cdk-insights 0.6.0 → 0.7.1

package/dist/cli/entry.js

@@ -78833,6 +78833,11 @@ var isServiceName = (value) => {
   return SPECIFIC_SERVICE_NAMES.includes(value);
 };
 
+// src/shared/auth.ts
+var crypto6 = __toESM(require("node:crypto"));
+var fs2 = __toESM(require("node:fs"));
+var path2 = __toESM(require("node:path"));
+
 // node_modules/axios/lib/helpers/bind.js
 function bind(fn, thisArg) {
   return function wrap2() {
@@ -82444,11 +82449,6 @@ var {
   mergeConfig: mergeConfig2
 } = axios_default;
 
-// src/shared/auth.ts
-var crypto6 = __toESM(require("node:crypto"));
-var fs2 = __toESM(require("node:fs"));
-var path2 = __toESM(require("node:path"));
-
 // src/shared/apiConfig.ts
 var normalize2 = (value) => {
   if (!value) return void 0;
@@ -94105,6 +94105,7 @@ var runAnalysis = async ({
   failOnCritical,
   tier,
   noCache = false,
+  allowOveruse = false,
   cache: cache3,
   quotaValidation
 }) => {
@@ -94122,6 +94123,25 @@ var runAnalysis = async ({
     services: services || ["All services"],
     output: output || "table"
   });
+  if (quotaValidation && !quotaValidation.quota.isTrial && quotaValidation.canRunAIAnalysis && allowOveruse) {
+    const alreadyExceeded = quotaValidation.quota.currentResourcesAnalyzed >= quotaValidation.quota.maxResources;
+    const wouldExceed = quotaValidation.quota.wouldExceed;
+    if (alreadyExceeded) {
+      terminal.warning(
+        `\u26A0\uFE0F  You have exceeded your paid allowance (${quotaValidation.quota.currentResourcesAnalyzed}/${quotaValidation.quota.maxResources} resources analyzed).`
+      );
+      terminal.warning(
+        "   Proceeding with AI analysis as --allow-overuse is enabled. Extra usage will be charged."
+      );
+    } else if (wouldExceed) {
+      terminal.warning(
+        `\u26A0\uFE0F  This analysis will exceed your paid allowance (${quotaValidation.quota.currentResourcesAnalyzed}/${quotaValidation.quota.maxResources} resources analyzed).`
+      );
+      terminal.warning(
+        "   Proceeding with AI analysis as --allow-overuse is enabled. Extra usage will be charged."
+      );
+    }
+  }
   const manifest = loadManifest("cdk.out");
   const constructRegistry = await withErrorHandling(
     () => loadConstructMetadata(listAvailableConstructs()),
@@ -94351,27 +94371,25 @@ var validateEnhancedLicenseQuota = async (request) => {
     hasUsageData: !!request.usageData
   });
   try {
-    if (request.usageData || request.licenseInfo && (request.licenseInfo.totalResourcesAnalyzed > 0 || request.licenseInfo.currentPeriodUsage > 0)) {
+    if (request.licenseInfo || request.usageData) {
       let currentResources2 = 0;
-      if (request.usageData) {
+      if (request.licenseInfo && request.licenseInfo.totalResourcesAnalyzed > 0) {
+        currentResources2 = Number(request.licenseInfo.totalResourcesAnalyzed);
+        cliLogger.info("\u{1F4CA} Using totalResourcesAnalyzed from license (source of truth)", context, {
+          totalResourcesAnalyzed: currentResources2,
+          licenseInfoSource: true
+        });
+      } else if (request.usageData && request.usageData.totalResourcesAnalyzed > 0) {
         currentResources2 = request.usageData.totalResourcesAnalyzed;
-        cliLogger.info("\u{1F4CA} Using usage data from login", context, {
+        cliLogger.info("\u{1F4CA} Using usage data from login (fallback)", context, {
           totalResourcesAnalyzed: request.usageData.totalResourcesAnalyzed,
           totalTokens: request.usageData.totalTokens,
           usageCount: request.usageData.usageCount
