@audit-tools/shared 0.1.0 → 0.5.0

package/dist/types/remediationOutcome.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"remediationOutcome.js","sourceRoot":"","sources":["../../src/types/remediationOutcome.ts"],"names":[],"mappings":"AAAA,+EAA+E;AAC/E,+EAA+E;AAC/E,wEAAwE;AACxE,6EAA6E;AAC7E,6CAA6C"}

package/dist/types/sessionConfig.d.ts

@@ -57,6 +57,46 @@ export interface OpenTokenConfig {
     enabled?: boolean;
     command?: string;
 }
+export interface ObservabilityConfig {
+    /** Emit the structured run log (run.log.jsonl). Defaults to true. */
+    run_log?: boolean;
+}
+export interface SynthesisConfig {
+    /**
+     * Generate the optional LLM synthesis narrative (themes, executive summary,
+     * top risks) and append it to `audit-findings.json` / `audit-report.md`.
+     * Defaults to on when a provider/host agent is available; the deterministic
+     * report is unchanged when omitted.
+     */
+    narrative?: boolean;
+}
+export interface GraphConfig {
+    /**
+     * Phase 4B: run the optional, bounded edge-reasoning pass that rewrites the
+     * human-readable `reason` of low-confidence graph edges (never the edge set
+     * itself). Defaults to off; it is a no-op without host-supplied rewrites.
+     */
+    llm_edge_reasoning?: boolean;
+    /** Model override for the edge-reasoning pass (host's choice otherwise). */
+    model?: string;
+}
+/**
+ * Per-analyzer resolution policy for the optional graph-enrichment pass
+ * (`analyzers.<id>`). Resolution order is repo node_modules → version-keyed
+ * analyzer cache → (for `ephemeral`/`permanent`) install into the cache, else
+ * the regex floor.
+ *
+ * - `repo`     — use only the audited repo's node_modules; absent ⇒ regex floor.
+ * - `ephemeral`/`permanent` — resolve repo→cache, installing into the shared
+ *   cache if absent (never touches the audited project). `permanent` is a
+ *   durable opt-in; `ephemeral` is a one-time/per-need install. Both behave the
+ *   same for resolution.
+ * - `skip`     — never run this analyzer.
+ * - `auto`     — resolve repo→cache; if absent and the analyzer has in-scope
+ *   files, the conversation-first flow proposes an install. Unanswered ⇒ skip.
+ */
+export declare const ANALYZER_SETTINGS: readonly ["repo", "ephemeral", "permanent", "skip", "auto"];
+export type AnalyzerSetting = (typeof ANALYZER_SETTINGS)[number];
 export interface SessionConfig {
     provider?: ProviderName;
     timeout_ms?: number;
@@ -71,5 +111,11 @@ export interface SessionConfig {
     block_quota?: BlockQuotaConfig;
     quota?: QuotaConfig;
     opentoken?: OpenTokenConfig;
+    observability?: ObservabilityConfig;
+    synthesis?: SynthesisConfig;
+    /** Per-analyzer resolution policy for the optional graph-enrichment pass. */
+    analyzers?: Record<string, AnalyzerSetting>;
+    /** Optional graph-enrichment tuning (Phase 4B edge reasoning). */
+    graph?: GraphConfig;
 }
 //# sourceMappingURL=sessionConfig.d.ts.map

