npm - @neurcode-ai/cli - Versions diffs - 0.9.64 → 0.9.66 - Mend

@neurcode-ai/cli 0.9.64 → 0.9.66

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (323) hide show

package/dist/commands/remediate-export.js ADDED Viewed

@@ -0,0 +1,283 @@
+"use strict";
+/**
+ * neurcode remediate-export
+ *
+ * Exports a structured, deterministic remediation payload for a governance finding.
+ * The payload is designed to be passed to an external AI coding assistant
+ * (Cursor, Claude, Codex, GitHub Copilot) for remediation.
+ *
+ * TRUST BOUNDARY:
+ *   Neurcode detects and exports. Your AI assistant remediates.
+ *   This command never modifies any file.
+ *
+ * Usage:
+ *   neurcode remediate-export --finding <id>
+ *   neurcode remediate-export --finding-index 0
+ *   neurcode remediate-export --all
+ *   neurcode remediate-export --finding <id> --format mcp
+ *   neurcode remediate-export --finding <id> --out ./payload.json
+ *   neurcode remediate-export --finding <id> --copy
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.remediateExportCommand = remediateExportCommand;
+const fs_1 = require("fs");
+const path_1 = require("path");
+const crypto_1 = require("crypto");
+const child_process_1 = require("child_process");
+const cli_json_1 = require("../utils/cli-json");
+const chalk = (0, cli_json_1.loadChalk)();
+// ── Trust boundary statement — fixed, never changes ──────────────────────────
+const TRUST_BOUNDARY_STATEMENT = 'Neurcode deterministically detects and governs. ' +
+    'Your AI coding assistant (Cursor, Claude, Codex, GitHub Copilot) performs remediation. ' +
+    'Neurcode never autonomously modifies production code.';
+// ── Remediation category map — deterministic, ruleId-keyed ───────────────────
+const REMEDIATION_CATEGORY = {
+    PY003: 'exception-handling',
+    PY005: 'input-validation',
+    PY001: 'async-lifecycle',
+    PY006: 'async-lifecycle',
+    PY007: 'resource-lifecycle',
+    PY008: 'retry-resilience',
+    PY009: 'security',
+    PY010: 'resource-lifecycle',
+    PY011: 'thread-lifecycle',
+    PY012: 'async-lifecycle',
+    PY013: 'correctness',
+    PY014: 'retry-resilience',
+    SR001: 'exception-handling',
+    SR002: 'data-flow',
+    SR003: 'resource-lifecycle',
+    SR004: 'input-validation',
+    SR009: 'retry-resilience',
+    SR010: 'retry-resilience',
+    DS001: 'distributed-consistency',
+    'potential-secret-default': 'security',
+    'potential-secret-high': 'security',
+};
+// ── Suggested prompt hint per category — advisory, never prescriptive ─────────
+const PROMPT_HINT = {
+    'exception-handling': 'The finding identifies an exception handling pattern that silently swallows errors. ' +
+        'Remediation should ensure exceptions are re-raised or converted to structured error responses.',
+    'input-validation': 'The finding identifies a missing input validation boundary. ' +
+        'Remediation should add schema validation (e.g., Pydantic model) before processing the input.',
+    'async-lifecycle': 'The finding identifies an async pattern that may cause silent failures or event loop blocking. ' +
+        'Remediation should ensure async tasks are tracked and exceptions are handled.',
+    'resource-lifecycle': 'The finding identifies a resource (session, connection, thread) that may not be properly closed. ' +
+        'Remediation should use context managers or explicit cleanup in finally blocks.',
