npm - @vibecheckai/cli - Versions diffs - 3.4.0 → 3.5.1 - Mend

@vibecheckai/cli 3.4.0 → 3.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (228) hide show

package/bin/registry.js +154 -338
package/bin/runners/context/generators/mcp.js +13 -15
package/bin/runners/context/proof-context.js +1 -248
package/bin/runners/lib/analysis-core.js +180 -198
package/bin/runners/lib/analyzers.js +223 -1669
package/bin/runners/lib/cli-output.js +210 -242
package/bin/runners/lib/detectors-v2.js +785 -547
package/bin/runners/lib/entitlements-v2.js +458 -96
package/bin/runners/lib/error-handler.js +9 -16
package/bin/runners/lib/global-flags.js +0 -37
package/bin/runners/lib/route-truth.js +322 -1167
package/bin/runners/lib/scan-output.js +469 -448
package/bin/runners/lib/ship-output.js +27 -280
package/bin/runners/lib/terminal-ui.js +733 -231
package/bin/runners/lib/truth.js +321 -1004
package/bin/runners/lib/unified-output.js +158 -162
package/bin/runners/lib/upsell.js +204 -104
package/bin/runners/runAllowlist.js +324 -0
package/bin/runners/runAuth.js +95 -324
package/bin/runners/runCheckpoint.js +21 -39
package/bin/runners/runContext.js +24 -136
package/bin/runners/runDoctor.js +67 -115
package/bin/runners/runEvidencePack.js +219 -0
package/bin/runners/runFix.js +5 -6
package/bin/runners/runGuard.js +118 -212
package/bin/runners/runInit.js +2 -14
package/bin/runners/runInstall.js +281 -0
package/bin/runners/runLabs.js +341 -0
package/bin/runners/runMcp.js +52 -130
package/bin/runners/runPolish.js +20 -43
package/bin/runners/runProve.js +3 -13
package/bin/runners/runReality.js +0 -14
package/bin/runners/runReport.js +2 -3
package/bin/runners/runScan.js +44 -511
package/bin/runners/runShip.js +14 -28
package/bin/runners/runValidate.js +2 -19
package/bin/runners/runWatch.js +54 -118
package/bin/vibecheck.js +41 -148
package/mcp-server/ARCHITECTURE.md +339 -0
package/mcp-server/__tests__/cache.test.ts +313 -0
package/mcp-server/__tests__/executor.test.ts +239 -0
package/mcp-server/__tests__/fixtures/exclusion-test/.cache/webpack/cache.pack +1 -0
package/mcp-server/__tests__/fixtures/exclusion-test/.next/server/chunk.js +3 -0
package/mcp-server/__tests__/fixtures/exclusion-test/.turbo/cache.json +3 -0
package/mcp-server/__tests__/fixtures/exclusion-test/.venv/lib/env.py +3 -0
package/mcp-server/__tests__/fixtures/exclusion-test/dist/bundle.js +3 -0
package/mcp-server/__tests__/fixtures/exclusion-test/package.json +5 -0
package/mcp-server/__tests__/fixtures/exclusion-test/src/app.ts +5 -0
package/mcp-server/__tests__/fixtures/exclusion-test/venv/lib/config.py +4 -0
package/mcp-server/__tests__/ids.test.ts +345 -0
package/mcp-server/__tests__/integration/tools.test.ts +410 -0
package/mcp-server/__tests__/registry.test.ts +365 -0
package/mcp-server/__tests__/sandbox.test.ts +323 -0
package/mcp-server/__tests__/schemas.test.ts +372 -0
package/mcp-server/benchmarks/run-benchmarks.ts +304 -0
package/mcp-server/examples/doctor.request.json +14 -0
package/mcp-server/examples/doctor.response.json +53 -0
package/mcp-server/examples/error.response.json +15 -0
package/mcp-server/examples/scan.request.json +14 -0
package/mcp-server/examples/scan.response.json +108 -0
package/mcp-server/handlers/tool-handler.ts +671 -0
package/mcp-server/index-v3.ts +293 -0
package/mcp-server/index.js +1072 -1573
package/mcp-server/index.old.js +4137 -0
package/mcp-server/lib/cache.ts +341 -0
package/mcp-server/lib/errors.ts +346 -0
package/mcp-server/lib/executor.ts +792 -0
package/mcp-server/lib/ids.ts +238 -0
package/mcp-server/lib/logger.ts +368 -0
package/mcp-server/lib/metrics.ts +365 -0
package/mcp-server/lib/sandbox.ts +337 -0
package/mcp-server/lib/validator.ts +229 -0
package/mcp-server/package-lock.json +165 -0
package/mcp-server/package.json +32 -7
package/mcp-server/premium-tools.js +2 -2
package/mcp-server/registry/tools.json +476 -0
package/mcp-server/schemas/error-envelope.schema.json +125 -0
