brakit 0.6.1 → 0.6.2

package/dist/bin/brakit.js

@@ -32,6 +32,7 @@ var DASHBOARD_API_ACTIVITY = "/__brakit/api/activity";
 var DASHBOARD_API_METRICS_LIVE = "/__brakit/api/metrics/live";
 var DASHBOARD_API_INSIGHTS = "/__brakit/api/insights";
 var DASHBOARD_API_SECURITY = "/__brakit/api/security";
+var DASHBOARD_API_TAB = "/__brakit/api/tab";
 
 // src/constants/limits.ts
 var MAX_REQUEST_ENTRIES = 1e3;
@@ -50,7 +51,6 @@ var ERROR_RATE_THRESHOLD_PCT = 20;
 var SLOW_ENDPOINT_THRESHOLD_MS = 1e3;
 var MIN_REQUESTS_FOR_INSIGHT = 2;
 var HIGH_QUERY_COUNT_PER_REQ = 5;
-var AUTH_OVERHEAD_PCT = 30;
 var CROSS_ENDPOINT_MIN_ENDPOINTS = 3;
 var CROSS_ENDPOINT_PCT = 50;
 var CROSS_ENDPOINT_MIN_OCCURRENCES = 5;
@@ -164,7 +164,7 @@ var offRequest = (fn) => defaultStore.offRequest(fn);
 
 // src/proxy/handler.ts
 function proxyRequest(clientReq, clientRes, config) {
-  const startTime = performance.now();
+  const startTime2 = performance.now();
   const method = clientReq.method ?? "GET";
   const requestId = randomUUID();
   const shouldCaptureBody = method !== "GET" && method !== "HEAD";
@@ -194,7 +194,7 @@ function proxyRequest(clientReq, clientRes, config) {
         clientReq,
         clientRes,
         proxyRes,
-        startTime,
+        startTime2,
         shouldCaptureBody ? bodyChunks : [],
         config,
         requestId
@@ -217,7 +217,7 @@ function proxyRequest(clientReq, clientRes, config) {
   });
   clientReq.pipe(proxyReq);
 }
-function handleProxyResponse(clientReq, clientRes, proxyRes, startTime, bodyChunks, config, requestId) {
+function handleProxyResponse(clientReq, clientRes, proxyRes, startTime2, bodyChunks, config, requestId) {
   const responseChunks = [];
   let responseSize = 0;
   clientRes.writeHead(proxyRes.statusCode ?? 502, proxyRes.headers);
@@ -242,7 +242,7 @@ function handleProxyResponse(clientReq, clientRes, proxyRes, startTime, bodyChun
       responseHeaders: proxyRes.headers,
       responseBody,
       responseContentType: proxyRes.headers["content-type"] ?? "",
-      startTime,
+      startTime: startTime2,
       config
     });
   });
@@ -578,7 +578,7 @@ function buildFlow(rawRequests) {
   markDuplicates(rawRequests);
   const requests = collapsePolling(rawRequests);
   const first = requests[0];
-  const startTime = first.startedAt;
+  const startTime2 = first.startedAt;
   const endTime = Math.max(
     ...requests.map(
       (r) => r.pollingDurationMs ? r.startedAt + r.pollingDurationMs : r.startedAt + r.durationMs
@@ -592,8 +592,8 @@ function buildFlow(rawRequests) {
     id: randomUUID2(),
     label: deriveFlowLabel(requests, sourcePage),
     requests,
-    startTime,
-    totalDurationMs: Math.round(endTime - startTime),
+    startTime: startTime2,
+    totalDurationMs: Math.round(endTime - startTime2),
     hasErrors: requests.some((r) => r.statusCode >= 400),
     warnings: detectWarnings(rawRequests),
     sourcePage,
@@ -1927,7 +1927,6 @@ var HEALTH_GOOD_MS = 300;
 var HEALTH_OK_MS = 800;
 var HEALTH_SLOW_MS = 2e3;
 var SLOW_QUERY_THRESHOLD_MS = 100;
-var AUTH_SLOW_MS = 500;
 var AUTH_SKIP_CATEGORIES = `{ 'auth-handshake': 1, 'auth-check': 1, 'middleware': 1 }`;
 var TIMELINE_CACHE_MAX = 50;
 var TIMELINE_ROOT_MARGIN = "'200px'";
@@ -2276,7 +2275,6 @@ function getFlowInsights() {
     var warnings = [];
     var duplicates = [];
     var seen = new Map();
-    var authMs = 0;
     var totalMs = 0;
     for (var i = 0; i < reqs.length; i++) {
       var req = reqs[i];
@@ -2285,10 +2283,6 @@ function getFlowInsights() {
       totalMs += dur;
 
