@nerviq/cli 1.17.3 → 1.19.0

package/src/domain-packs.js

@@ -1,387 +1,387 @@
-const { buildAdditionalDomainPacks, detectAdditionalDomainPacks } = require('./domain-pack-expansion');
-
-const BASE_DOMAIN_PACKS = [
-  {
-    key: 'baseline-general',
-    label: 'Baseline General',
-    useWhen: 'General repos that need a pragmatic Claude baseline without domain-specific assumptions.',
-    recommendedModules: ['CLAUDE.md baseline', 'verification', 'safe-write profile'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['discover next actions', 'starter-safe improvement', 'governed rollout'],
-  },
-  {
-    key: 'backend-api',
-    label: 'Backend API',
-    useWhen: 'Service, API, or backend-heavy repos with routes, services, jobs, or data access.',
-    recommendedModules: ['verification', 'security workflow', 'commands', 'rules'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['test + build verification', 'security review workflow', 'safe apply on existing config'],
-  },
-  {
-    key: 'frontend-ui',
-    label: 'Frontend UI',
-    useWhen: 'React, Next.js, Vue, Angular, or Svelte repos with components and UI-heavy workflows.',
-    recommendedModules: ['frontend rules', 'design guidance', 'commands', 'benchmark'],
-    recommendedMcpPacks: ['context7-docs', 'next-devtools'],
-    benchmarkFocus: ['build checks', 'component workflow quality', 'framework-aware starter output'],
-  },
-  {
-    key: 'data-pipeline',
-    label: 'Data Pipeline',
-    useWhen: 'Repos with workers, DAGs, marts, ETL jobs, migrations, or analytics-heavy workflows.',
-    recommendedModules: ['verification', 'rules', 'agents', 'benchmark'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['pipeline safety', 'repeatable task flows', 'state-aware review artifacts'],
-  },
-  {
-    key: 'infra-platform',
-    label: 'Infra Platform',
-    useWhen: 'Terraform, Docker, Kubernetes, Wrangler, or deployment-oriented repos.',
-    recommendedModules: ['ci-devops', 'commands', 'governance', 'benchmark'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['release safety', 'policy-controlled rollout', 'infra verification loops'],
-  },
-  {
-    key: 'oss-library',
-    label: 'OSS Library',
-    useWhen: 'Public packages or contributor-heavy repos that need a lighter governance footprint.',
-    recommendedModules: ['suggest-only profile', 'light rules', 'commands', 'README-aligned CLAUDE.md'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['low-footprint adoption', 'manual review friendliness', 'contributor-safe defaults'],
-  },
-  {
-    key: 'enterprise-governed',
-    label: 'Enterprise Governed',
-    useWhen: 'Repos with CI, permissions, hooks, and a need for auditable change controls.',
-    recommendedModules: ['governance', 'activity artifacts', 'rollback manifests', 'benchmark evidence'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['policy-aware rollout', 'approval flow readiness', 'benchmark export quality'],
-  },
-  {
-    key: 'monorepo',
-    label: 'Monorepo',
-    useWhen: 'Nx, Turborepo, Lerna, or workspace-based repos with multiple packages sharing a root.',
-    recommendedModules: ['path-specific rules', 'commands per package', 'governance', 'agents'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['package-scoped rule coverage', 'cross-package safety', 'workspace-aware starter output'],
-  },
-  {
-    key: 'mobile',
-    label: 'Mobile App',
-    useWhen: 'React Native, Flutter, Swift, or Kotlin repos with mobile-specific build and release workflows.',
-    recommendedModules: ['verification', 'commands', 'rules', 'agents'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['build verification', 'platform-specific rules', 'release workflow quality'],
-  },
-  {
-    key: 'regulated-lite',
-    label: 'Regulated Lite',
-    useWhen: 'Repos in regulated environments (fintech, health, legal) that need auditability without full enterprise governance overhead.',
-    recommendedModules: ['governance', 'activity artifacts', 'suggest-only profile', 'audit logging'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['audit trail completeness', 'change traceability', 'policy compliance readiness'],
-  },
-  {
-    key: 'ecommerce',
-    label: 'E-Commerce',
-    useWhen: 'Shopify, WooCommerce, Stripe, or storefront repos with payment, catalog, and analytics workflows.',
-    recommendedModules: ['verification', 'security workflow', 'commands', 'rules'],