package/mcp-server/schemas/finding.schema.json +167 -0
package/mcp-server/schemas/report-artifact.schema.json +88 -0
package/mcp-server/schemas/run-request.schema.json +75 -0
package/mcp-server/schemas/verdict.schema.json +168 -0
package/mcp-server/tier-auth.d.ts +71 -0
package/mcp-server/tier-auth.js +371 -183
package/mcp-server/truth-context.js +90 -131
package/mcp-server/truth-firewall-tools.js +1000 -1611
package/mcp-server/tsconfig.json +34 -0
package/mcp-server/vibecheck-tools.js +2 -2
package/mcp-server/vitest.config.ts +16 -0
package/package.json +3 -4
package/bin/runners/lib/agent-firewall/ai/false-positive-analyzer.js +0 -474
package/bin/runners/lib/agent-firewall/change-packet/builder.js +0 -488
package/bin/runners/lib/agent-firewall/change-packet/schema.json +0 -228
package/bin/runners/lib/agent-firewall/change-packet/store.js +0 -200
package/bin/runners/lib/agent-firewall/claims/claim-types.js +0 -21
package/bin/runners/lib/agent-firewall/claims/extractor.js +0 -303
package/bin/runners/lib/agent-firewall/claims/patterns.js +0 -24
package/bin/runners/lib/agent-firewall/critic/index.js +0 -151
package/bin/runners/lib/agent-firewall/critic/judge.js +0 -432
package/bin/runners/lib/agent-firewall/critic/prompts.js +0 -305
package/bin/runners/lib/agent-firewall/evidence/auth-evidence.js +0 -88
package/bin/runners/lib/agent-firewall/evidence/contract-evidence.js +0 -75
package/bin/runners/lib/agent-firewall/evidence/env-evidence.js +0 -127
package/bin/runners/lib/agent-firewall/evidence/resolver.js +0 -102
package/bin/runners/lib/agent-firewall/evidence/route-evidence.js +0 -213
package/bin/runners/lib/agent-firewall/evidence/side-effect-evidence.js +0 -145
package/bin/runners/lib/agent-firewall/fs-hook/daemon.js +0 -19
package/bin/runners/lib/agent-firewall/fs-hook/installer.js +0 -87
package/bin/runners/lib/agent-firewall/fs-hook/watcher.js +0 -184
package/bin/runners/lib/agent-firewall/git-hook/pre-commit.js +0 -163
package/bin/runners/lib/agent-firewall/ide-extension/cursor.js +0 -107
package/bin/runners/lib/agent-firewall/ide-extension/vscode.js +0 -68
package/bin/runners/lib/agent-firewall/ide-extension/windsurf.js +0 -66
package/bin/runners/lib/agent-firewall/interceptor/base.js +0 -304
package/bin/runners/lib/agent-firewall/interceptor/cursor.js +0 -35
package/bin/runners/lib/agent-firewall/interceptor/vscode.js +0 -35
package/bin/runners/lib/agent-firewall/interceptor/windsurf.js +0 -34
package/bin/runners/lib/agent-firewall/lawbook/distributor.js +0 -465
package/bin/runners/lib/agent-firewall/lawbook/evaluator.js +0 -604
package/bin/runners/lib/agent-firewall/lawbook/index.js +0 -304
package/bin/runners/lib/agent-firewall/lawbook/registry.js +0 -514
package/bin/runners/lib/agent-firewall/lawbook/schema.js +0 -420
package/bin/runners/lib/agent-firewall/logger.js +0 -141
package/bin/runners/lib/agent-firewall/policy/default-policy.json +0 -90
package/bin/runners/lib/agent-firewall/policy/engine.js +0 -103
package/bin/runners/lib/agent-firewall/policy/loader.js +0 -451
package/bin/runners/lib/agent-firewall/policy/rules/auth-drift.js +0 -50
package/bin/runners/lib/agent-firewall/policy/rules/contract-drift.js +0 -50
package/bin/runners/lib/agent-firewall/policy/rules/fake-success.js +0 -86
package/bin/runners/lib/agent-firewall/policy/rules/ghost-env.js +0 -162
package/bin/runners/lib/agent-firewall/policy/rules/ghost-route.js +0 -189
package/bin/runners/lib/agent-firewall/policy/rules/scope.js +0 -93
package/bin/runners/lib/agent-firewall/policy/rules/unsafe-side-effect.js +0 -57
package/bin/runners/lib/agent-firewall/policy/schema.json +0 -183
package/bin/runners/lib/agent-firewall/policy/verdict.js +0 -54
package/bin/runners/lib/agent-firewall/proposal/extractor.js +0 -394
package/bin/runners/lib/agent-firewall/proposal/index.js +0 -212
package/bin/runners/lib/agent-firewall/proposal/schema.js +0 -251
