commandmate 0.1.0

package/dist/cli/utils/security-logger.js

@@ -0,0 +1,53 @@
+"use strict";
+/**
+ * Security Event Logger
+ * Issue #96: npm install CLI support
+ * SF-SEC-2: Security event logging for CLI commands
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.logSecurityEvent = logSecurityEvent;
+exports.maskSensitiveData = maskSensitiveData;
+const fs_1 = require("fs");
+const path_1 = require("path");
+const os_1 = require("os");
+/**
+ * Get security log file path
+ */
+function getLogPath() {
+    const logDir = process.env.CM_LOG_DIR;
+    if (logDir) {
+        return (0, path_1.join)(logDir, 'security.log');
+    }
+    return (0, path_1.join)((0, os_1.homedir)(), '.commandmate-security.log');
+}
+/**
+ * Log a security event
+ * Silently fails if file operations fail (non-critical)
+ */
+function logSecurityEvent(event) {
+    try {
+        const logPath = getLogPath();
+        const maskedDetails = maskSensitiveData(event.details);
+        const logLine = `${event.timestamp} [${event.action.toUpperCase()}] ${event.command}: ${maskedDetails || ''}\n`;
+        (0, fs_1.appendFileSync)(logPath, logLine, { mode: 0o600 });
+    }
+    catch {
+        // Silently ignore logging failures - they should not affect CLI operation
+    }
+}
+/**
+ * Mask sensitive data in log messages
+ * SF-SEC-2: Mask authentication tokens in logs
+ */
+function maskSensitiveData(input) {
+    if (!input) {
+        return input;
+    }
+    // Mask CM_AUTH_TOKEN values
+    let result = input.replace(/CM_AUTH_TOKEN=\S+/g, 'CM_AUTH_TOKEN=***masked***');
+    // Mask any token-like strings (12+ hex/alphanumeric characters after "token:")
+    result = result.replace(/(?:token|Token)[:\s]+([a-zA-Z0-9]{12,})/gi, (_match, token) => {
+        return _match.replace(token, '***');
+    });
+    return result;
+}

package/package.json

@@ -0,0 +1,78 @@
+{
+  "name": "commandmate",
+  "version": "0.1.0",
+  "description": "Git worktree management with Claude CLI and tmux sessions",
+  "bin": {
+    "commandmate": "./bin/commandmate.js"
+  },
+  "files": [
+    "bin/",
+    "dist/",
+    ".env.example"
+  ],
+  "scripts": {
+    "dev": "tsx server.ts",
+    "build": "next build",
+    "build:cli": "tsc --project tsconfig.cli.json",
+    "build:all": "npm run build && npm run build:cli",
+    "prepublishOnly": "npm run build:cli",
+    "start": "NODE_ENV=production tsx server.ts",
+    "lint": "next lint",
+    "test": "vitest",
+    "test:ui": "vitest --ui",
+    "test:coverage": "vitest --coverage",
+    "test:unit": "vitest run tests/unit",
+    "test:integration": "vitest run tests/integration",
+    "test:e2e": "playwright test",
+    "test:watch": "vitest --watch",
+    "db:init": "tsx scripts/init-db.ts",
+    "db:reset": "rm -f db.sqlite && npm run db:init"
+  },
+  "dependencies": {
+    "ansi-to-html": "^0.7.2",
+    "autoprefixer": "^10.4.22",
+    "better-sqlite3": "^12.4.1",
+    "commander": "^14.0.2",
+    "date-fns": "^4.1.0",
+    "gray-matter": "^4.0.3",
+    "http-proxy": "^1.18.1",
+    "isomorphic-dompurify": "^2.35.0",
+    "lucide-react": "^0.554.0",
+    "mermaid": "^11.12.2",
+    "next": "^14.2.0",
+    "postcss": "^8.5.6",
+    "react": "^18.3.0",
+    "react-dom": "^18.3.0",
+    "react-markdown": "^10.1.0",
+    "rehype-highlight": "^7.0.2",
+    "rehype-sanitize": "^6.0.0",
+    "remark-gfm": "^4.0.1",
+    "uuid": "^13.0.0",
+    "ws": "^8.18.3",
+    "xterm": "^5.3.0",
+    "xterm-addon-fit": "^0.8.0",
+    "xterm-addon-web-links": "^0.9.0"
+  },
+  "devDependencies": {
+    "@playwright/test": "^1.56.1",
+    "@tailwindcss/typography": "^0.5.19",
+    "@testing-library/jest-dom": "^6.9.1",
+    "@testing-library/react": "^16.3.0",
+    "@types/better-sqlite3": "^7.6.13",
+    "@types/http-proxy": "^1.17.17",
+    "@types/node": "^20.0.0",
+    "@types/react": "^18.3.0",
+    "@types/react-dom": "^18.3.0",
+    "@types/uuid": "^10.0.0",
+    "@types/ws": "^8.18.1",
+    "@vitejs/plugin-react": "^5.1.1",
+    "@vitest/coverage-v8": "^4.0.16",
+    "@vitest/ui": "^4.0.9",
+    "eslint": "^8.57.0",
+    "eslint-config-next": "^14.2.0",
+    "tailwindcss": "^3.4.18",
+    "tsx": "^4.20.6",
+    "typescript": "^5.5.0",
+    "vitest": "^4.0.9"
+  }
+}