npm - @vibecheckai/cli - Versions diffs - 2.8.2 → 3.0.0 - Mend

@vibecheckai/cli 2.8.2 → 3.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (454) hide show

package/README.md +8 -8
package/bin/_deprecations.js +35 -0
package/bin/_router.js +46 -0
package/bin/cli-hygiene.js +241 -0
package/bin/guardrail.js +834 -0
package/bin/runners/cli-utils.js +1070 -0
package/bin/runners/context/ai-task-decomposer.js +337 -0
package/bin/runners/context/analyzer.js +462 -0
package/bin/runners/context/api-contracts.js +427 -0
package/bin/runners/context/context-diff.js +342 -0
package/bin/runners/context/context-pruner.js +291 -0
package/bin/runners/context/dependency-graph.js +414 -0
package/bin/runners/context/generators/claude.js +107 -0
package/bin/runners/context/generators/codex.js +108 -0
package/bin/runners/context/generators/copilot.js +119 -0
package/bin/runners/context/generators/cursor.js +514 -0
package/bin/runners/context/generators/mcp.js +151 -0
package/bin/runners/context/generators/windsurf.js +180 -0
package/bin/runners/context/git-context.js +302 -0
package/bin/runners/context/index.js +1042 -0
package/bin/runners/context/insights.js +173 -0
package/bin/runners/context/mcp-server/generate-rules.js +337 -0
package/bin/runners/context/mcp-server/index.js +1176 -0
package/bin/runners/context/mcp-server/package.json +24 -0
package/bin/runners/context/memory.js +200 -0
package/bin/runners/context/monorepo.js +215 -0
package/bin/runners/context/multi-repo-federation.js +404 -0
package/bin/runners/context/patterns.js +253 -0
package/bin/runners/context/proof-context.js +972 -0
package/bin/runners/context/security-scanner.js +303 -0
package/bin/runners/context/semantic-search.js +350 -0
package/bin/runners/context/shared.js +264 -0
package/bin/runners/context/team-conventions.js +310 -0
package/bin/runners/lib/ai-bridge.js +416 -0
package/bin/runners/lib/analysis-core.js +271 -0
package/bin/runners/lib/analyzers.js +541 -0
package/bin/runners/lib/audit-bridge.js +391 -0
package/bin/runners/lib/auth-truth.js +193 -0
package/bin/runners/lib/auth.js +215 -0
package/bin/runners/lib/backup.js +62 -0
package/bin/runners/lib/billing.js +107 -0
package/bin/runners/lib/claims.js +118 -0
package/bin/runners/lib/cli-ui.js +540 -0
package/bin/runners/lib/compliance-bridge-new.js +0 -0
package/bin/runners/lib/compliance-bridge.js +165 -0
package/bin/runners/lib/contracts/auth-contract.js +194 -0
package/bin/runners/lib/contracts/env-contract.js +178 -0
package/bin/runners/lib/contracts/external-contract.js +198 -0
package/bin/runners/lib/contracts/guard.js +168 -0
package/bin/runners/lib/contracts/index.js +89 -0
package/bin/runners/lib/contracts/plan-validator.js +311 -0
package/bin/runners/lib/contracts/route-contract.js +192 -0
package/bin/runners/lib/detect.js +89 -0
package/bin/runners/lib/doctor/autofix.js +254 -0
package/bin/runners/lib/doctor/index.js +37 -0
package/bin/runners/lib/doctor/modules/dependencies.js +325 -0
package/bin/runners/lib/doctor/modules/index.js +46 -0
package/bin/runners/lib/doctor/modules/network.js +250 -0
package/bin/runners/lib/doctor/modules/project.js +312 -0
package/bin/runners/lib/doctor/modules/runtime.js +224 -0
package/bin/runners/lib/doctor/modules/security.js +348 -0
package/bin/runners/lib/doctor/modules/system.js +213 -0
package/bin/runners/lib/doctor/modules/vibecheck.js +394 -0
package/bin/runners/lib/doctor/reporter.js +262 -0
package/bin/runners/lib/doctor/service.js +262 -0
package/bin/runners/lib/doctor/types.js +113 -0
package/bin/runners/lib/doctor/ui.js +263 -0
package/bin/runners/lib/doctor-enhanced.js +233 -0
package/bin/runners/lib/doctor-v2.js +608 -0
package/bin/runners/lib/enforcement.js +72 -0
package/bin/runners/lib/enterprise-detect.js +603 -0
package/bin/runners/lib/enterprise-init.js +942 -0
package/bin/runners/lib/entitlements-v2.js +381 -0
package/bin/runners/lib/entitlements.generated.js +0 -0
package/bin/runners/lib/entitlements.js +332 -0
package/bin/runners/lib/env-template.js +66 -0
package/bin/runners/lib/env.js +189 -0
package/bin/runners/lib/error-handler.js +320 -0
package/bin/runners/lib/firewall-prompt.js +50 -0
package/bin/runners/lib/graph/graph-builder.js +265 -0
package/bin/runners/lib/graph/html-renderer.js +413 -0
