npm - @nimiplatform/nimi-coding - Versions diffs - 0.1.0 - Mend

@nimiplatform/nimi-coding 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (186) hide show

package/LICENSE +21 -0
package/README.md +348 -0
package/adapters/README.md +25 -0
package/adapters/claude/README.md +89 -0
package/adapters/claude/profile.yaml +70 -0
package/adapters/codex/README.md +53 -0
package/adapters/codex/profile.yaml +78 -0
package/adapters/oh-my-codex/README.md +185 -0
package/adapters/oh-my-codex/profile.yaml +46 -0
package/bin/nimicoding.mjs +6 -0
package/cli/commands/admit-high-risk-decision.mjs +108 -0
package/cli/commands/audit-sweep.mjs +341 -0
package/cli/commands/blueprint-audit.mjs +91 -0
package/cli/commands/clear.mjs +168 -0
package/cli/commands/closeout.mjs +183 -0
package/cli/commands/decide-high-risk-execution.mjs +124 -0
package/cli/commands/doctor.mjs +53 -0
package/cli/commands/generate-spec-derived-docs.mjs +131 -0
package/cli/commands/handoff.mjs +123 -0
package/cli/commands/ingest-high-risk-execution.mjs +95 -0
package/cli/commands/review-high-risk-execution.mjs +95 -0
package/cli/commands/start.mjs +717 -0
package/cli/commands/topic-formatters.mjs +382 -0
package/cli/commands/topic-goal.mjs +33 -0
package/cli/commands/topic-options-shared.mjs +27 -0
package/cli/commands/topic-options-workflow.mjs +767 -0
package/cli/commands/topic-options.mjs +626 -0
package/cli/commands/topic-runner.mjs +169 -0
package/cli/commands/topic.mjs +795 -0
package/cli/commands/validate-acceptance.mjs +5 -0
package/cli/commands/validate-ai-governance.mjs +214 -0
package/cli/commands/validate-execution-packet.mjs +5 -0
package/cli/commands/validate-orchestration-state.mjs +5 -0
package/cli/commands/validate-prompt.mjs +5 -0
package/cli/commands/validate-spec-audit.mjs +27 -0
package/cli/commands/validate-spec-governance.mjs +124 -0
package/cli/commands/validate-spec-tree.mjs +27 -0
package/cli/commands/validate-worker-output.mjs +5 -0
package/cli/constants.mjs +489 -0
package/cli/help.mjs +134 -0
package/cli/index.mjs +103 -0
package/cli/lib/adapter-profiles.mjs +403 -0
package/cli/lib/audit-execution.mjs +52 -0
package/cli/lib/audit-sweep-runtime/admissions.mjs +381 -0
package/cli/lib/audit-sweep-runtime/audit-validity.mjs +333 -0
package/cli/lib/audit-sweep-runtime/chunks.mjs +697 -0
package/cli/lib/audit-sweep-runtime/closeout.mjs +144 -0
package/cli/lib/audit-sweep-runtime/codex-auditor-evidence.mjs +639 -0
package/cli/lib/audit-sweep-runtime/codex-auditor.mjs +515 -0
package/cli/lib/audit-sweep-runtime/common.mjs +329 -0
package/cli/lib/audit-sweep-runtime/coverage-quality.mjs +172 -0
package/cli/lib/audit-sweep-runtime/evidence-assignment.mjs +152 -0
package/cli/lib/audit-sweep-runtime/format.mjs +57 -0
package/cli/lib/audit-sweep-runtime/ingest.mjs +486 -0
package/cli/lib/audit-sweep-runtime/inventory-spec-chunks.mjs +198 -0
package/cli/lib/audit-sweep-runtime/inventory.mjs +728 -0
package/cli/lib/audit-sweep-runtime/ledger.mjs +315 -0
package/cli/lib/audit-sweep-runtime/p0p1-profile.mjs +101 -0
package/cli/lib/audit-sweep-runtime/remediation.mjs +349 -0
package/cli/lib/audit-sweep-runtime/rerun.mjs +129 -0
package/cli/lib/audit-sweep-runtime/risk-budget.mjs +300 -0
package/cli/lib/audit-sweep-runtime/status.mjs +62 -0
package/cli/lib/audit-sweep-runtime/validators-ledger.mjs +215 -0
package/cli/lib/audit-sweep-runtime/validators.mjs +758 -0
package/cli/lib/audit-sweep.mjs +18 -0
