@hiro-c/agent-gate 1.4.0 → 1.6.0

package/README.md

@@ -74,8 +74,9 @@ Full options: see [docs/config.md](docs/config.md) (TODO) or `AgentGatePluginCon
 |---|---|
 | `agent-gate` | Run as hook (reads stdin, used internally) |
 | `agent-gate install` / `uninstall` | Register or remove the Claude Code hook |
-| `agent-gate lint` | Audit instruction files for ambiguity, emptiness, missing rules |
+| `agent-gate lint [--ai]` | Audit instruction files for ambiguity, emptiness, missing rules. `--ai` adds AI-driven contradiction / ambiguity / missing-imperative checks |
 | `agent-gate stats` | Summarize the decision log (after `AGENT_GATE_LOG=1`) |
+| `agent-gate suggest` | Surface rule candidates from repeated AI blocks and stale built-in rules |
 | `agent-gate daemon` | Long-lived server on a Unix socket (opt-in speedup, set `AGENT_GATE_DAEMON=1`) |
 
 ## Environment

package/dist/cli/agent-gate.d.ts

@@ -7,6 +7,7 @@ interface ParsedArgs {
     agentId: string;
     showHelp: boolean;
     showVersion: boolean;
+    ai: boolean;
 }
 export declare function parseArgs(args: string[]): ParsedArgs;
 export {};

package/dist/cli/agent-gate.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"agent-gate.d.ts","sourceRoot":"","sources":["../../src/cli/agent-gate.ts"],"names":[],"mappings":";AAIA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAA;AAYtE,OAAO,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAA;AAuC7C,wBAAsB,GAAG,CACvB,KAAK,EAAE,MAAM,EACb,OAAO,CAAC,EAAE,OAAO,GAChB,OAAO,CAAC,gBAAgB,CAAC,CAE3B;AAuHD,UAAU,UAAU;IAClB,UAAU,EAAE,MAAM,EAAE,CAAA;IACpB,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE,OAAO,CAAA;IACjB,WAAW,EAAE,OAAO,CAAA;CACrB;AAED,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,UAAU,CAgCpD"}
+{"version":3,"file":"agent-gate.d.ts","sourceRoot":"","sources":["../../src/cli/agent-gate.ts"],"names":[],"mappings":";AAIA,OAAO,EAAE,gBAAgB,EAAE,MAAM,qCAAqC,CAAA;AAYtE,OAAO,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAA;AA+C7C,wBAAsB,GAAG,CACvB,KAAK,EAAE,MAAM,EACb,OAAO,CAAC,EAAE,OAAO,GAChB,OAAO,CAAC,gBAAgB,CAAC,CAE3B;AAuHD,UAAU,UAAU;IAClB,UAAU,EAAE,MAAM,EAAE,CAAA;IACpB,OAAO,EAAE,MAAM,CAAA;IACf,QAAQ,EAAE,OAAO,CAAA;IACjB,WAAW,EAAE,OAAO,CAAA;IACpB,EAAE,EAAE,OAAO,CAAA;CACZ;AAED,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,UAAU,CAqCpD"}

