npm - @triedotdev/mcp - Versions diffs - 1.0.20 → 1.0.21 - Mend

@triedotdev/mcp 1.0.20 → 1.0.21

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/dist/{agent-smith-BKHHC4G6.js → agent-smith-QYMYTLFV.js} +2 -2
package/dist/{agent-smith-runner-WZDDYQGK.js → agent-smith-runner-3MIO4CWT.js} +2 -2
package/dist/{chunk-EEVALBHC.js → chunk-3AUDJWEF.js} +6 -6
package/dist/chunk-3AUDJWEF.js.map +1 -0
package/dist/{chunk-NZ67PJ6E.js → chunk-52RPXHT6.js} +320 -67
package/dist/chunk-52RPXHT6.js.map +1 -0
package/dist/cli/yolo-daemon.js +2 -2
package/dist/index.js +36 -348
package/dist/index.js.map +1 -1
package/package.json +1 -1
package/dist/chunk-EEVALBHC.js.map +0 -1
package/dist/chunk-NZ67PJ6E.js.map +0 -1
/package/dist/{agent-smith-BKHHC4G6.js.map → agent-smith-QYMYTLFV.js.map} +0 -0
/package/dist/{agent-smith-runner-WZDDYQGK.js.map → agent-smith-runner-3MIO4CWT.js.map} +0 -0

package/dist/{chunk-NZ67PJ6E.js → chunk-52RPXHT6.js} RENAMED Viewed

@@ -15,7 +15,7 @@ import {
   AgentSmithAgent,
   BaseAgent,
   ProgressReporter
-} from "./chunk-EEVALBHC.js";
+} from "./chunk-3AUDJWEF.js";
 // src/agents/security.ts
 var ALWAYS_SKIP_FILES = [
@@ -297,7 +297,6 @@ Output STRICT JSON:
 };
 // src/agents/privacy.ts
-import { basename } from "path";
 var PRIVACY_INDICATORS = {
   high: [
     { pattern: /email|phone|ssn|social.*security|passport|driver.*license/i, reason: "PII fields" },
@@ -391,7 +390,7 @@ var PrivacyAgent = class extends BaseAgent {
     };
   }
   /**
-   * Get privacy-focused system prompt
+   * Get privacy-focused system prompt (legacy - kept for reference)
    */
   getSystemPrompt() {
     return `You are a data privacy officer and compliance expert.
@@ -423,7 +422,7 @@ SEVERITY GUIDELINES:
 - LOW: Minor concern, nice to have`;
   }
   /**
-   * Build privacy-specific analysis prompt
+   * Build privacy-specific analysis prompt (legacy - kept for reference)
    */
   buildUserPrompt(filePath, content, relevance) {
     const isPersistenceFile = /(model|schema|entity|migration|prisma|mongoose|db|database)/i.test(filePath);
@@ -479,56 +478,115 @@ If no privacy issues found, respond with:
     return prompt;
   }
   /**
-   * Process AI request and check for critical patterns
+   * Pattern-based privacy analysis
    */
-  async processAIRequest(request) {
+  async analyzeFiles(files, _context) {
     const issues = [];
-    const fileName = basename(request.file);
-    const content = request.code;
-    const lines = content.split("\n");
-    for (let i = 0; i < lines.length; i++) {
-      const line = lines[i] || "";
-      for (const { pattern, severity, issue, fix, regulation } of CRITICAL_PRIVACY_PATTERNS) {
-        if (pattern.test(line)) {
-          this.progress?.found(severity, `${issue} at line ${i + 1}`);
-          issues.push(this.createIssue(
-            this.generateIssueId(),
-            severity,
-            issue,
-            fix,
-            request.file,
-            i + 1,
-            0.95,
-            regulation,
-            true
-          ));
+    for (const file of files) {
+      try {
+        const content = await this.readFile(file);
+        const lines = content.split("\n");
+        for (let i = 0; i < lines.length; i++) {
+          const line = lines[i] || "";
+          for (const { pattern, severity, issue, fix, regulation } of CRITICAL_PRIVACY_PATTERNS) {
+            if (pattern.test(line)) {
+              this.progress?.found(severity, `${issue} at line ${i + 1}`);
+              issues.push(this.createIssue(
+                this.generateIssueId(),
+                severity,
+                issue,
+                fix,
+                file,
+                i + 1,
+                0.95,
+                regulation,
