npm - @vibecheckai/cli - Versions diffs - 3.2.5 → 3.3.0 - Mend

@vibecheckai/cli 3.2.5 → 3.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (197) hide show

package/bin/.generated +25 -25
package/bin/dev/run-v2-torture.js +30 -30
package/bin/registry.js +192 -5
package/bin/runners/lib/__tests__/entitlements-v2.test.js +295 -295
package/bin/runners/lib/agent-firewall/change-packet/builder.js +280 -6
package/bin/runners/lib/agent-firewall/critic/index.js +151 -0
package/bin/runners/lib/agent-firewall/critic/judge.js +432 -0
package/bin/runners/lib/agent-firewall/critic/prompts.js +305 -0
package/bin/runners/lib/agent-firewall/lawbook/distributor.js +465 -0
package/bin/runners/lib/agent-firewall/lawbook/evaluator.js +604 -0
package/bin/runners/lib/agent-firewall/lawbook/index.js +304 -0
package/bin/runners/lib/agent-firewall/lawbook/registry.js +514 -0
package/bin/runners/lib/agent-firewall/lawbook/schema.js +420 -0
package/bin/runners/lib/agent-firewall/logger.js +141 -0
package/bin/runners/lib/agent-firewall/policy/loader.js +312 -4
package/bin/runners/lib/agent-firewall/policy/rules/ghost-env.js +113 -1
package/bin/runners/lib/agent-firewall/policy/rules/ghost-route.js +133 -6
package/bin/runners/lib/agent-firewall/proposal/extractor.js +394 -0
package/bin/runners/lib/agent-firewall/proposal/index.js +212 -0
package/bin/runners/lib/agent-firewall/proposal/schema.js +251 -0
package/bin/runners/lib/agent-firewall/proposal/validator.js +386 -0
package/bin/runners/lib/agent-firewall/reality/index.js +332 -0
package/bin/runners/lib/agent-firewall/reality/state.js +625 -0
package/bin/runners/lib/agent-firewall/reality/watcher.js +322 -0
package/bin/runners/lib/agent-firewall/risk/index.js +173 -0
package/bin/runners/lib/agent-firewall/risk/scorer.js +328 -0
package/bin/runners/lib/agent-firewall/risk/thresholds.js +321 -0
package/bin/runners/lib/agent-firewall/risk/vectors.js +421 -0
package/bin/runners/lib/agent-firewall/simulator/diff-simulator.js +472 -0
package/bin/runners/lib/agent-firewall/simulator/import-resolver.js +346 -0
package/bin/runners/lib/agent-firewall/simulator/index.js +181 -0
package/bin/runners/lib/agent-firewall/simulator/route-validator.js +380 -0
package/bin/runners/lib/agent-firewall/time-machine/incident-correlator.js +661 -0
package/bin/runners/lib/agent-firewall/time-machine/index.js +267 -0
package/bin/runners/lib/agent-firewall/time-machine/replay-engine.js +436 -0
package/bin/runners/lib/agent-firewall/time-machine/state-reconstructor.js +490 -0
package/bin/runners/lib/agent-firewall/time-machine/timeline-builder.js +530 -0
package/bin/runners/lib/analyzers.js +81 -18
package/bin/runners/lib/api-client.js +269 -0
package/bin/runners/lib/auth-truth.js +193 -193
package/bin/runners/lib/authority-badge.js +425 -0
package/bin/runners/lib/backup.js +62 -62
package/bin/runners/lib/billing.js +107 -107
package/bin/runners/lib/claims.js +118 -118
package/bin/runners/lib/cli-output.js +7 -1
package/bin/runners/lib/cli-ui.js +540 -540
package/bin/runners/lib/contracts/auth-contract.js +202 -202
package/bin/runners/lib/contracts/env-contract.js +181 -181
package/bin/runners/lib/contracts/external-contract.js +206 -206
package/bin/runners/lib/contracts/guard.js +168 -168
package/bin/runners/lib/contracts/index.js +89 -89
package/bin/runners/lib/contracts/plan-validator.js +311 -311
package/bin/runners/lib/contracts/route-contract.js +199 -199
package/bin/runners/lib/contracts.js +804 -804
package/bin/runners/lib/detect.js +89 -89
package/bin/runners/lib/doctor/autofix.js +254 -254
package/bin/runners/lib/doctor/index.js +37 -37
package/bin/runners/lib/doctor/modules/dependencies.js +325 -325
