npm - @cyanautomation/kaseki-agent - Versions diffs - 1.4.1 - Mend

@cyanautomation/kaseki-agent 1.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (459) hide show

package/.dockerignore +54 -0
package/.eslintignore +11 -0
package/.eslintrc.json +95 -0
package/.github/ISSUE_TEMPLATE/bug_report.md +53 -0
package/.github/ISSUE_TEMPLATE/feature_request.md +53 -0
package/.github/ISSUE_TEMPLATE/security.md +51 -0
package/.github/PULL_REQUEST_TEMPLATE/default.md +71 -0
package/.github/dependabot.yml +38 -0
package/.github/skills/dependency-cache-optimization/SKILL.md +526 -0
package/.github/skills/docker-image-management/SKILL.md +532 -0
package/.github/skills/frontend-design/SKILL.md +782 -0
package/.github/skills/prompt-engineering/SKILL.md +360 -0
package/.github/skills/quality-gate-config/SKILL.md +591 -0
package/.github/skills/result-report-analysis/SKILL.md +576 -0
package/.github/skills/test-automation/SKILL.md +593 -0
package/.github/skills/workflow-diagnosis/SKILL.md +468 -0
package/.github/workflows/build-docker-image.yml +453 -0
package/.github/workflows/release.yml +68 -0
package/.releaserc.json +135 -0
package/CHANGELOG.md +117 -0
package/CLAUDE.md +336 -0
package/CONTRIBUTING.md +339 -0
package/Dockerfile +217 -0
package/README.md +1527 -0
package/STYLE.md +521 -0
package/add-js-extensions.d.ts +9 -0
package/add-js-extensions.d.ts.map +1 -0
package/add-js-extensions.js.map +1 -0
package/dist/add-js-extensions.d.ts +9 -0
package/dist/add-js-extensions.d.ts.map +1 -0
package/dist/add-js-extensions.js +52 -0
package/dist/add-js-extensions.js.map +1 -0
package/dist/ansi-colors.d.ts +26 -0
package/dist/ansi-colors.d.ts.map +1 -0
package/dist/ansi-colors.js +51 -0
package/dist/ansi-colors.js.map +1 -0
package/dist/cli/BaseCommand.d.ts +18 -0
package/dist/cli/BaseCommand.d.ts.map +1 -0
package/dist/cli/BaseCommand.js +31 -0
package/dist/cli/BaseCommand.js.map +1 -0
package/dist/cli/KasekiCLI.d.ts +30 -0
package/dist/cli/KasekiCLI.d.ts.map +1 -0
package/dist/cli/KasekiCLI.js +134 -0
package/dist/cli/KasekiCLI.js.map +1 -0
package/dist/cli/commands/ConfigCommand.d.ts +13 -0
package/dist/cli/commands/ConfigCommand.d.ts.map +1 -0
package/dist/cli/commands/ConfigCommand.js +131 -0
package/dist/cli/commands/ConfigCommand.js.map +1 -0
package/dist/cli/commands/DoctorCommand.d.ts +45 -0
package/dist/cli/commands/DoctorCommand.d.ts.map +1 -0
package/dist/cli/commands/DoctorCommand.js +309 -0
package/dist/cli/commands/DoctorCommand.js.map +1 -0
package/dist/cli/commands/ListCommand.d.ts +9 -0
package/dist/cli/commands/ListCommand.d.ts.map +1 -0
package/dist/cli/commands/ListCommand.js +81 -0
package/dist/cli/commands/ListCommand.js.map +1 -0
package/dist/cli/commands/ReportCommand.d.ts +9 -0
package/dist/cli/commands/ReportCommand.d.ts.map +1 -0
package/dist/cli/commands/ReportCommand.js +98 -0
package/dist/cli/commands/ReportCommand.js.map +1 -0
package/dist/cli/commands/RunCommand.d.ts +13 -0
package/dist/cli/commands/RunCommand.d.ts.map +1 -0
package/dist/cli/commands/RunCommand.js +191 -0
package/dist/cli/commands/RunCommand.js.map +1 -0
package/dist/cli/commands/SecretsCommand.d.ts +9 -0
package/dist/cli/commands/SecretsCommand.d.ts.map +1 -0
package/dist/cli/commands/SecretsCommand.js +109 -0
package/dist/cli/commands/SecretsCommand.js.map +1 -0
package/dist/cli/commands/ServeCommand.d.ts +9 -0
package/dist/cli/commands/ServeCommand.d.ts.map +1 -0
package/dist/cli/commands/ServeCommand.js +50 -0
package/dist/cli/commands/ServeCommand.js.map +1 -0
package/dist/cli/commands/SetupCommand.d.ts +42 -0
package/dist/cli/commands/SetupCommand.d.ts.map +1 -0
package/dist/cli/commands/SetupCommand.js +249 -0
package/dist/cli/commands/SetupCommand.js.map +1 -0
package/dist/cli.d.ts +9 -0
package/dist/cli.d.ts.map +1 -0
package/dist/cli.js +130 -0
package/dist/cli.js.map +1 -0
package/dist/config/ConfigManager.d.ts +395 -0
package/dist/config/ConfigManager.d.ts.map +1 -0
package/dist/config/ConfigManager.js +446 -0
package/dist/config/ConfigManager.js.map +1 -0
package/dist/docker/DockerManager.d.ts +69 -0
package/dist/docker/DockerManager.d.ts.map +1 -0
package/dist/docker/DockerManager.js +266 -0
package/dist/docker/DockerManager.js.map +1 -0
package/dist/event-aggregator.d.ts +71 -0
