@massu/core 0.6.3 → 0.8.0

package/dist/hooks/user-prompt.js

@@ -131,6 +131,44 @@ var RegressionConfigSchema = z.object({
     warning: z.number().default(50)
   }).optional()
 }).optional();
+var AutoLearningConfigSchema = z.object({
+  enabled: z.boolean().default(true),
+  incidentDir: z.string().default("docs/incidents"),
+  memoryDir: z.string().default("memory"),
+  memoryIndexFile: z.string().default("MEMORY.md"),
+  enforcementHooksDir: z.string().default("scripts/hooks"),
+  fixDetection: z.object({
+    enabled: z.boolean().default(true),
+    lookbackDays: z.number().default(7),
+    signals: z.array(z.string()).default([
+      "removed_broken_code",
+      "added_error_handling",
+      "method_name_correction",
+      "auth_fix",
+      "nil_handling_fix",
+      "concurrency_fix",
+      "async_pattern_fix",
+      "added_missing_import"
+    ])
+  }).default({}),
+  failureClassification: z.object({
+    enabled: z.boolean().default(true),
+    thresholds: z.object({
+      known: z.number().default(5),
+      similar: z.number().default(3)
+    }).default({}),
+    scoring: z.object({
+      diffPatternWeight: z.number().default(3),
+      filePatternWeight: z.number().default(2),
+      promptKeywordWeight: z.number().default(2)
+    }).default({})
+  }).default({}),
+  pipeline: z.object({
+    requireIncidentReport: z.boolean().default(true),
+    requirePreventionRule: z.boolean().default(true),
+    requireEnforcement: z.boolean().default(true)
+  }).default({})
+}).optional();
 var CloudConfigSchema = z.object({
   enabled: z.boolean().default(false),
   apiKey: z.string().optional(),
@@ -220,7 +258,8 @@ var RawConfigSchema = z.object({
   regression: RegressionConfigSchema,
   cloud: CloudConfigSchema,
   conventions: ConventionsConfigSchema,
-  python: PythonConfigSchema
+  python: PythonConfigSchema,
+  autoLearning: AutoLearningConfigSchema
 }).passthrough();
 var _config = null;
 var _projectRoot = null;
@@ -821,6 +860,25 @@ function initMemorySchema(db) {
       features TEXT DEFAULT '[]'
     );
   `);
+  db.exec(`
+    CREATE TABLE IF NOT EXISTS failure_classes (
+      id INTEGER PRIMARY KEY AUTOINCREMENT,
+      name TEXT NOT NULL UNIQUE,
+      description TEXT NOT NULL,
+      diff_patterns TEXT NOT NULL DEFAULT '[]',
+      file_patterns TEXT NOT NULL DEFAULT '[]',
+      prompt_keywords TEXT NOT NULL DEFAULT '[]',
+      incidents TEXT NOT NULL DEFAULT '[]',
+      rules TEXT NOT NULL DEFAULT '[]',
+      scanner_checks TEXT NOT NULL DEFAULT '[]',
+      known_message TEXT NOT NULL DEFAULT '',
+      needs_review INTEGER NOT NULL DEFAULT 0,
+      created_at TEXT DEFAULT (datetime('now')),
+      updated_at TEXT DEFAULT (datetime('now'))
+    );
+    CREATE INDEX IF NOT EXISTS idx_fc_name ON failure_classes(name);
+    CREATE INDEX IF NOT EXISTS idx_fc_needs_review ON failure_classes(needs_review);
+  `);
 }
 function assignImportance(type, vrResult) {
   switch (type) {
@@ -894,7 +952,9 @@ function linkSessionToTask(db, sessionId, taskId) {
 }
 
