@mneme-ai/xray 2.150.0

package/dist/bin.js

@@ -0,0 +1,76 @@
+#!/usr/bin/env node
+/**
+ * mneme-xray — run an X-Ray from the terminal.
+ *   mneme-xray <path|https-git-url> [--json] [--no-sign]
+ *   mneme-xray <path> --publish [--server URL] [--token KEY]
+ *
+ * --publish is THE BRIDGE for private repos: analyse locally, then send ONLY
+ * the signed, raw-free report to a Lighthouse server (source never leaves).
+ * Server/token may also come from env XRAY_SERVER / XRAY_TOKEN.
+ */
+import { buildXRay } from "./engine.js";
+import { sealXRay, verifyXRay } from "./sign.js";
+import { xrayLeaksRaw } from "./privacy.js";
+import { publishReport } from "./publish.js";
+import { existsSync } from "node:fs";
+function flagVal(args, name) {
+    const i = args.indexOf(name);
+    return i >= 0 && args[i + 1] && !args[i + 1].startsWith("--") ? args[i + 1] : undefined;
+}
+async function main() {
+    const args = process.argv.slice(2);
+    const target = args.find((a) => !a.startsWith("--") && a !== flagVal(args, "--server") && a !== flagVal(args, "--token"));
+    const asJson = args.includes("--json");
+    const noSign = args.includes("--no-sign");
+    const doPublish = args.includes("--publish");
+    const server = flagVal(args, "--server") || process.env.XRAY_SERVER || "";
+    const token = flagVal(args, "--token") || process.env.XRAY_TOKEN || "";
+    if (!target) {
+        process.stderr.write("usage: mneme-xray <path|https-git-url> [--json] [--no-sign] [--publish --server URL --token KEY]\n");
+        process.exit(2);
+    }
+    const isUrl = /^https:\/\//.test(target);
+    const report = await buildXRay(isUrl ? { gitUrl: target } : { repoPath: target });
+    // privacy gate — never emit a report that leaks raw source
+    const leak = xrayLeaksRaw(report);
+    if (leak.leaks) {
+        process.stderr.write(`✗ refusing to emit: report failed raw-free check (${leak.reasons.join("; ")})\n`);
+        process.exit(1);
+    }
+    const repoRootForKey = isUrl ? process.cwd() : (existsSync(target) ? target : process.cwd());
+    const signed = (noSign && !doPublish) ? { report, receipt: null } : sealXRay(repoRootForKey, report);
+    if (doPublish) {
+        if (!server || !token) {
+            process.stderr.write("✗ --publish needs --server URL and --token KEY (or env XRAY_SERVER / XRAY_TOKEN)\n");
+            process.exit(2);
+        }
+        const pr = await publishReport(server, token, signed);
+        if (!pr.ok) {
+            process.stderr.write(`✗ publish failed: ${pr.error}\n`);
+            process.exit(1);
+        }
+        process.stdout.write(`✓ published ${report.subject.repoName} → ${server}\n  profile ${pr.profileId}  ·  fingerprint ${pr.fingerprint?.slice(0, 24)}…\n  (source never left this machine — only the signed, raw-free report was sent)\n`);
+        return;
+    }
+    if (asJson) {
+        process.stdout.write(JSON.stringify(signed, null, 2) + "\n");
+        return;
+    }
+    const r = report;
+    const line = "─".repeat(58);
+    process.stdout.write(`\n  REPO X-RAY · ${r.subject.repoName} @ ${r.subject.commitHash.slice(0, 12)}\n  ${line}\n`);
+    process.stdout.write(`  GRADE ${r.summary.grade}   ${r.summary.headline}\n  ${line}\n`);
+    for (const b of r.summary.bullets)
+        process.stdout.write(`  ${b}\n`);
+    process.stdout.write(`  ${line}\n  fingerprint ${r.fingerprint.slice(0, 24)}…\n`);
+    if (!noSign) {
+        const v = verifyXRay(signed);
+        process.stdout.write(`  signed: ${v.valid ? "✓ Ed25519 receipt verifies offline" : "✗ " + v.reason}\n`);
+    }
+    process.stdout.write("\n");
+}
+main().catch((e) => {
+    process.stderr.write(`✗ x-ray failed: ${e.message}\n`);
+    process.exit(1);
+});
+//# sourceMappingURL=bin.js.map

package/dist/bin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bin.js","sourceRoot":"","sources":["../src/bin.ts"],"names":[],"mappings":";AACA;;;;;;;;GAQG;AACH,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAErC,SAAS,OAAO,CAAC,IAAc,EAAE,IAAY;IAC3C,MAAM,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IAC7B,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;AAC1F,CAAC;AAED,KAAK,UAAU,IAAI;IACjB,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACnC,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,IAAI,EAAE,UAAU,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC,CAAC;IAC1H,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAC1C,MAAM,SAAS,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IAC7C,MAAM,MAAM,GAAG,OAAO,CAAC,IAAI,EAAE,UAAU,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,WAAW,IAAI,EAAE,CAAC;IAC1E,MAAM,KAAK,GAAG,OAAO,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,IAAI,EAAE,CAAC;IACvE,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oGAAoG,CAAC,CAAC;QAC3H,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,KAAK,GAAG,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACzC,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,CAAC,CAAC;IAElF,2DAA2D;IAC3D,MAAM,IAAI,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IAClC,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,qDAAqD,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACxG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,cAAc,GAAG,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IAC7F,MAAM,MAAM,GAAG,CAAC,MAAM,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;IAErG,IAAI,SAAS,EAAE,CAAC;QACd,IAAI,CAAC,MAAM,IAAI,CAAC,KAAK,EAAE,CAAC;YACtB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oFAAoF,CAAC,CAAC;YAC3G,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;QACtD,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;YAAC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE,CAAC,KAAK,IAAI,CAAC,CAAC;YAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAAC,CAAC;QACzF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,eAAe,MAAM,CAAC,OAAO,CAAC,QAAQ,MAAM,MAAM,eAAe,EAAE,CAAC,SAAS,oBAAoB,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,qFAAqF,CAAC,CAAC;QACzO,OAAO;IACT,CAAC;IAED,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;QAC7D,OAAO;IACT,CAAC;IAED,MAAM,CAAC,GAAG,MAAM,CAAC;IACjB,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IAC5B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC,OAAO,CAAC,QAAQ,MAAM,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC;IACnH,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,KAAK,MAAM,CAAC,CAAC,OAAO,CAAC,QAAQ,OAAO,IAAI,IAAI,CAAC,CAAC;IACxF,KAAK,MAAM,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,OAAO;QAAE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACpE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,IAAI,mBAAmB,CAAC,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC;IAClF,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC;QAC7B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,oCAAoC,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC;IAC1G,CAAC;IACD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AAC7B,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,EAAE;IACjB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mBAAoB,CAAW,CAAC,OAAO,IAAI,CAAC,CAAC;IAClE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/clone.d.ts

