ai-inference-stepper 1.0.0

package/dist/utils/redaction.js

@@ -0,0 +1,41 @@
+/**
+ * Redact sensitive information from text before sending to AI providers
+ */
+export function redactSecrets(text) {
+    if (!text)
+        return text;
+    let redacted = text;
+    // AWS access keys
+    redacted = redacted.replace(/(A?KIA|AKIA)[A-Z0-9]{16}/g, '[REDACTED_AWS_KEY]');
+    // Generic API keys and tokens (common patterns)
+    redacted = redacted.replace(/[a-zA-Z0-9_-]{32,}/g, (match) => {
+        // Don't redact commit SHAs (typically 40 chars) or very long base64
+        if (match.length === 40 || match.length > 200)
+            return match;
+        return '[REDACTED_TOKEN]';
+    });
+    // Password/secret assignments in env-style
+    redacted = redacted.replace(/(password|passwd|secret|api_key|apikey|token|auth)(\s*[:=]\s*)(\S+)/gi, '$1$2[REDACTED]');
+    // Email addresses
+    redacted = redacted.replace(/[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/g, '[REDACTED_EMAIL]');
+    // Base64 encoded secrets (long base64 strings)
+    redacted = redacted.replace(/[A-Za-z0-9+/]{100,}={0,2}/g, '[REDACTED_BASE64]');
+    return redacted;
+}
+/**
+ * Redact sensitive fields from an object
+ */
+export function redactObject(obj) {
+    const result = { ...obj };
+    const sensitiveKeys = ['apiKey', 'api_key', 'token', 'password', 'secret', 'authorization'];
+    for (const key of Object.keys(result)) {
+        if (sensitiveKeys.includes(key.toLowerCase())) {
+            result[key] = '[REDACTED]';
+        }
+        else if (typeof result[key] === 'string') {
+            result[key] = redactSecrets(result[key]);
+        }
+    }
+    return result;
+}
+//# sourceMappingURL=redaction.js.map

package/dist/utils/redaction.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"redaction.js","sourceRoot":"","sources":["../../src/utils/redaction.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,IAAI,CAAC,IAAI;QAAE,OAAO,IAAI,CAAC;IAEvB,IAAI,QAAQ,GAAG,IAAI,CAAC;IAEpB,kBAAkB;IAClB,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,2BAA2B,EAAE,oBAAoB,CAAC,CAAC;IAE/E,gDAAgD;IAChD,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,qBAAqB,EAAE,CAAC,KAAK,EAAE,EAAE;QAC3D,oEAAoE;QACpE,IAAI,KAAK,CAAC,MAAM,KAAK,EAAE,IAAI,KAAK,CAAC,MAAM,GAAG,GAAG;YAAE,OAAO,KAAK,CAAC;QAC5D,OAAO,kBAAkB,CAAC;IAC5B,CAAC,CAAC,CAAC;IAEH,2CAA2C;IAC3C,QAAQ,GAAG,QAAQ,CAAC,OAAO,CACzB,uEAAuE,EACvE,gBAAgB,CACjB,CAAC;IAEF,kBAAkB;IAClB,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,iDAAiD,EAAE,kBAAkB,CAAC,CAAC;IAEnG,+CAA+C;IAC/C,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,4BAA4B,EAAE,mBAAmB,CAAC,CAAC;IAE/E,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAoC,GAAM;IACpE,MAAM,MAAM,GAA4B,EAAE,GAAG,GAAG,EAAE,CAAC;IACnD,MAAM,aAAa,GAAG,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,eAAe,CAAC,CAAC;IAE5F,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;QACtC,IAAI,aAAa,CAAC,QAAQ,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;YAC9C,MAAM,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;QAC7B,CAAC;aAAM,IAAI,OAAO,MAAM,CAAC,GAAG,CAAC,KAAK,QAAQ,EAAE,CAAC;YAC3C,MAAM,CAAC,GAAG,CAAC,GAAG,aAAa,CAAC,MAAM,CAAC,GAAG,CAAW,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,OAAO,MAAW,CAAC;AACrB,CAAC"}

package/dist/utils/safeRequest.d.ts

@@ -0,0 +1,38 @@
+import { AxiosRequestConfig } from 'axios';
+export interface SafeRequestOptions extends AxiosRequestConfig {
+    timeout?: number;
+    retryAfterHeader?: boolean;
+}
+export interface SafeRequestResult<T = unknown> {
+    data: T;
+    status: number;
+    headers: Record<string, string>;
+    retryAfter?: number;
+}
+export declare class RequestError extends Error {
+    status?: number | undefined;
+    code?: string | undefined;
+    retryAfter?: number | undefined;
+    constructor(message: string, status?: number | undefined, code?: string | undefined, retryAfter?: number | undefined);
+}
+/**
+ * Make an HTTP request with timeout and retry-after header parsing
+ */
+export declare function safeRequest<T = unknown>(url: string, options?: SafeRequestOptions): Promise<SafeRequestResult<T>>;
+/**
+ * Parse error and extract retry-after information
+ */
+export declare function parseRetryAfter(error: unknown): number | undefined;
+/**
+ * Check if error is retryable
+ */
+export declare function isRetryableError(error: unknown): boolean;
+/**
+ * Check if error is auth-related
+ */
+export declare function isAuthError(error: unknown): boolean;
+/**
+ * Check if error is rate limit
+ */
+export declare function isRateLimitError(error: unknown): boolean;
+//# sourceMappingURL=safeRequest.d.ts.map

