veto-sdk 2.2.1 → 2.4.0

package/dist/integrations/openclaw/hooks.js

@@ -0,0 +1,130 @@
+import { ApprovalTimeoutError } from '../../cloud/client.js';
+import { generateToolCallId } from '../../utils/id.js';
+function resolveSessionId(context, options) {
+    return options?.sessionId ?? context.sessionId;
+}
+function resolveAgentId(context, options) {
+    return options?.agentId ?? context.agentId;
+}
+function resolveApprovalMode(options) {
+    return options?.approvalMode ?? 'openclaw-native';
+}
+function resolveToolCallId(context) {
+    return context.toolCallId ?? generateToolCallId();
+}
+export function createVetoBeforeToolCallHook(veto, options) {
+    const approvalMode = resolveApprovalMode(options);
+    const onAllow = options?.onAllow;
+    const onDeny = options?.onDeny;
+    const onApprovalRequired = options?.onApprovalRequired;
+    const approvalWaiter = veto;
+    return async (context) => {
+        const toolName = context.toolName;
+        const args = context.toolArgs ?? {};
+        resolveToolCallId(context);
+        const result = await veto.guard(toolName, args, {
+            sessionId: resolveSessionId(context, options),
+            agentId: resolveAgentId(context, options),
+        });
+        if (result.shadow === true) {
+            if (onAllow)
+                await onAllow(toolName, args);
+            return undefined;
+        }
+        if (result.decision === 'allow') {
+            if (onAllow)
+                await onAllow(toolName, args);
+            return undefined;
+        }
+        if (result.decision === 'deny') {
+            const reason = result.reason ?? 'Policy violation';
+            if (onDeny)
+                await onDeny(toolName, args, reason);
+            return { block: true, message: reason };
+        }
+        if (onApprovalRequired) {
+            await onApprovalRequired(toolName, args, result.approvalId);
+        }
+        if (approvalMode === 'openclaw-native') {
+            return {
+                requireApproval: true,
+                message: result.reason,
+            };
+        }
+        if (!result.approvalId) {
+            const reason = result.reason ?? 'Approval required';
+            if (onDeny)
+                await onDeny(toolName, args, reason);
+            return { block: true, message: reason };
+        }
+        if (!approvalWaiter.waitForApproval) {
+            throw new Error('veto.waitForApproval() is required for approvalMode="veto-cloud"');
+        }
+        try {
+            const approval = await approvalWaiter.waitForApproval(result.approvalId);
+            if (approval.status === 'approved') {
+                return undefined;
+            }
+            if (approval.status === 'expired') {
+                const reason = 'Approval expired';
+                if (onDeny)
+                    await onDeny(toolName, args, reason);
+                return { block: true, message: reason };
+            }
+            const reason = result.reason ?? 'Approval denied';
+            if (onDeny)
+                await onDeny(toolName, args, reason);
+            return { block: true, message: reason };
+        }
+        catch (error) {
+            if (error instanceof ApprovalTimeoutError) {
+                const reason = 'Approval expired';
+                if (onDeny)
+                    await onDeny(toolName, args, reason);
+                return { block: true, message: reason };
+            }
+            throw error;
+        }
+    };
+}
+export function createVetoAfterToolCallHook(veto, options) {
+    const vetoWithLogger = veto;
+    return async (context) => {
+        const toolCallId = resolveToolCallId(context);
+        const toolName = context.toolName;
+        const args = context.toolArgs ?? {};
+        const metadata = {
+            toolCallId,
+            source: 'openclaw-after-tool-call',
+        };
+        const sessionId = resolveSessionId(context, options);
+        const agentId = resolveAgentId(context, options);
+        if (sessionId)
+            metadata.sessionId = sessionId;
+        if (agentId)
+            metadata.agentId = agentId;
+        if (context.error !== undefined) {
+            metadata.executionError = context.error instanceof Error
+                ? { name: context.error.name, message: context.error.message }
+                : String(context.error);
+        }
+        if (vetoWithLogger.logToolExecution) {
+            vetoWithLogger.logToolExecution(toolName, args, context.result, {
+                toolCallId,
+                sessionId,
+                agentId,
+                error: context.error,
+            });
+            return;
+        }
+        vetoWithLogger.historyTracker?.record(toolName, args, {
+            decision: 'allow',
+            reason: context.error === undefined ? 'Tool execution completed' : 'Tool execution failed',
+            metadata: {
+                ...metadata,
+                executionResult: context.result,
+            },
+        });
+    };
+}
+//# sourceMappingURL=hooks.js.map

