@indicated/vibeguard 1.2.0 → 1.2.1

package/dist/mcp/server.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":"AAOA,wBAAsB,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC,CA2LpD"}
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":"AAoBA,wBAAsB,cAAc,IAAI,OAAO,CAAC,IAAI,CAAC,CAmOpD"}

package/dist/mcp/server.js

@@ -40,6 +40,24 @@ const zod_1 = require("zod");
 const path = __importStar(require("path"));
 const scanner_1 = require("../scanner");
 const definitions_1 = require("../scanner/rules/definitions");
+const license_1 = require("../api/license");
+function calculateGrade(counts) {
+    if (counts.critical > 0)
+        return 'F';
+    if (counts.high > 2)
+        return 'D';
+    if (counts.high > 0)
+        return 'C';
+    if (counts.medium > 3)
+        return 'C';
+    if (counts.medium > 0)
+        return 'B';
+    if (counts.low > 5)
+        return 'B';
+    if (counts.low > 0)
+        return 'A';
+    return 'A+';
+}
 async function startMcpServer() {
     const server = new mcp_js_1.McpServer({
         name: 'vibeguard',
@@ -51,24 +69,27 @@ async function startMcpServer() {
         staged_only: zod_1.z.boolean().optional().describe('If true, only scan git staged files'),
     }, async ({ paths, staged_only }) => {
         try {
+            const licenseKey = (0, license_1.getLicenseKey)();
             const scanner = new scanner_1.Scanner();
-            await scanner.initialize();
+            await scanner.initialize(licenseKey || undefined);
             const cwd = process.cwd();
             const targets = paths.map(p => path.resolve(cwd, p));
             const result = staged_only
                 ? await scanner.scanStaged()
                 : await scanner.scan(targets);
+            const userTier = scanner.getUserTier();
+            const tierLabel = userTier === 'pro' ? '🔓 Pro' : '🔒 Free';
             if (result.findings.length === 0) {
                 return {
                     content: [
                         {
                             type: 'text',
-                            text: `✅ No security issues found in ${result.files} file(s).`,
+                            text: `✅ No security issues found in ${result.files} file(s).\n\nGrade: A+ | Tier: ${tierLabel}`,
                         },
                     ],
                 };
             }
-            // Format findings
+            // Format findings with restriction info
             const findings = result.findings.map(f => ({
                 severity: f.rule.severity,
                 rule: f.rule.id,
@@ -77,6 +98,7 @@ async function startMcpServer() {
                 line: f.line,
                 message: f.rule.description,
                 fix: f.rule.fix,
+                isRestricted: f.isRestricted,
             }));
             const counts = {
                 critical: findings.filter(f => f.severity === 'critical').length,
@@ -84,13 +106,25 @@ async function startMcpServer() {
                 medium: findings.filter(f => f.severity === 'medium').length,
                 low: findings.filter(f => f.severity === 'low').length,
             };
+            const grade = calculateGrade(counts);
+            const restrictedCount = findings.filter(f => f.isRestricted).length;
             const summary = `Found ${findings.length} issue(s): ${counts.critical} critical, ${counts.high} high, ${counts.medium} medium, ${counts.low} low`;
-            const formattedFindings = findings.map(f => `[${f.severity.toUpperCase()}] ${f.file}:${f.line}\n  ${f.name}\n  Fix: ${f.fix}`).join('\n\n');
+            const formattedFindings = findings.map(f => {
+                const proTag = f.isRestricted ? ' [PRO]' : '';
+                const fixLine = f.isRestricted
+                    ? '  Fix: Upgrade to Pro to see fix details'
+                    : `  Fix: ${f.fix}`;
+                return `[${f.severity.toUpperCase()}]${proTag} ${f.file}:${f.line}\n  ${f.name}\n${fixLine}`;
+            }).join('\n\n');
+            let footer = `\nGrade: ${grade} | Tier: ${tierLabel}`;
+            if (restrictedCount > 0 && userTier === 'free') {
+                footer += `\n\n${restrictedCount} finding(s) require Pro to see fix details. Run 'vibeguard upgrade' to unlock.`;
+            }
             return {
                 content: [
                     {
                         type: 'text',
-                        text: `${summary}\n\n${formattedFindings}`,
+                        text: `${summary}\n\n${formattedFindings}${footer}`,
                     },
                 ],
             };
@@ -137,9 +171,12 @@ async function startMcpServer() {
             const ext = language === 'python' ? '.py' : language === 'typescript' ? '.ts' : '.js';
             const tempFile = path.join(os.tmpdir(), `vibeguard-check-${Date.now()}${ext}`);
             fs.writeFileSync(tempFile, code);
+            const licenseKey = (0, license_1.getLicenseKey)();
             const scanner = new scanner_1.Scanner();
-            await scanner.initialize();
+            await scanner.initialize(licenseKey || undefined);
             const result = await scanner.scan([tempFile]);
+            const userTier = scanner.getUserTier();
+            const tierLabel = userTier === 'pro' ? '🔓 Pro' : '🔒 Free';
             // Clean up
             fs.unlinkSync(tempFile);
             if (result.findings.length === 0) {
@@ -147,7 +184,7 @@ async function startMcpServer() {
                     content: [
                         {
                             type: 'text',
-                            text: '✅ No security issues found in this code snippet.',
+                            text: `✅ No security issues found in this code snippet.\n\nGrade: A+ | Tier: ${tierLabel}`,
                         },
                     ],
                 };
@@ -158,13 +195,32 @@ async function startMcpServer() {
                 name: f.rule.name,
                 line: f.line,
                 fix: f.rule.fix,
+                isRestricted: f.isRestricted,
             }));
-            const formatted = findings.map(f => `[${f.severity.toUpperCase()}] Line ${f.line}: ${f.name}\n  Fix: ${f.fix}`).join('\n\n');
+            const counts = {
+                critical: findings.filter(f => f.severity === 'critical').length,
+                high: findings.filter(f => f.severity === 'high').length,
+                medium: findings.filter(f => f.severity === 'medium').length,
+                low: findings.filter(f => f.severity === 'low').length,
+            };
+            const grade = calculateGrade(counts);
+            const restrictedCount = findings.filter(f => f.isRestricted).length;
+            const formatted = findings.map(f => {
+                const proTag = f.isRestricted ? ' [PRO]' : '';
+                const fixLine = f.isRestricted
+                    ? '  Fix: Upgrade to Pro to see fix details'
+                    : `  Fix: ${f.fix}`;
+                return `[${f.severity.toUpperCase()}]${proTag} Line ${f.line}: ${f.name}\n${fixLine}`;
+            }).join('\n\n');
+            let footer = `\nGrade: ${grade} | Tier: ${tierLabel}`;
+            if (restrictedCount > 0 && userTier === 'free') {
+                footer += `\n\n${restrictedCount} finding(s) require Pro to see fix details.`;
+            }
             return {
                 content: [
                     {
                         type: 'text',
-                        text: `Found ${findings.length} issue(s):\n\n${formatted}`,
+                        text: `Found ${findings.length} issue(s):\n\n${formatted}${footer}`,
                     },
                 ],
             };

