@ariacode/cli 0.1.0 → 0.2.2

package/dist/upgrade/classifier.d.ts

@@ -0,0 +1,25 @@
+/**
+ * Classify dependency upgrades by semver risk level.
+ */
+import type { OutdatedPackage } from './outdated.js';
+export type UpgradeRisk = 'patch' | 'minor' | 'major' | 'prerelease';
+export interface ClassifiedUpgrade {
+    name: string;
+    current: string;
+    target: string;
+    risk: UpgradeRisk;
+    type: 'dependencies' | 'devDependencies' | 'peerDependencies';
+    reasoning: string;
+}
+/**
+ * Classify the risk of upgrading from `current` to `target` using semver.diff().
+ */
+export declare function classifyUpgrade(current: string, target: string): UpgradeRisk;
+/**
+ * Classify a list of outdated packages into risk-annotated upgrades.
+ */
+export declare function classifyAll(packages: OutdatedPackage[]): ClassifiedUpgrade[];
+/**
+ * Group classified upgrades by risk level.
+ */
+export declare function groupByRisk(upgrades: ClassifiedUpgrade[]): Record<UpgradeRisk, ClassifiedUpgrade[]>;

package/dist/upgrade/classifier.js

@@ -0,0 +1,78 @@
+/**
+ * Classify dependency upgrades by semver risk level.
+ */
+import semver from 'semver';
+/**
+ * Classify the risk of upgrading from `current` to `target` using semver.diff().
+ */
+export function classifyUpgrade(current, target) {
+    const parsedTarget = semver.parse(target) ?? semver.parse(semver.coerce(target));
+    const parsedCurrent = semver.parse(semver.coerce(current));
+    if (!parsedCurrent || !parsedTarget)
+        return 'major';
+    // If target has a prerelease tag, classify as prerelease regardless of diff
+    if (parsedTarget.prerelease.length > 0)
+        return 'prerelease';
+    const diff = semver.diff(parsedCurrent.version, parsedTarget.version);
+    if (!diff)
+        return 'patch'; // same version
+    switch (diff) {
+        case 'patch':
+            return 'patch';
+        case 'minor':
+            return 'minor';
+        case 'major':
+        case 'premajor':
+            return 'major';
+        case 'preminor':
+        case 'prepatch':
+        case 'prerelease':
+            return 'prerelease';
+        default:
+            return 'major';
+    }
+}
+/**
+ * Classify a list of outdated packages into risk-annotated upgrades.
+ */
+export function classifyAll(packages) {
+    return packages.map((pkg) => {
+        const risk = classifyUpgrade(pkg.current, pkg.latest);
+        return {
+            name: pkg.name,
+            current: pkg.current,
+            target: pkg.latest,
+            risk,
+            type: pkg.type,
+            reasoning: buildReasoning(risk, pkg.current, pkg.latest),
+        };
+    });
+}
+/**
+ * Group classified upgrades by risk level.
+ */
+export function groupByRisk(upgrades) {
+    const groups = {
+        patch: [],
+        minor: [],
+        major: [],
+        prerelease: [],
+    };
+    for (const u of upgrades) {
+        groups[u.risk].push(u);
+    }
+    return groups;
+}
+function buildReasoning(risk, current, target) {
+    switch (risk) {
+        case 'patch':
+            return `Bug fix: ${current} → ${target}`;
+        case 'minor':
+            return `New features (backward-compatible): ${current} → ${target}`;
+        case 'major':
+            return `Breaking changes possible: ${current} → ${target}`;
+        case 'prerelease':
+            return `Pre-release version: ${current} → ${target}`;
+    }
+}
+//# sourceMappingURL=classifier.js.map

