@rigour-labs/core 5.0.0 → 5.1.0

package/dist/gates/test-quality.d.ts

@@ -19,9 +19,6 @@
  *   Go     — testing package (t.Run, table-driven tests)
  *   Java   — JUnit 4/5, TestNG
  *   Kotlin — JUnit 5, kotlin.test
- *
- * @since v3.0.0
- * @since v3.0.3 — Go, Java, Kotlin support added
  */
 import { Gate, GateContext } from './base.js';
 import { Failure, Provenance } from '../types/index.js';

package/dist/gates/test-quality.js

@@ -19,14 +19,13 @@
  *   Go     — testing package (t.Run, table-driven tests)
  *   Java   — JUnit 4/5, TestNG
  *   Kotlin — JUnit 5, kotlin.test
- *
- * @since v3.0.0
- * @since v3.0.3 — Go, Java, Kotlin support added
  */
 import { Gate } from './base.js';
 import { FileScanner } from '../utils/scanner.js';
 import { Logger } from '../utils/logger.js';
+import { languageAdapters } from './language-adapters/index.js';
 import { checkGoTestQuality, checkJavaKotlinTestQuality } from './test-quality-lang.js';
+import { JS_TEST_START_PATTERN, JS_ASSERTION_PATTERNS, JS_MOCK_PATTERNS, JS_TAUTOLOGICAL_PATTERNS, JS_VAR_TAUTOLOGY_PATTERN, SNAPSHOT_PATTERNS, PYTHON_TEST_FUNC_PATTERN, PYTHON_ASSERTION_PATTERNS, PYTHON_MOCK_PATTERNS, PYTHON_TAUTOLOGICAL_PATTERNS, PYTHON_FIXTURE_PATTERN, PYTHON_CONFTEST_NAME, } from './test-quality-matchers.js';
 import fs from 'fs-extra';
 import path from 'path';
 export class TestQualityGate extends Gate {
@@ -51,12 +50,14 @@ export class TestQualityGate extends Gate {
         const failures = [];
         const issues = [];
         const defaultPatterns = [
-            '**/*.test.{ts,js,tsx,jsx}', '**/*.spec.{ts,js,tsx,jsx}',
-            '**/__tests__/**/*.{ts,js,tsx,jsx}',
+            '**/*.test.{ts,js,tsx,jsx,mjs,cjs}', '**/*.spec.{ts,js,tsx,jsx,mjs,cjs}',
+            '**/__tests__/**/*.{ts,js,tsx,jsx,mjs,cjs}',
             '**/test_*.py', '**/*_test.py', '**/tests/**/*.py',
             '**/*_test.go',
             '**/*Test.java', '**/*Tests.java', '**/src/test/**/*.java',
             '**/*Test.kt', '**/*Tests.kt', '**/src/test/**/*.kt',
+            '**/*_test.rs', '**/tests/**/*.rs',
+            '**/*_spec.rb', '**/spec/**/*.rb',
         ];
         const scanPatterns = context.patterns || defaultPatterns;
         const files = await FileScanner.findFiles({
@@ -72,27 +73,28 @@ export class TestQualityGate extends Gate {
                 const fullPath = path.join(context.cwd, file);
                 const content = await fs.readFile(fullPath, 'utf-8');
                 const ext = path.extname(file);
-                if (['.ts', '.js', '.tsx', '.jsx'].includes(ext)) {
-                    this.checkJSTestQuality(content, file, issues);
-                }
-                else if (ext === '.py') {
-                    this.checkPythonTestQuality(content, file, issues);
-                }
-                else if (ext === '.go') {
-                    checkGoTestQuality(content, file, issues, {
-                        check_empty_tests: this.config.check_empty_tests,
-                        check_tautological: this.config.check_tautological,
-                        check_mock_heavy: this.config.check_mock_heavy,
-                        max_mocks_per_test: this.config.max_mocks_per_test,
-                    });
-                }
-                else if (ext === '.java' || ext === '.kt') {
-                    checkJavaKotlinTestQuality(content, file, ext, issues, {
-                        check_empty_tests: this.config.check_empty_tests,
-                        check_tautological: this.config.check_tautological,
-                        check_mock_heavy: this.config.check_mock_heavy,
-                        max_mocks_per_test: this.config.max_mocks_per_test,
-                    });
