@yasserkhanorg/impact-gate 2.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/LICENSE +168 -0
- package/README.md +520 -0
- package/dist/adapters/cypress.d.ts +10 -0
- package/dist/adapters/cypress.d.ts.map +1 -0
- package/dist/adapters/cypress.js +86 -0
- package/dist/adapters/framework_adapter.d.ts +41 -0
- package/dist/adapters/framework_adapter.d.ts.map +1 -0
- package/dist/adapters/framework_adapter.js +152 -0
- package/dist/adapters/playwright.d.ts +10 -0
- package/dist/adapters/playwright.d.ts.map +1 -0
- package/dist/adapters/playwright.js +86 -0
- package/dist/adapters/pytest.d.ts +10 -0
- package/dist/adapters/pytest.d.ts.map +1 -0
- package/dist/adapters/pytest.js +96 -0
- package/dist/adapters/supertest.d.ts +12 -0
- package/dist/adapters/supertest.d.ts.map +1 -0
- package/dist/adapters/supertest.js +85 -0
- package/dist/agent/api_catalog.d.ts +11 -0
- package/dist/agent/api_catalog.d.ts.map +1 -0
- package/dist/agent/api_catalog.js +210 -0
- package/dist/agent/config.d.ts +193 -0
- package/dist/agent/config.d.ts.map +1 -0
- package/dist/agent/config.js +875 -0
- package/dist/agent/feedback.d.ts +91 -0
- package/dist/agent/feedback.d.ts.map +1 -0
- package/dist/agent/feedback.js +323 -0
- package/dist/agent/git.d.ts +19 -0
- package/dist/agent/git.d.ts.map +1 -0
- package/dist/agent/git.js +257 -0
- package/dist/agent/handoff.d.ts +22 -0
- package/dist/agent/handoff.d.ts.map +1 -0
- package/dist/agent/handoff.js +180 -0
- package/dist/agent/llm_agents_flow.d.ts +15 -0
- package/dist/agent/llm_agents_flow.d.ts.map +1 -0
- package/dist/agent/llm_agents_flow.js +434 -0
- package/dist/agent/native_flow.d.ts +6 -0
- package/dist/agent/native_flow.d.ts.map +1 -0
- package/dist/agent/native_flow.js +179 -0
- package/dist/agent/pipeline.d.ts +7 -0
- package/dist/agent/pipeline.d.ts.map +1 -0
- package/dist/agent/pipeline.js +260 -0
- package/dist/agent/pipeline_types.d.ts +54 -0
- package/dist/agent/pipeline_types.d.ts.map +1 -0
- package/dist/agent/pipeline_types.js +4 -0
- package/dist/agent/pipeline_utils.d.ts +12 -0
- package/dist/agent/pipeline_utils.d.ts.map +1 -0
- package/dist/agent/pipeline_utils.js +156 -0
- package/dist/agent/plan.d.ts +170 -0
- package/dist/agent/plan.d.ts.map +1 -0
- package/dist/agent/plan.js +86 -0
- package/dist/agent/playwright_report.d.ts +8 -0
- package/dist/agent/playwright_report.d.ts.map +1 -0
- package/dist/agent/playwright_report.js +126 -0
- package/dist/agent/process_runner.d.ts +10 -0
- package/dist/agent/process_runner.d.ts.map +1 -0
- package/dist/agent/process_runner.js +92 -0
- package/dist/agent/spec_generator.d.ts +5 -0
- package/dist/agent/spec_generator.d.ts.map +1 -0
- package/dist/agent/spec_generator.js +253 -0
- package/dist/agent/test_path.d.ts +2 -0
- package/dist/agent/test_path.d.ts.map +1 -0
- package/dist/agent/test_path.js +23 -0
- package/dist/agent/traceability_capture.d.ts +18 -0
- package/dist/agent/traceability_capture.d.ts.map +1 -0
- package/dist/agent/traceability_capture.js +313 -0
- package/dist/agent/traceability_ingest.d.ts +21 -0
- package/dist/agent/traceability_ingest.d.ts.map +1 -0
- package/dist/agent/traceability_ingest.js +237 -0
- package/dist/agent/types.d.ts +42 -0
- package/dist/agent/types.d.ts.map +1 -0
- package/dist/agent/types.js +4 -0
- package/dist/agent/utils.d.ts +13 -0
- package/dist/agent/utils.d.ts.map +1 -0
- package/dist/agent/utils.js +152 -0
- package/dist/agent/validation_runner.d.ts +5 -0
- package/dist/agent/validation_runner.d.ts.map +1 -0
- package/dist/agent/validation_runner.js +77 -0
- package/dist/agentic/fix_loop.d.ts +26 -0
- package/dist/agentic/fix_loop.d.ts.map +1 -0
- package/dist/agentic/fix_loop.js +96 -0
- package/dist/agentic/playwright_runner.d.ts +43 -0
- package/dist/agentic/playwright_runner.d.ts.map +1 -0
- package/dist/agentic/playwright_runner.js +165 -0
- package/dist/agentic/runner.d.ts +27 -0
- package/dist/agentic/runner.d.ts.map +1 -0
- package/dist/agentic/runner.js +210 -0
- package/dist/agentic/types.d.ts +62 -0
- package/dist/agentic/types.d.ts.map +1 -0
- package/dist/agentic/types.js +4 -0
- package/dist/agents/coverage-evaluator.d.ts +8 -0
- package/dist/agents/coverage-evaluator.d.ts.map +1 -0
- package/dist/agents/coverage-evaluator.js +41 -0
- package/dist/agents/cross-impact.d.ts +13 -0
- package/dist/agents/cross-impact.d.ts.map +1 -0
- package/dist/agents/cross-impact.js +140 -0
- package/dist/agents/executor.d.ts +8 -0
- package/dist/agents/executor.d.ts.map +1 -0
- package/dist/agents/executor.js +75 -0
- package/dist/agents/explorer.d.ts +12 -0
- package/dist/agents/explorer.d.ts.map +1 -0
- package/dist/agents/explorer.js +43 -0
- package/dist/agents/generator.d.ts +8 -0
- package/dist/agents/generator.d.ts.map +1 -0
- package/dist/agents/generator.js +77 -0
- package/dist/agents/healer.d.ts +8 -0
- package/dist/agents/healer.d.ts.map +1 -0
- package/dist/agents/healer.js +31 -0
- package/dist/agents/impact-analyst.d.ts +8 -0
- package/dist/agents/impact-analyst.d.ts.map +1 -0
- package/dist/agents/impact-analyst.js +38 -0
- package/dist/agents/regression-advisor.d.ts +8 -0
- package/dist/agents/regression-advisor.d.ts.map +1 -0
- package/dist/agents/regression-advisor.js +116 -0
- package/dist/agents/strategist.d.ts +9 -0
- package/dist/agents/strategist.d.ts.map +1 -0
- package/dist/agents/strategist.js +92 -0
- package/dist/agents/test-designer.d.ts +8 -0
- package/dist/agents/test-designer.d.ts.map +1 -0
- package/dist/agents/test-designer.js +111 -0
- package/dist/anthropic_provider.d.ts +65 -0
- package/dist/anthropic_provider.d.ts.map +1 -0
- package/dist/anthropic_provider.js +334 -0
- package/dist/api.d.ts +48 -0
- package/dist/api.d.ts.map +1 -0
- package/dist/api.js +151 -0
- package/dist/base_provider.d.ts +109 -0
- package/dist/base_provider.d.ts.map +1 -0
- package/dist/base_provider.js +203 -0
- package/dist/budget_ledger.d.ts +28 -0
- package/dist/budget_ledger.d.ts.map +1 -0
- package/dist/budget_ledger.js +62 -0
- package/dist/cache/cached_provider.d.ts +49 -0
- package/dist/cache/cached_provider.d.ts.map +1 -0
- package/dist/cache/cached_provider.js +91 -0
- package/dist/cache/response_cache.d.ts +79 -0
- package/dist/cache/response_cache.d.ts.map +1 -0
- package/dist/cache/response_cache.js +177 -0
- package/dist/cli/commands/analyze.d.ts +3 -0
- package/dist/cli/commands/analyze.d.ts.map +1 -0
- package/dist/cli/commands/analyze.js +77 -0
- package/dist/cli/commands/bootstrap.d.ts +3 -0
- package/dist/cli/commands/bootstrap.d.ts.map +1 -0
- package/dist/cli/commands/bootstrap.js +109 -0
- package/dist/cli/commands/cost_report.d.ts +3 -0
- package/dist/cli/commands/cost_report.d.ts.map +1 -0
- package/dist/cli/commands/cost_report.js +115 -0
- package/dist/cli/commands/crew.d.ts +3 -0
- package/dist/cli/commands/crew.d.ts.map +1 -0
- package/dist/cli/commands/crew.js +255 -0
