npm - @vibecheckai/cli - Versions diffs - 3.2.5 → 3.3.0 - Mend

@vibecheckai/cli 3.2.5 → 3.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (197) hide show

package/bin/.generated +25 -25
package/bin/dev/run-v2-torture.js +30 -30
package/bin/registry.js +192 -5
package/bin/runners/lib/__tests__/entitlements-v2.test.js +295 -295
package/bin/runners/lib/agent-firewall/change-packet/builder.js +280 -6
package/bin/runners/lib/agent-firewall/critic/index.js +151 -0
package/bin/runners/lib/agent-firewall/critic/judge.js +432 -0
package/bin/runners/lib/agent-firewall/critic/prompts.js +305 -0
package/bin/runners/lib/agent-firewall/lawbook/distributor.js +465 -0
package/bin/runners/lib/agent-firewall/lawbook/evaluator.js +604 -0
package/bin/runners/lib/agent-firewall/lawbook/index.js +304 -0
package/bin/runners/lib/agent-firewall/lawbook/registry.js +514 -0
package/bin/runners/lib/agent-firewall/lawbook/schema.js +420 -0
package/bin/runners/lib/agent-firewall/logger.js +141 -0
package/bin/runners/lib/agent-firewall/policy/loader.js +312 -4
package/bin/runners/lib/agent-firewall/policy/rules/ghost-env.js +113 -1
package/bin/runners/lib/agent-firewall/policy/rules/ghost-route.js +133 -6
package/bin/runners/lib/agent-firewall/proposal/extractor.js +394 -0
package/bin/runners/lib/agent-firewall/proposal/index.js +212 -0
package/bin/runners/lib/agent-firewall/proposal/schema.js +251 -0
package/bin/runners/lib/agent-firewall/proposal/validator.js +386 -0
package/bin/runners/lib/agent-firewall/reality/index.js +332 -0
package/bin/runners/lib/agent-firewall/reality/state.js +625 -0
package/bin/runners/lib/agent-firewall/reality/watcher.js +322 -0
package/bin/runners/lib/agent-firewall/risk/index.js +173 -0
package/bin/runners/lib/agent-firewall/risk/scorer.js +328 -0
package/bin/runners/lib/agent-firewall/risk/thresholds.js +321 -0
package/bin/runners/lib/agent-firewall/risk/vectors.js +421 -0
package/bin/runners/lib/agent-firewall/simulator/diff-simulator.js +472 -0
package/bin/runners/lib/agent-firewall/simulator/import-resolver.js +346 -0
package/bin/runners/lib/agent-firewall/simulator/index.js +181 -0
package/bin/runners/lib/agent-firewall/simulator/route-validator.js +380 -0
package/bin/runners/lib/agent-firewall/time-machine/incident-correlator.js +661 -0
package/bin/runners/lib/agent-firewall/time-machine/index.js +267 -0
package/bin/runners/lib/agent-firewall/time-machine/replay-engine.js +436 -0
package/bin/runners/lib/agent-firewall/time-machine/state-reconstructor.js +490 -0
package/bin/runners/lib/agent-firewall/time-machine/timeline-builder.js +530 -0
package/bin/runners/lib/analyzers.js +81 -18
package/bin/runners/lib/api-client.js +269 -0
package/bin/runners/lib/auth-truth.js +193 -193
package/bin/runners/lib/authority-badge.js +425 -0
package/bin/runners/lib/backup.js +62 -62
package/bin/runners/lib/billing.js +107 -107
package/bin/runners/lib/claims.js +118 -118
package/bin/runners/lib/cli-output.js +7 -1
package/bin/runners/lib/cli-ui.js +540 -540
package/bin/runners/lib/contracts/auth-contract.js +202 -202
package/bin/runners/lib/contracts/env-contract.js +181 -181
package/bin/runners/lib/contracts/external-contract.js +206 -206
package/bin/runners/lib/contracts/guard.js +168 -168
package/bin/runners/lib/contracts/index.js +89 -89
package/bin/runners/lib/contracts/plan-validator.js +311 -311
package/bin/runners/lib/contracts/route-contract.js +199 -199
package/bin/runners/lib/contracts.js +804 -804
package/bin/runners/lib/detect.js +89 -89
package/bin/runners/lib/doctor/autofix.js +254 -254
package/bin/runners/lib/doctor/index.js +37 -37
package/bin/runners/lib/doctor/modules/dependencies.js +325 -325
package/bin/runners/lib/doctor/modules/index.js +46 -46
package/bin/runners/lib/doctor/modules/network.js +250 -250
