npm - @synkro-sh/cli - Versions diffs - 1.3.28 → 1.3.30 - Mend

@synkro-sh/cli 1.3.28 → 1.3.30

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/dist/bootstrap.js CHANGED Viewed

@@ -571,34 +571,49 @@ refresh_jwt() {
   return 0
 }
-# Resolve tier (cached 60 min) \u2014 server is canonical via /cli/me; fallback free.
+# Resolve tier + capture_depth (cached 60 min) \u2014 server is canonical via /cli/me.
 TIER_CACHE_FILE="$HOME/.synkro/.tier-cache-\${SYNKRO_USER_ID:-default}"
+CD_CACHE_FILE="\${TIER_CACHE_FILE}.cd"
 SYNKRO_INFERENCE_TIER=""
+SYNKRO_CAPTURE_DEPTH=""
 if find "$TIER_CACHE_FILE" -mmin -60 2>/dev/null | grep -q .; then
   SYNKRO_INFERENCE_TIER=$(cat "$TIER_CACHE_FILE" 2>/dev/null)
+  SYNKRO_CAPTURE_DEPTH=$(cat "$CD_CACHE_FILE" 2>/dev/null)
 fi
 if [ -z "$SYNKRO_INFERENCE_TIER" ]; then
   ME_RESP=$(curl -sS "\${GATEWAY_URL}/api/v1/cli/me" -H "Authorization: Bearer $JWT" --max-time 2 2>/dev/null || echo "")
   if [ -n "$ME_RESP" ]; then
     SYNKRO_INFERENCE_TIER=$(echo "$ME_RESP" | jq -r '.tier // empty' 2>/dev/null)
     [ -n "$SYNKRO_INFERENCE_TIER" ] && printf '%s' "$SYNKRO_INFERENCE_TIER" > "$TIER_CACHE_FILE" 2>/dev/null || true
+    SYNKRO_CAPTURE_DEPTH=$(echo "$ME_RESP" | jq -r '.capture_depth // empty' 2>/dev/null)
+    [ -n "$SYNKRO_CAPTURE_DEPTH" ] && printf '%s' "$SYNKRO_CAPTURE_DEPTH" > "$CD_CACHE_FILE" 2>/dev/null || true
   fi
 fi
 SYNKRO_INFERENCE_TIER="\${SYNKRO_INFERENCE_TIER:-fast}"
+SYNKRO_CAPTURE_DEPTH="\${SYNKRO_CAPTURE_DEPTH:-full}"
+USE_LOCAL=false
+if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ] && command -v claude >/dev/null 2>&1; then
+  USE_LOCAL=true
+elif [ "$SYNKRO_INFERENCE_TIER" = "free" ] && command -v claude >/dev/null 2>&1; then
+  USE_LOCAL=true
+fi
-if [ "$SYNKRO_INFERENCE_TIER" = "free" ] && command -v claude >/dev/null 2>&1; then
+if [ "$USE_LOCAL" = "true" ]; then
   # \u2500\u2500\u2500 FREE TIER: grade via the persistent claude daemon (mode=bash). \u2500\u2500\u2500
-  # Fetch org guardrail rules relevant to this command (same as edit hook).
-  ORG_RULES=$(printf '%s' "$COMMAND" | head -c 4000 \\
-    | jq -Rs '{content: .}' \\
-    | curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules?top_k=15" \\
-    -X POST -H "Content-Type: application/json" \\
-    -H "Authorization: Bearer $JWT" \\
-    -d @- --max-time 2 2>/dev/null \\
-    | jq -c '[.rules[]? | {rule_id, text, severity, category}]' 2>/dev/null || echo "[]")
-  if [ -z "$ORG_RULES" ] || [ "$ORG_RULES" = "null" ]; then ORG_RULES="[]"; fi
+  # Fetch org guardrail rules relevant to this command (skip in local_only \u2014 no content leaves device).