package/dist/utils/safeRequest.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"safeRequest.d.ts","sourceRoot":"","sources":["../../src/utils/safeRequest.ts"],"names":[],"mappings":"AAAA,OAAc,EAAc,kBAAkB,EAAiB,MAAM,OAAO,CAAC;AAG7E,MAAM,WAAW,kBAAmB,SAAQ,kBAAkB;IAC5D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC5B;AAED,MAAM,WAAW,iBAAiB,CAAC,CAAC,GAAG,OAAO;IAC5C,IAAI,EAAE,CAAC,CAAC;IACR,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAChC,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAED,qBAAa,YAAa,SAAQ,KAAK;IAG5B,MAAM,CAAC,EAAE,MAAM;IACf,IAAI,CAAC,EAAE,MAAM;IACb,UAAU,CAAC,EAAE,MAAM;gBAH1B,OAAO,EAAE,MAAM,EACR,MAAM,CAAC,EAAE,MAAM,YAAA,EACf,IAAI,CAAC,EAAE,MAAM,YAAA,EACb,UAAU,CAAC,EAAE,MAAM,YAAA;CAK7B;AAED;;GAEG;AACH,wBAAsB,WAAW,CAAC,CAAC,GAAG,OAAO,EAC3C,GAAG,EAAE,MAAM,EACX,OAAO,GAAE,kBAAuB,GAC/B,OAAO,CAAC,iBAAiB,CAAC,CAAC,CAAC,CAAC,CAsE/B;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,KAAK,EAAE,OAAO,GAAG,MAAM,GAAG,SAAS,CAKlE;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAKxD;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAGnD;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAGxD"}

package/dist/utils/safeRequest.js

@@ -0,0 +1,104 @@
+import axios from 'axios';
+import { logger } from '../logging.js';
+export class RequestError extends Error {
+    status;
+    code;
+    retryAfter;
+    constructor(message, status, code, retryAfter) {
+        super(message);
+        this.status = status;
+        this.code = code;
+        this.retryAfter = retryAfter;
+        this.name = 'RequestError';
+    }
+}
+/**
+ * Make an HTTP request with timeout and retry-after header parsing
+ */
+export async function safeRequest(url, options = {}) {
+    const timeout = options.timeout || 15000;
+    try {
+        const response = await axios({
+            ...options,
+            url,
+            timeout,
+            validateStatus: (status) => status < 600, // Don't throw on any status
+        });
+        // Parse Retry-After header if present
+        let retryAfter;
+        const retryAfterHeader = response.headers['retry-after'];
+        if (retryAfterHeader) {
+            const parsed = parseInt(retryAfterHeader, 10);
+            retryAfter = isNaN(parsed) ? undefined : parsed;
+        }
+        // Throw on error statuses
+        if (response.status >= 400) {
+            throw new RequestError(`HTTP ${response.status}: ${response.statusText}`, response.status, `HTTP_${response.status}`, retryAfter);
+        }
+        return {
+            data: response.data,
+            status: response.status,
+            headers: response.headers,
+            retryAfter,
+        };
+    }
+    catch (error) {
+        if (error instanceof RequestError) {
+            throw error;
+        }
+        if (axios.isAxiosError(error)) {
+            const axiosError = error;
+            // Timeout
+            if (axiosError.code === 'ECONNABORTED' || axiosError.code === 'ETIMEDOUT') {
+                throw new RequestError('Request timeout', 408, 'TIMEOUT');
+            }
+            // Network errors
+            if (axiosError.code === 'ENOTFOUND' || axiosError.code === 'ECONNREFUSED') {
+                throw new RequestError('Network error', 503, 'NETWORK_ERROR');
+            }
+            // Parse response error
+            const status = axiosError.response?.status;
+            const retryAfter = axiosError.response?.headers['retry-after']
+                ? parseInt(axiosError.response.headers['retry-after'], 10)
+                : undefined;
+            throw new RequestError(axiosError.message, status, status ? `HTTP_${status}` : 'UNKNOWN', retryAfter);
+        }
+        logger.error({ error }, 'Unexpected request error');
+        throw new RequestError('Unexpected error', undefined, 'UNKNOWN');
+    }
+}
+/**
+ * Parse error and extract retry-after information
+ */
+export function parseRetryAfter(error) {
+    if (error instanceof RequestError && error.retryAfter) {
+        return error.retryAfter;
+    }
+    return undefined;
+}
+/**
+ * Check if error is retryable
+ */
+export function isRetryableError(error) {
+    if (!(error instanceof RequestError))
+        return false;
+    const retryableCodes = [408, 429, 500, 502, 503, 504];
+    return error.status ? retryableCodes.includes(error.status) : false;
+}
+/**
+ * Check if error is auth-related
+ */
+export function isAuthError(error) {
+    if (!(error instanceof RequestError))
+        return false;
+    return error.status === 401 || error.status === 403;
+}
+/**
+ * Check if error is rate limit
+ */
+export function isRateLimitError(error) {
+    if (!(error instanceof RequestError))
+        return false;
+    return error.status === 429;
+}
+//# sourceMappingURL=safeRequest.js.map

