npm - aiox-core - Versions diffs - 5.0.0 → 5.0.2 - Mend

aiox-core 5.0.0 → 5.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (91) hide show

package/.aiox-core/data/entity-registry.yaml +5297 -1814
package/.aiox-core/data/registry-update-log.jsonl +2 -0
package/.aiox-core/development/templates/service-template/README.md.hbs +158 -158
package/.aiox-core/development/templates/service-template/__tests__/index.test.ts.hbs +237 -237
package/.aiox-core/development/templates/service-template/client.ts.hbs +403 -403
package/.aiox-core/development/templates/service-template/errors.ts.hbs +182 -182
package/.aiox-core/development/templates/service-template/index.ts.hbs +120 -120
package/.aiox-core/development/templates/service-template/package.json.hbs +87 -87
package/.aiox-core/development/templates/service-template/types.ts.hbs +145 -145
package/.aiox-core/development/templates/squad-template/LICENSE +21 -21
package/.aiox-core/infrastructure/scripts/tool-resolver.js +4 -4
package/.aiox-core/infrastructure/templates/aiox-sync.yaml.template +182 -182
package/.aiox-core/infrastructure/templates/coderabbit.yaml.template +279 -279
package/.aiox-core/infrastructure/templates/github-workflows/ci.yml.template +169 -169
package/.aiox-core/infrastructure/templates/github-workflows/pr-automation.yml.template +330 -330
package/.aiox-core/infrastructure/templates/github-workflows/release.yml.template +196 -196
package/.aiox-core/infrastructure/templates/gitignore/gitignore-aiox-base.tmpl +63 -63
package/.aiox-core/infrastructure/templates/gitignore/gitignore-brownfield-merge.tmpl +18 -18
package/.aiox-core/infrastructure/templates/gitignore/gitignore-node.tmpl +85 -85
package/.aiox-core/infrastructure/templates/gitignore/gitignore-python.tmpl +145 -145
package/.aiox-core/install-manifest.yaml +58 -58
package/.aiox-core/local-config.yaml.template +71 -71
package/.aiox-core/monitor/hooks/lib/__init__.py +1 -1
package/.aiox-core/monitor/hooks/lib/enrich.py +58 -58
package/.aiox-core/monitor/hooks/lib/send_event.py +47 -47
package/.aiox-core/monitor/hooks/notification.py +29 -29
package/.aiox-core/monitor/hooks/post_tool_use.py +45 -45
package/.aiox-core/monitor/hooks/pre_compact.py +29 -29
package/.aiox-core/monitor/hooks/pre_tool_use.py +40 -40
package/.aiox-core/monitor/hooks/stop.py +29 -29
package/.aiox-core/monitor/hooks/subagent_stop.py +29 -29
package/.aiox-core/monitor/hooks/user_prompt_submit.py +38 -38
package/.aiox-core/product/templates/adr.hbs +125 -125
package/.aiox-core/product/templates/dbdr.hbs +241 -241
package/.aiox-core/product/templates/engine/elicitation.js +2 -3
package/.aiox-core/product/templates/epic.hbs +212 -212
package/.aiox-core/product/templates/pmdr.hbs +186 -186
package/.aiox-core/product/templates/prd-v2.0.hbs +216 -216
package/.aiox-core/product/templates/prd.hbs +201 -201
package/.aiox-core/product/templates/story.hbs +263 -263
package/.aiox-core/product/templates/task.hbs +170 -170
package/.aiox-core/product/templates/tmpl-comment-on-examples.sql +158 -158
package/.aiox-core/product/templates/tmpl-migration-script.sql +91 -91
package/.aiox-core/product/templates/tmpl-rls-granular-policies.sql +104 -104
package/.aiox-core/product/templates/tmpl-rls-kiss-policy.sql +10 -10
package/.aiox-core/product/templates/tmpl-rls-roles.sql +135 -135
package/.aiox-core/product/templates/tmpl-rls-simple.sql +77 -77
package/.aiox-core/product/templates/tmpl-rls-tenant.sql +152 -152
package/.aiox-core/product/templates/tmpl-rollback-script.sql +77 -77
package/.aiox-core/product/templates/tmpl-seed-data.sql +140 -140
package/.aiox-core/product/templates/tmpl-smoke-test.sql +16 -16
package/.aiox-core/product/templates/tmpl-staging-copy-merge.sql +139 -139
package/.aiox-core/product/templates/tmpl-stored-proc.sql +140 -140
package/.aiox-core/product/templates/tmpl-trigger.sql +152 -152
