@planu/cli 0.30.1 → 0.32.0

package/dist/engine/runtime-security/checkers/prompt-injection.js

@@ -0,0 +1,103 @@
+// engine/runtime-security/checkers/prompt-injection.ts — SPEC-084 AC-03
+// Detects prompt injection patterns in text inputs using regex + heuristics.
+import { readFileSync } from 'node:fs';
+import { resolve, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+const MODULE_DIR = dirname(fileURLToPath(import.meta.url));
+const PATTERNS_PATH = resolve(MODULE_DIR, '../../../config/injection-patterns.json');
+let cachedPatterns = null;
+function loadPatterns() {
+    if (cachedPatterns) {
+        return cachedPatterns;
+    }
+    try {
+        const raw = readFileSync(PATTERNS_PATH, 'utf-8');
+        const parsed = JSON.parse(raw);
+        cachedPatterns = parsed.patterns;
+        return cachedPatterns;
+    }
+    catch {
+        return [];
+    }
+}
+// Unicode homoglyph detection: characters that look like ASCII but aren't
+const HOMOGLYPH_RANGES = /[\u0400-\u04FF\u2000-\u206F\uFF00-\uFFEF\u200B-\u200F\u202A-\u202E]/;
+// Role delimiter patterns used by various LLM APIs
+const ROLE_DELIMITERS = [
+    /<\|im_start\|>/i,
+    /<\|im_end\|>/i,
+    /\[INST\]/i,
+    /\[\/INST\]/i,
+    /<<SYS>>/i,
+    /<\/SYS>>/i,
+    /\bsystem\s*:/i,
+    /\bassistant\s*:/i,
+    /\buser\s*:/i,
+];
+function computeInjectionScore(text, patterns, customPatterns) {
+    let score = 0;
+    const lowerText = text.toLowerCase();
+    // Check configurable patterns
+    const allPatterns = [...patterns, ...customPatterns];
+    for (const p of allPatterns) {
+        if (lowerText.includes(p.toLowerCase())) {
+            score += 0.25;
+        }
+    }
+    // Check role delimiters (higher weight)
+    for (const regex of ROLE_DELIMITERS) {
+        if (regex.test(text)) {
+            score += 0.35;
+        }
+    }
+    // Check homoglyphs
+    if (HOMOGLYPH_RANGES.test(text)) {
+        score += 0.15;
+    }
+    return Math.min(score, 1.0);
+}
+function isTextInput(value) {
+    return typeof value === 'string' && value.length > 10;
+}
+export const promptInjectionChecker = {
+    type: 'prompt-injection',
+    check(_toolName, inputs, config) {
+        const threats = [];
+        const patterns = loadPatterns();
+        const customPatterns = config.customInjectionPatterns;
+        for (const [key, value] of Object.entries(inputs)) {
+            if (!isTextInput(value)) {
+                continue;
+            }
+            const score = computeInjectionScore(value, patterns, customPatterns);
+            if (score > 0.7) {
+                threats.push({
+                    type: 'prompt-injection',
+                    severity: 'critical',
+                    message: `High-risk prompt injection detected (score: ${score.toFixed(2)})`,
+                    field: key,
+                });
+            }
+            else if (score > 0.3) {
+                threats.push({
+                    type: 'prompt-injection',
+                    severity: 'warning',
+                    message: `Possible prompt injection detected (score: ${score.toFixed(2)})`,
+                    field: key,
+                });
+            }
+            else if (score > 0) {
+                threats.push({
+                    type: 'prompt-injection',
+                    severity: 'info',
+                    message: `Low-risk injection pattern detected (score: ${score.toFixed(2)})`,
+                    field: key,
+                });
+            }
+        }
+        return threats;
+    },
+};
+/** Exported for testing */
+export { computeInjectionScore, loadPatterns };
+//# sourceMappingURL=prompt-injection.js.map

package/dist/engine/runtime-security/checkers/prompt-injection.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prompt-injection.js","sourceRoot":"","sources":["../../../../src/engine/runtime-security/checkers/prompt-injection.ts"],"names":[],"mappings":"AAAA,wEAAwE;AACxE,6EAA6E;AAE7E,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAQzC,MAAM,UAAU,GAAG,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAC3D,MAAM,aAAa,GAAG,OAAO,CAAC,UAAU,EAAE,yCAAyC,CAAC,CAAC;AAErF,IAAI,cAAc,GAAoB,IAAI,CAAC;AAE3C,SAAS,YAAY;IACnB,IAAI,cAAc,EAAE,CAAC;QACnB,OAAO,cAAc,CAAC;IACxB,CAAC;IACD,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,aAAa,EAAE,OAAO,CAAC,CAAC;QACjD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAA0B,CAAC;QACxD,cAAc,GAAG,MAAM,CAAC,QAAQ,CAAC;QACjC,OAAO,cAAc,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED,0EAA0E;AAC1E,MAAM,gBAAgB,GAAG,qEAAqE,CAAC;AAE/F,mDAAmD;AACnD,MAAM,eAAe,GAAG;IACtB,iBAAiB;IACjB,eAAe;IACf,WAAW;IACX,aAAa;IACb,UAAU;IACV,WAAW;IACX,eAAe;IACf,kBAAkB;IAClB,aAAa;CACd,CAAC;AAEF,SAAS,qBAAqB,CAAC,IAAY,EAAE,QAAkB,EAAE,cAAwB;IACvF,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,MAAM,SAAS,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC;IAErC,8BAA8B;IAC9B,MAAM,WAAW,GAAG,CAAC,GAAG,QAAQ,EAAE,GAAG,cAAc,CAAC,CAAC;IACrD,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;QAC5B,IAAI,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YACxC,KAAK,IAAI,IAAI,CAAC;QAChB,CAAC;IACH,CAAC;IAED,wCAAwC;IACxC,KAAK,MAAM,KAAK,IAAI,eAAe,EAAE,CAAC;QACpC,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACrB,KAAK,IAAI,IAAI,CAAC;QAChB,CAAC;IACH,CAAC;IAED,mBAAmB;IACnB,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAChC,KAAK,IAAI,IAAI,CAAC;IAChB,CAAC;IAED,OAAO,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;AAC9B,CAAC;AAED,SAAS,WAAW,CAAC,KAAc;IACjC,OAAO,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,GAAG,EAAE,CAAC;AACxD,CAAC;AAED,MAAM,CAAC,MAAM,sBAAsB,GAA2B;IAC5D,IAAI,EAAE,kBAAkB;IACxB,KAAK,CACH,SAAiB,EACjB,MAA+B,EAC/B,MAA6B;QAE7B,MAAM,OAAO,GAA4B,EAAE,CAAC;QAC5C,MAAM,QAAQ,GAAG,YAAY,EAAE,CAAC;QAChC,MAAM,cAAc,GAAG,MAAM,CAAC,uBAAuB,CAAC;QAEtD,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YAClD,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,EAAE,CAAC;gBACxB,SAAS;YACX,CAAC;YAED,MAAM,KAAK,GAAG,qBAAqB,CAAC,KAAK,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;YAErE,IAAI,KAAK,GAAG,GAAG,EAAE,CAAC;gBAChB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,kBAAkB;oBACxB,QAAQ,EAAE,UAAU;oBACpB,OAAO,EAAE,+CAA+C,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;oBAC3E,KAAK,EAAE,GAAG;iBACX,CAAC,CAAC;YACL,CAAC;iBAAM,IAAI,KAAK,GAAG,GAAG,EAAE,CAAC;gBACvB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,kBAAkB;oBACxB,QAAQ,EAAE,SAAS;oBACnB,OAAO,EAAE,8CAA8C,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;oBAC1E,KAAK,EAAE,GAAG;iBACX,CAAC,CAAC;YACL,CAAC;iBAAM,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;gBACrB,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI,EAAE,kBAAkB;oBACxB,QAAQ,EAAE,MAAM;oBAChB,OAAO,EAAE,+CAA+C,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;oBAC3E,KAAK,EAAE,GAAG;iBACX,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CACF,CAAC;AAEF,2BAA2B;AAC3B,OAAO,EAAE,qBAAqB,EAAE,YAAY,EAAE,CAAC"}

