/**
 * @license
 * Copyright 2025 Vybestack LLC
 * SPDX-License-Identifier: Apache-2.0
 */
import { SecureStore } from './secure-store.js';
/** @pseudocode line 1 */
export declare const KEY_NAME_REGEX: RegExp;
/**
 * Validates a key name against the allowed pattern.
 * @throws {Error} if the name does not match KEY_NAME_REGEX
 *
 * @plan PLAN-20260211-SECURESTORE.P12
 * @pseudocode lines 3-9
 * @requirement R10.1, R10.2
 */
export declare function validateKeyName(name: string): void;
/**
 * @plan PLAN-20260211-SECURESTORE.P12
 * @pseudocode lines 11-65
 * @requirement R9.1
 */
export declare class ProviderKeyStorage {
    private readonly secureStore;
    /** @pseudocode lines 16-24 */
    constructor(options?: {
        secureStore?: SecureStore;
    });
    /** @pseudocode lines 26-39 */
    saveKey(name: string, apiKey: string): Promise<void>;
    /** @pseudocode lines 41-46 */
    getKey(name: string): Promise<string | null>;
    /** @pseudocode lines 48-53 */
    deleteKey(name: string): Promise<boolean>;
    /** @pseudocode lines 55-57 */
    listKeys(): Promise<string[]>;
    /** @pseudocode lines 59-64 */
    hasKey(name: string): Promise<boolean>;
}
/**
 * Returns the singleton ProviderKeyStorage instance for direct host access.
 *
 * @internal **DO NOT call directly in consumer code.**
 * Use `createProviderKeyStorage()` from `credential-store-factory.ts` instead.
 * This ensures proper environment detection (sandbox vs. direct mode)
 * and consistent behavior across the application.
 *
 * @pseudocode lines 70-74
 * @plan PLAN-20250214-CREDPROXY.P36
 */
export declare function getProviderKeyStorage(): ProviderKeyStorage;
/** @pseudocode lines 77-79 */
export declare function resetProviderKeyStorage(): void;