package/dist/utils/safeRequest.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"safeRequest.js","sourceRoot":"","sources":["../../src/utils/safeRequest.ts"],"names":[],"mappings":"AAAA,OAAO,KAAwD,MAAM,OAAO,CAAC;AAC7E,OAAO,EAAE,MAAM,EAAE,MAAM,eAAe,CAAC;AAcvC,MAAM,OAAO,YAAa,SAAQ,KAAK;IAG5B;IACA;IACA;IAJT,YACE,OAAe,EACR,MAAe,EACf,IAAa,EACb,UAAmB;QAE1B,KAAK,CAAC,OAAO,CAAC,CAAC;QAJR,WAAM,GAAN,MAAM,CAAS;QACf,SAAI,GAAJ,IAAI,CAAS;QACb,eAAU,GAAV,UAAU,CAAS;QAG1B,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;IAC7B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,GAAW,EACX,UAA8B,EAAE;IAEhC,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,KAAK,CAAC;IAEzC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAqB,MAAM,KAAK,CAAC;YAC7C,GAAG,OAAO;YACV,GAAG;YACH,OAAO;YACP,cAAc,EAAE,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,GAAG,GAAG,EAAE,4BAA4B;SACvE,CAAC,CAAC;QAEH,sCAAsC;QACtC,IAAI,UAA8B,CAAC;QACnC,MAAM,gBAAgB,GAAG,QAAQ,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QACzD,IAAI,gBAAgB,EAAE,CAAC;YACrB,MAAM,MAAM,GAAG,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC;YAC9C,UAAU,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,MAAM,CAAC;QAClD,CAAC;QAED,0BAA0B;QAC1B,IAAI,QAAQ,CAAC,MAAM,IAAI,GAAG,EAAE,CAAC;YAC3B,MAAM,IAAI,YAAY,CACpB,QAAQ,QAAQ,CAAC,MAAM,KAAK,QAAQ,CAAC,UAAU,EAAE,EACjD,QAAQ,CAAC,MAAM,EACf,QAAQ,QAAQ,CAAC,MAAM,EAAE,EACzB,UAAU,CACX,CAAC;QACJ,CAAC;QAED,OAAO;YACL,IAAI,EAAE,QAAQ,CAAC,IAAI;YACnB,MAAM,EAAE,QAAQ,CAAC,MAAM;YACvB,OAAO,EAAE,QAAQ,CAAC,OAAiC;YACnD,UAAU;SACX,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;YAClC,MAAM,KAAK,CAAC;QACd,CAAC;QAED,IAAI,KAAK,CAAC,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC;YAC9B,MAAM,UAAU,GAAG,KAAmB,CAAC;YAEvC,UAAU;YACV,IAAI,UAAU,CAAC,IAAI,KAAK,cAAc,IAAI,UAAU,CAAC,IAAI,KAAK,WAAW,EAAE,CAAC;gBAC1E,MAAM,IAAI,YAAY,CAAC,iBAAiB,EAAE,GAAG,EAAE,SAAS,CAAC,CAAC;YAC5D,CAAC;YAED,iBAAiB;YACjB,IAAI,UAAU,CAAC,IAAI,KAAK,WAAW,IAAI,UAAU,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;gBAC1E,MAAM,IAAI,YAAY,CAAC,eAAe,EAAE,GAAG,EAAE,eAAe,CAAC,CAAC;YAChE,CAAC;YAED,uBAAuB;YACvB,MAAM,MAAM,GAAG,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC;YAC3C,MAAM,UAAU,GAAG,UAAU,CAAC,QAAQ,EAAE,OAAO,CAAC,aAAa,CAAC;gBAC5D,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,EAAE,CAAC;gBAC1D,CAAC,CAAC,SAAS,CAAC;YAEd,MAAM,IAAI,YAAY,CACpB,UAAU,CAAC,OAAO,EAClB,MAAM,EACN,MAAM,CAAC,CAAC,CAAC,QAAQ,MAAM,EAAE,CAAC,CAAC,CAAC,SAAS,EACrC,UAAU,CACX,CAAC;QACJ,CAAC;QAED,MAAM,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,EAAE,0BAA0B,CAAC,CAAC;QACpD,MAAM,IAAI,YAAY,CAAC,kBAAkB,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;IACnE,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,KAAc;IAC5C,IAAI,KAAK,YAAY,YAAY,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;QACtD,OAAO,KAAK,CAAC,UAAU,CAAC;IAC1B,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAc;IAC7C,IAAI,CAAC,CAAC,KAAK,YAAY,YAAY,CAAC;QAAE,OAAO,KAAK,CAAC;IAEnD,MAAM,cAAc,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;IACtD,OAAO,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC;AACtE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,KAAc;IACxC,IAAI,CAAC,CAAC,KAAK,YAAY,YAAY,CAAC;QAAE,OAAO,KAAK,CAAC;IACnD,OAAO,KAAK,CAAC,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,MAAM,KAAK,GAAG,CAAC;AACtD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAc;IAC7C,IAAI,CAAC,CAAC,KAAK,YAAY,YAAY,CAAC;QAAE,OAAO,KAAK,CAAC;IACnD,OAAO,KAAK,CAAC,MAAM,KAAK,GAAG,CAAC;AAC9B,CAAC"}

