@oddessentials/odd-ai-reviewers 1.10.1 → 1.11.0

package/dist/agents/control_flow/types.d.ts

@@ -2,7 +2,7 @@
  * Control Flow Analysis Types
  *
  * Type definitions for the control flow analysis agent.
- * Based on specs/001-control-flow-analysis/contracts/control-flow-types.ts
+ * Based on specs/archive/001-control-flow-analysis/contracts/control-flow-types.ts
  */
 import { z } from 'zod';
 export declare const VulnerabilityTypeSchema: z.ZodEnum<{

package/dist/agents/control_flow/types.js

@@ -2,7 +2,7 @@
  * Control Flow Analysis Types
  *
  * Type definitions for the control flow analysis agent.
- * Based on specs/001-control-flow-analysis/contracts/control-flow-types.ts
+ * Based on specs/archive/001-control-flow-analysis/contracts/control-flow-types.ts
  */
 import { z } from 'zod';
 // =============================================================================

package/dist/agents/index.d.ts

@@ -5,6 +5,7 @@
  * Manages agent registration and lookup.
  */
 export type { Severity, Finding, AgentMetrics, AgentResult, AgentContext, ReviewAgent, } from './types.js';
+export { getSecurityMetadata, getKnownEnv } from './metadata.js';
 import type { ReviewAgent } from './types.js';
 /**
  * Register an agent

package/dist/agents/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/agents/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,YAAY,EACV,QAAQ,EACR,OAAO,EACP,YAAY,EACZ,WAAW,EACX,YAAY,EACZ,WAAW,GACZ,MAAM,YAAY,CAAC;AAGpB,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAO9C;;GAEG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,WAAW,GAAG,IAAI,CAEtD;AAED;;GAEG;AACH,wBAAgB,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,WAAW,GAAG,SAAS,CAE5D;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,WAAW,EAAE,CAE5C;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,GAAG,EAAE,MAAM,EAAE,GAAG,WAAW,EAAE,CAE3D"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/agents/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,YAAY,EACV,QAAQ,EACR,OAAO,EACP,YAAY,EACZ,WAAW,EACX,YAAY,EACZ,WAAW,GACZ,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAGjE,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAO9C;;GAEG;AACH,wBAAgB,aAAa,CAAC,KAAK,EAAE,WAAW,GAAG,IAAI,CAEtD;AAED;;GAEG;AACH,wBAAgB,QAAQ,CAAC,EAAE,EAAE,MAAM,GAAG,WAAW,GAAG,SAAS,CAE5D;AAED;;GAEG;AACH,wBAAgB,YAAY,IAAI,WAAW,EAAE,CAE5C;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,GAAG,EAAE,MAAM,EAAE,GAAG,WAAW,EAAE,CAE3D"}

package/dist/agents/index.js

@@ -4,6 +4,8 @@
  * Re-exports types from ./types.ts for backward compatibility.
  * Manages agent registration and lookup.
  */
+// Re-export metadata helpers (agent environment and security metadata)
+export { getSecurityMetadata, getKnownEnv } from './metadata.js';
 /**
  * Agent registry
  */