package/dist/integrations/openclaw/hooks.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hooks.js","sourceRoot":"","sources":["../../../src/integrations/openclaw/hooks.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAG7D,OAAO,EAAE,kBAAkB,EAAE,MAAM,mBAAmB,CAAC;AAoEvD,SAAS,gBAAgB,CACvB,OAAgC,EAChC,OAAuC;IAEvC,OAAO,OAAO,EAAE,SAAS,IAAI,OAAO,CAAC,SAAS,CAAC;AACjD,CAAC;AAED,SAAS,cAAc,CACrB,OAAgC,EAChC,OAAuC;IAEvC,OAAO,OAAO,EAAE,OAAO,IAAI,OAAO,CAAC,OAAO,CAAC;AAC7C,CAAC;AAED,SAAS,mBAAmB,CAAC,OAAuC;IAClE,OAAO,OAAO,EAAE,YAAY,IAAI,iBAAiB,CAAC;AACpD,CAAC;AAED,SAAS,iBAAiB,CAAC,OAAgC;IACzD,OAAO,OAAO,CAAC,UAAU,IAAI,kBAAkB,EAAE,CAAC;AACpD,CAAC;AAED,MAAM,UAAU,4BAA4B,CAC1C,IAAU,EACV,OAAuC;IAEvC,MAAM,YAAY,GAAG,mBAAmB,CAAC,OAAO,CAAC,CAAC;IAClD,MAAM,OAAO,GAAG,OAAO,EAAE,OAAO,CAAC;IACjC,MAAM,MAAM,GAAG,OAAO,EAAE,MAAM,CAAC;IAC/B,MAAM,kBAAkB,GAAG,OAAO,EAAE,kBAAkB,CAAC;IACvD,MAAM,cAAc,GAAG,IAAqC,CAAC;IAE7D,OAAO,KAAK,EAAE,OAAO,EAAE,EAAE;QACvB,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QAClC,MAAM,IAAI,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;QACpC,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAE3B,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,QAAQ,EAAE,IAAI,EAAE;YAC9C,SAAS,EAAE,gBAAgB,CAAC,OAAO,EAAE,OAAO,CAAC;YAC7C,OAAO,EAAE,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC;SAC1C,CAAC,CAAC;QAEH,IAAI,MAAM,CAAC,MAAM,KAAK,IAAI,EAAE,CAAC;YAC3B,IAAI,OAAO;gBAAE,MAAM,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAC3C,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;YAChC,IAAI,OAAO;gBAAE,MAAM,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAC3C,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,IAAI,MAAM,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;YAC/B,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,kBAAkB,CAAC;YACnD,IAAI,MAAM;gBAAE,MAAM,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;YACjD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAC1C,CAAC;QAED,IAAI,kBAAkB,EAAE,CAAC;YACvB,MAAM,kBAAkB,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,UAAU,CAAC,CAAC;QAC9D,CAAC;QAED,IAAI,YAAY,KAAK,iBAAiB,EAAE,CAAC;YACvC,OAAO;gBACL,eAAe,EAAE,IAAI;gBACrB,OAAO,EAAE,MAAM,CAAC,MAAM;aACvB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;YACvB,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,mBAAmB,CAAC;YACpD,IAAI,MAAM;gBAAE,MAAM,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;YACjD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAC1C,CAAC;QAED,IAAI,CAAC,cAAc,CAAC,eAAe,EAAE,CAAC;YACpC,MAAM,IAAI,KAAK,CAAC,kEAAkE,CAAC,CAAC;QACtF,CAAC;QAED,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,cAAc,CAAC,eAAe,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YAEzE,IAAI,QAAQ,CAAC,MAAM,KAAK,UAAU,EAAE,CAAC;gBACnC,OAAO,SAAS,CAAC;YACnB,CAAC;YAED,IAAI,QAAQ,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;gBAClC,MAAM,MAAM,GAAG,kBAAkB,CAAC;gBAClC,IAAI,MAAM;oBAAE,MAAM,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;gBACjD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;YAC1C,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,iBAAiB,CAAC;YAClD,IAAI,MAAM;gBAAE,MAAM,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;YACjD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;QAC1C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,KAAK,YAAY,oBAAoB,EAAE,CAAC;gBAC1C,MAAM,MAAM,GAAG,kBAAkB,CAAC;gBAClC,IAAI,MAAM;oBAAE,MAAM,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;gBACjD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;YAC1C,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,2BAA2B,CACzC,IAAU,EACV,OAAuC;IAEvC,MAAM,cAAc,GAAG,IAAsC,CAAC;IAE9D,OAAO,KAAK,EAAE,OAAO,EAAE,EAAE;QACvB,MAAM,UAAU,GAAG,iBAAiB,CAAC,OAAO,CAAC,CAAC;QAC9C,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;QAClC,MAAM,IAAI,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;QACpC,MAAM,QAAQ,GAA4B;YACxC,UAAU;YACV,MAAM,EAAE,0BAA0B;SACnC,CAAC;QAEF,MAAM,SAAS,GAAG,gBAAgB,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QACrD,MAAM,OAAO,GAAG,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAEjD,IAAI,SAAS;YAAE,QAAQ,CAAC,SAAS,GAAG,SAAS,CAAC;QAC9C,IAAI,OAAO;YAAE,QAAQ,CAAC,OAAO,GAAG,OAAO,CAAC;QAExC,IAAI,OAAO,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YAChC,QAAQ,CAAC,cAAc,GAAG,OAAO,CAAC,KAAK,YAAY,KAAK;gBACtD,CAAC,CAAC,EAAE,IAAI,EAAE,OAAO,CAAC,KAAK,CAAC,IAAI,EAAE,OAAO,EAAE,OAAO,CAAC,KAAK,CAAC,OAAO,EAAE;gBAC9D,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QAC5B,CAAC;QAED,IAAI,cAAc,CAAC,gBAAgB,EAAE,CAAC;YACpC,cAAc,CAAC,gBAAgB,CAAC,QAAQ,EAAE,IAAI,EAAE,OAAO,CAAC,MAAM,EAAE;gBAC9D,UAAU;gBACV,SAAS;gBACT,OAAO;gBACP,KAAK,EAAE,OAAO,CAAC,KAAK;aACrB,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,cAAc,CAAC,cAAc,EAAE,MAAM,CAAC,QAAQ,EAAE,IAAI,EAAE;YACpD,QAAQ,EAAE,OAAO;YACjB,MAAM,EAAE,OAAO,CAAC,KAAK,KAAK,SAAS,CAAC,CAAC,CAAC,0BAA0B,CAAC,CAAC,CAAC,uBAAuB;YAC1F,QAAQ,EAAE;gBACR,GAAG,QAAQ;gBACX,eAAe,EAAE,OAAO,CAAC,MAAM;aAChC;SACF,CAAC,CAAC;IACL,CAAC,CAAC;AACJ,CAAC"}