-    recommendedMcpPacks: ['context7-docs', 'stripe-mcp'],
-    benchmarkFocus: ['payment safety', 'catalog workflow quality', 'analytics integration'],
-  },
-  {
-    key: 'ai-ml',
-    label: 'AI / ML',
-    useWhen: 'Repos with LLM chains, ML pipelines, model training, or AI agent workflows.',
-    recommendedModules: ['verification', 'agents', 'commands', 'benchmark'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['pipeline reproducibility', 'model workflow safety', 'experiment tracking'],
-  },
-  {
-    key: 'devops-cicd',
-    label: 'DevOps / CI/CD',
-    useWhen: 'Repos focused on CI/CD pipelines, GitHub Actions, deployment automation, or release engineering.',
-    recommendedModules: ['ci-devops', 'commands', 'hooks', 'governance'],
-    recommendedMcpPacks: ['context7-docs', 'github-mcp', 'docker-mcp'],
-    benchmarkFocus: ['pipeline safety', 'release workflow quality', 'deployment verification'],
-  },
-  {
-    key: 'design-system',
-    label: 'Design System',
-    useWhen: 'Component libraries, design token repos, or Storybook-driven projects with visual QA needs.',
-    recommendedModules: ['frontend rules', 'commands', 'verification', 'benchmark'],
-    recommendedMcpPacks: ['context7-docs', 'figma-mcp', 'playwright-mcp'],
-    benchmarkFocus: ['component quality', 'visual regression', 'token consistency'],
-  },
-  {
-    key: 'docs-content',
-    label: 'Docs / Content',
-    useWhen: 'Documentation sites, knowledge bases, or content-heavy repos (Docusaurus, GitBook, MDX).',
-    recommendedModules: ['commands', 'rules', 'verification'],
-    recommendedMcpPacks: ['context7-docs'],
-    benchmarkFocus: ['content quality', 'link integrity', 'build verification'],
-  },
-  {
-    key: 'security-focused',
-    label: 'Security-Focused',
-    useWhen: 'Repos handling auth, payments, PII, or secrets that need strict Claude guardrails.',
-    recommendedModules: ['governance', 'suggest-only profile', 'hooks', 'audit logging'],
-    recommendedMcpPacks: ['context7-docs', 'mcp-security'],
-    benchmarkFocus: ['permission posture', 'secrets protection', 'audit trail quality'],
-  },
-];
-
-const DOMAIN_PACKS = [
-  ...BASE_DOMAIN_PACKS,
-  ...buildAdditionalDomainPacks('claude', {
-    existingKeys: new Set(BASE_DOMAIN_PACKS.map((pack) => pack.key)),
-  }),
-];
-
-function uniqueByKey(items) {
-  const seen = new Set();
-  const result = [];
-  for (const item of items) {
-    if (seen.has(item.key)) continue;
-    seen.add(item.key);
-    result.push(item);
-  }
-  return result;
-}
-
-function detectDomainPacks(ctx, stacks, assets = null) {
-  const stackKeys = new Set((stacks || []).map(stack => stack.key));
-  const pkg = ctx.jsonFile('package.json') || {};
-  const deps = ctx.projectDependencies ? ctx.projectDependencies() : { ...(pkg.dependencies || {}), ...(pkg.devDependencies || {}) };
-  const matches = [];
-
-  function addMatch(key, reasons) {
-    const pack = DOMAIN_PACKS.find(item => item.key === key);
-    if (!pack) return;
-    matches.push({
-      ...pack,
-      matchReasons: reasons.filter(Boolean).slice(0, 3),
-    });
-  }
-
-  const hasFrontend = stackKeys.has('react') || stackKeys.has('nextjs') || stackKeys.has('vue') ||
-    stackKeys.has('angular') || stackKeys.has('svelte') || ctx.hasDir('components') || ctx.hasDir('pages') ||
-    (ctx.hasDir('app') && (deps.next || deps.react || deps.vue || deps['@angular/core'] || deps.svelte));
-  const hasBackend = stackKeys.has('node') || stackKeys.has('python') || stackKeys.has('django') ||
-    stackKeys.has('fastapi') || stackKeys.has('go') || stackKeys.has('rust') || stackKeys.has('java') ||
-    ctx.hasDir('api') || ctx.hasDir('routes') || ctx.hasDir('services') || ctx.hasDir('controllers');
-  const hasData = ctx.hasDir('dags') || ctx.hasDir('jobs') || ctx.hasDir('workers') ||
-    ctx.hasDir('migrations') || ctx.hasDir('db') ||
-    deps.dbt || deps['apache-airflow'] || deps.pandas || deps.polars || deps.duckdb ||
-    deps.prefect || deps.dagster || deps['kedro'] || deps['great-expectations'];
-  const hasInfra = stackKeys.has('docker') || stackKeys.has('terraform') || stackKeys.has('kubernetes') ||
-    ctx.files.includes('wrangler.toml') || ctx.files.includes('serverless.yml') || ctx.files.includes('serverless.yaml') ||
-    ctx.files.includes('cdk.json') || ctx.hasDir('infra') || ctx.hasDir('deploy') || ctx.hasDir('helm');
-  const isOss = !!ctx.fileContent('LICENSE') && pkg.private !== true;
