@harness-engineering/core 0.21.1 → 0.21.3

package/dist/index.mjs

@@ -41,7 +41,7 @@ import {
   runAll,
   validateDependencies,
   violationId
-} from "./chunk-BQUWXBGR.mjs";
+} from "./chunk-4W4FRAA6.mjs";
 
 // src/index.ts
 export * from "@harness-engineering/types";
@@ -84,15 +84,15 @@ function validateConfig(data, schema) {
   let message = "Configuration validation failed";
   const suggestions = [];
   if (firstError) {
-    const path31 = firstError.path.join(".");
-    const pathDisplay = path31 ? ` at "${path31}"` : "";
+    const path34 = firstError.path.join(".");
+    const pathDisplay = path34 ? ` at "${path34}"` : "";
     if (firstError.code === "invalid_type") {
       const received = firstError.received;
       const expected = firstError.expected;
       if (received === "undefined") {
         code = "MISSING_FIELD";
         message = `Missing required field${pathDisplay}: ${firstError.message}`;
-        suggestions.push(`Field "${path31}" is required and must be of type "${expected}"`);
+        suggestions.push(`Field "${path34}" is required and must be of type "${expected}"`);
       } else {
         code = "INVALID_TYPE";
         message = `Invalid type${pathDisplay}: ${firstError.message}`;
@@ -149,21 +149,11 @@ function validateCommitMessage(message, format = "conventional") {
     issues: []
   });
 }
-function validateConventionalCommit(message) {
-  const lines = message.split("\n");
-  const headerLine = lines[0];
-  if (!headerLine) {
-    const error = createError(
-      "VALIDATION_FAILED",
-      "Commit message header cannot be empty",
-      { message },
-      ["Provide a commit message with at least a header line"]
-    );
-    return Err(error);
-  }
+function parseConventionalHeader(message, headerLine) {
   const match = headerLine.match(CONVENTIONAL_PATTERN);
-  if (!match) {
-    const error = createError(
+  if (match) return Ok(match);
+  return Err(
+    createError(
       "VALIDATION_FAILED",
       "Commit message does not follow conventional format",
       { message, header: headerLine },
@@ -172,13 +162,10 @@ function validateConventionalCommit(message) {
         "Valid types: " + VALID_TYPES.join(", "),
         "Example: feat(core): add new feature"
       ]
-    );
-    return Err(error);
-  }
-  const type = match[1];
-  const scope = match[3];
-  const breaking = match[4] === "!";
-  const description = match[5];
+    )
+  );
+}
+function collectCommitIssues(type, description) {
   const issues = [];
   if (!VALID_TYPES.includes(type)) {
     issues.push(`Invalid commit type "${type}". Valid types: ${VALID_TYPES.join(", ")}`);
@@ -186,34 +173,50 @@ function validateConventionalCommit(message) {
   if (!description || description.trim() === "") {
     issues.push("Commit description cannot be empty");
   }
-  let hasBreakingChange = breaking;
-  if (lines.length > 1) {
-    const body = lines.slice(1).join("\n");
-    if (body.includes("BREAKING CHANGE:")) {
-      hasBreakingChange = true;
-    }
+  return issues;
+}
+function hasBreakingChangeInBody(lines) {
+  if (lines.length <= 1) return false;
+  return lines.slice(1).join("\n").includes("BREAKING CHANGE:");
+}
+function validateConventionalCommit(message) {
+  const lines = message.split("\n");
+  const headerLine = lines[0];
+  if (!headerLine) {
+    return Err(
+      createError(
+        "VALIDATION_FAILED",
+        "Commit message header cannot be empty",
+        { message },
+        ["Provide a commit message with at least a header line"]
+      )
+    );
   }
+  const matchResult = parseConventionalHeader(message, headerLine);
+  if (!matchResult.ok) return matchResult;
+  const match = matchResult.value;
+  const type = match[1];
+  const scope = match[3];
+  const breaking = match[4] === "!";
+  const description = match[5];
+  const issues = collectCommitIssues(type, description);
   if (issues.length > 0) {
-    let errorMessage = `Commit message validation failed: ${issues.join("; ")}`;
-    if (issues.some((issue) => issue.includes("description cannot be empty"))) {
-      errorMessage = `Commit message validation failed: ${issues.join("; ")}`;
-    }
-    const error = createError(
-      "VALIDATION_FAILED",
-      errorMessage,
-      { message, issues, type, scope },
-      ["Review and fix the validation issues above"]
+    return Err(
+      createError(
+        "VALIDATION_FAILED",
+        `Commit message validation failed: ${issues.join("; ")}`,
+        { message, issues, type, scope },
+        ["Review and fix the validation issues above"]
+      )
     );
-    return Err(error);
   }
-  const result = {
+  return Ok({
     valid: true,
     type,
     ...scope && { scope },
-    breaking: hasBreakingChange,
+    breaking: breaking || hasBreakingChangeInBody(lines),
     issues: []
-  };
-  return Ok(result);
+  });
 }
 
 // src/context/types.ts
@@ -308,27 +311,27 @@ function extractSections(content) {
   }
   return sections.map((section) => buildAgentMapSection(section, lines));
 }
-function isExternalLink(path31) {
-  return path31.startsWith("http://") || path31.startsWith("https://") || path31.startsWith("#") || path31.startsWith("mailto:");
+function isExternalLink(path34) {
+  return path34.startsWith("http://") || path34.startsWith("https://") || path34.startsWith("#") || path34.startsWith("mailto:");
 }
 function resolveLinkPath(linkPath, baseDir) {
   return linkPath.startsWith(".") ? join(baseDir, linkPath) : linkPath;
 }
-async function validateAgentsMap(path31 = "./AGENTS.md") {
-  const contentResult = await readFileContent(path31);
+async function validateAgentsMap(path34 = "./AGENTS.md") {
+  const contentResult = await readFileContent(path34);
   if (!contentResult.ok) {
     return Err(
       createError(
         "PARSE_ERROR",
         `Failed to read AGENTS.md: ${contentResult.error.message}`,
-        { path: path31 },
+        { path: path34 },
         ["Ensure the file exists", "Check file permissions"]
       )
     );
   }
   const content = contentResult.value;
   const sections = extractSections(content);
-  const baseDir = dirname(path31);
+  const baseDir = dirname(path34);
   const sectionTitles = sections.map((s) => s.title);
   const missingSections = REQUIRED_SECTIONS.filter(
     (required) => !sectionTitles.some((title) => title.toLowerCase().includes(required.toLowerCase()))
@@ -469,8 +472,8 @@ async function checkDocCoverage(domain, options = {}) {
 
 // src/context/knowledge-map.ts
 import { join as join2, basename as basename2 } from "path";
-function suggestFix(path31, existingFiles) {
-  const targetName = basename2(path31).toLowerCase();
+function suggestFix(path34, existingFiles) {
+  const targetName = basename2(path34).toLowerCase();
   const similar = existingFiles.find((file) => {
     const fileName = basename2(file).toLowerCase();
     return fileName.includes(targetName) || targetName.includes(fileName);
@@ -478,7 +481,7 @@ function suggestFix(path31, existingFiles) {
   if (similar) {
     return `Did you mean "${similar}"?`;
   }
-  return `Create the file "${path31}" or remove the link`;
+  return `Create the file "${path34}" or remove the link`;
 }
 async function validateKnowledgeMap(rootDir = process.cwd()) {
   const agentsPath = join2(rootDir, "AGENTS.md");
@@ -671,6 +674,47 @@ var NODE_TYPE_TO_CATEGORY = {
   prompt: "systemPrompt",
   system: "systemPrompt"
 };
+function makeZeroWeights() {
+  return {
+    systemPrompt: 0,
+    projectManifest: 0,
+    taskSpec: 0,
+    activeCode: 0,
+    interfaces: 0,
+    reserve: 0
+  };
+}
+function normalizeRatios(ratios) {
+  const sum = Object.values(ratios).reduce((s, r) => s + r, 0);
+  if (sum === 0) return;
+  for (const key of Object.keys(ratios)) {
+    ratios[key] = ratios[key] / sum;
+  }
+}
+function enforceMinimumRatios(ratios, min) {
+  for (const key of Object.keys(ratios)) {
+    if (ratios[key] < min) ratios[key] = min;
+  }
+}
+function applyGraphDensity(ratios, graphDensity) {
+  const weights = makeZeroWeights();
+  for (const [nodeType, count] of Object.entries(graphDensity)) {
+    const category = NODE_TYPE_TO_CATEGORY[nodeType];
+    if (category) weights[category] += count;
+  }
+  const totalWeight = Object.values(weights).reduce((s, w) => s + w, 0);
+  if (totalWeight === 0) return;
+  const MIN = 0.01;
+  for (const key of Object.keys(ratios)) {
+    ratios[key] = weights[key] > 0 ? weights[key] / totalWeight : MIN;
+  }
+  if (ratios.reserve < DEFAULT_RATIOS.reserve) ratios.reserve = DEFAULT_RATIOS.reserve;
+  if (ratios.systemPrompt < DEFAULT_RATIOS.systemPrompt)
+    ratios.systemPrompt = DEFAULT_RATIOS.systemPrompt;
+  normalizeRatios(ratios);
+  enforceMinimumRatios(ratios, MIN);
+  normalizeRatios(ratios);
+}
 function contextBudget(totalTokens, overrides, graphDensity) {
   const ratios = {
     systemPrompt: DEFAULT_RATIOS.systemPrompt,
@@ -681,50 +725,7 @@ function contextBudget(totalTokens, overrides, graphDensity) {
     reserve: DEFAULT_RATIOS.reserve
   };
   if (graphDensity) {
-    const categoryWeights = {
-      systemPrompt: 0,
-      projectManifest: 0,
-      taskSpec: 0,
-      activeCode: 0,
-      interfaces: 0,
-      reserve: 0
-    };
-    for (const [nodeType, count] of Object.entries(graphDensity)) {
-      const category = NODE_TYPE_TO_CATEGORY[nodeType];
-      if (category) {
-        categoryWeights[category] += count;
-      }
-    }
-    const totalWeight = Object.values(categoryWeights).reduce((sum, w) => sum + w, 0);
-    if (totalWeight > 0) {
-      const MIN_ALLOCATION = 0.01;
-      for (const key of Object.keys(ratios)) {
-        if (categoryWeights[key] > 0) {
-          ratios[key] = categoryWeights[key] / totalWeight;
-        } else {
-          ratios[key] = MIN_ALLOCATION;
-        }
-      }
-      if (ratios.reserve < DEFAULT_RATIOS.reserve) {
-        ratios.reserve = DEFAULT_RATIOS.reserve;
-      }
-      if (ratios.systemPrompt < DEFAULT_RATIOS.systemPrompt) {
-        ratios.systemPrompt = DEFAULT_RATIOS.systemPrompt;
-      }
-      const ratioSum = Object.values(ratios).reduce((sum, r) => sum + r, 0);
-      for (const key of Object.keys(ratios)) {
-        ratios[key] = ratios[key] / ratioSum;
-      }
-      for (const key of Object.keys(ratios)) {
-        if (ratios[key] < MIN_ALLOCATION) {
-          ratios[key] = MIN_ALLOCATION;
-        }
-      }
-      const finalSum = Object.values(ratios).reduce((sum, r) => sum + r, 0);
-      for (const key of Object.keys(ratios)) {
-        ratios[key] = ratios[key] / finalSum;
-      }
-    }
+    applyGraphDensity(ratios, graphDensity);
   }
   if (overrides) {
     let overrideSum = 0;
@@ -830,8 +831,8 @@ function createBoundaryValidator(schema, name) {
         return Ok(result.data);
       }
       const suggestions = result.error.issues.map((issue) => {
-        const path31 = issue.path.join(".");
-        return path31 ? `${path31}: ${issue.message}` : issue.message;
+        const path34 = issue.path.join(".");
+        return path34 ? `${path34}: ${issue.message}` : issue.message;
       });
       return Err(
         createError(
@@ -1031,21 +1032,23 @@ function extractBundle(manifest, config) {
 }
 
 // src/constraints/sharing/merge.ts
+function arraysEqual(a, b) {
+  if (a.length !== b.length) return false;
+  return a.every((val, i) => deepEqual(val, b[i]));
+}
+function objectsEqual(a, b) {
+  const keysA = Object.keys(a);
+  const keysB = Object.keys(b);
+  if (keysA.length !== keysB.length) return false;
+  return keysA.every((key) => deepEqual(a[key], b[key]));
+}
 function deepEqual(a, b) {
   if (a === b) return true;
   if (typeof a !== typeof b) return false;
   if (typeof a !== "object" || a === null || b === null) return false;
-  if (Array.isArray(a) && Array.isArray(b)) {
-    if (a.length !== b.length) return false;
-    return a.every((val, i) => deepEqual(val, b[i]));
-  }
+  if (Array.isArray(a) && Array.isArray(b)) return arraysEqual(a, b);
   if (Array.isArray(a) !== Array.isArray(b)) return false;
-  const keysA = Object.keys(a);
-  const keysB = Object.keys(b);
-  if (keysA.length !== keysB.length) return false;
-  return keysA.every(
-    (key) => deepEqual(a[key], b[key])
-  );
+  return objectsEqual(a, b);
 }
 function stringArraysEqual(a, b) {
   if (a.length !== b.length) return false;
@@ -1463,11 +1466,11 @@ function processExportListSpecifiers(exportDecl, exports) {
 var TypeScriptParser = class {
   name = "typescript";
   extensions = [".ts", ".tsx", ".mts", ".cts"];
-  async parseFile(path31) {
-    const contentResult = await readFileContent(path31);
+  async parseFile(path34) {
+    const contentResult = await readFileContent(path34);
     if (!contentResult.ok) {
       return Err(
-        createParseError("NOT_FOUND", `File not found: ${path31}`, { path: path31 }, [
+        createParseError("NOT_FOUND", `File not found: ${path34}`, { path: path34 }, [
           "Check that the file exists",
           "Verify the path is correct"
         ])
@@ -1477,7 +1480,7 @@ var TypeScriptParser = class {
       const ast = parse(contentResult.value, {
         loc: true,
         range: true,
-        jsx: path31.endsWith(".tsx"),
+        jsx: path34.endsWith(".tsx"),
         errorOnUnknownASTType: false
       });
       return Ok({
@@ -1488,7 +1491,7 @@ var TypeScriptParser = class {
     } catch (e) {
       const error = e;
       return Err(
-        createParseError("SYNTAX_ERROR", `Failed to parse ${path31}: ${error.message}`, { path: path31 }, [
+        createParseError("SYNTAX_ERROR", `Failed to parse ${path34}: ${error.message}`, { path: path34 }, [
           "Check for syntax errors in the file",
           "Ensure valid TypeScript syntax"
         ])
@@ -1673,22 +1676,22 @@ function extractInlineRefs(content) {
   }
   return refs;
 }
-async function parseDocumentationFile(path31) {
-  const contentResult = await readFileContent(path31);
+async function parseDocumentationFile(path34) {
+  const contentResult = await readFileContent(path34);
   if (!contentResult.ok) {
     return Err(
       createEntropyError(
         "PARSE_ERROR",
-        `Failed to read documentation file: ${path31}`,
-        { file: path31 },
+        `Failed to read documentation file: ${path34}`,
+        { file: path34 },
         ["Check that the file exists"]
       )
     );
   }
   const content = contentResult.value;
-  const type = path31.endsWith(".md") ? "markdown" : "text";
+  const type = path34.endsWith(".md") ? "markdown" : "text";
   return Ok({
-    path: path31,
+    path: path34,
     type,
     content,
     codeBlocks: extractCodeBlocks(content),
@@ -1698,17 +1701,22 @@ async function parseDocumentationFile(path31) {
 function makeInternalSymbol(name, type, line) {
   return { name, type, line, references: 0, calledBy: [] };
 }
+function extractFunctionSymbol(node, line) {
+  if (node.id?.name) return [makeInternalSymbol(node.id.name, "function", line)];
+  return [];
+}
+function extractVariableSymbols(node, line) {
+  return (node.declarations || []).filter((decl) => decl.id?.name).map((decl) => makeInternalSymbol(decl.id.name, "variable", line));
+}
+function extractClassSymbol(node, line) {
+  if (node.id?.name) return [makeInternalSymbol(node.id.name, "class", line)];
+  return [];
+}
 function extractSymbolsFromNode(node) {
   const line = node.loc?.start?.line || 0;
-  if (node.type === "FunctionDeclaration" && node.id?.name) {
-    return [makeInternalSymbol(node.id.name, "function", line)];
-  }
-  if (node.type === "VariableDeclaration") {
-    return (node.declarations || []).filter((decl) => decl.id?.name).map((decl) => makeInternalSymbol(decl.id.name, "variable", line));
-  }
-  if (node.type === "ClassDeclaration" && node.id?.name) {
-    return [makeInternalSymbol(node.id.name, "class", line)];
-  }
+  if (node.type === "FunctionDeclaration") return extractFunctionSymbol(node, line);
+  if (node.type === "VariableDeclaration") return extractVariableSymbols(node, line);
+  if (node.type === "ClassDeclaration") return extractClassSymbol(node, line);
   return [];
 }
 function extractInternalSymbols(ast) {
@@ -1717,21 +1725,17 @@ function extractInternalSymbols(ast) {
   const nodes = body.body;
   return nodes.flatMap(extractSymbolsFromNode);
 }
+function toJSDocComment(comment) {
+  if (comment.type !== "Block" || !comment.value?.startsWith("*")) return null;
+  return { content: comment.value, line: comment.loc?.start?.line || 0 };
+}
 function extractJSDocComments(ast) {
-  const comments = [];
   const body = ast.body;
-  if (body?.comments) {
-    for (const comment of body.comments) {
-      if (comment.type === "Block" && comment.value?.startsWith("*")) {
-        const jsDocComment = {
-          content: comment.value,
-          line: comment.loc?.start?.line || 0
-        };
-        comments.push(jsDocComment);
-      }
-    }
-  }
-  return comments;
+  if (!body?.comments) return [];
