@aionlabsai/aion 0.2.0

package/dist/prompts/scanner-domains-infra.d.ts

@@ -0,0 +1,48 @@
+export interface DomainConfig {
+    title: string;
+    grepPatterns: string[];
+    instructions: string;
+}
+export declare const INFRA_DOMAIN_CONFIG: {
+    infrastructure: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    observability: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    resilience: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    data: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    dependencies: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    compliance: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    multitenancy: {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+    'prompt-audit': {
+        title: string;
+        grepPatterns: string[];
+        instructions: string;
+    };
+};
+//# sourceMappingURL=scanner-domains-infra.d.ts.map

package/dist/prompts/scanner-domains-infra.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner-domains-infra.d.ts","sourceRoot":"","sources":["../../src/prompts/scanner-domains-infra.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,YAAY;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA2I/B,CAAC"}

package/dist/prompts/scanner-domains-infra.js

@@ -0,0 +1,141 @@
+export const INFRA_DOMAIN_CONFIG = {
+    infrastructure: {
+        title: 'Infrastructure Scanner',
+        grepPatterns: [
+            'image:', 'resources:', 'limits:', 'requests:', 'securityContext:',
+            'runAsRoot', 'runAsUser', 'privileged:', 'readOnlyRootFilesystem:',
+            'livenessProbe', 'readinessProbe', 'startupProbe',
+            'latest', 'FROM ', 'RUN apt', 'RUN pip', 'ADD ',
+            'replicas:', 'strategy:', 'PodDisruptionBudget', 'NetworkPolicy',
+        ],
+        instructions: `Use Bash and Grep to scan Kubernetes manifests, Dockerfiles, and docker-compose files:
+1. Find Dockerfiles: find . -name "Dockerfile*" | head -20
+2. Find K8s manifests: find . -name "*.yaml" -o -name "*.yml" | xargs grep -l "apiVersion:" 2>/dev/null | head -20
+3. Check for: containers running as root (no runAsNonRoot or runAsUser), missing resource limits/requests, image:latest tags, missing liveness/readiness probes, privileged:true, missing securityContext
+4. In Dockerfiles: ADD instead of COPY, apt-get without pinned versions, missing .dockerignore reference, root USER
+5. docker-compose: find . -name "docker-compose*.yml" | head -5 — check for exposed ports, missing healthchecks, host volume mounts
+Read only the relevant sections (offset/limit). Report file+line for each finding.`,
+    },
+    observability: {
+        title: 'Observability Scanner',
+        grepPatterns: [
+            'print(', 'console.log', 'logger.', 'logging.',
+            'traceid', 'trace_id', 'request_id', 'opentelemetry', 'jaeger',
+            '/health', '/ready', '/live', '/metrics',
+            'prometheus', 'datadog', 'sentry',
+            'except:', 'catch (', 'catch{',
+        ],
+        instructions: `Use Grep and Bash to find observability gaps:
+1. Unstructured logging: grep -rn "print(\\|console.log\\|fmt.Print" --include="*.py" --include="*.ts" --include="*.go" . | grep -v "test\\|spec" | head -30 — log statements without structured fields (no level, no trace_id, no service)
+2. Missing health endpoints: grep -rn "/health\\|/ready\\|/live\\|/ping" --include="*.py" --include="*.ts" . | head -20 — if none found, report missing
+3. Missing metrics: grep -rn "prometheus\\|metrics\\|gauge\\|counter\\|histogram" --include="*.py" --include="*.ts" . | head -10
+4. Exception swallowing without logging: grep -rn "except:\\|catch (" --include="*.py" --include="*.ts" . | head -20 — then Read those sections to confirm no log statement inside
+5. No trace context propagation: grep -rn "trace_id\\|traceparent\\|X-Request-ID" --include="*.py" --include="*.ts" . | head -10
+Report file+line for each confirmed gap.`,
+    },
+    resilience: {
+        title: 'Resilience Scanner',
+        grepPatterns: [
+            'requests.get(', 'requests.post(', 'fetch(', 'axios.',
+            'timeout', 'retry', 'backoff', 'circuit',
+            'sleep(', 'time.sleep(', 'setTimeout(',
+            'connect(', 'pool', 'max_connections',
+            'signal.signal', 'SIGTERM', 'graceful',
+        ],
+        instructions: `Use Grep and Bash to find resilience gaps:
+1. HTTP calls without timeout: grep -rn "requests.get(\\|requests.post(\\|fetch(\\|axios." --include="*.py" --include="*.ts" . | head -30 — then Read those sections to check for timeout parameter
+2. No retry logic: grep -rn "def.*retry\\|backoff\\|tenacity\\|retry(" --include="*.py" . | head -10 — if absent on external calls, report missing
+3. No circuit breaker: grep -rn "circuit\\|hystrix\\|breaker\\|resilience4j" --include="*.py" --include="*.ts" . | head -5
+4. Missing SIGTERM handler: grep -rn "SIGTERM\\|signal.signal\\|graceful" --include="*.py" --include="*.ts" . | head -10
+5. Database connection pool not configured: grep -rn "create_engine\\|pool_size\\|max_overflow\\|pool=" --include="*.py" . | head -10
+6. Unbounded queue/task submission: grep -rn "ThreadPoolExecutor\\|asyncio.create_task\\|celery" --include="*.py" . | head -10 — check for missing max_workers or queue size limits
+Report file+line for each gap confirmed by reading the section.`,
+    },
+    data: {
+        title: 'Data Layer Scanner',
+        grepPatterns: [
+            'for ', 'forEach(', '.all()', 'SELECT', 'query(',
+            'paginate', 'limit', 'offset', 'LIMIT',
+            'migrate', 'revision', 'alembic', 'flyway',
+            'INDEX', 'CREATE TABLE', 'ALTER TABLE',
+            'BEGIN', 'COMMIT', 'transaction', 'session.',
+        ],
+        instructions: `Use Grep and Bash to find data layer issues:
+1. N+1 queries: grep -rn "for.*in.*:$\\|forEach(" --include="*.py" --include="*.ts" . | head -30 — then Read those sections to check if there's a DB call inside the loop
+2. Missing pagination: grep -rn "\.all()\\|\\.find({})" --include="*.py" --include="*.ts" . | head -20 — list endpoints returning all rows without limit
+3. Missing migrations tool: find . -name "alembic.ini" -o -name "flyway.conf" -o -name "liquibase*" | head -5 — if absent, check for raw SQL schema creation
+4. Indexes on foreign keys: grep -rn "ForeignKey\\|REFERENCES\\|foreign_key" --include="*.py" . | head -20 — cross-check with index definitions
