@vyuhlabs/dxkit 2.2.0 → 2.3.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +160 -0
- package/README.md +40 -29
- package/dist/analyzers/bom/discovery.d.ts +38 -0
- package/dist/analyzers/bom/discovery.d.ts.map +1 -0
- package/dist/analyzers/bom/discovery.js +166 -0
- package/dist/analyzers/bom/discovery.js.map +1 -0
- package/dist/analyzers/bom/gather.d.ts +28 -0
- package/dist/analyzers/bom/gather.d.ts.map +1 -1
- package/dist/analyzers/bom/gather.js +98 -0
- package/dist/analyzers/bom/gather.js.map +1 -1
- package/dist/analyzers/bom/index.d.ts +49 -2
- package/dist/analyzers/bom/index.d.ts.map +1 -1
- package/dist/analyzers/bom/index.js +188 -12
- package/dist/analyzers/bom/index.js.map +1 -1
- package/dist/analyzers/bom/types.d.ts +33 -1
- package/dist/analyzers/bom/types.d.ts.map +1 -1
- package/dist/analyzers/licenses/index.d.ts +1 -1
- package/dist/analyzers/licenses/index.d.ts.map +1 -1
- package/dist/analyzers/licenses/index.js +22 -7
- package/dist/analyzers/licenses/index.js.map +1 -1
- package/dist/analyzers/security/detailed.d.ts.map +1 -1
- package/dist/analyzers/security/detailed.js +21 -8
- package/dist/analyzers/security/detailed.js.map +1 -1
- package/dist/analyzers/security/gather.d.ts.map +1 -1
- package/dist/analyzers/security/gather.js +76 -1
- package/dist/analyzers/security/gather.js.map +1 -1
- package/dist/analyzers/security/index.d.ts.map +1 -1
- package/dist/analyzers/security/index.js +20 -7
- package/dist/analyzers/security/index.js.map +1 -1
- package/dist/analyzers/tools/epss.d.ts +55 -0
- package/dist/analyzers/tools/epss.d.ts.map +1 -0
- package/dist/analyzers/tools/epss.js +133 -0
- package/dist/analyzers/tools/epss.js.map +1 -0
- package/dist/analyzers/tools/graphify.d.ts.map +1 -1
- package/dist/analyzers/tools/graphify.js +17 -7
- package/dist/analyzers/tools/graphify.js.map +1 -1
- package/dist/analyzers/tools/kev.d.ts +52 -0
- package/dist/analyzers/tools/kev.d.ts.map +1 -0
- package/dist/analyzers/tools/kev.js +95 -0
- package/dist/analyzers/tools/kev.js.map +1 -0
- package/dist/analyzers/tools/npm-registry.d.ts +43 -0
- package/dist/analyzers/tools/npm-registry.d.ts.map +1 -0
- package/dist/analyzers/tools/npm-registry.js +107 -0
- package/dist/analyzers/tools/npm-registry.js.map +1 -0
- package/dist/analyzers/tools/osv.d.ts +12 -0
- package/dist/analyzers/tools/osv.d.ts.map +1 -1
- package/dist/analyzers/tools/osv.js +45 -2
- package/dist/analyzers/tools/osv.js.map +1 -1
- package/dist/analyzers/tools/reachability.d.ts +60 -0
- package/dist/analyzers/tools/reachability.d.ts.map +1 -0
- package/dist/analyzers/tools/reachability.js +104 -0
- package/dist/analyzers/tools/reachability.js.map +1 -0
- package/dist/analyzers/tools/risk-score.d.ts +69 -0
- package/dist/analyzers/tools/risk-score.d.ts.map +1 -0
- package/dist/analyzers/tools/risk-score.js +86 -0
- package/dist/analyzers/tools/risk-score.js.map +1 -0
- package/dist/analyzers/tools/tool-registry.d.ts +10 -0
- package/dist/analyzers/tools/tool-registry.d.ts.map +1 -1
- package/dist/analyzers/tools/tool-registry.js +35 -20
- package/dist/analyzers/tools/tool-registry.js.map +1 -1
- package/dist/analyzers/xlsx/bom.d.ts.map +1 -1
- package/dist/analyzers/xlsx/bom.js +1 -2
- package/dist/analyzers/xlsx/bom.js.map +1 -1
- package/dist/cli.d.ts.map +1 -1
- package/dist/cli.js +41 -10
- package/dist/cli.js.map +1 -1
- package/dist/languages/capabilities/types.d.ts +6 -0
- package/dist/languages/capabilities/types.d.ts.map +1 -1
- package/dist/languages/csharp.d.ts.map +1 -1
- package/dist/languages/csharp.js +8 -0
- package/dist/languages/csharp.js.map +1 -1
- package/dist/languages/go.d.ts.map +1 -1
- package/dist/languages/go.js +24 -7
- package/dist/languages/go.js.map +1 -1
- package/dist/languages/python.d.ts.map +1 -1
- package/dist/languages/python.js +8 -0
- package/dist/languages/python.js.map +1 -1
- package/dist/languages/rust.d.ts.map +1 -1
- package/dist/languages/rust.js +9 -0
- package/dist/languages/rust.js.map +1 -1
- package/dist/languages/typescript.d.ts.map +1 -1
- package/dist/languages/typescript.js +23 -1
- package/dist/languages/typescript.js.map +1 -1
- package/package.json +4 -3
- package/templates/.claude/agents-available/dashboard-builder.md +7 -7
- package/templates/.claude/agents-available/dev-report.md +4 -4
- package/templates/.claude/agents-available/health-auditor.md +1 -1
- package/templates/.claude/agents-available/strategic-planner.md +7 -7
- package/templates/.claude/agents-available/vulnerability-scanner.md +3 -3
- package/templates/.claude/commands/dashboard.md +1 -1
- package/templates/.claude/commands/deps.md +1 -1
- package/templates/.claude/commands/dev-report.md +2 -2
- package/templates/.claude/commands/docs.md +1 -1
- package/templates/.claude/commands/export-pdf.md +3 -3
- package/templates/.claude/commands/health.md +3 -3
- package/templates/.claude/commands/plan.md +1 -1
- package/templates/.claude/commands/quality.md.template +2 -2
- package/templates/.claude/commands/stealth-mode.md +1 -1
- package/templates/.claude/commands/test-gaps.md +2 -2
- package/templates/.claude/commands/vulnerabilities.md +3 -3
- package/dist/agents/extract.d.ts +0 -25
- package/dist/agents/extract.d.ts.map +0 -1
- package/dist/agents/extract.js +0 -186
- package/dist/agents/extract.js.map +0 -1
- package/dist/agents/schemas.d.ts +0 -106
- package/dist/agents/schemas.d.ts.map +0 -1
- package/dist/agents/schemas.js +0 -86
- package/dist/agents/schemas.js.map +0 -1
- package/dist/agents/session.d.ts +0 -28
- package/dist/agents/session.d.ts.map +0 -1
- package/dist/agents/session.js +0 -223
- package/dist/agents/session.js.map +0 -1
- package/dist/analyzers/index.d.ts +0 -3
- package/dist/analyzers/index.d.ts.map +0 -1