+  return body.comments.flatMap((c) => {
+    const doc = toJSDocComment(c);
+    return doc ? [doc] : [];
+  });
 }
 function buildExportMap(files) {
   const byFile = /* @__PURE__ */ new Map();
@@ -1746,41 +1750,42 @@ function buildExportMap(files) {
   }
   return { byFile, byName };
 }
-function extractAllCodeReferences(docs) {
+var CODE_BLOCK_LANGUAGES = /* @__PURE__ */ new Set(["typescript", "ts", "javascript", "js"]);
+function refsFromInlineRefs(doc) {
+  return doc.inlineRefs.map((inlineRef) => ({
+    docFile: doc.path,
+    line: inlineRef.line,
+    column: inlineRef.column,
+    reference: inlineRef.reference,
+    context: "inline"
+  }));
+}
+function refsFromCodeBlock(docPath, block) {
+  if (!CODE_BLOCK_LANGUAGES.has(block.language)) return [];
   const refs = [];
-  for (const doc of docs) {
-    for (const inlineRef of doc.inlineRefs) {
+  const importRegex = /import\s+\{([^}]+)\}\s+from/g;
+  let match;
+  while ((match = importRegex.exec(block.content)) !== null) {
+    const group = match[1];
+    if (group === void 0) continue;
+    for (const name of group.split(",").map((n) => n.trim())) {
       refs.push({
-        docFile: doc.path,
-        line: inlineRef.line,
-        column: inlineRef.column,
-        reference: inlineRef.reference,
-        context: "inline"
+        docFile: docPath,
+        line: block.line,
+        column: 0,
+        reference: name,
+        context: "code-block"
       });
     }
-    for (const block of doc.codeBlocks) {
-      if (block.language === "typescript" || block.language === "ts" || block.language === "javascript" || block.language === "js") {
-        const importRegex = /import\s+\{([^}]+)\}\s+from/g;
-        let match;
-        while ((match = importRegex.exec(block.content)) !== null) {
-          const matchedGroup = match[1];
-          if (matchedGroup === void 0) continue;
-          const names = matchedGroup.split(",").map((n) => n.trim());
-          for (const name of names) {
-            refs.push({
-              docFile: doc.path,
-              line: block.line,
-              column: 0,
-              reference: name,
-              context: "code-block"
-            });
-          }
-        }
-      }
-    }
   }
   return refs;
 }
+function refsFromCodeBlocks(doc) {
+  return doc.codeBlocks.flatMap((block) => refsFromCodeBlock(doc.path, block));
+}
+function extractAllCodeReferences(docs) {
+  return docs.flatMap((doc) => [...refsFromInlineRefs(doc), ...refsFromCodeBlocks(doc)]);
+}
 async function buildSnapshot(config) {
   const startTime = Date.now();
   const parser = config.parser || new TypeScriptParser();
@@ -1986,44 +1991,52 @@ async function checkStructureDrift(snapshot, _config) {
   }
   return drifts;
 }
+function computeDriftSeverity(driftCount) {
+  if (driftCount === 0) return "none";
+  if (driftCount <= 3) return "low";
+  if (driftCount <= 10) return "medium";
+  return "high";
+}
+function buildGraphDriftReport(graphDriftData) {
+  const drifts = [];
+  for (const target of graphDriftData.missingTargets) {
+    drifts.push({
+      type: "api-signature",
+      docFile: target,
+      line: 0,
+      reference: target,
+      context: "graph-missing-target",
+      issue: "NOT_FOUND",
+      details: `Graph node "${target}" has no matching code target`,
+      confidence: "high"
+    });
+  }
+  for (const edge of graphDriftData.staleEdges) {
+    drifts.push({
+      type: "api-signature",
+      docFile: edge.docNodeId,
+      line: 0,
+      reference: edge.codeNodeId,
+      context: `graph-stale-edge:${edge.edgeType}`,
+      issue: "NOT_FOUND",
+      details: `Stale edge from doc "${edge.docNodeId}" to code "${edge.codeNodeId}" (${edge.edgeType})`,
+      confidence: "medium"
+    });
+  }
+  return Ok({
+    drifts,
+    stats: {
+      docsScanned: graphDriftData.staleEdges.length,
+      referencesChecked: graphDriftData.staleEdges.length + graphDriftData.missingTargets.length,
+      driftsFound: drifts.length,
+      byType: { api: drifts.length, example: 0, structure: 0 }
+    },
+    severity: computeDriftSeverity(drifts.length)
+  });
+}
 async function detectDocDrift(snapshot, config, graphDriftData) {
   if (graphDriftData) {
-    const drifts2 = [];
-    for (const target of graphDriftData.missingTargets) {
-      drifts2.push({
-        type: "api-signature",
-        docFile: target,
-        line: 0,
-        reference: target,
-        context: "graph-missing-target",
-        issue: "NOT_FOUND",
-        details: `Graph node "${target}" has no matching code target`,
-        confidence: "high"
-      });
-    }
-    for (const edge of graphDriftData.staleEdges) {
-      drifts2.push({
-        type: "api-signature",
-        docFile: edge.docNodeId,
-        line: 0,
-        reference: edge.codeNodeId,
-        context: `graph-stale-edge:${edge.edgeType}`,
-        issue: "NOT_FOUND",
-        details: `Stale edge from doc "${edge.docNodeId}" to code "${edge.codeNodeId}" (${edge.edgeType})`,
-        confidence: "medium"
-      });
-    }
-    const severity2 = drifts2.length === 0 ? "none" : drifts2.length <= 3 ? "low" : drifts2.length <= 10 ? "medium" : "high";
-    return Ok({
-      drifts: drifts2,
-      stats: {
-        docsScanned: graphDriftData.staleEdges.length,
-        referencesChecked: graphDriftData.staleEdges.length + graphDriftData.missingTargets.length,
-        driftsFound: drifts2.length,
-        byType: { api: drifts2.length, example: 0, structure: 0 }
-      },
-      severity: severity2
-    });
+    return buildGraphDriftReport(graphDriftData);
   }
   const fullConfig = { ...DEFAULT_DRIFT_CONFIG, ...config };
   const drifts = [];
@@ -2072,6 +2085,23 @@ function resolveImportToFile(importSource, fromFile, snapshot) {
   }
   return null;
 }
+function enqueueResolved(sources, current, snapshot, visited, queue) {
+  for (const item of sources) {
+    if (!item.source) continue;
+    const resolved = resolveImportToFile(item.source, current, snapshot);
+    if (resolved && !visited.has(resolved)) {
+      queue.push(resolved);
+    }
+  }
+}
+function processReachabilityNode(current, snapshot, reachability, visited, queue) {
+  reachability.set(current, true);
+  const sourceFile = snapshot.files.find((f) => f.path === current);
+  if (!sourceFile) return;
+  enqueueResolved(sourceFile.imports, current, snapshot, visited, queue);
+  const reExports = sourceFile.exports.filter((e) => e.isReExport);
+  enqueueResolved(reExports, current, snapshot, visited, queue);
+}
 function buildReachabilityMap(snapshot) {
   const reachability = /* @__PURE__ */ new Map();
   for (const file of snapshot.files) {
@@ -2083,23 +2113,7 @@ function buildReachabilityMap(snapshot) {
     const current = queue.shift();
     if (visited.has(current)) continue;
     visited.add(current);
-    reachability.set(current, true);
-    const sourceFile = snapshot.files.find((f) => f.path === current);
-    if (!sourceFile) continue;
-    for (const imp of sourceFile.imports) {
-      const resolved = resolveImportToFile(imp.source, current, snapshot);
-      if (resolved && !visited.has(resolved)) {
-        queue.push(resolved);
-      }
-    }
-    for (const exp of sourceFile.exports) {
-      if (exp.isReExport && exp.source) {
-        const resolved = resolveImportToFile(exp.source, current, snapshot);
-        if (resolved && !visited.has(resolved)) {
-          queue.push(resolved);
-        }
-      }
-    }
+    processReachabilityNode(current, snapshot, reachability, visited, queue);
   }
   return reachability;
 }
@@ -2169,21 +2183,27 @@ function findDeadExports(snapshot, usageMap, reachability) {
   }
   return deadExports;
 }
+function maxLineOfValue(value) {
+  if (Array.isArray(value)) {
+    return value.reduce((m, item) => Math.max(m, findMaxLineInNode(item)), 0);
+  }
+  if (value && typeof value === "object") {
+    return findMaxLineInNode(value);
+  }
+  return 0;
+}
+function maxLineOfNodeKeys(node) {
+  let max = 0;
+  for (const key of Object.keys(node)) {
+    max = Math.max(max, maxLineOfValue(node[key]));
+  }
+  return max;
+}
 function findMaxLineInNode(node) {
   if (!node || typeof node !== "object") return 0;
   const n = node;
-  let maxLine = n.loc?.end?.line ?? 0;
-  for (const key of Object.keys(node)) {
-    const value = node[key];
-    if (Array.isArray(value)) {
-      for (const item of value) {
-        maxLine = Math.max(maxLine, findMaxLineInNode(item));
-      }
-    } else if (value && typeof value === "object") {
-      maxLine = Math.max(maxLine, findMaxLineInNode(value));
-    }
-  }
-  return maxLine;
+  const locLine = n.loc?.end?.line ?? 0;
+  return Math.max(locLine, maxLineOfNodeKeys(node));
 }
 function countLinesFromAST(ast) {
   if (!ast.body || !Array.isArray(ast.body)) return 1;
@@ -2257,54 +2277,59 @@ function findDeadInternals(snapshot, _reachability) {
   }
   return deadInternals;
 }
-async function detectDeadCode(snapshot, graphDeadCodeData) {
-  if (graphDeadCodeData) {
-    const deadFiles2 = [];
-    const deadExports2 = [];
-    const fileTypes = /* @__PURE__ */ new Set(["file", "module"]);
-    const exportTypes = /* @__PURE__ */ new Set(["function", "class", "method", "interface", "variable"]);
-    for (const node of graphDeadCodeData.unreachableNodes) {
-      if (fileTypes.has(node.type)) {
-        deadFiles2.push({
-          path: node.path || node.id,
-          reason: "NO_IMPORTERS",
-          exportCount: 0,
-          lineCount: 0
-        });
-      } else if (exportTypes.has(node.type)) {
-        const exportType = node.type === "method" ? "function" : node.type;
-        deadExports2.push({
-          file: node.path || node.id,
-          name: node.name,
-          line: 0,
-          type: exportType,
-          isDefault: false,
-          reason: "NO_IMPORTERS"
-        });
-      }
-    }
-    const reachableCount = graphDeadCodeData.reachableNodeIds instanceof Set ? graphDeadCodeData.reachableNodeIds.size : graphDeadCodeData.reachableNodeIds.length;
-    const fileNodes = graphDeadCodeData.unreachableNodes.filter((n) => fileTypes.has(n.type));
-    const exportNodes = graphDeadCodeData.unreachableNodes.filter((n) => exportTypes.has(n.type));
-    const totalFiles = reachableCount + fileNodes.length;
-    const totalExports2 = exportNodes.length + (reachableCount > 0 ? reachableCount : 0);
-    const report2 = {
-      deadExports: deadExports2,
-      deadFiles: deadFiles2,
-      deadInternals: [],
-      unusedImports: [],
-      stats: {
-        filesAnalyzed: totalFiles,
-        entryPointsUsed: [],
-        totalExports: totalExports2,
-        deadExportCount: deadExports2.length,
-        totalFiles,
-        deadFileCount: deadFiles2.length,
-        estimatedDeadLines: 0
-      }
-    };
-    return Ok(report2);
+var FILE_TYPES = /* @__PURE__ */ new Set(["file", "module"]);
+var EXPORT_TYPES = /* @__PURE__ */ new Set(["function", "class", "method", "interface", "variable"]);
+function classifyUnreachableNode(node, deadFiles, deadExports) {
+  if (FILE_TYPES.has(node.type)) {
+    deadFiles.push({
+      path: node.path || node.id,
+      reason: "NO_IMPORTERS",
+      exportCount: 0,
+      lineCount: 0
+    });
+  } else if (EXPORT_TYPES.has(node.type)) {
+    const exportType = node.type === "method" ? "function" : node.type;
+    deadExports.push({
+      file: node.path || node.id,
+      name: node.name,
+      line: 0,
+      type: exportType,
+      isDefault: false,
+      reason: "NO_IMPORTERS"
+    });
   }
+}
+function computeGraphReportStats(data, deadFiles, deadExports) {
+  const reachableCount = data.reachableNodeIds instanceof Set ? data.reachableNodeIds.size : data.reachableNodeIds.length;
+  const fileNodes = data.unreachableNodes.filter((n) => FILE_TYPES.has(n.type));
+  const exportNodes = data.unreachableNodes.filter((n) => EXPORT_TYPES.has(n.type));
+  const totalFiles = reachableCount + fileNodes.length;
+  const totalExports = exportNodes.length + (reachableCount > 0 ? reachableCount : 0);
+  return {
+    filesAnalyzed: totalFiles,
+    entryPointsUsed: [],
+    totalExports,
+    deadExportCount: deadExports.length,
+    totalFiles,
+    deadFileCount: deadFiles.length,
+    estimatedDeadLines: 0
+  };
+}
+function buildReportFromGraph(data) {
+  const deadFiles = [];
+  const deadExports = [];
+  for (const node of data.unreachableNodes) {
+    classifyUnreachableNode(node, deadFiles, deadExports);
+  }
+  return {
+    deadExports,
+    deadFiles,
+    deadInternals: [],
+    unusedImports: [],
+    stats: computeGraphReportStats(data, deadFiles, deadExports)
+  };
+}
+function buildReportFromSnapshot(snapshot) {
   const reachability = buildReachabilityMap(snapshot);
   const usageMap = buildExportUsageMap(snapshot);
   const deadExports = findDeadExports(snapshot, usageMap, reachability);
@@ -2316,7 +2341,7 @@ async function detectDeadCode(snapshot, graphDeadCodeData) {
     0
   );
   const estimatedDeadLines = deadFiles.reduce((acc, file) => acc + file.lineCount, 0);
-  const report = {
+  return {
     deadExports,
     deadFiles,
     deadInternals,
@@ -2331,6 +2356,9 @@ async function detectDeadCode(snapshot, graphDeadCodeData) {
       estimatedDeadLines
     }
   };
+}
+async function detectDeadCode(snapshot, graphDeadCodeData) {
+  const report = graphDeadCodeData ? buildReportFromGraph(graphDeadCodeData) : buildReportFromSnapshot(snapshot);
   return Ok(report);
 }
 
@@ -2614,48 +2642,52 @@ async function detectSizeBudgetViolations(rootDir, config) {
 }
 
 // src/entropy/fixers/suggestions.ts
+function deadFileSuggestion(file) {
+  return {
+    type: "delete",
+    priority: "high",
+    source: "dead-code",
+    relatedIssues: [`dead-file:${file.path}`],
+    title: `Remove dead file: ${file.path.split("/").pop()}`,
+    description: `This file is not imported by any other file and can be safely removed.`,
+    files: [file.path],
+    steps: [`Delete ${file.path}`, "Run tests to verify no regressions"],
+    whyManual: "File deletion requires verification that no dynamic imports exist"
+  };
+}
+function deadExportSuggestion(exp) {
+  return {
+    type: "refactor",
+    priority: "medium",
+    source: "dead-code",
+    relatedIssues: [`dead-export:${exp.file}:${exp.name}`],
+    title: `Remove unused export: ${exp.name}`,
+    description: `The export "${exp.name}" is not used anywhere. Consider removing it.`,
+    files: [exp.file],
+    steps: [`Remove export "${exp.name}" from ${exp.file}`, "Run tests to verify no regressions"],
+    whyManual: "Export removal may affect external consumers not in scope"
+  };
+}
+function unusedImportSuggestion(imp) {
+  const plural = imp.specifiers.length > 1;
+  return {
+    type: "delete",
+    priority: "medium",
+    source: "dead-code",
+    relatedIssues: [`unused-import:${imp.file}:${imp.specifiers.join(",")}`],
+    title: `Remove unused import${plural ? "s" : ""}: ${imp.specifiers.join(", ")}`,
+    description: `The import${plural ? "s" : ""} from "${imp.source}" ${plural ? "are" : "is"} not used.`,
+    files: [imp.file],
+    steps: imp.isFullyUnused ? [`Remove entire import line from ${imp.file}`] : [`Remove unused specifiers (${imp.specifiers.join(", ")}) from import statement`],
+    whyManual: "Import removal can be auto-fixed"
+  };
+}
 function generateDeadCodeSuggestions(report) {
-  const suggestions = [];
-  for (const file of report.deadFiles) {
-    suggestions.push({
-      type: "delete",
-      priority: "high",
-      source: "dead-code",
-      relatedIssues: [`dead-file:${file.path}`],
-      title: `Remove dead file: ${file.path.split("/").pop()}`,
-      description: `This file is not imported by any other file and can be safely removed.`,
-      files: [file.path],
-      steps: [`Delete ${file.path}`, "Run tests to verify no regressions"],
-      whyManual: "File deletion requires verification that no dynamic imports exist"
-    });
-  }
-  for (const exp of report.deadExports) {
-    suggestions.push({
-      type: "refactor",
-      priority: "medium",
-      source: "dead-code",
-      relatedIssues: [`dead-export:${exp.file}:${exp.name}`],
-      title: `Remove unused export: ${exp.name}`,
-      description: `The export "${exp.name}" is not used anywhere. Consider removing it.`,
-      files: [exp.file],
-      steps: [`Remove export "${exp.name}" from ${exp.file}`, "Run tests to verify no regressions"],
-      whyManual: "Export removal may affect external consumers not in scope"
-    });
-  }
-  for (const imp of report.unusedImports) {
-    suggestions.push({
-      type: "delete",
-      priority: "medium",
-      source: "dead-code",
-      relatedIssues: [`unused-import:${imp.file}:${imp.specifiers.join(",")}`],
-      title: `Remove unused import${imp.specifiers.length > 1 ? "s" : ""}: ${imp.specifiers.join(", ")}`,
-      description: `The import${imp.specifiers.length > 1 ? "s" : ""} from "${imp.source}" ${imp.specifiers.length > 1 ? "are" : "is"} not used.`,
