npm - @wistantkode/dotfiles - Versions diffs - 1.4.0 → 1.6.0 - Mend

@wistantkode/dotfiles 1.4.0 → 1.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (15) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -2,6 +2,28 @@
 All notable changes to this project will be documented in this file.
+## [1.6.0] - 2026-04-05 - [Vellum & Void Integrity]
+### Added
+- **Formal Governance**: Integrated professional `CONTRIBUTING.md` and `SECURITY.md` root-level guides, transitioning from internal metaphors to standard engineering contracts.
+- **Community Infrastructure**: Added a dedicated Community section with a high-fidelity contributor avatar grid and refined attribution.
+### Changed
+- **Architectural Mapping**: Migrated the CLI entry point from `bin/` to `cli/` to align with modern package distribution standards.
+- **Technical Sanitization**: Purged all metaphorical terminology (Rodin, Socratic, Audit) from public-facing documentation in favor of professional engineering nomenclature.
+- **Visual Engineering**: Redesigned the `README.md` signature header and updated the technical verification workflow diagram (Mermaid).
+- **Hardening**: Refined the implementation of Zero-Trust principles in the root security policy.
+## [1.5.0] - 2026-04-05 - [Iron Gate & Neon Dash]
+### Added
+- **Protocol Hardening**: Integrated strict "Zero-Initiative" and "Separation of Concerns" rules into `RODIN.md` and `COMMIT.md`. AI is now formally forbidden from touching release artifacts outside of Release mode.
+- **Elite UI Overhaul**: Complete refactor of `github.sh` and `bin/cli.mjs` with premium 256-color aesthetics, box-drawing tables, and animated progress bars.
+- **Enhanced Gatekeeping**: `github.sh` now performs a silent tag-delta audit and forces manual confirmation on production branches.
 ## [1.4.0] - 2026-04-05 - [Community-Grade Governance]
 ### Added

package/CONTRIBUTING.md ADDED Viewed

@@ -0,0 +1,51 @@
+# Contributing to Dotfiles Infrastructure
+This repository is governed by strict **Architectural Validation**. To maintain technical excellence, every contribution must align with our core engineering baseline. Precision and structural integrity are non-negotiable.
+---
+## ⚡ Technical Pillars
+### 1. Atomic Integrity
+We maintain a linear, pure history. PRs must represent a single, isolated logical intention.
+- **Manual Staging**: The use of `git add .` is prohibited. Every staging must be targeted (`git add <file>`).
+- **No Hybrid Commits**: Do not mix refactoring (`refactor`) with functional additions (`feat`) in the same commit.
+- **Separation of Powers**: Release manifests (`package.json`, `CHANGELOG.md`) and Git Tags are strictly reserved for the **Release Protocol**. They must never be part of a standard code commit.
+### 2. Architectural Governance
+Your interaction with the codebase is a technical review, not a service.
+- **Critical Assessment**: Contributors (Human or AI) must provide technical justification for every change. Blind validation is a protocol failure.
+- **Zero-Initiative**: Decision-making is limited to the explicit scope of the requested task. Unauthorized modification of non-cited components is forbidden.
+- **Impact-Based SemVer**: Versioning must be mathematically justified by the code impact analyzed during the release phase.
+### 3. AI-Pairing Standards
+We recognize AI as a technical peer. Contributions co-authored by an agent must:
+- Maintain a direct, technical, and objective tone.
+- Be verified by the **Architect (Human)** at every execution gate.
+- **The Verification Barrier**: The agent must prompt for human confirmation of the versioning logic before final execution.
+---
+## Development Lifecycle
+### Phase 1: Code Implementation
+Follow the **Commit Convention**. Use strict prefixes (`feat`, `fix`, `refactor`, `style`, `ui`, `docs`).
+### Phase 2: Infrastructure Deployment
+Deployment follows the **Architectural Release** flow. Every release must be sealed with a unique identifier: `vX.Y.Z - [MOTTO]`.
+---
+## 👥 Maintenance
+Managed by **Wistant** — Lead Architect.