 // src/hooks/user-prompt.ts
-import { existsSync as existsSync3 } from "fs";
+import { existsSync as existsSync3, writeFileSync } from "fs";
+import { tmpdir } from "os";
+import { join } from "path";
 async function main() {
   try {
     const input = await readStdin();
@@ -967,6 +1027,35 @@ async function main() {
         }
       } catch (_memoryNagErr) {
       }
+      try {
+        const failureKeywords = [
+          "bug",
+          "broken",
+          "crash",
+          "error",
+          "fail",
+          "fix",
+          "wrong",
+          "missing",
+          "undefined",
+          "null",
+          "exception",
+          "stack trace",
+          "regression",
+          "revert",
+          "doesn't work",
+          "not working",
+          "stopped working",
+          "broke"
+        ];
+        const promptLower = prompt.toLowerCase();
+        const matched = failureKeywords.filter((kw) => promptLower.includes(kw));
+        if (matched.length > 0) {
+          const contextFile = join(tmpdir(), `massu-failure-context-${session_id.slice(0, 8)}-${Date.now()}`);
+          writeFileSync(contextFile, matched.join(" "), "utf-8");
+        }
+      } catch {
+      }
     } finally {
       db.close();
     }

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "@massu/core",
-  "version": "0.6.3",
+  "version": "0.8.0",
   "type": "module",
-  "description": "AI Engineering Governance MCP Server - Session memory, knowledge system, feature registry, code intelligence, rule enforcement, tiered tooling (12 free / 72 total), 55+ workflow commands, 11 agents, 20+ patterns",
+  "description": "AI Engineering Governance MCP Server - Session memory, knowledge system, feature registry, code intelligence, rule enforcement, auto-learning pipeline, tiered tooling (12 free / 72 total), 55+ workflow commands, 15 agents, 20+ patterns",
   "main": "src/server.ts",
   "bin": {
     "massu": "./dist/cli.js"

package/reference/hook-execution-order.md

@@ -52,9 +52,9 @@ Security blocking -> advisory warnings -> matcher-specific -> observability.
 
 ---
 
-## PostToolUse (11 hooks)
+## PostToolUse (14 hooks)
 
-Security scan -> immediate feedback -> context tracking -> incident capture -> memory sync -> observability.
+Security scan -> immediate feedback -> context tracking -> fix detection -> incident capture -> pipeline triggers -> memory sync -> observability.
 
 | position: 1 | CI monitor | standard | Bash(git push) -- immediate push feedback |
 |---|---|---|---|
@@ -62,17 +62,23 @@ Security scan -> immediate feedback -> context tracking -> incident capture -> m
 | position: 3 | `pattern-feedback.sh` | standard | Edit\|Write -- immediate pattern violation feedback |
 | position: 4 | `post-edit-context.js` | strict | Edit\|Write -- detailed semantic analysis |
 | position: 5 | `post-tool-use.js` | standard | Edit\|Write\|Bash -- structured context tracking |
-| position: 6 | `auto-ingest-incident.sh` | strict | Edit\|Write -- auto-capture incident patterns |
-| position: 7 | `memory-auto-ingest.sh` | standard | Write -- auto-sync memory files to codegraph SQLite DB |
-| position: 8 | `validate-deliverables.sh` | strict | Bash\|Edit\|Write -- deliverable validation |
-| position: 9 | `pattern-scanner.sh --single-file` | strict | Edit\|Write -- per-file pattern scan |
-| position: 10 | `mcp-usage-tracker.sh` | strict | MCP tools -- append-only MCP audit log |
-| position: 11 | `compaction-advisor.sh` | standard | Bash\|Edit\|Write\|Read\|Grep\|Glob -- context tracking, widest matcher |
+| position: 6 | `fix-detector.js` | standard | Edit\|Write -- detect bug fixes via git diff heuristics |
+| position: 7 | `auto-ingest-incident.sh` | strict | Edit\|Write -- auto-capture incident patterns |
+| position: 8 | `incident-pipeline.js` | standard | Write -- trigger rule derivation on incident report writes |
+| position: 9 | `rule-enforcement-pipeline.js` | standard | Write -- trigger enforcement on prevention rule writes |
+| position: 10 | `memory-auto-ingest.sh` | standard | Write -- auto-sync memory files to codegraph SQLite DB |
+| position: 11 | `validate-deliverables.sh` | strict | Bash\|Edit\|Write -- deliverable validation |
+| position: 12 | `pattern-scanner.sh --single-file` | strict | Edit\|Write -- per-file pattern scan |
+| position: 13 | `mcp-usage-tracker.sh` | strict | MCP tools -- append-only MCP audit log |
+| position: 14 | `compaction-advisor.sh` | standard | Bash\|Edit\|Write\|Read\|Grep\|Glob -- context tracking, widest matcher |
 
