@lyse-labs/lyse 0.1.0-alpha.2 → 0.2.0-alpha.1

package/dist/llm/connectors/resolver.js

@@ -0,0 +1,162 @@
+import { DEFAULT_BUDGET_STATE_PATH, LLMBudget } from "../../reliability/llm-eval/budget.js";
+import { DEFAULT_CACHE_DIR, ResponseCache } from "./cache.js";
+import { NoopAdapter } from "./noop-adapter.js";
+import { OpenAICompatibleAdapter } from "./openai-compatible-adapter.js";
+import { AnthropicAdapter } from "./anthropic-adapter.js";
+import { ConnectorNotImplementedError } from "./types.js";
+class BudgetedCachedClient {
+    inner;
+    budget;
+    cache;
+    model;
+    constructor(inner, budget, cache, model) {
+        this.inner = inner;
+        this.budget = budget;
+        this.cache = cache;
+        this.model = model;
+    }
+    async complete(messages, opts) {
+        if (this.cache !== null) {
+            const cached = await this.cache.get(this.model, messages);
+            if (cached !== null)
+                return cached;
+        }
+        const estimate = opts?.estimateUsd ??
+            // Rough heuristic: total chars / 4 ≈ tokens, priced at conservative $0.015/1k input tokens.
+            // Upper-bound so the budget guard fires before a frontier call, not after.
+            (messages.reduce((sum, m) => sum + m.content.length, 0) / 4) * (0.015 / 1000);
+        if (!this.budget.canSpend(estimate)) {
+            return { text: "", usdSpent: 0, modelUsed: "none", llmQuality: "lower", cacheHit: false };
+        }
+        const result = await this.inner.complete(messages, opts);
+        if (result.usdSpent > 0) {
+            this.budget.record(result.usdSpent);
+        }
+        if (this.cache !== null) {
+            try {
+                await this.cache.set(this.model, messages, result);
+            }
+            catch {
+                // Non-fatal: cache write failed (e.g. disk full / permission error). Return the result anyway.
+            }
+        }
+        return result;
+    }
+}
+function buildCache(llm, opts, flags) {
+    if (flags?.noCache === true)
+        return null;
+    const maxAgeDays = llm?.cacheMaxAgeDays;
+    if (maxAgeDays === undefined || maxAgeDays <= 0)
+        return null;
+    return new ResponseCache({
+        cacheDir: opts.cacheDir ?? DEFAULT_CACHE_DIR,
+        maxAgeDays,
+    });
+}
+function buildBudget(llm, flags, opts) {
+    const dailyUsd = flags?.costCapUsd ?? llm?.costCapUsd ?? 50;
+    return new LLMBudget({
+        dailyUsd,
+        statePath: opts.budgetStatePath ?? DEFAULT_BUDGET_STATE_PATH,
+    });
+}
+export function resolveConnector(config, flags, opts = {}) {
+    const llm = config.llm;
+    if (flags?.staticOnly === true)
+        return new NoopAdapter();
+    if (llm?.staticOnly === true)
+        return new NoopAdapter();
+    if (!llm?.provider && !llm?.connector)
+        return new NoopAdapter();
+    const budget = buildBudget(llm, flags, opts);
+    const cache = buildCache(llm, opts, flags);
+    const provider = flags?.llmProvider ?? llm?.provider;
+    const connector = llm?.connector;
+    const model = flags?.llmModel ?? llm?.model;
+    if (connector === "mcp-host") {
+        const mcpStub = {
+            async complete(_messages, _opts) {
+                throw new ConnectorNotImplementedError("mcp-host");
+            },
+        };
+        return mcpStub;
+    }
+    if (connector === "ollama" ||
+        (provider === "openai-compatible" && (llm?.endpoint?.includes("localhost") ?? false))) {
+        const ollamaModel = model ?? "llama3.2";
+        const adapter = new OpenAICompatibleAdapter({
+            apiKey: "",
+            model: ollamaModel,
+            baseURL: llm?.endpoint ?? "http://localhost:11434/v1",
+            ...(opts.fetchFn !== undefined && { fetchFn: opts.fetchFn }),
+        });
+        return new BudgetedCachedClient(adapter, budget, cache, ollamaModel);
+    }
+    if (connector === "openrouter" ||
+        (provider === "openai-compatible" && (llm?.endpoint?.includes("openrouter.ai") ?? false))) {
+        const apiKey = process.env["OPENROUTER_API_KEY"] ?? "";
+        const orModel = model ?? "openai/gpt-4o-mini";
+        const adapter = new OpenAICompatibleAdapter({
+            apiKey,
+            model: orModel,
+            baseURL: llm?.endpoint ?? "https://openrouter.ai/api/v1",
+            ...(opts.fetchFn !== undefined && { fetchFn: opts.fetchFn }),
+        });
+        return new BudgetedCachedClient(adapter, budget, cache, orModel);
+    }
+    if (provider === "openai" || (connector === "direct-api-key" && provider === "openai")) {
+        const apiKey = process.env["OPENAI_API_KEY"] ?? "";
+        const oaiModel = model ?? "gpt-4o-mini";
+        const adapter = new OpenAICompatibleAdapter({
+            apiKey,
+            model: oaiModel,
+            baseURL: llm?.endpoint ?? "https://api.openai.com/v1",
+            ...(opts.fetchFn !== undefined && { fetchFn: opts.fetchFn }),
+        });
+        return new BudgetedCachedClient(adapter, budget, cache, oaiModel);
+    }
+    if (provider === "anthropic" || (connector === "direct-api-key" && provider === "anthropic")) {
+        const apiKey = process.env["ANTHROPIC_API_KEY"] ?? "";
+        const claudeModel = model ?? "claude-sonnet-4-6";
+        const adapter = new AnthropicAdapter({
+            apiKey,
+            model: claudeModel,
+            ...(opts.fetchFn !== undefined && { fetchFn: opts.fetchFn }),
+        });
+        return new BudgetedCachedClient(adapter, budget, cache, claudeModel);
+    }
+    if (provider === "auto") {
+        const anthropicKey = process.env["ANTHROPIC_API_KEY"];
+        if (anthropicKey) {
+            const claudeModel = model ?? "claude-sonnet-4-6";
+            const adapter = new AnthropicAdapter({
+                apiKey: anthropicKey,
+                model: claudeModel,
+                ...(opts.fetchFn !== undefined && { fetchFn: opts.fetchFn }),
+            });
+            return new BudgetedCachedClient(adapter, budget, cache, claudeModel);
+        }
+        const openaiKey = process.env["OPENAI_API_KEY"];
+        if (openaiKey) {
+            const oaiModel = model ?? "gpt-4o-mini";
+            const adapter = new OpenAICompatibleAdapter({
+                apiKey: openaiKey,
+                model: oaiModel,
+                baseURL: "https://api.openai.com/v1",
+                ...(opts.fetchFn !== undefined && { fetchFn: opts.fetchFn }),
+            });
+            return new BudgetedCachedClient(adapter, budget, cache, oaiModel);
+        }
+        return new NoopAdapter();
+    }
+    if (provider === "mcp") {
+        return {
+            async complete(_messages, _opts) {
+                throw new ConnectorNotImplementedError("mcp");
+            },
+        };
+    }
+    return new NoopAdapter();
+}
+//# sourceMappingURL=resolver.js.map