package/bin/runners/lib/doctor/modules/index.js +46 -46
package/bin/runners/lib/doctor/modules/network.js +250 -250
package/bin/runners/lib/doctor/modules/project.js +312 -312
package/bin/runners/lib/doctor/modules/runtime.js +224 -224
package/bin/runners/lib/doctor/modules/security.js +348 -348
package/bin/runners/lib/doctor/modules/system.js +213 -213
package/bin/runners/lib/doctor/modules/vibecheck.js +394 -394
package/bin/runners/lib/doctor/reporter.js +262 -262
package/bin/runners/lib/doctor/service.js +262 -262
package/bin/runners/lib/doctor/types.js +113 -113
package/bin/runners/lib/doctor/ui.js +263 -263
package/bin/runners/lib/doctor-v2.js +608 -608
package/bin/runners/lib/drift.js +425 -425
package/bin/runners/lib/enforcement.js +72 -72
package/bin/runners/lib/enterprise-detect.js +603 -603
package/bin/runners/lib/enterprise-init.js +942 -942
package/bin/runners/lib/env-resolver.js +417 -417
package/bin/runners/lib/env-template.js +66 -66
package/bin/runners/lib/env.js +189 -189
package/bin/runners/lib/error-handler.js +16 -9
package/bin/runners/lib/exit-codes.js +275 -0
package/bin/runners/lib/extractors/client-calls.js +990 -990
package/bin/runners/lib/extractors/fastify-route-dump.js +573 -573
package/bin/runners/lib/extractors/fastify-routes.js +426 -426
package/bin/runners/lib/extractors/index.js +363 -363
package/bin/runners/lib/extractors/next-routes.js +524 -524
package/bin/runners/lib/extractors/proof-graph.js +431 -431
package/bin/runners/lib/extractors/route-matcher.js +451 -451
package/bin/runners/lib/extractors/truthpack-v2.js +377 -377
package/bin/runners/lib/extractors/ui-bindings.js +547 -547
package/bin/runners/lib/findings-schema.js +281 -281
package/bin/runners/lib/firewall-prompt.js +50 -50
package/bin/runners/lib/global-flags.js +37 -0
package/bin/runners/lib/graph/graph-builder.js +265 -265
package/bin/runners/lib/graph/html-renderer.js +413 -413
package/bin/runners/lib/graph/index.js +32 -32
package/bin/runners/lib/graph/runtime-collector.js +215 -215
package/bin/runners/lib/graph/static-extractor.js +518 -518
package/bin/runners/lib/help-formatter.js +413 -0
package/bin/runners/lib/html-report.js +650 -650
package/bin/runners/lib/llm.js +75 -75
package/bin/runners/lib/logger.js +38 -0
package/bin/runners/lib/meter.js +61 -61
package/bin/runners/lib/missions/evidence.js +126 -126
package/bin/runners/lib/patch.js +40 -40
package/bin/runners/lib/permissions/auth-model.js +213 -213
package/bin/runners/lib/permissions/idor-prover.js +205 -205
package/bin/runners/lib/permissions/index.js +45 -45
package/bin/runners/lib/permissions/matrix-builder.js +198 -198
package/bin/runners/lib/pkgjson.js +28 -28
package/bin/runners/lib/policy.js +295 -295
package/bin/runners/lib/preflight.js +142 -142
package/bin/runners/lib/reality/correlation-detectors.js +359 -359
package/bin/runners/lib/reality/index.js +318 -318
package/bin/runners/lib/reality/request-hashing.js +416 -416
package/bin/runners/lib/reality/request-mapper.js +453 -453
package/bin/runners/lib/reality/safety-rails.js +463 -463
package/bin/runners/lib/reality/semantic-snapshot.js +408 -408
package/bin/runners/lib/reality/toast-detector.js +393 -393
package/bin/runners/lib/reality-findings.js +84 -84
package/bin/runners/lib/receipts.js +179 -179
package/bin/runners/lib/redact.js +29 -29
package/bin/runners/lib/replay/capsule-manager.js +154 -154
package/bin/runners/lib/replay/index.js +263 -263
package/bin/runners/lib/replay/player.js +348 -348
package/bin/runners/lib/replay/recorder.js +331 -331
package/bin/runners/lib/report.js +135 -135
