connectonion 0.6.4__py3-none-any.whl → 0.6.5__py3-none-any.whl

connectonion/network/trust/trust_agent.py

@@ -0,0 +1,403 @@
+"""
+TrustAgent - A clear, method-based interface for trust management.
+
+Usage:
+    from connectonion.network.trust import TrustAgent
+
+    trust = TrustAgent("careful")  # or "open", "strict", or path to policy file
+
+    # Check if request is allowed
+    decision = trust.should_allow("client-123", {"prompt": "hello"})
+    if decision.allow:
+        # process request
+    else:
+        print(decision.reason)
+
+    # Trust level operations
+    trust.promote_to_contact("client-123")
+    trust.block("bad-actor", reason="spam")
+    level = trust.get_level("client-123")  # "stranger", "contact", "whitelist", "blocked"
+
+    # Admin operations
+    trust.is_admin("client-123")
+    trust.add_admin("new-admin")
+
+Extensibility:
+    Subclass TrustAgent to customize behavior. All methods can be overridden.
+
+    class MyTrustAgent(TrustAgent):
+        '''Custom trust with database-backed storage.'''
+
+        def is_admin(self, client_id: str) -> bool:
+            '''Check admin from database instead of file.'''
+            return self.db.is_admin(client_id)
+
+        def promote_to_contact(self, client_id: str) -> str:
+            '''Store contacts in database.'''
+            self.db.add_contact(client_id)
+            return f"{client_id} promoted to contact."
+
+    # Use custom trust agent
+    host(create_agent, trust=MyTrustAgent("careful"))
+"""
+
+from dataclasses import dataclass
+from pathlib import Path
+from typing import Optional
+
+from .fast_rules import parse_policy, evaluate_request
+from .tools import (
+    is_whitelisted as _is_whitelisted,
+    is_blocked as _is_blocked,
+    is_contact as _is_contact,
+    is_stranger as _is_stranger,
+    promote_to_contact as _promote_to_contact,
+    promote_to_whitelist as _promote_to_whitelist,
+    demote_to_contact as _demote_to_contact,
+    demote_to_stranger as _demote_to_stranger,
+    block as _block,
+    unblock as _unblock,
+    get_level as _get_level,
+    # Admin functions
+    is_admin as _is_admin,
+    is_super_admin as _is_super_admin,
+    get_self_address as _get_self_address,
+    add_admin as _add_admin,
+    remove_admin as _remove_admin,
+)
+from .factory import PROMPTS_DIR, TRUST_LEVELS
+
+
+@dataclass
+class Decision:
+    """Result of should_allow() check."""
+    allow: bool
+    reason: str
+    used_llm: bool = False
+
+
+class TrustAgent:
+    """
+    Trust management with a clear, method-based interface.
+
+    All trust operations in one place:
+    - should_allow() - Check if request is allowed (fast rules + LLM fallback)
+    - verify_invite() / verify_payment() - Onboarding
+    - promote_to_contact() / promote_to_whitelist() - Promotion
+    - demote_to_contact() / demote_to_stranger() - Demotion
+    - block() / unblock() - Blocking
+    - get_level() - Query current level
+    - is_admin() / is_super_admin() - Admin checks
+    - add_admin() / remove_admin() - Admin management
+
+    Extensibility:
+        All methods can be overridden in subclasses for custom storage,
+        authentication backends, or business logic. See module docstring.
+    """
+
+    def __init__(self, trust: str = "careful", *, api_key: str = None, model: str = "co/gpt-4o-mini"):
+        """
+        Create a TrustAgent.
+
+        Args:
+            trust: Trust level ("open", "careful", "strict") or path to policy file
+            api_key: Optional API key for LLM (only needed if using 'ask' default)
+            model: Model to use for LLM decisions
+        """
+        self.trust = trust
+        self.api_key = api_key
+        self.model = model
+
+        # Load policy and parse config
+        self._config, self._prompt = self._load_policy(trust)
+
+        # Lazy-loaded LLM agent (only created if needed)
+        self._llm_agent = None
+
+    def _load_policy(self, trust: str) -> tuple[dict, str]:
+        """Load policy file and parse YAML config."""
+        # Trust level -> load from prompts/trust/{level}.md
+        if trust.lower() in TRUST_LEVELS:
+            policy_path = PROMPTS_DIR / f"{trust.lower()}.md"
+            if policy_path.exists():
+                text = policy_path.read_text(encoding='utf-8')
+                return parse_policy(text)
+            return {}, ""
+
+        # File path
+        path = Path(trust)
+        if path.exists() and path.is_file():
+            text = path.read_text(encoding='utf-8')
+            return parse_policy(text)
+
+        # Inline policy text
+        if trust.startswith('---'):
+            return parse_policy(trust)
+
+        # Unknown - empty config
+        return {}, ""
+
+    # === Main Decision Method ===
+
+    def should_allow(self, client_id: str, request: dict = None) -> Decision:
+        """
+        Check if a request should be allowed.
+
+        Runs fast rules first (no LLM). Only uses LLM if config has 'default: ask'.