- package/dist/analyzers/index.js +0 -6
- package/dist/analyzers/index.js.map +0 -1
- package/dist/analyzers/security/report.d.ts +0 -6
- package/dist/analyzers/security/report.d.ts.map +0 -1
- package/dist/analyzers/security/report.js +0 -118
- package/dist/analyzers/security/report.js.map +0 -1
- package/dist/analyzers/tools/dotnet.d.ts +0 -8
- package/dist/analyzers/tools/dotnet.d.ts.map +0 -1
- package/dist/analyzers/tools/dotnet.js +0 -81
- package/dist/analyzers/tools/dotnet.js.map +0 -1
- package/dist/analyzers/tools/gather-cache.d.ts +0 -16
- package/dist/analyzers/tools/gather-cache.d.ts.map +0 -1
- package/dist/analyzers/tools/gather-cache.js +0 -126
- package/dist/analyzers/tools/gather-cache.js.map +0 -1
- package/dist/analyzers/tools/go.d.ts +0 -8
- package/dist/analyzers/tools/go.d.ts.map +0 -1
- package/dist/analyzers/tools/go.js +0 -84
- package/dist/analyzers/tools/go.js.map +0 -1
- package/dist/analyzers/tools/node.d.ts +0 -8
- package/dist/analyzers/tools/node.d.ts.map +0 -1
- package/dist/analyzers/tools/node.js +0 -160
- package/dist/analyzers/tools/node.js.map +0 -1
- package/dist/analyzers/tools/python.d.ts +0 -8
- package/dist/analyzers/tools/python.d.ts.map +0 -1
- package/dist/analyzers/tools/python.js +0 -81
- package/dist/analyzers/tools/python.js.map +0 -1
- package/dist/analyzers/tools/rust.d.ts +0 -8
- package/dist/analyzers/tools/rust.d.ts.map +0 -1
- package/dist/analyzers/tools/rust.js +0 -86
- package/dist/analyzers/tools/rust.js.map +0 -1
- package/templates/.ai/templates/session-checkpoint-template.md +0 -97
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
---
|
|
2
2
|
name: dev-report
|
|
3
|
-
description: Generates developer activity and code quality reports from git history. Use when asked about "developer report", "who introduced this bug?", "contribution analysis", or "team activity". Saves report to .
|
|
3
|
+
description: Generates developer activity and code quality reports from git history. Use when asked about "developer report", "who introduced this bug?", "contribution analysis", or "team activity". Saves report to .dxkit/reports/.
|
|
4
4
|
model: sonnet
|
|
5
5
|
tools: Read, Grep, Glob, Bash, Write
|
|
6
6
|
---
|
|
@@ -35,7 +35,7 @@ When asked about a specific developer:
|
|
|
35
35
|
### 3. Code Quality by Developer
|
|
36
36
|
Cross-reference git blame with known issues:
|
|
37
37
|
|
|
38
|
-
- For files with known vulnerabilities (from `/vulnerabilities` report if available in `.
|
|
38
|
+
- For files with known vulnerabilities (from `/vulnerabilities` report if available in `.dxkit/reports/`):
|
|
39
39
|
- `git blame <file>` on the problematic lines
|
|
40
40
|
- Identify who introduced the issue and when
|
|
41
41
|
- For files with no tests:
|
|
@@ -43,7 +43,7 @@ Cross-reference git blame with known issues:
|
|
|
43
43
|
|
|
44
44
|
## Output Format
|
|
45
45
|
|
|
46
|
-
Save to `.
|
|
46
|
+
Save to `.dxkit/reports/developer-report-YYYY-MM-DD.md`:
|
|
47
47
|
|
|
48
48
|
```markdown
|
|
49
49
|
## Developer Activity Report
|
|
@@ -104,5 +104,5 @@ Issues from vulnerability scan attributed to authors:
|
|
|
104
104
|
- **Focus on patterns** — one missed test is noise; consistently missing tests is a pattern
|
|
105
105
|
- **Respect privacy** — this report may be sensitive; don't include in public repos
|
|
106
106
|
- **Never output secrets** found in git history
|
|
107
|
-
- Save report to `.
|
|
107
|
+
- Save report to `.dxkit/reports/developer-report-YYYY-MM-DD.md`
|
|
108
108
|
- **Always end the report with:** `---` followed by `*Generated by [VyuhLabs DXKit](https://www.npmjs.com/package/@vyuhlabs/dxkit) dev-report agent*`
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
---
|
|
2
2
|
name: health-auditor
|
|
3
|
-
description: Audits overall codebase health — tests, linting, docs, complexity, tech debt. Use when asked "how healthy is this codebase?", "what should we improve?", or "give me a quality report". Saves reports to .
|
|
3
|
+
description: Audits overall codebase health — tests, linting, docs, complexity, tech debt. Use when asked "how healthy is this codebase?", "what should we improve?", or "give me a quality report". Saves reports to .dxkit/reports/.
|
|
4
4
|
model: sonnet
|
|
5
5
|
tools: Read, Grep, Glob, Bash, Write
|
|
6
6
|
---
|
|
@@ -11,13 +11,13 @@ You are a strategic planning specialist. Your job is to turn DXKit reports into
|
|
|
11
11
|
|
|
12
12
|
### Phase 1: Gather Intelligence
|
|
13
13
|
|
|
14
|
-
Read all existing reports in `.
|
|
15
|
-
- `.
|
|
16
|
-
- `.
|
|
17
|
-
- `.
|
|
18
|
-
- `.
|
|
19
|
-
- `.
|
|
20
|
-
- `.
|
|
14
|
+
Read all existing reports in `.dxkit/reports/`. If key reports are missing, tell the user which commands to run first:
|
|
15
|
+
- `.dxkit/reports/health-audit-*.md` — Overall health scores
|
|
16
|
+
- `.dxkit/reports/vulnerability-scan-*.md` — Security findings
|
|
17
|
+
- `.dxkit/reports/test-gaps-*.md` — Untested code
|
|
18
|
+
- `.dxkit/reports/developer-report-*.md` — Team patterns
|
|
19
|
+
- `.dxkit/reports/docs-audit-*.md` — Documentation gaps
|
|
20
|
+
- `.dxkit/reports/dependency-map-*.md` — Architecture dependencies
|
|
21
21
|
|
|
22
22
|
Also read:
|
|
23
23
|
- `.claude/skills/codebase/SKILL.md` — Language breakdown, testing status
|
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
---
|
|
2
2
|
name: vulnerability-scanner
|
|
3
|
-
description: Comprehensive security vulnerability scanner — dependencies (with CWE classification), code patterns, file uploads, decompression bombs, recursion depth, native modules, resource limits. Use when asked about vulnerabilities, "is this secure?", "audit dependencies", or "security scan". Saves report to .
