@sweny-ai/core 0.1.0

package/dist/cli/check.js

@@ -0,0 +1,237 @@
+/**
+ * Run lightweight connectivity checks for all configured providers.
+ * Uses raw fetch — does NOT import provider packages.
+ */
+export async function checkProviderConnectivity(config) {
+    const results = [];
+    const githubChecked = { done: false }; // avoid double-checking same token
+    // ── Coding agent ────────────────────────────────────────────────────────────
+    if (config.codingAgentProvider === "claude") {
+        if (!config.anthropicApiKey && !config.claudeOauthToken) {
+            results.push({ name: "Anthropic (claude agent)", status: "skip", detail: "No key configured" });
+        }
+        else if (config.anthropicApiKey) {
+            results.push(await checkAnthropic(config.anthropicApiKey));
+        }
+        else {
+            results.push({
+                name: "Anthropic (claude agent)",
+                status: "skip",
+                detail: "CLAUDE_CODE_OAUTH_TOKEN set — skipping API check",
+            });
+        }
+    }
+    else {
+        results.push({
+            name: `Coding agent (${config.codingAgentProvider})`,
+            status: "skip",
+            detail: "Connectivity check not implemented for this provider",
+        });
+    }
+    // ── Observability ────────────────────────────────────────────────────────────
+    if (config.observabilityProvider === "datadog") {
+        results.push(await checkDatadog(config.observabilityCredentials));
+    }
+    else if (config.observabilityProvider === "sentry") {
+        results.push(await checkSentry(config.observabilityCredentials));
+    }
+    else if (config.observabilityProvider === "file") {
+        results.push({ name: "Observability (file)", status: "skip", detail: "File provider — no network check needed" });
+    }
+    else {
+        results.push({
+            name: `Observability (${config.observabilityProvider})`,
+            status: "skip",
+            detail: "Connectivity check not implemented for this provider",
+        });
+    }
+    // ── Issue tracker ────────────────────────────────────────────────────────────
+    if (config.issueTrackerProvider === "linear") {
+        results.push(await checkLinear(config.linearApiKey));
+    }
+    else if (config.issueTrackerProvider === "github-issues") {
+        const token = config.githubToken || config.botToken;
+        results.push(await checkGitHub(token, "Issue tracker (github-issues)"));
+        githubChecked.done = true;
+    }
+    else if (config.issueTrackerProvider === "file") {
+        results.push({
+            name: "Issue tracker (file)",
+            status: "skip",
+            detail: "File provider — no network check needed",
+        });
+    }
+    else {
+        results.push({
+            name: `Issue tracker (${config.issueTrackerProvider})`,
+            status: "skip",
+            detail: "Connectivity check not implemented for this provider",
+        });
+    }
+    // ── Source control ───────────────────────────────────────────────────────────
+    if (config.sourceControlProvider === "github" && !githubChecked.done) {
+        const token = config.githubToken || config.botToken;
+        results.push(await checkGitHub(token, "Source control (github)"));
+    }
+    else if (config.sourceControlProvider === "github" && githubChecked.done) {
+        // Already checked via github-issues — reuse
+        const existing = results.find((r) => r.name === "Issue tracker (github-issues)");
+        if (existing) {
+            results.push({ ...existing, name: "Source control (github)" });
+        }
+    }
+    else if (config.sourceControlProvider === "file") {
+        results.push({
+            name: "Source control (file)",
+            status: "skip",
+            detail: "File provider — no network check needed",
+        });
+    }
+    else {
+        results.push({
+            name: `Source control (${config.sourceControlProvider})`,
+            status: "skip",
+            detail: "Connectivity check not implemented for this provider",
+        });
+    }
+    return results;
+}
+// ── Provider check functions ─────────────────────────────────────────────────
+async function checkAnthropic(apiKey) {
+    const name = "Anthropic (claude agent)";
+    try {
+        const res = await fetch("https://api.anthropic.com/v1/models", {
+            headers: { "x-api-key": apiKey, "anthropic-version": "2023-06-01" },
+        });
+        if (res.status === 200) {
+            return { name, status: "ok", detail: "API key is valid" };
+        }
+        if (res.status === 401) {
+            return {
+                name,
+                status: "fail",
+                detail: "401 Unauthorized — check ANTHROPIC_API_KEY at https://console.anthropic.com",
+            };
+        }
