npm - @rainy-updates/cli - Versions diffs - 0.5.6 → 0.6.0 - Mend

@rainy-updates/cli 0.5.6 → 0.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (102) hide show

package/CHANGELOG.md +133 -0
package/README.md +90 -31
package/dist/bin/cli.js +24 -482
package/dist/bin/dispatch.d.ts +16 -0
package/dist/bin/dispatch.js +147 -0
package/dist/bin/help.d.ts +1 -0
package/dist/bin/help.js +314 -0
package/dist/cache/cache.js +13 -11
package/dist/commands/audit/parser.js +2 -2
package/dist/commands/audit/runner.js +27 -46
package/dist/commands/audit/targets.js +13 -13
package/dist/commands/bisect/oracle.js +28 -11
package/dist/commands/bisect/parser.js +3 -3
package/dist/commands/bisect/runner.js +15 -8
package/dist/commands/changelog/fetcher.js +11 -5
package/dist/commands/dashboard/parser.js +103 -1
package/dist/commands/dashboard/runner.d.ts +2 -2
package/dist/commands/dashboard/runner.js +67 -37
package/dist/commands/doctor/parser.js +15 -4
package/dist/commands/doctor/runner.js +6 -3
package/dist/commands/ga/parser.js +4 -4
package/dist/commands/ga/runner.js +13 -7
package/dist/commands/health/parser.js +2 -2
package/dist/commands/licenses/runner.js +4 -4
package/dist/commands/resolve/runner.js +9 -4
package/dist/commands/review/parser.js +57 -4
package/dist/commands/review/runner.js +31 -5
package/dist/commands/snapshot/runner.js +17 -17
package/dist/commands/snapshot/store.d.ts +0 -12
package/dist/commands/snapshot/store.js +26 -38
package/dist/commands/unused/runner.js +6 -7
package/dist/commands/unused/scanner.js +17 -20
package/dist/config/loader.d.ts +2 -2
package/dist/config/loader.js +2 -5
package/dist/config/policy.js +20 -11
package/dist/core/analysis/options.d.ts +6 -0
package/dist/core/analysis/options.js +69 -0
package/dist/core/analysis/review-items.d.ts +4 -0
package/dist/core/analysis/review-items.js +128 -0
package/dist/core/analysis/run-silenced.d.ts +1 -0
package/dist/core/analysis/run-silenced.js +13 -0
package/dist/core/analysis-bundle.js +3 -211
package/dist/core/artifacts.js +6 -5
package/dist/core/baseline.js +3 -5
package/dist/core/check.js +2 -2
package/dist/core/ci.js +52 -1
package/dist/core/decision-plan.d.ts +14 -0
package/dist/core/decision-plan.js +107 -0
package/dist/core/doctor/findings.d.ts +2 -0
package/dist/core/doctor/findings.js +166 -0
package/dist/core/doctor/render.d.ts +3 -0
package/dist/core/doctor/render.js +44 -0
package/dist/core/doctor/result.d.ts +2 -0
package/dist/core/doctor/result.js +58 -0
package/dist/core/doctor/score.d.ts +5 -0
package/dist/core/doctor/score.js +28 -0
package/dist/core/fix-pr-batch.js +38 -28
package/dist/core/fix-pr.js +27 -24
package/dist/core/init-ci.js +25 -21
package/dist/core/options.js +95 -4
package/dist/core/review-model.d.ts +3 -3
package/dist/core/review-model.js +6 -67
package/dist/core/review-verdict.d.ts +2 -0
package/dist/core/review-verdict.js +14 -0
package/dist/core/summary.js +12 -0
package/dist/core/upgrade.js +64 -2
package/dist/core/verification.d.ts +2 -0
package/dist/core/verification.js +106 -0
package/dist/core/warm-cache.js +2 -2
package/dist/output/format.js +22 -0
package/dist/output/github.js +10 -0
package/dist/output/sarif.js +16 -12
package/dist/parsers/package-json.js +2 -4
package/dist/pm/detect.d.ts +3 -1
package/dist/pm/detect.js +24 -12
package/dist/pm/install.d.ts +2 -1
package/dist/pm/install.js +15 -16
package/dist/registry/npm.js +34 -76
package/dist/rup +0 -0
package/dist/types/index.d.ts +104 -5
package/dist/ui/tui.d.ts +4 -1
package/dist/ui/tui.js +5 -4
package/dist/utils/io.js +5 -6
package/dist/utils/lockfile.js +24 -19
package/dist/utils/runtime-paths.d.ts +4 -0
package/dist/utils/runtime-paths.js +35 -0
package/dist/utils/runtime.d.ts +7 -0
package/dist/utils/runtime.js +32 -0
package/dist/workspace/discover.js +55 -51
package/package.json +16 -16
package/dist/ui/dashboard/DashboardTUI.d.ts +0 -6
