npm - @vibecheckai/cli - Versions diffs - 2.8.2 → 3.0.0 - Mend

@vibecheckai/cli 2.8.2 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (454) hide show

package/README.md +8 -8
package/bin/_deprecations.js +35 -0
package/bin/_router.js +46 -0
package/bin/cli-hygiene.js +241 -0
package/bin/guardrail.js +834 -0
package/bin/runners/cli-utils.js +1070 -0
package/bin/runners/context/ai-task-decomposer.js +337 -0
package/bin/runners/context/analyzer.js +462 -0
package/bin/runners/context/api-contracts.js +427 -0
package/bin/runners/context/context-diff.js +342 -0
package/bin/runners/context/context-pruner.js +291 -0
package/bin/runners/context/dependency-graph.js +414 -0
package/bin/runners/context/generators/claude.js +107 -0
package/bin/runners/context/generators/codex.js +108 -0
package/bin/runners/context/generators/copilot.js +119 -0
package/bin/runners/context/generators/cursor.js +514 -0
package/bin/runners/context/generators/mcp.js +151 -0
package/bin/runners/context/generators/windsurf.js +180 -0
package/bin/runners/context/git-context.js +302 -0
package/bin/runners/context/index.js +1042 -0
package/bin/runners/context/insights.js +173 -0
package/bin/runners/context/mcp-server/generate-rules.js +337 -0
package/bin/runners/context/mcp-server/index.js +1176 -0
package/bin/runners/context/mcp-server/package.json +24 -0
package/bin/runners/context/memory.js +200 -0
package/bin/runners/context/monorepo.js +215 -0
package/bin/runners/context/multi-repo-federation.js +404 -0
package/bin/runners/context/patterns.js +253 -0
package/bin/runners/context/proof-context.js +972 -0
package/bin/runners/context/security-scanner.js +303 -0
package/bin/runners/context/semantic-search.js +350 -0
package/bin/runners/context/shared.js +264 -0
package/bin/runners/context/team-conventions.js +310 -0
package/bin/runners/lib/ai-bridge.js +416 -0
package/bin/runners/lib/analysis-core.js +271 -0
package/bin/runners/lib/analyzers.js +541 -0
package/bin/runners/lib/audit-bridge.js +391 -0
package/bin/runners/lib/auth-truth.js +193 -0
package/bin/runners/lib/auth.js +215 -0
package/bin/runners/lib/backup.js +62 -0
package/bin/runners/lib/billing.js +107 -0
package/bin/runners/lib/claims.js +118 -0
package/bin/runners/lib/cli-ui.js +540 -0
package/bin/runners/lib/compliance-bridge-new.js +0 -0
package/bin/runners/lib/compliance-bridge.js +165 -0
package/bin/runners/lib/contracts/auth-contract.js +194 -0
package/bin/runners/lib/contracts/env-contract.js +178 -0
package/bin/runners/lib/contracts/external-contract.js +198 -0
package/bin/runners/lib/contracts/guard.js +168 -0
package/bin/runners/lib/contracts/index.js +89 -0
package/bin/runners/lib/contracts/plan-validator.js +311 -0
package/bin/runners/lib/contracts/route-contract.js +192 -0
package/bin/runners/lib/detect.js +89 -0
package/bin/runners/lib/doctor/autofix.js +254 -0
package/bin/runners/lib/doctor/index.js +37 -0
package/bin/runners/lib/doctor/modules/dependencies.js +325 -0
package/bin/runners/lib/doctor/modules/index.js +46 -0
package/bin/runners/lib/doctor/modules/network.js +250 -0
package/bin/runners/lib/doctor/modules/project.js +312 -0
package/bin/runners/lib/doctor/modules/runtime.js +224 -0
package/bin/runners/lib/doctor/modules/security.js +348 -0
package/bin/runners/lib/doctor/modules/system.js +213 -0
package/bin/runners/lib/doctor/modules/vibecheck.js +394 -0
package/bin/runners/lib/doctor/reporter.js +262 -0
package/bin/runners/lib/doctor/service.js +262 -0
package/bin/runners/lib/doctor/types.js +113 -0
package/bin/runners/lib/doctor/ui.js +263 -0
package/bin/runners/lib/doctor-enhanced.js +233 -0
package/bin/runners/lib/doctor-v2.js +608 -0
package/bin/runners/lib/enforcement.js +72 -0
package/bin/runners/lib/enterprise-detect.js +603 -0
package/bin/runners/lib/enterprise-init.js +942 -0
package/bin/runners/lib/entitlements-v2.js +381 -0
package/bin/runners/lib/entitlements.generated.js +0 -0
package/bin/runners/lib/entitlements.js +332 -0
package/bin/runners/lib/env-template.js +66 -0
package/bin/runners/lib/env.js +189 -0
package/bin/runners/lib/error-handler.js +320 -0
package/bin/runners/lib/firewall-prompt.js +50 -0
package/bin/runners/lib/graph/graph-builder.js +265 -0
package/bin/runners/lib/graph/html-renderer.js +413 -0
package/bin/runners/lib/graph/index.js +32 -0
package/bin/runners/lib/graph/runtime-collector.js +215 -0
package/bin/runners/lib/graph/static-extractor.js +518 -0
package/bin/runners/lib/init-wizard.js +308 -0
package/bin/runners/lib/json-output.js +76 -0
package/bin/runners/lib/llm.js +75 -0
package/bin/runners/lib/meter.js +61 -0
package/bin/runners/lib/missions/evidence.js +126 -0
package/bin/runners/lib/missions/plan.js +69 -0
package/bin/runners/lib/missions/templates.js +147 -0
package/bin/runners/lib/patch.js +40 -0
package/bin/runners/lib/permissions/auth-model.js +213 -0
package/bin/runners/lib/permissions/idor-prover.js +205 -0
package/bin/runners/lib/permissions/index.js +45 -0
package/bin/runners/lib/permissions/matrix-builder.js +198 -0
