npm - @audit-tools/shared - Versions diffs - 0.1.0 → 0.5.0 - Mend

@audit-tools/shared 0.1.0 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (53) hide show

package/dist/git.d.ts +18 -0
package/dist/git.d.ts.map +1 -0
package/dist/git.js +63 -0
package/dist/git.js.map +1 -0
package/dist/index.d.ts +17 -2
package/dist/index.d.ts.map +1 -1
package/dist/index.js +9 -1
package/dist/index.js.map +1 -1
package/dist/observability/runLog.d.ts +31 -0
package/dist/observability/runLog.d.ts.map +1 -0
package/dist/observability/runLog.js +40 -0
package/dist/observability/runLog.js.map +1 -0
package/dist/quota/errorParsing.d.ts.map +1 -1
package/dist/quota/errorParsing.js +13 -1
package/dist/quota/errorParsing.js.map +1 -1
package/dist/quota/limits.d.ts.map +1 -1
package/dist/quota/limits.js +2 -13
package/dist/quota/limits.js.map +1 -1
package/dist/tokens.d.ts +29 -0
package/dist/tokens.d.ts.map +1 -0
package/dist/tokens.js +59 -0
package/dist/tokens.js.map +1 -0
package/dist/tooling/analyzerDeps.d.ts +43 -0
package/dist/tooling/analyzerDeps.d.ts.map +1 -0
package/dist/tooling/analyzerDeps.js +112 -0
package/dist/tooling/analyzerDeps.js.map +1 -0
package/dist/tooling/exec.d.ts +48 -0
package/dist/tooling/exec.d.ts.map +1 -0
package/dist/tooling/exec.js +108 -0
package/dist/tooling/exec.js.map +1 -0
package/dist/tooling/repoConventions.d.ts +21 -0
package/dist/tooling/repoConventions.d.ts.map +1 -0
package/dist/tooling/repoConventions.js +162 -0
package/dist/tooling/repoConventions.js.map +1 -0
package/dist/tooling/testCommand.d.ts +17 -0
package/dist/tooling/testCommand.d.ts.map +1 -0
package/dist/tooling/testCommand.js +78 -0
package/dist/tooling/testCommand.js.map +1 -0
package/dist/types/finding.d.ts +80 -0
package/dist/types/finding.d.ts.map +1 -0
package/dist/types/finding.js +8 -0
package/dist/types/finding.js.map +1 -0
package/dist/types/graph.d.ts +6 -0
package/dist/types/graph.d.ts.map +1 -1
package/dist/types/remediationOutcome.d.ts +21 -0
package/dist/types/remediationOutcome.d.ts.map +1 -0
package/dist/types/remediationOutcome.js +7 -0
package/dist/types/remediationOutcome.js.map +1 -0
package/dist/types/sessionConfig.d.ts +46 -0
package/dist/types/sessionConfig.d.ts.map +1 -1
package/dist/types/sessionConfig.js +22 -0
package/dist/types/sessionConfig.js.map +1 -1
package/package.json +41 -29

package/dist/tooling/analyzerDeps.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"analyzerDeps.js","sourceRoot":"","sources":["../../src/tooling/analyzerDeps.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,WAAW,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC5E,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAClC,OAAO,EAAE,UAAU,EAAyB,MAAM,WAAW,CAAC;AAsB9D,0CAA0C;AAC1C,MAAM,UAAU,iBAAiB;IAC/B,OAAO,IAAI,CAAC,OAAO,EAAE,EAAE,cAAc,EAAE,gBAAgB,CAAC,CAAC;AAC3D,CAAC;AAOD,8DAA8D;AAC9D,MAAM,UAAU,iBAAiB,CAAC,IAAY;IAC5C,MAAM,EAAE,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;IACjC,qEAAqE;IACrE,IAAI,EAAE,GAAG,CAAC,EAAE,CAAC;QACX,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC;IAClE,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC;AACxB,CAAC;AAED,6EAA6E;AAC7E,+EAA+E;AAC/E,SAAS,QAAQ,CAAC,IAAY,EAAE,OAAe;IAC7C,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,IAAI,OAAO,EAAE,CAAC;AAClD,CAAC;AAED,SAAS,YAAY,CAAC,UAAkB,EAAE,IAAY;IACpD,OAAO,IAAI,CAAC,UAAU,EAAE,cAAc,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;AAC9D,CAAC;AAED,SAAS,kBAAkB,CAAC,UAAkB;IAC5C,OAAO,UAAU,CAAC,IAAI,CAAC,UAAU,EAAE,cAAc,CAAC,CAAC,CAAC;AACtD,CAAC;AAED,SAAS,WAAW,CAClB,IAAY,EACZ,OAA2B,EAC3B,SAAiB;IAEjB,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,OAAO,SAAS,CAAC;IAE7C,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC;QAC5D,MAAM,UAAU,GAAG,YAAY,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC;QAClD,OAAO,kBAAkB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,CAAC;IACjE,CAAC;IAED,wEAAwE;IACxE,0EAA0E;IAC1E,MAAM,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,GAAG,CAAC;IAC9C,IAAI,OAAiB,CAAC;IACtB,IAAI,CAAC;QACH,OAAO,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,MAAM,OAAO,GAAG,OAAO;SACpB,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;SAC3C,IAAI,EAAE;SACN,OAAO,EAAE,CAAC;IACb,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,MAAM,UAAU,GAAG,YAAY,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,EAAE,IAAI,CAAC,CAAC;QAC9D,IAAI,kBAAkB,CAAC,UAAU,CAAC;YAAE,OAAO,UAAU,CAAC;IACxD,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAChC,GAAW,EACX,QAAgB,EAChB,UAAqC,EAAE;IAEvC,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,iBAAiB,CAAC,GAAG,CAAC,CAAC;IAEjD,MAAM,cAAc,GAAG,IAAI,CAAC,QAAQ,EAAE,cAAc,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1E,IAAI,kBAAkB,CAAC,cAAc,CAAC,EAAE,CAAC;QACvC,OAAO,EAAE,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC;IAC/C,CAAC;IAED,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,iBAAiB,EAAE,CAAC;IAC3D,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;IACrD,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;IACxC,CAAC;IAED,OAAO,EAAE,GAAG,EAAE,QAAQ,EAAE,CAAC;AAC3B,CAAC;AAcD;;;;GAIG;AACH,MAAM,UAAU,cAAc,CAC5B,YAAoB,EACpB,UAAiC,EAAE;IAEnC,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,iBAAiB,CAAC,YAAY,CAAC,CAAC;IAC1D,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,4DAA4D,EAAE,CAAC;IAC5F,CAAC;IACD,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,iBAAiB,EAAE,CAAC;IAC3D,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC;IAC5D,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE,CAAC,UAAU,CAAC,IAAI,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC;IAEtE,IAAI,CAAC;QACH,SAAS,CAAC,UAAU,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC3C,MAAM,YAAY,GAAG,IAAI,CAAC,UAAU,EAAE,cAAc,CAAC,CAAC;QACtD,IAAI,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YAC9B,aAAa,CACX,YAAY,EACZ,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,4BAA4B,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,GAAG,IAAI,EAC5E,MAAM,CACP,CAAC;QACJ,CAAC;QACD,MAAM,MAAM,GAAG,GAAG,CAChB,CAAC,KAAK,EAAE,SAAS,EAAE,YAAY,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,CAAC,EAC3E,UAAU,CACX,CAAC;QACF,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,IAAI,2BAA2B,MAAM,CAAC,MAAM,EAAE;aAC1E,CAAC;QACJ,CAAC;QACD,MAAM,UAAU,GAAG,YAAY,CAAC,UAAU,EAAE,IAAI,CAAC,CAAC;QAClD,IAAI,CAAC,kBAAkB,CAAC,UAAU,CAAC,EAAE,CAAC;YACpC,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,mCAAmC,EAAE,CAAC;QACnE,CAAC;QACD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC;IACxC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC;IACtF,CAAC;AACH,CAAC"}

