tryassay 0.6.0 → 0.11.0

package/dist/runtime/collusion-detector.d.ts

@@ -0,0 +1,35 @@
+import type { BoundaryClaim, BoundaryVerificationResult, CollusionEvent, AgentIdentity } from './types.js';
+export declare class CollusionDetector {
+    private events;
+    /**
+     * Check a verification result for collusion signals.
+     *
+     * Collusion is detected when:
+     * 1. Two LLM-backed agents agreed on a claim (Code + Review both say PASS)
+     * 2. The formal verifier disagrees (says FAIL)
+     *
+     * This catches the most dangerous failure mode: correlated LLM errors
+     * where agents trained on similar data share the same blind spots.
+     */
+    check(sourceAgent: AgentIdentity, targetAgent: AgentIdentity, claims: readonly BoundaryClaim[], result: BoundaryVerificationResult): CollusionEvent[];
+    /**
+     * Check if the collusion rate exceeds a threshold for a given agent pair.
+     * Returns true if the ratio of collusion events to total verifications
+     * exceeds the threshold (default: 20%).
+     */
+    isCollusionRateExcessive(agentA: string, agentB: string, totalVerifications: number, threshold?: number): boolean;
+    /** Get all collusion events. */
+    getAllEvents(): readonly CollusionEvent[];
+    /** Get collusion events for a specific agent. */
+    getEventsForAgent(agentId: string): readonly CollusionEvent[];
+    /** Get critical collusion events (security/data-loss claims). */
+    getCriticalEvents(): readonly CollusionEvent[];
+    /** Get collusion event count. */
+    getEventCount(): number;
+    /** Get unique agent pairs involved in collusion. */
+    getColludingPairs(): Array<{
+        agentA: string;
+        agentB: string;
+        count: number;
+    }>;
+}

package/dist/runtime/collusion-detector.js

@@ -0,0 +1,97 @@
+// ============================================================
+// Assay Verified Agent Runtime — Collusion Detector
+// Detects when LLM-backed agents agree on something the formal
+// verifier disagrees with. This is the anti-collusion primitive.
+// ============================================================
+import { randomUUID } from 'node:crypto';
+// ── Collusion Detector ─────────────────────────────────────
+export class CollusionDetector {
+    events = [];
+    /**
+     * Check a verification result for collusion signals.
+     *
+     * Collusion is detected when:
+     * 1. Two LLM-backed agents agreed on a claim (Code + Review both say PASS)
+     * 2. The formal verifier disagrees (says FAIL)
+     *
+     * This catches the most dangerous failure mode: correlated LLM errors
+     * where agents trained on similar data share the same blind spots.
+     */
+    check(sourceAgent, targetAgent, claims, result) {
+        const detected = [];
+        // Only check if both agents are LLM-backed (not formal)
+        if (sourceAgent.trustLevel === 'formal' || targetAgent.trustLevel === 'formal') {
+            return detected;
+        }
+        // Look for formal overrides — these are the collusion signals
+        for (const claim of claims) {
+            if (claim.formalOverride) {
+                // LLM said one thing, formal verifier said another
+                const event = {
+                    id: randomUUID(),
+                    agentA: sourceAgent.id,
+                    agentB: targetAgent.id,
+                    agreedVerdict: claim.formalOverride.originalLlmVerdict,
+                    formalVerdict: claim.formalOverride.formalVerdict,
+                    claimId: claim.id,
+                    claimText: claim.text,
+                    severity: claim.severity,
+                    timestamp: new Date().toISOString(),
+                };
+                detected.push(event);
+                this.events.push(event);
+            }
+        }
+        // Also check for suspicious patterns: both agents consistently
+        // passing claims that the formal stats show disagreement on
+        if (result.formalStats.disagreements > 0 && result.formalStats.formalOverrides > 0) {
+            // Each formal override where both LLM agents agreed is a collusion signal
+            // (already captured above via formalOverride on claims)
+        }
+        return detected;
+    }
+    /**
+     * Check if the collusion rate exceeds a threshold for a given agent pair.
+     * Returns true if the ratio of collusion events to total verifications
+     * exceeds the threshold (default: 20%).
+     */
+    isCollusionRateExcessive(agentA, agentB, totalVerifications, threshold = 0.2) {
+        const pairEvents = this.events.filter(e => (e.agentA === agentA && e.agentB === agentB) ||
+            (e.agentA === agentB && e.agentB === agentA));
+        if (totalVerifications === 0)
+            return false;
+        return pairEvents.length / totalVerifications > threshold;
+    }
+    /** Get all collusion events. */
+    getAllEvents() {
+        return this.events;
+    }
+    /** Get collusion events for a specific agent. */
+    getEventsForAgent(agentId) {
+        return this.events.filter(e => e.agentA === agentId || e.agentB === agentId);
+    }
+    /** Get critical collusion events (security/data-loss claims). */
+    getCriticalEvents() {
+        return this.events.filter(e => e.severity === 'critical' || e.severity === 'high');
+    }
+    /** Get collusion event count. */
+    getEventCount() {
+        return this.events.length;
+    }
+    /** Get unique agent pairs involved in collusion. */
+    getColludingPairs() {
+        const pairs = new Map();
+        for (const event of this.events) {
+            const key = [event.agentA, event.agentB].sort().join('::');
+            const existing = pairs.get(key);
+            if (existing) {
+                existing.count++;
+            }
+            else {
+                pairs.set(key, { agentA: event.agentA, agentB: event.agentB, count: 1 });
+            }
+        }
+        return Array.from(pairs.values());
+    }
+}
+//# sourceMappingURL=collusion-detector.js.map

