npm - claude-flow-novice - Versions diffs - 2.15.2 → 2.15.3 - Mend

claude-flow-novice 2.15.2 → 2.15.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (98) hide show

package/claude-assets/hooks/cfn-BACKUP_USAGE.md CHANGED Viewed

@@ -1,243 +1,243 @@
-# Pre-Edit Backup System
-## Overview
-Automatic backup mechanism that prevents file corruption by creating timestamped backups before modifying critical infrastructure files.
-## Architecture
-### Components
-1. **pre-edit-backup.sh** - Creates backups before Edit/Write operations
-2. **restore-from-backup.sh** - Restores files from most recent backup
-3. **Redis logging** - Tracks all backup operations
-### Critical File Patterns
-Files matching these patterns are automatically backed up:
-- `orchestrate-cfn-loop.sh`
-- `invoke-waiting-mode.sh`
-- `execute-*.sh` (all skill execution scripts)
-- `agent.md` (agent definitions)
-- `SKILL.md` (skill definitions)
-## Agent Usage
-### Before Editing Critical Files
-```bash
-# Run pre-edit backup
-./.claude/hooks/pre-edit-backup.sh "$FILE_TO_EDIT" "$AGENT_ID"
-# Then proceed with Edit tool
-Edit: file_path="$FILE_TO_EDIT" old_string="..." new_string="..."
-```
-### Example Workflow
-```bash
-# Agent wants to modify orchestrator
-FILE="/mnt/c/Users/masha/Documents/claude-flow-novice/.claude/skills/redis-coordination/orchestrate-cfn-loop.sh"
-AGENT_ID="backend-dev"
-# Step 1: Create backup
-./.claude/hooks/pre-edit-backup.sh "$FILE" "$AGENT_ID"
-# Output: [Pre-Edit Backup] ✅ Backed up: orchestrate-cfn-loop.sh (1672 lines)
-# Step 2: Make changes
-Edit: file_path="$FILE" old_string="old code" new_string="new code"
-# Step 3: Validate with post-edit hook
-./.claude/hooks/invoke-post-edit.sh "$FILE" "$AGENT_ID"
-```
-## Backup Management
-### Automatic Cleanup
-- System keeps **only the 5 most recent backups** per file
-- Older backups are automatically deleted
-- Manual backups (*.backup-phase1, etc.) are preserved
-### Backup Naming Convention
-```
-original-file.sh.backup-<timestamp>
-Example:
-orchestrate-cfn-loop.sh.backup-1761167675
-```
-### Restore from Backup
-```bash
-# Restore most recent backup
-./.claude/hooks/restore-from-backup.sh /path/to/corrupted-file.sh
-# Output:
-# Restoring /path/to/corrupted-file.sh from /path/to/corrupted-file.sh.backup-1761167675
-# ✅ Restored 1672 lines
-```
-## Verification
-### Check Backup Integrity
-```bash
-# List all backups for a file
-ls -lht /path/to/file.sh*
-# Compare backup with original
-diff /path/to/file.sh /path/to/file.sh.backup-<timestamp>
-```
-### Redis Audit Log
-```bash
-# View recent backup operations
-redis-cli LRANGE backup:log 0 10
-# Example output:
-# {"timestamp":1761167675,"file":"orchestrate-cfn-loop.sh","agent":"backend-dev","lines":1672}
-```
-## Safety Features
-1. **Pattern Matching**: Only critical files are backed up (reduces storage)
-2. **Verification**: Backup line count must match original
-3. **Atomic Operations**: Backup creation is verified before proceeding
-4. **Pre-Restore Backup**: Restore creates snapshot of current state before overwriting
-5. **Audit Trail**: All operations logged to Redis
-## Error Handling
-### Non-Critical Files
-```bash
-./.claude/hooks/pre-edit-backup.sh /tmp/random-file.txt test-agent
-# Output: [Pre-Edit Backup] Not a critical file: /tmp/random-file.txt
-# Exit code: 0 (success, but no backup needed)
-```
-### Non-Existent Files
-```bash
-./.claude/hooks/pre-edit-backup.sh /tmp/new-file.sh test-agent
-# Output: [Pre-Edit Backup] File doesn't exist yet: /tmp/new-file.sh
-# Exit code: 0 (success, backup will occur on next edit)
-```
-### Backup Verification Failure
-```bash
-# If backup size doesn't match original
-# Output: [Pre-Edit Backup] ❌ Backup verification failed