- package/dist/cli/commands/feedback.d.ts +3 -0
- package/dist/cli/commands/feedback.d.ts.map +1 -0
- package/dist/cli/commands/feedback.js +39 -0
- package/dist/cli/commands/finalize.d.ts +3 -0
- package/dist/cli/commands/finalize.d.ts.map +1 -0
- package/dist/cli/commands/finalize.js +41 -0
- package/dist/cli/commands/gate.d.ts +3 -0
- package/dist/cli/commands/gate.d.ts.map +1 -0
- package/dist/cli/commands/gate.js +89 -0
- package/dist/cli/commands/generate.d.ts +4 -0
- package/dist/cli/commands/generate.d.ts.map +1 -0
- package/dist/cli/commands/generate.js +108 -0
- package/dist/cli/commands/heal.d.ts +3 -0
- package/dist/cli/commands/heal.d.ts.map +1 -0
- package/dist/cli/commands/heal.js +60 -0
- package/dist/cli/commands/impact.d.ts +4 -0
- package/dist/cli/commands/impact.d.ts.map +1 -0
- package/dist/cli/commands/impact.js +33 -0
- package/dist/cli/commands/init.d.ts +2 -0
- package/dist/cli/commands/init.d.ts.map +1 -0
- package/dist/cli/commands/init.js +169 -0
- package/dist/cli/commands/llm_health.d.ts +2 -0
- package/dist/cli/commands/llm_health.d.ts.map +1 -0
- package/dist/cli/commands/llm_health.js +22 -0
- package/dist/cli/commands/plan.d.ts +4 -0
- package/dist/cli/commands/plan.d.ts.map +1 -0
- package/dist/cli/commands/plan.js +120 -0
- package/dist/cli/commands/plan_crew.d.ts +17 -0
- package/dist/cli/commands/plan_crew.d.ts.map +1 -0
- package/dist/cli/commands/plan_crew.js +316 -0
- package/dist/cli/commands/traceability.d.ts +4 -0
- package/dist/cli/commands/traceability.d.ts.map +1 -0
- package/dist/cli/commands/traceability.js +77 -0
- package/dist/cli/commands/train.d.ts +3 -0
- package/dist/cli/commands/train.d.ts.map +1 -0
- package/dist/cli/commands/train.js +391 -0
- package/dist/cli/defaults.d.ts +35 -0
- package/dist/cli/defaults.d.ts.map +1 -0
- package/dist/cli/defaults.js +172 -0
- package/dist/cli/errors.d.ts +27 -0
- package/dist/cli/errors.d.ts.map +1 -0
- package/dist/cli/errors.js +57 -0
- package/dist/cli/parse_args.d.ts +6 -0
- package/dist/cli/parse_args.d.ts.map +1 -0
- package/dist/cli/parse_args.js +257 -0
- package/dist/cli/types.d.ts +87 -0
- package/dist/cli/types.d.ts.map +1 -0
- package/dist/cli/types.js +4 -0
- package/dist/cli/usage.d.ts +2 -0
- package/dist/cli/usage.d.ts.map +1 -0
- package/dist/cli/usage.js +109 -0
- package/dist/cli.d.ts +3 -0
- package/dist/cli.d.ts.map +1 -0
- package/dist/cli.js +194 -0
- package/dist/crew/context.d.ts +55 -0
- package/dist/crew/context.d.ts.map +1 -0
- package/dist/crew/context.js +36 -0
- package/dist/crew/orchestrator.d.ts +50 -0
- package/dist/crew/orchestrator.d.ts.map +1 -0
- package/dist/crew/orchestrator.js +329 -0
- package/dist/crew/protocol.d.ts +46 -0
- package/dist/crew/protocol.d.ts.map +1 -0
- package/dist/crew/protocol.js +4 -0
- package/dist/crew/provider.d.ts +17 -0
- package/dist/crew/provider.d.ts.map +1 -0
- package/dist/crew/provider.js +36 -0
- package/dist/crew/sanitize.d.ts +3 -0
- package/dist/crew/sanitize.d.ts.map +1 -0
- package/dist/crew/sanitize.js +31 -0
- package/dist/crew/types.d.ts +52 -0
- package/dist/crew/types.d.ts.map +1 -0
- package/dist/crew/types.js +4 -0
- package/dist/crew/workflows.d.ts +52 -0
- package/dist/crew/workflows.d.ts.map +1 -0
- package/dist/crew/workflows.js +36 -0
- package/dist/custom_provider.d.ts +20 -0
- package/dist/custom_provider.d.ts.map +1 -0
- package/dist/custom_provider.js +277 -0
- package/dist/engine/ai_enrichment.d.ts +44 -0
- package/dist/engine/ai_enrichment.d.ts.map +1 -0
- package/dist/engine/ai_enrichment.js +267 -0
- package/dist/engine/diff_loader.d.ts +11 -0
- package/dist/engine/diff_loader.d.ts.map +1 -0
- package/dist/engine/diff_loader.js +63 -0
- package/dist/engine/impact_engine.d.ts +72 -0
- package/dist/engine/impact_engine.d.ts.map +1 -0
- package/dist/engine/impact_engine.js +298 -0
- package/dist/engine/plan_builder.d.ts +11 -0
- package/dist/engine/plan_builder.d.ts.map +1 -0
- package/dist/engine/plan_builder.js +599 -0
- package/dist/esm/adapters/cypress.js +49 -0
- package/dist/esm/adapters/framework_adapter.js +114 -0
- package/dist/esm/adapters/playwright.js +49 -0
- package/dist/esm/adapters/pytest.js +59 -0
- package/dist/esm/adapters/supertest.js +48 -0
- package/dist/esm/agent/api_catalog.js +199 -0
- package/dist/esm/agent/config.js +872 -0
- package/dist/esm/agent/feedback.js +317 -0
- package/dist/esm/agent/git.js +252 -0
- package/dist/esm/agent/handoff.js +177 -0
- package/dist/esm/agent/llm_agents_flow.js +421 -0
- package/dist/esm/agent/native_flow.js +175 -0
- package/dist/esm/agent/pipeline.js +256 -0
- package/dist/esm/agent/pipeline_types.js +3 -0
- package/dist/esm/agent/pipeline_utils.js +146 -0
- package/dist/esm/agent/plan.js +83 -0
- package/dist/esm/agent/playwright_report.js +123 -0
- package/dist/esm/agent/process_runner.js +83 -0
- package/dist/esm/agent/spec_generator.js +249 -0
- package/dist/esm/agent/test_path.js +20 -0
- package/dist/esm/agent/traceability_capture.js +310 -0
- package/dist/esm/agent/traceability_ingest.js +234 -0
- package/dist/esm/agent/types.js +3 -0
- package/dist/esm/agent/utils.js +138 -0
- package/dist/esm/agent/validation_runner.js +73 -0
- package/dist/esm/agentic/fix_loop.js +91 -0
- package/dist/esm/agentic/playwright_runner.js +161 -0
- package/dist/esm/agentic/runner.js +207 -0
- package/dist/esm/agentic/types.js +3 -0
- package/dist/esm/agents/coverage-evaluator.js +37 -0
- package/dist/esm/agents/cross-impact.js +136 -0
- package/dist/esm/agents/executor.js +71 -0
- package/dist/esm/agents/explorer.js +39 -0
- package/dist/esm/agents/generator.js +73 -0
- package/dist/esm/agents/healer.js +27 -0
- package/dist/esm/agents/impact-analyst.js +34 -0
- package/dist/esm/agents/regression-advisor.js +112 -0
- package/dist/esm/agents/strategist.js +88 -0
- package/dist/esm/agents/test-designer.js +107 -0
- package/dist/esm/anthropic_provider.js +326 -0
- package/dist/esm/api.js +143 -0
- package/dist/esm/base_provider.js +198 -0
- package/dist/esm/budget_ledger.js +58 -0
- package/dist/esm/cache/cached_provider.js +85 -0
- package/dist/esm/cache/response_cache.js +140 -0
- package/dist/esm/cli/commands/analyze.js +74 -0
- package/dist/esm/cli/commands/bootstrap.js +106 -0
- package/dist/esm/cli/commands/cost_report.js +112 -0
- package/dist/esm/cli/commands/crew.js +252 -0
- package/dist/esm/cli/commands/feedback.js +36 -0
- package/dist/esm/cli/commands/finalize.js +38 -0
- package/dist/esm/cli/commands/gate.js +86 -0
- package/dist/esm/cli/commands/generate.js +105 -0
- package/dist/esm/cli/commands/heal.js +57 -0
- package/dist/esm/cli/commands/impact.js +30 -0
- package/dist/esm/cli/commands/init.js +133 -0
- package/dist/esm/cli/commands/llm_health.js +19 -0
- package/dist/esm/cli/commands/plan.js +117 -0
- package/dist/esm/cli/commands/plan_crew.js +309 -0
- package/dist/esm/cli/commands/traceability.js +73 -0