package/bin/runners/lib/graph/index.js +32 -0
package/bin/runners/lib/graph/runtime-collector.js +215 -0
package/bin/runners/lib/graph/static-extractor.js +518 -0
package/bin/runners/lib/init-wizard.js +308 -0
package/bin/runners/lib/json-output.js +76 -0
package/bin/runners/lib/llm.js +75 -0
package/bin/runners/lib/meter.js +61 -0
package/bin/runners/lib/missions/evidence.js +126 -0
package/bin/runners/lib/missions/plan.js +69 -0
package/bin/runners/lib/missions/templates.js +147 -0
package/bin/runners/lib/patch.js +40 -0
package/bin/runners/lib/permissions/auth-model.js +213 -0
package/bin/runners/lib/permissions/idor-prover.js +205 -0
package/bin/runners/lib/permissions/index.js +45 -0
package/bin/runners/lib/permissions/matrix-builder.js +198 -0
package/bin/runners/lib/pkgjson.js +28 -0
package/bin/runners/lib/preflight.js +142 -0
package/bin/runners/lib/reality-findings.js +84 -0
package/bin/runners/lib/redact.js +29 -0
package/bin/runners/lib/replay/capsule-manager.js +154 -0
package/bin/runners/lib/replay/index.js +263 -0
package/bin/runners/lib/replay/player.js +348 -0
package/bin/runners/lib/replay/recorder.js +331 -0
package/bin/runners/lib/report-engine.js +447 -0
package/bin/runners/lib/report-html.js +1117 -0
package/bin/runners/lib/report-templates.js +964 -0
package/bin/runners/lib/route-detection.js +1140 -0
package/bin/runners/lib/route-truth.js +477 -0
package/bin/runners/lib/sandbox/index.js +59 -0
package/bin/runners/lib/sandbox/proof-chain.js +399 -0
package/bin/runners/lib/sandbox/sandbox-runner.js +205 -0
package/bin/runners/lib/sandbox/worktree.js +174 -0
package/bin/runners/lib/scan-cache.js +330 -0
package/bin/runners/lib/scan-output-schema.js +344 -0
package/bin/runners/lib/score-history.js +282 -0
package/bin/runners/lib/security-bridge.js +249 -0
package/bin/runners/lib/server-usage.js +513 -0
package/bin/runners/lib/share-pack.js +239 -0
package/bin/runners/lib/snippets.js +67 -0
package/bin/runners/lib/truth.js +667 -0
package/bin/runners/lib/unified-output.js +189 -0
package/bin/runners/lib/validate-patch.js +156 -0
package/bin/runners/lib/verification.js +345 -0
package/bin/runners/reality/engine.js +917 -0
package/bin/runners/reality/flows.js +122 -0
package/bin/runners/reality/report.js +378 -0
package/bin/runners/reality/session.js +193 -0
package/bin/runners/runAIAgent.js +2 -0
package/bin/runners/runAudit.js +2 -0
package/bin/runners/runAuth.js +106 -0
package/bin/runners/runAutopilot.js +2 -0
package/bin/runners/runBadge.js +2 -0
package/bin/runners/runCertify.js +2 -0
package/bin/runners/runClaimVerifier.js +483 -0
package/bin/runners/runContext.js +56 -0
package/bin/runners/runContextCompiler.js +385 -0
package/bin/runners/runCtx.js +187 -0
package/bin/runners/runCtxGuard.js +176 -0
package/bin/runners/runCtxSync.js +116 -0
package/bin/runners/runDashboard.js +10 -0
package/bin/runners/runDoctor.js +245 -0
package/bin/runners/runEnhancedShip.js +2 -0
package/bin/runners/runFix.js +735 -0
package/bin/runners/runFixPacks.js +2 -0
package/bin/runners/runGate.js +17 -0
package/bin/runners/runGraph.js +283 -0
package/bin/runners/runInit.js +260 -0
package/bin/runners/runInitGha.js +101 -0
package/bin/runners/runInstall.js +76 -0
package/bin/runners/runInteractive.js +388 -0
package/bin/runners/runLaunch.js +2 -0
package/bin/runners/runMcp.js +19 -0
package/bin/runners/runMdc.js +2 -0
package/bin/runners/runMissionGenerator.js +282 -0
package/bin/runners/runNaturalLanguage.js +3 -0
package/bin/runners/runPR.js +96 -0
package/bin/runners/runPermissions.js +290 -0
package/bin/runners/runPromptFirewall.js +211 -0
package/bin/runners/runProof.js +2 -0
package/bin/runners/runProve.js +392 -0
package/bin/runners/runReality.js +489 -0
package/bin/runners/runRealitySniff.js +2 -0
package/bin/runners/runReplay.js +469 -0
package/bin/runners/runReport.js +478 -0
package/bin/runners/runScan.js +835 -0
package/bin/runners/runShare.js +34 -0
package/bin/runners/runShip.js +1062 -0
package/bin/runners/runStatus.js +136 -0
package/bin/runners/runTruthpack.js +634 -0
package/bin/runners/runUpgrade.js +2 -0
package/bin/runners/runValidate.js +2 -0
package/bin/runners/runVerifyAgentOutput.js +2 -0
package/bin/runners/runWatch.js +230 -0
