@shahmilsaari/memory-core 1.0.30 → 1.0.32

package/dist/{chunk-OHVCPFEY.js → chunk-23GUWJ6F.js}

@@ -14,7 +14,7 @@ import {
   searchMemories,
   updateMemory,
   upsertMemory
-} from "./chunk-M7NKSXFS.js";
+} from "./chunk-GIPKVQSA.js";
 import {
   buildModuleDependencyEdges,
   collectResolvedImports,
@@ -208,7 +208,17 @@ function buildArchRules(arch) {
         { id: "no-circular", name: "No circular dependencies", fromLayer: "*", toLayer: "*", allowed: false, severity: "critical", enforcement: "block" },
         { id: "components-no-routes", name: "Components must not import route modules", fromLayer: "components", toLayer: "routes", allowed: false, severity: "critical", enforcement: "block" },
         { id: "stores-no-components", name: "Stores must not import components", fromLayer: "stores", toLayer: "components", allowed: false, severity: "critical", enforcement: "block" },
-        { id: "utils-no-stores", name: "Utils must not import stores", fromLayer: "utils", toLayer: "stores", allowed: false, severity: "medium", enforcement: "warn" }
+        { id: "lib-no-routes", name: "Lib must not import routes", fromLayer: "lib", toLayer: "routes", allowed: false, severity: "critical", enforcement: "block" },
+        { id: "lib-no-stores", name: "Lib must not import client stores", fromLayer: "lib", toLayer: "stores", allowed: false, severity: "critical", enforcement: "block" },
+        { id: "lib-no-components", name: "Lib must not import components", fromLayer: "lib", toLayer: "components", allowed: false, severity: "critical", enforcement: "block" },
+        { id: "utils-no-stores", name: "Utils must not import stores", fromLayer: "utils", toLayer: "stores", allowed: false, severity: "medium", enforcement: "warn" },
+        { id: "utils-no-lib", name: "Utils must not import lib \u2014 keep utils pure", fromLayer: "utils", toLayer: "lib", allowed: false, severity: "medium", enforcement: "warn" },
+        { id: "routes-use-components", name: "Routes use components", fromLayer: "routes", toLayer: "components", allowed: true, severity: "low", enforcement: "suggest" },
+        { id: "routes-use-stores", name: "Routes use stores", fromLayer: "routes", toLayer: "stores", allowed: true, severity: "low", enforcement: "suggest" },
+        { id: "routes-use-lib", name: "Routes use lib for server actions and API", fromLayer: "routes", toLayer: "lib", allowed: true, severity: "low", enforcement: "suggest" },
+        { id: "components-use-stores", name: "Components use stores for reactive state", fromLayer: "components", toLayer: "stores", allowed: true, severity: "low", enforcement: "suggest" },
+        { id: "components-use-lib", name: "Components use lib for API clients", fromLayer: "components", toLayer: "lib", allowed: true, severity: "low", enforcement: "suggest" },
+        { id: "stores-use-lib", name: "Stores use lib for API and utilities", fromLayer: "stores", toLayer: "lib", allowed: true, severity: "low", enforcement: "suggest" }
       ] };
     case "angular":
       return { rules: [