package/dist/runtime/collusion-detector.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"collusion-detector.js","sourceRoot":"","sources":["../../src/runtime/collusion-detector.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,oDAAoD;AACpD,+DAA+D;AAC/D,iEAAiE;AACjE,+DAA+D;AAE/D,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAQzC,8DAA8D;AAE9D,MAAM,OAAO,iBAAiB;IACpB,MAAM,GAAqB,EAAE,CAAC;IAEtC;;;;;;;;;OASG;IACH,KAAK,CACH,WAA0B,EAC1B,WAA0B,EAC1B,MAAgC,EAChC,MAAkC;QAElC,MAAM,QAAQ,GAAqB,EAAE,CAAC;QAEtC,wDAAwD;QACxD,IAAI,WAAW,CAAC,UAAU,KAAK,QAAQ,IAAI,WAAW,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;YAC/E,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,8DAA8D;QAC9D,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;gBACzB,mDAAmD;gBACnD,MAAM,KAAK,GAAmB;oBAC5B,EAAE,EAAE,UAAU,EAAE;oBAChB,MAAM,EAAE,WAAW,CAAC,EAAE;oBACtB,MAAM,EAAE,WAAW,CAAC,EAAE;oBACtB,aAAa,EAAE,KAAK,CAAC,cAAc,CAAC,kBAAkB;oBACtD,aAAa,EAAE,KAAK,CAAC,cAAc,CAAC,aAAa;oBACjD,OAAO,EAAE,KAAK,CAAC,EAAE;oBACjB,SAAS,EAAE,KAAK,CAAC,IAAI;oBACrB,QAAQ,EAAE,KAAK,CAAC,QAAQ;oBACxB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBACpC,CAAC;gBAEF,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBACrB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,+DAA+D;QAC/D,4DAA4D;QAC5D,IAAI,MAAM,CAAC,WAAW,CAAC,aAAa,GAAG,CAAC,IAAI,MAAM,CAAC,WAAW,CAAC,eAAe,GAAG,CAAC,EAAE,CAAC;YACnF,0EAA0E;YAC1E,wDAAwD;QAC1D,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;;;OAIG;IACH,wBAAwB,CACtB,MAAc,EACd,MAAc,EACd,kBAA0B,EAC1B,YAAoB,GAAG;QAEvB,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CACnC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC;YAC5C,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAClD,CAAC;QACF,IAAI,kBAAkB,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;QAC3C,OAAO,UAAU,CAAC,MAAM,GAAG,kBAAkB,GAAG,SAAS,CAAC;IAC5D,CAAC;IAED,gCAAgC;IAChC,YAAY;QACV,OAAO,IAAI,CAAC,MAAM,CAAC;IACrB,CAAC;IAED,iDAAiD;IACjD,iBAAiB,CAAC,OAAe;QAC/B,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC,CAAC;IAC/E,CAAC;IAED,iEAAiE;IACjE,iBAAiB;QACf,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,IAAI,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC;IACrF,CAAC;IAED,iCAAiC;IACjC,aAAa;QACX,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC;IAC5B,CAAC;IAED,oDAAoD;IACpD,iBAAiB;QACf,MAAM,KAAK,GAAG,IAAI,GAAG,EAA6D,CAAC;QAEnF,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;YAChC,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC3D,MAAM,QAAQ,GAAG,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAChC,IAAI,QAAQ,EAAE,CAAC;gBACb,QAAQ,CAAC,KAAK,EAAE,CAAC;YACnB,CAAC;iBAAM,CAAC;gBACN,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;YAC3E,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;IACpC,CAAC;CACF"}

package/dist/runtime/domain-coverage-analyzer.d.ts

@@ -0,0 +1,24 @@
+import type { AgentDefinition, ToolDefinition } from './types.js';
+export interface CoverageAnalysis {
+    readonly claimed_scope: string;
+    readonly verified_scope: string;
+    readonly gaps: readonly string[];
+    readonly overreach: readonly string[];
+    readonly tool_access: {
+        readonly justified: readonly string[];
+        readonly questionable: readonly string[];
+        readonly missing: readonly string[];
+    };
+}
+export declare class DomainCoverageAnalyzer {
+    /**
+     * Analyze an agent definition for coverage gaps and overreach.
+     * Compares the agent's declared domain against known patterns
+     * and the available tool registry.
+     */
+    analyze(agent: AgentDefinition, availableTools: readonly ToolDefinition[]): CoverageAnalysis;
+    private matchDomain;
+    private isLanguageRelated;
+    private analyzeToolAccess;
+    private summarizeVerifiedScope;
+}

