npm - @cyanautomation/kaseki-agent - Versions diffs - 1.4.1 - Mend

@cyanautomation/kaseki-agent 1.4.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (459) hide show

package/.dockerignore +54 -0
package/.eslintignore +11 -0
package/.eslintrc.json +95 -0
package/.github/ISSUE_TEMPLATE/bug_report.md +53 -0
package/.github/ISSUE_TEMPLATE/feature_request.md +53 -0
package/.github/ISSUE_TEMPLATE/security.md +51 -0
package/.github/PULL_REQUEST_TEMPLATE/default.md +71 -0
package/.github/dependabot.yml +38 -0
package/.github/skills/dependency-cache-optimization/SKILL.md +526 -0
package/.github/skills/docker-image-management/SKILL.md +532 -0
package/.github/skills/frontend-design/SKILL.md +782 -0
package/.github/skills/prompt-engineering/SKILL.md +360 -0
package/.github/skills/quality-gate-config/SKILL.md +591 -0
package/.github/skills/result-report-analysis/SKILL.md +576 -0
package/.github/skills/test-automation/SKILL.md +593 -0
package/.github/skills/workflow-diagnosis/SKILL.md +468 -0
package/.github/workflows/build-docker-image.yml +453 -0
package/.github/workflows/release.yml +68 -0
package/.releaserc.json +135 -0
package/CHANGELOG.md +117 -0
package/CLAUDE.md +336 -0
package/CONTRIBUTING.md +339 -0
package/Dockerfile +217 -0
package/README.md +1527 -0
package/STYLE.md +521 -0
package/add-js-extensions.d.ts +9 -0
package/add-js-extensions.d.ts.map +1 -0
package/add-js-extensions.js.map +1 -0
package/dist/add-js-extensions.d.ts +9 -0
package/dist/add-js-extensions.d.ts.map +1 -0
package/dist/add-js-extensions.js +52 -0
package/dist/add-js-extensions.js.map +1 -0
package/dist/ansi-colors.d.ts +26 -0
package/dist/ansi-colors.d.ts.map +1 -0
package/dist/ansi-colors.js +51 -0
package/dist/ansi-colors.js.map +1 -0
package/dist/cli/BaseCommand.d.ts +18 -0
package/dist/cli/BaseCommand.d.ts.map +1 -0
package/dist/cli/BaseCommand.js +31 -0
package/dist/cli/BaseCommand.js.map +1 -0
package/dist/cli/KasekiCLI.d.ts +30 -0
package/dist/cli/KasekiCLI.d.ts.map +1 -0
package/dist/cli/KasekiCLI.js +134 -0
package/dist/cli/KasekiCLI.js.map +1 -0
package/dist/cli/commands/ConfigCommand.d.ts +13 -0
package/dist/cli/commands/ConfigCommand.d.ts.map +1 -0
package/dist/cli/commands/ConfigCommand.js +131 -0
package/dist/cli/commands/ConfigCommand.js.map +1 -0
package/dist/cli/commands/DoctorCommand.d.ts +45 -0
package/dist/cli/commands/DoctorCommand.d.ts.map +1 -0
package/dist/cli/commands/DoctorCommand.js +309 -0
package/dist/cli/commands/DoctorCommand.js.map +1 -0
package/dist/cli/commands/ListCommand.d.ts +9 -0
package/dist/cli/commands/ListCommand.d.ts.map +1 -0
package/dist/cli/commands/ListCommand.js +81 -0
package/dist/cli/commands/ListCommand.js.map +1 -0
package/dist/cli/commands/ReportCommand.d.ts +9 -0
package/dist/cli/commands/ReportCommand.d.ts.map +1 -0
package/dist/cli/commands/ReportCommand.js +98 -0
package/dist/cli/commands/ReportCommand.js.map +1 -0
package/dist/cli/commands/RunCommand.d.ts +13 -0
package/dist/cli/commands/RunCommand.d.ts.map +1 -0
package/dist/cli/commands/RunCommand.js +191 -0
package/dist/cli/commands/RunCommand.js.map +1 -0
package/dist/cli/commands/SecretsCommand.d.ts +9 -0
package/dist/cli/commands/SecretsCommand.d.ts.map +1 -0
package/dist/cli/commands/SecretsCommand.js +109 -0
package/dist/cli/commands/SecretsCommand.js.map +1 -0
package/dist/cli/commands/ServeCommand.d.ts +9 -0
package/dist/cli/commands/ServeCommand.d.ts.map +1 -0
package/dist/cli/commands/ServeCommand.js +50 -0
package/dist/cli/commands/ServeCommand.js.map +1 -0
package/dist/cli/commands/SetupCommand.d.ts +42 -0
package/dist/cli/commands/SetupCommand.d.ts.map +1 -0
package/dist/cli/commands/SetupCommand.js +249 -0
package/dist/cli/commands/SetupCommand.js.map +1 -0
package/dist/cli.d.ts +9 -0
package/dist/cli.d.ts.map +1 -0
package/dist/cli.js +130 -0
package/dist/cli.js.map +1 -0
package/dist/config/ConfigManager.d.ts +395 -0
package/dist/config/ConfigManager.d.ts.map +1 -0
package/dist/config/ConfigManager.js +446 -0
package/dist/config/ConfigManager.js.map +1 -0
package/dist/docker/DockerManager.d.ts +69 -0
package/dist/docker/DockerManager.d.ts.map +1 -0
package/dist/docker/DockerManager.js +266 -0
package/dist/docker/DockerManager.js.map +1 -0
package/dist/event-aggregator.d.ts +71 -0
package/dist/event-aggregator.d.ts.map +1 -0
package/dist/event-aggregator.js +95 -0
package/dist/event-aggregator.js.map +1 -0
package/dist/github-app-token.d.ts +16 -0
package/dist/github-app-token.d.ts.map +1 -0
package/dist/github-app-token.js +148 -0
package/dist/github-app-token.js.map +1 -0
package/dist/idempotency-store.d.ts +61 -0
package/dist/idempotency-store.d.ts.map +1 -0
package/dist/idempotency-store.js +321 -0
package/dist/idempotency-store.js.map +1 -0
package/dist/index.d.ts +25 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +31 -0
package/dist/index.js.map +1 -0
package/dist/instance/InstanceManager.d.ts +81 -0
package/dist/instance/InstanceManager.d.ts.map +1 -0
package/dist/instance/InstanceManager.js +220 -0
package/dist/instance/InstanceManager.js.map +1 -0
package/dist/instance-metadata-reader.d.ts +48 -0
package/dist/instance-metadata-reader.d.ts.map +1 -0
package/dist/instance-metadata-reader.js +94 -0
package/dist/instance-metadata-reader.js.map +1 -0
package/dist/instance-state-derivation.d.ts +42 -0