package/dist/ui/dashboard/DashboardTUI.js +0 -34
package/dist/ui/dashboard/components/DetailPanel.d.ts +0 -4
package/dist/ui/dashboard/components/DetailPanel.js +0 -30
package/dist/ui/dashboard/components/Footer.d.ts +0 -4
package/dist/ui/dashboard/components/Footer.js +0 -9
package/dist/ui/dashboard/components/Header.d.ts +0 -4
package/dist/ui/dashboard/components/Header.js +0 -12
package/dist/ui/dashboard/components/Sidebar.d.ts +0 -4
package/dist/ui/dashboard/components/Sidebar.js +0 -23
package/dist/ui/dashboard/store.d.ts +0 -34
package/dist/ui/dashboard/store.js +0 -148

package/dist/bin/cli.js CHANGED Viewed

@@ -1,15 +1,6 @@
 #!/usr/bin/env node
-import { promises as fs } from "node:fs";
-import path from "node:path";
-import process from "node:process";
-import { fileURLToPath } from "node:url";
+import { readFileSync } from "node:fs";
 import { parseCliArgs } from "../core/options.js";
-import { check } from "../core/check.js";
-import { upgrade } from "../core/upgrade.js";
-import { warmCache } from "../core/warm-cache.js";
-import { runCi } from "../core/ci.js";
-import { initCiWorkflow } from "../core/init-ci.js";
-import { diffBaseline, saveBaseline } from "../core/baseline.js";
 import { applyFixPr } from "../core/fix-pr.js";
 import { applyFixPrBatches } from "../core/fix-pr-batch.js";
 import { createRunId, writeArtifactManifest } from "../core/artifacts.js";
@@ -20,146 +11,30 @@ import { renderPrReport } from "../output/pr-report.js";
 import { writeFileAtomic } from "../utils/io.js";
 import { resolveFailReason } from "../core/summary.js";
 import { stableStringify } from "../utils/stable-json.js";
+import { getRuntimeArgv, setRuntimeExitCode, writeStderr, writeStdout, } from "../utils/runtime.js";
+import { handleDirectCommand, runPrimaryCommand } from "./dispatch.js";
+import { renderHelp } from "./help.js";
 async function main() {
     try {
-        const argv = process.argv.slice(2);
+        const argv = getRuntimeArgv();
         if (argv.includes("--version") || argv.includes("-v")) {
-            process.stdout.write((await readPackageVersion()) + "\n");
+            writeStdout((await readPackageVersion()) + "\n");
             return;
         }
         if (argv.includes("--help") || argv.includes("-h")) {
-            process.stdout.write(renderHelp(argv[0]) + "\n");
+            writeStdout(renderHelp(argv[0]) + "\n");
             return;
         }
         const parsed = await parseCliArgs(argv);
-        if (parsed.command === "init-ci") {
-            const workflow = await initCiWorkflow(parsed.options.cwd, parsed.options.force, {
-                mode: parsed.options.mode,
-                schedule: parsed.options.schedule,
-            });
-            process.stdout.write(workflow.created
-                ? `Created CI workflow at ${workflow.path}\n`
-                : `CI workflow already exists at ${workflow.path}. Use --force to overwrite.\n`);
-            return;
-        }
-        if (parsed.command === "baseline") {
-            if (parsed.options.action === "save") {
-                const saved = await saveBaseline(parsed.options);
-                process.stdout.write(`Saved baseline at ${saved.filePath} (${saved.entries} entries)\n`);
-                return;
-            }
-            const diff = await diffBaseline(parsed.options);
-            const changes = diff.added.length + diff.removed.length + diff.changed.length;
-            if (changes === 0) {
-                process.stdout.write(`No baseline drift detected (${diff.filePath}).\n`);
-                return;
-            }
-            process.stdout.write(`Baseline drift detected (${diff.filePath}).\n`);
-            if (diff.added.length > 0) {
-                process.stdout.write(`Added: ${diff.added.length}\n`);
-            }
-            if (diff.removed.length > 0) {