       if (skipCats[req.category]) {
-        authMs += dur;
-        if (dur > ${AUTH_SLOW_MS}) {
-          warnings.push('Slow auth: ' + label + ' took ' + formatDuration(dur));
-        }
         continue;
       }
 
@@ -2310,13 +2304,6 @@ function getFlowInsights() {
       successes.push(label);
     }
 
-    if (totalMs > 0 && authMs > 0) {
-      var authPct = Math.round((authMs / totalMs) * 100);
-      if (authPct >= ${AUTH_OVERHEAD_PCT}) {
-        warnings.unshift('Auth overhead: ' + authPct + '% of this action (' + formatDuration(authMs) + ') is spent in auth/middleware');
-      }
-    }
-
     for (var d of seen.values()) duplicates.push(d);
     var tip = '';
     if (duplicates.length > 0) {
@@ -3820,6 +3807,7 @@ function getApp() {
       sidebarItems.forEach(function(i) { i.classList.remove('active'); });
       item.classList.add('active');
       state.activeView = view;
+      fetch('${DASHBOARD_API_TAB}?tab=' + encodeURIComponent(view)).catch(function(){});
       document.getElementById('header-title').textContent = VIEW_TITLES[view] || view;
       document.getElementById('header-sub').textContent = VIEW_SUBTITLES[view] || '';
       document.getElementById('mode-toggle').style.display = view === 'actions' ? 'flex' : 'none';
@@ -3943,6 +3931,155 @@ ${getLayoutHtml(config)}
 </html>`;
 }
 
