npm - @ryuenn3123/agentic-senior-core - Versions diffs - 2.0.5 → 2.0.7 - Mend

@ryuenn3123/agentic-senior-core 2.0.5 → 2.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (121) hide show

package/.agent-context/blueprints/mobile-app.md +91 -21
package/.agent-context/profiles/platform.md +13 -13
package/.agent-context/profiles/regulated.md +13 -13
package/.agent-context/profiles/startup.md +13 -13
package/.agent-context/review-checklists/frontend-skill-parity.md +28 -28
package/.agent-context/review-checklists/frontend-usability.md +33 -33
package/.agent-context/review-checklists/release-operations.md +29 -29
package/.agent-context/skills/README.md +62 -62
package/.agent-context/skills/backend/README.md +67 -67
package/.agent-context/skills/backend/architecture.md +360 -360
package/.agent-context/skills/backend/compatibility-manifest.json +8 -8
package/.agent-context/skills/backend/data-access.md +230 -230
package/.agent-context/skills/backend/errors.md +137 -137
package/.agent-context/skills/backend/validation.md +116 -116
package/.agent-context/skills/backend.md +28 -28
package/.agent-context/skills/cli/README.md +55 -49
package/.agent-context/skills/cli/compatibility-manifest.json +8 -8
package/.agent-context/skills/cli/init.md +37 -37
package/.agent-context/skills/cli/output.md +35 -35
package/.agent-context/skills/cli/safety-telemetry.md +39 -0
package/.agent-context/skills/cli/upgrade.md +37 -37
package/.agent-context/skills/cli.md +31 -28
package/.agent-context/skills/distribution/.evidence/compatibility-manifest.json +9 -0
package/.agent-context/skills/distribution/.evidence/sbom-excerpt.json +6 -0
package/.agent-context/skills/distribution/.evidence/test-report.json +8 -0
package/.agent-context/skills/distribution/CHANGELOG.md +7 -0
package/.agent-context/skills/distribution/README.md +27 -19
package/.agent-context/skills/distribution/compatibility-manifest.json +8 -8
package/.agent-context/skills/distribution/compatibility.md +31 -31
package/.agent-context/skills/distribution/package.json +5 -0
package/.agent-context/skills/distribution/provenance-attestation.md +47 -0
package/.agent-context/skills/distribution/publish.md +36 -36
package/.agent-context/skills/distribution/rollback.md +31 -31
package/.agent-context/skills/distribution/tests/.gitkeep +1 -0
package/.agent-context/skills/distribution.md +31 -28
package/.agent-context/skills/frontend/.evidence/compatibility-manifest.json +9 -0
package/.agent-context/skills/frontend/.evidence/sbom-excerpt.json +6 -0
package/.agent-context/skills/frontend/.evidence/test-report.json +8 -0
package/.agent-context/skills/frontend/CHANGELOG.md +7 -0
package/.agent-context/skills/frontend/README.md +49 -36
package/.agent-context/skills/frontend/accessibility.md +107 -107
package/.agent-context/skills/frontend/compatibility-manifest.json +8 -8
package/.agent-context/skills/frontend/conversion-clarity.md +51 -0
package/.agent-context/skills/frontend/motion.md +66 -66
package/.agent-context/skills/frontend/package.json +5 -0
package/.agent-context/skills/frontend/performance.md +62 -62
package/.agent-context/skills/frontend/responsive-delivery.md +41 -0
package/.agent-context/skills/frontend/tests/.gitkeep +1 -0
package/.agent-context/skills/frontend/ui-architecture.md +128 -128
package/.agent-context/skills/frontend.md +35 -29
package/.agent-context/skills/fullstack/.evidence/compatibility-manifest.json +9 -0
package/.agent-context/skills/fullstack/.evidence/sbom-excerpt.json +6 -0
package/.agent-context/skills/fullstack/.evidence/test-report.json +8 -0
package/.agent-context/skills/fullstack/CHANGELOG.md +7 -0
package/.agent-context/skills/fullstack/README.md +27 -19
package/.agent-context/skills/fullstack/compatibility-manifest.json +8 -8