-                process.stdout.write(`Removed: ${diff.removed.length}\n`);
-            }
-            if (diff.changed.length > 0) {
-                process.stdout.write(`Changed: ${diff.changed.length}\n`);
-            }
-            process.exitCode = 1;
-            return;
-        }
-        // ─── v0.5.1 commands: lazy-loaded, isolated from check pipeline ──────────
-        if (parsed.command === "bisect") {
-            const { runBisect } = await import("../commands/bisect/runner.js");
-            const result = await runBisect(parsed.options);
-            process.exitCode = result.breakingVersion ? 1 : 0;
-            return;
-        }
-        if (parsed.command === "audit") {
-            const { runAudit } = await import("../commands/audit/runner.js");
-            const result = await runAudit(parsed.options);
-            process.exitCode = result.advisories.length > 0 ? 1 : 0;
-            return;
-        }
-        if (parsed.command === "health") {
-            const { runHealth } = await import("../commands/health/runner.js");
-            const result = await runHealth(parsed.options);
-            process.exitCode = result.totalFlagged > 0 ? 1 : 0;
-            return;
-        }
-        // ─── v0.5.4 commands ─────────────────────────────────────────────────────
-        if (parsed.command === "unused") {
-            const { runUnused } = await import("../commands/unused/runner.js");
-            const result = await runUnused(parsed.options);
-            process.exitCode =
-                result.totalUnused > 0 || result.totalMissing > 0 ? 1 : 0;
-            return;
-        }
-        if (parsed.command === "resolve") {
-            const { runResolve } = await import("../commands/resolve/runner.js");
-            const result = await runResolve(parsed.options);
-            process.exitCode = result.errorConflicts > 0 ? 1 : 0;
-            return;
-        }
-        if (parsed.command === "licenses") {
-            const { runLicenses } = await import("../commands/licenses/runner.js");
-            const result = await runLicenses(parsed.options);
-            process.exitCode = result.totalViolations > 0 ? 1 : 0;
-            return;
-        }
-        if (parsed.command === "snapshot") {
-            const { runSnapshot } = await import("../commands/snapshot/runner.js");
-            const result = await runSnapshot(parsed.options);
-            process.exitCode = result.errors.length > 0 ? 1 : 0;
-            return;
-        }
-        if (parsed.command === "review") {
-            const { runReview } = await import("../commands/review/runner.js");
-            const result = await runReview(parsed.options);
-            process.exitCode =
-                result.summary.verdict === "blocked" ||
-                    result.summary.verdict === "actionable" ||
-                    result.summary.verdict === "review"
-                    ? 1
-                    : 0;
-            return;
-        }
-        if (parsed.command === "doctor") {
-            const { runDoctor } = await import("../commands/doctor/runner.js");
-            const result = await runDoctor(parsed.options);
-            process.exitCode = result.verdict === "safe" ? 0 : 1;
-            return;
-        }
-        if (parsed.command === "dashboard") {
-            const { runDashboard } = await import("../commands/dashboard/runner.js");
-            const result = await runDashboard(parsed.options);
-            process.exitCode = result.errors.length > 0 ? 1 : 0;
+        if (await handleDirectCommand(parsed))
             return;
+        if (parsed.command !== "check" &&
+            parsed.command !== "upgrade" &&
+            parsed.command !== "warm-cache" &&
+            parsed.command !== "ci") {
+            throw new Error(`Unhandled command: ${parsed.command}`);
         }
