npm - @paths.design/caws-cli - Versions diffs - 10.1.0 → 11.0.0 - Mend

@paths.design/caws-cli 10.1.0 → 11.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (419) hide show

package/README.md +125 -374
package/dist/index.js +43 -756
package/dist/shell/binding/resolve-binding.d.ts +4 -0
package/dist/shell/binding/resolve-binding.d.ts.map +1 -0
package/dist/shell/binding/resolve-binding.js +228 -0
package/dist/shell/binding/resolve-binding.js.map +1 -0
package/dist/shell/binding/types.d.ts +42 -0
package/dist/shell/binding/types.d.ts.map +1 -0
package/dist/shell/binding/types.js +21 -0
package/dist/shell/binding/types.js.map +1 -0
package/dist/shell/commands/claim.d.ts +14 -0
package/dist/shell/commands/claim.d.ts.map +1 -0
package/dist/shell/commands/claim.js +197 -0
package/dist/shell/commands/claim.js.map +1 -0
package/dist/shell/commands/doctor.d.ts +13 -0
package/dist/shell/commands/doctor.d.ts.map +1 -0
package/dist/shell/commands/doctor.js +97 -0
package/dist/shell/commands/doctor.js.map +1 -0
package/dist/shell/commands/evidence.d.ts +28 -0
package/dist/shell/commands/evidence.d.ts.map +1 -0
package/dist/shell/commands/evidence.js +166 -0
package/dist/shell/commands/evidence.js.map +1 -0
package/dist/shell/commands/gates.d.ts +19 -0
package/dist/shell/commands/gates.d.ts.map +1 -0
package/dist/shell/commands/gates.js +181 -0
package/dist/shell/commands/gates.js.map +1 -0
package/dist/shell/commands/init.d.ts +8 -0
package/dist/shell/commands/init.d.ts.map +1 -0
package/dist/shell/commands/init.js +64 -0
package/dist/shell/commands/init.js.map +1 -0
package/dist/shell/commands/scope.d.ts +11 -0
package/dist/shell/commands/scope.d.ts.map +1 -0
package/dist/shell/commands/scope.js +92 -0
package/dist/shell/commands/scope.js.map +1 -0
package/dist/shell/commands/status.d.ts +15 -0
package/dist/shell/commands/status.d.ts.map +1 -0
package/dist/shell/commands/status.js +106 -0
package/dist/shell/commands/status.js.map +1 -0
package/dist/shell/commands/waiver.d.ts +38 -0
package/dist/shell/commands/waiver.d.ts.map +1 -0
package/dist/shell/commands/waiver.js +240 -0
package/dist/shell/commands/waiver.js.map +1 -0
package/dist/shell/gates/disposition.d.ts +23 -0
package/dist/shell/gates/disposition.d.ts.map +1 -0
package/dist/shell/gates/disposition.js +87 -0
package/dist/shell/gates/disposition.js.map +1 -0
package/dist/shell/gates/gate-result-contract.d.ts +39 -0
package/dist/shell/gates/gate-result-contract.d.ts.map +1 -0
package/dist/shell/gates/gate-result-contract.js +150 -0
package/dist/shell/gates/gate-result-contract.js.map +1 -0
package/dist/shell/gates/quality-gates-adapter.d.ts +55 -0
package/dist/shell/gates/quality-gates-adapter.d.ts.map +1 -0
package/dist/shell/gates/quality-gates-adapter.js +161 -0
package/dist/shell/gates/quality-gates-adapter.js.map +1 -0
package/dist/shell/gates/waiver-filter.d.ts +58 -0
package/dist/shell/gates/waiver-filter.d.ts.map +1 -0
package/dist/shell/gates/waiver-filter.js +119 -0
package/dist/shell/gates/waiver-filter.js.map +1 -0
package/dist/shell/index.d.ts +50 -0
package/dist/shell/index.d.ts.map +1 -0
package/dist/shell/index.js +73 -0
package/dist/shell/index.js.map +1 -0
package/dist/shell/register.d.ts +11 -0
package/dist/shell/register.d.ts.map +1 -0
package/dist/shell/register.js +274 -0
package/dist/shell/register.js.map +1 -0
package/dist/shell/render/claim.d.ts +22 -0
package/dist/shell/render/claim.d.ts.map +1 -0
package/dist/shell/render/claim.js +75 -0
package/dist/shell/render/claim.js.map +1 -0
package/dist/shell/render/decision.d.ts +15 -0
package/dist/shell/render/decision.d.ts.map +1 -0
package/dist/shell/render/decision.js +66 -0
package/dist/shell/render/decision.js.map +1 -0
package/dist/shell/render/diagnostic.d.ts +19 -0
package/dist/shell/render/diagnostic.d.ts.map +1 -0
package/dist/shell/render/diagnostic.js +76 -0
package/dist/shell/render/diagnostic.js.map +1 -0
package/dist/shell/render/finding.d.ts +15 -0
package/dist/shell/render/finding.d.ts.map +1 -0
package/dist/shell/render/finding.js +57 -0
package/dist/shell/render/finding.js.map +1 -0
package/dist/shell/render/gates.d.ts +3 -0
package/dist/shell/render/gates.d.ts.map +1 -0
package/dist/shell/render/gates.js +56 -0
package/dist/shell/render/gates.js.map +1 -0
package/dist/shell/render/init.d.ts +11 -0
package/dist/shell/render/init.d.ts.map +1 -0
package/dist/shell/render/init.js +32 -0
package/dist/shell/render/init.js.map +1 -0
package/dist/shell/render/status.d.ts +26 -0
package/dist/shell/render/status.d.ts.map +1 -0
package/dist/shell/render/status.js +143 -0
package/dist/shell/render/status.js.map +1 -0
package/dist/shell/render/waiver.d.ts +21 -0
package/dist/shell/render/waiver.d.ts.map +1 -0
package/dist/shell/render/waiver.js +94 -0
package/dist/shell/render/waiver.js.map +1 -0
package/dist/shell/rules.d.ts +37 -0
package/dist/shell/rules.d.ts.map +1 -0
package/dist/shell/rules.js +51 -0
package/dist/shell/rules.js.map +1 -0
