@kevinrabun/judges 3.42.0 → 3.44.0

package/dist/commands/policy-audit.js

@@ -0,0 +1,161 @@
+/**
+ * Policy audit trail — record which rules/judges were active at evaluation
+ * time, creating an immutable local audit log for compliance proof.
+ *
+ * Enables SOC2/ISO27001 auditors to verify that security policies were
+ * enforced at the time of each evaluation. All data stays local.
+ */
+import { createHash } from "crypto";
+// ─── Policy Snapshot ────────────────────────────────────────────────────────
+export function capturePolicySnapshot(config, configPath, enabledJudges, version) {
+    const { execSync } = require("child_process");
+    let gitCommit;
+    try {
+        gitCommit = execSync("git rev-parse HEAD", { encoding: "utf-8" }).trim();
+    }
+    catch {
+        /* not in git */
+    }
+    const snapshot = {
+        policyHash: "",
+        timestamp: new Date().toISOString(),
+        configPath,
+        presets: config.preset ? [config.preset] : [],
+        enabledJudges,
+        disabledJudges: config.disabledJudges || [],
+        disabledRules: config.disabledRules || [],
+        ruleOverrides: config.ruleOverrides || {},
+        minSeverity: config.minSeverity || "info",
+        gitCommit,
+        version,
+    };
+    // Compute deterministic hash of policy state
+    const hashInput = JSON.stringify({
+        presets: snapshot.presets,
+        enabledJudges: snapshot.enabledJudges.sort(),
+        disabledJudges: snapshot.disabledJudges.sort(),
+        disabledRules: snapshot.disabledRules.sort(),
+        ruleOverrides: snapshot.ruleOverrides,
+        minSeverity: snapshot.minSeverity,
+    });
+    snapshot.policyHash = createHash("sha256").update(hashInput).digest("hex").slice(0, 16);
+    return snapshot;
+}
+// ─── Audit Log Management ──────────────────────────────────────────────────
+const AUDIT_FILE = ".judges-audit.json";
+function loadAuditLog() {
+    const { readFileSync, existsSync } = require("fs");
+    if (existsSync(AUDIT_FILE)) {
+        try {
+            return JSON.parse(readFileSync(AUDIT_FILE, "utf-8"));
+        }
+        catch {
+            /* corrupt file */
+        }
+    }
+    return { entries: [], version: "1.0" };
+}
+function saveAuditLog(log) {
+    const { writeFileSync } = require("fs");
+    writeFileSync(AUDIT_FILE, JSON.stringify(log, null, 2), "utf-8");
+}
+export function recordAuditEntry(policySnapshot, verdict, filesEvaluated) {
+    const entry = {
+        id: createHash("sha256")
+            .update(policySnapshot.timestamp + policySnapshot.policyHash)
+            .digest("hex")
+            .slice(0, 12),
+        timestamp: policySnapshot.timestamp,
+        policySnapshot,
+        verdictSummary: {
+            verdict: verdict.overallVerdict,
+            score: verdict.overallScore,
+            criticalCount: verdict.criticalCount,
+            highCount: verdict.highCount,
+            totalFindings: verdict.findings.length,
+        },
+        filesEvaluated,
+    };
+    const log = loadAuditLog();
+    log.entries.push(entry);
+    // Keep last 1000 entries
+    if (log.entries.length > 1000) {
+        log.entries = log.entries.slice(-1000);
+    }
+    saveAuditLog(log);
+    return entry;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runPolicyAudit(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges policy-audit — View and manage the policy audit trail
+
+Usage:
+  judges policy-audit                       Show recent audit entries
+  judges policy-audit --last 10             Show last 10 entries
+  judges policy-audit --diff                Compare current policy to last evaluation
+  judges policy-audit --export audit.json   Export full audit log
+
+Options:
+  --last <n>           Show last N entries (default: 5)
+  --diff               Show policy changes since last evaluation
+  --export <path>      Export audit log to file
+  --format json        JSON output
+  --help, -h           Show this help
+
+The audit trail records which rules, judges, and configs were active at
+each evaluation time. Useful for SOC2/ISO27001 compliance proof.
