npm - @oddessentials/odd-ai-reviewers - Versions diffs - 1.0.0 - Mend

@oddessentials/odd-ai-reviewers 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (370) hide show

package/README.md +190 -0
package/dist/__tests__/hermetic-setup.d.ts +55 -0
package/dist/__tests__/hermetic-setup.d.ts.map +1 -0
package/dist/__tests__/hermetic-setup.js +62 -0
package/dist/__tests__/hermetic-setup.js.map +1 -0
package/dist/__tests__/test-utils/hermetic.d.ts +84 -0
package/dist/__tests__/test-utils/hermetic.d.ts.map +1 -0
package/dist/__tests__/test-utils/hermetic.js +147 -0
package/dist/__tests__/test-utils/hermetic.js.map +1 -0
package/dist/agents/ai_semantic_review.d.ts +12 -0
package/dist/agents/ai_semantic_review.d.ts.map +1 -0
package/dist/agents/ai_semantic_review.js +317 -0
package/dist/agents/ai_semantic_review.js.map +1 -0
package/dist/agents/control_flow/budget.d.ts +162 -0
package/dist/agents/control_flow/budget.d.ts.map +1 -0
package/dist/agents/control_flow/budget.js +331 -0
package/dist/agents/control_flow/budget.js.map +1 -0
package/dist/agents/control_flow/cfg-builder.d.ts +26 -0
package/dist/agents/control_flow/cfg-builder.d.ts.map +1 -0
package/dist/agents/control_flow/cfg-builder.js +776 -0
package/dist/agents/control_flow/cfg-builder.js.map +1 -0
package/dist/agents/control_flow/cfg-types.d.ts +186 -0
package/dist/agents/control_flow/cfg-types.d.ts.map +1 -0
package/dist/agents/control_flow/cfg-types.js +114 -0
package/dist/agents/control_flow/cfg-types.js.map +1 -0
package/dist/agents/control_flow/finding-generator.d.ts +118 -0
package/dist/agents/control_flow/finding-generator.d.ts.map +1 -0
package/dist/agents/control_flow/finding-generator.js +354 -0
package/dist/agents/control_flow/finding-generator.js.map +1 -0
package/dist/agents/control_flow/index.d.ts +39 -0
package/dist/agents/control_flow/index.d.ts.map +1 -0
package/dist/agents/control_flow/index.js +270 -0
package/dist/agents/control_flow/index.js.map +1 -0
package/dist/agents/control_flow/logger.d.ts +333 -0
package/dist/agents/control_flow/logger.d.ts.map +1 -0
package/dist/agents/control_flow/logger.js +607 -0
package/dist/agents/control_flow/logger.js.map +1 -0
package/dist/agents/control_flow/mitigation-detector.d.ts +207 -0
package/dist/agents/control_flow/mitigation-detector.d.ts.map +1 -0
package/dist/agents/control_flow/mitigation-detector.js +625 -0
package/dist/agents/control_flow/mitigation-detector.js.map +1 -0
package/dist/agents/control_flow/mitigation-patterns.d.ts +53 -0
package/dist/agents/control_flow/mitigation-patterns.d.ts.map +1 -0
package/dist/agents/control_flow/mitigation-patterns.js +620 -0
package/dist/agents/control_flow/mitigation-patterns.js.map +1 -0
package/dist/agents/control_flow/path-analyzer.d.ts +287 -0
package/dist/agents/control_flow/path-analyzer.d.ts.map +1 -0
package/dist/agents/control_flow/path-analyzer.js +695 -0
package/dist/agents/control_flow/path-analyzer.js.map +1 -0
package/dist/agents/control_flow/pattern-validator.d.ts +132 -0
package/dist/agents/control_flow/pattern-validator.d.ts.map +1 -0
package/dist/agents/control_flow/pattern-validator.js +420 -0
package/dist/agents/control_flow/pattern-validator.js.map +1 -0
package/dist/agents/control_flow/timeout-regex.d.ts +144 -0
package/dist/agents/control_flow/timeout-regex.d.ts.map +1 -0
package/dist/agents/control_flow/timeout-regex.js +339 -0
package/dist/agents/control_flow/timeout-regex.js.map +1 -0
package/dist/agents/control_flow/types.d.ts +782 -0
package/dist/agents/control_flow/types.d.ts.map +1 -0
package/dist/agents/control_flow/types.js +428 -0
package/dist/agents/control_flow/types.js.map +1 -0
package/dist/agents/control_flow/vulnerability-detector.d.ts +85 -0
package/dist/agents/control_flow/vulnerability-detector.d.ts.map +1 -0
package/dist/agents/control_flow/vulnerability-detector.js +493 -0
package/dist/agents/control_flow/vulnerability-detector.js.map +1 -0
package/dist/agents/date-utils.d.ts +19 -0
package/dist/agents/date-utils.d.ts.map +1 -0
package/dist/agents/date-utils.js +29 -0
package/dist/agents/date-utils.js.map +1 -0
package/dist/agents/index.d.ts +25 -0
package/dist/agents/index.d.ts.map +1 -0
package/dist/agents/index.js +50 -0
package/dist/agents/index.js.map +1 -0
package/dist/agents/json-utils.d.ts +34 -0
package/dist/agents/json-utils.d.ts.map +1 -0
package/dist/agents/json-utils.js +62 -0
package/dist/agents/json-utils.js.map +1 -0
package/dist/agents/local_llm.d.ts +24 -0
package/dist/agents/local_llm.d.ts.map +1 -0
package/dist/agents/local_llm.js +566 -0
package/dist/agents/local_llm.js.map +1 -0
package/dist/agents/metadata.d.ts +57 -0
package/dist/agents/metadata.d.ts.map +1 -0
package/dist/agents/metadata.js +45 -0
package/dist/agents/metadata.js.map +1 -0
package/dist/agents/opencode.d.ts +18 -0
package/dist/agents/opencode.d.ts.map +1 -0
package/dist/agents/opencode.js +364 -0
package/dist/agents/opencode.js.map +1 -0
package/dist/agents/path-filter.d.ts +25 -0
package/dist/agents/path-filter.d.ts.map +1 -0
package/dist/agents/path-filter.js +43 -0
package/dist/agents/path-filter.js.map +1 -0
package/dist/agents/pr_agent.d.ts +3 -0
package/dist/agents/pr_agent.d.ts.map +1 -0
package/dist/agents/pr_agent.js +312 -0
package/dist/agents/pr_agent.js.map +1 -0
package/dist/agents/retry.d.ts +12 -0
package/dist/agents/retry.d.ts.map +1 -0
package/dist/agents/retry.js +65 -0
package/dist/agents/retry.js.map +1 -0
package/dist/agents/reviewdog.d.ts +24 -0
package/dist/agents/reviewdog.d.ts.map +1 -0
package/dist/agents/reviewdog.js +259 -0
package/dist/agents/reviewdog.js.map +1 -0
package/dist/agents/security.d.ts +49 -0