package/dist/llm/connectors/resolver.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resolver.js","sourceRoot":"","sources":["../../../src/llm/connectors/resolver.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,yBAAyB,EAAE,SAAS,EAAE,MAAM,sCAAsC,CAAC;AAC5F,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAC9D,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,uBAAuB,EAAE,MAAM,gCAAgC,CAAC;AACzE,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAAE,4BAA4B,EAAE,MAAM,YAAY,CAAC;AAW1D,MAAM,oBAAoB;IAEL;IACA;IACA;IACA;IAJnB,YACmB,KAAsB,EACtB,MAAiB,EACjB,KAA2B,EAC3B,KAAa;QAHb,UAAK,GAAL,KAAK,CAAiB;QACtB,WAAM,GAAN,MAAM,CAAW;QACjB,UAAK,GAAL,KAAK,CAAsB;QAC3B,UAAK,GAAL,KAAK,CAAQ;IAC7B,CAAC;IAEJ,KAAK,CAAC,QAAQ,CAAC,QAAuB,EAAE,IAAsB;QAC5D,IAAI,IAAI,CAAC,KAAK,KAAK,IAAI,EAAE,CAAC;YACxB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC;YAC1D,IAAI,MAAM,KAAK,IAAI;gBAAE,OAAO,MAAM,CAAC;QACrC,CAAC;QAED,MAAM,QAAQ,GACZ,IAAI,EAAE,WAAW;YACjB,4FAA4F;YAC5F,2EAA2E;YAC3E,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,KAAK,GAAG,IAAI,CAAC,CAAC;QAChF,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YACpC,OAAO,EAAE,IAAI,EAAE,EAAE,EAAE,QAAQ,EAAE,CAAC,EAAE,SAAS,EAAE,MAAM,EAAE,UAAU,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;QAC5F,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAEzD,IAAI,MAAM,CAAC,QAAQ,GAAG,CAAC,EAAE,CAAC;YACxB,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QACtC,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,KAAK,IAAI,EAAE,CAAC;YACxB,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;YACrD,CAAC;YAAC,MAAM,CAAC;gBACP,+FAA+F;YACjG,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;CACF;AAED,SAAS,UAAU,CACjB,GAAsB,EACtB,IAA6B,EAC7B,KAA6B;IAE7B,IAAI,KAAK,EAAE,OAAO,KAAK,IAAI;QAAE,OAAO,IAAI,CAAC;IACzC,MAAM,UAAU,GAAG,GAAG,EAAE,eAAe,CAAC;IACxC,IAAI,UAAU,KAAK,SAAS,IAAI,UAAU,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IAC7D,OAAO,IAAI,aAAa,CAAC;QACvB,QAAQ,EAAE,IAAI,CAAC,QAAQ,IAAI,iBAAiB;QAC5C,UAAU;KACX,CAAC,CAAC;AACL,CAAC;AAED,SAAS,WAAW,CAClB,GAAsB,EACtB,KAA6B,EAC7B,IAA6B;IAE7B,MAAM,QAAQ,GAAG,KAAK,EAAE,UAAU,IAAI,GAAG,EAAE,UAAU,IAAI,EAAE,CAAC;IAC5D,OAAO,IAAI,SAAS,CAAC;QACnB,QAAQ;QACR,SAAS,EAAE,IAAI,CAAC,eAAe,IAAI,yBAAyB;KAC7D,CAAC,CAAC;AACL,CAAC;AAED,MAAM,UAAU,gBAAgB,CAC9B,MAAkB,EAClB,KAA6B,EAC7B,OAAgC,EAAE;IAElC,MAAM,GAAG,GAAG,MAAM,CAAC,GAAG,CAAC;IAEvB,IAAI,KAAK,EAAE,UAAU,KAAK,IAAI;QAAE,OAAO,IAAI,WAAW,EAAE,CAAC;IACzD,IAAI,GAAG,EAAE,UAAU,KAAK,IAAI;QAAE,OAAO,IAAI,WAAW,EAAE,CAAC;IACvD,IAAI,CAAC,GAAG,EAAE,QAAQ,IAAI,CAAC,GAAG,EAAE,SAAS;QAAE,OAAO,IAAI,WAAW,EAAE,CAAC;IAEhE,MAAM,MAAM,GAAG,WAAW,CAAC,GAAG,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;IAC7C,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;IAE3C,MAAM,QAAQ,GAAG,KAAK,EAAE,WAAW,IAAI,GAAG,EAAE,QAAQ,CAAC;IACrD,MAAM,SAAS,GAAG,GAAG,EAAE,SAAS,CAAC;IACjC,MAAM,KAAK,GAAG,KAAK,EAAE,QAAQ,IAAI,GAAG,EAAE,KAAK,CAAC;IAE5C,IAAI,SAAS,KAAK,UAAU,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAoB;YAC/B,KAAK,CAAC,QAAQ,CAAC,SAAwB,EAAE,KAAuB;gBAC9D,MAAM,IAAI,4BAA4B,CAAC,UAAU,CAAC,CAAC;YACrD,CAAC;SACF,CAAC;QACF,