@kevinrabun/judges 3.119.0 → 3.122.0

package/dist/probabilistic/llm-response-validator.js

@@ -5,7 +5,7 @@ const SEVERITY_SET = new Set(["critical", "high", "medium", "low", "info"]);
  * Attempt to parse a JSON payload embedded in LLM output. Supports fenced code blocks and raw JSON.
  */
 function parseJsonBlock(text) {
-    const fenceMatch = text.match(/```(?:json)?\s*([\s\S]*?)```/i);
+    const fenceMatch = text.match(/```(?:json)?[ \t]*\n([\s\S]*?)\n[ \t]*```/i) ?? text.match(/```(?:json)?[ \t]*([\s\S]*?)```/i);
     if (fenceMatch) {
         try {
             return JSON.parse(fenceMatch[1]);

package/dist/reports/public-repo-report.js

@@ -215,7 +215,15 @@ function countBySeverity(findings) {
 function compileExcludeRegexes(patterns) {
     if (!patterns || patterns.length === 0)
         return [];
-    return patterns.map((pattern) => new RegExp(pattern, "i"));
+    return patterns.map((pattern) => {
+        try {
+            return new RegExp(pattern, "i");
+        }
+        catch {
+            // Invalid regex from user input — treat as literal string match
+            return new RegExp(pattern.replace(/[.*+?^${}()|[\]\\]/g, "\\$&"), "i");
+        }
+    });
 }
 function isLikelyNonProductionPath(path) {
     return /(^|\/)(test|tests|__tests__|spec|specs|e2e)(\/|\.|$)|\.(?:test|tests|spec|specs|e2e)\.[^/]+$|mock|fixture|fixtures|(^|\/)docs(-|\/)i18n(\/|$)|(^|\/)docs(\/|$)/i.test(path);

package/dist/skill-loader.js

@@ -25,7 +25,7 @@ export function parseSkillFrontmatter(raw) {
             i++;
             continue;
         }
-        const kv = line.match(/^([a-zA-Z_][a-zA-Z0-9_-]*)\s*:\s*(.*)$/);
+        const kv = line.match(/^([a-zA-Z_][a-zA-Z0-9_-]*)[ \t]*:[ \t]*(.*)$/);
         if (!kv) {
             i++;
             continue;
@@ -64,9 +64,10 @@ export function parseSkillFrontmatter(raw) {
         if (typeof value === "string" && ((value.startsWith("[") && value.endsWith("]")) || value.includes(","))) {
             // simple array parsing: split on comma
             const normalized = value
-                .replace(/^\s*\[/, "")
-                .replace(/\]\s*$/, "")
-                .split(/\s*,\s*/)
+                .replace(/^[ \t]*\[/, "")
+                .replace(/\][ \t]*$/, "")
+                .split(",")
+                .map((s) => s.trim())
                 .filter(Boolean);
             value = normalized;
         }
@@ -93,13 +94,15 @@ export function validateSkillFrontmatter(meta, sourcePath) {
         agents: Array.isArray(meta.agents)
             ? meta.agents
             : String(meta.agents ?? "")
-                .split(/\s*,\s*/)
+                .split(",")
+                .map((s) => s.trim())
                 .filter(Boolean),
         tags: Array.isArray(meta.tags)
             ? meta.tags
             : meta.tags
                 ? String(meta.tags)
-                    .split(/\s*,\s*/)
+                    .split(",")
+                    .map((s) => s.trim())
                     .filter(Boolean)
                 : undefined,
         priority: meta.priority ? Number(meta.priority) : 10,

