npm - @omnizap-system/omnizap - Versions diffs - 2.5.12 - Mend

@omnizap-system/omnizap 2.5.12

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (425) hide show

package/.clusterfuzzlite/Dockerfile +10 -0
package/.env.example +907 -0
package/.github/codeql/codeql-config.yml +10 -0
package/.github/dependabot.yml +35 -0
package/.github/workflows/ci.yml +73 -0
package/.github/workflows/codeql.yml +106 -0
package/.github/workflows/db-migration-check.yml +98 -0
package/.github/workflows/dependency-review.yml +22 -0
package/.github/workflows/deploy.yml +95 -0
package/.github/workflows/release.yml +106 -0
package/.github/workflows/security-attest-provenance.yml +51 -0
package/.github/workflows/security-gitleaks.yml +34 -0
package/.github/workflows/security-runner-hardening.yml +31 -0
package/.github/workflows/security-scorecard.yml +44 -0
package/.github/workflows/security-zap-baseline.yml +44 -0
package/.github/workflows/security-zap-full-scan.yml +43 -0
package/.github/workflows/security-zizmor.yml +36 -0
package/.github/workflows/wiki-sync.yml +44 -0
package/.gitleaks.toml +15 -0
package/.prettierrc +34 -0
package/CODE_OF_CONDUCT.md +114 -0
package/LICENSE +56 -0
package/README.md +110 -0
package/SECURITY.md +110 -0
package/app/config/index.js +4 -0
package/app/configParts/adminIdentity.js +92 -0
package/app/configParts/baileysConfig.js +1818 -0
package/app/configParts/groupUtils.js +692 -0
package/app/configParts/loggerConfig.js +394 -0
package/app/configParts/messagePersistenceService.js +305 -0
package/app/connection/baileysCompatibility.test.js +40 -0
package/app/connection/baileysDbAuthState.js +344 -0
package/app/connection/socketController.js +2243 -0
package/app/controllers/messageController.js +7 -0
package/app/controllers/messagePipeline/commandMiddleware.js +146 -0
package/app/controllers/messagePipeline/conversationMiddleware.js +183 -0
package/app/controllers/messagePipeline/messagePipelineMiddlewares.test.js +522 -0
package/app/controllers/messagePipeline/postProcessingMiddleware.js +41 -0
package/app/controllers/messagePipeline/preProcessingMiddlewares.js +166 -0
package/app/controllers/messageProcessingPipeline.js +699 -0
package/app/modules/adminModule/AGENT.md +4056 -0
package/app/modules/adminModule/adminAiHelpService.js +56 -0
package/app/modules/adminModule/adminConfigRuntime.js +177 -0
package/app/modules/adminModule/commandConfig.json +7122 -0
package/app/modules/adminModule/groupCommandHandlers.js +1823 -0
package/app/modules/adminModule/groupCommandHandlers.test.js +350 -0
package/app/modules/adminModule/groupEventHandlers.js +399 -0
package/app/modules/aiModule/AGENT.md +547 -0
package/app/modules/aiModule/aiAiHelpService.js +14 -0
package/app/modules/aiModule/aiConfigRuntime.js +135 -0
package/app/modules/aiModule/catCommand.js +967 -0
package/app/modules/aiModule/commandConfig.json +981 -0
package/app/modules/analyticsModule/messageAnalysisEventRepository.js +83 -0
package/app/modules/gameModule/AGENT.md +196 -0
package/app/modules/gameModule/commandConfig.json +366 -0
package/app/modules/gameModule/diceCommand.js +42 -0
package/app/modules/gameModule/gameAiHelpService.js +14 -0
package/app/modules/gameModule/gameConfigRuntime.js +68 -0
package/app/modules/menuModule/AGENT.md +205 -0
package/app/modules/menuModule/commandConfig.json +366 -0
package/app/modules/menuModule/common.js +316 -0
package/app/modules/menuModule/menuAiHelpService.js +14 -0
package/app/modules/menuModule/menuConfigRuntime.js +68 -0
package/app/modules/menuModule/menus.js +66 -0
package/app/modules/playModule/AGENT.md +321 -0
package/app/modules/playModule/commandConfig.json +584 -0
package/app/modules/playModule/playAiHelpService.js +14 -0
package/app/modules/playModule/playCommand.js +1417 -0
package/app/modules/playModule/playConfigRuntime.js +68 -0
package/app/modules/quoteModule/AGENT.md +199 -0
package/app/modules/quoteModule/commandConfig.json +366 -0
package/app/modules/quoteModule/quoteAiHelpService.js +14 -0
package/app/modules/quoteModule/quoteCommand.js +842 -0
package/app/modules/quoteModule/quoteConfigRuntime.js +68 -0
package/app/modules/rpgPokemonModule/AGENT.md +229 -0
package/app/modules/rpgPokemonModule/commandConfig.json +386 -0
package/app/modules/rpgPokemonModule/rpgBattleCanvasRenderer.js +795 -0
package/app/modules/rpgPokemonModule/rpgBattleService.js +2110 -0
package/app/modules/rpgPokemonModule/rpgBattleService.test.js +770 -0
package/app/modules/rpgPokemonModule/rpgEvolutionUtils.js +22 -0
package/app/modules/rpgPokemonModule/rpgPokemonAiHelpService.js +14 -0
package/app/modules/rpgPokemonModule/rpgPokemonCommand.js +174 -0
package/app/modules/rpgPokemonModule/rpgPokemonConfigRuntime.js +68 -0
package/app/modules/rpgPokemonModule/rpgPokemonDomain.js +192 -0
package/app/modules/rpgPokemonModule/rpgPokemonDomain.test.js +93 -0
package/app/modules/rpgPokemonModule/rpgPokemonEvolution.test.js +46 -0
package/app/modules/rpgPokemonModule/rpgPokemonMessages.js +746 -0
package/app/modules/rpgPokemonModule/rpgPokemonRepository.js +1847 -0
package/app/modules/rpgPokemonModule/rpgPokemonService.js +6839 -0
package/app/modules/rpgPokemonModule/rpgProfileCanvasRenderer.js +354 -0
package/app/modules/statsModule/AGENT.md +320 -0
package/app/modules/statsModule/commandConfig.json +540 -0
package/app/modules/statsModule/globalRankingCommand.js +64 -0
package/app/modules/statsModule/rankingCommand.js +41 -0
package/app/modules/statsModule/rankingCommon.js +1305 -0
package/app/modules/statsModule/statsAiHelpService.js +14 -0
package/app/modules/statsModule/statsConfigRuntime.js +68 -0