package/dist/tooling/exec.d.ts ADDED Viewed

@@ -0,0 +1,48 @@
+import { type StdioOptions } from "node:child_process";
+export interface RunTrackedOptions {
+    cwd?: string;
+    env?: NodeJS.ProcessEnv;
+    encoding?: BufferEncoding;
+    timeout?: number;
+    input?: string;
+    maxBuffer?: number;
+    windowsHide?: boolean;
+    stdio?: StdioOptions;
+    /**
+     * Wrap the command as `<opentoken> wrap <argv>`. Pass the opentoken binary
+     * name or path. When unset, no wrapping is applied.
+     */
+    opentoken?: string;
+    /** Override the platform; for tests. Defaults to `process.platform`. */
+    platform?: NodeJS.Platform;
+}
+export interface RunTrackedResult {
+    status: number | null;
+    stdout: string;
+    stderr: string;
+    /** The argv actually spawned, after platform/opentoken wrapping. */
+    argv: string[];
+    error?: Error;
+}
+/** Quote a single argv token for a `cmd.exe /c "..."` command line. */
+export declare function quoteForCmd(arg: string): string;
+/**
+ * On Windows, package-manager shims (`npm`/`npx`/`pnpm`/`yarn`) are `.cmd`
+ * batch files that `spawn` cannot launch without a shell. Map them to their
+ * `.cmd` form so the batch-wrapping path below applies. Anything already
+ * carrying an executable extension is returned unchanged.
+ */
+export declare function platformCommand(command: string, platform?: NodeJS.Platform): string;
+/**
+ * Resolve a logical argv into the concrete `[command, ...args]` that should be
+ * spawned on this platform, applying package-manager shim mapping, optional
+ * opentoken wrapping, and Windows batch wrapping. Exposed for callers that
+ * spawn asynchronously and only need the resolved argv.
+ */
+export declare function resolveExecArgv(argv: string[], options?: {
+    opentoken?: string;
+    platform?: NodeJS.Platform;
+}): string[];
+/** Run a command synchronously. argv[0] is the command, the rest are args. */
+export declare function runTracked(argv: string[], options?: RunTrackedOptions): RunTrackedResult;
+//# sourceMappingURL=exec.d.ts.map

package/dist/tooling/exec.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"exec.d.ts","sourceRoot":"","sources":["../../src/tooling/exec.ts"],"names":[],"mappings":"AAAA,OAAO,EAAa,KAAK,YAAY,EAAE,MAAM,oBAAoB,CAAC;AASlE,MAAM,WAAW,iBAAiB;IAChC,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;IACxB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,KAAK,CAAC,EAAE,YAAY,CAAC;IACrB;;;OAGG;IACH,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,wEAAwE;IACxE,QAAQ,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC;CAC5B;AAED,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,oEAAoE;IACpE,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,KAAK,CAAC,EAAE,KAAK,CAAC;CACf;AAID,uEAAuE;AACvE,wBAAgB,WAAW,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAI/C;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,CAC7B,OAAO,EAAE,MAAM,EACf,QAAQ,GAAE,MAAM,CAAC,QAA2B,GAC3C,MAAM,CAKR;AAqCD;;;;;GAKG;AACH,wBAAgB,eAAe,CAC7B,IAAI,EAAE,MAAM,EAAE,EACd,OAAO,GAAE;IAAE,SAAS,CAAC,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAA;CAAO,GAC/D,MAAM,EAAE,CAWV;AAOD,8EAA8E;AAC9E,wBAAgB,UAAU,CACxB,IAAI,EAAE,MAAM,EAAE,EACd,OAAO,GAAE,iBAAsB,GAC9B,gBAAgB,CAgClB"}