+---

package/README.md CHANGED Viewed

@@ -1,22 +1,10 @@
-# [@wistantkode/dotfiles](https://www.npmjs.com/package/@wistantkode/dotfiles)
 <div align="center">
-  <table border="0" cellpadding="0" cellspacing="0">
-    <tr>
-      <td align="center" valign="middle">
-        <img src="./assets/wistant-logo.png" alt="Wistant Logo" width="100" />
-      </td>
-      <td align="center" valign="middle" style="padding: 0 40px;">
-        <img src="./assets/memoji.png" alt="Memoji" width="120" />
-      </td>
-      <td align="center" valign="middle">
-        <img src="./assets/dotfiles.png" alt="Dotfiles Logo" width="100" />
-      </td>
-    </tr>
-  </table>
-  <br />
-  <p><b>Precision AI-Pairing Infrastructure & Architectural Protocols</b></p>
+  <img src="./assets/logo.png" alt="Dotfiles Logo" width="180" />
+# Precision Dotfiles Infrastructure
+  [ Automated Orchestration • AI-Driven Logic • Governance Protocols • CLI Distribution ]
   <p>
     <a href="https://www.npmjs.com/package/@wistantkode/dotfiles">
       <img src="https://img.shields.io/npm/v/@wistantkode/dotfiles?style=for-the-badge&color=CC0000&logo=npm" alt="npm version" />
@@ -24,41 +12,40 @@
     <a href="https://pnpm.io">
       <img src="https://img.shields.io/badge/pnpm-4AB6FA?style=for-the-badge&logo=pnpm&logoColor=white" alt="pnpm" />
     </a>
-    <a href="./LICENSE">
-      <img src="https://img.shields.io/badge/License-Apache_2.0-F47023?style=for-the-badge" alt="License" />
+    <a href="https://github.com/wistant/dotfiles/releases">
+      <img src="https://img.shields.io/badge/Release-v1.6.0-blue?style=for-the-badge&logo=github" alt="GitHub release" />
     </a>
   </p>
-</div>
----
+  [![Commit Protocol](https://img.shields.io/badge/Protocol-COMMIT-black?style=flat-square&logo=gitbook&logoColor=white)](./protocols/COMMIT.md)
+  [![Release Protocol](https://img.shields.io/badge/Protocol-RELEASE-black?style=flat-square&logo=gitbook&logoColor=white)](./protocols/RELEASE.md)
+  [![Security Protocol](https://img.shields.io/badge/Protocol-SECURITY-black?style=flat-square&logo=gitbook&logoColor=white)](./protocols/SECURITY.md)
-## Infrastructure Orchestration
-This is more than a dotfiles collection; it is a **System of Governance** for AI-driven development workflows. By treating your environment as **Versioned Infrastructure**, you establish the necessary guardrails to ensure that AI-pair-programming remains precise, atomic, and secure.
-### The System Advantage
-- **AI-Driven Logic**: The system is designed to "pilot" your AI assistant. It provides the architectural context and socratic protocols (`.protocols/`) required for high-end decision making.
-- **Atomic Reliability**: Every modification is routed through a verification cycle that prevents history pollution and mixed intentions.
-- **Universal Staging**: Powered by **pnpm**, **JavaScript (ESM)**, and **Shell orchestration**, the entire ecosystem is instantly deployable via `npx` or `pnpm dlx`.
+</div>
 ---
-## Operational Workflow
+## Architectural Orchestration
+This repository is not just a collection of configs; it is a **Living Governance System**. Every interaction between the Architect and the AI is filtered through a rigorous protocol stack.
 ```mermaid
 graph TD
-    A[Socratic AI-Pairing] -- Atomic Audit --> B[Local Commit Sequence]
-    B -- github.sh Gatekeeper --> C[GitHub Mirror]
-    C -- Automated CI/CD --> D[GitHub Actions]
-    D -- Security & Distribution --> E[NPM Global Registry]
-    F[Remote Deployment] -- pnpm dlx --> E
+    A[Architect Request] --> B{Verification Cycle}
+    B -- Protocol Audit --> C[Technical Logic]
+    C -- Separation Mode --> D[Atomic Implementation]
+    D -- History Guard --> E[Versioned State]
+    E -- Sync Process --> F[NPM Distribution]
+    F -- CLI Engine --> G[System Deployment]
+    style B fill:#f9f,stroke:#333,stroke-width:2px
+    style G fill:#00ff,stroke:#fff,stroke-width:2px,color:#fff
 ```
 ### Core Automation Tools
 1. **Interactive Sync (`github.sh`)**: A specialized gatekeeper that performs a "Tag Delta" audit, ensuring local versions and remote states are synchronized before any projection.
-2. **System Protocols**: A library of hidden guides that force the AI to maintain professional standards (Atomic commits, Socratic releases, Security first).
+2. **System Protocols**: A library of hidden guides that force the AI to maintain professional standards (Atomic commits, Protocol releases, Security first).
 3. **Automated Distribution**: GitHub Actions handle the security auditing and global NPM publication upon Every GitHub Release.
 ---
@@ -72,9 +59,10 @@ pnpm dlx @wistantkode/dotfiles
 ```
 ### Included Assets
 - **Professional `.gitignore`**: PRODUCTION-READY baseline for all modern stacks.
-- **`.gitmessage` Architectural Template**: Standardizes commit intentions across teams.
-- **Governance Library**: Injected `.protocols/` folder for immediate AI alignment.
+- **Security & Integrity**: Injected `.protocols/` folder for immediate AI alignment.
+- **Universal License**: Apache 2.0 baseline for all technical distributions.
 ---
@@ -82,9 +70,31 @@ pnpm dlx @wistantkode/dotfiles
 | Standard | Role | Reference |
 | :--- | :--- | :--- |
-| **Integrity Audit** | High-level engineering and architectural philosophy. | [RODIN.md](./protocols/RODIN.md) |
+| **Audit Philosophy** | Protocol auditing and architectural integrity. | [RODIN.md](./protocols/RODIN.md) |
 | **Commit Protocol** | Strict atomic formatting and zero-entropy staging. | [COMMIT.md](./protocols/COMMIT.md) |
-| **Release Flow** | Socratic versioning and manual sealing logic. | [RELEASE.md](./protocols/RELEASE.md) |
+| **Release Flow** | Technical versioning and manual sealing logic. | [RELEASE.md](./protocols/RELEASE.md) |
+| **Security First** | Vulnerability audits and secret scanning protocols. | [SECURITY.md](./protocols/SECURITY.md) |
+> See [_INDEX.md](./protocols/_INDEX.md) for the full library of orchestration protocols.
+---
+## Contributors
+The project is currently orchestrated by its lead architect. New contributions are welcome to expand the baseline.