package/dist/engine/runtime-security/checkers/sensitive-data.d.ts

@@ -0,0 +1,3 @@
+import type { RuntimeSecurityChecker } from '../../../types/index.js';
+export declare const sensitiveDataChecker: RuntimeSecurityChecker;
+//# sourceMappingURL=sensitive-data.d.ts.map

package/dist/engine/runtime-security/checkers/sensitive-data.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sensitive-data.d.ts","sourceRoot":"","sources":["../../../../src/engine/runtime-security/checkers/sensitive-data.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EACV,sBAAsB,EAIvB,MAAM,yBAAyB,CAAC;AA0DjC,eAAO,MAAM,oBAAoB,EAAE,sBAwBlC,CAAC"}

package/dist/engine/runtime-security/checkers/sensitive-data.js

@@ -0,0 +1,71 @@
+// engine/runtime-security/checkers/sensitive-data.ts — SPEC-084 AC-08
+// Detects PII, API keys, passwords, and private keys in tool inputs.
+const SENSITIVE_PATTERNS = [
+    // PII
+    { name: 'email', regex: /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g, category: 'pii' },
+    { name: 'phone', regex: /(?:\+?1[-.\s]?)?\(?\d{3}\)?[-.\s]?\d{3}[-.\s]?\d{4}/g, category: 'pii' },
+    { name: 'ssn', regex: /\b\d{3}-\d{2}-\d{4}\b/g, category: 'pii' },
+    { name: 'ip-address', regex: /\b(?:\d{1,3}\.){3}\d{1,3}\b/g, category: 'pii' },
+    // API Keys
+    { name: 'aws-key', regex: /AKIA[0-9A-Z]{16}/g, category: 'secret' },
+    { name: 'gcp-key', regex: /AIza[0-9A-Za-z_-]{35}/g, category: 'secret' },
+    { name: 'openai-key', regex: /sk-[a-zA-Z0-9]{20,}/g, category: 'secret' },
+    { name: 'anthropic-key', regex: /sk-ant-[a-zA-Z0-9]{20,}/g, category: 'secret' },
+    { name: 'github-token', regex: /gh[pousr]_[A-Za-z0-9_]{36,}/g, category: 'secret' },
+    { name: 'stripe-key', regex: /sk_(?:live|test)_[A-Za-z0-9]{24,}/g, category: 'secret' },
+    { name: 'azure-key', regex: /[a-zA-Z0-9/+=]{44}/g, category: 'secret' },
+    // Passwords and tokens in plaintext
+    {
+        name: 'password-field',
+        regex: /(?:password|passwd|pwd|secret|token)\s*[=:]\s*\S+/gi,
+        category: 'secret',
+    },
+    {
+        name: 'private-key',
+        regex: /-----BEGIN (?:RSA |EC |DSA )?PRIVATE KEY-----/g,
+        category: 'secret',
+    },
+    // URLs with embedded credentials
+    {
+        name: 'credential-url',
+        regex: /https?:\/\/[^:\s]+:[^@\s]+@[^\s]+/g,
+        category: 'credential-url',
+    },
+];
+function checkStringForSensitiveData(value, field) {
+    const threats = [];
+    for (const pattern of SENSITIVE_PATTERNS) {
+        // Reset regex lastIndex
+        pattern.regex.lastIndex = 0;
+        if (pattern.regex.test(value)) {
+            threats.push({
+                type: 'sensitive-data',
+                severity: 'warning',
+                message: `Sensitive data detected: ${pattern.name} (${pattern.category})`,
+                field,
+                pattern: pattern.name,
+            });
+        }
+    }
+    return threats;
+}
+export const sensitiveDataChecker = {
+    type: 'sensitive-data',
+    check(_toolName, inputs, _config) {
+        const threats = [];
+        for (const [key, value] of Object.entries(inputs)) {
+            if (typeof value === 'string' && value.length > 5) {
+                threats.push(...checkStringForSensitiveData(value, key));
+            }
+            if (Array.isArray(value)) {
+                for (const item of value) {
+                    if (typeof item === 'string' && item.length > 5) {
+                        threats.push(...checkStringForSensitiveData(item, key));
+                    }
+                }
+            }
+        }
+        return threats;
+    },
+};
+//# sourceMappingURL=sensitive-data.js.map