+// src/telemetry/index.ts
+import { platform, release, arch } from "os";
+
+// src/telemetry/config.ts
+import { homedir } from "os";
+import { join } from "path";
+import { existsSync as existsSync3, readFileSync as readFileSync3, writeFileSync as writeFileSync3, mkdirSync as mkdirSync3 } from "fs";
+import { randomUUID as randomUUID5 } from "crypto";
+var CONFIG_DIR = join(homedir(), ".brakit");
+var CONFIG_PATH = join(CONFIG_DIR, "config.json");
+function readConfig() {
+  try {
+    if (!existsSync3(CONFIG_PATH)) return null;
+    return JSON.parse(readFileSync3(CONFIG_PATH, "utf-8"));
+  } catch {
+    return null;
+  }
+}
+function writeConfig(config) {
+  try {
+    if (!existsSync3(CONFIG_DIR)) mkdirSync3(CONFIG_DIR, { recursive: true });
+    writeFileSync3(CONFIG_PATH, JSON.stringify(config, null, 2) + "\n");
+  } catch {
+  }
+}
+function getOrCreateConfig() {
+  const existing = readConfig();
+  if (existing && typeof existing.telemetry === "boolean" && existing.anonymousId) {
+    return existing;
+  }
+  const config = { telemetry: true, anonymousId: randomUUID5() };
+  writeConfig(config);
+  return config;
+}
+function isTelemetryEnabled() {
+  const env = process.env.BRAKIT_TELEMETRY;
+  if (env !== void 0) return env !== "false" && env !== "0" && env !== "off";
+  return readConfig()?.telemetry ?? true;
+}
+function setTelemetryEnabled(enabled) {
+  const config = getOrCreateConfig();
+  config.telemetry = enabled;
+  writeConfig(config);
+}
+
+// src/telemetry/index.ts
+var POSTHOG_HOST = "https://app.posthog.com";
+var POSTHOG_KEY = "phc_gH8aQFZ2Fn8db9LEdgomOvymLiP6mm6FPTYXffQceR8";
+var startTime = 0;
+var sessionFramework = "";
+var sessionPackageManager = "";
+var sessionIsCustomCommand = false;
+var sessionAdapters = [];
+var requestCount = 0;
+var insightTypes = /* @__PURE__ */ new Set();
+var rulesTriggered = /* @__PURE__ */ new Set();
+var tabsViewed = /* @__PURE__ */ new Set();
+var dashboardOpened = false;
+var explainUsed = false;
+function initSession(framework, packageManager, isCustomCommand, adapters) {
+  startTime = Date.now();
+  sessionFramework = framework;
+  sessionPackageManager = packageManager;
+  sessionIsCustomCommand = isCustomCommand;
+  sessionAdapters = adapters;
+}
+function recordRequestCount(count) {
+  requestCount = count;
+}
+function recordInsightTypes(types) {
+  for (const t of types) insightTypes.add(t);
+}
+function recordRulesTriggered(rules) {
+  for (const r of rules) rulesTriggered.add(r);
+}
+function recordTabViewed(tab) {
+  tabsViewed.add(tab);
+}
+function recordDashboardOpened() {
+  dashboardOpened = true;
+}
+function speedBucket(ms) {
+  if (ms === 0) return "none";
+  if (ms < 200) return "<200ms";
+  if (ms < 500) return "200-500ms";
+  if (ms < 1e3) return "500-1000ms";
+  if (ms < 2e3) return "1000-2000ms";
+  if (ms < 5e3) return "2000-5000ms";
+  return ">5000ms";
+}
+function trackSession(metricsStore, analysisEngine) {
+  if (!isTelemetryEnabled()) return;
+  const isFirstSession = readConfig() === null;
+  const config = getOrCreateConfig();
+  const live = metricsStore.getLiveEndpoints();
+  const insights = analysisEngine.getInsights();
+  const findings = analysisEngine.getFindings();
+  let totalRequests = 0;
+  let totalDuration = 0;
+  let slowestP95 = 0;
+  for (const ep of live) {
+    totalRequests += ep.summary.totalRequests;
+    totalDuration += ep.summary.p95Ms * ep.summary.totalRequests;
+    if (ep.summary.p95Ms > slowestP95) slowestP95 = ep.summary.p95Ms;
+  }
+  const payload = {
+    api_key: POSTHOG_KEY,
+    event: "session",
+    distinct_id: config.anonymousId,
+    timestamp: (/* @__PURE__ */ new Date()).toISOString(),
+    properties: {
+      brakit_version: VERSION,
+      node_version: process.version,
+      os: `${platform()}-${release()}`,
+      arch: arch(),
+      framework: sessionFramework,
+      package_manager: sessionPackageManager,
+      is_custom_command: sessionIsCustomCommand,
+      first_session: isFirstSession,
+      adapters_detected: sessionAdapters,
+      request_count: requestCount,
+      error_count: defaultErrorStore.getAll().length,
+      query_count: defaultQueryStore.getAll().length,
+      fetch_count: defaultFetchStore.getAll().length,
+      insight_count: insights.length,
+      finding_count: findings.length,
+      insight_types: [...insightTypes],
+      rules_triggered: [...rulesTriggered],
+      endpoint_count: live.length,
+      avg_duration_ms: totalRequests > 0 ? Math.round(totalDuration / totalRequests) : 0,
+      slowest_endpoint_bucket: speedBucket(slowestP95),
+      tabs_viewed: [...tabsViewed],
+      dashboard_opened: dashboardOpened,
+      explain_used: explainUsed,
+      session_duration_s: Math.round((Date.now() - startTime) / 1e3),
+      $lib: "brakit",
+      $ip: null,
+      $geoip_disable: true
+    }
+  };
+  fetch(`${POSTHOG_HOST}/capture`, {
+    method: "POST",
+    headers: { "content-type": "application/json" },
+    body: JSON.stringify(payload),
+    signal: AbortSignal.timeout(5e3)
+  }).catch(() => {
+  });
+}
+
 // src/dashboard/router.ts
 function isDashboardRequest(url) {
   return url === DASHBOARD_PREFIX || url.startsWith(DASHBOARD_PREFIX + "/");
@@ -3966,6 +4103,12 @@ function createDashboardHandler(deps) {
     routes[DASHBOARD_API_INSIGHTS] = createInsightsHandler(deps.analysisEngine);
     routes[DASHBOARD_API_SECURITY] = createSecurityHandler(deps.analysisEngine);
   }
+  routes[DASHBOARD_API_TAB] = (req, res) => {
+    const tab = (req.url ?? "").split("tab=")[1];
+    if (tab && isTelemetryEnabled()) recordTabViewed(decodeURIComponent(tab));
+    res.writeHead(204);
+    res.end();
+  };
   return (req, res, config) => {
     const path = (req.url ?? "/").split("?")[0];
     const handler = routes[path];
@@ -3973,6 +4116,7 @@ function createDashboardHandler(deps) {
       handler(req, res);
       return;
     }
+    if (isTelemetryEnabled()) recordDashboardOpened();
     res.writeHead(200, {
       "content-type": "text/html; charset=utf-8",
       "cache-control": "no-cache"
@@ -3998,7 +4142,7 @@ function createProxyServer(config, handleDashboard) {
 