+  ORG_RULES="[]"
+  if [ "$SYNKRO_CAPTURE_DEPTH" != "local_only" ]; then
+    ORG_RULES=$(printf '%s' "$COMMAND" | head -c 4000 \\
+      | jq -Rs '{content: .}' \\
+      | curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules?top_k=15" \\
+      -X POST -H "Content-Type: application/json" \\
+      -H "Authorization: Bearer $JWT" \\
+      -d @- --max-time 2 2>/dev/null \\
+      | jq -c '[.rules[]? | {rule_id, text, severity, category}]' 2>/dev/null || echo "[]")
+    if [ -z "$ORG_RULES" ] || [ "$ORG_RULES" = "null" ]; then ORG_RULES="[]"; fi
+  fi
   GRADER_PROMPT_FILE=$(mktemp -t synkro-bash-prompt.XXXXXX)
   trap "rm -f \\"$GRADER_PROMPT_FILE\\"" EXIT
@@ -655,6 +670,20 @@ VERDICT_KIND=$(echo "$VERDICT" | jq -r '.verdict // "warn"' 2>/dev/null)
 REASONING=$(echo "$VERDICT" | jq -r '.reasoning // "matched dangerous-verb regex"' 2>/dev/null)
 ALTERNATIVE=$(echo "$VERDICT" | jq -r '.alternative // ""' 2>/dev/null)
 CATEGORY=$(echo "$VERDICT" | jq -r '.category // "destructive_command"' 2>/dev/null)
+RISK_LEVEL=$(echo "$VERDICT" | jq -r '.risk_level // empty' 2>/dev/null)
+# Backwards-compat: if severity isn't block/audit, derive it from verdict_kind
+# and treat the original severity as the risk_level.
+case "$SEVERITY" in
+  block|audit) ;;
+  low|medium|high|critical)
+    [ -z "$RISK_LEVEL" ] && RISK_LEVEL="$SEVERITY"
+    if [ "$VERDICT_KIND" = "allow" ]; then SEVERITY="audit"; else SEVERITY="block"; fi
+    ;;
+  *)
+    if [ "$VERDICT_KIND" = "allow" ]; then SEVERITY="audit"; else SEVERITY="block"; fi
+    ;;
+esac
 # Severity-driven surfacing:
 #   block \u2192 permissionDecision: "ask" (interactive) or "deny" (headless)
@@ -711,6 +740,38 @@ case "$SEVERITY" in
     ;;
 esac
+# Fire-and-forget anonymized telemetry for local_only mode
+if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ] && [ -n "$VERDICT_KIND" ]; then
+  (
+    ANON_BODY=$(jq -n \\
+      --arg event_id "$(uuidgen 2>/dev/null || echo "evt_$(date +%s)_$$")" \\
+      --arg timestamp "$(date -u +%Y-%m-%dT%H:%M:%SZ)" \\
+      --arg hook_type "bash" \\
+      --arg verdict "$VERDICT_KIND" \\
+      --arg severity "$SEVERITY" \\
+      --arg risk_level "\${RISK_LEVEL:-low}" \\
+      --arg category "$CATEGORY" \\
+      --arg model "\${CC_MODEL:-claude-sonnet-4-6}" \\
+      --arg tool_name "$TOOL_NAME" \\
+      '{
+        event_id: $event_id,
+        timestamp: $timestamp,
+        hook_type: $hook_type,
+        verdict: $verdict,
+        severity: $severity,
+        risk_level: $risk_level,
+        category: $category,
+        model: $model,
+        tool_name: $tool_name
+      }')
+    curl -sS -X POST "\${GATEWAY_URL}/api/v1/events/local-verdict" \\
+      -H "Content-Type: application/json" \\
+      -H "Authorization: Bearer $JWT" \\
+      -d "$ANON_BODY" \\
+      --max-time 2 >/dev/null 2>&1
+  ) &
+fi
 exit 0
 `;
     CC_EDIT_PRECHECK_SCRIPT = `#!/bin/bash
@@ -938,31 +999,47 @@ refresh_jwt() {
 }
-# Resolve tier (cached 60 min) \u2014 server is canonical via /cli/me; fallback free.
+# Resolve tier + capture_depth (cached 60 min) \u2014 server is canonical via /cli/me.
