@vibecodetown/mcp-server 2.1.0

package/build/engine.js

@@ -0,0 +1,106 @@
+// adapters/mcp-ts/src/engine.ts
+// Engine execution using cached binaries (no PATH dependency)
+import { ensureEngines } from "./bootstrap/installer.js";
+import { runCmd } from "./cli.js";
+import { TieredCache, createCacheKey } from "./cache/index.js";
+let cached = null;
+/**
+ * Engine result cache for read-only operations
+ * TTL: 30 seconds, max 50 entries
+ */
+const engineResultCache = new TieredCache({
+    ttlMs: 30_000,
+    maxEntries: 50,
+    name: "engine-results",
+});
+/**
+ * Get engine context (lazy initialization)
+ * Ensures all engines are installed on first call
+ */
+export async function getEngineCtx() {
+    if (cached)
+        return cached;
+    const bins = await ensureEngines();
+    cached = { bins };
+    return cached;
+}
+/**
+ * Run an engine command using cached binary path
+ * No PATH dependency - uses absolute path to cached binary
+ */
+export async function runEngine(cmd, args, opts) {
+    const ctx = await getEngineCtx();
+    const binPath = ctx.bins[cmd];
+    return await runCmd(binPath, args, { timeoutMs: opts?.timeoutMs ?? 120_000 });
+}
+/**
+ * Commands that are safe to cache (read-only operations)
+ */
+const CACHEABLE_COMMANDS = new Set([
+    "validate",
+    "show-ask-queue",
+    "status",
+    "get-decision",
+    "list-runs",
+]);
+function extractSubcommand(args) {
+    for (let i = 0; i < args.length; i++) {
+        const a = args[i] ?? "";
+        if (a === "--root") {
+            i += 1; // skip root path
+            continue;
+        }
+        if (a.startsWith("-"))
+            continue;
+        return a;
+    }
+    return "";
+}
+/**
+ * Run an engine command with optional caching support
+ *
+ * @param cmd - Engine command to run
+ * @param args - Command arguments
+ * @param opts - Options including cache control
+ * @returns Engine result (may be from cache)
+ */
+export async function runEngineWithCache(cmd, args, opts) {
+    // Determine if this command is cacheable
+    const subCommand = extractSubcommand(args);
+    const isCacheable = CACHEABLE_COMMANDS.has(subCommand) && !opts?.skipCache;
+    if (isCacheable) {
+        const cacheKey = createCacheKey(cmd, ...args);
+        const cachedResult = engineResultCache.get(cacheKey);
+        if (cachedResult) {
+            return cachedResult;
+        }
+        // Execute and cache the result
+        const result = await runEngine(cmd, args, opts);
+        // Only cache successful results
+        if (result.code === 0) {
+            engineResultCache.set(cacheKey, result);
+        }
+        return result;
+    }
+    // Non-cacheable command - run directly
+    return await runEngine(cmd, args, opts);
+}
+/**
+ * Invalidate engine cache entries
+ *
+ * @param pattern - Optional regex pattern to match cache keys
+ */
+export function invalidateEngineCache(pattern) {
+    if (pattern) {
+        engineResultCache.invalidatePattern(pattern);
+    }
+    else {
+        engineResultCache.clear();
+    }
+}
+/**
+ * Get engine cache statistics
+ */
+export function getEngineCacheStats() {
+    return engineResultCache.stats();
+}