package/dist/shell/session/actor.d.ts +14 -0
package/dist/shell/session/actor.d.ts.map +1 -0
package/dist/shell/session/actor.js +34 -0
package/dist/shell/session/actor.js.map +1 -0
package/dist/shell/session/resolve-session.d.ts +5 -0
package/dist/shell/session/resolve-session.d.ts.map +1 -0
package/dist/shell/session/resolve-session.js +239 -0
package/dist/shell/session/resolve-session.js.map +1 -0
package/dist/shell/session/types.d.ts +56 -0
package/dist/shell/session/types.d.ts.map +1 -0
package/dist/shell/session/types.js +15 -0
package/dist/shell/session/types.js.map +1 -0
package/dist/store/agents-store.d.ts +3 -0
package/dist/store/agents-store.d.ts.map +1 -0
package/dist/store/agents-store.js +63 -0
package/dist/store/agents-store.js.map +1 -0
package/dist/store/apply-patch.d.ts +16 -0
package/dist/store/apply-patch.d.ts.map +1 -0
package/dist/store/apply-patch.js +191 -0
package/dist/store/apply-patch.js.map +1 -0
package/dist/store/atomic-write.d.ts +16 -0
package/dist/store/atomic-write.d.ts.map +1 -0
package/dist/store/atomic-write.js +132 -0
package/dist/store/atomic-write.js.map +1 -0
package/dist/store/doctor-snapshot.d.ts +20 -0
package/dist/store/doctor-snapshot.d.ts.map +1 -0
package/dist/store/doctor-snapshot.js +176 -0
package/dist/store/doctor-snapshot.js.map +1 -0
package/dist/store/events-store.d.ts +33 -0
package/dist/store/events-store.d.ts.map +1 -0
package/dist/store/events-store.js +297 -0
package/dist/store/events-store.js.map +1 -0
package/dist/store/index.d.ts +21 -0
package/dist/store/index.d.ts.map +1 -0
package/dist/store/index.js +47 -0
package/dist/store/index.js.map +1 -0
package/dist/store/init-store.d.ts +21 -0
package/dist/store/init-store.d.ts.map +1 -0
package/dist/store/init-store.js +295 -0
package/dist/store/init-store.js.map +1 -0
package/dist/store/json-store.d.ts +3 -0
package/dist/store/json-store.d.ts.map +1 -0
package/dist/store/json-store.js +65 -0
package/dist/store/json-store.js.map +1 -0
package/dist/store/policy-store.d.ts +3 -0
package/dist/store/policy-store.d.ts.map +1 -0
package/dist/store/policy-store.js +65 -0
package/dist/store/policy-store.js.map +1 -0
package/dist/store/repo-root.d.ts +46 -0
package/dist/store/repo-root.d.ts.map +1 -0
package/dist/store/repo-root.js +145 -0
package/dist/store/repo-root.js.map +1 -0
package/dist/store/rules.d.ts +53 -0
package/dist/store/rules.d.ts.map +1 -0
package/dist/store/rules.js +78 -0
package/dist/store/rules.js.map +1 -0
package/dist/store/specs-store.d.ts +3 -0
package/dist/store/specs-store.d.ts.map +1 -0
package/dist/store/specs-store.js +131 -0
package/dist/store/specs-store.js.map +1 -0
package/dist/store/types.d.ts +84 -0
package/dist/store/types.d.ts.map +1 -0
package/dist/store/types.js +14 -0
package/dist/store/types.js.map +1 -0
package/dist/store/waivers-store.d.ts +25 -0
package/dist/store/waivers-store.d.ts.map +1 -0
package/dist/store/waivers-store.js +232 -0
package/dist/store/waivers-store.js.map +1 -0
package/dist/store/worktrees-store.d.ts +3 -0
package/dist/store/worktrees-store.d.ts.map +1 -0
package/dist/store/worktrees-store.js +62 -0
package/dist/store/worktrees-store.js.map +1 -0
package/dist/store/yaml-store.d.ts +9 -0
package/dist/store/yaml-store.d.ts.map +1 -0
package/dist/store/yaml-store.js +121 -0
package/dist/store/yaml-store.js.map +1 -0
package/package.json +15 -13
package/dist/budget-derivation.js +0 -751
package/dist/cicd-optimizer.js +0 -504
package/dist/commands/archive.js +0 -500
package/dist/commands/burnup.js +0 -198
package/dist/commands/diagnose.js +0 -525
package/dist/commands/evaluate.js +0 -314
package/dist/commands/gates.js +0 -149
package/dist/commands/init.js +0 -857
package/dist/commands/iterate.js +0 -417
package/dist/commands/mode.js +0 -269
package/dist/commands/parallel.js +0 -242
package/dist/commands/plan.js +0 -438
package/dist/commands/provenance.js +0 -1143
package/dist/commands/quality-monitor.js +0 -284
package/dist/commands/scope.js +0 -264
package/dist/commands/session.js +0 -312
package/dist/commands/sidecar.js +0 -74
package/dist/commands/specs.js +0 -1448
package/dist/commands/status.js +0 -1151
package/dist/commands/templates.js +0 -237
package/dist/commands/tool.js +0 -136
package/dist/commands/tutorial.js +0 -480
package/dist/commands/validate.js +0 -357
package/dist/commands/verify-acs.js +0 -443
package/dist/commands/waivers.js +0 -599
package/dist/commands/workflow.js +0 -243
package/dist/commands/worktree.js +0 -386
package/dist/config/lite-scope.js +0 -158
package/dist/config/modes.js +0 -347
package/dist/constants/spec-types.js +0 -65
package/dist/gates/budget-limit.js +0 -121
package/dist/gates/feedback.js +0 -260
package/dist/gates/format.js +0 -179
package/dist/gates/god-object.js +0 -117
package/dist/gates/pipeline.js +0 -167
package/dist/gates/scope-boundary.js +0 -93
package/dist/gates/spec-completeness.js +0 -109
package/dist/gates/todo-detection.js +0 -205
package/dist/generators/jest-config-generator.js +0 -242