 // src/detect/project.ts
 import { readFile as readFile2 } from "fs/promises";
-import { join } from "path";
+import { join as join2 } from "path";
 var FRAMEWORKS = [
   { name: "nextjs", dep: "next", devCmd: "next dev", bin: "next", defaultPort: 3e3, devArgs: ["dev", "--port"] },
   { name: "remix", dep: "@remix-run/dev", devCmd: "remix dev", bin: "remix", defaultPort: 3e3, devArgs: ["dev"] },
@@ -4007,7 +4151,7 @@ var FRAMEWORKS = [
   { name: "astro", dep: "astro", devCmd: "astro dev", bin: "astro", defaultPort: 4321, devArgs: ["dev", "--port"] }
 ];
 async function detectProject(rootDir) {
-  const pkgPath = join(rootDir, "package.json");
+  const pkgPath = join2(rootDir, "package.json");
   const raw = await readFile2(pkgPath, "utf-8");
   const pkg = JSON.parse(raw);
   const allDeps = { ...pkg.dependencies, ...pkg.devDependencies };
@@ -4019,7 +4163,7 @@ async function detectProject(rootDir) {
     if (allDeps[f.dep]) {
       framework = f.name;
       devCommand = f.devCmd;
-      devBin = join(rootDir, "node_modules", ".bin", f.bin);
+      devBin = join2(rootDir, "node_modules", ".bin", f.bin);
       defaultPort = f.defaultPort;
       break;
     }
@@ -4028,11 +4172,11 @@ async function detectProject(rootDir) {
   return { framework, devCommand, devBin, defaultPort, packageManager };
 }
 async function detectPackageManager(rootDir) {
-  if (await fileExists(join(rootDir, "bun.lockb"))) return "bun";
-  if (await fileExists(join(rootDir, "bun.lock"))) return "bun";
-  if (await fileExists(join(rootDir, "pnpm-lock.yaml"))) return "pnpm";
-  if (await fileExists(join(rootDir, "yarn.lock"))) return "yarn";
-  if (await fileExists(join(rootDir, "package-lock.json"))) return "npm";
+  if (await fileExists(join2(rootDir, "bun.lockb"))) return "bun";
+  if (await fileExists(join2(rootDir, "bun.lock"))) return "bun";
+  if (await fileExists(join2(rootDir, "pnpm-lock.yaml"))) return "pnpm";
+  if (await fileExists(join2(rootDir, "yarn.lock"))) return "yarn";
+  if (await fileExists(join2(rootDir, "package-lock.json"))) return "npm";
   return "unknown";
 }
 
