agent_control_specification_core 0.3.1-beta.0

Stateless Rust core for Agent Control Specification
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204

use crate::{Decision, EnforcementMode, InterventionPoint};
use std::collections::BTreeMap;

#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash)]
pub enum TelemetryEventType {
    Decision,
    AnnotatorDispatch,
    PolicyEvaluation,
    EvaluationTiming,
    /// AGT D2: the runtime emits this event in addition to `Decision`
    /// whenever the verdict is `Decision::Transform`. Wire name is
    /// `intervention_point.transformed` per AGT-EVIDENCE-1.0 §3.
    InterventionPointTransformed,
    AnnotatorFailed,
    PolicyFailed,
}

impl TelemetryEventType {
    pub fn as_str(self) -> &'static str {
        match self {
            Self::Decision => "decision",
            Self::AnnotatorDispatch => "annotator_dispatch",
            Self::PolicyEvaluation => "policy_evaluation",
            Self::EvaluationTiming => "evaluation_timing",
            Self::InterventionPointTransformed => "intervention_point.transformed",
            Self::AnnotatorFailed => "annotator_failed",
            Self::PolicyFailed => "policy_failed",
        }
    }
}

#[derive(Debug, Clone, PartialEq)]
pub struct TelemetryEvent {
    pub event_type: TelemetryEventType,
    pub intervention_point: InterventionPoint,
    pub decision: Option<Decision>,
    pub reason_code: Option<String>,
    pub error_class: Option<String>,
    pub policy_id: Option<String>,
    pub annotators: Vec<String>,
    pub enforcement_mode: Option<EnforcementMode>,
    pub duration_ms: Option<f64>,
    /// AGT D2 / AGT-EVIDENCE-1.0 §3 verbatim `artefact` string from the
    /// originating verdict's `evidence` payload. `None` when the verdict
    /// carried no evidence.
    pub evidence_artefact: Option<String>,
    /// AGT D2 / AGT-EVIDENCE-1.0 §3 sorted keys (not values) of the
    /// originating verdict's `evidence.verification_pointers` map. Empty
    /// when no pointers were attached. The URL values are intentionally
    /// omitted to keep telemetry cardinality bounded; auditors recover
    /// them from the audit record.
    pub evidence_verification_pointer_keys: Vec<String>,
    pub action_identity: Option<String>,
    pub metadata: BTreeMap<String, String>,
}

impl TelemetryEvent {
    pub fn new(event_type: TelemetryEventType, intervention_point: InterventionPoint) -> Self {
        Self {
            event_type,
            intervention_point,
            decision: None,
            reason_code: None,
            error_class: None,
            policy_id: None,
            annotators: Vec::new(),
            enforcement_mode: None,
            duration_ms: None,
            evidence_artefact: None,
            evidence_verification_pointer_keys: Vec::new(),
            action_identity: None,
            metadata: BTreeMap::new(),
        }
    }

    pub fn with_decision(mut self, decision: Decision) -> Self {
        self.decision = Some(decision);
        self
    }

    pub fn with_reason_code(mut self, reason_code: impl Into<String>) -> Self {
        self.reason_code = Some(reason_code.into());
        self
    }

    pub fn with_optional_reason_code(mut self, reason_code: Option<&str>) -> Self {
        self.reason_code = reason_code.map(str::to_string);
        self
    }

    pub fn with_error_class(mut self, error_class: impl Into<String>) -> Self {
        self.error_class = Some(error_class.into());
        self
    }

    pub fn with_optional_error_class(mut self, error_class: Option<&str>) -> Self {
        self.error_class = error_class.map(str::to_string);
        self
    }

    pub fn with_policy_id(mut self, policy_id: impl Into<String>) -> Self {
        self.policy_id = Some(policy_id.into());
        self
    }

    pub fn with_optional_policy_id(mut self, policy_id: Option<&str>) -> Self {
        self.policy_id = policy_id.map(str::to_string);
        self
    }

    pub fn with_annotator(mut self, annotator: impl Into<String>) -> Self {
        self.annotators.push(annotator.into());
        self
    }

    pub fn with_annotators(mut self, annotators: Vec<String>) -> Self {
        self.annotators = annotators;
        self
    }

    pub fn with_enforcement_mode(mut self, mode: EnforcementMode) -> Self {
        self.enforcement_mode = Some(mode);
        self
    }

    pub fn with_duration_ms(mut self, duration_ms: f64) -> Self {
        self.duration_ms = Some(duration_ms);
        self
    }

    pub fn with_action_identity(mut self, action_identity: impl Into<String>) -> Self {
        self.action_identity = Some(action_identity.into());
        self
    }

    pub fn with_optional_action_identity(mut self, action_identity: Option<&str>) -> Self {
        self.action_identity = action_identity.map(str::to_string);
        self
    }

    pub fn with_metadata(mut self, key: &str, value: impl Into<String>) -> Self {
        self.metadata.insert(key.to_string(), value.into());
        self
    }

    /// Attach AGT D2 / AGT-EVIDENCE-1.0 §3 evidence fields from the
    /// originating verdict. `artefact` is forwarded verbatim; the pointer
    /// map is reduced to its sorted keys so the URL values never reach
    /// telemetry sinks.
    pub fn with_evidence(mut self, artefact: Option<&str>, pointer_keys: Vec<String>) -> Self {
        self.evidence_artefact = artefact.map(str::to_string);
        self.evidence_verification_pointer_keys = pointer_keys;
        self
    }
}

pub trait TelemetrySink: Send + Sync {
    fn emit(&self, event: TelemetryEvent);

    fn shutdown(&self) {}
}

#[derive(Debug, Default)]
pub struct NoopTelemetrySink;

impl TelemetrySink for NoopTelemetrySink {
    fn emit(&self, _event: TelemetryEvent) {}
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn evidence_metadata_carries_artefact_and_sorted_keys() {
        let event = TelemetryEvent::new(TelemetryEventType::Decision, InterventionPoint::Input)
            .with_evidence(
                Some("sha256:abcd"),
                vec!["issuer_pubkey".to_string(), "policy_registry".to_string()],
            );
        assert_eq!(event.evidence_artefact.as_deref(), Some("sha256:abcd"));
        assert_eq!(
            event.evidence_verification_pointer_keys,
            vec!["issuer_pubkey", "policy_registry"]
        );
    }

    #[test]
    fn evidence_metadata_is_clean_when_no_evidence_attached() {
        let event = TelemetryEvent::new(TelemetryEventType::Decision, InterventionPoint::Input);
        assert!(event.evidence_artefact.is_none());
        assert!(event.evidence_verification_pointer_keys.is_empty());
    }

    #[test]
    fn intervention_point_transformed_event_uses_spec_wire_name() {
        // AGT D2 wire-name contract per AGT-EVIDENCE-1.0 §3.
        let event = TelemetryEvent::new(
            TelemetryEventType::InterventionPointTransformed,
            InterventionPoint::Output,
        );
        assert_eq!(event.event_type.as_str(), "intervention_point.transformed");
    }
}