package/dist/event-aggregator.d.ts.map +1 -0
package/dist/event-aggregator.js +95 -0
package/dist/event-aggregator.js.map +1 -0
package/dist/github-app-token.d.ts +16 -0
package/dist/github-app-token.d.ts.map +1 -0
package/dist/github-app-token.js +148 -0
package/dist/github-app-token.js.map +1 -0
package/dist/idempotency-store.d.ts +61 -0
package/dist/idempotency-store.d.ts.map +1 -0
package/dist/idempotency-store.js +321 -0
package/dist/idempotency-store.js.map +1 -0
package/dist/index.d.ts +25 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +31 -0
package/dist/index.js.map +1 -0
package/dist/instance/InstanceManager.d.ts +81 -0
package/dist/instance/InstanceManager.d.ts.map +1 -0
package/dist/instance/InstanceManager.js +220 -0
package/dist/instance/InstanceManager.js.map +1 -0
package/dist/instance-metadata-reader.d.ts +48 -0
package/dist/instance-metadata-reader.d.ts.map +1 -0
package/dist/instance-metadata-reader.js +94 -0
package/dist/instance-metadata-reader.js.map +1 -0
package/dist/instance-state-derivation.d.ts +42 -0
package/dist/instance-state-derivation.d.ts.map +1 -0
package/dist/instance-state-derivation.js +133 -0
package/dist/instance-state-derivation.js.map +1 -0
package/dist/job-scheduler.d.ts +124 -0
package/dist/job-scheduler.d.ts.map +1 -0
package/dist/job-scheduler.js +992 -0
package/dist/job-scheduler.js.map +1 -0
package/dist/kaseki-api-client.d.ts +89 -0
package/dist/kaseki-api-client.d.ts.map +1 -0
package/dist/kaseki-api-client.js +405 -0
package/dist/kaseki-api-client.js.map +1 -0
package/dist/kaseki-api-config.d.ts +34 -0
package/dist/kaseki-api-config.d.ts.map +1 -0
package/dist/kaseki-api-config.js +113 -0
package/dist/kaseki-api-config.js.map +1 -0
package/dist/kaseki-api-routes.d.ts +13 -0
package/dist/kaseki-api-routes.d.ts.map +1 -0
package/dist/kaseki-api-routes.js +559 -0
package/dist/kaseki-api-routes.js.map +1 -0
package/dist/kaseki-api-service-wrapper.d.ts +43 -0
package/dist/kaseki-api-service-wrapper.d.ts.map +1 -0
package/dist/kaseki-api-service-wrapper.js +150 -0
package/dist/kaseki-api-service-wrapper.js.map +1 -0
package/dist/kaseki-api-service.d.ts +16 -0
package/dist/kaseki-api-service.d.ts.map +1 -0
package/dist/kaseki-api-service.js +143 -0
package/dist/kaseki-api-service.js.map +1 -0
package/dist/kaseki-api-types.d.ts +440 -0
package/dist/kaseki-api-types.d.ts.map +1 -0
package/dist/kaseki-api-types.js +64 -0
package/dist/kaseki-api-types.js.map +1 -0
package/dist/kaseki-cli-lib.d.ts +219 -0
package/dist/kaseki-cli-lib.d.ts.map +1 -0
package/dist/kaseki-cli-lib.js +523 -0
package/dist/kaseki-cli-lib.js.map +1 -0
package/dist/kaseki-cli.d.ts +38 -0
package/dist/kaseki-cli.d.ts.map +1 -0
package/dist/kaseki-cli.js +559 -0
package/dist/kaseki-cli.js.map +1 -0
package/dist/kaseki-report.d.ts +3 -0
package/dist/kaseki-report.d.ts.map +1 -0
package/dist/kaseki-report.js +140 -0
package/dist/kaseki-report.js.map +1 -0
package/dist/lib/subprocess-helpers.d.ts +98 -0
package/dist/lib/subprocess-helpers.d.ts.map +1 -0
package/dist/lib/subprocess-helpers.js +136 -0
package/dist/lib/subprocess-helpers.js.map +1 -0
package/dist/logger.d.ts +39 -0
package/dist/logger.d.ts.map +1 -0
package/dist/logger.js +79 -0
package/dist/logger.js.map +1 -0
package/dist/metrics.d.ts +19 -0
package/dist/metrics.d.ts.map +1 -0
package/dist/metrics.js +59 -0
package/dist/metrics.js.map +1 -0
package/dist/middleware/job-lookup.d.ts +27 -0
package/dist/middleware/job-lookup.d.ts.map +1 -0
package/dist/middleware/job-lookup.js +28 -0
package/dist/middleware/job-lookup.js.map +1 -0
package/dist/pi-event-filter.d.ts +3 -0
package/dist/pi-event-filter.d.ts.map +1 -0
package/dist/pi-event-filter.js +126 -0
package/dist/pi-event-filter.js.map +1 -0
package/dist/pi-progress-stream.d.ts +3 -0
package/dist/pi-progress-stream.d.ts.map +1 -0
package/dist/pi-progress-stream.js +205 -0
package/dist/pi-progress-stream.js.map +1 -0
package/dist/pi-progress-summarizer.d.ts +61 -0
package/dist/pi-progress-summarizer.d.ts.map +1 -0
package/dist/pi-progress-summarizer.js +246 -0
package/dist/pi-progress-summarizer.js.map +1 -0
package/dist/pre-flight-validator.d.ts +72 -0
package/dist/pre-flight-validator.d.ts.map +1 -0
package/dist/pre-flight-validator.js +513 -0
package/dist/pre-flight-validator.js.map +1 -0
