@tanagram/cli 0.1.20 → 0.1.23

package/README.md

@@ -215,47 +215,4 @@ Then run `tanagram` to enforce them locally!
 
 ---
 
-## Contributing
-
-Contributions are welcome! Please feel free to submit a Pull Request.
-
-### Development Setup
-
-```bash
-# Clone the repository
-git clone https://github.com/tanagram/cli.git
-cd cli
-
-# Install dependencies and build
-npm install
-
-# Run tests
-npm test
-
-# Build manually
-go build -o bin/tanagram .
-```
-
-### Publishing a Release
-
-To publish a new version:
-
-```bash
-# 1. Update version in package.json
-npm version patch  # or minor, or major
-
-# 2. Commit and tag
-git add package.json package-lock.json
-git commit -m "Bump version to $(node -p "require('./package.json').version")"
-git tag v$(node -p "require('./package.json').version")
-git push && git push origin --tags
-
-# 3. Publish to npm
-npm publish
-```
-
-**Note:** The Go compiler is automatically downloaded and used during `npm install` via the `go-bin` package, so no pre-built binaries needed!
-
-## License
-
-MIT
+Built by [@fluttermatt](https://x.com/fluttermatt) and the Tanagram team. Talk to us [on Twitter](https://x.com/tanagram_) or email: founders AT tanagram.ai

package/commands/run.go

@@ -11,6 +11,7 @@ import (
 	"github.com/tanagram/cli/checker"
 	"github.com/tanagram/cli/extractor"
 	"github.com/tanagram/cli/git"
+	"github.com/tanagram/cli/metrics"
 	"github.com/tanagram/cli/parser"
 	"github.com/tanagram/cli/storage"
 )
@@ -72,6 +73,7 @@ func Run() error {
 	if len(filesToSync) > 0 {
 		fmt.Printf("\nSyncing policies with LLM (processing %d changed file(s) in parallel)...\n", len(filesToSync))
 
+		syncStart := time.Now()
 		ctx := context.Background()
 
 		// Result type for collecting sync results
@@ -164,7 +166,15 @@ func Run() error {
 			return fmt.Errorf("failed to save cache: %w", err)
 		}
 
+		syncDuration := time.Since(syncStart)
 		fmt.Printf("\n✓ Synced %d policies from %d changed file(s)\n", totalPolicies, len(filesToSync))
+
+		// Track sync metrics
+		metrics.Track("cli.sync.complete", map[string]interface{}{
+			"files_synced":     len(filesToSync),
+			"policies_synced":  totalPolicies,
+			"duration_seconds": syncDuration.Seconds(),
+		})
 	}
 
 	// Load all policies from cache
@@ -196,7 +206,18 @@ func Run() error {
 
 	// Check changes against policies (both regex and LLM-based)
 	ctx := context.Background()
+	checkStart := time.Now()
 	result := checker.CheckChanges(ctx, diffResult.Changes, policies)
+	checkDuration := time.Since(checkStart)
+
+	// Track policy check results (similar to policy.execute.result in github-app)
+	metrics.Track("cli.policy.check.result", map[string]interface{}{
+		"policies_checked":   len(policies),
+		"changes_checked":    len(diffResult.Changes),
+		"violations_found":   len(result.Violations),
+		"has_violations":     len(result.Violations) > 0,
+		"duration_seconds":   checkDuration.Seconds(),
+	})
 
 	// Handle results based on whether violations were found
 	if len(result.Violations) > 0 {

package/go.mod

@@ -5,7 +5,9 @@ go 1.23.0
 require github.com/anthropics/anthropic-sdk-go v1.17.0
 
 require (
-	github.com/stretchr/testify v1.9.0 // indirect
+	github.com/hashicorp/golang-lru/v2 v2.0.7 // indirect
+	github.com/posthog/posthog-go v1.6.12 // indirect
+	github.com/stretchr/testify v1.10.0 // indirect
 	github.com/tidwall/gjson v1.18.0 // indirect
 	github.com/tidwall/match v1.1.1 // indirect
 	github.com/tidwall/pretty v1.2.1 // indirect

