@kevinrabun/judges 3.6.0 → 3.7.1

package/CHANGELOG.md

@@ -0,0 +1,222 @@
+# Changelog
+
+All notable changes to **@kevinrabun/judges** are documented here.
+
+## [3.7.1] — 2026-03-01
+
+### Fixed
+- Added root `LICENSE` file (MIT) — was referenced in `package.json` `files` but missing from tarball.
+- Added `CHANGELOG.md` to npm `files` array so it ships in the published package.
+- Fixed CHANGELOG date and test count accuracy.
+- VS Code extension: switched to `bundler` module resolution, fixed ESM/CJS import errors.
+- VS Code extension: added `.vscodeignore` tuning, `galleryBanner` metadata, esbuild bundling.
+
+---
+
+## [3.7.0] — 2026-03-01
+
+### Added
+- **`judges --version` command** — display installed version with update check.
+- **`--fix` flag on eval** — evaluate and auto-fix in one step: `judges eval --fix src/app.ts`.
+- **Glob / multi-file eval** — evaluate directories and patterns: `judges eval src/**/*.ts`.
+- **Progress indicators** — `[1/12] src/app.ts…` progress during multi-file evaluation.
+- **VS Code extension** — diagnostics, code actions, and quick-fix integration (`vscode-extension/`).
+- **README terminal mockup** — SVG-based visual showing evaluation output.
+- **`.judgesrc.example.json`** — annotated example configuration file.
+- **GitHub Marketplace metadata** — enhanced `action.yml` for Marketplace discovery.
+
+### Changed
+- `server.json` version synced to `3.7.0`.
+- README test badge updated to **842**.
+- Total test count: **842**.
+
+---
+
+## [3.6.0] — 2026-03-07
+
+### Added
+- **Plugin system** (`--plugin`) — load custom evaluator plugins from npm packages or local files.
+- **Finding fingerprints** — stable content-hash IDs for tracking findings across runs.
+- **Calibration mode** (`judges calibrate`) — tune judge thresholds against known-good codebases.
+- **Diagnostics format** (`--format diagnostics`) — LSP-compatible diagnostic output for editor integration.
+- **Comparison command** (`judges compare`) — side-by-side feature matrix vs ESLint, SonarQube, Semgrep, CodeQL.
+- **Language packs** (`judges pack`) — manage language-specific rule extensions.
+- **Config sharing** (`judges config export/import`) — export and import team configurations.
+- **Custom rules** (`judges rule create`) — define and manage custom evaluation rules.
+- **Fix history** — track applied patches with undo support.
+- **Smart output** — auto-detect terminal width and format output accordingly.
+- **Feedback command** (`judges feedback`) — submit false-positive feedback for rule tuning.
+- **Benchmark command** (`judges benchmark`) — run detection accuracy benchmarks against test suites.
+- **14 new subsystem tests** for plugins, fingerprinting, calibration, and diagnostics.
+
+### Changed
+- CLI expanded from 14 to 22 commands.
+- Output formats expanded from 7 to 8 (added `diagnostics`).
+- Total test count: **819** (up from 754).
+
+---
+
+### Added
+- **`judges diff` command** — evaluate only changed lines from unified diff / git diff output. Pipe `git diff` directly or pass a patch file.
+- **`judges deps` command** — analyze project dependencies for supply-chain risks across 11 manifest types (package.json, requirements.txt, Cargo.toml, go.mod, pom.xml, etc.).
+- **`judges baseline create` command** — create a baseline JSON file from current findings for future suppression.
+- **`judges completions` command** — generate shell completion scripts for bash, zsh, fish, and PowerShell.
+- **`judges docs` command** — generate per-judge rule documentation in Markdown format, with `--output` for file output.
+- **JUnit XML formatter** (`--format junit`) — CI/CD compatible output for Jenkins, Azure DevOps, GitHub Actions, GitLab CI.
+- **CodeClimate JSON formatter** (`--format codeclimate`) — GitLab Code Quality widget compatible output with MD5 fingerprints.
+- **Named presets** (`--preset`) — 6 built-in profiles: `strict`, `lenient`, `security-only`, `startup`, `compliance`, `performance`.
+- **Config file support** (`--config`) — auto-discovers `.judgesrc` / `.judgesrc.json` in project root with full JSON Schema validation support.
+- **`judgesrc.schema.json`** — JSON Schema for `.judgesrc` files with IDE autocomplete and validation.
+- **`--min-score` flag** — exit non-zero when overall score falls below threshold (e.g. `--min-score 80`).
+- **`--verbose` flag** — timing statistics and file-level detail in output.
+- **`--quiet` flag** — suppress informational output, only show findings.
+- **`--no-color` flag** — disable ANSI color codes for piped output.
+- **CI Templates** — `judges ci-templates github` generates GitHub Actions workflow YAML.
+- **24 new tests** covering all new formatters, commands, presets, and JSON Schema validation.
+
+### Changed
+- CLI expanded from 8 to 14 commands.
+- Output formats expanded from 5 to 7 (added `junit`, `codeclimate`).
+- Total test count: **754** (up from 730).
+
+---
+
+## [3.4.0] — 2026-03-04
+
+### Added
+- **Init wizard** (`judges init`) — interactive project setup generating `.judgesrc` config.
+- **Fix command** (`judges fix`) — auto-apply suggested patches from findings with `--apply` flag.
+- **Watch mode** (`judges watch`) — file-system watcher for continuous evaluation during development.
+- **Report command** (`judges report`) — full project analysis with HTML/JSON/Markdown output.
+- **Hook command** (`judges hook`) — git pre-commit hook installation.
+- **HTML formatter** — interactive browser-based report with severity filters and per-judge sections.
+- **Baseline suppression** — suppress known findings from previous runs.
+- **CI template generator** — `judges ci-templates` for GitLab CI, Azure Pipelines, Bitbucket Pipelines.
+
+### Changed
+- Total test count: **730**.
+
+---
+
+## [3.3.0] — 2026-03-02
+
+### Changed
+- **Unified tree-sitter AST** — consolidated `typescript-ast.ts` into `tree-sitter-ast.ts`, single parser for all 8 languages.
+- Removed legacy TypeScript Compiler API dependency.
+
+---
+
+## [3.2.0] — 2026-02-29
+
+### Added
+- **Tree-sitter WASM integration** — structural AST analysis for 8 languages (TypeScript, JavaScript, Python, Go, Rust, Java, C#, C++).
+- Language-specific structural patterns for each grammar.
+
+---
+
+## [3.1.1] — 2026-02-28
+
+### Added
+- **GitHub Action** (`action.yml`) — composite action for CI/CD with SARIF upload, fail-on-findings, and job summary.