- package/dist/esm/cli/commands/train.js +355 -0
- package/dist/esm/cli/defaults.js +165 -0
- package/dist/esm/cli/errors.js +52 -0
- package/dist/esm/cli/parse_args.js +251 -0
- package/dist/esm/cli/types.js +3 -0
- package/dist/esm/cli/usage.js +106 -0
- package/dist/esm/cli.js +192 -0
- package/dist/esm/crew/context.js +32 -0
- package/dist/esm/crew/orchestrator.js +325 -0
- package/dist/esm/crew/protocol.js +3 -0
- package/dist/esm/crew/provider.js +33 -0
- package/dist/esm/crew/sanitize.js +27 -0
- package/dist/esm/crew/types.js +3 -0
- package/dist/esm/crew/workflows.js +33 -0
- package/dist/esm/custom_provider.js +273 -0
- package/dist/esm/engine/ai_enrichment.js +264 -0
- package/dist/esm/engine/diff_loader.js +59 -0
- package/dist/esm/engine/impact_engine.js +291 -0
- package/dist/esm/engine/plan_builder.js +593 -0
- package/dist/esm/index.js +72 -0
- package/dist/esm/knowledge/api_surface.js +408 -0
- package/dist/esm/knowledge/cluster_utils.js +60 -0
- package/dist/esm/knowledge/context_loader.js +85 -0
- package/dist/esm/knowledge/failure_history.js +121 -0
- package/dist/esm/knowledge/kg_bridge.js +381 -0
- package/dist/esm/knowledge/kg_types.js +3 -0
- package/dist/esm/knowledge/route_families.js +393 -0
- package/dist/esm/knowledge/spec_index.js +122 -0
- package/dist/esm/logger.js +115 -0
- package/dist/esm/mcp-server.js +621 -0
- package/dist/esm/metrics/prometheus.js +149 -0
- package/dist/esm/model_router.js +59 -0
- package/dist/esm/ollama_provider.js +301 -0
- package/dist/esm/openai_provider.js +243 -0
- package/dist/esm/package.json +3 -0
- package/dist/esm/pipeline/orchestrator.js +228 -0
- package/dist/esm/pipeline/spec_verifier.js +75 -0
- package/dist/esm/pipeline/stage0_preprocess.js +102 -0
- package/dist/esm/pipeline/stage1_impact.js +140 -0
- package/dist/esm/pipeline/stage2_coverage.js +153 -0
- package/dist/esm/pipeline/stage3_generation.js +284 -0
- package/dist/esm/pipeline/stage4_heal.js +288 -0
- package/dist/esm/progress.js +112 -0
- package/dist/esm/prompts/coverage.js +57 -0
- package/dist/esm/prompts/cross-impact.js +53 -0
- package/dist/esm/prompts/generation.js +297 -0
- package/dist/esm/prompts/generation_profile.js +147 -0
- package/dist/esm/prompts/heal.js +91 -0
- package/dist/esm/prompts/impact.js +63 -0
- package/dist/esm/prompts/json_extract.js +36 -0
- package/dist/esm/prompts/strategist.js +61 -0
- package/dist/esm/prompts/test-designer.js +92 -0
- package/dist/esm/provider_factory.js +366 -0
- package/dist/esm/provider_interface.js +23 -0
- package/dist/esm/provider_utils.js +96 -0
- package/dist/esm/qa-agent/cli.js +205 -0
- package/dist/esm/qa-agent/orchestrator.js +120 -0
- package/dist/esm/qa-agent/phase1/runner.js +139 -0
- package/dist/esm/qa-agent/phase1/scope.js +126 -0
- package/dist/esm/qa-agent/phase2/agent_browser.js +95 -0
- package/dist/esm/qa-agent/phase2/agent_loop.js +351 -0
- package/dist/esm/qa-agent/phase2/exploration_state.js +97 -0
- package/dist/esm/qa-agent/phase2/tools.js +386 -0
- package/dist/esm/qa-agent/phase2/vision.js +75 -0
- package/dist/esm/qa-agent/phase3/feedback.js +34 -0
- package/dist/esm/qa-agent/phase3/reporter.js +145 -0
- package/dist/esm/qa-agent/phase3/spec_generator.js +62 -0
- package/dist/esm/qa-agent/phase3/verdict.js +66 -0
- package/dist/esm/qa-agent/safe_env.js +23 -0
- package/dist/esm/qa-agent/types.js +3 -0
- package/dist/esm/reporters/junit.js +86 -0
- package/dist/esm/reporters/reporter.js +3 -0
- package/dist/esm/reporters/sarif.js +132 -0
- package/dist/esm/resilience/circuit_breaker.js +78 -0
- package/dist/esm/resilience/retry.js +56 -0
- package/dist/esm/sanitize.js +66 -0
- package/dist/esm/training/enricher.js +345 -0
- package/dist/esm/training/kg_scanner.js +115 -0
- package/dist/esm/training/merger.js +204 -0
- package/dist/esm/training/scanner.js +923 -0
- package/dist/esm/training/types.js +6 -0
- package/dist/esm/training/validator.js +254 -0
- package/dist/esm/validation/guardrails.js +101 -0
- package/dist/esm/validation/output_schema.js +80 -0
- package/dist/esm/version.js +33 -0
- package/dist/index.d.ts +99 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +169 -0
- package/dist/knowledge/api_surface.d.ts +37 -0
- package/dist/knowledge/api_surface.d.ts.map +1 -0
- package/dist/knowledge/api_surface.js +418 -0
- package/dist/knowledge/cluster_utils.d.ts +28 -0
- package/dist/knowledge/cluster_utils.d.ts.map +1 -0
- package/dist/knowledge/cluster_utils.js +67 -0
- package/dist/knowledge/context_loader.d.ts +13 -0
- package/dist/knowledge/context_loader.d.ts.map +1 -0
- package/dist/knowledge/context_loader.js +90 -0
- package/dist/knowledge/failure_history.d.ts +39 -0
- package/dist/knowledge/failure_history.d.ts.map +1 -0
- package/dist/knowledge/failure_history.js +128 -0
- package/dist/knowledge/kg_bridge.d.ts +31 -0
- package/dist/knowledge/kg_bridge.d.ts.map +1 -0
- package/dist/knowledge/kg_bridge.js +388 -0
- package/dist/knowledge/kg_types.d.ts +75 -0
- package/dist/knowledge/kg_types.d.ts.map +1 -0
- package/dist/knowledge/kg_types.js +4 -0
- package/dist/knowledge/route_families.d.ts +98 -0
- package/dist/knowledge/route_families.d.ts.map +1 -0
- package/dist/knowledge/route_families.js +410 -0
- package/dist/knowledge/spec_index.d.ts +18 -0
- package/dist/knowledge/spec_index.d.ts.map +1 -0
- package/dist/knowledge/spec_index.js +128 -0
- package/dist/logger.d.ts +31 -0
- package/dist/logger.d.ts.map +1 -0
- package/dist/logger.js +119 -0
- package/dist/mcp-server.d.ts +68 -0
- package/dist/mcp-server.d.ts.map +1 -0
- package/dist/mcp-server.js +629 -0
- package/dist/metrics/prometheus.d.ts +37 -0
- package/dist/metrics/prometheus.d.ts.map +1 -0
- package/dist/metrics/prometheus.js +153 -0
- package/dist/model_router.d.ts +28 -0
- package/dist/model_router.d.ts.map +1 -0
- package/dist/model_router.js +63 -0
- package/dist/ollama_provider.d.ts +65 -0
- package/dist/ollama_provider.d.ts.map +1 -0
- package/dist/ollama_provider.js +309 -0
- package/dist/openai_provider.d.ts +23 -0
- package/dist/openai_provider.d.ts.map +1 -0
- package/dist/openai_provider.js +251 -0
- package/dist/pipeline/orchestrator.d.ts +33 -0
- package/dist/pipeline/orchestrator.d.ts.map +1 -0
- package/dist/pipeline/orchestrator.js +231 -0
- package/dist/pipeline/spec_verifier.d.ts +20 -0
- package/dist/pipeline/spec_verifier.d.ts.map +1 -0
- package/dist/pipeline/spec_verifier.js +79 -0
- package/dist/pipeline/stage0_preprocess.d.ts +31 -0
- package/dist/pipeline/stage0_preprocess.d.ts.map +1 -0
- package/dist/pipeline/stage0_preprocess.js +105 -0
- package/dist/pipeline/stage1_impact.d.ts +19 -0
- package/dist/pipeline/stage1_impact.d.ts.map +1 -0
- package/dist/pipeline/stage1_impact.js +143 -0
- package/dist/pipeline/stage2_coverage.d.ts +19 -0
- package/dist/pipeline/stage2_coverage.d.ts.map +1 -0
- package/dist/pipeline/stage2_coverage.js +156 -0