package/dist/engine/runtime-security/checkers/sensitive-data.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sensitive-data.js","sourceRoot":"","sources":["../../../../src/engine/runtime-security/checkers/sensitive-data.ts"],"names":[],"mappings":"AAAA,sEAAsE;AACtE,qEAAqE;AASrE,MAAM,kBAAkB,GAAuB;IAC7C,MAAM;IACN,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,iDAAiD,EAAE,QAAQ,EAAE,KAAK,EAAE;IAC5F,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,sDAAsD,EAAE,QAAQ,EAAE,KAAK,EAAE;IACjG,EAAE,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,wBAAwB,EAAE,QAAQ,EAAE,KAAK,EAAE;IACjE,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,8BAA8B,EAAE,QAAQ,EAAE,KAAK,EAAE;IAE9E,WAAW;IACX,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,mBAAmB,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACnE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,wBAAwB,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACxE,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,sBAAsB,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACzE,EAAE,IAAI,EAAE,eAAe,EAAE,KAAK,EAAE,0BAA0B,EAAE,QAAQ,EAAE,QAAQ,EAAE;IAChF,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,8BAA8B,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACnF,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,oCAAoC,EAAE,QAAQ,EAAE,QAAQ,EAAE;IACvF,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,qBAAqB,EAAE,QAAQ,EAAE,QAAQ,EAAE;IAEvE,oCAAoC;IACpC;QACE,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,qDAAqD;QAC5D,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,IAAI,EAAE,aAAa;QACnB,KAAK,EAAE,gDAAgD;QACvD,QAAQ,EAAE,QAAQ;KACnB;IAED,iCAAiC;IACjC;QACE,IAAI,EAAE,gBAAgB;QACtB,KAAK,EAAE,oCAAoC;QAC3C,QAAQ,EAAE,gBAAgB;KAC3B;CACF,CAAC;AAEF,SAAS,2BAA2B,CAAC,KAAa,EAAE,KAAa;IAC/D,MAAM,OAAO,GAA4B,EAAE,CAAC;IAE5C,KAAK,MAAM,OAAO,IAAI,kBAAkB,EAAE,CAAC;QACzC,wBAAwB;QACxB,OAAO,CAAC,KAAK,CAAC,SAAS,GAAG,CAAC,CAAC;QAC5B,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,gBAAgB;gBACtB,QAAQ,EAAE,SAAS;gBACnB,OAAO,EAAE,4BAA4B,OAAO,CAAC,IAAI,KAAK,OAAO,CAAC,QAAQ,GAAG;gBACzE,KAAK;gBACL,OAAO,EAAE,OAAO,CAAC,IAAI;aACtB,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,CAAC,MAAM,oBAAoB,GAA2B;IAC1D,IAAI,EAAE,gBAAgB;IACtB,KAAK,CACH,SAAiB,EACjB,MAA+B,EAC/B,OAA8B;QAE9B,MAAM,OAAO,GAA4B,EAAE,CAAC;QAE5C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;YAClD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAClD,OAAO,CAAC,IAAI,CAAC,GAAG,2BAA2B,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,CAAC;YAC3D,CAAC;YACD,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;gBACzB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;oBACzB,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBAChD,OAAO,CAAC,IAAI,CAAC,GAAG,2BAA2B,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,CAAC;oBAC1D,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CACF,CAAC"}

package/dist/engine/runtime-security/index.d.ts

@@ -0,0 +1,12 @@
+export { validateToolInput, loadSecurityConfig, getSecurityConfig, getProjectConfig, resetConfigCache, } from './validator.js';
+export { checkRateLimit, resetRateLimits } from './rate-limiter.js';
+export { logAuditEntry, getAuditSummary } from './audit-logger.js';
+export { pathTraversalChecker } from './checkers/path-traversal.js';
+export { promptInjectionChecker } from './checkers/prompt-injection.js';
+export { commandInjectionChecker } from './checkers/command-injection.js';
+export { inputSanitizerChecker, sanitizeString } from './checkers/input-sanitizer.js';
+export { sensitiveDataChecker } from './checkers/sensitive-data.js';
+export { filePermissionsChecker } from './checkers/file-permissions.js';
+export { contentSecurityChecker } from './checkers/content-security.js';
+export { dependencyVulnChecker, checkDependencies } from './checkers/dependency-vuln.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/engine/runtime-security/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/engine/runtime-security/index.ts"],"names":[],"mappings":"AAEA,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpE,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,uBAAuB,EAAE,MAAM,iCAAiC,CAAC;AAC1E,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AACtF,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,qBAAqB,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC"}

package/dist/engine/runtime-security/index.js

@@ -0,0 +1,13 @@
+// engine/runtime-security/index.ts — SPEC-084 barrel export
+export { validateToolInput, loadSecurityConfig, getSecurityConfig, getProjectConfig, resetConfigCache, } from './validator.js';
+export { checkRateLimit, resetRateLimits } from './rate-limiter.js';
+export { logAuditEntry, getAuditSummary } from './audit-logger.js';
+export { pathTraversalChecker } from './checkers/path-traversal.js';
+export { promptInjectionChecker } from './checkers/prompt-injection.js';
+export { commandInjectionChecker } from './checkers/command-injection.js';
+export { inputSanitizerChecker, sanitizeString } from './checkers/input-sanitizer.js';
+export { sensitiveDataChecker } from './checkers/sensitive-data.js';
+export { filePermissionsChecker } from './checkers/file-permissions.js';
+export { contentSecurityChecker } from './checkers/content-security.js';
+export { dependencyVulnChecker, checkDependencies } from './checkers/dependency-vuln.js';
+//# sourceMappingURL=index.js.map

package/dist/engine/runtime-security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/engine/runtime-security/index.ts"],"names":[],"mappings":"AAAA,4DAA4D;AAE5D,OAAO,EACL,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,EACjB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpE,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACnE,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,uBAAuB,EAAE,MAAM,iCAAiC,CAAC;AAC1E,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AACtF,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,qBAAqB,EAAE,iBAAiB,EAAE,MAAM,+BAA+B,CAAC"}

package/dist/engine/runtime-security/rate-limiter.d.ts

@@ -0,0 +1,5 @@
+import type { RuntimeRateLimitResult, RuntimeSecurityConfig } from '../../types/index.js';
+export declare function checkRateLimit(toolName: string, config: RuntimeSecurityConfig, now?: number): RuntimeRateLimitResult;
+/** Reset all rate limit state (for testing) */
+export declare function resetRateLimits(): void;
+//# sourceMappingURL=rate-limiter.d.ts.map