+`);
+        return;
+    }
+    const { readFileSync, existsSync, writeFileSync } = require("fs");
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const lastN = parseInt(argv.find((_a, i) => argv[i - 1] === "--last") || "5", 10);
+    const exportPath = argv.find((_a, i) => argv[i - 1] === "--export");
+    if (!existsSync(AUDIT_FILE)) {
+        console.log("\n  No audit trail found. Run an evaluation first.\n");
+        return;
+    }
+    const log = JSON.parse(readFileSync(AUDIT_FILE, "utf-8"));
+    if (exportPath) {
+        writeFileSync(exportPath, JSON.stringify(log, null, 2), "utf-8");
+        console.log(`  Exported ${log.entries.length} audit entries to ${exportPath}`);
+        return;
+    }
+    const entries = log.entries.slice(-lastN);
+    if (format === "json") {
+        console.log(JSON.stringify(entries, null, 2));
+        return;
+    }
+    if (argv.includes("--diff") && log.entries.length >= 2) {
+        const prev = log.entries[log.entries.length - 2].policySnapshot;
+        const curr = log.entries[log.entries.length - 1].policySnapshot;
+        console.log("\n  Policy Diff (last two evaluations)\n");
+        if (prev.policyHash !== curr.policyHash) {
+            console.log("  ⚠️  Policy changed!\n");
+            const addedJudges = curr.enabledJudges.filter((j) => !prev.enabledJudges.includes(j));
+            const removedJudges = prev.enabledJudges.filter((j) => !curr.enabledJudges.includes(j));
+            if (addedJudges.length)
+                console.log(`  + Added judges: ${addedJudges.join(", ")}`);
+            if (removedJudges.length)
+                console.log(`  - Removed judges: ${removedJudges.join(", ")}`);
+            if (prev.minSeverity !== curr.minSeverity)
+                console.log(`  ~ Severity: ${prev.minSeverity} → ${curr.minSeverity}`);
+        }
+        else {
+            console.log("  ✅ No policy changes\n");
+        }
+        console.log("");
+        return;
+    }
+    console.log(`\n  Policy Audit Trail (last ${entries.length} of ${log.entries.length})\n`);
+    for (const e of entries) {
+        const v = e.verdictSummary;
+        console.log(`  ${e.id}  ${e.timestamp}`);
+        console.log(`    Policy: ${e.policySnapshot.policyHash}  Judges: ${e.policySnapshot.enabledJudges.length}  Commit: ${e.policySnapshot.gitCommit?.slice(0, 8) || "N/A"}`);
+        console.log(`    Verdict: ${v.verdict}  Score: ${v.score}  Critical: ${v.criticalCount}  High: ${v.highCount}  Findings: ${v.totalFindings}`);
+        console.log("");
+    }
+}
+//# sourceMappingURL=policy-audit.js.map

package/dist/commands/policy-audit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policy-audit.js","sourceRoot":"","sources":["../../src/commands/policy-audit.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AAiDpC,+EAA+E;AAE/E,MAAM,UAAU,qBAAqB,CACnC,MAAoB,EACpB,UAAkB,EAClB,aAAuB,EACvB,OAAe;IAEf,MAAM,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC,eAAe,CAAC,CAAC;IAE9C,IAAI,SAA6B,CAAC;IAClC,IAAI,CAAC;QACH,SAAS,GAAG,QAAQ,CAAC,oBAAoB,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAC3E,CAAC;IAAC,MAAM,CAAC;QACP,gBAAgB;IAClB,CAAC;IAED,MAAM,QAAQ,GAAmB;QAC/B,UAAU,EAAE,EAAE;QACd,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,UAAU;QACV,OAAO,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE;QAC7C,aAAa;QACb,cAAc,EAAE,MAAM,CAAC,cAAc,IAAI,EAAE;QAC3C,aAAa,EAAE,MAAM,CAAC,aAAa,IAAI,EAAE;QACzC,aAAa,EAAE,MAAM,CAAC,aAAa,IAAI,EAAE;QACzC,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,MAAM;QACzC,SAAS;QACT,OAAO;KACR,CAAC;IAEF,6CAA6C;IAC7C,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC;QAC/B,OAAO,EAAE,QAAQ,CAAC,OAAO;QACzB,aAAa,EAAE,QAAQ,CAAC,aAAa,CAAC,IAAI,EAAE;QAC5C,cAAc,EAAE,QAAQ,CAAC,cAAc,CAAC,IAAI,EAAE;QAC9C,aAAa,EAAE,QAAQ,CAAC,aAAa,CAAC,IAAI,EAAE;QAC5C,aAAa,EAAE,QAAQ,CAAC,aAAa;QACrC,WAAW,EAAE,QAAQ,CAAC,WAAW;KAClC,CAAC,CAAC;IACH,QAAQ,CAAC,UAAU,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAExF,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,8EAA8E;AAE9E,MAAM,UAAU,GAAG,oBAAoB,CAAC;AAExC,SAAS,YAAY;IACnB,MAAM,EAAE,YAAY,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACnD,IAAI,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;QACvD,CAAC;QAAC,MAAM,CAAC;YACP,kBAAkB;QACpB,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;AACzC,CAAC;AAED,SAAS,YAAY,CAAC,GAAa;IACjC,MAAM,EAAE,aAAa,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACxC,aAAa,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;AACnE,CAAC;AAED,MAAM,UAAU,gBAAgB,CAC9B,cAA8B,EAC9B,OAAwB,EACxB,cAAsB;IAEtB,MAAM,KAAK,GAAe;QACxB,EAAE,EAAE,UAAU,CAAC,QAAQ,CAAC;aACrB,MAAM,CAAC,cAAc,CAAC,SAAS,GAAG,cAAc,CAAC,UAAU,CAAC;aAC5D,MAAM,CAAC,KAAK,CAAC;aACb,