package/build/errors.js

@@ -0,0 +1,171 @@
+// adapters/mcp-ts/src/errors.ts
+// Vibe PM error codes and McpError factory
+import { McpError, ErrorCode } from "@modelcontextprotocol/sdk/types.js";
+// ============================================================
+// Vibe-specific error codes (negative to avoid conflict with JSON-RPC)
+// Reference: MCP protocol error codes range
+// ============================================================
+export const VibeErrorCode = {
+    // Engine errors (-32010 ~ -32019)
+    EngineNotFound: -32_010,
+    EngineTimeout: -32_011,
+    EngineCrash: -32_012,
+    // Project errors (-32020 ~ -32029)
+    ProjectNotFound: -32_020,
+    RunNotFound: -32_021,
+    BridgeNotFound: -32_022,
+    // Decision errors (-32030 ~ -32039)
+    DecisionNotFound: -32_030,
+    DecisionAlreadySubmitted: -32_031,
+    DecisionPending: -32_032,
+    // Validation errors (-32040 ~ -32049)
+    SchemaValidationFailed: -32_040,
+    OutputValidationFailed: -32_041,
+    // State errors (-32050 ~ -32059)
+    InvalidStateTransition: -32_050,
+    ConcurrentModification: -32_051,
+    // Security errors (-32060 ~ -32069)
+    SecurityValidationFailed: -32_060,
+    PathTraversal: -32_061,
+    InputTooLarge: -32_062,
+    DoNotTouchViolation: -32_063,
+};
+// ============================================================
+// McpError factory functions
+// ============================================================
+/**
+ * Create a standardized VibeError wrapped in McpError
+ */
+export function createVibeError(code, message, data) {
+    const category = getErrorCategory(code);
+    const errorData = {
+        vibeCode: code,
+        category,
+        ...data,
+    };
+    // Map to standard MCP error codes for protocol compatibility
+    const mcpCode = mapToMcpErrorCode(code);
+    return new McpError(mcpCode, `[${category}] ${message}`, errorData);
+}
+/**
+ * Determine error category from code
+ */
+function getErrorCategory(code) {
+    if (code >= -32_019 && code <= -32_010)
+        return "ENGINE";
+    if (code >= -32_029 && code <= -32_020)
+        return "PROJECT";
+    if (code >= -32_039 && code <= -32_030)
+        return "DECISION";
+    if (code >= -32_049 && code <= -32_040)
+        return "VALIDATION";
+    if (code >= -32_059 && code <= -32_050)
+        return "STATE";
+    if (code >= -32_069 && code <= -32_060)
+        return "SECURITY";
+    return "UNKNOWN";
+}
+/**
+ * Map Vibe error codes to standard MCP error codes
+ */
+function mapToMcpErrorCode(code) {
+    switch (code) {
+        case VibeErrorCode.EngineNotFound:
+        case VibeErrorCode.ProjectNotFound:
+        case VibeErrorCode.RunNotFound:
+        case VibeErrorCode.BridgeNotFound:
+        case VibeErrorCode.DecisionNotFound:
+            return ErrorCode.InvalidParams;
+        case VibeErrorCode.EngineTimeout:
+            return ErrorCode.InternalError;
+        case VibeErrorCode.EngineCrash:
+            return ErrorCode.InternalError;
+        case VibeErrorCode.DecisionAlreadySubmitted:
+        case VibeErrorCode.DecisionPending:
+        case VibeErrorCode.InvalidStateTransition:
+        case VibeErrorCode.ConcurrentModification:
+            return ErrorCode.InvalidRequest;
+        case VibeErrorCode.SchemaValidationFailed:
+        case VibeErrorCode.OutputValidationFailed:
+            return ErrorCode.InvalidParams;
+        case VibeErrorCode.SecurityValidationFailed:
+        case VibeErrorCode.PathTraversal:
+        case VibeErrorCode.InputTooLarge:
+        case VibeErrorCode.DoNotTouchViolation:
+            return ErrorCode.InvalidParams;
+        default:
+            return ErrorCode.InternalError;
+    }
+}
+// ============================================================
+// Convenience error creators
+// ============================================================
+export function engineNotFoundError(engineName) {
+    return createVibeError(VibeErrorCode.EngineNotFound, `Engine "${engineName}" not found. Run vibe_pm.doctor to install.`, {
+        context: { engineName },
+        recovery: "vibe_pm.doctor 도구를 실행하여 엔진을 설치하세요.",
+    });
+}
+export function projectNotFoundError(projectId) {
+    return createVibeError(VibeErrorCode.ProjectNotFound, projectId
+        ? `Project "${projectId}" not found.`
+        : "No active project found in current directory.", {
+        context: { projectId },
+        recovery: "vibe_pm.briefing 도구로 프로젝트를 시작하세요.",
+    });
+}
+export function runNotFoundError(runId) {
+    return createVibeError(VibeErrorCode.RunNotFound, `Run "${runId}" not found.`, {
+        context: { runId },
+        recovery: "vibe_pm.status 도구로 현재 실행 상태를 확인하세요.",
+    });
+}
+export function decisionNotFoundError(decisionId) {
+    return createVibeError(VibeErrorCode.DecisionNotFound, `Decision "${decisionId}" not found.`, {
+        context: { decisionId },
+        recovery: "vibe_pm.get_decision 도구로 현재 결재 항목을 조회하세요.",
+    });
+}
+export function decisionPendingError(decisionIds) {
+    return createVibeError(VibeErrorCode.DecisionPending, `Cannot proceed: ${decisionIds.length} decision(s) pending.`, {
+        context: { decisionIds },
+        recovery: "vibe_pm.get_decision 으로 대기중인 결재를 확인하세요.",
+    });
+}
+export function bridgeNotFoundError(runId) {
+    return createVibeError(VibeErrorCode.BridgeNotFound, `Bridge file not found for run "${runId}".`, {
+        context: { runId },
+        recovery: "vibe_pm.create_work_order 도구로 작업 지시서를 생성하세요.",
+    });
+}
+export function validationError(message, zodErrors) {
+    return createVibeError(VibeErrorCode.SchemaValidationFailed, message, {
+        context: { zodErrors },
+    });
+}
+export function stateTransitionError(from, to, reason) {
+    return createVibeError(VibeErrorCode.InvalidStateTransition, `Cannot transition from "${from}" to "${to}": ${reason}`, {
+        context: { from, to, reason },
+    });
+}
+// ============================================================
+// Security error creators
+// ============================================================
+export function pathTraversalError(path) {
+    return createVibeError(VibeErrorCode.PathTraversal, `Path traversal detected: "${path}"`, {
+        context: { path },
+        recovery: "Use paths relative to the project directory without '..' sequences",
+    });
+}
+export function inputTooLargeError(field, limit, actual) {
+    return createVibeError(VibeErrorCode.InputTooLarge, `Input too large: ${field} exceeds limit (${actual} > ${limit})`, {
+        context: { field, limit, actual },
+        recovery: "Reduce the size of the input",
+    });
+}
+export function doNotTouchError(path, pattern) {
+    return createVibeError(VibeErrorCode.DoNotTouchViolation, `Path "${path}" matches do_not_touch pattern "${pattern}"`, {
+        context: { path, pattern },
+        recovery: "This path is protected and cannot be modified. Choose a different target.",
+    });
+}