package/dist/cli/agent-gate.js

@@ -8,10 +8,16 @@ const processHookData_1 = require("../hooks/processHookData");
 const installer_1 = require("./installer");
 const adapters_1 = require("../adapters");
 const stats_1 = require("../observability/stats");
+const suggest_1 = require("../observability/suggest");
 const decisionLogger_1 = require("../observability/decisionLogger");
+const defaultRules_1 = require("../deterministic/defaultRules");
 const collectRuleSources_1 = require("../collector/collectRuleSources");
 const lintRuleSources_1 = require("../doctor/lintRuleSources");
+const lintRuleSourcesWithAi_1 = require("../doctor/lintRuleSourcesWithAi");
 const formatFindings_1 = require("../doctor/formatFindings");
+const Config_1 = require("../config/Config");
+const AnthropicApi_1 = require("../validation/models/AnthropicApi");
+const ClaudeCli_1 = require("../validation/models/ClaudeCli");
 const server_1 = require("../daemon/server");
 const client_1 = require("../daemon/client");
 const protocol_1 = require("../daemon/protocol");
@@ -24,7 +30,9 @@ Usage:
   agent-gate install                Register the hook in ~/.claude/settings.json
   agent-gate uninstall              Remove the hook from ~/.claude/settings.json
   agent-gate stats                  Summarize decisions from the log file
-  agent-gate lint                   Audit CLAUDE.md / AGENTS.md / etc. for AI-friendliness
+  agent-gate suggest                Surface rule candidates and stale rules from the decision log
+  agent-gate lint [--ai]            Audit CLAUDE.md / AGENTS.md / etc. for AI-friendliness
+                                    (--ai adds AI-driven contradiction / ambiguity / missing-imperative checks)
   agent-gate daemon                 Start the long-lived daemon (Unix socket)
   agent-gate --help                 Show this help
   agent-gate --version              Show version
@@ -146,6 +154,7 @@ function parseArgs(args) {
     let agentId = adapters_1.DEFAULT_ADAPTER_ID;
     let showHelp = false;
     let showVersion = false;
+    let ai = false;
     const positional = [];
     for (let i = 0; i < args.length; i++) {
         const a = args[i];
@@ -161,6 +170,10 @@ function parseArgs(args) {
             agentId = a.slice('--agent='.length);
             continue;
         }
+        if (a === '--ai') {
+            ai = true;
+            continue;
+        }
         if (a === '--help' || a === '-h' || a === 'help') {
             showHelp = true;
             continue;
@@ -171,7 +184,7 @@ function parseArgs(args) {
         }
         positional.push(a);
     }
-    return { positional, agentId, showHelp, showVersion };
+    return { positional, agentId, showHelp, showVersion, ai };
 }
 function main() {
     const parsedArgs = parseArgs(process.argv.slice(2));
@@ -202,8 +215,11 @@ function main() {
         case 'stats':
             runStats();
             return;
+        case 'suggest':
+            runSuggest();
+            return;
         case 'lint':
-            runLint();
+            void runLint(parsedArgs.ai);
             return;
         case 'daemon':
             void runDaemon();
@@ -218,13 +234,33 @@ function runStats() {
     const stats = (0, stats_1.readStats)((0, decisionLogger_1.defaultLogPath)());
     console.log((0, stats_1.formatStats)(stats));
 }
-function runLint() {
-    const sources = (0, collectRuleSources_1.collectRuleSources)(process.cwd());
+function runSuggest() {
+    const windowDays = parseInt(process.env.AGENT_GATE_SUGGEST_WINDOW_DAYS ?? '7', 10);
+    const minPatternCount = parseInt(process.env.AGENT_GATE_SUGGEST_MIN_COUNT ?? '3', 10);
+    const knownRuleIds = defaultRules_1.defaultDeterministicRules.map((r) => r.id);
+    const suggestions = (0, suggest_1.suggestRules)((0, decisionLogger_1.defaultLogPath)(), {
+        windowDays: Number.isNaN(windowDays) ? 7 : windowDays,
+        minPatternCount: Number.isNaN(minPatternCount) ? 3 : minPatternCount,
+        knownRuleIds,
+    });
+    console.log((0, suggest_1.formatSuggestions)(suggestions));
+}
+async function runLint(useAi) {
+    const cwd = process.cwd();
+    const sources = (0, collectRuleSources_1.collectRuleSources)(cwd);
     if (sources.length === 0) {
         console.log('No instruction files found (looked for CLAUDE.md, AGENTS.md, .cursorrules, .cursor/rules/*.mdc, .clinerules/*.md, .windsurf/rules/*.md, .github/copilot-instructions.md, CONVENTIONS.md).');
         return;
     }
     const findings = (0, lintRuleSources_1.lintRuleSources)(sources);
+    if (useAi) {
+        const config = new Config_1.Config();
+        const client = config.useApi
+            ? new AnthropicApi_1.AnthropicApi(config)
+            : new ClaudeCli_1.ClaudeCli(config, cwd);
+        const aiFindings = await (0, lintRuleSourcesWithAi_1.lintRuleSourcesWithAi)(sources, client);
+        findings.push(...aiFindings);
+    }
     console.log((0, formatFindings_1.formatFindings)(findings));
     const hasError = findings.some((f) => f.severity === 'error');
     if (hasError) {

