@northbridge-security/secureai 0.1.13 → 0.2.0

package/.claude/README.md

@@ -119,4 +119,3 @@ Strict setup:
 - Disable MCP servers outside of Secure AI
 - Allow searching and fetching web content
 - Do not read or edit .env secret files
-

package/.claude/commands/catchup.md

@@ -5,6 +5,7 @@ After `/clear` or new session, understand recent changes and context. This comma
 ## Automation
 
 This command is triggered automatically on session start:
+
 - Hook checks for `.tmp/session.keep` flag
 - If flag missing: runs catchup and creates flag
 - If flag exists: skips (already caught up this session)

package/.claude/commands/code.md

@@ -5,6 +5,7 @@ Implement a feature from its PRD specification.
 PRD path: $ARGUMENTS
 
 Resolve the PRD file path. The PRD is always under `docs/requirements/`. Accept both formats:
+
 - Full path: `docs/requirements/prd.feature-name.md`
 - Short name: `prd.feature-name.md` (prepend `docs/requirements/`)
 
@@ -70,28 +71,37 @@ Create the `*.system.ts` entry point file (excluded from coverage):
 Quality and security verification per `docs/QA.md` and `docs/SECURITY.md`.
 
 ### 6.1 Lint
+
 ```bash
 bunx biome check src/ tests/
 ```
+
 Fix all errors. Zero errors required.
 
 ### 6.2 Type Check
+
 ```bash
 bunx tsc --noEmit
 ```
+
 Fix all errors. Zero errors required.
 
 ### 6.3 Full Test Suite
+
 ```bash
 bun test tests/unit/
 ```
+
 All tests must pass. Zero failures. Coverage thresholds from `bunfig.toml`:
+
 - Line: 80%
 - Statement: 80%
 - Function: 60%
 
 ### 6.4 Security Review
+
 Verify against `docs/SECURITY.md` checklist:
+
 - No `console.log` in production code (Semgrep: `no-console-log-in-production`)
 - No secrets, API keys, or credentials in source (Semgrep: `no-secrets-in-code`)
 - No hardcoded credentials (Semgrep: `no-hardcoded-credentials`)
@@ -100,7 +110,9 @@ Verify against `docs/SECURITY.md` checklist:
 - Managed identity for Azure services (no connection strings in business logic)
 
 ### 6.5 Architecture Review
+
 Verify against `AGENTS.md` clean architecture rules:
+
 - Dependencies point inward (business logic does not import system files)
 - Every external dependency has an `I{Name}` interface
 - System files (`*.system.ts`) contain only thin wrappers

package/.claude/commands/pr.md

@@ -434,16 +434,16 @@ The workflow runs autonomously except:
 
 This command expects these tasks (create stubs if missing):
 
-| Task                           | Purpose          | Required                                       |
-| ------------------------------ | ---------------- | ---------------------------------------------- |
-| `task test` or `task qa`       | Run tests        | Yes                                            |
-| `task lint`                    | Run linting      | Optional                                       |
-| `task deploy`                  | Deploy to stage  | Optional                                       |
-| `task git`                     | List git tasks   | Used for detection (see 2.5)                   |
-| `task git:pr:create FILE=path` | Create PR        | If detected, always used instead of MCP        |
-| `task git:pr:update`           | Update PR        | If detected, always used instead of MCP        |
-| `task git:pr:comments`         | Fetch comments   | Optional (MCP fallback)                        |
-| `task git:runs:log`            | Download CI logs | Optional                                       |
+| Task                           | Purpose          | Required                                |
+| ------------------------------ | ---------------- | --------------------------------------- |
+| `task test` or `task qa`       | Run tests        | Yes                                     |
+| `task lint`                    | Run linting      | Optional                                |
+| `task deploy`                  | Deploy to stage  | Optional                                |
+| `task git`                     | List git tasks   | Used for detection (see 2.5)            |
+| `task git:pr:create FILE=path` | Create PR        | If detected, always used instead of MCP |
+| `task git:pr:update`           | Update PR        | If detected, always used instead of MCP |
+| `task git:pr:comments`         | Fetch comments   | Optional (MCP fallback)                 |
+| `task git:runs:log`            | Download CI logs | Optional                                |
 