-# Exit code: 1 (failure, edit should be aborted)
-```
-## Best Practices
-### For Agents
-1. **Always backup before editing** critical infrastructure files
-2. **Check exit code** - non-zero means backup failed
-3. **Don't skip backups** even if "just a small change"
-4. **Report confidence** after successful edit + backup
-### For Coordinators
-1. **Include backup step** in agent spawning instructions
-2. **Verify backup success** before proceeding with edits
-3. **Use restore script** if agent corrupts critical file
-### For Testing
-1. **Test on /tmp files** before modifying production infrastructure
-2. **Verify restore works** before attempting risky edits
-3. **Check Redis logs** to confirm backup was recorded
-## Integration with Post-Edit Hook
-The pre-edit backup is **independent** from post-edit validation:
-```bash
-# Full edit workflow
-./.claude/hooks/pre-edit-backup.sh "$FILE" "$AGENT_ID"  # BEFORE edit
-Edit: file_path="$FILE" ...                              # EDIT
-./.claude/hooks/invoke-post-edit.sh "$FILE" "$AGENT_ID" # AFTER edit
-```
-**Why separate?**
-- Pre-edit: Prevents data loss
-- Post-edit: Validates correctness
-- Both are required for critical files
-## Recovery Scenarios
-### Scenario 1: Agent Corrupts File
-```bash
-# Detect corruption
-wc -l orchestrate-cfn-loop.sh
-# Output: 79 orchestrate-cfn-loop.sh (was 1672!)
-# Restore immediately
-./.claude/hooks/restore-from-backup.sh orchestrate-cfn-loop.sh
-# Output: ✅ Restored 1672 lines
-```
-### Scenario 2: Multiple Edits, Need Earlier Version
-```bash
-# List all backups
-ls -lht orchestrate-cfn-loop.sh.backup-*
-# Manually restore specific version
-cp orchestrate-cfn-loop.sh.backup-1761167675 orchestrate-cfn-loop.sh
-```
-### Scenario 3: Accidental Deletion
-```bash
-# File was deleted, restore from backup
-./.claude/hooks/restore-from-backup.sh /path/to/deleted-file.sh
-# Backup still exists, file is restored
-```
-## Monitoring
-### Track Backup Activity
-```bash
-# Recent backup count
-redis-cli LLEN backup:log
-# Backups in last hour
-redis-cli LRANGE backup:log 0 -1 | jq -r 'select(.timestamp > (now - 3600))'
-# Files backed up most frequently
-redis-cli LRANGE backup:log 0 -1 | jq -r '.file' | sort | uniq -c | sort -rn
-```
-### Storage Management
-```bash
-# Total backup size for a file
-du -sh /path/to/file.sh.backup-*
-# Cleanup all backups (emergency)
-rm /path/to/file.sh.backup-*
-```
-## Testing Validation
-Comprehensive test coverage ensures reliability:
-1. **Backup Creation**: Verify timestamped backup is created
-2. **Line Count Matching**: Backup must match original exactly
-3. **Critical Pattern Detection**: Only critical files backed up
-4. **Non-Critical Skipping**: Non-critical files ignored
-5. **Restoration Accuracy**: Restore recreates original perfectly
-6. **Redis Logging**: All operations recorded
-7. **Cleanup Mechanism**: Old backups deleted (keeps 5)
-All tests passing with 100% success rate.
-## Confidence Score: 0.95
-**Implementation Complete:**
-- ✅ Automatic pre-edit backup for critical files
-- ✅ Timestamped backup naming convention
-- ✅ Line count verification
-- ✅ Automatic cleanup (keep 5 most recent)
-- ✅ Redis audit logging
-- ✅ Restoration mechanism
-- ✅ Pattern-based critical file detection
-- ✅ Comprehensive testing validation
-- ✅ Integration ready for agent workflows
-**Validated by:**
-- Test backups on /tmp/test-orchestrate-cfn-loop.sh
-- Real backup of orchestrate-cfn-loop.sh (1672 lines)
-- Successful restoration test
-- Redis logging verification
-- Non-critical file skip behavior
+# Pre-Edit Backup System
+## Overview
+Automatic backup mechanism that prevents file corruption by creating timestamped backups before modifying critical infrastructure files.