package/.agent-context/skills/fullstack/contracts.md +52 -52
package/.agent-context/skills/fullstack/end-to-end.md +41 -41
package/.agent-context/skills/fullstack/feature-slicing.md +64 -64
package/.agent-context/skills/fullstack/package.json +5 -0
package/.agent-context/skills/fullstack/release-coordination.md +51 -0
package/.agent-context/skills/fullstack/tests/.gitkeep +1 -0
package/.agent-context/skills/fullstack.md +29 -26
package/.agent-context/skills/index.json +107 -107
package/.agent-context/skills/review-quality/.evidence/compatibility-manifest.json +9 -0
package/.agent-context/skills/review-quality/.evidence/sbom-excerpt.json +6 -0
package/.agent-context/skills/review-quality/.evidence/test-report.json +8 -0
package/.agent-context/skills/review-quality/CHANGELOG.md +7 -0
package/.agent-context/skills/review-quality/README.md +27 -19
package/.agent-context/skills/review-quality/benchmark.md +29 -29
package/.agent-context/skills/review-quality/compatibility-manifest.json +8 -8
package/.agent-context/skills/review-quality/package.json +5 -0
package/.agent-context/skills/review-quality/planning.md +37 -37
package/.agent-context/skills/review-quality/release-decision.md +49 -0
package/.agent-context/skills/review-quality/security.md +33 -33
package/.agent-context/skills/review-quality/tests/.gitkeep +1 -0
package/.agent-context/skills/review-quality.md +30 -27
package/.agent-context/stacks/flutter.md +16 -16
package/.agent-context/stacks/react-native.md +16 -16
package/.agent-context/state/architecture-map.md +25 -25
package/.agent-context/state/benchmark-analysis.json +431 -431
package/.agent-context/state/benchmark-thresholds.json +10 -10
package/.agent-context/state/benchmark-watchlist.json +19 -19
package/.agent-context/state/dependency-map.md +32 -32
package/.agent-context/state/quality-trend-report.json +16 -6
package/.agent-context/state/skill-platform.json +38 -38
package/.agent-context/state/weekly-governance-report.json +126 -0
package/.agent-override.md +36 -36
package/.cursorrules +1 -1
package/.gemini/instructions.md +20 -20
package/.github/ISSUE_TEMPLATE/v1.7-frontend-work-item.yml +54 -54
package/.github/copilot-instructions.md +20 -20
package/.github/workflows/benchmark-detection.yml +38 -38
package/.github/workflows/benchmark-intelligence.yml +50 -50
package/.github/workflows/frontend-usability-gate.yml +36 -36
package/.github/workflows/governance-weekly-report.yml +43 -0
package/.github/workflows/release-gate.yml +32 -32
package/.github/workflows/sbom-compliance.yml +32 -32
package/.windsurfrules +1 -1
package/AGENTS.md +27 -27
package/README.md +383 -368
package/lib/cli/commands/optimize.mjs +171 -171
package/lib/cli/compatibility.mjs +124 -124
package/lib/cli/constants.mjs +35 -0
package/lib/cli/token-optimization.mjs +275 -275
package/lib/cli/utils.mjs +4 -1
package/mcp.json +92 -92
package/package.json +2 -1
package/scripts/benchmark-gate.mjs +121 -121
package/scripts/benchmark-intelligence.mjs +140 -140
package/scripts/detection-benchmark.mjs +138 -138
package/scripts/frontend-usability-audit.mjs +87 -87
package/scripts/generate-sbom.mjs +61 -61
package/scripts/governance-weekly-report.mjs +293 -0
package/scripts/init-project.ps1 +104 -104
package/scripts/llm-judge.mjs +664 -664
package/scripts/quality-trend-report.mjs +288 -288
package/scripts/release-gate.mjs +261 -259
package/scripts/skill-tier-policy.mjs +75 -75
package/scripts/token-optimization-benchmark.mjs +252 -252
package/scripts/validate.mjs +874 -865

package/scripts/frontend-usability-audit.mjs CHANGED Viewed

@@ -1,87 +1,87 @@
-#!/usr/bin/env node
-/**
- * frontend-usability-audit.mjs
- *
- * Governance-level audit for V1.7 frontend execution assets.