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;QACf,SAAS,EAAE,cAAc,CAAC,SAAS;QACnC,cAAc;QACd,cAAc,EAAE;YACd,OAAO,EAAE,OAAO,CAAC,cAAc;YAC/B,KAAK,EAAE,OAAO,CAAC,YAAY;YAC3B,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,aAAa,EAAE,OAAO,CAAC,QAAQ,CAAC,MAAM;SACvC;QACD,cAAc;KACf,CAAC;IAEF,MAAM,GAAG,GAAG,YAAY,EAAE,CAAC;IAC3B,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAExB,yBAAyB;IACzB,IAAI,GAAG,CAAC,OAAO,CAAC,MAAM,GAAG,IAAI,EAAE,CAAC;QAC9B,GAAG,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC;IAED,YAAY,CAAC,GAAG,CAAC,CAAC;IAClB,OAAO,KAAK,CAAC;AACf,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,cAAc,CAAC,IAAc;IAC3C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;CAkBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,EAAE,YAAY,EAAE,UAAU,EAAE,aAAa,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAClE,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,IAAI,GAAG,EAAE,EAAE,CAAC,CAAC;IAClG,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,CAAC;IAEpF,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC;QACpE,OAAO;IACT,CAAC;IAED,MAAM,GAAG,GAAa,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC;IAEpE,IAAI,UAAU,EAAE,CAAC;QACf,aAAa,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QACjE,OAAO,CAAC,GAAG,CAAC,cAAc,GAAG,CAAC,OAAO,CAAC,MAAM,qBAAqB,UAAU,EAAE,CAAC,CAAC;QAC/E,OAAO;IACT,CAAC;IAED,MAAM,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC;IAE1C,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC9C,OAAO;IACT,CAAC;IAED,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;QACvD,MAAM,IAAI,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,cAAc,CAAC;QAChE,MAAM,IAAI,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,cAAc,CAAC;QAEhE,OAAO,CAAC,GAAG,CAAC,0CAA0C,CAAC,CAAC;QACxD,IAAI,IAAI,CAAC,UAAU,KAAK,IAAI,CAAC,UAAU,EAAE,CAAC;YACxC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;YACvC,MAAM,WAAW,GAAG,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;YAC9F,MAAM,aAAa,GAAG,IAAI,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;YAChG,IAAI,WAAW,CAAC,MAAM;gBAAE,OAAO,CAAC,GAAG,CAAC,qBAAqB,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACnF,IAAI,aAAa,CAAC,MAAM;gBAAE,OAAO,CAAC,GAAG,CAAC,uBAAuB,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACzF,IAAI,IAAI,CAAC,WAAW,KAAK,IAAI,CAAC,WAAW;gBAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,IAAI,CAAC,WAAW,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;QACpH,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;QACzC,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChB,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,gCAAgC,OAAO,CAAC,MAAM,OAAO,GAAG,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC;IAC1F,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,MAAM,CAAC,GAAG,CAAC,CAAC,cAAc,CAAC;QAC3B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC;QACzC,OAAO,CAAC,GAAG,CACT,eAAe,CAAC,CAAC,cAAc,CAAC,UAAU,aAAa,CAAC,CAAC,cAAc,CAAC,aAAa,CAAC,MAAM,aAAa,CAAC,CAAC,cAAc,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,KAAK,EAAE,CAC5J,CAAC;QACF,OAAO,CAAC,GAAG,CACT,gBAAgB,CAAC,CAAC,OAAO,YAAY,CAAC,CAAC,KAAK,eAAe,CAAC,CAAC,aAAa,WAAW,CAAC,CAAC,SAAS,eAAe,CAAC,CAAC,aAAa,EAAE,CACjI,CAAC;QACF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/commands/recommend.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Rule recommendations — analyze project stack and suggest which
+ * judges/rules are most relevant.
+ *
+ * Uses local file analysis only — no external services.
+ */
+export interface StackSignal {
+    framework: string;
+    confidence: number;
+    detectedVia: string;
+}
+export interface JudgeRecommendation {
+    judgeId: string;
+    relevance: "high" | "medium" | "low";
+    reason: string;
+    estimatedCoverage: string;
+}
+export declare function detectStack(dir?: string): StackSignal[];
+export declare function getRecommendations(dir?: string): JudgeRecommendation[];
+export declare function runRecommend(argv: string[]): void;
+//# sourceMappingURL=recommend.d.ts.map

package/dist/commands/recommend.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"recommend.d.ts","sourceRoot":"","sources":["../../src/commands/recommend.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAQH,MAAM,WAAW,WAAW;IAC1B,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACrC,MAAM,EAAE,MAAM,CAAC;IACf,iBAAiB,EAAE,MAAM,CAAC;CAC3B;AA+ED,wBAAgB,WAAW,CAAC,GAAG,SAAM,GAAG,WAAW,EAAE,CAuDpD;AAgBD,wBAAgB,kBAAkB,CAAC,GAAG,SAAM,GAAG,mBAAmB,EAAE,CAsEnE;AAID,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAmEjD"}

package/dist/commands/recommend.js

@@ -0,0 +1,283 @@
+/**
+ * Rule recommendations — analyze project stack and suggest which
+ * judges/rules are most relevant.
+ *
+ * Uses local file analysis only — no external services.