+    'thread-lifecycle': 'The finding identifies a thread created without daemon=True or without a stored reference. ' +
+        'Remediation should set daemon=True and store the thread reference for join() on shutdown.',
+    'retry-resilience': 'The finding identifies a retry pattern without exponential backoff or a thundering-herd risk. ' +
+        'Remediation should implement exponential backoff with jitter.',
+    'security': 'The finding identifies a security-sensitive pattern (hardcoded credential, unsafe deserialization). ' +
+        'Remediation must use environment variables, secret managers, or safe alternatives.',
+    'correctness': 'The finding identifies a correctness issue (e.g., mutable default argument). ' +
+        'Remediation should follow standard Python idioms to avoid shared mutable state.',
+    'distributed-consistency': 'The finding identifies a distributed consistency issue. ' +
+        'Remediation should add compensating logic, idempotency, or saga rollback.',
+    'data-flow': 'The finding identifies a data flow issue (unbounded collection, leaking state). ' +
+        'Remediation should add bounds or explicit cleanup.',
+};
+async function remediateExportCommand(options) {
+    const projectRoot = process.cwd();
+    const lastVerifyPath = (0, path_1.join)(projectRoot, '.neurcode', 'last-verify-output.json');
+    if (!(0, fs_1.existsSync)(lastVerifyPath)) {
+        console.error(chalk.red('✗ No verify output found.'));
+        console.error(chalk.dim('  Run: neurcode verify --policy-only --json'));
+        console.error(chalk.dim('  The last verify output must exist at .neurcode/last-verify-output.json'));
+        process.exit(1);
+    }
+    let verifyOutput;
+    try {
+        verifyOutput = JSON.parse((0, fs_1.readFileSync)(lastVerifyPath, 'utf-8'));
+    }
+    catch {
+        console.error(chalk.red('✗ Could not parse .neurcode/last-verify-output.json'));
+        process.exit(1);
+    }
+    // Collect findings from verify output
+    const findings = collectFindings(verifyOutput);
+    if (findings.length === 0) {
+        console.log(chalk.green('✅ No findings in last verify run. Nothing to export.'));
+        return;
+    }
+    // Select which findings to export
+    let selected = [];
+    if (options.all) {
+        selected = findings;
+    }
+    else if (options.findingIndex !== undefined) {
+        const idx = parseInt(options.findingIndex, 10);
+        if (isNaN(idx) || idx < 0 || idx >= findings.length) {
+            console.error(chalk.red(`✗ --finding-index ${options.findingIndex} out of range. ${findings.length} findings available.`));
+            process.exit(1);
+        }
+        selected = [findings[idx]];
+    }
+    else if (options.finding) {
+        const found = findings.filter((f) => (f.id ?? f.findingId ?? '') === options.finding ||
+            String(f.findingId ?? f.id ?? '').startsWith(options.finding));
+        if (found.length === 0) {
+            console.error(chalk.red(`✗ Finding "${options.finding}" not found in last verify output.`));
+            console.error(chalk.dim(`  Available IDs:`));
+            findings.slice(0, 10).forEach((f) => console.error(chalk.dim(`    ${f.id ?? f.findingId ?? '(no id)'} — ${f.ruleId ?? f.rule ?? '?'} @ ${f.file ?? f.filePath ?? '?'}`)));
+            process.exit(1);
+        }
+        selected = found;
+    }
+    else {
+        // Default: export index 0 with a prompt
+        console.log(chalk.dim(`No finding specified. Exporting finding at index 0. Use --finding-index N or --all.\n`));