package/dist/mcp/server.js.map

@@ -1 +1 @@
-{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAOA,wCA2LC;AAlMD,oEAAoE;AACpE,wEAAiF;AACjF,6BAAwB;AACxB,2CAA6B;AAC7B,wCAAqC;AACrC,8DAA6D;AAEtD,KAAK,UAAU,cAAc;IAClC,MAAM,MAAM,GAAG,IAAI,kBAAS,CAAC;QAC3B,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,OAAO;KACjB,CAAC,CAAC;IAEH,kBAAkB;IAClB,MAAM,CAAC,IAAI,CACT,WAAW,EACX,uKAAuK,EACvK;QACE,KAAK,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,CAAC,yEAAyE,CAAC;QAC9G,WAAW,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,qCAAqC,CAAC;KACpF,EACD,KAAK,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,EAAE;QAC/B,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,iBAAO,EAAE,CAAC;YAC9B,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;YAE3B,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC;YAErD,MAAM,MAAM,GAAG,WAAW;gBACxB,CAAC,CAAC,MAAM,OAAO,CAAC,UAAU,EAAE;gBAC5B,CAAC,CAAC,MAAM,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEhC,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACjC,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAe;4BACrB,IAAI,EAAE,iCAAiC,MAAM,CAAC,KAAK,WAAW;yBAC/D;qBACF;iBACF,CAAC;YACJ,CAAC;YAED,kBAAkB;YAClB,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACzC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;gBACzB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;gBACf,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI;gBACjB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC;gBAChC,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,IAAI,CAAC,WAAW;gBAC3B,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG;aAChB,CAAC,CAAC,CAAC;YAEJ,MAAM,MAAM,GAAG;gBACb,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;gBAChE,IAAI,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;gBACxD,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAC5D,GAAG,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM;aACvD,CAAC;YAEF,MAAM,OAAO,GAAG,SAAS,QAAQ,CAAC,MAAM,cAAc,MAAM,CAAC,QAAQ,cAAc,MAAM,CAAC,IAAI,UAAU,MAAM,CAAC,MAAM,YAAY,MAAM,CAAC,GAAG,MAAM,CAAC;YAElJ,MAAM,iBAAiB,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACzC,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,IAAI,YAAY,CAAC,CAAC,GAAG,EAAE,CAClF,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAEf,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,GAAG,OAAO,OAAO,iBAAiB,EAAE;qBAC3C;iBACF;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,mBAAmB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE;qBACpF;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CACF,CAAC;IAEF,4BAA4B;IAC5B,MAAM,CAAC,IAAI,CACT,qBAAqB,EACrB,wHAAwH,EACxH;QACE,QAAQ,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,0BAA0B,CAAC;KACxG,EACD,KAAK,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE;QACrB,IAAI,KAAK,GAAG,2BAAa,CAAC;QAE1B,IAAI,QAAQ,EAAE,CAAC;YACb,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,SAAS,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAC9B,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,WAAW,kBAAkB,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CACjH,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAEf,OAAO;YACL,OAAO,EAAE;gBACP;oBACE,IAAI,EAAE,MAAe;oBACrB,IAAI,EAAE,GAAG,KAAK,CAAC,MAAM,yBAAyB,SAAS,EAAE;iBAC1D;aACF;SACF,CAAC;IACJ,CAAC,CACF,CAAC;IAEF,2BAA2B;IAC3B,MAAM,CAAC,IAAI,CACT,oBAAoB,EACpB,6HAA6H,EAC7H;QACE,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,2BAA2B,CAAC;QACtD,QAAQ,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,0BAA0B,CAAC;KAC9F,EACD,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE;QAC3B,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,wDAAa,IAAI,GAAC,CAAC;YAC9B,MAAM,EAAE,GAAG,wDAAa,IAAI,GAAC,CAAC;YAE9B,mBAAmB;YACnB,MAAM,GAAG,GAAG,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,KAAK,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC;YACtF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE,mBAAmB,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,EAAE,CAAC,CAAC;YAE/E,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAEjC,MAAM,OAAO,GAAG,IAAI,iBAAO,EAAE,CAAC;YAC9B,MAAM,OAAO,CAAC,UAAU,EAAE,CAAC;YAE3B,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;YAE9C,WAAW;YACX,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAExB,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACjC,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAe;4BACrB,IAAI,EAAE,kDAAkD;yBACzD;qBACF;iBACF,CAAC;YACJ,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACzC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;gBACzB