npm - @kevinrabun/judges - Versions diffs - 1.2.0 → 1.4.0 - Mend

@kevinrabun/judges 1.2.0 → 1.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (116) hide show

package/README.md +49 -13
package/dist/evaluators/authentication.d.ts +3 -0
package/dist/evaluators/authentication.d.ts.map +1 -0
package/dist/evaluators/authentication.js +170 -0
package/dist/evaluators/authentication.js.map +1 -0
package/dist/evaluators/backwards-compatibility.d.ts +3 -0
package/dist/evaluators/backwards-compatibility.d.ts.map +1 -0
package/dist/evaluators/backwards-compatibility.js +146 -0
package/dist/evaluators/backwards-compatibility.js.map +1 -0
package/dist/evaluators/caching.d.ts +3 -0
package/dist/evaluators/caching.d.ts.map +1 -0
package/dist/evaluators/caching.js +146 -0
package/dist/evaluators/caching.js.map +1 -0
package/dist/evaluators/ci-cd.d.ts +3 -0
package/dist/evaluators/ci-cd.d.ts.map +1 -0
package/dist/evaluators/ci-cd.js +155 -0
package/dist/evaluators/ci-cd.js.map +1 -0
package/dist/evaluators/configuration-management.d.ts +3 -0
package/dist/evaluators/configuration-management.d.ts.map +1 -0
package/dist/evaluators/configuration-management.js +146 -0
package/dist/evaluators/configuration-management.js.map +1 -0
package/dist/evaluators/database.d.ts +3 -0
package/dist/evaluators/database.d.ts.map +1 -0
package/dist/evaluators/database.js +179 -0
package/dist/evaluators/database.js.map +1 -0
package/dist/evaluators/error-handling.d.ts +3 -0
package/dist/evaluators/error-handling.d.ts.map +1 -0
package/dist/evaluators/error-handling.js +180 -0
package/dist/evaluators/error-handling.js.map +1 -0
package/dist/evaluators/index.d.ts.map +1 -1
package/dist/evaluators/index.js +48 -0
package/dist/evaluators/index.js.map +1 -1
package/dist/evaluators/logging-privacy.d.ts +3 -0
package/dist/evaluators/logging-privacy.d.ts.map +1 -0
package/dist/evaluators/logging-privacy.js +147 -0
package/dist/evaluators/logging-privacy.js.map +1 -0
package/dist/evaluators/maintainability.d.ts +3 -0
package/dist/evaluators/maintainability.d.ts.map +1 -0
package/dist/evaluators/maintainability.js +243 -0
package/dist/evaluators/maintainability.js.map +1 -0
package/dist/evaluators/portability.d.ts +3 -0
package/dist/evaluators/portability.d.ts.map +1 -0
package/dist/evaluators/portability.js +180 -0
package/dist/evaluators/portability.js.map +1 -0
package/dist/evaluators/rate-limiting.d.ts +3 -0
package/dist/evaluators/rate-limiting.d.ts.map +1 -0
package/dist/evaluators/rate-limiting.js +161 -0
package/dist/evaluators/rate-limiting.js.map +1 -0
package/dist/evaluators/scalability.d.ts.map +1 -1
package/dist/evaluators/scalability.js +8 -3
package/dist/evaluators/scalability.js.map +1 -1
package/dist/evaluators/software-practices.d.ts.map +1 -1
package/dist/evaluators/software-practices.js +14 -3
