PyPI - getstack - Versions diffs - 0.4.0__tar.gz → 0.5.0__tar.gz - Mend

getstack 0.4.0tar.gz → 0.5.0tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (28) hide show

{getstack-0.4.0 → getstack-0.5.0}/.gitignore RENAMED Viewed

@@ -9,9 +9,15 @@ __pycache__/
 .env
 .env.*
 *.env
-.npmrc
 scripts/.env.cto
+# Repo .npmrc files carry supply-chain policy (minimum-release-age,
+# onlyBuiltDependencies hints, auto-install-peers) and MUST be tracked
+# so CI + Docker + every developer inherits the same gate. Block only
+# user-local override files that conventionally carry auth tokens.
+.npmrc.local
+~/.npmrc
 # Strategy docs (not sensitive, but private)
 stack-claude-code-spec-v3.md
 stack-gtm-distribution.md

{getstack-0.4.0 → getstack-0.5.0}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: getstack
-Version: 0.4.0
+Version: 0.5.0
 Summary: Python SDK for STACK — trust infrastructure for AI agents
 Project-URL: Homepage, https://getstack.run
 Project-URL: Documentation, https://getstack.run/docs/sdk

{getstack-0.4.0 → getstack-0.5.0}/pyproject.toml RENAMED Viewed

@@ -4,7 +4,7 @@ build-backend = "hatchling.build"
 [project]
 name = "getstack"
-version = "0.4.0"
+version = "0.5.0"
 description = "Python SDK for STACK — trust infrastructure for AI agents"
 readme = "README.md"
 license = "MIT"

{getstack-0.4.0 → getstack-0.5.0}/src/getstack/__init__.py RENAMED Viewed

@@ -51,6 +51,7 @@ from .scan import ScanService
 from .security_events import SecurityEventService as SecurityEventSvc
 from .skills import SkillService
 from .identity import IdentityService
+from .intents import IntentsService
 from .types import (
     Agent,
     Passport,
@@ -214,6 +215,7 @@ class Stack:
         self.security_events = SecurityEventSvc(self._client)
         self.skills = SkillService(self._client)
         self.identity = IdentityService(self._client)
+        self.intents = IntentsService(self._client)
     @classmethod
     def from_session(cls, session_token: str, **kwargs) -> Stack:

getstack-0.5.0/src/getstack/intents.py ADDED Viewed

@@ -0,0 +1,196 @@
+"""Intent simulation + pre-execution approval gate.
+Phase 2.5a Macro 2 Sub-chunks 2.1 + 2.2.
+  simulate()    Dry-run a candidate IntentClaim against a passport.
+                Returns a signed simulation result.
+  submit()      Register the Intent + run simulation + persist a
+                pending intent_approvals row. Returns an approval id;
+                operators decide via approve() / reject().
+  submit_and_wait()
+                Submit then poll until the approval reaches a terminal
+                state or the timeout elapses.
+  list_pending()
+                Operator-scope queue of pending approvals.
+  approve() / reject()
+                Operator transitions a pending row to approved or
+                rejected. Rejection auto-revokes the passport;
+                block_future=True additionally suspends the agent.
+"""
+from __future__ import annotations
+import time
+from typing import Any
+from .client import HttpClient
+class IntentsService:
+    def __init__(self, client: HttpClient):
+        self._client = client
+    # ─── 2.1 — simulate ─────────────────────────────────────────────
+    def simulate(
+        self,
+        intent: dict[str, Any],
+        passport_token: str,
+        *,
+        intent_claim_ref: str | None = None,
+        persist: bool | None = None,
+    ) -> dict[str, Any]:
+        """Dry-run an Intent. No approval row created.
+        Args:
+            intent: IntentClaim payload (type, intent_type, agent_id,
+                named_intent, target, action, parameters, estimated_cost,
+                accountability, reason, requires, user_subject,
+                mission_ref, submitted_at).
+            passport_token: Passport JWT to simulate against.
+            intent_claim_ref: Optional pc_* claim id to link this
+                simulation to a pre-registered Intent.
+            persist: When False, skips writing the simulation claim.
+                Default True.
+        Returns:
+            Dict with allowed, denial_reasons, simulated_cost,
+            predicted_detector_fires, simulated_at, claim_id?,
+            diagnostics.
+        """
+        body: dict[str, Any] = {"intent": intent}
+        if intent_claim_ref is not None:
+            body["intent_claim_ref"] = intent_claim_ref
+        if persist is not None:
+            body["persist"] = persist
+        return self._client.request(
+            "POST",
+            "/v1/intents/simulate",
+            json=body,
+            extra_headers={"X-Passport-Token": passport_token},
+        )
+    # ─── 2.2 — submit / approval flow ───────────────────────────────
+    def submit(
+        self,
+        intent: dict[str, Any],
+        passport_token: str,
+        *,
+        expires_in_seconds: int | None = None,
+        skip_simulation: bool = False,
+    ) -> dict[str, Any]:
+        """Submit an Intent for pre-execution operator approval.
+        Returns:
+            Dict with approval_id, intent_claim_id, simulated_claim_id?,
+            status='pending', expires_at, simulation? (when not skipped).
+        """
+        body: dict[str, Any] = {"intent": intent}
+        if expires_in_seconds is not None:
+            body["expires_in_seconds"] = expires_in_seconds
+        if skip_simulation:
+            body["skip_simulation"] = True
+        return self._client.request(
+            "POST",
+            "/v1/intents/submit",
+            json=body,
+            extra_headers={"X-Passport-Token": passport_token},
+        )
+    def submit_and_wait(
+        self,
+        intent: dict[str, Any],
+        passport_token: str,
+        *,
+        expires_in_seconds: int | None = None,
+        skip_simulation: bool = False,
+        timeout_seconds: float = 60.0,
+        poll_interval_seconds: float = 1.0,
+    ) -> dict[str, Any]:
+        """Submit then poll the pending list until the row leaves
+        'pending' or the timeout elapses.
+        Returns:
+            Dict with keys 'initial' (the submit response),
+            'final' (the last known row state), and 'timed_out' (bool).
+            When the row disappears from the pending list before timeout,
+            it has been decided; 'timed_out' is False.
+        """
+        initial = self.submit(
+            intent,
+            passport_token,
+            expires_in_seconds=expires_in_seconds,
+            skip_simulation=skip_simulation,
+        )
+        approval_id = initial["approval_id"]
+        deadline = time.monotonic() + timeout_seconds
+        last_row: dict[str, Any] | None = None
+        while time.monotonic() < deadline:
+            response = self.list_pending()
+            items = response.get("items", [])
+            match = next((r for r in items if r.get("id") == approval_id), None)
+            if match is None:
+                # Row left the pending queue → terminal state.
+                final = last_row or {"id": approval_id, "status": "approved"}
+                return {"initial": initial, "final": final, "timed_out": False}
+            last_row = match
+            time.sleep(poll_interval_seconds)
+        return {
+            "initial": initial,
+            "final": last_row or {"id": approval_id, "status": "pending"},
+            "timed_out": True,
+        }
+    def list_pending(
+        self,
+        *,
+        page: int | None = None,
+        limit: int | None = None,
+    ) -> dict[str, Any]:
+        """List pending approvals scoped to the calling operator."""
+        params: dict[str, Any] = {}
+        if page is not None:
+            params["page"] = page
+        if limit is not None:
+            params["limit"] = limit
+        return self._client.request("GET", "/v1/intents/pending", params=params or None)
+    def approve(
+        self,
+        approval_id: str,
+        *,
+        notes: str | None = None,
+    ) -> dict[str, Any]:
+        """Transition a pending approval → approved."""
+        body: dict[str, Any] = {}
+        if notes is not None:
+            body["notes"] = notes
+        return self._client.request(
+            "POST",
+            f"/v1/intents/{approval_id}/approve",
+            json=body,
+        )
+    def reject(
+        self,
+        approval_id: str,
+        *,
+        notes: str | None = None,
+        block_future: bool = False,
+    ) -> dict[str, Any]:
+        """Transition a pending approval → rejected.
+        Auto-revokes the passport. block_future=True additionally
+        suspends the agent so subsequent passports cannot be issued.
+        """
+        body: dict[str, Any] = {}
+        if notes is not None:
+            body["notes"] = notes
+        if block_future:
+            body["block_future"] = True
+        return self._client.request(
+            "POST",
+            f"/v1/intents/{approval_id}/reject",
+            json=body,
+        )