@visulima/vis 1.0.0-alpha.11 → 1.0.0-alpha.13

package/dist/packem_chunks/handler39.js

@@ -1,574 +1,22 @@
-import { createRequire as __cjs_createRequire } from "node:module";
-
-const __cjs_require = __cjs_createRequire(import.meta.url);
-
-const __cjs_getProcess = typeof globalThis !== "undefined" && typeof globalThis.process !== "undefined" ? globalThis.process : process;
-
-const __cjs_getBuiltinModule = (module) => {
-    // Check if we're in Node.js and version supports getBuiltinModule
-    if (typeof __cjs_getProcess !== "undefined" && __cjs_getProcess.versions && __cjs_getProcess.versions.node) {
-        const [major, minor] = __cjs_getProcess.versions.node.split(".").map(Number);
-        // Node.js 20.16.0+ and 22.3.0+
-        if (major > 22 || (major === 22 && minor >= 3) || (major === 20 && minor >= 16)) {
-            return __cjs_getProcess.getBuiltinModule(module);
-        }
-    }
-    // Fallback to createRequire
-    return __cjs_require(module);
-};
-
-import { dim, cyan, yellow, red, green } from '@visulima/colorize';
-import { writeFileSync, isAccessibleSync, readJsonSync, readFileSync } from '@visulima/fs';
-import { isAbsolute, relative, resolve, join } from '@visulima/path';
-import { redact } from '@visulima/redact';
-import { fingerprint, scan, scanFiles, inspectRuleset, listRules, listRequiredValidators } from '@visulima/secret-scanner';
-import { p as pail } from './bin.js';
-import { InteractiveManager, InteractiveStreamHook } from '@visulima/interactive-manager';
-import { Spinner } from '@visulima/spinner';
-const {
-  pathToFileURL
-} = __cjs_getBuiltinModule("node:url");
-const {
-  execFileSync
-} = __cjs_getBuiltinModule("node:child_process");
-
-const createSpinner = (options = {}) => {
-  const manager = new InteractiveManager(new InteractiveStreamHook(process.stdout), new InteractiveStreamHook(process.stderr));
-  return new Spinner(options, manager);
-};
-
-const toRelative = (file, root) => {
-  if (!isAbsolute(file)) {
-    return file;
-  }
-  const rel = relative(root, file);
-  return rel === "" || rel.startsWith("..") ? file : rel;
-};
-const toRelativeFinding = (f, root) => {
-  const relativeFile = toRelative(f.file, root);
-  return relativeFile === f.file ? f : { ...f, file: relativeFile };
-};
-const readBaseline = (baselinePath) => {
-  if (!isAccessibleSync(baselinePath)) {
-    return [];
-  }
-  try {
-    const parsed = readJsonSync(baselinePath);
-    return Array.isArray(parsed) ? parsed : [];
-  } catch {
-    return [];
-  }
-};
-const diffBaseline = (findings, baselinePath, root) => {
-  const existing = readBaseline(baselinePath).map((f) => toRelativeFinding(f, root));
-  const existingKeys = new Set(existing.map((f) => fingerprint(f)));
-  const currentRelative = findings.map((f) => toRelativeFinding(f, root));
-  const currentKeys = new Set(currentRelative.map((f) => fingerprint(f)));
-  return {
-    fresh: currentRelative.filter((f) => !existingKeys.has(fingerprint(f))),
-    resolved: existing.filter((f) => !currentKeys.has(fingerprint(f))),
-    surviving: currentRelative.filter((f) => existingKeys.has(fingerprint(f)))
-  };
-};
-const writeBaseline = (findings, baselinePath, root, options = {}) => {
-  const incoming = findings.map((f) => toRelativeFinding(f, root));
-  let final;
-  if (options.replace) {
-    final = incoming;
-  } else {
-    const existing = readBaseline(baselinePath).map((f) => toRelativeFinding(f, root));
-    const seen = /* @__PURE__ */ new Set();
-    final = [];
-    for (const f of [...existing, ...incoming]) {
-      const key = fingerprint(f);
-      if (seen.has(key)) {
-        continue;
-      }
-      seen.add(key);
-      final.push(f);
-    }
-  }
-  writeFileSync(baselinePath, `${JSON.stringify(final, null, 4)}
-`);
-  return final.length;
-};
-
-const CONTEXT_RADIUS = 1;
-const groupByFile = (findings) => {
-  const byFile = /* @__PURE__ */ new Map();
-  for (const f of findings) {
-    const list = byFile.get(f.file);
-    if (list) {
-      list.push(f);
-    } else {
-      byFile.set(f.file, [f]);
-    }
-  }
-  return byFile;
-};
-const loadLines = (file) => {
-  try {
-    return readFileSync(file).split(/\r?\n/);
-  } catch {
-    return void 0;
-  }
-};
-const caretFor = (line, col, len) => {
-  const clampedCol = Math.max(1, col);
-  const prefix = line.slice(0, clampedCol - 1).replaceAll(/[^\t]/g, " ");
-  return `${prefix}${"^".repeat(Math.max(1, len))}`;
-};
-const formatText = (findings, root, useColor, options = {}) => {
-  if (findings.length === 0) {
-    return useColor ? dim("No secrets detected.") : "No secrets detected.";
-  }
-  const color = useColor ? { cyan, dim, green, red, yellow } : {
-    cyan: (s) => s,
-    dim: (s) => s,
-    green: (s) => s,
-    red: (s) => s,
-    yellow: (s) => s
-  };
-  const lines = [];
-  const byFile = groupByFile(findings);
-  for (const [file, items] of byFile) {
-    const relativeFile = relative(root, file) || file;
-    lines.push(color.cyan(relativeFile));
-    const sourceLines = options.redact ? void 0 : loadLines(file);
-    for (const f of items) {
-      const provenance = [f.source, f.confidence].filter(Boolean).join(", ");
-      const provenanceSuffix = provenance ? ` ${color.dim(`(${provenance})`)}` : "";
-      const alternates = f.alternateMatches && f.alternateMatches.length > 0 ? ` ${color.dim(`also: ${f.alternateMatches.join(", ")}`)}` : "";
-      let validationBadge = "";
-      switch (f.validation) {
-        case "error": {
-          validationBadge = ` ${color.yellow("! error")}`;
-          break;
-        }
-        case "rejected": {
-          validationBadge = ` ${color.red("✗ rejected")}`;
-          break;
-        }
-        case "skipped": {
-          validationBadge = ` ${color.dim("— unverifiable")}`;
-          break;
-        }
-        case "verified": {
-          validationBadge = ` ${color.green("✓ verified")}`;
-          break;
-        }
-      }
-      lines.push(
-        `  ${color.red("✖")} ${color.yellow(`[${f.ruleId}]`)}${provenanceSuffix}${validationBadge} ${color.dim(`line ${String(f.startLine)}:${String(f.startColumn)}`)}${alternates}`
-      );
-      if (sourceLines) {
-        const start = Math.max(0, f.startLine - 1 - CONTEXT_RADIUS);
-        const end = Math.min(sourceLines.length, f.startLine + CONTEXT_RADIUS);
-        for (let n = start; n < end; n += 1) {
-          const lineNumber = String(n + 1).padStart(4, " ");
-          const isMatchLine = n + 1 === f.startLine;
-          const marker = isMatchLine ? color.red("▶") : " ";
-          lines.push(`    ${marker} ${color.dim(lineNumber)} │ ${sourceLines[n] ?? ""}`);
-          if (isMatchLine) {
-            const matchLen = Math.max(1, (f.endColumn ?? f.startColumn + 1) - f.startColumn);
-            const caret = caretFor(sourceLines[n] ?? "", f.startColumn, matchLen);
-            lines.push(`      ${color.dim("    │ ")}${color.red(caret)}`);
-          }
-        }
-      }
-      lines.push("");
-    }
-  }
-  return lines.join("\n").trimEnd();
-};
-const toSarifUri = (path, root) => {
-  if (!isAbsolute(path)) {
-    return path.replaceAll("\\", "/");
-  }
-  try {
-    return pathToFileURL(path).toString();
-  } catch {
-    return `file://${resolve(root, path).replaceAll("\\", "/")}`;
-  }
-};
-const shortText = (text, limit = 100) => {
-  if (text.length <= limit) {
-    return text;
-  }
-  return `${text.slice(0, limit - 1).trimEnd()}…`;
-};
-const formatSarif = (findings, toolVersion, root = process.cwd(), ruleMetadata = []) => {
-  const metaById = new Map(ruleMetadata.map((r) => [r.id, r]));
-  const seenIds = /* @__PURE__ */ new Set();
-  for (const f of findings) {
-    seenIds.add(f.ruleId);
-  }
-  const ruleIds = [.../* @__PURE__ */ new Set([...metaById.keys(), ...seenIds])].sort((a, b) => a.localeCompare(b));
-  const ruleIndex = new Map(ruleIds.map((id, i) => [id, i]));
-  return JSON.stringify(
-    {
-      $schema: "https://schemastore.azurewebsites.net/schemas/json/sarif-2.1.0.json",
-      runs: [
-        {
-          originalUriBaseIds: {
-            SRCROOT: { uri: pathToFileURL(root).toString() }
-          },
-          results: findings.map((f) => {