package/dist/doctor/findings.d.ts

@@ -1,6 +1,6 @@
 import { RuleSourceKind } from '../contracts/types/RuleSource';
 export type Severity = 'info' | 'warning' | 'error';
-export type FindingCode = 'empty-file' | 'ambiguous-modifier' | 'no-concrete-rules';
+export type FindingCode = 'empty-file' | 'ambiguous-modifier' | 'no-concrete-rules' | 'ambiguity' | 'contradiction' | 'missing-imperative';
 export interface Finding {
     ruleSourcePath: string;
     ruleSourceKind: RuleSourceKind;

package/dist/doctor/findings.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"findings.d.ts","sourceRoot":"","sources":["../../src/doctor/findings.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAA;AAE9D,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,SAAS,GAAG,OAAO,CAAA;AAEnD,MAAM,MAAM,WAAW,GACnB,YAAY,GACZ,oBAAoB,GACpB,mBAAmB,CAAA;AAEvB,MAAM,WAAW,OAAO;IACtB,cAAc,EAAE,MAAM,CAAA;IACtB,cAAc,EAAE,cAAc,CAAA;IAC9B,QAAQ,EAAE,QAAQ,CAAA;IAClB,IAAI,EAAE,WAAW,CAAA;IACjB,OAAO,EAAE,MAAM,CAAA;IACf,+DAA+D;IAC/D,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,4DAA4D;IAC5D,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB"}
+{"version":3,"file":"findings.d.ts","sourceRoot":"","sources":["../../src/doctor/findings.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAA;AAE9D,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,SAAS,GAAG,OAAO,CAAA;AAEnD,MAAM,MAAM,WAAW,GACnB,YAAY,GACZ,oBAAoB,GACpB,mBAAmB,GACnB,WAAW,GACX,eAAe,GACf,oBAAoB,CAAA;AAExB,MAAM,WAAW,OAAO;IACtB,cAAc,EAAE,MAAM,CAAA;IACtB,cAAc,EAAE,cAAc,CAAA;IAC9B,QAAQ,EAAE,QAAQ,CAAA;IAClB,IAAI,EAAE,WAAW,CAAA;IACjB,OAAO,EAAE,MAAM,CAAA;IACf,+DAA+D;IAC/D,IAAI,CAAC,EAAE,MAAM,CAAA;IACb,4DAA4D;IAC5D,OAAO,CAAC,EAAE,MAAM,CAAA;CACjB"}

package/dist/doctor/lintRuleSourcesWithAi.d.ts

@@ -0,0 +1,5 @@
+import { RuleSource } from '../contracts/types/RuleSource';
+import { IModelClient } from '../contracts/types/ModelClient';
+import { Finding } from './findings';
+export declare function lintRuleSourcesWithAi(sources: RuleSource[], client: IModelClient): Promise<Finding[]>;
+//# sourceMappingURL=lintRuleSourcesWithAi.d.ts.map

package/dist/doctor/lintRuleSourcesWithAi.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"lintRuleSourcesWithAi.d.ts","sourceRoot":"","sources":["../../src/doctor/lintRuleSourcesWithAi.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAkB,MAAM,+BAA+B,CAAA;AAC1E,OAAO,EAAE,YAAY,EAAE,MAAM,gCAAgC,CAAA;AAC7D,OAAO,EAAE,OAAO,EAAyB,MAAM,YAAY,CAAA;AA8E3D,wBAAsB,qBAAqB,CACzC,OAAO,EAAE,UAAU,EAAE,EACrB,MAAM,EAAE,YAAY,GACnB,OAAO,CAAC,OAAO,EAAE,CAAC,CA4CpB"}