package/dist/validation/report.schema.d.ts

@@ -0,0 +1,48 @@
+import { z } from 'zod';
+import { ReportOutput } from '../types.js';
+/**
+ * Comprehensive Zod schema for validating AI-generated report output
+ * with detailed error messages
+ */
+export declare const ReportOutputSchema: z.ZodObject<{
+    title: z.ZodEffects<z.ZodString, string, string>;
+    summary: z.ZodString;
+    changes: z.ZodArray<z.ZodString, "many">;
+    rationale: z.ZodString;
+    impact_and_tests: z.ZodString;
+    next_steps: z.ZodArray<z.ZodString, "many">;
+    tags: z.ZodEffects<z.ZodString, string, string>;
+}, "strip", z.ZodTypeAny, {
+    title: string;
+    summary: string;
+    changes: string[];
+    rationale: string;
+    impact_and_tests: string;
+    next_steps: string[];
+    tags: string;
+}, {
+    title: string;
+    summary: string;
+    changes: string[];
+    rationale: string;
+    impact_and_tests: string;
+    next_steps: string[];
+    tags: string;
+}>;
+/**
+ * Validate report output against schema
+ */
+export declare function validateReportOutput(data: unknown): {
+    valid: boolean;
+    result?: ReportOutput;
+    error?: string;
+};
+/**
+ * Safely parse JSON and validate
+ */
+export declare function parseAndValidateReport(jsonString: string): {
+    valid: boolean;
+    result?: ReportOutput;
+    error?: string;
+};
+//# sourceMappingURL=report.schema.d.ts.map

package/dist/validation/report.schema.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"report.schema.d.ts","sourceRoot":"","sources":["../../src/validation/report.schema.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C;;;GAGG;AACH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;;;;;;;;;;;;;EAkC7B,CAAC;AAEH;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,IAAI,EAAE,OAAO,GAAG;IACnD,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,YAAY,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAaA;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,UAAU,EAAE,MAAM,GAAG;IAC1D,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,CAAC,EAAE,YAAY,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,CAuBA"}

package/dist/validation/report.schema.js

@@ -0,0 +1,72 @@
+import { z } from 'zod';
+/**
+ * Comprehensive Zod schema for validating AI-generated report output
+ * with detailed error messages
+ */
+export const ReportOutputSchema = z.object({
+    title: z.string()
+        .min(10, 'Title must be at least 10 characters')
+        .max(120, 'Title must not exceed 120 characters')
+        .refine((val) => val.trim().length > 0, 'Title cannot be empty or whitespace only'),
+    summary: z.string()
+        .min(50, 'Summary must be at least 50 characters')
+        .max(2000, 'Summary must not exceed 2000 characters'),
+    changes: z.array(z.string().min(5, 'Each change must be at least 5 characters'))
+        .min(1, 'At least one change must be listed')
+        .max(50, 'Maximum 50 changes allowed'),
+    rationale: z.string()
+        .min(20, 'Rationale must be at least 20 characters')
+        .max(2000, 'Rationale must not exceed 2000 characters'),
+    impact_and_tests: z.string()
+        .min(20, 'Impact and tests section must be at least 20 characters')
+        .max(2000, 'Impact and tests section must not exceed 2000 characters'),
+    next_steps: z.array(z.string().min(5, 'Each next step must be at least 5 characters'))
+        .max(20, 'Maximum 20 next steps allowed'),
+    tags: z.string()
+        .max(200, 'Tags must not exceed 200 characters')
+        .refine((val) => val.split(',').every(tag => tag.trim().length > 0), 'Tags must be comma-separated with no empty values'),
+});
+/**
+ * Validate report output against schema
+ */
+export function validateReportOutput(data) {
+    try {
+        const validated = ReportOutputSchema.parse(data);
+        return { valid: true, result: validated };
+    }
+    catch (error) {
+        if (error instanceof z.ZodError) {
+            return {
+                valid: false,
+                error: error.errors.map((e) => `${e.path.join('.')}: ${e.message}`).join('; '),
+            };
+        }
+        return { valid: false, error: 'Unknown validation error' };
+    }
+}
+/**
+ * Safely parse JSON and validate
+ */
+export function parseAndValidateReport(jsonString) {
+    try {
+        // Clean up common AI model output issues
+        let cleaned = jsonString.trim();
+        // Remove markdown code blocks if present
+        cleaned = cleaned.replace(/^```json\s*/i, '').replace(/```\s*$/, '');
+        cleaned = cleaned.replace(/^```\s*/i, '').replace(/```\s*$/, '');
+        // Remove any leading/trailing text that isn't JSON
+        const jsonMatch = cleaned.match(/\{[\s\S]*\}/);
+        if (jsonMatch) {
+            cleaned = jsonMatch[0];
+        }
+        const parsed = JSON.parse(cleaned);
+        return validateReportOutput(parsed);
+    }
+    catch (error) {
+        if (error instanceof SyntaxError) {
+            return { valid: false, error: `Invalid JSON: ${error.message}` };
+        }
+        return { valid: false, error: 'Failed to parse JSON' };
+    }
+}
+//# sourceMappingURL=report.schema.js.map