package/bin/runners/lib/pkgjson.js +28 -0
package/bin/runners/lib/preflight.js +142 -0
package/bin/runners/lib/reality-findings.js +84 -0
package/bin/runners/lib/redact.js +29 -0
package/bin/runners/lib/replay/capsule-manager.js +154 -0
package/bin/runners/lib/replay/index.js +263 -0
package/bin/runners/lib/replay/player.js +348 -0
package/bin/runners/lib/replay/recorder.js +331 -0
package/bin/runners/lib/report-engine.js +447 -0
package/bin/runners/lib/report-html.js +1117 -0
package/bin/runners/lib/report-templates.js +964 -0
package/bin/runners/lib/route-detection.js +1140 -0
package/bin/runners/lib/route-truth.js +477 -0
package/bin/runners/lib/sandbox/index.js +59 -0
package/bin/runners/lib/sandbox/proof-chain.js +399 -0
package/bin/runners/lib/sandbox/sandbox-runner.js +205 -0
package/bin/runners/lib/sandbox/worktree.js +174 -0
package/bin/runners/lib/scan-cache.js +330 -0
package/bin/runners/lib/scan-output-schema.js +344 -0
package/bin/runners/lib/score-history.js +282 -0
package/bin/runners/lib/security-bridge.js +249 -0
package/bin/runners/lib/server-usage.js +513 -0
package/bin/runners/lib/share-pack.js +239 -0
package/bin/runners/lib/snippets.js +67 -0
package/bin/runners/lib/truth.js +667 -0
package/bin/runners/lib/unified-output.js +189 -0
package/bin/runners/lib/validate-patch.js +156 -0
package/bin/runners/lib/verification.js +345 -0
package/bin/runners/reality/engine.js +917 -0
package/bin/runners/reality/flows.js +122 -0
package/bin/runners/reality/report.js +378 -0
package/bin/runners/reality/session.js +193 -0
package/bin/runners/runAIAgent.js +2 -0
package/bin/runners/runAudit.js +2 -0
package/bin/runners/runAuth.js +106 -0
package/bin/runners/runAutopilot.js +2 -0
package/bin/runners/runBadge.js +2 -0
package/bin/runners/runCertify.js +2 -0
package/bin/runners/runClaimVerifier.js +483 -0
package/bin/runners/runContext.js +56 -0
package/bin/runners/runContextCompiler.js +385 -0
package/bin/runners/runCtx.js +187 -0
package/bin/runners/runCtxGuard.js +176 -0
package/bin/runners/runCtxSync.js +116 -0
package/bin/runners/runDashboard.js +10 -0
package/bin/runners/runDoctor.js +245 -0
package/bin/runners/runEnhancedShip.js +2 -0
package/bin/runners/runFix.js +735 -0
package/bin/runners/runFixPacks.js +2 -0
package/bin/runners/runGate.js +17 -0
package/bin/runners/runGraph.js +283 -0
package/bin/runners/runInit.js +260 -0
package/bin/runners/runInitGha.js +101 -0
package/bin/runners/runInstall.js +76 -0
package/bin/runners/runInteractive.js +388 -0
package/bin/runners/runLaunch.js +2 -0
package/bin/runners/runMcp.js +19 -0
package/bin/runners/runMdc.js +2 -0
package/bin/runners/runMissionGenerator.js +282 -0
package/bin/runners/runNaturalLanguage.js +3 -0
package/bin/runners/runPR.js +96 -0
package/bin/runners/runPermissions.js +290 -0
package/bin/runners/runPromptFirewall.js +211 -0
package/bin/runners/runProof.js +2 -0
package/bin/runners/runProve.js +392 -0
package/bin/runners/runReality.js +489 -0
package/bin/runners/runRealitySniff.js +2 -0
package/bin/runners/runReplay.js +469 -0
package/bin/runners/runReport.js +478 -0
package/bin/runners/runScan.js +835 -0
package/bin/runners/runShare.js +34 -0
package/bin/runners/runShip.js +1062 -0
package/bin/runners/runStatus.js +136 -0
package/bin/runners/runTruthpack.js +634 -0
package/bin/runners/runUpgrade.js +2 -0
package/bin/runners/runValidate.js +2 -0
package/bin/runners/runVerifyAgentOutput.js +2 -0
package/bin/runners/runWatch.js +230 -0
package/bin/runners/utils.js +360 -0
package/bin/scan.js +612 -0
package/bin/vibecheck.js +834 -0
package/package.json +11 -11
package/dist/autopatch/verified-autopatch.d.ts +0 -111
package/dist/autopatch/verified-autopatch.d.ts.map +0 -1
package/dist/autopatch/verified-autopatch.js +0 -503
package/dist/autopatch/verified-autopatch.js.map +0 -1
package/dist/bundles/index.js +0 -8
package/dist/bundles/vibecheck-core.js +0 -25799
package/dist/bundles/vibecheck-security.js +0 -208693
package/dist/bundles/vibecheck-ship.js +0 -2318
package/dist/commands/baseline.d.ts +0 -7
package/dist/commands/baseline.d.ts.map +0 -1
package/dist/commands/baseline.js +0 -79
package/dist/commands/baseline.js.map +0 -1
package/dist/commands/cache.d.ts +0 -13
package/dist/commands/cache.d.ts.map +0 -1
package/dist/commands/cache.js +0 -165
package/dist/commands/cache.js.map +0 -1
package/dist/commands/checkpoint.d.ts +0 -8
package/dist/commands/checkpoint.d.ts.map +0 -1
package/dist/commands/checkpoint.js +0 -35
package/dist/commands/checkpoint.js.map +0 -1
package/dist/commands/doctor.d.ts +0 -17
package/dist/commands/doctor.d.ts.map +0 -1
package/dist/commands/doctor.js +0 -226
package/dist/commands/doctor.js.map +0 -1
package/dist/commands/evidence.d.ts +0 -45
package/dist/commands/evidence.d.ts.map +0 -1
package/dist/commands/evidence.js +0 -197
package/dist/commands/evidence.js.map +0 -1
package/dist/commands/explain.d.ts +0 -8
package/dist/commands/explain.d.ts.map +0 -1
package/dist/commands/explain.js +0 -52
package/dist/commands/explain.js.map +0 -1
package/dist/commands/fix-consolidated.d.ts +0 -19
