@rainy-updates/cli 0.5.4 → 0.5.7

package/dist/core/review-model.js

@@ -1,93 +1,54 @@
 import path from "node:path";
-import process from "node:process";
-import { check } from "./check.js";
 import { createSummary, finalizeSummary } from "./summary.js";
-import { applyImpactScores } from "./impact.js";
-import { applyRiskAssessments } from "../risk/index.js";
+import { buildAnalysisBundle } from "./analysis-bundle.js";
+export { createDoctorResult } from "./doctor/result.js";
+export { renderDoctorAgentReport, renderDoctorResult, } from "./doctor/render.js";
+import { deriveReviewVerdict } from "./review-verdict.js";
 export async function buildReviewResult(options) {
-    const baseCheckOptions = {
-        ...options,
-        interactive: false,
-        showImpact: true,
-        showHomepage: true,
-    };
-    const checkResult = await check(baseCheckOptions);
-    const [auditResult, resolveResult, healthResult, licenseResult, unusedResult] = await runSilenced(() => Promise.all([
-        import("../commands/audit/runner.js").then((mod) => mod.runAudit(toAuditOptions(options))),
-        import("../commands/resolve/runner.js").then((mod) => mod.runResolve(toResolveOptions(options))),
-        import("../commands/health/runner.js").then((mod) => mod.runHealth(toHealthOptions(options))),
-        import("../commands/licenses/runner.js").then((mod) => mod.runLicenses(toLicenseOptions(options))),
-        import("../commands/unused/runner.js").then((mod) => mod.runUnused(toUnusedOptions(options))),
-    ]));
-    const advisoryPackages = new Set(auditResult.packages.map((pkg) => pkg.packageName));
-    const impactedUpdates = applyImpactScores(checkResult.updates, {
-        advisoryPackages,
-        workspaceDependentCount: (name) => checkResult.updates.filter((item) => item.name === name).length,
-    });
-    const healthByName = new Map(healthResult.metrics.map((metric) => [metric.name, metric]));
-    const advisoriesByName = new Map();
-    const conflictsByName = new Map();
-    const licenseByName = new Map(licenseResult.packages.map((pkg) => [pkg.name, pkg]));
-    const licenseViolationNames = new Set(licenseResult.violations.map((pkg) => pkg.name));
-    const unusedByName = new Map();
-    for (const advisory of auditResult.advisories) {
-        const list = advisoriesByName.get(advisory.packageName) ?? [];
-        list.push(advisory);
-        advisoriesByName.set(advisory.packageName, list);
-    }
-    for (const conflict of resolveResult.conflicts) {
-        const list = conflictsByName.get(conflict.requester) ?? [];
-        list.push(conflict);
-        conflictsByName.set(conflict.requester, list);
-        const peerList = conflictsByName.get(conflict.peer) ?? [];
-        peerList.push(conflict);
-        conflictsByName.set(conflict.peer, peerList);
-    }
-    for (const issue of [...unusedResult.unused, ...unusedResult.missing]) {
-        const list = unusedByName.get(issue.name) ?? [];
-        list.push(issue);
-        unusedByName.set(issue.name, list);
-    }
-    const baseItems = impactedUpdates
-        .map((update) => enrichUpdate(update, advisoriesByName, conflictsByName, healthByName, licenseByName, licenseViolationNames, unusedByName))
-        .filter((item) => matchesReviewFilters(item, options));
-    const items = applyRiskAssessments(baseItems, {
-        knownPackageNames: new Set(checkResult.updates.map((item) => item.name)),
-    }).filter((item) => matchesReviewFilters(item, options));
+    const includeChangelog = ("showChangelog" in options && options.showChangelog === true) ||
+        ("includeChangelog" in options && options.includeChangelog === true) ||
+        options.interactive === true;
+    const analysis = await buildAnalysisBundle(options, { includeChangelog });
+    const items = analysis.items.filter((item) => matchesReviewFilters(item, options));
+    const checkResult = analysis.check;
     const summary = createReviewSummary(checkResult.summary, items, [