package/dist/validation/report.schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"report.schema.js","sourceRoot":"","sources":["../../src/validation/report.schema.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAGxB;;;GAGG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IACzC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE;SACd,GAAG,CAAC,EAAE,EAAE,sCAAsC,CAAC;SAC/C,GAAG,CAAC,GAAG,EAAE,sCAAsC,CAAC;SAChD,MAAM,CACL,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,EAC9B,0CAA0C,CAC3C;IAEH,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;SAChB,GAAG,CAAC,EAAE,EAAE,wCAAwC,CAAC;SACjD,GAAG,CAAC,IAAI,EAAE,yCAAyC,CAAC;IAEvD,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,2CAA2C,CAAC,CAAC;SAC7E,GAAG,CAAC,CAAC,EAAE,oCAAoC,CAAC;SAC5C,GAAG,CAAC,EAAE,EAAE,4BAA4B,CAAC;IAExC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE;SAClB,GAAG,CAAC,EAAE,EAAE,0CAA0C,CAAC;SACnD,GAAG,CAAC,IAAI,EAAE,2CAA2C,CAAC;IAEzD,gBAAgB,EAAE,CAAC,CAAC,MAAM,EAAE;SACzB,GAAG,CAAC,EAAE,EAAE,yDAAyD,CAAC;SAClE,GAAG,CAAC,IAAI,EAAE,0DAA0D,CAAC;IAExE,UAAU,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,EAAE,8CAA8C,CAAC,CAAC;SACnF,GAAG,CAAC,EAAE,EAAE,+BAA+B,CAAC;IAE3C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;SACb,GAAG,CAAC,GAAG,EAAE,qCAAqC,CAAC;SAC/C,MAAM,CACL,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,EAC3D,mDAAmD,CACpD;CACJ,CAAC,CAAC;AAEH;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAAC,IAAa;IAKhD,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,kBAAkB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACjD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,SAAyB,EAAE,CAAC;IAC5D,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,CAAC,CAAC,QAAQ,EAAE,CAAC;YAChC,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,KAAK,EAAE,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;aAC/E,CAAC;QACJ,CAAC;QACD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC;IAC7D,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,UAAkB;IAKvD,IAAI,CAAC;QACH,yCAAyC;QACzC,IAAI,OAAO,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC;QAEhC,yCAAyC;QACzC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;QACrE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC;QAEjE,mDAAmD;QACnD,MAAM,SAAS,GAAG,OAAO,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;QAC/C,IAAI,SAAS,EAAE,CAAC;YACd,OAAO,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;QACzB,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACnC,OAAO,oBAAoB,CAAC,MAAM,CAAC,CAAC;IACtC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,WAAW,EAAE,CAAC;YACjC,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,iBAAiB,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;QACnE,CAAC;QACD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC;IACzD,CAAC;AACH,CAAC"}

package/dist/webhooks/delivery.d.ts

@@ -0,0 +1,31 @@
+export interface WebhookPayload {
+    jobId: string;
+    status: 'completed' | 'failed';
+    result?: unknown;
+    error?: string;
+    timestamp: number;
+}
+export interface WebhookConfig {
+    url: string;
+    secret: string;
+    maxRetries?: number;
+    retryDelayMs?: number;
+}
+/**
+ * Send webhook notification with bearer token + HMAC signature
+ * Implements retry logic for failed deliveries
+ */
+export declare function sendWebhook(config: WebhookConfig, payload: WebhookPayload, attempt?: number): Promise<{
+    success: boolean;
+    statusCode?: number;
+    error?: string;
+}>;
+/**
+ * Send success webhook notification
+ */
+export declare function notifyWebhookSuccess(webhookUrl: string, webhookSecret: string, jobId: string, result: unknown): Promise<void>;
+/**
+ * Send failure webhook notification
+ */
+export declare function notifyWebhookFailure(webhookUrl: string, webhookSecret: string, jobId: string, error: string): Promise<void>;
+//# sourceMappingURL=delivery.d.ts.map