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;gBACf,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI;gBACjB,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG;aAChB,CAAC,CAAC,CAAC;YAEJ,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACjC,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI,YAAY,CAAC,CAAC,GAAG,EAAE,CAC3E,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAEf,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,SAAS,QAAQ,CAAC,MAAM,iBAAiB,SAAS,EAAE;qBAC3D;iBACF;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,wBAAwB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE;qBACzF;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CACF,CAAC;IAEF,oBAAoB;IACpB,MAAM,SAAS,GAAG,IAAI,+BAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;AAClC,CAAC"}
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../src/mcp/server.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoBA,wCAmOC;AAvPD,oEAAoE;AACpE,wEAAiF;AACjF,6BAAwB;AACxB,2CAA6B;AAC7B,wCAAqC;AACrC,8DAA6D;AAC7D,4CAA+C;AAG/C,SAAS,cAAc,CAAC,MAAgC;IACtD,IAAI,MAAM,CAAC,QAAQ,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IACpC,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IAChC,IAAI,MAAM,CAAC,IAAI,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IAChC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IAClC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IAClC,IAAI,MAAM,CAAC,GAAG,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IAC/B,IAAI,MAAM,CAAC,GAAG,GAAG,CAAC;QAAE,OAAO,GAAG,CAAC;IAC/B,OAAO,IAAI,CAAC;AACd,CAAC;AAEM,KAAK,UAAU,cAAc;IAClC,MAAM,MAAM,GAAG,IAAI,kBAAS,CAAC;QAC3B,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,OAAO;KACjB,CAAC,CAAC;IAEH,kBAAkB;IAClB,MAAM,CAAC,IAAI,CACT,WAAW,EACX,uKAAuK,EACvK;QACE,KAAK,EAAE,OAAC,CAAC,KAAK,CAAC,OAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,CAAC,yEAAyE,CAAC;QAC9G,WAAW,EAAE,OAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,qCAAqC,CAAC;KACpF,EACD,KAAK,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,EAAE,EAAE;QAC/B,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAA,uBAAa,GAAE,CAAC;YACnC,MAAM,OAAO,GAAG,IAAI,iBAAO,EAAE,CAAC;YAC9B,MAAM,OAAO,CAAC,UAAU,CAAC,UAAU,IAAI,SAAS,CAAC,CAAC;YAElD,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC;YAErD,MAAM,MAAM,GAAG,WAAW;gBACxB,CAAC,CAAC,MAAM,OAAO,CAAC,UAAU,EAAE;gBAC5B,CAAC,CAAC,MAAM,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAEhC,MAAM,QAAQ,GAAS,OAAO,CAAC,WAAW,EAAE,CAAC;YAC7C,MAAM,SAAS,GAAG,QAAQ,KAAK,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAE5D,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACjC,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAe;4BACrB,IAAI,EAAE,iCAAiC,MAAM,CAAC,KAAK,kCAAkC,SAAS,EAAE;yBACjG;qBACF;iBACF,CAAC;YACJ,CAAC;YAED,wCAAwC;YACxC,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACzC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;gBACzB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;gBACf,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI;gBACjB,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC;gBAChC,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,IAAI,CAAC,WAAW;gBAC3B,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG;gBACf,YAAY,EAAE,CAAC,CAAC,YAAY;aAC7B,CAAC,CAAC,CAAC;YAEJ,MAAM,MAAM,GAA6B;gBACvC,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;gBAChE,IAAI,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;gBACxD,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAC5D,GAAG,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM;aACvD,CAAC;YAEF,MAAM,KAAK,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;YACrC,MAAM,eAAe,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC;YAEpE,MAAM,OAAO,GAAG,SAAS,QAAQ,CAAC,MAAM,cAAc,MAAM,CAAC,QAAQ,cAAc,MAAM,CAAC,IAAI,UAAU,MAAM,CAAC,MAAM,YAAY,MAAM,CAAC,GAAG,MAAM,CAAC;YAElJ,MAAM,iBAAiB,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;gBACzC,MAAM,MAAM,GAAG,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC9C,MAAM,OAAO,GAAG,CAAC,CAAC,YAAY;oBAC5B,CAAC,CAAC,0CAA0C;oBAC5C,CAAC,CAAC,UAAU,CAAC,CAAC,GAAG,EAAE,CAAC;gBACtB,OAAO,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,IAAI,MAAM,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;YAC/F,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAEhB,IAAI,MAAM,GAAG,YAAY,KAAK,YAAY,SAAS,EAAE,CAAC;YACtD,IAAI,eAAe,GAAG,CAAC,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;gBAC/C,MAAM,IAAI,OAAO,eAAe,gFAAgF,CAAC;YACnH,CAAC;YAED,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,GAAG,OAAO,OAAO,iBAAiB,GAAG,MAAM,EAAE;qBACpD;iBACF;