- package/dist/pipeline/stage3_generation.d.ts +43 -0
- package/dist/pipeline/stage3_generation.d.ts.map +1 -0
- package/dist/pipeline/stage3_generation.js +287 -0
- package/dist/pipeline/stage4_heal.d.ts +62 -0
- package/dist/pipeline/stage4_heal.d.ts.map +1 -0
- package/dist/pipeline/stage4_heal.js +294 -0
- package/dist/progress.d.ts +22 -0
- package/dist/progress.d.ts.map +1 -0
- package/dist/progress.js +116 -0
- package/dist/prompts/coverage.d.ts +39 -0
- package/dist/prompts/coverage.d.ts.map +1 -0
- package/dist/prompts/coverage.js +61 -0
- package/dist/prompts/cross-impact.d.ts +23 -0
- package/dist/prompts/cross-impact.d.ts.map +1 -0
- package/dist/prompts/cross-impact.js +57 -0
- package/dist/prompts/generation.d.ts +25 -0
- package/dist/prompts/generation.d.ts.map +1 -0
- package/dist/prompts/generation.js +302 -0
- package/dist/prompts/generation_profile.d.ts +29 -0
- package/dist/prompts/generation_profile.d.ts.map +1 -0
- package/dist/prompts/generation_profile.js +151 -0
- package/dist/prompts/heal.d.ts +23 -0
- package/dist/prompts/heal.d.ts.map +1 -0
- package/dist/prompts/heal.js +95 -0
- package/dist/prompts/impact.d.ts +31 -0
- package/dist/prompts/impact.d.ts.map +1 -0
- package/dist/prompts/impact.js +67 -0
- package/dist/prompts/json_extract.d.ts +14 -0
- package/dist/prompts/json_extract.d.ts.map +1 -0
- package/dist/prompts/json_extract.js +39 -0
- package/dist/prompts/strategist.d.ts +25 -0
- package/dist/prompts/strategist.d.ts.map +1 -0
- package/dist/prompts/strategist.js +65 -0
- package/dist/prompts/test-designer.d.ts +35 -0
- package/dist/prompts/test-designer.d.ts.map +1 -0
- package/dist/prompts/test-designer.js +96 -0
- package/dist/provider_factory.d.ts +104 -0
- package/dist/provider_factory.d.ts.map +1 -0
- package/dist/provider_factory.js +371 -0
- package/dist/provider_interface.d.ts +365 -0
- package/dist/provider_interface.d.ts.map +1 -0
- package/dist/provider_interface.js +28 -0
- package/dist/provider_utils.d.ts +39 -0
- package/dist/provider_utils.d.ts.map +1 -0
- package/dist/provider_utils.js +103 -0
- package/dist/qa-agent/cli.d.ts +3 -0
- package/dist/qa-agent/cli.d.ts.map +1 -0
- package/dist/qa-agent/cli.js +207 -0
- package/dist/qa-agent/orchestrator.d.ts +3 -0
- package/dist/qa-agent/orchestrator.d.ts.map +1 -0
- package/dist/qa-agent/orchestrator.js +123 -0
- package/dist/qa-agent/phase1/runner.d.ts +3 -0
- package/dist/qa-agent/phase1/runner.d.ts.map +1 -0
- package/dist/qa-agent/phase1/runner.js +142 -0
- package/dist/qa-agent/phase1/scope.d.ts +6 -0
- package/dist/qa-agent/phase1/scope.d.ts.map +1 -0
- package/dist/qa-agent/phase1/scope.js +129 -0
- package/dist/qa-agent/phase2/agent_browser.d.ts +35 -0
- package/dist/qa-agent/phase2/agent_browser.d.ts.map +1 -0
- package/dist/qa-agent/phase2/agent_browser.js +99 -0
- package/dist/qa-agent/phase2/agent_loop.d.ts +3 -0
- package/dist/qa-agent/phase2/agent_loop.d.ts.map +1 -0
- package/dist/qa-agent/phase2/agent_loop.js +357 -0
- package/dist/qa-agent/phase2/exploration_state.d.ts +12 -0
- package/dist/qa-agent/phase2/exploration_state.d.ts.map +1 -0
- package/dist/qa-agent/phase2/exploration_state.js +109 -0
- package/dist/qa-agent/phase2/tools.d.ts +28 -0
- package/dist/qa-agent/phase2/tools.d.ts.map +1 -0
- package/dist/qa-agent/phase2/tools.js +390 -0
- package/dist/qa-agent/phase2/vision.d.ts +3 -0
- package/dist/qa-agent/phase2/vision.d.ts.map +1 -0
- package/dist/qa-agent/phase2/vision.js +78 -0
- package/dist/qa-agent/phase3/feedback.d.ts +3 -0
- package/dist/qa-agent/phase3/feedback.d.ts.map +1 -0
- package/dist/qa-agent/phase3/feedback.js +37 -0
- package/dist/qa-agent/phase3/reporter.d.ts +3 -0
- package/dist/qa-agent/phase3/reporter.d.ts.map +1 -0
- package/dist/qa-agent/phase3/reporter.js +148 -0
- package/dist/qa-agent/phase3/spec_generator.d.ts +3 -0
- package/dist/qa-agent/phase3/spec_generator.d.ts.map +1 -0
- package/dist/qa-agent/phase3/spec_generator.js +65 -0
- package/dist/qa-agent/phase3/verdict.d.ts +3 -0
- package/dist/qa-agent/phase3/verdict.d.ts.map +1 -0
- package/dist/qa-agent/phase3/verdict.js +69 -0
- package/dist/qa-agent/safe_env.d.ts +3 -0
- package/dist/qa-agent/safe_env.d.ts.map +1 -0
- package/dist/qa-agent/safe_env.js +26 -0
- package/dist/qa-agent/types.d.ts +130 -0
- package/dist/qa-agent/types.d.ts.map +1 -0
- package/dist/qa-agent/types.js +4 -0
- package/dist/reporters/junit.d.ts +6 -0
- package/dist/reporters/junit.d.ts.map +1 -0
- package/dist/reporters/junit.js +89 -0
- package/dist/reporters/reporter.d.ts +42 -0
- package/dist/reporters/reporter.d.ts.map +1 -0
- package/dist/reporters/reporter.js +4 -0
- package/dist/reporters/sarif.d.ts +7 -0
- package/dist/reporters/sarif.d.ts.map +1 -0
- package/dist/reporters/sarif.js +135 -0
- package/dist/resilience/circuit_breaker.d.ts +36 -0
- package/dist/resilience/circuit_breaker.d.ts.map +1 -0
- package/dist/resilience/circuit_breaker.js +82 -0
- package/dist/resilience/retry.d.ts +11 -0
- package/dist/resilience/retry.d.ts.map +1 -0
- package/dist/resilience/retry.js +59 -0
- package/dist/sanitize.d.ts +15 -0
- package/dist/sanitize.d.ts.map +1 -0
- package/dist/sanitize.js +71 -0
- package/dist/training/enricher.d.ts +17 -0
- package/dist/training/enricher.d.ts.map +1 -0
- package/dist/training/enricher.js +350 -0
- package/dist/training/kg_scanner.d.ts +13 -0
- package/dist/training/kg_scanner.d.ts.map +1 -0
- package/dist/training/kg_scanner.js +118 -0
- package/dist/training/merger.d.ts +15 -0
- package/dist/training/merger.d.ts.map +1 -0
- package/dist/training/merger.js +208 -0
- package/dist/training/scanner.d.ts +36 -0
- package/dist/training/scanner.d.ts.map +1 -0
- package/dist/training/scanner.js +932 -0
- package/dist/training/types.d.ts +117 -0
- package/dist/training/types.d.ts.map +1 -0
- package/dist/training/types.js +9 -0
- package/dist/training/validator.d.ts +21 -0
- package/dist/training/validator.d.ts.map +1 -0
- package/dist/training/validator.js +262 -0
- package/dist/validation/guardrails.d.ts +31 -0
- package/dist/validation/guardrails.d.ts.map +1 -0
- package/dist/validation/guardrails.js +112 -0
- package/dist/validation/output_schema.d.ts +67 -0
- package/dist/validation/output_schema.d.ts.map +1 -0
- package/dist/validation/output_schema.js +84 -0
- package/dist/version.d.ts +6 -0
- package/dist/version.d.ts.map +1 -0
- package/dist/version.js +36 -0
- package/package.json +126 -0
- package/schemas/flow-decision.schema.json +83 -0
- package/schemas/gap.schema.json +18 -0
- package/schemas/impact.schema.json +455 -0
- package/schemas/plan.schema.json +491 -0
- package/schemas/route-families.schema.json +137 -0
- package/schemas/subsystem-risk-map.schema.json +62 -0
- package/schemas/traceability-input.schema.json +122 -0
|
@@ -0,0 +1,621 @@
|
|
|
1
|
+
#!/usr/bin/env node
|
|
2
|
+
// Copyright (c) 2015-present Mattermost, Inc. All Rights Reserved.
