argusqa-os 9.4.3 → 9.4.5

package/package.json

@@ -1,69 +1,69 @@
-{
-  "name": "argusqa-os",
-  "version": "9.4.3",
-  "mcpName": "io.github.ironclawdevs27/argus",
-  "description": "Argus — AI-powered automated dev-testing platform using Chrome DevTools MCP and Claude Code",
-  "keywords": [
-    "mcp",
-    "mcp-server",
-    "claude",
-    "qa",
-    "testing",
-    "accessibility",
-    "automation",
-    "chrome-devtools",
-    "web-testing"
-  ],
-  "author": "ironclawdevs",
-  "license": "MIT",
-  "homepage": "https://argus-qa.com",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/ironclawdevs27/Argus.git"
-  },
-  "files": [
-    "src/",
-    ".mcp.json",
-    "glama.json"
-  ],
-  "type": "module",
-  "engines": {
-    "node": ">=20.19.0"
-  },
-  "bin": {
-    "argus": "src/cli/init.js",
-    "argus-mcp": "src/mcp-server.js",
-    "argusqa-os": "src/mcp-server.js"
-  },
-  "scripts": {
-    "setup": "node -e \"import('fs').then(fs => fs.default.mkdirSync('./reports', { recursive: true }))\"",
-    "init": "node src/cli/init.js",
-    "crawl": "node src/orchestration/crawl-and-report.js",
-    "compare": "node src/orchestration/env-comparison.js",
-    "watch": "node src/orchestration/watch-mode.js",
-    "server": "node src/server/index.js",
-    "harness": "node test-harness/server.js",
-    "harness:staging": "PORT=3101 node test-harness/server.js",
-    "test:harness": "node test-harness/validate.js",
-    "test:unit": "vitest run test/unit",
-    "test": "npm run test:unit && npm run test:harness",
-    "report:html": "node src/utils/html-reporter.js",
-    "mcp-server": "node src/mcp-server.js"
-  },
-  "dependencies": {
-    "@modelcontextprotocol/sdk": "^1.29.0",
-    "@opentelemetry/api": "^1.9.1",
-    "@opentelemetry/sdk-node": "^0.218.0",
-    "@slack/web-api": "^7.16.0",
-    "dotenv": "^16.4.5",
-    "express": "^5.2.1",
-    "pino": "^10.3.1",
-    "pino-pretty": "^13.1.3",
-    "pixelmatch": "^7.2.0",
-    "pngjs": "^7.0.0",
-    "zod": "^4.4.3"
-  },
-  "devDependencies": {
-    "vitest": "^4.1.7"
-  }
-}
+{
+  "name": "argusqa-os",
+  "version": "9.4.5",
+  "mcpName": "io.github.ironclawdevs27/argus",
+  "description": "Argus — AI-powered automated dev-testing platform using Chrome DevTools MCP and Claude Code",
+  "keywords": [
+    "mcp",
+    "mcp-server",
+    "claude",
+    "qa",
+    "testing",
+    "accessibility",
+    "automation",
+    "chrome-devtools",
+    "web-testing"
+  ],
+  "author": "ironclawdevs",
+  "license": "MIT",
+  "homepage": "https://argus-qa.com",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/ironclawdevs27/Argus.git"
+  },
+  "files": [
+    "src/",
+    ".mcp.json",
+    "glama.json"
+  ],
+  "type": "module",
+  "engines": {
+    "node": ">=20.19.0"
+  },
+  "bin": {
+    "argus": "src/cli/init.js",
+    "argus-mcp": "src/mcp-server.js",
+    "argusqa-os": "src/mcp-server.js"
+  },
+  "scripts": {
+    "setup": "node -e \"import('fs').then(fs => fs.default.mkdirSync('./reports', { recursive: true }))\"",
+    "init": "node src/cli/init.js",
+    "crawl": "node src/orchestration/crawl-and-report.js",
+    "compare": "node src/orchestration/env-comparison.js",
+    "watch": "node src/orchestration/watch-mode.js",
+    "server": "node src/server/index.js",
+    "harness": "node test-harness/server.js",
+    "harness:staging": "PORT=3101 node test-harness/server.js",
+    "test:harness": "node test-harness/validate.js",
+    "test:unit": "vitest run test/unit",
+    "test": "npm run test:unit && npm run test:harness",
+    "report:html": "node src/utils/html-reporter.js",
+    "mcp-server": "node src/mcp-server.js"
+  },
+  "dependencies": {
+    "@modelcontextprotocol/sdk": "^1.29.0",
+    "@opentelemetry/api": "^1.9.1",
+    "@opentelemetry/sdk-node": "^0.218.0",
+    "@slack/web-api": "^7.16.0",
+    "dotenv": "^16.4.5",
+    "express": "^5.2.1",
+    "pino": "^10.3.1",
+    "pino-pretty": "^13.1.3",
+    "pixelmatch": "^7.2.0",
+    "pngjs": "^7.0.0",
+    "zod": "^4.4.3"
+  },
+  "devDependencies": {
+    "vitest": "^4.1.7"
+  }
+}

package/src/config/targets.js

@@ -167,7 +167,7 @@ export const auth = null;
  * Each flow is a named sequence of steps executed end-to-end by flow-runner.js.
