npm - autosnippet - Versions diffs - 3.3.0 → 3.3.3 - Mend

autosnippet 3.3.0 → 3.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (245) hide show

package/dashboard/dist/assets/icons-BJ2mUBi8.js +1 -0
package/dashboard/dist/assets/index-B659K9t5.js +128 -0
package/dashboard/dist/assets/index-NCm40PMD.css +1 -0
package/dashboard/dist/index.html +3 -3
package/dist/bin/cli.d.ts +1 -0
package/dist/bin/cli.js +284 -142
package/dist/lib/agent/context/ExplorationTracker.d.ts +2 -0
package/dist/lib/agent/context/ExplorationTracker.js +21 -3
package/dist/lib/agent/core/ToolExecutionPipeline.d.ts +3 -1
package/dist/lib/agent/core/ToolExecutionPipeline.js +8 -1
package/dist/lib/agent/forge/DynamicComposer.d.ts +58 -0
package/dist/lib/agent/forge/DynamicComposer.js +99 -0
package/dist/lib/agent/forge/SandboxRunner.d.ts +60 -0
package/dist/lib/agent/forge/SandboxRunner.js +251 -0
package/dist/lib/agent/forge/TemporaryToolRegistry.d.ts +76 -0
package/dist/lib/agent/forge/TemporaryToolRegistry.js +154 -0
package/dist/lib/agent/forge/ToolForge.d.ts +92 -0
package/dist/lib/agent/forge/ToolForge.js +239 -0
package/dist/lib/agent/forge/ToolRequirementAnalyzer.d.ts +44 -0
package/dist/lib/agent/forge/ToolRequirementAnalyzer.js +119 -0
package/dist/lib/agent/tools/ToolRegistry.d.ts +2 -0
package/dist/lib/agent/tools/ToolRegistry.js +4 -0
package/dist/lib/agent/tools/composite.js +0 -1
package/dist/lib/agent/tools/index.d.ts +2 -50
package/dist/lib/agent/tools/index.js +2 -3
package/dist/lib/agent/tools/lifecycle.d.ts +1 -58
package/dist/lib/agent/tools/lifecycle.js +2 -75
package/dist/lib/cli/KnowledgeSyncService.d.ts +26 -0
package/dist/lib/cli/KnowledgeSyncService.js +33 -1
package/dist/lib/cli/deploy/FileManifest.d.ts +0 -21
package/dist/lib/cli/deploy/FileManifest.js +0 -11
package/dist/lib/domain/knowledge/KnowledgeEntry.d.ts +10 -0
package/dist/lib/domain/knowledge/KnowledgeEntry.js +2 -0
package/dist/lib/domain/knowledge/Lifecycle.d.ts +19 -2
package/dist/lib/domain/knowledge/Lifecycle.js +32 -6
package/dist/lib/domain/knowledge/UnifiedValidator.d.ts +1 -5
package/dist/lib/domain/knowledge/UnifiedValidator.js +7 -44
package/dist/lib/domain/knowledge/values/Stats.d.ts +29 -0
package/dist/lib/domain/knowledge/values/Stats.js +41 -0
package/dist/lib/external/mcp/McpServer.d.ts +19 -38
package/dist/lib/external/mcp/McpServer.js +145 -117
package/dist/lib/external/mcp/autoApproveInjector.js +0 -2
package/dist/lib/external/mcp/handlers/bootstrap/MissionBriefingBuilder.d.ts +26 -1
package/dist/lib/external/mcp/handlers/bootstrap/MissionBriefingBuilder.js +41 -0
package/dist/lib/external/mcp/handlers/bootstrap/pipeline/orchestrator.js +49 -0
package/dist/lib/external/mcp/handlers/bootstrap/shared/bootstrap-phases.d.ts +3 -0
package/dist/lib/external/mcp/handlers/bootstrap/shared/bootstrap-phases.js +27 -0
package/dist/lib/external/mcp/handlers/bootstrap/skills.js +1 -1
package/dist/lib/external/mcp/handlers/bootstrap-external.js +1 -0
package/dist/lib/external/mcp/handlers/bootstrap-internal.js +2 -0
package/dist/lib/external/mcp/handlers/browse.d.ts +1 -0
package/dist/lib/external/mcp/handlers/browse.js +2 -1
package/dist/lib/external/mcp/handlers/consolidated.d.ts +117 -6
package/dist/lib/external/mcp/handlers/consolidated.js +251 -71
package/dist/lib/external/mcp/handlers/guard.d.ts +150 -0
package/dist/lib/external/mcp/handlers/guard.js +239 -5
package/dist/lib/external/mcp/handlers/knowledge.d.ts +0 -29
package/dist/lib/external/mcp/handlers/knowledge.js +1 -76
package/dist/lib/external/mcp/handlers/panorama.d.ts +36 -0
package/dist/lib/external/mcp/handlers/panorama.js +156 -0
package/dist/lib/external/mcp/handlers/system.d.ts +2 -54
package/dist/lib/external/mcp/handlers/system.js +3 -113
package/dist/lib/external/mcp/handlers/task.d.ts +13 -24
package/dist/lib/external/mcp/handlers/task.js +218 -557
package/dist/lib/external/mcp/handlers/types.d.ts +91 -8
package/dist/lib/external/mcp/handlers/types.js +18 -1
package/dist/lib/external/mcp/handlers/wiki-external.d.ts +18 -1
package/dist/lib/external/mcp/handlers/wiki-external.js +16 -1
package/dist/lib/external/mcp/tools.d.ts +18 -24
package/dist/lib/external/mcp/tools.js +132 -159
package/dist/lib/http/HttpServer.js +52 -0
package/dist/lib/http/middleware/validate.js +7 -3
package/dist/lib/http/routes/audit.d.ts +8 -0
package/dist/lib/http/routes/audit.js +51 -0
package/dist/lib/http/routes/guardReport.d.ts +10 -0
package/dist/lib/http/routes/guardReport.js +143 -0
package/dist/lib/http/routes/knowledge.js +32 -1
package/dist/lib/http/routes/panorama.d.ts +11 -0
package/dist/lib/http/routes/panorama.js +322 -0
package/dist/lib/http/routes/signals.d.ts +10 -0
package/dist/lib/http/routes/signals.js +104 -0
package/dist/lib/http/routes/task.d.ts +2 -3
package/dist/lib/http/routes/task.js +17 -347
package/dist/lib/http/routes/violations.js +1 -1
package/dist/lib/infrastructure/audit/AuditLogger.d.ts +6 -1
package/dist/lib/infrastructure/audit/AuditLogger.js +14 -1
package/dist/lib/infrastructure/database/drizzle/schema.d.ts +202 -504
package/dist/lib/infrastructure/database/drizzle/schema.js +38 -69
package/dist/lib/infrastructure/database/migrations/004_evolution_proposals.d.ts +8 -0
package/dist/lib/infrastructure/database/migrations/004_evolution_proposals.js +43 -0
package/dist/lib/infrastructure/database/migrations/005_recipe_source_refs.d.ts +9 -0
package/dist/lib/infrastructure/database/migrations/005_recipe_source_refs.js +24 -0
package/dist/lib/infrastructure/logging/Logger.d.ts +2 -0
package/dist/lib/infrastructure/logging/Logger.js +34 -7
package/dist/lib/infrastructure/monitoring/ErrorTracker.js +3 -1
package/dist/lib/infrastructure/monitoring/PerformanceMonitor.d.ts +2 -2
package/dist/lib/infrastructure/monitoring/PerformanceMonitor.js +12 -10
package/dist/lib/infrastructure/notification/LarkNotifier.d.ts +24 -0