package/dist/tooling/exec.js ADDED Viewed

@@ -0,0 +1,108 @@
+import { spawnSync } from "node:child_process";
+const SHELL_SHIM_COMMANDS = new Set(["npm", "npx", "pnpm", "yarn"]);
+/** Quote a single argv token for a `cmd.exe /c "..."` command line. */
+export function quoteForCmd(arg) {
+    if (arg.length === 0)
+        return '""';
+    if (!/[\s"]/u.test(arg))
+        return arg;
+    return `"${arg.replace(/"/g, '""')}"`;
+}
+/**
+ * On Windows, package-manager shims (`npm`/`npx`/`pnpm`/`yarn`) are `.cmd`
+ * batch files that `spawn` cannot launch without a shell. Map them to their
+ * `.cmd` form so the batch-wrapping path below applies. Anything already
+ * carrying an executable extension is returned unchanged.
+ */
+export function platformCommand(command, platform = process.platform) {
+    if (platform !== "win32")
+        return command;
+    if (/\.(?:cmd|bat|com|exe)$/iu.test(command))
+        return command;
+    if (SHELL_SHIM_COMMANDS.has(command))
+        return `${command}.cmd`;
+    return command;
+}
+function isWindowsBatch(command, platform) {
+    return platform === "win32" && /\.(cmd|bat)$/iu.test(command);
+}
+function wrapForWindowsBatch(command, args, platform) {
+    if (!isWindowsBatch(command, platform))
+        return { command, args };
+    return {
+        command: process.env.ComSpec ?? "cmd.exe",
+        args: ["/d", "/s", "/c", [command, ...args].map(quoteForCmd).join(" ")],
+    };
+}
+function quoteForOpenTokenCmd(value) {
+    if (/^[A-Za-z0-9_./:=@+-]+$/u.test(value))
+        return value;
+    return `"${value.replace(/(["^&|<>%])/g, "^$1")}"`;
+}
+function wrapForOpenToken(command, args, opentoken, platform) {
+    if (platform === "win32") {
+        const shell = process.env.ComSpec ?? "cmd.exe";
+        const inner = [command, ...args].map(quoteForOpenTokenCmd).join(" ");
+        return { command: shell, args: ["/d", "/s", "/c", `${opentoken} wrap ${inner}`] };
+    }
+    return { command: opentoken, args: ["wrap", command, ...args] };
+}
+/**
+ * Resolve a logical argv into the concrete `[command, ...args]` that should be
+ * spawned on this platform, applying package-manager shim mapping, optional
+ * opentoken wrapping, and Windows batch wrapping. Exposed for callers that
+ * spawn asynchronously and only need the resolved argv.
+ */
+export function resolveExecArgv(argv, options = {}) {
+    if (argv.length === 0)
+        return [];
+    const platform = options.platform ?? process.platform;
+    const command = platformCommand(argv[0], platform);
+    const args = argv.slice(1);
+    if (options.opentoken) {
+        const wrapped = wrapForOpenToken(command, args, options.opentoken, platform);
+        return [wrapped.command, ...wrapped.args];
+    }
+    const wrapped = wrapForWindowsBatch(command, args, platform);
+    return [wrapped.command, ...wrapped.args];
+}
+function toText(value) {
+    if (value == null)
+        return "";
+    return typeof value === "string" ? value : value.toString();
+}
+/** Run a command synchronously. argv[0] is the command, the rest are args. */
+export function runTracked(argv, options = {}) {
+    if (argv.length === 0) {
+        return {
+            status: null,
+            stdout: "",
+            stderr: "",
+            argv: [],
+            error: new Error("runTracked requires a non-empty argv"),
+        };
+    }
+    const resolved = resolveExecArgv(argv, {
+        opentoken: options.opentoken,
+        platform: options.platform,
+    });
+    const result = spawnSync(resolved[0], resolved.slice(1), {
+        cwd: options.cwd,
+        env: options.env,
+        encoding: options.encoding ?? "utf8",
+        timeout: options.timeout,
+        input: options.input,
+        maxBuffer: options.maxBuffer,
+        windowsHide: options.windowsHide ?? true,
+        stdio: options.stdio,
+        shell: false,
+    });
+    return {
+        status: result.status,
+        stdout: toText(result.stdout),
+        stderr: toText(result.stderr),
+        argv: resolved,
+        error: result.error,
+    };
+}
+//# sourceMappingURL=exec.js.map

package/dist/tooling/exec.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"exec.js","sourceRoot":"","sources":["../../src/tooling/exec.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAqB,MAAM,oBAAoB,CAAC;AAoClE,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC;AAEpE,uEAAuE;AACvE,MAAM,UAAU,WAAW,CAAC,GAAW;IACrC,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAClC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IACpC,OAAO,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC;AACxC,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,eAAe,CAC7B,OAAe,EACf,WAA4B,OAAO,CAAC,QAAQ;IAE5C,IAAI,QAAQ,KAAK,OAAO;QAAE,OAAO,OAAO,CAAC;IACzC,IAAI,0BAA0B,CAAC,IAAI,CAAC,OAAO,CAAC;QAAE,OAAO,OAAO,CAAC;IAC7D,IAAI,mBAAmB,CAAC,GAAG,CAAC,OAAO,CAAC;QAAE,OAAO,GAAG,OAAO,MAAM,CAAC;IAC9D,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,cAAc,CAAC,OAAe,EAAE,QAAyB;IAChE,OAAO,QAAQ,KAAK,OAAO,IAAI,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;AAChE,CAAC;AAED,SAAS,mBAAmB,CAC1B,OAAe,EACf,IAAc,EACd,QAAyB;IAEzB,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,QAAQ,CAAC;QAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IACjE,OAAO;QACL,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,SAAS;QACzC,IAAI,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;KACxE,CAAC;AACJ,CAAC;AAED,SAAS,oBAAoB,CAAC,KAAa;IACzC,IAAI,yBAAyB,CAAC,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,KAAK,CAAC;IACxD,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC,cAAc,EAAE,KAAK,CAAC,GAAG,CAAC;AACrD,CAAC;AAED,SAAS,gBAAgB,CACvB,OAAe,EACf,IAAc,EACd,SAAiB,EACjB,QAAyB;IAEzB,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;QACzB,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,SAAS,CAAC;QAC/C,MAAM,KAAK,GAAG,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,CAAC,GAAG,CAAC,oBAAoB,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACrE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,GAAG,SAAS,SAAS,KAAK,EAAE,CAAC,EAAE,CAAC;IACpF,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,MAAM,EAAE,OAAO,EAAE,GAAG,IAAI,CAAC,EAAE,CAAC;AAClE,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,eAAe,CAC7B,IAAc,EACd,UAA8D,EAAE;IAEhE,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IACjC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC;IACtD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;IACnD,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC3B,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QACtB,MAAM,OAAO,GAAG,gBAAgB,CAAC,OAAO,EAAE,IAAI,EAAE,OAAO,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;QAC7E,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5C,CAAC;IACD,MAAM,OAAO,GAAG,mBAAmB,CAAC,OAAO,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC;IAC7D,OAAO,CAAC,OAAO,CAAC,OAAO,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;AAC5C,CAAC;AAED,SAAS,MAAM,CAAC,KAAyC;IACvD,IAAI,KAAK,IAAI,IAAI;QAAE,OAAO,EAAE,CAAC;IAC7B,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,EAAE,CAAC;AAC9D,CAAC;AAED,8EAA8E;AAC9E,MAAM,UAAU,UAAU,CACxB,IAAc,EACd,UAA6B,EAAE;IAE/B,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO;YACL,MAAM,EAAE,IAAI;YACZ,MAAM,EAAE,EAAE;YACV,MAAM,EAAE,EAAE;YACV,IAAI,EAAE,EAAE;YACR,KAAK,EAAE,IAAI,KAAK,CAAC,sCAAsC,CAAC;SACzD,CAAC;IACJ,CAAC;IACD,MAAM,QAAQ,GAAG,eAAe,CAAC,IAAI,EAAE;QACrC,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,QAAQ,EAAE,OAAO,CAAC,QAAQ;KAC3B,CAAC,CAAC;IACH,MAAM,MAAM,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE;QACvD,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,GAAG,EAAE,OAAO,CAAC,GAAG;QAChB,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,MAAM;QACpC,OAAO,EAAE,OAAO,CAAC,OAAO;QACxB,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,IAAI;QACxC,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,KAAK,EAAE,KAAK;KACb,CAAC,CAAC;IACH,OAAO;QACL,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;QAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;QAC7B,IAAI,EAAE,QAAQ;QACd,KAAK,EAAE,MAAM,CAAC,KAAK;KACpB,CAAC;AACJ,CAAC"}

