npm - claude-crap - Versions diffs - 0.1.2 → 0.3.0 - Mend

claude-crap 0.1.2 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (45) hide show

package/CHANGELOG.md +68 -0
package/README.md +44 -23
package/dist/index.js +142 -1
package/dist/index.js.map +1 -1
package/dist/scanner/auto-scan.d.ts +57 -0
package/dist/scanner/auto-scan.d.ts.map +1 -0
package/dist/scanner/auto-scan.js +138 -0
package/dist/scanner/auto-scan.js.map +1 -0
package/dist/scanner/bootstrap.d.ts +89 -0
package/dist/scanner/bootstrap.d.ts.map +1 -0
package/dist/scanner/bootstrap.js +278 -0
package/dist/scanner/bootstrap.js.map +1 -0
package/dist/scanner/detector.d.ts +53 -0
package/dist/scanner/detector.d.ts.map +1 -0
package/dist/scanner/detector.js +173 -0
package/dist/scanner/detector.js.map +1 -0
package/dist/scanner/index.d.ts +23 -0
package/dist/scanner/index.d.ts.map +1 -0
package/dist/scanner/index.js +23 -0
package/dist/scanner/index.js.map +1 -0
package/dist/scanner/runner.d.ts +59 -0
package/dist/scanner/runner.d.ts.map +1 -0
package/dist/scanner/runner.js +159 -0
package/dist/scanner/runner.js.map +1 -0
package/dist/schemas/tool-schemas.d.ts +23 -0
package/dist/schemas/tool-schemas.d.ts.map +1 -1
package/dist/schemas/tool-schemas.js +23 -0
package/dist/schemas/tool-schemas.js.map +1 -1
package/package.json +5 -1
package/plugin/.claude-plugin/plugin.json +1 -1
package/plugin/bundle/mcp-server.mjs +732 -0
package/plugin/bundle/mcp-server.mjs.map +4 -4
package/plugin/package.json +1 -1
package/src/index.ts +176 -0
package/src/scanner/auto-scan.ts +212 -0
package/src/scanner/bootstrap.ts +383 -0
package/src/scanner/detector.ts +224 -0
package/src/scanner/index.ts +30 -0
package/src/scanner/runner.ts +212 -0
package/src/schemas/tool-schemas.ts +27 -0
package/src/tests/auto-scan.test.ts +137 -0
package/src/tests/integration/mcp-server.integration.test.ts +3 -1
package/src/tests/scanner-bootstrap.test.ts +186 -0
package/src/tests/scanner-detector.test.ts +181 -0
package/src/tests/scanner-runner.test.ts +63 -0

package/src/tests/scanner-detector.test.ts ADDED Viewed

@@ -0,0 +1,181 @@
+/**
+ * Unit tests for the scanner auto-detector.
+ *
+ * These tests probe the detection logic for each scanner type:
+ * config file detection, package.json dependency detection, and
+ * the fallback to binary availability.
+ *
+ * @module tests/scanner-detector.test
+ */
+import { describe, it } from "node:test";
+import assert from "node:assert/strict";
+import { mkdtempSync, writeFileSync, mkdirSync, rmSync } from "node:fs";
+import { join } from "node:path";
+import { tmpdir } from "node:os";
+import { detectScanners, SCANNER_SIGNALS } from "../scanner/detector.js";
+function makeTmpDir(): string {
+  return mkdtempSync(join(tmpdir(), "crap-detect-"));
+}
+describe("detectScanners", () => {
+  it("detects eslint when eslint.config.mjs exists", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, "eslint.config.mjs"), "export default [];");
+      const results = await detectScanners(dir);
+      const eslint = results.find((r) => r.scanner === "eslint");
+      assert.ok(eslint);
+      assert.equal(eslint.available, true);
+      assert.ok(eslint.reason.includes("eslint.config.mjs"));
+      assert.ok(eslint.configPath);
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("detects eslint from .eslintrc.json", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, ".eslintrc.json"), "{}");
+      const results = await detectScanners(dir);
+      const eslint = results.find((r) => r.scanner === "eslint");
+      assert.ok(eslint);
+      assert.equal(eslint.available, true);
+      assert.ok(eslint.reason.includes(".eslintrc.json"));
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("detects semgrep when .semgrep.yml exists", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, ".semgrep.yml"), "rules: []");
+      const results = await detectScanners(dir);
+      const semgrep = results.find((r) => r.scanner === "semgrep");
+      assert.ok(semgrep);
+      assert.equal(semgrep.available, true);
+      assert.ok(semgrep.reason.includes(".semgrep.yml"));
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("detects bandit when .bandit config exists", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, ".bandit"), "");
+      const results = await detectScanners(dir);
+      const bandit = results.find((r) => r.scanner === "bandit");
+      assert.ok(bandit);
+      assert.equal(bandit.available, true);
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("detects stryker when stryker.conf.js exists", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, "stryker.conf.js"), "module.exports = {};");
+      const results = await detectScanners(dir);
+      const stryker = results.find((r) => r.scanner === "stryker");
+      assert.ok(stryker);
+      assert.equal(stryker.available, true);
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("detects eslint from package.json devDependencies", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(
+        join(dir, "package.json"),
+        JSON.stringify({ devDependencies: { eslint: "^9.0.0" } }),
+      );
+      const results = await detectScanners(dir);
+      const eslint = results.find((r) => r.scanner === "eslint");
+      assert.ok(eslint);
+      assert.equal(eslint.available, true);
+      assert.ok(eslint.reason.includes("package.json"));
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("detects stryker from package.json @stryker-mutator/core", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(
+        join(dir, "package.json"),
+        JSON.stringify({
+          devDependencies: { "@stryker-mutator/core": "^7.0.0" },
+        }),
+      );
+      const results = await detectScanners(dir);
+      const stryker = results.find((r) => r.scanner === "stryker");
+      assert.ok(stryker);
+      assert.equal(stryker.available, true);
+      assert.ok(stryker.reason.includes("package.json"));
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("returns available:false for all scanners in an empty directory", async () => {
+    const dir = makeTmpDir();
+    try {
+      const results = await detectScanners(dir);
+      // Config and package.json probes will all fail.
+      // Binary probe results depend on the host — don't assert on those,
+      // but do assert the structure is correct.
+      assert.equal(results.length, 4);
+      for (const r of results) {
+        assert.ok(["eslint", "semgrep", "bandit", "stryker"].includes(r.scanner));
+        assert.equal(typeof r.available, "boolean");
+        assert.equal(typeof r.reason, "string");
+      }
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("handles malformed package.json gracefully", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, "package.json"), "not json at all");
+      // Should not throw — just skip the package.json probe
+      const results = await detectScanners(dir);
+      assert.equal(results.length, 4);
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("short-circuits on config file — does not need binary", async () => {
+    const dir = makeTmpDir();
+    try {
+      writeFileSync(join(dir, "eslint.config.mjs"), "export default [];");
+      const results = await detectScanners(dir);
+      const eslint = results.find((r) => r.scanner === "eslint");
+      assert.ok(eslint);
+      assert.equal(eslint.available, true);
+      // Reason mentions config file, not binary
+      assert.ok(eslint.reason.includes("config file"));
+      assert.ok(!eslint.reason.includes("binary"));
+    } finally {
+      rmSync(dir, { recursive: true, force: true });
+    }
+  });
+  it("SCANNER_SIGNALS covers all four scanners", () => {
+    assert.deepEqual(
+      Object.keys(SCANNER_SIGNALS).sort(),
+      ["bandit", "eslint", "semgrep", "stryker"],
+    );
+  });
+});