package/app/modules/stickerModule/AGENT.md +692 -0
package/app/modules/stickerModule/addStickerMetadata.js +239 -0
package/app/modules/stickerModule/commandConfig.json +1216 -0
package/app/modules/stickerModule/convertToWebp.js +367 -0
package/app/modules/stickerModule/stickerAiHelpService.js +14 -0
package/app/modules/stickerModule/stickerCommand.js +446 -0
package/app/modules/stickerModule/stickerConfigRuntime.js +68 -0
package/app/modules/stickerModule/stickerConvertCommand.js +159 -0
package/app/modules/stickerModule/stickerTextCommand.js +653 -0
package/app/modules/stickerPackModule/AGENT.md +215 -0
package/app/modules/stickerPackModule/autoPackCollectorRuntime.js +20 -0
package/app/modules/stickerPackModule/autoPackCollectorService.js +357 -0
package/app/modules/stickerPackModule/commandConfig.json +387 -0
package/app/modules/stickerPackModule/domainEventOutboxRepository.js +227 -0
package/app/modules/stickerPackModule/domainEvents.js +52 -0
package/app/modules/stickerPackModule/semanticReclassificationEngine.js +429 -0
package/app/modules/stickerPackModule/semanticReclassificationEngine.test.js +75 -0
package/app/modules/stickerPackModule/semanticThemeClusterService.js +544 -0
package/app/modules/stickerPackModule/stickerAssetClassificationRepository.js +400 -0
package/app/modules/stickerPackModule/stickerAssetRepository.js +400 -0
package/app/modules/stickerPackModule/stickerAssetReprocessQueueRepository.js +175 -0
package/app/modules/stickerPackModule/stickerAutoPackByTagsRuntime.js +3702 -0
package/app/modules/stickerPackModule/stickerClassificationBackgroundRuntime.js +559 -0
package/app/modules/stickerPackModule/stickerClassificationService.js +557 -0
package/app/modules/stickerPackModule/stickerDedicatedTaskWorkerRuntime.js +249 -0
package/app/modules/stickerPackModule/stickerDomainEventBus.js +65 -0
package/app/modules/stickerPackModule/stickerDomainEventConsumerRuntime.js +208 -0
package/app/modules/stickerPackModule/stickerMarketplaceDriftService.js +99 -0
package/app/modules/stickerPackModule/stickerObjectStorageService.js +285 -0
package/app/modules/stickerPackModule/stickerPackAiHelpService.js +14 -0
package/app/modules/stickerPackModule/stickerPackCommandHandlers.js +1148 -0
package/app/modules/stickerPackModule/stickerPackConfigRuntime.js +68 -0
package/app/modules/stickerPackModule/stickerPackEngagementRepository.js +152 -0
package/app/modules/stickerPackModule/stickerPackErrors.js +30 -0
package/app/modules/stickerPackModule/stickerPackInteractionEventRepository.js +101 -0
package/app/modules/stickerPackModule/stickerPackItemRepository.js +432 -0
package/app/modules/stickerPackModule/stickerPackMarketplaceService.js +313 -0
package/app/modules/stickerPackModule/stickerPackMessageService.js +268 -0
package/app/modules/stickerPackModule/stickerPackRepository.js +450 -0
package/app/modules/stickerPackModule/stickerPackScoreSnapshotRepository.js +179 -0
package/app/modules/stickerPackModule/stickerPackScoreSnapshotRuntime.js +271 -0
package/app/modules/stickerPackModule/stickerPackService.js +733 -0
package/app/modules/stickerPackModule/stickerPackServiceRuntime.js +32 -0
package/app/modules/stickerPackModule/stickerPackUtils.js +107 -0
package/app/modules/stickerPackModule/stickerStorageService.js +559 -0
package/app/modules/stickerPackModule/stickerWorkerPipelineRuntime.js +242 -0
package/app/modules/stickerPackModule/stickerWorkerTaskQueueRepository.js +242 -0
package/app/modules/systemMetricsModule/AGENT.md +193 -0
package/app/modules/systemMetricsModule/commandConfig.json +344 -0
package/app/modules/systemMetricsModule/pingCommand.js +399 -0
package/app/modules/systemMetricsModule/systemMetricsAiHelpService.js +14 -0
package/app/modules/systemMetricsModule/systemMetricsConfigRuntime.js +68 -0
package/app/modules/tiktokModule/AGENT.md +196 -0
package/app/modules/tiktokModule/commandConfig.json +366 -0
package/app/modules/tiktokModule/tiktokAiHelpService.js +14 -0
package/app/modules/tiktokModule/tiktokCommand.js +716 -0
package/app/modules/tiktokModule/tiktokConfigRuntime.js +68 -0
package/app/modules/userModule/AGENT.md +200 -0
package/app/modules/userModule/commandConfig.json +386 -0
package/app/modules/userModule/userAiHelpService.js +14 -0
package/app/modules/userModule/userCommand.js +1155 -0
package/app/modules/userModule/userConfigRuntime.js +68 -0
package/app/modules/waifuPicsModule/AGENT.md +431 -0
package/app/modules/waifuPicsModule/commandConfig.json +780 -0
package/app/modules/waifuPicsModule/waifuPicsAiHelpService.js +14 -0
package/app/modules/waifuPicsModule/waifuPicsCommand.js +586 -0
package/app/modules/waifuPicsModule/waifuPicsConfigRuntime.js +68 -0
package/app/observability/metrics.js +766 -0
package/app/services/ai/aiHelpResponseCacheRepository.js +280 -0
package/app/services/ai/aiLearningRepository.js +400 -0
package/app/services/ai/commandConfigEnrichmentRepository.js +769 -0
package/app/services/ai/commandConfigEnrichmentService.js +452 -0
package/app/services/ai/commandConfigValidationService.js +443 -0
package/app/services/ai/commandToolBuilderService.js +192 -0
package/app/services/ai/conversationRouterService.js +516 -0
package/app/services/ai/geminiService.js +115 -0
package/app/services/ai/geminiService.test.js +87 -0
package/app/services/ai/globalModuleAiHelpService.js +1412 -0
package/app/services/ai/globalToolCallingService.js +203 -0
package/app/services/ai/messageCommandExecutionService.js +391 -0
package/app/services/ai/moduleAiHelpCoreService.js +1099 -0
package/app/services/ai/moduleAiHelpWrapperFactory.js +65 -0