package/dist/instance-state-derivation.d.ts.map +1 -0
package/dist/instance-state-derivation.js +133 -0
package/dist/instance-state-derivation.js.map +1 -0
package/dist/job-scheduler.d.ts +124 -0
package/dist/job-scheduler.d.ts.map +1 -0
package/dist/job-scheduler.js +992 -0
package/dist/job-scheduler.js.map +1 -0
package/dist/kaseki-api-client.d.ts +89 -0
package/dist/kaseki-api-client.d.ts.map +1 -0
package/dist/kaseki-api-client.js +405 -0
package/dist/kaseki-api-client.js.map +1 -0
package/dist/kaseki-api-config.d.ts +34 -0
package/dist/kaseki-api-config.d.ts.map +1 -0
package/dist/kaseki-api-config.js +113 -0
package/dist/kaseki-api-config.js.map +1 -0
package/dist/kaseki-api-routes.d.ts +13 -0
package/dist/kaseki-api-routes.d.ts.map +1 -0
package/dist/kaseki-api-routes.js +559 -0
package/dist/kaseki-api-routes.js.map +1 -0
package/dist/kaseki-api-service-wrapper.d.ts +43 -0
package/dist/kaseki-api-service-wrapper.d.ts.map +1 -0
package/dist/kaseki-api-service-wrapper.js +150 -0
package/dist/kaseki-api-service-wrapper.js.map +1 -0
package/dist/kaseki-api-service.d.ts +16 -0
package/dist/kaseki-api-service.d.ts.map +1 -0
package/dist/kaseki-api-service.js +143 -0
package/dist/kaseki-api-service.js.map +1 -0
package/dist/kaseki-api-types.d.ts +440 -0
package/dist/kaseki-api-types.d.ts.map +1 -0
package/dist/kaseki-api-types.js +64 -0
package/dist/kaseki-api-types.js.map +1 -0
package/dist/kaseki-cli-lib.d.ts +219 -0
package/dist/kaseki-cli-lib.d.ts.map +1 -0
package/dist/kaseki-cli-lib.js +523 -0
package/dist/kaseki-cli-lib.js.map +1 -0
package/dist/kaseki-cli.d.ts +38 -0
package/dist/kaseki-cli.d.ts.map +1 -0
package/dist/kaseki-cli.js +559 -0
package/dist/kaseki-cli.js.map +1 -0
package/dist/kaseki-report.d.ts +3 -0
package/dist/kaseki-report.d.ts.map +1 -0
package/dist/kaseki-report.js +140 -0
package/dist/kaseki-report.js.map +1 -0
package/dist/lib/subprocess-helpers.d.ts +98 -0
package/dist/lib/subprocess-helpers.d.ts.map +1 -0
package/dist/lib/subprocess-helpers.js +136 -0
package/dist/lib/subprocess-helpers.js.map +1 -0
package/dist/logger.d.ts +39 -0
package/dist/logger.d.ts.map +1 -0
package/dist/logger.js +79 -0
package/dist/logger.js.map +1 -0
package/dist/metrics.d.ts +19 -0
package/dist/metrics.d.ts.map +1 -0
package/dist/metrics.js +59 -0
package/dist/metrics.js.map +1 -0
package/dist/middleware/job-lookup.d.ts +27 -0
package/dist/middleware/job-lookup.d.ts.map +1 -0
package/dist/middleware/job-lookup.js +28 -0
package/dist/middleware/job-lookup.js.map +1 -0
package/dist/pi-event-filter.d.ts +3 -0
package/dist/pi-event-filter.d.ts.map +1 -0
package/dist/pi-event-filter.js +126 -0
package/dist/pi-event-filter.js.map +1 -0
package/dist/pi-progress-stream.d.ts +3 -0
package/dist/pi-progress-stream.d.ts.map +1 -0
package/dist/pi-progress-stream.js +205 -0
package/dist/pi-progress-stream.js.map +1 -0
package/dist/pi-progress-summarizer.d.ts +61 -0
package/dist/pi-progress-summarizer.d.ts.map +1 -0
package/dist/pi-progress-summarizer.js +246 -0
package/dist/pi-progress-summarizer.js.map +1 -0
package/dist/pre-flight-validator.d.ts +72 -0
package/dist/pre-flight-validator.d.ts.map +1 -0
package/dist/pre-flight-validator.js +513 -0
package/dist/pre-flight-validator.js.map +1 -0
package/dist/progress-stream-utils.d.ts +3 -0
package/dist/progress-stream-utils.d.ts.map +1 -0
package/dist/progress-stream-utils.js +15 -0
package/dist/progress-stream-utils.js.map +1 -0
package/dist/result-cache.d.ts +52 -0
package/dist/result-cache.d.ts.map +1 -0
package/dist/result-cache.js +134 -0
package/dist/result-cache.js.map +1 -0
package/dist/routes/artifact-routes.d.ts +10 -0
package/dist/routes/artifact-routes.d.ts.map +1 -0
package/dist/routes/artifact-routes.js +126 -0
package/dist/routes/artifact-routes.js.map +1 -0
package/dist/routes/log-routes.d.ts +8 -0
package/dist/routes/log-routes.d.ts.map +1 -0
package/dist/routes/log-routes.js +345 -0
package/dist/routes/log-routes.js.map +1 -0
package/dist/routes/status-routes.d.ts +8 -0
package/dist/routes/status-routes.d.ts.map +1 -0
package/dist/routes/status-routes.js +82 -0
package/dist/routes/status-routes.js.map +1 -0
package/dist/routes/webhook-routes.d.ts +6 -0
package/dist/routes/webhook-routes.d.ts.map +1 -0
package/dist/routes/webhook-routes.js +86 -0
package/dist/routes/webhook-routes.js.map +1 -0
package/dist/run-artifact-metadata-cache.d.ts +42 -0
package/dist/run-artifact-metadata-cache.d.ts.map +1 -0
package/dist/run-artifact-metadata-cache.js +139 -0
package/dist/run-artifact-metadata-cache.js.map +1 -0
package/dist/secret-value-cache.d.ts +13 -0
package/dist/secret-value-cache.d.ts.map +1 -0
package/dist/secret-value-cache.js +44 -0
package/dist/secret-value-cache.js.map +1 -0
package/dist/secrets/SecretsManager.d.ts +80 -0
package/dist/secrets/SecretsManager.d.ts.map +1 -0
package/dist/secrets/SecretsManager.js +306 -0
package/dist/secrets/SecretsManager.js.map +1 -0
package/dist/test-utils.d.ts +55 -0
package/dist/test-utils.d.ts.map +1 -0
package/dist/test-utils.js +48 -0
package/dist/test-utils.js.map +1 -0
package/dist/timestamp-tracker.d.ts +75 -0
package/dist/timestamp-tracker.d.ts.map +1 -0
package/dist/timestamp-tracker.js +121 -0
package/dist/timestamp-tracker.js.map +1 -0
package/dist/utils/failure-artifact-writer.d.ts +29 -0