+<p align="left">
+  <a href="https://github.com/wistant">
+    <img src="https://github.com/wistant.png?size=100" width="100" height="100" alt="wistant" title="Lead Architect"/>
+  </a>
+</p>
+---
+## Community
+See [CONTRIBUTING.md](CONTRIBUTING.md) for guidelines on how to join the **clawtributors** and submit PRs.
+AI/vibe-coded PRs welcome! 🤖
 ---
@@ -95,5 +105,5 @@ Copyright © 2026 **Wistant**. Distributed under the **Apache License 2.0**.
 ---
 <div align="center">
-  <p>Engineered for professional AI-Pairing by <b>@wistantkode</b></p>
+  <b>Designed for the 0.1% — Engineered by @wistant</b>
 </div>

package/SECURITY.md ADDED Viewed

@@ -0,0 +1,39 @@
+# Security Policy
+This repository follows a **Zero-Trust** security model. We prioritize the integrity of the infrastructure and the protection of sensitive architectural data.
+## Supported Versions
+We only provide security updates for the current major version.
+| Version | Supported          |
+| ------- | ------------------ |
+| v1.x    | :white_check_mark: |
+| < v1.0  | :x:                |
+## Reporting a Vulnerability
+If you discover a security vulnerability, please do NOT open a public issue. We take security seriously and prefer a coordinated disclosure.
+Please report vulnerabilities directly to the maintainer:
+- **Contact**: [@wistant](https://github.com/wistant)
+- **Encryption**: If possible, encrypt your report using a secure channel.
+## Our Security Principles
+### 1. Silent Guardian Audit
+Every interaction with the codebase (commits, refactors, releases) triggers a scan for:
+- Exposed secrets (tokens, API keys, private keys).
+- Context leaks (internal paths, IPs, machine names).
+- Insecure API logic or missing sanitization.
+### 2. Dependency Integrity
+We use strictly audited dependencies.
+- All packages are scanned via `pnpm audit`.
+- Critical CVEs in core libraries results in an immediate suspension of the release flow until resolved.
+### 3. Isolation by Design
+Sensitive configuration files and release manifests are strictly isolated from the standard development cycle to prevent accidental leakage.
+---
+**Architectural Integrity • Security First • @wistant dotfiles baseline**

package/assets/logo.png ADDED Viewed

Binary file

package/cli/cli.mjs ADDED Viewed

@@ -0,0 +1,153 @@
+#!/usr/bin/env node
+/**
+ * ═══════════════════════════════════════════════════════════════════════
+ *   DOTFILES INSTALLER  ·  Elite Orchestration  ·  @wistantkode/dotfiles
+ * ════════════════════════════════════════───────────────────────════════
+ */
+import { copyFile, mkdir, readdir, lstat } from 'node:fs/promises';
+import { join, dirname } from 'node:path';
+import { fileURLToPath } from 'node:url';
+// ── UI Configuration (256-color) ──────────────────────────────────────
+const RESET    = '\x1b[0m';
+const BOLD     = '\x1b[1m';
+const DIM      = '\x1b[2m';
+const CYAN     = '\x1b[38;5;117m';
+const GREEN    = '\x1b[38;5;114m';
+const YELLOW   = '\x1b[38;5;221m';
+const RED      = '\x1b[38;5;203m';
+const GRAY     = '\x1b[38;5;244m';
+const WHITE    = '\x1b[38;5;255m';
+const DGRAY    = '\x1b[38;5;238m';
+const BLUE     = '\x1b[38;5;75m';
+const __dirname = dirname(fileURLToPath(import.meta.url));
+const pkgRoot = join(__dirname, '..');
+// ── Asset Mapping ─────────────────────────────────────────────────────
+const ASSETS = [
+  { src: 'gitignore', dest: '.gitignore', label: 'Ignore patterns' },
+  { src: 'LICENSE', dest: 'LICENSE', label: 'License' },
+  { src: 'protocols', dest: '.protocols', label: 'Governance protocols', isDir: true }
+];
+// ── Layout Components ─────────────────────────────────────────────────
+const _rep = (n, char = ' ') => char.repeat(Math.max(0, n));
+const sep = () => console.log(`${DGRAY}${_rep(64, '─')}${RESET}`);
+const renderLogo = () => {
+  // Ultra-High-Fidelity "Full Block" Style
+  console.log(`\n  ${CYAN}██████╗  ██████╗ ████████╗███████╗██╗██╗     ███████╗███████╗`);
+  console.log(`  ${CYAN}██╔══██╗██╔═══██╗╚══██╔══╝██╔════╝██║██║     ██╔════╝██╔════╝`);
+  console.log(`  ${CYAN}██║  ██║██║   ██║   ██║   █████╗  ██║██║     █████╗  ███████╗`);
