codeprobe 0.1.0

package/dist/commands/security.js

@@ -0,0 +1,211 @@
+/**
+ * `codeprobe security [path]` — Security checks on prompt specs
+ * and configuration files.
+ *
+ * Detects potential prompt injection patterns, leaked secrets,
+ * and unsafe configurations.
+ */
+import { resolve } from 'node:path';
+import { resolvePath } from '../utils/paths.js';
+import { readTextFile, isDirectory, fileExists, getRelativePath as getRelPath } from '../utils/fs.js';
+import { setLogLevel } from '../utils/logger.js';
+/** Security check patterns. */
+const SECURITY_RULES = [
+    {
+        id: 'injection-ignore',
+        pattern: /ignore\s+(previous|above|all)\s+(instructions?|prompts?|rules?)/i,
+        severity: 'critical',
+        message: 'Potential prompt injection: instruction override pattern detected',
+    },
+    {
+        id: 'injection-pretend',
+        pattern: /pretend\s+(you\s+are|to\s+be|that)/i,
+        severity: 'high',
+        message: 'Potential prompt injection: persona override pattern detected',
+    },
+    {
+        id: 'injection-system-override',
+        pattern: /system\s*:\s*you\s+are\s+now/i,
+        severity: 'critical',
+        message: 'Potential system prompt override detected',
+    },
+    {
+        id: 'leaked-api-key',
+        pattern: /(?:api[_-]?key|apikey)\s*[:=]\s*['"][A-Za-z0-9_\-]{20,}/i,
+        severity: 'critical',
+        message: 'Potential API key detected in prompt spec',
+    },
+    {
+        id: 'leaked-secret',
+        pattern: /(?:secret|password|token|credential)\s*[:=]\s*['"][^'"]{8,}/i,
+        severity: 'critical',
+        message: 'Potential secret or credential detected',
+    },
+    {
+        id: 'leaked-env-var',
+        pattern: /(?:sk-|pk_|rk_|ghp_|gho_|github_pat_)[A-Za-z0-9_\-]{20,}/,
+        severity: 'critical',
+        message: 'Potential service token (Stripe, GitHub, etc.) detected',
+    },
+    {
+        id: 'unsafe-eval',
+        pattern: /eval\s*\(|exec\s*\(|Function\s*\(/,
+        severity: 'high',
+        message: 'Dynamic code execution detected — potential security risk',
+    },
+    {
+        id: 'url-in-prompt',
+        pattern: /https?:\/\/[^\s'"]+/,
+        severity: 'low',
+        message: 'URL found in prompt — verify it is intentional and safe',
+    },
+    {
+        id: 'pii-email',
+        pattern: /[a-zA-Z0-9._%+-]+@[a-zA-Z0-9.-]+\.[a-zA-Z]{2,}/,
+        severity: 'medium',
+        message: 'Email address found — may contain PII',
+    },
+    {
+        id: 'excessive-permissions',
+        pattern: /\b(sudo|root|admin|superuser)\b.*\b(access|permission|privilege)/i,
+        severity: 'medium',
+        message: 'Reference to elevated permissions detected',
+    },
+    {
+        id: 'data-exfiltration',
+        pattern: /send\s+(to|data|all|everything)\s+(to\s+)?https?:\/\//i,
+        severity: 'high',
+        message: 'Potential data exfiltration pattern detected',
+    },
+];
+/**
+ * Scan a file for security issues.
+ */
+function scanFileContent(content, filePath) {
+    const findings = [];
+    const lines = content.split('\n');
+    for (let lineIdx = 0; lineIdx < lines.length; lineIdx++) {
+        const line = lines[lineIdx];
+        for (const rule of SECURITY_RULES) {
+            if (rule.pattern.test(line)) {
+                // Extract a snippet (trim to 100 chars)
+                const snippet = line.trim().length > 100
+                    ? line.trim().slice(0, 97) + '...'