+                const adapter = languageAdapters.getAdapter(file);
+                if (!adapter)
+                    continue;
+                const langConfig = {
+                    check_empty_tests: this.config.check_empty_tests,
+                    check_tautological: this.config.check_tautological,
+                    check_mock_heavy: this.config.check_mock_heavy,
+                    max_mocks_per_test: this.config.max_mocks_per_test,
+                };
+                switch (adapter.id) {
+                    case 'js':
+                        this.checkJSTestQuality(content, file, issues);
+                        break;
+                    case 'python':
+                        this.checkPythonTestQuality(content, file, issues);
+                        break;
+                    case 'go':
+                        checkGoTestQuality(content, file, issues, langConfig);
+                        break;
+                    case 'java':
+                        checkJavaKotlinTestQuality(content, file, ext, issues, langConfig);
+                        break;
                 }
             }
             catch { /* skip */ }
@@ -125,7 +127,7 @@ export class TestQualityGate extends Gate {
             const line = lines[i];
             const trimmed = line.trim();
             // Detect test block start: it('...', () => { or test('...', async () => {
-            const testStart = trimmed.match(/^(?:it|test)\s*\(\s*['"`].*['"`]\s*,\s*(async\s+)?(?:\(\s*\)|function\s*\(\s*\)|\(\s*\{[^}]*\}\s*\))\s*(?:=>)?\s*\{/);
+            const testStart = trimmed.match(JS_TEST_START_PATTERN);
             if (testStart && !inTestBlock) {
                 inTestBlock = true;
                 testStartLine = i + 1;
@@ -159,12 +161,11 @@ export class TestQualityGate extends Gate {
                         braceDepth--;
                 }
                 // Check for assertions
-                if (/expect\s*\(/.test(line) || /assert\s*[.(]/.test(line) ||
-                    /\.toEqual|\.toBe|\.toContain|\.toMatch|\.toThrow|\.toHaveBeenCalled|\.toHaveLength|\.toBeTruthy|\.toBeFalsy|\.toBeDefined|\.toBeNull|\.toBeUndefined|\.toBeGreaterThan|\.toBeLessThan|\.toHaveProperty|\.toStrictEqual|\.rejects|\.resolves/.test(line)) {
+                if (JS_ASSERTION_PATTERNS.some(p => p.test(line))) {
                     hasAssertion = true;
                 }
                 // Check for mocks
-                if (/jest\.fn\(|vi\.fn\(|jest\.mock\(|vi\.mock\(|jest\.spyOn\(|vi\.spyOn\(|sinon\.(stub|mock|spy)\(/.test(line)) {
+                if (JS_MOCK_PATTERNS.some(p => p.test(line))) {
                     mockCount++;
                 }
                 // Check for await
@@ -173,19 +174,24 @@ export class TestQualityGate extends Gate {
                 }
                 // Check for tautological assertions
                 if (this.config.check_tautological) {
-                    if (/expect\s*\(\s*true\s*\)\s*\.toBe\s*\(\s*true\s*\)/.test(line) ||
-                        /expect\s*\(\s*false\s*\)\s*\.toBe\s*\(\s*false\s*\)/.test(line) ||
-                        /expect\s*\(\s*1\s*\)\s*\.toBe\s*\(\s*1\s*\)/.test(line) ||
-                        /expect\s*\(\s*['"].*['"]\s*\)\s*\.toBe\s*\(\s*['"].*['"]\s*\)/.test(line) && line.match(/expect\s*\(\s*(['"].*?['"])\s*\)\s*\.toBe\s*\(\s*\1\s*\)/)) {
+                    if (JS_TAUTOLOGICAL_PATTERNS.some(p => p.test(line))) {
                         issues.push({
                             file, line: i + 1, pattern: 'tautological-assertion',
                             reason: 'Tautological assertion — comparing a literal to itself proves nothing',
                         });
                     }
+                    // Variable tautology: expect(x).toBe(x), expect(foo).toEqual(foo)