+- **Dockerfile** — multi-stage Node 20 Alpine build with non-root user for containerized usage.
+- **GitHub Pages dashboard** (`docs/index.html`) — dark-themed dashboard showing project analysis results and judge directory.
+- **Real-world evidence document** (`docs/real-world-evidence.md`) — Express.js, Flask, FastAPI analysis + before/after showcase.
+- **Pages deployment workflow** (`.github/workflows/pages.yml`).
+
+---
+
+## [3.1.0] — 2026-02-28
+
+### Added
+- **CLI evaluation mode** — `npx @kevinrabun/judges eval --file app.ts` runs the full tribunal from the command line, no MCP setup required. Supports `--language`, `--format`, `--judge`, and stdin piping.
+- **Enhanced Python AST** — class-aware method extraction (`ClassName.method_name`), decorator detection, async function detection, self/cls parameter filtering, multi-line import handling.
+- **Framework-aware analysis** — detects 14 frameworks (Express, React, Django, Flask, Spring, FastAPI, etc.) and reduces confidence on framework-idiomatic findings to cut false positives.
+- **Content-hash LRU caching** — caches AST structure, taint flow, and tribunal results by content hash for faster re-evaluation of unchanged files.
+- **SARIF 2.1.0 structural validator** — `validateSarifLog()` checks all mandatory SARIF properties before output.
+- **Multi-line auto-fix patches** — 5 structural patch rules for Express helmet, CORS, rate limiting, error handlers, and health endpoints.
+- **Confidence-weighted scoring** — findings now carry estimated confidence; low-confidence findings have reduced score impact.
+- **Finding provenance** — every finding includes `provenance` field with rule ID and evidence trail for auditability.
+- **Absence-based finding demotion** — findings flagging *missing* patterns are demoted from critical/high to medium to reduce false positives.
+- **28 negative tests** for false positive prevention.
+- **169 subsystem unit tests** (scoring, dedup, config, patches, suppression, SARIF, Python parser).
+- **Quickstart example** (`examples/quickstart.ts`) using the package API.
+- **CHANGELOG.md** with full version history.
+
+### Fixed
+- `server.json` version now stays in sync with `package.json`.
+- MCP server version string updated from `2.0.0` to `3.1.0`.
+- Demo example includes guidance for both in-repo and package-installed usage.
+
+### Changed
+- Total test count: **899** (702 integration + 28 negative + 169 subsystem).
+- Python structural parser fully rewritten with two-pass class boundary detection.
+- Class name extraction added for all supported languages (Python, Java, C#, Rust, Go).
+
+---
+
+## [3.0.3] — 2026-02-27
+
+### Fixed
+- Resolved all 14 CodeQL ReDoS alerts via atomic character classes and possessive-style patterns.
+- Suppressed 4 intentional vulnerability alerts in `examples/sample-vulnerable-api.ts` (test fixture).
+- Resolved Dependabot `hono` IP spoofing alert via `overrides`.
+- GitHub Releases now auto-created on tag push (`publish-mcp.yml`).
+
+---
+
+## [3.0.2] — 2026-02-26
+
+### Fixed
+- Publish workflow repaired (npm provenance, correct trigger).
+- Removed dead code from build artifacts.
+
+---
+
+## [3.0.1] — 2026-02-26
+
+### Fixed
+- Dropped Node 18 from CI matrix (ESLint 10 requires Node >= 20).
+- Added adversarial mandate to code-structure and framework-safety judges.
+- Fixed `FW-` rule prefix in README documentation.
+
+---
+
+## [3.0.0] — 2026-02-25
+
+### Added
+- **Monolith decomposition**: 35 specialized judges split from single evaluator file.
+- **Built-in AST analysis** via TypeScript Compiler API — no separate parser needed.
+- **App Builder Workflow** (3-step): release decision, plain-language risk summaries, prioritized remediation tasks.
+- **V2 context-aware evaluation** with policy profiles, evidence calibration, specialty feedback, confidence scoring.
+- **Public repository URL reporting** — clone any public repo and generate a full tribunal report.
+- **Project-level analysis** with cross-file architectural detection (duplication, dependency cycles, god modules).
+- **Diff evaluation** — analyze only changed lines for PR reviews.
+- **Dependency analysis** — supply-chain manifest scanning.
+- **SARIF output** for GitHub Code Scanning integration.
+- **Inline suppression** via `judges-disable` comments.
+- CI/CD infrastructure with GitHub Actions (CI, publish, PR review, daily automation).
+
+---
+
+## [2.3.0] — 2026-02-24
+
+### Added
+- AI Code Safety judge with 12 AICS rules.
+- Full `suggestedFix` and `confidence` coverage across all 427 findings.
+- Multi-language detection via language pattern system.
+
+---
+
+[3.7.0]: https://github.com/KevinRabun/judges/compare/v3.6.0...v3.7.0
+[3.6.0]: https://github.com/KevinRabun/judges/compare/v3.5.0...v3.6.0
+[3.5.0]: https://github.com/KevinRabun/judges/compare/v3.4.0...v3.5.0
+[3.4.0]: https://github.com/KevinRabun/judges/compare/v3.3.0...v3.4.0
+[3.3.0]: https://github.com/KevinRabun/judges/compare/v3.2.0...v3.3.0
+[3.2.0]: https://github.com/KevinRabun/judges/compare/v3.1.1...v3.2.0
+[3.1.1]: https://github.com/KevinRabun/judges/compare/v3.1.0...v3.1.1
+[3.1.0]: https://github.com/KevinRabun/judges/compare/v3.0.3...v3.1.0
+[3.0.3]: https://github.com/KevinRabun/judges/compare/v3.0.2...v3.0.3
+[3.0.2]: https://github.com/KevinRabun/judges/compare/v3.0.1...v3.0.2
+[3.0.1]: https://github.com/KevinRabun/judges/compare/v3.0.0...v3.0.1
+[3.0.0]: https://github.com/KevinRabun/judges/compare/v2.3.0...v3.0.0
+[2.3.0]: https://github.com/KevinRabun/judges/releases/tag/v2.3.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Kevin Rabun
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -11,7 +11,7 @@ An MCP (Model Context Protocol) server that provides a panel of **35 specialized
 [![npm](https://img.shields.io/npm/v/@kevinrabun/judges)](https://www.npmjs.com/package/@kevinrabun/judges)
 [![npm downloads](https://img.shields.io/npm/dw/@kevinrabun/judges)](https://www.npmjs.com/package/@kevinrabun/judges)
 [![License: MIT](https://img.shields.io/badge/License-MIT-yellow.svg)](https://opensource.org/licenses/MIT)
-[![Tests](https://img.shields.io/badge/tests-777-brightgreen)](https://github.com/KevinRabun/judges/actions)
+[![Tests](https://img.shields.io/badge/tests-842-brightgreen)](https://github.com/KevinRabun/judges/actions)
 
