vaspera 2.13.0 → 2.15.0

package/dist/__tests__/certification/agent-certificate-map.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-certificate-map.test.js","sourceRoot":"","sources":["../../../src/__tests__/certification/agent-certificate-map.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,8BAA8B,EAC9B,uBAAuB,GACxB,MAAM,8CAA8C,CAAC;AACtD,OAAO,EACL,mBAAmB,EACnB,iBAAiB,GAClB,MAAM,0CAA0C,CAAC;AAGlD,MAAM,IAAI,GAAG;IACX,WAAW,EAAE,QAAQ;IACrB,QAAQ,EAAE,0BAA0B;IACpC,SAAS,EAAE,0BAA0B;IACrC,aAAa,EAAE,cAAc;CAC9B,CAAC;AAEF,SAAS,iBAAiB;IACxB,OAAO;QACL,QAAQ,EAAE;YACR,EAAE,EAAE,QAAQ;YACZ,YAAY,EAAE,YAAY;YAC1B,YAAY,EAAE,iBAAiB;YAC/B,UAAU,EAAE,0BAA0B;YACtC,YAAY,EAAE,0BAA0B;YACxC,MAAM,EAAE,WAAW;YACnB,gBAAgB,EAAE,CAAC,UAAU,EAAE,SAAS,CAAC;YACzC,gBAAgB,EAAE,CAAC,UAAU,EAAE,SAAS,CAAC;YACzC,mBAAmB,EAAE,UAAU;YAC/B,WAAW,EAAE,EAAE;YACf,YAAY,EAAE,cAAc;SAC7B;QACD,MAAM,EAAE;YACN,QAAQ,EAAE;gBACR,KAAK,EAAE,UAAU;gBACjB,UAAU,EAAE,0BAA0B;gBACtC,YAAY,EAAE,0BAA0B;gBACxC,MAAM,EAAE,WAAW;gBACnB,QAAQ,EAAE;oBACR;wBACE,EAAE,EAAE,IAAI;wBACR,QAAQ,EAAE,MAAM;wBAChB,QAAQ,EAAE,kBAAkB;wBAC5B,IAAI,EAAE,cAAc;wBACpB,IAAI,EAAE,EAAE;wBACR,WAAW,EAAE,8CAA8C;wBAC3D,QAAQ,EAAE,GAAG;wBACb,UAAU,EAAE,EAAE;wBACd,aAAa,EAAE,EAAE;wBACjB,UAAU,EAAE,0BAA0B;qBACvC;oBACD;wBACE,EAAE,EAAE,IAAI;wBACR,QAAQ,EAAE,KAAK;wBACf,QAAQ,EAAE,iBAAiB;wBAC3B,WAAW,EAAE,4BAA4B;wBACzC,QAAQ,EAAE,GAAG;wBACb,UAAU,EAAE,EAAE;wBACd,aAAa,EAAE,EAAE;wBACjB,UAAU,EAAE,0BAA0B;qBACvC;iBACF;aACF;YACD,OAAO,EAAE;gBACP,KAAK,EAAE,SAAS;gBAChB,UAAU,EAAE,0BAA0B;gBACtC,YAAY,EAAE,0BAA0B;gBACxC,MAAM,EAAE,WAAW;gBACnB,QAAQ,EAAE,EAAE;aACb;SACF;QACD,mBAAmB,EAAE,EAAE;QACvB,mBAAmB,EAAE,EAAE;KACxB,CAAC;AACJ,CAAC;AAED,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;IAC9C,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,IAAI,GAAG,8BAA8B,CAAC,iBAAiB,EAAE,EAAE,IAAI,CAAC,CAAC;QACvE,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAC7C,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACjD,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACpC,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACnC,kEAAkE;QAClE,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACrD,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,kBAAkB,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClG,kCAAkC;QAClC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACpD,wDAAwD;QACxD,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAE/D,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,CAAC,CAAC;QAC7C,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,IAAI,CAAC,CAAC;QAC7C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2DAA2D,EAAE,GAAG,EAAE;QACnE,MAAM,CAAC,GAAG,iBAAiB,EAAE,CAAC;QAC9B,MAAM,IAAI,GAAG,8BAA8B,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;QACrD,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACnE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sEAAsE,EAAE,KAAK,IAAI,EAAE;QACpF,MAAM,IAAI,GAAG,uBAAuB,CAAC;YACnC,GAAG,IAAI;YACP,WAAW,EAAE,aAAa;YAC1B,WAAW,EAAE,OAAO;YACpB,UAAU,EAAE,kBAAkB;SAC/B,CAAC,CAAC;QACH,MAAM,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC3C,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YACjD,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAC1C,CAAC;QACD,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,CAAC,CAAC;QAC7C,MAAM,CAAC,CAAC,MAAM,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC3D,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/certification/agent-certificate.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=agent-certificate.test.d.ts.map

package/dist/__tests__/certification/agent-certificate.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-certificate.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/certification/agent-certificate.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/certification/agent-certificate.test.js