-        if (parsed.command === "ga") {
-            const { runGa } = await import("../commands/ga/runner.js");
-            const result = await runGa(parsed.options);
-            process.exitCode = result.ready ? 0 : 1;
-            return;
-        }
-        if (parsed.options.interactive &&
-            (parsed.command === "check" ||
-                parsed.command === "upgrade" ||
-                parsed.command === "ci")) {
-            const { runReview } = await import("../commands/review/runner.js");
-            const result = await runReview({
-                ...parsed.options,
-                securityOnly: false,
-                risk: undefined,
-                diff: undefined,
-                applySelected: parsed.command === "upgrade",
-            });
-            process.exitCode =
-                result.summary.verdict === "safe" && result.updates.length === 0
-                    ? 0
-                    : 1;
-            return;
-        }
-        const result = await runCommand(parsed);
+        const result = await runPrimaryCommand(parsed);
         result.summary.runId = createRunId(parsed.command, parsed.options, result);
         if (parsed.options.fixPr &&
             (parsed.command === "check" ||
@@ -232,356 +107,23 @@ async function main() {
             const sarif = createSarifReport(result);
             await writeFileAtomic(parsed.options.sarifFile, stableStringify(sarif, 2) + "\n");
         }
-        process.stdout.write(rendered + "\n");
-        process.exitCode = resolveExitCode(result, result.summary.failReason);
+        writeStdout(rendered + "\n");
+        setRuntimeExitCode(resolveExitCode(result, result.summary.failReason));
     }
     catch (error) {
-        process.stderr.write(`rainy-updates (rup): ${String(error)}\n`);
-        process.exitCode = 2;
+        writeStderr(`rainy-updates (rup): ${String(error)}\n`);
+        setRuntimeExitCode(2);
     }
 }
 void main();
-function renderHelp(command) {
-    const isCommand = command && !command.startsWith("-");
-    if (isCommand && command === "check") {
-        return `rainy-updates check [options]
-Detect candidate dependency updates. This is the first step in the flow:
-  check detects
-  doctor summarizes
-  review decides
-  upgrade applies
-Options:
-  --workspace
-  --target patch|minor|major|latest
-  --filter <pattern>
-  --reject <pattern>
-  --dep-kinds deps,dev,optional,peer
-  --concurrency <n>
-  --registry-timeout-ms <n>
-  --registry-retries <n>
-  --cache-ttl <seconds>
-  --stream
-  --policy-file <path>
-  --offline
-  --fix-pr
-  --fix-branch <name>
-  --fix-commit-message <text>
-  --fix-dry-run
-  --fix-pr-no-checkout
-  --fix-pr-batch-size <n>
-  --no-pr-report
-  --json-file <path>
-  --github-output <path>
-  --sarif-file <path>
-  --pr-report-file <path>
-  --fail-on none|patch|minor|major|any
-  --max-updates <n>
-  --group-by none|name|scope|kind|risk
-  --group-max <n>
-  --cooldown-days <n>
-  --pr-limit <n>
-  --only-changed
-  --interactive
-  --show-impact
-  --show-links
-  --show-homepage
-  --lockfile-mode preserve|update|error
-  --log-level error|warn|info|debug
-  --ci`;
-    }
-    if (isCommand && command === "warm-cache") {
-        return `rainy-updates warm-cache [options]
-Pre-warm local metadata cache for faster CI checks.
-Options:
-  --workspace
-  --target patch|minor|major|latest
-  --filter <pattern>
-  --reject <pattern>
-  --dep-kinds deps,dev,optional,peer
-  --concurrency <n>
-  --registry-timeout-ms <n>
-  --registry-retries <n>
-  --cache-ttl <seconds>
-  --offline
-  --stream
-  --json-file <path>
-  --github-output <path>
-  --sarif-file <path>
-  --pr-report-file <path>`;
-    }
-    if (isCommand && command === "upgrade") {
-        return `rainy-updates upgrade [options]
-Apply an approved change set to package.json manifests.