package/dist/agents/security.d.ts.map +1 -0
package/dist/agents/security.js +302 -0
package/dist/agents/security.js.map +1 -0
package/dist/agents/semgrep.d.ts +8 -0
package/dist/agents/semgrep.d.ts.map +1 -0
package/dist/agents/semgrep.js +157 -0
package/dist/agents/semgrep.js.map +1 -0
package/dist/agents/types.d.ts +450 -0
package/dist/agents/types.d.ts.map +1 -0
package/dist/agents/types.js +127 -0
package/dist/agents/types.js.map +1 -0
package/dist/budget.d.ts +59 -0
package/dist/budget.d.ts.map +1 -0
package/dist/budget.js +82 -0
package/dist/budget.js.map +1 -0
package/dist/cache/key.d.ts +49 -0
package/dist/cache/key.d.ts.map +1 -0
package/dist/cache/key.js +71 -0
package/dist/cache/key.js.map +1 -0
package/dist/cache/store.d.ts +47 -0
package/dist/cache/store.d.ts.map +1 -0
package/dist/cache/store.js +328 -0
package/dist/cache/store.js.map +1 -0
package/dist/cli/commands/check.d.ts +60 -0
package/dist/cli/commands/check.d.ts.map +1 -0
package/dist/cli/commands/check.js +163 -0
package/dist/cli/commands/check.js.map +1 -0
package/dist/cli/commands/index.d.ts +12 -0
package/dist/cli/commands/index.d.ts.map +1 -0
package/dist/cli/commands/index.js +12 -0
package/dist/cli/commands/index.js.map +1 -0
package/dist/cli/commands/local-review.d.ts +149 -0
package/dist/cli/commands/local-review.d.ts.map +1 -0
package/dist/cli/commands/local-review.js +755 -0
package/dist/cli/commands/local-review.js.map +1 -0
package/dist/cli/config-wizard.d.ts +87 -0
package/dist/cli/config-wizard.d.ts.map +1 -0
package/dist/cli/config-wizard.js +240 -0
package/dist/cli/config-wizard.js.map +1 -0
package/dist/cli/dependencies/catalog.d.ts +44 -0
package/dist/cli/dependencies/catalog.d.ts.map +1 -0
package/dist/cli/dependencies/catalog.js +89 -0
package/dist/cli/dependencies/catalog.js.map +1 -0
package/dist/cli/dependencies/checker.d.ts +42 -0
package/dist/cli/dependencies/checker.d.ts.map +1 -0
package/dist/cli/dependencies/checker.js +240 -0
package/dist/cli/dependencies/checker.js.map +1 -0
package/dist/cli/dependencies/index.d.ts +16 -0
package/dist/cli/dependencies/index.d.ts.map +1 -0
package/dist/cli/dependencies/index.js +16 -0
package/dist/cli/dependencies/index.js.map +1 -0
package/dist/cli/dependencies/messages.d.ts +58 -0
package/dist/cli/dependencies/messages.d.ts.map +1 -0
package/dist/cli/dependencies/messages.js +183 -0
package/dist/cli/dependencies/messages.js.map +1 -0
package/dist/cli/dependencies/platform.d.ts +25 -0
package/dist/cli/dependencies/platform.d.ts.map +1 -0
package/dist/cli/dependencies/platform.js +42 -0
package/dist/cli/dependencies/platform.js.map +1 -0
package/dist/cli/dependencies/schemas.d.ts +65 -0
package/dist/cli/dependencies/schemas.d.ts.map +1 -0
package/dist/cli/dependencies/schemas.js +42 -0
package/dist/cli/dependencies/schemas.js.map +1 -0
package/dist/cli/dependencies/types.d.ts +112 -0
package/dist/cli/dependencies/types.d.ts.map +1 -0
package/dist/cli/dependencies/types.js +6 -0
package/dist/cli/dependencies/types.js.map +1 -0
package/dist/cli/dependencies/version.d.ts +67 -0
package/dist/cli/dependencies/version.d.ts.map +1 -0
package/dist/cli/dependencies/version.js +125 -0
package/dist/cli/dependencies/version.js.map +1 -0
package/dist/cli/git-context.d.ts +105 -0
package/dist/cli/git-context.d.ts.map +1 -0
package/dist/cli/git-context.js +313 -0
package/dist/cli/git-context.js.map +1 -0
package/dist/cli/interactive-prompts.d.ts +126 -0
package/dist/cli/interactive-prompts.d.ts.map +1 -0
package/dist/cli/interactive-prompts.js +128 -0
package/dist/cli/interactive-prompts.js.map +1 -0
package/dist/cli/options/index.d.ts +7 -0
package/dist/cli/options/index.d.ts.map +1 -0
package/dist/cli/options/index.js +11 -0
package/dist/cli/options/index.js.map +1 -0
package/dist/cli/options/local-review-options.d.ts +221 -0
package/dist/cli/options/local-review-options.d.ts.map +1 -0
package/dist/cli/options/local-review-options.js +332 -0
package/dist/cli/options/local-review-options.js.map +1 -0
package/dist/cli/output/colors.d.ts +154 -0
package/dist/cli/output/colors.d.ts.map +1 -0
package/dist/cli/output/colors.js +255 -0
package/dist/cli/output/colors.js.map +1 -0
package/dist/cli/output/errors.d.ts +157 -0
package/dist/cli/output/errors.d.ts.map +1 -0
package/dist/cli/output/errors.js +266 -0
package/dist/cli/output/errors.js.map +1 -0
package/dist/cli/output/index.d.ts +12 -0
package/dist/cli/output/index.d.ts.map +1 -0
package/dist/cli/output/index.js +15 -0
package/dist/cli/output/index.js.map +1 -0
package/dist/cli/output/progress.d.ts +237 -0
package/dist/cli/output/progress.d.ts.map +1 -0
package/dist/cli/output/progress.js +405 -0
package/dist/cli/output/progress.js.map +1 -0
package/dist/cli/signals.d.ts +145 -0
package/dist/cli/signals.d.ts.map +1 -0
package/dist/cli/signals.js +223 -0
package/dist/cli/signals.js.map +1 -0
package/dist/cli/validation-report.d.ts +106 -0
package/dist/cli/validation-report.d.ts.map +1 -0
package/dist/cli/validation-report.js +108 -0
package/dist/cli/validation-report.js.map +1 -0
package/dist/config/index.d.ts +9 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/config/index.js +12 -0
package/dist/config/index.js.map +1 -0
package/dist/config/mitigation-config.d.ts +94 -0
package/dist/config/mitigation-config.d.ts.map +1 -0
package/dist/config/mitigation-config.js +430 -0
package/dist/config/mitigation-config.js.map +1 -0
package/dist/config/providers.d.ts +118 -0
package/dist/config/providers.d.ts.map +1 -0
package/dist/config/providers.js +229 -0
package/dist/config/providers.js.map +1 -0
package/dist/config/schemas.d.ts +278 -0