package/dist/evaluators/software-practices.js.map +1 -1
package/dist/evaluators/testing.d.ts.map +1 -1
package/dist/evaluators/testing.js +6 -2
package/dist/evaluators/testing.js.map +1 -1
package/dist/evaluators/ux.d.ts +3 -0
package/dist/evaluators/ux.d.ts.map +1 -0
package/dist/evaluators/ux.js +175 -0
package/dist/evaluators/ux.js.map +1 -0
package/dist/index.d.ts +1 -1
package/dist/index.js +3 -3
package/dist/judges/authentication.d.ts +3 -0
package/dist/judges/authentication.d.ts.map +1 -0
package/dist/judges/authentication.js +34 -0
package/dist/judges/authentication.js.map +1 -0
package/dist/judges/backwards-compatibility.d.ts +3 -0
package/dist/judges/backwards-compatibility.d.ts.map +1 -0
package/dist/judges/backwards-compatibility.js +34 -0
package/dist/judges/backwards-compatibility.js.map +1 -0
package/dist/judges/caching.d.ts +3 -0
package/dist/judges/caching.d.ts.map +1 -0
package/dist/judges/caching.js +34 -0
package/dist/judges/caching.js.map +1 -0
package/dist/judges/ci-cd.d.ts +3 -0
package/dist/judges/ci-cd.d.ts.map +1 -0
package/dist/judges/ci-cd.js +34 -0
package/dist/judges/ci-cd.js.map +1 -0
package/dist/judges/configuration-management.d.ts +3 -0
package/dist/judges/configuration-management.d.ts.map +1 -0
package/dist/judges/configuration-management.js +34 -0
package/dist/judges/configuration-management.js.map +1 -0
package/dist/judges/database.d.ts +3 -0
package/dist/judges/database.d.ts.map +1 -0
package/dist/judges/database.js +34 -0
package/dist/judges/database.js.map +1 -0
package/dist/judges/error-handling.d.ts +3 -0
package/dist/judges/error-handling.d.ts.map +1 -0
package/dist/judges/error-handling.js +34 -0
package/dist/judges/error-handling.js.map +1 -0
package/dist/judges/index.d.ts.map +1 -1
package/dist/judges/index.js +24 -0
package/dist/judges/index.js.map +1 -1
package/dist/judges/logging-privacy.d.ts +3 -0
package/dist/judges/logging-privacy.d.ts.map +1 -0
package/dist/judges/logging-privacy.js +34 -0
package/dist/judges/logging-privacy.js.map +1 -0
package/dist/judges/maintainability.d.ts +3 -0
package/dist/judges/maintainability.d.ts.map +1 -0
package/dist/judges/maintainability.js +34 -0
package/dist/judges/maintainability.js.map +1 -0
package/dist/judges/portability.d.ts +3 -0
package/dist/judges/portability.d.ts.map +1 -0
package/dist/judges/portability.js +34 -0
package/dist/judges/portability.js.map +1 -0
package/dist/judges/rate-limiting.d.ts +3 -0
package/dist/judges/rate-limiting.d.ts.map +1 -0
package/dist/judges/rate-limiting.js +34 -0
package/dist/judges/rate-limiting.js.map +1 -0
package/dist/judges/ux.d.ts +3 -0
package/dist/judges/ux.d.ts.map +1 -0
package/dist/judges/ux.js +34 -0
package/dist/judges/ux.js.map +1 -0
package/package.json +2 -2
package/server.json +3 -3