-            const properties = {};
-            if (f.source) {
-              properties["source"] = f.source;
-            }
-            if (f.confidence) {
-              properties["confidence"] = f.confidence;
-            }
-            if (f.alternateMatches && f.alternateMatches.length > 0) {
-              properties["alternateRules"] = f.alternateMatches;
-            }
-            if (f.validation) {
-              properties["validation"] = f.validation;
-            }
-            return {
-              level: "error",
-              locations: [
-                {
-                  physicalLocation: {
-                    artifactLocation: {
-                      uri: toSarifUri(f.file, root),
-                      uriBaseId: isAbsolute(f.file) ? void 0 : "SRCROOT"
-                    },
-                    region: {
-                      endColumn: f.endColumn,
-                      endLine: f.endLine,
-                      snippet: { text: f.match },
-                      startColumn: f.startColumn,
-                      startLine: f.startLine
-                    }
-                  }
-                }
-              ],
-              message: { text: f.description || f.ruleId },
-              properties: Object.keys(properties).length > 0 ? properties : void 0,
-              ruleId: f.ruleId,
-              ruleIndex: ruleIndex.get(f.ruleId) ?? -1
-            };
-          }),
-          tool: {
-            driver: {
-              informationUri: "https://visulima.com/packages/secret-scanner",
-              name: "visulima-secret-scanner",
-              rules: ruleIds.map((id) => {
-                const meta = metaById.get(id);
-                const description = meta?.description ?? `Detected by rule \`${id}\``;
-                const ruleProperties = {};
-                if (meta?.tags && meta.tags.length > 0) {
-                  ruleProperties["tags"] = meta.tags;
-                }
-                if (meta?.source) {
-                  ruleProperties["source"] = meta.source;
-                }
-                if (meta?.confidence) {
-                  ruleProperties["confidence"] = meta.confidence;
-                }
-                return {
-                  defaultConfiguration: { level: "error" },
-                  fullDescription: { text: description },
-                  helpUri: "https://visulima.com/packages/secret-scanner",
-                  id,
-                  name: id,
-                  properties: Object.keys(ruleProperties).length > 0 ? ruleProperties : void 0,
-                  shortDescription: { text: shortText(description) }
-                };
-              }),
-              version: toolVersion
-            }
-          }
-        }
-      ],
-      version: "2.1.0"
-    },
-    void 0,
-    2
-  );
-};
-
-const runGit = (root, args) => {
-  try {
-    return execFileSync("git", args, { cwd: root, encoding: "utf8", stdio: ["ignore", "pipe", "pipe"] }).trim();
-  } catch {
-    return "";
-  }
-};
-const splitFiles = (stdout) => stdout.split(/\r?\n/).map((line) => line.trim()).filter(Boolean);
-const stagedFiles = (root) => splitFiles(runGit(root, ["diff", "--cached", "--name-only", "--diff-filter=ACMR"])).map((p) => isAbsolute(p) ? p : join(root, p));
-const filesSince = (root, ref) => {
-  const stdout = runGit(root, ["diff", "--name-only", "--diff-filter=ACMR", `${ref}...HEAD`]);
-  const list = splitFiles(stdout);
-  if (list.length === 0) {
-    const fallback = runGit(root, ["diff", "--name-only", "--diff-filter=ACMR", ref]);
-    return splitFiles(fallback).map((p) => isAbsolute(p) ? p : join(root, p));
-  }
-  return list.map((p) => isAbsolute(p) ? p : join(root, p));
-};
-const hasGit = (root) => runGit(root, ["rev-parse", "--show-toplevel"]).length > 0;
-
-const DEFAULT_BASELINE = ".secrets-baseline.json";
-const toArray = (value) => {
-  if (!value) {
-    return [];
-  }
-  return Array.isArray(value) ? value : [value];
-};
-const validateFormat = (raw) => {
-  const allowed = /* @__PURE__ */ new Set(["json", "sarif", "text"]);
-  if (raw && !allowed.has(raw)) {
-    pail.error(`--format must be one of: ${[...allowed].join(", ")} (got "${raw}")`);
-    process.exit(2);
-  }
-  return raw ?? "text";
-};
-const validateConfidence = (raw) => {
-  if (raw === void 0) {
-    return void 0;
-  }
-  const allowed = /* @__PURE__ */ new Set(["high", "low", "medium"]);
-  if (!allowed.has(raw)) {
-    pail.error(`--min-confidence must be one of: ${[...allowed].join(", ")} (got "${raw}")`);
-    process.exit(2);
-  }
-  return raw;
-};
-const printListRules = async (scanOptions, useColor) => {
-  const rules = await listRules(scanOptions);
-  process.stdout.write(`${String(rules.length)} rules loaded
-
-`);
-  for (const rule of rules) {
-    const id = useColor ? yellow(rule.id) : rule.id;
-    const tags = rule.tags.length > 0 ? ` ${useColor ? dim(`[${rule.tags.join(", ")}]`) : `[${rule.tags.join(", ")}]`}` : "";
-    process.stdout.write(`${id}${tags}
-  ${rule.description}
-`);
-    if (rule.keywords.length > 0) {
-      const kw = `keywords: ${rule.keywords.slice(0, 6).join(", ")}${rule.keywords.length > 6 ? ", ..." : ""}`;
-      process.stdout.write(`  ${useColor ? dim(kw) : kw}
-`);
-    }
-    process.stdout.write("\n");
-  }
-};
-const printListValidators = async (scanOptions, useColor) => {
-  const report = await listRequiredValidators(scanOptions);
-  if (report.length === 0) {
-    process.stdout.write(
-      useColor ? `${dim("No non-HTTP validators required by the current ruleset.")}
-` : "No non-HTTP validators required by the current ruleset.\n"
-    );
-    return;
-  }
-  process.stdout.write(`${String(report.length)} non-HTTP validator type(s) referenced by the current ruleset:
-
-`);
-  for (const entry of report) {
-    const title = useColor ? yellow(entry.displayName) : entry.displayName;
-    const typeLabel = `(${entry.type}, ${String(entry.ruleCount)} rule${entry.ruleCount === 1 ? "" : "s"})`;
-    process.stdout.write(`${title} ${useColor ? dim(typeLabel) : typeLabel}
-`);
-    process.stdout.write(`  ${entry.summary}
-`);
-    const hint = entry.packageName ? `install: npm add ${entry.packageName}` : "no driver — bespoke implementation required";
-    process.stdout.write(`  ${useColor ? dim(hint) : hint}
-
-`);
-  }
-};
-const runInit = async (root, scanOptions, dryRun) => {
-  const baselinePath = join(root, DEFAULT_BASELINE);
-  if (!dryRun && isAccessibleSync(baselinePath)) {
-    pail.warn(`Detected existing ${DEFAULT_BASELINE} — refusing to overwrite. Delete it first to re-init.`);
-    process.exit(1);
-  }
-  pail.info(dryRun ? "[dry-run] Previewing init — no files will be written." : "Scanning workspace to seed baseline…");
-  const spinner = createSpinner();
-  spinner.start("scanning");
-  let findings;
-  try {
-    findings = await scan([root], scanOptions);
-    spinner.succeed();
-  } catch (error) {
-    spinner.failed();
-    throw error;
-  }
-  if (dryRun) {
-    pail.info(`[dry-run] Would create ${DEFAULT_BASELINE} with ${String(findings.length)} finding(s).`);
-    return;
-  }
-  const count = writeBaseline(findings, baselinePath, root, { replace: true });
-  pail.success(`Wrote ${DEFAULT_BASELINE} (${String(count)} findings).`);
-  pail.notice("Commit it. Use `vis secrets --baseline .secrets-baseline.json` in CI. Add path patterns to .gitignore to exclude directories from scanning.");
-};
-const resolveScanOptions = (flags, visSecrets, root) => {
-  const cfg = visSecrets ?? {};
-  const resolvePath = (p) => p ? resolve(root, p) : void 0;
-  const pickList = (flag, fallback) => {
-    const fromFlag = toArray(flag);
-    return fromFlag.length > 0 ? fromFlag : fallback;
-  };
-  const enableRules = pickList(flags.enableRule, cfg.rules?.enable);
-  const excludeRules = pickList(flags.excludeRule, cfg.rules?.exclude);
-  const includeRules = pickList(flags.includeRule, cfg.rules?.include);
-  const excludePatterns = pickList(flags.exclude, cfg.walk?.excludePatterns);
-  const excludeFromFlag = toArray(flags.excludeFrom).map((p) => resolve(root, p));
-  const excludeFromFiles = excludeFromFlag.length > 0 ? excludeFromFlag : cfg.walk?.excludeFromFiles?.map((p) => resolve(root, p));