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,mBAAmB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE;qBACpF;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CACF,CAAC;IAEF,4BAA4B;IAC5B,MAAM,CAAC,IAAI,CACT,qBAAqB,EACrB,wHAAwH,EACxH;QACE,QAAQ,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,CAAC,0BAA0B,CAAC;KACxG,EACD,KAAK,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE;QACrB,IAAI,KAAK,GAAG,2BAAa,CAAC;QAE1B,IAAI,QAAQ,EAAE,CAAC;YACb,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;QACrD,CAAC;QAED,MAAM,SAAS,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAC9B,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,WAAW,kBAAkB,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CACjH,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAEf,OAAO;YACL,OAAO,EAAE;gBACP;oBACE,IAAI,EAAE,MAAe;oBACrB,IAAI,EAAE,GAAG,KAAK,CAAC,MAAM,yBAAyB,SAAS,EAAE;iBAC1D;aACF;SACF,CAAC;IACJ,CAAC,CACF,CAAC;IAEF,2BAA2B;IAC3B,MAAM,CAAC,IAAI,CACT,oBAAoB,EACpB,6HAA6H,EAC7H;QACE,IAAI,EAAE,OAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,2BAA2B,CAAC;QACtD,QAAQ,EAAE,OAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,0BAA0B,CAAC;KAC9F,EACD,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE;QAC3B,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,wDAAa,IAAI,GAAC,CAAC;YAC9B,MAAM,EAAE,GAAG,wDAAa,IAAI,GAAC,CAAC;YAE9B,mBAAmB;YACnB,MAAM,GAAG,GAAG,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ,KAAK,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC;YACtF,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,EAAE,mBAAmB,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,EAAE,CAAC,CAAC;YAE/E,EAAE,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAEjC,MAAM,UAAU,GAAG,IAAA,uBAAa,GAAE,CAAC;YACnC,MAAM,OAAO,GAAG,IAAI,iBAAO,EAAE,CAAC;YAC9B,MAAM,OAAO,CAAC,UAAU,CAAC,UAAU,IAAI,SAAS,CAAC,CAAC;YAElD,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;YAC9C,MAAM,QAAQ,GAAS,OAAO,CAAC,WAAW,EAAE,CAAC;YAC7C,MAAM,SAAS,GAAG,QAAQ,KAAK,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,SAAS,CAAC;YAE5D,WAAW;YACX,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;YAExB,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACjC,OAAO;oBACL,OAAO,EAAE;wBACP;4BACE,IAAI,EAAE,MAAe;4BACrB,IAAI,EAAE,yEAAyE,SAAS,EAAE;yBAC3F;qBACF;iBACF,CAAC;YACJ,CAAC;YAED,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACzC,QAAQ,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ;gBACzB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,EAAE;gBACf,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI;gBACjB,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,GAAG,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG;gBACf,YAAY,EAAE,CAAC,CAAC,YAAY;aAC7B,CAAC,CAAC,CAAC;YAEJ,MAAM,MAAM,GAA6B;gBACvC,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;gBAChE,IAAI,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;gBACxD,MAAM,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAC5D,GAAG,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM;aACvD,CAAC;YAEF,MAAM,KAAK,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;YACrC,MAAM,eAAe,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,MAAM,CAAC;YAEpE,MAAM,SAAS,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;gBACjC,MAAM,MAAM,GAAG,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC;gBAC9C,MAAM,OAAO,GAAG,CAAC,CAAC,YAAY;oBAC5B,CAAC,CAAC,0CAA0C;oBAC5C,CAAC,CAAC,UAAU,CAAC,CAAC,GAAG,EAAE,CAAC;gBACtB,OAAO,IAAI,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,IAAI,MAAM,SAAS,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;YACxF,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAEhB,IAAI,MAAM,GAAG,YAAY,KAAK,YAAY,SAAS,EAAE,CAAC;YACtD,IAAI,eAAe,GAAG,CAAC,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;gBAC/C,MAAM,IAAI,OAAO,eAAe,6CAA6C,CAAC;YAChF,CAAC;YAED,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,SAAS,QAAQ,CAAC,MAAM,iBAAiB,SAAS,GAAG,MAAM,EAAE;qBACpE;iBACF;aACF,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE;oBACP;wBACE,IAAI,EAAE,MAAe;wBACrB,IAAI,EAAE,wBAAwB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE;qBACzF;iBACF;gBACD,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;IACH,CAAC,CACF,CAAC;IAEF,oBAAoB;IACpB,MAAM,SAAS,GAAG,IAAI,+BAAoB,EAAE,CAAC;IAC7C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;AAClC,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@indicated/vibeguard",
-  "version": "1.2.0",
+  "version": "1.2.1",
   "description": "Local CLI security scanner for AI-generated code",
   "main": "dist/cli/index.js",
   "bin": {

