@vibecheckai/cli 3.1.2 → 3.1.4

package/bin/runners/runContextCompiler.js

@@ -1,385 +0,0 @@
-#!/usr/bin/env node
-/**
- * Context Compiler v1
- * 
- * Generates task-targeted context slices from the Truth Pack.
- * Big context = noise. Small context = missing facts.
- * This compiles exactly what you need for the task.
- * 
- * Usage:
- *   compileContext({ task: 'Fix dead login button', focus: { files: [...], routes: [...] } })
- */
-
-import fs from 'fs/promises';
-import path from 'path';
-import crypto from 'crypto';
-import yaml from 'js-yaml';
-
-/**
- * Load the truth pack from disk
- */
-async function loadTruthpack(projectPath) {
-  const truthpackPath = path.join(projectPath, '.vibecheck', 'truth', 'truthpack.json');
-  try {
-    const content = await fs.readFile(truthpackPath, 'utf8');
-    return JSON.parse(content);
-  } catch {
-    return null;
-  }
-}
-
-/**
- * Load invariants from disk
- */
-async function loadInvariants(projectPath) {
-  const invariantsPath = path.join(projectPath, '.vibecheck', 'invariants.yml');
-  try {
-    const content = await fs.readFile(invariantsPath, 'utf8');
-    return yaml.load(content);
-  } catch {
-    return { invariants: [] };
-  }
-}
-
-/**
- * Compile context for a specific task
- * 
- * @param {Object} request - Context compilation request
- * @param {string} request.task - What you're trying to do
- * @param {Object} request.focus - Optional focus areas
- * @param {string[]} request.focus.files - Specific files to include
- * @param {string[]} request.focus.routes - Specific routes to include
- * @param {string[]} request.constraints - Constraints to apply
- * @param {number} request.maxTokensHint - Max tokens hint
- * @param {string} projectPath - Project root path
- * @returns {Object} Compiled context slice
- */
-export async function compileContext(request, projectPath = process.cwd()) {
-  const contextId = `ctxslice_${crypto.randomBytes(4).toString('hex')}`;
-  const { task, focus = {}, constraints = [], maxTokensHint = 4000 } = request;
-  
-  const truthpack = await loadTruthpack(projectPath);
-  if (!truthpack) {
-    return {
-      contextId,
-      error: 'No truth pack found. Run `vibecheck ctx` first.',
-      summary: null,
-      truthSlice: null,
-      evidence: [],
-      invariants: [],
-    };
-  }
-  
-  const invariantsData = await loadInvariants(projectPath);
-  
-  // Analyze task to determine relevant domains
-  const analysis = analyzeTask(task);
-  
-  // Filter truth pack to relevant content
-  const truthSlice = buildTruthSlice(truthpack, analysis, focus);
-  
-  // Gather evidence for the slice
-  const evidence = gatherEvidence(truthSlice);
-  
-  // Select applicable invariants
-  const applicableInvariants = selectInvariants(invariantsData, analysis);
-  
-  // Generate summary
-  const summary = generateSummary(task, truthSlice, analysis);
-  
-  // Apply constraints
-  const appliedConstraints = applyConstraints(truthSlice, constraints);
-  
-  // Estimate token count
-  const tokenEstimate = estimateTokens(truthSlice, evidence);
-  
-  return {
-    contextId,
-    summary,
-    task,
-    analysis: {
-      domains: analysis.domains,
-      keywords: analysis.keywords,
-      action: analysis.action,
-    },
-    truthSlice,
-    evidence: evidence.slice(0, 50), // Limit evidence
-    invariants: applicableInvariants.map(i => i.id),
-    constraints: appliedConstraints,
-    tokenEstimate,
-    warnings: generateWarnings(analysis, tokenEstimate, maxTokensHint),
-  };
-}
-
-/**
- * Analyze task to determine domains, keywords, and action
- */
-function analyzeTask(task) {
-  const taskLower = task.toLowerCase();
