claude-flow-novice 1.1.9 → 1.2.1

package/.claude/commands/cli-integration.js

@@ -0,0 +1,216 @@
+#!/usr/bin/env node
+
+/**
+ * CLI Integration for Slash Commands
+ * 
+ * Integrates slash commands with the main CLI system
+ */
+
+import { globalRegistry, executeSlashCommand } from './register-all-commands.js';
+import { SlashCommand } from '../core/slash-command.js';
+
+/**
+ * CLI Slash Command Handler
+ */
+export class CliSlashHandler {
+  constructor() {
+    this.registry = globalRegistry;
+  }
+
+  /**
+   * Handle CLI input and execute slash commands
+   * @param {string[]} args - CLI arguments
+   */
+  async handleCliInput(args) {
+    if (args.length === 0) {
+      this.showHelp();
+      return;
+    }
+
+    const command = args[0];
+    
+    // Handle help commands
+    if (command === 'help' || command === '--help' || command === '-h') {
+      if (args.length > 1) {
+        this.showCommandHelp(args[1]);
+      } else {
+        this.showHelp();
+      }
+      return;
+    }
+
+    // Handle list commands
+    if (command === 'list' || command === 'ls') {
+      this.listCommands();
+      return;
+    }
+
+    // Execute slash command
+    const slashCommand = `/${command}`;
+    const slashArgs = args.slice(1);
+    const input = `${slashCommand} ${slashArgs.join(' ')}`.trim();
+
+    try {
+      const result = await executeSlashCommand(input);
+      
+      if (result.success) {
+        if (result.result && result.result.prompt) {
+          console.log(result.result.prompt);
+        } else {
+          console.log('✅ Command executed successfully');
+          if (result.result) {
+            console.log(JSON.stringify(result.result, null, 2));
+          }
+        }
+      } else {
+        console.error(`❌ ${result.error}`);
+        if (result.suggestions && result.suggestions.length > 0) {
+          console.log(`Did you mean: ${result.suggestions.join(', ')}?`);
+        }
+      }
+    } catch (error) {
+      console.error(`❌ CLI Error: ${error.message}`);
+    }
+  }
+
+  /**
+   * Show general help
+   */
+  showHelp() {
+    console.log(this.registry.generateHelpText());
+  }
+
+  /**
+   * Show help for specific command
+   * @param {string} commandName - Command name
+   */
+  showCommandHelp(commandName) {
+    const helpResult = this.registry.getHelp(commandName);
+    
+    if (helpResult.success) {
+      const help = helpResult.help;
+      console.log(`
+🚀 **${help.name.toUpperCase()} COMMAND**
+`);
+      console.log(`**Description:** ${help.description}`);
+      console.log(`**Usage:** ${help.usage}`);
+      
+      if (help.examples && help.examples.length > 0) {
+        console.log(`
+**Examples:**`);
+        help.examples.forEach(example => {
+          console.log(`  ${example}`);
+        });
+      }
+    } else {
+      console.error(`❌ ${helpResult.error}`);
+    }
+  }
+
+  /**
+   * List all available commands
+   */
+  listCommands() {
+    const commands = this.registry.listCommands();
+    
+    console.log('
+🚀 **AVAILABLE SLASH COMMANDS**
+');
+    
+    commands.forEach(cmd => {
+      console.log(`/${cmd.name} - ${cmd.description}`);
+      if (cmd.aliases.length > 0) {
+        console.log(`  Aliases: ${cmd.aliases.map(a => `/${a}`).join(', ')}`);
+      }
+    });
+    
+    console.log(`
+Total: ${commands.length} commands available`);
+  }
+}
+
+/**
+ * Interactive CLI mode
+ */
+export class InteractiveCliMode {
+  constructor() {
+    this.handler = new CliSlashHandler();
+    this.running = false;
+  }
+
+  /**
+   * Start interactive mode
+   */
+  async start() {
+    this.running = true;
+    
+    console.log('🚀 Claude-Flow Interactive Slash Command Mode');
+    console.log('Type commands without the leading "/" or "help" for assistance');
+    console.log('Type "exit" to quit\n');
+
+    // Note: In a real implementation, you would use readline or similar
+    // This is a simplified version for demonstration