         });
-      } else if (request.licenseInfo) {
-        const totalResourcesAnalyzed = Number(
-          request.licenseInfo.totalResourcesAnalyzed || 0
-        );
-        const currentPeriodUsage = Number(
-          request.licenseInfo.currentPeriodUsage || 0
-        );
-        currentResources2 = totalResourcesAnalyzed > 0 ? totalResourcesAnalyzed : currentPeriodUsage;
-        cliLogger.info("\u{1F4CA} Using usage data from license info", context, {
-          totalResourcesAnalyzed,
-          currentPeriodUsage,
-          currentResources: currentResources2
+      } else if (request.licenseInfo && request.licenseInfo.currentPeriodUsage > 0) {
+        currentResources2 = Number(request.licenseInfo.currentPeriodUsage);
+        cliLogger.info("\u{1F4CA} Using currentPeriodUsage from license (last resort fallback)", context, {
+          currentPeriodUsage: currentResources2
         });
       }
       let maxResources2 = 200;
@@ -94415,8 +94433,21 @@ var validateEnhancedLicenseQuota = async (request) => {
         canProceed = false;
         canRunStaticAnalysis = true;
         canRunAIAnalysis = false;
-        reason = `AI-powered analysis would exceed trial limit. You have analyzed ${currentResources2}/${maxResources2} resources and are requesting ${request.requestedResources} more.`;
+        const overuseNote = request.allowOveruse ? " Note: --allow-overuse does not apply to trial licenses which have a hard usage limit." : "";
+        reason = `AI-powered analysis would exceed trial limit. You have analyzed ${currentResources2}/${maxResources2} resources and are requesting ${request.requestedResources} more.${overuseNote}`;
         upgradePath = "https://cdkinsights.dev/pricing";
+      } else if (wouldExceed2 && !isTrial2) {
+        if (request.allowOveruse) {
+          canProceed = true;
+          canRunStaticAnalysis = true;
+          canRunAIAnalysis = true;
+          reason = `You have exceeded your paid allowance (${currentResources2}/${maxResources2} resources). Proceeding with AI analysis as --allow-overuse is enabled. Extra usage will be charged.`;
+        } else {
+          canProceed = true;
+          canRunStaticAnalysis = true;
+          canRunAIAnalysis = false;
+          reason = `AI analysis would exceed your paid allowance (${currentResources2}/${maxResources2} resources). Extra usage will be charged. Use --allow-overuse to proceed with AI analysis.`;
+        }
       } else if (isTrial2 && currentResources2 >= hardStopThreshold && request.requestedResources > 10) {
         canProceed = false;
         canRunStaticAnalysis = true;
@@ -94597,6 +94628,7 @@ var DEFAULT_CONFIG = {
   reset: false,
   github: false,
   noCache: false,
+  allowOveruse: false,
   cache: {
     enabled: true,
     ttl: 5 * 60 * 1e3,
@@ -94707,6 +94739,10 @@ var mergeConfigWithArgs = (config2, cliArgs) => {
     reset: cliArgs.reset ?? DEFAULT_CONFIG.reset,
     github: cliArgs.github ?? DEFAULT_CONFIG.github,
     noCache: cliArgs.noCache ?? DEFAULT_CONFIG.noCache,
+    allowOveruse: validateBoolean(
+      cliArgs.allowOveruse ?? config2.allowOveruse,
+      DEFAULT_CONFIG.allowOveruse
+    ),
     cache: validateCacheConfig(
       cliArgs.cache ?? config2.cache ?? DEFAULT_CONFIG.cache
     )
@@ -94725,6 +94761,7 @@ var DEFAULT_CONFIG2 = {
   ruleFilter: [],
   failOnCritical: true,
   noCache: false,
+  allowOveruse: false,
   cache: {
     enabled: true,
     ttl: 5 * 60 * 1e3,
@@ -94775,6 +94812,9 @@ var validateConfig = (config2) => {