+## Architecture
+### Components
+1. **pre-edit-backup.sh** - Creates backups before Edit/Write operations
+2. **restore-from-backup.sh** - Restores files from most recent backup
+3. **Redis logging** - Tracks all backup operations
+### Critical File Patterns
+Files matching these patterns are automatically backed up:
+- `orchestrate-cfn-loop.sh`
+- `invoke-waiting-mode.sh`
+- `execute-*.sh` (all skill execution scripts)
+- `agent.md` (agent definitions)
+- `SKILL.md` (skill definitions)
+## Agent Usage
+### Before Editing Critical Files
+```bash
+# Run pre-edit backup
+./.claude/hooks/pre-edit-backup.sh "$FILE_TO_EDIT" "$AGENT_ID"
+# Then proceed with Edit tool
+Edit: file_path="$FILE_TO_EDIT" old_string="..." new_string="..."
+```
+### Example Workflow
+```bash
+# Agent wants to modify orchestrator
+FILE="/mnt/c/Users/masha/Documents/claude-flow-novice/.claude/skills/redis-coordination/orchestrate-cfn-loop.sh"
+AGENT_ID="backend-dev"
+# Step 1: Create backup
+./.claude/hooks/pre-edit-backup.sh "$FILE" "$AGENT_ID"
+# Output: [Pre-Edit Backup] ✅ Backed up: orchestrate-cfn-loop.sh (1672 lines)
+# Step 2: Make changes
+Edit: file_path="$FILE" old_string="old code" new_string="new code"
+# Step 3: Validate with post-edit hook
+./.claude/hooks/invoke-post-edit.sh "$FILE" "$AGENT_ID"
+```
+## Backup Management
+### Automatic Cleanup
+- System keeps **only the 5 most recent backups** per file
+- Older backups are automatically deleted
+- Manual backups (*.backup-phase1, etc.) are preserved
+### Backup Naming Convention
+```
+original-file.sh.backup-<timestamp>
+Example:
+orchestrate-cfn-loop.sh.backup-1761167675
+```
+### Restore from Backup
+```bash
+# Restore most recent backup
+./.claude/hooks/restore-from-backup.sh /path/to/corrupted-file.sh
+# Output:
+# Restoring /path/to/corrupted-file.sh from /path/to/corrupted-file.sh.backup-1761167675
+# ✅ Restored 1672 lines
+```
+## Verification
+### Check Backup Integrity
+```bash
+# List all backups for a file
+ls -lht /path/to/file.sh*
+# Compare backup with original
+diff /path/to/file.sh /path/to/file.sh.backup-<timestamp>
+```
+### Redis Audit Log
+```bash
+# View recent backup operations
+redis-cli LRANGE backup:log 0 10
+# Example output:
+# {"timestamp":1761167675,"file":"orchestrate-cfn-loop.sh","agent":"backend-dev","lines":1672}
+```
+## Safety Features
+1. **Pattern Matching**: Only critical files are backed up (reduces storage)
+2. **Verification**: Backup line count must match original
+3. **Atomic Operations**: Backup creation is verified before proceeding
+4. **Pre-Restore Backup**: Restore creates snapshot of current state before overwriting
+5. **Audit Trail**: All operations logged to Redis
+## Error Handling
+### Non-Critical Files
+```bash
+./.claude/hooks/pre-edit-backup.sh /tmp/random-file.txt test-agent
+# Output: [Pre-Edit Backup] Not a critical file: /tmp/random-file.txt
+# Exit code: 0 (success, but no backup needed)
+```
+### Non-Existent Files
+```bash
+./.claude/hooks/pre-edit-backup.sh /tmp/new-file.sh test-agent
+# Output: [Pre-Edit Backup] File doesn't exist yet: /tmp/new-file.sh