package/dist/utils/failure-artifact-writer.d.ts.map +1 -0
package/dist/utils/failure-artifact-writer.js +157 -0
package/dist/utils/failure-artifact-writer.js.map +1 -0
package/dist/utils/file-helpers.d.ts +41 -0
package/dist/utils/file-helpers.d.ts.map +1 -0
package/dist/utils/file-helpers.js +143 -0
package/dist/utils/file-helpers.js.map +1 -0
package/dist/utils/http-client-factory.d.ts +46 -0
package/dist/utils/http-client-factory.d.ts.map +1 -0
package/dist/utils/http-client-factory.js +114 -0
package/dist/utils/http-client-factory.js.map +1 -0
package/dist/utils/progress-normalizer.d.ts +13 -0
package/dist/utils/progress-normalizer.d.ts.map +1 -0
package/dist/utils/progress-normalizer.js +57 -0
package/dist/utils/progress-normalizer.js.map +1 -0
package/dist/utils/response-helpers.d.ts +34 -0
package/dist/utils/response-helpers.d.ts.map +1 -0
package/dist/utils/response-helpers.js +78 -0
package/dist/utils/response-helpers.js.map +1 -0
package/dist/utils/route-helpers.d.ts +17 -0
package/dist/utils/route-helpers.d.ts.map +1 -0
package/dist/utils/route-helpers.js +22 -0
package/dist/utils/route-helpers.js.map +1 -0
package/dist/utils/status-response-builder.d.ts +23 -0
package/dist/utils/status-response-builder.d.ts.map +1 -0
package/dist/utils/status-response-builder.js +144 -0
package/dist/utils/status-response-builder.js.map +1 -0
package/dist/utils/type-guards.d.ts +37 -0
package/dist/utils/type-guards.d.ts.map +1 -0
package/dist/utils/type-guards.js +45 -0
package/dist/utils/type-guards.js.map +1 -0
package/dist/utils/utf8-helpers.d.ts +32 -0
package/dist/utils/utf8-helpers.d.ts.map +1 -0
package/dist/utils/utf8-helpers.js +97 -0
package/dist/utils/utf8-helpers.js.map +1 -0
package/dist/utils/webhook-event-builder.d.ts +26 -0
package/dist/utils/webhook-event-builder.d.ts.map +1 -0
package/dist/utils/webhook-event-builder.js +77 -0
package/dist/utils/webhook-event-builder.js.map +1 -0
package/dist/webhook-manager.d.ts +56 -0
package/dist/webhook-manager.d.ts.map +1 -0
package/dist/webhook-manager.js +359 -0
package/dist/webhook-manager.js.map +1 -0
package/docker/workspace-cache/package-lock.json +13 -0
package/docker/workspace-cache/package.json +7 -0
package/docker-compose.yml +53 -0
package/docs/API.md +708 -0
package/docs/BACKLOG.md +19 -0
package/docs/BUILD_STRATEGY.md +404 -0
package/docs/CLI.md +569 -0
package/docs/DEPLOYMENT.md +521 -0
package/docs/DEVELOPMENT.md +459 -0
package/docs/DOCKER_SETUP.md +522 -0
package/docs/ENHANCED_PROGRESS_LOGS.md +264 -0
package/docs/IMPLEMENTATION_SUMMARY.md +549 -0
package/docs/INTEGRATION_EXAMPLE.md +217 -0
package/docs/NPM_SETUP.md +468 -0
package/docs/PHASE1-4_IMPLEMENTATION.md +302 -0
package/docs/PHASE1_COMPLETION.md +192 -0
package/docs/PHASE2_COMPLETION.md +134 -0
package/docs/PHASE6_MIGRATION.md +392 -0
package/docs/PRINTF_SAFETY_FIX.md +282 -0
package/docs/QUALITY_GATES.md +369 -0
package/docs/SETUP_GUIDE.md +482 -0
package/docs/TASK_PROMPT_TEMPLATES.md +533 -0
package/docs/VALIDATION_FIX.md +139 -0
package/docs/VERIFICATION_CHECKLIST.md +335 -0
package/docs/repo-maturity.md +760 -0
package/fix-tests.d.ts +9 -0
package/fix-tests.d.ts.map +1 -0
package/fix-tests.js.map +1 -0
package/fix-tests.ts +53 -0
package/jest.config.ts +31 -0
package/kaseki +183 -0
package/kaseki-agent.sh +1961 -0
package/ops/logrotate/kaseki +10 -0
package/package.json +83 -0
package/perf/README.md +54 -0
package/perf/pi-event-filter.benchmark.test.ts +98 -0
package/run-kaseki-json.test.sh +106 -0
package/run-kaseki.sh +990 -0
package/scripts/allowlist-helper.sh +56 -0
package/scripts/cleanup-kaseki.sh +168 -0
package/scripts/deploy-pi-template.sh +293 -0
package/scripts/docker-entrypoint.sh +71 -0
package/scripts/dry-run-allowlist.sh +161 -0
package/scripts/kaseki-activate.sh +396 -0
package/scripts/kaseki-api.service +62 -0
package/scripts/kaseki-container-entrypoint-wrapper.sh +119 -0
package/scripts/kaseki-container-setup-remote.sh +172 -0
package/scripts/kaseki-container-setup.sh +193 -0
package/scripts/kaseki-healthcheck.sh +95 -0
package/scripts/kaseki-install.sh +50 -0
package/scripts/kaseki-maturity-score.sh +291 -0
package/scripts/kaseki-performance-metrics.sh +122 -0
package/scripts/kaseki-preflight.sh +270 -0
package/scripts/kaseki-setup.sh +265 -0
package/scripts/pi-setup-remote.sh +213 -0
package/scripts/setup-github-labels.sh +42 -0
package/scripts/suggest-allowlist.sh +68 -0
package/scripts/templates/MULTI_HOST_DISTRIBUTED.md +337 -0
package/scripts/templates/REST_API_SERVICE.md +490 -0
package/scripts/templates/SINGLE_HOST_CLI.md +194 -0
package/scripts/test-github-app.sh +248 -0
package/src/add-js-extensions.ts +61 -0
package/src/ansi-colors.test.ts +62 -0
package/src/ansi-colors.ts +67 -0
package/src/cli/BaseCommand.ts +40 -0
package/src/cli/KasekiCLI.ts +154 -0
package/src/cli/commands/ConfigCommand.ts +145 -0
package/src/cli/commands/DoctorCommand.ts +329 -0
package/src/cli/commands/ListCommand.ts +105 -0
package/src/cli/commands/ReportCommand.ts +110 -0
package/src/cli/commands/RunCommand.ts +218 -0
package/src/cli/commands/SecretsCommand.ts +120 -0
package/src/cli/commands/ServeCommand.ts +62 -0
package/src/cli/commands/SetupCommand.ts +301 -0
package/src/cli.ts +138 -0
package/src/config/ConfigManager.ts +476 -0