package/bin/runners/utils.js +360 -0
package/bin/scan.js +612 -0
package/bin/vibecheck.js +834 -0
package/package.json +11 -11
package/dist/autopatch/verified-autopatch.d.ts +0 -111
package/dist/autopatch/verified-autopatch.d.ts.map +0 -1
package/dist/autopatch/verified-autopatch.js +0 -503
package/dist/autopatch/verified-autopatch.js.map +0 -1
package/dist/bundles/index.js +0 -8
package/dist/bundles/vibecheck-core.js +0 -25799
package/dist/bundles/vibecheck-security.js +0 -208693
package/dist/bundles/vibecheck-ship.js +0 -2318
package/dist/commands/baseline.d.ts +0 -7
package/dist/commands/baseline.d.ts.map +0 -1
package/dist/commands/baseline.js +0 -79
package/dist/commands/baseline.js.map +0 -1
package/dist/commands/cache.d.ts +0 -13
package/dist/commands/cache.d.ts.map +0 -1
package/dist/commands/cache.js +0 -165
package/dist/commands/cache.js.map +0 -1
package/dist/commands/checkpoint.d.ts +0 -8
package/dist/commands/checkpoint.d.ts.map +0 -1
package/dist/commands/checkpoint.js +0 -35
package/dist/commands/checkpoint.js.map +0 -1
package/dist/commands/doctor.d.ts +0 -17
package/dist/commands/doctor.d.ts.map +0 -1
package/dist/commands/doctor.js +0 -226
package/dist/commands/doctor.js.map +0 -1
package/dist/commands/evidence.d.ts +0 -45
package/dist/commands/evidence.d.ts.map +0 -1
package/dist/commands/evidence.js +0 -197
package/dist/commands/evidence.js.map +0 -1
package/dist/commands/explain.d.ts +0 -8
package/dist/commands/explain.d.ts.map +0 -1
package/dist/commands/explain.js +0 -52
package/dist/commands/explain.js.map +0 -1
package/dist/commands/fix-consolidated.d.ts +0 -19
package/dist/commands/fix-consolidated.d.ts.map +0 -1
package/dist/commands/fix-consolidated.js +0 -165
package/dist/commands/fix-consolidated.js.map +0 -1
package/dist/commands/index.d.ts +0 -8
package/dist/commands/index.d.ts.map +0 -1
package/dist/commands/index.js +0 -15
package/dist/commands/index.js.map +0 -1
package/dist/commands/init.d.ts +0 -8
package/dist/commands/init.d.ts.map +0 -1
package/dist/commands/init.js +0 -125
package/dist/commands/init.js.map +0 -1
package/dist/commands/launcher.d.ts +0 -10
package/dist/commands/launcher.d.ts.map +0 -1
package/dist/commands/launcher.js +0 -174
package/dist/commands/launcher.js.map +0 -1
package/dist/commands/on.d.ts +0 -8
package/dist/commands/on.d.ts.map +0 -1
package/dist/commands/on.js +0 -123
package/dist/commands/on.js.map +0 -1
package/dist/commands/replay.d.ts +0 -8
package/dist/commands/replay.d.ts.map +0 -1
package/dist/commands/replay.js +0 -52
package/dist/commands/replay.js.map +0 -1
package/dist/commands/scan-consolidated.d.ts +0 -61
package/dist/commands/scan-consolidated.d.ts.map +0 -1
package/dist/commands/scan-consolidated.js +0 -243
package/dist/commands/scan-consolidated.js.map +0 -1
package/dist/commands/scan-secrets.d.ts +0 -47
package/dist/commands/scan-secrets.d.ts.map +0 -1
package/dist/commands/scan-secrets.js +0 -225
package/dist/commands/scan-secrets.js.map +0 -1
package/dist/commands/scan-vulnerabilities-enhanced.d.ts +0 -41
package/dist/commands/scan-vulnerabilities-enhanced.d.ts.map +0 -1
package/dist/commands/scan-vulnerabilities-enhanced.js +0 -368
package/dist/commands/scan-vulnerabilities-enhanced.js.map +0 -1
package/dist/commands/scan-vulnerabilities-osv.d.ts +0 -58
package/dist/commands/scan-vulnerabilities-osv.d.ts.map +0 -1
package/dist/commands/scan-vulnerabilities-osv.js +0 -722
package/dist/commands/scan-vulnerabilities-osv.js.map +0 -1
package/dist/commands/scan-vulnerabilities.d.ts +0 -32
package/dist/commands/scan-vulnerabilities.d.ts.map +0 -1
package/dist/commands/scan-vulnerabilities.js +0 -283
package/dist/commands/scan-vulnerabilities.js.map +0 -1
package/dist/commands/secrets-allowlist.d.ts +0 -7
package/dist/commands/secrets-allowlist.d.ts.map +0 -1
package/dist/commands/secrets-allowlist.js +0 -85
package/dist/commands/secrets-allowlist.js.map +0 -1
package/dist/commands/ship-consolidated.d.ts +0 -58
package/dist/commands/ship-consolidated.d.ts.map +0 -1
package/dist/commands/ship-consolidated.js +0 -515
package/dist/commands/ship-consolidated.js.map +0 -1
package/dist/commands/stats.d.ts +0 -8
package/dist/commands/stats.d.ts.map +0 -1
package/dist/commands/stats.js +0 -134