package/dist/{chunk-M7NKSXFS.js → chunk-GIPKVQSA.js}

@@ -71,6 +71,34 @@ async function runMigrations() {
        WHERE content_hash IS NULL`
     );
     await client.query(`CREATE INDEX IF NOT EXISTS memories_content_hash_idx ON memories (content_hash)`);
+    await client.query(`
+      CREATE TABLE IF NOT EXISTS arch_profiles (
+        id          SERIAL PRIMARY KEY,
+        name        TEXT NOT NULL,
+        arch_type   TEXT NOT NULL DEFAULT 'custom',
+        layers      JSONB NOT NULL DEFAULT '[]',
+        rules       JSONB NOT NULL DEFAULT '[]',
+        project_name TEXT,
+        created_at  TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+        updated_at  TIMESTAMPTZ NOT NULL DEFAULT NOW()
+      )
+    `);
+    await client.query(`
+      CREATE UNIQUE INDEX IF NOT EXISTS arch_profiles_name_project_idx
+      ON arch_profiles (name, COALESCE(project_name, ''))
+    `);
+    await client.query(`
+      CREATE TABLE IF NOT EXISTS users (
+        id            SERIAL PRIMARY KEY,
+        email         TEXT NOT NULL UNIQUE,
+        username      TEXT NOT NULL UNIQUE,
+        password_hash TEXT NOT NULL,
+        role          TEXT NOT NULL DEFAULT 'viewer',
+        team_name     TEXT,
+        created_at    TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+        last_login    TIMESTAMPTZ
+      )
+    `);
     await client.query("COMMIT");
     migrationsRun = true;
   } catch (err) {
@@ -80,6 +108,38 @@ async function runMigrations() {
     client.release();
   }
 }
+async function saveArchProfile(input) {
+  await runMigrations();
+  const result = await getPool().query(
+    `INSERT INTO arch_profiles (name, arch_type, layers, rules, project_name)
+     VALUES ($1, $2, $3::jsonb, $4::jsonb, $5)
+     ON CONFLICT (name, COALESCE(project_name, ''))
+     DO UPDATE SET arch_type = EXCLUDED.arch_type, layers = EXCLUDED.layers, rules = EXCLUDED.rules, updated_at = NOW()
+     RETURNING *`,
+    [input.name, input.archType, JSON.stringify(input.layers), JSON.stringify(input.rules), input.projectName ?? null]
+  );
+  return result.rows[0];
+}
+async function listArchProfiles(projectName) {
+  await runMigrations();
+  const result = await getPool().query(
+    `SELECT * FROM arch_profiles
+     WHERE project_name IS NULL OR project_name = $1
+     ORDER BY updated_at DESC`,
+    [projectName ?? null]
+  );
+  return result.rows;
+}
+async function getArchProfile(id) {
+  await runMigrations();
+  const result = await getPool().query(`SELECT * FROM arch_profiles WHERE id = $1`, [id]);
+  return result.rows[0] ?? null;
+}
+async function deleteArchProfile(id) {
+  await runMigrations();
+  const result = await getPool().query(`DELETE FROM arch_profiles WHERE id = $1`, [id]);
+  return (result.rowCount ?? 0) > 0;
+}
 async function saveMemory(memory) {
   await runMigrations();
   const { type, scope, architecture, projectName, title, content, reason, context, tags, embedding } = memory;
@@ -283,12 +343,57 @@ async function closePool() {
     migrationsRun = false;
   }
 }
+async function createUser(input) {
+  await runMigrations();
+  const result = await getPool().query(
+    `INSERT INTO users (email, username, password_hash, role, team_name)
+     VALUES ($1, $2, $3, $4, $5)
+     RETURNING *`,
+    [input.email, input.username, input.passwordHash, input.role ?? "viewer", input.teamName ?? null]
+  );
+  return result.rows[0];
+}
+async function getUserByEmail(email) {
+  await runMigrations();
+  const result = await getPool().query(`SELECT * FROM users WHERE email = $1`, [email]);
+  return result.rows[0] ?? null;
+}
+async function getUserById(id) {
+  await runMigrations();
+  const result = await getPool().query(`SELECT * FROM users WHERE id = $1`, [id]);
+  return result.rows[0] ?? null;
+}
+async function listUsers() {
+  await runMigrations();
+  const result = await getPool().query(
+    `SELECT id, email, username, role, team_name, created_at, last_login FROM users ORDER BY created_at ASC`
+  );
+  return result.rows;
+}
+async function updateLastLogin(id) {
+  await runMigrations();
+  await getPool().query(`UPDATE users SET last_login = NOW() WHERE id = $1`, [id]);
+}
+async function countUsers() {
+  await runMigrations();
+  const result = await getPool().query(`SELECT COUNT(*) FROM users`);
+  return parseInt(result.rows[0].count, 10);
+}
+async function deleteUser(id) {
+  await runMigrations();
+  const result = await getPool().query(`DELETE FROM users WHERE id = $1`, [id]);
+  return (result.rowCount ?? 0) > 0;
+}
 