package/dist/commands/fix-consolidated.d.ts.map +0 -1
package/dist/commands/fix-consolidated.js +0 -165
package/dist/commands/fix-consolidated.js.map +0 -1
package/dist/commands/index.d.ts +0 -8
package/dist/commands/index.d.ts.map +0 -1
package/dist/commands/index.js +0 -15
package/dist/commands/index.js.map +0 -1
package/dist/commands/init.d.ts +0 -8
package/dist/commands/init.d.ts.map +0 -1
package/dist/commands/init.js +0 -125
package/dist/commands/init.js.map +0 -1
package/dist/commands/launcher.d.ts +0 -10
package/dist/commands/launcher.d.ts.map +0 -1
package/dist/commands/launcher.js +0 -174
package/dist/commands/launcher.js.map +0 -1
package/dist/commands/on.d.ts +0 -8
package/dist/commands/on.d.ts.map +0 -1
package/dist/commands/on.js +0 -123
package/dist/commands/on.js.map +0 -1
package/dist/commands/replay.d.ts +0 -8
package/dist/commands/replay.d.ts.map +0 -1
package/dist/commands/replay.js +0 -52
package/dist/commands/replay.js.map +0 -1
package/dist/commands/scan-consolidated.d.ts +0 -61
package/dist/commands/scan-consolidated.d.ts.map +0 -1
package/dist/commands/scan-consolidated.js +0 -243
package/dist/commands/scan-consolidated.js.map +0 -1
package/dist/commands/scan-secrets.d.ts +0 -47
package/dist/commands/scan-secrets.d.ts.map +0 -1
package/dist/commands/scan-secrets.js +0 -225
package/dist/commands/scan-secrets.js.map +0 -1
package/dist/commands/scan-vulnerabilities-enhanced.d.ts +0 -41
package/dist/commands/scan-vulnerabilities-enhanced.d.ts.map +0 -1
package/dist/commands/scan-vulnerabilities-enhanced.js +0 -368
package/dist/commands/scan-vulnerabilities-enhanced.js.map +0 -1
package/dist/commands/scan-vulnerabilities-osv.d.ts +0 -58
package/dist/commands/scan-vulnerabilities-osv.d.ts.map +0 -1
package/dist/commands/scan-vulnerabilities-osv.js +0 -722
package/dist/commands/scan-vulnerabilities-osv.js.map +0 -1
package/dist/commands/scan-vulnerabilities.d.ts +0 -32
package/dist/commands/scan-vulnerabilities.d.ts.map +0 -1
package/dist/commands/scan-vulnerabilities.js +0 -283
package/dist/commands/scan-vulnerabilities.js.map +0 -1
package/dist/commands/secrets-allowlist.d.ts +0 -7
package/dist/commands/secrets-allowlist.d.ts.map +0 -1
package/dist/commands/secrets-allowlist.js +0 -85
package/dist/commands/secrets-allowlist.js.map +0 -1
package/dist/commands/ship-consolidated.d.ts +0 -58
package/dist/commands/ship-consolidated.d.ts.map +0 -1
package/dist/commands/ship-consolidated.js +0 -515
package/dist/commands/ship-consolidated.js.map +0 -1
package/dist/commands/stats.d.ts +0 -8
package/dist/commands/stats.d.ts.map +0 -1
package/dist/commands/stats.js +0 -134
package/dist/commands/stats.js.map +0 -1
package/dist/commands/upgrade.d.ts +0 -8
package/dist/commands/upgrade.d.ts.map +0 -1
package/dist/commands/upgrade.js +0 -30
package/dist/commands/upgrade.js.map +0 -1
package/dist/fix/applicator.d.ts +0 -44
package/dist/fix/applicator.d.ts.map +0 -1
package/dist/fix/applicator.js +0 -144
package/dist/fix/applicator.js.map +0 -1
package/dist/fix/backup.d.ts +0 -38
package/dist/fix/backup.d.ts.map +0 -1
package/dist/fix/backup.js +0 -154
package/dist/fix/backup.js.map +0 -1
package/dist/fix/engine.d.ts +0 -55
package/dist/fix/engine.d.ts.map +0 -1
package/dist/fix/engine.js +0 -285
package/dist/fix/engine.js.map +0 -1
package/dist/fix/index.d.ts +0 -5
package/dist/fix/index.d.ts.map +0 -1
package/dist/fix/index.js +0 -12
package/dist/fix/index.js.map +0 -1
package/dist/fix/interactive.d.ts +0 -22
package/dist/fix/interactive.d.ts.map +0 -1
package/dist/fix/interactive.js +0 -172
package/dist/fix/interactive.js.map +0 -1
package/dist/formatters/index.d.ts +0 -6
package/dist/formatters/index.d.ts.map +0 -1
package/dist/formatters/index.js +0 -11
package/dist/formatters/index.js.map +0 -1
package/dist/formatters/sarif-enhanced.d.ts +0 -78
package/dist/formatters/sarif-enhanced.d.ts.map +0 -1
package/dist/formatters/sarif-enhanced.js +0 -144
package/dist/formatters/sarif-enhanced.js.map +0 -1
package/dist/formatters/sarif-v2.d.ts +0 -121
package/dist/formatters/sarif-v2.d.ts.map +0 -1
package/dist/formatters/sarif-v2.js +0 -356
package/dist/formatters/sarif-v2.js.map +0 -1
package/dist/formatters/sarif.d.ts +0 -72
package/dist/formatters/sarif.d.ts.map +0 -1
package/dist/formatters/sarif.js +0 -146
package/dist/formatters/sarif.js.map +0 -1
package/dist/index.d.ts +0 -61
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -4388
package/dist/index.js.map +0 -1
package/dist/init/ci-generator.d.ts +0 -18
package/dist/init/ci-generator.d.ts.map +0 -1
package/dist/init/ci-generator.js +0 -317
package/dist/init/ci-generator.js.map +0 -1
package/dist/init/detect-framework.d.ts +0 -15
package/dist/init/detect-framework.d.ts.map +0 -1
package/dist/init/detect-framework.js +0 -301
package/dist/init/detect-framework.js.map +0 -1
package/dist/init/hooks-installer.d.ts +0 -22
package/dist/init/hooks-installer.d.ts.map +0 -1
package/dist/init/hooks-installer.js +0 -310
package/dist/init/hooks-installer.js.map +0 -1