-  const baselinePath = resolvePath(flags.baseline) ?? resolvePath(cfg.baseline);
-  const configPath = resolvePath(flags.config) ?? resolvePath(cfg.config?.path);
-  const minConfidence = validateConfidence(flags.minConfidence ?? cfg.config?.minConfidence);
-  return {
-    baseline: baselinePath,
-    concurrency: flags.concurrency,
-    config: {
-      extendBundled: flags.noExtendBundled ? false : cfg.config?.extendBundled,
-      inline: cfg.config?.inline,
-      minConfidence,
-      onlyVerified: flags.onlyVerified ?? cfg.config?.onlyVerified ?? false,
-      path: configPath,
-      validate: flags.validate ?? cfg.config?.validate ?? false
-    },
-    redact: flags.redact ?? cfg.redact,
-    rules: { enable: enableRules, exclude: excludeRules, include: includeRules },
-    verbose: flags.verbose ?? false,
-    walk: {
-      excludeFromFiles,
-      excludePatterns,
-      gitignore: flags.noGitignore ? false : cfg.walk?.gitignore ?? true,
-      includeHidden: flags.includeHidden ?? cfg.walk?.includeHidden,
-      maxFileSize: flags.maxSize ?? cfg.walk?.maxFileSize
-    }
-  };
-};
-const printDiff = (diff) => {
-  process.stderr.write(
-    `${dim("baseline diff: ")}${green(`+${String(diff.fresh.length)} new`)} · ${yellow(`${String(diff.surviving.length)} unchanged`)} · ${dim(`-${String(diff.resolved.length)} resolved`)}
-`
-  );
-};
-const chooseScanPaths = async (flags, args, root) => {
-  if (flags.staged) {
-    if (!hasGit(root)) {
-      pail.error("--staged requires a git working tree, and none was detected.");
-      process.exit(2);
-    }
-    return { files: stagedFiles(root) };
-  }
-  if (flags.since) {
-    if (!hasGit(root)) {
-      pail.error("--since requires a git working tree, and none was detected.");
-      process.exit(2);
-    }
-    return { files: filesSince(root, flags.since) };
-  }
-  if (flags.affected) {
-    if (!hasGit(root)) {
-      pail.warn("--affected requires git; falling back to full scan");
-      return { paths: args && args.length > 0 ? args.map((p) => resolve(root, p)) : [root] };
-    }
-    const baseRef = process.env["VIS_BASE"] ?? "HEAD~1";
-    return { files: filesSince(root, baseRef) };
-  }
-  return { paths: args && args.length > 0 ? args.map((p) => resolve(root, p)) : [root] };
-};
-const emitFindings = (findings, format, root, useColor, toolVersion, ruleMetadata, redactFindings) => {
-  switch (format) {
-    case "json": {
-      const view = findings.map((f) => toRelativeFinding(f, root));
-      process.stdout.write(`${JSON.stringify(view, null, 2)}
-`);
-      break;
-    }
-    case "sarif": {
-      process.stdout.write(`${formatSarif(findings, toolVersion, root, ruleMetadata)}
-`);
-      break;
-    }
-    default: {
-      process.stdout.write(`${formatText(findings, root, useColor, { redact: redactFindings })}
-`);
-    }
-  }
-};
-const execute = async ({ argument, options, visConfig, workspaceRoot }) => {
-  const flags = options;
-  const args = argument;
-  const root = workspaceRoot ?? process.cwd();
-  const useColor = !flags.quiet && process.stdout.isTTY;
-  const visSecrets = visConfig?.secrets;
-  const scanOptions = resolveScanOptions(flags, visSecrets, root);
-  const toolVersion = "0.0.0-alpha";
-  if (flags.listRules) {
-    await printListRules(scanOptions, useColor);
-    return;
-  }
-  if (flags.listValidators) {
-    await printListValidators(scanOptions, useColor);
-    return;
-  }
-  if (flags.init) {
-    await runInit(root, scanOptions, flags.dryRun ?? false);
-    return;
-  }
-  const target = await chooseScanPaths(flags, args ?? [], root);
-  if (target.files?.length === 0) {
-    if (!flags.quiet) {
-      pail.success("No files to scan.");
-    }
-    return;
-  }
-  const isInteractive = !flags.quiet && !["json", "sarif"].includes(flags.format ?? "text");
-  const spinner = createSpinner({ verbose: isInteractive });
-  spinner.start("scanning for secrets");
-  let findings;
-  try {
-    findings = target.files === void 0 ? await scan(target.paths ?? [root], scanOptions) : await scanFiles(target.files, scanOptions);
-    spinner.succeed();
-  } catch (error) {
-    spinner.failed();
-    pail.error(`secret scan failed: ${error instanceof Error ? error.message : String(error)}`);
-    process.exit(2);
-  }
-  if (flags.verbose) {
-    const skipped = await inspectRuleset(scanOptions);
-    if (skipped.length > 0) {
-      pail.warn(`${String(skipped.length)} rule(s) skipped due to invalid regex. First few:`);
-      for (const s of skipped.slice(0, 5)) {
-        process.stderr.write(`  - ${s.ruleId}: ${s.reason}
-`);
-      }
-    }
-  }
-  const baselineFullPath = scanOptions.baseline ?? join(root, DEFAULT_BASELINE);
-  const showDiff = !flags.quiet && isAccessibleSync(baselineFullPath);
-  if (flags.updateBaseline) {
-    const count = writeBaseline(findings, baselineFullPath, root, { replace: flags.replaceBaseline });
-    pail.success(`Baseline updated: ${relative(root, baselineFullPath) || baselineFullPath} now contains ${String(count)} entries.`);
-    return;
-  }
-  const format = validateFormat(flags.format);
-  const ruleMetadata = format === "sarif" ? await listRules(scanOptions).catch(() => []) : [];
-  const shouldRedact = scanOptions.redact === true;
-  const reportFindings = shouldRedact ? redact(findings, ["match", "secret"]) : findings;
-  emitFindings(reportFindings, format, root, useColor, toolVersion, ruleMetadata, shouldRedact);
-  if (format === "text" && showDiff) {
-    printDiff(diffBaseline(findings, baselineFullPath, root));
-  }
-  if (findings.length > 0) {
-    if (!flags.quiet) {
-      pail.warn(`${String(findings.length)} potential secret(s) found`);
-      pail.notice("Suppress individual lines with `gitleaks:allow` / `secret-scanner:allow`, or run `vis secrets --update-baseline`.");
-    }
-    process.exit(1);
-  }
-  if (!flags.quiet) {
-    pail.success("No secrets detected.");
-  }
-};
-
-export { execute as default };
+var ee=Object.defineProperty;var $=(e,t)=>ee(e,"name",{value:t,configurable:!0});import{createRequire as te}from"node:module";import{isAccessibleSync as y,readFileSync as A,ensureDirSync as z}from"@visulima/fs";import{join as l}from"@visulima/path";import{ap as G,aq as ae,ar as le,as as ce,at as fe,au as ue,ao as de,av as pe,aw as K,ax as J,ay as U,az as Y}from"./bin.js";import{readTomlSync as ge}from"@visulima/fs/toml";const se=te(import.meta.url),F=typeof globalThis<"u"&&typeof globalThis.process<"u"?globalThis.process:process,B=$(e=>{if(typeof F<"u"&&F.versions&&F.versions.node){const[t,s]=F.versions.node.split(".").map(Number);if(t>22||t===22&&s>=3||t===20&&s>=16)return F.getBuiltinModule(e)}return se(e)},"__cjs_getBuiltinModule"),{readdirSync:V,statSync:C,writeFileSync:S,unlinkSync:ne,rmSync:re,chmodSync:ie}=B("node:fs"),{cwd:j}=F,{createInterface:oe}=B("node:readline"),{spawnSync:w}=B("node:child_process");var he=Object.defineProperty,N=$((e,t)=>he(e,"name",{value:t,configurable:!0}),"c$2");const me=/^# ([^:\s]\S*)(?::\s+(.+))?$/,ke=N(e=>{const t=[],s=e.split(`
+`);let n;for(const r of s){if(r.startsWith("#!")||r.startsWith("# Generated by")||r.startsWith("# NOTE:")||r==="set -e"||r==="")continue;const i=me.exec(r);if(i){n&&t.push(n),n={command:"",id:i[1]??"",...i[2]?{name:i[2]}:{}};continue}n?n.command=n.command.length>0?`${n.command}
+${r}`:r:n={command:r,id:"(custom)"}}return n&&t.push(n),t},"parseStageScript"),ye=N((e,t)=>{const s=l(e,t),n=[],r=new Set(G);if(y(s))for(const i of V(s)){if(i.startsWith(".")||i==="_"||!r.has(i))continue;const o=l(s,i);if(!C(o).isFile())continue;const a=A(o),c=ke(a);n.push({blocks:c,rawLineCount:a.split(`
+`).length,stage:i})}return n.sort((i,o)=>i.stage.localeCompare(o.stage)),{hooksDirectory:t,stages:n}},"listHooks"),be=N(e=>{const t=[];if(e.stages.length===0)return t.push(`No hooks installed in ${e.hooksDirectory}/.`),t;t.push(`Hooks in ${e.hooksDirectory}/:`);for(const s of e.stages)if(t.push("",`${s.stage} (${s.rawLineCount} lines)`),s.blocks.length===0)t.push("  (empty)");else for(const n of s.blocks){const r=n.name?`${n.id} — ${n.name}`:n.id;t.push(`  - ${r}`);const i=n.command.split(`
