@ps-neko/nekowork 0.2.0-alpha.3 → 0.2.0-alpha.5

package/README.md

@@ -10,23 +10,24 @@ pushes, or deploys on its own.
 
 ## Status
 
-**Published alpha** (`@ps-neko/nekowork`, alpha dist-tag). This package is the
-published slim verification gate. Install with:
+**Published alpha** (`@ps-neko/nekowork`, `@alpha` dist-tag). This package is the
+published slim verification gate. Always install with the **`@alpha`** tag —
+`latest` is pinned to an old `0.2.0-alpha.0` and is not the alpha line:
 
 ```bash
-npm i -g @ps-neko/nekowork
+npm i -g @ps-neko/nekowork@alpha
 ```
 
 The fuller legacy and power-user surface lives in the internal
 `@ps-neko/nekowork-harness` package (not separately published). See
-[HANDOFF-PACKAGE-SPLIT.md](./HANDOFF-PACKAGE-SPLIT.md) for the split history.
+[HANDOFF-PACKAGE-SPLIT.md](https://github.com/Ps-Neko/NEKOWORK/blob/main/packages/nekowork/HANDOFF-PACKAGE-SPLIT.md) for the split history.
 
 ## Quickstart
 
 ```bash
 # right after your AI tool changes some files:
-npx -y @ps-neko/nekowork check        # 30-sec environment check
-npx -y @ps-neko/nekowork verify-pr    # scan the diff → get a verdict
+npx -y @ps-neko/nekowork@alpha check        # 30-sec environment check
+npx -y @ps-neko/nekowork@alpha verify-pr    # scan the diff → get a verdict
 ```
 
 `verify-pr` reads the diff, writes a plain-English `REPORT.md`, and tells you
@@ -39,7 +40,7 @@ whether the change is safe to merge.
 | `check` | Probe environment readiness (Node version, git repo, etc.) |
 | `verify-pr` | Scan working-tree diff. Produce REPORT.md + .nekowork/decision.json |
 | `report` | Render an existing decision.json to a human-readable REPORT.md |
-| `apply` | Session-based compatibility apply. Requires a completed work cycle (SHIP_READY marker + cleared Human Gate). NOT driven by verify-pr's decision.json. See [ADVANCED.md](../nekowork-cli/docs/ADVANCED.md). |
+| `apply` | Session-based compatibility apply. Requires a completed work cycle (SHIP_READY marker + cleared Human Gate). NOT driven by verify-pr's decision.json. See [ADVANCED.md](https://github.com/Ps-Neko/NEKOWORK/blob/main/packages/nekowork-cli/docs/ADVANCED.md). |
 
 Anything else (`ask`, `plan`, `team`, `work`, `ship`, `build`, `auto`,
 `pr-prep`, `review`, ...) belongs to `@ps-neko/nekowork-harness` (legacy and
@@ -63,10 +64,10 @@ step — it is not triggered by `decision.json`.
 
 ## Docs
 
-- [Quickstart](../nekowork-cli/docs/QUICKSTART.md)
-- [How verification works](../nekowork-cli/docs/SCOPE-1.0.md)
-- [Benchmark](../nekowork-cli/docs/BENCHMARK.md) — 73/74 (99%) recall, 0/47 FP, 38 real OSS positives
-- [Integration](../nekowork-cli/docs/INTEGRATION.md)
+- [Quickstart](https://github.com/Ps-Neko/NEKOWORK/blob/main/packages/nekowork-cli/docs/QUICKSTART.md)
+- [How verification works](https://github.com/Ps-Neko/NEKOWORK/blob/main/packages/nekowork-cli/docs/SCOPE-1.0.md)
+- [Benchmark](https://github.com/Ps-Neko/NEKOWORK/blob/main/packages/nekowork-cli/docs/BENCHMARK.md) — 85/86 (99%) recall, 0/47 FP, 30 real OSS positives (secret-fallback)
+- [Integration](https://github.com/Ps-Neko/NEKOWORK/blob/main/packages/nekowork-cli/docs/INTEGRATION.md)
 
 ## License
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@ps-neko/nekowork",
-  "version": "0.2.0-alpha.3",
+  "version": "0.2.0-alpha.5",
   "description": "Local verification gate for AI-written code diffs. Deterministic rules decide the verdict, never the LLM. No auto-commit, push, or deploy — you decide at the Human Gate.",
   "keywords": [
     "ai-code-review",

package/scripts/lib/diff-parser.js

@@ -276,10 +276,15 @@ function synthesizeUntrackedDiff(cwd) {
  * @returns {string} concatenated unified-diff chunks
  */
 const SYNTH_FILE_SIZE_LIMIT = 2 * 1024 * 1024; // 2 MB per file
+const SYNTH_TOTAL_SIZE_LIMIT = 64 * 1024 * 1024; // 64 MB aggregate (guards full-scan OOM)
 