package/dist/integrations/openclaw/index.d.ts

@@ -0,0 +1,3 @@
+export { createVetoBeforeToolCallHook, createVetoAfterToolCallHook } from './hooks.js';
+export type { OpenClawBeforeToolCallHook, OpenClawAfterToolCallHook, OpenClawToolCallContext, OpenClawBeforeToolCallResult, CreateVetoOpenClawHookOptions, VetoApprovalMode, } from './hooks.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/integrations/openclaw/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/integrations/openclaw/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAC;AACvF,YAAY,EACV,0BAA0B,EAC1B,yBAAyB,EACzB,uBAAuB,EACvB,4BAA4B,EAC5B,6BAA6B,EAC7B,gBAAgB,GACjB,MAAM,YAAY,CAAC"}

package/dist/integrations/openclaw/index.js

@@ -0,0 +1,2 @@
+export { createVetoBeforeToolCallHook, createVetoAfterToolCallHook } from './hooks.js';
+//# sourceMappingURL=index.js.map

package/dist/integrations/openclaw/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/integrations/openclaw/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,4BAA4B,EAAE,2BAA2B,EAAE,MAAM,YAAY,CAAC"}

package/dist/integrations/vercel-ai/middleware.d.ts

@@ -68,7 +68,7 @@ export interface CreateVetoMiddlewareOptions {
  *
  * const veto = await Veto.init();
  * const model = wrapLanguageModel({
- *   model: openai('gpt-4o'),
+ *   model: openai('gpt-5.4'),
  *   middleware: createVetoMiddleware(veto),
  * });
  *

package/dist/integrations/vercel-ai/middleware.js

@@ -17,7 +17,7 @@ import { generateToolCallId } from '../../utils/id.js';
  *
  * const veto = await Veto.init();
  * const model = wrapLanguageModel({
- *   model: openai('gpt-4o'),
+ *   model: openai('gpt-5.4'),
  *   middleware: createVetoMiddleware(veto),
  * });
  *

package/dist/observability/otel.d.ts

@@ -0,0 +1,29 @@
+/**
+ * Optional OpenTelemetry integration.
+ *
+ * Uses dynamic import so @opentelemetry/api is a zero-cost optional peer dep.
+ * If not installed, all functions return no-ops.
+ */
+export interface VetoTracer {
+    startSpan(name: string): VetoSpan;
+}
+export interface VetoSpan {
+    setAttribute(key: string, value: string | number | boolean): void;
+    setStatus(status: {
+        code: number;
+        message?: string;
+    }): void;
+    end(): void;
+}
+export declare const SpanStatusCode: {
+    readonly OK: 1;
+    readonly ERROR: 2;
+};
+/**
+ * Attempt to load @opentelemetry/api. Returns a VetoTracer wrapping the real
+ * tracer, or a no-op tracer if the package is not installed.
+ *
+ * Call once during Veto.init() and store the result.
+ */
+export declare function tryLoadOtel(serviceName?: string): Promise<VetoTracer>;
+//# sourceMappingURL=otel.d.ts.map

package/dist/observability/otel.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"otel.d.ts","sourceRoot":"","sources":["../../src/observability/otel.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,MAAM,WAAW,UAAU;IACzB,SAAS,CAAC,IAAI,EAAE,MAAM,GAAG,QAAQ,CAAC;CACnC;AAED,MAAM,WAAW,QAAQ;IACvB,YAAY,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,GAAG,OAAO,GAAG,IAAI,CAAC;IAClE,SAAS,CAAC,MAAM,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,IAAI,CAAC;IAC5D,GAAG,IAAI,IAAI,CAAC;CACb;AAGD,eAAO,MAAM,cAAc;;;CAA+B,CAAC;AAY3D;;;;;GAKG;AACH,wBAAsB,WAAW,CAAC,WAAW,SAAa,GAAG,OAAO,CAAC,UAAU,CAAC,CAkB/E"}

package/dist/observability/otel.js

@@ -0,0 +1,43 @@
+/**
+ * Optional OpenTelemetry integration.
+ *
+ * Uses dynamic import so @opentelemetry/api is a zero-cost optional peer dep.
+ * If not installed, all functions return no-ops.
+ */
+// Canonical OTEL status codes (avoid importing from @opentelemetry/api directly)
+export const SpanStatusCode = { OK: 1, ERROR: 2 };
+const noopSpan = {
+    setAttribute() { },
+    setStatus() { },
+    end() { },
+};
+const noopTracer = {
+    startSpan() { return noopSpan; },
+};
+/**
+ * Attempt to load @opentelemetry/api. Returns a VetoTracer wrapping the real
+ * tracer, or a no-op tracer if the package is not installed.
+ *
+ * Call once during Veto.init() and store the result.
+ */
+export async function tryLoadOtel(serviceName = 'veto-sdk') {
+    try {
+        // Dynamic import — works in Node.js 20+ ESM. Throws ERR_MODULE_NOT_FOUND if not installed.
+        const api = await import('@opentelemetry/api');
+        const tracer = api.trace.getTracer(serviceName);
+        return {
+            startSpan(name) {
+                const span = tracer.startSpan(name);
+                return {
+                    setAttribute(key, value) { span.setAttribute(key, value); },
+                    setStatus(status) { span.setStatus(status); },
+                    end() { span.end(); },
+                };
+            },
+        };
+    }
+    catch {
+        return noopTracer;
+    }
+}
+//# sourceMappingURL=otel.js.map