package/dist/config/schemas.d.ts.map +1 -0
package/dist/config/schemas.js +111 -0
package/dist/config/schemas.js.map +1 -0
package/dist/config/zero-config.d.ts +126 -0
package/dist/config/zero-config.d.ts.map +1 -0
package/dist/config/zero-config.js +243 -0
package/dist/config/zero-config.js.map +1 -0
package/dist/config.d.ts +110 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +302 -0
package/dist/config.js.map +1 -0
package/dist/diff.d.ts +224 -0
package/dist/diff.d.ts.map +1 -0
package/dist/diff.js +832 -0
package/dist/diff.js.map +1 -0
package/dist/git-validators.d.ts +106 -0
package/dist/git-validators.d.ts.map +1 -0
package/dist/git-validators.js +224 -0
package/dist/git-validators.js.map +1 -0
package/dist/main.d.ts +61 -0
package/dist/main.d.ts.map +1 -0
package/dist/main.js +704 -0
package/dist/main.js.map +1 -0
package/dist/phases/execute.d.ts +60 -0
package/dist/phases/execute.d.ts.map +1 -0
package/dist/phases/execute.js +168 -0
package/dist/phases/execute.js.map +1 -0
package/dist/phases/index.d.ts +9 -0
package/dist/phases/index.d.ts.map +1 -0
package/dist/phases/index.js +9 -0
package/dist/phases/index.js.map +1 -0
package/dist/phases/preflight.d.ts +40 -0
package/dist/phases/preflight.d.ts.map +1 -0
package/dist/phases/preflight.js +122 -0
package/dist/phases/preflight.js.map +1 -0
package/dist/phases/report.d.ts +51 -0
package/dist/phases/report.d.ts.map +1 -0
package/dist/phases/report.js +152 -0
package/dist/phases/report.js.map +1 -0
package/dist/policy.d.ts +33 -0
package/dist/policy.d.ts.map +1 -0
package/dist/policy.js +34 -0
package/dist/policy.js.map +1 -0
package/dist/preflight.d.ts +181 -0
package/dist/preflight.d.ts.map +1 -0
package/dist/preflight.js +627 -0
package/dist/preflight.js.map +1 -0
package/dist/report/ado.d.ts +53 -0
package/dist/report/ado.d.ts.map +1 -0
package/dist/report/ado.js +411 -0
package/dist/report/ado.js.map +1 -0
package/dist/report/agent-icons.d.ts +36 -0
package/dist/report/agent-icons.d.ts.map +1 -0
package/dist/report/agent-icons.js +46 -0
package/dist/report/agent-icons.js.map +1 -0
package/dist/report/base.d.ts +30 -0
package/dist/report/base.d.ts.map +1 -0
package/dist/report/base.js +64 -0
package/dist/report/base.js.map +1 -0
package/dist/report/formats.d.ts +206 -0
package/dist/report/formats.d.ts.map +1 -0
package/dist/report/formats.js +481 -0
package/dist/report/formats.js.map +1 -0
package/dist/report/github.d.ts +44 -0
package/dist/report/github.d.ts.map +1 -0
package/dist/report/github.js +409 -0
package/dist/report/github.js.map +1 -0
package/dist/report/line-resolver.d.ts +208 -0
package/dist/report/line-resolver.d.ts.map +1 -0
package/dist/report/line-resolver.js +578 -0
package/dist/report/line-resolver.js.map +1 -0
package/dist/report/resolution.d.ts +158 -0
package/dist/report/resolution.d.ts.map +1 -0
package/dist/report/resolution.js +272 -0
package/dist/report/resolution.js.map +1 -0
package/dist/report/sanitize.d.ts +32 -0
package/dist/report/sanitize.d.ts.map +1 -0
package/dist/report/sanitize.js +84 -0
package/dist/report/sanitize.js.map +1 -0
package/dist/report/terminal.d.ts +440 -0
package/dist/report/terminal.d.ts.map +1 -0
package/dist/report/terminal.js +840 -0
package/dist/report/terminal.js.map +1 -0
package/dist/reviewignore.d.ts +125 -0
package/dist/reviewignore.d.ts.map +1 -0
package/dist/reviewignore.js +335 -0
package/dist/reviewignore.js.map +1 -0
package/dist/security-logger.d.ts +178 -0
package/dist/security-logger.d.ts.map +1 -0
package/dist/security-logger.js +256 -0
package/dist/security-logger.js.map +1 -0
package/dist/telemetry/backends/console.d.ts +24 -0
package/dist/telemetry/backends/console.d.ts.map +1 -0
package/dist/telemetry/backends/console.js +54 -0
package/dist/telemetry/backends/console.js.map +1 -0
package/dist/telemetry/backends/jsonl.d.ts +31 -0
package/dist/telemetry/backends/jsonl.d.ts.map +1 -0
package/dist/telemetry/backends/jsonl.js +121 -0
package/dist/telemetry/backends/jsonl.js.map +1 -0
package/dist/telemetry/emitter.d.ts +43 -0
package/dist/telemetry/emitter.d.ts.map +1 -0
package/dist/telemetry/emitter.js +83 -0
package/dist/telemetry/emitter.js.map +1 -0
package/dist/telemetry/hook.d.ts +53 -0
package/dist/telemetry/hook.d.ts.map +1 -0
package/dist/telemetry/hook.js +118 -0
package/dist/telemetry/hook.js.map +1 -0
package/dist/telemetry/index.d.ts +58 -0
package/dist/telemetry/index.d.ts.map +1 -0
package/dist/telemetry/index.js +143 -0
package/dist/telemetry/index.js.map +1 -0
package/dist/telemetry/types.d.ts +139 -0
package/dist/telemetry/types.d.ts.map +1 -0
package/dist/telemetry/types.js +133 -0
package/dist/telemetry/types.js.map +1 -0
package/dist/trust.d.ts +65 -0
package/dist/trust.d.ts.map +1 -0
package/dist/trust.js +78 -0
package/dist/trust.js.map +1 -0
package/dist/types/assert-never.d.ts +30 -0
package/dist/types/assert-never.d.ts.map +1 -0
package/dist/types/assert-never.js +32 -0
package/dist/types/assert-never.js.map +1 -0
package/dist/types/branded.d.ts +172 -0
package/dist/types/branded.d.ts.map +1 -0
package/dist/types/branded.js +262 -0
package/dist/types/branded.js.map +1 -0
package/dist/types/errors.d.ts +320 -0
package/dist/types/errors.d.ts.map +1 -0
package/dist/types/errors.js +551 -0
package/dist/types/errors.js.map +1 -0
package/dist/types/index.d.ts +37 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +77 -0
package/dist/types/index.js.map +1 -0
package/dist/types/result.d.ts +323 -0
package/dist/types/result.d.ts.map +1 -0
package/dist/types/result.js +423 -0
package/dist/types/result.js.map +1 -0
package/package.json +63 -0