+    process.stdin.setEncoding('utf8');
+    
+    process.stdin.on('readable', async () => {
+      const chunk = process.stdin.read();
+      if (chunk !== null) {
+        const input = chunk.trim();
+        
+        if (input === 'exit' || input === 'quit') {
+          this.stop();
+          return;
+        }
+        
+        if (input) {
+          const args = input.split(' ');
+          await this.handler.handleCliInput(args);
+        }
+        
+        if (this.running) {
+          process.stdout.write('claude-flow> ');
+        }
+      }
+    });
+
+    process.stdout.write('claude-flow> ');
+  }
+
+  /**
+   * Stop interactive mode
+   */
+  stop() {
+    this.running = false;
+    console.log('\n👋 Goodbye!');
+    process.exit(0);
+  }
+}
+
+/**
+ * Main CLI entry point
+ * @param {string[]} args - Command line arguments
+ */
+export async function runCliSlashCommands(args = process.argv.slice(2)) {
+  const handler = new CliSlashHandler();
+  
+  // Check for interactive mode
+  if (args.includes('--interactive') || args.includes('-i')) {
+    const interactive = new InteractiveCliMode();
+    await interactive.start();
+    return;
+  }
+  
+  // Handle standard CLI input
+  await handler.handleCliInput(args);
+}
+
+// Auto-run if this script is executed directly
+if (import.meta.url === `file://${process.argv[1]}`) {
+  runCliSlashCommands();
+}
+
+export default {
+  CliSlashHandler,
+  InteractiveCliMode,
+  runCliSlashCommands
+};

package/.claude/commands/dependency-recommendations.md

@@ -0,0 +1,171 @@
+---
+description: "Smart dependency analysis with security scanning and performance-focused updates"
+argument-hint: "[--security|--performance|--outdated|--audit|--interactive]"
+allowed-tools: ["Bash", "Read", "Grep", "mcp__claude-flow__dependency_analyze", "mcp__claude-flow__language_detect", "mcp__claude-flow__framework_detect", "mcp__claude-flow__memory_usage"]
+---
+
+# Smart Dependency Recommendations
+
+Analyze your project dependencies and provide intelligent recommendations for updates, security fixes, and performance improvements.
+
+**Analysis Type**: $ARGUMENTS
+
+## Analysis Options
+
+- `--security` - Focus on security vulnerabilities and CVE scanning
+- `--performance` - Analyze bundle size and performance impact
+- `--outdated` - Show outdated packages with safe update paths
+- `--audit` - Comprehensive security audit with risk assessment
+- `--interactive` - Interactive update wizard with explanations
+
+## What This Command Does
+
+### 🔍 Intelligent Dependency Analysis
+- **Multi-Language Support**: npm, Cargo, pip, composer, bundler
+- **Security Scanning**: CVE database integration and vulnerability detection
+- **Performance Impact**: Bundle size analysis and optimization opportunities
+- **Breaking Change Detection**: Semantic version analysis and migration guides
+- **License Compliance**: License compatibility and legal risk assessment
+
+### 🛡️ Security Analysis
+
+#### Vulnerability Scanning
+- **CVE Database**: Real-time vulnerability scanning
+- **Severity Assessment**: Critical, High, Medium, Low risk classification
+- **Exploit Availability**: Known exploits and proof-of-concept detection
+- **Patch Availability**: Available fixes and update recommendations
+
+#### Security Best Practices
+- **Minimal Dependencies**: Suggest lighter alternatives
+- **Trusted Sources**: Verify package maintainer reputation
+- **License Scanning**: Identify problematic licenses
+- **Supply Chain**: Analyze dependency chains for risks
+
+### 🚀 Performance Optimization
+
+#### Bundle Analysis
+- **Size Impact**: Before/after size comparison
+- **Tree Shaking**: Dead code elimination opportunities
+- **Alternative Packages**: Lighter alternatives with same functionality
+- **Lazy Loading**: Code splitting recommendations
+
+#### Runtime Performance
+- **Startup Time**: Dependency impact on application startup
+- **Memory Usage**: Memory footprint analysis