+ */
+import { readdirSync, readFileSync, existsSync, statSync } from "fs";
+import { join, extname } from "path";
+import { defaultRegistry } from "../judge-registry.js";
+// ─── Stack Detection ────────────────────────────────────────────────────────
+const FRAMEWORK_SIGNALS = [
+    { framework: "React", files: [], deps: ["react", "react-dom", "next", "@remix-run/react"] },
+    { framework: "Next.js", files: ["next.config.js", "next.config.mjs", "next.config.ts"], deps: ["next"] },
+    { framework: "Express", files: [], deps: ["express"] },
+    { framework: "FastAPI", files: [], deps: ["fastapi", "uvicorn"] },
+    { framework: "Django", files: ["manage.py", "settings.py"], deps: ["django"] },
+    { framework: "Spring Boot", files: ["pom.xml", "build.gradle"], deps: ["spring-boot"] },
+    { framework: "Rails", files: ["Gemfile", "config/routes.rb"], deps: ["rails"] },
+    { framework: "Terraform", files: [], deps: [] },
+    { framework: "Kubernetes", files: [], deps: [] },
+    { framework: "Docker", files: ["Dockerfile", "docker-compose.yml", "docker-compose.yaml"], deps: [] },
+    { framework: "Vue", files: [], deps: ["vue", "nuxt"] },
+    { framework: "Angular", files: ["angular.json"], deps: ["@angular/core"] },
+    { framework: "Svelte", files: ["svelte.config.js"], deps: ["svelte", "@sveltejs/kit"] },
+    { framework: "Flask", files: [], deps: ["flask"] },
+    { framework: "Go", files: ["go.mod", "go.sum"], deps: [] },
+    { framework: "Rust", files: ["Cargo.toml"], deps: [] },
+];
+function scanDirectory(dir, depth = 0, maxDepth = 3) {
+    if (depth > maxDepth)
+        return [];
+    const files = [];
+    try {
+        for (const entry of readdirSync(dir)) {
+            if (entry.startsWith(".") || entry === "node_modules" || entry === "vendor" || entry === "dist")
+                continue;
+            const full = join(dir, entry);
+            try {
+                const stat = statSync(full);
+                if (stat.isFile())
+                    files.push(entry);
+                else if (stat.isDirectory())
+                    files.push(...scanDirectory(full, depth + 1, maxDepth).map((f) => `${entry}/${f}`));
+            }
+            catch {
+                /* skip */
+            }
+        }
+    }
+    catch {
+        /* skip */
+    }
+    return files;
+}
+function detectLanguages(files) {
+    const extMap = {
+        ".ts": "TypeScript",
+        ".tsx": "TypeScript",
+        ".js": "JavaScript",
+        ".jsx": "JavaScript",
+        ".py": "Python",
+        ".java": "Java",
+        ".go": "Go",
+        ".rs": "Rust",
+        ".cs": "C#",
+        ".cpp": "C++",
+        ".c": "C",
+        ".rb": "Ruby",
+        ".tf": "Terraform",
+        ".yaml": "YAML",
+        ".yml": "YAML",
+        ".sql": "SQL",
+        ".sh": "Shell",
+        ".ps1": "PowerShell",
+    };
+    const counts = {};
+    for (const f of files) {
+        const ext = extname(f);
+        const lang = extMap[ext];
+        if (lang)
+            counts[lang] = (counts[lang] || 0) + 1;
+    }
+    return counts;
+}
+export function detectStack(dir = ".") {
+    const files = scanDirectory(dir);
+    const signals = [];
+    // Check for framework config files
+    for (const fw of FRAMEWORK_SIGNALS) {
+        for (const file of fw.files) {
+            if (files.includes(file) || existsSync(join(dir, file))) {
+                signals.push({ framework: fw.framework, confidence: 0.9, detectedVia: `config file: ${file}` });
+            }
+        }
+    }
+    // Check package.json dependencies
+    const pkgPath = join(dir, "package.json");
+    if (existsSync(pkgPath)) {
+        try {
+            const pkg = JSON.parse(readFileSync(pkgPath, "utf-8"));
+            const allDeps = { ...pkg.dependencies, ...pkg.devDependencies };
+            for (const fw of FRAMEWORK_SIGNALS) {
+                for (const dep of fw.deps) {
+                    if (allDeps[dep]) {
+                        const existing = signals.find((s) => s.framework === fw.framework);
+                        if (!existing) {
+                            signals.push({ framework: fw.framework, confidence: 0.85, detectedVia: `package.json: ${dep}` });
+                        }
+                    }
+                }
+            }
+        }
+        catch {
+            /* skip */
+        }
+    }
+    // Check for Terraform files
+    if (files.some((f) => f.endsWith(".tf"))) {
+        signals.push({ framework: "Terraform", confidence: 0.95, detectedVia: "*.tf files" });