 ---
 
@@ -32,6 +32,10 @@ AI code generators (Copilot, Cursor, Claude, ChatGPT, etc.) write code fast —
 
 **Judges doesn't replace linters** — it covers the dimensions linters don't: authentication strategy, data sovereignty, cost patterns, accessibility, framework-specific anti-patterns, and architectural issues across multiple files.
 
+<p align="center">
+  <img src="docs/terminal-output.svg" alt="Judges — Terminal Output" width="680" />
+</p>
+
 ---
 
 ## Quick Start
@@ -964,28 +968,40 @@ Each judge has a corresponding prompt for LLM-powered deep analysis:
 
 ## Configuration
 
-All evaluation tools accept an optional `config` parameter for inline configuration. This is the same format as `.judgesrc` / `.judgesrc.json` project files.
+Create a `.judgesrc.json` (or `.judgesrc`) file in your project root to customize evaluation behavior. See [`.judgesrc.example.json`](.judgesrc.example.json) for a copy-paste-ready template, or reference the [JSON Schema](judgesrc.schema.json) for full IDE autocompletion.
 
 ```json
 {
-  "config": {
-    "disabledRules": ["COST-*", "I18N-001"],
-    "disabledJudges": ["accessibility", "ethics-bias"],
-    "minSeverity": "medium",
-    "ruleOverrides": {
-      "SEC-003": { "severity": "critical" },
-      "DOC-*": { "disabled": true }
-    }
-  }
+  "$schema": "https://github.com/KevinRabun/judges/blob/main/judgesrc.schema.json",
+  "preset": "strict",
+  "minSeverity": "medium",
+  "disabledRules": ["COST-*", "I18N-001"],
+  "disabledJudges": ["accessibility", "ethics-bias"],
+  "ruleOverrides": {
+    "SEC-003": { "severity": "critical" },
+    "DOC-*": { "disabled": true }
+  },
+  "languages": ["typescript", "python"],
+  "format": "text",
+  "failOnFindings": false,
+  "baseline": ""
 }
 ```
 