package/bin/runners/lib/agent-firewall/proposal/validator.js +0 -386
package/bin/runners/lib/agent-firewall/reality/index.js +0 -332
package/bin/runners/lib/agent-firewall/reality/state.js +0 -625
package/bin/runners/lib/agent-firewall/reality/watcher.js +0 -322
package/bin/runners/lib/agent-firewall/risk/index.js +0 -173
package/bin/runners/lib/agent-firewall/risk/scorer.js +0 -328
package/bin/runners/lib/agent-firewall/risk/thresholds.js +0 -321
package/bin/runners/lib/agent-firewall/risk/vectors.js +0 -421
package/bin/runners/lib/agent-firewall/simulator/diff-simulator.js +0 -472
package/bin/runners/lib/agent-firewall/simulator/import-resolver.js +0 -346
package/bin/runners/lib/agent-firewall/simulator/index.js +0 -181
package/bin/runners/lib/agent-firewall/simulator/route-validator.js +0 -380
package/bin/runners/lib/agent-firewall/time-machine/incident-correlator.js +0 -661
package/bin/runners/lib/agent-firewall/time-machine/index.js +0 -267
package/bin/runners/lib/agent-firewall/time-machine/replay-engine.js +0 -436
package/bin/runners/lib/agent-firewall/time-machine/state-reconstructor.js +0 -490
package/bin/runners/lib/agent-firewall/time-machine/timeline-builder.js +0 -530
package/bin/runners/lib/agent-firewall/truthpack/index.js +0 -67
package/bin/runners/lib/agent-firewall/truthpack/loader.js +0 -137
package/bin/runners/lib/agent-firewall/unblock/planner.js +0 -337
package/bin/runners/lib/agent-firewall/utils/ignore-checker.js +0 -118
package/bin/runners/lib/api-client.js +0 -269
package/bin/runners/lib/authority-badge.js +0 -425
package/bin/runners/lib/engines/accessibility-engine.js +0 -190
package/bin/runners/lib/engines/api-consistency-engine.js +0 -162
package/bin/runners/lib/engines/ast-cache.js +0 -99
package/bin/runners/lib/engines/code-quality-engine.js +0 -255
package/bin/runners/lib/engines/console-logs-engine.js +0 -115
package/bin/runners/lib/engines/cross-file-analysis-engine.js +0 -268
package/bin/runners/lib/engines/dead-code-engine.js +0 -198
package/bin/runners/lib/engines/deprecated-api-engine.js +0 -226
package/bin/runners/lib/engines/empty-catch-engine.js +0 -150
package/bin/runners/lib/engines/file-filter.js +0 -131
package/bin/runners/lib/engines/hardcoded-secrets-engine.js +0 -251
package/bin/runners/lib/engines/mock-data-engine.js +0 -272
package/bin/runners/lib/engines/parallel-processor.js +0 -71
package/bin/runners/lib/engines/performance-issues-engine.js +0 -265
package/bin/runners/lib/engines/security-vulnerabilities-engine.js +0 -243
package/bin/runners/lib/engines/todo-fixme-engine.js +0 -115
package/bin/runners/lib/engines/type-aware-engine.js +0 -152
package/bin/runners/lib/engines/unsafe-regex-engine.js +0 -225
package/bin/runners/lib/engines/vibecheck-engines/README.md +0 -53
package/bin/runners/lib/engines/vibecheck-engines/index.js +0 -15
package/bin/runners/lib/engines/vibecheck-engines/lib/ast-cache.js +0 -164
package/bin/runners/lib/engines/vibecheck-engines/lib/code-quality-engine.js +0 -291
package/bin/runners/lib/engines/vibecheck-engines/lib/console-logs-engine.js +0 -83
package/bin/runners/lib/engines/vibecheck-engines/lib/dead-code-engine.js +0 -198
package/bin/runners/lib/engines/vibecheck-engines/lib/deprecated-api-engine.js +0 -275
package/bin/runners/lib/engines/vibecheck-engines/lib/empty-catch-engine.js +0 -167
package/bin/runners/lib/engines/vibecheck-engines/lib/file-filter.js +0 -217
package/bin/runners/lib/engines/vibecheck-engines/lib/hardcoded-secrets-engine.js +0 -139
package/bin/runners/lib/engines/vibecheck-engines/lib/mock-data-engine.js +0 -140
package/bin/runners/lib/engines/vibecheck-engines/lib/parallel-processor.js +0 -164
package/bin/runners/lib/engines/vibecheck-engines/lib/performance-issues-engine.js +0 -234
package/bin/runners/lib/engines/vibecheck-engines/lib/type-aware-engine.js +0 -217
package/bin/runners/lib/engines/vibecheck-engines/lib/unsafe-regex-engine.js +0 -78