package/dist/runtime/domain-coverage-analyzer.js

@@ -0,0 +1,178 @@
+// ============================================================
+// Assay Verified Agent Runtime — Domain Coverage Analyzer
+// Analyzes agent definitions for domain coverage gaps and overreach.
+// ============================================================
+const DOMAIN_EXPECTATIONS = {
+    kubernetes: {
+        languages: ['yaml', 'helm'],
+        frameworks: ['kubernetes', 'docker', 'helm'],
+        expected_tools: ['cli_wrapper'],
+        expected_claims: ['security', 'correctness', 'completeness'],
+    },
+    database: {
+        languages: ['sql', 'typescript', 'python'],
+        frameworks: ['postgresql', 'mysql', 'mongodb', 'prisma', 'drizzle'],
+        expected_tools: ['cli_wrapper', 'data_transform'],
+        expected_claims: ['security', 'correctness', 'performance'],
+    },
+    frontend: {
+        languages: ['typescript', 'javascript', 'css', 'html'],
+        frameworks: ['react', 'vue', 'svelte', 'next.js', 'angular'],
+        expected_tools: ['cli_wrapper'],
+        expected_claims: ['correctness', 'completeness', 'type-safety'],
+    },
+    api: {
+        languages: ['typescript', 'python', 'go'],
+        frameworks: ['express', 'fastify', 'flask', 'gin'],
+        expected_tools: ['api_client', 'cli_wrapper'],
+        expected_claims: ['security', 'correctness', 'error-handling'],
+    },
+    security: {
+        languages: ['typescript', 'python', 'go', 'rust'],
+        frameworks: [],
+        expected_tools: ['verification_helper', 'cli_wrapper'],
+        expected_claims: ['security', 'correctness'],
+    },
+    infrastructure: {
+        languages: ['yaml', 'hcl', 'terraform'],
+        frameworks: ['terraform', 'cloudformation', 'pulumi', 'ansible'],
+        expected_tools: ['cli_wrapper'],
+        expected_claims: ['security', 'correctness', 'completeness'],
+    },
+};
+// ── Domain Coverage Analyzer ───────────────────────────────
+export class DomainCoverageAnalyzer {
+    /**
+     * Analyze an agent definition for coverage gaps and overreach.
+     * Compares the agent's declared domain against known patterns
+     * and the available tool registry.
+     */
+    analyze(agent, availableTools) {
+        const gaps = [];
+        const overreach = [];
+        // Match against known domain expectations
+        const domainKey = this.matchDomain(agent.domain);
+        const expectations = domainKey ? DOMAIN_EXPECTATIONS[domainKey] : null;
+        // Check language coverage
+        if (expectations) {
+            for (const lang of expectations.languages) {
+                if (!agent.domain.languages.includes(lang)) {
+                    gaps.push(`Domain "${domainKey}" typically handles "${lang}" but agent doesn't declare it`);
+                }
+            }
+            // Check for overreach: languages not expected for this domain
+            for (const lang of agent.domain.languages) {
+                const isExpected = expectations.languages.includes(lang);
+                const isRelated = this.isLanguageRelated(lang, expectations.languages);
+                if (!isExpected && !isRelated) {
+                    overreach.push(`Agent declares "${lang}" which is unusual for domain "${domainKey}"`);
+                }
+            }
+            // Check claim category coverage
+            for (const cat of expectations.expected_claims) {
+                if (!agent.domain.claim_categories.includes(cat)) {
+                    gaps.push(`Domain "${domainKey}" typically covers "${cat}" claims but agent doesn't declare it`);
+                }
+            }
+        }
+        // Analyze tool access
+        const toolAnalysis = this.analyzeToolAccess(agent, availableTools, expectations);
+        // Check for overly broad domain description
+        if (agent.domain.description.length < 20) {
+            gaps.push('Domain description is too brief to determine scope');
+        }
+        if (agent.domain.description.toLowerCase().includes('everything') ||
+            agent.domain.description.toLowerCase().includes('all code') ||
+            agent.domain.description.toLowerCase().includes('any language')) {
+            overreach.push('Domain description is overly broad (claims to handle "everything" or "all")');
+        }
+        // Check constraints consistency
+        if (agent.trust_level === 'sandboxed' && agent.constraints.can_spawn_agents) {
+            overreach.push('Sandboxed agents cannot spawn other agents');
+        }
+        if (agent.trust_level === 'standard' && agent.constraints.can_spawn_agents) {
+            overreach.push('Standard trust agents cannot spawn other agents');
+        }
+        return {
+            claimed_scope: agent.domain.description,
+            verified_scope: this.summarizeVerifiedScope(agent, expectations),
+            gaps,
+            overreach,
+            tool_access: toolAnalysis,
+        };
+    }
+    // ── Private helpers ──────────────────────────────────────
+    matchDomain(domain) {
+        const desc = domain.description.toLowerCase();
+        const frameworks = domain.frameworks.map(f => f.toLowerCase());
+        for (const [key, _exp] of Object.entries(DOMAIN_EXPECTATIONS)) {
+            if (desc.includes(key))
+                return key;
+            if (frameworks.some(f => _exp.frameworks.includes(f)))
+                return key;
+        }
+        return null;
+    }
+    isLanguageRelated(lang, expectedLangs) {
+        const related = {
+            typescript: ['javascript'],
+            javascript: ['typescript'],
+            yaml: ['json'],
+            json: ['yaml'],
+            hcl: ['terraform'],
+        };
+        return (related[lang] ?? []).some(r => expectedLangs.includes(r));
+    }
+    analyzeToolAccess(agent, availableTools, expectations) {
+        const justified = [];
+        const questionable = [];
+        const missing = [];
+        // Check each requested tool
+        for (const toolId of agent.tools) {
+            const tool = availableTools.find(t => t.id === toolId);
+            if (!tool) {
+                questionable.push(`${toolId} (not found in registry)`);
+                continue;
+            }
+            // Check if tool type is expected for this domain
+            if (expectations && expectations.expected_tools.includes(tool.type)) {
+                justified.push(toolId);
+            }
+            else if (!expectations) {
+                justified.push(toolId); // Can't determine, assume justified
+            }
+            else {
+                questionable.push(`${toolId} (type "${tool.type}" not typical for domain)`);
+            }
+        }
+        // Check for missing tools
+        if (expectations) {
+            for (const expectedType of expectations.expected_tools) {
+                const hasType = agent.tools.some(id => {
+                    const tool = availableTools.find(t => t.id === id);
+                    return tool?.type === expectedType;
+                });
+                if (!hasType) {
+                    missing.push(`No "${expectedType}" tool — typically needed for this domain`);
+                }
+            }
+        }
+        return { justified, questionable, missing };
+    }
+    summarizeVerifiedScope(agent, expectations) {
+        const parts = [];
+        parts.push(`Languages: ${agent.domain.languages.join(', ')}`);
+        if (agent.domain.frameworks.length > 0) {
+            parts.push(`Frameworks: ${agent.domain.frameworks.join(', ')}`);
+        }
+        parts.push(`Claims: ${agent.domain.claim_categories.join(', ')}`);
+        if (expectations) {
+            parts.push(`Matched domain: known pattern`);
+        }
+        else {
+            parts.push(`Domain: no known pattern match (custom)`);
+        }
+        return parts.join('. ');
+    }
+}
+//# sourceMappingURL=domain-coverage-analyzer.js.map