-| Field | Type | Description |
-|-------|------|-------------|
-| `disabledRules` | `string[]` | Rule IDs or prefix wildcards to suppress (e.g., `"COST-*"`, `"SEC-003"`) |
-| `disabledJudges` | `string[]` | Judge IDs to skip entirely (e.g., `"cost-effectiveness"`) |
-| `minSeverity` | `string` | Minimum severity to report: `critical`, `high`, `medium`, `low`, `info` |
-| `ruleOverrides` | `object` | Per-rule overrides keyed by rule ID or wildcard — `{ disabled?: boolean, severity?: string }` |
+| Field | Type | Default | Description |
+|-------|------|---------|-------------|
+| `$schema` | `string` | — | JSON Schema URL for IDE validation |
+| `preset` | `string` | — | Named preset: `strict`, `lenient`, `security-only`, `startup`, `compliance`, `performance` |
+| `minSeverity` | `string` | `"info"` | Minimum severity to report: `critical` · `high` · `medium` · `low` · `info` |
+| `disabledRules` | `string[]` | `[]` | Rule IDs or prefix wildcards to suppress (e.g. `"COST-*"`, `"SEC-003"`) |
+| `disabledJudges` | `string[]` | `[]` | Judge IDs to skip entirely (e.g. `"cost-effectiveness"`) |
+| `ruleOverrides` | `object` | `{}` | Per-rule overrides keyed by rule ID or wildcard — `{ disabled?: boolean, severity?: string }` |
+| `languages` | `string[]` | `[]` | Restrict analysis to specific languages (empty = all) |
+| `format` | `string` | `"text"` | Default output format: `text` · `json` · `sarif` · `markdown` · `html` · `junit` · `codeclimate` |
+| `failOnFindings` | `boolean` | `false` | Exit code 1 when verdict is `fail` — useful for CI gates |
+| `baseline` | `string` | `""` | Path to a baseline JSON file — matching findings are suppressed |
+
+All evaluation tools (CLI and MCP) accept the same configuration fields via `--config <path>` or inline `config` parameter.
 
 ---
 

package/dist/calibration.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"calibration.d.ts","sourceRoot":"","sources":["../src/calibration.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAsC,KAAK,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAIhG,MAAM,WAAW,kBAAkB;IACjC,sCAAsC;IACtC,IAAI,EAAE,MAAM,CAAC;IACb,gCAAgC;IAChC,YAAY,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClC,kDAAkD;IAClD,cAAc,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACpC,sDAAsD;IACtD,QAAQ,EAAE,OAAO,CAAC;IAClB,kDAAkD;IAClD,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,kBAAkB;IACjC,kCAAkC;IAClC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,qEAAqE;IACrE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,mEAAmE;IACnE,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gEAAgE;IAChE,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAQD;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,CAAC,EAAE,kBAAkB,GAAG,kBAAkB,CAGvF;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,aAAa,EAAE,OAAO,CAAC,EAAE,kBAAkB,GAAG,kBAAkB,CAgD9G;AAED;;;;;;;;;GASG;AACH,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,OAAO,EAAE,EACnB,OAAO,EAAE,kBAAkB,EAC3B,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,EAAE,CAsCX;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,OAAO,CAAC,EAAE,kBAAkB,GAAG,OAAO,EAAE,CAGlG"}
+{"version":3,"file":"calibration.d.ts","sourceRoot":"","sources":["../src/calibration.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAqB,KAAK,aAAa,EAAE,MAAM,wBAAwB,CAAC;AAI/E,MAAM,WAAW,kBAAkB;IACjC,sCAAsC;IACtC,IAAI,EAAE,MAAM,CAAC;IACb,gCAAgC;IAChC,YAAY,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClC,kDAAkD;IAClD,cAAc,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACpC,sDAAsD;IACtD,QAAQ,EAAE,OAAO,CAAC;IAClB,kDAAkD;IAClD,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,MAAM,WAAW,kBAAkB;IACjC,kCAAkC;IAClC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,qEAAqE;IACrE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,mEAAmE;IACnE,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gEAAgE;IAChE,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAQD;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,CAAC,EAAE,kBAAkB,GAAG,kBAAkB,CAGvF;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,KAAK,EAAE,aAAa,EAAE,OAAO,CAAC,EAAE,kBAAkB,GAAG,kBAAkB,CAgD9G;AAED;;;;;;;;;GASG;AACH,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,OAAO,EAAE,EACnB,OAAO,EAAE,kBAAkB,EAC3B,OAAO,CAAC,EAAE,kBAAkB,GAC3B,OAAO,EAAE,CAsCX;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,QAAQ,EAAE,OAAO,EAAE,EAAE,OAAO,CAAC,EAAE,kBAAkB,GAAG,OAAO,EAAE,CAGlG"}