package/cli/lib/authority-convergence.mjs +309 -0
package/cli/lib/blueprint-audit.mjs +370 -0
package/cli/lib/bootstrap.mjs +228 -0
package/cli/lib/closeout.mjs +623 -0
package/cli/lib/codex-sdk-runner.mjs +76 -0
package/cli/lib/contracts.mjs +180 -0
package/cli/lib/doctor.mjs +18 -0
package/cli/lib/entrypoints.mjs +274 -0
package/cli/lib/external-execution.mjs +101 -0
package/cli/lib/fs-helpers.mjs +33 -0
package/cli/lib/handoff.mjs +785 -0
package/cli/lib/high-risk-admission.mjs +442 -0
package/cli/lib/high-risk-decision.mjs +324 -0
package/cli/lib/high-risk-ingest.mjs +317 -0
package/cli/lib/high-risk-review.mjs +263 -0
package/cli/lib/internal/contracts-loaders.mjs +132 -0
package/cli/lib/internal/contracts-parse-high-risk.mjs +131 -0
package/cli/lib/internal/contracts-parse.mjs +457 -0
package/cli/lib/internal/contracts-validators.mjs +398 -0
package/cli/lib/internal/doctor-bootstrap-surface.mjs +359 -0
package/cli/lib/internal/doctor-delegated-surface.mjs +256 -0
package/cli/lib/internal/doctor-finalize.mjs +385 -0
package/cli/lib/internal/doctor-format.mjs +286 -0
package/cli/lib/internal/doctor-inspectors.mjs +294 -0
package/cli/lib/internal/doctor-state.mjs +205 -0
package/cli/lib/internal/governance/ai/ai-context-budget-core.mjs +315 -0
package/cli/lib/internal/governance/ai/ai-structure-budget-core.mjs +358 -0
package/cli/lib/internal/governance/ai/check-agents-freshness.mjs +155 -0
package/cli/lib/internal/governance/ai/check-high-risk-doc-metadata-core.mjs +173 -0
package/cli/lib/internal/governance/config.mjs +150 -0
package/cli/lib/internal/governance/runner.mjs +35 -0
package/cli/lib/internal/governance/shared/read-yaml-with-fragments.mjs +49 -0
package/cli/lib/internal/validators-artifacts.mjs +515 -0
package/cli/lib/internal/validators-shared.mjs +28 -0
package/cli/lib/internal/validators-spec-helpers.mjs +186 -0
package/cli/lib/internal/validators-spec.mjs +410 -0
package/cli/lib/shared.mjs +83 -0
package/cli/lib/topic-draft-packets.mjs +48 -0
package/cli/lib/topic-goal.mjs +361 -0
package/cli/lib/topic-runner.mjs +772 -0
package/cli/lib/topic.mjs +93 -0
package/cli/lib/ui.mjs +178 -0
package/cli/lib/validators.mjs +78 -0
package/cli/lib/value-helpers.mjs +24 -0
package/cli/lib/yaml-helpers.mjs +133 -0
package/cli/nimicoding.mjs +1 -0
package/cli/seeds/bootstrap.mjs +47 -0
package/config/audit-execution-artifacts.yaml +20 -0
package/config/bootstrap.yaml +6 -0
package/config/external-execution-artifacts.yaml +16 -0
package/config/host-adapter.yaml +30 -0
package/config/host-profile.yaml +29 -0
package/config/installer-evidence.yaml +31 -0
package/config/skill-installer.yaml +23 -0
package/config/skill-manifest.yaml +46 -0
package/config/skills.yaml +30 -0
package/config/spec-generation-inputs.yaml +25 -0
package/contracts/acceptance.schema.yaml +16 -0
package/contracts/admission-checklist.schema.yaml +15 -0
package/contracts/audit-chunk.schema.yaml +110 -0
package/contracts/audit-closeout.schema.yaml +51 -0
package/contracts/audit-finding.schema.yaml +61 -0
package/contracts/audit-ledger.schema.yaml +138 -0
package/contracts/audit-plan.schema.yaml +123 -0
package/contracts/audit-remediation-map.schema.yaml +51 -0
package/contracts/audit-rerun.schema.yaml +31 -0
package/contracts/audit-sweep-result.yaml +49 -0
package/contracts/authority-convergence-audit.schema.yaml +19 -0
package/contracts/closeout.schema.yaml +25 -0
package/contracts/decision-review.schema.yaml +16 -0