@@ -0,0 +1,13 @@
+export declare function isAllowedPublicUrl(url: string): boolean;
+export interface CloneHandle {
+    path: string;
+    dispose: () => void;
+}
+/**
+ * Blobless clone: FULL commit history (so age / commit-count / bus-factor are
+ * ACCURATE) but file blobs are fetched lazily — fast, like a shallow clone,
+ * without truncating history. A `--depth N` clone would cap commits at N and
+ * report a wrong "first commit" / age for any active repo; blob:none does not.
+ */
+export declare function shallowClone(url: string): CloneHandle;
+//# sourceMappingURL=clone.d.ts.map

package/dist/clone.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"clone.d.ts","sourceRoot":"","sources":["../src/clone.ts"],"names":[],"mappings":"AAYA,wBAAgB,kBAAkB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAGvD;AAED,MAAM,WAAW,WAAW;IAAG,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,IAAI,CAAA;CAAE;AAElE;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,WAAW,CAgBrD"}

package/dist/clone.js

@@ -0,0 +1,42 @@
+/**
+ * Shallow-clone a PUBLIC git URL to a temp dir for analysis, then delete it.
+ * The clone is read-only and removed in a finally block — nothing persists.
+ * Only public URLs are accepted (no credentials in the URL).
+ */
+import { spawnSync } from "node:child_process";
+import { mkdtempSync, rmSync } from "node:fs";
+import { tmpdir } from "node:os";
+import { join } from "node:path";
+const ALLOWED = /^https:\/\/(github\.com|gitlab\.com|bitbucket\.org)\/[A-Za-z0-9._-]+\/[A-Za-z0-9._-]+(\.git)?\/?$/;
+export function isAllowedPublicUrl(url) {
+    if (/@|:\/\/[^/]*:[^/]*@/.test(url.replace("https://", "")))
+        return false; // reject embedded creds
+    return ALLOWED.test(url.trim());
+}
+/**
+ * Blobless clone: FULL commit history (so age / commit-count / bus-factor are
+ * ACCURATE) but file blobs are fetched lazily — fast, like a shallow clone,
+ * without truncating history. A `--depth N` clone would cap commits at N and
+ * report a wrong "first commit" / age for any active repo; blob:none does not.
+ */
+export function shallowClone(url) {
+    if (!isAllowedPublicUrl(url)) {
+        throw new Error("Only public github.com / gitlab.com / bitbucket.org URLs (no credentials) are accepted.");
+    }
+    const dir = mkdtempSync(join(tmpdir(), "mneme-xray-"));
+    const r = spawnSync("git", ["clone", "--filter=blob:none", "--no-tags", "--single-branch", url.trim(), dir], {
+        encoding: "utf8",
+        timeout: 180_000,
+        maxBuffer: 64 * 1024 * 1024,
+    });
+    const dispose = () => { try {
+        rmSync(dir, { recursive: true, force: true });
+    }
+    catch { /* best-effort */ } };
+    if (r.status !== 0) {
+        dispose();
+        throw new Error(`git clone failed: ${(r.stderr || "unknown error").slice(0, 200)}`);
+    }
+    return { path: dir, dispose };
+}
+//# sourceMappingURL=clone.js.map

package/dist/clone.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"clone.js","sourceRoot":"","sources":["../src/clone.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,OAAO,EAAE,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAC/C,OAAO,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAC9C,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAEjC,MAAM,OAAO,GAAG,mGAAmG,CAAC;AAEpH,MAAM,UAAU,kBAAkB,CAAC,GAAW;IAC5C,IAAI,qBAAqB,CAAC,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC;QAAE,OAAO,KAAK,CAAC,CAAC,wBAAwB;IACnG,OAAO,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC;AAClC,CAAC;AAID;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CAAC,GAAW;IACtC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,yFAAyF,CAAC,CAAC;IAC7G,CAAC;IACD,MAAM,GAAG,GAAG,WAAW,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,aAAa,CAAC,CAAC,CAAC;IACvD,MAAM,CAAC,GAAG,SAAS,CAAC,KAAK,EAAE,CAAC,OAAO,EAAE,oBAAoB,EAAE,WAAW,EAAE,iBAAiB,EAAE,GAAG,CAAC,IAAI,EAAE,EAAE,GAAG,CAAC,EAAE;QAC3G,QAAQ,EAAE,MAAM;QAChB,OAAO,EAAE,OAAO;QAChB,SAAS,EAAE,EAAE,GAAG,IAAI,GAAG,IAAI;KAC5B,CAAC,CAAC;IACH,MAAM,OAAO,GAAG,GAAG,EAAE,GAAG,IAAI,CAAC;QAAC,MAAM,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;IAAC,CAAC;IAAC,MAAM,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAAC;IAC7G,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACnB,OAAO,EAAE,CAAC;QACV,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC,CAAC,MAAM,IAAI,eAAe,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;IACtF,CAAC;IACD,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;AAChC,CAAC"}

package/dist/cosmic.d.ts

@@ -0,0 +1,35 @@
+export interface Sample {
+    ts: number;
+    ok: boolean;
+    latencyMs: number;
+}
+export interface CosmicStatus {
+    url: string;
+    up: boolean;
+    lastCheck: number | null;
+    uptimePct: number;
+    checks: number;
+    p50Ms: number;
+    p95Ms: number;
+    sinceTs: number | null;
+    windowMs: number;
+}
+/** Pure: compute status from a sample set (so the math is unit-testable). */
+export declare function computeStatus(samples: Sample[], url: string, now: number, windowMs: number): CosmicStatus;
+export declare class CosmicMonitor {
+    private readonly url;
+    private readonly file;
+    private samples;
+    private timer;
+    private readonly cap;
+    constructor(url: string, file?: string | null);
+    probe(): Promise<Sample>;
+    start(intervalMs?: number): void;
+    stop(): void;
+    status(windowMs?: number): CosmicStatus;
+}
+export declare function cosmicBadgeSvg(st: CosmicStatus): string;
+/** A signed, offline-verifiable liveness attestation. Anyone can verify with the
+ *  embedded public key that Mneme observed cosmic with this uptime. */
+export declare function signCosmicStatus(repoRoot: string, st: CosmicStatus): unknown;
+//# sourceMappingURL=cosmic.d.ts.map

package/dist/cosmic.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cosmic.d.ts","sourceRoot":"","sources":["../src/cosmic.ts"],"names":[],"mappings":"AAcA,MAAM,WAAW,MAAM;IAAG,EAAE,EAAE,MAAM,CAAC;IAAC,EAAE,EAAE,OAAO,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE;AAEtE,MAAM,WAAW,YAAY;IAC3B,GAAG,EAAE,MAAM,CAAC;IACZ,EAAE,EAAE,OAAO,CAAC;IACZ,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,6EAA6E;AAC7E,wBAAgB,aAAa,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,YAAY,CAkBzG;AAED,qBAAa,aAAa;IAKZ,OAAO,CAAC,QAAQ,CAAC,GAAG;IAAU,OAAO,CAAC,QAAQ,CAAC,IAAI;IAJ/D,OAAO,CAAC,OAAO,CAAgB;IAC/B,OAAO,CAAC,KAAK,CAA+C;IAC5D,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAQ;gBAEC,GAAG,EAAE,MAAM,EAAmB,IAAI,GAAE,MAAM,GAAG,IAAW;IAQ/E,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;IA0B9B,KAAK,CAAC,UAAU,SAAQ,GAAG,IAAI;IAM/B,IAAI,IAAI,IAAI;IAEZ,MAAM,CAAC,QAAQ,SAAsB,GAAG,YAAY;CAGrD;AAaD,wBAAgB,cAAc,CAAC,EAAE,EAAE,YAAY,GAAG,MAAM,CAKvD;AAED;uEACuE;AACvE,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,YAAY,GAAG,OAAO,CAO5E"}

