@kevinrabun/judges 3.23.5 → 3.23.7

package/dist/finding-lifecycle.d.ts

@@ -0,0 +1,93 @@
+/**
+ * Finding Lifecycle Tracking
+ *
+ * Tracks individual findings across multiple evaluation runs, enabling:
+ * - New vs. recurring finding classification
+ * - "Fixed" detection when a finding disappears
+ * - Finding trend statistics (are things getting better or worse?)
+ * - Age tracking (how long has a finding been open?)
+ *
+ * Data stored in .judges-findings.json
+ */
+import type { Finding, Severity } from "./types.js";
+export interface TrackedFinding {
+    /** Stable fingerprint based on ruleId + file + code context */
+    fingerprint: string;
+    /** Rule that generated this finding */
+    ruleId: string;
+    /** Finding severity */
+    severity: Severity;
+    /** File where the finding was detected */
+    filePath: string;
+    /** Finding title for display */
+    title: string;
+    /** First seen timestamp */
+    firstSeen: string;
+    /** Last seen timestamp */
+    lastSeen: string;
+    /** Number of consecutive runs this finding has appeared */
+    runCount: number;
+    /** Whether this finding is currently active */
+    status: "open" | "fixed";
+    /** When the finding was resolved */
+    fixedAt?: string;
+}
+export interface FindingStore {
+    version: string;
+    lastRunAt: string;
+    runNumber: number;
+    findings: TrackedFinding[];
+}
+export interface FindingDelta {
+    /** Findings that appeared for the first time in this run */
+    introduced: TrackedFinding[];
+    /** Findings that are still present from previous runs */
+    recurring: TrackedFinding[];
+    /** Findings from previous runs that are no longer present */
+    fixed: TrackedFinding[];
+    /** Summary statistics */
+    stats: {
+        totalOpen: number;
+        totalFixed: number;
+        introduced: number;
+        recurring: number;
+        fixed: number;
+        trend: "improving" | "stable" | "degrading";
+    };
+}
+/**
+ * Generate a stable fingerprint for a finding that survives minor code edits.
+ * Based on ruleId + file path + approximate code location.
+ */
+export declare function generateFindingFingerprint(finding: Finding, filePath: string): string;
+export declare function loadFindingStore(dir?: string): FindingStore;
+export declare function saveFindingStore(store: FindingStore, dir?: string): void;
+/**
+ * Update the finding store with results from a new evaluation run.
+ * Returns a delta describing what changed since the last run.
+ *
+ * When `dirOrStore` is a string, reads/writes `.judges-findings.json` in that
+ * directory.  When a `FindingStore` object is passed directly, operates
+ * in-memory (useful for testing) and does NOT persist to disk.
+ */
+export declare function updateFindings(currentFindings: Array<{
+    finding: Finding;
+    filePath: string;
+}>, dirOrStore?: string | FindingStore): FindingDelta;
+/**
+ * Get summary statistics from the finding store.
+ */
+export declare function getFindingStats(dirOrStore?: string | FindingStore): {
+    totalOpen: number;
+    totalFixed: number;
+    oldestOpen: string | undefined;
+    bySeverity: Record<string, number>;
+    byRule: Record<string, number>;
+    avgAge: number;
+    runCount: number;
+};
+/**
+ * Format finding delta as a human-readable summary for CLI output.
