npm - agentic-qe - Versions diffs - 3.8.1 → 3.8.3 - Mend

agentic-qe 3.8.1 → 3.8.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (448) hide show

package/assets/skills/qe-contract-testing/schemas/output.json DELETED Viewed

@@ -1,295 +0,0 @@
-{
-  "$schema": "http://json-schema.org/draft-07/schema#",
-  "$id": "https://agentic-qe.dev/schemas/skills/qe-contract-testing/output.json",
-  "title": "QE Contract Testing Skill Output Schema",
-  "description": "Schema for qe-contract-testing skill output with contracts, consumers, providers, and compatibility analysis.",
-  "type": "object",
-  "required": ["skillName", "version", "timestamp", "status", "trustTier", "output"],
-  "properties": {
-    "skillName": {
-      "type": "string",
-      "const": "qe-contract-testing"
-    },
-    "version": {
-      "type": "string",
-      "pattern": "^\\d+\\.\\d+\\.\\d+(-[a-zA-Z0-9]+)?$"
-    },
-    "timestamp": {
-      "type": "string"
-    },
-    "status": {
-      "type": "string",
-      "enum": ["success", "partial", "failed", "skipped"]
-    },
-    "trustTier": {
-      "type": "integer",
-      "const": 3
-    },
-    "output": {
-      "type": "object",
-      "required": ["summary", "contracts", "compatibility"],
-      "properties": {
-        "summary": {
-          "type": "string",
-          "minLength": 50,
-          "maxLength": 2000,
-          "description": "Human-readable summary of contract testing analysis"
-        },
-        "contracts": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/contract"
-          },
-          "minItems": 1,
-          "maxItems": 500,
-          "description": "List of contracts analyzed"
-        },
-        "consumers": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/consumer"
-          },
-          "maxItems": 100,
-          "description": "Contract consumers"
-        },
-        "providers": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/provider"
-          },
-          "maxItems": 100,
-          "description": "Contract providers"
-        },
-        "compatibility": {
-          "$ref": "#/$defs/compatibility",
-          "description": "Compatibility analysis results"
-        },
-        "breakingChanges": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/breakingChange"
-          },
-          "maxItems": 200
-        },
-        "verificationResult": {
-          "$ref": "#/$defs/verificationResult"
-        },
-        "canIDeploy": {
-          "type": "boolean"
-        },
-        "versionRecommendation": {
-          "$ref": "#/$defs/versionRecommendation"
-        },
-        "findings": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/finding"
-          },
-          "maxItems": 200
-        },
-        "recommendations": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/recommendation"
-          },
-          "maxItems": 50
-        }
-      }
-    },
-    "metadata": {
-      "type": "object",
-      "properties": {
-        "executionTimeMs": { "type": "integer", "minimum": 0 },
-        "toolsUsed": { "type": "array", "items": { "type": "string" } },
-        "agentId": { "type": "string" },
-        "framework": { "type": "string", "enum": ["pact", "spring-cloud-contract", "openapi", "graphql", "custom"] }
-      }
-    },
-    "validation": {
-      "type": "object",
-      "properties": {
-        "schemaValid": { "type": "boolean" },
-        "contentValid": { "type": "boolean" },
-        "confidence": { "type": "number", "minimum": 0, "maximum": 1 }
-      }
-    },
-    "learning": {
-      "type": "object",
-      "properties": {
-        "patternsDetected": { "type": "array", "items": { "type": "string" } },
-        "reward": { "type": "number", "minimum": 0, "maximum": 1 }
-      }
-    }
-  },
-  "$defs": {
-    "contract": {
-      "type": "object",
-      "required": ["id", "consumer", "provider"],
-      "properties": {
-        "id": { "type": "string" },
-        "consumer": { "type": "string" },
-        "provider": { "type": "string" },
-        "version": { "type": "string" },
-        "status": { "type": "string", "enum": ["verified", "failed", "pending", "stale"] },
-        "interactions": {
-          "type": "array",
-          "items": {
-            "$ref": "#/$defs/interaction"
-          }
-        },
-        "lastVerified": { "type": "string" },
-        "tags": { "type": "array", "items": { "type": "string" } }
-      }
-    },
-    "consumer": {
-      "type": "object",
-      "required": ["name"],
-      "properties": {
-        "name": { "type": "string" },
-        "version": { "type": "string" },
-        "environment": { "type": "string" },
-        "verificationStatus": { "type": "string", "enum": ["passed", "failed", "pending", "unknown"] },
-        "contractCount": { "type": "integer", "minimum": 0 },
-        "providers": { "type": "array", "items": { "type": "string" } }
-      }
-    },
-    "provider": {
-      "type": "object",
-      "required": ["name"],
-      "properties": {
-        "name": { "type": "string" },
-        "version": { "type": "string" },
-        "environment": { "type": "string" },
-        "verificationStatus": { "type": "string", "enum": ["passed", "failed", "pending"] },
