@vibekiln/cutline-mcp-cli 0.1.1 → 0.2.0

package/dist/commands/setup.d.ts

@@ -2,4 +2,6 @@ export declare function setupCommand(options: {
     staging?: boolean;
     skipLogin?: boolean;
     projectRoot?: string;
+    hideAuditDimension?: string[];
+    hideAuditDimensions?: string;
 }): Promise<void>;

package/dist/commands/setup.js

@@ -27,6 +27,7 @@ const SERVER_NAMES = [
     'output',
     'integrations',
 ];
+const AUDIT_DIMENSIONS = ['engineering', 'security', 'reliability', 'scalability'];
 async function detectTier(options) {
     const refreshToken = await getRefreshToken();
     if (!refreshToken)
@@ -83,14 +84,100 @@ function prompt(question) {
         });
     });
 }
-function buildServerConfig() {
+function parseDimensionCsv(csv) {
+    if (!csv)
+        return [];
+    return csv
+        .split(',')
+        .map((s) => s.trim())
+        .filter(Boolean);
+}
+function normalizeAuditDimensions(values) {
+    const allowed = new Set(AUDIT_DIMENSIONS);
+    const deduped = [...new Set(values.map((v) => v.trim().toLowerCase()).filter(Boolean))];
+    const valid = deduped.filter((v) => allowed.has(v));
+    const invalid = deduped.filter((v) => !allowed.has(v));
+    return { valid, invalid };
+}
+async function resolveHiddenAuditDimensions(options) {
+    const explicit = [
+        ...(options.hideAuditDimension ?? []),
+        ...parseDimensionCsv(options.hideAuditDimensions),
+    ];
+    if (explicit.length > 0) {
+        const { valid, invalid } = normalizeAuditDimensions(explicit);
+        if (invalid.length > 0) {
+            console.log(chalk.yellow(`  Ignoring invalid audit dimensions: ${invalid.join(', ')} ` +
+                `(allowed: ${AUDIT_DIMENSIONS.join(', ')})`));
+        }
+        return valid;
+    }
+    const answer = await prompt(chalk.cyan(`  Hide any code audit dimensions? ` +
+        `(comma-separated: ${AUDIT_DIMENSIONS.join(', ')}; Enter for none): `));
+    if (!answer)
+        return [];
+    const { valid, invalid } = normalizeAuditDimensions(parseDimensionCsv(answer));
+    if (invalid.length > 0) {
+        console.log(chalk.yellow(`  Ignoring invalid audit dimensions: ${invalid.join(', ')} ` +
+            `(allowed: ${AUDIT_DIMENSIONS.join(', ')})`));
+    }
+    return valid;
+}
+function writeAuditVisibilityConfig(hiddenDimensions) {
+    const configDir = join(homedir(), '.cutline-mcp');
+    const configPath = join(configDir, 'config.json');
+    let existing = {};
+    try {
+        if (existsSync(configPath)) {
+            existing = JSON.parse(readFileSync(configPath, 'utf-8'));
+        }
+    }
+    catch {
+        existing = {};
+    }
+    const next = {
+        ...existing,
+        audit_visibility: {
+            ...(existing.audit_visibility ?? {}),
+            hidden_dimensions: hiddenDimensions,
+        },
+    };
+    mkdirSync(configDir, { recursive: true });
+    writeFileSync(configPath, JSON.stringify(next, null, 2) + '\n');
+}
+function resolveServeRuntime() {
+    // Optional explicit override for advanced environments.
+    if (process.env.CUTLINE_MCP_BIN?.trim()) {
+        return {
+            command: process.env.CUTLINE_MCP_BIN.trim(),
+            argsPrefix: [],
