@kevinrabun/judges 3.53.0 → 3.55.0

package/dist/commands/coach-mode.js

@@ -0,0 +1,230 @@
+/**
+ * Coach mode — interactive teaching mode that explains why each
+ * finding matters with real-world examples and secure alternatives.
+ *
+ * Wraps evaluations with educational context for each finding category.
+ */
+import { readFileSync, existsSync } from "fs";
+// ─── Knowledge Base ─────────────────────────────────────────────────────────
+const LESSONS = [
+    {
+        category: "sql-injection",
+        explanation: "SQL injection occurs when user input is concatenated directly into SQL queries, allowing attackers to manipulate the query logic, extract data, or modify the database.",
+        realWorldExample: "Heartland Payment Systems (2008): SQL injection led to theft of 130 million credit card numbers. Equifax breach (2017): An unpatched vulnerability allowed SQL injection affecting 147 million people.",
+        secureAlternative: "BEFORE: `db.query('SELECT * FROM users WHERE id=' + userId)`\nAFTER:  `db.query('SELECT * FROM users WHERE id=$1', [userId])`\n\nAlways use parameterized queries or prepared statements.",
+        resources: ["OWASP SQL Injection Prevention", "CWE-89: SQL Injection"],
+    },
+    {
+        category: "xss",
+        explanation: "Cross-Site Scripting (XSS) lets attackers inject malicious scripts into web pages viewed by other users, stealing session cookies, redirecting users, or defacing content.",
+        realWorldExample: "British Airways (2018): XSS-style attack on payment page stole 380,000 credit card details. TweetDeck XSS worm (2014) auto-retweeted itself across thousands of accounts.",
+        secureAlternative: "BEFORE: `element.innerHTML = userInput`\nAFTER:  `element.textContent = userInput`\n  OR:   `element.innerHTML = DOMPurify.sanitize(userInput)`\n\nAlways sanitize before DOM insertion.",
+        resources: ["OWASP XSS Prevention Cheat Sheet", "CWE-79: Cross-site Scripting"],
+    },
+    {
+        category: "hardcoded-secret",
+        explanation: "Hardcoded secrets (API keys, passwords, tokens) in source code are exposed to anyone with repo access and persist in git history even if 'deleted'. Automated scrapers on GitHub find them within seconds.",
+        realWorldExample: "Uber (2016): AWS keys hardcoded in a GitHub repo led to breach of 57 million records. Multiple cryptocurrency thefts traced to API keys pushed to public repos.",
+        secureAlternative: "BEFORE: `const apiKey = 'sk-1234567890abcdef'`\nAFTER:  `const apiKey = process.env.API_KEY`\n\nUse environment variables, .env files (gitignored), or a secrets manager (AWS SSM, HashiCorp Vault).",
+        resources: ["OWASP Secrets Management", "CWE-798: Hard-coded Credentials"],
+    },
+    {
+        category: "eval",
+        explanation: "eval() and new Function() execute arbitrary code strings, enabling code injection attacks where attacker-controlled input becomes executable code.",
+        realWorldExample: "Multiple Node.js package supply chain attacks used eval() to execute obfuscated malicious payloads. The event-stream incident (2018) used eval-like patterns to steal cryptocurrency.",
+        secureAlternative: "BEFORE: `eval('obj.' + propName)`\nAFTER:  `obj[propName]`  (property access)\n  OR:   Use a safe parser like expr-eval for math expressions.\n\nNever pass user input to eval().",
+        resources: ["CWE-95: Eval Injection", "MDN: Never use eval()"],
+    },
+    {
+        category: "empty-catch",
+        explanation: "Empty catch blocks silently swallow exceptions, hiding bugs, security issues, and data corruption. The application continues in an undefined state without any indication of failure.",
+        realWorldExample: "Knight Capital (2012): Silent error handling in trading software caused $440 million loss in 45 minutes. Empty catches masked the deployment error that triggered the catastrophe.",
+        secureAlternative: "BEFORE: `try { op() } catch (e) {}`\nAFTER:  `try { op() } catch (e) { logger.error('Operation failed', { error: e }); throw e; }`\n\nAlways log, report, or re-throw caught exceptions.",
+        resources: ["CWE-390: Detection of Error Without Action", "Error Handling Best Practices"],
