npm - veto-sdk - Versions diffs - 2.2.1 → 2.4.0 - Mend

veto-sdk 2.2.1 → 2.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (132) hide show

package/README.md +933 -57
package/dist/admin/client.d.ts +93 -0
package/dist/admin/client.d.ts.map +1 -0
package/dist/admin/client.js +365 -0
package/dist/admin/client.js.map +1 -0
package/dist/admin/types.d.ts +206 -0
package/dist/admin/types.d.ts.map +1 -0
package/dist/admin/types.js +2 -0
package/dist/admin/types.js.map +1 -0
package/dist/audit/chain.d.ts +13 -0
package/dist/audit/chain.d.ts.map +1 -0
package/dist/audit/chain.js +32 -0
package/dist/audit/chain.js.map +1 -0
package/dist/browser/types.d.ts +1 -1
package/dist/browser/types.d.ts.map +1 -1
package/dist/browser/veto.d.ts.map +1 -1
package/dist/browser/veto.js +24 -2
package/dist/browser/veto.js.map +1 -1
package/dist/cli/compile.d.ts.map +1 -1
package/dist/cli/compile.js +6 -5
package/dist/cli/compile.js.map +1 -1
package/dist/cli/repl-generate.js +1 -1
package/dist/cli/repl-generate.js.map +1 -1
package/dist/cli/runner.d.ts.map +1 -1
package/dist/cli/runner.js +129 -8
package/dist/cli/runner.js.map +1 -1
package/dist/cli/templates.d.ts +1 -1
package/dist/cli/templates.d.ts.map +1 -1
package/dist/cli/templates.js +1 -1
package/dist/core/history.d.ts +14 -0
package/dist/core/history.d.ts.map +1 -1
package/dist/core/history.js +73 -13
package/dist/core/history.js.map +1 -1
package/dist/core/tool-pack-heuristics.d.ts.map +1 -1
package/dist/core/tool-pack-heuristics.js +33 -0
package/dist/core/tool-pack-heuristics.js.map +1 -1
package/dist/core/validator.d.ts +4 -0
package/dist/core/validator.d.ts.map +1 -1
package/dist/core/validator.js +119 -97
package/dist/core/validator.js.map +1 -1
package/dist/core/veto.d.ts +53 -2
package/dist/core/veto.d.ts.map +1 -1
package/dist/core/veto.js +137 -7
package/dist/core/veto.js.map +1 -1
package/dist/custom/types.d.ts +1 -1
package/dist/custom/types.d.ts.map +1 -1
package/dist/deterministic/types.d.ts +2 -0
package/dist/deterministic/types.d.ts.map +1 -1
package/dist/index.d.ts +11 -1
package/dist/index.d.ts.map +1 -1
package/dist/index.js +9 -0
package/dist/index.js.map +1 -1
package/dist/integrations/langchain/middleware.d.ts +1 -1
package/dist/integrations/langchain/middleware.js +1 -1
package/dist/integrations/openclaw/hooks.d.ts +30 -0
package/dist/integrations/openclaw/hooks.d.ts.map +1 -0
package/dist/integrations/openclaw/hooks.js +130 -0
package/dist/integrations/openclaw/hooks.js.map +1 -0
package/dist/integrations/openclaw/index.d.ts +3 -0
package/dist/integrations/openclaw/index.d.ts.map +1 -0
package/dist/integrations/openclaw/index.js +2 -0
package/dist/integrations/openclaw/index.js.map +1 -0
package/dist/integrations/vercel-ai/middleware.d.ts +1 -1
package/dist/integrations/vercel-ai/middleware.js +1 -1
package/dist/observability/otel.d.ts +29 -0
package/dist/observability/otel.d.ts.map +1 -0
package/dist/observability/otel.js +43 -0
package/dist/observability/otel.js.map +1 -0
package/dist/proxy/anthropic-interceptor.d.ts +51 -0
package/dist/proxy/anthropic-interceptor.d.ts.map +1 -0