|
|
3
|
+
description: Comprehensive security vulnerability scanner — dependencies (with CWE classification), code patterns, file uploads, decompression bombs, recursion depth, native modules, resource limits. Use when asked about vulnerabilities, "is this secure?", "audit dependencies", or "security scan". Saves report to .dxkit/reports/.
|
|
4
4
|
model: sonnet
|
|
5
5
|
tools: Read, Grep, Glob, Bash, Write
|
|
6
6
|
---
|
|
@@ -108,7 +108,7 @@ Flag native modules not covered by npm audit for manual review.
|
|
|
108
108
|
|
|
109
109
|
## Phase 5: Generate Report
|
|
110
110
|
|
|
111
|
-
Save to `.
|
|
111
|
+
Save to `.dxkit/reports/vulnerability-scan-YYYY-MM-DD.md`:
|
|
112
112
|
|
|
113
113
|
```markdown
|
|
114
114
|
## Vulnerability Scan Report
|
|
@@ -170,4 +170,4 @@ Save to `.ai/reports/vulnerability-scan-YYYY-MM-DD.md`:
|
|
|
170
170
|
- **Prioritize by exploitability** — a reachable RCE is worse than a theoretical DoS
|
|
171
171
|
- **Include fix instructions** — "upgrade X to Y" or "replace pattern A with B"
|
|
172
172
|
- **Never output actual secret values** — say "hardcoded secret found at file:line", don't print it
|
|
173
|
-
- Save the report to `.
|
|
173
|
+
- Save the report to `.dxkit/reports/vulnerability-scan-YYYY-MM-DD.md`
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
description: Generate a beautiful HTML dashboard from all reports
|
|
3
3
|
---
|
|
4
4
|
|
|
5
|
-
Delegate to the **dashboard-builder** agent. It will read all reports from `.
|
|
5
|
+
Delegate to the **dashboard-builder** agent. It will read all reports from `.dxkit/reports/` and generate a self-contained HTML dashboard at `.dxkit/reports/dashboard.html`.
|
|
6
6
|
|
|
7
7
|
The dashboard features:
|
|
8
8
|
- Dark theme with modern design
|
|
@@ -4,7 +4,7 @@ description: Map dependencies — "what depends on X?" or "what breaks if I chan
|
|
|
4
4
|
|
|
5
5
|
Delegate to the **dependency-mapper** agent. It will trace import chains and show what depends on what.
|
|
6
6
|
|
|
7
|
-
**Save the report to `.
|
|
7
|
+
**Save the report to `.dxkit/reports/dependency-map-YYYY-MM-DD.md`** (use today's date).
|
|
8
8
|
|
|
9
9
|
**IMPORTANT: End the report with this exact footer:**
|
|
10
10
|
```
|
|
@@ -5,7 +5,7 @@ description: Generate developer activity and code quality report from git histor
|
|
|
5
5
|
## Step 1: Check for Existing Report
|
|
6
6
|
|
|
7
7
|
```bash
|
|
8
|
-
ls .
|
|
8
|
+
ls .dxkit/reports/developer-report-*.md 2>/dev/null | tail -1
|
|
9
9
|
```
|
|
10
10
|
|
|
11
11
|
**If a report exists**: Read it. The commit counts, contributor stats, and velocity data are deterministic. Skip to Step 3.
|
|
@@ -35,7 +35,7 @@ Using the git data, add:
|
|
|
35
35
|
|
|
36
36
|
**Do not change commit counts, contributor stats, or velocity numbers from the deterministic report.**
|
|
37
37
|
|
|
38
|
-
Save to `.
|
|
38
|
+
Save to `.dxkit/reports/developer-report-YYYY-MM-DD.md`.
|
|
39
39
|
|
|
40
40
|
Examples:
|
|
41
41
|
- `/dev-report` — Team overview (last 3 months)
|
|
@@ -4,7 +4,7 @@ description: Audit documentation gaps or write/improve docs
|
|
|
4
4
|
|
|
5
5
|
Delegate to the **doc-writer** agent. It can audit documentation quality, identify gaps, and help write or improve docs.
|
|
6
6
|
|
|
7
|
-
When auditing, **save the report to `.
|
|
7
|
+
When auditing, **save the report to `.dxkit/reports/docs-audit-YYYY-MM-DD.md`** (use today's date).
|
|
8
8
|
|
|
9
9
|
Examples:
|
|
10
10
|
- `/docs audit` — Assess documentation quality and list gaps
|
|
@@ -7,7 +7,7 @@ Convert markdown report(s) to PDF.
|
|
|
7
7
|
|
|
8
8
|
## Arguments
|
|
9
9
|
- `$ARGUMENTS`
|
|
10
|
-
- If empty or "all", convert all reports in `.
|
|
10
|
+
- If empty or "all", convert all reports in `.dxkit/reports/`
|
|
11
11
|
- If a file path, convert that specific file
|
|
12
12
|
|
|
13
13
|
## How to Convert
|
|
@@ -20,11 +20,11 @@ Try these tools in order (use whichever is available):
|
|
|
20
20
|
|
|
21
21
|
## For "all" reports
|
|
22
22
|
```
|
|
23
|
-
for f in .
|
|
23
|
+
for f in .dxkit/reports/*.md; do
|
|
24
24
|
npx md-to-pdf "$f"
|
|
25
25
|
done
|
|
26
26
|
```
|
|
27
27
|
|
|
28
28
|
## Output
|
|
29
|
-
- PDFs are saved alongside the markdown files in `.
|
|
29
|
+
- PDFs are saved alongside the markdown files in `.dxkit/reports/`
|
|
30
30
|
- Report which files were converted and their paths
|
|
@@ -7,7 +7,7 @@ description: Run a comprehensive codebase health audit (tests, quality, docs, se
|
|
|
7
7
|
Check if a deterministic report already exists:
|
|
8
8
|
|
|
9
9
|
```bash
|
|
10
|
-
ls .
|
|
10
|
+
ls .dxkit/reports/health-audit-*.md 2>/dev/null | tail -1
|
|
11
11
|
```
|
|
12
12
|
|
|
13
13
|
**If a report exists**: Read it. The scores and metrics are deterministic ground truth — do not change them. Skip to Step 3.
|
|
@@ -23,7 +23,7 @@ npx vyuh-dxkit health . --json 2>/dev/null
|
|
|
23
23
|
```
|
|
24
24
|
|
|
25
25
|
**If the command succeeds** (returns JSON with `summary.overallScore`):
|
|
26
|
-
- The CLI saves a report to `.
|
|
26
|
+
- The CLI saves a report to `.dxkit/reports/health-audit-YYYY-MM-DD.md`
|
|
27
27
|
- Read that report. Proceed to Step 3.