package/src/docker/DockerManager.ts +319 -0
package/src/docker-entrypoint-packaging.test.ts +33 -0
package/src/event-aggregator.test.ts +117 -0
package/src/event-aggregator.ts +126 -0
package/src/github-app-token.ts +215 -0
package/src/idempotency-store.test.ts +117 -0
package/src/idempotency-store.ts +385 -0
package/src/index.ts +89 -0
package/src/instance/InstanceManager.ts +285 -0
package/src/instance-metadata-reader.test.ts +190 -0
package/src/instance-metadata-reader.ts +129 -0
package/src/instance-state-derivation.test.ts +263 -0
package/src/instance-state-derivation.ts +148 -0
package/src/job-scheduler.test.ts +1236 -0
package/src/job-scheduler.ts +1117 -0
package/src/kaseki-api-client.ts +488 -0
package/src/kaseki-api-config.test.ts +315 -0
package/src/kaseki-api-config.ts +175 -0
package/src/kaseki-api-routes.test.ts +1615 -0
package/src/kaseki-api-routes.ts +643 -0
package/src/kaseki-api-service-wrapper.ts +188 -0
package/src/kaseki-api-service.test.ts +418 -0
package/src/kaseki-api-service.ts +192 -0
package/src/kaseki-api-types.ts +320 -0
package/src/kaseki-cli-lib.test.ts +552 -0
package/src/kaseki-cli-lib.ts +760 -0
package/src/kaseki-cli.ts +682 -0
package/src/kaseki-report.test.ts +118 -0
package/src/kaseki-report.ts +192 -0
package/src/lib/subprocess-helpers.ts +177 -0
package/src/logger.ts +114 -0
package/src/metrics.ts +66 -0
package/src/middleware/job-lookup.test.ts +113 -0
package/src/middleware/job-lookup.ts +45 -0
package/src/pi-event-filter.test.ts +183 -0
package/src/pi-event-filter.ts +183 -0
package/src/pi-progress-stream.ts +287 -0
package/src/pi-progress-summarizer.test.ts +302 -0
package/src/pi-progress-summarizer.ts +287 -0
package/src/pre-flight-validator.test.ts +512 -0
package/src/pre-flight-validator.ts +618 -0
package/src/progress-stream-utils.test.ts +35 -0
package/src/progress-stream-utils.ts +14 -0
package/src/result-cache.test.ts +195 -0
package/src/result-cache.ts +181 -0
package/src/routes/artifact-routes.ts +169 -0
package/src/routes/log-routes.ts +391 -0
package/src/routes/status-routes.ts +92 -0
package/src/routes/webhook-routes.ts +97 -0
package/src/run-artifact-metadata-cache.test.ts +80 -0
package/src/run-artifact-metadata-cache.ts +184 -0
package/src/secret-value-cache.test.ts +66 -0
package/src/secret-value-cache.ts +55 -0
package/src/secrets/SecretsManager.ts +343 -0
package/src/test-utils.ts +81 -0
package/src/timestamp-tracker.test.ts +134 -0
package/src/timestamp-tracker.ts +132 -0
package/src/utils/failure-artifact-writer.ts +187 -0
package/src/utils/file-helpers.test.ts +235 -0
package/src/utils/file-helpers.ts +150 -0
package/src/utils/http-client-factory.test.ts +245 -0
package/src/utils/http-client-factory.ts +157 -0
package/src/utils/progress-normalizer.test.ts +442 -0
package/src/utils/progress-normalizer.ts +68 -0
package/src/utils/response-helpers.test.ts +122 -0
package/src/utils/response-helpers.ts +101 -0
package/src/utils/route-helpers.ts +30 -0
package/src/utils/status-response-builder.ts +159 -0
package/src/utils/type-guards.ts +52 -0
package/src/utils/utf8-helpers.ts +102 -0
package/src/utils/webhook-event-builder.test.ts +143 -0
package/src/utils/webhook-event-builder.ts +87 -0
package/src/webhook-manager.test.ts +152 -0
package/src/webhook-manager.ts +445 -0
package/templates/allowlist-api-route.txt +7 -0
package/templates/allowlist-comprehensive.txt +8 -0
package/templates/allowlist-parser-fix.txt +6 -0
package/templates/allowlist-ui-component.txt +9 -0
package/templates/allowlist-utility.txt +9 -0
package/test/actual-model-metadata.test.sh +102 -0
package/test/dry-run.test.sh +131 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-0.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-1.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-invalid.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-str-0.json +1 -0
package/test/fixtures/kaseki-report-exit-codes/metadata-exit-str-1.json +1 -0
package/test/kaseki-api.integration.test.sh +165 -0
package/test/pi-event-filter-failure.test.sh +83 -0
package/test/printf-safety-focused.test.sh +99 -0
package/test/printf-safety-results/results/restoration.jsonl +10 -0
package/test/printf-safety-results/results/test.jsonl +0 -0
package/test/printf-safety.test.sh +297 -0
package/test/validation-fix.test.sh +79 -0
package/test/validation-integration.test.sh +109 -0
package/tests/allowlist-glob.test.sh +61 -0
package/tests/dependency-cache-key.test.sh +48 -0
package/tests/dependency-restore-mode.test.sh +48 -0
package/tests/doctor-template-parity.test.sh +95 -0
package/tests/github-operations.test.sh +142 -0
package/tests/npm-install-flags.test.sh +58 -0
package/tests/quality-gates.test.sh +178 -0
package/tests/repo-memory.test.sh +103 -0
package/tests/restore-disallowed-changes.test.sh +80 -0
package/tests/validation-missing-npm-scripts.test.sh +93 -0
package/tests/validation-strict-mode.test.sh +118 -0
package/tsconfig.changed.json +7 -0
package/tsconfig.json +39 -0

package/scripts/kaseki-container-entrypoint-wrapper.sh ADDED Viewed

@@ -0,0 +1,119 @@
+#!/usr/bin/env bash
+#
+# kaseki-container-entrypoint-wrapper.sh — Credential handling helper
+#
+# Internal helper used by docker-entrypoint.sh to safely handle credentials
+# in container entry point modes (setup, run-mode, etc).