-      files: [imp.file],
-      steps: imp.isFullyUnused ? [`Remove entire import line from ${imp.file}`] : [`Remove unused specifiers (${imp.specifiers.join(", ")}) from import statement`],
-      whyManual: "Import removal can be auto-fixed"
-    });
-  }
-  return suggestions;
+  return [
+    ...report.deadFiles.map(deadFileSuggestion),
+    ...report.deadExports.map(deadExportSuggestion),
+    ...report.unusedImports.map(unusedImportSuggestion)
+  ];
 }
 function generateDriftSuggestions(report) {
   const suggestions = [];
@@ -3098,43 +3130,55 @@ async function createBackup(filePath, backupDir) {
     );
   }
 }
+async function applyDeleteFile(fix, config) {
+  if (config.createBackup && config.backupDir) {
+    const backupResult = await createBackup(fix.file, config.backupDir);
+    if (!backupResult.ok) return Err({ fix, error: backupResult.error.message });
+  }
+  await unlink2(fix.file);
+  return Ok(void 0);
+}
+async function applyDeleteLines(fix) {
+  if (fix.line !== void 0) {
+    const content = await readFile3(fix.file, "utf-8");
+    const lines = content.split("\n");
+    lines.splice(fix.line - 1, 1);
+    await writeFile3(fix.file, lines.join("\n"));
+  }
+}
+async function applyReplace(fix) {
+  if (fix.oldContent && fix.newContent !== void 0) {
+    const content = await readFile3(fix.file, "utf-8");
+    await writeFile3(fix.file, content.replace(fix.oldContent, fix.newContent));
+  }
+}
+async function applyInsert(fix) {
+  if (fix.line !== void 0 && fix.newContent) {
+    const content = await readFile3(fix.file, "utf-8");
+    const lines = content.split("\n");
+    lines.splice(fix.line - 1, 0, fix.newContent);
+    await writeFile3(fix.file, lines.join("\n"));
+  }
+}
 async function applySingleFix(fix, config) {
   if (config.dryRun) {
     return Ok(fix);
   }
   try {
     switch (fix.action) {
-      case "delete-file":
-        if (config.createBackup && config.backupDir) {
-          const backupResult = await createBackup(fix.file, config.backupDir);
-          if (!backupResult.ok) {
-            return Err({ fix, error: backupResult.error.message });
-          }
-        }
-        await unlink2(fix.file);
+      case "delete-file": {
+        const result = await applyDeleteFile(fix, config);
+        if (!result.ok) return result;
         break;
+      }
       case "delete-lines":
-        if (fix.line !== void 0) {
-          const content = await readFile3(fix.file, "utf-8");
-          const lines = content.split("\n");
-          lines.splice(fix.line - 1, 1);
-          await writeFile3(fix.file, lines.join("\n"));
-        }
+        await applyDeleteLines(fix);
         break;
       case "replace":
-        if (fix.oldContent && fix.newContent !== void 0) {
-          const content = await readFile3(fix.file, "utf-8");
-          const newContent = content.replace(fix.oldContent, fix.newContent);
-          await writeFile3(fix.file, newContent);
-        }
+        await applyReplace(fix);
         break;
       case "insert":
-        if (fix.line !== void 0 && fix.newContent) {
-          const content = await readFile3(fix.file, "utf-8");
-          const lines = content.split("\n");
-          lines.splice(fix.line - 1, 0, fix.newContent);
-          await writeFile3(fix.file, lines.join("\n"));
-        }
+        await applyInsert(fix);
         break;
     }
     return Ok(fix);
@@ -3307,6 +3351,21 @@ function applyHotspotDowngrade(finding, hotspot) {
   }
   return finding;
 }
+function mergeGroup(group) {
+  if (group.length === 1) return [group[0]];
+  const deadCode = group.find((f) => f.concern === "dead-code");
+  const arch = group.find((f) => f.concern === "architecture");
+  if (deadCode && arch) {
+    return [
+      {
+        ...deadCode,
+        description: `${deadCode.description} (also violates architecture: ${arch.type})`,
+        suggestion: deadCode.fixAction ? `${deadCode.fixAction} (resolves both dead code and architecture violation)` : deadCode.suggestion
+      }
+    ];
+  }
+  return group;
+}
 function deduplicateCleanupFindings(findings) {
   const byFileAndLine = /* @__PURE__ */ new Map();
   for (const f of findings) {
@@ -3317,21 +3376,7 @@ function deduplicateCleanupFindings(findings) {
   }
   const result = [];
   for (const group of byFileAndLine.values()) {
-    if (group.length === 1) {
-      result.push(group[0]);
-      continue;
-    }
-    const deadCode = group.find((f) => f.concern === "dead-code");
-    const arch = group.find((f) => f.concern === "architecture");
-    if (deadCode && arch) {
-      result.push({
-        ...deadCode,
-        description: `${deadCode.description} (also violates architecture: ${arch.type})`,
-        suggestion: deadCode.fixAction ? `${deadCode.fixAction} (resolves both dead code and architecture violation)` : deadCode.suggestion
-      });
-    } else {
-      result.push(...group);
-    }
+    result.push(...mergeGroup(group));
   }
   return result;
 }
@@ -3704,6 +3749,32 @@ var SKIP_DIRS = /* @__PURE__ */ new Set(["node_modules", "dist", ".git"]);
 var SOURCE_EXTENSIONS = /* @__PURE__ */ new Set([".ts", ".tsx", ".js", ".jsx"]);
 var FUNCTION_DECL_RE = /(?:export\s+)?(?:async\s+)?function\s+(\w+)/;
 var CONST_DECL_RE = /(?:export\s+)?(?:const|let)\s+(\w+)\s*=/;
+function mergeGraphInferred(highFanInFunctions, seen) {
+  let added = 0;
+  for (const item of highFanInFunctions) {
+    const key = `${item.file}::${item.function}`;
+    if (!seen.has(key)) {
+      seen.set(key, {
+        file: item.file,
+        function: item.function,
+        source: "graph-inferred",
+        fanIn: item.fanIn
+      });
+      added++;
+    }
+  }
+  return added;
+}
+function isCommentOrBlank(line) {
+  return line === "" || line === "*/" || line === "*" || line.startsWith("*") || line.startsWith("//");
+}
+function matchDeclarationName(line) {
+  const funcMatch = line.match(FUNCTION_DECL_RE);
+  if (funcMatch?.[1]) return funcMatch[1];
+  const constMatch = line.match(CONST_DECL_RE);
+  if (constMatch?.[1]) return constMatch[1];
+  return null;
+}
 var CriticalPathResolver = class {
   projectRoot;
   constructor(projectRoot) {
@@ -3716,27 +3787,12 @@ var CriticalPathResolver = class {
       const key = `${entry.file}::${entry.function}`;
       seen.set(key, entry);
     }
-    let graphInferred = 0;
-    if (graphData) {
-      for (const item of graphData.highFanInFunctions) {
-        const key = `${item.file}::${item.function}`;
-        if (!seen.has(key)) {
-          seen.set(key, {
-            file: item.file,
-            function: item.function,
-            source: "graph-inferred",
-            fanIn: item.fanIn
-          });
-          graphInferred++;
-        }
-      }
-    }
+    const graphInferred = graphData ? mergeGraphInferred(graphData.highFanInFunctions, seen) : 0;
     const entries = Array.from(seen.values());
-    const annotatedCount = annotated.length;
     return {
       entries,
       stats: {
-        annotated: annotatedCount,
+        annotated: annotated.length,
         graphInferred,
         total: entries.length
       }
@@ -3763,6 +3819,14 @@ var CriticalPathResolver = class {
       }
     }
   }
+  resolveFunctionName(lines, fromIndex) {
+    for (let j = fromIndex; j < lines.length; j++) {
+      const nextLine = lines[j].trim();
+      if (isCommentOrBlank(nextLine)) continue;
+      return matchDeclarationName(nextLine);
+    }
+    return null;
+  }
   scanFile(filePath, entries) {
     let content;
     try {
@@ -3773,30 +3837,10 @@ var CriticalPathResolver = class {
     const lines = content.split("\n");
     const relativePath = path.relative(this.projectRoot, filePath).replace(/\\/g, "/");
     for (let i = 0; i < lines.length; i++) {
-      const line = lines[i];
-      if (!line.includes("@perf-critical")) continue;
-      for (let j = i + 1; j < lines.length; j++) {
-        const nextLine = lines[j].trim();
-        if (nextLine === "" || nextLine === "*/" || nextLine === "*") continue;
-        if (nextLine.startsWith("*") || nextLine.startsWith("//")) continue;
-        const funcMatch = nextLine.match(FUNCTION_DECL_RE);
-        if (funcMatch && funcMatch[1]) {
-          entries.push({
-            file: relativePath,
-            function: funcMatch[1],
-            source: "annotation"
-          });
-        } else {
-          const constMatch = nextLine.match(CONST_DECL_RE);
-          if (constMatch && constMatch[1]) {
-            entries.push({
-              file: relativePath,
-              function: constMatch[1],
-              source: "annotation"
-            });
-          }
-        }
-        break;
+      if (!lines[i].includes("@perf-critical")) continue;
+      const fnName = this.resolveFunctionName(lines, i + 1);
+      if (fnName) {
+        entries.push({ file: relativePath, function: fnName, source: "annotation" });
       }
     }
   }
@@ -3951,14 +3995,19 @@ function detectFileStatus(part) {
   if (part.includes("rename from")) return "renamed";
   return "modified";
 }
-function parseDiffPart(part) {
+function parseDiffHeader(part) {
   if (!part.trim()) return null;
   const headerMatch = /diff --git a\/(.+?) b\/(.+?)(?:\n|$)/.exec(part);
   if (!headerMatch || !headerMatch[2]) return null;
-  const additionRegex = /^\+(?!\+\+)/gm;
+  return headerMatch[2];
+}
+function parseDiffPart(part) {
+  const path34 = parseDiffHeader(part);
+  if (!path34) return null;
+  const additionRegex = /^\+(?!\+\+)/gm;
   const deletionRegex = /^-(?!--)/gm;
   return {
-    path: headerMatch[2],
+    path: path34,
     status: detectFileStatus(part),
     additions: (part.match(additionRegex) || []).length,
     deletions: (part.match(deletionRegex) || []).length
@@ -3980,100 +4029,136 @@ function parseDiff(diff2) {
     });
   }
 }
-async function analyzeDiff(changes, options, graphImpactData) {
-  if (!options?.enabled) {
-    return Ok([]);
+function checkForbiddenPatterns(diff2, forbiddenPatterns, nextId) {
+  const items = [];
+  if (!forbiddenPatterns) return items;
+  for (const forbidden of forbiddenPatterns) {
+    const pattern = typeof forbidden.pattern === "string" ? new RegExp(forbidden.pattern, "g") : forbidden.pattern;
+    if (!pattern.test(diff2)) continue;
+    items.push({
+      id: nextId(),
+      category: "diff",
+      check: `Forbidden pattern: ${forbidden.pattern}`,
+      passed: false,
+      severity: forbidden.severity,
+      details: forbidden.message,
+      suggestion: `Remove occurrences of ${forbidden.pattern}`
+    });
   }
+  return items;
+}
+function checkMaxChangedFiles(files, maxChangedFiles, nextId) {
+  if (!maxChangedFiles || files.length <= maxChangedFiles) return [];
+  return [
+    {
+      id: nextId(),
+      category: "diff",
+      check: `PR size: ${files.length} files changed`,
+      passed: false,
+      severity: "warning",
+      details: `This PR changes ${files.length} files, which exceeds the recommended maximum of ${maxChangedFiles}`,
+      suggestion: "Consider breaking this into smaller PRs"
+    }
+  ];
+}
+function checkFileSizes(files, maxFileSize, nextId) {
   const items = [];
-  let itemId = 0;
-  if (options.forbiddenPatterns) {
-    for (const forbidden of options.forbiddenPatterns) {
-      const pattern = typeof forbidden.pattern === "string" ? new RegExp(forbidden.pattern, "g") : forbidden.pattern;
-      if (pattern.test(changes.diff)) {
-        items.push({
-          id: `diff-${++itemId}`,
-          category: "diff",
-          check: `Forbidden pattern: ${forbidden.pattern}`,
-          passed: false,
-          severity: forbidden.severity,
-          details: forbidden.message,
-          suggestion: `Remove occurrences of ${forbidden.pattern}`
-        });
-      }
+  if (!maxFileSize) return items;
+  for (const file of files) {
+    const totalLines = file.additions + file.deletions;
+    if (totalLines <= maxFileSize) continue;
+    items.push({
+      id: nextId(),
+      category: "diff",
+      check: `File size: ${file.path}`,
+      passed: false,
+      severity: "warning",
+      details: `File has ${totalLines} lines changed, exceeding limit of ${maxFileSize}`,
+      file: file.path,
+      suggestion: "Consider splitting this file into smaller modules"
+    });
+  }
+  return items;
+}
+function checkTestCoverageGraph(files, graphImpactData) {
+  const items = [];
+  for (const file of files) {
+    if (file.status !== "added" || !file.path.endsWith(".ts") || file.path.includes(".test.")) {
+      continue;
     }
+    const hasGraphTest = graphImpactData.affectedTests.some((t) => t.coversFile === file.path);
+    if (hasGraphTest) continue;
+    items.push({
+      id: `test-coverage-${file.path}`,
+      category: "diff",
+      check: "Test coverage (graph)",
+      passed: false,
+      severity: "warning",
+      details: `New file ${file.path} has no test file linked in the graph`,
+      file: file.path
+    });
   }
-  if (options.maxChangedFiles && changes.files.length > options.maxChangedFiles) {
+  return items;
+}
+function checkTestCoverageFilename(files, nextId) {
+  const items = [];
+  const addedSourceFiles = files.filter(
+    (f) => f.status === "added" && f.path.endsWith(".ts") && !f.path.includes(".test.")
+  );
+  const testFiles = files.filter((f) => f.path.includes(".test."));
+  for (const sourceFile of addedSourceFiles) {
+    const expectedTestPath = sourceFile.path.replace(".ts", ".test.ts");
+    const hasTest = testFiles.some(
+      (t) => t.path.includes(expectedTestPath) || t.path.includes(sourceFile.path.replace(".ts", ""))
+    );
+    if (hasTest) continue;
     items.push({
-      id: `diff-${++itemId}`,
+      id: nextId(),
       category: "diff",
-      check: `PR size: ${changes.files.length} files changed`,
+      check: `Test coverage: ${sourceFile.path}`,
       passed: false,
       severity: "warning",
-      details: `This PR changes ${changes.files.length} files, which exceeds the recommended maximum of ${options.maxChangedFiles}`,
-      suggestion: "Consider breaking this into smaller PRs"
+      details: "New source file added without corresponding test file",
+      file: sourceFile.path,
+      suggestion: `Add tests in ${expectedTestPath}`
     });
   }
-  if (options.maxFileSize) {
-    for (const file of changes.files) {
-      const totalLines = file.additions + file.deletions;
-      if (totalLines > options.maxFileSize) {
-        items.push({
-          id: `diff-${++itemId}`,
-          category: "diff",
-          check: `File size: ${file.path}`,
-          passed: false,
-          severity: "warning",
-          details: `File has ${totalLines} lines changed, exceeding limit of ${options.maxFileSize}`,
-          file: file.path,
-          suggestion: "Consider splitting this file into smaller modules"
-        });
-      }
+  return items;
+}
+function checkDocCoverage2(files, graphImpactData) {
+  const items = [];
+  for (const file of files) {
+    if (file.status !== "modified" || !file.path.endsWith(".ts") || file.path.includes(".test.")) {
+      continue;
     }
+    const hasDoc = graphImpactData.affectedDocs.some((d) => d.documentsFile === file.path);
+    if (hasDoc) continue;
+    items.push({
+      id: `doc-coverage-${file.path}`,
+      category: "diff",
+      check: "Documentation coverage (graph)",
+      passed: true,
+      severity: "info",
+      details: `Modified file ${file.path} has no documentation linked in the graph`,
+      file: file.path
+    });
+  }
+  return items;
+}
+async function analyzeDiff(changes, options, graphImpactData) {
+  if (!options?.enabled) {
+    return Ok([]);
   }
+  let itemId = 0;
+  const nextId = () => `diff-${++itemId}`;
+  const items = [
+    ...checkForbiddenPatterns(changes.diff, options.forbiddenPatterns, nextId),
+    ...checkMaxChangedFiles(changes.files, options.maxChangedFiles, nextId),
+    ...checkFileSizes(changes.files, options.maxFileSize, nextId)
+  ];
   if (options.checkTestCoverage) {
-    if (graphImpactData) {
-      for (const file of changes.files) {
-        if (file.status === "added" && file.path.endsWith(".ts") && !file.path.includes(".test.")) {
-          const hasGraphTest = graphImpactData.affectedTests.some(
-            (t) => t.coversFile === file.path
-          );
-          if (!hasGraphTest) {
-            items.push({
-              id: `test-coverage-${file.path}`,
-              category: "diff",
-              check: "Test coverage (graph)",
-              passed: false,
-              severity: "warning",
-              details: `New file ${file.path} has no test file linked in the graph`,
-              file: file.path
-            });
-          }
-        }
-      }
-    } else {
-      const addedSourceFiles = changes.files.filter(
-        (f) => f.status === "added" && f.path.endsWith(".ts") && !f.path.includes(".test.")