package/dist/init/index.d.ts +0 -8
package/dist/init/index.d.ts.map +0 -1
package/dist/init/index.js +0 -22
package/dist/init/index.js.map +0 -1
package/dist/init/templates.d.ts +0 -402
package/dist/init/templates.d.ts.map +0 -1
package/dist/init/templates.js +0 -240
package/dist/init/templates.js.map +0 -1
package/dist/mcp/server.d.ts +0 -12
package/dist/mcp/server.d.ts.map +0 -1
package/dist/mcp/server.js +0 -42
package/dist/mcp/server.js.map +0 -1
package/dist/mcp/telemetry.d.ts +0 -40
package/dist/mcp/telemetry.d.ts.map +0 -1
package/dist/mcp/telemetry.js +0 -98
package/dist/mcp/telemetry.js.map +0 -1
package/dist/reality/no-dead-buttons/button-sweep-generator.d.ts +0 -32
package/dist/reality/no-dead-buttons/button-sweep-generator.d.ts.map +0 -1
package/dist/reality/no-dead-buttons/button-sweep-generator.js +0 -236
package/dist/reality/no-dead-buttons/button-sweep-generator.js.map +0 -1
package/dist/reality/no-dead-buttons/index.d.ts +0 -11
package/dist/reality/no-dead-buttons/index.d.ts.map +0 -1
package/dist/reality/no-dead-buttons/index.js +0 -18
package/dist/reality/no-dead-buttons/index.js.map +0 -1
package/dist/reality/no-dead-buttons/static-scanner.d.ts +0 -34
package/dist/reality/no-dead-buttons/static-scanner.d.ts.map +0 -1
package/dist/reality/no-dead-buttons/static-scanner.js +0 -230
package/dist/reality/no-dead-buttons/static-scanner.js.map +0 -1
package/dist/reality/reality-graph.d.ts +0 -192
package/dist/reality/reality-graph.d.ts.map +0 -1
package/dist/reality/reality-graph.js +0 -600
package/dist/reality/reality-graph.js.map +0 -1
package/dist/reality/reality-runner.d.ts +0 -89
package/dist/reality/reality-runner.d.ts.map +0 -1
package/dist/reality/reality-runner.js +0 -540
package/dist/reality/reality-runner.js.map +0 -1
package/dist/reality/receipt-generator.d.ts +0 -152
package/dist/reality/receipt-generator.d.ts.map +0 -1
package/dist/reality/receipt-generator.js +0 -495
package/dist/reality/receipt-generator.js.map +0 -1
package/dist/reality/runtime-tracer.d.ts +0 -75
package/dist/reality/runtime-tracer.d.ts.map +0 -1
package/dist/reality/runtime-tracer.js +0 -109
package/dist/reality/runtime-tracer.js.map +0 -1
package/dist/runtime/auth-utils.d.ts +0 -43
package/dist/runtime/auth-utils.d.ts.map +0 -1
package/dist/runtime/auth-utils.js +0 -130
package/dist/runtime/auth-utils.js.map +0 -1
package/dist/runtime/client.d.ts +0 -74
package/dist/runtime/client.d.ts.map +0 -1
package/dist/runtime/client.js +0 -222
package/dist/runtime/client.js.map +0 -1
package/dist/runtime/creds.d.ts +0 -48
package/dist/runtime/creds.d.ts.map +0 -1
package/dist/runtime/creds.js +0 -245
package/dist/runtime/creds.js.map +0 -1
package/dist/runtime/exit-codes.d.ts +0 -49
package/dist/runtime/exit-codes.d.ts.map +0 -1
package/dist/runtime/exit-codes.js +0 -93
package/dist/runtime/exit-codes.js.map +0 -1
package/dist/runtime/index.d.ts +0 -9
package/dist/runtime/index.d.ts.map +0 -1
package/dist/runtime/index.js +0 -25
package/dist/runtime/index.js.map +0 -1
package/dist/runtime/json-output.d.ts +0 -42
package/dist/runtime/json-output.d.ts.map +0 -1
package/dist/runtime/json-output.js +0 -59
package/dist/runtime/json-output.js.map +0 -1
package/dist/runtime/semver.d.ts +0 -37
package/dist/runtime/semver.d.ts.map +0 -1
package/dist/runtime/semver.js +0 -110
package/dist/runtime/semver.js.map +0 -1
package/dist/scan/dead-ui-detector.d.ts +0 -48
package/dist/scan/dead-ui-detector.d.ts.map +0 -1
package/dist/scan/dead-ui-detector.js +0 -170
package/dist/scan/dead-ui-detector.js.map +0 -1
package/dist/scan/playwright-sweep.d.ts +0 -40
package/dist/scan/playwright-sweep.d.ts.map +0 -1
package/dist/scan/playwright-sweep.js +0 -216
package/dist/scan/playwright-sweep.js.map +0 -1
package/dist/scan/proof-bundle.d.ts +0 -25
package/dist/scan/proof-bundle.d.ts.map +0 -1
package/dist/scan/proof-bundle.js +0 -203
package/dist/scan/proof-bundle.js.map +0 -1
package/dist/scan/proof-graph.d.ts +0 -59
package/dist/scan/proof-graph.d.ts.map +0 -1
package/dist/scan/proof-graph.js +0 -64
package/dist/scan/proof-graph.js.map +0 -1
package/dist/scan/reality-sniff.d.ts +0 -56
package/dist/scan/reality-sniff.d.ts.map +0 -1
package/dist/scan/reality-sniff.js +0 -200
package/dist/scan/reality-sniff.js.map +0 -1
package/dist/scan/structural-verifier.d.ts +0 -20
package/dist/scan/structural-verifier.d.ts.map +0 -1
package/dist/scan/structural-verifier.js +0 -112
package/dist/scan/structural-verifier.js.map +0 -1
package/dist/scan/verification-engine.d.ts +0 -47
package/dist/scan/verification-engine.d.ts.map +0 -1
package/dist/scan/verification-engine.js +0 -141
package/dist/scan/verification-engine.js.map +0 -1
package/dist/scanner/baseline.d.ts +0 -52
package/dist/scanner/baseline.d.ts.map +0 -1
package/dist/scanner/baseline.js +0 -85
package/dist/scanner/baseline.js.map +0 -1
package/dist/scanner/incremental.d.ts +0 -30
package/dist/scanner/incremental.d.ts.map +0 -1
package/dist/scanner/incremental.js +0 -82
package/dist/scanner/incremental.js.map +0 -1
package/dist/scanner/parallel.d.ts +0 -43
