npm - agent-quality-police - Versions diffs - 0.2.3 → 0.2.5 - Mend

agent-quality-police 0.2.3 → 0.2.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/.claude-plugin/plugin.json +1 -1
package/.codex-plugin/plugin.json +1 -1
package/AGENTS.md +2 -2
package/CLAUDE.md +11 -56
package/framework/entrypoints/global-policy.md +24 -0
package/framework/entrypoints/{policy.md → repo-policy.md} +2 -2
package/lib/install.mjs +1 -1
package/package.json +1 -1

package/.claude-plugin/plugin.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "agent-quality-police",
-  "version": "0.2.3",
+  "version": "0.2.5",
   "description": "Strict governance framework for coding agents that blocks testing and typing bypasses.",
   "author": {
     "name": "Davy Massoneto",

package/.codex-plugin/plugin.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "agent-quality-police",
-  "version": "0.2.3",
+  "version": "0.2.5",
   "description": "Strict governance framework for coding agents that blocks testing and typing bypasses.",
   "author": {
     "name": "Davy Massoneto",

package/AGENTS.md CHANGED Viewed

@@ -44,8 +44,8 @@
 - Keep tests direct, short, and behavior-based.
 - Prefer explicit domain names over generic utilities.
 - Keep policy text severe and actionable; do not soften language to preserve agent comfort.
-- After any change to canonical framework sources such as `.claude/skills/`, `.claude/rules/`, `docs/policy/`, or `framework/agents/specs/`, run `python3 scripts/build_framework.py` before claiming the repository is consistent.
-- After the build step, run `python3 scripts/validate_framework.py`. If scripts changed, run `python3 -m unittest tests/test_framework_tools.py`.
+- After any change to canonical framework sources such as `framework/skills/`, `framework/rules/`, `docs/policy/`, or `framework/agents/specs/`, run `python3 scripts/build_framework.py` before claiming the repository is consistent.
+- After the build step, run `python3 scripts/validate_framework.py`. If scripts changed, run `python3 -m unittest tests/test_framework_tools.py` and `node --test tests/node/install.test.mjs`.
 ## Audit Flow

package/CLAUDE.md CHANGED Viewed

@@ -3,66 +3,21 @@
 ## Priority
 - Direct system, developer, and user instructions override this file.
-- [`docs/policy/quality-definition.md`](docs/policy/quality-definition.md) is the canonical definition of quality in this repository.
-- If any skill, rule, example, or agent prompt contradicts the quality definition, the quality definition wins.
-- Generated projections must not become the source of truth.
+- Prefer current local code and current official documentation over memory.
+- Load only the smallest relevant skill set for the task.
-## Startup Sequence
+## Quality Rules
-1. Read [quality-definition](docs/policy/quality-definition.md).
-2. Read [workflow](docs/policy/workflow.md).
-3. Load the smallest relevant skill set from `.claude/skills/`.
-4. Execute with TDD when tests are viable.
-5. Run the matching audit agents before final approval.
+- Use behavior-first tests when tests are viable.
+- Avoid type bypasses, comment bypasses, config weakening, and fake greens.
+- Prefer named types and explicit models over inline structural shortcuts.
-## Mandatory Skill Routing
+## Review Flow
-- Use [quality-index](.claude/skills/quality-index/SKILL.md) first when the task spans multiple concerns.
-- Use [typescript-zero-bypass](.claude/skills/typescript-zero-bypass/SKILL.md) for any `.ts` or `.tsx` change.
-- Use [vite-vitest-tdd](.claude/skills/vite-vitest-tdd/SKILL.md) when working with Vite, Vitest, or unit/component TDD.
-- Use [react-public-api-testing](.claude/skills/react-public-api-testing/SKILL.md) for React component behavior tests.
-- Use [anti-bypass-audit](.claude/skills/anti-bypass-audit/SKILL.md) when reviewing diffs, suspicious helpers, or weakened configs.
-- Use [refactoring-with-safety](.claude/skills/refactoring-with-safety/SKILL.md) for refactors that are not pure bug fixes.
-- Use [governance-installation](.claude/skills/governance-installation/SKILL.md) when installing or updating this framework in another repository.
-## Non-Negotiables
-- TDD is mandatory when tests are technically viable.
-- A passing test suite without behavior proof is not a green build.
-- `any`, type assertions, non-null assertions, ts-comment bypasses, and lint/config weakening are automatic failures.
-- `Map` in public or domain-facing contracts is suspicious by default and must be treated as a modeling bypass unless a stronger repository rule explicitly allows it.
-- Helpers, factories, mocks, branches, or narrowing added only to silence the type system or to make tests easier are automatic failures.
-- Zod is allowed only at external input boundaries.
-- Joi is allowed only for environment validation when it is genuinely needed.
-- Strong named types are required.
-- Inline structural types are prohibited.
-- Reviewers must reject suspicious diffs instead of “accepting with caveats.”
-## Execution Contract
-- Fix the root problem, not the symptom.
-- Keep tests direct, short, and behavior-based.
-- Prefer explicit domain names over generic utilities.
-- Keep policy text severe and actionable; do not soften language to preserve agent comfort.
-- After any change to canonical framework sources such as `.claude/skills/`, `.claude/rules/`, `docs/policy/`, or `framework/agents/specs/`, run `python3 scripts/build_framework.py` before claiming the repository is consistent.
-- After the build step, run `python3 scripts/validate_framework.py`. If scripts changed, run `python3 -m unittest tests/test_framework_tools.py`.
-## Audit Flow
-- `implementer`: execution agent, allowed to write, never allowed to weaken rules.
-- `tdd-warden`: verifies there was a real RED phase and that tests prove behavior.
-- `bypass-auditor`: hunts bypasses, fake narrowing, config weakening, helper noise, and non-probative mocks.
-- `pr-gatekeeper`: final verdict, does not rewrite code.
-## Output Expectations
-- Implementation output should state what behavior is covered, what tests were run, and what remains blocked.
-- Audit output should list concrete findings with file evidence and required correction.
-- Gate output should end with `APPROVED` or `REJECTED`.
-## Repository Layout
-- [system-layout](docs/policy/system-layout.md)
+- Before final approval, run the relevant auditors for the actual risk surface.
+- Use `bypass-auditor` for typing, config, mocks, helpers, or suspicious diffs.
+- Use `tdd-warden` when behavior or tests changed or should have changed.
+- Use `pr-gatekeeper` only for final approve-or-reject review.
 ## Tool-Specific Notes