package/dist/cosmic.js

@@ -0,0 +1,122 @@
+/**
+ * COSMIC MONITOR — an ADDITIVE superpower for the existing cosmic-link server.
+ *
+ * The X-Ray server (which we control, isolated on its own port) periodically
+ * pings the cosmic server and turns its liveness into something cosmic never
+ * had: a MEASURED, SIGNED, offline-verifiable uptime record + a public badge +
+ * a status page. We never touch the cosmic process — only observe it over
+ * localhost. This is the "make cosmic cooler without breaking it" move:
+ * capability added from the outside, zero risk to the running service.
+ */
+import { notary } from "@mneme-ai/core";
+import { existsSync, appendFileSync, readFileSync, mkdirSync } from "node:fs";
+import { dirname } from "node:path";
+/** Pure: compute status from a sample set (so the math is unit-testable). */
+export function computeStatus(samples, url, now, windowMs) {
+    const win = samples.filter((s) => now - s.ts <= windowMs);
+    const checks = win.length;
+    const okN = win.filter((s) => s.ok).length;
+    const lats = win.filter((s) => s.ok).map((s) => s.latencyMs).sort((a, b) => a - b);
+    const q = (p) => (lats.length ? lats[Math.min(lats.length - 1, Math.floor(p * lats.length))] : 0);
+    const last = samples.length ? samples[samples.length - 1] : null;
+    return {
+        url,
+        up: last ? last.ok : false,
+        lastCheck: last ? last.ts : null,
+        uptimePct: checks ? Math.round((okN / checks) * 10000) / 100 : 0,
+        checks,
+        p50Ms: q(0.5),
+        p95Ms: q(0.95),
+        sinceTs: win.length ? win[0].ts : null,
+        windowMs,
+    };
+}
+export class CosmicMonitor {
+    url;
+    file;
+    samples = [];
+    timer = null;
+    cap = 5760; // ~24h at 15s
+    constructor(url, file = null) {
+        this.url = url;
+        this.file = file;
+        if (file && existsSync(file)) {
+            try {
+                this.samples = readFileSync(file, "utf8").trim().split("\n").filter(Boolean).slice(-this.cap).map((l) => JSON.parse(l));
+            }
+            catch { /* ignore corrupt history */ }
+        }
+    }
+    async probe() {
+        const t0 = Date.now();
+        let ok = false, latencyMs = 0;
+        try {
+            const ctrl = new AbortController();
+            const to = setTimeout(() => ctrl.abort(), 8000);
+            const res = await fetch(this.url, { signal: ctrl.signal });
+            clearTimeout(to);
+            ok = res.status >= 200 && res.status < 500; // reachable + not a server error
+            latencyMs = Date.now() - t0;
+        }
+        catch {
+            latencyMs = Date.now() - t0;
+            ok = false;
+        }
+        const s = { ts: Date.now(), ok, latencyMs };
+        this.samples.push(s);
+        if (this.samples.length > this.cap)
+            this.samples.shift();
+        if (this.file) {
+            try {
+                if (!existsSync(dirname(this.file)))
+                    mkdirSync(dirname(this.file), { recursive: true });
+                appendFileSync(this.file, JSON.stringify(s) + "\n");
+            }
+            catch { /* best-effort persistence */ }
+        }
+        return s;
+    }
+    start(intervalMs = 15000) {
+        if (this.timer)
+            return;
+        void this.probe();
+        this.timer = setInterval(() => { void this.probe(); }, intervalMs);
+        if (typeof this.timer.unref === "function")
+            this.timer.unref();
+    }
+    stop() { if (this.timer) {
+        clearInterval(this.timer);
+        this.timer = null;
+    } }
+    status(windowMs = 24 * 60 * 60 * 1000) {
+        return computeStatus(this.samples, this.url, Date.now(), windowMs);
+    }
+}
+const C_LABEL = "cosmic link";
+function flatBadge(label, value, color) {
+    const lw = 7 + label.length * 6.2, vw = 12 + value.length * 6.2, w = Math.round(lw + vw), h = 20;
+    const lm = Math.round(lw / 2), vm = Math.round(lw + vw / 2);
+    return `<svg xmlns="http://www.w3.org/2000/svg" width="${w}" height="${h}" role="img" aria-label="${label}: ${value}">
+<clipPath id="r"><rect width="${w}" height="${h}" rx="3" fill="#fff"/></clipPath>
+<g clip-path="url(#r)"><rect width="${Math.round(lw)}" height="${h}" fill="#0a0a0a"/><rect x="${Math.round(lw)}" width="${Math.round(vw)}" height="${h}" fill="${color}"/></g>
+<g fill="#fff" text-anchor="middle" font-family="Verdana,DejaVu Sans,sans-serif" font-size="11">
+<text x="${lm}" y="14">${label}</text><text x="${vm}" y="14" font-weight="bold">${value}</text></g></svg>`;
+}
+export function cosmicBadgeSvg(st) {
+    if (!st.up)
+        return flatBadge(C_LABEL, "down", "#dc2626");
+    const val = st.checks >= 5 ? `up ${st.uptimePct}%` : "up";
+    const color = st.uptimePct >= 99 || st.checks < 5 ? "#16a34a" : st.uptimePct >= 95 ? "#65a30d" : "#d97706";
+    return flatBadge(C_LABEL, val, color);
+}
+/** A signed, offline-verifiable liveness attestation. Anyone can verify with the
+ *  embedded public key that Mneme observed cosmic with this uptime. */
+export function signCosmicStatus(repoRoot, st) {
+    return notary.issueReceipt(repoRoot, {
+        kind: "claim-verdict",
+        subject: `cosmic-liveness:${st.url}`,
+        payload: st,
+        includePayload: true,
+    });
+}
+//# sourceMappingURL=cosmic.js.map