package/dist/generators/working-spec.js +0 -237
package/dist/minimal-cli.js +0 -88
package/dist/parallel/parallel-manager.js +0 -433
package/dist/policy/PolicyManager.js +0 -465
package/dist/scaffold/claude-hooks.js +0 -443
package/dist/scaffold/cursor-hooks.js +0 -177
package/dist/scaffold/git-hooks.js +0 -928
package/dist/scaffold/index.js +0 -794
package/dist/session/session-manager.js +0 -653
package/dist/sidecars/index.js +0 -33
package/dist/sidecars/listeners.js +0 -40
package/dist/sidecars/provenance-summary.js +0 -238
package/dist/sidecars/quality-gaps.js +0 -258
package/dist/sidecars/schema.js +0 -149
package/dist/sidecars/spec-drift.js +0 -151
package/dist/sidecars/waiver-draft.js +0 -176
package/dist/spec/SpecFileManager.js +0 -419
package/dist/templates/.caws/schemas/policy.schema.json +0 -112
package/dist/templates/.caws/schemas/scope.schema.json +0 -52
package/dist/templates/.caws/schemas/waivers.schema.json +0 -106
package/dist/templates/.caws/schemas/working-spec.schema.json +0 -340
package/dist/templates/.caws/schemas/worktrees.schema.json +0 -38
package/dist/templates/.caws/templates/working-spec.template.yml +0 -80
package/dist/templates/.caws/tools/README.md +0 -18
package/dist/templates/.caws/tools/scope-guard.js +0 -203
package/dist/templates/.caws/tools-allow.json +0 -331
package/dist/templates/.caws/waivers.yml +0 -19
package/dist/templates/.claude/README.md +0 -190
package/dist/templates/.claude/hooks/audit.sh +0 -121
package/dist/templates/.claude/hooks/block-dangerous.sh +0 -203
package/dist/templates/.claude/hooks/classify_command.py +0 -592
package/dist/templates/.claude/hooks/doc-frontmatter-check.sh +0 -173
package/dist/templates/.claude/hooks/lite-sprawl-check.sh +0 -145
package/dist/templates/.claude/hooks/naming-check.sh +0 -100
package/dist/templates/.claude/hooks/protected-paths.sh +0 -39
package/dist/templates/.claude/hooks/quality-check.sh +0 -81
package/dist/templates/.claude/hooks/scan-secrets.sh +0 -85
package/dist/templates/.claude/hooks/scope-guard.sh +0 -381
package/dist/templates/.claude/hooks/session-caws-status.sh +0 -117
package/dist/templates/.claude/hooks/session-log.sh +0 -634
package/dist/templates/.claude/hooks/simplification-guard.sh +0 -92
package/dist/templates/.claude/hooks/stop-worktree-check.sh +0 -46
package/dist/templates/.claude/hooks/test_classify_command.py +0 -370
package/dist/templates/.claude/hooks/test_wrapper_smoke.sh +0 -96
package/dist/templates/.claude/hooks/validate-spec.sh +0 -76
package/dist/templates/.claude/hooks/worktree-guard.sh +0 -220
package/dist/templates/.claude/hooks/worktree-write-guard.sh +0 -190
package/dist/templates/.claude/rules/git-safety.md +0 -26
package/dist/templates/.claude/rules/worktree-isolation.md +0 -83
package/dist/templates/.claude/settings.json +0 -141
package/dist/templates/.cursor/README.md +0 -299
package/dist/templates/.cursor/hooks/audit.sh +0 -55
package/dist/templates/.cursor/hooks/block-dangerous.sh +0 -84
package/dist/templates/.cursor/hooks/caws-quality-check.sh +0 -52
package/dist/templates/.cursor/hooks/caws-scope-guard.sh +0 -130
package/dist/templates/.cursor/hooks/format.sh +0 -38
package/dist/templates/.cursor/hooks/naming-check.sh +0 -64
package/dist/templates/.cursor/hooks/scan-secrets.sh +0 -51
package/dist/templates/.cursor/hooks/scope-guard.sh +0 -52
package/dist/templates/.cursor/hooks/session-log.sh +0 -924
package/dist/templates/.cursor/hooks/validate-spec.sh +0 -83
package/dist/templates/.cursor/hooks.json +0 -76
package/dist/templates/.cursor/rules/00-claims-verification.mdc +0 -144
package/dist/templates/.cursor/rules/01-working-style.mdc +0 -50
package/dist/templates/.cursor/rules/02-quality-gates.mdc +0 -368
package/dist/templates/.cursor/rules/03-naming-and-refactor.mdc +0 -33
package/dist/templates/.cursor/rules/04-logging-language-style.mdc +0 -23
package/dist/templates/.cursor/rules/05-safe-defaults-guards.mdc +0 -23
package/dist/templates/.cursor/rules/06-typescript-conventions.mdc +0 -36
package/dist/templates/.cursor/rules/07-process-ops.mdc +0 -20
package/dist/templates/.cursor/rules/08-solid-and-architecture.mdc +0 -16
package/dist/templates/.cursor/rules/09-docstrings.mdc +0 -89
package/dist/templates/.cursor/rules/10-documentation-quality-standards.mdc +0 -385
package/dist/templates/.cursor/rules/11-scope-management-waivers.mdc +0 -381
package/dist/templates/.cursor/rules/12-implementation-completeness.mdc +0 -516
package/dist/templates/.cursor/rules/13-language-agnostic-standards.mdc +0 -578
package/dist/templates/.cursor/rules/README.md +0 -148
package/dist/templates/.github/copilot-instructions.md +0 -82
package/dist/templates/.idea/runConfigurations/CAWS_Evaluate.xml +0 -5
package/dist/templates/.idea/runConfigurations/CAWS_Validate.xml +0 -5
package/dist/templates/.junie/guidelines.md +0 -73
package/dist/templates/.vscode/launch.json +0 -17
package/dist/templates/.vscode/settings.json +0 -95
