npm - @exaudeus/workrail - Versions diffs - 0.0.13 → 0.0.15 - Mend

@exaudeus/workrail 0.0.13 → 0.0.15

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

package/package.json +1 -1
package/spec/examples/coding-task-workflow.json +126 -107
package/spec/examples/conditional-workflow-example.json +251 -212
package/spec/examples/valid-workflow.json +118 -115
package/spec/workflow.schema.json +62 -2
package/workflows/adaptive-ticket-creation.json +272 -245
package/workflows/coding-task-workflow.json +317 -138
package/workflows/learner-centered-course-workflow.json +267 -265
package/workflows/personal-learning-materials-creation-branched.json +195 -175
package/workflows/presentation-creation.json +244 -237
package/workflows/systemic-bug-investigation.json +175 -174
package/workflows/workflow-for-workflows.json +296 -262

package/spec/examples/valid-workflow.json CHANGED Viewed

@@ -1,124 +1,127 @@
 {
-  "id": "simple-auth-implementation",
-  "name": "Simple Authentication Implementation",
-  "description": "Implement basic JWT authentication for a REST API with user login and token validation",
-  "version": "0.1.0",
-  "preconditions": [
-    "User model exists in the database",
-    "JWT library is installed in the project",
-    "Environment variables for JWT_SECRET are configured"
-  ],
-  "clarificationPrompts": [
-    "What is the token expiration time you want to use?",
-    "Should the authentication support refresh tokens?",
-    "Do you need role-based access control?"
-  ],
-  "steps": [
-    {
-      "id": "analyze-current-auth",
-      "title": "Analyze current authentication setup",
-      "prompt": "Examine the existing authentication implementation if any. Look for: user model structure, existing auth middleware, login endpoints. Document what you find.",
-      "agentRole": "You are a security-focused systems analyst with expertise in authentication architecture. Your role is to thoroughly assess existing auth implementations, identify security vulnerabilities, and document current patterns to ensure new implementations align with security best practices.",
-      "requireConfirmation": true
-    },
-    {
-      "id": "create-auth-middleware",
-      "title": "Create authentication middleware",
-      "prompt": "Create a middleware function that extracts and validates JWT tokens from the Authorization header. Return 401 for invalid tokens.",
-      "agentRole": "You are a senior backend engineer specializing in secure middleware development. Focus on implementing robust token validation, proper error handling, and following security best practices for JWT token processing. Ensure your implementation is production-ready and follows the principle of least privilege.",
-      "askForFiles": true,
-      "validationCriteria": [
+    "id": "simple-auth-implementation",
+    "name": "Simple Authentication Implementation",
+    "description": "Implement basic JWT authentication for a REST API with user login and token validation",
+    "version": "0.1.0",
+    "preconditions": [
+        "User model exists in the database",
+        "JWT library is installed in the project",
+        "Environment variables for JWT_SECRET are configured"
+    ],
+    "clarificationPrompts": [
+        "What is the token expiration time you want to use?",
+        "Should the authentication support refresh tokens?",
+        "Do you need role-based access control?"
+    ],
+    "steps": [
         {
-          "type": "contains",
-          "value": "jwt",
-          "message": "Implementation should include JWT token handling"
+            "id": "analyze-current-auth",
+            "title": "Analyze current authentication setup",
+            "prompt": "Examine the existing authentication implementation if any. Look for: user model structure, existing auth middleware, login endpoints. Document what you find.",
+            "agentRole": "You are a security-focused systems analyst with expertise in authentication architecture. Your role is to thoroughly assess existing auth implementations, identify security vulnerabilities, and document current patterns to ensure new implementations align with security best practices.",
+            "requireConfirmation": true
         },
         {
-          "type": "contains",
-          "value": "Authorization",
-          "message": "Should extract token from Authorization header"
+            "id": "create-auth-middleware",
+            "title": "Create authentication middleware",
+            "prompt": "Create a middleware function that extracts and validates JWT tokens from the Authorization header. Return 401 for invalid tokens.",
+            "agentRole": "You are a senior backend engineer specializing in secure middleware development. Focus on implementing robust token validation, proper error handling, and following security best practices for JWT token processing. Ensure your implementation is production-ready and follows the principle of least privilege.",
+            "askForFiles": true,
+            "validationCriteria": [
+                {
+                    "type": "contains",
+                    "value": "jwt",
+                    "message": "Implementation should include JWT token handling"
+                },
+                {
+                    "type": "contains",
+                    "value": "Authorization",
+                    "message": "Should extract token from Authorization header"
+                },
+                {
+                    "type": "regex",
+                    "pattern": "\\b(401|unauthorized)\\b",
+                    "flags": "i",
+                    "message": "Should return 401 status for invalid tokens"
+                }
+            ],
+            "hasValidation": true
         },
         {
-          "type": "regex",
-          "pattern": "\\b(401|unauthorized)\\b",
-          "flags": "i",
-          "message": "Should return 401 status for invalid tokens"
-        }
-      ]
-    },
-    {
-      "id": "implement-login",
-      "title": "Implement login endpoint",
-      "prompt": "Create a POST /auth/login endpoint that accepts email and password, validates credentials against the database, and returns a JWT token on success.",
-      "agentRole": "You are an API development specialist with deep expertise in authentication endpoints and security. Your implementation should include proper input validation, secure password handling, rate limiting considerations, and comprehensive error responses that don't leak sensitive information.",