package/dist/proxy/anthropic-interceptor.js +132 -0
package/dist/proxy/anthropic-interceptor.js.map +1 -0
package/dist/proxy/interceptor.d.ts +55 -0
package/dist/proxy/interceptor.d.ts.map +1 -0
package/dist/proxy/interceptor.js +111 -0
package/dist/proxy/interceptor.js.map +1 -0
package/dist/proxy/server.d.ts +21 -0
package/dist/proxy/server.d.ts.map +1 -0
package/dist/proxy/server.js +545 -0
package/dist/proxy/server.js.map +1 -0
package/dist/proxy/types.d.ts +18 -0
package/dist/proxy/types.d.ts.map +1 -0
package/dist/proxy/types.js +7 -0
package/dist/proxy/types.js.map +1 -0
package/dist/rate-limiting/evaluator.d.ts +17 -0
package/dist/rate-limiting/evaluator.d.ts.map +1 -0
package/dist/rate-limiting/evaluator.js +48 -0
package/dist/rate-limiting/evaluator.js.map +1 -0
package/dist/rate-limiting/redis-store.d.ts +36 -0
package/dist/rate-limiting/redis-store.d.ts.map +1 -0
package/dist/rate-limiting/redis-store.js +68 -0
package/dist/rate-limiting/redis-store.js.map +1 -0
package/dist/rate-limiting/store.d.ts +8 -0
package/dist/rate-limiting/store.d.ts.map +1 -0
package/dist/rate-limiting/store.js +60 -0
package/dist/rate-limiting/store.js.map +1 -0
package/dist/rate-limiting/types.d.ts +9 -0
package/dist/rate-limiting/types.d.ts.map +1 -0
package/dist/rate-limiting/types.js +2 -0
package/dist/rate-limiting/types.js.map +1 -0
package/dist/rules/condition-evaluator.d.ts.map +1 -1
package/dist/rules/condition-evaluator.js +29 -0
package/dist/rules/condition-evaluator.js.map +1 -1
package/dist/rules/loader.d.ts.map +1 -1
package/dist/rules/loader.js +5 -0
package/dist/rules/loader.js.map +1 -1
package/dist/rules/local-evaluator.d.ts.map +1 -1
package/dist/rules/local-evaluator.js +9 -1
package/dist/rules/local-evaluator.js.map +1 -1
package/dist/rules/policy-ir-schema.d.ts +145 -4
package/dist/rules/policy-ir-schema.d.ts.map +1 -1
package/dist/rules/policy-ir-schema.js +122 -3
package/dist/rules/policy-ir-schema.js.map +1 -1
package/dist/rules/policy-packs.d.ts.map +1 -1
package/dist/rules/policy-packs.js +1 -0
package/dist/rules/policy-packs.js.map +1 -1
package/dist/rules/types.d.ts +29 -2
package/dist/rules/types.d.ts.map +1 -1
package/dist/rules/types.js.map +1 -1
package/dist/testing/runner.d.ts +21 -0
package/dist/testing/runner.d.ts.map +1 -0
package/dist/testing/runner.js +239 -0
package/dist/testing/runner.js.map +1 -0
package/dist/testing/types.d.ts +39 -0
package/dist/testing/types.d.ts.map +1 -0
package/dist/testing/types.js +7 -0
package/dist/testing/types.js.map +1 -0
package/dist/types/config.d.ts +1 -0
package/dist/types/config.d.ts.map +1 -1
package/dist/types/config.js.map +1 -1
package/package.json +24 -14
package/packs/crypto-trading.yaml +320 -0

package/packs/crypto-trading.yaml ADDED Viewed

@@ -0,0 +1,320 @@
+version: "1.0"
+name: "@veto/crypto-trading"
+description: >
+  Production-grade guardrails for AI trading agents. Covers crypto exchanges
+  (Binance, Bybit, OKX), prediction markets (Polymarket, Manifold), and
+  general financial instruments. Conservative defaults safe for first-timers.