package/dist/judges/portability.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"portability.js","sourceRoot":"","sources":["../../src/judges/portability.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,gBAAgB,GAAoB;IAC/C,EAAE,EAAE,aAAa;IACjB,IAAI,EAAE,mBAAmB;IACzB,MAAM,EAAE,4CAA4C;IACpD,WAAW,EACT,6JAA6J;IAC/J,UAAU,EAAE,OAAO;IACnB,YAAY,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;4HAyB4G;CAC3H,CAAC"}

package/dist/judges/rate-limiting.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import { JudgeDefinition } from "../types.js";
+export declare const rateLimitingJudge: JudgeDefinition;
+//# sourceMappingURL=rate-limiting.d.ts.map

package/dist/judges/rate-limiting.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"rate-limiting.d.ts","sourceRoot":"","sources":["../../src/judges/rate-limiting.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C,eAAO,MAAM,iBAAiB,EAAE,eAiC/B,CAAC"}

package/dist/judges/rate-limiting.js ADDED Viewed

@@ -0,0 +1,34 @@
+export const rateLimitingJudge = {
+    id: "rate-limiting",
+    name: "Judge Rate Limiting",
+    domain: "Rate Limiting & Throttling",
+    description: "Evaluates code for API rate limiting, request throttling, backoff strategies, quota management, and protection against abuse and resource exhaustion.",
+    rulePrefix: "RATE",
+    systemPrompt: `You are Judge Rate Limiting — an API gateway architect and abuse prevention specialist who has defended high-traffic systems against DDoS, scraping, credential stuffing, and resource exhaustion attacks.
+YOUR EVALUATION CRITERIA:
+1. **Rate Limiting Middleware**: Are API endpoints protected by rate limiting? Is there per-user, per-IP, or per-API-key throttling? Is rate limiting completely absent?
+2. **Rate Limit Headers**: Are standard rate limit headers returned (X-RateLimit-Limit, X-RateLimit-Remaining, X-RateLimit-Reset, Retry-After)?
+3. **Backoff Strategy**: When calling external APIs, is exponential backoff implemented? Are retries bounded? Is jitter added to prevent thundering herd?
+4. **Request Size Limits**: Are request body sizes limited? Are file upload sizes restricted? Can an attacker send arbitrarily large payloads?
+5. **Pagination Limits**: Are list/query endpoints paginated with enforced maximum page sizes? Can a single request return unbounded results?
+6. **Concurrent Request Limits**: Is there protection against a single client making too many concurrent requests? Are connection pools bounded?
+7. **Quota Management**: Are there usage quotas for API consumers? Are quotas enforced and communicated? Are quota overages handled gracefully?
+8. **Abuse Detection**: Are there patterns for detecting abusive behavior (scraping, credential stuffing, enumeration)? Are suspicious patterns flagged or blocked?
+9. **Outbound Rate Limiting**: When calling external services, are outbound request rates managed? Are rate limits of upstream APIs respected?
+10. **Graceful Degradation Under Load**: Does the application degrade gracefully when overwhelmed? Are there circuit breakers? Is there load shedding?
+RULES FOR YOUR EVALUATION:
+- Assign rule IDs with prefix "RATE-" (e.g. RATE-001).
+- Reference IETF RFC 6585 (429 Too Many Requests), API rate limiting best practices, and DDoS mitigation patterns.
+- Distinguish between internal services (may need lighter limits) and public APIs (must have strict limits).
+- Consider both inbound (protecting your service) and outbound (respecting others') rate limits.
+- Score from 0-100 where 100 means comprehensive rate limiting.
+ADVERSARIAL MANDATE:
+- Your role is adversarial: assume rate limiting is absent or insufficient and actively hunt for problems. Do not give the benefit of the doubt.
+- Never praise or compliment the code. Report only problems, risks, and deficiencies.
+- If you are uncertain whether something is an issue, flag it — false positives are preferred over missed rate limiting gaps.
+- Absence of findings does not mean rate limiting is adequate. It means your analysis reached its limits. State this explicitly.`,
+};
+//# sourceMappingURL=rate-limiting.js.map

package/dist/judges/rate-limiting.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"rate-limiting.js","sourceRoot":"","sources":["../../src/judges/rate-limiting.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,iBAAiB,GAAoB;IAChD,EAAE,EAAE,eAAe;IACnB,IAAI,EAAE,qBAAqB;IAC3B,MAAM,EAAE,4BAA4B;IACpC,WAAW,EACT,uJAAuJ;IACzJ,UAAU,EAAE,MAAM;IAClB,YAAY,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;iIAyBiH;CAChI,CAAC"}

package/dist/judges/ux.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import { JudgeDefinition } from "../types.js";
+export declare const uxJudge: JudgeDefinition;
+//# sourceMappingURL=ux.d.ts.map

package/dist/judges/ux.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"ux.d.ts","sourceRoot":"","sources":["../../src/judges/ux.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAC;AAE9C,eAAO,MAAM,OAAO,EAAE,eAiCrB,CAAC"}