package/dist/observability/otel.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"otel.js","sourceRoot":"","sources":["../../src/observability/otel.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAYH,iFAAiF;AACjF,MAAM,CAAC,MAAM,cAAc,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAW,CAAC;AAE3D,MAAM,QAAQ,GAAa;IACzB,YAAY,KAAI,CAAC;IACjB,SAAS,KAAI,CAAC;IACd,GAAG,KAAI,CAAC;CACT,CAAC;AAEF,MAAM,UAAU,GAAe;IAC7B,SAAS,KAAK,OAAO,QAAQ,CAAC,CAAC,CAAC;CACjC,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,WAAW,GAAG,UAAU;IACxD,IAAI,CAAC;QACH,2FAA2F;QAC3F,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,oBAAoB,CAAC,CAAC;QAC/C,MAAM,MAAM,GAAG,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAChD,OAAO;YACL,SAAS,CAAC,IAAY;gBACpB,MAAM,IAAI,GAAG,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;gBACpC,OAAO;oBACL,YAAY,CAAC,GAAG,EAAE,KAAK,IAAI,IAAI,CAAC,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC;oBAC3D,SAAS,CAAC,MAAM,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;oBAC7C,GAAG,KAAK,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;iBACtB,CAAC;YACJ,CAAC;SACF,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,UAAU,CAAC;IACpB,CAAC;AACH,CAAC"}

package/dist/proxy/anthropic-interceptor.d.ts

@@ -0,0 +1,51 @@
+/**
+ * SSE stream interceptor for Anthropic Messages API.
+ *
+ * Anthropic SSE differs from OpenAI: events carry an `event:` type line
+ * followed by a `data:` JSON line. Tool calls arrive as content blocks
+ * (content_block_start → content_block_delta → content_block_stop) and
+ * the input JSON is streamed as partial fragments across deltas.
+ *
+ * @module proxy/anthropic-interceptor
+ */
+export interface AnthropicPendingToolUse {
+    index: number;
+    id: string;
+    name: string;
+    inputRaw: string;
+}
+export interface AnthropicSSELineResult {
+    line: string;
+    eventType?: string;
+    data?: Record<string, unknown> | null;
+    hasToolUse?: boolean;
+    toolUseStop?: boolean;
+    messageStop?: boolean;
+}
+/**
+ * Parse buffered SSE lines (an event: + data: pair) into a structured result.
+ * Anthropic sends `event: <type>\ndata: <json>` pairs.
+ */
+export declare function parseAnthropicSSELines(lines: string[]): AnthropicSSELineResult;
+/**
+ * Merge tool use data from Anthropic SSE events into the pending map.
+ *
+ * - content_block_start with type=tool_use: create a new pending entry
+ * - content_block_delta with type=input_json_delta: append partial_json
+ * - content_block_stop: no-op (signals block completion)
+ */
+export declare function mergeAnthropicToolUseDelta(pending: Map<number, AnthropicPendingToolUse>, data: Record<string, unknown>, eventType: string): void;
+/**
+ * Parse the accumulated input JSON into an arguments object.
+ */
+export declare function finalizeAnthropicToolUse(tc: AnthropicPendingToolUse): {
+    name: string;
+    id: string;
+    arguments: Record<string, unknown>;
+};
+/**
+ * Synthesize Anthropic SSE events that replace a tool_use block with a
+ * text block containing the block reason, followed by message_stop.
+ */
+export declare function synthAnthropicBlockedEvent(reason: string): string;
+//# sourceMappingURL=anthropic-interceptor.d.ts.map

package/dist/proxy/anthropic-interceptor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic-interceptor.d.ts","sourceRoot":"","sources":["../../src/proxy/anthropic-interceptor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,WAAW,uBAAuB;IACtC,KAAK,EAAE,MAAM,CAAC;IACd,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,sBAAsB;IACrC,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACtC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,sBAAsB,CA2C9E;AAED;;;;;;GAMG;AACH,wBAAgB,0BAA0B,CACxC,OAAO,EAAE,GAAG,CAAC,MAAM,EAAE,uBAAuB,CAAC,EAC7C,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC7B,SAAS,EAAE,MAAM,GAChB,IAAI,CAqBN;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,EAAE,EAAE,uBAAuB,GAAG;IACrE,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC,CAWA;AAED;;;GAGG;AACH,wBAAgB,0BAA0B,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAwBjE"}