+                    const varTautology = line.match(JS_VAR_TAUTOLOGY_PATTERN);
+                    if (varTautology && varTautology[1] === varTautology[2]) {
+                        issues.push({
+                            file, line: i + 1, pattern: 'tautological-assertion',
+                            reason: `Tautological assertion — expect(${varTautology[1]}).toBe(${varTautology[2]}) compares variable to itself`,
+                        });
+                    }
                 }
                 // Check for snapshot-only tests
                 if (this.config.check_snapshot_abuse) {
-                    if (/\.toMatchSnapshot\s*\(/.test(line) || /\.toMatchInlineSnapshot\s*\(/.test(line)) {
+                    if (SNAPSHOT_PATTERNS.some(p => p.test(line))) {
                         // This is fine IF there are also semantic assertions
                         // We'll check when the block ends
                     }
@@ -240,7 +246,7 @@ export class TestQualityGate extends Gate {
         const lines = content.split('\n');
         const basename = path.basename(file);
         // Skip conftest.py entirely — these contain fixtures, not tests
-        if (basename === 'conftest.py')
+        if (basename === PYTHON_CONFTEST_NAME)
             return;
         let inTestFunc = false;
         let testStartLine = 0;
@@ -253,7 +259,7 @@ export class TestQualityGate extends Gate {
             const line = lines[i];
             const trimmed = line.trim();
             // Detect test function start
-            const testFuncMatch = line.match(/^(\s*)(?:def|async\s+def)\s+(test_\w+)\s*\(/);
+            const testFuncMatch = line.match(PYTHON_TEST_FUNC_PATTERN);
             if (testFuncMatch) {
                 // Check if this function has a @pytest.fixture decorator (not a real test)
                 hasFixtureDecorator = false;
@@ -263,7 +269,7 @@ export class TestQualityGate extends Gate {
                         continue;
                     if (!prevLine.startsWith('@'))
                         break;
-                    if (/^@pytest\.fixture/.test(prevLine)) {
+                    if (PYTHON_FIXTURE_PATTERN.test(prevLine)) {
                         hasFixtureDecorator = true;
                         break;
                     }
@@ -301,19 +307,16 @@ export class TestQualityGate extends Gate {
                 }
                 testContent += line + '\n';
                 // Check for assertions
-                if (/\bassert\s+/.test(trimmed) || /self\.assert\w+\s*\(/.test(trimmed) ||
-                    /pytest\.raises\s*\(/.test(trimmed) || /\.assert_called|\.assert_any_call/.test(trimmed)) {
+                if (PYTHON_ASSERTION_PATTERNS.some(p => p.test(trimmed))) {
                     hasAssertion = true;
                 }
                 // Check for mocks
-                if (/mock\.|Mock\(|patch\(|MagicMock\(/.test(trimmed)) {
+                if (PYTHON_MOCK_PATTERNS.some(p => p.test(trimmed))) {
                     mockCount++;
                 }
                 // Tautological assertions
                 if (this.config.check_tautological) {
-                    if (/\bassert\s+True\s*$/.test(trimmed) || /\bassert\s+1\s*==\s*1/.test(trimmed) ||
-                        /self\.assertTrue\s*\(\s*True\s*\)/.test(trimmed) ||
-                        /self\.assertEqual\s*\(\s*(\d+|['"][^'"]*['"])\s*,\s*\1\s*\)/.test(trimmed)) {
+                    if (PYTHON_TAUTOLOGICAL_PATTERNS.some(p => p.test(trimmed))) {
                         issues.push({
                             file, line: i + 1, pattern: 'tautological-assertion',
                             reason: 'Tautological assertion — comparing a constant to itself proves nothing',