package/dist/commands/stats.js.map +0 -1
package/dist/commands/upgrade.d.ts +0 -8
package/dist/commands/upgrade.d.ts.map +0 -1
package/dist/commands/upgrade.js +0 -30
package/dist/commands/upgrade.js.map +0 -1
package/dist/fix/applicator.d.ts +0 -44
package/dist/fix/applicator.d.ts.map +0 -1
package/dist/fix/applicator.js +0 -144
package/dist/fix/applicator.js.map +0 -1
package/dist/fix/backup.d.ts +0 -38
package/dist/fix/backup.d.ts.map +0 -1
package/dist/fix/backup.js +0 -154
package/dist/fix/backup.js.map +0 -1
package/dist/fix/engine.d.ts +0 -55
package/dist/fix/engine.d.ts.map +0 -1
package/dist/fix/engine.js +0 -285
package/dist/fix/engine.js.map +0 -1
package/dist/fix/index.d.ts +0 -5
package/dist/fix/index.d.ts.map +0 -1
package/dist/fix/index.js +0 -12
package/dist/fix/index.js.map +0 -1
package/dist/fix/interactive.d.ts +0 -22
package/dist/fix/interactive.d.ts.map +0 -1
package/dist/fix/interactive.js +0 -172
package/dist/fix/interactive.js.map +0 -1
package/dist/formatters/index.d.ts +0 -6
package/dist/formatters/index.d.ts.map +0 -1
package/dist/formatters/index.js +0 -11
package/dist/formatters/index.js.map +0 -1
package/dist/formatters/sarif-enhanced.d.ts +0 -78
package/dist/formatters/sarif-enhanced.d.ts.map +0 -1
package/dist/formatters/sarif-enhanced.js +0 -144
package/dist/formatters/sarif-enhanced.js.map +0 -1
package/dist/formatters/sarif-v2.d.ts +0 -121
package/dist/formatters/sarif-v2.d.ts.map +0 -1
package/dist/formatters/sarif-v2.js +0 -356
package/dist/formatters/sarif-v2.js.map +0 -1
package/dist/formatters/sarif.d.ts +0 -72
package/dist/formatters/sarif.d.ts.map +0 -1
package/dist/formatters/sarif.js +0 -146
package/dist/formatters/sarif.js.map +0 -1
package/dist/index.d.ts +0 -61
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -4388
package/dist/index.js.map +0 -1
package/dist/init/ci-generator.d.ts +0 -18
package/dist/init/ci-generator.d.ts.map +0 -1
package/dist/init/ci-generator.js +0 -317
package/dist/init/ci-generator.js.map +0 -1
package/dist/init/detect-framework.d.ts +0 -15
package/dist/init/detect-framework.d.ts.map +0 -1
package/dist/init/detect-framework.js +0 -301
package/dist/init/detect-framework.js.map +0 -1
package/dist/init/hooks-installer.d.ts +0 -22
package/dist/init/hooks-installer.d.ts.map +0 -1
package/dist/init/hooks-installer.js +0 -310
package/dist/init/hooks-installer.js.map +0 -1
package/dist/init/index.d.ts +0 -8
package/dist/init/index.d.ts.map +0 -1
package/dist/init/index.js +0 -22
package/dist/init/index.js.map +0 -1
package/dist/init/templates.d.ts +0 -402
package/dist/init/templates.d.ts.map +0 -1
package/dist/init/templates.js +0 -240
package/dist/init/templates.js.map +0 -1
package/dist/mcp/server.d.ts +0 -12
package/dist/mcp/server.d.ts.map +0 -1
package/dist/mcp/server.js +0 -42
package/dist/mcp/server.js.map +0 -1
package/dist/mcp/telemetry.d.ts +0 -40
package/dist/mcp/telemetry.d.ts.map +0 -1
package/dist/mcp/telemetry.js +0 -98
package/dist/mcp/telemetry.js.map +0 -1
package/dist/reality/no-dead-buttons/button-sweep-generator.d.ts +0 -32
package/dist/reality/no-dead-buttons/button-sweep-generator.d.ts.map +0 -1
package/dist/reality/no-dead-buttons/button-sweep-generator.js +0 -236
package/dist/reality/no-dead-buttons/button-sweep-generator.js.map +0 -1
package/dist/reality/no-dead-buttons/index.d.ts +0 -11
package/dist/reality/no-dead-buttons/index.d.ts.map +0 -1
package/dist/reality/no-dead-buttons/index.js +0 -18
package/dist/reality/no-dead-buttons/index.js.map +0 -1
package/dist/reality/no-dead-buttons/static-scanner.d.ts +0 -34
package/dist/reality/no-dead-buttons/static-scanner.d.ts.map +0 -1
package/dist/reality/no-dead-buttons/static-scanner.js +0 -230
package/dist/reality/no-dead-buttons/static-scanner.js.map +0 -1
package/dist/reality/reality-graph.d.ts +0 -192
package/dist/reality/reality-graph.d.ts.map +0 -1
package/dist/reality/reality-graph.js +0 -600
package/dist/reality/reality-graph.js.map +0 -1
package/dist/reality/reality-runner.d.ts +0 -89
package/dist/reality/reality-runner.d.ts.map +0 -1
package/dist/reality/reality-runner.js +0 -540
package/dist/reality/reality-runner.js.map +0 -1
package/dist/reality/receipt-generator.d.ts +0 -152
package/dist/reality/receipt-generator.d.ts.map +0 -1