package/dist/proxy/anthropic-interceptor.js

@@ -0,0 +1,132 @@
+/**
+ * SSE stream interceptor for Anthropic Messages API.
+ *
+ * Anthropic SSE differs from OpenAI: events carry an `event:` type line
+ * followed by a `data:` JSON line. Tool calls arrive as content blocks
+ * (content_block_start → content_block_delta → content_block_stop) and
+ * the input JSON is streamed as partial fragments across deltas.
+ *
+ * @module proxy/anthropic-interceptor
+ */
+/**
+ * Parse buffered SSE lines (an event: + data: pair) into a structured result.
+ * Anthropic sends `event: <type>\ndata: <json>` pairs.
+ */
+export function parseAnthropicSSELines(lines) {
+    let eventType;
+    let dataStr;
+    const raw = lines.join('\n');
+    for (const line of lines) {
+        if (line.startsWith('event: ')) {
+            eventType = line.slice(7).trim();
+        }
+        else if (line.startsWith('data: ')) {
+            dataStr = line.slice(6);
+        }
+    }
+    if (!dataStr) {
+        return { line: raw, eventType };
+    }
+    let data = null;
+    try {
+        data = JSON.parse(dataStr);
+    }
+    catch {
+        return { line: raw, eventType };
+    }
+    let hasToolUse = false;
+    let toolUseStop = false;
+    const messageStop = eventType === 'message_stop';
+    if (eventType === 'content_block_start') {
+        const block = data['content_block'];
+        if (block && block['type'] === 'tool_use') {
+            hasToolUse = true;
+        }
+    }
+    else if (eventType === 'content_block_delta') {
+        const delta = data['delta'];
+        if (delta && delta['type'] === 'input_json_delta') {
+            hasToolUse = true;
+        }
+    }
+    else if (eventType === 'content_block_stop') {
+        toolUseStop = true;
+    }
+    return { line: raw, eventType, data, hasToolUse, toolUseStop, messageStop };
+}
+/**
+ * Merge tool use data from Anthropic SSE events into the pending map.
+ *
+ * - content_block_start with type=tool_use: create a new pending entry
+ * - content_block_delta with type=input_json_delta: append partial_json
+ * - content_block_stop: no-op (signals block completion)
+ */
+export function mergeAnthropicToolUseDelta(pending, data, eventType) {
+    const index = typeof data['index'] === 'number' ? data['index'] : 0;
+    if (eventType === 'content_block_start') {
+        const block = data['content_block'];
+        if (!block || block['type'] !== 'tool_use')
+            return;
+        pending.set(index, {
+            index,
+            id: typeof block['id'] === 'string' ? block['id'] : '',
+            name: typeof block['name'] === 'string' ? block['name'] : '',
+            inputRaw: '',
+        });
+    }
+    else if (eventType === 'content_block_delta') {
+        const delta = data['delta'];
+        if (!delta || delta['type'] !== 'input_json_delta')
+            return;
+        const existing = pending.get(index);
+        if (existing && typeof delta['partial_json'] === 'string') {
+            existing.inputRaw += delta['partial_json'];
+        }
+    }
+    // content_block_stop: nothing to accumulate
+}
+/**
+ * Parse the accumulated input JSON into an arguments object.
+ */
+export function finalizeAnthropicToolUse(tc) {
+    let args = {};
+    try {
+        const parsed = JSON.parse(tc.inputRaw);
+        if (parsed && typeof parsed === 'object' && !Array.isArray(parsed)) {
+            args = parsed;
+        }
+    }
+    catch {
+        console.warn(`[veto intercept] Malformed tool input for '${tc.name}', validating with empty args`);
+    }
+    return { name: tc.name, id: tc.id, arguments: args };
+}
+/**
+ * Synthesize Anthropic SSE events that replace a tool_use block with a
+ * text block containing the block reason, followed by message_stop.
+ */
+export function synthAnthropicBlockedEvent(reason) {
+    const blockStart = {
+        type: 'content_block_start',
+        index: 0,
+        content_block: { type: 'text', text: '' },
+    };
+    const blockDelta = {
+        type: 'content_block_delta',
+        index: 0,
+        delta: { type: 'text_delta', text: `[BLOCKED by veto] ${reason}` },
+    };
+    const blockStop = {
+        type: 'content_block_stop',
+        index: 0,
+    };
+    return [
+        `event: content_block_start\ndata: ${JSON.stringify(blockStart)}`,
+        `event: content_block_delta\ndata: ${JSON.stringify(blockDelta)}`,
+        `event: content_block_stop\ndata: ${JSON.stringify(blockStop)}`,
+        `event: message_stop\ndata: {}`,
+    ]
+        .map((s) => s + '\n\n')
+        .join('');
+}
+//# sourceMappingURL=anthropic-interceptor.js.map