|
|
3
|
+
// See LICENSE.txt for license information.
|
|
4
|
+
/**
|
|
5
|
+
* MCP Server for Impact Gate - SECURITY HARDENED
|
|
6
|
+
* Exposes tools for Claude and Playwright agents to discover, generate, and heal tests
|
|
7
|
+
*/
|
|
8
|
+
import { spawnSync } from 'child_process';
|
|
9
|
+
import { readFileSync, writeFileSync, existsSync, realpathSync } from 'fs';
|
|
10
|
+
import { join, resolve, dirname } from 'path';
|
|
11
|
+
import { globSync } from 'glob';
|
|
12
|
+
/**
|
|
13
|
+
* SECURITY: Path validation helper
|
|
14
|
+
* Prevents directory traversal attacks
|
|
15
|
+
*/
|
|
16
|
+
function validatePathIsWithinRoot(filePath, rootPath) {
|
|
17
|
+
try {
|
|
18
|
+
const normalized = resolve(filePath);
|
|
19
|
+
const normalizedRoot = resolve(rootPath);
|
|
20
|
+
return normalized.startsWith(normalizedRoot + '/') || normalized === normalizedRoot;
|
|
21
|
+
}
|
|
22
|
+
catch {
|
|
23
|
+
return false;
|
|
24
|
+
}
|
|
25
|
+
}
|
|
26
|
+
/**
|
|
27
|
+
* SECURITY: Input validation for shell arguments
|
|
28
|
+
* Prevents command injection attacks
|
|
29
|
+
*/
|
|
30
|
+
function validatePlaywrightPattern(pattern) {
|
|
31
|
+
// Allow alphanumeric, dots, dashes, slashes, asterisks, underscores only
|
|
32
|
+
return /^[a-zA-Z0-9_\-.*\/]+$/.test(pattern) && !pattern.includes('..') && pattern.length < 512;
|
|
33
|
+
}
|
|
34
|
+
/**
|
|
35
|
+
* SECURITY: Validate git refs to prevent argument injection
|
|
36
|
+
*/
|
|
37
|
+
function validateGitRef(ref) {
|
|
38
|
+
// Allow standard git ref patterns: branches, tags, commit hashes
|
|
39
|
+
// Blocks patterns that start with -- (options) or contain spaces
|
|
40
|
+
return (/^[a-zA-Z0-9_\-./~^]+$/.test(ref) &&
|
|
41
|
+
!ref.startsWith('--') &&
|
|
42
|
+
ref.length < 256 &&
|
|
43
|
+
!ref.includes('\n') &&
|
|
44
|
+
!ref.includes('\0'));
|
|
45
|
+
}
|
|
46
|
+
/**
|
|
47
|
+
* SECURITY: Validate browser names against allowlist
|
|
48
|
+
*/
|
|
49
|
+
function validateBrowsers(browsers) {
|
|
50
|
+
const allowedBrowsers = new Set(['chromium', 'firefox', 'webkit']);
|
|
51
|
+
return browsers.length > 0 && browsers.length <= 3 && browsers.every((b) => allowedBrowsers.has(b));
|
|
52
|
+
}
|
|
53
|
+
/**
|
|
54
|
+
* SECURITY: Glob pattern validation
|
|
55
|
+
* Restricts to test-related patterns to prevent enumeration of sensitive files
|
|
56
|
+
*/
|
|
57
|
+
function validateGlobPattern(pattern) {
|
|
58
|
+
// Block attempts to enumerate sensitive patterns
|
|
59
|
+
const blockedPatterns = [/\*\*\/\*\*/, /\.env/, /\.pem/, /\.key/, /aws|credentials|secret|password/i];
|
|
60
|
+
if (pattern.length > 256)
|
|
61
|
+
return false;
|
|
62
|
+
if (blockedPatterns.some((p) => p.test(pattern)))
|
|
63
|
+
return false;
|
|
64
|
+
if (pattern.includes('..'))
|
|
65
|
+
return false;
|
|
66
|
+
return /^[a-zA-Z0-9_\-.*\/]+$/.test(pattern);
|
|
67
|
+
}
|
|
68
|
+
/**
|
|
69
|
+
* SECURITY: Sanitize error messages to prevent information leakage
|
|
70
|
+
*/
|
|
71
|
+
function sanitizeError(error, operation) {
|
|
72
|
+
if (error instanceof Error) {
|
|
73
|
+
// Only return safe error message, hide internal details
|
|
74
|
+
if (error.message.includes('ENOENT')) {
|
|
75
|
+
return `File not found (${operation})`;
|
|
76
|
+
}
|
|
77
|
+
if (error.message.includes('EACCES')) {
|
|
78
|
+
return `Permission denied (${operation})`;
|
|
79
|
+
}
|
|
80
|
+
if (error.message.includes('EISDIR')) {
|
|
81
|
+
return `Is a directory (${operation})`;
|
|
82
|
+
}
|
|
83
|
+
return `Operation failed: ${operation}`;
|
|
84
|
+
}
|
|
85
|
+
return 'An unexpected error occurred';
|
|
86
|
+
}
|
|
87
|
+
/**
|
|
88
|
+
* SECURITY: Rate limiter helper
|
|
89
|
+
*/
|
|
90
|
+
class RateLimiter {
|
|
91
|
+
constructor(maxRequests = 100, windowMs = 60000) {
|
|
92
|
+
this.requests = [];
|
|
93
|
+
this.maxRequests = maxRequests;
|
|
94
|
+
this.windowMs = windowMs;
|
|
95
|
+
}
|
|
96
|
+
isAllowed() {
|
|
97
|
+
const now = Date.now();
|
|
98
|
+
this.requests = this.requests.filter((time) => now - time < this.windowMs);
|
|
99
|
+
if (this.requests.length >= this.maxRequests) {
|
|
100
|
+
return false;
|
|
101
|
+
}
|
|
102
|
+
this.requests.push(now);
|
|
103
|
+
return true;
|
|
104
|
+
}
|
|
105
|
+
}
|
|
106
|
+
/**
|
|
107
|
+
* MCP Server for autonomous test discovery, generation, and healing
|
|
108
|
+
* Provides tools for Claude to interact with test framework
|
|
109
|
+
*/
|
|
110
|
+
export class E2EAgentsMCPServer {
|
|
111
|
+
constructor(repoRoot = process.cwd()) {
|
|
112
|
+
this.repoRoot = repoRoot;
|
|
113
|
+
this.tools = this.defineTools();
|
|
114
|
+
this.rateLimiter = new RateLimiter(100, 60000); // 100 requests per minute
|
|
115
|
+
}
|
|
116
|
+
defineTools() {
|
|
117
|
+
return [
|
|
118
|
+
{
|
|
119
|
+
name: 'discover_tests',
|
|
120
|
+
description: 'Discover tests that need to be written based on code changes',
|
|
121
|
+
inputSchema: {
|
|
122
|
+
type: 'object',
|
|
123
|
+
properties: {
|
|
124
|
+
since: {
|
|
125
|
+
type: 'string',
|
|
126
|
+
description: 'Git ref to compare against (e.g., HEAD~5, main)',
|
|
127
|
+
},
|
|
128
|
+
pattern: {
|
|
129
|
+
type: 'string',
|
|
130
|
+
description: "Test file pattern to search (e.g., '**/*.spec.ts')",
|
|
131
|
+
},
|
|
132
|
+
},
|
|
133
|
+
},
|
|
134
|
+
},
|
|
135
|
+
{
|
|
136
|
+
name: 'read_file',
|
|
137
|
+
description: 'Read a file from the repository',
|
|
138
|
+
inputSchema: {
|
|
139
|
+
type: 'object',
|
|
140
|
+
properties: {
|
|
141
|
+
path: {
|
|
142
|
+
type: 'string',
|
|
143
|
+
description: 'File path relative to repo root',
|
|
144
|
+
},
|
|
145