package/dist/doctor/lintRuleSourcesWithAi.js

@@ -0,0 +1,111 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.lintRuleSourcesWithAi = lintRuleSourcesWithAi;
+const PROMPT_HEADER = `You are auditing AI agent instruction files for issues that
+make rules hard for an AI to enforce reliably. Look at the sources below
+and report any of the following:
+
+- "contradiction": two or more rules across one or more files that
+  conflict. Cite both/all sides in the excerpt.
+- "ambiguity": a rule that uses vague language (e.g. "where possible",
+  "as needed", "appropriately") with no concrete threshold or condition.
+- "missing-imperative": a rule expressed as a wish or description rather
+  than an imperative the AI can act on.
+
+Respond as a JSON array of objects with this shape:
+[
+  {
+    "code": "contradiction" | "ambiguity" | "missing-imperative",
+    "ruleSourcePath": "<one of the paths shown>",
+    "line": <1-indexed line number in that file, or null>,
+    "message": "<concise explanation>",
+    "excerpt": "<short literal text from the file>"
+  }
+]
+
+If there are no issues, respond with []. Output ONLY the JSON array. No
+markdown, no prose, no commentary.`;
+const ALLOWED_CODES = [
+    'ambiguity',
+    'contradiction',
+    'missing-imperative',
+];
+const CODE_SEVERITY = {
+    'empty-file': 'warning',
+    'ambiguous-modifier': 'info',
+    'no-concrete-rules': 'warning',
+    ambiguity: 'info',
+    contradiction: 'warning',
+    'missing-imperative': 'info',
+};
+function buildPrompt(sources) {
+    const blocks = sources.map((s) => `--- path: ${s.path} (kind: ${s.kind}) ---\n${s.content}`);
+    return `${PROMPT_HEADER}\n\n${blocks.join('\n\n')}`;
+}
+function extractJsonArray(raw) {
+    const trimmed = raw.trim();
+    if (trimmed.startsWith('['))
+        return trimmed;
+    // Code fence variants
+    const fenced = trimmed.match(/```(?:json)?\s*\n([\s\S]*?)\n```/);
+    if (fenced)
+        return fenced[1].trim();
+    // Plain extraction: first [ to last ]
+    const start = trimmed.indexOf('[');
+    const end = trimmed.lastIndexOf(']');
+    if (start !== -1 && end > start)
+        return trimmed.slice(start, end + 1);
+    return null;
+}
+function pathToKind(path, sources) {
+    const match = sources.find((s) => s.path === path);
+    return match ? match.kind : null;
+}
+async function lintRuleSourcesWithAi(sources, client) {
+    if (sources.length === 0)
+        return [];
+    let response;
+    try {
+        response = await client.ask(buildPrompt(sources));
+    }
+    catch {
+        return [];
+    }
+    const jsonStr = extractJsonArray(response);
+    if (!jsonStr)
+        return [];
+    let parsed;
+    try {
+        parsed = JSON.parse(jsonStr);
+    }
+    catch {
+        return [];
+    }
+    if (!Array.isArray(parsed))
+        return [];
+    const findings = [];
+    for (const raw of parsed) {
+        if (!raw || typeof raw !== 'object')
+            continue;
+        const code = raw.code;
+        if (!code || !ALLOWED_CODES.includes(code))
+            continue;
+        if (typeof raw.ruleSourcePath !== 'string')
+            continue;
+        const kind = pathToKind(raw.ruleSourcePath, sources);
+        if (!kind)
+            continue;
+        findings.push({
+            ruleSourcePath: raw.ruleSourcePath,
+            ruleSourceKind: kind,
+            severity: CODE_SEVERITY[code],
+            code,
+            message: typeof raw.message === 'string' ? raw.message : '',
+            line: typeof raw.line === 'number' && Number.isFinite(raw.line)
+                ? raw.line
+                : undefined,
+            excerpt: typeof raw.excerpt === 'string' ? raw.excerpt : undefined,
+        });
+    }
+    return findings;
+}

