@gong-ym/ai-spec-auto 0.2.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.agents/commands/README.md +33 -0
- package/.agents/commands/claude/spec-start-review.md +88 -0
- package/.agents/commands/codex/spec-continue.md +74 -0
- package/.agents/commands/codex/spec-orchestrate.md +35 -0
- package/.agents/commands/codex/spec-start-review.md +88 -0
- package/.agents/commands/codex/spec-start.md +67 -0
- package/.agents/commands/codex/spec-status.md +22 -0
- package/.agents/commands/codex/spec-stop.md +29 -0
- package/.agents/commands/codex/spec-update.md +40 -0
- package/.agents/commands/common/branch-review.md +117 -0
- package/.agents/commands/common/project-init.md +25 -0
- package/.agents/commands/common/spec-continue.md +74 -0
- package/.agents/commands/common/spec-orchestrate.md +35 -0
- package/.agents/commands/common/spec-start-review.md +82 -0
- package/.agents/commands/common/spec-start.md +67 -0
- package/.agents/commands/common/spec-status.md +22 -0
- package/.agents/commands/common/spec-stop.md +29 -0
- package/.agents/commands/common/spec-update.md +40 -0
- package/.agents/commands/cursor/opsx-apply.md +55 -0
- package/.agents/commands/cursor/opsx-archive.md +48 -0
- package/.agents/commands/cursor/opsx-explore.md +45 -0
- package/.agents/commands/cursor/opsx-propose.md +59 -0
- package/.agents/commands/cursor/spec-continue.md +63 -0
- package/.agents/commands/cursor/spec-orchestrate.md +53 -0
- package/.agents/commands/cursor/spec-start-review.md +78 -0
- package/.agents/commands/cursor/spec-start.md +59 -0
- package/.agents/commands/cursor/spec-status.md +30 -0
- package/.agents/commands/cursor/spec-stop.md +29 -0
- package/.agents/commands/cursor/spec-update.md +41 -0
- package/.agents/flows/FRONTMATTER.md +263 -0
- package/.agents/flows/RUN_OUTPUT.md +263 -0
- package/.agents/flows/common/README.md +29 -0
- package/.agents/flows/common/bugfix-to-verification.md +95 -0
- package/.agents/flows/common/change-to-architecture-review.md +89 -0
- package/.agents/flows/common/change-to-release.md +94 -0
- package/.agents/flows/common/prd-to-delivery.md +184 -0
- package/.agents/flows/common/requirement-to-observability.md +97 -0
- package/.agents/orchestration/README.md +22 -0
- package/.agents/orchestration/expert-dispatch-spec.md +155 -0
- package/.agents/orchestration/expert-executor-spec.md +84 -0
- package/.agents/orchestration/expert-runtime-action-spec.md +73 -0
- package/.agents/orchestration/runtime-state-handoff-spec.md +264 -0
- package/.agents/orchestration/task-anchor-spec.md +212 -0
- package/.agents/orchestration/task-orchestrator-adapter-payload.md +153 -0
- package/.agents/orchestration/task-orchestrator-bootstrap-payload.md +145 -0
- package/.agents/orchestration/task-orchestrator-output-extractor-spec.md +93 -0
- package/.agents/orchestration/task-orchestrator-run-plan-template.md +312 -0
- package/.agents/orchestration/task-orchestrator-runtime-hooks.md +214 -0
- package/.agents/registry/README.md +63 -0
- package/.agents/registry/flows.json +125 -0
- package/.agents/registry/profiles.json +101 -0
- package/.agents/registry/roles.json +1266 -0
- package/.agents/registry/rules.json +148 -0
- package/.agents/registry/scenario-packages.json +123 -0
- package/.agents/registry/skills.json +130 -0
- package/.agents/roles/INDEX.md +346 -0
- package/.agents/roles/common/README.md +76 -0
- package/.agents/roles/common/archive-change.md +80 -0
- package/.agents/roles/common/backend-implementer.md +92 -0
- package/.agents/roles/common/code-guardian.md +151 -0
- package/.agents/roles/common/frontend-implementer.md +146 -0
- package/.agents/roles/common/requirement-analyst.md +138 -0
- package/.agents/roles/common/task-orchestrator-routing.md +301 -0
- package/.agents/roles/common/task-orchestrator.md +224 -0
- package/.agents/roles/common/tooling-implementer.md +92 -0
- package/.agents/roles/domains/README.md +35 -0
- package/.agents/roles/domains/delivery/README.md +11 -0
- package/.agents/roles/domains/delivery/container-specialist.md +50 -0
- package/.agents/roles/domains/delivery/deployment-specialist.md +50 -0
- package/.agents/roles/domains/delivery/pipeline-specialist.md +50 -0
- package/.agents/roles/domains/demand-design/README.md +16 -0
- package/.agents/roles/domains/demand-design/api-contract-specialist.md +52 -0
- package/.agents/roles/domains/demand-design/design-collaborator.md +58 -0
- package/.agents/roles/domains/documentation/README.md +11 -0
- package/.agents/roles/domains/documentation/api-doc-specialist.md +50 -0
- package/.agents/roles/domains/documentation/component-doc-specialist.md +49 -0
- package/.agents/roles/domains/documentation/technical-writing-specialist.md +48 -0
- package/.agents/roles/domains/engineering/README.md +17 -0
- package/.agents/roles/domains/engineering/architecture-advisor.md +53 -0
- package/.agents/roles/domains/engineering/build-specialist.md +51 -0
- package/.agents/roles/domains/engineering/dependency-governor.md +52 -0
- package/.agents/roles/domains/governance/README.md +17 -0
- package/.agents/roles/domains/governance/api-governance-specialist.md +51 -0
- package/.agents/roles/domains/governance/lint-policy-specialist.md +49 -0
- package/.agents/roles/domains/governance/route-governance-specialist.md +52 -0
- package/.agents/roles/domains/observability/README.md +11 -0
- package/.agents/roles/domains/observability/error-tracker.md +50 -0
- package/.agents/roles/domains/observability/event-instrumentation-specialist.md +51 -0
- package/.agents/roles/domains/observability/rum-analyst.md +50 -0
- package/.agents/roles/domains/performance/README.md +11 -0
- package/.agents/roles/domains/performance/asset-optimizer.md +50 -0
- package/.agents/roles/domains/performance/performance-auditor.md +56 -0
- package/.agents/roles/domains/performance/vitals-analyst.md +50 -0
- package/.agents/roles/domains/security-a11y/README.md +11 -0
- package/.agents/roles/domains/security-a11y/a11y-auditor.md +50 -0
- package/.agents/roles/domains/security-a11y/aria-specialist.md +51 -0
- package/.agents/roles/domains/security-a11y/security-reviewer.md +49 -0
- package/.agents/roles/domains/testing/README.md +12 -0
- package/.agents/roles/domains/testing/coverage-analyst.md +50 -0
- package/.agents/roles/domains/testing/e2e-test-specialist.md +51 -0
- package/.agents/roles/domains/testing/unit-test-specialist.md +56 -0
- package/.agents/roles/domains/testing/verification-reviewer.md +67 -0
- package/.agents/rules/README.md +87 -0
- package/.agents/rules/common/02-/347/274/226/347/240/201/350/247/204/350/214/203.md +45 -0
- package/.agents/rules/common/08-/351/200/232/347/224/250/347/272/246/346/235/237.md +63 -0
- package/.agents/rules/common/10-/346/226/207/346/241/243/350/247/204/350/214/203.md +101 -0
- package/.agents/rules/common/12-Superpowers/346/211/247/350/241/214/350/247/204/350/214/203.md +46 -0
- package/.agents/rules/common/14-/345/256/241/350/256/241/346/261/207/346/212/245/350/247/204/350/214/203.md +107 -0
- package/.agents/rules/common/15-visual-gate-wait.md +90 -0
- package/.agents/rules/profiles/nestjs/01-/351/241/271/347/233/256/346/246/202/350/277/260.md +27 -0
- package/.agents/rules/profiles/nestjs/03-/351/241/271/347/233/256/347/273/223/346/236/204.md +20 -0
- package/.agents/rules/profiles/nestjs/04-/346/250/241/345/235/227/347/273/223/346/236/204/350/247/204/350/214/203.md +24 -0
- package/.agents/rules/profiles/nestjs/05-/346/216/245/345/217/243/344/270/216/345/245/221/347/272/246/350/247/204/350/214/203.md +24 -0
- package/.agents/rules/profiles/nestjs/06-/346/225/260/346/215/256/350/256/277/351/227/256/350/247/204/350/214/203.md +24 -0
- package/.agents/rules/profiles/nestjs/07-/351/205/215/347/275/256/344/270/216/350/277/220/350/241/214/346/227/266/350/247/204/350/214/203.md +20 -0
- package/.agents/rules/profiles/nestjs/09-/345/274/202/345/270/270/344/270/216/346/227/245/345/277/227/350/247/204/350/214/203.md +20 -0
- package/.agents/rules/profiles/nestjs/11-/346/265/213/350/257/225/350/247/204/350/214/203.md +24 -0
- package/.agents/rules/profiles/nestjs/13-/344/273/243/347/240/201/346/240/274/345/274/217/345/214/226/344/270/216/346/243/200/346/237/245.md +20 -0
- package/.agents/rules/profiles/node-tooling/01-/351/241/271/347/233/256/346/246/202/350/277/260.md +30 -0