+        selected = [findings[0]];
+    }
+    const format = options.format ?? 'json';
+    const replayChecksum = verifyOutput.replayChecksum ?? null;
+    const replayMode = verifyOutput.replayMode ?? null;
+    const payloads = selected.map((finding) => buildPayload(finding, verifyOutput, projectRoot, replayChecksum, replayMode, format));
+    const output = payloads.length === 1
+        ? JSON.stringify(format === 'mcp' ? payloads[0].mcpEnvelope : payloads[0], null, 2)
+        : JSON.stringify(format === 'mcp' ? payloads.map(p => p.mcpEnvelope) : payloads, null, 2);
+    // Write to file or stdout
+    if (options.out) {
+        const outPath = (0, path_1.resolve)(projectRoot, options.out);
+        (0, fs_1.writeFileSync)(outPath, output, 'utf-8');
+        console.log(chalk.green(`✅ Remediation export written to ${outPath}`));
+    }
+    else {
+        console.log(output);
+    }
+    // Copy to clipboard
+    if (options.copy) {
+        try {
+            (0, child_process_1.execSync)('pbcopy', { input: output });
+            console.error(chalk.green('\n✅ Remediation payload copied to clipboard.'));
+        }
+        catch {
+            console.error(chalk.yellow('\n⚠  --copy failed (pbcopy not available on this system).'));
+        }
+    }
+    // Print trust boundary reminder
+    if (!options.json) {
+        console.error(chalk.dim('\n─────────────────────────────────────────────────────────'));
+        console.error(chalk.cyan('  Trust Boundary'));
+        console.error(chalk.dim('  Neurcode detects. Your AI assistant remediates.'));
+        console.error(chalk.dim('  Pass this payload to Cursor, Claude, Codex, or any provider.'));
+        console.error(chalk.dim('  Neurcode will re-verify after remediation.'));
+        console.error(chalk.dim('─────────────────────────────────────────────────────────\n'));
+    }
+}
+// ── Builders ──────────────────────────────────────────────────────────────────
+function collectFindings(verifyOutput) {
+    // Try multiple possible locations in verify output shape
+    const govEnvelope = verifyOutput.governanceVerification?.findings ?? [];
+    const violations = verifyOutput.violations ?? [];
+    const blockingItems = verifyOutput.blockingItems ?? [];
+    const advisoryItems = verifyOutput.advisoryItems ?? [];
+    if (govEnvelope.length > 0)
+        return govEnvelope;
+    return [...violations, ...blockingItems, ...advisoryItems];
+}
+function buildPayload(finding, verifyOutput, projectRoot, replayChecksum, replayMode, format) {
+    const ruleId = finding.ruleId ?? finding.rule ?? finding.structuralMetadata?.ruleId ?? 'UNKNOWN';
+    const filePath = finding.filePath ?? finding.file ?? finding.evidence?.filePath ?? '';
+    const line = finding.line ?? finding.evidence?.line ?? null;
+    const column = finding.column ?? finding.evidence?.column ?? null;
+    const severity = finding.severity ?? 'BLOCKING';
+    const determinismClass = finding.determinismClassification ?? finding.determinism ?? 'deterministic-structural';
+    const findingId = finding.id ?? finding.findingId ?? '';
+    const ruleName = finding.title ?? finding.ruleName ?? finding.name ?? ruleId;
+    const operationalExplanation = finding.operationalImplication ?? finding.message ?? finding.explanation ?? '';
+    // Extract code span from file if it exists
+    const { codeSpan, surroundingContext } = extractCodeSpan(projectRoot, filePath, line);