package/dist/templates/.windsurf/rules/caws-quality-standards.md +0 -54
package/dist/templates/.windsurf/workflows/caws-guided-development.md +0 -92
package/dist/templates/CLAUDE.md +0 -174
package/dist/templates/COMMIT_CONVENTIONS.md +0 -86
package/dist/templates/OIDC_SETUP.md +0 -300
package/dist/templates/agents.md +0 -145
package/dist/templates/codemod/README.md +0 -1
package/dist/templates/codemod/test.js +0 -93
package/dist/templates/docs/README.md +0 -151
package/dist/templates/scripts/new_feature.sh +0 -80
package/dist/templates/scripts/quality-gates/check-god-objects.js +0 -146
package/dist/templates/scripts/quality-gates/run-quality-gates.js +0 -50
package/dist/templates/scripts/v3/analysis/todo_analyzer.py +0 -1997
package/dist/test-analysis.js +0 -786
package/dist/tool-interface.js +0 -314
package/dist/tool-loader.js +0 -303
package/dist/tool-validator.js +0 -393
package/dist/utils/agent-session.js +0 -202
package/dist/utils/async-utils.js +0 -188
package/dist/utils/command-wrapper.js +0 -200
package/dist/utils/event-log.js +0 -584
package/dist/utils/event-renderer.js +0 -521
package/dist/utils/finalization.js +0 -230
package/dist/utils/git-lock.js +0 -119
package/dist/utils/gitignore-updater.js +0 -158
package/dist/utils/ide-detection.js +0 -133
package/dist/utils/lifecycle-events.js +0 -94
package/dist/utils/project-analysis.js +0 -367
package/dist/utils/promise-utils.js +0 -72
package/dist/utils/quality-gates-errors.js +0 -520
package/dist/utils/quality-gates-utils.js +0 -387
package/dist/utils/schema-validator.js +0 -50
package/dist/utils/spec-resolver.js +0 -711
package/dist/utils/typescript-detector.js +0 -369
package/dist/utils/working-state.js +0 -530
package/dist/utils/yaml-validation.js +0 -156
package/dist/validation/spec-validation.js +0 -921
package/dist/waivers-manager.js +0 -732
package/dist/worktree/worktree-manager.js +0 -1374
package/templates/.caws/schemas/policy.schema.json +0 -112
package/templates/.caws/schemas/scope.schema.json +0 -52
package/templates/.caws/schemas/waivers.schema.json +0 -106
package/templates/.caws/schemas/working-spec.schema.json +0 -340
package/templates/.caws/schemas/worktrees.schema.json +0 -38
package/templates/.caws/templates/working-spec.template.yml +0 -80
package/templates/.caws/tools/README.md +0 -18
package/templates/.caws/tools/scope-guard.js +0 -203
package/templates/.caws/tools-allow.json +0 -331
package/templates/.caws/waivers.yml +0 -19
package/templates/.claude/README.md +0 -190
package/templates/.claude/hooks/audit.sh +0 -121
package/templates/.claude/hooks/block-dangerous.sh +0 -203
package/templates/.claude/hooks/classify_command.py +0 -592
package/templates/.claude/hooks/doc-frontmatter-check.sh +0 -173
package/templates/.claude/hooks/lite-sprawl-check.sh +0 -145
package/templates/.claude/hooks/naming-check.sh +0 -100
package/templates/.claude/hooks/protected-paths.sh +0 -39
package/templates/.claude/hooks/quality-check.sh +0 -81
package/templates/.claude/hooks/scan-secrets.sh +0 -85
package/templates/.claude/hooks/scope-guard.sh +0 -381
package/templates/.claude/hooks/session-caws-status.sh +0 -117
package/templates/.claude/hooks/session-log.sh +0 -634
package/templates/.claude/hooks/simplification-guard.sh +0 -92
package/templates/.claude/hooks/stop-worktree-check.sh +0 -46
package/templates/.claude/hooks/test_classify_command.py +0 -370
package/templates/.claude/hooks/test_wrapper_smoke.sh +0 -96
package/templates/.claude/hooks/validate-spec.sh +0 -76
package/templates/.claude/hooks/worktree-guard.sh +0 -220
package/templates/.claude/hooks/worktree-write-guard.sh +0 -190
package/templates/.claude/rules/git-safety.md +0 -26
package/templates/.claude/rules/worktree-isolation.md +0 -83
package/templates/.claude/settings.json +0 -141
package/templates/.cursor/README.md +0 -299
package/templates/.cursor/hooks/audit.sh +0 -55
package/templates/.cursor/hooks/block-dangerous.sh +0 -84
package/templates/.cursor/hooks/caws-quality-check.sh +0 -52
package/templates/.cursor/hooks/caws-scope-guard.sh +0 -130
package/templates/.cursor/hooks/format.sh +0 -38
package/templates/.cursor/hooks/naming-check.sh +0 -64
package/templates/.cursor/hooks/scan-secrets.sh +0 -51
package/templates/.cursor/hooks/scope-guard.sh +0 -52
package/templates/.cursor/hooks/session-log.sh +0 -924
package/templates/.cursor/hooks/validate-spec.sh +0 -83
package/templates/.cursor/hooks.json +0 -76
package/templates/.cursor/rules/00-claims-verification.mdc +0 -144
package/templates/.cursor/rules/01-working-style.mdc +0 -50
package/templates/.cursor/rules/02-quality-gates.mdc +0 -368
package/templates/.cursor/rules/03-naming-and-refactor.mdc +0 -33
package/templates/.cursor/rules/04-logging-language-style.mdc +0 -23
package/templates/.cursor/rules/05-safe-defaults-guards.mdc +0 -23
package/templates/.cursor/rules/06-typescript-conventions.mdc +0 -36
package/templates/.cursor/rules/07-process-ops.mdc +0 -20
package/templates/.cursor/rules/08-solid-and-architecture.mdc +0 -16
