@fusengine/harness 0.1.0 → 0.1.1

package/dist/adapters/cline/index.d.mts

@@ -0,0 +1,23 @@
+//#region src/adapters/cline/index.d.ts
+/** `PreToolUse` stdin payload (subset). */
+interface ClineHookInput {
+  hookName?: string;
+  preToolUse?: {
+    toolName?: string;
+    parameters?: {
+      path?: string;
+      content?: string;
+      command?: string;
+    };
+  };
+}
+/** Hook stdout response. */
+interface ClineResponse {
+  cancel?: boolean;
+  errorMessage?: string;
+  contextModification?: string;
+}
+/** Evaluate a tool use; cancel on a hard block, otherwise inject context. */
+declare function preToolUse(input: ClineHookInput): ClineResponse;
+//#endregion
+export { ClineHookInput, ClineResponse, preToolUse };

package/dist/adapters/cline/index.mjs

@@ -0,0 +1,25 @@
+import { t as evaluate } from "../../evaluate-CsYyUucy.mjs";
+import { t as formatPrompt } from "../../types-ernB1Dy3.mjs";
+//#region src/adapters/cline/index.ts
+/**
+* Cline adapter (hook-mode). Schema per docs.cline.bot / .clinerules/hooks (2026):
+* `PreToolUse` blocks via `{ cancel: true }`; it cannot modify tool parameters.
+*/
+/** Evaluate a tool use; cancel on a hard block, otherwise inject context. */
+function preToolUse(input) {
+	const t = input.preToolUse;
+	const r = evaluate({
+		tool: t?.toolName ?? "write_to_file",
+		filePath: t?.parameters?.path,
+		content: t?.parameters?.content,
+		command: t?.parameters?.command
+	});
+	if (r.decision === "allow" || !r.prompt) return {};
+	const msg = formatPrompt(r.prompt);
+	return r.prompt.kind === "block" ? {
+		cancel: true,
+		errorMessage: msg
+	} : { contextModification: msg };
+}
+//#endregion
+export { preToolUse };

package/dist/adapters/cursor/index.d.mts

@@ -0,0 +1,31 @@
+//#region src/adapters/cursor/index.d.ts
+/** `beforeShellExecution` stdin payload (subset). */
+interface CursorShellPayload {
+  command?: string;
+  cwd?: string;
+  workspace_roots?: string[];
+  hook_event_name?: string;
+}
+/** `afterFileEdit` stdin payload (subset). */
+interface CursorEditPayload {
+  file_path?: string;
+  edits?: {
+    old_string: string;
+    new_string: string;
+  }[];
+}
+/** `beforeShellExecution` stdout response. */
+interface CursorResponse {
+  permission: "allow" | "deny" | "ask";
+  continue?: boolean;
+  userMessage?: string;
+  agentMessage?: string;
+}
+/** Guard a shell command (git/install policies). */
+declare function beforeShellExecution(payload: CursorShellPayload): CursorResponse;
+/** Observe a file edit (Cursor cannot block here). Returns the verdict for logging. */
+declare function afterFileEdit(payload: CursorEditPayload): {
+  violation: string | null;
+};
+//#endregion
+export { CursorEditPayload, CursorResponse, CursorShellPayload, afterFileEdit, beforeShellExecution };

package/dist/adapters/cursor/index.mjs

@@ -0,0 +1,37 @@
+import { t as evaluate } from "../../evaluate-CsYyUucy.mjs";
+import { t as formatPrompt } from "../../types-ernB1Dy3.mjs";
+//#region src/adapters/cursor/index.ts
+/**
+* Cursor adapter (hook-mode). Schemas per cursor.com/docs/hooks (2026):
+* `beforeShellExecution` can block; `afterFileEdit` is observe-only.
+*/
+function toPermission(kind) {
+	return kind === "block" ? "deny" : kind === "ask" ? "ask" : "allow";
+}
+/** Guard a shell command (git/install policies). */
+function beforeShellExecution(payload) {
+	const r = evaluate({
+		tool: "Bash",
+		command: payload.command
+	});
+	if (r.decision === "allow" || !r.prompt) return { permission: "allow" };
+	const msg = formatPrompt(r.prompt);
+	return {
+		permission: toPermission(r.prompt.kind),
+		continue: false,
+		userMessage: msg,
+		agentMessage: msg
+	};
+}
+/** Observe a file edit (Cursor cannot block here). Returns the verdict for logging. */
+function afterFileEdit(payload) {
+	const content = payload.edits?.map((e) => e.new_string).join("\n") ?? "";
+	const r = evaluate({
+		tool: "Edit",
+		filePath: payload.file_path,
+		content
+	});
+	return { violation: r.decision === "deny" ? r.message : null };
+}
+//#endregion
+export { afterFileEdit, beforeShellExecution };