@@ -0,0 +1,78 @@
+import { describe, it, expect } from "vitest";
+import { finalizeCertificate, verifyCertificate, canonicalize, computeContentDigest, parseCertificate, CertificateError, AgentCertificateSchema, AGENT_CERTIFICATE_SCHEMA, } from "../../certification/agent-certificate.js";
+import { buildSampleCertificateBody } from "../../certification/agent-certificate-sample.js";
+const sampleOpts = {
+    toolVersion: "2.14.0",
+    issuedAt: "2026-06-11T00:00:00.000Z",
+    expiresAt: "2026-09-09T00:00:00.000Z",
+    certificateId: "vac_test_0001",
+};
+function body() {
+    return buildSampleCertificateBody(sampleOpts);
+}
+describe("agent certificate", () => {
+    it("finalizes a valid body with a content digest", async () => {
+        const cert = await finalizeCertificate(body());
+        expect(cert.schemaVersion).toBe(AGENT_CERTIFICATE_SCHEMA);
+        expect(cert.integrity.algorithm).toBe("sha256");
+        expect(cert.integrity.contentDigest).toMatch(/^[a-f0-9]{64}$/);
+        // digest is over the body alone (no signature when unsigned)
+        expect(cert.signature).toBeUndefined();
+    });
+    it("produces a deterministic digest regardless of key order", async () => {
+        const a = await finalizeCertificate(body());
+        // shuffle top-level key order of the body
+        const shuffled = Object.fromEntries(Object.entries(body()).reverse());
+        const b = await finalizeCertificate(shuffled);
+        expect(a.integrity.contentDigest).toBe(b.integrity.contentDigest);
+    });
+    it("verifies an untampered certificate", async () => {
+        const cert = await finalizeCertificate(body());
+        const result = await verifyCertificate(cert);
+        expect(result.valid).toBe(true);
+        expect(result.schemaValid).toBe(true);
+        expect(result.contentDigestValid).toBe(true);
+        expect(result.signaturePresent).toBe(false);
+    });
+    it("detects tampering — any field change breaks the digest", async () => {
+        const cert = await finalizeCertificate(body());
+        const tampered = { ...cert, overallScore: 100 };
+        const result = await verifyCertificate(tampered);
+        expect(result.contentDigestValid).toBe(false);
+        expect(result.valid).toBe(false);
+        expect(result.errors.join(" ")).toMatch(/digest mismatch/i);
+    });
+    it("detects tampering inside a nested dimension", async () => {
+        const cert = await finalizeCertificate(body());
+        const tampered = JSON.parse(JSON.stringify(cert));
+        tampered.dimensions.security.score = 10;
+        const result = await verifyCertificate(tampered);
+        expect(result.valid).toBe(false);
+    });
+    it("rejects a structurally invalid certificate", async () => {
+        const result = await verifyCertificate({ not: "a certificate" });
+        expect(result.valid).toBe(false);
+        expect(result.schemaValid).toBe(false);
+    });
+    it("round-trips through parseCertificate", async () => {
+        const cert = await finalizeCertificate(body());
+        const json = JSON.parse(JSON.stringify(cert));
+        const parsed = parseCertificate(json);
+        expect(parsed.certificateId).toBe(cert.certificateId);
+    });
+    it("throws a typed error for an invalid body", async () => {
+        const bad = { ...body(), overallScore: 999 };
+        await expect(finalizeCertificate(bad)).rejects.toBeInstanceOf(CertificateError);
+    });
+    it("the sample body validates against the full schema once finalized", async () => {
+        const cert = await finalizeCertificate(body());
+        expect(AgentCertificateSchema.safeParse(cert).success).toBe(true);
+    });
+    it("canonicalize + computeContentDigest agree with finalize", async () => {
+        const b = body();
+        const cert = await finalizeCertificate(b);
+        expect(computeContentDigest(b)).toBe(cert.integrity.contentDigest);
+        expect(typeof canonicalize(b)).toBe("string");
+    });
+});
+//# sourceMappingURL=agent-certificate.test.js.map

package/dist/__tests__/certification/agent-certificate.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-certificate.test.js","sourceRoot":"","sources":["../../../src/__tests__/certification/agent-certificate.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,YAAY,EACZ,oBAAoB,EACpB,gBAAgB,EAChB,gBAAgB,EAChB,sBAAsB,EACtB,wBAAwB,GACzB,MAAM,0CAA0C,CAAC;AAClD,OAAO,EAAE,0BAA0B,EAAE,MAAM,iDAAiD,CAAC;AAE7F,MAAM,UAAU,GAAG;IACjB,WAAW,EAAE,QAAQ;IACrB,QAAQ,EAAE,0BAA0B;IACpC,SAAS,EAAE,0BAA0B;IACrC,aAAa,EAAE,eAAe;CAC/B,CAAC;AAEF,SAAS,IAAI;IACX,OAAO,0BAA0B,CAAC,UAAU,CAAC,CAAC;AAChD,CAAC;AAED,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;IACjC,EAAE,CAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC5D,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QAC1D,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QAChD,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC;QAC/D,6DAA6D;QAC7D,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,aAAa,EAAE,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,CAAC,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC5C,0CAA0C;QAC1C,MAAM,QAAQ,GAAG,MAAM,CAAC,WAAW,CACjC,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,OAAO,EAAE,CACN,CAAC;QAC7B,MAAM,CAAC,GAAG,MAAM,mBAAmB,CAAC,QAAQ,CAAC,CAAC;QAC9C,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;IACpE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,KAAK,IAAI,EAAE;QAClD,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,IAAI,CAAC,CAAC;QAC7C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACtC,MAAM,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7C,MAAM,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC9C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;QACtE,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,QAAQ,GAAG,EAAE,GAAG,IAAI,EAAE,YAAY,EAAE,GAAG,EAAE,CAAC;QAChD,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QACjD,MAAM,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC9C,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACjC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,kBAAkB,CAAC,CAAC;IAC9D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;QAC3D,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;QAClD,QAAQ,CAAC,UAAU,CAAC,QAAQ,CAAC,KAAK,GAAG,EAAE,CAAC;QACxC,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,QAAQ,CAAC,CAAC;QACjD,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACnC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4CAA4C,EAAE,KAAK,IAAI,EAAE;QAC1D,MAAM,MAAM,GAAG,MAAM,iBAAiB,CAAC,EAAE,GAAG,EAAE,eAAe,EAAE,CAAC,CAAC;QACjE,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACjC,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sCAAsC,EAAE,KAAK,IAAI,EAAE;QACpD,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC;QAC9C,MAAM,MAAM,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC;QACtC,MAAM,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,0CAA0C,EAAE,KAAK,IAAI,EAAE;QACxD,MAAM,GAAG,GAAG,EAAE,GAAG,IAAI,EAAE,EAAE,YAAY,EAAE,GAAG,EAAE,CAAC;QAC7C,MAAM,MAAM,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAC,CAAC,OAAO,CAAC,cAAc,CAAC,gBAAgB,CAAC,CAAC;IAClF,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kEAAkE,EAAE,KAAK,IAAI,EAAE;QAChF,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,CAAC,CAAC;QAC/C,MAAM,CAAC,sBAAsB,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACpE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,KAAK,IAAI,EAAE;QACvE,MAAM,CAAC,GAAG,IAAI,EAAE,CAAC;QACjB,MAAM,IAAI,GAAG,MAAM,mBAAmB,CAAC,CAAC,CAAC,CAAC;QAC1C,MAAM,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;QACnE,MAAM,CAAC,OAAO,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/certification/verify-endpoint.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=verify-endpoint.test.d.ts.map

package/dist/__tests__/certification/verify-endpoint.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify-endpoint.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/certification/verify-endpoint.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/certification/verify-endpoint.test.js