package/.aiox-core/product/templates/tmpl-view-materialized.sql +133 -133
package/.aiox-core/product/templates/tmpl-view.sql +177 -177
package/.aiox-core/scripts/pm.sh +0 -0
package/.claude/hooks/code-intel-pretool.cjs +107 -0
package/.claude/hooks/enforce-architecture-first.py +196 -196
package/.claude/hooks/mind-clone-governance.py +192 -192
package/.claude/hooks/read-protection.py +151 -151
package/.claude/hooks/slug-validation.py +176 -176
package/.claude/hooks/sql-governance.py +182 -182
package/.claude/hooks/write-path-validation.py +194 -194
package/LICENSE +33 -33
package/bin/aiox-graph.js +0 -0
package/bin/aiox-minimal.js +0 -0
package/bin/aiox.js +0 -0
package/docs/guides/aios-workflows/README.md +247 -0
package/docs/guides/aios-workflows/bob-orchestrator-workflow.md +1536 -0
package/package.json +1 -1
package/packages/aiox-install/bin/aiox-install.js +0 -0
package/packages/aiox-install/bin/edmcp.js +0 -0
package/packages/aiox-pro-cli/bin/aiox-pro.js +0 -0
package/packages/installer/src/wizard/pro-setup.js +210 -123
package/pro/README.md +66 -0
package/pro/license/degradation.js +220 -0
package/pro/license/errors.js +450 -0
package/pro/license/feature-gate.js +354 -0
package/pro/license/index.js +181 -0
package/pro/license/license-api.js +679 -0
package/pro/license/license-cache.js +523 -0
package/pro/license/license-crypto.js +303 -0
package/scripts/check-markdown-links.py +352 -352
package/scripts/dashboard-parallel-dev.sh +0 -0
package/scripts/dashboard-parallel-phase3.sh +0 -0
package/scripts/dashboard-parallel-phase4.sh +0 -0
package/scripts/glue/README.md +355 -0
package/scripts/glue/compose-agent-prompt.cjs +362 -0
package/scripts/install-monitor-hooks.sh +0 -0
package/.aiox-core/lib/build.json +0 -1

package/.aiox-core/product/templates/tmpl-migration-script.sql CHANGED Viewed

@@ -1,91 +1,91 @@
--- Migration Script Template
--- Migration: :migration_name
--- Created: :created_date
--- Author: :author
--- Description: :description
---
--- IMPORTANT: Run in transaction, test with dry-run first
--- ROLLBACK: See tmpl-rollback-script.sql for corresponding rollback
-BEGIN;
--- =============================================================================
--- PRE-MIGRATION CHECKS
--- =============================================================================
--- Verify prerequisites are met
-DO $$
-BEGIN
-    -- Add any precondition checks here
-    -- Example: ASSERT (SELECT EXISTS (SELECT 1 FROM :prerequisite_table));
-    RAISE NOTICE 'Pre-migration checks passed';
-END $$;
--- =============================================================================
--- SCHEMA CHANGES
--- =============================================================================
--- Create new table (if needed)
-CREATE TABLE IF NOT EXISTS :table_name (
-    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-    -- Add columns here
-    :column_name :column_type :constraints,
-    -- Standard audit columns
-    created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
-    updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
-);
--- Add column to existing table (if needed)
--- ALTER TABLE :existing_table ADD COLUMN IF NOT EXISTS :new_column :column_type;
--- Create index (if needed)
--- CREATE INDEX IF NOT EXISTS idx_:table_:column ON :table_name (:column_name);
--- =============================================================================
--- DATA MIGRATION (if needed)
--- =============================================================================
--- Migrate data from old structure to new
--- INSERT INTO :new_table (col1, col2)
--- SELECT old_col1, old_col2 FROM :old_table;
--- =============================================================================
--- POST-MIGRATION SETUP
--- =============================================================================
--- Add updated_at trigger
-CREATE OR REPLACE FUNCTION update_updated_at_column()