package/dist/index.d.ts

@@ -23,6 +23,7 @@ export type { CompositeModelClientOptions } from './validation/models/CompositeM
 export { AgentSdkClient } from './validation/models/AgentSdkClient';
 export type { AgentSdkClientOptions, AgentSdkQueryFn, } from './validation/models/AgentSdkClient';
 export { lintRuleSources } from './doctor/lintRuleSources';
+export { lintRuleSourcesWithAi } from './doctor/lintRuleSourcesWithAi';
 export { formatFindings } from './doctor/formatFindings';
 export type { Finding, FindingCode, Severity, } from './doctor/findings';
 export { DecisionCache } from './cache/DecisionCache';
@@ -33,6 +34,8 @@ export { sendToDaemon } from './daemon/client';
 export type { SendToDaemonOptions } from './daemon/client';
 export { defaultSocketPath as defaultDaemonSocketPath, } from './daemon/protocol';
 export type { DaemonRequest, DaemonResponse, DaemonErrorResponse, } from './daemon/protocol';
+export { suggestRules, formatSuggestions } from './observability/suggest';
+export type { Suggestion, SuggestionKind, SuggestOptions, } from './observability/suggest';
 export { EventBus } from './observability/eventBus';
 export { JsonlFileSink } from './observability/sinks/JsonlFileSink';
 export type { PipelineEvent, RuleFiredEvent, AiRequestedEvent, AiCompletedEvent, VerdictDecidedEvent, PipelineErrorEvent, Sink, } from './observability/sinks/Sink';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAA;AACxC,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACpD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AACpD,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAA;AAClE,YAAY,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC/D,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAC9D,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAA;AAG9D,YAAY,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAA;AAC1E,YAAY,EAAE,QAAQ,EAAE,MAAM,4BAA4B,CAAA;AAC1D,YAAY,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAA;AACjE,YAAY,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAC9E,YAAY,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAA;AAClE,YAAY,EACV,cAAc,EACd,YAAY,GACb,MAAM,kCAAkC,CAAA;AAGzC,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AAGnE,YAAY,EACV,iBAAiB,EACjB,WAAW,GACZ,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,2BAA2B,CAAA;AAClC,OAAO,EACL,yBAAyB,EACzB,8BAA8B,GAC/B,MAAM,8BAA8B,CAAA;AAGrC,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAA;AAClE,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAA;AACzD,YAAY,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AAGrE,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAA;AAC/E,YAAY,EAAE,2BAA2B,EAAE,MAAM,0CAA0C,CAAA;AAC3F,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACnE,YAAY,EACV,qBAAqB,EACrB,eAAe,GAChB,MAAM,oCAAoC,CAAA;AAG3C,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAA;AACxD,YAAY,EACV,OAAO,EACP,WAAW,EACX,QAAQ,GACT,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAA;AACrD,YAAY,EACV,QAAQ,EACR,oBAAoB,GACrB,MAAM,uBAAuB,CAAA;AAG9B,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACzE,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAA;AAC1D,OAAO,EACL,iBAAiB,IAAI,uBAAuB,GAC7C,MAAM,mBAAmB,CAAA;AAC1B,YAAY,EACV,aAAa,EACb,cAAc,EACd,mBAAmB,GACpB,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,qCAAqC,CAAA;AACnE,YAAY,EACV,aAAa,EACb,cAAc,EACd,gBAAgB,EAChB,gBAAgB,EAChB,mBAAmB,EACnB,kBAAkB,EAClB,IAAI,GACL,MAAM,4BAA4B,CAAA;AAGnC,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAA;AACnE,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAA;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAA;AACxC,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACpD,OAAO,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAA;AACpD,YAAY,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAA;AAClE,YAAY,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC/D,OAAO,EAAE,mBAAmB,EAAE,MAAM,0BAA0B,CAAA;AAC9D,OAAO,EAAE,gBAAgB,EAAE,MAAM,6BAA6B,CAAA;AAG9D,YAAY,EAAE,gBAAgB,EAAE,MAAM,oCAAoC,CAAA;AAC1E,YAAY,EAAE,QAAQ,EAAE,MAAM,4BAA4B,CAAA;AAC1D,YAAY,EAAE,YAAY,EAAE,MAAM,+BAA+B,CAAA;AACjE,YAAY,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAA;AAC9E,YAAY,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAA;AAClE,YAAY,EACV,cAAc,EACd,YAAY,GACb,MAAM,kCAAkC,CAAA;AAGzC,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AAGnE,YAAY,EACV,iBAAiB,EACjB,WAAW,GACZ,MAAM,uBAAuB,CAAA;AAC9B,OAAO,EACL,oBAAoB,EACpB,oBAAoB,EACpB,qBAAqB,GACtB,MAAM,2BAA2B,CAAA;AAClC,OAAO,EACL,yBAAyB,EACzB,8BAA8B,GAC/B,MAAM,8BAA8B,CAAA;AAGrC,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAA;AAClE,OAAO,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAA;AACzD,YAAY,EAAE,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AAGrE,OAAO,EAAE,oBAAoB,EAAE,MAAM,0CAA0C,CAAA;AAC/E,YAAY,EAAE,2BAA2B,EAAE,MAAM,0CAA0C,CAAA;AAC3F,OAAO,EAAE,cAAc,EAAE,MAAM,oCAAoC,CAAA;AACnE,YAAY,EACV,qBAAqB,EACrB,eAAe,GAChB,MAAM,oCAAoC,CAAA;AAG3C,OAAO,EAAE,eAAe,EAAE,MAAM,0BAA0B,CAAA;AAC1D,OAAO,EAAE,qBAAqB,EAAE,MAAM,gCAAgC,CAAA;AACtE,OAAO,EAAE,cAAc,EAAE,MAAM,yBAAyB,CAAA;AACxD,YAAY,EACV,OAAO,EACP,WAAW,EACX,QAAQ,GACT,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAA;AACrD,YAAY,EACV,QAAQ,EACR,oBAAoB,GACrB,MAAM,uBAAuB,CAAA;AAG9B,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AACzE,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAA;AAC9C,YAAY,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAA;AAC1D,OAAO,EACL,iBAAiB,IAAI,uBAAuB,GAC7C,MAAM,mBAAmB,CAAA;AAC1B,YAAY,EACV,aAAa,EACb,cAAc,EACd,mBAAmB,GACpB,MAAM,mBAAmB,CAAA;AAG1B,OAAO,EAAE,YAAY,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAA;AACzE,YAAY,EACV,UAAU,EACV,cAAc,EACd,cAAc,GACf,MAAM,yBAAyB,CAAA;AAChC,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AACnD,OAAO,EAAE,aAAa,EAAE,MAAM,qCAAqC,CAAA;AACnE,YAAY,EACV,aAAa,EACb,cAAc,EACd,gBAAgB,EAChB,gBAAgB,EAChB,mBAAmB,EACnB,kBAAkB,EAClB,IAAI,GACL,MAAM,4BAA4B,CAAA;AAGnC,OAAO,EAAE,kBAAkB,EAAE,MAAM,gCAAgC,CAAA;AACnE,OAAO,EAAE,SAAS,EAAE,MAAM,wBAAwB,CAAA;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,yBAAyB,CAAA"}

