@massu/core 0.9.2 → 1.0.0

package/dist/hooks/session-start.js

@@ -21,7 +21,8 @@ var DomainConfigSchema = z.object({
 });
 var PatternRuleConfigSchema = z.object({
   pattern: z.string().default("**"),
-  rules: z.array(z.string()).default([])
+  rules: z.array(z.string()).default([]),
+  language: z.string().optional()
 });
 var CostModelSchema = z.object({
   input_per_million: z.number(),
@@ -233,17 +234,59 @@ var PathsConfigSchema = z.object({
   components: z.string().optional(),
   hooks: z.string().optional()
 });
+var LanguageFrameworkEntrySchema = z.object({
+  framework: z.string().optional(),
+  test_framework: z.string().optional(),
+  test: z.string().optional(),
+  runtime: z.string().optional(),
+  orm: z.string().optional(),
+  router: z.string().optional(),
+  ui: z.string().optional()
+}).passthrough();
+var FrameworkConfigSchema = z.object({
+  type: z.string().default("typescript"),
+  primary: z.string().optional(),
+  router: z.string().default("none"),
+  orm: z.string().default("none"),
+  ui: z.string().default("none"),
+  languages: z.record(z.string(), LanguageFrameworkEntrySchema).optional()
+}).passthrough();
+var VerificationEntrySchema = z.object({
+  type: z.string().optional(),
+  test: z.string().optional(),
+  syntax: z.string().optional(),
+  lint: z.string().optional(),
+  build: z.string().optional()
+}).passthrough();
+var VerificationConfigSchema = z.record(z.string(), VerificationEntrySchema).optional();
+var CanonicalPathsSchema = z.record(z.string(), z.string()).optional();
+var VerificationTypesSchema = z.record(z.string(), z.string()).optional();
+var DetectionRuleEntrySchema = z.object({
+  signals: z.array(z.string()).default([]),
+  priority: z.number().optional()
+}).passthrough();
+var DetectionConfigSchema = z.object({
+  rules: z.record(
+    z.string(),
+    // language
+    z.record(z.string(), DetectionRuleEntrySchema)
+    // framework -> rule entry
+  ).optional(),
+  signal_weights: z.record(z.string(), z.number()).optional(),
+  disable_builtin: z.boolean().optional()
+}).passthrough().optional();
 var RawConfigSchema = z.object({
+  schema_version: z.union([z.literal(1), z.literal(2)]).default(1),
   project: z.object({
     name: z.string().default("my-project"),
     root: z.string().default("auto")
   }).default({ name: "my-project", root: "auto" }),
-  framework: z.object({
-    type: z.string().default("typescript"),
-    router: z.string().default("none"),
-    orm: z.string().default("none"),
-    ui: z.string().default("none")
-  }).default({ type: "typescript", router: "none", orm: "none", ui: "none" }),
+  framework: FrameworkConfigSchema.default({
+    type: "typescript",
+    router: "none",
+    orm: "none",
+    ui: "none"
+  }),
   paths: PathsConfigSchema.default({ source: "src", aliases: { "@": "src" } }),
   toolPrefix: z.string().default("massu"),
   dbAccessPattern: z.string().optional(),
@@ -258,8 +301,13 @@ var RawConfigSchema = z.object({
   regression: RegressionConfigSchema,
   cloud: CloudConfigSchema,
   conventions: ConventionsConfigSchema,
+  autoLearning: AutoLearningConfigSchema,