package/bin/runners/lib/engines/vibecheck-engines/package.json +0 -13
package/bin/runners/lib/exit-codes.js +0 -275
package/bin/runners/lib/fingerprint.js +0 -377
package/bin/runners/lib/help-formatter.js +0 -413
package/bin/runners/lib/logger.js +0 -38
package/bin/runners/lib/ship-output-enterprise.js +0 -239
package/bin/runners/lib/unified-cli-output.js +0 -604
package/bin/runners/runAgent.d.ts +0 -5
package/bin/runners/runAgent.js +0 -161
package/bin/runners/runApprove.js +0 -1200
package/bin/runners/runClassify.js +0 -859
package/bin/runners/runContext.d.ts +0 -4
package/bin/runners/runFirewall.d.ts +0 -5
package/bin/runners/runFirewall.js +0 -134
package/bin/runners/runFirewallHook.d.ts +0 -5
package/bin/runners/runFirewallHook.js +0 -56
package/bin/runners/runPolish.d.ts +0 -4
package/bin/runners/runProof.zip +0 -0
package/bin/runners/runTruth.d.ts +0 -5
package/bin/runners/runTruth.js +0 -101
package/mcp-server/HARDENING_SUMMARY.md +0 -299
package/mcp-server/agent-firewall-interceptor.js +0 -500
package/mcp-server/authority-tools.js +0 -569
package/mcp-server/conductor/conflict-resolver.js +0 -588
package/mcp-server/conductor/execution-planner.js +0 -544
package/mcp-server/conductor/index.js +0 -377
package/mcp-server/conductor/lock-manager.js +0 -615
package/mcp-server/conductor/request-queue.js +0 -550
package/mcp-server/conductor/session-manager.js +0 -500
package/mcp-server/conductor/tools.js +0 -510
package/mcp-server/lib/api-client.cjs +0 -13
package/mcp-server/lib/logger.cjs +0 -30
package/mcp-server/logger.js +0 -173
package/mcp-server/tools-v3.js +0 -706
package/mcp-server/vibecheck-mcp-server-3.2.0.tgz +0 -0

package/bin/runners/lib/api-client.js DELETED Viewed

@@ -1,269 +0,0 @@
-/**
- * API Client for Vibecheck Dashboard Integration
- *
- * Handles communication with the web dashboard API for:
- * - Creating scan records
- * - Updating scan progress
- * - Submitting scan results
- * - Broadcasting real-time updates
- */
-"use strict";
-const https = require("https");
-const http = require("http");
-const { logger } = require("./logger");
-// Configuration
-const API_BASE_URL = process.env.VIBECHECK_API_URL || "https://api.vibecheckai.dev";
-const API_TIMEOUT = 30000; // 30 seconds
-/**
- * Make HTTP request to API
- */
-async function makeRequest(path, options = {}) {
-  const url = new URL(path, API_BASE_URL);
-  const isHttps = url.protocol === "https:";
-  const client = isHttps ? https : http;
-  const defaultOptions = {
-    method: "POST",
-    headers: {
-      "Content-Type": "application/json",
-      "User-Agent": "vibecheck-cli/3.3.0",
-    },
-    timeout: API_TIMEOUT,
-  };
-  const requestOptions = {
-    ...defaultOptions,
-    ...options,
-    hostname: url.hostname,
-    port: url.port || (isHttps ? 443 : 80),
-    path: url.pathname + url.search,
-  };
-  // Add Authorization header if API key is available
-  const apiKey = process.env.VIBECHECK_API_KEY || getApiKey();
-  if (apiKey) {
-    requestOptions.headers.Authorization = `Bearer ${apiKey}`;
-  }
-  return new Promise((resolve, reject) => {
-    const req = client.request(requestOptions, (res) => {
-      let data = "";
-      res.on("data", (chunk) => {
-        data += chunk;
-      });
-      res.on("end", () => {
-        try {
-          const jsonData = data ? JSON.parse(data) : {};
-          resolve({
-            ok: res.statusCode >= 200 && res.statusCode < 300,
-            status: res.statusCode,
-            data: jsonData,
-          });
-        } catch (err) {
-          resolve({
-            ok: false,
-            status: res.statusCode,
-            data: { error: "Invalid JSON response" },
-          });
-        }
-      });
-    });
-    req.on("error", (err) => {
-      logger.debug(`API request failed: ${err.message}`);
-      resolve({
-        ok: false,
-        error: err.message,
-        data: { error: err.message },
-      });
-    });