package/dist/reality/receipt-generator.js +0 -495
package/dist/reality/receipt-generator.js.map +0 -1
package/dist/reality/runtime-tracer.d.ts +0 -75
package/dist/reality/runtime-tracer.d.ts.map +0 -1
package/dist/reality/runtime-tracer.js +0 -109
package/dist/reality/runtime-tracer.js.map +0 -1
package/dist/runtime/auth-utils.d.ts +0 -43
package/dist/runtime/auth-utils.d.ts.map +0 -1
package/dist/runtime/auth-utils.js +0 -130
package/dist/runtime/auth-utils.js.map +0 -1
package/dist/runtime/client.d.ts +0 -74
package/dist/runtime/client.d.ts.map +0 -1
package/dist/runtime/client.js +0 -222
package/dist/runtime/client.js.map +0 -1
package/dist/runtime/creds.d.ts +0 -48
package/dist/runtime/creds.d.ts.map +0 -1
package/dist/runtime/creds.js +0 -245
package/dist/runtime/creds.js.map +0 -1
package/dist/runtime/exit-codes.d.ts +0 -49
package/dist/runtime/exit-codes.d.ts.map +0 -1
package/dist/runtime/exit-codes.js +0 -93
package/dist/runtime/exit-codes.js.map +0 -1
package/dist/runtime/index.d.ts +0 -9
package/dist/runtime/index.d.ts.map +0 -1
package/dist/runtime/index.js +0 -25
package/dist/runtime/index.js.map +0 -1
package/dist/runtime/json-output.d.ts +0 -42
package/dist/runtime/json-output.d.ts.map +0 -1
package/dist/runtime/json-output.js +0 -59
package/dist/runtime/json-output.js.map +0 -1
package/dist/runtime/semver.d.ts +0 -37
package/dist/runtime/semver.d.ts.map +0 -1
package/dist/runtime/semver.js +0 -110
package/dist/runtime/semver.js.map +0 -1
package/dist/scan/dead-ui-detector.d.ts +0 -48
package/dist/scan/dead-ui-detector.d.ts.map +0 -1
package/dist/scan/dead-ui-detector.js +0 -170
package/dist/scan/dead-ui-detector.js.map +0 -1
package/dist/scan/playwright-sweep.d.ts +0 -40
package/dist/scan/playwright-sweep.d.ts.map +0 -1
package/dist/scan/playwright-sweep.js +0 -216
package/dist/scan/playwright-sweep.js.map +0 -1
package/dist/scan/proof-bundle.d.ts +0 -25
package/dist/scan/proof-bundle.d.ts.map +0 -1
package/dist/scan/proof-bundle.js +0 -203
package/dist/scan/proof-bundle.js.map +0 -1
package/dist/scan/proof-graph.d.ts +0 -59
package/dist/scan/proof-graph.d.ts.map +0 -1
package/dist/scan/proof-graph.js +0 -64
package/dist/scan/proof-graph.js.map +0 -1
package/dist/scan/reality-sniff.d.ts +0 -56
package/dist/scan/reality-sniff.d.ts.map +0 -1
package/dist/scan/reality-sniff.js +0 -200
package/dist/scan/reality-sniff.js.map +0 -1
package/dist/scan/structural-verifier.d.ts +0 -20
package/dist/scan/structural-verifier.d.ts.map +0 -1
package/dist/scan/structural-verifier.js +0 -112
package/dist/scan/structural-verifier.js.map +0 -1
package/dist/scan/verification-engine.d.ts +0 -47
package/dist/scan/verification-engine.d.ts.map +0 -1
package/dist/scan/verification-engine.js +0 -141
package/dist/scan/verification-engine.js.map +0 -1
package/dist/scanner/baseline.d.ts +0 -52
package/dist/scanner/baseline.d.ts.map +0 -1
package/dist/scanner/baseline.js +0 -85
package/dist/scanner/baseline.js.map +0 -1
package/dist/scanner/incremental.d.ts +0 -30
package/dist/scanner/incremental.d.ts.map +0 -1
package/dist/scanner/incremental.js +0 -82
package/dist/scanner/incremental.js.map +0 -1
package/dist/scanner/parallel.d.ts +0 -43
package/dist/scanner/parallel.d.ts.map +0 -1
package/dist/scanner/parallel.js +0 -99
package/dist/scanner/parallel.js.map +0 -1
package/dist/standalone.d.ts +0 -1
package/dist/standalone.d.ts.map +0 -1
package/dist/standalone.js +0 -1
package/dist/standalone.js.map +0 -1
package/dist/truth-pack/index.d.ts +0 -102
package/dist/truth-pack/index.d.ts.map +0 -1
package/dist/truth-pack/index.js +0 -694
package/dist/truth-pack/index.js.map +0 -1
package/dist/ui/frame.d.ts +0 -68
package/dist/ui/frame.d.ts.map +0 -1
package/dist/ui/frame.js +0 -165
package/dist/ui/frame.js.map +0 -1
package/dist/ui/index.d.ts +0 -5
package/dist/ui/index.d.ts.map +0 -1
package/dist/ui/index.js +0 -16
package/dist/ui/index.js.map +0 -1
package/dist/ui.d.ts +0 -36
package/dist/ui.d.ts.map +0 -1
package/dist/ui.js +0 -45
package/dist/ui.js.map +0 -1

package/bin/runners/lib/server-usage.js ADDED Viewed

@@ -0,0 +1,513 @@
+/**
+ * Server-Authoritative Usage Enforcement (CLI Client)
+ *
+ * This module handles server-side usage checks and enforcement.