+#
+# Not directly invoked by users; called from docker-entrypoint.sh
+set -euo pipefail
+# Securely handle credentials from environment variable
+# Args: <env_var_name> <target_file> [mode]
+handle_env_credential() {
+  local env_var="$1"
+  local target_file="$2"
+  local mode="${3:-600}"
+  # Read from environment
+  local credential="${!env_var:-}"
+  if [ -z "$credential" ]; then
+    echo "Error: $env_var environment variable is empty" >&2
+    return 1
+  fi
+  # Ensure directory exists
+  mkdir -p "$(dirname "$target_file")"
+  # Write to file with restricted permissions
+  # Using a temp file first to avoid truncation on error
+  local temp_file="$target_file.tmp.$$"
+  echo "$credential" > "$temp_file"
+  chmod "$mode" "$temp_file"
+  mv "$temp_file" "$target_file"
+  # Clear environment variable (security: avoid exposure in process list)
+  export "${env_var}="
+  return 0
+}
+# Verify credential file exists and is readable
+verify_credential() {
+  local credential_file="$1"
+  local description="${2:-Credential}"
+  if [ ! -f "$credential_file" ]; then
+    echo "Error: $description file not found: $credential_file" >&2
+    return 1
+  fi
+  if [ ! -r "$credential_file" ]; then
+    echo "Error: $description file not readable: $credential_file" >&2
+    return 1
+  fi
+  return 0
+}
+# Check if credential file has valid format
+validate_credential_format() {
+  local credential_file="$1"
+  local pattern="$2"  # regex pattern to match
+  if ! grep -q "$pattern" "$credential_file" 2>/dev/null; then
+    echo "Error: Credential file has invalid format" >&2
+    return 1
+  fi
+  return 0
+}
+# Export credential as environment variable for child processes
+# (only for backward compatibility; prefer file-based approach)
+export_credential_env() {
+  local credential_file="$1"
+  local env_var_name="$2"
+  if [ ! -f "$credential_file" ]; then
+    echo "Error: Credential file not found: $credential_file" >&2
+    return 1
+  fi
+  local credential
+  credential=$(<"$credential_file")
+  export "$env_var_name=$credential"
+  return 0
+}
+# Main router: called from docker-entrypoint.sh
+case "${1:-}" in
+  handle-env)
+    shift
+    handle_env_credential "$@"
+    ;;
+  verify)
+    shift
+    verify_credential "$@"
+    ;;
+  validate-format)
+    shift
+    validate_credential_format "$@"
+    ;;
+  export-env)
+    shift
+    export_credential_env "$@"
+    ;;
+  *)
+    echo "Usage: $0 <command> [args]"
+    echo "Commands:"
+    echo "  handle-env <env_var> <target_file> [mode]     # Read from env, write to file"
+    echo "  verify <file> [description]                    # Verify file exists and readable"
+    echo "  validate-format <file> <regex>                 # Validate file content format"
+    echo "  export-env <file> <env_var>                    # Export file to env var"
+    exit 1
+    ;;
+esac

package/scripts/kaseki-container-setup-remote.sh ADDED Viewed

@@ -0,0 +1,172 @@
+#!/usr/bin/env bash
+#
+# kaseki-container-setup-remote.sh — Remote host setup orchestrator
+#
+# This script runs INSIDE the kaseki-agent container to orchestrate
+# setup of remote Pi/host instances via SSH.