package/go.sum

@@ -2,10 +2,16 @@ github.com/anthropics/anthropic-sdk-go v1.17.0 h1:BwK8ApcmaAUkvZTiQE0yi3R9XneEFs
 github.com/anthropics/anthropic-sdk-go v1.17.0/go.mod h1:WTz31rIUHUHqai2UslPpw5CwXrQP3geYBioRV4WOLvE=
 github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/hashicorp/golang-lru/v2 v2.0.7 h1:a+bsQ5rvGLjzHuww6tVxozPZFVghXaHOwFs4luLUK2k=
+github.com/hashicorp/golang-lru/v2 v2.0.7/go.mod h1:QeFd9opnmA6QUJc5vARoKUSoFhyfM2/ZepoAG6RGpeM=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=
 github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4=
+github.com/posthog/posthog-go v1.6.12 h1:rsOBL/YdMfLJtOVjKJLgdzYmvaL3aIW6IVbAteSe+aI=
+github.com/posthog/posthog-go v1.6.12/go.mod h1:LcC1Nu4AgvV22EndTtrMXTy+7RGVC0MhChSw7Qk5XkY=
 github.com/stretchr/testify v1.9.0 h1:HtqpIVDClZ4nwg75+f6Lvsy/wHu+3BoSGCbBAcpTsTg=
 github.com/stretchr/testify v1.9.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
+github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA=
+github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY=
 github.com/tidwall/gjson v1.14.2/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=
 github.com/tidwall/gjson v1.18.0 h1:FIDeeyB800efLX89e5a8Y0BNH+LOngJyGrIWxG2FKQY=
 github.com/tidwall/gjson v1.18.0/go.mod h1:/wbyibRr2FHMks5tjHJ5F8dMZh3AcwJEMf5vlfC0lxk=

package/install.js

@@ -6,48 +6,94 @@ const path = require('path');
 const os = require('os');
 
 const GO_VERSION = '1.21.0';
+const GO_CACHE_DIR = path.join(os.homedir(), '.tanagram', `go-${GO_VERSION}`);
 
-// Build binary using go-bin
-async function buildWithGoBin() {
-  const platform = os.platform();
-  const arch = os.arch();
-  const goos = platform === 'win32' ? 'windows' : platform;
-  const goarch = arch === 'x64' ? 'amd64' : arch === 'arm64' ? 'arm64' : arch;
-  const binaryName = platform === 'win32' ? 'tanagram.exe' : 'tanagram';
-  const binaryPath = path.join(__dirname, 'bin', binaryName);
+// Check if Go is already installed locally
+function checkLocalGo() {
+  try {
+    const version = execSync('go version', { encoding: 'utf8', stdio: ['pipe', 'pipe', 'ignore'] });
+    console.log(`✓ Found local Go: ${version.trim()}`);
+    return 'go';
+  } catch (error) {
+    return null;
+  }
+}
 
-  const binDir = path.join(__dirname, 'bin');
-  if (!fs.existsSync(binDir)) {
-    fs.mkdirSync(binDir, { recursive: true });
+// Check if go-bin was previously cached
+function checkCachedGo() {
+  const cachedGoPath = path.join(GO_CACHE_DIR, 'bin', 'go');
+  if (fs.existsSync(cachedGoPath)) {
+    console.log(`✓ Using cached Go from ${GO_CACHE_DIR}`);
+    return cachedGoPath;
   }
+  return null;
+}
 
-  console.log('📦 Installing Go compiler via npm...');
+// Download and cache Go using go-bin
+async function downloadGo() {
+  console.log('📦 Downloading Go compiler via npm...');
 
   try {
-    // Install Go using go-bin
-    // Use require.resolve to find go-bin in node_modules
+    // Load go-bin
     let goBin;
     try {
       goBin = require('go-bin');
     } catch (err) {
-      // Fallback: try to require from parent node_modules
       const parentPath = path.join(__dirname, '..', '..', 'go-bin');
       goBin = require(parentPath);
     }
-    const goDir = await goBin({ version: GO_VERSION, dir: __dirname });
-    const goPath = path.join(goDir, 'bin', 'go');
 
-    console.log('🔧 Building Tanagram CLI...');
+    // Create cache directory
+    const cacheParent = path.dirname(GO_CACHE_DIR);
+    if (!fs.existsSync(cacheParent)) {
+      fs.mkdirSync(cacheParent, { recursive: true });
+    }
+
+    // Download Go to cache
+    const goDir = await goBin({
+      version: GO_VERSION,
+      dir: cacheParent,
+      includeTag: true
+    });
 