package/dist/progress-stream-utils.d.ts +3 -0
package/dist/progress-stream-utils.d.ts.map +1 -0
package/dist/progress-stream-utils.js +15 -0
package/dist/progress-stream-utils.js.map +1 -0
package/dist/result-cache.d.ts +52 -0
package/dist/result-cache.d.ts.map +1 -0
package/dist/result-cache.js +134 -0
package/dist/result-cache.js.map +1 -0
package/dist/routes/artifact-routes.d.ts +10 -0
package/dist/routes/artifact-routes.d.ts.map +1 -0
package/dist/routes/artifact-routes.js +126 -0
package/dist/routes/artifact-routes.js.map +1 -0
package/dist/routes/log-routes.d.ts +8 -0
package/dist/routes/log-routes.d.ts.map +1 -0
package/dist/routes/log-routes.js +345 -0
package/dist/routes/log-routes.js.map +1 -0
package/dist/routes/status-routes.d.ts +8 -0
package/dist/routes/status-routes.d.ts.map +1 -0
package/dist/routes/status-routes.js +82 -0
package/dist/routes/status-routes.js.map +1 -0
package/dist/routes/webhook-routes.d.ts +6 -0
package/dist/routes/webhook-routes.d.ts.map +1 -0
package/dist/routes/webhook-routes.js +86 -0
package/dist/routes/webhook-routes.js.map +1 -0
package/dist/run-artifact-metadata-cache.d.ts +42 -0
package/dist/run-artifact-metadata-cache.d.ts.map +1 -0
package/dist/run-artifact-metadata-cache.js +139 -0
package/dist/run-artifact-metadata-cache.js.map +1 -0
package/dist/secret-value-cache.d.ts +13 -0
package/dist/secret-value-cache.d.ts.map +1 -0
package/dist/secret-value-cache.js +44 -0
package/dist/secret-value-cache.js.map +1 -0
package/dist/secrets/SecretsManager.d.ts +80 -0
package/dist/secrets/SecretsManager.d.ts.map +1 -0
package/dist/secrets/SecretsManager.js +306 -0
package/dist/secrets/SecretsManager.js.map +1 -0
package/dist/test-utils.d.ts +55 -0
package/dist/test-utils.d.ts.map +1 -0
package/dist/test-utils.js +48 -0
package/dist/test-utils.js.map +1 -0
package/dist/timestamp-tracker.d.ts +75 -0
package/dist/timestamp-tracker.d.ts.map +1 -0
package/dist/timestamp-tracker.js +121 -0
package/dist/timestamp-tracker.js.map +1 -0
package/dist/utils/failure-artifact-writer.d.ts +29 -0
package/dist/utils/failure-artifact-writer.d.ts.map +1 -0
package/dist/utils/failure-artifact-writer.js +157 -0
package/dist/utils/failure-artifact-writer.js.map +1 -0
package/dist/utils/file-helpers.d.ts +41 -0
package/dist/utils/file-helpers.d.ts.map +1 -0
package/dist/utils/file-helpers.js +143 -0
package/dist/utils/file-helpers.js.map +1 -0
package/dist/utils/http-client-factory.d.ts +46 -0
package/dist/utils/http-client-factory.d.ts.map +1 -0
package/dist/utils/http-client-factory.js +114 -0
package/dist/utils/http-client-factory.js.map +1 -0
package/dist/utils/progress-normalizer.d.ts +13 -0
package/dist/utils/progress-normalizer.d.ts.map +1 -0
package/dist/utils/progress-normalizer.js +57 -0
package/dist/utils/progress-normalizer.js.map +1 -0
package/dist/utils/response-helpers.d.ts +34 -0
package/dist/utils/response-helpers.d.ts.map +1 -0
package/dist/utils/response-helpers.js +78 -0
package/dist/utils/response-helpers.js.map +1 -0
package/dist/utils/route-helpers.d.ts +17 -0
package/dist/utils/route-helpers.d.ts.map +1 -0
package/dist/utils/route-helpers.js +22 -0
package/dist/utils/route-helpers.js.map +1 -0
package/dist/utils/status-response-builder.d.ts +23 -0
package/dist/utils/status-response-builder.d.ts.map +1 -0
package/dist/utils/status-response-builder.js +144 -0
package/dist/utils/status-response-builder.js.map +1 -0
package/dist/utils/type-guards.d.ts +37 -0
package/dist/utils/type-guards.d.ts.map +1 -0
package/dist/utils/type-guards.js +45 -0
package/dist/utils/type-guards.js.map +1 -0
package/dist/utils/utf8-helpers.d.ts +32 -0
package/dist/utils/utf8-helpers.d.ts.map +1 -0
package/dist/utils/utf8-helpers.js +97 -0
package/dist/utils/utf8-helpers.js.map +1 -0
package/dist/utils/webhook-event-builder.d.ts +26 -0
package/dist/utils/webhook-event-builder.d.ts.map +1 -0
package/dist/utils/webhook-event-builder.js +77 -0
package/dist/utils/webhook-event-builder.js.map +1 -0
package/dist/webhook-manager.d.ts +56 -0
package/dist/webhook-manager.d.ts.map +1 -0
package/dist/webhook-manager.js +359 -0
package/dist/webhook-manager.js.map +1 -0
package/docker/workspace-cache/package-lock.json +13 -0
package/docker/workspace-cache/package.json +7 -0
