npm - altimate-code - Versions diffs - 0.5.0 → 0.5.2 - Mend

altimate-code 0.5.0 → 0.5.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -5,6 +5,51 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
+## [0.5.2] - 2026-03-19
+### Added
+- Trace history dialog (`/trace` command) — browse, search, and open past session traces from the TUI (#297)
+- Docs showcase examples with screenshots (#292)
+### Fixed
+- TUI trace dialog now respects custom `tracing.dir` config — previously always used default directory (#307)
+- WebFetch `clearTimeout` leak — DNS failures no longer leak timer handles (#307)
+- WebFetch User-Agent strategy inverted to honest-bot-first — reduces 403 blocks from TLS fingerprint mismatch (#303)
+- Snowflake SDK stdout log noise suppressed in TUI via `additionalLogToConsole: false` (#305, #301)
+- `cleanTitle` fallback in trace dialog no longer returns empty string (#307)
+- Error logging added to `openTraceInBrowser` for debuggability (#307)
+- `altimate_change` markers added to `webfetch.ts` for upstream merge compatibility (#307)
+### Changed
+- Snowflake SDK minimum version bumped to `^2.0.3` for log suppression support (#305)
+- Removed brew from docs and README (#299)
+- Fixed README typo (`altimate` → `altimate-code`) (#293)
+## [0.5.1] - 2026-03-19
+### Added
+- Simplified agent modes: 3 primary modes (`builder`, `analyst`, `plan`) replacing 7 — cleaner UX with focused roles (#282)
+- SQL write access control — `builder` prompts for approval on write queries, `analyst` blocks them entirely, destructive SQL (`DROP DATABASE`, `TRUNCATE`) hard-blocked (#282)
+- `core_failure` telemetry with PII-safe input signatures — captures tool failures with masked SQL literals and redacted secrets (#245)
+- `peerDependencies` for database drivers in published npm packages (#273)
+- Comprehensive docs restructuring with new Changelog, Getting Started, and Tools reference pages (#284)
+### Fixed
+- Replace `escapeSqlString` with parameterized query binds in `finops/schema` modules (#277)
+- Driver error messages now suggest `npm install` instead of `bun add` (#273)
+- System prompt traced only once per session to avoid duplication (#287)
+### Changed
+- Bump `@altimateai/altimate-core` to 0.2.5 — adds Rust-side failure telemetry with PII masking
+- Removed 5 agent prompts: `executive`, `migrator`, `researcher`, `trainer`, `validator` (#282)
+- README cleanup and updated branding (#288)
 ## [0.5.0] - 2026-03-18
 ### Added

package/README.md CHANGED Viewed

@@ -7,19 +7,16 @@
 **The open-source data engineering harness.**
-The intelligence layer for data engineering AI — 99+ deterministic tools for SQL analysis,
+The intelligence layer for data engineering AI — 100+ deterministic tools for SQL analysis,
 column-level lineage, dbt, FinOps, and warehouse connectivity across every major cloud platform.
 Run standalone in your terminal, embed underneath Claude Code or Codex, or integrate
 into CI pipelines and orchestration DAGs. Precision data tooling for any LLM.
-[![npm](https://img.shields.io/npm/v/@altimateai/altimate-code)](https://www.npmjs.com/package/@altimateai/altimate-code)
-[![npm](https://img.shields.io/npm/v/@altimateai/altimate-core)](https://www.npmjs.com/package/@altimateai/altimate-core)
-[![npm downloads](https://img.shields.io/npm/dm/@altimateai/altimate-code)](https://www.npmjs.com/package/@altimateai/altimate-code)
+[![npm](https://img.shields.io/npm/v/altimate-code)](https://www.npmjs.com/package/altimate-code)
 [![License: MIT](https://img.shields.io/badge/License-MIT-blue.svg)](./LICENSE)
-[![CI](https://github.com/AltimateAI/altimate-code/actions/workflows/ci.yml/badge.svg)](https://github.com/AltimateAI/altimate-code/actions/workflows/ci.yml)
-[![Slack](https://img.shields.io/badge/Slack-Join%20Community-4A154B?logo=slack)](https://altimate.ai/slack)
-[![Docs](https://img.shields.io/badge/docs-altimateai.github.io-blue)](https://altimateai.github.io/altimate-code)
+[![Slack](https://img.shields.io/badge/Slack-Join%20Community-4A154B?logo=slack)](https://altimate.studio/join-agentic-data-engineering-slack)
+[![Docs](https://img.shields.io/badge/docs-docs.altimate.sh-blue)](https://docs.altimate.sh)
 </div>
@@ -28,11 +25,7 @@ into CI pipelines and orchestration DAGs. Precision data tooling for any LLM.
