npm - @avesta-hq/prevention - Versions diffs - 0.5.0 → 0.6.0-pre.4 - Mend

@avesta-hq/prevention 0.5.0 → 0.6.0-pre.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/CLAUDE.md CHANGED Viewed

@@ -68,7 +68,7 @@
 ## MCP Server Integration
-This project uses Prevention as an MCP server with 15 tools, 26 agents, and 34 skills that provide all methodology knowledge (TDD, Clean Architecture, test pyramid, CI/CD, etc.) on demand.
+This project uses Prevention as two MCP servers: a local server (12 tools for workflow orchestration) and a remote server (3 tools for content delivery — skills, prompts, catalog).
 **When starting work:**
@@ -76,10 +76,13 @@ This project uses Prevention as an MCP server with 15 tools, 26 agents, and 34 s
 2. The workflow tracks your phase (vision → plan → atdd → tdd → review → ship)
 3. Gates enforce that prerequisites are met before advancing
-**Key tools:**
+**Key tools (local):**
 - `avesta_get_status` — Current phase, gates, next action
 - `avesta_dispatch` — Route tasks to the right workflow step
+**Key tools (remote — `prevention-content`):**
 - `avesta_get_catalog` — All available commands and skills
 - `avesta_get_skill` — Deep knowledge on any practice (testing, architecture, CI/CD)

package/bin/lib/settings.js CHANGED Viewed

@@ -131,7 +131,7 @@ function configureStatusLine(targetDir) {
   writeSettings(targetDir, settings);
 }
-function configureMcpServer(targetDir, binaryPath) {
+function configureMcpServer(targetDir, binaryPath, options = {}) {
   const mcpJsonPath = path.join(targetDir, '.mcp.json');
   let mcpConfig = {};
   if (fs.existsSync(mcpJsonPath)) {
@@ -140,12 +140,52 @@ function configureMcpServer(targetDir, binaryPath) {
   if (!mcpConfig.mcpServers) mcpConfig.mcpServers = {};
-  if (binaryPath) {
-    mcpConfig.mcpServers['prevention'] = { command: path.resolve(binaryPath) };
+  // Local MCP server: workflow orchestration tools
+  // Pass through API/MCP URLs so the server process can reach them
+  const env = {};
+  if (process.env.AVESTA_API_URL) env.AVESTA_API_URL = process.env.AVESTA_API_URL;
+  if (process.env.AVESTA_MCP_URL) env.AVESTA_MCP_URL = process.env.AVESTA_MCP_URL;
+  const hasEnv = Object.keys(env).length > 0;
+  if (options.localSource) {
+    // Dev mode: run from source via tsx
+    const entry = { command: 'npx', args: ['tsx', options.localSource] };
+    if (hasEnv) entry.env = env;
+    mcpConfig.mcpServers['prevention'] = entry;
+  } else if (binaryPath) {
+    const entry = { command: path.resolve(binaryPath) };
+    if (hasEnv) entry.env = env;
+    mcpConfig.mcpServers['prevention'] = entry;
   } else {
-    mcpConfig.mcpServers['prevention'] = { command: 'npx', args: ['@avesta-hq/prevention', 'serve'] };
+    const entry = { command: 'npx', args: ['@avesta-hq/prevention', 'serve'] };
+    if (hasEnv) entry.env = env;
+    mcpConfig.mcpServers['prevention'] = entry;
   }
+  // Remote MCP server: content delivery (skills, prompts, catalog)
+  // Pre-populate auth token from existing session if available
+  const remoteUrl = process.env.AVESTA_MCP_URL || 'https://prevention-production.up.railway.app/mcp';
+  const existingRemote = mcpConfig.mcpServers['prevention-content'];
+  const existingToken = existingRemote?.headers?.Authorization;
+  let authToken = existingToken || '';
+  if (!authToken) {
+    try {
+      const sessionPath = path.join(require('os').homedir(), '.avesta', 'session.json');
+      if (fs.existsSync(sessionPath)) {
+        const session = JSON.parse(fs.readFileSync(sessionPath, 'utf8'));
+        if (session.access_token) {
+          authToken = `Bearer ${session.access_token}`;
+        }
+      }
+    } catch {}
+  }
+  const headers = authToken ? { Authorization: authToken } : {};
+  mcpConfig.mcpServers['prevention-content'] = {
+    type: 'http',
+    url: remoteUrl,
+    headers,
+  };
   fs.writeFileSync(mcpJsonPath, JSON.stringify(mcpConfig, null, 2) + '\n');
 }