package/dist/webhooks/delivery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery.d.ts","sourceRoot":"","sources":["../../src/webhooks/delivery.ts"],"names":[],"mappings":"AAKA,MAAM,WAAW,cAAc;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,WAAW,GAAG,QAAQ,CAAC;IAC/B,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,aAAa;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;CACzB;AAYD;;;GAGG;AACH,wBAAsB,WAAW,CAC7B,MAAM,EAAE,aAAa,EACrB,OAAO,EAAE,cAAc,EACvB,OAAO,GAAE,MAAU,GACpB,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,UAAU,CAAC,EAAE,MAAM,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAiEpE;AAED;;GAEG;AACH,wBAAsB,oBAAoB,CACtC,UAAU,EAAE,MAAM,EAClB,aAAa,EAAE,MAAM,EACrB,KAAK,EAAE,MAAM,EACb,MAAM,EAAE,OAAO,GAChB,OAAO,CAAC,IAAI,CAAC,CAmBf;AAED;;GAEG;AACH,wBAAsB,oBAAoB,CACtC,UAAU,EAAE,MAAM,EAClB,aAAa,EAAE,MAAM,EACrB,KAAK,EAAE,MAAM,EACb,KAAK,EAAE,MAAM,GACd,OAAO,CAAC,IAAI,CAAC,CAmBf"}

package/dist/webhooks/delivery.js

@@ -0,0 +1,102 @@
+// packages/stepper/src/webhooks/delivery.ts
+import crypto from 'crypto';
+import { logger, createChildLogger } from '../logging.js';
+/**
+ * Generate HMAC-SHA256 signature for webhook payload
+ */
+function generateSignature(payload, secret) {
+    return crypto
+        .createHmac('sha256', secret)
+        .update(payload)
+        .digest('hex');
+}
+/**
+ * Send webhook notification with bearer token + HMAC signature
+ * Implements retry logic for failed deliveries
+ */
+export async function sendWebhook(config, payload, attempt = 1) {
+    const log = createChildLogger({ jobId: payload.jobId, webhookAttempt: attempt });
+    const maxRetries = config.maxRetries || 3;
+    const retryDelayMs = config.retryDelayMs || 5000;
+    try {
+        const payloadString = JSON.stringify(payload);
+        const signature = generateSignature(payloadString, config.secret);
+        log.info({ url: config.url, attempt, maxRetries }, 'Sending webhook');
+        const response = await fetch(config.url, {
+            method: 'POST',
+            headers: {
+                'Content-Type': 'application/json',
+                'Authorization': `Bearer ${config.secret}`,
+                'X-Webhook-Signature': signature,
+                'X-Webhook-Timestamp': payload.timestamp.toString(),
+                'User-Agent': 'Stepper/1.0'
+            },
+            body: payloadString,
+            signal: AbortSignal.timeout(10000) // 10s timeout
+        });
+        if (response.ok) {
+            log.info({ statusCode: response.status }, 'Webhook delivered successfully');
+            return { success: true, statusCode: response.status };
+        }
+        // Non-OK response
+        const errorBody = await response.text().catch(() => 'Unable to read response');
+        log.warn({ statusCode: response.status, errorBody }, 'Webhook delivery failed with non-OK status');
+        // Retry on 5xx errors or specific 4xx errors
+        const shouldRetry = response.status >= 500 || response.status === 408 || response.status === 429;
+        if (shouldRetry && attempt < maxRetries) {
+            log.info({ nextAttempt: attempt + 1, delayMs: retryDelayMs }, 'Retrying webhook delivery');
+            await new Promise(resolve => setTimeout(resolve, retryDelayMs * attempt)); // Exponential backoff
+            return sendWebhook(config, payload, attempt + 1);
+        }
+        return {
+            success: false,
+            statusCode: response.status,
+            error: `HTTP ${response.status}: ${errorBody.substring(0, 200)}`
+        };
+    }
+    catch (error) {
+        const errorMessage = error instanceof Error ? error.message : String(error);
+        log.error({ error: errorMessage, attempt }, 'Webhook delivery error');
+        // Retry on network errors
+        if (attempt < maxRetries) {
+            log.info({ nextAttempt: attempt + 1, delayMs: retryDelayMs }, 'Retrying webhook after error');
+            await new Promise(resolve => setTimeout(resolve, retryDelayMs * attempt));
+            return sendWebhook(config, payload, attempt + 1);
+        }
+        return {
+            success: false,
+            error: `Network error after ${maxRetries} attempts: ${errorMessage}`
+        };
+    }
+}
+/**
+ * Send success webhook notification
+ */
+export async function notifyWebhookSuccess(webhookUrl, webhookSecret, jobId, result) {
+    const payload = {
+        jobId,
+        status: 'completed',
+        result,
+        timestamp: Date.now()
+    };
+    const webhookResult = await sendWebhook({ url: webhookUrl, secret: webhookSecret }, payload);
+    if (!webhookResult.success) {
+        logger.warn({ jobId, error: webhookResult.error }, 'Webhook delivery failed after all retries - job completed but notification not delivered');
+    }
+}
+/**
+ * Send failure webhook notification
+ */
+export async function notifyWebhookFailure(webhookUrl, webhookSecret, jobId, error) {
+    const payload = {
+        jobId,
+        status: 'failed',
+        error,
+        timestamp: Date.now()
+    };
+    const webhookResult = await sendWebhook({ url: webhookUrl, secret: webhookSecret }, payload);
+    if (!webhookResult.success) {
+        logger.warn({ jobId, error: webhookResult.error }, 'Failure webhook delivery failed - job failed and notification not delivered');
+    }
+}
+//# sourceMappingURL=delivery.js.map