+`).find(o=>o.trim()!=="");if(i){const o=i.length>120?`${i.slice(0,117)}...`:i;t.push(`      ${o}`)}}return t},"formatListResult"),we=N((e,t)=>{const s=ye(j(),e);for(const n of be(s))t.info(n)},"runList"),E="prek-runner.mjs",xe={css:["css","scss","sass","less"],dockerfile:["dockerfile"],html:["htm","html"],javascript:["cjs","js","jsx","mjs"],json:["json"],jsx:["jsx","tsx"],makefile:["mk","makefile"],markdown:["markdown","md","mdown","mdx"],python:["py","pyi","pyw"],python3:["py","pyi","pyw"],ruby:["rb"],rust:["rs"],shell:["bash","sh","zsh"],sql:["sql"],svg:["svg"],systemd:["service","socket","timer"],toml:["toml"],tsx:["tsx"],typescript:["cts","mts","ts","tsx"],xml:["xml"],yaml:["yaml","yml"]},ve=["binary","directory","executable","non-executable","symlink","text"],$e={bash:["bash","shell"],node:["javascript"],nodejs:["javascript"],perl:["perl"],python:["python"],python3:["python","python3"],ruby:["ruby"],sh:["shell"],zsh:["shell","zsh"]},Ee=["check-json","check-merge-conflict","end-of-file-fixer","mixed-line-ending","trailing-whitespace"],Se=[...Object.keys(xe),...Object.values($e).flat(),...ve],Re=["#!/usr/bin/env node","// Auto-generated by `vis hook migrate`. Do not edit by hand.","// Replicates the subset of prek / pre-commit framework semantics that a vis","// hook script needs: staged-file discovery, regex + type filters, chunked","// argv dispatch, and a handful of built-in hook implementations.","","import { spawnSync } from 'node:child_process';","import { existsSync, readFileSync, statSync, writeFileSync } from 'node:fs';","import { basename, extname, join } from 'node:path';","import process from 'node:process';","","const TYPES_EXTENSION_MAP = {","    css: ['css', 'scss', 'sass', 'less'],","    dockerfile: ['dockerfile'],","    html: ['htm', 'html'],","    javascript: ['cjs', 'js', 'jsx', 'mjs'],","    json: ['json'],","    jsx: ['jsx', 'tsx'],","    makefile: ['mk', 'makefile'],","    markdown: ['markdown', 'md', 'mdown', 'mdx'],","    python: ['py', 'pyi', 'pyw'],","    python3: ['py', 'pyi', 'pyw'],","    ruby: ['rb'],","    rust: ['rs'],","    shell: ['bash', 'sh', 'zsh'],","    sql: ['sql'],","    svg: ['svg'],","    systemd: ['service', 'socket', 'timer'],","    toml: ['toml'],","    tsx: ['tsx'],","    typescript: ['cts', 'mts', 'ts', 'tsx'],","    xml: ['xml'],","    yaml: ['yaml', 'yml'],","};","","const FILENAME_TYPE_MAP = {","    dockerfile: 'dockerfile',","    makefile: 'makefile',","    'gnumakefile': 'makefile',","};","","const SHEBANG_INTERPRETER_MAP = {","    bash: ['bash', 'shell'],","    node: ['javascript'],","    nodejs: ['javascript'],","    perl: ['perl'],","    python: ['python'],","    python3: ['python', 'python3'],","    ruby: ['ruby'],","    sh: ['shell'],","    zsh: ['shell', 'zsh'],","};","","const BUILTINS = {","    'check-json': runCheckJson,","    'check-merge-conflict': runCheckMergeConflict,","    'end-of-file-fixer': runEndOfFileFixer,","    'mixed-line-ending': runMixedLineEnding,","    'trailing-whitespace': runTrailingWhitespace,","};","","const parseArgs = (argv) => {","    const flags = {","        allFiles: process.env.VIS_HOOK_ALL_FILES === '1',","        alwaysRun: false,","        builtin: null,","        exclude: null,","        excludeTypes: [],","        files: null,","        fromRef: process.env.VIS_HOOK_FROM_REF || null,","        passFilenames: true,","        toRef: process.env.VIS_HOOK_TO_REF || null,","        types: [],","        typesOr: [],","    };","    const rest = [];","    let seenDoubleDash = false;","","    for (let i = 0; i < argv.length; i += 1) {","        const arg = argv[i];","","        if (seenDoubleDash) {","            rest.push(arg);","            continue;","        }","","        switch (arg) {","            case '--':","                seenDoubleDash = true;","                break;","            case '--all-files':","                flags.allFiles = true;","                break;","            case '--always-run':","                flags.alwaysRun = true;","                break;","            case '--builtin':","                i += 1;","                flags.builtin = argv[i];","                break;","            case '--exclude':","                i += 1;","                flags.exclude = argv[i];","                break;","            case '--from-ref':","                i += 1;","                flags.fromRef = argv[i];","                break;","            case '--to-ref':","                i += 1;","                flags.toRef = argv[i];","                break;","            case '--exclude-types':","                i += 1;","                flags.excludeTypes = (argv[i] || '').split(',').filter(Boolean);","                break;","            case '--files':","                i += 1;","                flags.files = argv[i];","                break;","            case '--no-pass-filenames':","                flags.passFilenames = false;","                break;","            case '--types':","                i += 1;","                flags.types = (argv[i] || '').split(',').filter(Boolean);","                break;","            case '--types-or':","                i += 1;","                flags.typesOr = (argv[i] || '').split(',').filter(Boolean);","                break;","            default:","                process.stderr.write('prek-runner: unknown flag ' + arg + '\\n');","                process.exit(2);","        }","    }","","    return { flags, rest };","};","","const gitListFiles = (args, errorHint) => {","    const result = spawnSync('git', args, { encoding: 'buffer' });","    if (result.status !== 0) {","        process.stderr.write('prek-runner: git ' + errorHint + ' failed\\n');","        process.stderr.write(result.stderr ? result.stderr.toString() : '');","        process.exit(result.status === null ? 1 : result.status);","    }","    const raw = result.stdout.toString('utf8');","    if (raw.length === 0) { return []; }","    return raw.split('\\0').filter(function (f) { return f.length > 0; });","};","","const discoverFiles = (flags) => {","    if (flags.allFiles) {","        return gitListFiles(['ls-files', '-z'], 'ls-files');","    }","    if (flags.fromRef && flags.toRef) {","        return gitListFiles(","            ['diff', '--name-only', '--diff-filter=ACM', '-z', flags.fromRef, flags.toRef],","            'diff --from-ref/--to-ref'","        );","    }","    return gitListFiles(['diff', '--cached', '--name-only', '--diff-filter=ACM', '-z'], 'diff --cached');","};","","const buildRegex = (pattern) => {","    try {","        return new RegExp(pattern);","    } catch (error) {","        process.stderr.write('prek-runner: invalid regex ' + JSON.stringify(pattern) + ': ' + error.message + '\\n');","        process.exit(2);","    }","};","","const readShebang = (file) => {","    try {","        const fd = readFileSync(file, { encoding: null });","        if (fd.length < 2 || fd[0] !== 0x23 || fd[1] !== 0x21) { return null; }","        const nl = fd.indexOf(0x0a);","        const end = nl === -1 ? Math.min(fd.length, 256) : Math.min(nl, 256);","        return fd.slice(2, end).toString('utf8').trim();","    } catch (error) {","        return null;","    }","};","","const interpreterFromShebang = (shebang) => {","    if (!shebang) { return null; }","    const parts = shebang.split(/\\s+/).filter(Boolean);","    if (parts.length === 0) { return null; }","    const first = parts[0];","    let candidate = basename(first);","    if (candidate === 'env' && parts.length > 1) {","        candidate = basename(parts[1].split('=')[0] || parts[1]);","    }","    return candidate.toLowerCase();","};","","const fileMetadataTags = (file) => {","    const tags = new Set();","    let info;","    try { info = statSync(file, { throwIfNoEntry: false }); } catch (error) { info = null; }","    if (!info) { return tags; }","    if (info.isSymbolicLink()) { tags.add('symlink'); }","    if (info.isDirectory()) { tags.add('directory'); }","    if (info.isFile()) {","        if ((info.mode & 0o111) !