+ */
+export declare function formatDelta(delta: FindingDelta): string;
+//# sourceMappingURL=finding-lifecycle.d.ts.map

package/dist/finding-lifecycle.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-lifecycle.d.ts","sourceRoot":"","sources":["../src/finding-lifecycle.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAIH,OAAO,KAAK,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAIpD,MAAM,WAAW,cAAc;IAC7B,+DAA+D;IAC/D,WAAW,EAAE,MAAM,CAAC;IACpB,uCAAuC;IACvC,MAAM,EAAE,MAAM,CAAC;IACf,uBAAuB;IACvB,QAAQ,EAAE,QAAQ,CAAC;IACnB,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,gCAAgC;IAChC,KAAK,EAAE,MAAM,CAAC;IACd,2BAA2B;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,0BAA0B;IAC1B,QAAQ,EAAE,MAAM,CAAC;IACjB,2DAA2D;IAC3D,QAAQ,EAAE,MAAM,CAAC;IACjB,+CAA+C;IAC/C,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC;IACzB,oCAAoC;IACpC,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,cAAc,EAAE,CAAC;CAC5B;AAED,MAAM,WAAW,YAAY;IAC3B,4DAA4D;IAC5D,UAAU,EAAE,cAAc,EAAE,CAAC;IAC7B,yDAAyD;IACzD,SAAS,EAAE,cAAc,EAAE,CAAC;IAC5B,6DAA6D;IAC7D,KAAK,EAAE,cAAc,EAAE,CAAC;IACxB,yBAAyB;IACzB,KAAK,EAAE;QACL,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,EAAE,MAAM,CAAC;QACnB,UAAU,EAAE,MAAM,CAAC;QACnB,SAAS,EAAE,MAAM,CAAC;QAClB,KAAK,EAAE,MAAM,CAAC;QACd,KAAK,EAAE,WAAW,GAAG,QAAQ,GAAG,WAAW,CAAC;KAC7C,CAAC;CACH;AAID;;;GAGG;AACH,wBAAgB,0BAA0B,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,GAAG,MAAM,CAOrF;AAMD,wBAAgB,gBAAgB,CAAC,GAAG,GAAE,MAAY,GAAG,YAAY,CAoBhE;AAED,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,YAAY,EAAE,GAAG,GAAE,MAAY,GAAG,IAAI,CAG7E;AAID;;;;;;;GAOG;AACH,wBAAgB,cAAc,CAC5B,eAAe,EAAE,KAAK,CAAC;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,QAAQ,EAAE,MAAM,CAAA;CAAE,CAAC,EAC9D,UAAU,GAAE,MAAM,GAAG,YAAkB,GACtC,YAAY,CAmGd;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,UAAU,GAAE,MAAM,GAAG,YAAkB,GAAG;IACxE,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,GAAG,SAAS,CAAC;IAC/B,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;CAClB,CA6BA;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,YAAY,GAAG,MAAM,CAgCvD"}

package/dist/finding-lifecycle.js

@@ -0,0 +1,214 @@
+/**
+ * Finding Lifecycle Tracking
+ *
+ * Tracks individual findings across multiple evaluation runs, enabling:
+ * - New vs. recurring finding classification
+ * - "Fixed" detection when a finding disappears
+ * - Finding trend statistics (are things getting better or worse?)
+ * - Age tracking (how long has a finding been open?)
+ *
+ * Data stored in .judges-findings.json
+ */
+import { readFileSync, writeFileSync, existsSync } from "fs";
+import { resolve } from "path";
+// ─── Fingerprinting ─────────────────────────────────────────────────────────
+/**
+ * Generate a stable fingerprint for a finding that survives minor code edits.
+ * Based on ruleId + file path + approximate code location.
+ */
+export function generateFindingFingerprint(finding, filePath) {
+    // Use ruleId + file + line range bucket (groups of 5 lines to handle minor shifts)
+    const lineBucket = finding.lineNumbers?.[0] ? Math.floor(finding.lineNumbers[0] / 5) * 5 : 0;
+    // Simple hash-like string for fast comparison
+    const key = `${finding.ruleId}::${filePath}::${lineBucket}::${finding.title.slice(0, 50)}`;
+    return key;
+}
+// ─── Store I/O ───────────────────────────────────────────────────────────────
+const FINDINGS_FILE = ".judges-findings.json";
+export function loadFindingStore(dir = ".") {
+    const filePath = resolve(dir, FINDINGS_FILE);
+    if (!existsSync(filePath)) {
+        return {
+            version: "1.0.0",
+            lastRunAt: new Date().toISOString(),
+            runNumber: 0,
+            findings: [],
+        };
+    }
+    try {
+        return JSON.parse(readFileSync(filePath, "utf-8"));
+    }
+    catch {
+        return {
+            version: "1.0.0",
+            lastRunAt: new Date().toISOString(),
+            runNumber: 0,
+            findings: [],
+        };
+    }
+}
+export function saveFindingStore(store, dir = ".") {
+    const filePath = resolve(dir, FINDINGS_FILE);
+    writeFileSync(filePath, JSON.stringify(store, null, 2) + "\n", "utf-8");
+}
+// ─── Lifecycle Operations ────────────────────────────────────────────────────
+/**
+ * Update the finding store with results from a new evaluation run.