package/dist/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.processHookData = exports.validator = exports.collectRuleSources = exports.JsonlFileSink = exports.EventBus = exports.defaultDaemonSocketPath = exports.sendToDaemon = exports.DaemonServer = exports.DecisionCache = exports.formatFindings = exports.lintRuleSources = exports.AgentSdkClient = exports.CompositeModelClient = exports.cursorAdapter = exports.claudeCodeAdapter = exports.buildDefaultDeterministicRules = exports.defaultDeterministicRules = exports.forbidFilePathPattern = exports.forbidContentPattern = exports.forbidCommandPattern = exports.HookDataSchema = exports.loadPluginConfig = exports.loadAgentGateConfig = exports.defineConfig = exports.Config = void 0;
+exports.processHookData = exports.validator = exports.collectRuleSources = exports.JsonlFileSink = exports.EventBus = exports.formatSuggestions = exports.suggestRules = exports.defaultDaemonSocketPath = exports.sendToDaemon = exports.DaemonServer = exports.DecisionCache = exports.formatFindings = exports.lintRuleSourcesWithAi = exports.lintRuleSources = exports.AgentSdkClient = exports.CompositeModelClient = exports.cursorAdapter = exports.claudeCodeAdapter = exports.buildDefaultDeterministicRules = exports.defaultDeterministicRules = exports.forbidFilePathPattern = exports.forbidContentPattern = exports.forbidCommandPattern = exports.HookDataSchema = exports.loadPluginConfig = exports.loadAgentGateConfig = exports.defineConfig = exports.Config = void 0;
 // Config
 var Config_1 = require("./config/Config");
 Object.defineProperty(exports, "Config", { enumerable: true, get: function () { return Config_1.Config; } });
@@ -33,6 +33,8 @@ Object.defineProperty(exports, "AgentSdkClient", { enumerable: true, get: functi
 // Doctor (CLAUDE.md linter)
 var lintRuleSources_1 = require("./doctor/lintRuleSources");
 Object.defineProperty(exports, "lintRuleSources", { enumerable: true, get: function () { return lintRuleSources_1.lintRuleSources; } });
+var lintRuleSourcesWithAi_1 = require("./doctor/lintRuleSourcesWithAi");
+Object.defineProperty(exports, "lintRuleSourcesWithAi", { enumerable: true, get: function () { return lintRuleSourcesWithAi_1.lintRuleSourcesWithAi; } });
 var formatFindings_1 = require("./doctor/formatFindings");
 Object.defineProperty(exports, "formatFindings", { enumerable: true, get: function () { return formatFindings_1.formatFindings; } });
 // Cache
@@ -46,6 +48,9 @@ Object.defineProperty(exports, "sendToDaemon", { enumerable: true, get: function
 var protocol_1 = require("./daemon/protocol");
 Object.defineProperty(exports, "defaultDaemonSocketPath", { enumerable: true, get: function () { return protocol_1.defaultSocketPath; } });
 // Observability
+var suggest_1 = require("./observability/suggest");
+Object.defineProperty(exports, "suggestRules", { enumerable: true, get: function () { return suggest_1.suggestRules; } });
+Object.defineProperty(exports, "formatSuggestions", { enumerable: true, get: function () { return suggest_1.formatSuggestions; } });
 var eventBus_1 = require("./observability/eventBus");
 Object.defineProperty(exports, "EventBus", { enumerable: true, get: function () { return eventBus_1.EventBus; } });
 var JsonlFileSink_1 = require("./observability/sinks/JsonlFileSink");