-  
-  // Detect domains
-  const domains = [];
-  if (/auth|login|logout|session|password|jwt|token/i.test(task)) domains.push('auth');
-  if (/billing|payment|stripe|subscription|checkout|tier|pro|enterprise/i.test(task)) domains.push('billing');
-  if (/route|endpoint|api|handler|fetch|axios/i.test(task)) domains.push('api');
-  if (/component|button|form|ui|page|modal|dialog/i.test(task)) domains.push('ui');
-  if (/database|prisma|model|schema|query|db/i.test(task)) domains.push('data');
-  if (/test|spec|jest|vitest/i.test(task)) domains.push('testing');
-  if (/security|xss|csrf|injection|sanitize/i.test(task)) domains.push('security');
-  if (/env|environment|config|secret/i.test(task)) domains.push('env');
-  
-  if (domains.length === 0) domains.push('general');
-  
-  // Detect action type
-  let action = 'unknown';
-  if (/fix|bug|broken|error|issue|problem|dead/i.test(task)) action = 'fix';
-  else if (/add|create|implement|build|new/i.test(task)) action = 'create';
-  else if (/update|change|modify|refactor/i.test(task)) action = 'update';
-  else if (/delete|remove|drop/i.test(task)) action = 'delete';
-  else if (/wire|connect|integrate|link/i.test(task)) action = 'integrate';
-  else if (/verify|check|validate|test/i.test(task)) action = 'verify';
-  
-  // Extract keywords
-  const stopWords = new Set(['the', 'a', 'an', 'is', 'are', 'was', 'were', 'be', 'been', 'have', 'has', 'do', 'does', 'did', 'will', 'would', 'could', 'should', 'may', 'might', 'must', 'to', 'of', 'in', 'for', 'on', 'with', 'at', 'by', 'from', 'as', 'into', 'through', 'this', 'that', 'these', 'those', 'i', 'me', 'my', 'we', 'our', 'you', 'your', 'it', 'its', 'they', 'them', 'their', 'what', 'which', 'who', 'and', 'but', 'if', 'or', 'because', 'fix', 'add', 'update', 'create', 'make', 'build']);
-  
-  const keywords = task
-    .toLowerCase()
-    .replace(/[^a-z0-9\s]/g, ' ')
-    .split(/\s+/)
-    .filter(word => word.length > 2 && !stopWords.has(word));
-  
-  return { domains, action, keywords };
-}
-
-/**
- * Build a filtered truth slice based on analysis and focus
- */
-function buildTruthSlice(truthpack, analysis, focus) {
-  const slice = {
-    routes: { server: [], clientRefs: [] },
-    env: { vars: [] },
-    auth: null,
-    billing: null,
-  };
-  
-  // Filter routes
-  if (focus.routes && focus.routes.length > 0) {
-    slice.routes.server = truthpack.routes.server.filter(r => 
-      focus.routes.some(fr => r.path.includes(fr) || fr.includes(r.path))
-    );
-    slice.routes.clientRefs = truthpack.routes.clientRefs.filter(r =>
-      focus.routes.some(fr => r.path.includes(fr) || fr.includes(r.path))
-    );
-  } else if (analysis.keywords.length > 0) {
-    slice.routes.server = truthpack.routes.server.filter(r =>
-      analysis.keywords.some(k => r.path.includes(k) || r.handler.includes(k))
-    );
-    slice.routes.clientRefs = truthpack.routes.clientRefs.filter(r =>
-      analysis.keywords.some(k => r.path.includes(k) || r.source.includes(k))
-    );
-  }
-  
-  // Include routes from focused files
-  if (focus.files && focus.files.length > 0) {
-    const fileRoutes = truthpack.routes.server.filter(r =>
-      focus.files.some(f => r.handler.includes(f))
-    );
-    const fileClientRefs = truthpack.routes.clientRefs.filter(r =>
-      focus.files.some(f => r.source.includes(f))
-    );
-    
-    slice.routes.server.push(...fileRoutes.filter(r => !slice.routes.server.includes(r)));
-    slice.routes.clientRefs.push(...fileClientRefs.filter(r => !slice.routes.clientRefs.includes(r)));
-  }
-  
-  // Filter env vars based on keywords
-  if (analysis.keywords.length > 0) {