+    // Deterministic export ID
+    const exportId = (0, crypto_1.createHash)('sha256')
+        .update(`${findingId}|${filePath}|${line ?? 0}|${ruleId}`)
+        .digest('hex')
+        .slice(0, 32);
+    // Finding graph hash (deterministic over finding identity fields)
+    const findingGraphHash = (0, crypto_1.createHash)('sha256')
+        .update(`${ruleId}|${filePath}|${line ?? 0}|${severity}|${determinismClass}`)
+        .digest('hex')
+        .slice(0, 16);
+    const remediationCategory = REMEDIATION_CATEGORY[ruleId] ?? 'general';
+    const suggestedPromptHint = PROMPT_HINT[remediationCategory] ?? PROMPT_HINT['correctness'];
+    const policyViolations = [];
+    if (finding.structuralMetadata?.policyRef)
+        policyViolations.push(finding.structuralMetadata.policyRef);
+    if (finding.policy)
+        policyViolations.push(finding.policy);
+    const payload = {
+        exportId,
+        exportedAt: new Date().toISOString(),
+        neurcodeVersion: '0.9.66',
+        schemaVersion: '2026-05-12',
+        findingId,
+        ruleId,
+        ruleName,
+        severity,
+        determinismClass,
+        filePath,
+        line,
+        column,
+        codeSpan,
+        surroundingContext,
+        policyViolations,
+        operationalExplanation,
+        remediationCategory,
+        trustBoundaryStatement: TRUST_BOUNDARY_STATEMENT,
+        replayChecksum,
+        replayMode,
+        findingGraphHash,
+        provenanceRunId: finding.provenanceMetadata?.planId ?? null,
+        provenanceAt: finding.provenanceMetadata?.generatedAt ?? null,
+        suggestedPromptHint,
+    };
+    if (format === 'mcp') {
+        payload.mcpEnvelope = {
+            type: 'neurcode/remediation-request',
+            version: '1.0',
+            trust: 'deterministic-governance',
+            finding: {
+                id: findingId,
+                ruleId,
+                severity,
+                file: filePath,
+                line,
+                codeSpan,
+            },
+            context: surroundingContext,
+            constraint: TRUST_BOUNDARY_STATEMENT,
+            promptHint: suggestedPromptHint,
+        };
+    }
+    return payload;
+}
+function extractCodeSpan(projectRoot, filePath, line) {
+    if (!filePath || line === null) {
+        return { codeSpan: '(file or line not available)', surroundingContext: '' };
+    }
+    const fullPath = (0, path_1.resolve)(projectRoot, filePath);
+    if (!(0, fs_1.existsSync)(fullPath)) {
+        return { codeSpan: `(file not found: ${filePath})`, surroundingContext: '' };
+    }
+    try {
+        const content = (0, fs_1.readFileSync)(fullPath, 'utf-8');
+        const lines = content.split('\n');
+        const zeroIdx = line - 1;
+        const targetLine = lines[zeroIdx] ?? '';
+        const contextStart = Math.max(0, zeroIdx - 5);
+        const contextEnd = Math.min(lines.length - 1, zeroIdx + 5);
+        const contextLines = [];
+        for (let i = contextStart; i <= contextEnd; i++) {
+            const prefix = i === zeroIdx ? '→ ' : '  ';
+            contextLines.push(`${String(i + 1).padStart(4)} ${prefix}${lines[i]}`);
+        }
+        return {
+            codeSpan: targetLine.trim(),
+            surroundingContext: contextLines.join('\n'),
+        };
+    }
+    catch {
+        return { codeSpan: '(could not read file)', surroundingContext: '' };
+    }
+}
+//# sourceMappingURL=remediate-export.js.map