package/dist/webhooks/delivery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"delivery.js","sourceRoot":"","sources":["../../src/webhooks/delivery.ts"],"names":[],"mappings":"AAAA,4CAA4C;AAE5C,OAAO,MAAM,MAAM,QAAQ,CAAC;AAC5B,OAAO,EAAE,MAAM,EAAE,iBAAiB,EAAE,MAAM,eAAe,CAAC;AAiB1D;;GAEG;AACH,SAAS,iBAAiB,CAAC,OAAe,EAAE,MAAc;IACtD,OAAO,MAAM;SACR,UAAU,CAAC,QAAQ,EAAE,MAAM,CAAC;SAC5B,MAAM,CAAC,OAAO,CAAC;SACf,MAAM,CAAC,KAAK,CAAC,CAAC;AACvB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC7B,MAAqB,EACrB,OAAuB,EACvB,UAAkB,CAAC;IAEnB,MAAM,GAAG,GAAG,iBAAiB,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,cAAc,EAAE,OAAO,EAAE,CAAC,CAAC;IAEjF,MAAM,UAAU,GAAG,MAAM,CAAC,UAAU,IAAI,CAAC,CAAC;IAC1C,MAAM,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,IAAI,CAAC;IAEjD,IAAI,CAAC;QACD,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;QAC9C,MAAM,SAAS,GAAG,iBAAiB,CAAC,aAAa,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QAElE,GAAG,CAAC,IAAI,CAAC,EAAE,GAAG,EAAE,MAAM,CAAC,GAAG,EAAE,OAAO,EAAE,UAAU,EAAE,EAAE,iBAAiB,CAAC,CAAC;QAEtE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,GAAG,EAAE;YACrC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACL,cAAc,EAAE,kBAAkB;gBAClC,eAAe,EAAE,UAAU,MAAM,CAAC,MAAM,EAAE;gBAC1C,qBAAqB,EAAE,SAAS;gBAChC,qBAAqB,EAAE,OAAO,CAAC,SAAS,CAAC,QAAQ,EAAE;gBACnD,YAAY,EAAE,aAAa;aAC9B;YACD,IAAI,EAAE,aAAa;YACnB,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,cAAc;SACpD,CAAC,CAAC;QAEH,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YACd,GAAG,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,EAAE,gCAAgC,CAAC,CAAC;YAC5E,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC;QAC1D,CAAC;QAED,kBAAkB;QAClB,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,yBAAyB,CAAC,CAAC;QAC/E,GAAG,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,4CAA4C,CAAC,CAAC;QAEnG,6CAA6C;QAC7C,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,CAAC;QAEjG,IAAI,WAAW,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;YACtC,GAAG,CAAC,IAAI,CAAC,EAAE,WAAW,EAAE,OAAO,GAAG,CAAC,EAAE,OAAO,EAAE,YAAY,EAAE,EAAE,2BAA2B,CAAC,CAAC;YAC3F,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC,sBAAsB;YACjG,OAAO,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;QAED,OAAO;YACH,OAAO,EAAE,KAAK;YACd,UAAU,EAAE,QAAQ,CAAC,MAAM;YAC3B,KAAK,EAAE,QAAQ,QAAQ,CAAC,MAAM,KAAK,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE;SACnE,CAAC;IAEN,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACb,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC5E,GAAG,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,YAAY,EAAE,OAAO,EAAE,EAAE,wBAAwB,CAAC,CAAC;QAEtE,0BAA0B;QAC1B,IAAI,OAAO,GAAG,UAAU,EAAE,CAAC;YACvB,GAAG,CAAC,IAAI,CAAC,EAAE,WAAW,EAAE,OAAO,GAAG,CAAC,EAAE,OAAO,EAAE,YAAY,EAAE,EAAE,8BAA8B,CAAC,CAAC;YAC9F,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,CAAC,CAAC;YAC1E,OAAO,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,CAAC,CAAC,CAAC;QACrD,CAAC;QAED,OAAO;YACH,OAAO,EAAE,KAAK;YACd,KAAK,EAAE,uBAAuB,UAAU,cAAc,YAAY,EAAE;SACvE,CAAC;IACN,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACtC,UAAkB,EAClB,aAAqB,EACrB,KAAa,EACb,MAAe;IAEf,MAAM,OAAO,GAAmB;QAC5B,KAAK;QACL,MAAM,EAAE,WAAW;QACnB,MAAM;QACN,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACxB,CAAC;IAEF,MAAM,aAAa,GAAG,MAAM,WAAW,CACnC,EAAE,GAAG,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,EAC1C,OAAO,CACV,CAAC;IAEF,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC;QACzB,MAAM,CAAC,IAAI,CACP,EAAE,KAAK,EAAE,KAAK,EAAE,aAAa,CAAC,KAAK,EAAE,EACrC,0FAA0F,CAC7F,CAAC;IACN,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACtC,UAAkB,EAClB,aAAqB,EACrB,KAAa,EACb,KAAa;IAEb,MAAM,OAAO,GAAmB;QAC5B,KAAK;QACL,MAAM,EAAE,QAAQ;QAChB,KAAK;QACL,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACxB,CAAC;IAEF,MAAM,aAAa,GAAG,MAAM,WAAW,CACnC,EAAE,GAAG,EAAE,UAAU,EAAE,MAAM,EAAE,aAAa,EAAE,EAC1C,OAAO,CACV,CAAC;IAEF,IAAI,CAAC,aAAa,CAAC,OAAO,EAAE,CAAC;QACzB,MAAM,CAAC,IAAI,CACP,EAAE,KAAK,EAAE,KAAK,EAAE,aAAa,CAAC,KAAK,EAAE,EACrC,6EAA6E,CAChF,CAAC;IACN,CAAC;AACL,CAAC"}

