brakit 0.8.0 → 0.8.2

package/dist/bin/brakit.js

@@ -28,12 +28,11 @@ var init_routes = __esm({
 });
 
 // src/constants/limits.ts
-var MAX_REQUEST_ENTRIES, MAX_TELEMETRY_ENTRIES;
+var MAX_INGEST_BYTES;
 var init_limits = __esm({
   "src/constants/limits.ts"() {
     "use strict";
-    MAX_REQUEST_ENTRIES = 1e3;
-    MAX_TELEMETRY_ENTRIES = 1e3;
+    MAX_INGEST_BYTES = 10 * 1024 * 1024;
   }
 });
 
@@ -78,23 +77,47 @@ var init_network = __esm({
 });
 
 // src/constants/mcp.ts
-var MCP_SERVER_NAME, MCP_SERVER_VERSION, INITIAL_DISCOVERY_TIMEOUT_MS, LAZY_DISCOVERY_TIMEOUT_MS, CLIENT_FETCH_TIMEOUT_MS, HEALTH_CHECK_TIMEOUT_MS, DISCOVERY_POLL_INTERVAL_MS, MAX_TIMELINE_EVENTS, MAX_RESOLVED_DISPLAY, ENRICHMENT_SEVERITY_FILTER;
+var MCP_SERVER_NAME, MCP_SERVER_VERSION, INITIAL_DISCOVERY_TIMEOUT_MS, LAZY_DISCOVERY_TIMEOUT_MS, CLIENT_FETCH_TIMEOUT_MS, HEALTH_CHECK_TIMEOUT_MS, DISCOVERY_POLL_INTERVAL_MS, MAX_DISCOVERY_DEPTH, MAX_TIMELINE_EVENTS, MAX_RESOLVED_DISPLAY, ENRICHMENT_SEVERITY_FILTER;
 var init_mcp = __esm({
   "src/constants/mcp.ts"() {
     "use strict";
     MCP_SERVER_NAME = "brakit";
-    MCP_SERVER_VERSION = "0.8.0";
+    MCP_SERVER_VERSION = "0.8.2";
     INITIAL_DISCOVERY_TIMEOUT_MS = 5e3;
     LAZY_DISCOVERY_TIMEOUT_MS = 2e3;
     CLIENT_FETCH_TIMEOUT_MS = 1e4;
     HEALTH_CHECK_TIMEOUT_MS = 3e3;
     DISCOVERY_POLL_INTERVAL_MS = 500;
+    MAX_DISCOVERY_DEPTH = 5;
     MAX_TIMELINE_EVENTS = 20;
     MAX_RESOLVED_DISPLAY = 5;
     ENRICHMENT_SEVERITY_FILTER = ["critical", "warning"];
   }
 });
 
+// src/constants/encoding.ts
+var init_encoding = __esm({
+  "src/constants/encoding.ts"() {
+    "use strict";
+  }
+});
+
+// src/constants/severity.ts
+var SEVERITY_CRITICAL, SEVERITY_WARNING, SEVERITY_INFO, SEVERITY_ICON_MAP;
+var init_severity = __esm({
+  "src/constants/severity.ts"() {
+    "use strict";
+    SEVERITY_CRITICAL = "critical";
+    SEVERITY_WARNING = "warning";
+    SEVERITY_INFO = "info";
+    SEVERITY_ICON_MAP = {
+      [SEVERITY_CRITICAL]: { icon: "\u2717", cls: "critical" },
+      [SEVERITY_WARNING]: { icon: "\u26A0", cls: "warning" },
+      [SEVERITY_INFO]: { icon: "\u2139", cls: "info" }
+    };
+  }
+});
+
 // src/constants/index.ts
 var init_constants = __esm({
   "src/constants/index.ts"() {
@@ -107,6 +130,8 @@ var init_constants = __esm({
     init_headers();
     init_network();
     init_mcp();
+    init_encoding();
+    init_severity();
   }
 });
 
@@ -219,22 +244,55 @@ var init_client = __esm({
 });
 