package/dist/cosmic.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cosmic.js","sourceRoot":"","sources":["../src/cosmic.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AACH,OAAO,EAAE,MAAM,EAAE,MAAM,gBAAgB,CAAC;AACxC,OAAO,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AAC9E,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAgBpC,6EAA6E;AAC7E,MAAM,UAAU,aAAa,CAAC,OAAiB,EAAE,GAAW,EAAE,GAAW,EAAE,QAAgB;IACzF,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,EAAE,IAAI,QAAQ,CAAC,CAAC;IAC1D,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC;IAC1B,MAAM,GAAG,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC;IAC3C,MAAM,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IACnF,MAAM,CAAC,GAAG,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IAC1G,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACjE,OAAO;QACL,GAAG;QACH,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK;QAC1B,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI;QAChC,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,GAAG,GAAG,MAAM,CAAC,GAAG,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC;QAChE,MAAM;QACN,KAAK,EAAE,CAAC,CAAC,GAAG,CAAC;QACb,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC;QACd,OAAO,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI;QACtC,QAAQ;KACT,CAAC;AACJ,CAAC;AAED,MAAM,OAAO,aAAa;IAKK;IAA8B;IAJnD,OAAO,GAAa,EAAE,CAAC;IACvB,KAAK,GAA0C,IAAI,CAAC;IAC3C,GAAG,GAAG,IAAI,CAAC,CAAC,cAAc;IAE3C,YAA6B,GAAW,EAAmB,OAAsB,IAAI;QAAxD,QAAG,GAAH,GAAG,CAAQ;QAAmB,SAAI,GAAJ,IAAI,CAAsB;QACnF,IAAI,IAAI,IAAI,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7B,IAAI,CAAC;gBACH,IAAI,CAAC,OAAO,GAAG,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAW,CAAC,CAAC;YACpI,CAAC;YAAC,MAAM,CAAC,CAAC,4BAA4B,CAAC,CAAC;QAC1C,CAAC;IACH,CAAC;IAED,KAAK,CAAC,KAAK;QACT,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACtB,IAAI,EAAE,GAAG,KAAK,EAAE,SAAS,GAAG,CAAC,CAAC;QAC9B,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,IAAI,eAAe,EAAE,CAAC;YACnC,MAAM,EAAE,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,KAAK,EAAE,EAAE,IAAI,CAAC,CAAC;YAChD,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,EAAE,MAAM,EAAE,IAAI,CAAC,MAAM,EAAE,CAAC,CAAC;YAC3D,YAAY,CAAC,EAAE,CAAC,CAAC;YACjB,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,IAAI,GAAG,CAAC,MAAM,GAAG,GAAG,CAAC,CAAC,iCAAiC;YAC7E,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC;QAC9B,CAAC;QAAC,MAAM,CAAC;YACP,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC;YAC5B,EAAE,GAAG,KAAK,CAAC;QACb,CAAC;QACD,MAAM,CAAC,GAAW,EAAE,EAAE,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,EAAE,EAAE,SAAS,EAAE,CAAC;QACpD,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACrB,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG;YAAE,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;QACzD,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YACd,IAAI,CAAC;gBACH,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;oBAAE,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;gBACxF,cAAc,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;YACtD,CAAC;YAAC,MAAM,CAAC,CAAC,6BAA6B,CAAC,CAAC;QAC3C,CAAC;QACD,OAAO,CAAC,CAAC;IACX,CAAC;IAED,KAAK,CAAC,UAAU,GAAG,KAAK;QACtB,IAAI,IAAI,CAAC,KAAK;YAAE,OAAO;QACvB,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC;QAClB,IAAI,CAAC,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,GAAG,KAAK,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;QACnE,IAAI,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,KAAK,UAAU;YAAE,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;IACjE,CAAC;IACD,IAAI,KAAW,IAAI,IAAI,CAAC,KAAK,EAAE,CAAC;QAAC,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAAC,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC;IAAC,CAAC,CAAC,CAAC;IAElF,MAAM,CAAC,QAAQ,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI;QACnC,OAAO,aAAa,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,QAAQ,CAAC,CAAC;IACrE,CAAC;CACF;AAED,MAAM,OAAO,GAAG,aAAa,CAAC;AAC9B,SAAS,SAAS,CAAC,KAAa,EAAE,KAAa,EAAE,KAAa;IAC5D,MAAM,EAAE,GAAG,CAAC,GAAG,KAAK,CAAC,MAAM,GAAG,GAAG,EAAE,EAAE,GAAG,EAAE,GAAG,KAAK,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC,GAAG,EAAE,CAAC;IACjG,MAAM,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC,CAAC,EAAE,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAC;IAC5D,OAAO,kDAAkD,CAAC,aAAa,CAAC,4BAA4B,KAAK,KAAK,KAAK;gCACrF,CAAC,aAAa,CAAC;sCACT,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,aAAa,CAAC,8BAA8B,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,aAAa,CAAC,WAAW,KAAK;;WAE3J,EAAE,YAAY,KAAK,mBAAmB,EAAE,+BAA+B,KAAK,mBAAmB,CAAC;AAC3G,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,EAAgB;IAC7C,IAAI,CAAC,EAAE,CAAC,EAAE;QAAE,OAAO,SAAS,CAAC,OAAO,EAAE,MAAM,EAAE,SAAS,CAAC,CAAC;IACzD,MAAM,GAAG,GAAG,EAAE,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC;IAC1D,MAAM,KAAK,GAAG,EAAE,CAAC,SAAS,IAAI,EAAE,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC;IAC3G,OAAO,SAAS,CAAC,OAAO,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC;AACxC,CAAC;AAED;uEACuE;AACvE,MAAM,UAAU,gBAAgB,CAAC,QAAgB,EAAE,EAAgB;IACjE,OAAO,MAAM,CAAC,YAAY,CAAC,QAAQ,EAAE;QACnC,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,mBAAmB,EAAE,CAAC,GAAG,EAAE;QACpC,OAAO,EAAE,EAAE;QACX,cAAc,EAAE,IAAI;KACrB,CAAC,CAAC;AACL,CAAC"}

package/dist/engine.d.ts

@@ -0,0 +1,8 @@
+import type { XRayReport, XRayInput } from "./types.js";
+import { type MetaFetcher } from "./battery/deps.js";
+export interface BuildOptions extends XRayInput {
+    /** Injectable npm-metadata fetcher (tests). */
+    depFetcher?: MetaFetcher;
+}
+export declare function buildXRay(opts: BuildOptions): Promise<XRayReport>;
+//# sourceMappingURL=engine.d.ts.map

package/dist/engine.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EAAE,UAAU,EAAE,SAAS,EAAsB,MAAM,YAAY,CAAC;AAC5E,OAAO,EAAe,KAAK,WAAW,EAAE,MAAM,mBAAmB,CAAC;AASlE,MAAM,WAAW,YAAa,SAAQ,SAAS;IAC7C,+CAA+C;IAC/C,UAAU,CAAC,EAAE,WAAW,CAAC;CAC1B;AAED,wBAAsB,SAAS,CAAC,IAAI,EAAE,YAAY,GAAG,OAAO,CAAC,UAAU,CAAC,CAiDvE"}