- package/.agents/rules/profiles/node-tooling/03-/351/241/271/347/233/256/347/273/223/346/236/204.md +37 -0
- package/.agents/rules/profiles/node-tooling/04-CLI/344/270/216/346/250/241/345/235/227/350/247/204/350/214/203.md +42 -0
- package/.agents/rules/profiles/node-tooling/05-Contract/344/270/216Schema/350/247/204/350/214/203.md +42 -0
- package/.agents/rules/profiles/node-tooling/06-/350/277/220/350/241/214/346/227/266/346/226/207/344/273/266/350/247/204/350/214/203.md +30 -0
- package/.agents/rules/profiles/node-tooling/07-/346/227/245/345/277/227/344/270/216/351/224/231/350/257/257/345/244/204/347/220/206/350/247/204/350/214/203.md +60 -0
- package/.agents/rules/profiles/node-tooling/09-/350/204/232/346/234/254/344/270/216/345/205/245/345/217/243/350/247/204/350/214/203.md +45 -0
- package/.agents/rules/profiles/node-tooling/11-/346/265/213/350/257/225/350/247/204/350/214/203.md +41 -0
- package/.agents/rules/profiles/node-tooling/13-/344/273/243/347/240/201/346/240/274/345/274/217/345/214/226/344/270/216/346/243/200/346/237/245.md +55 -0
- package/.agents/rules/profiles/react/01-/351/241/271/347/233/256/346/246/202/350/277/260.md +29 -0
- package/.agents/rules/profiles/react/03-/351/241/271/347/233/256/347/273/223/346/236/204.md +104 -0
- package/.agents/rules/profiles/react/04-/347/273/204/344/273/266/350/247/204/350/214/203.md +46 -0
- package/.agents/rules/profiles/react/05-API/350/247/204/350/214/203.md +67 -0
- package/.agents/rules/profiles/react/06-/350/267/257/347/224/261/350/247/204/350/214/203.md +54 -0
- package/.agents/rules/profiles/react/07-/347/212/266/346/200/201/347/256/241/347/220/206.md +226 -0
- package/.agents/rules/profiles/react/09-/346/240/267/345/274/217/350/247/204/350/214/203.md +71 -0
- package/.agents/rules/profiles/react/11-/346/265/213/350/257/225/350/247/204/350/214/203.md +80 -0
- package/.agents/rules/profiles/react/13-/344/273/243/347/240/201/346/240/274/345/274/217/345/214/226/344/270/216/346/243/200/346/237/245.md +159 -0
- package/.agents/rules/profiles/springboot/01-/351/241/271/347/233/256/346/246/202/350/277/260.md +31 -0
- package/.agents/rules/profiles/springboot/03-/351/241/271/347/233/256/347/273/223/346/236/204.md +37 -0
- package/.agents/rules/profiles/springboot/04-/345/210/206/345/261/202/350/247/204/350/214/203.md +33 -0
- package/.agents/rules/profiles/springboot/05-/346/216/245/345/217/243/344/270/216/345/245/221/347/272/246/350/247/204/350/214/203.md +51 -0
- package/.agents/rules/profiles/springboot/06-/346/225/260/346/215/256/350/256/277/351/227/256/350/247/204/350/214/203.md +34 -0
- package/.agents/rules/profiles/springboot/07-/351/205/215/347/275/256/344/270/216/350/277/220/350/241/214/346/227/266/350/247/204/350/214/203.md +38 -0
- package/.agents/rules/profiles/springboot/09-/345/274/202/345/270/270/344/270/216/346/227/245/345/277/227/350/247/204/350/214/203.md +48 -0
- package/.agents/rules/profiles/springboot/11-/346/265/213/350/257/225/350/247/204/350/214/203.md +43 -0
- package/.agents/rules/profiles/springboot/13-/344/273/243/347/240/201/346/240/274/345/274/217/345/214/226/344/270/216/346/243/200/346/237/245.md +48 -0
- package/.agents/rules/profiles/vue/01-/351/241/271/347/233/256/346/246/202/350/277/260.md +47 -0
- package/.agents/rules/profiles/vue/03-/351/241/271/347/233/256/347/273/223/346/236/204.md +106 -0
- package/.agents/rules/profiles/vue/04-/347/273/204/344/273/266/350/247/204/350/214/203.md +61 -0
- package/.agents/rules/profiles/vue/05-API/350/247/204/350/214/203.md +67 -0
- package/.agents/rules/profiles/vue/06-/350/267/257/347/224/261/350/247/204/350/214/203.md +69 -0
- package/.agents/rules/profiles/vue/07-/347/212/266/346/200/201/347/256/241/347/220/206.md +93 -0
- package/.agents/rules/profiles/vue/09-/346/240/267/345/274/217/350/247/204/350/214/203.md +67 -0
- package/.agents/rules/profiles/vue/11-/346/265/213/350/257/225/350/247/204/350/214/203.md +80 -0
- package/.agents/rules/profiles/vue/13-/344/273/243/347/240/201/346/240/274/345/274/217/345/214/226/344/270/216/346/243/200/346/237/245.md +159 -0
- package/.agents/skills/README.md +171 -0
- package/.agents/skills/common/archive-change/SKILL.md +180 -0
- package/.agents/skills/common/branch-code-reviewer/SKILL.md +459 -0
- package/.agents/skills/common/branch-code-reviewer/references/business-risk-guide.md +293 -0
- package/.agents/skills/common/branch-code-reviewer/references/html-template-guide.md +121 -0
- package/.agents/skills/common/config-and-secret-scan/SKILL.md +99 -0
- package/.agents/skills/common/create-proposal/SKILL.md +192 -0
- package/.agents/skills/common/create-proposal/evals/evals.json +16 -0
- package/.agents/skills/common/create-proposal/evals/train_queries.json +18 -0
- package/.agents/skills/common/create-proposal/evals/validation_queries.json +18 -0
- package/.agents/skills/common/create-proposal/references/interaction-spec-template.md +42 -0
- package/.agents/skills/common/create-test/SKILL.md +292 -0
- package/.agents/skills/common/dependency-impact-graph/SKILL.md +80 -0
- package/.agents/skills/common/execute-task/SKILL.md +206 -0
- package/.agents/skills/common/execute-task/evals/evals.json +16 -0
- package/.agents/skills/common/execute-task/evals/train_queries.json +18 -0
- package/.agents/skills/common/execute-task/evals/validation_queries.json +18 -0
- package/.agents/skills/common/find-skills/SKILL.md +144 -0
- package/.agents/skills/common/install-ai-spec-auto/SKILL.md +260 -0
- package/.agents/skills/common/install-ai-spec-auto/evals/evals.json +17 -0
- package/.agents/skills/common/install-ai-spec-auto/evals/train_queries.json +18 -0
- package/.agents/skills/common/install-ai-spec-auto/evals/validation_queries.json +18 -0
- package/.agents/skills/common/project-init/SKILL.md +178 -0
- package/.agents/skills/common/project-init/evals/evals.json +16 -0
- package/.agents/skills/common/project-init/evals/train_queries.json +18 -0
- package/.agents/skills/common/project-init/evals/validation_queries.json +18 -0
- package/.agents/skills/common/project-init/references/custom-rule-generation.md +89 -0
- package/.agents/skills/common/project-init/references/deep-scan-rules.md +67 -0
- package/.agents/skills/common/project-init/references/output-contracts.md +71 -0
- package/.agents/skills/common/project-init/references/repo-fact-gathering.md +83 -0
- package/.agents/skills/common/project-init/references/scope-resolution.md +76 -0
- package/.agents/skills/common/project-init/scripts/inspect-project.js +112 -0
- package/.agents/skills/common/skill-creator/LICENSE.txt +202 -0
- package/.agents/skills/common/skill-creator/SKILL.md +370 -0
- package/.agents/skills/common/skill-creator/evals/evals.json +16 -0
- package/.agents/skills/common/skill-creator/evals/train_queries.json +18 -0
- package/.agents/skills/common/skill-creator/evals/validation_queries.json +18 -0
- package/.agents/skills/common/skill-creator/references/output-patterns.md +82 -0
- package/.agents/skills/common/skill-creator/references/workflows.md +28 -0
- package/.agents/skills/common/skill-creator/scripts/init_skill.py +209 -0
- package/.agents/skills/common/skill-creator/scripts/package_skill.py +110 -0
- package/.agents/skills/common/skill-creator/scripts/quick_validate.py +51 -0
- package/.agents/skills/common/skill-optimizer/SKILL.md +102 -0
- package/.agents/skills/common/skill-optimizer/evals/evals.json +16 -0
- package/.agents/skills/common/skill-optimizer/evals/train_queries.json +18 -0
- package/.agents/skills/common/skill-optimizer/evals/validation_queries.json +18 -0
- package/.agents/skills/common/skill-optimizer/references/design-patterns.md +26 -0
- package/.agents/skills/common/skill-optimizer/references/review-checklist.md +22 -0
- package/.agents/skills/common/using-superpowers/SKILL.md +151 -0
- package/.agents/skills/common/wait-for-gate-signal/SKILL.md +85 -0
- package/.agents/skills/domains/README.md +19 -0
- package/.agents/skills/domains/ui-ux-pro-max/SKILL.md +58 -0
- package/.agents/skills/domains/web/design-analysis/SKILL.md +89 -0
- package/.agents/skills/domains/web/design-analysis/rules/analysis-order.md +61 -0
- package/.agents/skills/domains/web/design-analysis/rules/analysis-priorities.md +136 -0
- package/.agents/skills/domains/web/design-analysis/rules/checklist-common-misses.md +107 -0
- package/.agents/skills/domains/web/design-analysis/rules/implementation-common-errors.md +204 -0