-  const hasCi = ctx.hasDir('.github/workflows');
-  const isEnterpriseGoverned = !!(assets && assets.permissions && assets.permissions.hasDenyRules) &&
-    !!(assets && assets.files && assets.files.settings) && hasCi;
-
-  if (hasBackend) {
-    addMatch('backend-api', [
-      'Detected backend stack or service directories.',
-      ctx.hasDir('api') ? 'API-facing structure detected.' : null,
-      ctx.hasDir('services') ? 'Service-layer directories detected.' : null,
-    ]);
-  }
-
-  if (hasFrontend) {
-    addMatch('frontend-ui', [
-      'Detected frontend stack or UI directories.',
-      ctx.hasDir('components') ? 'Component directories detected.' : null,
-      stackKeys.has('nextjs') ? 'Next.js stack detected.' : null,
-    ]);
-  }
-
-  if (hasData) {
-    addMatch('data-pipeline', [
-      'Detected worker, jobs, models, or analytics-style structure.',
-      ctx.hasDir('jobs') ? 'Job/pipeline directories detected.' : null,
-      ctx.hasDir('migrations') ? 'Migration flow detected.' : null,
-    ]);
-  }
-
-  if (hasInfra) {
-    addMatch('infra-platform', [
-      'Detected deployment or infrastructure signals.',
-      ctx.files.includes('wrangler.toml') ? 'Wrangler deployment config detected.' : null,
-      ctx.hasDir('deploy') ? 'Deployment directory detected.' : null,
-    ]);
-  }
-
-  if (isOss) {
-    addMatch('oss-library', [
-      'License and contribution guidance suggest an open-source repo.',
-      pkg.private === false ? 'package.json is not marked private.' : null,
-    ]);
-  }
-
-  if (isEnterpriseGoverned) {
-    addMatch('enterprise-governed', [
-      'Settings, deny rules, and CI indicate a governed team workflow.',
-      'Repo already has policy-aware Claude assets.',
-    ]);
-  }
-
-  // Monorepo detection
-  const isMonorepo = ctx.files.includes('nx.json') || ctx.files.includes('turbo.json') ||
-    ctx.files.includes('lerna.json') || ctx.files.includes('pnpm-workspace.yaml') ||
-    ctx.hasDir('packages') ||
-    (pkg.workspaces && (Array.isArray(pkg.workspaces) ? pkg.workspaces.length > 0 : true));
-  if (isMonorepo) {
-    addMatch('monorepo', [
-      'Detected monorepo or workspace configuration.',
-      ctx.files.includes('nx.json') ? 'Nx workspace detected.' : null,
-      ctx.files.includes('turbo.json') ? 'Turborepo detected.' : null,
-      ctx.hasDir('packages') ? 'Packages directory detected.' : null,
-    ]);
-  }
-
-  // Mobile detection
-  const isMobile = deps['react-native'] || deps.expo || deps.flutter ||
-    deps['@capacitor/core'] || deps['@ionic/angular'] || deps['@ionic/react'] ||
-    ctx.files.includes('Podfile') || ctx.files.includes('build.gradle') ||
-    ctx.files.includes('build.gradle.kts') || ctx.hasDir('ios') || ctx.hasDir('android');
-  if (isMobile) {
-    addMatch('mobile', [
-      'Detected mobile app structure or dependencies.',
-      deps['react-native'] ? 'React Native detected.' : null,
-      ctx.hasDir('ios') ? 'iOS directory detected.' : null,
-      ctx.hasDir('android') ? 'Android directory detected.' : null,
-    ]);
-  }
-
-  // Regulated-lite detection
-  const hasSecurityPolicy = ctx.files.includes('SECURITY.md');
-  const isRegulated = ctx.files.includes('COMPLIANCE.md') || ctx.hasDir('compliance') ||
-    ctx.hasDir('audit') || ctx.hasDir('policies') ||
-    (pkg.keywords && pkg.keywords.some(k => ['hipaa', 'fintech', 'compliance', 'regulated', 'sox', 'pci'].includes(k)));
-  if (isRegulated && !isEnterpriseGoverned) {
-    addMatch('regulated-lite', [
-      'Detected compliance or regulatory signals without full enterprise governance.',
-      ctx.files.includes('COMPLIANCE.md') ? 'COMPLIANCE.md present.' : null,
-      ctx.hasDir('compliance') ? 'Compliance directory detected.' : null,
-    ]);
-  }
-
-  // E-commerce detection
-  const isEcommerce = deps.stripe || deps['@stripe/stripe-js'] || deps.shopify || deps['@shopify/shopify-api'] ||
-    deps.woocommerce || deps.paypal || deps['@paypal/react-paypal-js'] || deps.square || deps['@adyen/adyen-web'] ||
-    deps.medusa || deps.saleor || deps.braintree || deps['@mollie/api-client'] ||
-    deps.razorpay || deps['@paddle/paddle-node-sdk'] || deps['@lemonsqueezy/lemonsqueezy.js'] ||
-    ctx.hasDir('products') || ctx.hasDir('checkout') || ctx.hasDir('cart');
-  if (isEcommerce) {
-    addMatch('ecommerce', [
-      'Detected e-commerce dependencies or storefront structure.',
-      deps.stripe ? 'Stripe dependency detected.' : null,