package/dist/tooling/repoConventions.d.ts ADDED Viewed

@@ -0,0 +1,21 @@
+/**
+ * Lightweight, deterministic detection of a repository's house style so the
+ * remediator's worker prompts can say "match the surrounding code" with
+ * specifics (formatter, linter, test framework, module style, and a sampled
+ * snippet). Best-effort and side-effect-free: every probe is guarded and an
+ * undetected field is simply omitted. Phase 7A.
+ */
+export interface RepoConventions {
+    formatter?: string;
+    linter?: string;
+    test_framework?: string;
+    module_style?: "esm" | "commonjs";
+    indentation?: string;
+    quote_style?: "single" | "double";
+    /** A short excerpt from a representative source file. */
+    sample_snippet?: string;
+}
+export declare function detectRepoConventions(root: string): RepoConventions;
+/** Render a prompt block from detected conventions, or "" if nothing detected. */
+export declare function formatRepoConventions(conventions: RepoConventions): string;
+//# sourceMappingURL=repoConventions.d.ts.map

package/dist/tooling/repoConventions.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"repoConventions.d.ts","sourceRoot":"","sources":["../../src/tooling/repoConventions.ts"],"names":[],"mappings":"AAGA;;;;;;GAMG;AAEH,MAAM,WAAW,eAAe;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,YAAY,CAAC,EAAE,KAAK,GAAG,UAAU,CAAC;IAClC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,QAAQ,GAAG,QAAQ,CAAC;IAClC,yDAAyD;IACzD,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AA4ID,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG,eAAe,CAqBnE;AAED,kFAAkF;AAClF,wBAAgB,qBAAqB,CAAC,WAAW,EAAE,eAAe,GAAG,MAAM,CAuB1E"}

package/dist/tooling/repoConventions.js ADDED Viewed

@@ -0,0 +1,162 @@
+import { existsSync, readFileSync, readdirSync } from "node:fs";
+import { join } from "node:path";
+const SAMPLE_DIRECTORIES = ["src", "lib", "app", "."];
+const SAMPLE_EXTENSIONS = [".ts", ".tsx", ".js", ".mjs", ".py", ".go"];
+const SAMPLE_MAX_LINES = 24;
+function readJson(path) {
+    try {
+        return JSON.parse(readFileSync(path, "utf8"));
+    }
+    catch {
+        return undefined;
+    }
+}
+function readText(path) {
+    try {
+        return readFileSync(path, "utf8");
+    }
+    catch {
+        return undefined;
+    }
+}
+function hasDependency(pkg, name) {
+    if (!pkg)
+        return false;
+    for (const field of ["dependencies", "devDependencies", "peerDependencies"]) {
+        const deps = pkg[field];
+        if (deps && typeof deps === "object" && name in deps) {
+            return true;
+        }
+    }
+    return false;
+}
+function detectNodeConventions(root, pkg, conventions) {
+    conventions.module_style = pkg.type === "module" ? "esm" : "commonjs";
+    if (hasDependency(pkg, "prettier") ||
+        ["", ".json", ".js", ".cjs", ".yaml", ".yml"].some((extension) => existsSync(join(root, `.prettierrc${extension}`)))) {
+        conventions.formatter = "prettier";
+    }
+    if (hasDependency(pkg, "eslint") ||
+        [".eslintrc", ".eslintrc.json", ".eslintrc.cjs", ".eslintrc.js", "eslint.config.js", "eslint.config.mjs"].some((file) => existsSync(join(root, file)))) {
+        conventions.linter = "eslint";
+    }
+    else if (hasDependency(pkg, "biome") || hasDependency(pkg, "@biomejs/biome")) {
+        conventions.linter = "biome";
+    }
+    for (const framework of ["vitest", "jest", "mocha", "ava"]) {
+        if (hasDependency(pkg, framework)) {
+            conventions.test_framework = framework;
+            break;
+        }
+    }
+    const scripts = pkg.scripts;
+    const testScript = typeof scripts?.test === "string" ? scripts.test : "";
+    if (!conventions.test_framework && /node\s+--test|node:test/.test(testScript)) {
+        conventions.test_framework = "node:test";
+    }
+}
+function detectPythonConventions(root, conventions) {
+    const pyproject = readText(join(root, "pyproject.toml")) ?? "";
+    if (/\[tool\.black\]/.test(pyproject))
+        conventions.formatter = "black";
+    else if (/\[tool\.ruff(?:\.format)?\]/.test(pyproject))
+        conventions.formatter = "ruff";
+    if (/\[tool\.ruff\b/.test(pyproject))
+        conventions.linter = "ruff";
+    else if (existsSync(join(root, ".flake8")) || /\[tool\.flake8\]/.test(pyproject))
+        conventions.linter = "flake8";
+    if (/\[tool\.pytest/.test(pyproject) ||
+        existsSync(join(root, "pytest.ini")) ||
+        existsSync(join(root, "conftest.py"))) {
+        conventions.test_framework = "pytest";
+    }
+}
+/** Find one representative source file and sample its leading lines. */
+function sampleSourceFile(root) {
+    for (const directory of SAMPLE_DIRECTORIES) {
+        const absolute = directory === "." ? root : join(root, directory);
+        let entries;
+        try {
+            entries = readdirSync(absolute);
+        }
+        catch {
+            continue;
+        }
+        const match = entries
+            .filter((name) => SAMPLE_EXTENSIONS.some((extension) => name.endsWith(extension)))
+            .filter((name) => !/\.(test|spec|d)\./.test(name))
+            .sort()[0];
+        if (match) {
+            const content = readText(join(absolute, match));
+            if (content) {
+                return content.split(/\r?\n/).slice(0, SAMPLE_MAX_LINES).join("\n");
+            }
+        }
+    }
+    return undefined;
+}
+function detectStyleFromSnippet(snippet, conventions) {
+    const lines = snippet.split(/\r?\n/);
+    const indented = lines.filter((line) => /^\s+\S/.test(line));
+    if (indented.some((line) => line.startsWith("\t"))) {
+        conventions.indentation = "tabs";
+    }
+    else {
+        const widths = indented
+            .map((line) => line.match(/^ +/)?.[0].length ?? 0)
+            .filter((width) => width > 0);
+        if (widths.length > 0) {
+            conventions.indentation = `${Math.min(...widths)} spaces`;
+        }
+    }
+    const single = (snippet.match(/'/g) ?? []).length;
+    const double = (snippet.match(/"/g) ?? []).length;
+    if (single > 0 || double > 0) {
+        conventions.quote_style = single >= double ? "single" : "double";
+    }
+}
+export function detectRepoConventions(root) {
+    const conventions = {};
+    const pkg = readJson(join(root, "package.json"));
+    if (pkg) {
+        detectNodeConventions(root, pkg, conventions);
+    }
+    if (existsSync(join(root, "pyproject.toml")) ||
+        existsSync(join(root, "pytest.ini")) ||
+        existsSync(join(root, "setup.py"))) {
+        detectPythonConventions(root, conventions);
+    }
+    const snippet = sampleSourceFile(root);
+    if (snippet) {
+        conventions.sample_snippet = snippet;
+        detectStyleFromSnippet(snippet, conventions);
+    }
+    return conventions;
+}
+/** Render a prompt block from detected conventions, or "" if nothing detected. */
+export function formatRepoConventions(conventions) {
+    const lines = [];
+    if (conventions.formatter)
+        lines.push(`- Formatter: ${conventions.formatter}`);
+    if (conventions.linter)
+        lines.push(`- Linter: ${conventions.linter}`);
+    if (conventions.test_framework)
+        lines.push(`- Test framework: ${conventions.test_framework}`);
+    if (conventions.module_style)
+        lines.push(`- Module style: ${conventions.module_style}`);
+    if (conventions.indentation)
+        lines.push(`- Indentation: ${conventions.indentation}`);
+    if (conventions.quote_style)
+        lines.push(`- String quotes: ${conventions.quote_style}`);
+    if (lines.length === 0 && !conventions.sample_snippet) {
+        return "";
+    }
+    let block = "REPOSITORY CONVENTIONS (match the surrounding code):\n";
+    if (lines.length > 0)
+        block += `${lines.join("\n")}\n`;
+    if (conventions.sample_snippet) {
+        block += `\nRepresentative house-style snippet:\n\`\`\`\n${conventions.sample_snippet}\n\`\`\`\n`;
+    }
+    return block.trim();
+}
+//# sourceMappingURL=repoConventions.js.map