@@ -4575,7 +4719,6 @@ function normalizeQueryParams(sql) {
 }
 
 // src/analysis/insights.ts
-var AUTH_CATEGORIES = /* @__PURE__ */ new Set(["auth-handshake", "auth-check", "middleware"]);
 function getQueryShape(q) {
   if (q.sql) return normalizeQueryParams(q.sql) ?? "";
   return `${q.operation ?? q.normalizedOp ?? "?"}:${q.model ?? q.table ?? ""}`;
@@ -4817,29 +4960,6 @@ function computeInsights(ctx) {
       });
     }
   }
-  for (const flow of ctx.flows) {
-    if (!flow.requests || flow.requests.length < 2) continue;
-    let authMs = 0;
-    let totalMs = 0;
-    for (const r of flow.requests) {
-      const dur = r.pollingDurationMs ?? r.durationMs;
-      totalMs += dur;
-      if (AUTH_CATEGORIES.has(r.category ?? "")) authMs += dur;
-    }
-    if (totalMs > 0 && authMs > 0) {
-      const pct = Math.round(authMs / totalMs * 100);
-      if (pct >= AUTH_OVERHEAD_PCT) {
-        insights.push({
-          severity: "warning",
-          type: "auth-overhead",
-          title: "Auth Overhead",
-          desc: `${flow.label} \u2014 ${pct}% of time (${formatDuration(authMs)}) spent in auth/middleware`,
-          hint: "Auth checks consume a significant portion of this action. If using a third-party auth provider, check if session caching can reduce roundtrips.",
-          nav: "actions"
-        });
-      }
-    }
-  }
   const selectStarSeen = /* @__PURE__ */ new Map();
   for (const [, reqQueries] of queriesByReq) {
     for (const q of reqQueries) {
@@ -5061,7 +5181,7 @@ var AnalysisEngine = class {
 };
 
 // src/index.ts
-var VERSION = "0.6.1";
+var VERSION = "0.6.2";
 
 // src/lifecycle/startup.ts
 import pc2 from "picocolors";
@@ -5083,6 +5203,53 @@ function printBanner(proxyPort, targetPort) {
   );
   console.log();
 }
+function severityIcon(severity) {
+  if (severity === "critical") return pc.red("\u2717");
+  if (severity === "warning") return pc.yellow("\u26A0");
+  return pc.dim("\u25CB");
+}
+function colorTitle(severity, text) {
+  if (severity === "critical") return pc.red(pc.bold(text));
+  if (severity === "warning") return pc.yellow(pc.bold(text));
+  return pc.dim(text);
+}
+function truncate(s, max = 80) {
+  return s.length <= max ? s : s.slice(0, max - 1) + "\u2026";
+}
+function formatConsoleLine(insight, dashboardUrl, suffix) {
+  const icon = severityIcon(insight.severity);
+  const title = colorTitle(insight.severity, insight.title);
+  const desc = pc.dim(truncate(insight.desc) + (suffix ?? ""));
+  const link = pc.dim(`\u2192  ${dashboardUrl}`);
+  return `  ${icon} ${title} \u2014 ${desc}  ${link}`;
+}
+function createConsoleInsightListener(proxyPort, metricsStore) {
+  const printedKeys = /* @__PURE__ */ new Set();
+  const dashUrl = `localhost:${proxyPort}${DASHBOARD_PREFIX}`;
+  return (insights) => {
+    const lines = [];
+    for (const insight of insights) {
+      if (insight.severity === "info") continue;
+      const endpoint = insight.desc.match(/^(\S+\s+\S+)/)?.[1] ?? insight.desc;
+      const key = `${insight.type}:${endpoint}`;
+      if (printedKeys.has(key)) continue;
+      printedKeys.add(key);
+      let suffix;
+      if (insight.type === "slow") {
+        const ep = metricsStore.getAll().find((e) => e.endpoint === endpoint);
+        if (ep && ep.sessions.length > 1) {
+          const prev = ep.sessions[ep.sessions.length - 2];
+          suffix = ` (\u2191 from ${prev.p95DurationMs < 1e3 ? prev.p95DurationMs + "ms" : (prev.p95DurationMs / 1e3).toFixed(1) + "s"})`;
+        }
+      }
+      lines.push(formatConsoleLine(insight, dashUrl, suffix));
+    }
+    if (lines.length > 0) {
+      console.log();
+      for (const line of lines) console.log(line);
+    }
+  };
+}
 
