@chahuadev/junk-sweeper-app 7.0.0 → 7.0.1

package/README.md

@@ -166,7 +166,7 @@ Heavy AST analysis runs in **Node.js Worker Threads** — your UI stays smooth a
 | C# Unused Usings | 90–97% | Roslyn `CSharpSyntaxTree` | C# |
 | C# Code Quality | 80–92% | Roslyn `CSharpSyntaxTree` | C# |
 | C# Silent Bugs | 82–92% | Roslyn `CSharpSyntaxTree` | C# |
-| Java (structural) | ⚠️ กำลังพัฒนา | `--source 11` subprocess | Java |
+| Java (structural) | [IN DEV] กำลังพัฒนา | `--source 11` subprocess | Java |
 
 > Every finding now includes a **live recommendation** generated from your actual code — real variable names, the exact problematic line, and a concrete fix example. No hardcoded templates.
 
@@ -182,7 +182,7 @@ Supports (in development): **Java**
   - **JS/TS/JSX/TSX** — `@babel/parser` + `@babel/traverse` (in-process, Worker Thread)
   - **Python** — stdlib `ast` module via subprocess (`main_json.py`); 7 detectors
   - **C#** — Microsoft Roslyn (`CSharpSyntaxTree`) via subprocess (`Program.cs`, .NET 10); 5 detectors
-  - **Java** — subprocess via `--source 11` ⚠️ *กำลังพัฒนา*
+  - **Java** — subprocess via `--source 11` [IN DEV] *กำลังพัฒนา*
 - **6 active detectors** — unused variables, unused imports, dead code, duplicate functions, silent bugs, code quality
 - **Silent Bugs — 8 patterns:** empty catch, floating promises, zombie listeners, orphaned timers, uncaught promise chains, scope shadowing, naked JSON.parse, await-in-loop
 - **Code Quality — 10 patterns:** debugger statements, eval/new Function, NaN comparison, assignment-in-condition, parseInt without radix, var declaration, console.* debug logging, prototype mutation, overly long functions, TODO/FIXME markers
@@ -197,7 +197,7 @@ Supports (in development): **Java**
 - **Detects:** SQL/NoSQL injection, command injection, path traversal, hardcoded secrets/tokens/passwords, unsafe `eval` / `new Function`, prototype pollution, insecure `Math.random`, unvalidated redirects, and more
 - **Security tab severity chips** — ALL / CRITICAL / HIGH / MEDIUM / LOW filter chips sync with sidebar badge clicks
 - **Security Statistics Sidebar** — severity breakdown with clickable severity badges (toggle mode) — syncs with security chips
-- **Map Monitor integration** — security issue count + ⚠N badge shown on every affected file card
+- **Map Monitor integration** — security issue count + WARN-N badge shown on every affected file card
 - **Mutual exclusion** — switching between Junk Scan and Security Scan automatically clears the previous result
 
