npm - @ruso-0/nreki - Versions diffs - 10.2.0 → 10.5.1 - Mend

@ruso-0/nreki 10.2.0 → 10.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,48 @@
 All notable changes to NREKI will be documented in this file.
+## 10.5.1 (2026-04-15) — Dynamic Risk Expansion
+### Changed
+- **`handleOutline` auto-expand es ahora dinámico (knapsack):** en lugar de los 3 símbolos HIGH-risk más grandes fijos, expande todos los que quepan en un presupuesto de 6,000 tokens. Nuevo umbral de tamaño por símbolo sube de 100 a 150 líneas.
+- **Warning `[BUDGET LIMIT REACHED]`** con lista de los primeros 8 símbolos omitidos y comando `nreki_code action:"compress" focus:"..."` listo para copiar.
+- **Orden de expansión** dentro del outline: una vez seleccionados por presupuesto, se re-ordenan por `startLine` ascendente para que el lector recorra el archivo linealmente.
+### Fixed
+- **`computeTriageRisk` filtro anti-trivialidad:** símbolos de ≤3 líneas ahora restan 2 al score. Evita marcar getters/constantes/exports triviales como HIGH-risk.
+### Docs
+- `templates/CLAUDE.md` y `skills/SKILL.md` actualizados con la nueva política de presupuesto y la instrucción crítica de usar `compress` cuando aparece `[BUDGET LIMIT REACHED]`.
+### Tests
+- 729/729 pasan (45 archivos, ~142s).
+## 10.5.0 (2026-04-15) — Pre-Launch Security Hardening
+### Security (Critical)
+- **RCE blocklist expansion (path-jail):** `.claude/hooks/`, `.claude/settings*.json` (covers `settings.json` + `settings.local.json`), and `.mcp.json` are now blocked. Closes PreToolUse hook injection and rogue MCP server injection vectors.
+- **SQL injection fix:** `NrekiDB.getEngramsForFile` migrated from string interpolation to parameterized prepared statement.
+- **Prototype pollution guards:** `chronos-memory.ts`, `cognitive-enforcer.ts`, and `repo-map.ts` JSON cache loaders now reject `__proto__`/`constructor`/`prototype` keys via `JSON.parse` reviver. `ChronosMemory.normalize` rejects paths normalizing to those reserved names.
+- **Path traversal guard in CLI enforcer hook** generated by `getEnforcerScriptContent()`; resolved paths must stay inside `cwd`.
+- **Auto-patch of legacy enforcer hook on boot:** existing installations missing the traversal guard are rewritten with the hardened script before `server.connect()`.
+- **`set_plan` stores relative POSIX path** in `nreki_master_plan` metadata instead of absolute path.
+### Correctness
+- **Guillotine de payload es ahora incondicional** en `semantic-edit.ts` (eliminados `&& !dryRun`).
+- **Recuperación de SQLite corrupto:** `NrekiDB._init()` envuelve la carga en try/catch y recrea la BD si el buffer está dañado.
+- **`isError: true`** añadido a las 4 salidas tempranas de `handlePin` / `handleUnpin`, evitando que el circuit breaker cuente fallos como éxitos.
+- **CRLF/LF handling en Phantom Scalpel:** `applySemanticSplice` adapta `search_text`/`replace_text` al fin de línea del archivo destino (patch mode) y normaliza `new_code` a LF antes del rebase de indentación (replace mode).
+- **Router facades (`handleNavigate`, `handleCode`, `handleGuard`)** llaman `await deps.engine.initialize()` al inicio; `handleGuard` ahora incluye karma penalty en el cálculo de presión, alineándose con los otros dos facades.
+### Performance
+- **Lazy-load del raw identifier index:** `NrekiDB.searchRawCode` construye el índice en la primera llamada (`buildRawIdentsIfNeeded`) en vez de al boot.
+### Cosmetic
+- **`computeTriageRisk`**: regex de ternario con lookaround `(?<!\?)\?(?!\.|:|\?)` evita inflar el conteo de ramas con `?.` (optional chaining) u `??`.
+### Tests
+- 729/729 pasan (45 archivos, ~140s).
 ## 8.0.2 (2026-04-09) — Firewall Verification Test
 ### Fixed (Test Coverage Gap)

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@ruso-0/nreki",
-  "version": "10.2.0",
+  "version": "10.5.1",
   "description": "MCP plugin that validates AI agent edits in RAM before they touch disk. Spectral clustering, architecture diffs, bridge detection, dead code oracle, and cross-file semantic checks for TypeScript, Go (gopls), and Python (pyright). Zero cloud dependencies.",
   "main": "dist/index.js",
   "type": "module",

package/templates/CLAUDE.md CHANGED Viewed

@@ -11,7 +11,8 @@ If nreki_* tools fail: fall back to native Read/Write and inform user.
 - NEVER read functions one by one. If you need 5 functions, use ONE call with comma-separated targets:
   nreki_code action:"compress" focus:"func1, func2, func3, func4, func5"
 - Large files (>100L): nreki_navigate action:"outline" → identify HIGH-risk methods → compress ALL in one call.
-- The outline auto-expands the top 3 HIGH-risk functions. Read them directly from the outline — do NOT call compress for expanded code. Go straight to batch_edit.
+- The outline auto-expands HIGH-risk functions up to a 6,000 token budget. Read them directly from the outline.
+- **CRITICAL FOR AUDITS:** If the outline says [BUDGET LIMIT REACHED], you MUST use `nreki_code action:"compress" focus:"<omitted_symbols>"` to read the remaining high-risk functions before concluding your audit. Do not guess their logic.
 - Small files: nreki_code action:"read".
 - Navigation: use nreki_navigate (search, definition, references, outline, map). No grep/glob.