package/dist/security-logger.d.ts ADDED Viewed

@@ -0,0 +1,178 @@
+/**
+ * Security Logger Module
+ *
+ * Single aggregation point for security-related logging events.
+ * All security-relevant code paths MUST use this module.
+ *
+ * Key guarantees:
+ * - Raw patterns are NEVER logged (only hashes)
+ * - Logging failures don't block execution
+ * - Consistent structured format across all events
+ *
+ * @see FR-021, FR-022, FR-023, FR-024
+ * @see specs/006-quality-enforcement/contracts/security-event.ts
+ */
+import { z } from 'zod';
+/**
+ * Security event categories
+ */
+export declare const SecurityEventCategory: z.ZodEnum<{
+    regex_validation: "regex_validation";
+    mitigation_applied: "mitigation_applied";
+    mitigation_failed: "mitigation_failed";
+}>;
+export type SecurityEventCategory = z.infer<typeof SecurityEventCategory>;
+/**
+ * Event outcome states
+ */
+export declare const SecurityEventOutcome: z.ZodEnum<{
+    success: "success";
+    timeout: "timeout";
+    failure: "failure";
+}>;
+export type SecurityEventOutcome = z.infer<typeof SecurityEventOutcome>;
+/**
+ * Error reasons for failed events
+ */
+export declare const MitigationErrorReason: z.ZodEnum<{
+    timeout: "timeout";
+    invalid_regex: "invalid_regex";
+    runtime_error: "runtime_error";
+}>;
+export type MitigationErrorReason = z.infer<typeof MitigationErrorReason>;
+/**
+ * Pattern hash format: 16 hex characters (truncated SHA-256)
+ */
+export declare const PatternHash: z.ZodString;
+export type PatternHash = z.infer<typeof PatternHash>;
+/**
+ * Security event schema
+ */
+export declare const SecurityEventSchema: z.ZodObject<{
+    category: z.ZodEnum<{
+        regex_validation: "regex_validation";
+        mitigation_applied: "mitigation_applied";
+        mitigation_failed: "mitigation_failed";
+    }>;
+    ruleId: z.ZodString;
+    file: z.ZodString;
+    patternHash: z.ZodString;
+    durationMs: z.ZodNumber;
+    outcome: z.ZodEnum<{
+        success: "success";
+        timeout: "timeout";
+        failure: "failure";
+    }>;
+    errorReason: z.ZodOptional<z.ZodEnum<{
+        timeout: "timeout";
+        invalid_regex: "invalid_regex";
+        runtime_error: "runtime_error";
+    }>>;
+    timestamp: z.ZodString;
+    runId: z.ZodString;
+}, z.core.$strip>;
+export type SecurityEvent = z.infer<typeof SecurityEventSchema>;
+/**
+ * Hash a regex pattern using SHA-256 and truncate to 16 hex characters.
+ *
+ * This ensures raw patterns are NEVER included in logs while still
+ * allowing correlation of events related to the same pattern.
+ *
+ * @param pattern - The regex pattern to hash
+ * @returns 16-character hex string (truncated SHA-256)
+ */
+export declare function hashPattern(pattern: string): PatternHash;
+/**
+ * Run summary statistics
+ */
+export interface RunSummary {
+    runId: string;
+    totalEvents: number;
+    successCount: number;
+    failureCount: number;
+    timeoutCount: number;
+    totalDurationMs: number;
+    loggingFailuresTotal: number;
+    loggingFailuresByCategory: Record<string, number>;
+    loggingDegraded: boolean;
+}
+/**
+ * Input for creating a security event
+ */
+export interface SecurityEventInput {
+    category: SecurityEventCategory;
+    ruleId: string;
+    file: string;
+    pattern: string;
+    durationMs: number;
+    outcome: SecurityEventOutcome;
+    errorReason?: MitigationErrorReason;
+}
+/**
+ * Security logger instance interface
+ */
+export interface SecurityLogger {
+    /** Log a security event */
+    logSecurityEvent(input: SecurityEventInput): void;
+    /** Start a new logging run */
+    startRun(): string;
+    /** Get the current run ID */
+    getCurrentRunId(): string;
+    /** Get summary statistics for the current run */
+    getRunSummary(): RunSummary;
+    /** Get all events for the current run */
+    getRunEvents(): readonly SecurityEvent[];
+    /** Check if logging is in degraded mode */
+    isLoggingDegraded(): boolean;
+}
+/**
+ * Create a new security logger instance.
+ *
+ * Use this factory when you need isolated logger state (e.g., for testing).
+ * For most production use cases, use the default exported functions.
+ *
+ * @returns A new SecurityLogger instance with its own isolated state
+ */
+export declare function createSecurityLogger(): SecurityLogger;
+/**
+ * Log a security event.
+ *
+ * This is the SOLE export for security logging. All security-relevant
+ * code paths MUST use this function.
+ *
+ * Guarantees (FR-023):
+ * - Logging failures don't block execution
+ * - Falls back to stderr on validation errors
+ * - Never throws exceptions
+ *
+ * @param input - Security event input (raw pattern will be hashed)
+ */
+export declare function logSecurityEvent(input: SecurityEventInput): void;
+/**
+ * Start a new logging run
+ */
+export declare function startRun(): string;
+/**
+ * Get the current run ID
+ */
+export declare function getCurrentRunId(): string;
+/**
+ * Get summary statistics for the current run
+ */
+export declare function getRunSummary(): RunSummary;
+/**
+ * Get all events for the current run (for testing/debugging)
+ */
+export declare function getRunEvents(): readonly SecurityEvent[];
+/**
+ * Check if logging is in degraded mode
+ */
+export declare function isLoggingDegraded(): boolean;
+/**
+ * Reset the default logger state for testing.
+ * This ensures test isolation when using module-level exports.
+ *
+ * @internal - Only use in test files
+ */
+export declare function resetForTesting(): void;
+//# sourceMappingURL=security-logger.d.ts.map