package/dist/runtime/domain-coverage-analyzer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"domain-coverage-analyzer.js","sourceRoot":"","sources":["../../src/runtime/domain-coverage-analyzer.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,0DAA0D;AAC1D,qEAAqE;AACrE,+DAA+D;AA8B/D,MAAM,mBAAmB,GAAsC;IAC7D,UAAU,EAAE;QACV,SAAS,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC;QAC3B,UAAU,EAAE,CAAC,YAAY,EAAE,QAAQ,EAAE,MAAM,CAAC;QAC5C,cAAc,EAAE,CAAC,aAAa,CAAC;QAC/B,eAAe,EAAE,CAAC,UAAU,EAAE,aAAa,EAAE,cAAc,CAAC;KAC7D;IACD,QAAQ,EAAE;QACR,SAAS,EAAE,CAAC,KAAK,EAAE,YAAY,EAAE,QAAQ,CAAC;QAC1C,UAAU,EAAE,CAAC,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS,CAAC;QACnE,cAAc,EAAE,CAAC,aAAa,EAAE,gBAAgB,CAAC;QACjD,eAAe,EAAE,CAAC,UAAU,EAAE,aAAa,EAAE,aAAa,CAAC;KAC5D;IACD,QAAQ,EAAE;QACR,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,KAAK,EAAE,MAAM,CAAC;QACtD,UAAU,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS,CAAC;QAC5D,cAAc,EAAE,CAAC,aAAa,CAAC;QAC/B,eAAe,EAAE,CAAC,aAAa,EAAE,cAAc,EAAE,aAAa,CAAC;KAChE;IACD,GAAG,EAAE;QACH,SAAS,EAAE,CAAC,YAAY,EAAE,QAAQ,EAAE,IAAI,CAAC;QACzC,UAAU,EAAE,CAAC,SAAS,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,CAAC;QAClD,cAAc,EAAE,CAAC,YAAY,EAAE,aAAa,CAAC;QAC7C,eAAe,EAAE,CAAC,UAAU,EAAE,aAAa,EAAE,gBAAgB,CAAC;KAC/D;IACD,QAAQ,EAAE;QACR,SAAS,EAAE,CAAC,YAAY,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC;QACjD,UAAU,EAAE,EAAE;QACd,cAAc,EAAE,CAAC,qBAAqB,EAAE,aAAa,CAAC;QACtD,eAAe,EAAE,CAAC,UAAU,EAAE,aAAa,CAAC;KAC7C;IACD,cAAc,EAAE;QACd,SAAS,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,WAAW,CAAC;QACvC,UAAU,EAAE,CAAC,WAAW,EAAE,gBAAgB,EAAE,QAAQ,EAAE,SAAS,CAAC;QAChE,cAAc,EAAE,CAAC,aAAa,CAAC;QAC/B,eAAe,EAAE,CAAC,UAAU,EAAE,aAAa,EAAE,cAAc,CAAC;KAC7D;CACF,CAAC;AAEF,8DAA8D;AAE9D,MAAM,OAAO,sBAAsB;IACjC;;;;OAIG;IACH,OAAO,CACL,KAAsB,EACtB,cAAyC;QAEzC,MAAM,IAAI,GAAa,EAAE,CAAC;QAC1B,MAAM,SAAS,GAAa,EAAE,CAAC;QAE/B,0CAA0C;QAC1C,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QACjD,MAAM,YAAY,GAAG,SAAS,CAAC,CAAC,CAAC,mBAAmB,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAEvE,0BAA0B;QAC1B,IAAI,YAAY,EAAE,CAAC;YACjB,KAAK,MAAM,IAAI,IAAI,YAAY,CAAC,SAAS,EAAE,CAAC;gBAC1C,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;oBAC3C,IAAI,CAAC,IAAI,CAAC,WAAW,SAAS,wBAAwB,IAAI,gCAAgC,CAAC,CAAC;gBAC9F,CAAC;YACH,CAAC;YAED,8DAA8D;YAC9D,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,MAAM,CAAC,SAAS,EAAE,CAAC;gBAC1C,MAAM,UAAU,GAAG,YAAY,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;gBACzD,MAAM,SAAS,GAAG,IAAI,CAAC,iBAAiB,CAAC,IAAI,EAAE,YAAY,CAAC,SAAS,CAAC,CAAC;gBACvE,IAAI,CAAC,UAAU,IAAI,CAAC,SAAS,EAAE,CAAC;oBAC9B,SAAS,CAAC,IAAI,CAAC,mBAAmB,IAAI,kCAAkC,SAAS,GAAG,CAAC,CAAC;gBACxF,CAAC;YACH,CAAC;YAED,gCAAgC;YAChC,KAAK,MAAM,GAAG,IAAI,YAAY,CAAC,eAAe,EAAE,CAAC;gBAC/C,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;oBACjD,IAAI,CAAC,IAAI,CAAC,WAAW,SAAS,uBAAuB,GAAG,uCAAuC,CAAC,CAAC;gBACnG,CAAC;YACH,CAAC;QACH,CAAC;QAED,sBAAsB;QACtB,MAAM,YAAY,GAAG,IAAI,CAAC,iBAAiB,CAAC,KAAK,EAAE,cAAc,EAAE,YAAY,CAAC,CAAC;QAEjF,4CAA4C;QAC5C,IAAI,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YACzC,IAAI,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC;QAClE,CAAC;QACD,IAAI,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,YAAY,CAAC;YAC7D,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC;YAC3D,KAAK,CAAC,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