 // src/mcp/discovery.ts
-import { readFileSync as readFileSync4, existsSync as existsSync4 } from "fs";
-import { resolve as resolve6 } from "path";
+import { readFileSync as readFileSync3, existsSync as existsSync4, readdirSync, statSync } from "fs";
+import { resolve as resolve5, dirname } from "path";
+function readPort(portPath) {
+  if (!existsSync4(portPath)) return null;
+  const raw = readFileSync3(portPath, "utf-8").trim();
+  const port = parseInt(raw, 10);
+  return isNaN(port) || port < 1 || port > 65535 ? null : port;
+}
+function portInDir(dir) {
+  return readPort(resolve5(dir, PORT_FILE));
+}
+function portInChildren(dir) {
+  try {
+    for (const entry of readdirSync(dir)) {
+      if (entry.startsWith(".") || entry === "node_modules") continue;
+      const child = resolve5(dir, entry);
+      try {
+        if (!statSync(child).isDirectory()) continue;
+      } catch {
+        continue;
+      }
+      const port = portInDir(child);
+      if (port) return port;
+    }
+  } catch {
+  }
+  return null;
+}
+function searchForPort(startDir) {
+  const start = resolve5(startDir);
+  const initial = portInDir(start) ?? portInChildren(start);
+  if (initial) return initial;
+  let dir = dirname(start);
+  for (let depth = 0; depth < MAX_DISCOVERY_DEPTH; depth++) {
+    const port = portInDir(dir);
+    if (port) return port;
+    const parent = dirname(dir);
+    if (parent === dir) break;
+    dir = parent;
+  }
+  return null;
+}
 function discoverBrakitPort(cwd) {
-  const root = cwd ?? process.cwd();
-  const portPath = resolve6(root, PORT_FILE);
-  if (!existsSync4(portPath)) {
+  const port = searchForPort(cwd ?? process.cwd());
+  if (!port) {
     throw new Error(
-      `Brakit is not running. No port file found at ${portPath}.
-Start your app with brakit enabled first.`
+      "Brakit is not running. Start your app with brakit enabled first."
     );
   }
-  const raw = readFileSync4(portPath, "utf-8").trim();
-  const port = parseInt(raw, 10);
-  if (isNaN(port) || port < 1 || port > 65535) {
-    throw new Error(`Invalid port in ${portPath}: "${raw}"`);
-  }
   return { port, baseUrl: `http://localhost:${port}` };
 }
 async function waitForBrakit(cwd, timeoutMs = 1e4, pollMs = DISCOVERY_POLL_INTERVAL_MS) {
@@ -300,7 +358,9 @@ async function enrichFindings(client) {
       context
     });
   }
-  for (const i of insightsData.insights) {
+  for (const si of insightsData.insights) {
+    if (si.state === "resolved") continue;
+    const i = si.insight;
     if (!ENRICHMENT_SEVERITY_FILTER.includes(i.severity)) continue;
     const endpoint = i.nav ?? "global";
     enriched.push({
@@ -690,13 +750,14 @@ var init_get_report = __esm({
           (s, ep) => s + ep.summary.totalRequests,
           0
         );
+        const openInsightCount = insightsData.insights.filter((si) => si.state === "open").length;
         const lines = [
           "=== Brakit Report ===",
           "",
           `Endpoints observed: ${metricsData.endpoints.length}`,
           `Total requests captured: ${totalRequests}`,
           `Active security rules: ${securityData.findings.length} finding(s)`,
-          `Performance insights: ${insightsData.insights.length} insight(s)`,
+          `Performance insights: ${openInsightCount} open, ${insightsData.insights.length - openInsightCount} resolved`,
           "",
           "--- Finding Summary ---",
           `Total: ${findings.length}`,
@@ -923,22 +984,24 @@ import { runMain } from "citty";
 
 // src/cli/commands/install.ts
 import { defineCommand } from "citty";
-import { resolve as resolve4, join as join2 } from "path";
-import { readFile as readFile3, writeFile as writeFile4 } from "fs/promises";
+import { resolve as resolve3, join as join2 } from "path";
+import { readFile as readFile3, writeFile as writeFile3 } from "fs/promises";
 import { execSync } from "child_process";
 import pc from "picocolors";
 
 // src/store/finding-store.ts
 init_constants();
+import { readFileSync as readFileSync2, existsSync as existsSync3 } from "fs";
+import { resolve as resolve2 } from "path";
+
+// src/utils/atomic-writer.ts
 import {
-  readFileSync as readFileSync2,
   writeFileSync as writeFileSync2,
   existsSync as existsSync2,
   mkdirSync as mkdirSync2,
   renameSync
 } from "fs";
 import { writeFile as writeFile2, mkdir, rename } from "fs/promises";
-import { resolve as resolve2 } from "path";
 
 // src/utils/fs.ts
 import { access } from "fs/promises";
@@ -1472,166 +1535,9 @@ var responsePiiLeakRule = {
   }
 };
 