+
+        Args:
+            client_id: The client making the request
+            request: Optional request data (may contain invite_code, payment)
+
+        Returns:
+            Decision with allow (bool) and reason (str)
+        """
+        request = request or {}
+
+        # Fast rules (no LLM)
+        result = evaluate_request(self._config, client_id, request)
+
+        if result == 'allow':
+            return Decision(allow=True, reason="Allowed by fast rules")
+        elif result == 'deny':
+            return Decision(allow=False, reason="Denied by fast rules")
+
+        # result is None -> need LLM decision
+        return self._llm_decide(client_id, request)
+
+    def _llm_decide(self, client_id: str, request: dict) -> Decision:
+        """Use LLM to make trust decision (only for 'ask' cases)."""
+        from ...core.agent import Agent
+        from ...llm_do import llm_do
+        from pydantic import BaseModel
+
+        class TrustDecision(BaseModel):
+            allow: bool
+            reason: str
+
+        # Build context for LLM
+        level = self.get_level(client_id)
+        prompt = f"""Evaluate this trust request:
+- client_id: {client_id}
+- current_level: {level}
+- request: {request}
+
+Should this client be allowed access?"""
+
+        decision = llm_do(
+            prompt,
+            output=TrustDecision,
+            system_prompt=self._prompt or "You are a trust evaluation agent. Decide if the request should be allowed.",
+            api_key=self.api_key,
+            model=self.model,
+        )
+
+        return Decision(allow=decision.allow, reason=decision.reason, used_llm=True)
+
+    # === Verification (Onboarding) ===
+
+    def verify_invite(self, client_id: str, invite_code: str) -> bool:
+        """
+        Verify invite code. Promotes to contact if valid.
+
+        Args:
+            client_id: Client to verify
+            invite_code: The invite code provided
+
+        Returns:
+            True if valid and promoted, False otherwise
+        """
+        valid_codes = self._config.get('onboard', {}).get('invite_code', [])
+        if invite_code in valid_codes:
+            self.promote_to_contact(client_id)
+            return True
+        return False
+
+    def verify_payment(self, client_id: str, amount: float) -> bool:
+        """
+        Verify payment via oo-api transfer verification.
+
+        Calls the oo-api to check if client_id transferred at least `amount`
+        to this agent's address within the last 5 minutes.
+
+        Args:
+            client_id: Client to verify (their address)
+            amount: Minimum payment amount required
+
+        Returns:
+            True if transfer verified and promoted, False otherwise
+        """
+        required = self._config.get('onboard', {}).get('payment')
+        if not required:
+            return False
+
+        # Use configured amount if not specified
+        min_amount = amount if amount > 0 else required
+
+        # Get self address (agent's address)
+        self_addr = self.get_self_address()
+        if not self_addr:
+            return False
+
+        # Call oo-api to verify transfer
+        if self._verify_transfer_via_api(client_id, self_addr, min_amount):
+            self.promote_to_contact(client_id)
+            return True
+        return False
+
+    def _verify_transfer_via_api(self, from_addr: str, to_addr: str, min_amount: float) -> bool:
+        """Call oo-api to verify a transfer was made."""
+        import os
+        import json
+        import time
+        from pathlib import Path
+
+        try:
+            import httpx
+        except ImportError:
+            # httpx not available, fall back to simple amount check
+            return True
+
+        # Load agent's keys for signing the request
+        from ... import address as addr
+
+        co_dir = Path.cwd() / '.co'
+        keys = addr.load(co_dir)
+        if not keys:
+            return False
+
+        # Determine API URL
+        base_url = os.environ.get('OPENONION_BASE_URL', 'https://oo.openonion.ai')
+        if os.environ.get('OPENONION_DEV'):
+            base_url = 'http://localhost:8000'
+
+        # Create signed auth request
+        timestamp = int(time.time())
+        message = f"ConnectOnion-Auth-{keys['public_key']}-{timestamp}"
+        signature = addr.sign(keys, message.encode()).hex()
+
+        # Get JWT token
+        auth_response = httpx.post(
+            f"{base_url}/auth",
+            json={
+                "public_key": keys['public_key'],
+                "message": message,
+                "signature": signature
+            },
+            timeout=10
+        )
+        if auth_response.status_code != 200:
+            return False
+
+        token = auth_response.json().get('token')
+        if not token:
+            return False
+
+        # Call verify endpoint
+        verify_response = httpx.post(
+            f"{base_url}/api/v1/onboard/verify",
+            json={
+                "from_address": from_addr,
+                "min_amount": min_amount
+            },
+            headers={"Authorization": f"Bearer {token}"},
+            timeout=10
+        )
+
+        if verify_response.status_code == 200:
+            result = verify_response.json()
+            return result.get('verified', False)
+
+        return False
+
+    # === Promotion ===
+
+    def promote_to_contact(self, client_id: str) -> str:
+        """Stranger -> Contact"""
+        return _promote_to_contact(client_id)
+
+    def promote_to_whitelist(self, client_id: str) -> str:
+        """Contact -> Whitelist"""
+        return _promote_to_whitelist(client_id)
+
+    # === Demotion ===
+
+    def demote_to_contact(self, client_id: str) -> str:
+        """Whitelist -> Contact"""
+        return _demote_to_contact(client_id)
+
+    def demote_to_stranger(self, client_id: str) -> str:
+        """Contact -> Stranger"""
+        return _demote_to_stranger(client_id)
+
+    # === Blocking ===
+
+    def block(self, client_id: str, reason: str = "") -> str:
+        """Add to blocklist."""