package/bin/runners/lib/route-detection.js +1140 -1140
package/bin/runners/lib/sandbox/index.js +59 -59
package/bin/runners/lib/sandbox/proof-chain.js +399 -399
package/bin/runners/lib/sandbox/sandbox-runner.js +205 -205
package/bin/runners/lib/sandbox/worktree.js +174 -174
package/bin/runners/lib/schema-validator.js +350 -350
package/bin/runners/lib/schemas/contracts.schema.json +160 -160
package/bin/runners/lib/schemas/finding.schema.json +100 -100
package/bin/runners/lib/schemas/mission-pack.schema.json +206 -206
package/bin/runners/lib/schemas/proof-graph.schema.json +176 -176
package/bin/runners/lib/schemas/reality-report.schema.json +162 -162
package/bin/runners/lib/schemas/share-pack.schema.json +180 -180
package/bin/runners/lib/schemas/ship-report.schema.json +117 -117
package/bin/runners/lib/schemas/truthpack-v2.schema.json +303 -303
package/bin/runners/lib/schemas/validator.js +438 -438
package/bin/runners/lib/score-history.js +282 -282
package/bin/runners/lib/share-pack.js +239 -239
package/bin/runners/lib/snippets.js +67 -67
package/bin/runners/lib/unified-cli-output.js +604 -0
package/bin/runners/lib/upsell.js +658 -510
package/bin/runners/lib/usage.js +153 -153
package/bin/runners/lib/validate-patch.js +156 -156
package/bin/runners/lib/verdict-engine.js +628 -628
package/bin/runners/reality/engine.js +917 -917
package/bin/runners/reality/flows.js +122 -122
package/bin/runners/reality/report.js +378 -378
package/bin/runners/reality/session.js +193 -193
package/bin/runners/runAgent.d.ts +5 -0
package/bin/runners/runApprove.js +1200 -0
package/bin/runners/runAuth.js +324 -95
package/bin/runners/runCheckpoint.js +39 -21
package/bin/runners/runClassify.js +859 -0
package/bin/runners/runContext.js +136 -24
package/bin/runners/runDoctor.js +108 -68
package/bin/runners/runFirewall.d.ts +5 -0
package/bin/runners/runFirewallHook.d.ts +5 -0
package/bin/runners/runFix.js +6 -5
package/bin/runners/runGuard.js +262 -168
package/bin/runners/runInit.js +3 -2
package/bin/runners/runMcp.js +130 -52
package/bin/runners/runPolish.js +43 -20
package/bin/runners/runProve.js +1 -2
package/bin/runners/runReport.js +3 -2
package/bin/runners/runScan.js +145 -44
package/bin/runners/runShip.js +3 -4
package/bin/runners/runTruth.d.ts +5 -0
package/bin/runners/runValidate.js +19 -2
package/bin/runners/runWatch.js +104 -53
package/bin/vibecheck.js +106 -19
package/mcp-server/HARDENING_SUMMARY.md +299 -0
package/mcp-server/agent-firewall-interceptor.js +367 -31
package/mcp-server/authority-tools.js +569 -0
package/mcp-server/conductor/conflict-resolver.js +588 -0
package/mcp-server/conductor/execution-planner.js +544 -0
package/mcp-server/conductor/index.js +377 -0
package/mcp-server/conductor/lock-manager.js +615 -0
package/mcp-server/conductor/request-queue.js +550 -0
package/mcp-server/conductor/session-manager.js +500 -0
package/mcp-server/conductor/tools.js +510 -0
package/mcp-server/index.js +1199 -208
package/mcp-server/lib/api-client.cjs +305 -0
package/mcp-server/lib/logger.cjs +30 -0
package/mcp-server/logger.js +173 -0
package/mcp-server/package.json +2 -2
package/mcp-server/premium-tools.js +2 -2
package/mcp-server/tier-auth.js +351 -136
package/mcp-server/tools/index.js +72 -72
package/mcp-server/truth-firewall-tools.js +145 -15
package/mcp-server/vibecheck-tools.js +2 -2
package/package.json +2 -3
package/mcp-server/index.old.js +0 -4137
package/mcp-server/package-lock.json +0 -165

package/mcp-server/lib/api-client.cjs ADDED Viewed

@@ -0,0 +1,305 @@
+/**
+ * API Client for Vibecheck Dashboard Integration
+ *
+ * Handles communication with the web dashboard API for:
+ * - Creating scan records
