npm - agileflow - Versions diffs - 3.0.0 → 3.0.2 - Mend

agileflow 3.0.0 → 3.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (57) hide show

package/CHANGELOG.md +10 -0
package/README.md +6 -6
package/lib/api-server.js +3 -2
package/lib/dashboard-server.js +131 -50
package/lib/flag-detection.js +4 -2
package/lib/git-operations.js +4 -2
package/lib/process-executor.js +24 -9
package/lib/skill-loader.js +11 -3
package/package.json +1 -1
package/scripts/agileflow-welcome.js +65 -25
package/scripts/archive-completed-stories.sh +3 -0
package/scripts/ci-summary.js +294 -0
package/scripts/claude-smart.sh +18 -0
package/scripts/claude-tmux.sh +50 -20
package/scripts/damage-control-multi-agent.js +14 -10
package/scripts/lib/bus-utils.js +3 -1
package/scripts/lib/configure-detect.js +89 -8
package/scripts/lib/configure-features.js +77 -10
package/scripts/lib/configure-repair.js +6 -5
package/scripts/lib/context-formatter.js +13 -3
package/scripts/lib/damage-control-utils.js +5 -1
package/scripts/lib/lifecycle-detector.js +5 -3
package/scripts/lib/process-cleanup.js +8 -4
package/scripts/lib/scale-detector.js +47 -8
package/scripts/lib/signal-detectors.js +117 -59
package/scripts/lib/task-registry.js +5 -1
package/scripts/lib/team-events.js +4 -4
package/scripts/messaging-bridge.js +7 -1
package/scripts/precompact-context.sh +3 -0
package/scripts/ralph-loop.js +10 -8
package/scripts/smart-detect.js +32 -11
package/scripts/team-manager.js +1 -1
package/scripts/tmux-task-name.sh +75 -0
package/scripts/tmux-task-watcher.sh +177 -0
package/src/core/commands/babysit.md +75 -42
package/src/core/commands/blockers.md +7 -7
package/src/core/commands/configure.md +49 -63
package/src/core/commands/discovery/brief.md +363 -0
package/src/core/commands/discovery/new.md +395 -0
package/src/core/commands/ideate/new.md +5 -5
package/src/core/commands/logic/audit.md +5 -5
package/src/core/commands/review.md +7 -1
package/src/core/commands/rpi.md +61 -26
package/src/core/commands/sprint.md +7 -6
package/src/core/templates/product-brief.md +136 -0
package/tools/cli/installers/ide/claude-code.js +67 -2
package/src/core/agents/configuration/archival.md +0 -350
package/src/core/agents/configuration/attribution.md +0 -343
package/src/core/agents/configuration/ci.md +0 -1103
package/src/core/agents/configuration/damage-control.md +0 -375
package/src/core/agents/configuration/git-config.md +0 -537
package/src/core/agents/configuration/hooks.md +0 -623
package/src/core/agents/configuration/precompact.md +0 -302
package/src/core/agents/configuration/status-line.md +0 -557
package/src/core/agents/configuration/verify.md +0 -618
package/src/core/agents/configuration-damage-control.md +0 -259
package/src/core/agents/configuration-visual-e2e.md +0 -339

package/src/core/agents/configuration/damage-control.md DELETED Viewed

@@ -1,375 +0,0 @@
----
-name: configuration-damage-control
-description: Configure AgileFlow damage control to protect against destructive commands
-tools:
-  - Read
-  - Write
-  - Edit
-  - Bash
-  - Glob
-  - Grep
-model: haiku
-team_role: teammate
----
-# Configuration Agent: Damage Control
-Configure PreToolUse hooks to protect your codebase from destructive agent commands.
----
-## STEP 0: Gather Context (MANDATORY)
-```bash
-node .agileflow/scripts/obtain-context.js configuration-damage-control
-```
----
-## What Is Damage Control?
-Damage control uses Claude Code's PreToolUse hooks to validate commands BEFORE they execute:
-**Three Protection Layers:**
-1. **Bash Tool Hook** - Blocks dangerous commands (rm -rf, DROP TABLE, etc.)