+        return { name, status: "fail", detail: `Unexpected HTTP ${res.status}` };
+    }
+    catch (err) {
+        return { name, status: "fail", detail: networkErrorMessage(err) };
+    }
+}
+async function checkDatadog(creds) {
+    const name = "Observability (datadog)";
+    const { apiKey, appKey, site = "datadoghq.com" } = creds;
+    if (!apiKey || !appKey) {
+        return { name, status: "skip", detail: "DD_API_KEY or DD_APP_KEY not configured" };
+    }
+    try {
+        const res = await fetch(`https://api.${site}/api/v2/validate`, {
+            headers: { "DD-API-KEY": apiKey, "DD-APPLICATION-KEY": appKey },
+        });
+        if (res.status === 200) {
+            return { name, status: "ok", detail: "API key is valid" };
+        }
+        if (res.status === 403) {
+            return {
+                name,
+                status: "fail",
+                detail: "403 Forbidden — check DD_API_KEY and DD_APP_KEY at https://app.datadoghq.com/organization-settings/api-keys",
+            };
+        }
+        return { name, status: "fail", detail: `Unexpected HTTP ${res.status}` };
+    }
+    catch (err) {
+        return { name, status: "fail", detail: networkErrorMessage(err) };
+    }
+}
+async function checkSentry(creds) {
+    const name = "Observability (sentry)";
+    const { authToken } = creds;
+    if (!authToken) {
+        return { name, status: "skip", detail: "SENTRY_AUTH_TOKEN not configured" };
+    }
+    try {
+        const res = await fetch("https://sentry.io/api/0/", {
+            headers: { Authorization: `Bearer ${authToken}` },
+        });
+        if (res.status === 200) {
+            return { name, status: "ok", detail: "Auth token is valid" };
+        }
+        if (res.status === 401) {
+            return {
+                name,
+                status: "fail",
+                detail: "401 Unauthorized — check SENTRY_AUTH_TOKEN at https://sentry.io/settings/auth-tokens/",
+            };
+        }
+        return { name, status: "fail", detail: `Unexpected HTTP ${res.status}` };
+    }
+    catch (err) {
+        return { name, status: "fail", detail: networkErrorMessage(err) };
+    }
+}
+async function checkLinear(apiKey) {
+    const name = "Issue tracker (linear)";
+    if (!apiKey) {
+        return { name, status: "skip", detail: "LINEAR_API_KEY not configured" };
+    }
+    try {
+        const res = await fetch("https://api.linear.app/graphql", {
+            method: "POST",
+            headers: { "Content-Type": "application/json", Authorization: `Bearer ${apiKey}` },
+            body: JSON.stringify({ query: "{ viewer { id name } }" }),
+        });
+        if (res.status === 200) {
+            const body = (await res.json());
+            if (body.errors?.length) {
+                return { name, status: "fail", detail: "GraphQL error — check LINEAR_API_KEY" };
+            }
+            const displayName = body.data?.viewer?.name ?? "authenticated";
+            return { name, status: "ok", detail: `Authenticated as ${displayName}` };
+        }
+        if (res.status === 401) {
+            return {
+                name,
+                status: "fail",
+                detail: "401 Unauthorized — check LINEAR_API_KEY at https://linear.app/settings/api",
+            };
+        }
+        return { name, status: "fail", detail: `Unexpected HTTP ${res.status}` };
+    }
+    catch (err) {
+        return { name, status: "fail", detail: networkErrorMessage(err) };
+    }
+}
+async function checkGitHub(token, name) {
+    if (!token) {
+        return { name, status: "skip", detail: "GITHUB_TOKEN not configured" };
+    }
+    try {
+        const res = await fetch("https://api.github.com/user", {
+            headers: { Authorization: `token ${token}`, "User-Agent": "sweny-cli" },
+        });
+        if (res.status === 200) {
+            const body = (await res.json());
+            return { name, status: "ok", detail: `Authenticated as ${body.login ?? "unknown"}` };
+        }
+        if (res.status === 401) {
+            return {
+                name,
+                status: "fail",
+                detail: "401 Bad credentials — check GITHUB_TOKEN at https://github.com/settings/tokens",
+            };
+        }
+        return { name, status: "fail", detail: `Unexpected HTTP ${res.status}` };
+    }
+    catch (err) {
+        return { name, status: "fail", detail: networkErrorMessage(err) };
+    }
+}
+function networkErrorMessage(err) {
+    const msg = err instanceof Error ? err.message : String(err);
+    if (/ENOTFOUND|ETIMEDOUT|ECONNREFUSED/i.test(msg)) {
+        return `Network error — check your internet connection (${msg})`;
+    }
+    return msg;
+}

package/dist/cli/config-file.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Auto-load a `.env` file from the given directory.