-RETURNS TRIGGER AS $$
-BEGIN
-    NEW.updated_at = NOW();
-    RETURN NEW;
-END;
-$$ LANGUAGE plpgsql;
-DROP TRIGGER IF EXISTS trigger_update_:table_name_updated_at ON :table_name;
-CREATE TRIGGER trigger_update_:table_name_updated_at
-    BEFORE UPDATE ON :table_name
-    FOR EACH ROW
-    EXECUTE FUNCTION update_updated_at_column();
--- Add table comments
-COMMENT ON TABLE :table_name IS ':table_description';
-COMMENT ON COLUMN :table_name.:column_name IS ':column_description';
--- =============================================================================
--- VERIFICATION
--- =============================================================================
-DO $$
-BEGIN
-    -- Verify migration was successful
-    ASSERT (SELECT EXISTS (
-        SELECT 1 FROM information_schema.tables
-        WHERE table_name = ':table_name'
-    )), 'Table :table_name was not created';
-    RAISE NOTICE 'Migration completed successfully';
-END $$;
-COMMIT;
+-- Migration Script Template
+-- Migration: :migration_name
+-- Created: :created_date
+-- Author: :author
+-- Description: :description
+--
+-- IMPORTANT: Run in transaction, test with dry-run first
+-- ROLLBACK: See tmpl-rollback-script.sql for corresponding rollback
+BEGIN;
+-- =============================================================================
+-- PRE-MIGRATION CHECKS
+-- =============================================================================
+-- Verify prerequisites are met
+DO $$
+BEGIN
+    -- Add any precondition checks here
+    -- Example: ASSERT (SELECT EXISTS (SELECT 1 FROM :prerequisite_table));
+    RAISE NOTICE 'Pre-migration checks passed';
+END $$;
+-- =============================================================================
+-- SCHEMA CHANGES
+-- =============================================================================
+-- Create new table (if needed)
+CREATE TABLE IF NOT EXISTS :table_name (
+    id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+    -- Add columns here
+    :column_name :column_type :constraints,
+    -- Standard audit columns
+    created_at TIMESTAMPTZ NOT NULL DEFAULT NOW(),
+    updated_at TIMESTAMPTZ NOT NULL DEFAULT NOW()
+);
+-- Add column to existing table (if needed)
+-- ALTER TABLE :existing_table ADD COLUMN IF NOT EXISTS :new_column :column_type;
+-- Create index (if needed)
+-- CREATE INDEX IF NOT EXISTS idx_:table_:column ON :table_name (:column_name);
+-- =============================================================================
+-- DATA MIGRATION (if needed)
+-- =============================================================================
+-- Migrate data from old structure to new
+-- INSERT INTO :new_table (col1, col2)
+-- SELECT old_col1, old_col2 FROM :old_table;
+-- =============================================================================
+-- POST-MIGRATION SETUP
+-- =============================================================================
+-- Add updated_at trigger
+CREATE OR REPLACE FUNCTION update_updated_at_column()
+RETURNS TRIGGER AS $$
+BEGIN
+    NEW.updated_at = NOW();
+    RETURN NEW;
+END;
+$$ LANGUAGE plpgsql;
+DROP TRIGGER IF EXISTS trigger_update_:table_name_updated_at ON :table_name;
+CREATE TRIGGER trigger_update_:table_name_updated_at
+    BEFORE UPDATE ON :table_name
+    FOR EACH ROW
+    EXECUTE FUNCTION update_updated_at_column();
+-- Add table comments
+COMMENT ON TABLE :table_name IS ':table_description';
+COMMENT ON COLUMN :table_name.:column_name IS ':column_description';
+-- =============================================================================
+-- VERIFICATION
+-- =============================================================================
+DO $$
+BEGIN
+    -- Verify migration was successful
+    ASSERT (SELECT EXISTS (
+        SELECT 1 FROM information_schema.tables
+        WHERE table_name = ':table_name'