-2. **Edit Tool Hook** - Prevents editing protected files
-3. **Write Tool Hook** - Prevents writing to protected locations
-**Path Protection Levels:**
-| Level | Read | Write | Edit | Delete |
-|-------|------|-------|------|--------|
-| Zero Access | No | No | No | No |
-| Read-Only | Yes | No | No | No |
-| No Delete | Yes | Yes | Yes | No |
-**Protection Modes:**
-- **Standard** (recommended): Deterministic pattern matching - fast and reliable
-- **Enhanced**: Standard + AI prompt hook for unknown threats - slower but thorough
----
-## IMMEDIATE ACTIONS
-### Step 1: Check Current Status
-```bash
-# Check if patterns file exists
-if [ -f ".agileflow/config/damage-control-patterns.yaml" ]; then
-  echo "STATUS: Damage control patterns configured"
-  PATTERNS_EXIST=true
-else
-  echo "STATUS: No patterns file found"
-  PATTERNS_EXIST=false
-fi
-# Check if hooks are in settings.json
-if [ -f ".claude/settings.json" ] && grep -q "damage-control" .claude/settings.json 2>/dev/null; then
-  echo "STATUS: PreToolUse hooks configured"
-  HOOKS_EXIST=true
-else
-  echo "STATUS: No hooks configured"
-  HOOKS_EXIST=false
-fi
-```
-### Step 2: Determine Action
-**If NOT configured** (first time setup):
-- Proceed to Step 3 (Protection Level)
-**If ALREADY configured**:
-- Use AskUserQuestion to offer reconfiguration options:
-```xml
-<invoke name="AskUserQuestion">
-<parameter name="questions">[{
-  "question": "Damage control is already configured. What would you like to do?",
-  "header": "Options",
-  "multiSelect": false,
-  "options": [
-    {"label": "Change protection level", "description": "Switch between Standard/Enhanced"},
-    {"label": "Add custom patterns", "description": "Block additional commands or protect more paths"},
-    {"label": "View current config", "description": "Show what's protected"},
-    {"label": "Disable damage control", "description": "Remove all hooks"},
-    {"label": "Keep current", "description": "Exit without changes"}
-  ]
-}]</parameter>
-</invoke>
-```
-### Step 3: Choose Protection Level
-```xml
-<invoke name="AskUserQuestion">
-<parameter name="questions">[{
-  "question": "What protection level would you like?",
-  "header": "Level",
-  "multiSelect": false,
-  "options": [
-    {"label": "Standard (Recommended)", "description": "Fast deterministic hooks - blocks known dangerous patterns"},
-    {"label": "Enhanced", "description": "Standard + AI evaluation for unknown threats (adds latency)"},
-    {"label": "Minimal", "description": "Path protection only - no command pattern matching"}
-  ]
-}]</parameter>
-</invoke>
-```
-### Step 4: Ask About Custom Protections
-```xml
-<invoke name="AskUserQuestion">
-<parameter name="questions">[{
-  "question": "Any additional protections to enable?",
-  "header": "Custom",
-  "multiSelect": true,
-  "options": [
-    {"label": "Production database commands", "description": "Block psql/mysql/mongo production connections"},
-    {"label": "Cloud CLI destructive ops", "description": "Block aws/gcloud/az delete commands"},
-    {"label": "Extra env file protection", "description": "Block all .env.* and secrets.* files"},
-    {"label": "AI attribution blocking", "description": "Block Co-Authored-By: Claude/AI/GPT in git commits"},
-    {"label": "Use defaults only", "description": "No additional protections needed"}
-  ]
-}]</parameter>
-</invoke>
-```
-### Step 5: Create Configuration Directory
-```bash
-mkdir -p .agileflow/config
-```
-### Step 6: Deploy Patterns File
-```bash
-# Copy from templates if not exists, or if user wants reset
-if [ ! -f ".agileflow/config/damage-control-patterns.yaml" ]; then
-  if [ -f ".agileflow/templates/damage-control-patterns.yaml" ]; then
-    cp .agileflow/templates/damage-control-patterns.yaml .agileflow/config/damage-control-patterns.yaml
-    echo "Deployed default patterns"
-  fi
-fi
-```
-### Step 7: Add Custom Patterns (if selected)
-Based on user selections from Step 4, append to patterns file:
-**Production database commands:**
-```yaml
-  # Production database protection (added by configure)
-  - pattern: 'psql\s+.*production'
-    reason: "Production database access blocked"
-  - pattern: 'mysql\s+.*-h\s+.*prod'
-    reason: "Production MySQL access blocked"
-  - pattern: 'mongo.*mongodb\+srv.*prod'
-    reason: "Production MongoDB access blocked"
-```
-**Cloud CLI destructive ops:**
-```yaml
-  # Cloud CLI protection (added by configure)
-  - pattern: '\baws\s+s3\s+rm'
-    reason: "AWS S3 delete blocked"
-  - pattern: '\baws\s+ec2\s+terminate'
-    reason: "AWS EC2 terminate blocked"
-  - pattern: '\bgcloud\s+compute\s+instances\s+delete'
-    reason: "GCloud instance delete blocked"
-```
-**Extra env file protection** - add to zeroAccessPaths:
-```yaml
-  - ".env.*"
-  - "secrets.*"
-  - "credentials.*"
-```
-**AI attribution blocking** - add to bashToolPatterns:
-```yaml
-  # AI Attribution Prevention (added by configure)
-  # Match actual footer format: Co-Authored-By with AI name and email
-  - pattern: 'Co-Authored-By:\s*(Claude|AI|GPT|Copilot|Anthropic)[^/]*<[^>]+>'
-    reason: "AI co-author attribution blocked - follow project commit policy"
-    flags: "i"
-  - pattern: '🤖\s*(Generated|Created|Written)'
-    reason: "AI emoji attribution blocked - follow project commit policy"
-  - pattern: '\[Claude Code\]\(https?://'
-    reason: "Claude Code attribution links blocked - follow project commit policy"
-    flags: "i"
-```
-### Step 8: Configure PreToolUse Hooks
-Read current settings.json and merge damage control hooks:
-```javascript
-// This is the hook configuration to add/merge
-const damageControlHooks = {
-  PreToolUse: [
-    {
-      matcher: "Bash",
-      hooks: [{
-        type: "command",
-        command: `node ${process.cwd()}/.agileflow/scripts/damage-control-bash.js`,
-        timeout: 5
-      }]
-    },
-    {
-      matcher: "Edit",
-      hooks: [{
-        type: "command",
-        command: `node ${process.cwd()}/.agileflow/scripts/damage-control-edit.js`,
-        timeout: 5
-      }]
-    },
-    {
-      matcher: "Write",
-      hooks: [{
-        type: "command",
-        command: `node ${process.cwd()}/.agileflow/scripts/damage-control-write.js`,
-        timeout: 5
-      }]
-    }
-  ]
-};
-// For Enhanced protection, add prompt hook to Bash:
-// {
-//   type: "prompt",
-//   prompt: "Evaluate if this bash command could cause destructive or irreversible changes to files, databases, or systems. If dangerous, block it."