package/bin/runners/lib/doctor/modules/project.js +312 -312
package/bin/runners/lib/doctor/modules/runtime.js +224 -224
package/bin/runners/lib/doctor/modules/security.js +348 -348
package/bin/runners/lib/doctor/modules/system.js +213 -213
package/bin/runners/lib/doctor/modules/vibecheck.js +394 -394
package/bin/runners/lib/doctor/reporter.js +262 -262
package/bin/runners/lib/doctor/service.js +262 -262
package/bin/runners/lib/doctor/types.js +113 -113
package/bin/runners/lib/doctor/ui.js +263 -263
package/bin/runners/lib/doctor-v2.js +608 -608
package/bin/runners/lib/drift.js +425 -425
package/bin/runners/lib/enforcement.js +72 -72
package/bin/runners/lib/enterprise-detect.js +603 -603
package/bin/runners/lib/enterprise-init.js +942 -942
package/bin/runners/lib/env-resolver.js +417 -417
package/bin/runners/lib/env-template.js +66 -66
package/bin/runners/lib/env.js +189 -189
package/bin/runners/lib/error-handler.js +16 -9
package/bin/runners/lib/exit-codes.js +275 -0
package/bin/runners/lib/extractors/client-calls.js +990 -990
package/bin/runners/lib/extractors/fastify-route-dump.js +573 -573
package/bin/runners/lib/extractors/fastify-routes.js +426 -426
package/bin/runners/lib/extractors/index.js +363 -363
package/bin/runners/lib/extractors/next-routes.js +524 -524
package/bin/runners/lib/extractors/proof-graph.js +431 -431
package/bin/runners/lib/extractors/route-matcher.js +451 -451
package/bin/runners/lib/extractors/truthpack-v2.js +377 -377
package/bin/runners/lib/extractors/ui-bindings.js +547 -547
package/bin/runners/lib/findings-schema.js +281 -281
package/bin/runners/lib/firewall-prompt.js +50 -50
package/bin/runners/lib/global-flags.js +37 -0
package/bin/runners/lib/graph/graph-builder.js +265 -265
package/bin/runners/lib/graph/html-renderer.js +413 -413
package/bin/runners/lib/graph/index.js +32 -32
package/bin/runners/lib/graph/runtime-collector.js +215 -215
package/bin/runners/lib/graph/static-extractor.js +518 -518
package/bin/runners/lib/help-formatter.js +413 -0
package/bin/runners/lib/html-report.js +650 -650
package/bin/runners/lib/llm.js +75 -75
package/bin/runners/lib/logger.js +38 -0
package/bin/runners/lib/meter.js +61 -61
package/bin/runners/lib/missions/evidence.js +126 -126
package/bin/runners/lib/patch.js +40 -40
package/bin/runners/lib/permissions/auth-model.js +213 -213
package/bin/runners/lib/permissions/idor-prover.js +205 -205
package/bin/runners/lib/permissions/index.js +45 -45
package/bin/runners/lib/permissions/matrix-builder.js +198 -198
package/bin/runners/lib/pkgjson.js +28 -28
package/bin/runners/lib/policy.js +295 -295
package/bin/runners/lib/preflight.js +142 -142
package/bin/runners/lib/reality/correlation-detectors.js +359 -359
package/bin/runners/lib/reality/index.js +318 -318
package/bin/runners/lib/reality/request-hashing.js +416 -416
package/bin/runners/lib/reality/request-mapper.js +453 -453
package/bin/runners/lib/reality/safety-rails.js +463 -463
package/bin/runners/lib/reality/semantic-snapshot.js +408 -408
package/bin/runners/lib/reality/toast-detector.js +393 -393
package/bin/runners/lib/reality-findings.js +84 -84
package/bin/runners/lib/receipts.js +179 -179
package/bin/runners/lib/redact.js +29 -29
package/bin/runners/lib/replay/capsule-manager.js +154 -154
package/bin/runners/lib/replay/index.js +263 -263
package/bin/runners/lib/replay/player.js +348 -348
package/bin/runners/lib/replay/recorder.js +331 -331
package/bin/runners/lib/report.js +135 -135
package/bin/runners/lib/route-detection.js +1140 -1140
package/bin/runners/lib/sandbox/index.js +59 -59
package/bin/runners/lib/sandbox/proof-chain.js +399 -399
package/bin/runners/lib/sandbox/sandbox-runner.js +205 -205
package/bin/runners/lib/sandbox/worktree.js +174 -174