package/dist/security-logger.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"security-logger.d.ts","sourceRoot":"","sources":["../src/security-logger.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAGH,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAMxB;;GAEG;AACH,eAAO,MAAM,qBAAqB;;;;EAIhC,CAAC;AACH,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAE1E;;GAEG;AACH,eAAO,MAAM,oBAAoB;;;;EAA4C,CAAC;AAC9E,MAAM,MAAM,oBAAoB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,oBAAoB,CAAC,CAAC;AAExE;;GAEG;AACH,eAAO,MAAM,qBAAqB;;;;EAAwD,CAAC;AAC3F,MAAM,MAAM,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,qBAAqB,CAAC,CAAC;AAE1E;;GAEG;AACH,eAAO,MAAM,WAAW,aAAkE,CAAC;AAC3F,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,WAAW,CAAC,CAAC;AAEtD;;GAEG;AACH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;iBAwB5B,CAAC;AAEL,MAAM,MAAM,aAAa,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,mBAAmB,CAAC,CAAC;AAMhE;;;;;;;;GAQG;AACH,wBAAgB,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,WAAW,CAGxD;AAMD;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;IACrB,eAAe,EAAE,MAAM,CAAC;IACxB,oBAAoB,EAAE,MAAM,CAAC;IAC7B,yBAAyB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClD,eAAe,EAAE,OAAO,CAAC;CAC1B;AAiCD;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,qBAAqB,CAAC;IAChC,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,oBAAoB,CAAC;IAC9B,WAAW,CAAC,EAAE,qBAAqB,CAAC;CACrC;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,2BAA2B;IAC3B,gBAAgB,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI,CAAC;IAClD,8BAA8B;IAC9B,QAAQ,IAAI,MAAM,CAAC;IACnB,6BAA6B;IAC7B,eAAe,IAAI,MAAM,CAAC;IAC1B,iDAAiD;IACjD,aAAa,IAAI,UAAU,CAAC;IAC5B,yCAAyC;IACzC,YAAY,IAAI,SAAS,aAAa,EAAE,CAAC;IACzC,2CAA2C;IAC3C,iBAAiB,IAAI,OAAO,CAAC;CAC9B;AAED;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,IAAI,cAAc,CAoGrD;AAYD;;;;;;;;;;;;GAYG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,kBAAkB,GAAG,IAAI,CAEhE;AAED;;GAEG;AACH,wBAAgB,QAAQ,IAAI,MAAM,CAEjC;AAED;;GAEG;AACH,wBAAgB,eAAe,IAAI,MAAM,CAExC;AAED;;GAEG;AACH,wBAAgB,aAAa,IAAI,UAAU,CAE1C;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,SAAS,aAAa,EAAE,CAEvD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,OAAO,CAE3C;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,IAAI,IAAI,CAEtC"}