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,IACE,SAAS,KAAK,QAAQ;QACtB,CAAC,QAAQ,KAAK,mBAAmB,IAAI,CAAC,GAAG,EAAE,QAAQ,EAAE,QAAQ,CAAC,WAAW,CAAC,IAAI,KAAK,CAAC,CAAC,EACrF,CAAC;QACD,MAAM,WAAW,GAAG,KAAK,IAAI,UAAU,CAAC;QACxC,MAAM,OAAO,GAAG,IAAI,uBAAuB,CAAC;YAC1C,MAAM,EAAE,EAAE;YACV,KAAK,EAAE,WAAW;YAClB,OAAO,EAAE,GAAG,EAAE,QAAQ,IAAI,2BAA2B;YACrD,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;SAC7D,CAAC,CAAC;QACH,OAAO,IAAI,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;IACvE,CAAC;IAED,IACE,SAAS,KAAK,YAAY;QAC1B,CAAC,QAAQ,KAAK,mBAAmB,IAAI,CAAC,GAAG,EAAE,QAAQ,EAAE,QAAQ,CAAC,eAAe,CAAC,IAAI,KAAK,CAAC,CAAC,EACzF,CAAC;QACD,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,oBAAoB,CAAC,IAAI,EAAE,CAAC;QACvD,MAAM,OAAO,GAAG,KAAK,IAAI,oBAAoB,CAAC;QAC9C,MAAM,OAAO,GAAG,IAAI,uBAAuB,CAAC;YAC1C,MAAM;YACN,KAAK,EAAE,OAAO;YACd,OAAO,EAAE,GAAG,EAAE,QAAQ,IAAI,8BAA8B;YACxD,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;SAC7D,CAAC,CAAC;QACH,OAAO,IAAI,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,QAAQ,KAAK,QAAQ,IAAI,CAAC,SAAS,KAAK,gBAAgB,IAAI,QAAQ,KAAK,QAAQ,CAAC,EAAE,CAAC;QACvF,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC;QACnD,MAAM,QAAQ,GAAG,KAAK,IAAI,aAAa,CAAC;QACxC,MAAM,OAAO,GAAG,IAAI,uBAAuB,CAAC;YAC1C,MAAM;YACN,KAAK,EAAE,QAAQ;YACf,OAAO,EAAE,GAAG,EAAE,QAAQ,IAAI,2BAA2B;YACrD,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;SAC7D,CAAC,CAAC;QACH,OAAO,IAAI,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,CAAC,CAAC;IACpE,CAAC;IAED,IAAI,QAAQ,KAAK,WAAW,IAAI,CAAC,SAAS,KAAK,gBAAgB,IAAI,QAAQ,KAAK,WAAW,CAAC,EAAE,CAAC;QAC7F,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,IAAI,EAAE,CAAC;QACtD,MAAM,WAAW,GAAG,KAAK,IAAI,mBAAmB,CAAC;QACjD,MAAM,OAAO,GAAG,IAAI,gBAAgB,CAAC;YACnC,MAAM;YACN,KAAK,EAAE,WAAW;YAClB,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;SAC7D,CAAC,CAAC;QACH,OAAO,IAAI,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;IACvE,CAAC;IAED,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QACxB,MAAM,YAAY,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;QACtD,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,WAAW,GAAG,KAAK,IAAI,mBAAmB,CAAC;YACjD,MAAM,OAAO,GAAG,IAAI,gBAAgB,CAAC;gBACnC,MAAM,EAAE,YAAY;gBACpB,KAAK,EAAE,WAAW;gBAClB,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;aAC7D,CAAC,CAAC;YACH,OAAO,IAAI,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;QACvE,CAAC;QACD,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;QAChD,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,QAAQ,GAAG,KAAK,IAAI,aAAa,CAAC;YACxC,MAAM,OAAO,GAAG,IAAI,uBAAuB,CAAC;gBAC1C,MAAM,EAAE,SAAS;gBACjB,KAAK,EAAE,QAAQ;gBACf,OAAO,EAAE,2BAA2B;gBACpC,GAAG,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE,CAAC;aAC7D,CAAC,CAAC;YACH,OAAO,IAAI,oBAAoB,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,CAAC,CAAC;QACpE,CAAC;QACD,OAAO,IAAI,WAAW,EAAE,CAAC;IAC3B,CAAC;IAED,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QACvB,OAAO;YACL,KAAK,CAAC,QAAQ,CAAC,SAAwB,EAAE,KAAuB;gBAC9D,MAAM,IAAI,4BAA4B,CAAC,KAAK,CAAC,CAAC;YAChD,CAAC;SACF,CAAC;IACJ,CAAC;IAED,OAAO,IAAI,WAAW,EAAE,CAAC;AAC3B,CAAC"}

