@miller-tech/uap 1.33.0 → 1.34.0

package/dist/delivery/integrity.js

@@ -0,0 +1,120 @@
+/**
+ * Gate Integrity Guard — runtime tamper detection for protected files
+ *
+ * The applier's protectedFiles filter only constrains what the MODEL writes
+ * through file blocks. Gate execution runs project code — including test
+ * files the model just created — and that code can `writeFileSync` over a
+ * protected spec or helper at runtime, defeating the static filter.
+ *
+ * This guard snapshots the bytes of every protected file after the baseline
+ * run, then re-verifies after each gate run: any mutated protected file is
+ * restored from the snapshot and the run's gate result is discarded as a
+ * GATE INTEGRITY VIOLATION, with feedback telling the model exactly why.
+ * Protected paths that did not exist at snapshot time ("reserved" oracle
+ * paths) are restored to absence — a runtime-fabricated golden is removed.
+ */
+import { createHash } from 'crypto';
+import { existsSync, mkdirSync, readFileSync, rmSync, writeFileSync } from 'fs';
+import { dirname, resolve } from 'path';
+/** Per-file restoration budget; larger files are hash-verified only. */
+const MAX_RESTORE_BYTES = 1_000_000;
+/** Total bytes of restoration content kept in memory. */
+const MAX_TOTAL_RESTORE_BYTES = 32_000_000;
+function sha256(buf) {
+    return createHash('sha256').update(buf).digest('hex');
+}
+/**
+ * Capture the on-disk state of every protected file (original-case relative
+ * paths). Absent paths are recorded as reserved. Fail-soft per file.
+ */
+export function captureIntegrity(projectRoot, files) {
+    const root = resolve(projectRoot);
+    const snapshot = new Map();
+    let totalBytes = 0;
+    for (const rel of files) {
+        const abs = resolve(root, rel);
+        try {
+            if (!existsSync(abs)) {
+                snapshot.set(rel, { hash: null, content: null });
+                continue;
+            }
+            const bytes = readFileSync(abs);
+            const keep = bytes.length <= MAX_RESTORE_BYTES && totalBytes + bytes.length <= MAX_TOTAL_RESTORE_BYTES;
+            if (keep)
+                totalBytes += bytes.length;
+            snapshot.set(rel, { hash: sha256(bytes), content: keep ? bytes : null });
+        }
+        catch {
+            // Unreadable — skip; the applier-level protection still applies.
+        }
+    }
+    return snapshot;
+}
+/**
+ * Verify every captured file against its snapshot; restore what changed.
+ * Returns what was tampered with so the caller can discard gate results.
+ */
+export function verifyAndRestore(projectRoot, snapshot) {
+    const root = resolve(projectRoot);
+    const check = { tampered: [], restored: [], unrecoverable: [] };
+    for (const [rel, record] of snapshot) {
+        const abs = resolve(root, rel);
+        try {
+            const existsNow = existsSync(abs);
+            if (record.hash === null) {
+                // Reserved path: must stay absent. A runtime-fabricated oracle is removed.