-      ctx.hasDir('checkout') ? 'Checkout directory detected.' : null,
-    ]);
-  }
-
-  // AI/ML detection
-  const isAiMl = deps.langchain || deps['@langchain/core'] || deps.openai || deps.anthropic ||
-    deps['@anthropic-ai/sdk'] || deps.transformers || deps.torch || deps.tensorflow ||
-    deps.llamaindex || deps['llama-index'] || deps.crewai || deps.autogen ||
-    deps['@ai-sdk/core'] || deps.ollama ||
-    deps['@microsoft/semantic-kernel'] || deps['haystack-ai'] || deps['dspy-ai'] ||
-    deps.instructor || deps['@google/generative-ai'] || deps.cohere || deps.mistralai ||
-    deps.langgraph || deps.litellm || deps['smolagents'] || deps.chromadb ||
-    deps['qdrant-client'] || deps['weaviate-client'] || deps['pinecone-client'] ||
-    deps['sentence-transformers'] || deps.mlflow || deps.wandb ||
-    ctx.hasDir('chains') || ctx.hasDir('agents') || ctx.hasDir('prompts') ||
-    ctx.hasDir('rag') || ctx.hasDir('retrievers') || ctx.hasDir('vectorstores') ||
-    ctx.hasDir('embeddings') || ctx.hasDir('datasets') || ctx.hasDir('experiments') ||
-    ctx.hasDir('notebooks') || ctx.files.includes('langgraph.json') || ctx.files.includes('chainlit.md');
-  if (isAiMl) {
-    addMatch('ai-ml', [
-      'Detected AI/ML dependencies or agent structure.',
-      deps.langchain || deps.langgraph ? 'LangChain or LangGraph detected.' : null,
-      deps.anthropic || deps['@anthropic-ai/sdk'] ? 'Anthropic SDK detected.' : null,
-      ctx.hasDir('chains') ? 'Chain directory detected.' : null,
-      ctx.hasDir('rag') ? 'RAG directory detected.' : null,
-    ]);
-  }
-
-  // DevOps/CI detection
-  const isDevopsCicd = ctx.hasDir('.github/workflows') || ctx.hasDir('.circleci') ||
-    ctx.files.includes('Jenkinsfile') || ctx.files.includes('.gitlab-ci.yml') ||
-    ctx.hasDir('deploy') || ctx.hasDir('scripts/deploy');
-  if (isDevopsCicd) {
-    addMatch('devops-cicd', [
-      'Detected CI/CD pipelines or deployment scripts.',
-      ctx.hasDir('.github/workflows') ? 'GitHub Actions detected.' : null,
-      ctx.hasDir('deploy') ? 'Deploy directory detected.' : null,
-    ]);
-  }
-
-  // Design system detection
-  const isDesignSystem = deps.storybook || deps['@storybook/react'] || deps['@storybook/vue3'] ||
-    deps.chromatic || deps['style-dictionary'] || deps['@tokens-studio/sd-transforms'] ||
-    deps['@radix-ui/react-primitives'] || deps['@headlessui/react'] ||
-    ctx.hasDir('tokens') || ctx.hasDir('design-tokens') || ctx.hasDir('primitives') ||
-    ctx.hasDir('.storybook') ||
-    (ctx.hasDir('components') && (deps['tailwindcss'] || deps.tailwindcss) && ctx.hasDir('packages'));
-  if (isDesignSystem) {
-    addMatch('design-system', [
-      'Detected design system or component library signals.',
-      deps.storybook ? 'Storybook detected.' : null,
-      ctx.hasDir('tokens') ? 'Design tokens detected.' : null,
-    ]);
-  }
-
-  // Docs/content detection
-  const isDocsContent = deps.docusaurus || deps['@docusaurus/core'] || deps.nextra || deps.vitepress ||
-    deps.gitbook || ctx.files.includes('docusaurus.config.js') || ctx.files.includes('mkdocs.yml') ||
-    (ctx.hasDir('docs') && ctx.hasDir('content'));
-  if (isDocsContent) {
-    addMatch('docs-content', [
-      'Detected documentation site or content-heavy structure.',
-      deps.docusaurus ? 'Docusaurus detected.' : null,
-      ctx.files.includes('mkdocs.yml') ? 'MkDocs detected.' : null,
-    ]);
-  }
-
-  // Security-focused detection
-  const hasAuthDeps = deps.bcrypt || deps.jsonwebtoken || deps.passport || deps['next-auth'] ||
-    deps['@auth/core'] || deps['lucia'] || deps['better-auth'];
-  const isSecurityFocused = (hasSecurityPolicy || hasAuthDeps) && hasBackend;
-  if (isSecurityFocused && !isRegulated) {
-    addMatch('security-focused', [
-      'Detected security-sensitive backend with auth dependencies.',
-      deps.jsonwebtoken ? 'JWT auth detected.' : null,
-      deps.passport ? 'Passport auth detected.' : null,
-    ]);
-  }
-
-  detectAdditionalDomainPacks({
-    ctx,
-    pkg,
-    deps,
-    stackKeys,
-    addMatch,
-    hasBackend,
-    hasFrontend,
-    hasInfra,
-    hasCi,
-    isEnterpriseGoverned,
-  });
-
-  const deduped = uniqueByKey(matches);
-  if (deduped.length === 0) {
-    return [{
-      ...DOMAIN_PACKS.find(item => item.key === 'baseline-general'),
-      matchReasons: ['No stronger domain signal detected yet.'],
-    }];
-  }
-  return deduped;
-}
-
-module.exports = {