package/dist/hooks/checker.d.ts

@@ -6,7 +6,6 @@
  *
  * Used by all tool-specific hooks (Claude, Cursor, Cline, Windsurf).
  *
- * @since v3.0.0
  */
 import type { HookCheckerResult } from './types.js';
 interface CheckerOptions {

package/dist/hooks/checker.js

@@ -6,7 +6,6 @@
  *
  * Used by all tool-specific hooks (Claude, Cursor, Cline, Windsurf).
  *
- * @since v3.0.0
  */
 import fs from 'fs-extra';
 import path from 'path';
@@ -258,7 +257,6 @@ function simpleGlob(filePath, pattern) {
  *       enforce_memory: false   # allow native memory, still enforce skills
  *       enforce_skills: false   # allow native skills, still enforce memory
  *
- * @since v4.2.0
  */
 function checkGovernance(content, relPath, config, failures) {
     const gov = config.gates.governance;
@@ -275,7 +273,7 @@ function checkGovernance(content, relPath, config, failures) {
     const isMemoryPath = memoryPaths.some(pattern => simpleGlob(normalizedPath, pattern));
     // ── Check skills paths ──
     const skillsPaths = gov.protected_skills_paths ?? [];
-    const isSkillsPath = skillsPaths.some((pattern) => simpleGlob(normalizedPath, pattern));
+    const isSkillsPath = skillsPaths.some(pattern => simpleGlob(normalizedPath, pattern));
     if (!isMemoryPath && !isSkillsPath)
         return;
     // ── Enforcement: block memory writes ──

package/dist/hooks/dlp-templates.d.ts

@@ -11,7 +11,6 @@
  * - Cline: PreToolUse executable script
  * - Windsurf: pre_write_code event
  *
- * @since v4.2.0 — AI Agent DLP layer
  */
 import type { HookTool } from './types.js';
 export interface GeneratedDLPHookFile {

package/dist/hooks/dlp-templates.js

@@ -11,7 +11,6 @@
  * - Cline: PreToolUse executable script
  * - Windsurf: pre_write_code event
  *
- * @since v4.2.0 — AI Agent DLP layer
  */
 /**
  * Generate DLP (pre-input) hook config files for a specific tool.
@@ -75,7 +74,6 @@ function generateCursorDLPHooks(checkerCommand) {
  * Receives { file_path, new_content } on stdin.
  * Runs Rigour credential scanner on the content.
  *
- * @since v4.2.0 — AI Agent DLP
  */
 
 let data = '';
@@ -142,7 +140,6 @@ function generateClineDLPHooks(checkerCommand) {
  * Receives JSON on stdin with { toolName, toolInput }.
  * Scans tool input for credentials BEFORE execution.
  *
- * @since v4.2.0 — AI Agent DLP
  */
 
 let data = '';
@@ -225,7 +222,6 @@ function generateWindsurfDLPHooks(checkerCommand) {
  * Windsurf DLP hook — scans input for credentials before Cascade agent processing.
  * Receives { file_path, content } on stdin.
  *
- * @since v4.2.0 — AI Agent DLP
  */
 
 let data = '';

package/dist/hooks/index.d.ts

@@ -1,8 +1,6 @@
 /**
  * Hooks module — multi-tool hook integration for Rigour.
  *
- * @since v3.0.0
- * @since v4.2.0 — AI Agent DLP (Data Loss Prevention)
  */
 export { runHookChecker } from './checker.js';
 export { generateHookFiles } from './templates.js';

package/dist/hooks/index.js

@@ -1,8 +1,6 @@
 /**
  * Hooks module — multi-tool hook integration for Rigour.
  *
- * @since v3.0.0
- * @since v4.2.0 — AI Agent DLP (Data Loss Prevention)
  */
 export { runHookChecker } from './checker.js';
 export { generateHookFiles } from './templates.js';

package/dist/hooks/input-validator.d.ts

@@ -15,7 +15,6 @@
  * - .env format strings (KEY=value)
  * - Azure / GCP / Stripe / Twilio keys
  *
- * @since v4.2.0 — AI Agent DLP layer
  */
 export interface CredentialDetection {
     type: string;

package/dist/hooks/input-validator.js

@@ -15,7 +15,6 @@
  * - .env format strings (KEY=value)
  * - Azure / GCP / Stripe / Twilio keys
  *
- * @since v4.2.0 — AI Agent DLP layer
  */
 const CREDENTIAL_PATTERNS = [
     // ── Cloud Provider Keys ───────────────────────────────────

package/dist/hooks/input-validator.test.js

@@ -1,7 +1,6 @@
 /**
  * Tests for Input Validation Gate — AI Agent DLP (Data Loss Prevention)
  *
- * @since v4.2.0
  */
 import { describe, it, expect } from 'vitest';
 import { scanInputForCredentials, formatDLPAlert, createDLPAuditEntry, } from './input-validator.js';

package/dist/hooks/standalone-checker.d.ts

@@ -10,6 +10,5 @@
  *   0 = pass (or warn-only mode)
  *   2 = block (fail + block_on_failure enabled)
  *
- * @since v3.0.0
  */
 export {};