+    },
+    {
+        category: "insecure-http",
+        explanation: "Plain HTTP transmits data unencrypted, allowing man-in-the-middle attacks to intercept passwords, API keys, and sensitive data in transit.",
+        realWorldExample: "FireSheep (2010): Tool demonstrated mass session hijacking on HTTP networks at coffee shops. Multiple ISPs caught injecting ads and tracking scripts into HTTP traffic.",
+        secureAlternative: "BEFORE: `fetch('http://api.example.com/data')`\nAFTER:  `fetch('https://api.example.com/data')`\n\nAlways use HTTPS. Enable HSTS headers. Reject HTTP in production.",
+        resources: ["OWASP Transport Layer Protection", "CWE-319: Cleartext Transmission"],
+    },
+    {
+        category: "weak-crypto",
+        explanation: "Math.random() is predictable and not cryptographically secure. MD5 and SHA1 are broken for security purposes — collisions can be generated practically.",
+        realWorldExample: "Flame malware (2012): Exploited MD5 collision to forge Microsoft certificates. Multiple password breaches accelerated by MD5 hash cracking (orders of magnitude faster than bcrypt).",
+        secureAlternative: "BEFORE: `const token = Math.random().toString(36)`\nAFTER:  `const token = crypto.randomUUID()`\n\nBEFORE: `crypto.createHash('md5')`\nAFTER:  `crypto.createHash('sha256')`  or bcrypt for passwords.",
+        resources: ["OWASP Cryptographic Failures", "CWE-338: Weak PRNG"],
+    },
+    {
+        category: "command-injection",
+        explanation: "Passing user input to shell commands (exec, spawn with string) allows attackers to inject additional commands using ; && || etc.",
+        realWorldExample: "ImageTragick (2016): Image processing library passed filenames to shell commands, enabling remote code execution on thousands of servers. Multiple CI/CD pipeline compromises via command injection in build scripts.",
+        secureAlternative: "BEFORE: `execSync('convert ' + filename)`\nAFTER:  `spawn('convert', [filename])`\n\nUse array-based APIs. Validate inputs against allowlists. Never pass user input to exec().",
+        resources: ["OWASP OS Command Injection", "CWE-78: OS Command Injection"],
+    },
+    {
+        category: "cors",
+        explanation: "Permissive CORS (Access-Control-Allow-Origin: *) allows any website to make authenticated requests to your API, enabling cross-origin data theft.",
+        realWorldExample: "Multiple cryptocurrency exchanges had funds stolen via CORS misconfiguration, where malicious sites could read authenticated API responses including account balances and trade capabilities.",
+        secureAlternative: "BEFORE: `app.use(cors())`  // allows all origins\nAFTER:  `app.use(cors({ origin: ['https://myapp.com'], credentials: true }))`\n\nSpecify allowed origins. Never use * with credentials.",
+        resources: ["OWASP CORS Misconfiguration", "MDN: CORS"],
+    },
+    {
+        category: "missing-auth",
+        explanation: "API endpoints without authentication middleware are accessible to anyone, including automated scanners. Every endpoint processing or returning data must verify the caller's identity.",
+        realWorldExample: "Parler data scrape (2021): Unauthenticated API endpoints allowed bulk download of millions of posts including deleted content. T-Mobile (2021): Unauthenticated API exposed 40 million records.",
+        secureAlternative: "BEFORE: `app.get('/users', handler)`\nAFTER:  `app.get('/users', authMiddleware, roleCheck('admin'), handler)`\n\nApply authentication to all non-public routes. Add authorization for sensitive operations.",
+        resources: ["OWASP Broken Access Control", "CWE-306: Missing Authentication"],
+    },
+];
+function findLesson(text) {
+    const lower = text.toLowerCase();
+    for (const lesson of LESSONS) {
+        if (lower.includes(lesson.category) || lower.includes(lesson.category.replace(/-/g, " "))) {
+            return lesson;
+        }
+    }
+    // Fuzzy match
+    const keywords = {
+        sql: "sql-injection",
+        inject: "sql-injection",
+        xss: "xss",
+        "cross-site": "xss",
+        innerhtml: "xss",