package/src/mcp/server.ts

@@ -4,6 +4,19 @@ import { z } from 'zod';
 import * as path from 'path';
 import { Scanner } from '../scanner';
 import { securityRules } from '../scanner/rules/definitions';
+import { getLicenseKey } from '../api/license';
+import { Severity, Tier } from '../types';
+
+function calculateGrade(counts: Record<Severity, number>): string {
+  if (counts.critical > 0) return 'F';
+  if (counts.high > 2) return 'D';
+  if (counts.high > 0) return 'C';
+  if (counts.medium > 3) return 'C';
+  if (counts.medium > 0) return 'B';
+  if (counts.low > 5) return 'B';
+  if (counts.low > 0) return 'A';
+  return 'A+';
+}
 
 export async function startMcpServer(): Promise<void> {
   const server = new McpServer({
@@ -21,8 +34,9 @@ export async function startMcpServer(): Promise<void> {
     },
     async ({ paths, staged_only }) => {
       try {
+        const licenseKey = getLicenseKey();
         const scanner = new Scanner();
-        await scanner.initialize();
+        await scanner.initialize(licenseKey || undefined);
 
         const cwd = process.cwd();
         const targets = paths.map(p => path.resolve(cwd, p));
@@ -31,18 +45,21 @@ export async function startMcpServer(): Promise<void> {
           ? await scanner.scanStaged()
           : await scanner.scan(targets);
 
+        const userTier: Tier = scanner.getUserTier();
+        const tierLabel = userTier === 'pro' ? '🔓 Pro' : '🔒 Free';
+
         if (result.findings.length === 0) {
           return {
             content: [
               {
                 type: 'text' as const,
-                text: `✅ No security issues found in ${result.files} file(s).`,
+                text: `✅ No security issues found in ${result.files} file(s).\n\nGrade: A+ | Tier: ${tierLabel}`,
               },
             ],
           };
         }
 
-        // Format findings
+        // Format findings with restriction info
         const findings = result.findings.map(f => ({
           severity: f.rule.severity,
           rule: f.rule.id,
@@ -51,26 +68,39 @@ export async function startMcpServer(): Promise<void> {
           line: f.line,
           message: f.rule.description,
           fix: f.rule.fix,
+          isRestricted: f.isRestricted,
         }));
 
-        const counts = {
+        const counts: Record<Severity, number> = {
           critical: findings.filter(f => f.severity === 'critical').length,
           high: findings.filter(f => f.severity === 'high').length,
           medium: findings.filter(f => f.severity === 'medium').length,
           low: findings.filter(f => f.severity === 'low').length,
         };
 