-// src/store/request-store.ts
-init_constants();
-
-// src/utils/static-patterns.ts
-var STATIC_PATTERNS = [
-  /^\/_next\//,
-  /\.(?:js|css|map|ico|png|jpg|jpeg|gif|svg|webp|woff2?|ttf|eot)$/,
-  /^\/favicon/,
-  /^\/__nextjs/
-];
-function isStaticPath(urlPath) {
-  return STATIC_PATTERNS.some((p) => p.test(urlPath));
-}
-
-// src/store/request-store.ts
-function flattenHeaders(headers) {
-  const flat = {};
-  for (const [key, value] of Object.entries(headers)) {
-    if (value === void 0) continue;
-    flat[key] = Array.isArray(value) ? value.join(", ") : value;
-  }
-  return flat;
-}
-var RequestStore = class {
-  constructor(maxEntries = MAX_REQUEST_ENTRIES) {
-    this.maxEntries = maxEntries;
-  }
-  requests = [];
-  listeners = [];
-  capture(input) {
-    const url = input.url;
-    const path = url.split("?")[0];
-    let requestBodyStr = null;
-    if (input.requestBody && input.requestBody.length > 0) {
-      requestBodyStr = input.requestBody.subarray(0, input.config.maxBodyCapture).toString("utf-8");
-    }
-    let responseBodyStr = null;
-    if (input.responseBody && input.responseBody.length > 0) {
-      const ct = input.responseContentType;
-      if (ct.includes("json") || ct.includes("text") || ct.includes("html")) {
-        responseBodyStr = input.responseBody.subarray(0, input.config.maxBodyCapture).toString("utf-8");
-      }
-    }
-    const entry = {
-      id: input.requestId,
-      method: input.method,
-      url,
-      path,
-      headers: flattenHeaders(input.requestHeaders),
-      requestBody: requestBodyStr,
-      statusCode: input.statusCode,
-      responseHeaders: flattenHeaders(input.responseHeaders),
-      responseBody: responseBodyStr,
-      startedAt: input.startTime,
-      durationMs: Math.round((input.endTime ?? performance.now()) - input.startTime),
-      responseSize: input.responseBody?.length ?? 0,
-      isStatic: isStaticPath(path)
-    };
-    this.requests.push(entry);
-    if (this.requests.length > this.maxEntries) {
-      this.requests.shift();
-    }
-    for (const fn of this.listeners) {
-      fn(entry);
-    }
-    return entry;
-  }
-  getAll() {
-    return this.requests;
-  }
-  clear() {
-    this.requests.length = 0;
-  }
-  onRequest(fn) {
-    this.listeners.push(fn);
-  }
-  offRequest(fn) {
-    const idx = this.listeners.indexOf(fn);
-    if (idx !== -1) this.listeners.splice(idx, 1);
-  }
-};
-
-// src/store/request-log.ts
-var defaultStore = new RequestStore();
-
-// src/store/telemetry-store.ts
-init_constants();
-import { randomUUID } from "crypto";
-var TelemetryStore = class {
-  constructor(maxEntries = MAX_TELEMETRY_ENTRIES) {
-    this.maxEntries = maxEntries;
-  }
-  entries = [];
-  listeners = [];
-  add(data) {
-    const entry = { id: randomUUID(), ...data };
-    this.entries.push(entry);
-    if (this.entries.length > this.maxEntries) this.entries.shift();
-    for (const fn of this.listeners) fn(entry);
-    return entry;
-  }
-  getAll() {
-    return this.entries;
-  }
-  getByRequest(requestId) {
-    return this.entries.filter((e) => e.parentRequestId === requestId);
-  }
-  clear() {
-    this.entries.length = 0;
-  }
-  onEntry(fn) {
-    this.listeners.push(fn);
-  }
-  offEntry(fn) {
-    const idx = this.listeners.indexOf(fn);
-    if (idx !== -1) this.listeners.splice(idx, 1);
-  }
-};
-
-// src/store/fetch-store.ts
-var FetchStore = class extends TelemetryStore {
-};
-var defaultFetchStore = new FetchStore();
-
-// src/store/log-store.ts
-var LogStore = class extends TelemetryStore {
-};
-var defaultLogStore = new LogStore();
-
-// src/store/error-store.ts
-var ErrorStore = class extends TelemetryStore {
-};
-var defaultErrorStore = new ErrorStore();
-
-// src/store/query-store.ts
-var QueryStore = class extends TelemetryStore {
-};
-var defaultQueryStore = new QueryStore();
-
-// src/store/metrics/metrics-store.ts
-init_constants();
-import { randomUUID as randomUUID2 } from "crypto";
-init_endpoint();
-
-// src/store/metrics/persistence.ts
-init_constants();
-import {
-  readFileSync as readFileSync3,
-  writeFileSync as writeFileSync3,
-  mkdirSync as mkdirSync3,
-  existsSync as existsSync3,
-  unlinkSync,
-  renameSync as renameSync2
-} from "fs";
-import { writeFile as writeFile3, mkdir as mkdir2, rename as rename2 } from "fs/promises";
-import { resolve as resolve3 } from "path";
-
 // src/analysis/group.ts
 init_constants();
-import { randomUUID as randomUUID3 } from "crypto";
+import { randomUUID } from "crypto";
 