-        "consumerContracts": {
-          "type": "array",
-          "items": {
-            "type": "object",
-            "properties": {
-              "consumer": { "type": "string" },
-              "status": { "type": "string" }
-            }
-          }
-        }
-      }
-    },
-    "interaction": {
-      "type": "object",
-      "required": ["description"],
-      "properties": {
-        "description": { "type": "string" },
-        "providerState": { "type": "string" },
-        "request": {
-          "type": "object",
-          "properties": {
-            "method": { "type": "string", "enum": ["GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS", "HEAD"] },
-            "path": { "type": "string" },
-            "headers": { "type": "object" },
-            "body": {}
-          }
-        },
-        "response": {
-          "type": "object",
-          "properties": {
-            "status": { "type": "integer", "minimum": 100, "maximum": 599 },
-            "headers": { "type": "object" },
-            "body": {}
-          }
-        },
-        "status": { "type": "string", "enum": ["passed", "failed", "pending"] }
-      }
-    },
-    "compatibility": {
-      "type": "object",
-      "required": ["overallStatus", "score"],
-      "properties": {
-        "overallStatus": { "type": "string", "enum": ["compatible", "incompatible", "partial", "unknown"] },
-        "score": { "type": "number", "minimum": 0, "maximum": 100 },
-        "backwardCompatible": { "type": "boolean" },
-        "forwardCompatible": { "type": "boolean" },
-        "breakingChangeCount": { "type": "integer", "minimum": 0 },
-        "affectedConsumers": { "type": "array", "items": { "type": "string" } },
-        "compatibilityMatrix": {
-          "type": "array",
-          "items": {
-            "type": "object",
-            "properties": {
-              "consumer": { "type": "string" },
-              "provider": { "type": "string" },
-              "compatible": { "type": "boolean" }
-            }
-          }
-        }
-      }
-    },
-    "breakingChange": {
-      "type": "object",
-      "required": ["type", "description", "severity"],
-      "properties": {
-        "type": {
-          "type": "string",
-          "enum": ["removed-endpoint", "removed-field", "type-change", "required-field-added", "response-change", "status-code-change", "removed-enum-value", "narrowed-type"]
-        },
-        "description": { "type": "string", "maxLength": 1000 },
-        "severity": { "type": "string", "enum": ["critical", "high", "medium", "low"] },
-        "location": {
-          "type": "object",
-          "properties": {
-            "endpoint": { "type": "string" },
-            "method": { "type": "string" },
-            "field": { "type": "string" }
-          }
-        },
-        "affectedConsumers": { "type": "array", "items": { "type": "string" } },
-        "migrationPath": { "type": "string", "maxLength": 2000 }
-      }
-    },
-    "verificationResult": {
-      "type": "object",
-      "required": ["status", "totalInteractions", "passedInteractions"],
-      "properties": {
-        "status": { "type": "string", "enum": ["passed", "failed", "pending", "partial"] },
-        "totalInteractions": { "type": "integer", "minimum": 0 },
-        "passedInteractions": { "type": "integer", "minimum": 0 },
-        "failedInteractions": { "type": "integer", "minimum": 0 },
-        "successRate": { "type": "number", "minimum": 0, "maximum": 100 }
-      }
-    },
-    "versionRecommendation": {
-      "type": "object",
-      "required": ["currentVersion", "recommendedVersion", "changeType"],
-      "properties": {
-        "currentVersion": { "type": "string" },
-        "recommendedVersion": { "type": "string" },
-        "changeType": { "type": "string", "enum": ["major", "minor", "patch", "none"] },
-        "reason": { "type": "string" },
-        "breakingChangeCount": { "type": "integer", "minimum": 0 }
-      }
-    },
-    "finding": {
-      "type": "object",
-      "required": ["id", "title", "severity"],
-      "properties": {
-        "id": { "type": "string", "pattern": "^CT-\\d{3,6}$" },
-        "title": { "type": "string", "minLength": 5, "maxLength": 200 },
-        "description": { "type": "string", "maxLength": 2000 },
-        "severity": { "type": "string", "enum": ["critical", "high", "medium", "low", "info"] },
-        "category": { "type": "string", "enum": ["contract-violation", "missing-contract", "stale-contract", "breaking-change", "coverage-gap"] },
-        "consumer": { "type": "string" },
-        "provider": { "type": "string" },
-        "remediation": { "type": "string", "maxLength": 2000 }
-      }
-    },
-    "recommendation": {
-      "type": "object",
-      "required": ["id", "title", "priority"],
-      "properties": {
-        "id": { "type": "string", "pattern": "^REC-\\d{3,6}$" },
-        "title": { "type": "string", "maxLength": 200 },
-        "description": { "type": "string", "maxLength": 2000 },
-        "priority": { "type": "string", "enum": ["critical", "high", "medium", "low"] },
-        "effort": { "type": "string", "enum": ["trivial", "low", "medium", "high", "major"] }
-      }
-    }
-  }
-}