  * Supported actions:
  *   navigate      — { action: 'navigate', path: '/route' }  or  url: 'https://...' for absolute
- *   fill          — { action: 'fill', selector: 'input#email', value: 'x@y.com' }
+ *   fill          — { action: 'fill', selector: 'input#email', value: 'user@example.com' }
  *                   Add typing: true to dispatch real keyboard events (needed for input-validation handlers)
  *   click         — { action: 'click', selector: 'button[type=submit]' }
  *   press_key     — { action: 'press_key', key: 'Tab' | 'Enter' | 'Escape' | 'ArrowDown' | ... }

package/src/mcp-server.js

@@ -1,312 +1,312 @@
-#!/usr/bin/env node
-/**
- * Argus MCP Server (v9.4.3)
- *
- * Exposes Argus as an MCP server so Claude (or any MCP client) can call
- * argus_audit, argus_audit_full, argus_compare, argus_last_report, and
- * argus_get_context (fix loop) directly from a conversation without using the CLI.
- *
- * Architecture: MCP-inside-MCP
- *   Claude (MCP client)
- *     → Argus MCP Server (this file)
- *       → chrome-devtools-mcp client (mcp-client.js)
- *         → Chrome (CDP)
- *
- * Registration: add to .mcp.json as "argus" server.
- * Run standalone: node src/mcp-server.js
- */
-
-import { Server }              from '@modelcontextprotocol/sdk/server/index.js';
-import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
-import {
-  ListToolsRequestSchema,
-  CallToolRequestSchema,
-} from '@modelcontextprotocol/sdk/types.js';
-import fs   from 'fs';
-import path from 'path';
-
-import { createMcpClient }                    from './utils/mcp-client.js';
-import { crawlRouteCheap, runCrawl }          from './orchestration/crawl-and-report.js';
-import { runComparison }                      from './orchestration/env-comparison.js';
-import { WatchSession }                       from './orchestration/watch-mode.js';
-import { CdpBrowserAdapter }                  from './adapters/browser.js';
-
-const REPORTS_DIR = path.resolve(process.cwd(), 'reports');
-
-// Fix loop: stores up to 20 snapshots keyed by snapshot_id so argus_get_context
-// can diff before/after a fix. Keys are evicted oldest-first when the limit is hit.
-const snapshotStore = new Map();
-const MAX_SNAPSHOTS = 20;
-
-// Audit cache: stores argus_audit results keyed by URL so cache:true skips re-crawl.
-const auditCache = new Map();
-const MAX_AUDIT_CACHE = 20;
-
-function storeSnapshot(id, findings) {
-  snapshotStore.set(id, findings);
-  if (snapshotStore.size > MAX_SNAPSHOTS) {
-    snapshotStore.delete(snapshotStore.keys().next().value);
-  }
-}
-
-function cacheAudit(url, result) {
-  auditCache.set(url, { result, ts: Date.now() });
-  if (auditCache.size > MAX_AUDIT_CACHE) {
-    auditCache.delete(auditCache.keys().next().value);
-  }
-}
-
-// ── Tool definitions ─────────────────────────────────────────────────────────
-
-const TOOLS = [
-  {
-    name: 'argus_audit',
-    description: 'Fast QA audit on a URL via Chrome DevTools Protocol. Runs 8 analyzers in one pass: JS errors, unhandled rejections, network failures (4xx/5xx), API frequency loops, CSS cascade issues, SEO violations, security header checks, and accessibility. Returns { findings: [{severity, type, message, url}], summary: {critical, warning, info} }. Use for CI smoke tests and pre-deploy gates. Pass cache: true to skip re-crawl on repeat calls to the same URL within a session — useful in tight fix loops. For Lighthouse scoring and memory leak detection, use argus_audit_full. Requires Chrome running with --remote-debugging-port=9222.',
-    inputSchema: {
-      type: 'object',
-      properties: {
-        url:      { type: 'string',  description: 'Full URL to audit, including protocol and path (e.g. http://localhost:3000/checkout). Must be reachable by the running Chrome instance.' },
-        critical: { type: 'boolean', description: 'When true, console.error calls are escalated to critical severity. Set true for business-critical routes (login, checkout, dashboard) where any error is a blocker.', default: false },
-        cache:    { type: 'boolean', description: 'When true, returns the cached result for this URL if one exists (from a previous argus_audit call in this session) without re-crawling. Use in fix loops to cheaply re-read the last audit while iterating on a fix. Cache is per-session, max 20 entries, LRU eviction.', default: false },
-      },
-      required: ['url'],
-    },
-  },
-  {
-    name: 'argus_audit_full',
-    description: 'Deep QA audit — extends argus_audit with Lighthouse performance/accessibility scoring, responsive layout checks across 4 viewports (320/768/1280/1920px), memory leak detection via heap snapshot, hover-state regression detection, and accessibility tree snapshot. Returns full JSON report with findings by severity, Lighthouse scores, and layout overflow details. Use when argus_audit passes clean but visual or performance regressions are suspected. Requires Chrome running with --remote-debugging-port=9222.',