package/dist/commands/remediate-export.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"remediate-export.js","sourceRoot":"","sources":["../../src/commands/remediate-export.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;GAkBG;;AAuJH,wDAoGC;AAzPD,2BAA6D;AAC7D,+BAAqC;AACrC,mCAAoC;AACpC,iDAAyC;AACzC,gDAA8C;AAE9C,MAAM,KAAK,GAAG,IAAA,oBAAS,GAAE,CAAC;AAE1B,gFAAgF;AAChF,MAAM,wBAAwB,GAC5B,kDAAkD;IAClD,yFAAyF;IACzF,uDAAuD,CAAC;AAE1D,gFAAgF;AAChF,MAAM,oBAAoB,GAA2B;IACnD,KAAK,EAAE,oBAAoB;IAC3B,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,iBAAiB;IACxB,KAAK,EAAE,iBAAiB;IACxB,KAAK,EAAE,oBAAoB;IAC3B,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,UAAU;IACjB,KAAK,EAAE,oBAAoB;IAC3B,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,iBAAiB;IACxB,KAAK,EAAE,aAAa;IACpB,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,oBAAoB;IAC3B,KAAK,EAAE,WAAW;IAClB,KAAK,EAAE,oBAAoB;IAC3B,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,kBAAkB;IACzB,KAAK,EAAE,yBAAyB;IAChC,0BAA0B,EAAE,UAAU;IACtC,uBAAuB,EAAE,UAAU;CACpC,CAAC;AAEF,iFAAiF;AACjF,MAAM,WAAW,GAA2B;IAC1C,oBAAoB,EAClB,sFAAsF;QACtF,gGAAgG;IAClG,kBAAkB,EAChB,8DAA8D;QAC9D,8FAA8F;IAChG,iBAAiB,EACf,iGAAiG;QACjG,+EAA+E;IACjF,oBAAoB,EAClB,mGAAmG;QACnG,gFAAgF;IAClF,kBAAkB,EAChB,6FAA6F;QAC7F,2FAA2F;IAC7F,kBAAkB,EAChB,gGAAgG;QAChG,+DAA+D;IACjE,UAAU,EACR,sGAAsG;QACtG,oFAAoF;IACtF,aAAa,EACX,+EAA+E;QAC/E,iFAAiF;IACnF,yBAAyB,EACvB,0DAA0D;QAC1D,2EAA2E;IAC7E,WAAW,EACT,kFAAkF;QAClF,oDAAoD;CACvD,CAAC;AA8EK,KAAK,UAAU,sBAAsB,CAAC,OAA+B;IAC1E,MAAM,WAAW,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAClC,MAAM,cAAc,GAAG,IAAA,WAAI,EAAC,WAAW,EAAE,WAAW,EAAE,yBAAyB,CAAC,CAAC;IAEjF,IAAI,CAAC,IAAA,eAAU,EAAC,cAAc,CAAC,EAAE,CAAC;QAChC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC,CAAC;QACtD,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC,CAAC;QACxE,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,0EAA0E,CAAC,CAAC,CAAC;QACrG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,YAAqC,CAAC;IAC1C,IAAI,CAAC;QACH,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,IAAA,iBAAY,EAAC,cAAc,EAAE,OAAO,CAAC,CAAC,CAAC;IACnE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,qDAAqD,CAAC,CAAC,CAAC;QAChF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,sCAAsC;IACtC,MAAM,QAAQ,GAAG,eAAe,CAAC,YAAY,CAAC,CAAC;IAE/C,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,sDAAsD,CAAC,CAAC,CAAC;QACjF,OAAO;IACT,CAAC;IAED,kCAAkC;IAClC,IAAI,QAAQ,GAAc,EAAE,CAAC;IAE7B,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QAChB,QAAQ,GAAG,QAAQ,CAAC;IACtB,CAAC;SAAM,IAAI,OAAO,CAAC,YAAY,KAAK,SAAS,EAAE,CAAC;QAC9C,MAAM,GAAG,GAAG,QAAQ,CAAC,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC;QAC/C,IAAI,KAAK,CAAC,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,EAAE,CAAC;YACpD,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,qBAAqB,OAAO,CAAC,YAAY,kBAAkB,QAAQ,CAAC,MAAM,sBAAsB,CAAC,CAAC,CAAC;YAC3H,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,QAAQ,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7B,CAAC;SAAM,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;QAC3B,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAM,EAAE,EAAE,CACvC,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,SAAS,IAAI,EAAE,CAAC,KAAK,OAAO,CAAC,OAAO;YAC/C,MAAM,CAAC,CAAC,CAAC,SAAS,IAAI,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,OAAQ,CAAC,CAC/D,CAAC;QACF,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,OAAO,CAAC,OAAO,oCAAoC,CAAC,CAAC,CAAC;YAC5F,