+  console.log(`  ${CYAN}██║  ██║██║   ██║   ██║   ██╔══╝  ██║██║     ██╔══╝  ╚════██║`);
+  console.log(`  ${CYAN}██████╔╝╚██████╔╝   ██║   ██║     ██║███████╗███████╗███████║`);
+  console.log(`  ${CYAN}╚═════╝  ╚═════╝    ╚═╝   ╚═╝     ╚═╝╚══════╝╚══════╝╚══════╝${RESET}`);
+  console.log(`\n  ${GRAY}${BOLD}[ PRECISION AI ORCHESTRATION ]${RESET}\n`);
+};
+const progress = async (label) => {
+  process.stdout.write(`  ${GRAY}[${RESET}`);
+  for (let i = 0; i < 28; i++) {
+    process.stdout.write(`${CYAN}█${RESET}`);
+    await new Promise(r => setTimeout(r, 10));
+  }
+  process.stdout.write(`${GRAY}]${RESET}  ${GREEN}${label}${RESET}\n`);
+};
+const renderSignature = () => {
+  const width = 44;
+  const stripAnsi = (str) => str.replace(/\x1b\[[0-9;]*m/g, '');
+  const pad = (text, len) => text + _rep(len - stripAnsi(text).length);
+  console.log(`\n  ${WHITE}${BOLD}SOURCE & AUTHORSHIP${RESET}`);
+  console.log(`  ${DGRAY}┌${_rep(width, '──')}┐${RESET}`);
+  const label = (txt, col) => `${col}${BOLD}${txt}${RESET}`;
+  const info = (txt) => `${GRAY}${txt}${RESET}`;
+  console.log(`  ${DGRAY}│${RESET}  ${pad(`${label('REPOSITORY', BLUE)}  ${BOLD}https://github.com/wistant/dotfiles${RESET}`, width + 17)} ${DGRAY}│${RESET}`);
+  console.log(`  ${DGRAY}├${_rep(width, '──')}┤${RESET}`);
+  console.log(`  ${DGRAY}│${RESET}  ${pad(`${label('ARCHITECT ', WHITE)}  ${BOLD}Wistant${RESET} ${GRAY}(DevOps Architect)${RESET}`, width + 28)} ${DGRAY}│${RESET}`);
+  console.log(`  ${DGRAY}│${RESET}  ${pad(`${label('GITHUB    ', BLUE)}  ${GRAY}https://github.com/wistant${RESET}`, width + 26)} ${DGRAY}│${RESET}`);
+  console.log(`  ${DGRAY}│${RESET}  ${pad(`${label('X         ', CYAN)}  ${GRAY}https://x.com/wistant${RESET}`, width + 26)} ${DGRAY}│${RESET}`);
+  console.log(`  ${DGRAY}│${RESET}  ${pad(`${label('LINKEDIN  ', BLUE)}  ${GRAY}https://linkedin.com/in/wistant${RESET}`, width + 26)} ${DGRAY}│${RESET}`);
+  console.log(`  ${DGRAY}└${_rep(width, '──')}┘${RESET}\n`);
+};
+// ── Core Engine ───────────────────────────────────────────────────────
+async function copyRecursive(src, dest, onFile) {
+  const stat = await lstat(src);
+  if (stat.isDirectory()) {
+    await mkdir(dest, { recursive: true });
+    const children = await readdir(src);
+    for (const child of children) {
+      await copyRecursive(join(src, child), join(dest, child), onFile);
+    }
+  } else {
+    await copyFile(src, dest);
+    if (onFile) onFile(dest);
+  }
+}
+async function run() {
+  process.stdout.write('\x1Bc'); // Clear screen
+  renderLogo();
+  sep();
+  const targetDir = process.cwd();
+  console.log(`\n  ${GRAY}System Target:${RESET}  ${WHITE}${BOLD}${targetDir}${RESET}\n`);
+  sep();
+  console.log(`\n  ${BOLD}▶  Initiating deployment sequence...${RESET}\n`);
+  await progress('Validating package integrity');
+  const deployedFiles = [];
+  for (const asset of ASSETS) {
+    try {
+      const srcPath = join(pkgRoot, asset.src);
+      const destPath = join(targetDir, asset.dest);
+      if (asset.isDir) {
+        await copyRecursive(srcPath, destPath, (f) => {
+           deployedFiles.push(f.replace(targetDir, ''));
+        });
+      } else {
+        await copyFile(srcPath, destPath);
+        deployedFiles.push('/' + asset.dest);
+      }
+    } catch (err) {
+      console.error(`      ${RED}✘${RESET}  Failed to deploy ${asset.src}: ${err.message}`);
+    }
+  }
+  await progress('Finalizing system orchestration');
+  // Detailed Audit Logs
+  console.log(`\n  ${BOLD}DEPLOYMENT AUDIT${RESET}`);
+  console.log(`  ${DGRAY}${_rep(45, '─')}${RESET}`);
+  for (const file of deployedFiles.sort()) {
+    console.log(`    ${GREEN}✔${RESET}  ${GRAY}${file}${RESET}`);
+  }
+  console.log(`  ${DGRAY}${_rep(45, '─')}${RESET}`);
+  console.log(`\n  ${GREEN}${BOLD}✔  INFRASTRUCTURE DEPLOYED SUCCESSFULLY.${RESET}`);
+  console.log(`  ${GRAY}Your environment is now optimized for professional AI pairing.${RESET}`);
+  renderSignature();
+  console.log(`  ${DIM}Thank you for choosing high-end architectural standards.${RESET}\n`);
+  sep();
+  console.log('');
+}
+run().catch(err => {
+  console.error(`\n  ${RED}${BOLD}✗  FATAL ERROR${RESET}  ${err.message}\n`);
+  process.exit(1);