@@ -0,0 +1,81 @@
+import { describe, it, expect, beforeAll } from "vitest";
+import { finalizeCertificate, AGENT_CERTIFICATE_SCHEMA, } from "../../certification/agent-certificate.js";
+import { verifyCertificatePayload } from "../../certification/verify-endpoint.js";
+const NOW = new Date("2026-06-15T00:00:00.000Z");
+function bodyFixture(over = {}) {
+    const dim = {
+        status: "pass",
+        score: 95,
+        summary: "ok",
+        checks: [],
+    };
+    return {
+        schemaVersion: AGENT_CERTIFICATE_SCHEMA,
+        certificateId: "vac_test_0001",
+        subject: { kind: "mcp-server", name: "test-subject", version: "1.0.0" },
+        issuer: { name: "Vaspera", tool: "vaspera-hardening", toolVersion: "2.14.0" },
+        issuedAt: "2026-06-10T00:00:00.000Z",
+        expiresAt: "2026-09-10T00:00:00.000Z",
+        level: "CERTIFIED",
+        overallScore: 95,
+        dimensions: {
+            security: dim,
+            scalability: dim,
+            quality: dim,
+            explainability: dim,
+            compliance: { status: "pass", score: 95, summary: "ok", frameworks: [] },
+            aiBom: { status: "pass", score: 95, summary: "ok", components: [] },
+        },
+        provenance: {},
+        evidence: [],
+        ...over,
+    };
+}
+describe("verifyCertificatePayload", () => {
+    let validCert;
+    beforeAll(async () => {
+        validCert = await finalizeCertificate(bodyFixture());
+    });
+    it("verifies a well-formed, untampered certificate", async () => {
+        const r = await verifyCertificatePayload(validCert, NOW);
+        expect(r.valid).toBe(true);
+        expect(r.schemaValid).toBe(true);
+        expect(r.contentDigestValid).toBe(true);
+        expect(r.summary).toMatch(/^VALID/);
+    });
+    it("surfaces the certificate's claims when structurally valid", async () => {
+        const r = await verifyCertificatePayload(validCert, NOW);
+        expect(r.claims).toBeDefined();
+        expect(r.claims.subject.name).toBe("test-subject");
+        expect(r.claims.level).toBe("CERTIFIED");
+        expect(r.claims.overallScore).toBe(95);
+    });
+    it("rejects a tampered certificate (digest mismatch)", async () => {
+        const tampered = JSON.parse(JSON.stringify(validCert));
+        tampered.overallScore = 100; // mutate body without recomputing the digest
+        const r = await verifyCertificatePayload(tampered, NOW);
+        expect(r.valid).toBe(false);
+        expect(r.contentDigestValid).toBe(false);
+        expect(r.summary).toMatch(/tampered/i);
+    });
+    it("rejects a non-certificate document", async () => {
+        const r = await verifyCertificatePayload({ hello: "world" }, NOW);
+        expect(r.valid).toBe(false);
+        expect(r.schemaValid).toBe(false);
+        expect(r.summary).toMatch(/not a well-formed/i);
+    });
+    it("flags an expired certificate as VALID but EXPIRED", async () => {
+        const expired = await finalizeCertificate(bodyFixture({ expiresAt: "2026-01-01T00:00:00.000Z" }));
+        const r = await verifyCertificatePayload(expired, NOW);
+        expect(r.valid).toBe(true); // integrity is independent of expiry
+        expect(r.expired).toBe(true);
+        expect(r.warnings.some((w) => /expired/i.test(w))).toBe(true);
+        expect(r.summary).toMatch(/EXPIRED/);
+    });
+    it("warns that a digest-only certificate is unsigned", async () => {
+        const r = await verifyCertificatePayload(validCert, NOW);
+        expect(r.signaturePresent).toBe(false);
+        expect(r.warnings.some((w) => /unsigned/i.test(w))).toBe(true);
+    });
+});
+//# sourceMappingURL=verify-endpoint.test.js.map

