enact-core 0.0.2

Core agent runtime for Enact - Graph-Native AI agents
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173

//! Protected Event Emitter
//!
//! Wraps EventEmitter with output processor pipeline to ensure all events
//! pass through protection before storage/streaming.
//!
//! @see docs/TECHNICAL/17-GUARDRAILS-PROTECTION.md

use super::protection::{OutputProcessor, ProcessorPipeline, ProtectionContext};
use super::{EventEmitter, StreamEvent, StreamMode};
use std::sync::Arc;

/// Protected Event Emitter
///
/// Wraps EventEmitter with output processor pipeline.
/// All events pass through protection before being added to the stream.
///
/// ## Usage
///
/// ```ignore
/// use enact_core::streaming::{ProtectedEventEmitter, PiiProtectionProcessor};
///
/// let emitter = ProtectedEventEmitter::new()
///     .with_processor(Arc::new(PiiProtectionProcessor::new()))
///     .with_context(ProtectionContext::for_stream());
/// ```
pub struct ProtectedEventEmitter {
    inner: EventEmitter,
    pipeline: ProcessorPipeline,
    context: ProtectionContext,
}

impl ProtectedEventEmitter {
    /// Create a new protected event emitter
    pub fn new() -> Self {
        Self {
            inner: EventEmitter::new(),
            pipeline: ProcessorPipeline::new(),
            context: ProtectionContext::for_stream(),
        }
    }

    /// Create with a specific stream mode
    pub fn with_mode(mode: StreamMode) -> Self {
        Self {
            inner: EventEmitter::with_mode(mode),
            pipeline: ProcessorPipeline::new(),
            context: ProtectionContext::for_stream(),
        }
    }

    /// Add a processor to the pipeline
    pub fn with_processor(mut self, processor: Arc<dyn OutputProcessor>) -> Self {
        self.pipeline = self.pipeline.add(processor);
        self
    }

    /// Set the protection context
    pub fn with_context(mut self, context: ProtectionContext) -> Self {
        self.context = context;
        self
    }

    /// Set the protection context (mutable)
    pub fn set_context(&mut self, context: ProtectionContext) {
        self.context = context;
    }

    /// Get the protection context
    pub fn context(&self) -> &ProtectionContext {
        &self.context
    }

    /// Emit an event (runs through protection pipeline)
    ///
    /// This is async because processors may need async operations
    pub async fn emit(&self, event: StreamEvent) -> anyhow::Result<()> {
        if self.pipeline.is_empty() {
            // No processors, emit directly
            self.inner.emit(event);
            return Ok(());
        }

        // Run through protection pipeline
        let processed = self.pipeline.process(event, &self.context).await?;
        self.inner.emit(processed.event);
        Ok(())
    }

    /// Emit an event synchronously (bypasses protection pipeline)
    ///
    /// Use only for events that are guaranteed safe (control events, etc.)
    pub fn emit_unprotected(&self, event: StreamEvent) {
        self.inner.emit(event);
    }

    /// Emit an event unconditionally (ignores mode, runs through protection)
    pub async fn emit_force(&self, event: StreamEvent) -> anyhow::Result<()> {
        if self.pipeline.is_empty() {
            self.inner.emit_force(event);
            return Ok(());
        }

        let processed = self.pipeline.process(event, &self.context).await?;
        self.inner.emit_force(processed.event);
        Ok(())
    }

    /// Get all collected events
    pub fn drain(&self) -> Vec<StreamEvent> {
        self.inner.drain()
    }

    /// Get the current stream mode
    pub fn mode(&self) -> StreamMode {
        self.inner.mode()
    }

    /// Get reference to inner emitter (for compatibility)
    pub fn inner(&self) -> &EventEmitter {
        &self.inner
    }
}

impl Default for ProtectedEventEmitter {
    fn default() -> Self {
        Self::new()
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::kernel::ExecutionId;

    #[tokio::test]
    async fn test_protected_emitter_no_processors() {
        let emitter = ProtectedEventEmitter::new();
        let exec_id = ExecutionId::new();

        emitter
            .emit(StreamEvent::execution_start(&exec_id))
            .await
            .unwrap();

        let events = emitter.drain();
        assert_eq!(events.len(), 1);
    }

    #[tokio::test]
    async fn test_protected_emitter_emit_unprotected() {
        let emitter = ProtectedEventEmitter::new();
        let exec_id = ExecutionId::new();

        // Emit synchronously
        emitter.emit_unprotected(StreamEvent::execution_start(&exec_id));

        let events = emitter.drain();
        assert_eq!(events.len(), 1);
    }

    #[tokio::test]
    async fn test_protected_emitter_context() {
        let emitter = ProtectedEventEmitter::new().with_context(ProtectionContext::for_storage());

        assert!(emitter.context().destination.requires_encryption());
    }

    #[tokio::test]
    async fn test_protected_emitter_mode() {
        let emitter = ProtectedEventEmitter::with_mode(StreamMode::Summary);
        assert_eq!(emitter.mode(), StreamMode::Summary);
    }
}