package/framework/entrypoints/global-policy.md ADDED Viewed

@@ -0,0 +1,24 @@
+## Priority
+- Direct system, developer, and user instructions override this file.
+- Prefer current local code and current official documentation over memory.
+- Load only the smallest relevant skill set for the task.
+## Quality Rules
+- Use behavior-first tests when tests are viable.
+- Avoid type bypasses, comment bypasses, config weakening, and fake greens.
+- Prefer named types and explicit models over inline structural shortcuts.
+## Review Flow
+- Before final approval, run the relevant auditors for the actual risk surface.
+- Use `bypass-auditor` for typing, config, mocks, helpers, or suspicious diffs.
+- Use `tdd-warden` when behavior or tests changed or should have changed.
+- Use `pr-gatekeeper` only for final approve-or-reject review.
+## Tool-Specific Notes
+- Claude Code should enter through `{{claude_entrypoint_label}}` and `{{claude_rules_root}}`.
+- Codex should enter through this file and use `{{codex_skills_root}}` plus `{{codex_agents_root}}`.
+- OpenCode should enter through this file and load extra instructions from `{{opencode_config_path}}`.

package/framework/entrypoints/{policy.md → repo-policy.md} RENAMED Viewed

@@ -42,8 +42,8 @@
 - Keep tests direct, short, and behavior-based.
 - Prefer explicit domain names over generic utilities.
 - Keep policy text severe and actionable; do not soften language to preserve agent comfort.
-- After any change to canonical framework sources such as `.claude/skills/`, `.claude/rules/`, `docs/policy/`, or `framework/agents/specs/`, run `python3 scripts/build_framework.py` before claiming the repository is consistent.
-- After the build step, run `python3 scripts/validate_framework.py`. If scripts changed, run `python3 -m unittest tests/test_framework_tools.py`.
+- After any change to canonical framework sources such as `framework/skills/`, `framework/rules/`, `docs/policy/`, or `framework/agents/specs/`, run `python3 scripts/build_framework.py` before claiming the repository is consistent.
+- After the build step, run `python3 scripts/validate_framework.py`. If scripts changed, run `python3 -m unittest tests/test_framework_tools.py` and `node --test tests/node/install.test.mjs`.
 ## Audit Flow

package/lib/install.mjs CHANGED Viewed

@@ -35,7 +35,7 @@ export function supportedTargets() {
 }
 async function loadEntrypointPolicy(packageRoot) {
-  return (await readFile(packagePath(packageRoot, "framework", "entrypoints", "policy.md"), "utf8")).trimEnd();
+  return (await readFile(packagePath(packageRoot, "framework", "entrypoints", "global-policy.md"), "utf8")).trimEnd();
 }
 function renderTemplate(content, replacements) {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "agent-quality-police",
-  "version": "0.2.3",
+  "version": "0.2.5",
   "description": "Strict governance framework for coding agents that blocks testing and typing bypasses.",
   "type": "module",
   "license": "MIT",