 ## Install
 ```bash
-# npm (recommended)
-npm install -g @altimateai/altimate-code
-# Homebrew
-brew install AltimateAI/tap/altimate-code
+npm install -g altimate-code
 ```
 Then — in order:
@@ -43,8 +36,6 @@ altimate        # Launch the TUI
 /connect        # Interactive setup — choose your provider and enter your API key
 ```
-> **No API key?** Select **Codex** in the `/connect` menu — it's built-in and requires no setup.
 Or set an environment variable directly:
 ```bash
 export ANTHROPIC_API_KEY=your_key   # Anthropic Claude
@@ -58,7 +49,9 @@ altimate /discover
 `/discover` auto-detects dbt projects, warehouse connections (from `~/.dbt/profiles.yml`, Docker, environment variables), and installed tools (dbt, sqlfluff, airflow, dagster, and more). Skip this and start building — you can always run it later.
-> **Zero Python setup required.** On first run, the CLI automatically downloads [`uv`](https://github.com/astral-sh/uv), creates an isolated Python environment, and installs the data engine with all warehouse drivers. No `pip install`, no virtualenv management.
+> **Headless / scripted usage:** `altimate --yolo` auto-approves all permission prompts. Not recommended with live warehouse connections.
+> **Zero additional setup.** One command install.
 ## Why a specialized harness?
@@ -90,9 +83,9 @@ no hallucinated SQL advice, no guessing at schema, no missed PII.
 - **FinOps** — credit consumption, expensive query detection, warehouse right-sizing, idle resource cleanup
 - **PII Detection** — 15 categories, 30+ regex patterns, enforced pre-execution
-**Works seamlessly with Claude Code and Codex.** altimate is the data engineering tool layer — use it standalone in your terminal, or mount it as the harness underneath whatever AI agent you already run. The two are complementary.
+**Works seamlessly with Claude Code and Codex.** Use `/configure-claude` or `/configure-codex` to set up integration in one step. altimate is the data engineering tool layer — use it standalone in your terminal, or mount it as the harness underneath whatever AI agent you already run. The two are complementary.
-altimate is a fork of [OpenCode](https://github.com/anomalyco/opencode) rebuilt for data teams. Model-agnostic — bring your own LLM or run locally with Ollama.
+altimate-code is a fork of [OpenCode](https://github.com/anomalyco/opencode) rebuilt for data teams. Model-agnostic — bring your own LLM or run locally with Ollama.
 ## Quick demo
@@ -146,23 +139,19 @@ Teach your AI teammate project-specific patterns, naming conventions, and best p
 ## Agent Modes
-Each agent has scoped permissions and purpose-built tools for its role.
+Each mode has scoped permissions, tool access, and SQL write-access control.
-| Agent | Role | Access |
+| Mode | Role | Access |
 |---|---|---|
-| **Builder** | Create dbt models, SQL pipelines, and data transformations | Full read/write |
-| **Analyst** | Explore data, run SELECT queries, and generate insights | Read-only enforced |
-| **Validator** | Data quality checks, schema validation, test coverage analysis | Read + validate |
-| **Migrator** | Cross-warehouse SQL translation, schema migration, dialect conversion | Read/write for migrations |
-| **Researcher** | Deep-dive analysis, documentation research, and knowledge extraction | Read-only |
-| **Trainer** | Teach project-specific patterns, naming conventions, and best practices | Read + write training data |
-| **Executive** | Business-audience summaries — translates findings into revenue, cost, and compliance impact | Read-only |
+| **Builder** | Create dbt models, SQL pipelines, and data transformations | Full read/write (write SQL prompts for approval; `DROP DATABASE`/`DROP SCHEMA`/`TRUNCATE` hard-blocked) |
+| **Analyst** | Explore data, run SELECT queries, FinOps analysis, and generate insights | Read-only enforced (SELECT only, no file writes) |
+| **Plan** | Outline an approach before acting | Minimal (read files only, no SQL or bash) |
-> **New to altimate?** Start with **Analyst mode** — it's read-only and safe to run against production connections.