package/dist/hooks/standalone-checker.js

@@ -10,7 +10,6 @@
  *   0 = pass (or warn-only mode)
  *   2 = block (fail + block_on_failure enabled)
  *
- * @since v3.0.0
  */
 import { runHookChecker } from './checker.js';
 const EMPTY_RESULT = JSON.stringify({ status: 'pass', failures: [], duration_ms: 0 });

package/dist/hooks/standalone-dlp-checker.d.ts

@@ -13,6 +13,5 @@
  *   echo "my api_key = sk-abc123..." | node standalone-dlp-checker.js
  *   echo '{"content":"..."}' | node standalone-dlp-checker.js --json
  *
- * @since v4.2.0 — AI Agent DLP
  */
 export {};

package/dist/hooks/standalone-dlp-checker.js

@@ -13,7 +13,6 @@
  *   echo "my api_key = sk-abc123..." | node standalone-dlp-checker.js
  *   echo '{"content":"..."}' | node standalone-dlp-checker.js --json
  *
- * @since v4.2.0 — AI Agent DLP
  */
 import { scanInputForCredentials, formatDLPAlert, createDLPAuditEntry } from './input-validator.js';
 import fs from 'fs-extra';

package/dist/hooks/templates.d.ts

@@ -7,7 +7,12 @@
  * - Cline: .clinerules/hooks/PostToolUse (executable script)
  * - Windsurf: .windsurf/hooks.json (post_write_code event)
  *
- * @since v3.0.0
+ * NOTE: These templates use `require('@rigour-labs/core/...')` for direct library
+ * invocation (used by MCP `handleHooksInit`). The CLI `rigour hooks init` has its
+ * own generators in `packages/rigour-cli/src/commands/hooks.ts` that shell out to
+ * `rigour hooks check` instead — more portable but requires the CLI binary.
+ * Both produce functionally equivalent hook configs for each tool.
+ *
  */
 import type { HookTool } from './types.js';
 export interface GeneratedHookFile {

package/dist/hooks/templates.js

@@ -7,7 +7,12 @@
  * - Cline: .clinerules/hooks/PostToolUse (executable script)
  * - Windsurf: .windsurf/hooks.json (post_write_code event)
  *
- * @since v3.0.0
+ * NOTE: These templates use `require('@rigour-labs/core/...')` for direct library
+ * invocation (used by MCP `handleHooksInit`). The CLI `rigour hooks init` has its
+ * own generators in `packages/rigour-cli/src/commands/hooks.ts` that shell out to
+ * `rigour hooks check` instead — more portable but requires the CLI binary.
+ * Both produce functionally equivalent hook configs for each tool.
+ *
  */
 /**
  * Generate hook config files for a specific tool.

package/dist/hooks/types.d.ts

@@ -4,7 +4,6 @@
  * Each AI coding tool (Claude Code, Cursor, Cline, Windsurf)
  * has its own hook format. These types unify the config generation.
  *
- * @since v3.0.0
  */
 export type HookTool = 'claude' | 'cursor' | 'cline' | 'windsurf';
 export interface HookConfig {
@@ -18,7 +17,7 @@ export interface HookConfig {
     block_on_failure: boolean;
 }
 /** The fast gates that can run per-file in <200ms */
-export declare const FAST_GATE_IDS: readonly ["hallucinated-imports", "promise-safety", "security-patterns", "file-size"];
+export declare const FAST_GATE_IDS: readonly ["governance", "hallucinated-imports", "promise-safety", "security-patterns", "file-size"];
 export declare const DEFAULT_HOOK_CONFIG: HookConfig;
 export type FastGateId = typeof FAST_GATE_IDS[number];
 export interface HookCheckerResult {

package/dist/hooks/types.js

@@ -4,10 +4,10 @@
  * Each AI coding tool (Claude Code, Cursor, Cline, Windsurf)
  * has its own hook format. These types unify the config generation.
  *
- * @since v3.0.0
  */
 /** The fast gates that can run per-file in <200ms */
 export const FAST_GATE_IDS = [
+    'governance',
     'hallucinated-imports',
     'promise-safety',
     'security-patterns',

