@securityreviewai/securityreview-kit 0.1.36 → 0.1.37

package/README.md

@@ -31,7 +31,7 @@ npx @securityreviewai/securityreview-kit init --switch-project
 | Claude Code | `claude` | `.claude/settings.json` | `CLAUDE.md` |
 | VS Code Copilot | `vscode` | `.vscode/mcp.json` | `.github/copilot-instructions.md`, `.github/skills/threat-modelling/SKILL.md`, `.github/skills/guardrails-profiler/SKILL.md`, `.github/skills/guardrails-selection/SKILL.md`, `.github/agents/ctm_sync.agent.md`, `.github/hooks/srai-session-policy.json` |
 | Windsurf | `windsurf` | `.windsurf/mcp_config.json` | `.windsurf/rules/srai-security-review.md` |
-| Codex | `codex` | `.codex/config.toml` | `AGENTS.md` |
+| Codex | `codex` | `.codex/config.toml` | `AGENTS.md`, `.agents/skills/threat-modelling/SKILL.md`, `.agents/skills/guardrails-profiler/SKILL.md`, `.agents/skills/guardrails-selection/SKILL.md`, `.codex/agents/ctm_sync.toml`, `.codex/hooks.json`, `.codex/commands/guardrails-init-profile.md` |
 | Gemini CLI | `gemini` | `.gemini/settings.json` | `GEMINI.md` |
 | Antigravity | `antigravity` | `.gemini/settings.json` | `.agents/rules/srai-security-review.md` |
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@securityreviewai/securityreview-kit",
-  "version": "0.1.36",
+  "version": "0.1.37",
   "description": "Bootstrap security-review-mcp for AI IDEs and CLI tools",
   "author": "Debarshi Das <debarshi.das@we45.com>",
   "license": "UNLICENSED",

package/src/generators/mcp/codex.js

@@ -2,6 +2,29 @@ import { join } from 'node:path';
 import { readText, writeText, ensureDir } from '../../utils/fs-helpers.js';
 import { MCP_SERVER_NAME, MCP_SERVER_PACKAGE } from '../../utils/constants.js';
 
+function ensureHooksFeature(existing) {
+    const featureLine = 'codex_hooks = true';
+    const featuresHeader = '[features]';
+
+    if (!existing) {
+        return `${featuresHeader}\n${featureLine}`;
+    }
+
+    if (existing.includes(featuresHeader)) {
+        const featuresSectionPattern = /(\[features\][\s\S]*?)(?=\n\[[^\]]+\]|$)/;
+        return existing.replace(featuresSectionPattern, (section) => {
+            if (/\bcodex_hooks\s*=/.test(section)) {
+                return section.replace(/codex_hooks\s*=\s*(true|false)/, featureLine);
+            }
+            const separator = section.endsWith('\n') ? '' : '\n';
+            return `${section}${separator}${featureLine}\n`;
+        });
+    }
+
+    const separator = existing.endsWith('\n') ? '\n' : '\n\n';
+    return `${existing}${separator}${featuresHeader}\n${featureLine}\n`;
+}
+
 /**
  * Generate Codex MCP config at .codex/config.toml
  * Codex uses TOML format. We use simple string templating since the structure
@@ -21,23 +44,25 @@ SECURITY_REVIEW_API_URL = "${envVars.apiUrl}"
 SECURITY_REVIEW_API_TOKEN = "${envVars.apiToken}"
 `.trim();
 
+    const existingWithHooks = ensureHooksFeature(existing).trim();
+
     // Check if we already have this server configured
-    if (existing.includes(`[mcp_servers.${MCP_SERVER_NAME}]`)) {
+    if (existingWithHooks.includes(`[mcp_servers.${MCP_SERVER_NAME}]`)) {
         // Replace the existing block — find from the server header to the next
         // section header or end of file
         const regex = new RegExp(
             `\\[mcp_servers\\.${MCP_SERVER_NAME}\\][\\s\\S]*?(?=\\n\\[(?!mcp_servers\\.${MCP_SERVER_NAME})|$)`,
         );
-        const updated = existing.replace(regex, serverBlock);
+        const updated = existingWithHooks.replace(regex, serverBlock);
         writeText(filePath, updated);
-    } else if (existing) {
+    } else if (existingWithHooks) {
         // Append to existing file
-        const separator = existing.endsWith('\n') ? '\n' : '\n\n';
-        writeText(filePath, existing + separator + serverBlock + '\n');
+        const separator = existingWithHooks.endsWith('\n') ? '\n' : '\n\n';
+        writeText(filePath, existingWithHooks + separator + serverBlock + '\n');
     } else {
         // New file
         ensureDir(join(cwd, '.codex'));
-        writeText(filePath, serverBlock + '\n');
+        writeText(filePath, existingWithHooks + '\n\n' + serverBlock + '\n');
     }
 