- * This repository does not host a frontend runtime app, so the audit validates
- * required execution artifacts and quality gates documentation.
- */
-import { existsSync, readFileSync } from 'node:fs';
-import { resolve, dirname } from 'node:path';
-import { fileURLToPath } from 'node:url';
-const __filename = fileURLToPath(import.meta.url);
-const __dirname = dirname(__filename);
-const REPOSITORY_ROOT = resolve(__dirname, '..');
-const REQUIRED_FILES = [
-  'docs/roadmap.md',
-  'docs/v1.7-issue-breakdown.md',
-  'docs/v1.7-execution-playbook.md',
-  '.agent-context/review-checklists/frontend-usability.md',
-];
-const REQUIRED_ROADMAP_SNIPPETS = [
-  'V1.7',
-  'Frontend Product Experience',
-  'Release status: Completed',
-  'Delivered Scope',
-];
-const REQUIRED_CHECKLIST_SNIPPETS = [
-  'Responsiveness',
-  'Accessibility',
-  'Performance',
-  'Documentation and Release Evidence',
-];
-function assertFileExists(relativeFilePath, failures) {
-  const absoluteFilePath = resolve(REPOSITORY_ROOT, relativeFilePath);
-  if (!existsSync(absoluteFilePath)) {
-    failures.push(`Missing required file: ${relativeFilePath}`);
-  }
-}
-function assertContains(contentLabel, filePath, fileContent, snippets, failures) {
-  for (const snippetText of snippets) {
-    if (!fileContent.includes(snippetText)) {
-      failures.push(`${contentLabel} missing snippet "${snippetText}" in ${filePath}`);
-    }
-  }
-}
-function runAudit() {
-  const failures = [];
-  for (const requiredFilePath of REQUIRED_FILES) {
-    assertFileExists(requiredFilePath, failures);
-  }
-  const roadmapPath = 'docs/roadmap.md';
-  const checklistPath = '.agent-context/review-checklists/frontend-usability.md';
-  if (existsSync(resolve(REPOSITORY_ROOT, roadmapPath))) {
-    const roadmapContent = readFileSync(resolve(REPOSITORY_ROOT, roadmapPath), 'utf8');
-    assertContains('Roadmap', roadmapPath, roadmapContent, REQUIRED_ROADMAP_SNIPPETS, failures);
-  }
-  if (existsSync(resolve(REPOSITORY_ROOT, checklistPath))) {
-    const checklistContent = readFileSync(resolve(REPOSITORY_ROOT, checklistPath), 'utf8');
-    assertContains('Checklist', checklistPath, checklistContent, REQUIRED_CHECKLIST_SNIPPETS, failures);
-  }
-  const reportPayload = {
-    generatedAt: new Date().toISOString(),
-    auditName: 'frontend-usability-audit',
-    passed: failures.length === 0,
-    failureCount: failures.length,
-    failures,
-  };
-  console.log(JSON.stringify(reportPayload, null, 2));
-  process.exit(reportPayload.passed ? 0 : 1);
-}
-runAudit();
+#!/usr/bin/env node
+/**
+ * frontend-usability-audit.mjs
+ *
+ * Governance-level audit for V1.7 frontend execution assets.
+ * This repository does not host a frontend runtime app, so the audit validates
+ * required execution artifacts and quality gates documentation.