package/dist/lib/infrastructure/notification/LarkNotifier.js +97 -0
package/dist/lib/infrastructure/report/ReportStore.d.ts +45 -0
package/dist/lib/infrastructure/report/ReportStore.js +133 -0
package/dist/lib/infrastructure/signal/SignalAggregator.d.ts +18 -0
package/dist/lib/infrastructure/signal/SignalAggregator.js +84 -0
package/dist/lib/infrastructure/signal/SignalBridge.d.ts +13 -0
package/dist/lib/infrastructure/signal/SignalBridge.js +20 -0
package/dist/lib/infrastructure/signal/SignalBus.d.ts +63 -0
package/dist/lib/infrastructure/signal/SignalBus.js +106 -0
package/dist/lib/infrastructure/signal/SignalTraceWriter.d.ts +36 -0
package/dist/lib/infrastructure/signal/SignalTraceWriter.js +130 -0
package/dist/lib/infrastructure/vector/HnswVectorAdapter.js +18 -2
package/dist/lib/injection/ServiceContainer.js +8 -0
package/dist/lib/injection/ServiceMap.d.ts +16 -10
package/dist/lib/injection/modules/AgentModule.d.ts +1 -1
package/dist/lib/injection/modules/AgentModule.js +7 -1
package/dist/lib/injection/modules/AppModule.d.ts +1 -1
package/dist/lib/injection/modules/AppModule.js +4 -13
package/dist/lib/injection/modules/GuardModule.js +27 -2
package/dist/lib/injection/modules/InfraModule.d.ts +0 -1
package/dist/lib/injection/modules/InfraModule.js +9 -7
package/dist/lib/injection/modules/KnowledgeModule.d.ts +5 -0
package/dist/lib/injection/modules/KnowledgeModule.js +131 -0
package/dist/lib/injection/modules/PanoramaModule.d.ts +18 -0
package/dist/lib/injection/modules/PanoramaModule.js +76 -0
package/dist/lib/injection/modules/SignalModule.d.ts +10 -0
package/dist/lib/injection/modules/SignalModule.js +84 -0
package/dist/lib/repository/knowledge/KnowledgeRepository.impl.d.ts +1 -0
package/dist/lib/repository/knowledge/KnowledgeRepository.impl.js +6 -0
package/dist/lib/service/bootstrap/BootstrapTaskManager.d.ts +3 -1
package/dist/lib/service/bootstrap/BootstrapTaskManager.js +20 -1
package/dist/lib/service/bootstrap/UiStartupTasks.d.ts +45 -0
package/dist/lib/service/bootstrap/UiStartupTasks.js +101 -0
package/dist/lib/service/delivery/AgentInstructionsGenerator.js +4 -5
package/dist/lib/service/delivery/CursorDeliveryPipeline.d.ts +3 -1
package/dist/lib/service/delivery/CursorDeliveryPipeline.js +13 -10
package/dist/lib/service/delivery/RulesGenerator.js +3 -2
package/dist/lib/service/evolution/ConsolidationAdvisor.d.ts +114 -0
package/dist/lib/service/evolution/ConsolidationAdvisor.js +542 -0
package/dist/lib/service/evolution/ContradictionDetector.d.ts +54 -0
package/dist/lib/service/evolution/ContradictionDetector.js +253 -0
package/dist/lib/service/evolution/DecayDetector.d.ts +71 -0
package/dist/lib/service/evolution/DecayDetector.js +244 -0
package/dist/lib/service/evolution/EnhancementSuggester.d.ts +38 -0
package/dist/lib/service/evolution/EnhancementSuggester.js +220 -0
package/dist/lib/service/evolution/KnowledgeMetabolism.d.ts +82 -0
package/dist/lib/service/evolution/KnowledgeMetabolism.js +167 -0
package/dist/lib/service/evolution/RedundancyAnalyzer.d.ts +53 -0
package/dist/lib/service/evolution/RedundancyAnalyzer.js +210 -0
package/dist/lib/service/evolution/StagingManager.d.ts +57 -0
package/dist/lib/service/evolution/StagingManager.js +201 -0
package/dist/lib/service/guard/ComplianceReporter.d.ts +42 -2
package/dist/lib/service/guard/ComplianceReporter.js +43 -5
package/dist/lib/service/guard/CoverageAnalyzer.d.ts +54 -0
package/dist/lib/service/guard/CoverageAnalyzer.js +149 -0
package/dist/lib/service/guard/GuardCheckEngine.d.ts +42 -0
package/dist/lib/service/guard/GuardCheckEngine.js +465 -14
package/dist/lib/service/guard/GuardFeedbackLoop.d.ts +3 -0
package/dist/lib/service/guard/GuardFeedbackLoop.js +9 -0
package/dist/lib/service/guard/ReverseGuard.d.ts +73 -0
package/dist/lib/service/guard/ReverseGuard.js +256 -0
package/dist/lib/service/guard/RuleLearner.d.ts +12 -0
package/dist/lib/service/guard/RuleLearner.js +38 -0
package/dist/lib/service/guard/UncertaintyCollector.d.ts +83 -0
package/dist/lib/service/guard/UncertaintyCollector.js +149 -0
package/dist/lib/service/guard/ViolationsStore.d.ts +1 -0
package/dist/lib/service/guard/ViolationsStore.js +33 -3
package/dist/lib/service/knowledge/ConfidenceRouter.d.ts +13 -0
package/dist/lib/service/knowledge/ConfidenceRouter.js +14 -0
package/dist/lib/service/knowledge/KnowledgeService.js +22 -4
package/dist/lib/service/knowledge/SourceRefReconciler.d.ts +68 -0
package/dist/lib/service/knowledge/SourceRefReconciler.js +309 -0
package/dist/lib/service/panorama/CouplingAnalyzer.d.ts +27 -0
package/dist/lib/service/panorama/CouplingAnalyzer.js +192 -0
package/dist/lib/service/panorama/DimensionAnalyzer.d.ts +28 -0
package/dist/lib/service/panorama/DimensionAnalyzer.js +320 -0
package/dist/lib/service/panorama/LayerInferrer.d.ts +19 -0
package/dist/lib/service/panorama/LayerInferrer.js +182 -0
package/dist/lib/service/panorama/ModuleDiscoverer.d.ts +24 -0
package/dist/lib/service/panorama/ModuleDiscoverer.js +185 -0
package/dist/lib/service/panorama/PanoramaAggregator.d.ts +29 -0
package/dist/lib/service/panorama/PanoramaAggregator.js +228 -0
package/dist/lib/service/panorama/PanoramaScanner.d.ts +52 -0
package/dist/lib/service/panorama/PanoramaScanner.js +188 -0
package/dist/lib/service/panorama/PanoramaService.d.ts +125 -0
package/dist/lib/service/panorama/PanoramaService.js +363 -0
package/dist/lib/service/panorama/PanoramaTypes.d.ts +134 -0
package/dist/lib/service/panorama/PanoramaTypes.js +6 -0
package/dist/lib/service/panorama/RoleRefiner.d.ts +48 -0
package/dist/lib/service/panorama/RoleRefiner.js +535 -0
package/dist/lib/service/search/BM25Scorer.d.ts +2 -2
package/dist/lib/service/search/CoarseRanker.d.ts +7 -6
package/dist/lib/service/search/CoarseRanker.js +11 -10
package/dist/lib/service/search/FieldWeightedScorer.d.ts +81 -0