package/docker-compose.yml +53 -0
package/docs/API.md +708 -0
package/docs/BACKLOG.md +19 -0
package/docs/BUILD_STRATEGY.md +404 -0
package/docs/CLI.md +569 -0
package/docs/DEPLOYMENT.md +521 -0
package/docs/DEVELOPMENT.md +459 -0
package/docs/DOCKER_SETUP.md +522 -0
package/docs/ENHANCED_PROGRESS_LOGS.md +264 -0
package/docs/IMPLEMENTATION_SUMMARY.md +549 -0
package/docs/INTEGRATION_EXAMPLE.md +217 -0
package/docs/NPM_SETUP.md +468 -0
package/docs/PHASE1-4_IMPLEMENTATION.md +302 -0
package/docs/PHASE1_COMPLETION.md +192 -0
package/docs/PHASE2_COMPLETION.md +134 -0
package/docs/PHASE6_MIGRATION.md +392 -0
package/docs/PRINTF_SAFETY_FIX.md +282 -0
package/docs/QUALITY_GATES.md +369 -0
package/docs/SETUP_GUIDE.md +482 -0
package/docs/TASK_PROMPT_TEMPLATES.md +533 -0
package/docs/VALIDATION_FIX.md +139 -0
package/docs/VERIFICATION_CHECKLIST.md +335 -0
package/docs/repo-maturity.md +760 -0
package/fix-tests.d.ts +9 -0
package/fix-tests.d.ts.map +1 -0
package/fix-tests.js.map +1 -0
package/fix-tests.ts +53 -0
package/jest.config.ts +31 -0
package/kaseki +183 -0
package/kaseki-agent.sh +1961 -0
package/ops/logrotate/kaseki +10 -0
package/package.json +83 -0
package/perf/README.md +54 -0
package/perf/pi-event-filter.benchmark.test.ts +98 -0
package/run-kaseki-json.test.sh +106 -0
package/run-kaseki.sh +990 -0
package/scripts/allowlist-helper.sh +56 -0
package/scripts/cleanup-kaseki.sh +168 -0
package/scripts/deploy-pi-template.sh +293 -0
package/scripts/docker-entrypoint.sh +71 -0
package/scripts/dry-run-allowlist.sh +161 -0
package/scripts/kaseki-activate.sh +396 -0
package/scripts/kaseki-api.service +62 -0
package/scripts/kaseki-container-entrypoint-wrapper.sh +119 -0
package/scripts/kaseki-container-setup-remote.sh +172 -0
package/scripts/kaseki-container-setup.sh +193 -0
package/scripts/kaseki-healthcheck.sh +95 -0
package/scripts/kaseki-install.sh +50 -0
package/scripts/kaseki-maturity-score.sh +291 -0
package/scripts/kaseki-performance-metrics.sh +122 -0
package/scripts/kaseki-preflight.sh +270 -0
package/scripts/kaseki-setup.sh +265 -0
package/scripts/pi-setup-remote.sh +213 -0
package/scripts/setup-github-labels.sh +42 -0
package/scripts/suggest-allowlist.sh +68 -0
package/scripts/templates/MULTI_HOST_DISTRIBUTED.md +337 -0
package/scripts/templates/REST_API_SERVICE.md +490 -0
package/scripts/templates/SINGLE_HOST_CLI.md +194 -0
package/scripts/test-github-app.sh +248 -0
package/src/add-js-extensions.ts +61 -0
package/src/ansi-colors.test.ts +62 -0
package/src/ansi-colors.ts +67 -0
package/src/cli/BaseCommand.ts +40 -0
package/src/cli/KasekiCLI.ts +154 -0
package/src/cli/commands/ConfigCommand.ts +145 -0
package/src/cli/commands/DoctorCommand.ts +329 -0
package/src/cli/commands/ListCommand.ts +105 -0
package/src/cli/commands/ReportCommand.ts +110 -0
package/src/cli/commands/RunCommand.ts +218 -0
package/src/cli/commands/SecretsCommand.ts +120 -0
package/src/cli/commands/ServeCommand.ts +62 -0
package/src/cli/commands/SetupCommand.ts +301 -0
package/src/cli.ts +138 -0
package/src/config/ConfigManager.ts +476 -0
package/src/docker/DockerManager.ts +319 -0
package/src/docker-entrypoint-packaging.test.ts +33 -0
package/src/event-aggregator.test.ts +117 -0
package/src/event-aggregator.ts +126 -0
package/src/github-app-token.ts +215 -0
package/src/idempotency-store.test.ts +117 -0
package/src/idempotency-store.ts +385 -0
package/src/index.ts +89 -0
package/src/instance/InstanceManager.ts +285 -0
package/src/instance-metadata-reader.test.ts +190 -0
package/src/instance-metadata-reader.ts +129 -0
package/src/instance-state-derivation.test.ts +263 -0
package/src/instance-state-derivation.ts +148 -0
package/src/job-scheduler.test.ts +1236 -0
package/src/job-scheduler.ts +1117 -0
package/src/kaseki-api-client.ts +488 -0
package/src/kaseki-api-config.test.ts +315 -0
package/src/kaseki-api-config.ts +175 -0
package/src/kaseki-api-routes.test.ts +1615 -0
package/src/kaseki-api-routes.ts +643 -0
package/src/kaseki-api-service-wrapper.ts +188 -0
package/src/kaseki-api-service.test.ts +418 -0
package/src/kaseki-api-service.ts +192 -0
package/src/kaseki-api-types.ts +320 -0
package/src/kaseki-cli-lib.test.ts +552 -0
package/src/kaseki-cli-lib.ts +760 -0
package/src/kaseki-cli.ts +682 -0
package/src/kaseki-report.test.ts +118 -0
