autosnippet 2.0.2 → 2.4.0

package/dashboard/dist/index.html

@@ -5,14 +5,14 @@
     <link rel="icon" type="image/svg+xml" href="/vite.svg" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
     <title>AutoSnippet Dashboard</title>
-    <script type="module" crossorigin src="/assets/index-ChxJxX4B.js"></script>
+    <script type="module" crossorigin src="/assets/index-B9py3ybr.js"></script>
     <link rel="modulepreload" crossorigin href="/assets/yaml-qRaU8Ldn.js">
     <link rel="modulepreload" crossorigin href="/assets/vendor-Cky7Jynh.js">
     <link rel="modulepreload" crossorigin href="/assets/axios-C0Zqfgkc.js">
-    <link rel="modulepreload" crossorigin href="/assets/icons-B4FfLfBA.js">
+    <link rel="modulepreload" crossorigin href="/assets/icons-B5rs8uNb.js">
     <link rel="modulepreload" crossorigin href="/assets/syntax-highlighter-C6bvFtpx.js">
     <link rel="modulepreload" crossorigin href="/assets/react-markdown-Bp8u1wRC.js">
-    <link rel="stylesheet" crossorigin href="/assets/index-DwAp1mx5.css">
+    <link rel="stylesheet" crossorigin href="/assets/index-0YzLw2ga.css">
   </head>
   <body>
     <div id="root"></div>

package/lib/bootstrap.js

@@ -8,12 +8,9 @@ import Constitution from './core/constitution/Constitution.js';
 import ConstitutionValidator from './core/constitution/ConstitutionValidator.js';
 import PermissionManager from './core/permission/PermissionManager.js';
 import Gateway from './core/gateway/Gateway.js';
-import SessionManager from './core/session/SessionManager.js';
 import AuditLogger from './infrastructure/audit/AuditLogger.js';
 import AuditStore from './infrastructure/audit/AuditStore.js';
-import { initReasoningLogger } from './infrastructure/logging/ReasoningLogger.js';
-import { initRoleDriftMonitor, createRoleDriftPlugin } from './infrastructure/monitoring/RoleDriftMonitor.js';
-import { initComplianceEvaluator } from './infrastructure/quality/ComplianceEvaluator.js';
+import { SkillHooks } from './service/skills/SkillHooks.js';
 
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
@@ -148,11 +145,6 @@ export class Bootstrap {
     this.components.permissionManager = permissionManager;
     logger.info('PermissionManager initialized');
 
-    // Session Manager
-    const sessionManager = new SessionManager(db);
-    this.components.sessionManager = sessionManager;
-    logger.info('SessionManager initialized');
-
     // Audit System
     const auditStore = new AuditStore(db);
     const auditLogger = new AuditLogger(auditStore);
@@ -160,20 +152,10 @@ export class Bootstrap {
     this.components.auditLogger = auditLogger;
     logger.info('Audit system initialized');
 
-    // Reasoning Logger (透明推理日志)
-    const reasoningLogger = initReasoningLogger(db);
-    this.components.reasoningLogger = reasoningLogger;
-    logger.info('ReasoningLogger initialized');
-
-    // Role Drift Monitor (角色漂移检测)
-    const roleDriftMonitor = initRoleDriftMonitor(db);
-    this.components.roleDriftMonitor = roleDriftMonitor;
-    logger.info('RoleDriftMonitor initialized');
-
-    // Compliance Evaluator (合规评估)
-    const complianceEvaluator = initComplianceEvaluator(db);
-    this.components.complianceEvaluator = complianceEvaluator;
-    logger.info('ComplianceEvaluator initialized');
+    // Skill Hooks (扫描 skills/*/hooks.js + .autosnippet/skills/*/hooks.js)
+    const skillHooks = new SkillHooks();
+    await skillHooks.load();
+    this.components.skillHooks = skillHooks;
   }
 