package/build/generated/activate_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const ActivateInputSchema = z.object({ "license_key": z.string().min(10).describe("Gumroad 라이선스 키(UUID 등). 로그/리포트에 남기지 마세요."), "force": z.boolean().describe("기존 토큰 캐시를 무시하고 새로 활성화합니다.").default(false), "app_version": z.string().min(1).describe("Auth 교환 요청에 포함할 app_version(선택). 기본은 MCP 패키지 버전입니다.").optional() }).strict().describe("SSOT schema for vibe_pm.activate MCP tool input");

package/build/generated/activate_output.js

@@ -0,0 +1,57 @@
+import { z } from "zod";
+export const ActivateOutputSchema = z.object({ "status": z.enum(["OK", "OFFLINE", "ERROR"]), "summary": z.string().min(1), "token_file": z.string().min(1).describe("로컬 토큰 캐시 파일 경로(토큰 내용은 출력하지 않음)"), "offline_mode": z.boolean(), "entitlements": z.any().superRefine((x, ctx) => {
+        const schemas = [z.object({ "deep_advisory": z.boolean(), "auto_fix_plus": z.boolean(), "local_memory_pro_tools": z.boolean(), "premium_embedding": z.boolean(), "github_gate": z.boolean(), "private_repo": z.boolean(), "deep_advisory_pr_comment": z.boolean() }).strict(), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }), "policy": z.any().superRefine((x, ctx) => {
+        const schemas = [z.object({ "max_runs_per_day": z.number().int().gte(0), "rate_limit_deep_advisory_per_minute": z.number().int().gte(0) }).strict(), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }), "subject_id": z.any().superRefine((x, ctx) => {
+        const schemas = [z.string().min(1), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }), "expires_at": z.any().superRefine((x, ctx) => {
+        const schemas = [z.number().int().gte(0).describe("JWT exp(Unix seconds)"), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }), "issues": z.array(z.string()), "next_action": z.any().superRefine((x, ctx) => {
+        const schemas = [z.object({ "tool": z.enum(["vibe_pm.status", "vibe_pm.advisory_review", "vibe_pm.inspect_code", "vibe_pm.activate", "vibe_pm.doctor"]), "reason": z.string().min(1) }).strict(), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }) }).strict().describe("SSOT schema for vibe_pm.activate MCP tool output");

package/build/generated/advisory_review_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const AdvisoryReviewInputSchema = z.object({ "project_id": z.string().min(1).optional(), "run_id": z.string().min(1).optional(), "mode": z.enum(["triage", "quick", "thorough"]).describe("triage=cheap routing only; quick=light review; thorough=deep review").default("triage"), "trigger": z.enum(["on_demand", "pre_finalize", "pr_event"]).describe("Execution trigger context").default("on_demand"), "budget": z.enum(["low", "medium", "high"]).describe("Latency/token budget hint for routing and depth").default("low"), "changed_paths": z.array(z.string().min(1)).describe("Changed files/paths (preferred over target_paths for routing).").optional(), "target_paths": z.array(z.string().min(1)).describe("Optional. Target paths to analyze if changed_paths not available.").optional(), "diff_context": z.string().min(1).describe("Optional. PR diff summary or patch excerpt. Best-effort.").optional(), "base_sha": z.string().min(7).describe("Optional. Base commit SHA (for caching).").optional(), "head_sha": z.string().min(7).describe("Optional. Head commit SHA (for caching).").optional(), "focus": z.array(z.enum(["BUSINESS_FIT", "ARCHITECTURE", "ALGO_REFACTOR"])).describe("Optional manual focus override. If omitted, router selects focus.").optional(), "product_intent_refs": z.array(z.string().min(1)).describe("Optional. Paths to SSOT/product docs defining business intent.").optional() }).strict().describe("SSOT schema for vibe_pm.advisory_review MCP tool input");

