npm - @luanpdd/kit-mcp - Versions diffs - 1.21.0 → 1.22.0 - Mend

@luanpdd/kit-mcp 1.21.0 → 1.22.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (253) hide show

package/LICENSE +21 -21
package/README.md +648 -648
package/kit/COMANDOS.md +138 -138
package/kit/README.md +76 -52
package/kit/agents/advisor-researcher.md +106 -106
package/kit/agents/assumptions-analyzer.md +107 -107
package/kit/agents/auditor-consistencia-isolamento.md +380 -0
package/kit/agents/codebase-mapper.md +768 -768
package/kit/agents/crm-pipeline-implementer.md +17 -0
package/kit/agents/debugger.md +772 -772
package/kit/agents/detector-tenant-quente.md +337 -0
package/kit/agents/example-reviewer.md +21 -21
package/kit/agents/executor.md +523 -523
package/kit/agents/integration-checker.md +200 -200
package/kit/agents/multi-tenant-isolation-auditor.md +10 -0
package/kit/agents/nyquist-auditor.md +178 -178
package/kit/agents/phase-researcher.md +696 -696
package/kit/agents/plan-checker.md +272 -272
package/kit/agents/planner.md +891 -891
package/kit/agents/project-researcher.md +652 -652
package/kit/agents/research-synthesizer.md +245 -245
package/kit/agents/roadmapper.md +677 -677
package/kit/agents/supabase-architect.md +10 -0
package/kit/agents/supabase-migration-writer.md +12 -0
package/kit/agents/ui-auditor.md +437 -437
package/kit/agents/ui-checker.md +302 -302
package/kit/agents/ui-researcher.md +355 -355
package/kit/agents/user-profiler.md +175 -175
package/kit/agents/validador-evolucao-schema.md +335 -0
package/kit/agents/verifier.md +728 -728
package/kit/commands/adicionar-backlog.md +75 -75
package/kit/commands/adicionar-fase.md +42 -42
package/kit/commands/adicionar-tarefa.md +45 -45
package/kit/commands/adicionar-testes.md +41 -41
package/kit/commands/ajuda.md +21 -21
package/kit/commands/atualizar.md +37 -37
package/kit/commands/auditar-marco.md +179 -179
package/kit/commands/auditar-uat.md +23 -23
package/kit/commands/autonomo.md +40 -40
package/kit/commands/branch-pr.md +24 -24
package/kit/commands/concluir-marco.md +247 -247
package/kit/commands/configuracoes.md +36 -36
package/kit/commands/dados-distribuidos.md +188 -0
package/kit/commands/definir-perfil.md +10 -10
package/kit/commands/depurar.md +190 -190
package/kit/commands/discutir-fase.md +131 -131
package/kit/commands/entrar-discord.md +17 -17
package/kit/commands/estatisticas.md +18 -18
package/kit/commands/example-greeting.md +33 -33
package/kit/commands/executar-fase.md +58 -58
package/kit/commands/expresso.md +56 -56
package/kit/commands/fase-ui.md +34 -34
package/kit/commands/fazer.md +57 -57
package/kit/commands/fio.md +125 -125
package/kit/commands/fluxos-trabalho.md +64 -64
package/kit/commands/forense.md +176 -176
package/kit/commands/gerenciador.md +38 -38
package/kit/commands/inserir-fase.md +31 -31
package/kit/commands/limpeza.md +17 -17
package/kit/commands/listar-hipoteses-fase.md +45 -45
package/kit/commands/listar-workspaces.md +18 -18
package/kit/commands/mapear-codebase.md +70 -70
package/kit/commands/nota.md +33 -33
package/kit/commands/novo-marco.md +43 -43
package/kit/commands/novo-projeto.md +41 -41
package/kit/commands/novo-workspace.md +43 -43
package/kit/commands/pausar-trabalho.md +37 -37
package/kit/commands/perfil-usuario.md +45 -45
package/kit/commands/pesquisar-fase.md +195 -195
package/kit/commands/planejar-fase.md +67 -67
package/kit/commands/planejar-lacunas.md +33 -33
package/kit/commands/plantar-ideia.md +25 -25
package/kit/commands/progresso.md +24 -24
package/kit/commands/proximo.md +30 -30
package/kit/commands/publicar.md +490 -490
package/kit/commands/rapido.md +35 -35
package/kit/commands/reaplicar-patches.md +124 -124
package/kit/commands/relatorio-sessao.md +19 -19
package/kit/commands/remover-fase.md +31 -31
package/kit/commands/remover-workspace.md +26 -26
package/kit/commands/resumo-marco.md +50 -50