+        const grade = calculateGrade(counts);
+        const restrictedCount = findings.filter(f => f.isRestricted).length;
+
         const summary = `Found ${findings.length} issue(s): ${counts.critical} critical, ${counts.high} high, ${counts.medium} medium, ${counts.low} low`;
 
-        const formattedFindings = findings.map(f =>
-          `[${f.severity.toUpperCase()}] ${f.file}:${f.line}\n  ${f.name}\n  Fix: ${f.fix}`
-        ).join('\n\n');
+        const formattedFindings = findings.map(f => {
+          const proTag = f.isRestricted ? ' [PRO]' : '';
+          const fixLine = f.isRestricted
+            ? '  Fix: Upgrade to Pro to see fix details'
+            : `  Fix: ${f.fix}`;
+          return `[${f.severity.toUpperCase()}]${proTag} ${f.file}:${f.line}\n  ${f.name}\n${fixLine}`;
+        }).join('\n\n');
+
+        let footer = `\nGrade: ${grade} | Tier: ${tierLabel}`;
+        if (restrictedCount > 0 && userTier === 'free') {
+          footer += `\n\n${restrictedCount} finding(s) require Pro to see fix details. Run 'vibeguard upgrade' to unlock.`;
+        }
 
         return {
           content: [
             {
               type: 'text' as const,
-              text: `${summary}\n\n${formattedFindings}`,
+              text: `${summary}\n\n${formattedFindings}${footer}`,
             },
           ],
         };
@@ -136,10 +166,13 @@ export async function startMcpServer(): Promise<void> {
 
         fs.writeFileSync(tempFile, code);
 
+        const licenseKey = getLicenseKey();
         const scanner = new Scanner();
-        await scanner.initialize();
+        await scanner.initialize(licenseKey || undefined);
 
         const result = await scanner.scan([tempFile]);
+        const userTier: Tier = scanner.getUserTier();
+        const tierLabel = userTier === 'pro' ? '🔓 Pro' : '🔒 Free';
 
         // Clean up
         fs.unlinkSync(tempFile);
@@ -149,7 +182,7 @@ export async function startMcpServer(): Promise<void> {
             content: [
               {
                 type: 'text' as const,
-                text: '✅ No security issues found in this code snippet.',
+                text: `✅ No security issues found in this code snippet.\n\nGrade: A+ | Tier: ${tierLabel}`,
               },
             ],
           };
@@ -161,17 +194,37 @@ export async function startMcpServer(): Promise<void> {
           name: f.rule.name,
           line: f.line,
           fix: f.rule.fix,
+          isRestricted: f.isRestricted,
         }));
 
-        const formatted = findings.map(f =>
-          `[${f.severity.toUpperCase()}] Line ${f.line}: ${f.name}\n  Fix: ${f.fix}`
-        ).join('\n\n');
+        const counts: Record<Severity, number> = {
+          critical: findings.filter(f => f.severity === 'critical').length,
+          high: findings.filter(f => f.severity === 'high').length,
+          medium: findings.filter(f => f.severity === 'medium').length,
+          low: findings.filter(f => f.severity === 'low').length,
+        };
+
+        const grade = calculateGrade(counts);
+        const restrictedCount = findings.filter(f => f.isRestricted).length;
+
+        const formatted = findings.map(f => {
+          const proTag = f.isRestricted ? ' [PRO]' : '';
+          const fixLine = f.isRestricted
+            ? '  Fix: Upgrade to Pro to see fix details'
+            : `  Fix: ${f.fix}`;
+          return `[${f.severity.toUpperCase()}]${proTag} Line ${f.line}: ${f.name}\n${fixLine}`;
+        }).join('\n\n');
+
+        let footer = `\nGrade: ${grade} | Tier: ${tierLabel}`;
+        if (restrictedCount > 0 && userTier === 'free') {
+          footer += `\n\n${restrictedCount} finding(s) require Pro to see fix details.`;
+        }
 
         return {
           content: [
             {
               type: 'text' as const,
-              text: `Found ${findings.length} issue(s):\n\n${formatted}`,
+              text: `Found ${findings.length} issue(s):\n\n${formatted}${footer}`,
             },
           ],
         };