         ...checkResult.errors,
-        ...auditResult.errors,
-        ...resolveResult.errors,
-        ...healthResult.errors,
-        ...licenseResult.errors,
-        ...unusedResult.errors,
+        ...analysis.audit.errors,
+        ...analysis.resolve.errors,
+        ...analysis.health.errors,
+        ...analysis.licenses.errors,
+        ...analysis.unused.errors,
     ], [
         ...checkResult.warnings,
-        ...auditResult.warnings,
-        ...resolveResult.warnings,
-        ...healthResult.warnings,
-        ...licenseResult.warnings,
-        ...unusedResult.warnings,
-    ], options.interactive === true);
+        ...analysis.audit.warnings,
+        ...analysis.resolve.warnings,
+        ...analysis.health.warnings,
+        ...analysis.licenses.warnings,
+        ...analysis.unused.warnings,
+    ], options.interactive === true, analysis.degradedSources);
     return {
         projectPath: checkResult.projectPath,
         target: checkResult.target,
         summary,
+        analysis,
         items,
         updates: items.map((item) => item.update),
-        errors: [...checkResult.errors, ...auditResult.errors, ...resolveResult.errors, ...healthResult.errors, ...licenseResult.errors, ...unusedResult.errors],
-        warnings: [...checkResult.warnings, ...auditResult.warnings, ...resolveResult.warnings, ...healthResult.warnings, ...licenseResult.warnings, ...unusedResult.warnings],
-    };
-}
-export function createDoctorResult(review) {
-    const verdict = review.summary.verdict ?? deriveVerdict(review.items, review.errors);
-    const primaryFindings = buildPrimaryFindings(review);
-    return {
-        verdict,
-        summary: review.summary,
-        review,
-        primaryFindings,
-        recommendedCommand: recommendCommand(review, verdict),
+        errors: [
+            ...checkResult.errors,
+            ...analysis.audit.errors,
+            ...analysis.resolve.errors,
+            ...analysis.health.errors,
+            ...analysis.licenses.errors,
+            ...analysis.unused.errors,
+        ],
+        warnings: [
+            ...checkResult.warnings,
+            ...analysis.audit.warnings,
+            ...analysis.resolve.warnings,
+            ...analysis.health.warnings,
+            ...analysis.licenses.warnings,
+            ...analysis.unused.warnings,
+        ],
     };
 }
 export function renderReviewResult(review) {
@@ -115,6 +76,7 @@ export function renderReviewResult(review) {
                 item.update.licenseStatus && item.update.licenseStatus !== "allowed"
                     ? `license=${item.update.licenseStatus}`
                     : undefined,
+                item.update.policyAction ? `policy=${item.update.policyAction}` : undefined,
             ].filter(Boolean);
             lines.push(`- ${path.basename(item.update.packagePath)} :: ${item.update.name} ${item.update.fromRange} -> ${item.update.toRange} (${notes.join(", ")})`);
             if (item.update.riskReasons && item.update.riskReasons.length > 0) {
@@ -123,6 +85,9 @@ export function renderReviewResult(review) {
             if (item.update.recommendedAction) {
                 lines.push(`  action: ${item.update.recommendedAction}`);
             }
+            if (item.update.releaseNotesSummary) {
+                lines.push(`  notes: ${item.update.releaseNotesSummary.title} - ${item.update.releaseNotesSummary.excerpt}`);
+            }
             if (item.update.homepage) {
                 lines.push(`  homepage: ${item.update.homepage}`);
             }
@@ -146,47 +111,6 @@ export function renderReviewResult(review) {
     lines.push(`Summary: ${review.summary.updatesFound} updates, riskPackages=${review.summary.riskPackages ?? 0}, securityPackages=${review.summary.securityPackages ?? 0}, peerConflictPackages=${review.summary.peerConflictPackages ?? 0}`);
     return lines.join("\n");
 }
-export function renderDoctorResult(result, verdictOnly = false) {