 // src/analysis/label.ts
 init_constants();
@@ -1642,49 +1548,54 @@ init_constants();
 // src/analysis/insights/prepare.ts
 init_endpoint();
 init_constants();
+init_thresholds();
 
 // src/analysis/insights/rules/n1.ts
 init_endpoint();
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/cross-endpoint.ts
 init_endpoint();
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/redundant-query.ts
 init_endpoint();
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/error-hotspot.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/duplicate.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/slow.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/query-heavy.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/select-star.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/high-rows.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/response-overfetch.ts
 init_endpoint();
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/large-response.ts
-init_thresholds();
+init_constants();
 
 // src/analysis/insights/rules/regression.ts
+init_constants();
+
+// src/analysis/insight-tracker.ts
+init_endpoint();
 init_thresholds();
 
 // src/index.ts
-var VERSION = "0.8.0";
+var VERSION = "0.8.2";
 
 // src/cli/commands/install.ts
 var IMPORT_LINE = `import "brakit";`;
@@ -1704,10 +1615,21 @@ var install_default = defineCommand({
     }
   },
   async run({ args }) {
-    const rootDir = resolve4(args.dir);
+    const rootDir = resolve3(args.dir);
     const pkgPath = join2(rootDir, "package.json");
     if (!await fileExists(pkgPath)) {
-      console.error(pc.red("  No package.json found. Run this from your project root."));
+      console.error(pc.red("  No project found. Run this from your project directory."));
+      process.exit(1);
+    }
+    let pkg;
+    try {
+      pkg = JSON.parse(await readFile3(pkgPath, "utf-8"));
+    } catch {
+      console.error(pc.red("  Failed to read package.json."));
+      process.exit(1);
+    }
+    if (!pkg.name || typeof pkg.name !== "string") {
+      console.error(pc.red("  No project found. Run this from your project directory."));
       process.exit(1);
     }
     let project;
@@ -1804,7 +1726,7 @@ async function setupNextjs(rootDir) {
     `}`,
     ``
   ].join("\n");
-  await writeFile4(absPath, content);
+  await writeFile3(absPath, content);
   return { action: "created", file: relPath, content };
 }
 async function setupNuxt(rootDir) {
@@ -1820,9 +1742,9 @@ async function setupNuxt(rootDir) {
   const content = `${IMPORT_LINE}
 `;
   const dir = join2(rootDir, "server/plugins");
-  const { mkdirSync: mkdirSync4 } = await import("fs");
-  mkdirSync4(dir, { recursive: true });
-  await writeFile4(absPath, content);
+  const { mkdirSync: mkdirSync3 } = await import("fs");
+  mkdirSync3(dir, { recursive: true });
+  await writeFile3(absPath, content);
   return { action: "created", file: relPath, content };
 }
 async function setupPrepend(rootDir, ...candidates) {
@@ -1833,7 +1755,7 @@ async function setupPrepend(rootDir, ...candidates) {
     if (content.includes(IMPORT_MARKER)) {
       return { action: "exists", file: relPath };
     }
-    await writeFile4(absPath, `${IMPORT_LINE}
+    await writeFile3(absPath, `${IMPORT_LINE}
 ${content}`);
     return { action: "prepended", file: relPath };
   }
@@ -1883,13 +1805,13 @@ async function setupMcp(rootDir) {
       const config = JSON.parse(raw);
       if (config?.mcpServers?.brakit) return "exists";
       config.mcpServers = { ...config.mcpServers, ...MCP_CONFIG.mcpServers };
-      await writeFile4(mcpPath, JSON.stringify(config, null, 2) + "\n");
+      await writeFile3(mcpPath, JSON.stringify(config, null, 2) + "\n");
       await ensureGitignoreMcp(rootDir);
       return "updated";
     } catch {
     }
   }
-  await writeFile4(mcpPath, JSON.stringify(MCP_CONFIG, null, 2) + "\n");
+  await writeFile3(mcpPath, JSON.stringify(MCP_CONFIG, null, 2) + "\n");
   await ensureGitignoreMcp(rootDir);
   return "created";
 }
@@ -1899,9 +1821,9 @@ async function ensureGitignoreMcp(rootDir) {
     if (await fileExists(gitignorePath)) {
       const content = await readFile3(gitignorePath, "utf-8");
       if (content.split("\n").some((l) => l.trim() === ".mcp.json")) return;
-      await writeFile4(gitignorePath, content.trimEnd() + "\n.mcp.json\n");
+      await writeFile3(gitignorePath, content.trimEnd() + "\n.mcp.json\n");
     } else {
-      await writeFile4(gitignorePath, ".mcp.json\n");
+      await writeFile3(gitignorePath, ".mcp.json\n");
     }
   } catch {
   }
@@ -1925,8 +1847,8 @@ function printManualInstructions(framework) {
 