+                    : line.trim();
+                findings.push({
+                    file: filePath,
+                    rule: rule.id,
+                    severity: rule.severity,
+                    message: rule.message,
+                    line: lineIdx + 1,
+                    snippet,
+                });
+            }
+        }
+    }
+    return findings;
+}
+/**
+ * Run security scanning on prompt specs.
+ */
+async function securityScanner(targetPath) {
+    const { glob } = await import('glob');
+    const findings = [];
+    let files;
+    if (await fileExists(targetPath)) {
+        files = [targetPath];
+    }
+    else if (await isDirectory(targetPath)) {
+        files = await glob(resolve(targetPath, '**/*.{yaml,yml,json,md}'), {
+            absolute: true,
+            ignore: ['**/node_modules/**', '**/.git/**'],
+        });
+    }
+    else {
+        throw new Error(`Path not found: ${targetPath}`);
+    }
+    for (const file of files) {
+        const content = await readTextFile(file);
+        if (!content)
+            continue;
+        const relPath = getRelPath(process.cwd(), file);
+        const fileFindings = scanFileContent(content, relPath);
+        findings.push(...fileFindings);
+    }
+    // Sort by severity
+    const severityOrder = {
+        critical: 0,
+        high: 1,
+        medium: 2,
+        low: 3,
+    };
+    findings.sort((a, b) => severityOrder[a.severity] - severityOrder[b.severity]);
+    return findings;
+}
+export function registerSecurityCommand(program) {
+    program
+        .command('security [path]')
+        .description('Security checks — detect injection patterns, leaked secrets, unsafe configs')
+        .option('--json', 'Output findings as JSON')
+        .option('--output <file>', 'Write JSON results to a file')
+        .action(async (pathArg, options) => {
+        if (options.json || options.output) {
+            setLogLevel('silent');
+        }
+        const chalk = (await import('chalk')).default;
+        const targetPath = resolvePath(pathArg ?? 'prompts');
+        const findings = await securityScanner(targetPath);
+        if (options.output) {
+            const { writeFile } = await import('node:fs/promises');
+            await writeFile(resolvePath(options.output), JSON.stringify(findings, null, 2));
+            console.log(`Results written to ${options.output}`);
+            return;
+        }
+        if (options.json) {
+            console.log(JSON.stringify(findings, null, 2));
+            return;
+        }
+        if (findings.length === 0) {
+            console.log(chalk.green('\nNo security issues found.\n'));
+            return;
+        }
+        const severityColor = {
+            critical: chalk.bgRed.white,
+            high: chalk.red,
+            medium: chalk.yellow,
+            low: chalk.blue,
+        };
+        console.log(chalk.bold(`\nSecurity Findings (${findings.length})`));
+        console.log('');
+        // Group by file
+        const grouped = new Map();
+        for (const f of findings) {
+            const list = grouped.get(f.file) ?? [];
+            list.push(f);
+            grouped.set(f.file, list);
+        }
+        for (const [file, fileFindings] of grouped) {
+            console.log(chalk.bold(`  ${file}`));
+            for (const finding of fileFindings) {
+                const sevLabel = severityColor[finding.severity](` ${finding.severity.toUpperCase()} `);
+                const lineStr = finding.line ? `:${finding.line}` : '';
+                console.log(`    ${sevLabel}  ${finding.rule}${lineStr}`);
+                console.log(`           ${finding.message}`);
+                if (finding.snippet) {
