npm - auditor-lambda - Versions diffs - 0.2.6 → 0.2.8 - Mend

auditor-lambda 0.2.6 → 0.2.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (58) hide show

package/README.md +23 -7
package/audit-code-wrapper-lib.mjs +1605 -330
package/dist/cli.js +78 -16
package/dist/coverage.d.ts +2 -2
package/dist/coverage.js +5 -5
package/dist/extractors/disposition.js +10 -1
package/dist/extractors/flows.js +7 -1
package/dist/extractors/pathPatterns.d.ts +3 -0
package/dist/extractors/pathPatterns.js +15 -0
package/dist/extractors/risk.js +7 -1
package/dist/io/artifacts.d.ts +6 -6
package/dist/io/artifacts.js +14 -17
package/dist/io/json.d.ts +2 -0
package/dist/io/json.js +15 -0
package/dist/io/runArtifacts.d.ts +1 -0
package/dist/io/runArtifacts.js +18 -4
package/dist/mcp/server.d.ts +1 -0
package/dist/mcp/server.js +579 -0
package/dist/orchestrator/advance.js +9 -2
package/dist/orchestrator/dependencyMap.js +9 -13
package/dist/orchestrator/executors.js +7 -2
package/dist/orchestrator/flowRequeue.js +1 -1
package/dist/orchestrator/internalExecutors.d.ts +2 -1
package/dist/orchestrator/internalExecutors.js +120 -63
package/dist/orchestrator/requeue.js +9 -4
package/dist/orchestrator/resultIngestion.js +5 -6
package/dist/orchestrator/runtimeValidation.d.ts +7 -2
package/dist/orchestrator/runtimeValidation.js +61 -49
package/dist/orchestrator/runtimeValidationUpdate.js +2 -4
package/dist/orchestrator/state.js +18 -13
package/dist/orchestrator/trivialAudit.js +8 -5
package/dist/prompts/renderWorkerPrompt.js +3 -2
package/dist/reporting/mergeFindings.js +0 -11
package/dist/reporting/synthesis.d.ts +25 -22
package/dist/reporting/synthesis.js +92 -59
package/dist/reporting/workBlocks.d.ts +12 -3
package/dist/reporting/workBlocks.js +124 -70
package/dist/types/flows.d.ts +2 -0
package/dist/types/runtimeValidation.d.ts +2 -1
package/dist/types.d.ts +4 -7
package/dist/validation/auditResults.js +64 -99
package/docs/agent-integrations.md +38 -29
package/docs/artifacts.md +16 -56
package/docs/bootstrap-install.md +60 -30
package/docs/contract.md +22 -205
package/docs/next-steps.md +59 -44
package/docs/packaging.md +13 -3
package/docs/production-launch-bar.md +2 -2
package/docs/production-readiness.md +9 -5
package/docs/releasing.md +81 -0
package/package.json +4 -1
package/schemas/audit_result.schema.json +4 -6
package/schemas/runtime_validation_report.schema.json +1 -1
package/skills/audit-code/SKILL.md +11 -2
package/skills/audit-code/audit-code.prompt.md +5 -8
package/schemas/merged_findings.schema.json +0 -19
package/schemas/root_cause_clusters.schema.json +0 -28
package/schemas/synthesis_report.schema.json +0 -61

package/schemas/audit_result.schema.json CHANGED Viewed

@@ -8,7 +8,7 @@
     "unit_id",
     "pass_id",
     "lens",
-    "reviewed_ranges",
+    "file_coverage",
     "findings"
   ],
   "$defs": {
@@ -22,17 +22,15 @@
     "pass_id": { "type": "string" },
     "lens": { "type": "string" },
     "agent_role": { "type": "string" },
-    "reviewed_ranges": {
+    "file_coverage": {
       "type": "array",
       "minItems": 1,
       "items": {
         "type": "object",
-        "required": ["path", "start", "end", "line_count"],
+        "required": ["path", "total_lines"],
         "properties": {
           "path": { "type": "string" },
-          "start": { "type": "integer" },
-          "end": { "type": "integer" },
-          "line_count": { "type": "integer", "minimum": 1 }
+          "total_lines": { "type": "integer", "minimum": 1 }
         },
         "additionalProperties": false
       }

package/schemas/runtime_validation_report.schema.json CHANGED Viewed

@@ -14,7 +14,7 @@
           "task_id": { "type": "string" },
           "status": {
             "type": "string",
-            "enum": ["pending", "confirmed", "not_confirmed", "inconclusive"]
+            "enum": ["pending", "confirmed", "not_confirmed", "inconclusive", "not_required"]
           },
           "summary": { "type": "string" },
           "evidence": {