 TIER_CACHE_FILE="$HOME/.synkro/.tier-cache-\${SYNKRO_USER_ID:-default}"
+CD_CACHE_FILE="\${TIER_CACHE_FILE}.cd"
 SYNKRO_INFERENCE_TIER=""
+SYNKRO_CAPTURE_DEPTH=""
 if find "$TIER_CACHE_FILE" -mmin -60 2>/dev/null | grep -q .; then
   SYNKRO_INFERENCE_TIER=$(cat "$TIER_CACHE_FILE" 2>/dev/null)
+  SYNKRO_CAPTURE_DEPTH=$(cat "$CD_CACHE_FILE" 2>/dev/null)
 fi
 if [ -z "$SYNKRO_INFERENCE_TIER" ]; then
   ME_RESP=$(curl -sS "\${GATEWAY_URL}/api/v1/cli/me" -H "Authorization: Bearer $JWT" --max-time 2 2>/dev/null || echo "")
   if [ -n "$ME_RESP" ]; then
     SYNKRO_INFERENCE_TIER=$(echo "$ME_RESP" | jq -r '.tier // empty' 2>/dev/null)
     [ -n "$SYNKRO_INFERENCE_TIER" ] && printf '%s' "$SYNKRO_INFERENCE_TIER" > "$TIER_CACHE_FILE" 2>/dev/null || true
+    SYNKRO_CAPTURE_DEPTH=$(echo "$ME_RESP" | jq -r '.capture_depth // empty' 2>/dev/null)
+    [ -n "$SYNKRO_CAPTURE_DEPTH" ] && printf '%s' "$SYNKRO_CAPTURE_DEPTH" > "$CD_CACHE_FILE" 2>/dev/null || true
   fi
 fi
 SYNKRO_INFERENCE_TIER="\${SYNKRO_INFERENCE_TIER:-fast}"
+SYNKRO_CAPTURE_DEPTH="\${SYNKRO_CAPTURE_DEPTH:-full}"
-if [ "$SYNKRO_INFERENCE_TIER" = "free" ] && command -v claude >/dev/null 2>&1; then
-  # \u2500\u2500\u2500 FREE TIER: grade via the persistent claude daemon (Python helper).
-  ORG_RULES=$(printf '%s' "$PROPOSED" | head -c 8000 \\
-    | jq -Rs '{content: .}' \\
-    | curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules?top_k=20" \\
-    -X POST -H "Content-Type: application/json" \\
-    -H "Authorization: Bearer $JWT" \\
-    -d @- --max-time 2 2>/dev/null \\
-    | jq -c '[.rules[]? | {rule_id, text, severity, category, mode}]' 2>/dev/null || echo "[]")
-  if [ -z "$ORG_RULES" ] || [ "$ORG_RULES" = "null" ]; then ORG_RULES="[]"; fi
+USE_LOCAL=false
+if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ] && command -v claude >/dev/null 2>&1; then
+  USE_LOCAL=true
+elif [ "$SYNKRO_INFERENCE_TIER" = "free" ] && command -v claude >/dev/null 2>&1; then
+  USE_LOCAL=true
+fi
+if [ "$USE_LOCAL" = "true" ]; then
+  # \u2500\u2500\u2500 LOCAL GRADING: grade via the persistent claude daemon (Python helper).