-    const lines = [
-        `State: ${result.verdict}`,
-        `PrimaryRisk: ${result.primaryFindings[0] ?? "No blocking findings."}`,
-        `NextAction: ${result.recommendedCommand}`,
-    ];
-    if (!verdictOnly) {
-        lines.push(`Counts: updates=${result.summary.updatesFound}, security=${result.summary.securityPackages ?? 0}, risk=${result.summary.riskPackages ?? 0}, peer=${result.summary.peerConflictPackages ?? 0}, license=${result.summary.licenseViolationPackages ?? 0}`);
-    }
-    return lines.join("\n");
-}
-function enrichUpdate(update, advisoriesByName, conflictsByName, healthByName, licenseByName, licenseViolationNames, unusedByName) {
-    const advisories = advisoriesByName.get(update.name) ?? [];
-    const peerConflicts = conflictsByName.get(update.name) ?? [];
-    const health = healthByName.get(update.name);
-    const license = licenseByName.get(update.name);
-    const unusedIssues = unusedByName.get(update.name) ?? [];
-    return {
-        update: {
-            ...update,
-            advisoryCount: advisories.length,
-            peerConflictSeverity: peerConflicts.some((item) => item.severity === "error")
-                ? "error"
-                : peerConflicts.length > 0
-                    ? "warning"
-                    : "none",
-            licenseStatus: licenseViolationNames.has(update.name)
-                ? "denied"
-                : license
-                    ? "allowed"
-                    : "review",
-            healthStatus: health?.flags[0] ?? "healthy",
-        },
-        advisories,
-        health,
-        peerConflicts,
-        license,
-        unusedIssues,
-        selected: true,
-    };
-}
 function matchesReviewFilters(item, options) {
     if ("securityOnly" in options && options.securityOnly && item.advisories.length === 0) {
         return false;
@@ -208,7 +132,7 @@ function riskMatches(current, threshold) {
     };
     return order[current ?? "low"] >= order[threshold];
 }
-function createReviewSummary(base, items, errors, warnings, interactiveSession) {
+function createReviewSummary(base, items, errors, warnings, interactiveSession, degradedSources) {
     const summary = finalizeSummary(createSummary({
         scannedPackages: base.scannedPackages,
         totalDependencies: base.totalDependencies,
@@ -242,131 +166,17 @@ function createReviewSummary(base, items, errors, warnings, interactiveSession)
     summary.riskPackages = items.filter((item) => item.update.riskLevel === "critical" || item.update.riskLevel === "high").length;
     summary.peerConflictPackages = items.filter((item) => item.update.peerConflictSeverity && item.update.peerConflictSeverity !== "none").length;
     summary.licenseViolationPackages = items.filter((item) => item.update.licenseStatus === "denied").length;
-    summary.verdict = deriveVerdict(items, errors);
-    return summary;
-}
-function deriveVerdict(items, errors) {
-    if (items.some((item) => item.update.peerConflictSeverity === "error" ||
-        item.update.licenseStatus === "denied")) {
-        return "blocked";
-    }
-    if (items.some((item) => item.advisories.length > 0 || item.update.riskLevel === "critical")) {
-        return "actionable";
-    }
-    if (errors.length > 0 ||
-        items.some((item) => item.update.riskLevel === "high" || item.update.diffType === "major")) {
-        return "review";
-    }
-    return "safe";
-}
-function buildPrimaryFindings(review) {
-    const findings = [];
-    if ((review.summary.peerConflictPackages ?? 0) > 0) {
-        findings.push(`${review.summary.peerConflictPackages} package(s) have peer conflicts.`);
-    }
-    if ((review.summary.licenseViolationPackages ?? 0) > 0) {
-        findings.push(`${review.summary.licenseViolationPackages} package(s) violate license policy.`);
-    }
-    if ((review.summary.securityPackages ?? 0) > 0) {
-        findings.push(`${review.summary.securityPackages} package(s) have security advisories.`);
-    }