package/app/services/ai/moduleCommandConfigRuntimeService.js +113 -0
package/app/services/ai/moduleToolExecutorService.js +464 -0
package/app/services/ai/moduleToolRegistryService.js +178 -0
package/app/services/ai/toolCandidateSelectorService.js +781 -0
package/app/services/auth/googleWebLinkService.js +80 -0
package/app/services/auth/whatsappLoginLinkService.js +230 -0
package/app/services/external/pokeApiService.js +398 -0
package/app/services/group/groupMetadataService.js +311 -0
package/app/services/infra/dbWriteQueue.js +874 -0
package/app/services/infra/featureFlagService.js +131 -0
package/app/services/infra/queueUtils.js +55 -0
package/app/services/messaging/captchaService.js +491 -0
package/app/services/messaging/messagePersistenceService.js +1 -0
package/app/services/messaging/newsBroadcastService.js +347 -0
package/app/services/sticker/stickerFocusService.js +347 -0
package/app/services/sticker/stickerFocusService.test.js +43 -0
package/app/store/aiPromptStore.js +38 -0
package/app/store/conversationSessionStore.js +131 -0
package/app/store/groupConfigStore.js +58 -0
package/app/store/premiumUserStore.js +54 -0
package/app/utils/antiLink/antiLinkModule.js +700 -0
package/app/utils/http/getImageBufferModule.js +18 -0
package/app/utils/json/jsonSanitizer.js +113 -0
package/app/utils/json/jsonSanitizer.test.js +40 -0
package/app/utils/systemMetrics/systemMetricsModule.js +88 -0
package/app/workers/aiLearningWorker.js +605 -0
package/app/workers/commandConfigEnrichmentWorker.js +242 -0
package/database/index.js +2075 -0
package/database/init.js +151 -0
package/database/migrations/.gitkeep +0 -0
package/database/migrations/20260307_d0_hardening_down.sql +64 -0
package/database/migrations/20260307_d0_hardening_up.sql +79 -0
package/database/migrations/20260307_d1_terms_acceptance_down.sql +11 -0
package/database/migrations/20260307_d1_terms_acceptance_up.sql +37 -0
package/database/migrations/20260307_d2_auth_hardening_down.sql +75 -0
package/database/migrations/20260307_d2_auth_hardening_up.sql +100 -0
package/database/migrations/20260314_d7_canonical_sender_down.sql +53 -0
package/database/migrations/20260314_d7_canonical_sender_up.sql +114 -0
package/database/migrations/20260406_d30_security_analytics_down.sql +95 -0
package/database/migrations/20260406_d30_security_analytics_up.sql +292 -0
package/database/migrations/20260407_d31_web_google_session_token_hardening_down.sql +2 -0
package/database/migrations/20260407_d31_web_google_session_token_hardening_up.sql +17 -0
package/database/migrations/20260408_d32_ai_help_response_cache_down.sql +1 -0
package/database/migrations/20260408_d32_ai_help_response_cache_up.sql +22 -0
package/database/migrations/20260409_d33_ai_learning_tables_down.sql +4 -0
package/database/migrations/20260409_d33_ai_learning_tables_up.sql +52 -0
package/database/migrations/20260410_d34_command_config_enrichment_down.sql +3 -0
package/database/migrations/20260410_d34_command_config_enrichment_up.sql +48 -0
package/database/schema.sql +1186 -0
package/docker-compose.yml +104 -0
package/docs/audits/stickerCatalogController-out-of-scope.md +103 -0
package/docs/audits/stickerCatalogController-symbols.md +58 -0
package/docs/compliance/acceptable-use-policy-2026-03-07.md +35 -0
package/docs/compliance/dpa-b2b-standard-2026-03-07.md +80 -0
package/docs/compliance/monthly-compliance-checklist-2026-03-07.md +88 -0
package/docs/compliance/notice-and-takedown-policy-2026-03-07.md +34 -0
package/docs/compliance/privacy-policy-2026-03-07.md +75 -0
package/docs/compliance/subprocessors-inventory-2026-03-07.md +16 -0
package/docs/database/production-db-evolution-runbook-2026q1.md +365 -0
package/docs/security/dsar-lgpd-runbook-2026-03-07.md +86 -0
package/docs/security/incident-response-lgpd-anpd-runbook-2026-03-07.md +77 -0
package/docs/security/network-hardening-runbook-2026-03-07.md +137 -0
package/docs/seo/omnizap-seo-playbook-br-2026-02-28.md +238 -0
package/docs/seo/satellite-page-template.md +116 -0
package/docs/seo/satellite-pages-phase1.json +364 -0
package/docs/wiki/Home.md +120 -0
package/docs/wiki/pair-extraordinaire-2026-03-08.md +3 -0
package/docs/wiki/recent-changes-2026-03-08.md +47 -0
package/ecosystem.prod.config.cjs +135 -0
package/eslint.config.js +89 -0
package/index.js +488 -0
package/ml/clip_classifier/Dockerfile +18 -0
package/ml/clip_classifier/README.md +118 -0
package/ml/clip_classifier/adaptive_scoring.py +40 -0
package/ml/clip_classifier/classifier.py +654 -0
package/ml/clip_classifier/embedding_store.py +481 -0
package/ml/clip_classifier/env_loader.py +15 -0
package/ml/clip_classifier/llm_label_expander.py +144 -0
package/ml/clip_classifier/main.py +213 -0
package/ml/clip_classifier/requirements.txt +10 -0
package/ml/clip_classifier/similarity_engine.py +74 -0
package/new-logo.png +0 -0
package/observability/alert-rules.yml +60 -0
package/observability/grafana/dashboards/omnizap-mysql.json +136 -0
package/observability/grafana/dashboards/omnizap-overview.json +170 -0
package/observability/grafana/provisioning/dashboards/dashboards.yml +11 -0
package/observability/grafana/provisioning/datasources/datasources.yml +15 -0
package/observability/loki-config.yml +38 -0
package/observability/mysql-setup.sql +46 -0
package/observability/prometheus.yml +35 -0
package/observability/promtail-config.yml +84 -0
package/observability/sticker-catalog-slo.md +83 -0
package/observability/sticker-scale-hardening-rollout.md +128 -0
package/package.json +144 -0
package/public/apple-touch-icon.png +0 -0
package/public/assets/css/commands-react.input.css +71 -0
package/public/assets/css/create-pack-react.input.css +31 -0