package/dist/scanner/parallel.d.ts.map +0 -1
package/dist/scanner/parallel.js +0 -99
package/dist/scanner/parallel.js.map +0 -1
package/dist/standalone.d.ts +0 -1
package/dist/standalone.d.ts.map +0 -1
package/dist/standalone.js +0 -1
package/dist/standalone.js.map +0 -1
package/dist/truth-pack/index.d.ts +0 -102
package/dist/truth-pack/index.d.ts.map +0 -1
package/dist/truth-pack/index.js +0 -694
package/dist/truth-pack/index.js.map +0 -1
package/dist/ui/frame.d.ts +0 -68
package/dist/ui/frame.d.ts.map +0 -1
package/dist/ui/frame.js +0 -165
package/dist/ui/frame.js.map +0 -1
package/dist/ui/index.d.ts +0 -5
package/dist/ui/index.d.ts.map +0 -1
package/dist/ui/index.js +0 -16
package/dist/ui/index.js.map +0 -1
package/dist/ui.d.ts +0 -36
package/dist/ui.d.ts.map +0 -1
package/dist/ui.js +0 -45
package/dist/ui.js.map +0 -1

package/bin/runners/lib/env-template.js ADDED Viewed

@@ -0,0 +1,66 @@
+// bin/runners/lib/env-template.js
+const fs = require("fs");
+const path = require("path");
+function ensureDir(p) {
+  fs.mkdirSync(p, { recursive: true });
+}
+function pickEnvTemplatePath(root) {
+  const candidates = [".env.template", ".env.example", ".env.sample"];
+  for (const c of candidates) {
+    const abs = path.join(root, c);
+    if (fs.existsSync(abs)) return c;
+  }
+  return ".env.template";
+}
+function normalizeEnvName(n) {
+  return String(n || "").trim();
+}
+function parseDeclaredEnvFromText(text) {
+  const declared = new Set();
+  const lines = String(text || "").split(/\r?\n/);
+  for (const l of lines) {
+    if (!l || l.trim().startsWith("#")) continue;
+    const m = l.match(/^([A-Z0-9_]+)\s*=/);
+    if (m) declared.add(m[1]);
+  }
+  return declared;
+}
+function writeEnvTemplateFromTruthpack(root, truthpack) {
+  const outRel = pickEnvTemplatePath(root);
+  const outAbs = path.join(root, outRel);
+  const used = new Set((truthpack?.env?.vars || []).map(normalizeEnvName).filter(Boolean));
+  let existingText = "";
+  if (fs.existsSync(outAbs)) existingText = fs.readFileSync(outAbs, "utf8");
+  const declared = parseDeclaredEnvFromText(existingText);
+  const missing = Array.from(used).filter((x) => !declared.has(x)).sort();
+  if (!missing.length && fs.existsSync(outAbs)) {
+    return { outRel, wrote: false, added: [] };
+  }
+  const header =
+`# vibecheck env template
+# This file is generated/extended from REAL env usage found in your code.
+# Fill values in your real .env (never commit secrets).
+`;
+  const additions = missing.map((k) => `${k}=\n`).join("");
+  const nextText = (existingText.trim().length ? existingText.trimEnd() + "\n\n" : header) + additions;
+  ensureDir(path.dirname(outAbs));
+  fs.writeFileSync(outAbs, nextText, "utf8");
+  return { outRel, wrote: true, added: missing };
+}
+module.exports = { writeEnvTemplateFromTruthpack };

package/bin/runners/lib/env.js ADDED Viewed

@@ -0,0 +1,189 @@
+// bin/runners/lib/env.js
+const fg = require("fast-glob");
+const fs = require("fs");
+const path = require("path");
+const parser = require("@babel/parser");
+const traverse = require("@babel/traverse").default;
+const t = require("@babel/types");
+const crypto = require("crypto");
+function sha256(text) {
+  return "sha256:" + crypto.createHash("sha256").update(text).digest("hex");
+}
+function parseFile(code) {
+  return parser.parse(code, { sourceType: "unambiguous", plugins: ["typescript", "jsx"] });
+}
+function safeRead(fileAbs) {
+  return fs.readFileSync(fileAbs, "utf8");
+}
+function evidenceFromLoc({ fileAbs, fileRel, loc, reason }) {
+  if (!loc) return null;
+  const lines = safeRead(fileAbs).split(/\r?\n/);
+  const start = Math.max(1, loc.start?.line || 1);
+  const end = Math.max(start, loc.end?.line || start);
+  const snippet = lines.slice(start - 1, end).join("\n");
+  return {
+    id: `ev_${crypto.randomBytes(4).toString("hex")}`,
+    file: fileRel,
+    lines: `${start}-${end}`,
+    snippetHash: sha256(snippet),
+    reason
+  };
+}
+function mergeEvidenceMap(map, name, ev) {
+  map[name] = map[name] || { name, references: [], signals: { hasDefault: false } };
+  if (ev) map[name].references.push(ev);
+}
+function isEnvName(s) {
+  return typeof s === "string" && /^[A-Z0-9_]+$/.test(s);
+}
+function extractEnvFromMemberExpr(node) {
+  if (!t.isMemberExpression(node)) return null;
+  // process.env.NAME
+  if (t.isMemberExpression(node.object) &&
+      t.isIdentifier(node.object.object, { name: "process" }) &&
+      t.isIdentifier(node.object.property, { name: "env" }) &&
+      t.isIdentifier(node.property)) {
+    return node.property.name;
+  }
+  // process.env["NAME"]
+  if (t.isMemberExpression(node.object) &&
+      t.isIdentifier(node.object.object, { name: "process" }) &&
+      t.isIdentifier(node.object.property, { name: "env" }) &&
+      t.isStringLiteral(node.property)) {
+    return node.property.value;
+  }
+  // import.meta.env.NAME
+  if (t.isMemberExpression(node.object) &&
+      t.isMemberExpression(node.object.object) &&