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,kBAAkB,CAAC,CAAC,CAAC;YAC7C,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,CAAC,CAAM,EAAE,EAAE,CACvC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,SAAS,IAAI,SAAS,MAAM,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,IAAI,IAAI,GAAG,MAAM,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,IAAI,GAAG,EAAE,CAAC,CAAC,CACpI,CAAC;YACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,QAAQ,GAAG,KAAK,CAAC;IACnB,CAAC;SAAM,CAAC;QACN,wCAAwC;QACxC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,uFAAuF,CAAC,CAAC,CAAC;QAChH,QAAQ,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAC3B,CAAC;IAED,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,IAAI,MAAM,CAAC;IACxC,MAAM,cAAc,GAAI,YAAY,CAAC,cAAgC,IAAI,IAAI,CAAC;IAC9E,MAAM,UAAU,GAAI,YAAY,CAAC,UAA4B,IAAI,IAAI,CAAC;IAEtE,MAAM,QAAQ,GAA+B,QAAQ,CAAC,GAAG,CAAC,CAAC,OAAY,EAAE,EAAE,CACzE,YAAY,CAAC,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,cAAc,EAAE,UAAU,EAAE,MAAM,CAAC,CACrF,CAAC;IAEF,MAAM,MAAM,GACV,QAAQ,CAAC,MAAM,KAAK,CAAC;QACnB,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC;QACnF,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,KAAK,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;IAE9F,0BAA0B;IAC1B,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QAChB,MAAM,OAAO,GAAG,IAAA,cAAO,EAAC,WAAW,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC;QAClD,IAAA,kBAAa,EAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;QACxC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,mCAAmC,OAAO,EAAE,CAAC,CAAC,CAAC;IACzE,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IACtB,CAAC;IAED,oBAAoB;IACpB,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;QACjB,IAAI,CAAC;YACH,IAAA,wBAAQ,EAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;YACtC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,8CAA8C,CAAC,CAAC,CAAC;QAC7E,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,2DAA2D,CAAC,CAAC,CAAC;QAC3F,CAAC;IACH,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,6DAA6D,CAAC,CAAC,CAAC;QACxF,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC;QAC9C,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC,CAAC;QAC9E,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,gEAAgE,CAAC,CAAC,CAAC;QAC3F,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,8CAA8C,CAAC,CAAC,CAAC;QACzE,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,6DAA6D,CAAC,CAAC,CAAC;IAC1F,CAAC;AACH,CAAC;AAED,iFAAiF;AAEjF,SAAS,eAAe,CAAC,YAAqC;IAC5D,yDAAyD;IACzD,MAAM,WAAW,GAAI,YAAY,CAAC,sBAA8B,EAAE,QAAQ,IAAI,EAAE,CAAC;IACjF,MAAM,UAAU,GAAI,YAAY,CAAC,UAAoB,IAAI,EAAE,CAAC;IAC5D,MAAM,aAAa,GAAI,YAAY,CAAC,aAAuB,IAAI,EAAE,CAAC;IAClE,MAAM,aAAa,GAAI,YAAY,CAAC,aAAuB,IAAI,EAAE,CAAC;IAElE,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,WAAW,CAAC;IAC/C,OAAO,CAAC,GAAG,UAAU,EAAE,GAAG,aAAa,EAAE,GAAG,aAAa,CAAC,CAAC;AAC7D,CAAC;AAED,SAAS,YAAY,CACnB,OAAY,EACZ,YAAqC,EACrC,WAAmB,EACnB,cAA6B,EAC7B,UAAyB,EACzB,MAAsB;IAEtB,MAAM,MAAM,GAAW,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,IAAI,IAAI,OAAO,CAAC,kBAAkB,EAAE,MAAM,IAAI,SAAS,CAAC;IACzG,MAAM,QAAQ,GAAW,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,IAAI,IAAI,OAAO,CAAC,QAAQ,EAAE,QAAQ,IAAI,EAAE,CAAC;IAC9F,MAAM,IAAI,GAAkB,OAAO,CAAC,IAAI,IAAI,OAAO,CAAC,QAAQ,EAAE,IAAI,IAAI,IAAI,CAAC;IAC3E,MAAM,MAAM,GAAkB,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,QAAQ,EAAE,MAAM,IAAI,IAAI,CAAC;IACjF,MAAM,QAAQ,GAAW,OAAO,CAAC,QAAQ,IAAI,UAAU,CAAC;IACxD,MAAM,gBAAgB,GAAW,OAAO,CAAC,yBAAyB,IAAI,OAAO,CAAC,WAAW,IAAI,