+# Exit code: 0 (success, backup will occur on next edit)
+```
+### Backup Verification Failure
+```bash
+# If backup size doesn't match original
+# Output: [Pre-Edit Backup] ❌ Backup verification failed
+# Exit code: 1 (failure, edit should be aborted)
+```
+## Best Practices
+### For Agents
+1. **Always backup before editing** critical infrastructure files
+2. **Check exit code** - non-zero means backup failed
+3. **Don't skip backups** even if "just a small change"
+4. **Report confidence** after successful edit + backup
+### For Coordinators
+1. **Include backup step** in agent spawning instructions
+2. **Verify backup success** before proceeding with edits
+3. **Use restore script** if agent corrupts critical file
+### For Testing
+1. **Test on /tmp files** before modifying production infrastructure
+2. **Verify restore works** before attempting risky edits
+3. **Check Redis logs** to confirm backup was recorded
+## Integration with Post-Edit Hook
+The pre-edit backup is **independent** from post-edit validation:
+```bash
+# Full edit workflow
+./.claude/hooks/pre-edit-backup.sh "$FILE" "$AGENT_ID"  # BEFORE edit
+Edit: file_path="$FILE" ...                              # EDIT
+./.claude/hooks/invoke-post-edit.sh "$FILE" "$AGENT_ID" # AFTER edit
+```
+**Why separate?**
+- Pre-edit: Prevents data loss
+- Post-edit: Validates correctness
+- Both are required for critical files
+## Recovery Scenarios
+### Scenario 1: Agent Corrupts File
+```bash
+# Detect corruption
+wc -l orchestrate-cfn-loop.sh
+# Output: 79 orchestrate-cfn-loop.sh (was 1672!)
+# Restore immediately
+./.claude/hooks/restore-from-backup.sh orchestrate-cfn-loop.sh
+# Output: ✅ Restored 1672 lines
+```
+### Scenario 2: Multiple Edits, Need Earlier Version
+```bash
+# List all backups
+ls -lht orchestrate-cfn-loop.sh.backup-*
+# Manually restore specific version
+cp orchestrate-cfn-loop.sh.backup-1761167675 orchestrate-cfn-loop.sh
+```
+### Scenario 3: Accidental Deletion
+```bash
+# File was deleted, restore from backup
+./.claude/hooks/restore-from-backup.sh /path/to/deleted-file.sh
+# Backup still exists, file is restored
+```
+## Monitoring
+### Track Backup Activity
+```bash
+# Recent backup count
+redis-cli LLEN backup:log
+# Backups in last hour
+redis-cli LRANGE backup:log 0 -1 | jq -r 'select(.timestamp > (now - 3600))'
+# Files backed up most frequently
+redis-cli LRANGE backup:log 0 -1 | jq -r '.file' | sort | uniq -c | sort -rn
+```
+### Storage Management
+```bash
+# Total backup size for a file
+du -sh /path/to/file.sh.backup-*
+# Cleanup all backups (emergency)
+rm /path/to/file.sh.backup-*
+```
+## Testing Validation
+Comprehensive test coverage ensures reliability:
+1. **Backup Creation**: Verify timestamped backup is created
+2. **Line Count Matching**: Backup must match original exactly
+3. **Critical Pattern Detection**: Only critical files backed up
+4. **Non-Critical Skipping**: Non-critical files ignored
+5. **Restoration Accuracy**: Restore recreates original perfectly
+6. **Redis Logging**: All operations recorded
+7. **Cleanup Mechanism**: Old backups deleted (keeps 5)
+All tests passing with 100% success rate.