|
+
},
|
|
146
|
+
required: ['path'],
|
|
147
|
+
},
|
|
148
|
+
},
|
|
149
|
+
{
|
|
150
|
+
name: 'write_file',
|
|
151
|
+
description: 'Write or create a file in the repository',
|
|
152
|
+
inputSchema: {
|
|
153
|
+
type: 'object',
|
|
154
|
+
properties: {
|
|
155
|
+
path: {
|
|
156
|
+
type: 'string',
|
|
157
|
+
description: 'File path relative to repo root',
|
|
158
|
+
},
|
|
159
|
+
content: {
|
|
160
|
+
type: 'string',
|
|
161
|
+
description: 'File content to write',
|
|
162
|
+
},
|
|
163
|
+
},
|
|
164
|
+
required: ['path', 'content'],
|
|
165
|
+
},
|
|
166
|
+
},
|
|
167
|
+
{
|
|
168
|
+
name: 'run_tests',
|
|
169
|
+
description: 'Run Playwright tests matching a pattern',
|
|
170
|
+
inputSchema: {
|
|
171
|
+
type: 'object',
|
|
172
|
+
properties: {
|
|
173
|
+
pattern: {
|
|
174
|
+
type: 'string',
|
|
175
|
+
description: "Test file pattern (e.g., 'tests/**/*.spec.ts')",
|
|
176
|
+
},
|
|
177
|
+
browsers: {
|
|
178
|
+
type: 'array',
|
|
179
|
+
items: { type: 'string' },
|
|
180
|
+
description: 'Browsers to test (chromium, firefox, webkit)',
|
|
181
|
+
},
|
|
182
|
+
},
|
|
183
|
+
},
|
|
184
|
+
},
|
|
185
|
+
{
|
|
186
|
+
name: 'get_git_changes',
|
|
187
|
+
description: 'Get files changed since a git reference',
|
|
188
|
+
inputSchema: {
|
|
189
|
+
type: 'object',
|
|
190
|
+
properties: {
|
|
191
|
+
since: {
|
|
192
|
+
type: 'string',
|
|
193
|
+
description: 'Git ref to compare against (e.g., HEAD~5, main)',
|
|
194
|
+
},
|
|
195
|
+
},
|
|
196
|
+
},
|
|
197
|
+
},
|
|
198
|
+
{
|
|
199
|
+
name: 'get_repository_context',
|
|
200
|
+
description: 'Get repository structure and project metadata',
|
|
201
|
+
inputSchema: {
|
|
202
|
+
type: 'object',
|
|
203
|
+
properties: {
|
|
204
|
+
include: {
|
|
205
|
+
type: 'array',
|
|
206
|
+
items: { type: 'string' },
|
|
207
|
+
description: 'What to include (package.json, tsconfig, playwright.config, tests)',
|
|
208
|
+
},
|
|
209
|
+
},
|
|
210
|
+
},
|
|
211
|
+
},
|
|
212
|
+
];
|
|
213
|
+
}
|
|
214
|
+
/**
|
|
215
|
+
* Handle tool calls from Claude/Playwright agents
|
|
216
|
+
* SECURITY: Rate limiting enforced
|
|
217
|
+
*/
|
|
218
|
+
async callTool(name, args) {
|
|
219
|
+
// SECURITY: Rate limiting
|
|
220
|
+
if (!this.rateLimiter.isAllowed()) {
|
|
221
|
+
return JSON.stringify({ error: 'Rate limit exceeded. Too many requests.' });
|
|
222
|
+
}
|
|
223
|
+
switch (name) {
|
|
224
|
+
case 'discover_tests':
|
|
225
|
+
return this.discoverTests(args);
|
|
226
|
+
case 'read_file':
|
|
227
|
+
return this.readFile(args);
|
|
228
|
+
case 'write_file':
|
|
229
|
+
return this.writeFile(args);
|
|
230
|
+
case 'run_tests':
|
|
231
|
+
return this.runTests(args);
|
|
232
|
+
case 'get_git_changes':
|
|
233
|
+
return this.getGitChanges(args);
|
|
234
|
+
case 'get_repository_context':
|
|
235
|
+
return this.getRepositoryContext(args);
|
|
236
|
+
default:
|
|
237
|
+
return JSON.stringify({ error: 'Unknown tool' });
|
|
238
|
+
}
|
|
239
|
+
}
|
|
240
|
+
discoverTests(args) {
|
|
241
|
+
try {
|
|
242
|
+
const since = args.since || 'HEAD~5';
|
|
243
|
+
const pattern = args.pattern || '**/*.spec.ts';
|
|
244
|
+
// SECURITY: Validate inputs
|
|
245
|
+
if (!validateGitRef(since)) {
|
|
246
|
+
return JSON.stringify({ error: 'Invalid git reference format' });
|
|
247
|
+
}
|
|
248
|
+
if (!validateGlobPattern(pattern)) {
|
|
249
|
+
return JSON.stringify({ error: 'Invalid pattern format' });
|
|
250
|
+
}
|
|
251
|
+
// Get changed files
|
|
252
|
+
const changedFiles = this.getChangedFiles(since);
|
|
253
|
+
// Find test files that might need updating
|
|
254
|
+
const testFiles = globSync(pattern, { cwd: this.repoRoot });
|
|
255
|
+
return JSON.stringify({
|
|
256
|
+
changedFiles,
|
|
257
|
+
existingTests: testFiles,
|
|
258
|
+
recommendedTests: this.analyzeChangesForTests(changedFiles, testFiles),
|
|
259
|
+
});
|
|
260
|
+
}
|
|
261
|
+
catch (error) {
|
|
262
|
+
return JSON.stringify({ error: sanitizeError(error, 'discover_tests') });
|
|
263
|
+
}
|
|
264
|
+
}
|
|
265
|
+
readFile(args) {
|
|
266
|
+
try {
|
|
267
|
+
// SECURITY: Path traversal prevention
|
|
268
|
+
const filePath = resolve(this.repoRoot, args.path);
|
|
269
|
+
if (!validatePathIsWithinRoot(filePath, this.repoRoot)) {
|
|
270
|
+
return JSON.stringify({ error: 'Access denied' });
|
|
271
|
+
}
|
|
272
|
+
if (!existsSync(filePath)) {
|
|
273
|
+
return JSON.stringify({ error: 'File not found' });
|
|
274
|
+
}
|
|
275
|
+
const content = readFileSync(filePath, 'utf-8');
|
|
276
|
+
return JSON.stringify({ path: args.path, content });
|
|
277
|
+
}
|
|
278
|
+
catch (error) {
|
|
279
|
+
return JSON.stringify({ error: sanitizeError(error, 'read_file') });
|
|
280
|
+
}
|
|
281
|
+
}
|
|
282
|
+
writeFile(args) {
|
|
283
|
+
try {
|
|
284
|
+
// SECURITY: Path traversal prevention
|
|
285
|
+
const filePath = resolve(this.repoRoot, args.path);
|
|
286
|
+
if (!validatePathIsWithinRoot(filePath, this.repoRoot)) {
|
|
287
|
+
return JSON.stringify({ error: 'Access denied' });
|
|
288
|
+
}
|
|
289
|
+
// SECURITY: Symlink resolution — resolve the real path to prevent symlink escape.
|
|
290
|
+
// Only check if the parent directory exists (file itself may not exist yet).
|
|
291
|
+
const parentDir = resolve(filePath, '..');
|
|
292
|
+
if (existsSync(parentDir)) {
|
|
293
|
+
const realParent = realpathSync(parentDir);
|
|
294
|
+
if (!validatePathIsWithinRoot(realParent, this.repoRoot)) {
|
|
295
|
+
return JSON.stringify({ error: 'Access denied' });
|
|
296
|
+
}
|
|
297
|
+
}
|
|
298
|
+
// SECURITY: Restrict writes to test-related paths only.