package/bin/runners/lib/schema-validator.js +350 -350
package/bin/runners/lib/schemas/contracts.schema.json +160 -160
package/bin/runners/lib/schemas/finding.schema.json +100 -100
package/bin/runners/lib/schemas/mission-pack.schema.json +206 -206
package/bin/runners/lib/schemas/proof-graph.schema.json +176 -176
package/bin/runners/lib/schemas/reality-report.schema.json +162 -162
package/bin/runners/lib/schemas/share-pack.schema.json +180 -180
package/bin/runners/lib/schemas/ship-report.schema.json +117 -117
package/bin/runners/lib/schemas/truthpack-v2.schema.json +303 -303
package/bin/runners/lib/schemas/validator.js +438 -438
package/bin/runners/lib/score-history.js +282 -282
package/bin/runners/lib/share-pack.js +239 -239
package/bin/runners/lib/snippets.js +67 -67
package/bin/runners/lib/unified-cli-output.js +604 -0
package/bin/runners/lib/upsell.js +658 -510
package/bin/runners/lib/usage.js +153 -153
package/bin/runners/lib/validate-patch.js +156 -156
package/bin/runners/lib/verdict-engine.js +628 -628
package/bin/runners/reality/engine.js +917 -917
package/bin/runners/reality/flows.js +122 -122
package/bin/runners/reality/report.js +378 -378
package/bin/runners/reality/session.js +193 -193
package/bin/runners/runAgent.d.ts +5 -0
package/bin/runners/runApprove.js +1200 -0
package/bin/runners/runAuth.js +324 -95
package/bin/runners/runCheckpoint.js +39 -21
package/bin/runners/runClassify.js +859 -0
package/bin/runners/runContext.js +136 -24
package/bin/runners/runDoctor.js +108 -68
package/bin/runners/runFirewall.d.ts +5 -0
package/bin/runners/runFirewallHook.d.ts +5 -0
package/bin/runners/runFix.js +6 -5
package/bin/runners/runGuard.js +262 -168
package/bin/runners/runInit.js +3 -2
package/bin/runners/runMcp.js +130 -52
package/bin/runners/runPolish.js +43 -20
package/bin/runners/runProve.js +1 -2
package/bin/runners/runReport.js +3 -2
package/bin/runners/runScan.js +145 -44
package/bin/runners/runShip.js +3 -4
package/bin/runners/runTruth.d.ts +5 -0
package/bin/runners/runValidate.js +19 -2
package/bin/runners/runWatch.js +104 -53
package/bin/vibecheck.js +106 -19
package/mcp-server/HARDENING_SUMMARY.md +299 -0
package/mcp-server/agent-firewall-interceptor.js +367 -31
package/mcp-server/authority-tools.js +569 -0
package/mcp-server/conductor/conflict-resolver.js +588 -0
package/mcp-server/conductor/execution-planner.js +544 -0
package/mcp-server/conductor/index.js +377 -0
package/mcp-server/conductor/lock-manager.js +615 -0
package/mcp-server/conductor/request-queue.js +550 -0
package/mcp-server/conductor/session-manager.js +500 -0
package/mcp-server/conductor/tools.js +510 -0
package/mcp-server/index.js +1199 -208
package/mcp-server/lib/api-client.cjs +305 -0
package/mcp-server/lib/logger.cjs +30 -0
package/mcp-server/logger.js +173 -0
package/mcp-server/package.json +2 -2
package/mcp-server/premium-tools.js +2 -2
package/mcp-server/tier-auth.js +351 -136
package/mcp-server/tools/index.js +72 -72
package/mcp-server/truth-firewall-tools.js +145 -15
package/mcp-server/vibecheck-tools.js +2 -2
package/package.json +2 -3
package/mcp-server/index.old.js +0 -4137
package/mcp-server/package-lock.json +0 -165

package/bin/runners/lib/exit-codes.js ADDED Viewed

@@ -0,0 +1,275 @@
+/**
+ * Vibecheck CLI Exit Codes - Standardized for World-Class UX
+ *
+ * ═══════════════════════════════════════════════════════════════════════════════
+ * EXIT CODE REFERENCE
+ * ═══════════════════════════════════════════════════════════════════════════════
+ *
+ * Standard Unix conventions extended for CLI tooling:
+ *
+ * 0    SUCCESS         Command completed successfully, no issues found
+ * 1    WARNINGS        Command completed with warnings (non-blocking issues)
+ * 2    BLOCKING        Command found blocking issues (critical/high severity)