package/src/tests/scanner-runner.test.ts ADDED Viewed

@@ -0,0 +1,63 @@
+/**
+ * Unit tests for the scanner runner.
+ *
+ * These tests verify the command definitions and error handling of the
+ * runner module. Actual scanner execution is not tested here — that
+ * requires the scanner binaries to be installed.
+ *
+ * @module tests/scanner-runner.test
+ */
+import { describe, it } from "node:test";
+import assert from "node:assert/strict";
+import { getScannerCommand, type ScannerCommand } from "../scanner/runner.js";
+describe("getScannerCommand", () => {
+  it("returns correct eslint command", () => {
+    const cmd = getScannerCommand("eslint", "/tmp/project");
+    assert.equal(cmd.command, "npx");
+    assert.deepEqual(cmd.args, ["eslint", "-f", "json", "."]);
+    assert.equal(cmd.nonZeroIsNormal, true);
+    assert.equal(cmd.outputFile, undefined);
+  });
+  it("returns correct semgrep command", () => {
+    const cmd = getScannerCommand("semgrep", "/tmp/project");
+    assert.equal(cmd.command, "semgrep");
+    assert.deepEqual(cmd.args, ["--sarif", "--quiet", "."]);
+    assert.equal(cmd.nonZeroIsNormal, false);
+    assert.equal(cmd.outputFile, undefined);
+  });
+  it("returns correct bandit command", () => {
+    const cmd = getScannerCommand("bandit", "/tmp/project");
+    assert.equal(cmd.command, "bandit");
+    assert.deepEqual(cmd.args, ["-f", "json", "-r", ".", "-q"]);
+    assert.equal(cmd.nonZeroIsNormal, true);
+    assert.equal(cmd.outputFile, undefined);
+  });
+  it("returns correct stryker command with output file", () => {
+    const cmd = getScannerCommand("stryker", "/tmp/project");
+    assert.equal(cmd.command, "npx");
+    assert.deepEqual(cmd.args, ["stryker", "run"]);
+    assert.equal(cmd.nonZeroIsNormal, false);
+    assert.ok(cmd.outputFile);
+    assert.ok(cmd.outputFile.includes("mutation.json"));
+  });
+  it("all scanners have reasonable timeouts", () => {
+    for (const scanner of ["eslint", "semgrep", "bandit", "stryker"] as const) {
+      const cmd = getScannerCommand(scanner, "/tmp");
+      assert.ok(cmd.timeoutMs >= 60_000, `${scanner} timeout should be >= 60s`);
+      assert.ok(cmd.timeoutMs <= 300_000, `${scanner} timeout should be <= 300s`);
+    }
+  });
+  it("stryker has a longer timeout than other scanners", () => {
+    const stryker = getScannerCommand("stryker", "/tmp");
+    const eslint = getScannerCommand("eslint", "/tmp");
+    assert.ok(stryker.timeoutMs > eslint.timeoutMs);
+  });
+});