-    inputSchema: {
-      type: 'object',
-      properties: {
-        url:      { type: 'string',  description: 'Full URL to audit, including protocol and path (e.g. https://example.com/dashboard). Must be reachable by the running Chrome instance.' },
-        critical: { type: 'boolean', description: 'When true, console.error calls are escalated to critical severity. Set true for business-critical routes (login, checkout, dashboard) where any error is a blocker.', default: false },
-      },
-      required: ['url'],
-    },
-  },
-  {
-    name: 'argus_compare',
-    description: 'Diffs dev vs staging environments side-by-side. Navigates both URLs, captures screenshots, and runs the full analyzer suite on each, then surfaces regressions — findings present in staging but not dev, or with changed severity. Returns { regressions: [{type, devSeverity, stagingSeverity}], screenshots, summary }. Run before promoting a build to staging to catch environment-specific bugs. Set TARGET_DEV_URL and TARGET_STAGING_URL env vars before starting the server; omit TARGET_STAGING_URL to run CSS-analysis-only mode.',
-    inputSchema: { type: 'object', properties: {} },
-  },
-  {
-    name: 'argus_last_report',
-    description: 'Returns the most recent Argus JSON report from the reports/ directory. Report includes a findings array and severity summary (critical/warning/info counts). Returns { "error": "No reports found in reports/" } when no audits have been run yet. Use to retrieve prior results without re-running a scan, or to pipe findings into another analysis tool.',
-    inputSchema: { type: 'object', properties: {} },
-  },
-  {
-    name: 'argus_watch_snapshot',
-    description: 'Snapshots the currently open Chrome tab without navigating — captures console errors, network failures (4xx/5xx), CORS blocks, and auth failures in one poll. Returns { findings: [{severity, type, message, url}], newConsole, newNetwork }. Use during active development to inspect what is happening on the current page without running a full audit. Pass tabId to inspect a specific tab (get IDs from argus_get_context or list_pages). Without tabId, reads the active tab. Requires Chrome on --remote-debugging-port=9222 with a page already open.',
-    inputSchema: {
-      type: 'object',
-      properties: {
-        url:   { type: 'string', description: 'Optional base URL to attribute findings to (default: TARGET_DEV_URL env var). Does not navigate — reads the currently open Chrome tab.' },
-        tabId: { type: 'string', description: 'Optional Chrome page/tab ID (e.g. from a prior argus_get_context response). When provided, switches focus to that tab before snapshotting — useful for SPAs that spawn new windows or multi-tab flows.' },
-      },
-    },
-  },
-  {
-    name: 'argus_get_context',
-    description: 'Captures everything currently broken on the open Chrome tab and formats it as a diagnostic context for Claude to read and suggest fixes. Does NOT navigate — reads the live tab state after user interactions, in authenticated sessions, or mid-flow. Returns { snapshot_id, summary, url, timestamp, critical_issues, warnings, js_errors, network_failures, console_errors, recent_requests, open_tabs }. Fix loop: pass the snapshot_id from a previous call as snapshot_id to get a diff — the response will include resolved (cleared since last snapshot), new_issues (appeared since last snapshot), and persisting (unchanged). Multi-tab: pass tabId to inspect a specific tab, or omit to read the active tab. The open_tabs array always lists all currently open Chrome tabs. Workflow: call argus_get_context → Claude suggests fix → apply fix → call argus_get_context with snapshot_id → verify resolved array is non-empty. Requires Chrome on --remote-debugging-port=9222.',
-    inputSchema: {
-      type: 'object',
-      properties: {
-        url:         { type: 'string', description: 'Optional base URL to attribute findings to (default: TARGET_DEV_URL env var). Does not navigate — inspects the currently open Chrome tab.' },
-        snapshot_id: { type: 'string', description: 'Optional snapshot_id from a previous argus_get_context call. When provided, the response includes resolved/new_issues/persisting arrays showing what changed since that snapshot.' },
-        tabId:       { type: 'string', description: 'Optional Chrome page/tab ID. When provided, switches focus to that specific tab before capturing context — useful for SPAs that spawn new windows (e.g. OAuth popups, checkout flows). Get tab IDs from the open_tabs array in a prior argus_get_context response.' },
-      },
-    },
-  },
-];
-
-// ── Helpers ───────────────────────────────────────────────────────────────────
-
-async function withMcp(fn) {
-  const mcp = await createMcpClient();
-  try {
-    return await fn(mcp);
-  } finally {
-    try { mcp.close(); } catch { /* ignore — process already gone */ }
-  }
-}
-