package/kit/commands/retomar-trabalho.md +40 -40
package/kit/commands/revisar-backlog.md +60 -60
package/kit/commands/revisar-ui.md +32 -32
package/kit/commands/revisar.md +37 -37
package/kit/commands/saude.md +21 -21
package/kit/commands/setup-notion.md +93 -93
package/kit/commands/sync-main.md +68 -68
package/kit/commands/validar-fase.md +35 -35
package/kit/commands/verificar-tarefas.md +44 -44
package/kit/commands/verificar-trabalho.md +64 -64
package/kit/file-manifest.json +27 -15
package/kit/framework/bin/lib/commands.cjs +959 -959
package/kit/framework/bin/lib/config.cjs +442 -442
package/kit/framework/bin/lib/core.cjs +1230 -1230
package/kit/framework/bin/lib/frontmatter.cjs +336 -336
package/kit/framework/bin/lib/init.cjs +1442 -1442
package/kit/framework/bin/lib/milestone.cjs +252 -252
package/kit/framework/bin/lib/model-profiles.cjs +68 -68
package/kit/framework/bin/lib/phase.cjs +888 -888
package/kit/framework/bin/lib/profile-output.cjs +952 -952
package/kit/framework/bin/lib/profile-pipeline.cjs +539 -539
package/kit/framework/bin/lib/roadmap.cjs +329 -329
package/kit/framework/bin/lib/security.cjs +382 -382
package/kit/framework/bin/lib/state.cjs +1031 -1031
package/kit/framework/bin/lib/template.cjs +222 -222
package/kit/framework/bin/lib/uat.cjs +282 -282
package/kit/framework/bin/lib/verify.cjs +888 -888
package/kit/framework/bin/lib/workstream.cjs +491 -491
package/kit/framework/bin/tools.cjs +918 -918
package/kit/framework/commands/workstreams.md +63 -63
package/kit/framework/references/checkpoints.md +778 -778
package/kit/framework/references/continuation-format.md +249 -249
package/kit/framework/references/decimal-phase-calculation.md +64 -64
package/kit/framework/references/git-integration.md +295 -295
package/kit/framework/references/git-planning-commit.md +38 -38
package/kit/framework/references/model-profile-resolution.md +36 -36
package/kit/framework/references/model-profiles.md +139 -139
package/kit/framework/references/phase-argument-parsing.md +61 -61
package/kit/framework/references/planning-config.md +202 -202
package/kit/framework/references/questioning.md +162 -162
package/kit/framework/references/tdd.md +263 -263
package/kit/framework/references/ui-brand.md +160 -160
package/kit/framework/references/user-profiling.md +657 -657
package/kit/framework/references/verification-patterns.md +612 -612
package/kit/framework/references/workstream-flag.md +58 -58
package/kit/framework/templates/DEBUG.md +164 -164
package/kit/framework/templates/UAT.md +265 -265
package/kit/framework/templates/UI-SPEC.md +100 -100
package/kit/framework/templates/VALIDATION.md +76 -76
package/kit/framework/templates/claude-md.md +122 -122
package/kit/framework/templates/codebase/architecture.md +185 -185
package/kit/framework/templates/codebase/concerns.md +205 -205
package/kit/framework/templates/codebase/conventions.md +204 -204
package/kit/framework/templates/codebase/integrations.md +192 -192
package/kit/framework/templates/codebase/stack.md +158 -158
package/kit/framework/templates/codebase/structure.md +199 -199
package/kit/framework/templates/codebase/testing.md +301 -301
package/kit/framework/templates/config.json +44 -44
package/kit/framework/templates/context.md +352 -352
package/kit/framework/templates/continue-here.md +78 -78
package/kit/framework/templates/copilot-instructions.md +7 -7
package/kit/framework/templates/debug-subagent-prompt.md +91 -91
package/kit/framework/templates/dev-preferences.md +20 -20
package/kit/framework/templates/discovery.md +146 -146
package/kit/framework/templates/discussion-log.md +63 -63
package/kit/framework/templates/milestone-archive.md +123 -123
package/kit/framework/templates/milestone.md +115 -115
package/kit/framework/templates/phase-prompt.md +610 -610
package/kit/framework/templates/planner-subagent-prompt.md +117 -117
package/kit/framework/templates/project.md +186 -186