 ### Project Map Monitor
@@ -207,10 +207,10 @@ Supports (in development): **Java**
 - **Layout Memory** — positions saved to `%APPDATA%\Junk Sweeper\layouts\<project>.json` automatically; close and reopen the app and every node is exactly where you left it; share the JSON with your team via the Copy button
 - **IPC channel edges** — visualises Electron `ipcRenderer`/`ipcMain` connections
 - **Dependency detection** across JS, TS, HTML (`<script src>`, `<link href>`), and Electron patterns (`loadFile()`, `preload:`)
-- **Per-file issue badges** — each node shows issue count with Green / Amber / Red status; ⚠N security badge appears above the role badge (non-overlapping)
+- **Per-file issue badges** — each node shows issue count with Green / Amber / Red status; WARN-N security badge appears above the role badge (non-overlapping)
 - **Node Status legend** — Clean (green) / Minor (amber) / Critical (red) / npm (purple) / Gateway Box (orange pill) — collapsible, state persists
-- **Electron Role badges** — MAIN / BR / UI / 🛡 / ⚙ role labels on key Electron files
-- **Bidirectional Issues ↔ Map linking** — click the 📍 pin icon on any issue card to fly to that node on the map; click a node on the map to filter the Issues list to that file
+- **Electron Role badges** — MAIN / BR / UI / SEC / ENG role labels on key Electron files
+- **Bidirectional Issues ↔ Map linking** — click the PIN icon on any issue card to fly to that node on the map; click a node on the map to filter the Issues list to that file
 - **One-Click VS Code Integration** — click any filename in the issue report to open VS Code at the exact problematic line
 - **Workflow JSON Export / Import** — one-click save/load of map state as Junk Sweeper workflow JSON
 - **Mobile-ready portable payload** — workflow JSON contains full map payload (nodes, edges, issueLinesByFile, positions, zoom/pan, edge style, node SVG data URIs, tooltips)
@@ -287,7 +287,7 @@ Both the **Code Issues** tab and the **Security Issues** tab have filter chips (
 2. Nodes represent files; edges represent `require()`, `import`, `<script src>`, `loadFile()`, IPC channels, etc.
 3. Node color: **Green** = clean, **Amber** = 1–2 issues, **Red** = 3+ issues, **Purple** = npm package, **Cyan** = IPC/bridge
 4. **Layout Memory**: node positions save automatically on drag; use the hamburger menu (☰) to Save / Copy / Paste / Reset layout
-5. **Bidirectional linking**: click the 📍 pin icon on any issue card → map focuses that node; click a node in the map → Issues list filters to that file
+5. **Bidirectional linking**: click the PIN icon on any issue card -> map focuses that node; click a node in the map -> Issues list filters to that file
 6. Hover a node to see full path and issue count; click to open its source code in the side panel
 7. Use **Export → Save as JSON** to produce a portable workflow file that includes full render context
 8. Use **Import** in map window to load workflow JSON back (desktop) or into future mobile map clients
@@ -425,10 +425,9 @@ chahuadev-junk-sweeper/
 │   │       └── Issue.cs
 │   └── java_scanner/
 │       ├── manifest.json                 # runtime: java, --source 11
-│       └── Main.java                     # ⚠️ กำลังพัฒนา — basic structural scanner
+│       └── Main.java                     # [IN DEV] กำลังพัฒนา — basic structural scanner
 ├── security/
-│   ├── authentication-gateway.js    # 7-layer security gateway
-│   └── security-validator.js        # Checksum validation
+│   └── security-validator.js        # Unified security gateway + runtime validation
 ├── icons/
 └── vendor/
     ├── elkjs/                       # Bundled ELK layered graph layout
@@ -447,7 +446,7 @@ chahuadev-junk-sweeper/
 | @babel/parser + @babel/traverse | JS/TS/JSX/TSX AST parsing and traversal (6 detectors) |
 | Python 3.8+ stdlib ast | Python AST via subprocess (7 detectors) |
 | Microsoft.CodeAnalysis.CSharp 4.12 | Roslyn C# AST via subprocess (5 detectors) |
-| Java --source 11 | Java structural scanner (⚠️ กำลังพัฒนา) |
+| Java --source 11 | Java structural scanner ([IN DEV] กำลังพัฒนา) |
 | @swc/core | High-speed JS/TS compilation & analysis |
 | parse5 | HTML parser (script/link dependency extraction) |
 | esquery | AST query engine |
@@ -496,7 +495,7 @@ chahuadev-junk-sweeper/
 
 ### v1.0.4 — Security UX, Node Status Legend & Graph Export
 - **Security tab severity chips** — ALL / CRITICAL / HIGH / MEDIUM / LOW chips in the Security Issues tab; sync with sidebar badge filter clicks
-- **Security ⚠N badge repositioned** — security badge on map cards moved to mid-right above the Electron role badge; no longer obstructs role label
+- **Security WARN-N badge repositioned** — security badge on map cards moved to mid-right above the Electron role badge; no longer obstructs role label
 - **Node Status legend** — legend section renamed and reorganised: Clean / Minor / Critical / npm / Gateway Box with accurate colour coding
 - **`execFile` shell injection fix** in `main.js` — VS Code Go-to-Line now uses `execFile` with array args instead of `exec()` with shell string
 

package/install.js

@@ -13,16 +13,17 @@ let downloadUrl = '';
 let fileName = '';
 
