@greenarmor/ges-web-dashboard 1.2.4 → 1.2.5

package/dist/index.d.ts

@@ -1,5 +1,5 @@
 import * as http from "node:http";
-import type { ScoreFile, Control, FixHistoryEntry } from "@greenarmor/ges-core";
+import type { ScoreFile, Control, FixHistoryEntry, ActivityLogEntry } from "@greenarmor/ges-core";
 import type { Finding } from "@greenarmor/ges-audit-engine";
 export interface DashboardOptions {
     port?: number;
@@ -77,6 +77,7 @@ export interface DashboardData {
     findings: Finding[];
     packs: PackSummary[];
     fixHistory: FixHistoryEntry[];
+    activityLog: ActivityLogEntry[];
     lastAudit: string;
 }
 export declare function collectDashboardData(projectPath: string): DashboardData;

package/dist/index.js

@@ -4,7 +4,8 @@ import * as path from "node:path";
 import { runAudit, deduplicateFindings } from "@greenarmor/ges-audit-engine";
 import { getAllPacks, getPack } from "@greenarmor/ges-policy-engine";
 import { generateScoreFile } from "@greenarmor/ges-scoring-engine";
-import { loadFixHistory } from "@greenarmor/ges-core";
+import { loadFixHistory, loadActivityLog, loadControlsFromDisk, loadControlOverrides, applyOverridesToControls } from "@greenarmor/ges-core";
+import { getInstalledPackIds as getInstalledPackIdsFromDisk } from "@greenarmor/ges-core";
 import { renderDashboard } from "./template.js";
 function loadConfig(projectPath) {
     const configPath = path.join(projectPath, ".ges", "config.json");
@@ -31,21 +32,13 @@ function loadControlsForConfig(projectPath, config) {
         const fwLower = new Set(config.frameworks.map(f => f.toLowerCase()));
         const allPacks = getAllPacks();
         const packs = allPacks.filter(pack => fwLower.has(pack.id.toLowerCase()));
-        const controls = packs.flatMap(p => p.controls);
-        const overridesPath = path.join(projectPath, ".ges", "control-overrides.json");
-        if (fs.existsSync(overridesPath)) {
-            const overrides = JSON.parse(fs.readFileSync(overridesPath, "utf-8"));
-            for (const override of overrides) {
-                const control = controls.find((c) => c.id === override.control_id);
-                if (control) {
-                    control.status = override.status;
-                    for (const check of control.checks) {
-                        check.status = override.status;
-                    }
-                }
-            }
-        }
-        return controls;
+        const inMemoryControls = packs.flatMap(p => p.controls);
+        const diskControls = loadControlsFromDisk(projectPath);
+        const seenIds = new Set(inMemoryControls.map((c) => c.id));
+        const extraFromDisk = diskControls.filter(c => !seenIds.has(c.id));
+        const controls = [...inMemoryControls, ...extraFromDisk];
+        const overrides = loadControlOverrides(projectPath);
+        return applyOverridesToControls(controls, overrides);
     }
     catch {
         return [];
@@ -139,32 +132,40 @@ function getInstalledPackIds(projectPath, config) {
             }
         }
     }
-    const controlsDir = path.join(projectPath, "controls");
-    try {
-        const entries = fs.readdirSync(controlsDir, { withFileTypes: true });
-        for (const entry of entries) {
-            if (entry.isDirectory()) {
-                const ctrlFile = path.join(controlsDir, entry.name, "controls.json");
-                if (fs.existsSync(ctrlFile)) {
-                    ids.add(entry.name);
-                }
-            }
-        }
-    }
-    catch {
-        // controls dir may not exist
+    for (const id of getInstalledPackIdsFromDisk(projectPath)) {
+        ids.add(id);
     }
     return ids;
 }
+function getFrameworksFromControls(controls) {
+    const fwSet = new Set();
+    for (const c of controls) {
+        if (c.framework)
+            fwSet.add(c.framework);
+    }
+    return [...fwSet];
+}
 export function collectDashboardData(projectPath) {
     const config = loadConfig(projectPath);