+ * 3    USER_ERROR      Invalid arguments, missing required flags, bad input
+ * 4    NOT_FOUND       Command not found, file not found, resource missing
+ * 5    AUTH_REQUIRED   Authentication required but not provided
+ * 6    AUTH_FAILED     Authentication failed (invalid/expired credentials)
+ * 7    TIER_REQUIRED   Feature requires higher subscription tier
+ * 8    RATE_LIMITED    API rate limit exceeded
+ * 9    NETWORK_ERROR   Network connectivity issue
+ * 10   INTERNAL_ERROR  Unexpected internal error
+ *
+ * CI-Friendly: Exit codes 0-2 are "soft" (scan results), 3+ are "hard" (errors)
+ * ═══════════════════════════════════════════════════════════════════════════════
+ */
+"use strict";
+// ═══════════════════════════════════════════════════════════════════════════════
+// EXIT CODE CONSTANTS
+// ═══════════════════════════════════════════════════════════════════════════════
+const EXIT = {
+  // Success states (0-2)
+  SUCCESS: 0,           // All good, no issues
+  WARNINGS: 1,          // Completed with warnings (medium/low severity)
+  BLOCKING: 2,          // Blocking issues found (critical/high severity)
+  // User errors (3-4)
+  USER_ERROR: 3,        // Bad args, invalid input, usage error
+  NOT_FOUND: 4,         // Resource/command/file not found
+  // Auth errors (5-7)
+  AUTH_REQUIRED: 5,     // Need to log in
+  AUTH_FAILED: 6,       // Bad credentials
+  TIER_REQUIRED: 7,     // Need higher plan
+  // Transient errors (8-9)
+  RATE_LIMITED: 8,      // Try again later
+  NETWORK_ERROR: 9,     // Connectivity issue
+  // Fatal errors (10+)
+  INTERNAL_ERROR: 10,   // Bug, unexpected error
+  // Process signals (standard Unix)
+  SIGINT: 130,          // Ctrl+C
+  SIGTERM: 143,         // kill
+};
+// ═══════════════════════════════════════════════════════════════════════════════
+// EXIT CODE METADATA
+// ═══════════════════════════════════════════════════════════════════════════════
+const EXIT_INFO = {
+  [EXIT.SUCCESS]: {
+    name: "SUCCESS",
+    description: "Command completed successfully",
+    ciStatus: "success",
+    recoverable: true,
+  },
+  [EXIT.WARNINGS]: {
+    name: "WARNINGS",
+    description: "Completed with warnings (non-blocking issues)",
+    ciStatus: "warning",
+    recoverable: true,
+  },
+  [EXIT.BLOCKING]: {
+    name: "BLOCKING",
+    description: "Blocking issues found (critical/high severity)",
+    ciStatus: "failure",
+    recoverable: true,
+  },
+  [EXIT.USER_ERROR]: {
+    name: "USER_ERROR",
+    description: "Invalid arguments or usage",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Check command usage with --help",
+  },
+  [EXIT.NOT_FOUND]: {
+    name: "NOT_FOUND",
+    description: "Resource not found",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Verify the path or resource exists",
+  },
+  [EXIT.AUTH_REQUIRED]: {
+    name: "AUTH_REQUIRED",
+    description: "Authentication required",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Run 'vibecheck login' to authenticate",
+  },
+  [EXIT.AUTH_FAILED]: {
+    name: "AUTH_FAILED",
+    description: "Authentication failed",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Check your API key or run 'vibecheck login' again",
+  },
+  [EXIT.TIER_REQUIRED]: {
+    name: "TIER_REQUIRED",
+    description: "Higher subscription tier required",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Upgrade at https://vibecheckai.dev/pricing",
+  },
+  [EXIT.RATE_LIMITED]: {
+    name: "RATE_LIMITED",
+    description: "Rate limit exceeded",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Wait a moment and try again",
+  },
+  [EXIT.NETWORK_ERROR]: {
+    name: "NETWORK_ERROR",
+    description: "Network connectivity issue",
+    ciStatus: "failure",
+    recoverable: true,