package/dist/engine/runtime-security/rate-limiter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.d.ts","sourceRoot":"","sources":["../../../src/engine/runtime-security/rate-limiter.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAGV,sBAAsB,EACtB,qBAAqB,EACtB,MAAM,sBAAsB,CAAC;AAgE9B,wBAAgB,cAAc,CAC5B,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,qBAAqB,EAC7B,GAAG,CAAC,EAAE,MAAM,GACX,sBAAsB,CAkDxB;AAED,+CAA+C;AAC/C,wBAAgB,eAAe,IAAI,IAAI,CAEtC"}

package/dist/engine/runtime-security/rate-limiter.js

@@ -0,0 +1,91 @@
+// engine/runtime-security/rate-limiter.ts — SPEC-084 AC-06
+// Token bucket rate limiting per tool name, in-memory only.
+// Tool categories for rate limiting
+const READ_TOOLS = new Set([
+    'list_specs',
+    'validate',
+    'check_readiness',
+    'security_report',
+    'audit_spec',
+    'estimate',
+    'semantic_search',
+    'list_groups',
+    'license_status',
+    'usage_stats',
+    'usage_report',
+    'spec_history',
+]);
+const DESTRUCTIVE_TOOLS = new Set(['delete_spec', 'delete_project', 'empty_trash']);
+const buckets = new Map();
+function getToolCategory(toolName) {
+    if (DESTRUCTIVE_TOOLS.has(toolName)) {
+        return 'destructive';
+    }
+    if (READ_TOOLS.has(toolName)) {
+        return 'read';
+    }
+    return 'write';
+}
+function getRateLimitConfig(toolName, config) {
+    const category = getToolCategory(toolName);
+    return config.rateLimits[category];
+}
+function computeRefill(bucket, rlConfig, now) {
+    const elapsed = (now - bucket.lastRefill) / 1000;
+    const refilled = elapsed * rlConfig.refillRatePerSecond;
+    return {
+        tokens: Math.min(rlConfig.maxTokens, bucket.tokens + refilled),
+        lastRefill: now,
+    };
+}
+function isBurstActive(bucket, rlConfig, now) {
+    if (bucket.burstStart === null) {
+        return false;
+    }
+    return now - bucket.burstStart < rlConfig.burstDurationMs;
+}
+export function checkRateLimit(toolName, config, now) {
+    const currentTime = now ?? Date.now();
+    const rlConfig = getRateLimitConfig(toolName, config);
+    const existing = buckets.get(toolName);
+    const bucket = existing ?? {
+        tokens: rlConfig.maxTokens,
+        lastRefill: currentTime,
+        burstStart: null,
+    };
+    // Refill tokens
+    const refill = computeRefill(bucket, rlConfig, currentTime);
+    // Check burst allowance
+    const effectiveMax = isBurstActive(bucket, rlConfig, currentTime)
+        ? rlConfig.maxTokens * rlConfig.burstMultiplier
+        : rlConfig.maxTokens;
+    let tokens = Math.min(refill.tokens, effectiveMax);
+    let burstStart = bucket.burstStart;
+    if (tokens >= 1) {
+        tokens -= 1;
+        // Activate burst if near empty (below 20% of max)
+        if (tokens < rlConfig.maxTokens * 0.2 && burstStart === null) {
+            burstStart = currentTime;
+        }
+        buckets.set(toolName, { tokens, lastRefill: refill.lastRefill, burstStart });
+        return {
+            allowed: true,
+            retryAfterMs: 0,
+            remainingTokens: Math.floor(tokens),
+        };
+    }
+    buckets.set(toolName, { tokens, lastRefill: refill.lastRefill, burstStart });
+    // Calculate retry time
+    const tokensNeeded = 1 - tokens;
+    const retryAfterMs = Math.ceil((tokensNeeded / rlConfig.refillRatePerSecond) * 1000);
+    return {
+        allowed: false,
+        retryAfterMs,
+        remainingTokens: 0,
+    };
+}
+/** Reset all rate limit state (for testing) */
+export function resetRateLimits() {
+    buckets.clear();
+}
+//# sourceMappingURL=rate-limiter.js.map