package/dist/calibration.js.map

@@ -1 +1 @@
-{"version":3,"file":"calibration.js","sourceRoot":"","sources":["../src/calibration.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EAAE,iBAAiB,EAAuC,MAAM,wBAAwB,CAAC;AA4BhG,+EAA+E;AAE/E,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAC9B,MAAM,qBAAqB,GAAG,GAAG,CAAC;AAClC,MAAM,iBAAiB,GAAG,IAAI,CAAC;AAE/B;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,OAA4B;IACjE,MAAM,KAAK,GAAG,iBAAiB,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;IACvD,OAAO,uBAAuB,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;AACjD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAoB,EAAE,OAA4B;IACxF,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,IAAI,mBAAmB,CAAC;IAC9D,MAAM,YAAY,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC/C,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;IAEjD,2BAA2B;IAC3B,MAAM,MAAM,GAAG,IAAI,GAAG,EAAqD,CAAC;IAC5E,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAqD,CAAC;IAE9E,KAAK,MAAM,KAAK,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QAClC,uBAAuB;QACvB,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;QACzE,SAAS,CAAC,KAAK,EAAE,CAAC;QAClB,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;YAAE,SAAS,CAAC,EAAE,EAAE,CAAC;aACtC,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;YAAE,SAAS,CAAC,EAAE,EAAE,CAAC;QAChD,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QAEpC,yBAAyB;QACzB,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1C,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,WAAW,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;YACvE,WAAW,CAAC,KAAK,EAAE,CAAC;YACpB,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;gBAAE,WAAW,CAAC,EAAE,EAAE,CAAC;iBACxC,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;gBAAE,WAAW,CAAC,EAAE,EAAE,CAAC;YAClD,QAAQ,CAAC,GAAG,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IAED,8CAA8C;IAC9C,KAAK,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,MAAM,EAAE,CAAC;QACrC,IAAI,KAAK,CAAC,KAAK,IAAI,UAAU,EAAE,CAAC;YAC9B,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IAED,KAAK,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,QAAQ,EAAE,CAAC;QACvC,IAAI,KAAK,CAAC,KAAK,IAAI,UAAU,EAAE,CAAC;YAC9B,cAAc,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,OAAO;QACL,IAAI,EAAE,qBAAqB;QAC3B,YAAY;QACZ,cAAc;QACd,QAAQ,EAAE,YAAY,CAAC,IAAI,GAAG,CAAC,IAAI,cAAc,CAAC,IAAI,GAAG,CAAC;QAC1D,aAAa,EAAE,KAAK,CAAC,OAAO,CAAC,MAAM;KACpC,CAAC;AACJ,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,iBAAiB,CAC/B,QAAmB,EACnB,OAA2B,EAC3B,OAA4B;IAE5B,IAAI,CAAC,OAAO,CAAC,QAAQ;QAAE,OAAO,QAAQ,CAAC;IAEvC,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,qBAAqB,CAAC;IACpE,MAAM,QAAQ,GAAG,OAAO,EAAE,QAAQ,IAAI,iBAAiB,CAAC;IAExD,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACxB,MAAM,WAAW,GAAG,CAAC,CAAC,UAAU,IAAI,GAAG,CAAC;QAExC,6DAA6D;QAC7D,MAAM,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;QACtD,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACtC,MAAM,YAAY,GAAG,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACxD,MAAM,MAAM,GAAG,UAAU,IAAI,YAAY,CAAC;QAE1C,IAAI,MAAM,KAAK,SAAS;YAAE,OAAO,CAAC,CAAC;QAEnC,IAAI,UAAU,GAAG,CAAC,CAAC;QAEnB,IAAI,MAAM,GAAG,GAAG,EAAE,CAAC;YACjB,iDAAiD;YACjD,yDAAyD;YACzD,UAAU,GAAG,CAAC,YAAY,GAAG,CAAC,CAAC,MAAM,GAAG,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC;QACtD,CAAC;aAAM,IAAI,MAAM,GAAG,GAAG,EAAE,CAAC;YACxB,gCAAgC;YAChC,iDAAiD;YACjD,UAAU,GAAG,QAAQ,GAAG,CAAC,CAAC,GAAG,GAAG,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,UAAU,KAAK,CAAC;YAAE,OAAO,CAAC,CAAC;QAE/B,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,WAAW,GAAG,UAAU,CAAC,CAAC,CAAC;QAC/E,OAAO;YACL,GAAG,CAAC;YACJ,UAAU,EAAE,cAAc;YAC1B,UAAU,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,UAAU,yBAAyB,CAAC,CAAC,CAAC,uBAAuB;SAC9F,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,QAAmB,EAAE,OAA4B;IACrF,MAAM,OAAO,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;IAChD,OAAO,iBAAiB,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;AACvD,CAAC"}
+{"version":3,"file":"calibration.js","sourceRoot":"","sources":["../src/calibration.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EAAE,iBAAiB,EAAsB,MAAM,wBAAwB,CAAC;AA4B/E,+EAA+E;AAE/E,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAC9B,MAAM,qBAAqB,GAAG,GAAG,CAAC;AAClC,MAAM,iBAAiB,GAAG,IAAI,CAAC;AAE/B;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,OAA4B;IACjE,MAAM,KAAK,GAAG,iBAAiB,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;IACvD,OAAO,uBAAuB,CAAC,KAAK,EAAE,OAAO,CAAC,CAAC;AACjD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB,CAAC,KAAoB,EAAE,OAA4B;IACxF,MAAM,UAAU,GAAG,OAAO,EAAE,UAAU,IAAI,mBAAmB,CAAC;IAC9D,MAAM,YAAY,GAAG,IAAI,GAAG,EAAkB,CAAC;IAC/C,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;IAEjD,2BAA2B;IAC3B,MAAM,MAAM,GAAG,IAAI,GAAG,EAAqD,CAAC;IAC5E,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAqD,CAAC;IAE9E,KAAK,MAAM,KAAK,IAAI,KAAK,CAAC,OAAO,EAAE,CAAC;QAClC,uBAAuB;QACvB,MAAM,SAAS,GAAG,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;QACzE,SAAS,CAAC,KAAK,EAAE,CAAC;QAClB,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;YAAE,SAAS,CAAC,EAAE,EAAE,CAAC;aACtC,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;YAAE,SAAS,CAAC,EAAE,EAAE,CAAC;QAChD,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QAEpC,yBAAyB;QACzB,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1C,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,WAAW,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC;YACvE,WAAW,CAAC,KAAK,EAAE,CAAC;YACpB,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;gBAAE,WAAW,CAAC,EAAE,EAAE,CAAC;iBACxC,IAAI,KAAK,CAAC,OAAO,KAAK,IAAI;gBAAE,WAAW,CAAC,EAAE,EAAE,CAAC;YAClD,QAAQ,CAAC,GAAG,CAAC,MAAM,EAAE,WAAW,CAAC,CAAC;QACpC,CAAC;IACH,CAAC;IAED,8CAA8C;IAC9C,KAAK,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,MAAM,EAAE,CAAC;QACrC,IAAI,KAAK,CAAC,KAAK,IAAI,UAAU,EAAE,CAAC;YAC9B,YAAY,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC;QACnD,CAAC;IACH,CAAC;IAED,KAAK,MAAM,CAAC,MAAM,EAAE,KAAK,CAAC,IAAI,QAAQ,EAAE,CAAC;QACvC,IAAI,KAAK,CAAC,KAAK,IAAI,UAAU,EAAE,CAAC;YAC9B,cAAc,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,OAAO;QACL,IAAI,EAAE,qBAAqB;QAC3B,YAAY;QACZ,cAAc;QACd,QAAQ,EAAE,YAAY,CAAC,IAAI,GAAG,CAAC,IAAI,cAAc,CAAC,IAAI,GAAG,CAAC;QAC1D,aAAa,EAAE,KAAK,CAAC,OAAO,CAAC,MAAM;KACpC,CAAC;AACJ,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,iBAAiB,CAC/B,QAAmB,EACnB,OAA2B,EAC3B,OAA4B;IAE5B,IAAI,CAAC,OAAO,CAAC,QAAQ;QAAE,OAAO,QAAQ,CAAC;IAEvC,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,qBAAqB,CAAC;IACpE,MAAM,QAAQ,GAAG,OAAO,EAAE,QAAQ,IAAI,iBAAiB,CAAC;IAExD,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QACxB,MAAM,WAAW,GAAG,CAAC,CAAC,UAAU,IAAI,GAAG,CAAC;QAExC,6DAA6D;QAC7D,MAAM,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;QACtD,MAAM,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACtC,MAAM,YAAY,GAAG,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACxD,MAAM,MAAM,GAAG,UAAU,IAAI,YAAY,CAAC;QAE1C,IAAI,MAAM,KAAK,SAAS;YAAE,OAAO,CAAC,CAAC;QAEnC,IAAI,UAAU,GAAG,CAAC,CAAC;QAEnB,IAAI,MAAM,GAAG,GAAG,EAAE,CAAC;YACjB,iDAAiD;YACjD,yDAAyD;YACzD,UAAU,GAAG,CAAC,YAAY,GAAG,CAAC,CAAC,MAAM,GAAG,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC;QACtD,CAAC;aAAM,IAAI,MAAM,GAAG,GAAG,EAAE,CAAC;YACxB,gCAAgC;YAChC,iDAAiD;YACjD,UAAU,GAAG,QAAQ,GAAG,CAAC,CAAC,GAAG,GAAG,MAAM,CAAC,GAAG,GAAG,CAAC,CAAC;QACjD,CAAC;QAED,IAAI,UAAU,KAAK,CAAC;YAAE,OAAO,CAAC,CAAC;QAE/B,MAAM,cAAc,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,WAAW,GAAG,UAAU,CAAC,CAAC,CAAC;QAC/E,OAAO;YACL,GAAG,CAAC;YACJ,UAAU,EAAE,cAAc;YAC1B,UAAU,EAAE,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,UAAU,yBAAyB,CAAC,CAAC,CAAC,uBAAuB;SAC9F,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,QAAmB,EAAE,OAA4B;IACrF,MAAM,OAAO,GAAG,sBAAsB,CAAC,OAAO,CAAC,CAAC;IAChD,OAAO,iBAAiB,CAAC,QAAQ,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;AACvD,CAAC"}