 if (platform === 'win32') {
-  downloadUrl = `${R2_BASE}/Junk%20Sweeper.exe`;
-  fileName = 'Junk Sweeper.exe';
+  downloadUrl = `${R2_BASE}/Junk-Sweeper.exe`;
+  fileName = 'Junk-Sweeper.exe';
 } else if (platform === 'linux') {
-  downloadUrl = `${R2_BASE}/Junk%20Sweeper.AppImage`;
-  fileName = 'Junk Sweeper.AppImage';
+  downloadUrl = `${R2_BASE}/Junk-Sweeper.AppImage`;
+  fileName = 'Junk-Sweeper.AppImage';
 } else if (platform === 'darwin') {
-  downloadUrl = `${R2_BASE}/Junk%20Sweeper`;
-  fileName = 'Junk Sweeper';
+  const macArch = arch === 'arm64' ? 'arm64' : 'x64';
+  fileName = `Junk-Sweeper-${macArch}.dmg`;
+  downloadUrl = `${R2_BASE}/${encodeURIComponent(fileName)}`;
 } else {
-  console.warn(`Chahuadev Junk Sweeper does not support ${platform} ${arch} yet.`);
+  console.warn(`Chahuadev-Junk-Sweeper does not support ${platform} ${arch} yet.`);
   process.exit(0);
 }
 
@@ -30,7 +31,7 @@ const binDir = path.join(__dirname, 'bin');
 if (!fs.existsSync(binDir)) fs.mkdirSync(binDir, { recursive: true });
 
 const filePath = path.join(binDir, fileName);
-console.log(`\nChahuadev Junk Sweeper -- Downloading binary for ${platform} (${arch})...`);
+console.log(`\nChahuadev-Junk-Sweeper -- Downloading binary for ${platform} (${arch})...`);
 console.log('Please wait, this may take a few minutes.\n');
 
 function downloadFile(url, dest) {

package/package.json

@@ -1,40 +1,40 @@
 {
-    "name":  "@chahuadev/junk-sweeper-app",
-    "version":  "7.0.0",
-    "description":  "Chahuadev Junk Sweeper โ€” AST-based dead code \u0026 silent bug detector with interactive architecture map",
-    "main":  "index.js",
-    "bin":  {
-                "junk-sweeper":  "index.js"
-            },
-    "scripts":  {
-                    "postinstall":  "node install.js"
-                },
-    "files":  [
-                  "index.js",
-                  "install.js"
-              ],
-    "keywords":  [
-                     "junk-sweeper",
-                     "code-analysis",
-                     "dead-code",
-                     "unused-variables",
-                     "silent-bugs",
-                     "ast",
-                     "electron",
-                     "chahuadev"
-                 ],
-    "author":  {
-                   "name":  "Chahuadev",
-                   "email":  "chahuadev@gmail.com",
-                   "url":  "https://chahuadev.com"
-               },
-    "license":  "SEE LICENSE IN LICENSE.md",
-    "publishConfig":  {
-                          "access":  "public"
-                      },
-    "repository":  {
-                       "type":  "git",
-                       "url":  "https://huggingface.co/datasets/chahuadev/chahuadev-junk-sweeper"
-                   },
-    "homepage":  "https://huggingface.co/datasets/chahuadev/chahuadev-junk-sweeper"
-}
+  "name": "@chahuadev/junk-sweeper-app",
+  "version": "7.0.1",
+  "description": "Chahuadev Junk-Sweeper - AST-based dead code & silent bug detector with interactive architecture map",
+  "main": "index.js",
+  "bin": {
+    "junk-sweeper": "index.js"
+  },
+  "scripts": {
+    "postinstall": "node install.js"
+  },
+  "files": [
+    "index.js",
+    "install.js"
+  ],
+  "keywords": [
+    "junk-sweeper",
+    "code-analysis",
+    "dead-code",
+    "unused-variables",
+    "silent-bugs",
+    "ast",
+    "electron",
+    "chahuadev"
+  ],
+  "author": {
+    "name": "Chahuadev",
+    "email": "chahuadev@gmail.com",
+    "url": "https://chahuadev.com"
+  },
+  "license": "SEE LICENSE IN LICENSE.md",
+  "publishConfig": {
+    "access": "public"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://huggingface.co/datasets/chahuadev/chahuadev-junk-sweeper"
+  },
+  "homepage": "https://huggingface.co/datasets/chahuadev/chahuadev-junk-sweeper"
+}