-      );
-      const testFiles = changes.files.filter((f) => f.path.includes(".test."));
-      for (const sourceFile of addedSourceFiles) {
-        const expectedTestPath = sourceFile.path.replace(".ts", ".test.ts");
-        const hasTest = testFiles.some(
-          (t) => t.path.includes(expectedTestPath) || t.path.includes(sourceFile.path.replace(".ts", ""))
-        );
-        if (!hasTest) {
-          items.push({
-            id: `diff-${++itemId}`,
-            category: "diff",
-            check: `Test coverage: ${sourceFile.path}`,
-            passed: false,
-            severity: "warning",
-            details: "New source file added without corresponding test file",
-            file: sourceFile.path,
-            suggestion: `Add tests in ${expectedTestPath}`
-          });
-        }
-      }
-    }
+    const coverageItems = graphImpactData ? checkTestCoverageGraph(changes.files, graphImpactData) : checkTestCoverageFilename(changes.files, nextId);
+    items.push(...coverageItems);
   }
   if (graphImpactData && graphImpactData.impactScope > 20) {
     items.push({
@@ -4086,22 +4171,7 @@ async function analyzeDiff(changes, options, graphImpactData) {
     });
   }
   if (graphImpactData) {
-    for (const file of changes.files) {
-      if (file.status === "modified" && file.path.endsWith(".ts") && !file.path.includes(".test.")) {
-        const hasDoc = graphImpactData.affectedDocs.some((d) => d.documentsFile === file.path);
-        if (!hasDoc) {
-          items.push({
-            id: `doc-coverage-${file.path}`,
-            category: "diff",
-            check: "Documentation coverage (graph)",
-            passed: true,
-            severity: "info",
-            details: `Modified file ${file.path} has no documentation linked in the graph`,
-            file: file.path
-          });
-        }
-      }
-    }
+    items.push(...checkDocCoverage2(changes.files, graphImpactData));
   }
   return Ok(items);
 }
@@ -4634,10 +4704,26 @@ function hasMatchingViolation(rule, violationsByCategory) {
 }
 
 // src/architecture/detect-stale.ts
+function evaluateStaleNode(node, now, cutoff) {
+  const lastViolatedAt = node.lastViolatedAt ?? null;
+  const createdAt = node.createdAt;
+  const comparisonTimestamp = lastViolatedAt ?? createdAt;
+  if (!comparisonTimestamp) return null;
+  const timestampMs = new Date(comparisonTimestamp).getTime();
+  if (timestampMs >= cutoff) return null;
+  const daysSince = Math.floor((now - timestampMs) / (24 * 60 * 60 * 1e3));
+  return {
+    id: node.id,
+    category: node.category,
+    description: node.name ?? "",
+    scope: node.scope ?? "project",
+    lastViolatedAt,
+    daysSinceLastViolation: daysSince
+  };
+}
 function detectStaleConstraints(store, windowDays = 30, category) {
   const now = Date.now();
-  const windowMs = windowDays * 24 * 60 * 60 * 1e3;
-  const cutoff = now - windowMs;
+  const cutoff = now - windowDays * 24 * 60 * 60 * 1e3;
   let constraints = store.findNodes({ type: "constraint" });
   if (category) {
     constraints = constraints.filter((n) => n.category === category);
@@ -4645,28 +4731,23 @@ function detectStaleConstraints(store, windowDays = 30, category) {
   const totalConstraints = constraints.length;
   const staleConstraints = [];
   for (const node of constraints) {
-    const lastViolatedAt = node.lastViolatedAt ?? null;
-    const createdAt = node.createdAt;
-    const comparisonTimestamp = lastViolatedAt ?? createdAt;
-    if (!comparisonTimestamp) continue;
-    const timestampMs = new Date(comparisonTimestamp).getTime();
-    if (timestampMs < cutoff) {
-      const daysSince = Math.floor((now - timestampMs) / (24 * 60 * 60 * 1e3));
-      staleConstraints.push({
-        id: node.id,
-        category: node.category,
-        description: node.name ?? "",
-        scope: node.scope ?? "project",
-        lastViolatedAt,
-        daysSinceLastViolation: daysSince
-      });
-    }
+    const entry = evaluateStaleNode(node, now, cutoff);
+    if (entry) staleConstraints.push(entry);
   }
   staleConstraints.sort((a, b) => b.daysSinceLastViolation - a.daysSinceLastViolation);
   return { staleConstraints, totalConstraints, windowDays };
 }
 
 // src/architecture/config.ts
+function mergeThresholdCategory(projectValue2, moduleValue) {
+  if (projectValue2 !== void 0 && typeof projectValue2 === "object" && !Array.isArray(projectValue2) && typeof moduleValue === "object" && !Array.isArray(moduleValue)) {
+    return {
+      ...projectValue2,
+      ...moduleValue
+    };
+  }
+  return moduleValue;
+}
 function resolveThresholds(scope, config) {
   const projectThresholds = {};
   for (const [key, val] of Object.entries(config.thresholds)) {
@@ -4682,14 +4763,7 @@ function resolveThresholds(scope, config) {
   const merged = { ...projectThresholds };
   for (const [category, moduleValue] of Object.entries(moduleOverrides)) {
     const projectValue2 = projectThresholds[category];
-    if (projectValue2 !== void 0 && typeof projectValue2 === "object" && !Array.isArray(projectValue2) && typeof moduleValue === "object" && !Array.isArray(moduleValue)) {
-      merged[category] = {
-        ...projectValue2,
-        ...moduleValue
-      };
-    } else {
-      merged[category] = moduleValue;
-    }
+    merged[category] = mergeThresholdCategory(projectValue2, moduleValue);
   }
   return merged;
 }
@@ -5313,18 +5387,10 @@ var PredictionEngine = class {
    */
   predict(options) {
     const opts = this.resolveOptions(options);
-    const timeline = this.timelineManager.load();
-    const snapshots = timeline.snapshots;
-    if (snapshots.length < 3) {
-      throw new Error(
-        `PredictionEngine requires at least 3 snapshots, got ${snapshots.length}. Run "harness snapshot" to capture more data points.`
-      );
-    }
+    const snapshots = this.loadValidatedSnapshots();
     const thresholds = this.resolveThresholds(opts);
     const categoriesToProcess = opts.categories ?? [...ALL_CATEGORIES2];
-    const firstDate = new Date(snapshots[0].capturedAt).getTime();
-    const lastSnapshot = snapshots[snapshots.length - 1];
-    const currentT = (new Date(lastSnapshot.capturedAt).getTime() - firstDate) / (7 * 24 * 60 * 60 * 1e3);
+    const { firstDate, lastSnapshot, currentT } = this.computeTimeOffsets(snapshots);
     const baselines = this.computeBaselines(
       categoriesToProcess,
       thresholds,
@@ -5335,27 +5401,32 @@ var PredictionEngine = class {
     );
     const specImpacts = this.computeSpecImpacts(opts);
     const categories = this.computeAdjustedForecasts(baselines, thresholds, specImpacts, currentT);
-    const warnings = this.generateWarnings(
-      categories,
-      opts.horizon
-    );
-    const stabilityForecast = this.computeStabilityForecast(
-      categories,
-      thresholds,
-      snapshots
-    );
+    const adjustedCategories = categories;
     return {
       generatedAt: (/* @__PURE__ */ new Date()).toISOString(),
       snapshotsUsed: snapshots.length,
-      timelineRange: {
-        from: snapshots[0].capturedAt,
-        to: lastSnapshot.capturedAt
-      },
-      stabilityForecast,
-      categories,
-      warnings
+      timelineRange: { from: snapshots[0].capturedAt, to: lastSnapshot.capturedAt },
+      stabilityForecast: this.computeStabilityForecast(adjustedCategories, thresholds, snapshots),
+      categories: adjustedCategories,
+      warnings: this.generateWarnings(adjustedCategories, opts.horizon)
     };
   }
+  loadValidatedSnapshots() {
+    const timeline = this.timelineManager.load();
+    const snapshots = timeline.snapshots;
+    if (snapshots.length < 3) {
+      throw new Error(
+        `PredictionEngine requires at least 3 snapshots, got ${snapshots.length}. Run "harness snapshot" to capture more data points.`
+      );
+    }
+    return snapshots;
+  }
+  computeTimeOffsets(snapshots) {
+    const firstDate = new Date(snapshots[0].capturedAt).getTime();
+    const lastSnapshot = snapshots[snapshots.length - 1];
+    const currentT = (new Date(lastSnapshot.capturedAt).getTime() - firstDate) / (7 * 24 * 60 * 60 * 1e3);
+    return { firstDate, lastSnapshot, currentT };
+  }
   // --- Private helpers ---
   resolveOptions(options) {
     return {
@@ -5522,31 +5593,40 @@ var PredictionEngine = class {
     for (const category of ALL_CATEGORIES2) {
       const af = categories[category];
       if (!af) continue;
-      const forecast = af.adjusted;
-      const crossing = forecast.thresholdCrossingWeeks;
-      if (crossing === null || crossing <= 0) continue;
-      let severity = null;
-      if (crossing <= criticalWindow && (forecast.confidence === "high" || forecast.confidence === "medium")) {
-        severity = "critical";
-      } else if (crossing <= warningWindow && (forecast.confidence === "high" || forecast.confidence === "medium")) {
-        severity = "warning";
-      } else if (crossing <= horizon) {
-        severity = "info";
-      }
-      if (severity) {
-        const contributingNames = af.contributingFeatures.map((f) => f.name);
-        warnings.push({
-          severity,
-          category,
-          message: `${category} projected to exceed threshold (~${crossing}w, ${forecast.confidence} confidence)`,
-          weeksUntil: crossing,
-          confidence: forecast.confidence,
-          contributingFeatures: contributingNames
-        });
-      }
+      const warning = this.buildCategoryWarning(
+        category,
+        af,
+        criticalWindow,
+        warningWindow,
+        horizon
+      );
+      if (warning) warnings.push(warning);
     }
     return warnings;
   }
+  buildCategoryWarning(category, af, criticalWindow, warningWindow, horizon) {
+    const forecast = af.adjusted;
+    const crossing = forecast.thresholdCrossingWeeks;
+    if (crossing === null || crossing <= 0) return null;
+    const isHighConfidence = forecast.confidence === "high" || forecast.confidence === "medium";
+    let severity = null;
+    if (crossing <= criticalWindow && isHighConfidence) {
+      severity = "critical";
+    } else if (crossing <= warningWindow && isHighConfidence) {
+      severity = "warning";
+    } else if (crossing <= horizon) {
+      severity = "info";
+    }
+    if (!severity) return null;
+    return {
+      severity,
+      category,
+      message: `${category} projected to exceed threshold (~${crossing}w, ${forecast.confidence} confidence)`,
+      weeksUntil: crossing,
+      confidence: forecast.confidence,
+      contributingFeatures: af.contributingFeatures.map((f) => f.name)
+    };
+  }
   /**
    * Compute composite stability forecast by projecting per-category values
    * forward and computing stability scores at each horizon.
@@ -5615,14 +5695,9 @@ var PredictionEngine = class {
       const raw = fs5.readFileSync(roadmapPath, "utf-8");
       const parseResult = parseRoadmap(raw);
       if (!parseResult.ok) return null;
-      const features = [];
-      for (const milestone of parseResult.value.milestones) {
-        for (const feature of milestone.features) {
-          if (feature.status === "planned" || feature.status === "in-progress") {
-            features.push({ name: feature.name, spec: feature.spec });
-          }
-        }
-      }
+      const features = parseResult.value.milestones.flatMap(
+        (m) => m.features.filter((f) => f.status === "planned" || f.status === "in-progress").map((f) => ({ name: f.name, spec: f.spec }))
+      );
       if (features.length === 0) return null;
       return this.estimator.estimateAll(features);
     } catch {
@@ -6273,7 +6348,36 @@ async function saveState(projectPath, state, stream, session) {
 // src/state/learnings-content.ts
 import * as fs11 from "fs";
 import * as path8 from "path";
-import * as crypto from "crypto";
+import * as crypto2 from "crypto";
+
+// src/compaction/envelope.ts
+function estimateTokens(content) {
+  return Math.ceil(content.length / 4);
+}
+function serializeEnvelope(envelope) {
+  const { meta, sections } = envelope;
+  const strategyLabel = meta.strategy.length > 0 ? meta.strategy.join("+") : "none";
+  let cacheLabel = "";
+  if (meta.cached) {
+    if (meta.cacheReadTokens != null && meta.cacheInputTokens != null && meta.cacheInputTokens > 0) {
+      const hitPct = Math.round(meta.cacheReadTokens / meta.cacheInputTokens * 100);
+      const readFormatted = meta.cacheReadTokens >= 1e3 ? (meta.cacheReadTokens / 1e3).toFixed(1) + "K" : String(meta.cacheReadTokens);
+      cacheLabel = ` [cached | cache: ${readFormatted} read, ${hitPct}% hit]`;
+    } else {
+      cacheLabel = " [cached]";
+    }
+  }
+  const header = `<!-- packed: ${strategyLabel} | ${meta.originalTokenEstimate}\u2192${meta.compactedTokenEstimate} tokens (-${meta.reductionPct}%)${cacheLabel} -->`;
+  if (sections.length === 0) {
+    return header;
+  }
+  const body = sections.map((section) => `### [${section.source}]
+${section.content}`).join("\n\n");
+  return `${header}
+${body}`;
+}
+
+// src/state/learnings-content.ts
 function parseFrontmatter2(line) {
   const match = line.match(/^<!--\s+hash:([a-f0-9]+)(?:\s+tags:([^\s]+))?\s+-->/);
   if (!match) return null;
@@ -6301,7 +6405,7 @@ function extractIndexEntry(entry) {
   };
 }
 function computeEntryHash(text) {
-  return crypto.createHash("sha256").update(text).digest("hex").slice(0, 8);
+  return crypto2.createHash("sha256").update(text).digest("hex").slice(0, 8);
 }
 function normalizeLearningContent(text) {
   let normalized = text;
@@ -6316,7 +6420,7 @@ function normalizeLearningContent(text) {
   return normalized;
 }
 function computeContentHash(text) {
-  return crypto.createHash("sha256").update(text).digest("hex").slice(0, 16);
+  return crypto2.createHash("sha256").update(text).digest("hex").slice(0, 16);
 }
 function loadContentHashes(stateDir) {
   const hashesPath = path8.join(stateDir, CONTENT_HASHES_FILE);
@@ -6377,9 +6481,6 @@ function analyzeLearningPatterns(entries) {
   }
   return patterns.sort((a, b) => b.count - a.count);
 }
-function estimateTokens(text) {
-  return Math.ceil(text.length / 4);
-}
 function scoreRelevance(entry, intent) {
   if (!intent || intent.trim() === "") return 0;
   const intentWords = intent.toLowerCase().split(/\s+/).filter((w) => w.length > 2);
@@ -6456,7 +6557,7 @@ async function loadRelevantLearnings(projectPath, skillName, stream, session) {
 // src/state/learnings.ts
 import * as fs13 from "fs";
 import * as path10 from "path";
-import * as crypto2 from "crypto";
+import * as crypto3 from "crypto";
 async function appendLearning(projectPath, learning, skillName, outcome, stream, session) {
   try {
     const dirResult = await getStateDir(projectPath, stream, session);
@@ -6493,7 +6594,7 @@ async function appendLearning(projectPath, learning, skillName, outcome, stream,
     } else {
       bulletLine = `- **${timestamp}:** ${learning}`;
     }
-    const hash = crypto2.createHash("sha256").update(bulletLine).digest("hex").slice(0, 8);
+    const hash = crypto3.createHash("sha256").update(bulletLine).digest("hex").slice(0, 8);
     const tagsStr = fmTags.length > 0 ? ` tags:${fmTags.join(",")}` : "";
     const frontmatter = `<!-- hash:${hash}${tagsStr} -->`;
     const entry = `
@@ -7204,7 +7305,7 @@ async function updateSessionEntryStatus(projectPath, sessionSlug, section, entry
 }
 function generateEntryId() {
   const timestamp = Date.now().toString(36);
-  const random = Math.random().toString(36).substring(2, 8);
+  const random = Buffer.from(crypto.getRandomValues(new Uint8Array(4))).toString("hex");
   return `${timestamp}-${random}`;
 }
 
@@ -7349,15 +7450,25 @@ async function loadEvents(projectPath, options) {
     );
   }
 }
+function phaseTransitionFields(data) {
+  return {
+    from: data?.from ?? "?",
+    to: data?.to ?? "?",
+    suffix: data?.taskCount ? ` (${data.taskCount} tasks)` : ""
+  };
+}
 function formatPhaseTransition(event) {
   const data = event.data;
-  const suffix = data?.taskCount ? ` (${data.taskCount} tasks)` : "";
-  return `phase: ${data?.from ?? "?"} -> ${data?.to ?? "?"}${suffix}`;
+  const { from, to, suffix } = phaseTransitionFields(data);
+  return `phase: ${from} -> ${to}${suffix}`;
+}
+function formatGateChecks(checks) {
+  return checks?.map((c) => `${c.name} ${c.passed ? "Y" : "N"}`).join(", ");
 }
 function formatGateResult(event) {
   const data = event.data;
   const status = data?.passed ? "passed" : "failed";
-  const checks = data?.checks?.map((c) => `${c.name} ${c.passed ? "Y" : "N"}`).join(", ");
+  const checks = formatGateChecks(data?.checks);
   return checks ? `gate: ${status} (${checks})` : `gate: ${status}`;
 }
 function formatHandoffDetail(event) {
@@ -7633,34 +7744,36 @@ function resolveRuleSeverity(ruleId, defaultSeverity, overrides, strict) {
 // src/security/stack-detector.ts
 import * as fs22 from "fs";
 import * as path19 from "path";
-function detectStack(projectRoot) {
-  const stacks = [];
+function nodeSubStacks(allDeps) {
+  const found = [];
+  if (allDeps.react || allDeps["react-dom"]) found.push("react");
+  if (allDeps.express) found.push("express");
+  if (allDeps.koa) found.push("koa");
+  if (allDeps.fastify) found.push("fastify");
+  if (allDeps.next) found.push("next");
+  if (allDeps.vue) found.push("vue");
+  if (allDeps.angular || allDeps["@angular/core"]) found.push("angular");
+  return found;
+}
+function detectNodeStacks(projectRoot) {
   const pkgJsonPath = path19.join(projectRoot, "package.json");
-  if (fs22.existsSync(pkgJsonPath)) {
-    stacks.push("node");
-    try {
-      const pkgJson = JSON.parse(fs22.readFileSync(pkgJsonPath, "utf-8"));
-      const allDeps = {
-        ...pkgJson.dependencies,
-        ...pkgJson.devDependencies
-      };
-      if (allDeps.react || allDeps["react-dom"]) stacks.push("react");
-      if (allDeps.express) stacks.push("express");
-      if (allDeps.koa) stacks.push("koa");
-      if (allDeps.fastify) stacks.push("fastify");
-      if (allDeps.next) stacks.push("next");
-      if (allDeps.vue) stacks.push("vue");
-      if (allDeps.angular || allDeps["@angular/core"]) stacks.push("angular");
-    } catch {
-    }
+  if (!fs22.existsSync(pkgJsonPath)) return [];
+  const stacks = ["node"];
+  try {
+    const pkgJson = JSON.parse(fs22.readFileSync(pkgJsonPath, "utf-8"));
+    const allDeps = { ...pkgJson.dependencies, ...pkgJson.devDependencies };
+    stacks.push(...nodeSubStacks(allDeps));
+  } catch {
   }
-  const goModPath = path19.join(projectRoot, "go.mod");
-  if (fs22.existsSync(goModPath)) {
+  return stacks;
+}
+function detectStack(projectRoot) {
+  const stacks = [...detectNodeStacks(projectRoot)];
+  if (fs22.existsSync(path19.join(projectRoot, "go.mod"))) {
     stacks.push("go");
   }
-  const requirementsPath = path19.join(projectRoot, "requirements.txt");
-  const pyprojectPath = path19.join(projectRoot, "pyproject.toml");
-  if (fs22.existsSync(requirementsPath) || fs22.existsSync(pyprojectPath)) {
+  const hasPython = fs22.existsSync(path19.join(projectRoot, "requirements.txt")) || fs22.existsSync(path19.join(projectRoot, "pyproject.toml"));
+  if (hasPython) {
     stacks.push("python");
   }
   return stacks;
@@ -8504,6 +8617,56 @@ var SecurityScanner = class {
     });
     return this.scanLinesWithRules(lines, applicableRules, filePath, startLine);
   }
+  /** Build a finding for a suppression comment that is missing its justification. */
+  buildSuppressionFinding(rule, filePath, lineNumber, line) {
+    return {
+      ruleId: rule.id,
+      ruleName: rule.name,
+      category: rule.category,
+      severity: this.config.strict ? "error" : "warning",
+      confidence: "high",
+      file: filePath,
+      line: lineNumber,
+      match: line.trim(),
+      context: line,
+      message: `Suppression of ${rule.id} requires justification: // harness-ignore ${rule.id}: <reason>`,
+      remediation: `Add justification after colon: // harness-ignore ${rule.id}: false positive because ...`
+    };
+  }
+  /** Check one line against a rule's patterns; return a finding or null. */
+  matchRuleLine(rule, resolved, filePath, lineNumber, line) {
+    for (const pattern of rule.patterns) {
+      pattern.lastIndex = 0;
+      if (!pattern.test(line)) continue;
+      return {
+        ruleId: rule.id,
+        ruleName: rule.name,
+        category: rule.category,
+        severity: resolved,
+        confidence: rule.confidence,
+        file: filePath,
+        line: lineNumber,
+        match: line.trim(),
+        context: line,
+        message: rule.message,
+        remediation: rule.remediation,
+        ...rule.references ? { references: rule.references } : {}
+      };
+    }
+    return null;
+  }
+  /** Scan a single line against a resolved rule; push any findings into the array. */
+  scanLineForRule(rule, resolved, line, lineNumber, filePath, findings) {
+    const suppressionMatch = parseHarnessIgnore(line, rule.id);
+    if (suppressionMatch) {
+      if (!suppressionMatch.justification) {
+        findings.push(this.buildSuppressionFinding(rule, filePath, lineNumber, line));
+      }
+      return;
+    }
+    const finding = this.matchRuleLine(rule, resolved, filePath, lineNumber, line);
+    if (finding) findings.push(finding);
+  }
   /**
    * Core scanning loop shared by scanContent and scanContentForFile.