package/dist/observability/suggest.d.ts

@@ -0,0 +1,20 @@
+export type SuggestionKind = 'add-rule' | 'disable-rule' | 'maintain';
+export interface Suggestion {
+    kind: SuggestionKind;
+    toolName?: string;
+    reasonExcerpt?: string;
+    ruleId?: string;
+    count: number;
+    message: string;
+}
+export interface SuggestOptions {
+    /** Only consider log entries within this many days. */
+    windowDays: number;
+    /** Minimum repetitions before suggesting an add-rule. Default 3. */
+    minPatternCount?: number;
+    /** Known deterministic rule ids to evaluate for stale-rule suggestions. */
+    knownRuleIds?: string[];
+}
+export declare function suggestRules(logPath: string, options: SuggestOptions): Suggestion[];
+export declare function formatSuggestions(suggestions: Suggestion[]): string;
+//# sourceMappingURL=suggest.d.ts.map

package/dist/observability/suggest.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"suggest.d.ts","sourceRoot":"","sources":["../../src/observability/suggest.ts"],"names":[],"mappings":"AAGA,MAAM,MAAM,cAAc,GAAG,UAAU,GAAG,cAAc,GAAG,UAAU,CAAA;AAErE,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE,cAAc,CAAA;IACpB,QAAQ,CAAC,EAAE,MAAM,CAAA;IACjB,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,MAAM,CAAC,EAAE,MAAM,CAAA;IACf,KAAK,EAAE,MAAM,CAAA;IACb,OAAO,EAAE,MAAM,CAAA;CAChB;AAED,MAAM,WAAW,cAAc;IAC7B,uDAAuD;IACvD,UAAU,EAAE,MAAM,CAAA;IAClB,oEAAoE;IACpE,eAAe,CAAC,EAAE,MAAM,CAAA;IACxB,2EAA2E;IAC3E,YAAY,CAAC,EAAE,MAAM,EAAE,CAAA;CACxB;AAyCD,wBAAgB,YAAY,CAC1B,OAAO,EAAE,MAAM,EACf,OAAO,EAAE,cAAc,GACtB,UAAU,EAAE,CA2Dd;AAED,wBAAgB,iBAAiB,CAAC,WAAW,EAAE,UAAU,EAAE,GAAG,MAAM,CA0BnE"}