package/dist/tooling/repoConventions.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"repoConventions.js","sourceRoot":"","sources":["../../src/tooling/repoConventions.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAChE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAqBjC,MAAM,kBAAkB,GAAG,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,CAAU,CAAC;AAC/D,MAAM,iBAAiB,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK,CAAU,CAAC;AAChF,MAAM,gBAAgB,GAAG,EAAE,CAAC;AAE5B,SAAS,QAAQ,CAAC,IAAY;IAC5B,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAA4B,CAAC;IAC3E,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,SAAS,QAAQ,CAAC,IAAY;IAC5B,IAAI,CAAC;QACH,OAAO,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IACpC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,SAAS,aAAa,CAAC,GAAwC,EAAE,IAAY;IAC3E,IAAI,CAAC,GAAG;QAAE,OAAO,KAAK,CAAC;IACvB,KAAK,MAAM,KAAK,IAAI,CAAC,cAAc,EAAE,iBAAiB,EAAE,kBAAkB,CAAC,EAAE,CAAC;QAC5E,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC;QACxB,IAAI,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,IAAK,IAAe,EAAE,CAAC;YACjE,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,qBAAqB,CAC5B,IAAY,EACZ,GAA4B,EAC5B,WAA4B;IAE5B,WAAW,CAAC,YAAY,GAAG,GAAG,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC;IAEtE,IACE,aAAa,CAAC,GAAG,EAAE,UAAU,CAAC;QAC9B,CAAC,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAC/D,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,cAAc,SAAS,EAAE,CAAC,CAAC,CAClD,EACD,CAAC;QACD,WAAW,CAAC,SAAS,GAAG,UAAU,CAAC;IACrC,CAAC;IACD,IACE,aAAa,CAAC,GAAG,EAAE,QAAQ,CAAC;QAC5B,CAAC,WAAW,EAAE,gBAAgB,EAAE,eAAe,EAAE,cAAc,EAAE,kBAAkB,EAAE,mBAAmB,CAAC,CAAC,IAAI,CAC5G,CAAC,IAAI,EAAE,EAAE,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CACvC,EACD,CAAC;QACD,WAAW,CAAC,MAAM,GAAG,QAAQ,CAAC;IAChC,CAAC;SAAM,IAAI,aAAa,CAAC,GAAG,EAAE,OAAO,CAAC,IAAI,aAAa,CAAC,GAAG,EAAE,gBAAgB,CAAC,EAAE,CAAC;QAC/E,WAAW,CAAC,MAAM,GAAG,OAAO,CAAC;IAC/B,CAAC;IAED,KAAK,MAAM,SAAS,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,EAAE,CAAC;QAC3D,IAAI,aAAa,CAAC,GAAG,EAAE,SAAS,CAAC,EAAE,CAAC;YAClC,WAAW,CAAC,cAAc,GAAG,SAAS,CAAC;YACvC,MAAM;QACR,CAAC;IACH,CAAC;IACD,MAAM,OAAO,GAAG,GAAG,CAAC,OAA8C,CAAC;IACnE,MAAM,UAAU,GAAG,OAAO,OAAO,EAAE,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IACzE,IAAI,CAAC,WAAW,CAAC,cAAc,IAAI,yBAAyB,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9E,WAAW,CAAC,cAAc,GAAG,WAAW,CAAC;IAC3C,CAAC;AACH,CAAC;AAED,SAAS,uBAAuB,CAC9B,IAAY,EACZ,WAA4B;IAE5B,MAAM,SAAS,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC,IAAI,EAAE,CAAC;IAC/D,IAAI,iBAAiB,CAAC,IAAI,CAAC,SAAS,CAAC;QAAE,WAAW,CAAC,SAAS,GAAG,OAAO,CAAC;SAClE,IAAI,6BAA6B,CAAC,IAAI,CAAC,SAAS,CAAC;QAAE,WAAW,CAAC,SAAS,GAAG,MAAM,CAAC;IAEvF,IAAI,gBAAgB,CAAC,IAAI,CAAC,SAAS,CAAC;QAAE,WAAW,CAAC,MAAM,GAAG,MAAM,CAAC;SAC7D,IAAI,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC,IAAI,kBAAkB,CAAC,IAAI,CAAC,SAAS,CAAC;QAC9E,WAAW,CAAC,MAAM,GAAG,QAAQ,CAAC;IAEhC,IACE,gBAAgB,CAAC,IAAI,CAAC,SAAS,CAAC;QAChC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;QACpC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,aAAa,CAAC,CAAC,EACrC,CAAC;QACD,WAAW,CAAC,cAAc,GAAG,QAAQ,CAAC;IACxC,CAAC;AACH,CAAC;AAED,wEAAwE;AACxE,SAAS,gBAAgB,CAAC,IAAY;IACpC,KAAK,MAAM,SAAS,IAAI,kBAAkB,EAAE,CAAC;QAC3C,MAAM,QAAQ,GAAG,SAAS,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;QAClE,IAAI,OAAiB,CAAC;QACtB,IAAI,CAAC;YACH,OAAO,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;QAClC,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QACD,MAAM,KAAK,GAAG,OAAO;aAClB,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CACf,iBAAiB,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC,CAChE;aACA,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,mBAAmB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;aACjD,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACb,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC;YAChD,IAAI,OAAO,EAAE,CAAC;gBACZ,OAAO,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,gBAAgB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACtE,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAS,sBAAsB,CAAC,OAAe,EAAE,WAA4B;IAC3E,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACrC,MAAM,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;IAC7D,IAAI,QAAQ,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC;QACnD,WAAW,CAAC,WAAW,GAAG,MAAM,CAAC;IACnC,CAAC;SAAM,CAAC;QACN,MAAM,MAAM,GAAG,QAAQ;aACpB,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC;aACjD,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;QAChC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtB,WAAW,CAAC,WAAW,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC,SAAS,CAAC;QAC5D,CAAC;IACH,CAAC;IAED,MAAM,MAAM,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IAClD,MAAM,MAAM,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IAClD,IAAI,MAAM,GAAG,CAAC,IAAI,MAAM,GAAG,CAAC,EAAE,CAAC;QAC7B,WAAW,CAAC,WAAW,GAAG,MAAM,IAAI,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC;IACnE,CAAC;AACH,CAAC;AAED,MAAM,UAAU,qBAAqB,CAAC,IAAY;IAChD,MAAM,WAAW,GAAoB,EAAE,CAAC;IACxC,MAAM,GAAG,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC,CAAC;IACjD,IAAI,GAAG,EAAE,CAAC;QACR,qBAAqB,CAAC,IAAI,EAAE,GAAG,EAAE,WAAW,CAAC,CAAC;IAChD,CAAC;IACD,IACE,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC;QACxC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;QACpC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC,EAClC,CAAC;QACD,uBAAuB,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC;IAC7C,CAAC;IAED,MAAM,OAAO,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC;IACvC,IAAI,OAAO,EAAE,CAAC;QACZ,WAAW,CAAC,cAAc,GAAG,OAAO,CAAC;QACrC,sBAAsB,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IAC/C,CAAC;IAED,OAAO,WAAW,CAAC;AACrB,CAAC;AAED,kFAAkF;AAClF,MAAM,UAAU,qBAAqB,CAAC,WAA4B;IAChE,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,WAAW,CAAC,SAAS;QAAE,KAAK,CAAC,IAAI,CAAC,gBAAgB,WAAW,CAAC,SAAS,EAAE,CAAC,CAAC;IAC/E,IAAI,WAAW,CAAC,MAAM;QAAE,KAAK,CAAC,IAAI,CAAC,aAAa,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;IACtE,IAAI,WAAW,CAAC,cAAc;QAC5B,KAAK,CAAC,IAAI,CAAC,qBAAqB,WAAW,CAAC,cAAc,EAAE,CAAC,CAAC;IAChE,IAAI,WAAW,CAAC,YAAY;QAC1B,KAAK,CAAC,IAAI,CAAC,mBAAmB,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC;IAC5D,IAAI,WAAW,CAAC,WAAW;QACzB,KAAK,CAAC,IAAI,CAAC,kBAAkB,WAAW,CAAC,WAAW,EAAE,CAAC,CAAC;IAC1D,IAAI,WAAW,CAAC,WAAW;QACzB,KAAK,CAAC,IAAI,CAAC,oBAAoB,WAAW,CAAC,WAAW,EAAE,CAAC,CAAC;IAE5D,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,cAAc,EAAE,CAAC;QACtD,OAAO,EAAE,CAAC;IACZ,CAAC;IAED,IAAI,KAAK,GAAG,wDAAwD,CAAC;IACrE,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;QAAE,KAAK,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC;IACvD,IAAI,WAAW,CAAC,cAAc,EAAE,CAAC;QAC/B,KAAK,IAAI,kDAAkD,WAAW,CAAC,cAAc,YAAY,CAAC;IACpG,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,EAAE,CAAC;AACtB,CAAC"}