    * Evaluates each rule against each line, handling suppression (FP gate)
@@ -8520,46 +8683,7 @@ var SecurityScanner = class {
       );
       if (resolved === "off") continue;
       for (let i = 0; i < lines.length; i++) {
-        const line = lines[i] ?? "";
-        const suppressionMatch = parseHarnessIgnore(line, rule.id);
-        if (suppressionMatch) {
-          if (!suppressionMatch.justification) {
-            findings.push({
-              ruleId: rule.id,
-              ruleName: rule.name,
-              category: rule.category,
-              severity: this.config.strict ? "error" : "warning",
-              confidence: "high",
-              file: filePath,
-              line: startLine + i,
-              match: line.trim(),
-              context: line,
-              message: `Suppression of ${rule.id} requires justification: // harness-ignore ${rule.id}: <reason>`,
-              remediation: `Add justification after colon: // harness-ignore ${rule.id}: false positive because ...`
-            });
-          }
-          continue;
-        }
-        for (const pattern of rule.patterns) {
-          pattern.lastIndex = 0;
-          if (pattern.test(line)) {
-            findings.push({
-              ruleId: rule.id,
-              ruleName: rule.name,
-              category: rule.category,
-              severity: resolved,
-              confidence: rule.confidence,
-              file: filePath,
-              line: startLine + i,
-              match: line.trim(),
-              context: line,
-              message: rule.message,
-              remediation: rule.remediation,
-              ...rule.references ? { references: rule.references } : {}
-            });
-            break;
-          }
-        }
+        this.scanLineForRule(rule, resolved, lines[i] ?? "", startLine + i, filePath, findings);
       }
     }
     return findings;
@@ -9979,37 +10103,30 @@ function extractConventionRules(bundle) {
   }
   return rules;
 }
-function findMissingJsDoc(bundle) {
+var EXPORT_RE = /export\s+(?:async\s+)?(?:function|const|class|interface|type)\s+(\w+)/;
+function hasPrecedingJsDoc(lines, i) {
+  for (let j = i - 1; j >= 0; j--) {
+    const prev = lines[j].trim();
+    if (prev === "") continue;
+    return prev.endsWith("*/");
+  }
+  return false;
+}
+function scanFileForMissingJsDoc(filePath, lines) {
   const missing = [];
-  for (const cf of bundle.changedFiles) {
-    const lines = cf.content.split("\n");
-    for (let i = 0; i < lines.length; i++) {
-      const line = lines[i];
-      const exportMatch = line.match(
-        /export\s+(?:async\s+)?(?:function|const|class|interface|type)\s+(\w+)/
-      );
-      if (exportMatch) {
-        let hasJsDoc = false;
-        for (let j = i - 1; j >= 0; j--) {
-          const prev = lines[j].trim();
-          if (prev === "") continue;
-          if (prev.endsWith("*/")) {
-            hasJsDoc = true;
-          }
-          break;
-        }
-        if (!hasJsDoc) {
-          missing.push({
-            file: cf.path,
-            line: i + 1,
-            exportName: exportMatch[1]
-          });
-        }
-      }
+  for (let i = 0; i < lines.length; i++) {
+    const exportMatch = lines[i].match(EXPORT_RE);
+    if (exportMatch && !hasPrecedingJsDoc(lines, i)) {
+      missing.push({ file: filePath, line: i + 1, exportName: exportMatch[1] });
     }
   }
   return missing;
 }
+function findMissingJsDoc(bundle) {
+  return bundle.changedFiles.flatMap(
+    (cf) => scanFileForMissingJsDoc(cf.path, cf.content.split("\n"))
+  );
+}
 function checkMissingJsDoc(bundle, rules) {
   const jsDocRule = rules.find((r) => r.text.toLowerCase().includes("jsdoc"));
   if (!jsDocRule) return [];
@@ -10074,29 +10191,27 @@ function checkChangeTypeSpecific(bundle) {
       return [];
   }
 }
+function checkFileResultTypeConvention(cf, bundle, rule) {
+  const hasTryCatch = cf.content.includes("try {") || cf.content.includes("try{");
+  const usesResult = cf.content.includes("Result<") || cf.content.includes("Result >") || cf.content.includes(": Result");
+  if (!hasTryCatch || usesResult) return null;
+  return {
+    id: makeFindingId("compliance", cf.path, 1, "try-catch not Result"),
+    file: cf.path,
+    lineRange: [1, cf.lines],
+    domain: "compliance",
+    severity: "suggestion",
+    title: "Fallible operation uses try/catch instead of Result type",
+    rationale: `Convention requires using Result type for fallible operations (from ${rule.source}).`,
+    suggestion: "Refactor error handling to use the Result type pattern.",
+    evidence: [`changeType: ${bundle.changeType}`, `Convention rule: "${rule.text}"`],
+    validatedBy: "heuristic"
+  };
+}
 function checkResultTypeConvention(bundle, rules) {
   const resultTypeRule = rules.find((r) => r.text.toLowerCase().includes("result type"));
   if (!resultTypeRule) return [];
-  const findings = [];
-  for (const cf of bundle.changedFiles) {
-    const hasTryCatch = cf.content.includes("try {") || cf.content.includes("try{");
-    const usesResult = cf.content.includes("Result<") || cf.content.includes("Result >") || cf.content.includes(": Result");
-    if (hasTryCatch && !usesResult) {
-      findings.push({
-        id: makeFindingId("compliance", cf.path, 1, "try-catch not Result"),
-        file: cf.path,
-        lineRange: [1, cf.lines],
-        domain: "compliance",
-        severity: "suggestion",
-        title: "Fallible operation uses try/catch instead of Result type",
-        rationale: `Convention requires using Result type for fallible operations (from ${resultTypeRule.source}).`,
-        suggestion: "Refactor error handling to use the Result type pattern.",
-        evidence: [`changeType: ${bundle.changeType}`, `Convention rule: "${resultTypeRule.text}"`],
-        validatedBy: "heuristic"
-      });
-    }
-  }
-  return findings;
+  return bundle.changedFiles.map((cf) => checkFileResultTypeConvention(cf, bundle, resultTypeRule)).filter((f) => f !== null);
 }
 function runComplianceAgent(bundle) {
   const rules = extractConventionRules(bundle);
@@ -10122,53 +10237,58 @@ var BUG_DETECTION_DESCRIPTOR = {
     "Test coverage \u2014 tests for happy path, error paths, and edge cases"
   ]
 };
+function hasPrecedingZeroCheck(lines, i) {
+  const preceding = lines.slice(Math.max(0, i - 3), i).join("\n");
+  return preceding.includes("=== 0") || preceding.includes("!== 0") || preceding.includes("== 0") || preceding.includes("!= 0");
+}
 function detectDivisionByZero(bundle) {
   const findings = [];
   for (const cf of bundle.changedFiles) {
     const lines = cf.content.split("\n");
     for (let i = 0; i < lines.length; i++) {
       const line = lines[i];
-      if (line.match(/[^=!<>]\s*\/\s*[a-zA-Z_]\w*/) && !line.includes("//")) {
-        const preceding = lines.slice(Math.max(0, i - 3), i).join("\n");
-        if (!preceding.includes("=== 0") && !preceding.includes("!== 0") && !preceding.includes("== 0") && !preceding.includes("!= 0")) {
-          findings.push({
-            id: makeFindingId("bug", cf.path, i + 1, "division by zero"),
-            file: cf.path,
-            lineRange: [i + 1, i + 1],
-            domain: "bug",
-            severity: "important",
-            title: "Potential division by zero without guard",
-            rationale: "Division operation found without a preceding zero check on the divisor. This can cause Infinity or NaN at runtime.",
-            suggestion: "Add a check for zero before dividing, or use a safe division utility.",
-            evidence: [`Line ${i + 1}: ${line.trim()}`],
-            validatedBy: "heuristic"
-          });
-        }
-      }
+      if (!line.match(/[^=!<>]\s*\/\s*[a-zA-Z_]\w*/) || line.includes("//")) continue;
+      if (hasPrecedingZeroCheck(lines, i)) continue;
+      findings.push({
+        id: makeFindingId("bug", cf.path, i + 1, "division by zero"),
+        file: cf.path,
+        lineRange: [i + 1, i + 1],
+        domain: "bug",
+        severity: "important",
+        title: "Potential division by zero without guard",
+        rationale: "Division operation found without a preceding zero check on the divisor. This can cause Infinity or NaN at runtime.",
+        suggestion: "Add a check for zero before dividing, or use a safe division utility.",
+        evidence: [`Line ${i + 1}: ${line.trim()}`],
+        validatedBy: "heuristic"
+      });
     }
   }
   return findings;
 }
+function isEmptyCatch(lines, i) {
+  const line = lines[i];
+  if (line.match(/catch\s*\([^)]*\)\s*\{\s*\}/)) return true;
+  return line.match(/catch\s*\([^)]*\)\s*\{/) !== null && i + 1 < lines.length && lines[i + 1].trim() === "}";
+}
 function detectEmptyCatch(bundle) {
   const findings = [];
   for (const cf of bundle.changedFiles) {
     const lines = cf.content.split("\n");
     for (let i = 0; i < lines.length; i++) {
+      if (!isEmptyCatch(lines, i)) continue;
       const line = lines[i];
-      if (line.match(/catch\s*\([^)]*\)\s*\{\s*\}/) || line.match(/catch\s*\([^)]*\)\s*\{/) && i + 1 < lines.length && lines[i + 1].trim() === "}") {
-        findings.push({
-          id: makeFindingId("bug", cf.path, i + 1, "empty catch block"),
-          file: cf.path,
-          lineRange: [i + 1, i + 2],
-          domain: "bug",
-          severity: "important",
-          title: "Empty catch block silently swallows error",
-          rationale: "Catching an error without handling, logging, or re-throwing it hides failures and makes debugging difficult.",
-          suggestion: "Log the error, re-throw it, or handle it explicitly. If intentionally ignoring, add a comment explaining why.",
-          evidence: [`Line ${i + 1}: ${line.trim()}`],
-          validatedBy: "heuristic"
-        });
-      }
+      findings.push({
+        id: makeFindingId("bug", cf.path, i + 1, "empty catch block"),
+        file: cf.path,
+        lineRange: [i + 1, i + 2],
+        domain: "bug",
+        severity: "important",
+        title: "Empty catch block silently swallows error",
+        rationale: "Catching an error without handling, logging, or re-throwing it hides failures and makes debugging difficult.",
+        suggestion: "Log the error, re-throw it, or handle it explicitly. If intentionally ignoring, add a comment explaining why.",
+        evidence: [`Line ${i + 1}: ${line.trim()}`],
+        validatedBy: "heuristic"
+      });
     }
   }
   return findings;
@@ -10226,70 +10346,116 @@ var SECRET_PATTERNS = [
 ];
 var SQL_CONCAT_PATTERN = /(?:SELECT|INSERT|UPDATE|DELETE|DROP|CREATE|ALTER)\s+.*?\+\s*\w+|`[^`]*\$\{[^}]*\}[^`]*(?:SELECT|INSERT|UPDATE|DELETE|WHERE)/i;
 var SHELL_EXEC_PATTERN = /(?:exec|execSync|spawn|spawnSync)\s*\(\s*`[^`]*\$\{/;
-function detectEvalUsage(bundle) {
-  const findings = [];
-  for (const cf of bundle.changedFiles) {
-    const lines = cf.content.split("\n");
-    for (let i = 0; i < lines.length; i++) {
-      const line = lines[i];
-      if (EVAL_PATTERN.test(line)) {
-        findings.push({
-          id: makeFindingId("security", cf.path, i + 1, "eval usage CWE-94"),
-          file: cf.path,
-          lineRange: [i + 1, i + 1],
-          domain: "security",
-          severity: "critical",
-          title: `Dangerous ${"eval"}() or new ${"Function"}() usage`,
-          rationale: `${"eval"}() and new ${"Function"}() execute arbitrary code. If user input reaches these calls, it enables Remote Code Execution (CWE-94).`,
-          suggestion: "Replace eval/Function with a safe alternative (JSON.parse for data, a sandboxed evaluator for expressions).",
-          evidence: [`Line ${i + 1}: ${line.trim()}`],
-          validatedBy: "heuristic",
-          cweId: "CWE-94",
-          owaspCategory: "A03:2021 Injection",
-          confidence: "high",
-          remediation: "Replace eval/Function with a safe alternative (JSON.parse for data, a sandboxed evaluator for expressions).",
-          references: [
-            "https://cwe.mitre.org/data/definitions/94.html",
-            "https://owasp.org/Top10/A03_2021-Injection/"
-          ]
-        });
-      }
-    }
-  }
-  return findings;
-}
-function detectHardcodedSecrets(bundle) {
+function makeEvalFinding(file, lineNum, line) {
+  return {
+    id: makeFindingId("security", file, lineNum, "eval usage CWE-94"),
+    file,
+    lineRange: [lineNum, lineNum],
+    domain: "security",
+    severity: "critical",
+    title: `Dangerous ${"eval"}() or new ${"Function"}() usage`,
+    rationale: `${"eval"}() and new ${"Function"}() execute arbitrary code. If user input reaches these calls, it enables Remote Code Execution (CWE-94).`,
+    suggestion: "Replace eval/Function with a safe alternative (JSON.parse for data, a sandboxed evaluator for expressions).",
+    evidence: [`Line ${lineNum}: ${line.trim()}`],
+    validatedBy: "heuristic",
+    cweId: "CWE-94",
+    owaspCategory: "A03:2021 Injection",
+    confidence: "high",
+    remediation: "Replace eval/Function with a safe alternative (JSON.parse for data, a sandboxed evaluator for expressions).",
+    references: [
+      "https://cwe.mitre.org/data/definitions/94.html",
+      "https://owasp.org/Top10/A03_2021-Injection/"
+    ]
+  };
+}
+function makeSecretFinding(file, lineNum) {
+  return {
+    id: makeFindingId("security", file, lineNum, "hardcoded secret CWE-798"),
+    file,
+    lineRange: [lineNum, lineNum],
+    domain: "security",
+    severity: "critical",
+    title: "Hardcoded secret or API key detected",
+    rationale: "Hardcoded secrets in source code can be extracted from version history even after removal. Use environment variables or a secrets manager (CWE-798).",
+    suggestion: "Move the secret to an environment variable and access it via process.env.",
+    evidence: [`Line ${lineNum}: [secret detected \u2014 value redacted]`],
+    validatedBy: "heuristic",
+    cweId: "CWE-798",
+    owaspCategory: "A07:2021 Identification and Authentication Failures",
+    confidence: "high",
+    remediation: "Move the secret to an environment variable and access it via process.env.",
+    references: [
+      "https://cwe.mitre.org/data/definitions/798.html",
+      "https://owasp.org/Top10/A07_2021-Identification_and_Authentication_Failures/"
+    ]
+  };
+}
+function makeSqlFinding(file, lineNum, line) {
+  return {
+    id: makeFindingId("security", file, lineNum, "SQL injection CWE-89"),
+    file,
+    lineRange: [lineNum, lineNum],
+    domain: "security",
+    severity: "critical",
+    title: "Potential SQL injection via string concatenation",
+    rationale: "Building SQL queries with string concatenation or template literals allows attackers to inject malicious SQL (CWE-89).",
+    suggestion: "Use parameterized queries or a query builder (e.g., Knex, Prisma) instead of string concatenation.",
+    evidence: [`Line ${lineNum}: ${line.trim()}`],
+    validatedBy: "heuristic",
+    cweId: "CWE-89",
+    owaspCategory: "A03:2021 Injection",
+    confidence: "high",
+    remediation: "Use parameterized queries or a query builder (e.g., Knex, Prisma) instead of string concatenation.",
+    references: [
+      "https://cwe.mitre.org/data/definitions/89.html",
+      "https://owasp.org/Top10/A03_2021-Injection/"
+    ]
+  };
+}
+function makeCommandFinding(file, lineNum, line) {