-// ── Tool handlers ─────────────────────────────────────────────────────────────
-
-async function handleAudit({ url, critical = false, cache = false }) {
-  if (cache && auditCache.has(url)) {
-    const { result, ts } = auditCache.get(url);
-    return { content: [{ type: 'text', text: JSON.stringify({ ...result, _cached: true, _cachedAt: new Date(ts).toISOString() }, null, 2) }] };
-  }
-  return withMcp(async (mcp) => {
-    const parsed = new URL(url);
-    const route  = { path: parsed.pathname + parsed.search + parsed.hash, name: 'audit', critical };
-    const raw    = await crawlRouteCheap(route, parsed.origin, mcp);
-    const findings = Array.isArray(raw.errors) ? raw.errors : [];
-    const result = {
-      findings,
-      summary: {
-        critical: findings.filter(f => f.severity === 'critical').length,
-        warning:  findings.filter(f => f.severity === 'warning').length,
-        info:     findings.filter(f => f.severity === 'info').length,
-      },
-      url:        raw.url,
-      pageTitle:  raw.pageTitle,
-      screenshot: raw.screenshot,
-    };
-    if (cache) cacheAudit(url, result);
-    return { content: [{ type: 'text', text: JSON.stringify(result, null, 2) }] };
-  });
-}
-
-async function handleAuditFull({ url, critical = false }) {
-  return withMcp(async (mcp) => {
-    const parsed = new URL(url);
-    const report = await runCrawl(
-      mcp,
-      [{ path: parsed.pathname + parsed.search + parsed.hash, name: 'audit', critical }],
-      parsed.origin,
-    );
-    return { content: [{ type: 'text', text: JSON.stringify(report, null, 2) }] };
-  });
-}
-
-async function handleCompare() {
-  return withMcp(async (mcp) => {
-    const report = await runComparison(mcp);
-    return { content: [{ type: 'text', text: JSON.stringify(report, null, 2) }] };
-  });
-}
-
-async function handleWatchSnapshot({ url, tabId } = {}) {
-  return withMcp(async (mcp) => {
-    const browser = new CdpBrowserAdapter(mcp);
-    if (tabId) await browser.selectPage(tabId);
-    const baseUrl = url ?? process.env.TARGET_DEV_URL ?? 'http://localhost:3000';
-    const session = new WatchSession(browser, baseUrl);
-    const result  = await session.poll();
-    return { content: [{ type: 'text', text: JSON.stringify(result, null, 2) }] };
-  });
-}
-
-async function handleGetContext({ url, snapshot_id: prevId, tabId } = {}) {
-  return withMcp(async (mcp) => {
-    const browser = new CdpBrowserAdapter(mcp);
-    if (tabId) await browser.selectPage(tabId);
-    const baseUrl = url ?? process.env.TARGET_DEV_URL ?? 'http://localhost:3000';
-    const session = new WatchSession(browser, baseUrl);
-    const { findings, newConsole, newNetwork } = await session.poll();
-
-    // List all open tabs so the caller can target a specific tab on the next call.
-    let open_tabs = [];
-    try {
-      const pages = await browser.listPages();
-      if (Array.isArray(pages)) {
-        open_tabs = pages.map(p => ({ id: p.id ?? p.pageId, url: p.url, title: p.title }));
-      }
-    } catch { /* list_pages not available in all Chrome configs — degrade gracefully */ }
-
-    const newId = Date.now().toString(36) + Math.random().toString(36).slice(2, 6);
-    storeSnapshot(newId, findings);
-
-    const critical = findings.filter(f => f.severity === 'critical');
-    const warnings  = findings.filter(f => f.severity === 'warning');
-
-    const findingKey = (f) => `${f.type}::${(f.message ?? '').slice(0, 120)}`;
-
-    let resolved = [];
-    let persisting = [];
-    let new_issues = findings;
-    const isDiff = prevId && snapshotStore.has(prevId);
-
-    if (isDiff) {
-      const prev     = snapshotStore.get(prevId);
-      const prevKeys = new Set(prev.map(findingKey));
-      const curKeys  = new Set(findings.map(findingKey));
-      resolved   = prev.filter(f => !curKeys.has(findingKey(f)));
-      persisting = findings.filter(f => prevKeys.has(findingKey(f)));
-      new_issues = findings.filter(f => !prevKeys.has(findingKey(f)));
-    }
-
-    let summary;
-    if (isDiff) {
-      if (resolved.length > 0 && critical.length === 0 && warnings.length === 0) {
-        summary = `All issues resolved on ${baseUrl}. ${resolved.length} finding${resolved.length > 1 ? 's' : ''} cleared since last snapshot.`;
-      } else if (resolved.length > 0) {
-        summary = `${resolved.length} issue${resolved.length > 1 ? 's' : ''} resolved on ${baseUrl}. ${new_issues.length} new + ${persisting.length} persisting (${critical.length} critical). Pass the new snapshot_id to continue the fix loop.`;
-      } else if (critical.length === 0 && warnings.length === 0) {
-        summary = `No issues on ${baseUrl} — console and network are clean.`;
-      } else {
-        summary = `No change on ${baseUrl}: ${critical.length} critical + ${warnings.length} warning${warnings.length !== 1 ? 's' : ''} still present. Check the persisting array for what hasn't been fixed.`;
-      }
-    } else if (critical.length === 0 && warnings.length === 0) {