-    if ((review.summary.riskPackages ?? 0) > 0) {
-        findings.push(`${review.summary.riskPackages} package(s) are high risk.`);
-    }
-    if (review.errors.length > 0) {
-        findings.push(`${review.errors.length} execution error(s) need review before treating the result as clean.`);
-    }
-    if (findings.length === 0) {
-        findings.push("No blocking findings; remaining updates are low-risk.");
-    }
-    return findings;
-}
-function recommendCommand(review, verdict) {
-    if (verdict === "blocked")
-        return "rup review --interactive";
-    if ((review.summary.securityPackages ?? 0) > 0)
-        return "rup review --security-only";
-    if (review.errors.length > 0 || review.items.length > 0)
-        return "rup review --interactive";
-    return "rup check";
-}
-async function runSilenced(fn) {
-    const stdoutWrite = process.stdout.write.bind(process.stdout);
-    const stderrWrite = process.stderr.write.bind(process.stderr);
-    process.stdout.write = (() => true);
-    process.stderr.write = (() => true);
-    try {
-        return await fn();
-    }
-    finally {
-        process.stdout.write = stdoutWrite;
-        process.stderr.write = stderrWrite;
-    }
-}
-function toAuditOptions(options) {
-    return {
-        cwd: options.cwd,
-        workspace: options.workspace,
-        severity: undefined,
-        fix: false,
-        dryRun: true,
-        commit: false,
-        packageManager: "auto",
-        reportFormat: "json",
-        sourceMode: "auto",
-        jsonFile: undefined,
-        concurrency: options.concurrency,
-        registryTimeoutMs: options.registryTimeoutMs,
-    };
-}
-function toResolveOptions(options) {
-    return {
-        cwd: options.cwd,
-        workspace: options.workspace,
-        afterUpdate: true,
-        safe: false,
-        jsonFile: undefined,
-        concurrency: options.concurrency,
-        registryTimeoutMs: options.registryTimeoutMs,
-        cacheTtlSeconds: options.cacheTtlSeconds,
-    };
-}
-function toHealthOptions(options) {
-    return {
-        cwd: options.cwd,
-        workspace: options.workspace,
-        staleDays: 365,
-        includeDeprecated: true,
-        includeAlternatives: false,
-        reportFormat: "json",
-        jsonFile: undefined,
-        concurrency: options.concurrency,
-        registryTimeoutMs: options.registryTimeoutMs,
-    };
-}
-function toLicenseOptions(options) {
-    return {
-        cwd: options.cwd,
-        workspace: options.workspace,
-        allow: undefined,
-        deny: undefined,
-        sbomFile: undefined,
-        jsonFile: undefined,
-        diffMode: false,
-        concurrency: options.concurrency,
-        registryTimeoutMs: options.registryTimeoutMs,
-        cacheTtlSeconds: options.cacheTtlSeconds,
-    };
-}
-function toUnusedOptions(options) {
-    return {
-        cwd: options.cwd,
-        workspace: options.workspace,
-        srcDirs: ["src", "."],
-        includeDevDependencies: true,
-        fix: false,
-        dryRun: true,
-        jsonFile: undefined,
-        concurrency: options.concurrency,
+    summary.policyActionCounts = {
+        allow: items.filter((item) => item.update.policyAction === "allow").length,
+        review: items.filter((item) => item.update.policyAction === "review").length,
+        block: items.filter((item) => item.update.policyAction === "block").length,
+        monitor: items.filter((item) => item.update.policyAction === "monitor").length,
     };
+    summary.blockedPackages = items.filter((item) => item.update.decisionState === "blocked").length;
+    summary.reviewPackages = items.filter((item) => item.update.decisionState === "review").length;
+    summary.monitorPackages = items.filter((item) => item.update.policyAction === "monitor").length;
+    summary.decisionPackages = items.length;
+    summary.degradedSources = degradedSources;
+    summary.verdict = deriveReviewVerdict(items, errors);
+    return summary;
 }

