Package Exports
- @clawdstrike/adapter-core
Readme
@clawdstrike/adapter-core
Framework-agnostic adapter interfaces for Clawdstrike tool-boundary enforcement.
See Enforcement Tiers & Integration Contract for the integration contract (and what requires a sandbox/broker).
Installation
npm install @clawdstrike/adapter-coreUsage
import { BaseToolInterceptor, createSecurityContext } from "@clawdstrike/adapter-core";
// Create an engine for policy evaluation (implementation-specific).
// Use @clawdstrike/engine-local (shell out to `hush`) or
// @clawdstrike/engine-remote (HTTP calls to hushd daemon).
const engine = /* ... */;
const interceptor = new BaseToolInterceptor(engine, { blockOnViolation: true });
const ctx = createSecurityContext({ sessionId: "session-123" });
const preflight = await interceptor.beforeExecute("bash", { cmd: "echo hello" }, ctx);
if (!preflight.proceed) throw new Error("Blocked by policy");Generic tool runner wrapper
@clawdstrike/adapter-core can also wrap any (toolName, input, runId) => Promise<output>
dispatcher directly:
import { GenericToolBoundary, wrapGenericToolDispatcher } from '@clawdstrike/adapter-core';
// Use @clawdstrike/engine-local or @clawdstrike/engine-remote:
const engine = /* createStrikeCell({ policyRef: 'default' }) */;
const boundary = new GenericToolBoundary({ engine });
const dispatchTool = wrapGenericToolDispatcher(
boundary,
async (toolName, input, runId) => {
return { toolName, input, runId };
},
);
await dispatchTool('write_file', { path: './out.txt', content: 'hi' }, 'run-1');
console.log(boundary.getAuditEvents().length);