@vibecheckai/cli 2.5.1 → 2.5.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/README.md +88 -88
- package/dist/autopatch/verified-autopatch.js +10 -10
- package/dist/bundles/index.js +3 -3
- package/dist/bundles/vibecheck-core.js +25799 -0
- package/dist/bundles/vibecheck-security.js +208687 -0
- package/dist/bundles/vibecheck-ship.js +2318 -0
- package/dist/commands/baseline.js +1 -1
- package/dist/commands/cache.js +4 -4
- package/dist/commands/checkpoint.d.ts +1 -1
- package/dist/commands/checkpoint.js +1 -1
- package/dist/commands/doctor.d.ts +1 -1
- package/dist/commands/doctor.js +12 -12
- package/dist/commands/evidence.js +4 -4
- package/dist/commands/evidence.js.map +1 -1
- package/dist/commands/explain.d.ts +1 -1
- package/dist/commands/explain.js +4 -4
- package/dist/commands/fix-consolidated.d.ts +1 -1
- package/dist/commands/fix-consolidated.js +3 -3
- package/dist/commands/init.d.ts +1 -1
- package/dist/commands/init.js +7 -7
- package/dist/commands/launcher.d.ts +1 -1
- package/dist/commands/launcher.js +9 -9
- package/dist/commands/on.d.ts +1 -1
- package/dist/commands/on.js +2 -2
- package/dist/commands/replay.d.ts +1 -1
- package/dist/commands/replay.js +5 -5
- package/dist/commands/scan-consolidated.d.ts +1 -1
- package/dist/commands/scan-consolidated.js +10 -10
- package/dist/commands/scan-secrets.js +5 -5
- package/dist/commands/scan-vulnerabilities-enhanced.d.ts +1 -1
- package/dist/commands/scan-vulnerabilities-enhanced.js +1 -1
- package/dist/commands/scan-vulnerabilities-osv.d.ts +1 -1
- package/dist/commands/scan-vulnerabilities-osv.js +6 -6
- package/dist/commands/scan-vulnerabilities-osv.js.map +1 -1
- package/dist/commands/secrets-allowlist.js +5 -5
- package/dist/commands/secrets-allowlist.js.map +1 -1
- package/dist/commands/ship-consolidated.d.ts +1 -1
- package/dist/commands/ship-consolidated.js +198 -198
- package/dist/commands/stats.d.ts +1 -1
- package/dist/commands/stats.js +5 -5
- package/dist/commands/upgrade.d.ts +1 -1
- package/dist/commands/upgrade.js +2 -2
- package/dist/commands/upgrade.js.map +1 -1
- package/dist/fix/backup.js +1 -1
- package/dist/formatters/sarif-enhanced.js +3 -3
- package/dist/formatters/sarif-enhanced.js.map +1 -1
- package/dist/formatters/sarif-v2.js +17 -17
- package/dist/formatters/sarif-v2.js.map +1 -1
- package/dist/formatters/sarif.js +8 -8
- package/dist/formatters/sarif.js.map +1 -1
- package/dist/index.d.ts +1 -1
- package/dist/index.js +102 -150
- package/dist/index.js.map +1 -1
- package/dist/init/ci-generator.js +29 -29
- package/dist/init/hooks-installer.js +19 -19
- package/dist/mcp/server.js +1 -1
- package/dist/mcp/telemetry.js +2 -2
- package/dist/reality/reality-runner.d.ts +1 -1
- package/dist/reality/reality-runner.js +3 -3
- package/dist/reality/receipt-generator.js +4 -4
- package/dist/runtime/client.js +5 -5
- package/dist/runtime/client.js.map +1 -1
- package/dist/runtime/creds.js +4 -4
- package/dist/runtime/creds.js.map +1 -1
- package/dist/runtime/json-output.js +1 -1
- package/dist/scan/reality-sniff.js +1 -1
- package/dist/truth-pack/index.js +1 -1
- package/dist/ui/frame.js +1 -1
- package/dist/ui.js +1 -1
- package/package.json +9 -11
|
@@ -12,7 +12,7 @@ function generateGitHubActionsWorkflow(config) {
|
|
|
12
12
|
const useSarif = config.output.format === 'sarif' || config.output.sarifUpload;
|
|
13
13
|
const runCompliance = config.scans.compliance.enabled;
|
|
14
14
|
const runSbom = config.scans.sbom?.enabled;
|
|
15
|
-
const workflow = `name:
|
|
15
|
+
const workflow = `name: vibecheck Security Scan
|
|
16
16
|
|
|
17
17
|
on:
|
|
18
18
|
push:
|
|
@@ -27,7 +27,7 @@ permissions:
|
|
|
27
27
|
actions: read
|
|
28
28
|
|
|
29
29
|
jobs:
|
|
30
|
-
|
|
30
|
+
vibecheck-scan:
|
|
31
31
|
name: Security Scan
|
|
32
32
|
runs-on: ubuntu-latest
|
|
33
33
|
steps:
|
|
@@ -47,8 +47,8 @@ jobs:
|
|
|
47
47
|
timeout-minutes: 10
|
|
48
48
|
retry-on-error: true
|
|
49
49
|
|
|
50
|
-
- name: Install
|
|
51
|
-
run: npm install -g
|
|
50
|
+
- name: Install vibecheck CLI
|
|
51
|
+
run: npm install -g vibecheck-cli-tool
|
|
52
52
|
timeout-minutes: 5
|
|
53
53
|
retry-on-error: true
|
|
54
54
|
|
|
@@ -59,7 +59,7 @@ jobs:
|
|
|
59
59
|
MAX_RETRIES=3
|
|
60
60
|
RETRY_COUNT=0
|
|
61
61
|
while [ $RETRY_COUNT -lt $MAX_RETRIES ]; do
|
|
62
|
-
if
|
|
62
|
+
if vibecheck scan:secrets \\
|
|
63
63
|
--path . \\
|
|
64
64
|
--format ${useSarif ? 'sarif' : 'json'} \\
|
|
65
65
|
${useSarif ? '--output secrets-results.sarif' : '--output secrets-results.json'} \\
|
|
@@ -75,7 +75,7 @@ jobs:
|
|
|
75
75
|
echo "Secrets scan failed after $MAX_RETRIES attempts"
|
|
76
76
|
exit 1
|
|
77
77
|
env:
|
|
78
|
-
|
|
78
|
+
VIBECHECK_API_KEY: \${{ secrets.VIBECHECK_API_KEY }}
|
|
79
79
|
timeout-minutes: 10
|
|
80
80
|
# Note: Removed continue-on-error - failures should be visible
|
|
81
81
|
|
|
@@ -86,7 +86,7 @@ jobs:
|
|
|
86
86
|
MAX_RETRIES=3
|
|
87
87
|
RETRY_COUNT=0
|
|
88
88
|
while [ $RETRY_COUNT -lt $MAX_RETRIES ]; do
|
|
89
|
-
if
|
|
89
|
+
if vibecheck scan:vulnerabilities \\
|
|
90
90
|
--path . \\
|
|
91
91
|
--format ${useSarif ? 'sarif' : 'json'} \\
|
|
92
92
|
${useSarif ? '--output vuln-results.sarif' : '--output vuln-results.json'} \\