package/build/generated/advisory_review_output.js

@@ -0,0 +1,35 @@
+import { z } from "zod";
+export const AdvisoryReviewOutputSchema = z.any().superRefine((x, ctx) => {
+    const schemas = [z.object({ "kind": z.literal("triage"), "project_id": z.string().min(1), "triage": z.object({ "needs_deep_review": z.boolean(), "reason_summary": z.string().min(1).describe("One-line explanation why deep review is needed or skipped."), "risk_flags": z.array(z.enum(["BUSINESS_POLICY_RISK", "ARCH_BOUNDARY_RISK", "ALGO_COMPLEXITY_RISK", "SECURITY_RISK", "DATA_LOSS_RISK", "NONE"])).min(1) }).strict(), "routing": z.object({ "selected_focus": z.array(z.enum(["BUSINESS_FIT", "ARCHITECTURE", "ALGO_REFACTOR"])).min(0).max(3), "recommended_mode": z.enum(["skip", "quick", "thorough"]).describe("skip means no deep review recommended."), "total_score": z.number().gte(0), "top_contributors": z.array(z.object({ "path": z.string().min(1), "weight": z.number(), "matched_rule": z.string().min(1) }).strict()).min(0).max(10).describe("Explain which paths caused the score to rise.") }).strict(), "cache": z.object({ "cache_key": z.string().min(1), "hit": z.boolean() }).strict(), "next_action": z.any().superRefine((x, ctx) => {
+                const schemas = [z.object({ "action_type": z.literal("RUN_ADVISORY_REVIEW"), "tool": z.literal("vibe_pm.advisory_review"), "reason": z.string().min(1), "recommended_input_override": z.object({ "mode": z.enum(["quick", "thorough"]).optional(), "budget": z.enum(["low", "medium", "high"]).optional(), "focus": z.array(z.enum(["BUSINESS_FIT", "ARCHITECTURE", "ALGO_REFACTOR"])).min(1).max(3).optional() }).strict().describe("Optional router suggestions for the next call.").optional() }).strict(), z.object({ "action_type": z.literal("SKIP"), "message": z.string().min(1) }).strict()];
+                const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+                if (schemas.length - errors.length !== 1) {
+                    ctx.addIssue({
+                        path: ctx.path,
+                        code: "invalid_union",
+                        unionErrors: errors,
+                        message: "Invalid input: Should pass single schema",
+                    });
+                }
+            }), "message_template_id": z.enum(["TRIAGE-SKIP-01", "TRIAGE-RUN-01", "TRIAGE-RUN-02"]) }).strict(), z.object({ "kind": z.literal("review"), "project_id": z.string().min(1), "overall_signal": z.enum(["ADVICE", "WARN", "SOFT_BLOCK"]), "summary": z.object({ "one_line": z.string().min(1), "risk_notes": z.array(z.string().min(1)) }).strict(), "findings": z.array(z.object({ "category": z.enum(["BUSINESS_FIT", "ARCHITECTURE", "ALGO_REFACTOR", "DX", "PERFORMANCE_RISK"]), "impact": z.enum(["HIGH", "MEDIUM", "LOW"]), "title": z.string().min(1), "why_it_matters": z.string().min(1), "evidence": z.object({ "file_path": z.string().min(1).optional(), "line_range": z.array(z.number().int().gte(1)).min(2).max(2).optional(), "related_decision_ids": z.array(z.string().min(1)).optional() }).strict().optional(), "recommendation": z.string().min(1), "options": z.array(z.object({ "label": z.string().min(1), "tradeoffs": z.array(z.string().min(1)).min(1), "when_to_choose": z.string().min(1) }).strict()).min(1).max(3) }).strict()), "report_markdown": z.string().min(1).describe("Optional: pre-rendered markdown report for display").optional(), "next_action": z.any().superRefine((x, ctx) => {
+                const schemas = [z.object({ "action_type": z.literal("COPY_PASTE_TO_AGENT"), "label": z.string().min(1), "prompt_block": z.string().min(1) }).strict(), z.object({ "action_type": z.literal("ASK_DECISION"), "tool": z.literal("vibe_pm.get_decision"), "reason": z.string().min(1) }).strict(), z.object({ "action_type": z.literal("CONTINUE"), "tool": z.literal("vibe_pm.create_work_order"), "reason": z.string().min(1) }).strict()];
+                const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+                if (schemas.length - errors.length !== 1) {
+                    ctx.addIssue({
+                        path: ctx.path,
+                        code: "invalid_union",
+                        unionErrors: errors,
+                        message: "Invalid input: Should pass single schema",
+                    });
+                }
+            }), "message_template_id": z.enum(["ADV-01", "ADV-02", "WARN-01", "WARN-02", "SOFTBLOCK-01"]) }).strict()];
+    const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+    if (schemas.length - errors.length !== 1) {
+        ctx.addIssue({
+            path: ctx.path,
+            code: "invalid_union",
+            unionErrors: errors,
+            message: "Invalid input: Should pass single schema",
+        });
+    }
+}).describe("SSOT schema for vibe_pm.advisory_review MCP tool output (triage or review)");

package/build/generated/auth_token_file.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const AuthTokenFileSchema = z.object({ "token": z.string().min(1), "expiresAt": z.number().int().gte(0).describe("JWT exp(Unix seconds)"), "entitlements": z.object({ "deep_advisory": z.boolean(), "auto_fix_plus": z.boolean(), "local_memory_pro_tools": z.boolean(), "premium_embedding": z.boolean(), "github_gate": z.boolean(), "private_repo": z.boolean(), "deep_advisory_pr_comment": z.boolean() }).strict(), "policy": z.object({ "max_runs_per_day": z.number().int().gte(0), "rate_limit_deep_advisory_per_minute": z.number().int().gte(0) }).strict(), "subjectId": z.string().min(1), "cachedAt": z.number().int().gte(0) }).strict().describe("SSOT schema for local cached auth token file (~/.vibe-pm/auth-token.json)");

package/build/generated/briefing_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const BriefingInputSchema = z.object({ "project_brief": z.string().min(1).describe("사용자의 프로젝트 아이디어 (자유 형식)"), "mode": z.enum(["mvp_fast", "balanced", "quality_first"]).describe("개발 모드: mvp_fast(속도 우선), balanced(균형), quality_first(품질 우선)").default("balanced"), "project_id": z.string().min(1).describe("프로젝트 ID (생략 시 폴더명에서 자동 생성)").optional() }).strict().describe("SSOT schema for vibe_pm.briefing MCP tool input");

package/build/generated/briefing_output.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const BriefingOutputSchema = z.object({ "project_id": z.string().min(1), "run_id": z.string().min(1), "pm_summary": z.object({ "goal": z.string().min(1), "target_user": z.string().min(1), "first_milestone": z.string().min(1), "top_risk": z.string().min(1) }).strict(), "next_action": z.object({ "tool": z.literal("vibe_pm.get_decision"), "reason": z.string().min(1) }).strict() }).strict().describe("SSOT schema for vibe_pm.briefing MCP tool output");