+> **New to altimate?** Start with **Analyst mode** — it's read-only and safe to run against production connections. Need specialized workflows (validation, migration, research)? Create [custom agent modes](https://docs.altimate.sh).
 ## Supported Warehouses
-Snowflake · BigQuery · Databricks · PostgreSQL · Redshift · DuckDB · MySQL · SQL Server
+Snowflake · BigQuery · Databricks · PostgreSQL · Redshift · DuckDB · MySQL · SQL Server · Oracle · SQLite
 First-class support with schema indexing, query execution, and metadata introspection. SSH tunneling available for secure connections.
@@ -172,46 +161,13 @@ Model-agnostic — bring your own provider or run locally.
 Anthropic · OpenAI · Google Gemini · Google Vertex AI · Amazon Bedrock · Azure OpenAI · Mistral · Groq · DeepInfra · Cerebras · Cohere · Together AI · Perplexity · xAI · OpenRouter · Ollama · GitHub Copilot
-> **No API key?** **Codex** is a built-in provider with no key required. Select it via `/connect` to start immediately.
 ## Skills
 altimate ships with built-in skills for every common data engineering task — type `/` in the TUI to browse available skills and get autocomplete. No memorization required.
-## Architecture
-```
-altimate (TypeScript CLI)
-        |
-   @altimateai/altimate-core (napi-rs → Rust)
-   SQL analysis, lineage, PII, safety — 45 functions, ~2ms per call
-        |
-   Native Node.js drivers
-   10 warehouses: Snowflake, BigQuery, PostgreSQL, Databricks,
-   Redshift, MySQL, SQL Server, Oracle, DuckDB, SQLite
-```
-The CLI handles AI interactions, TUI, and tool orchestration. SQL analysis is powered by the Rust-based `@altimateai/altimate-core` engine via napi-rs bindings (no Python required). Database connectivity uses native Node.js drivers with lazy loading.
-**No Python dependency**: All 73 tool methods run natively in TypeScript. No pip, venv, or Python installation needed.
-**dbt-first**: When working in a dbt project, the CLI automatically uses dbt's connection from `profiles.yml` — no separate warehouse configuration needed.
-### Monorepo structure
-```
-packages/
-  altimate-code/       TypeScript CLI (main entry point)
-  drivers/             Shared database drivers (10 warehouses)
-  dbt-tools/           dbt integration (TypeScript)
-  plugin/              Plugin system
-  sdk/                 SDKs (includes VS Code extension)
-  util/                Shared utilities
-```
 ## Community & Contributing
-- **Slack**: [altimate.ai/slack](https://altimate.ai/slack) — Real-time chat for questions, showcases, and feature discussion
+- **Slack**: [Join Slack](https://altimate.studio/join-agentic-data-engineering-slack) — Real-time chat for questions, showcases, and feature discussion
 - **Issues**: [GitHub Issues](https://github.com/AltimateAI/altimate-code/issues) — Bug reports and feature requests
 - **Discussions**: [GitHub Discussions](https://github.com/AltimateAI/altimate-code/discussions) — Long-form questions and proposals
 - **Security**: See [SECURITY.md](./SECURITY.md) for responsible disclosure
@@ -220,10 +176,12 @@ Contributions welcome — docs, SQL rules, warehouse connectors, and TUI improve
 **[Read CONTRIBUTING.md →](./CONTRIBUTING.md)**
-## What's New
+## Changelog
-- **v0.4.1** (March 2026) — env-based skill selection, session caching, tracing improvements