package/assets/skills/qe-contract-testing/scripts/validate-config.json DELETED Viewed

@@ -1,42 +0,0 @@
-{
-  "skillName": "qe-contract-testing",
-  "skillVersion": "1.0.0",
-  "requiredTools": [
-    "jq"
-  ],
-  "optionalTools": [
-    "pact",
-    "node",
-    "python3"
-  ],
-  "schemaPath": "schemas/output.json",
-  "requiredFields": [
-    "skillName",
-    "status",
-    "output",
-    "output.summary",
-    "output.contracts",
-    "output.compatibility"
-  ],
-  "requiredNonEmptyFields": [
-    "output.summary"
-  ],
-  "mustContainTerms": [
-    "contract",
-    "consumer",
-    "provider"
-  ],
-  "mustNotContainTerms": [
-    "TODO",
-    "FIXME",
-    "placeholder"
-  ],
-  "enumValidations": {
-    ".status": [
-      "success",
-      "partial",
-      "failed",
-      "skipped"
-    ]
-  }
-}

package/assets/skills/qe-security-compliance/SKILL.md DELETED Viewed

@@ -1,261 +0,0 @@
----
-name: "QE Security Compliance"
-description: "Security auditing, vulnerability scanning, and compliance validation for OWASP, SOC2, GDPR, and other standards."
-trust_tier: 3
-validation:
-  schema_path: schemas/output.json
-  validator_path: scripts/validate-config.json
-  eval_path: evals/qe-security-compliance.yaml
----
-# QE Security Compliance
-## Purpose
-Guide the use of v3's security and compliance testing capabilities including SAST/DAST scanning, vulnerability detection, compliance auditing, and security gate enforcement.
-## Activation
-- When performing security audits
-- When scanning for vulnerabilities
-- When validating compliance
-- When checking dependencies
-- When setting up security gates
-## Quick Start
-```bash
-# Full security scan
-aqe security scan --scope src/ --checks all
-# Vulnerability check
-aqe security vulns --dependencies --severity critical,high
-# Compliance audit
-aqe security compliance --standard soc2 --output report.html
-# OWASP check
-aqe security owasp --top-10 --scope src/
-```
-## Agent Workflow
-```typescript
-// Security audit
-Task("Security audit", `
-  Perform comprehensive security audit:
-  - SAST scan for code vulnerabilities
-  - Dependency vulnerability check
-  - Secret detection in code and configs
-  - OWASP Top 10 validation
-  Generate security report with remediation steps.
-`, "qe-security-auditor")
-// Compliance validation
-Task("SOC2 compliance check", `
-  Validate SOC2 compliance requirements:
-  - Access control verification
-  - Encryption validation
-  - Audit logging check
-  - Data retention compliance
-  Generate compliance evidence report.
-`, "qe-compliance-checker")
-```
-## Security Operations
-### 1. SAST Scanning
-```typescript
-await securityScanner.staticAnalysis({
-  scope: 'src/**/*.ts',
-  checks: [
-    'sql-injection',
-    'xss',
-    'command-injection',
-    'path-traversal',
-    'insecure-crypto',
-    'hardcoded-secrets'
-  ],
-  rules: 'owasp-top-10',
-  severity: ['critical', 'high', 'medium']
-});
-```
-### 2. Dependency Scanning
-```typescript
-await securityScanner.dependencyCheck({
-  sources: ['package.json', 'package-lock.json'],
-  checks: {
-    knownVulnerabilities: true,
-    outdatedPackages: true,
-    licenseCompliance: true,
-    supplyChainRisk: true
-  },
-  severity: ['critical', 'high'],
-  autoFix: {
-    enabled: true,
-    dryRun: false
-  }
-});
-```