 // src/process/spawn.ts
 import { spawn } from "child_process";
@@ -5202,6 +5369,14 @@ async function startBrakit(opts) {
   metricsStore.start();
   const analysisEngine = new AnalysisEngine();
   analysisEngine.start();
+  analysisEngine.onUpdate(createConsoleInsightListener(proxyPort, metricsStore));
+  if (isTelemetryEnabled()) {
+    initSession(project.framework, project.packageManager, !!customCommand, []);
+    analysisEngine.onUpdate((insights, findings) => {
+      recordInsightTypes(insights.map((i) => i.type));
+      recordRulesTriggered(findings.map((f) => f.rule));
+    });
+  }
   const handleDashboard = createDashboardHandler({ metricsStore, analysisEngine });
   console.log(pc2.dim(`  Starting ${project.devCommand} on port ${targetPort}...`));
   const devProcess = customCommand ? spawnCustomCommand(customCommand, targetPort, proxyPort, rootDir) : spawnDevServer(project.devBin, targetPort, proxyPort, rootDir);
@@ -5215,9 +5390,12 @@ async function startBrakit(opts) {
   proxy.listen(proxyPort, () => {
     printBanner(proxyPort, targetPort);
   });
+  let reqCount = 0;
   onRequest((req) => {
     const queryCount = defaultQueryStore.getByRequest(req.id).length;
     metricsStore.recordRequest(req, queryCount);
+    reqCount++;
+    recordRequestCount(reqCount);
   });
   return { proxy, devProcess, metricsStore, analysisEngine, config, project };
 }
@@ -5230,6 +5408,7 @@ function createShutdownHandler(instance) {
     if (shuttingDown) return;
     shuttingDown = true;
     console.log(pc3.dim("\n  Shutting down..."));
+    trackSession(instance.metricsStore, instance.analysisEngine);
     instance.analysisEngine.stop();
     instance.metricsStore.stop();
     instance.proxy.close();
@@ -5290,8 +5469,54 @@ var dev_default = defineCommand({
   }
 });
 
+// src/cli/commands/telemetry.ts
+import { defineCommand as defineCommand2 } from "citty";
+import pc5 from "picocolors";
+var telemetry_default = defineCommand2({
+  meta: {
+    name: "telemetry",
+    description: "Manage anonymous telemetry settings"
+  },
+  args: {
+    action: {
+      type: "positional",
+      description: "on | off | status",
+      required: false
+    }
+  },
+  run({ args }) {
+    const action = args.action?.toLowerCase();
+    if (action === "on") {
+      setTelemetryEnabled(true);
+      console.log(pc5.green("  Telemetry enabled."));
+      return;
+    }
+    if (action === "off") {
+      setTelemetryEnabled(false);
+      console.log(pc5.yellow("  Telemetry disabled. No data will be collected."));
+      return;
+    }
+    const enabled = isTelemetryEnabled();
+    console.log();
+    console.log(`  ${pc5.bold("Telemetry")}: ${enabled ? pc5.green("enabled") : pc5.yellow("disabled")}`);
+    console.log();
+    console.log(pc5.dim("  brakit collects anonymous usage data to improve the tool."));
+    console.log(pc5.dim("  No URLs, queries, bodies, or source code are ever sent."));
+    console.log();
+    console.log(pc5.dim("  Opt out:     ") + pc5.bold("brakit telemetry off"));
+    console.log(pc5.dim("  Opt in:      ") + pc5.bold("brakit telemetry on"));
+    console.log(pc5.dim("  Env override: BRAKIT_TELEMETRY=false"));
+    console.log();
+  }
+});
+
 // bin/brakit.ts
-if (process.argv[2] === "dev") {
+if (process.argv[2] === "telemetry") {
   process.argv.splice(2, 1);
+  runMain(telemetry_default);
+} else {
+  if (process.argv[2] === "dev") {
+    process.argv.splice(2, 1);
+  }
+  runMain(dev_default);
 }
-runMain(dev_default);