+ * Returns a delta describing what changed since the last run.
+ *
+ * When `dirOrStore` is a string, reads/writes `.judges-findings.json` in that
+ * directory.  When a `FindingStore` object is passed directly, operates
+ * in-memory (useful for testing) and does NOT persist to disk.
+ */
+export function updateFindings(currentFindings, dirOrStore = ".") {
+    const inMemory = typeof dirOrStore !== "string";
+    const store = inMemory ? dirOrStore : loadFindingStore(dirOrStore);
+    const now = new Date().toISOString();
+    store.runNumber++;
+    store.lastRunAt = now;
+    // Build fingerprint → finding map for current run
+    const currentMap = new Map();
+    for (const entry of currentFindings) {
+        const fp = generateFindingFingerprint(entry.finding, entry.filePath);
+        currentMap.set(fp, entry);
+    }
+    // Build fingerprint → tracked finding map for existing store
+    const existingMap = new Map();
+    for (const tracked of store.findings) {
+        existingMap.set(tracked.fingerprint, tracked);
+    }
+    const delta = {
+        introduced: [],
+        recurring: [],
+        fixed: [],
+        stats: {
+            totalOpen: 0,
+            totalFixed: 0,
+            introduced: 0,
+            recurring: 0,
+            fixed: 0,
+            trend: "stable",
+        },
+    };
+    // Process current findings
+    for (const [fp, entry] of currentMap) {
+        const existing = existingMap.get(fp);
+        if (existing) {
+            // Recurring — update last seen and run count
+            existing.lastSeen = now;
+            existing.runCount++;
+            existing.status = "open";
+            existing.fixedAt = undefined;
+            delta.recurring.push(existing);
+        }
+        else {
+            // New finding
+            const tracked = {
+                fingerprint: fp,
+                ruleId: entry.finding.ruleId,
+                severity: entry.finding.severity,
+                filePath: entry.filePath,
+                title: entry.finding.title,
+                firstSeen: now,
+                lastSeen: now,
+                runCount: 1,
+                status: "open",
+            };
+            store.findings.push(tracked);
+            delta.introduced.push(tracked);
+        }
+    }
+    // Detect fixed findings (were open, no longer present)
+    for (const tracked of store.findings) {
+        if (tracked.status === "open" && !currentMap.has(tracked.fingerprint)) {
+            tracked.status = "fixed";
+            tracked.fixedAt = now;
+            delta.fixed.push(tracked);
+        }
+    }
+    // Compute stats
+    const openFindings = store.findings.filter((f) => f.status === "open");
+    const fixedFindings = store.findings.filter((f) => f.status === "fixed");
+    delta.stats.totalOpen = openFindings.length;
+    delta.stats.totalFixed = fixedFindings.length;
+    delta.stats.introduced = delta.introduced.length;
+    delta.stats.recurring = delta.recurring.length;
+    delta.stats.fixed = delta.fixed.length;
+    // Determine trend
+    if (delta.fixed.length > delta.introduced.length) {
+        delta.stats.trend = "improving";
+    }
+    else if (delta.introduced.length > delta.fixed.length) {
+        delta.stats.trend = "degrading";
+    }
+    else {
+        delta.stats.trend = "stable";
+    }
+    // Prune very old fixed findings (> 30 days)
+    const thirtyDaysAgo = new Date(Date.now() - 30 * 24 * 60 * 60 * 1000).toISOString();
+    store.findings = store.findings.filter((f) => f.status === "open" || (f.fixedAt && f.fixedAt > thirtyDaysAgo));
+    if (!inMemory) {
+        saveFindingStore(store, dirOrStore);
+    }
+    return delta;
+}
+/**
+ * Get summary statistics from the finding store.