package/public/assets/css/home-react.input.css +106 -0
package/public/assets/css/login-react.input.css +58 -0
package/public/assets/css/stickers-react.input.css +18 -0
package/public/assets/css/terms-react.input.css +115 -0
package/public/assets/css/user-react.input.css +57 -0
package/public/assets/images/brand-icon-192.png +0 -0
package/public/assets/images/brand-logo-128.webp +0 -0
package/public/assets/images/hero-banner-1280.jpg +0 -0
package/public/comandos/commands-catalog.json +4517 -0
package/public/css/api-docs.css +161 -0
package/public/css/stickers-admin.css +1288 -0
package/public/css/styles.css +679 -0
package/public/css/systemadm/admin.css +474 -0
package/public/css/systemadm/base.css +73 -0
package/public/css/systemadm/components.css +662 -0
package/public/css/systemadm/layout.css +229 -0
package/public/css/systemadm/tokens.css +56 -0
package/public/favicon-16x16.png +0 -0
package/public/favicon-32x32.png +0 -0
package/public/favicon.ico +0 -0
package/public/js/apps/apiDocsApp.js +235 -0
package/public/js/apps/commandsReactApp.js +528 -0
package/public/js/apps/createPackApp.js +1646 -0
package/public/js/apps/homeReactApp.js +942 -0
package/public/js/apps/loginReactApp.js +496 -0
package/public/js/apps/stickersAdminApp.js +1753 -0
package/public/js/apps/stickersApp.js +3797 -0
package/public/js/apps/termsReactApp.js +528 -0
package/public/js/apps/userApp.js +2540 -0
package/public/js/apps/userProfile/actions.js +66 -0
package/public/js/apps/userReactApp.js +547 -0
package/public/js/catalog.js +950 -0
package/public/pages/api-docs.html +40 -0
package/public/pages/aup.html +158 -0
package/public/pages/comandos.html +41 -0
package/public/pages/dpa.html +227 -0
package/public/pages/home.html +45 -0
package/public/pages/licenca.html +182 -0
package/public/pages/login.html +40 -0
package/public/pages/notice-and-takedown.html +234 -0
package/public/pages/politica-de-privacidade.html +251 -0
package/public/pages/seo-bot-whatsapp-para-grupo.html +350 -0
package/public/pages/seo-bot-whatsapp-sem-programar.html +350 -0
package/public/pages/seo-como-automatizar-avisos-no-whatsapp.html +350 -0
package/public/pages/seo-como-criar-comandos-whatsapp.html +350 -0
package/public/pages/seo-como-evitar-spam-no-whatsapp.html +350 -0
package/public/pages/seo-como-moderar-grupo-whatsapp.html +350 -0
package/public/pages/seo-como-organizar-comunidade-whatsapp.html +350 -0
package/public/pages/seo-melhor-bot-whatsapp-para-grupos.html +350 -0
package/public/pages/stickers-admin.html +31 -0
package/public/pages/stickers-create.html +41 -0
package/public/pages/stickers.html +45 -0
package/public/pages/suboperadores.html +237 -0
package/public/pages/termos-de-uso-texto-integral.html +241 -0
package/public/pages/termos-de-uso.html +41 -0
package/public/pages/user-password-reset.html +32 -0
package/public/pages/user-systemadm.html +508 -0
package/public/pages/user.html +39 -0
package/public/robots.txt +9 -0
package/public/site.webmanifest +24 -0
package/public/sitemap.xml +98 -0
package/schemas/command-config.schema.json +582 -0
package/scripts/baileys-compat-smoke.mjs +12 -0
package/scripts/cache-bust.mjs +142 -0
package/scripts/deploy.sh +916 -0
package/scripts/email-broadcast-terms-update.mjs +170 -0
package/scripts/enrich-command-discovery-fields.mjs +286 -0
package/scripts/generate-command-config-schema.mjs +273 -0
package/scripts/generate-commands-catalog.mjs +308 -0
package/scripts/generate-module-agents.mjs +631 -0
package/scripts/generate-seo-satellite-pages.mjs +400 -0
package/scripts/github-deploy-notify.mjs +174 -0
package/scripts/github-release-notify.mjs +219 -0
package/scripts/release.sh +599 -0
package/scripts/run-codeql-local.sh +116 -0
package/scripts/run-prettier-all.mjs +25 -0
package/scripts/security-smoketest.mjs +581 -0
package/scripts/sticker-catalog-loadtest.mjs +210 -0
package/scripts/sticker-worker-task.mjs +119 -0
package/scripts/sync-readme-snapshot.mjs +133 -0
package/scripts/validate-command-config-schema.mjs +130 -0
package/scripts/validate-command-configs.mjs +15 -0
package/scripts/wiki-sync.sh +191 -0
package/server/auth/googleWebAuth/googleWebAuthRuntime.js +62 -0
package/server/auth/googleWebAuth/googleWebAuthService.js +807 -0
package/server/auth/jwt/webJwtService.js +147 -0
package/server/auth/stickerCatalogAuthContext.js +165 -0
package/server/auth/termsAcceptance/termsAcceptanceHandler.js +189 -0
package/server/auth/userPassword/index.js +14 -0
package/server/auth/userPassword/userPasswordAuthService.js +422 -0
package/server/auth/userPassword/userPasswordCrypto.js +199 -0
package/server/auth/userPassword/userPasswordCrypto.test.js +76 -0
package/server/auth/userPassword/userPasswordRecoveryService.js +728 -0
package/server/auth/validation/authSchemas.js +236 -0
package/server/auth/webAccount/webAccountHandlers.js +1434 -0
package/server/controllers/admin/adminBanService.js +138 -0
package/server/controllers/admin/adminPanelHandlers.js +2083 -0
package/server/controllers/admin/stickerCatalogAdminContext.js +17 -0
package/server/controllers/admin/systemAdminController.js +201 -0
package/server/controllers/email/emailAutomationController.js +239 -0
package/server/controllers/metricsController.js +21 -0
package/server/controllers/seo/stickerCatalogSeoContext.js +514 -0
package/server/controllers/sticker/nonCatalogHandlers.js +303 -0
package/server/controllers/sticker/stickerCatalogController.js +4700 -0
package/server/controllers/system/contactController.js +115 -0
package/server/controllers/system/githubController.js +137 -0