package/dist/llm/connectors/types.d.ts

@@ -0,0 +1,25 @@
+export interface ChatMessage {
+    role: "system" | "user" | "assistant";
+    content: string;
+}
+export interface CompleteOptions {
+    estimateUsd?: number;
+}
+export interface ConnectorResult {
+    text: string;
+    usdSpent: number;
+    modelUsed: string;
+    llmQuality: "higher" | "lower";
+    cacheHit: boolean;
+}
+export interface ConnectorClient {
+    complete(messages: ChatMessage[], opts?: CompleteOptions): Promise<ConnectorResult>;
+}
+export declare class ConnectorNotImplementedError extends Error {
+    name: string;
+    constructor(connector: string);
+}
+export declare class ConnectorBudgetExceededError extends Error {
+    name: string;
+    constructor(estimateUsd: number, dailyCap: number);
+}

package/dist/llm/connectors/types.js

@@ -0,0 +1,13 @@
+export class ConnectorNotImplementedError extends Error {
+    name = "ConnectorNotImplementedError";
+    constructor(connector) {
+        super(`Connector "${connector}" is not implemented in this version of Lyse.`);
+    }
+}
+export class ConnectorBudgetExceededError extends Error {
+    name = "ConnectorBudgetExceededError";
+    constructor(estimateUsd, dailyCap) {
+        super(`LLM call refused: estimated cost $${estimateUsd.toFixed(4)} would exceed daily cap $${dailyCap.toFixed(2)}.`);
+    }
+}
+//# sourceMappingURL=types.js.map

package/dist/llm/connectors/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/llm/connectors/types.ts"],"names":[],"mappings":"AAqBA,MAAM,OAAO,4BAA6B,SAAQ,KAAK;IAC5C,IAAI,GAAG,8BAA8B,CAAC;IAC/C,YAAY,SAAiB;QAC3B,KAAK,CAAC,cAAc,SAAS,+CAA+C,CAAC,CAAC;IAChF,CAAC;CACF;AAED,MAAM,OAAO,4BAA6B,SAAQ,KAAK;IAC5C,IAAI,GAAG,8BAA8B,CAAC;IAC/C,YAAY,WAAmB,EAAE,QAAgB;QAC/C,KAAK,CACH,qCAAqC,WAAW,CAAC,OAAO,CAAC,CAAC,CAAC,4BAA4B,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAC9G,CAAC;IACJ,CAAC;CACF"}

package/dist/llm/layer4-stage.d.ts

@@ -1,5 +1,7 @@
 import type { Finding, Layer4Meta, LyseConfig } from "../types.js";
 import type { AuditFlags } from "../commands/audit-flags.js";
+import type { ConnectorClient } from "./connectors/types.js";
+import type { RubricDimension } from "./rubric-stub.js";
 export interface Layer4StageInput {
     repoRoot: string;
     config: LyseConfig;
@@ -10,9 +12,9 @@ export interface Layer4StageResult {
     augmentedFindings: Finding[];
     meta: Layer4Meta;
 }
-/**
- * v0.1 stub — LLM Layer 4 was descoped in the Phase 1 reset (#106); the default
- * audit path is static-only. The prior implementation is in git history if a
- * future release revisits LLM augmentation.
- */
-export declare function runLayer4Stage(_input: Layer4StageInput): Promise<Layer4StageResult>;
+export interface Layer4StageOptions {
+    connector?: ConnectorClient;
+    rubricDimensions?: RubricDimension[];
+    timeoutMs?: number;
+}
+export declare function runLayer4Stage(input: Layer4StageInput, opts?: Layer4StageOptions): Promise<Layer4StageResult>;