package/dist/lib/service/search/FieldWeightedScorer.js +318 -0
package/dist/lib/service/search/MultiSignalRanker.d.ts +3 -2
package/dist/lib/service/search/MultiSignalRanker.js +17 -1
package/dist/lib/service/search/SearchEngine.d.ts +9 -7
package/dist/lib/service/search/SearchEngine.js +67 -10
package/dist/lib/service/search/SearchTypes.d.ts +25 -3
package/dist/lib/service/search/SearchTypes.js +6 -1
package/dist/lib/service/signal/HitRecorder.d.ts +68 -0
package/dist/lib/service/signal/HitRecorder.js +173 -0
package/dist/lib/service/skills/SignalCollector.d.ts +3 -1
package/dist/lib/service/skills/SignalCollector.js +31 -1
package/dist/lib/service/task/IntentExtractor.d.ts +66 -0
package/dist/lib/service/task/IntentExtractor.js +256 -0
package/dist/lib/service/task/PrimeSearchPipeline.d.ts +54 -0
package/dist/lib/service/task/PrimeSearchPipeline.js +113 -0
package/dist/lib/service/vector/VectorService.d.ts +3 -0
package/dist/lib/service/vector/VectorService.js +38 -4
package/dist/lib/shared/schemas/mcp-tools.d.ts +41 -96
package/dist/lib/shared/schemas/mcp-tools.js +59 -119
package/dist/scripts/analyze-signals.d.ts +20 -0
package/dist/scripts/analyze-signals.js +155 -0
package/dist/scripts/diagnose-mcp.js +1 -1
package/package.json +1 -1
package/skills/autosnippet-create/SKILL.md +98 -89
package/skills/autosnippet-devdocs/SKILL.md +55 -57
package/templates/claude-code/hooks/autosnippet-session.sh +10 -15
package/templates/cursor-hooks/hooks/session-start.sh +1 -1
package/templates/guard-ci.yml +2 -2
package/templates/instructions/agent-static.md +2 -1
package/templates/instructions/conventions.md +5 -6
package/templates/recipes-setup/README.md +1 -2
package/templates/recipes-setup/_template.md +39 -39
package/dashboard/dist/assets/icons-BofcEZ3f.js +0 -1
package/dashboard/dist/assets/index-D0whuycy.css +0 -1
package/dashboard/dist/assets/index-SiN1GChm.js +0 -128
package/dist/lib/domain/task/Task.d.ts +0 -140
package/dist/lib/domain/task/Task.js +0 -254
package/dist/lib/domain/task/TaskDependency.d.ts +0 -23
package/dist/lib/domain/task/TaskDependency.js +0 -34
package/dist/lib/domain/task/TaskIdGenerator.d.ts +0 -40
package/dist/lib/domain/task/TaskIdGenerator.js +0 -75
package/dist/lib/domain/task/index.d.ts +0 -4
package/dist/lib/domain/task/index.js +0 -4
package/dist/lib/infrastructure/database/migrations/002_add_tasks.d.ts +0 -11
package/dist/lib/infrastructure/database/migrations/002_add_tasks.js +0 -86
package/dist/lib/repository/task/TaskRepository.impl.d.ts +0 -171
package/dist/lib/repository/task/TaskRepository.impl.js +0 -347
package/dist/lib/service/task/TaskGraphService.d.ts +0 -222
package/dist/lib/service/task/TaskGraphService.js +0 -597
package/dist/lib/service/task/TaskKnowledgeBridge.d.ts +0 -95
package/dist/lib/service/task/TaskKnowledgeBridge.js +0 -298
package/dist/lib/service/task/TaskReadyEngine.d.ts +0 -84
package/dist/lib/service/task/TaskReadyEngine.js +0 -115

package/dist/lib/service/guard/GuardCheckEngine.js CHANGED Viewed

@@ -10,6 +10,7 @@ import { LanguageService } from '../../shared/LanguageService.js';
 import { runCodeLevelChecks } from './GuardCodeChecks.js';
 import { runCrossFileChecks } from './GuardCrossFileChecks.js';
 import { buildCommentMask, buildTestBlockMask, clearPatternCache, compilePattern, detectLanguage, } from './GuardPatternUtils.js';
+import { UncertaintyCollector } from './UncertaintyCollector.js';
 /**
  * 内置默认规则集 — 多语言基础规则
  *
@@ -80,7 +81,7 @@ const BUILT_IN_RULES = {
             'dequeueReusableCell.*as\\s*!',
             'dequeueReusableSupplementaryView.*as\\s*!',
             'dequeueReusableHeaderFooterView.*as\\s*!',
-            'layerClass.*layer\\s+as\\s*!',
+            '\\blayer\\s+as\\s*!',
         ],
     },
     'swift-force-try': {
@@ -456,6 +457,11 @@ export class GuardCheckEngine {
     _epInjected;
     _externalRules;
     _guardConfig;
+    _signalBus;
+    /** 上次 guard 信号指纹，用于去重（相同结果不重复发射） */
+    _lastGuardSignalKey;
+    _lastBlindSpotSignalKey;
+    _uncertaintyCollector;
     db;
     logger;
     constructor(db, options = {}) {
@@ -473,6 +479,10 @@ export class GuardCheckEngine {
         this._epInjected = false;
         /** Guard 配置 — 允许禁用特定规则或调整 Code-Level 检查阈值 */
         this._guardConfig = options.guardConfig || {};
+        this._signalBus = options.signalBus || null;
+        this._lastGuardSignalKey = '';
+        this._lastBlindSpotSignalKey = '';
+        this._uncertaintyCollector = new UncertaintyCollector();
     }
     /**
      * 注入 Enhancement Pack 外部规则（支持 RegExp 和 string pattern）
@@ -534,10 +544,10 @@ export class GuardCheckEngine {
                 let rows = [];
                 try {
                     rows = this.db
-                        .prepare(`SELECT id, title, description, language, scope, constraints
+                        .prepare(`SELECT id, title, description, language, scope, constraints, lifecycle
              FROM knowledge_entries
              WHERE (kind = 'rule' OR knowledgeType = 'boundary-constraint')
-               AND lifecycle = 'active'`)
+               AND lifecycle IN ('active', 'staging', 'evolving', 'decaying')`)
                         .all();
                 }
                 catch {
@@ -557,12 +567,14 @@ export class GuardCheckEngine {
                     for (const g of guards) {
                         const ruleType = g.type || 'regex';
                         const lang = r.language;
+                        const isDecaying = r.lifecycle === 'decaying';
+                        const rawSeverity = (g.severity || 'warning');
                         const base = {
                             id: (g.id || r.id),
                             name: (g.name || r.title),
                             message: (g.message || r.description || r.title),
                             languages: lang ? [lang, LanguageService.toGuardLangId(lang)] : [],