package/server/controllers/system/stickerCatalogSystemContext.js +758 -0
package/server/controllers/system/storageController.js +154 -0
package/server/controllers/system/systemController.js +135 -0
package/server/controllers/system/systemMetricsController.js +156 -0
package/server/controllers/system/visitController.js +90 -0
package/server/controllers/userController.js +145 -0
package/server/email/emailAutomationRuntime.js +225 -0
package/server/email/emailAutomationService.js +125 -0
package/server/email/emailOutboxRepository.js +282 -0
package/server/email/emailTemplateService.js +480 -0
package/server/email/emailTransportService.js +156 -0
package/server/http/clientIp.js +95 -0
package/server/http/httpRequestUtils.js +262 -0
package/server/http/httpRequestUtils.test.js +80 -0
package/server/http/httpServer.js +180 -0
package/server/http/requestContext.js +20 -0
package/server/http/siteRoutingUtils.js +87 -0
package/server/index.js +1 -0
package/server/middleware/cachePolicy.js +26 -0
package/server/middleware/cachePolicyHelpers.js +1 -0
package/server/middleware/endpointRateLimit.js +181 -0
package/server/middleware/rateLimit.js +70 -0
package/server/middleware/requireAdminAuth.js +48 -0
package/server/middleware/securityHeaders.js +97 -0
package/server/routes/admin/systemAdminRouter.js +64 -0
package/server/routes/email/emailAutomationRouter.js +46 -0
package/server/routes/health/healthRouter.js +41 -0
package/server/routes/indexRouter.js +234 -0
package/server/routes/metrics/metricsRouter.js +58 -0
package/server/routes/static/staticPageRouter.js +134 -0
package/server/routes/sticker/catalogHandlers/catalogAdminHttp.js +105 -0
package/server/routes/sticker/catalogHandlers/catalogAuthHttp.js +77 -0
package/server/routes/sticker/catalogHandlers/catalogPublicHttp.js +120 -0
package/server/routes/sticker/catalogHandlers/catalogUploadHttp.js +83 -0
package/server/routes/sticker/catalogRouter.js +77 -0
package/server/routes/sticker/stickerApiRouter.js +84 -0
package/server/routes/sticker/stickerDataRouter.js +145 -0
package/server/routes/sticker/stickerSiteRouter.js +43 -0
package/server/routes/user/userApiPaths.js +66 -0
package/server/routes/user/userRouter.js +65 -0
package/server/utils/safePath.js +26 -0
package/utils/logger/loggerModule.js +35 -0
package/vite.config.mjs +38 -0

package/scripts/sticker-catalog-loadtest.mjs ADDED Viewed

@@ -0,0 +1,210 @@
+#!/usr/bin/env node
+import http from 'node:http';
+import https from 'node:https';
+import { performance } from 'node:perf_hooks';
+import fs from 'node:fs/promises';
+import { URL } from 'node:url';
+const DEFAULT_BASE_URL = process.env.STICKER_LOADTEST_BASE_URL || 'http://127.0.0.1:9102';
+const DEFAULT_PATHS = ['/api/sticker-packs?limit=24&offset=0&sort=popular', '/api/sticker-packs/stats', '/api/sticker-packs/creators?limit=25'];
+const DEFAULT_DURATION_SECONDS = 30;
+const DEFAULT_CONCURRENCY = 20;
+const DEFAULT_TIMEOUT_MS = 12_000;
+const DEFAULT_HTTP_SLO_MS = Number(process.env.HTTP_SLO_TARGET_MS || 750);
+const parseCliArgs = (argv) => {
+  const args = new Map();
+  for (let i = 0; i < argv.length; i += 1) {
+    const token = argv[i];
+    if (!token.startsWith('--')) continue;
+    const next = argv[i + 1];
+    if (!next || next.startsWith('--')) {
+      args.set(token, true);
+      continue;
+    }
+    args.set(token, next);
+    i += 1;
+  }
+  return args;
+};
+const args = parseCliArgs(process.argv.slice(2));
+const baseUrl = String(args.get('--base-url') || DEFAULT_BASE_URL)
+  .trim()
+  .replace(/\/+$/, '');
+const durationSeconds = Math.max(5, Number(args.get('--duration-seconds') || DEFAULT_DURATION_SECONDS));
+const concurrency = Math.max(1, Number(args.get('--concurrency') || DEFAULT_CONCURRENCY));
+const timeoutMs = Math.max(1000, Number(args.get('--timeout-ms') || DEFAULT_TIMEOUT_MS));
+const outFile = String(args.get('--out') || '').trim();
+const sloMs = Math.max(50, Number(args.get('--slo-ms') || DEFAULT_HTTP_SLO_MS));
+const paths = String(args.get('--paths') || '')
+  .split(',')
+  .map((entry) => entry.trim())
+  .filter(Boolean);
+const requestPaths = paths.length ? paths : DEFAULT_PATHS;
+const url = new URL(baseUrl);
+const isHttps = url.protocol === 'https:';
+const requestClient = isHttps ? https : http;
+const sleep = (ms) => new Promise((resolve) => setTimeout(resolve, ms));
+const quantile = (sortedValues, q) => {
+  if (!sortedValues.length) return 0;
+  const index = Math.max(0, Math.min(sortedValues.length - 1, Math.floor((sortedValues.length - 1) * q)));
+  return sortedValues[index];
+};
+const runRequest = (pathName) =>
+  new Promise((resolve) => {
+    const started = performance.now();
+    const req = requestClient.request(
+      {
+        protocol: url.protocol,
+        hostname: url.hostname,
+        port: url.port || (isHttps ? 443 : 80),
+        path: pathName,
+        method: 'GET',
+        timeout: timeoutMs,
+        headers: {
+          Connection: 'keep-alive',
+          Accept: 'application/json',
+          'X-Viewer-Key': 'loadtest',
+          'X-Session-Key': 'loadtest',
+          'User-Agent': 'omnizap-sticker-loadtest/1.0',
+        },
+      },
+      (res) => {
+        res.resume();
+        res.on('end', () => {
+          const durationMs = performance.now() - started;
+          resolve({
+            ok: res.statusCode >= 200 && res.statusCode < 500,
+            statusCode: Number(res.statusCode || 0),
+            durationMs,
+            pathName,
+          });
+        });
+      },
+    );
+    req.on('timeout', () => {
+      req.destroy(new Error('timeout'));
+    });