-### 3. Compliance Audit
-```typescript
-await complianceChecker.audit({
-  standards: ['SOC2', 'GDPR', 'HIPAA'],
-  scope: {
-    code: 'src/',
-    configs: 'config/',
-    infrastructure: 'terraform/'
-  },
-  output: {
-    gaps: true,
-    evidence: true,
-    recommendations: true
-  }
-});
-```
-### 4. Secret Detection
-```typescript
-await securityScanner.detectSecrets({
-  scope: ['.', 'config/', '.env*'],
-  patterns: [
-    'api-keys',
-    'passwords',
-    'tokens',
-    'private-keys',
-    'connection-strings'
-  ],
-  exclude: ['*.test.ts', 'mocks/'],
-  action: {
-    onDetect: 'block',
-    notify: ['security-team']
-  }
-});
-```
-## OWASP Top 10 Coverage
-```yaml
-owasp_2021:
-  A01_broken_access_control:
-    checks: [privilege-escalation, idor, cors-misconfiguration]
-    automated: true
-  A02_cryptographic_failures:
-    checks: [weak-encryption, missing-encryption, key-management]
-    automated: true
-  A03_injection:
-    checks: [sql, nosql, command, xss, ldap]
-    automated: true
-  A04_insecure_design:
-    checks: [threat-modeling, secure-patterns]
-    automated: partial
-  A05_security_misconfiguration:
-    checks: [default-credentials, unnecessary-features]
-    automated: true
-  A06_vulnerable_components:
-    checks: [outdated-deps, known-cves]
-    automated: true
-  A07_auth_failures:
-    checks: [weak-passwords, session-issues]
-    automated: true
-  A08_software_data_integrity:
-    checks: [insecure-deserialization, cicd-security]
-    automated: partial
-  A09_logging_monitoring:
-    checks: [insufficient-logging, missing-alerts]
-    automated: partial
-  A10_ssrf:
-    checks: [server-side-request-forgery]
-    automated: true
-```
-## Security Report
-```typescript
-interface SecurityReport {
-  summary: {
-    score: number;  // 0-100
-    critical: number;
-    high: number;
-    medium: number;
-    low: number;
-  };
-  vulnerabilities: {
-    id: string;
-    type: string;
-    severity: 'critical' | 'high' | 'medium' | 'low';
-    location: string;
-    description: string;
-    remediation: string;
-    cwe: string;
-    owasp: string;
-  }[];
-  dependencies: {
-    vulnerable: number;
-    outdated: number;
-    details: DependencyVuln[];
-  };
-  compliance: {
-    standard: string;
-    status: 'compliant' | 'non-compliant' | 'partial';
-    gaps: ComplianceGap[];
-    evidence: Evidence[];
-  }[];
-  secrets: {
-    detected: number;
-    locations: SecretLocation[];
-  };
-}
-```
-## Security Gates
-```yaml
-security_gates:
-  block_merge:
-    - critical_vulnerabilities > 0
-    - high_vulnerabilities > 2
-    - secrets_detected > 0
-    - compliance_failures > 0
-  warn:
-    - medium_vulnerabilities > 5
-    - outdated_dependencies > 10
-  enforce:
-    - signed_commits: required
-    - code_review: required
-    - security_scan: required
-```
-## Compliance Standards
-| Standard | Scope | Auto-Check |
-|----------|-------|------------|
-| SOC2 | Security controls | Partial |
-| GDPR | Data privacy | Partial |
-| HIPAA | Health data | Partial |
-| PCI-DSS | Payment data | Yes |
-| ISO 27001 | InfoSec | Partial |
-## Coordination
-**Primary Agents**: qe-security-auditor, qe-security-scanner, qe-compliance-checker
-**Coordinator**: qe-security-coordinator
-**Related Skills**: qe-quality-assessment, qe-contract-testing