+5. Transaction boundaries: grep -rn "session.commit()\\|db.commit()\\|transaction" --include="*.py" . | head -20 — operations that should be atomic but aren't in a transaction
+6. Distributed transaction without saga: grep -rn "requests.post\\|httpx.post" --include="*.py" . | head -10 — external calls inside a transaction block
+Report file+line for each confirmed issue.`,
+    },
+    dependencies: {
+        title: 'Dependencies Scanner',
+        grepPatterns: [
+            'requirements.txt', 'package.json', 'Pipfile', 'poetry.lock',
+            'import ', 'from ', 'require(',
+            'password', 'secret', 'api_key', 'token', 'private_key',
+            'CORS', 'allow_origins', 'cors(',
+            '@app.route', 'app.get(', 'app.post(',
+        ],
+        instructions: `Use Bash and Grep to find dependency and supply chain issues:
+1. Unpinned dependencies: cat requirements.txt 2>/dev/null | grep -v "==" | grep -v "^#" | head -20; cat package.json 2>/dev/null | python3 -c "import sys,json; d=json.load(sys.stdin); [print(k,v) for k,v in {**d.get('dependencies',{}),**d.get('devDependencies',{})}.items() if '^' in str(v) or '~' in str(v) or '*' in str(v)]" 2>/dev/null | head -20
+2. Secrets in source: grep -rn "password\s*=\s*['\"]\\|api_key\s*=\s*['\"]\\|secret\s*=\s*['\"]" --include="*.py" --include="*.ts" --include="*.env" . | grep -v "test\\|example\\|sample" | head -20
+3. CORS misconfigured: grep -rn "allow_origins\\|CORS\\|cors(" --include="*.py" --include="*.ts" . | head -20 — check for wildcard "*"
+4. Rate limiting on auth endpoints: grep -rn "login\\|auth\\|password\\|token" --include="*.py" . | grep "route\\|endpoint\\|@app" | head -10 — then check for rate_limit decorator/middleware nearby
+5. Dependency confusion: find . -name "requirements*.txt" -o -name "package*.json" | xargs grep -l "internal\\|private\\|corp" 2>/dev/null | head -5
+Report file+line for each finding.`,
+    },
+    compliance: {
+        title: 'Compliance Scanner (LGPD/GDPR)',
+        grepPatterns: [
+            'email', 'cpf', 'cnpj', 'phone', 'telefone', 'nome', 'name',
+            'logger', 'logging', 'print(', 'console.log',
+            'password', 'senha', 'token',
+            'delete', 'DELETE', 'soft_delete', 'is_deleted',
+            'created_at', 'expires_at', 'retention',
+        ],
+        instructions: `Use Grep to find LGPD/GDPR compliance gaps:
+1. PII in logs: grep -rn "logger.*email\\|logger.*cpf\\|logger.*phone\\|print.*user\\|log.*password" --include="*.py" --include="*.ts" . | grep -v "test\\|spec" | head -30
+2. PII in error responses: grep -rn "return.*email\\|jsonify.*cpf\\|res.json.*phone" --include="*.py" --include="*.ts" . | head -20 — error handlers returning personal data
+3. No soft delete for user data: grep -rn "DELETE FROM.*user\\|\.delete().*user\\|User\.delete" --include="*.py" --include="*.ts" . | head -10 — hard deletes without audit trail
+4. Missing audit trail: grep -rn "def delete\\|def update\\|def create" --include="*.py" . | head -20 — then Read those sections to check for audit log call
+5. Data retention not enforced: grep -rn "expires_at\\|retention\\|purge\\|cleanup" --include="*.py" . | head -10 — if absent, report missing retention policy
+6. Sensitive data in GET params: grep -rn "request.args.get.*token\\|request.args.get.*password\\|query.*secret" --include="*.py" . | head -10
+Report file+line for each confirmed issue.`,
+    },
+    multitenancy: {
+        title: 'Multi-tenancy Scanner',
+        grepPatterns: [
+            'tenant_id', 'tenant', 'organization_id', 'org_id',
+            'SELECT', 'WHERE', 'filter(', 'query(',
+            'cache', 'redis', 'memcache', 'get(', 'set(',
+            'request.user', 'current_user', 'g.user',
+        ],
+        instructions: `Use Grep to find multi-tenancy isolation gaps:
+1. Queries without tenant filter: grep -rn "\.query(\\|\.filter(\\|SELECT" --include="*.py" . | head -40 — then Read those sections to check if tenant_id/organization_id is in the filter
+2. Cache keys without tenant prefix: grep -rn "cache.get(\\|redis.get(\\|cache.set(" --include="*.py" --include="*.ts" . | head -20 — check if key includes tenant_id
+3. File paths without tenant isolation: grep -rn "open(\\|os.path\\|upload" --include="*.py" . | head -20 — check if path includes tenant identifier
+4. Background jobs without tenant context: grep -rn "\.delay(\\|\.apply_async(\\|celery" --include="*.py" . | head -10 — tasks that process data without tenant scoping
+5. Admin endpoints without tenant check: grep -rn "@admin\\|is_admin\\|role.*admin" --include="*.py" . | head -10 — verify tenant boundary in admin logic
+Report file+line for each gap confirmed by reading the section.`,
+    },
+    'prompt-audit': {
+        title: 'Prompt Audit Scanner (AI/LLM)',
+        grepPatterns: [
+            'openai', 'anthropic', 'langchain', 'ChatCompletion', 'messages=',
+            'system_prompt', 'user_prompt', 'prompt =', 'f"""', 'f"',
+            'model=', 'gpt-', 'claude-', 'temperature=',
+        ],
+        instructions: `Use Grep and Read to find LLM/prompt quality issues:
+1. Prompt injection risks: grep -rn "f\\".*{.*request\\|f\\".*{.*user\\|format.*user_input" --include="*.py" --include="*.ts" . | head -20 — user input directly concatenated into prompts
+2. Hardcoded model names: grep -rn "gpt-4\\|gpt-3\\|claude-2\\|claude-instant" --include="*.py" --include="*.ts" . | head -20 — model names that will become stale
+3. Missing system prompt: grep -rn "messages=\\[{.*role.*user" --include="*.py" . | head -20 — calls with only user role, no system guidance
+4. Very long prompts (>2000 chars): grep -rn '"""' --include="*.py" . | head -20 — then Read those sections to check prompt length
+5. No error handling on LLM calls: grep -rn "\.chat\.completions\.create\\|client\.messages\.create" --include="*.py" --include="*.ts" . | head -20 — check if wrapped in try/except
+6. Duplicate prompts: grep -rn "system_prompt\\|SYSTEM_PROMPT" --include="*.py" --include="*.ts" . | head -20 — same prompt string in multiple files
+7. Tokens not limited: grep -rn "max_tokens\\|max_output_tokens" --include="*.py" --include="*.ts" . | head -10 — calls without token limits
+Report file+line for each confirmed issue.`,
+    },
+};
+//# sourceMappingURL=scanner-domains-infra.js.map