-    slice.env.vars = truthpack.env.vars.filter(v =>
-      analysis.keywords.some(k => v.name.toLowerCase().includes(k))
-    );
-  }
-  
-  // Include auth if relevant
-  if (analysis.domains.includes('auth')) {
-    slice.auth = truthpack.auth;
-  }
-  
-  // Include billing if relevant
-  if (analysis.domains.includes('billing')) {
-    slice.billing = truthpack.billing;
-  }
-  
-  return slice;
-}
-
-/**
- * Gather evidence from the truth slice
- */
-function gatherEvidence(truthSlice) {
-  const evidence = [];
-  
-  for (const route of truthSlice.routes.server) {
-    if (route.evidence) evidence.push(...route.evidence);
-  }
-  
-  for (const ref of truthSlice.routes.clientRefs) {
-    if (ref.evidence) evidence.push(...ref.evidence);
-  }
-  
-  for (const v of truthSlice.env.vars) {
-    if (v.references) evidence.push(...v.references);
-  }
-  
-  if (truthSlice.auth?.model?.signals) {
-    for (const s of truthSlice.auth.model.signals) {
-      if (s.evidence) evidence.push(...s.evidence);
-    }
-  }
-  
-  return evidence;
-}
-
-/**
- * Select applicable invariants based on task analysis
- */
-function selectInvariants(invariantsData, analysis) {
-  const invariants = invariantsData.invariants || [];
-  
-  const domainToApplies = {
-    auth: ['server', 'middleware', 'api'],
-    billing: ['server', 'ui'],
-    api: ['api', 'server'],
-    ui: ['ui'],
-    security: ['all', 'server'],
-  };
-  
-  const relevantApplies = new Set();
-  for (const domain of analysis.domains) {
-    const applies = domainToApplies[domain] || [];
-    applies.forEach(a => relevantApplies.add(a));
-  }
-  
-  // Always include security-related invariants for fix/integrate actions
-  if (analysis.action === 'fix' || analysis.action === 'integrate') {
-    relevantApplies.add('server');
-    relevantApplies.add('middleware');
-  }
-  
-  return invariants.filter(inv => {
-    if (!inv.appliesTo) return true;
-    return inv.appliesTo.some(a => relevantApplies.has(a) || a === 'all');
-  });
-}
-
-/**
- * Generate a summary of the context
- */
-function generateSummary(task, truthSlice, analysis) {
-  const parts = [];
-  
-  parts.push(`Task: ${task}`);
-  parts.push(`Domains: ${analysis.domains.join(', ')}`);
-  parts.push(`Action: ${analysis.action}`);
-  
-  if (truthSlice.routes.server.length > 0) {
-    parts.push(`Server routes: ${truthSlice.routes.server.length}`);
-  }
-  
-  if (truthSlice.routes.clientRefs.length > 0) {
-    parts.push(`Client refs: ${truthSlice.routes.clientRefs.length}`);
-  }
-  
-  // Check for mismatches (gaps)
-  const serverPaths = new Set(truthSlice.routes.server.map(r => r.path));
-  const clientPaths = truthSlice.routes.clientRefs.map(r => r.path);
-  const mismatches = clientPaths.filter(p => !serverPaths.has(p));
-  
-  if (mismatches.length > 0) {
-    parts.push(`⚠️ Route mismatches: ${mismatches.join(', ')}`);
-  }
-  
-  return parts.join(' | ');
-}
-
-/**
- * Apply constraints to the truth slice
- */
-function applyConstraints(truthSlice, constraints) {
-  const applied = [];
-  
-  for (const constraint of constraints) {
-    switch (constraint) {
-      case 'do_not_invent_routes':
-        applied.push({
-          id: 'do_not_invent_routes',
-          description: 'Only use routes that exist in the truth pack',
-          enforced: true,
-        });
-        break;
-        
-      case 'no_new_env_vars_without_proof':
-        applied.push({
-          id: 'no_new_env_vars_without_proof',
-          description: 'Do not add env vars that are not declared in .env.example',
-          enforced: true,
-        });
-        break;
-        