|
|
28
28
|
|
|
29
29
|
**If the command fails** (not installed or errors):
|
|
@@ -47,7 +47,7 @@ Add a **Prioritized Action Items** section at the end:
|
|
|
47
47
|
|
|
48
48
|
**If you have deterministic scores: keep all numbers exactly as reported. Add context and explanations only — do not re-score.**
|
|
49
49
|
|
|
50
|
-
Save the enriched report to `.
|
|
50
|
+
Save the enriched report to `.dxkit/reports/health-audit-YYYY-MM-DD.md`.
|
|
51
51
|
|
|
52
52
|
**IMPORTANT: End the report with this exact footer:**
|
|
53
53
|
```
|
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
description: Generate improvement plans with KPIs from reports (or list existing plans)
|
|
3
3
|
---
|
|
4
4
|
|
|
5
|
-
Delegate to the **strategic-planner** agent. It reads all reports in `.
|
|
5
|
+
Delegate to the **strategic-planner** agent. It reads all reports in `.dxkit/reports/`, proposes measurable KPIs, and generates actionable plans in `.ai/plans/`.
|
|
6
6
|
|
|
7
7
|
If reports don't exist yet, it will tell you which commands to run first (`/health`, `/vulnerabilities`, `/test-gaps`, etc.).
|
|
8
8
|
|
|
@@ -5,7 +5,7 @@ description: Run code quality analysis with slop detection
|
|
|
5
5
|
## Step 1: Check for Existing Report
|
|
6
6
|
|
|
7
7
|
```bash
|
|
8
|
-
ls .
|
|
8
|
+
ls .dxkit/reports/quality-review-*.md 2>/dev/null | tail -1
|
|
9
9
|
```
|
|
10
10
|
|
|
11
11
|
**If a report exists**: Read it. The slop score, duplication %, and metrics are deterministic. Skip to Step 3.
|
|
@@ -54,7 +54,7 @@ Using the quality metrics, add:
|
|
|
54
54
|
|
|
55
55
|
**Do not change the slop score, duplication %, or metric counts from the deterministic report.**
|
|
56
56
|
|
|
57
|
-
Save to `.
|
|
57
|
+
Save to `.dxkit/reports/quality-review-YYYY-MM-DD.md`.
|
|
58
58
|
|
|
59
59
|
**IMPORTANT: End the report with this exact footer:**
|
|
60
60
|
```
|
|
@@ -5,7 +5,7 @@ description: Configure DXKit as local-only (gitignore all generated files) + ins
|
|
|
5
5
|
Delegate to the **hooks-configurator** agent with stealth mode enabled.
|
|
6
6
|
|
|
7
7
|
This will:
|
|
8
|
-
1. Add all DXKit files to `.gitignore` (`.claude/`, `.ai/`, `CLAUDE.md`, `.vyuh-dxkit.json`)
|
|
8
|
+
1. Add all DXKit files to `.gitignore` (`.claude/`, `.ai/`, `.dxkit/`, `CLAUDE.md`, `.vyuh-dxkit.json`)
|
|
9
9
|
2. Ask which hooks to enable (quality, test, vulnerability)
|
|
10
10
|
3. Generate `.githooks/` directory (committed — all devs get the hooks)
|
|
11
11
|
4. Install hooks with `git config core.hooksPath .githooks`
|
|
@@ -5,7 +5,7 @@ description: Find critical code paths that lack test coverage
|
|
|
5
5
|
## Step 1: Check for Existing Report
|
|
6
6
|
|
|
7
7
|
```bash
|
|
8
|
-
ls .
|
|
8
|
+
ls .dxkit/reports/test-gaps-*.md 2>/dev/null | tail -1
|
|
9
9
|
```
|
|
10
10
|
|
|
11
11
|
**If a report exists**: Read it. The file counts, coverage %, and risk tiers are deterministic. Skip to Step 3.
|
|
@@ -38,7 +38,7 @@ Add a **Test Infrastructure Setup** section if tests are at 0%:
|
|
|
38
38
|
|
|
39
39
|
**Do not change coverage %, file counts, or risk classifications from the deterministic report.**
|
|
40
40
|
|
|
41
|
-
Save to `.
|
|
41
|
+
Save to `.dxkit/reports/test-gaps-YYYY-MM-DD.md`.
|
|
42
42
|
|
|
43
43
|
**IMPORTANT: End the report with this exact footer:**
|
|
44
44
|
```
|
|
@@ -5,7 +5,7 @@ description: Scan dependencies and code for security vulnerabilities
|
|
|
5
5
|
## Step 1: Check for Existing Report
|
|
6
6
|
|
|
7
7
|
```bash
|
|
8
|
-
ls .
|
|
8
|
+
ls .dxkit/reports/vulnerability-scan-*.md 2>/dev/null | tail -1
|
|
9
9
|
```
|
|
10
10
|
|
|
11
11
|
**If a report exists**: Read it. The findings and severity counts are deterministic — do not change them. Skip to Step 3.
|
|
@@ -18,7 +18,7 @@ ls .ai/reports/vulnerability-scan-*.md 2>/dev/null | tail -1
|
|
|
18
18
|
npx vyuh-dxkit vulnerabilities . --json 2>/dev/null
|
|
19
19
|
```
|
|
20
20
|
|
|
21
|
-
**If the command succeeds**: Read the saved report from `.
|
|
21
|
+
**If the command succeeds**: Read the saved report from `.dxkit/reports/vulnerability-scan-YYYY-MM-DD.md`. Proceed to Step 3.
|
|
22
22
|
|
|
23
23
|
**If the command fails**: Run your own security analysis — check for hardcoded secrets, eval/exec calls, dependency vulnerabilities (`npm audit`), private keys in git, disabled TLS. Note: "Findings are AI-estimated. Install `@vyuhlabs/dxkit` for deterministic scanning with gitleaks + semgrep."
|
|
24
24
|
|
|
@@ -38,7 +38,7 @@ Add a **Remediation Plan** section:
|
|
|
38
38
|
|
|
39
39
|
**Do not change severity counts or finding details from the deterministic report.**
|
|
40
40
|
|
|
41
|
-
Save to `.
|
|
41
|
+
Save to `.dxkit/reports/vulnerability-scan-YYYY-MM-DD.md`.
|
|
42
42
|
|
|
43
43
|
**IMPORTANT: End the report with this exact footer:**
|
|
44
44
|
```
|
package/dist/agents/extract.d.ts
DELETED
|
@@ -1,25 +0,0 @@
|
|
|
1
|
-
/**
|
|
2
|
-
* Prompt extraction — reads agent templates from src-templates/
|
|
3
|
-
* and transforms them for use with Managed Agents.