-      summary = `No issues detected on ${baseUrl} — console and network are clean.`;
-    } else if (critical.length > 0) {
-      summary = `${critical.length} critical issue${critical.length > 1 ? 's' : ''} + ${warnings.length} warning${warnings.length !== 1 ? 's' : ''} detected on ${baseUrl}. Focus on critical issues first. Pass snapshot_id to the next argus_get_context call after applying a fix to see what changed.`;
-    } else {
-      summary = `${warnings.length} warning${warnings.length !== 1 ? 's' : ''} detected on ${baseUrl}. No critical errors. Pass snapshot_id to the next call to verify fixes.`;
-    }
-
-    const context = {
-      snapshot_id:      newId,
-      summary,
-      url:              baseUrl,
-      timestamp:        new Date().toISOString(),
-      critical_issues:  critical,
-      warnings,
-      js_errors:        findings.filter(f => f.type === 'js-error' || f.type === 'unhandled-rejection'),
-      network_failures: findings.filter(f => f.type === 'network-error' || f.type === 'cors-error' || f.type === 'auth-error'),
-      console_errors:   newConsole.filter(m => m.level === 'error' || m.level === 'warning'),
-      recent_requests:  newNetwork.slice(-20),
-      open_tabs,
-      ...(isDiff ? { resolved, new_issues, persisting } : {}),
-    };
-
-    return { content: [{ type: 'text', text: JSON.stringify(context, null, 2) }] };
-  });
-}
-
-async function handleLastReport() {
-  if (!fs.existsSync(REPORTS_DIR)) {
-    return { content: [{ type: 'text', text: '{"error":"No reports found in reports/"}' }] };
-  }
-  const files = fs.readdirSync(REPORTS_DIR).filter(f => f.endsWith('.json'));
-  if (files.length === 0) {
-    return { content: [{ type: 'text', text: '{"error":"No reports found in reports/"}' }] };
-  }
-  const latest = files
-    .map(f => ({ f, mt: fs.statSync(path.join(REPORTS_DIR, f)).mtimeMs }))
-    .sort((a, b) => b.mt - a.mt)[0].f;
-  const json = fs.readFileSync(path.join(REPORTS_DIR, latest), 'utf8');
-  return { content: [{ type: 'text', text: json }] };
-}
-
-// ── Server bootstrap ──────────────────────────────────────────────────────────
-
-const server = new Server(
-  { name: 'argus', version: '9.4.3' },
-  { capabilities: { tools: {} } },
-);
-
-server.setRequestHandler(ListToolsRequestSchema, async () => ({ tools: TOOLS }));
-
-server.setRequestHandler(CallToolRequestSchema, async (req) => {
-  try {
-    switch (req.params.name) {
-      case 'argus_audit':       return await handleAudit(req.params.arguments ?? {});
-      case 'argus_audit_full':  return await handleAuditFull(req.params.arguments ?? {});
-      case 'argus_compare':     return await handleCompare();
-      case 'argus_last_report':     return await handleLastReport();
-      case 'argus_watch_snapshot':  return await handleWatchSnapshot(req.params.arguments ?? {});
-      case 'argus_get_context':     return await handleGetContext(req.params.arguments ?? {});
-      default: throw new Error(`Unknown tool: ${req.params.name}`);
-    }
-  } catch (err) {
-    return {
-      content: [{ type: 'text', text: JSON.stringify({ error: err.message }) }],
-      isError: true,
-    };
-  }
-});
-
-const transport = new StdioServerTransport();
-await server.connect(transport);
+#!/usr/bin/env node
+/**
+ * Argus MCP Server (v9.4.5)
+ *
+ * Exposes Argus as an MCP server so Claude (or any MCP client) can call
+ * argus_audit, argus_audit_full, argus_compare, argus_last_report, and
+ * argus_get_context (fix loop) directly from a conversation without using the CLI.
+ *
+ * Architecture: MCP-inside-MCP
+ *   Claude (MCP client)
+ *     → Argus MCP Server (this file)
+ *       → chrome-devtools-mcp client (mcp-client.js)
+ *         → Chrome (CDP)
+ *
+ * Registration: add to .mcp.json as "argus" server.
+ * Run standalone: node src/mcp-server.js
+ */
+
+import { Server }              from '@modelcontextprotocol/sdk/server/index.js';
+import { StdioServerTransport } from '@modelcontextprotocol/sdk/server/stdio.js';
+import {
+  ListToolsRequestSchema,
+  CallToolRequestSchema,
+} from '@modelcontextprotocol/sdk/types.js';
+import fs   from 'fs';
+import path from 'path';
+
+import { createMcpClient }                    from './utils/mcp-client.js';
+import { crawlRouteCheap, runCrawl }          from './orchestration/crawl-and-report.js';
+import { runComparison }                      from './orchestration/env-comparison.js';
+import { WatchSession }                       from './orchestration/watch-mode.js';
+import { CdpBrowserAdapter }                  from './adapters/browser.js';
+
+const REPORTS_DIR = path.resolve(process.cwd(), 'reports');
+
+// Fix loop: stores up to 20 snapshots keyed by snapshot_id so argus_get_context
+// can diff before/after a fix. Keys are evicted oldest-first when the limit is hit.
+const snapshotStore = new Map();
+const MAX_SNAPSHOTS = 20;
+
+// Audit cache: stores argus_audit results keyed by URL so cache:true skips re-crawl.