     return filePath;

package/src/generators/mcp/codex.test.js

@@ -0,0 +1,42 @@
+import { mkdtempSync, mkdirSync, readFileSync, writeFileSync } from 'node:fs';
+import { tmpdir } from 'node:os';
+import { join } from 'node:path';
+import { test } from 'node:test';
+import assert from 'node:assert/strict';
+import { generate } from './codex.js';
+
+test('Codex MCP generator enables hooks and writes MCP server block', () => {
+    const cwd = mkdtempSync(join(tmpdir(), 'securityreview-kit-codex-mcp-'));
+
+    generate(cwd, {
+        apiUrl: 'https://example.test',
+        apiToken: 'secret-token',
+    });
+
+    const config = readFileSync(join(cwd, '.codex/config.toml'), 'utf8');
+    assert.match(config, /\[features\]\ncodex_hooks = true/);
+    assert.match(config, /\[mcp_servers\.security-review-mcp\]/);
+    assert.match(config, /SECURITY_REVIEW_API_URL = "https:\/\/example\.test"/);
+});
+
+test('Codex MCP generator preserves existing features while forcing codex_hooks', () => {
+    const cwd = mkdtempSync(join(tmpdir(), 'securityreview-kit-codex-mcp-merge-'));
+    const configPath = join(cwd, '.codex', 'config.toml');
+    mkdirSync(join(cwd, '.codex'), { recursive: true });
+
+    writeFileSync(
+        configPath,
+        '[features]\nshell_snapshot = true\ncodex_hooks = false\n\n[profiles.default]\nmodel = "gpt-5.4"\n',
+        'utf8',
+    );
+
+    generate(cwd, {
+        apiUrl: 'https://example.test',
+        apiToken: 'secret-token',
+    });
+
+    const config = readFileSync(configPath, 'utf8');
+    assert.match(config, /\[features\][\s\S]*shell_snapshot = true/);
+    assert.match(config, /\[features\][\s\S]*codex_hooks = true/);
+    assert.match(config, /\[profiles\.default\]\nmodel = "gpt-5\.4"/);
+});

package/src/generators/rules/codex.js

@@ -1,28 +1,128 @@
+import { existsSync } from 'node:fs';
 import { join } from 'node:path';
-import { GUARDRAILS_PROFILER_SKILL_REL_DIR, GUARDRAILS_SELECTION_SKILL_REL_DIR } from '../../utils/constants.js';
+import {
+    CTM_SYNC_AGENT_REL_PATH,
+    GUARDRAILS_PROFILER_SKILL_REL_DIR,
+    GUARDRAILS_SELECTION_SKILL_REL_DIR,
+    THREAT_MODELLING_SKILL_REL_DIR,
+} from '../../utils/constants.js';
 import { upsertSentinelBlock, writeText } from '../../utils/fs-helpers.js';
-import { getRuleContent, getGuardrailsInitProfileContent } from './content.js';
+import {
+    getCtmSyncWorkflowContent,
+    getGuardrailsInitProfileContent,
+    getRuleContent,
+    getThreatModellingSkillContent,
+} from './content.js';
+
+function writeGeneratedText(filePath, content) {
+    const action = existsSync(filePath) ? 'updated' : 'created';
+    writeText(filePath, content);
+    return { filePath, action };
+}
+
+function getCodexSessionHookContent() {
+    const additionalContext = [
+        '## MANDATORY SECURITY GATE (Session Policy)',
+        '',
+        'For any request with security impact (auth, authorization, crypto, input handling, secrets, network, data storage, dependencies, new APIs/endpoints, infrastructure, or code handling untrusted data), follow this order:',
+        '',
+        '1. Fetch Vibe Guardrails first using .agents/skills/guardrails-selection/SKILL.md. Resolve the project, call get_guardrails, shortlist relevant guardrails, then call get_guardrail_by_id for the shortlist.',
+        '2. Run PWNISMS threat modelling using .agents/skills/threat-modelling/SKILL.md. Explicitly walk Product, Workload, Network, IAM, Secrets, Monitoring, and Supply Chain.',
+        '3. Implement secure code using both the hydrated guardrails and PWNISMS findings.',
+        '4. Invoke the ctm_sync subagent using .codex/agents/ctm_sync.toml after threat modelling or guardrail enforcement. Reuse the exact guardrail shortlist; do not re-query guardrails during CTM sync.',
+        '',
+        'Do not use project-profile exploration tools during normal coding tasks. No blocking and no deferral: guardrails first, PWNISMS second, implementation third, ctm_sync last.',
+    ].join('\n');
+
+    const commandPayload = JSON.stringify({
+        hookSpecificOutput: {
+            hookEventName: 'SessionStart',
+            additionalContext,
+        },
+    });
+
+    return JSON.stringify(
+        {
+            hooks: {
+                SessionStart: [
+                    {
+                        matcher: 'startup|resume',
+                        hooks: [
+                            {
+                                type: 'command',
+                                command: `printf '%s\\n' '${commandPayload.replaceAll("'", "'\\''")}'`,
+                                timeout: 5,
+                                statusMessage: 'Loading SRAI security session policy',
+                            },
+                        ],
+                    },
+                ],
+            },
+        },
+        null,
+        2,
+    ) + '\n';
+}
+
+function getAgentBody(content) {
+    return content.replace(/^---\n[\s\S]*?\n---\n*/, '').trim();
+}
+
+function getCodexCtmSyncAgentContent(options = {}) {
+    const developerInstructions = getAgentBody(getCtmSyncWorkflowContent(options));
+    return [
+        'name = "ctm_sync"',
+        'description = "Synchronize threat-model and guardrail data to SRAI after security-relevant work."',
+        "developer_instructions = '''",
+        developerInstructions,
+        "'''",
+        '',
+    ].join('\n');
+}
 