   python: PythonConfigSchema,
-  autoLearning: AutoLearningConfigSchema
+  // P2-004 / P2-005 / P2-006 / P2-008: v2 extensions (all optional)
+  verification: VerificationConfigSchema,
+  canonical_paths: CanonicalPathsSchema,
+  verification_types: VerificationTypesSchema,
+  detection: DetectionConfigSchema
 }).passthrough();
 var _config = null;
 var _projectRoot = null;
@@ -303,14 +351,47 @@ function getConfig() {
     const content = readFileSync(configPath, "utf-8");
     rawYaml = parseYaml(content) ?? {};
   }
-  const parsed = RawConfigSchema.parse(rawYaml);
+  const result = RawConfigSchema.safeParse(rawYaml);
+  if (!result.success) {
+    const issues = result.error.issues.map((i) => {
+      const path = i.path.length > 0 ? i.path.join(".") : "(root)";
+      const received = "received" in i && i.received !== void 0 ? ` (received ${JSON.stringify(i.received)})` : "";
+      return `  - ${path}: ${i.message}${received}`;
+    }).join("\n");
+    throw new Error(
+      `Invalid massu.config.yaml at ${configPath}:
+${issues}
+Hint: run \`massu config refresh\` to regenerate a valid config or fix the listed fields manually.`
+    );
+  }
+  const parsed = result.data;
   const projectRoot = parsed.project.root === "auto" || !parsed.project.root ? root : resolve(root, parsed.project.root);
+  const fw = parsed.framework;
+  let router = fw.router;
+  let orm = fw.orm;
+  let ui = fw.ui;
+  if (fw.type === "multi" && fw.primary && fw.languages) {
+    const primaryEntry = fw.languages[fw.primary];
+    if (primaryEntry) {
+      if (router === "none" && primaryEntry.router) router = primaryEntry.router;
+      if (orm === "none" && primaryEntry.orm) orm = primaryEntry.orm;
+      if (ui === "none" && primaryEntry.ui) ui = primaryEntry.ui;
+    }
+  }
   _config = {
+    schema_version: parsed.schema_version,
     project: {
       name: parsed.project.name,
       root: projectRoot
     },
-    framework: parsed.framework,
+    framework: {
+      type: fw.type,
+      router,
+      orm,
+      ui,
+      primary: fw.primary,
+      languages: fw.languages
+    },
     paths: parsed.paths,
     toolPrefix: parsed.toolPrefix,
     dbAccessPattern: parsed.dbAccessPattern,
@@ -325,7 +406,12 @@ function getConfig() {
     regression: parsed.regression,
     cloud: parsed.cloud,
     conventions: parsed.conventions,
-    python: parsed.python
+    autoLearning: parsed.autoLearning,
+    python: parsed.python,
+    verification: parsed.verification,
+    canonical_paths: parsed.canonical_paths,
+    verification_types: parsed.verification_types,
+    detection: parsed.detection
   };
   if (!_config.cloud?.apiKey && process.env.MASSU_API_KEY) {
     _config.cloud = {
@@ -986,7 +1072,7 @@ async function main() {
         process.stdout.write(
           `=== MASSU AI: Active ===
 Session memory, code intelligence, and governance are now active.
-15 hooks monitoring this session. Type "${getConfig().toolPrefix ?? "massu"}_sync" to index your codebase.
+11 hooks monitoring this session. Type "${getConfig().toolPrefix ?? "massu"}_sync" to index your codebase.
 === END MASSU ===
 