   /**
@@ -191,17 +173,9 @@ export class Bootstrap {
       constitutionValidator: this.components.constitutionValidator,
       permissionManager: this.components.permissionManager,
       auditLogger: this.components.auditLogger,
-      sessionManager: this.components.sessionManager,
     });
 
     this.components.gateway = gateway;
-
-    // 注册角色漂移检测插件
-    if (this.components.roleDriftMonitor) {
-      gateway.use(createRoleDriftPlugin(this.components.roleDriftMonitor));
-      this.components.logger.info('RoleDrift plugin registered in Gateway');
-    }
-
     this.components.logger.info('Gateway initialized');
   }
 

package/lib/cli/SetupService.js

@@ -265,25 +265,27 @@ export class SetupService {
         '    no_remote: "allow"',
         '    cache_ttl: 86400',
         '',
-        'priorities:',
-        '  - id: 1',
-        '    name: "Data Integrity"',
-        '    rules: ["删除操作必须有确认步骤"]',
-        '  - id: 2',
-        '    name: "Human Oversight"',
-        '    rules: ["AI 生成的 Candidate 必须经人工审核"]',
+        'rules:',
+        '  - id: destructive_confirm',
+        '    check: "删除操作必须有 confirmed: true"',
+        '  - id: content_required',
+        '    check: "创建 candidate/recipe 必须提供 code 或 content"',
+        '  - id: ai_no_direct_recipe',
+        '    check: "AI actor 不能直接创建或批准 Recipe"',
+        '  - id: batch_authorized',
+        '    check: "批量操作必须有 authorized: true"',
         '',
         'roles:',
-        '  - id: "developer_admin"',
+        '  - id: "developer"',
+        '    name: "Developer"',
         '    permissions: ["*"]',
         '    requires_capability: ["git_write"]',
-        '  - id: "developer_contributor"',
-        '    permissions: ["read:*", "approve:candidates", "create:recipes"]',
-        '    requires_capability: ["git_write"]',
-        '  - id: "cursor_agent"',
+        '  - id: "external_agent"',
+        '    name: "External Agent"',
         '    permissions: ["read:recipes", "read:guard_rules", "create:candidates", "submit:candidates"]',
-        '  - id: "visitor"',
-        '    permissions: ["read:recipes", "read:candidates", "read:guard_rules", "search:query"]',
+        '  - id: "chat_agent"',
+        '    name: "ChatAgent"',
+        '    permissions: ["read:recipes", "read:candidates", "create:candidates", "read:guard_rules"]',
         '',
       ].join('\n'));
     }

package/lib/core/capability/CapabilityProbe.js

@@ -5,9 +5,9 @@
  * 探测结果被缓存（默认 24h）以避免重复执行。
  *
  * 三种探测结果：
- *   'admin'       — 无子仓库（个人项目）/ 有 push 权限 → developer_admin
- *   'contributor'  — 有子仓库但无 push 权限 → developer_contributor
- *   'visitor'      — （仅 AUTH_ENABLED=true 且无效 token 时出现）
+ *   'admin'       — 无子仓库（个人项目）/ 有 push 权限 → developer
+ *   'contributor'  — 有子仓库但无 push 权限 → developer（本地用户 = 项目 Owner）
+ *   'visitor'      — noRemote=deny 严格模式 → developer（仅探针级别区分，角色统一为 developer）
  *
  * 当没有 remote 时根据 constitution capabilities.git_write.no_remote 策略决定：
  *   'allow' (默认) — 本地开发，视为 admin
@@ -78,11 +78,13 @@ export class CapabilityProbe {
    * @returns {string}
    */
   toRole(probeResult) {
+    // 本地运行 AutoSnippet 的用户 = 项目 Owner = developer
+    // 探针级别的 admin/contributor/visitor 仅做信息记录，角色统一为 developer
     switch (probeResult) {
-      case 'admin':       return 'developer_admin';
-      case 'contributor': return 'developer_contributor';
+      case 'admin':
+      case 'contributor':
       case 'visitor':
-      default:            return 'visitor';
+      default:            return 'developer';
     }
   }
 

package/lib/core/constitution/Constitution.js

@@ -10,6 +10,7 @@ export class Constitution {
     this.configPath = configPath;
     this.config = this.loadConfig();
     this.priorities = this.config.priorities || [];
+    this.rules = this.config.rules || [];
     this.roles = new Map(this.config.roles?.map((r) => [r.id, r]) || []);
   }
 