     let score = loadScore(projectPath);
-    const baseControls = config ? loadControlsForConfig(projectPath, config) : [];
+    let baseControls;
+    let frameworks;
+    if (config) {
+        baseControls = loadControlsForConfig(projectPath, config);
+        frameworks = config.frameworks;
+    }
+    else {
+        baseControls = loadControlsFromDisk(projectPath);
+        frameworks = [];
+    }
     const findings = loadFindings(projectPath);
     const controls = updateControlsFromFindings(baseControls, findings);
-    if (config) {
+    if (config || controls.length > 0) {
         try {
-            const freshScore = generateScoreFile(controls, config.frameworks, findings);
+            const scoreFrameworks = frameworks.length > 0
+                ? frameworks
+                : getFrameworksFromControls(controls);
+            const freshScore = generateScoreFile(controls, scoreFrameworks, findings);
             score = freshScore;
         }
         catch {
@@ -176,6 +177,7 @@ export function collectDashboardData(projectPath) {
     const installedPacks = getInstalledPackIds(projectPath, config || undefined);
     const packs = allPacks.map(p => buildPackSummary(p, controls, findings, installedPacks));
     const fixHistory = loadFixHistory(projectPath);
+    const activityLog = loadActivityLog(projectPath);
     const metadataPath = path.join(projectPath, ".ges", "metadata.json");
     let lastAudit = "";
     try {
@@ -185,16 +187,22 @@ export function collectDashboardData(projectPath) {
     catch {
         lastAudit = new Date().toISOString();
     }
+    const allFrameworks = new Set(frameworks);
+    for (const c of controls) {
+        if (c.framework)
+            allFrameworks.add(c.framework);
+    }
     return {
         projectName: config?.project_name || "Unknown Project",
         projectType: config?.project_type || "unknown",
-        frameworks: config?.frameworks || [],
-        gesfVersion: "1.2.4",
+        frameworks: [...allFrameworks],
+        gesfVersion: "1.2.5",
         score,
         controls,
         findings,
         packs,
         fixHistory,
+        activityLog,
         lastAudit,
     };
 }
@@ -203,7 +211,9 @@ export function collectPackDetail(projectPath, packId) {
     if (!pack)
         return null;
     const config = loadConfig(projectPath);
-    const baseControls = config ? loadControlsForConfig(projectPath, config) : [];
+    const baseControls = config
+        ? loadControlsForConfig(projectPath, config)
+        : loadControlsFromDisk(projectPath);
     const findings = loadFindings(projectPath);
     const controls = updateControlsFromFindings(baseControls, findings);
     const packControlIds = new Set(pack.controls.map(c => c.id));
@@ -281,9 +291,9 @@ export function collectPackDetail(projectPath, packId) {
 }
 export function collectControlDetail(projectPath, controlId) {
     const config = loadConfig(projectPath);
-    if (!config)
-        return null;
-    const baseControls = loadControlsForConfig(projectPath, config);
+    const baseControls = config
+        ? loadControlsForConfig(projectPath, config)
+        : loadControlsFromDisk(projectPath);
     const findings = loadFindings(projectPath);
     const controls = updateControlsFromFindings(baseControls, findings);
     const control = controls.find(c => c.id === controlId);
@@ -380,6 +390,16 @@ export function startDashboard(options) {
             }
             return;
         }
+        if (pathname === "/api/activity-log") {
+            try {
+                const data = collectDashboardData(options.projectPath);
+                jsonResponse(res, data.activityLog);
+            }
+            catch (err) {
+                jsonError(res, err instanceof Error ? err.message : String(err));
+            }
+            return;
+        }
         const packMatch = pathname.match(/^\/api\/packs\/([a-z0-9-]+)$/);
         if (packMatch) {
             try {