-  DOMAIN_PACKS,
-  detectDomainPacks,
-};
+const { buildAdditionalDomainPacks, detectAdditionalDomainPacks } = require('./domain-pack-expansion');
+
+const BASE_DOMAIN_PACKS = [
+  {
+    key: 'baseline-general',
+    label: 'Baseline General',
+    useWhen: 'General repos that need a pragmatic Claude baseline without domain-specific assumptions.',
+    recommendedModules: ['CLAUDE.md baseline', 'verification', 'safe-write profile'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['discover next actions', 'starter-safe improvement', 'governed rollout'],
+  },
+  {
+    key: 'backend-api',
+    label: 'Backend API',
+    useWhen: 'Service, API, or backend-heavy repos with routes, services, jobs, or data access.',
+    recommendedModules: ['verification', 'security workflow', 'commands', 'rules'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['test + build verification', 'security review workflow', 'safe apply on existing config'],
+  },
+  {
+    key: 'frontend-ui',
+    label: 'Frontend UI',
+    useWhen: 'React, Next.js, Vue, Angular, or Svelte repos with components and UI-heavy workflows.',
+    recommendedModules: ['frontend rules', 'design guidance', 'commands', 'benchmark'],
+    recommendedMcpPacks: ['context7-docs', 'next-devtools'],
+    benchmarkFocus: ['build checks', 'component workflow quality', 'framework-aware starter output'],
+  },
+  {
+    key: 'data-pipeline',
+    label: 'Data Pipeline',
+    useWhen: 'Repos with workers, DAGs, marts, ETL jobs, migrations, or analytics-heavy workflows.',
+    recommendedModules: ['verification', 'rules', 'agents', 'benchmark'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['pipeline safety', 'repeatable task flows', 'state-aware review artifacts'],
+  },
+  {
+    key: 'infra-platform',
+    label: 'Infra Platform',
+    useWhen: 'Terraform, Docker, Kubernetes, Wrangler, or deployment-oriented repos.',
+    recommendedModules: ['ci-devops', 'commands', 'governance', 'benchmark'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['release safety', 'policy-controlled rollout', 'infra verification loops'],
+  },
+  {
+    key: 'oss-library',
+    label: 'OSS Library',
+    useWhen: 'Public packages or contributor-heavy repos that need a lighter governance footprint.',
+    recommendedModules: ['suggest-only profile', 'light rules', 'commands', 'README-aligned CLAUDE.md'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['low-footprint adoption', 'manual review friendliness', 'contributor-safe defaults'],
+  },
+  {
+    key: 'enterprise-governed',
+    label: 'Enterprise Governed',
+    useWhen: 'Repos with CI, permissions, hooks, and a need for auditable change controls.',
+    recommendedModules: ['governance', 'activity artifacts', 'rollback manifests', 'benchmark evidence'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['policy-aware rollout', 'approval flow readiness', 'benchmark export quality'],
+  },
+  {
+    key: 'monorepo',
+    label: 'Monorepo',
+    useWhen: 'Nx, Turborepo, Lerna, or workspace-based repos with multiple packages sharing a root.',
+    recommendedModules: ['path-specific rules', 'commands per package', 'governance', 'agents'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['package-scoped rule coverage', 'cross-package safety', 'workspace-aware starter output'],
+  },
+  {
+    key: 'mobile',
+    label: 'Mobile App',
+    useWhen: 'React Native, Flutter, Swift, or Kotlin repos with mobile-specific build and release workflows.',
+    recommendedModules: ['verification', 'commands', 'rules', 'agents'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['build verification', 'platform-specific rules', 'release workflow quality'],
+  },
+  {
+    key: 'regulated-lite',
+    label: 'Regulated Lite',
+    useWhen: 'Repos in regulated environments (fintech, health, legal) that need auditability without full enterprise governance overhead.',
+    recommendedModules: ['governance', 'activity artifacts', 'suggest-only profile', 'audit logging'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['audit trail completeness', 'change traceability', 'policy compliance readiness'],
+  },
+  {
+    key: 'ecommerce',
+    label: 'E-Commerce',
+    useWhen: 'Shopify, WooCommerce, Stripe, or storefront repos with payment, catalog, and analytics workflows.',
+    recommendedModules: ['verification', 'security workflow', 'commands', 'rules'],
+    recommendedMcpPacks: ['context7-docs', 'stripe-mcp'],