+  One line to safe trading: extends: "@veto/crypto-trading"
+rules:
+  # --- Layer 1: Read-only (always allow) ---
+  - id: crypto-allow-reads
+    name: Allow all read operations
+    description: Market data, portfolio, prices, positions, history — always safe
+    enabled: true
+    action: allow
+    tools:
+      - get_price
+      - get_portfolio
+      - get_balance
+      - get_orderbook
+      - get_funding_rate
+      - get_positions
+      - get_open_orders
+      - get_trade_history
+      - get_ticker
+      - get_klines
+      - get_market_info
+      - get_account_info
+      - get_markets
+      - get_market_details
+      - get_market_odds
+      - get_bets
+      - get_bet_history
+      - get_portfolio_positions
+      - get_market_activity
+      - get_leaderboard
+      - web_search
+      - web_fetch
+      - get_news
+      - get_sentiment
+      - get_on_chain_data
+  # --- Layer 2: Hard blocks (non-negotiable) ---
+  - id: crypto-max-leverage
+    name: Maximum leverage limit
+    description: >
+      Hard cap on leverage. Even if the agent or user begs, this won't budge
+      without manually editing the config. Prevents liquidation cascades.
+    enabled: true
+    severity: critical
+    action: block
+    tools: [change_leverage, set_leverage, update_leverage]
+    conditions:
+      - field: arguments.leverage
+        operator: greater_than
+        value: 5 # Adjust: your absolute max leverage (conservative: 2, moderate: 5, aggressive: 10)
+  - id: crypto-max-position
+    name: Maximum single position size
+    description: No single trade can exceed this USD value
+    enabled: true
+    severity: critical
+    action: block
+    tools: [place_order, create_order, submit_order, open_position]
+    conditions:
+      - field: arguments.quote_quantity
+        operator: greater_than
+        value: 2000 # Adjust: your max single trade in USD (conservative: 500, moderate: 2000, aggressive: 10000)
+  - id: crypto-max-bet
+    name: Maximum prediction market bet
+    description: No single prediction market bet can exceed this USD value
+    enabled: true
+    severity: critical
+    action: block
+    tools: [place_bet, create_bet, buy_shares, buy_outcome]
+    conditions:
+      - field: arguments.amount
+        operator: greater_than
+        value: 500 # Adjust: your max single bet in USD (conservative: 100, moderate: 500, aggressive: 2000)
+  - id: crypto-block-withdrawals
+    name: Block all withdrawals
+    description: Agent can never move funds off-exchange. Period.
+    enabled: true
+    severity: critical
+    action: block
+    tools:
+      - withdraw
+      - withdraw_funds
+      - create_withdrawal
+      - transfer_out
+      - bridge_funds
+  - id: crypto-block-margin-borrow
+    name: Block margin borrowing
+    description: Agent cannot borrow margin or take loans
+    enabled: true
+    severity: critical
+    action: block
+    tools: [borrow_margin, margin_borrow, cross_margin_borrow, take_loan]
+  - id: crypto-block-remove-stop-loss
+    name: Block stop-loss removal
+    description: Never allow removing a stop-loss without replacing it
+    enabled: true
+    severity: critical
+    action: block
+    tools: [cancel_order, cancel_stop_loss, remove_stop_loss]
+    conditions:
+      - field: arguments.order_type
+        operator: equals
+        value: "STOP_LOSS"
+  # --- Layer 3: Auto-allow small trades ---
+  - id: crypto-allow-small-trades
+    name: Auto-allow small trades
+    description: Trades under $200 go through without approval — learning money
+    enabled: true
+    action: allow
+    tools: [place_order, create_order, submit_order, open_position]
+    conditions:
+      - field: arguments.quote_quantity
+        operator: less_than_or_equal
+        value: 200 # Adjust: your no-approval-needed trade threshold in USD (conservative: 50, moderate: 200, aggressive: 1000)
+  - id: crypto-allow-small-bets
+    name: Auto-allow small bets
+    description: Prediction market bets under $50 go through without approval
+    enabled: true
+    action: allow
+    tools: [place_bet, create_bet, buy_shares, buy_outcome]
+    conditions:
+      - field: arguments.amount
+        operator: less_than_or_equal
+        value: 50 # Adjust: your no-approval-needed bet threshold in USD (conservative: 25, moderate: 50, aggressive: 250)
+  # --- Layer 4: Approval gates ---
+  - id: crypto-approve-trades
+    name: Approve trades above threshold
+    description: >
+      Medium-sized trades need your OK. Your phone pings, you see the details,
+      you tap approve or deny. Takes 5 seconds, saves you from impulse trades.