|
|
@@ -102,44 +102,44 @@ jobs:
|
|
|
102
102
|
echo "Vulnerability scan failed after $MAX_RETRIES attempts"
|
|
103
103
|
exit 1
|
|
104
104
|
env:
|
|
105
|
-
|
|
105
|
+
VIBECHECK_API_KEY: \${{ secrets.VIBECHECK_API_KEY }}
|
|
106
106
|
timeout-minutes: 15
|
|
107
107
|
# Note: Removed continue-on-error - failures should be visible
|
|
108
108
|
${runCompliance ? `
|
|
109
109
|
- name: Run Compliance Scan
|
|
110
110
|
id: compliance
|
|
111
111
|
run: |
|
|
112
|
-
|
|
112
|
+
vibecheck scan:compliance\\
|
|
113
113
|
--path . \\
|
|
114
114
|
--framework ${config.scans.compliance.frameworks?.[0] || 'soc2'} \\
|
|
115
115
|
--format json \\
|
|
116
116
|
--output compliance-results.json \\
|
|
117
117
|
--exit-code
|
|
118
118
|
env:
|
|
119
|
-
|
|
119
|
+
VIBECHECK_API_KEY: \${{ secrets.VIBECHECK_API_KEY }}
|
|
120
120
|
continue-on-error: true
|
|
121
121
|
` : ''}${runSbom ? `
|
|
122
122
|
- name: Generate SBOM
|
|
123
123
|
id: sbom
|
|
124
124
|
run: |
|
|
125
|
-
|
|
125
|
+
vibecheck sbom:generate \\
|
|
126
126
|
--path . \\
|
|
127
127
|
--format cyclonedx \\
|
|
128
128
|
--output sbom.json
|
|
129
129
|
env:
|
|
130
|
-
|
|
130
|
+
VIBECHECK_API_KEY: \${{ secrets.VIBECHECK_API_KEY }}
|
|
131
131
|
# Note: Optional scan - continue-on-error acceptable
|
|
132
132
|
continue-on-error: true
|
|
133
133
|
` : ''}${runSbom ? `
|
|
134
134
|
- name: Generate SBOM
|
|
135
135
|
id: sbom
|
|
136
136
|
run: |
|
|
137
|
-
|
|
137
|
+
vibecheck sbom:generate \\
|
|
138
138
|
--path . \\
|
|
139
139
|
--format cyclonedx \\
|
|
140
140
|
--output sbom.json
|
|
141
141
|
env:
|
|
142
|
-
|
|
142
|
+
VIBECHECK_API_KEY: \${{ secrets.VIBECHECK_API_KEY }}
|
|
143
143
|
# Note: Optional scan - continue-on-error acceptable
|
|
144
144
|
continue-on-error: true
|
|
145
145
|
` : ''}
|
|
@@ -150,7 +150,7 @@ ${runCompliance ? `
|
|
|
150
150
|
MAX_RETRIES=2
|
|
151
151
|
RETRY_COUNT=0
|
|
152
152
|
while [ $RETRY_COUNT -lt $MAX_RETRIES ]; do
|
|
153
|
-
if
|
|
153
|
+
if vibecheck ship \\
|
|
154
154
|
--path . \\
|
|
155
155
|
--format json \\
|
|
156
156
|
--output ship-results.json; then
|
|
@@ -165,7 +165,7 @@ ${runCompliance ? `
|
|
|
165
165
|
echo "Ship check failed after $MAX_RETRIES attempts"
|
|
166
166
|
exit 1
|
|
167
167
|
env:
|
|
168
|
-
|
|
168
|
+
VIBECHECK_API_KEY: \${{ secrets.VIBECHECK_API_KEY }}
|
|
169
169
|
timeout-minutes: 20
|
|
170
170
|
# Note: Removed continue-on-error - ship check failures should be visible
|
|
171
171
|
${useSarif ? `
|
|
@@ -174,7 +174,7 @@ ${useSarif ? `
|
|
|
174
174
|
if: always() && hashFiles('secrets-results.sarif') != ''
|
|
175
175
|
with:
|
|
176
176
|
sarif_file: secrets-results.sarif
|
|
177
|
-
category:
|
|
177
|
+
category: vibecheck-secrets
|
|
178
178
|
continue-on-error: true
|
|
179
179
|
timeout-minutes: 5
|
|
180
180
|
|
|
@@ -183,7 +183,7 @@ ${useSarif ? `
|
|
|
183
183
|
if: always() && hashFiles('vuln-results.sarif') != ''
|
|
184
184
|
with:
|
|
185
185
|
sarif_file: vuln-results.sarif
|
|
186
|
-
category:
|
|
186
|
+
category: vibecheck-vulnerabilities
|
|
187
187
|
continue-on-error: true
|
|
188
188
|
timeout-minutes: 5
|
|
189
189
|
` : ''}
|
|
@@ -191,7 +191,7 @@ ${useSarif ? `
|
|
|
191
191
|
uses: actions/upload-artifact@v4
|
|
192
192
|
if: always()
|
|
193
193
|
with:
|
|
194
|
-
name:
|
|
194
|
+
name: vibecheck-results
|
|
195
195
|
path: |
|
|
196
196
|
*-results.json
|
|
197
197
|
*-results.sarif
|
|
@@ -200,7 +200,7 @@ ${useSarif ? `
|
|
|
200
200
|
|
|
201
201
|
- name: Check Scan Results
|
|
202
202
|
run: |
|
|
203
|
-
echo "===
|
|
203
|
+
echo "=== vibecheck Security Scan Summary ==="
|
|
204
204
|
|
|
205
205
|
if [ -f ship-results.json ]; then
|
|
206
206
|
VERDICT=$(cat ship-results.json | jq -r '.verdict // "unknown"')
|
|
@@ -241,17 +241,17 @@ function generateGitLabCI(config) {
|
|
|
241
241
|
return `stages:
|
|
242
242
|
- security
|
|
243
243
|
|
|
244
|
-
|
|
244
|
+
vibecheck-scan:
|
|
245
245
|
stage: security
|
|
246
246
|
image: node:20-alpine
|
|
247
247
|
before_script:
|
|
248
248
|
- npm ci --ignore-scripts
|
|
249
|
-
- npm install -g
|
|
249
|
+
- npm install -g vibecheck-cli-tool
|
|
250
250
|
script:
|
|
251
|
-
-
|
|
252
|
-
-
|
|
253
|
-
${runCompliance ? ` -
|
|
254
|
-
-
|
|
251
|
+
- vibecheck scan:secrets --path . --format json --output secrets-results.json --exit-code || true
|
|
252
|
+
- vibecheck scan:vulnerabilities --path . --format json --output vuln-results.json --exit-code || true
|
|
253
|
+
${runCompliance ? ` - vibecheck scan:compliance --path . --framework ${config.scans.compliance.frameworks?.[0] || 'soc2'} --format json --output compliance-results.json || true` : ''}
|
|
254
|
+
- vibecheck ship --path . --format json --output ship-results.json
|
|
255
255
|
artifacts:
|
|
256
256
|
paths:
|
|
257
257
|
- "*-results.json"
|
|
@@ -259,7 +259,7 @@ ${runCompliance ? ` - guardrail scan:compliance --path . --framework ${config
|
|
|
259
259
|
sast: secrets-results.json
|
|
260
260
|
expire_in: 30 days
|
|
261
261
|
variables:
|
|
262
|
-
|
|
262
|
+
VIBECHECK_API_KEY: $VIBECHECK_API_KEY
|
|
263
263
|
rules:
|
|
264
264
|
- if: $CI_PIPELINE_SOURCE == "merge_request_event"
|
|
265
265
|