-                            severity: (g.severity || 'warning'),
+                            severity: isDecaying && rawSeverity === 'error' ? 'warning' : rawSeverity,
                             dimension: (r.scope || 'file'),
                             source: 'database',
                             fixSuggestion: (g.fixSuggestion || null),
@@ -607,6 +619,7 @@ export class GuardCheckEngine {
                     ...(rule.excludePaths ? { excludePaths: rule.excludePaths } : {}),
                     ...(rule.skipComments ? { skipComments: true } : {}),
                     ...(rule.skipTestBlocks ? { skipTestBlocks: true } : {}),
+                    ...(rule.excludeLinePatterns ? { excludeLinePatterns: rule.excludeLinePatterns } : {}),
                 });
             }
         }
@@ -692,6 +705,8 @@ export class GuardCheckEngine {
             }
             catch {
                 this.logger.debug(`Invalid regex in rule ${rule.id}: ${rule.pattern}`);
+                this._uncertaintyCollector.recordSkip('regex', 'invalid_regex', `Rule ${rule.id}: pattern "${rule.pattern}" failed to compile`, { ruleId: rule.id || rule.name });
+                this._uncertaintyCollector.addUncertain(rule.id || rule.name, rule.message, 'regex', 'invalid_regex', `Pattern compilation failed: ${rule.pattern}`);
                 continue;
             }
             const shouldSkipComments = !!rule.skipComments;
@@ -736,8 +751,10 @@ export class GuardCheckEngine {
             disabledRules: this._guardConfig.disabledRules,
             codeLevelThresholds: numericThresholds,
         }));
-        // AST 语义规则检查
+        // AST 语义规则检查（Layer 1: 3 查询函数）
         violations.push(...this._runAstRuleChecks(code, language));
+        // AST Layer 2: analyzeFile() 深层检查（复杂度、类膨胀、深嵌套）
+        violations.push(...this._runAstLayer2Checks(code, language, filePath));
         // 跟踪 Guard 命中次数（回写 Recipe 统计）
         this.trackGuardHits(violations);
         // ── Reasoning Enrichment: 推理信息跟随数据流动 ──
@@ -780,11 +797,24 @@ export class GuardCheckEngine {
             // AstAnalyzer 作为 ESM 模块，在 constructor 时已被引入
             AstAnalyzer = this._getAstAnalyzer();
             if (!AstAnalyzer || !AstAnalyzer.isAvailable()) {
+                // AST 不可用 — 记录 uncertain
+                for (const rule of astRules) {
+                    this._uncertaintyCollector.recordSkip('ast', 'ast_unavailable', `AST check skipped: tree-sitter not available for lang "${language}"`, { ruleId: rule.id });
+                    this._uncertaintyCollector.addUncertain(rule.id, rule.message, 'ast', 'ast_unavailable', `Tree-sitter not available for language "${language}"`);
+                }
+                this._uncertaintyCollector.recordLayerStats('ast', astRules.length, 0);
                 return [];
             }
         }
         catch {
             this.logger.debug('AstAnalyzer not available, skipping AST rules');
+            for (const rule of astRules) {
+                this._uncertaintyCollector.recordSkip('ast', 'ast_unavailable', `AST module load failed`, {
+                    ruleId: rule.id,
+                });
+                this._uncertaintyCollector.addUncertain(rule.id, rule.message, 'ast', 'ast_unavailable', 'AstAnalyzer module failed to load');
+            }
+            this._uncertaintyCollector.recordLayerStats('ast', astRules.length, 0);
             return [];
         }
         const violations = [];
@@ -867,6 +897,371 @@ export class GuardCheckEngine {
                 this.logger.debug(`AST rule ${rule.id} check failed: ${err.message}`);
             }
         }
+        // AST 层统计
+        this._uncertaintyCollector.recordLayerStats('ast', astRules.length, astRules.length);
+        return violations;
+    }
+    /**
+     * AST Layer 2: analyzeFile() 深层检查
+     *
+     * 利用 AstAnalyzer.analyzeFile() 的完整输出产出 violations:
+     *
+     * --- 方法度量 ---
+     *   - ast_class_bloat: 类方法数过多 (>20)
+     *   - ast_method_complexity: 高圈复杂度 (>15)
+     *   - ast_method_too_long: 方法行数过长 (>80)
+     *   - ast_deep_nesting: 方法嵌套过深 (>5)
+     *
+     * --- 继承图检查 ---
+     *   - ast_deep_inheritance: 继承链过深 (>4)
+     *   - ast_wide_protocol_conformance: 单类遵守协议过多 (>5)
+     *   - ast_missing_super: 子类未调用 super 的关键方法
+     *
+     * --- 属性规范 ---
+     *   - ast_assign_object_property: ObjC assign 修饰对象类型属性
+     *   - ast_missing_nonatomic: ObjC 属性缺少 nonatomic
+     *   - ast_mutable_public_collection: 公开可变集合属性
+     *
+     * --- 设计模式/反模式检测 ---
+     *   - ast_god_class: 方法+属性过多的上帝类 (>30 methods + >15 properties)
+     *   - ast_singleton_abuse: 过多单例模式
+     *   - ast_missing_weakify: block 内 self 捕获但未使用 weakify
+     */
+    _runAstLayer2Checks(code, language, filePath) {
+        const disabled = this._guardConfig.disabledRules || [];
+        const allLayer2Rules = [
+            'ast_class_bloat',
+            'ast_method_complexity',
+            'ast_method_too_long',
+            'ast_deep_nesting',
+            'ast_deep_inheritance',
+            'ast_wide_protocol_conformance',
+            'ast_missing_super',
+            'ast_assign_object_property',
+            'ast_missing_nonatomic',
+            'ast_mutable_public_collection',
+            'ast_god_class',
+            'ast_singleton_abuse',
+            'ast_missing_weakify',
+        ];
+        const allDisabled = allLayer2Rules.every((id) => disabled.includes(id));
+        if (allDisabled) {
+            return [];
+        }
+        // 语言标准化
+        const astLang = LanguageService.isKnownLang(language)
+            ? language
+            : language === 'objc'
+                ? 'objectivec'
+                : language;
+        if (!LanguageService.isKnownLang(astLang)) {
+            return [];
+        }
+        let AstAnalyzer;
+        try {
+            AstAnalyzer = this._getAstAnalyzer();