-    // Build the binary using the downloaded Go
-    execSync(`"${goPath}" build -o "${binaryPath}" .`, {
+    console.log(`✓ Go cached at ${goDir}`);
+    return path.join(goDir, 'bin', 'go');
+  } catch (error) {
+    throw new Error(`Failed to download Go: ${error.message}`);
+  }
+}
+
+// Build the binary
+function buildBinary(goCommand) {
+  const platform = os.platform();
+  const arch = os.arch();
+  const goos = platform === 'win32' ? 'windows' : platform;
+  const goarch = arch === 'x64' ? 'amd64' : arch === 'arm64' ? 'arm64' : arch;
+  const binaryName = platform === 'win32' ? 'tanagram.exe' : 'tanagram';
+  const binaryPath = path.join(__dirname, 'bin', binaryName);
+
+  const binDir = path.join(__dirname, 'bin');
+  if (!fs.existsSync(binDir)) {
+    fs.mkdirSync(binDir, { recursive: true });
+  }
+
+  console.log('🔧 Building Tanagram CLI...');
+
+  // Build ldflags to inject PostHog key at build time
+  let ldflags = '';
+  if (process.env.POSTHOG_WRITE_KEY) {
+    ldflags = `-ldflags="-X 'github.com/tanagram/cli/metrics.posthogWriteKey=${process.env.POSTHOG_WRITE_KEY}'"`;
+    console.log('  📊 Injecting PostHog metrics key...');
+  }
+
+  try {
+    execSync(`"${goCommand}" build ${ldflags} -o "${binaryPath}" .`, {
       cwd: __dirname,
       stdio: 'inherit',
       env: {
         ...process.env,
         GOOS: goos,
-        GOARCH: goarch,
-        GOROOT: goDir
+        GOARCH: goarch
       }
     });
 
@@ -55,29 +101,35 @@ async function buildWithGoBin() {
       fs.chmodSync(binaryPath, '755');
     }
 
-    // Clean up Go installation
-    console.log('🧹 Cleaning up...');
-    fs.rmSync(goDir, { recursive: true, force: true });
-
     console.log('✓ Tanagram CLI installed successfully');
     return true;
   } catch (error) {
-    console.error('Failed to build with go-bin:', error.message);
-    return false;
+    throw new Error(`Build failed: ${error.message}`);
   }
 }
 
 // Main installation flow
 (async () => {
   try {
-    const built = await buildWithGoBin();
-    if (!built) {
-      console.error('\n❌ Installation failed');
-      process.exit(1);
+    // 1. Check if Go is already installed locally
+    let goCommand = checkLocalGo();
+
+    // 2. If not, check if we have a cached go-bin download
+    if (!goCommand) {
+      goCommand = checkCachedGo();
+    }
+
+    // 3. If still no Go, download via go-bin and cache it
+    if (!goCommand) {
+      goCommand = await downloadGo();
     }
+
+    // 4. Build the binary
+    buildBinary(goCommand);
+
     process.exit(0);
   } catch (error) {
-    console.error('Installation error:', error.message);
+    console.error('\n❌ Installation failed:', error.message);
     process.exit(1);
   }
 })();

package/main.go

@@ -5,9 +5,14 @@ import (
 	"os"
 
 	"github.com/tanagram/cli/commands"
+	"github.com/tanagram/cli/metrics"
 )
 
 func main() {
+	// Initialize metrics (similar to PosthogService initialization)
+	metrics.Init()
+	defer metrics.Close()
+
 	// Get subcommand (default to "run" if none provided)
 	subcommand := "run"
 	if len(os.Args) > 1 {
@@ -17,10 +22,19 @@ func main() {
 	var err error
 	switch subcommand {
 	case "run":
+		metrics.Track("command.execute", map[string]interface{}{
+			"command": "run",
+		})
 		err = commands.Run()
 	case "sync":
+		metrics.Track("command.execute", map[string]interface{}{
+			"command": "sync",
+		})
 		err = commands.Sync()
 	case "list":
+		metrics.Track("command.execute", map[string]interface{}{
+			"command": "list",
+		})
 		err = commands.List()
 	case "help", "-h", "--help":
 		printHelp()
@@ -32,6 +46,10 @@ func main() {
 	}
 