+                true
+              ));
+            }
+          }
+          if (/localStorage\.setItem\s*\([^)]*(?:email|ssn|password|phone)/i.test(line)) {
+            issues.push(this.createIssue(
+              this.generateIssueId(),
+              "serious",
+              "PII stored in localStorage (unencrypted, persists)",
+              "Use encrypted storage or server-side sessions for PII",
+              file,
+              i + 1,
+              0.9,
+              "GDPR Article 25",
+              false
+            ));
+          }
+          if (/gtag|ga\(|analytics|fbq\(|pixel/i.test(line) && !/consent|cookie.*accepted/i.test(content)) {
+            issues.push(this.createIssue(
+              this.generateIssueId(),
+              "moderate",
+              "Analytics/tracking loaded without checking consent",
+              "Only load analytics after user consents (GDPR, CCPA requirement)",
+              file,
+              i + 1,
+              0.75,
+              "GDPR Article 7",
+              false
+            ));
+          }
+          if (/delete.*user|remove.*account/i.test(line) && !/backup|archive/i.test(line)) {
+            issues.push(this.createIssue(
+              this.generateIssueId(),
+              "low",
+              "User deletion - verify data is fully removed from all systems",
+              "Ensure GDPR right to erasure compliance - remove from backups, logs, third parties",
+              file,
+              i + 1,
+              0.6,
+              "GDPR Article 17",
+              false
+            ));
+          }
         }
+      } catch {
       }
     }
-    this.progress?.aiReview(`${fileName} - privacy compliance analysis`);
-    const aiIssue = {
-      id: this.generateIssueId(),
-      severity: "moderate",
-      issue: `\u{1F9E0} AI Privacy Analysis: ${fileName}`,
-      fix: "See AI analysis below",
-      file: request.file,
-      confidence: 1,
-      autoFixable: false,
-      agent: this.name,
-      effort: "medium",
-      aiPrompt: {
-        system: request.systemPrompt,
-        user: request.userPrompt
-      }
-    };
-    issues.push(aiIssue);
     return issues;
   }
   /**
-   * Legacy pattern-based analysis - now minimal
+   * AI Enhancement for privacy compliance
    */
-  async analyzeFiles(_files, _context) {
-    return [];
+  getAIEnhancementSystemPrompt() {
+    return `You are a privacy compliance expert specializing in GDPR, CCPA, and PCI-DSS.
+Analyze detected issues and code for:
+1. PII handling (encryption, minimization, access controls)
+2. Consent management (cookie banners, tracking consent)
+3. Data retention and right to erasure
+4. Cross-border data transfers
+5. Third-party data sharing
+6. Security measures for personal data
+Output STRICT JSON:
+{
+  "validated": [{
+    "original_issue": "...",
+    "verdict": "TRUE_POSITIVE" | "FALSE_POSITIVE",
+    "confidence": 0-100,
+    "file": "path",
+    "line": 123,
+    "severity": "critical",
+    "regulation": "GDPR Article X / CCPA / PCI-DSS",
+    "risk": "What could happen if not fixed",
+    "fix": "Compliant implementation"
+  }],
+  "additional": [{
+    "issue": "Privacy issue found",
+    "file": "path",
+    "line": 123,
+    "severity": "serious",
+    "regulation": "Regulation reference",
+    "risk": "Compliance risk",
+    "fix": "How to fix"
+  }],
+  "summary": "Overall privacy compliance assessment"
+}`;
   }
 };
@@ -979,6 +1037,46 @@ var AccessibilityAgent = class extends BaseAgent {
     }
     return issues;
   }
+  /**
+   * AI Enhancement for accessibility review
+   */
+  getAIEnhancementSystemPrompt() {
+    return `You are a WCAG 2.1 accessibility expert. Review code for inclusive design.