+        return _block(client_id, reason)
+
+    def unblock(self, client_id: str) -> str:
+        """Remove from blocklist."""
+        return _unblock(client_id)
+
+    # === Queries ===
+
+    def get_level(self, client_id: str) -> str:
+        """
+        Get client's current trust level.
+
+        Returns: "stranger", "contact", "whitelist", or "blocked"
+        """
+        return _get_level(client_id)
+
+    def is_whitelisted(self, client_id: str) -> bool:
+        """Check if client is whitelisted."""
+        return _is_whitelisted(client_id)
+
+    def is_blocked(self, client_id: str) -> bool:
+        """Check if client is blocked."""
+        return _is_blocked(client_id)
+
+    def is_contact(self, client_id: str) -> bool:
+        """Check if client is a contact."""
+        return _is_contact(client_id)
+
+    def is_stranger(self, client_id: str) -> bool:
+        """Check if client is a stranger."""
+        return _is_stranger(client_id)
+
+    # === Admin Management ===
+    # Instance methods for easy subclass overloading.
+    # Override these to customize admin logic (e.g., database-backed, LDAP, etc.)
+
+    def is_admin(self, client_id: str) -> bool:
+        """Check if client is an admin. Override for custom admin logic."""
+        return _is_admin(client_id)
+
+    def is_super_admin(self, client_id: str) -> bool:
+        """Check if client is super admin (self address). Override for custom logic."""
+        return _is_super_admin(client_id)
+
+    def get_self_address(self) -> str | None:
+        """Get self address (super admin)."""
+        return _get_self_address()
+
+    def add_admin(self, admin_id: str) -> str:
+        """Add an admin. Super admin only. Override for custom storage."""
+        return _add_admin(admin_id)
+
+    def remove_admin(self, admin_id: str) -> str:
+        """Remove an admin. Super admin only. Override for custom storage."""
+        return _remove_admin(admin_id)
+
+    # === Config Access ===
+
+    @property
+    def config(self) -> dict:
+        """Get the parsed YAML config."""
+        return self._config
+
+    @property
+    def prompt(self) -> str:
+        """Get the markdown prompt (for LLM decisions)."""
+        return self._prompt

connectonion/transcribe.py

@@ -70,7 +70,7 @@ def _get_api_key(model: str) -> str:
         api_key = os.getenv("OPENONION_API_KEY")
         if not api_key:
             # Try loading from config file
-            config_path = Path.home() / ".connectonion" / ".co" / "config.toml"
+            config_path = Path.home() / ".co" / "config.toml"
             if config_path.exists():
                 import toml
                 config = toml.load(config_path)

{connectonion-0.6.4.dist-info → connectonion-0.6.5.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: connectonion
-Version: 0.6.4
+Version: 0.6.5
 Summary: A simple Python framework for creating AI agents with behavior tracking
 Project-URL: Homepage, https://github.com/openonion/connectonion
 Project-URL: Documentation, https://docs.connectonion.com

{connectonion-0.6.4.dist-info → connectonion-0.6.5.dist-info}/RECORD

@@ -1,13 +1,13 @@
-connectonion/__init__.py,sha256=rlIzfNx6-3ijsVefkkZHtF_3oqRHmDekaEDoJXBkoLY,3416
+connectonion/__init__.py,sha256=DOO8J6IjqTVEDXwh7LljiFpzrRgJUqrD2VMJBN0hgOY,3416
 connectonion/address.py,sha256=YOzpMOej-HqJUE6o0i0fG8rB7HM-Iods36s9OD--5ig,10852
 connectonion/console.py,sha256=Gl0K0c3ZHlLkbGlBVx0Wgb5Fg8LNVci9WQhSDDdGmJg,21937