== 0) { tags.add('executable'); } else { tags.add('non-executable'); }","    }","    return tags;","};","","const isBinaryFile = (file) => {","    try {","        const buf = readFileSync(file);","        const slice = buf.subarray(0, Math.min(buf.length, 8192));","        for (let i = 0; i < slice.length; i += 1) {","            if (slice[i] === 0) { return true; }","        }","        return false;","    } catch (error) {","        return false;","    }","};","","const typesForFile = (file) => {","    const tags = new Set();","    const baseName = basename(file).toLowerCase();","    const ext = extname(file).slice(1).toLowerCase();","","    if (baseName in FILENAME_TYPE_MAP) {","        tags.add(FILENAME_TYPE_MAP[baseName]);","    }","","    for (const [type, extensions] of Object.entries(TYPES_EXTENSION_MAP)) {","        if (extensions.includes(ext) || extensions.includes(baseName)) {","            tags.add(type);","        }","    }","","    const metaTags = fileMetadataTags(file);","    for (const tag of metaTags) { tags.add(tag); }","","    if (tags.size === 0 || tags.has('executable') || tags.has('shell')) {","        const interpreter = interpreterFromShebang(readShebang(file));","        if (interpreter) {","            const interpreterTags = SHEBANG_INTERPRETER_MAP[interpreter];","            if (interpreterTags) {","                for (const tag of interpreterTags) { tags.add(tag); }","            }","        }","    }","","    if (!tags.has('symlink') && !tags.has('directory')) {","        tags.add(isBinaryFile(file) ? 'binary' : 'text');","    }","","    return tags;","};","","const applyFilters = (files, flags) => {","    let filtered = files;","","    if (flags.files) {","        const rx = buildRegex(flags.files);","        filtered = filtered.filter(function (f) { return rx.test(f); });","    }","","    if (flags.exclude) {","        const rx = buildRegex(flags.exclude);","        filtered = filtered.filter(function (f) { return !rx.test(f); });","    }","","    if (flags.types.length > 0) {","        filtered = filtered.filter(function (f) {","            const tags = typesForFile(f);","            return flags.types.every(function (t) { return tags.has(t); });","        });","    }","","    if (flags.typesOr.length > 0) {","        filtered = filtered.filter(function (f) {","            const tags = typesForFile(f);","            return flags.typesOr.some(function (t) { return tags.has(t); });","        });","    }","","    if (flags.excludeTypes.length > 0) {","        filtered = filtered.filter(function (f) {","            const tags = typesForFile(f);","            return !flags.excludeTypes.some(function (t) { return tags.has(t); });","        });","    }","","    return filtered;","};","","// Conservative per-call argv budget. POSIX guarantees 4 KiB, Linux gives ~2 MiB","// in practice. 32 KiB keeps us well clear of Windows' 32767-char limit too.","const ARG_BUDGET = 32 * 1024;","","const chunkFiles = (files) => {","    const chunks = [];","    let current = [];","    let size = 0;","","    for (const file of files) {","        const cost = Buffer.byteLength(file, 'utf8') + 8;","","        if (size + cost > ARG_BUDGET && current.length > 0) {","            chunks.push(current);","            current = [];","            size = 0;","        }","","        current.push(file);","        size += cost;","    }","","    if (current.length > 0) {","        chunks.push(current);","    }","","    return chunks;","};","","const runCommand = (cmd, files, passFilenames) => {","    if (!cmd || cmd.length === 0) {","        process.stderr.write('prek-runner: no command specified after --\\n');","        return 2;","    }","","    const bin = cmd[0];","    const baseArgs = cmd.slice(1);","","    if (!passFilenames) {","        const result = spawnSync(bin, baseArgs, { stdio: 'inherit' });","        return result.status === null ? 1 : result.status;","    }","","    let rc = 0;","    const chunks = files.length === 0 ? [[]] : chunkFiles(files);","","    for (const chunk of chunks) {","        const result = spawnSync(bin, baseArgs.concat(chunk), { stdio: 'inherit' });","        rc = rc | (result.status === null ? 1 : result.status);","    }","","    return rc;","};","","// ─── Built-in hook implementations ──────────────────────────────────","// Each receives the already-filtered file list and returns an exit code.","","function runTrailingWhitespace(files) {","    // Mirrors pre-commit/pre-commit-hooks/trailing_whitespace_fixer.py:","    // strip trailing whitespace from each line, preserve original endings,","    // preserve markdown hard-break trailing two-spaces on non-blank lines.","    const WS = new Set([0x20, 0x09, 0x0b, 0x0c, 0x0d]); // SP, TAB, VT, FF, CR","    const MD_RE = /\\.(md|markdown|mdown|mdx)$/i;","    let rc = 0;","","    for (const file of files) {","        const isMarkdown = MD_RE.test(file);","        const buf = readFileSync(file);","        const out = [];","        let i = 0;","","        while (i <= buf.length) {","            let end = i;","","            while (end < buf.length && buf[end] !== 0x0a) {","                end += 1;","            }","","            const hadLf = end < buf.length && buf[end] === 0x0a;","            let contentEnd = end;","            let hadCr = false;","","            if (hadLf && end > i && buf[end - 1] === 0x0d) {","                hadCr = true;","                contentEnd = end - 1;","            }","","            const content = buf.subarray(i, contentEnd);","            let stripEnd = content.length;","","            while (stripEnd > 0 && WS.has(content[stripEnd - 1])) {","                stripEnd -= 1;","            }","","            const nonWhitespace = content.some(function (b) { return !WS.has(b); });","","            if (isMarkdown && content.length >= 2 && content[content.length - 1] === 0x20 && content[content.length - 2] === 0x20 && nonWhitespace) {","                stripEnd = Math.min(stripEnd + 2, content.length);","            }","","            out.push(content.subarray(0, stripEnd));","","            if (hadCr) {","                out.push(Buffer.from([0x0d]));","            }","","            if (hadLf) {","                out.push(Buffer.from([0x0a]));","            }","","            if (!hadLf) {","                break;","            }","","            i = end + 1;","        }","","        const next = Buffer.concat(out);","","        if (!next.equals(buf)) {","            writeFileSync(file, next);","            process.stdout.write('Fixing ' + file + '\\n');","            rc = 1;","        }","    }","","    return rc;","}","","function runEndOfFileFixer(files) {","    // Mirrors pre-commit/pre-commit-hooks/end_of_file_fixer.py: collapse","    // trailing \\n / \\r\\n / \\r runs to a single newline; add a newline if","    // missing; leave empty files alone.","    let rc = 0;","","    for (const file of files) {","        const buf = readFileSync(file);","","        if (buf.length === 0) {","            continue;","        }","","        let end = buf.length;","        const last = buf[end - 1];","","        if (last !== 0x0a && last !== 0x0d) {","            writeFileSync(file, Buffer.concat([buf, Buffer.from([0x0a])]));","            process.stdout.write('Fixing ' + file + '\\n');","            rc = 1;","            continue;","        }","","        while (end > 0 && (buf[end - 1] === 0x0a || buf[end - 1] === 0x0d)) {","            end -= 1;","        }","","        if (end === 0) {","            writeFileSync(file, Buffer.alloc(0));","            process.stdout.write('Fixing ' + file + '\\n');","            rc = 1;","            continue;","        }","","        const trailing = buf.subarray(end);","        let keep;","","        if (trailing[0] === 0x0d && trailing[1] === 0x0a) {","            keep = Buffer.from([0x0d, 0x0a]);","        } else if (trailing[0] === 0x0d) {","            keep = Buffer.from([0x0d]);","        } else {","            keep = Buffer.from([0x0a]);","        }","","        if (trailing.equals(keep)) {","            continue;","        }","","        writeFileSync(file, Buffer.concat([buf.subarray(0, end), keep]));","        process.stdout.write('Fixing ' + file + '\\n');","        rc = 1;","    }","","    return rc;","}","","function isInMerge() {","    // Mirrors pre-commit/pre-commit-hooks/check_merge_conflict.py:is_in_merge.","    const gitDirResult = spawnSync('git', ['rev-parse', '--git-dir'], { encoding: 'utf8' });","    if (gitDirResult.status !