package/dist/prompts/scanner-domains-infra.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner-domains-infra.js","sourceRoot":"","sources":["../../src/prompts/scanner-domains-infra.ts"],"names":[],"mappings":"AAMA,MAAM,CAAC,MAAM,mBAAmB,GAAG;IACjC,cAAc,EAAE;QACd,KAAK,EAAE,wBAAwB;QAC/B,YAAY,EAAE;YACZ,QAAQ,EAAE,YAAY,EAAE,SAAS,EAAE,WAAW,EAAE,kBAAkB;YAClE,WAAW,EAAE,WAAW,EAAE,aAAa,EAAE,yBAAyB;YAClE,eAAe,EAAE,gBAAgB,EAAE,cAAc;YACjD,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM;YAC/C,WAAW,EAAE,WAAW,EAAE,qBAAqB,EAAE,eAAe;SACjE;QACD,YAAY,EAAE;;;;;;mFAMiE;KAChF;IACD,aAAa,EAAE;QACb,KAAK,EAAE,uBAAuB;QAC9B,YAAY,EAAE;YACZ,QAAQ,EAAE,aAAa,EAAE,SAAS,EAAE,UAAU;YAC9C,SAAS,EAAE,UAAU,EAAE,YAAY,EAAE,eAAe,EAAE,QAAQ;YAC9D,SAAS,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU;YACxC,YAAY,EAAE,SAAS,EAAE,QAAQ;YACjC,SAAS,EAAE,SAAS,EAAE,QAAQ;SAC/B;QACD,YAAY,EAAE;;;;;;yCAMuB;KACtC;IACD,UAAU,EAAE;QACV,KAAK,EAAE,oBAAoB;QAC3B,YAAY,EAAE;YACZ,eAAe,EAAE,gBAAgB,EAAE,QAAQ,EAAE,QAAQ;YACrD,SAAS,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;YACxC,QAAQ,EAAE,aAAa,EAAE,aAAa;YACtC,UAAU,EAAE,MAAM,EAAE,iBAAiB;YACrC,eAAe,EAAE,SAAS,EAAE,UAAU;SACvC;QACD,YAAY,EAAE;;;;;;;gEAO8C;KAC7D;IACD,IAAI,EAAE;QACJ,KAAK,EAAE,oBAAoB;QAC3B,YAAY,EAAE;YACZ,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,EAAE,QAAQ;YAChD,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,OAAO;YACtC,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ;YAC1C,OAAO,EAAE,cAAc,EAAE,aAAa;YACtC,OAAO,EAAE,QAAQ,EAAE,aAAa,EAAE,UAAU;SAC7C;QACD,YAAY,EAAE;;;;;;;2CAOyB;KACxC;IACD,YAAY,EAAE;QACZ,KAAK,EAAE,sBAAsB;QAC7B,YAAY,EAAE;YACZ,kBAAkB,EAAE,cAAc,EAAE,SAAS,EAAE,aAAa;YAC5D,SAAS,EAAE,OAAO,EAAE,UAAU;YAC9B,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,aAAa;YACvD,MAAM,EAAE,eAAe,EAAE,OAAO;YAChC,YAAY,EAAE,UAAU,EAAE,WAAW;SACtC;QACD,YAAY,EAAE;;;;;;mCAMiB;KAChC;IACD,UAAU,EAAE;QACV,KAAK,EAAE,gCAAgC;QACvC,YAAY,EAAE;YACZ,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM;YAC3D,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,aAAa;YAC5C,UAAU,EAAE,OAAO,EAAE,OAAO;YAC5B,QAAQ,EAAE,QAAQ,EAAE,aAAa,EAAE,YAAY;YAC/C,YAAY,EAAE,YAAY,EAAE,WAAW;SACxC;QACD,YAAY,EAAE;;;;;;;2CAOyB;KACxC;IACD,YAAY,EAAE;QACZ,KAAK,EAAE,uBAAuB;QAC9B,YAAY,EAAE;YACZ,WAAW,EAAE,QAAQ,EAAE,iBAAiB,EAAE,QAAQ;YAClD,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ;YACtC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM;YAC5C,cAAc,EAAE,cAAc,EAAE,QAAQ;SACzC;QACD,YAAY,EAAE;;;;;;gEAM8C;KAC7D;IACD,cAAc,EAAE;QACd,KAAK,EAAE,+BAA+B;QACtC,YAAY,EAAE;YACZ,QAAQ,EAAE,WAAW,EAAE,WAAW,EAAE,gBAAgB,EAAE,WAAW;YACjE,eAAe,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,EAAE,IAAI;YACxD,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,cAAc;SAC5C;QACD,YAAY,EAAE;;;;;;;;2CAQyB;KACxC;CACF,CAAC"}