package/build/generated/clinic_bridge_file.js

@@ -0,0 +1,13 @@
+import { z } from "zod";
+export const ClinicBridgeFileSchema = z.any().superRefine((x, ctx) => {
+    const schemas = [z.object({ "bridge_version": z.literal(1), "producer": z.string().min(1), "consumer": z.string().min(1), "run": z.object({ "run_id": z.string().min(1), "run_dir": z.string().min(1), "created_at": z.string().min(1).optional() }).strict(), "artifacts": z.record(z.any()).optional(), "intent": z.record(z.any()).optional(), "scope": z.record(z.any()).optional(), "decision_guard": z.object({ "read_only_paths": z.array(z.string()), "allow_paths": z.array(z.string()), "deny_paths": z.array(z.string()), "change_policy": z.object({ "allow": z.array(z.string()).optional(), "deny": z.array(z.string()).optional() }).strict().optional(), "escalation_triggers": z.array(z.object({ "name": z.string().min(1), "when": z.object({ "any_file_matches": z.array(z.string()).optional(), "diff_contains_patterns": z.array(z.string()).optional() }).strict().optional(), "action": z.string().min(1), "message": z.string().min(1) }).strict()).optional() }).strict(), "verification": z.object({ "required": z.array(z.object({ "id": z.string().min(1), "cmd": z.string().min(1) }).strict()), "optional": z.array(z.object({ "id": z.string().min(1), "cmd": z.string().min(1) }).strict()) }).strict(), "feedback_to_spec_high": z.record(z.any()).optional(), "diagnostics": z.record(z.any()).optional() }).strict(), z.object({ "project": z.string().min(1), "mode": z.enum(["mvp_fast", "balanced", "quality_first"]), "headline": z.string().min(1), "scope": z.object({ "include": z.array(z.string()), "exclude": z.array(z.string()) }).strict(), "do_not_touch": z.array(z.string()), "verify_criteria": z.array(z.string()) }).strict()];
+    const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+    if (schemas.length - errors.length !== 1) {
+        ctx.addIssue({
+            path: ctx.path,
+            code: "invalid_union",
+            unionErrors: errors,
+            message: "Invalid input: Should pass single schema",
+        });
+    }
+}).describe("SSOT schema for clinic_bridge.(yaml|json) parsed object (Spec-High and legacy variants)");

package/build/generated/contracts_bundle_info.js

@@ -0,0 +1,5 @@
+// Auto-generated from schemas/contracts.version.json + schemas/contracts.lock.json
+// DO NOT EDIT MANUALLY - run scripts/generate-contracts.sh
+export const CONTRACTS_VERSION = "1.8.1";
+export const CONTRACTS_BUNDLE_SHA256 = "c3fa79c3342e45c7f4e17af6ecb852350d84a684c2078c756ae24d6b05643b89";
+export const CONTRACTS_SCHEMA_COUNT = 87;

package/build/generated/create_work_order_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const CreateWorkOrderInputSchema = z.object({ "project_id": z.string().min(1).describe("프로젝트 ID (생략 시 현재 폴더 사용)").optional(), "additional_instructions": z.string().min(1).describe("추가 지시사항 (선택사항)").optional() }).strict().describe("SSOT schema for vibe_pm.create_work_order MCP tool input");

package/build/generated/create_work_order_output.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const CreateWorkOrderOutputSchema = z.object({ "project_id": z.string().min(1), "run_id": z.string().min(1), "work_order": z.object({ "headline": z.string().min(1), "scope": z.object({ "include": z.array(z.string()), "exclude": z.array(z.string()) }).strict(), "do_not_touch": z.array(z.string()), "verify_criteria": z.array(z.string()), "paste_to_agent": z.string().min(1) }).strict(), "paths": z.object({ "bridge_path": z.string().min(1), "intent_dir": z.string().min(1).optional() }).strict(), "modules": z.object({ "research": z.object({ "version": z.literal("v1"), "fingerprint": z.string().min(1), "path": z.string().min(1) }).strict(), "skills": z.object({ "version": z.literal("v1"), "fingerprint": z.string().min(1), "path": z.string().min(1) }).strict(), "planning": z.object({ "version": z.literal("v1"), "fingerprint": z.string().min(1), "path": z.string().min(1) }).strict() }).strict(), "next_action": z.object({ "tool": z.literal("vibe_pm.inspect_code"), "reason": z.string().min(1), "when": z.literal("after_implementation") }).strict() }).strict().describe("SSOT schema for vibe_pm.create_work_order MCP tool output");

package/build/generated/current_work_order_file.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const CurrentWorkOrderFileSchema = z.object({ "run_id": z.string().min(1), "created_at": z.string().datetime({ offset: true }), "topic": z.string().min(1).optional(), "scope": z.object({ "include": z.array(z.string().min(1)).default([]), "exclude": z.array(z.string().min(1)).default([]) }).strict().optional(), "do_not_touch": z.array(z.string().min(1)).default([]), "verify_criteria": z.array(z.string().min(1)).default([]) }).strict().describe("SSOT schema for repo-local Work Order file used by Local Mode guard (.vibe/state/current_work_order.json).");