+            source: 'binary',
+        };
+    }
+    // Prefer the globally installed binary for faster/more reliable startup.
+    const voltaBin = join(homedir(), '.volta', 'bin', 'cutline-mcp');
+    if (existsSync(voltaBin)) {
+        return {
+            command: voltaBin,
+            argsPrefix: [],
+            source: 'binary',
+        };
+    }
+    // Fallback for machines without a global install.
     const voltaNpx = join(homedir(), '.volta', 'bin', 'npx');
     const npxCommand = existsSync(voltaNpx) ? voltaNpx : 'npx';
+    return {
+        command: npxCommand,
+        argsPrefix: ['-y', '@vibekiln/cutline-mcp-cli@latest'],
+        source: 'npx',
+    };
+}
+function buildServerConfig(runtime) {
     const config = {};
     for (const name of SERVER_NAMES) {
         config[`cutline-${name}`] = {
-            command: npxCommand,
-            args: ['-y', '@vibekiln/cutline-mcp-cli@latest', 'serve', name],
+            command: runtime.command,
+            args: [...runtime.argsPrefix, 'serve', name],
         };
     }
     return config;
@@ -197,8 +284,17 @@ export async function setupCommand(options) {
         }
         catch { /* ignore parse errors */ }
     }
+    const hiddenAuditDimensions = await resolveHiddenAuditDimensions(options);
+    writeAuditVisibilityConfig(hiddenAuditDimensions);
+    if (hiddenAuditDimensions.length > 0) {
+        console.log(chalk.dim(`  Hidden audit dimensions: ${hiddenAuditDimensions.join(', ')}\n`));
+    }
+    else {
+        console.log(chalk.dim('  Hidden audit dimensions: none\n'));
+    }
     // ── 3. Write MCP server config to IDEs ───────────────────────────────────
-    const serverConfig = buildServerConfig();
+    const runtime = resolveServeRuntime();
+    const serverConfig = buildServerConfig(runtime);
     const home = homedir();
     const ideConfigs = [
         { name: 'Cursor', path: join(home, '.cursor', 'mcp.json') },
@@ -217,6 +313,12 @@ export async function setupCommand(options) {
     }
     if (wroteAny) {
         console.log(chalk.dim('\n  MCP server entries merged into IDE config (existing servers preserved).\n'));
+        if (runtime.source === 'binary') {
+            console.log(chalk.dim(`  Using local MCP binary: ${runtime.command}\n`));
+        }
+        else {
+            console.log(chalk.dim('  Local `cutline-mcp` binary not found — using npx fallback.\n'));
+        }
     }
     else {
         console.log(chalk.yellow('\n  No IDE config files found. Printing config for manual setup:\n'));
@@ -231,7 +333,8 @@ export async function setupCommand(options) {
     console.log(chalk.dim('  If you prefer `claude mcp add` instead of ~/.claude.json:\n'));
     const coreServers = ['constraints', 'premortem', 'tools', 'exploration'];
     for (const name of coreServers) {
-        console.log(chalk.cyan(`  claude mcp add cutline-${name} -- npx -y @vibekiln/cutline-mcp-cli serve ${name}`));
+        const invocation = [runtime.command, ...runtime.argsPrefix, 'serve', name].join(' ');
+        console.log(chalk.cyan(`  claude mcp add cutline-${name} -- ${invocation}`));
     }
     console.log();
     // ── 6. What you can do ───────────────────────────────────────────────────