+      t.isIdentifier(node.object.object.object, { name: "import" }) &&
+      t.isIdentifier(node.object.object.property, { name: "meta" }) &&
+      t.isIdentifier(node.object.property, { name: "env" }) &&
+      t.isIdentifier(node.property)) {
+    return node.property.name;
+  }
+  return null;
+}
+function detectDefaultSignals(parentPath) {
+  const p = parentPath?.parentPath;
+  if (!p) return { hasDefault: false };
+  if (p.isLogicalExpression() && (p.node.operator === "||" || p.node.operator === "??")) {
+    return { hasDefault: true };
+  }
+  if (p.isConditionalExpression()) return { hasDefault: true };
+  if (p.isAssignmentExpression() && p.node.operator === "||=") return { hasDefault: true };
+  return { hasDefault: false };
+}
+async function resolveEnvUsage(repoRoot) {
+  const files = await fg(["**/*.{ts,tsx,js,jsx}"], {
+    cwd: repoRoot,
+    absolute: true,
+    ignore: ["**/node_modules/**","**/.next/**","**/dist/**","**/build/**"]
+  });
+  const usageMap = {};
+  for (const fileAbs of files) {
+    const fileRel = path.relative(repoRoot, fileAbs).replace(/\\/g, "/");
+    const code = safeRead(fileAbs);
+    let ast;
+    try { ast = parseFile(code); } catch { continue; }
+    traverse(ast, {
+      MemberExpression(p) {
+        const name = extractEnvFromMemberExpr(p.node);
+        if (!name || !isEnvName(name)) return;
+        const ev = evidenceFromLoc({
+          fileAbs,
+          fileRel,
+          loc: p.node.loc,
+          reason: `Env usage: ${name}`
+        });
+        mergeEvidenceMap(usageMap, name, ev);
+        const sig = detectDefaultSignals(p);
+        if (sig.hasDefault) usageMap[name].signals.hasDefault = true;
+      }
+    });
+  }
+  return usageMap;
+}
+function parseDotEnvLike(content) {
+  const out = new Set();
+  const lines = content.split(/\r?\n/);
+  for (const raw of lines) {
+    const line = raw.trim();
+    if (!line || line.startsWith("#")) continue;
+    const l = line.startsWith("export ") ? line.slice(7).trim() : line;
+    const eq = l.indexOf("=");
+    if (eq <= 0) continue;
+    const key = l.slice(0, eq).trim();
+    if (isEnvName(key)) out.add(key);
+  }
+  return out;
+}
+async function resolveEnvDeclared(repoRoot) {
+  const candidates = [
+    ".env.example", ".env.template", ".env.sample",
+    ".env.local.example", ".env.development.example",
+    ".env"
+  ];
+  const declared = new Set();
+  const sources = [];
+  for (const rel of candidates) {
+    const abs = path.join(repoRoot, rel);
+    if (!fs.existsSync(abs)) continue;
+    const content = safeRead(abs);
+    const keys = parseDotEnvLike(content);
+    if (keys.size) {
+      for (const k of keys) declared.add(k);
+      sources.push(rel);
+    }
+  }
+  return { declared: Array.from(declared).sort(), sources };
+}
+async function buildEnvTruth(repoRoot) {
+  const usageMap = await resolveEnvUsage(repoRoot);
+  const declared = await resolveEnvDeclared(repoRoot);
+  const used = Object.values(usageMap).sort((a, b) => a.name.localeCompare(b.name));
+  const vars = used.map(u => ({
+    name: u.name,
+    required: !u.signals?.hasDefault,
+    references: u.references || [],
+    notes: u.signals?.hasDefault ? "Has default/fallback usage signal" : ""
+  }));
+  return {
+    vars,
+    declared: declared.declared,
+    declaredSources: declared.sources
+  };
+}
+module.exports = { buildEnvTruth };

package/bin/runners/lib/error-handler.js ADDED Viewed

@@ -0,0 +1,320 @@
+/**
+ * Standardized error handling for CLI runners
+ *
+ * Design principles:
+ * - Every error has a human-readable message
+ * - Every error suggests a next step
+ * - Exit codes are consistent and documented
+ */
+const colors = {
+  reset: "\x1b[0m",
+  red: "\x1b[31m",
+  yellow: "\x1b[33m",
+  cyan: "\x1b[36m",
+  green: "\x1b[32m",
+  bold: "\x1b[1m",
+};
+const c = {
+  error: (text) => `${colors.red}${colors.bold}${text}${colors.reset}`,
+  warning: (text) => `${colors.yellow}${text}${colors.reset}`,
+  info: (text) => `${colors.cyan}${text}${colors.reset}`,
+  success: (text) => `${colors.green}${text}${colors.reset}`,
+  dim: (text) => `\x1b[2m${text}${colors.reset}`,
+};
+// Standard exit codes for CI/CD integration
+// Unified with packages/cli/src/runtime/exit-codes.ts
+// IMPORTANT: These codes are part of the CLI contract - do not change without migration guide
+const EXIT_CODES = {
+  SUCCESS: 0,           // Scan passed, no policy violations
+  POLICY_FAIL: 1,       // Findings above threshold (policy fail) - actionable by user
+  USER_ERROR: 2,        // User error: invalid args, bad config, missing required options
+  SYSTEM_ERROR: 3,      // System error: crash, filesystem issues, unexpected exceptions
+  AUTH_FAILURE: 4,      // Auth/entitlement failure: invalid key, expired token, insufficient tier
+  NETWORK_FAILURE: 5,   // Network/backend failure: API unreachable, timeout
+};
+// Error-specific guidance
+const ERROR_GUIDANCE = {
+  ENOENT: {
+    title: "File or directory not found",
+    nextSteps: [
+      "Verify the path exists and is spelled correctly",