package/dist/__tests__/certification/verify-endpoint.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"verify-endpoint.test.js","sourceRoot":"","sources":["../../../src/__tests__/certification/verify-endpoint.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACzD,OAAO,EACL,mBAAmB,EAEnB,wBAAwB,GACzB,MAAM,0CAA0C,CAAC;AAClD,OAAO,EAAE,wBAAwB,EAAE,MAAM,wCAAwC,CAAC;AAElF,MAAM,GAAG,GAAG,IAAI,IAAI,CAAC,0BAA0B,CAAC,CAAC;AAEjD,SAAS,WAAW,CAAC,OAAsC,EAAE;IAC3D,MAAM,GAAG,GAAG;QACV,MAAM,EAAE,MAAe;QACvB,KAAK,EAAE,EAAE;QACT,OAAO,EAAE,IAAI;QACb,MAAM,EAAE,EAAE;KACX,CAAC;IACF,OAAO;QACL,aAAa,EAAE,wBAAwB;QACvC,aAAa,EAAE,eAAe;QAC9B,OAAO,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,cAAc,EAAE,OAAO,EAAE,OAAO,EAAE;QACvE,MAAM,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,mBAAmB,EAAE,WAAW,EAAE,QAAQ,EAAE;QAC7E,QAAQ,EAAE,0BAA0B;QACpC,SAAS,EAAE,0BAA0B;QACrC,KAAK,EAAE,WAAW;QAClB,YAAY,EAAE,EAAE;QAChB,UAAU,EAAE;YACV,QAAQ,EAAE,GAAG;YACb,WAAW,EAAE,GAAG;YAChB,OAAO,EAAE,GAAG;YACZ,cAAc,EAAE,GAAG;YACnB,UAAU,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,EAAE;YACxE,KAAK,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,EAAE,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,EAAE;SACpE;QACD,UAAU,EAAE,EAAE;QACd,QAAQ,EAAE,EAAE;QACZ,GAAG,IAAI;KACR,CAAC;AACJ,CAAC;AAED,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;IACxC,IAAI,SAAkB,CAAC;IAEvB,SAAS,CAAC,KAAK,IAAI,EAAE;QACnB,SAAS,GAAG,MAAM,mBAAmB,CAAC,WAAW,EAAE,CAAC,CAAC;IACvD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;QAC9D,MAAM,CAAC,GAAG,MAAM,wBAAwB,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QACzD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC3B,MAAM,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACjC,MAAM,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2DAA2D,EAAE,KAAK,IAAI,EAAE;QACzE,MAAM,CAAC,GAAG,MAAM,wBAAwB,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QACzD,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,WAAW,EAAE,CAAC;QAC/B,MAAM,CAAC,CAAC,CAAC,MAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACpD,MAAM,CAAC,CAAC,CAAC,MAAO,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QAC1C,MAAM,CAAC,CAAC,CAAC,MAAO,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kDAAkD,EAAE,KAAK,IAAI,EAAE;QAChE,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,CAAC;QACvD,QAAQ,CAAC,YAAY,GAAG,GAAG,CAAC,CAAC,6CAA6C;QAC1E,MAAM,CAAC,GAAG,MAAM,wBAAwB,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;QACxD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC5B,MAAM,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACzC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oCAAoC,EAAE,KAAK,IAAI,EAAE;QAClD,MAAM,CAAC,GAAG,MAAM,wBAAwB,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,EAAE,GAAG,CAAC,CAAC;QAClE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC5B,MAAM,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAClC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,oBAAoB,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,MAAM,OAAO,GAAG,MAAM,mBAAmB,CACvC,WAAW,CAAC,EAAE,SAAS,EAAE,0BAA0B,EAAE,CAAC,CACvD,CAAC;QACF,MAAM,CAAC,GAAG,MAAM,wBAAwB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QACvD,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,qCAAqC;QACjE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC9D,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kDAAkD,EAAE,KAAK,IAAI,EAAE;QAChE,MAAM,CAAC,GAAG,MAAM,wBAAwB,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QACzD,MAAM,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACvC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACjE,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/compliance/ai-frameworks.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=ai-frameworks.test.d.ts.map

package/dist/__tests__/compliance/ai-frameworks.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-frameworks.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/compliance/ai-frameworks.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/compliance/ai-frameworks.test.js

@@ -0,0 +1,87 @@
+import { describe, it, expect } from "vitest";
+import { ISO_42001_CONTROLS } from "../../compliance/iso42001.js";
+import { NIST_AI_RMF_CONTROLS } from "../../compliance/nist-ai-rmf.js";
+import { EU_AI_ACT_CONTROLS } from "../../compliance/frameworks/eu-ai-act.js";
+import { getControlsForFramework } from "../../compliance/mapper.js";
+import { buildComplianceDimension } from "../../certification/agent-certificate-map.js";
+function finding(partial) {
+    return {
+        id: "f",
+        description: "test finding",
+        evidence: "…",
+        confidence: 100,
+        verifications: [],
+        created_at: "2026-06-12T00:00:00.000Z",
+        ...partial,
+    };
+}
+describe("AI compliance frameworks", () => {
+    it("ISO 42001 control set is non-empty and well-formed", () => {
+        expect(ISO_42001_CONTROLS.length).toBeGreaterThan(8);
+        for (const c of ISO_42001_CONTROLS) {
+            expect(c.framework).toBe("ISO-42001");
+            expect(c.id).toMatch(/^A\./);
+            expect(Array.isArray(c.findingCategories)).toBe(true);
+        }
+    });
+    it("NIST AI RMF control set covers all four functions", () => {
+        const fns = new Set(NIST_AI_RMF_CONTROLS.map((c) => c.category));
+        expect(fns).toEqual(new Set(["GOVERN", "MAP", "MEASURE", "MANAGE"]));
+        for (const c of NIST_AI_RMF_CONTROLS) {
+            expect(c.framework).toBe("NIST-AI-RMF");
+        }
+    });
+    it("EU AI Act control set is non-empty and well-formed", () => {
+        expect(EU_AI_ACT_CONTROLS.length).toBeGreaterThan(20);
+        for (const c of EU_AI_ACT_CONTROLS) {
+            expect(c.framework).toBe("EU-AI-ACT");
+            expect(c.id).toMatch(/^EUAIAct-/);
+            expect(Array.isArray(c.findingCategories)).toBe(true);
+        }
+    });
+    it("mapper resolves the AI frameworks (previously returned empty)", () => {
+        expect(getControlsForFramework("ISO-42001").length).toBeGreaterThan(0);
+        expect(getControlsForFramework("NIST-AI-RMF").length).toBeGreaterThan(0);
+        // EU AI Act was authored under frameworks/ but never wired into the mapper.
+        expect(getControlsForFramework("EU-AI-ACT").length).toBeGreaterThan(0);
+    });
+    it("buildComplianceDimension maps real findings to EU AI Act controls", () => {
+        const findings = [
+            finding({ id: "f1", category: "prompt-injection", severity: "critical" }),
+        ];
+        const dim = buildComplianceDimension(findings, ["EU-AI-ACT"]);
+        expect(dim.frameworks).toHaveLength(1);
+        const eu = dim.frameworks[0];
+        expect(eu.framework).toBe("EU-AI-ACT");
+        expect(eu.controlsTotal).toBeGreaterThan(0);
+        expect(eu.controlsFailed).toBeGreaterThan(0);
+        expect(dim.status).toBe("fail");
+    });
+    it("buildComplianceDimension maps real findings to ISO 42001 controls", () => {
+        const findings = [
+            finding({ id: "f1", category: "prompt-injection", severity: "high" }),
+            finding({ id: "f2", category: "exfil-path", severity: "critical" }),
+        ];
+        const dim = buildComplianceDimension(findings, ["ISO-42001"]);
+        expect(dim.frameworks).toHaveLength(1);
+        const iso = dim.frameworks[0];
+        expect(iso.framework).toBe("ISO-42001");
+        expect(iso.controlsTotal).toBeGreaterThan(0);
+        // a critical/high finding should fail at least one control
+        expect(iso.controlsFailed).toBeGreaterThan(0);
+        expect(dim.status).toBe("fail");
+    });
+    it("clean findings produce a passing compliance dimension", () => {
+        const dim = buildComplianceDimension([], ["ISO-42001", "NIST-AI-RMF"]);
+        expect(dim.status).toBe("pass");
+        expect(dim.score).toBe(100);
+        expect(dim.frameworks).toHaveLength(2);
+        expect(dim.frameworks.every((f) => f.controlsFailed === 0)).toBe(true);
+    });
+    it("no frameworks requested -> empty result", () => {
+        const dim = buildComplianceDimension([], []);
+        expect(dim.status).toBe("not_assessed");
+        expect(dim.frameworks).toHaveLength(0);
+    });
+});
+//# sourceMappingURL=ai-frameworks.test.js.map