package/dist/engine.js

@@ -0,0 +1,138 @@
+/**
+ * buildXRay — the orchestrator. Runs the deterministic battery against a local
+ * repo path or a shallow-cloned public git URL, composes a graded summary, and
+ * returns a raw-free report. Each signal is fail-safe: if one analyzer cannot
+ * run, the report still returns with that block degraded and `signalsRun` lowered.
+ */
+import { createHash } from "node:crypto";
+import { existsSync } from "node:fs";
+import { analyzeDeps } from "./battery/deps.js";
+import { scanSecrets } from "./battery/secrets.js";
+import { analyzeBusFactor } from "./battery/busfactor.js";
+import { analyzeAge } from "./battery/age.js";
+import { analyzeComplexity } from "./battery/complexity.js";
+import { analyzeHotspots } from "./battery/hotspots.js";
+import { shallowClone } from "./clone.js";
+import { headCommit, repoNameFromUrl, repoNameFromPath } from "./util.js";
+export async function buildXRay(opts) {
+    const now = opts.now ?? Date.now();
+    const maxFiles = opts.maxFiles ?? 4000;
+    let repoPath;
+    let dispose = null;
+    let subject;
+    if (opts.gitUrl) {
+        const h = shallowClone(opts.gitUrl);
+        repoPath = h.path;
+        dispose = h.dispose;
+        subject = { kind: "git-url", ref: opts.gitUrl.trim(), repoName: repoNameFromUrl(opts.gitUrl), commitHash: "" };
+    }
+    else if (opts.repoPath) {
+        if (!existsSync(opts.repoPath))
+            throw new Error(`repoPath does not exist: ${opts.repoPath}`);
+        repoPath = opts.repoPath;
+        subject = { kind: "local-path", ref: "local", repoName: repoNameFromPath(opts.repoPath), commitHash: "" };
+    }
+    else {
+        throw new Error("buildXRay requires either gitUrl or repoPath.");
+    }
+    try {
+        subject.commitHash = headCommit(repoPath);
+        const [deps] = await Promise.all([analyzeDeps(repoPath, now, opts.depFetcher)]);
+        const secrets = scanSecrets(repoPath, maxFiles);
+        const busFactor = analyzeBusFactor(repoPath);
+        const age = analyzeAge(repoPath, now);
+        const complexity = analyzeComplexity(repoPath, maxFiles);
+        const hotspots = analyzeHotspots(repoPath, now);
+        const summary = grade({ deps, secrets, busFactor, age, complexity, hotspots });
+        const blocks = { deps, secrets, busFactor, age, complexity, hotspots };
+        const fingerprint = createHash("sha256")
+            .update(JSON.stringify({ subject: { repoName: subject.repoName, commitHash: subject.commitHash }, blocks }))
+            .digest("hex");
+        return {
+            v: 1,
+            subject,
+            generatedAt: new Date(now).toISOString(),
+            summary,
+            ...blocks,
+            fingerprint,
+        };
+    }
+    finally {
+        if (dispose)
+            dispose();
+    }
+}
+/** Deterministic 0-100 health score → letter grade, with one-line bullets. */
+function grade(b) {
+    let score = 100;
+    const bullets = [];
+    let signalsRun = 0;
+    // secrets — a high-confidence BLOCK (strong leak signal) weighs heavily; mere
+    // pattern matches are a "review" flag with a small, capped penalty, because
+    // regex matching has a real false-positive rate (broad api-key patterns, a
+    // security repo's own sample data). We never auto-fail a repo on pattern noise.
+    if (b.secrets.filesScanned > 0) {
+        signalsRun++;
+        if (b.secrets.worstVerdict === "BLOCK")
+            score -= 35;
+        else if (b.secrets.totalFindings > 0)
+            score -= Math.min(8, b.secrets.totalFindings);
+        const exTail = b.secrets.excludedTestHits > 0 ? ` (+${b.secrets.excludedTestHits} in tests/docs, excluded)` : "";
+        bullets.push(b.secrets.totalFindings === 0
+            ? `🔑 No credential patterns in production code${exTail}.`
+            : `🔑 ${b.secrets.totalFindings} credential-pattern match(es) in production code — review${exTail}.`);
+    }
+    // deps
+    if (b.deps.total > 0) {
+        signalsRun++;
+        const dying = b.deps.byBand.moribund + b.deps.byBand.dead;
+        score -= Math.min(20, dying * 5);
+        bullets.push(dying === 0
+            ? `📦 ${b.deps.total} deps, none dying.`
+            : `💀 ${dying} of ${b.deps.total} deps are dying${b.deps.atRisk[0]?.successor ? ` (e.g. ${b.deps.atRisk[0].name} → ${b.deps.atRisk[0].successor})` : ""}.`);
+    }
+    // bus factor
+    if (b.busFactor.authors > 0) {
+        signalsRun++;
+        if (b.busFactor.busFactor <= 1)
+            score -= 15;
+        if (b.busFactor.singleOwnerFilePct >= 50)
+            score -= 10;
+        bullets.push(b.busFactor.busFactor <= 1
+            ? `🚌 Bus factor 1 — one person holds ${b.busFactor.topContributorShare}% of commits.`
+            : `🚌 Bus factor ${b.busFactor.busFactor}; ${b.busFactor.singleOwnerFilePct}% of files single-owner.`);
+    }
+    // age / vitality
+    if (b.age.totalCommits > 0) {
+        signalsRun++;
+        if (b.age.vitality === "archived")
+            score -= 20;
+        else if (b.age.vitality === "dormant")
+            score -= 15;
+        else if (b.age.vitality === "slowing")
+            score -= 5;
+        bullets.push(`🕰️ ${b.age.vitality} · ${b.age.lifespan} old · ${b.age.totalCommits} commits.`);
+    }
+    // complexity (mild)
+    if (b.complexity.filesAnalysed > 0) {
+        signalsRun++;
+        const huge = b.complexity.hotspots.filter((h) => h.bodyLines >= 150).length;
+        score -= Math.min(10, huge * 2);
+        bullets.push(b.complexity.hotspots[0]
+            ? `🧩 Largest symbol ${b.complexity.hotspots[0].bodyLines} lines (${b.complexity.hotspots[0].file}).`
+            : `🧩 ${b.complexity.totalSymbols} symbols analysed.`);
+    }
+    // hotspots — informational (refactor-ROI guidance, not a risk penalty)
+    if (b.hotspots.hotspots.length > 0) {
+        signalsRun++;
+        const h = b.hotspots.hotspots[0];
+        bullets.push(`🔥 Refactor first: ${h.file} — changed ${h.changes}× · ${h.loc} lines (churn × size).`);
+    }
+    score = Math.max(0, Math.min(100, Math.round(score)));
+    const g = score >= 90 ? "A" : score >= 80 ? "B" : score >= 70 ? "C" : score >= 55 ? "D" : "F";
+    const headline = g === "A" ? "Healthy — strong signals across the board."
+        : g === "F" ? "Critical — multiple high-risk signals."
+            : "Mixed — some signals need attention.";
+    return { headline, grade: g, signalsRun, bullets };
+}
+//# sourceMappingURL=engine.js.map