+Analyze detected issues and code for:
+1. Screen reader compatibility (ARIA labels, roles, live regions)
+2. Keyboard navigation (focus management, tab order, focus trapping)
+3. Color contrast (4.5:1 for text, 3:1 for large text)
+4. Form accessibility (labels, error messages, required fields)
+5. Dynamic content (loading states, announcements, focus management)
+6. Reduced motion support (prefers-reduced-motion)
+7. Touch target sizes (44x44px minimum)
+Output STRICT JSON:
+{
+  "validated": [{
+    "original_issue": "...",
+    "verdict": "TRUE_POSITIVE" | "FALSE_POSITIVE",
+    "confidence": 0-100,
+    "file": "path",
+    "line": 123,
+    "severity": "serious",
+    "wcag_criterion": "WCAG 2.1 - X.X.X Name",
+    "impact": "How this affects users with disabilities",
+    "fix": "Accessible code fix"
+  }],
+  "additional": [{
+    "issue": "Accessibility issue found",
+    "file": "path",
+    "line": 123,
+    "severity": "moderate",
+    "wcag_criterion": "WCAG criterion",
+    "impact": "User impact",
+    "fix": "Accessible implementation"
+  }],
+  "summary": "Overall accessibility assessment"
+}`;
+  }
 };
 // src/agents/design-engineer.ts
@@ -1381,6 +1479,43 @@ var DesignEngineerAgent = class extends BaseAgent {
     }
     return issues;
   }
+  /**
+   * AI Enhancement for design review
+   */
+  getAIEnhancementSystemPrompt() {
+    return `You are an award-winning design engineer from a top creative agency. You review code for Awwwards-level polish.
+Analyze detected issues and code for:
+1. Design system consistency (tokens, spacing scales, color systems)
+2. Motion design quality (easing curves, choreography, performance)
+3. Visual hierarchy and typography systems
+4. Creative CSS techniques (gradients, masks, blend modes, clip-paths)
+5. Modern CSS features (container queries, :has(), subgrid)
+6. Responsive design patterns (fluid typography, aspect ratios)
+Output STRICT JSON:
+{
+  "validated": [{
+    "original_issue": "...",
+    "verdict": "TRUE_POSITIVE" | "FALSE_POSITIVE",
+    "confidence": 0-100,
+    "file": "path",
+    "line": 123,
+    "severity": "moderate",
+    "design_impact": "Why this hurts the user experience",
+    "fix": "Creative CSS fix with code example"
+  }],
+  "additional": [{
+    "issue": "Design opportunity found",
+    "file": "path",
+    "line": 123,
+    "severity": "low",
+    "enhancement": "How to elevate this to award-winning quality",
+    "fix": "Modern CSS/animation code"
+  }],
+  "summary": "Overall design craft assessment"
+}`;
+  }
 };
 // src/agents/legal.ts
@@ -1524,7 +1659,7 @@ var LegalAgent = class extends BaseAgent {
 };
 // src/agents/test.ts
-import { basename as basename2, dirname } from "path";
+import { basename, dirname } from "path";
 import { existsSync } from "fs";
 var TestAgent = class extends BaseAgent {
   name = "test";
@@ -1551,7 +1686,7 @@ var TestAgent = class extends BaseAgent {
   }
   checkTestCoverage(file, content, _context) {
     const issues = [];
-    const fileName = basename2(file);
+    const fileName = basename(file);
     const fileDir = dirname(file);
     const testPatterns = [
       file.replace(/\.(ts|js|tsx|jsx)$/, ".test.$1"),
@@ -1831,6 +1966,46 @@ var SoftwareArchitectAgent = class extends BaseAgent {
     }
     return issues;
   }
+  /**
+   * AI Enhancement for architecture review
+   */
+  getAIEnhancementSystemPrompt() {
+    return `You are a senior software architect reviewing code for scalability, maintainability, and best practices.