YACpE,SAAS,CAAC,IAAI,CAAC,6EAA6E,CAAC,CAAC;QAChG,CAAC;QAED,gCAAgC;QAChC,IAAI,KAAK,CAAC,WAAW,KAAK,WAAW,IAAI,KAAK,CAAC,WAAW,CAAC,gBAAgB,EAAE,CAAC;YAC5E,SAAS,CAAC,IAAI,CAAC,4CAA4C,CAAC,CAAC;QAC/D,CAAC;QACD,IAAI,KAAK,CAAC,WAAW,KAAK,UAAU,IAAI,KAAK,CAAC,WAAW,CAAC,gBAAgB,EAAE,CAAC;YAC3E,SAAS,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;QACpE,CAAC;QAED,OAAO;YACL,aAAa,EAAE,KAAK,CAAC,MAAM,CAAC,WAAW;YACvC,cAAc,EAAE,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,YAAY,CAAC;YAChE,IAAI;YACJ,SAAS;YACT,WAAW,EAAE,YAAY;SAC1B,CAAC;IACJ,CAAC;IAED,4DAA4D;IAEpD,WAAW,CAAC,MAAiC;QACnD,MAAM,IAAI,GAAG,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC;QAC9C,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;QAE/D,KAAK,MAAM,CAAC,GAAG,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,mBAAmB,CAAC,EAAE,CAAC;YAC9D,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC;gBAAE,OAAO,GAAG,CAAC;YACnC,IAAI,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;gBAAE,OAAO,GAAG,CAAC;QACpE,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,iBAAiB,CAAC,IAAY,EAAE,aAAuB;QAC7D,MAAM,OAAO,GAA6B;YACxC,UAAU,EAAE,CAAC,YAAY,CAAC;YAC1B,UAAU,EAAE,CAAC,YAAY,CAAC;YAC1B,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,IAAI,EAAE,CAAC,MAAM,CAAC;YACd,GAAG,EAAE,CAAC,WAAW,CAAC;SACnB,CAAC;QACF,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IACpE,CAAC;IAEO,iBAAiB,CACvB,KAAsB,EACtB,cAAyC,EACzC,YAAsC;QAEtC,MAAM,SAAS,GAAa,EAAE,CAAC;QAC/B,MAAM,YAAY,GAAa,EAAE,CAAC;QAClC,MAAM,OAAO,GAAa,EAAE,CAAC;QAE7B,4BAA4B;QAC5B,KAAK,MAAM,MAAM,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YACjC,MAAM,IAAI,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,MAAM,CAAC,CAAC;YACvD,IAAI,CAAC,IAAI,EAAE,CAAC;gBACV,YAAY,CAAC,IAAI,CAAC,GAAG,MAAM,0BAA0B,CAAC,CAAC;gBACvD,SAAS;YACX,CAAC;YAED,iDAAiD;YACjD,IAAI,YAAY,IAAI,YAAY,CAAC,cAAc,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBACpE,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACzB,CAAC;iBAAM,IAAI,CAAC,YAAY,EAAE,CAAC;gBACzB,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,oCAAoC;YAC9D,CAAC;iBAAM,CAAC;gBACN,YAAY,CAAC,IAAI,CAAC,GAAG,MAAM,WAAW,IAAI,CAAC,IAAI,2BAA2B,CAAC,CAAC;YAC9E,CAAC;QACH,CAAC;QAED,0BAA0B;QAC1B,IAAI,YAAY,EAAE,CAAC;YACjB,KAAK,MAAM,YAAY,IAAI,YAAY,CAAC,cAAc,EAAE,CAAC;gBACvD,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE;oBACpC,MAAM,IAAI,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;oBACnD,OAAO,IAAI,EAAE,IAAI,KAAK,YAAY,CAAC;gBACrC,CAAC,CAAC,CAAC;gBACH,IAAI,CAAC,OAAO,EAAE,CAAC;oBACb,OAAO,CAAC,IAAI,CAAC,OAAO,YAAY,2CAA2C,CAAC,CAAC;gBAC/E,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,EAAE,SAAS,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC;IAC9C,CAAC;IAEO,sBAAsB,CAC5B,KAAsB,EACtB,YAAsC;QAEtC,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,KAAK,CAAC,IAAI,CAAC,cAAc,KAAK,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC9D,IAAI,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvC,KAAK,CAAC,IAAI,CAAC,eAAe,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAClE,CAAC;QACD,KAAK,CAAC,IAAI,CAAC,WAAW,KAAK,CAAC,MAAM,CAAC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAClE,IAAI,YAAY,EAAE,CAAC;YACjB,KAAK,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;QAC9C,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,IAAI,CAAC,yCAAyC,CAAC,CAAC;QACxD,CAAC;QACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;CACF"}