package/package.json

@@ -0,0 +1,75 @@
+{
+  "name": "ai-inference-stepper",
+  "version": "1.0.0",
+  "description": "Production-grade AI inference stepper with multi-provider fallback",
+  "type": "module",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    },
+    "./server": {
+      "import": "./dist/server/start.js",
+      "types": "./dist/server/start.d.ts"
+    },
+    "./app": {
+      "import": "./dist/server/app.js",
+      "types": "./dist/server/app.d.ts"
+    }
+  },
+  "bin": {
+    "stepper": "./dist/cli.js"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsx watch src/server/start.ts",
+    "start": "node dist/server/start.js",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "lint": "eslint src --ext .ts",
+    "lint:fix": "eslint src --ext .ts --fix",
+    "docker:build": "docker build -t commitdiary-stepper .",
+    "docker:run": "docker run -p 3001:3001 --env-file .env commitdiary-stepper",
+    "typecheck": "tsc --noEmit"
+  },
+  "dependencies": {
+    "axios": "^1.6.5",
+    "bottleneck": "^2.19.5",
+    "bullmq": "^5.1.8",
+    "cors": "^2.8.6",
+    "dotenv": "^17.2.3",
+    "express": "^4.18.2",
+    "express-rate-limit": "^8.2.1",
+    "helmet": "^8.1.0",
+    "ioredis": "^5.3.2",
+    "opossum": "^8.1.3",
+    "pino": "^8.17.2",
+    "pino-pretty": "^10.3.1",
+    "prom-client": "^15.1.0",
+    "uuid": "^9.0.1",
+    "zod": "^3.22.4"
+  },
+  "devDependencies": {
+    "@types/cors": "^2.8.19",
+    "@types/express": "^4.17.21",
+    "@types/node": "^20.11.5",
+    "@types/opossum": "^8.1.9",
+    "@types/uuid": "^9.0.8",
+    "@typescript-eslint/eslint-plugin": "^6.19.0",
+    "@typescript-eslint/parser": "^6.19.0",
+    "eslint": "^8.56.0",
+    "ioredis-mock": "^8.13.1",
+    "nock": "^13.5.6",
+    "tsx": "^4.7.0",
+    "typescript": "^5.3.3",
+    "vitest": "^1.6.1"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  }
+}

package/render.yaml

@@ -0,0 +1,25 @@
+services:
+  - type: web
+    name: commitdiary-stepper
+    env: node
+    rootDir: packages/stepper
+    plan: free
+    region: frankfurt
+    buildCommand: pnpm install && pnpm build
+    startCommand: pnpm start
+    envVars:
+      - key: NODE_ENV
+        value: production
+      - key: PORT
+        value: 3001
+      - key: REDIS_URL
+        sync: false
+      - key: API_KEY_ENABLED
+        value: "true"
+      - key: STEPPER_API_KEY
+        generateValue: true
+      - key: CORS_ENABLED
+        value: "true"
+      - key: RATE_LIMIT_ENABLED
+        value: "true"
+    healthCheckPath: /health

package/src/alerts/README.md

@@ -0,0 +1,25 @@
+# 🔔 Alerts & Notifications
+
+This module handles communicating critical system events to external channels, primarily **Discord**.
+
+## 🎯 Purpose
+
+- **Observability**: Know when the system is struggling in real-time.
+- **Incident Response**: Get notified immediately if all AI providers fail or if a circuit breaker opens.
+
+## 🚀 Features
+
+### Discord Integration
+
+Sends rich, formatted "embed" messages to a Discord webhook.
+
+**What gets alerted?**
+
+- **Circuit Breaker Open**: When a provider enters a failed state.
+- **Circuit Breaker Closed**: When a provider recovers.
+- **Job Failures**: When all providers fail and the system falls back to a template.
+- **System Errors**: Unexpected crashes or critical configuration issues.
+
+## 🛠️ Configuration
+
+Set the `DISCORD_WEBHOOK_URL` in your `.env` to enable these alerts. If not set, the system will gracefully skip alerting and only log to the console.