package/contracts/doc-spec-audit-result.yaml +19 -0
package/contracts/execution-packet.schema.yaml +49 -0
package/contracts/external-host-compatibility.yaml +22 -0
package/contracts/forbidden-shortcuts.catalog.yaml +23 -0
package/contracts/high-risk-admission.schema.yaml +23 -0
package/contracts/high-risk-execution-result.yaml +20 -0
package/contracts/orchestration-state.schema.yaml +41 -0
package/contracts/overflow-continuation.schema.yaml +12 -0
package/contracts/packet.schema.yaml +30 -0
package/contracts/pending-note.schema.yaml +17 -0
package/contracts/prompt.schema.yaml +12 -0
package/contracts/remediation.schema.yaml +16 -0
package/contracts/result.schema.yaml +24 -0
package/contracts/spec-generation-audit.schema.yaml +31 -0
package/contracts/spec-generation-inputs.schema.yaml +39 -0
package/contracts/spec-reconstruction-result.yaml +37 -0
package/contracts/topic-goal.schema.yaml +78 -0
package/contracts/topic-run-ledger.schema.yaml +72 -0
package/contracts/topic-step-decision.schema.yaml +45 -0
package/contracts/topic.schema.yaml +65 -0
package/contracts/true-close.schema.yaml +15 -0
package/contracts/wave.schema.yaml +29 -0
package/contracts/worker-output.schema.yaml +15 -0
package/methodology/audit-sweep-p0p1-recall.yaml +45 -0
package/methodology/authority-convergence-policy.yaml +42 -0
package/methodology/core.yaml +25 -0
package/methodology/four-closure-policy.yaml +28 -0
package/methodology/overflow-continuation-policy.yaml +14 -0
package/methodology/role-separation-policy.yaml +28 -0
package/methodology/skill-exchange-projection.yaml +114 -0
package/methodology/skill-handoff.yaml +34 -0
package/methodology/skill-installer-result.yaml +27 -0
package/methodology/skill-installer-summary-projection.yaml +181 -0
package/methodology/skill-runtime.yaml +23 -0
package/methodology/spec-reconstruction.yaml +63 -0
package/methodology/spec-target-truth-profile.yaml +53 -0
package/methodology/topic-lifecycle-report.yaml +144 -0
package/methodology/topic-lifecycle.yaml +37 -0
package/methodology/topic-naming-ontology.yaml +21 -0
package/methodology/topic-ontology.yaml +38 -0
package/methodology/topic-validation-policy.yaml +9 -0
package/methodology/wave-dag-policy.yaml +14 -0
package/package.json +50 -0
package/spec/_meta/command-gating-matrix.yaml +110 -0
package/spec/_meta/generate-drift-migration-checklist.yaml +155 -0
package/spec/_meta/governance-routing-cutover-checklist.yaml +35 -0
package/spec/_meta/phase2-impacted-surface-matrix.yaml +44 -0
package/spec/_meta/spec-authority-cutover-readiness.yaml +104 -0
package/spec/_meta/spec-tree-model.yaml +72 -0
package/spec/bootstrap-state.yaml +99 -0
package/spec/product-scope.yaml +56 -0

package/cli/lib/internal/contracts-validators.mjs ADDED Viewed

@@ -0,0 +1,398 @@
+import {
+  HIGH_RISK_ADMISSION_CONTRACT_REF,
+  SPEC_GENERATION_AUDIT_REF,
+} from "../../constants.mjs";
+import {
+  arraysEqual,
+  isIsoUtcTimestamp,
+  isPlainObject,
+} from "../value-helpers.mjs";
+const SPEC_RECONSTRUCTION_COVERAGE_SUMMARY_REQUIRED_FIELDS = [
+  "complete_files",
+  "partial_files",
+  "placeholder_files",
+];
+function validateRequiredFields(subject, requiredFields, label) {
+  const missingFields = requiredFields.filter((field) => !(field in subject));
+  if (missingFields.length > 0) {
+    return {
+      ok: false,
+      reason: `${label} is missing required fields: ${missingFields.join(", ")}`,
+    };
+  }
+  return null;
+}