package/dist/agents/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/agents/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAeH;;GAEG;AACH,MAAM,MAAM,GAAG,IAAI,GAAG,EAAuB,CAAC;AAE9C;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,KAAkB;IAC9C,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;AAC9B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,QAAQ,CAAC,EAAU;IACjC,OAAO,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY;IAC1B,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;AACrC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,GAAa;IAC1C,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAoB,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;AAC1F,CAAC;AAED,6BAA6B;AAC7B,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAChD,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC/C,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAChE,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAE3D,aAAa,CAAC,YAAY,CAAC,CAAC;AAC5B,aAAa,CAAC,aAAa,CAAC,CAAC,CAAC,2DAA2D;AACzF,aAAa,CAAC,cAAc,CAAC,CAAC;AAC9B,aAAa,CAAC,YAAY,CAAC,CAAC;AAC5B,aAAa,CAAC,aAAa,CAAC,CAAC;AAC7B,aAAa,CAAC,qBAAqB,CAAC,CAAC,CAAC,gCAAgC;AACtE,aAAa,CAAC,gBAAgB,CAAC,CAAC,CAAC,oDAAoD"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/agents/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAYH,uEAAuE;AACvE,OAAO,EAAE,mBAAmB,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAKjE;;GAEG;AACH,MAAM,MAAM,GAAG,IAAI,GAAG,EAAuB,CAAC;AAE9C;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,KAAkB;IAC9C,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,EAAE,KAAK,CAAC,CAAC;AAC9B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,QAAQ,CAAC,EAAU;IACjC,OAAO,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY;IAC1B,OAAO,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;AACrC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,GAAa;IAC1C,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAoB,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;AAC1F,CAAC;AAED,6BAA6B;AAC7B,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,gBAAgB,CAAC;AAChD,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC/C,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAChE,OAAO,EAAE,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AAE3D,aAAa,CAAC,YAAY,CAAC,CAAC;AAC5B,aAAa,CAAC,aAAa,CAAC,CAAC,CAAC,2DAA2D;AACzF,aAAa,CAAC,cAAc,CAAC,CAAC;AAC9B,aAAa,CAAC,YAAY,CAAC,CAAC;AAC5B,aAAa,CAAC,aAAa,CAAC,CAAC;AAC7B,aAAa,CAAC,qBAAqB,CAAC,CAAC,CAAC,gCAAgC;AACtE,aAAa,CAAC,gBAAgB,CAAC,CAAC,CAAC,oDAAoD"}

package/dist/security-logger.d.ts

@@ -10,7 +10,7 @@
  * - Consistent structured format across all events
  *
  * @see FR-021, FR-022, FR-023, FR-024
- * @see specs/006-quality-enforcement/contracts/security-event.ts
+ * @see specs/archive/006-quality-enforcement/contracts/security-event.ts
  */
 import { z } from 'zod';
 /**

package/dist/security-logger.js

@@ -10,7 +10,7 @@
  * - Consistent structured format across all events
  *
  * @see FR-021, FR-022, FR-023, FR-024
- * @see specs/006-quality-enforcement/contracts/security-event.ts
+ * @see specs/archive/006-quality-enforcement/contracts/security-event.ts
  */
 import { createHash } from 'crypto';
 import { z } from 'zod';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@oddessentials/odd-ai-reviewers",
-  "version": "1.10.1",
+  "version": "1.11.0",
   "description": "AI-powered code review CLI - run locally or in CI/CD pipelines",
   "type": "module",
   "main": "dist/main.js",
@@ -32,19 +32,19 @@
   "homepage": "https://github.com/oddessentials/odd-ai-reviewers#readme",
   "dependencies": {
     "@actions/cache": "5.0.5",
-    "@anthropic-ai/sdk": "0.71.2",
+    "@anthropic-ai/sdk": "0.78.0",
     "@octokit/rest": "^22.0.1",
     "commander": "^14.0.3",
     "minimatch": "^10.2.4",
-    "openai": "^6.27.0",
+    "openai": "^6.29.0",
     "typescript": "5.9.3",
     "yaml": "^2.8.2",
     "zod": "^4.3.6"
   },
   "devDependencies": {
-    "@types/node": "25.4.0",
-    "@vitest/coverage-v8": "4.0.18",
-    "vitest": "^4.0.18"
+    "@types/node": "25.5.0",
+    "@vitest/coverage-v8": "4.1.0",
+    "vitest": "^4.1.0"
   },
   "engines": {
     "node": ">=22.0.0"