+- **CPU Impact**: Performance benchmarks and comparisons
+
+## Language-Specific Features
+
+### JavaScript/Node.js (npm/yarn/pnpm)
+```bash
+# Security audit with fix suggestions
+/dependency-recommendations --security
+# Output: npm audit fix, specific CVE details, manual update guides
+
+# Performance analysis
+/dependency-recommendations --performance
+# Output: Bundle analyzer results, tree-shaking opportunities
+```
+
+### Rust (Cargo)
+```bash
+# Cargo audit with vulnerability scanning
+/dependency-recommendations --audit
+# Output: cargo audit, rustsec advisory database
+
+# Outdated crates analysis
+/dependency-recommendations --outdated
+# Output: cargo outdated, semver compatibility, feature changes
+```
+
+### Python (pip/poetry/pipenv)
+```bash
+# Security scanning with safety
+/dependency-recommendations --security
+# Output: safety check, known vulnerabilities, update commands
+
+# Performance and compatibility
+/dependency-recommendations --performance
+# Output: Wheel vs source installs, Python version compatibility
+```
+
+## Sample Recommendation Output
+
+```markdown
+## 🚨 Critical Security Issues (2)
+
+### 1. lodash@4.17.15 → 4.17.21
+- **CVE-2021-23337**: Prototype pollution vulnerability
+- **Risk**: High - Remote code execution possible
+- **Fix**: `npm update lodash@^4.17.21`
+- **Breaking Changes**: None
+- **Affected Files**: src/utils/helpers.js, src/components/
+
+### 2. express@4.17.1 → 4.18.2
+- **Multiple CVEs**: Security vulnerabilities in older versions
+- **Risk**: Medium - Information disclosure
+- **Fix**: `npm install express@^4.18.2`
+- **Migration Guide**: Check middleware compatibility
+
+## 🚀 Performance Opportunities (3)
+
+### 1. moment.js → date-fns
+- **Bundle Size**: 67KB → 13KB (80% reduction)
+- **Tree Shaking**: Full support vs none
+- **Migration**: Auto-migration available
+- **Effort**: Medium (2-3 hours)
+
+### 2. lodash → Native ES6+ / lodash-es
+- **Bundle Size**: 71KB → 15KB (selective imports)
+- **Performance**: 15% faster with native methods
+- **Migration**: Gradual replacement possible
+
+## 🔄 Recommended Updates (5)
+
+### Safe Updates (No Breaking Changes)
+- react@18.2.0 → 18.2.45 (patch updates)
+- typescript@4.9.4 → 4.9.5 (bug fixes)
+- jest@29.3.1 → 29.5.0 (new features)
+
+### Major Version Updates (Review Required)
+- webpack@4.46.0 → 5.88.2
+  - **Breaking Changes**: Module federation, asset modules
+  - **Migration Guide**: https://webpack.js.org/migrate/5/
+  - **Estimated Effort**: 1-2 days
+```
+
+## Interactive Update Wizard
+
+```bash
+/dependency-recommendations --interactive
+```
+
+Provides step-by-step guidance:
+1. **Prioritization**: Security first, then performance, then features
+2. **Impact Assessment**: Explains what each update affects
+3. **Testing Strategy**: Suggests test scenarios after updates
+4. **Rollback Plan**: Provides rollback commands if issues occur
+5. **Documentation**: Updates package.json comments and documentation
+
+## Educational Features
+
+### Why Updates Matter
+- **Security**: Explains specific vulnerabilities and their impact
+- **Performance**: Shows measurable improvements with benchmarks
+- **Maintenance**: Discusses long-term maintenance benefits
+- **Ecosystem**: Explains how updates affect the broader ecosystem
+
+### Best Practices
+- **Update Strategy**: Guidance on when and how to update
+- **Testing**: Recommendations for testing after updates
+- **Monitoring**: Tools for tracking dependency health
+- **Documentation**: Keeping dependency decisions documented
+
+## Integration Features
+
+- **CI/CD Integration**: Generate update PRs with full analysis
+- **Team Notifications**: Share recommendations with team members
+- **Scheduled Analysis**: Regular dependency health checks
+- **Custom Policies**: Configure update policies and approval workflows
+
+Get intelligent, actionable dependency recommendations that balance security, performance, and stability.