package/bin/lib/test-local.js CHANGED Viewed

@@ -19,6 +19,7 @@ const path = require('path');
 const { execSync } = require('child_process');
 const { PACKAGE_ROOT, COMMANDS_DIR, AGENTS_DIR, AVESTA_DIR, copyDir, getVersion } = require('./utils');
 const {
+  configureMcpServer,
   configureSessionStartHook,
   configureEnforcementHooks,
   configureStatusLine,
@@ -34,7 +35,7 @@ function testLocal(targetDir) {
   console.log(`  Target:  ${targetDir}\n`);
   // Step 1: Rebuild embedded assets
-  console.log('  [1/5] Rebuilding catalog + embedded assets...');
+  console.log('  [1/6] Rebuilding catalog + embedded assets...');
   try {
     execSync('pnpm run prebuild:assets', { cwd: cdAgentRoot, stdio: 'pipe' });
     console.log('  ✓ Assets rebuilt');
@@ -45,7 +46,7 @@ function testLocal(targetDir) {
   }
   // Step 2: Copy agents + commands
-  console.log('  [2/5] Copying agents and commands...');
+  console.log('  [2/6] Copying agents and commands...');
   const claudeDir = path.join(targetDir, '.claude');
   if (!fs.existsSync(claudeDir)) fs.mkdirSync(claudeDir, { recursive: true });
@@ -62,40 +63,42 @@ function testLocal(targetDir) {
   const agentCount = fs.existsSync(AGENTS_DIR) ? fs.readdirSync(AGENTS_DIR).filter(f => f.endsWith('.md')).length : 0;
   console.log(`  ✓ Copied ${commandCount} commands, ${agentCount} agents`);
-  // Step 3: Configure MCP server to use local source via tsx
-  console.log('  [3/5] Configuring MCP server (local source)...');
-  const mcpJsonPath = path.join(targetDir, '.mcp.json');
-  let mcpConfig = {};
-  if (fs.existsSync(mcpJsonPath)) {
-    try { mcpConfig = JSON.parse(fs.readFileSync(mcpJsonPath, 'utf8')); } catch {}
-  }
-  if (!mcpConfig.mcpServers) mcpConfig.mcpServers = {};
+  // Step 3: Configure MCP servers (local source + remote content)
+  console.log('  [3/6] Configuring MCP servers (local source + remote content)...');
   const mcpServerPath = path.join(cdAgentRoot, 'src', 'mcp-server.ts');
-  mcpConfig.mcpServers['prevention'] = {
-    command: 'npx',
-    args: ['tsx', mcpServerPath],
-  };
-  fs.writeFileSync(mcpJsonPath, JSON.stringify(mcpConfig, null, 2) + '\n');
-  console.log(`  ✓ MCP server → npx tsx ${mcpServerPath}`);
+  configureMcpServer(targetDir, null, { localSource: mcpServerPath });
+  console.log(`  ✓ Local MCP server → npx tsx ${mcpServerPath}`);
+  const remoteUrl = process.env.AVESTA_MCP_URL || 'https://prevention-production.up.railway.app/mcp';
+  console.log(`  ✓ Remote MCP server → ${remoteUrl}`);
   // Step 4: Configure hooks (pointing at local CLI)
-  console.log('  [4/5] Configuring hooks...');
+  console.log('  [4/6] Configuring hooks...');
   configureSessionStartHook(targetDir);
   configureEnforcementHooks(targetDir);
   configureStatusLine(targetDir);
   ensureClaudeMdSection(targetDir);
-  // Step 5: Show result
-  console.log('  [5/5] Verifying setup...');
+  // Step 5: Write version
+  console.log('  [5/6] Writing version...');
+  const versionFile = path.join(targetDir, '.avesta', 'version.json');
+  const versionDir = path.dirname(versionFile);
+  if (!fs.existsSync(versionDir)) fs.mkdirSync(versionDir, { recursive: true });
+  fs.writeFileSync(versionFile, JSON.stringify({ version: getVersion(), updated_at: new Date().toISOString() }, null, 2));
+  console.log(`  ✓ Version ${getVersion()}`);
+  // Step 6: Show result
+  console.log('  [6/6] Verifying setup...');
   const settings = JSON.parse(fs.readFileSync(path.join(claudeDir, 'settings.json'), 'utf8'));
   const hookTypes = Object.keys(settings.hooks || {});
   console.log(`  ✓ Hooks configured: ${hookTypes.join(', ')}`);
+  const mcpJsonPath = path.join(targetDir, '.mcp.json');
   const mcpFinal = JSON.parse(fs.readFileSync(mcpJsonPath, 'utf8'));
   const mcpCmd = mcpFinal.mcpServers?.prevention?.command || '?';
   const mcpArgs = (mcpFinal.mcpServers?.prevention?.args || []).join(' ');
-  console.log(`  ✓ MCP server: ${mcpCmd} ${mcpArgs}`);
+  console.log(`  ✓ Local MCP: ${mcpCmd} ${mcpArgs}`);
+  const remoteEntry = mcpFinal.mcpServers?.['prevention-content'];
+  console.log(`  ✓ Remote MCP: ${remoteEntry?.url || 'not configured'}`);
   console.log(`
   ✅ Local test environment ready! (v${getVersion()})
@@ -105,9 +108,10 @@ function testLocal(targetDir) {
   To test:
     1. Open Claude Code in ${targetDir}
-    2. Run /avesta-init backend (or frontend)
-    3. Test skill enforcement: /avesta-red should block writes until skills loaded
-    4. Test gate enforcement: git commit should be blocked without review gate
+    2. Run avesta login to authenticate (connects remote content server)
+    3. Run /avesta-init backend (or frontend)
+    4. Test skill enforcement: /avesta-red should block writes until skills loaded
+    5. Test gate enforcement: git commit should be blocked without review gate
   To revert to published version:
     node ${path.join(cdAgentRoot, 'bin', 'cli.js')} update