+        secret: "hardcoded-secret",
+        password: "hardcoded-secret",
+        hardcode: "hardcoded-secret",
+        eval: "eval",
+        "new function": "eval",
+        "empty catch": "empty-catch",
+        "catch {}": "empty-catch",
+        http: "insecure-http",
+        "math.random": "weak-crypto",
+        md5: "weak-crypto",
+        crypto: "weak-crypto",
+        exec: "command-injection",
+        spawn: "command-injection",
+        command: "command-injection",
+        cors: "cors",
+        auth: "missing-auth",
+        middleware: "missing-auth",
+    };
+    for (const [kw, cat] of Object.entries(keywords)) {
+        if (lower.includes(kw)) {
+            return LESSONS.find((l) => l.category === cat) || null;
+        }
+    }
+    return null;
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runCoachMode(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges coach-mode — Educational security coaching
+
+Usage:
+  judges coach-mode --topic sql-injection
+  judges coach-mode --topic xss
+  judges coach-mode --all
+  judges coach-mode --scan <file>
+
+Options:
+  --topic <name>        Learn about a specific finding category
+  --all                 Show all available lessons
+  --scan <file>         Scan a file and show coaching for each finding
+  --format json         JSON output
+  --help, -h            Show this help
+
+Topics: sql-injection, xss, hardcoded-secret, eval, empty-catch,
+        insecure-http, weak-crypto, command-injection, cors, missing-auth
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const topic = argv.find((_a, i) => argv[i - 1] === "--topic") || "";
+    const isAll = argv.includes("--all");
+    const scanFile = argv.find((_a, i) => argv[i - 1] === "--scan") || "";
+    if (isAll) {
+        if (format === "json") {
+            console.log(JSON.stringify({ lessons: LESSONS, total: LESSONS.length }, null, 2));
+        }
+        else {
+            console.log(`\n  Coach Mode — ${LESSONS.length} lessons available\n  ──────────────────────────`);
+            for (const lesson of LESSONS) {
+                console.log(`\n    📚 ${lesson.category}`);
+                console.log(`        ${lesson.explanation.substring(0, 80)}...`);
+            }
+            console.log("\n    Use --topic <name> for full lesson details.\n");
+        }
+        return;
+    }
+    if (topic) {
+        const lesson = findLesson(topic);
+        if (!lesson) {
+            console.error(`  Unknown topic: ${topic}. Use --all to see available topics.`);
+            return;
+        }
+        if (format === "json") {
+            console.log(JSON.stringify(lesson, null, 2));
+        }
+        else {
+            console.log(`\n  📚 ${lesson.category.toUpperCase()}`);
+            console.log(`  ──────────────────────────\n`);
+            console.log(`  WHY IT MATTERS:`);
+            console.log(`    ${lesson.explanation}\n`);
+            console.log(`  REAL-WORLD EXAMPLES:`);
+            console.log(`    ${lesson.realWorldExample}\n`);
+            console.log(`  SECURE ALTERNATIVE:`);
+            for (const line of lesson.secureAlternative.split("\n")) {
+                console.log(`    ${line}`);
+            }
+            console.log(`\n  RESOURCES:`);
+            for (const r of lesson.resources) {
+                console.log(`    📖 ${r}`);
+            }
+            console.log("");
+        }
+        return;
+    }
+    if (scanFile) {
+        if (!existsSync(scanFile)) {
+            console.error(`  File not found: ${scanFile}`);
+            return;
+        }
+        const content = readFileSync(scanFile, "utf-8");
+        const lines = content.split("\n");
+        const found = [];
+        for (let i = 0; i < lines.length; i++) {
+            const lesson = findLesson(lines[i]);
+            if (lesson && !found.some((f) => f.lesson.category === lesson.category)) {
+                found.push({ line: i + 1, lesson });
+            }
+        }
+        if (format === "json") {
+            console.log(JSON.stringify({
+                file: scanFile,
+                findings: found.map((f) => ({ line: f.line, ...f.lesson })),