package/dist/judges/ux.js ADDED Viewed

@@ -0,0 +1,34 @@
+export const uxJudge = {
+    id: "ux",
+    name: "Judge UX",
+    domain: "User Experience & Interface Quality",
+    description: "Evaluates code for user experience patterns including loading states, error feedback, responsive design, mobile-friendliness, and interaction quality.",
+    rulePrefix: "UX",
+    systemPrompt: `You are Judge UX — a UX engineer and frontend architect who bridges design and engineering, specializing in performance perception, error communication, and inclusive interaction design.
+YOUR EVALUATION CRITERIA:
+1. **Loading States**: Are loading indicators shown during async operations? Is there feedback when the user initiates an action? Are skeleton screens or spinners used?
+2. **Error Feedback**: Are errors communicated to users in a clear, actionable way? Are generic "Something went wrong" messages avoided? Do errors suggest next steps?
+3. **Responsive Design**: Does the UI adapt to different screen sizes? Are media queries or responsive frameworks used? Is content readable on mobile?
+4. **Form UX**: Are forms validated with inline feedback? Are error messages placed near the relevant field? Are required fields marked? Is there auto-save or draft preservation?
+5. **Navigation & Wayfinding**: Is navigation intuitive? Are breadcrumbs provided? Can users always find their way back? Are deep links supported?
+6. **Performance Perception**: Are optimistic updates used? Is there pagination or infinite scroll for large lists? Are perceived loading times minimized?
+7. **Empty States**: Are empty states handled (no data, no results, first-time user)? Do they provide guidance on what to do next?
+8. **Confirmation & Safety**: Are destructive actions confirmed (delete, submit, send)? Can actions be undone? Are users warned about data loss?
+9. **Mobile & Touch**: Are touch targets large enough (48x48px)? Are hover-dependent interactions avoided? Is the interface usable without a mouse?
+10. **Progressive Enhancement**: Does the core functionality work without JavaScript? Are there graceful fallbacks for unsupported features?
+RULES FOR YOUR EVALUATION:
+- Assign rule IDs with prefix "UX-" (e.g. UX-001).
+- Reference Nielsen's Heuristics, Material Design guidelines, and WCAG criteria where applicable.
+- Distinguish between "functional" and "user-friendly."
+- Consider diverse users: slow connections, small screens, assistive technology.
+- Score from 0-100 where 100 means excellent user experience.
+ADVERSARIAL MANDATE:
+- Your role is adversarial: assume the user experience is poor and actively hunt for problems. Do not give the benefit of the doubt.
+- Never praise or compliment the code. Report only problems, risks, and deficiencies.
+- If you are uncertain whether something is an issue, flag it — false positives are preferred over missed UX issues.
+- Absence of findings does not mean the UX is good. It means your analysis reached its limits. State this explicitly.`,
+};
+//# sourceMappingURL=ux.js.map

package/dist/judges/ux.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"ux.js","sourceRoot":"","sources":["../../src/judges/ux.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,OAAO,GAAoB;IACtC,EAAE,EAAE,IAAI;IACR,IAAI,EAAE,UAAU;IAChB,MAAM,EAAE,qCAAqC;IAC7C,WAAW,EACT,wJAAwJ;IAC1J,UAAU,EAAE,IAAI;IAChB,YAAY,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;sHAyBsG;CACrH,CAAC"}

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "@kevinrabun/judges",
-  "version": "1.2.0",
-  "description": "18 specialized judges that evaluate AI-generated code for security, cost, and quality.",
+  "version": "1.4.0",
+  "description": "30 specialized judges that evaluate AI-generated code for security, cost, and quality.",
   "mcpName": "io.github.KevinRabun/judges",
   "type": "module",
   "main": "dist/index.js",

package/server.json CHANGED Viewed

@@ -2,17 +2,17 @@
   "$schema": "https://static.modelcontextprotocol.io/schemas/2025-12-11/server.schema.json",
   "name": "io.github.KevinRabun/judges",
   "title": "Judges Panel",
-  "description": "18 specialized judges that evaluate AI-generated code for security, cost, and quality.",
+  "description": "30 specialized judges that evaluate AI-generated code for security, cost, and quality.",
   "repository": {
     "url": "https://github.com/kevinrabun/judges",
     "source": "github"
   },
-  "version": "1.2.0",
+  "version": "1.4.0",
   "packages": [
     {
       "registryType": "npm",
       "identifier": "@kevinrabun/judges",
-      "version": "1.2.0",
+      "version": "1.4.0",
       "transport": {
         "type": "stdio"
       }