package/dist/tooling/testCommand.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+export interface ProjectCommands {
+    test?: string[];
+    e2e?: string[];
+    build?: string[];
+    lint?: string[];
+}
+/**
+ * Discover the test/e2e/build/lint commands for a repository as argv arrays.
+ *
+ * Node detection (package.json) takes precedence for e2e/build/lint. The test
+ * command prefers `npm test`, but — matching the auditor's prior behavior —
+ * falls through to Go (`go test ./...`) then Python (`python -m pytest`) when
+ * package.json has no usable `test` script or is absent. Absent roles are
+ * omitted from the result.
+ */
+export declare function discoverProjectCommands(root: string): ProjectCommands;
+//# sourceMappingURL=testCommand.d.ts.map

package/dist/tooling/testCommand.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"testCommand.d.ts","sourceRoot":"","sources":["../../src/tooling/testCommand.ts"],"names":[],"mappings":"AASA,MAAM,WAAW,eAAe;IAC9B,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;CACjB;AA2CD;;;;;;;;GAQG;AACH,wBAAgB,uBAAuB,CAAC,IAAI,EAAE,MAAM,GAAG,eAAe,CA8BrE"}

package/dist/tooling/testCommand.js ADDED Viewed

@@ -0,0 +1,78 @@
+import { existsSync, readFileSync } from "node:fs";
+import { join } from "node:path";
+// npm script names, in preference order, for each command role.
+const E2E_SCRIPT_NAMES = [
+    "e2e",
+    "test:e2e",
+    "test:e2e:run",
+    "test:integration",
+    "cypress:run",
+    "playwright",
+    "playwright:test",
+];
+const BUILD_SCRIPT_NAMES = ["build"];
+const LINT_SCRIPT_NAMES = ["lint", "lint:check"];
+function readPackageScripts(root) {
+    const packageJsonPath = join(root, "package.json");
+    if (!existsSync(packageJsonPath))
+        return null;
+    try {
+        const parsed = JSON.parse(readFileSync(packageJsonPath, "utf8"));
+        return parsed && typeof parsed === "object" && parsed.scripts
+            ? parsed.scripts
+            : {};
+    }
+    catch {
+        // Unreadable / malformed package.json: treat as a non-Node project.
+        return null;
+    }
+}
+function pickScript(scripts, names) {
+    for (const name of names) {
+        if (scripts[name] && scripts[name].trim().length > 0) {
+            return ["npm", "run", name];
+        }
+    }
+    return undefined;
+}
+/**
+ * Discover the test/e2e/build/lint commands for a repository as argv arrays.
+ *
+ * Node detection (package.json) takes precedence for e2e/build/lint. The test
+ * command prefers `npm test`, but — matching the auditor's prior behavior —
+ * falls through to Go (`go test ./...`) then Python (`python -m pytest`) when
+ * package.json has no usable `test` script or is absent. Absent roles are
+ * omitted from the result.
+ */
+export function discoverProjectCommands(root) {
+    const result = {};
+    const scripts = readPackageScripts(root);
+    if (scripts) {
+        const testScript = scripts.test?.trim();
+        if (testScript && !/no test specified/i.test(testScript)) {
+            result.test = ["npm", "test"];
+        }
+        const e2e = pickScript(scripts, E2E_SCRIPT_NAMES);
+        if (e2e)
+            result.e2e = e2e;
+        const build = pickScript(scripts, BUILD_SCRIPT_NAMES);
+        if (build)
+            result.build = build;
+        const lint = pickScript(scripts, LINT_SCRIPT_NAMES);
+        if (lint)
+            result.lint = lint;
+    }
+    if (!result.test) {
+        if (existsSync(join(root, "go.mod"))) {
+            result.test = ["go", "test", "./..."];
+            if (!result.build)
+                result.build = ["go", "build", "./..."];
+        }
+        else if (existsSync(join(root, "pyproject.toml")) ||
+            existsSync(join(root, "pytest.ini"))) {
+            result.test = ["python", "-m", "pytest"];
+        }
+    }
+    return result;
+}
+//# sourceMappingURL=testCommand.js.map