package/dist/core/review-verdict.d.ts

@@ -0,0 +1,2 @@
+import type { ReviewItem, Verdict } from "../types/index.js";
+export declare function deriveReviewVerdict(items: ReviewItem[], errors: string[]): Verdict;

package/dist/core/review-verdict.js

@@ -0,0 +1,14 @@
+export function deriveReviewVerdict(items, errors) {
+    if (items.some((item) => item.update.peerConflictSeverity === "error" ||
+        item.update.licenseStatus === "denied")) {
+        return "blocked";
+    }
+    if (items.some((item) => item.advisories.length > 0 || item.update.riskLevel === "critical")) {
+        return "actionable";
+    }
+    if (errors.length > 0 ||
+        items.some((item) => item.update.riskLevel === "high" || item.update.diffType === "major")) {
+        return "review";
+    }
+    return "safe";
+}

package/dist/core/summary.js

@@ -50,6 +50,25 @@ export function createSummary(input) {
         peerConflictPackages: 0,
         licenseViolationPackages: 0,
         privateRegistryPackages: 0,
+        runId: undefined,
+        artifactManifest: undefined,
+        policyActionCounts: undefined,
+        blockedPackages: 0,
+        reviewPackages: 0,
+        monitorPackages: 0,
+        decisionPackages: 0,
+        releaseVolatilityPackages: 0,
+        engineConflictPackages: 0,
+        degradedSources: [],
+        cacheBackend: undefined,
+        binaryRecommended: false,
+        gaReady: undefined,
+        dependencyHealthScore: undefined,
+        findingCountsByCategory: undefined,
+        findingCountsBySeverity: undefined,
+        primaryFindingCode: undefined,
+        primaryFindingCategory: undefined,
+        nextActionReason: undefined,
     };
 }
 export function finalizeSummary(summary) {

package/dist/output/format.js

@@ -62,6 +62,18 @@ export function renderResult(result, format, display = {}) {
             `security_packages=${result.summary.securityPackages ?? 0}`,
             `peer_conflict_packages=${result.summary.peerConflictPackages ?? 0}`,
             `license_violation_packages=${result.summary.licenseViolationPackages ?? 0}`,
+            `run_id=${result.summary.runId ?? ""}`,
+            `artifact_manifest=${result.summary.artifactManifest ?? ""}`,
+            `blocked_packages=${result.summary.blockedPackages ?? 0}`,
+            `review_packages=${result.summary.reviewPackages ?? 0}`,
+            `monitor_packages=${result.summary.monitorPackages ?? 0}`,
+            `cache_backend=${result.summary.cacheBackend ?? ""}`,
+            `degraded_sources=${(result.summary.degradedSources ?? []).join(",")}`,
+            `ga_ready=${result.summary.gaReady === true ? "1" : "0"}`,
+            `dependency_health_score=${result.summary.dependencyHealthScore ?? ""}`,
+            `primary_finding_code=${result.summary.primaryFindingCode ?? ""}`,
+            `primary_finding_category=${result.summary.primaryFindingCategory ?? ""}`,
+            `next_action_reason=${result.summary.nextActionReason ?? ""}`,
         ].join("\n");
     }
     const lines = [];
@@ -89,12 +101,16 @@ export function renderResult(result, format, display = {}) {
                 display.showHomepage && update.homepage ? update.homepage : undefined,
                 update.riskLevel ? `risk=${update.riskLevel}` : undefined,
                 typeof update.riskScore === "number" ? `score=${update.riskScore}` : undefined,
+                update.policyAction ? `policy=${update.policyAction}` : undefined,
             ]
                 .filter(Boolean)
                 .join(", ")})`);
             if (update.recommendedAction) {
                 lines.push(`  action: ${update.recommendedAction}`);
             }
+            if (update.releaseNotesSummary) {
+                lines.push(`  notes: ${update.releaseNotesSummary.title} — ${update.releaseNotesSummary.excerpt}`);
+            }
         }
     }
     if (result.errors.length > 0) {
@@ -118,6 +134,12 @@ export function renderResult(result, format, display = {}) {
     if (result.summary.verdict) {
         lines.push(`Verdict=${result.summary.verdict}, riskPackages=${result.summary.riskPackages ?? 0}, securityPackages=${result.summary.securityPackages ?? 0}, peerConflictPackages=${result.summary.peerConflictPackages ?? 0}, licenseViolationPackages=${result.summary.licenseViolationPackages ?? 0}`);
     }
+    if (typeof result.summary.dependencyHealthScore === "number") {
+        lines.push(`DependencyHealthScore=${result.summary.dependencyHealthScore}, primaryFinding=${result.summary.primaryFindingCode ?? "none"}, category=${result.summary.primaryFindingCategory ?? "none"}`);
+    }
+    if (result.summary.runId) {
+        lines.push(`RunId=${result.summary.runId}, artifactManifest=${result.summary.artifactManifest ?? "none"}, blockedPackages=${result.summary.blockedPackages ?? 0}, reviewPackages=${result.summary.reviewPackages ?? 0}, monitorPackages=${result.summary.monitorPackages ?? 0}`);
+    }
     lines.push(`Contract v${result.summary.contractVersion}, failReason=${result.summary.failReason}, duration=${result.summary.durationMs.total}ms`);
     if (result.summary.fixPrApplied) {
         lines.push(`Fix PR: applied on branch ${result.summary.fixBranchName ?? "unknown"} (${result.summary.fixCommitSha ?? "no-commit"})`);