package/dist/cli.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA;;;;;;;;;;;;;;;;;;;GAmBG;AA6bH,wBAAsB,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAmQ1D"}
+{"version":3,"file":"cli.d.ts","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":";AAEA;;;;;;;;;;;;;;;;;;;GAmBG;AA4gBH,wBAAsB,MAAM,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CA0Z1D"}

package/dist/cli.js

@@ -19,8 +19,9 @@
  *   judges hook install                                   # install pre-commit
  *   judges eval --help                                    # show help
  */
-import { readFileSync, existsSync } from "fs";
-import { resolve, extname } from "path";
+import { readFileSync, existsSync, readdirSync, statSync, writeFileSync } from "fs";
+import { resolve, extname, dirname, relative, join } from "path";
+import { fileURLToPath } from "url";
 import { evaluateWithTribunal, evaluateWithJudge, formatVerdictAsMarkdown, formatEvaluationAsMarkdown, } from "./evaluators/index.js";
 import { getJudge, getJudgeSummaries } from "./judges/index.js";
 import { verdictToSarif } from "./formatters/sarif.js";
@@ -37,6 +38,7 @@ import { runDocs } from "./commands/docs.js";
 import { generateGitLabCi, generateAzurePipelines, generateBitbucketPipelines } from "./commands/ci-templates.js";
 import { getPreset, listPresets } from "./presets.js";
 import { parseConfig } from "./config.js";
+import { applyPatches } from "./commands/fix.js";
 import { runFeedback } from "./commands/feedback.js";
 import { runBenchmark } from "./commands/benchmark.js";
 import { runRule } from "./commands/rule.js";
@@ -100,6 +102,7 @@ function parseCliArgs(argv) {
         noColor: false,
         verbose: false,
         quiet: false,
+        fix: false,
     };
     // First non-flag arg is the command
     let i = 2; // skip node + script
@@ -160,6 +163,9 @@ function parseCliArgs(argv) {
             case "--quiet":
                 args.quiet = true;
                 break;
+            case "--fix":
+                args.fix = true;
+                break;
             default:
                 // If it looks like a file path (not a flag), treat as --file
                 if (!arg.startsWith("-") && !args.file) {
@@ -196,6 +202,7 @@ USAGE:
   judges config                       Export/import shared team configs
   judges compare                      Compare judges vs other tools
   judges list                         List all available judges
+  judges version                      Show version information
   judges --help                       Show this help
 