+ * - Updating scan progress
+ * - Submitting scan results
+ * - Broadcasting real-time updates
+ */
+"use strict";
+const https = require("https");
+const http = require("http");
+const { logger } = require("./logger.cjs");
+// Configuration
+const API_BASE_URL = process.env.VIBECHECK_API_URL || "https://api.vibecheckai.dev";
+const API_TIMEOUT = 30000; // 30 seconds
+/**
+ * Make HTTP request to API
+ */
+async function makeRequest(path, options = {}) {
+  const url = new URL(path, API_BASE_URL);
+  const isHttps = url.protocol === "https:";
+  const client = isHttps ? https : http;
+  const defaultOptions = {
+    method: "POST",
+    headers: {
+      "Content-Type": "application/json",
+      "User-Agent": "vibecheck-cli/3.3.0",
+    },
+    timeout: API_TIMEOUT,
+  };
+  const requestOptions = {
+    ...defaultOptions,
+    ...options,
+    hostname: url.hostname,
+    port: url.port || (isHttps ? 443 : 80),
+    path: url.pathname + url.search,
+  };
+  // Add Authorization header if API key is available
+  const apiKey = process.env.VIBECHECK_API_KEY || getApiKey();
+  if (apiKey) {
+    requestOptions.headers.Authorization = `Bearer ${apiKey}`;
+  }
+  return new Promise((resolve, reject) => {
+    const req = client.request(requestOptions, (res) => {
+      let data = "";
+      res.on("data", (chunk) => {
+        data += chunk;
+      });
+      res.on("end", () => {
+        try {
+          const jsonData = data ? JSON.parse(data) : {};
+          resolve({
+            ok: res.statusCode >= 200 && res.statusCode < 300,
+            status: res.statusCode,
+            data: jsonData,
+          });
+        } catch (err) {
+          resolve({
+            ok: false,
+            status: res.statusCode,
+            data: { error: "Invalid JSON response" },
+          });
+        }
+      });
+    });
+    req.on("error", (err) => {
+      logger.debug(`API request failed: ${err.message}`);
+      resolve({
+        ok: false,
+        error: err.message,
+        data: { error: err.message },
+      });
+    });
+    req.on("timeout", () => {
+      req.destroy();
+      resolve({
+        ok: false,
+        error: "Request timeout",
+        data: { error: "Request timeout" },
+      });
+    });
+    if (options.body) {
+      req.write(JSON.stringify(options.body));
+    }
+    req.end();
+  });
+}
+/**
+ * Get API key from environment or config
+ */
+function getApiKey() {
+  // Try various environment variables
+  const envVars = [
+    "VIBECHECK_API_KEY",
+    "VIBECHECK_TOKEN",
+    "API_KEY",
+    "TOKEN",
+  ];
+  for (const envVar of envVars) {
+    if (process.env[envVar]) {
+      return process.env[envVar];
+    }
+  }
+  // Try to read from config file
+  try {
+    const fs = require("fs");
+    const path = require("path");
+    const os = require("os");
+    const configPaths = [
+      path.join(os.homedir(), ".vibecheck", "config.json"),
+      path.join(process.cwd(), ".vibecheckrc.json"),
+      path.join(process.cwd(), "vibecheck.config.json"),
+    ];
+    for (const configPath of configPaths) {
+      if (fs.existsSync(configPath)) {
+        const config = JSON.parse(fs.readFileSync(configPath, "utf8"));
+        if (config.apiKey || config.token) {
+          return config.apiKey || config.token;
+        }
+      }
+    }
+  } catch (err) {
+    // Ignore config file errors
+  }
+  return null;
+}
+// =============================================================================
+// SECURITY: Input Validation
+// =============================================================================
+/**
+ * Validate scanId format to prevent path injection.