+});

package/github.sh CHANGED Viewed

@@ -1,107 +1,206 @@
 #!/bin/bash
-# --- GITHUB SYNC (SYSTEM PROTOCOL) ---
-# Colors & Style
-GRAY='\033[90m'
-BOLD='\033[1m'
-RED='\033[31m'
-GREEN='\033[32m'
-YELLOW='\033[33m'
-CYAN='\033[36m'
-RESET='\033[0m'
-# Utilities
-print_banner() {
-    echo -e "${GRAY}--------------------------------------------------${RESET}"
-    echo -e "${BOLD}  INTEGRITY AUDIT : GITHUB SYNC${RESET}"
-    echo -e "${GRAY}--------------------------------------------------${RESET}"
+# ═══════════════════════════════════════════════════════════════════════
+#   GITHUB SYNC  ·  Integrity Gate  ·  @wistantkode/dotfiles
+# ═══════════════════════════════════════════════════════════════════════
+# ── Color palette (256-color) ─────────────────────────────────────────
+RESET='\033[0m';    BOLD='\033[1m';     DIM='\033[2m'
+RED='\033[38;5;203m';   GREEN='\033[38;5;114m';  YELLOW='\033[38;5;221m'
+CYAN='\033[38;5;117m';  BLUE='\033[38;5;75m';    GRAY='\033[38;5;244m'
+DGRAY='\033[38;5;238m'; WHITE='\033[38;5;255m';  ORANGE='\033[38;5;215m'
+# ── Table dimensions ──────────────────────────────────────────────────
+HASH_W=8    # hash column display width
+MSG_W=52    # message column display width
+# ── Layout helpers ────────────────────────────────────────────────────
+_rep() { printf "%${1}s" | tr ' ' "${2}"; }
+_sep()  { echo -e "${DGRAY}$(_rep 68 '─')${RESET}"; }
+_sep2() { echo -e "${DGRAY}  $(_rep 64 '·')${RESET}"; }
+_header() {
+    echo -e "${DGRAY}  ╭$(_rep $((HASH_W+2)) '─')┬$(_rep $((MSG_W+2)) '─')╮${RESET}"
+    printf "${DGRAY}  │${RESET}  ${BOLD}${GRAY}%-${HASH_W}s${RESET}  ${DGRAY}│${RESET}  ${BOLD}${GRAY}%-${MSG_W}s${RESET}  ${DGRAY}│${RESET}\n" "HASH" "COMMIT"
+    echo -e "${DGRAY}  ├$(_rep $((HASH_W+2)) '─')┼$(_rep $((MSG_W+2)) '─')┤${RESET}"
 }
+_row() {
+    local hash msg
+    hash=$(printf "%-${HASH_W}s" "${1:0:$HASH_W}")
+    local raw="$2"
+    [ ${#raw} -gt $((MSG_W-1)) ] && raw="${raw:0:$((MSG_W-3))}..."
+    msg=$(printf "%-${MSG_W}s" "$raw")
+    printf "${DGRAY}  │${RESET}  ${CYAN}%s${RESET}  ${DGRAY}│${RESET}  %s  ${DGRAY}│${RESET}\n" "$hash" "$msg"
+}
+_footer() {
+    echo -e "${DGRAY}  ╰$(_rep $((HASH_W+2)) '─')┴$(_rep $((MSG_W+2)) '─')╯${RESET}"
+}
+# ── Progress bar animation ────────────────────────────────────────────
+_progress() {
+    local label="$1"
+    local total=28
+    printf "  ${GRAY}[${RESET}"
+    for ((i=1; i<=total; i++)); do
+        printf "${CYAN}█${RESET}"
+        sleep 0.018
+    done
+    printf "${GRAY}]${RESET}  ${GREEN}${label}${RESET}\n"
+}
+# ── Core utilities ────────────────────────────────────────────────────
 abort() {
-    echo -e "\n${RED}${BOLD}[ABORT]${RESET} $1"
-    echo -e "${GRAY}Infrastructure integrity takes precedence over speed.${RESET}"
-    echo -e "${GRAY}--------------------------------------------------${RESET}"
+    echo ""
+    _sep
+    echo -e "  ${RED}${BOLD}✗  ABORTED${RESET}  ${GRAY}$1${RESET}"
+    _sep
+    echo ""
     exit 1
 }
-ask_confirm() {
-    echo -ne "${YELLOW}${BOLD}[CONFIRM]${RESET} $1 [y/N] "
-    read -r response
-    if [[ ! "$response" =~ ^([yY][eE][sS]|[yY])$ ]]; then
-        return 1
-    fi
-    return 0
+ask() {
+    echo -ne "\n  ${YELLOW}${BOLD}?${RESET}  $1 ${GRAY}[y/N]${RESET}  "
+    read -r _r
+    [[ "$_r" =~ ^([yY][eE][sS]|[yY])$ ]]
 }
-# --- AUDIT START ---
-print_banner
+# ── Phase 0 · Silent data collection ─────────────────────────────────
+CURRENT_BRANCH=$(git rev-parse --abbrev-ref HEAD 2>/dev/null) \
+    || { echo -e "\n  ${RED}✗${RESET}  Not a git repository."; exit 1; }
+REMOTE="origin/${CURRENT_BRANCH}"
+COMMITS_RAW=$(git log "${REMOTE}..HEAD" --oneline 2>/dev/null)
+COMMIT_COUNT=0
+[ -n "$COMMITS_RAW" ] && COMMIT_COUNT=$(echo "$COMMITS_RAW" | wc -l | tr -d ' ')
+LOCAL_ONLY_TAGS=$(
+    git log --tags --simplify-by-decoration --pretty="format:%D" 2>/dev/null \
+    | grep "tag: " \
+    | sed 's/.*tag: \([^,)]*\).*/\1/' \
+    | while read -r t; do
+        git ls-remote --tags origin 2>/dev/null | grep -q "refs/tags/$t" || echo "$t"
+    done | sort -u
+)
+TAG_COUNT=0
+[ -n "$LOCAL_ONLY_TAGS" ] && TAG_COUNT=$(echo "$LOCAL_ONLY_TAGS" | grep -c .)