-      "validationCriteria": [
-        {
-          "type": "contains",
-          "value": "POST",
-          "message": "Should implement POST endpoint"
-        },
-        {
-          "type": "regex",
-          "pattern": "/(auth/)?login",
-          "message": "Should implement login endpoint"
-        },
-        {
-          "type": "contains",
-          "value": "email",
-          "message": "Should handle email authentication"
-        },
-        {
-          "type": "contains",
-          "value": "password",
-          "message": "Should handle password authentication"
-        },
-        {
-          "type": "contains",
-          "value": "jwt",
-          "message": "Should return JWT token"
-        }
-      ]
-    },
-    {
-      "id": "test-authentication",
-      "title": "Test the authentication flow",
-      "prompt": "Test the complete flow: 1) Login with valid credentials, 2) Use the token to access a protected route, 3) Verify invalid tokens are rejected",
-      "agentRole": "You are a quality assurance engineer specializing in security testing and authentication flows. Your testing approach should be comprehensive, covering positive and negative test cases, edge cases, and potential security vulnerabilities. Focus on creating maintainable, automated tests that verify both functionality and security.",
-      "requireConfirmation": true,
-      "validationCriteria": [
-        {
-          "type": "contains",
-          "value": "valid credentials",
-          "condition": {
-            "var": "testType",
-            "equals": "comprehensive"
-          },
-          "message": "Should test login with valid credentials"
-        },
-        {
-          "type": "contains",
-          "value": "protected route",
-          "message": "Should test access to protected routes"
-        },
-        {
-          "type": "contains",
-          "value": "invalid tokens",
-          "message": "Should verify invalid token rejection"
+            "id": "implement-login",
+            "title": "Implement login endpoint",
+            "prompt": "Create a POST /auth/login endpoint that accepts email and password, validates credentials against the database, and returns a JWT token on success.",
+            "agentRole": "You are an API development specialist with deep expertise in authentication endpoints and security. Your implementation should include proper input validation, secure password handling, rate limiting considerations, and comprehensive error responses that don't leak sensitive information.",
+            "validationCriteria": [
+                {
+                    "type": "contains",
+                    "value": "POST",
+                    "message": "Should implement POST endpoint"
+                },
+                {
+                    "type": "regex",
+                    "pattern": "/(auth/)?login",
+                    "message": "Should implement login endpoint"
+                },
+                {
+                    "type": "contains",
+                    "value": "email",
+                    "message": "Should handle email authentication"
+                },
+                {
+                    "type": "contains",
+                    "value": "password",
+                    "message": "Should handle password authentication"
+                },
+                {
+                    "type": "contains",
+                    "value": "jwt",
+                    "message": "Should return JWT token"
+                }
+            ],
+            "hasValidation": true
         },
         {
-          "type": "regex",
-          "pattern": "\\b(test|spec|describe|it)\\b",
-          "message": "Should include proper test structure"
+            "id": "test-authentication",
+            "title": "Test the authentication flow",
+            "prompt": "Test the complete flow: 1) Login with valid credentials, 2) Use the token to access a protected route, 3) Verify invalid tokens are rejected",
+            "agentRole": "You are a quality assurance engineer specializing in security testing and authentication flows. Your testing approach should be comprehensive, covering positive and negative test cases, edge cases, and potential security vulnerabilities. Focus on creating maintainable, automated tests that verify both functionality and security.",
+            "requireConfirmation": true,
+            "validationCriteria": [
+                {
+                    "type": "contains",
+                    "value": "valid credentials",
+                    "condition": {
+                        "var": "testType",
+                        "equals": "comprehensive"
+                    },
+                    "message": "Should test login with valid credentials"
+                },
+                {
+                    "type": "contains",
+                    "value": "protected route",
+                    "message": "Should test access to protected routes"
+                },
+                {
+                    "type": "contains",
+                    "value": "invalid tokens",
+                    "message": "Should verify invalid token rejection"
+                },
+                {
+                    "type": "regex",
+                    "pattern": "\\b(test|spec|describe|it)\\b",
+                    "message": "Should include proper test structure"
+                }
+            ],
+            "hasValidation": true
         }
-      ]
-    }
-  ],
-  "metaGuidance": [
-    "Always hash passwords using bcrypt or similar",
-    "Include proper error messages for debugging",
-    "Follow RESTful conventions for endpoints",
-    "Add rate limiting to prevent brute force attacks",
-    "Each step leverages specialized agent expertise through agentRole field",
-    "Agent roles provide behavioral guidance separate from user-facing prompts"
-  ]
-}
+    ],
+    "metaGuidance": [
+        "Always hash passwords using bcrypt or similar",
+        "Include proper error messages for debugging",
+        "Follow RESTful conventions for endpoints",
+        "Add rate limiting to prevent brute force attacks",
+        "Each step leverages specialized agent expertise through agentRole field",
+        "Agent roles provide behavioral guidance separate from user-facing prompts"
+    ]
+}