- if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
|
|
@@ -276,7 +276,7 @@ function generateCIWorkflow(options) {
|
|
|
276
276
|
if (!(0, fs_1.existsSync)(workflowDir)) {
|
|
277
277
|
(0, fs_1.mkdirSync)(workflowDir, { recursive: true });
|
|
278
278
|
}
|
|
279
|
-
workflowPath = (0, path_1.join)(workflowDir, '
|
|
279
|
+
workflowPath = (0, path_1.join)(workflowDir, 'vibecheck.yml');
|
|
280
280
|
break;
|
|
281
281
|
}
|
|
282
282
|
case 'gitlab': {
|
|
@@ -290,7 +290,7 @@ function generateCIWorkflow(options) {
|
|
|
290
290
|
if (!(0, fs_1.existsSync)(defaultDir)) {
|
|
291
291
|
(0, fs_1.mkdirSync)(defaultDir, { recursive: true });
|
|
292
292
|
}
|
|
293
|
-
workflowPath = (0, path_1.join)(defaultDir, '
|
|
293
|
+
workflowPath = (0, path_1.join)(defaultDir, 'vibecheck.yml');
|
|
294
294
|
}
|
|
295
295
|
(0, fs_1.writeFileSync)(workflowPath, workflowContent, 'utf-8');
|
|
296
296
|
return {
|
|
@@ -31,39 +31,39 @@ function generatePreCommitScript(config) {
|
|
|
31
31
|
const commands = [];
|
|
32
32
|
if (config.scans.secrets.enabled) {
|
|
33
33
|
const threshold = config.scans.secrets.threshold || 'high';
|
|
34
|
-
commands.push(`
|
|
34
|
+
commands.push(`vibecheck scan:secrets --path . --threshold ${threshold} --exit-code`);
|
|
35
35
|
}
|
|
36
36
|
if (commands.length === 0) {
|
|
37
|
-
commands.push('
|
|
37
|
+
commands.push('vibecheck scan:secrets --path . --exit-code');
|
|
38
38
|
}
|
|
39
39
|
return `#!/usr/bin/env sh
|
|
40
40
|
. "$(dirname -- "$0")/_/husky.sh"
|
|
41
41
|
|
|
42
|
-
echo "🛡️ Running
|
|
42
|
+
echo "🛡️ Running vibecheck pre-commit checks..."
|
|
43
43
|
|
|
44
44
|
${commands.join('\n\n')}
|
|
45
45
|
|
|
46
|
-
echo "✅
|
|
46
|
+
echo "✅ vibecheck pre-commit checks passed!"
|
|
47
47
|
`;
|
|
48
48
|
}
|
|
49
49
|
function generatePrePushScript(config) {
|
|
50
50
|
const commands = [];
|
|
51
51
|
if (config.scans.secrets.enabled) {
|
|
52
|
-
commands.push('
|
|
52
|
+
commands.push('vibecheck scan:secrets --path . --exit-code');
|
|
53
53
|
}
|
|
54
54
|
if (config.scans.vulnerabilities.enabled) {
|
|
55
55
|
const threshold = config.scans.vulnerabilities.threshold || 'high';
|
|
56
|
-
commands.push(`
|
|
56
|
+
commands.push(`vibecheck scan:vulnerabilities --path . --threshold ${threshold} --exit-code`);
|
|
57
57
|
}
|
|
58
|
-
commands.push('
|
|
58
|
+
commands.push('vibecheck ship --path . --exit-code');
|
|
59
59
|
return `#!/usr/bin/env sh
|
|
60
60
|
. "$(dirname -- "$0")/_/husky.sh"
|
|
61
61
|
|
|
62
|
-
echo "🛡️ Running
|
|
62
|
+
echo "🛡️ Running vibecheck pre-push checks..."
|
|
63
63
|
|
|
64
64
|
${commands.join('\n\n')}
|
|
65
65
|
|
|
66
|
-
echo "✅
|
|
66
|
+
echo "✅ vibecheck pre-push checks passed!"
|
|
67
67
|
`;
|
|
68
68
|
}
|
|
69
69
|
function generateLefthookConfig(config, options) {
|
|
@@ -72,8 +72,8 @@ function generateLefthookConfig(config, options) {
|
|
|
72
72
|
hooks['pre-commit'] = {
|
|
73
73
|
parallel: true,
|
|
74
74
|
commands: {
|
|
75
|
-
'
|
|
76
|
-
run: `
|
|
75
|
+
'vibecheck-secrets': {
|
|
76
|
+
run: `vibecheck scan:secrets --path . --threshold ${config.scans.secrets.threshold || 'high'} --exit-code`,
|
|
77
77
|
stage_fixed: true,
|
|
78
78
|
},
|
|
79
79
|
},
|
|
@@ -82,25 +82,25 @@ function generateLefthookConfig(config, options) {
|
|
|
82
82
|
if (options.prePush !== false) {
|
|
83
83
|
const prePushCommands = {};
|
|
84
84
|
if (config.scans.secrets.enabled) {
|
|
85
|
-
prePushCommands['
|
|
86
|
-
run: '
|
|
85
|
+
prePushCommands['vibecheck-secrets'] = {
|
|
86
|
+
run: 'vibecheck scan:secrets --path . --exit-code',
|
|
87
87
|
};
|
|
88
88
|
}
|
|
89
89
|
if (config.scans.vulnerabilities.enabled) {
|
|
90
|
-
prePushCommands['
|
|
91
|
-
run: `
|
|
90
|
+
prePushCommands['vibecheck-vulns'] = {
|
|
91
|
+
run: `vibecheck scan:vulnerabilities --path . --threshold ${config.scans.vulnerabilities.threshold || 'high'} --exit-code`,
|
|
92
92
|
};
|
|
93
93
|
}
|
|
94
|
-
prePushCommands['
|
|
95
|
-
run: '
|
|
94
|
+
prePushCommands['vibecheck-ship'] = {
|
|
95
|
+
run: 'vibecheck ship --path . --exit-code',
|
|
96
96
|
};
|
|
97
97
|
hooks['pre-push'] = {
|
|
98
98
|
parallel: false,
|
|
99
99
|
commands: prePushCommands,
|
|
100
100
|
};
|
|
101
101
|
}
|
|
102
|
-
return `#
|
|
103
|
-
# Generated by
|
|
102
|
+
return `# vibecheck Git Hooks Configuration
|
|
103
|
+
# Generated by vibecheck init
|
|
104
104
|
# Learn more: https://github.com/evilmartians/lefthook
|
|
105
105
|
|
|
106
106
|
${Object.entries(hooks).map(([hookName, hookConfig]) => {
|
package/dist/mcp/server.js
CHANGED
|
@@ -18,7 +18,7 @@ async function startMCPServer(projectPath, options = {}) {
|
|
|
18
18
|
// The MCP server runs as a separate process
|
|
19
19
|
// We just need to indicate it's ready
|
|
20
20
|
mcpServer = new index_js_1.Server({
|
|
21
|
-
name: '
|
|
21
|
+
name: 'vibecheck-mcp',
|
|
22
22
|
version: '2.0.0',
|
|
23
23
|
}, {
|
|
24
24
|
capabilities: {
|
package/dist/mcp/telemetry.js
CHANGED
|
@@ -16,14 +16,14 @@ const path_1 = require("path");
|
|
|
16
16
|
class TelemetryLogger {
|
|
17
17
|
constructor(projectPath) {
|
|
18
18
|
this.projectPath = projectPath;
|
|
19
|
-
this.telemetryFile = (0, path_1.join)(projectPath, '.