 connectonion/llm_do.py,sha256=rwgSsTreNGAq5xV3m9lbA7U5AE0XOZNdihJwW5FHz0k,12005
 connectonion/logger.py,sha256=VxdY26OGU9zdfBEDS14ypklCpD4j6vTLi8lwrxCGqQE,17647
 connectonion/prompts.py,sha256=ccpBCKWsrlx7KGTpycWz9KwTgipZvfiJ78NTr3N-VAc,6073
-connectonion/transcribe.py,sha256=m2qd7A2qMKFAbmbLLgvcd-yUFz8FHgjUKtvtFffnK00,7730
+connectonion/transcribe.py,sha256=yA9l7Mgbt944cZl_UBmV9RPSUniQFwfoH5WREX1ktkQ,7712
 connectonion/cli/__init__.py,sha256=OC-NeIAThUPALtJLL0B3r1zKfDiWwSC3Z7xXkNOARIc,372
 connectonion/cli/docs.md,sha256=Fk_JT8jFXXDpXTvU0ZUigMW1UR6ERmX-HDheYPPRNY8,3231
-connectonion/cli/main.py,sha256=QEI-EfiUDdX0x4_NX4J6riG68vGAR7q2rlUf_9qb7TA,7768
+connectonion/cli/main.py,sha256=ucx56aRssALVzyn8lBz-phkIwDZOdGXfDu92s2YcZaU,10494
 connectonion/cli/browser_agent/__init__.py,sha256=UQ117kmv76CLimsTjdZYVfq_uUhRELumrmuS-r6hhQk,592
 connectonion/cli/browser_agent/browser.py,sha256=bpRvta1eNKiK2tYGq_DwuFqHQXTwHuFtHEFUcuOPCdc,21564
 connectonion/cli/browser_agent/element_finder.py,sha256=cDJtIkCh-BhfWnSuBbJKmYPTVcy1rbtheGH58KD5ZBc,5550
@@ -21,7 +21,7 @@ connectonion/cli/browser_agent/scripts/extract_elements.js,sha256=0YMufRSeBf6PQL
 connectonion/cli/co_ai/__init__.py,sha256=rxHdQFxV3iH9y60VhuoKu_jly02JHbdQEHAkpMZPrIM,183
 connectonion/cli/co_ai/agent.py,sha256=4xVunKfK9s61TOrn0nDpFn2_j627fRi9K_EJlLtx5Rg,2174
 connectonion/cli/co_ai/context.py,sha256=B07GMFUFqAP-_76PxJigHgj7AMkbMBX0kAObysCz5tM,3778
-connectonion/cli/co_ai/main.py,sha256=k9SvRrs2nFLBOWCrqjULfxWKwpcRxwiqvDkNxWEwvtA,1480
+connectonion/cli/co_ai/main.py,sha256=S8mep1dDtmVOvUPITy3Lx9_ut92ZCNmYd9zHJ1Q6Eww,1515
 connectonion/cli/co_ai/sessions.py,sha256=YbkTowHw2BpSIh2sGg0avnJLuwObkKeFZ0UXGkXpLlg,3526
 connectonion/cli/co_ai/agents/__init__.py,sha256=k9KdUsmsG80Us4_SnJ4m9Ibx0KNVQ_ly0JlNFjcX1gc,142
 connectonion/cli/co_ai/agents/registry.py,sha256=-hhgh6S9iufwKoxT-kO3mhN-wLYSlB_YJVxoK3I4598,1740
@@ -69,7 +69,7 @@ connectonion/cli/co_ai/prompts/connectonion/concepts/plugins.md,sha256=NHKHV6cKr
 connectonion/cli/co_ai/prompts/connectonion/concepts/prompts.md,sha256=LXiyNSniGrD0PZeEkadmzR9Fc7qVR8hj01KZCIklSyU,3191
 connectonion/cli/co_ai/prompts/connectonion/concepts/tools.md,sha256=2y8Bi31UqQHmDFf8dbhm7vYweWcPCl4ebYkicGFKJuU,14518
 connectonion/cli/co_ai/prompts/connectonion/concepts/transcribe.md,sha256=-1r2Gx5H2_3dBT5oozaCXocjdGCBlUqL2PVsoU5zT5w,3960
-connectonion/cli/co_ai/prompts/connectonion/concepts/trust.md,sha256=MXYXmWhvdP22eBbI6PoPoDapOsU5xB0GL7axTcGdIp0,6922
+connectonion/cli/co_ai/prompts/connectonion/concepts/trust.md,sha256=HlRB6pReMWyY7MnkpDvj4GDiWVfzGopTMZdraG5HH3g,6931
 connectonion/cli/co_ai/prompts/connectonion/debug/README.md,sha256=dQvR0Csj-cyjE6c8KmYIRRJcUCVoc_0nswUTfB01q4o,549
 connectonion/cli/co_ai/prompts/connectonion/debug/auto_debug.md,sha256=MSD_T19Py0bmHzva-P1Zmfq1lRt9wUrVaM-3g4uEP0Q,26369
 connectonion/cli/co_ai/prompts/connectonion/debug/console.md,sha256=r_9D6lEE4sHGCD0Je8vF8Nqv2PefSDMrOuARp3zrAV0,4299
@@ -189,7 +189,7 @@ connectonion/cli/commands/__init__.py,sha256=5q62U9-6mJfITB85ilBpM50EQCKUAeugR2N
 connectonion/cli/commands/ai_commands.py,sha256=yfQ6zJeXx11u4XlkwRC7hnJs86-a3dXkfSVQokF2lE8,1033
 connectonion/cli/commands/auth_commands.py,sha256=D76_0yd77d23bXRvsTAY6HOcGJswo9-6z2dRi9CR9sE,21635
 connectonion/cli/commands/browser_commands.py,sha256=lB4N6XwP43qdcthwQWlbFU2S3INfxhRDXznAw1PSTsQ,1803
-connectonion/cli/commands/copy_commands.py,sha256=yhGAqHW0kqoNcv9g_vGIYtcUfbcVyw-gAr9kxP7xxAg,6368