package/dist/index.js

@@ -54,7 +54,15 @@ program
     .option('--staging', 'Use staging environment')
     .option('--skip-login', 'Skip authentication (use existing credentials)')
     .option('--project-root <path>', 'Project root directory for IDE rules (default: cwd)')
-    .action((opts) => setupCommand({ staging: opts.staging, skipLogin: opts.skipLogin, projectRoot: opts.projectRoot }));
+    .option('--hide-audit-dimension <name>', 'Hide one audit dimension in surfaced code audit output (repeatable)', (value, prev) => [...prev, value], [])
+    .option('--hide-audit-dimensions <csv>', 'Hide multiple audit dimensions (comma-separated: engineering,security,reliability,scalability)')
+    .action((opts) => setupCommand({
+    staging: opts.staging,
+    skipLogin: opts.skipLogin,
+    projectRoot: opts.projectRoot,
+    hideAuditDimension: opts.hideAuditDimension,
+    hideAuditDimensions: opts.hideAuditDimensions,
+}));
 program
     .command('init')
     .description('Generate IDE rules only (setup runs this automatically)')

package/dist/servers/{chunk-WWTNBUIX.js → chunk-LI4AZPSJ.js}

@@ -287,6 +287,24 @@ async function exchangeRefreshToken(refreshToken, firebaseApiKey, maxRetries = 3
   }
   throw lastError || new Error("Token exchange failed after retries");
 }
+var AUDIT_DIMENSIONS = ["engineering", "security", "reliability", "scalability"];
+function readLocalCutlineConfig() {
+  try {
+    const configPath = path.join(os.homedir(), ".cutline-mcp", "config.json");
+    if (!fs.existsSync(configPath))
+      return null;
+    return JSON.parse(fs.readFileSync(configPath, "utf-8"));
+  } catch {
+    return null;
+  }
+}
+function getHiddenAuditDimensions() {
+  const config = readLocalCutlineConfig();
+  const hidden = config?.audit_visibility?.hidden_dimensions ?? [];
+  const allowed = new Set(AUDIT_DIMENSIONS);
+  const normalized = [...new Set(hidden.map((d) => String(d).trim().toLowerCase()).filter((d) => allowed.has(d)))];
+  return normalized;
+}
 function getStoredApiKey() {
   if (process.env.CUTLINE_API_KEY) {
     return {
@@ -294,15 +312,9 @@ function getStoredApiKey() {
       environment: process.env.CUTLINE_ENV === "staging" ? "staging" : "production"
     };
   }
-  try {
-    const configPath = path.join(os.homedir(), ".cutline-mcp", "config.json");
-    if (fs.existsSync(configPath)) {
-      const config = JSON.parse(fs.readFileSync(configPath, "utf-8"));
-      if (config.apiKey) {
-        return { apiKey: config.apiKey, environment: config.environment };
-      }
-    }
-  } catch {
+  const config = readLocalCutlineConfig();
+  if (config?.apiKey) {
+    return { apiKey: config.apiKey, environment: config.environment };
   }
   return null;
 }
@@ -314,21 +326,13 @@ async function getStoredToken() {
       environment: process.env.CUTLINE_ENV === "staging" ? "staging" : "production"
     };
   }
-  try {
-    const configPath = path.join(os.homedir(), ".cutline-mcp", "config.json");
-    if (fs.existsSync(configPath)) {
-      const content = fs.readFileSync(configPath, "utf-8");
-      const config = JSON.parse(content);
-      if (config.refreshToken) {
-        console.error("[MCP Auth] Using token from ~/.cutline-mcp/config.json", config.environment ? `(environment: ${config.environment})` : "");
-        return {
-          refreshToken: config.refreshToken,
-          environment: config.environment
-        };
-      }
-    }
-  } catch (e) {
-    console.error("[MCP Auth] Failed to read config file:", e);
+  const config = readLocalCutlineConfig();
+  if (config?.refreshToken) {
+    console.error("[MCP Auth] Using token from ~/.cutline-mcp/config.json", config.environment ? `(environment: ${config.environment})` : "");
+    return {
+      refreshToken: config.refreshToken,
+      environment: config.environment
+    };
   }
   return null;
 }
@@ -991,6 +995,7 @@ export {
   mapErrorToMcp,
   validateAuth,
   resolveAuthContext,
+  getHiddenAuditDimensions,
   requirePremiumWithAutoAuth,
   resolveAuthContextFree,
   getPublicSiteUrlForCurrentAuth,