package/bin/lib/utils.js CHANGED Viewed

@@ -70,16 +70,23 @@ function getPlatformBinaryName() {
 }
 function getLatestVersion() {
-  try {
-    const result = execSync(
-      `curl -sI "https://github.com/${GITHUB_RELEASES_REPO}/releases/latest" | grep -i ^location:`,
-      { encoding: 'utf8', timeout: 10000 }
-    );
-    const match = result.match(/\/tag\/(v[^\s\r\n]+)/);
-    return match ? match[1] : null;
-  } catch {
-    return null;
+  // Use package version to match the corresponding GitHub Release
+  const pkgVersion = `v${getVersion()}`;
+  // For stable releases, verify the release exists via GitHub latest redirect
+  // (handles partial release failures where npm published but binary upload failed)
+  if (!pkgVersion.includes('-pre')) {
+    try {
+      const result = execSync(
+        `curl -sI "https://github.com/${GITHUB_RELEASES_REPO}/releases/latest" | grep -i ^location:`,
+        { encoding: 'utf8', timeout: 10000 }
+      );
+      const match = result.match(/\/tag\/(v[^\s\r\n]+)/);
+      if (match) return match[1];
+    } catch {}
   }
+  return pkgVersion;
 }
 function downloadBinary(targetDir) {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@avesta-hq/prevention",
-  "version": "0.5.0",
+  "version": "0.6.0-pre.4",
   "description": "XP/CD development agent commands for Claude Code - achieve Elite DORA metrics through disciplined TDD and Continuous Delivery practices",
   "keywords": [
     "claude-code",
@@ -16,14 +16,7 @@
   ],
   "author": "Avesta Technologies",
   "license": "UNLICENSED",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/avesta-hq/prevention.git"
-  },
-  "homepage": "https://github.com/avesta-hq/prevention#readme",
-  "bugs": {
-    "url": "https://github.com/avesta-hq/prevention/issues"
-  },
+  "homepage": "https://avestahq.com/prevention",
   "bin": {
     "prevention": "./bin/cli.js"
   },