+ * Local ~/.vibecheck/usage.json is ONLY a cache - never authoritative.
+ *
+ * Flow:
+ * 1. Check server for usage limits before any quota-limited action
+ * 2. If online: server is source of truth
+ * 3. If offline: allow 1 action max, require sync next time
+ * 4. Cache signed tokens locally for optimization (short TTL)
+ */
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+const crypto = require('crypto');
+// ============================================================================
+// CONFIGURATION
+// ============================================================================
+const CONFIG_DIR = path.join(os.homedir(), '.vibecheck');
+const CACHE_FILE = path.join(CONFIG_DIR, 'usage-cache.json');
+const OFFLINE_FILE = path.join(CONFIG_DIR, 'offline-queue.json');
+const API_BASE_URL = process.env.VIBECHECK_API_URL || 'https://api.vibecheckai.dev';
+const USAGE_API_PATH = '/api/usage/v2';
+const OFFLINE_ALLOWANCE = 1; // Max offline actions before sync required
+const TOKEN_GRACE_PERIOD_MS = 30000; // 30 seconds grace period for token expiry
+// ============================================================================
+// HELPERS
+// ============================================================================
+async function ensureConfigDir() {
+  try {
+    await fs.promises.mkdir(CONFIG_DIR, { recursive: true });
+  } catch {
+    // Directory exists
+  }
+}
+function getAuthToken() {
+  // Check environment variable first
+  if (process.env.VIBECHECK_API_KEY) {
+    return process.env.VIBECHECK_API_KEY;
+  }
+  // Check license file
+  try {
+    const licensePath = path.join(CONFIG_DIR, 'license.json');
+    const license = JSON.parse(fs.readFileSync(licensePath, 'utf8'));
+    return license.apiKey || license.token;
+  } catch {
+    return null;
+  }
+}
+function getMachineId() {
+  // Generate a stable machine identifier
+  const hostname = os.hostname();
+  const platform = os.platform();
+  const arch = os.arch();
+  const hash = crypto.createHash('sha256');
+  hash.update(`${hostname}-${platform}-${arch}`);
+  return hash.digest('hex').substring(0, 16);
+}
+// ============================================================================
+// CACHE MANAGEMENT
+// ============================================================================
+async function readCache() {
+  try {
+    const content = await fs.promises.readFile(CACHE_FILE, 'utf8');
+    return JSON.parse(content);
+  } catch {
+    return null;
+  }
+}
+async function writeCache(data) {
+  await ensureConfigDir();
+  await fs.promises.writeFile(CACHE_FILE, JSON.stringify(data, null, 2));
+}
+async function readOfflineQueue() {
+  try {
+    const content = await fs.promises.readFile(OFFLINE_FILE, 'utf8');
+    return JSON.parse(content);
+  } catch {
+    return { queue: [], lastSync: null };
+  }
+}
+async function writeOfflineQueue(data) {
+  await ensureConfigDir();
+  await fs.promises.writeFile(OFFLINE_FILE, JSON.stringify(data, null, 2));
+}
+// ============================================================================
+// API CLIENT
+// ============================================================================
+async function apiRequest(endpoint, method = 'GET', body = null) {
+  const token = getAuthToken();
+  if (!token) {
+    return { success: false, error: 'No API key configured', offline: true };
+  }
+  const url = `${API_BASE_URL}${USAGE_API_PATH}${endpoint}`;
+  const options = {
+    method,
+    headers: {
+      'Authorization': `Bearer ${token}`,
+      'Content-Type': 'application/json',
+      'X-Machine-Id': getMachineId(),
+    },
+  };
+  if (body) {
+    options.body = JSON.stringify(body);
+  }
+  try {
+    const response = await fetch(url, options);
+    const data = await response.json();
+    if (!response.ok) {
+      return {
+        success: false,
+        error: data.error || `HTTP ${response.status}`,
+        code: data.code,
+        offline: false,
+      };
+    }
+    return { success: true, ...data, offline: false };
+  } catch (error) {
+    // Network error - we're offline
+    return {
+      success: false,
+      error: error.message,
+      offline: true,
+    };
+  }
+}
+// ============================================================================
+// SERVER-AUTHORITATIVE USAGE ENFORCEMENT
+// ============================================================================
+class ServerUsageEnforcement {
+  /**
+   * Check if an action is allowed (server-authoritative)
+   * This does NOT increment usage - use recordUsage() after action completes
+   */
+  async checkUsage(actionType) {
+    // Try server first
+    const result = await apiRequest('/check', 'POST', { action: actionType });
+    if (result.offline) {
+      return this.handleOfflineCheck(actionType);
+    }
+    if (!result.success) {
+      // Server error - check cache as fallback
+      return this.checkCachedUsage(actionType, result.error);
+    }
+    // Update cache with server response
+    await this.updateCacheFromServer(result);
+    return {