package/dist/upgrade/classifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"classifier.js","sourceRoot":"","sources":["../../src/upgrade/classifier.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,MAAM,MAAM,QAAQ,CAAC;AAc5B;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,OAAe,EAAE,MAAc;IAC7D,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;IACjF,MAAM,aAAa,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;IAC3D,IAAI,CAAC,aAAa,IAAI,CAAC,YAAY;QAAE,OAAO,OAAO,CAAC;IAEpD,4EAA4E;IAC5E,IAAI,YAAY,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,YAAY,CAAC;IAE5D,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,YAAY,CAAC,OAAO,CAAC,CAAC;IACtE,IAAI,CAAC,IAAI;QAAE,OAAO,OAAO,CAAC,CAAC,eAAe;IAE1C,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,OAAO;YACV,OAAO,OAAO,CAAC;QACjB,KAAK,OAAO;YACV,OAAO,OAAO,CAAC;QACjB,KAAK,OAAO,CAAC;QACb,KAAK,UAAU;YACb,OAAO,OAAO,CAAC;QACjB,KAAK,UAAU,CAAC;QAChB,KAAK,UAAU,CAAC;QAChB,KAAK,YAAY;YACf,OAAO,YAAY,CAAC;QACtB;YACE,OAAO,OAAO,CAAC;IACnB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,QAA2B;IACrD,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE;QAC1B,MAAM,IAAI,GAAG,eAAe,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;QACtD,OAAO;YACL,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,OAAO,EAAE,GAAG,CAAC,OAAO;YACpB,MAAM,EAAE,GAAG,CAAC,MAAM;YAClB,IAAI;YACJ,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,SAAS,EAAE,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC;SACzD,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CACzB,QAA6B;IAE7B,MAAM,MAAM,GAA6C;QACvD,KAAK,EAAE,EAAE;QACT,KAAK,EAAE,EAAE;QACT,KAAK,EAAE,EAAE;QACT,UAAU,EAAE,EAAE;KACf,CAAC;IACF,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACzB,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,cAAc,CAAC,IAAiB,EAAE,OAAe,EAAE,MAAc;IACxE,QAAQ,IAAI,EAAE,CAAC;QACb,KAAK,OAAO;YACV,OAAO,YAAY,OAAO,MAAM,MAAM,EAAE,CAAC;QAC3C,KAAK,OAAO;YACV,OAAO,uCAAuC,OAAO,MAAM,MAAM,EAAE,CAAC;QACtE,KAAK,OAAO;YACV,OAAO,8BAA8B,OAAO,MAAM,MAAM,EAAE,CAAC;QAC7D,KAAK,YAAY;YACf,OAAO,wBAAwB,OAAO,MAAM,MAAM,EAAE,CAAC;IACzD,CAAC;AACH,CAAC"}

package/dist/upgrade/outdated.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Run `npm/pnpm/yarn outdated --json` via subprocess and parse results.
+ * Read-only: never executes install or update commands.
+ */
+export interface OutdatedPackage {
+    name: string;
+    current: string;
+    wanted: string;
+    latest: string;
+    type: 'dependencies' | 'devDependencies' | 'peerDependencies';
+    location: string;
+}
+/**
+ * Run the package manager's `outdated --json` command and return normalized results.
+ * npm outdated returns exit code 1 when outdated packages exist — that's expected.
+ */
+export declare function getOutdatedPackages(projectRoot: string, packageManager: 'npm' | 'pnpm' | 'yarn' | 'bun'): Promise<OutdatedPackage[]>;