package/dist/runtime/human-escalation.d.ts

@@ -0,0 +1,41 @@
+import type { HumanEscalation, TaskGraph, AgentMessage, MemoryConflict, AuditEntry, TrustWindow, CollusionEvent, SafetyPolicy, StallReport } from './types.js';
+export declare class HumanEscalationManager {
+    private escalations;
+    private policy;
+    constructor(policy: SafetyPolicy);
+    /**
+     * Create an escalation from a safety threshold breach.
+     */
+    escalateSafetyBreach(rule: string, currentValue: number, maxValue: number, context: EscalationContext): HumanEscalation;
+    /**
+     * Create an escalation from a collusion detection.
+     */
+    escalateCollusion(event: CollusionEvent, context: EscalationContext): HumanEscalation;
+    /**
+     * Create an escalation from an unresolvable stall.
+     */
+    escalateStall(stalls: readonly StallReport[], context: EscalationContext): HumanEscalation;
+    /**
+     * Create an escalation from trust collapse (too many demotions).
+     */
+    escalateTrustCollapse(agentId: string, demotions: number, context: EscalationContext): HumanEscalation;
+    /**
+     * Record a human response to a pending escalation.
+     */
+    resolve(escalationId: string, action: string, reasoning: string): boolean;
+    /** Get all escalations. */
+    getAllEscalations(): readonly HumanEscalation[];
+    /** Get pending escalations. */
+    getPending(): readonly HumanEscalation[];
+    /** Check if there are any unresolved escalations. */
+    hasUnresolved(): boolean;
+    private createEscalation;
+}
+export interface EscalationContext {
+    readonly taskGraph: TaskGraph;
+    readonly relevantMessages: readonly AgentMessage[];
+    readonly conflictingClaims: readonly MemoryConflict[];
+    readonly recentAudit: readonly AuditEntry[];
+    readonly trustSnapshots: readonly TrustWindow[];
+    readonly collusionEvents: readonly CollusionEvent[];
+}