-    req.on("timeout", () => {
-      req.destroy();
-      resolve({
-        ok: false,
-        error: "Request timeout",
-        data: { error: "Request timeout" },
-      });
-    });
-    if (options.body) {
-      req.write(JSON.stringify(options.body));
-    }
-    req.end();
-  });
-}
-/**
- * Get API key from environment or config
- */
-function getApiKey() {
-  // Try various environment variables
-  const envVars = [
-    "VIBECHECK_API_KEY",
-    "VIBECHECK_TOKEN",
-    "API_KEY",
-    "TOKEN",
-  ];
-  for (const envVar of envVars) {
-    if (process.env[envVar]) {
-      return process.env[envVar];
-    }
-  }
-  // Try to read from config file
-  try {
-    const fs = require("fs");
-    const path = require("path");
-    const os = require("os");
-    const configPaths = [
-      path.join(os.homedir(), ".vibecheck", "config.json"),
-      path.join(process.cwd(), ".vibecheckrc.json"),
-      path.join(process.cwd(), "vibecheck.config.json"),
-    ];
-    for (const configPath of configPaths) {
-      if (fs.existsSync(configPath)) {
-        const config = JSON.parse(fs.readFileSync(configPath, "utf8"));
-        if (config.apiKey || config.token) {
-          return config.apiKey || config.token;
-        }
-      }
-    }
-  } catch (err) {
-    // Ignore config file errors
-  }
-  return null;
-}
-/**
- * Create a new scan record
- */
-async function createScan(options) {
-  const {
-    repositoryId,
-    repositoryUrl,
-    localPath,
-    branch = "main",
-    enableLLM = false,
-  } = options;
-  const response = await makeRequest("/api/scans", {
-    body: {
-      repositoryId,
-      repositoryUrl,
-      localPath,
-      branch,
-      enableLLM,
-    },
-  });
-  if (!response.ok) {
-    throw new Error(`Failed to create scan: ${response.data?.error || response.error}`);
-  }
-  return response.data.data;
-}
-/**
- * Update scan progress
- */
-async function updateScanProgress(scanId, progress, status = null) {
-  const response = await makeRequest(`/api/scans/${scanId}/progress`, {
-    body: {
-      progress,
-      status,
-    },
-  });
-  if (!response.ok) {
-    logger.debug(`Failed to update scan progress: ${response.data?.error || response.error}`);
-  }
-  return response.data;
-}
-/**
- * Submit scan results
- */
-async function submitScanResults(scanId, results) {
-  const {
-    verdict,
-    score,
-    findings,
-    filesScanned,
-    linesScanned,
-    durationMs,
-    metadata = {},
-  } = results;
-  const response = await makeRequest(`/api/scans/${scanId}/complete`, {
-    body: {
-      verdict,
-      score,
-      findings,
-      filesScanned,
-      linesScanned,
-      durationMs,
-      metadata,
-    },
-  });
-  if (!response.ok) {
-    throw new Error(`Failed to submit scan results: ${response.data?.error || response.error}`);
-  }
-  return response.data;
-}
-/**
- * Report scan error
- */
-async function reportScanError(scanId, error) {
-  const response = await makeRequest(`/api/scans/${scanId}/error`, {
-    body: {
-      error: error.message || String(error),
-      stack: error.stack,
-    },
-  });
-  if (!response.ok) {
-    logger.debug(`Failed to report scan error: ${response.data?.error || response.error}`);
-  }
-  return response.data;
-}
-/**
- * Check if API is available
- */
-async function isApiAvailable() {
-  try {
-    const response = await makeRequest("/api/health", {
-      method: "GET",
-      timeout: 5000,
-    });
-    return response.ok;
-  } catch (err) {
-    return false;
-  }
-}
-module.exports = {
-  createScan,
-  updateScanProgress,
-  submitScanResults,
-  reportScanError,
-  isApiAvailable,
-  getApiKey,
-};

package/bin/runners/lib/authority-badge.js DELETED Viewed

@@ -1,425 +0,0 @@
-/**
- * Authority Badge Generator
- *
- * Generates SVG badges for PROCEED verdicts from the Authority System.
- * Part of the PRO tier - requires verified verdicts.