package/dist/upgrade/outdated.js

@@ -0,0 +1,138 @@
+/**
+ * Run `npm/pnpm/yarn outdated --json` via subprocess and parse results.
+ * Read-only: never executes install or update commands.
+ */
+import { execFile } from 'node:child_process';
+/**
+ * Run the package manager's `outdated --json` command and return normalized results.
+ * npm outdated returns exit code 1 when outdated packages exist — that's expected.
+ */
+export async function getOutdatedPackages(projectRoot, packageManager) {
+    const { cmd, args } = buildCommand(packageManager);
+    const raw = await runOutdated(cmd, args, projectRoot);
+    if (!raw.trim())
+        return [];
+    return parseOutput(raw, packageManager);
+}
+function buildCommand(pm) {
+    switch (pm) {
+        case 'pnpm':
+            return { cmd: 'pnpm', args: ['outdated', '--json'] };
+        case 'yarn':
+            return { cmd: 'yarn', args: ['outdated', '--json'] };
+        case 'bun':
+            return { cmd: 'bun', args: ['outdated', '--json'] };
+        default:
+            return { cmd: 'npm', args: ['outdated', '--json'] };
+    }
+}
+function runOutdated(cmd, args, cwd) {
+    return new Promise((resolve, reject) => {
+        execFile(cmd, args, { cwd, timeout: 30_000 }, (error, stdout, stderr) => {
+            // npm outdated exits with code 1 when there are outdated packages — not an error
+            if (error && stdout) {
+                resolve(stdout);
+                return;
+            }
+            if (error) {
+                // Distinguish "command not found" from "outdated failed"
+                const isNotFound = error.code === 'ENOENT';
+                const msg = isNotFound
+                    ? `${cmd} is not installed or not in PATH`
+                    : `Failed to run ${cmd} outdated: ${error.message}${stderr ? ` (${stderr.trim()})` : ''}`;
+                reject(new Error(msg));
+                return;
+            }
+            resolve(stdout);
+        });
+    });
+}
+/**
+ * Parse JSON output from different package managers into a normalized format.
+ * Each PM has a slightly different JSON structure.
+ */
+function parseOutput(raw, pm) {
+    if (pm === 'npm' || pm === 'bun')
+        return parseNpmOutput(raw);
+    if (pm === 'pnpm')
+        return parsePnpmOutput(raw);
+    return parseYarnOutput(raw);
+}
+/**
+ * npm outdated --json returns:
+ * { "package-name": { "current": "1.0.0", "wanted": "1.0.1", "latest": "2.0.0", "type": "dependencies", "location": "..." } }
+ */
+function parseNpmOutput(raw) {
+    const data = JSON.parse(raw);
+    return Object.entries(data)
+        .filter(([, v]) => v.current && v.latest)
+        .map(([name, v]) => ({
+        name,
+        current: v.current,
+        wanted: v.wanted ?? v.current,
+        latest: v.latest,
+        type: normalizeDepType(v.type),
+        location: v.location ?? '',
+    }));
+}
+/**
+ * pnpm outdated --json returns an array:
+ * [{ "packageName": "...", "current": "...", "latest": "...", "wanted": "...", "dependencyType": "..." }]
+ */
+function parsePnpmOutput(raw) {
+    const data = JSON.parse(raw);
+    const list = Array.isArray(data) ? data : [];
+    return list
+        .filter((p) => p.current && p.latest)
+        .map((p) => ({
+        name: p.packageName ?? p.name ?? '',
+        current: p.current,
+        wanted: p.wanted ?? p.current,
+        latest: p.latest,
+        type: normalizeDepType(p.dependencyType ?? p.type),
+        location: p.location ?? '',
+    }));
+}
+/**
+ * yarn outdated --json outputs newline-delimited JSON.
+ * The "data" table row format: [name, current, wanted, latest, type, url]
+ */
+function parseYarnOutput(raw) {
+    const results = [];
+    for (const line of raw.split('\n')) {
+        if (!line.trim())
+            continue;
+        try {
+            const obj = JSON.parse(line);
+            if (obj.type === 'table' && obj.data?.body) {
+                for (const row of obj.data.body) {
+                    if (row.length >= 5) {
+                        results.push({
+                            name: row[0],
+                            current: row[1],
+                            wanted: row[2],
+                            latest: row[3],
+                            type: normalizeDepType(row[4]),
+                            location: '',
+                        });
+                    }
+                }
+            }
+        }
+        catch {
+            // skip non-JSON lines
+        }
+    }
+    return results;
+}
+function normalizeDepType(raw) {
+    if (!raw)
+        return 'dependencies';
+    const lower = raw.toLowerCase();
+    if (lower.includes('dev'))
+        return 'devDependencies';
+    if (lower.includes('peer'))
+        return 'peerDependencies';
+    return 'dependencies';
+}
+//# sourceMappingURL=outdated.js.map