package/dist/llm/layer4-stage.js

@@ -1,12 +1,148 @@
-/**
- * v0.1 stub — LLM Layer 4 was descoped in the Phase 1 reset (#106); the default
- * audit path is static-only. The prior implementation is in git history if a
- * future release revisits LLM augmentation.
- */
-export async function runLayer4Stage(_input) {
-    return {
-        augmentedFindings: [],
-        meta: { staticOnly: true },
+import { resolveConnector } from "./connectors/resolver.js";
+import { getStubRubricDimensions } from "./rubric-stub.js";
+import { validateProposedFindings } from "./validator.js";
+const VALID_SEVERITIES = new Set(["error", "warning", "info"]);
+const VALID_AXES = new Set([
+    "tokens",
+    "a11y",
+    "components",
+    "stories",
+    "ai-surface",
+    "ai-governance",
+]);
+const DEFAULT_TIMEOUT_MS = 60_000;
+const MAX_LLM_FINDINGS = 100;
+function extractJson(text) {
+    const jsonFenced = text.match(/```json\s*([\s\S]*?)```/);
+    if (jsonFenced && jsonFenced[1])
+        return JSON.parse(jsonFenced[1].trim());
+    const anyFenced = text.match(/```\s*([\s\S]*?)```/);
+    if (anyFenced && anyFenced[1])
+        return JSON.parse(anyFenced[1].trim());
+    return JSON.parse(text);
+}
+function isProposedFinding(v) {
+    if (typeof v !== "object" || v === null)
+        return false;
+    const o = v;
+    if (typeof o["ruleId"] !== "string" || o["ruleId"] === "")
+        return false;
+    if (typeof o["axis"] !== "string" || !VALID_AXES.has(o["axis"]))
+        return false;
+    if (typeof o["severity"] !== "string" || !VALID_SEVERITIES.has(o["severity"]))
+        return false;
+    if (typeof o["file"] !== "string" || o["file"] === "" || o["file"].includes("\0"))
+        return false;
+    if (typeof o["line"] !== "number" || !Number.isFinite(o["line"]) || o["line"] < 1)
+        return false;
+    if (typeof o["column"] !== "number" || !Number.isFinite(o["column"]) || o["column"] < 1)
+        return false;
+    if (typeof o["snippet"] !== "string")
+        return false;
+    if (typeof o["message"] !== "string" || o["message"] === "")
+        return false;
+    return true;
+}
+function dedupAgainstStatic(proposed, staticFindings) {
+    const seen = new Set();
+    for (const f of staticFindings) {
+        seen.add(`${f.ruleId}|${f.location.file}|${f.location.line}`);
+    }
+    return proposed.filter((p) => !seen.has(`${p.ruleId}|${p.file}|${p.line}`));
+}
+function buildPrompt(dimensions, staticFindings) {
+    const dimSection = dimensions
+        .map((d, i) => `${i + 1}. [${d.key}] ${d.prompt}`)
+        .join("\n");
+    const staticSummary = staticFindings.length === 0
+        ? "No static findings."
+        : staticFindings
+            .slice(0, 20)
+            .map((f) => `- ${f.ruleId} @ ${f.location.file}:${f.location.line} — ${f.message}`)
+            .join("\n");
+    return [
+        "You are a design-system governance auditor. Analyze the following dimensions and identify violations.",
+        "",
+        "## Dimensions to audit",
+        dimSection,
+        "",
+        "## Static findings context (already detected, do not repeat)",
+        staticSummary,
+        "",
+        "## Output format",
+        "Return ONLY valid JSON (no markdown, no explanation) matching:",
+        '{ "findings": [ { "ruleId": string, "axis": string, "severity": "error"|"warning"|"info", "file": string, "line": number, "column": number, "snippet": string, "message": string } ] }',
+        "",
+        "CRITICAL: Every finding MUST cite a real file path and an exact code snippet (at least 20 chars) from that file.",
+        'If you have no findings, return: { "findings": [] }',
+    ].join("\n");
+}
+function withTimeout(p, ms) {
+    return Promise.race([
+        p,
+        new Promise((_, reject) => setTimeout(() => reject(new Error(`LLM connector timeout after ${ms}ms`)), ms)),
+    ]);
+}
+export async function runLayer4Stage(input, opts = {}) {
+    const staticOnly = input.flags?.staticOnly === true || input.config.llm?.staticOnly === true;
+    if (staticOnly) {
+        return { augmentedFindings: [], meta: { staticOnly: true } };
+    }
+    const dimensions = opts.rubricDimensions ?? getStubRubricDimensions();
+    if (dimensions.length === 0) {
+        return { augmentedFindings: [], meta: {} };
+    }
+    const connector = opts.connector ?? resolveConnector(input.config, input.flags);
+    const prompt = buildPrompt(dimensions, input.staticFindings);
+    const timeoutMs = opts.timeoutMs ?? DEFAULT_TIMEOUT_MS;
+    let connectorResult;
+    try {
+        connectorResult = await withTimeout(connector.complete([{ role: "user", content: prompt }]), timeoutMs);
+    }
+    catch (err) {
+        const message = err instanceof Error ? err.message : String(err);
+        return {
+            augmentedFindings: [],
+            meta: { error: { kind: "ConnectorError", message } },
+        };
+    }
+    if (connectorResult.text === "") {
+        return { augmentedFindings: [], meta: {} };
+    }
+    let parsed;
+    try {
+        const raw = extractJson(connectorResult.text);
+        if (typeof raw !== "object" ||
+            raw === null ||
+            !Array.isArray(raw["findings"])) {
+            throw new Error("Response missing 'findings' array");
+        }
+        parsed = raw;
+    }
+    catch (err) {
+        const message = err instanceof Error ? err.message : String(err);
+        return {
+            augmentedFindings: [],
+            meta: {
+                modelUsed: connectorResult.modelUsed,
+                usdSpent: connectorResult.usdSpent,
+                llmQuality: connectorResult.llmQuality,
+                cacheHit: connectorResult.cacheHit,
+                error: { kind: "ParseError", message },
+            },
+        };
+    }
+    const cappedRaw = parsed.findings.slice(0, MAX_LLM_FINDINGS);
+    const proposed = cappedRaw.filter(isProposedFinding);
+    const deduped = dedupAgainstStatic(proposed, input.staticFindings);
+    const { findings, droppedHallucinations } = await validateProposedFindings(deduped, input.repoRoot);
+    const meta = {
+        modelUsed: connectorResult.modelUsed,
+        usdSpent: connectorResult.usdSpent,
+        llmQuality: connectorResult.llmQuality,
+        cacheHit: connectorResult.cacheHit,
+        droppedHallucinations,
     };
+    return { augmentedFindings: findings, meta };
 }
 //# sourceMappingURL=layer4-stage.js.map