|
|
4
|
-
*
|
|
5
|
-
* Source of truth: src-templates/.claude/agents-available/*.md
|
|
6
|
-
* This module READS those files at runtime — never copies or duplicates them.
|
|
7
|
-
*/
|
|
8
|
-
export interface ExtractedAgent {
|
|
9
|
-
name: string;
|
|
10
|
-
description: string;
|
|
11
|
-
systemPrompt: string;
|
|
12
|
-
model: string;
|
|
13
|
-
tools: Array<{
|
|
14
|
-
type: string;
|
|
15
|
-
[key: string]: unknown;
|
|
16
|
-
}>;
|
|
17
|
-
outputSchema: object | undefined;
|
|
18
|
-
}
|
|
19
|
-
/** List all available agent template names. */
|
|
20
|
-
export declare function listAgentTemplates(): string[];
|
|
21
|
-
/** Extract a single agent's prompt from its template file. */
|
|
22
|
-
export declare function extractAgent(name: string, modelOverride?: string): ExtractedAgent;
|
|
23
|
-
/** Extract all available agent prompts. */
|
|
24
|
-
export declare function extractAllAgents(modelOverride?: string): ExtractedAgent[];
|
|
25
|
-
//# sourceMappingURL=extract.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"extract.d.ts","sourceRoot":"","sources":["../../src/agents/extract.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAMH,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAA;KAAE,CAAC,CAAC;IACvD,YAAY,EAAE,MAAM,GAAG,SAAS,CAAC;CAClC;AA4DD,+CAA+C;AAC/C,wBAAgB,kBAAkB,IAAI,MAAM,EAAE,CAO7C;AAED,8DAA8D;AAC9D,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,aAAa,CAAC,EAAE,MAAM,GAAG,cAAc,CA0CjF;AAED,2CAA2C;AAC3C,wBAAgB,gBAAgB,CAAC,aAAa,CAAC,EAAE,MAAM,GAAG,cAAc,EAAE,CAEzE"}
|
package/dist/agents/extract.js
DELETED
|
@@ -1,186 +0,0 @@
|
|
|
1
|
-
"use strict";
|
|
2
|
-
/**
|
|
3
|
-
* Prompt extraction — reads agent templates from src-templates/
|
|
4
|
-
* and transforms them for use with Managed Agents.
|
|
5
|
-
*
|
|
6
|
-
* Source of truth: src-templates/.claude/agents-available/*.md
|
|
7
|
-
* This module READS those files at runtime — never copies or duplicates them.
|
|
8
|
-
*/
|
|
9
|
-
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
|
|
10
|
-
if (k2 === undefined) k2 = k;
|
|
11
|
-
var desc = Object.getOwnPropertyDescriptor(m, k);
|
|
12
|
-
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
|
|
13
|
-
desc = { enumerable: true, get: function() { return m[k]; } };
|
|
14
|
-
}
|
|
15
|
-
Object.defineProperty(o, k2, desc);
|
|
16
|
-
}) : (function(o, m, k, k2) {
|
|
17
|
-
if (k2 === undefined) k2 = k;
|
|
18
|
-
o[k2] = m[k];
|
|
19
|
-
}));
|
|
20
|
-
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
|
|
21
|
-
Object.defineProperty(o, "default", { enumerable: true, value: v });
|
|
22
|
-
}) : function(o, v) {
|
|
23
|
-
o["default"] = v;
|
|
24
|
-
});
|
|
25
|
-
var __importStar = (this && this.__importStar) || (function () {
|
|
26
|
-
var ownKeys = function(o) {
|
|
27
|
-
ownKeys = Object.getOwnPropertyNames || function (o) {
|
|
28
|
-
var ar = [];
|
|
29
|
-
for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
|
|
30
|
-
return ar;
|
|
31
|
-
};
|
|
32
|
-
return ownKeys(o);
|
|
33
|
-
};
|
|
34
|
-
return function (mod) {
|
|
35
|
-
if (mod && mod.__esModule) return mod;
|
|
36
|
-
var result = {};
|
|
37
|
-
if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
|
|
38
|
-
__setModuleDefault(result, mod);
|
|
39
|
-
return result;
|
|
40
|
-
};
|
|
41
|
-
})();
|
|
42
|
-
Object.defineProperty(exports, "__esModule", { value: true });
|
|
43
|
-
exports.listAgentTemplates = listAgentTemplates;
|
|
44
|
-
exports.extractAgent = extractAgent;
|
|
45
|
-
exports.extractAllAgents = extractAllAgents;
|
|
46
|
-
const fs = __importStar(require("fs"));
|
|
47
|
-
const path = __importStar(require("path"));
|
|
48
|
-
const schemas_1 = require("./schemas");
|
|
49
|
-
/**
|
|
50
|
-
* Default model per agent category.
|
|
51
|
-
* Analysis agents use Sonnet (cheaper, good enough).
|
|
52
|
-
* Execution agents use Opus (accuracy matters for code changes).
|
|
53
|
-
*/
|
|
54
|
-
const AGENT_MODELS = {
|
|
55
|
-
// Analysis — Sonnet is cost-effective
|
|
56
|
-
'health-auditor': 'claude-sonnet-4-6',
|
|
57
|
-
'vulnerability-scanner': 'claude-sonnet-4-6',
|
|
58
|
-
'test-gap-finder': 'claude-sonnet-4-6',
|
|
59
|
-
'dev-report': 'claude-sonnet-4-6',
|
|
60
|
-
'dependency-mapper': 'claude-sonnet-4-6',
|
|
61
|
-
'codebase-explorer': 'claude-sonnet-4-6',
|
|
62
|
-
'code-reviewer': 'claude-sonnet-4-6',
|
|
63
|
-
'doc-writer': 'claude-sonnet-4-6',
|
|
64
|
-
'dashboard-builder': 'claude-sonnet-4-6',
|
|
65
|
-
'knowledge-bot': 'claude-sonnet-4-6',
|
|
66
|
-
// Execution — Opus for accuracy
|
|
67
|
-
'feature-planner': 'claude-opus-4-6',
|
|
68
|
-
'feature-builder': 'claude-opus-4-6',
|
|
69
|
-
'plan-executor': 'claude-opus-4-6',
|
|
70
|
-
'strategic-planner': 'claude-opus-4-6',
|
|
71
|
-
'test-writer': 'claude-opus-4-6',
|
|
72
|
-
'debugger': 'claude-opus-4-6',
|
|
73
|
-
'hooks-configurator': 'claude-sonnet-4-6',
|
|
74
|
-
};
|
|
75
|
-
/** Map of Claude Code slash command references to plain-language equivalents. */
|
|
76
|
-
const COMMAND_REPLACEMENTS = {
|
|
77
|
-
'Run /health': 'Analyze the codebase for health metrics',
|
|
78
|
-
'Run /quality': 'Run available linting tools via bash',
|
|
79
|
-
'Run /test': 'Run the test suite via bash',
|
|
80
|
-
'Run /vulnerabilities': 'Scan for security vulnerabilities',
|
|
81
|
-
'/health': 'health analysis',
|
|
82
|
-
'/quality': 'quality check',
|
|
83
|
-
'/test': 'test suite',
|
|
84
|
-
};
|
|
85
|
-
/** Lines to strip from prompts (Claude Code-specific). */
|
|
86
|
-
const STRIP_PATTERNS = [
|
|
87
|
-
/Save .*to \.ai\/reports\/.*/g,
|
|
88
|
-
/Saves? reports? to \.ai\/reports\/.*/g,
|
|
89
|
-
/\.ai\/reports\//g,
|
|
90
|
-
/\.ai\/sessions\//g,
|
|
91
|
-
];
|
|
92
|
-
/**
|
|
93
|
-
* Resolve the templates directory.