package/dist/template.js

@@ -317,8 +317,8 @@ export function renderDashboard(data) {
 
 <div class="header">
   <div>
-    <h1>GESF Compliance Dashboard</h1>
-    <div class="subtitle">${escapeHtml(data.projectName)} | ${escapeHtml(data.projectType)} | GESF v${escapeHtml(data.gesfVersion)}</div>
+    <h1>${escapeHtml(data.projectName)}</h1>
+    <div class="subtitle">GESF v${escapeHtml(data.gesfVersion)}</div>
   </div>
   <div class="nav-tabs">
     <button class="nav-tab active" onclick="showPage('overview', this)">Overview</button>
@@ -326,6 +326,7 @@ export function renderDashboard(data) {
     <button class="nav-tab" onclick="showPage('fixes', this)">Fixes Detail</button>
     <button class="nav-tab" onclick="showPage('findings', this)">Findings</button>
     <button class="nav-tab" onclick="showPage('traceability', this)">Traceability</button>
+    <button class="nav-tab" onclick="showPage('activity', this)">Activity Log</button>
   </div>
 </div>
 
@@ -589,12 +590,16 @@ export function renderDashboard(data) {
     </div>
   </div>
 
+  <div id="page-activity" class="page">
+    ${renderActivityLogSection(data.activityLog || [])}
+  </div>
+
   <div id="control-detail-modal" style="display:none;"></div>
 
 </div>
 
 <div class="footer">
-  Generated by GESF v${escapeHtml(data.gesfVersion)} | Last audit: ${escapeHtml(new Date(data.lastAudit).toLocaleString())} | <a href="/api/data">JSON API</a> | <a href="/api/packs">Packs API</a> | <a href="/api/fix-history">Fix History API</a>
+  Generated by GESF v${escapeHtml(data.gesfVersion)} | Last audit: ${escapeHtml(new Date(data.lastAudit).toLocaleString())} | <a href="/api/data">JSON API</a> | <a href="/api/packs">Packs API</a> | <a href="/api/fix-history">Fix History API</a> | <a href="/api/activity-log">Activity Log API</a>
 </div>
 
 <script>
@@ -615,7 +620,7 @@ export function renderDashboard(data) {
     }
   };
 
-  var navTabMap = { overview: 0, packs: 1, fixes: 2, findings: 3, traceability: 4 };
+  var navTabMap = { overview: 0, packs: 1, fixes: 2, findings: 3, traceability: 4, activity: 5 };
 