package/templates/.cursor/rules/09-docstrings.mdc +0 -89
package/templates/.cursor/rules/10-documentation-quality-standards.mdc +0 -385
package/templates/.cursor/rules/11-scope-management-waivers.mdc +0 -381
package/templates/.cursor/rules/12-implementation-completeness.mdc +0 -516
package/templates/.cursor/rules/13-language-agnostic-standards.mdc +0 -578
package/templates/.cursor/rules/README.md +0 -148
package/templates/.github/copilot-instructions.md +0 -82
package/templates/.idea/runConfigurations/CAWS_Evaluate.xml +0 -5
package/templates/.idea/runConfigurations/CAWS_Validate.xml +0 -5
package/templates/.junie/guidelines.md +0 -73
package/templates/.vscode/launch.json +0 -17
package/templates/.vscode/settings.json +0 -95
package/templates/.windsurf/rules/caws-quality-standards.md +0 -54
package/templates/.windsurf/workflows/caws-guided-development.md +0 -92
package/templates/CLAUDE.md +0 -174
package/templates/COMMIT_CONVENTIONS.md +0 -86
package/templates/OIDC_SETUP.md +0 -300
package/templates/agents.md +0 -145
package/templates/codemod/README.md +0 -1
package/templates/codemod/test.js +0 -93
package/templates/docs/README.md +0 -151
package/templates/scripts/new_feature.sh +0 -80
package/templates/scripts/quality-gates/check-god-objects.js +0 -146
package/templates/scripts/quality-gates/run-quality-gates.js +0 -50
package/templates/scripts/v3/analysis/todo_analyzer.py +0 -1997

package/dist/tool-validator.js DELETED Viewed

@@ -1,393 +0,0 @@
-#!/usr/bin/env node
-/**
- * @fileoverview CAWS Tool Validator - Security validation for dynamically loaded tools
- * Validates tools against allowlists, scans for security violations, and ensures safe execution
- * @author @darianrosebrook
- */
-const fs = require('fs');
-const path = require('path');
-const crypto = require('crypto');
-/**
- * Tool Validator - Security validation and allowlist enforcement
- */
-class ToolValidator {
-  constructor(options = {}) {
-    // Check new location first, fall back to legacy location
-    const newAllowlistPath = path.join(process.cwd(), '.caws/tools-allow.json');
-    const legacyAllowlistPath = path.join(process.cwd(), 'apps/tools/caws/tools-allow.json');
-    const defaultAllowlistPath = fs.existsSync(newAllowlistPath)
-      ? newAllowlistPath
-      : legacyAllowlistPath;
-    this.options = {
-      allowlistPath: options.allowlistPath || defaultAllowlistPath,
-      strictMode: options.strictMode !== false,
-      maxFileSize: options.maxFileSize || 1024 * 1024, // 1MB
-      ...options,
-    };
-    this.allowlist = null;
-    this.validationCache = new Map();
-  }
-  /**
-   * Load and parse the tools allowlist
-   * @returns {Promise<Array<string>>} Array of allowed commands/patterns
-   */
-  async loadAllowlist() {
-    if (this.allowlist) return this.allowlist;
-    try {
-      if (!fs.existsSync(this.options.allowlistPath)) {
-        throw new Error(`Allowlist file not found: ${this.options.allowlistPath}`);
-      }
-      const content = await fs.promises.readFile(this.options.allowlistPath, 'utf8');
-      this.allowlist = JSON.parse(content);
-      if (!Array.isArray(this.allowlist)) {
-        throw new Error('Allowlist must be an array of strings');
-      }
-      return this.allowlist;
-    } catch (error) {
-      throw new Error(`Failed to load allowlist: ${error.message}`);
-    }
-  }
-  /**
-   * Validate a tool against security requirements
-   * @param {Object} tool - Tool object with module and metadata
-   * @returns {Promise<Object>} Validation result
-   */
-  async validateTool(tool) {
-    const toolId = tool.metadata?.id || path.basename(tool.path, '.js');
-    const cacheKey = crypto
-      .createHash('md5')
-      .update(toolId + tool.loadedAt)
-      .digest('hex');
-    // Check cache first
-    if (this.validationCache.has(cacheKey)) {
-      return this.validationCache.get(cacheKey);
-    }
-    const result = {
-      valid: true,
-      checks: [],
-      warnings: [],
-      errors: [],
-      score: 100,
-    };
-    try {
-      // Load allowlist if not loaded
-      await this.loadAllowlist();
-      // Run all validation checks
-      const checks = await Promise.allSettled([
-        this.checkFileSecurity(tool),
-        this.checkCodeSecurity(tool),
-        this.checkInterfaceCompliance(tool),
-        this.checkMetadataValidity(tool),
-        this.checkDependencySafety(tool),
-      ]);
-      // Process check results
-      checks.forEach((check, index) => {
-        const checkName = [
-          'fileSecurity',
-          'codeSecurity',
-          'interfaceCompliance',
-          'metadataValidity',
-          'dependencySafety',
-        ][index];
-        if (check.status === 'fulfilled') {
-          const checkResult = check.value;
-          result.checks.push({
-            name: checkName,
-            passed: checkResult.passed,
-            message: checkResult.message,
-            severity: checkResult.severity || 'info',