+Analyze detected issues and code for:
+1. SOLID principles violations
+2. Separation of concerns (UI, API, data layers)
+3. N+1 queries and database optimization
+4. Dependency injection and testability
+5. Error handling and resilience patterns
+6. Caching and performance considerations
+7. Circular dependencies and coupling
+Output STRICT JSON:
+{
+  "validated": [{
+    "original_issue": "...",
+    "verdict": "TRUE_POSITIVE" | "FALSE_POSITIVE",
+    "confidence": 0-100,
+    "file": "path",
+    "line": 123,
+    "severity": "serious",
+    "principle": "SOLID / DRY / YAGNI / etc",
+    "impact": "How this affects scalability/maintainability",
+    "fix": "Architectural fix with code example"
+  }],
+  "additional": [{
+    "issue": "Architecture issue found",
+    "file": "path",
+    "line": 123,
+    "severity": "moderate",
+    "principle": "Violated principle",
+    "impact": "Technical debt impact",
+    "fix": "Refactoring approach"
+  }],
+  "summary": "Overall architecture assessment"
+}`;
+  }
 };
 // src/agents/devops.ts
@@ -1996,6 +2171,46 @@ var DevOpsAgent = class extends BaseAgent {
     }
     return issues;
   }
+  /**
+   * AI Enhancement for DevOps review
+   */
+  getAIEnhancementSystemPrompt() {
+    return `You are a DevOps engineer reviewing code for production readiness.
+Analyze detected issues and code for:
+1. Environment configuration (dev/staging/prod)
+2. Logging and observability (structured logs, metrics)
+3. Error handling and graceful degradation
+4. Resource management (connections, memory, timeouts)
+5. Deployment patterns (health checks, graceful shutdown)
+6. CI/CD concerns (test coverage, build optimization)
+7. Secrets management
+Output STRICT JSON:
+{
+  "validated": [{
+    "original_issue": "...",
+    "verdict": "TRUE_POSITIVE" | "FALSE_POSITIVE",
+    "confidence": 0-100,
+    "file": "path",
+    "line": 123,
+    "severity": "serious",
+    "category": "logging | config | deployment | etc",
+    "production_risk": "What could go wrong in prod",
+    "fix": "DevOps best practice fix"
+  }],
+  "additional": [{
+    "issue": "DevOps issue found",
+    "file": "path",
+    "line": 123,
+    "severity": "moderate",
+    "category": "Issue category",
+    "production_risk": "Risk description",
+    "fix": "Implementation"
+  }],
+  "summary": "Production readiness assessment"
+}`;
+  }
 };
 // src/agents/bug-finding.ts
@@ -2956,6 +3171,44 @@ var SOC2Agent = class extends BaseAgent {
     };
     return fixes[category] || "Review and fix according to SOC 2 requirements.";
   }
+  /**
+   * AI Enhancement for SOC 2 compliance
+   */
+  getAIEnhancementSystemPrompt() {
+    return `You are a SOC 2 compliance auditor reviewing code for Trust Services Criteria violations.
+Analyze detected issues for SOC 2 compliance:
+1. Security (CC6): Access controls, encryption, vulnerability management
+2. Availability (CC7): System operations, incident response
+3. Processing Integrity (CC8): Data accuracy, completeness
+4. Confidentiality (CC9): Data classification, access restrictions
+5. Privacy (P1-P8): GDPR-aligned privacy controls
+Output STRICT JSON:
+{
+  "validated": [{
+    "original_issue": "...",
+    "verdict": "TRUE_POSITIVE" | "FALSE_POSITIVE",
+    "confidence": 0-100,
+    "file": "path",
+    "line": 123,
+    "severity": "critical",
+    "soc2_criteria": "CC6.1 / CC7.2 / etc",
+    "audit_risk": "What an auditor would flag",
+    "fix": "Compliant implementation"
+  }],
+  "additional": [{
+    "issue": "Compliance gap found",
+    "file": "path",
+    "line": 123,
+    "severity": "serious",
+    "soc2_criteria": "SOC 2 criteria",
+    "audit_risk": "Audit finding risk",
+    "fix": "Remediation steps"
+  }],
+  "summary": "SOC 2 audit readiness assessment"
+}`;
+  }
 };
 // src/agents/super-reviewer.ts
@@ -4638,14 +4891,14 @@ function getAgentRegistry() {
 // src/tools/scan.ts
 import { readFile as readFile7, readdir as readdir3 } from "fs/promises";
 import { existsSync as existsSync4 } from "fs";
