switch (value.kind) {
+    case "text":
+      if (!isNonEmptyString(value.text)) {
+        issues.push({ path: `${path}.text`, message: "must be a non-empty string" });
+      }
+      break;
+    case "json":
+      if (!isRecord(value.data)) {
+        issues.push({ path: `${path}.data`, message: "must be an object" });
+      }
+      break;
+    case "command":
+      if (!isNonEmptyString(value.command)) {
+        issues.push({ path: `${path}.command`, message: "must be a non-empty string" });
+      }
+      break;
+    case "artifact":
+      if (!isNonEmptyString(value.mimeType) && !isNonEmptyString(value.mime_type)) {
+        issues.push({ path: `${path}.mimeType`, message: "must be a non-empty string" });
+      }
+      if (!isNonEmptyString(value.content)) {
+        issues.push({ path: `${path}.content`, message: "must be a non-empty string" });
+      }
+      break;
+  }
+}
+function validateTaskEnvelope(value, options) {
+  const issues = [];
+  if (!isRecord(value)) {
+    return { valid: false, issues: [{ path: "$", message: "must be an object" }] };
+  }
+  if (!isNonEmptyString(value.envelope_version)) {
+    issues.push({ path: "envelope_version", message: "must be a non-empty string" });
+  } else if (options?.strictVersion && value.envelope_version !== TASK_ENVELOPE_VERSION) {
+    issues.push({
+      path: "envelope_version",
+      message: `must equal "${TASK_ENVELOPE_VERSION}"`
+    });
+  }
+  if (!isNonEmptyString(value.id)) {
+    issues.push({ path: "id", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.workspace_id)) {
+    issues.push({ path: "workspace_id", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.thread_id)) {
+    issues.push({ path: "thread_id", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.trace_id)) {
+    issues.push({ path: "trace_id", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.state) || !VALID_TASK_STATES.has(value.state)) {
+    issues.push({
+      path: "state",
+      message: `must be one of: ${[...VALID_TASK_STATES].join(", ")}`
+    });
+  }
+  validateAgentRef(value.requester, "requester", issues);
+  validateAgentRef(value.assignee, "assignee", issues);
+  validateConnectorInfo(value.connector, "connector", issues);
+  if (value.payload === void 0 || value.payload === null) {
+    issues.push({ path: "payload", message: "is required" });
+  } else if (Array.isArray(value.payload)) {
+    value.payload.forEach(
+      (item, i) => validatePayloadItem(item, `payload[${i}]`, issues)
+    );
+  } else {
+    validatePayloadItem(value.payload, "payload", issues);
+  }
+  if (!isValidISODate(value.created_at)) {
+    issues.push({ path: "created_at", message: "must be a valid ISO-8601 timestamp" });
+  }
+  if (!isValidISODate(value.updated_at)) {
+    issues.push({ path: "updated_at", message: "must be a valid ISO-8601 timestamp" });
+  }
+  if (value.error !== void 0) {
+    if (!isRecord(value.error)) {
+      issues.push({ path: "error", message: "must be an object when present" });
+    } else {
+      if (!isNonEmptyString(value.error.code)) {
+        issues.push({ path: "error.code", message: "must be a non-empty string" });
+      }
+      if (!isNonEmptyString(value.error.category)) {
+        issues.push({ path: "error.category", message: "must be a non-empty string" });
+      }
+      if (!isNonEmptyString(value.error.message)) {
+        issues.push({ path: "error.message", message: "must be a non-empty string" });
+      }
+      if (!isNonEmptyString(value.error.severity) || !VALID_SEVERITIES.has(value.error.severity)) {
+        issues.push({
+          path: "error.severity",
+          message: `must be one of: ${[...VALID_SEVERITIES].join(", ")}`
+        });
+      }
+      if (typeof value.error.retryable !== "boolean") {
+        issues.push({ path: "error.retryable", message: "must be a boolean" });
+      }
+    }
+  }
+  return { valid: issues.length === 0, issues };
+}
+function isValidTaskEnvelope(value) {
+  return validateTaskEnvelope(value).valid;
+}
+function assertTaskEnvelope(value) {
+  const result = validateTaskEnvelope(value);
+  if (!result.valid) {
+    const summary = result.issues.map((i) => `  ${i.path}: ${i.message}`).join("\n");
+    throw new Error(`Invalid TaskEnvelope:
+${summary}`);
+  }
+}
+function validateAuditActor(value, path, issues) {
+  if (!isRecord(value)) {
+    issues.push({ path, message: "must be an object" });
+    return;
+  }
+  if (!isNonEmptyString(value.kind) || !VALID_ACTOR_KINDS.has(value.kind)) {
+    issues.push({
+      path: `${path}.kind`,
+      message: `must be one of: ${[...VALID_ACTOR_KINDS].join(", ")}`
+    });
+  }
+  if (!isNonEmptyString(value.id)) {
+    issues.push({ path: `${path}.id`, message: "must be a non-empty string" });
+  }
+}