 `

package/dist/hooks/user-prompt.js

@@ -21,7 +21,8 @@ var DomainConfigSchema = z.object({
 });
 var PatternRuleConfigSchema = z.object({
   pattern: z.string().default("**"),
-  rules: z.array(z.string()).default([])
+  rules: z.array(z.string()).default([]),
+  language: z.string().optional()
 });
 var CostModelSchema = z.object({
   input_per_million: z.number(),
@@ -233,17 +234,59 @@ var PathsConfigSchema = z.object({
   components: z.string().optional(),
   hooks: z.string().optional()
 });
+var LanguageFrameworkEntrySchema = z.object({
+  framework: z.string().optional(),
+  test_framework: z.string().optional(),
+  test: z.string().optional(),
+  runtime: z.string().optional(),
+  orm: z.string().optional(),
+  router: z.string().optional(),
+  ui: z.string().optional()
+}).passthrough();
+var FrameworkConfigSchema = z.object({
+  type: z.string().default("typescript"),
+  primary: z.string().optional(),
+  router: z.string().default("none"),
+  orm: z.string().default("none"),
+  ui: z.string().default("none"),
+  languages: z.record(z.string(), LanguageFrameworkEntrySchema).optional()
+}).passthrough();
+var VerificationEntrySchema = z.object({
+  type: z.string().optional(),
+  test: z.string().optional(),
+  syntax: z.string().optional(),
+  lint: z.string().optional(),
+  build: z.string().optional()
+}).passthrough();
+var VerificationConfigSchema = z.record(z.string(), VerificationEntrySchema).optional();
+var CanonicalPathsSchema = z.record(z.string(), z.string()).optional();
+var VerificationTypesSchema = z.record(z.string(), z.string()).optional();
+var DetectionRuleEntrySchema = z.object({
+  signals: z.array(z.string()).default([]),
+  priority: z.number().optional()
+}).passthrough();
+var DetectionConfigSchema = z.object({
+  rules: z.record(
+    z.string(),
+    // language
+    z.record(z.string(), DetectionRuleEntrySchema)
+    // framework -> rule entry
+  ).optional(),
+  signal_weights: z.record(z.string(), z.number()).optional(),
+  disable_builtin: z.boolean().optional()
+}).passthrough().optional();
 var RawConfigSchema = z.object({
+  schema_version: z.union([z.literal(1), z.literal(2)]).default(1),
   project: z.object({
     name: z.string().default("my-project"),
     root: z.string().default("auto")
   }).default({ name: "my-project", root: "auto" }),
-  framework: z.object({
-    type: z.string().default("typescript"),
-    router: z.string().default("none"),
-    orm: z.string().default("none"),
-    ui: z.string().default("none")
-  }).default({ type: "typescript", router: "none", orm: "none", ui: "none" }),
+  framework: FrameworkConfigSchema.default({
+    type: "typescript",
+    router: "none",
+    orm: "none",
+    ui: "none"
+  }),
   paths: PathsConfigSchema.default({ source: "src", aliases: { "@": "src" } }),
   toolPrefix: z.string().default("massu"),
   dbAccessPattern: z.string().optional(),
@@ -258,8 +301,13 @@ var RawConfigSchema = z.object({
   regression: RegressionConfigSchema,
   cloud: CloudConfigSchema,
   conventions: ConventionsConfigSchema,
+  autoLearning: AutoLearningConfigSchema,
   python: PythonConfigSchema,
-  autoLearning: AutoLearningConfigSchema
+  // P2-004 / P2-005 / P2-006 / P2-008: v2 extensions (all optional)
+  verification: VerificationConfigSchema,
+  canonical_paths: CanonicalPathsSchema,
+  verification_types: VerificationTypesSchema,
+  detection: DetectionConfigSchema
 }).passthrough();
 var _config = null;
 var _projectRoot = null;
@@ -303,14 +351,47 @@ function getConfig() {
     const content = readFileSync(configPath, "utf-8");
     rawYaml = parseYaml(content) ?? {};
   }
-  const parsed = RawConfigSchema.parse(rawYaml);
+  const result = RawConfigSchema.safeParse(rawYaml);
+  if (!result.success) {
+    const issues = result.error.issues.map((i) => {
+      const path = i.path.length > 0 ? i.path.join(".") : "(root)";
+      const received = "received" in i && i.received !== void 0 ? ` (received ${JSON.stringify(i.received)})` : "";
+      return `  - ${path}: ${i.message}${received}`;
+    }).join("\n");
+    throw new Error(
+      `Invalid massu.config.yaml at ${configPath}:
+${issues}
+Hint: run \`massu config refresh\` to regenerate a valid config or fix the listed fields manually.`
+    );
+  }
+  const parsed = result.data;
   const projectRoot = parsed.project.root === "auto" || !parsed.project.root ? root : resolve(root, parsed.project.root);
+  const fw = parsed.framework;
+  let router = fw.router;
+  let orm = fw.orm;
+  let ui = fw.ui;
+  if (fw.type === "multi" && fw.primary && fw.languages) {
+    const primaryEntry = fw.languages[fw.primary];
+    if (primaryEntry) {
+      if (router === "none" && primaryEntry.router) router = primaryEntry.router;
+      if (orm === "none" && primaryEntry.orm) orm = primaryEntry.orm;
+      if (ui === "none" && primaryEntry.ui) ui = primaryEntry.ui;
+    }
+  }
   _config = {
+    schema_version: parsed.schema_version,
     project: {
       name: parsed.project.name,
       root: projectRoot
     },
-    framework: parsed.framework,
+    framework: {
+      type: fw.type,
+      router,
+      orm,
+      ui,
+      primary: fw.primary,
+      languages: fw.languages
+    },
     paths: parsed.paths,
     toolPrefix: parsed.toolPrefix,
     dbAccessPattern: parsed.dbAccessPattern,
@@ -325,7 +406,12 @@ function getConfig() {
     regression: parsed.regression,
     cloud: parsed.cloud,
     conventions: parsed.conventions,
-    python: parsed.python
+    autoLearning: parsed.autoLearning,
+    python: parsed.python,
+    verification: parsed.verification,
+    canonical_paths: parsed.canonical_paths,
+    verification_types: parsed.verification_types,
+    detection: parsed.detection
   };
   if (!_config.cloud?.apiKey && process.env.MASSU_API_KEY) {
     _config.cloud = {
@@ -952,9 +1038,7 @@ function linkSessionToTask(db, sessionId, taskId) {
 }
 