+                    console.log(chalk.dim(`           ${finding.snippet}`));
+                }
+            }
+            console.log('');
+        }
+        // Summary
+        const critCount = findings.filter((f) => f.severity === 'critical').length;
+        const highCount = findings.filter((f) => f.severity === 'high').length;
+        const medCount = findings.filter((f) => f.severity === 'medium').length;
+        const lowCount = findings.filter((f) => f.severity === 'low').length;
+        console.log(chalk.dim(`  ${critCount} critical, ${highCount} high, ${medCount} medium, ${lowCount} low\n`));
+        if (critCount > 0 || highCount > 0) {
+            process.exitCode = 1;
+        }
+    });
+}
+//# sourceMappingURL=security.js.map

package/dist/commands/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../../src/commands/security.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAGH,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,UAAU,EAAE,eAAe,IAAI,UAAU,EAAE,MAAM,gBAAgB,CAAC;AACtG,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAGjD,+BAA+B;AAC/B,MAAM,cAAc,GAKf;IACH;QACE,EAAE,EAAE,kBAAkB;QACtB,OAAO,EAAE,kEAAkE;QAC3E,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,mEAAmE;KAC7E;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,OAAO,EAAE,qCAAqC;QAC9C,QAAQ,EAAE,MAAM;QAChB,OAAO,EAAE,+DAA+D;KACzE;IACD;QACE,EAAE,EAAE,2BAA2B;QAC/B,OAAO,EAAE,+BAA+B;QACxC,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,2CAA2C;KACrD;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,OAAO,EAAE,0DAA0D;QACnE,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,2CAA2C;KACrD;IACD;QACE,EAAE,EAAE,eAAe;QACnB,OAAO,EAAE,8DAA8D;QACvE,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,yCAAyC;KACnD;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,OAAO,EAAE,0DAA0D;QACnE,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,yDAAyD;KACnE;IACD;QACE,EAAE,EAAE,aAAa;QACjB,OAAO,EAAE,mCAAmC;QAC5C,QAAQ,EAAE,MAAM;QAChB,OAAO,EAAE,2DAA2D;KACrE;IACD;QACE,EAAE,EAAE,eAAe;QACnB,OAAO,EAAE,qBAAqB;QAC9B,QAAQ,EAAE,KAAK;QACf,OAAO,EAAE,yDAAyD;KACnE;IACD;QACE,EAAE,EAAE,WAAW;QACf,OAAO,EAAE,gDAAgD;QACzD,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,uCAAuC;KACjD;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,OAAO,EAAE,mEAAmE;QAC5E,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,4CAA4C;KACtD;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,OAAO,EAAE,wDAAwD;QACjE,QAAQ,EAAE,MAAM;QAChB,OAAO,EAAE,8CAA8C;KACxD;CACF,CAAC;AAEF;;GAEG;AACH,SAAS,eAAe,CACtB,OAAe,EACf,QAAgB;IAEhB,MAAM,QAAQ,GAAsB,EAAE,CAAC;IACvC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,KAAK,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,CAAC;QACxD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAE,CAAC;QAE7B,KAAK,MAAM,IAAI,IAAI,cAAc,EAAE,CAAC;YAClC,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC5B,wCAAwC;gBACxC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,GAAG;oBACtC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK;oBAClC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;gBAEhB,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,IAAI,CAAC,EAAE;oBACb,QAAQ,EAAE,IAAI,CAAC,QAAQ;oBACvB,OAAO,EAAE,IAAI,CAAC,OAAO;oBACrB,IAAI,EAAE,OAAO,GAAG,CAAC;oBACjB,OAAO;iBACR,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,eAAe,CAAC,UAAkB;IAC/C,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,CAAC;IACtC,MAAM,QAAQ,GAAsB,EAAE,CAAC;IAEvC,IAAI,KAAe,CAAC;IAEpB,IAAI,MAAM,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACjC,KAAK,GAAG,CAAC,UAAU,CAAC,CAAC;IACvB,CAAC;SAAM,IAAI,MAAM,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;QACzC,KAAK,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,yBAAyB,CAAC,EAAE;YACjE,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,CAAC,oBAAoB,EAAE,YAAY,CAAC;SAC7C,CAAC,CAAC;IACL,CAAC;SAAM,CAAC;QACN,MAAM,IAAI,KAAK,CAAC,mBAAmB,UAAU,EAAE,CAAC,CAAC;IACnD,CAAC;IAED,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,OAAO,GAAG,MAAM,YAAY,CAAC,IAAI,CAAC,CAAC;QACzC,IAAI,CAAC,OAAO;YAAE,SAAS;QAEvB,MAAM,OAAO,GAAG,UAAU,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,IAAI,CAAC,CAAC;QAChD,MAAM,YAAY,GAAG,eAAe,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QACvD,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;IACjC,CAAC;IAED,mBAAmB;IACnB,MAAM,aAAa,GAAgD;QACjE,QAAQ,EAAE,CAAC;QACX,IAAI,EAAE,CAAC;QACP,MAAM,EAAE,CAAC;QACT,GAAG,EAAE,CAAC;KACP,CAAC;IACF,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;IAE/E,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,OAAgB;IACtD,OAAO;SACJ,OAAO,CAAC,iBAAiB,CAAC;SAC1B,WAAW,CAAC,6EAA6E,CAAC;SAC1F,MAAM,CAAC,QAAQ,EAAE,yBAAyB,CAAC;SAC3C,MAAM,CAAC,iBAAiB,EAAE,8BAA8B,CAAC;SACzD,MAAM,CAAC,KAAK,EACX,OAA2B,EAC3B,OAA4C,EAC5C,EAAE;QACF,IAAI,OAAO,CAAC,IAAI,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YACnC,WAAW,CAAC,QAAQ,CAAC,CAAC;QACxB,CAAC;QAED,MAAM,KAAK,GAAG,CAAC,MAAM,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAC9C,MAAM,UAAU,GAAG,WAAW,CAAC,OAAO,IAAI,SAAS,CAAC,CAAC;QAErD,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,UAAU,CAAC,CAAC;QAEnD,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YACnB,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,kBAAkB,CAAC,CAAC;YACvD,MAAM,SAAS,CAAC,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAChF,OAAO,CAAC,GAAG,CAAC,sBAAsB,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YACpD,OAAO;QACT,CAAC;QAED,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC/C,OAAO;QACT,CAAC;QAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,+BAA+B,CAAC,CAAC,CAAC;YAC1D,OAAO;QACT,CAAC;QAED,MAAM,aAAa,GAA+D;YAChF,QAAQ,EAAE,KAAK,CAAC,KAAK,CAAC,KAAK;YAC3B,IAAI,EAAE,KAAK,CAAC,GAAG;YACf,MAAM,EAAE,KAAK,CAAC,MAAM;YACpB,GAAG,EAAE,KAAK,CAAC,IAAI;SAChB,CAAC;QAEF,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,wBAAwB,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QACpE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEhB,gBAAgB;QAChB,MAAM,OAAO,GAAG,IAAI,GAAG,EAA6B,CAAC;QACrD,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;YACzB,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YACvC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YACb,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QAC5B,CAAC;QAED,KAAK,MAAM,CAAC,IAAI,EAAE,YAAY,CAAC,IAAI,OAAO,EAAE,CAAC;YAC3C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC;YACrC,KAAK,MAAM,OAAO,IAAI,YAAY,EAAE,CAAC;gBACnC,MAAM,QAAQ,GAAG,aAAa,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;gBACxF,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;gBACvD,OAAO,CAAC,GAAG,CAAC,OAAO,QAAQ,KAAK,OAAO,CAAC,IAAI,GAAG,OAAO,EAAE,CAAC,CAAC;gBAC1D,OAAO,CAAC,GAAG,CAAC,cAAc,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;gBAC7C,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;oBACpB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;gBAC1D,CAAC;YACH,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QAED,UAAU;QACV,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC3E,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QACvE,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACxE,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;QAErE,OAAO,CAAC,GAAG,CACT,KAAK,CAAC,GAAG,CAAC,KAAK,SAAS,cAAc,SAAS,UAAU,QAAQ,YAAY,QAAQ,QAAQ,CAAC,CAC/F,CAAC;QAEF,IAAI,SAAS,GAAG,CAAC,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;YACnC,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;QACvB,CAAC;IACH,CAAC,CAAC,CAAC;AACP,CAAC"}

package/dist/commands/simulate.d.ts

@@ -0,0 +1,7 @@
+/**
+ * `codeprobe simulate [path]` — Simulate context fit against
+ * target context windows.