 **Dependencies**:
 - `output-secret-filter.sh` MUST run before any feedback hooks -- security first
 - `pattern-feedback.sh` before `post-tool-use.js` -- immediate feedback before tracking
-- `memory-auto-ingest.sh` runs after incident capture -- memory sync is data-writing, before validation
+- `fix-detector.js` after `post-tool-use.js` -- needs structured tracking context
+- `incident-pipeline.js` after `auto-ingest-incident.sh` -- incident must be captured first
+- `rule-enforcement-pipeline.js` after `incident-pipeline.js` -- rule derivation before enforcement
+- `memory-auto-ingest.sh` runs after pipeline hooks -- memory sync is data-writing, before validation
 - `compaction-advisor.sh` MUST be last -- widest matcher, just counts tool calls
 
 ---
@@ -105,21 +111,23 @@ Quick state capture -> full DB snapshot.
 
 ---
 
-## Stop (7 hooks)
+## Stop (8 hooks)
 
-Session summary -> warnings -> memory extraction -> review -> validation.
+Session summary -> auto-learning check -> warnings -> memory extraction -> review -> validation.
 
 | position: 1 | `session-end.js` | standard | Write session summary to memory DB |
 |---|---|---|---|
-| position: 2 | Uncommitted changes warning | standard (inline) | Alert user about unstaged work |
-| position: 3 | `memory-auto-extract.sh` | standard | Auto-extract memories from DB observations |
-| position: 4 | `auto-review-on-stop.sh` | strict | Automated code review of session changes |
-| position: 5 | `surface-review-findings.sh` | strict | Display review findings to user |
-| position: 6 | `validate-deliverables.sh` | strict | Final deliverable validation |
-| position: 7 | `pattern-extractor.sh` | advisory | Extract new patterns from session |
+| position: 2 | `auto-learning-pipeline.js` | standard | Enforce fix→incident→rule→enforcement pipeline completion |
+| position: 3 | Uncommitted changes warning | standard (inline) | Alert user about unstaged work |
+| position: 4 | `memory-auto-extract.sh` | standard | Auto-extract memories from DB observations |
+| position: 5 | `auto-review-on-stop.sh` | strict | Automated code review of session changes |
+| position: 6 | `surface-review-findings.sh` | strict | Display review findings to user |
+| position: 7 | `validate-deliverables.sh` | strict | Final deliverable validation |
+| position: 8 | `pattern-extractor.sh` | advisory | Extract new patterns from session |
 
 **Dependencies**:
 - `session-end.js` MUST be position 1 -- writes DB data that `memory-auto-extract.sh` reads
+- `auto-learning-pipeline.js` MUST run early -- needs to output mandatory instructions before session ends
 - `memory-auto-extract.sh` MUST come after `session-end.js` -- depends on DB observations
 - `surface-review-findings.sh` MUST come after `auto-review-on-stop.sh` -- displays its output
 - `pattern-extractor.sh` runs last -- advisory tier (skipped in minimal/standard profiles)

package/src/commands/doctor.ts

@@ -8,7 +8,7 @@
  * 1. massu.config.yaml exists and parses correctly
  * 2. .mcp.json has massu entry
  * 3. .claude/settings.local.json has hooks config
- * 4. All 11 compiled hook files exist
+ * 4. All 15 compiled hook files exist
  * 5. Knowledge DB exists (.massu/memory.db)
  * 6. Memory directory exists (~/.claude/projects/.../memory/)
  * 7. Shell hooks wired in settings.local.json