+connectonion/cli/commands/copy_commands.py,sha256=88r6gZvdjRnwxeETpi2Tc4pnNgP5QotksE4bLThIxxU,7317
 connectonion/cli/commands/create.py,sha256=01wRtoGcAxsd1K_8DclG3BG2N-RQ8l7E8yhai_EhZ_A,21855
 connectonion/cli/commands/deploy_commands.py,sha256=l-o6XDxh5kDB0YUCb_LeVERvdUY4gUogOlNalRv1OdM,8774
 connectonion/cli/commands/doctor_commands.py,sha256=EOk8CMclvVqLq4-Dg2JghWehH9VQnthBejrhIBX66_4,7244
@@ -198,6 +198,7 @@ connectonion/cli/commands/init.py,sha256=Jn7tfCuudocV7hSeqWtqfK82mbVzmeFKsDdpYkG
 connectonion/cli/commands/project_cmd_lib.py,sha256=fUKR4hi7RLeIku7mHBug6cRwvBUpo2QwSgDGWkmhzu8,32752
 connectonion/cli/commands/reset_commands.py,sha256=FkK6tMn7QOY3X5ulTYQ7VnLfeYpStgbZ5UnnbD3zudY,7016
 connectonion/cli/commands/status_commands.py,sha256=krUZNd1pFuU8D7UdXrUskBTlpmAdjcTWBXs0s4YJOc4,6401
+connectonion/cli/commands/trust_commands.py,sha256=l5mPHVpHq7tYFbpRn8PhZ7k_pRTC20o583n_vld2pEY,4414
 connectonion/cli/templates/meta-agent/README.md,sha256=qDUxlSfRPQrEzT9_tcbwL0nqWMfu3EOKYdQe00wlUDE,8659
 connectonion/cli/templates/meta-agent/agent.py,sha256=x89xmsLSwUiiqZGRBzaEOZhvxDE2T1oKzke2I0PGUpw,7349
 connectonion/cli/templates/meta-agent/prompts/answer_prompt.md,sha256=q3knwNPjDdtpzGecaDhoTYK5jMrBTOVhniEvZXjMGw4,406
@@ -215,7 +216,7 @@ connectonion/core/__init__.py,sha256=BK3MZ2INeozVFrrvwjhVg0Q17lNPubPqBpfPeEtnwIw
 connectonion/core/agent.py,sha256=TFz2QwxGG6vrgh5Y64yS3KYLpR6CU_PY856Z5_2uo28,19678
 connectonion/core/events.py,sha256=jJOMt1PhRl-ef4R8-WpAq8pUbZ8GKIl0wOB2kJUVyWg,9151
 connectonion/core/exceptions.py,sha256=1jpXxkhCZg7U-dujwcGv6UmgmVf8jOrgT3C_Td6d2dA,3088
-connectonion/core/llm.py,sha256=lzKpHhqh47iX-4b9GOie70-bzHLRmbpd4JkXf2HVMGg,34226
+connectonion/core/llm.py,sha256=vcrpc2AfEuPEFZaeIYGhfBzeD0RHW4UGgjWOtQp5MS4,34198
 connectonion/core/tool_executor.py,sha256=wdR9jV0d68LK710-nOL8eEddzlVYKwWubRl20w1pI7Y,10751
 connectonion/core/tool_factory.py,sha256=lAZjaLUfSkD7U0O-_VKqwaR7fmzDoNK6tKKyLjz0WSo,8157
 connectonion/core/tool_registry.py,sha256=rTe8RJnWXpmHXWznP468fhWvmRknk-TlF9Iz8G9_qus,4367
@@ -238,26 +239,27 @@ connectonion/debug/runtime_inspector/__init__.py,sha256=ghHF6Q8n5EmuN5F4fIvEnVFn
 connectonion/debug/runtime_inspector/agent.py,sha256=kGXncq8AOffUQ_fuj9Sw15of6_mtsvrsYNZ5-lU74ao,2510
 connectonion/debug/runtime_inspector/runtime_inspector.py,sha256=rxFOqTxSvyKxqagYL4V2Pf-ii0Ie8l14a5xHzgIb810,15336
 connectonion/debug/runtime_inspector/prompts/debug_assistant.md,sha256=sR17NHwBY-8EgIZwK4AoTKW9D6vEDUf1Aq7i936tqco,2816
-connectonion/network/__init__.py,sha256=pDn5cb7E1mKN352uikFOVEH-2uMCWdrl4zZ4zb2NviM,1855
+connectonion/network/__init__.py,sha256=_s8qX6zptkKOmPqCWLkc-eQKz_X0aDjapXu4Ola5FRE,1876
 connectonion/network/announce.py,sha256=roS_PIYef7g-HlXhIkUrCEtGNUDBEStqFodCU8qEy5M,3366
-connectonion/network/connect.py,sha256=lEXXdOqZSaqvFBUkZ8OK1VXnRV4p2WCZyTMlc_RFBcE,11419
+connectonion/network/connect.py,sha256=SYpiPkWnzEIArkd7Y5fIl3uSx0n8UeTYLdHyjklWmJM,16496
 connectonion/network/relay.py,sha256=gUaO6IHPtaPpcyL3CywfuP4SQGpJYJIp1CUz6LgY5i4,7177
-connectonion/network/asgi/__init__.py,sha256=4h6gcJ9L5CfmFfURcHh5lqPVWMieiCLgFZELyNLo4pQ,2685
-connectonion/network/asgi/http.py,sha256=GgCpEPDu085XnRrxhI9119tfnnjtPg46luJccpBLcVA,8427
-connectonion/network/asgi/websocket.py,sha256=HcUEOY34yCDosSmKnJN7QN5oBqnDXSqQw4c5RGoIeVA,10317
+connectonion/network/asgi/__init__.py,sha256=-_5ITXLJR9WKvoJkh719Sh1KBq-P3qlyXFgsjfGFPWc,2845