+ * Sets `process.env[KEY]` only if not already defined (real env vars win).
+ */
+export declare function loadDotenv(cwd?: string): void;
+/**
+ * Search upward from `cwd` for `.sweny.yml` and parse it into flat key-value pairs.
+ * Returns empty object if no config file is found.
+ */
+export declare function loadConfigFile(cwd?: string): Record<string, string>;
+/** Starter config written by `sweny init`. */
+export declare const STARTER_CONFIG = "# .sweny.yml \u2014 SWEny project configuration\n# Commit this file. Secrets (API keys, tokens) go in .env (gitignored).\n#\n# Every key matches a CLI flag: \"time-range: 4h\" is the same as \"--time-range 4h\".\n# CLI flags override this file; env vars override this file; this file overrides defaults.\n\n# \u2500\u2500 Providers \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# observability-provider: datadog        # datadog | sentry | cloudwatch | splunk | elastic | newrelic | loki | prometheus | pagerduty | heroku | opsgenie | vercel | supabase | netlify | fly | render | file\n# issue-tracker-provider: github-issues  # github-issues | linear | jira\n# source-control-provider: github        # github | gitlab\n# coding-agent-provider: claude          # claude | codex | gemini\n# notification-provider: console         # console | slack | teams | discord | email | webhook\n\n# \u2500\u2500 Investigation \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# time-range: 24h\n# severity-focus: errors\n# service-filter: \"*\"\n# investigation-depth: standard          # quick | standard | thorough\n\n# \u2500\u2500 PR / branch \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# base-branch: main\n# pr-labels: agent,triage,needs-review\n\n# \u2500\u2500 Paths \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# service-map-path: .github/service-map.yml\n# log-file: ./logs/errors.json           # required when observability-provider is \"file\"\n\n# \u2500\u2500 Cache \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# cache-dir: .sweny/cache\n# cache-ttl: 86400\n\n# \u2500\u2500 MCP servers \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# Extend the coding agent with additional tools via MCP.\n# Value is a JSON object \u2014 each key is a server name you choose.\n# See docs/mcp-servers.md for a full catalog with copy-paste configs.\n#\n# Example: GitHub MCP server (query PRs, issues, CI run logs)\n# mcp-servers-json: '{\"github\":{\"type\":\"stdio\",\"command\":\"npx\",\"args\":[\"-y\",\"@modelcontextprotocol/server-github@latest\"],\"env\":{\"GITHUB_PERSONAL_ACCESS_TOKEN\":\"ghp_...\"}}}'\n\n# \u2500\u2500 Local-only quick start \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# Uncomment to run without any external services (just an LLM API key):\n# observability-provider: file\n# log-file: ./sample-errors.json\n# issue-tracker-provider: file\n# source-control-provider: file\n# notification-provider: file\n# output-dir: .sweny/output\n\n# \u2500\u2500 Credentials (.env) \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n# Copy the relevant block into your .env file and fill in the values.\n#\n# Claude (coding agent) \u2014 https://console.anthropic.com/settings/api-keys\n#   ANTHROPIC_API_KEY=sk-ant-...\n#\n# GitHub (source control + issue tracker)\n#   GITHUB_TOKEN=ghp_...        # https://github.com/settings/tokens (repo + issues scopes)\n#\n# Datadog (observability) \u2014 https://app.datadoghq.com/organization-settings\n#   DD_API_KEY=...              # Organization Settings > API Keys\n#   DD_APP_KEY=...              # Organization Settings > Application Keys\n#   DD_SITE=datadoghq.com       # or datadoghq.eu, us3.datadoghq.com, etc.\n#\n# Sentry (observability) \u2014 https://sentry.io/settings/auth-tokens/\n#   SENTRY_AUTH_TOKEN=sntrys_...\n#   SENTRY_ORG=your-org-slug    # from sentry.io/organizations/<slug>/\n#   SENTRY_PROJECT=your-project # Project Settings > General > Project Slug\n#\n# Linear (issue tracker) \u2014 https://linear.app/settings/api\n#   LINEAR_API_KEY=lin_api_...\n#   LINEAR_TEAM_ID=...          # Settings > Workspace > Teams > [team] > copy ID from URL\n#   LINEAR_BUG_LABEL_ID=...     # Settings > Labels > [label] > copy ID from URL\n#\n# Jira (issue tracker) \u2014 https://your-org.atlassian.net\n#   JIRA_BASE_URL=https://your-org.atlassian.net\n#   JIRA_EMAIL=you@company.com  # your Atlassian account email\n#   JIRA_API_TOKEN=...          # https://id.atlassian.com/manage-profile/security/api-tokens\n#\n# Vercel (observability) \u2014 https://vercel.com/account/tokens\n#   VERCEL_TOKEN=...\n#   VERCEL_PROJECT_ID=prj_...      # Project Settings > General > Project ID\n#   VERCEL_TEAM_ID=team_...        # optional, for team-owned projects\n#\n# Supabase (observability) \u2014 https://supabase.com/dashboard/account/tokens\n#   SUPABASE_MANAGEMENT_KEY=...\n#   SUPABASE_PROJECT_REF=...       # Project Settings > General > Reference ID\n#\n# Netlify (observability) \u2014 https://app.netlify.com/user/applications#personal-access-tokens\n#   NETLIFY_TOKEN=...\n#   NETLIFY_SITE_ID=...         # Site Settings > General > Site ID\n#\n# Fly.io (observability) \u2014 https://fly.io/user/personal_access_tokens\n#   FLY_TOKEN=...\n#   FLY_APP_NAME=...             # the name of your Fly.io application\n#\n# Render (observability) \u2014 https://dashboard.render.com/u/settings\n#   RENDER_API_KEY=...\n#   RENDER_SERVICE_ID=srv-...    # from your service's Settings page\n#\n# Prometheus (observability) \u2014 self-hosted or Grafana Cloud\n#   PROMETHEUS_URL=http://prometheus.internal:9090\n#   PROMETHEUS_TOKEN=...         # optional, for secured instances\n#\n# PagerDuty (observability) \u2014 https://your-account.pagerduty.com/api_keys\n#   PAGERDUTY_API_KEY=...\n#\n# Honeycomb (observability) \u2014 https://docs.honeycomb.io/api/\n#   HONEYCOMB_API_KEY=...\n#   HONEYCOMB_DATASET=...        # dataset name (e.g. production)\n#\n# Heroku (observability) \u2014 https://devcenter.heroku.com/articles/platform-api-reference\n#   HEROKU_API_KEY=...           # https://dashboard.heroku.com/account\n#   HEROKU_APP_NAME=...          # the name of your Heroku application\n#\n# OpsGenie (observability) \u2014 https://support.atlassian.com/opsgenie/docs/api-key-management/\n#   OPSGENIE_API_KEY=...\n#   OPSGENIE_REGION=us           # or eu for EU-hosted accounts\n#\n# Slack (notifications) \u2014 https://api.slack.com/apps\n#   NOTIFICATION_WEBHOOK_URL=https://hooks.slack.com/services/...\n#   # or use a bot token: SLACK_BOT_TOKEN=xoxb-...\n";

package/dist/cli/config-file.js

@@ -0,0 +1,208 @@
+import * as fs from "node:fs";
+import * as path from "node:path";
+/**
+ * Auto-load a `.env` file from the given directory.