+const auditCache = new Map();
+const MAX_AUDIT_CACHE = 20;
+
+function storeSnapshot(id, findings) {
+  snapshotStore.set(id, findings);
+  if (snapshotStore.size > MAX_SNAPSHOTS) {
+    snapshotStore.delete(snapshotStore.keys().next().value);
+  }
+}
+
+function cacheAudit(url, result) {
+  auditCache.set(url, { result, ts: Date.now() });
+  if (auditCache.size > MAX_AUDIT_CACHE) {
+    auditCache.delete(auditCache.keys().next().value);
+  }
+}
+
+// ── Tool definitions ─────────────────────────────────────────────────────────
+
+const TOOLS = [
+  {
+    name: 'argus_audit',
+    description: 'Fast QA audit on a URL via Chrome DevTools Protocol. Runs 8 analyzers in one pass: JS errors, unhandled rejections, network failures (4xx/5xx), API frequency loops, CSS cascade issues, SEO violations, security header checks, and accessibility. Returns { findings: [{severity, type, message, url}], summary: {critical, warning, info} }. Use for CI smoke tests and pre-deploy gates. Pass cache: true to skip re-crawl on repeat calls to the same URL within a session — useful in tight fix loops. For Lighthouse scoring and memory leak detection, use argus_audit_full. Requires Chrome running with --remote-debugging-port=9222.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        url:      { type: 'string',  description: 'Full URL to audit, including protocol and path (e.g. http://localhost:3000/checkout). Must be reachable by the running Chrome instance.' },
+        critical: { type: 'boolean', description: 'When true, console.error calls are escalated to critical severity. Set true for business-critical routes (login, checkout, dashboard) where any error is a blocker.', default: false },
+        cache:    { type: 'boolean', description: 'When true, returns the cached result for this URL if one exists (from a previous argus_audit call in this session) without re-crawling. Use in fix loops to cheaply re-read the last audit while iterating on a fix. Cache is per-session, max 20 entries, LRU eviction.', default: false },
+      },
+      required: ['url'],
+    },
+  },
+  {
+    name: 'argus_audit_full',
+    description: 'Deep QA audit — extends argus_audit with Lighthouse performance/accessibility scoring, responsive layout checks across 4 viewports (320/768/1280/1920px), memory leak detection via heap snapshot, hover-state regression detection, and accessibility tree snapshot. Returns full JSON report with findings by severity, Lighthouse scores, and layout overflow details. Use when argus_audit passes clean but visual or performance regressions are suspected. Requires Chrome running with --remote-debugging-port=9222.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        url:      { type: 'string',  description: 'Full URL to audit, including protocol and path (e.g. https://example.com/dashboard). Must be reachable by the running Chrome instance.' },
+        critical: { type: 'boolean', description: 'When true, console.error calls are escalated to critical severity. Set true for business-critical routes (login, checkout, dashboard) where any error is a blocker.', default: false },
+      },
+      required: ['url'],
+    },
+  },
+  {
+    name: 'argus_compare',
+    description: 'Diffs dev vs staging environments side-by-side. Navigates both URLs, captures screenshots, and runs the full analyzer suite on each, then surfaces regressions — findings present in staging but not dev, or with changed severity. Returns { regressions: [{type, devSeverity, stagingSeverity}], screenshots, summary }. Run before promoting a build to staging to catch environment-specific bugs. Set TARGET_DEV_URL and TARGET_STAGING_URL env vars before starting the server; omit TARGET_STAGING_URL to run CSS-analysis-only mode.',
+    inputSchema: { type: 'object', properties: {} },
+  },
+  {
+    name: 'argus_last_report',
+    description: 'Returns the most recent Argus JSON report from the reports/ directory. Report includes a findings array and severity summary (critical/warning/info counts). Returns { "error": "No reports found in reports/" } when no audits have been run yet. Use to retrieve prior results without re-running a scan, or to pipe findings into another analysis tool.',
+    inputSchema: { type: 'object', properties: {} },
+  },
+  {
+    name: 'argus_watch_snapshot',
+    description: 'Snapshots the currently open Chrome tab without navigating — captures console errors, network failures (4xx/5xx), CORS blocks, and auth failures in one poll. Returns { findings: [{severity, type, message, url}], newConsole, newNetwork }. Use during active development to inspect what is happening on the current page without running a full audit. Pass tabId to inspect a specific tab (get IDs from argus_get_context or list_pages). Without tabId, reads the active tab. Requires Chrome on --remote-debugging-port=9222 with a page already open.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        url:   { type: 'string', description: 'Optional base URL to attribute findings to (default: TARGET_DEV_URL env var). Does not navigate — reads the currently open Chrome tab.' },
+        tabId: { type: 'string', description: 'Optional Chrome page/tab ID (e.g. from a prior argus_get_context response). When provided, switches focus to that tab before snapshotting — useful for SPAs that spawn new windows or multi-tab flows.' },
+      },
+    },
+  },
+  {
+    name: 'argus_get_context',