+                if (existsNow) {
+                    check.tampered.push(rel);
+                    rmSync(abs, { force: true });
+                    check.restored.push(rel);
+                }
+                continue;
+            }
+            if (!existsNow) {
+                check.tampered.push(rel);
+                if (record.content) {
+                    mkdirSync(dirname(abs), { recursive: true });
+                    writeFileSync(abs, record.content);
+                    check.restored.push(rel);
+                }
+                else {
+                    check.unrecoverable.push(rel);
+                }
+                continue;
+            }
+            const bytes = readFileSync(abs);
+            if (sha256(bytes) !== record.hash) {
+                check.tampered.push(rel);
+                if (record.content) {
+                    writeFileSync(abs, record.content);
+                    check.restored.push(rel);
+                }
+                else {
+                    check.unrecoverable.push(rel);
+                }
+            }
+        }
+        catch {
+            check.unrecoverable.push(rel);
+            if (!check.tampered.includes(rel))
+                check.tampered.push(rel);
+        }
+    }
+    return check;
+}
+/** Render the violation feedback prepended to discarded gate results. */
+export function integrityViolationFeedback(check) {
+    const lines = [
+        `GATE INTEGRITY VIOLATION: test execution modified protected file(s): ${check.tampered.join(', ')}.`,
+        'Gate results for this turn are DISCARDED. Protected test/oracle files must never be written —',
+        'not via file blocks and not at runtime from test code. Implement the source instead.',
+    ];
+    if (check.unrecoverable.length > 0) {
+        lines.push(`Could not restore: ${check.unrecoverable.join(', ')} — manual attention needed.`);
+    }
+    else {
+        lines.push('All modified files were restored to their original state.');
+    }
+    return lines.join('\n');
+}
+//# sourceMappingURL=integrity.js.map

package/dist/delivery/integrity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"integrity.js","sourceRoot":"","sources":["../../src/delivery/integrity.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AACpC,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,MAAM,EAAE,aAAa,EAAE,MAAM,IAAI,CAAC;AAChF,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAExC,wEAAwE;AACxE,MAAM,iBAAiB,GAAG,SAAS,CAAC;AACpC,yDAAyD;AACzD,MAAM,uBAAuB,GAAG,UAAU,CAAC;AAoB3C,SAAS,MAAM,CAAC,GAAW;IACzB,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AACxD,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,WAAmB,EAAE,KAAe;IACnE,MAAM,IAAI,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;IAClC,MAAM,QAAQ,GAAsB,IAAI,GAAG,EAAE,CAAC;IAC9C,IAAI,UAAU,GAAG,CAAC,CAAC;IAEnB,KAAK,MAAM,GAAG,IAAI,KAAK,EAAE,CAAC;QACxB,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QAC/B,IAAI,CAAC;YACH,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;gBACrB,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;gBACjD,SAAS;YACX,CAAC;YACD,MAAM,KAAK,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;YAChC,MAAM,IAAI,GAAG,KAAK,CAAC,MAAM,IAAI,iBAAiB,IAAI,UAAU,GAAG,KAAK,CAAC,MAAM,IAAI,uBAAuB,CAAC;YACvG,IAAI,IAAI;gBAAE,UAAU,IAAI,KAAK,CAAC,MAAM,CAAC;YACrC,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAC3E,CAAC;QAAC,MAAM,CAAC;YACP,iEAAiE;QACnE,CAAC;IACH,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,WAAmB,EAAE,QAA2B;IAC/E,MAAM,IAAI,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;IAClC,MAAM,KAAK,GAAmB,EAAE,QAAQ,EAAE,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,aAAa,EAAE,EAAE,EAAE,CAAC;IAEhF,KAAK,MAAM,CAAC,GAAG,EAAE,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACrC,MAAM,GAAG,GAAG,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QAC/B,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,CAAC,CAAC;YAElC,IAAI,MAAM,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;gBACzB,2EAA2E;gBAC3E,IAAI,SAAS,EAAE,CAAC;oBACd,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBACzB,MAAM,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;oBAC7B,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAC3B,CAAC;gBACD,SAAS;YACX,CAAC;YAED,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBACzB,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;oBACnB,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;oBAC7C,aAAa,CAAC,GAAG,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;oBACnC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAC3B,CAAC;qBAAM,CAAC;oBACN,KAAK,CAAC,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAChC,CAAC;gBACD,SAAS;YACX,CAAC;YAED,MAAM,KAAK,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;YAChC,IAAI,MAAM,CAAC,KAAK,CAAC,KAAK,MAAM,CAAC,IAAI,EAAE,CAAC;gBAClC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBACzB,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;oBACnB,aAAa,CAAC,GAAG,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;oBACnC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAC3B,CAAC;qBAAM,CAAC;oBACN,KAAK,CAAC,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAChC,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,KAAK,CAAC,aAAa,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC9B,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC;gBAAE,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,yEAAyE;AACzE,MAAM,UAAU,0BAA0B,CAAC,KAAqB;IAC9D,MAAM,KAAK,GAAG;QACZ,wEAAwE,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG;QACpG,+FAA+F;QAC/F,sFAAsF;KACvF,CAAC;IACF,IAAI,KAAK,CAAC,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnC,KAAK,CAAC,IAAI,CAAC,sBAAsB,KAAK,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC;IAChG,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC;IAC1E,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/dist/delivery/spec-imports.d.ts

@@ -0,0 +1,54 @@
+/**
+ * Spec Transitive-Import Protection
+ *
+ * A protected spec is only as trustworthy as its oracle material: helpers
+ * that build expectations, fixtures/data files holding expected output, and
+ * mocks shaping the environment. If those live OUTSIDE test directories the
+ * applier's test-file protection misses them, and a model can satisfy the
+ * spec by rewriting what it asserts against.