+    )), 'Table :table_name was not created';
+    RAISE NOTICE 'Migration completed successfully';
+END $$;
+COMMIT;

package/.aiox-core/product/templates/tmpl-rls-granular-policies.sql CHANGED Viewed

@@ -1,104 +1,104 @@
--- Granular RLS Policies Template
--- Table: :table_name
--- Security Model: Granular (separate policies per operation)
--- Created: :created_date
---
--- This template creates separate policies for SELECT, INSERT, UPDATE, DELETE
--- Useful when different users have different permissions per operation
--- Enable RLS on table
-ALTER TABLE :table_name ENABLE ROW LEVEL SECURITY;
--- Force RLS for table owner too (recommended for security)
-ALTER TABLE :table_name FORCE ROW LEVEL SECURITY;
--- =============================================================================
--- SELECT POLICY - Who can read rows
--- =============================================================================
-DROP POLICY IF EXISTS ":table_name_select" ON :table_name;
-CREATE POLICY ":table_name_select"
-ON :table_name
-FOR SELECT
-TO authenticated
-USING (
-    -- Owner can read their own rows
-    auth.uid() = user_id
-    -- OR user has read permission via role
-    OR EXISTS (
-        SELECT 1 FROM user_roles
-        WHERE user_id = auth.uid()
-        AND role IN ('admin', 'reader')
-    )
-);
--- =============================================================================
--- INSERT POLICY - Who can create rows
--- =============================================================================
-DROP POLICY IF EXISTS ":table_name_insert" ON :table_name;
-CREATE POLICY ":table_name_insert"
-ON :table_name
-FOR INSERT
-TO authenticated
-WITH CHECK (
-    -- User can only insert rows they will own
-    auth.uid() = user_id
-    -- OR user has creator permission
-    OR EXISTS (
-        SELECT 1 FROM user_roles
-        WHERE user_id = auth.uid()
-        AND role IN ('admin', 'creator')
-    )
-);
--- =============================================================================
--- UPDATE POLICY - Who can modify rows
--- =============================================================================
-DROP POLICY IF EXISTS ":table_name_update" ON :table_name;
-CREATE POLICY ":table_name_update"
-ON :table_name
-FOR UPDATE
-TO authenticated
-USING (
-    -- Can only see rows to update if owner
-    auth.uid() = user_id
-    OR EXISTS (
-        SELECT 1 FROM user_roles
-        WHERE user_id = auth.uid()
-        AND role IN ('admin', 'editor')
-    )
-)
-WITH CHECK (
-    -- Can only update to valid state
-    auth.uid() = user_id
-    OR EXISTS (
-        SELECT 1 FROM user_roles
-        WHERE user_id = auth.uid()
-        AND role IN ('admin', 'editor')
-    )
-);
--- =============================================================================
--- DELETE POLICY - Who can delete rows
--- =============================================================================
-DROP POLICY IF EXISTS ":table_name_delete" ON :table_name;
-CREATE POLICY ":table_name_delete"
-ON :table_name
-FOR DELETE
-TO authenticated
-USING (
-    -- Only owner or admin can delete
-    auth.uid() = user_id
-    OR EXISTS (
-        SELECT 1 FROM user_roles
-        WHERE user_id = auth.uid()
-        AND role = 'admin'
-    )
-);
--- =============================================================================
--- VERIFICATION
--- =============================================================================
--- Test these policies with:
--- SET LOCAL ROLE authenticated;
--- SET LOCAL request.jwt.claims = '{"sub": "user-uuid-here"}';
--- SELECT * FROM :table_name; -- Should only return authorized rows
+-- Granular RLS Policies Template
+-- Table: :table_name
+-- Security Model: Granular (separate policies per operation)
+-- Created: :created_date
+--
+-- This template creates separate policies for SELECT, INSERT, UPDATE, DELETE