+    }
+    // Check for Kubernetes manifests
+    if (files.some((f) => f.endsWith(".yaml") || f.endsWith(".yml"))) {
+        for (const f of files.filter((f) => f.endsWith(".yaml") || f.endsWith(".yml"))) {
+            try {
+                const content = readFileSync(join(dir, f), "utf-8").slice(0, 500);
+                if (content.includes("apiVersion:") && content.includes("kind:")) {
+                    signals.push({ framework: "Kubernetes", confidence: 0.9, detectedVia: `manifest: ${f}` });
+                    break;
+                }
+            }
+            catch {
+                /* skip */
+            }
+        }
+    }
+    return signals;
+}
+// ─── Recommendation Engine ──────────────────────────────────────────────────
+const JUDGE_FRAMEWORK_MAP = {
+    react: ["xss-judge", "frontend-judge"],
+    "next.js": ["xss-judge", "ssr-judge", "frontend-judge"],
+    express: ["injection-judge", "auth-judge", "ssrf-judge"],
+    fastapi: ["injection-judge", "auth-judge", "python-judge"],
+    django: ["injection-judge", "auth-judge", "python-judge"],
+    "spring boot": ["injection-judge", "auth-judge", "java-judge"],
+    terraform: ["iac-judge", "secrets-judge"],
+    kubernetes: ["iac-judge", "container-judge"],
+    docker: ["container-judge", "secrets-judge"],
+};
+export function getRecommendations(dir = ".") {
+    const stack = detectStack(dir);
+    const files = scanDirectory(dir);
+    const languages = detectLanguages(files);
+    const allJudges = defaultRegistry.getJudges().map((j) => j.id);
+    const recommendations = [];
+    const seen = new Set();
+    // Framework-specific recommendations
+    for (const signal of stack) {
+        const matching = JUDGE_FRAMEWORK_MAP[signal.framework.toLowerCase()] || [];
+        for (const judgeId of matching) {
+            if (seen.has(judgeId))
+                continue;
+            // Check if this judge actually exists
+            const actual = allJudges.find((j) => j.includes(judgeId.replace("-judge", "")));
+            if (actual) {
+                seen.add(actual);
+                recommendations.push({
+                    judgeId: actual,
+                    relevance: "high",
+                    reason: `${signal.framework} detected (${signal.detectedVia}). This judge covers common ${signal.framework} patterns.`,
+                    estimatedCoverage: "80-90%",
+                });
+            }
+        }
+    }
+    // Language-based recommendations
+    const topLang = Object.entries(languages)
+        .sort((a, b) => b[1] - a[1])
+        .slice(0, 3);
+    for (const [lang, count] of topLang) {
+        const percentage = Math.round((count / files.length) * 100);
+        if (percentage < 5)
+            continue;
+        for (const jId of allJudges) {
+            if (seen.has(jId))
+                continue;
+            if (jId.toLowerCase().includes(lang.toLowerCase().replace(/[#+]/g, ""))) {
+                seen.add(jId);
+                recommendations.push({
+                    judgeId: jId,
+                    relevance: "medium",
+                    reason: `${lang} is ${percentage}% of your codebase (${count} files).`,
+                    estimatedCoverage: "60-80%",
+                });
+            }
+        }
+    }
+    // Universal judges everyone should use
+    const universalJudges = ["security", "secrets", "error", "performance"];
+    for (const keyword of universalJudges) {
+        for (const jId of allJudges) {
+            if (seen.has(jId))
+                continue;
+            if (jId.toLowerCase().includes(keyword)) {
+                seen.add(jId);
+                recommendations.push({
+                    judgeId: jId,
+                    relevance: "medium",
+                    reason: `Universal ${keyword} rules apply to all codebases.`,
+                    estimatedCoverage: "70-85%",
+                });
+            }
+        }
+    }
+    return recommendations.sort((a, b) => {
+        const order = { high: 0, medium: 1, low: 2 };
+        return order[a.relevance] - order[b.relevance];
+    });
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runRecommend(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges recommend — Analyze project and recommend judges
+
+Usage:
+  judges recommend                   Analyze current directory
+  judges recommend --dir /path       Analyze specific directory
+  judges recommend --stack-only      Only show detected stack
+
+Options:
+  --dir <path>         Directory to analyze (default: .)