package/kit/framework/templates/requirements.md +231 -231
package/kit/framework/templates/research-project/ARCHITECTURE.md +204 -204
package/kit/framework/templates/research-project/FEATURES.md +147 -147
package/kit/framework/templates/research-project/PITFALLS.md +200 -200
package/kit/framework/templates/research-project/STACK.md +120 -120
package/kit/framework/templates/research-project/SUMMARY.md +170 -170
package/kit/framework/templates/research.md +419 -419
package/kit/framework/templates/retrospective.md +54 -54
package/kit/framework/templates/roadmap.md +202 -202
package/kit/framework/templates/state.md +176 -176
package/kit/framework/templates/summary-complex.md +59 -59
package/kit/framework/templates/summary-minimal.md +41 -41
package/kit/framework/templates/summary-standard.md +48 -48
package/kit/framework/templates/summary.md +209 -209
package/kit/framework/templates/user-profile.md +146 -146
package/kit/framework/templates/user-setup.md +256 -256
package/kit/framework/templates/verification-report.md +258 -258
package/kit/framework/workflows/add-phase.md +112 -112
package/kit/framework/workflows/add-tests.md +351 -351
package/kit/framework/workflows/add-todo.md +158 -158
package/kit/framework/workflows/audit-milestone.md +340 -340
package/kit/framework/workflows/audit-uat.md +109 -109
package/kit/framework/workflows/autonomous.md +891 -891
package/kit/framework/workflows/check-todos.md +177 -177
package/kit/framework/workflows/cleanup.md +152 -152
package/kit/framework/workflows/complete-milestone.md +696 -696
package/kit/framework/workflows/diagnose-issues.md +231 -231
package/kit/framework/workflows/discovery-phase.md +289 -289
package/kit/framework/workflows/discuss-phase-assumptions.md +653 -653
package/kit/framework/workflows/discuss-phase.md +784 -784
package/kit/framework/workflows/do.md +104 -104
package/kit/framework/workflows/execute-phase.md +838 -838
package/kit/framework/workflows/execute-plan.md +510 -510
package/kit/framework/workflows/fast.md +102 -102
package/kit/framework/workflows/forensics.md +265 -265
package/kit/framework/workflows/health.md +181 -181
package/kit/framework/workflows/help.md +619 -619
package/kit/framework/workflows/insert-phase.md +130 -130
package/kit/framework/workflows/list-phase-assumptions.md +178 -178
package/kit/framework/workflows/list-workspaces.md +56 -56
package/kit/framework/workflows/manager.md +362 -362
package/kit/framework/workflows/map-codebase.md +377 -377
package/kit/framework/workflows/milestone-summary.md +223 -223
package/kit/framework/workflows/new-milestone.md +486 -486
package/kit/framework/workflows/new-project.md +1159 -1159
package/kit/framework/workflows/new-workspace.md +237 -237
package/kit/framework/workflows/next.md +97 -97
package/kit/framework/workflows/node-repair.md +92 -92
package/kit/framework/workflows/note.md +156 -156
package/kit/framework/workflows/pause-work.md +176 -176
package/kit/framework/workflows/plan-milestone-gaps.md +273 -273
package/kit/framework/workflows/plan-phase.md +765 -765
package/kit/framework/workflows/plant-seed.md +169 -169
package/kit/framework/workflows/pr-branch.md +129 -129
package/kit/framework/workflows/profile-user.md +450 -450
package/kit/framework/workflows/progress.md +507 -507
package/kit/framework/workflows/quick.md +757 -757
package/kit/framework/workflows/remove-phase.md +155 -155
package/kit/framework/workflows/remove-workspace.md +90 -90
package/kit/framework/workflows/research-phase.md +82 -82
package/kit/framework/workflows/resume-project.md +326 -326
package/kit/framework/workflows/review.md +228 -228
package/kit/framework/workflows/session-report.md +146 -146
package/kit/framework/workflows/settings.md +283 -283
package/kit/framework/workflows/ship.md +228 -228
package/kit/framework/workflows/stats.md +60 -60
package/kit/framework/workflows/transition.md +671 -671