+            if (!AstAnalyzer || !AstAnalyzer.isAvailable()) {
+                this._uncertaintyCollector.recordSkip('ast', 'ast_unavailable', `AST Layer 2 skipped: tree-sitter not available for "${language}"`);
+                return [];
+            }
+        }
+        catch {
+            return [];
+        }
+        let fileSummary;
+        try {
+            fileSummary = AstAnalyzer.analyzeFile(code, astLang, { extractCallSites: false });
+        }
+        catch (err) {
+            this.logger.debug(`AST Layer 2 analyzeFile failed: ${err.message}`);
+            return [];
+        }
+        if (!fileSummary) {
+            return [];
+        }
+        const violations = [];
+        // — 阈值配置（可通过 codeLevelThresholds 覆盖） —
+        const thresholds = this._guardConfig.codeLevelThresholds || {};
+        const classBloatLimit = (typeof thresholds['ast_class_bloat'] === 'number' ? thresholds['ast_class_bloat'] : 20);
+        const complexityLimit = (typeof thresholds['ast_method_complexity'] === 'number'
+            ? thresholds['ast_method_complexity']
+            : 15);
+        const methodLengthLimit = (typeof thresholds['ast_method_too_long'] === 'number' ? thresholds['ast_method_too_long'] : 80);
+        const nestingLimit = (typeof thresholds['ast_deep_nesting'] === 'number' ? thresholds['ast_deep_nesting'] : 5);
+        const inheritanceDepthLimit = (typeof thresholds['ast_deep_inheritance'] === 'number'
+            ? thresholds['ast_deep_inheritance']
+            : 4);
+        const protocolConformanceLimit = (typeof thresholds['ast_wide_protocol_conformance'] === 'number'
+            ? thresholds['ast_wide_protocol_conformance']
+            : 5);
+        const godClassMethodLimit = (typeof thresholds['ast_god_class_methods'] === 'number'
+            ? thresholds['ast_god_class_methods']
+            : 30);
+        const godClassPropertyLimit = (typeof thresholds['ast_god_class_properties'] === 'number'
+            ? thresholds['ast_god_class_properties']
+            : 15);
+        // ══════════════════════════════════════════════════════════
+        //  Section A: 方法度量（原有 4 条规则）
+        // ══════════════════════════════════════════════════════════
+        // 1. Class bloat — 类方法数过多
+        if (!disabled.includes('ast_class_bloat')) {
+            const methodCountByClass = {};
+            for (const m of fileSummary.methods) {
+                if (m.className && m.kind === 'definition') {
+                    if (!methodCountByClass[m.className]) {
+                        const cls = fileSummary.classes.find((c) => c.name === m.className);
+                        methodCountByClass[m.className] = { count: 0, line: cls?.line || 1 };
+                    }
+                    methodCountByClass[m.className].count++;
+                }
+            }
+            for (const [className, { count, line }] of Object.entries(methodCountByClass)) {
+                if (count > classBloatLimit) {
+                    violations.push({
+                        ruleId: 'ast_class_bloat',
+                        message: `类 ${className} 有 ${count} 个方法，超过阈值 ${classBloatLimit}，建议拆分职责`,
+                        severity: 'warning',
+                        line,
+                        snippet: `class ${className} — ${count} methods`,
+                        dimension: 'file',
+                        fixSuggestion: '将职责拆分到多个类或使用 Extension/Category 分组',
+                    });
+                }
+            }
+        }
+        // 2. Method complexity — 高圈复杂度
+        if (!disabled.includes('ast_method_complexity')) {
+            for (const m of fileSummary.methods) {
+                if (m.complexity && m.complexity > complexityLimit) {
+                    violations.push({
+                        ruleId: 'ast_method_complexity',
+                        message: `方法 ${m.className ? `${m.className}.` : ''}${m.name} 圈复杂度 ${m.complexity}，超过阈值 ${complexityLimit}`,
+                        severity: 'warning',
+                        line: m.line || 1,
+                        snippet: `${m.name} — complexity: ${m.complexity}`,
+                        dimension: 'file',
+                        fixSuggestion: '提取子方法、使用 early return 或策略模式降低复杂度',
+                    });
+                }
+            }
+        }
+        // 3. Method too long — 方法行数过长
+        if (!disabled.includes('ast_method_too_long')) {
+            for (const m of fileSummary.methods) {
+                if (m.bodyLines && m.bodyLines > methodLengthLimit) {
+                    violations.push({
+                        ruleId: 'ast_method_too_long',
+                        message: `方法 ${m.className ? `${m.className}.` : ''}${m.name} 有 ${m.bodyLines} 行，超过阈值 ${methodLengthLimit}`,
+                        severity: 'warning',
+                        line: m.line || 1,
+                        snippet: `${m.name} — ${m.bodyLines} lines`,
+                        dimension: 'file',
+                        fixSuggestion: '将长方法拆分为多个更小的、职责单一的方法',
+                    });
+                }
+            }
+        }
+        // 4. Deep nesting — 方法嵌套过深
+        if (!disabled.includes('ast_deep_nesting')) {
+            for (const m of fileSummary.methods) {
+                if (m.nestingDepth && m.nestingDepth > nestingLimit) {
+                    violations.push({
+                        ruleId: 'ast_deep_nesting',
+                        message: `方法 ${m.className ? `${m.className}.` : ''}${m.name} 嵌套深度 ${m.nestingDepth}，超过阈值 ${nestingLimit}`,
+                        severity: 'warning',
+                        line: m.line || 1,
+                        snippet: `${m.name} — nesting depth: ${m.nestingDepth}`,
+                        dimension: 'file',
+                        fixSuggestion: '使用 guard/early return 减少嵌套，或提取内层逻辑为独立方法',