 EVAL OPTIONS:
@@ -212,6 +219,7 @@ EVAL OPTIONS:
   --no-color                 Disable colored output
   --verbose                  Show detailed evaluation information
   --quiet                    Suppress non-essential output
+  --fix                      Auto-fix findings after evaluation (applies patches in-place)
   --help, -h                 Show this help
 
 FIX OPTIONS:
@@ -299,6 +307,48 @@ function readCode(filePath) {
     console.error("Usage: judges eval --file <path> or cat file | judges eval --language <lang>");
     process.exit(1);
 }
+// ─── Glob / Multi-File Resolution ───────────────────────────────────────────
+const SUPPORTED_EXTENSIONS = new Set(Object.keys(EXT_TO_LANG));
+function collectFiles(target) {
+    const resolved = resolve(target);
+    if (!existsSync(resolved))
+        return [];
+    const stat = statSync(resolved);
+    if (stat.isFile())
+        return [resolved];
+    if (stat.isDirectory()) {
+        const files = [];
+        walkDir(resolved, files);
+        return files;
+    }
+    return [];
+}
+function walkDir(dir, results) {
+    const entries = readdirSync(dir, { withFileTypes: true });
+    for (const entry of entries) {
+        const fullPath = join(dir, entry.name);
+        // Skip common non-source directories
+        if (entry.isDirectory()) {
+            if (["node_modules", ".git", "dist", "build", ".next", "__pycache__", "target", "vendor"].includes(entry.name))
+                continue;
+            walkDir(fullPath, results);
+        }
+        else if (entry.isFile()) {
+            const ext = extname(entry.name);
+            if (SUPPORTED_EXTENSIONS.has(ext)) {
+                results.push(fullPath);
+            }
+        }
+    }
+}
+function isDirectory(filePath) {
+    try {
+        return statSync(resolve(filePath)).isDirectory();
+    }
+    catch {
+        return false;
+    }
+}
 // ─── Format Output ──────────────────────────────────────────────────────────
 function formatTribunalOutput(verdict, format, filePath) {
     switch (format) {
@@ -406,9 +456,36 @@ function listJudges() {
     console.log(`  Total: ${judges.length} judges`);
     console.log("");
 }
+// ─── Version ────────────────────────────────────────────────────────────────
+function getPackageVersion() {
+    try {
+        const __filename = fileURLToPath(import.meta.url);
+        const __dirname = dirname(__filename);
+        const pkgPath = resolve(__dirname, "..", "package.json");
+        if (existsSync(pkgPath)) {
+            const pkg = JSON.parse(readFileSync(pkgPath, "utf-8"));
+            return pkg.version || "unknown";
+        }
+    }
+    catch {
+        // fallback
+    }
+    return "unknown";
+}
+function printVersion() {
+    const version = getPackageVersion();
+    console.log(`@kevinrabun/judges v${version}`);
+    console.log(`Node.js ${process.version}`);
+    console.log(`Platform: ${process.platform} ${process.arch}`);
+}
 // ─── Main CLI Entry Point ───────────────────────────────────────────────────
 export async function runCli(argv) {
     const args = parseCliArgs(argv);
+    // ─── Version Command ─────────────────────────────────────────────────
+    if (args.command === "version" || args.command === "--version" || argv.includes("--version") || argv.includes("-V")) {
+        printVersion();
+        return;
+    }
     if (args.help || (!args.command && !args.file)) {
         printHelp();
         process.exit(0);
@@ -521,8 +598,6 @@ export async function runCli(argv) {
     // ─── Eval Command ────────────────────────────────────────────────────
     if (args.command === "eval" || args.file) {
         const startTime = Date.now();
-        const { code, resolvedPath } = readCode(args.file);
-        const language = args.language || detectLanguage(args.file || resolvedPath) || "typescript";
         // Load config from file or preset
         const evalConfig = loadEvalConfig(args);
         // Load baseline if specified (from CLI flag — config doesn't carry baseline)
@@ -532,6 +607,91 @@ export async function runCli(argv) {
         }
         // Build evaluation options from config
         const evalOptions = evalConfig ? { config: evalConfig } : undefined;
+        // ── Multi-file / directory mode ──────────────────────────────────────
+        const target = args.file;
+        if (target && isDirectory(target)) {
+            const files = collectFiles(target);
+            if (files.length === 0) {
+                console.error(`No supported source files found in: ${target}`);
+                process.exit(1);
+            }
+            if (!args.quiet) {
+                console.log(`\n  Scanning ${files.length} file(s) in ${target}…\n`);
+            }
+            let totalFindings = 0;
+            let totalCritical = 0;
+            let totalHigh = 0;
+            let failCount = 0;
+            let totalFixed = 0;
+            for (let idx = 0; idx < files.length; idx++) {
+                const filePath = files[idx];
+                const relPath = relative(resolve("."), filePath);
+                if (!args.quiet) {
+                    process.stderr.write(`  [${idx + 1}/${files.length}] ${relPath}…`);
+                }
+                const fileCode = readFileSync(filePath, "utf-8");
+                const fileLang = args.language || detectLanguage(filePath) || "typescript";
+                const verdict = evaluateWithTribunal(fileCode, fileLang, undefined, evalOptions);
+                // Apply baseline suppression
+                if (baselineFindings) {
+                    for (const evaluation of verdict.evaluations) {
+                        evaluation.findings = evaluation.findings.filter((f) => !baselineFindings.has(baselineKey(f)));
+                    }