+ */
+import { Command } from 'commander';
+export declare function registerSimulateCommand(program: Command): void;
+//# sourceMappingURL=simulate.d.ts.map

package/dist/commands/simulate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"simulate.d.ts","sourceRoot":"","sources":["../../src/commands/simulate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAyFpC,wBAAgB,uBAAuB,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI,CAkF9D"}

package/dist/commands/simulate.js

@@ -0,0 +1,149 @@
+/**
+ * `codeprobe simulate [path]` — Simulate context fit against
+ * target context windows.
+ */
+import { resolvePath } from '../utils/paths.js';
+import { walkDirectory } from '../utils/fs.js';
+import { estimateTokens } from '../tokenizers/claudeTokenizer.js';
+import { readFile, stat } from 'node:fs/promises';
+import { formatTokens, formatPercentage } from '../utils/output.js';
+import { setLogLevel } from '../utils/logger.js';
+import { getModel } from '../core/modelRegistry.js';
+const DEFAULT_IGNORE_DIRS = new Set([
+    'node_modules', '.git', 'dist', 'build', 'coverage',
+    '.next', '.nuxt', '__pycache__', '.venv', 'vendor',
+    '.cache', '.turbo',
+]);
+const TARGETS = [
+    { size: 200_000, label: '200k' },
+    { size: 1_000_000, label: '1M' },
+];
+/**
+ * Run a repository simulation.
+ */
+async function repositorySimulator(rootPath, targetFilter, customTargets) {
+    const entries = await walkDirectory(rootPath, { ignoreDirs: DEFAULT_IGNORE_DIRS });
+    const fileEntries = entries.filter((e) => e.isFile && e.size < 1_000_000);
+    let totalTokens = 0;
+    for (const entry of fileEntries) {
+        try {
+            const content = await readFile(entry.path, 'utf-8');
+            totalTokens += estimateTokens(content);
+        }
+        catch {
+            // Skip unreadable files
+        }
+    }
+    // Use custom targets (from --model) if provided, otherwise default targets
+    const baseTargets = customTargets ?? TARGETS;
+    const activeTargets = targetFilter
+        ? baseTargets.filter((t) => t.label.toLowerCase() === targetFilter.toLowerCase())
+        : baseTargets;
+    if (activeTargets.length === 0) {
+        throw new Error(`Unknown target: ${targetFilter}. Use "200k" or "1m".`);
+    }
+    // Reserve ~20% for system prompt, tool defs, etc.