package/dist/index.d.ts

@@ -6,7 +6,7 @@ export * from './templates/index.js';
 export * from './types/fix-packet.js';
 export { Gate, GateContext } from './gates/base.js';
 export { RetryLoopBreakerGate } from './gates/retry-loop-breaker.js';
-export { SideEffectAnalysisGate } from './gates/side-effect-analysis.js';
+export { SideEffectAnalysisGate } from './gates/side-effect-analysis/index.js';
 export { FrontendSecretExposureGate } from './gates/frontend-secret-exposure.js';
 export * from './utils/logger.js';
 export * from './services/score-history.js';

package/dist/index.js

@@ -6,7 +6,7 @@ export * from './templates/index.js';
 export * from './types/fix-packet.js';
 export { Gate } from './gates/base.js';
 export { RetryLoopBreakerGate } from './gates/retry-loop-breaker.js';
-export { SideEffectAnalysisGate } from './gates/side-effect-analysis.js';
+export { SideEffectAnalysisGate } from './gates/side-effect-analysis/index.js';
 export { FrontendSecretExposureGate } from './gates/frontend-secret-exposure.js';
 export * from './utils/logger.js';
 export * from './services/score-history.js';

package/dist/services/adaptive-thresholds.d.ts

@@ -12,8 +12,6 @@
  * - Per-provenance failure tracking (AI drift vs structural vs security)
  * - Statistical anomaly detection normalizes across project sizes
  *
- * @since v2.14.0 (original)
- * @since v5.0.0 (Z-score + provenance-aware trends)
  */
 export type ComplexityTier = 'hobby' | 'startup' | 'enterprise';
 export type QualityTrend = 'improving' | 'stable' | 'degrading';

package/dist/services/adaptive-thresholds.js

@@ -12,8 +12,6 @@
  * - Per-provenance failure tracking (AI drift vs structural vs security)
  * - Statistical anomaly detection normalizes across project sizes
  *
- * @since v2.14.0 (original)
- * @since v5.0.0 (Z-score + provenance-aware trends)
  */
 import * as fs from 'fs';
 import * as path from 'path';

package/dist/services/filesystem-cache.d.ts

@@ -8,7 +8,6 @@
  * Now: one cache per scan, all gates share it. LRU eviction keeps
  * memory bounded. Hit rate >70% by the 2nd gate.
  *
- * @since v5.0.0
  */
 export interface CacheStats {
     hits: number;

package/dist/services/filesystem-cache.js

@@ -8,7 +8,6 @@
  * Now: one cache per scan, all gates share it. LRU eviction keeps
  * memory bounded. Hit rate >70% by the 2nd gate.
  *
- * @since v5.0.0
  */
 import fs from 'fs-extra';
 import path from 'path';

package/dist/services/score-history.d.ts

@@ -7,7 +7,6 @@
  * Uses JSONL (not JSON) to avoid read-modify-write race conditions
  * when multiple agents run checks concurrently.
  *
- * @since v2.17.0
  */
 export interface ScoreEntry {
     timestamp: string;

package/dist/services/score-history.js

@@ -7,7 +7,6 @@
  * Uses JSONL (not JSON) to avoid read-modify-write race conditions
  * when multiple agents run checks concurrently.
  *
- * @since v2.17.0
  */
 import * as fs from 'fs';
 import * as path from 'path';

package/dist/services/temporal-drift.d.ts

@@ -15,7 +15,6 @@
  * Data source: ~/.rigour/rigour.db (scans + findings tables)
  * All computation is read-only — no writes to DB.
  *
- * @since v5.0.0
  */
 export type DriftDirection = 'improving' | 'stable' | 'degrading';
 /** A single data point in a time series. */
@@ -94,7 +93,7 @@ export interface TemporalDriftReport {
  * @param cwd - Project root path (used to derive repo name)
  * @param maxScans - Max scans to analyze (default 200)
  */
-export declare function generateTemporalDriftReport(cwd: string, maxScans?: number): TemporalDriftReport | null;
+export declare function generateTemporalDriftReport(cwd: string, maxScans?: number): Promise<TemporalDriftReport | null>;
 /**
  * Get a formatted summary string for CLI/MCP output.
  */