+  return {
+    id: makeFindingId("security", file, lineNum, "command injection CWE-78"),
+    file,
+    lineRange: [lineNum, lineNum],
+    domain: "security",
+    severity: "critical",
+    title: "Potential command injection via shell exec with interpolation",
+    rationale: "Using exec/spawn with template literal interpolation allows attackers to inject shell commands (CWE-78).",
+    suggestion: "Use execFile or spawn with an arguments array instead of shell string interpolation.",
+    evidence: [`Line ${lineNum}: ${line.trim()}`],
+    validatedBy: "heuristic",
+    cweId: "CWE-78",
+    owaspCategory: "A03:2021 Injection",
+    confidence: "high",
+    remediation: "Use execFile or spawn with an arguments array instead of shell string interpolation.",
+    references: [
+      "https://cwe.mitre.org/data/definitions/78.html",
+      "https://owasp.org/Top10/A03_2021-Injection/"
+    ]
+  };
+}
+function detectEvalUsage(bundle) {
+  const findings = [];
+  for (const cf of bundle.changedFiles) {
+    const lines = cf.content.split("\n");
+    for (let i = 0; i < lines.length; i++) {
+      const line = lines[i];
+      if (!EVAL_PATTERN.test(line)) continue;
+      findings.push(makeEvalFinding(cf.path, i + 1, line));
+    }
+  }
+  return findings;
+}
+function detectHardcodedSecrets(bundle) {
   const findings = [];
   for (const cf of bundle.changedFiles) {
     const lines = cf.content.split("\n");
     for (let i = 0; i < lines.length; i++) {
       const line = lines[i];
       const codePart = line.includes("//") ? line.slice(0, line.indexOf("//")) : line;
-      for (const pattern of SECRET_PATTERNS) {
-        if (pattern.test(codePart)) {
-          findings.push({
-            id: makeFindingId("security", cf.path, i + 1, "hardcoded secret CWE-798"),
-            file: cf.path,
-            lineRange: [i + 1, i + 1],
-            domain: "security",
-            severity: "critical",
-            title: "Hardcoded secret or API key detected",
-            rationale: "Hardcoded secrets in source code can be extracted from version history even after removal. Use environment variables or a secrets manager (CWE-798).",
-            suggestion: "Move the secret to an environment variable and access it via process.env.",
-            evidence: [`Line ${i + 1}: [secret detected \u2014 value redacted]`],
-            validatedBy: "heuristic",
-            cweId: "CWE-798",
-            owaspCategory: "A07:2021 Identification and Authentication Failures",
-            confidence: "high",
-            remediation: "Move the secret to an environment variable and access it via process.env.",
-            references: [
-              "https://cwe.mitre.org/data/definitions/798.html",
-              "https://owasp.org/Top10/A07_2021-Identification_and_Authentication_Failures/"
-            ]
-          });
-          break;
-        }
-      }
+      const matched = SECRET_PATTERNS.some((p) => p.test(codePart));
+      if (!matched) continue;
+      findings.push(makeSecretFinding(cf.path, i + 1));
     }
   }
   return findings;
@@ -10300,28 +10466,8 @@ function detectSqlInjection(bundle) {
     const lines = cf.content.split("\n");
     for (let i = 0; i < lines.length; i++) {
       const line = lines[i];
-      if (SQL_CONCAT_PATTERN.test(line)) {
-        findings.push({
-          id: makeFindingId("security", cf.path, i + 1, "SQL injection CWE-89"),
-          file: cf.path,
-          lineRange: [i + 1, i + 1],
-          domain: "security",
-          severity: "critical",
-          title: "Potential SQL injection via string concatenation",
-          rationale: "Building SQL queries with string concatenation or template literals allows attackers to inject malicious SQL (CWE-89).",
-          suggestion: "Use parameterized queries or a query builder (e.g., Knex, Prisma) instead of string concatenation.",
-          evidence: [`Line ${i + 1}: ${line.trim()}`],
-          validatedBy: "heuristic",
-          cweId: "CWE-89",
-          owaspCategory: "A03:2021 Injection",
-          confidence: "high",
-          remediation: "Use parameterized queries or a query builder (e.g., Knex, Prisma) instead of string concatenation.",
-          references: [
-            "https://cwe.mitre.org/data/definitions/89.html",
-            "https://owasp.org/Top10/A03_2021-Injection/"
-          ]
-        });
-      }
+      if (!SQL_CONCAT_PATTERN.test(line)) continue;
+      findings.push(makeSqlFinding(cf.path, i + 1, line));
     }
   }
   return findings;
@@ -10332,28 +10478,8 @@ function detectCommandInjection(bundle) {
     const lines = cf.content.split("\n");
     for (let i = 0; i < lines.length; i++) {
       const line = lines[i];
-      if (SHELL_EXEC_PATTERN.test(line)) {
-        findings.push({
-          id: makeFindingId("security", cf.path, i + 1, "command injection CWE-78"),
-          file: cf.path,
-          lineRange: [i + 1, i + 1],
-          domain: "security",
-          severity: "critical",
-          title: "Potential command injection via shell exec with interpolation",
-          rationale: "Using exec/spawn with template literal interpolation allows attackers to inject shell commands (CWE-78).",
-          suggestion: "Use execFile or spawn with an arguments array instead of shell string interpolation.",
-          evidence: [`Line ${i + 1}: ${line.trim()}`],
-          validatedBy: "heuristic",
-          cweId: "CWE-78",
-          owaspCategory: "A03:2021 Injection",
-          confidence: "high",
-          remediation: "Use execFile or spawn with an arguments array instead of shell string interpolation.",
-          references: [
-            "https://cwe.mitre.org/data/definitions/78.html",
-            "https://owasp.org/Top10/A03_2021-Injection/"
-          ]
-        });
-      }
+      if (!SHELL_EXEC_PATTERN.test(line)) continue;
+      findings.push(makeCommandFinding(cf.path, i + 1, line));
     }
   }
   return findings;
@@ -10386,10 +10512,15 @@ function isViolationLine(line) {
   const lower = line.toLowerCase();
   return lower.includes("violation") || lower.includes("layer");
 }
-function createLayerViolationFinding(line, fallbackPath) {
-  const fileMatch = line.match(/(?:in\s+)?(\S+\.(?:ts|tsx|js|jsx))(?::(\d+))?/);
+var VIOLATION_FILE_RE = /(?:in\s+)?(\S+\.(?:ts|tsx|js|jsx))(?::(\d+))?/;
+function extractViolationLocation(line, fallbackPath) {
+  const fileMatch = line.match(VIOLATION_FILE_RE);
   const file = fileMatch?.[1] ?? fallbackPath;
   const lineNum = fileMatch?.[2] ? parseInt(fileMatch[2], 10) : 1;
+  return { file, lineNum };
+}
+function createLayerViolationFinding(line, fallbackPath) {
+  const { file, lineNum } = extractViolationLocation(line, fallbackPath);
   return {
     id: makeFindingId("arch", file, lineNum, "layer violation"),
     file,
@@ -10562,6 +10693,26 @@ function normalizePath(filePath, projectRoot) {
   }
   return normalized;
 }
+function resolveImportPath2(currentFile, importPath) {
+  const dir = path23.dirname(currentFile);
+  let resolved = path23.join(dir, importPath).replace(/\\/g, "/");
+  if (!resolved.match(/\.(ts|tsx|js|jsx)$/)) {
+    resolved += ".ts";
+  }
+  return path23.normalize(resolved).replace(/\\/g, "/");
+}
+function enqueueImports(content, current, visited, queue, maxDepth) {
+  const importRegex = /import\s+.*?from\s+['"]([^'"]+)['"]/g;
+  let match;
+  while ((match = importRegex.exec(content)) !== null) {
+    const importPath = match[1];
+    if (!importPath.startsWith(".")) continue;
+    const resolved = resolveImportPath2(current.file, importPath);
+    if (!visited.has(resolved) && current.depth + 1 <= maxDepth) {
+      queue.push({ file: resolved, depth: current.depth + 1 });
+    }
+  }
+}
 function followImportChain(fromFile, fileContents, maxDepth = 2) {
   const visited = /* @__PURE__ */ new Set();
   const queue = [{ file: fromFile, depth: 0 }];
@@ -10571,82 +10722,63 @@ function followImportChain(fromFile, fileContents, maxDepth = 2) {
     visited.add(current.file);
     const content = fileContents.get(current.file);
     if (!content) continue;
-    const importRegex = /import\s+.*?from\s+['"]([^'"]+)['"]/g;
-    let match;
-    while ((match = importRegex.exec(content)) !== null) {
-      const importPath = match[1];
-      if (!importPath.startsWith(".")) continue;
-      const dir = path23.dirname(current.file);
-      let resolved = path23.join(dir, importPath).replace(/\\/g, "/");
-      if (!resolved.match(/\.(ts|tsx|js|jsx)$/)) {
-        resolved += ".ts";
-      }
-      resolved = path23.normalize(resolved).replace(/\\/g, "/");
-      if (!visited.has(resolved) && current.depth + 1 <= maxDepth) {
-        queue.push({ file: resolved, depth: current.depth + 1 });
-      }
-    }
+    enqueueImports(content, current, visited, queue, maxDepth);
   }
   visited.delete(fromFile);
   return visited;
 }
+function isMechanicallyExcluded(finding, exclusionSet, projectRoot) {
+  const normalizedFile = normalizePath(finding.file, projectRoot);
+  if (exclusionSet.isExcluded(normalizedFile, finding.lineRange)) return true;
+  if (exclusionSet.isExcluded(finding.file, finding.lineRange)) return true;
+  const absoluteFile = path23.isAbsolute(finding.file) ? finding.file : path23.join(projectRoot, finding.file).replace(/\\/g, "/");
+  return exclusionSet.isExcluded(absoluteFile, finding.lineRange);
+}
+async function validateWithGraph(crossFileRefs, graph) {
+  try {
+    for (const ref of crossFileRefs) {
+      const reachable = await graph.isReachable(ref.from, ref.to);
+      if (!reachable) return { result: "discard" };
+    }
+    return { result: "keep" };
+  } catch {
+    return { result: "fallback" };
+  }
+}
+function validateWithHeuristic(finding, crossFileRefs, fileContents, projectRoot) {
+  if (fileContents) {
+    for (const ref of crossFileRefs) {
+      const normalizedFrom = normalizePath(ref.from, projectRoot);
+      const reachable = followImportChain(normalizedFrom, fileContents, 2);
+      const normalizedTo = normalizePath(ref.to, projectRoot);
+      if (reachable.has(normalizedTo)) {
+        return { ...finding, validatedBy: "heuristic" };
+      }
+    }
+  }
+  return {
+    ...finding,
+    severity: DOWNGRADE_MAP[finding.severity],
+    validatedBy: "heuristic"
+  };
+}
+async function processFinding(finding, exclusionSet, graph, projectRoot, fileContents) {
+  if (isMechanicallyExcluded(finding, exclusionSet, projectRoot)) return null;
+  const crossFileRefs = extractCrossFileRefs(finding);
+  if (crossFileRefs.length === 0) return { ...finding };
+  if (graph) {
+    const { result } = await validateWithGraph(crossFileRefs, graph);
+    if (result === "keep") return { ...finding, validatedBy: "graph" };
+    if (result === "discard") return null;
+  }
+  return validateWithHeuristic(finding, crossFileRefs, fileContents, projectRoot);
+}
 async function validateFindings(options) {
   const { findings, exclusionSet, graph, projectRoot, fileContents } = options;
   const validated = [];
   for (const finding of findings) {
-    const normalizedFile = normalizePath(finding.file, projectRoot);
-    if (exclusionSet.isExcluded(normalizedFile, finding.lineRange) || exclusionSet.isExcluded(finding.file, finding.lineRange)) {
-      continue;
-    }
-    const absoluteFile = path23.isAbsolute(finding.file) ? finding.file : path23.join(projectRoot, finding.file).replace(/\\/g, "/");
-    if (exclusionSet.isExcluded(absoluteFile, finding.lineRange)) {
-      continue;
-    }
-    const crossFileRefs = extractCrossFileRefs(finding);
-    if (crossFileRefs.length === 0) {
-      validated.push({ ...finding });
-      continue;
-    }
-    if (graph) {
-      try {
-        let allReachable = true;
-        for (const ref of crossFileRefs) {
-          const reachable = await graph.isReachable(ref.from, ref.to);
-          if (!reachable) {
-            allReachable = false;
-            break;
-          }
-        }
-        if (allReachable) {
-          validated.push({ ...finding, validatedBy: "graph" });
-        }
-        continue;
-      } catch {
-      }
-    }
-    {
-      let chainValidated = false;
-      if (fileContents) {
-        for (const ref of crossFileRefs) {
-          const normalizedFrom = normalizePath(ref.from, projectRoot);
-          const reachable = followImportChain(normalizedFrom, fileContents, 2);
-          const normalizedTo = normalizePath(ref.to, projectRoot);
-          if (reachable.has(normalizedTo)) {
-            chainValidated = true;
-            break;
-          }
-        }
-      }
-      if (chainValidated) {
-        validated.push({ ...finding, validatedBy: "heuristic" });
-      } else {
-        validated.push({
-          ...finding,
-          severity: DOWNGRADE_MAP[finding.severity],
-          validatedBy: "heuristic"
-        });
-      }
-    }
+    const result = await processFinding(finding, exclusionSet, graph, projectRoot, fileContents);
+    if (result !== null) validated.push(result);
   }
   return validated;
 }
@@ -11247,25 +11379,32 @@ function serializeRoadmap(roadmap) {
 function serializeMilestoneHeading(milestone) {
   return milestone.isBacklog ? "## Backlog" : `## ${milestone.name}`;
 }
+function orDash(value) {
+  return value ?? EM_DASH2;
+}
+function listOrDash(items) {
+  return items.length > 0 ? items.join(", ") : EM_DASH2;
+}
+function serializeExtendedLines(feature) {
+  const hasExtended = feature.assignee !== null || feature.priority !== null || feature.externalId !== null;
+  if (!hasExtended) return [];
+  return [
+    `- **Assignee:** ${orDash(feature.assignee)}`,
+    `- **Priority:** ${orDash(feature.priority)}`,
+    `- **External-ID:** ${orDash(feature.externalId)}`
+  ];
+}
 function serializeFeature(feature) {
-  const spec = feature.spec ?? EM_DASH2;
-  const plans = feature.plans.length > 0 ? feature.plans.join(", ") : EM_DASH2;
-  const blockedBy = feature.blockedBy.length > 0 ? feature.blockedBy.join(", ") : EM_DASH2;
   const lines = [
     `### ${feature.name}`,
     "",
     `- **Status:** ${feature.status}`,
-    `- **Spec:** ${spec}`,
+    `- **Spec:** ${orDash(feature.spec)}`,
     `- **Summary:** ${feature.summary}`,
-    `- **Blockers:** ${blockedBy}`,
-    `- **Plan:** ${plans}`
+    `- **Blockers:** ${listOrDash(feature.blockedBy)}`,
+    `- **Plan:** ${listOrDash(feature.plans)}`,
+    ...serializeExtendedLines(feature)
   ];
-  const hasExtended = feature.assignee !== null || feature.priority !== null || feature.externalId !== null;
-  if (hasExtended) {
-    lines.push(`- **Assignee:** ${feature.assignee ?? EM_DASH2}`);
-    lines.push(`- **Priority:** ${feature.priority ?? EM_DASH2}`);
-    lines.push(`- **External-ID:** ${feature.externalId ?? EM_DASH2}`);
-  }
   return lines;
 }
 function serializeAssignmentHistory(records) {
@@ -11299,6 +11438,26 @@ function isRegression(from, to) {
 }
 
 // src/roadmap/sync.ts
+function collectAutopilotStatuses(autopilotPath, featurePlans, allTaskStatuses) {
+  try {
+    const raw = fs24.readFileSync(autopilotPath, "utf-8");
+    const autopilot = JSON.parse(raw);
+    if (!autopilot.phases) return;
+    const linkedPhases = autopilot.phases.filter(
+      (phase) => phase.planPath ? featurePlans.some((p) => p === phase.planPath || phase.planPath.endsWith(p)) : false