package/dist/adapters/gemini/index.d.mts

@@ -0,0 +1,23 @@
+//#region src/adapters/gemini/index.d.ts
+/** `BeforeTool` stdin payload (subset). */
+interface GeminiHookInput {
+  tool_name?: string;
+  tool_input?: {
+    command?: string;
+    path?: string;
+    content?: string;
+  };
+  hook_event_name?: string;
+}
+/** Hook stdout response. */
+interface GeminiResponse {
+  decision?: "allow" | "deny";
+  reason?: string;
+  hookSpecificOutput?: {
+    additionalContext?: string;
+  };
+}
+/** Evaluate a tool use; deny on a hard block, otherwise inject context. */
+declare function beforeTool(input: GeminiHookInput): GeminiResponse;
+//#endregion
+export { GeminiHookInput, GeminiResponse, beforeTool };

package/dist/adapters/gemini/index.mjs

@@ -0,0 +1,25 @@
+import { t as evaluate } from "../../evaluate-CsYyUucy.mjs";
+import { t as formatPrompt } from "../../types-ernB1Dy3.mjs";
+//#region src/adapters/gemini/index.ts
+/**
+* Gemini CLI adapter (hook-mode). Schema per google-gemini/gemini-cli docs/hooks (2026):
+* `BeforeTool` blocks via `{ decision: "deny", reason }` (or exit 2).
+*/
+/** Evaluate a tool use; deny on a hard block, otherwise inject context. */
+function beforeTool(input) {
+	const i = input.tool_input;
+	const r = evaluate({
+		tool: input.tool_name ?? "write_file",
+		filePath: i?.path,
+		content: i?.content,
+		command: i?.command
+	});
+	if (r.decision === "allow" || !r.prompt) return {};
+	const msg = formatPrompt(r.prompt);
+	return r.prompt.kind === "block" ? {
+		decision: "deny",
+		reason: msg
+	} : { hookSpecificOutput: { additionalContext: msg } };
+}
+//#endregion
+export { beforeTool };

package/dist/cli/bin.d.mts

@@ -0,0 +1 @@
+export { };

package/dist/cli/bin.mjs

@@ -0,0 +1,18 @@
+#!/usr/bin/env node
+import { n as stagedContent, r as stagedFiles, t as checkStaged } from "../run-h_2LNEA8.mjs";
+//#region src/cli/bin.ts
+/**
+* harness-check — cli-mode entry for harnesses without hooks (Aider, Windsurf,
+* OpenHands...). Run it as a pre-commit step: it checks staged files against the
+* policy core and exits non-zero on a violation.
+*/
+const files = stagedFiles();
+if (files.length === 0) process.exit(0);
+const violations = checkStaged(files, stagedContent);
+if (violations.length > 0) {
+	process.stderr.write(`harness-check: policy violations\n\n${violations.join("\n\n")}\n`);
+	process.exit(1);
+}
+process.exit(0);
+//#endregion
+export {};

package/dist/cli/index.d.mts

@@ -0,0 +1,12 @@
+//#region src/cli/run.d.ts
+/** Staged files (Added/Copied/Modified/Renamed). Uses `node:child_process` (Bun shell can hang on `git show`). */
+declare function stagedFiles(): string[];
+/** Read a file's staged (index) content — not the working-tree version. */
+declare function stagedContent(path: string): string;
+/**
+* Evaluate staged code files against the policy core; return violation blocks.
+* `read` is injected (the real impl is {@link stagedContent}) so this is pure + testable.
+*/
+declare function checkStaged(files: string[], read: (path: string) => string): string[];
+//#endregion
+export { checkStaged, stagedContent, stagedFiles };

package/dist/cli/index.mjs

@@ -0,0 +1,2 @@
+import { n as stagedContent, r as stagedFiles, t as checkStaged } from "../run-h_2LNEA8.mjs";
+export { checkStaged, stagedContent, stagedFiles };

package/dist/run-h_2LNEA8.mjs

@@ -0,0 +1,32 @@
+import { t as isCodeFile } from "./project-root-C4ks_q1G.mjs";
+import { t as evaluate } from "./evaluate-CsYyUucy.mjs";
+import { t as formatPrompt } from "./types-ernB1Dy3.mjs";
+import { execSync } from "node:child_process";
+//#region src/cli/run.ts
+/** Staged files (Added/Copied/Modified/Renamed). Uses `node:child_process` (Bun shell can hang on `git show`). */
+function stagedFiles() {
+	return execSync("git diff --cached --name-only --diff-filter=ACMR", { encoding: "utf8" }).trim().split("\n").filter(Boolean);
+}
+/** Read a file's staged (index) content — not the working-tree version. */
+function stagedContent(path) {
+	return execSync(`git show ":${path}"`, { encoding: "utf8" });
+}
+/**
+* Evaluate staged code files against the policy core; return violation blocks.
+* `read` is injected (the real impl is {@link stagedContent}) so this is pure + testable.
+*/
+function checkStaged(files, read) {
+	const violations = [];
+	for (const file of files) {
+		if (!isCodeFile(file)) continue;
+		const r = evaluate({
+			tool: "Write",
+			filePath: file,
+			content: read(file)
+		});
+		if (r.decision === "deny" && r.prompt) violations.push(`${file}\n${formatPrompt(r.prompt)}`);
+	}
+	return violations;
+}
+//#endregion
+export { stagedContent as n, stagedFiles as r, checkStaged as t };