- package/.agents/skills/domains/web/design-analysis/rules/implementation-guidelines.md +211 -0
- package/.agents/skills/domains/web/design-analysis/rules/output-analysis-checklist.md +247 -0
- package/.agents/skills/domains/web/design-analysis/rules/tools-design-guidelines.md +108 -0
- package/.agents/skills/domains/web/design-analysis/rules/workflow-element-extraction.md +162 -0
- package/.agents/skills/domains/web/design-analysis/rules/workflow-layout-map.md +131 -0
- package/.agents/skills/domains/web/design-analysis/rules/workflow-output-checklist.md +70 -0
- package/.agents/skills/domains/web/design-analysis/rules/workflow-style-summary.md +91 -0
- package/.agents/skills/domains/web/route-permission-map/SKILL.md +103 -0
- package/.agents/skills/domains/web/ui-verification/SKILL.md +114 -0
- package/.agents/skills/domains/web/ui-verification/evals/evals.json +16 -0
- package/.agents/skills/domains/web/ui-verification/evals/train_queries.json +18 -0
- package/.agents/skills/domains/web/ui-verification/evals/validation_queries.json +18 -0
- package/.agents/skills/domains/web/ui-verification/rules/comparison-content-image.md +34 -0
- package/.agents/skills/domains/web/ui-verification/rules/comparison-content-text.md +30 -0
- package/.agents/skills/domains/web/ui-verification/rules/comparison-hierarchy.md +33 -0
- package/.agents/skills/domains/web/ui-verification/rules/comparison-layout.md +35 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-alignment.md +42 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-button-dimensions.md +28 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-button-position.md +25 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-css-priority.md +50 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-flex-column-width.md +46 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-flex-layout.md +46 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-grid-container-width.md +44 -0
- package/.agents/skills/domains/web/ui-verification/rules/errors-page-container-width.md +39 -0
- package/.agents/skills/domains/web/ui-verification/rules/tools-browser-navigation.md +53 -0
- package/.agents/skills/domains/web/ui-verification/rules/tools-design-guidelines.md +53 -0
- package/.agents/skills/domains/web/ui-verification/rules/workflow-checklist.md +27 -0
- package/.agents/skills/domains/web/ui-verification/rules/workflow-problem-list.md +56 -0
- package/.agents/skills/domains/web/ui-verification/rules/workflow-reflection.md +44 -0
- package/.agents/skills/domains/web/ui-verification/rules/writing-alignment.md +44 -0
- package/.agents/skills/domains/web/ui-verification/rules/writing-element-completeness.md +63 -0
- package/.agents/skills/domains/web/ui-verification/rules/writing-list-layout.md +75 -0
- package/.agents/skills/domains/web/ui-verification/rules/writing-page-container-width.md +37 -0
- package/.agents/skills/domains/web/web-design-guidelines/SKILL.md +40 -0
- package/.agents/skills/profiles/nestjs/README.md +4 -0
- package/.agents/skills/profiles/node-tooling/README.md +9 -0
- package/.agents/skills/profiles/react/create-api/SKILL.md +145 -0
- package/.agents/skills/profiles/react/create-component/SKILL.md +160 -0
- package/.agents/skills/profiles/react/create-route/SKILL.md +168 -0
- package/.agents/skills/profiles/react/create-store/SKILL.md +262 -0
- package/.agents/skills/profiles/react/theme-variables/SKILL.md +82 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/AGENTS.md +899 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/SKILL.md +81 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/architecture-avoid-boolean-props.md +100 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/architecture-compound-components.md +112 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/patterns-children-over-render-props.md +87 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/patterns-explicit-variants.md +100 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/state-context-interface.md +191 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/state-decouple-implementation.md +113 -0
- package/.agents/skills/profiles/react/vercel-composition-patterns/rules/state-lift-state.md +125 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/AGENTS.md +2934 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/SKILL.md +136 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/advanced-event-handler-refs.md +55 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/advanced-init-once.md +42 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/advanced-use-latest.md +39 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/async-api-routes.md +38 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/async-defer-await.md +80 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/async-dependencies.md +51 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/async-parallel.md +28 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/async-suspense-boundaries.md +99 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/bundle-barrel-imports.md +59 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/bundle-conditional.md +31 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/bundle-defer-third-party.md +49 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/bundle-dynamic-imports.md +35 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/bundle-preload.md +50 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/client-event-listeners.md +74 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/client-localstorage-schema.md +71 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/client-passive-event-listeners.md +48 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/client-swr-dedup.md +56 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-batch-dom-css.md +107 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-cache-function-results.md +80 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-cache-property-access.md +28 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-cache-storage.md +70 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-combine-iterations.md +32 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-early-exit.md +50 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-hoist-regexp.md +45 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-index-maps.md +37 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-length-check-first.md +49 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-min-max-loop.md +82 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-set-map-lookups.md +24 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/js-tosorted-immutable.md +57 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-activity.md +26 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-animate-svg-wrapper.md +47 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-conditional-render.md +40 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-content-visibility.md +38 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-hoist-jsx.md +46 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-hydration-no-flicker.md +82 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-hydration-suppress-warning.md +30 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-svg-precision.md +28 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rendering-usetransition-loading.md +75 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-defer-reads.md +39 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-dependencies.md +45 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-derived-state-no-effect.md +40 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-derived-state.md +29 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-functional-setstate.md +74 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-lazy-state-init.md +58 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-memo-with-default-value.md +38 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-memo.md +44 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-move-effect-to-event.md +45 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-simple-expression-in-memo.md +35 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-transitions.md +40 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/rerender-use-ref-transient-values.md +73 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-after-nonblocking.md +73 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-auth-actions.md +96 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-cache-lru.md +41 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-cache-react.md +76 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-dedup-props.md +65 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-parallel-fetching.md +83 -0