-          });
-          if (!checkResult.passed) {
-            result.valid = false;
-            if (checkResult.severity === 'error') {
-              result.errors.push(checkResult.message);
-              result.score -= 20;
-            } else {
-              result.warnings.push(checkResult.message);
-              result.score -= 5;
-            }
-          }
-        } else {
-          result.checks.push({
-            name: checkName,
-            passed: false,
-            message: `Check failed: ${check.reason.message}`,
-            severity: 'error',
-          });
-          result.valid = false;
-          result.errors.push(check.reason.message);
-          result.score -= 20;
-        }
-      });
-      // Cache result
-      this.validationCache.set(cacheKey, result);
-    } catch (error) {
-      result.valid = false;
-      result.errors.push(`Validation failed: ${error.message}`);
-      result.score = 0;
-    }
-    return result;
-  }
-  /**
-   * Check file-level security
-   * @private
-   * @param {Object} tool - Tool object
-   */
-  async checkFileSecurity(tool) {
-    const issues = [];
-    try {
-      const stats = await fs.promises.stat(tool.path);
-      // Check file size
-      if (stats.size > this.options.maxFileSize) {
-        issues.push(`File too large: ${stats.size} bytes > ${this.options.maxFileSize} bytes`);
-      }
-      // Check file permissions (should be readable)
-      const mode = stats.mode;
-      if (!(mode & parseInt('0444', 8))) {
-        // Owner, group, others can read
-        issues.push('File permissions too restrictive');
-      }
-      // Check if file is executable (should not be)
-      if (mode & parseInt('0111', 8)) {
-        // Execute permissions
-        issues.push('Tool file should not have execute permissions');
-      }
-    } catch (error) {
-      issues.push(`File access error: ${error.message}`);
-    }
-    return {
-      passed: issues.length === 0,
-      message: issues.length > 0 ? issues.join('; ') : 'File security check passed',
-      severity: issues.length > 0 ? 'error' : 'info',
-    };
-  }
-  /**
-   * Check code-level security
-   * @private
-   * @param {Object} tool - Tool object
-   */
-  async checkCodeSecurity(tool) {
-    const issues = [];
-    try {
-      const content = await fs.promises.readFile(tool.path, 'utf8');
-      // Check for dangerous patterns
-      const dangerousPatterns = [
-        { pattern: /require\(['"`]child_process['"`]\)/g, message: 'Direct child_process usage' },
-        { pattern: /require\(['"`]fs['"`]\)\.writeFileSync/g, message: 'Synchronous file writing' },
-        { pattern: /process\.exit\(/g, message: 'Process termination' },
-        { pattern: /eval\(/g, message: 'Code evaluation' },
-        { pattern: /Function\(['"`]/g, message: 'Dynamic function creation' },
-        { pattern: /require\(['"`]\.\./g, message: 'Directory traversal in require' },
-      ];
-      dangerousPatterns.forEach(({ pattern, message }) => {
-        const matches = content.match(pattern);
-        if (matches) {
-          issues.push(`${message} (${matches.length} occurrences)`);
-        }
-      });
-      // Check for secrets (basic pattern matching)
-      const secretPatterns = [
-        /password\s*[=:]\s*['"`][^'"]{8,}['"`]/gi,
-        /token\s*[=:]\s*['"`][^'"]{20,}['"`]/gi,
-        /key\s*[=:]\s*['"`][^'"]{16,}['"`]/gi,
-        /secret\s*[=:]\s*['"`][^'"]{16,}['"`]/gi,
-      ];
-      secretPatterns.forEach((pattern) => {
-        if (content.match(pattern)) {
-          issues.push('Potential hardcoded secrets detected');
-        }
-      });
-    } catch (error) {
-      issues.push(`Code analysis error: ${error.message}`);
-    }
-    return {
-      passed: issues.length === 0,
-      message:
-        issues.length > 0 ? `Security issues: ${issues.join('; ')}` : 'Code security check passed',
-      severity: issues.length > 0 ? 'error' : 'info',
-    };
-  }
-  /**
-   * Check interface compliance
-   * @private
-   * @param {Object} tool - Tool object
-   */
-  async checkInterfaceCompliance(tool) {
-    const requiredMethods = ['execute', 'getMetadata'];
-    const missingMethods = [];
-    requiredMethods.forEach((method) => {
-      if (typeof tool.module[method] !== 'function') {
-        missingMethods.push(method);
-      }
-    });
-    return {
-      passed: missingMethods.length === 0,
-      message:
-        missingMethods.length > 0
-          ? `Missing required methods: ${missingMethods.join(', ')}`
-          : 'Interface compliance check passed',
-      severity: missingMethods.length > 0 ? 'error' : 'info',
-    };
-  }
-  /**
-   * Check metadata validity
-   * @private
-   * @param {Object} tool - Tool object
-   */
-  async checkMetadataValidity(tool) {
-    const metadata = tool.metadata || {};
-    const requiredFields = ['id', 'name', 'version'];
-    const missingFields = [];