+                timestamp: new Date().toISOString(),
+            }, null, 2));
+        }
+        else {
+            console.log(`\n  Coach Mode — ${scanFile} (${found.length} teaching moment(s))\n  ──────────────────────────`);
+            if (found.length === 0) {
+                console.log("  ✅ No common anti-patterns detected to coach on.");
+            }
+            else {
+                for (const f of found) {
+                    console.log(`\n    📚 Line ${f.line}: ${f.lesson.category}`);
+                    console.log(`        ${f.lesson.explanation}`);
+                    console.log(`        🔴 Example breach: ${f.lesson.realWorldExample.split(".")[0]}`);
+                    console.log(`        💡 ${f.lesson.secureAlternative.split("\n")[f.lesson.secureAlternative.includes("AFTER") ? 1 : 0]}`);
+                }
+            }
+            console.log("");
+        }
+        return;
+    }
+    console.log("  Use --topic <name>, --all, or --scan <file>. See --help for details.");
+}
+//# sourceMappingURL=coach-mode.js.map

package/dist/commands/coach-mode.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"coach-mode.js","sourceRoot":"","sources":["../../src/commands/coach-mode.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,IAAI,CAAC;AAY9C,+EAA+E;AAE/E,MAAM,OAAO,GAAkB;IAC7B;QACE,QAAQ,EAAE,eAAe;QACzB,WAAW,EACT,yKAAyK;QAC3K,gBAAgB,EACd,wMAAwM;QAC1M,iBAAiB,EACf,2LAA2L;QAC7L,SAAS,EAAE,CAAC,gCAAgC,EAAE,uBAAuB,CAAC;KACvE;IACD;QACE,QAAQ,EAAE,KAAK;QACf,WAAW,EACT,4KAA4K;QAC9K,gBAAgB,EACd,2KAA2K;QAC7K,iBAAiB,EACf,0LAA0L;QAC5L,SAAS,EAAE,CAAC,kCAAkC,EAAE,8BAA8B,CAAC;KAChF;IACD;QACE,QAAQ,EAAE,kBAAkB;QAC5B,WAAW,EACT,4MAA4M;QAC9M,gBAAgB,EACd,iKAAiK;QACnK,iBAAiB,EACf,sMAAsM;QACxM,SAAS,EAAE,CAAC,0BAA0B,EAAE,iCAAiC,CAAC;KAC3E;IACD;QACE,QAAQ,EAAE,MAAM;QAChB,WAAW,EACT,oJAAoJ;QACtJ,gBAAgB,EACd,uLAAuL;QACzL,iBAAiB,EACf,mLAAmL;QACrL,SAAS,EAAE,CAAC,wBAAwB,EAAE,uBAAuB,CAAC;KAC/D;IACD;QACE,QAAQ,EAAE,aAAa;QACvB,WAAW,EACT,uLAAuL;QACzL,gBAAgB,EACd,oLAAoL;QACtL,iBAAiB,EACf,0LAA0L;QAC5L,SAAS,EAAE,CAAC,4CAA4C,EAAE,+BAA+B,CAAC;KAC3F;IACD;QACE,QAAQ,EAAE,eAAe;QACzB,WAAW,EACT,4IAA4I;QAC9I,gBAAgB,EACd,yKAAyK;QAC3K,iBAAiB,EACf,sKAAsK;QACxK,SAAS,EAAE,CAAC,kCAAkC,EAAE,iCAAiC,CAAC;KACnF;IACD;QACE,QAAQ,EAAE,aAAa;QACvB,WAAW,EACT,yJAAyJ;QAC3J,gBAAgB,EACd,sLAAsL;QACxL,iBAAiB,EACf,wMAAwM;QAC1M,SAAS,EAAE,CAAC,8BAA8B,EAAE,oBAAoB,CAAC;KAClE;IACD;QACE,QAAQ,EAAE,mBAAmB;QAC7B,WAAW,EACT,kIAAkI;QACpI,gBAAgB,EACd,uNAAuN;QACzN,iBAAiB,EACf,iLAAiL;QACnL,SAAS,EAAE,CAAC,4BAA4B,EAAE,8BAA8B,CAAC;KAC1E;IACD;QACE,QAAQ,EAAE,MAAM;QAChB,WAAW,EACT,mJAAmJ;QACrJ,gBAAgB,EACd,+LAA+L;QACjM,iBAAiB,EACf,2LAA2L;QAC7L,SAAS,EAAE,CAAC,6BAA6B,EAAE,WAAW,CAAC;KACxD;IACD;QACE,QAAQ,EAAE,cAAc;QACxB,WAAW,EACT,wLAAwL;QAC1L,gBAAgB,EACd,iMAAiM;QACnM,iBAAiB,EACf,8MAA8M;QAChN,SAAS,EAAE,CAAC,6BAA6B,EAAE,iCAAiC,CAAC;KAC9E;CACF,CAAC;AAEF,SAAS,UAAU,CAAC,IAAY;IAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IACjC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,EAAE,CAAC;YAC1F,OAAO,MAAM,CAAC;QAChB,CAAC;IACH,CAAC;IACD,cAAc;IACd,MAAM,QAAQ,GAA2B;QACvC,GAAG,EAAE,eAAe;QACpB,MAAM,EAAE,eAAe;QACvB,GAAG,EAAE,KAAK;QACV,YAAY,EAAE,KAAK;QACnB,SAAS,EAAE,KAAK;QAChB,MAAM,EAAE,kBAAkB;QAC1B,QAAQ,EAAE,kBAAkB;QAC5B,QAAQ,EAAE,kBAAkB;QAC5B,IAAI,EAAE,MAAM;QACZ,cAAc,EAAE,MAAM;QACtB,aAAa,EAAE,aAAa;QAC5B,UAAU,EAAE,aAAa;QACzB,IAAI,EAAE,eAAe;QACrB,aAAa,EAAE,aAAa;QAC5B,GAAG,EAAE,aAAa;QAClB,MAAM,EAAE,aAAa;QACrB,IAAI,EAAE,mBAAmB;QACzB,KAAK,EAAE,mBAAmB;QAC1B,OAAO,EAAE,mBAAmB;QAC5B,IAAI,EAAE,MAAM;QACZ,IAAI,EAAE,cAAc;QACpB,UAAU,EAAE,cAAc;KAC3B,CAAC;IACF,KAAK,MAAM,CAAC,EAAE,EAAE,GAAG,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QACjD,IAAI,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAE,CAAC;YACvB,OAAO,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,GAAG,CAAC,IAAI,IAAI,CAAC;QACzD,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,YAAY,CAAC,IAAc;IACzC,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;CAkBf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,SAAS,CAAC,IAAI,EAAE,CAAC;IACpF,MAAM,KAAK,GAAG,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACrC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,QAAQ,CAAC,IAAI,EAAE,CAAC;IAEtF,IAAI,KAAK,EAAE,CAAC;QACV,