+ */
+import { existsSync, readFileSync } from 'node:fs';
+import { resolve, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+const REPOSITORY_ROOT = resolve(__dirname, '..');
+const REQUIRED_FILES = [
+  'docs/roadmap.md',
+  'docs/v1.7-issue-breakdown.md',
+  'docs/v1.7-execution-playbook.md',
+  '.agent-context/review-checklists/frontend-usability.md',
+];
+const REQUIRED_ROADMAP_SNIPPETS = [
+  'V1.7',
+  'Frontend Product Experience',
+  'Release status: Completed',
+  'Delivered Scope',
+];
+const REQUIRED_CHECKLIST_SNIPPETS = [
+  'Responsiveness',
+  'Accessibility',
+  'Performance',
+  'Documentation and Release Evidence',
+];
+function assertFileExists(relativeFilePath, failures) {
+  const absoluteFilePath = resolve(REPOSITORY_ROOT, relativeFilePath);
+  if (!existsSync(absoluteFilePath)) {
+    failures.push(`Missing required file: ${relativeFilePath}`);
+  }
+}
+function assertContains(contentLabel, filePath, fileContent, snippets, failures) {
+  for (const snippetText of snippets) {
+    if (!fileContent.includes(snippetText)) {
+      failures.push(`${contentLabel} missing snippet "${snippetText}" in ${filePath}`);
+    }
+  }
+}
+function runAudit() {
+  const failures = [];
+  for (const requiredFilePath of REQUIRED_FILES) {
+    assertFileExists(requiredFilePath, failures);
+  }
+  const roadmapPath = 'docs/roadmap.md';
+  const checklistPath = '.agent-context/review-checklists/frontend-usability.md';
+  if (existsSync(resolve(REPOSITORY_ROOT, roadmapPath))) {
+    const roadmapContent = readFileSync(resolve(REPOSITORY_ROOT, roadmapPath), 'utf8');
+    assertContains('Roadmap', roadmapPath, roadmapContent, REQUIRED_ROADMAP_SNIPPETS, failures);
+  }
+  if (existsSync(resolve(REPOSITORY_ROOT, checklistPath))) {
+    const checklistContent = readFileSync(resolve(REPOSITORY_ROOT, checklistPath), 'utf8');
+    assertContains('Checklist', checklistPath, checklistContent, REQUIRED_CHECKLIST_SNIPPETS, failures);
+  }
+  const reportPayload = {
+    generatedAt: new Date().toISOString(),
+    auditName: 'frontend-usability-audit',
+    passed: failures.length === 0,
+    failureCount: failures.length,
+    failures,
+  };
+  console.log(JSON.stringify(reportPayload, null, 2));
+  process.exit(reportPayload.passed ? 0 : 1);
+}
+runAudit();

package/scripts/generate-sbom.mjs CHANGED Viewed

@@ -1,61 +1,61 @@
-#!/usr/bin/env node
-/**
- * generate-sbom.mjs
- *
- * Minimal CycloneDX-compatible SBOM for governance CI evidence.