package/dist/prompts/scanner.d.ts

@@ -0,0 +1,10 @@
+export type ScanDomain = 'security' | 'error-handling' | 'architecture' | 'testing' | 'performance' | 'bugs' | 'redundancy' | 'infrastructure' | 'observability' | 'resilience' | 'data' | 'dependencies' | 'compliance' | 'multitenancy' | 'prompt-audit';
+export declare const SCAN_DOMAINS: ScanDomain[];
+export type { DomainConfig } from './scanner-domains-infra.js';
+export interface ScannerContext {
+    repoSummary?: string;
+    depGraph?: string;
+    hotspotFiles?: string[];
+}
+export declare function buildScannerPrompt(domain: ScanDomain, scannerIndex: number, totalScanners: number, ctx?: ScannerContext): string;
+//# sourceMappingURL=scanner.d.ts.map

package/dist/prompts/scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner.d.ts","sourceRoot":"","sources":["../../src/prompts/scanner.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,UAAU,GAClB,UAAU,GACV,gBAAgB,GAChB,cAAc,GACd,SAAS,GACT,aAAa,GACb,MAAM,GACN,YAAY,GACZ,gBAAgB,GAChB,eAAe,GACf,YAAY,GACZ,MAAM,GACN,cAAc,GACd,YAAY,GACZ,cAAc,GACd,cAAc,CAAC;AAEnB,eAAO,MAAM,YAAY,EAAE,UAAU,EAgBpC,CAAC;AAEF,YAAY,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AA8H/D,MAAM,WAAW,cAAc;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;CACzB;AAED,wBAAgB,kBAAkB,CAAC,MAAM,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,EAAE,GAAG,CAAC,EAAE,cAAc,GAAG,MAAM,CA2ChI"}