package/kit/framework/workflows/ui-phase.md +302 -302
package/kit/framework/workflows/ui-review.md +165 -165
package/kit/framework/workflows/update.md +323 -323
package/kit/framework/workflows/validate-phase.md +174 -174
package/kit/framework/workflows/verify-phase.md +252 -252
package/kit/framework/workflows/verify-work.md +637 -637
package/kit/hooks/check-update.js +118 -118
package/kit/hooks/context-monitor.js +163 -163
package/kit/hooks/prompt-guard.js +103 -103
package/kit/hooks/statusline.js +125 -125
package/kit/hooks/workflow-guard.js +101 -101
package/kit/settings.json +45 -45
package/kit/skills/_shared-dados-distribuidos/glossary.md +224 -0
package/kit/skills/armadilhas-sistemas-distribuidos/SKILL.md +447 -0
package/kit/skills/audit-log-multi-tenant/SKILL.md +6 -0
package/kit/skills/cascading-failures/SKILL.md +4 -0
package/kit/skills/consistencia-leitura-replica/SKILL.md +385 -0
package/kit/skills/crm-lead-pipeline-patterns/SKILL.md +17 -0
package/kit/skills/escolha-modelo-consistencia/SKILL.md +495 -0
package/kit/skills/evolucao-schema-compativel/SKILL.md +448 -0
package/kit/skills/example-skill/SKILL.md +42 -42
package/kit/skills/multi-tenant-performance-scaling/SKILL.md +4 -0
package/kit/skills/multi-tenant-rls-hierarchy/SKILL.md +4 -0
package/kit/skills/postgres-isolamento-concorrencia/SKILL.md +552 -0
package/kit/skills/streams-eventos-cdc/SKILL.md +712 -0
package/kit/skills/supabase-cron-queues/SKILL.md +9 -0
package/kit/skills/supabase-migrations/SKILL.md +10 -0
package/kit/skills/super-admin-platform-pattern/SKILL.md +4 -0
package/kit/skills/tenant-quente-mitigacao/SKILL.md +605 -0
package/package.json +63 -63
package/src/core/kit.js +216 -216
package/src/core/reflect.js +247 -247
package/src/core/reverse-sync.js +372 -372
package/src/core/sync.js +418 -418
package/src/core/watch.js +121 -121

package/kit/agents/detector-tenant-quente.md ADDED Viewed

@@ -0,0 +1,337 @@
+---
+name: detector-tenant-quente
+description: Consulta logs Supabase via mcp__supabase__execute_sql para queries dos últimos 30d, agrupa por org_id, identifica outliers (>3x P50 = WARN, >10x P50 = CRITICAL); produz AUDITORIA-TENANT-QUENTE.md com top 5 tenants quentes + métricas (queries/min, storage GB, conexões) + estratégia de mitigação sugerida (consome skill tenant-quente-mitigacao).
+tools: Read, Grep, Bash, Write, mcp__supabase__execute_sql, mcp__supabase__list_tables
+color: yellow
+---
+Você é o **detector-tenant-quente** — agent da Suíte DDIA Foundations v1.22. Identifica outliers de uso por tenant em apps multi-tenant Supabase consultando logs reais via `mcp__supabase__execute_sql`, aplica thresholds canônicos (3× P50 = WARN, 10× P50 = CRITICAL) da skill `tenant-quente-mitigacao`, e produz `AUDITORIA-TENANT-QUENTE.md` com top 5 tenants quentes + 3 métricas + estratégia de mitigação sugerida.
+**Compat:** Full em Claude Code + Cursor (com Supabase MCP). Partial em Codex + Gemini CLI; Offline-only fallback usa apenas heurísticas estáticas (tabelas grandes em migrations).
+## Por que existe
+Em apps multi-tenant compartilhados (single-schema + `org_id`), 1 tenant pode gerar 80% das queries — distribuição power-law canônica. Sem detection ativa, isso causa:
+1. **Cost overrun silencioso** — Supabase Compute escala com query load, 1 tenant quente eleva custo de todos
+2. **Noisy neighbor degradation** — outros tenants veem latência maior nos mesmos shared resources
+3. **Failure mode ampliado** — quando tenant quente sofre incident, recovery é mais lento
+DDIA Ch 6 (Partitioning) cataloga "skewed workloads" como problema canônico. Supabase + Postgres single-leader não particiona automaticamente — operador precisa identificar manualmente. Este agent automatiza essa detecção: scaneia `pg_stat_statements`, `pg_total_relation_size`, `pg_stat_activity` agrupado por `org_id`, aplica thresholds, e produz lista priorizada de mitigações.