- package/.agents/skills/profiles/react/vercel-react-best-practices/rules/server-serialization.md +38 -0
- package/.agents/skills/profiles/springboot/README.md +10 -0
- package/.agents/skills/profiles/vue/create-api/SKILL.md +105 -0
- package/.agents/skills/profiles/vue/create-component/SKILL.md +76 -0
- package/.agents/skills/profiles/vue/create-route/SKILL.md +141 -0
- package/.agents/skills/profiles/vue/create-store/SKILL.md +97 -0
- package/.agents/skills/profiles/vue/create-view/SKILL.md +81 -0
- package/.agents/skills/profiles/vue/theme-variables/SKILL.md +73 -0
- package/.agents/skills/profiles/vue/vue-best-practices/SKILL.md +166 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/animation-class-based-technique.md +254 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/animation-state-driven-technique.md +291 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-async.md +97 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-data-flow.md +307 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-fallthrough-attrs.md +174 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-keep-alive.md +137 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-slots.md +216 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-suspense.md +228 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-teleport.md +108 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-transition-group.md +128 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/component-transition.md +125 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/composables.md +290 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/directives.md +162 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/perf-avoid-component-abstraction-in-lists.md +159 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/perf-v-once-v-memo-directives.md +182 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/perf-virtualize-large-lists.md +187 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/plugins.md +166 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/reactivity.md +344 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/render-functions.md +201 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/sfc.md +310 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/state-management.md +135 -0
- package/.agents/skills/profiles/vue/vue-best-practices/references/updated-hook-performance.md +187 -0
- package/.agents/templates/common/README.md +23 -0
- package/.agents/templates/common/bugfix.md +22 -0
- package/.agents/templates/common/create-expert-package.md +458 -0
- package/.agents/templates/common/mock-page.md +28 -0
- package/.agents/templates/common/new-component.md +25 -0
- package/.agents/templates/common/new-page.md +31 -0
- package/.cursor/mcp.json +36 -0
- package/.qoder/README.md +114 -0
- package/.qoder/commands +1 -0
- package/.qoder/mcp.json +26 -0
- package/.qoder/rules +1 -0
- package/.qoder/skills +1 -0
- package/LICENSE +21 -0
- package/README.md +433 -0
- package/bin/archive-change.js +474 -0
- package/bin/check-command.js +62 -0
- package/bin/cli.js +295 -0
- package/bin/command-template-renderer.js +40 -0
- package/bin/context-command.js +102 -0
- package/bin/demo-runtime-smoke.js +760 -0
- package/bin/execution-semantics.js +821 -0
- package/bin/executor-command.js +93 -0
- package/bin/expert-dispatch.js +334 -0
- package/bin/expert-executor.js +1148 -0
- package/bin/guard-command.js +52 -0
- package/bin/hub-command.js +876 -0
- package/bin/ide-command.js +242 -0
- package/bin/init-command.js +193 -0
- package/bin/install-workflow.js +2983 -0
- package/bin/manifest-export.js +34 -0
- package/bin/profile-registry.js +90 -0
- package/bin/protocol-workflow.js +446 -0
- package/bin/repair-command.js +161 -0
- package/bin/repo-map.js +177 -0
- package/bin/report-command.js +236 -0
- package/bin/runtime-bootstrap.js +428 -0
- package/bin/runtime-embedded.js +101 -0
- package/bin/runtime-fallback.js +106 -0
- package/bin/runtime-launcher.js +116 -0
- package/bin/runtime-paths.js +177 -0
- package/bin/runtime-registry.js +289 -0
- package/bin/runtime-state.js +2541 -0
- package/bin/scan.js +96 -0
- package/bin/self-upgrade.js +206 -0
- package/bin/skill-spec-validator.js +457 -0
- package/bin/spec-command.js +366 -0
- package/bin/superpowers.js +384 -0
- package/bin/sync-command.js +59 -0
- package/bin/sync.js +1904 -0
- package/bin/task-orchestrator-adapter.js +341 -0
- package/bin/task-orchestrator-extractor.js +274 -0
- package/bin/task-orchestrator-runner.js +1208 -0
- package/bin/telemetry/README.md +66 -0
- package/bin/telemetry/aspect.js +153 -0
- package/bin/telemetry/collect.js +67 -0
- package/bin/telemetry/config.js +114 -0
- package/bin/telemetry/defaults.json +5 -0
- package/bin/telemetry/healthcheck.js +195 -0
- package/bin/telemetry/identity.js +53 -0
- package/bin/telemetry/index.js +25 -0
- package/bin/telemetry/reporter.js +83 -0
- package/bin/telemetry/safe.js +39 -0
- package/bin/validate-registry.js +740 -0
- package/bin/visual-bridge-config.js +117 -0
- package/bin/visual-bridge.js +287 -0
- package/bin/visual-command.js +432 -0
- package/bin/worktree-command.js +194 -0
- package/configs/common/.editorconfig +15 -0
- package/configs/common/.husky/commit-msg +4 -0
- package/configs/common/.husky/pre-commit +4 -0
- package/configs/common/.lintstagedrc +11 -0
- package/configs/common/.prettierignore +11 -0
- package/configs/common/.prettierrc.json +11 -0
- package/configs/common/.stylelintignore +14 -0
- package/configs/common/.stylelintrc.json +21 -0
- package/configs/common/commitlint.config.js +3 -0
- package/configs/profiles/nestjs/.gitkeep +1 -0
- package/configs/profiles/node-tooling/.gitkeep +1 -0
- package/configs/profiles/react/.eslintignore +6 -0
- package/configs/profiles/react/.eslintrc.js +16 -0
- package/configs/profiles/react/.stylelintrc.json +18 -0
- package/configs/profiles/springboot/.gitkeep +1 -0
- package/configs/profiles/vue/.eslintignore +7 -0
- package/configs/profiles/vue/.eslintrc.cjs +17 -0
- package/contracts/README.md +28 -0
- package/contracts/fixtures/asset-package.fixture.json +26 -0
- package/contracts/fixtures/asset-usage-feedback.fixture.json +14 -0
- package/contracts/fixtures/evidence-report.fixture.json +28 -0
- package/contracts/fixtures/manifest.fixture.json +20 -0
- package/contracts/fixtures/run-event.fixture.json +15 -0
- package/contracts/schemas/asset-package.schema.json +76 -0
- package/contracts/schemas/asset-usage-feedback.schema.json +57 -0
- package/contracts/schemas/evidence-report.schema.json +60 -0
- package/contracts/schemas/manifest.schema.json +63 -0
- package/contracts/schemas/run-event.schema.json +72 -0
- package/install.ps1 +35 -0
- package/install.sh +17 -0
- package/internal/ai-protocol-workflow.js +5600 -0
- package/internal/hub-client.js +98 -0
- package/internal/hub-sync-selection.js +69 -0
- package/internal/visual-hooks/README.md +481 -0
- package/internal/visual-hooks/config-loader.js +218 -0
- package/internal/visual-hooks/control-puller.js +206 -0
- package/internal/visual-hooks/gate-signal.js +150 -0
- package/internal/visual-hooks/inbox-consumer.js +469 -0
- package/internal/visual-hooks/index.js +197 -0
- package/internal/visual-hooks/push-client.js +189 -0
- package/internal/visual-hooks/receipt-pusher.js +176 -0
- package/internal/visual-hooks/runtime-state-pusher.js +128 -0
- package/openspec/changes/.gitkeep +0 -0
- package/openspec/changes/archive/.gitkeep +0 -0
- package/openspec/config.yaml.template +52 -0
- package/openspec/schemas/expert-delivery/schema.yaml +68 -0
- package/openspec/schemas/expert-delivery/templates/checklist.md +39 -0
- package/openspec/schemas/expert-delivery/templates/design.md +61 -0
- package/openspec/schemas/expert-delivery/templates/iterations.md +25 -0
- package/openspec/schemas/expert-delivery/templates/proposal.md +45 -0