+ * Sets `process.env[KEY]` only if not already defined (real env vars win).
+ */
+export function loadDotenv(cwd = process.cwd()) {
+    const envPath = path.join(cwd, ".env");
+    let content;
+    try {
+        content = fs.readFileSync(envPath, "utf-8");
+    }
+    catch {
+        return; // no .env — silently skip
+    }
+    for (const line of content.split("\n")) {
+        const trimmed = line.trim();
+        if (!trimmed || trimmed.startsWith("#"))
+            continue;
+        const eqIndex = trimmed.indexOf("=");
+        if (eqIndex === -1)
+            continue;
+        const key = trimmed.slice(0, eqIndex).trim();
+        let value = trimmed.slice(eqIndex + 1).trim();
+        // Strip surrounding quotes
+        if ((value.startsWith('"') && value.endsWith('"')) || (value.startsWith("'") && value.endsWith("'"))) {
+            value = value.slice(1, -1);
+        }
+        if (process.env[key] === undefined) {
+            process.env[key] = value;
+        }
+    }
+}
+/**
+ * Search upward from `cwd` for `.sweny.yml` and parse it into flat key-value pairs.
+ * Returns empty object if no config file is found.
+ */
+export function loadConfigFile(cwd = process.cwd()) {
+    const filePath = findConfigFile(cwd);
+    if (!filePath)
+        return {};
+    let content;
+    try {
+        content = fs.readFileSync(filePath, "utf-8");
+    }
+    catch {
+        return {};
+    }
+    const config = {};
+    for (const line of content.split("\n")) {
+        const trimmed = line.trim();
+        if (!trimmed || trimmed.startsWith("#"))
+            continue;
+        const colonIndex = trimmed.indexOf(":");
+        if (colonIndex === -1)
+            continue;
+        const key = trimmed.slice(0, colonIndex).trim();
+        let value = trimmed.slice(colonIndex + 1).trim();
+        // Strip surrounding quotes
+        if ((value.startsWith('"') && value.endsWith('"')) || (value.startsWith("'") && value.endsWith("'"))) {
+            value = value.slice(1, -1);
+        }
+        if (key && value !== "") {
+            config[key] = value;
+        }
+    }
+    return config;
+}
+function findConfigFile(startDir) {
+    let dir = path.resolve(startDir);
+    const { root } = path.parse(dir);
+    while (true) {
+        const candidate = path.join(dir, ".sweny.yml");
+        try {
+            fs.accessSync(candidate, fs.constants.R_OK);
+            return candidate;
+        }
+        catch {
+            // not found — walk up
+        }
+        const parent = path.dirname(dir);
+        if (parent === dir || dir === root)
+            return null;
+        dir = parent;
+    }
+}
+/** Starter config written by `sweny init`. */
+export const STARTER_CONFIG = `# .sweny.yml — SWEny project configuration
+# Commit this file. Secrets (API keys, tokens) go in .env (gitignored).
+#
+# Every key matches a CLI flag: "time-range: 4h" is the same as "--time-range 4h".
+# CLI flags override this file; env vars override this file; this file overrides defaults.
+
+# ── Providers ────────────────────────────────────────────────────────
+# observability-provider: datadog        # datadog | sentry | cloudwatch | splunk | elastic | newrelic | loki | prometheus | pagerduty | heroku | opsgenie | vercel | supabase | netlify | fly | render | file
+# issue-tracker-provider: github-issues  # github-issues | linear | jira
+# source-control-provider: github        # github | gitlab
+# coding-agent-provider: claude          # claude | codex | gemini
+# notification-provider: console         # console | slack | teams | discord | email | webhook
+
+# ── Investigation ────────────────────────────────────────────────────
+# time-range: 24h
+# severity-focus: errors
+# service-filter: "*"
+# investigation-depth: standard          # quick | standard | thorough
+
+# ── PR / branch ──────────────────────────────────────────────────────
+# base-branch: main
+# pr-labels: agent,triage,needs-review
+
+# ── Paths ─────────────────────────────────────────────────────────────
+# service-map-path: .github/service-map.yml
+# log-file: ./logs/errors.json           # required when observability-provider is "file"
+
+# ── Cache ─────────────────────────────────────────────────────────────
+# cache-dir: .sweny/cache
+# cache-ttl: 86400
+
+# ── MCP servers ───────────────────────────────────────────────────────
+# Extend the coding agent with additional tools via MCP.