-// }
-```
-**Implementation:**
-1. Read existing `.claude/settings.json` (create if missing)
-2. Initialize `hooks.PreToolUse` array if missing
-3. Remove any existing damage-control hooks (to allow reconfiguration)
-4. Add the new hooks
-5. Write back to settings.json
-### Step 9: Update Metadata
-```bash
-node -e "
-const fs = require('fs');
-const metaPath = 'docs/00-meta/agileflow-metadata.json';
-// Ensure directory exists
-fs.mkdirSync('docs/00-meta', { recursive: true });
-// Read or create metadata
-let meta = {};
-if (fs.existsSync(metaPath)) {
-  meta = JSON.parse(fs.readFileSync(metaPath, 'utf8'));
-}
-// Update damage control feature
-meta.features = meta.features || {};
-meta.features.damageControl = {
-  enabled: true,
-  protectionLevel: 'LEVEL_HERE',  // Replace with actual selection
-  version: '2.78.0',
-  configured_at: new Date().toISOString()
-};
-meta.updated = new Date().toISOString();
-fs.writeFileSync(metaPath, JSON.stringify(meta, null, 2));
-console.log('Updated metadata');
-"
-```
-### Step 10: Verify Scripts Exist
-```bash
-# Verify all required scripts exist
-MISSING=false
-for script in damage-control-bash.js damage-control-edit.js damage-control-write.js; do
-  if [ ! -f ".agileflow/scripts/$script" ]; then
-    echo "WARNING: Missing .agileflow/scripts/$script"
-    MISSING=true
-  fi
-done
-if [ "$MISSING" = "true" ]; then
-  echo "Some scripts missing. Run 'npx agileflow update' to restore."
-fi
-```
----
-## Success Output
-Display formatted success message:
-```
-Damage Control Configured!
-Protection Level: [Standard/Enhanced]
-Hooks Enabled:
-  Bash Tool:  Validates commands against patterns
-  Edit Tool:  Enforces path access controls
-  Write Tool: Enforces path access controls
-Protected Paths:
-  Zero Access: ~/.ssh/, ~/.aws/, .env files
-  Read-Only:   ~/.bashrc, package-lock.json
-  No Delete:   .agileflow/, .claude/, status.json
-Blocked Patterns: [N] bash patterns, [N] ask-first patterns
-Files Updated:
-  .agileflow/config/damage-control-patterns.yaml
-  .claude/settings.json
-To customize: Edit .agileflow/config/damage-control-patterns.yaml
-To test: Try running 'rm -rf /' (will be blocked)
-═══════════════════════════════════════════════════════════
-   RESTART CLAUDE CODE NOW!
-   Quit completely (Cmd+Q / Ctrl+Q), wait 5 seconds, restart
-   Hooks only take effect after restart!
-═══════════════════════════════════════════════════════════
-```
----
-## Disable Damage Control
-If user selects "Disable":
-1. Remove damage-control hooks from `.claude/settings.json`
-2. Update metadata to show disabled:
-```javascript
-meta.features.damageControl = {
-  enabled: false,
-  disabled_at: new Date().toISOString()
-};
-```
-3. Keep patterns file (user may re-enable later)
-4. Show restart reminder
----
-## View Current Config
-If user selects "View current config":
-1. Read and display `.agileflow/config/damage-control-patterns.yaml`
-2. Count patterns in each category
-3. List protected paths
-4. Show whether Enhanced mode is enabled
----
-## Rules
-- **ALWAYS use AskUserQuestion** for user choices - never ask users to type
-- **MERGE hooks** into existing settings.json - don't overwrite other hooks
-- **VERIFY scripts exist** before enabling hooks
-- **UPDATE metadata** for version tracking
-- **SHOW restart banner** at the end - hooks require Claude Code restart
-- **FAIL-OPEN principle** - if something goes wrong, don't break existing functionality