package/dist/engine/runtime-security/rate-limiter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.js","sourceRoot":"","sources":["../../../src/engine/runtime-security/rate-limiter.ts"],"names":[],"mappings":"AAAA,2DAA2D;AAC3D,4DAA4D;AAS5D,oCAAoC;AACpC,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC;IACzB,YAAY;IACZ,UAAU;IACV,iBAAiB;IACjB,iBAAiB;IACjB,YAAY;IACZ,UAAU;IACV,iBAAiB;IACjB,aAAa;IACb,gBAAgB;IAChB,aAAa;IACb,cAAc;IACd,cAAc;CACf,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC,CAAC,aAAa,EAAE,gBAAgB,EAAE,aAAa,CAAC,CAAC,CAAC;AAEpF,MAAM,OAAO,GAAG,IAAI,GAAG,EAAgC,CAAC;AAExD,SAAS,eAAe,CAAC,QAAgB;IACvC,IAAI,iBAAiB,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QACpC,OAAO,aAAa,CAAC;IACvB,CAAC;IACD,IAAI,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7B,OAAO,MAAM,CAAC;IAChB,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,SAAS,kBAAkB,CACzB,QAAgB,EAChB,MAA6B;IAE7B,MAAM,QAAQ,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;IAC3C,OAAO,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;AACrC,CAAC;AAED,SAAS,aAAa,CACpB,MAA4B,EAC5B,QAAgC,EAChC,GAAW;IAEX,MAAM,OAAO,GAAG,CAAC,GAAG,GAAG,MAAM,CAAC,UAAU,CAAC,GAAG,IAAI,CAAC;IACjD,MAAM,QAAQ,GAAG,OAAO,GAAG,QAAQ,CAAC,mBAAmB,CAAC;IACxD,OAAO;QACL,MAAM,EAAE,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC,MAAM,GAAG,QAAQ,CAAC;QAC9D,UAAU,EAAE,GAAG;KAChB,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CACpB,MAA4B,EAC5B,QAAgC,EAChC,GAAW;IAEX,IAAI,MAAM,CAAC,UAAU,KAAK,IAAI,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,GAAG,GAAG,MAAM,CAAC,UAAU,GAAG,QAAQ,CAAC,eAAe,CAAC;AAC5D,CAAC;AAED,MAAM,UAAU,cAAc,CAC5B,QAAgB,EAChB,MAA6B,EAC7B,GAAY;IAEZ,MAAM,WAAW,GAAG,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC;IACtC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAEtD,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IACvC,MAAM,MAAM,GAAyB,QAAQ,IAAI;QAC/C,MAAM,EAAE,QAAQ,CAAC,SAAS;QAC1B,UAAU,EAAE,WAAW;QACvB,UAAU,EAAE,IAAI;KACjB,CAAC;IAEF,gBAAgB;IAChB,MAAM,MAAM,GAAG,aAAa,CAAC,MAAM,EAAE,QAAQ,EAAE,WAAW,CAAC,CAAC;IAE5D,wBAAwB;IACxB,MAAM,YAAY,GAAG,aAAa,CAAC,MAAM,EAAE,QAAQ,EAAE,WAAW,CAAC;QAC/D,CAAC,CAAC,QAAQ,CAAC,SAAS,GAAG,QAAQ,CAAC,eAAe;QAC/C,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC;IAEvB,IAAI,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE,YAAY,CAAC,CAAC;IACnD,IAAI,UAAU,GAAG,MAAM,CAAC,UAAU,CAAC;IAEnC,IAAI,MAAM,IAAI,CAAC,EAAE,CAAC;QAChB,MAAM,IAAI,CAAC,CAAC;QAEZ,kDAAkD;QAClD,IAAI,MAAM,GAAG,QAAQ,CAAC,SAAS,GAAG,GAAG,IAAI,UAAU,KAAK,IAAI,EAAE,CAAC;YAC7D,UAAU,GAAG,WAAW,CAAC;QAC3B,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,UAAU,EAAE,UAAU,EAAE,CAAC,CAAC;QAE7E,OAAO;YACL,OAAO,EAAE,IAAI;YACb,YAAY,EAAE,CAAC;YACf,eAAe,EAAE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;SACpC,CAAC;IACJ,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,QAAQ,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,CAAC,UAAU,EAAE,UAAU,EAAE,CAAC,CAAC;IAE7E,uBAAuB;IACvB,MAAM,YAAY,GAAG,CAAC,GAAG,MAAM,CAAC;IAChC,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC,YAAY,GAAG,QAAQ,CAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC;IAErF,OAAO;QACL,OAAO,EAAE,KAAK;QACd,YAAY;QACZ,eAAe,EAAE,CAAC;KACnB,CAAC;AACJ,CAAC;AAED,+CAA+C;AAC/C,MAAM,UAAU,eAAe;IAC7B,OAAO,CAAC,KAAK,EAAE,CAAC;AAClB,CAAC"}

package/dist/engine/runtime-security/validator.d.ts

@@ -0,0 +1,9 @@
+import type { RuntimeSecurityConfig, RuntimeSecurityValidationResult } from '../../types/index.js';
+export declare function loadSecurityConfig(configPath?: string): RuntimeSecurityConfig;
+export declare function getSecurityConfig(): RuntimeSecurityConfig;
+/** Load project-level override config if it exists */
+export declare function getProjectConfig(projectPath: string): RuntimeSecurityConfig;
+/** Reset cached config (for testing) */
+export declare function resetConfigCache(): void;
+export declare function validateToolInput(toolName: string, inputs: Record<string, unknown>, config?: RuntimeSecurityConfig): RuntimeSecurityValidationResult;
+//# sourceMappingURL=validator.d.ts.map

package/dist/engine/runtime-security/validator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validator.d.ts","sourceRoot":"","sources":["../../../src/engine/runtime-security/validator.ts"],"names":[],"mappings":"AAMA,OAAO,KAAK,EAEV,qBAAqB,EACrB,+BAA+B,EAChC,MAAM,sBAAsB,CAAC;AA2B9B,wBAAgB,kBAAkB,CAAC,UAAU,CAAC,EAAE,MAAM,GAAG,qBAAqB,CA4B7E;AAED,wBAAgB,iBAAiB,IAAI,qBAAqB,CAGzD;AAED,sDAAsD;AACtD,wBAAgB,gBAAgB,CAAC,WAAW,EAAE,MAAM,GAAG,qBAAqB,CAM3E;AAED,wCAAwC;AACxC,wBAAgB,gBAAgB,IAAI,IAAI,CAEvC;AAcD,wBAAgB,iBAAiB,CAC/B,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC/B,MAAM,CAAC,EAAE,qBAAqB,GAC7B,+BAA+B,CAmCjC"}