- package/openspec/schemas/expert-delivery/templates/spec.md +29 -0
- package/openspec/schemas/expert-delivery/templates/tasks.md +24 -0
- package/openspec/specs/.gitkeep +0 -0
- package/package.json +73 -0
- package/scripts/acceptance-zero-intrusion.sh +168 -0
- package/scripts/hub-sync-assets.config.example.json +296 -0
- package/scripts/hub-sync-assets.js +2038 -0
- package/scripts/local-verify.sh +280 -0
- package/scripts/post-publish-auto-fix-check.js +404 -0
- package/scripts/post-publish-verify.sh +175 -0
- package/scripts/setup-cursor-manual-test.sh +107 -0
- package/scripts/setup-cursor-spec-archive-test.sh +111 -0
- package/scripts/setup-visual-integration.sh +225 -0
- package/scripts/test-integration.sh +176 -0
- package/scripts/update-test-project.sh +93 -0
- package/scripts/upload-four-web.sh +57 -0
- package/scripts/verify-install-ps1-bom.js +26 -0
- package/src/agent/agent-context.js +259 -0
- package/src/agent/agent-profile.js +185 -0
- package/src/agent/agent-templates.js +161 -0
- package/src/agent/agent-types.js +108 -0
- package/src/agent/collaboration-protocol.js +333 -0
- package/src/agent/conflict-handler.js +364 -0
- package/src/agent/file-permission.js +121 -0
- package/src/agent/index.js +38 -0
- package/src/agent/permission-audit.js +151 -0
- package/src/agent/review-repair-loop.js +270 -0
- package/src/agent/tool-permission.js +101 -0
- package/src/asset/asset-dependency.js +322 -0
- package/src/asset/asset-feedback.js +350 -0
- package/src/asset/asset-fork.js +300 -0
- package/src/asset/asset-install.js +278 -0
- package/src/asset/asset-installer.js +497 -0
- package/src/asset/asset-lifecycle.js +324 -0
- package/src/asset/asset-manager.js +245 -0
- package/src/asset/asset-package-manager.js +349 -0
- package/src/asset/asset-package.js +186 -0
- package/src/asset/asset-quality.js +262 -0
- package/src/asset/asset-registry.js +387 -0
- package/src/asset/asset-version.js +293 -0
- package/src/asset/index.js +86 -0
- package/src/cache/agent-profile-cache.js +59 -0
- package/src/cache/asset-cache.js +63 -0
- package/src/cache/global-cache.js +61 -0
- package/src/cache/manifest-cache.js +30 -0
- package/src/check/check-service.js +32 -0
- package/src/config/config-layer.js +343 -0
- package/src/config/config-loader.js +60 -0
- package/src/config/defaults.js +49 -0
- package/src/connectors/hub/asset-package.js +72 -0
- package/src/connectors/hub/asset-usage-feedback.js +46 -0
- package/src/connectors/hub/hub-connector.js +44 -0
- package/src/connectors/hub/index.js +21 -0
- package/src/connectors/visual/evidence-report.js +49 -0
- package/src/connectors/visual/index.js +15 -0
- package/src/connectors/visual/queue.js +41 -0
- package/src/connectors/visual/run-event.js +81 -0
- package/src/connectors/visual/visual-connector.js +77 -0
- package/src/context/context-budget.js +59 -0
- package/src/context/context-builder.js +285 -0
- package/src/context/context-loader.js +116 -0
- package/src/context/context-planner.js +158 -0
- package/src/context/types.js +96 -0
- package/src/contracts/index.js +63 -0
- package/src/executor/executor-registry.js +78 -0
- package/src/executor/executor-result-parser.js +44 -0
- package/src/executor/executor-runner.js +141 -0
- package/src/executor/executor-selector.js +139 -0
- package/src/executor/executor-timeout.js +36 -0
- package/src/executor/providers/base-provider-utils.js +189 -0
- package/src/executor/providers/claude-code-executor-provider.js +128 -0
- package/src/executor/providers/codex-executor-provider.js +126 -0
- package/src/executor/providers/cursor-executor-provider.js +99 -0
- package/src/executor/types.js +137 -0
- package/src/git/branch-manager.js +71 -0
- package/src/git/dirty-checker.js +43 -0
- package/src/git/dirty-strategy-handler.js +29 -0
- package/src/git/git-command.js +37 -0
- package/src/git/git-repository-detector.js +45 -0
- package/src/git/multi-repo-worktree-planner.js +88 -0
- package/src/git/policy.js +19 -0
- package/src/git/strategies/block-dirty-strategy.js +34 -0
- package/src/git/strategies/ignore-dirty-strategy.js +33 -0
- package/src/git/strategies/patch-snapshot-strategy.js +53 -0
- package/src/git/strategies/wip-commit-strategy.js +38 -0
- package/src/git/types.js +71 -0
- package/src/git/worktree-manager.js +85 -0
- package/src/governance/asset-review.js +351 -0
- package/src/governance/audit-log.js +368 -0
- package/src/governance/gray-release.js +312 -0
- package/src/governance/index.js +31 -0
- package/src/governance/policy-types.js +56 -0
- package/src/governance/rbac-types.js +171 -0
- package/src/governance/rbac.js +382 -0
- package/src/governance/rollback.js +360 -0
- package/src/governance/security-policy.js +354 -0
- package/src/hook/hook-config-writer.js +125 -0
- package/src/hub/hub-client.js +186 -0
- package/src/hub/hub-config.js +39 -0
- package/src/hub/project-facts.js +31 -0
- package/src/hub/runtime-feedback-reporter.js +55 -0
- package/src/ide/adapters/adapter-protocol.js +385 -0
- package/src/ide/adapters/claude-adapter.js +419 -0
- package/src/ide/adapters/codex-adapter.js +60 -0
- package/src/ide/adapters/cursor-adapter.js +484 -0
- package/src/ide/adapters/index.js +24 -0
- package/src/ide/anchors/markdown-anchor-writer.js +152 -0
- package/src/ide/ide-service.js +270 -0
- package/src/ide/ide-types.js +94 -0
- package/src/ide/links/link-mode-resolver.js +160 -0
- package/src/ide/registry/ide-registry-builder.js +165 -0
- package/src/incident/incident-writer.js +47 -0
- package/src/incident/types.js +22 -0
- package/src/init/ide-linker.js +126 -0
- package/src/init/ide-pointer-injector.js +75 -0
- package/src/init/init-applier.js +197 -0
- package/src/init/init-plan.js +294 -0
- package/src/init/init-service.js +65 -0
- package/src/init/manifest-installer.js +302 -0
- package/src/init/types.js +26 -0
- package/src/project/config-writer.js +83 -0
- package/src/project/context-index-writer.js +82 -0
- package/src/project/json-utils.js +72 -0
- package/src/project/local-state-writer.js +50 -0
- package/src/project/lock-file-writer.js +98 -0
- package/src/project/manifest-writer.js +126 -0
- package/src/project/policy-config-writer.js +91 -0
- package/src/project/project-config-writer.js +74 -0
- package/src/project/project-files.js +39 -0
- package/src/project/registry-index-writer.js +43 -0
- package/src/project/workspace-config-writer.js +63 -0
- package/src/run/index.js +11 -0
- package/src/run/run-id.js +32 -0
- package/src/run/run-service.js +269 -0
- package/src/run/run-store.js +80 -0
- package/src/scanner/aggregator/detection-aggregator.js +23 -0
- package/src/scanner/boundary/boundary-resolver.js +229 -0
- package/src/scanner/detectors/detector-registry.js +44 -0
- package/src/scanner/detectors/fastapi-detector.js +46 -0
- package/src/scanner/detectors/go-detector.js +46 -0
- package/src/scanner/detectors/nestjs-detector.js +57 -0
- package/src/scanner/detectors/nextjs-detector.js +52 -0
- package/src/scanner/detectors/react-vite-detector.js +52 -0
- package/src/scanner/detectors/react-webpack-detector.js +57 -0
- package/src/scanner/detectors/springboot-detector.js +46 -0
- package/src/scanner/detectors/springcloud-detector.js +46 -0
- package/src/scanner/detectors/springmvc-detector.js +46 -0
- package/src/scanner/detectors/vue-vite-detector.js +52 -0
- package/src/scanner/engine.js +72 -0
- package/src/scanner/facts/fact-extractor.js +211 -0
- package/src/scanner/types.js +30 -0
- package/src/security/asset-tamper-checker.js +188 -0
- package/src/security/checksum.js +40 -0
- package/src/spec/spec-writer.js +302 -0
- package/src/state-machine/circuit-breaker.js +112 -0
- package/src/state-machine/escape-hatch.js +49 -0
- package/src/state-machine/stage-runner.js +281 -0
- package/src/state-machine/state-machine.js +24 -0
- package/src/state-machine/transition-guard.js +36 -0
- package/src/state-machine/types.js +37 -0
- package/src/sync/sync-service.js +192 -0
- package/src/visual/agent-visual.js +142 -0
- package/src/visual/event-gateway.js +357 -0
- package/src/visual/event-mapper.js +128 -0
- package/src/visual/hook-dashboard.js +216 -0
- package/src/visual/index.js +27 -0
- package/src/visual/metrics.js +287 -0
- package/src/visual/privacy-filter.js +100 -0
- package/src/visual/risk-board.js +252 -0
- package/src/visual/timeline.js +245 -0
- package/src/visual/visual-client.js +94 -0
