harn-stdlib 0.8.34

Embedded Harn standard library source catalog
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138

/**
 * std/oauth/redaction (OA-06) — OAuth token redaction.
 *
 * The Harn runtime ships with a catalog of high-confidence token
 * patterns (JWT, GitHub PAT classic + fine-grained, Slack `xox*`,
 * AWS `AKIA`, OpenAI `sk-`, Stripe `sk_live_`/`sk_test_`, GitLab
 * `glpat-`, npm `npm_`, and `Authorization: Bearer ...` headers).
 * Any of those that leak into a persisted transcript, an audit
 * receipt, an OTel span attribute, or a system reminder are
 * automatically replaced with `<redacted:<pattern>:<len>>` and an
 * `HARN-OAU-001` audit event is recorded for compliance review.
 *
 * The original token still flows to the underlying tool — redaction
 * is display-only.
 *
 * This module exposes the script-facing surface so callers can:
 *
 *   - inspect the default catalog,
 *   - register a custom pattern for in-house token shapes,
 *   - test whether a string would be redacted,
 *   - drain the per-thread audit ring for compliance reporting.
 *
 * ## Custom patterns
 *
 *     import { register_pattern } from "std/oauth/redaction"
 *     register_pattern("acme_api_key", "\\bACME-[A-Z0-9]{12}\\b")
 *
 * ## Inspection
 *
 *     import { default_patterns, custom_patterns, redact } from "std/oauth/redaction"
 *     let names = default_patterns()
 *     let display = redact("Bearer ghp_aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa")
 *
 * ## Audit
 *
 *     import { drain_audit } from "std/oauth/redaction"
 *     for entry in drain_audit() {
 *       // entry.code == "HARN-OAU-001"
 *       // entry.pattern, entry.match_count, entry.bytes_redacted
 *     }
 */
/**
 * Register a custom named redaction pattern on the current execution
 * thread. Subsequent persistence sinks (transcripts, audit receipts,
 * OTel spans, system reminders) will replace matches of the regex with
 * `<redacted:<name>:<len>>`.
 *
 * - `name` must be non-empty and is used as the placeholder identifier
 *   and the audit-event `pattern` field.
 * - `regex_source` is a Rust-regex source string. Anchoring with `\b`
 *   keeps matches from chewing unrelated identifiers.
 *
 * @effects: []
 * @allocation: heap
 * @errors: [invalid_argument]
 * @api_stability: experimental
 * @example: register_pattern("acme_api_key", "\\bACME-[A-Z0-9]{12}\\b")
 */
pub fn register_pattern(name, regex_source) {
  return __token_redaction_register_pattern(name, regex_source)
}

/**
 * Clear every custom pattern registered on the calling thread.
 * Default patterns are unaffected.
 *
 * @effects: []
 * @allocation: none
 * @errors: []
 * @api_stability: experimental
 * @example: clear_custom_patterns()
 */
pub fn clear_custom_patterns() {
  return __token_redaction_clear_custom_patterns()
}

/**
 * Apply the active redaction policy to a string and return the
 * scrubbed form. Convenient for tests; production sinks invoke the
 * policy automatically. Each pattern that matched is recorded in the
 * per-thread audit ring as an `HARN-OAU-001` entry.
 *
 * @effects: []
 * @allocation: heap
 * @errors: []
 * @api_stability: experimental
 * @example: redact("Authorization: Bearer abcdef1234567890")
 */
pub fn redact(text) {
  return __token_redaction_redact(text)
}

/**
 * Names of every default pattern in catalog order.
 *
 * @effects: []
 * @allocation: heap
 * @errors: []
 * @api_stability: stable
 * @example: default_patterns()
 */
pub fn default_patterns() {
  return __token_redaction_default_patterns()
}

/**
 * Names of every custom pattern installed on the current thread.
 *
 * @effects: []
 * @allocation: heap
 * @errors: []
 * @api_stability: experimental
 * @example: custom_patterns()
 */
pub fn custom_patterns() {
  return __token_redaction_custom_patterns()
}

/**
 * Drain every pending `HARN-OAU-001` audit entry recorded since the
 * last drain on the calling thread. Each entry is a dict with
 * `code`, `pattern`, `match_count`, and `bytes_redacted` fields.
 *
 * Audit entries are also forwarded to the live event-sink pipeline
 * (Stderr/Otel/etc.) and, when a multi-threaded Tokio runtime is
 * available, appended to the `audit.token_redaction` event-log
 * topic. The synchronous drain returned here is the authoritative
 * compliance contract — it works on every execution backend.
 *
 * @effects: []
 * @allocation: heap
 * @errors: []
 * @api_stability: experimental
 * @example: drain_audit()
 */
pub fn drain_audit() {
  return __token_redaction_drain_audit()
}