+function validateAuditTarget(value, path, issues) {
+  if (!isRecord(value)) {
+    issues.push({ path, message: "must be an object" });
+    return;
+  }
+  if (!isNonEmptyString(value.kind) || !VALID_TARGET_KINDS.has(value.kind)) {
+    issues.push({
+      path: `${path}.kind`,
+      message: `must be one of: ${[...VALID_TARGET_KINDS].join(", ")}`
+    });
+  }
+  if (!isNonEmptyString(value.id)) {
+    issues.push({ path: `${path}.id`, message: "must be a non-empty string" });
+  }
+}
+function validateAuditEvent(value, options) {
+  const issues = [];
+  if (!isRecord(value)) {
+    return { valid: false, issues: [{ path: "$", message: "must be an object" }] };
+  }
+  if (!isNonEmptyString(value.schema_version)) {
+    issues.push({ path: "schema_version", message: "must be a non-empty string" });
+  } else if (options?.strictVersion && value.schema_version !== AUDIT_EVENT_VERSION) {
+    issues.push({
+      path: "schema_version",
+      message: `must equal "${AUDIT_EVENT_VERSION}"`
+    });
+  }
+  if (!isNonEmptyString(value.id)) {
+    issues.push({ path: "id", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.event_type) || !VALID_AUDIT_EVENT_TYPES.has(value.event_type)) {
+    issues.push({
+      path: "event_type",
+      message: `must be one of the canonical audit event types`
+    });
+  }
+  if (value.severity !== void 0 && (!isNonEmptyString(value.severity) || !VALID_AUDIT_SEVERITIES.has(value.severity))) {
+    issues.push({
+      path: "severity",
+      message: `must be one of: ${[...VALID_AUDIT_SEVERITIES].join(", ")}`
+    });
+  }
+  validateAuditActor(value.actor, "actor", issues);
+  validateAuditTarget(value.target, "target", issues);
+  if (!isNonEmptyString(value.trace_id)) {
+    issues.push({ path: "trace_id", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.workspace_id)) {
+    issues.push({ path: "workspace_id", message: "must be a non-empty string" });
+  }
+  if (!isValidISODate(value.timestamp)) {
+    issues.push({ path: "timestamp", message: "must be a valid ISO-8601 timestamp" });
+  }
+  if (value.policy !== void 0) {
+    if (!isRecord(value.policy)) {
+      issues.push({ path: "policy", message: "must be an object when present" });
+    } else {
+      if (!isNonEmptyString(value.policy.action)) {
+        issues.push({ path: "policy.action", message: "must be a non-empty string" });
+      }
+      if (!isNonEmptyString(value.policy.rule)) {
+        issues.push({ path: "policy.rule", message: "must be a non-empty string" });
+      }
+      if (typeof value.policy.approved !== "boolean") {
+        issues.push({ path: "policy.approved", message: "must be a boolean" });
+      }
+      if (!isNonEmptyString(value.policy.reason)) {
+        issues.push({ path: "policy.reason", message: "must be a non-empty string" });
+      }
+      if (!isNonEmptyString(value.policy.agent_id)) {
+        issues.push({ path: "policy.agent_id", message: "must be a non-empty string" });
+      }
+    }
+  }
+  return { valid: issues.length === 0, issues };
+}
+function isValidAuditEvent(value) {
+  return validateAuditEvent(value).valid;
+}
+function assertAuditEvent(value) {
+  const result = validateAuditEvent(value);
+  if (!result.valid) {
+    const summary = result.issues.map((i) => `  ${i.path}: ${i.message}`).join("\n");
+    throw new Error(`Invalid AuditEvent:
+${summary}`);
+  }
+}
+function validateA2AError(value) {
+  const issues = [];
+  if (!isRecord(value)) {
+    return { valid: false, issues: [{ path: "$", message: "must be an object" }] };
+  }
+  if (!isNonEmptyString(value.code)) {
+    issues.push({ path: "code", message: "must be a non-empty string" });
+  } else if (!isA2AErrorCode(value.code)) {
+    issues.push({
+      path: "code",
+      message: "must be a recognized A2A error code"
+    });
+  }
+  if (!isNonEmptyString(value.category)) {
+    issues.push({ path: "category", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.message)) {
+    issues.push({ path: "message", message: "must be a non-empty string" });
+  }
+  if (!isNonEmptyString(value.severity) || !VALID_SEVERITIES.has(value.severity)) {
+    issues.push({
+      path: "severity",
+      message: `must be one of: ${[...VALID_SEVERITIES].join(", ")}`
+    });
+  }
+  if (typeof value.retryable !== "boolean") {
+    issues.push({ path: "retryable", message: "must be a boolean" });
+  }
+  return { valid: issues.length === 0, issues };
+}
+function isValidA2AError(value) {
+  return validateA2AError(value).valid;
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  assertAuditEvent,
+  assertTaskEnvelope,
+  isValidA2AError,
+  isValidAuditEvent,
+  isValidTaskEnvelope,
+  validateA2AError,
+  validateAuditEvent,
+  validateTaskEnvelope
+});
+//# sourceMappingURL=validation.js.map