@kody-ade/kody-engine 0.2.55 → 0.2.56

package/dist/bin/kody2.js

@@ -3,7 +3,7 @@
 // package.json
 var package_default = {
   name: "@kody-ade/kody-engine",
-  version: "0.2.55",
+  version: "0.2.56",
   description: "kody2 \u2014 autonomous development engine. Single-session Claude Code agent behind a generic executor + declarative executable profiles.",
   license: "MIT",
   type: "module",
@@ -50,7 +50,7 @@ var package_default = {
 };
 
 // src/chat-cli.ts
-import { execFileSync as execFileSync21 } from "child_process";
+import { execFileSync as execFileSync22 } from "child_process";
 import * as fs22 from "fs";
 import * as path19 from "path";
 
@@ -543,7 +543,7 @@ async function emit(sink, type, sessionId, suffix, payload) {
 }
 
 // src/kody2-cli.ts
-import { execFileSync as execFileSync20 } from "child_process";
+import { execFileSync as execFileSync21 } from "child_process";
 import * as fs21 from "fs";
 import * as path18 from "path";
 
@@ -4486,6 +4486,253 @@ function tryPostPr4(prNumber, body, cwd) {
   }
 }
 
+// src/scripts/riskGate.ts
+import { execFileSync as execFileSync17 } from "child_process";
+var ALL_GATES = ["secrets", "workflow-edit", "large-diff", "dep-change", "test-deletion"];
+var HARD_GATES = /* @__PURE__ */ new Set(["secrets"]);
+var APPROVE_ALL = "kody-approve:all";
+var GATED_LABEL = "kody:gated";
+var DEFAULT_MAX_FILES = 20;
+var DEFAULT_MAX_DELETIONS = 500;
+var riskGate = async (ctx, profile, _agent, args) => {
+  const changedFiles = ctx.data.changedFiles ?? [];
+  const gatesToRun = parseGates(args?.gates);
+  const violations = evaluateGates(ctx, profile.name, changedFiles, gatesToRun, args);
+  if (violations.length === 0) {
+    ctx.data.riskGate = { violations: [], pending: [], decision: "allow" };
+    return;
+  }
+  const targetType = ctx.data.commentTargetType;
+  const targetNumber = Number(ctx.data.commentTargetNumber ?? 0);
+  const labels = targetNumber > 0 ? getIssueLabels(targetNumber, ctx.cwd) : [];
+  const approveAll = labels.includes(APPROVE_ALL);
+  const pending = violations.filter((v) => !isApproved(v, labels, approveAll));
+  ctx.data.riskGate = {
+    violations,
+    pending,
+    decision: pending.length === 0 ? "allow" : "halt"
+  };
+  if (pending.length === 0 || !targetType || targetNumber <= 0) return;
+  for (const v of pending) {
+    ensureApproveLabel(v.name, ctx.cwd);
+  }
+  try {
+    setKodyLabel(
+      targetNumber,
+      {
+        label: GATED_LABEL,
+        color: "fbca04",
+        description: "kody2: awaiting human approval of risk gate(s)"
+      },
+      ctx.cwd
+    );
+  } catch {
+  }
+  const body = formatAdvisory(pending);
+  try {
+    if (targetType === "issue") postIssueComment(targetNumber, body, ctx.cwd);
+    else postPrReviewComment(targetNumber, body, ctx.cwd);
+  } catch {
+  }
+  if (!ctx.output.reason) {
+    ctx.output.reason = `risk gate halt: ${pending.map((p) => p.name).join(", ")}`;
+  }
+};
+function evaluateGates(ctx, profileName, changedFiles, gatesToRun, args) {
+  const violations = [];
+  if (gatesToRun.includes("secrets")) {
+    const hits = changedFiles.filter(isSecretPath);
+    if (hits.length > 0) {
+      violations.push({
+        name: "secrets",
+        severity: "hard",
+        reason: `secret/credential files touched: ${preview(hits)}`
+      });
+    }
+  }
+  if (gatesToRun.includes("workflow-edit")) {
+    const hits = changedFiles.filter((f) => f.startsWith(".github/workflows/"));
+    if (hits.length > 0) {
+      violations.push({
+        name: "workflow-edit",
+        severity: "soft",
+        reason: `CI workflow files modified: ${preview(hits)}`
+      });
+    }
+  }
+  if (gatesToRun.includes("large-diff")) {
+    const maxFiles = toPositiveInt(args?.maxFiles, DEFAULT_MAX_FILES);
+    const maxDeletions = toPositiveInt(args?.maxDeletions, DEFAULT_MAX_DELETIONS);
+    if (changedFiles.length > maxFiles) {
+      violations.push({
+        name: "large-diff",
+        severity: "soft",
+        reason: `${changedFiles.length} files changed (threshold: ${maxFiles})`
+      });
+    } else {
+      const stats = computeDiffStats(ctx);
+      if (stats && stats.deletions > maxDeletions) {
+        violations.push({
+          name: "large-diff",
+          severity: "soft",
+          reason: `${stats.deletions} lines deleted (threshold: ${maxDeletions})`
+        });
+      }
+    }
+  }
+  if (gatesToRun.includes("dep-change") && profileName !== "chore") {
+    const hits = changedFiles.filter(isDepFile);
+    if (hits.length > 0) {
+      violations.push({
+        name: "dep-change",
+        severity: "soft",
+        reason: `dependency/lockfile changes outside a chore flow: ${preview(hits)}`