- package/src/visual/visual-config.js +40 -0
- package/src/visual/visual-reporter.js +88 -0
|
@@ -0,0 +1,368 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* P3.3 审计日志 — 内存模型 + NDJSON 最小文件持久化
|
|
3
|
+
*
|
|
4
|
+
* 审计事件 schema、写入、查询、红脱策略、NDJSON 文件持久化
|
|
5
|
+
*/
|
|
6
|
+
|
|
7
|
+
const fs = require('fs');
|
|
8
|
+
const path = require('path');
|
|
9
|
+
|
|
10
|
+
// ============================================================
|
|
11
|
+
// 审计事件类型
|
|
12
|
+
// ============================================================
|
|
13
|
+
|
|
14
|
+
const AUDIT_EVENT_TYPES = Object.freeze({
|
|
15
|
+
ASSET_CHANGE: 'asset_change',
|
|
16
|
+
PERMISSION_CHANGE: 'permission_change',
|
|
17
|
+
POLICY_DENIED: 'policy_denied',
|
|
18
|
+
GRAY_RELEASE: 'gray_release',
|
|
19
|
+
ROLLBACK: 'rollback',
|
|
20
|
+
REVIEW_ACTION: 'review_action',
|
|
21
|
+
SECURITY_SCAN: 'security_scan',
|
|
22
|
+
});
|
|
23
|
+
|
|
24
|
+
const AUDIT_SEVERITY = Object.freeze({
|
|
25
|
+
INFO: 'info',
|
|
26
|
+
WARN: 'warn',
|
|
27
|
+
ERROR: 'error',
|
|
28
|
+
BLOCKING: 'blocking',
|
|
29
|
+
});
|
|
30
|
+
|
|
31
|
+
const AUDIT_RESULT = Object.freeze({
|
|
32
|
+
SUCCESS: 'success',
|
|
33
|
+
DENIED: 'denied',
|
|
34
|
+
ERROR: 'error',
|
|
35
|
+
});
|
|
36
|
+
|
|
37
|
+
const VALID_EVENT_TYPES = new Set(Object.values(AUDIT_EVENT_TYPES));
|
|
38
|
+
const VALID_SEVERITY = new Set(Object.values(AUDIT_SEVERITY));
|
|
39
|
+
const VALID_RESULT = new Set(Object.values(AUDIT_RESULT));
|
|
40
|
+
|
|
41
|
+
// ============================================================
|
|
42
|
+
// 敏感信息红脱(复用 P2 模式)
|
|
43
|
+
// ============================================================
|
|
44
|
+
|
|
45
|
+
const SENSITIVE_PATTERNS = [
|
|
46
|
+
{ pattern: /password\s*[=:]\s*["'][^"']*["']/gi, replacement: 'password=[REDACTED]' },
|
|
47
|
+
{ pattern: /password\s*[=:]\s*\S+/gi, replacement: 'password=[REDACTED]' },
|
|
48
|
+
{ pattern: /api[_-]?key\s*[=:]\s*["'][^"']*["']/gi, replacement: 'api_key=[REDACTED]' },
|
|
49
|
+
{ pattern: /api[_-]?key\s*[=:]\s*\S+/gi, replacement: 'api_key=[REDACTED]' },
|
|
50
|
+
{ pattern: /secret\s*[=:]\s*["'][^"']*["']/gi, replacement: 'secret=[REDACTED]' },
|
|
51
|
+
{ pattern: /secret\s*[=:]\s*\S+/gi, replacement: 'secret=[REDACTED]' },
|
|
52
|
+
{ pattern: /token\s*[=:]\s*["'][^"']*["']/gi, replacement: 'token=[REDACTED]' },
|
|
53
|
+
{ pattern: /token\s*[=:]\s*\S+/gi, replacement: 'token=[REDACTED]' },
|
|
54
|
+
{ pattern: /access[_-]?key\s*[=:]\s*["'][^"']*["']/gi, replacement: 'access_key=[REDACTED]' },
|
|
55
|
+
{ pattern: /access[_-]?key\s*[=:]\s*\S+/gi, replacement: 'access_key=[REDACTED]' },
|
|
56
|
+
{ pattern: /private[_-]?key\s*[=:]\s*["'][^"']*["']/gi, replacement: 'private_key=[REDACTED]' },
|
|
57
|
+
{ pattern: /private[_-]?key\s*[=:]\s*\S+/gi, replacement: 'private_key=[REDACTED]' },
|
|
58
|
+
];
|
|
59
|
+
|
|
60
|
+
function redactSensitive(text) {
|
|
61
|
+
if (typeof text !== 'string') return text;
|
|
62
|
+
let result = text;
|
|
63
|
+
for (const { pattern, replacement } of SENSITIVE_PATTERNS) {
|
|
64
|
+
result = result.replace(pattern, replacement);
|
|
65
|
+
}
|
|
66
|
+
return result;
|
|
67
|
+
}
|
|
68
|
+
|
|
69
|
+
const SENSITIVE_KEY_PATTERNS = /^(password|api[_-]?key|secret|token|access[_-]?key|private[_-]?key|raw[_-]?prompt)$/i;
|
|
70
|
+
|
|
71
|
+
function redactObject(obj) {
|
|
72
|
+
if (obj === null || obj === undefined) return obj;
|
|
73
|
+
if (typeof obj === 'string') return redactSensitive(obj);
|
|
74
|
+
if (typeof obj !== 'object') return obj;
|
|
75
|
+
if (Array.isArray(obj)) return obj.map(redactObject);
|
|
76
|
+
|
|
77
|
+
const result = {};
|
|
78
|
+
for (const [key, value] of Object.entries(obj)) {
|
|
79
|
+
if (SENSITIVE_KEY_PATTERNS.test(key)) {
|
|
80
|
+
result[key] = '[REDACTED]';
|
|
81
|
+
} else if (typeof value === 'string') {
|
|
82
|
+
result[key] = redactSensitive(value);
|
|
83
|
+
} else if (typeof value === 'object' && value !== null) {
|
|
84
|
+
result[key] = redactObject(value);
|
|
85
|
+
} else {
|
|
86
|
+
result[key] = value;
|
|
87
|
+
}
|
|
88
|
+
}
|
|
89
|
+
return result;
|
|
90
|
+
}
|
|
91
|
+
|
|
92
|
+
// ============================================================
|
|
93
|
+
// 审计日志类
|
|
94
|
+
// ============================================================
|
|
95
|
+
|
|
96
|
+
class AuditLog {
|
|
97
|
+
constructor(options = {}) {
|
|
98
|
+
/** @type {object[]} */
|
|
99
|
+
this.entries = [];
|
|
100
|
+
/** @type {number} */
|
|
101
|
+
this._nextEventId = 1;
|
|
102
|
+
/** @type {number} */
|
|
103
|
+
this._maxEntries = options.maxEntries || 10000;
|
|
104
|
+
/** @type {string|null} */
|
|
105
|
+
this.storagePath = options.storagePath || null;
|
|
106
|
+
/** @type {boolean} */
|
|
107
|
+
this.loadExisting = options.loadExisting !== false;
|
|
108
|
+
/** @type {boolean} */
|
|
109
|
+
this.appendOnRecord = options.appendOnRecord !== false;
|
|
110
|
+
/** @type {object[]} */
|
|
111
|
+
this.loadErrors = [];
|
|
112
|
+
|
|
113
|
+
// 指定 storagePath 且 loadExisting 不为 false 时,加载历史记录
|
|
114
|
+
if (this.storagePath && this.loadExisting) {
|
|
115
|
+
this.loadFromFile();
|
|
116
|
+
}
|
|
117
|
+
}
|
|
118
|
+
|
|
119
|
+
/**
|
|
120
|
+
* 从 NDJSON 文件加载历史记录
|
|
121
|
+
* @returns {object[]} 加载的记录
|
|
122
|
+
*/
|
|
123
|
+
loadFromFile() {
|
|
124
|
+
if (!this.storagePath) return [];
|
|
125
|
+
|
|
126
|
+
try {
|
|
127
|
+
if (!fs.existsSync(this.storagePath)) return [];
|
|
128
|
+
} catch {
|
|
129
|
+
return [];
|
|
130
|
+
}
|
|
131
|
+
|
|
132
|
+
let content;
|
|
133
|
+
try {
|
|
134
|
+
content = fs.readFileSync(this.storagePath, 'utf-8');
|
|
135
|
+
} catch {
|
|
136
|
+
return [];
|
|
137
|
+
}
|
|
138
|
+
|
|
139
|
+
if (!content || !content.trim()) return [];
|
|
140
|
+
|
|
141
|
+
const lines = content.split('\n');
|
|
142
|
+
const loaded = [];
|
|
143
|
+
|
|
144
|
+
for (let i = 0; i < lines.length; i++) {
|
|
145
|
+
const line = lines[i].trim();
|
|
146
|
+
if (!line) continue;
|
|
147
|
+
|
|
148
|
+
try {
|
|
149
|
+
const entry = JSON.parse(line);
|
|
150
|
+
loaded.push(entry);
|
|
151
|
+
|
|
152
|
+
// 恢复 eventId 编号
|
|
153
|
+
if (entry.eventId && typeof entry.eventId === 'string') {
|
|
154
|
+
const match = entry.eventId.match(/^audit-(\d+)$/);
|
|
155
|
+
if (match) {
|
|
156
|
+
const num = parseInt(match[1], 10);
|
|
157
|
+
if (num >= this._nextEventId) {
|
|
158
|
+
this._nextEventId = num + 1;
|
|
159
|
+
}
|
|
160
|
+
}
|
|
161
|
+
}
|
|
162
|
+
} catch (err) {
|
|
163
|
+
this.loadErrors.push({
|
|
164
|
+
lineNumber: i + 1,
|
|
165
|
+
line: line.substring(0, 200),
|
|
166
|
+
message: err.message || 'JSON 解析失败',
|
|
167
|
+
});
|
|
168
|
+
}
|
|
169
|
+
}
|
|
170
|
+
|
|
171
|
+
// 应用 maxEntries 约束
|
|
172
|
+
this.entries = loaded.length > this._maxEntries
|
|
173
|
+
? loaded.slice(-this._maxEntries)
|
|
174
|
+
: loaded;
|
|
175
|
+
|
|
176
|
+
return this.entries;
|
|
177
|
+
}
|
|
178
|
+
|
|
179
|
+
/**
|
|
180
|
+
* 追加一条已红脱的 entry 到 NDJSON 文件
|
|
181
|
+
* @param {object} entry
|
|
182
|
+
*/
|
|
183
|
+
appendToFile(entry) {
|
|
184
|
+
if (!this.storagePath) return;
|
|
185
|
+
if (this.appendOnRecord === false) return;
|
|
186
|
+
|
|
187
|
+
const dir = path.dirname(this.storagePath);
|
|
188
|
+
if (!fs.existsSync(dir)) {
|
|
189
|
+
fs.mkdirSync(dir, { recursive: true });
|
|
190
|
+
}
|
|
191
|
+
|
|
192
|
+
const line = JSON.stringify(entry) + '\n';
|
|
193
|
+
fs.appendFileSync(this.storagePath, line, 'utf-8');
|
|
194
|
+
}
|
|
195
|
+
|
|
196
|
+
/**
|
|
197
|
+
* 写入审计事件(自动红脱)
|
|
198
|
+
* @param {object} params
|
|
199
|
+
* @returns {object} 审计记录
|
|
200
|
+
*/
|
|
201
|
+
record({ eventType, actor, target, action, result, severity = 'info', message = '', metadata = {} }) {
|
|
202
|
+
if (!eventType || !VALID_EVENT_TYPES.has(eventType)) {
|
|
203
|
+
throw new Error(`无效事件类型: ${eventType},必须是 ${[...VALID_EVENT_TYPES].join(', ')} 之一`);
|
|
204
|
+
}
|
|
205
|
+
if (!VALID_SEVERITY.has(severity)) {
|
|
206
|
+
throw new Error(`无效严重级别: ${severity},必须是 ${[...VALID_SEVERITY].join(', ')} 之一`);
|
|
207
|
+
}
|
|
208
|
+
if (result && !VALID_RESULT.has(result)) {
|
|
209
|
+
throw new Error(`无效结果: ${result},必须是 ${[...VALID_RESULT].join(', ')} 之一`);
|
|
210
|
+
}
|
|
211
|
+
|
|
212
|
+
const entry = {
|
|
213
|
+