package/dist/servers/cutline-server.js

@@ -43,6 +43,7 @@ import {
   getAllNodesLight,
   getEntitiesWithEmbeddings,
   getGraphMetadata,
+  getHiddenAuditDimensions,
   getIdeaReport,
   getNodesByCategories,
   getNodesMissingEmbeddings,
@@ -74,7 +75,7 @@ import {
   upsertEntities,
   upsertNodes,
   validateRequestSize
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 import {
   GraphTraverser,
   computeGenericGraphMetrics,
@@ -6966,10 +6967,22 @@ function deltaStr(current, previous) {
     return " (no change)";
   return diff > 0 ? ` (**+${diff}** since last scan)` : ` (**${diff}** since last scan)`;
 }
-function formatAuditOutput(result, reportId, publicSiteUrl = "https://thecutline.ai") {
+function formatAuditOutput(result, reportId, publicSiteUrl = "https://thecutline.ai", hiddenAuditDimensions = []) {
   const m = result.metrics;
   const p = result.previousMetrics;
   const isRescan = !!p;
+  const hiddenSet = new Set(hiddenAuditDimensions.map((d) => String(d).trim().toLowerCase()));
+  const securityVisible = !hiddenSet.has("security");
+  const inferFindingDimension = (category) => {
+    const c = (category ?? "").toLowerCase();
+    if (["reliability"].includes(c))
+      return "reliability";
+    if (["scalability", "performance"].includes(c))
+      return "scalability";
+    if (["code_quality", "general"].includes(c))
+      return "engineering";
+    return "security";
+  };
   const lines = [
     `# Cutline Code Audit`,
     ``,
@@ -6979,8 +6992,43 @@ function formatAuditOutput(result, reportId, publicSiteUrl = "https://thecutline
   if (result.frameworksLoaded.length > 0) {
     lines.push(`**Compliance frameworks:** ${result.frameworksLoaded.join(", ")}`);
   }
-  lines.push(``, `## Readiness Scores`, ``, `| Pillar | Score |${isRescan ? " Change |" : ""}`, `|--------|-------|${isRescan ? "--------|" : ""}`, `| Engineering | ${m.engineering_readiness_pct ?? 0}% |${isRescan ? deltaStr(m.engineering_readiness_pct, p?.engineering_readiness_pct) + " |" : ""}`, `| Security | ${m.security_readiness_pct ?? 0}% |${isRescan ? deltaStr(m.security_readiness_pct, p?.security_readiness_pct) + " |" : ""}`, `| Reliability | ${m.reliability_readiness_pct ?? 0}% |${isRescan ? deltaStr(m.reliability_readiness_pct, p?.reliability_readiness_pct) + " |" : ""}`, `| Scalability | ${m.scalability_readiness_pct ?? 0}% |${isRescan ? deltaStr(m.scalability_readiness_pct, p?.scalability_readiness_pct) + " |" : ""}`, ``, `**Constraints mapped:** ${m.complexity_factors?.nfr_count ?? 0} (${m.complexity_factors?.critical_nfr_count ?? 0} critical)`, `**Binding coverage:** ${result.bindingHealth.coverage_pct}%`);
-  if (result.scaFindings && result.scaFindings.total > 0) {
+  const scoreRows = [
+    {
+      key: "engineering",
+      label: "Engineering",
+      current: m.engineering_readiness_pct ?? 0,
+      previous: p?.engineering_readiness_pct
+    },
+    {
+      key: "security",
+      label: "Security",
+      current: m.security_readiness_pct ?? 0,
+      previous: p?.security_readiness_pct
+    },
+    {
+      key: "reliability",
+      label: "Reliability",
+      current: m.reliability_readiness_pct ?? 0,
+      previous: p?.reliability_readiness_pct
+    },
+    {
+      key: "scalability",
+      label: "Scalability",
+      current: m.scalability_readiness_pct ?? 0,
+      previous: p?.scalability_readiness_pct
+    }
+  ].filter((row) => !hiddenSet.has(row.key));
+  lines.push(``, `## Readiness Scores`, ``, `| Pillar | Score |${isRescan ? " Change |" : ""}`, `|--------|-------|${isRescan ? "--------|" : ""}`);
+  if (scoreRows.length > 0) {
+    for (const row of scoreRows) {
+      lines.push(`| ${row.label} | ${row.current}% |${isRescan ? deltaStr(row.current, row.previous) + " |" : ""}`);
+    }
+    lines.push(``);
+  } else {
+    lines.push(`| _Hidden by local audit visibility settings_ | - |${isRescan ? " - |" : ""}`, ``);
+  }
+  lines.push(`**Constraints mapped:** ${m.complexity_factors?.nfr_count ?? 0} (${m.complexity_factors?.critical_nfr_count ?? 0} critical)`, `**Binding coverage:** ${result.bindingHealth.coverage_pct}%`);
+  if (securityVisible && result.scaFindings && result.scaFindings.total > 0) {
     const sca = result.scaFindings;
     lines.push(``, `## Dependency Vulnerabilities (SCA)`, ``, `**${sca.total} known vulnerabilities** found (${sca.critical} critical, ${sca.high} high)`, ``);
     for (const v of sca.top) {
@@ -6991,12 +7039,13 @@ function formatAuditOutput(result, reportId, publicSiteUrl = "https://thecutline
       lines.push(`- ...and ${sca.total - sca.top.length} more`);
     }
   }
-  const totalFindings = result.gatedGapDetails.length;