+                    verdict.findings = verdict.findings.filter((f) => !baselineFindings.has(baselineKey(f)));
+                }
+                const fileFindings = verdict.evaluations.reduce((s, e) => s + e.findings.length, 0);
+                totalFindings += fileFindings;
+                totalCritical += verdict.criticalCount;
+                totalHigh += verdict.highCount;
+                if (verdict.overallVerdict === "fail")
+                    failCount++;
+                if (!args.quiet) {
+                    const icon = verdict.overallVerdict === "pass" ? "✅" : verdict.overallVerdict === "warning" ? "⚠️" : "❌";
+                    process.stderr.write(` ${icon} ${verdict.overallScore}/100 (${fileFindings} findings)\n`);
+                }
+                // Auto-fix in multi-file mode
+                if (args.fix) {
+                    const allFileFindings = verdict.evaluations.flatMap((e) => e.findings);
+                    const fixable = allFileFindings
+                        .filter((f) => f.patch)
+                        .map((f) => ({
+                        ruleId: f.ruleId,
+                        title: f.title,
+                        severity: f.severity,
+                        patch: f.patch,
+                        lineNumbers: f.lineNumbers,
+                    }));
+                    if (fixable.length > 0) {
+                        const patchResult = applyPatches(fileCode, fixable);
+                        writeFileSync(filePath, patchResult.result, "utf-8");
+                        totalFixed += patchResult.applied;
+                    }
+                }
+            }
+            const elapsed = Date.now() - startTime;
+            // Summary
+            console.log("");
+            console.log("╔══════════════════════════════════════════════════════════════╗");
+            console.log("║           Judges Panel — Multi-File Summary                 ║");
+            console.log("╚══════════════════════════════════════════════════════════════╝");
+            console.log("");
+            console.log(`  Files    : ${files.length}`);
+            console.log(`  Findings : ${totalFindings}`);
+            console.log(`  Critical : ${totalCritical}`);
+            console.log(`  High     : ${totalHigh}`);
+            console.log(`  Failed   : ${failCount} file(s)`);
+            if (args.fix && totalFixed > 0) {
+                console.log(`  Fixed    : ${totalFixed} patch(es) applied`);
+            }
+            console.log(`  Time     : ${elapsed}ms`);
+            console.log("");
+            if (args.failOnFindings && failCount > 0)
+                process.exit(1);
+            process.exit(0);
+        }
+        // ── Single-file mode ─────────────────────────────────────────────────
+        const { code, resolvedPath } = readCode(args.file);
+        const language = args.language || detectLanguage(args.file || resolvedPath) || "typescript";
         if (args.judge) {
             // Single judge mode
             const judge = getJudge(args.judge);
@@ -586,6 +746,29 @@ export async function runCli(argv) {
                 console.error(`Score ${evaluation.score} is below minimum threshold ${args.minScore}`);
                 process.exit(1);
             }
+            // Auto-fix if --fix flag is set (single judge mode)
+            if (args.fix && resolvedPath) {
+                const fixable = evaluation.findings
+                    .filter((f) => f.patch)
+                    .map((f) => ({
+                    ruleId: f.ruleId,
+                    title: f.title,
+                    severity: f.severity,
+                    patch: f.patch,
+                    lineNumbers: f.lineNumbers,
+                }));
+                if (fixable.length > 0) {
+                    const { result, applied, skipped } = applyPatches(code, fixable);
+                    writeFileSync(resolvedPath, result, "utf-8");
+                    console.log(`\n  ✅ Applied ${applied} fix(es) to ${args.file || resolvedPath}`);
+                    if (skipped > 0) {
+                        console.log(`  ⏭  Skipped ${skipped} fix(es) (source text changed)`);
+                    }
+                }
+                else if (!args.quiet) {
+                    console.log("\n  No auto-fixable findings.");
+                }
+            }
         }
         else {
             // Full tribunal mode
@@ -632,6 +815,30 @@ export async function runCli(argv) {
                 console.error(`Score ${verdict.overallScore} is below minimum threshold ${args.minScore}`);
                 process.exit(1);
             }
+            // Auto-fix if --fix flag is set
+            if (args.fix && resolvedPath) {
+                const allFindings = verdict.evaluations.flatMap((e) => e.findings);
+                const fixable = allFindings
+                    .filter((f) => f.patch)
+                    .map((f) => ({
+                    ruleId: f.ruleId,
+                    title: f.title,
+                    severity: f.severity,
+                    patch: f.patch,
+                    lineNumbers: f.lineNumbers,
+                }));
+                if (fixable.length > 0) {
+                    const { result, applied, skipped } = applyPatches(code, fixable);
+                    writeFileSync(resolvedPath, result, "utf-8");
+                    console.log(`\n  ✅ Applied ${applied} fix(es) to ${args.file || resolvedPath}`);
+                    if (skipped > 0) {
+                        console.log(`  ⏭  Skipped ${skipped} fix(es) (source text changed)`);
+                    }
+                }
+                else if (!args.quiet) {
+                    console.log("\n  No auto-fixable findings.");
+                }
+            }
         }
         process.exit(0);
     }