package/dist/upgrade/outdated.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"outdated.js","sourceRoot":"","sources":["../../src/upgrade/outdated.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAW9C;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,WAAmB,EACnB,cAA+C;IAE/C,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,YAAY,CAAC,cAAc,CAAC,CAAC;IACnD,MAAM,GAAG,GAAG,MAAM,WAAW,CAAC,GAAG,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;IACtD,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE;QAAE,OAAO,EAAE,CAAC;IAC3B,OAAO,WAAW,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;AAC1C,CAAC;AAED,SAAS,YAAY,CAAC,EAAU;IAC9B,QAAQ,EAAE,EAAE,CAAC;QACX,KAAK,MAAM;YACT,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,CAAC;QACvD,KAAK,MAAM;YACT,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,CAAC;QACvD,KAAK,KAAK;YACR,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,CAAC;QACtD;YACE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,UAAU,EAAE,QAAQ,CAAC,EAAE,CAAC;IACxD,CAAC;AACH,CAAC;AAED,SAAS,WAAW,CAAC,GAAW,EAAE,IAAc,EAAE,GAAW;IAC3D,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QACrC,QAAQ,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,EAAE;YACtE,iFAAiF;YACjF,IAAI,KAAK,IAAI,MAAM,EAAE,CAAC;gBACpB,OAAO,CAAC,MAAM,CAAC,CAAC;gBAChB,OAAO;YACT,CAAC;YACD,IAAI,KAAK,EAAE,CAAC;gBACV,yDAAyD;gBACzD,MAAM,UAAU,GAAI,KAAa,CAAC,IAAI,KAAK,QAAQ,CAAC;gBACpD,MAAM,GAAG,GAAG,UAAU;oBACpB,CAAC,CAAC,GAAG,GAAG,kCAAkC;oBAC1C,CAAC,CAAC,iBAAiB,GAAG,cAAc,KAAK,CAAC,OAAO,GAAG,MAAM,CAAC,CAAC,CAAC,KAAK,MAAM,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;gBAC5F,MAAM,CAAC,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;gBACvB,OAAO;YACT,CAAC;YACD,OAAO,CAAC,MAAM,CAAC,CAAC;QAClB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;;GAGG;AACH,SAAS,WAAW,CAClB,GAAW,EACX,EAAmC;IAEnC,IAAI,EAAE,KAAK,KAAK,IAAI,EAAE,KAAK,KAAK;QAAE,OAAO,cAAc,CAAC,GAAG,CAAC,CAAC;IAC7D,IAAI,EAAE,KAAK,MAAM;QAAE,OAAO,eAAe,CAAC,GAAG,CAAC,CAAC;IAC/C,OAAO,eAAe,CAAC,GAAG,CAAC,CAAC;AAC9B,CAAC;AAED;;;GAGG;AACH,SAAS,cAAc,CAAC,GAAW;IACjC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAG1B,CAAC;IACF,OAAO,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC;SACxB,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC,MAAM,CAAC;SACxC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACnB,IAAI;QACJ,OAAO,EAAE,CAAC,CAAC,OAAQ;QACnB,MAAM,EAAE,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,OAAQ;QAC9B,MAAM,EAAE,CAAC,CAAC,MAAO;QACjB,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,IAAI,CAAC;QAC9B,QAAQ,EAAE,CAAC,CAAC,QAAQ,IAAI,EAAE;KAC3B,CAAC,CAAC,CAAC;AACR,CAAC;AAED;;;GAGG;AACH,SAAS,eAAe,CAAC,GAAW;IAClC,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC7B,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IAC7C,OAAO,IAAI;SACR,MAAM,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC,MAAM,CAAC;SACzC,GAAG,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,CAAC;QAChB,IAAI,EAAE,CAAC,CAAC,WAAW,IAAI,CAAC,CAAC,IAAI,IAAI,EAAE;QACnC,OAAO,EAAE,CAAC,CAAC,OAAO;QAClB,MAAM,EAAE,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,OAAO;QAC7B,MAAM,EAAE,CAAC,CAAC,MAAM;QAChB,IAAI,EAAE,gBAAgB,CAAC,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC,IAAI,CAAC;QAClD,QAAQ,EAAE,CAAC,CAAC,QAAQ,IAAI,EAAE;KAC3B,CAAC,CAAC,CAAC;AACR,CAAC;AAED;;;GAGG;AACH,SAAS,eAAe,CAAC,GAAW;IAClC,MAAM,OAAO,GAAsB,EAAE,CAAC;IACtC,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QACnC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;YAAE,SAAS;QAC3B,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAC7B,IAAI,GAAG,CAAC,IAAI,KAAK,OAAO,IAAI,GAAG,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC;gBAC3C,KAAK,MAAM,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;oBAChC,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;wBACpB,OAAO,CAAC,IAAI,CAAC;4BACX,IAAI,EAAE,GAAG,CAAC,CAAC,CAAC;4BACZ,OAAO,EAAE,GAAG,CAAC,CAAC,CAAC;4BACf,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;4BACd,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;4BACd,IAAI,EAAE,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;4BAC9B,QAAQ,EAAE,EAAE;yBACb,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,gBAAgB,CACvB,GAAY;IAEZ,IAAI,CAAC,GAAG;QAAE,OAAO,cAAc,CAAC;IAChC,MAAM,KAAK,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;IAChC,IAAI,KAAK,CAAC,QAAQ,CAAC,KAAK,CAAC;QAAE,OAAO,iBAAiB,CAAC;IACpD,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC;QAAE,OAAO,kBAAkB,CAAC;IACtD,OAAO,cAAc,CAAC;AACxB,CAAC"}