+connectonion/network/asgi/http.py,sha256=k9NFR_TMFu_9uiMYxiue8AwexcM_dYo1OoGm_Z3WRlU,13438
+connectonion/network/asgi/websocket.py,sha256=g6QvU_LHuslfjq4nqXmE4uAd4Zi1t-LO1hj7FLmPWjk,22740
 connectonion/network/host/__init__.py,sha256=MAiKrVWp2NLTsx5bwp1pjGgvNLIKuQpaIDX2qZEO_pc,1703
-connectonion/network/host/auth.py,sha256=wx3gb7oNTl7biHQ_MDcI0aDsieUqNdtlCggIngutEvg,7594
-connectonion/network/host/routes.py,sha256=Q3n7N9Tc6u3LeiQYWD0R18Qzan9X_MFbC76n_3mFj1w,5644
-connectonion/network/host/server.py,sha256=c9Y68RcBedxlOKba5wqhOB_vbdbghQcea1UhVqe9WiE,11382
+connectonion/network/host/auth.py,sha256=OGk7KzORcfWnABqKCbuhAPY9fBWz_qubGPyHqq2ol1I,7594
+connectonion/network/host/routes.py,sha256=l0hGcUe0OwVFrz1KYutDdczA7-LVtHTXeHXDBwDnDk8,9003
+connectonion/network/host/server.py,sha256=Hk0Ck5TfQmcJukxsNmXPaWVvpRsy58hA6gkf9NUmPx8,14845
 connectonion/network/host/session.py,sha256=5HciX7Gx_kcS911oYJ9rIeLFv8CnovFnvDs3IwogNSU,3458
 connectonion/network/io/__init__.py,sha256=jE7-EFZW8OIJ5P8IUevQFFc7AXKRilpsFLo5hjpGOBk,817
 connectonion/network/io/base.py,sha256=US4LgB1FMBQzHB3GnUQiBXwjuBDCceFrwnaAsA7dJ9k,4398
 connectonion/network/io/websocket.py,sha256=DjkMLq7SMiO4JAORGHLMR_R2XEUP6HbGG2P3WFwCrsg,2823
 connectonion/network/static/docs.html,sha256=rSffkCAy2fA512XcMC6z1wyZH9iYeAsSP213G3l1OOk,31085
-connectonion/network/trust/__init__.py,sha256=EGDzH3M1wna6DPgEG1IGn00aBaNlB6IR-2kOW1VaxSk,1362
-connectonion/network/trust/factory.py,sha256=j5cE2YQPbjgyzJB8Uru_s6lbVGmF102HPgdoW2bgjqY,4180
-connectonion/network/trust/prompts.py,sha256=TD9s1qJ5pp_ZTmak1wdckeDjDb8KcuLcinHwOqNbjA4,2984
-connectonion/network/trust/tools.py,sha256=4Z1UiNM8bSTNfB8s8i6uQFtQKvZ0DgvtsKvXiszC0_4,3581
+connectonion/network/trust/__init__.py,sha256=7Qv8JW-0nkI64Cs2bXnhDLlaYZOs5vWb0aMVTHXTDoc,1083
+connectonion/network/trust/factory.py,sha256=i7z9oMG9eOVGGqZFedRAetwbv4kfdeu7lIN5f9ydZWI,5017
+connectonion/network/trust/fast_rules.py,sha256=JkYdM43yeXTHQR4kzTLCksEG2nqTxk0wQj2ixteXAe8,3095
+connectonion/network/trust/tools.py,sha256=fyqeF9x5Hm-3Rawv7fH74QQb-wkAEH8qNkTVozacnHI,11092
+connectonion/network/trust/trust_agent.py,sha256=nmTP9a1pPFnE2Dp9wMh2X9YhHo5dWCRjgYnQTLCFHpQ,12888
 connectonion/prompt_files/__init__.py,sha256=qqcEtnI8KSpcH7u5MvjXSZsNFWPpksFBQP9t_72GSms,527
 connectonion/prompt_files/analyze_contact.md,sha256=ZTCUhO8mM1mbYswfz4zjBxlv4r0DICLoYm0YaQBpiXk,2110
 connectonion/prompt_files/eval_expected.md,sha256=ZnVmyF9S9m49UzTKCMajJhfGaxUhUkDxDm75xDYNLPs,435
@@ -374,15 +376,17 @@ connectonion/docs/cli/create.md,sha256=dtnKrGa6egzL6AbcKtQBrBDz3r_QwJ_rLqHQ4cc4r
 connectonion/docs/cli/init.md,sha256=wUr97ZhauR8PHK3bS0Tt2unJaIJBs0m1MQN4BV5aPBk,10124
 connectonion/docs/concepts/agent.md,sha256=Zk53P8WetQhb1YMdrExMKjWQrJ2J1g4gQJVEdjPLM8A,26169
 connectonion/docs/concepts/events.md,sha256=AwVddkW7ZqkFWr1ie8Z5GfSUE1xzyCF3j_Y6ZbRnzOs,20912
+connectonion/docs/concepts/fast_rules.md,sha256=maBnYFPy6-3JvL1-2jhcjOGhsHWSqMhqqd_Nmio13ig,4307
 connectonion/docs/concepts/llm_do.md,sha256=1Ns_k77RAAGBRvz7Z9_5c4IsEgSUYx3_EthSewV9dvI,6759
 connectonion/docs/concepts/max_iterations.md,sha256=EUEMjQi2Lvv8Ab_maONIo3hM4_0SU1W7p22E87tN1uc,10782
 connectonion/docs/concepts/models.md,sha256=rohjOX_eT2cu1jsvQxIOpVDAvX6tinqHMCfgZCGt6zY,20113
+connectonion/docs/concepts/onboarding.md,sha256=uzOHTSIoeas-Cg4I31k2EFcFb1edadTLmZP48TRJDAU,8532
 connectonion/docs/concepts/plugins.md,sha256=13MjQF3QObY0Avn4lQg6-2ZarzBE3MN-n9Z-61Ng-zY,2784
 connectonion/docs/concepts/prompts.md,sha256=LXiyNSniGrD0PZeEkadmzR9Fc7qVR8hj01KZCIklSyU,3191