 // src/hooks/user-prompt.ts
-import { existsSync as existsSync3, writeFileSync } from "fs";
-import { tmpdir } from "os";
-import { join } from "path";
+import { existsSync as existsSync3 } from "fs";
 async function main() {
   try {
     const input = await readStdin();
@@ -1027,35 +1111,6 @@ async function main() {
         }
       } catch (_memoryNagErr) {
       }
-      try {
-        const failureKeywords = [
-          "bug",
-          "broken",
-          "crash",
-          "error",
-          "fail",
-          "fix",
-          "wrong",
-          "missing",
-          "undefined",
-          "null",
-          "exception",
-          "stack trace",
-          "regression",
-          "revert",
-          "doesn't work",
-          "not working",
-          "stopped working",
-          "broke"
-        ];
-        const promptLower = prompt.toLowerCase();
-        const matched = failureKeywords.filter((kw) => promptLower.includes(kw));
-        if (matched.length > 0) {
-          const contextFile = join(tmpdir(), `massu-failure-context-${session_id.slice(0, 8)}-${Date.now()}`);
-          writeFileSync(contextFile, matched.join(" "), "utf-8");
-        }
-      } catch {
-      }
     } finally {
       db.close();
     }

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "@massu/core",
-  "version": "0.9.2",
+  "version": "1.0.0",
   "type": "module",
-  "description": "AI Engineering Governance MCP Server - Session memory, knowledge system, feature registry, code intelligence, rule enforcement, auto-learning pipeline, tiered tooling (12 free / 72 total), 55+ workflow commands, 15 agents, 20+ patterns",
+  "description": "AI Engineering Governance MCP Server - Session memory, knowledge system, feature registry, code intelligence, rule enforcement, tiered tooling (12 free / 72 total), 55+ workflow commands, 11 agents, 20+ patterns",
   "main": "src/server.ts",
   "bin": {
     "massu": "./dist/cli.js"
@@ -16,7 +16,10 @@
     "prepublishOnly": "bash ../../scripts/prepublish-check.sh && npm run build"
   },
   "dependencies": {
+    "@clack/prompts": "^0.9.1",
     "better-sqlite3": "^12.6.2",
+    "fast-glob": "^3.3.0",
+    "smol-toml": "^1.3.0",
     "yaml": "^2.4.0",
     "zod": "^3.23.0"
   },
@@ -29,13 +32,20 @@
   },
   "files": [
     "src/**/*",
-    "!src/__tests__/**",
+    "!src/**/__tests__/**",
+    "!src/**/*.test.ts",
+    "!src/**/*.spec.ts",
+    "!**/.build/**",
+    "!**/.swiftpm/**",
+    "!**/node_modules/**",
+    "!**/__pycache__/**",
     "dist/**/*",
     "commands/**/*",
     "agents/**/*",
     "patterns/**/*",
     "protocols/**/*",
     "reference/**/*",
+    "templates/**/*",
     "LICENSE"
   ],
   "keywords": [

package/reference/hook-execution-order.md

@@ -52,9 +52,9 @@ Security blocking -> advisory warnings -> matcher-specific -> observability.
 