|
|
19
|
+
this.telemetryFile = (0, path_1.join)(projectPath, '.vibecheck', 'telemetry.json');
|
|
20
20
|
}
|
|
21
21
|
/**
|
|
22
22
|
* Log tool call
|
|
23
23
|
*/
|
|
24
24
|
async logToolCall(entry) {
|
|
25
25
|
// Ensure directory exists
|
|
26
|
-
const telemetryDir = (0, path_1.join)(this.projectPath, '.
|
|
26
|
+
const telemetryDir = (0, path_1.join)(this.projectPath, '.vibecheck');
|
|
27
27
|
if (!(0, fs_1.existsSync)(telemetryDir)) {
|
|
28
28
|
(0, fs_1.mkdirSync)(telemetryDir, { recursive: true });
|
|
29
29
|
}
|
|
@@ -3,7 +3,7 @@
|
|
|
3
3
|
*
|
|
4
4
|
* Enterprise-grade execution of generated Playwright tests with:
|
|
5
5
|
* - Dependency detection (Playwright, browsers)
|
|
6
|
-
* - Artifact storage (.
|
|
6
|
+
* - Artifact storage (.vibecheck/reality/<runId>/)
|
|
7
7
|
* - Configurable execution (headless, timeout, workers, reporter)
|
|
8
8
|
* - Signal handling (Ctrl+C, timeout kill)
|
|
9
9
|
*/
|
|
@@ -4,7 +4,7 @@
|
|
|
4
4
|
*
|
|
5
5
|
* Enterprise-grade execution of generated Playwright tests with:
|
|
6
6
|
* - Dependency detection (Playwright, browsers)
|
|
7
|
-
* - Artifact storage (.
|
|
7
|
+
* - Artifact storage (.vibecheck/reality/<runId>/)
|
|
8
8
|
* - Configurable execution (headless, timeout, workers, reporter)
|
|
9
9
|
* - Signal handling (Ctrl+C, timeout kill)
|
|
10
10
|
*/
|
|
@@ -170,7 +170,7 @@ function buildPlaywrightArgs(options) {
|
|
|
170
170
|
*/
|
|
171
171
|
function createArtifactDirectory(projectPath, flow) {
|
|
172
172
|
const runId = `${flow}-${Date.now()}-${(0, crypto_1.randomUUID)().slice(0, 8)}`;
|
|
173
|
-
const artifactDir = (0, path_1.join)(projectPath, '.
|
|
173
|
+
const artifactDir = (0, path_1.join)(projectPath, '.vibecheck', 'reality', runId);
|
|
174
174
|
const screenshotsDir = (0, path_1.join)(artifactDir, 'screenshots');
|
|
175
175
|
const reportDir = (0, path_1.join)(artifactDir, 'report');
|
|
176
176
|
(0, fs_1.mkdirSync)(artifactDir, { recursive: true });
|
|
@@ -419,7 +419,7 @@ function copyHtmlReportIfExists(projectPath, artifacts) {
|
|
|
419
419
|
const possibleReportPaths = [
|
|
420
420
|
(0, path_1.join)(projectPath, 'playwright-report'),
|
|
421
421
|
(0, path_1.join)((0, path_1.dirname)(artifacts.testFilePath), 'playwright-report'),
|
|
422
|
-
(0, path_1.join)(projectPath, '.
|
|
422
|
+
(0, path_1.join)(projectPath, '.vibecheck', 'reality-tests', 'playwright-report'),
|
|
423
423
|
];
|
|
424
424
|
for (const reportPath of possibleReportPaths) {
|
|
425
425
|
if ((0, fs_1.existsSync)(reportPath) && (0, fs_1.existsSync)((0, path_1.join)(reportPath, 'index.html'))) {
|
|
@@ -200,7 +200,7 @@ function signReceipt(receiptContent, orgKeyId, orgPrivateKey) {
|
|
|
200
200
|
}
|
|
201
201
|
}
|
|
202
202
|
// Fallback to HMAC with org key ID
|
|
203
|
-
const key = process.env.
|
|
203
|
+
const key = process.env.VIBECHECK_ORG_KEY || `org-${orgKeyId}`;
|
|
204
204
|
const signature = crypto.createHmac('sha256', key).update(receiptContent).digest('hex');
|
|
205
205
|
return { signature, algorithm: 'HMAC-SHA256' };
|
|
206
206
|
}
|
|
@@ -208,7 +208,7 @@ function signReceipt(receiptContent, orgKeyId, orgPrivateKey) {
|
|
|
208
208
|
* Generate Proof-of-Execution Receipt
|
|
209
209
|
*/
|
|
210
210
|
async function generateReceipt(options) {
|
|
211
|
-
const receiptDir = path.join(options.projectPath, '.
|
|
211
|
+
const receiptDir = path.join(options.projectPath, '.vibecheck', 'receipts', options.runId);
|
|
212
212
|
fs.mkdirSync(receiptDir, { recursive: true });
|
|
213
213
|
const timestamp = new Date().toISOString();
|
|
214
214
|
const gitInfo = getGitInfo(options.projectPath);
|
|
@@ -280,7 +280,7 @@ async function generateReceipt(options) {
|
|
|
280
280
|
} : undefined;
|
|
281
281
|
// Build receipt bundle
|
|
282
282
|
const receipt = {
|
|
283
|
-
schemaVersion: '
|
|
283
|
+
schemaVersion: 'vibecheck.receipt.v1',
|
|
284
284
|
receiptId: `receipt-${options.runId}-${Date.now()}`,
|
|
285
285
|
verdict: options.verdict,
|
|
286
286
|
timestamp,
|
|
@@ -409,7 +409,7 @@ async function verifyReceipt(receiptPath, orgPublicKey) {
|
|
|
409
409
|
}
|
|
410
410
|
else {
|
|
411
411
|
// HMAC verification
|
|
412
|
-
const key = process.env.