+ *
+ * SECURITY FIX: scanId is interpolated into URLs like `/api/scans/${scanId}/progress`.
+ * Without validation, an attacker could inject path segments:
+ *   scanId = "../../admin/delete"
+ *   → URL becomes "/api/scans/../../admin/delete/progress"
+ *
+ * @param {string} scanId - The scan ID to validate
+ * @returns {string} - The validated scanId
+ * @throws {Error} - If scanId is invalid
+ */
+function validateScanId(scanId) {
+  if (!scanId || typeof scanId !== 'string') {
+    throw new Error('scanId is required and must be a string');
+  }
+  // Only allow alphanumeric, hyphens, underscores (no dots, slashes, etc.)
+  // Max length 64 to prevent abuse
+  if (!/^[a-zA-Z0-9_-]{1,64}$/.test(scanId)) {
+    throw new Error('Invalid scanId format - must be alphanumeric with hyphens/underscores only, max 64 chars');
+  }
+  return scanId;
+}
+/**
+ * Create a new scan record
+ */
+async function createScan(options) {
+  const {
+    repositoryId,
+    repositoryUrl,
+    localPath,
+    branch = "main",
+    enableLLM = false,
+  } = options;
+  const response = await makeRequest("/api/scans", {
+    body: {
+      repositoryId,
+      repositoryUrl,
+      localPath,
+      branch,
+      enableLLM,
+    },
+  });
+  if (!response.ok) {
+    throw new Error(`Failed to create scan: ${response.data?.error || response.error}`);
+  }
+  return response.data.data;
+}
+/**
+ * Update scan progress
+ */
+async function updateScanProgress(scanId, progress, status = null) {
+  const validatedId = validateScanId(scanId);
+  const response = await makeRequest(`/api/scans/${validatedId}/progress`, {
+    body: {
+      progress,
+      status,
+    },
+  });
+  if (!response.ok) {
+    logger.debug(`Failed to update scan progress: ${response.data?.error || response.error}`);
+  }
+  return response.data;
+}
+/**
+ * Submit scan results
+ */
+async function submitScanResults(scanId, results) {
+  const validatedId = validateScanId(scanId);
+  const {
+    verdict,
+    score,
+    findings,
+    filesScanned,
+    linesScanned,
+    durationMs,
+    metadata = {},
+  } = results;
+  const response = await makeRequest(`/api/scans/${validatedId}/complete`, {
+    body: {
+      verdict,
+      score,
+      findings,
+      filesScanned,
+      linesScanned,
+      durationMs,
+      metadata,
+    },
+  });
+  if (!response.ok) {
+    throw new Error(`Failed to submit scan results: ${response.data?.error || response.error}`);
+  }
+  return response.data;
+}
+/**
+ * Report scan error
+ */
+async function reportScanError(scanId, error) {
+  const validatedId = validateScanId(scanId);
+  const response = await makeRequest(`/api/scans/${validatedId}/error`, {
+    body: {
+      error: error.message || String(error),
+      stack: error.stack,
+    },
+  });
+  if (!response.ok) {
+    logger.debug(`Failed to report scan error: ${response.data?.error || response.error}`);
+  }
+  return response.data;
+}
+/**
+ * Check if API is available
+ */
+async function isApiAvailable() {
+  try {
+    const response = await makeRequest("/api/health", {
+      method: "GET",
+      timeout: 5000,
+    });
+    return response.ok;
+  } catch (err) {
+    return false;
+  }
+}