package/dist/engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../src/engine.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAErC,OAAO,EAAE,WAAW,EAAoB,MAAM,mBAAmB,CAAC;AAClE,OAAO,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AACnD,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC;AAC1D,OAAO,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAC9C,OAAO,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAC5D,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,YAAY,EAAE,MAAM,YAAY,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,eAAe,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAO1E,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,IAAkB;IAChD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC;IACnC,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC;IAEvC,IAAI,QAAgB,CAAC;IACrB,IAAI,OAAO,GAAwB,IAAI,CAAC;IACxC,IAAI,OAA8B,CAAC;IAEnC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;QAChB,MAAM,CAAC,GAAG,YAAY,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACpC,QAAQ,GAAG,CAAC,CAAC,IAAI,CAAC;QAClB,OAAO,GAAG,CAAC,CAAC,OAAO,CAAC;QACpB,OAAO,GAAG,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,EAAE,QAAQ,EAAE,eAAe,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,UAAU,EAAE,EAAE,EAAE,CAAC;IACjH,CAAC;SAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QACzB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,QAAQ,CAAC;YAAE,MAAM,IAAI,KAAK,CAAC,4BAA4B,IAAI,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC7F,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC;QACzB,OAAO,GAAG,EAAE,IAAI,EAAE,YAAY,EAAE,GAAG,EAAE,OAAO,EAAE,QAAQ,EAAE,gBAAgB,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,UAAU,EAAE,EAAE,EAAE,CAAC;IAC5G,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,CAAC;QACH,OAAO,CAAC,UAAU,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC;QAE1C,MAAM,CAAC,IAAI,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,CAAC,WAAW,CAAC,QAAQ,EAAE,GAAG,EAAE,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;QAChF,MAAM,OAAO,GAAG,WAAW,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAChD,MAAM,SAAS,GAAG,gBAAgB,CAAC,QAAQ,CAAC,CAAC;QAC7C,MAAM,GAAG,GAAG,UAAU,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;QACtC,MAAM,UAAU,GAAG,iBAAiB,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,eAAe,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;QAEhD,MAAM,OAAO,GAAG,KAAK,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC,CAAC;QAE/E,MAAM,MAAM,GAAG,EAAE,IAAI,EAAE,OAAO,EAAE,SAAS,EAAE,GAAG,EAAE,UAAU,EAAE,QAAQ,EAAE,CAAC;QACvE,MAAM,WAAW,GAAG,UAAU,CAAC,QAAQ,CAAC;aACrC,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,UAAU,EAAE,OAAO,CAAC,UAAU,EAAE,EAAE,MAAM,EAAE,CAAC,CAAC;aAC3G,MAAM,CAAC,KAAK,CAAC,CAAC;QAEjB,OAAO;YACL,CAAC,EAAE,CAAC;YACJ,OAAO;YACP,WAAW,EAAE,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE;YACxC,OAAO;YACP,GAAG,MAAM;YACT,WAAW;SACZ,CAAC;IACJ,CAAC;YAAS,CAAC;QACT,IAAI,OAAO;YAAE,OAAO,EAAE,CAAC;IACzB,CAAC;AACH,CAAC;AAED,8EAA8E;AAC9E,SAAS,KAAK,CAAC,CAAyF;IACtG,IAAI,KAAK,GAAG,GAAG,CAAC;IAChB,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,IAAI,UAAU,GAAG,CAAC,CAAC;IAEnB,8EAA8E;IAC9E,4EAA4E;IAC5E,2EAA2E;IAC3E,gFAAgF;IAChF,IAAI,CAAC,CAAC,OAAO,CAAC,YAAY,GAAG,CAAC,EAAE,CAAC;QAC/B,UAAU,EAAE,CAAC;QACb,IAAI,CAAC,CAAC,OAAO,CAAC,YAAY,KAAK,OAAO;YAAE,KAAK,IAAI,EAAE,CAAC;aAC/C,IAAI,CAAC,CAAC,OAAO,CAAC,aAAa,GAAG,CAAC;YAAE,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QACpF,MAAM,MAAM,GAAG,CAAC,CAAC,OAAO,CAAC,gBAAgB,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,gBAAgB,2BAA2B,CAAC,CAAC,CAAC,EAAE,CAAC;QACjH,OAAO,CAAC,IAAI,CACV,CAAC,CAAC,OAAO,CAAC,aAAa,KAAK,CAAC;YAC3B,CAAC,CAAC,+CAA+C,MAAM,GAAG;YAC1D,CAAC,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,aAAa,4DAA4D,MAAM,GAAG,CACvG,CAAC;IACJ,CAAC;IAED,OAAO;IACP,IAAI,CAAC,CAAC,IAAI,CAAC,KAAK,GAAG,CAAC,EAAE,CAAC;QACrB,UAAU,EAAE,CAAC;QACb,MAAM,KAAK,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC;QAC1D,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC;QACjC,OAAO,CAAC,IAAI,CACV,KAAK,KAAK,CAAC;YACT,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,KAAK,oBAAoB;YACxC,CAAC,CAAC,MAAM,KAAK,OAAO,CAAC,CAAC,IAAI,CAAC,KAAK,kBAAkB,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,GAAG,CAAC,CAAC,CAAC,EAAE,GAAG,CAC7J,CAAC;IACJ,CAAC;IAED,aAAa;IACb,IAAI,CAAC,CAAC,SAAS,CAAC,OAAO,GAAG,CAAC,EAAE,CAAC;QAC5B,UAAU,EAAE,CAAC;QACb,IAAI,CAAC,CAAC,SAAS,CAAC,SAAS,IAAI,CAAC;YAAE,KAAK,IAAI,EAAE,CAAC;QAC5C,IAAI,CAAC,CAAC,SAAS,CAAC,kBAAkB,IAAI,EAAE;YAAE,KAAK,IAAI,EAAE,CAAC;QACtD,OAAO,CAAC,IAAI,CACV,CAAC,CAAC,SAAS,CAAC,SAAS,IAAI,CAAC;YACxB,CAAC,CAAC,sCAAsC,CAAC,CAAC,SAAS,CAAC,mBAAmB,eAAe;YACtF,CAAC,CAAC,iBAAiB,CAAC,CAAC,SAAS,CAAC,SAAS,KAAK,CAAC,CAAC,SAAS,CAAC,kBAAkB,0BAA0B,CACxG,CAAC;IACJ,CAAC;IAED,iBAAiB;IACjB,IAAI,CAAC,CAAC,GAAG,CAAC,YAAY,GAAG,CAAC,EAAE,CAAC;QAC3B,UAAU,EAAE,CAAC;QACb,IAAI,CAAC,CAAC,GAAG,CAAC,QAAQ,KAAK,UAAU;YAAE,KAAK,IAAI,EAAE,CAAC;aAC1C,IAAI,CAAC,CAAC,GAAG,CAAC,QAAQ,KAAK,SAAS;YAAE,KAAK,IAAI,EAAE,CAAC;aAC9C,IAAI,CAAC,CAAC,GAAG,CAAC,QAAQ,KAAK,SAAS;YAAE,KAAK,IAAI,CAAC,CAAC;QAClD,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,GAAG,CAAC,QAAQ,MAAM,CAAC,CAAC,GAAG,CAAC,QAAQ,UAAU,CAAC,CAAC,GAAG,CAAC,YAAY,WAAW,CAAC,CAAC;IACjG,CAAC;IAED,oBAAoB;IACpB,IAAI,CAAC,CAAC,UAAU,CAAC,aAAa,GAAG,CAAC,EAAE,CAAC;QACnC,UAAU,EAAE,CAAC;QACb,MAAM,IAAI,GAAG,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC;QAC5E,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,GAAG,CAAC,CAAC,CAAC;QAChC,OAAO,CAAC,IAAI,CACV,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC;YACtB,CAAC,CAAC,qBAAqB,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,SAAS,WAAW,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,IAAI;YACrG,CAAC,CAAC,MAAM,CAAC,CAAC,UAAU,CAAC,YAAY,oBAAoB,CACxD,CAAC;IACJ,CAAC;IAED,uEAAuE;IACvE,IAAI,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACnC,UAAU,EAAE,CAAC;QACb,MAAM,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QACjC,OAAO,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC,IAAI,cAAc,CAAC,CAAC,OAAO,OAAO,CAAC,CAAC,GAAG,wBAAwB,CAAC,CAAC;IACxG,CAAC;IAED,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACtD,MAAM,CAAC,GAAU,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;IACrG,MAAM,QAAQ,GACZ,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,4CAA4C;QACxD,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,wCAAwC;YACtD,CAAC,CAAC,sCAAsC,CAAC;IAE3C,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,UAAU,EAAE,OAAO,EAAE,CAAC;AACrD,CAAC"}