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QACpF,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,oBAAoB,OAAO,CAAC,MAAM,kDAAkD,CAAC,CAAC;YAClG,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;gBAC7B,OAAO,CAAC,GAAG,CAAC,YAAY,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;gBAC3C,OAAO,CAAC,GAAG,CAAC,WAAW,MAAM,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC;YACnE,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,qDAAqD,CAAC,CAAC;QACrE,CAAC;QACD,OAAO;IACT,CAAC;IAED,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,MAAM,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;QACjC,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,CAAC,KAAK,CAAC,oBAAoB,KAAK,sCAAsC,CAAC,CAAC;YAC/E,OAAO;QACT,CAAC;QAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,UAAU,MAAM,CAAC,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;YACvD,OAAO,CAAC,GAAG,CAAC,gCAAgC,CAAC,CAAC;YAC9C,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;YACjC,OAAO,CAAC,GAAG,CAAC,OAAO,MAAM,CAAC,WAAW,IAAI,CAAC,CAAC;YAC3C,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;YACtC,OAAO,CAAC,GAAG,CAAC,OAAO,MAAM,CAAC,gBAAgB,IAAI,CAAC,CAAC;YAChD,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YACrC,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,iBAAiB,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;gBACxD,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;YAC7B,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;YAC9B,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,SAAS,EAAE,CAAC;gBACjC,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;YAC7B,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,IAAI,QAAQ,EAAE,CAAC;QACb,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,KAAK,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;YAC/C,OAAO;QACT,CAAC;QAED,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,KAAK,GAAiD,EAAE,CAAC;QAE/D,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,MAAM,MAAM,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;YACpC,IAAI,MAAM,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,KAAK,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACxE,KAAK,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,CAAC,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;YACtC,CAAC;QACH,CAAC;QAED,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,OAAO,CAAC,GAAG,CACT,IAAI,CAAC,SAAS,CACZ;gBACE,IAAI,EAAE,QAAQ;gBACd,QAAQ,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC;gBAC3D,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACpC,EACD,IAAI,EACJ,CAAC,CACF,CACF,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,oBAAoB,QAAQ,KAAK,KAAK,CAAC,MAAM,oDAAoD,CAAC,CAAC;YAE/G,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBACvB,OAAO,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;YACnE,CAAC;iBAAM,CAAC;gBACN,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;oBACtB,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;oBAC7D,OAAO,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC;oBAC/C,OAAO,CAAC,GAAG,CAAC,8BAA8B,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;oBACrF,OAAO,CAAC,GAAG,CACT,cAAc,CAAC,CAAC,MAAM,CAAC,iBAAiB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,iBAAiB,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAC7G,CAAC;gBACJ,CAAC;YACH,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QACD,OAAO;IACT,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,wEAAwE,CAAC,CAAC;AACxF,CAAC"}

package/dist/commands/commit-hygiene.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Commit hygiene — audit commit messages and diff structure for
+ * AI-generated code submission quality.
+ */
+export declare function runCommitHygiene(argv: string[]): void;
+//# sourceMappingURL=commit-hygiene.d.ts.map

package/dist/commands/commit-hygiene.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"commit-hygiene.d.ts","sourceRoot":"","sources":["../../src/commands/commit-hygiene.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAyJH,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CAyDrD"}

package/dist/commands/commit-hygiene.js

@@ -0,0 +1,176 @@
+/**
+ * Commit hygiene — audit commit messages and diff structure for
+ * AI-generated code submission quality.