package/dist/tools/register-evaluation.js

@@ -3,7 +3,6 @@
 // ──────────────────────────────────────────────────────────────────────────────
 import { z } from "zod";
 import { readFileSync, existsSync } from "fs";
-import { extname } from "path";
 import { JUDGES, getJudge, getJudgeSummaries } from "../judges/index.js";
 import { evaluateWithJudge, evaluateWithTribunal, evaluateWithTribunalStreaming, formatVerdictAsMarkdown, formatEvaluationAsMarkdown, } from "../evaluators/index.js";
 import { evaluateCodeV2, evaluateProjectV2, getSupportedPolicyProfiles } from "../evaluators/v2.js";
@@ -408,35 +407,9 @@ function registerEvaluateV2(server) {
     });
 }
 // ─── evaluate_file ───────────────────────────────────────────────────────────
-const EXT_TO_LANG = {
-    ".ts": "typescript",
-    ".tsx": "typescript",
-    ".js": "javascript",
-    ".jsx": "javascript",
-    ".mjs": "javascript",
-    ".cjs": "javascript",
-    ".py": "python",
-    ".rs": "rust",
-    ".go": "go",
-    ".java": "java",
-    ".cs": "csharp",
-    ".cpp": "cpp",
-    ".cc": "cpp",
-    ".h": "c",
-    ".hpp": "cpp",
-    ".ps1": "powershell",
-    ".psm1": "powershell",
-    ".bicep": "bicep",
-    ".tf": "terraform",
-    ".yaml": "yaml",
-    ".yml": "yaml",
-};
+import { detectLanguageFromPath as _detectLangShared } from "../ext-to-lang.js";
 function detectLanguageFromPath(filePath) {
-    const lower = filePath.toLowerCase();
-    if (lower.endsWith("dockerfile") || lower.includes("dockerfile."))
-        return "dockerfile";
-    const ext = extname(lower);
-    return EXT_TO_LANG[ext] || "typescript";
+    return _detectLangShared(filePath) ?? "typescript";
 }
 function registerEvaluateFile(server) {
     server.tool("evaluate_file", `Read a file from disk and submit it to the full Judges Panel for evaluation. Automatically detects the programming language from the file extension. All ${JUDGES.length} judges review the code with pattern detection and deep contextual analysis.`, {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kevinrabun/judges",
-  "version": "3.119.0",
+  "version": "3.122.0",
   "description": "45 specialized judges that evaluate AI-generated code for security, cost, and quality.",
   "mcpName": "io.github.KevinRabun/judges",
   "type": "module",

package/server.json

@@ -7,12 +7,12 @@
     "url": "https://github.com/kevinrabun/judges",
     "source": "github"
   },
-  "version": "3.119.0",
+  "version": "3.122.0",
   "packages": [
     {
       "registryType": "npm",
       "identifier": "@kevinrabun/judges",
-      "version": "3.119.0",
+      "version": "3.122.0",
       "transport": {
         "type": "stdio"
       }

package/src/skill-loader.ts

@@ -44,7 +44,7 @@ export function parseSkillFrontmatter(raw: string): { meta: SkillMeta; body: str
       i++;
       continue;
     }
-    const kv = line.match(/^([a-zA-Z_][a-zA-Z0-9_-]*)\s*:\s*(.*)$/);
+    const kv = line.match(/^([a-zA-Z_][a-zA-Z0-9_-]*)[ \t]*:[ \t]*(.*)$/);
     if (!kv) {
       i++;
       continue;
@@ -85,9 +85,10 @@ export function parseSkillFrontmatter(raw: string): { meta: SkillMeta; body: str
     if (typeof value === "string" && ((value.startsWith("[") && value.endsWith("]")) || value.includes(","))) {
       // simple array parsing: split on comma
       const normalized = (value as string)
-        .replace(/^\s*\[/, "")
-        .replace(/\]\s*$/, "")
-        .split(/\s*,\s*/)
+        .replace(/^[ \t]*\[/, "")
+        .replace(/\][ \t]*$/, "")
+        .split(",")
+        .map((s) => s.trim())
         .filter(Boolean);
       value = normalized;
     } else if (
@@ -117,13 +118,15 @@ export function validateSkillFrontmatter(meta: SkillMeta, sourcePath: string): S
     agents: Array.isArray(meta.agents)
       ? (meta.agents as string[])
       : String(meta.agents ?? "")
-          .split(/\s*,\s*/)
+          .split(",")
+          .map((s) => s.trim())
           .filter(Boolean),
     tags: Array.isArray(meta.tags)
       ? (meta.tags as string[])
       : meta.tags
         ? String(meta.tags)
-            .split(/\s*,\s*/)
+            .split(",")
+            .map((s) => s.trim())
             .filter(Boolean)
         : undefined,
     priority: meta.priority ? Number(meta.priority) : 10,