+    benchmarkFocus: ['payment safety', 'catalog workflow quality', 'analytics integration'],
+  },
+  {
+    key: 'ai-ml',
+    label: 'AI / ML',
+    useWhen: 'Repos with LLM chains, ML pipelines, model training, or AI agent workflows.',
+    recommendedModules: ['verification', 'agents', 'commands', 'benchmark'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['pipeline reproducibility', 'model workflow safety', 'experiment tracking'],
+  },
+  {
+    key: 'devops-cicd',
+    label: 'DevOps / CI/CD',
+    useWhen: 'Repos focused on CI/CD pipelines, GitHub Actions, deployment automation, or release engineering.',
+    recommendedModules: ['ci-devops', 'commands', 'hooks', 'governance'],
+    recommendedMcpPacks: ['context7-docs', 'github-mcp', 'docker-mcp'],
+    benchmarkFocus: ['pipeline safety', 'release workflow quality', 'deployment verification'],
+  },
+  {
+    key: 'design-system',
+    label: 'Design System',
+    useWhen: 'Component libraries, design token repos, or Storybook-driven projects with visual QA needs.',
+    recommendedModules: ['frontend rules', 'commands', 'verification', 'benchmark'],
+    recommendedMcpPacks: ['context7-docs', 'figma-mcp', 'playwright-mcp'],
+    benchmarkFocus: ['component quality', 'visual regression', 'token consistency'],
+  },
+  {
+    key: 'docs-content',
+    label: 'Docs / Content',
+    useWhen: 'Documentation sites, knowledge bases, or content-heavy repos (Docusaurus, GitBook, MDX).',
+    recommendedModules: ['commands', 'rules', 'verification'],
+    recommendedMcpPacks: ['context7-docs'],
+    benchmarkFocus: ['content quality', 'link integrity', 'build verification'],
+  },
+  {
+    key: 'security-focused',
+    label: 'Security-Focused',
+    useWhen: 'Repos handling auth, payments, PII, or secrets that need strict Claude guardrails.',
+    recommendedModules: ['governance', 'suggest-only profile', 'hooks', 'audit logging'],
+    recommendedMcpPacks: ['context7-docs', 'mcp-security'],
+    benchmarkFocus: ['permission posture', 'secrets protection', 'audit trail quality'],
+  },
+];
+
+const DOMAIN_PACKS = [
+  ...BASE_DOMAIN_PACKS,
+  ...buildAdditionalDomainPacks('claude', {
+    existingKeys: new Set(BASE_DOMAIN_PACKS.map((pack) => pack.key)),
+  }),
+];
+
+function uniqueByKey(items) {
+  const seen = new Set();
+  const result = [];
+  for (const item of items) {
+    if (seen.has(item.key)) continue;
+    seen.add(item.key);
+    result.push(item);
+  }
+  return result;
+}
+
+function detectDomainPacks(ctx, stacks, assets = null) {
+  const stackKeys = new Set((stacks || []).map(stack => stack.key));
+  const pkg = ctx.jsonFile('package.json') || {};
+  const deps = ctx.projectDependencies ? ctx.projectDependencies() : { ...(pkg.dependencies || {}), ...(pkg.devDependencies || {}) };
+  const matches = [];
+
+  function addMatch(key, reasons) {
+    const pack = DOMAIN_PACKS.find(item => item.key === key);
+    if (!pack) return;
+    matches.push({
+      ...pack,
+      matchReasons: reasons.filter(Boolean).slice(0, 3),
+    });
+  }
+
+  const hasFrontend = stackKeys.has('react') || stackKeys.has('nextjs') || stackKeys.has('vue') ||
+    stackKeys.has('angular') || stackKeys.has('svelte') || ctx.hasDir('components') || ctx.hasDir('pages') ||
+    (ctx.hasDir('app') && (deps.next || deps.react || deps.vue || deps['@angular/core'] || deps.svelte));
+  const hasBackend = stackKeys.has('node') || stackKeys.has('python') || stackKeys.has('django') ||
+    stackKeys.has('fastapi') || stackKeys.has('go') || stackKeys.has('rust') || stackKeys.has('java') ||
+    ctx.hasDir('api') || ctx.hasDir('routes') || ctx.hasDir('services') || ctx.hasDir('controllers');
+  const hasData = ctx.hasDir('dags') || ctx.hasDir('jobs') || ctx.hasDir('workers') ||
+    ctx.hasDir('migrations') || ctx.hasDir('db') ||
+    deps.dbt || deps['apache-airflow'] || deps.pandas || deps.polars || deps.duckdb ||
+    deps.prefect || deps.dagster || deps['kedro'] || deps['great-expectations'];
+  const hasInfra = stackKeys.has('docker') || stackKeys.has('terraform') || stackKeys.has('kubernetes') ||
+    ctx.files.includes('wrangler.toml') || ctx.files.includes('serverless.yml') || ctx.files.includes('serverless.yaml') ||
+    ctx.files.includes('cdk.json') || ctx.hasDir('infra') || ctx.hasDir('deploy') || ctx.hasDir('helm');
+  const isOss = !!ctx.fileContent('LICENSE') && pkg.private !== true;
+  const hasCi = ctx.hasDir('.github/workflows');