 connectonion/docs/concepts/session.md,sha256=7wPqsvm3DDNuV2yBg1LqdHe83ZCL5qR2julWc8-jCxQ,10573
 connectonion/docs/concepts/tools.md,sha256=2y8Bi31UqQHmDFf8dbhm7vYweWcPCl4ebYkicGFKJuU,14518
 connectonion/docs/concepts/transcribe.md,sha256=-1r2Gx5H2_3dBT5oozaCXocjdGCBlUqL2PVsoU5zT5w,3960
-connectonion/docs/concepts/trust.md,sha256=MXYXmWhvdP22eBbI6PoPoDapOsU5xB0GL7axTcGdIp0,6922
+connectonion/docs/concepts/trust.md,sha256=GDfaScBG57HFJSjHHEcq0KTYW5502KrnPm2lbqUHjbw,30083
 connectonion/docs/debug/README.md,sha256=dQvR0Csj-cyjE6c8KmYIRRJcUCVoc_0nswUTfB01q4o,549
 connectonion/docs/debug/auto_debug.md,sha256=MSD_T19Py0bmHzva-P1Zmfq1lRt9wUrVaM-3g4uEP0Q,26369
 connectonion/docs/debug/console.md,sha256=r_9D6lEE4sHGCD0Je8vF8Nqv2PefSDMrOuARp3zrAV0,4299
@@ -413,14 +417,15 @@ connectonion/docs/design-decisions/019-agent-lifecycle-design.md,sha256=91nCPejY
 connectonion/docs/design-decisions/020-trust-system-and-network-architecture.md,sha256=89D2dXMI8t_df6BuiwAYCdudrRdXrLuYhnx628a2l20,17328
 connectonion/docs/design-decisions/021-task-storage-jsonl-design.md,sha256=zROasQPcOc9SyiG7Jc5f30VMpyslLhV7Vva3EHvWbFw,12822
 connectonion/docs/design-decisions/022-raw-asgi-implementation.md,sha256=Mk6q1wlJP06WroEENUSc6KfFWsykr-KRF330MJCsims,7432
+connectonion/docs/design-decisions/023-trust-policy-system-design.md,sha256=GxCypScvKmJTfF2GwWRRPxDsuB99X9NIGDj_f4StyMA,12736
 connectonion/docs/integrations/README.md,sha256=B2VbNQlzfJ8pvypnQNKACrdJkBxfVJlxADq2VL7VOeI,298
 connectonion/docs/integrations/auth.md,sha256=ML9usJ1qcBeM1nUzntkcCSHW3ATZhV2nZpzwqW1Jj_0,10856
 connectonion/docs/integrations/google.md,sha256=Yv9GcmAtEQNPCmm4Png1DGE9pBt7ido5SpxF0HkQJwY,11473
 connectonion/docs/integrations/microsoft.md,sha256=tYwWmUeh68-HwD1qKpzVlps5IDkojVQyFir40H30koc,9883
-connectonion/docs/network/README.md,sha256=mpbqoPxet_3TR2Pxb5_OOu_jMePt0oT9a0KZMFmW5YE,525
-connectonion/docs/network/connect.md,sha256=EXF6qfIT_Mq_ZzwSAANkUahxp43JIo_enV6DWltri60,18546
+connectonion/docs/network/README.md,sha256=-3gjVfxw_4oEEakkjqnnK9IBwoR-_MW8gi4C01GR-U8,1222
+connectonion/docs/network/connect.md,sha256=vDR3ePd8t07voxKN6olGdEbEc3CVwwtDWBDimR9ZJk4,23416
 connectonion/docs/network/deploy.md,sha256=kqLhRhQoCKqx0RqoaJrTAOQ-j1DpfF8jt-8ibhCO3GU,2156
-connectonion/docs/network/host.md,sha256=frXU0TZLO0VWqgqXuJAqPpeqBxeVYtb_6Eqg757UZVU,28453
+connectonion/docs/network/host.md,sha256=0ysQ0AStvx_aBh8LQuZe3jWw_AnSawnIK0xH5PRQjVI,30578
 connectonion/docs/network/io.md,sha256=1Opb3tZ66nxJko548JWvhVPE8_LaIEd_I4c2ONusTZE,15438
 connectonion/docs/network/protocol/agent-relay-protocol.md,sha256=ccM7H39fjQYds-mpyRp2gVRbIk0QZcLRsIk_MKgh9xE,12961
 connectonion/docs/network/protocol/announce-message.md,sha256=dNYs3cm5tVK9u82HTEfZ4dhJDozSSdl1G5JleyDoj_M,3138
@@ -466,7 +471,7 @@ connectonion/docs/useful_tools/slash_command.md,sha256=B4jTn9Bck19rVdecZCUqMSUdc
 connectonion/docs/useful_tools/terminal.md,sha256=SeAt2BNN_91dVuxIHpFbT9V_i8XPTCR4-U2UX1_05RU,2041
 connectonion/docs/useful_tools/todo_list.md,sha256=4MGHUYYamYXV_NfYi179IvmKuAdxBW14nD1g4PrLjl4,5537
 connectonion/docs/useful_tools/web_fetch.md,sha256=uri7ZjhJ8rFgy3SNolzGMlXTHGEBCIUHWlwpXKWqEDw,2516
-connectonion-0.6.4.dist-info/METADATA,sha256=x8-IEs4md_WjbpnMM1q6sGv4AnO_0H6vPARWuGjq_To,22190
-connectonion-0.6.4.dist-info/WHEEL,sha256=WLgqFyCfm_KASv4WHyYy0P3pM_m7J5L9k2skdKLirC8,87
-connectonion-0.6.4.dist-info/entry_points.txt,sha256=XDB-kVN7Qgy4DmYTkjQB_O6hZeUND-SqmZbdoQPn6WA,90