   if (typeof raw.noCache === "boolean") {
     validated.noCache = raw.noCache;
   }
+  if (typeof raw.allowOveruse === "boolean") {
+    validated.allowOveruse = raw.allowOveruse;
+  }
   if (raw.cache && typeof raw.cache === "object" && !Array.isArray(raw.cache)) {
     const cacheConfig = raw.cache;
     validated.cache = { ...DEFAULT_CONFIG2.cache };
@@ -95004,7 +95044,6 @@ async function runStackAnalysis(finalConfig, fingerprint, authToken, licenseInfo
   let canRunAIAnalysis = true;
   if (licenseKey) {
     terminal.info("\u{1F50D} Checking license quota...");
-    console.log("licenseInfo", licenseInfo);
     const isTrial = licenseInfo.licenseType === "TRIAL" || licenseInfo.status === "TRIAL";
     const currentResources = licenseInfo.totalResourcesAnalyzed || 0;
     const maxResources = licenseInfo.trialUsageLimit || licenseInfo.maxUsage || 200;
@@ -95036,11 +95075,10 @@ async function runStackAnalysis(finalConfig, fingerprint, authToken, licenseInfo
         "   Upgrade to Pro for unlimited AI-powered recommendations"
       );
     } else {
-      const availableStacks = getAvailableStacks();
-      const estimatedResources = availableStacks.length > 0 ? 50 : 0;
       quotaValidation = await validateEnhancedLicenseQuota({
         licenseKey,
-        requestedResources: estimatedResources,
+        requestedResources: totalResources,
+        allowOveruse: finalConfig.allowOveruse,
         usageData,
         licenseInfo
       });
@@ -95146,6 +95184,7 @@ async function runStackAnalysis(finalConfig, fingerprint, authToken, licenseInfo
     quotaValidation: quotaValidation || null,
     // Pass quota validation info to control analysis phases
     noCache: finalConfig.noCache || false,
+    allowOveruse: finalConfig.allowOveruse || false,
     onAuthRefresh
   };
   return await runAnalysis(analysisConfig);
@@ -95199,6 +95238,10 @@ var analyzeCommand = {
     describe: "Disable cache and force fresh analysis",
     type: "boolean",
     default: false
+  }).option("allowOveruse", {
+    describe: "Allow AI analysis even when exceeding paid allowance (extra usage will be charged)",
+    type: "boolean",
+    default: false
   }),
   handler: async (argv) => {
     try {
@@ -95560,6 +95603,13 @@ var CONFIG_FIELDS = {
     examples: ["true", "false"],
     validation: "Must be true or false"
   },
+  allowOveruse: {
+    type: "boolean",
+    default: false,
+    description: "Allow AI analysis to proceed even when it will exceed paid allowance (extra usage will be charged)",
+    examples: ["true", "false"],
+    validation: "Must be true or false"
+  },
   cache: {
     type: "object",
     default: { enabled: true, ttl: 3e5, maxSize: 1e3 },
@@ -95881,6 +95931,7 @@ var createHelpTable = () => {
     ["--fail-on-critical", "Exit with code 1 if critical issues found"],
     ["--rule-filter", "Filter findings by rule IDs or categories"],
     ["--no-cache", "Disable cache and force fresh analysis"],
+    ["--allow-overuse", "Allow AI analysis even when exceeding paid allowance (extra usage charged)"],
     ["", ""]
   );
   helpTable.push(
@@ -95922,6 +95973,7 @@ var configCommand = {
         "ruleFilter",
         "failOnCritical",
         "noCache",
+        "allowOveruse",
         "cache"
       ],
       describe: "Configuration field to set"
@@ -95949,6 +96001,7 @@ var configCommand = {
         "ruleFilter",
         "failOnCritical",
         "noCache",
+        "allowOveruse",
         "cache"
       ],
       describe: "Configuration field to remove"