package/dist/llm/layer4-stage.js.map

@@ -1 +1 @@
-{"version":3,"file":"layer4-stage.js","sourceRoot":"","sources":["../../src/llm/layer4-stage.ts"],"names":[],"mappings":"AAeA;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,MAAwB;IAC3D,OAAO;QACL,iBAAiB,EAAE,EAAE;QACrB,IAAI,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE;KAC3B,CAAC;AACJ,CAAC"}
+{"version":3,"file":"layer4-stage.js","sourceRoot":"","sources":["../../src/llm/layer4-stage.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,gBAAgB,EAAE,MAAM,0BAA0B,CAAC;AAE5D,OAAO,EAAE,uBAAuB,EAAE,MAAM,kBAAkB,CAAC;AAE3D,OAAO,EAAE,wBAAwB,EAAE,MAAM,gBAAgB,CAAC;AAwB1D,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAW,CAAC,OAAO,EAAE,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC;AACzE,MAAM,UAAU,GAAG,IAAI,GAAG,CAAW;IACnC,QAAQ;IACR,MAAM;IACN,YAAY;IACZ,SAAS;IACT,YAAY;IACZ,eAAe;CAChB,CAAC,CAAC;AACH,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAClC,MAAM,gBAAgB,GAAG,GAAG,CAAC;AAE7B,SAAS,WAAW,CAAC,IAAY;IAC/B,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAC;IACzD,IAAI,UAAU,IAAI,UAAU,CAAC,CAAC,CAAC;QAAE,OAAO,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;IACzE,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,qBAAqB,CAAC,CAAC;IACpD,IAAI,SAAS,IAAI,SAAS,CAAC,CAAC,CAAC;QAAE,OAAO,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;IACtE,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,SAAS,iBAAiB,CAAC,CAAU;IACnC,IAAI,OAAO,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,IAAI;QAAE,OAAO,KAAK,CAAC;IACtD,MAAM,CAAC,GAAG,CAA4B,CAAC;IACvC,IAAI,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,QAAQ,IAAI,CAAC,CAAC,QAAQ,CAAC,KAAK,EAAE;QAAE,OAAO,KAAK,CAAC;IACxE,IAAI,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,QAAQ,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAa,CAAC;QAAE,OAAO,KAAK,CAAC;IAC1F,IAAI,OAAO,CAAC,CAAC,UAAU,CAAC,KAAK,QAAQ,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAa,CAAC;QAAE,OAAO,KAAK,CAAC;IACxG,IAAI,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,QAAQ,IAAI,CAAC,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC;QAAE,OAAO,KAAK,CAAC;IAChG,IAAI,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IAChG,IAAI,OAAO,CAAC,CAAC,QAAQ,CAAC,KAAK,QAAQ,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IACtG,IAAI,OAAO,CAAC,CAAC,SAAS,CAAC,KAAK,QAAQ;QAAE,OAAO,KAAK,CAAC;IACnD,IAAI,OAAO,CAAC,CAAC,SAAS,CAAC,KAAK,QAAQ,IAAI,CAAC,CAAC,SAAS,CAAC,KAAK,EAAE;QAAE,OAAO,KAAK,CAAC;IAC1E,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,kBAAkB,CACzB,QAA2B,EAC3B,cAAyB;IAEzB,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,KAAK,MAAM,CAAC,IAAI,cAAc,EAAE,CAAC;QAC/B,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;IAChE,CAAC;IACD,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,WAAW,CAAC,UAA6B,EAAE,cAAyB;IAC3E,MAAM,UAAU,GAAG,UAAU;SAC1B,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;SACjD,IAAI,CAAC,IAAI,CAAC,CAAC;IAEd,MAAM,aAAa,GACjB,cAAc,CAAC,MAAM,KAAK,CAAC;QACzB,CAAC,CAAC,qBAAqB;QACvB,CAAC,CAAC,cAAc;aACX,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;aACZ,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,MAAM,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,MAAM,CAAC,CAAC,OAAO,EAAE,CAAC;aAClF,IAAI,CAAC,IAAI,CAAC,CAAC;IAEpB,OAAO;QACL,uGAAuG;QACvG,EAAE;QACF,wBAAwB;QACxB,UAAU;QACV,EAAE;QACF,8DAA8D;QAC9D,aAAa;QACb,EAAE;QACF,kBAAkB;QAClB,gEAAgE;QAChE,wLAAwL;QACxL,EAAE;QACF,kHAAkH;QAClH,qDAAqD;KACtD,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED,SAAS,WAAW,CAAI,CAAa,EAAE,EAAU;IAC/C,OAAO,OAAO,CAAC,IAAI,CAAC;QAClB,CAAC;QACD,IAAI,OAAO,CAAQ,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE,CAC/B,UAAU,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,+BAA+B,EAAE,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAC/E;KACF,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,cAAc,CAClC,KAAuB,EACvB,OAA2B,EAAE;IAE7B,MAAM,UAAU,GACd,KAAK,CAAC,KAAK,EAAE,UAAU,KAAK,IAAI,IAAI,KAAK,CAAC,MAAM,CAAC,GAAG,EAAE,UAAU,KAAK,IAAI,CAAC;IAE5E,IAAI,UAAU,EAAE,CAAC;QACf,OAAO,EAAE,iBAAiB,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,EAAE,CAAC;IAC/D,CAAC;IAED,MAAM,UAAU,GAAG,IAAI,CAAC,gBAAgB,IAAI,uBAAuB,EAAE,CAAC;IAEtE,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC5B,OAAO,EAAE,iBAAiB,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC7C,CAAC;IAED,MAAM,SAAS,GACb,IAAI,CAAC,SAAS,IAAI,gBAAgB,CAAC,KAAK,CAAC,MAAM,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;IAEhE,MAAM,MAAM,GAAG,WAAW,CAAC,UAAU,EAAE,KAAK,CAAC,cAAc,CAAC,CAAC;IAC7D,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,IAAI,kBAAkB,CAAC;IAEvD,IAAI,eAAe,CAAC;IACpB,IAAI,CAAC;QACH,eAAe,GAAG,MAAM,WAAW,CACjC,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC,EACvD,SAAS,CACV,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACjE,OAAO;YACL,iBAAiB,EAAE,EAAE;YACrB,IAAI,EAAE,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,EAAE;SACrD,CAAC;IACJ,CAAC;IAED,IAAI,eAAe,CAAC,IAAI,KAAK,EAAE,EAAE,CAAC;QAChC,OAAO,EAAE,iBAAiB,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC7C,CAAC;IAED,IAAI,MAA2B,CAAC;IAChC,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,WAAW,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;QAC9C,IACE,OAAO,GAAG,KAAK,QAAQ;YACvB,GAAG,KAAK,IAAI;YACZ,CAAC,KAAK,CAAC,OAAO,CAAE,GAA+B,CAAC,UAAU,CAAC,CAAC,EAC5D,CAAC;YACD,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;QACD,MAAM,GAAG,GAA0B,CAAC;IACtC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACjE,OAAO;YACL,iBAAiB,EAAE,EAAE;YACrB,IAAI,EAAE;gBACJ,SAAS,EAAE,eAAe,CAAC,SAAS;gBACpC,QAAQ,EAAE,eAAe,CAAC,QAAQ;gBAClC,UAAU,EAAE,eAAe,CAAC,UAAU;gBACtC,QAAQ,EAAE,eAAe,CAAC,QAAQ;gBAClC,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE;aACvC;SACF,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,gBAAgB,CAAC,CAAC;IAC7D,MAAM,QAAQ,GAAG,SAAS,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;IACrD,MAAM,OAAO,GAAG,kBAAkB,CAAC,QAAQ,EAAE,KAAK,CAAC,cAAc,CAAC,CAAC;IACnE,MAAM,EAAE,QAAQ,EAAE,qBAAqB,EAAE,GAAG,MAAM,wBAAwB,CACxE,OAAO,EACP,KAAK,CAAC,QAAQ,CACf,CAAC;IAEF,MAAM,IAAI,GAAe;QACvB,SAAS,EAAE,eAAe,CAAC,SAAS;QACpC,QAAQ,EAAE,eAAe,CAAC,QAAQ;QAClC,UAAU,EAAE,eAAe,CAAC,UAAU;QACtC,QAAQ,EAAE,eAAe,CAAC,QAAQ;QAClC,qBAAqB;KACtB,CAAC;IAEF,OAAO,EAAE,iBAAiB,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;AAC/C,CAAC"}