0BAA0B,CAAC;IACxH,MAAM,SAAS,GAAW,OAAO,CAAC,EAAE,IAAI,OAAO,CAAC,SAAS,IAAI,EAAE,CAAC;IAChE,MAAM,QAAQ,GAAW,OAAO,CAAC,KAAK,IAAI,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,IAAI,IAAI,MAAM,CAAC;IACrF,MAAM,sBAAsB,GAC1B,OAAO,CAAC,sBAAsB,IAAI,OAAO,CAAC,OAAO,IAAI,OAAO,CAAC,WAAW,IAAI,EAAE,CAAC;IAEjF,2CAA2C;IAC3C,MAAM,EAAE,QAAQ,EAAE,kBAAkB,EAAE,GAAG,eAAe,CAAC,WAAW,EAAE,QAAQ,EAAE,IAAI,CAAC,CAAC;IAEtF,0BAA0B;IAC1B,MAAM,QAAQ,GAAG,IAAA,mBAAU,EAAC,QAAQ,CAAC;SAClC,MAAM,CAAC,GAAG,SAAS,IAAI,QAAQ,IAAI,IAAI,IAAI,CAAC,IAAI,MAAM,EAAE,CAAC;SACzD,MAAM,CAAC,KAAK,CAAC;SACb,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAEhB,kEAAkE;IAClE,MAAM,gBAAgB,GAAG,IAAA,mBAAU,EAAC,QAAQ,CAAC;SAC1C,MAAM,CAAC,GAAG,MAAM,IAAI,QAAQ,IAAI,IAAI,IAAI,CAAC,IAAI,QAAQ,IAAI,gBAAgB,EAAE,CAAC;SAC5E,MAAM,CAAC,KAAK,CAAC;SACb,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAEhB,MAAM,mBAAmB,GAAG,oBAAoB,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC;IACtE,MAAM,mBAAmB,GAAG,WAAW,CAAC,mBAAmB,CAAC,IAAI,WAAW,CAAC,aAAa,CAAC,CAAC;IAE3F,MAAM,gBAAgB,GAAa,EAAE,CAAC;IACtC,IAAI,OAAO,CAAC,kBAAkB,EAAE,SAAS;QAAE,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;IACvG,IAAI,OAAO,CAAC,MAAM;QAAE,gBAAgB,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;IAE1D,MAAM,OAAO,GAA6B;QACxC,QAAQ;QACR,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACpC,eAAe,EAAE,QAAQ;QACzB,aAAa,EAAE,YAAY;QAC3B,SAAS;QACT,MAAM;QACN,QAAQ;QACR,QAAQ;QACR,gBAAgB;QAChB,QAAQ;QACR,IAAI;QACJ,MAAM;QACN,QAAQ;QACR,kBAAkB;QAClB,gBAAgB;QAChB,sBAAsB;QACtB,mBAAmB;QACnB,sBAAsB,EAAE,wBAAwB;QAChD,cAAc;QACd,UAAU;QACV,gBAAgB;QAChB,eAAe,EAAG,OAAO,CAAC,kBAAkB,EAAE,MAAwB,IAAI,IAAI;QAC9E,YAAY,EAAG,OAAO,CAAC,kBAAkB,EAAE,WAA6B,IAAI,IAAI;QAChF,mBAAmB;KACpB,CAAC;IAEF,IAAI,MAAM,KAAK,KAAK,EAAE,CAAC;QACrB,OAAO,CAAC,WAAW,GAAG;YACpB,IAAI,EAAE,8BAA8B;YACpC,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,0BAA0B;YACjC,OAAO,EAAE;gBACP,EAAE,EAAE,SAAS;gBACb,MAAM;gBACN,QAAQ;gBACR,IAAI,EAAE,QAAQ;gBACd,IAAI;gBACJ,QAAQ;aACT;YACD,OAAO,EAAE,kBAAkB;YAC3B,UAAU,EAAE,wBAAwB;YACpC,UAAU,EAAE,mBAAmB;SAChC,CAAC;IACJ,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,eAAe,CACtB,WAAmB,EACnB,QAAgB,EAChB,IAAmB;IAEnB,IAAI,CAAC,QAAQ,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;QAC/B,OAAO,EAAE,QAAQ,EAAE,8BAA8B,EAAE,kBAAkB,EAAE,EAAE,EAAE,CAAC;IAC9E,CAAC;IAED,MAAM,QAAQ,GAAG,IAAA,cAAO,EAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;IAChD,IAAI,CAAC,IAAA,eAAU,EAAC,QAAQ,CAAC,EAAE,CAAC;QAC1B,OAAO,EAAE,QAAQ,EAAE,oBAAoB,QAAQ,GAAG,EAAE,kBAAkB,EAAE,EAAE,EAAE,CAAC;IAC/E,CAAC;IAED,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAClC,MAAM,OAAO,GAAG,IAAI,GAAG,CAAC,CAAC;QAEzB,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QACxC,MAAM,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;QAC9C,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;QAE3D,MAAM,YAAY,GAAa,EAAE,CAAC;QAClC,KAAK,IAAI,CAAC,GAAG,YAAY,EAAE,CAAC,IAAI,UAAU,EAAE,CAAC,EAAE,EAAE,CAAC;YAChD,MAAM,MAAM,GAAG,CAAC,KAAK,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;YAC3C,YAAY,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACzE,CAAC;QAED,OAAO;YACL,QAAQ,EAAE,UAAU,CAAC,IAAI,EAAE;YAC3B,kBAAkB,EAAE,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC;SAC5C,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,QAAQ,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,EAAE,EAAE,CAAC;IACvE,CAAC;AACH,CAAC"}

package/dist/commands/remediate-governance.d.ts ADDED Viewed

@@ -0,0 +1,54 @@
+/**
+ * Governance-aligned remediation subcommands for the Neurcode CLI.