@@ -32,6 +33,13 @@ export class Constitution {
     return this.priorities;
   }
 
+  /**
+   * 获取所有数据守护规则
+   */
+  getRules() {
+    return this.rules;
+  }
+
   /**
    * 获取能力定义
    */
@@ -97,6 +105,7 @@ export class Constitution {
   reload() {
     this.config = this.loadConfig();
     this.priorities = this.config.priorities || [];
+    this.rules = this.config.rules || [];
     this.roles = new Map(this.config.roles?.map((r) => [r.id, r]) || []);
   }
 
@@ -107,10 +116,10 @@ export class Constitution {
     return {
       version: this.config.version,
       effectiveDate: this.config.effective_date,
-      priorities: this.priorities.map((p) => ({
-        id: p.id,
-        name: p.name,
-        description: p.description,
+      priorities: this.priorities,
+      rules: this.rules.map((r) => ({
+        id: r.id,
+        description: r.description,
       })),
       roles: Array.from(this.roles.values()).map((r) => ({
         id: r.id,

package/lib/core/constitution/ConstitutionValidator.js

@@ -2,258 +2,153 @@ import { ConstitutionViolation } from '../../shared/errors/BaseError.js';
 import Logger from '../../infrastructure/logging/Logger.js';
 
 /**
- * ConstitutionValidator - 宪法验证器
+ * ConstitutionValidator — 数据守护验证器
+ *
+ * 精简设计: 4 条纯数据完整性规则，不做伦理/价值观判断。
+ * 每条规则对应 constitution.yaml 中的一个 rule.check 值。
  */
 export class ConstitutionValidator {
   constructor(constitution) {
     this.constitution = constitution;
     this.logger = Logger.getInstance();
+
+    /** rule.check → 检查函数 */
+    this.checkers = {
+      destructive_needs_confirmation: this._checkDestructive.bind(this),
+      creation_needs_content: this._checkContent.bind(this),
+      ai_cannot_approve_recipe: this._checkAiRecipe.bind(this),
+      batch_needs_authorization: this._checkBatch.bind(this),
+    };
   }
 
   /**
-   * 验证操作是否违反宪法
+   * 验证操作，返回违规列表
    */
   async validate(request) {
     const violations = [];
-    const priorities = this.constitution.getPriorities();
+    const rules = this.constitution.getRules?.() || this.constitution.rules || [];
 
-    for (const priority of priorities) {
-      const priorityViolations = await this.checkPriority(priority, request);
-      violations.push(...priorityViolations);
+    for (const rule of rules) {
+      const checker = this.checkers[rule.check];
+      if (checker) {
+        const v = checker(request, rule);
+        if (v) violations.push(v);
+      }
     }
 
-    // 按优先级排序（优先级 1 最重要）
-    violations.sort((a, b) => a.priority - b.priority);
-
-    const result = {
-      compliant: violations.length === 0,
-      violations: violations,
-      highestViolatedPriority: violations[0]?.priority || null,
-    };
+    // 兼容旧 priorities 格式（如果新 rules 为空但有旧 priorities）
+    if (rules.length === 0) {
+      const priorities = this.constitution.getPriorities?.() || [];
+      for (const p of priorities) {
+        const pvs = await this._checkLegacyPriority(p, request);
+        violations.push(...pvs);
+      }
+    }
 