-  const criticalCount = result.gatedGapDetails.filter((g) => g.severity === "critical" || g.severity === "high").length;
+  const visibleFindings = result.gatedGapDetails.filter((g) => !hiddenSet.has(inferFindingDimension(g.category)));
+  const totalFindings = visibleFindings.length;
+  const criticalCount = visibleFindings.filter((g) => g.severity === "critical" || g.severity === "high").length;
   if (totalFindings > 0) {
-    const topFinding = result.gatedGapDetails[0];
+    const topFinding = visibleFindings[0];
     lines.push(``, `## #1 Finding \u2014 Fix This Now`, ``, `**[${topFinding.severity.toUpperCase()}] ${topFinding.title}**`, `*Category: ${topFinding.category}*`, ``, topFinding.description || "Address this finding to improve your readiness scores.", ``, `> Fix this issue, then re-run \`code_audit\` to see your scores improve.`);
-    const remaining = result.gatedGapDetails.slice(1);
+    const remaining = visibleFindings.slice(1);
     if (remaining.length > 0) {
       lines.push(``, `## ${remaining.length} More Finding${remaining.length > 1 ? "s" : ""} Detected`);
       const teaserLimit = Math.min(remaining.length, 5);
@@ -8222,6 +8271,18 @@ Why AI: ${idea.whyAI}`
         }
         const freeAuth = await resolveAuthContextFree(scanArgs.auth_token);
         const uid = freeAuth.effectiveUid;
+        const hiddenAuditDimensions = getHiddenAuditDimensions();
+        const hiddenSet = new Set(hiddenAuditDimensions);
+        const inferFindingDimension = (category) => {
+          const c = (category ?? "").toLowerCase();
+          if (["reliability"].includes(c))
+            return "reliability";
+          if (["scalability", "performance"].includes(c))
+            return "scalability";
+          if (["code_quality", "general"].includes(c))
+            return "engineering";
+          return "security";
+        };
         {
           const rateInfo = await getScanRateLimit();
           const now = /* @__PURE__ */ new Date();
@@ -8258,24 +8319,33 @@ Why AI: ${idea.whyAI}`
         let reportId;
         let reportSiteUrl = "https://thecutline.ai";
         try {
+          const reportMetrics = {};
+          if (!hiddenSet.has("engineering")) {
+            reportMetrics.engineering_readiness_pct = result.metrics.engineering_readiness_pct ?? 0;
+          }
+          if (!hiddenSet.has("security")) {
+            reportMetrics.security_readiness_pct = result.metrics.security_readiness_pct ?? 0;
+          }
+          if (!hiddenSet.has("reliability")) {
+            reportMetrics.reliability_readiness_pct = result.metrics.reliability_readiness_pct ?? 0;
+          }
+          if (!hiddenSet.has("scalability")) {
+            reportMetrics.scalability_readiness_pct = result.metrics.scalability_readiness_pct ?? 0;
+          }
+          const visibleFindings = result.gatedGapDetails.filter((f) => !hiddenSet.has(inferFindingDimension(f.category)));
           const saved = await saveScanReport({
-            metrics: {
-              engineering_readiness_pct: result.metrics.engineering_readiness_pct ?? 0,
-              security_readiness_pct: result.metrics.security_readiness_pct ?? 0,
-              reliability_readiness_pct: result.metrics.reliability_readiness_pct ?? 0,
-              scalability_readiness_pct: result.metrics.scalability_readiness_pct ?? 0
-            },
+            metrics: reportMetrics,
             ecosystem: result.ecosystem,
             binding_coverage_pct: result.bindingHealth.coverage_pct,
             frameworks_loaded: result.frameworksLoaded,
             sensitive_data_count: result.sensitiveDataCount,
-            findings: result.gatedGapDetails.map((f) => ({
+            findings: visibleFindings.map((f) => ({
               title: f.title,
               severity: f.severity,
               category: f.category,
               description: f.description
             })),
-            sca_summary: result.scaFindings ? {
+            sca_summary: !hiddenSet.has("security") && result.scaFindings ? {
               total: result.scaFindings.total,
               critical: result.scaFindings.critical,
               high: result.scaFindings.high
@@ -8287,7 +8357,7 @@ Why AI: ${idea.whyAI}`
           console.error("[code_audit] Report persistence failed (non-fatal):", e);
         }
         return {
-          content: [{ type: "text", text: formatAuditOutput(result, reportId, reportSiteUrl) }]
+          content: [{ type: "text", text: formatAuditOutput(result, reportId, reportSiteUrl, hiddenAuditDimensions) }]
         };
       }
       const authCtx = await resolveAuthContext(args.auth_token);