package/dist/llm/rubric-stub.d.ts

@@ -0,0 +1,8 @@
+import type { AxisName, RuleId } from "../types.js";
+export interface RubricDimension {
+    key: string;
+    axis: AxisName;
+    ruleId: RuleId;
+    prompt: string;
+}
+export declare function getStubRubricDimensions(): RubricDimension[];

package/dist/llm/rubric-stub.js

@@ -0,0 +1,4 @@
+export function getStubRubricDimensions() {
+    return [];
+}
+//# sourceMappingURL=rubric-stub.js.map

package/dist/llm/rubric-stub.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rubric-stub.js","sourceRoot":"","sources":["../../src/llm/rubric-stub.ts"],"names":[],"mappings":"AASA,MAAM,UAAU,uBAAuB;IACrC,OAAO,EAAE,CAAC;AACZ,CAAC"}

package/dist/llm/validator.d.ts

@@ -0,0 +1,18 @@
+import type { AxisName, Finding, Severity } from "../types.js";
+import type { RuleId } from "../types.js";
+export interface ProposedFinding {
+    ruleId: RuleId;
+    axis: AxisName;
+    severity: Severity;
+    file: string;
+    line: number;
+    column: number;
+    snippet: string;
+    message: string;
+    suggestion?: string;
+}
+export interface ValidationResult {
+    findings: Finding[];
+    droppedHallucinations: number;
+}
+export declare function validateProposedFindings(proposed: ProposedFinding[], repoRoot: string): Promise<ValidationResult>;