package/PROGRESS.md

@@ -1,221 +0,0 @@
-# VibeGuard Development Progress
-
-## Overview
-
-VibeGuard is a local CLI security scanner for AI-generated code. This document tracks what has been implemented and what remains to be done.
-
----
-
-## ✅ Completed
-
-### Phase 1: Core Scanner
-- [x] TypeScript project setup with npm package structure
-- [x] Project structure following the planned architecture
-- [x] JS/TS parser using @babel/parser for AST analysis
-- [x] Pattern-based scanning with regex
-- [x] Basic `scan` command with file/directory support
-- [x] Finding output with file, line number, and severity
-
-### Phase 2: Full Rule Set
-- [x] 45 security rules implemented across all severity levels:
-  - **Critical (8):** hardcoded-secret, sql-injection, eval-usage, command-injection, insecure-deserialization, django-debug-true, django-secret-key-exposed, django-raw-sql
-  - **High (21):** missing-auth-route, xss-innerhtml, secrets-localstorage, supabase-no-rls, firebase-no-rules, idor-vulnerability, path-traversal, ssrf-vulnerability, open-redirect, insecure-cookie, missing-csrf, nextjs-exposed-server-action, nextjs-api-route-no-auth, nextjs-dangerouslySetInnerHTML, nextjs-exposed-env, django-no-csrf-exempt, fastapi-no-auth-dependency, nestjs-no-auth-guard, react-href-javascript, react-url-state-injection, express-session-insecure
-  - **Medium (10):** permissive-cors, http-not-https, weak-password, hardcoded-ip, xxe-vulnerability, jwt-none-algorithm, django-allowed-hosts-all, fastapi-cors-all-origins, express-helmet-missing, express-body-parser-limit
-  - **Low (6):** verbose-errors, missing-rate-limit, console-log-sensitive, debug-mode-enabled, prototype-pollution, nestjs-exposed-internal-exception
-- [x] Python parser support (pattern-based)
-- [x] Severity levels (critical, high, medium, low)
-- [x] Letter grading system (A+ to F)
-
-### Phase 3: CLI Polish
-- [x] `vibeguard scan` - Main scan command
-  - [x] Directory scanning
-  - [x] File scanning
-  - [x] `--staged` flag for git staged files
-  - [x] `--json` output format
-  - [x] `--force` to ignore exit code
-  - [x] `--quiet` minimal output
-- [x] `vibeguard init` - Pre-commit hook setup
-  - [x] Git hook creation
-  - [x] Husky detection and integration
-  - [x] `.vibeguardrc.json` config file creation
-- [x] `vibeguard rules` - List security rules
-  - [x] `--severity` filter
-  - [x] `--language` filter
-  - [x] `--json` output
-- [x] `vibeguard login` / `vibeguard logout` - License key management
-- [x] `vibeguard upgrade` - Show Pro features and pricing
-- [x] Pretty terminal output with colors
-- [x] Config file support (`.vibeguardrc.json`)
-
-### Phase 4: License System (CLI Side)
-- [x] `login` command implemented
-- [x] `logout` command implemented
-- [x] License key storage in `~/.vibeguard/license.json`
-- [x] Offline mode fallback (works without server)
-- [x] API client stubs ready for server integration
-
-### Phase 5: Free/Pro Tier System
-- [x] `Tier` type added (`'free' | 'pro'`)
-- [x] All 45 rules categorized by tier:
-  - **Free Tier (24 rules):** Basic vulnerabilities - hardcoded secrets, SQL injection, XSS, eval, command injection, CSRF, SSRF, path traversal, etc.
-  - **Pro Tier (21 rules):** Framework-specific - Next.js (4), Django (5), FastAPI (2), NestJS (2), React (2), Express (3), Supabase, Firebase, missing-auth-route
-- [x] `isRestricted` field on findings for gated content
-- [x] `[PRO]` badge display for restricted findings
-- [x] Upgrade prompt showing count of restricted findings
-- [x] `vibeguard upgrade` command with pricing and features
-- [x] Tier info in JSON output (`tier`, `isRestricted` fields)
-- [x] License tier caching for offline mode
-- [x] `getUserTier()` and `getCachedTier()` functions
-
-### Bonus: MCP Integration
-- [x] `vibeguard mcp` command to start MCP server
-- [x] `scan_code` tool - Scan files/directories
-- [x] `list_security_rules` tool - List available rules
-- [x] `check_code_snippet` tool - Validate code without saving
-- [x] Documentation for Claude Code integration
-
----
-
-## 🔲 Not Yet Implemented
-
-### Server-Side: Website + Backend (Phase 2 - Future Session)
-- [ ] Next.js 14+ website on Vercel
-- [ ] Landing page with feature showcase
-- [ ] Pricing page (Monthly $9, Annual $79)
-- [ ] Documentation site
-- [ ] User dashboard (license management, usage stats)
-- [ ] License validation API (`POST /v1/license/validate`)
-- [ ] License activation API (`POST /v1/license/activate`)