package/dist/observability/suggest.js

@@ -0,0 +1,125 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.suggestRules = suggestRules;
+exports.formatSuggestions = formatSuggestions;
+const fs_1 = require("fs");
+function readEntries(logPath) {
+    if (!(0, fs_1.existsSync)(logPath))
+        return [];
+    const content = (0, fs_1.readFileSync)(logPath, 'utf-8');
+    const out = [];
+    for (const line of content.split('\n')) {
+        const t = line.trim();
+        if (!t)
+            continue;
+        try {
+            out.push(JSON.parse(t));
+        }
+        catch {
+            // skip malformed
+        }
+    }
+    return out;
+}
+function withinWindow(timestamp, cutoff) {
+    const t = Date.parse(timestamp);
+    if (Number.isNaN(t))
+        return false;
+    return t >= cutoff;
+}
+function reasonKey(reason) {
+    // Group by the first ~80 chars of the reason; longer divergence
+    // probably reflects per-call detail, not a distinct pattern.
+    return reason.trim().slice(0, 80);
+}
+function trimExcerpt(reason) {
+    const trimmed = reason.trim();
+    return trimmed.length > 120 ? trimmed.slice(0, 117) + '...' : trimmed;
+}
+function suggestRules(logPath, options) {
+    const entries = readEntries(logPath);
+    if (entries.length === 0)
+        return [];
+    const cutoff = Date.now() - options.windowDays * 86400_000;
+    const recent = entries.filter((e) => typeof e.timestamp === 'string' && withinWindow(e.timestamp, cutoff));
+    const minCount = options.minPatternCount ?? 3;
+    const suggestions = [];
+    // add-rule: AI blocks that repeat
+    const buckets = new Map();
+    for (const e of recent) {
+        if (e.decision !== 'block')
+            continue;
+        if (e.source !== 'ai')
+            continue;
+        const key = `${e.toolName}::${reasonKey(e.reason)}`;
+        const existing = buckets.get(key);
+        if (existing) {
+            existing.count++;
+        }
+        else {
+            buckets.set(key, {
+                toolName: e.toolName,
+                reasonExcerpt: trimExcerpt(e.reason),
+                count: 1,
+            });
+        }
+    }
+    for (const b of buckets.values()) {
+        if (b.count < minCount)
+            continue;
+        suggestions.push({
+            kind: 'add-rule',
+            toolName: b.toolName,
+            reasonExcerpt: b.reasonExcerpt,
+            count: b.count,
+            message: `The AI has blocked ${b.count} ${b.toolName} calls with this reason. Consider promoting it to a deterministic rule to skip the AI roundtrip.`,
+        });
+    }
+    // disable-rule: known rules that did not fire in the window
+    if (options.knownRuleIds && options.knownRuleIds.length > 0) {
+        const firedRecent = new Set();
+        for (const e of recent) {
+            if (e.source === 'deterministic' && e.ruleId) {
+                firedRecent.add(e.ruleId);
+            }
+        }
+        for (const rid of options.knownRuleIds) {
+            if (firedRecent.has(rid))
+                continue;
+            suggestions.push({
+                kind: 'disable-rule',
+                ruleId: rid,
+                count: 0,
+                message: `Rule "${rid}" has not fired in the last ${options.windowDays} days. If your project never triggers it, you can disable it in .agent-gate.config.{ts,json} to reduce noise.`,
+            });
+        }
+    }
+    return suggestions;
+}
+function formatSuggestions(suggestions) {
+    if (suggestions.length === 0) {
+        return 'No suggestions. Nothing to do.';
+    }
+    const lines = [];
+    let i = 1;
+    for (const s of suggestions) {
+        if (s.kind === 'add-rule') {
+            lines.push(`${i}. [add-rule] ${s.toolName ?? '?'} blocked ${s.count} times`);
+            if (s.reasonExcerpt) {
+                lines.push(`   reason: ${s.reasonExcerpt}`);
+            }
+            lines.push(`   ${s.message}`);
+        }
+        else if (s.kind === 'disable-rule') {
+            lines.push(`${i}. [disable-rule] ${s.ruleId ?? '?'} (0 fires)`);
+            lines.push(`   ${s.message}`);
+        }
+        else {
+            lines.push(`${i}. [${s.kind}] ${s.message}`);
+        }
+        lines.push('');
+        i++;
+    }
+    lines.push(`${suggestions.length} suggestion${suggestions.length === 1 ? '' : 's'}.`);
+    return lines.join('\n');
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@hiro-c/agent-gate",
-  "version": "1.4.0",
+  "version": "1.6.0",
   "description": "Runtime rule enforcer for AI coding agents. Reads CLAUDE.md / AGENTS.md / .cursorrules and enforces them via Claude Code and Cursor hooks, with a deterministic safety baseline.",
   "author": "Hiro-Chiba",
   "license": "MIT",