-    if (!result.compliant) {
-      this.logger.warn('Constitution violations detected', {
+    if (violations.length > 0) {
+      this.logger.warn('Constitution violations', {
         actor: request.actor,
         action: request.action,
-        violations: result.violations.length,
+        count: violations.length,
       });
     }
 
-    return result;
+    return { compliant: violations.length === 0, violations };
   }
 
   /**
-   * 检查特定优先级的规则
+   * 强制验证（违规时抛异常）
    */
-  async checkPriority(priority, request) {
-    const violations = [];
-    const verb = this._extractVerb(request.action);
-    const resName = this._extractResourceName(request.action, request.resource);
-
-    // Priority 1: Data Integrity
-    if (priority.id === 1) {
-      // 检查破坏性操作
-      if (this.isDestructiveOperation(request)) {
-        if (!request.data?.confirmed && !request.confirmed) {
-          violations.push({
-            priority: 1,
-            rule: '删除操作必须有确认步骤',
-            reason: '操作未经确认',
-            suggestion: '添加 confirmed: true 或 --confirm 标志',
-          });
-        }
-      }
-
-      // 检查数据完整性
-      // 支持 Gateway 格式 (candidate:create) + REST 格式 (create + /candidates) + Legacy 格式 (create_candidate)
-      const isCandidateOrRecipeCreation =
-        (verb === 'create' && (resName.includes('candidate') || resName.includes('recipe'))) ||
-        (request.action === 'create' && (request.resource?.includes('/candidates') || request.resource?.includes('/recipes'))) ||
-        request.action === 'create_candidate' ||
-        request.action === 'create_recipe';
-
-      if (isCandidateOrRecipeCreation) {
-        // 单条: data.code / data.content
-        // 批量: data.items (每条内含 code)
-        // 草稿: data.filePaths (内容在文件中)
-        const hasContent = request.data?.code || request.code || request.data?.content
-          || (Array.isArray(request.data?.items) && request.data.items.length > 0)
-          || request.data?.filePaths;
-        if (!hasContent) {
-          violations.push({
-            priority: 1,
-            rule: '所有内容必须可验证',
-            reason: '缺少 code/content 字段',
-            suggestion: '提供完整的代码或内容',
-          });
-        }
-      }
-    }
-
-    // Priority 2: Human Oversight
-    if (priority.id === 2) {
-      // AI 不能直接批准或创建 Recipe
-      // 支持 Gateway 格式 (recipe:create, candidate:approve, recipe:publish) + Legacy 格式
-      const isRecipeModification =
-        (verb === 'create' && resName.includes('recipe')) ||
-        (verb === 'approve') ||
-        (verb === 'publish' && resName.includes('recipe')) ||
-        (request.action === 'create' && request.resource?.includes('/recipes')) ||
-        request.action === 'approve_candidate' ||
-        request.action === 'approve_recipe' ||
-        request.action === 'create_recipe';
-
-      if (isRecipeModification) {
-        if (this.isAIActor(request.actor)) {
-          violations.push({
-            priority: 2,
-            rule: 'AI 生成的 Candidate 必须经人工审核',
-            reason: 'AI 不能直接批准或创建 Recipe',
-            suggestion: '通过 Dashboard 人工审批或使用 developer_admin 角色',
-          });
-        }
-      }
-
-      // 批量操作需要授权
-      if (request.action === 'batch_update' || request.action === 'batch_delete') {
-        if (!request.data?.authorized && !request.authorized) {
-          violations.push({
-            priority: 2,
-            rule: '批量操作需要明确授权',
-            reason: '缺少授权标志',
-            suggestion: '添加 authorized: true 标志',
-          });
-        }
-      }
-    }
-
-    // Priority 3: AI Transparency
-    if (priority.id === 3) {
-      // AI 生成必须有 reasoning
-      // 支持 Gateway 格式 (candidate:create) + REST 格式 + Legacy 格式
-      const isCandidateCreation =
-        (verb === 'create' && resName.includes('candidate')) ||
-        (request.action === 'create' && request.resource?.includes('/candidates')) ||
-        request.action === 'create_candidate';
-
-      if (isCandidateCreation) {
-        if (this.isAIActor(request.actor)) {
-          // MCP handler (_createCandidateItem) 会自动生成默认 reasoning，
-          // 此处仅在 reasoning 明确为空对象时警告，不阻断提交
-          const r = request.data?.reasoning;
-          if (r && typeof r === 'object') {
-            if (!r.whyStandard && !r.sources) {
-              violations.push({
-                priority: 3,
-                rule: 'Reasoning 信息必须完整',
-                reason: '提供了 reasoning 但缺少 whyStandard 和 sources',
-                suggestion: '提供完整的推理过程说明',
-              });
-            }
-          }
-          // 未传 reasoning 时不视为违规 — handler 层会自动生成默认值
-        }
-      }
-
-      // Guard 规则（现在是 Recipe）必须有来源
-      // 支持 Gateway 格式 (guard_rule:create) + REST 格式 + Legacy 格式
-      const isGuardRuleModification =
-        ((verb === 'create' || verb === 'update' || verb === 'enable') && resName.includes('guard')) ||
-        (request.action === 'create' && request.resource?.includes('/guard')) ||
-        (request.action === 'update' && request.resource?.includes('/guard')) ||
-        request.action === 'create_guard_rule' ||
-        request.action === 'update_guard_rule';
-
-      if (isGuardRuleModification) {
-        if (!request.data?.source_recipe_id && !request.data?.sourceCandidate) {
-          violations.push({
-            priority: 3,
-            rule: 'Guard 规则必须关联来源',
-            reason: '缺少 source_recipe_id 或 sourceCandidate',
-            suggestion: '指定规则来源的 Recipe ID 或 Candidate ID',
-          });
-        }
-      }
+  async enforce(request) {
+    const result = await this.validate(request);
+    if (!result.compliant) {
+      throw new ConstitutionViolation(result.violations);
     }
+    return result;
+  }
 