package/dist/proxy/anthropic-interceptor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"anthropic-interceptor.js","sourceRoot":"","sources":["../../src/proxy/anthropic-interceptor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAkBH;;;GAGG;AACH,MAAM,UAAU,sBAAsB,CAAC,KAAe;IACpD,IAAI,SAA6B,CAAC;IAClC,IAAI,OAA2B,CAAC;IAChC,MAAM,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAE7B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YAC/B,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACnC,CAAC;aAAM,IAAI,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YACrC,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAED,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,SAAS,EAAE,CAAC;IAClC,CAAC;IAED,IAAI,IAAI,GAAmC,IAAI,CAAC;IAChD,IAAI,CAAC;QACH,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAA4B,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,SAAS,EAAE,CAAC;IAClC,CAAC;IAED,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,IAAI,WAAW,GAAG,KAAK,CAAC;IACxB,MAAM,WAAW,GAAG,SAAS,KAAK,cAAc,CAAC;IAEjD,IAAI,SAAS,KAAK,qBAAqB,EAAE,CAAC;QACxC,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAwC,CAAC;QAC3E,IAAI,KAAK,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,UAAU,EAAE,CAAC;YAC1C,UAAU,GAAG,IAAI,CAAC;QACpB,CAAC;IACH,CAAC;SAAM,IAAI,SAAS,KAAK,qBAAqB,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAwC,CAAC;QACnE,IAAI,KAAK,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,kBAAkB,EAAE,CAAC;YAClD,UAAU,GAAG,IAAI,CAAC;QACpB,CAAC;IACH,CAAC;SAAM,IAAI,SAAS,KAAK,oBAAoB,EAAE,CAAC;QAC9C,WAAW,GAAG,IAAI,CAAC;IACrB,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,SAAS,EAAE,IAAI,EAAE,UAAU,EAAE,WAAW,EAAE,WAAW,EAAE,CAAC;AAC9E,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,0BAA0B,CACxC,OAA6C,EAC7C,IAA6B,EAC7B,SAAiB;IAEjB,MAAM,KAAK,GAAG,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAEpE,IAAI,SAAS,KAAK,qBAAqB,EAAE,CAAC;QACxC,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAwC,CAAC;QAC3E,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,UAAU;YAAE,OAAO;QACnD,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE;YACjB,KAAK;YACL,EAAE,EAAE,OAAO,KAAK,CAAC,IAAI,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;YACtD,IAAI,EAAE,OAAO,KAAK,CAAC,MAAM,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE;YAC5D,QAAQ,EAAE,EAAE;SACb,CAAC,CAAC;IACL,CAAC;SAAM,IAAI,SAAS,KAAK,qBAAqB,EAAE,CAAC;QAC/C,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAwC,CAAC;QACnE,IAAI,CAAC,KAAK,IAAI,KAAK,CAAC,MAAM,CAAC,KAAK,kBAAkB;YAAE,OAAO;QAC3D,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACpC,IAAI,QAAQ,IAAI,OAAO,KAAK,CAAC,cAAc,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC1D,QAAQ,CAAC,QAAQ,IAAI,KAAK,CAAC,cAAc,CAAW,CAAC;QACvD,CAAC;IACH,CAAC;IACD,4CAA4C;AAC9C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,wBAAwB,CAAC,EAA2B;IAKlE,IAAI,IAAI,GAA4B,EAAE,CAAC;IACvC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC;QACvC,IAAI,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YACnE,IAAI,GAAG,MAAiC,CAAC;QAC3C,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,IAAI,CAAC,8CAA8C,EAAE,CAAC,IAAI,+BAA+B,CAAC,CAAC;IACrG,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;AACvD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,0BAA0B,CAAC,MAAc;IACvD,MAAM,UAAU,GAAG;QACjB,IAAI,EAAE,qBAAqB;QAC3B,KAAK,EAAE,CAAC;QACR,aAAa,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,EAAE,EAAE;KAC1C,CAAC;IACF,MAAM,UAAU,GAAG;QACjB,IAAI,EAAE,qBAAqB;QAC3B,KAAK,EAAE,CAAC;QACR,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,qBAAqB,MAAM,EAAE,EAAE;KACnE,CAAC;IACF,MAAM,SAAS,GAAG;QAChB,IAAI,EAAE,oBAAoB;QAC1B,KAAK,EAAE,CAAC;KACT,CAAC;IAEF,OAAO;QACL,qCAAqC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE;QACjE,qCAAqC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,EAAE;QACjE,oCAAoC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,EAAE;QAC/D,+BAA+B;KAChC;SACE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,MAAM,CAAC;SACtB,IAAI,CAAC,EAAE,CAAC,CAAC;AACd,CAAC"}

package/dist/proxy/interceptor.d.ts

@@ -0,0 +1,55 @@
+/**
+ * SSE stream interceptor for OpenAI chat completions.
+ *
+ * Buffers streaming chunks, assembles tool call arguments, validates
+ * the assembled tool call against Veto policies, then either flushes
+ * the buffer or sends a synthetic error event.
+ *
+ * @module proxy/interceptor
+ */
+/**
+ * A partially assembled tool call from SSE deltas.
+ */
+export interface PendingToolCall {
+    index: number;
+    id: string;
+    name: string;
+    argumentsRaw: string;
+}
+/**
+ * Result of processing one SSE line.
+ */
+export interface SSELineResult {
+    /** Raw line to forward (for passthrough mode) */
+    line: string;
+    /** Parsed JSON data if this is a data line */
+    data?: Record<string, unknown> | null;
+    /** True if this line is `data: [DONE]` */
+    done?: boolean;
+    /** True if this line contains a tool_calls delta */
+    hasToolCalls?: boolean;
+    /** True if finish_reason === "tool_calls" */
+    finishReasonToolCalls?: boolean;
+}
+/** Parse a single SSE line. Returns null for non-data/comment lines. */
+export declare function parseSSELine(line: string): SSELineResult;
+/**
+ * Merge tool call deltas from one SSE chunk into the pending map.
+ * OpenAI streams arguments across multiple chunks.
+ */
+export declare function mergeToolCallDeltas(pending: Map<number, PendingToolCall>, data: Record<string, unknown>): void;
+/**
+ * Parse assembled argument strings into objects.
+ * Returns the tool call with a best-effort parsed arguments object.
+ */
+export declare function finalizeToolCall(tc: PendingToolCall): {
+    name: string;
+    id: string;
+    arguments: Record<string, unknown>;
+};
+/**
+ * Synthesize a blocked response as a valid SSE event.
+ * Sends a finish_reason: "stop" chunk with an error message in the content.
+ */
+export declare function synthBlockedEvent(reason: string, requestId?: string): string;
+//# sourceMappingURL=interceptor.d.ts.map