package/package.json

@@ -1,10 +1,13 @@
 {
   "name": "@fusengine/harness",
-  "version": "0.1.0",
-  "description": "Harness-agnostic toolkit for AI coding agents: runtime harness detection (Claude Code, Codex, Cursor, Cline, Gemini, Aider...), pure policy core (env config, project/framework detection, SOLID/file-size limits, APEX freshness, guard patterns, portable prompts), cache, project memory, ref routing, state/locks, statusline, and thin per-harness adapters. Bun-native, with a built dist for Node + bundlers.",
+  "version": "0.1.1",
+  "description": "Harness-agnostic toolkit for AI coding agents: runtime harness detection (Claude Code, Codex, Cursor, Cline, Gemini, Aider...), pure policy core (env config, project/framework detection, SOLID/file-size limits, APEX freshness, guard patterns, portable prompts), cache, project memory, ref routing, state/locks, statusline, per-harness adapters (Claude/Cursor/Cline/Gemini) and a cli-mode harness-check binary. Bun-native, with a built dist for Node + bundlers.",
   "type": "module",
   "module": "src/index.ts",
   "types": "dist/index.d.mts",
+  "bin": {
+    "harness-check": "./dist/cli/bin.mjs"
+  },
   "exports": {
     ".": { "bun": "./src/index.ts", "types": "./dist/index.d.mts", "import": "./dist/index.mjs" },
     "./config": { "bun": "./src/config/index.ts", "types": "./dist/config/index.d.mts", "import": "./dist/config/index.mjs" },
@@ -18,7 +21,11 @@
     "./refs": { "bun": "./src/refs/index.ts", "types": "./dist/refs/index.d.mts", "import": "./dist/refs/index.mjs" },
     "./state": { "bun": "./src/state/index.ts", "types": "./dist/state/index.d.mts", "import": "./dist/state/index.mjs" },
     "./statusline": { "bun": "./src/statusline/index.ts", "types": "./dist/statusline/index.d.mts", "import": "./dist/statusline/index.mjs" },
-    "./adapters/claude": { "bun": "./src/adapters/claude/index.ts", "types": "./dist/adapters/claude/index.d.mts", "import": "./dist/adapters/claude/index.mjs" }
+    "./cli": { "bun": "./src/cli/index.ts", "types": "./dist/cli/index.d.mts", "import": "./dist/cli/index.mjs" },
+    "./adapters/claude": { "bun": "./src/adapters/claude/index.ts", "types": "./dist/adapters/claude/index.d.mts", "import": "./dist/adapters/claude/index.mjs" },
+    "./adapters/cursor": { "bun": "./src/adapters/cursor/index.ts", "types": "./dist/adapters/cursor/index.d.mts", "import": "./dist/adapters/cursor/index.mjs" },
+    "./adapters/cline": { "bun": "./src/adapters/cline/index.ts", "types": "./dist/adapters/cline/index.d.mts", "import": "./dist/adapters/cline/index.mjs" },
+    "./adapters/gemini": { "bun": "./src/adapters/gemini/index.ts", "types": "./dist/adapters/gemini/index.d.mts", "import": "./dist/adapters/gemini/index.mjs" }
   },
   "files": ["dist", "README.md", "LICENSE"],
   "license": "MIT",
@@ -26,7 +33,7 @@
   "scripts": {
     "test": "bun test",
     "typecheck": "tsc --noEmit",
-    "build": "tsdown src/index.ts src/config/index.ts src/util/index.ts src/detect/index.ts src/policy/index.ts src/prompt/index.ts src/memory/index.ts src/cache/index.ts src/freshness/index.ts src/refs/index.ts src/state/index.ts src/statusline/index.ts src/adapters/claude/index.ts --dts --format esm --clean --out-dir dist",
+    "build": "tsdown src/index.ts src/config/index.ts src/util/index.ts src/detect/index.ts src/policy/index.ts src/prompt/index.ts src/memory/index.ts src/cache/index.ts src/freshness/index.ts src/refs/index.ts src/state/index.ts src/statusline/index.ts src/cli/index.ts src/cli/bin.ts src/adapters/claude/index.ts src/adapters/cursor/index.ts src/adapters/cline/index.ts src/adapters/gemini/index.ts --dts --format esm --clean --out-dir dist",
     "prepublishOnly": "bun test && tsc --noEmit && bun run build"
   },
   "publishConfig": {