|
|
412
|
+
const key = process.env.VIBECHECK_ORG_KEY || `org-${receipt.attestation.keyId}`;
|
|
413
413
|
const expectedSignature = crypto.createHmac('sha256', key).update(contentToVerify).digest('hex');
|
|
414
414
|
isValid = storedSignature === expectedSignature;
|
|
415
415
|
}
|
package/dist/runtime/client.js
CHANGED
|
@@ -12,7 +12,7 @@ exports.validateCredentials = validateCredentials;
|
|
|
12
12
|
exports.refreshAccessToken = refreshAccessToken;
|
|
13
13
|
exports.getCacheExpiry = getCacheExpiry;
|
|
14
14
|
const auth_utils_1 = require("./auth-utils");
|
|
15
|
-
const DEFAULT_API_BASE = process.env.
|
|
15
|
+
const DEFAULT_API_BASE = process.env.VIBECHECK_API_BASE_URL || 'https://api.vibecheckai.dev';
|
|
16
16
|
const DEFAULT_TIMEOUT = 10000;
|
|
17
17
|
const DEFAULT_MAX_RETRIES = 3;
|
|
18
18
|
const RETRY_DELAYS = [1000, 2000, 4000]; // Exponential backoff
|
|
@@ -44,7 +44,7 @@ async function validateApiKey(opts) {
|
|
|
44
44
|
method: 'POST',
|
|
45
45
|
headers: {
|
|
46
46
|
'content-type': 'application/json',
|
|
47
|
-
'user-agent': `
|
|
47
|
+
'user-agent': `vibecheck-cli-tool/${clientMeta.version} (${clientMeta.os}; ${clientMeta.arch}; node ${process.version})`,
|
|
48
48
|
'x-client-version': clientMeta.version,
|
|
49
49
|
},
|
|
50
50
|
body: JSON.stringify(requestBody),
|
|
@@ -108,7 +108,7 @@ async function validateApiKey(opts) {
|
|
|
108
108
|
lastError = 'Request timed out';
|
|
109
109
|
}
|
|
110
110
|
else if (err.code === 'ECONNREFUSED' || err.code === 'ENOTFOUND') {
|
|
111
|
-
lastError = 'Unable to reach
|
|
111
|
+
lastError = 'Unable to reach vibecheck API - check your network connection';
|
|
112
112
|
}
|
|
113
113
|
else {
|
|
114
114
|
lastError = `Network error: ${err.message}`;
|
|
@@ -147,7 +147,7 @@ async function validateCredentials(opts) {
|
|
|
147
147
|
headers: {
|
|
148
148
|
'content-type': 'application/json',
|
|
149
149
|
'authorization': `Bearer ${opts.accessToken}`,
|
|
150
|
-
'user-agent': `
|
|
150
|
+
'user-agent': `vibecheck-cli-tool/${clientMeta.version} (node ${process.version})`,
|
|
151
151
|
},
|
|
152
152
|
body: JSON.stringify({ ts: new Date().toISOString() }),
|
|
153
153
|
signal: controller.signal,
|
|
@@ -182,7 +182,7 @@ async function refreshAccessToken(opts) {
|
|
|
182
182
|
method: 'POST',
|
|
183
183
|
headers: {
|
|
184
184
|
'content-type': 'application/json',
|
|
185
|
-
'user-agent': `
|
|
185
|
+
'user-agent': `vibecheck-cli-tool/${getVersion()} (node ${process.version})`,
|
|
186
186
|
},
|
|
187
187
|
body: JSON.stringify({ refreshToken: opts.refreshToken }),
|
|
188
188
|
signal: controller.signal,
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/runtime/client.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;AAwDH,wCA+GC;AAKD,kDAuDC;AAKD,gDA6BC;AAiBD,wCAIC;AAvRD,6CAAiD;AAqCjD,MAAM,gBAAgB,GAAG,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,
|
|
1
|
+
{"version":3,"file":"client.js","sourceRoot":"","sources":["../../src/runtime/client.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;AAwDH,wCA+GC;AAKD,kDAuDC;AAKD,gDA6BC;AAiBD,wCAIC;AAvRD,6CAAiD;AAqCjD,MAAM,gBAAgB,GAAG,OAAO,CAAC,GAAG,CAAC,sBAAsB,IAAI,6BAA6B,CAAC;AAC7F,MAAM,eAAe,GAAG,KAAK,CAAC;AAC9B,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAC9B,MAAM,YAAY,GAAG,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,sBAAsB;AAE/D;;GAEG;AACH,SAAS,KAAK,CAAC,EAAU;IACvB,OAAO,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;AACzD,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,cAAc,CAAC,IAKpC;IACC,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,gBAAgB,CAAC;IACjD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,eAAe,CAAC;IAChD,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,IAAI,mBAAmB,CAAC;IAE1D,MAAM,UAAU,GAAG,IAAA,8BAAiB,GAAE,CAAC;IACvC,MAAM,WAAW,GAAwB;QACvC,MAAM,EAAE,IAAI,CAAC,MAAM;QACnB,MAAM,EAAE,UAAU;KACnB,CAAC;IAEF,IAAI,SAAS,GAAW,eAAe,CAAC;IAExC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,IAAI,UAAU,EAAE,OAAO,EAAE,EAAE,CAAC;QACvD,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,OAAO,CAAC,CAAC;QAEhE,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,uBAAuB,EAAE;gBACzD,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,kBAAkB;oBAClC,YAAY,EAAE,sBAAsB,UAAU,CAAC,OAAO,KAAK,UAAU,CAAC,EAAE,KAAK,UAAU,CAAC,IAAI,UAAU,OAAO,CAAC,OAAO,GAAG;oBACxH,kBAAkB,EAAE,UAAU,CAAC,OAAO;iBACvC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;gBACjC,MAAM,EAAE,UAAU,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;gBACnD,IAAI,YAAoB,CAAC;gBAEzB,IAAI,CAAC;oBACH,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;oBACxC,YAAY,GAAG,SAAS,CAAC,MAAM,IAAI,SAAS,CAAC,OAAO,IAAI,SAAS,CAAC,KAAK,IAAI,QAAQ,GAAG,CAAC,MAAM,EAAE,CAAC;gBAClG,CAAC;gBAAC,MAAM,CAAC;oBACP,YAAY,GAAG,QAAQ,GAAG,CAAC,MAAM,KAAK,GAAG,CAAC,UAAU,EAAE,CAAC;gBACzD,CAAC;gBAED,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAC;gBAC1E,CAAC;gBACD,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,8CAA8C,EAAE,CAAC;gBAC5F,CAAC;gBACD,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;oBACvB,SAAS,GAAG,uCAAuC,CAAC;oBACpD,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;wBACzB,MAAM,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC;wBAC3C,SAAS;oBACX,CAAC;oBACD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC;gBACvD,CAAC;gBACD,IAAI,GAAG,CAAC,MAAM,IAAI,GAAG,EAAE,CAAC;oBACtB,SAAS,GAAG,iBAAiB,YAAY,EAAE,CAAC;oBAC5C,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;wBACzB,MAAM,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC;wBAC3C,SAAS;oBACX,CAAC;oBACD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC;gBACvD,CAAC;gBAED,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC;YAC1D,CAAC;YAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAA0B,CAAC;YAEtD,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;gBACb,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,IAAI,EAAE,MAAM;oBACZ,KAAK,EAAE,IAAI,CAAC,MAAM,IAAI,mBAAmB;iBAC1C,CAAC;YACJ,CAAC;YAED,OAAO;gBACL,EAAE,EAAE,IAAI;gBACR,IAAI,EAAE,IAAI,CAAC,IAAI,IAAI,MAAM;gBACzB,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,YAAY,EAAE,IAAI,CAAC,YAAY;gBAC/B,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,QAAQ,EAAE,IAAI,CAAC,QAAQ;aACxB,CAAC;QAEJ,CAAC;QAAC,OAAO,GAAQ,EAAE,CAAC;YAClB,YAAY,CAAC,SAAS,CAAC,CAAC;YAExB,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;gBAC9B,SAAS,GAAG,mBAAmB,CAAC;YAClC,CAAC;iBAAM,IAAI,GAAG,CAAC,IAAI,KAAK,cAAc,IAAI,GAAG,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;gBACnE,SAAS,GAAG,+DAA+D,CAAC;YAC9E,CAAC;iBAAM,CAAC;gBACN,SAAS,GAAG,kBAAkB,GAAG,CAAC,OAAO,EAAE,CAAC;YAC9C,CAAC;YAED,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;gBACzB,MAAM,KAAK,CAAC,YAAY,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC;gBAC3C,SAAS;YACX,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC;AACvD,CAAC;AAED;;GAEG;AACI,KAAK,UAAU,mBAAmB,CAAC,IAKzC;IACC,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;QACtC,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC;IACvE,CAAC;IAED,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;QAChB,OAAO,cAAc,CAAC;YACpB,MAAM,EAAE,IAAI,CAAC,MAAM;YACnB,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,OAAO,EAAE,IAAI,CAAC,OAAO;SACtB,CAAC,CAAC;IACL,CAAC;IAED,6CAA6C;IAC7C,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,gBAAgB,CAAC;IACjD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,eAAe,CAAC;IAChD,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;IACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,OAAO,CAAC,CAAC;IAEhE,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,IAAA,8BAAiB,GAAE,CAAC;QACvC,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,kBAAkB,EAAE;YACpD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,eAAe,EAAE,UAAU,IAAI,CAAC,WAAW,EAAE;gBAC7C,YAAY,EAAE,sBAAsB,UAAU,CAAC,OAAO,UAAU,OAAO,CAAC,OAAO,GAAG;aACnF;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,CAAC;YACtD,MAAM,EAAE,UAAU,CAAC,MAAM;SAC1B,CAAC,CAAC;QAEH,YAAY,CAAC,SAAS,CAAC,CAAC;QAExB,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,IAAI,GAAG,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC;YAC9E,CAAC;YACD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,cAAc,GAAG,CAAC,MAAM,EAAE,EAAE,CAAC;QACxE,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAsB,CAAC;QAClD,OAAO,EAAE,GAAG,IAAI,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;IAC/B,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,YAAY,CAAC,SAAS,CAAC,CAAC;QACxB,IAAI,GAAG,CAAC,IAAI,KAAK,YAAY,EAAE,CAAC;YAC9B,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC;QACjE,CAAC;QACD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,kBAAkB,GAAG,CAAC,OAAO,EAAE,EAAE,CAAC;IAC7E,CAAC;AACH,CAAC;AAED;;GAEG;AACI,KAAK,UAAU,kBAAkB,CAAC,IAGxC;IACC,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,IAAI,gBAAgB,CAAC;IACjD,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;IACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,eAAe,CAAC,CAAC;IAExE,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,OAAO,iBAAiB,EAAE;YACnD,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,YAAY,EAAE,sBAAsB,UAAU,EAAE,UAAU,OAAO,CAAC,OAAO,GAAG;aAC7E;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,YAAY,EAAE,IAAI,CAAC,YAAY,EAAE,CAAC;YACzD,MAAM,EAAE,UAAU,CAAC,MAAM;SAC1B,CAAC,CAAC;QAEH,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;YACZ,OAAO,EAAE,KAAK,EAAE,mBAAmB,GAAG,CAAC,MAAM,EAAE,EAAE,CAAC;QACpD,CAAC;QAED,OAAO,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;IAC1B,CAAC;IAAC,OAAO,GAAQ,EAAE,CAAC;QAClB,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,OAAO,EAAE,CAAC;IAChC,CAAC;YAAS,CAAC;QACT,YAAY,CAAC,SAAS,CAAC,CAAC;IAC1B,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,UAAU;IACjB,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAAC;QAC1C,OAAO,GAAG,CAAC,OAAO,IAAI,OAAO,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,OAAO,CAAC;IACjB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAgB,cAAc,CAAC,UAAkB,EAAE;IACjD,MAAM,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;IAC1B,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,UAAU,EAAE,GAAG,OAAO,CAAC,CAAC;IACjD,OAAO,MAAM,CAAC,WAAW,EAAE,CAAC;AAC9B,CAAC"}
|
package/dist/runtime/creds.js
CHANGED
|
@@ -53,16 +53,16 @@ const path_1 = __importDefault(require("path"));
|
|
|
53
53
|
const promises_1 = __importDefault(require("fs/promises"));
|
|
54
54
|
const fs_1 = require("fs");
|
|
55
55
|
const crypto_1 = __importDefault(require("crypto"));
|
|
56
|
-
const SERVICE = '
|
|
56
|
+
const SERVICE = 'vibecheck-cli-tool';
|
|
57
57
|
const ACCOUNT = 'default';
|
|
58
58
|