package/dist/__tests__/compliance/ai-frameworks.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ai-frameworks.test.js","sourceRoot":"","sources":["../../../src/__tests__/compliance/ai-frameworks.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,kBAAkB,EAAE,MAAM,8BAA8B,CAAC;AAClE,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AACvE,OAAO,EAAE,kBAAkB,EAAE,MAAM,0CAA0C,CAAC;AAC9E,OAAO,EAAE,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AACrE,OAAO,EAAE,wBAAwB,EAAE,MAAM,8CAA8C,CAAC;AAGxF,SAAS,OAAO,CAAC,OAA+E;IAC9F,OAAO;QACL,EAAE,EAAE,GAAG;QACP,WAAW,EAAE,cAAc;QAC3B,QAAQ,EAAE,GAAG;QACb,UAAU,EAAE,GAAG;QACf,aAAa,EAAE,EAAE;QACjB,UAAU,EAAE,0BAA0B;QACtC,GAAG,OAAO;KACA,CAAC;AACf,CAAC;AAED,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;IACxC,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAC5D,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QACrD,KAAK,MAAM,CAAC,IAAI,kBAAkB,EAAE,CAAC;YACnC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YACtC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YAC7B,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,GAAG,EAAE;QAC3D,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,oBAAoB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;QACjE,MAAM,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC,QAAQ,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAC;QACrE,KAAK,MAAM,CAAC,IAAI,oBAAoB,EAAE,CAAC;YACrC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAC5D,MAAM,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;QACtD,KAAK,MAAM,CAAC,IAAI,kBAAkB,EAAE,CAAC;YACnC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YACtC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;YAClC,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+DAA+D,EAAE,GAAG,EAAE;QACvE,MAAM,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QACvE,MAAM,CAAC,uBAAuB,CAAC,aAAa,CAAC,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QACzE,4EAA4E;QAC5E,MAAM,CAAC,uBAAuB,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;IACzE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mEAAmE,EAAE,GAAG,EAAE;QAC3E,MAAM,QAAQ,GAAG;YACf,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,kBAAkB,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;SAC1E,CAAC;QACF,MAAM,GAAG,GAAG,wBAAwB,CAAC,QAAQ,EAAE,CAAC,WAAW,CAAC,CAAC,CAAC;QAC9D,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACvC,MAAM,EAAE,GAAG,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;QAC7B,MAAM,CAAC,EAAE,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QACvC,MAAM,CAAC,EAAE,CAAC,aAAa,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC5C,MAAM,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC7C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mEAAmE,EAAE,GAAG,EAAE;QAC3E,MAAM,QAAQ,GAAG;YACf,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,kBAAkB,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC;YACrE,OAAO,CAAC,EAAE,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,YAAY,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;SACpE,CAAC;QACF,MAAM,GAAG,GAAG,wBAAwB,CAAC,QAAQ,EAAE,CAAC,WAAW,CAAC,CAAC,CAAC;QAC9D,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACvC,MAAM,GAAG,GAAG,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;QAC9B,MAAM,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QACxC,MAAM,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC7C,2DAA2D;QAC3D,MAAM,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uDAAuD,EAAE,GAAG,EAAE;QAC/D,MAAM,GAAG,GAAG,wBAAwB,CAAC,EAAE,EAAE,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC,CAAC;QACvE,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAChC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC5B,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACvC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,cAAc,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACzE,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;QACjD,MAAM,GAAG,GAAG,wBAAwB,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QAC7C,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACxC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/eval/llm-analyzer.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=llm-analyzer.test.d.ts.map

package/dist/__tests__/eval/llm-analyzer.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"llm-analyzer.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/eval/llm-analyzer.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/eval/llm-analyzer.test.js