+ *
+ * This module walks each spec's import graph and protects what specs import
+ * as oracle material:
+ *
+ *  - relative imports resolving into fixture/helper/mock-conventional
+ *    locations (directory segments or basename markers)
+ *  - data files (.json/.yaml/.txt/.csv/.snap/…) — referenced via imports OR
+ *    quoted string literals (readFileSync paths), since a data file imported
+ *    by a spec is expected-output material, never the unit under test
+ *  - the transitive imports of anything protected above (helper chains)
+ *
+ * Deliberately NOT protected: plain code the spec imports (../src/duration)
+ * — that is the unit under test, the very thing the model must write.
+ * Distinguishing "helper" from "implementation" beyond naming conventions is
+ * undecidable here; the conventional set keeps brownfield delivery possible
+ * while closing the fixture/helper channel. All analysis is fail-soft.
+ */
+export interface ProtectionSnapshot {
+    /** Lower-cased relative paths for the applier membership check */
+    protectedFiles: Set<string>;
+    /** Original-case paths for prompts/diagnostics */
+    display: string[];
+}
+/** True when `rel` ('/'-separated) is oracle material by location or name. */
+export declare function isOraclePath(rel: string): boolean;
+/**
+ * Resolve a relative import specifier the way bundlers/loaders do:
+ * exact file, TS-style .js→.ts swap, appended extensions, directory index.
+ * Returns EVERY existing root-relative candidate ('/'-separated) — this is
+ * protection, not module resolution, so when both x.js and x.ts exist we
+ * protect both rather than guess which one the runner loads.
+ */
+export declare function resolveRelativeImport(fromFileAbs: string, specifier: string, projectRootAbs: string): string[];
+/**
+ * Expand a set of spec files (original-case, root-relative) to the oracle
+ * material they transitively reference. Returns original-case paths,
+ * EXCLUDING the seeds themselves. Bounded and fail-soft.
+ */
+export declare function expandSpecImports(projectRoot: string, specFiles: string[]): string[];
+/**
+ * Full gate-integrity snapshot: pre-existing test files plus the oracle
+ * material their import graphs reference. The membership set is lower-cased
+ * (case-insensitive matching); `display` keeps original casing for prompts.