+module.exports = {
+  createScan,
+  updateScanProgress,
+  submitScanResults,
+  reportScanError,
+  isApiAvailable,
+  getApiKey,
+};

package/mcp-server/lib/logger.cjs ADDED Viewed

@@ -0,0 +1,30 @@
+/**
+ * Simple logger for MCP server
+ * Outputs to stderr to avoid interfering with MCP stdio protocol
+ */
+"use strict";
+const DEBUG = process.env.VIBECHECK_DEBUG === "true" || process.env.DEBUG === "true";
+const logger = {
+  debug(...args) {
+    if (DEBUG) {
+      console.error("[DEBUG]", ...args);
+    }
+  },
+  info(...args) {
+    console.error("[INFO]", ...args);
+  },
+  warn(...args) {
+    console.error("[WARN]", ...args);
+  },
+  error(...args) {
+    console.error("[ERROR]", ...args);
+  },
+};
+module.exports = { logger };

package/mcp-server/logger.js ADDED Viewed

@@ -0,0 +1,173 @@
+/**
+ * VibeCheck MCP Server Logger
+ *
+ * Centralized logging utility for all MCP server modules.
+ * Avoids console.log/warn/error in production code.
+ */
+"use strict";
+/**
+ * Log levels
+ */
+export const LOG_LEVELS = {
+  DEBUG: 0,
+  INFO: 1,
+  WARN: 2,
+  ERROR: 3,
+  SILENT: 4,
+};
+/**
+ * Current log level (can be set via environment)
+ */
+let currentLevel = LOG_LEVELS.INFO;
+// Set from environment
+if (process.env.VIBECHECK_LOG_LEVEL) {
+  const envLevel = process.env.VIBECHECK_LOG_LEVEL.toUpperCase();
+  if (LOG_LEVELS[envLevel] !== undefined) {
+    currentLevel = LOG_LEVELS[envLevel];
+  }
+}
+/**
+ * Log buffer for testing/inspection
+ */
+const logBuffer = [];
+const MAX_BUFFER_SIZE = 1000;
+/**
+ * Format a log message
+ * @param {string} level - Log level
+ * @param {string} module - Module name
+ * @param {string} message - Log message
+ * @returns {string} Formatted message
+ */
+function formatMessage(level, module, message) {
+  const timestamp = new Date().toISOString();
+  return `[${timestamp}] [${level}] [${module}] ${message}`;
+}
+/**
+ * Write a log entry
+ * @param {number} level - Log level number
+ * @param {string} levelName - Level name
+ * @param {string} module - Module name
+ * @param {string} message - Message
+ * @param {Error} [error] - Optional error object
+ */
+function writeLog(level, levelName, module, message, error = null) {
+  if (level < currentLevel) return;
+  const formatted = formatMessage(levelName, module, message);
+  // Add to buffer
+  logBuffer.push({
+    timestamp: new Date(),
+    level: levelName,
+    module,
+    message,
+    error: error ? { message: error.message, stack: error.stack } : null,
+  });
+  // Trim buffer
+  if (logBuffer.length > MAX_BUFFER_SIZE) {
+    logBuffer.shift();
+  }
+  // Write to stderr (MCP servers should write logs to stderr, stdout is for JSON-RPC)
+  if (level >= LOG_LEVELS.WARN) {
+    process.stderr.write(formatted + '\n');
+  } else if (process.env.VIBECHECK_DEBUG || currentLevel === LOG_LEVELS.DEBUG) {
+    process.stderr.write(formatted + '\n');
+  }
+}
+/**
+ * Create a logger for a specific module
+ * @param {string} moduleName - Module name
+ * @returns {Object} Logger instance
+ */
+export function createLogger(moduleName) {
+  return {
+    debug: (message) => writeLog(LOG_LEVELS.DEBUG, 'DEBUG', moduleName, message),