package/dist/engine/runtime-security/validator.js

@@ -0,0 +1,118 @@
+// engine/runtime-security/validator.ts — SPEC-084 AC-01
+// Orchestrates all security checkers over tool inputs (OCP — add checkers without modifying).
+import { readFileSync, existsSync } from 'node:fs';
+import { resolve, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { pathTraversalChecker } from './checkers/path-traversal.js';
+import { promptInjectionChecker } from './checkers/prompt-injection.js';
+import { commandInjectionChecker } from './checkers/command-injection.js';
+import { inputSanitizerChecker, sanitizeString } from './checkers/input-sanitizer.js';
+import { sensitiveDataChecker } from './checkers/sensitive-data.js';
+import { filePermissionsChecker } from './checkers/file-permissions.js';
+import { contentSecurityChecker } from './checkers/content-security.js';
+import { dependencyVulnChecker } from './checkers/dependency-vuln.js';
+const MODULE_DIR = dirname(fileURLToPath(import.meta.url));
+const DEFAULT_CONFIG_PATH = resolve(MODULE_DIR, '../../config/security-runtime-config.json');
+// Registry of all checkers (OCP — add new checkers here without modifying orchestration logic)
+const defaultCheckers = [
+    pathTraversalChecker,
+    promptInjectionChecker,
+    commandInjectionChecker,
+    inputSanitizerChecker,
+    sensitiveDataChecker,
+    filePermissionsChecker,
+    contentSecurityChecker,
+    dependencyVulnChecker,
+];
+let cachedConfig = null;
+export function loadSecurityConfig(configPath) {
+    const path = configPath ?? DEFAULT_CONFIG_PATH;
+    try {
+        const raw = readFileSync(path, 'utf-8');
+        return JSON.parse(raw);
+    }
+    catch {
+        return {
+            level: 'standard',
+            rateLimits: {
+                read: { maxTokens: 60, refillRatePerSecond: 1, burstMultiplier: 2, burstDurationMs: 5000 },
+                write: {
+                    maxTokens: 30,
+                    refillRatePerSecond: 0.5,
+                    burstMultiplier: 2,
+                    burstDurationMs: 5000,
+                },
+                destructive: {
+                    maxTokens: 10,
+                    refillRatePerSecond: 0.167,
+                    burstMultiplier: 2,
+                    burstDurationMs: 5000,
+                },
+            },
+            allowedDirectories: [],
+            customInjectionPatterns: [],
+            disabledCheckers: [],
+        };
+    }
+}
+export function getSecurityConfig() {
+    cachedConfig ??= loadSecurityConfig();
+    return cachedConfig;
+}
+/** Load project-level override config if it exists */
+export function getProjectConfig(projectPath) {
+    const projectConfigPath = resolve(projectPath, 'security-config.json');
+    if (existsSync(projectConfigPath)) {
+        return loadSecurityConfig(projectConfigPath);
+    }
+    return getSecurityConfig();
+}
+/** Reset cached config (for testing) */
+export function resetConfigCache() {
+    cachedConfig = null;
+}
+function sanitizeInputs(inputs) {
+    const sanitized = {};
+    for (const [key, value] of Object.entries(inputs)) {
+        if (typeof value === 'string') {
+            sanitized[key] = sanitizeString(value);
+        }
+        else {
+            sanitized[key] = value;
+        }
+    }
+    return sanitized;
+}
+export function validateToolInput(toolName, inputs, config) {
+    const effectiveConfig = config ?? getSecurityConfig();
+    const allThreats = [];
+    // Run all enabled checkers
+    for (const checker of defaultCheckers) {
+        if (effectiveConfig.disabledCheckers.includes(checker.type)) {
+            continue;
+        }
+        const threats = checker.check(toolName, inputs, effectiveConfig);
+        allThreats.push(...threats);
+    }
+    // Determine safety based on security level
+    const hasCritical = allThreats.some((t) => t.severity === 'critical');
+    const hasWarning = allThreats.some((t) => t.severity === 'warning');
+    let safe;
+    switch (effectiveConfig.level) {
+        case 'strict':
+            safe = !hasCritical && !hasWarning;
+            break;
+        case 'standard':
+            safe = !hasCritical;
+            break;
+        case 'permissive':
+            safe = true;
+            break;
+    }
+    return {
+        safe,
+        threats: allThreats,
+        sanitizedInputs: sanitizeInputs(inputs),
+    };
+}
+//# sourceMappingURL=validator.js.map

package/dist/engine/runtime-security/validator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validator.js","sourceRoot":"","sources":["../../../src/engine/runtime-security/validator.ts"],"names":[],"mappings":"AAAA,wDAAwD;AACxD,8FAA8F;AAE9F,OAAO,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AACnD,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AAMzC,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,uBAAuB,EAAE,MAAM,iCAAiC,CAAC;AAC1E,OAAO,EAAE,qBAAqB,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AACtF,OAAO,EAAE,oBAAoB,EAAE,MAAM,8BAA8B,CAAC;AACpE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,sBAAsB,EAAE,MAAM,gCAAgC,CAAC;AACxE,OAAO,EAAE,qBAAqB,EAAE,MAAM,+BAA+B,CAAC;AAEtE,MAAM,UAAU,GAAG,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;AAC3D,MAAM,mBAAmB,GAAG,OAAO,CAAC,UAAU,EAAE,2CAA2C,CAAC,CAAC;AAE7F,+FAA+F;AAC/F,MAAM,eAAe,GAA6B;IAChD,oBAAoB;IACpB,sBAAsB;IACtB,uBAAuB;IACvB,qBAAqB;IACrB,oBAAoB;IACpB,sBAAsB;IACtB,sBAAsB;IACtB,qBAAqB;CACtB,CAAC;AAEF,IAAI,YAAY,GAAiC,IAAI,CAAC;AAEtD,MAAM,UAAU,kBAAkB,CAAC,UAAmB;IACpD,MAAM,IAAI,GAAG,UAAU,IAAI,mBAAmB,CAAC;IAC/C,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;QACxC,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAA0B,CAAC;IAClD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;YACL,KAAK,EAAE,UAAU;YACjB,UAAU,EAAE;gBACV,IAAI,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE,mBAAmB,EAAE,CAAC,EAAE,eAAe,EAAE,CAAC,EAAE,eAAe,EAAE,IAAI,EAAE;gBAC1F,KAAK,EAAE;oBACL,SAAS,EAAE,EAAE;oBACb,mBAAmB,EAAE,GAAG;oBACxB,eAAe,EAAE,CAAC;oBAClB,eAAe,EAAE,IAAI;iBACtB;gBACD,WAAW,EAAE;oBACX,SAAS,EAAE,EAAE;oBACb,mBAAmB,EAAE,KAAK;oBAC1B,eAAe,EAAE,CAAC;oBAClB,eAAe,EAAE,IAAI;iBACtB;aACF;YACD,kBAAkB,EAAE,EAAE;YACtB,uBAAuB,EAAE,EAAE;YAC3B,gBAAgB,EAAE,EAAE;SACrB,CAAC;IACJ,CAAC;AACH,CAAC;AAED,MAAM,UAAU,iBAAiB;IAC/B,YAAY,KAAK,kBAAkB,EAAE,CAAC;IACtC,OAAO,YAAY,CAAC;AACtB,CAAC;AAED,sDAAsD;AACtD,MAAM,UAAU,gBAAgB,CAAC,WAAmB;IAClD,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,sBAAsB,CAAC,CAAC;IACvE,IAAI,UAAU,CAAC,iBAAiB,CAAC,EAAE,CAAC;QAClC,OAAO,kBAAkB,CAAC,iBAAiB,CAAC,CAAC;IAC/C,CAAC;IACD,OAAO,iBAAiB,EAAE,CAAC;AAC7B,CAAC;AAED,wCAAwC;AACxC,MAAM,UAAU,gBAAgB;IAC9B,YAAY,GAAG,IAAI,CAAC;AACtB,CAAC;AAED,SAAS,cAAc,CAAC,MAA+B;IACrD,MAAM,SAAS,GAA4B,EAAE,CAAC;IAC9C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,CAAC;QAClD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC9B,SAAS,CAAC,GAAG,CAAC,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;QACzC,CAAC;aAAM,CAAC;YACN,SAAS,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACzB,CAAC;IACH,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,MAAM,UAAU,iBAAiB,CAC/B,QAAgB,EAChB,MAA+B,EAC/B,MAA8B;IAE9B,MAAM,eAAe,GAAG,MAAM,IAAI,iBAAiB,EAAE,CAAC;IACtD,MAAM,UAAU,GAAG,EAAE,CAAC;IAEtB,2BAA2B;IAC3B,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,IAAI,eAAe,CAAC,gBAAgB,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;YAC5D,SAAS;QACX,CAAC;QACD,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,QAAQ,EAAE,MAAM,EAAE,eAAe,CAAC,CAAC;QACjE,UAAU,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;IAC9B,CAAC;IAED,2CAA2C;IAC3C,MAAM,WAAW,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC;IACtE,MAAM,UAAU,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC;IAEpE,IAAI,IAAa,CAAC;IAClB,QAAQ,eAAe,CAAC,KAAK,EAAE,CAAC;QAC9B,KAAK,QAAQ;YACX,IAAI,GAAG,CAAC,WAAW,IAAI,CAAC,UAAU,CAAC;YACnC,MAAM;QACR,KAAK,UAAU;YACb,IAAI,GAAG,CAAC,WAAW,CAAC;YACpB,MAAM;QACR,KAAK,YAAY;YACf,IAAI,GAAG,IAAI,CAAC;YACZ,MAAM;IACV,CAAC;IAED,OAAO;QACL,IAAI;QACJ,OAAO,EAAE,UAAU;QACnB,eAAe,EAAE,cAAc,CAAC,MAAM,CAAC;KACxC,CAAC;AACJ,CAAC"}