package/dist/proxy/interceptor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"interceptor.d.ts","sourceRoot":"","sources":["../../src/proxy/interceptor.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,iDAAiD;IACjD,IAAI,EAAE,MAAM,CAAC;IACb,8CAA8C;IAC9C,IAAI,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACtC,0CAA0C;IAC1C,IAAI,CAAC,EAAE,OAAO,CAAC;IACf,oDAAoD;IACpD,YAAY,CAAC,EAAE,OAAO,CAAC;IACvB,6CAA6C;IAC7C,qBAAqB,CAAC,EAAE,OAAO,CAAC;CACjC;AAED,wEAAwE;AACxE,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,CA2BxD;AAED;;;GAGG;AACH,wBAAgB,mBAAmB,CACjC,OAAO,EAAE,GAAG,CAAC,MAAM,EAAE,eAAe,CAAC,EACrC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC5B,IAAI,CA8BN;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,EAAE,EAAE,eAAe,GAAG;IACrD,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC,CAYA;AAED;;;GAGG;AACH,wBAAgB,iBAAiB,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,MAAM,GAAG,MAAM,CAa5E"}

package/dist/proxy/interceptor.js

@@ -0,0 +1,111 @@
+/**
+ * SSE stream interceptor for OpenAI chat completions.
+ *
+ * Buffers streaming chunks, assembles tool call arguments, validates
+ * the assembled tool call against Veto policies, then either flushes
+ * the buffer or sends a synthetic error event.
+ *
+ * @module proxy/interceptor
+ */
+/** Parse a single SSE line. Returns null for non-data/comment lines. */
+export function parseSSELine(line) {
+    if (line === 'data: [DONE]')
+        return { line, done: true };
+    if (!line.startsWith('data: '))
+        return { line };
+    const jsonStr = line.slice(6);
+    let data;
+    try {
+        data = JSON.parse(jsonStr);
+    }
+    catch {
+        return { line };
+    }
+    const choices = Array.isArray(data['choices']) ? data['choices'] : [];
+    let hasToolCalls = false;
+    let finishReasonToolCalls = false;
+    for (const choice of choices) {
+        if (typeof choice !== 'object' || choice === null)
+            continue;
+        const c = choice;
+        if (c['finish_reason'] === 'tool_calls')
+            finishReasonToolCalls = true;
+        const delta = c['delta'];
+        if (delta && Array.isArray(delta['tool_calls']) && delta['tool_calls'].length > 0) {
+            hasToolCalls = true;
+        }
+    }
+    return { line, data, hasToolCalls, finishReasonToolCalls };
+}
+/**
+ * Merge tool call deltas from one SSE chunk into the pending map.
+ * OpenAI streams arguments across multiple chunks.
+ */
+export function mergeToolCallDeltas(pending, data) {
+    const choices = Array.isArray(data['choices']) ? data['choices'] : [];
+    for (const choice of choices) {
+        if (typeof choice !== 'object' || choice === null)
+            continue;
+        const c = choice;
+        const delta = c['delta'];
+        if (!delta || !Array.isArray(delta['tool_calls']))
+            continue;
+        for (const tc of delta['tool_calls']) {
+            const idx = typeof tc['index'] === 'number' ? tc['index'] : 0;
+            if (!pending.has(idx)) {
+                pending.set(idx, {
+                    index: idx,
+                    id: typeof tc['id'] === 'string' ? tc['id'] : '',
+                    name: typeof tc['function']?.['name'] === 'string'
+                        ? tc['function']['name']
+                        : '',
+                    argumentsRaw: '',
+                });
+            }
+            const existing = pending.get(idx);
+            const fn = tc['function'];
+            if (fn && typeof fn['name'] === 'string' && fn['name'] && !existing.name) {
+                existing.name = fn['name'];
+            }
+            if (fn && typeof fn['arguments'] === 'string') {
+                existing.argumentsRaw += fn['arguments'];
+            }
+        }
+    }
+}
+/**
+ * Parse assembled argument strings into objects.
+ * Returns the tool call with a best-effort parsed arguments object.
+ */
+export function finalizeToolCall(tc) {
+    let args = {};
+    try {
+        const parsed = JSON.parse(tc.argumentsRaw);
+        if (parsed && typeof parsed === 'object' && !Array.isArray(parsed)) {
+            args = parsed;
+        }
+    }
+    catch {
+        console.warn(`[veto intercept] Malformed tool arguments for '${tc.name}', validating with empty args`);
+    }
+    return { name: tc.name, id: tc.id, arguments: args };
+}
+/**
+ * Synthesize a blocked response as a valid SSE event.
+ * Sends a finish_reason: "stop" chunk with an error message in the content.
+ */
+export function synthBlockedEvent(reason, requestId) {
+    const chunk = {
+        id: requestId ?? 'veto-blocked',
+        object: 'chat.completion.chunk',
+        choices: [
+            {
+                index: 0,
+                delta: { role: 'assistant', content: `[BLOCKED by veto] ${reason}` },
+                finish_reason: 'stop',
+            },
+        ],
+    };
+    return `data: ${JSON.stringify(chunk)}\n\ndata: [DONE]\n\n`;
+}
+//# sourceMappingURL=interceptor.js.map