+    info: (message) => writeLog(LOG_LEVELS.INFO, 'INFO', moduleName, message),
+    warn: (message, error = null) => writeLog(LOG_LEVELS.WARN, 'WARN', moduleName, message, error),
+    error: (message, error = null) => writeLog(LOG_LEVELS.ERROR, 'ERROR', moduleName, message, error),
+  };
+}
+/**
+ * Set the global log level
+ * @param {string|number} level - Level name or number
+ */
+export function setLogLevel(level) {
+  if (typeof level === 'string') {
+    const upperLevel = level.toUpperCase();
+    if (LOG_LEVELS[upperLevel] !== undefined) {
+      currentLevel = LOG_LEVELS[upperLevel];
+    }
+  } else if (typeof level === 'number') {
+    currentLevel = level;
+  }
+}
+/**
+ * Get current log level
+ * @returns {number} Current level
+ */
+export function getLogLevel() {
+  return currentLevel;
+}
+/**
+ * Get recent log entries
+ * @param {number} count - Number of entries
+ * @returns {Object[]} Log entries
+ */
+export function getRecentLogs(count = 100) {
+  return logBuffer.slice(-count);
+}
+/**
+ * Clear log buffer
+ */
+export function clearLogs() {
+  logBuffer.length = 0;
+}
+/**
+ * Get error message safely from any error type
+ * @param {unknown} error - Error object
+ * @returns {string} Error message
+ */
+export function getErrorMessage(error) {
+  if (error instanceof Error) {
+    return error.message;
+  }
+  if (typeof error === 'string') {
+    return error;
+  }
+  if (error && typeof error === 'object' && 'message' in error) {
+    return String(error.message);
+  }
+  return String(error);
+}
+// Pre-created loggers for common modules
+export const conductorLogger = createLogger('Conductor');
+export const lawbookLogger = createLogger('Lawbook');
+export const timeMachineLogger = createLogger('TimeMachine');
+export const clearanceLogger = createLogger('Clearance');
+export const firewallLogger = createLogger('Firewall');
+export default {
+  createLogger,
+  setLogLevel,
+  getLogLevel,
+  getRecentLogs,
+  clearLogs,
+  getErrorMessage,
+  LOG_LEVELS,
+};

package/mcp-server/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "vibecheck-mcp-server",
-  "version": "3.2.0",
+  "version": "3.3.0",
   "description": "Professional MCP server for vibecheck - Intelligent development environment vibechecks",
   "type": "module",
   "main": "index.js",
@@ -24,7 +24,7 @@
     "@modelcontextprotocol/sdk": "^1.0.0"
   },
   "engines": {
-    "node": ">=18.0.0"
+    "node": ">=20.11"
   },
   "author": "vibecheck",
   "license": "MIT",

package/mcp-server/premium-tools.js CHANGED Viewed

@@ -16,7 +16,7 @@
 import fs from 'fs/promises';
 import path from 'path';
 import { execSync, spawn } from 'child_process';
-import { checkFeatureAccess } from "./tier-auth.js";
+import { getFeatureAccessStatus } from "./tier-auth.js";
 // State management (in-memory for MCP session, persisted to disk)
 class MCPState {
@@ -434,7 +434,7 @@ export async function handlePremiumTool(name, args, logger) {
   const requiredFeature = featureMap[name];
   if (requiredFeature) {
-    const access = await checkFeatureAccess(requiredFeature, args?.apiKey);
+    const access = await getFeatureAccessStatus(requiredFeature, args?.apiKey);
     if (!access.hasAccess) {
       return {
         content: [{