package/build/generated/doctor_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const DoctorInputSchema = z.object({ "auto_fix": z.boolean().describe("자동으로 문제를 수정할지 여부 (기본: true)").default(true) }).strict().describe("SSOT schema for vibe_pm.doctor MCP tool input");

package/build/generated/doctor_output.js

@@ -0,0 +1,24 @@
+import { z } from "zod";
+export const DoctorOutputSchema = z.object({ "status": z.enum(["OK", "FIXED", "NEEDS_ATTENTION", "ERROR"]), "summary": z.string().min(1), "contracts": z.object({ "version": z.string().min(1), "bundle_sha256": z.string().min(1), "schema_count": z.number().int().gte(0) }).strict().optional(), "engines": z.array(z.object({ "name": z.string().min(1), "status": z.enum(["정상", "업데이트 필요", "설치 필요", "손상됨"]), "version": z.string().min(1), "current_version": z.union([z.string(), z.null()]) }).strict()), "actions_taken": z.array(z.string()).optional(), "local_memory": z.any().superRefine((x, ctx) => {
+        const schemas = [z.object({ "project_id": z.string().min(1), "status": z.enum(["READY", "NEEDS_SYNC", "OFFLINE_NO_INDEX", "ERROR"]), "summary": z.string().min(1), "docs_root": z.string().min(1), "persist_dir": z.string().min(1), "collection": z.string().min(1), "stats": z.object({ "document_count": z.number().int().gte(0), "chunk_count": z.number().int().gte(0), "last_sync_at": z.union([z.string(), z.null()]).optional() }).strict(), "embedding": z.object({ "backend": z.string().min(1), "model": z.union([z.string(), z.null()]).optional(), "ready": z.boolean() }).strict().optional(), "offline_mode": z.boolean(), "issues": z.array(z.string()), "next_action": z.any().superRefine((x, ctx) => {
+                    const schemas = [z.object({ "tool": z.enum(["vibe_pm.memory_sync", "vibe_pm.doctor"]), "reason": z.string().min(1) }).strict(), z.null()];
+                    const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+                    if (schemas.length - errors.length !== 1) {
+                        ctx.addIssue({
+                            path: ctx.path,
+                            code: "invalid_union",
+                            unionErrors: errors,
+                            message: "Invalid input: Should pass single schema",
+                        });
+                    }
+                }) }).strict(), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }).optional(), "next_action": z.object({ "type": z.enum(["NONE", "MANUAL_FIX", "CONTACT_SUPPORT"]), "message": z.string().min(1) }).strict() }).strict().describe("SSOT schema for vibe_pm.doctor MCP tool output");

package/build/generated/execution_result.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const ExecutionResultSchema = z.object({ "task_id": z.string().min(1), "run_id": z.string().min(1), "queue_state": z.enum(["QUEUED", "RUNNING", "DONE", "FAILED", "DLQ"]), "status": z.enum(["SUCCESS", "RETRYABLE_FAIL", "FATAL_FAIL", "SKIPPED_DUPLICATE"]), "summary": z.string().min(1), "attempt": z.object({ "n": z.number().int().gte(1).lte(1000), "max": z.number().int().gte(1).lte(1000) }).strict(), "artifacts_written": z.array(z.object({ "type": z.string().min(1), "path": z.string().min(1) }).strict()).min(0).max(100), "violations": z.array(z.object({ "rule_id": z.string().min(1), "message": z.string().min(1) }).strict()).min(0).max(50), "metrics": z.object({ "started_at": z.string().min(1), "ended_at": z.string().min(1), "duration_ms": z.number().int().gte(0).lte(604800000) }).strict(), "next": z.object({ "action": z.enum(["HANDOFF_TO_CLINIC", "RETRY_LATER", "STOP"]), "reason": z.string().min(1) }).strict() }).strict().describe("SSOT schema for Execution Engine result output (v2.x).");

package/build/generated/execution_task.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const ExecutionTaskSchema = z.object({ "task_id": z.string().min(1), "trigger": z.object({ "type": z.enum(["webhook", "cron", "inbox"]), "source_id": z.string().min(1) }).strict(), "plugin": z.object({ "name": z.string().min(1), "version": z.string().min(1).optional() }).strict(), "idempotency_key": z.string().min(1), "priority": z.enum(["low", "normal", "high"]), "instruction": z.string().min(1), "inputs": z.array(z.object({ "type": z.enum(["file", "text", "json"]), "path": z.string().min(1), "mime": z.string().min(1).optional() }).strict()).min(0).max(50), "destination": z.object({ "type": z.enum(["filesystem", "notion", "supabase", "none"]), "ref": z.string().min(1).optional() }).strict(), "safety": z.object({ "allow_paths": z.array(z.string().min(1)).min(1).max(50), "read_only_paths": z.array(z.string().min(1)).min(0).max(50), "deny_paths": z.array(z.string().min(1)).min(0).max(50) }).strict(), "run": z.object({ "base_dir": z.string().min(1), "run_id": z.string().min(1).optional() }).strict() }).strict().describe("SSOT schema for Execution Engine task input (v2.x).");