- */
-import { readFileSync } from 'node:fs';
-import { resolve, dirname } from 'node:path';
-import { fileURLToPath } from 'node:url';
-import { randomUUID } from 'node:crypto';
-const __filename = fileURLToPath(import.meta.url);
-const __dirname = dirname(__filename);
-const REPOSITORY_ROOT = resolve(__dirname, '..');
-const PACKAGE_JSON_PATH = resolve(REPOSITORY_ROOT, 'package.json');
-function buildComponents(dependencyGroup, dependencies) {
-  return Object.entries(dependencies || {}).map(([dependencyName, dependencyVersion]) => ({
-    type: 'library',
-    name: dependencyName,
-    version: String(dependencyVersion).replace(/^[^\d]*/, ''),
-    scope: dependencyGroup,
-    purl: `pkg:npm/${dependencyName}@${String(dependencyVersion).replace(/^[^\d]*/, '')}`,
-  }));
-}
-function generateSbom() {
-  const packageManifest = JSON.parse(readFileSync(PACKAGE_JSON_PATH, 'utf8'));
-  const runtimeComponents = buildComponents('required', packageManifest.dependencies);
-  const developmentComponents = buildComponents('optional', packageManifest.devDependencies);
-  const allComponents = [...runtimeComponents, ...developmentComponents];
-  const sbomPayload = {
-    bomFormat: 'CycloneDX',
-    specVersion: '1.5',
-    serialNumber: `urn:uuid:${randomUUID()}`,
-    version: 1,
-    metadata: {
-      timestamp: new Date().toISOString(),
-      component: {
-        type: 'application',
-        name: packageManifest.name,
-        version: packageManifest.version,
-      },
-      tools: [
-        {
-          vendor: 'Agentic-Senior-Core',
-          name: 'generate-sbom.mjs',
-          version: packageManifest.version,
-        },
-      ],
-    },
-    components: allComponents,
-  };
-  console.log(JSON.stringify(sbomPayload, null, 2));
-}
-generateSbom();
+#!/usr/bin/env node
+/**
+ * generate-sbom.mjs
+ *
+ * Minimal CycloneDX-compatible SBOM for governance CI evidence.
+ */
+import { readFileSync } from 'node:fs';
+import { resolve, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { randomUUID } from 'node:crypto';
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = dirname(__filename);
+const REPOSITORY_ROOT = resolve(__dirname, '..');
+const PACKAGE_JSON_PATH = resolve(REPOSITORY_ROOT, 'package.json');
+function buildComponents(dependencyGroup, dependencies) {
+  return Object.entries(dependencies || {}).map(([dependencyName, dependencyVersion]) => ({
+    type: 'library',
+    name: dependencyName,
+    version: String(dependencyVersion).replace(/^[^\d]*/, ''),
+    scope: dependencyGroup,
+    purl: `pkg:npm/${dependencyName}@${String(dependencyVersion).replace(/^[^\d]*/, '')}`,
+  }));
+}
+function generateSbom() {
+  const packageManifest = JSON.parse(readFileSync(PACKAGE_JSON_PATH, 'utf8'));
+  const runtimeComponents = buildComponents('required', packageManifest.dependencies);
+  const developmentComponents = buildComponents('optional', packageManifest.devDependencies);
+  const allComponents = [...runtimeComponents, ...developmentComponents];
+  const sbomPayload = {
+    bomFormat: 'CycloneDX',
+    specVersion: '1.5',
+    serialNumber: `urn:uuid:${randomUUID()}`,
+    version: 1,
+    metadata: {
+      timestamp: new Date().toISOString(),
+      component: {
+        type: 'application',
+        name: packageManifest.name,
+        version: packageManifest.version,
+      },
+      tools: [
+        {
+          vendor: 'Agentic-Senior-Core',
+          name: 'generate-sbom.mjs',
+          version: packageManifest.version,
+        },
+      ],
+    },
+    components: allComponents,
+  };
+  console.log(JSON.stringify(sbomPayload, null, 2));
+}
+generateSbom();

package/scripts/governance-weekly-report.mjs ADDED Viewed

@@ -0,0 +1,293 @@
+#!/usr/bin/env node
+/**
+ * governance-weekly-report.mjs
+ *
+ * Aggregates weekly governance readiness signals for maintainers.
+ * Produces a machine-readable report with trend, trust, and release posture.