package/dist/runtime/human-escalation.js

@@ -0,0 +1,122 @@
+// ============================================================
+// Assay Verified Agent Runtime — Human Escalation Manager
+// Packages structured context for human review when the system
+// cannot resolve a situation autonomously.
+// ============================================================
+import { randomUUID } from 'node:crypto';
+// ── Human Escalation Manager ───────────────────────────────
+export class HumanEscalationManager {
+    escalations = [];
+    policy;
+    constructor(policy) {
+        this.policy = policy;
+    }
+    /**
+     * Create an escalation from a safety threshold breach.
+     */
+    escalateSafetyBreach(rule, currentValue, maxValue, context) {
+        return this.createEscalation({
+            type: 'safety_threshold',
+            rule,
+            value: currentValue,
+            max: maxValue,
+        }, context, [
+            `Reduce the affected agent's autonomy`,
+            `Replace the agent with a different model`,
+            `Abort the current task and start fresh`,
+            `Override the safety threshold (increases risk)`,
+        ]);
+    }
+    /**
+     * Create an escalation from a collusion detection.
+     */
+    escalateCollusion(event, context) {
+        return this.createEscalation({ type: 'collusion_detected', event }, context, [
+            `Switch one agent to a different LLM provider (model diversity)`,
+            `Require formal verification for all claims from these agents`,
+            `Demote both agents to untrusted`,
+            `Review the specific claim manually: "${event.claimText}"`,
+        ]);
+    }
+    /**
+     * Create an escalation from an unresolvable stall.
+     */
+    escalateStall(stalls, context) {
+        const actions = [];
+        for (const stall of stalls) {
+            switch (stall.type) {
+                case 'dependency_deadlock':
+                    actions.push(`Break circular dependency involving task ${stall.taskId}`);
+                    break;
+                case 'reject_loop':
+                    actions.push(`Simplify or redefine task ${stall.taskId} (rejected ${stall.attempts} times)`);
+                    break;
+                case 'timeout':
+                    actions.push(`Investigate why task ${stall.taskId} is taking ${stall.duration}ms`);
+                    break;
+                case 'resource_contention':
+                    actions.push(`Add another agent for the ${stall.taskId} specialization`);
+                    break;
+            }
+        }
+        return this.createEscalation({ type: 'stall_unresolvable', stalls }, context, actions);
+    }
+    /**
+     * Create an escalation from trust collapse (too many demotions).
+     */
+    escalateTrustCollapse(agentId, demotions, context) {
+        return this.createEscalation({ type: 'trust_collapse', agentId, demotions }, context, [
+            `Replace the agent with a different model`,
+            `Review the agent's recent verification failures`,
+            `Reset the agent's trust and retry with closer oversight`,
+            `Remove the agent from the team`,
+        ]);
+    }
+    /**
+     * Record a human response to a pending escalation.
+     */
+    resolve(escalationId, action, reasoning) {
+        const escalation = this.escalations.find(e => e.id === escalationId);
+        if (!escalation || escalation.status !== 'pending')
+            return false;
+        escalation.status = 'resolved';
+        escalation.humanResponse = {
+            action,
+            reasoning,
+            timestamp: new Date().toISOString(),
+        };
+        return true;
+    }
+    /** Get all escalations. */
+    getAllEscalations() {
+        return this.escalations;
+    }
+    /** Get pending escalations. */
+    getPending() {
+        return this.escalations.filter(e => e.status === 'pending');
+    }
+    /** Check if there are any unresolved escalations. */
+    hasUnresolved() {
+        return this.escalations.some(e => e.status === 'pending');
+    }
+    // ── Private ─────────────────────────────────────────────
+    createEscalation(trigger, context, suggestedActions) {
+        const escalation = {
+            id: randomUUID(),
+            trigger,
+            context: {
+                taskGraph: context.taskGraph,
+                relevantMessages: context.relevantMessages,
+                conflictingClaims: context.conflictingClaims,
+                recentAudit: context.recentAudit.slice(-20), // Last 20 audit entries
+                trustSnapshots: context.trustSnapshots,
+                collusionEvents: context.collusionEvents,
+            },
+            suggestedActions,
+            status: 'pending',
+        };
+        this.escalations.push(escalation);
+        return escalation;
+    }
+}
+//# sourceMappingURL=human-escalation.js.map