+    description: 'Captures everything currently broken on the open Chrome tab and formats it as a diagnostic context for Claude to read and suggest fixes. Does NOT navigate — reads the live tab state after user interactions, in authenticated sessions, or mid-flow. Returns { snapshot_id, summary, url, timestamp, critical_issues, warnings, js_errors, network_failures, console_errors, recent_requests, open_tabs }. Fix loop: pass the snapshot_id from a previous call as snapshot_id to get a diff — the response will include resolved (cleared since last snapshot), new_issues (appeared since last snapshot), and persisting (unchanged). Multi-tab: pass tabId to inspect a specific tab, or omit to read the active tab. The open_tabs array always lists all currently open Chrome tabs. Workflow: call argus_get_context → Claude suggests fix → apply fix → call argus_get_context with snapshot_id → verify resolved array is non-empty. Requires Chrome on --remote-debugging-port=9222.',
+    inputSchema: {
+      type: 'object',
+      properties: {
+        url:         { type: 'string', description: 'Optional base URL to attribute findings to (default: TARGET_DEV_URL env var). Does not navigate — inspects the currently open Chrome tab.' },
+        snapshot_id: { type: 'string', description: 'Optional snapshot_id from a previous argus_get_context call. When provided, the response includes resolved/new_issues/persisting arrays showing what changed since that snapshot.' },
+        tabId:       { type: 'string', description: 'Optional Chrome page/tab ID. When provided, switches focus to that specific tab before capturing context — useful for SPAs that spawn new windows (e.g. OAuth popups, checkout flows). Get tab IDs from the open_tabs array in a prior argus_get_context response.' },
+      },
+    },
+  },
+];
+
+// ── Helpers ───────────────────────────────────────────────────────────────────
+
+async function withMcp(fn) {
+  const mcp = await createMcpClient();
+  try {
+    return await fn(mcp);
+  } finally {
+    try { mcp.close(); } catch { /* ignore — process already gone */ }
+  }
+}
+
+// ── Tool handlers ─────────────────────────────────────────────────────────────
+
+async function handleAudit({ url, critical = false, cache = false }) {
+  if (cache && auditCache.has(url)) {
+    const { result, ts } = auditCache.get(url);
+    return { content: [{ type: 'text', text: JSON.stringify({ ...result, _cached: true, _cachedAt: new Date(ts).toISOString() }, null, 2) }] };
+  }
+  return withMcp(async (mcp) => {
+    const parsed = new URL(url);
+    const route  = { path: parsed.pathname + parsed.search + parsed.hash, name: 'audit', critical };
+    const raw    = await crawlRouteCheap(route, parsed.origin, mcp);
+    const findings = Array.isArray(raw.errors) ? raw.errors : [];
+    const result = {
+      findings,
+      summary: {
+        critical: findings.filter(f => f.severity === 'critical').length,
+        warning:  findings.filter(f => f.severity === 'warning').length,
+        info:     findings.filter(f => f.severity === 'info').length,
+      },
+      url:        raw.url,
+      pageTitle:  raw.pageTitle,
+      screenshot: raw.screenshot,
+    };
+    if (cache) cacheAudit(url, result);
+    return { content: [{ type: 'text', text: JSON.stringify(result, null, 2) }] };
+  });
+}
+
+async function handleAuditFull({ url, critical = false }) {
+  return withMcp(async (mcp) => {
+    const parsed = new URL(url);
+    const report = await runCrawl(
+      mcp,
+      [{ path: parsed.pathname + parsed.search + parsed.hash, name: 'audit', critical }],
+      parsed.origin,
+    );
+    return { content: [{ type: 'text', text: JSON.stringify(report, null, 2) }] };
+  });
+}
+
+async function handleCompare() {
+  return withMcp(async (mcp) => {
+    const report = await runComparison(mcp);
+    return { content: [{ type: 'text', text: JSON.stringify(report, null, 2) }] };
+  });
+}
+
+async function handleWatchSnapshot({ url, tabId } = {}) {
+  return withMcp(async (mcp) => {
+    const browser = new CdpBrowserAdapter(mcp);
+    if (tabId) await browser.selectPage(tabId);
+    const baseUrl = url ?? process.env.TARGET_DEV_URL ?? 'http://localhost:3000';
+    const session = new WatchSession(browser, baseUrl);
+    const result  = await session.poll();
+    return { content: [{ type: 'text', text: JSON.stringify(result, null, 2) }] };
+  });
+}
+
+async function handleGetContext({ url, snapshot_id: prevId, tabId } = {}) {
+  return withMcp(async (mcp) => {
+    const browser = new CdpBrowserAdapter(mcp);
+    if (tabId) await browser.selectPage(tabId);
+    const baseUrl = url ?? process.env.TARGET_DEV_URL ?? 'http://localhost:3000';
+    const session = new WatchSession(browser, baseUrl);
+    const { findings, newConsole, newNetwork } = await session.poll();
+
+    // List all open tabs so the caller can target a specific tab on the next call.
+    let open_tabs = [];
+    try {
+      const pages = await browser.listPages();
+      if (Array.isArray(pages)) {
+        open_tabs = pages.map(p => ({ id: p.id ?? p.pageId, url: p.url, title: p.title }));
+      }
+    } catch { /* list_pages not available in all Chrome configs — degrade gracefully */ }
+
+    const newId = Date.now().toString(36) + Math.random().toString(36).slice(2, 6);
+    storeSnapshot(newId, findings);
+
+    const critical = findings.filter(f => f.severity === 'critical');
+    const warnings  = findings.filter(f => f.severity === 'warning');
+
+    const findingKey = (f) => `${f.type}::${(f.message ?? '').slice(0, 120)}`;
+
+    let resolved = [];
+    let persisting = [];
+    let new_issues = findings;
+    const isDiff = prevId && snapshotStore.has(prevId);
+
+    if (isDiff) {
+      const prev     = snapshotStore.get(prevId);
+      const prevKeys = new Set(prev.map(findingKey));
+      const curKeys  = new Set(findings.map(findingKey));
+      resolved   = prev.filter(f => !curKeys.has(findingKey(f)));
+      persisting = findings.filter(f => prevKeys.has(findingKey(f)));
+      new_issues = findings.filter(f => !prevKeys.has(findingKey(f)));