+    const reserveRatio = 0.2;
+    const targets = activeTargets.map((t) => {
+        const reservedBudget = Math.floor(t.size * reserveRatio);
+        const available = t.size - reservedBudget;
+        return {
+            windowSize: t.size,
+            windowLabel: t.label,
+            fits: totalTokens <= available,
+            utilization: available > 0 ? totalTokens / available : 0,
+            headroom: available - totalTokens,
+            reservedBudget,
+        };
+    });
+    const recommendations = [];
+    if (totalTokens > 200_000) {
+        recommendations.push('Consider using `codeprobe pack` to build an optimized context plan.');
+    }
+    if (totalTokens > 1_000_000) {
+        recommendations.push('Repository exceeds 1M tokens. Focus on core files and use summaries for large docs.');
+    }
+    if (totalTokens < 50_000) {
+        recommendations.push('Repository fits comfortably. You can include the full codebase as context.');
+    }
+    return {
+        rootPath,
+        totalTokens,
+        targets,
+        recommendations,
+    };
+}
+export function registerSimulateCommand(program) {
+    program
+        .command('simulate [path]')
+        .description('Simulate context fit — estimate whether repo fits in target context windows')
+        .option('--json', 'Output simulation as JSON')
+        .option('--target <target>', 'Target context window: 200k or 1m')
+        .option('--model <model>', 'Simulate against a specific model\'s context window')
+        .option('--output <file>', 'Write JSON results to a file')
+        .action(async (pathArg, options) => {
+        if (options.json || options.output) {
+            setLogLevel('silent');
+        }
+        const chalk = (await import('chalk')).default;
+        const targetPath = resolvePath(pathArg ?? '.');
+        try {
+            await stat(targetPath);
+        }
+        catch {
+            console.error(`Error: path not found: ${targetPath}`);
+            process.exitCode = 1;
+            return;
+        }
+        // If --model is provided, use that model's context window as the target
+        let customTargets;
+        if (options.model) {
+            const modelInfo = getModel(options.model);
+            if (!modelInfo) {
+                console.error(`Error: unknown model "${options.model}". Use a model id from the registry (e.g., gpt-4o, claude-sonnet-4-6, gemini-2.5-pro).`);
+                process.exitCode = 1;
+                return;
+            }
+            const windowSize = modelInfo.contextWindow;
+            const label = `${modelInfo.name} (${Math.round(windowSize / 1000)}k)`;
+            customTargets = [{ size: windowSize, label }];
+        }
+        const result = await repositorySimulator(targetPath, options.target, customTargets);
+        if (options.output) {
+            const { writeFile } = await import('node:fs/promises');
+            await writeFile(resolvePath(options.output), JSON.stringify(result, null, 2));
+            console.log(`Results written to ${options.output}`);
+            return;
+        }
+        if (options.json) {
+            console.log(JSON.stringify(result, null, 2));
+            return;
+        }
+        console.log(chalk.bold('\nContext Simulation'));
+        console.log(chalk.dim(`  Root: ${result.rootPath}`));
+        console.log(`  Total tokens: ${formatTokens(result.totalTokens)}`);
+        console.log('');
+        for (const target of result.targets) {
+            const fitsIcon = target.fits ? chalk.green('FITS') : chalk.red('DOES NOT FIT');
+            console.log(chalk.bold(`  ${target.windowLabel} window:`));
+            console.log(`    Status:       ${fitsIcon}`);