   window.navigateToPage = function(page) {
     var tabs = document.querySelectorAll('.nav-tab');
@@ -1363,6 +1368,139 @@ function renderComplianceFixCards(issues, idPrefix) {
     }
     return html;
 }
+function renderActivityLogSection(entries) {
+    if (!entries || entries.length === 0) {
+        return `<div class="card">
+      <h2 style="font-size:20px;font-weight:700;margin-bottom:8px;">Activity Log</h2>
+      <p style="color:#6b7280;font-size:14px;margin-bottom:16px;">Every GESF operation performed via CLI or MCP is recorded here &mdash; the single source of truth for what GESF did to your project.</p>
+      <div class="empty-state">
+        <div class="icon">&#128203;</div>
+        <div class="msg">No activity recorded yet</div>
+        <div class="sub">Operations will appear here as you use GESF commands (<code style="background:#f3f4f6;padding:2px 6px;border-radius:4px;font-size:12px;">ges init</code>, <code style="background:#f3f4f6;padding:2px 6px;border-radius:4px;font-size:12px;">ges audit</code>, <code style="background:#f3f4f6;padding:2px 6px;border-radius:4px;font-size:12px;">ges fix</code>, MCP tools, etc.)</div>
+      </div>
+    </div>`;
+    }
+    const sorted = [...entries].sort((a, b) => new Date(b.timestamp).getTime() - new Date(a.timestamp).getTime());
+    const bySource = { cli: entries.filter(e => e.source === "cli").length, mcp: entries.filter(e => e.source === "mcp").length };
+    const byStatus = {
+        success: entries.filter(e => e.status === "success").length,
+        partial: entries.filter(e => e.status === "partial").length,
+        failed: entries.filter(e => e.status === "failed").length,
+        info: entries.filter(e => e.status === "info").length,
+    };
+    const byAction = {};
+    for (const e of entries) {
+        byAction[e.action] = (byAction[e.action] || 0) + 1;
+    }
+    const actionLabels = {
+        init: "Project Init",
+        audit: "Audit Run",
+        fix: "Auto-Fix",
+        policy_install: "Pack Installed",
+        policy_remove: "Pack Removed",
+        control_override: "Control Override",
+        implement_control: "Control Implemented",
+        score: "Score Generated",
+        scan: "Scanners Run",
+        validate: "Validation",
+        generate: "Docs Generated",
+        hooks_install: "Hooks Installed",
+        hooks_uninstall: "Hooks Removed",
+        dashboard_start: "Dashboard Started",
+        badge_generate: "Badge Generated",
+    };
+    const actionColors = {
+        init: "#0f766e",
+        audit: "#3b82f6",
+        fix: "#22c55e",
+        policy_install: "#8b5cf6",
+        policy_remove: "#ef4444",
+        control_override: "#eab308",
+        implement_control: "#22c55e",
+        score: "#3b82f6",
+        scan: "#f97316",
+        validate: "#6b7280",
+        generate: "#0f766e",
+        hooks_install: "#6b7280",
+        hooks_uninstall: "#6b7280",
+        dashboard_start: "#8b5cf6",
+        badge_generate: "#0f766e",
+    };
+    const statusColors = {
+        success: "#22c55e",
+        partial: "#eab308",
+        failed: "#ef4444",
+        info: "#3b82f6",
+    };
+    let html = '';
+    html += `<h2 style="font-size:20px;font-weight:700;margin-bottom:8px;">Activity Log</h2>`;
+    html += `<p style="color:#6b7280;font-size:14px;margin-bottom:16px;">Every GESF operation performed via CLI or MCP is recorded here &mdash; the single source of truth for what GESF did to your project.</p>`;
+    html += `<div class="grid grid-4" style="margin-bottom:20px;">`;
+    html += `<div class="card stat"><div class="num">${entries.length}</div><div class="label">Total Operations</div></div>`;
+    html += `<div class="card stat"><div class="num" style="color:#22c55e;">${byStatus.success}</div><div class="label">Successful</div></div>`;
+    html += `<div class="card stat"><div class="num" style="color:#ef4444;">${byStatus.failed + byStatus.partial}</div><div class="label">Failed/Partial</div></div>`;
+    html += `<div class="card stat"><div class="num" style="color:#0f766e;">${bySource.cli}</div><div class="label">CLI Source</div></div>`;
+    html += `</div>`;
+    html += `<div class="grid grid-2" style="margin-bottom:20px;">`;
+    html += `<div class="card"><div class="card-title">Operations by Type</div>`;
+    for (const [action, count] of Object.entries(byAction).sort((a, b) => b[1] - a[1])) {
+        const label = actionLabels[action] || action;
+        const color = actionColors[action] || "#6b7280";