+      allowed: result.allowed,
+      current: result.current,
+      limit: result.limit,
+      remaining: result.remaining,
+      reason: result.reason,
+      source: 'server',
+    };
+  }
+  /**
+   * Record usage after action completes (server-authoritative)
+   * This increments the server counter and returns updated usage
+   */
+  async recordUsage(actionType, count = 1) {
+    // Try server first
+    const result = await apiRequest('/increment', 'POST', { action: actionType, count });
+    if (result.offline) {
+      return this.handleOfflineRecord(actionType, count);
+    }
+    if (!result.success) {
+      // Server error - queue for later sync
+      await this.queueOfflineAction(actionType, count);
+      return {
+        success: false,
+        error: result.error,
+        queued: true,
+      };
+    }
+    // Update cache with signed token
+    if (result.signedToken) {
+      await this.updateCacheWithToken(result.signedToken, result);
+    }
+    return {
+      success: true,
+      allowed: result.allowed,
+      current: result.current,
+      limit: result.limit,
+      remaining: result.remaining,
+      source: 'server',
+    };
+  }
+  /**
+   * Enforce usage limit (throws if not allowed)
+   */
+  async enforceLimit(actionType) {
+    const check = await this.checkUsage(actionType);
+    if (!check.allowed) {
+      const error = new Error(check.reason || `Monthly ${actionType} limit reached`);
+      error.code = 'LIMIT_EXCEEDED';
+      error.usage = check.current;
+      error.limit = check.limit;
+      error.upgradePrompt = this.formatUpgradePrompt(actionType, check);
+      throw error;
+    }
+    return check;
+  }
+  /**
+   * Get full usage summary from server
+   */
+  async getUsageSummary() {
+    const result = await apiRequest('/summary', 'GET');
+    if (result.offline || !result.success) {
+      // Return cached data if available
+      const cache = await readCache();
+      if (cache?.usage) {
+        return { ...cache, source: 'cache' };
+      }
+      return { error: result.error || 'Unable to fetch usage', source: 'none' };
+    }
+    // Update cache
+    await this.updateCacheFromServer(result);
+    return { ...result, source: 'server' };
+  }
+  /**
+   * Sync any pending offline usage to server
+   */
+  async syncOfflineUsage() {
+    const offline = await readOfflineQueue();
+    if (!offline.queue || offline.queue.length === 0) {
+      return { synced: 0, pending: 0 };
+    }
+    const result = await apiRequest('/sync', 'POST');
+    if (result.offline || !result.success) {
+      return {
+        synced: 0,
+        pending: offline.queue.length,
+        error: result.error || 'Unable to sync',
+      };
+    }
+    // Clear local queue on successful sync
+    await writeOfflineQueue({ queue: [], lastSync: new Date().toISOString() });
+    // Update cache with new token
+    if (result.signedToken) {
+      await this.updateCacheWithToken(result.signedToken, result);
+    }
+    return {
+      synced: result.synced || offline.queue.length,
+      pending: 0,
+      usage: result.usage,
+    };
+  }
+  /**
+   * Check if sync is required before any action
+   */
+  async requiresSync() {
+    const offline = await readOfflineQueue();
+    return offline.queue && offline.queue.length >= OFFLINE_ALLOWANCE;
+  }
+  // ============================================================================
+  // OFFLINE HANDLING
+  // ============================================================================
+  async handleOfflineCheck(actionType) {
+    const offline = await readOfflineQueue();
+    const cache = await readCache();
+    // Check if we've exceeded offline allowance
+    if (offline.queue && offline.queue.length >= OFFLINE_ALLOWANCE) {
+      return {
+        allowed: false,
+        reason: 'Offline limit reached. Please connect to sync usage.',
+        requiresSync: true,
+        source: 'offline',
+      };
+    }
+    // Check cached limits if available
+    if (cache?.signedToken && cache?.usage) {
+      const tokenExpiry = new Date(cache.signedToken.expiresAt);
+      const now = new Date();
+      // Allow some grace period for cached data
+      if (tokenExpiry.getTime() + TOKEN_GRACE_PERIOD_MS > now.getTime()) {
+        const actionMap = {
+          scan: 'scan',
+          reality: 'reality',
+          agent: 'agent',
+          gate: 'gate',
+          fix: 'fix',
+        };
+        const usageKey = actionMap[actionType];
+        const current = cache.usage[usageKey] || 0;
+        const limit = cache.limits?.[usageKey === 'scan' ? 'scans' : usageKey] || 0;
+        if (limit === -1 || current < limit) {
+          return {
+            allowed: true,
+            current,
+            limit,
+            remaining: limit === -1 ? -1 : limit - current,
+            source: 'cache',
+            warning: 'Using cached data (offline)',
+          };
+        }
+      }
+    }
+    // Allow one offline action
+    return {
+      allowed: true,
+      source: 'offline',