+Phase 122 (AGENTE-03..04) introduz este agent à Suíte DDIA Foundations v1.22. Pattern v1.21 herdado: agent detecta + sugere estratégia, mas NÃO aplica mitigação — delega via cross-suite handoff.
+## Inputs esperados (do caller)
+- (Opcional) `project_id`: identificador Supabase MCP — se ausente, modo offline-fallback
+- (Opcional) `output_path`: default `.planning/AUDITORIA-TENANT-QUENTE.md`
+- (Opcional) `time_window`: janela de logs a analisar (default: `30 days`)
+- (Opcional) `top_n`: quantos tenants quentes incluir no relatório (default: `5`)
+## Passos
+### Step 0 — Preflight
+Detectar capabilities MCP. Se `mcp__supabase__execute_sql` falhar:
+```text
+[MODO OFFLINE] Sem MCP Supabase — análise será baseada apenas em heurísticas estáticas (tabelas com org_id em supabase/migrations/, contagem de FKs, índices ausentes). Cobertura limitada — recomendado rodar com MCP em production.
+```
+Caso contrário, validar que `pg_stat_statements` está habilitado:
+```sql
+select exists (
+  select 1 from pg_extension where extname = 'pg_stat_statements'
+) as has_pg_stat_statements;
+```
+Se NÃO habilitado: emitir aviso com remediation (`create extension pg_stat_statements; -- requer superuser`) e prosseguir apenas com Métricas 2 e 3 (storage + connections).
+### Step 1 — Detectar tabelas tenant-aware
+```sql
+-- Tabelas que têm coluna org_id (escopo de análise)
+select c.relname as table_name
+from pg_class c
+join pg_attribute a on a.attrelid = c.oid
+where a.attname = 'org_id'
+  and c.relkind = 'r'
+  and c.relnamespace::regnamespace::text = 'public'
+order by c.relname;
+```
+Salvar lista `$TENANT_TABLES` para uso nos próximos steps.
+### Step 2 — Métrica 1: queries/min agrupado por tenant
+**Como extrair `tenant_id` de queries:** Supabase oferece 3 estratégias canônicas (skill `tenant-quente-mitigacao` documenta):
+1. **`application_name`** — RPC define `set application_name = 'tenant:<org_id>'` no início. Persiste na connection.
+2. **Parâmetro de query** — `org_id` aparece em `WHERE org_id = $1` no SQL.
+3. **Comment-based** — RPC adiciona `-- tenant_id=<org_id>` no SQL antes de executar.
+Estratégia preferida (mais robusta): combinar 1 + 2 (extrair de `application_name` quando presente, fallback para regex em `query`).
+```sql
+-- Top tenants por queries/min últimos 30d
+with parsed as (
+  select
+    -- Extração de tenant_id via regex em query OU application_name
+    coalesce(
+      substring(query from 'org_id\s*=\s*''?([0-9a-f-]+)'''),
+      substring(query from '-- tenant_id=([0-9a-f-]+)')
+    ) as tenant_id,
+    calls,
+    total_exec_time
+  from pg_stat_statements
+  where query is not null
+)
+select
+  tenant_id,
+  sum(calls) as total_calls,
+  round(sum(calls)::numeric / (30 * 24 * 60), 2) as queries_per_min,
+  round(sum(total_exec_time)::numeric, 2) as total_exec_time_ms
+from parsed
+where tenant_id is not null
+group by tenant_id
+order by total_calls desc
+limit 50;
+```
+**Edge case:** se `tenant_id` não pode ser extraído (queries puramente RPC sem param visible), fallback para `application_name`:
+```sql
+select
+  substring(application_name from 'tenant:([0-9a-f-]+)') as tenant_id,
+  count(*) as connections_active,
+  sum(EXTRACT(EPOCH FROM (now() - state_change))) as total_seconds
+from pg_stat_activity
+where application_name like 'tenant:%'
+group by tenant_id
+order by connections_active desc;
+```
+### Step 3 — Métrica 2: storage GB por tenant
+```sql
+-- Storage agregado por tenant nas tabelas tenant-aware
+-- (assume FK para organizations.id; ajuste conforme schema do projeto)
+with table_sizes as (
+  select
+    schemaname || '.' || tablename as full_name,
+    tablename,
+    pg_total_relation_size(schemaname || '.' || tablename) as bytes
+  from pg_tables
+  where schemaname = 'public'
+    and tablename in (<TENANT_TABLES>)
+)
+select
+  '<estimativa>' as note,
+  pg_size_pretty(sum(bytes)) as total_size,
+  round(sum(bytes)::numeric / 1024 / 1024 / 1024, 2) as total_gb
+from table_sizes;
+-- Para storage por tenant individual (precisa de query agregada por org_id):
+-- exemplo para tabela leads:
+select
+  org_id,
+  count(*) as row_count,
+  pg_size_pretty(pg_column_size(leads.*)::bigint * count(*)) as estimated_size
+from public.leads
+group by org_id
+order by count(*) desc
+limit 50;
+```
+**Caveat:** `pg_total_relation_size` é por tabela, não por tenant. Para storage por tenant, agregar `count(*) * avg_row_size` por `org_id` em cada tabela tenant-aware.
