auditor-lambda 0.6.9 → 0.6.11

package/dist/cli/reviewRun.js

@@ -0,0 +1,166 @@
+import { join } from "node:path";
+import { isFileMissingError, readJsonFile, writeJsonFile } from "@audit-tools/shared";
+import { loadArtifactBundle, writeCoreArtifacts, } from "../io/artifacts.js";
+import { deriveAuditState } from "../orchestrator/state.js";
+import { buildRunId, getRunPaths, writeWorkerTaskFiles, } from "../io/runArtifacts.js";
+import { renderWorkerPrompt } from "../prompts/renderWorkerPrompt.js";
+import { buildAuditCodeHandoff, writeAuditCodeHandoffArtifacts, } from "../supervisor/operatorHandoff.js";
+import { LOCAL_SUBPROCESS_PROVIDER_NAME } from "../providers/constants.js";
+import { addFileLineCountHints } from "./lineIndex.js";
+import { buildPendingAuditTasks } from "./dispatch.js";
+import { buildBlockedAuditState, buildManualReviewBlocker } from "./envelope.js";
+export function activeReviewRunFromTask(artifactsDir, task) {
+    if (task.preferred_executor !== "agent" || !task.audit_results_path) {
+        return null;
+    }
+    const paths = getRunPaths(artifactsDir, task.run_id);
+    return {
+        run_id: task.run_id,
+        task_path: paths.taskPath,
+        prompt_path: paths.promptPath,
+        pending_audit_tasks_path: task.pending_audit_tasks_path,
+        audit_results_path: task.audit_results_path,
+        worker_command: task.worker_command,
+    };
+}
+export async function loadCurrentActiveReviewRun(artifactsDir) {
+    try {
+        const task = await readJsonFile(join(artifactsDir, "dispatch", "current-task.json"));
+        return activeReviewRunFromTask(artifactsDir, task);
+    }
+    catch (error) {
+        if (isFileMissingError(error)) {
+            return null;
+        }
+        throw error;
+    }
+}
+export async function writeHandoffOnly(params) {
+    const handoff = buildAuditCodeHandoff({
+        root: params.root,
+        artifactsDir: params.artifactsDir,
+        state: params.audit_state,
+        bundle: params.bundle,
+        providerName: params.providerName,
+        progressSummary: params.progress_summary,
+        isConfigError: params.isConfigError,
+        activeReviewRun: params.activeReviewRun,
+    });
+    await writeAuditCodeHandoffArtifacts(handoff);
+}
+export async function ensureSemanticReviewRun(params) {
+    const existingRun = await loadCurrentActiveReviewRun(params.artifactsDir);
+    if (existingRun) {
+        const blockedState = params.bundle.audit_state?.status === "blocked"
+            ? params.bundle.audit_state
+            : buildBlockedAuditState({
+                state: params.state,
+                obligationId: params.obligationId,
+                executor: "agent",
+                blocker: buildManualReviewBlocker(LOCAL_SUBPROCESS_PROVIDER_NAME),
+            });
+        const blockedBundle = { ...params.bundle, audit_state: blockedState };
+        await writeCoreArtifacts(params.artifactsDir, blockedBundle);
+        await writeHandoffOnly({
+            root: params.root,
+            artifactsDir: params.artifactsDir,
+            bundle: blockedBundle,
+            audit_state: blockedState,
+            progress_summary: buildManualReviewBlocker(LOCAL_SUBPROCESS_PROVIDER_NAME),
+            providerName: LOCAL_SUBPROCESS_PROVIDER_NAME,
+            activeReviewRun: existingRun,
+        });
+        return {
+            state: blockedState,
+            bundle: blockedBundle,
+            activeReviewRun: existingRun,
+        };
+    }
+    const blockedState = buildBlockedAuditState({
+        state: params.state,
+        obligationId: params.obligationId,
+        executor: "agent",
+        blocker: buildManualReviewBlocker(LOCAL_SUBPROCESS_PROVIDER_NAME),
+    });
+    await writeCoreArtifacts(params.artifactsDir, {
+        ...params.bundle,
+        audit_state: blockedState,
+    });
+    const runId = buildRunId(params.obligationId, 1);
+    const paths = getRunPaths(params.artifactsDir, runId);
+    const pendingTasks = await addFileLineCountHints(params.root, buildPendingAuditTasks(params.bundle));
+    const pendingTasksPath = join(paths.runDir, "pending-audit-tasks.json");
+    const auditResultsPath = join(paths.runDir, "audit-results.json");
+    const taskReadPaths = new Set();
+    for (const pt of pendingTasks) {
+        for (const fp of pt.file_paths)
+            taskReadPaths.add(fp);
+    }
+    const task = {
+        contract_version: "audit-code-worker/v1alpha1",
+        run_id: runId,
+        repo_root: params.root,
+        artifacts_dir: params.artifactsDir,
+        obligation_id: params.obligationId,
+        preferred_executor: "agent",
+        result_path: paths.resultPath,
+        worker_command: [
+            process.execPath,
+            params.selfCliPath,
+            "worker-run",
+            "--task",
+            paths.taskPath,
+        ],
+        audit_results_path: auditResultsPath,
+        pending_audit_tasks_path: pendingTasksPath,
+        timeout_ms: params.timeoutMs,
+        max_retries: 0,
+        access: {
+            read_paths: [...taskReadPaths],
+            write_paths: [auditResultsPath, paths.resultPath],
+        },
+    };
+    const prompt = renderWorkerPrompt(task);
+    await writeWorkerTaskFiles(task, prompt, paths, params.artifactsDir, pendingTasks);
+    await writeJsonFile(pendingTasksPath, pendingTasks);
+    const activeReviewRun = activeReviewRunFromTask(params.artifactsDir, task);
+    if (!activeReviewRun) {
+        throw new Error("Internal error: failed to materialize active review run.");
+    }
+    const blockedBundle = {
+        ...params.bundle,
+        audit_state: blockedState,
+    };
+    await writeHandoffOnly({
+        root: params.root,
+        artifactsDir: params.artifactsDir,
+        bundle: blockedBundle,
+        audit_state: blockedState,
+        progress_summary: buildManualReviewBlocker(LOCAL_SUBPROCESS_PROVIDER_NAME),
+        providerName: LOCAL_SUBPROCESS_PROVIDER_NAME,
+        activeReviewRun,
+    });
+    return { state: blockedState, bundle: blockedBundle, activeReviewRun };
+}
+export async function persistConfigErrorHandoff(params) {
+    const bundle = await loadArtifactBundle(params.artifactsDir);
+    const blockedState = buildBlockedAuditState({
+        state: bundle.audit_state ?? deriveAuditState(bundle),
+        obligationId: null,
+        executor: null,
+        blocker: params.progressSummary,
+    });
+    await writeCoreArtifacts(params.artifactsDir, {
+        ...bundle,
+        audit_state: blockedState,
+    });
+    const handoff = buildAuditCodeHandoff({
+        root: params.root,
+        artifactsDir: params.artifactsDir,
+        state: blockedState,
+        bundle: { ...bundle, audit_state: blockedState },
+        progressSummary: params.progressSummary,
+        isConfigError: true,
+    });
+    await writeAuditCodeHandoffArtifacts(handoff);
+}

package/dist/cli/runToCompletion.d.ts

@@ -0,0 +1 @@
+export declare function cmdRunToCompletion(argv: string[]): Promise<void>;