@tanagram/cli 0.4.13 → 0.4.18

package/README.md

@@ -263,3 +263,5 @@ tanagram sync
 ---
 
 Built by [@fluttermatt](https://x.com/fluttermatt) and the [Tanagram](https://tanagram.ai/) team. Talk to us [on Twitter](https://x.com/tanagram_) or email: founders AT tanagram.ai
+
+# 

package/commands/run.go

@@ -3,6 +3,7 @@ package commands
 import (
 	"context"
 	"fmt"
+	"log/slog"
 	"os"
 	"path/filepath"
 	"sync"
@@ -26,10 +27,10 @@ func spinner(stop chan bool, message string) {
 	for {
 		select {
 		case <-stop:
-			fmt.Fprint(os.Stderr, "\r")
+			slog.Info("\r")
 			return
 		default:
-			fmt.Fprintf(os.Stderr, "\r%s %s", chars[i%len(chars)], message)
+			slog.Info("spinner", "char", chars[i%len(chars)], "message", message)
 			i++
 			time.Sleep(100 * time.Millisecond)
 		}
@@ -80,7 +81,7 @@ func Run() error {
 			return err
 		}
 
-		fmt.Fprintf(os.Stderr, "\nSyncing policies with LLM (processing %d changed file(s) in parallel)...\n", len(filesToSync))
+		slog.Info("Syncing policies with LLM", "files_to_process", len(filesToSync))
 
 		syncStart := time.Now()
 		ctx := context.Background()
@@ -102,19 +103,16 @@ func Run() error {
 		var completed int
 		var mu sync.Mutex
 		go func() {
-			chars := []string{"⠋", "⠙", "⠹", "⠸", "⠼", "⠴", "⠦", "⠧", "⠇", "⠏"}
-			i := 0
 			for {
 				select {
 				case <-stop:
-					fmt.Fprint(os.Stderr, "\r")
+					slog.Info("spinner stopped")
 					return
 				default:
 					mu.Lock()
 					c := completed
 					mu.Unlock()
-					fmt.Fprintf(os.Stderr, "\r%s Processing files... (%d/%d completed)", chars[i%len(chars)], c, len(filesToSync))
-					i++
+					slog.Info("Processing files", "completed", c, "total", len(filesToSync))
 					time.Sleep(100 * time.Millisecond)
 				}
 			}
@@ -145,7 +143,7 @@ func Run() error {
 				close(stop)
 				time.Sleep(50 * time.Millisecond)
 				mu.Lock()
-				fmt.Fprintf(os.Stderr, "\r\033[K✗ Failed to process %s\n", result.relPath)
+				slog.Error("Failed to process file", "file", result.relPath)
 				mu.Unlock()
 				return fmt.Errorf("failed to extract policies from %s: %w", result.file, result.err)
 			}
@@ -162,7 +160,7 @@ func Run() error {
 			// Atomic update of counter and output (prevents race with spinner)
 			mu.Lock()
 			completed++
-			fmt.Fprintf(os.Stderr, "\r\033[K✓ %s - %d policies\n", result.relPath, len(result.policies))
+			slog.Info("Processed file", "file", result.relPath, "policies", len(result.policies))
 			mu.Unlock()
 		}
 
@@ -176,7 +174,7 @@ func Run() error {
 		}
 
 		syncDuration := time.Since(syncStart)
-		fmt.Fprintf(os.Stderr, "\n✓ Synced %d policies from %d changed file(s)\n", totalPolicies, len(filesToSync))
+		slog.Info("Sync complete", "policies_synced", totalPolicies, "files_synced", len(filesToSync))
 