+function validateSummaryEnvelope(summary, contract, verifiedAt, label) {
+  if (!isPlainObject(summary)) {
+    return {
+      ok: false,
+      reason: `${label} must be an object`,
+    };
+  }
+  const missingFields = validateRequiredFields(summary, contract.summaryRequiredFields, label);
+  if (missingFields) {
+    return missingFields;
+  }
+  if (typeof summary.summary !== "string" || summary.summary.trim().length === 0) {
+    return {
+      ok: false,
+      reason: `${label}.summary must be a non-empty string`,
+    };
+  }
+  if (!contract.summaryStatusEnum.includes(summary.status)) {
+    return {
+      ok: false,
+      reason: `${label}.status must be one of: ${contract.summaryStatusEnum.join(", ")}`,
+    };
+  }
+  if (!isIsoUtcTimestamp(summary.verified_at)) {
+    return {
+      ok: false,
+      reason: `${label}.verified_at must be an ISO-8601 UTC timestamp`,
+    };
+  }
+  if (verifiedAt && summary.verified_at !== verifiedAt) {
+    return {
+      ok: false,
+      reason: `${label}.verified_at must match the top-level verifiedAt`,
+    };
+  }
+  return null;
+}
+export function validateSpecReconstructionSummary(summary, contract, verifiedAt) {
+  const envelopeError = validateSummaryEnvelope(
+    summary,
+    contract,
+    verifiedAt,
+    "spec_reconstruction summary",
+  );
+  if (envelopeError) {
+    return envelopeError;
+  }
+  if (
+    !Array.isArray(summary.generated_paths)
+    || summary.generated_paths.some((entry) => typeof entry !== "string")
+  ) {
+    return {
+      ok: false,
+      reason: "spec_reconstruction summary.generated_paths must be an array of strings",
+    };
+  }
+  if (typeof summary.audit_ref !== "string" || summary.audit_ref !== SPEC_GENERATION_AUDIT_REF) {
+    return {
+      ok: false,
+      reason: `spec_reconstruction summary.audit_ref must be \`${SPEC_GENERATION_AUDIT_REF}\``,
+    };
+  }
+  if (!isPlainObject(summary.coverage_summary)) {
+    return {
+      ok: false,
+      reason: "spec_reconstruction summary.coverage_summary must be an object",
+    };
+  }
+  const missingCoverageFields = validateRequiredFields(
+    summary.coverage_summary,
+    SPEC_RECONSTRUCTION_COVERAGE_SUMMARY_REQUIRED_FIELDS,
+    "spec_reconstruction summary.coverage_summary",
+  );
+  if (missingCoverageFields) {
+    return missingCoverageFields;
+  }
+  for (const field of SPEC_RECONSTRUCTION_COVERAGE_SUMMARY_REQUIRED_FIELDS) {
+    if (!Number.isInteger(summary.coverage_summary[field]) || summary.coverage_summary[field] < 0) {
+      return {
+        ok: false,
+        reason: `spec_reconstruction summary.coverage_summary.${field} must be a non-negative integer`,
+      };
+    }
+  }
+  if (!Number.isInteger(summary.unresolved_file_count) || summary.unresolved_file_count < 0) {
+    return {
+      ok: false,
+      reason: "spec_reconstruction summary.unresolved_file_count must be a non-negative integer",
+    };
+  }
+  if (!Number.isInteger(summary.inferred_file_count) || summary.inferred_file_count < 0) {
+    return {
+      ok: false,
+      reason: "spec_reconstruction summary.inferred_file_count must be a non-negative integer",
+    };
+  }
+  return { ok: true };
+}
+export function validateDocSpecAuditSummary(summary, contract, verifiedAt) {
+  const envelopeError = validateSummaryEnvelope(summary, contract, verifiedAt, "doc_spec_audit summary");
+  if (envelopeError) {
+    return envelopeError;
+  }
+  if (
+    !Array.isArray(summary.compared_paths)