+      warning: 'Offline mode - action will be synced when online',
+      offlineAllowance: OFFLINE_ALLOWANCE - (offline.queue?.length || 0),
+    };
+  }
+  async handleOfflineRecord(actionType, count) {
+    const queued = await this.queueOfflineAction(actionType, count);
+    if (!queued) {
+      return {
+        success: false,
+        error: 'Offline limit reached. Please connect to sync usage.',
+        requiresSync: true,
+      };
+    }
+    return {
+      success: true,
+      queued: true,
+      source: 'offline',
+      warning: 'Action queued for sync',
+    };
+  }
+  async queueOfflineAction(actionType, count = 1) {
+    const offline = await readOfflineQueue();
+    if (offline.queue && offline.queue.length >= OFFLINE_ALLOWANCE) {
+      return false;
+    }
+    offline.queue = offline.queue || [];
+    offline.queue.push({
+      action: actionType,
+      count,
+      timestamp: new Date().toISOString(),
+      machineId: getMachineId(),
+    });
+    await writeOfflineQueue(offline);
+    return true;
+  }
+  // ============================================================================
+  // CACHE MANAGEMENT
+  // ============================================================================
+  async checkCachedUsage(actionType, serverError) {
+    const cache = await readCache();
+    if (!cache?.signedToken || !cache?.usage) {
+      return {
+        allowed: false,
+        error: serverError || 'Unable to verify usage',
+        source: 'none',
+      };
+    }
+    // Check token expiry
+    const tokenExpiry = new Date(cache.signedToken.expiresAt);
+    if (tokenExpiry < new Date()) {
+      return {
+        allowed: false,
+        error: 'Cached usage expired. Please try again.',
+        source: 'cache_expired',
+      };
+    }
+    const actionMap = {
+      scan: 'scan',
+      reality: 'reality',
+      agent: 'agent',
+      gate: 'gate',
+      fix: 'fix',
+    };
+    const usageKey = actionMap[actionType];
+    const current = cache.usage[usageKey] || 0;
+    const limitKey = usageKey === 'scan' ? 'scans' : usageKey;
+    const limit = cache.limits?.[limitKey] || 0;
+    const allowed = limit === -1 || current < limit;
+    return {
+      allowed,
+      current,
+      limit,
+      remaining: limit === -1 ? -1 : Math.max(0, limit - current),
+      source: 'cache',
+      warning: 'Using cached data due to server error',
+    };
+  }
+  async updateCacheFromServer(serverResponse) {
+    const cache = await readCache() || {};
+    cache.usage = serverResponse.usage;
+    cache.limits = serverResponse.limits;
+    cache.tier = serverResponse.tier;
+    cache.period = serverResponse.period;
+    cache.lastUpdated = new Date().toISOString();
+    if (serverResponse.signedToken) {
+      cache.signedToken = serverResponse.signedToken;
+    }
+    await writeCache(cache);
+  }
+  async updateCacheWithToken(signedToken, serverResponse) {
+    const cache = await readCache() || {};
+    cache.signedToken = signedToken;
+    cache.usage = serverResponse.usage || cache.usage;
+    cache.limits = serverResponse.limits || cache.limits;
+    cache.lastUpdated = new Date().toISOString();
+    await writeCache(cache);
+  }
+  // ============================================================================
+  // UI HELPERS
+  // ============================================================================
+  formatUpgradePrompt(actionType, check) {
+    const lines = [
+      '',
+      '\x1b[31m╭─────────────────────────────────────────────────────────────╮\x1b[0m',
+      '\x1b[31m│\x1b[0m  \x1b[1m⚠️  MONTHLY LIMIT REACHED\x1b[0m                                   \x1b[31m│\x1b[0m',
+      '\x1b[31m├─────────────────────────────────────────────────────────────┤\x1b[0m',
+      `\x1b[31m│\x1b[0m  ${actionType}: \x1b[33m${check.current}/${check.limit}\x1b[0m used this month`.padEnd(72) + '\x1b[31m│\x1b[0m',
+      '\x1b[31m├─────────────────────────────────────────────────────────────┤\x1b[0m',
+      '\x1b[31m│\x1b[0m  \x1b[36m→ vibecheck upgrade\x1b[0m                                        \x1b[31m│\x1b[0m',
+      '\x1b[31m│\x1b[0m  \x1b[36m→ https://vibecheckai.dev/pricing\x1b[0m                          \x1b[31m│\x1b[0m',
+      '\x1b[31m╰─────────────────────────────────────────────────────────────╯\x1b[0m',
+      '',
+    ];
+    return lines.join('\n');
+  }
+}
+// ============================================================================
+// SINGLETON EXPORT
+// ============================================================================
+const serverUsage = new ServerUsageEnforcement();
+module.exports = {
+  serverUsage,
+  checkUsage: (actionType) => serverUsage.checkUsage(actionType),
+  recordUsage: (actionType, count) => serverUsage.recordUsage(actionType, count),
+  enforceLimit: (actionType) => serverUsage.enforceLimit(actionType),
+  getUsageSummary: () => serverUsage.getUsageSummary(),
+  syncOfflineUsage: () => serverUsage.syncOfflineUsage(),
+  requiresSync: () => serverUsage.requiresSync(),
+  OFFLINE_ALLOWANCE,
+};