+ */
+import { execSync } from "child_process";
+// ─── Patterns ───────────────────────────────────────────────────────────────
+const VAGUE_MESSAGES = [
+    /^update(d)?\s*(code|files?|stuff)?$/i,
+    /^fix(ed)?\s*(it|bug|stuff|things?)?$/i,
+    /^changes?$/i,
+    /^wip$/i,
+    /^misc$/i,
+    /^\.+$/,
+    /^temp$/i,
+    /^asdf/i,
+    /^test$/i,
+];
+const CONVENTIONAL_REGEX = /^(feat|fix|docs|style|refactor|perf|test|build|ci|chore|revert)(\(.+\))?!?:\s/;
+// ─── Analysis ───────────────────────────────────────────────────────────────
+function getCommits(count) {
+    try {
+        const log = execSync(`git log --oneline -${count} --format="%H|%s"`, { encoding: "utf-8", timeout: 10000 });
+        const commits = [];
+        for (const line of log.trim().split("\n")) {
+            if (!line)
+                continue;
+            const [hash, ...msgParts] = line.split("|");
+            const message = msgParts.join("|");
+            let files = 0, insertions = 0, deletions = 0;
+            try {
+                const stat = execSync(`git diff --shortstat ${hash}^ ${hash}`, { encoding: "utf-8", timeout: 5000 });
+                const fm = stat.match(/(\d+)\s+files?\s+changed/);
+                const im = stat.match(/(\d+)\s+insertions?/);
+                const dm = stat.match(/(\d+)\s+deletions?/);
+                if (fm)
+                    files = parseInt(fm[1]);
+                if (im)
+                    insertions = parseInt(im[1]);
+                if (dm)
+                    deletions = parseInt(dm[1]);
+            }
+            catch {
+                /* first commit or error */
+            }
+            commits.push({ hash: hash.substring(0, 8), message, files, insertions, deletions });
+        }
+        return commits;
+    }
+    catch {
+        return [];
+    }
+}
+function analyzeCommits(commits, requireConventional) {
+    const issues = [];
+    for (const c of commits) {
+        // Vague message check
+        if (VAGUE_MESSAGES.some((r) => r.test(c.message.trim()))) {
+            issues.push({
+                hash: c.hash,
+                message: c.message,
+                kind: "vague-message",
+                detail: "Commit message is too vague — describe what and why",
+                severity: "medium",
+            });
+        }
+        // Conventional commit check
+        if (requireConventional && !CONVENTIONAL_REGEX.test(c.message)) {
+            issues.push({
+                hash: c.hash,
+                message: c.message,
+                kind: "non-conventional",
+                detail: "Missing conventional commit prefix (feat:, fix:, etc.)",
+                severity: "low",
+            });
+        }
+        // Message length
+        if (c.message.length < 10) {
+            issues.push({
+                hash: c.hash,
+                message: c.message,
+                kind: "short-message",
+                detail: `Message only ${c.message.length} chars — too short to be descriptive`,
+                severity: "low",
+            });
+        }
+        if (c.message.length > 100) {
+            issues.push({
+                hash: c.hash,
+                message: c.message,
+                kind: "long-subject",
+                detail: `Subject line is ${c.message.length} chars — keep under 72`,
+                severity: "low",
+            });
+        }
+        // Oversized diff
+        if (c.files > 20) {
+            issues.push({
+                hash: c.hash,
+                message: c.message,
+                kind: "oversized-diff",
+                detail: `${c.files} files changed — consider splitting into atomic commits`,
+                severity: "high",
+            });
+        }
+        if (c.insertions + c.deletions > 1000) {
+            issues.push({
+                hash: c.hash,
+                message: c.message,
+                kind: "massive-change",
+                detail: `${c.insertions}+ / ${c.deletions}- lines — too large for effective review`,
+                severity: "high",
+            });
+        }
+        // Merge commit detection (simple)
+        if (/^Merge\s+(branch|pull)/i.test(c.message)) {
+            // Not an issue per se, but track for stats
+        }
+    }
+    return issues.sort((a, b) => {
+        const sev = { high: 3, medium: 2, low: 1 };
+        return sev[b.severity] - sev[a.severity];