+  --stack-only         Only show detected frameworks
+  --format json        JSON output
+  --help, -h           Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const dir = argv.find((_a, i) => argv[i - 1] === "--dir") || ".";
+    if (argv.includes("--stack-only")) {
+        const stack = detectStack(dir);
+        if (format === "json") {
+            console.log(JSON.stringify(stack, null, 2));
+        }
+        else if (stack.length === 0) {
+            console.log("\n  No frameworks detected.\n");
+        }
+        else {
+            console.log("\n  Detected Stack\n  ──────────────");
+            for (const s of stack) {
+                console.log(`    ${s.framework.padEnd(16)} (${(s.confidence * 100).toFixed(0)}%) via ${s.detectedVia}`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    const recs = getRecommendations(dir);
+    const stack = detectStack(dir);
+    if (format === "json") {
+        console.log(JSON.stringify({ stack, recommendations: recs }, null, 2));
+        return;
+    }
+    console.log("\n  Project Analysis\n  ────────────────");
+    if (stack.length > 0) {
+        console.log("\n  Detected stack:");
+        for (const s of stack) {
+            console.log(`    ${s.framework.padEnd(16)} (${(s.confidence * 100).toFixed(0)}%) via ${s.detectedVia}`);
+        }
+    }
+    if (recs.length === 0) {
+        console.log("\n  No specific recommendations. All judges are applicable.\n");
+        return;
+    }
+    console.log(`\n  Recommended Judges (${recs.length}):\n`);
+    for (const r of recs) {
+        const icon = r.relevance === "high" ? "🟢" : r.relevance === "medium" ? "🟡" : "⚪";
+        console.log(`    ${icon} ${r.judgeId.padEnd(25)} [${r.relevance}] coverage: ${r.estimatedCoverage}`);
+        console.log(`       ${r.reason}`);
+    }
+    console.log("");
+}
+//# sourceMappingURL=recommend.js.map

package/dist/commands/recommend.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"recommend.js","sourceRoot":"","sources":["../../src/commands/recommend.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,WAAW,EAAE,YAAY,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AACrE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACrC,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AAiBvD,+EAA+E;AAE/E,MAAM,iBAAiB,GAIlB;IACH,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,OAAO,EAAE,WAAW,EAAE,MAAM,EAAE,kBAAkB,CAAC,EAAE;IAC3F,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,gBAAgB,EAAE,iBAAiB,EAAE,gBAAgB,CAAC,EAAE,IAAI,EAAE,CAAC,MAAM,CAAC,EAAE;IACxG,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,SAAS,CAAC,EAAE;IACtD,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC,EAAE;IACjE,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,WAAW,EAAE,aAAa,CAAC,EAAE,IAAI,EAAE,CAAC,QAAQ,CAAC,EAAE;IAC9E,EAAE,SAAS,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,SAAS,EAAE,cAAc,CAAC,EAAE,IAAI,EAAE,CAAC,aAAa,CAAC,EAAE;IACvF,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,SAAS,EAAE,kBAAkB,CAAC,EAAE,IAAI,EAAE,CAAC,OAAO,CAAC,EAAE;IAC/E,EAAE,SAAS,EAAE,WAAW,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE;IAC/C,EAAE,SAAS,EAAE,YAAY,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE;IAChD,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,YAAY,EAAE,oBAAoB,EAAE,qBAAqB,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE;IACrG,EAAE,SAAS,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,KAAK,EAAE,MAAM,CAAC,EAAE;IACtD,EAAE,SAAS,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,cAAc,CAAC,EAAE,IAAI,EAAE,CAAC,eAAe,CAAC,EAAE;IAC1E,EAAE,SAAS,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,kBAAkB,CAAC,EAAE,IAAI,EAAE,CAAC,QAAQ,EAAE,eAAe,CAAC,EAAE;IACvF,EAAE,SAAS,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,OAAO,CAAC,EAAE;IAClD,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE;IAC1D,EAAE,SAAS,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC,YAAY,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE;CACvD,CAAC;AAEF,SAAS,aAAa,CAAC,GAAW,EAAE,KAAK,GAAG,CAAC,EAAE,QAAQ,GAAG,CAAC;IACzD,IAAI,KAAK,GAAG,QAAQ;QAAE,OAAO,EAAE,CAAC;IAChC,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,CAAC;QACH,KAAK,MAAM,KAAK,IAAI,WAAW,CAAC,GAAG,CAAC,EAAE,CAAC;YACrC,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,KAAK,KAAK,cAAc,IAAI,KAAK,KAAK,QAAQ,IAAI,KAAK,KAAK,MAAM;gBAAE,SAAS;YAC1G,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;YAC9B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC;gBAC5B,IAAI,IAAI,CAAC,MAAM,EAAE;oBAAE,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;qBAChC,IAAI,IAAI,CAAC,WAAW,EAAE;oBACzB,KAAK,CAAC,IAAI,CAAC,GAAG,aAAa,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,EAAE,QAAQ,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;YACxF,CAAC;YAAC,MAAM,CAAC;gBACP,UAAU;YACZ,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,UAAU;IACZ,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