== 0) { return false; }","    const gitDir = gitDirResult.stdout.trim();","    if (!existsSync(join(gitDir, 'MERGE_MSG'))) { return false; }","    return existsSync(join(gitDir, 'MERGE_HEAD'))","        || existsSync(join(gitDir, 'rebase-apply'))","        || existsSync(join(gitDir, 'rebase-merge'));","}","","function runCheckMergeConflict(files, args) {","    // Mirrors pre-commit/pre-commit-hooks/check_merge_conflict.py: only","    // scans for conflict markers when git is mid-merge/rebase, unless the","    // caller passes --assume-in-merge. Skipping the guard means every","    // legit `<<<<<<<` in docs would fail the hook.","    const assumeInMerge = Array.isArray(args) && args.includes('--assume-in-merge');","    if (!assumeInMerge && !isInMerge()) { return 0; }","","    const PATTERNS = ['<<<<<<< ', '======= ', '=======\\r\\n', '=======\\n', '>>>>>>> '];","    let rc = 0;","","    for (const file of files) {","        const content = readFileSync(file, 'utf8');","        const lines = content.split('\\n');","","        for (let i = 0; i < lines.length; i += 1) {","            const line = lines[i] + (i < lines.length - 1 ? '\\n' : '');","","            for (const pattern of PATTERNS) {","                if (line.startsWith(pattern)) {","                    process.stdout.write(file + ':' + (i + 1) + ': Merge conflict string ' + JSON.stringify(pattern.trim()) + ' found\\n');","                    rc = 1;","                }","            }","        }","    }","","    return rc;","}","","function runCheckJson(files) {","    // Mirrors pre-commit/pre-commit-hooks/check_json.py: parse each file","    // and additionally reject duplicate keys.","    let rc = 0;","","    for (const file of files) {","        const content = readFileSync(file, 'utf8');","","        try {","            JSON.parse(content);","            detectDuplicateJsonKeys(content, file);","        } catch (error) {","            process.stdout.write(file + ': Failed to json decode (' + error.message + ')\\n');","            rc = 1;","        }","    }","","    return rc;","}","","function detectDuplicateJsonKeys(source, file) {","    // Minimal tokeniser that walks the already-valid JSON source and throws","    // with a message compatible with the Python hook when a duplicate key","    // appears at any object level.","    let i = 0;","    const length = source.length;","","    const skipWs = function () {","        while (i < length && /\\s/.test(source[i])) {","            i += 1;","        }","    };","","    const parseString = function () {",`        if (source[i] !== '"') {`,"            throw new Error('expected string at ' + i);","        }","        i += 1;","        let start = i;",`        while (i < length && source[i] !== '"') {`,"            if (source[i] === '\\\\') {","                i += 2;","            } else {","                i += 1;","            }","        }","        const raw = source.slice(start, i);","        i += 1;",`        return JSON.parse('"' + raw + '"');`,"    };","","    const parseValue = function () {","        skipWs();","        const ch = source[i];","        if (ch === '{') { parseObject(); }","        else if (ch === '[') { parseArray(); }",`        else if (ch === '"') { parseString(); }`,"        else {","            while (i < length && ',}]'.indexOf(source[i]) === -1 && !/\\s/.test(source[i])) {","                i += 1;","            }","        }","    };","","    const parseArray = function () {","        i += 1;","        skipWs();","        if (source[i] === ']') { i += 1; return; }","        while (i < length) {","            parseValue();","            skipWs();","            if (source[i] === ',') { i += 1; skipWs(); }","            else if (source[i] === ']') { i += 1; return; }","        }","    };","","    const parseObject = function () {","        i += 1;","        skipWs();","        const seen = new Set();","        if (source[i] === '}') { i += 1; return; }","        while (i < length) {","            skipWs();","            const key = parseString();","            if (seen.has(key)) {","                throw new Error('Duplicate key: ' + key);","            }","            seen.add(key);","            skipWs();","            if (source[i] !== ':') {","                throw new Error('expected colon at ' + i);","            }","            i += 1;","            parseValue();","            skipWs();","            if (source[i] === ',') { i += 1; skipWs(); }","            else if (source[i] === '}') { i += 1; return; }","        }","    };","","    skipWs();","    parseValue();","}","","function runMixedLineEnding(files, args) {","    // Mirrors pre-commit/pre-commit-hooks/mixed_line_ending.py.","    const ENDING = { cr: Buffer.from([0x0d]), crlf: Buffer.from([0x0d, 0x0a]), lf: Buffer.from([0x0a]) };","    let fixArg = 'auto';","","    for (let idx = 0; idx < args.length; idx += 1) {","        const a = args[idx];","        if (a === '-f' || a === '--fix') {","            idx += 1;","            fixArg = args[idx];","        } else if (a.indexOf('--fix=') === 0) {","            fixArg = a.slice('--fix='.length);","        }","    }","","    let rc = 0;","","    for (const file of files) {","        const buf = readFileSync(file);","        const counts = { cr: 0, crlf: 0, lf: 0 };","        const lines = [];","        let start = 0;","","        for (let i = 0; i < buf.length; i += 1) {","            const b = buf[i];","","            if (b === 0x0d && buf[i + 1] === 0x0a) {","                lines.push({ content: buf.subarray(start, i), ending: 'crlf' });","                counts.crlf += 1;","                i += 1;","                start = i + 1;","            } else if (b === 0x0d) {","                lines.push({ content: buf.subarray(start, i), ending: 'cr' });","                counts.cr += 1;","                start = i + 1;","            } else if (b === 0x0a) {","                lines.push({ content: buf.subarray(start, i), ending: 'lf' });","                counts.lf += 1;","                start = i + 1;","            }","        }","","        if (start < buf.length) {","            lines.push({ content: buf.subarray(start), ending: null });","        }","","        const distinct = Object.values(counts).filter(function (c) { return c > 0; }).length;","        const mixed = distinct > 1;","","        if (fixArg === 'no') {","            if (mixed) {","                process.stdout.write(file + ': mixed line endings\\n');","                rc = 1;","            }","            continue;","        }","","        let target;","","        if (fixArg === 'auto') {","            if (!mixed) { continue; }","            let max = -1;","            for (const key of ['cr', 'crlf', 'lf']) {","                if (counts[key] >= max) {","                    max = counts[key];","                    target = key;","                }","            }","        } else if (!(fixArg in ENDING)) {","            process.stderr.write('prek-runner: invalid --fix value ' + fixArg + '\\n');","            return 2;","        } else {","            target = fixArg;","            const other = Object.entries(counts).some(function (entry) { return entry[0] !== target && entry[1] > 0; });","            if (!other) { continue; }","        }","","        const ending = ENDING[target];","        const chunks = [];","","        for (const line of lines) {","            chunks.push(line.content);","            if (line.ending !== null) {","                chunks.push(ending);","            }","        }","","        writeFileSync(file, Buffer.concat(chunks));","        process.stdout.write(file + ': fixed mixed line endings\\n');","        rc = 1;","    }","","    return rc;","}","","// ─── Entry point ────────────────────────────────────────────────────","","const parsed = parseArgs(process.argv.slice(2));","const candidateFiles = discoverFiles(parsed.flags);","const filtered = applyFilters(candidateFiles, parsed.flags);","","if (filtered.length === 0 && !parsed.flags.alwaysRun) {","    process.exit(0);","}","","let code;","","if (parsed.flags.builtin) {","    const impl = BUILTINS[parsed.flags.builtin];","    if (!impl) {","        process.stderr.write('prek-runner: unknown builtin ' + parsed.flags.builtin + '\\n');","        process.exit(2);","    }","    code = impl(filtered, parsed.rest);","} else {","    code = runCommand(parsed.rest, filtered, parsed.flags.passFilenames);","}","","process.exit(code);",""],_e=Re.join(`