- *
- * Badge Types:
- * - authority-approved: Standard approval badge
- * - safe-consolidation: Safe Consolidation authority badge
- * - inventory: Inventory analysis badge
- *
- * Output formats:
- * - SVG (default, scalable)
- * - Markdown (for README embedding)
- * - HTML (for web embedding)
- */
-const path = require("path");
-const fs = require("fs");
-// ═══════════════════════════════════════════════════════════════════════════════
-// COLOR PALETTE
-// ═══════════════════════════════════════════════════════════════════════════════
-const BADGE_COLORS = {
-  PROCEED: {
-    background: '#22C55E',
-    text: '#FFFFFF',
-  },
-  DEFER: {
-    background: '#F59E0B',
-    text: '#000000',
-  },
-  STOP: {
-    background: '#EF4444',
-    text: '#FFFFFF',
-  },
-  neutral: {
-    background: '#555555',
-    text: '#FFFFFF',
-  },
-};
-// ═══════════════════════════════════════════════════════════════════════════════
-// SVG TEMPLATES
-// ═══════════════════════════════════════════════════════════════════════════════
-/**
- * Generate an SVG badge
- */
-function generateSVGBadge(options) {
-  const {
-    label = 'Authority Approved',
-    message,
-    color,
-    textColor = '#FFFFFF',
-    logo = null,
-    style = 'flat',
-  } = options;
-  // Calculate widths based on text length
-  const labelWidth = Math.max(label.length * 7 + 10, 80);
-  const messageWidth = Math.max(message.length * 7 + 10, 50);
-  const totalWidth = labelWidth + messageWidth;
-  if (style === 'flat-square') {
-    return generateFlatSquareBadge({ label, message, color, textColor, labelWidth, messageWidth, totalWidth, logo });
-  }
-  return generateFlatBadge({ label, message, color, textColor, labelWidth, messageWidth, totalWidth, logo });
-}
-function generateFlatBadge(opts) {
-  const { label, message, color, textColor, labelWidth, messageWidth, totalWidth, logo } = opts;
-  let logoSvg = '';
-  let logoOffset = 0;
-  if (logo === 'vibecheck') {
-    logoOffset = 16;
-    logoSvg = `
-    <g transform="translate(5, 3)">
-      <path fill="${textColor}" d="M7 1l7 12H0L7 1zm0 3l-4 7h8L7 4z"/>
-    </g>`;
-  }
-  return `<svg xmlns="http://www.w3.org/2000/svg" width="${totalWidth + logoOffset}" height="20" role="img" aria-label="${label}: ${message}">
-  <title>${label}: ${message}</title>
-  <linearGradient id="s" x2="0" y2="100%">
-    <stop offset="0" stop-color="#bbb" stop-opacity=".1"/>
-    <stop offset="1" stop-opacity=".1"/>
-  </linearGradient>
-  <clipPath id="r">
-    <rect width="${totalWidth + logoOffset}" height="20" rx="3" fill="#fff"/>
-  </clipPath>
-  <g clip-path="url(#r)">
-    <rect width="${labelWidth + logoOffset}" height="20" fill="#555"/>
-    <rect x="${labelWidth + logoOffset}" width="${messageWidth}" height="20" fill="${color}"/>
-    <rect width="${totalWidth + logoOffset}" height="20" fill="url(#s)"/>
-  </g>
-  ${logoSvg}
-  <g fill="#fff" text-anchor="middle" font-family="Verdana,Geneva,DejaVu Sans,sans-serif" text-rendering="geometricPrecision" font-size="11">
-    <text aria-hidden="true" x="${(labelWidth + logoOffset) / 2 + logoOffset/2}" y="15" fill="#010101" fill-opacity=".3">${label}</text>
-    <text x="${(labelWidth + logoOffset) / 2 + logoOffset/2}" y="14" fill="#fff">${label}</text>
-    <text aria-hidden="true" x="${labelWidth + logoOffset + messageWidth / 2}" y="15" fill="#010101" fill-opacity=".3">${message}</text>
-    <text x="${labelWidth + logoOffset + messageWidth / 2}" y="14" fill="${textColor}">${message}</text>
-  </g>
-</svg>`;
-}
-function generateFlatSquareBadge(opts) {
-  const { label, message, color, textColor, labelWidth, messageWidth, totalWidth, logo } = opts;
-  let logoSvg = '';
-  let logoOffset = 0;
-  if (logo === 'vibecheck') {
-    logoOffset = 16;
-    logoSvg = `
-    <g transform="translate(5, 3)">
-      <path fill="${textColor}" d="M7 1l7 12H0L7 1zm0 3l-4 7h8L7 4z"/>
-    </g>`;
-  }