package/dist/types/sessionConfig.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sessionConfig.d.ts","sourceRoot":"","sources":["../../src/types/sessionConfig.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc,wGAOjB,CAAC;AACX,MAAM,MAAM,YAAY,GAAG,CAAC,OAAO,cAAc,CAAC,CAAC,MAAM,CAAC,CAAC;AAC3D,MAAM,MAAM,oBAAoB,GAAG,OAAO,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;AAEjE,eAAO,MAAM,gBAAgB,kCAAmC,CAAC;AACjE,MAAM,MAAM,aAAa,GAAG,CAAC,OAAO,gBAAgB,CAAC,CAAC,MAAM,CAAC,CAAC;AAE9D,MAAM,WAAW,wBAAwB;IACvC,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC9B;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,4BAA4B,CAAC,EAAE,OAAO,CAAC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;CACvB;AAED,MAAM,WAAW,gBAAgB;IAC/B,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC9B;AAED,eAAO,MAAM,qBAAqB;;;;;CAKxB,CAAC;AAEX,MAAM,WAAW,gBAAgB;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,gBAAgB;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,wBAAwB,CAAC,EAAE,MAAM,CAAC;CACnC;AAED,MAAM,WAAW,WAAW;IAC1B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,GAAG,OAAO,GAAG,OAAO,CAAC;IACnC,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,yBAAyB,CAAC,EAAE,MAAM,GAAG,WAAW,CAAC;IACjD,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;CAC3C;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,EAAE,YAAY,CAAC;IACxB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,aAAa,CAAC;IACxB,2BAA2B,CAAC,EAAE,OAAO,CAAC;IACtC,mBAAmB,CAAC,EAAE,wBAAwB,CAAC;IAC/C,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAC/B,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAC/B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAC/B,KAAK,CAAC,EAAE,WAAW,CAAC;IACpB,SAAS,CAAC,EAAE,eAAe,CAAC;CAC7B"}
+{"version":3,"file":"sessionConfig.d.ts","sourceRoot":"","sources":["../../src/types/sessionConfig.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc,wGAOjB,CAAC;AACX,MAAM,MAAM,YAAY,GAAG,CAAC,OAAO,cAAc,CAAC,CAAC,MAAM,CAAC,CAAC;AAC3D,MAAM,MAAM,oBAAoB,GAAG,OAAO,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;AAEjE,eAAO,MAAM,gBAAgB,kCAAmC,CAAC;AACjE,MAAM,MAAM,aAAa,GAAG,CAAC,OAAO,gBAAgB,CAAC,CAAC,MAAM,CAAC,CAAC;AAE9D,MAAM,WAAW,wBAAwB;IACvC,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC9B;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,4BAA4B,CAAC,EAAE,OAAO,CAAC;IACvC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;CACvB;AAED,MAAM,WAAW,gBAAgB;IAC/B,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC9B;AAED,eAAO,MAAM,qBAAqB;;;;;CAKxB,CAAC;AAEX,MAAM,WAAW,gBAAgB;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,gBAAgB;IAC/B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,wBAAwB,CAAC,EAAE,MAAM,CAAC;CACnC;AAED,MAAM,WAAW,WAAW;IAC1B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,GAAG,OAAO,GAAG,OAAO,CAAC;IACnC,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,yBAAyB,CAAC,EAAE,MAAM,GAAG,WAAW,CAAC;IACjD,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;CAC3C;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,mBAAmB;IAClC,qEAAqE;IACrE,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,WAAW,eAAe;IAC9B;;;;;OAKG;IACH,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB;AAED,MAAM,WAAW,WAAW;IAC1B;;;;OAIG;IACH,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,4EAA4E;IAC5E,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,iBAAiB,6DAMpB,CAAC;AACX,MAAM,MAAM,eAAe,GAAG,CAAC,OAAO,iBAAiB,CAAC,CAAC,MAAM,CAAC,CAAC;AAEjE,MAAM,WAAW,aAAa;IAC5B,QAAQ,CAAC,EAAE,YAAY,CAAC;IACxB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,aAAa,CAAC;IACxB,2BAA2B,CAAC,EAAE,OAAO,CAAC;IACtC,mBAAmB,CAAC,EAAE,wBAAwB,CAAC;IAC/C,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAC/B,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAC/B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAC/B,KAAK,CAAC,EAAE,WAAW,CAAC;IACpB,SAAS,CAAC,EAAE,eAAe,CAAC;IAC5B,aAAa,CAAC,EAAE,mBAAmB,CAAC;IACpC,SAAS,CAAC,EAAE,eAAe,CAAC;IAC5B,6EAA6E;IAC7E,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,eAAe,CAAC,CAAC;IAC5C,kEAAkE;IAClE,KAAK,CAAC,EAAE,WAAW,CAAC;CACrB"}

package/dist/types/sessionConfig.js

@@ -13,4 +13,26 @@ export const PROVIDER_SECTION_KEYS = {
     opencode: "opencode",
     "vscode-task": "vscode_task",
 };
+/**
+ * Per-analyzer resolution policy for the optional graph-enrichment pass
+ * (`analyzers.<id>`). Resolution order is repo node_modules → version-keyed
+ * analyzer cache → (for `ephemeral`/`permanent`) install into the cache, else
+ * the regex floor.
+ *
+ * - `repo`     — use only the audited repo's node_modules; absent ⇒ regex floor.
+ * - `ephemeral`/`permanent` — resolve repo→cache, installing into the shared
+ *   cache if absent (never touches the audited project). `permanent` is a
+ *   durable opt-in; `ephemeral` is a one-time/per-need install. Both behave the
+ *   same for resolution.
+ * - `skip`     — never run this analyzer.
+ * - `auto`     — resolve repo→cache; if absent and the analyzer has in-scope
+ *   files, the conversation-first flow proposes an install. Unanswered ⇒ skip.
+ */
+export const ANALYZER_SETTINGS = [
+    "repo",
+    "ephemeral",
+    "permanent",
+    "skip",
+    "auto",
+];
 //# sourceMappingURL=sessionConfig.js.map