|
|
94
|
-
* In development: src-templates/
|
|
95
|
-
* When published: templates/ (copied by build script)
|
|
96
|
-
*/
|
|
97
|
-
function templatesDir() {
|
|
98
|
-
const srcTemplates = path.resolve(__dirname, '..', '..', 'src-templates');
|
|
99
|
-
if (fs.existsSync(srcTemplates))
|
|
100
|
-
return srcTemplates;
|
|
101
|
-
return path.resolve(__dirname, '..', '..', 'templates');
|
|
102
|
-
}
|
|
103
|
-
/** List all available agent template names. */
|
|
104
|
-
function listAgentTemplates() {
|
|
105
|
-
const dir = path.join(templatesDir(), '.claude', 'agents-available');
|
|
106
|
-
if (!fs.existsSync(dir))
|
|
107
|
-
return [];
|
|
108
|
-
return fs
|
|
109
|
-
.readdirSync(dir)
|
|
110
|
-
.filter((f) => f.endsWith('.md'))
|
|
111
|
-
.map((f) => f.replace('.md', ''));
|
|
112
|
-
}
|
|
113
|
-
/** Extract a single agent's prompt from its template file. */
|
|
114
|
-
function extractAgent(name, modelOverride) {
|
|
115
|
-
const filePath = path.join(templatesDir(), '.claude', 'agents-available', `${name}.md`);
|
|
116
|
-
if (!fs.existsSync(filePath)) {
|
|
117
|
-
throw new Error(`Agent template not found: ${name}`);
|
|
118
|
-
}
|
|
119
|
-
const raw = fs.readFileSync(filePath, 'utf-8');
|
|
120
|
-
const { frontmatter, body } = parseFrontmatter(raw);
|
|
121
|
-
// Clean the prompt for Managed Agent use
|
|
122
|
-
let systemPrompt = body;
|
|
123
|
-
// Replace Claude Code command references
|
|
124
|
-
for (const [pattern, replacement] of Object.entries(COMMAND_REPLACEMENTS)) {
|
|
125
|
-
systemPrompt = systemPrompt.replaceAll(pattern, replacement);
|
|
126
|
-
}
|
|
127
|
-
// Strip Claude Code-specific lines
|
|
128
|
-
for (const pattern of STRIP_PATTERNS) {
|
|
129
|
-
systemPrompt = systemPrompt.replace(pattern, '');
|
|
130
|
-
}
|
|
131
|
-
// Determine the agent type for schema lookup
|
|
132
|
-
const agentType = mapNameToSchemaType(name);
|
|
133
|
-
const outputSchema = agentType ? (0, schemas_1.getSchema)(agentType) : undefined;
|
|
134
|
-
// Append JSON output instructions if we have a schema
|
|
135
|
-
if (outputSchema) {
|
|
136
|
-
systemPrompt += `\n\n## Output Format\n\nReturn your analysis as valid JSON. Wrap the JSON in a \`\`\`json code block. The JSON must match this schema:\n\n\`\`\`json\n${JSON.stringify(outputSchema, null, 2)}\n\`\`\`\n`;
|
|
137
|
-
}
|
|
138
|
-
// Clean up excessive blank lines
|
|
139
|
-
systemPrompt = systemPrompt.replace(/\n{3,}/g, '\n\n').trim();
|
|
140
|
-
return {
|
|
141
|
-
name: `dxkit-${name}`,
|
|
142
|
-
description: frontmatter.description || `DXKit ${name} agent`,
|
|
143
|
-
systemPrompt,
|
|
144
|
-
model: modelOverride || AGENT_MODELS[name] || 'claude-sonnet-4-6',
|
|
145
|
-
tools: [{ type: 'agent_toolset_20260401' }],
|
|
146
|
-
outputSchema,
|
|
147
|
-
};
|
|
148
|
-
}
|
|
149
|
-
/** Extract all available agent prompts. */
|
|
150
|
-
function extractAllAgents(modelOverride) {
|
|
151
|
-
return listAgentTemplates().map((name) => extractAgent(name, modelOverride));
|
|
152
|
-
}
|
|
153
|
-
/** Map agent names to schema type keys. */
|
|
154
|
-
function mapNameToSchemaType(name) {
|
|
155
|
-
const map = {
|
|
156
|
-
'health-auditor': 'health',
|
|
157
|
-
'vulnerability-scanner': 'vulnerabilities',
|
|
158
|
-
'feature-planner': 'feature',
|
|
159
|
-
'feature-builder': 'execution',
|
|
160
|
-
'plan-executor': 'execution',
|
|
161
|
-
};
|
|
162
|
-
return map[name];
|
|
163
|
-
}
|
|
164
|
-
/** Parse YAML-ish frontmatter from agent markdown files. */
|
|
165
|
-
function parseFrontmatter(raw) {
|
|
166
|
-
const frontmatter = {};
|
|
167
|
-
if (!raw.startsWith('---')) {
|
|
168
|
-
return { frontmatter, body: raw };
|
|
169
|
-
}
|
|
170
|
-
const endIdx = raw.indexOf('---', 3);
|
|
171
|
-
if (endIdx === -1) {
|
|
172
|
-
return { frontmatter, body: raw };
|
|
173
|
-
}
|
|
174
|
-
const fmBlock = raw.slice(3, endIdx).trim();
|
|
175
|
-
for (const line of fmBlock.split('\n')) {
|
|
176
|
-
const colonIdx = line.indexOf(':');
|
|
177
|
-
if (colonIdx === -1)
|
|
178
|
-
continue;
|
|
179
|
-
const key = line.slice(0, colonIdx).trim();
|
|
180
|
-
const value = line.slice(colonIdx + 1).trim();
|
|
181
|
-
frontmatter[key] = value;
|
|
182
|
-
}
|
|
183
|
-
const body = raw.slice(endIdx + 3).trim();
|
|
184
|
-
return { frontmatter, body };
|
|
185
|
-
}
|
|
186
|
-