eventId: `audit-${this._nextEventId++}`,
|
|
214
|
+
eventType,
|
|
215
|
+
actor: actor || 'system',
|
|
216
|
+
target: target || '',
|
|
217
|
+
action: action || '',
|
|
218
|
+
result: result || 'success',
|
|
219
|
+
severity,
|
|
220
|
+
message: redactSensitive(message || ''),
|
|
221
|
+
metadata: redactObject(metadata || {}),
|
|
222
|
+
timestamp: new Date().toISOString(),
|
|
223
|
+
};
|
|
224
|
+
|
|
225
|
+
this.entries.push(entry);
|
|
226
|
+
|
|
227
|
+
// 超出上限时移除最旧的
|
|
228
|
+
if (this.entries.length > this._maxEntries) {
|
|
229
|
+
this.entries = this.entries.slice(-this._maxEntries);
|
|
230
|
+
}
|
|
231
|
+
|
|
232
|
+
// 追加到文件(使用已红脱的 entry)
|
|
233
|
+
this.appendToFile(entry);
|
|
234
|
+
|
|
235
|
+
return { ...entry, metadata: { ...entry.metadata } };
|
|
236
|
+
}
|
|
237
|
+
|
|
238
|
+
/**
|
|
239
|
+
* 查询审计日志
|
|
240
|
+
* @param {object} filters
|
|
241
|
+
* @returns {object[]}
|
|
242
|
+
*/
|
|
243
|
+
query({ eventType, actor, target, result, severity, from, to, limit = 100 } = {}) {
|
|
244
|
+
let filtered = this.entries;
|
|
245
|
+
|
|
246
|
+
if (eventType) {
|
|
247
|
+
filtered = filtered.filter(e => e.eventType === eventType);
|
|
248
|
+
}
|
|
249
|
+
if (actor) {
|
|
250
|
+
filtered = filtered.filter(e => e.actor === actor);
|
|
251
|
+
}
|
|
252
|
+
if (target) {
|
|
253
|
+
filtered = filtered.filter(e => e.target === target);
|
|
254
|
+
}
|
|
255
|
+
if (result) {
|
|
256
|
+
filtered = filtered.filter(e => e.result === result);
|
|
257
|
+
}
|
|
258
|
+
if (severity) {
|
|
259
|
+
filtered = filtered.filter(e => e.severity === severity);
|
|
260
|
+
}
|
|
261
|
+
if (from) {
|
|
262
|
+
filtered = filtered.filter(e => e.timestamp >= from);
|
|
263
|
+
}
|
|
264
|
+
if (to) {
|
|
265
|
+
filtered = filtered.filter(e => e.timestamp <= to);
|
|
266
|
+
}
|
|
267
|
+
|
|
268
|
+
return filtered.slice(-limit).map(e => ({ ...e, metadata: { ...e.metadata } }));
|
|
269
|
+
}
|
|
270
|
+
|
|
271
|
+
/**
|
|
272
|
+
* 按事件类型统计
|
|
273
|
+
* @returns {object}
|
|
274
|
+
*/
|
|
275
|
+
getStats() {
|
|
276
|
+
const byType = {};
|
|
277
|
+
const bySeverity = {};
|
|
278
|
+
const byResult = {};
|
|
279
|
+
|
|
280
|
+
for (const entry of this.entries) {
|
|
281
|
+
byType[entry.eventType] = (byType[entry.eventType] || 0) + 1;
|
|
282
|
+
bySeverity[entry.severity] = (bySeverity[entry.severity] || 0) + 1;
|
|
283
|
+
byResult[entry.result] = (byResult[entry.result] || 0) + 1;
|
|
284
|
+
}
|
|
285
|
+
|
|
286
|
+
return {
|
|
287
|
+
total: this.entries.length,
|
|
288
|
+
byType,
|
|
289
|
+
bySeverity,
|
|
290
|
+
byResult,
|
|
291
|
+
};
|
|
292
|
+
}
|
|
293
|
+
|
|
294
|
+
/**
|
|
295
|
+
* 导出审计日志
|
|
296
|
+
* @param {string} format - 'json' | 'ndjson'
|
|
297
|
+
* @returns {string}
|
|
298
|
+
*/
|
|
299
|
+
export(format = 'json') {
|
|
300
|
+
if (format === 'ndjson') {
|
|
301
|
+
return this.entries.map(e => JSON.stringify(e)).join('\n');
|
|
302
|
+
}
|
|
303
|
+
return JSON.stringify(this.entries, null, 2);
|
|
304
|
+
}
|
|
305
|
+
|
|
306
|
+
/**
|
|
307
|
+
* 清空审计日志(同时清空内存和持久化文件)
|
|
308
|
+
*/
|
|
309
|
+
clear() {
|
|
310
|
+
this.entries = [];
|
|
311
|
+
this._nextEventId = 1;
|
|
312
|
+
this.loadErrors = [];
|
|
313
|
+
|
|
314
|
+
if (this.storagePath) {
|
|
315
|
+
const dir = path.dirname(this.storagePath);
|
|
316
|
+
if (!fs.existsSync(dir)) {
|
|
317
|
+
fs.mkdirSync(dir, { recursive: true });
|
|
318
|
+
}
|
|
319
|
+
fs.writeFileSync(this.storagePath, '', 'utf-8');
|
|
320
|
+
}
|
|
321
|
+
}
|
|
322
|
+
|
|
323
|
+
/**
|
|
324
|
+
* 获取坏行加载错误
|
|
325
|
+
* @returns {object[]}
|
|
326
|
+
*/
|
|
327
|
+
getLoadErrors() {
|
|
328
|
+
return this.loadErrors.map(e => ({ ...e }));
|
|
329
|
+
}
|
|
330
|
+
|
|
331
|
+
/**
|
|
332
|
+
* 条目数量
|
|
333
|
+
* @returns {number}
|
|
334
|
+
*/
|
|
335
|
+
get size() {
|
|
336
|
+
return this.entries.length;
|
|
337
|
+
}
|
|
338
|
+
|
|
339
|
+
/**
|
|
340
|
+
* 导出为 JSON
|
|
341
|
+
* @returns {object[]}
|
|
342
|
+
*/
|
|
343
|
+
toJSON() {
|
|
344
|
+
return this.entries.map(e => ({ ...e, metadata: { ...e.metadata } }));
|
|
345
|
+
}
|
|
346
|
+
}
|
|
347
|
+
|
|
348
|
+
/**
|
|
349
|
+
* 工厂函数
|
|
350
|
+
* @param {object} [options]
|
|
351
|
+
* @returns {AuditLog}
|
|
352
|
+
*/
|
|
353
|
+
function createAuditLog(options) {
|
|
354
|
+
return new AuditLog(options);
|
|
355
|
+
}
|
|
356
|
+
|
|
357
|
+
module.exports = {
|
|
358
|
+
AUDIT_EVENT_TYPES,
|
|
359
|
+
AUDIT_SEVERITY,
|
|
360
|
+
AUDIT_RESULT,
|
|
361
|
+
VALID_EVENT_TYPES,
|
|
362
|
+
VALID_SEVERITY,
|
|
363
|
+
VALID_RESULT,
|
|
364
|
+
AuditLog,
|
|
365
|
+
createAuditLog,
|
|
366
|
+
redactSensitive,
|
|
367
|
+
redactObject,
|
|
368
|
+
};
|
|
@@ -0,0 +1,312 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* P3.4 灰度发布
|
|
3
|
+
*
|
|
4
|
+
* 灰度规则引擎:按组织/团队/项目/百分比发布资产版本
|
|
5
|
+
*/
|
|
6
|
+
|
|
7
|
+
// ============================================================
|
|
8
|
+
// 常量
|
|
9
|
+
// ============================================================
|
|
10
|
+
|
|
11
|
+
const GRAY_SCOPE_TYPES = Object.freeze({
|
|
12
|
+
ORG: 'org',
|
|
13
|
+
TEAM: 'team',
|
|
14
|
+
PROJECT: 'project',
|
|
15
|
+
PERCENTAGE: 'percentage',
|
|
16
|
+
});
|
|
17
|
+
|
|
18
|
+
const GRAY_STATUS = Object.freeze({
|
|
19
|
+
ACTIVE: 'active',
|
|
20
|
+
RECLAIMED: 'reclaimed',
|
|
21
|
+
EXPANDED: 'expanded',
|
|
22
|
+
FULLY_RELEASED: 'fully_released',
|
|
23
|
+
});
|
|
24
|
+
|
|
25
|
+
const VALID_SCOPE_TYPES = new Set(Object.values(GRAY_SCOPE_TYPES));
|
|
26
|
+
const VALID_GRAY_STATUS = new Set(Object.values(GRAY_STATUS));
|
|
27
|
+
|
|
28
|
+
// ============================================================
|
|
29
|
+
// 灰度发布引擎
|
|
30
|
+
// ============================================================
|
|
31
|
+
|
|
32
|
+
class GrayReleaseEngine {
|
|
33
|
+
constructor() {
|
|
34
|
+
/** @type {Map<string, object>} grayReleaseId → 灰度发布记录 */
|
|
35
|
+
this.releases = new Map();
|
|
36
|
+
/** @type {Map<string, object[]>} assetId → 灰度规则[] */
|
|
37
|
+
this.rules = new Map();
|
|
38
|
+
/** @type {number} */
|
|
39
|
+
this._nextRuleId = 1;
|
|
40
|
+
/** @type {number} */
|
|
41
|
+
this._nextReleaseId = 1;
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
/**
|
|
45
|
+
* 创建灰度规则
|
|
46
|
+
* @param {object} params
|
|
47
|
+
* @returns {object} 灰度规则
|
|
48
|
+
*/
|
|
49
|
+
createGrayRule({ assetId, version, scope, scopeValue, percentage, rollbackVersion = null }) {
|
|
50
|
+
if (!assetId || !version || !scope) {
|
|
51
|
+
throw new Error('assetId, version, scope 必填');
|
|
52
|
+
}
|
|
53
|
+
if (!VALID_SCOPE_TYPES.has(scope)) {
|
|
54
|
+
throw new Error(`无效范围类型: ${scope},必须是 ${[...VALID_SCOPE_TYPES].join(', ')} 之一`);
|
|
55
|
+
}
|
|
56
|
+
if (scope === 'percentage') {
|
|
57
|
+
if (typeof percentage !== 'number' || percentage < 0 || percentage > 100) {
|
|
58
|
+
throw new Error('百分比范围必须是 0-100 的数字');
|
|
59
|
+
}
|
|
60
|
+
} else {
|
|
61
|
+
if (!scopeValue) {
|
|
62
|
+
throw new Error('非百分比范围必须提供 scopeValue');
|
|
63
|
+
}
|
|
64
|
+
}
|
|
65
|
+
|
|
66
|
+
const ruleId = `gray-rule-${this._nextRuleId++}`;
|
|
67
|
+
const rule = {
|
|
68
|
+
ruleId,
|
|
69
|
+
assetId,
|
|
70
|
+
version,
|
|
71
|
+
scope,
|
|
72
|
+
scopeValue: scopeValue || null,
|
|
73
|
+
percentage: scope === 'percentage' ? percentage : null,
|
|
74
|
+
rollbackVersion,
|
|
75
|
+
createdAt: new Date().toISOString(),
|
|
76
|
+
};
|
|
77
|
+
|
|
78
|
+
if (!this.rules.has(assetId)) {
|
|
79
|
+
this.rules.set(assetId, []);
|
|
80
|
+
}
|
|
81
|
+
this.rules.get(assetId).push(rule);
|
|
82
|
+
|
|
83
|
+
return { ...rule };
|
|
84
|
+
}
|
|
85
|
+
|
|
86
|
+
/**
|
|
87
|
+
* 创建灰度发布
|
|
88
|
+
* @param {object} params
|
|
89
|
+
* @returns {object} 灰度发布记录
|
|
90
|
+
*/
|
|
91
|
+
createGrayRelease({ assetId, version, rules, createdBy, metadata = {} }) {
|
|
92
|
+
if (!assetId || !version || !createdBy) {
|
|
93
|
+
throw new Error('assetId, version, createdBy 必填');
|
|
94
|
+
}
|
|
95
|
+
if (!rules || !Array.isArray(rules) || rules.length === 0) {
|
|
96
|
+
throw new Error('rules 必填且不能为空');
|
|
97
|
+
}
|
|
98
|
+
|
|
99
|
+
// 检查约束:无 rollbackVersion 时不允许 100% 灰度
|
|
100
|
+
const hasFullPercentage = rules.some(r => r.scope === 'percentage' && r.percentage === 100);
|
|
101
|
+
if (hasFullPercentage) {
|
|
102
|
+