-- **v0.4.0** (Feb 2026) — data visualization skill, 99+ tools, training system
+- **v0.5.0** (March 2026) — smooth streaming mode, builtin skills via postinstall, `/configure-claude` and `/configure-codex` commands, warehouse auth hardening
+- **v0.4.9** (March 2026) — Snowflake auth overhaul (all auth methods), dbt tool regression fixes, parallel CI builds
+- **v0.4.2** (March 2026) — yolo mode, Python engine elimination (all-native TypeScript), tool consolidation, path sandboxing hardening, altimate-dbt CLI, unscoped npm package
+- **v0.4.0** (March 2026) — data visualization skill, 100+ tools, training system
 - **v0.3.x** — [See full changelog →](CHANGELOG.md)
 ## License

package/package.json CHANGED Viewed

@@ -14,23 +14,63 @@
   "scripts": {
     "postinstall": "bun ./postinstall.mjs || node ./postinstall.mjs"
   },
-  "version": "0.5.0",
+  "version": "0.5.2",
   "license": "MIT",
   "dependencies": {
-    "@altimateai/altimate-core": "^0.2.3"
+    "@altimateai/altimate-core": "^0.2.5"
   },
   "optionalDependencies": {
-    "@altimateai/altimate-code-linux-x64": "0.5.0",
-    "@altimateai/altimate-code-windows-arm64": "0.5.0",
-    "@altimateai/altimate-code-linux-arm64-musl": "0.5.0",
-    "@altimateai/altimate-code-darwin-x64": "0.5.0",
-    "@altimateai/altimate-code-windows-x64": "0.5.0",
-    "@altimateai/altimate-code-linux-x64-musl": "0.5.0",
-    "@altimateai/altimate-code-darwin-x64-baseline": "0.5.0",
-    "@altimateai/altimate-code-linux-x64-baseline-musl": "0.5.0",
-    "@altimateai/altimate-code-linux-x64-baseline": "0.5.0",
-    "@altimateai/altimate-code-linux-arm64": "0.5.0",
-    "@altimateai/altimate-code-darwin-arm64": "0.5.0",
-    "@altimateai/altimate-code-windows-x64-baseline": "0.5.0"
+    "@altimateai/altimate-code-linux-x64": "0.5.2",
+    "@altimateai/altimate-code-windows-arm64": "0.5.2",
+    "@altimateai/altimate-code-linux-arm64-musl": "0.5.2",
+    "@altimateai/altimate-code-darwin-x64": "0.5.2",
+    "@altimateai/altimate-code-windows-x64": "0.5.2",
+    "@altimateai/altimate-code-linux-x64-musl": "0.5.2",
+    "@altimateai/altimate-code-darwin-x64-baseline": "0.5.2",
+    "@altimateai/altimate-code-linux-x64-baseline-musl": "0.5.2",
+    "@altimateai/altimate-code-linux-x64-baseline": "0.5.2",
+    "@altimateai/altimate-code-linux-arm64": "0.5.2",
+    "@altimateai/altimate-code-darwin-arm64": "0.5.2",
+    "@altimateai/altimate-code-windows-x64-baseline": "0.5.2"
+  },
+  "peerDependencies": {
+    "pg": ">=8",
+    "snowflake-sdk": ">=1",
+    "@google-cloud/bigquery": ">=8",
+    "@databricks/sql": ">=1",
+    "mysql2": ">=3",
+    "mssql": ">=11",
+    "oracledb": ">=6",
+    "duckdb": ">=1",
+    "better-sqlite3": ">=11"
+  },
+  "peerDependenciesMeta": {
+    "pg": {
+      "optional": true
+    },
+    "snowflake-sdk": {
+      "optional": true
+    },
+    "@google-cloud/bigquery": {
+      "optional": true
+    },
+    "@databricks/sql": {
+      "optional": true
+    },
+    "mysql2": {
+      "optional": true
+    },
+    "mssql": {
+      "optional": true
+    },
+    "oracledb": {
+      "optional": true
+    },
+    "duckdb": {
+      "optional": true
+    },
+    "better-sqlite3": {
+      "optional": true
+    }
   }
 }