package/dist/prompts/scanner.js

@@ -0,0 +1,185 @@
+export const SCAN_DOMAINS = [
+    'security',
+    'bugs',
+    'redundancy',
+    'error-handling',
+    'architecture',
+    'testing',
+    'performance',
+    'infrastructure',
+    'observability',
+    'resilience',
+    'data',
+    'dependencies',
+    'compliance',
+    'multitenancy',
+    'prompt-audit',
+];
+import { INFRA_DOMAIN_CONFIG } from './scanner-domains-infra.js';
+const DOMAIN_CONFIG = {
+    ...INFRA_DOMAIN_CONFIG,
+    bugs: {
+        title: 'Bug Scanner',
+        grepPatterns: [
+            'null', 'undefined', 'NaN', 'parseInt(', 'parseFloat(',
+            '=== null', '!== null', '== null', '!= null',
+            'async ', 'await ', 'Promise.all', 'Promise.race',
+            'setTimeout', 'setInterval', 'clearTimeout', 'clearInterval',
+            'push(', 'pop(', 'shift(', 'splice(',
+            'index', 'length', 'slice(', 'substr(',
+        ],
+        instructions: `Use Grep and Bash to find real logic bugs:
+1. Null/undefined dereference: grep for patterns like ".x" after nullable assignments, optional chaining missing
+2. Off-by-one errors: array index accesses near .length, slice/substr with boundary values
+3. Race conditions: concurrent state mutations, shared mutable state in async flows, unguarded Promise.all
+4. Type coercion bugs: == instead of ===, parseInt without radix, NaN comparisons
+5. Infinite loops or missing exit conditions: loops with external state, missing break
+6. State machine violations: transitions that skip required states, missing guards
+For each finding, Read the relevant section (offset/limit) to confirm it's a real bug, not a false positive.`,
+    },
+    redundancy: {
+        title: 'Redundancy Scanner',
+        grepPatterns: [
+            'function ', 'const ', 'class ', 'export ',
+            'import ', 'require(',
+            'if (', 'switch (', 'for (', 'while (',
+        ],
+        instructions: `Use Bash to find redundant and dead code:
+1. Duplicate function names across files: grep -rn "^function \\|^const .*= (" --include="*.ts" --include="*.py" . | awk -F'[: ]' '{print $NF}' | sort | uniq -d | head -20
+2. Exported symbols never imported elsewhere: grep -rn "^export " --include="*.ts" . | grep -v "index.ts" | head -30 — then cross-check with grep for each symbol name
+3. Dead imports: grep -rn "^import " --include="*.ts" . | head -40 — look for modules imported but symbols unused
+4. Similar logic blocks: find functions >20 lines with similar names (e.g., getUser/fetchUser/loadUser) — Read both to compare
+5. Config/constant duplication: grep -rn "const.*=.*['\"]" --include="*.ts" . | sort -t= -k2 | uniq -d -f1 | head -20
+Report only confirmed cases with file+line. Do not speculate.`,
+    },
+    security: {
+        title: 'Security Scanner',
+        grepPatterns: [
+            'eval(', 'exec(', 'execSync(', 'spawn(',
+            'dangerously', 'skip-permissions', 'no-verify',
+            'password', 'secret', 'api_key', 'apikey', 'token',
+            'process.env', 'SQL', 'query(', 'innerHTML', 'dangerouslySetInnerHTML',
+            'child_process', 'shell: true',
+        ],
+        instructions: `Use Grep to search for each of these patterns across the entire codebase.
+For each match, Read only the relevant section (offset/limit) to determine if it's actually a vulnerability.
+Focus on: hardcoded credentials, command injection, SQL injection, XSS, unsafe deserialization, overly broad permissions.
+Skip false positives (e.g., comments, test fixtures).`,
+    },
+    'error-handling': {
+        title: 'Error Handling Scanner',
+        grepPatterns: [
+            'catch {', 'catch(_)', 'catch (e) {}', 'catch (err) {}',
+            '} catch {', 'catch (error) {}',
+            '.then(', 'async function', 'await ',
+            'Promise.all', 'Promise.race',
+            'setTimeout', 'setInterval',
+        ],
+        instructions: `Use Grep to find:
+1. Empty or swallowed catch blocks: "catch {" with no body, or "catch" blocks that don't log/rethrow
+2. Unhandled promise rejections: .then() without .catch()
+3. Async functions with no try/catch around awaits
+4. Missing error propagation (catching then returning undefined)
+Read only the matching sections to confirm issues. Report file+line for each.`,
+    },
+    architecture: {
+        title: 'Architecture Scanner',
+        grepPatterns: [
+            'import ', 'require(', 'export ', 'export default',
+            'class ', 'function ', 'const ', 'TODO', 'FIXME', 'HACK', 'XXX',
+        ],
+        instructions: `Use Bash to run these checks:
+1. Find large files: find . -name "*.ts" -o -name "*.py" -o -name "*.js" | xargs wc -l 2>/dev/null | sort -rn | head -20
+2. Find TODO/FIXME/HACK: grep -rn "TODO\\|FIXME\\|HACK\\|XXX" --include="*.ts" --include="*.py" --include="*.js" . | head -30
+3. Find duplicate function names: grep -rn "^function \\|^const .* = (" --include="*.ts" . | awk -F: '{print $NF}' | sort | uniq -d | head -20
+Then Read the largest/most problematic files (offset/limit, max 100 lines each).
+Report: god classes (>300 lines), deep nesting, duplicated logic, technical debt markers.`,
+    },
+    testing: {
+        title: 'Testing Scanner',
+        grepPatterns: [
+            'test(', 'it(', 'describe(', 'expect(',
+            '.test.', '.spec.', '__tests__',
+            'export function', 'export class', 'export const',
+        ],
+        instructions: `Use Bash to check test coverage gaps:
+1. List all source files: find src -name "*.ts" ! -name "*.test.ts" ! -name "*.spec.ts" | sort
+2. List all test files: find . -name "*.test.*" -o -name "*.spec.*" | sort
+3. Cross-reference: which source modules have NO corresponding test file?
+4. Grep for untested exports: grep -rn "^export" src/ --include="*.ts" | grep -v test | head -30
+Report: modules with zero test coverage, critical paths that are untested, TODO test markers.`,
+    },
+    performance: {
+        title: 'Performance Scanner',
+        grepPatterns: [
+            'readFileSync', 'writeFileSync', 'execSync', 'spawnSync',
+            'for (', 'forEach(', 'map(', 'filter(', 'reduce(',
+            'await ', 'setTimeout', 'setInterval',
+            'JSON.parse', 'JSON.stringify',
+            '.length', 'push(', 'concat(',
+        ],
+        instructions: `Use Grep to find:
+1. Sync I/O in async context: readFileSync/writeFileSync/execSync inside async functions
+2. Unbounded loops: for/forEach/map on arrays with no size limit
+3. Repeated JSON.parse/stringify of large objects in hot paths
+4. Missing pagination or limits on data fetches
+5. Memory leaks: event listeners not removed, intervals not cleared
+Read only matching sections (offset/limit 30 lines) to confirm. Report file+line+severity.`,
+    },
+};
+function buildContextBlock(ctx) {
+    const parts = [];
+    if (ctx.repoSummary)
+        parts.push(`## Repository Structure\n${ctx.repoSummary}`);
+    if (ctx.depGraph)
+        parts.push(`## Dependency Graph\n${ctx.depGraph}`);
+    if (ctx.hotspotFiles && ctx.hotspotFiles.length > 0) {
+        parts.push(`## High-Coupling Files (read these first — most likely to contain issues)\n${ctx.hotspotFiles.map((f) => `- ${f}`).join('\n')}`);
+    }
+    return parts.length > 0 ? '\n' + parts.join('\n\n') + '\n' : '';
+}
+export function buildScannerPrompt(domain, scannerIndex, totalScanners, ctx) {
+    const cfg = DOMAIN_CONFIG[domain];
+    const contextBlock = ctx ? buildContextBlock(ctx) : '';
+    return `# ${cfg.title} (${scannerIndex + 1} of ${totalScanners})
+
+You are a specialized code auditor. Your ONLY job is to find **${domain}** issues.
+${contextBlock}
+## Allowed Tools
+- Grep — search for patterns across the codebase
+- Bash — run analysis commands (read-only: find, wc, grep, awk, sort)
+- Read — read specific sections of files (max 500 lines at a time using offset/limit)
+- NO Write, Edit, or network tools
+
+## Strategy
+${cfg.instructions}
+
+## Key patterns to search for
+${cfg.grepPatterns.map((p) => `- \`${p}\``).join('\n')}
+
+## Important
+- Do NOT read entire files — use offset/limit to read only relevant sections
+- Do NOT report false positives — confirm each finding before including it
+- If a pattern match is benign (e.g., in a comment or test), skip it
+- Focus on REAL issues with concrete file+line evidence
+- Return at most 15 findings. Prioritize critical/high severity and summarize repeated instances into one finding.
+- Keep each finding and recommendation concise, ideally under 280 characters each.
+
+## Output
+Your final response must be ONLY a valid JSON object — no prose, no markdown fences:
+{
+  "filesScanned": string[],
+  "findings": [
+    {
+      "file": string,
+      "line": number | null,
+      "severity": "critical" | "high" | "medium" | "low" | "info",
+      "category": "${domain}",
+      "finding": string,
+      "recommendation": string
+    }
+  ],
+  "summary": string
+}`;
+}
+//# sourceMappingURL=scanner.js.map