-import { basename as basename8, isAbsolute, resolve, join as join4, extname as extname4 } from "path";
+import { basename as basename7, isAbsolute, resolve, join as join4, extname as extname4 } from "path";
 // src/orchestrator/context-analyzer.ts
 import { readFile as readFile2 } from "fs/promises";
 import { parse } from "@babel/parser";
 import traverse from "@babel/traverse";
 import { existsSync as existsSync2 } from "fs";
-import { extname as extname2, basename as basename3 } from "path";
+import { extname as extname2, basename as basename2 } from "path";
 var ContextAnalyzer = class {
   async analyze(files, userContext) {
     const context = {
@@ -4695,7 +4948,7 @@ var ContextAnalyzer = class {
         const lines = content.split("\n").length;
         totalLines += lines;
         if (!file) continue;
-        const fileName = basename3(file).toLowerCase();
+        const fileName = basename2(file).toLowerCase();
         const filePath = file.toLowerCase();
         context.filePatterns.push(fileName);
         if (!context.language) {
@@ -5791,7 +6044,7 @@ var Executor = class {
 // src/analysis/cross-file.ts
 import { readFile as readFile3, readdir as readdir2 } from "fs/promises";
-import { join as join2, extname as extname3, relative, dirname as dirname2, basename as basename4 } from "path";
+import { join as join2, extname as extname3, relative, dirname as dirname2, basename as basename3 } from "path";
 async function buildDependencyGraph(rootDir, maxFiles = 200) {
   const files = /* @__PURE__ */ new Map();
   const issues = [];
@@ -5934,7 +6187,7 @@ function detectCircularDependencies(files) {
           type: "circular-dep",
           severity: "serious",
           files: cycle,
-          description: `Circular dependency: ${cycle.map((f) => basename4(f)).join(" \u2192 ")}`,
+          description: `Circular dependency: ${cycle.map((f) => basename3(f)).join(" \u2192 ")}`,
           suggestion: "Break the cycle by extracting shared code to a separate module"
         });
       }
@@ -5989,7 +6242,7 @@ function detectUnusedExports(files) {
           type: "unused-export",
           severity: "low",
           files: [path],
-          description: `Unused export '${exp.name}' in ${basename4(path)}`,
+          description: `Unused export '${exp.name}' in ${basename3(path)}`,
           suggestion: `Remove the export or ensure it's imported somewhere`
         });
       }
@@ -6001,13 +6254,13 @@ function detectOrphanedFiles(files) {
   const issues = [];
   for (const [path, node] of files) {
     if (node.exports.length === 0 && node.dependents.length === 0) {
-      if (basename4(path).match(/^(index|main|app|server)\./i)) continue;
+      if (basename3(path).match(/^(index|main|app|server)\./i)) continue;
       if (path.includes(".test.") || path.includes(".spec.") || path.includes("__tests__")) continue;
       issues.push({
         type: "orphaned-file",
         severity: "low",
         files: [path],
-        description: `Potentially orphaned file: ${basename4(path)}`,
+        description: `Potentially orphaned file: ${basename3(path)}`,
         suggestion: "Verify this file is needed or remove it"
       });
     }
@@ -6124,7 +6377,7 @@ ${"\u2501".repeat(60)}
   output += `|------|---------|-------------|
 `;
   for (const node of sorted) {
-    output += `| ${basename4(node.relativePath)} | ${node.dependencies.length} | ${node.dependents.length} |
+    output += `| ${basename3(node.relativePath)} | ${node.dependencies.length} | ${node.dependents.length} |
 `;
   }
   return output;
@@ -6132,7 +6385,7 @@ ${"\u2501".repeat(60)}
 // src/analysis/semantic-analyzer.ts
 import { readFile as readFile4 } from "fs/promises";
-import { basename as basename5, relative as relative2 } from "path";
+import { basename as basename4, relative as relative2 } from "path";
 var SemanticAnalyzer = class {
   functions = [];
   routes = [];
@@ -6238,7 +6491,7 @@ var SemanticAnalyzer = class {
         const match = line.match(pattern);