|
|
299
|
+
// Allowed: specs/, .e2e-ai-agents/, and files matching *.spec.ts / *.test.ts
|
|
300
|
+
const relPath = args.path.replace(/\\/g, '/');
|
|
301
|
+
const isTestSpec = /\.(spec|test)\.(ts|js|tsx|jsx)$/.test(relPath);
|
|
302
|
+
const isAllowedDir = relPath.startsWith('specs/') || relPath.startsWith('.e2e-ai-agents/');
|
|
303
|
+
if (!isTestSpec && !isAllowedDir) {
|
|
304
|
+
return JSON.stringify({ error: 'Access denied: writes restricted to test specs and .e2e-ai-agents/' });
|
|
305
|
+
}
|
|
306
|
+
// SECURITY: Size limit to prevent resource exhaustion
|
|
307
|
+
if (args.content.length > 10 * 1024 * 1024) {
|
|
308
|
+
// 10MB limit
|
|
309
|
+
return JSON.stringify({ error: 'File too large' });
|
|
310
|
+
}
|
|
311
|
+
writeFileSync(filePath, args.content, 'utf-8');
|
|
312
|
+
return JSON.stringify({ success: true, path: args.path });
|
|
313
|
+
}
|
|
314
|
+
catch (error) {
|
|
315
|
+
return JSON.stringify({ error: sanitizeError(error, 'write_file') });
|
|
316
|
+
}
|
|
317
|
+
}
|
|
318
|
+
runTests(args) {
|
|
319
|
+
try {
|
|
320
|
+
const pattern = args.pattern || '**/*.spec.ts';
|
|
321
|
+
const browsers = args.browsers || ['chromium'];
|
|
322
|
+
// SECURITY: Validate inputs
|
|
323
|
+
if (!validatePlaywrightPattern(pattern)) {
|
|
324
|
+
return JSON.stringify({ error: 'Invalid test pattern' });
|
|
325
|
+
}
|
|
326
|
+
if (!validateBrowsers(browsers)) {
|
|
327
|
+
return JSON.stringify({ error: 'Invalid browser specification' });
|
|
328
|
+
}
|
|
329
|
+
const projectArgs = browsers.flatMap((browser) => ['--project', browser]);
|
|
330
|
+
// SECURITY: Use -- to separate playwright options from test args
|
|
331
|
+
const result = spawnSync('npx', [
|
|
332
|
+
'playwright',
|
|
333
|
+
'test',
|
|
334
|
+
...projectArgs,
|
|
335
|
+
'--',
|
|
336
|
+
pattern,
|
|
337
|
+
], {
|
|
338
|
+
cwd: this.repoRoot,
|
|
339
|
+
encoding: 'utf-8',
|
|
340
|
+
timeout: 300000, // 5 minute timeout
|
|
341
|
+
maxBuffer: 1024 * 1024, // 1MB output limit
|
|
342
|
+
});
|
|
343
|
+
if (result.error) {
|
|
344
|
+
return JSON.stringify({
|
|
345
|
+
success: false,
|
|
346
|
+
error: 'Test execution failed',
|
|
347
|
+
});
|
|
348
|
+
}
|
|
349
|
+
// SECURITY: Don't leak full stdout/stderr, summarize instead
|
|
350
|
+
const stdout = result.stdout ? result.stdout.substring(0, 5000) : '';
|
|
351
|
+
const stderr = result.stderr ? result.stderr.substring(0, 5000) : '';
|
|
352
|
+
return JSON.stringify({
|
|
353
|
+
success: result.status === 0,
|
|
354
|
+
summary: `Exit code: ${result.status}`,
|
|
355
|
+
testsPassed: stdout.includes('passed'),
|
|
356
|
+
testsFailed: stdout.includes('failed'),
|
|
357
|
+
});
|
|
358
|
+
}
|
|
359
|
+
catch (error) {
|
|
360
|
+
return JSON.stringify({
|
|
361
|
+
success: false,
|
|
362
|
+
error: 'Test execution error',
|
|
363
|
+
});
|
|
364
|
+
}
|
|
365
|
+
}
|
|
366
|
+
getGitChanges(args) {
|
|
367
|
+
try {
|
|
368
|
+
const since = args.since || 'HEAD~5';
|
|
369
|
+
// SECURITY: Validate git ref
|
|
370
|
+
if (!validateGitRef(since)) {
|
|
371
|
+
return JSON.stringify({ error: 'Invalid git reference format' });
|
|
372
|
+
}
|
|
373
|
+
const result = spawnSync('git', ['diff', '--name-only', `${since}..HEAD`], {
|
|
374
|
+
cwd: this.repoRoot,
|
|
375
|
+
encoding: 'utf-8',
|
|
376
|
+
timeout: 30000,
|
|
377
|
+
});
|
|
378
|
+
if (result.error) {
|
|
379
|
+
return JSON.stringify({ error: 'Git operation failed' });
|
|
380
|
+
}
|
|
381
|
+
const changedFiles = result.stdout.trim().split('\n').filter((f) => f);
|
|
382
|
+
return JSON.stringify({ changedFiles });
|
|
383
|
+
}
|
|
384
|
+
catch (error) {
|
|
385
|
+
return JSON.stringify({ error: 'Git operation error' });
|
|
386
|
+
}
|
|
387
|
+
}
|
|
388
|
+
getRepositoryContext(args) {
|
|
389
|
+
try {
|
|
390
|
+
const defaultInclude = ['package.json', 'tsconfig.json', 'playwright.config.ts', 'playwright.config.js'];
|
|
391
|
+
const include = args.include || defaultInclude;
|
|
392
|
+
// SECURITY: Limit to allowed filenames
|
|
393
|
+
const allowedFiles = new Set([
|
|
394
|
+
'package.json',
|
|
395
|
+
'tsconfig.json',
|
|
396
|
+
'tsconfig.base.json',
|
|
397
|
+
'playwright.config.ts',
|
|
398
|
+
'playwright.config.js',
|
|
399
|
+
'jest.config.js',
|
|
400
|
+
'.npmrc',
|
|
401
|
+
'README.md',
|
|
402
|
+
]);
|
|
403
|
+
const context = {};
|
|
404
|
+
for (const file of include) {
|
|
405
|
+
// SECURITY: Validate each path
|
|
406
|
+
if (!allowedFiles.has(file)) {
|
|
407
|
+
continue; // Skip non-allowed files
|
|
408
|
+
}
|
|
409
|
+
const filePath = resolve(this.repoRoot, file);
|
|
410
|
+
if (!validatePathIsWithinRoot(filePath, this.repoRoot)) {
|
|
411
|
+
continue;
|
|
412
|
+
}
|
|
413
|
+
if (existsSync(filePath)) {
|
|
414
|
+
try {
|
|
415
|
+
context[file] = readFileSync(filePath, 'utf-8');
|
|
416
|
+
}
|
|
417
|
+
catch {
|
|
418
|
+
// Ignore read errors for individual files
|
|
419
|
+
}
|
|
420
|
+
}
|
|
421
|
+
}
|
|
422
|
+
// Add test structure with safe globbing
|
|
423
|
+
const testFiles = globSync('**/*.spec.ts', {
|
|
424
|
+
cwd: this.repoRoot,
|
|
425
|
+
ignore: 'node_modules/**',
|
|
426
|
+
maxDepth: 5,
|
|
427
|
+
});
|
|
428
|
+
context.testFiles = testFiles.slice(0, 100); // Limit to 100 files
|
|
429
|
+
return JSON.stringify(context);
|
|
430
|
+
}
|
|
431
|
+
catch (error) {
|
|
432
|
+
return JSON.stringify({ error: sanitizeError(error, 'get_repository_context') });
|
|
433
|
+
}
|
|
434
|
+
}
|
|
435
|
+
getChangedFiles(since) {
|
|
436
|
+
try {
|
|
437
|
+
// SECURITY: Validate git ref before use
|
|
438
|
+
if (!validateGitRef(since)) {
|
|
439
|
+
return [];
|
|
440
|
+
}
|
|
441
|
+
const result = spawnSync('git', ['diff', '--name-only', `${since}..HEAD`], {
|
|
442
|
+
cwd: this.repoRoot,
|
|
443
|
+
encoding: 'utf-8',
|
|
444
|
+
timeout: 30000,
|
|
445
|
+
});
|
|
446
|
+
if (result.error) {
|
|
447
|
+
return [];
|
|
448
|
+
}
|
|
449
|
+
return result.stdout.trim().split('\n').filter((f) => f);
|
|
450
|
+
}
|
|
451
|
+
catch {
|
|
452
|
+
return [];
|
|
453
|
+
}
|
|
454
|
+
}
|
|
455
|
+
analyzeChangesForTests(changedFiles, existingTests) {
|
|
456
|
+
// Simple heuristic: if a source file changed, suggest a test for it
|
|
457
|
+
return changedFiles
|
|
458
|
+
.filter((f) => !f.endsWith('.spec.ts') && !f.endsWith('.test.ts'))
|
|
459
|
+
.slice(0, 10) // Limit results
|
|
460
|
+
.map((f) => {
|
|
461
|
+
const testFile = f.replace(/\.(ts|js)$/, '.spec.ts');
|
|
462
|
+
return testFile;
|
|
463
|
+
});
|
|
464
|
+
}
|
|
465
|
+
/**
|
|
466
|
+
* Get all available tools
|
|
467
|
+
*/
|
|
468
|
+
getTools() {
|
|
469
|
+
return this.tools;
|
|
470
|
+
}
|
|
471
|
+
}
|
|
472
|
+
/**
|
|
473
|
+
* Read the package version at runtime so the MCP initialize response
|
|
474
|
+
* always reflects the installed version.