package/dist/security-logger.js ADDED Viewed

@@ -0,0 +1,256 @@
+/**
+ * Security Logger Module
+ *
+ * Single aggregation point for security-related logging events.
+ * All security-relevant code paths MUST use this module.
+ *
+ * Key guarantees:
+ * - Raw patterns are NEVER logged (only hashes)
+ * - Logging failures don't block execution
+ * - Consistent structured format across all events
+ *
+ * @see FR-021, FR-022, FR-023, FR-024
+ * @see specs/006-quality-enforcement/contracts/security-event.ts
+ */
+import { createHash } from 'crypto';
+import { z } from 'zod';
+// =============================================================================
+// Schema Definitions (FR-021)
+// =============================================================================
+/**
+ * Security event categories
+ */
+export const SecurityEventCategory = z.enum([
+    'regex_validation',
+    'mitigation_applied',
+    'mitigation_failed',
+]);
+/**
+ * Event outcome states
+ */
+export const SecurityEventOutcome = z.enum(['success', 'failure', 'timeout']);
+/**
+ * Error reasons for failed events
+ */
+export const MitigationErrorReason = z.enum(['invalid_regex', 'timeout', 'runtime_error']);
+/**
+ * Pattern hash format: 16 hex characters (truncated SHA-256)
+ */
+export const PatternHash = z.string().regex(/^[a-f0-9]{16}$/, 'Must be 16 hex characters');
+/**
+ * Security event schema
+ */
+export const SecurityEventSchema = z
+    .object({
+    /** Event type classification */
+    category: SecurityEventCategory,
+    /** Rule or pattern identifier being validated */
+    ruleId: z.string().min(1),
+    /** File path being analyzed */
+    file: z.string().min(1),
+    /** SHA-256 hash of pattern (first 16 chars) - never raw pattern */
+    patternHash: PatternHash,
+    /** Processing duration in milliseconds */
+    durationMs: z.number().min(0),
+    /** Result of the operation */
+    outcome: SecurityEventOutcome,
+    /** Error reason (required when outcome is 'failure') */
+    errorReason: MitigationErrorReason.optional(),
+    /** ISO 8601 timestamp */
+    timestamp: z.string().datetime(),
+    /** Unique identifier for the analysis run */
+    runId: z.string().min(1),
+})
+    .refine((data) => data.outcome !== 'failure' || data.errorReason !== undefined, {
+    message: 'errorReason is required when outcome is failure',
+    path: ['errorReason'],
+});
+// =============================================================================
+// Pattern Hashing (FR-022)
+// =============================================================================
+/**
+ * Hash a regex pattern using SHA-256 and truncate to 16 hex characters.
+ *
+ * This ensures raw patterns are NEVER included in logs while still
+ * allowing correlation of events related to the same pattern.
+ *
+ * @param pattern - The regex pattern to hash
+ * @returns 16-character hex string (truncated SHA-256)
+ */
+export function hashPattern(pattern) {
+    const hash = createHash('sha256').update(pattern).digest('hex');
+    return hash.slice(0, 16);
+}
+/**
+ * Generate a unique run ID
+ */
+function generateRunId() {
+    return `run-${Date.now()}-${Math.random().toString(36).slice(2, 8)}`;
+}
+function createInitialState() {
+    return {
+        runId: generateRunId(),
+        events: [],
+        loggingFailures: [],
+        isDegraded: false,
+    };
+}
+/**
+ * Create a new security logger instance.
+ *
+ * Use this factory when you need isolated logger state (e.g., for testing).
+ * For most production use cases, use the default exported functions.
+ *
+ * @returns A new SecurityLogger instance with its own isolated state
+ */
+export function createSecurityLogger() {
+    let state = createInitialState();
+    /**
+     * Handle logging failures gracefully (FR-023)
+     */
+    function handleLoggingFailure(category, error) {
+        state.loggingFailures.push({ category, error });
+        state.isDegraded = true;
+        // Fallback to stderr
+        try {
+            process.stderr.write(`[security] LOGGING_DEGRADED category=${category} error=${error}\n`);
+        }
+        catch {
+            // Silently ignore if stderr is unavailable
+        }
+    }
+    return {
+        logSecurityEvent(input) {
+            try {
+                const event = {
+                    category: input.category,
+                    ruleId: input.ruleId,
+                    file: input.file,
+                    patternHash: hashPattern(input.pattern),
+                    durationMs: input.durationMs,
+                    outcome: input.outcome,
+                    errorReason: input.errorReason,
+                    timestamp: new Date().toISOString(),
+                    runId: state.runId,
+                };
+                // Validate the event
+                const result = SecurityEventSchema.safeParse(event);
+                if (!result.success) {
+                    handleLoggingFailure(input.category, `Validation failed: ${result.error.message}`);
+                    return;
+                }
+                // Store the event
+                state.events.push(event);
+                // Log to stderr for immediate visibility (structured JSON)
+                const logLine = JSON.stringify({
+                    level: 'security',
+                    ...event,
+                });
+                process.stderr.write(`[security] ${logLine}\n`);
+            }
+            catch (error) {
+                // FR-023: Logging failures don't block execution
+                handleLoggingFailure(input.category, error instanceof Error ? error.message : 'Unknown error');
+            }
+        },
+        startRun() {
+            state = createInitialState();
+            return state.runId;
+        },
+        getCurrentRunId() {
+            return state.runId;
+        },
+        getRunSummary() {
+            const successCount = state.events.filter((e) => e.outcome === 'success').length;
+            const failureCount = state.events.filter((e) => e.outcome === 'failure').length;
+            const timeoutCount = state.events.filter((e) => e.outcome === 'timeout').length;
+            const totalDurationMs = state.events.reduce((sum, e) => sum + e.durationMs, 0);
+            const loggingFailuresByCategory = {};
+            for (const failure of state.loggingFailures) {
+                loggingFailuresByCategory[failure.category] =
+                    (loggingFailuresByCategory[failure.category] ?? 0) + 1;
+            }
+            return {
+                runId: state.runId,
+                totalEvents: state.events.length,
+                successCount,
+                failureCount,
+                timeoutCount,
+                totalDurationMs,
+                loggingFailuresTotal: state.loggingFailures.length,
+                loggingFailuresByCategory,
+                loggingDegraded: state.isDegraded,
+            };
+        },
+        getRunEvents() {
+            return [...state.events];
+        },
+        isLoggingDegraded() {
+            return state.isDegraded;
+        },
+    };
+}
+// =============================================================================
+// Default Instance (Backwards Compatibility)
+// =============================================================================
+/**
+ * Default logger instance for module-level exports.
+ * Use createSecurityLogger() for isolated instances in tests.
+ */
+const defaultLogger = createSecurityLogger();
+/**
+ * Log a security event.
+ *
+ * This is the SOLE export for security logging. All security-relevant
+ * code paths MUST use this function.
+ *
+ * Guarantees (FR-023):
+ * - Logging failures don't block execution
+ * - Falls back to stderr on validation errors
+ * - Never throws exceptions
+ *
+ * @param input - Security event input (raw pattern will be hashed)
+ */
+export function logSecurityEvent(input) {
+    defaultLogger.logSecurityEvent(input);
+}
+/**
+ * Start a new logging run
+ */
+export function startRun() {
+    return defaultLogger.startRun();
+}
+/**
+ * Get the current run ID
+ */
+export function getCurrentRunId() {
+    return defaultLogger.getCurrentRunId();
+}
+/**
+ * Get summary statistics for the current run
+ */
+export function getRunSummary() {
+    return defaultLogger.getRunSummary();
+}
+/**
+ * Get all events for the current run (for testing/debugging)
+ */
+export function getRunEvents() {
+    return defaultLogger.getRunEvents();
+}
+/**
+ * Check if logging is in degraded mode
+ */
+export function isLoggingDegraded() {
+    return defaultLogger.isLoggingDegraded();
+}
+/**
+ * Reset the default logger state for testing.
+ * This ensures test isolation when using module-level exports.
+ *
+ * @internal - Only use in test files
+ */
+export function resetForTesting() {
+    defaultLogger.startRun();
+}
+//# sourceMappingURL=security-logger.js.map