+            console.log(`    Utilization:  ${formatPercentage(target.utilization)}`);
+            console.log(`    Reserved:     ${formatTokens(target.reservedBudget)} (system/tools)`);
+            if (target.headroom >= 0) {
+                console.log(`    Headroom:     ${chalk.green(formatTokens(target.headroom))}`);
+            }
+            else {
+                console.log(`    Over budget:  ${chalk.red(formatTokens(Math.abs(target.headroom)))}`);
+            }
+            console.log('');
+        }
+        if (result.recommendations.length > 0) {
+            console.log(chalk.bold('  Recommendations'));
+            for (const rec of result.recommendations) {
+                console.log(`    * ${rec}`);
+            }
+            console.log('');
+        }
+    });
+}
+//# sourceMappingURL=simulate.js.map

package/dist/commands/simulate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"simulate.js","sourceRoot":"","sources":["../../src/commands/simulate.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC/C,OAAO,EAAE,cAAc,EAAE,MAAM,kCAAkC,CAAC;AAClE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,YAAY,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACpE,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AACjD,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAC;AAGpD,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU;IACnD,OAAO,EAAE,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,QAAQ;IAClD,QAAQ,EAAE,QAAQ;CACnB,CAAC,CAAC;AAEH,MAAM,OAAO,GAA2C;IACtD,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE;IAChC,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,IAAI,EAAE;CACjC,CAAC;AAEF;;GAEG;AACH,KAAK,UAAU,mBAAmB,CAChC,QAAgB,EAChB,YAAqB,EACrB,aAAsD;IAEtD,MAAM,OAAO,GAAG,MAAM,aAAa,CAAC,QAAQ,EAAE,EAAE,UAAU,EAAE,mBAAmB,EAAE,CAAC,CAAC;IACnF,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,IAAI,GAAG,SAAS,CAAC,CAAC;IAE1E,IAAI,WAAW,GAAG,CAAC,CAAC;IAEpB,KAAK,MAAM,KAAK,IAAI,WAAW,EAAE,CAAC;QAChC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;YACpD,WAAW,IAAI,cAAc,CAAC,OAAO,CAAC,CAAC;QACzC,CAAC;QAAC,MAAM,CAAC;YACP,wBAAwB;QAC1B,CAAC;IACH,CAAC;IAED,2EAA2E;IAC3E,MAAM,WAAW,GAAG,aAAa,IAAI,OAAO,CAAC;IAE7C,MAAM,aAAa,GAAG,YAAY;QAChC,CAAC,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,YAAY,CAAC,WAAW,EAAE,CAAC;QACjF,CAAC,CAAC,WAAW,CAAC;IAEhB,IAAI,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,mBAAmB,YAAY,uBAAuB,CAAC,CAAC;IAC1E,CAAC;IAED,kDAAkD;IAClD,MAAM,YAAY,GAAG,GAAG,CAAC;IAEzB,MAAM,OAAO,GAAuB,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE;QAC1D,MAAM,cAAc,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,GAAG,YAAY,CAAC,CAAC;QACzD,MAAM,SAAS,GAAG,CAAC,CAAC,IAAI,GAAG,cAAc,CAAC;QAC1C,OAAO;YACL,UAAU,EAAE,CAAC,CAAC,IAAI;YAClB,WAAW,EAAE,CAAC,CAAC,KAAK;YACpB,IAAI,EAAE,WAAW,IAAI,SAAS;YAC9B,WAAW,EAAE,SAAS,GAAG,CAAC,CAAC,CAAC,CAAC,WAAW,GAAG,SAAS,CAAC,CAAC,CAAC,CAAC;YACxD,QAAQ,EAAE,SAAS,GAAG,WAAW;YACjC,cAAc;SACf,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,MAAM,eAAe,GAAa,EAAE,CAAC;IACrC,IAAI,WAAW,GAAG,OAAO,EAAE,CAAC;QAC1B,eAAe,CAAC,IAAI,CAAC,qEAAqE,CAAC,CAAC;IAC9F,CAAC;IACD,IAAI,WAAW,GAAG,SAAS,EAAE,CAAC;QAC5B,eAAe,CAAC,IAAI,CAAC,qFAAqF,CAAC,CAAC;IAC9G,CAAC;IACD,IAAI,WAAW,GAAG,MAAM,EAAE,CAAC;QACzB,eAAe,CAAC,IAAI,CAAC,4EAA4E,CAAC,CAAC;IACrG,CAAC;IAED,OAAO;QACL,QAAQ;QACR,WAAW;QACX,OAAO;QACP,eAAe;KAChB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,OAAgB;IACtD,OAAO;SACJ,OAAO,CAAC,iBAAiB,CAAC;SAC1B,WAAW,CAAC,6EAA6E,CAAC;SAC1F,MAAM,CAAC,QAAQ,EAAE,2BAA2B,CAAC;SAC7C,MAAM,CAAC,mBAAmB,EAAE,mCAAmC,CAAC;SAChE,MAAM,CAAC,iBAAiB,EAAE,qDAAqD,CAAC;SAChF,MAAM,CAAC,iBAAiB,EAAE,8BAA8B,CAAC;SACzD,MAAM,CAAC,KAAK,EACX,OAA2B,EAC3B,OAA6E,EAC7E,EAAE;QACF,IAAI,OAAO,CAAC,IAAI,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YACnC,WAAW,CAAC,QAAQ,CAAC,CAAC;QACxB,CAAC;QAED,MAAM,KAAK,GAAG,CAAC,MAAM,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;QAC9C,MAAM,UAAU,GAAG,WAAW,CAAC,OAAO,IAAI,GAAG,CAAC,CAAC;QAE/C,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,UAAU,CAAC,CAAC;QACzB,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,CAAC,KAAK,CAAC,0BAA0B,UAAU,EAAE,CAAC,CAAC;YACtD,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;YACrB,OAAO;QACT,CAAC;QAED,wEAAwE;QACxE,IAAI,aAAiE,CAAC;QACtE,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YAClB,MAAM,SAAS,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YAC1C,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,OAAO,CAAC,KAAK,CAAC,yBAAyB,OAAO,CAAC,KAAK,wFAAwF,CAAC,CAAC;gBAC9I,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;gBACrB,OAAO;YACT,CAAC;YACD,MAAM,UAAU,GAAG,SAAS,CAAC,aAAa,CAAC;YAC3C,MAAM,KAAK,GAAG,GAAG,SAAS,CAAC,IAAI,KAAK,IAAI,CAAC,KAAK,CAAC,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC;YACtE,aAAa,GAAG,CAAC,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,CAAC;QAChD,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,mBAAmB,CAAC,UAAU,EAAE,OAAO,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;QAEpF,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YACnB,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,MAAM,CAAC,kBAAkB,CAAC,CAAC;YACvD,MAAM,SAAS,CAAC,WAAW,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC9E,OAAO,CAAC,GAAG,CAAC,sBAAsB,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YACpD,OAAO;QACT,CAAC;QAED,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;YAC7C,OAAO;QACT,CAAC;QAED,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC,CAAC;QAChD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,WAAW,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;QACrD,OAAO,CAAC,GAAG,CAAC,mBAAmB,YAAY,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;QACnE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAEhB,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACpC,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;YAC/E,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,KAAK,MAAM,CAAC,WAAW,UAAU,CAAC,CAAC,CAAC;YAC3D,OAAO,CAAC,GAAG,CAAC,qBAAqB,QAAQ,EAAE,CAAC,CAAC;YAC7C,OAAO,CAAC,GAAG,CAAC,qBAAqB,gBAAgB,CAAC,MAAM,CAAC,WAAW,CAAC,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,qBAAqB,YAAY,CAAC,MAAM,CAAC,cAAc,CAAC,iBAAiB,CAAC,CAAC;YACvF,IAAI,MAAM,CAAC,QAAQ,IAAI,CAAC,EAAE,CAAC;gBACzB,OAAO,CAAC,GAAG,CAAC,qBAAqB,KAAK,CAAC,KAAK,CAAC,YAAY,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC,CAAC;YACjF,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,qBAAqB,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YACzF,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QAED,IAAI,MAAM,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACtC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC,CAAC;YAC7C,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,eAAe,EAAE,CAAC;gBACzC,OAAO,CAAC,GAAG,CAAC,SAAS,GAAG,EAAE,CAAC,CAAC;YAC9B,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;IACH,CAAC,CAAC,CAAC;AACP,CAAC"}

package/dist/commands/summary.d.ts

@@ -0,0 +1,9 @@
+/**
+ * `codeprobe summary [path]` — Quick, compact project summary.
+ *
+ * Like `git status` but for AI context. Fast, one-screen output
+ * with the most important facts about the project.
+ */
+import { Command } from 'commander';
+export declare function registerSummaryCommand(program: Command): void;
+//# sourceMappingURL=summary.d.ts.map

package/dist/commands/summary.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"summary.d.ts","sourceRoot":"","sources":["../../src/commands/summary.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AA4JpC,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,OAAO,GAAG,IAAI,CA4I7D"}