+      });
+    }
+  }
+  if (gatesToRun.includes("test-deletion")) {
+    const deleted = listDeletedFilesInHeadCommit(ctx.cwd).filter(isTestFile);
+    if (deleted.length > 0) {
+      violations.push({
+        name: "test-deletion",
+        severity: "soft",
+        reason: `test files deleted: ${preview(deleted)}`
+      });
+    }
+  }
+  return violations;
+}
+function isApproved(v, labels, approveAll) {
+  if (labels.includes(`kody-approve:${v.name}`)) return true;
+  if (!HARD_GATES.has(v.name) && approveAll) return true;
+  return false;
+}
+function parseGates(spec) {
+  if (spec === void 0 || spec === null || spec === "") return ALL_GATES;
+  const list = String(spec).split(",").map((s) => s.trim()).filter(Boolean);
+  const valid = ALL_GATES;
+  const matched = list.filter((n) => valid.includes(n));
+  return matched.length > 0 ? matched : ALL_GATES;
+}
+function toPositiveInt(v, fallback) {
+  const n = typeof v === "number" ? v : parseInt(String(v ?? ""), 10);
+  return Number.isFinite(n) && n > 0 ? n : fallback;
+}
+function preview(list, max = 5) {
+  if (list.length <= max) return list.join(", ");
+  return `${list.slice(0, max).join(", ")} (+${list.length - max} more)`;
+}
+var SECRET_PATTERNS = [
+  /(^|\/)\.env(\.|$)/i,
+  /\.pem$/i,
+  /\.key$/i,
+  /(^|\/)(id_rsa|id_ed25519|id_ecdsa)(\.|$)/i,
+  /credentials?(\.|\/|$)/i,
+  /(^|\/)(private|secret)[^/]*\.json$/i,
+  /(^|\/)\.netrc$/i,
+  /(^|\/)\.npmrc$/i
+];
+function isSecretPath(p) {
+  return SECRET_PATTERNS.some((r) => r.test(p));
+}
+var DEP_FILES = /* @__PURE__ */ new Set([
+  "package.json",
+  "pnpm-lock.yaml",
+  "package-lock.json",
+  "yarn.lock",
+  "requirements.txt",
+  "Pipfile",
+  "Pipfile.lock",
+  "poetry.lock",
+  "go.mod",
+  "go.sum",
+  "Cargo.toml",
+  "Cargo.lock",
+  "Gemfile",
+  "Gemfile.lock"
+]);
+function isDepFile(p) {
+  return DEP_FILES.has(p.split("/").pop() ?? "");
+}
+function isTestFile(p) {
+  return /(^|\/)(tests?|__tests__|spec)\//i.test(p) || /\.(test|spec)\.[a-z0-9]+$/i.test(p);
+}
+function computeDiffStats(ctx) {
+  const base = ctx.config.git.defaultBranch;
+  for (const ref of [`origin/${base}...HEAD`, `${base}...HEAD`]) {
+    try {
+      const out = execFileSync17("git", ["diff", "--shortstat", ref], {
+        cwd: ctx.cwd,
+        encoding: "utf-8",
+        stdio: ["pipe", "pipe", "pipe"]
+      }).trim();
+      if (out) return parseShortstat(out);
+    } catch {
+    }
+  }
+  return null;
+}
+function parseShortstat(s) {
+  const ins = /(\d+)\s+insertions?/.exec(s);
+  const del = /(\d+)\s+deletions?/.exec(s);
+  return {
+    insertions: ins ? parseInt(ins[1], 10) : 0,
+    deletions: del ? parseInt(del[1], 10) : 0
+  };
+}
+function listDeletedFilesInHeadCommit(cwd) {
+  try {
+    const out = execFileSync17("git", ["show", "--name-status", "--pretty=format:", "HEAD"], {
+      cwd,
+      encoding: "utf-8",
+      stdio: ["pipe", "pipe", "pipe"]
+    });
+    return out.split("\n").map((l) => l.trim()).filter((l) => l.startsWith("D	")).map((l) => l.slice(2).trim()).filter(Boolean);
+  } catch {
+    return [];
+  }
+}
+function ensureApproveLabel(gate, cwd) {
+  try {
+    gh2(
+      [
+        "label",
+        "create",
+        `kody-approve:${gate}`,
+        "--force",
+        "--color",
+        "0e8a16",
+        "--description",
+        `kody2: approve the ${gate} risk gate and resume the flow`
+      ],
+      { cwd }
+    );
+  } catch {
+  }
+}
+function formatAdvisory(pending) {
+  const lines = [];
+  lines.push("\u23F8\uFE0F **kody2 risk gate halted the flow.**");
+  lines.push("");
+  lines.push("The changes were committed and pushed, but the flow will **not progress** until a human approves:");
+  lines.push("");
+  for (const v of pending) {
+    lines.push(`- **\`${v.name}\`** _(${v.severity})_ \u2014 ${v.reason}`);
+  }
+  lines.push("");
+  lines.push("**To approve and resume**, add one of these labels to this issue/PR:");
+  const perGate = pending.map((v) => `\`kody-approve:${v.name}\``).join(", ");
+  lines.push(`- ${perGate}`);
+  if (pending.some((v) => v.severity === "soft")) {
+    lines.push("- `kody-approve:all` \u2014 bypass **soft** gates at once (hard gates still require their specific label)");
+  }
+  lines.push("");
+  lines.push(
+    "Then re-trigger kody2 (e.g. post a new `@kody2 \u2026` comment). The branch already holds the committed work, so the re-run resumes from the same point."
+  );
+  return lines.join("\n");
+}
+
 // src/scripts/runFlow.ts
 var runFlow = async (ctx) => {
   const issueNumber = ctx.args.issue;
@@ -4582,7 +4829,7 @@ var skipAgent = async (ctx) => {
 };
 