+                    });
+                }
+            }
+        }
+        // ══════════════════════════════════════════════════════════
+        //  Section B: 继承图检查（inheritanceGraph + classes.protocols）
+        // ══════════════════════════════════════════════════════════
+        // 5. Deep inheritance — 继承链过深
+        if (!disabled.includes('ast_deep_inheritance') && fileSummary.inheritanceGraph?.length > 0) {
+            // 构建父类映射: child → parent
+            const parentMap = {};
+            for (const edge of fileSummary.inheritanceGraph) {
+                if (edge.type === 'extends' || edge.type === 'inherits') {
+                    parentMap[edge.from] = edge.to;
+                }
+            }
+            // 计算每个类的继承深度
+            for (const cls of fileSummary.classes) {
+                let depth = 0;
+                let current = cls.name;
+                const visited = new Set();
+                while (parentMap[current] && !visited.has(current)) {
+                    visited.add(current);
+                    current = parentMap[current];
+                    depth++;
+                }
+                if (depth > inheritanceDepthLimit) {
+                    violations.push({
+                        ruleId: 'ast_deep_inheritance',
+                        message: `类 ${cls.name} 继承链深度 ${depth}，超过阈值 ${inheritanceDepthLimit}，过深继承增加理解和维护成本`,
+                        severity: 'warning',
+                        line: cls.line || 1,
+                        snippet: `class ${cls.name} — inheritance depth: ${depth}`,
+                        dimension: 'file',
+                        fixSuggestion: '优先使用组合（Composition）替代继承，或使用协议/接口解耦',
+                    });
+                }
+            }
+        }
+        // 6. Wide protocol conformance — 单类遵守协议过多
+        if (!disabled.includes('ast_wide_protocol_conformance')) {
+            for (const cls of fileSummary.classes) {
+                const protocolCount = cls.protocols?.length || 0;
+                if (protocolCount > protocolConformanceLimit) {
+                    violations.push({
+                        ruleId: 'ast_wide_protocol_conformance',
+                        message: `类 ${cls.name} 遵守 ${protocolCount} 个协议，超过阈值 ${protocolConformanceLimit}，职责可能过重`,
+                        severity: 'warning',
+                        line: cls.line || 1,
+                        snippet: `class ${cls.name} — ${protocolCount} protocols: ${cls.protocols.slice(0, 5).join(', ')}${protocolCount > 5 ? '...' : ''}`,
+                        dimension: 'file',
+                        fixSuggestion: '将协议实现拆分到 Extension/Category 中，或拆分类职责',
+                    });
+                }
+            }
+        }
+        // ══════════════════════════════════════════════════════════
+        //  Section C: 属性规范（properties + attributes）
+        // ══════════════════════════════════════════════════════════
+        const isObjcLike = ['objc', 'objectivec', 'objective-c'].includes(language.toLowerCase());
+        if (isObjcLike && fileSummary.properties?.length > 0) {
+            for (const prop of fileSummary.properties) {
+                const attrs = prop.attributes || [];
+                const attrsLower = attrs.map((a) => a.toLowerCase());
+                // 7. assign 修饰对象类型属性
+                if (!disabled.includes('ast_assign_object_property')) {
+                    if (attrsLower.includes('assign') && !attrsLower.includes('readonly')) {
+                        // assign 用于对象类型（通过属性名启发：delegate, block, handler 等常为对象）
+                        const likelyObject = /delegate|block|handler|callback|completion|dataSource|view|controller|manager|service/i.test(prop.name);
+                        if (likelyObject) {
+                            violations.push({
+                                ruleId: 'ast_assign_object_property',
+                                message: `属性 ${prop.className ? `${prop.className}.` : ''}${prop.name} 使用 assign 修饰，疑似对象类型，应改为 weak`,
+                                severity: 'warning',
+                                line: prop.line || 1,
+                                snippet: `@property (assign) ... ${prop.name}`,
+                                dimension: 'file',
+                                fixSuggestion: '对象类型属性使用 weak（delegate）或 strong/copy，避免悬垂指针',
+                            });
+                        }
+                    }
+                }
+                // 8. 缺少 nonatomic
+                if (!disabled.includes('ast_missing_nonatomic')) {
+                    if (!attrsLower.includes('nonatomic') &&
+                        !attrsLower.includes('atomic') &&
+                        attrs.length > 0) {
+                        violations.push({
+                            ruleId: 'ast_missing_nonatomic',
+                            message: `属性 ${prop.className ? `${prop.className}.` : ''}${prop.name} 缺少 nonatomic，iOS 中应默认使用 nonatomic 提升性能`,
+                            severity: 'info',
+                            line: prop.line || 1,
+                            snippet: `@property (${attrs.join(', ')}) ... ${prop.name}`,
+                            dimension: 'file',
+                            fixSuggestion: '添加 nonatomic 修饰符：@property (nonatomic, ...) ...',
+                        });
+                    }
+                }
+                // 9. 公开可变集合属性
+                if (!disabled.includes('ast_mutable_public_collection')) {
+                    const isMutable = /NSMutableArray|NSMutableDictionary|NSMutableSet|NSMutableString|NSMutableData|NSMutableOrderedSet/i.test(`${attrs.join(' ')} ${prop.name}`);
+                    if (isMutable && !attrsLower.includes('readonly')) {
+                        violations.push({
+                            ruleId: 'ast_mutable_public_collection',