package/dist/upgrade/prisma-upgrade.d.ts

@@ -0,0 +1,20 @@
+/**
+ * Prisma-specific upgrade logic.
+ * Detects current Prisma version, fetches latest, classifies risk.
+ */
+import { type UpgradeRisk } from './classifier.js';
+export interface PrismaVersionInfo {
+    currentPrisma: string;
+    currentClient: string;
+    latestVersion: string;
+    risk: UpgradeRisk;
+    hasPrisma: boolean;
+}
+/**
+ * Detect current Prisma versions from package.json and fetch latest from npm registry.
+ */
+export declare function getPrismaVersionInfo(projectRoot: string): Promise<PrismaVersionInfo>;
+/**
+ * Fetch the latest version of a package from npm registry.
+ */
+export declare function fetchLatestVersion(packageName: string): Promise<string>;

package/dist/upgrade/prisma-upgrade.js

@@ -0,0 +1,66 @@
+/**
+ * Prisma-specific upgrade logic.
+ * Detects current Prisma version, fetches latest, classifies risk.
+ */
+import { execFile } from 'node:child_process';
+import { join } from 'node:path';
+import { classifyUpgrade } from './classifier.js';
+import { readJsonFile } from '../fs-helpers.js';
+/**
+ * Detect current Prisma versions from package.json and fetch latest from npm registry.
+ */
+export async function getPrismaVersionInfo(projectRoot) {
+    const pkgPath = join(projectRoot, 'package.json');
+    const pkg = readJsonFile(pkgPath);
+    const deps = { ...pkg.dependencies, ...pkg.devDependencies };
+    const hasPrisma = Boolean(deps.prisma || deps['@prisma/client']);
+    if (!hasPrisma) {
+        return { currentPrisma: '', currentClient: '', latestVersion: '', risk: 'patch', hasPrisma: false };
+    }
+    const currentPrisma = stripRange(deps.prisma ?? '');
+    const currentClient = stripRange(deps['@prisma/client'] ?? '');
+    const current = currentPrisma || currentClient;
+    const latestVersion = await fetchLatestVersion('prisma');
+    const risk = current && latestVersion ? classifyUpgrade(current, latestVersion) : 'major';
+    return { currentPrisma, currentClient, latestVersion, risk, hasPrisma };
+}
+/**
+ * Fetch the latest version of a package from npm registry.
+ */
+export async function fetchLatestVersion(packageName) {
+    try {
+        const res = await fetch(`https://registry.npmjs.org/${encodeURIComponent(packageName)}/latest`, {
+            signal: AbortSignal.timeout(10_000),
+        });
+        if (!res.ok) {
+            // Drain the response body to free the connection
+            await res.text().catch(() => { });
+            throw new Error(`HTTP ${res.status}`);
+        }
+        const data = await res.json();
+        const version = data && typeof data === 'object' && 'version' in data && typeof data.version === 'string'
+            ? data.version
+            : '';
+        return version;
+    }
+    catch {
+        // Fallback: use npm view via subprocess
+        return npmViewVersion(packageName);
+    }
+}
+function npmViewVersion(packageName) {
+    return new Promise((resolve) => {
+        execFile('npm', ['view', packageName, 'version'], { timeout: 10_000 }, (error, stdout) => {
+            if (error || !stdout.trim()) {
+                resolve('');
+                return;
+            }
+            resolve(stdout.trim());
+        });
+    });
+}
+/** Strip semver range prefixes like ^, ~, >= */
+function stripRange(version) {
+    return version.replace(/^[\^~>=<]+/, '').trim();
+}
+//# sourceMappingURL=prisma-upgrade.js.map