 // src/scripts/startFlow.ts
-import { execFileSync as execFileSync17 } from "child_process";
+import { execFileSync as execFileSync18 } from "child_process";
 var API_TIMEOUT_MS7 = 3e4;
 var startFlow = async (ctx, profile, _agentResult, args) => {
   const entry = args?.entry;
@@ -4616,7 +4863,7 @@ function postKody2Comment(target, issueNumber, state, next, cwd) {
   const sub = target === "pr" && state?.core.prUrl ? "pr" : "issue";
   const body = `@kody2 ${next}`;
   try {
-    execFileSync17("gh", [sub, "comment", String(targetNumber), "--body", body], {
+    execFileSync18("gh", [sub, "comment", String(targetNumber), "--body", body], {
       timeout: API_TIMEOUT_MS7,
       cwd,
       stdio: ["ignore", "pipe", "pipe"]
@@ -4636,7 +4883,7 @@ function parsePr2(url) {
 }
 
 // src/scripts/syncFlow.ts
-import { execFileSync as execFileSync18 } from "child_process";
+import { execFileSync as execFileSync19 } from "child_process";
 var syncFlow = async (ctx) => {
   ctx.skipAgent = true;
   const prNumber = ctx.args.pr;
@@ -4695,7 +4942,7 @@ function bail2(ctx, prNumber, reason) {
 }
 function revParseHead(cwd) {
   try {
-    return execFileSync18("git", ["rev-parse", "HEAD"], { cwd, encoding: "utf-8", stdio: ["ignore", "pipe", "pipe"] }).toString().trim();
+    return execFileSync19("git", ["rev-parse", "HEAD"], { cwd, encoding: "utf-8", stdio: ["ignore", "pipe", "pipe"] }).toString().trim();
   } catch {
     return "";
   }
@@ -4703,9 +4950,9 @@ function revParseHead(cwd) {
 function pushBranch(branch, cwd) {
   const env = { ...process.env, HUSKY: "0", SKIP_HOOKS: "1" };
   try {
-    execFileSync18("git", ["push", "-u", "origin", branch], { cwd, env, stdio: ["ignore", "pipe", "pipe"] });
+    execFileSync19("git", ["push", "-u", "origin", branch], { cwd, env, stdio: ["ignore", "pipe", "pipe"] });
   } catch {
-    execFileSync18("git", ["push", "--force-with-lease", "-u", "origin", branch], {
+    execFileSync19("git", ["push", "--force-with-lease", "-u", "origin", branch], {
       cwd,
       env,
       stdio: ["ignore", "pipe", "pipe"]
@@ -4947,7 +5194,8 @@ var postflightScripts = {
   finishFlow,
   advanceFlow,
   persistFlowState,
-  postClassification
+  postClassification,
+  riskGate
 };
 var allScriptNames = /* @__PURE__ */ new Set([
   ...Object.keys(preflightScripts),
@@ -4955,7 +5203,7 @@ var allScriptNames = /* @__PURE__ */ new Set([
 ]);
 