package/src/kaseki-report.ts +192 -0
package/src/lib/subprocess-helpers.ts +177 -0
package/src/logger.ts +114 -0
package/src/metrics.ts +66 -0
package/src/middleware/job-lookup.test.ts +113 -0
package/src/middleware/job-lookup.ts +45 -0
package/src/pi-event-filter.test.ts +183 -0
package/src/pi-event-filter.ts +183 -0
package/src/pi-progress-stream.ts +287 -0
package/src/pi-progress-summarizer.test.ts +302 -0
package/src/pi-progress-summarizer.ts +287 -0
package/src/pre-flight-validator.test.ts +512 -0
package/src/pre-flight-validator.ts +618 -0
package/src/progress-stream-utils.test.ts +35 -0
package/src/progress-stream-utils.ts +14 -0
package/src/result-cache.test.ts +195 -0
package/src/result-cache.ts +181 -0
package/src/routes/artifact-routes.ts +169 -0
package/src/routes/log-routes.ts +391 -0
package/src/routes/status-routes.ts +92 -0
package/src/routes/webhook-routes.ts +97 -0
package/src/run-artifact-metadata-cache.test.ts +80 -0
package/src/run-artifact-metadata-cache.ts +184 -0
package/src/secret-value-cache.test.ts +66 -0
package/src/secret-value-cache.ts +55 -0
package/src/secrets/SecretsManager.ts +343 -0
package/src/test-utils.ts +81 -0
package/src/timestamp-tracker.test.ts +134 -0
package/src/timestamp-tracker.ts +132 -0
package/src/utils/failure-artifact-writer.ts +187 -0
package/src/utils/file-helpers.test.ts +235 -0
package/src/utils/file-helpers.ts +150 -0
package/src/utils/http-client-factory.test.ts +245 -0
package/src/utils/http-client-factory.ts +157 -0
package/src/utils/progress-normalizer.test.ts +442 -0
package/src/utils/progress-normalizer.ts +68 -0
package/src/utils/response-helpers.test.ts +122 -0
package/src/utils/response-helpers.ts +101 -0
package/src/utils/route-helpers.ts +30 -0
package/src/utils/status-response-builder.ts +159 -0
package/src/utils/type-guards.ts +52 -0
package/src/utils/utf8-helpers.ts +102 -0
package/src/utils/webhook-event-builder.test.ts +143 -0
package/src/utils/webhook-event-builder.ts +87 -0
package/src/webhook-manager.test.ts +152 -0
package/src/webhook-manager.ts +445 -0
package/templates/allowlist-api-route.txt +7 -0
package/templates/allowlist-comprehensive.txt +8 -0
package/templates/allowlist-parser-fix.txt +6 -0
package/templates/allowlist-ui-component.txt +9 -0
package/templates/allowlist-utility.txt +9 -0
package/test/actual-model-metadata.test.sh +102 -0
package/test/dry-run.test.sh +131 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-0.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-1.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-invalid.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-str-0.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-str-1.json +1 -0
package/test/kaseki-api.integration.test.sh +165 -0
package/test/pi-event-filter-failure.test.sh +83 -0
package/test/printf-safety-focused.test.sh +99 -0
package/test/printf-safety-results/results/restoration.jsonl +10 -0
package/test/printf-safety-results/results/test.jsonl +0 -0
package/test/printf-safety.test.sh +297 -0
package/test/validation-fix.test.sh +79 -0
package/test/validation-integration.test.sh +109 -0
package/tests/allowlist-glob.test.sh +61 -0
package/tests/dependency-cache-key.test.sh +48 -0
package/tests/dependency-restore-mode.test.sh +48 -0
package/tests/doctor-template-parity.test.sh +95 -0
package/tests/github-operations.test.sh +142 -0
package/tests/npm-install-flags.test.sh +58 -0
package/tests/quality-gates.test.sh +178 -0
package/tests/repo-memory.test.sh +103 -0
package/tests/restore-disallowed-changes.test.sh +80 -0
package/tests/validation-missing-npm-scripts.test.sh +93 -0
package/tests/validation-strict-mode.test.sh +118 -0
package/tsconfig.changed.json +7 -0
package/tsconfig.json +39 -0

package/.github/skills/docker-image-management/SKILL.md ADDED Viewed

@@ -0,0 +1,532 @@
+---
+name: docker-image-management
+description: Managing base images, Pi CLI versions, and multi-arch builds
+tags: [kaseki, docker, devops, image-management, ci-cd]
+relatedSkills: [test-automation, dependency-cache-optimization]
+---
+# Docker Image Management for Kaseki Agent
+This skill guides maintaining the kaseki-agent Docker image, including base image updates, Pi CLI versioning, and multi-architecture builds.