+    );
+    for (const phase of linkedPhases) {
+      if (phase.status === "complete") {
+        allTaskStatuses.push("complete");
+      } else if (phase.status === "pending") {
+        allTaskStatuses.push("pending");
+      } else {
+        allTaskStatuses.push("in_progress");
+      }
+    }
+  } catch {
+  }
+}
 function inferStatus(feature, projectPath, allFeatures) {
   if (feature.blockedBy.length > 0) {
     const blockerNotDone = feature.blockedBy.some((blockerName) => {
@@ -11334,26 +11493,7 @@ function inferStatus(feature, projectPath, allFeatures) {
         if (!entry.isDirectory()) continue;
         const autopilotPath = path24.join(sessionsDir, entry.name, "autopilot-state.json");
         if (!fs24.existsSync(autopilotPath)) continue;
-        try {
-          const raw = fs24.readFileSync(autopilotPath, "utf-8");
-          const autopilot = JSON.parse(raw);
-          if (!autopilot.phases) continue;
-          const linkedPhases = autopilot.phases.filter(
-            (phase) => phase.planPath ? feature.plans.some((p) => p === phase.planPath || phase.planPath.endsWith(p)) : false
-          );
-          if (linkedPhases.length > 0) {
-            for (const phase of linkedPhases) {
-              if (phase.status === "complete") {
-                allTaskStatuses.push("complete");
-              } else if (phase.status === "pending") {
-                allTaskStatuses.push("pending");
-              } else {
-                allTaskStatuses.push("in_progress");
-              }
-            }
-          }
-        } catch {
-        }
+        collectAutopilotStatuses(autopilotPath, feature.plans, allTaskStatuses);
       }
     } catch {
     }
@@ -11670,23 +11810,36 @@ var GitHubIssuesSyncAdapter = class {
       return Err3(error instanceof Error ? error : new Error(String(error)));
     }
   }
+  buildLabelsParam() {
+    const filterLabels = this.config.labels ?? [];
+    return filterLabels.length > 0 ? `&labels=${filterLabels.join(",")}` : "";
+  }
+  issueToTicketState(issue) {
+    return {
+      externalId: buildExternalId(this.owner, this.repo, issue.number),
+      title: issue.title,
+      status: issue.state,
+      labels: issue.labels.map((l) => l.name),
+      assignee: issue.assignee ? `@${issue.assignee.login}` : null
+    };
+  }
+  async fetchIssuePage(page, labelsParam) {
+    const perPage = 100;
+    return fetchWithRetry(
+      this.fetchFn,
+      `${this.apiBase}/repos/${this.owner}/${this.repo}/issues?state=all&per_page=${perPage}&page=${page}${labelsParam}`,
+      { method: "GET", headers: this.headers() },
+      this.retryOpts
+    );
+  }
   async fetchAllTickets() {
     try {
-      const filterLabels = this.config.labels ?? [];
-      const labelsParam = filterLabels.length > 0 ? `&labels=${filterLabels.join(",")}` : "";
+      const labelsParam = this.buildLabelsParam();
       const tickets = [];
       let page = 1;
       const perPage = 100;
       while (true) {
-        const response = await fetchWithRetry(
-          this.fetchFn,
-          `${this.apiBase}/repos/${this.owner}/${this.repo}/issues?state=all&per_page=${perPage}&page=${page}${labelsParam}`,
-          {
-            method: "GET",
-            headers: this.headers()
-          },
-          this.retryOpts
-        );
+        const response = await this.fetchIssuePage(page, labelsParam);
         if (!response.ok) {
           const text = await response.text();
           return Err3(new Error(`GitHub API error ${response.status}: ${text}`));
@@ -11694,13 +11847,7 @@ var GitHubIssuesSyncAdapter = class {
         const data = await response.json();
         const issues = data.filter((d) => !d.pull_request);
         for (const issue of issues) {
-          tickets.push({
-            externalId: buildExternalId(this.owner, this.repo, issue.number),
-            title: issue.title,
-            status: issue.state,
-            labels: issue.labels.map((l) => l.name),
-            assignee: issue.assignee ? `@${issue.assignee.login}` : null
-          });
+          tickets.push(this.issueToTicketState(issue));
         }
         if (data.length < perPage) break;
         page++;
@@ -11795,6 +11942,22 @@ async function syncToExternal(roadmap, adapter, config, prefetchedTickets) {
   }
   return result;
 }
+function applyTicketToFeature(ticketState, feature, config, forceSync, result) {
+  if (ticketState.assignee !== feature.assignee) {
+    result.assignmentChanges.push({
+      feature: feature.name,
+      from: feature.assignee,
+      to: ticketState.assignee
+    });
+    feature.assignee = ticketState.assignee;
+  }
+  const resolvedStatus = resolveReverseStatus(ticketState.status, ticketState.labels, config);
+  if (!resolvedStatus || resolvedStatus === feature.status) return;
+  const newStatus = resolvedStatus;
+  if (!forceSync && isRegression(feature.status, newStatus)) return;
+  if (!forceSync && feature.status === "blocked" && newStatus === "planned") return;
+  feature.status = newStatus;
+}
 async function syncFromExternal(roadmap, adapter, config, options, prefetchedTickets) {
   const result = emptySyncResult();
   const forceSync = options?.forceSync ?? false;
@@ -11821,25 +11984,7 @@ async function syncFromExternal(roadmap, adapter, config, options, prefetchedTic
   for (const ticketState of tickets) {
     const feature = featureByExternalId.get(ticketState.externalId);
     if (!feature) continue;
-    if (ticketState.assignee !== feature.assignee) {
-      result.assignmentChanges.push({
-        feature: feature.name,
-        from: feature.assignee,
-        to: ticketState.assignee
-      });
-      feature.assignee = ticketState.assignee;
-    }
-    const resolvedStatus = resolveReverseStatus(ticketState.status, ticketState.labels, config);
-    if (resolvedStatus && resolvedStatus !== feature.status) {
-      const newStatus = resolvedStatus;
-      if (!forceSync && isRegression(feature.status, newStatus)) {
-        continue;
-      }
-      if (!forceSync && feature.status === "blocked" && newStatus === "planned") {
-        continue;
-      }
-      feature.status = newStatus;
-    }
+    applyTicketToFeature(ticketState, feature, config, forceSync, result);
   }
   return result;
 }
@@ -11887,6 +12032,24 @@ var PRIORITY_RANK = {
 var POSITION_WEIGHT = 0.5;
 var DEPENDENTS_WEIGHT = 0.3;
 var AFFINITY_WEIGHT = 0.2;
+function isEligibleCandidate(feature, allFeatureNames, doneFeatures) {
+  if (feature.status !== "planned" && feature.status !== "backlog") return false;
+  const isBlocked = feature.blockedBy.some((blocker) => {
+    const key = blocker.toLowerCase();
+    return allFeatureNames.has(key) && !doneFeatures.has(key);
+  });
+  return !isBlocked;
+}
+function computeAffinityScore(feature, milestoneName, milestoneMap, userCompletedFeatures) {
+  if (userCompletedFeatures.size === 0) return 0;
+  const completedBlocker = feature.blockedBy.some(
+    (b) => userCompletedFeatures.has(b.toLowerCase())
+  );
+  if (completedBlocker) return 1;
+  const siblings = milestoneMap.get(milestoneName) ?? [];
+  const completedSibling = siblings.some((s) => userCompletedFeatures.has(s));
+  return completedSibling ? 0.5 : 0;
+}
 function scoreRoadmapCandidates(roadmap, options) {
   const allFeatures = roadmap.milestones.flatMap((m) => m.features);
   const allFeatureNames = new Set(allFeatures.map((f) => f.name.toLowerCase()));
@@ -11925,33 +12088,18 @@ function scoreRoadmapCandidates(roadmap, options) {
   const candidates = [];
   let globalPosition = 0;
   for (const ms of roadmap.milestones) {
-    for (let featureIdx = 0; featureIdx < ms.features.length; featureIdx++) {
-      const feature = ms.features[featureIdx];
+    for (const feature of ms.features) {
       globalPosition++;
-      if (feature.status !== "planned" && feature.status !== "backlog") continue;
-      const isBlocked = feature.blockedBy.some((blocker) => {
-        const key = blocker.toLowerCase();
-        return allFeatureNames.has(key) && !doneFeatures.has(key);
-      });
-      if (isBlocked) continue;
+      if (!isEligibleCandidate(feature, allFeatureNames, doneFeatures)) continue;
       const positionScore = 1 - (globalPosition - 1) / totalPositions;
       const deps = dependentsCount.get(feature.name.toLowerCase()) ?? 0;
       const dependentsScore = deps / maxDependents;
-      let affinityScore = 0;
-      if (userCompletedFeatures.size > 0) {
-        const completedBlockers = feature.blockedBy.filter(
-          (b) => userCompletedFeatures.has(b.toLowerCase())
-        );
-        if (completedBlockers.length > 0) {
-          affinityScore = 1;
-        } else {
-          const siblings = milestoneMap.get(ms.name) ?? [];
-          const completedSiblings = siblings.filter((s) => userCompletedFeatures.has(s));
-          if (completedSiblings.length > 0) {
-            affinityScore = 0.5;
-          }
-        }
-      }
+      const affinityScore = computeAffinityScore(
+        feature,
+        ms.name,
+        milestoneMap,
+        userCompletedFeatures
+      );
       const weightedScore = POSITION_WEIGHT * positionScore + DEPENDENTS_WEIGHT * dependentsScore + AFFINITY_WEIGHT * affinityScore;
       const priorityTier = feature.priority ? PRIORITY_RANK[feature.priority] : null;
       candidates.push({
@@ -12292,9 +12440,9 @@ async function resolveWasmPath(grammarName) {
   const { createRequire } = await import("module");
   const require2 = createRequire(import.meta.url ?? __filename);
   const pkgPath = require2.resolve("tree-sitter-wasms/package.json");
-  const path31 = await import("path");
-  const pkgDir = path31.dirname(pkgPath);
-  return path31.join(pkgDir, "out", `${grammarName}.wasm`);
+  const path34 = await import("path");
+  const pkgDir = path34.dirname(pkgPath);
+  return path34.join(pkgDir, "out", `${grammarName}.wasm`);
 }
 async function loadLanguage(lang) {
   const grammarName = GRAMMAR_MAP[lang];
@@ -13012,6 +13160,27 @@ function aggregateByDay(records) {
 // src/usage/jsonl-reader.ts
 import * as fs30 from "fs";
 import * as path29 from "path";
+function extractTokenUsage(entry, lineNumber) {
+  const tokenUsage = entry.token_usage;
+  if (!tokenUsage || typeof tokenUsage !== "object") {
+    console.warn(
+      `[harness usage] Skipping malformed JSONL line ${lineNumber}: missing token_usage`
+    );
+    return null;
+  }
+  return tokenUsage;
+}
+function applyOptionalFields2(record, entry) {
+  if (entry.cache_creation_tokens != null) {
+    record.cacheCreationTokens = entry.cache_creation_tokens;
+  }
+  if (entry.cache_read_tokens != null) {
+    record.cacheReadTokens = entry.cache_read_tokens;
+  }
+  if (entry.model != null) {
+    record.model = entry.model;
+  }
+}
 function parseLine(line, lineNumber) {
   let entry;
   try {
@@ -13020,13 +13189,8 @@ function parseLine(line, lineNumber) {
     console.warn(`[harness usage] Skipping malformed JSONL line ${lineNumber}`);
     return null;
   }
-  const tokenUsage = entry.token_usage;
-  if (!tokenUsage || typeof tokenUsage !== "object") {
-    console.warn(
-      `[harness usage] Skipping malformed JSONL line ${lineNumber}: missing token_usage`
-    );
-    return null;
-  }
+  const tokenUsage = extractTokenUsage(entry, lineNumber);
+  if (!tokenUsage) return null;
   const inputTokens = tokenUsage.input_tokens ?? 0;
   const outputTokens = tokenUsage.output_tokens ?? 0;
   const record = {
@@ -13038,15 +13202,7 @@ function parseLine(line, lineNumber) {
       totalTokens: inputTokens + outputTokens
     }
   };
-  if (entry.cache_creation_tokens != null) {
-    record.cacheCreationTokens = entry.cache_creation_tokens;
-  }
-  if (entry.cache_read_tokens != null) {
-    record.cacheReadTokens = entry.cache_read_tokens;
-  }
-  if (entry.model != null) {
-    record.model = entry.model;
-  }
+  applyOptionalFields2(record, entry);
   return record;
 }
 function readCostRecords(projectRoot) {
@@ -13081,6 +13237,14 @@ function extractUsage(entry) {
   const usage = message.usage;
   return usage && typeof usage === "object" && !Array.isArray(usage) ? usage : null;
 }
+function applyOptionalCCFields(record, message, usage) {
+  const model = message.model;
+  if (model) record.model = model;
+  const cacheCreate = usage.cache_creation_input_tokens;
+  const cacheRead = usage.cache_read_input_tokens;
+  if (typeof cacheCreate === "number" && cacheCreate > 0) record.cacheCreationTokens = cacheCreate;
+  if (typeof cacheRead === "number" && cacheRead > 0) record.cacheReadTokens = cacheRead;
+}
 function buildRecord(entry, usage) {
   const inputTokens = Number(usage.input_tokens) || 0;
   const outputTokens = Number(usage.output_tokens) || 0;
@@ -13091,12 +13255,7 @@ function buildRecord(entry, usage) {
     tokens: { inputTokens, outputTokens, totalTokens: inputTokens + outputTokens },
     _source: "claude-code"
   };
-  const model = message.model;
-  if (model) record.model = model;
-  const cacheCreate = usage.cache_creation_input_tokens;
-  const cacheRead = usage.cache_read_input_tokens;
-  if (typeof cacheCreate === "number" && cacheCreate > 0) record.cacheCreationTokens = cacheCreate;
-  if (typeof cacheRead === "number" && cacheRead > 0) record.cacheReadTokens = cacheRead;
+  applyOptionalCCFields(record, message, usage);
   return record;
 }
 function parseCCLine(line, filePath, lineNumber) {
@@ -13163,13 +13322,457 @@ function parseCCRecords() {
   return records;
 }
 
-// src/index.ts
-var VERSION = "0.15.0";
+// src/adoption/reader.ts
+import * as fs32 from "fs";
+import * as path31 from "path";
+function parseLine2(line, lineNumber) {
+  try {
+    const parsed = JSON.parse(line);
+    if (typeof parsed.skill !== "string" || typeof parsed.startedAt !== "string" || typeof parsed.duration !== "number" || typeof parsed.outcome !== "string" || !Array.isArray(parsed.phasesReached)) {
+      process.stderr.write(
+        `[harness adoption] Skipping malformed JSONL line ${lineNumber}: missing required fields
+`
+      );
+      return null;
+    }
+    return parsed;
+  } catch {
+    process.stderr.write(`[harness adoption] Skipping malformed JSONL line ${lineNumber}
+`);
+    return null;
+  }
+}
+function readAdoptionRecords(projectRoot) {
+  const adoptionFile = path31.join(projectRoot, ".harness", "metrics", "adoption.jsonl");
+  let raw;
+  try {
+    raw = fs32.readFileSync(adoptionFile, "utf-8");
+  } catch {
+    return [];
+  }
+  const records = [];
+  const lines = raw.split("\n");
+  for (let i = 0; i < lines.length; i++) {
+    const line = lines[i]?.trim();
+    if (!line) continue;
+    const record = parseLine2(line, i + 1);
+    if (record) {
+      records.push(record);
+    }
+  }
+  return records;
+}
+
+// src/adoption/aggregator.ts
+function aggregateBySkill(records) {
+  if (records.length === 0) return [];
+  const skillMap = /* @__PURE__ */ new Map();
+  for (const record of records) {
+    if (!skillMap.has(record.skill)) {
+      const entry = { records: [] };
+      if (record.tier != null) entry.tier = record.tier;
+      skillMap.set(record.skill, entry);
+    }
+    skillMap.get(record.skill).records.push(record);
+  }
+  const results = [];
+  for (const [skill, bucket] of skillMap) {
+    const invocations = bucket.records.length;