 export {
   Config,
   hashMemoryContent,
   getPool,
   runMigrations,
+  saveArchProfile,
+  listArchProfiles,
+  getArchProfile,
+  deleteArchProfile,
   saveMemory,
   upsertMemory,
   listMemories,
@@ -297,5 +402,12 @@ export {
   deleteMemories,
   updateMemory,
   searchMemories,
-  closePool
+  closePool,
+  createUser,
+  getUserByEmail,
+  getUserById,
+  listUsers,
+  updateLastLogin,
+  countUsers,
+  deleteUser
 };

package/dist/cli.js

@@ -29,13 +29,13 @@ import {
   toPortableMemory,
   uninstallHook,
   writeMemoryFile
-} from "./chunk-OHVCPFEY.js";
+} from "./chunk-23GUWJ6F.js";
 import "./chunk-PQBWHAZN.js";
 import {
   closePool,
   getPool,
   runMigrations
-} from "./chunk-M7NKSXFS.js";
+} from "./chunk-GIPKVQSA.js";
 import "./chunk-ZZBQEXEO.js";
 
 // src/cli.ts
@@ -1738,7 +1738,7 @@ program.command("tune").description("Review and disable noisy rules with high fa
     console.log(chalk.dim("\n  No changes made.\n"));
   }
 });
-program.command("dashboard").description("Start the live Svelte dashboard with WebSocket watch events").option("-p, --port <port>", "Dashboard port", "5178").option("--path <dir>", "Directory to watch (default: current directory)").option("--no-watch", "Serve the dashboard without starting file watch").action(async (opts) => {
+program.command("dashboard").description("Start the live Svelte dashboard with WebSocket watch events").option("-p, --port <port>", "Dashboard port", "5178").option("--path <dir>", "Directory to watch (default: current directory)").option("--no-watch", "Serve the dashboard without starting file watch").option("--auth", "Enable JWT authentication (requires MC_JWT_SECRET in .memory-core.env)").action(async (opts) => {
   const resolveDashboardPath = () => {
     if (typeof opts.path === "string" && opts.path.trim().length > 0) return opts.path;
     const withEquals = process.argv.find((arg) => arg.startsWith("--path="));
@@ -1755,11 +1755,12 @@ program.command("dashboard").description("Start the live Svelte dashboard with W
     }
     return void 0;
   };
-  const { startDashboard } = await import("./dashboard-server-OHVL64F2.js");
+  const { startDashboard } = await import("./dashboard-server-MD6NVL2F.js");
   await startDashboard({
     port: parseInt(opts.port, 10),
     path: resolveDashboardPath(),
-    watch: opts.watch
+    watch: opts.watch,
+    auth: opts.auth ?? false
   });
 });
 program.command("seed").description("Load all predefined memories into the database").option("--arch <architecture>", "Only seed a specific architecture (e.g. clean-architecture)").option("--force", "Re-seed even if memories already exist", false).action(async (opts) => {
@@ -2388,7 +2389,7 @@ program.command("check").description("Check staged changes against architecture
     }
     let storedMemories = [];
     try {
-      const { listMemories } = await import("./db-PRDHI2CN.js");
+      const { listMemories } = await import("./db-FLFZZXG3.js");
       const allMemories = await listMemories({ limit: 1e4 });
       const ranked = allMemories.filter((m) => ["rule", "pattern", "decision"].includes(m.type));
       const changedLayers = packet.layersAffected;
@@ -2660,4 +2661,92 @@ arch.command("incident").description("Log a production incident and capture it a
     console.log(chalk.dim("  Discarded.\n"));
   }
 });
+var CREDENTIALS_PATH = join(homedir(), ".memory-core", "credentials.json");
+function readCredentials() {
+  try {
+    return JSON.parse(readFileSync(CREDENTIALS_PATH, "utf-8"));