 /**
  * Generate Codex workspace rule — appends to AGENTS.md
  */
 export function generate(cwd, options = {}) {
-    const filePath = join(cwd, 'AGENTS.md');
-    const content = getRuleContent({
+    const optionsWithSkillDirs = {
         ...options,
         guardrailsSelectionSkillDir: GUARDRAILS_SELECTION_SKILL_REL_DIR.codex,
-    });
+        threatModellingSkillDir: THREAT_MODELLING_SKILL_REL_DIR.codex,
+        ctmSyncAgentPath: CTM_SYNC_AGENT_REL_PATH.codex,
+    };
+    const filePath = join(cwd, 'AGENTS.md');
+    const content = getRuleContent(optionsWithSkillDirs);
     const action = upsertSentinelBlock(filePath, content);
 
+    const threatSkillPath = join(cwd, THREAT_MODELLING_SKILL_REL_DIR.codex, 'SKILL.md');
+    const threatSkill = writeGeneratedText(
+        threatSkillPath,
+        getThreatModellingSkillContent(optionsWithSkillDirs),
+    );
+
+    const ctmSyncAgentPath = join(cwd, CTM_SYNC_AGENT_REL_PATH.codex);
+    const ctmSyncAgent = writeGeneratedText(
+        ctmSyncAgentPath,
+        getCodexCtmSyncAgentContent(optionsWithSkillDirs),
+    );
+
+    const hooksPath = join(cwd, '.codex', 'hooks.json');
+    const hooks = writeGeneratedText(hooksPath, getCodexSessionHookContent());
+
     const guardrailsInitPath = join(cwd, '.codex', 'commands', 'guardrails-init-profile.md');
-    const guardrailsInitContent = getGuardrailsInitProfileContent({
-        ...options,
-        guardrailsSkillDir: GUARDRAILS_PROFILER_SKILL_REL_DIR.codex,
-    });
-    writeText(guardrailsInitPath, guardrailsInitContent);
+    const guardrailsInit = writeGeneratedText(
+        guardrailsInitPath,
+        getGuardrailsInitProfileContent({
+            ...optionsWithSkillDirs,
+            guardrailsSkillDir: GUARDRAILS_PROFILER_SKILL_REL_DIR.codex,
+        }),
+    );
 
     return [
         { filePath, action, kind: 'rule' },
-        { filePath: guardrailsInitPath, action: 'created', kind: 'command' },
+        { ...threatSkill, kind: 'skill' },
+        { ...ctmSyncAgent, kind: 'agent' },
+        { ...hooks, kind: 'hooks' },
+        { ...guardrailsInit, kind: 'command' },
     ];
 }