+ */
+export declare function snapshotProtection(projectRoot: string): ProtectionSnapshot;
+//# sourceMappingURL=spec-imports.d.ts.map

package/dist/delivery/spec-imports.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"spec-imports.d.ts","sourceRoot":"","sources":["../../src/delivery/spec-imports.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAsDH,MAAM,WAAW,kBAAkB;IACjC,kEAAkE;IAClE,cAAc,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IAC5B,kDAAkD;IAClD,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,8EAA8E;AAC9E,wBAAgB,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAOjD;AAUD;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CACnC,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,MAAM,EACjB,cAAc,EAAE,MAAM,GACrB,MAAM,EAAE,CAqBV;AAyCD;;;;GAIG;AACH,wBAAgB,iBAAiB,CAAC,WAAW,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE,CAmDpF;AAED;;;;GAIG;AACH,wBAAgB,kBAAkB,CAAC,WAAW,EAAE,MAAM,GAAG,kBAAkB,CAkB1E"}

package/dist/delivery/spec-imports.js

@@ -0,0 +1,243 @@
+/**
+ * Spec Transitive-Import Protection
+ *
+ * A protected spec is only as trustworthy as its oracle material: helpers
+ * that build expectations, fixtures/data files holding expected output, and
+ * mocks shaping the environment. If those live OUTSIDE test directories the
+ * applier's test-file protection misses them, and a model can satisfy the
+ * spec by rewriting what it asserts against.
+ *
+ * This module walks each spec's import graph and protects what specs import
+ * as oracle material:
+ *
+ *  - relative imports resolving into fixture/helper/mock-conventional
+ *    locations (directory segments or basename markers)
+ *  - data files (.json/.yaml/.txt/.csv/.snap/…) — referenced via imports OR
+ *    quoted string literals (readFileSync paths), since a data file imported
+ *    by a spec is expected-output material, never the unit under test
+ *  - the transitive imports of anything protected above (helper chains)
+ *
+ * Deliberately NOT protected: plain code the spec imports (../src/duration)
+ * — that is the unit under test, the very thing the model must write.
+ * Distinguishing "helper" from "implementation" beyond naming conventions is
+ * undecidable here; the conventional set keeps brownfield delivery possible
+ * while closing the fixture/helper channel. All analysis is fail-soft.
+ */
+import { readFileSync, statSync } from 'fs';
+import { dirname, isAbsolute, relative, resolve, sep } from 'path';
+import { isTestFilePath, listTestFiles } from './applier.js';
+/** Directory names whose contents are oracle material when a spec imports them. */
+const ORACLE_DIR_SEGMENTS = new Set([
+    'fixtures',
+    'fixture',
+    '__fixtures__',
+    'helpers',
+    'helper',
+    'mocks',
+    'mock',
+    '__mocks__',
+    'stubs',
+    'stub',
+    'testdata',
+    'test-data',
+    'test-utils',
+    'testutils',
+    '__snapshots__',
+    'snapshots',
+    'golden',
+    'goldens',
+]);
+/** Basename markers for oracle files outside conventional directories.
+ * `setup`/`matchers` cover runner bootstrap files (vitest.setup.ts,
+ * custom-matcher modules) that shape what "passing" means. */
+const ORACLE_BASENAME_RE = /\.(fixture|fixtures|mock|mocks|stub|stubs|helper|helpers|setup|matchers?)\.[^.]+$/;
+const DATA_EXTS = 'json|jsonc|json5|ya?ml|txt|csv|tsv|xml|html|snap|golden';
+/** Data extensions: imported/referenced by a spec ⇒ expected-output material. */
+const DATA_EXT_RE = new RegExp(`\\.(${DATA_EXTS})$`, 'i');
+/** import/export-from/dynamic-import/require/side-effect-import specifiers.
+ * Matches inside comments/strings too — over-protection only, accepted.