package/dist/security-logger.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"security-logger.js","sourceRoot":"","sources":["../src/security-logger.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AACpC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,gFAAgF;AAChF,8BAA8B;AAC9B,gFAAgF;AAEhF;;GAEG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,IAAI,CAAC;IAC1C,kBAAkB;IAClB,oBAAoB;IACpB,mBAAmB;CACpB,CAAC,CAAC;AAGH;;GAEG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,SAAS,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC,CAAC;AAG9E;;GAEG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,eAAe,EAAE,SAAS,EAAE,eAAe,CAAC,CAAC,CAAC;AAG3F;;GAEG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,CAAC,gBAAgB,EAAE,2BAA2B,CAAC,CAAC;AAG3F;;GAEG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC;KACjC,MAAM,CAAC;IACN,gCAAgC;IAChC,QAAQ,EAAE,qBAAqB;IAC/B,iDAAiD;IACjD,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACzB,+BAA+B;IAC/B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,mEAAmE;IACnE,WAAW,EAAE,WAAW;IACxB,0CAA0C;IAC1C,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7B,8BAA8B;IAC9B,OAAO,EAAE,oBAAoB;IAC7B,wDAAwD;IACxD,WAAW,EAAE,qBAAqB,CAAC,QAAQ,EAAE;IAC7C,yBAAyB;IACzB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAChC,6CAA6C;IAC7C,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACzB,CAAC;KACD,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,KAAK,SAAS,IAAI,IAAI,CAAC,WAAW,KAAK,SAAS,EAAE;IAC9E,OAAO,EAAE,iDAAiD;IAC1D,IAAI,EAAE,CAAC,aAAa,CAAC;CACtB,CAAC,CAAC;AAIL,gFAAgF;AAChF,2BAA2B;AAC3B,gFAAgF;AAEhF;;;;;;;;GAQG;AACH,MAAM,UAAU,WAAW,CAAC,OAAe;IACzC,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAChE,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAgB,CAAC;AAC1C,CAAC;AAgCD;;GAEG;AACH,SAAS,aAAa;IACpB,OAAO,OAAO,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;AACvE,CAAC;AAED,SAAS,kBAAkB;IACzB,OAAO;QACL,KAAK,EAAE,aAAa,EAAE;QACtB,MAAM,EAAE,EAAE;QACV,eAAe,EAAE,EAAE;QACnB,UAAU,EAAE,KAAK;KAClB,CAAC;AACJ,CAAC;AAqCD;;;;;;;GAOG;AACH,MAAM,UAAU,oBAAoB;IAClC,IAAI,KAAK,GAAgB,kBAAkB,EAAE,CAAC;IAE9C;;OAEG;IACH,SAAS,oBAAoB,CAAC,QAAgB,EAAE,KAAa;QAC3D,KAAK,CAAC,eAAe,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,CAAC;QAChD,KAAK,CAAC,UAAU,GAAG,IAAI,CAAC;QAExB,qBAAqB;QACrB,IAAI,CAAC;YACH,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,wCAAwC,QAAQ,UAAU,KAAK,IAAI,CAAC,CAAC;QAC5F,CAAC;QAAC,MAAM,CAAC;YACP,2CAA2C;QAC7C,CAAC;IACH,CAAC;IAED,OAAO;QACL,gBAAgB,CAAC,KAAyB;YACxC,IAAI,CAAC;gBACH,MAAM,KAAK,GAAkB;oBAC3B,QAAQ,EAAE,KAAK,CAAC,QAAQ;oBACxB,MAAM,EAAE,KAAK,CAAC,MAAM;oBACpB,IAAI,EAAE,KAAK,CAAC,IAAI;oBAChB,WAAW,EAAE,WAAW,CAAC,KAAK,CAAC,OAAO,CAAC;oBACvC,UAAU,EAAE,KAAK,CAAC,UAAU;oBAC5B,OAAO,EAAE,KAAK,CAAC,OAAO;oBACtB,WAAW,EAAE,KAAK,CAAC,WAAW;oBAC9B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;oBACnC,KAAK,EAAE,KAAK,CAAC,KAAK;iBACnB,CAAC;gBAEF,qBAAqB;gBACrB,MAAM,MAAM,GAAG,mBAAmB,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;gBACpD,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;oBACpB,oBAAoB,CAAC,KAAK,CAAC,QAAQ,EAAE,sBAAsB,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;oBACnF,OAAO;gBACT,CAAC;gBAED,kBAAkB;gBAClB,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAEzB,2DAA2D;gBAC3D,MAAM,OAAO,GAAG,IAAI,CAAC,SAAS,CAAC;oBAC7B,KAAK,EAAE,UAAU;oBACjB,GAAG,KAAK;iBACT,CAAC,CAAC;gBACH,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,cAAc,OAAO,IAAI,CAAC,CAAC;YAClD,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,iDAAiD;gBACjD,oBAAoB,CAClB,KAAK,CAAC,QAAQ,EACd,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CACzD,CAAC;YACJ,CAAC;QACH,CAAC;QAED,QAAQ;YACN,KAAK,GAAG,kBAAkB,EAAE,CAAC;YAC7B,OAAO,KAAK,CAAC,KAAK,CAAC;QACrB,CAAC;QAED,eAAe;YACb,OAAO,KAAK,CAAC,KAAK,CAAC;QACrB,CAAC;QAED,aAAa;YACX,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,SAAS,CAAC,CAAC,MAAM,CAAC;YAChF,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,SAAS,CAAC,CAAC,MAAM,CAAC;YAChF,MAAM,YAAY,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,SAAS,CAAC,CAAC,MAAM,CAAC;YAChF,MAAM,eAAe,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC;YAE/E,MAAM,yBAAyB,GAA2B,EAAE,CAAC;YAC7D,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;gBAC5C,yBAAyB,CAAC,OAAO,CAAC,QAAQ,CAAC;oBACzC,CAAC,yBAAyB,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;YAC3D,CAAC;YAED,OAAO;gBACL,KAAK,EAAE,KAAK,CAAC,KAAK;gBAClB,WAAW,EAAE,KAAK,CAAC,MAAM,CAAC,MAAM;gBAChC,YAAY;gBACZ,YAAY;gBACZ,YAAY;gBACZ,eAAe;gBACf,oBAAoB,EAAE,KAAK,CAAC,eAAe,CAAC,MAAM;gBAClD,yBAAyB;gBACzB,eAAe,EAAE,KAAK,CAAC,UAAU;aAClC,CAAC;QACJ,CAAC;QAED,YAAY;YACV,OAAO,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;QAC3B,CAAC;QAED,iBAAiB;YACf,OAAO,KAAK,CAAC,UAAU,CAAC;QAC1B,CAAC;KACF,CAAC;AACJ,CAAC;AAED,gFAAgF;AAChF,6CAA6C;AAC7C,gFAAgF;AAEhF;;;GAGG;AACH,MAAM,aAAa,GAAG,oBAAoB,EAAE,CAAC;AAE7C;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAyB;IACxD,aAAa,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC;AACxC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,QAAQ;IACtB,OAAO,aAAa,CAAC,QAAQ,EAAE,CAAC;AAClC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe;IAC7B,OAAO,aAAa,CAAC,eAAe,EAAE,CAAC;AACzC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa;IAC3B,OAAO,aAAa,CAAC,aAAa,EAAE,CAAC;AACvC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY;IAC1B,OAAO,aAAa,CAAC,YAAY,EAAE,CAAC;AACtC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,OAAO,aAAa,CAAC,iBAAiB,EAAE,CAAC;AAC3C,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,eAAe;IAC7B,aAAa,CAAC,QAAQ,EAAE,CAAC;AAC3B,CAAC"}

package/dist/telemetry/backends/console.d.ts ADDED Viewed

@@ -0,0 +1,24 @@
+/**
+ * Console Telemetry Backend
+ *
+ * Feature: 007-pnpm-timeout-telemetry
+ * Implements: FR-011
+ *
+ * Writes structured log lines to stdout for immediate visibility.
+ */
+import type { TelemetryBackend, TelemetryVerbosity } from '../types.js';
+/**
+ * Console backend configuration options.
+ */
+export interface ConsoleBackendOptions {
+    /** Verbosity level controls which fields are logged */
+    verbosity: TelemetryVerbosity;
+}
+/**
+ * Creates a console telemetry backend.
+ *
+ * @param options - Configuration options
+ * @returns TelemetryBackend implementation
+ */
+export declare function createConsoleBackend(options: ConsoleBackendOptions): TelemetryBackend;
+//# sourceMappingURL=console.d.ts.map