package/dist/runtime/human-escalation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"human-escalation.js","sourceRoot":"","sources":["../../src/runtime/human-escalation.ts"],"names":[],"mappings":"AAAA,+DAA+D;AAC/D,0DAA0D;AAC1D,+DAA+D;AAC/D,2CAA2C;AAC3C,+DAA+D;AAE/D,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AAczC,8DAA8D;AAE9D,MAAM,OAAO,sBAAsB;IACzB,WAAW,GAAsB,EAAE,CAAC;IACpC,MAAM,CAAe;IAE7B,YAAY,MAAoB;QAC9B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,oBAAoB,CAClB,IAAY,EACZ,YAAoB,EACpB,QAAgB,EAChB,OAA0B;QAE1B,OAAO,IAAI,CAAC,gBAAgB,CAC1B;YACE,IAAI,EAAE,kBAAkB;YACxB,IAAI;YACJ,KAAK,EAAE,YAAY;YACnB,GAAG,EAAE,QAAQ;SACd,EACD,OAAO,EACP;YACE,sCAAsC;YACtC,0CAA0C;YAC1C,wCAAwC;YACxC,gDAAgD;SACjD,CACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,iBAAiB,CACf,KAAqB,EACrB,OAA0B;QAE1B,OAAO,IAAI,CAAC,gBAAgB,CAC1B,EAAE,IAAI,EAAE,oBAAoB,EAAE,KAAK,EAAE,EACrC,OAAO,EACP;YACE,gEAAgE;YAChE,8DAA8D;YAC9D,iCAAiC;YACjC,wCAAwC,KAAK,CAAC,SAAS,GAAG;SAC3D,CACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,aAAa,CACX,MAA8B,EAC9B,OAA0B;QAE1B,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,QAAQ,KAAK,CAAC,IAAI,EAAE,CAAC;gBACnB,KAAK,qBAAqB;oBACxB,OAAO,CAAC,IAAI,CAAC,4CAA4C,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;oBACzE,MAAM;gBACR,KAAK,aAAa;oBAChB,OAAO,CAAC,IAAI,CAAC,6BAA6B,KAAK,CAAC,MAAM,cAAc,KAAK,CAAC,QAAQ,SAAS,CAAC,CAAC;oBAC7F,MAAM;gBACR,KAAK,SAAS;oBACZ,OAAO,CAAC,IAAI,CAAC,wBAAwB,KAAK,CAAC,MAAM,cAAc,KAAK,CAAC,QAAQ,IAAI,CAAC,CAAC;oBACnF,MAAM;gBACR,KAAK,qBAAqB;oBACxB,OAAO,CAAC,IAAI,CAAC,6BAA6B,KAAK,CAAC,MAAM,iBAAiB,CAAC,CAAC;oBACzE,MAAM;YACV,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC,gBAAgB,CAC1B,EAAE,IAAI,EAAE,oBAAoB,EAAE,MAAM,EAAE,EACtC,OAAO,EACP,OAAO,CACR,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,qBAAqB,CACnB,OAAe,EACf,SAAiB,EACjB,OAA0B;QAE1B,OAAO,IAAI,CAAC,gBAAgB,CAC1B,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,SAAS,EAAE,EAC9C,OAAO,EACP;YACE,0CAA0C;YAC1C,iDAAiD;YACjD,yDAAyD;YACzD,gCAAgC;SACjC,CACF,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,YAAoB,EAAE,MAAc,EAAE,SAAiB;QAC7D,MAAM,UAAU,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,YAAY,CAAC,CAAC;QACrE,IAAI,CAAC,UAAU,IAAI,UAAU,CAAC,MAAM,KAAK,SAAS;YAAE,OAAO,KAAK,CAAC;QAEhE,UAAiC,CAAC,MAAM,GAAG,UAAU,CAAC;QACtD,UAAkE,CAAC,aAAa,GAAG;YAClF,MAAM;YACN,SAAS;YACT,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACpC,CAAC;QAEF,OAAO,IAAI,CAAC;IACd,CAAC;IAED,2BAA2B;IAC3B,iBAAiB;QACf,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,+BAA+B;IAC/B,UAAU;QACR,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC;IAC9D,CAAC;IAED,qDAAqD;IACrD,aAAa;QACX,OAAO,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,SAAS,CAAC,CAAC;IAC5D,CAAC;IAED,2DAA2D;IAEnD,gBAAgB,CACtB,OAA+B,EAC/B,OAA0B,EAC1B,gBAA0B;QAE1B,MAAM,UAAU,GAAoB;YAClC,EAAE,EAAE,UAAU,EAAE;YAChB,OAAO;YACP,OAAO,EAAE;gBACP,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;gBAC1C,iBAAiB,EAAE,OAAO,CAAC,iBAAiB;gBAC5C,WAAW,EAAE,OAAO,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,EAAE,wBAAwB;gBACrE,cAAc,EAAE,OAAO,CAAC,cAAc;gBACtC,eAAe,EAAE,OAAO,CAAC,eAAe;aACzC;YACD,gBAAgB;YAChB,MAAM,EAAE,SAAS;SAClB,CAAC;QAEF,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,OAAO,UAAU,CAAC;IACpB,CAAC;CACF"}

package/dist/runtime/kill-switch.d.ts

@@ -0,0 +1,51 @@
+import { EventEmitter } from 'node:events';
+import type { KillSwitchLevel, KillSwitchAction, KillSwitchEvent } from './types.js';
+export declare class KillSwitch extends EventEmitter {
+    private eventLog;
+    private logPath;
+    private suspendedEntities;
+    private systemHalted;
+    constructor(logPath?: string);
+    /**
+     * Activate the kill switch at a given level.
+     * Validates that the level has authority for the requested action.
+     * Validates that the level is not being overridden by a higher level.
+     */
+    activate(level: KillSwitchLevel, action: KillSwitchAction, target: string, triggeredBy: string, reason: string): Promise<KillSwitchEvent>;
+    /**
+     * Release a kill switch hold on a target.
+     * Only a level equal to or higher than the suspending level can release.
+     */
+    release(target: string, releasedBy: string, level: KillSwitchLevel): Promise<{
+        released: boolean;
+        reason: string;
+    }>;
+    /**
+     * Check if a target is suspended.
+     */
+    isSuspended(target: string): {
+        suspended: boolean;
+        event?: KillSwitchEvent;
+    };
+    /**
+     * Check if the system is halted (Layer 2 kill switch).
+     */
+    isSystemHalted(): boolean;
+    /**
+     * Get all currently suspended entities.
+     */
+    getSuspended(): Map<string, KillSwitchEvent>;
+    /**
+     * Get the full event log.
+     */
+    getEventLog(): readonly KillSwitchEvent[];
+    /**
+     * Validate that a given entity has authority to perform an action.
+     * Used before executing any operation to check kill switch status.
+     */
+    validateAuthority(requestingLevel: KillSwitchLevel, action: KillSwitchAction, target: string): {
+        authorized: boolean;
+        reason: string;
+    };
+    private logEvent;
+}