+PUSH_TAGS=""
+[ "$TAG_COUNT" -gt 0 ] && PUSH_TAGS="--follow-tags"
-# 1. Working Tree Audit
-if ! git diff-index --quiet HEAD --; then
-    echo -e "${YELLOW}[WARNING]${RESET} Uncommitted changes detected in the working tree."
-    git status -s
-    abort "History is not clean. Remote projection requires a pure commit history."
+case "$CURRENT_BRANCH" in
+    main|master) BLABEL="${RED}${BOLD}⬡  PRODUCTION${RESET}" ;;
+    dev|develop) BLABEL="${YELLOW}◈  INTEGRATION${RESET}" ;;
+    feat/*)      BLABEL="${GREEN}◈  FEATURE${RESET}" ;;
+    fix/*)       BLABEL="${CYAN}◈  BUGFIX${RESET}" ;;
+    refactor/*)  BLABEL="${BLUE}◈  REFACTOR${RESET}" ;;
+    *)           BLABEL="${GRAY}◈  BRANCH${RESET}" ;;
+esac
+# ── Phase 1 · Working tree check ─────────────────────────────────────
+clear
+echo ""
+echo -e "  ${WHITE}${BOLD}◆  GITHUB SYNC${RESET}  ${DGRAY}·  Integrity Gate  ·  @wistantkode/dotfiles${RESET}"
+echo ""
+_sep
+if ! git diff-index --quiet HEAD -- 2>/dev/null; then
+    echo ""
+    echo -e "  ${YELLOW}${BOLD}⚠  DIRTY WORKING TREE${RESET}"
+    echo ""
+    git status -s | sed 's/^/     /'
+    abort "Stage and commit all changes before syncing."
 fi
-# 2. Branch Detection
-CURRENT_BRANCH=$(git rev-parse --abbrev-ref HEAD)
-echo -e "${BOLD}[CONTEXT]${RESET} Current branch: ${CYAN}${BOLD}${CURRENT_BRANCH}${RESET}"
-# 3. Tag Delta Audit (Local vs Remote)
-echo -e "${GRAY}[AUDIT]   Scanning tag versions...${RESET}"
-LOCAL_ONLY_TAGS=$(git log --tags --simplify-by-decoration --pretty="format:%D" | grep "tag: " | sed 's/.*tag: \([^,)]*\).*/\1/' | while read tag; do
-    if ! git ls-remote --tags origin 2>/dev/null | grep -q "refs/tags/$tag"; then
-        echo $tag
-    fi
-done | sort -u)
-if [ -n "$LOCAL_ONLY_TAGS" ]; then
-    echo -e "${YELLOW}${BOLD}[DELTA]${RESET} Local tags not yet sealed on remote:"
-    for tag in $LOCAL_ONLY_TAGS; do
-        echo -e "  - ${BOLD}$tag${RESET}"
-    done
+# ── Phase 2 · Summary panel ───────────────────────────────────────────
+echo ""
+printf "  ${GRAY}%-14s${RESET}  ${CYAN}${BOLD}%s${RESET}  %b\n"    "Branch"   "$CURRENT_BRANCH" "$BLABEL"
+printf "  ${GRAY}%-14s${RESET}  ${BOLD}%s${RESET} commit(s) ahead of remote\n" "Ahead"  "$COMMIT_COUNT"
+printf "  ${GRAY}%-14s${RESET}  ${BOLD}%s${RESET} to publish\n"                "Tags"   "$TAG_COUNT"
+echo ""
+_sep
-    if ask_confirm "Propagate these tags with this push?"; then
-        PUSH_TAGS="--tags"
-    fi
-else
-    echo -e "${GRAY}[OK]      No unpublished local tags detected.${RESET}"
+# Commits table
+if [ "$COMMIT_COUNT" -gt 0 ]; then
+    echo ""
+    _header
+    while IFS= read -r line; do
+        h=$(echo "$line" | awk '{print $1}')
+        m=$(echo "$line" | cut -d' ' -f2-)
+        _row "$h" "$m"
+    done <<< "$COMMITS_RAW"
+    _footer
 fi
-# 4. Branch Gate Logic
+# Tags list
+if [ "$TAG_COUNT" -gt 0 ]; then
+    echo ""
+    echo -e "  ${GRAY}Unpublished tags:${RESET}"
+    while IFS= read -r tag; do
+        echo -e "    ${GREEN}+${RESET}  ${BOLD}$tag${RESET}"
+    done <<< "$LOCAL_ONLY_TAGS"
+fi
+echo ""
+_sep
+# ── Phase 3 · Branch gate ─────────────────────────────────────────────
+echo ""
 case "$CURRENT_BRANCH" in
-    "main" | "master")
-        echo -e "${RED}${BOLD}[GATE]${RESET} Production branch. Full integrity required."