+`);var Fe=Object.defineProperty,d=$((e,t)=>Fe(e,"name",{value:t,configurable:!0}),"a$1");const je=new Map([["pre-commit/pre-commit-hooks#check-json","check-json"],["pre-commit/pre-commit-hooks#check-merge-conflict","check-merge-conflict"],["pre-commit/pre-commit-hooks#end-of-file-fixer","end-of-file-fixer"],["pre-commit/pre-commit-hooks#mixed-line-ending","mixed-line-ending"],["pre-commit/pre-commit-hooks#trailing-whitespace","trailing-whitespace"]]),Ae=/[<>=!~]=/,Me=/github\.com[/:]([^/\s]+\/[^/\s.]+)/i,X=`node "$(dirname "$0")/.builtins/${E}"`,Oe="# Generated by `vis hook migrate` from prek",v=d(e=>`'${e.replaceAll("'",String.raw`'\''`)}'`,"shellQuote"),L=d(e=>{for(const t of ae)if(y(l(e,t)))return t},"detectPrekConfig"),Ie=d(e=>le[e]??e,"mapPrekStage"),De=d(e=>Me.exec(e)?.[1]??e,"normalizeRepoKey"),Pe=d(e=>{if(Ae.test(e))return;if(e.startsWith("@")){const n=e.indexOf("@",1);if(n===-1)return{name:e,version:"latest"};const r=e.slice(n+1).trim();return{name:e.slice(0,n),version:r||"latest"}}const t=e.indexOf("@");if(t===-1)return{name:e,version:"latest"};const s=e.slice(t+1).trim();return{name:e.slice(0,t),version:s||"latest"}},"parseAdditionalDep"),Ne=new Set(Se),Te=d(e=>{const t=[];for(const s of[e.types,e.types_or,e.exclude_types])for(const n of s??[])Ne.has(n)||t.push(n);return t},"unknownTypes"),Ce=d((e,t)=>(e.stages&&e.stages.length>0?e.stages:t??["pre-commit"]).map(s=>Ie(s)),"resolveStages"),We=d(e=>{const t=[];return e.files&&t.push("--files",v(e.files)),e.exclude&&t.push("--exclude",v(e.exclude)),e.types&&e.types.length>0&&t.push("--types",v(e.types.join(","))),e.types_or&&e.types_or.length>0&&t.push("--types-or",v(e.types_or.join(","))),e.exclude_types&&e.exclude_types.length>0&&t.push("--exclude-types",v(e.exclude_types.join(","))),e.always_run&&t.push("--always-run"),e.pass_filenames===!1&&t.push("--no-pass-filenames"),t},"buildRunnerFilterFlags"),H=d((e,t)=>{const s=[X,...We(e)];if(t)return s.push("--builtin",t),Array.isArray(e.args)&&e.args.length>0&&s.push("--",...e.args.map(n=>v(n))),s.join(" ");if(s.push("--",e.entry??""),Array.isArray(e.args))for(const n of e.args)s.push(v(n));return s.join(" ")},"buildRunnerInvocation"),Be=d((e,t,s)=>{if(e.language==="fail"){const n=e.entry??e.name??e.id??"hook failed";return`echo ${v(n)}; exit 1`}if(s)return H(e,s);if(ce.has(t)){const n=[];if(e.entry&&n.push(e.entry),Array.isArray(e.args))for(const r of e.args)n.push(v(r));return(e.pass_filenames??!0)&&!e.always_run&&n.push('"$@"'),n.join(" ")}return H(e)},"buildHookCommand"),Le=d((e,t,s,n)=>{if(Array.isArray(e.additional_dependencies))for(const r of e.additional_dependencies){const i=Pe(r);if(!i){n.push(`"${t}": additional_dependency "${r}" uses a pip-style pin and cannot be added to package.json — install manually.`);continue}s.push({hookId:t,name:i.name,raw:r,version:i.version})}},"collectAdditionalDeps"),He=d(e=>{const t=new Map,s=[],n=[],r=[],i=[];let o=!1;(e.files||e.exclude)&&n.push("top-level files/exclude filter dropped — apply it per hook if needed");for(const c of e.repos??[]){const f=c.repo??"<unknown>",b=f==="local",k=b?void 0:De(f);for(const h of c.hooks??[]){const g=h.id??"<unknown>";let M;if(b){const p=h.language??"system";if(!fe.has(p)){s.push({hookId:g,reason:`language "${p}" needs an isolated toolchain — run via prek or reimplement as a system command`,repo:f});continue}if(p!=="fail"&&!h.entry){s.push({hookId:g,reason:"missing `entry`",repo:f});continue}}else if(k&&(M=je.get(`${k}#${g}`)),!M){s.push({hookId:g,reason:`remote repo "${f}"@${c.rev??"?"} has no bundled equivalent — run via prek or replace with a system command`,repo:f});continue}Le(h,g,i,r);const O=Te(h);O.length>0&&n.push(`hook "${g}": unsupported types ${O.join(", ")} — those entries are ignored by the runner`);const I=Ce(h,e.default_stages);for(const p of I){if(p==="manual")continue;if(!ue.has(p)){s.push({hookId:g,reason:`unsupported stage "${p}"`,repo:f});continue}let x=Be(h,p,M);x.startsWith(X)&&(o=!0),h.verbose&&(x=`(set -x; ${x})`);const D=`${`# ${g}${h.name?`: ${h.name}`:""}`}
+${x}`,u=t.get(p);u?u.push(D):t.set(p,[D])}}}const a=new Map;for(const[c,f]of t){const b=["#!/usr/bin/env sh",Oe];e.fail_fast&&b.push("set -e"),b.push("",f.join(`
+
+`),""),a.set(c,b.join(`
+`))}return{additionalDeps:i,droppedFilters:n,manualSteps:r,scripts:a,skippedHooks:s,usesRunner:o}},"convertPrekConfig"),qe=d(e=>{const t=de(e);if(t&&typeof t=="object")return t},"parsePrekConfig"),Ve=d(e=>{if(e.endsWith(".toml")){const s=ge(e);return s&&typeof s=="object"?s:void 0}const t=A(e);return qe(t)},"loadPrekConfig"),ze=d((e,t,s)=>{const n=l(e,"package.json"),r=[],i=[];if(!y(n)||t.length===0)return{added:r,skipped:i};const o=A(n),a=JSON.parse(o),c=a.devDependencies??{},f=a.dependencies??{};for(const k of t){if(k.name in c||k.name in f){i.push(k.name);continue}c[k.name]=k.version,r.push(k.name)}if(r.length===0)return{added:r,skipped:i};a.devDependencies=c;const b=pe(n,o,{defaultIndent:"    ",useEditorconfig:s});return S(n,`${JSON.stringify(a,void 0,b)}
+`,"utf8"),{added:r,skipped:i}},"mergeAdditionalDependencies"),Ge=d((e,t)=>{const s=l(e,t,".builtins");z(s),S(l(s,E),_e,{mode:493}),S(l(s,"README.md"),["# Vis prek runner","","Auto-generated by `vis hook migrate` from a prek/pre-commit config.","This directory is owned by the migrator — do not edit by hand.","",`Supported built-in hooks: ${Ee.join(", ")}`,""].join(`
+`),"utf8")},"writeRunnerAssets"),Ke=d((e,t)=>{w("prek",["--version"],{cwd:e,encoding:"utf8"}).status===0?w("prek",["uninstall"],{cwd:e,encoding:"utf8"}).status===0?t.info("Detached prek via `prek uninstall`."):t.info("`prek uninstall` did not exit cleanly — continuing. You may need to run it manually."):t.info("prek binary not found on PATH — skipping `prek uninstall`. Run it manually if prek is installed elsewhere.")},"detachPrek"),Q=d((e,t,s,n={})=>{const r=L(e),i=n.dryRun===!0;if(!r)return{isError:!0,message:"No prek configuration found (.pre-commit-config.yaml, .pre-commit-config.yml, or prek.toml)"};s.info(`Found prek config at ${r}`);const o=l(e,r),a=A(o),c=Ve(o);if(!c)return{isError:!0,message:`Could not parse ${r}`};const{additionalDeps:f,droppedFilters:b,manualSteps:k,scripts:h,skippedHooks:g,usesRunner:M}=He(c);if(h.size===0&&g.length===0)return{isError:!0,message:`${r} has no hooks to migrate`};if(!i){const u=w("git",["config","--local","core.hooksPath"],{cwd:e,encoding:"utf8"});if(u.status===0){const T=u.stdout?.toString().trim();T&&(T.includes(".prek")||T.includes("prek-hooks"))&&w("git",["config","--local","--unset","core.hooksPath"],{cwd:e})}const R=K(t);if(R.isError)return R;R.message&&s.info(R.message)}const O=l(e,t);i||z(O),M&&(i?s.info(`  (would write) ${t}/.builtins/${E}`):(Ge(e,t),s.info(`  Wrote ${t}/.builtins/${E}`)));let I=0;for(const[u,R]of h)i?s.info(`  (would write) ${t}/${u} (${R.split(`