 // src/tools.ts
-import { execFileSync as execFileSync19 } from "child_process";
+import { execFileSync as execFileSync20 } from "child_process";
 function verifyCliTools(tools, cwd) {
   const out = [];
   for (const t of tools) out.push(verifyOne(t, cwd));
@@ -4988,7 +5236,7 @@ function verifyOne(tool, cwd) {
 }
 function runShell2(cmd, cwd, timeoutMs = 3e4) {
   try {
-    execFileSync19("sh", ["-c", cmd], { cwd, stdio: "pipe", timeout: timeoutMs });
+    execFileSync20("sh", ["-c", cmd], { cwd, stdio: "pipe", timeout: timeoutMs });
     return true;
   } catch {
     return false;
@@ -5318,7 +5566,7 @@ function detectPackageManager2(cwd) {
 }
 function shellOut(cmd, args, cwd, stream = true) {
   try {
-    execFileSync20(cmd, args, {
+    execFileSync21(cmd, args, {
       cwd,
       stdio: stream ? "inherit" : "pipe",
       env: { ...process.env, HUSKY: "0", SKIP_HOOKS: "1", CI: process.env.CI ?? "1" }
@@ -5331,7 +5579,7 @@ function shellOut(cmd, args, cwd, stream = true) {
 }
 function isOnPath(bin) {
   try {
-    execFileSync20("which", [bin], { stdio: "pipe" });
+    execFileSync21("which", [bin], { stdio: "pipe" });
     return true;
   } catch {
     return false;
@@ -5365,7 +5613,7 @@ function installLitellmIfNeeded(cwd) {
   } catch {
   }
   try {
-    execFileSync20("python3", ["-c", "import litellm"], { stdio: "pipe" });
+    execFileSync21("python3", ["-c", "import litellm"], { stdio: "pipe" });
     process.stdout.write("\u2192 kody2: litellm already installed\n");
     return 0;
   } catch {
@@ -5375,16 +5623,16 @@ function installLitellmIfNeeded(cwd) {
 }
 function configureGitIdentity(cwd) {
   try {
-    const name = execFileSync20("git", ["config", "user.name"], { cwd, stdio: "pipe", encoding: "utf-8" }).trim();
+    const name = execFileSync21("git", ["config", "user.name"], { cwd, stdio: "pipe", encoding: "utf-8" }).trim();
     if (name) return;
   } catch {
   }
   try {
-    execFileSync20("git", ["config", "user.name", "github-actions[bot]"], { cwd, stdio: "pipe" });
+    execFileSync21("git", ["config", "user.name", "github-actions[bot]"], { cwd, stdio: "pipe" });
   } catch {
   }
   try {
-    execFileSync20("git", ["config", "user.email", "41898282+github-actions[bot]@users.noreply.github.com"], {
+    execFileSync21("git", ["config", "user.email", "41898282+github-actions[bot]@users.noreply.github.com"], {
       cwd,
       stdio: "pipe"
     });
@@ -5561,9 +5809,9 @@ function commitChatFiles(cwd, sessionId, verbose) {
   if (paths.length === 0) return;
   const opts = { cwd, stdio: verbose ? "inherit" : "pipe" };
   try {
-    execFileSync21("git", ["add", ...paths], opts);
-    execFileSync21("git", ["commit", "--quiet", "-m", `chat: reply for ${sessionId}`], opts);
-    execFileSync21("git", ["push", "--quiet", "origin", "HEAD"], opts);
+    execFileSync22("git", ["add", ...paths], opts);
+    execFileSync22("git", ["commit", "--quiet", "-m", `chat: reply for ${sessionId}`], opts);
+    execFileSync22("git", ["push", "--quiet", "origin", "HEAD"], opts);
   } catch (err) {
     const msg = err instanceof Error ? err.message : String(err);
     process.stderr.write(`[kody2:chat] commit/push skipped: ${msg}

package/dist/executables/fix/profile.json

@@ -94,7 +94,11 @@
         "script": "saveTaskState"
       },
       {
-        "script": "advanceFlow"
+        "script": "riskGate"
+      },
+      {
+        "script": "advanceFlow",
+        "runWhen": { "data.riskGate.decision": "allow" }
       }
     ]
   },

package/dist/executables/run/profile.json

@@ -93,7 +93,11 @@
         "script": "mirrorStateToPr"
       },
       {
-        "script": "advanceFlow"
+        "script": "riskGate"
+      },
+      {
+        "script": "advanceFlow",
+        "runWhen": { "data.riskGate.decision": "allow" }
       }
     ]
   },

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kody-ade/kody-engine",
-  "version": "0.2.55",
+  "version": "0.2.56",
   "description": "kody2 — autonomous development engine. Single-session Claude Code agent behind a generic executor + declarative executable profiles.",
   "license": "MIT",
   "type": "module",