package/spec/workflow.schema.json CHANGED Viewed

@@ -93,9 +93,69 @@
             "description": "Whether the agent should ask for relevant files before executing the step.",
             "default": false
           },
-          "requireConfirmation": {
+          "hasValidation": {
             "type": "boolean",
-            "description": "Whether to require user confirmation before proceeding",
+            "description": "Whether this step has validation logic that should be called. Set to true for steps with validationCriteria to optimize execution performance.",
+            "default": false
+          },
+          "requireConfirmation": {
+            "oneOf": [
+              {
+                "type": "boolean",
+                "description": "Whether to require user confirmation before proceeding"
+              },
+              {
+                "type": "object",
+                "description": "Conditional logic that determines if confirmation is required based on context variables. Uses same expression format as runCondition.",
+                "properties": {
+                  "var": {
+                    "type": "string",
+                    "description": "Variable name from execution context"
+                  },
+                  "equals": {
+                    "description": "Check if variable equals this value"
+                  },
+                  "not_equals": {
+                    "description": "Check if variable does not equal this value"
+                  },
+                  "gt": {
+                    "type": "number",
+                    "description": "Check if variable is greater than this number"
+                  },
+                  "gte": {
+                    "type": "number",
+                    "description": "Check if variable is greater than or equal to this number"
+                  },
+                  "lt": {
+                    "type": "number",
+                    "description": "Check if variable is less than this number"
+                  },
+                  "lte": {
+                    "type": "number",
+                    "description": "Check if variable is less than or equal to this number"
+                  },
+                  "and": {
+                    "type": "array",
+                    "description": "Logical AND of multiple conditions",
+                    "items": {
+                      "type": "object"
+                    }
+                  },
+                  "or": {
+                    "type": "array",
+                    "description": "Logical OR of multiple conditions",
+                    "items": {
+                      "type": "object"
+                    }
+                  },
+                  "not": {
+                    "type": "object",
+                    "description": "Logical NOT of a condition"
+                  }
+                },
+                "additionalProperties": false
+              }
+            ],
             "default": false
           },
           "runCondition": {