package/dist/cli/types/cli.types.d.ts

@@ -17,6 +17,7 @@ export interface AnalyzeCommandArgs {
     summaryOnly?: boolean;
     synth?: boolean;
     noCache?: boolean;
+    allowOveruse?: boolean;
     cache?: {
         enabled?: boolean;
         ttl?: number;
@@ -35,6 +36,7 @@ export interface UserConfig {
     synth?: boolean;
     ruleFilter?: string[];
     noCache?: boolean;
+    allowOveruse?: boolean;
     cache?: {
         enabled?: boolean;
         ttl?: number;

package/dist/index.d.ts

@@ -16,6 +16,7 @@ type QuotaValidation = {
         isTrial: boolean;
         currentResourcesAnalyzed: number;
         maxResources: number;
+        wouldExceed?: boolean;
     };
 };
 interface RunAnalysisTypes {
@@ -34,6 +35,7 @@ interface RunAnalysisTypes {
     failOnCritical?: boolean;
     tier?: Tier;
     noCache?: boolean;
+    allowOveruse?: boolean;
     cache?: CacheConfig;
     quotaValidation?: QuotaValidation;
 }
@@ -42,7 +44,7 @@ interface RunAnalysisTypes {
  * Main analysis entry
  * ---------------------------------------
  */
-export declare const runAnalysis: ({ stacks, inlineFindings, pathToLogicalId, output, recommendationMapPerStack, withIssue, services, ruleFilter, authToken, fingerprint, failOnCritical, tier, noCache, cache, quotaValidation, }: RunAnalysisTypes) => Promise<{
+export declare const runAnalysis: ({ stacks, inlineFindings, pathToLogicalId, output, recommendationMapPerStack, withIssue, services, ruleFilter, authToken, fingerprint, failOnCritical, tier, noCache, allowOveruse, cache, quotaValidation, }: RunAnalysisTypes) => Promise<{
     recommendationMaps: Record<string, IssueGroup>;
     hasCriticalIssues: boolean;
 }>;

package/dist/index.js

@@ -60463,6 +60463,7 @@ var runAnalysis = async ({
   failOnCritical,
   tier,
   noCache = false,
+  allowOveruse = false,
   cache: cache3,
   quotaValidation
 }) => {
@@ -60480,6 +60481,25 @@ var runAnalysis = async ({
     services: services || ["All services"],
     output: output || "table"
   });
+  if (quotaValidation && !quotaValidation.quota.isTrial && quotaValidation.canRunAIAnalysis && allowOveruse) {
+    const alreadyExceeded = quotaValidation.quota.currentResourcesAnalyzed >= quotaValidation.quota.maxResources;
+    const wouldExceed = quotaValidation.quota.wouldExceed;
+    if (alreadyExceeded) {
+      terminal2.warning(
+        `\u26A0\uFE0F  You have exceeded your paid allowance (${quotaValidation.quota.currentResourcesAnalyzed}/${quotaValidation.quota.maxResources} resources analyzed).`
+      );
+      terminal2.warning(
+        "   Proceeding with AI analysis as --allow-overuse is enabled. Extra usage will be charged."
+      );
+    } else if (wouldExceed) {
+      terminal2.warning(
+        `\u26A0\uFE0F  This analysis will exceed your paid allowance (${quotaValidation.quota.currentResourcesAnalyzed}/${quotaValidation.quota.maxResources} resources analyzed).`
+      );
+      terminal2.warning(
+        "   Proceeding with AI analysis as --allow-overuse is enabled. Extra usage will be charged."
+      );
+    }
+  }
   const manifest = loadManifest("cdk.out");
   const constructRegistry = await withErrorHandling(
     () => loadConstructMetadata(listAvailableConstructs()),

package/dist/shared/enhancedLicenseQuota.d.ts

@@ -1,6 +1,7 @@
 export interface EnhancedQuotaValidationRequest {
     licenseKey: string;
     requestedResources: number;
+    allowOveruse?: boolean;
     usageData?: {
         totalTokens: number;
         totalResourcesAnalyzed: number;

package/dist/shared/licenseQuota.d.ts

@@ -16,4 +16,4 @@ export interface QuotaValidationResult {
     reason?: string;
     upgradePath?: string;
 }
-export declare const validateLicenseQuota: (licenseKey: string, requestedResources: number) => Promise<QuotaValidationResult>;
+export declare const validateLicenseQuota: (licenseKey: string, requestedResources: number, allowOveruse?: boolean) => Promise<QuotaValidationResult>;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cdk-insights",
-  "version": "0.6.0",
+  "version": "0.7.1",
   "description": "AWS CDK security and cost analysis tool with AI-powered insights",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",