+  const isEnterpriseGoverned = !!(assets && assets.permissions && assets.permissions.hasDenyRules) &&
+    !!(assets && assets.files && assets.files.settings) && hasCi;
+
+  if (hasBackend) {
+    addMatch('backend-api', [
+      'Detected backend stack or service directories.',
+      ctx.hasDir('api') ? 'API-facing structure detected.' : null,
+      ctx.hasDir('services') ? 'Service-layer directories detected.' : null,
+    ]);
+  }
+
+  if (hasFrontend) {
+    addMatch('frontend-ui', [
+      'Detected frontend stack or UI directories.',
+      ctx.hasDir('components') ? 'Component directories detected.' : null,
+      stackKeys.has('nextjs') ? 'Next.js stack detected.' : null,
+    ]);
+  }
+
+  if (hasData) {
+    addMatch('data-pipeline', [
+      'Detected worker, jobs, models, or analytics-style structure.',
+      ctx.hasDir('jobs') ? 'Job/pipeline directories detected.' : null,
+      ctx.hasDir('migrations') ? 'Migration flow detected.' : null,
+    ]);
+  }
+
+  if (hasInfra) {
+    addMatch('infra-platform', [
+      'Detected deployment or infrastructure signals.',
+      ctx.files.includes('wrangler.toml') ? 'Wrangler deployment config detected.' : null,
+      ctx.hasDir('deploy') ? 'Deployment directory detected.' : null,
+    ]);
+  }
+
+  if (isOss) {
+    addMatch('oss-library', [
+      'License and contribution guidance suggest an open-source repo.',
+      pkg.private === false ? 'package.json is not marked private.' : null,
+    ]);
+  }
+
+  if (isEnterpriseGoverned) {
+    addMatch('enterprise-governed', [
+      'Settings, deny rules, and CI indicate a governed team workflow.',
+      'Repo already has policy-aware Claude assets.',
+    ]);
+  }
+
+  // Monorepo detection
+  const isMonorepo = ctx.files.includes('nx.json') || ctx.files.includes('turbo.json') ||
+    ctx.files.includes('lerna.json') || ctx.files.includes('pnpm-workspace.yaml') ||
+    ctx.hasDir('packages') ||
+    (pkg.workspaces && (Array.isArray(pkg.workspaces) ? pkg.workspaces.length > 0 : true));
+  if (isMonorepo) {
+    addMatch('monorepo', [
+      'Detected monorepo or workspace configuration.',
+      ctx.files.includes('nx.json') ? 'Nx workspace detected.' : null,
+      ctx.files.includes('turbo.json') ? 'Turborepo detected.' : null,
+      ctx.hasDir('packages') ? 'Packages directory detected.' : null,
+    ]);
+  }
+
+  // Mobile detection
+  const isMobile = deps['react-native'] || deps.expo || deps.flutter ||
+    deps['@capacitor/core'] || deps['@ionic/angular'] || deps['@ionic/react'] ||
+    ctx.files.includes('Podfile') || ctx.files.includes('build.gradle') ||
+    ctx.files.includes('build.gradle.kts') || ctx.hasDir('ios') || ctx.hasDir('android');
+  if (isMobile) {
+    addMatch('mobile', [
+      'Detected mobile app structure or dependencies.',
+      deps['react-native'] ? 'React Native detected.' : null,
+      ctx.hasDir('ios') ? 'iOS directory detected.' : null,
+      ctx.hasDir('android') ? 'Android directory detected.' : null,
+    ]);
+  }
+
+  // Regulated-lite detection
+  const hasSecurityPolicy = ctx.files.includes('SECURITY.md');
+  const isRegulated = ctx.files.includes('COMPLIANCE.md') || ctx.hasDir('compliance') ||
+    ctx.hasDir('audit') || ctx.hasDir('policies') ||
+    (pkg.keywords && pkg.keywords.some(k => ['hipaa', 'fintech', 'compliance', 'regulated', 'sox', 'pci'].includes(k)));
+  if (isRegulated && !isEnterpriseGoverned) {
+    addMatch('regulated-lite', [
+      'Detected compliance or regulatory signals without full enterprise governance.',
+      ctx.files.includes('COMPLIANCE.md') ? 'COMPLIANCE.md present.' : null,
+      ctx.hasDir('compliance') ? 'Compliance directory detected.' : null,
+    ]);
+  }
+
+  // E-commerce detection
+  const isEcommerce = deps.stripe || deps['@stripe/stripe-js'] || deps.shopify || deps['@shopify/shopify-api'] ||
+    deps.woocommerce || deps.paypal || deps['@paypal/react-paypal-js'] || deps.square || deps['@adyen/adyen-web'] ||
+    deps.medusa || deps.saleor || deps.braintree || deps['@mollie/api-client'] ||
+    deps.razorpay || deps['@paddle/paddle-node-sdk'] || deps['@lemonsqueezy/lemonsqueezy.js'] ||
+    ctx.hasDir('products') || ctx.hasDir('checkout') || ctx.hasDir('cart');
+  if (isEcommerce) {
+    addMatch('ecommerce', [
+      'Detected e-commerce dependencies or storefront structure.',
+      deps.stripe ? 'Stripe dependency detected.' : null,
+      ctx.hasDir('checkout') ? 'Checkout directory detected.' : null,