package/dist/prompts/scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner.js","sourceRoot":"","sources":["../../src/prompts/scanner.ts"],"names":[],"mappings":"AAiBA,MAAM,CAAC,MAAM,YAAY,GAAiB;IACxC,UAAU;IACV,MAAM;IACN,YAAY;IACZ,gBAAgB;IAChB,cAAc;IACd,SAAS;IACT,aAAa;IACb,gBAAgB;IAChB,eAAe;IACf,YAAY;IACZ,MAAM;IACN,cAAc;IACd,YAAY;IACZ,cAAc;IACd,cAAc;CACf,CAAC;AAIF,OAAO,EAAE,mBAAmB,EAAE,MAAM,4BAA4B,CAAC;AAEjE,MAAM,aAAa,GAAqC;IACtD,GAAG,mBAAmB;IACtB,IAAI,EAAE;QACJ,KAAK,EAAE,aAAa;QACpB,YAAY,EAAE;YACZ,MAAM,EAAE,WAAW,EAAE,KAAK,EAAE,WAAW,EAAE,aAAa;YACtD,UAAU,EAAE,UAAU,EAAE,SAAS,EAAE,SAAS;YAC5C,QAAQ,EAAE,QAAQ,EAAE,aAAa,EAAE,cAAc;YACjD,YAAY,EAAE,aAAa,EAAE,cAAc,EAAE,eAAe;YAC5D,OAAO,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS;YACpC,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS;SACvC;QACD,YAAY,EAAE;;;;;;;6GAO2F;KAC1G;IACD,UAAU,EAAE;QACV,KAAK,EAAE,oBAAoB;QAC3B,YAAY,EAAE;YACZ,WAAW,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS;YAC1C,SAAS,EAAE,UAAU;YACrB,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,SAAS;SACvC;QACD,YAAY,EAAE;;;;;;8DAM4C;KAC3D;IACD,QAAQ,EAAE;QACR,KAAK,EAAE,kBAAkB;QACzB,YAAY,EAAE;YACZ,OAAO,EAAE,OAAO,EAAE,WAAW,EAAE,QAAQ;YACvC,aAAa,EAAE,kBAAkB,EAAE,WAAW;YAC9C,UAAU,EAAE,QAAQ,EAAE,SAAS,EAAE,QAAQ,EAAE,OAAO;YAClD,aAAa,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB;YACtE,eAAe,EAAE,aAAa;SAC/B;QACD,YAAY,EAAE;;;sDAGoC;KACnD;IACD,gBAAgB,EAAE;QAChB,KAAK,EAAE,wBAAwB;QAC/B,YAAY,EAAE;YACZ,SAAS,EAAE,UAAU,EAAE,cAAc,EAAE,gBAAgB;YACvD,WAAW,EAAE,kBAAkB;YAC/B,QAAQ,EAAE,gBAAgB,EAAE,QAAQ;YACpC,aAAa,EAAE,cAAc;YAC7B,YAAY,EAAE,aAAa;SAC5B;QACD,YAAY,EAAE;;;;;8EAK4D;KAC3E;IACD,YAAY,EAAE;QACZ,KAAK,EAAE,sBAAsB;QAC7B,YAAY,EAAE;YACZ,SAAS,EAAE,UAAU,EAAE,SAAS,EAAE,gBAAgB;YAClD,QAAQ,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK;SAChE;QACD,YAAY,EAAE;;;;;0FAKwE;KACvF;IACD,OAAO,EAAE;QACP,KAAK,EAAE,iBAAiB;QACxB,YAAY,EAAE;YACZ,OAAO,EAAE,KAAK,EAAE,WAAW,EAAE,SAAS;YACtC,QAAQ,EAAE,QAAQ,EAAE,WAAW;YAC/B,iBAAiB,EAAE,cAAc,EAAE,cAAc;SAClD;QACD,YAAY,EAAE;;;;;8FAK4E;KAC3F;IACD,WAAW,EAAE;QACX,KAAK,EAAE,qBAAqB;QAC5B,YAAY,EAAE;YACZ,cAAc,EAAE,eAAe,EAAE,UAAU,EAAE,WAAW;YACxD,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS;YACjD,QAAQ,EAAE,YAAY,EAAE,aAAa;YACrC,YAAY,EAAE,gBAAgB;YAC9B,SAAS,EAAE,OAAO,EAAE,SAAS;SAC9B;QACD,YAAY,EAAE;;;;;;2FAMyE;KACxF;CACF,CAAC;AAEF,SAAS,iBAAiB,CAAC,GAAmB;IAC5C,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,GAAG,CAAC,WAAW;QAAE,KAAK,CAAC,IAAI,CAAC,4BAA4B,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC;IAC/E,IAAI,GAAG,CAAC,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,wBAAwB,GAAG,CAAC,QAAQ,EAAE,CAAC,CAAC;IACrE,IAAI,GAAG,CAAC,YAAY,IAAI,GAAG,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpD,KAAK,CAAC,IAAI,CAAC,8EAA8E,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC/I,CAAC;IACD,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;AAClE,CAAC;AAQD,MAAM,UAAU,kBAAkB,CAAC,MAAkB,EAAE,YAAoB,EAAE,aAAqB,EAAE,GAAoB;IACtH,MAAM,GAAG,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;IAClC,MAAM,YAAY,GAAG,GAAG,CAAC,CAAC,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;IACvD,OAAO,KAAK,GAAG,CAAC,KAAK,KAAK,YAAY,GAAG,CAAC,OAAO,aAAa;;iEAEC,MAAM;EACrE,YAAY;;;;;;;;EAQZ,GAAG,CAAC,YAAY;;;EAGhB,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;qBAmBjC,MAAM;;;;;;EAMzB,CAAC;AACH,CAAC"}