+    req.on('error', (error) => {
+      const durationMs = performance.now() - started;
+      resolve({
+        ok: false,
+        statusCode: 0,
+        durationMs,
+        pathName,
+        error: error?.message || 'request_error',
+      });
+    });
+    req.end();
+  });
+const runWorker = async ({ deadlineMs, workerIndex, stats }) => {
+  let requestIndex = workerIndex % requestPaths.length;
+  while (Date.now() < deadlineMs) {
+    const pathName = requestPaths[requestIndex % requestPaths.length];
+    requestIndex += 1;
+    const result = await runRequest(pathName);
+    stats.total += 1;
+    stats.latencies.push(result.durationMs);
+    stats.byStatus.set(result.statusCode, Number(stats.byStatus.get(result.statusCode) || 0) + 1);
+    if (result.ok) {
+      stats.success += 1;
+    } else {
+      stats.errors += 1;
+      stats.lastErrors.push({
+        path: pathName,
+        status_code: result.statusCode,
+        error: result.error || null,
+      });
+      if (stats.lastErrors.length > 10) stats.lastErrors.shift();
+    }
+  }
+};
+const main = async () => {
+  const startedAt = Date.now();
+  const deadlineMs = startedAt + durationSeconds * 1000;
+  const stats = {
+    total: 0,
+    success: 0,
+    errors: 0,
+    latencies: [],
+    byStatus: new Map(),
+    lastErrors: [],
+  };
+  console.log(`[loadtest] base_url=${baseUrl}`);
+  console.log(`[loadtest] duration_seconds=${durationSeconds} concurrency=${concurrency} paths=${requestPaths.join(',')}`);
+  await sleep(250);
+  await Promise.all(
+    Array.from({ length: concurrency }).map((_, index) =>
+      runWorker({
+        deadlineMs,
+        workerIndex: index,
+        stats,
+      }),
+    ),
+  );
+  const elapsedSeconds = Math.max(0.001, (Date.now() - startedAt) / 1000);
+  const sortedLatencies = [...stats.latencies].sort((a, b) => a - b);
+  const p50 = quantile(sortedLatencies, 0.5);
+  const p90 = quantile(sortedLatencies, 0.9);
+  const p95 = quantile(sortedLatencies, 0.95);
+  const p99 = quantile(sortedLatencies, 0.99);
+  const throughputRps = stats.total / elapsedSeconds;
+  const errorRate = stats.total > 0 ? stats.errors / stats.total : 1;
+  const summary = {
+    started_at: new Date(startedAt).toISOString(),
+    ended_at: new Date().toISOString(),
+    base_url: baseUrl,
+    duration_seconds: Number(elapsedSeconds.toFixed(3)),
+    concurrency,
+    paths: requestPaths,
+    requests_total: stats.total,
+    requests_success: stats.success,
+    requests_error: stats.errors,
+    error_rate: Number(errorRate.toFixed(6)),
+    throughput_rps: Number(throughputRps.toFixed(3)),
+    latency_ms: {
+      p50: Number(p50.toFixed(2)),
+      p90: Number(p90.toFixed(2)),
+      p95: Number(p95.toFixed(2)),
+      p99: Number(p99.toFixed(2)),
+      max: Number((sortedLatencies[sortedLatencies.length - 1] || 0).toFixed(2)),
+    },
+    by_status: Object.fromEntries(stats.byStatus.entries()),
+    slo: {
+      target_ms: sloMs,
+      p95_within_target: p95 <= sloMs,
+    },
+    sample_errors: stats.lastErrors,
+  };
+  console.log(JSON.stringify(summary, null, 2));
+  if (outFile) {
+    await fs.writeFile(outFile, `${JSON.stringify(summary, null, 2)}\n`, 'utf8');
+    console.log(`[loadtest] report_written=${outFile}`);
+  }
+  if (summary.requests_total <= 0) {
+    process.exitCode = 2;
+    return;
+  }
+  if (summary.slo.p95_within_target && summary.error_rate <= 0.02) return;
+  process.exitCode = 1;
+};
+main().catch((error) => {
+  console.error('[loadtest] fatal_error', error?.message || error);
+  process.exitCode = 2;
+});

package/scripts/sticker-worker-task.mjs ADDED Viewed

@@ -0,0 +1,119 @@
+#!/usr/bin/env node
+import 'dotenv/config';
+import logger from '#logger';
+import initializeDatabase from '../database/init.js';
+import { closePool } from '../database/index.js';
+import { isSupportedStickerWorkerTaskType, startDedicatedStickerWorker } from '../app/modules/stickerPackModule/stickerDedicatedTaskWorkerRuntime.js';
+const parseCliArgs = (argv = []) => {
+  const args = new Map();
+  for (let index = 0; index < argv.length; index += 1) {
+    const token = argv[index];
+    if (!token.startsWith('--')) continue;
+    const next = argv[index + 1];
+    if (!next || next.startsWith('--')) {
+      args.set(token, true);
+      continue;
+    }
+    args.set(token, next);
+    index += 1;
+  }
+  return args;
+};
+const args = parseCliArgs(process.argv.slice(2));
+const workerTaskType = String(args.get('--task-type') || process.env.STICKER_WORKER_TASK_TYPE || '')
+  .trim()
+  .toLowerCase();
+if (!isSupportedStickerWorkerTaskType(workerTaskType)) {
+  logger.error('Tipo de task inválido para worker dedicado.', {
+    action: 'sticker_worker_task_invalid_type',
+    task_type: workerTaskType || null,
+  });
+  process.exit(1);
+}
+let shuttingDown = false;
+let workerHandle = null;
+const shutdown = async (signal, error = null) => {
+  if (shuttingDown) return;
+  shuttingDown = true;
+  logger.warn('Encerrando worker dedicado de sticker.', {
+    action: 'sticker_worker_task_shutdown',
+    signal,
+    task_type: workerTaskType,
+    error: error?.message || null,
+  });
+  try {
+    workerHandle?.stop?.();
+  } catch (stopError) {
+    logger.warn('Falha ao encerrar loop do worker dedicado.', {
+      action: 'sticker_worker_task_stop_failed',
+      task_type: workerTaskType,
+      error: stopError?.message,
+    });
+  }
+  try {
+    await closePool();
+  } catch (poolError) {
+    logger.warn('Falha ao encerrar pool MySQL no worker dedicado.', {