function getConfigDir() {
|
|
59
59
|
if (process.platform === 'win32') {
|
|
60
|
-
return path_1.default.join(process.env.APPDATA || path_1.default.join(os_1.default.homedir(), 'AppData', 'Roaming'), '
|
|
60
|
+
return path_1.default.join(process.env.APPDATA || path_1.default.join(os_1.default.homedir(), 'AppData', 'Roaming'), 'vibecheck');
|
|
61
61
|
}
|
|
62
62
|
if (process.platform === 'darwin') {
|
|
63
|
-
return path_1.default.join(os_1.default.homedir(), 'Library', 'Application Support', '
|
|
63
|
+
return path_1.default.join(os_1.default.homedir(), 'Library', 'Application Support', 'vibecheck');
|
|
64
64
|
}
|
|
65
|
-
return path_1.default.join(process.env.XDG_CONFIG_HOME || path_1.default.join(os_1.default.homedir(), '.config'), '
|
|
65
|
+
return path_1.default.join(process.env.XDG_CONFIG_HOME || path_1.default.join(os_1.default.homedir(), '.config'), 'vibecheck');
|
|
66
66
|
}
|
|
67
67
|
const CONFIG_DIR = getConfigDir();
|
|
68
68
|
const CONFIG_FILE = path_1.default.join(CONFIG_DIR, 'state.json');
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"creds.js","sourceRoot":"","sources":["../../src/runtime/creds.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAyGH,sCAwBC;AAMD,sCAuBC;AAKD,wCAUC;AAMD,oCAmBC;AAMD,kEAoBC;AAKD,sCAEC;AArOD,4CAAoB;AACpB,gDAAwB;AACxB,2DAA6B;AAC7B,2BAAgC;AAChC,oDAA4B;AAiB5B,MAAM,OAAO,GAAG,
|
|
1
|
+
{"version":3,"file":"creds.js","sourceRoot":"","sources":["../../src/runtime/creds.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAyGH,sCAwBC;AAMD,sCAuBC;AAKD,wCAUC;AAMD,oCAmBC;AAMD,kEAoBC;AAKD,sCAEC;AArOD,4CAAoB;AACpB,gDAAwB;AACxB,2DAA6B;AAC7B,2BAAgC;AAChC,oDAA4B;AAiB5B,MAAM,OAAO,GAAG,oBAAoB,CAAC;AACrC,MAAM,OAAO,GAAG,SAAS,CAAC;AAE1B,SAAS,YAAY;IACnB,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QACjC,OAAO,cAAI,CAAC,IAAI,CACd,OAAO,CAAC,GAAG,CAAC,OAAO,IAAI,cAAI,CAAC,IAAI,CAAC,YAAE,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,SAAS,CAAC,EACpE,WAAW,CACZ,CAAC;IACJ,CAAC;IACD,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAClC,OAAO,cAAI,CAAC,IAAI,CAAC,YAAE,CAAC,OAAO,EAAE,EAAE,SAAS,EAAE,qBAAqB,EAAE,WAAW,CAAC,CAAC;IAChF,CAAC;IACD,OAAO,cAAI,CAAC,IAAI,CACd,OAAO,CAAC,GAAG,CAAC,eAAe,IAAI,cAAI,CAAC,IAAI,CAAC,YAAE,CAAC,OAAO,EAAE,EAAE,SAAS,CAAC,EACjE,WAAW,CACZ,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,GAAG,YAAY,EAAE,CAAC;AAClC,MAAM,WAAW,GAAG,cAAI,CAAC,IAAI,CAAC,UAAU,EAAE,YAAY,CAAC,CAAC;AAExD;;;GAGG;AACH,KAAK,UAAU,SAAS;IACtB,IAAI,CAAC;QACH,OAAO,OAAO,CAAC,QAAQ,CAAC,CAAC;IAC3B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,WAAW,CAAC,QAAgB,EAAE,IAAY;IACvD,MAAM,kBAAE,CAAC,KAAK,CAAC,cAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACzE,MAAM,GAAG,GAAG,GAAG,QAAQ,IAAI,gBAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC;IAEvE,sCAAsC;IACtC,MAAM,kBAAE,CAAC,SAAS,CAAC,GAAG,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IAEjE,wBAAwB;IACxB,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QACjC,qCAAqC;QACrC,MAAM,kBAAE,CAAC,KAAK,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;IAC7B,CAAC;SAAM,CAAC;QACN,uDAAuD;QACvD,uEAAuE;QACvE,IAAI,CAAC;YACH,MAAM,EAAE,IAAI,EAAE,GAAG,wDAAa,eAAe,GAAC,CAAC;YAC/C,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,IAAI,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC;YAC1D,IAAI,QAAQ,EAAE,CAAC;gBACb,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,EAAE;oBAClC,IAAI,CACF,WAAW,GAAG,8BAA8B,QAAQ,KAAK,EACzD,EAAE,WAAW,EAAE,IAAI,EAAE,EACrB,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC,gBAAgB;qBACjC,CAAC;gBACJ,CAAC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,sDAAsD;QACxD,CAAC;IACH,CAAC;IAED,MAAM,kBAAE,CAAC,MAAM,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAE/B,oCAAoC;IACpC,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QACjC,MAAM,kBAAE,CAAC,KAAK,CAAC,cAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC;IAChE,CAAC;AACH,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,aAAa;IACjC,IAAI,CAAC;QACH,IAAI,CAAC,IAAA,eAAU,EAAC,WAAW,CAAC;YAAE,OAAO,EAAE,CAAC;QACxC,MAAM,GAAG,GAAG,MAAM,kBAAE,CAAC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC,CAAC;QACnD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAc,CAAC;QAE3C,qDAAqD;QACrD,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;QACjC,IAAI,MAAM,EAAE,CAAC;YACX,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;gBAC1D,IAAI,MAAM,EAAE,CAAC;oBACX,MAAM,YAAY,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAuB,CAAC;oBAC9D,OAAO,EAAE,GAAG,KAAK,EAAE,GAAG,YAAY,EAAE,CAAC;gBACvC,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,yCAAyC;YAC3C,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,aAAa,CAAC,IAAe;IACjD,6CAA6C;IAC7C,MAAM,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,EAAE,GAAG,QAAQ,EAAE,GAAG,IAAI,CAAC;IAEhE,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;IACjC,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,CAAC;YACH,MAAM,aAAa,GAAuB,EAAE,WAAW,EAAE,YAAY,EAAE,MAAM,EAAE,CAAC;YAChF,MAAM,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC,CAAC;QAC5E,CAAC;QAAC,MAAM,CAAC;YACP,iDAAiD;YAChD,QAAsB,CAAC,MAAM,GAAG,MAAM,CAAC;YACvC,QAAsB,CAAC,WAAW,GAAG,WAAW,CAAC;YACjD,QAAsB,CAAC,YAAY,GAAG,YAAY,CAAC;QACtD,CAAC;IACH,CAAC;SAAM,CAAC;QACN,4DAA4D;QAC3D,QAAsB,CAAC,MAAM,GAAG,MAAM,CAAC;QACvC,QAAsB,CAAC,WAAW,GAAG,WAAW,CAAC;QACjD,QAAsB,CAAC,YAAY,GAAG,YAAY,CAAC;IACtD,CAAC;IAED,MAAM,WAAW,CAAC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;AACpE,CAAC;AAED;;GAEG;AACI,KAAK,UAAU,cAAc;IAClC,MAAM,MAAM,GAAG,MAAM,SAAS,EAAE,CAAC;IACjC,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,cAAc,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAChD,CAAC;QAAC,MAAM,CAAC;YACP,0CAA0C;QAC5C,CAAC;IACH,CAAC;IACD,MAAM,WAAW,CAAC,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;AAC9D,CAAC;AAED;;;GAGG;AACH,SAAgB,YAAY,CAAC,KAAgB;IAC3C,IAAI,CAAC,KAAK,CAAC,IAAI;QAAE,OAAO,KAAK,CAAC;IAE9B,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IAEvB,2BAA2B;IAC3B,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;QACrB,MAAM,WAAW,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAC/C,IAAI,WAAW,IAAI,GAAG;YAAE,OAAO,KAAK,CAAC;IACvC,CAAC;IAED,6BAA6B;IAC7B,IAAI,KAAK,CAAC,SAAS,EAAE,CAAC;QACpB,MAAM,YAAY,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAC/C,IAAI,YAAY,IAAI,GAAG;YAAE,OAAO,KAAK,CAAC;IACxC,CAAC;IAED,kCAAkC;IAClC,OAAO,OAAO,CAAC,KAAK,CAAC,UAAU,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC;AACtD,CAAC;AAED;;;GAGG;AACH,SAAgB,2BAA2B,CAAC,KAAgB;IAC1D,IAAI,CAAC,KAAK,CAAC,IAAI;QAAE,OAAO,KAAK,CAAC;IAE9B,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,kBAAkB,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAEnE,6CAA6C;IAC7C,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;QACrB,MAAM,WAAW,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAC/C,IAAI,WAAW,IAAI,kBAAkB;YAAE,OAAO,KAAK,CAAC;IACtD,CAAC;IAED,+CAA+C;IAC/C,IAAI,KAAK,CAAC,SAAS,EAAE,CAAC;QACpB,MAAM,YAAY,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;QAC/C,IAAI,YAAY,IAAI,kBAAkB;YAAE,OAAO,KAAK,CAAC;IACvD,CAAC;IAED,4CAA4C;IAC5C,OAAO,OAAO,CAAC,KAAK,CAAC,UAAU,IAAI,KAAK,CAAC,SAAS,CAAC,CAAC;AACtD,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa;IAC3B,OAAO,WAAW,CAAC;AACrB,CAAC"}
|
|
@@ -15,7 +15,7 @@ exports.formatGateResults = formatGateResults;
|
|
|
15
15
|
function createJsonOutput(command, success, exitCode, data, error, metadata) {
|
|
16
16
|
return {
|
|
17
17
|
version: '1.0',
|
|
18
|
-
schema: '
|
|
18
|
+
schema: 'vibecheck/v1',
|
|
19
19
|
timestamp: new Date().toISOString(),
|
|
20
20
|
command,
|
|
21
21
|
success,
|
|
@@ -166,7 +166,7 @@ class RealitySniffScanner {
|
|
|
166
166
|
pattern: pattern.source,
|
|
167
167
|
},
|
|
168
168
|
fixGuidance: this.getFixGuidance(type),
|
|
169
|
-
verifyCommand: `
|
|
169
|
+
verifyCommand: `vibecheck verify --id GR-REALITY-${String(this.findingCounter - 1).padStart(3, '0')}`,
|
|
170
170
|
};
|
|
171
171
|
this.findings.push(finding);
|
|
172
172
|
// Update file score
|
package/dist/truth-pack/index.js
CHANGED
|
@@ -10,7 +10,7 @@ exports.TruthPackGenerator = void 0;
|
|
|
10
10
|
const fs_1 = require("fs");
|
|
11
11
|
const path_1 = require("path");
|
|
12
12
|
const child_process_1 = require("child_process");
|
|
13
|
-
const TRUTH_PACK_DIR = '.
|
|
13
|
+
const TRUTH_PACK_DIR = '.vibecheck-context';
|
|
14
14
|
class TruthPackGenerator {
|
|
15
15
|
constructor(projectPath) {
|
|
16
16
|
this.projectPath = (0, path_1.resolve)(projectPath);
|
package/dist/ui/frame.js
CHANGED
package/dist/ui.js
CHANGED
|
@@ -13,7 +13,7 @@ exports.printLogo = printLogo;
|
|
|
13
13
|
// The actual implementations are in index.ts
|
|
14
14
|
function printLogo() {
|
|
15
15
|
// This will be replaced at runtime with the actual implementation
|
|
16
|
-
console.log('
|
|
16
|
+
console.log('vibecheck CLI');
|
|
17
17
|
}
|
|
18
18
|
exports.styles = {
|
|
19
19
|
reset: '\x1b[0m',
|
package/package.json
CHANGED
|
@@ -1,11 +1,11 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@vibecheckai/cli",
|
|
3
|
-
"version": "2.5.
|
|
4
|
-
"description": "
|
|
3
|
+
"version": "2.5.3",
|
|
4
|
+
"description": "Vibecheck CLI - Enterprise security scanning with interactive menu, arrow navigation, and auto-installation",
|
|
5
5
|
"main": "dist/index.js",
|
|
6
6
|
"bin": {
|
|
7
|
-
"
|
|
8
|
-
"
|
|
7
|
+
"vibecheck": "dist/index.js",
|
|
8
|
+
"vc": "dist/index.js"
|
|
9
9
|
},
|
|
10
10
|
"files": [
|
|
11
11
|
"dist/**/*",
|
|
@@ -16,12 +16,10 @@
|
|
|
16
16
|
"build": "node scripts/build.js",
|
|
17
17
|
"dev": "tsx src/index.ts",
|
|
18
18
|
"start": "node dist/index.js",
|
|
19
|
-
"
|
|
19
|
+
"prepare-publish": "node scripts/prepare-publish.js",
|
|
20
|
+
"prepublishOnly": "npm run build && npm run prepare-publish"
|
|
20
21
|
},
|
|
21
22
|
"dependencies": {
|
|
22
|
-
"@guardrail/core": "workspace:*",
|
|
23
|
-
"@guardrail/security": "workspace:*",
|
|
24
|
-
"@guardrail/ship": "workspace:*",
|
|
25
23
|
"chalk": "^5.3.0",
|
|
26
24
|
"commander": "^12.0.0",
|
|
27
25
|
"ora": "^8.0.0",
|
|
@@ -34,7 +32,7 @@
|
|
|
34
32
|
"typescript": "^5.3.0"
|
|
35
33
|
},
|
|
36
34
|
"keywords": [
|
|
37
|
-
"
|
|
35
|
+
"vibecheck",
|
|
38
36
|
"security",
|
|
39
37
|
"cli",
|
|
40
38
|
"scanning",
|
|
@@ -48,8 +46,8 @@
|
|
|
48
46
|
"supply-chain"
|
|
49
47
|
],
|
|
50
48
|
"license": "MIT",
|
|
51
|
-
"author": "
|
|
52
|
-
"homepage": "https://
|
|
49
|
+
"author": "Vibecheck Team <support@vibecheckai.dev>",
|
|
50
|
+
"homepage": "https://vibecheckai.dev",
|
|
53
51
|
"repository": {
|
|
54
52
|
"type": "git",
|
|
55
53
|
"url": "git+https://github.com/guardiavault-oss/codeguard.git"
|