+    || summary.compared_paths.length === 0
+    || summary.compared_paths.some((entry) => typeof entry !== "string")
+  ) {
+    return {
+      ok: false,
+      reason: "doc_spec_audit summary.compared_paths must be a non-empty array of strings",
+    };
+  }
+  if (!Number.isInteger(summary.finding_count) || summary.finding_count < 0) {
+    return {
+      ok: false,
+      reason: "doc_spec_audit summary.finding_count must be a non-negative integer",
+    };
+  }
+  return { ok: true };
+}
+export function validateAuditSweepSummary(summary, contract, verifiedAt) {
+  const envelopeError = validateSummaryEnvelope(summary, contract, verifiedAt, "audit_sweep summary");
+  if (envelopeError) {
+    return envelopeError;
+  }
+  const unexpectedFields = Object.keys(summary).filter(
+    (field) => !contract.summaryRequiredFields.includes(field),
+  );
+  if (unexpectedFields.length > 0) {
+    return {
+      ok: false,
+      reason: `audit_sweep summary contains unexpected fields: ${unexpectedFields.join(", ")}`,
+    };
+  }
+  for (const field of [
+    "plan_ref",
+    "ledger_ref",
+    "report_ref",
+    "remediation_map_ref",
+    "audit_closeout_ref",
+  ]) {
+    if (typeof summary[field] !== "string" || summary[field].trim().length === 0) {
+      return {
+        ok: false,
+        reason: `audit_sweep summary.${field} must be a non-empty string`,
+      };
+    }
+  }
+  for (const field of ["chunk_refs", "evidence_refs"]) {
+    if (
+      !Array.isArray(summary[field])
+      || summary[field].length === 0
+      || summary[field].some((entry) => typeof entry !== "string" || entry.trim().length === 0)
+    ) {
+      return {
+        ok: false,
+        reason: `audit_sweep summary.${field} must be a non-empty array of non-empty strings`,
+      };
+    }
+  }
+  for (const field of ["finding_count", "unresolved_finding_count"]) {
+    if (!Number.isInteger(summary[field]) || summary[field] < 0) {
+      return {
+        ok: false,
+        reason: `audit_sweep summary.${field} must be a non-negative integer`,
+      };
+    }
+  }
+  if (typeof summary.coverage_scope !== "string" || summary.coverage_scope.trim().length === 0) {
+    return {
+      ok: false,
+      reason: "audit_sweep summary.coverage_scope must be a non-empty string",
+    };
+  }
+  for (const field of ["coverage_quality", "audit_validity"]) {
+    if (!isPlainObject(summary[field])) {
+      return {
+        ok: false,
+        reason: `audit_sweep summary.${field} must be an object`,
+      };
+    }
+  }
+  return { ok: true };
+}
+export function validateHighRiskExecutionSummary(summary, contract, verifiedAt) {
+  const envelopeError = validateSummaryEnvelope(
+    summary,
+    contract,
+    verifiedAt,
+    "high_risk_execution summary",
+  );
+  if (envelopeError) {
+    return envelopeError;
+  }
+  const unexpectedFields = Object.keys(summary).filter(
+    (field) => !contract.summaryRequiredFields.includes(field),
+  );
+  if (unexpectedFields.length > 0) {
+    return {
+      ok: false,
+      reason: `high_risk_execution summary contains unexpected fields: ${unexpectedFields.join(", ")}`,
+    };
+  }
+  for (const field of [
+    "packet_ref",
+    "orchestration_state_ref",
+    "prompt_ref",
+    "worker_output_ref",
+  ]) {
+    if (typeof summary[field] !== "string" || summary[field].trim().length === 0) {
+      return {
+        ok: false,