package/dist/upgrade/prisma-upgrade.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prisma-upgrade.js","sourceRoot":"","sources":["../../src/upgrade/prisma-upgrade.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,eAAe,EAAoB,MAAM,iBAAiB,CAAC;AACpE,OAAO,EAAE,YAAY,EAAE,MAAM,kBAAkB,CAAC;AAUhD;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CAAC,WAAmB;IAC5D,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAClD,MAAM,GAAG,GAAG,YAAY,CAAC,OAAO,CAAwB,CAAC;IACzD,MAAM,IAAI,GAAG,EAAE,GAAG,GAAG,CAAC,YAAY,EAAE,GAAG,GAAG,CAAC,eAAe,EAAE,CAAC;IAE7D,MAAM,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;IACjE,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,OAAO,EAAE,aAAa,EAAE,EAAE,EAAE,aAAa,EAAE,EAAE,EAAE,aAAa,EAAE,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IACtG,CAAC;IAED,MAAM,aAAa,GAAG,UAAU,CAAC,IAAI,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC;IACpD,MAAM,aAAa,GAAG,UAAU,CAAC,IAAI,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC,CAAC;IAC/D,MAAM,OAAO,GAAG,aAAa,IAAI,aAAa,CAAC;IAE/C,MAAM,aAAa,GAAG,MAAM,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IACzD,MAAM,IAAI,GAAG,OAAO,IAAI,aAAa,CAAC,CAAC,CAAC,eAAe,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC;IAE1F,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,aAAa,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;AAC1E,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,WAAmB;IAC1D,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,8BAA8B,kBAAkB,CAAC,WAAW,CAAC,SAAS,EAAE;YAC9F,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC;SACpC,CAAC,CAAC;QACH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,iDAAiD;YACjD,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;YACjC,MAAM,IAAI,KAAK,CAAC,QAAQ,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;QACxC,CAAC;QACD,MAAM,IAAI,GAAY,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;QACvC,MAAM,OAAO,GAAG,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,SAAS,IAAI,IAAI,IAAI,OAAQ,IAAgC,CAAC,OAAO,KAAK,QAAQ;YACpI,CAAC,CAAE,IAA+B,CAAC,OAAO;YAC1C,CAAC,CAAC,EAAE,CAAC;QACP,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,wCAAwC;QACxC,OAAO,cAAc,CAAC,WAAW,CAAC,CAAC;IACrC,CAAC;AACH,CAAC;AAED,SAAS,cAAc,CAAC,WAAmB;IACzC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;QAC7B,QAAQ,CAAC,KAAK,EAAE,CAAC,MAAM,EAAE,WAAW,EAAE,SAAS,CAAC,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE;YACvF,IAAI,KAAK,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;gBAC5B,OAAO,CAAC,EAAE,CAAC,CAAC;gBACZ,OAAO;YACT,CAAC;YACD,OAAO,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;QACzB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,gDAAgD;AAChD,SAAS,UAAU,CAAC,OAAe;IACjC,OAAO,OAAO,CAAC,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;AAClD,CAAC"}