//# sourceMappingURL=extract.js.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"extract.js","sourceRoot":"","sources":["../../src/agents/extract.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA0EH,gDAOC;AAGD,oCA0CC;AAGD,4CAEC;AAjID,uCAAyB;AACzB,2CAA6B;AAC7B,uCAAsC;AAWtC;;;;GAIG;AACH,MAAM,YAAY,GAA2B;IAC3C,sCAAsC;IACtC,gBAAgB,EAAE,mBAAmB;IACrC,uBAAuB,EAAE,mBAAmB;IAC5C,iBAAiB,EAAE,mBAAmB;IACtC,YAAY,EAAE,mBAAmB;IACjC,mBAAmB,EAAE,mBAAmB;IACxC,mBAAmB,EAAE,mBAAmB;IACxC,eAAe,EAAE,mBAAmB;IACpC,YAAY,EAAE,mBAAmB;IACjC,mBAAmB,EAAE,mBAAmB;IACxC,eAAe,EAAE,mBAAmB;IAEpC,gCAAgC;IAChC,iBAAiB,EAAE,iBAAiB;IACpC,iBAAiB,EAAE,iBAAiB;IACpC,eAAe,EAAE,iBAAiB;IAClC,mBAAmB,EAAE,iBAAiB;IACtC,aAAa,EAAE,iBAAiB;IAChC,UAAU,EAAE,iBAAiB;IAC7B,oBAAoB,EAAE,mBAAmB;CAC1C,CAAC;AAEF,iFAAiF;AACjF,MAAM,oBAAoB,GAA2B;IACnD,aAAa,EAAE,yCAAyC;IACxD,cAAc,EAAE,sCAAsC;IACtD,WAAW,EAAE,6BAA6B;IAC1C,sBAAsB,EAAE,mCAAmC;IAC3D,SAAS,EAAE,iBAAiB;IAC5B,UAAU,EAAE,eAAe;IAC3B,OAAO,EAAE,YAAY;CACtB,CAAC;AAEF,0DAA0D;AAC1D,MAAM,cAAc,GAAG;IACrB,8BAA8B;IAC9B,uCAAuC;IACvC,kBAAkB;IAClB,mBAAmB;CACpB,CAAC;AAEF;;;;GAIG;AACH,SAAS,YAAY;IACnB,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,eAAe,CAAC,CAAC;IAC1E,IAAI,EAAE,CAAC,UAAU,CAAC,YAAY,CAAC;QAAE,OAAO,YAAY,CAAC;IACrD,OAAO,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,CAAC,CAAC;AAC1D,CAAC;AAED,+CAA+C;AAC/C,SAAgB,kBAAkB;IAChC,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,EAAE,SAAS,EAAE,kBAAkB,CAAC,CAAC;IACrE,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC;QAAE,OAAO,EAAE,CAAC;IACnC,OAAO,EAAE;SACN,WAAW,CAAC,GAAG,CAAC;SAChB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;SAChC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,CAAC;AACtC,CAAC;AAED,8DAA8D;AAC9D,SAAgB,YAAY,CAAC,IAAY,EAAE,aAAsB;IAC/D,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,EAAE,SAAS,EAAE,kBAAkB,EAAE,GAAG,IAAI,KAAK,CAAC,CAAC;IACxF,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,6BAA6B,IAAI,EAAE,CAAC,CAAC;IACvD,CAAC;IAED,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC/C,MAAM,EAAE,WAAW,EAAE,IAAI,EAAE,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC;IAEpD,yCAAyC;IACzC,IAAI,YAAY,GAAG,IAAI,CAAC;IAExB,yCAAyC;IACzC,KAAK,MAAM,CAAC,OAAO,EAAE,WAAW,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,oBAAoB,CAAC,EAAE,CAAC;QAC1E,YAAY,GAAG,YAAY,CAAC,UAAU,CAAC,OAAO,EAAE,WAAW,CAAC,CAAC;IAC/D,CAAC;IAED,mCAAmC;IACnC,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;QACrC,YAAY,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IAED,6CAA6C;IAC7C,MAAM,SAAS,GAAG,mBAAmB,CAAC,IAAI,CAAC,CAAC;IAC5C,MAAM,YAAY,GAAG,SAAS,CAAC,CAAC,CAAC,IAAA,mBAAS,EAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAElE,sDAAsD;IACtD,IAAI,YAAY,EAAE,CAAC;QACjB,YAAY,IAAI,yJAAyJ,IAAI,CAAC,SAAS,CAAC,YAAY,EAAE,IAAI,EAAE,CAAC,CAAC,YAAY,CAAC;IAC7N,CAAC;IAED,iCAAiC;IACjC,YAAY,GAAG,YAAY,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;IAE9D,OAAO;QACL,IAAI,EAAE,SAAS,IAAI,EAAE;QACrB,WAAW,EAAE,WAAW,CAAC,WAAW,IAAI,SAAS,IAAI,QAAQ;QAC7D,YAAY;QACZ,KAAK,EAAE,aAAa,IAAI,YAAY,CAAC,IAAI,CAAC,IAAI,mBAAmB;QACjE,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,wBAAwB,EAAE,CAAC;QAC3C,YAAY;KACb,CAAC;AACJ,CAAC;AAED,2CAA2C;AAC3C,SAAgB,gBAAgB,CAAC,aAAsB;IACrD,OAAO,kBAAkB,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,aAAa,CAAC,CAAC,CAAC;AAC/E,CAAC;AAED,2CAA2C;AAC3C,SAAS,mBAAmB,CAAC,IAAY;IACvC,MAAM,GAAG,GAA2B;QAClC,gBAAgB,EAAE,QAAQ;QAC1B,uBAAuB,EAAE,iBAAiB;QAC1C,iBAAiB,EAAE,SAAS;QAC5B,iBAAiB,EAAE,WAAW;QAC9B,eAAe,EAAE,WAAW;KAC7B,CAAC;IACF,OAAO,GAAG,CAAC,IAAI,CAAC,CAAC;AACnB,CAAC;AAED,4DAA4D;AAC5D,SAAS,gBAAgB,CAAC,GAAW;IAInC,MAAM,WAAW,GAA2B,EAAE,CAAC;IAE/C,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;QAC3B,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC;IACpC,CAAC;IAED,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC;IACrC,IAAI,MAAM,KAAK,CAAC,CAAC,EAAE,CAAC;QAClB,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,GAAG,EAAE,CAAC;IACpC,CAAC;IAED,MAAM,OAAO,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;IAC5C,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACnC,IAAI,QAAQ,KAAK,CAAC,CAAC;YAAE,SAAS;QAC9B,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC,IAAI,EAAE,CAAC;QAC3C,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC9C,WAAW,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;IAC3B,CAAC;IAED,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAC1C,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC;AAC/B,CAAC"}
|
package/dist/agents/schemas.d.ts
DELETED
|
@@ -1,106 +0,0 @@
|
|
|
1
|
-
/**
|
|
2
|
-
* JSON output schemas for Managed Agent responses.