package/dist/tooling/testCommand.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"testCommand.js","sourceRoot":"","sources":["../../src/tooling/testCommand.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACnD,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAejC,gEAAgE;AAChE,MAAM,gBAAgB,GAAG;IACvB,KAAK;IACL,UAAU;IACV,cAAc;IACd,kBAAkB;IAClB,aAAa;IACb,YAAY;IACZ,iBAAiB;CAClB,CAAC;AACF,MAAM,kBAAkB,GAAG,CAAC,OAAO,CAAC,CAAC;AACrC,MAAM,iBAAiB,GAAG,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;AAEjD,SAAS,kBAAkB,CAAC,IAAY;IACtC,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC;IACnD,IAAI,CAAC,UAAU,CAAC,eAAe,CAAC;QAAE,OAAO,IAAI,CAAC;IAC9C,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,eAAe,EAAE,MAAM,CAAC,CAE9D,CAAC;QACF,OAAO,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,CAAC,OAAO;YAC3D,CAAC,CAAC,MAAM,CAAC,OAAO;YAChB,CAAC,CAAC,EAAE,CAAC;IACT,CAAC;IAAC,MAAM,CAAC;QACP,oEAAoE;QACpE,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,SAAS,UAAU,CACjB,OAA+B,EAC/B,KAAe;IAEf,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrD,OAAO,CAAC,KAAK,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;QAC9B,CAAC;IACH,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,uBAAuB,CAAC,IAAY;IAClD,MAAM,MAAM,GAAoB,EAAE,CAAC;IACnC,MAAM,OAAO,GAAG,kBAAkB,CAAC,IAAI,CAAC,CAAC;IAEzC,IAAI,OAAO,EAAE,CAAC;QACZ,MAAM,UAAU,GAAG,OAAO,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC;QACxC,IAAI,UAAU,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC;YACzD,MAAM,CAAC,IAAI,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;QAChC,CAAC;QACD,MAAM,GAAG,GAAG,UAAU,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC;QAClD,IAAI,GAAG;YAAE,MAAM,CAAC,GAAG,GAAG,GAAG,CAAC;QAC1B,MAAM,KAAK,GAAG,UAAU,CAAC,OAAO,EAAE,kBAAkB,CAAC,CAAC;QACtD,IAAI,KAAK;YAAE,MAAM,CAAC,KAAK,GAAG,KAAK,CAAC;QAChC,MAAM,IAAI,GAAG,UAAU,CAAC,OAAO,EAAE,iBAAiB,CAAC,CAAC;QACpD,IAAI,IAAI;YAAE,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC;IAC/B,CAAC;IAED,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;QACjB,IAAI,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,EAAE,CAAC;YACrC,MAAM,CAAC,IAAI,GAAG,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;YACtC,IAAI,CAAC,MAAM,CAAC,KAAK;gBAAE,MAAM,CAAC,KAAK,GAAG,CAAC,IAAI,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;QAC7D,CAAC;aAAM,IACL,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC;YACxC,UAAU,CAAC,IAAI,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC,EACpC,CAAC;YACD,MAAM,CAAC,IAAI,GAAG,CAAC,QAAQ,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/types/finding.d.ts ADDED Viewed

@@ -0,0 +1,80 @@
+export type FindingSeverity = "critical" | "high" | "medium" | "low" | "info";
+export type FindingConfidence = "high" | "medium" | "low";
+export interface FindingLocation {
+    path: string;
+    line_start?: number;
+    line_end?: number;
+    symbol?: string;
+    /** Content hash of the file when the finding was planned (remediator). */
+    hash_at_plan_time?: string;
+}
+export interface Finding {
+    id: string;
+    title: string;
+    category: string;
+    severity: FindingSeverity;
+    confidence: FindingConfidence;
+    /** Audit lens; the auditor narrows this to its `Lens` union. */
+    lens: string;
+    summary: string;
+    affected_files: FindingLocation[];
+    impact?: string;
+    likelihood?: string;
+    evidence?: string[];
+    reproduction?: string[];
+    systemic?: boolean;
+    related_findings?: string[];
+    /** Synthesis theme this finding belongs to (Phase 6). */
+    theme_id?: string;
+}
+/** Report-level grouping of findings into parallelizable units of work. */
+export interface WorkBlock {
+    id: string;
+    finding_ids: string[];
+    unit_ids: string[];
+    owned_files: string[];
+    max_severity: FindingSeverity;
+    rationale: string;
+    depends_on: string[];
+}
+/** A synthesis theme: a root cause spanning several findings (Phase 6). */
+export interface FindingTheme {
+    theme_id: string;
+    title: string;
+    root_cause: string;
+    finding_ids: string[];
+    suggested_fix_pattern: string;
+}
+/**
+ * The optional LLM synthesis-narrative payload (Phase 6). Produced by a single
+ * cached host/provider pass over the deterministic findings and merged into
+ * `audit-findings.json`. Omitted entirely when no provider is available.
+ */
+export interface SynthesisNarrative {
+    themes: FindingTheme[];
+    executive_summary?: string;
+    top_risks?: string[];
+}
+export interface AuditFindingsSummary {
+    finding_count: number;
+    work_block_count: number;
+    severity_breakdown: Record<string, number>;
+    audited_file_count: number;
+    excluded_file_count: number;
+    runtime_validation_status_breakdown: Record<string, number>;
+}
+/**
+ * The canonical `audit-findings.json` contract. Deterministic fields are always
+ * present; narrative fields (themes/executive_summary/top_risks) are added by
+ * the optional Phase 6 synthesis-narrative pass and omitted without a provider.
+ */
+export interface AuditFindingsReport {
+    contract_version: string;
+    summary: AuditFindingsSummary;
+    findings: Finding[];
+    work_blocks: WorkBlock[];
+    themes?: FindingTheme[];
+    executive_summary?: string;
+    top_risks?: string[];
+}
+//# sourceMappingURL=finding.d.ts.map