+    enabled: true
+    severity: high
+    action: require_approval
+    tools: [place_order, create_order, submit_order, open_position]
+    conditions:
+      - field: arguments.quote_quantity
+        operator: greater_than
+        value: 200 # Adjust: matches your no-approval-needed trade threshold in USD (conservative: 50, moderate: 200, aggressive: 1000)
+    message: "🔔 Trade approval: {arguments.side} {arguments.symbol} — ${arguments.quote_quantity}"
+  - id: crypto-approve-bets
+    name: Approve prediction market bets
+    description: Bets above the small threshold need approval
+    enabled: true
+    severity: high
+    action: require_approval
+    tools: [place_bet, create_bet, buy_shares, buy_outcome]
+    conditions:
+      - field: arguments.amount
+        operator: greater_than
+        value: 50 # Adjust: matches your no-approval-needed bet threshold in USD (conservative: 25, moderate: 50, aggressive: 250)
+    message: "🔔 Bet approval: {arguments.market} — ${arguments.amount} on {arguments.outcome}"
+  - id: crypto-approve-leverage-change
+    name: Approve all leverage changes
+    description: Any leverage change pings you — no exceptions
+    enabled: true
+    severity: high
+    action: require_approval
+    tools: [change_leverage, set_leverage, update_leverage]
+    message: "⚠️ Leverage change: {arguments.symbol} → {arguments.leverage}x"
+  - id: crypto-approve-close-position
+    name: Approve position closure
+    description: Closing positions pings you — prevents premature panic exits
+    enabled: true
+    severity: medium
+    action: require_approval
+    tools: [close_position, close_all_positions, sell_all]
+    message: "📤 Close position: {arguments.symbol}"
+  - id: crypto-approve-cancel-all
+    name: Approve mass cancellation
+    description: Canceling all orders needs explicit OK
+    enabled: true
+    severity: medium
+    action: require_approval
+    tools: [cancel_all_orders]
+    message: "🗑️ Cancel ALL open orders — confirm?"
+  - id: crypto-approve-transfers
+    name: Approve internal transfers
+    description: Moving funds between accounts needs approval
+    enabled: true
+    severity: high
+    action: require_approval
+    tools: [transfer_between_accounts, internal_transfer, universal_transfer]
+    message: "💸 Transfer ${arguments.amount} from {arguments.from_account} → {arguments.to_account}"
+  - id: crypto-approve-redeem
+    name: Approve prediction market redemptions
+    description: Redeeming winning positions needs approval
+    enabled: true
+    severity: medium
+    action: require_approval
+    tools: [redeem_shares, claim_winnings, redeem_position]
+    message: "💰 Redeem {arguments.market} — {arguments.shares} shares"
+  # --- Layer 5: Risk management ---
+  - id: crypto-warn-no-stop-loss
+    name: Warn on trades without stop-loss
+    description: Log a warning when opening leveraged positions without protection
+    enabled: true
+    severity: medium
+    action: warn
+    tools: [place_order, create_order, open_position]
+    conditions:
+      - field: arguments.stop_loss
+        operator: not_exists
+    message: "⚠️ No stop-loss set on {arguments.symbol} — high risk"
+  # --- Layer 6: Research before action ---
+  - id: crypto-research-before-trade
+    name: Must research before trading
+    description: >
+      Agent must check price and portfolio before placing any order.