+                            message: `属性 ${prop.className ? `${prop.className}.` : ''}${prop.name} 暴露可变集合，外部可直接修改内部状态`,
+                            severity: 'warning',
+                            line: prop.line || 1,
+                            snippet: `@property ... NSMutable* ${prop.name}`,
+                            dimension: 'file',
+                            fixSuggestion: '对外使用 readonly + 不可变类型（NSArray/NSDictionary），内部用 readwrite + 可变类型',
+                        });
+                    }
+                }
+            }
+        }
+        // ══════════════════════════════════════════════════════════
+        //  Section D: 设计模式 / 反模式检测（patterns + aggregated metrics）
+        // ══════════════════════════════════════════════════════════
+        // 10. God class — 方法+属性过多的上帝类
+        if (!disabled.includes('ast_god_class')) {
+            // 按类聚合方法数和属性数
+            const classStats = {};
+            for (const m of fileSummary.methods) {
+                if (m.className && m.kind === 'definition') {
+                    if (!classStats[m.className]) {
+                        const cls = fileSummary.classes.find((c) => c.name === m.className);
+                        classStats[m.className] = { methods: 0, properties: 0, line: cls?.line || 1 };
+                    }
+                    classStats[m.className].methods++;
+                }
+            }
+            for (const p of fileSummary.properties) {
+                if (p.className) {
+                    if (!classStats[p.className]) {
+                        const cls = fileSummary.classes.find((c) => c.name === p.className);
+                        classStats[p.className] = { methods: 0, properties: 0, line: cls?.line || 1 };
+                    }
+                    classStats[p.className].properties++;
+                }
+            }
+            for (const [className, stats] of Object.entries(classStats)) {
+                if (stats.methods > godClassMethodLimit && stats.properties > godClassPropertyLimit) {
+                    violations.push({
+                        ruleId: 'ast_god_class',
+                        message: `类 ${className} 有 ${stats.methods} 个方法和 ${stats.properties} 个属性，疑似上帝类（God Class），职责过重`,
+                        severity: 'warning',
+                        line: stats.line,
+                        snippet: `class ${className} — ${stats.methods} methods, ${stats.properties} properties`,
+                        dimension: 'file',
+                        fixSuggestion: '遵循单一职责原则（SRP），将类拆分为多个更小的、职责明确的类',
+                    });
+                }
+            }
+        }
+        // 11. Singleton abuse — 过多单例模式（文件级别）
+        if (!disabled.includes('ast_singleton_abuse') && fileSummary.patterns?.length > 0) {
+            const singletonPatterns = fileSummary.patterns.filter((p) => p.type === 'singleton');
+            if (singletonPatterns.length > 2) {
+                violations.push({
+                    ruleId: 'ast_singleton_abuse',
+                    message: `文件中检测到 ${singletonPatterns.length} 个单例模式，过多单例增加耦合和测试难度`,
+                    severity: 'info',
+                    line: singletonPatterns[0]?.line || 1,
+                    snippet: `${singletonPatterns.length} singletons: ${singletonPatterns
+                        .map((p) => p.className || p.methodName || 'unknown')
+                        .slice(0, 3)
+                        .join(', ')}`,
+                    dimension: 'file',
+                    fixSuggestion: '考虑使用依赖注入（DI）替代单例，提升可测试性和解耦',
+                });
+            }
+        }
+        // 12. Missing weakify — block 内 self 捕获但未使用 weakify 模式
+        if (!disabled.includes('ast_missing_weakify') &&
+            isObjcLike &&
+            fileSummary.patterns?.length > 0) {
+            const selfCaptures = fileSummary.patterns.filter((p) => p.type === 'block_self_capture' && !p.isWeakRef);
+            for (const cap of selfCaptures) {
+                violations.push({
+                    ruleId: 'ast_missing_weakify',
+                    message: `${cap.className ? `${cap.className}.` : ''}${cap.methodName || 'block'} 中 block 捕获 self 但未使用 @weakify/@strongify`,
+                    severity: 'warning',
+                    line: cap.line || 1,
+                    snippet: `block captures self without weakify in ${cap.methodName || 'anonymous block'}`,
+                    dimension: 'file',
+                    fixSuggestion: '使用 @weakify(self) / @strongify(self) 或 __weak typeof(self) weakSelf = self',
+                });
+            }
+        }
         return violations;
     }
     /** 获取 AstAnalyzer 模块（静态 import，带可用性检测） */
@@ -943,15 +1338,20 @@ export class GuardCheckEngine {
      */
     auditFile(filePath, code, options = {}) {
         const language = detectLanguage(filePath);
+        // 每次文件审计前重置 collector（单文件粒度）
+        this._uncertaintyCollector.reset();
         const violations = this.checkCode(code, language, { ...options, filePath });
+        const report = this._uncertaintyCollector.buildReport();
         return {
             filePath,
             language,
             violations,
+            uncertainResults: report.uncertainResults,
             summary: {
                 total: violations.length,
                 errors: violations.filter((v) => v.severity === 'error').length,
                 warnings: violations.filter((v) => v.severity === 'warning').length,
+                uncertain: report.uncertainResults.length,
             },
         };
     }
@@ -977,16 +1377,67 @@ export class GuardCheckEngine {
         });
         totalViolations += crossFileViolations.length;
         totalErrors += crossFileViolations.filter((v) => v.severity === 'error').length;
-        return {
-            files: results,
-            crossFileViolations,