+    ]);
+  }
+
+  // AI/ML detection
+  const isAiMl = deps.langchain || deps['@langchain/core'] || deps.openai || deps.anthropic ||
+    deps['@anthropic-ai/sdk'] || deps.transformers || deps.torch || deps.tensorflow ||
+    deps.llamaindex || deps['llama-index'] || deps.crewai || deps.autogen ||
+    deps['@ai-sdk/core'] || deps.ollama ||
+    deps['@microsoft/semantic-kernel'] || deps['haystack-ai'] || deps['dspy-ai'] ||
+    deps.instructor || deps['@google/generative-ai'] || deps.cohere || deps.mistralai ||
+    deps.langgraph || deps.litellm || deps['smolagents'] || deps.chromadb ||
+    deps['qdrant-client'] || deps['weaviate-client'] || deps['pinecone-client'] ||
+    deps['sentence-transformers'] || deps.mlflow || deps.wandb ||
+    ctx.hasDir('chains') || ctx.hasDir('agents') || ctx.hasDir('prompts') ||
+    ctx.hasDir('rag') || ctx.hasDir('retrievers') || ctx.hasDir('vectorstores') ||
+    ctx.hasDir('embeddings') || ctx.hasDir('datasets') || ctx.hasDir('experiments') ||
+    ctx.hasDir('notebooks') || ctx.files.includes('langgraph.json') || ctx.files.includes('chainlit.md');
+  if (isAiMl) {
+    addMatch('ai-ml', [
+      'Detected AI/ML dependencies or agent structure.',
+      deps.langchain || deps.langgraph ? 'LangChain or LangGraph detected.' : null,
+      deps.anthropic || deps['@anthropic-ai/sdk'] ? 'Anthropic SDK detected.' : null,
+      ctx.hasDir('chains') ? 'Chain directory detected.' : null,
+      ctx.hasDir('rag') ? 'RAG directory detected.' : null,
+    ]);
+  }
+
+  // DevOps/CI detection
+  const isDevopsCicd = ctx.hasDir('.github/workflows') || ctx.hasDir('.circleci') ||
+    ctx.files.includes('Jenkinsfile') || ctx.files.includes('.gitlab-ci.yml') ||
+    ctx.hasDir('deploy') || ctx.hasDir('scripts/deploy');
+  if (isDevopsCicd) {
+    addMatch('devops-cicd', [
+      'Detected CI/CD pipelines or deployment scripts.',
+      ctx.hasDir('.github/workflows') ? 'GitHub Actions detected.' : null,
+      ctx.hasDir('deploy') ? 'Deploy directory detected.' : null,
+    ]);
+  }
+
+  // Design system detection
+  const isDesignSystem = deps.storybook || deps['@storybook/react'] || deps['@storybook/vue3'] ||
+    deps.chromatic || deps['style-dictionary'] || deps['@tokens-studio/sd-transforms'] ||
+    deps['@radix-ui/react-primitives'] || deps['@headlessui/react'] ||
+    ctx.hasDir('tokens') || ctx.hasDir('design-tokens') || ctx.hasDir('primitives') ||
+    ctx.hasDir('.storybook') ||
+    (ctx.hasDir('components') && (deps['tailwindcss'] || deps.tailwindcss) && ctx.hasDir('packages'));
+  if (isDesignSystem) {
+    addMatch('design-system', [
+      'Detected design system or component library signals.',
+      deps.storybook ? 'Storybook detected.' : null,
+      ctx.hasDir('tokens') ? 'Design tokens detected.' : null,
+    ]);
+  }
+
+  // Docs/content detection
+  const isDocsContent = deps.docusaurus || deps['@docusaurus/core'] || deps.nextra || deps.vitepress ||
+    deps.gitbook || ctx.files.includes('docusaurus.config.js') || ctx.files.includes('mkdocs.yml') ||
+    (ctx.hasDir('docs') && ctx.hasDir('content'));
+  if (isDocsContent) {
+    addMatch('docs-content', [
+      'Detected documentation site or content-heavy structure.',
+      deps.docusaurus ? 'Docusaurus detected.' : null,
+      ctx.files.includes('mkdocs.yml') ? 'MkDocs detected.' : null,
+    ]);
+  }
+
+  // Security-focused detection
+  const hasAuthDeps = deps.bcrypt || deps.jsonwebtoken || deps.passport || deps['next-auth'] ||
+    deps['@auth/core'] || deps['lucia'] || deps['better-auth'];
+  const isSecurityFocused = (hasSecurityPolicy || hasAuthDeps) && hasBackend;
+  if (isSecurityFocused && !isRegulated) {
+    addMatch('security-focused', [
+      'Detected security-sensitive backend with auth dependencies.',
+      deps.jsonwebtoken ? 'JWT auth detected.' : null,
+      deps.passport ? 'Passport auth detected.' : null,
+    ]);
+  }
+
+  detectAdditionalDomainPacks({
+    ctx,
+    pkg,
+    deps,
+    stackKeys,
+    addMatch,
+    hasBackend,
+    hasFrontend,
+    hasInfra,
+    hasCi,
+    isEnterpriseGoverned,
+  });
+
+  const deduped = uniqueByKey(matches);
+  if (deduped.length === 0) {
+    return [{
+      ...DOMAIN_PACKS.find(item => item.key === 'baseline-general'),
+      matchReasons: ['No stronger domain signal detected yet.'],
+    }];
+  }
+  return deduped;
+}
+
+module.exports = {
+  DOMAIN_PACKS,
+  detectDomainPacks,
+};