-      case 'require_auth_verification':
-        applied.push({
-          id: 'require_auth_verification',
-          description: 'Verify auth is enforced on protected routes',
-          enforced: true,
-        });
-        break;
-    }
-  }
-  
-  return applied;
-}
-
-/**
- * Estimate token count for the context
- */
-function estimateTokens(truthSlice, evidence) {
-  let tokens = 0;
-  
-  // Routes: ~50 tokens each
-  tokens += truthSlice.routes.server.length * 50;
-  tokens += truthSlice.routes.clientRefs.length * 30;
-  
-  // Env vars: ~20 tokens each
-  tokens += truthSlice.env.vars.length * 20;
-  
-  // Auth/billing: ~200 tokens each if present
-  if (truthSlice.auth) tokens += 200;
-  if (truthSlice.billing) tokens += 200;
-  
-  // Evidence: ~100 tokens each
-  tokens += evidence.length * 100;
-  
-  return tokens;
-}
-
-/**
- * Generate warnings based on context
- */
-function generateWarnings(analysis, tokenEstimate, maxTokensHint) {
-  const warnings = [];
-  
-  if (analysis.domains.includes('auth') || analysis.domains.includes('billing')) {
-    warnings.push('High-stakes domain detected - verify all claims before making changes');
-  }
-  
-  if (tokenEstimate > maxTokensHint) {
-    warnings.push(`Context exceeds ${maxTokensHint} token hint (est: ${tokenEstimate}). Consider narrowing focus.`);
-  }
-  
-  if (analysis.action === 'fix' && analysis.domains.includes('auth')) {
-    warnings.push('Auth fix - ensure changes do not weaken security');
-  }
-  
-  return warnings;
-}
-
-export default { compileContext };

package/bin/runners/runGate.js

@@ -1,17 +0,0 @@
-// bin/runners/runGate.js
-// CI/CD gate command - wraps ship for pass/fail CI pipelines
-const { runShip } = require("./runShip");
-
-async function runGate(args) {
-  // Gate is essentially ship with strict exit codes for CI
-  // Pass through args to ship
-  const exitCode = await runShip([...args, "--ci"]);
-  
-  // Exit codes:
-  // 0 = SHIP (pass)
-  // 1 = WARN (pass by default, fail with --strict)
-  // 2 = BLOCK (fail)
-  return exitCode;
-}
-
-module.exports = { runGate };

package/bin/runners/runInitGha.js

@@ -1,164 +0,0 @@
-// bin/runners/runInitGha.js
-const fs = require("fs");
-const path = require("path");
-
-function ensureDir(p) {
-  fs.mkdirSync(p, { recursive: true });
-}
-
-function workflowYaml({ packageRunner = "npx vibecheck", failOnWarn = false, policy = "ci" } = {}) {
-  const policyFlag = policy !== "ci" ? `--policy ${policy}` : "--policy ci";
-  const failFlag = failOnWarn ? "--fail-on-warn" : "";
-  
-  return `name: vibecheck
-
-on:
-  pull_request:
-    types: [opened, synchronize, reopened]
-
-permissions:
-  contents: read
-  pull-requests: write
-
-env:
-  VIBECHECK_CI: "true"
-
-jobs:
-  vibecheck:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v4
-
-      - uses: actions/setup-node@v4
-        with:
-          node-version: 20
-
-      - name: Install deps (auto-detect package manager)
-        run: |
-          set -e
-          if [ -f pnpm-lock.yaml ]; then
-            corepack enable
-            pnpm install --frozen-lockfile
-          elif [ -f package-lock.json ]; then
-            npm ci
-          elif [ -f yarn.lock ]; then
-            corepack enable
-            yarn install --frozen-lockfile
-          else
-            npm install
-          fi
-
-      - name: Vibecheck - Build truthpack
-        run: ${packageRunner} ctx ${policyFlag}
-
-      - name: Vibecheck - Generate PR report
-        id: vc
-        run: |
-          set +e
-          mkdir -p .vibecheck
-          ${packageRunner} pr --out .vibecheck/pr_comment.md ${policyFlag} ${failFlag}
-          code=$?