         if (match) {
           const method = match[1].toUpperCase();
-          const path = match[2] || `/${basename5(file).replace(/\.[^.]+$/, "")}`;
+          const path = match[2] || `/${basename4(file).replace(/\.[^.]+$/, "")}`;
           const contextLines = lines.slice(i, Math.min(i + 30, lines.length)).join("\n");
           const hasAuth = /auth|protect|authenticate|session|jwt|bearer/i.test(line + contextLines);
           const accessesBody = /req\.body|request\.json\(\)|formData/i.test(contextLines);
@@ -6452,7 +6705,7 @@ function formatSemanticIssues(issues) {
       const icon = { critical: "\u{1F534}", serious: "\u{1F7E0}", moderate: "\u{1F7E1}", low: "\u{1F535}" }[issue.severity];
       output += `${icon} **${issue.description}**
 `;
-      output += `   \u{1F4CD} \`${basename5(issue.source.file)}:${issue.source.line}\`
+      output += `   \u{1F4CD} \`${basename4(issue.source.file)}:${issue.source.line}\`
 `;
       output += `   \u{1F527} ${issue.fix}
@@ -6468,7 +6721,7 @@ function formatSemanticIssues(issues) {
 }
 // src/analysis/smart-prioritizer.ts
-import { basename as basename6 } from "path";
+import { basename as basename5 } from "path";
 function prioritizeIssues(issues) {
   const { filtered, noiseCount } = filterNoise(issues);
   const deduplicated = deduplicateIssues(filtered);
@@ -6658,7 +6911,7 @@ function generateSummary(critical, important, advisory, noiseCount) {
     for (const issue of critical.slice(0, 5)) {
       summary += `1. **${issue.issue}** - ${issue.reason}
 `;
-      summary += `   \u{1F4CD} \`${basename6(issue.file)}:${issue.line || "?"}\`
+      summary += `   \u{1F4CD} \`${basename5(issue.file)}:${issue.line || "?"}\`
 `;
       summary += `   \u{1F527} ${issue.fix}
@@ -6706,7 +6959,7 @@ function formatPrioritizedResults(result) {
 // src/analysis/attack-surface.ts
 import { readFile as readFile5 } from "fs/promises";
-import { basename as basename7, relative as relative3 } from "path";
+import { basename as basename6, relative as relative3 } from "path";
 var AttackSurfaceAnalyzer = class {
   endpoints = [];
   dataFlows = [];
@@ -6747,7 +7000,7 @@ var AttackSurfaceAnalyzer = class {
         const match = pattern.exec(line);
         if (match) {
           const method = match[1].toUpperCase();
-          const path = match[2] || `/${basename7(file).replace(/\.[^.]+$/, "")}`;
+          const path = match[2] || `/${basename6(file).replace(/\.[^.]+$/, "")}`;
           const contextLines = lines.slice(i, Math.min(i + 50, lines.length)).join("\n");
           const authType = this.detectAuthType(line, contextLines);
           const endpoint = {
@@ -7840,7 +8093,7 @@ var TrieScanTool = class {
       this.progress.startPhase("init", "\u{1F53A} TRIE AGENT - AI-Powered Code Analysis");
       if (!files || !Array.isArray(files) || files.length === 0) {
         const scanDir2 = directory || process.cwd();
-        this.progress.startPhase("discovery", `Discovering files in ${basename8(scanDir2)}...`);
+        this.progress.startPhase("discovery", `Discovering files in ${basename7(scanDir2)}...`);
         files = await this.discoverFiles(scanDir2);
         this.progress.completePhase(`Found ${files.length} files`);
       }
@@ -8178,7 +8431,7 @@ ${snippet}
 `;
         output += `\`\`\`
-Fix the ${issue.issue.toLowerCase()} in ${basename8(issue.file)}${issue.line ? ` at line ${issue.line}` : ""}.
+Fix the ${issue.issue.toLowerCase()} in ${basename7(issue.file)}${issue.line ? ` at line ${issue.line}` : ""}.
 ${issue.fix}
 \`\`\`
@@ -8224,7 +8477,7 @@ ${snippet}
 `;
         output += `\`\`\`
-Fix the ${issue.issue.toLowerCase()} in ${basename8(issue.file)}${issue.line ? ` at line ${issue.line}` : ""}.
+Fix the ${issue.issue.toLowerCase()} in ${basename7(issue.file)}${issue.line ? ` at line ${issue.line}` : ""}.
 ${issue.fix}
 \`\`\`
@@ -9628,4 +9881,4 @@ export {
   getSystemPrompt,
   TrieFixTool
 };
-//# sourceMappingURL=chunk-NZ67PJ6E.js.map
+//# sourceMappingURL=chunk-52RPXHT6.js.map