package/dist/types/finding.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"finding.d.ts","sourceRoot":"","sources":["../../src/types/finding.ts"],"names":[],"mappings":"AAOA,MAAM,MAAM,eAAe,GAAG,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAAG,MAAM,CAAC;AAC9E,MAAM,MAAM,iBAAiB,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;AAE1D,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,0EAA0E;IAC1E,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAED,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,eAAe,CAAC;IAC1B,UAAU,EAAE,iBAAiB,CAAC;IAC9B,gEAAgE;IAChE,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,cAAc,EAAE,eAAe,EAAE,CAAC;IAClC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,gBAAgB,CAAC,EAAE,MAAM,EAAE,CAAC;IAC5B,yDAAyD;IACzD,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED,2EAA2E;AAC3E,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,YAAY,EAAE,eAAe,CAAC;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,EAAE,CAAC;CACtB;AAED,2EAA2E;AAC3E,MAAM,WAAW,YAAY;IAC3B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,qBAAqB,EAAE,MAAM,CAAC;CAC/B;AAED;;;;GAIG;AACH,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,YAAY,EAAE,CAAC;IACvB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACtB;AAED,MAAM,WAAW,oBAAoB;IACnC,aAAa,EAAE,MAAM,CAAC;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC3C,kBAAkB,EAAE,MAAM,CAAC;IAC3B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,mCAAmC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC7D;AAED;;;;GAIG;AACH,MAAM,WAAW,mBAAmB;IAClC,gBAAgB,EAAE,MAAM,CAAC;IACzB,OAAO,EAAE,oBAAoB,CAAC;IAC9B,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,WAAW,EAAE,SAAS,EAAE,CAAC;IACzB,MAAM,CAAC,EAAE,YAAY,EAAE,CAAC;IACxB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC;CACtB"}

package/dist/types/finding.js ADDED Viewed

@@ -0,0 +1,8 @@
+// Canonical machine contract for audit findings — the shape that flows from the
+// auditor's `audit-findings.json` into the remediator. Before Phase 0 `Finding`
+// was redefined in each package; this is the single source of truth. The
+// auditor narrows `lens` to its `Lens` union (via Omit) and the remediator uses
+// `Finding` directly. New optional fields (e.g. `theme_id`, added in Phase 6)
+// land here and propagate to both.
+export {};
+//# sourceMappingURL=finding.js.map

package/dist/types/finding.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"finding.js","sourceRoot":"","sources":["../../src/types/finding.ts"],"names":[],"mappings":"AAAA,gFAAgF;AAChF,gFAAgF;AAChF,yEAAyE;AACzE,gFAAgF;AAChF,8EAA8E;AAC9E,mCAAmC"}

package/dist/types/graph.d.ts CHANGED Viewed

@@ -19,5 +19,11 @@ export interface GraphBundle {
         routes?: RouteEdge[];
         [key: string]: unknown;
     };
+    /**
+     * Provenance for the optional graph-enrichment pass: the ids of the language
+     * analyzers whose edges were merged into this bundle (empty/absent when only
+     * the deterministic regex floor was used). See Phase 5 analyzer seam.
+     */
+    analyzers_used?: string[];
 }
 //# sourceMappingURL=graph.d.ts.map

package/dist/types/graph.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"graph.d.ts","sourceRoot":"","sources":["../../src/types/graph.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,UAAU,GAAG,YAAY,CAAC;IACtC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE;QACN,OAAO,CAAC,EAAE,SAAS,EAAE,CAAC;QACtB,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC;QACpB,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;QACzB,MAAM,CAAC,EAAE,SAAS,EAAE,CAAC;QACrB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;KACxB,CAAC;~~CACH~~"}
1	+ {"version":3,"file":"graph.d.ts","sourceRoot":"","sources":["../../src/types/graph.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,UAAU,GAAG,YAAY,CAAC;IACtC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,EAAE;QACN,OAAO,CAAC,EAAE,SAAS,EAAE,CAAC;QACtB,KAAK,CAAC,EAAE,SAAS,EAAE,CAAC;QACpB,UAAU,CAAC,EAAE,SAAS,EAAE,CAAC;QACzB,MAAM,CAAC,EAAE,SAAS,EAAE,CAAC;QACrB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;KACxB,CAAC;IACF;;;;OAIG;IACH,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B"}

package/dist/types/remediationOutcome.d.ts ADDED Viewed

@@ -0,0 +1,21 @@
+export type RemediationOutcomeStatus = "resolved" | "verified_no_change" | "inappropriate" | "ignored" | "blocked";
+export interface RemediationOutcome {
+    finding_id: string;
+    /** Audit lens the finding came from (free string in the wire contract). */
+    lens: string;
+    /** Distinct file extensions of the finding's affected files (e.g. [".ts"]). */
+    file_exts: string[];
+    outcome: RemediationOutcomeStatus;
+    /** How many times the item was sent back for rework before this outcome. */
+    rework_count: number;
+    /** The run's closing-action status (e.g. "success", "failed"). */
+    closing_status: string;
+}
+export interface RemediationOutcomesReport {
+    contract_version: string;
+    total: number;
+    by_outcome: Record<RemediationOutcomeStatus, number>;
+    by_lens: Record<string, Partial<Record<RemediationOutcomeStatus, number>>>;
+    outcomes: RemediationOutcome[];
+}
+//# sourceMappingURL=remediationOutcome.d.ts.map

package/dist/types/remediationOutcome.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"remediationOutcome.d.ts","sourceRoot":"","sources":["../../src/types/remediationOutcome.ts"],"names":[],"mappings":"AAMA,MAAM,MAAM,wBAAwB,GAChC,UAAU,GACV,oBAAoB,GACpB,eAAe,GACf,SAAS,GACT,SAAS,CAAC;AAEd,MAAM,WAAW,kBAAkB;IACjC,UAAU,EAAE,MAAM,CAAC;IACnB,2EAA2E;IAC3E,IAAI,EAAE,MAAM,CAAC;IACb,+EAA+E;IAC/E,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,OAAO,EAAE,wBAAwB,CAAC;IAClC,4EAA4E;IAC5E,YAAY,EAAE,MAAM,CAAC;IACrB,kEAAkE;IAClE,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,yBAAyB;IACxC,gBAAgB,EAAE,MAAM,CAAC;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC,wBAAwB,EAAE,MAAM,CAAC,CAAC;IACrD,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,MAAM,CAAC,wBAAwB,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC;IAC3E,QAAQ,EAAE,kBAAkB,EAAE,CAAC;CAChC"}

package/dist/types/remediationOutcome.js ADDED Viewed

@@ -0,0 +1,7 @@
+// Phase 7B — per-finding remediation outcome capture. The remediator emits one
+// of these per finding into `remediation-outcomes.json` at close time. This is
+// capture/surface only: it records what happened so a human (or a later
+// calibration pass) can see how findings of each lens / file type fared. The
+// auditor does not consume it automatically.
+export {};
+//# sourceMappingURL=remediationOutcome.js.map