package/dist/index.d.ts

@@ -142,7 +142,7 @@ declare class SecurityScanner {
 declare function createDefaultScanner(): SecurityScanner;
 
 type InsightSeverity = "critical" | "warning" | "info";
-type InsightType = "n1" | "cross-endpoint" | "redundant-query" | "error" | "error-hotspot" | "duplicate" | "slow" | "query-heavy" | "auth-overhead" | "select-star" | "high-rows" | "large-response" | "response-overfetch" | "security";
+type InsightType = "n1" | "cross-endpoint" | "redundant-query" | "error" | "error-hotspot" | "duplicate" | "slow" | "query-heavy" | "select-star" | "high-rows" | "large-response" | "response-overfetch" | "security";
 interface Insight {
     severity: InsightSeverity;
     type: InsightType;

package/dist/index.js

@@ -24,7 +24,6 @@ var ERROR_RATE_THRESHOLD_PCT = 20;
 var SLOW_ENDPOINT_THRESHOLD_MS = 1e3;
 var MIN_REQUESTS_FOR_INSIGHT = 2;
 var HIGH_QUERY_COUNT_PER_REQ = 5;
-var AUTH_OVERHEAD_PCT = 30;
 var CROSS_ENDPOINT_MIN_ENDPOINTS = 3;
 var CROSS_ENDPOINT_PCT = 50;
 var CROSS_ENDPOINT_MIN_OCCURRENCES = 5;
@@ -702,6 +701,17 @@ var HEALTH_GRADES = `[
   { max: Infinity, label: 'Critical', color: 'var(--red)', bg: 'rgba(220,38,38,0.08)', border: 'rgba(220,38,38,0.2)' }
 ]`;
 
+// src/telemetry/index.ts
+import { platform, release, arch } from "os";
+
+// src/telemetry/config.ts
+import { homedir } from "os";
+import { join } from "path";
+import { existsSync as existsSync3, readFileSync as readFileSync3, writeFileSync as writeFileSync3, mkdirSync as mkdirSync3 } from "fs";
+import { randomUUID as randomUUID5 } from "crypto";
+var CONFIG_DIR = join(homedir(), ".brakit");
+var CONFIG_PATH = join(CONFIG_DIR, "config.json");
+
 // src/dashboard/router.ts
 function isDashboardRequest(url) {
   return url === DASHBOARD_PREFIX || url.startsWith(DASHBOARD_PREFIX + "/");
@@ -724,7 +734,7 @@ function createProxyServer(config, handleDashboard) {
 