@@ -0,0 +1,93 @@
+import { describe, it, expect, afterEach } from "vitest";
+import { providerAvailable, findingsAgree, consensusOf, } from "../../eval/llm-analyzer.js";
+function finding(over = {}) {
+    return {
+        scanner: "llm:anthropic",
+        ruleId: "anthropic:sql-injection",
+        file: "app.ts",
+        line: 10,
+        severity: "high",
+        message: "sql-injection: untrusted input into query",
+        confidence: 100,
+        ...over,
+    };
+}
+describe("providerAvailable", () => {
+    const orig = { ...process.env };
+    afterEach(() => {
+        process.env = { ...orig };
+    });
+    it("reflects ANTHROPIC_API_KEY presence", () => {
+        delete process.env.ANTHROPIC_API_KEY;
+        expect(providerAvailable("anthropic")).toBe(false);
+        process.env.ANTHROPIC_API_KEY = "sk-test";
+        expect(providerAvailable("anthropic")).toBe(true);
+    });
+    it("reflects OPENAI_API_KEY presence", () => {
+        delete process.env.OPENAI_API_KEY;
+        expect(providerAvailable("openai")).toBe(false);
+        process.env.OPENAI_API_KEY = "sk-test";
+        expect(providerAvailable("openai")).toBe(true);
+    });
+});
+describe("findingsAgree", () => {
+    it("agrees when file, category, and nearby line match across providers", () => {
+        const a = finding({ ruleId: "anthropic:sql-injection", line: 10 });
+        const b = finding({
+            scanner: "llm:openai",
+            ruleId: "openai:sql-injection",
+            line: 12,
+        });
+        expect(findingsAgree(a, b)).toBe(true);
+    });
+    it("disagrees when categories differ", () => {
+        const a = finding({ ruleId: "anthropic:sql-injection" });
+        const b = finding({ ruleId: "openai:xss" });
+        expect(findingsAgree(a, b)).toBe(false);
+    });
+    it("disagrees when files differ", () => {
+        const a = finding({ file: "a.ts" });
+        const b = finding({ file: "b.ts", ruleId: "openai:sql-injection" });
+        expect(findingsAgree(a, b)).toBe(false);
+    });
+    it("disagrees when lines are beyond the tolerance", () => {
+        const a = finding({ line: 10 });
+        const b = finding({ ruleId: "openai:sql-injection", line: 20 });
+        expect(findingsAgree(a, b)).toBe(false);
+    });
+    it("agrees exactly at the line tolerance boundary (±3)", () => {
+        const a = finding({ line: 10 });
+        const b = finding({ ruleId: "openai:sql-injection", line: 13 });
+        expect(findingsAgree(a, b)).toBe(true);
+    });
+});
+describe("consensusOf", () => {
+    it("keeps only primary findings corroborated by the other provider", () => {
+        const anthropic = [
+            finding({ ruleId: "anthropic:sql-injection", line: 10 }),
+            finding({ ruleId: "anthropic:auth-bypass", line: 50 }),
+        ];
+        const openai = [
+            finding({
+                scanner: "llm:openai",
+                ruleId: "openai:sql-injection",
+                line: 11,
+            }),
+        ];
+        const result = consensusOf(anthropic, openai);
+        expect(result).toHaveLength(1);
+        expect(result[0]?.ruleId).toBe("anthropic:sql-injection");
+    });
+    it("returns nothing when the providers share no findings", () => {
+        const anthropic = [finding({ ruleId: "anthropic:xss", line: 5 })];
+        const openai = [
+            finding({ scanner: "llm:openai", ruleId: "openai:ssrf", line: 5 }),
+        ];
+        expect(consensusOf(anthropic, openai)).toEqual([]);
+    });
+    it("returns nothing when either side is empty", () => {
+        expect(consensusOf([], [finding()])).toEqual([]);
+        expect(consensusOf([finding()], [])).toEqual([]);
+    });
+});
+//# sourceMappingURL=llm-analyzer.test.js.map

package/dist/__tests__/eval/llm-analyzer.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"llm-analyzer.test.js","sourceRoot":"","sources":["../../../src/__tests__/eval/llm-analyzer.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,QAAQ,CAAC;AACzD,OAAO,EACL,iBAAiB,EACjB,aAAa,EACb,WAAW,GACZ,MAAM,4BAA4B,CAAC;AAGpC,SAAS,OAAO,CAAC,OAA+B,EAAE;IAChD,OAAO;QACL,OAAO,EAAE,eAAe;QACxB,MAAM,EAAE,yBAAyB;QACjC,IAAI,EAAE,QAAQ;QACd,IAAI,EAAE,EAAE;QACR,QAAQ,EAAE,MAAM;QAChB,OAAO,EAAE,2CAA2C;QACpD,UAAU,EAAE,GAAG;QACf,GAAG,IAAI;KACR,CAAC;AACJ,CAAC;AAED,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;IACjC,MAAM,IAAI,GAAG,EAAE,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAChC,SAAS,CAAC,GAAG,EAAE;QACb,OAAO,CAAC,GAAG,GAAG,EAAE,GAAG,IAAI,EAAE,CAAC;IAC5B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;QAC7C,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC;QACrC,MAAM,CAAC,iBAAiB,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC,iBAAiB,GAAG,SAAS,CAAC;QAC1C,MAAM,CAAC,iBAAiB,CAAC,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;QAC1C,OAAO,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC;QAClC,MAAM,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAChD,OAAO,CAAC,GAAG,CAAC,cAAc,GAAG,SAAS,CAAC;QACvC,MAAM,CAAC,iBAAiB,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,eAAe,EAAE,GAAG,EAAE;IAC7B,EAAE,CAAC,oEAAoE,EAAE,GAAG,EAAE;QAC5E,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,MAAM,EAAE,yBAAyB,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;QACnE,MAAM,CAAC,GAAG,OAAO,CAAC;YAChB,OAAO,EAAE,YAAY;YACrB,MAAM,EAAE,sBAAsB;YAC9B,IAAI,EAAE,EAAE;SACT,CAAC,CAAC;QACH,MAAM,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;QAC1C,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,MAAM,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACzD,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,MAAM,EAAE,YAAY,EAAE,CAAC,CAAC;QAC5C,MAAM,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;QACrC,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QACpC,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC,CAAC;QACpE,MAAM,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;QACvD,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;QAChC,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,MAAM,EAAE,sBAAsB,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;QAChE,MAAM,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;QAC5D,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;QAChC,MAAM,CAAC,GAAG,OAAO,CAAC,EAAE,MAAM,EAAE,sBAAsB,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;QAChE,MAAM,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,aAAa,EAAE,GAAG,EAAE;IAC3B,EAAE,CAAC,gEAAgE,EAAE,GAAG,EAAE;QACxE,MAAM,SAAS,GAAG;YAChB,OAAO,CAAC,EAAE,MAAM,EAAE,yBAAyB,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;YACxD,OAAO,CAAC,EAAE,MAAM,EAAE,uBAAuB,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;SACvD,CAAC;QACF,MAAM,MAAM,GAAG;YACb,OAAO,CAAC;gBACN,OAAO,EAAE,YAAY;gBACrB,MAAM,EAAE,sBAAsB;gBAC9B,IAAI,EAAE,EAAE;aACT,CAAC;SACH,CAAC;QACF,MAAM,MAAM,GAAG,WAAW,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;QAC9C,MAAM,CAAC,MAAM,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;IAC5D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sDAAsD,EAAE,GAAG,EAAE;QAC9D,MAAM,SAAS,GAAG,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,eAAe,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC,CAAC,CAAC;QAClE,MAAM,MAAM,GAAG;YACb,OAAO,CAAC,EAAE,OAAO,EAAE,YAAY,EAAE,MAAM,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;SACnE,CAAC;QACF,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;QACnD,MAAM,CAAC,WAAW,CAAC,EAAE,EAAE,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QACjD,MAAM,CAAC,WAAW,CAAC,CAAC,OAAO,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;IACnD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/eval/redteam-harness.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=redteam-harness.test.d.ts.map