-Options:
-  --workspace
-  --sync
-  --install
-  --pm auto|npm|pnpm
-  --target patch|minor|major|latest
-  --policy-file <path>
-  --concurrency <n>
-  --registry-timeout-ms <n>
-  --registry-retries <n>
-  --fix-pr
-  --fix-branch <name>
-  --fix-commit-message <text>
-  --fix-dry-run
-  --fix-pr-no-checkout
-  --fix-pr-batch-size <n>
-  --interactive
-  --lockfile-mode preserve|update|error
-  --no-pr-report
-  --json-file <path>
-  --pr-report-file <path>`;
-    }
-    if (isCommand && command === "ci") {
-        return `rainy-updates ci [options]
-Run CI-oriented automation around the same lifecycle:
-  check detects
-  doctor summarizes
-  review decides
-  upgrade applies
-Options:
-  --workspace
-  --mode minimal|strict|enterprise
-  --group-by none|name|scope|kind|risk
-  --group-max <n>
-  --cooldown-days <n>
-  --pr-limit <n>
-  --only-changed
-  --offline
-  --concurrency <n>
-  --registry-timeout-ms <n>
-  --registry-retries <n>
-  --stream
-  --fix-pr
-  --fix-branch <name>
-  --fix-commit-message <text>
-  --fix-dry-run
-  --fix-pr-no-checkout
-  --fix-pr-batch-size <n>
-  --no-pr-report
-  --json-file <path>
-  --github-output <path>
-  --sarif-file <path>
-  --pr-report-file <path>
-  --fail-on none|patch|minor|major|any
-  --max-updates <n>
-  --lockfile-mode preserve|update|error
-  --log-level error|warn|info|debug
-  --ci`;
-    }
-    if (isCommand && command === "init-ci") {
-        return `rainy-updates init-ci [options]
-Create a GitHub Actions workflow template at:
-  .github/workflows/rainy-updates.yml
-Options:
-  --force
-  --mode minimal|strict|enterprise
-  --schedule weekly|daily|off`;
-    }
-    if (isCommand && command === "baseline") {
-        return `rainy-updates baseline [options]
-Save or compare dependency baseline snapshots.
-Options:
-  --save
-  --check
-  --file <path>
-  --workspace
-  --dep-kinds deps,dev,optional,peer
-  --ci`;
-    }
-    if (isCommand && command === "audit") {
-        return `rainy-updates audit [options]
-Scan dependencies for CVEs using OSV.dev and GitHub Advisory Database.
-Options:
-  --workspace
-  --severity critical|high|medium|low
-  --summary
-  --report table|summary|json
-  --source auto|osv|github|all
-  --fix
-  --dry-run
-  --commit
-  --pm auto|npm|pnpm|bun|yarn
-  --json-file <path>
-  --concurrency <n>
-  --registry-timeout-ms <n>`;
-    }
-    if (isCommand && command === "review") {
-        return `rainy-updates review [options]
-Review is the decision center of Rainy Updates.
-Use it to inspect risk, security, peer, license, and policy context before applying changes.
-Options:
-  --workspace
-  --interactive
-  --security-only
-  --risk critical|high|medium|low
-  --diff patch|minor|major|latest
-  --apply-selected
-  --show-changelog
-  --policy-file <path>
-  --json-file <path>
-  --concurrency <n>
-  --registry-timeout-ms <n>
-  --registry-retries <n>`;
-    }
-    if (isCommand && command === "doctor") {
-        return `rainy-updates doctor [options]
-Produce a fast summary verdict and point the operator to review when action is needed.
-Options:
-  --workspace
-  --verdict-only
-  --include-changelog
-  --json-file <path>`;
-    }
-    if (isCommand && command === "ga") {
-        return `rainy-updates ga [options]
-Audit release and CI readiness for Rainy Updates.