+ * The clause length cap bounds regex cost on minified/pathological lines. */
+const IMPORT_RE = /(?:import|export)\s[^'"`;]{0,2048}?from\s*['"]([^'"]+)['"]|import\s*\(\s*['"]([^'"]+)['"]\s*\)|require\s*\(\s*['"]([^'"]+)['"]\s*\)|import\s+['"]([^'"]+)['"]/g;
+/** Quoted relative-ish paths with data extensions (readFileSync etc.). */
+const DATA_LITERAL_RE = new RegExp(`['"]([^'"\\n]{1,300}?\\.(?:${DATA_EXTS}))['"]`, 'gi');
+const CODE_EXTS = ['.ts', '.tsx', '.mts', '.cts', '.js', '.jsx', '.mjs', '.cjs'];
+const MAX_SPEC_BYTES = 2_000_000;
+const MAX_GRAPH_FILES = 500;
+const MAX_GRAPH_DEPTH = 8;
+const MAX_GRAPH_BYTES = 20_000_000;
+/** True when `rel` ('/'-separated) is oracle material by location or name. */
+export function isOraclePath(rel) {
+    const segments = rel.split('/');
+    const base = segments[segments.length - 1].toLowerCase();
+    if (base === 'conftest.py')
+        return true;
+    if (segments.slice(0, -1).some((s) => ORACLE_DIR_SEGMENTS.has(s.toLowerCase())))
+        return true;
+    if (ORACLE_BASENAME_RE.test(base))
+        return true;
+    return DATA_EXT_RE.test(base);
+}
+function isFile(abs) {
+    try {
+        return statSync(abs).isFile();
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Resolve a relative import specifier the way bundlers/loaders do:
+ * exact file, TS-style .js→.ts swap, appended extensions, directory index.
+ * Returns EVERY existing root-relative candidate ('/'-separated) — this is
+ * protection, not module resolution, so when both x.js and x.ts exist we
+ * protect both rather than guess which one the runner loads.
+ */
+export function resolveRelativeImport(fromFileAbs, specifier, projectRootAbs) {
+    if (!specifier.startsWith('./') && !specifier.startsWith('../'))
+        return [];
+    const base = resolve(dirname(fromFileAbs), specifier);
+    const candidates = [base];
+    // TS sources import emitted-name './x.js' while the file on disk is x.ts
+    const jsSwap = base.match(/^(.*)\.([mc]?)js$/);
+    if (jsSwap) {
+        candidates.push(`${jsSwap[1]}.${jsSwap[2]}ts`, `${jsSwap[1]}.tsx`);
+    }
+    for (const ext of CODE_EXTS)
+        candidates.push(base + ext);
+    for (const ext of CODE_EXTS)
+        candidates.push(resolve(base, `index${ext}`));
+    const found = [];
+    for (const candidate of candidates) {
+        if (!isFile(candidate))
+            continue;
+        const rel = relative(projectRootAbs, candidate);
+        if (rel === '..' || rel.startsWith(`..${sep}`) || isAbsolute(rel))
+            continue;
+        found.push(rel.split(sep).join('/'));
+    }
+    return found;
+}
+function extractImportSpecifiers(source) {
+    const specs = [];
+    for (const match of source.matchAll(IMPORT_RE)) {
+        const spec = match[1] ?? match[2] ?? match[3] ?? match[4];
+        if (spec)
+            specs.push(spec);
+    }
+    return specs;
+}
+/**
+ * Quoted data-file references (readFileSync paths), resolved against BOTH
+ * the spec's dir and the root — runtimes read relative to cwd, authors write
+ * relative to the spec, and protecting both is fail-safe. A literal under an
+ * oracle-conventional directory is protected even when the file does NOT yet
+ * exist ("reserved"): otherwise a spec reading a missing goldens/output.json
+ * invites the model to fabricate the golden instead of the implementation.
+ */
+function extractDataLiterals(source, fromFileAbs, rootAbs) {
+    const found = [];
+    for (const match of source.matchAll(DATA_LITERAL_RE)) {
+        const literal = match[1];
+        if (literal.includes('://') || literal.startsWith('/'))
+            continue;
+        for (const baseDir of [dirname(fromFileAbs), rootAbs]) {
+            const abs = resolve(baseDir, literal);
+            const rel = relative(rootAbs, abs);
+            if (rel === '..' || rel.startsWith(`..${sep}`) || isAbsolute(rel))
+                continue;
+            const relPosix = rel.split(sep).join('/');
+            const segments = relPosix.split('/');
+            const inOracleDir = segments
+                .slice(0, -1)
+                .some((seg) => ORACLE_DIR_SEGMENTS.has(seg.toLowerCase()));
+            if (isFile(abs) || inOracleDir) {
+                found.push(relPosix);
+            }
+        }
+    }
+    return found;
+}
+/**
+ * Expand a set of spec files (original-case, root-relative) to the oracle
+ * material they transitively reference. Returns original-case paths,
+ * EXCLUDING the seeds themselves. Bounded and fail-soft.