+## Overview
+**When to Use**:
+- Updating Node.js base image (security patches, new versions)
+- Upgrading Pi CLI to a new version
+- Investigating multi-arch (amd64 + arm64) build failures
+- Troubleshooting image caching or layer issues
+- Publishing a new image version
+**Key Concepts**:
+- Base image: Node 22.22.2 (monthly security updates)
+- Pi CLI: Pre-installed version 0.70.2 (compatibility matrix)
+- Multi-arch: Build for both amd64 + arm64 using QEMU
+- Registry: Published to `docker.io/cyanautomation/kaseki-agent`
+- Versioning: Semantic versioning + latest tag
+---
+## Base Image (Node)
+### Current Version
+```
+Base: node:22.22.2-alpine
+Architecture: linux/amd64, linux/arm64
+```
+### Monitoring for Updates
+**Monthly Security Checks**:
+1. Check Node.js security advisories: https://nodejs.org/en/security
+2. Review Alpine Linux security bulletins (base of node:*-alpine)
+3. Scan current image for vulnerabilities:
+   ```bash
+   docker build -t kaseki-template:test .
+   docker run --rm aquasec/trivy image kaseki-template:test
+   ```
+### Updating the Base Image
+**Step 1**: Update Dockerfile
+```dockerfile
+# Before
+FROM node:22.22.2-alpine AS builder
+# After
+FROM node:22.23.0-alpine AS builder
+```
+**Step 2**: Test the change locally
+```bash
+# Build locally
+docker build -t kaseki-template:test .
+# Verify Node version
+docker run --rm kaseki-template:test node --version
+# Output: v22.23.0
+# Run sanity checks
+docker run --rm kaseki-template:test pi --version
+docker run --rm kaseki-template:test npm --version
+```
+**Step 3**: Update Pi CLI if needed (see section below)
+**Step 4**: Run full integration tests
+```bash
+bash tests/docker-image.test.sh
+bash tests/smoke.test.sh
+```
+**Step 5**: Update CLAUDE.md and version tracking
+```markdown
+# In CLAUDE.md
+**Node Version**: 22.23.0
+```
+### Breaking Changes in Node Versions
+**Node 20 → 22**: Check for deprecated features
+- V8 breaking changes (inspect [Node release notes](https://nodejs.org/en/blog))
+- npm behavior differences
+- ESM vs CommonJS compatibility
+**How to Test**:
+```bash
+# Test against actual repo that uses Node 22
+REPO_URL=https://github.com/cyanautomation/crudmapper \
+  GIT_REF=main \
+  ./run-kaseki.sh --doctor
+```
+---
+## Pi CLI Version Management
+### Current Version
+```
+Pi CLI: 0.70.2 (as of April 2026)
+Installation: npm install -g @anthropic-ai/cli@0.70.2 (in Dockerfile)
+```
+### Version Compatibility Matrix
+| Pi CLI Version | Node LTS | Notable Changes |
+|---|---|---|
+| 0.70.2 | 20, 22 | Current; stable |
+| 0.71.0 | 20, 22 | (hypothetical) Added new features |
+| 0.60.x | 18, 20 | Legacy; not recommended |
+### Checking for Updates
+```bash
+# Check npm registry for latest Pi CLI
+npm view @anthropic-ai/cli versions --json | tail -5
+# Check release notes
+# https://github.com/anthropics/anthropic-sdk-python/releases
+```
+### Updating Pi CLI
+**Step 1**: Update Dockerfile
+```dockerfile
+# Before
+RUN npm install -g @anthropic-ai/cli@0.70.2
+# After
+RUN npm install -g @anthropic-ai/cli@0.71.0
+```
+**Step 2**: Test Pi CLI availability
+```bash
+docker build -t kaseki-template:test .
+docker run --rm kaseki-template:test pi --version
+# Output: @anthropic-ai/cli/0.71.0
+```
+**Step 3**: Test with a real kaseki run (optional, if API key available)
+```bash
+OPENROUTER_API_KEY=sk-or-... \
+  ./run-kaseki.sh kaseki-test-1
+```
+**Step 4**: Check compatibility
+- Run validation commands
+- Verify Pi event JSON structure (pi-events.jsonl format)
+- Check for new error messages or behavior changes
+**Step 5**: Update documentation
+```markdown
+# In CLAUDE.md
+**Pi CLI Version**: 0.71.0
+```
+### Handling Breaking Changes in Pi CLI
+If a new Pi CLI version has breaking changes:
+1. **Update kaseki scripts** (pi-event-filter.js, pi-summary.json parsing)
+2. **Test event structure**:
+   ```javascript
+   // Verify new event format still parses correctly
+   const events = JSON.parse(piEventJson);
+   expect(events[0]).toHaveProperty('type');
+   ```
+3. **Update tests** to expect new behavior
+4. **Document in CHANGELOG** if user-facing changes
+---
+## Multi-Architecture Builds
+### Setup: Docker Buildx
+**Buildx** enables building images for multiple architectures (amd64, arm64, etc.).