package/build/generated/export_output_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const ExportOutputInputSchema = z.object({ "project_id": z.string().min(1).optional(), "run_id": z.string().min(1).describe("대상 작업의 식별자(선택). 생략 시 최근 작업 기준").optional(), "target": z.enum(["docs_bundle", "api_openapi", "cli_scaffold", "web_template_repo"]).describe("내보내기 결과물 타입"), "output_dir": z.string().min(1).describe("결과물이 생성될 폴더(repo 기준 상대 경로)").optional(), "dry_run": z.boolean().describe("계획만 생성하고 파일은 만들지 않음").default(false), "cli_language": z.enum(["python", "node"]).describe("cli_scaffold용 언어(선택)").default("python"), "template_pin": z.object({ "repo": z.string().min(1).describe("Template repository (git URL or local path)"), "ref": z.string().min(1).describe("Pinned template ref (commit/tag)") }).strict().describe("web_template_repo용 템플릿 pin 정보").optional() }).strict().describe("SSOT schema for vibe_pm.export_output MCP tool input");

package/build/generated/export_output_output.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const ExportOutputOutputSchema = z.object({ "success": z.boolean(), "project_id": z.string().min(1), "run_id": z.string().min(1), "target": z.string().min(1), "output_dir": z.string().min(1), "dry_run": z.boolean(), "paths": z.object({ "feature_output_spec_path": z.string().min(1), "export_plan_path": z.string().min(1), "export_artifacts_path": z.string().min(1).optional() }).strict(), "created_paths": z.array(z.string().min(1)), "warnings": z.array(z.string()), "next_action": z.object({ "tool": z.literal("vibe_pm.status"), "reason": z.string().min(1) }).strict() }).strict().describe("SSOT schema for vibe_pm.export_output MCP tool output");

package/build/generated/finalize_work_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const FinalizeWorkInputSchema = z.object({ "task_summary": z.string().min(1).describe("비개발자가 읽을 수 있는 작업 요약 (DEV_LOG용)"), "spec_changes": z.array(z.object({ "section": z.string().describe("갱신할 스펙 섹션명"), "content": z.string().describe("갱신될 마크다운 내용"), "action": z.enum(["REPLACE", "APPEND"]).default("REPLACE") }).strict()).describe("스펙 변경 (없으면 생략)").optional(), "completed_plan_path": z.string().describe("Path to the completed plan file in 'docs/planning/' to be archived").optional(), "git_commit": z.object({ "type": z.enum(["feat", "fix", "docs", "style", "refactor", "test", "chore"]), "scope": z.string().optional(), "subject": z.string().describe("커밋 메시지 제목 (50자 이내)"), "body": z.string().optional(), "footer": z.string().optional() }).strict() }).strict().describe("Input schema for vibe_pm.finalize_work tool");

package/build/generated/finalize_work_output.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const FinalizeWorkOutputSchema = z.object({ "success": z.boolean(), "updated_files": z.array(z.string()), "commit_hash": z.string(), "pushed_to_remote": z.boolean(), "remote_url": z.string().optional(), "warning": z.string().optional(), "next_action": z.object({ "tool": z.literal("vibe_pm.status"), "reason": z.string().min(1) }).strict() }).strict().describe("SSOT schema for vibe_pm.finalize_work MCP tool output");

package/build/generated/gate_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const GateInputSchema = z.object({ "work_order": z.object({ "intent": z.string().min(10).describe("작업 의도 설명 (최소 10자)"), "scope": z.object({ "include": z.array(z.string()).min(1).describe("포함할 경로 패턴 (glob)"), "exclude": z.array(z.string()).describe("제외할 경로 패턴 (glob)").default([]) }).strict().describe("작업 범위 정의"), "tool_style": z.enum(["CRUD", "QUERY", "EXEC"]).describe("도구 스타일: CRUD(상태변경), QUERY(조회), EXEC(실행)"), "limits": z.object({ "max_depth": z.number().int().gte(1).lte(100).optional(), "max_files": z.number().int().gte(1).lte(10000).optional(), "max_cost": z.number().gte(0).lte(100).optional(), "max_tokens": z.number().int().gte(1).lte(1000000).optional(), "max_seconds": z.number().int().gte(1).lte(3600).optional() }).strict().describe("리소스 제한(옵션). WorkOrderV1의 조건부 요구사항은 Gate에서 별도 검증한다.").optional(), "idempotency_key": z.string().regex(new RegExp("^[a-zA-Z0-9_-]{8,64}$")).describe("멱등성 키 (EXEC 스타일 권장)").optional(), "metadata": z.object({ "requester": z.string().optional(), "project_id": z.string().optional(), "correlation_id": z.string().optional() }).catchall(z.any()).describe("추가 메타데이터").optional() }).strict(), "options": z.object({ "fail_fast": z.boolean().default(true), "semgrep": z.boolean().default(false), "runtime": z.boolean().default(true) }).strict().describe("Per-run gate overrides (optional).").optional() }).strict().describe("SSOT schema for vibe_pm.gate input. Wraps a WorkOrderV1 plus optional per-run gate overrides.");