|
|
475
|
+
*/
|
|
476
|
+
function getPackageVersion() {
|
|
477
|
+
try {
|
|
478
|
+
const pkgPath = join(dirname(__dirname), 'package.json');
|
|
479
|
+
const pkg = JSON.parse(readFileSync(pkgPath, 'utf-8'));
|
|
480
|
+
return pkg.version || '0.0.0';
|
|
481
|
+
}
|
|
482
|
+
catch {
|
|
483
|
+
return '0.0.0';
|
|
484
|
+
}
|
|
485
|
+
}
|
|
486
|
+
/**
|
|
487
|
+
* Encode a JSON-RPC message with Content-Length framing.
|
|
488
|
+
* Exported for testability.
|
|
489
|
+
*/
|
|
490
|
+
export function encodeJsonRpcMessage(message) {
|
|
491
|
+
const body = JSON.stringify(message);
|
|
492
|
+
return `Content-Length: ${Buffer.byteLength(body, 'utf8')}\r\n\r\n${body}`;
|
|
493
|
+
}
|
|
494
|
+
/**
|
|
495
|
+
* Parse Content-Length framed JSON-RPC messages from a buffer.
|
|
496
|
+
* Returns parsed messages and the remaining (unconsumed) buffer.
|
|
497
|
+
* Exported for testability.
|
|
498
|
+
*/
|
|
499
|
+
export function parseJsonRpcFrames(input) {
|
|
500
|
+
const messages = [];
|
|
501
|
+
let buffer = Buffer.from(input);
|
|
502
|
+
while (true) {
|
|
503
|
+
const headerEnd = buffer.indexOf('\r\n\r\n');
|
|
504
|
+
if (headerEnd === -1)
|
|
505
|
+
break;
|
|
506
|
+
const headerText = buffer.slice(0, headerEnd).toString('utf8');
|
|
507
|
+
const match = headerText.match(/Content-Length:\s*(\d+)/i);
|
|
508
|
+
if (!match) {
|
|
509
|
+
buffer = Buffer.alloc(0);
|
|
510
|
+
break;
|
|
511
|
+
}
|
|
512
|
+
const contentLength = Number(match[1]);
|
|
513
|
+
const messageEnd = headerEnd + 4 + contentLength;
|
|
514
|
+
if (buffer.length < messageEnd)
|
|
515
|
+
break;
|
|
516
|
+
const body = buffer.slice(headerEnd + 4, messageEnd).toString('utf8');
|
|
517
|
+
buffer = buffer.slice(messageEnd);
|
|
518
|
+
messages.push(JSON.parse(body));
|
|
519
|
+
}
|
|
520
|
+
return { messages, remainder: buffer };
|
|
521
|
+
}
|
|
522
|
+
/**
|
|
523
|
+
* Handle a single JSON-RPC message against the server.
|
|
524
|
+
* Returns the response message (or null for notifications).
|
|
525
|
+
* Exported for testability.
|
|
526
|
+
*/
|
|
527
|
+
export async function handleJsonRpcMessage(server, message) {
|
|
528
|
+
const { id, method, params } = message;
|
|
529
|
+
const version = getPackageVersion();
|
|
530
|
+
if (method === 'initialize') {
|
|
531
|
+
return {
|
|
532
|
+
jsonrpc: '2.0',
|
|
533
|
+
id,
|
|
534
|
+
result: {
|
|
535
|
+
protocolVersion: typeof params?.protocolVersion === 'string' ? params.protocolVersion : '2024-11-05',
|
|
536
|
+
capabilities: { tools: {}, resources: {}, prompts: {} },
|
|
537
|
+
serverInfo: { name: 'impact-gate-mcp', version },
|
|
538
|
+
},
|
|
539
|
+
};
|
|
540
|
+
}
|
|
541
|
+
if (method === 'notifications/initialized' || method === 'initialized') {
|
|
542
|
+
return null;
|
|
543
|
+
}
|
|
544
|
+
if (method === 'tools/list') {
|
|
545
|
+
return {
|
|
546
|
+
jsonrpc: '2.0',
|
|
547
|
+
id,
|
|
548
|
+
result: {
|
|
549
|
+
tools: server.getTools().map((tool) => ({
|
|
550
|
+
name: tool.name,
|
|
551
|
+
description: tool.description,
|
|
552
|
+
inputSchema: tool.inputSchema,
|
|
553
|
+
})),
|
|
554
|
+
},
|
|
555
|
+
};
|
|
556
|
+
}
|
|
557
|
+
if (method === 'tools/call') {
|
|
558
|
+
const resultText = await server.callTool(typeof params?.name === 'string' ? params.name : '', typeof params?.arguments === 'object' && params.arguments !== null ? params.arguments : {});
|
|
559
|
+
let isError = false;
|
|
560
|
+
try {
|
|
561
|
+
const parsed = JSON.parse(resultText);
|
|
562
|
+
isError = Boolean(parsed.error);
|
|
563
|
+
}
|
|
564
|
+
catch {
|
|
565
|
+
isError = false;
|
|
566
|
+
}
|
|
567
|
+
return {
|
|
568
|
+
jsonrpc: '2.0',
|
|
569
|
+
id,
|
|
570
|
+
result: { content: [{ type: 'text', text: resultText }], isError },
|
|
571
|
+
};
|
|
572
|
+
}
|
|
573
|
+
if (method === 'resources/list') {
|
|
574
|
+
return { jsonrpc: '2.0', id, result: { resources: [] } };
|
|
575
|
+
}
|
|
576
|
+
if (method === 'prompts/list') {
|
|
577
|
+
return { jsonrpc: '2.0', id, result: { prompts: [] } };
|
|
578
|
+
}
|
|
579
|
+
if (method === 'ping') {
|
|
580
|
+
return { jsonrpc: '2.0', id, result: {} };
|
|
581
|
+
}
|
|
582
|
+
return { jsonrpc: '2.0', id, error: { code: -32601, message: `Method not found: ${method}` } };
|
|
583
|
+
}
|
|
584
|
+
/**
|
|
585
|
+
* Start MCP server over stdio using Content-Length framed JSON-RPC messages.
|
|
586
|
+
*/
|
|
587
|
+
export function startStdioServer(repoRoot = process.cwd()) {
|
|
588
|
+
const server = new E2EAgentsMCPServer(repoRoot);
|
|
589
|
+
let buffer = Buffer.alloc(0);
|
|
590
|
+
const sendMessage = (message) => {
|
|
591
|
+
process.stdout.write(encodeJsonRpcMessage(message));
|
|
592
|
+
};
|
|
593
|
+
const sendError = (id, code, msg) => {
|
|
594
|
+
sendMessage({ jsonrpc: '2.0', id, error: { code, message: msg } });
|
|
595
|
+
};
|
|
596
|
+
const processBuffer = () => {
|
|
597
|
+
const { messages, remainder } = parseJsonRpcFrames(buffer);
|
|
598
|
+
buffer = remainder;
|
|
599
|
+
for (const parsed of messages) {
|
|
600
|
+
void handleJsonRpcMessage(server, parsed)
|
|
601
|
+
.then((response) => {
|
|
602
|
+
if (response)
|
|
603
|
+
sendMessage(response);
|
|
604
|
+
})
|
|
605
|
+
.catch((error) => {
|
|
606
|
+
sendError(parsed.id ?? null, -32603, error instanceof Error ? error.message : String(error));
|
|
607
|
+
});
|
|
608
|
+
}
|
|
609
|
+
};
|
|
610
|
+
process.stdin.on('data', (chunk) => {
|
|
611
|
+
buffer = Buffer.concat([buffer, chunk]);
|
|
612
|
+
processBuffer();
|
|
613
|
+
});
|
|
614
|
+
process.stdin.on('end', () => {
|
|
615
|
+
process.exit(0);
|
|
616
|
+
});
|
|
617
|
+
}
|
|
618
|
+
if (require.main === module) {
|
|
619
|
+
startStdioServer();
|
|
620
|
+
}
|
|
621
|
+
export default E2EAgentsMCPServer;
|