 function synthesizeFilesAsDiff(cwd, relPaths) {
   let chunks = '';
+  let truncated = false;
   for (const rel of relPaths) {
+    // Aggregate cap: stop accumulating once the synthesized diff is very large,
+    // so a huge full-scan / untracked tree cannot exhaust memory.
+    if (chunks.length >= SYNTH_TOTAL_SIZE_LIMIT) { truncated = true; break; }
     const full = path.join(cwd, rel);
     let content;
     try {
@@ -300,6 +305,11 @@ function synthesizeFilesAsDiff(cwd, relPaths) {
     chunks += `@@ -0,0 +1,${lines.length} @@\n`;
     for (const line of lines) chunks += `+${line}\n`;
   }
+  if (truncated) {
+    process.stderr.write(
+      `warning: diff synthesis truncated at ${Math.round(SYNTH_TOTAL_SIZE_LIMIT / (1024 * 1024))}MB; some files were not scanned. Narrow the scope (avoid --full-scan on very large trees).\n`,
+    );
+  }
   return chunks;
 }
 

package/scripts/lib/rules/auto-apply-commit-push.js

@@ -28,8 +28,9 @@ const PATTERNS = [
   },
   {
     id: 'rm-rf-variable',
-    // rm -r -f or rm -rf with variable expansion in the path
-    re: /\brm\s+-[a-zA-Z]*r[a-zA-Z]*f[a-zA-Z]*\b[^\n]*\$\{?\w/g,
+    // rm with recursive+force flags (combined `-rf`/`-fr` or separated `-r -f`/`-f -r`)
+    // and variable expansion in the path.
+    re: /\brm\s+(?=-[a-zA-Z]*(?:rf|fr)|-[a-zA-Z]*r[a-zA-Z]*\s+-[a-zA-Z]*f|-[a-zA-Z]*f[a-zA-Z]*\s+-[a-zA-Z]*r)-[a-zA-Z][^\n]*\$\{?\w/g,
     severity: 'critical',
     title: 'rm -rf with variable path',
     description: 'Removing with a variable path is dangerous — if the variable is empty, the parent directory is wiped.',
@@ -39,7 +40,7 @@ const PATTERNS = [
     id: 'rm-rf-system',
     // rm -rf on a root-like path (not allowed: /tmp, /var/{log,cache,tmp},
     // /home/<u>, /root/<x>, /node_modules — common safe targets)
-    re: /\brm\s+-[a-zA-Z]*r[a-zA-Z]*f[a-zA-Z]*\s+\/(?!tmp(?:\/|$|\s)|var\/(?:log|cache|tmp)\/|home\/\w|root\/\w|node_modules\/|opt\/render\/)\S*/g,
+    re: /\brm\s+(?=-[a-zA-Z]*(?:rf|fr)|-[a-zA-Z]*r[a-zA-Z]*\s+-[a-zA-Z]*f|-[a-zA-Z]*f[a-zA-Z]*\s+-[a-zA-Z]*r)-[a-zA-Z][^\n]*?\s+\/(?!tmp(?:\/|$|\s)|var\/(?:log|cache|tmp)\/|home\/\w|root\/\w|node_modules\/|opt\/render\/)\S*/g,
     severity: 'critical',
     title: 'rm -rf on system path',
     description: 'Removing system paths is destructive and rarely intentional in a build/automation script.',

package/scripts/lib/rules/secret-fallback.js

@@ -18,9 +18,10 @@ import { addedLines as collectAddedLines } from '../diff-parser.js';
 const PATTERNS = [
   {
     id: 'env-or-literal',
-    re: /process\.env\.(\w+)\s*\|\|\s*(["'`])([^"'`\n]+)\2/g,
-    pickEnv: m => m[1],
-    pickLiteral: m => m[3],
+    // dot form  process.env.X || "lit"  and bracket form  process.env['X'] || "lit"
+    re: /process\.env(?:\.(\w+)|\[(["'`])(\w+)\2\])\s*\|\|\s*(["'`])([^"'`\n]+)\4/g,
+    pickEnv: m => m[1] || m[3],
+    pickLiteral: m => m[5],
   },
   {
     id: 'nullish-fallback',
@@ -42,9 +43,12 @@ const PATTERNS = [
   },
   {
     id: 'config-or-literal',
-    re: /\b([A-Za-z_]\w*\.(?:apiKey|secret|secretKey|token|password|key|jwt|auth))\s*\|\|\s*(["'`])([^"'`\n]+)\2/g,
+    // dot form  obj.secretProp || "lit"  and bracket form  obj['SECRET_KEY'] || "lit".
+    // The bracket key is gated to secret-keyword names so generic config defaults
+    // (e.g. config['timeout'] || 5000) do not match.
+    re: /\b([A-Za-z_]\w*\.(?:apiKey|secret|secretKey|token|password|key|jwt|auth)|[A-Za-z_]\w*\[(["'`])[\w-]*(?:KEY|TOKEN|SECRET|PASSWORD|PASS|AUTH|JWT|API|CREDENTIAL|apiKey|secretKey)[\w-]*\2\])\s*\|\|\s*(["'`])([^"'`\n]+)\3/g,
     pickEnv: m => m[1],
-    pickLiteral: m => m[3],
+    pickLiteral: m => m[4],
   },
   {
     id: 'config-fallback-property',