package/dist/__tests__/eval/redteam-harness.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"redteam-harness.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/eval/redteam-harness.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/eval/redteam-harness.test.js

@@ -0,0 +1,136 @@
+import { describe, it, expect } from "vitest";
+import { injectionResistanceScore, summarizeExposure, runRedTeamBenchmark, } from "../../eval/redteam-harness.js";
+function piFinding(tool, severity = "high") {
+    return {
+        scanner: "semgrep",
+        ruleId: "prompt-injection:override-instructions",
+        file: "mcp-manifest",
+        line: 0,
+        message: `Tool "${tool}" vulnerable`,
+        severity,
+        confidence: 100,
+        metadata: { tool },
+    };
+}
+describe("injectionResistanceScore (pure)", () => {
+    it("scores 100 when no tool has an injection finding", () => {
+        const r = injectionResistanceScore([], 5);
+        expect(r.score).toBe(100);
+        expect(r.grade).toBe("A+");
+        expect(r.resistantTools).toBe(5);
+        expect(r.vulnerableTools).toBe(0);
+    });
+    it("scores the share of resistant tools", () => {
+        const findings = [piFinding("a"), piFinding("b")];
+        const r = injectionResistanceScore(findings, 10);
+        expect(r.vulnerableTools).toBe(2);
+        expect(r.resistantTools).toBe(8);
+        expect(r.score).toBe(80);
+    });
+    it("dedupes multiple findings on the same tool", () => {
+        const findings = [piFinding("a"), piFinding("a"), piFinding("a")];
+        const r = injectionResistanceScore(findings, 4);
+        expect(r.vulnerableTools).toBe(1);
+        expect(r.score).toBe(75);
+    });
+    it("excludes the prompt-injection:summary aggregate finding", () => {
+        const summary = {
+            scanner: "semgrep",
+            ruleId: "prompt-injection:summary",
+            file: "mcp-manifest",
+            line: 0,
+            message: "summary",
+            severity: "high",
+            confidence: 100,
+        };
+        const r = injectionResistanceScore([summary, piFinding("a")], 2);
+        expect(r.vulnerableTools).toBe(1);
+        expect(r.score).toBe(50);
+    });
+    it("ignores non-injection findings", () => {
+        const other = {
+            scanner: "semgrep",
+            ruleId: "exfil:path",
+            file: "x",
+            line: 0,
+            message: "exfil",
+            severity: "critical",
+            confidence: 100,
+        };
+        const r = injectionResistanceScore([other], 3);
+        expect(r.vulnerableTools).toBe(0);
+        expect(r.score).toBe(100);
+    });
+    it("returns 0 for zero tools", () => {
+        expect(injectionResistanceScore([], 0).score).toBe(0);
+    });
+});
+describe("summarizeExposure (pure)", () => {
+    it("counts findings by severity and flags critical/high", () => {
+        const findings = [
+            piFinding("a", "critical"),
+            piFinding("b", "high"),
+            piFinding("c", "low"),
+        ];
+        const e = summarizeExposure("exfil-path", "exfil-path-graph", findings);
+        expect(e.findingCount).toBe(3);
+        expect(e.criticalHigh).toBe(2);
+        expect(e.bySeverity.critical).toBe(1);
+        expect(e.bySeverity.low).toBe(1);
+        expect(e.clean).toBe(false);
+    });
+    it("marks an empty dimension clean", () => {
+        const e = summarizeExposure("manifest-hygiene", "manifest-audit", []);
+        expect(e.clean).toBe(true);
+        expect(e.criticalHigh).toBe(0);
+    });
+});
+describe("runRedTeamBenchmark (integration — fuzzer false-positive regression guard)", () => {
+    const benign = {
+        name: "benign",
+        version: "1.0.0",
+        tools: [
+            {
+                name: "add_numbers",
+                description: "Add two integers and return the sum.",
+                inputSchema: {
+                    type: "object",
+                    properties: { a: { type: "number" }, b: { type: "number" } },
+                    required: ["a", "b"],
+                },
+            },
+        ],
+    };
+    const vulnerable = {
+        name: "vuln",
+        version: "1.0.0",
+        tools: [
+            {
+                name: "run_anything",
+                description: "Runs shell commands and fetches arbitrary URLs.",
+                networkAccess: true,
+                codeExecution: true,
+                destructiveHint: true,
+            },
+        ],
+    };
+    it("scores a benign, schema-constrained tool as fully resistant (100)", async () => {
+        const report = await runRedTeamBenchmark({ manifest: benign, corpus: "quick" });
+        // Regression guard: before the BLOCKED_INDICATORS fix the fuzzer flagged
+        // EVERY tool (its own "Jailbreak attempt blocked" refusal matched the
+        // /jailbreak/ indicator), so even this would have scored 0.
+        expect(report.injectionResistance.score).toBe(100);
+        expect(report.injectionResistance.resistantTools).toBe(1);
+        expect(report.grade).toBe("A+");
+    });
+    it("does not give a capability-heavy, schema-less tool a clean pass", async () => {
+        const report = await runRedTeamBenchmark({ manifest: vulnerable, corpus: "quick" });
+        expect(report.injectionResistance.score).toBeLessThan(100);
+    });
+    it("reports exposure dimensions as an array", async () => {
+        const report = await runRedTeamBenchmark({ manifest: benign, corpus: "quick" });
+        expect(Array.isArray(report.exposure)).toBe(true);
+        expect(report.overallScore).toBe(report.injectionResistance.score);
+    });
+});
+//# sourceMappingURL=redteam-harness.test.js.map

