FlowGuard API - v1.2.0-tp.1
    Preparing search index...

    Module flowguard

    FlowGuard API

    Host-aware governance runtime for AI-assisted software delivery. FlowGuard enforces governed development workflows with hash-chained audit trails, policy-bound decision enforcement, and evidence-first compliance.

    OpenCode currently provides the strongest synchronous enforcement path through its plugin integration. Claude Code and Codex are supported through MCP, hooks, and native packaging with hook-gated, platform-limited guarantees.

    Entry Point Purpose
    @flowguard/core Core schemas, machine/policy APIs, audit/archive verification, logging
    @flowguard/core/integration Host integration surfaces, including OpenCode tool/plugin bindings
    @flowguard/core/integration/tools Individual tool definitions
    @flowguard/core/testing Test utilities (createTestContext)
    import { executeTicket, FlowGuardPolicy, REGULATED_POLICY } from '@flowguard/core';
    
    • solo — automatic approval, no human gates
    • team — human-gated at review points
    • team-ci — CI auto-approve, degrades to team without CI context
    • regulated — mandatory four-eyes, evidence completeness enforcement

    Fail-closed: ambiguity blocks, never guesses. Deterministic: same state + input = same result. Evidence-first: every phase produces verifiable artifacts. Policy-bound: every decision traced to a policy version.

    Public API for the FlowGuard runtime package.

    This barrel exports the stable public surface. Internal modules (adapters, individual collectors, machine topology, rail executors) are available via direct imports for tests and internal tooling.

    Consumer entry points:

    • @flowguard/core — this file (schemas, machine, policy, audit, archive, logging)
    • @flowguard/core/integration — Host integration surfaces, including OpenCode tool/plugin bindings
    • @flowguard/core/testing — Test utilities only

    Several exports, such as SessionState, are runtime Zod schemas. Use z.infer<typeof SessionState> for the corresponding TypeScript type.

    v3

    Classes

    MockTimestampAuthorityProvider
    MockTimestampVerifier
    PolicyConfigurationError
    ProfileRegistry
    BlockedReasonRegistry

    Interfaces

    EvidenceSlotStatus
    FourEyesStatus
    CompletenessSummary
    CompletenessReport
    EventVerification
    ChainVerification
    NtpCheckResult
    TimelineEntry
    SessionTimeline
    ComplianceCheck
    ComplianceSummary
    TimestampTokenFinding
    TimestampTokenVerificationResult
    TimestampAuthorityProvider
    TimestampVerifier
    TransitionDetail
    ToolCallDetail
    ErrorDetail
    LifecycleDetail
    ChainedAuditEvent
    AuditPolicy
    FlowGuardPolicy
    RepoSignals
    ProfileDetectionInput
    FlowGuardProfile
    BlockedReason
    FormattedBlock
    FlowGuardLogger
    LogEntry
    NextAction
    TransitionRecord
    RailOk
    RailBlocked
    RailContext
    IterationResult

    Type Aliases

    ArchiveFindingCode
    ArchiveFindingSeverity
    ArchiveFinding
    ArchiveManifest
    ArchiveVerification
    AuditFilter
    AuditEventKind
    AuditFormatVersion
    TypedDetail
    FlowGuardConfig
    LogLevel
    BlockedCategory
    LogSink
    Command
    EvalResult
    RailResult
    ConvergenceResult
    ArchitectureDecision
    ArchitectureDecision
    BindingInfo
    BindingInfo
    ErrorInfo
    ErrorInfo
    ActorInfo
    ImplEvidence
    ImplEvidence
    ImplReviewResult
    ImplReviewResult
    PlanEvidence
    PlanEvidence
    PlanRecord
    PlanRecord
    SelfReviewLoop
    SelfReviewLoop
    PolicySnapshot
    CheckId
    CheckId
    RevisionDelta
    RevisionDelta
    LoopVerdict
    LoopVerdict
    AdrStatus
    AdrStatus
    ReviewDecision
    ReviewDecision
    TicketEvidence
    TicketEvidence
    TimestampAssuranceStatus
    TimestampAssuranceStatus
    TimestampSource
    TimestampSource
    NtpEvidence
    TsaVerificationStatus
    TsaVerificationStatus
    TsaEvidence
    TimestampEvidence
    TimestampEvidence
    TimestampAssuranceMode
    TimestampAssuranceMode
    ValidationResult
    ValidationResult
    Phase
    Event
    Transition
    SessionState

    Variables

    ARCHIVE_MANIFEST_SCHEMA_VERSION
    ArchiveFindingCodeSchema
    ArchiveFindingSchema
    ArchiveManifestSchema
    ArchiveVerificationSchema
    DEFAULT_TIMESTAMP_ASSURANCE
    MOCK_TSA_FIXTURE_TOKEN
    GENESIS_HASH
    FlowGuardConfigSchema
    DEFAULT_CONFIG
    SOLO_POLICY
    TEAM_POLICY
    REGULATED_POLICY
    baselineProfile
    javaProfile
    angularProfile
    typescriptProfile
    defaultProfileRegistry
    defaultReasonRegistry
    Command
    ACTION_CODES
    REQUIRED_ADR_SECTIONS
    ActorInfoSchema
    PolicySnapshotSchema
    Phase
    Event
    Transition
    SessionState

    Functions

    verifyArchive
    computeCanonicalEventDigest
    evaluateCompleteness
    verifyEvent
    verifyChain
    getLastChainHash
    checkNtpClock
    generateTimeline
    generateComplianceSummary
    resolveTimestampEvidence
    verifyTimestampTokensForEvents
    verifyTimestampMonotonicity
    verifyTsaMessageImprint
    verifyTimestampEvidencePresence
    getPolicyPreset
    policyModes
    createPolicySnapshot
    createLogger
    createNoopLogger
    isCommandAllowed
    evaluate
    resolveNextAction
    validateAdrSections