+# Value is a JSON object — each key is a server name you choose.
+# See docs/mcp-servers.md for a full catalog with copy-paste configs.
+#
+# Example: GitHub MCP server (query PRs, issues, CI run logs)
+# mcp-servers-json: '{"github":{"type":"stdio","command":"npx","args":["-y","@modelcontextprotocol/server-github@latest"],"env":{"GITHUB_PERSONAL_ACCESS_TOKEN":"ghp_..."}}}'
+
+# ── Local-only quick start ───────────────────────────────────────────
+# Uncomment to run without any external services (just an LLM API key):
+# observability-provider: file
+# log-file: ./sample-errors.json
+# issue-tracker-provider: file
+# source-control-provider: file
+# notification-provider: file
+# output-dir: .sweny/output
+
+# ── Credentials (.env) ───────────────────────────────────────────────
+# Copy the relevant block into your .env file and fill in the values.
+#
+# Claude (coding agent) — https://console.anthropic.com/settings/api-keys
+#   ANTHROPIC_API_KEY=sk-ant-...
+#
+# GitHub (source control + issue tracker)
+#   GITHUB_TOKEN=ghp_...        # https://github.com/settings/tokens (repo + issues scopes)
+#
+# Datadog (observability) — https://app.datadoghq.com/organization-settings
+#   DD_API_KEY=...              # Organization Settings > API Keys
+#   DD_APP_KEY=...              # Organization Settings > Application Keys
+#   DD_SITE=datadoghq.com       # or datadoghq.eu, us3.datadoghq.com, etc.
+#
+# Sentry (observability) — https://sentry.io/settings/auth-tokens/
+#   SENTRY_AUTH_TOKEN=sntrys_...
+#   SENTRY_ORG=your-org-slug    # from sentry.io/organizations/<slug>/
+#   SENTRY_PROJECT=your-project # Project Settings > General > Project Slug
+#
+# Linear (issue tracker) — https://linear.app/settings/api
+#   LINEAR_API_KEY=lin_api_...
+#   LINEAR_TEAM_ID=...          # Settings > Workspace > Teams > [team] > copy ID from URL
+#   LINEAR_BUG_LABEL_ID=...     # Settings > Labels > [label] > copy ID from URL
+#
+# Jira (issue tracker) — https://your-org.atlassian.net
+#   JIRA_BASE_URL=https://your-org.atlassian.net
+#   JIRA_EMAIL=you@company.com  # your Atlassian account email
+#   JIRA_API_TOKEN=...          # https://id.atlassian.com/manage-profile/security/api-tokens
+#
+# Vercel (observability) — https://vercel.com/account/tokens
+#   VERCEL_TOKEN=...
+#   VERCEL_PROJECT_ID=prj_...      # Project Settings > General > Project ID
+#   VERCEL_TEAM_ID=team_...        # optional, for team-owned projects
+#
+# Supabase (observability) — https://supabase.com/dashboard/account/tokens
+#   SUPABASE_MANAGEMENT_KEY=...
+#   SUPABASE_PROJECT_REF=...       # Project Settings > General > Reference ID
+#
+# Netlify (observability) — https://app.netlify.com/user/applications#personal-access-tokens
+#   NETLIFY_TOKEN=...
+#   NETLIFY_SITE_ID=...         # Site Settings > General > Site ID
+#
+# Fly.io (observability) — https://fly.io/user/personal_access_tokens
+#   FLY_TOKEN=...
+#   FLY_APP_NAME=...             # the name of your Fly.io application
+#
+# Render (observability) — https://dashboard.render.com/u/settings
+#   RENDER_API_KEY=...
+#   RENDER_SERVICE_ID=srv-...    # from your service's Settings page
+#
+# Prometheus (observability) — self-hosted or Grafana Cloud
+#   PROMETHEUS_URL=http://prometheus.internal:9090
+#   PROMETHEUS_TOKEN=...         # optional, for secured instances
+#
+# PagerDuty (observability) — https://your-account.pagerduty.com/api_keys
+#   PAGERDUTY_API_KEY=...