package/dist/output/github.js

@@ -26,6 +26,18 @@ export async function writeGitHubOutput(filePath, result) {
         `security_packages=${result.summary.securityPackages ?? 0}`,
         `peer_conflict_packages=${result.summary.peerConflictPackages ?? 0}`,
         `license_violation_packages=${result.summary.licenseViolationPackages ?? 0}`,
+        `run_id=${result.summary.runId ?? ""}`,
+        `artifact_manifest=${result.summary.artifactManifest ?? ""}`,
+        `blocked_packages=${result.summary.blockedPackages ?? 0}`,
+        `review_packages=${result.summary.reviewPackages ?? 0}`,
+        `monitor_packages=${result.summary.monitorPackages ?? 0}`,
+        `cache_backend=${result.summary.cacheBackend ?? ""}`,
+        `degraded_sources=${(result.summary.degradedSources ?? []).join(",")}`,
+        `ga_ready=${result.summary.gaReady === true ? "1" : "0"}`,
+        `dependency_health_score=${result.summary.dependencyHealthScore ?? ""}`,
+        `primary_finding_code=${result.summary.primaryFindingCode ?? ""}`,
+        `primary_finding_category=${result.summary.primaryFindingCategory ?? ""}`,
+        `next_action_reason=${result.summary.nextActionReason ?? ""}`,
         `fix_pr_applied=${result.summary.fixPrApplied === true ? "1" : "0"}`,
         `fix_pr_branches_created=${result.summary.fixPrBranchesCreated}`,
         `fix_pr_branch=${result.summary.fixBranchName ?? ""}`,