+ */
+export function getFindingStats(dirOrStore = ".") {
+    const store = typeof dirOrStore === "string" ? loadFindingStore(dirOrStore) : dirOrStore;
+    const openFindings = store.findings.filter((f) => f.status === "open");
+    const fixedFindings = store.findings.filter((f) => f.status === "fixed");
+    const bySeverity = {};
+    const byRule = {};
+    let totalAgeDays = 0;
+    for (const f of openFindings) {
+        bySeverity[f.severity] = (bySeverity[f.severity] || 0) + 1;
+        byRule[f.ruleId] = (byRule[f.ruleId] || 0) + 1;
+        const age = (Date.now() - new Date(f.firstSeen).getTime()) / (1000 * 60 * 60 * 24);
+        totalAgeDays += age;
+    }
+    const sortedOpen = [...openFindings].sort((a, b) => new Date(a.firstSeen).getTime() - new Date(b.firstSeen).getTime());
+    return {
+        totalOpen: openFindings.length,
+        totalFixed: fixedFindings.length,
+        oldestOpen: sortedOpen[0]?.firstSeen,
+        bySeverity,
+        byRule,
+        avgAge: openFindings.length > 0 ? totalAgeDays / openFindings.length : 0,
+        runCount: store.runNumber,
+    };
+}
+/**
+ * Format finding delta as a human-readable summary for CLI output.
+ */
+export function formatDelta(delta) {
+    const trendEmoji = delta.stats.trend === "improving" ? "📈" : delta.stats.trend === "degrading" ? "📉" : "➡️";
+    const lines = [
+        `  Finding Lifecycle: ${trendEmoji} ${delta.stats.trend}`,
+        `  Open: ${delta.stats.totalOpen} | Fixed: ${delta.stats.totalFixed}`,
+    ];
+    if (delta.stats.introduced > 0) {
+        lines.push(`  🆕 New: ${delta.stats.introduced}`);
+        for (const f of delta.introduced.slice(0, 5)) {
+            lines.push(`     + [${f.severity.toUpperCase()}] ${f.ruleId}: ${f.title}`);
+        }
+        if (delta.introduced.length > 5) {
+            lines.push(`     ... and ${delta.introduced.length - 5} more`);
+        }
+    }
+    if (delta.stats.fixed > 0) {
+        lines.push(`  ✅ Fixed: ${delta.stats.fixed}`);
+        for (const f of delta.fixed.slice(0, 5)) {
+            lines.push(`     - [${f.severity.toUpperCase()}] ${f.ruleId}: ${f.title}`);
+        }
+        if (delta.fixed.length > 5) {
+            lines.push(`     ... and ${delta.fixed.length - 5} more`);
+        }
+    }
+    if (delta.stats.recurring > 0) {
+        lines.push(`  🔄 Recurring: ${delta.stats.recurring}`);
+    }
+    return lines.join("\n");
+}
+//# sourceMappingURL=finding-lifecycle.js.map

package/dist/finding-lifecycle.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"finding-lifecycle.js","sourceRoot":"","sources":["../src/finding-lifecycle.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAC7D,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAqD/B,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,UAAU,0BAA0B,CAAC,OAAgB,EAAE,QAAgB;IAC3E,mFAAmF;IACnF,MAAM,UAAU,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAE7F,8CAA8C;IAC9C,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,MAAM,KAAK,QAAQ,KAAK,UAAU,KAAK,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;IAC3F,OAAO,GAAG,CAAC;AACb,CAAC;AAED,gFAAgF;AAEhF,MAAM,aAAa,GAAG,uBAAuB,CAAC;AAE9C,MAAM,UAAU,gBAAgB,CAAC,MAAc,GAAG;IAChD,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;IAC7C,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO;YACL,OAAO,EAAE,OAAO;YAChB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,SAAS,EAAE,CAAC;YACZ,QAAQ,EAAE,EAAE;SACb,CAAC;IACJ,CAAC;IACD,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAC;IACrD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;YACL,OAAO,EAAE,OAAO;YAChB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,SAAS,EAAE,CAAC;YACZ,QAAQ,EAAE,EAAE;SACb,CAAC;IACJ,CAAC;AACH,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,KAAmB,EAAE,MAAc,GAAG;IACrE,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,EAAE,aAAa,CAAC,CAAC;IAC7C,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC,CAAC;AAC1E,CAAC;AAED,gFAAgF;AAEhF;;;;;;;GAOG;AACH,MAAM,UAAU,cAAc,CAC5B,eAA8D,EAC9D,aAAoC,GAAG;IAEvC,MAAM,QAAQ,GAAG,OAAO,UAAU,KAAK,QAAQ,CAAC;IAChD,MAAM,KAAK,GAAG,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,gBAAgB,CAAC,UAAU,CAAC,CAAC;IACnE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrC,KAAK,CAAC,SAAS,EAAE,CAAC;IAClB,KAAK,CAAC,SAAS,GAAG,GAAG,CAAC;IAEtB,kDAAkD;IAClD,MAAM,UAAU,GAAG,IAAI,GAAG,EAAkD,CAAC;IAC7E,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;QACpC,MAAM,EAAE,GAAG,0BAA0B,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC;QACrE,UAAU,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;IAC5B,CAAC;IAED,6DAA6D;IAC7D,MAAM,WAAW,GAAG,IAAI,GAAG,EAA0B,CAAC;IACtD,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QACrC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;IAChD,CAAC;IAED,MAAM,KAAK,GAAiB;QAC1B,UAAU,EAAE,EAAE;QACd,SAAS,EAAE,EAAE;QACb,KAAK,EAAE,EAAE;QACT,KAAK,EAAE;YACL,SAAS,EAAE,CAAC;YACZ,UAAU,EAAE,CAAC;YACb,UAAU,EAAE,CAAC;YACb,SAAS,EAAE,CAAC;YACZ,KAAK,EAAE,CAAC;YACR,KAAK,EAAE,QAAQ;SAChB;KACF,CAAC;IAEF,2BAA2B;IAC3B,KAAK,MAAM,CAAC,EAAE,EAAE,KAAK,CAAC,IAAI,UAAU,EAAE,CAAC;QACrC,MAAM,QAAQ,GAAG,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAErC,IAAI,QAAQ,EAAE,CAAC;YACb,6CAA6C;YAC7C,QAAQ,CAAC,QAAQ,GAAG,GAAG,CAAC;YACxB,QAAQ,CAAC,QAAQ,EAAE,CAAC;YACpB,QAAQ,CAAC,MAAM,GAAG,MAAM,CAAC;YACzB,QAAQ,CAAC,OAAO,GAAG,SAAS,CAAC;YAC7B,KAAK,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACjC,CAAC;aAAM,CAAC;YACN,cAAc;YACd,MAAM,OAAO,GAAmB;gBAC9B,WAAW,EAAE,EAAE;gBACf,MAAM,EAAE,KAAK,CAAC,OAAO,CAAC,MAAM;gBAC5B,QAAQ,EAAE,KAAK,CAAC,OAAO,CAAC,QAAQ;gBAChC,QAAQ,EAAE,KAAK,CAAC,QAAQ;gBACxB,KAAK,EAAE,KAAK,CAAC,OAAO,CAAC,KAAK;gBAC1B,SAAS,EAAE,GAAG;gBACd,QAAQ,EAAE,GAAG;gBACb,QAAQ,EAAE,CAAC;gBACX,MAAM,EAAE,MAAM;aACf,CAAC;YACF,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YAC7B,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACjC,CAAC;IACH,CAAC;IAED,uDAAuD;IACvD,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;QACrC,IAAI,OAAO,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;YACtE,OAAO,CAAC,MAAM,GAAG,OAAO,CAAC;YACzB,OAAO,CAAC,OAAO,GAAG,GAAG,CAAC;YACtB,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IAED,gBAAgB;IAChB,MAAM,YAAY,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IACvE,MAAM,aAAa,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC,CAAC;IAEzE,KAAK,CAAC,KAAK,CAAC,SAAS,GAAG,YAAY,CAAC,MAAM,CAAC;IAC5C,KAAK,CAAC,KAAK,CAAC,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC;IAC9C,KAAK,CAAC,KAAK,CAAC,UAAU,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC;IACjD,KAAK,CAAC,KAAK,CAAC,SAAS,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC;IAC/C,KAAK,CAAC,KAAK,CAAC,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC;IAEvC,kBAAkB;IAClB,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;QACjD,KAAK,CAAC,KAAK,CAAC,KAAK,GAAG,WAAW,CAAC;IAClC,CAAC;SAAM,IAAI,KAAK,CAAC,UAAU,CAAC,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC;QACxD,KAAK,CAAC,KAAK,CAAC,KAAK,GAAG,WAAW,CAAC;IAClC,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,KAAK,CAAC,KAAK,GAAG,QAAQ,CAAC;IAC/B,CAAC;IAED,4CAA4C;IAC5C,MAAM,aAAa,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;IACpF,KAAK,CAAC,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,IAAI,CAAC,CAAC,CAAC,OAAO,IAAI,CAAC,CAAC,OAAO,GAAG,aAAa,CAAC,CAAC,CAAC;IAE/G,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,gBAAgB,CAAC,KAAK,EAAE,UAAoB,CAAC,CAAC;IAChD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,aAAoC,GAAG;IASrE,MAAM,KAAK,GAAG,OAAO,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,gBAAgB,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;IACzF,MAAM,YAAY,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IACvE,MAAM,aAAa,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC,CAAC;IAEzE,MAAM,UAAU,GAA2B,EAAE,CAAC;IAC9C,MAAM,MAAM,GAA2B,EAAE,CAAC;IAC1C,IAAI,YAAY,GAAG,CAAC,CAAC;IAErB,KAAK,MAAM,CAAC,IAAI,YAAY,EAAE,CAAC;QAC7B,