+        reason: `high_risk_execution summary.${field} must be a non-empty string`,
+      };
+    }
+  }
+  if (
+    !Array.isArray(summary.evidence_refs)
+    || summary.evidence_refs.length === 0
+    || summary.evidence_refs.some((entry) => typeof entry !== "string" || entry.trim().length === 0)
+  ) {
+    return {
+      ok: false,
+      reason: "high_risk_execution summary.evidence_refs must be a non-empty array of non-empty strings",
+    };
+  }
+  return { ok: true };
+}
+export function validateHighRiskAdmissionRecord(record, contract) {
+  if (!isPlainObject(record)) {
+    return {
+      ok: false,
+      reason: "high-risk admission record must be an object",
+    };
+  }
+  const keys = Object.keys(record).sort();
+  const expectedKeys = contract.admissionRequiredFields.slice().sort();
+  if (!arraysEqual(keys, expectedKeys)) {
+    return {
+      ok: false,
+      reason: `high-risk admission record must contain exactly these fields: ${contract.admissionRequiredFields.join(", ")}`,
+    };
+  }
+  for (const field of [
+    "topic_id",
+    "packet_id",
+    "manager_review_owner",
+    "summary",
+    "source_decision_contract",
+  ]) {
+    if (typeof record[field] !== "string" || record[field].trim().length === 0) {
+      return {
+        ok: false,
+        reason: `high-risk admission record ${field} must be a non-empty string`,
+      };
+    }
+  }
+  if (!contract.dispositionEnum.includes(record.disposition)) {
+    return {
+      ok: false,
+      reason: `high-risk admission record disposition must be one of: ${contract.dispositionEnum.join(", ")}`,
+    };
+  }
+  if (!isIsoUtcTimestamp(record.admitted_at)) {
+    return {
+      ok: false,
+      reason: "high-risk admission record admitted_at must be an ISO-8601 UTC timestamp",
+    };
+  }
+  return { ok: true };
+}
+export function validateHighRiskAdmissionsSpec(spec, contract) {
+  if (!isPlainObject(spec)) {
+    return {
+      ok: false,
+      reason: "high-risk admissions spec must be an object",
+    };
+  }
+  const missingKeys = contract.topLevelRequiredKeys.filter((key) => !(key in spec));
+  if (missingKeys.length > 0) {
+    return {
+      ok: false,
+      reason: `high-risk admissions spec is missing top-level keys: ${missingKeys.join(", ")}`,
+    };
+  }
+  if (
+    !Array.isArray(spec.admissions)
+    || !Array.isArray(spec.admission_rules)
+    || !Array.isArray(spec.semantic_constraints)
+  ) {
+    return {
+      ok: false,
+      reason: "high-risk admissions spec top-level sections must be arrays",
+    };
+  }
+  if (
+    spec.admission_rules.some((entry) => typeof entry !== "string")
+    || spec.semantic_constraints.some((entry) => typeof entry !== "string")
+  ) {
+    return {
+      ok: false,
+      reason: "high-risk admissions spec rules and semantic constraints must be string arrays",
+    };
+  }
+  const seenTopicIds = new Set();
+  for (const record of spec.admissions) {
+    const validation = validateHighRiskAdmissionRecord(record, contract);
+    if (!validation.ok) {
+      return validation;
+    }
+    if (seenTopicIds.has(record.topic_id)) {
+      return {
+        ok: false,
+        reason: `high-risk admissions spec contains duplicate topic_id ${record.topic_id}`,
+      };
+    }
+    seenTopicIds.add(record.topic_id);
+  }
+  return { ok: true };
+}
+export function makeInvalidHighRiskAdmissionContractReason() {
+  return `${HIGH_RISK_ADMISSION_CONTRACT_REF} is missing or malformed`;
+}