+ */
+export function expandSpecImports(projectRoot, specFiles) {
+    const rootAbs = resolve(projectRoot);
+    const protectedExtra = new Set();
+    const visited = new Set();
+    let bytesRead = 0;
+    // Queue entries: [relPath, depth] — we recurse through specs and oracle
+    // files, never through plain implementation code.
+    const queue = specFiles.map((f) => [f, 0]);
+    while (queue.length > 0 && visited.size < MAX_GRAPH_FILES && bytesRead < MAX_GRAPH_BYTES) {
+        const [rel, depth] = queue.shift();
+        if (depth > MAX_GRAPH_DEPTH || visited.has(rel))
+            continue;
+        visited.add(rel);
+        // Data files are protected as leaves, never scanned: their contents are
+        // arbitrary data, and code regexes over fixture JSON manufacture
+        // second-order false positives.
+        if (DATA_EXT_RE.test(rel))
+            continue;
+        const abs = resolve(rootAbs, rel);
+        let source;
+        try {
+            const st = statSync(abs);
+            if (!st.isFile() || st.size > MAX_SPEC_BYTES)
+                continue;
+            bytesRead += st.size;
+            source = readFileSync(abs, 'utf-8');
+        }
+        catch {
+            continue;
+        }
+        const referenced = new Set();
+        for (const spec of extractImportSpecifiers(source)) {
+            for (const resolved of resolveRelativeImport(abs, spec, rootAbs)) {
+                referenced.add(resolved);
+            }
+        }
+        for (const dataRel of extractDataLiterals(source, abs, rootAbs)) {
+            referenced.add(dataRel);
+        }
+        for (const ref of referenced) {
+            if (!isOraclePath(ref) && !isTestFilePath(ref))
+                continue; // unit under test stays writable
+            // Added unconditionally: a test-path ref may live where the directory
+            // walk cannot see it (hidden dir, skipped segment, beyond depth), so
+            // relying on listTestFiles to have found it would leave a gap.
+            protectedExtra.add(ref);
+            // Helper chains: a protected file's own oracle imports are protected
+            queue.push([ref, depth + 1]);
+        }
+    }
+    return [...protectedExtra];
+}
+/**
+ * Full gate-integrity snapshot: pre-existing test files plus the oracle
+ * material their import graphs reference. The membership set is lower-cased
+ * (case-insensitive matching); `display` keeps original casing for prompts.