 // src/detect/project.ts
 import { readFile as readFile2 } from "fs/promises";
-import { join } from "path";
+import { join as join2 } from "path";
 var FRAMEWORKS = [
   { name: "nextjs", dep: "next", devCmd: "next dev", bin: "next", defaultPort: 3e3, devArgs: ["dev", "--port"] },
   { name: "remix", dep: "@remix-run/dev", devCmd: "remix dev", bin: "remix", defaultPort: 3e3, devArgs: ["dev"] },
@@ -733,7 +743,7 @@ var FRAMEWORKS = [
   { name: "astro", dep: "astro", devCmd: "astro dev", bin: "astro", defaultPort: 4321, devArgs: ["dev", "--port"] }
 ];
 async function detectProject(rootDir) {
-  const pkgPath = join(rootDir, "package.json");
+  const pkgPath = join2(rootDir, "package.json");
   const raw = await readFile2(pkgPath, "utf-8");
   const pkg = JSON.parse(raw);
   const allDeps = { ...pkg.dependencies, ...pkg.devDependencies };
@@ -745,7 +755,7 @@ async function detectProject(rootDir) {
     if (allDeps[f.dep]) {
       framework = f.name;
       devCommand = f.devCmd;
-      devBin = join(rootDir, "node_modules", ".bin", f.bin);
+      devBin = join2(rootDir, "node_modules", ".bin", f.bin);
       defaultPort = f.defaultPort;
       break;
     }
@@ -754,11 +764,11 @@ async function detectProject(rootDir) {
   return { framework, devCommand, devBin, defaultPort, packageManager };
 }
 async function detectPackageManager(rootDir) {
-  if (await fileExists(join(rootDir, "bun.lockb"))) return "bun";
-  if (await fileExists(join(rootDir, "bun.lock"))) return "bun";
-  if (await fileExists(join(rootDir, "pnpm-lock.yaml"))) return "pnpm";
-  if (await fileExists(join(rootDir, "yarn.lock"))) return "yarn";
-  if (await fileExists(join(rootDir, "package-lock.json"))) return "npm";
+  if (await fileExists(join2(rootDir, "bun.lockb"))) return "bun";
+  if (await fileExists(join2(rootDir, "bun.lock"))) return "bun";
+  if (await fileExists(join2(rootDir, "pnpm-lock.yaml"))) return "pnpm";
+  if (await fileExists(join2(rootDir, "yarn.lock"))) return "yarn";
+  if (await fileExists(join2(rootDir, "package-lock.json"))) return "npm";
   return "unknown";
 }
 
@@ -1333,7 +1343,6 @@ function normalizeQueryParams(sql) {
 }
 
 // src/analysis/insights.ts
-var AUTH_CATEGORIES = /* @__PURE__ */ new Set(["auth-handshake", "auth-check", "middleware"]);
 function getQueryShape(q) {
   if (q.sql) return normalizeQueryParams(q.sql) ?? "";
   return `${q.operation ?? q.normalizedOp ?? "?"}:${q.model ?? q.table ?? ""}`;
@@ -1575,29 +1584,6 @@ function computeInsights(ctx) {
       });
     }
   }
-  for (const flow of ctx.flows) {
-    if (!flow.requests || flow.requests.length < 2) continue;
-    let authMs = 0;
-    let totalMs = 0;
-    for (const r of flow.requests) {
-      const dur = r.pollingDurationMs ?? r.durationMs;
-      totalMs += dur;
-      if (AUTH_CATEGORIES.has(r.category ?? "")) authMs += dur;
-    }
-    if (totalMs > 0 && authMs > 0) {
-      const pct = Math.round(authMs / totalMs * 100);
-      if (pct >= AUTH_OVERHEAD_PCT) {
-        insights.push({
-          severity: "warning",
-          type: "auth-overhead",
-          title: "Auth Overhead",
-          desc: `${flow.label} \u2014 ${pct}% of time (${formatDuration(authMs)}) spent in auth/middleware`,
-          hint: "Auth checks consume a significant portion of this action. If using a third-party auth provider, check if session caching can reduce roundtrips.",
-          nav: "actions"
-        });
-      }
-    }
-  }
   const selectStarSeen = /* @__PURE__ */ new Map();
   for (const [, reqQueries] of queriesByReq) {
     for (const q of reqQueries) {
@@ -1819,7 +1805,7 @@ var AnalysisEngine = class {
 };
 
 // src/index.ts
-var VERSION = "0.6.1";
+var VERSION = "0.6.2";
 export {
   AdapterRegistry,
   AnalysisEngine,

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "brakit",
-  "version": "0.6.1",
+  "version": "0.6.2",
   "description": "See what your API is really doing. Security scanning, N+1 detection, duplicate calls, DB queries — one command, zero config.",
   "type": "module",
   "bin": {