 ---
 
-## PostToolUse (14 hooks)
+## PostToolUse (11 hooks)
 
-Security scan -> immediate feedback -> context tracking -> fix detection -> incident capture -> pipeline triggers -> memory sync -> observability.
+Security scan -> immediate feedback -> context tracking -> incident capture -> memory sync -> observability.
 
 | position: 1 | CI monitor | standard | Bash(git push) -- immediate push feedback |
 |---|---|---|---|
@@ -62,23 +62,17 @@ Security scan -> immediate feedback -> context tracking -> fix detection -> inci
 | position: 3 | `pattern-feedback.sh` | standard | Edit\|Write -- immediate pattern violation feedback |
 | position: 4 | `post-edit-context.js` | strict | Edit\|Write -- detailed semantic analysis |
 | position: 5 | `post-tool-use.js` | standard | Edit\|Write\|Bash -- structured context tracking |
-| position: 6 | `fix-detector.js` | standard | Edit\|Write -- detect bug fixes via git diff heuristics |
-| position: 7 | `auto-ingest-incident.sh` | strict | Edit\|Write -- auto-capture incident patterns |
-| position: 8 | `incident-pipeline.js` | standard | Write -- trigger rule derivation on incident report writes |
-| position: 9 | `rule-enforcement-pipeline.js` | standard | Write -- trigger enforcement on prevention rule writes |
-| position: 10 | `memory-auto-ingest.sh` | standard | Write -- auto-sync memory files to codegraph SQLite DB |
-| position: 11 | `validate-deliverables.sh` | strict | Bash\|Edit\|Write -- deliverable validation |
-| position: 12 | `pattern-scanner.sh --single-file` | strict | Edit\|Write -- per-file pattern scan |
-| position: 13 | `mcp-usage-tracker.sh` | strict | MCP tools -- append-only MCP audit log |
-| position: 14 | `compaction-advisor.sh` | standard | Bash\|Edit\|Write\|Read\|Grep\|Glob -- context tracking, widest matcher |
+| position: 6 | `auto-ingest-incident.sh` | strict | Edit\|Write -- auto-capture incident patterns |
+| position: 7 | `memory-auto-ingest.sh` | standard | Write -- auto-sync memory files to codegraph SQLite DB |
+| position: 8 | `validate-deliverables.sh` | strict | Bash\|Edit\|Write -- deliverable validation |
+| position: 9 | `pattern-scanner.sh --single-file` | strict | Edit\|Write -- per-file pattern scan |
+| position: 10 | `mcp-usage-tracker.sh` | strict | MCP tools -- append-only MCP audit log |
+| position: 11 | `compaction-advisor.sh` | standard | Bash\|Edit\|Write\|Read\|Grep\|Glob -- context tracking, widest matcher |
 
 **Dependencies**:
 - `output-secret-filter.sh` MUST run before any feedback hooks -- security first
 - `pattern-feedback.sh` before `post-tool-use.js` -- immediate feedback before tracking
-- `fix-detector.js` after `post-tool-use.js` -- needs structured tracking context
-- `incident-pipeline.js` after `auto-ingest-incident.sh` -- incident must be captured first
-- `rule-enforcement-pipeline.js` after `incident-pipeline.js` -- rule derivation before enforcement
-- `memory-auto-ingest.sh` runs after pipeline hooks -- memory sync is data-writing, before validation
+- `memory-auto-ingest.sh` runs after incident capture -- memory sync is data-writing, before validation
 - `compaction-advisor.sh` MUST be last -- widest matcher, just counts tool calls
 
 ---
@@ -111,23 +105,21 @@ Quick state capture -> full DB snapshot.
 