package/src/commands/init.ts

@@ -7,7 +7,7 @@
  * 1. Detects project framework (scans package.json)
  * 2. Generates massu.config.yaml (or preserves existing)
  * 3. Registers MCP server in .mcp.json (creates or merges)
- * 4. Installs all 11 hooks in .claude/settings.local.json
+ * 4. Installs all 15 hooks in .claude/settings.local.json
  * 5. Installs slash commands into .claude/commands/
  * 6. Initializes memory directory
  * 7. Prints success summary
@@ -402,6 +402,15 @@ export function buildHooksConfig(hooksDir: string): HooksConfig {
         matcher: 'Edit|Write',
         hooks: [
           { type: 'command', command: hookCmd(hooksDir, 'post-edit-context.js'), timeout: 5 },
+          { type: 'command', command: hookCmd(hooksDir, 'fix-detector.js'), timeout: 5 },
+          { type: 'command', command: hookCmd(hooksDir, 'classify-failure.js'), timeout: 5 },
+        ],
+      },
+      {
+        matcher: 'Write',
+        hooks: [
+          { type: 'command', command: hookCmd(hooksDir, 'incident-pipeline.js'), timeout: 5 },
+          { type: 'command', command: hookCmd(hooksDir, 'rule-enforcement-pipeline.js'), timeout: 5 },
         ],
       },
     ],
@@ -409,6 +418,7 @@ export function buildHooksConfig(hooksDir: string): HooksConfig {
       {
         hooks: [
           { type: 'command', command: hookCmd(hooksDir, 'session-end.js'), timeout: 15 },
+          { type: 'command', command: hookCmd(hooksDir, 'auto-learning-pipeline.js'), timeout: 10 },
         ],
       },
     ],

package/src/config.ts

@@ -147,6 +147,47 @@ const RegressionConfigSchema = z.object({
 }).optional();
 export type RegressionConfig = z.infer<typeof RegressionConfigSchema>;
 
+// --- Auto-Learning Config ---
+const AutoLearningConfigSchema = z.object({
+  enabled: z.boolean().default(true),
+  incidentDir: z.string().default('docs/incidents'),
+  memoryDir: z.string().default('memory'),
+  memoryIndexFile: z.string().default('MEMORY.md'),
+  enforcementHooksDir: z.string().default('scripts/hooks'),
+  fixDetection: z.object({
+    enabled: z.boolean().default(true),
+    lookbackDays: z.number().default(7),
+    signals: z.array(z.string()).default([
+      'removed_broken_code',
+      'added_error_handling',
+      'method_name_correction',
+      'auth_fix',
+      'nil_handling_fix',
+      'concurrency_fix',
+      'async_pattern_fix',
+      'added_missing_import',
+    ]),
+  }).default({}),
+  failureClassification: z.object({
+    enabled: z.boolean().default(true),
+    thresholds: z.object({
+      known: z.number().default(5),
+      similar: z.number().default(3),
+    }).default({}),
+    scoring: z.object({
+      diffPatternWeight: z.number().default(3),
+      filePatternWeight: z.number().default(2),
+      promptKeywordWeight: z.number().default(2),
+    }).default({}),
+  }).default({}),
+  pipeline: z.object({
+    requireIncidentReport: z.boolean().default(true),
+    requirePreventionRule: z.boolean().default(true),
+    requireEnforcement: z.boolean().default(true),
+  }).default({}),
+}).optional();
+export type AutoLearningConfig = z.infer<typeof AutoLearningConfigSchema>;
+
 // --- Cloud Config ---
 const CloudConfigSchema = z.object({
   enabled: z.boolean().default(false),
@@ -240,6 +281,7 @@ const RawConfigSchema = z.object({
   cloud: CloudConfigSchema,
   conventions: ConventionsConfigSchema,
   python: PythonConfigSchema,
+  autoLearning: AutoLearningConfigSchema,
 }).passthrough();
 