+      action: 'sticker_worker_task_pool_close_failed',
+      task_type: workerTaskType,
+      error: poolError?.message,
+    });
+  }
+  process.exit(error ? 1 : 0);
+};
+process.on('SIGINT', () => {
+  void shutdown('SIGINT');
+});
+process.on('SIGTERM', () => {
+  void shutdown('SIGTERM');
+});
+process.on('uncaughtException', (error) => {
+  logger.error('Exceção não capturada no worker dedicado de sticker.', {
+    action: 'sticker_worker_task_uncaught_exception',
+    task_type: workerTaskType,
+    error: error?.message,
+    stack: error?.stack,
+  });
+  void shutdown('uncaughtException', error);
+});
+process.on('unhandledRejection', (reason) => {
+  const message = reason instanceof Error ? reason.message : String(reason || '');
+  logger.error('Promise rejeitada sem tratamento no worker dedicado de sticker.', {
+    action: 'sticker_worker_task_unhandled_rejection',
+    task_type: workerTaskType,
+    error: message,
+  });
+  void shutdown('unhandledRejection', reason instanceof Error ? reason : new Error(message));
+});
+const start = async () => {
+  await initializeDatabase();
+  workerHandle = startDedicatedStickerWorker({
+    taskType: workerTaskType,
+    label: `process:${process.pid}`,
+  });
+};
+start().catch((error) => {
+  logger.error('Falha ao inicializar worker dedicado de sticker.', {
+    action: 'sticker_worker_task_start_failed',
+    task_type: workerTaskType,
+    error: error?.message,
+    stack: error?.stack,
+  });
+  void shutdown('startup_error', error);
+});

package/scripts/sync-readme-snapshot.mjs ADDED Viewed

@@ -0,0 +1,133 @@
+#!/usr/bin/env node
+import fs from 'node:fs/promises';
+import path from 'node:path';
+import { fileURLToPath } from 'node:url';
+import dotenv from 'dotenv';
+dotenv.config({ path: '.env' });
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+const projectRoot = path.resolve(__dirname, '..');
+const START_MARKER = '<!-- README_SNAPSHOT:START -->';
+const END_MARKER = '<!-- README_SNAPSHOT:END -->';
+const DEFAULT_README_TARGET = 'README.md';
+const DEFAULT_TIMEOUT_MS = 15000;
+const DEFAULT_MAX_BYTES = 500_000;
+const escapeRegExp = (value) => String(value || '').replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+const isLocalHostname = (hostname) => ['localhost', '127.0.0.1', '::1'].includes(String(hostname || '').toLowerCase());
+const toPositiveInt = (value, fallback, min = 1) => {
+  const parsed = Number(value);
+  if (!Number.isFinite(parsed) || parsed < min) return fallback;
+  return Math.floor(parsed);
+};
+const toBool = (value, fallback = false) => {
+  if (value === undefined || value === null || value === '') return fallback;
+  return ['1', 'true', 'yes', 'on'].includes(String(value).trim().toLowerCase());
+};
+const ensurePathWithinRoot = (rootPath, targetPath) => {
+  const relative = path.relative(rootPath, targetPath);
+  if (relative.startsWith('..') || path.isAbsolute(relative)) {
+    throw new Error(`Caminho fora do projeto não permitido: ${targetPath}`);
+  }
+};
+const readmePath = path.resolve(projectRoot, process.env.README_SNAPSHOT_TARGET_PATH || DEFAULT_README_TARGET);
+ensurePathWithinRoot(projectRoot, readmePath);
+const siteOrigin = String(process.env.SITE_ORIGIN || 'https://omnizap.shop')
+  .trim()
+  .replace(/\/+$/, '');
+const sourceUrlRaw = String(process.env.README_SNAPSHOT_SOURCE_URL || `${siteOrigin}/api/readme-markdown`).trim();
+const timeoutMs = Math.max(1000, toPositiveInt(process.env.README_SNAPSHOT_TIMEOUT_MS, DEFAULT_TIMEOUT_MS, 1000));
+const maxBytes = Math.max(1024, toPositiveInt(process.env.README_SNAPSHOT_MAX_BYTES, DEFAULT_MAX_BYTES, 1024));
+const allowExternalSource = toBool(process.env.README_SNAPSHOT_ALLOW_EXTERNAL_SOURCE, false);
+const resolveSourceUrl = (candidateUrl, trustedSiteOrigin, allowExternal) => {
+  let trusted;
+  let source;
+  try {
+    trusted = new URL(trustedSiteOrigin);
+    source = new URL(candidateUrl);
+  } catch {
+    throw new Error('SITE_ORIGIN ou README_SNAPSHOT_SOURCE_URL inválido.');
+  }
+  if (source.protocol !== 'https:' && !isLocalHostname(source.hostname)) {
+    throw new Error(`README_SNAPSHOT_SOURCE_URL deve usar HTTPS (ou localhost): ${source.origin}`);
+  }
+  if (!allowExternal && source.origin !== trusted.origin) {
+    throw new Error(`README_SNAPSHOT_SOURCE_URL fora do domínio confiável (${trusted.origin}). Defina README_SNAPSHOT_ALLOW_EXTERNAL_SOURCE=1 para liberar.`);
+  }
+  return source.toString();
+};
+const sourceUrl = resolveSourceUrl(sourceUrlRaw, siteOrigin, allowExternalSource);
+const fetchWithTimeout = async (url, timeout, maxContentBytes) => {
+  const controller = new AbortController();
+  const timer = setTimeout(() => controller.abort(), timeout);
+  try {
+    const response = await fetch(url, {
+      method: 'GET',
+      headers: { 'User-Agent': 'omnizap-readme-sync/1.0' },
+      signal: controller.signal,
+    });
+    if (!response.ok) {
+      throw new Error(`HTTP ${response.status} ao buscar snapshot`);
+    }
+    const content = String(await response.text()).trim();
+    if (!content) {
+      throw new Error('Snapshot markdown vazio');
+    }
+    const contentBytes = Buffer.byteLength(content, 'utf8');
+    if (contentBytes > maxContentBytes) {
+      throw new Error(`Snapshot excede limite de ${maxContentBytes} bytes.`);
+    }
+    if (content.includes(START_MARKER) || content.includes(END_MARKER)) {
+      throw new Error('Snapshot não pode conter os marcadores START/END.');
+    }
+    return content;
+  } finally {
+    clearTimeout(timer);
+  }
+};
+const syncReadmeSnapshot = async () => {