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC3D,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC/C,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC,GAAG,CAAC,IAAI,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC;QACnF,YAAY,IAAI,GAAG,CAAC;IACtB,CAAC;IAED,MAAM,UAAU,GAAG,CAAC,GAAG,YAAY,CAAC,CAAC,IAAI,CACvC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,GAAG,IAAI,IAAI,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAC5E,CAAC;IAEF,OAAO;QACL,SAAS,EAAE,YAAY,CAAC,MAAM;QAC9B,UAAU,EAAE,aAAa,CAAC,MAAM;QAChC,UAAU,EAAE,UAAU,CAAC,CAAC,CAAC,EAAE,SAAS;QACpC,UAAU;QACV,MAAM;QACN,MAAM,EAAE,YAAY,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,YAAY,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;QACxE,QAAQ,EAAE,KAAK,CAAC,SAAS;KAC1B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,KAAmB;IAC7C,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,KAAK,KAAK,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,KAAK,WAAW,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;IAC9G,MAAM,KAAK,GAAG;QACZ,wBAAwB,UAAU,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE;QACzD,WAAW,KAAK,CAAC,KAAK,CAAC,SAAS,aAAa,KAAK,CAAC,KAAK,CAAC,UAAU,EAAE;KACtE,CAAC;IAEF,IAAI,KAAK,CAAC,KAAK,CAAC,UAAU,GAAG,CAAC,EAAE,CAAC;QAC/B,KAAK,CAAC,IAAI,CAAC,aAAa,KAAK,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC,CAAC;QAClD,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YAC7C,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;QAC7E,CAAC;QACD,IAAI,KAAK,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChC,KAAK,CAAC,IAAI,CAAC,gBAAgB,KAAK,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,CAAC;QACjE,CAAC;IACH,CAAC;IAED,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC;QAC1B,KAAK,CAAC,IAAI,CAAC,cAAc,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;QAC9C,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YACxC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC;QAC7E,CAAC;QACD,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,KAAK,CAAC,IAAI,CAAC,gBAAgB,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,OAAO,CAAC,CAAC;QAC5D,CAAC;IACH,CAAC;IAED,IAAI,KAAK,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,EAAE,CAAC;QAC9B,KAAK,CAAC,IAAI,CAAC,mBAAmB,KAAK,CAAC,KAAK,CAAC,SAAS,EAAE,CAAC,CAAC;IACzD,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/dist/patches/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/patches/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AA6tC3C,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,EAAE,CAyC9E"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/patches/index.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AAu1C3C,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,EAAE,CAyC9E"}

package/dist/patches/index.js

@@ -710,6 +710,133 @@ const PATCH_RULES = [
             return { oldText: m[0], newText: `${m[1]}// SAFETY: TODO: document why unsafe is needed\n${m[1]}unsafe {` };
         },
     },
+    // Rust: panic!() in library → return Result comment
+    {
+        match: /panic.*library|panic.*production|avoid.*panic/i,
+        generate: (line) => {
+            const m = line.match(/panic!\s*\(\s*(["'][^"']*["'])\s*\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `return Err(anyhow::anyhow!(${m[1]})) /* TODO: replace panic with Result */` };
+        },
+    },
+    // Rust: .clone() hint → borrow comment
+    {
+        match: /unnecessary.*clone|avoid.*clone|excessive.*clone/i,
+        generate: (line) => {
+            const m = line.match(/(\w+)\.clone\(\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `${m[1]}.clone() /* TODO: consider borrowing &${m[1]} instead */` };
+        },
+    },
+    // ── Additional Python Patches ──
+    // Python: eval() → ast.literal_eval()
+    {
+        match: /dangerous.*eval|python.*eval|eval.*usage/i,
+        generate: (line) => {
+            const m = line.match(/\beval\s*\(\s*(\w+)\s*\)/);
+            if (!m)