-  return `<svg xmlns="http://www.w3.org/2000/svg" width="${totalWidth + logoOffset}" height="20" role="img" aria-label="${label}: ${message}">
-  <title>${label}: ${message}</title>
-  <g shape-rendering="crispEdges">
-    <rect width="${labelWidth + logoOffset}" height="20" fill="#555"/>
-    <rect x="${labelWidth + logoOffset}" width="${messageWidth}" height="20" fill="${color}"/>
-  </g>
-  ${logoSvg}
-  <g fill="#fff" text-anchor="middle" font-family="Verdana,Geneva,DejaVu Sans,sans-serif" text-rendering="geometricPrecision" font-size="11">
-    <text x="${(labelWidth + logoOffset) / 2 + logoOffset/2}" y="14" fill="#fff">${label}</text>
-    <text x="${labelWidth + logoOffset + messageWidth / 2}" y="14" fill="${textColor}">${message}</text>
-  </g>
-</svg>`;
-}
-// ═══════════════════════════════════════════════════════════════════════════════
-// BADGE GENERATORS
-// ═══════════════════════════════════════════════════════════════════════════════
-/**
- * Generate an authority verdict badge
- */
-function generateVerdictBadge(verdict, options = {}) {
-  const {
-    style = 'flat',
-    logo = 'vibecheck',
-    includeConfidence = true,
-  } = options;
-  const action = verdict.action || 'UNKNOWN';
-  const confidence = verdict.confidence || 0;
-  const authorityId = verdict.authority || 'authority';
-  const colors = BADGE_COLORS[action] || BADGE_COLORS.neutral;
-  let message = action;
-  if (includeConfidence && action !== 'STOP') {
-    message = `${action} ${Math.round(confidence * 100)}%`;
-  }
-  return generateSVGBadge({
-    label: `Authority: ${authorityId}`,
-    message,
-    color: colors.background,
-    textColor: colors.text,
-    logo,
-    style,
-  });
-}
-/**
- * Generate a simple "Authority Approved" badge
- */
-function generateApprovedBadge(options = {}) {
-  const {
-    authority = 'vibecheck',
-    confidence = 100,
-    version = '1.0',
-    style = 'flat',
-  } = options;
-  return generateSVGBadge({
-    label: 'Authority Approved',
-    message: `${authority} v${version}`,
-    color: BADGE_COLORS.PROCEED.background,
-    textColor: BADGE_COLORS.PROCEED.text,
-    logo: 'vibecheck',
-    style,
-  });
-}
-/**
- * Generate a Safe Consolidation badge
- */
-function generateSafeConsolidationBadge(verdict, options = {}) {
-  const {
-    style = 'flat',
-  } = options;
-  const action = verdict.action || 'PROCEED';
-  const confidence = verdict.confidence || 0.95;
-  const colors = BADGE_COLORS[action] || BADGE_COLORS.PROCEED;
-  return generateSVGBadge({
-    label: 'Safe Consolidation',
-    message: `${action} ${Math.round(confidence * 100)}%`,
-    color: colors.background,
-    textColor: colors.text,
-    logo: 'vibecheck',
-    style,
-  });
-}
-/**
- * Generate a CI status badge
- */
-function generateCIBadge(verdict, options = {}) {
-  const {
-    style = 'flat',
-    ciName = 'CI',
-  } = options;
-  const action = verdict.action || 'UNKNOWN';
-  const exitCode = verdict.exitCode ?? (action === 'PROCEED' ? 0 : action === 'DEFER' ? 1 : 2);
-  let status, color;
-  if (exitCode === 0) {
-    status = 'passing';
-    color = BADGE_COLORS.PROCEED.background;
-  } else if (exitCode === 1) {
-    status = 'review';
-    color = BADGE_COLORS.DEFER.background;
-  } else {
-    status = 'failing';
-    color = BADGE_COLORS.STOP.background;
-  }
-  return generateSVGBadge({
-    label: ciName,
-    message: status,
-    color,
-    textColor: '#FFFFFF',
-    style,
-  });
-}
-// ═══════════════════════════════════════════════════════════════════════════════
-// OUTPUT FORMATTERS
-// ═══════════════════════════════════════════════════════════════════════════════
-/**
- * Format badge for markdown embedding
- */
-function formatBadgeMarkdown(badge, options = {}) {
-  const {
-    altText = 'Authority Approved by VibeCheck',
-    link = 'https://vibecheckai.dev',
-  } = options;
-  // Encode SVG for data URI
-  const encoded = encodeURIComponent(badge)