+ */
+import { existsSync, readFileSync } from 'node:fs';
+import fs from 'node:fs/promises';
+import { spawnSync } from 'node:child_process';
+import { dirname, join, resolve } from 'node:path';
+import { fileURLToPath } from 'node:url';
+import { calculateTrustScore } from './trust-scorer.mjs';
+const SCRIPT_FILE_PATH = fileURLToPath(import.meta.url);
+const SCRIPT_DIR = dirname(SCRIPT_FILE_PATH);
+const REPOSITORY_ROOT = resolve(SCRIPT_DIR, '..');
+const QUALITY_TREND_PATH = join(REPOSITORY_ROOT, '.agent-context', 'state', 'quality-trend-report.json');
+const REPORT_PATH = join(REPOSITORY_ROOT, '.agent-context', 'state', 'weekly-governance-report.json');
+const ARGUMENT_FLAGS = new Set(process.argv.slice(2));
+const isStdoutOnlyMode = ARGUMENT_FLAGS.has('--stdout-only');
+const WEEKLY_WINDOW_DAYS = 7;
+const HISTORY_LIMIT = 26;
+const REQUIRED_VERIFIED_DOMAINS = new Set(['cli', 'frontend', 'fullstack', 'distribution', 'review-quality']);
+function readJsonOrNull(filePath) {
+  if (!existsSync(filePath)) {
+    return null;
+  }
+  try {
+    return JSON.parse(readFileSync(filePath, 'utf8'));
+  } catch {
+    return null;
+  }
+}
+function runJsonScript(scriptRelativePath, scriptArguments = []) {
+  const absoluteScriptPath = join(REPOSITORY_ROOT, scriptRelativePath);
+  const commandResult = spawnSync('node', [absoluteScriptPath, ...scriptArguments], {
+    cwd: REPOSITORY_ROOT,
+    encoding: 'utf8',
+    maxBuffer: 1024 * 1024 * 10,
+  });
+  const standardOutput = (commandResult.stdout || '').trim();
+  const standardError = (commandResult.stderr || '').trim();
+  const exitCode = typeof commandResult.status === 'number' ? commandResult.status : 1;
+  if (!standardOutput) {
+    return {
+      scriptPath: scriptRelativePath,
+      exitCode,
+      parsedReport: null,
+      parseError: 'Script produced no stdout JSON payload',
+      stderr: standardError,
+    };
+  }
+  try {
+    return {
+      scriptPath: scriptRelativePath,
+      exitCode,
+      parsedReport: JSON.parse(standardOutput),
+      parseError: null,
+      stderr: standardError,
+    };
+  } catch (jsonParseError) {
+    const parseErrorMessage = jsonParseError instanceof Error ? jsonParseError.message : String(jsonParseError);
+    return {
+      scriptPath: scriptRelativePath,
+      exitCode,
+      parsedReport: null,
+      parseError: parseErrorMessage,
+      stderr: standardError,
+    };
+  }
+}
+function loadQualityTrendReport() {
+  const existingQualityTrend = readJsonOrNull(QUALITY_TREND_PATH);
+  if (existingQualityTrend) {
+    return {
+      source: 'state-file',
+      report: existingQualityTrend,
+      freshness: existingQualityTrend.generatedAt || null,
+    };
+  }
+  const generatedQualityTrend = runJsonScript('scripts/quality-trend-report.mjs', ['--stdout-only']);
+  return {
+    source: 'generated-stdout',
+    report: generatedQualityTrend.parsedReport,
+    freshness: generatedQualityTrend.parsedReport?.generatedAt || null,
+    parseError: generatedQualityTrend.parseError,
+    exitCode: generatedQualityTrend.exitCode,
+  };
+}
+function collectCommitSignals(windowDays) {
+  const commitLogResult = spawnSync('git', ['log', `--since=${windowDays}.days`, '--pretty=format:%s'], {
+    cwd: REPOSITORY_ROOT,
+    encoding: 'utf8',
+    maxBuffer: 1024 * 1024,
+  });
+  if (commitLogResult.status !== 0) {
+    return {
