npm - @ryuenn3123/agentic-senior-core - Versions diffs - 1.9.1 → 1.9.3 - Mend

@ryuenn3123/agentic-senior-core 1.9.1 → 1.9.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (16) hide show

package/.agent-context/policies/llm-judge-threshold.json +14 -5
package/.agent-context/rules/security.md +92 -0
package/.agent-context/state/onboarding-report.json +39 -0
package/.cursorrules +3669 -91
package/.windsurfrules +3716 -104
package/bin/agentic-senior-core.js +25 -1520
package/lib/cli/commands/init.mjs +339 -0
package/lib/cli/commands/launch.mjs +81 -0
package/lib/cli/commands/upgrade.mjs +165 -0
package/lib/cli/compiler.mjs +204 -0
package/lib/cli/constants.mjs +136 -0
package/lib/cli/detector.mjs +211 -0
package/lib/cli/profile-packs.mjs +94 -0
package/lib/cli/skill-selector.mjs +210 -0
package/lib/cli/utils.mjs +227 -0
package/package.json +4 -2

package/.agent-context/policies/llm-judge-threshold.json CHANGED Viewed

@@ -1,20 +1,29 @@
 {
-  "selectedProfile": "balanced",
+  "selectedProfile": "beginner",
   "profileThresholds": {
     "beginner": {
-      "blockingSeverities": ["critical"],
+      "blockingSeverities": [
+        "critical"
+      ],
       "failOnMalformedResponse": false,
       "failOnProviderError": false
     },
     "balanced": {
-      "blockingSeverities": ["critical", "high"],
+      "blockingSeverities": [
+        "critical",
+        "high"
+      ],
       "failOnMalformedResponse": true,
       "failOnProviderError": false
     },
     "strict": {
-      "blockingSeverities": ["critical", "high", "medium"],
+      "blockingSeverities": [
+        "critical",
+        "high",
+        "medium"
+      ],
       "failOnMalformedResponse": true,
       "failOnProviderError": true
     }
   }
-}
+}

package/.agent-context/rules/security.md CHANGED Viewed

@@ -177,6 +177,96 @@ Permissions-Policy: camera=(), microphone=(), geolocation=()
 ---
+## .gitignore Enforcement (Mandatory)
+**If the user's INTENT is to create a new project, push to GitHub, or initialize source control, you MUST generate or verify a `.gitignore` file exists.**
+### Minimum Required Entries
+```gitignore
+# ── Secrets & Environment ──
+.env
+.env.local
+.env.*.local
+.env.production
+.env.staging
+# ── Dependencies ──
+node_modules/
+vendor/
+venv/
+.venv/
+__pycache__/
+.gradle/
+target/
+bin/  # Go binaries
+pkg/
+# ── Build Output ──
+dist/
+build/
+out/
+*.min.js
+*.min.css
+.next/
+.nuxt/
+.output/
+# ── IDE & Editor ──
+.idea/
+.vscode/settings.json
+.vscode/launch.json
+*.swp
+*.swo
+*~
+# ── OS Artifacts ──
+.DS_Store
+Thumbs.db
+Desktop.ini
+*.lnk
+# ── Logs ──
+*.log
+npm-debug.log*
+yarn-debug.log*
+pnpm-debug.log*
+# ── Testing & Coverage ──
+coverage/
+.nyc_output/
+*.lcov
+# ── Runtime Data ──
+*.pid
+*.seed
+*.pid.lock
+# ── Secrets & Keys ──
+*.pem
+*.key
+*.p12
+*.jks
+*.keystore
+```
+### Rules
+1. **NEVER commit `.env`** — only `.env.example` with placeholder values
+2. **Check for leaks before push** — `git diff --cached --name-only | grep -E '\.(env|pem|key)$'` should return empty
+3. **If the project has NO `.gitignore`**, create one immediately before any `git add`
+4. **Extend per-stack** — add language-specific patterns (e.g., `__pycache__/` for Python, `target/` for Java/Rust, `.gradle/` for Kotlin)
+5. **Reference**: See `.agent-context/rules/git-workflow.md` for the full `.gitignore Standards` section
+### MUST Commit (Whitelist)
+```
+.env.example           # Template with placeholder values ONLY
+.editorconfig          # Consistent formatting across IDEs
+.gitignore             # This file itself
+docker-compose.yml     # Dev environment definition
+Makefile / Taskfile    # Standard dev commands
+```
+---
 ## The Security Checklist (Quick Reference)
 Before any code is "done", verify:
@@ -184,6 +274,7 @@ Before any code is "done", verify:
 - [ ] All inputs validated at boundaries with schemas
 - [ ] No string concatenation in queries/commands
 - [ ] No secrets in source code
+- [ ] `.gitignore` exists and covers `.env`, `node_modules/`, build output, and IDE files
 - [ ] Authentication uses established libraries
 - [ ] Password hashing uses argon2id (or bcrypt for legacy)
 - [ ] Authorization enforced server-side
@@ -193,3 +284,4 @@ Before any code is "done", verify:
 - [ ] Error responses don't leak internal details
 - [ ] Logging includes security events (login failures, permission denials)
 - [ ] Dependencies audited for known vulnerabilities

package/.agent-context/state/onboarding-report.json ADDED Viewed

@@ -0,0 +1,39 @@
+{
+  "cliVersion": "1.9.3",
+  "generatedAt": "2026-04-08T02:11:52.436Z",
+  "operationMode": "init",
+  "selectedProfile": "beginner",
+  "selectedProfilePack": null,
+  "selectedPreset": "frontend-web",
+  "selectedStack": "typescript.md",
+  "selectedBlueprint": "api-nextjs.md",
+  "ciGuardrailsEnabled": true,
+  "setupDurationMs": 84447,
+  "selectedSkillDomains": [
+    "frontend",
+    "fullstack",
+    "cli"
+  ],
+  "autoDetection": {
+    "recommendedStack": "typescript.md",
+    "recommendedBlueprint": "api-nextjs.md",
+    "confidenceLabel": "high",
+    "confidenceScore": 0.94,
+    "confidenceGap": 0.94,
+    "detectionReasoning": "Top signal Typescript won with confidence 0.94 from markers: package.json, tsconfig.json.",
+    "rankedCandidates": [
+      {
+        "stackFileName": "typescript.md",
+        "confidenceScore": 0.94,
+        "evidence": [
+          "package.json",
+          "tsconfig.json"
+        ]
+      }
+    ],
+    "evidence": [
+      "package.json",
+      "tsconfig.json"
+    ]
+  }
+}