 // src/cli/commands/uninstall.ts
 import { defineCommand as defineCommand2 } from "citty";
-import { resolve as resolve5, join as join3 } from "path";
-import { readFile as readFile4, writeFile as writeFile5, unlink, rm } from "fs/promises";
+import { resolve as resolve4, join as join3 } from "path";
+import { readFile as readFile4, writeFile as writeFile4, unlink, rm } from "fs/promises";
 import { execSync as execSync2 } from "child_process";
 import pc2 from "picocolors";
 init_constants();
@@ -1967,7 +1889,7 @@ var uninstall_default = defineCommand2({
     }
   },
   async run({ args }) {
-    const rootDir = resolve5(args.dir);
+    const rootDir = resolve4(args.dir);
     let project = null;
     try {
       project = await detectProject(rootDir);
@@ -2005,7 +1927,7 @@ var uninstall_default = defineCommand2({
         const content = await readFile4(absPath, "utf-8");
         if (!content.includes(IMPORT_LINE2)) continue;
         const updated = content.split("\n").filter((line) => line.trim() !== IMPORT_LINE2.trim()).join("\n");
-        await writeFile5(absPath, updated);
+        await writeFile4(absPath, updated);
         console.log(pc2.green(`  \u2713 Removed brakit import from ${relPath}`));
         removed = true;
         break;
@@ -2045,7 +1967,7 @@ async function removeMcpConfig(rootDir) {
     if (Object.keys(config.mcpServers).length === 0) {
       await unlink(mcpPath);
     } else {
-      await writeFile5(mcpPath, JSON.stringify(config, null, 2) + "\n");
+      await writeFile4(mcpPath, JSON.stringify(config, null, 2) + "\n");
     }
     return true;
   } catch {
@@ -2092,7 +2014,7 @@ async function cleanGitignore(rootDir) {
     const lines = content.split("\n");
     const filtered = lines.filter((line) => line.trim() !== METRICS_DIR);
     if (filtered.length === lines.length) return false;
-    await writeFile5(gitignorePath, filtered.join("\n"));
+    await writeFile4(gitignorePath, filtered.join("\n"));
     return true;
   } catch {
     return false;

package/dist/mcp/server.js

@@ -22,12 +22,13 @@ var DASHBOARD_API_FINDINGS = "/__brakit/api/findings";
 
 // src/constants/mcp.ts
 var MCP_SERVER_NAME = "brakit";
-var MCP_SERVER_VERSION = "0.8.0";
+var MCP_SERVER_VERSION = "0.8.2";
 var INITIAL_DISCOVERY_TIMEOUT_MS = 5e3;
 var LAZY_DISCOVERY_TIMEOUT_MS = 2e3;
 var CLIENT_FETCH_TIMEOUT_MS = 1e4;
 var HEALTH_CHECK_TIMEOUT_MS = 3e3;
 var DISCOVERY_POLL_INTERVAL_MS = 500;
+var MAX_DISCOVERY_DEPTH = 5;
 var MAX_TIMELINE_EVENTS = 20;
 var MAX_RESOLVED_DISPLAY = 5;
 var ENRICHMENT_SEVERITY_FILTER = ["critical", "warning"];
@@ -107,27 +108,73 @@ var BrakitClient = class {
 };
 