-    // Priority 4: Helpfulness - 通常不会导致违规，仅提示优化建议
-    // （此优先级主要用于质量评估，而非硬性限制）
+  // ─── 规则检查器 ────────────────────────────────────────
 
-    return violations;
+  /** 删除操作需要确认 */
+  _checkDestructive(req, rule) {
+    const destructive = ['delete', 'remove', 'destroy', 'purge', 'batch_delete'];
+    if (!destructive.some(w => req.action?.toLowerCase().includes(w))) return null;
+    if (req.data?.confirmed || req.confirmed) return null;
+    return { rule: rule.id, reason: '操作未经确认', suggestion: '添加 confirmed: true' };
   }
 
-  /**
-   * 判断是否为破坏性操作
-   */
-  isDestructiveOperation(request) {
-    const destructiveActions = [
-      'delete',
-      'remove',
-      'destroy',
-      'purge',
-      'truncate',
-      'drop',
-      'batch_delete',
-    ];
+  /** 创建候选/Recipe 需要内容 */
+  _checkContent(req, rule) {
+    const verb = this._verb(req.action);
+    const res = this._resource(req.action, req.resource);
+    const isCreation =
+      (verb === 'create' && (res.includes('candidate') || res.includes('recipe'))) ||
+      req.action === 'create_candidate' || req.action === 'create_recipe';
+    if (!isCreation) return null;
+    const ok = req.data?.code || req.code || req.data?.content
+      || (Array.isArray(req.data?.items) && req.data.items.length > 0)
+      || req.data?.filePaths;
+    if (ok) return null;
+    return { rule: rule.id, reason: '缺少 code/content', suggestion: '提供代码或内容' };
+  }
 