 		// Track sync metrics
 		metrics.Track("cli.sync.complete", map[string]interface{}{
@@ -202,10 +200,10 @@ func Run() error {
 		cloudPolicies, err = cloudStorage.LoadCloudPoliciesAsParserFormat(repoInfo.Owner, repoInfo.Name)
 		if err != nil {
 			// Cloud policies exist but failed to load - warn but continue
-			fmt.Fprintf(os.Stderr, "Warning: Failed to load cloud policies: %v\n", err)
+			slog.Warn("Failed to load cloud policies", "error", err)
 			cloudPolicies = []parser.Policy{}
 		} else if len(cloudPolicies) > 0 {
-			fmt.Fprintf(os.Stderr, "Loaded %d cloud policies for %s/%s\n", len(cloudPolicies), repoInfo.Owner, repoInfo.Name)
+			slog.Info("Loaded cloud policies", "count", len(cloudPolicies), "owner", repoInfo.Owner, "repo", repoInfo.Name)
 		}
 	}
 	// If repo detection failed, silently continue with local-only policies
@@ -214,7 +212,7 @@ func Run() error {
 	policies := storage.MergePolicies(localPolicies, cloudPolicies)
 
 	if len(policies) == 0 {
-		fmt.Fprintln(os.Stderr, "No enforceable policies found")
+		slog.Info("No enforceable policies found")
 		return nil
 	}
 
@@ -223,9 +221,9 @@ func Run() error {
 	totalMerged := len(policies)
 
 	if totalCloud > 0 {
-		fmt.Fprintf(os.Stderr, "Total policies: %d (%d local, %d cloud, %d after merge)\n", totalMerged, totalLocal, totalCloud, totalMerged)
+		slog.Info("Total policies", "total", totalMerged, "local", totalLocal, "cloud", totalCloud, "after_merge", totalMerged)
 	} else {
-		fmt.Fprintf(os.Stderr, "Loaded %d local policies\n", totalLocal)
+		slog.Info("Loaded local policies", "count", totalLocal)
 	}
 
 	// Check if a snapshot exists (from PreToolUse hook)
@@ -233,7 +231,7 @@ func Run() error {
 	useSnapshot := false
 
 	if snapshot.Exists(gitRoot) {
-		fmt.Fprintln(os.Stderr, "Snapshot detected - checking only Claude's changes...")
+		slog.Info("Snapshot detected - checking only Claude's changes")
 
 		// Load snapshot
 		snap, err := snapshot.Load(gitRoot)
@@ -265,13 +263,13 @@ func Run() error {
 
 		// Delete snapshot after using it
 		if err := snapshot.Delete(gitRoot); err != nil {
-			fmt.Fprintf(os.Stderr, "Warning: failed to delete snapshot: %v\n", err)
+			slog.Warn("Failed to delete snapshot", "error", err)
 		}
 
 		useSnapshot = true
 	} else {
 		// No snapshot - fall back to checking all git changes
-		fmt.Fprintln(os.Stderr, "Checking all changes (unstaged + staged)...")
+		slog.Info("Checking all changes (unstaged + staged)")
 		diffResult, err := gitpkg.GetAllChanges()
 		if err != nil {
 			return fmt.Errorf("error getting git diff: %w", err)
@@ -282,14 +280,14 @@ func Run() error {
 
 	if len(changesToCheck) == 0 {
 		if useSnapshot {
-			fmt.Fprintln(os.Stderr, "No changes detected since snapshot")
+			fmt.Fprint(os.Stdout, "No changes detected since snapshot\n")
 		} else {
-			fmt.Fprintln(os.Stderr, "No changes to check")
+			fmt.Fprint(os.Stdout, "No changes to check\n")
 		}
 		return nil
 	}
 
-	fmt.Fprintf(os.Stderr, "Scanning %d changed lines...\n\n", len(changesToCheck))
+	slog.Info("Scanning changed lines", "count", len(changesToCheck))
 
 	// Get API key once upfront before checking
 	apiKey, err := config.GetAPIKey()
@@ -337,6 +335,6 @@ func Run() error {
 	}
 
 	// No violations found - output success message
-	fmt.Fprintln(os.Stderr, "✓ No policy violations found")
+	fmt.Fprint(os.Stdout, "No policy violations found")
 	return nil
 }

package/dist/npm/darwin-arm64/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024 Tanagram
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/dist/npm/darwin-arm64/README.md