package/dist/__tests__/hermetic-setup.d.ts

@@ -1,55 +0,0 @@
-/**
- * Hermetic Test Setup Utilities
- *
- * Shared test infrastructure for deterministic, isolated tests.
- * Located in __tests__/ directory which is classified as test code
- * by dependency-cruiser, allowing legitimate vitest imports.
- *
- * Provides:
- * - Frozen time (no wall-clock dependencies)
- * - Deterministic teardown
- *
- * @example
- * ```typescript
- * import { describe, it, beforeEach, afterEach } from 'vitest';
- * import {
- *   FROZEN_TIMESTAMP,
- *   setupHermeticTest,
- *   teardownHermeticTest,
- * } from '../hermetic-setup.js';
- *
- * describe('MyFeature', () => {
- *   beforeEach(() => setupHermeticTest());
- *   afterEach(() => teardownHermeticTest());
- *
- *   it('works with frozen time', () => {
- *     expect(new Date().toISOString()).toBe(FROZEN_TIMESTAMP);
- *   });
- * });
- * ```
- */
-/**
- * Frozen test timestamp - use consistently across all hermetic tests
- */
-export declare const FROZEN_TIMESTAMP = "2026-01-29T00:00:00.000Z";
-export declare const FROZEN_DATE: Date;
-/**
- * Setup hermetic test environment
- *
- * Configures:
- * - Frozen system time to FROZEN_TIMESTAMP
- *
- * Call this in beforeEach()
- */
-export declare function setupHermeticTest(): void;
-/**
- * Teardown hermetic test environment
- *
- * Restores:
- * - Real system time
- * - All mocks
- *
- * Call this in afterEach()
- */
-export declare function teardownHermeticTest(): void;
-//# sourceMappingURL=hermetic-setup.d.ts.map

package/dist/__tests__/hermetic-setup.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"hermetic-setup.d.ts","sourceRoot":"","sources":["../../src/__tests__/hermetic-setup.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AAIH;;GAEG;AACH,eAAO,MAAM,gBAAgB,6BAA6B,CAAC;AAC3D,eAAO,MAAM,WAAW,MAA6B,CAAC;AAEtD;;;;;;;GAOG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAGxC;AAED;;;;;;;;GAQG;AACH,wBAAgB,oBAAoB,IAAI,IAAI,CAG3C"}

package/dist/__tests__/hermetic-setup.js

@@ -1,62 +0,0 @@
-/**
- * Hermetic Test Setup Utilities
- *
- * Shared test infrastructure for deterministic, isolated tests.
- * Located in __tests__/ directory which is classified as test code
- * by dependency-cruiser, allowing legitimate vitest imports.
- *
- * Provides:
- * - Frozen time (no wall-clock dependencies)
- * - Deterministic teardown
- *
- * @example
- * ```typescript
- * import { describe, it, beforeEach, afterEach } from 'vitest';
- * import {
- *   FROZEN_TIMESTAMP,
- *   setupHermeticTest,
- *   teardownHermeticTest,
- * } from '../hermetic-setup.js';
- *
- * describe('MyFeature', () => {
- *   beforeEach(() => setupHermeticTest());
- *   afterEach(() => teardownHermeticTest());
- *
- *   it('works with frozen time', () => {
- *     expect(new Date().toISOString()).toBe(FROZEN_TIMESTAMP);
- *   });
- * });
- * ```
- */
-import { vi } from 'vitest';
-/**
- * Frozen test timestamp - use consistently across all hermetic tests
- */
-export const FROZEN_TIMESTAMP = '2026-01-29T00:00:00.000Z';
-export const FROZEN_DATE = new Date(FROZEN_TIMESTAMP);
-/**
- * Setup hermetic test environment
- *
- * Configures:
- * - Frozen system time to FROZEN_TIMESTAMP
- *
- * Call this in beforeEach()
- */
-export function setupHermeticTest() {
-    vi.useFakeTimers();
-    vi.setSystemTime(FROZEN_DATE);
-}
-/**
- * Teardown hermetic test environment
- *
- * Restores:
- * - Real system time
- * - All mocks
- *
- * Call this in afterEach()
- */
-export function teardownHermeticTest() {
-    vi.useRealTimers();
-    vi.restoreAllMocks();
-}
-//# sourceMappingURL=hermetic-setup.js.map

package/dist/__tests__/hermetic-setup.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"hermetic-setup.js","sourceRoot":"","sources":["../../src/__tests__/hermetic-setup.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA6BG;AAEH,OAAO,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAE5B;;GAEG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,0BAA0B,CAAC;AAC3D,MAAM,CAAC,MAAM,WAAW,GAAG,IAAI,IAAI,CAAC,gBAAgB,CAAC,CAAC;AAEtD;;;;;;;GAOG;AACH,MAAM,UAAU,iBAAiB;IAC/B,EAAE,CAAC,aAAa,EAAE,CAAC;IACnB,EAAE,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;AAChC,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,oBAAoB;IAClC,EAAE,CAAC,aAAa,EAAE,CAAC;IACnB,EAAE,CAAC,eAAe,EAAE,CAAC;AACvB,CAAC"}