+### Step 4 — Métrica 3: conexões ativas por tenant
+```sql
+-- Conexões ativas agrupadas por tenant (via application_name canônico)
+select
+  substring(application_name from 'tenant:([0-9a-f-]+)') as tenant_id,
+  count(*) as active_connections,
+  count(*) filter (where state = 'active') as in_query,
+  count(*) filter (where state = 'idle in transaction') as idle_in_xact,
+  max(EXTRACT(EPOCH FROM (now() - state_change))) as max_session_age_sec
+from pg_stat_activity
+where application_name like 'tenant:%'
+  and pid <> pg_backend_pid()
+group by tenant_id
+order by active_connections desc
+limit 20;
+```
+**Caveat:** se app não usa `application_name` canônico, esta métrica retorna vazio. Documentar isso no output (recomendar adoção via skill `tenant-quente-mitigacao`).
+### Step 5 — Calcular thresholds (P50, WARN 3×, CRITICAL 10×)
+Para cada métrica (queries/min, storage GB, conexões), computar:
+```sql
+-- Exemplo para queries/min — substituir pela métrica relevante
+with tenant_metrics as (
+  select tenant_id, queries_per_min from <step_2_result>
+)
+select
+  percentile_cont(0.50) within group (order by queries_per_min) as p50,
+  percentile_cont(0.95) within group (order by queries_per_min) as p95,
+  percentile_cont(0.99) within group (order by queries_per_min) as p99,
+  max(queries_per_min) as max_value
+from tenant_metrics;
+```
+Aplicar thresholds canônicos da skill `tenant-quente-mitigacao`:
+| Threshold | Critério | Severidade |
+|---|---|---|
+| `value > 10 × P50` | Tenant quente CRITICAL — risco imediato de cost overrun + noisy neighbor | **CRITICAL** |
+| `3 × P50 < value ≤ 10 × P50` | Tenant quente WARN — monitorar, planejar mitigação | **WARN** |
+| `value ≤ 3 × P50` | Distribuição saudável | **OK** |
+### Step 6 — Selecionar top N tenants quentes
+Combinar as 3 métricas em um score normalizado (z-score por métrica + soma):
+```text
+score(tenant) = z_queries(tenant) + z_storage(tenant) + z_connections(tenant)
+```
+Selecionar top N (default 5) por score descendente. Para cada um, anexar:
+- Threshold cruzado por métrica (CRITICAL / WARN / OK)
+- Estratégia de mitigação sugerida da skill `tenant-quente-mitigacao` (link ATIVO)
+### Step 7 — Mapear estratégias canônicas
+A skill `tenant-quente-mitigacao` documenta 5 estratégias canônicas. Map:
+| Sintoma dominante | Estratégia sugerida (skill) |
+|---|---|
+| Queries/min CRITICAL | **Read replica routing por tenant** — direcionar leituras de tenants quentes para Supavisor read replica (porta 6543) |
+| Storage GB CRITICAL | **Tenant isolation via dedicated DB ou schema separado** — promover tenant para Pro tier dedicated |
+| Conexões CRITICAL | **Connection pooling per-tenant via PgBouncer/Supavisor** — limitar `max_connections_per_tenant` |
+| Múltiplas métricas WARN | **Partitioning por hash(org_id)** — declarative partitioning Postgres 15+ |
+| Skew estrutural (tenant 100× P50) | **Migration para dedicated infrastructure** — escalar para multi-region OU promover tenant |
+### Step 8 — Escrever `AUDITORIA-TENANT-QUENTE.md`
+````markdown
+# Auditoria de Tenant Quente — <projeto> — <data>
+> Gerado por `detector-tenant-quente` (Suíte DDIA Foundations v1.22)