+#
+# Honeycomb (observability) — https://docs.honeycomb.io/api/
+#   HONEYCOMB_API_KEY=...
+#   HONEYCOMB_DATASET=...        # dataset name (e.g. production)
+#
+# Heroku (observability) — https://devcenter.heroku.com/articles/platform-api-reference
+#   HEROKU_API_KEY=...           # https://dashboard.heroku.com/account
+#   HEROKU_APP_NAME=...          # the name of your Heroku application
+#
+# OpsGenie (observability) — https://support.atlassian.com/opsgenie/docs/api-key-management/
+#   OPSGENIE_API_KEY=...
+#   OPSGENIE_REGION=us           # or eu for EU-hosted accounts
+#
+# Slack (notifications) — https://api.slack.com/apps
+#   NOTIFICATION_WEBHOOK_URL=https://hooks.slack.com/services/...
+#   # or use a bot token: SLACK_BOT_TOKEN=xoxb-...
+`;

package/dist/cli/config.d.ts

@@ -0,0 +1,77 @@
+import type { Command } from "commander";
+import type { McpServerConfig } from "../types.js";
+export interface CliConfig {
+    codingAgentProvider: string;
+    anthropicApiKey: string;
+    claudeOauthToken: string;
+    openaiApiKey: string;
+    geminiApiKey: string;
+    observabilityProvider: string;
+    observabilityCredentials: Record<string, string>;
+    issueTrackerProvider: string;
+    linearApiKey: string;
+    linearTeamId: string;
+    linearBugLabelId: string;
+    linearTriageLabelId: string;
+    linearStateBacklog: string;
+    linearStateInProgress: string;
+    linearStatePeerReview: string;
+    timeRange: string;
+    severityFocus: string;
+    serviceFilter: string;
+    investigationDepth: string;
+    maxInvestigateTurns: number;
+    maxImplementTurns: number;
+    baseBranch: string;
+    prLabels: string[];
+    issueLabels: string[];
+    dryRun: boolean;
+    reviewMode: "auto" | "review";
+    noveltyMode: boolean;
+    issueOverride: string;
+    additionalInstructions: string;
+    serviceMapPath: string;
+    githubToken: string;
+    botToken: string;
+    sourceControlProvider: string;
+    jiraBaseUrl: string;
+    jiraEmail: string;
+    jiraApiToken: string;
+    gitlabToken: string;
+    gitlabProjectId: string;
+    gitlabBaseUrl: string;
+    notificationProvider: string;
+    notificationWebhookUrl: string;
+    sendgridApiKey: string;
+    emailFrom: string;
+    emailTo: string;
+    webhookSigningSecret: string;
+    repository: string;
+    repositoryOwner: string;
+    json: boolean;
+    bell: boolean;
+    cacheDir: string;
+    cacheTtl: number;
+    noCache: boolean;
+    outputDir: string;
+    mcpServers: Record<string, McpServerConfig>;
+    workspaceTools: string[];
+}
+export declare function registerTriageCommand(program: Command): Command;
+export declare function parseCliInputs(options: Record<string, unknown>, fileConfig?: Record<string, string>): CliConfig;
+/**
+ * All recognized workspace tool names. Update here when adding a new Category B MCP server.
+ *
+ * Requirements to add a tool:
+ *   - Must have an HTTP transport endpoint (preferred) OR a stable pre-installed binary path
+ *   - npx -y is intentionally NOT used — runtime package downloads bypass lockfiles
+ *   - Asana is intentionally absent: no stable HTTP MCP endpoint as of current release
+ */
+export declare const SUPPORTED_WORKSPACE_TOOLS: Set<string>;
+export declare function validateInputs(config: CliConfig): string[];
+/**
+ * Returns non-fatal warnings about the configuration.
+ * These are surfaced before the spinner starts but do not abort the run.
+ */
+export declare function validateWarnings(config: Pick<CliConfig, "serviceMapPath">): string[];
+export declare function registerImplementCommand(program: Command): Command;