+                return null;
+            // Only match if it looks like Python (no 'new Function' around it)
+            if (line.includes("new Function") || line.includes("Function("))
+                return null;
+            return { oldText: m[0], newText: `ast.literal_eval(${m[1]})` };
+        },
+    },
+    // Python: requests without verify → verify=True
+    {
+        match: /ssl.*verif.*disabled|tls.*verif.*disabled|certificate.*verif/i,
+        generate: (line) => {
+            const m = line.match(/(requests\.(?:get|post|put|delete|patch)\s*\([^)]*?)verify\s*=\s*False/);
+            if (!m)
+                return null;
+            return { oldText: "verify=False", newText: "verify=True" };
+        },
+    },
+    // Python: subprocess with shell=True → shell=False
+    {
+        match: /shell.*true|subprocess.*shell|shell.*inject/i,
+        generate: (line) => {
+            const m = line.match(/(subprocess\.(?:run|call|check_call|check_output|Popen)\s*\([^)]*?)shell\s*=\s*True/);
+            if (!m)
+                return null;
+            return { oldText: "shell=True", newText: "shell=False" };
+        },
+    },
+    // Python: open() without encoding → add encoding
+    {
+        match: /missing.*encoding|file.*encoding|open.*without.*encoding/i,
+        generate: (line) => {
+            const m = line.match(/(open\s*\(\s*\w+\s*,\s*["'][rw](?:t)?["'])\s*\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `${m[1]}, encoding="utf-8")` };
+        },
+    },
+    // ── Additional Go Patches ──
+    // Go: log.Fatal in HTTP handler → http.Error
+    {
+        match: /log\.fatal.*handler|fatal.*http.*handler|log.*fatal.*request/i,
+        generate: (line) => {
+            const m = line.match(/log\.Fatal(?:f|ln)?\s*\(([^)]*)\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `http.Error(w, ${m[1]}, http.StatusInternalServerError)` };
+        },
+    },
+    // Go: defer file.Close() without error check → named return
+    {
+        match: /defer.*close.*error|close.*without.*check|resource.*leak/i,
+        generate: (line) => {
+            const m = line.match(/(defer\s+\w+\.Close)\s*\(\s*\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `${m[1]}() // TODO: check Close() error in named return` };
+        },
+    },
+    // ── Additional Java Patches ──
+    // Java: System.out.println → Logger
+    {
+        match: /system\.out|console.*output|print.*instead.*log/i,
+        generate: (line) => {
+            const m = line.match(/System\.out\.println\s*\(([^)]*)\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `logger.info(${m[1]})` };
+        },
+    },
+    // Java: String concatenation in SQL → PreparedStatement marker
+    {
+        match: /sql.*concatenat|string.*concat.*sql|sql.*inject/i,
+        generate: (line) => {
+            const m = line.match(/(Statement\s*\w+\s*=\s*\w+\.createStatement)\s*\(\s*\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `/* TODO: use PreparedStatement instead */ ${m[0]}` };
+        },
+    },
+    // ── Additional C# Patches ──
+    // C#: string.Format/interpolation in SQL → parameterized
+    {
+        match: /sql.*inject|string.*interpol.*sql|sql.*concat/i,
+        generate: (line) => {
+            const m = line.match(/ExecuteSqlRaw\s*\(\s*\$/);
+            if (!m)
+                return null;
+            return { oldText: "ExecuteSqlRaw($", newText: "ExecuteSqlInterpolated($" };
+        },
+    },
+    // C#: Console.WriteLine → ILogger
+    {
+        match: /console.*writeline.*log|console.*instead.*logger/i,
+        generate: (line) => {
+            const m = line.match(/Console\.WriteLine\s*\(([^)]*)\)/);
+            if (!m)
+                return null;
+            return { oldText: m[0], newText: `_logger.LogInformation(${m[1]})` };
+        },
+    },
     // ── Hardcoded Secrets ──
     // Hardcoded password/secret → environment variable
     {