-    const invalidFields = [];
-    // Check required fields
-    requiredFields.forEach((field) => {
-      if (!metadata[field]) {
-        missingFields.push(field);
-      }
-    });
-    // Validate field types and formats
-    if (metadata.id && typeof metadata.id !== 'string') {
-      invalidFields.push('id must be string');
-    }
-    if (metadata.name && typeof metadata.name !== 'string') {
-      invalidFields.push('name must be string');
-    }
-    if (metadata.version && typeof metadata.version !== 'string') {
-      invalidFields.push('version must be string');
-    }
-    if (metadata.capabilities && !Array.isArray(metadata.capabilities)) {
-      invalidFields.push('capabilities must be array');
-    }
-    const issues = [...missingFields.map((f) => `missing ${f}`), ...invalidFields];
-    return {
-      passed: issues.length === 0,
-      message:
-        issues.length > 0
-          ? `Metadata issues: ${issues.join(', ')}`
-          : 'Metadata validity check passed',
-      severity: issues.length > 0 ? 'error' : 'info',
-    };
-  }
-  /**
-   * Check dependency safety
-   * @private
-   * @param {Object} tool - Tool object
-   */
-  async checkDependencySafety(tool) {
-    const metadata = tool.metadata || {};
-    const issues = [];
-    if (metadata.dependencies) {
-      if (!Array.isArray(metadata.dependencies)) {
-        issues.push('dependencies must be array');
-      } else {
-        // Check for potentially unsafe dependencies
-        const unsafeDeps = ['child_process', 'fs-extra', 'execa', 'shelljs'];
-        const foundUnsafe = metadata.dependencies.filter((dep) =>
-          unsafeDeps.some((unsafe) => dep.includes(unsafe))
-        );
-        if (foundUnsafe.length > 0) {
-          issues.push(`Potentially unsafe dependencies: ${foundUnsafe.join(', ')}`);
-        }
-      }
-    }
-    return {
-      passed: issues.length === 0,
-      message:
-        issues.length > 0
-          ? `Dependency issues: ${issues.join('; ')}`
-          : 'Dependency safety check passed',
-      severity: issues.length > 0 ? 'warning' : 'info',
-    };
-  }
-  /**
-   * Validate a command against the allowlist
-   * @param {string} command - Command to validate
-   * @returns {boolean} True if command is allowed
-   */
-  async validateCommand(command) {
-    const allowlist = await this.loadAllowlist();
-    // Check exact matches first
-    if (allowlist.includes(command)) {
-      return true;
-    }
-    // Check pattern matches
-    return allowlist.some((allowed) => {
-      if (allowed.includes('*')) {
-        // Simple wildcard matching
-        const regex = new RegExp(allowed.replace(/\*/g, '.*'));
-        return regex.test(command);
-      }
-      return false;
-    });
-  }
-  /**
-   * Clear validation cache
-   */
-  clearCache() {
-    this.validationCache.clear();
-  }
-  /**
-   * Get validator statistics
-   * @returns {Object} Statistics object
-   */
-  getStats() {
-    return {
-      allowlistLoaded: this.allowlist !== null,
-      allowlistSize: this.allowlist?.length || 0,
-      cacheSize: this.validationCache.size,
-      strictMode: this.options.strictMode,
-    };
-  }
-}
-module.exports = ToolValidator;

package/dist/utils/agent-session.js DELETED Viewed

@@ -1,202 +0,0 @@
-/**
- * Agent Session Identity
- *
- * Provides a unified way to identify the current agent session across
- * Claude Code, Cursor, and other IDE agent environments.
- *
- * Sources checked (first match wins):
- *   1. CLAUDE_SESSION_ID  — set by Claude Code automatically
- *   2. .caws/agents.json  — written by Cursor session-log hook (conversation_id)
- *   3. CURSOR_TRACE_ID    — set by Cursor (per-request, not stable, last resort)
- *
- * The agent registry (.caws/agents.json) also tracks active agents for
- * multi-agent coordination. Entries expire after a configurable TTL.
- *
- * @author @darianrosebrook
- */
-const fs = require('fs');
-const path = require('path');
-const AGENTS_REGISTRY = '.caws/agents.json';
-const DEFAULT_TTL_MS = 30 * 60 * 1000; // 30 minutes
-/**
- * Get the current agent's session ID from the best available source.
- * @param {string} [projectRoot] - Project root (for reading agent registry)
- * @returns {string|null} Session ID or null if not in an agent context
- */
-function getAgentSessionId(projectRoot) {
-  // 1. Claude Code — most reliable, set automatically
-  if (process.env.CLAUDE_SESSION_ID) {
-    return process.env.CLAUDE_SESSION_ID;
-  }
-  // 2. Agent registry — written by Cursor session-log hook
-  if (projectRoot) {
-    const registry = loadAgentRegistry(projectRoot);
-    const active = findActiveAgent(registry);
-    if (active) {
-      return active.sessionId;
-    }
-  }
-  // 3. Cursor trace ID — per-request, not stable, but better than nothing
-  if (process.env.CURSOR_TRACE_ID) {
-    return `cursor:${process.env.CURSOR_TRACE_ID}`;
-  }
-  return null;
-}
-/**
- * Get the agent platform name.