+  ORG_RULES="[]"
+  if [ "$SYNKRO_CAPTURE_DEPTH" != "local_only" ]; then
+    ORG_RULES=$(printf '%s' "$PROPOSED" | head -c 8000 \\
+      | jq -Rs '{content: .}' \\
+      | curl -sS "\${GATEWAY_URL}/api/v1/cli/pr-rules?top_k=20" \\
+      -X POST -H "Content-Type: application/json" \\
+      -H "Authorization: Bearer $JWT" \\
+      -d @- --max-time 2 2>/dev/null \\
+      | jq -c '[.rules[]? | {rule_id, text, severity, category, mode}]' 2>/dev/null || echo "[]")
+    if [ -z "$ORG_RULES" ] || [ "$ORG_RULES" = "null" ]; then ORG_RULES="[]"; fi
+  fi
   GRADER_PROMPT_FILE=$(mktemp -t synkro-grade.XXXXXX)
   trap "rm -f \\"$GRADER_PROMPT_FILE\\"" EXIT
@@ -1088,6 +1165,44 @@ else
   echo "$RESP_WITH_MSG"
 fi
+# Fire-and-forget anonymized telemetry for local_only mode
+if [ "$SYNKRO_CAPTURE_DEPTH" = "local_only" ] && [ -n "$DECISION" ]; then
+  LOCAL_VERDICT="allow"
+  LOCAL_SEVERITY="audit"
+  LOCAL_CATEGORY="edit_pass"
+  if [ "$DECISION" = "deny" ]; then
+    LOCAL_VERDICT="warn"
+    LOCAL_SEVERITY="block"
+    LOCAL_CATEGORY="edit_violation"
+  fi
+  (
+    ANON_BODY=$(jq -n \\
+      --arg event_id "$(uuidgen 2>/dev/null || echo "evt_$(date +%s)_$$")" \\
+      --arg timestamp "$(date -u +%Y-%m-%dT%H:%M:%SZ)" \\
+      --arg hook_type "edit" \\
+      --arg verdict "$LOCAL_VERDICT" \\
+      --arg severity "$LOCAL_SEVERITY" \\
+      --arg category "$LOCAL_CATEGORY" \\
+      --arg model "\${CC_MODEL:-claude-sonnet-4-6}" \\
+      --arg tool_name "$TOOL_NAME" \\
+      '{
+        event_id: $event_id,
+        timestamp: $timestamp,
+        hook_type: $hook_type,
+        verdict: $verdict,
+        severity: $severity,
+        category: $category,
+        model: $model,
+        tool_name: $tool_name
+      }')
+    curl -sS -X POST "\${GATEWAY_URL}/api/v1/events/local-verdict" \\
+      -H "Content-Type: application/json" \\
+      -H "Authorization: Bearer $JWT" \\
+      -d "$ANON_BODY" \\
+      --max-time 2 >/dev/null 2>&1
+  ) &
+fi
 exit 0
 `;
     CC_EDIT_CAPTURE_SCRIPT = `#!/bin/bash
@@ -2100,7 +2215,12 @@ OUTPUT RULES \u2014 strictest possible, no exceptions:
 1. NO reasoning. NO preamble. NO commentary.
 2. Your reply is exactly one <synkro-verdict>JSON</synkro-verdict> block. Nothing else.
-3. JSON shape: {"verdict": "warn"|"allow", "severity": "low|medium|high|critical", "category": "snake_case", "reasoning": "<= 25 words, cites intent + match/mismatch", "alternative": "safer command or null"}
+3. JSON shape: {"verdict": "warn"|"allow", "severity": "block"|"audit", "risk_level": "low"|"medium"|"high"|"critical", "category": "snake_case", "reasoning": "<= 25 words, cites intent + match/mismatch", "alternative": "safer command or null"}
+SEVERITY MAPPING (strict):
+- verdict="warn" \u2192 severity="block"
+- verdict="allow" \u2192 severity="audit"
+risk_level always reflects the underlying danger level (low/medium/high/critical), independent of the routing decision.
 Rules:
 - WARN if destructive/irreversible AND not aligned with user intent, OR has wildly disproportionate blast radius vs the request.
@@ -3371,7 +3491,7 @@ function writeConfigEnv(opts) {
     `SYNKRO_CREDENTIALS_PATH=${shellQuoteSingle(credsPath)}`,
     `SYNKRO_TIER=${shellQuoteSingle(safeTier)}`,
     `SYNKRO_INFERENCE=${shellQuoteSingle(safeInference)}`,
-    `SYNKRO_VERSION=${shellQuoteSingle("1.3.28")}`
+    `SYNKRO_VERSION=${shellQuoteSingle("1.3.30")}`
   ];
   if (safeUserId) lines.push(`SYNKRO_USER_ID=${shellQuoteSingle(safeUserId)}`);
   if (safeOrgId) lines.push(`SYNKRO_ORG_ID=${shellQuoteSingle(safeOrgId)}`);