package/dist/proxy/interceptor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"interceptor.js","sourceRoot":"","sources":["../../src/proxy/interceptor.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AA4BH,wEAAwE;AACxE,MAAM,UAAU,YAAY,CAAC,IAAY;IACvC,IAAI,IAAI,KAAK,cAAc;QAAE,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;IACzD,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;QAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAEhD,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC9B,IAAI,IAA6B,CAAC;IAClC,IAAI,CAAC;QACH,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAA4B,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,IAAI,EAAE,CAAC;IAClB,CAAC;IAED,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IACtE,IAAI,YAAY,GAAG,KAAK,CAAC;IACzB,IAAI,qBAAqB,GAAG,KAAK,CAAC;IAElC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI;YAAE,SAAS;QAC5D,MAAM,CAAC,GAAG,MAAiC,CAAC;QAC5C,IAAI,CAAC,CAAC,eAAe,CAAC,KAAK,YAAY;YAAE,qBAAqB,GAAG,IAAI,CAAC;QACtE,MAAM,KAAK,GAAG,CAAC,CAAC,OAAO,CAAwC,CAAC;QAChE,IAAI,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,IAAK,KAAK,CAAC,YAAY,CAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACjG,YAAY,GAAG,IAAI,CAAC;QACtB,CAAC;IACH,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,YAAY,EAAE,qBAAqB,EAAE,CAAC;AAC7D,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CACjC,OAAqC,EACrC,IAA6B;IAE7B,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IACtE,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI;YAAE,SAAS;QAC5D,MAAM,CAAC,GAAG,MAAiC,CAAC;QAC5C,MAAM,KAAK,GAAG,CAAC,CAAC,OAAO,CAAwC,CAAC;QAChE,IAAI,CAAC,KAAK,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;YAAE,SAAS;QAE5D,KAAK,MAAM,EAAE,IAAI,KAAK,CAAC,YAAY,CAA8B,EAAE,CAAC;YAClE,MAAM,GAAG,GAAG,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAC9D,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;gBACtB,OAAO,CAAC,GAAG,CAAC,GAAG,EAAE;oBACf,KAAK,EAAE,GAAG;oBACV,EAAE,EAAE,OAAO,EAAE,CAAC,IAAI,CAAC,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;oBAChD,IAAI,EAAE,OAAQ,EAAE,CAAC,UAAU,CAAyC,EAAE,CAAC,MAAM,CAAC,KAAK,QAAQ;wBACzF,CAAC,CAAE,EAAE,CAAC,UAAU,CAA6B,CAAC,MAAM,CAAW;wBAC/D,CAAC,CAAC,EAAE;oBACN,YAAY,EAAE,EAAE;iBACjB,CAAC,CAAC;YACL,CAAC;YACD,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,GAAG,CAAE,CAAC;YACnC,MAAM,EAAE,GAAG,EAAE,CAAC,UAAU,CAAwC,CAAC;YACjE,IAAI,EAAE,IAAI,OAAO,EAAE,CAAC,MAAM,CAAC,KAAK,QAAQ,IAAI,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACzE,QAAQ,CAAC,IAAI,GAAG,EAAE,CAAC,MAAM,CAAW,CAAC;YACvC,CAAC;YACD,IAAI,EAAE,IAAI,OAAO,EAAE,CAAC,WAAW,CAAC,KAAK,QAAQ,EAAE,CAAC;gBAC9C,QAAQ,CAAC,YAAY,IAAI,EAAE,CAAC,WAAW,CAAW,CAAC;YACrD,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,EAAmB;IAKlD,IAAI,IAAI,GAA4B,EAAE,CAAC;IACvC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,CAAC;QAC3C,IAAI,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YACnE,IAAI,GAAG,MAAiC,CAAC;QAC3C,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QAEP,OAAO,CAAC,IAAI,CAAC,kDAAkD,EAAE,CAAC,IAAI,+BAA+B,CAAC,CAAC;IACzG,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;AACvD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,iBAAiB,CAAC,MAAc,EAAE,SAAkB;IAClE,MAAM,KAAK,GAAG;QACZ,EAAE,EAAE,SAAS,IAAI,cAAc;QAC/B,MAAM,EAAE,uBAAuB;QAC/B,OAAO,EAAE;YACP;gBACE,KAAK,EAAE,CAAC;gBACR,KAAK,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,qBAAqB,MAAM,EAAE,EAAE;gBACpE,aAAa,EAAE,MAAM;aACtB;SACF;KACF,CAAC;IACF,OAAO,SAAS,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,sBAAsB,CAAC;AAC9D,CAAC"}

package/dist/proxy/server.d.ts

@@ -0,0 +1,21 @@
+/**
+ * veto intercept — HTTP proxy for OpenAI and Anthropic streaming APIs.
+ *
+ * Intercepts tool calls in streaming responses (SSE format) and validates
+ * them against Veto policies before forwarding to the client.
+ *
+ * Architecture — full buffering:
+ *   1. Non-tool-call responses → passthrough chunks as they arrive
+ *   2. Tool-call responses → buffer all chunks until stream signals completion
+ *   3. Validate assembled tool call → allow (flush buffer) or block (synthetic error)
+ *   4. Buffer overflow (> maxBufferBytes) → flush + passthrough, skip validation
+ *
+ * @module proxy/server
+ */
+import type { ProxyConfig } from './types.js';
+/**
+ * Start the veto intercept proxy server.
+ * Returns a cleanup function that stops the server and destroys the Veto instance.
+ */
+export declare function startProxyServer(config: ProxyConfig): Promise<() => Promise<void>>;
+//# sourceMappingURL=server.d.ts.map