+      windowDays,
+      commitCount: 0,
+      releaseCommitCount: 0,
+      rollbackCommitCount: 0,
+      releaseFrequencyPercent: null,
+      rollbackFrequencyPercent: null,
+      error: (commitLogResult.stderr || 'Failed to read git log').trim(),
+    };
+  }
+  const commitSubjects = (commitLogResult.stdout || '')
+    .split(/\r?\n/u)
+    .map((subjectLine) => subjectLine.trim())
+    .filter((subjectLine) => subjectLine.length > 0);
+  const commitCount = commitSubjects.length;
+  const releaseCommitCount = commitSubjects.filter((subjectLine) => /release|publish|chore\(release\)/i.test(subjectLine)).length;
+  const rollbackCommitCount = commitSubjects.filter((subjectLine) => /rollback|revert/i.test(subjectLine)).length;
+  return {
+    windowDays,
+    commitCount,
+    releaseCommitCount,
+    rollbackCommitCount,
+    releaseFrequencyPercent: commitCount === 0 ? 0 : Number(((releaseCommitCount / commitCount) * 100).toFixed(2)),
+    rollbackFrequencyPercent: commitCount === 0 ? 0 : Number(((rollbackCommitCount / commitCount) * 100).toFixed(2)),
+    error: null,
+  };
+}
+async function collectSkillTrustSignals() {
+  const skillDirectoryPath = join(REPOSITORY_ROOT, '.agent-context', 'skills');
+  const skillDirectoryEntries = await fs.readdir(skillDirectoryPath, { withFileTypes: true });
+  const skillDomainNames = skillDirectoryEntries
+    .filter((directoryEntry) => directoryEntry.isDirectory())
+    .map((directoryEntry) => directoryEntry.name)
+    .sort((leftDomainName, rightDomainName) => leftDomainName.localeCompare(rightDomainName));
+  const trustRows = [];
+  const tierCounts = {
+    verified: 0,
+    community: 0,
+    experimental: 0,
+  };
+  for (const skillDomainName of skillDomainNames) {
+    const trustResult = await calculateTrustScore(join(skillDirectoryPath, skillDomainName));
+    if (typeof tierCounts[trustResult.tier] === 'number') {
+      tierCounts[trustResult.tier] += 1;
+    }
+    trustRows.push({
+      domain: skillDomainName,
+      tier: trustResult.tier,
+      score: trustResult.score,
+    });
+  }
+  const requiredVerifiedDomainFailures = trustRows
+    .filter((trustRow) => REQUIRED_VERIFIED_DOMAINS.has(trustRow.domain) && trustRow.tier !== 'verified')
+    .map((trustRow) => trustRow.domain);
+  return {
+    domains: trustRows,
+    tierCounts,
+    requiredVerifiedDomains: Array.from(REQUIRED_VERIFIED_DOMAINS),
+    requiredVerifiedDomainFailures,
+    allRequiredVerified: requiredVerifiedDomainFailures.length === 0,
+  };
+}
+function buildBlockers(qualityTrendReport, skillTrustSignals, commitSignals) {
+  const blockers = [];
+  const qualityGatePassRatePercent = qualityTrendReport?.governanceHealth?.gatePassRatePercent;
+  if (typeof qualityGatePassRatePercent !== 'number' || qualityGatePassRatePercent < 100) {
+    blockers.push('Governance gate pass rate is below 100%.');
+  }
+  if (!skillTrustSignals.allRequiredVerified) {
+    blockers.push(
+      `Required verified skill domains missing: ${skillTrustSignals.requiredVerifiedDomainFailures.join(', ')}`
+    );
+  }
+  if (commitSignals.error) {
+    blockers.push(`Commit signal extraction failed: ${commitSignals.error}`);
+  }
+  return blockers;
+}
+function buildHistoryEntry(weeklyReport) {
+  return {
+    generatedAt: weeklyReport.generatedAt,
+    readinessStatus: weeklyReport.releaseReadiness.isReady ? 'ready' : 'blocked',