 // --- Final Config interface (derived from Zod) ---
@@ -261,6 +303,7 @@ export interface Config {
   cloud?: CloudConfig;
   conventions?: ConventionsConfig;
   python?: PythonConfig;
+  autoLearning?: AutoLearningConfig;
 }
 
 let _config: Config | null = null;

package/src/hooks/auto-learning-pipeline.ts

@@ -0,0 +1,195 @@
+#!/usr/bin/env node
+// Copyright (c) 2026 Massu. All rights reserved.
+// Licensed under BSL 1.1 - see LICENSE file for details.
+
+// ============================================================
+// Stop Hook: Auto-Learning Pipeline Enforcer
+// At session end, checks if bug fixes were applied without
+// completing the full incident → rule → enforcement pipeline.
+// Outputs mandatory instructions for Claude to follow.
+//
+// Part of the Auto-Learning Pipeline:
+//   Fix Detected → [SESSION END CHECK] → Pipeline Instructions
+//
+// This is the FORCING FUNCTION that ensures no fix goes
+// undocumented. Claude cannot end the session without completing
+// the pipeline steps.
+// ============================================================
+
+import { execSync } from 'child_process';
+import { existsSync, readFileSync, unlinkSync, readdirSync } from 'fs';
+import { tmpdir } from 'os';
+import { join } from 'path';
+import { getProjectRoot, getConfig } from '../config.ts';
+
+interface HookInput {
+  session_id: string;
+  transcript_path: string;
+  cwd: string;
+}
+
+interface FixSignal {
+  file: string;
+  signals: string[];
+  timestamp: string;
+}
+
+function getSessionFlagPath(sessionId: string): string {
+  return join(tmpdir(), 'massu-auto-learning', `fixes-${sessionId.slice(0, 12)}.jsonl`);
+}
+
+async function main(): Promise<void> {
+  try {
+    const input = await readStdin();
+    const hookInput = JSON.parse(input) as HookInput;
+    const config = getConfig();
+
+    // Check if auto-learning is enabled
+    if (config.autoLearning?.enabled === false) {
+      process.exit(0);
+      return;
+    }
+
+    const root = getProjectRoot();
+    const incidentDir = config.autoLearning?.incidentDir ?? 'docs/incidents';
+    const memoryDir = config.autoLearning?.memoryDir ?? 'memory';
+    const autoLearn = config.autoLearning;
+
+    // Source 1: Session fix flags from fix-detector
+    const flagPath = getSessionFlagPath(hookInput.session_id);
+    let sessionFixes: FixSignal[] = [];
+    if (existsSync(flagPath)) {
+      try {
+        sessionFixes = readFileSync(flagPath, 'utf-8')
+          .split('\n')
+          .filter(Boolean)
+          .map(line => JSON.parse(line) as FixSignal);
+      } catch { /* ignore parse errors */ }
+    }
+
+    // Source 2: Scan uncommitted git diff for fix patterns (language-agnostic)
+    let uncommittedFix = false;
+    try {
+      const diff = execSync('git diff --name-only', { cwd: root, timeout: 3000, encoding: 'utf-8' });
+      if (diff.trim()) {
+        const fullDiff = execSync('git diff', { cwd: root, timeout: 5000, encoding: 'utf-8' });
+        const fixPatterns = (fullDiff.match(/^\+.*(try|except|catch|guard|throw|raise|assert|validate|if.*null|if.*nil|if.*None|if.*undefined)/gm) || []).length;
+        const removedBroken = (fullDiff.match(/^-.*(bug|broken|crash|wrong|incorrect|typo|fail|error|miss|stale)/gm) || []).length;
+        if (fixPatterns > 3 || removedBroken > 1) {
+          uncommittedFix = true;
+        }
+      }
+    } catch { /* git not available or no changes */ }
+
+    if (sessionFixes.length === 0 && !uncommittedFix) {
+      // Clean up flag file
+      cleanup(flagPath);
+      process.exit(0);
+      return;
+    }
+
+    // Build pipeline instructions
+    const lines: string[] = [];
+    lines.push('');
+    lines.push('============================================================================');