package/dist/services/temporal-drift.js

@@ -15,7 +15,6 @@
  * Data source: ~/.rigour/rigour.db (scans + findings tables)
  * All computation is read-only — no writes to DB.
  *
- * @since v5.0.0
  */
 import { openDatabase } from '../storage/db.js';
 import { Logger } from '../utils/logger.js';
@@ -89,8 +88,8 @@ function toWeekKey(timestamp) {
  * @param cwd - Project root path (used to derive repo name)
  * @param maxScans - Max scans to analyze (default 200)
  */
-export function generateTemporalDriftReport(cwd, maxScans = 200) {
-    const db = openDatabase();
+export async function generateTemporalDriftReport(cwd, maxScans = 200) {
+    const db = await openDatabase();
     if (!db) {
         Logger.warn('Temporal drift: SQLite not available');
         return null;
@@ -98,20 +97,20 @@ export function generateTemporalDriftReport(cwd, maxScans = 200) {
     const repo = path.basename(cwd);
     try {
         // 1. Load all scans (oldest first)
-        const scans = db.db.prepare(`
+        const scans = await db.all(`
             SELECT * FROM scans WHERE repo = ?
             ORDER BY timestamp ASC LIMIT ?
-        `).all(repo, maxScans);
+        `, repo, maxScans);
         if (scans.length < 3) {
             return createEmptyReport(repo, scans.length);
         }
         // 2. Load per-scan provenance failure counts
         const provenanceByScan = new Map();
         for (const scan of scans) {
-            const counts = db.db.prepare(`
+            const counts = await db.all(`
                 SELECT provenance, COUNT(*) as cnt FROM findings
                 WHERE scan_id = ? GROUP BY provenance
-            `).all(scan.id);
+            `, scan.id);
             const breakdown = { aiDrift: 0, structural: 0, security: 0 };
             for (const row of counts) {
                 if (row.provenance === 'ai-drift')
@@ -233,7 +232,7 @@ export function generateTemporalDriftReport(cwd, maxScans = 200) {
         return null;
     }
     finally {
-        db.close();
+        await db.close();
     }
 }
 // ─── Helpers ────────────────────────────────────────────────────────

package/dist/storage/db.d.ts

@@ -1,19 +1,35 @@
 declare const RIGOUR_DIR: string;
 declare const DB_PATH: string;
+/**
+ * Promisified wrapper around a node-sqlite3 Database instance.
+ * Provides run/get/all/exec methods that return Promises.
+ */
 export interface RigourDB {
-    db: any;
-    close(): void;
+    /** Execute a write statement (INSERT/UPDATE/DELETE). Returns { changes }. */
+    run(sql: string, ...params: any[]): Promise<{
+        changes: number;
+        lastID: number;
+    }>;
+    /** Fetch a single row. */
+    get(sql: string, ...params: any[]): Promise<any>;
+    /** Fetch all rows. */
+    all(sql: string, ...params: any[]): Promise<any[]>;
+    /** Execute raw SQL (multi-statement OK). */
+    exec(sql: string): Promise<void>;
+    /** Close the database connection. */
+    close(): Promise<void>;
+    /** Run multiple operations atomically via BEGIN/COMMIT/ROLLBACK. */
+    transaction<T>(fn: (db: RigourDB) => Promise<T>): Promise<T>;
 }
 /**
  * Open (or create) the Rigour SQLite database.
- * Returns null if better-sqlite3 is not available.
+ * Returns null if sqlite3 is not available.
  */
-export declare function openDatabase(dbPath?: string): RigourDB | null;
+export declare function openDatabase(dbPath?: string): Promise<RigourDB | null>;
 /**
  * Compact the database — prune old data, reclaim disk space.
- * Retention policy: keep last `retainDays` of findings, merge old patterns.
  */
-export declare function compactDatabase(retainDays?: number): CompactResult;
+export declare function compactDatabase(retainDays?: number): Promise<CompactResult>;
 export interface CompactResult {
     pruned: number;
     patternsDecayed: number;
@@ -29,7 +45,7 @@ export declare function getDatabaseSize(): number;
  */
 export declare function resetDatabase(): void;
 /**
- * Check if SQLite is available (better-sqlite3 installed)
+ * Check if SQLite is available (sqlite3 installed)
  */
 export declare function isSQLiteAvailable(): boolean;
 export { RIGOUR_DIR, DB_PATH };