package/dist/engine/session/auto-save.d.ts

@@ -0,0 +1,18 @@
+import type { Session, SessionDecision, SessionFile, SessionActiveSpec } from '../../types/index.js';
+/** Get the current in-memory session (may be null if none started). */
+export declare function getCurrentSession(): Session | null;
+/** Reset module state (for testing). */
+export declare function resetSessionState(): void;
+/** Start or resume a session for a project. */
+export declare function startSession(projectId: string, existingSession?: Session): Session;
+/** Record a tool call and maybe persist (debounce). */
+export declare function onToolCall(projectId: string): Promise<void>;
+/** Add an active spec to the current session. */
+export declare function addActiveSpec(spec: SessionActiveSpec): void;
+/** Add a decision to the current session. */
+export declare function addDecision(decision: SessionDecision): void;
+/** Add a modified file to the current session. */
+export declare function addModifiedFile(file: SessionFile): void;
+/** Force-save the current session to disk (bypasses debounce). */
+export declare function persistCurrentSession(): Promise<void>;
+//# sourceMappingURL=auto-save.d.ts.map

package/dist/engine/session/auto-save.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auto-save.d.ts","sourceRoot":"","sources":["../../../src/engine/session/auto-save.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,OAAO,EACP,eAAe,EACf,WAAW,EACX,iBAAiB,EAClB,MAAM,sBAAsB,CAAC;AAe9B,uEAAuE;AACvE,wBAAgB,iBAAiB,IAAI,OAAO,GAAG,IAAI,CAElD;AAED,wCAAwC;AACxC,wBAAgB,iBAAiB,IAAI,IAAI,CAGxC;AAED,+CAA+C;AAC/C,wBAAgB,YAAY,CAAC,SAAS,EAAE,MAAM,EAAE,eAAe,CAAC,EAAE,OAAO,GAAG,OAAO,CAmBlF;AAED,uDAAuD;AACvD,wBAAsB,UAAU,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAYjE;AAED,iDAAiD;AACjD,wBAAgB,aAAa,CAAC,IAAI,EAAE,iBAAiB,GAAG,IAAI,CAQ3D;AAED,6CAA6C;AAC7C,wBAAgB,WAAW,CAAC,QAAQ,EAAE,eAAe,GAAG,IAAI,CAK3D;AAED,kDAAkD;AAClD,wBAAgB,eAAe,CAAC,IAAI,EAAE,WAAW,GAAG,IAAI,CAUvD;AAED,kEAAkE;AAClE,wBAAsB,qBAAqB,IAAI,OAAO,CAAC,IAAI,CAAC,CAU3D"}

package/dist/engine/session/auto-save.js

@@ -0,0 +1,96 @@
+import * as sessionStore from '../../storage/session-store.js';
+import { randomUUID } from 'node:crypto';
+import { buildContextSnapshot } from './context-snapshot.js';
+import { updateCrossConversationMemory } from './memory-sync.js';
+// --- module state ---
+let currentSession = null;
+let lastSaveTimestamp = 0;
+const DEBOUNCE_MS = 30_000; // 30 seconds
+// --- public API ---
+/** Get the current in-memory session (may be null if none started). */
+export function getCurrentSession() {
+    return currentSession;
+}
+/** Reset module state (for testing). */
+export function resetSessionState() {
+    currentSession = null;
+    lastSaveTimestamp = 0;
+}
+/** Start or resume a session for a project. */
+export function startSession(projectId, existingSession) {
+    if (existingSession) {
+        currentSession = { ...existingSession };
+        return currentSession;
+    }
+    const now = new Date().toISOString();
+    currentSession = {
+        id: randomUUID(),
+        projectId,
+        startedAt: now,
+        lastSavedAt: now,
+        activeSpecs: [],
+        decisions: [],
+        modifiedFiles: [],
+        contextSummary: '',
+        toolCallCount: 0,
+        metadata: {},
+    };
+    return currentSession;
+}
+/** Record a tool call and maybe persist (debounce). */
+export async function onToolCall(projectId) {
+    if (!currentSession) {
+        startSession(projectId);
+    }
+    if (currentSession) {
+        currentSession.toolCallCount++;
+        const now = Date.now();
+        if (now - lastSaveTimestamp >= DEBOUNCE_MS) {
+            await persistCurrentSession();
+            lastSaveTimestamp = now;
+        }
+    }
+}
+/** Add an active spec to the current session. */
+export function addActiveSpec(spec) {
+    if (!currentSession) {
+        return;
+    }
+    const exists = currentSession.activeSpecs.some((s) => s.specId === spec.specId);
+    if (!exists) {
+        currentSession.activeSpecs.push(spec);
+    }
+}
+/** Add a decision to the current session. */
+export function addDecision(decision) {
+    if (!currentSession) {
+        return;
+    }
+    currentSession.decisions.push(decision);
+}
+/** Add a modified file to the current session. */
+export function addModifiedFile(file) {
+    if (!currentSession) {
+        return;
+    }
+    const idx = currentSession.modifiedFiles.findIndex((f) => f.path === file.path);
+    if (idx >= 0) {
+        currentSession.modifiedFiles[idx] = file;
+    }
+    else {
+        currentSession.modifiedFiles.push(file);
+    }
+}
+/** Force-save the current session to disk (bypasses debounce). */
+export async function persistCurrentSession() {
+    if (!currentSession) {
+        return;
+    }
+    currentSession.lastSavedAt = new Date().toISOString();
+    currentSession.contextSummary = buildContextSnapshot(currentSession);
+    await sessionStore.save(currentSession);
+    await updateCrossConversationMemory(currentSession);
+    // Fire-and-forget cleanup
+    void sessionStore.cleanup(currentSession.projectId);
+}
+//# sourceMappingURL=auto-save.js.map