package/dist/llm/validator.js

@@ -0,0 +1,81 @@
+import { readFile, realpath } from "node:fs/promises";
+import { join, sep } from "node:path";
+import { ruleMap } from "../rules/registry.js";
+const MIN_SNIPPET_LENGTH = 10;
+const LINE_PROXIMITY_TOLERANCE = 5;
+export async function validateProposedFindings(proposed, repoRoot) {
+    const findings = [];
+    let droppedHallucinations = 0;
+    let resolvedRoot;
+    try {
+        resolvedRoot = await realpath(repoRoot);
+    }
+    catch {
+        return { findings: [], droppedHallucinations: proposed.length };
+    }
+    for (const p of proposed) {
+        if (!ruleMap.has(p.ruleId)) {
+            droppedHallucinations++;
+            continue;
+        }
+        if (p.snippet.length < MIN_SNIPPET_LENGTH) {
+            droppedHallucinations++;
+            continue;
+        }
+        const absPath = join(resolvedRoot, p.file);
+        if (!absPath.startsWith(resolvedRoot + sep) && absPath !== resolvedRoot) {
+            droppedHallucinations++;
+            continue;
+        }
+        // Defense in depth against symlinks pointing outside the repo
+        let realAbs;
+        try {
+            realAbs = await realpath(absPath);
+        }
+        catch {
+            droppedHallucinations++;
+            continue;
+        }
+        if (!realAbs.startsWith(resolvedRoot + sep) && realAbs !== resolvedRoot) {
+            droppedHallucinations++;
+            continue;
+        }
+        let content;
+        try {
+            content = await readFile(realAbs, "utf8");
+        }
+        catch {
+            droppedHallucinations++;
+            continue;
+        }
+        const lines = content.split("\n");
+        const targetLine = Math.max(1, Math.min(p.line, lines.length));
+        const windowStart = Math.max(0, targetLine - 1 - LINE_PROXIMITY_TOLERANCE);
+        const windowEnd = Math.min(lines.length, targetLine - 1 + LINE_PROXIMITY_TOLERANCE + 1);
+        const windowContent = lines.slice(windowStart, windowEnd).join("\n");
+        if (!windowContent.includes(p.snippet)) {
+            droppedHallucinations++;
+            continue;
+        }
+        const finding = {
+            ruleId: p.ruleId,
+            axis: p.axis,
+            severity: p.severity,
+            location: { file: p.file, line: p.line, column: p.column },
+            message: p.message,
+            ...(p.suggestion !== undefined && { suggestion: p.suggestion }),
+        };
+        findings.push(finding);
+    }
+    findings.sort((a, b) => {
+        const fa = a.location.file;
+        const fb = b.location.file;
+        if (fa !== fb)
+            return fa < fb ? -1 : 1;
+        if (a.location.line !== b.location.line)
+            return a.location.line - b.location.line;
+        return a.ruleId < b.ruleId ? -1 : a.ruleId > b.ruleId ? 1 : 0;
+    });
+    return { findings, droppedHallucinations };
+}
+//# sourceMappingURL=validator.js.map

package/dist/llm/validator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validator.js","sourceRoot":"","sources":["../../src/llm/validator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AACtD,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,MAAM,WAAW,CAAC;AAGtC,OAAO,EAAE,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAmB/C,MAAM,kBAAkB,GAAG,EAAE,CAAC;AAC9B,MAAM,wBAAwB,GAAG,CAAC,CAAC;AAEnC,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,QAA2B,EAC3B,QAAgB;IAEhB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,IAAI,qBAAqB,GAAG,CAAC,CAAC;IAE9B,IAAI,YAAoB,CAAC;IACzB,IAAI,CAAC;QACH,YAAY,GAAG,MAAM,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC1C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,qBAAqB,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC;IAClE,CAAC;IAED,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,CAAC;YAC3B,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QAED,IAAI,CAAC,CAAC,OAAO,CAAC,MAAM,GAAG,kBAAkB,EAAE,CAAC;YAC1C,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QAED,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC;QAC3C,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,YAAY,GAAG,GAAG,CAAC,IAAI,OAAO,KAAK,YAAY,EAAE,CAAC;YACxE,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QAED,8DAA8D;QAC9D,IAAI,OAAe,CAAC;QACpB,IAAI,CAAC;YACH,OAAO,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC,CAAC;QACpC,CAAC;QAAC,MAAM,CAAC;YACP,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,YAAY,GAAG,GAAG,CAAC,IAAI,OAAO,KAAK,YAAY,EAAE,CAAC;YACxE,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QAED,IAAI,OAAe,CAAC;QACpB,IAAI,CAAC;YACH,OAAO,GAAG,MAAM,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;QAC5C,CAAC;QAAC,MAAM,CAAC;YACP,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC;QAC/D,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,UAAU,GAAG,CAAC,GAAG,wBAAwB,CAAC,CAAC;QAC3E,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,UAAU,GAAG,CAAC,GAAG,wBAAwB,GAAG,CAAC,CAAC,CAAC;QACxF,MAAM,aAAa,GAAG,KAAK,CAAC,KAAK,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACrE,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC;YACvC,qBAAqB,EAAE,CAAC;YACxB,SAAS;QACX,CAAC;QAED,MAAM,OAAO,GAAY;YACvB,MAAM,EAAE,CAAC,CAAC,MAAM;YAChB,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,QAAQ,EAAE,CAAC,CAAC,QAAQ;YACpB,QAAQ,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;YAC1D,OAAO,EAAE,CAAC,CAAC,OAAO;YAClB,GAAG,CAAC,CAAC,CAAC,UAAU,KAAK,SAAS,IAAI,EAAE,UAAU,EAAE,CAAC,CAAC,UAAU,EAAE,CAAC;SAChE,CAAC;QACF,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACzB,CAAC;IAED,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACrB,MAAM,EAAE,GAAG,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC;QAC3B,MAAM,EAAE,GAAG,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC;QAC3B,IAAI,EAAE,KAAK,EAAE;YAAE,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QACvC,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI;YAAE,OAAO,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC;QAClF,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAChE,CAAC,CAAC,CAAC;IAEH,OAAO,EAAE,QAAQ,EAAE,qBAAqB,EAAE,CAAC;AAC7C,CAAC"}

package/dist/parsers/ai-tokens.d.ts

@@ -0,0 +1,10 @@
+export declare function isReservedTokenName(rawName: string): boolean;
+declare function collectJsonLeafPaths(node: unknown, prefix: string, out: Set<string>): void;
+declare function extractCssCustomPropertyNames(source: string): string[];
+export declare function detectReservedAiTokens(repoRoot: string): string[];
+export declare const _internal: {
+    isReservedTokenName: typeof isReservedTokenName;
+    collectJsonLeafPaths: typeof collectJsonLeafPaths;
+    extractCssCustomPropertyNames: typeof extractCssCustomPropertyNames;
+};
+export {};