package/dist/servers/{data-client-2YBU5KRO.js → data-client-PYMN6TQ7.js}

@@ -78,7 +78,7 @@ import {
   upsertEdges,
   upsertEntities,
   upsertNodes
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 export {
   addEdges,
   addEntity,

package/dist/servers/exploration-server.js

@@ -14,7 +14,7 @@ import {
   requirePremiumWithAutoAuth,
   updateExplorationSession,
   validateRequestSize
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 
 // ../mcp/dist/mcp/src/exploration-server.js
 import { Server } from "@modelcontextprotocol/sdk/server/index.js";

package/dist/servers/integrations-server.js

@@ -13,7 +13,7 @@ import {
   requirePremiumWithAutoAuth,
   validateAuth,
   validateRequestSize
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 
 // ../mcp/dist/mcp/src/integrations-server.js
 import { Server } from "@modelcontextprotocol/sdk/server/index.js";

package/dist/servers/output-server.js

@@ -13,7 +13,7 @@ import {
   mapErrorToMcp,
   requirePremiumWithAutoAuth,
   validateRequestSize
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 
 // ../mcp/dist/mcp/src/output-server.js
 import { Server } from "@modelcontextprotocol/sdk/server/index.js";

package/dist/servers/premortem-server.js

@@ -27,7 +27,7 @@ import {
   updatePremortem,
   validateAuth,
   validateRequestSize
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 
 // ../mcp/dist/mcp/src/premortem-server.js
 import { Server } from "@modelcontextprotocol/sdk/server/index.js";

package/dist/servers/tools-server.js

@@ -21,7 +21,7 @@ import {
   requirePremiumWithAutoAuth,
   validateAuth,
   validateRequestSize
-} from "./chunk-WWTNBUIX.js";
+} from "./chunk-LI4AZPSJ.js";
 
 // ../mcp/dist/mcp/src/tools-server.js
 import { Server } from "@modelcontextprotocol/sdk/server/index.js";

package/package.json

@@ -1,6 +1,6 @@
 {
     "name": "@vibekiln/cutline-mcp-cli",
-    "version": "0.1.1",
+    "version": "0.2.0",
     "description": "CLI and MCP servers for Cutline — authenticate, then run constraint-aware MCP servers in Cursor or any MCP client.",
     "type": "module",
     "main": "dist/index.js",