@@ -0,0 +1,267 @@
+# Tanagram CLI
+
+A lightweight Go CLI that enforces policies from `AGENTS.md` files on your local git changes.
+
+## Quick Start
+
+Run `tanagram` before committing to catch policy violations locally:
+
+```bash
+$ tanagram
+
+✗ Found 1 policy violation(s):
+
+webui/src/Button.tsx:42 - [No hardcoded colors] Don't use hard-coded color values; use theme colors instead
+  > background: "#FF5733"
+```
+
+## Installation
+
+### Quick Start (3 steps)
+
+```bash
+# 1. Install globally via npm
+npm install -g @tanagram/cli
+
+# 2. Automatically add a Claude Code hook
+tanagram config claude
+# and/or if you use Cursor:
+tanagram config cursor
+
+# 3. Run tanagram (will prompt for API key on first run)
+tanagram
+```
+
+**Requirements:**
+- Node.js >= 14.0.0
+- **Anthropic API Key** (you'll be prompted to enter it on first run)
+
+The CLI is written in Go but distributed via npm for easier installation and version management. During installation, npm automatically downloads the Go compiler and builds the binary for your platform (no manual setup needed!).
+
+### API Key Setup
+
+Tanagram uses Claude AI (via Anthropic API) to extract policies from your instruction files. On first run, you'll be prompted to enter your API key, which will be saved to `~/.tanagram/config.json`.
+
+**Get an API key:**
+1. Sign up at [https://console.anthropic.com](https://console.anthropic.com)
+2. Create an API key in the dashboard
+3. Run `tanagram` and enter your key when prompted
+
+## Usage
+
+```bash
+# Check all changes (unstaged + staged) - automatically syncs if policies changed
+tanagram
+# or explicitly:
+tanagram run
+
+# Manually sync instruction files to cache
+tanagram sync
+
+# View all cached policies
+tanagram list
+
+# Show help
+tanagram help
+```
+
+**Smart Caching:** Policies are cached and automatically resynced when instruction files change (detected via MD5 hash).
+
+### Commands
+
+- **`run`** (default) - Check git changes against policies with auto-sync
+- **`sync`** - Manually sync all instruction files to cache
+- **`list`** - View all cached policies (shows enforceable vs unenforceable)
+- **`help`** - Show usage information
+
+### Claude Code Hook
+
+Install the CLI as a Claude Code [hook](https://code.claude.com/docs/en/hooks) to have Claude automatically iterate on Tanagram's output.
+
+**Easy setup (recommended):**
+```bash
+tanagram config claude
+```
+
+This automatically adds the hook to your `~/.claude/settings.json`. It's safe to run multiple times and will preserve any existing settings.
+
+**Check hook status:**
+```bash
+tanagram config list
+```
+
+**Manual setup (alternative):**
+If you prefer to manually edit your settings, add this to your `~/.claude/settings.json` (user settings) or `.claude/settings.json` (project settings):
+
+```json
+{
+  "hooks": {
+    "SessionStart": [
+      {
+        "hooks": [
+          {
+            "command": "tanagram snapshot",
+            "type": "command"
+          }
+        ],
+        "matcher": "startup|clear"
+      }
+    ],
+    "Stop": [
+      {
+        "hooks": [
+          {
+            "command": "tanagram",
+            "type": "command"
+          }
+        ]
+      }
+    ]
+  }
+}
+```
+
+If you have existing hooks, you can merge this hook into your existing config.
+
+### Cursor Hook
+
+Install the CLI as a Cursor Code [hook](https://cursor.com/docs/agent/hooks) to have Cursor automatically iterate on Tanagram's output.
+
+**Easy setup (recommended):**
+```bash
+tanagram config cursor
+```
+
+This automatically adds the hook to your `~/.cursor/hooks.json`. It's safe to run multiple times and will preserve any existing settings.
+
+**Check hook status:**
+```bash
+tanagram config list
+```
+
+**Manual setup (alternative):**
+If you prefer to manually edit your settings, add this to your `~/.cursor/hooks.json` (user settings) or `.cursor/hooks.json` (project settings):