-Options:
-  --workspace
-  --json-file <path>
-  --cwd <path>`;
-    }
-    return `rainy-updates (rup / rainy-up) <command> [options]
-Commands:
-  check       Detect candidate updates
-  doctor      Summarize what matters
-  review      Decide what to do
-  upgrade     Apply the approved change set
-  dashboard   Open the interactive DevOps dashboard (Ink TUI)
-  ci          Run CI-focused orchestration
-  warm-cache  Warm local cache for fast/offline checks
-  init-ci     Scaffold GitHub Actions workflow
-  baseline    Save/check dependency baseline snapshots
-  audit       Scan dependencies for CVEs (OSV.dev + GitHub)
-  health      Detect stale/deprecated/unmaintained packages
-  bisect      Find which version of a dep introduced a failure
-  unused      Detect unused or missing npm dependencies
-  resolve     Check peer dependency conflicts (pure-TS, no subprocess)
-  licenses    Scan dependency licenses and generate SPDX SBOM
-  snapshot    Save, list, restore, and diff dependency state snapshots
-  ga          Audit GA and CI readiness for this checkout
-Global options:
-  --cwd <path>
-  --workspace
-  --target patch|minor|major|latest
-  --format table|json|minimal|github|metrics
-  --json-file <path>
-  --github-output <path>
-  --sarif-file <path>
-  --pr-report-file <path>
-  --policy-file <path>
-  --fail-on none|patch|minor|major|any
-  --max-updates <n>
-  --group-by none|name|scope|kind|risk
-  --group-max <n>
-  --cooldown-days <n>
-  --pr-limit <n>
-  --only-changed
-  --interactive
-  --show-impact
-  --show-links
-  --show-homepage
-  --mode minimal|strict|enterprise
-  --fix-pr
-  --fix-branch <name>
-  --fix-commit-message <text>
-  --fix-dry-run
-  --fix-pr-no-checkout
-  --fix-pr-batch-size <n>
-  --no-pr-report
-  --log-level error|warn|info|debug
-  --concurrency <n>
-  --registry-timeout-ms <n>
-  --registry-retries <n>
-  --cache-ttl <seconds>
-  --offline
-  --stream
-  --lockfile-mode preserve|update|error
-  --ci
-  --help, -h
-  --version, -v`;
-}
-async function runCommand(parsed) {
-    if (parsed.command === "review") {
-        const { runReview } = await import("../commands/review/runner.js");
-        const result = await runReview(parsed.options);
-        return {
-            projectPath: result.projectPath,
-            packagePaths: result.items.map((item) => item.update.packagePath),
-            packageManager: "unknown",
-            target: result.target,
-            timestamp: new Date().toISOString(),
-            summary: result.summary,
-            updates: result.updates,
-            errors: result.errors,
-            warnings: result.warnings,
-        };
-    }
-    if (parsed.command === "doctor") {
-        const { runDoctor } = await import("../commands/doctor/runner.js");
-        const result = await runDoctor(parsed.options);
-        return {
-            projectPath: result.review.projectPath,
-            packagePaths: result.review.items.map((item) => item.update.packagePath),
-            packageManager: "unknown",
-            target: result.review.target,
-            timestamp: new Date().toISOString(),
-            summary: result.summary,
-            updates: result.review.updates,
-            errors: result.review.errors,
-            warnings: result.review.warnings,
-        };
-    }
-    if (parsed.command === "upgrade") {
-        return await upgrade(parsed.options);
-    }
-    if (parsed.command === "warm-cache") {
-        return await warmCache(parsed.options);
-    }
-    if (parsed.command === "ci") {
-        return await runCi(parsed.options);
+async function readPackageVersion() {
+    try {
+        const packageJson = JSON.parse(readFileSync(new URL("../../package.json", import.meta.url), "utf8"));
+        return packageJson.version ?? "0.0.0";
     }
-    if (parsed.options.fixPr) {
-        const upgradeOptions = {
-            ...parsed.options,
-            install: false,
-            packageManager: "auto",
-            sync: false,
-        };
-        return await upgrade(upgradeOptions);
+    catch {
+        return "0.0.0";
     }
-    return await check(parsed.options);
-}
-async function readPackageVersion() {
-    const currentFile = fileURLToPath(import.meta.url);
-    const packageJsonPath = path.resolve(path.dirname(currentFile), "../../package.json");
-    const content = await fs.readFile(packageJsonPath, "utf8");
-    const parsed = JSON.parse(content);
-    return parsed.version ?? "0.0.0";
 }
 function resolveExitCode(result, failReason) {
     if (result.errors.length > 0)

package/dist/bin/dispatch.d.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import type { ParsedCliArgs } from "../core/options.js";
+import type { CheckOptions, CheckResult, UpgradeOptions } from "../types/index.js";
+export declare function handleDirectCommand(parsed: ParsedCliArgs): Promise<boolean>;
+export declare function runPrimaryCommand(parsed: {
+    command: "check";
+    options: CheckOptions;
+} | {
+    command: "upgrade";
+    options: UpgradeOptions;
+} | {
+    command: "warm-cache";
+    options: CheckOptions;
+} | {
+    command: "ci";
+    options: CheckOptions;
+}): Promise<CheckResult>;