,eAAe,CAAC,KAAe;IACtC,MAAM,MAAM,GAA2B;QACrC,KAAK,EAAE,YAAY;QACnB,MAAM,EAAE,YAAY;QACpB,KAAK,EAAE,YAAY;QACnB,MAAM,EAAE,YAAY;QACpB,KAAK,EAAE,QAAQ;QACf,OAAO,EAAE,MAAM;QACf,KAAK,EAAE,IAAI;QACX,KAAK,EAAE,MAAM;QACb,KAAK,EAAE,IAAI;QACX,MAAM,EAAE,KAAK;QACb,IAAI,EAAE,GAAG;QACT,KAAK,EAAE,MAAM;QACb,KAAK,EAAE,WAAW;QAClB,OAAO,EAAE,MAAM;QACf,MAAM,EAAE,MAAM;QACd,MAAM,EAAE,KAAK;QACb,KAAK,EAAE,OAAO;QACd,MAAM,EAAE,YAAY;KACrB,CAAC;IACF,MAAM,MAAM,GAA2B,EAAE,CAAC;IAC1C,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;QACvB,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;QACzB,IAAI,IAAI;YAAE,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;IACnD,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,GAAG,GAAG,GAAG;IACnC,MAAM,KAAK,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,OAAO,GAAkB,EAAE,CAAC;IAElC,mCAAmC;IACnC,KAAK,MAAM,EAAE,IAAI,iBAAiB,EAAE,CAAC;QACnC,KAAK,MAAM,IAAI,IAAI,EAAE,CAAC,KAAK,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC,EAAE,CAAC;gBACxD,OAAO,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,GAAG,EAAE,WAAW,EAAE,gBAAgB,IAAI,EAAE,EAAE,CAAC,CAAC;YAClG,CAAC;QACH,CAAC;IACH,CAAC;IAED,kCAAkC;IAClC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;IAC1C,IAAI,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACxB,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;YACvD,MAAM,OAAO,GAAG,EAAE,GAAG,GAAG,CAAC,YAAY,EAAE,GAAG,GAAG,CAAC,eAAe,EAAE,CAAC;YAChE,KAAK,MAAM,EAAE,IAAI,iBAAiB,EAAE,CAAC;gBACnC,KAAK,MAAM,GAAG,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC;oBAC1B,IAAI,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;wBACjB,MAAM,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,EAAE,CAAC,SAAS,CAAC,CAAC;wBACnE,IAAI,CAAC,QAAQ,EAAE,CAAC;4BACd,OAAO,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,EAAE,CAAC,SAAS,EAAE,UAAU,EAAE,IAAI,EAAE,WAAW,EAAE,iBAAiB,GAAG,EAAE,EAAE,CAAC,CAAC;wBACnG,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,UAAU;QACZ,CAAC;IACH,CAAC;IAED,4BAA4B;IAC5B,IAAI,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC;QACzC,OAAO,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,WAAW,EAAE,UAAU,EAAE,IAAI,EAAE,WAAW,EAAE,YAAY,EAAE,CAAC,CAAC;IACxF,CAAC;IAED,iCAAiC;IACjC,IAAI,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;QACjE,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;YAC/E,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,YAAY,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;gBAClE,IAAI,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;oBACjE,OAAO,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,YAAY,EAAE,UAAU,EAAE,GAAG,EAAE,WAAW,EAAE,aAAa,CAAC,EAAE,EAAE,CAAC,CAAC;oBAC1F,MAAM;gBACR,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,UAAU;YACZ,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,+EAA+E;AAE/E,MAAM,mBAAmB,GAA6B;IACpD,KAAK,EAAE,CAAC,WAAW,EAAE,gBAAgB,CAAC;IACtC,SAAS,EAAE,CAAC,WAAW,EAAE,WAAW,EAAE,gBAAgB,CAAC;IACvD,OAAO,EAAE,CAAC,iBAAiB,EAAE,YAAY,EAAE,YAAY,CAAC;IACxD,OAAO,EAAE,CAAC,iBAAiB,EAAE,YAAY,EAAE,cAAc,CAAC;IAC1D,MAAM,EAAE,CAAC,iBAAiB,EAAE,YAAY,EAAE,cAAc,CAAC;IACzD,aAAa,EAAE,CAAC,iBAAiB,EAAE,YAAY,EAAE,YAAY,CAAC;IAC9D,SAAS,EAAE,CAAC,WAAW,EAAE,eAAe,CAAC;IACzC,UAAU,EAAE,CAAC,WAAW,EAAE,iBAAiB,CAAC;IAC5C,MAAM,EAAE,CAAC,iBAAiB,EAAE,eAAe,CAAC;CAC7C,CAAC;AAEF,MAAM,UAAU,kBAAkB,CAAC,GAAG,GAAG,GAAG;IAC1C,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;IAC/B,MAAM,KAAK,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;IACjC,MAAM,SAAS,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;IACzC,MAAM,SAAS,GAAG,eAAe,CAAC,SAAS,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;IAC/D,MAAM,eAAe,GAA0B,EAAE,CAAC;IAClD,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAE/B,qCAAqC;IACrC,KAAK,MAAM,MAAM,IAAI,KAAK,EAAE,CAAC;QAC3B,MAAM,QAAQ,GAAG,mBAAmB,CAAC,MAAM,CAAC,SAAS,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;QAC3E,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC;gBAAE,SAAS;YAChC,sCAAsC;YACtC,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC;YAChF,IAAI,MAAM,EAAE,CAAC;gBACX,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBACjB,eAAe,CAAC,IAAI,CAAC;oBACnB,OAAO,EAAE,MAAM;oBACf,SAAS,EAAE,MAAM;oBACjB,MAAM,EAAE,GAAG,MAAM,CAAC,SAAS,cAAc,MAAM,CAAC,WAAW,+BAA+B,MAAM,CAAC,SAAS,YAAY;oBACtH,iBAAiB,EAAE,QAAQ;iBAC5B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,iCAAiC;IACjC,MAAM,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC,SAAS,CAAC;SACtC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;SAC3B,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IACf,KAAK,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,OAAO,EAAE,CAAC;QACpC,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC;QAC5D,IAAI,UAAU,GAAG,CAAC;YAAE,SAAS;QAE7B,KAAK,MAAM,GAAG,IAAI,SAAS,EAAE,CAAC;YAC5B,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,SAAS;YAC5B,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC;gBACxE,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACd,eAAe,CAAC,IAAI,CAAC;oBACnB,OAAO,EAAE,GAAG;oBACZ,SAAS,EAAE,QAAQ;oBACnB,MAAM,EAAE,GAAG,IAAI,OAAO,UAAU,uBAAuB,KAAK,UAAU;oBACtE,iBAAiB,EAAE,QAAQ;iBAC5B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,uCAAuC;IACvC,MAAM,eAAe,GAAG,CAAC,UAAU,EAAE,SAAS,EAAE,OAAO,EAAE,aAAa,CAAC,CAAC;IACxE,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,KAAK,MAAM,GAAG,IAAI,SAAS,EAAE,CAAC;YAC5B,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,SAAS;YAC5B,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBACxC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACd,eAAe,CAAC,IAAI,CAAC;oBACnB,OAAO,EAAE,GAAG;oBACZ,SAAS,EAAE,QAAQ;oBACnB,MAAM,EAAE,aAAa,OAAO,gCAAgC;oBAC5D,iBAAiB,EAAE,QAAQ;iBAC5B,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACnC,MAAM,KAAK,GAAG,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;QAC7C,OAAO,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;AACL,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,YAAY,CAAC,IAAc;IACzC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;CAaf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,OAAO,CAAC,IAAI,GAAG,CAAC;IAEjF,IAAI,IAAI,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;QAClC,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC9C,CAAC;aAAM,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;QAC/C,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAC;YACpD,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;gBACtB,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;YAC1G,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,MAAM,IAAI,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IACrC,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC;IAE/B,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,eAAe,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACvE,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,0CAA0C,CAAC,CAAC;IAExD,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACrB,OAAO,CAAC,GAAG,CAAC,qBAAqB,CAAC,CAAC;QACnC,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;QAC1G,CAAC;IACH,CAAC;IAED,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,+DAA+D,CAAC,CAAC;QAC7E,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,CAAC,MAAM,MAAM,CAAC,CAAC;IAC1D,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;QACrB,MAAM,IAAI,GAAG,CAAC,CAAC,SAAS,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;QACnF,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,SAAS,eAAe,CAAC,CAAC,iBAAiB,EAAE,CAAC,CAAC;QACrG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;IACpC,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AAClB,CAAC"}

package/dist/commands/regression-alert.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Regression alerting — compare current scan results against a saved
+ * baseline snapshot to detect quality regressions.
+ *
+ * Snapshots are stored locally in .judges-baseline.json.
+ */
+import type { Finding } from "../types.js";
+export interface BaselineSnapshot {
+    timestamp: string;
+    gitCommit?: string;
+    gitBranch?: string;
+    totalFindings: number;
+    bySeverity: Record<string, number>;
+    byRule: Record<string, number>;
+    findingIds: string[];
+}
+export interface RegressionReport {
+    status: "improved" | "stable" | "regressed";
+    newFindings: string[];
+    fixedFindings: string[];
+    delta: number;
+    severityDelta: Record<string, number>;
+    ruleDelta: Record<string, number>;
+    baseline: BaselineSnapshot;
+    current: BaselineSnapshot;
+}
+export declare function buildSnapshot(findings: Finding[]): BaselineSnapshot;
+export declare function saveBaseline(snapshot: BaselineSnapshot, file?: string): void;
+export declare function loadBaseline(file?: string): BaselineSnapshot | null;
+export declare function compareSnapshots(baseline: BaselineSnapshot, current: BaselineSnapshot): RegressionReport;
+export declare function runRegressionAlert(argv: string[]): Promise<void>;
+//# sourceMappingURL=regression-alert.d.ts.map

package/dist/commands/regression-alert.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"regression-alert.d.ts","sourceRoot":"","sources":["../../src/commands/regression-alert.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,aAAa,CAAC;AAI3C,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,UAAU,EAAE,MAAM,EAAE,CAAC;CACtB;AAED,MAAM,WAAW,gBAAgB;IAC/B,MAAM,EAAE,UAAU,GAAG,QAAQ,GAAG,WAAW,CAAC;IAC5C,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClC,QAAQ,EAAE,gBAAgB,CAAC;IAC3B,OAAO,EAAE,gBAAgB,CAAC;CAC3B;AAqBD,wBAAgB,aAAa,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,gBAAgB,CAqBnE;AAED,wBAAgB,YAAY,CAAC,QAAQ,EAAE,gBAAgB,EAAE,IAAI,SAAgB,GAAG,IAAI,CAEnF;AAED,wBAAgB,YAAY,CAAC,IAAI,SAAgB,GAAG,gBAAgB,GAAG,IAAI,CAG1E;AAED,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,gBAAgB,EAAE,OAAO,EAAE,gBAAgB,GAAG,gBAAgB,CAmCxG;AAID,wBAAsB,kBAAkB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CA6ItE"}