+**Check if buildx is available**:
+```bash
+docker buildx version
+# Output: github.com/docker/buildx v0.10.4
+```
+**If Not Installed**:
+```bash
+# Install via Docker Desktop (included) or:
+docker run --privileged --rm tonistiigi/binfmt --install all
+```
+### Building Multi-Arch Images
+**Build and Load to Local Docker** (for testing):
+```bash
+# Build amd64 only (for local testing)
+docker buildx build \
+  --platform linux/amd64 \
+  -t kaseki-template:latest \
+  --load \
+  .
+```
+**Build All Architectures** (for publishing):
+```bash
+# Build amd64 + arm64 (outputs to registry)
+docker buildx build \
+  --platform linux/amd64,linux/arm64 \
+  -t docker.io/cyanautomation/kaseki-agent:0.1.0 \
+  -t docker.io/cyanautomation/kaseki-agent:latest \
+  --push \
+  .
+```
+### Multi-Arch Troubleshooting
+**Issue**: Build fails for arm64
+**Diagnosis**:
+```bash
+# Check QEMU support
+docker run --rm --privileged tonistiigi/binfmt --status
+# Output: qemu-aarch64-static: SUPPORTED
+# Rebuild with verbose output
+docker buildx build \
+  --platform linux/arm64 \
+  -t kaseki-template:test \
+  --progress=plain \
+  .
+```
+**Common Causes**:
+1. **Invalid base image digest** → Use multi-arch base (node:*-alpine is multi-arch)
+2. **Architecture-specific dependencies** → Check npm packages for native bindings
+3. **QEMU timeout** → Increase builder timeout or simplify build steps
+**Solution Steps**:
+1. Verify base image supports arm64: `docker pull --platform linux/arm64 node:22.22.2-alpine`
+2. Check package.json for native modules: `npm ls | grep gyp`
+3. Rebuild with increased timeout: `--build-arg BUILDKIT_PROGRESS=plain`
+---
+## Dockerfile Structure
+### Multi-Stage Build
+```dockerfile
+# Stage 1: Builder (installs Pi CLI, dependencies)
+FROM node:22.22.2-alpine AS builder
+WORKDIR /build
+RUN npm install -g @anthropic-ai/cli@0.70.2
+# Stage 2: Runtime (minimal, copies Pi CLI from builder)
+FROM node:22.22.2-alpine
+RUN addgroup -g 10001 kaseki && \
+    adduser -D -u 10001 -G kaseki kaseki
+WORKDIR /app
+# Copy Pi CLI from builder
+COPY --from=builder /usr/local/lib/node_modules /usr/local/lib/node_modules
+COPY --from=builder /usr/local/bin/pi /usr/local/bin/pi
+# Copy scripts
+COPY kaseki-agent.sh /app/
+COPY pi-event-filter.js /app/
+COPY kaseki-report.js /app/
+RUN chmod +x /app/kaseki-agent.sh
+USER kaseki:kaseki
+ENTRYPOINT ["/app/kaseki-agent.sh"]
+```
+**Why Multi-Stage?**
+- **Smaller final image**: Builder dependencies (git, build tools) aren't in runtime layer
+- **Faster rebuilds**: Only rebuild what changed (cache layers)
+- **Security**: Runtime doesn't include build tools
+### Cache Layers
+Dockerfile layers are cached independently. Order matters:
+```dockerfile
+# Good: Stable layers first, mutable layers last
+FROM node:22.22.2-alpine          # Cache hit (stable)
+RUN npm install -g @anthropic-ai/cli  # Cache hit (stable)
+COPY kaseki-agent.sh /app/        # Cache miss (depends on file content)
+COPY pi-event-filter.js /app/     # Cache miss
+```
+**Cache Busting**:
+If you need to force a rebuild (e.g., security patch in base image), add a label:
+```dockerfile
+LABEL version="1" rebuild_date="2026-04-25"
+# Increment 'version' or update date to bust cache
+```
+### Smoke Tests in Dockerfile
+You can add smoke tests to the build to catch issues early:
+```dockerfile
+# Add after installing Pi CLI
+RUN pi --version || exit 1
+RUN npm --version || exit 1
+# Verify non-root user
+RUN test "$(id -u)" = "10001" || exit 1
+```
+---
+## Publishing Images
+### Version Tagging Strategy
+| Tag | Purpose | When |
+|---|---|---|
+| `0.1.0` | Semantic version | Release with version bump |
+| `0.1` | Minor version | Latest 0.1.x release |
+| `latest` | Current stable | Every release |
+| `edge` (optional) | Development | On main branch push |
+### GitHub Actions Workflow
+```yaml
+name: Publish Docker Image
+on:
+  push:
+    tags:
+      - 'v*'  # v0.1.0, v0.2.0, etc.