+ *
+ * These implement the provider-agnostic remediation architecture:
+ *   neurcode remediate export    → export GovernanceRemediationRequest JSON
+ *   neurcode remediate validate  → validate a patch against governance rules
+ *   neurcode remediate status    → show remediation artifact status
+ *
+ * These are SEPARATE from the autonomous remediation loop in remediate.ts.
+ * Governance remains deterministic throughout.
+ * LLMs are optional and advisory — never autonomous.
+ */
+export interface GovernanceRemediateExportOptions {
+    findingId?: string;
+    findingIndex?: number;
+    verifyOutputFile?: string;
+    projectRoot?: string;
+    outputFile?: string;
+    json?: boolean;
+}
+/**
+ * neurcode remediate export
+ *
+ * Reads governance findings from a verify output JSON file and exports a
+ * GovernanceRemediationRequest artifact for the selected finding.
+ * No provider is invoked. No files are modified.
+ */
+export declare function remediateExportCommand(options?: GovernanceRemediateExportOptions): Promise<void>;
+export interface GovernanceRemediateValidateOptions {
+    requestFile: string;
+    responseDiff?: string;
+    responseFile?: string;
+    projectRoot?: string;
+    json?: boolean;
+}
+/**
+ * neurcode remediate validate
+ *
+ * Validates an LLM-generated (or manually written) patch against the
+ * deterministic governance validation pipeline.
+ * Never modifies files. Output is a validation receipt (append-only).
+ */
+export declare function remediateValidateCommand(options: GovernanceRemediateValidateOptions): Promise<void>;
+export interface GovernanceRemediateStatusOptions {
+    projectRoot?: string;
+    json?: boolean;
+}
+/**
+ * neurcode remediate status
+ *
+ * Shows the status of all remediation artifacts in .neurcode/remediation/.
+ */
+export declare function remediateStatusCommand(options?: GovernanceRemediateStatusOptions): Promise<void>;
+//# sourceMappingURL=remediate-governance.d.ts.map

package/dist/commands/remediate-governance.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"remediate-governance.d.ts","sourceRoot":"","sources":["../../src/commands/remediate-governance.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AA8BH,MAAM,WAAW,gCAAgC;IAC/C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED;;;;;;GAMG;AACH,wBAAsB,sBAAsB,CAAC,OAAO,GAAE,gCAAqC,GAAG,OAAO,CAAC,IAAI,CAAC,CA+H1G;AAID,MAAM,WAAW,kCAAkC;IACjD,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED;;;;;;GAMG;AACH,wBAAsB,wBAAwB,CAAC,OAAO,EAAE,kCAAkC,GAAG,OAAO,CAAC,IAAI,CAAC,CAgJzG;AAID,MAAM,WAAW,gCAAgC;IAC/C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED;;;;GAIG;AACH,wBAAsB,sBAAsB,CAAC,OAAO,GAAE,gCAAqC,GAAG,OAAO,CAAC,IAAI,CAAC,CA6D1G"}