-            summary: {
-                filesChecked: results.length,
-                totalViolations,
-                totalErrors,
-                filesWithViolations: results.filter((r) => r.summary.total > 0).length,
-            },
+        const summary = {
+            filesChecked: results.length,
+            totalViolations,
+            totalErrors,
+            totalUncertain: results.reduce((s, r) => s + r.summary.uncertain, 0),
+            filesWithViolations: results.filter((r) => r.summary.total > 0).length,
         };
+        // ── Signal emission (去重：相同检查结果不重复发射) ──
+        if (this._signalBus && totalViolations > 0) {
+            const signalKey = `${summary.filesChecked}:${summary.totalViolations}:${summary.totalErrors}:${summary.totalUncertain}:${summary.filesWithViolations}`;
+            if (signalKey !== this._lastGuardSignalKey) {
+                this._lastGuardSignalKey = signalKey;
+                this._signalBus.send('guard', 'GuardCheckEngine', totalErrors > 0 ? 1 : 0.5, {
+                    metadata: { ...summary },
+                });
+            }
+        }
+        // ── 聚合 capability report ──
+        const aggregateCollector = new UncertaintyCollector();
+        for (const r of results) {
+            for (const u of r.uncertainResults) {
+                aggregateCollector.addUncertain(u.ruleId, u.message, u.layer, u.reason, u.detail);
+            }
+        }
+        const capabilityReport = aggregateCollector.buildReport();
+        // ── guard_blind_spot: uncertain 超阈值时发射 CapabilityRequest 信号（去重） ──
+        if (this._signalBus && capabilityReport.uncertainResults.length > 0) {
+            const uncertainTotal = capabilityReport.uncertainResults.length;
+            const blindSpotThreshold = 5; // 触发阈值
+            if (uncertainTotal >= blindSpotThreshold) {
+                const blindSpotKey = `${uncertainTotal}:${capabilityReport.checkCoverage}`;
+                if (blindSpotKey !== this._lastBlindSpotSignalKey) {
+                    this._lastBlindSpotSignalKey = blindSpotKey;
+                    // 按 layer 聚合盲区
+                    const byLayer = {};
+                    for (const u of capabilityReport.uncertainResults) {
+                        byLayer[u.layer] = (byLayer[u.layer] || 0) + 1;
+                    }
+                    this._signalBus.send('guard_blind_spot', 'GuardCheckEngine', uncertainTotal >= 20 ? 1 : 0.5, {
+                        metadata: {
+                            type: 'CapabilityRequest',
+                            uncertainTotal,
+                            checkCoverage: capabilityReport.checkCoverage,
+                            byLayer,
+                            boundaries: capabilityReport.boundaries.map((b) => ({
+                                type: b.type,
+                                description: b.description,
+                                affectedRules: b.affectedRules,
+                                suggestedAction: b.suggestedAction,
+                            })),
+                            suggestedAction: 'Extend Guard capability: add AST support for uncovered languages or implement missing cross-file checks',
+                        },
+                    });
+                }
+            }
+        }
+        return { files: results, crossFileViolations, summary, capabilityReport };
+    }
+    /** 获取 uncertainty collector（供外部读取单文件 uncertain 状态） */
+    getUncertaintyCollector() {
+        return this._uncertaintyCollector;
     }
     /** 清除规则缓存 */
     clearCache() {

package/dist/lib/service/guard/GuardFeedbackLoop.d.ts CHANGED Viewed

@@ -7,6 +7,7 @@
  *   3. 集成到 guardAuditFiles MCP handler 和 GuardHandler (FileWatcher)
  */
 import Logger from '../../infrastructure/logging/Logger.js';
+import type { SignalBus } from '../../infrastructure/signal/SignalBus.js';
 interface ViolationsStoreLike {
     getRunsByFile(filePath: string): {
         violations: {
@@ -40,9 +41,11 @@ export declare class GuardFeedbackLoop {
     guardCheckEngine: GuardCheckEngineLike | null;
     logger: ReturnType<typeof Logger.getInstance>;
     violationsStore: ViolationsStoreLike | null;
+    _signalBus: SignalBus | null;
     /** @param [options.guardCheckEngine] 用于查找规则 */
     constructor(violationsStore: ViolationsStoreLike | null, feedbackCollector: FeedbackCollectorLike | null, options?: {
         guardCheckEngine?: GuardCheckEngineLike;
+        signalBus?: SignalBus;
     });
     /**
      * 对比当前和历史 violations，检测已修复的违规

package/dist/lib/service/guard/GuardFeedbackLoop.js CHANGED Viewed

@@ -12,11 +12,13 @@ export class GuardFeedbackLoop {
     guardCheckEngine;
     logger;
     violationsStore;
+    _signalBus;
     /** @param [options.guardCheckEngine] 用于查找规则 */
     constructor(violationsStore, feedbackCollector, options = {}) {
         this.violationsStore = violationsStore;
         this.feedbackCollector = feedbackCollector;
         this.guardCheckEngine = options.guardCheckEngine || null;
+        this._signalBus = options.signalBus || null;
         this.logger = Logger.getInstance();
     }
     /**
@@ -72,6 +74,13 @@ export class GuardFeedbackLoop {
                     filePath,
                 });
                 this.logger.info(`[GuardFeedbackLoop] Auto-confirmed usage: recipe=${fixRecipeId} from fixing rule=${ruleId}`);
+                // ── Signal: usage confirmation ──
+                if (this._signalBus) {
+                    this._signalBus.send('usage', 'GuardFeedbackLoop', 1, {
+                        target: fixRecipeId,
+                        metadata: { ruleId, filePath, source: 'guard_fix_detection' },
+                    });
+                }
             }
             catch (err) {
                 this.logger.debug(`[GuardFeedbackLoop] autoConfirmUsage error: ${err.message}`);