package/dist/prompts/synthesizer.d.ts

@@ -0,0 +1,2 @@
+export declare function buildSynthesizerPrompt(): string;
+//# sourceMappingURL=synthesizer.d.ts.map

package/dist/prompts/synthesizer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"synthesizer.d.ts","sourceRoot":"","sources":["../../src/prompts/synthesizer.ts"],"names":[],"mappings":"AAAA,wBAAgB,sBAAsB,IAAI,MAAM,CAkC/C"}

package/dist/prompts/synthesizer.js

@@ -0,0 +1,36 @@
+export function buildSynthesizerPrompt() {
+    return `# Role: Synthesizer Agent
+
+You are the final step in a multi-agent code audit. You receive findings from multiple scanner agents and produce a unified, prioritized report.
+
+## Allowed Tools
+- None — all input is provided in the message
+
+## Task
+1. Merge all findings from all scanners
+2. Deduplicate: if two scanners found the same issue in the same file+line, keep only one
+3. Rank by severity: critical → high → medium → low → info
+4. Identify the top 5 priorities the team should act on first
+5. Write a concise executive summary (3-5 sentences)
+
+## Output
+Your final response must be ONLY a valid JSON object — no prose, no markdown fences:
+{
+  "findings": [
+    {
+      "file": string,
+      "line": number | null,
+      "severity": "critical" | "high" | "medium" | "low" | "info",
+      "category": "security" | "architecture" | "performance" | "testing" | "error-handling" | "types" | "maintainability" | "token-usage",
+      "finding": string,
+      "recommendation": string
+    }
+  ],
+  "criticalCount": number,
+  "highCount": number,
+  "totalFiles": number,
+  "summary": string,
+  "topPriorities": string[]
+}`;
+}
+//# sourceMappingURL=synthesizer.js.map

package/dist/prompts/synthesizer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"synthesizer.js","sourceRoot":"","sources":["../../src/prompts/synthesizer.ts"],"names":[],"mappings":"AAAA,MAAM,UAAU,sBAAsB;IACpC,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAgCP,CAAC;AACH,CAAC"}

package/dist/providers/cli-provider.d.ts

@@ -0,0 +1,16 @@
+import type { ProviderName } from '../core/runtime-policy.js';
+export type { ProviderRunInput, AgentProvider } from './types.js';
+export declare const AGENT_TOOLS: Record<string, string[]>;
+import type { ProviderRunInput, AgentProvider } from './types.js';
+export declare class ClaudeCliProvider implements AgentProvider {
+    readonly name: "claude";
+    run(input: ProviderRunInput, onChunk?: (agentName: string, text: string) => void): Promise<string>;
+}
+export declare class CodexCliProvider implements AgentProvider {
+    readonly name: "codex";
+    run(input: ProviderRunInput, onChunk?: (agentName: string, text: string) => void): Promise<string>;
+}
+export declare function createProvider(name: ProviderName, policy?: {
+    openrouterModel?: string;
+}): AgentProvider;
+//# sourceMappingURL=cli-provider.d.ts.map

package/dist/providers/cli-provider.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli-provider.d.ts","sourceRoot":"","sources":["../../src/providers/cli-provider.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,YAAY,EAAiB,MAAM,2BAA2B,CAAC;AAI7E,YAAY,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAOlE,eAAO,MAAM,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAQhD,CAAC;AAKF,OAAO,KAAK,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AA4DlE,qBAAa,iBAAkB,YAAW,aAAa;IACrD,QAAQ,CAAC,IAAI,EAAG,QAAQ,CAAU;IAE5B,GAAG,CAAC,KAAK,EAAE,gBAAgB,EAAE,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;CA+BzG;AAED,qBAAa,gBAAiB,YAAW,aAAa;IACpD,QAAQ,CAAC,IAAI,EAAG,OAAO,CAAU;IAE3B,GAAG,CAAC,KAAK,EAAE,gBAAgB,EAAE,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,KAAK,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;CAyBzG;AAED,wBAAgB,cAAc,CAAC,IAAI,EAAE,YAAY,EAAE,MAAM,CAAC,EAAE;IAAE,eAAe,CAAC,EAAE,MAAM,CAAA;CAAE,GAAG,aAAa,CAUvG"}