-        if ! ask_confirm "Seal these changes to the public repository?"; then
-            abort "Push cancelled by operator."
-        fi
-        ;;
-    "dev" | "develop")
-        echo -e "${YELLOW}[GATE]${RESET} Integration branch."
-        if ! ask_confirm "Push to integration upstream?"; then
-            abort "Push cancelled by operator."
-        fi
+    main|master)
+        echo -e "  ${RED}${BOLD}⚠  PRODUCTION BRANCH${RESET}"
+        echo -e "  ${DIM}Every push to this branch triggers the public release pipeline.${RESET}"
+        ask "You are on ${BOLD}${CURRENT_BRANCH}${RESET}. Proceed to final review?" \
+            || abort "Cancelled by operator."
         ;;
-    feat/* | fix/* | refactor/*)
-        echo -e "${GREEN}[GATE]${RESET} Feature branch."
-        if ! ask_confirm "Push to remote?"; then
-            abort "Push cancelled by operator."
-        fi
+    dev|develop)
+        echo -e "  ${YELLOW}${BOLD}◈  INTEGRATION BRANCH${RESET}"
+        ask "Push to ${BOLD}${REMOTE}${RESET}?" || abort "Cancelled by operator."
         ;;
     *)
-        if ! ask_confirm "Push current branch to upstream?"; then
-            abort "Push cancelled by operator."
-        fi
+        ask "Push ${BOLD}${CURRENT_BRANCH}${RESET} to remote?" || abort "Cancelled by operator."
         ;;
 esac
-# 5. Remote Projection
-echo -e "\n${BOLD}[PUSH]${RESET} Initiating remote sync..."
-if git push $PUSH_TAGS; then
-    echo -e "\n${GREEN}${BOLD}[OK]${RESET} Infrastructure successfully synchronized."
+# ── Phase 4 · Final confirmation ──────────────────────────────────────
+echo ""
+_sep
+echo ""
+SUMMARY="${BOLD}${COMMIT_COUNT}${RESET} commit(s)"
+[ "$TAG_COUNT" -gt 0 ] && SUMMARY+="  ${DGRAY}+${RESET}  ${BOLD}${TAG_COUNT}${RESET} tag(s)"
+printf "  ${GRAY}%-14s${RESET}  %b\n" "Will push"  "$SUMMARY"
+printf "  ${GRAY}%-14s${RESET}  ${BOLD}%s${RESET}\n" "Target" "$REMOTE"
+echo ""
+echo -e "  ${DIM}SSH key passphrase will be required by git if not cached.${RESET}"
+ask "${BOLD}Confirm push?${RESET}  ${GRAY}This cannot be undone.${RESET}" \
+    || abort "Final gate: push cancelled."
+# ── Phase 5 · Remote projection ───────────────────────────────────────
+echo ""
+_sep
+echo ""
+_progress "Initializing..."
+_progress "Verifying integrity state..."
+_progress "Ready — handing off to git."
+echo ""
+echo -e "  ${DGRAY}$(_rep 64 '─')${RESET}"
+echo -e "  ${BOLD}▶  git push${RESET}  ${DGRAY}(passphrase prompt appears below if required)${RESET}"
+echo -e "  ${DGRAY}$(_rep 64 '─')${RESET}"
+echo ""
+if git push --quiet $PUSH_TAGS; then
+    echo ""
+    _sep
+    echo ""
+    echo -e "  ${GREEN}${BOLD}✔  SUCCESS${RESET}  Infrastructure synchronized with ${BOLD}${REMOTE}${RESET}."
+    [ "$TAG_COUNT" -gt 0 ] && \
+        echo -e "  ${GRAY}Tags published. GitHub Actions pipeline may now be triggered.${RESET}"
+    echo ""
+    _sep
 else
-    abort "Remote push failed. Check your credentials or network connectivity."
+    echo ""
+    abort "Git push failed. Check your SSH key or network connectivity."
 fi
-echo -e "${GRAY}--------------------------------------------------${RESET}"
+echo ""

package/package.json CHANGED Viewed

@@ -1,11 +1,11 @@
 {
   "name": "@wistantkode/dotfiles",
-  "version": "1.4.0",
+  "version": "1.6.0",
   "description": "High-End Linux Infrastructure & AI-Driven Orchestration Protocols",
   "main": "index.js",
   "type": "module",
   "bin": {
-    "dotfiles": "bin/cli.mjs"
+    "dotfiles": "cli/cli.mjs"
   },
   "repository": {
     "type": "git",

package/protocols/ASSIST.md CHANGED Viewed

@@ -10,8 +10,9 @@
 You are a **Technical Assistant & Engineering Partner**. You facilitate excellence and ensure architectural integrity.
-- **Integrity Guard** : If a suboptimal solution is proposed, challenge it (`RODIN.md`).
-- **Architect** : When producing code or configuration, enforce professional standards.
+- **Communication First** : Tu réponds toujours aux questions posées **AVANT** de commencer à coder. La communication prime sur l'exécution.
+- **Integrity Guard** : Si une solution sous-optimale est proposée, challenge-la (`RODIN.md`).
+- **Architect** : Quand tu produis du code ou de la config, applique les standards professionnels sans prendre d'initiatives non validées sur le périmètre.
 - **Context-Aware** : Adapt your methodology to the project type (library, monorepo, CLI, web app).