+    hint: "Check your internet connection or try --offline mode",
+  },
+  [EXIT.INTERNAL_ERROR]: {
+    name: "INTERNAL_ERROR",
+    description: "Unexpected internal error",
+    ciStatus: "failure",
+    recoverable: false,
+    hint: "Please report this issue at https://github.com/vibecheckai/vibecheck/issues",
+  },
+};
+// ═══════════════════════════════════════════════════════════════════════════════
+// HELPER FUNCTIONS
+// ═══════════════════════════════════════════════════════════════════════════════
+/**
+ * Convert verdict string to exit code
+ * @param {string} verdict - SHIP, WARN, BLOCK, PASS, FAIL
+ * @returns {number} exit code
+ */
+function verdictToExitCode(verdict) {
+  const v = String(verdict).toUpperCase();
+  if (v === "SHIP" || v === "PASS" || v === "SUCCESS" || v === "OK") {
+    return EXIT.SUCCESS;
+  }
+  if (v === "WARN" || v === "WARNING" || v === "WARNINGS") {
+    return EXIT.WARNINGS;
+  }
+  if (v === "BLOCK" || v === "FAIL" || v === "FAILURE" || v === "ERROR") {
+    return EXIT.BLOCKING;
+  }
+  return EXIT.WARNINGS; // Default to warnings for unknown
+}
+/**
+ * Convert exit code to verdict string
+ * @param {number} exitCode
+ * @returns {string} verdict
+ */
+function exitCodeToVerdict(exitCode) {
+  switch (exitCode) {
+    case EXIT.SUCCESS: return "SHIP";
+    case EXIT.WARNINGS: return "WARN";
+    case EXIT.BLOCKING: return "BLOCK";
+    default: return "BLOCK";
+  }
+}
+/**
+ * Get exit info for an exit code
+ * @param {number} exitCode
+ * @returns {object} exit info
+ */
+function getExitInfo(exitCode) {
+  return EXIT_INFO[exitCode] || EXIT_INFO[EXIT.INTERNAL_ERROR];
+}
+/**
+ * Check if exit code represents success (including warnings)
+ * @param {number} exitCode
+ * @returns {boolean}
+ */
+function isSuccess(exitCode) {
+  return exitCode === EXIT.SUCCESS;
+}
+/**
+ * Check if exit code represents a "soft" failure (scan results, not errors)
+ * @param {number} exitCode
+ * @returns {boolean}
+ */
+function isSoftFailure(exitCode) {
+  return exitCode === EXIT.WARNINGS || exitCode === EXIT.BLOCKING;
+}
+/**
+ * Check if exit code represents a "hard" failure (errors)
+ * @param {number} exitCode
+ * @returns {boolean}
+ */
+function isHardFailure(exitCode) {
+  return exitCode >= EXIT.USER_ERROR;
+}
+/**
+ * Check if the error is recoverable (user can fix and retry)
+ * @param {number} exitCode
+ * @returns {boolean}
+ */
+function isRecoverable(exitCode) {
+  const info = EXIT_INFO[exitCode];
+  return info ? info.recoverable : false;
+}
+/**
+ * Get hint message for exit code
+ * @param {number} exitCode
+ * @returns {string|null}
+ */
+function getHint(exitCode) {
+  const info = EXIT_INFO[exitCode];
+  return info?.hint || null;
+}
+/**
+ * Get CI status for exit code
+ * @param {number} exitCode
+ * @returns {string} "success" | "warning" | "failure"
+ */
+function getCIStatus(exitCode) {
+  const info = EXIT_INFO[exitCode];
+  return info?.ciStatus || "failure";
+}
+/**
+ * Create an error object with proper exit code
+ * @param {string} message
+ * @param {number} exitCode
+ * @param {object} details
+ * @returns {Error}
+ */
+function createExitError(message, exitCode, details = {}) {
+  const error = new Error(message);
+  error.exitCode = exitCode;
+  error.exitInfo = getExitInfo(exitCode);
+  Object.assign(error, details);
+  return error;
+}
+// ═══════════════════════════════════════════════════════════════════════════════
+// EXPORTS
+// ═══════════════════════════════════════════════════════════════════════════════
+module.exports = {
+  EXIT,
+  EXIT_INFO,
+  verdictToExitCode,
+  exitCodeToVerdict,
+  getExitInfo,
+  isSuccess,
+  isSoftFailure,
+  isHardFailure,
+  isRecoverable,
+  getHint,
+  getCIStatus,
+  createExitError,
+};