+ */
+export function snapshotProtection(projectRoot) {
+    let tests = [];
+    try {
+        tests = listTestFiles(projectRoot);
+    }
+    catch {
+        tests = [];
+    }
+    let extra = [];
+    try {
+        extra = expandSpecImports(projectRoot, tests);
+    }
+    catch {
+        extra = [];
+    }
+    const display = [...new Set([...tests, ...extra])].sort();
+    return {
+        protectedFiles: new Set(display.map((f) => f.toLowerCase())),
+        display,
+    };
+}
+//# sourceMappingURL=spec-imports.js.map

package/dist/delivery/spec-imports.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"spec-imports.js","sourceRoot":"","sources":["../../src/delivery/spec-imports.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AAEH,OAAO,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AAC5C,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,OAAO,EAAE,GAAG,EAAE,MAAM,MAAM,CAAC;AACnE,OAAO,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAE7D,mFAAmF;AACnF,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,UAAU;IACV,SAAS;IACT,cAAc;IACd,SAAS;IACT,QAAQ;IACR,OAAO;IACP,MAAM;IACN,WAAW;IACX,OAAO;IACP,MAAM;IACN,UAAU;IACV,WAAW;IACX,YAAY;IACZ,WAAW;IACX,eAAe;IACf,WAAW;IACX,QAAQ;IACR,SAAS;CACV,CAAC,CAAC;AAEH;;8DAE8D;AAC9D,MAAM,kBAAkB,GACtB,mFAAmF,CAAC;AAEtF,MAAM,SAAS,GAAG,yDAAyD,CAAC;AAE5E,iFAAiF;AACjF,MAAM,WAAW,GAAG,IAAI,MAAM,CAAC,OAAO,SAAS,IAAI,EAAE,GAAG,CAAC,CAAC;AAE1D;;6EAE6E;AAC7E,MAAM,SAAS,GACb,gKAAgK,CAAC;AAEnK,0EAA0E;AAC1E,MAAM,eAAe,GAAG,IAAI,MAAM,CAAC,8BAA8B,SAAS,QAAQ,EAAE,IAAI,CAAC,CAAC;AAE1F,MAAM,SAAS,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC;AACjF,MAAM,cAAc,GAAG,SAAS,CAAC;AACjC,MAAM,eAAe,GAAG,GAAG,CAAC;AAC5B,MAAM,eAAe,GAAG,CAAC,CAAC;AAC1B,MAAM,eAAe,GAAG,UAAU,CAAC;AASnC,8EAA8E;AAC9E,MAAM,UAAU,YAAY,CAAC,GAAW;IACtC,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAChC,MAAM,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC;IACzD,IAAI,IAAI,KAAK,aAAa;QAAE,OAAO,IAAI,CAAC;IACxC,IAAI,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;QAAE,OAAO,IAAI,CAAC;IAC7F,IAAI,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IAC/C,OAAO,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAChC,CAAC;AAED,SAAS,MAAM,CAAC,GAAW;IACzB,IAAI,CAAC;QACH,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,qBAAqB,CACnC,WAAmB,EACnB,SAAiB,EACjB,cAAsB;IAEtB,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAC3E,MAAM,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,SAAS,CAAC,CAAC;IAEtD,MAAM,UAAU,GAAa,CAAC,IAAI,CAAC,CAAC;IACpC,yEAAyE;IACzE,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;IAC/C,IAAI,MAAM,EAAE,CAAC;QACX,UAAU,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,CAAC,IAAI,EAAE,GAAG,MAAM,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC;IACrE,CAAC;IACD,KAAK,MAAM,GAAG,IAAI,SAAS;QAAE,UAAU,CAAC,IAAI,CAAC,IAAI,GAAG,GAAG,CAAC,CAAC;IACzD,KAAK,MAAM,GAAG,IAAI,SAAS;QAAE,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,GAAG,EAAE,CAAC,CAAC,CAAC;IAE3E,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;QACnC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC;YAAE,SAAS;QACjC,MAAM,GAAG,GAAG,QAAQ,CAAC,cAAc,EAAE,SAAS,CAAC,CAAC;QAChD,IAAI,GAAG,KAAK,IAAI,IAAI,GAAG,CAAC,UAAU,CAAC,KAAK,GAAG,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAC5E,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;IACvC,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,uBAAuB,CAAC,MAAc;IAC7C,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;QAC/C,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC;QAC1D,IAAI,IAAI;YAAE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC7B,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,mBAAmB,CAAC,MAAc,EAAE,WAAmB,EAAE,OAAe;IAC/E,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;QACrD,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,IAAI,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QACjE,KAAK,MAAM,OAAO,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,OAAO,CAAC,EAAE,CAAC;YACtD,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YACtC,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;YACnC,IAAI,GAAG,KAAK,IAAI,IAAI,GAAG,CAAC,UAAU,CAAC,KAAK,GAAG,EAAE,CAAC,IAAI,UAAU,CAAC,GAAG,CAAC;gBAAE,SAAS;YAC5E,MAAM,QAAQ,GAAG,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC1C,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YACrC,MAAM,WAAW,GAAG,QAAQ;iBACzB,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;iBACZ,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;YAC7D,IAAI,MAAM,CAAC,GAAG,CAAC,IAAI,WAAW,EAAE,CAAC;gBAC/B,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACvB,CAAC;QACH,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,iBAAiB,CAAC,WAAmB,EAAE,SAAmB;IACxE,MAAM,OAAO,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;IACrC,MAAM,cAAc,GAAG,IAAI,GAAG,EAAU,CAAC;IACzC,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;IAClC,IAAI,SAAS,GAAG,CAAC,CAAC;IAClB,wEAAwE;IACxE,kDAAkD;IAClD,MAAM,KAAK,GAA4B,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAEpE,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,IAAI,OAAO,CAAC,IAAI,GAAG,eAAe,IAAI,SAAS,GAAG,eAAe,EAAE,CAAC;QACzF,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,GAAG,KAAK,CAAC,KAAK,EAAsB,CAAC;QACvD,IAAI,KAAK,GAAG,eAAe,IAAI,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,SAAS;QAC1D,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACjB,wEAAwE;QACxE,iEAAiE;QACjE,gCAAgC;QAChC,IAAI,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,SAAS;QAEpC,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;QAClC,IAAI,MAAc,CAAC;QACnB,IAAI,CAAC;YACH,MAAM,EAAE,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC;YACzB,IAAI,CAAC,EAAE,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,IAAI,GAAG,cAAc;gBAAE,SAAS;YACvD,SAAS,IAAI,EAAE,CAAC,IAAI,CAAC;YACrB,MAAM,GAAG,YAAY,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;QACtC,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QAED,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;QACrC,KAAK,MAAM,IAAI,IAAI,uBAAuB,CAAC,MAAM,CAAC,EAAE,CAAC;YACnD,KAAK,MAAM,QAAQ,IAAI,qBAAqB,CAAC,GAAG,EAAE,IAAI,EAAE,OAAO,CAAC,EAAE,CAAC;gBACjE,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAC3B,CAAC;QACH,CAAC;QACD,KAAK,MAAM,OAAO,IAAI,mBAAmB,CAAC,MAAM,EAAE,GAAG,EAAE,OAAO,CAAC,EAAE,CAAC;YAChE,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC1B,CAAC;QAED,KAAK,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;YAC7B,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC;gBAAE,SAAS,CAAC,iCAAiC;YAC3F,sEAAsE;YACtE,qEAAqE;YACrE,+DAA+D;YAC/D,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACxB,qEAAqE;YACrE,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC;QAC/B,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,cAAc,CAAC,CAAC;AAC7B,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,kBAAkB,CAAC,WAAmB;IACpD,IAAI,KAAK,GAAa,EAAE,CAAC;IACzB,IAAI,CAAC;QACH,KAAK,GAAG,aAAa,CAAC,WAAW,CAAC,CAAC;IACrC,CAAC;IAAC,MAAM,CAAC;QACP,KAAK,GAAG,EAAE,CAAC;IACb,CAAC;IACD,IAAI,KAAK,GAAa,EAAE,CAAC;IACzB,IAAI,CAAC;QACH,KAAK,GAAG,iBAAiB,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC;IAChD,CAAC;IAAC,MAAM,CAAC;QACP,KAAK,GAAG,EAAE,CAAC;IACb,CAAC;IACD,MAAM,OAAO,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,KAAK,EAAE,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC1D,OAAO;QACL,cAAc,EAAE,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC;QAC5D,OAAO;KACR,CAAC;AACJ,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@miller-tech/uap",
-  "version": "1.33.0",
+  "version": "1.34.0",
   "description": "Autonomous AI agent memory system with CLAUDE.md protocol enforcement",
   "type": "module",
   "main": "dist/index.js",