package/dist/output/sarif.js

@@ -39,6 +39,11 @@ export function createSarifReport(result) {
             advisoryCount: update.advisoryCount ?? 0,
             peerConflictSeverity: update.peerConflictSeverity ?? "none",
             licenseStatus: update.licenseStatus ?? "allowed",
+            policyAction: update.policyAction,
+            decisionState: update.decisionState,
+            releaseNotesSummary: update.releaseNotesSummary?.excerpt,
+            engineStatus: update.engineStatus?.state,
+            runId: result.summary.runId,
         },
     }));
     const errorResults = [...result.errors].sort((a, b) => a.localeCompare(b)).map((error) => ({
@@ -89,6 +94,17 @@ export function createSarifReport(result) {
                     securityPackages: result.summary.securityPackages ?? 0,
                     peerConflictPackages: result.summary.peerConflictPackages ?? 0,
                     licenseViolationPackages: result.summary.licenseViolationPackages ?? 0,
+                    runId: result.summary.runId,
+                    artifactManifest: result.summary.artifactManifest,
+                    blockedPackages: result.summary.blockedPackages ?? 0,
+                    reviewPackages: result.summary.reviewPackages ?? 0,
+                    monitorPackages: result.summary.monitorPackages ?? 0,
+                    degradedSources: result.summary.degradedSources ?? [],
+                    cacheBackend: result.summary.cacheBackend,
+                    dependencyHealthScore: result.summary.dependencyHealthScore,
+                    primaryFindingCode: result.summary.primaryFindingCode,
+                    primaryFindingCategory: result.summary.primaryFindingCategory,
+                    nextActionReason: result.summary.nextActionReason,
                 },
             },
         ],