+## Confidence Score: 0.95
+**Implementation Complete:**
+- ✅ Automatic pre-edit backup for critical files
+- ✅ Timestamped backup naming convention
+- ✅ Line count verification
+- ✅ Automatic cleanup (keep 5 most recent)
+- ✅ Redis audit logging
+- ✅ Restoration mechanism
+- ✅ Pattern-based critical file detection
+- ✅ Comprehensive testing validation
+- ✅ Integration ready for agent workflows
+**Validated by:**
+- Test backups on /tmp/test-orchestrate-cfn-loop.sh
+- Real backup of orchestrate-cfn-loop.sh (1672 lines)
+- Successful restoration test
+- Redis logging verification
+- Non-critical file skip behavior

package/claude-assets/hooks/cfn-invoke-security-validation.sh CHANGED Viewed

@@ -1,70 +1,70 @@
-#!/bin/bash
-# Security Validation Hook for Docker Hybrid Routing
-set -euo pipefail
-# Validate secret management configurations
-validate_secret_management() {
-    local file_path="$1"
-    # Check for hardcoded secrets
-    if grep -qE '(sk-ant-|token-|api_key=)' "$file_path"; then
-        echo "❌ SECURITY RISK: Potential secret exposure in $file_path"
-        return 1
-    fi
-    # Check for proper environment variable naming
-    if grep -qE 'API_KEY=|SECRET=|TOKEN=' "$file_path"; then
-        echo "⚠️ NAMING RISK: Inconsistent secret variable names in $file_path"
-        return 2
-    fi
-    return 0
-}
-# Validate Docker network configurations
-validate_docker_network() {
-    local compose_file="$1"
-    # Check for overly permissive network configurations
-    if ! grep -qE 'driver_opts:\n\s*encrypted:\s*"true"' "$compose_file"; then
-        echo "❌ NETWORK RISK: Network encryption not enabled"
-        return 1
-    fi
-    if ! grep -qE 'driver:\s*overlay' "$compose_file"; then
-        echo "⚠️ NETWORK CONFIG: Recommended to use overlay network for better isolation"
-        return 2
-    fi
-    return 0
-}
-# Main validation function
-main() {
-    local file_path="$1"
-    local file_name=$(basename "$file_path")
-    local exit_code=0
-    echo "🔒 Running security validation for $file_name"
-    case "$file_name" in
-        docker-compose.yml|docker-compose.*.yml)
-            validate_docker_network "$file_path" || exit_code=$?
-            ;;
-        .env|*.env)
-            validate_secret_management "$file_path" || exit_code=$?
-            ;;
-    esac
-    if [ $exit_code -eq 0 ]; then
-        echo "✅ Security validation passed for $file_name"
-    else
-        echo "🚨 Security validation failed for $file_name (Error code: $exit_code)"
-    fi
-    return $exit_code
-}
-# Execute main validation
+#!/bin/bash
+# Security Validation Hook for Docker Hybrid Routing
+set -euo pipefail
+# Validate secret management configurations
+validate_secret_management() {
+    local file_path="$1"
+    # Check for hardcoded secrets
+    if grep -qE '(sk-ant-|token-|api_key=)' "$file_path"; then
+        echo "❌ SECURITY RISK: Potential secret exposure in $file_path"
+        return 1
+    fi
+    # Check for proper environment variable naming
+    if grep -qE 'API_KEY=|SECRET=|TOKEN=' "$file_path"; then
+        echo "⚠️ NAMING RISK: Inconsistent secret variable names in $file_path"
+        return 2
+    fi
+    return 0
+}
+# Validate Docker network configurations
+validate_docker_network() {
+    local compose_file="$1"
+    # Check for overly permissive network configurations
+    if ! grep -qE 'driver_opts:\n\s*encrypted:\s*"true"' "$compose_file"; then
+        echo "❌ NETWORK RISK: Network encryption not enabled"
+        return 1
+    fi
+    if ! grep -qE 'driver:\s*overlay' "$compose_file"; then
+        echo "⚠️ NETWORK CONFIG: Recommended to use overlay network for better isolation"
+        return 2
+    fi
+    return 0
+}
+# Main validation function
+main() {
+    local file_path="$1"
+    local file_name=$(basename "$file_path")
+    local exit_code=0
+    echo "🔒 Running security validation for $file_name"
+    case "$file_name" in
+        docker-compose.yml|docker-compose.*.yml)
+            validate_docker_network "$file_path" || exit_code=$?
+            ;;
+        .env|*.env)
+            validate_secret_management "$file_path" || exit_code=$?
+            ;;
+    esac
+    if [ $exit_code -eq 0 ]; then
+        echo "✅ Security validation passed for $file_name"
+    else
+        echo "🚨 Security validation failed for $file_name (Error code: $exit_code)"
+    fi
+    return $exit_code
+}
+# Execute main validation
 main "$@"