-    return destructiveActions.some((word) => request.action.toLowerCase().includes(word));
+  /** AI 不能直接创建/批准 Recipe */
+  _checkAiRecipe(req, rule) {
+    if (!this._isAI(req.actor)) return null;
+    const verb = this._verb(req.action);
+    const res = this._resource(req.action, req.resource);
+    const isRecipeMod =
+      (verb === 'create' && res.includes('recipe')) || verb === 'approve' || verb === 'publish'
+      || req.action === 'approve_candidate' || req.action === 'create_recipe';
+    if (!isRecipeMod) return null;
+    return { rule: rule.id, reason: 'AI 不能直接操作 Recipe', suggestion: '通过 Dashboard 人工审批' };
   }
 
-  /**
-   * 判断是否为 AI 角色
-   */
-  isAIActor(actor) {
-    const aiActors = ['cursor_agent', 'asd_ais', 'guard_engine'];
-    return aiActors.some((ai) => actor.toLowerCase().includes(ai));
+  /** 批量操作需要授权 */
+  _checkBatch(req, rule) {
+    if (!req.action?.includes('batch_')) return null;
+    if (req.data?.authorized || req.authorized) return null;
+    return { rule: rule.id, reason: '缺少授权标志', suggestion: '添加 authorized: true' };
   }
 
-  /**
-   * 从 action 字符串提取动词
-   * 支持多种格式:
-   *   'create'              → 'create'
-   *   'candidate:create'    → 'create'   (Gateway)
-   *   'create_candidate'    → 'create'   (Legacy)
-   */
-  _extractVerb(action) {
+  // ─── 辅助方法 ──────────────────────────────────────────
+
+  _verb(action) {
     if (!action) return '';
-    // Gateway resource:verb 格式
-    if (action.includes(':')) return action.split(':').pop();
-    // 其他格式直接返回
-    return action;
+    return action.includes(':') ? action.split(':').pop() : action;
   }
 
-  /**
-   * 从 action 和 resource 提取资源名（单数形式）
-   * 支持:
-   *   'candidate:create' → 'candidate'       (Gateway)
-   *   '/candidates/123'  → 'candidates'      (REST path)
-   *   'candidates'       → 'candidates'      (plain)
-   */
-  _extractResourceName(action, resource) {
-    // 优先从 Gateway action 格式提取
-    if (action?.includes(':')) {
-      return action.split(':')[0];
-    }
-    // 从 resource 提取
-    if (typeof resource === 'string') {
-      if (resource.startsWith('/')) {
-        const match = resource.match(/^\/([^/]+)/);
-        return match ? match[1] : resource;
-      }
-      return resource;
+  _resource(action, resource) {
+    if (action?.includes(':')) return action.split(':')[0];
+    if (typeof resource === 'string' && resource.startsWith('/')) {
+      const m = resource.match(/^\/([^/]+)/);
+      return m ? m[1] : resource;
     }
-    return '';
+    return resource || '';
   }
 
-  /**
-   * 强制验证（违规时抛出异常）
-   */
-  async enforce(request) {
-    const result = await this.validate(request);
-    if (!result.compliant) {
-      throw new ConstitutionViolation(result.violations);
+  _isAI(actor) {
+    return ['external_agent', 'chat_agent'].some(a => actor?.toLowerCase().includes(a));
+  }
+
+  // ─── 旧格式兼容 ───────────────────────────────────────
+
+  /** 兼容旧 priorities 格式 */
+  async _checkLegacyPriority(priority, request) {
+    const violations = [];
+    if (priority.id === 1) {
+      const v = this._checkDestructive(request, { id: 'destructive_confirm' });
+      if (v) violations.push(v);
+      const v2 = this._checkContent(request, { id: 'content_required' });
+      if (v2) violations.push(v2);
     }
-    return result;
+    if (priority.id === 2) {
+      const v = this._checkAiRecipe(request, { id: 'ai_no_direct_recipe' });
+      if (v) violations.push(v);
+      const v2 = this._checkBatch(request, { id: 'batch_authorized' });
+      if (v2) violations.push(v2);
+    }
+    return violations;
   }
 }