+    lines.push(' MASSU AUTO-LEARNING PIPELINE — ACTION REQUIRED BEFORE SESSION END');
+    lines.push('============================================================================');
+
+    if (sessionFixes.length > 0) {
+      lines.push('');
+      lines.push(`  ${sessionFixes.length} bug fix(es) detected during this session:`);
+      lines.push('');
+      // Deduplicate by file
+      const byFile = new Map<string, string[]>();
+      for (const fix of sessionFixes) {
+        const existing = byFile.get(fix.file) ?? [];
+        existing.push(...fix.signals);
+        byFile.set(fix.file, [...new Set(existing)]);
+      }
+      for (const [file, signals] of byFile) {
+        lines.push(`    - ${file} (${signals.join(', ')})`);
+      }
+    }
+
+    if (uncommittedFix) {
+      lines.push('');
+      lines.push('  Additional uncommitted fix patterns detected in git diff.');
+    }
+
+    lines.push('');
+    lines.push('  Complete these steps before this session ends:');
+    lines.push('');
+
+    if (autoLearn?.pipeline?.requireIncidentReport !== false) {
+      lines.push('  STEP 1: INCIDENT REPORT');
+      lines.push(`    For each distinct bug fixed, create: ${incidentDir}/YYYY-MM-DD-<slug>.md`);
+      lines.push('    Include: Date, Severity, Symptoms, Root Cause, Fix, Files Changed, Prevention Rules');
+      lines.push('');
+    }
+
+    if (autoLearn?.pipeline?.requirePreventionRule !== false) {
+      lines.push('  STEP 2: PREVENTION RULE');
+      lines.push(`    For each incident, create: ${memoryDir}/feedback_<rule_name>.md`);
+      lines.push('    Include frontmatter (name, description, type: feedback) + Why + How to apply');
+      lines.push(`    Update ${config.autoLearning?.memoryIndexFile ?? 'MEMORY.md'} index`);
+      lines.push('');
+    }
+
+    if (autoLearn?.pipeline?.requireEnforcement !== false) {
+      lines.push('  STEP 3: ENFORCEMENT PLACEMENT');
+      lines.push('    For each new rule, determine enforcement layer(s):');
+      lines.push('    a) If statically detectable → add to pattern-feedback hook');
+      lines.push('    b) If about editing certain files → add to blast-radius hook');
+      lines.push('    c) If about dangerous commands → add to dangerous-command hook');
+      lines.push('    d) If critical → add to pre-commit hook');
+      lines.push('    e) If needs runtime monitoring → create monitoring producer');
+      lines.push('');
+    }
+
+    lines.push('  STEP 4: VERIFY');
+    lines.push('    Test any new enforcement hooks to confirm they detect violations.');
+    lines.push('');
+    lines.push('============================================================================');
+    lines.push('');
+
+    console.log(lines.join('\n'));
+
+    // Clean up flag file
+    cleanup(flagPath);
+  } catch {
+    // Best-effort: never block Claude Code
+  }
+  process.exit(0);
+}
+
+function cleanup(flagPath: string): void {
+  try {
+    if (existsSync(flagPath)) unlinkSync(flagPath);
+    // Clean up old flag files (>24h)
+    const dir = join(tmpdir(), 'massu-auto-learning');
+    if (existsSync(dir)) {
+      const now = Date.now();
+      for (const file of readdirSync(dir)) {
+        const fullPath = join(dir, file);
+        try {
+          const stat = require('fs').statSync(fullPath);
+          if (now - stat.mtimeMs > 86400000) {
+            unlinkSync(fullPath);
+          }
+        } catch { /* ignore */ }
+      }
+    }
+  } catch { /* best effort */ }
+}
+
+function readStdin(): Promise<string> {
+  return new Promise((resolve) => {
+    let data = '';
+    process.stdin.setEncoding('utf-8');
+    process.stdin.on('data', (chunk: string) => { data += chunk; });
+    process.stdin.on('end', () => resolve(data));
+    setTimeout(() => resolve(data), 5000);
+  });
+}
+
+main();