+-- Useful when different users have different permissions per operation
+-- Enable RLS on table
+ALTER TABLE :table_name ENABLE ROW LEVEL SECURITY;
+-- Force RLS for table owner too (recommended for security)
+ALTER TABLE :table_name FORCE ROW LEVEL SECURITY;
+-- =============================================================================
+-- SELECT POLICY - Who can read rows
+-- =============================================================================
+DROP POLICY IF EXISTS ":table_name_select" ON :table_name;
+CREATE POLICY ":table_name_select"
+ON :table_name
+FOR SELECT
+TO authenticated
+USING (
+    -- Owner can read their own rows
+    auth.uid() = user_id
+    -- OR user has read permission via role
+    OR EXISTS (
+        SELECT 1 FROM user_roles
+        WHERE user_id = auth.uid()
+        AND role IN ('admin', 'reader')
+    )
+);
+-- =============================================================================
+-- INSERT POLICY - Who can create rows
+-- =============================================================================
+DROP POLICY IF EXISTS ":table_name_insert" ON :table_name;
+CREATE POLICY ":table_name_insert"
+ON :table_name
+FOR INSERT
+TO authenticated
+WITH CHECK (
+    -- User can only insert rows they will own
+    auth.uid() = user_id
+    -- OR user has creator permission
+    OR EXISTS (
+        SELECT 1 FROM user_roles
+        WHERE user_id = auth.uid()
+        AND role IN ('admin', 'creator')
+    )
+);
+-- =============================================================================
+-- UPDATE POLICY - Who can modify rows
+-- =============================================================================
+DROP POLICY IF EXISTS ":table_name_update" ON :table_name;
+CREATE POLICY ":table_name_update"
+ON :table_name
+FOR UPDATE
+TO authenticated
+USING (
+    -- Can only see rows to update if owner
+    auth.uid() = user_id
+    OR EXISTS (
+        SELECT 1 FROM user_roles
+        WHERE user_id = auth.uid()
+        AND role IN ('admin', 'editor')
+    )
+)
+WITH CHECK (
+    -- Can only update to valid state
+    auth.uid() = user_id
+    OR EXISTS (
+        SELECT 1 FROM user_roles
+        WHERE user_id = auth.uid()
+        AND role IN ('admin', 'editor')
+    )
+);
+-- =============================================================================
+-- DELETE POLICY - Who can delete rows
+-- =============================================================================
+DROP POLICY IF EXISTS ":table_name_delete" ON :table_name;
+CREATE POLICY ":table_name_delete"
+ON :table_name
+FOR DELETE
+TO authenticated
+USING (
+    -- Only owner or admin can delete
+    auth.uid() = user_id
+    OR EXISTS (
+        SELECT 1 FROM user_roles
+        WHERE user_id = auth.uid()
+        AND role = 'admin'
+    )
+);
+-- =============================================================================
+-- VERIFICATION
+-- =============================================================================
+-- Test these policies with:
+-- SET LOCAL ROLE authenticated;
+-- SET LOCAL request.jwt.claims = '{"sub": "user-uuid-here"}';
+-- SELECT * FROM :table_name; -- Should only return authorized rows

package/.aiox-core/product/templates/tmpl-rls-kiss-policy.sql CHANGED Viewed

@@ -1,10 +1,10 @@
--- KISS single FOR ALL policy template (owner-only by column user_id)
-ALTER TABLE :table ENABLE ROW LEVEL SECURITY;
-DROP POLICY IF EXISTS ":table_kiss_all" ON :table;
-CREATE POLICY ":table_kiss_all"
-ON :table
-FOR ALL
-TO authenticated
-USING (auth.uid() = user_id)
-WITH CHECK (auth.uid() = user_id);
+-- KISS single FOR ALL policy template (owner-only by column user_id)
+ALTER TABLE :table ENABLE ROW LEVEL SECURITY;
+DROP POLICY IF EXISTS ":table_kiss_all" ON :table;
+CREATE POLICY ":table_kiss_all"
+ON :table
+FOR ALL
+TO authenticated
+USING (auth.uid() = user_id)
+WITH CHECK (auth.uid() = user_id);