-- [ ] Rules API (`GET /v1/rules`) for auto-updates
-- [ ] Vercel Postgres database (users, licenses, activations tables)
-- [ ] NextAuth.js or Clerk authentication
-
-### Server-Side: Stripe Integration (Phase 3 - Future Session)
-- [ ] Stripe product setup (Pro Monthly, Pro Annual)
-- [ ] Checkout flow
-- [ ] Webhook handlers for payment events
-- [ ] License key email delivery
-- [ ] Subscription management
-
-### CLI Enhancements
-- [ ] `vibeguard update` - Manual rule update command
-- [ ] `vibeguard ignore` - Add inline ignore comments
-- [ ] `vibeguard fix` - Auto-fix certain issues (where safe)
-- [ ] Watch mode (`--watch`) for continuous scanning
-- [ ] SARIF output format for GitHub Advanced Security
-- [ ] GitLab CI/CD integration format
-
-### Additional Rules
-- [x] Command injection detection
-- [x] Path traversal detection
-- [x] Insecure deserialization
-- [x] Hardcoded IP addresses
-- [x] Missing CSRF protection
-- [x] Insecure cookie settings
-- [x] Open redirect vulnerabilities
-- [x] XXE (XML External Entity) detection
-- [x] SSRF (Server-Side Request Forgery) patterns
-- [x] JWT none algorithm vulnerability
-- [x] Console logging sensitive data
-- [x] Debug mode enabled
-- [x] Prototype pollution
-
-### Parser Improvements
-- [ ] Tree-sitter Python parser (currently regex-only)
-- [ ] Better AST-based SQL injection detection for JS
-- [x] Framework-specific rules (Next.js, Django, FastAPI, NestJS, Express, React)
-- [ ] JSX/TSX component-level analysis
-
-### Testing
-- [x] Unit tests for scanner (13 tests)
-- [x] Unit tests for rule matching (186 tests across all 45 rules)
-- [x] Rule definitions tests (47 tests)
-- [x] Test coverage reporting (Vitest + v8)
-- [x] CI/CD pipeline (GitHub Actions)
-  - [x] CI workflow: tests on Node 18, 20, 22
-  - [x] Release workflow: auto-publish to npm on tags
-- [ ] Integration tests for CLI commands
-
-### Documentation
-- [ ] API documentation for server endpoints
-- [ ] Contributing guide
-- [ ] Rule authoring guide
-- [ ] Examples for each vulnerability type
-
-### Distribution
-- [ ] Publish to npm
-- [ ] Homebrew formula
-- [ ] Binary releases (pkg)
-- [ ] Docker image
-
----
-
-## 📁 Current Project Structure
-
-```
-vibeguard/
-├── src/
-│   ├── cli/
-│   │   ├── index.ts              # CLI entry point
-│   │   ├── config.ts             # Config file loading
-│   │   ├── output.ts             # Terminal formatting
-│   │   └── commands/
-│   │       ├── scan.ts           # scan command
-│   │       ├── init.ts           # init command
-│   │       ├── login.ts          # login/logout commands
-│   │       ├── rules.ts          # rules command
-│   │       ├── mcp.ts            # mcp command
-│   │       └── upgrade.ts        # upgrade command (Pro features/pricing)
-│   ├── scanner/
-│   │   ├── index.ts              # Main scanner logic
-│   │   ├── parsers/
-│   │   │   ├── javascript.ts     # JS/TS AST + pattern scanning
-│   │   │   └── python.ts         # Python pattern scanning
-│   │   └── rules/
-│   │       ├── definitions.ts    # 45 security rules (24 free, 21 pro)
-│   │       ├── loader.ts         # Rule loading (local + API)
-│   │       └── matcher.ts        # Pattern matching utilities
-│   ├── mcp/
-│   │   └── server.ts             # MCP server for AI assistants
-│   ├── api/
-│   │   ├── license.ts            # License management
-│   │   └── rules.ts              # Rules API client
-│   └── types.ts                  # TypeScript types
-├── dist/                         # Compiled JavaScript
-├── test-samples/                 # Test files with vulnerabilities
-├── package.json
-├── tsconfig.json
-├── README.md
-└── PROGRESS.md                   # This file
-```
-
----
-
-## 🚀 Next Steps (Recommended Order)
-
-1. **Website + Backend (Phase 2)** - Build vibeguard-web on Vercel with Next.js
-   - Landing page, pricing, docs
-   - License validation API
-   - Vercel Postgres database
-2. **Stripe Integration (Phase 3)** - Payment flow and license delivery
-3. **npm Publish** - Get it in users' hands
-4. **CI Integration** - SARIF output for GitHub/GitLab
-5. **More Rules** - Expand rule coverage based on user feedback
-
----
-
-## 📊 Stats
-
-| Metric | Count |
-|--------|-------|
-| Security Rules | 45 (24 free, 21 pro) |
-| CLI Commands | 7 |
-| MCP Tools | 3 |
-| Supported Languages | 3 (JS, TS, Python) |
-| Frameworks | 6 (Next.js, Django, FastAPI, NestJS, Express, React) |
-| Unit Tests | 246 |
-| Lines of TypeScript | ~2,200 |
-
----
-
-*Last updated: January 30, 2026*