package/skills/audit-code/SKILL.md CHANGED Viewed

@@ -21,8 +21,17 @@ Bounded steps are a backend implementation detail, not the intended user experie
 ## Embedded Prompt Payload
-For IDE-based LLMs (Antigravity, Copilot, Cursor), you can initialize the skill natively by importing the prompt payload defined in `audit-code.prompt.md`.
-This provides the LLM an exact instruction set required to natively intercept the state machine blocking phases securely and assume the responsibilities of the execution "worker".
+The prompt payload in `audit-code.prompt.md` remains the canonical instruction asset.
+The preferred setup path is:
+```bash
+audit-code install
+```
+That bootstrap writes repo-local host assets for Codex, Claude Desktop, OpenCode, VS Code, and Antigravity plus shared MCP setup guidance.
+Use direct prompt import only when the target host still needs it after bootstrap.
 ## Repo-local fallback

package/skills/audit-code/audit-code.prompt.md CHANGED Viewed

@@ -57,14 +57,11 @@ Continue repeating Steps 1 through 5 as necessary. The state machine will iterat
 ## Step 7: Presentation
 Once the audit is officially complete, DO NOT run the orchestrator again.
-Instead, use your file reading tool to consume:
+Instead, read the final deterministic report at:
-- `.audit-artifacts/synthesis_report.json`
+- `audit-report.md`
-Finally, present the completed audit back to the user in this order:
+Present the completed audit back to the user with the work blocks first, since
+they are the primary remediation handoff units.
-1. A **Work Blocks** section summarizing `synthesis_report.work_blocks` first, because those are the primary actionable remediation groups.
-2. A polished **Markdown Summary Table** for the highest-signal merged findings.
-3. A concise semantic **Root Cause Clusters** summary based on `synthesis_report.root_cause_clusters`.
-Wait for the user to ask you to begin resolving or patching the work blocks or clusters you discovered.
+Wait for the user to ask you to begin resolving one or more work blocks.

package/schemas/merged_findings.schema.json DELETED Viewed

@@ -1,19 +0,0 @@
-{
-  "$schema": "https://json-schema.org/draft/2020-12/schema",
-  "$id": "merged_findings.schema.json",
-  "title": "Merged Findings",
-  "type": "object",
-  "required": ["findings"],
-  "$defs": {
-    "Finding": {
-      "$ref": "finding.schema.json"
-    }
-  },
-  "properties": {
-    "findings": {
-      "type": "array",
-      "items": { "$ref": "#/$defs/Finding" }
-    }
-  },
-  "additionalProperties": false
-}

package/schemas/root_cause_clusters.schema.json DELETED Viewed

@@ -1,28 +0,0 @@
-{
-  "$schema": "https://json-schema.org/draft/2020-12/schema",
-  "$id": "root_cause_clusters.schema.json",
-  "title": "Root Cause Clusters",
-  "type": "object",
-  "required": ["clusters"],
-  "properties": {
-    "clusters": {
-      "type": "array",
-      "items": {
-        "type": "object",
-        "required": ["id", "title", "finding_ids"],
-        "properties": {
-          "id": { "type": "string" },
-          "title": { "type": "string" },
-          "summary": { "type": "string" },
-          "finding_ids": {
-            "type": "array",
-            "items": { "type": "string" },
-            "minItems": 1
-          }
-        },
-        "additionalProperties": true
-      }
-    }
-  },
-  "additionalProperties": true
-}

package/schemas/synthesis_report.schema.json DELETED Viewed

@@ -1,61 +0,0 @@
-{
-  "$schema": "https://json-schema.org/draft/2020-12/schema",
-  "$id": "synthesis_report.schema.json",
-  "title": "Synthesis Report",
-  "type": "object",
-  "required": ["summary", "merged_findings", "root_cause_clusters"],
-  "properties": {
-    "summary": {
-      "type": "object",
-      "required": [
-        "finding_count",
-        "cluster_count",
-        "runtime_validation_status_breakdown"
-      ],
-      "properties": {
-        "finding_count": { "type": "integer" },
-        "cluster_count": { "type": "integer" },
-        "runtime_validation_status_breakdown": {
-          "type": "object",
-          "additionalProperties": { "type": "integer" }
-        },
-        "notes": {
-          "type": "array",
-          "items": { "type": "string" }
-        }
-      },
-      "additionalProperties": true
-    },
-    "merged_findings": {
-      "type": "array",
-      "items": { "$ref": "finding.schema.json" }
-    },
-    "root_cause_clusters": {
-      "type": "array",
-      "items": {
-        "$ref": "#/$defs/cluster"
-      }
-    }
-  },
-  "$defs": {
-    "cluster": {
-      "type": "object",
-      "required": ["id", "title", "finding_ids"],
-      "properties": {
-        "id": { "type": "string" },
-        "title": { "type": "string" },
-        "summary": { "type": "string" },
-        "finding_ids": {
-          "type": "array",
-          "items": { "type": "string" }
-        },
-        "recommended_actions": {
-          "type": "array",
-          "items": { "type": "string" }
-        }
-      },
-      "additionalProperties": true
-    }
-  },
-  "additionalProperties": true
-}