package/dist/__tests__/eval/redteam-harness.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"redteam-harness.test.js","sourceRoot":"","sources":["../../../src/__tests__/eval/redteam-harness.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,mBAAmB,GACpB,MAAM,+BAA+B,CAAC;AAIvC,SAAS,SAAS,CAAC,IAAY,EAAE,WAA6C,MAAM;IAClF,OAAO;QACL,OAAO,EAAE,SAAS;QAClB,MAAM,EAAE,wCAAwC;QAChD,IAAI,EAAE,cAAc;QACpB,IAAI,EAAE,CAAC;QACP,OAAO,EAAE,SAAS,IAAI,cAAc;QACpC,QAAQ;QACR,UAAU,EAAE,GAAG;QACf,QAAQ,EAAE,EAAE,IAAI,EAAE;KACnB,CAAC;AACJ,CAAC;AAED,QAAQ,CAAC,iCAAiC,EAAE,GAAG,EAAE;IAC/C,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;QAC1D,MAAM,CAAC,GAAG,wBAAwB,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QAC1C,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC1B,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC3B,MAAM,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACjC,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACpC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qCAAqC,EAAE,GAAG,EAAE;QAC7C,MAAM,QAAQ,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC;QAClD,MAAM,CAAC,GAAG,wBAAwB,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QACjD,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClC,MAAM,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACjC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;QACpD,MAAM,QAAQ,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,SAAS,CAAC,GAAG,CAAC,EAAE,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC;QAClE,MAAM,CAAC,GAAG,wBAAwB,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;QAChD,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yDAAyD,EAAE,GAAG,EAAE;QACjE,MAAM,OAAO,GAAyB;YACpC,OAAO,EAAE,SAAS;YAClB,MAAM,EAAE,0BAA0B;YAClC,IAAI,EAAE,cAAc;YACpB,IAAI,EAAE,CAAC;YACP,OAAO,EAAE,SAAS;YAClB,QAAQ,EAAE,MAAM;YAChB,UAAU,EAAE,GAAG;SAChB,CAAC;QACF,MAAM,CAAC,GAAG,wBAAwB,CAAC,CAAC,OAAO,EAAE,SAAS,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QACjE,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC3B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;QACxC,MAAM,KAAK,GAAyB;YAClC,OAAO,EAAE,SAAS;YAClB,MAAM,EAAE,YAAY;YACpB,IAAI,EAAE,GAAG;YACT,IAAI,EAAE,CAAC;YACP,OAAO,EAAE,OAAO;YAChB,QAAQ,EAAE,UAAU;YACpB,UAAU,EAAE,GAAG;SAChB,CAAC;QACF,MAAM,CAAC,GAAG,wBAAwB,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC;QAC/C,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAC5B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;QAClC,MAAM,CAAC,wBAAwB,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACxD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,0BAA0B,EAAE,GAAG,EAAE;IACxC,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;QAC7D,MAAM,QAAQ,GAA2B;YACvC,SAAS,CAAC,GAAG,EAAE,UAAU,CAAC;YAC1B,SAAS,CAAC,GAAG,EAAE,MAAM,CAAC;YACtB,SAAS,CAAC,GAAG,EAAE,KAAK,CAAC;SACtB,CAAC;QACF,MAAM,CAAC,GAAG,iBAAiB,CAAC,YAAY,EAAE,kBAAkB,EAAE,QAAQ,CAAC,CAAC;QACxE,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC/B,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACtC,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACjC,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAC9B,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;QACxC,MAAM,CAAC,GAAG,iBAAiB,CAAC,kBAAkB,EAAE,gBAAgB,EAAE,EAAE,CAAC,CAAC;QACtE,MAAM,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC3B,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACjC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,QAAQ,CAAC,4EAA4E,EAAE,GAAG,EAAE;IAC1F,MAAM,MAAM,GAAgB;QAC1B,IAAI,EAAE,QAAQ;QACd,OAAO,EAAE,OAAO;QAChB,KAAK,EAAE;YACL;gBACE,IAAI,EAAE,aAAa;gBACnB,WAAW,EAAE,sCAAsC;gBACnD,WAAW,EAAE;oBACX,IAAI,EAAE,QAAQ;oBACd,UAAU,EAAE,EAAE,CAAC,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,CAAC,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE;oBAC5D,QAAQ,EAAE,CAAC,GAAG,EAAE,GAAG,CAAC;iBACrB;aACF;SACF;KACwB,CAAC;IAE5B,MAAM,UAAU,GAAgB;QAC9B,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,OAAO;QAChB,KAAK,EAAE;YACL;gBACE,IAAI,EAAE,cAAc;gBACpB,WAAW,EAAE,iDAAiD;gBAC9D,aAAa,EAAE,IAAI;gBACnB,aAAa,EAAE,IAAI;gBACnB,eAAe,EAAE,IAAI;aACtB;SACF;KACwB,CAAC;IAE5B,EAAE,CAAC,mEAAmE,EAAE,KAAK,IAAI,EAAE;QACjF,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;QAChF,yEAAyE;QACzE,sEAAsE;QACtE,4DAA4D;QAC5D,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnD,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAC1D,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,iEAAiE,EAAE,KAAK,IAAI,EAAE;QAC/E,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;QACpF,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC;IAC7D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;QAChF,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClD,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC;IACrE,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/evidence/evidence.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=evidence.test.d.ts.map

package/dist/__tests__/evidence/evidence.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"evidence.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/evidence/evidence.test.ts"],"names":[],"mappings":""}