+  } catch {
+    return null;
+  }
+}
+function writeCredentials(data) {
+  mkdirSync(dirname(CREDENTIALS_PATH), { recursive: true });
+  writeFileSync(CREDENTIALS_PATH, JSON.stringify(data, null, 2) + "\n", "utf-8");
+}
+function clearCredentials() {
+  try {
+    writeFileSync(CREDENTIALS_PATH, "{}", "utf-8");
+  } catch {
+  }
+}
+var authCmd = program.command("auth").description("Manage dashboard authentication");
+authCmd.command("setup").description("Create the first admin account (dashboard must be running with --auth)").option("--url <url>", "Dashboard URL", "http://localhost:5178").action(async (opts) => {
+  const email = await input({ message: "Admin email:" });
+  const username = await input({ message: "Admin username:" });
+  const password = await input({ message: "Password (min 8 chars):", transformer: () => "****" });
+  const teamName = await input({ message: "Team name (optional):" });
+  const res = await fetch(`${opts.url}/api/auth/setup`, {
+    method: "POST",
+    headers: { "content-type": "application/json" },
+    body: JSON.stringify({ email, username, password, teamName: teamName || void 0 })
+  });
+  const data = await res.json();
+  if (!res.ok) {
+    console.error(chalk.red(`  \u2717 ${data.error ?? "Setup failed"}`));
+    process.exit(1);
+  }
+  writeCredentials({ token: data.token, email, username, dashboardUrl: opts.url });
+  console.log(chalk.green(`
+  \u2713 Admin created and logged in as ${username}
+`));
+  console.log(chalk.gray(`  Credentials saved to ${CREDENTIALS_PATH}
+`));
+});
+authCmd.command("login").description("Log in to a running dashboard (stores JWT locally)").option("--url <url>", "Dashboard URL", "http://localhost:5178").action(async (opts) => {
+  const email = await input({ message: "Email:" });
+  const password = await input({ message: "Password:", transformer: () => "****" });
+  const res = await fetch(`${opts.url}/api/auth/login`, {
+    method: "POST",
+    headers: { "content-type": "application/json" },
+    body: JSON.stringify({ email, password })
+  });
+  const data = await res.json();
+  if (!res.ok) {
+    console.error(chalk.red(`  \u2717 ${data.error ?? "Login failed"}`));
+    process.exit(1);
+  }
+  const user = data.user;
+  writeCredentials({ token: data.token, email, username: user.username, dashboardUrl: opts.url });
+  console.log(chalk.green(`
+  \u2713 Logged in as ${user.username}
+`));
+});
+authCmd.command("logout").description("Clear locally stored credentials").action(() => {
+  clearCredentials();
+  console.log(chalk.green("\n  \u2713 Logged out\n"));
+});
+authCmd.command("status").description("Show current auth status").action(async () => {
+  const creds = readCredentials();
+  if (!creds?.token) {
+    console.log(chalk.yellow("\n  Not logged in\n"));
+    return;
+  }
+  try {
+    const res = await fetch(`${creds.dashboardUrl}/api/auth/me`, {
+      headers: { authorization: `Bearer ${creds.token}` }
+    });
+    const data = await res.json();
+    if (!res.ok) {
+      console.log(chalk.yellow("\n  Token invalid or expired \u2014 run `memory-core auth login`\n"));
+      return;
+    }
+    const user = data.user;
+    console.log(chalk.green(`
+  Logged in as ${user.username} (${user.email}) [${user.role}]`));
+    console.log(chalk.gray(`  Dashboard: ${creds.dashboardUrl}
+`));
+  } catch {
+    console.log(chalk.yellow("\n  Dashboard not reachable\n"));
+  }
+});
 program.parseAsync(process.argv);