package/dist/telemetry/backends/console.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"console.d.ts","sourceRoot":"","sources":["../../../src/telemetry/backends/console.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAgB,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEtF;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,uDAAuD;IACvD,SAAS,EAAE,kBAAkB,CAAC;CAC/B;AAwBD;;;;;GAKG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,qBAAqB,GAAG,gBAAgB,CAsBrF"}

package/dist/telemetry/backends/console.js ADDED Viewed

@@ -0,0 +1,54 @@
+/**
+ * Console Telemetry Backend
+ *
+ * Feature: 007-pnpm-timeout-telemetry
+ * Implements: FR-011
+ *
+ * Writes structured log lines to stdout for immediate visibility.
+ */
+/**
+ * Formats a timeout event for console output based on verbosity level.
+ */
+function formatEvent(event, verbosity) {
+    const prefix = `[TIMEOUT] [${event.severity.toUpperCase()}]`;
+    switch (verbosity) {
+        case 'minimal':
+            return `${prefix} ${event.operation_id} duration=${event.duration_ms}ms`;
+        case 'standard':
+            return `${prefix} ${event.operation_id} duration=${event.duration_ms}ms threshold=${event.threshold_ms}ms at=${event.timestamp}`;
+        case 'verbose': {
+            const contextStr = event.allowed_context
+                ? ` context=${JSON.stringify(event.allowed_context)}`
+                : '';
+            return `${prefix} ${event.operation_id} duration=${event.duration_ms}ms threshold=${event.threshold_ms}ms at=${event.timestamp}${contextStr}`;
+        }
+    }
+}
+/**
+ * Creates a console telemetry backend.
+ *
+ * @param options - Configuration options
+ * @returns TelemetryBackend implementation
+ */
+export function createConsoleBackend(options) {
+    const { verbosity } = options;
+    return {
+        async emit(event) {
+            try {
+                const message = formatEvent(event, verbosity);
+                // Use stderr for telemetry to avoid mixing with stdout
+                console.error(message);
+            }
+            catch {
+                // Best-effort: swallow errors to avoid affecting control flow (FR-014)
+            }
+        },
+        async flush() {
+            // Console writes are immediate, nothing to flush
+        },
+        async close() {
+            // No resources to release
+        },
+    };
+}
+//# sourceMappingURL=console.js.map

package/dist/telemetry/backends/console.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"console.js","sourceRoot":"","sources":["../../../src/telemetry/backends/console.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAYH;;GAEG;AACH,SAAS,WAAW,CAAC,KAAmB,EAAE,SAA6B;IACrE,MAAM,MAAM,GAAG,cAAc,KAAK,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC;IAE7D,QAAQ,SAAS,EAAE,CAAC;QAClB,KAAK,SAAS;YACZ,OAAO,GAAG,MAAM,IAAI,KAAK,CAAC,YAAY,aAAa,KAAK,CAAC,WAAW,IAAI,CAAC;QAE3E,KAAK,UAAU;YACb,OAAO,GAAG,MAAM,IAAI,KAAK,CAAC,YAAY,aAAa,KAAK,CAAC,WAAW,gBAAgB,KAAK,CAAC,YAAY,SAAS,KAAK,CAAC,SAAS,EAAE,CAAC;QAEnI,KAAK,SAAS,CAAC,CAAC,CAAC;YACf,MAAM,UAAU,GAAG,KAAK,CAAC,eAAe;gBACtC,CAAC,CAAC,YAAY,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,eAAe,CAAC,EAAE;gBACrD,CAAC,CAAC,EAAE,CAAC;YACP,OAAO,GAAG,MAAM,IAAI,KAAK,CAAC,YAAY,aAAa,KAAK,CAAC,WAAW,gBAAgB,KAAK,CAAC,YAAY,SAAS,KAAK,CAAC,SAAS,GAAG,UAAU,EAAE,CAAC;QAChJ,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,oBAAoB,CAAC,OAA8B;IACjE,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC;IAE9B,OAAO;QACL,KAAK,CAAC,IAAI,CAAC,KAAmB;YAC5B,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,WAAW,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBAC9C,uDAAuD;gBACvD,OAAO,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YACzB,CAAC;YAAC,MAAM,CAAC;gBACP,uEAAuE;YACzE,CAAC;QACH,CAAC;QAED,KAAK,CAAC,KAAK;YACT,iDAAiD;QACnD,CAAC;QAED,KAAK,CAAC,KAAK;YACT,0BAA0B;QAC5B,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/telemetry/backends/jsonl.d.ts ADDED Viewed

@@ -0,0 +1,31 @@
+/**
+ * JSONL File Telemetry Backend
+ *
+ * Feature: 007-pnpm-timeout-telemetry
+ * Implements: FR-011, FR-014a
+ *
+ * Appends JSON objects to a file in JSONL format (one JSON object per line).
+ * Uses append-mode writes for durability without explicit flush.
+ */
+import type { TelemetryBackend, TelemetryVerbosity } from '../types.js';
+/**
+ * JSONL backend configuration options.
+ */
+export interface JsonlBackendOptions {
+    /** Path to the JSONL output file */
+    filePath: string;
+    /** Verbosity level controls which fields are written */
+    verbosity: TelemetryVerbosity;
+    /** Max events to buffer before auto-flush (default: 100) */
+    bufferSize?: number;
+    /** Periodic flush interval in ms (default: 5000) */
+    flushIntervalMs?: number;
+}
+/**
+ * Creates a JSONL file telemetry backend.
+ *
+ * @param options - Configuration options
+ * @returns TelemetryBackend implementation
+ */
+export declare function createJsonlBackend(options: JsonlBackendOptions): TelemetryBackend;
+//# sourceMappingURL=jsonl.d.ts.map

package/dist/telemetry/backends/jsonl.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"jsonl.d.ts","sourceRoot":"","sources":["../../../src/telemetry/backends/jsonl.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAGH,OAAO,KAAK,EAAE,gBAAgB,EAAgB,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAEtF;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,wDAAwD;IACxD,SAAS,EAAE,kBAAkB,CAAC;IAC9B,4DAA4D;IAC5D,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,oDAAoD;IACpD,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AA4BD;;;;;GAKG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,mBAAmB,GAAG,gBAAgB,CAuFjF"}