package/package.json

@@ -1,11 +1,11 @@
 {
   "name": "@ariacode/cli",
-  "version": "0.1.0",
+  "version": "0.2.2",
   "description": "A predictable coding agent for Next.js, Nest.js, Prisma and Node.js projects.",
   "homepage": "https://www.ariacode.run",
   "repository": {
     "type": "git",
-    "url": "https://github.com/ariacodeai/ariacode.git"
+    "url": "git+https://github.com/ariacodeai/ariacode.git"
   },
   "bugs": {
     "url": "https://github.com/ariacodeai/ariacode/issues"
@@ -16,7 +16,7 @@
   },
   "type": "module",
   "bin": {
-    "aria": "./dist/cli.js"
+    "aria": "dist/cli.js"
   },
   "files": [
     "dist",
@@ -36,7 +36,7 @@
   ],
   "scripts": {
     "dev": "tsx src/cli.ts",
-    "build": "tsc && cp -r src/prompts dist/prompts",
+    "build": "rm -rf dist && tsc && cp -r src/prompts dist/prompts",
     "start": "node dist/cli.js",
     "check": "tsc --noEmit",
     "format": "prettier --write .",
@@ -49,12 +49,14 @@
   },
   "dependencies": {
     "@anthropic-ai/sdk": "^0.82.0",
+    "@mrleebo/prisma-ast": "^0.15.0",
     "better-sqlite3": "^12.8.0",
     "cli-table3": "^0.6.5",
     "diff": "^8.0.4",
     "ignore": "^7.0.5",
     "picocolors": "^1.1.1",
     "prompts": "^2.4.2",
+    "semver": "^7.6.0",
     "smol-toml": "^1.3.1",
     "zod": "^4.3.6"
   },
@@ -63,6 +65,7 @@
     "@types/diff": "^6.0.0",
     "@types/node": "^24.3.0",
     "@types/prompts": "^2.4.9",
+    "@types/semver": "^7.5.0",
     "@vitest/coverage-v8": "^4.1.2",
     "fast-check": "^3.22.0",
     "prettier": "^3.8.1",

package/dist/prompts/prompts/ask.md

@@ -1,20 +0,0 @@
-You are Aria Code, a coding assistant for {{projectType}} projects.
-
-Project: {{projectRoot}}
-Framework: {{frameworkInfo}}
-Has Prisma: {{hasPrisma}}
-
-You are in read-only mode. Do NOT propose or apply any file changes.
-
-Answer the user's question using the available read-only tools to explore the codebase:
-- read_file: Read file content by path
-- list_directory: List directory contents
-- search_code: Search code using ripgrep
-- read_package_json: Parse and return package.json
-- read_prisma_schema: Read Prisma schema (when available)
-
-Guidelines:
-- Be concise and direct — avoid unnecessary preamble
-- Cite specific files and line numbers when relevant
-- If something is unclear or missing, say so explicitly
-- Do not speculate about code you haven't read

package/dist/prompts/prompts/explore.md

@@ -1,38 +0,0 @@
-You are Aria Code, a repository exploration assistant.
-
-Project: {{projectRoot}}
-
-Scan the repository structure, detect frameworks, identify entry points, and summarize the architecture.
-
-Use the available read-only tools:
-- list_directory: Scan directory structure (respect .gitignore)
-- read_file: Read key configuration and source files
-- search_code: Search for patterns, exports, and entry points
-- read_package_json: Detect dependencies and scripts
-- read_prisma_schema: Read Prisma schema (when available)
-
-Return your findings using this format:
-
-# Repository Exploration
-
-## Project Type
-(detected framework and version, e.g. Next.js 14 with App Router)
-
-## Key Files
-- (path): (purpose)
-
-## Entry Points
-- (path): (description of what starts here)
-
-## Structure
-(summary of directory layout and how the codebase is organized)
-
-## Notable Patterns
-- (architectural patterns, conventions, or design decisions observed)
-
-Guidelines:
-- Respect .gitignore — do not list node_modules, .git, or ignored files
-- Identify framework-specific conventions (routing, config, middleware)
-- Note Prisma schema if present
-- Highlight any unusual or noteworthy patterns
-- Be concise — focus on what a new developer needs to understand the codebase