+
+```json
+{
+  "hooks": {
+    "beforeSubmitPrompt": [
+      {
+        "command": "tanagram snapshot"
+      }
+    ],
+    "stop": [
+      {
+        "command": "tanagram"
+      }
+    ]
+  },
+  "version": 1
+}
+```
+
+If you have existing hooks, you can merge this hook into your existing config.
+
+
+## How It Works
+
+1. **Finds instruction files** - Searches for `AGENTS.md`, `POLICIES.md`, `CLAUDE.md`, `BUGBOT.md`, and `.cursor/rules/*.mdc` in your git repository
+2. **Checks cache** - Loads cached policies and MD5 hashes from `.tanagram/`
+3. **Auto-syncs** - Detects file changes via MD5 and automatically resyncs if needed
+4. **LLM extraction** - Uses Claude AI to extract ALL policies from instruction files
+5. **Gets git diff** - Analyzes all your changes (unstaged + staged)
+6. **LLM detection** - Checks violations using intelligent semantic analysis
+7. **Reports results** - Terminal output with detailed reasoning for each violation
+
+### Cache Location
+
+Policies are cached in `.tanagram/cache.gob` at your git repository root. Add this to your `.gitignore`:
+
+```gitignore
+.tanagram/
+```
+
+### What Can Be Enforced
+
+**Everything!** Because the LLM reads and understands code like a human:
+
+**Simple patterns:**
+- "Don't use hard-coded colors" → Detects `#FF5733`, `rgb()`, etc.
+- "Use ruff format, not black" → Detects `black` usage
+- "Always use === instead of ==" → Detects `==` operators
+
+**Complex guidelines:**
+- "Break down code into modular functions" → Analyzes function length and complexity
+- "Don't deeply layer code" → Detects excessive nesting
+- "Ensure no code smells" → Identifies common anti-patterns
+- "Use structured logging with request IDs" → Checks logging patterns
+- "Prefer async/await for I/O" → Understands async patterns
+
+**Language-specific idioms:**
+- Knows Go uses PascalCase for exports (not Python's snake_case)
+- Won't flag Go code for missing Python type hints
+- Understands JavaScript !== Python !== Go
+
+### Exit Codes
+
+- `0` - No violations found
+- `2` - Violations found (triggers Claude Code automatic fix behavior)
+
+## Example
+
+Create an `AGENTS.md` in your repo with policies:
+
+```markdown
+# Development Policies
+
+- Don't use hard-coded color values; use theme colors instead
+- Use ruff format for Python formatting, not black
+- Always use async/await for database operations
+```
+
+Or use Cursor rules files in `.cursor/rules/`:
+
+```markdown
+---
+description: TypeScript coding standards
+globs: ["*.ts", "*.tsx"]
+---
+
+# TypeScript Standards
+
+- Use strict type checking
+- Avoid using 'any' type
+- Prefer interfaces over type aliases
+```
+
+Then run `tanagram` to enforce them locally!
+
+**Note:** For `.mdc` files, Tanagram extracts policies from the markdown content only (YAML frontmatter is used by Cursor and ignored during policy extraction).
+
+## Tanagram Web Integration
+
+You can also use [Tanagram](https://tanagram.ai) to manage policies across your organization and enforce them on PRs.
+If you have policies defined online, you can enforce them while you develop locally with the CLI as well.
+
+```bash
+# Connect your account
+tanagram login
+
+# Download policies from your Tanagram account and cache them locally
+tanagram sync
+```
+
+For customers with an on-prem installation, set the `TANAGRAM_WEB_HOSTNAME` environment variable to the URL of your Tanagram instance — for example:
+
+```bash
+export TANAGRAM_WEB_HOSTNAME=https://yourcompany.tanagram.ai
+
+tanagram login
+tanagram sync
+```
+
+---
+
+Built by [@fluttermatt](https://x.com/fluttermatt) and the [Tanagram](https://tanagram.ai/) team. Talk to us [on Twitter](https://x.com/tanagram_) or email: founders AT tanagram.ai
+
+# 

package/dist/npm/darwin-x64/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2024 Tanagram
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.