+`).length} lines)`):(S(l(O,u),R,{mode:493}),s.info(`  Wrote ${t}/${u}`)),I+=1;const{added:p,skipped:x}=i?{added:f.map(u=>u.name),skipped:[]}:ze(e,f,n.useEditorconfig);if(p.length>0){const u=i?"would add":"Added";s.info(`${u} ${p.length} package${p.length===1?"":"s"} to devDependencies: ${p.join(", ")}`),i||s.info("Run your package manager's install (e.g. `pnpm install`) to pick up the new devDependencies.")}x.length>0&&s.info(`Skipped ${x.length} already-declared package${x.length===1?"":"s"}: ${x.join(", ")}`),i||Ke(e,s);const D=`${o}.bak`;if(i?s.info(`  (would remove) ${r} and back it up to ${r}.bak`):(y(D)||S(D,a,"utf8"),ne(o),s.info(`Removed ${r} (backup at ${r}.bak)`)),g.length>0){s.warn(`Skipped ${g.length} hook${g.length===1?"":"s"} that cannot run without prek:`);for(const u of g)s.warn(`  - ${u.repo}::${u.hookId} — ${u.reason}`)}if(b.length>0){s.warn("Partial filter translations:");for(const u of b)s.warn(`  - ${u}`)}if(k.length>0){s.warn("Manual follow-up required:");for(const u of k)s.warn(`  - ${u}`)}return{isError:!1,message:`${i?"would migrate":"Migration complete:"} ${I} stage script${I===1?"":"s"} ${i?"into":"written to"} ${t}/`}},"migrateFromPrek");var Je=Object.defineProperty,Z=$((e,t)=>Je(e,"name",{value:t,configurable:!0}),"a");const Ue="pre-commit",Ye=Z((e,t,s,n)=>{const r=s.stage??Ue,i=l(e,t,r);if(!y(i))throw new Error(`No script found at ${t}/${r}. Install or migrate hooks first.`);if(s.lastCommit&&(s.fromRef||s.toRef))throw new Error("--last-commit cannot be combined with --from-ref or --to-ref");const o=s.lastCommit?"HEAD~1":s.fromRef,a=s.lastCommit?"HEAD":s.toRef;if(o&&!a)throw new Error("--from-ref requires --to-ref");if(a&&!o)throw new Error("--to-ref requires --from-ref");const c={...process.env};s.allFiles&&(c.VIS_HOOK_ALL_FILES="1"),o&&(c.VIS_HOOK_FROM_REF=o),a&&(c.VIS_HOOK_TO_REF=a),n.info(`Running ${t}/${r}${s.allFiles?" (--all-files)":""}${o?` (${o}..${a})`:""}`);const f=w("sh",["-e",i],{cwd:e,env:c,stdio:"inherit"});if(f.error)throw f.error;return f.status??1},"runHookStage"),Xe=Z((e,t,s)=>{const n=Ye(j(),e,t,s);if(n!==0)throw new Error(`Hook stage exited with code ${n}`)},"runRun");var Qe=Object.defineProperty,Ze=$((e,t)=>Qe(e,"name",{value:t,configurable:!0}),"e");const et=Ze((e=J)=>{if(w("git",["config","--local","core.hooksPath"]).status!==0)return{isError:!1,message:"No custom hooks path configured"};const{status:t,stderr:s}=w("git",["config","--local","--unset","core.hooksPath"]);if(t===null)return{isError:!0,message:"git command not found"};if(t&&t!==5)return{isError:!0,message:String(s)};const n=l(e,"_");return y(n)&&re(n,{force:!0,recursive:!0}),{isError:!1,message:""}},"uninstallHooks");var tt=Object.defineProperty,P=$((e,t)=>tt(e,"name",{value:t,configurable:!0}),"u");const st=new Set(G),nt=P(e=>{const t=w("sh",["-n",e],{encoding:"utf8"});if(t.status===null)return`failed to run "sh -n" (${t.error?.message??"unknown error"})`;if(t.status!==0)return t.stderr.trim()||`sh -n exited with ${t.status}`},"runSyntaxCheck"),rt=P(e=>{const t=w("node",["--check",e],{encoding:"utf8"});if(t.status===null)return`failed to run "node --check" (${t.error?.message??"unknown error"})`;if(t.status!==0)return t.stderr.trim()||`node --check exited with ${t.status}`},"runNodeCheck"),it=P((e,t)=>{const s=[],n=l(e,t),r=w("git",["config","--local","core.hooksPath"],{cwd:e,encoding:"utf8"});if(r.status===0){const o=r.stdout.trim(),a=`${t}/_`;o&&o!==a&&s.push({kind:"warning",message:`core.hooksPath is "${o}" — expected "${a}". Re-run \`vis hook install\` to fix.`})}else s.push({kind:"warning",message:"core.hooksPath is not set — run `vis hook install`."});if(y(l(n,"_"))||s.push({kind:"error",message:`Dispatcher directory ${t}/_ is missing. Run \`vis hook install\`.`}),!y(n))return s.push({kind:"error",message:`Hooks directory ${t}/ is missing.`}),{issues:s,ok:!1};let i=!1;for(const o of V(n)){if(o.startsWith(".")||o==="_")continue;if(!st.has(o)){s.push({kind:"warning",message:`Unknown hook "${o}" — not a standard git hook.`,path:l(t,o)});continue}const a=l(n,o);if(!C(a).isFile())continue;const c=C(a).mode&511;(c&64)===0&&s.push({kind:"warning",message:`Script is not owner-executable (mode ${c.toString(8)}).`,path:l(t,o)});const f=nt(a);f&&s.push({kind:"error",message:`Shell syntax error: ${f}`,path:l(t,o)}),A(a).includes(`/.builtins/${E}`)&&(i=!0)}if(i){const o=l(n,".builtins",E);if(y(o)){const a=rt(o);a&&s.push({kind:"error",message:`prek-runner.mjs has a syntax error: ${a}`,path:l(t,".builtins",E)})}else s.push({kind:"error",message:`Hook scripts reference ${t}/.builtins/${E} but the file is missing. Re-run \`vis hook migrate\`.`})}return{issues:s,ok:!s.some(o=>o.kind==="error")}},"validateHooks"),ot=P((e,t)=>{if(e.issues.length===0)return[`Hook directory ${t}/ looks good.`];const s=[];for(const n of e.issues){const r=n.kind==="error"?"ERROR":"WARN ",i=n.path?` (${n.path})`:"";s.push(`${r} ${n.message}${i}`)}return s.push("",e.ok?"No errors — warnings only.":`${e.issues.filter(n=>n.kind==="error").length} error(s).`),s},"formatValidationResult"),at=P((e,t)=>{const s=it(j(),e),n=ot(s,e);for(const r of n)r.startsWith("ERROR")||r.startsWith("WARN")?t.warn(r):t.info(r);if(!s.ok)throw new Error("Hook validation failed")},"runValidate");var lt=Object.defineProperty,m=$((e,t)=>lt(e,"name",{value:t,configurable:!0}),"i");const _=m(e=>e.hooksDir??J,"resolveHooksDirectory"),q=m(e=>new Promise(t=>{const s=oe({input:process.stdin,output:process.stdout});s.question(`${e} (y/N) `,n=>{s.close();const r=n.trim().toLowerCase();t(r==="y"||r==="yes")})}),"confirmPrompt"),ct=m(async(e,t,s)=>{const n=j(),r=U(n),i=L(n);if(r&&i)throw new Error(`Found both husky (${r}/) and prek (${i}). Remove or migrate one before running \`vis hook install\`.`);if(r){if(t.info(`Existing husky installation found at ${r}/`),await q("Would you like to migrate your husky hooks to vis?")){const a=Y(n,e,t,{useEditorconfig:s});if(a.isError)throw new Error(a.message);a.message&&t.info(a.message);return}t.info("Aborting install. Remove husky first or run 'vis hook migrate' to migrate.");return}if(i){if(t.info(`Existing prek configuration found at ${i}`),await q("Would you like to migrate your prek hooks to vis?")){const a=Q(n,e,t,{useEditorconfig:s});if(a.isError)throw new Error(a.message);a.message&&t.info(a.message);return}t.info("Aborting install. Remove the prek config first or run 'vis hook migrate' to migrate.");return}t.info(`Installing git hooks in ${e}/...`);const o=K(e);if(o.message){if(o.isError)throw new Error(o.message);t.info(o.message);return}y(l(n,e,"pre-commit"))||S(l(n,e,"pre-commit"),`#!/usr/bin/env sh
+`,{mode:493}),t.info("Git hooks installed successfully.")},"executeInstall"),ft=m((e,t,s,n)=>{const r=j(),i=U(r),o=L(r);if(i&&o)throw new Error(`Found both husky (${i}/) and prek (${o}). Migrate one at a time — rename or remove one before retrying.`);if(!i&&!o)throw new Error("No husky (.husky/) or prek (.pre-commit-config.yaml / prek.toml) configuration found to migrate.");t&&s.info("(dry-run) no files will be written");const a=i?Y(r,e,s,{dryRun:t,useEditorconfig:n}):Q(r,e,s,{dryRun:t,useEditorconfig:n});if(a.isError)throw new Error(a.message);a.message&&s.info(a.message)},"executeMigrate"),W="# vis:secrets-hook",ut=`#!/usr/bin/env sh
+${W}
+# Scan staged files for secrets before each commit. Remove this block or the whole file to disable.
+pnpm exec vis secrets --staged --quiet || exit 1
+`,dt=m((e,t,s)=>{if(e!=="secrets")throw new Error(`Unknown hook add target "${String(e)}". Currently supported: "secrets".`);const n=j(),r=l(n,t,"pre-commit");if(!y(l(n,t)))throw new Error(`Hooks directory ${t}/ does not exist. Run \`vis hook install\` first.`);if(y(r)){const i=A(r);if(i.includes(W)){s.info(`Secrets hook already present in ${r}.`);return}if(/\bvis secrets\b/.test(i)){s.warn(`Found a \`vis secrets\` invocation in ${r} without the managed marker — leaving it untouched.`);return}const o=`${i.trimEnd()}
+
+${W}
+pnpm exec vis secrets --staged --quiet || exit 1
+`;S(r,o),ie(r,493),s.info(`Appended secrets scan to ${r}.`);return}S(r,ut,{mode:493}),s.info(`Created ${r} with a secrets-scan pre-commit check.`)},"executeAdd"),pt=m((e,t)=>{t.info("Removing git hooks...");const s=et(e);if(s.message){if(s.isError)throw new Error(s.message);t.info(s.message);return}t.info("Git hooks removed successfully.")},"executeUninstall"),gt=m(async({logger:e,options:t,visConfig:s})=>{await ct(_(t),e,s?.editorconfig??!0)},"hookInstallImpl"),ht=m(({logger:e,options:t})=>{pt(_(t),e)},"hookUninstallImpl"),mt=m(({logger:e,options:t,visConfig:s})=>{ft(_(t),!!t.dryRun,e,s?.editorconfig??!0)},"hookMigrateImpl"),kt=m(({logger:e,options:t})=>{we(_(t),e)},"hookListImpl"),yt=m(({logger:e,options:t})=>{at(_(t),e)},"hookValidateImpl"),bt=m(({argument:e,logger:t,options:s})=>{Xe(_(s),{allFiles:!!s.allFiles,fromRef:s.fromRef,lastCommit:!!s.lastCommit,stage:e[0],toRef:s.toRef},t)},"hookRunImpl"),wt=m(({argument:e,logger:t,options:s})=>{dt(e[0],_(s),t)},"hookAddImpl"),_t=gt,Ft=ht,jt=mt,At=kt,Mt=yt,Ot=bt,It=wt;export{It as hookAddExecute,_t as hookInstallExecute,At as hookListExecute,jt as hookMigrateExecute,Ot as hookRunExecute,Ft as hookUninstallExecute,Mt as hookValidateExecute};