+    });
+}
+// ─── CLI ────────────────────────────────────────────────────────────────────
+export function runCommitHygiene(argv) {
+    if (argv.includes("--help") || argv.includes("-h")) {
+        console.log(`
+judges commit-hygiene — Audit commit message and diff quality
+
+Usage:
+  judges commit-hygiene
+  judges commit-hygiene --count 50
+  judges commit-hygiene --conventional
+  judges commit-hygiene --format json
+
+Options:
+  --count <n>          Number of recent commits to analyze (default: 20)
+  --conventional       Require conventional commit format
+  --format json        JSON output
+  --help, -h           Show this help
+`);
+        return;
+    }
+    const format = argv.find((_a, i) => argv[i - 1] === "--format") || "text";
+    const count = parseInt(argv.find((_a, i) => argv[i - 1] === "--count") || "20");
+    const requireConventional = argv.includes("--conventional");
+    const commits = getCommits(count);
+    if (commits.length === 0) {
+        console.log("  No commits found. Ensure you're in a git repository.");
+        return;
+    }
+    const issues = analyzeCommits(commits, requireConventional);
+    if (format === "json") {
+        console.log(JSON.stringify({ commits: commits.length, issues, timestamp: new Date().toISOString() }, null, 2));
+    }
+    else {
+        console.log(`\n  Commit Hygiene — ${commits.length} commits analyzed, ${issues.length} issue(s)\n  ──────────────────────────`);
+        if (issues.length === 0) {
+            console.log("  ✅ All commits look clean");
+        }
+        else {
+            for (const issue of issues.slice(0, 30)) {
+                const icon = issue.severity === "high" ? "🔴" : issue.severity === "medium" ? "🟡" : "⚪";
+                console.log(`    ${icon} ${issue.hash} "${issue.message.substring(0, 50)}"`);
+                console.log(`        ${issue.detail}`);
+            }
+            if (issues.length > 30)
+                console.log(`\n    ... and ${issues.length - 30} more`);
+        }
+        // Summary stats
+        const avgSize = commits.reduce((s, c) => s + c.insertions + c.deletions, 0) / commits.length;
+        console.log(`\n    Avg change size: ${Math.round(avgSize)} lines/commit`);
+        console.log(`    Issues: ${issues.filter((i) => i.severity === "high").length} high, ${issues.filter((i) => i.severity === "medium").length} medium, ${issues.filter((i) => i.severity === "low").length} low\n`);
+    }
+}
+//# sourceMappingURL=commit-hygiene.js.map

package/dist/commands/commit-hygiene.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"commit-hygiene.js","sourceRoot":"","sources":["../../src/commands/commit-hygiene.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,eAAe,CAAC;AAYzC,+EAA+E;AAE/E,MAAM,cAAc,GAAG;IACrB,sCAAsC;IACtC,uCAAuC;IACvC,aAAa;IACb,QAAQ;IACR,SAAS;IACT,OAAO;IACP,SAAS;IACT,QAAQ;IACR,SAAS;CACV,CAAC;AAEF,MAAM,kBAAkB,GAAG,+EAA+E,CAAC;AAE3G,+EAA+E;AAE/E,SAAS,UAAU,CACjB,KAAa;IAEb,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,QAAQ,CAAC,sBAAsB,KAAK,mBAAmB,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC;QAC5G,MAAM,OAAO,GAAmG,EAAE,CAAC;QAEnH,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1C,IAAI,CAAC,IAAI;gBAAE,SAAS;YACpB,MAAM,CAAC,IAAI,EAAE,GAAG,QAAQ,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC5C,MAAM,OAAO,GAAG,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACnC,IAAI,KAAK,GAAG,CAAC,EACX,UAAU,GAAG,CAAC,EACd,SAAS,GAAG,CAAC,CAAC;YAEhB,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,QAAQ,CAAC,wBAAwB,IAAI,KAAK,IAAI,EAAE,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;gBACrG,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;gBAClD,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;gBAC7C,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC;gBAC5C,IAAI,EAAE;oBAAE,KAAK,GAAG,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;gBAChC,IAAI,EAAE;oBAAE,UAAU,GAAG,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;gBACrC,IAAI,EAAE;oBAAE,SAAS,GAAG,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;YACtC,CAAC;YAAC,MAAM,CAAC;gBACP,2BAA2B;YAC7B,CAAC;YAED,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,SAAS,EAAE,CAAC,CAAC;QACtF,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,SAAS,cAAc,CACrB,OAAuG,EACvG,mBAA4B;IAE5B,MAAM,MAAM,GAAkB,EAAE,CAAC;IAEjC,KAAK,MAAM,CAAC,IAAI,OAAO,EAAE,CAAC;QACxB,sBAAsB;QACtB,IAAI,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