+      "Run from the project root directory",
+      "Check if the file was deleted or moved",
+    ],
+  },
+  EACCES: {
+    title: "Permission denied",
+    nextSteps: [
+      "Check file/directory permissions",
+      "Try running with appropriate permissions",
+      "Ensure you own the files or have read access",
+    ],
+  },
+  ECONNREFUSED: {
+    title: "Connection refused",
+    nextSteps: [
+      "Check if the API server is running",
+      "Verify VIBECHECK_API_URL is correct",
+      "Check firewall/network settings",
+    ],
+  },
+  ETIMEDOUT: {
+    title: "Connection timed out",
+    nextSteps: [
+      "Check your internet connection",
+      "The server may be overloaded, try again later",
+      "Increase timeout with --timeout flag if available",
+    ],
+  },
+  INVALID_API_KEY: {
+    title: "Invalid API key",
+    nextSteps: [
+      'Run "vibecheck login" to authenticate',
+      "Get a new API key at https://vibecheckai.dev/settings/keys",
+      "Check VIBECHECK_API_KEY environment variable",
+    ],
+  },
+  PLAN_REQUIRED: {
+    title: "Feature requires a paid plan",
+    nextSteps: [
+      "Upgrade at https://vibecheckai.dev/pricing",
+      'Run "vibecheck upgrade" to manage your subscription',
+      "Some features have free tier limits",
+    ],
+  },
+  RATE_LIMITED: {
+    title: "Rate limit exceeded",
+    nextSteps: [
+      "Wait a moment and try again",
+      "Upgrade your plan for higher limits",
+      "Batch operations to reduce API calls",
+    ],
+  },
+};
+/**
+ * Get guidance for an error
+ */
+function getErrorGuidance(error) {
+  const code = error.code || error.name;
+  // Check for known error types
+  if (ERROR_GUIDANCE[code]) {
+    return ERROR_GUIDANCE[code];
+  }
+  // Infer from error message
+  if (error.message?.includes("API key")) {
+    return ERROR_GUIDANCE.INVALID_API_KEY;
+  }
+  if (error.message?.includes("rate limit")) {
+    return ERROR_GUIDANCE.RATE_LIMITED;
+  }
+  if (error.message?.includes("plan") || error.message?.includes("upgrade")) {
+    return ERROR_GUIDANCE.PLAN_REQUIRED;
+  }
+  return null;
+}
+/**
+ * Handle CLI errors with consistent formatting and guidance
+ * @param {Error|string} error - The error to handle
+ * @param {string} context - Additional context (command name, file path, etc.)
+ * @param {Object} metadata - Additional metadata (command, file, line, receipt, verifyCommand, etc.)
+ */
+function handleError(error, context = "", metadata = {}) {
+  // Ensure error is an Error object
+  const err = error instanceof Error ? error : new Error(String(error));
+  // Build receipt string (file:line or evidence)
+  let receipt = "";
+  if (metadata.file && metadata.line) {
+    receipt = `${metadata.file}:${metadata.line}`;
+  } else if (metadata.file) {
+    receipt = metadata.file;
+  } else if (metadata.receipt) {
+    receipt = metadata.receipt;
+  }
+  // Build enriched context message
+  const contextParts = [context];
+  if (receipt) contextParts.push(`Receipt: ${receipt}`);
+  if (metadata.command && !context.includes(metadata.command)) contextParts.push(`Command: ${metadata.command}`);
+  const enrichedContext = contextParts.filter(Boolean).join(' | ');
+  // Add context to error message if provided
+  const message = enrichedContext ? `${enrichedContext}: ${err.message}` : err.message;
+  // Get specific guidance
+  const guidance = getErrorGuidance(err);
+  // Print error header
+  if (guidance) {
+    console.error(`\n${c.error("✗")} ${c.error(guidance.title)}`);
+    console.error(`  ${message}`);
+    // Print next steps
+    console.error(`\n${c.info("Next steps:")}`);
+    for (const step of guidance.nextSteps) {
+      console.error(`  ${c.dim("•")} ${step}`);
+    }
+  } else {
+    // Generic error handling with specific type detection
+    if (err.code === "ENOENT") {
+      console.error(`\n${c.error("✗")} File or directory not found`);
+      console.error(`  ${err.path || message}`);
+      // Print receipt if available
+      if (receipt) {
+        console.error(`\n${c.dim("Receipt:")} ${receipt}`);
+      }
+      console.error(`\n${c.info("Next steps:")}`);
+      console.error(`  ${c.dim("•")} Verify the path exists`);
+      console.error(`  ${c.dim("•")} Run from the correct directory`);
+      if (metadata.verifyCommand) {
+        console.error(`\n${c.info("Verify it's fixed:")}`);
+        console.error(`  ${c.dim("•")} ${metadata.verifyCommand}`);
+      }
+    } else if (err.code === "EACCES") {
+      console.error(`\n${c.error("✗")} Permission denied`);
+      console.error(`  ${message}`);
+      // Print receipt if available
+      if (receipt) {
+        console.error(`\n${c.dim("Receipt:")} ${receipt}`);
+      }
+      console.error(`\n${c.info("Next steps:")}`);
+      console.error(`  ${c.dim("•")} Check file permissions`);
+      if (metadata.verifyCommand) {
+        console.error(`\n${c.info("Verify it's fixed:")}`);
+        console.error(`  ${c.dim("•")} ${metadata.verifyCommand}`);
+      }
