npm - auditor-lambda - Versions diffs - 0.2.6 → 0.2.8 - Mend

auditor-lambda 0.2.6 → 0.2.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (58) hide show

package/README.md +23 -7
package/audit-code-wrapper-lib.mjs +1605 -330
package/dist/cli.js +78 -16
package/dist/coverage.d.ts +2 -2
package/dist/coverage.js +5 -5
package/dist/extractors/disposition.js +10 -1
package/dist/extractors/flows.js +7 -1
package/dist/extractors/pathPatterns.d.ts +3 -0
package/dist/extractors/pathPatterns.js +15 -0
package/dist/extractors/risk.js +7 -1
package/dist/io/artifacts.d.ts +6 -6
package/dist/io/artifacts.js +14 -17
package/dist/io/json.d.ts +2 -0
package/dist/io/json.js +15 -0
package/dist/io/runArtifacts.d.ts +1 -0
package/dist/io/runArtifacts.js +18 -4
package/dist/mcp/server.d.ts +1 -0
package/dist/mcp/server.js +579 -0
package/dist/orchestrator/advance.js +9 -2
package/dist/orchestrator/dependencyMap.js +9 -13
package/dist/orchestrator/executors.js +7 -2
package/dist/orchestrator/flowRequeue.js +1 -1
package/dist/orchestrator/internalExecutors.d.ts +2 -1
package/dist/orchestrator/internalExecutors.js +120 -63
package/dist/orchestrator/requeue.js +9 -4
package/dist/orchestrator/resultIngestion.js +5 -6
package/dist/orchestrator/runtimeValidation.d.ts +7 -2
package/dist/orchestrator/runtimeValidation.js +61 -49
package/dist/orchestrator/runtimeValidationUpdate.js +2 -4
package/dist/orchestrator/state.js +18 -13
package/dist/orchestrator/trivialAudit.js +8 -5
package/dist/prompts/renderWorkerPrompt.js +3 -2
package/dist/reporting/mergeFindings.js +0 -11
package/dist/reporting/synthesis.d.ts +25 -22
package/dist/reporting/synthesis.js +92 -59
package/dist/reporting/workBlocks.d.ts +12 -3
package/dist/reporting/workBlocks.js +124 -70
package/dist/types/flows.d.ts +2 -0
package/dist/types/runtimeValidation.d.ts +2 -1
package/dist/types.d.ts +4 -7
package/dist/validation/auditResults.js +64 -99
package/docs/agent-integrations.md +38 -29
package/docs/artifacts.md +16 -56
package/docs/bootstrap-install.md +60 -30
package/docs/contract.md +22 -205
package/docs/next-steps.md +59 -44
package/docs/packaging.md +13 -3
package/docs/production-launch-bar.md +2 -2
package/docs/production-readiness.md +9 -5
package/docs/releasing.md +81 -0
package/package.json +4 -1
package/schemas/audit_result.schema.json +4 -6
package/schemas/runtime_validation_report.schema.json +1 -1
package/skills/audit-code/SKILL.md +11 -2
package/skills/audit-code/audit-code.prompt.md +5 -8
package/schemas/merged_findings.schema.json +0 -19
package/schemas/root_cause_clusters.schema.json +0 -28
package/schemas/synthesis_report.schema.json +0 -61

package/README.md CHANGED Viewed

@@ -29,10 +29,17 @@ audit-code install
 That bootstraps repo-local `/audit-code` surfaces for the hosts we can automate today, including:
-- VS Code / GitHub Copilot prompt files
-- OpenCode custom commands
-- Claude Code custom slash commands
-- compatibility instruction files such as `AGENTS.md` and `CLAUDE.md`
+- Codex skill bundle, `AGENTS.md` guidance, and MCP setup notes
+- Claude Desktop local MCP bundle artifacts and project template guidance
+- OpenCode command, skill, and `opencode.json` surfaces
+- VS Code prompt, custom agent, Copilot instructions, and `.vscode/mcp.json`
+- Antigravity planning-mode guidance plus the shared repo-local MCP launcher
+After bootstrap, you can smoke-test the generated host assets and launcher from the repository root:
+```bash
+audit-code verify-install
+```
 After that, open a supported conversation surface in the repository and invoke `/audit-code`.
@@ -42,7 +49,7 @@ If a host still needs manual prompt import after bootstrap, open:
 .audit-code/install/GETTING-STARTED.md
 ```
-That repo-local guide now includes dedicated quick-start sections for VS Code, OpenCode, Claude Code, Claude Desktop, and Antigravity, plus the installed canonical prompt asset path for manual-import hosts.
+That repo-local guide now includes dedicated quick-start sections for Codex, Claude Desktop, OpenCode, VS Code, and Antigravity, plus the installed canonical prompt asset path for prompt-import fallback flows.
 For narrower compatibility, `audit-code install-host --host copilot` still exists.
@@ -114,6 +121,12 @@ For task-to-coverage inspection without reverse-engineering multiple artifacts:
 audit-code explain-task <task_id>
 ```
+For a local stdio MCP server entrypoint:
+```bash
+audit-code mcp
+```
 The backend wrapper response schema is `schemas/audit-code-v1alpha1.schema.json`.
 ## Backend Provider Modes
@@ -156,8 +169,8 @@ The next implementation work is tracked in:
 The short version is:
-- reduce prompt-import friction in the conversation setup flow
-- make the conversation route feel more native in the first target hosts
+- prove the generated Codex, Claude Desktop, OpenCode, VS Code, and Antigravity guidance in real host flows
+- tighten the repo-local MCP-first bootstrap where host smoke tests expose friction
 - polish provider-assisted continuation and failure guidance
 - finish publish and release hardening for packaged installs
@@ -168,9 +181,12 @@ npm install
 npm run verify:release
 ```
+For GitHub Actions publication and npm Trusted Publishing setup, see `docs/releasing.md`.
 ## Key Docs
 - `docs/product-direction.md`
+- `docs/releasing.md`
 - `docs/production-readiness.md`
 - `docs/production-launch-bar.md`
 - `docs/next-steps.md`