shroud-privacy 2.2.11 → 2.2.13

package/dist/compliance.d.ts

@@ -1,44 +0,0 @@
-/**
- * Compliance reporter — generates category coverage and detection gap reports.
- */
-export interface ComplianceConfig {
-    /** Path to write report. Empty = disabled. */
-    reportPath: string;
-    /** Report interval: "hourly" | "daily". */
-    reportInterval: "hourly" | "daily";
-    /** Required categories that MUST have detections. */
-    requiredCategories: string[];
-}
-export interface ComplianceReport {
-    generatedAt: string;
-    periodStart: string;
-    periodEnd: string;
-    /** Categories that had detections. */
-    activeCategoryCoverage: Record<string, number>;
-    /** Required categories with zero detections (gaps). */
-    detectionGaps: string[];
-    /** Total entities detected in period. */
-    totalEntities: number;
-    /** Store utilization. */
-    storeMappings: number;
-    /** Allowlist usage (how many entities were skipped). */
-    allowlistSkips: number;
-    /** Compliance score: % of required categories with detections. */
-    complianceScore: number;
-}
-export declare class ComplianceReporter {
-    private _config;
-    private _periodStart;
-    private _categoryCounts;
-    private _totalEntities;
-    private _allowlistSkips;
-    constructor(config?: Partial<ComplianceConfig>);
-    get enabled(): boolean;
-    /** Record detection event. */
-    recordDetections(categoryCounts: Record<string, number>, allowlistSkips?: number): void;
-    /** Generate and optionally write a compliance report. */
-    generateReport(storeMappings?: number): ComplianceReport;
-    /** Reset for new period. */
-    resetPeriod(): void;
-    getStats(): object;
-}

package/dist/compliance.js

@@ -1,76 +0,0 @@
-/**
- * Compliance reporter — generates category coverage and detection gap reports.
- */
-import { writeFileSync } from "node:fs";
-export class ComplianceReporter {
-    _config;
-    _periodStart;
-    _categoryCounts = {};
-    _totalEntities = 0;
-    _allowlistSkips = 0;
-    constructor(config = {}) {
-        this._config = {
-            reportPath: config.reportPath ?? "",
-            reportInterval: config.reportInterval ?? "daily",
-            requiredCategories: config.requiredCategories ?? [],
-        };
-        this._periodStart = new Date().toISOString();
-    }
-    get enabled() {
-        return !!this._config.reportPath;
-    }
-    /** Record detection event. */
-    recordDetections(categoryCounts, allowlistSkips = 0) {
-        for (const [cat, count] of Object.entries(categoryCounts)) {
-            this._categoryCounts[cat] = (this._categoryCounts[cat] ?? 0) + count;
-        }
-        this._totalEntities += Object.values(categoryCounts).reduce((a, b) => a + b, 0);
-        this._allowlistSkips += allowlistSkips;
-    }
-    /** Generate and optionally write a compliance report. */
-    generateReport(storeMappings = 0) {
-        const now = new Date().toISOString();
-        const gaps = this._config.requiredCategories.filter((cat) => (this._categoryCounts[cat] ?? 0) === 0);
-        const coveredRequired = this._config.requiredCategories.filter((cat) => (this._categoryCounts[cat] ?? 0) > 0);
-        const score = this._config.requiredCategories.length > 0
-            ? Math.round((coveredRequired.length / this._config.requiredCategories.length) *
-                100)
-            : 100;
-        const report = {
-            generatedAt: now,
-            periodStart: this._periodStart,
-            periodEnd: now,
-            activeCategoryCoverage: { ...this._categoryCounts },
-            detectionGaps: gaps,
-            totalEntities: this._totalEntities,
-            storeMappings,
-            allowlistSkips: this._allowlistSkips,
-            complianceScore: score,
-        };
-        if (this._config.reportPath) {
-            try {
-                writeFileSync(this._config.reportPath, JSON.stringify(report, null, 2) + "\n");
-            }
-            catch {
-                // best-effort
-            }
-        }
-        return report;
-    }
-    /** Reset for new period. */
-    resetPeriod() {
-        this._categoryCounts = {};
-        this._totalEntities = 0;
-        this._allowlistSkips = 0;
-        this._periodStart = new Date().toISOString();
-    }
-    getStats() {
-        return {
-            enabled: this.enabled,
-            periodStart: this._periodStart,
-            totalEntities: this._totalEntities,
-            categoryCoverage: Object.keys(this._categoryCounts).length,
-            requiredCategories: this._config.requiredCategories.length,
-        };
-    }
-}

package/dist/dashboard.d.ts

@@ -1,42 +0,0 @@
-/**
- * Real-time security dashboard — lightweight HTTP endpoint.
- *
- * Serves JSON snapshots of all agent sessions, security events,
- * profiling baselines, and injection detection stats. Designed
- * for Grafana, custom UIs, or direct curl consumption.
- *
- * Zero external dependencies — uses Node's built-in http module.
- *
- * Endpoints:
- *   GET /health                    — liveness check
- *   GET /api/overview              — high-level security summary
- *   GET /api/agents                — all agent sessions with profiling status
- *   GET /api/agents/:buildId       — single agent detail
- *   GET /api/events                — recent security events (last 100)
- *   GET /api/events/stream         — SSE stream of security events (real-time)
- *   GET /api/profiling             — profiling baselines for all agents
- *   GET /api/profiling/:buildId    — single agent baseline detail
- *   GET /api/stats                 — obfuscation + security stats combined
- */
-import { createServer } from "node:http";
-import type { SecurityEventBus } from "./security-event.js";
-import type { AgentSessionTracker } from "./agent-session.js";
-import type { BaselineStore } from "./profiler-store.js";
-import type { Obfuscator } from "./obfuscator.js";
-import type { BehaviouralProfiler } from "./profiler.js";
-import type { ShroudConfig } from "./types.js";
-import type { PolicyEngine } from "./policy.js";
-export interface DashboardDeps {
-    securityBus: SecurityEventBus | null;
-    agentTracker: AgentSessionTracker;
-    baselineStore: BaselineStore | null;
-    obfuscator: Obfuscator;
-    profiler: BehaviouralProfiler | null;
-    config: ShroudConfig;
-    policyEngine: PolicyEngine | null;
-}
-/**
- * Start the dashboard HTTP server.
- * Returns the server instance for cleanup.
- */
-export declare function startDashboard(port: number, deps: DashboardDeps): ReturnType<typeof createServer>;