+        html += `<div class="framework-row"><div class="framework-name" style="min-width:160px;font-size:13px;"><span class="badge" style="background:${color};font-size:10px;margin-right:6px;">${label}</span></div><div style="flex:1;"></div><div class="pct-text">${count}</div></div>`;
+    }
+    html += `</div>`;
+    html += `<div class="card"><div class="card-title">Sources & Status</div>`;
+    html += `<div style="display:flex;flex-wrap:wrap;gap:16px;margin-top:8px;">`;
+    html += `<div class="stat"><div class="num" style="font-size:20px;">${bySource.cli}</div><div class="label">CLI</div></div>`;
+    html += `<div class="stat"><div class="num" style="font-size:20px;">${bySource.mcp}</div><div class="label">MCP</div></div>`;
+    html += `<div class="stat"><div class="num" style="font-size:20px;color:#22c55e;">${byStatus.success}</div><div class="label">Success</div></div>`;
+    html += `<div class="stat"><div class="num" style="font-size:20px;color:#ef4444;">${byStatus.failed}</div><div class="label">Failed</div></div>`;
+    html += `</div></div>`;
+    html += `</div>`;
+    html += `<div class="card"><div class="card-title">Timeline (newest first)</div>`;
+    html += `<table><thead><tr><th>Time</th><th>Source</th><th>Action</th><th>Status</th><th>Description</th><th>Impact</th></tr></thead><tbody>`;
+    for (const entry of sorted) {
+        const time = new Date(entry.timestamp).toLocaleString();
+        const sourceBadge = entry.source === "mcp"
+            ? '<span class="badge" style="background:#7c3aed;font-size:10px;">MCP</span>'
+            : '<span class="badge" style="background:#0f766e;font-size:10px;">CLI</span>';
+        const actionLabel = actionLabels[entry.action] || entry.action;
+        const actionColor = actionColors[entry.action] || "#6b7280";
+        const actionBadge = `<span class="badge" style="background:${actionColor};font-size:10px;">${escapeHtml(actionLabel)}</span>`;
+        const statusBadge = `<span class="badge badge-status" style="background:${statusColors[entry.status] || '#6b7280'};font-size:10px;">${entry.status.toUpperCase()}</span>`;
+        const impactParts = [];
+        if (entry.details.findings_count !== undefined)
+            impactParts.push(`${entry.details.findings_count} findings`);
+        if (entry.details.fixes_applied !== undefined)
+            impactParts.push(`${entry.details.fixes_applied} fixes`);
+        if (entry.details.packs_affected && entry.details.packs_affected.length > 0)
+            impactParts.push(`Packs: ${entry.details.packs_affected.join(", ")}`);
+        if (entry.details.controls_affected && entry.details.controls_affected.length > 0)
+            impactParts.push(`Controls: ${entry.details.controls_affected.length}`);
+        if (entry.details.files_created && entry.details.files_created.length > 0)
+            impactParts.push(`${entry.details.files_created.length} files created`);
+        if (entry.details.frameworks_added && entry.details.frameworks_added.length > 0)
+            impactParts.push(`Added: ${entry.details.frameworks_added.join(", ")}`);
+        if (entry.details.score !== undefined)
+            impactParts.push(`Score: ${entry.details.score}%`);
+        const impactHtml = impactParts.length > 0
+            ? impactParts.map(p => `<div style="font-size:11px;color:#6b7280;margin-bottom:2px;">${escapeHtml(p)}</div>`).join('')
+            : '<span style="color:#9ca3af;">-</span>';
+        html += `<tr>
+      <td style="font-size:11px;white-space:nowrap;">${time}</td>
+      <td>${sourceBadge}</td>
+      <td>${actionBadge}</td>
+      <td>${statusBadge}</td>
+      <td>
+        <div style="font-weight:600;font-size:13px;">${escapeHtml(entry.title)}</div>
+        <div style="font-size:12px;color:#6b7280;">${escapeHtml(entry.description)}</div>
+      </td>
+      <td style="max-width:200px;">${impactHtml}</td>
+    </tr>`;
+    }
+    html += `</tbody></table></div>`;
+    return html;
+}
 function escapeHtml(str) {
     return str
         .replace(/&/g, "&amp;")

package/package.json

@@ -1,9 +1,9 @@
 {
   "dependencies": {
-    "@greenarmor/ges-audit-engine": "1.2.4",
-    "@greenarmor/ges-core": "1.2.4",
-    "@greenarmor/ges-policy-engine": "1.2.4",
-    "@greenarmor/ges-scoring-engine": "1.2.4"
+    "@greenarmor/ges-audit-engine": "1.2.5",
+    "@greenarmor/ges-core": "1.2.5",
+    "@greenarmor/ges-policy-engine": "1.2.5",
+    "@greenarmor/ges-scoring-engine": "1.2.5"
   },
   "description": "GESF Web Dashboard - Visual compliance dashboard for teams",
   "devDependencies": {
@@ -40,7 +40,7 @@
   },
   "type": "module",
   "types": "./dist/index.d.ts",
-  "version": "1.2.4",
+  "version": "1.2.5",
   "scripts": {
     "build": "tsc",
     "clean": "rm -rf dist tsconfig.tsbuildinfo",