package/src/generators/rules/codex.test.js

@@ -0,0 +1,47 @@
+import { existsSync, mkdtempSync, readFileSync } from 'node:fs';
+import { tmpdir } from 'node:os';
+import { join } from 'node:path';
+import { test } from 'node:test';
+import assert from 'node:assert/strict';
+import { generate } from './codex.js';
+
+test('Codex generator writes AGENTS, skills, subagent, hooks, and profiling command', () => {
+    const cwd = mkdtempSync(join(tmpdir(), 'securityreview-kit-codex-'));
+
+    const results = generate(cwd, { projectName: 'SmokeProject' });
+
+    const expectedPaths = [
+        'AGENTS.md',
+        '.agents/skills/threat-modelling/SKILL.md',
+        '.codex/agents/ctm_sync.toml',
+        '.codex/hooks.json',
+        '.codex/commands/guardrails-init-profile.md',
+    ];
+
+    for (const relPath of expectedPaths) {
+        assert.equal(existsSync(join(cwd, relPath)), true, `${relPath} should exist`);
+    }
+
+    assert.deepEqual(results.map((entry) => entry.kind), ['rule', 'skill', 'agent', 'hooks', 'command']);
+
+    const instructions = readFileSync(join(cwd, 'AGENTS.md'), 'utf8');
+    assert.match(instructions, /\.agents\/skills\/guardrails-selection\/SKILL\.md/);
+    assert.match(instructions, /\.agents\/skills\/threat-modelling\/SKILL\.md/);
+    assert.match(instructions, /\.codex\/agents\/ctm_sync\.toml/);
+    assert.doesNotMatch(instructions, /\.cursor/);
+
+    const threatSkill = readFileSync(join(cwd, '.agents/skills/threat-modelling/SKILL.md'), 'utf8');
+    for (const heading of ['Product', 'Workload', 'Network', 'IAM', 'Secrets', 'Monitoring', 'Supply Chain']) {
+        assert.match(threatSkill, new RegExp(heading));
+    }
+    assert.match(threatSkill, /\.codex\/agents\/ctm_sync\.toml/);
+    assert.doesNotMatch(threatSkill, /get_project_profile_description/);
+
+    const agent = readFileSync(join(cwd, '.codex/agents/ctm_sync.toml'), 'utf8');
+    assert.match(agent, /name = "ctm_sync"/);
+    assert.match(agent, /developer_instructions = '''/);
+    assert.match(agent, /Configured SRAI project name: `SmokeProject`/);
+
+    const hooks = JSON.parse(readFileSync(join(cwd, '.codex/hooks.json'), 'utf8'));
+    assert.equal(hooks.hooks.SessionStart[0].hooks[0].type, 'command');
+});

package/src/generators/rules/guardrails-profiler/SKILL.md

@@ -11,7 +11,7 @@ Configured SRAI project name: `<SRAI_PROJECT_NAME>`
 
 ## Canonical paths
 
-- **This skill & signal registry (read-only):** `<GUARDRAILS_SKILL_DIR>/` — e.g. `.cursor/skills/guardrails-profiler`, `.github/skills/guardrails-profiler`, `.claude/skills/guardrails-profiler`, or `.codex/skills/guardrails-profiler` depending on where this file was installed.
+- **This skill & signal registry (read-only):** `<GUARDRAILS_SKILL_DIR>/` — e.g. `.cursor/skills/guardrails-profiler`, `.github/skills/guardrails-profiler`, `.claude/skills/guardrails-profiler`, or `.agents/skills/guardrails-profiler` for Codex depending on where this file was installed.
 - **Signal registry file:** `<GUARDRAILS_SKILL_DIR>/references/signal-registry.json`
 - **Local guardrails file:** `.guardrails/profile.json`
 - **Combined manifest (project root):** `profile.json` — includes guardrails profile, vibe profile fields for MCP, and default pack payload

package/src/utils/constants.js

@@ -64,7 +64,7 @@ export const GUARDRAILS_PROFILER_SKILL_REL_DIR = {
     cursor: '.cursor/skills/guardrails-profiler',
     claude: '.claude/skills/guardrails-profiler',
     vscode: '.github/skills/guardrails-profiler',
-    codex: '.codex/skills/guardrails-profiler',
+    codex: '.agents/skills/guardrails-profiler',
 };
 
 /** Relative workspace dirs for the guardrails-selection skill (per IDE / CLI). */
@@ -72,19 +72,21 @@ export const GUARDRAILS_SELECTION_SKILL_REL_DIR = {
     cursor: '.cursor/skills/guardrails-selection',
     claude: '.claude/skills/guardrails-selection',
     vscode: '.github/skills/guardrails-selection',
-    codex: '.codex/skills/guardrails-selection',
+    codex: '.agents/skills/guardrails-selection',
 };
 
 /** Relative workspace dirs for the PWNISMS threat-modelling skill (per IDE / CLI). */
 export const THREAT_MODELLING_SKILL_REL_DIR = {
     cursor: '.cursor/skills/threat-modelling',
     vscode: '.github/skills/threat-modelling',
+    codex: '.agents/skills/threat-modelling',
 };
 
 /** Relative workspace paths for the CTM sync agent/workflow (per IDE / CLI). */
 export const CTM_SYNC_AGENT_REL_PATH = {
     cursor: '.cursor/agents/ctm_sync.md',
     vscode: '.github/agents/ctm_sync.agent.md',
+    codex: '.codex/agents/ctm_sync.toml',
 };
 
 export const SENTINEL_START = '<!-- securityreview-kit:start -->';