 ---
 
-## Stop (8 hooks)
+## Stop (7 hooks)
 
-Session summary -> auto-learning check -> warnings -> memory extraction -> review -> validation.
+Session summary -> warnings -> memory extraction -> review -> validation.
 
 | position: 1 | `session-end.js` | standard | Write session summary to memory DB |
 |---|---|---|---|
-| position: 2 | `auto-learning-pipeline.js` | standard | Enforce fix→incident→rule→enforcement pipeline completion |
-| position: 3 | Uncommitted changes warning | standard (inline) | Alert user about unstaged work |
-| position: 4 | `memory-auto-extract.sh` | standard | Auto-extract memories from DB observations |
-| position: 5 | `auto-review-on-stop.sh` | strict | Automated code review of session changes |
-| position: 6 | `surface-review-findings.sh` | strict | Display review findings to user |
-| position: 7 | `validate-deliverables.sh` | strict | Final deliverable validation |
-| position: 8 | `pattern-extractor.sh` | advisory | Extract new patterns from session |
+| position: 2 | Uncommitted changes warning | standard (inline) | Alert user about unstaged work |
+| position: 3 | `memory-auto-extract.sh` | standard | Auto-extract memories from DB observations |
+| position: 4 | `auto-review-on-stop.sh` | strict | Automated code review of session changes |
+| position: 5 | `surface-review-findings.sh` | strict | Display review findings to user |
+| position: 6 | `validate-deliverables.sh` | strict | Final deliverable validation |
+| position: 7 | `pattern-extractor.sh` | advisory | Extract new patterns from session |
 
 **Dependencies**:
 - `session-end.js` MUST be position 1 -- writes DB data that `memory-auto-extract.sh` reads
-- `auto-learning-pipeline.js` MUST run early -- needs to output mandatory instructions before session ends
 - `memory-auto-extract.sh` MUST come after `session-end.js` -- depends on DB observations
 - `surface-review-findings.sh` MUST come after `auto-review-on-stop.sh` -- displays its output
 - `pattern-extractor.sh` runs last -- advisory tier (skipped in minimal/standard profiles)

package/src/cli.ts

@@ -89,7 +89,8 @@ Options:
   --version, -v     Show version
 
 Getting started:
-  npx massu init    # Full setup in one command
+  npx massu init              # Full setup in one command
+  npx massu init --help       # Show all init options (--ci, --force, --template)
 
 Documentation: https://massu.ai/docs
 `);

package/src/commands/doctor.ts

@@ -8,14 +8,13 @@
  * 1. massu.config.yaml exists and parses correctly
  * 2. .mcp.json has massu entry
  * 3. .claude/settings.local.json has hooks config
- * 4. All 15 compiled hook files exist
+ * 4. All 11 compiled hook files exist
  * 5. Knowledge DB exists (.massu/memory.db)
  * 6. Memory directory exists (~/.claude/projects/.../memory/)
  * 7. Shell hooks wired in settings.local.json
  * 8. better-sqlite3 native module loads
  * 9. Node.js version >= 18
  * 10. Git repository detected
- * 11. CLAUDE.md exists with content
  */
 
 import { existsSync, readFileSync, readdirSync } from 'fs';
@@ -374,32 +373,6 @@ function checkPythonHealth(projectRoot: string): CheckResult | null {
   };
 }
 
-function checkClaudeMd(projectRoot: string): CheckResult {
-  const claudeMdPath = resolve(projectRoot, 'CLAUDE.md');
-  if (!existsSync(claudeMdPath)) {
-    return {
-      name: 'CLAUDE.md',
-      status: 'warn',
-      detail: 'CLAUDE.md not found. Run: npx massu init (or create manually)',
-    };
-  }
-
-  const content = readFileSync(claudeMdPath, 'utf-8');
-  if (content.trim().length < 50) {
-    return {
-      name: 'CLAUDE.md',
-      status: 'warn',
-      detail: 'CLAUDE.md exists but appears empty or minimal',
-    };
-  }
-
-  return {
-    name: 'CLAUDE.md',
-    status: 'pass',
-    detail: 'CLAUDE.md found and has content',
-  };
-}
-
 // ============================================================
 // Main Doctor Flow
 // ============================================================
@@ -424,7 +397,6 @@ export async function runDoctor(): Promise<void> {
     checkNodeVersion(),
     await checkGitRepo(projectRoot),
     await checkLicenseStatus(),
-    checkClaudeMd(projectRoot),
   ];
 
   // Add Python health check if configured