-connectonion-0.6.4.dist-info/RECORD,,
+connectonion-0.6.5.dist-info/METADATA,sha256=n4XFUuDccaaE4LPK3UGOiB2aTyZ3_fj10R_Czoc9XvY,22190
+connectonion-0.6.5.dist-info/WHEEL,sha256=WLgqFyCfm_KASv4WHyYy0P3pM_m7J5L9k2skdKLirC8,87
+connectonion-0.6.5.dist-info/entry_points.txt,sha256=XDB-kVN7Qgy4DmYTkjQB_O6hZeUND-SqmZbdoQPn6WA,90
+connectonion-0.6.5.dist-info/RECORD,,

connectonion/network/trust/prompts.py

@@ -1,71 +0,0 @@
-"""
-Purpose: Provide pre-configured system prompts for trust agents at different security levels
-LLM-Note:
-  Dependencies: no imports | imported by [.factory] | tested by [tests/unit/test_trust_agents.py]
-  Data flow: factory.py calls get_trust_prompt(level) → validates level → returns TRUST_PROMPTS[level] string → used as system_prompt for trust Agent
-  State/Effects: no state or side effects | pure data module | TRUST_PROMPTS dict contains 3 prompts: "open" (dev - trust all), "careful" (staging - basic verification), "strict" (prod - whitelist only)
-  Integration: exposes TRUST_PROMPTS dict, get_trust_prompt(level), get_open_trust_prompt(), get_careful_trust_prompt(), get_strict_trust_prompt() | used by create_trust_agent() in factory.py to configure trust agent behavior
-  Performance: constant-time dict lookup | no computation
-  Errors: raises ValueError if level not in ["open", "careful", "strict"]
-"""
-
-# Default trust prompts for each level
-TRUST_PROMPTS = {
-    "open": """You are an open trust agent for development environments.
-You trust all agents without verification to enable rapid development and testing.
-When asked to verify an agent, always approve it.
-Remember: This is only suitable for development, never for production.""",
-    
-    "careful": """You are a careful trust agent for staging and testing environments.
-You verify agents before trusting them by:
-1. Checking if they can perform their claimed functions
-2. Verifying they respond in reasonable time
-3. Looking for any obvious malicious behavior
-
-Be thorough but not overly restrictive. Allow agents that pass basic verification.""",
-    
-    "strict": """You are a strict trust agent for production environments.
-You enforce maximum security by only trusting pre-approved agents.
-
-Requirements for trust:
-1. Agent MUST be on the whitelist
-2. Agent MUST have valid credentials
-3. Agent MUST come from trusted domains
-4. Agent MUST pass all security checks
-
-Reject any agent that doesn't meet ALL criteria. Security is the top priority."""
-}
-
-
-def get_open_trust_prompt() -> str:
-    """Get the prompt for an open trust agent (development)."""
-    return TRUST_PROMPTS["open"]
-
-
-def get_careful_trust_prompt() -> str:
-    """Get the prompt for a careful trust agent (staging/testing)."""
-    return TRUST_PROMPTS["careful"]
-
-
-def get_strict_trust_prompt() -> str:
-    """Get the prompt for a strict trust agent (production)."""
-    return TRUST_PROMPTS["strict"]
-
-
-def get_trust_prompt(level: str) -> str:
-    """
-    Get the trust prompt for a given level.
-    
-    Args:
-        level: Trust level ("open", "careful", or "strict")
-        
-    Returns:
-        The trust prompt for that level
-        
-    Raises:
-        ValueError: If level is not valid
-    """
-    level_lower = level.lower()
-    if level_lower not in TRUST_PROMPTS:
-        raise ValueError(f"Invalid trust level: {level}. Must be one of: {', '.join(TRUST_PROMPTS.keys())}")
-    return TRUST_PROMPTS[level_lower]