+#
+# It:
+# 1. Validates SSH connectivity
+# 2. Securely transfers API key
+# 3. Triggers setup on remote host (via Docker or script)
+# 4. Validates remote readiness
+#
+# Entry point: docker run kaseki-agent setup-remote <host> <api-key>
+set -euo pipefail
+# Colors
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+BLUE='\033[0;34m'
+NC='\033[0m'
+# Helpers
+print_header() { echo -e "${BLUE}=== $1 ===${NC}"; }
+print_success() { echo -e "${GREEN}✓ $1${NC}"; }
+print_error() { echo -e "${RED}✗ $1${NC}" >&2; }
+print_warning() { echo -e "${YELLOW}⚠ $1${NC}"; }
+# Argument validation
+if [ $# -lt 2 ]; then
+  echo "Usage: $0 <remote-host> <api-key-or-file>"
+  echo ""
+  echo "Examples:"
+  echo "  $0 pi@192.168.88.201 sk-or-v1-your-key"
+  echo "  $0 pi@192.168.88.201 /path/to/api-key-file"
+  echo ""
+  exit 1
+fi
+REMOTE_HOST="$1"
+API_KEY_SOURCE="$2"
+# Resolve API key
+if [ -f "$API_KEY_SOURCE" ]; then
+  # It's a file
+  API_KEY=$(<"$API_KEY_SOURCE")
+elif [[ "$API_KEY_SOURCE" =~ ^sk-or ]]; then
+  # It's an inline key
+  API_KEY="$API_KEY_SOURCE"
+else
+  print_error "Invalid API key source: must be a file or start with 'sk-or'"
+  exit 1
+fi
+# Validate key format
+if [[ ! "$API_KEY" =~ ^sk-or ]]; then
+  print_error "Invalid API key format: must start with 'sk-or'"
+  exit 1
+fi
+main() {
+  echo ""
+  echo "╔════════════════════════════════════════════════════════════╗"
+  echo "║    Kaseki Agent - Remote Setup Orchestrator                 ║"
+  echo "╚════════════════════════════════════════════════════════════╝"
+  echo ""
+  print_header "Configuration"
+  echo "Remote host: $REMOTE_HOST"
+  echo ""
+  # Step 1: SSH connectivity check
+  print_header "SSH Connectivity Check"
+  if ssh -o ConnectTimeout=5 "$REMOTE_HOST" "echo 'OK'" >/dev/null 2>&1; then
+    print_success "SSH connectivity to $REMOTE_HOST verified"
+  else
+    print_error "Cannot connect to $REMOTE_HOST via SSH"
+    print_warning "Make sure:"
+    print_warning "  1. Host is reachable"
+    print_warning "  2. SSH keys are configured"
+    print_warning "  3. User has permission"
+    exit 1
+  fi
+  echo ""
+  # Step 2: Create secrets directory on remote
+  print_header "Creating Secrets Directory on Remote Host"
+  if ssh "$REMOTE_HOST" "
+    mkdir -p ~/.kaseki/secrets
+    chmod 700 ~/.kaseki/secrets
+    [ -d ~/.kaseki/secrets ] && echo 'Secrets directory created'
+  " >/dev/null 2>&1; then
+    print_success "Secrets directory created on $REMOTE_HOST"
+  else
+    print_error "Failed to create secrets directory on remote host"
+    exit 1
+  fi
+  echo ""
+  # Step 3: Transfer API key securely via SSH
+  print_header "Transferring OpenRouter API Key Securely"
+  if echo "$API_KEY" | ssh "$REMOTE_HOST" "
+    cat > ~/.kaseki/secrets/openrouter_api_key
+    chmod 600 ~/.kaseki/secrets/openrouter_api_key
+    [ -f ~/.kaseki/secrets/openrouter_api_key ] && echo 'API key transferred'
+  " >/dev/null 2>&1; then
+    print_success "API key transferred and secured on $REMOTE_HOST"
+  else
+    print_error "Failed to transfer API key to remote host"
+    exit 1
+  fi
+  echo ""
+  # Step 4: Try Docker-based setup on remote (if Docker available)
+  print_header "Attempting Remote Setup"
+  # Check if Docker is available on remote
+  if ssh "$REMOTE_HOST" "command -v docker >/dev/null 2>&1" >/dev/null 2>&1; then
+    print_success "Docker available on remote host"
+    # Try to pull image and run setup
+    echo "Pulling kaseki-agent image on remote host (may take a few minutes)..."
+    if ssh "$REMOTE_HOST" "
+      docker pull docker.io/cyanautomation/kaseki-agent:latest >/dev/null 2>&1 && \
+      docker run -it \
+        -v ~/.kaseki/secrets:/secrets \
+        -v /var/run/docker.sock:/var/run/docker.sock \
+        docker.io/cyanautomation/kaseki-agent:latest \
+        doctor >/dev/null 2>&1
+    " 2>&1 | tail -10; then
+      print_success "Docker-based setup successful on $REMOTE_HOST"
+    else
+      print_warning "Docker-based setup had issues. Continuing..."
+    fi
+  else
+    print_warning "Docker not available on $REMOTE_HOST"
+    print_warning "Manual setup required. Guide:"
+    echo ""
+    echo "  SSH to $REMOTE_HOST and run:"
+    echo "    mkdir -p ~/.kaseki/secrets"
+    echo "    chmod 700 ~/.kaseki/secrets"
+    echo "    curl -fsSL https://raw.githubusercontent.com/CyanAutomation/kaseki-agent/main/scripts/kaseki-install.sh | KASEKI_CONTROLLER_MODE=1 KASEKI_REPLACE_STALE=1 sh"
+    echo ""
+  fi
+  echo ""
+  # Final status
+  echo "╔════════════════════════════════════════════════════════════╗"
+  echo -e "${GREEN}║      Setup Complete for $REMOTE_HOST! ✓${NC}"
+  echo "╚════════════════════════════════════════════════════════════╝"
+  echo ""
+  echo "Next steps:"
+  echo "  1. Verify readiness on remote host:"
+  echo "     ssh $REMOTE_HOST 'docker run -v ~/.kaseki/secrets:/secrets docker.io/cyanautomation/kaseki-agent:latest doctor'"
+  echo ""
+  echo "  2. Run your first task on remote host:"
+  echo "     ssh $REMOTE_HOST '"
+  echo "       docker run -it \\"
+  echo "         -v ~/.kaseki/secrets:/secrets \\"
+  echo "         -v /var/run/docker.sock:/var/run/docker.sock \\"
+  echo "         docker.io/cyanautomation/kaseki-agent:latest \\"
+  echo "         agent https://github.com/your-org/your-repo main"
+  echo "     '"
+  echo ""
+  echo "  3. For additional hosts:"
+  echo "     docker run kaseki-agent setup-remote pi@192.168.88.202 \$(cat ~/.kaseki/secrets/openrouter_api_key)"
+  echo ""
+}
+main "$@"

package/scripts/kaseki-container-setup.sh ADDED Viewed

@@ -0,0 +1,193 @@
+#!/usr/bin/env bash
+#
+# kaseki-container-setup.sh — Setup wizard inside the container
+#
+# This script runs INSIDE the kaseki-agent container during setup mode.