;YACzD,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,IAAI,EAAE,eAAe;gBACrB,MAAM,EAAE,qDAAqD;gBAC7D,QAAQ,EAAE,QAAQ;aACnB,CAAC,CAAC;QACL,CAAC;QAED,4BAA4B;QAC5B,IAAI,mBAAmB,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/D,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,IAAI,EAAE,kBAAkB;gBACxB,MAAM,EAAE,wDAAwD;gBAChE,QAAQ,EAAE,KAAK;aAChB,CAAC,CAAC;QACL,CAAC;QAED,iBAAiB;QACjB,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YAC1B,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,IAAI,EAAE,eAAe;gBACrB,MAAM,EAAE,gBAAgB,CAAC,CAAC,OAAO,CAAC,MAAM,sCAAsC;gBAC9E,QAAQ,EAAE,KAAK;aAChB,CAAC,CAAC;QACL,CAAC;QAED,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YAC3B,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,IAAI,EAAE,cAAc;gBACpB,MAAM,EAAE,mBAAmB,CAAC,CAAC,OAAO,CAAC,MAAM,wBAAwB;gBACnE,QAAQ,EAAE,KAAK;aAChB,CAAC,CAAC;QACL,CAAC;QAED,iBAAiB;QACjB,IAAI,CAAC,CAAC,KAAK,GAAG,EAAE,EAAE,CAAC;YACjB,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,IAAI,EAAE,gBAAgB;gBACtB,MAAM,EAAE,GAAG,CAAC,CAAC,KAAK,yDAAyD;gBAC3E,QAAQ,EAAE,MAAM;aACjB,CAAC,CAAC;QACL,CAAC;QAED,IAAI,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,SAAS,GAAG,IAAI,EAAE,CAAC;YACtC,MAAM,CAAC,IAAI,CAAC;gBACV,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,OAAO,EAAE,CAAC,CAAC,OAAO;gBAClB,IAAI,EAAE,gBAAgB;gBACtB,MAAM,EAAE,GAAG,CAAC,CAAC,UAAU,OAAO,CAAC,CAAC,SAAS,0CAA0C;gBACnF,QAAQ,EAAE,MAAM;aACjB,CAAC,CAAC;QACL,CAAC;QAED,kCAAkC;QAClC,IAAI,yBAAyB,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;YAC9C,2CAA2C;QAC7C,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QAC1B,MAAM,GAAG,GAA2B,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;QACnE,OAAO,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC3C,CAAC,CAAC,CAAC;AACL,CAAC;AAED,+EAA+E;AAE/E,MAAM,UAAU,gBAAgB,CAAC,IAAc;IAC7C,IAAI,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;CAcf,CAAC,CAAC;QACC,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,UAAU,CAAC,IAAI,MAAM,CAAC;IAC1F,MAAM,KAAK,GAAG,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAU,EAAE,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,SAAS,CAAC,IAAI,IAAI,CAAC,CAAC;IAChG,MAAM,mBAAmB,GAAG,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;IAE5D,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;IAClC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,GAAG,CAAC,wDAAwD,CAAC,CAAC;QACtE,OAAO;IACT,CAAC;IAED,MAAM,MAAM,GAAG,cAAc,CAAC,OAAO,EAAE,mBAAmB,CAAC,CAAC;IAE5D,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IACjH,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CACT,wBAAwB,OAAO,CAAC,MAAM,sBAAsB,MAAM,CAAC,MAAM,yCAAyC,CACnH,CAAC;QAEF,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;QAC5C,CAAC;aAAM,CAAC;YACN,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;gBACxC,MAAM,IAAI,GAAG,KAAK,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;gBACzF,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,IAAI,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC;gBAC7E,OAAO,CAAC,GAAG,CAAC,WAAW,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC;YACzC,CAAC;YACD,IAAI,MAAM,CAAC,MAAM,GAAG,EAAE;gBAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,MAAM,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC,CAAC;QAClF,CAAC;QAED,gBAAgB;QAChB,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,UAAU,GAAG,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC;QAC7F,OAAO,CAAC,GAAG,CAAC,0BAA0B,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC;QAC1E,OAAO,CAAC,GAAG,CACT,eAAe,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,UAAU,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,YAAY,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,QAAQ,CACrM,CAAC;IACJ,CAAC;AACH,CAAC"}

package/dist/commands/context-inject.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Context inject — feed project-specific context (architecture docs,
+ * API contracts, coding standards) into evaluation for higher-precision
+ * findings.
+ *
+ * Parses context files and maintains a local context cache for judges.
+ */
+export declare function runContextInject(argv: string[]): void;
+//# sourceMappingURL=context-inject.d.ts.map

package/dist/commands/context-inject.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-inject.d.ts","sourceRoot":"","sources":["../../src/commands/context-inject.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAwFH,wBAAgB,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI,CA2JrD"}