- * @returns {string} 'claude-code' | 'cursor' | 'unknown'
- */
-function getAgentPlatform() {
-  if (process.env.CLAUDE_SESSION_ID) return 'claude-code';
-  if (process.env.CURSOR_TRACE_ID) return 'cursor';
-  return 'unknown';
-}
-/**
- * Load the agent registry, pruning stale entries.
- * @param {string} root - Project root
- * @returns {object} Registry with { agents: { [sessionId]: entry } }
- */
-function loadAgentRegistry(root) {
-  const registryPath = path.join(root, AGENTS_REGISTRY);
-  let registry = { version: 1, agents: {} };
-  if (fs.existsSync(registryPath)) {
-    try {
-      registry = JSON.parse(fs.readFileSync(registryPath, 'utf8'));
-    } catch {
-      // Corrupt file — start fresh
-      registry = { version: 1, agents: {} };
-    }
-  }
-  // Prune stale entries on every read
-  const now = Date.now();
-  let pruned = false;
-  for (const [id, entry] of Object.entries(registry.agents || {})) {
-    const ttl = entry.ttl || DEFAULT_TTL_MS;
-    const lastSeenTime = entry.lastSeen ? new Date(entry.lastSeen).getTime() : 0;
-    const lastSeen = isNaN(lastSeenTime) ? 0 : lastSeenTime;
-    if (now - lastSeen > ttl) {
-      delete registry.agents[id];
-      pruned = true;
-    }
-  }
-  if (pruned) {
-    saveAgentRegistry(root, registry);
-  }
-  return registry;
-}
-/**
- * Save the agent registry atomically (write-then-rename).
- * @param {string} root - Project root
- * @param {object} registry - Registry object
- */
-function saveAgentRegistry(root, registry) {
-  const registryPath = path.join(root, AGENTS_REGISTRY);
-  const dir = path.dirname(registryPath);
-  if (!fs.existsSync(dir)) {
-    fs.mkdirSync(dir, { recursive: true });
-  }
-  const tmpPath = registryPath + '.tmp.' + process.pid;
-  fs.writeFileSync(tmpPath, JSON.stringify(registry, null, 2));
-  fs.renameSync(tmpPath, registryPath);
-}
-/**
- * Register or heartbeat an agent session.
- * Called by session-log hooks to keep entries fresh.
- * @param {string} root - Project root
- * @param {object} agent - Agent info
- * @param {string} agent.sessionId - Unique session/conversation ID
- * @param {string} agent.platform - 'claude-code' | 'cursor' | 'unknown'
- * @param {string} [agent.model] - Model name if known
- * @param {string} [agent.specId] - Active spec ID if known
- * @param {number} [agent.ttl] - Custom TTL in ms (default 30 min)
- */
-function heartbeatAgent(root, agent) {
-  const registry = loadAgentRegistry(root);
-  const existing = registry.agents[agent.sessionId] || {};
-  registry.agents[agent.sessionId] = {
-    ...existing,
-    sessionId: agent.sessionId,
-    platform: agent.platform || existing.platform || 'unknown',
-    model: agent.model || existing.model || null,
-    specId: agent.specId || existing.specId || null,
-    ttl: agent.ttl || existing.ttl || DEFAULT_TTL_MS,
-    firstSeen: existing.firstSeen || new Date().toISOString(),
-    lastSeen: new Date().toISOString(),
-  };
-  saveAgentRegistry(root, registry);
-}
-/**
- * Remove an agent session from the registry.
- * Called on session stop.
- * @param {string} root - Project root
- * @param {string} sessionId - Session to remove
- */
-function removeAgent(root, sessionId) {
-  const registry = loadAgentRegistry(root);
-  delete registry.agents[sessionId];
-  saveAgentRegistry(root, registry);
-}
-/**
- * Find the most recently active agent for this terminal/process.
- * Prefers agents that match the current environment.
- * @param {object} registry - Loaded registry
- * @returns {object|null} Agent entry or null
- */
-function findActiveAgent(registry) {
-  const agents = Object.values(registry.agents || {});
-  if (agents.length === 0) return null;
-  // If we're in Cursor, prefer cursor agents
-  const isCursor = !!process.env.CURSOR_TRACE_ID;
-  const preferred = agents.filter(a => {
-    if (isCursor) return a.platform === 'cursor';
-    return a.platform === 'claude-code';
-  });
-  const pool = preferred.length > 0 ? preferred : agents;
-  // Return most recently seen
-  pool.sort((a, b) => new Date(b.lastSeen) - new Date(a.lastSeen));
-  return pool[0];
-}
-/**
- * List all currently active (non-expired) agents.
- * @param {string} root - Project root
- * @returns {object[]} Array of agent entries
- */
-function listActiveAgents(root) {
-  const registry = loadAgentRegistry(root);
-  return Object.values(registry.agents || {});
-}
-module.exports = {
-  getAgentSessionId,
-  getAgentPlatform,
-  loadAgentRegistry,
-  saveAgentRegistry,
-  heartbeatAgent,
-  removeAgent,
-  findActiveAgent,
-  listActiveAgents,
-  AGENTS_REGISTRY,
-  DEFAULT_TTL_MS,
-};