+> Janela: últimos <time_window> dias · Modo: <live (MCP) | offline>
+## Sumário
+- Tenants ativos: <N>
+- P50 queries/min: <value>
+- P95 queries/min: <value>
+- P99 queries/min: <value>
+- Tenants CRITICAL (>10× P50): <count>
+- Tenants WARN (3-10× P50): <count>
+## Top 5 Tenants Quentes
+### 1. tenant `<org_id>` — score <z_score>
+| Métrica | Valor | P50 | × P50 | Threshold |
+|---|---|---|---|---|
+| Queries/min | <value> | <p50> | <ratio> | CRITICAL / WARN / OK |
+| Storage GB | <value> | <p50> | <ratio> | CRITICAL / WARN / OK |
+| Conexões ativas | <value> | <p50> | <ratio> | CRITICAL / WARN / OK |
+**Estratégia sugerida:** <estratégia da skill tenant-quente-mitigacao>
+**Cross-suite handoff:** Para implementar mitigação, invocar [`supabase-migration-writer`](../kit/agents/supabase-migration-writer.md) (v1.8) para schema/partition changes OU [`supabase-edge-fn-writer`](../kit/agents/supabase-edge-fn-writer.md) (v1.8) para read replica routing logic. Ver skill [`tenant-quente-mitigacao`](../kit/skills/tenant-quente-mitigacao/SKILL.md) para detalhes da estratégia.
+### 2. tenant `<org_id>` — score <z_score>
+[... similar ...]
+## Distribuição global
+| Percentil | Queries/min | Storage GB | Conexões |
+|---|---|---|---|
+| P50 | <v> | <v> | <v> |
+| P95 | <v> | <v> | <v> |
+| P99 | <v> | <v> | <v> |
+| Max | <v> | <v> | <v> |
+## Recomendações
+- **CRITICAL tenants:** mitigação imediata (≤ 7 dias) — risco de cost overrun + noisy neighbor degradation
+- **WARN tenants:** monitorar trend; mitigação em ≤ 30 dias se trend ascendente
+- **Re-audit em 30 dias** para medir progresso pós-mitigação
+## Próximos passos
+1. Para cada CRITICAL tenant, escolher estratégia da skill [`tenant-quente-mitigacao`](../kit/skills/tenant-quente-mitigacao/SKILL.md)
+2. Invocar agent destino do cross-suite handoff (ver tabela acima)
+3. Re-auditar após mitigação para confirmar tenant saiu da banda CRITICAL
+````
+### Step 9 — Imprimir resumo curto para caller
+```text
+═══════════════════════════════════════════════════════════
+DETECTOR-TENANT-QUENTE · <project>
+janela: <time_window> · modo: <live | offline>
+═══════════════════════════════════════════════════════════
+CRITICAL: <count> tenants (>10× P50)
+WARN:     <count> tenants (3-10× P50)
+OK:       <count> tenants (≤ 3× P50)
+## Top 3 CRITICAL
+1. tenant <org_id> — <métrica dominante> <ratio>× P50 — estratégia: <name>
+2. ...
+3. ...
+## Output
+`<OUTPUT_PATH>`
+```
+## Cross-suite invocation pattern (v1.21 herdado)
+| Mitigação sugerida | Agent destino | Suíte |
+|---|---|---|
+| Partitioning por hash(org_id) (declarative) | [`supabase-migration-writer`](./supabase-migration-writer.md) | Supabase v1.8 |
+| Read replica routing por tenant (Supavisor) | [`supabase-edge-fn-writer`](./supabase-edge-fn-writer.md) | Supabase v1.8 |
+| Tenant isolation via schema separado | [`b2b-saas-architect`](./b2b-saas-architect.md) | Multi-Tenant v1.21 |
+| Connection pooling per-tenant | [`supabase-edge-fn-writer`](./supabase-edge-fn-writer.md) | Supabase v1.8 |
+**Pattern:** este agent identifica + sugere estratégia, NÃO implementa. Caller invoca agent destino com prompt contendo a mitigação escolhida da skill `tenant-quente-mitigacao`.