package/dist/gauntlet.d.ts

@@ -0,0 +1,9 @@
+export interface XRayGauntlet {
+    cleanReportPasses: boolean;
+    catchesInjectedSource: boolean;
+    allowsStructuralSymbolName: boolean;
+    totalOnGarbage: boolean;
+    score: number;
+}
+export declare function xrayGauntlet(): XRayGauntlet;
+//# sourceMappingURL=gauntlet.d.ts.map

package/dist/gauntlet.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"gauntlet.d.ts","sourceRoot":"","sources":["../src/gauntlet.ts"],"names":[],"mappings":"AASA,MAAM,WAAW,YAAY;IAC3B,iBAAiB,EAAE,OAAO,CAAC;IAC3B,qBAAqB,EAAE,OAAO,CAAC;IAC/B,0BAA0B,EAAE,OAAO,CAAC;IACpC,cAAc,EAAE,OAAO,CAAC;IACxB,KAAK,EAAE,MAAM,CAAC;CACf;AAkBD,wBAAgB,YAAY,IAAI,YAAY,CAyB3C"}

package/dist/gauntlet.js

@@ -0,0 +1,47 @@
+/**
+ * xrayGauntlet — a falsifiable, in-memory proof of the X-Ray invariants that
+ * do not need a live repo: the privacy moat catches injected source, allows
+ * legitimately-structural symbol names, is total on garbage, and a clean
+ * report passes. Score is 0 or 100 (every invariant must hold).
+ */
+import { xrayLeaksRaw } from "./privacy.js";
+function cleanFixture() {
+    return {
+        v: 1,
+        subject: { kind: "git-url", ref: "https://github.com/acme/widget", repoName: "acme/widget", commitHash: "abc123def456" },
+        generatedAt: "2026-01-01T00:00:00.000Z",
+        summary: { headline: "Mixed", grade: "C", signalsRun: 5, bullets: ["🔑 No credential patterns found in tracked files."] },
+        deps: { total: 12, byBand: { thriving: 8, healthy: 2, watch: 1, moribund: 1, dead: 0 }, atRisk: [{ name: "request", band: "dead", probability18mo: 0.9, successor: "got" }], partial: false, note: "1 dying." },
+        secrets: { filesScanned: 40, totalFindings: 0, excludedTestHits: 3, byKind: {}, hits: [], worstVerdict: "ALLOW", note: "clean" },
+        busFactor: { authors: 5, singleOwnerFilePct: 22.5, fragileFiles: [{ file: "src/core.ts", topAuthorShare: 0.9, commits: 30 }], topContributorShare: 41.2, busFactor: 2, note: "5 authors" },
+        age: { bornAt: "2020-01-01", lastCommitAt: "2026-01-01", lifespan: "6 years", lifespanDays: 2192, totalCommits: 1200, totalAuthors: 5, dormant: false, vitality: "active", note: "active" },
+        complexity: { filesAnalysed: 40, totalSymbols: 320, hotspots: [{ file: "src/core.ts", symbol: "function handleRequest(req, res)", bodyLines: 180, startLine: 12 }], maxDepth: 4, note: "hotspot" },
+        hotspots: { windowDays: 365, filesConsidered: 40, hotspots: [{ file: "src/core.ts", changes: 30, loc: 400, score: 12000 }], note: "Hotspot: src/core.ts — changed 30× and 400 lines." },
+        fingerprint: "deadbeef",
+    };
+}
+export function xrayGauntlet() {
+    // 1. a normal metric-only report must pass (the structural signature in
+    //    complexity.hotspots[].symbol must NOT trip the scanner).
+    const clean = cleanFixture();
+    const cleanReportPasses = xrayLeaksRaw(clean).leaks === false;
+    const allowsStructuralSymbolName = cleanReportPasses; // same assertion, named for clarity
+    // 2. inject a real source body into a non-structural field → must be caught.
+    const poisoned = cleanFixture();
+    poisoned.age.note = "function leak(){ const secret = 42; return secret }";
+    const catchesInjectedSource = xrayLeaksRaw(poisoned).leaks === true;
+    // 3. total on garbage (never throws; fail-closed to "leaks").
+    let totalOnGarbage = true;
+    try {
+        const a = xrayLeaksRaw(null);
+        const b = xrayLeaksRaw({ circular: undefined });
+        const c = xrayLeaksRaw(undefined);
+        totalOnGarbage = a.leaks === true && c.leaks === true && typeof b.leaks === "boolean";
+    }
+    catch {
+        totalOnGarbage = false;
+    }
+    const all = cleanReportPasses && catchesInjectedSource && allowsStructuralSymbolName && totalOnGarbage;
+    return { cleanReportPasses, catchesInjectedSource, allowsStructuralSymbolName, totalOnGarbage, score: all ? 100 : 0 };
+}
+//# sourceMappingURL=gauntlet.js.map