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+      - uses: docker/setup-buildx-action@v2
+      - uses: docker/login-action@v2
+        with:
+          username: ${{ secrets.DOCKER_USERNAME }}
+          password: ${{ secrets.DOCKER_PASSWORD }}
+      - uses: docker/build-push-action@v4
+        with:
+          context: .
+          push: true
+          tags: |
+            docker.io/cyanautomation/kaseki-agent:${{ github.ref_name }}
+            docker.io/cyanautomation/kaseki-agent:latest
+          platforms: linux/amd64,linux/arm64
+```
+### Manual Publishing
+```bash
+# Build and push
+docker buildx build \
+  --platform linux/amd64,linux/arm64 \
+  -t docker.io/cyanautomation/kaseki-agent:0.1.1 \
+  -t docker.io/cyanautomation/kaseki-agent:latest \
+  --push \
+  .
+# Verify on registry
+docker pull docker.io/cyanautomation/kaseki-agent:0.1.1
+docker inspect docker.io/cyanautomation/kaseki-agent:0.1.1 | jq '.[0].Architecture'
+```
+---
+## Smoke Tests
+### Image Validation Tests
+**Test: Pi CLI is available**
+```bash
+docker run --rm kaseki-template:latest pi --version
+```
+**Test: Metadata structure is correct**
+```bash
+docker run --rm kaseki-template:latest bash -c '
+  [[ -f /opt/kaseki/workspace-cache/package.json ]] || exit 1
+'
+```
+**Test: Non-root user**
+```bash
+docker run --rm kaseki-template:latest id -u | grep -q 10001
+```
+**Test: Read-only root filesystem**
+```bash
+docker run --rm --read-only kaseki-template:latest touch /test.txt 2>&1 | grep -q "Read-only"
+```
+### Running All Smoke Tests
+```bash
+#!/bin/bash
+# tests/smoke.test.sh
+set -e
+IMAGE="kaseki-template:latest"
+echo "Building image..."
+docker build -t $IMAGE .
+echo "Running smoke tests..."
+echo "✓ Pi CLI available"
+docker run --rm $IMAGE pi --version
+echo "✓ Non-root user (UID 10001)"
+docker run --rm $IMAGE id -u | grep -q 10001
+echo "✓ npm available"
+docker run --rm $IMAGE npm --version
+echo "✓ Node version correct"
+docker run --rm $IMAGE node --version | grep -q "v22"
+echo "✓ All smoke tests passed"
+```
+---
+## Dependency Caching Strategy
+The Dockerfile includes an image seed cache for npm dependencies:
+```dockerfile
+# Pre-populate cache for faster builds
+COPY docker/workspace-cache/package.json /opt/kaseki/workspace-cache/
+RUN cd /opt/kaseki/workspace-cache && npm ci
+```
+This cache is restored during `kaseki-agent.sh` execution if lock hashes match:
+```bash
+# In kaseki-agent.sh
+if [[ -d /opt/kaseki/workspace-cache ]]; then
+  cp -r /opt/kaseki/workspace-cache "$WORKSPACE_CACHE_PATH"
+fi
+```
+**Update the Seed Cache**:
+When dependencies change frequently, update the seed:
+```bash
+# Refresh docker/workspace-cache/package-lock.json
+cd docker/workspace-cache
+npm update  # Or point to specific repos
+npm ci
+cd ../..
+# Rebuild image
+docker build -t kaseki-template:latest .
+```
+See [Dependency Cache Optimization](dependency-cache-optimization.md) for detailed strategy.
+---
+## Performance Optimization
+### Layer Caching
+To speed up builds, order Dockerfile commands by change frequency:
+```dockerfile
+# Lowest change frequency (stable, cache-friendly)
+FROM node:22.22.2-alpine
+RUN apk add --no-cache git openssh-client  # System deps
+RUN npm install -g @anthropic-ai/cli@0.70.2  # Global tools
+# Medium change frequency
+COPY docker/workspace-cache/ /opt/kaseki/workspace-cache/
+RUN cd /opt/kaseki/workspace-cache && npm ci
+# Highest change frequency (changes on every push, less cacheable)
+COPY kaseki-agent.sh /app/
+COPY pi-event-filter.js /app/
+COPY kaseki-report.js /app/
+```
+### Build Size Optimization
+Keep final image small:
+```bash
+# Check image size
+docker image inspect kaseki-template:latest | jq '.[] | .Size'
+# Output: 543210000 (≈500 MB is reasonable)
+# Identify large layers
+docker history kaseki-template:latest
+```
+**Common Optimizations**:
+1. Use alpine base image (≈150 MB vs. debian ≈1 GB)
+2. Remove build tools from final stage (multi-stage build)
+3. Combine RUN commands to reduce layers: `RUN apk add X && npm install Y`
+---
+## Related Skills & Docs
+- [Test Automation](test-automation.md) — Integration tests for image validation
+- [Dependency Cache Optimization](dependency-cache-optimization.md) — Image seed cache strategy
+- [Dockerfile](../../Dockerfile) — Current Dockerfile source
+- [CLAUDE.md](../../CLAUDE.md) — Architecture and version reference