-    .replace(/'/g, '%27')
-    .replace(/"/g, '%22');
-  const dataUri = `data:image/svg+xml,${encoded}`;
-  if (link) {
-    return `[![${altText}](${dataUri})](${link})`;
-  }
-  return `![${altText}](${dataUri})`;
-}
-/**
- * Format badge for HTML embedding
- */
-function formatBadgeHTML(badge, options = {}) {
-  const {
-    altText = 'Authority Approved by VibeCheck',
-    link = 'https://vibecheckai.dev',
-    className = 'vibecheck-badge',
-  } = options;
-  // Encode SVG for data URI
-  const encoded = encodeURIComponent(badge)
-    .replace(/'/g, '%27')
-    .replace(/"/g, '%22');
-  const dataUri = `data:image/svg+xml,${encoded}`;
-  const img = `<img src="${dataUri}" alt="${altText}" class="${className}">`;
-  if (link) {
-    return `<a href="${link}" target="_blank" rel="noopener noreferrer">${img}</a>`;
-  }
-  return img;
-}
-// ═══════════════════════════════════════════════════════════════════════════════
-// FILE OUTPUT
-// ═══════════════════════════════════════════════════════════════════════════════
-/**
- * Save badge to file
- */
-async function saveBadge(badge, filePath, format = 'svg') {
-  const dir = path.dirname(filePath);
-  // Ensure directory exists
-  if (!fs.existsSync(dir)) {
-    fs.mkdirSync(dir, { recursive: true });
-  }
-  let content = badge;
-  let ext = '.svg';
-  if (format === 'markdown' || format === 'md') {
-    content = formatBadgeMarkdown(badge);
-    ext = '.md';
-  } else if (format === 'html') {
-    content = formatBadgeHTML(badge);
-    ext = '.html';
-  }
-  // Ensure file has correct extension
-  let finalPath = filePath;
-  if (!filePath.endsWith(ext) && format !== 'svg') {
-    finalPath = filePath.replace(/\.[^.]+$/, ext);
-  }
-  await fs.promises.writeFile(finalPath, content);
-  return finalPath;
-}
-/**
- * Generate and save all badge variants
- */
-async function generateAllBadges(verdict, outputDir, options = {}) {
-  const {
-    prefix = verdict.authority || 'authority',
-  } = options;
-  const badges = {};
-  // Main verdict badge
-  const verdictBadge = generateVerdictBadge(verdict, options);
-  badges.verdict = await saveBadge(
-    verdictBadge,
-    path.join(outputDir, `${prefix}-badge.svg`)
-  );
-  // If PROCEED, also generate approved badge
-  if (verdict.action === 'PROCEED') {
-    const approvedBadge = generateApprovedBadge({
-      authority: verdict.authority,
-      confidence: verdict.confidence,
-      version: verdict.version,
-    });
-    badges.approved = await saveBadge(
-      approvedBadge,
-      path.join(outputDir, `${prefix}-approved-badge.svg`)
-    );
-    // CI badge
-    const ciBadge = generateCIBadge(verdict);
-    badges.ci = await saveBadge(
-      ciBadge,
-      path.join(outputDir, `${prefix}-ci-badge.svg`)
-    );
-  }
-  // Generate markdown snippet
-  const mdContent = `# ${verdict.authority || 'Authority'} Badge
-${formatBadgeMarkdown(verdictBadge, { altText: \`\${verdict.authority} - \${verdict.action}\` })}
-## Embed Code
-### Markdown
-\`\`\`markdown
-${formatBadgeMarkdown(verdictBadge, { altText: \`\${verdict.authority} - \${verdict.action}\` })}
-\`\`\`
-### HTML
-\`\`\`html
-${formatBadgeHTML(verdictBadge, { altText: \`\${verdict.authority} - \${verdict.action}\` })}
-\`\`\`
----
-Generated: ${new Date().toISOString()}
-`;
-  badges.readme = await saveBadge(mdContent, path.join(outputDir, `${prefix}-BADGE.md`), 'md');
-  return badges;
-}
-// ═══════════════════════════════════════════════════════════════════════════════
-// EXPORTS
-// ═══════════════════════════════════════════════════════════════════════════════
-module.exports = {
-  // Badge generators
-  generateSVGBadge,
-  generateVerdictBadge,
-  generateApprovedBadge,
-  generateSafeConsolidationBadge,
-  generateCIBadge,
-  // Formatters
-  formatBadgeMarkdown,
-  formatBadgeHTML,
-  // File operations
-  saveBadge,
-  generateAllBadges,
-  // Constants
-  BADGE_COLORS,
-};