package/dist/engine/session/auto-save.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auto-save.js","sourceRoot":"","sources":["../../../src/engine/session/auto-save.ts"],"names":[],"mappings":"AAOA,OAAO,KAAK,YAAY,MAAM,gCAAgC,CAAC;AAC/D,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAC;AACzC,OAAO,EAAE,oBAAoB,EAAE,MAAM,uBAAuB,CAAC;AAC7D,OAAO,EAAE,6BAA6B,EAAE,MAAM,kBAAkB,CAAC;AAEjE,uBAAuB;AAEvB,IAAI,cAAc,GAAmB,IAAI,CAAC;AAC1C,IAAI,iBAAiB,GAAG,CAAC,CAAC;AAE1B,MAAM,WAAW,GAAG,MAAM,CAAC,CAAC,aAAa;AAEzC,qBAAqB;AAErB,uEAAuE;AACvE,MAAM,UAAU,iBAAiB;IAC/B,OAAO,cAAc,CAAC;AACxB,CAAC;AAED,wCAAwC;AACxC,MAAM,UAAU,iBAAiB;IAC/B,cAAc,GAAG,IAAI,CAAC;IACtB,iBAAiB,GAAG,CAAC,CAAC;AACxB,CAAC;AAED,+CAA+C;AAC/C,MAAM,UAAU,YAAY,CAAC,SAAiB,EAAE,eAAyB;IACvE,IAAI,eAAe,EAAE,CAAC;QACpB,cAAc,GAAG,EAAE,GAAG,eAAe,EAAE,CAAC;QACxC,OAAO,cAAc,CAAC;IACxB,CAAC;IACD,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACrC,cAAc,GAAG;QACf,EAAE,EAAE,UAAU,EAAE;QAChB,SAAS;QACT,SAAS,EAAE,GAAG;QACd,WAAW,EAAE,GAAG;QAChB,WAAW,EAAE,EAAE;QACf,SAAS,EAAE,EAAE;QACb,aAAa,EAAE,EAAE;QACjB,cAAc,EAAE,EAAE;QAClB,aAAa,EAAE,CAAC;QAChB,QAAQ,EAAE,EAAE;KACb,CAAC;IACF,OAAO,cAAc,CAAC;AACxB,CAAC;AAED,uDAAuD;AACvD,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,SAAiB;IAChD,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,YAAY,CAAC,SAAS,CAAC,CAAC;IAC1B,CAAC;IACD,IAAI,cAAc,EAAE,CAAC;QACnB,cAAc,CAAC,aAAa,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IAAI,GAAG,GAAG,iBAAiB,IAAI,WAAW,EAAE,CAAC;YAC3C,MAAM,qBAAqB,EAAE,CAAC;YAC9B,iBAAiB,GAAG,GAAG,CAAC;QAC1B,CAAC;IACH,CAAC;AACH,CAAC;AAED,iDAAiD;AACjD,MAAM,UAAU,aAAa,CAAC,IAAuB;IACnD,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,OAAO;IACT,CAAC;IACD,MAAM,MAAM,GAAG,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;IAChF,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,cAAc,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACxC,CAAC;AACH,CAAC;AAED,6CAA6C;AAC7C,MAAM,UAAU,WAAW,CAAC,QAAyB;IACnD,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,OAAO;IACT,CAAC;IACD,cAAc,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;AAC1C,CAAC;AAED,kDAAkD;AAClD,MAAM,UAAU,eAAe,CAAC,IAAiB;IAC/C,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,OAAO;IACT,CAAC;IACD,MAAM,GAAG,GAAG,cAAc,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,IAAI,CAAC,CAAC;IAChF,IAAI,GAAG,IAAI,CAAC,EAAE,CAAC;QACb,cAAc,CAAC,aAAa,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;IAC3C,CAAC;SAAM,CAAC;QACN,cAAc,CAAC,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1C,CAAC;AACH,CAAC;AAED,kEAAkE;AAClE,MAAM,CAAC,KAAK,UAAU,qBAAqB;IACzC,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,OAAO;IACT,CAAC;IACD,cAAc,CAAC,WAAW,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IACtD,cAAc,CAAC,cAAc,GAAG,oBAAoB,CAAC,cAAc,CAAC,CAAC;IACrE,MAAM,YAAY,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IACxC,MAAM,6BAA6B,CAAC,cAAc,CAAC,CAAC;IACpD,0BAA0B;IAC1B,KAAK,YAAY,CAAC,OAAO,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC;AACtD,CAAC"}

package/dist/engine/session/context-snapshot.d.ts

@@ -0,0 +1,8 @@
+import type { Session } from '../../types/index.js';
+/**
+ * Build a markdown context summary from the current session state.
+ * Includes: specs in progress, last 5 modified files, last 3 decisions.
+ * Truncated to 2000 chars max.
+ */
+export declare function buildContextSnapshot(session: Session): string;
+//# sourceMappingURL=context-snapshot.d.ts.map

package/dist/engine/session/context-snapshot.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"context-snapshot.d.ts","sourceRoot":"","sources":["../../../src/engine/session/context-snapshot.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,sBAAsB,CAAC;AAIpD;;;;GAIG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,OAAO,GAAG,MAAM,CA8C7D"}