package/dist/gauntlet.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"gauntlet.js","sourceRoot":"","sources":["../src/gauntlet.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAW5C,SAAS,YAAY;IACnB,OAAO;QACL,CAAC,EAAE,CAAC;QACJ,OAAO,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,EAAE,gCAAgC,EAAE,QAAQ,EAAE,aAAa,EAAE,UAAU,EAAE,cAAc,EAAE;QACxH,WAAW,EAAE,0BAA0B;QACvC,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,UAAU,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,mDAAmD,CAAC,EAAE;QACzH,IAAI,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,EAAE,QAAQ,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAE,MAAM,EAAE,eAAe,EAAE,GAAG,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,UAAU,EAAE;QAC/M,OAAO,EAAE,EAAE,YAAY,EAAE,EAAE,EAAE,aAAa,EAAE,CAAC,EAAE,gBAAgB,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,YAAY,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE;QAChI,SAAS,EAAE,EAAE,OAAO,EAAE,CAAC,EAAE,kBAAkB,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,cAAc,EAAE,GAAG,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC,EAAE,mBAAmB,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE;QAC1L,GAAG,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,QAAQ,EAAE,SAAS,EAAE,YAAY,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,YAAY,EAAE,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,EAAE,QAAQ,EAAE;QAC3L,UAAU,EAAE,EAAE,aAAa,EAAE,EAAE,EAAE,YAAY,EAAE,GAAG,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,MAAM,EAAE,kCAAkC,EAAE,SAAS,EAAE,GAAG,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE;QAClM,QAAQ,EAAE,EAAE,UAAU,EAAE,GAAG,EAAE,eAAe,EAAE,EAAE,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,OAAO,EAAE,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,mDAAmD,EAAE;QACvL,WAAW,EAAE,UAAU;KACxB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,YAAY;IAC1B,wEAAwE;IACxE,8DAA8D;IAC9D,MAAM,KAAK,GAAG,YAAY,EAAE,CAAC;IAC7B,MAAM,iBAAiB,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC,KAAK,KAAK,KAAK,CAAC;IAC9D,MAAM,0BAA0B,GAAG,iBAAiB,CAAC,CAAC,oCAAoC;IAE1F,6EAA6E;IAC7E,MAAM,QAAQ,GAAG,YAAY,EAAE,CAAC;IAC/B,QAAQ,CAAC,GAAmC,CAAC,IAAI,GAAG,qDAAqD,CAAC;IAC3G,MAAM,qBAAqB,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC,KAAK,KAAK,IAAI,CAAC;IAEpE,8DAA8D;IAC9D,IAAI,cAAc,GAAG,IAAI,CAAC;IAC1B,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;QAC7B,MAAM,CAAC,GAAG,YAAY,CAAC,EAAE,QAAQ,EAAE,SAAS,EAAa,CAAC,CAAC;QAC3D,MAAM,CAAC,GAAG,YAAY,CAAC,SAAS,CAAC,CAAC;QAClC,cAAc,GAAG,CAAC,CAAC,KAAK,KAAK,IAAI,IAAI,CAAC,CAAC,KAAK,KAAK,IAAI,IAAI,OAAO,CAAC,CAAC,KAAK,KAAK,SAAS,CAAC;IACxF,CAAC;IAAC,MAAM,CAAC;QACP,cAAc,GAAG,KAAK,CAAC;IACzB,CAAC;IAED,MAAM,GAAG,GAAG,iBAAiB,IAAI,qBAAqB,IAAI,0BAA0B,IAAI,cAAc,CAAC;IACvG,OAAO,EAAE,iBAAiB,EAAE,qBAAqB,EAAE,0BAA0B,EAAE,cAAc,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;AACxH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,21 @@
+/**
+ * @mneme-ai/xray — a signed, raw-free, deterministic X-Ray of any repo.
+ *
+ * Every number originates from a deterministic @mneme-ai/core analyzer
+ * (git history · AST outline · npm registry metadata · regex/entropy secret
+ * scan). No LLM is consulted, so the same repo at the same commit always
+ * produces the same report. The report is raw-free by construction
+ * (xrayLeaksRaw proves it) and sealed with an offline-verifiable Ed25519
+ * NOTARY receipt, so a third party trusts the ANALYSIS, not the sender.
+ */
+export * from "./types.js";
+export { buildXRay, type BuildOptions } from "./engine.js";
+export { sealXRay, verifyXRay } from "./sign.js";
+export { xrayLeaksRaw, type LeakVerdict } from "./privacy.js";
+export { xrayGauntlet, type XRayGauntlet } from "./gauntlet.js";
+export { isAllowedPublicUrl } from "./clone.js";
+export { defaultFetcher, type MetaFetcher } from "./battery/deps.js";
+export { publishReport, type PublishResult } from "./publish.js";
+export { createXRayServer } from "./server.js";
+export { CosmicMonitor, computeStatus, cosmicBadgeSvg, type CosmicStatus, type Sample } from "./cosmic.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AACH,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,SAAS,EAAE,KAAK,YAAY,EAAE,MAAM,aAAa,CAAC;AAC3D,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACjD,OAAO,EAAE,YAAY,EAAE,KAAK,WAAW,EAAE,MAAM,cAAc,CAAC;AAC9D,OAAO,EAAE,YAAY,EAAE,KAAK,YAAY,EAAE,MAAM,eAAe,CAAC;AAChE,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EAAE,cAAc,EAAE,KAAK,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrE,OAAO,EAAE,aAAa,EAAE,KAAK,aAAa,EAAE,MAAM,cAAc,CAAC;AACjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,cAAc,EAAE,KAAK,YAAY,EAAE,KAAK,MAAM,EAAE,MAAM,aAAa,CAAC"}

package/dist/index.js

@@ -0,0 +1,21 @@
+/**
+ * @mneme-ai/xray — a signed, raw-free, deterministic X-Ray of any repo.
+ *
+ * Every number originates from a deterministic @mneme-ai/core analyzer
+ * (git history · AST outline · npm registry metadata · regex/entropy secret
+ * scan). No LLM is consulted, so the same repo at the same commit always
+ * produces the same report. The report is raw-free by construction
+ * (xrayLeaksRaw proves it) and sealed with an offline-verifiable Ed25519
+ * NOTARY receipt, so a third party trusts the ANALYSIS, not the sender.
+ */
+export * from "./types.js";
+export { buildXRay } from "./engine.js";
+export { sealXRay, verifyXRay } from "./sign.js";
+export { xrayLeaksRaw } from "./privacy.js";
+export { xrayGauntlet } from "./gauntlet.js";
+export { isAllowedPublicUrl } from "./clone.js";
+export { defaultFetcher } from "./battery/deps.js";
+export { publishReport } from "./publish.js";
+export { createXRayServer } from "./server.js";
+export { CosmicMonitor, computeStatus, cosmicBadgeSvg } from "./cosmic.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AACH,cAAc,YAAY,CAAC;AAC3B,OAAO,EAAE,SAAS,EAAqB,MAAM,aAAa,CAAC;AAC3D,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AACjD,OAAO,EAAE,YAAY,EAAoB,MAAM,cAAc,CAAC;AAC9D,OAAO,EAAE,YAAY,EAAqB,MAAM,eAAe,CAAC;AAChE,OAAO,EAAE,kBAAkB,EAAE,MAAM,YAAY,CAAC;AAChD,OAAO,EAAE,cAAc,EAAoB,MAAM,mBAAmB,CAAC;AACrE,OAAO,EAAE,aAAa,EAAsB,MAAM,cAAc,CAAC;AACjE,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,aAAa,EAAE,cAAc,EAAkC,MAAM,aAAa,CAAC"}

package/dist/privacy.d.ts

@@ -0,0 +1,12 @@
+export interface LeakVerdict {
+    leaks: boolean;
+    reasons: string[];
+}
+/**
+ * Field-aware: symbol NAMES and signatures are allowed (they are structural),
+ * but they live in known fields. We scan the JSON with those known structural
+ * fields stripped, so a signature in `hotspots[].symbol` can't be mistaken for
+ * a leak, while an injected code body anywhere else is caught.
+ */
+export declare function xrayLeaksRaw(report: unknown): LeakVerdict;
+//# sourceMappingURL=privacy.d.ts.map

package/dist/privacy.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"privacy.d.ts","sourceRoot":"","sources":["../src/privacy.ts"],"names":[],"mappings":"AAYA,MAAM,WAAW,WAAW;IAAG,KAAK,EAAE,OAAO,CAAC;IAAC,OAAO,EAAE,MAAM,EAAE,CAAA;CAAE;AAYlE;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,MAAM,EAAE,OAAO,GAAG,WAAW,CAyBzD"}