const hasRollback = rules.some(r => r.rollbackVersion);
|
|
103
|
+
if (!hasRollback) {
|
|
104
|
+
throw new Error('无 rollbackVersion 的资产不允许 100% 灰度发布');
|
|
105
|
+
}
|
|
106
|
+
}
|
|
107
|
+
|
|
108
|
+
const releaseId = `gray-${this._nextReleaseId++}`;
|
|
109
|
+
const now = new Date().toISOString();
|
|
110
|
+
|
|
111
|
+
const release = {
|
|
112
|
+
releaseId,
|
|
113
|
+
assetId,
|
|
114
|
+
version,
|
|
115
|
+
rules: rules.map(r => ({ ...r })),
|
|
116
|
+
status: GRAY_STATUS.ACTIVE,
|
|
117
|
+
createdBy,
|
|
118
|
+
metadata,
|
|
119
|
+
createdAt: now,
|
|
120
|
+
updatedAt: now,
|
|
121
|
+
reclaimedAt: null,
|
|
122
|
+
reclaimReason: null,
|
|
123
|
+
};
|
|
124
|
+
|
|
125
|
+
this.releases.set(releaseId, release);
|
|
126
|
+
|
|
127
|
+
return { ...release, rules: release.rules.map(r => ({ ...r })) };
|
|
128
|
+
}
|
|
129
|
+
|
|
130
|
+
/**
|
|
131
|
+
* 评估上下文是否命中灰度
|
|
132
|
+
* @param {string} releaseId
|
|
133
|
+
* @param {object} context - { org?, team?, project?, userId? }
|
|
134
|
+
* @returns {object} { matched: boolean, matchedRule?, reason? }
|
|
135
|
+
*/
|
|
136
|
+
evaluateScope(releaseId, context) {
|
|
137
|
+
const release = this.releases.get(releaseId);
|
|
138
|
+
if (!release) return { matched: false, reason: `灰度发布 ${releaseId} 不存在` };
|
|
139
|
+
if (release.status !== GRAY_STATUS.ACTIVE) {
|
|
140
|
+
return { matched: false, reason: `灰度发布状态为 ${release.status},不可评估` };
|
|
141
|
+
}
|
|
142
|
+
|
|
143
|
+
for (const rule of release.rules) {
|
|
144
|
+
if (this._matchRule(rule, context)) {
|
|
145
|
+
return { matched: true, matchedRule: { ...rule } };
|
|
146
|
+
}
|
|
147
|
+
}
|
|
148
|
+
|
|
149
|
+
return { matched: false, reason: '未命中任何灰度规则' };
|
|
150
|
+
}
|
|
151
|
+
|
|
152
|
+
/**
|
|
153
|
+
* 获取灰度状态
|
|
154
|
+
* @param {string} releaseId
|
|
155
|
+
* @returns {object|null}
|
|
156
|
+
*/
|
|
157
|
+
getGrayStatus(releaseId) {
|
|
158
|
+
const release = this.releases.get(releaseId);
|
|
159
|
+
if (!release) return null;
|
|
160
|
+
return { ...release, rules: release.rules.map(r => ({ ...r })) };
|
|
161
|
+
}
|
|
162
|
+
|
|
163
|
+
/**
|
|
164
|
+
* 回收灰度发布(回退到 rollbackVersion)
|
|
165
|
+
* @param {string} releaseId
|
|
166
|
+
* @param {string} reason
|
|
167
|
+
* @returns {object} { ok, release?, error? }
|
|
168
|
+
*/
|
|
169
|
+
reclaimGrayRelease(releaseId, reason) {
|
|
170
|
+
if (!reason) return { ok: false, error: '回收原因必填' };
|
|
171
|
+
|
|
172
|
+
const release = this.releases.get(releaseId);
|
|
173
|
+
if (!release) return { ok: false, error: `灰度发布 ${releaseId} 不存在` };
|
|
174
|
+
if (release.status !== GRAY_STATUS.ACTIVE && release.status !== GRAY_STATUS.EXPANDED) {
|
|
175
|
+
return { ok: false, error: `灰度发布状态为 ${release.status},不可回收` };
|
|
176
|
+
}
|
|
177
|
+
|
|
178
|
+
release.status = GRAY_STATUS.RECLAIMED;
|
|
179
|
+
release.reclaimReason = reason;
|
|
180
|
+
release.reclaimedAt = new Date().toISOString();
|
|
181
|
+
release.updatedAt = new Date().toISOString();
|
|
182
|
+
|
|
183
|
+
return { ok: true, release: { ...release, rules: release.rules.map(r => ({ ...r })) } };
|
|
184
|
+
}
|
|
185
|
+
|
|
186
|
+
/**
|
|
187
|
+
* 扩大灰度范围
|
|
188
|
+
* @param {string} releaseId
|
|
189
|
+
* @param {number} newPercentage
|
|
190
|
+
* @returns {object} { ok, release?, error? }
|
|
191
|
+
*/
|
|
192
|
+
expandGrayRelease(releaseId, newPercentage) {
|
|
193
|
+
if (typeof newPercentage !== 'number' || newPercentage < 0 || newPercentage > 100) {
|
|
194
|
+
return { ok: false, error: '百分比必须是 0-100 的数字' };
|
|
195
|
+
}
|
|
196
|
+
|
|
197
|
+
const release = this.releases.get(releaseId);
|
|
198
|
+
if (!release) return { ok: false, error: `灰度发布 ${releaseId} 不存在` };
|
|
199
|
+
if (release.status !== GRAY_STATUS.ACTIVE) {
|
|
200
|
+
return { ok: false, error: `灰度发布状态为 ${release.status},不可扩展` };
|
|
201
|
+
}
|
|
202
|
+
|
|
203
|
+
// 找到百分比规则并更新
|
|
204
|
+
let found = false;
|
|
205
|
+
for (const rule of release.rules) {
|
|
206
|
+
if (rule.scope === 'percentage') {
|
|
207
|
+
if (newPercentage < rule.percentage) {
|
|
208
|
+
return { ok: false, error: '新百分比不能小于当前百分比' };
|
|
209
|
+
}
|
|
210
|
+
rule.percentage = newPercentage;
|
|
211
|
+
found = true;
|
|
212
|
+
}
|
|
213
|
+
}
|
|
214
|
+
|
|
215
|
+
if (!found) {
|
|
216
|
+
return { ok: false, error: '未找到百分比类型的灰度规则' };
|
|
217
|
+
}
|
|
218
|
+
|
|
219
|
+
release.status = newPercentage === 100 ? GRAY_STATUS.FULLY_RELEASED : GRAY_STATUS.EXPANDED;
|
|
220
|
+
release.updatedAt = new Date().toISOString();
|
|
221
|
+
|
|
222
|
+
return { ok: true, release: { ...release, rules: release.rules.map(r => ({ ...r })) } };
|
|
223
|
+
}
|
|
224
|
+
|
|
225
|
+
/**
|
|
226
|
+
* 列出灰度发布
|
|
227
|
+
* @param {string} [assetId]
|
|
228
|
+
* @returns {object[]}
|
|
229
|
+
*/
|
|
230
|
+
listGrayReleases(assetId) {
|
|
231
|
+
const result = [];
|
|
232
|
+
for (const release of this.releases.values()) {
|
|
233
|
+
if (!assetId || release.assetId === assetId) {
|
|
234
|
+
result.push({ ...release, rules: release.rules.map(r => ({ ...r })) });
|
|
235
|
+
}
|
|
236
|
+
}
|
|
237
|
+
return result;
|
|
238
|
+
}
|
|
239
|
+
|
|
240
|
+
/**
|
|
241
|
+
* 获取统计
|
|
242
|
+
* @returns {object}
|
|
243
|
+
*/
|
|
244
|
+
getStats() {
|
|
245
|
+
const byStatus = {};
|
|
246
|
+
for (const release of this.releases.values()) {
|
|
247
|
+
byStatus[release.status] = (byStatus[release.status] || 0) + 1;
|
|
248
|
+
}
|
|
249
|
+
return {
|
|
250
|
+
totalReleases: this.releases.size,
|
|
251
|
+
totalRules: [...this.rules.values()].reduce((sum, arr) => sum + arr.length, 0),
|
|
252
|
+
byStatus,
|
|
253
|
+
};
|
|
254
|
+
}
|
|
255
|
+
|
|
256
|
+
/**
|
|
257
|
+
* 重置
|
|
258
|
+
*/
|
|
259
|
+
reset() {
|
|
260
|
+
this.releases.clear();
|
|
261
|
+
this.rules.clear();
|
|
262
|
+
this._nextRuleId = 1;
|
|
263
|
+
this._nextReleaseId = 1;
|
|
264
|
+
}
|
|
265
|
+
|
|
266
|
+
// ============================================================
|
|
267
|
+
// 内部方法
|
|
268
|
+
// ============================================================
|
|
269
|
+
|
|
270
|
+
_matchRule(rule, context) {
|
|
271
|
+
switch (rule.scope) {
|
|
272
|
+
case 'org':
|
|
273
|
+
return context.org === rule.scopeValue;
|
|
274
|
+
case 'team':
|
|
275
|
+
return context.team === rule.scopeValue;
|
|
276
|
+
case 'project':
|
|
277
|
+
return context.project === rule.scopeValue;
|
|
278
|
+
case 'percentage': {
|
|
279
|
+
// 基于 userId 的确定性哈希分配
|
|
280
|
+
const hash = this._simpleHash(context.userId || '');
|
|
281
|
+
return (hash % 100) < rule.percentage;
|
|
282
|
+
}
|
|
283
|
+
default:
|
|
284
|
+
return false;
|
|
285
|
+
}
|
|
286
|
+
}
|
|
287
|
+
|
|
288
|
+
_simpleHash(str) {
|
|
289
|
+
let hash = 0;
|
|
290
|
+
for (let i = 0; i < str.length; i++) {
|
|
291
|
+
hash = ((hash << 5) - hash + str.charCodeAt(i)) | 0;
|
|
292
|
+
}
|
|
293
|
+
return Math.abs(hash);
|
|
294
|
+
}
|
|
295
|
+
}
|
|
296
|
+
|
|
297
|
+
/**
|
|
298
|
+
* 工厂函数
|
|
299
|
+
* @returns {GrayReleaseEngine}
|
|
300
|
+
*/
|
|
301
|
+
function createGrayReleaseEngine() {
|
|
302
|
+
return new GrayReleaseEngine();
|
|
303
|
+
}
|
|
304
|
+
|
|
305
|
+
module.exports = {
|
|
306
|
+
GRAY_SCOPE_TYPES,
|
|
307
|
+
GRAY_STATUS,
|
|
308
|
+
VALID_SCOPE_TYPES,
|
|
309
|
+
VALID_GRAY_STATUS,
|
|
310
|
+
GrayReleaseEngine,
|
|
311
|
+
createGrayReleaseEngine,
|
|
312
|
+
};
|
|
@@ -0,0 +1,31 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Governance 模块 barrel 导出
|
|
3
|
+
*/
|
|
4
|
+
|
|
5
|
+
const rbacTypes = require('./rbac-types');
|
|
6
|
+
const rbac = require('./rbac');
|
|
7
|
+
const assetReview = require('./asset-review');
|
|
8
|
+
const auditLog = require('./audit-log');
|
|
9
|
+
const grayRelease = require('./gray-release');
|
|
10
|
+
const rollback = require('./rollback');
|
|
11
|
+
const policyTypes = require('./policy-types');
|
|
12
|
+
const securityPolicy = require('./security-policy');
|
|
13
|
+
|
|
14
|
+
module.exports = {
|
|
15
|
+
// 类型与常量
|
|
16
|
+
...rbacTypes,
|
|
17
|
+
// RBAC 权限模型
|
|
18
|
+
...rbac,
|
|
19
|
+
// 资产审核工作流
|
|
20
|
+
...assetReview,
|
|
21
|
+
// 审计日志
|
|
22
|
+
...auditLog,
|
|
23
|
+
// 灰度发布
|
|
24
|
+
...grayRelease,
|
|
25
|
+
// 版本回滚
|
|
26
|
+
...rollback,
|
|
27
|
+
// 安全策略类型
|
|
28
|
+
...policyTypes,
|
|
29
|
+
// 安全策略引擎
|
|
30
|
+
...securityPolicy,
|
|
31
|
+
};
|