+  const markdown = await fetchWithTimeout(sourceUrl, timeoutMs, maxBytes);
+  const readme = await fs.readFile(readmePath, 'utf8');
+  const blockRegex = new RegExp(`${escapeRegExp(START_MARKER)}[\\s\\S]*?${escapeRegExp(END_MARKER)}`, 'm');
+  if (!blockRegex.test(readme)) {
+    throw new Error(`Marcadores não encontrados em ${path.relative(projectRoot, readmePath)} (${START_MARKER} ... ${END_MARKER})`);
+  }
+  const replacement = `${START_MARKER}\n${markdown}\n${END_MARKER}`;
+  const nextReadme = readme.replace(blockRegex, replacement);
+  if (nextReadme === readme) {
+    console.log('[readme-sync] Snapshot já está atualizado.');
+    return;
+  }
+  const tempPath = `${readmePath}.tmp-${process.pid}-${Date.now()}`;
+  try {
+    // lgtm[js/http-to-file-access]
+    await fs.writeFile(tempPath, nextReadme, 'utf8');
+    await fs.rename(tempPath, readmePath);
+  } catch (error) {
+    await fs.rm(tempPath, { force: true }).catch(() => {});
+    throw error;
+  }
+  console.log(`[readme-sync] README atualizado com snapshot de ${sourceUrl}`);
+};
+syncReadmeSnapshot().catch((error) => {
+  console.error(`[readme-sync] Falha: ${error?.message || error}`);
+  process.exit(1);
+});

package/scripts/validate-command-config-schema.mjs ADDED Viewed

@@ -0,0 +1,130 @@
+#!/usr/bin/env node
+import fs from 'node:fs';
+import path from 'node:path';
+import Ajv2020 from 'ajv/dist/2020.js';
+const parseCliArgs = (argv = []) => {
+  const args = new Map();
+  const positional = [];
+  for (let index = 0; index < argv.length; index += 1) {
+    const token = argv[index];
+    if (!token.startsWith('--')) {
+      positional.push(token);
+      continue;
+    }
+    const next = argv[index + 1];
+    if (!next || next.startsWith('--')) {
+      args.set(token, true);
+      continue;
+    }
+    if (token === '--file') {
+      const current = args.get(token);
+      if (Array.isArray(current)) {
+        current.push(next);
+      } else if (typeof current === 'string') {
+        args.set(token, [current, next]);
+      } else {
+        args.set(token, next);
+      }
+      index += 1;
+      continue;
+    }
+    args.set(token, next);
+    index += 1;
+  }
+  return { args, positional };
+};
+const asArray = (value) => {
+  if (!value) return [];
+  if (Array.isArray(value)) return value;
+  return [value];
+};
+const discoverDefaultConfigFiles = () => {
+  const modulesRoot = path.join(process.cwd(), 'app', 'modules');
+  let moduleEntries = [];
+  try {
+    moduleEntries = fs.readdirSync(modulesRoot, { withFileTypes: true });
+  } catch {
+    return [];
+  }
+  return moduleEntries
+    .filter((entry) => entry.isDirectory())
+    .map((entry) => path.join(modulesRoot, entry.name, 'commandConfig.json'))
+    .filter((configPath) => fs.existsSync(configPath))
+    .sort((left, right) => left.localeCompare(right));
+};
+const formatAjvError = (error) => {
+  const instancePath = error?.instancePath || '/';
+  const message = error?.message || 'invalid';
+  const keyword = error?.keyword ? ` [${error.keyword}]` : '';
+  return `${instancePath}${keyword}: ${message}`;
+};
+const { args, positional } = parseCliArgs(process.argv.slice(2));
+const schemaPath = path.resolve(String(args.get('--schema') || path.join(process.cwd(), 'schemas', 'command-config.schema.json')));
+const explicitFiles = [...asArray(args.get('--file')), ...positional].map((file) => path.resolve(String(file)));
+const targetFiles = explicitFiles.length ? explicitFiles : discoverDefaultConfigFiles();
+if (!fs.existsSync(schemaPath)) {
+  console.error(`[command-config-schema] schema nao encontrado: ${schemaPath}`);
+  console.error('Gere antes com: npm run command-config:schema:generate');
+  process.exit(1);
+}
+if (!targetFiles.length) {
+  console.error('[command-config-schema] nenhum arquivo alvo encontrado para validacao');
+  process.exit(1);
+}
+const rawSchema = fs.readFileSync(schemaPath, 'utf8');
+const schema = JSON.parse(rawSchema);
+const ajv = new Ajv2020({ allErrors: true, strict: false });
+const validate = ajv.compile(schema);
+let hasErrors = false;
+for (const targetFile of targetFiles) {
+  if (!fs.existsSync(targetFile)) {
+    hasErrors = true;
+    console.error(`\n✖ ${path.relative(process.cwd(), targetFile)} (arquivo nao encontrado)`);
+    continue;
+  }
+  let payload = null;
+  try {
+    payload = JSON.parse(fs.readFileSync(targetFile, 'utf8'));
+  } catch (error) {
+    hasErrors = true;
+    console.error(`\n✖ ${path.relative(process.cwd(), targetFile)} (json invalido: ${error?.message || error})`);
+    continue;
+  }
+  const ok = validate(payload);
+  if (ok) {
+    console.log(`✔ ${path.relative(process.cwd(), targetFile)}`);
+    continue;
+  }
+  hasErrors = true;
+  console.error(`\n✖ ${path.relative(process.cwd(), targetFile)}`);
+  for (const error of validate.errors || []) {
+    console.error(`  - ${formatAjvError(error)}`);
+  }
+}
+if (hasErrors) {
+  process.exit(1);
+}
+console.log(`\n[command-config-schema] ok (${targetFiles.length} arquivo(s))`);

package/scripts/validate-command-configs.mjs ADDED Viewed

@@ -0,0 +1,15 @@
+#!/usr/bin/env node
+import { formatCommandConfigValidationReport, validateAllCommandConfigs } from '../app/services/ai/commandConfigValidationService.js';
+const report = validateAllCommandConfigs();
+const printable = formatCommandConfigValidationReport(report, { maxErrors: 80 });
+if (!report.ok) {
+  console.error('[command-config-validation] falhou');
+  console.error(printable);
+  process.exit(1);
+}
+console.log('[command-config-validation] ok');
+console.log(printable);