+    }
+
+    let summary;
+    if (isDiff) {
+      if (resolved.length > 0 && critical.length === 0 && warnings.length === 0) {
+        summary = `All issues resolved on ${baseUrl}. ${resolved.length} finding${resolved.length > 1 ? 's' : ''} cleared since last snapshot.`;
+      } else if (resolved.length > 0) {
+        summary = `${resolved.length} issue${resolved.length > 1 ? 's' : ''} resolved on ${baseUrl}. ${new_issues.length} new + ${persisting.length} persisting (${critical.length} critical). Pass the new snapshot_id to continue the fix loop.`;
+      } else if (critical.length === 0 && warnings.length === 0) {
+        summary = `No issues on ${baseUrl} — console and network are clean.`;
+      } else {
+        summary = `No change on ${baseUrl}: ${critical.length} critical + ${warnings.length} warning${warnings.length !== 1 ? 's' : ''} still present. Check the persisting array for what hasn't been fixed.`;
+      }
+    } else if (critical.length === 0 && warnings.length === 0) {
+      summary = `No issues detected on ${baseUrl} — console and network are clean.`;
+    } else if (critical.length > 0) {
+      summary = `${critical.length} critical issue${critical.length > 1 ? 's' : ''} + ${warnings.length} warning${warnings.length !== 1 ? 's' : ''} detected on ${baseUrl}. Focus on critical issues first. Pass snapshot_id to the next argus_get_context call after applying a fix to see what changed.`;
+    } else {
+      summary = `${warnings.length} warning${warnings.length !== 1 ? 's' : ''} detected on ${baseUrl}. No critical errors. Pass snapshot_id to the next call to verify fixes.`;
+    }
+
+    const context = {
+      snapshot_id:      newId,
+      summary,
+      url:              baseUrl,
+      timestamp:        new Date().toISOString(),
+      critical_issues:  critical,
+      warnings,
+      js_errors:        findings.filter(f => f.type === 'js-error' || f.type === 'unhandled-rejection'),
+      network_failures: findings.filter(f => f.type === 'network-error' || f.type === 'cors-error' || f.type === 'auth-error'),
+      console_errors:   newConsole.filter(m => m.level === 'error' || m.level === 'warning'),
+      recent_requests:  newNetwork.slice(-20),
+      open_tabs,
+      ...(isDiff ? { resolved, new_issues, persisting } : {}),
+    };
+
+    return { content: [{ type: 'text', text: JSON.stringify(context, null, 2) }] };
+  });
+}
+
+async function handleLastReport() {
+  if (!fs.existsSync(REPORTS_DIR)) {
+    return { content: [{ type: 'text', text: '{"error":"No reports found in reports/"}' }] };
+  }
+  const files = fs.readdirSync(REPORTS_DIR).filter(f => f.endsWith('.json'));
+  if (files.length === 0) {
+    return { content: [{ type: 'text', text: '{"error":"No reports found in reports/"}' }] };
+  }
+  const latest = files
+    .map(f => ({ f, mt: fs.statSync(path.join(REPORTS_DIR, f)).mtimeMs }))
+    .sort((a, b) => b.mt - a.mt)[0].f;
+  const json = fs.readFileSync(path.join(REPORTS_DIR, latest), 'utf8');
+  return { content: [{ type: 'text', text: json }] };
+}
+
+// ── Server bootstrap ──────────────────────────────────────────────────────────
+
+const server = new Server(
+  { name: 'argus', version: '9.4.5' },
+  { capabilities: { tools: {} } },
+);
+
+server.setRequestHandler(ListToolsRequestSchema, async () => ({ tools: TOOLS }));
+
+server.setRequestHandler(CallToolRequestSchema, async (req) => {
+  try {
+    switch (req.params.name) {
+      case 'argus_audit':       return await handleAudit(req.params.arguments ?? {});
+      case 'argus_audit_full':  return await handleAuditFull(req.params.arguments ?? {});
+      case 'argus_compare':     return await handleCompare();
+      case 'argus_last_report':     return await handleLastReport();
+      case 'argus_watch_snapshot':  return await handleWatchSnapshot(req.params.arguments ?? {});
+      case 'argus_get_context':     return await handleGetContext(req.params.arguments ?? {});
+      default: throw new Error(`Unknown tool: ${req.params.name}`);
+    }
+  } catch (err) {
+    return {
+      content: [{ type: 'text', text: JSON.stringify({ error: err.message }) }],
+      isError: true,
+    };
+  }
+});
+
+const transport = new StdioServerTransport();
+await server.connect(transport);

package/src/orchestration/env-comparison.js

@@ -37,7 +37,7 @@ const RAW_STAGING_URL = process.env.TARGET_STAGING_URL ?? '';
 // Validate as a parseable URL with a non-localhost hostname — checking only against
 // one hardcoded placeholder string misses 'TODO', 'your-url-here', http://localhost, etc.
 const STAGING_URL_SET = (() => {
-  if (!RAW_STAGING_URL || RAW_STAGING_URL === 'https://staging.yourapp.com') return false;
+  if (!RAW_STAGING_URL || RAW_STAGING_URL === 'https://staging.example.com') return false;
   try {
     const u = new URL(RAW_STAGING_URL);
     return u.hostname !== 'localhost' && u.hostname !== '127.0.0.1' && u.hostname !== '';

package/src/server/slash-command-handler.js

@@ -93,7 +93,7 @@ export async function handleSlashCommand(req, res) {
   if (!targetUrl) {
     return res.json({
       response_type: 'ephemeral',
-      text: '⚠️ Usage: `/argus-retest <url>`\nExample: `/argus-retest https://staging.yourapp.com/checkout`',
+      text: '⚠️ Usage: `/argus-retest <url>`\nExample: `/argus-retest https://staging.example.com/checkout`',
     });
   }
 

package/src/utils/telemetry.js

@@ -30,7 +30,7 @@ async function maybeStartSdk() {
     const { resourceFromAttributes } = await import('@opentelemetry/resources');
     const resource = resourceFromAttributes({
       'service.name':    'argus',
-      'service.version': '9.3.0',
+      'service.version': '9.4.4',
     });
 
     if (consoleMode && !hasOtlpEndpoint) {