+# It:
+# 1. Securely prompts for OpenRouter API key (or accepts from env var)
+# 2. Creates /secrets directory with proper permissions
+# 3. Validates the API key
+# 4. Runs health checks
+#
+# Entry point: docker run -it kaseki-agent setup
+# Or: docker run -e OPENROUTER_API_KEY=sk-or-... kaseki-agent setup
+set -euo pipefail
+# Colors for output
+RED='\033[0;31m'
+GREEN='\033[0;32m'
+YELLOW='\033[1;33m'
+BLUE='\033[0;34m'
+NC='\033[0m'
+# Helper functions
+print_header() {
+  echo -e "${BLUE}=== $1 ===${NC}"
+}
+print_success() {
+  echo -e "${GREEN}✓ $1${NC}"
+}
+print_error() {
+  echo -e "${RED}✗ $1${NC}" >&2
+}
+print_warning() {
+  echo -e "${YELLOW}⚠ $1${NC}"
+}
+# Setup secrets directory
+setup_secrets_dir() {
+  SECRETS_DIR="${1:-.}/secrets"
+  mkdir -p "$SECRETS_DIR"
+  chmod 700 "$SECRETS_DIR"
+  print_success "Secrets directory ready: $SECRETS_DIR"
+}
+# Get API key from various sources
+get_api_key() {
+  print_header "OpenRouter API Key Configuration"
+  # Priority 1: Check if API key file already exists (mounted)
+  if [ -f "/secrets/openrouter_api_key" ] && [ -s "/secrets/openrouter_api_key" ]; then
+    print_warning "API key file already exists at /secrets/openrouter_api_key"
+    read -p "Use existing key? (y/n) " -n 1 -r
+    echo
+    if [[ $REPLY =~ ^[Yy]$ ]]; then
+      API_KEY=$(<"/secrets/openrouter_api_key")
+      return 0
+    fi
+  fi
+  # Priority 2: Check environment variable
+  if [ -n "${OPENROUTER_API_KEY:-}" ]; then
+    print_success "Using API key from OPENROUTER_API_KEY environment variable"
+    API_KEY="$OPENROUTER_API_KEY"
+    return 0
+  fi
+  # Priority 3: Prompt interactively
+  echo "You can obtain an API key from: https://openrouter.ai/keys"
+  echo ""
+  read -rsp "Enter your OpenRouter API key (sk-or-v1-...): " API_KEY
+  echo
+  # Validate key format
+  if [[ ! "$API_KEY" =~ ^sk-or ]]; then
+    print_error "Invalid API key format. Must start with 'sk-or'"
+    return 1
+  fi
+  return 0
+}
+# Store API key securely
+store_api_key() {
+  local api_key="$1"
+  local secrets_dir="${2:-/secrets}"
+  local key_file="$secrets_dir/openrouter_api_key"
+  # Write key to file with restrictive permissions
+  echo "$api_key" > "$key_file"
+  chmod 600 "$key_file"
+  # Verify
+  if [ ! -f "$key_file" ] || [ ! -r "$key_file" ]; then
+    print_error "Failed to write API key to $key_file"
+    return 1
+  fi
+  print_success "API key stored securely at $key_file (mode 600)"
+  return 0
+}
+# Run health checks
+run_health_checks() {
+  print_header "Running Health Checks"
+  # Check Docker daemon
+  if docker ps >/dev/null 2>&1; then
+    print_success "Docker daemon is accessible"
+  else
+    print_error "Docker daemon is not accessible"
+    print_warning "Make sure Docker socket is mounted: -v /var/run/docker.sock:/var/run/docker.sock"
+    return 1
+  fi
+  # Check Pi CLI
+  if command -v pi >/dev/null 2>&1; then
+    print_success "Pi CLI is available"
+  else
+    print_error "Pi CLI is not available"
+    return 1
+  fi
+  # Check API key file is readable
+  if [ -f "/secrets/openrouter_api_key" ] && [ -r "/secrets/openrouter_api_key" ]; then
+    print_success "API key file is readable"
+  else
+    print_error "API key file is missing or unreadable"
+    return 1
+  fi
+  print_success "All health checks passed"
+  return 0
+}
+# Main workflow
+main() {
+  echo ""
+  echo "╔════════════════════════════════════════════════════════════╗"
+  echo "║      Kaseki Agent - Container Setup Wizard                  ║"
+  echo "╚════════════════════════════════════════════════════════════╝"
+  echo ""
+  # Step 1: Setup secrets directory
+  setup_secrets_dir "/secrets"
+  echo ""
+  # Step 2: Get API key
+  if ! get_api_key; then
+    print_error "Failed to configure API key"
+    exit 1
+  fi
+  echo ""
+  # Step 3: Store API key
+  if ! store_api_key "$API_KEY" "/secrets"; then
+    print_error "Failed to store API key"
+    exit 1
+  fi
+  echo ""
+  # Step 4: Run health checks
+  if ! run_health_checks; then
+    print_warning "Some health checks failed. Setup may have issues."