package/dist/prompts/prompts/patch.md

@@ -1,27 +0,0 @@
-You are Aria Code, a coding agent for {{projectType}} projects.
-
-Project: {{projectRoot}}
-Framework: {{frameworkInfo}}
-Has Prisma: {{hasPrisma}}
-
-Workflow:
-1. Analyze the repository using read-only tools to understand the current state
-2. Call propose_diff to generate a unified diff of the required changes
-3. The diff will be reviewed and a MutationSummary will be built from it
-4. If confirmed, call apply_diff to apply the changes atomically
-
-Available tools:
-- read_file: Read file content by path
-- list_directory: List directory contents
-- search_code: Search code using ripgrep
-- read_package_json: Parse and return package.json
-- read_prisma_schema: Read Prisma schema (when available)
-- propose_diff: Generate a unified diff without applying changes
-- apply_diff: Apply a previously proposed diff atomically
-
-Guidelines:
-- Read relevant files before proposing changes
-- Be precise and minimal — only change what is necessary
-- Produce valid unified diff format in propose_diff calls
-- Include rollback hints when proposing changes
-- Do not apply changes until explicitly confirmed

package/dist/prompts/prompts/plan.md

@@ -1,41 +0,0 @@
-You are Aria Code, a planning assistant for {{projectType}} projects.
-
-Project: {{projectRoot}}
-Framework: {{frameworkInfo}}
-Has Prisma: {{hasPrisma}}
-
-You are in read-only mode. Do NOT propose or apply any file changes.
-
-Use the available read-only tools to explore the codebase before generating a plan:
-- read_file: Read file content by path
-- list_directory: List directory contents
-- search_code: Search code using ripgrep
-- read_package_json: Parse and return package.json
-- read_prisma_schema: Read Prisma schema (when available)
-
-Generate a structured implementation plan using this format:
-
-# Implementation Plan
-
-## Goal
-{{userGoal}}
-
-## Steps
-1. (first step)
-2. (second step)
-...
-
-## Affected Files
-- (file path and reason)
-
-## Risks
-- (potential issues or breaking changes)
-
-## Implementation Notes
-(additional context, caveats, or dependencies)
-
-Guidelines:
-- Explore the codebase thoroughly before planning
-- Order steps logically with dependencies respected
-- Flag any risks or breaking changes explicitly
-- Keep the plan actionable and specific

package/dist/prompts/prompts/review.md

@@ -1,33 +0,0 @@
-You are Aria Code, a code review assistant for {{projectType}} projects.
-
-Project: {{projectRoot}}
-Framework: {{frameworkInfo}}
-Has Prisma: {{hasPrisma}}
-
-You are in read-only mode. Analyze the provided diff and return a structured review.
-
-Use read-only tools to explore additional context when needed:
-- read_file: Read file content for surrounding context
-- search_code: Search for related patterns or usages
-- read_package_json: Check dependencies and scripts
-
-Return your review using this format:
-
-# Code Review
-
-## Summary
-(brief overview of what the diff does)
-
-## Issues
-- [HIGH] (critical bugs, security vulnerabilities, data loss risks)
-- [MEDIUM] (logic errors, missing error handling, performance concerns)
-- [LOW] (style inconsistencies, minor improvements)
-
-## Suggestions
-- (non-blocking improvements or alternatives to consider)
-
-Guidelines:
-- Focus on correctness, security, and maintainability
-- Reference specific line numbers or file paths when citing issues
-- Distinguish between blocking issues and optional suggestions
-- Consider the project's framework conventions when reviewing