 ---
 
@@ -454,7 +454,7 @@ This command expects these tasks (create stubs if missing):
 | Tests fail              | Analyze, fix, retry                       |
 | Deploy fails            | Analyze infrastructure errors, fix, retry |
 | GoTask not available    | Use GitHub MCP (detected in step 2.5)     |
-| PR creation fails       | Report error and ask user for guidance     |
+| PR creation fails       | Report error and ask user for guidance    |
 | CI fails                | Download logs, fix, ask user to push      |
 | Review comments unclear | Ask user for decision                     |
 

package/.claude/commands/todo.md

@@ -13,6 +13,7 @@ List or add todos in `docs/TODO.md`. This file is gitignored - personal task tra
 ### Prerequisites
 
 - If `docs/TODO.md` doesn't exist: Create it with template:
+
   ```markdown
   # Project TODOs
 
@@ -21,17 +22,17 @@ List or add todos in `docs/TODO.md`. This file is gitignored - personal task tra
   ## In Progress
 
   | Task | Priority | Notes |
-  |------|----------|-------|
+  | ---- | -------- | ----- |
 
   ## Backlog
 
   | Task | Priority | Notes |
-  |------|----------|-------|
+  | ---- | -------- | ----- |
 
   ## Done
 
   | Task | Completed | Notes |
-  |------|-----------|-------|
+  | ---- | --------- | ----- |
   ```
 
 - If `docs/TODO.md` not in `.gitignore`: Add `docs/TODO.md` to `.gitignore`
@@ -71,11 +72,11 @@ List or add todos in `docs/TODO.md`. This file is gitignored - personal task tra
 
 ## Priority Guidelines
 
-| Priority | When |
-|----------|------|
-| High | Blocking other work, urgent |
-| Medium | Next planned work |
-| Low | Nice to have, future idea |
+| Priority | When                        |
+| -------- | --------------------------- |
+| High     | Blocking other work, urgent |
+| Medium   | Next planned work           |
+| Low      | Nice to have, future idea   |
 
 ## Examples
 

package/.claude/commands/wrapup.md

@@ -76,8 +76,8 @@ Decisions are numbered sequentially (ADR-001, ADR-002, etc.).
 
 ## Index
 
-| ADR | Title | Date | Status |
-|-----|-------|------|--------|
+| ADR     | Title            | Date       | Status   |
+| ------- | ---------------- | ---------- | -------- |
 | ADR-001 | Example decision | 2024-01-15 | Accepted |
 
 ---
@@ -89,14 +89,14 @@ Decisions are numbered sequentially (ADR-001, ADR-002, etc.).
 
 ## What Qualifies as an ADR?
 
-| Include | Exclude |
-|---------|---------|
-| Technology choices | Bug fixes |
-| Architecture patterns | Implementation details |
-| Breaking changes | Temporary workarounds |
-| API design decisions | Style preferences |
-| Security policies | Config tweaks |
-| Data model changes | Dependency updates (minor) |
+| Include               | Exclude                    |
+| --------------------- | -------------------------- |
+| Technology choices    | Bug fixes                  |
+| Architecture patterns | Implementation details     |
+| Breaking changes      | Temporary workarounds      |
+| API design decisions  | Style preferences          |
+| Security policies     | Config tweaks              |
+| Data model changes    | Dependency updates (minor) |
 
 ## Note
 

package/package.json

@@ -123,7 +123,7 @@
     "validate-commit": "bun run packages/secureai-cli/src/cli.ts validate-commit"
   },
   "type": "module",
-  "version": "0.1.13",
+  "version": "0.2.0",
   "workspaces": [
     "packages/*"
   ]