package/build/generated/gate_output.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const GateOutputSchema = z.object({ "verdict": z.enum(["ALLOW", "BLOCK"]).describe("최종 판정: ALLOW(실행 허용), BLOCK(실행 금지)"), "violations": z.array(z.object({ "rule_id": z.string().regex(new RegExp("^SDG-[0-9]{3}$")).describe("규칙 ID (예: SDG-001)"), "level": z.enum(["BLOCK", "WARN", "INFO"]).describe("심각도: BLOCK(차단), WARN(경고), INFO(정보)"), "message": z.string().min(10).describe("위반 내용 설명"), "remediation": z.string().describe("해결 방법 안내").optional(), "location": z.object({ "file": z.string().optional(), "line": z.number().int().gte(1).optional(), "column": z.number().int().gte(1).optional() }).describe("위반 위치 (선택)").optional() }).strict()).describe("위반 항목 목록"), "metadata": z.object({ "gate_version": z.string().regex(new RegExp("^[0-9]+\\.[0-9]+\\.[0-9]+$")).describe("Gate 버전 (semver)"), "checked_at": z.string().datetime({ offset: true }).describe("검사 시각 (ISO 8601)"), "duration_ms": z.number().int().gte(0).describe("검사 소요 시간 (밀리초)").optional(), "gates_run": z.array(z.enum(["schema", "path", "semgrep", "runtime"])).describe("실행된 Gate 목록").optional(), "work_order_hash": z.string().describe("입력 WorkOrder의 SHA256 해시").optional() }).strict().describe("검사 메타데이터"), "summary": z.object({ "total_violations": z.number().int().gte(0).optional(), "block_count": z.number().int().gte(0).optional(), "warn_count": z.number().int().gte(0).optional(), "info_count": z.number().int().gte(0).optional() }).strict().describe("요약 통계").optional() }).strict().describe("SSOT schema for vibe_pm.gate output. Same shape as GateResultV1.");

package/build/generated/gate_result_v1.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const GateResultV1Schema = z.object({ "verdict": z.enum(["ALLOW", "BLOCK"]).describe("최종 판정: ALLOW(실행 허용), BLOCK(실행 금지)"), "violations": z.array(z.object({ "rule_id": z.string().regex(new RegExp("^SDG-[0-9]{3}$")).describe("규칙 ID (예: SDG-001)"), "level": z.enum(["BLOCK", "WARN", "INFO"]).describe("심각도: BLOCK(차단), WARN(경고), INFO(정보)"), "message": z.string().min(10).describe("위반 내용 설명"), "remediation": z.string().describe("해결 방법 안내").optional(), "location": z.object({ "file": z.string().optional(), "line": z.number().int().gte(1).optional(), "column": z.number().int().gte(1).optional() }).describe("위반 위치 (선택)").optional() }).strict()).describe("위반 항목 목록"), "metadata": z.object({ "gate_version": z.string().regex(new RegExp("^[0-9]+\\.[0-9]+\\.[0-9]+$")).describe("Gate 버전 (semver)"), "checked_at": z.string().datetime({ offset: true }).describe("검사 시각 (ISO 8601)"), "duration_ms": z.number().int().gte(0).describe("검사 소요 시간 (밀리초)").optional(), "gates_run": z.array(z.enum(["schema", "path", "semgrep", "runtime"])).describe("실행된 Gate 목록").optional(), "work_order_hash": z.string().describe("입력 WorkOrder의 SHA256 해시").optional() }).strict().describe("검사 메타데이터"), "summary": z.object({ "total_violations": z.number().int().gte(0).optional(), "block_count": z.number().int().gte(0).optional(), "warn_count": z.number().int().gte(0).optional(), "info_count": z.number().int().gte(0).optional() }).strict().describe("요약 통계").optional() }).strict().describe("Gate 검사 결과 (실행 허가서). ALLOW면 실행, BLOCK이면 실행 금지.");

package/build/generated/get_decision_input.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const GetDecisionInputSchema = z.object({ "project_id": z.string().min(1).describe("프로젝트 ID (생략 시 현재 폴더 사용)").optional(), "max_items": z.number().int().gte(1).describe("반환할 결재 항목 최대 수").default(2) }).strict().describe("SSOT schema for vibe_pm.get_decision MCP tool input");

package/build/generated/get_decision_output.js

@@ -0,0 +1,13 @@
+import { z } from "zod";
+export const GetDecisionOutputSchema = z.object({ "project_id": z.string().min(1), "decision_requests": z.array(z.object({ "decision_id": z.string().min(1), "title": z.string().min(1), "context": z.string(), "choices": z.array(z.object({ "key": z.enum(["A", "B", "C", "U"]), "label": z.string().min(1), "description": z.string().optional() }).strict()) }).strict()), "next_action": z.any().superRefine((x, ctx) => {
+        const schemas = [z.object({ "tool": z.literal("vibe_pm.submit_decision"), "reason": z.string().min(1) }).strict(), z.null()];
+        const errors = schemas.reduce((errors, schema) => ((result) => result.error ? [...errors, result.error] : errors)(schema.safeParse(x)), []);
+        if (schemas.length - errors.length !== 1) {
+            ctx.addIssue({
+                path: ctx.path,
+                code: "invalid_union",
+                unionErrors: errors,
+                message: "Invalid input: Should pass single schema",
+            });
+        }
+    }) }).strict().describe("SSOT schema for vibe_pm.get_decision MCP tool output");

package/build/generated/handoff_to_clinic.js

@@ -0,0 +1,2 @@
+import { z } from "zod";
+export const HandoffToClinicSchema = z.object({ "run_id": z.string().min(1), "execution_result_path": z.string().min(1), "requested_checks": z.array(z.literal("selection-validate")).min(1).max(10) }).strict().describe("SSOT schema for Execution Engine file-based handoff to Code Clinic (v2.x).");