package/dist/providers/cli-provider.js

@@ -0,0 +1,145 @@
+import { mkdtempSync, readFileSync, rmSync } from 'fs';
+import { tmpdir } from 'os';
+import { join } from 'path';
+import { spawn } from 'child_process';
+import { limitChars } from '../core/runtime-policy.js';
+import { SdkProvider } from './sdk-provider.js';
+import { OpenRouterProvider } from './openrouter-provider.js';
+const AGENT_TIMEOUT_MS = 5 * 60 * 1000;
+const USAGE_UNAVAILABLE = '\0usage-unavailable\0';
+const STRUCTURED_RESULT_MAX_CHARS = 200_000;
+// Minimal tool sets per agent role — principle of least privilege
+export const AGENT_TOOLS = {
+    planner: ['Read', 'Glob', 'Grep'],
+    'investigator-backend': ['Read', 'Glob', 'Grep', 'Bash'],
+    'investigator-frontend': ['Read', 'Glob', 'Grep', 'Bash'],
+    'investigator-bug-history': ['Read', 'Glob', 'Grep', 'Bash'],
+    developer: ['Read', 'Edit', 'Write', 'Bash'],
+    reviewer: ['Read', 'Glob', 'Grep'],
+    qa: ['Bash', 'Read'],
+};
+const DEFAULT_TOOLS = ['Read', 'Glob', 'Grep'];
+function runProcess(command, args, cwd, agentName, maxOutputChars, onChunk) {
+    return new Promise((resolve, reject) => {
+        const proc = spawn(command, args, {
+            cwd,
+            env: process.env,
+            stdio: ['ignore', 'pipe', 'pipe'],
+        });
+        let stdout = '';
+        let stderr = '';
+        let settled = false;
+        const timer = setTimeout(() => {
+            if (settled)
+                return;
+            settled = true;
+            proc.kill('SIGTERM');
+            reject(new Error(`[${agentName}] ${command} timed out after ${AGENT_TIMEOUT_MS / 1000}s`));
+        }, AGENT_TIMEOUT_MS);
+        proc.stdout.on('data', (chunk) => {
+            const text = chunk.toString();
+            stdout += text;
+            onChunk?.(agentName, text);
+        });
+        proc.stderr.on('data', (chunk) => {
+            const text = chunk.toString();
+            stderr += text;
+            onChunk?.(agentName, text);
+        });
+        proc.on('close', (code) => {
+            if (settled)
+                return;
+            settled = true;
+            clearTimeout(timer);
+            if (code !== 0 && !stdout.trim()) {
+                reject(new Error(`[${agentName}] ${command} exited with code ${code}: ${limitChars(stderr, maxOutputChars)}`));
+                return;
+            }
+            resolve(limitChars(stdout, maxOutputChars));
+        });
+        proc.on('error', (err) => {
+            if (settled)
+                return;
+            settled = true;
+            clearTimeout(timer);
+            reject(new Error(`[${agentName}] failed to spawn ${command}: ${err.message}`));
+        });
+    });
+}
+export class ClaudeCliProvider {
+    name = 'claude';
+    async run(input, onChunk) {
+        const allowedTools = AGENT_TOOLS[input.agentName] ?? DEFAULT_TOOLS;
+        const args = [
+            '-p', input.userMessage,
+            '--output-format', 'json',
+            '--model', input.policy.claudeModel,
+            '--max-budget-usd', String(input.policy.claudeMaxBudgetUsd),
+            '--allowedTools', allowedTools.join(','),
+        ];
+        // Use a large cap for raw so the outer JSON envelope isn't truncated
+        const raw = await runProcess('claude', args, input.cwd, input.agentName, 200_000, onChunk);
+        onChunk?.(input.agentName, USAGE_UNAVAILABLE);
+        try {
+            const event = JSON.parse(raw);
+            if (event.is_error) {
+                const msg = event.result ?? 'unknown';
+                if (typeof msg === 'string' && msg.includes('budget')) {
+                    throw new Error(`[${input.agentName}] budget exceeded ($${input.policy.claudeMaxBudgetUsd}). Use --budget normal or --budget deep for larger tasks.`);
+                }
+                throw new Error(`[${input.agentName}] claude error: ${msg}`);
+            }
+            // Truncate only the result content, not the JSON envelope
+            if (typeof event.result === 'string') {
+                return limitChars(event.result, Math.max(input.policy.maxOutputChars, STRUCTURED_RESULT_MAX_CHARS));
+            }
+        }
+        catch (err) {
+            if (err instanceof Error && err.message.startsWith(`[${input.agentName}]`))
+                throw err;
+        }
+        return limitChars(raw, input.policy.maxOutputChars);
+    }
+}
+export class CodexCliProvider {
+    name = 'codex';
+    async run(input, onChunk) {
+        const tempDir = mkdtempSync(join(tmpdir(), 'ai-runtime-codex-'));
+        const outputFile = join(tempDir, 'last-message.txt');
+        const prompt = `${input.systemPrompt}\n\n${input.userMessage}`;
+        const args = [
+            'exec',
+            '-C', input.cwd,
+            '-m', input.policy.codexModel,
+            '-s', 'workspace-write',
+            '-a', 'never',
+            '--ephemeral',
+            '--ignore-rules',
+            '--color', 'never',
+            '-o', outputFile,
+            prompt,
+        ];
+        try {
+            await runProcess('codex', args, input.cwd, input.agentName, input.policy.maxOutputChars, onChunk);
+            onChunk?.(input.agentName, USAGE_UNAVAILABLE);
+            return limitChars(readFileSync(outputFile, 'utf8'), input.policy.maxOutputChars);
+        }
+        finally {
+            rmSync(tempDir, { recursive: true, force: true });
+        }
+    }
+}
+export function createProvider(name, policy) {
+    if (name === 'codex')
+        return new CodexCliProvider();
+    if (name === 'openrouter') {
+        const model = policy?.openrouterModel ?? process.env['OPENROUTER_MODEL'] ?? 'moonshotai/kimi-k2';
+        return new OpenRouterProvider(model);
+    }
+    // SDK provider when key is set: enables prompt caching + real streaming
+    // Falls back to CLI provider when no key (uses claude CLI session auth)
+    if (process.env['ANTHROPIC_API_KEY'])
+        return new SdkProvider();
+    return new ClaudeCliProvider();
+}
+//# sourceMappingURL=cli-provider.js.map