package/dist/types/sessionConfig.js.map

@@ -1 +1 @@
-{"version":3,"file":"sessionConfig.js","sourceRoot":"","sources":["../../src/types/sessionConfig.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,MAAM;IACN,kBAAkB;IAClB,qBAAqB;IACrB,aAAa;IACb,UAAU;IACV,aAAa;CACL,CAAC;AAIX,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,SAAS,EAAE,UAAU,CAAU,CAAC;AAyBjE,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,qBAAqB,EAAE,qBAAqB;IAC5C,aAAa,EAAE,aAAa;IAC5B,QAAQ,EAAE,UAAU;IACpB,aAAa,EAAE,aAAa;CACpB,CAAC"}
+{"version":3,"file":"sessionConfig.js","sourceRoot":"","sources":["../../src/types/sessionConfig.ts"],"names":[],"mappings":"AAAA,MAAM,CAAC,MAAM,cAAc,GAAG;IAC5B,MAAM;IACN,kBAAkB;IAClB,qBAAqB;IACrB,aAAa;IACb,UAAU;IACV,aAAa;CACL,CAAC;AAIX,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,SAAS,EAAE,UAAU,CAAU,CAAC;AAyBjE,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACnC,qBAAqB,EAAE,qBAAqB;IAC5C,aAAa,EAAE,aAAa;IAC5B,QAAQ,EAAE,UAAU;IACpB,aAAa,EAAE,aAAa;CACpB,CAAC;AA8DX;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG;IAC/B,MAAM;IACN,WAAW;IACX,WAAW;IACX,MAAM;IACN,MAAM;CACE,CAAC"}

package/package.json

@@ -1,29 +1,41 @@
-{
-  "name": "@audit-tools/shared",
-  "version": "0.1.0",
-  "private": false,
-  "type": "module",
-  "main": "dist/index.js",
-  "types": "dist/index.d.ts",
-  "exports": {
-    ".": "./dist/index.js",
-    "./types/*": "./dist/types/*.js",
-    "./io/*": "./dist/io/*.js",
-    "./quota/*": "./dist/quota/*.js",
-    "./providers/*": "./dist/providers/*.js",
-    "./validation/*": "./dist/validation/*.js"
-  },
-  "files": [
-    "dist/**"
-  ],
-  "scripts": {
-    "build": "tsc -p tsconfig.json",
-    "check": "tsc -p tsconfig.json --noEmit"
-  },
-  "engines": {
-    "node": ">=20"
-  },
-  "publishConfig": {
-    "access": "public"
-  }
-}
+{
+  "name": "@audit-tools/shared",
+  "version": "0.5.0",
+  "private": false,
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": "./dist/index.js",
+    "./types/*": "./dist/types/*.js",
+    "./io/*": "./dist/io/*.js",
+    "./quota/*": "./dist/quota/*.js",
+    "./providers/*": "./dist/providers/*.js",
+    "./validation/*": "./dist/validation/*.js",
+    "./tooling/*": "./dist/tooling/*.js",
+    "./observability/*": "./dist/observability/*.js",
+    "./tokens": "./dist/tokens.js",
+    "./git": "./dist/git.js"
+  },
+  "files": [
+    "dist/**"
+  ],
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "check": "tsc -p tsconfig.json --noEmit",
+    "test": "npm run build && node --test tests/*.test.mjs",
+    "verify:release": "npm run check && npm test",
+    "release:patch": "node scripts/release-and-publish.mjs patch --bump-only",
+    "release:minor": "node scripts/release-and-publish.mjs minor --bump-only",
+    "release:major": "node scripts/release-and-publish.mjs major --bump-only",
+    "release:patch:publish": "node scripts/release-and-publish.mjs patch",
+    "release:minor:publish": "node scripts/release-and-publish.mjs minor",
+    "release:major:publish": "node scripts/release-and-publish.mjs major"
+  },
+  "engines": {
+    "node": ">=20"
+  },
+  "publishConfig": {
+    "access": "public"
+  }
+}