-          echo "code=$code" >> $GITHUB_OUTPUT
-          echo "verdict=$code" >> $GITHUB_ENV
-          echo "---- vibecheck exit code: $code ----"
-          # Generate HTML report
-          ${packageRunner} ship --html || true
-          exit 0
-
-      - name: Post PR comment
-        if: github.event_name == 'pull_request'
-        uses: actions/github-script@v7
-        with:
-          script: |
-            const fs = require('fs');
-            const commentPath = '.vibecheck/pr_comment.md';
-            if (!fs.existsSync(commentPath)) {
-              core.warning('No PR comment generated');
-              return;
-            }
-            const body = fs.readFileSync(commentPath, 'utf8');
-            const pr = context.payload.pull_request;
-            if (!pr) {
-              core.warning('No pull_request in context; skipping comment');
-              return;
-            }
-            
-            // Find existing vibecheck comment to update
-            const { data: comments } = await github.rest.issues.listComments({
-              owner: context.repo.owner,
-              repo: context.repo.repo,
-              issue_number: pr.number,
-            });
-            const existingComment = comments.find(c => 
-              c.body.includes('Vibecheck:') && c.user.type === 'Bot'
-            );
-            
-            if (existingComment) {
-              await github.rest.issues.updateComment({
-                owner: context.repo.owner,
-                repo: context.repo.repo,
-                comment_id: existingComment.id,
-                body
-              });
-            } else {
-              await github.rest.issues.createComment({
-                owner: context.repo.owner,
-                repo: context.repo.repo,
-                issue_number: pr.number,
-                body
-              });
-            }
-
-      - name: Upload artifacts
-        if: always()
-        uses: actions/upload-artifact@v4
-        with:
-          name: vibecheck-report
-          path: |
-            .vibecheck/last_ship.json
-            .vibecheck/last_ship.html
-            .vibecheck/pr_comment.md
-            .vibecheck/contracts_diff.json
-          retention-days: 30
-          if-no-files-found: ignore
-
-      - name: Enforce verdict
-        run: |
-          code="\${{ steps.vc.outputs.code }}"
-          echo "vibecheck verdict code: $code"
-          if [ "$code" = "0" ]; then
-            echo "✅ SHIP - All checks passed"
-            exit 0
-          fi
-          if [ "$code" = "1" ]; then
-            echo "⚠️ WARN - Warnings found (failing per policy)"
-            exit 1
-          fi
-          if [ "$code" = "2" ]; then
-            echo "🚫 BLOCK - Blocking issues found"
-            exit 1
-          fi
-          echo "❓ Unknown exit code"
-          exit 1
-`;
-}
-
-async function runInitGha({ repoRoot, failOnWarn = false, policy = "ci" } = {}) {
-  const root = repoRoot || process.cwd();
-  const wfDir = path.join(root, ".github", "workflows");
-  ensureDir(wfDir);
-
-  const wfPath = path.join(wfDir, "vibecheck.yml");
-  fs.writeFileSync(wfPath, workflowYaml({ failOnWarn, policy }), "utf8");
-
-  console.log(`✅ Wrote: ${path.relative(root, wfPath).replace(/\\/g, "/")}`);
-  console.log(`\nPolicy: ${policy}`);
-  console.log(`Fail on warn: ${failOnWarn}`);
-  console.log(`\nNotes:`);
-  console.log(`- If your CLI isn't called via "npx vibecheck", edit the workflow line.`);
-  console.log(`- Set VIBECHECK_API_KEY as a GitHub Actions secret for cloud features.`);
-  console.log(`- Artifacts (JSON + HTML reports) uploaded automatically.`);
-  console.log(`- PR comments auto-updated on each push.`);
-}
-
-module.exports = { runInitGha, workflowYaml };