 ---

package/protocols/COMMIT.md CHANGED Viewed

@@ -6,14 +6,18 @@
 ---
-## Regle d'Or : Zero "git add ."
+### Règle d'Or 1 : Zéro "git add ."
 Il est **STRICTEMENT INTERDIT** d'utiliser `git add .` ou `git commit -a`.
-Chaque modification doit etre atomique. On ne melange pas la logique métier (`core/`) et le style (`ui/`).
+Chaque modification doit être atomique. On ne mélange pas la logique métier (`core/`) et le style (`ui/`).
-> [!CAUTION]
-> **Pas de Push Automatique** : L'IA ne doit jamais exécuter `git push` ou `./github.sh`.
-> Après le commit, l'IA s'arrête. Le USER valide et pousse manuellement.
+### Règle d'Or 2 : Isolation des Commits (STRICTE)
+L'IA ne doit **JAMAIS** modifier ou inclure les fichiers de release (`package.json`, `CHANGELOG.md`, `pom.xml`, etc.) ni manipuler les `git tags` lors d'une phase de commit classique. Toute interaction avec le versioning est réservée **EXCLUSIVEMENT** au protocole `RELEASE.md`.
+### Règle d'Or 3 : Zéro Initiative de Versioning
+Si l'utilisateur demande un commit, fais uniquement le commit du code demandé. Ne propose pas de bump de version ou de mise à jour du changelog de ton propre chef. Ne prends aucune décision sur le périmètre de la tâche sans validation préalable.
 ---

package/protocols/RODIN.md CHANGED Viewed

@@ -24,11 +24,11 @@ You operate in English. You address the operator directly and professionally.
 - If you disagree, say so directly: *"No. This is structurally inconsistent, and here is why."*
 - **You are an engineering sparring partner.**
-### Socratic Audit (Engagement)
+### Zéro-Initiative & Anti-Dérapage (CRITIQUE)
-- Before any mutation (Phase 4 of the protocols), you must go through interrogation (Phase 2).
-- Reformulate the request to verify its coherence.
-- Surface the flaws before they pollute the Git history.
+- **Interdiction de Décision Autonome** : Tu n'as pas le droit de modifier des fichiers ou des composants qui n'ont pas été explicitement cités dans la demande de l'utilisateur. Toute modification "pour aider" ou "pour faire propre" est une violation de protocole.
+- **Réponse avant Action** : Si l'utilisateur te pose une question, tu y réponds **AVANT** de lancer la moindre commande de code ou de modification de fichier. La communication prime sur l'exécution.
+- **Séparation des Pouvoirs** : Ne confonds jamais un commit de code avec une release. Durant un commit, les fichiers `package.json`, `CHANGELOG.md` ou les Git Tags sont **sanctuarisés**. Seule la phase de Release (RELEASE.md) peut y toucher.
 ## Quality Standards

package/assets/dotfiles.png DELETED Viewed

Binary file

package/assets/memoji.png DELETED Viewed

Binary file

package/assets/wistant-logo.png DELETED Viewed

Binary file

package/bin/cli.mjs DELETED Viewed

@@ -1,66 +0,0 @@
-#!/usr/bin/env node
-import { copyFile, mkdir, readdir, lstat } from 'node:fs/promises';
-import { join, dirname, basename } from 'node:path';
-import { fileURLToPath } from 'node:url';
-const __dirname = dirname(fileURLToPath(import.meta.url));
-const pkgRoot = join(__dirname, '..');
-const FILES_TO_INSTALL = [
-  'gitignore',
-  'gitmessage',
-  'myKDEshorcuts.kksrc'
-];
-const DIRECTORIES_TO_INSTALL = [
-  'protocols'
-];
-async function copyRecursive(src, dest) {
-  const stat = await lstat(src);
-  if (stat.isDirectory()) {
-    await mkdir(dest, { recursive: true });
-    const children = await readdir(src);
-    for (const child of children) {
-      await copyRecursive(join(src, child), join(dest, child));
-    }
-  } else {
-    await copyFile(src, dest);
-  }
-}
-async function run() {
-  console.log('\x1b[36m%s\x1b[0m', '--- Dotfiles Installer ---');
-  const targetDir = process.cwd();
-  console.log(`Installing dotfiles to: ${targetDir}`);
-  for (const file of FILES_TO_INSTALL) {
-    try {
-      const destName = file === 'gitignore' ? '.gitignore' : file;
-      await copyFile(join(pkgRoot, file), join(targetDir, destName));
-      console.log(`  [OK] ${destName}`);
-    } catch (err) {
-      console.error(`  [ERROR] Failed to copy ${file}: ${err.message}`);
-    }
-  }
-  for (const dir of DIRECTORIES_TO_INSTALL) {
-    try {
-      const destName = dir === 'protocols' ? '.protocols' : dir;
-      await copyRecursive(join(pkgRoot, dir), join(targetDir, destName));
-      console.log(`  [OK] ${destName}/`);
-    } catch (err) {
-      console.error(`  [ERROR] Failed to copy ${dir}: ${err.message}`);
-    }
-  }
-  console.log('\x1b[32m%s\x1b[0m', '\nDone! Dotfiles and protocols added.');
-  console.log('Installation complete.');
-}
-run().catch(err => {
-  console.error('Fatal error:', err);
-  process.exit(1);
-});