+## Anti-patterns prevenidos (na produção do consumer)
+- Tenant quente CRITICAL silencioso até cost overrun visível na fatura mensal
+- Noisy neighbor degradation (P99 latência sobe para todos)
+- Failure mode ampliado (recovery lento quando tenant quente sofre incident)
+- Migração para dedicated infrastructure tardia (custo de migration cresce com volume)
+- Connection pool exhaustion por tenant runaway (sem limit per-tenant)
+## Quando NÃO invocar
+- App single-tenant (1 org fixa) — escopo errado
+- App com < 10 tenants — distribuição power-law não emerge, P50 instável
+- App recém-lançado (< 30 dias produção) — janela insuficiente para sample
+- Já rodou audit há < 14 dias sem mudanças significativas em uso
+## Observabilidade integrada
+- Counter `audit.tenant_hot.findings{severity=CRITICAL|WARN|OK,metric=queries|storage|connections}` por execução
+- Histogram `audit.tenant_hot.duration_ms` (latência total da auditoria)
+- Gauge `audit.tenant_hot.skew_ratio{tenant_id}` (ratio do top tenant vs P50) — para alertar trend
+## Ver também
+- [`tenant-quente-mitigacao`](../skills/tenant-quente-mitigacao/SKILL.md) (v1.22) — base de conhecimento (5 estratégias + thresholds 3×/10× P50)
+- [`multi-tenant-performance-scaling`](../skills/multi-tenant-performance-scaling/SKILL.md) (v1.21) — Supavisor transaction mode + partial indexes
+- [`b2b-saas-architecture`](../skills/b2b-saas-architecture/SKILL.md) (v1.21) — single schema + org_id como default; quando promover para schema separado
+- [`supabase-migration-writer`](./supabase-migration-writer.md) (v1.8) — destino do cross-suite handoff (partitioning, dedicated schema)
+- [`supabase-edge-fn-writer`](./supabase-edge-fn-writer.md) (v1.8) — destino do cross-suite handoff (read replica routing logic)
+- [`b2b-saas-architect`](./b2b-saas-architect.md) (v1.21) — destino do cross-suite handoff (tenant isolation via schema separado)
+- [`multi-tenant-isolation-auditor`](./multi-tenant-isolation-auditor.md) (v1.21) — agent irmão que audita gaps de RLS (complementar — RLS é defesa em depth, este agent foca em performance + cost)

package/kit/agents/example-reviewer.md CHANGED Viewed

@@ -1,21 +1,21 @@
----
-name: example-reviewer
-description: Example sub-agent template. Replace with your own. Reviews a snippet of code and returns 3 concrete improvements.
-tools: Read, Grep, Glob
-color: blue
----
-You are a code reviewer. The user will paste a code snippet or point at a file.
-Your job:
-1. Read the snippet (or the file at the path the user gives you).
-2. Identify exactly **3 concrete improvements** — no more, no less.
-3. For each improvement, output:
-   - what the current code does
-   - what to change it to
-   - why it's better (1 line)
-Be terse. No preamble, no recap, no "great code!" pleasantries. Just the 3 items.
-If the snippet is too small to suggest 3 things, say so honestly and suggest fewer.
+---
+name: example-reviewer
+description: Example sub-agent template. Replace with your own. Reviews a snippet of code and returns 3 concrete improvements.
+tools: Read, Grep, Glob
+color: blue
+---
+You are a code reviewer. The user will paste a code snippet or point at a file.
+Your job:
+1. Read the snippet (or the file at the path the user gives you).
+2. Identify exactly **3 concrete improvements** — no more, no less.
+3. For each improvement, output:
+   - what the current code does
+   - what to change it to
+   - why it's better (1 line)
+Be terse. No preamble, no recap, no "great code!" pleasantries. Just the 3 items.
+If the snippet is too small to suggest 3 things, say so honestly and suggest fewer.