 	if err != nil {
+		metrics.Track("command.error", map[string]interface{}{
+			"command": subcommand,
+			"error":   err.Error(),
+		})
 		fmt.Fprintf(os.Stderr, "Error: %v\n", err)
 		os.Exit(1)
 	}

package/metrics/metrics.go

@@ -0,0 +1,116 @@
+package metrics
+
+import (
+	"os"
+	"runtime"
+	"time"
+
+	"github.com/posthog/posthog-go"
+)
+
+var (
+	client posthog.Client
+
+	// Injected at build time via -ldflags
+	posthogWriteKey = ""
+	posthogHost     = "https://us.i.posthog.com"
+)
+
+// Init initializes the PostHog client
+// Similar to PosthogService.py and webui/app/lib/posthog.ts
+func Init() {
+	// Use embedded key (set at build time)
+	writeKey := posthogWriteKey
+
+	// Allow override via env var for local development
+	if envKey := os.Getenv("POSTHOG_WRITE_KEY"); envKey != "" {
+		writeKey = envKey
+	}
+
+	if writeKey == "" {
+		// Fail silently if not configured - metrics are optional
+		return
+	}
+
+	host := posthogHost
+	// Allow override via env var for local development
+	if envHost := os.Getenv("POSTHOG_HOST"); envHost != "" {
+		host = envHost
+	}
+
+	var err error
+	client, err = posthog.NewWithConfig(
+		writeKey,
+		posthog.Config{
+			Endpoint: host,
+		},
+	)
+	if err != nil {
+		// Log but don't fail - metrics shouldn't break the CLI
+		return
+	}
+}
+
+// Close flushes and closes the PostHog client
+func Close() {
+	if client != nil {
+		client.Close()
+	}
+}
+
+// Track sends an event to PostHog
+// Similar to MetricsService.put_metric_single_count()
+func Track(event string, properties map[string]interface{}) {
+	if client == nil {
+		return // Silently skip if not initialized
+	}
+
+	if properties == nil {
+		properties = make(map[string]interface{})
+	}
+
+	// Add context dimensions similar to MetricsService
+	properties["$process_person_profile"] = false // Match Python implementation
+	properties["_deployment_env"] = getDeploymentEnv()
+	properties["os"] = runtime.GOOS
+	properties["arch"] = runtime.GOARCH
+	properties["cli_version"] = getVersion()
+
+	err := client.Enqueue(posthog.Capture{
+		DistinctId: getDistinctId(),
+		Event:      event,
+		Properties: properties,
+		Timestamp:  time.Now(),
+	})
+
+	if err != nil {
+		// Silently fail - don't break CLI execution for metrics
+		return
+	}
+}
+
+// getDistinctId returns a stable anonymous identifier
+// Similar to user_id_for_github_dot_com() pattern
+func getDistinctId() string {
+	// Use hostname as stable identifier
+	hostname, err := os.Hostname()
+	if err != nil {
+		return "unknown"
+	}
+	return "cli_" + hostname
+}
+
+// getDeploymentEnv returns the deployment environment
+// Similar to _env_name_from_github_app_id()
+func getDeploymentEnv() string {
+	if env := os.Getenv("TANAGRAM_ENV"); env != "" {
+		return env
+	}
+	return "unknown"
+}
+
+// getVersion returns the CLI version
+func getVersion() string {
+	// TODO: embed version at build time with -ldflags
+	return "0.1.14"
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tanagram/cli",
-  "version": "0.1.20",
+  "version": "0.1.23",
   "description": "Tanagram - Catch sloppy code before it ships",
   "main": "index.js",
   "bin": {
@@ -8,7 +8,8 @@
   },
   "scripts": {
     "postinstall": "node install.js",
-    "test": "go test ./..."
+    "test": "go test ./...",
+    "prepublishOnly": "export $(grep -v '^#' .env.publish | xargs) && node install.js"
   },
   "keywords": [
     "tanagram",
@@ -38,6 +39,7 @@
     "fixtures/",
     "git/",
     "llm/",
+    "metrics/",
     "parser/",
     "storage/",
     "main.go",