+    } else if (err.name === "AuthenticationError") {
+      console.error(`\n${c.error("✗")} Authentication required`);
+      console.error(`  ${message}`);
+      console.error(`\n${c.info("Next steps:")}`);
+      console.error(`  ${c.dim("•")} Run "vibecheck login" to authenticate`);
+      console.error(`  ${c.dim("•")} Get your API key at https://vibecheckai.dev/settings/keys`);
+    } else if (err.name === "NetworkError" || err.code === "ECONNREFUSED" || err.code === "ETIMEDOUT") {
+      console.error(`\n${c.error("✗")} Network error`);
+      console.error(`  ${message}`);
+      console.error(`\n${c.info("Next steps:")}`);
+      console.error(`  ${c.dim("•")} Check your internet connection`);
+      console.error(`  ${c.dim("•")} Verify VIBECHECK_API_URL is correct`);
+    } else {
+      // Generic error
+      console.error(`\n${c.error("✗")} Error`);
+      console.error(`  ${message}`);
+      // Print receipt if available
+      if (receipt) {
+        console.error(`\n${c.dim("Receipt:")} ${receipt}`);
+      }
+      console.error(`\n${c.info("Need help?")}`);
+      console.error(`  ${c.dim("•")} Run "vibecheck doctor" for diagnostics`);
+      console.error(`  ${c.dim("•")} Visit https://docs.vibecheckai.dev/troubleshooting`);
+      if (metadata.verifyCommand) {
+        console.error(`\n${c.info("Verify it's fixed:")}`);
+        console.error(`  ${c.dim("•")} ${metadata.verifyCommand}`);
+      }
+    }
+  }
+  // Show stack trace in debug mode
+  if (process.env.DEBUG || process.env.VIBECHECK_DEBUG) {
+    console.error(`\n${c.dim("Stack trace:")}`);
+    console.error(c.dim(err.stack));
+  }
+  console.error(""); // Empty line for readability
+}
+/**
+ * Wrap an async function with error handling
+ */
+function withErrorHandling(fn, context = "") {
+  return async (...args) => {
+    try {
+      return await fn(...args);
+    } catch (error) {
+      handleError(error, context);
+      return 1; // Return error exit code
+    }
+  };
+}
+/**
+ * Create a user-friendly error for specific scenarios
+ */
+function createUserError(message, type = "Error") {
+  const error = new Error(message);
+  error.name = type;
+  error.isUserError = true;
+  return error;
+}
+/**
+ * Check if an error should be retried
+ */
+function shouldRetry(error) {
+  // Retry on network errors
+  if (
+    error.code === "ECONNRESET" ||
+    error.code === "ECONNREFUSED" ||
+    error.code === "ETIMEDOUT" ||
+    error.name === "NetworkError"
+  ) {
+    return true;
+  }
+  // Don't retry on user errors
+  if (
+    error.isUserError ||
+    error.name === "ValidationError" ||
+    error.name === "AuthenticationError"
+  ) {
+    return false;
+  }
+  // Default: don't retry
+  return false;
+}
+/**
+ * Retry a function with exponential backoff
+ */
+async function retry(fn, maxAttempts = 3, context = "") {
+  let lastError;
+  for (let attempt = 1; attempt <= maxAttempts; attempt++) {
+    try {
+      return await fn();
+    } catch (error) {
+      lastError = error;
+      if (!shouldRetry(error) || attempt === maxAttempts) {
+        break;
+      }
+      const delay = Math.pow(2, attempt) * 1000; // Exponential backoff
+      console.warn(
+        c.warning(`Attempt ${attempt} failed, retrying in ${delay / 1000}s...`),
+      );
+      await new Promise((resolve) => setTimeout(resolve, delay));
+    }
+  }
+  throw lastError;
+}
+module.exports = {
+  handleError,
+  withErrorHandling,
+  createUserError,
+  shouldRetry,
+  retry,
+  EXIT_CODES,
+  getErrorGuidance,
+};

package/bin/runners/lib/firewall-prompt.js ADDED Viewed

@@ -0,0 +1,50 @@
+// bin/runners/lib/firewall-prompt.js
+function buildRealityFirewall({ truthpackSummary, mission, template, findings, fileSnippets, allowedFiles }) {
+  return `
+You are Guardrail Fix Engine.
+REALITY RULES (non-negotiable):
+- Do NOT invent files, routes, env vars, middleware, or functions.
+- You may ONLY edit files in ALLOWED_FILES.
+- Use ONLY the provided evidence/snippets.
+- If evidence is insufficient, return {"status":"needs_info","questions":[...]} and STOP.
+- Output MUST be valid JSON only. No markdown. No commentary.
+ALLOWED_FILES:
+${JSON.stringify(allowedFiles || [], null, 2)}
+MISSION TEMPLATE (how to fix):
+${JSON.stringify(template || {}, null, 2)}
+OUTPUT SCHEMA (strict):
+{
+  "status": "ok" | "needs_info" | "cannot_fix",
+  "summary": "one sentence",
+  "edits": [
+    {
+      "path": "relative/file/path (must be in ALLOWED_FILES)",
+      "diff": "unified diff starting with ---/+++",
+      "reason": "why this edit fixes the mission"
+    }
+  ],
+  "notes": ["optional"],
+  "questions": ["only when needs_info"]
+}
+TRUTHPACK SUMMARY:
+${JSON.stringify(truthpackSummary, null, 2)}
+MISSION:
+${JSON.stringify(mission, null, 2)}
+TARGET FINDINGS:
+${JSON.stringify(findings, null, 2)}
+EVIDENCE SNIPPETS:
+${JSON.stringify(fileSnippets, null, 2)}
+TASK:
+Produce the smallest correct patch(es) to satisfy the mission success criteria.`;
+}
+module.exports = { buildRealityFirewall };