|
|
3
|
-
* Each agent type returns structured JSON matching these schemas.
|
|
4
|
-
*/
|
|
5
|
-
export interface HealthReport {
|
|
6
|
-
repo: string;
|
|
7
|
-
analyzedAt: string;
|
|
8
|
-
summary: {
|
|
9
|
-
overallScore: number;
|
|
10
|
-
maxScore: number;
|
|
11
|
-
grade: 'A' | 'B' | 'C' | 'D' | 'F';
|
|
12
|
-
};
|
|
13
|
-
dimensions: {
|
|
14
|
-
testing: {
|
|
15
|
-
score: number;
|
|
16
|
-
details: string;
|
|
17
|
-
};
|
|
18
|
-
quality: {
|
|
19
|
-
score: number;
|
|
20
|
-
details: string;
|
|
21
|
-
};
|
|
22
|
-
documentation: {
|
|
23
|
-
score: number;
|
|
24
|
-
details: string;
|
|
25
|
-
};
|
|
26
|
-
security: {
|
|
27
|
-
score: number;
|
|
28
|
-
details: string;
|
|
29
|
-
};
|
|
30
|
-
maintainability: {
|
|
31
|
-
score: number;
|
|
32
|
-
details: string;
|
|
33
|
-
};
|
|
34
|
-
developerExperience: {
|
|
35
|
-
score: number;
|
|
36
|
-
details: string;
|
|
37
|
-
};
|
|
38
|
-
};
|
|
39
|
-
recommendations: Array<{
|
|
40
|
-
priority: number;
|
|
41
|
-
title: string;
|
|
42
|
-
description: string;
|
|
43
|
-
affectedFiles: string[];
|
|
44
|
-
}>;
|
|
45
|
-
}
|
|
46
|
-
export interface VulnerabilityReport {
|
|
47
|
-
repo: string;
|
|
48
|
-
analyzedAt: string;
|
|
49
|
-
summary: {
|
|
50
|
-
total: number;
|
|
51
|
-
critical: number;
|
|
52
|
-
high: number;
|
|
53
|
-
medium: number;
|
|
54
|
-
low: number;
|
|
55
|
-
};
|
|
56
|
-
findings: Array<{
|
|
57
|
-
cwe: string;
|
|
58
|
-
severity: 'critical' | 'high' | 'medium' | 'low';
|
|
59
|
-
title: string;
|
|
60
|
-
file: string;
|
|
61
|
-
line: number | null;
|
|
62
|
-
description: string;
|
|
63
|
-
recommendation: string;
|
|
64
|
-
}>;
|
|
65
|
-
}
|
|
66
|
-
export interface FeaturePlan {
|
|
67
|
-
slug: string;
|
|
68
|
-
title: string;
|
|
69
|
-
description: string;
|
|
70
|
-
tasks: Array<{
|
|
71
|
-
sequence: number;
|
|
72
|
-
title: string;
|
|
73
|
-
description: string;
|
|
74
|
-
type: string;
|
|
75
|
-
affectedFiles: string[];
|
|
76
|
-
acceptanceCriteria: string[];
|
|
77
|
-
dependsOn: number[];
|
|
78
|
-
}>;
|
|
79
|
-
risks: Array<{
|
|
80
|
-
description: string;
|
|
81
|
-
severity: string;
|
|
82
|
-
mitigation: string;
|
|
83
|
-
}>;
|
|
84
|
-
}
|
|
85
|
-
export interface ExecutionReport {
|
|
86
|
-
taskKey: string;
|
|
87
|
-
status: 'success' | 'failed' | 'timeout';
|
|
88
|
-
filesChanged: Array<{
|
|
89
|
-
path: string;
|
|
90
|
-
additions: number;
|
|
91
|
-
deletions: number;
|
|
92
|
-
}>;
|
|
93
|
-
changeSummary: string;
|
|
94
|
-
testResults: {
|
|
95
|
-
passed: boolean;
|
|
96
|
-
total: number;
|
|
97
|
-
failed: number;
|
|
98
|
-
output: string;
|
|
99
|
-
};
|
|
100
|
-
retries: number;
|
|
101
|
-
}
|
|
102
|
-
/** JSON schema objects for injection into system prompts. */
|
|
103
|
-
export declare const SCHEMA_JSON: Record<string, object>;
|
|
104
|
-
/** Map agent type names to their JSON schemas. */
|
|
105
|
-
export declare function getSchema(agentType: string): object | undefined;
|
|
106
|
-
//# sourceMappingURL=schemas.d.ts.map
|
|
@@ -1 +0,0 @@
|
|
|
1
|
-
{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../src/agents/schemas.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE;QACP,YAAY,EAAE,MAAM,CAAC;QACrB,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;KACpC,CAAC;IACF,UAAU,EAAE;QACV,OAAO,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;QAC5C,OAAO,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;QAC5C,aAAa,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;QAClD,QAAQ,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;QAC7C,eAAe,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;QACpD,mBAAmB,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,OAAO,EAAE,MAAM,CAAA;SAAE,CAAC;KACzD,CAAC;IACF,eAAe,EAAE,KAAK,CAAC;QACrB,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,WAAW,EAAE,MAAM,CAAC;QACpB,aAAa,EAAE,MAAM,EAAE,CAAC;KACzB,CAAC,CAAC;CACJ;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;IACxF,QAAQ,EAAE,KAAK,CAAC;QACd,GAAG,EAAE,MAAM,CAAC;QACZ,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;QACjD,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;QACpB,WAAW,EAAE,MAAM,CAAC;QACpB,cAAc,EAAE,MAAM,CAAC;KACxB,CAAC,CAAC;CACJ;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,MAAM,CAAC;IACpB,KAAK,EAAE,KAAK,CAAC;QACX,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,WAAW,EAAE,MAAM,CAAC;QACpB,IAAI,EAAE,MAAM,CAAC;QACb,aAAa,EAAE,MAAM,EAAE,CAAC;QACxB,kBAAkB,EAAE,MAAM,EAAE,CAAC;QAC7B,SAAS,EAAE,MAAM,EAAE,CAAC;KACrB,CAAC,CAAC;IACH,KAAK,EAAE,KAAK,CAAC;QAAE,WAAW,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CAC7E;AAED,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,SAAS,GAAG,QAAQ,GAAG,SAAS,CAAC;IACzC,YAAY,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC5E,aAAa,EAAE,MAAM,CAAC;IACtB,WAAW,EAAE;QAAE,MAAM,EAAE,OAAO,CAAC;QAAC,KAAK,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC;IAChF,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,6DAA6D;AAC7D,eAAO,MAAM,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAuE9C,CAAC;AAEF,kDAAkD;AAClD,wBAAgB,SAAS,CAAC,SAAS,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAE/D"}
|