+    blockerCount: weeklyReport.releaseReadiness.blockers.length,
+    gatePassRatePercent: weeklyReport.qualitySignals.governanceHealth.gatePassRatePercent,
+    verifiedSkillDomainCount: weeklyReport.skillTrust.tierCounts.verified,
+    releaseFrequencyPercent: weeklyReport.commitSignals.releaseFrequencyPercent,
+    rollbackFrequencyPercent: weeklyReport.commitSignals.rollbackFrequencyPercent,
+  };
+}
+function mergeHistory(previousReport, currentHistoryEntry) {
+  const existingHistory = Array.isArray(previousReport?.history) ? previousReport.history : [];
+  const mergedHistory = [...existingHistory, currentHistoryEntry];
+  if (mergedHistory.length <= HISTORY_LIMIT) {
+    return mergedHistory;
+  }
+  return mergedHistory.slice(mergedHistory.length - HISTORY_LIMIT);
+}
+async function runWeeklyGovernanceReport() {
+  const qualityTrendState = loadQualityTrendReport();
+  const qualityTrendReport = qualityTrendState.report;
+  const skillTrustSignals = await collectSkillTrustSignals();
+  const commitSignals = collectCommitSignals(WEEKLY_WINDOW_DAYS);
+  const blockers = buildBlockers(qualityTrendReport, skillTrustSignals, commitSignals);
+  const weeklyReportSnapshot = {
+    generatedAt: new Date().toISOString(),
+    reportName: 'weekly-governance-report',
+    methodology: {
+      qualityTrendSource: qualityTrendState.source,
+      qualityTrendGeneratedAt: qualityTrendState.freshness,
+      commitWindowDays: WEEKLY_WINDOW_DAYS,
+      requiredVerifiedDomains: Array.from(REQUIRED_VERIFIED_DOMAINS),
+    },
+    qualitySignals: {
+      governanceHealth: {
+        availableGateCount: qualityTrendReport?.governanceHealth?.availableGateCount ?? null,
+        passedGateCount: qualityTrendReport?.governanceHealth?.passedGateCount ?? null,
+        gatePassRatePercent: qualityTrendReport?.governanceHealth?.gatePassRatePercent ?? null,
+      },
+      rejectionCategories: Array.isArray(qualityTrendReport?.rejectionCategories)
+        ? qualityTrendReport.rejectionCategories
+        : [],
+      tokenEfficiency: qualityTrendReport?.tokenEfficiency || null,
+    },
+    skillTrust: skillTrustSignals,
+    commitSignals,
+    releaseReadiness: {
+      isReady: blockers.length === 0,
+      blockers,
+      summary: blockers.length === 0
+        ? 'Weekly governance posture is ready for maintenance releases.'
+        : 'Weekly governance posture is blocked by unresolved readiness signals.',
+    },
+    artifact: {
+      path: REPORT_PATH,
+      writeMode: isStdoutOnlyMode ? 'stdout-only' : 'stdout-and-file',
+    },
+  };
+  const previousReport = readJsonOrNull(REPORT_PATH);
+  const history = mergeHistory(previousReport, buildHistoryEntry(weeklyReportSnapshot));
+  const weeklyReport = {
+    ...weeklyReportSnapshot,
+    history,
+  };
+  if (!isStdoutOnlyMode) {
+    await fs.mkdir(dirname(REPORT_PATH), { recursive: true });
+    await fs.writeFile(REPORT_PATH, JSON.stringify(weeklyReport, null, 2) + '\n', 'utf8');
+  }
+  return weeklyReport;
+}
+runWeeklyGovernanceReport()
+  .then((weeklyReport) => {
+    console.log(JSON.stringify(weeklyReport, null, 2));
+  })
+  .catch((reportError) => {
+    const errorMessage = reportError instanceof Error ? reportError.message : String(reportError);
+    console.error(`Weekly governance report failed: ${errorMessage}`);
+    process.exit(1);
+  });