+    const completedCount = bucket.records.filter((r) => r.outcome === "completed").length;
+    const totalDuration = bucket.records.reduce((sum, r) => sum + r.duration, 0);
+    const timestamps = bucket.records.map((r) => r.startedAt).sort();
+    const summary = {
+      skill,
+      invocations,
+      successRate: completedCount / invocations,
+      avgDuration: totalDuration / invocations,
+      lastUsed: timestamps[timestamps.length - 1]
+    };
+    if (bucket.tier != null) summary.tier = bucket.tier;
+    results.push(summary);
+  }
+  results.sort((a, b) => b.invocations - a.invocations);
+  return results;
+}
+function aggregateByDay2(records) {
+  if (records.length === 0) return [];
+  const dayMap = /* @__PURE__ */ new Map();
+  for (const record of records) {
+    const date = record.startedAt.slice(0, 10);
+    if (!dayMap.has(date)) {
+      dayMap.set(date, { invocations: 0, skills: /* @__PURE__ */ new Set() });
+    }
+    const bucket = dayMap.get(date);
+    bucket.invocations++;
+    bucket.skills.add(record.skill);
+  }
+  const results = [];
+  for (const [date, bucket] of dayMap) {
+    results.push({
+      date,
+      invocations: bucket.invocations,
+      uniqueSkills: bucket.skills.size
+    });
+  }
+  results.sort((a, b) => b.date.localeCompare(a.date));
+  return results;
+}
+function topSkills(records, n) {
+  return aggregateBySkill(records).slice(0, n);
+}
+
+// src/compaction/strategies/structural.ts
+function isEmptyObject(v) {
+  return typeof v === "object" && v !== null && !Array.isArray(v) && Object.keys(v).length === 0;
+}
+function isRetainable(v) {
+  return v !== void 0 && v !== "" && v !== null && !isEmptyObject(v);
+}
+function cleanArray(value) {
+  const cleaned = value.map(cleanValue).filter(isRetainable);
+  if (cleaned.length === 0) return void 0;
+  if (cleaned.length === 1) return cleaned[0];
+  return cleaned;
+}
+function cleanRecord(value) {
+  const cleaned = {};
+  for (const [k, v] of Object.entries(value)) {
+    const result = cleanValue(v);
+    if (isRetainable(result)) {
+      cleaned[k] = result;
+    }
+  }
+  if (Object.keys(cleaned).length === 0) return void 0;
+  return cleaned;
+}
+function cleanValue(value) {
+  if (value === null || value === void 0) return void 0;
+  if (typeof value === "string") return value.replace(/\s+/g, " ").trim();
+  if (Array.isArray(value)) return cleanArray(value);
+  if (typeof value === "object") return cleanRecord(value);
+  return value;
+}
+var StructuralStrategy = class {
+  name = "structural";
+  lossy = false;
+  apply(content, _budget) {
+    let parsed;
+    try {
+      parsed = JSON.parse(content);
+    } catch {
+      return content;
+    }
+    const cleaned = cleanValue(parsed);
+    return JSON.stringify(cleaned) ?? "";
+  }
+};
+
+// src/compaction/strategies/truncation.ts
+var DEFAULT_TOKEN_BUDGET = 4e3;
+var CHARS_PER_TOKEN = 4;
+var TRUNCATION_MARKER = "\n[truncated \u2014 prioritized truncation applied]";
+function lineScore(line) {
+  let score = 0;
+  if (/\/[\w./-]/.test(line)) score += 40;
+  if (/error|Error|ERROR|fail|FAIL|status/i.test(line)) score += 35;
+  if (/\b[A-Z][a-z]+[A-Z]/.test(line) || /\b[a-z]+[A-Z]/.test(line)) score += 20;
+  if (line.trim().length < 40) score += 10;
+  return score;
+}
+function selectLines(lines, charBudget) {
+  const scored = lines.map((line, idx) => ({ line, idx, score: lineScore(line) }));
+  scored.sort((a, b) => b.score - a.score || a.idx - b.idx);
+  const kept = [];
+  let used = 0;
+  for (const item of scored) {
+    const lineLen = item.line.length + 1;
+    if (used + lineLen > charBudget) continue;
+    kept.push({ line: item.line, idx: item.idx });
+    used += lineLen;
+  }
+  kept.sort((a, b) => a.idx - b.idx);
+  return kept;
+}
+var TruncationStrategy = class {
+  name = "truncate";
+  lossy = false;
+  // deliberate: spec Decision 2 — truncation is classified lossless at the pipeline level
+  apply(content, budget = DEFAULT_TOKEN_BUDGET) {
+    if (!content) return content;
+    const charBudget = budget * CHARS_PER_TOKEN;
+    if (content.length <= charBudget) return content;
+    const lines = content.split("\n");
+    const available = charBudget - TRUNCATION_MARKER.length;
+    const kept = available > 0 ? selectLines(lines, available) : [{ line: (lines[0] ?? "").slice(0, charBudget), idx: 0 }];
+    return kept.map((k) => k.line).join("\n") + TRUNCATION_MARKER;
+  }
+};
+
+// src/compaction/pipeline.ts
+var CompactionPipeline = class {
+  strategies;
+  constructor(strategies) {
+    this.strategies = strategies;
+  }
+  /** The ordered list of strategy names in this pipeline. */
+  get strategyNames() {
+    return this.strategies.map((s) => s.name);
+  }
+  /**
+   * Apply all strategies in order.
+   * @param content — input string
+   * @param budget — optional token budget forwarded to each strategy
+   */
+  apply(content, budget) {
+    return this.strategies.reduce((current, strategy) => {
+      return strategy.apply(current, budget);
+    }, content);
+  }
+};
+
+// src/caching/stability.ts
+import { NODE_STABILITY } from "@harness-engineering/graph";
+var STABILITY_LOOKUP = {};
+for (const [key, tier] of Object.entries(NODE_STABILITY)) {
+  STABILITY_LOOKUP[key] = tier;
+  STABILITY_LOOKUP[key.toLowerCase()] = tier;
+}
+STABILITY_LOOKUP["packed_summary"] = "session";
+STABILITY_LOOKUP["skill"] = "static";
+function resolveStability(contentType) {
+  return STABILITY_LOOKUP[contentType] ?? "ephemeral";
+}
+
+// src/caching/adapters/anthropic.ts
+var TIER_ORDER = {
+  static: 0,
+  session: 1,
+  ephemeral: 2
+};
+var AnthropicCacheAdapter = class {
+  provider = "claude";
+  wrapSystemBlock(content, stability) {
+    if (stability === "ephemeral") {
+      return { type: "text", text: content };
+    }
+    const ttl = stability === "static" ? "1h" : void 0;
+    return {
+      type: "text",
+      text: content,
+      cache_control: {
+        type: "ephemeral",
+        ...ttl !== void 0 && { ttl }
+      }
+    };
+  }
+  wrapTools(tools, stability) {
+    if (tools.length === 0 || stability === "ephemeral") {
+      return { tools: tools.map((t) => ({ ...t })) };
+    }
+    const wrapped = tools.map((t) => ({ ...t }));
+    const last = wrapped[wrapped.length - 1];
+    if (last) {
+      last.cache_control = { type: "ephemeral" };
+    }
+    return { tools: wrapped };
+  }
+  orderContent(blocks) {
+    return [...blocks].sort((a, b) => TIER_ORDER[a.stability] - TIER_ORDER[b.stability]);
+  }
+  parseCacheUsage(response) {
+    const resp = response;
+    const usage = resp?.usage;
+    return {
+      cacheCreationTokens: usage?.cache_creation_input_tokens ?? 0,
+      cacheReadTokens: usage?.cache_read_input_tokens ?? 0
+    };
+  }
+};
+
+// src/caching/adapters/openai.ts
+var TIER_ORDER2 = {
+  static: 0,
+  session: 1,
+  ephemeral: 2
+};
+var OpenAICacheAdapter = class {
+  provider = "openai";
+  wrapSystemBlock(content, _stability) {
+    return { type: "text", text: content };
+  }
+  wrapTools(tools, _stability) {
+    return { tools: tools.map((t) => ({ ...t })) };
+  }
+  orderContent(blocks) {
+    return [...blocks].sort((a, b) => TIER_ORDER2[a.stability] - TIER_ORDER2[b.stability]);
+  }
+  parseCacheUsage(response) {
+    const resp = response;
+    const usage = resp?.usage;
+    const details = usage?.prompt_tokens_details;
+    return {
+      cacheCreationTokens: 0,
+      cacheReadTokens: details?.cached_tokens ?? 0
+    };
+  }
+};
+
+// src/caching/adapters/gemini.ts
+var TIER_ORDER3 = {
+  static: 0,
+  session: 1,
+  ephemeral: 2
+};
+var CACHED_CONTENT_MARKER = "cachedContents:pending";
+var GeminiCacheAdapter = class {
+  provider = "gemini";
+  wrapSystemBlock(content, stability) {
+    if (stability === "static") {
+      return {
+        type: "text",
+        text: content,
+        cachedContentRef: CACHED_CONTENT_MARKER
+      };
+    }
+    return { type: "text", text: content };
+  }
+  wrapTools(tools, _stability) {
+    return { tools: tools.map((t) => ({ ...t })) };
+  }
+  orderContent(blocks) {
+    return [...blocks].sort((a, b) => TIER_ORDER3[a.stability] - TIER_ORDER3[b.stability]);
+  }
+  parseCacheUsage(response) {
+    const resp = response;
+    const metadata = resp?.usageMetadata;
+    return {
+      cacheCreationTokens: 0,
+      cacheReadTokens: metadata?.cachedContentTokenCount ?? 0
+    };
+  }
+};
+
+// src/telemetry/consent.ts
+import * as fs34 from "fs";
+import * as path33 from "path";
+
+// src/telemetry/install-id.ts
+import * as fs33 from "fs";
+import * as path32 from "path";
+import * as crypto4 from "crypto";
+function getOrCreateInstallId(projectRoot) {
+  const harnessDir = path32.join(projectRoot, ".harness");
+  const installIdFile = path32.join(harnessDir, ".install-id");
+  const UUID_V4_RE = /^[0-9a-f]{8}-[0-9a-f]{4}-4[0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}$/i;
+  try {
+    const existing = fs33.readFileSync(installIdFile, "utf-8").trim();
+    if (UUID_V4_RE.test(existing)) {
+      return existing;
+    }
+  } catch {
+  }
+  const id = crypto4.randomUUID();
+  fs33.mkdirSync(harnessDir, { recursive: true });
+  fs33.writeFileSync(installIdFile, id, { encoding: "utf-8", mode: 384 });
+  return id;
+}
+
+// src/telemetry/consent.ts
+function readIdentity(projectRoot) {
+  const filePath = path33.join(projectRoot, ".harness", "telemetry.json");
+  try {
+    const raw = fs34.readFileSync(filePath, "utf-8");
+    const parsed = JSON.parse(raw);
+    if (parsed && typeof parsed === "object" && parsed.identity) {
+      const { project, team, alias } = parsed.identity;
+      const identity = {};
+      if (typeof project === "string") identity.project = project;
+      if (typeof team === "string") identity.team = team;
+      if (typeof alias === "string") identity.alias = alias;
+      return identity;
+    }
+    return {};
+  } catch {
+    return {};
+  }
+}
+function resolveConsent(projectRoot, config) {
+  if (process.env.DO_NOT_TRACK === "1") return { allowed: false };
+  if (process.env.HARNESS_TELEMETRY_OPTOUT === "1") return { allowed: false };
+  const enabled = config?.enabled ?? true;
+  if (!enabled) return { allowed: false };
+  const installId = getOrCreateInstallId(projectRoot);
+  const identity = readIdentity(projectRoot);
+  return { allowed: true, installId, identity };
+}
+
+// src/version.ts
+var VERSION = "0.21.3";
+
+// src/telemetry/collector.ts
+function mapOutcome(outcome) {
+  return outcome === "completed" ? "success" : "failure";
+}
+function collectEvents(projectRoot, consent) {
+  const records = readAdoptionRecords(projectRoot);
+  if (records.length === 0) return [];
+  const { installId, identity } = consent;
+  const distinctId = identity.alias ?? installId;
+  return records.map(
+    (record) => ({
+      event: "skill_invocation",
+      distinctId,
+      timestamp: record.startedAt,
+      properties: {
+        installId,
+        os: process.platform,
+        nodeVersion: process.version,
+        harnessVersion: VERSION,
+        skillName: record.skill,
+        duration: record.duration,
+        outcome: mapOutcome(record.outcome),
+        phasesReached: record.phasesReached,
+        ...identity.project ? { project: identity.project } : {},
+        ...identity.team ? { team: identity.team } : {}
+      }
+    })
+  );
+}
+
+// src/telemetry/transport.ts
+var POSTHOG_BATCH_URL = "https://app.posthog.com/batch";
+var MAX_ATTEMPTS = 3;
+var TIMEOUT_MS = 5e3;
+function sleep2(ms) {
+  return new Promise((resolve5) => setTimeout(resolve5, ms));
+}
+async function send(events, apiKey) {
+  if (events.length === 0) return;
+  const payload = { api_key: apiKey, batch: events };
+  const body = JSON.stringify(payload);
+  for (let attempt = 0; attempt < MAX_ATTEMPTS; attempt++) {
+    try {
+      const res = await fetch(POSTHOG_BATCH_URL, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body,
+        signal: AbortSignal.timeout(TIMEOUT_MS)
+      });
+      if (res.ok) return;
+      if (res.status < 500) return;
+    } catch {
+    }
+    if (attempt < MAX_ATTEMPTS - 1) {
+      await sleep2(1e3 * (attempt + 1));
+    }
+  }
+}
 export {
   AGENT_DESCRIPTORS,
   ARCHITECTURE_DESCRIPTOR,
   AdjustedForecastSchema,
   AgentActionEmitter,
+  AnthropicCacheAdapter,
   ArchBaselineManager,
   ArchBaselineSchema,
   ArchConfigSchema,
@@ -13189,12 +13792,12 @@ export {
   CategorySnapshotSchema,
   ChecklistBuilder,
   CircularDepsCollector,
+  CompactionPipeline,
   ComplexityCollector,
   ConfidenceTierSchema,
   ConfirmationSchema,
   ConsoleSink,
   ConstraintRuleSchema,
-  ContentPipeline,
   ContributingFeatureSchema,
   ContributionsSchema,
   CouplingCollector,
@@ -13204,6 +13807,7 @@ export {
   DEFAULT_STABILITY_THRESHOLDS,
   DEFAULT_STATE,
   DEFAULT_STREAM_INDEX,
+  DEFAULT_TOKEN_BUDGET,
   DESTRUCTIVE_BASH,
   DepDepthCollector,
   DirectionSchema,
@@ -13217,6 +13821,7 @@ export {
   ForbiddenImportCollector,
   GateConfigSchema,
   GateResultSchema,
+  GeminiCacheAdapter,
   GitHubIssuesSyncAdapter,
   HandoffSchema,
   HarnessStateSchema,
@@ -13231,6 +13836,7 @@ export {
   NoOpExecutor,
   NoOpSink,
   NoOpTelemetryAdapter,
+  OpenAICacheAdapter,
   PatternConfigSchema,
   PredictionEngine,
   PredictionOptionsSchema,
@@ -13258,6 +13864,7 @@ export {
   StabilityForecastSchema,
   StreamIndexSchema,
   StreamInfoSchema,
+  StructuralStrategy,
   ThresholdConfigSchema,
   TimelineFileSchema,
   TimelineManager,
@@ -13265,13 +13872,16 @@ export {
   TransitionSchema,
   TrendLineSchema,
   TrendResultSchema,
+  TruncationStrategy,
   TypeScriptParser,
   VERSION,
   ViolationSchema,
   addProvenance,
   agentConfigRules,
+  aggregateByDay2 as aggregateAdoptionByDay,
   aggregateByDay,
   aggregateBySession,
+  aggregateBySkill,
   analyzeDiff,
   analyzeLearningPatterns,
   appendFailure,
@@ -13303,6 +13913,7 @@ export {
   clearFailuresCache,
   clearLearningsCache,
   clearTaint,
+  collectEvents,
   computeContentHash,
   computeOverallSeverity,
   computeScanExitCode,
@@ -13342,6 +13953,7 @@ export {
   determineAssessment,
   diff,
   emitEvent,
+  estimateTokens,
   executeWorkflow,
   expressRules,
   extractBundle,
@@ -13363,6 +13975,7 @@ export {
   getFeedbackConfig,
   getInjectionPatterns,
   getModelPrice,
+  getOrCreateInstallId,
   getOutline,
   getParser,
   getPhaseCategories,
@@ -13415,8 +14028,10 @@ export {
   promoteSessionLearnings,
   pruneLearnings,
   reactRules,
+  readAdoptionRecords,
   readCheckState,
   readCostRecords,
+  readIdentity,
   readLockfile,
   readSessionSection,
   readSessionSections,
@@ -13427,11 +14042,13 @@ export {
   requestPeerReview,
   resetFeedbackConfig,
   resetParserCache,
+  resolveConsent,
   resolveFileToLayer,
   resolveModelTier,
   resolveReverseStatus,
   resolveRuleSeverity,
   resolveSessionDir,
+  resolveStability,
   resolveStreamPath,
   resolveThresholds,
   runAll,
@@ -13453,6 +14070,8 @@ export {
   scoreRoadmapCandidates,
   searchSymbols,
   secretRules,
+  send,
+  serializeEnvelope,
   serializeRoadmap,
   setActiveStream,
   sharpEdgesRules,
@@ -13463,6 +14082,7 @@ export {
   syncRoadmap,
   syncToExternal,
   tagUncitedFindings,
+  topSkills,
   touchStream,
   trackAction,
   unfoldRange,