+  fi
+  echo ""
+  # Success message
+  echo "╔════════════════════════════════════════════════════════════╗"
+  echo -e "${GREEN}║              Setup Complete! ✓                             ║${NC}"
+  echo "╚════════════════════════════════════════════════════════════╝"
+  echo ""
+  echo "Next steps:"
+  echo "  1. Run your first task:"
+  echo "     docker run -it \\"
+  echo "       -v ~/.kaseki/secrets:/secrets \\"
+  echo "       -v /var/run/docker.sock:/var/run/docker.sock \\"
+  echo "       docker.io/cyanautomation/kaseki-agent:latest \\"
+  echo "       agent https://github.com/your-org/your-repo main"
+  echo ""
+  echo "  2. Or use the convenience wrapper (if installed):"
+  echo "     ./kaseki agent https://github.com/your-org/your-repo main"
+  echo ""
+  echo "  3. For help:"
+  echo "     docker run kaseki-agent --help"
+  echo ""
+}
+# Run main
+main "$@"

package/scripts/kaseki-healthcheck.sh ADDED Viewed

@@ -0,0 +1,95 @@
+#!/usr/bin/env bash
+set -euo pipefail
+TARGET_FILE="${1:-${KASEKI_HEARTBEAT_FILE:-/var/log/kaseki/heartbeat.json}}"
+CHECK_CONTAINERS="${KASEKI_HEALTHCHECK_CONTAINERS:-1}"
+json_encode() {
+  local value
+  value="$(cat)"
+  value="${value//\\/\\\\}"
+  value="${value//\"/\\\"}"
+  value="${value//$'\b'/\\b}"
+  value="${value//$'\f'/\\f}"
+  value="${value//$'\n'/\\n}"
+  value="${value//$'\r'/\\r}"
+  value="${value//$'\t'/\\t}"
+  printf '"%s"' "$value"
+}
+json_string() {
+  printf '%s' "$1" | json_encode
+}
+status_ok="true"
+ts="$(date -u +%Y-%m-%dT%H:%M:%SZ)"
+has_docker="false"
+docker_cmd=""
+daemon_ok="false"
+daemon_error=""
+container_check_enabled="false"
+container_count="0"
+container_names_json="[]"
+if command -v docker >/dev/null 2>&1; then
+  has_docker="true"
+  docker_cmd="$(command -v docker)"
+fi
+if [ "$has_docker" = "true" ]; then
+  if docker info >/dev/null 2>&1; then
+    daemon_ok="true"
+  else
+    daemon_error="$(docker info 2>&1 || true)"
+    status_ok="false"
+  fi
+else
+  status_ok="false"
+fi
+if [ "$CHECK_CONTAINERS" = "1" ] && [ "$daemon_ok" = "true" ]; then
+  container_check_enabled="true"
+  mapfile -t names < <(docker ps --filter 'name=^kaseki-' --format '{{.Names}}' || true)
+  container_count="${#names[@]}"
+  if [ "${#names[@]}" -gt 0 ]; then
+    json_items=()
+    for n in "${names[@]}"; do
+      json_items+=("$(json_string "$n")")
+    done
+    container_names_json="[$(IFS=,; echo "${json_items[*]}")]"
+  fi
+fi
+overall_status="ok"
+if [ "$status_ok" != "true" ]; then
+  overall_status="degraded"
+fi
+mkdir -p "$(dirname "$TARGET_FILE")"
+tmp_file="$(mktemp "${TARGET_FILE}.XXXXXX")"
+cat > "$tmp_file" <<JSON
+{
+  "timestamp": $(json_string "$ts"),
+  "status": $(json_string "$overall_status"),
+  "checks": {
+    "docker_command": {
+      "ok": $has_docker,
+      "path": $(json_string "$docker_cmd")
+    },
+    "docker_daemon": {
+      "ok": $daemon_ok,
+      "error": $(json_string "$daemon_error")
+    },
+    "kaseki_containers": {
+      "enabled": $container_check_enabled,
+      "active_count": $container_count,
+      "active_names": $container_names_json
+    }
+  }
+}
+JSON
+mv "$tmp_file" "$TARGET_FILE"
+printf '%s\n' "$TARGET_FILE"

package/scripts/kaseki-install.sh ADDED Viewed

@@ -0,0 +1,50 @@
+#!/usr/bin/env bash
+set -euo pipefail
+KASEKI_REPO_URL="${KASEKI_REPO_URL:-https://github.com/CyanAutomation/kaseki-agent.git}"
+KASEKI_REF="${KASEKI_REF:-main}"
+KASEKI_ROOT="${KASEKI_ROOT:-/agents}"
+KASEKI_CHECKOUT_DIR="${KASEKI_CHECKOUT_DIR:-$KASEKI_ROOT/kaseki-agent}"
+KASEKI_LOG_DIR="${KASEKI_LOG_DIR:-/var/log/kaseki}"
+KASEKI_CONTROLLER_MODE="${KASEKI_CONTROLLER_MODE:-0}"
+KASEKI_BUILD_IMAGE_IF_TEMPLATE_MISSING="${KASEKI_BUILD_IMAGE_IF_TEMPLATE_MISSING:-1}"
+KASEKI_IMAGE_PULL_POLICY="${KASEKI_IMAGE_PULL_POLICY:-always}"
+KASEKI_REPLACE_STALE="${KASEKI_REPLACE_STALE:-0}"
+if [ "$KASEKI_CONTROLLER_MODE" = "1" ]; then
+  KASEKI_BUILD_IMAGE_IF_TEMPLATE_MISSING="0"
+  KASEKI_IMAGE_PULL_POLICY="always"
+fi
+if ! command -v git >/dev/null 2>&1; then
+  printf 'Error: git is required to install kaseki-agent.\n' >&2
+  exit 1
+fi
+mkdir -p "$(dirname "$KASEKI_CHECKOUT_DIR")"
+if [ -d "$KASEKI_CHECKOUT_DIR/.git" ]; then
+  if [ -n "$(git -C "$KASEKI_CHECKOUT_DIR" status --porcelain)" ]; then
+    if [ "$KASEKI_REPLACE_STALE" = "1" ]; then
+      git -C "$KASEKI_CHECKOUT_DIR" reset --hard HEAD
+      git -C "$KASEKI_CHECKOUT_DIR" clean -fdx
+    else
+      printf 'Error: dirty kaseki-agent checkout at %s. Set KASEKI_REPLACE_STALE=1 to reset stale local files.\n' "$KASEKI_CHECKOUT_DIR" >&2
+      exit 3
+    fi
+  fi
+  git -C "$KASEKI_CHECKOUT_DIR" fetch --prune origin
+else
+  rm -rf "$KASEKI_CHECKOUT_DIR"
+  git clone "$KASEKI_REPO_URL" "$KASEKI_CHECKOUT_DIR"
+fi
+git -C "$KASEKI_CHECKOUT_DIR" checkout "$KASEKI_REF"
+git -C "$KASEKI_CHECKOUT_DIR" pull --ff-only origin "$KASEKI_REF" 2>/dev/null || true
+KASEKI_LOG_DIR="$KASEKI_LOG_DIR" \
+KASEKI_CONTROLLER_MODE="$KASEKI_CONTROLLER_MODE" \
+KASEKI_BUILD_IMAGE_IF_TEMPLATE_MISSING="$KASEKI_BUILD_IMAGE_IF_TEMPLATE_MISSING" \
+KASEKI_IMAGE_PULL_POLICY="$KASEKI_IMAGE_PULL_POLICY" \
+KASEKI_REPLACE_STALE="$KASEKI_REPLACE_STALE" \
+"$KASEKI_CHECKOUT_DIR/scripts/kaseki-activate.sh" --json bootstrap