package/dist/types/index.d.ts

@@ -5,8 +5,13 @@ export type CiProfile = "minimal" | "strict" | "enterprise";
 export type LockfileMode = "preserve" | "update" | "error";
 export type Verdict = "safe" | "review" | "blocked" | "actionable";
 export type RiskLevel = "critical" | "high" | "medium" | "low";
+export type DoctorFindingSeverity = "error" | "warning";
+export type DoctorScoreLabel = "Strong" | "Needs Review" | "Action Needed" | "Blocked / Critical";
+export type DoctorFindingCategory = "Security" | "Compatibility" | "Policy" | "Operational Health" | "Licensing" | "Unused / Cleanup" | "Release Risk" | "Registry / Execution" | "Workspace Integrity";
 export type RiskCategory = "known-vulnerability" | "behavioral-risk" | "operational-health";
 export type MaintainerChurnStatus = "unknown" | "stable" | "elevated-change";
+export type PolicyAction = "allow" | "review" | "block" | "monitor";
+export type DecisionState = "safe" | "review" | "blocked" | "actionable";
 export type OutputFormat = "table" | "json" | "minimal" | "github" | "metrics";
 export type FailOnLevel = "none" | "patch" | "minor" | "major" | "any";
 export type LogLevel = "error" | "warn" | "info" | "debug";
@@ -108,6 +113,40 @@ export interface PackageUpdate {
     peerConflictSeverity?: "none" | PeerConflictSeverity;
     licenseStatus?: "allowed" | "review" | "denied";
     healthStatus?: "healthy" | HealthFlag;
+    policyAction?: PolicyAction;
+    decisionState?: DecisionState;
+    releaseNotesSummary?: ReleaseNotesSummary;
+    engineStatus?: EngineStatus;
+    workspaceGroup?: string;
+    groupKey?: string;
+    selectedByDefault?: boolean;
+    blockedReason?: string;
+    monitorReason?: string;
+}
+export interface ReleaseNotesSummary {
+    source: "github-release" | "changelog-file" | "none";
+    title: string;
+    excerpt: string;
+}
+export interface EngineStatus {
+    state: "compatible" | "review" | "blocked" | "unknown";
+    required?: string;
+    current?: string;
+    reason?: string;
+}
+export interface ArtifactManifest {
+    runId: string;
+    createdAt: string;
+    command: string;
+    projectPath: string;
+    ciProfile: CiProfile;
+    artifactManifestPath: string;
+    outputs: {
+        jsonFile?: string;
+        githubOutputFile?: string;
+        sarifFile?: string;
+        prReportFile?: string;
+    };
 }
 export interface Summary {
     contractVersion: "2";
@@ -155,6 +194,25 @@ export interface Summary {
     peerConflictPackages?: number;
     licenseViolationPackages?: number;
     privateRegistryPackages?: number;
+    runId?: string;
+    artifactManifest?: string;
+    policyActionCounts?: Record<PolicyAction, number>;
+    blockedPackages?: number;
+    reviewPackages?: number;
+    monitorPackages?: number;
+    decisionPackages?: number;
+    releaseVolatilityPackages?: number;
+    engineConflictPackages?: number;
+    degradedSources?: string[];
+    cacheBackend?: "sqlite" | "file";
+    binaryRecommended?: boolean;
+    gaReady?: boolean;
+    dependencyHealthScore?: number;
+    findingCountsByCategory?: Partial<Record<DoctorFindingCategory, number>>;
+    findingCountsBySeverity?: Partial<Record<DoctorFindingSeverity, number>>;
+    primaryFindingCode?: string;
+    primaryFindingCategory?: DoctorFindingCategory;
+    nextActionReason?: string;
 }
 export interface CheckResult {
     projectPath: string;
@@ -208,6 +266,7 @@ export interface AuditOptions {
     jsonFile?: string;
     concurrency: number;
     registryTimeoutMs: number;
+    silent?: boolean;
 }
 export interface CveAdvisory {
     cveId: string;
@@ -324,6 +383,7 @@ export interface ResolveOptions {
     concurrency: number;
     registryTimeoutMs: number;
     cacheTtlSeconds: number;
+    silent?: boolean;
 }
 export interface ResolveResult {
     conflicts: PeerConflict[];
@@ -367,6 +427,7 @@ export interface ReviewResult {
     projectPath: string;
     target: TargetLevel;
     summary: Summary;
+    analysis: AnalysisBundle;
     items: ReviewItem[];
     updates: PackageUpdate[];
     errors: string[];
@@ -377,16 +438,55 @@ export interface ReviewOptions extends CheckOptions {
     risk?: RiskLevel;
     diff?: TargetLevel;
     applySelected: boolean;
+    showChangelog?: boolean;
 }
 export interface DoctorOptions extends CheckOptions {
     verdictOnly: boolean;
+    includeChangelog?: boolean;
+    agentReport?: boolean;
+}
+export interface DoctorFinding {
+    id: string;
+    code: string;
+    category: DoctorFindingCategory;
+    severity: DoctorFindingSeverity;
+    scope: "project" | "package";
+    packageName?: string;
+    workspace?: string;
+    summary: string;
+    details?: string;
+    help?: string;
+    recommendedAction?: string;
+    evidence?: string[];
 }
 export interface DoctorResult {
     verdict: Verdict;
+    score: number;
+    scoreLabel: DoctorScoreLabel;
     summary: Summary;
     review: ReviewResult;
+    findings: DoctorFinding[];
     primaryFindings: string[];
     recommendedCommand: string;
+    nextActionReason: string;
+}
+export interface AnalysisBundle {
+    check: CheckResult;
+    audit: AuditResult;
+    resolve: ResolveResult;
+    health: HealthResult;
+    licenses: LicenseResult;
+    unused: UnusedResult;
+    items: ReviewItem[];
+    degradedSources: string[];
+}
+export interface DashboardOptions extends CheckOptions {
+    view?: "dependencies" | "security" | "health";
+}
+export interface DashboardResult {
+    completed: boolean;
+    errors: string[];
+    warnings: string[];
 }
 export type UnusedKind = "declared-not-imported" | "imported-not-declared";
 export interface UnusedDependency {
@@ -495,3 +595,23 @@ export interface SnapshotResult {
     errors: string[];
     warnings: string[];
 }
+export interface GaOptions {
+    cwd: string;
+    workspace: boolean;
+    jsonFile?: string;
+}
+export interface GaCheck {
+    name: "package-manager" | "workspace-discovery" | "lockfile" | "cache-backend" | "dist-build" | "benchmark-gates" | "docs-contract";
+    status: "pass" | "warn" | "fail";
+    detail: string;
+}
+export interface GaResult {
+    ready: boolean;
+    projectPath: string;
+    packageManager: "npm" | "pnpm" | "unknown";
+    workspacePackages: number;
+    cacheBackend: "sqlite" | "file";
+    checks: GaCheck[];
+    warnings: string[];
+    errors: string[];
+}