 // src/mcp/discovery.ts
-import { readFileSync, existsSync } from "fs";
-import { resolve } from "path";
+import { readFileSync, existsSync, readdirSync, statSync } from "fs";
+import { resolve, dirname } from "path";
+
+// src/constants/limits.ts
+var MAX_INGEST_BYTES = 10 * 1024 * 1024;
 
 // src/constants/metrics.ts
 var PORT_FILE = ".brakit/port";
 
+// src/constants/severity.ts
+var SEVERITY_CRITICAL = "critical";
+var SEVERITY_WARNING = "warning";
+var SEVERITY_INFO = "info";
+var SEVERITY_ICON_MAP = {
+  [SEVERITY_CRITICAL]: { icon: "\u2717", cls: "critical" },
+  [SEVERITY_WARNING]: { icon: "\u26A0", cls: "warning" },
+  [SEVERITY_INFO]: { icon: "\u2139", cls: "info" }
+};
+
 // src/mcp/discovery.ts
+function readPort(portPath) {
+  if (!existsSync(portPath)) return null;
+  const raw = readFileSync(portPath, "utf-8").trim();
+  const port = parseInt(raw, 10);
+  return isNaN(port) || port < 1 || port > 65535 ? null : port;
+}
+function portInDir(dir) {
+  return readPort(resolve(dir, PORT_FILE));
+}
+function portInChildren(dir) {
+  try {
+    for (const entry of readdirSync(dir)) {
+      if (entry.startsWith(".") || entry === "node_modules") continue;
+      const child = resolve(dir, entry);
+      try {
+        if (!statSync(child).isDirectory()) continue;
+      } catch {
+        continue;
+      }
+      const port = portInDir(child);
+      if (port) return port;
+    }
+  } catch {
+  }
+  return null;
+}
+function searchForPort(startDir) {
+  const start = resolve(startDir);
+  const initial = portInDir(start) ?? portInChildren(start);
+  if (initial) return initial;
+  let dir = dirname(start);
+  for (let depth = 0; depth < MAX_DISCOVERY_DEPTH; depth++) {
+    const port = portInDir(dir);
+    if (port) return port;
+    const parent = dirname(dir);
+    if (parent === dir) break;
+    dir = parent;
+  }
+  return null;
+}
 function discoverBrakitPort(cwd) {
-  const root = cwd ?? process.cwd();
-  const portPath = resolve(root, PORT_FILE);
-  if (!existsSync(portPath)) {
+  const port = searchForPort(cwd ?? process.cwd());
+  if (!port) {
     throw new Error(
-      `Brakit is not running. No port file found at ${portPath}.
-Start your app with brakit enabled first.`
+      "Brakit is not running. Start your app with brakit enabled first."
     );
   }
-  const raw = readFileSync(portPath, "utf-8").trim();
-  const port = parseInt(raw, 10);
-  if (isNaN(port) || port < 1 || port > 65535) {
-    throw new Error(`Invalid port in ${portPath}: "${raw}"`);
-  }
   return { port, baseUrl: `http://localhost:${port}` };
 }
 async function waitForBrakit(cwd, timeoutMs = 1e4, pollMs = DISCOVERY_POLL_INTERVAL_MS) {
@@ -204,7 +251,9 @@ async function enrichFindings(client) {
       context
     });
   }
-  for (const i of insightsData.insights) {
+  for (const si of insightsData.insights) {
+    if (si.state === "resolved") continue;
+    const i = si.insight;
     if (!ENRICHMENT_SEVERITY_FILTER.includes(i.severity)) continue;
     const endpoint = i.nav ?? "global";
     enriched.push({
@@ -553,13 +602,14 @@ var getReport = {
       (s, ep) => s + ep.summary.totalRequests,
       0
     );
+    const openInsightCount = insightsData.insights.filter((si) => si.state === "open").length;
     const lines = [
       "=== Brakit Report ===",
       "",
       `Endpoints observed: ${metricsData.endpoints.length}`,
       `Total requests captured: ${totalRequests}`,
       `Active security rules: ${securityData.findings.length} finding(s)`,
-      `Performance insights: ${insightsData.insights.length} insight(s)`,
+      `Performance insights: ${openInsightCount} open, ${insightsData.insights.length - openInsightCount} resolved`,
       "",
       "--- Finding Summary ---",
       `Total: ${findings.length}`,