+      This is the "10 seconds of friction" that prevents impulse trades.
+    enabled: true
+    severity: high
+    action: block
+    tools: [place_order, create_order, submit_order, open_position]
+    requires:
+      - tool: get_price
+      - tool: get_portfolio
+    message: "Check price and portfolio first — no blind trades"
+  - id: crypto-research-before-bet
+    name: Must research before betting
+    description: Agent must look at market details before placing a bet
+    enabled: true
+    severity: high
+    action: block
+    tools: [place_bet, create_bet, buy_shares, buy_outcome]
+    requires:
+      - tool: get_market_details
+    message: "Check market details first — no blind bets"
+  # --- Layer 7: Time restrictions ---
+  - id: crypto-block-night-leverage
+    name: No leveraged trades at night
+    description: >
+      Between midnight and 6am UTC, block leveraged trades.
+      Most bad decisions happen when you're tired.
+    enabled: true
+    severity: high
+    action: block
+    tools: [place_order, create_order, open_position]
+    conditions:
+      - field: arguments.leverage
+        operator: greater_than
+        value: 1
+      - field: timestamp
+        operator: outside_hours
+        value: "06:00-23:59"
+    message: "No leveraged trades between midnight and 6am. Sleep on it."
+settings:
+  default_action: allow
+  fail_mode: closed
+economic:
+  budgets:
+    - scope: session
+      limit: 1000.00 # Adjust: your session trading budget in USD (conservative: 500, moderate: 1000, aggressive: 5000)
+      currency: USD
+      approval_threshold: 500.00 # Adjust: the per-trade cost that always needs approval in USD (conservative: 250, moderate: 500, aggressive: 2500)
+      window: session
+  cost_extraction:
+    default: "arguments.quote_quantity"
+    overrides:
+      place_order: "arguments.quote_quantity"
+      create_order: "arguments.quote_quantity"
+      open_position: "arguments.quote_quantity"
+      place_bet: "arguments.amount"
+      create_bet: "arguments.amount"
+      buy_shares: "arguments.amount"
+      buy_outcome: "arguments.amount"
+      transfer_between_accounts: "arguments.amount"
+  payer:
+    required: false
+  denial_reasons:
+    budget_exceeded: "Daily budget hit: ${spent}/${limit} USD. Done for today — no more trades until next session."
+    approval_required: "This ${cost} trade pushes you past the ${threshold} approval threshold. Confirm?"
+sessionConstraints:
+  maxCalls: 100 # Adjust: max tool calls per session (conservative: 50, moderate: 100, aggressive: 250)
+  budget: 1000 # Adjust: session spend budget in USD for deterministic tracking (conservative: 500, moderate: 1000, aggressive: 5000)
+  spendArgument: "quote_quantity"
+  counters:
+    open_positions:
+      increment: [place_order, create_order, open_position]
+      decrement: [close_position]
+      max: 3 # Adjust: max simultaneous open positions (conservative: 2, moderate: 3, aggressive: 5)
+      maxAction: require_approval
+    active_bets:
+      increment: [place_bet, create_bet, buy_shares, buy_outcome]
+      decrement: [redeem_shares, claim_winnings]
+      max: 5 # Adjust: max simultaneous prediction market positions (conservative: 3, moderate: 5, aggressive: 10)
+      maxAction: require_approval
+  cumulativeLimits:
+    - argumentName: quote_quantity
+      maxValue: 5000 # Adjust: max cumulative trading volume per session in USD (conservative: 1000, moderate: 5000, aggressive: 25000)
+    - argumentName: amount
+      maxValue: 2000 # Adjust: max cumulative prediction market volume per session in USD (conservative: 500, moderate: 2000, aggressive: 10000)