compact-agent 1.1.0

package/dist/rules.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rules.js","sourceRoot":"","sources":["../src/rules.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,SAAS,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAC1F,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,KAAK,MAAM,OAAO,CAAC;AAC1B,OAAO,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAE3C,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,EAAE,EAAE,OAAO,CAAC,CAAC;AAOhD,6DAA6D;AAC7D,MAAM,aAAa,GAA2B;IAC5C,UAAU,EAAE;;;;;;;;;;;;;uDAayC;IAErD,MAAM,EAAE;;;;;;;;;;;;2DAYiD;IAEzD,EAAE,EAAE;;;;;;;;;;;;wDAYkD;IAEtD,IAAI,EAAE;;;;;;;;;;;kDAW0C;IAEhD,IAAI,EAAE;;;;;;;;;;;wBAWgB;IAEtB,MAAM,EAAE;;;;;;;;;;uDAU6C;IAErD,GAAG,EAAE;;;;;;;;;;;;0CAYmC;IAExC,GAAG,EAAE;;;;;;;;;;mCAU4B;IAEjC,GAAG,EAAE;;;;;;;;;;yCAUkC;IAEvC,MAAM,EAAE;;;;;;;;;;yCAU+B;CACxC,CAAC;AAEF,SAAS,SAAS;IAChB,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;AAC5C,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,SAAS,CAAC,QAAgB;IACxC,SAAS,EAAE,CAAC;IACZ,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,EAAE,GAAG,QAAQ,KAAK,CAAC,CAAC;IACnD,IAAI,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QACzB,OAAO,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACzC,CAAC;IACD,OAAO,aAAa,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC;AACzC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,SAAS,CAAC,QAAgB,EAAE,KAAa;IACvD,SAAS,EAAE,CAAC;IACZ,aAAa,CAAC,IAAI,CAAC,SAAS,EAAE,GAAG,QAAQ,KAAK,CAAC,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;AACnE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY;IAC1B,SAAS,EAAE,CAAC;IACZ,MAAM,MAAM,GAAyD,EAAE,CAAC;IAExE,eAAe;IACf,MAAM,WAAW,GAAG,WAAW,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC;IAC5E,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;QAC5B,MAAM,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,CAAC;IACpE,CAAC;IAED,4BAA4B;IAC5B,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC;QAC9C,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,IAAI,CAAC,EAAE,CAAC;YAC7C,MAAM,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC;QACrD,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;AACrE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,GAAW;IACzC,MAAM,MAAM,GAA2B;QACrC,KAAK,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,KAAK,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY;QACpF,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ;QACjC,KAAK,EAAE,IAAI;QACX,KAAK,EAAE,MAAM;QACb,OAAO,EAAE,MAAM;QACf,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ;QACjC,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK;QACtE,MAAM,EAAE,KAAK;KACd,CAAC;IAEF,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;IACnC,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QACzE,KAAK,MAAM,CAAC,IAAI,KAAc,EAAE,CAAC;YAC/B,IAAI,CAAC,CAAC,CAAC,MAAM,EAAE;gBAAE,SAAS;YAC1B,MAAM,IAAI,GAAW,CAAC,CAAC,IAAI,CAAC;YAC5B,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC;YAC9C,IAAI,MAAM,CAAC,GAAG,CAAC;gBAAE,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;YAC3C,IAAI,QAAQ,CAAC,IAAI,IAAI,CAAC;gBAAE,MAAM,CAAC,SAAS;QAC1C,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,iBAAiB;IACnB,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;AAC9B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,GAAW;IAC1C,MAAM,SAAS,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;IACvC,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAEtC,MAAM,QAAQ,GAAa,EAAE,CAAC;IAC9B,KAAK,MAAM,IAAI,IAAI,SAAS,EAAE,CAAC;QAC7B,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;QAC9B,IAAI,KAAK;YAAE,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IAClC,CAAC;IAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IACrC,OAAO,yBAAyB,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;AAC1D,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAAC,QAAgB;IAC/C,iCAAiC;IACjC,MAAM,WAAW,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;IACxC,IAAI,WAAW,EAAE,CAAC;QAChB,OAAO,WAAW,CAAC;IACrB,CAAC;IAED,6DAA6D;IAC7D,MAAM,aAAa,GAA2B;QAC5C,UAAU,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kDA4DkC;QAE9C,MAAM,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;4BAuEgB;QAExB,EAAE,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;uDA+D+C;QAEnD,IAAI,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;sDAwE4C;QAElD,IAAI,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;kDAsEwC;QAE9C,GAAG,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;mCAkF0B;QAE/B,MAAM,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;2BAmDe,KAAK;;;;;;;;;;;;;;;;;;;mDAmBmB;QAE/C,GAAG,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;uCAgF8B;QAEnC,GAAG,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;sCA2D6B;QAElC,MAAM,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;6BAuDiB;KAC1B,CAAC;IAEF,OAAO,aAAa,CAAC,QAAQ,CAAC,IAAI,aAAa,CAAC,QAAQ,CAAC,IAAI,eAAe,QAAQ,wCAAwC,CAAC;AAC/H,CAAC;AAED,MAAM,UAAU,UAAU;IACxB,MAAM,IAAI,GAAG,YAAY,EAAE,CAAC;IAC5B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,IAAI,CAAC,MAAM,IAAI,CAAC,CAAC,CAAC;IAC3D,KAAK,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC;QACrB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IACrE,CAAC;IACD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC,CAAC;IAC/E,OAAO,CAAC,GAAG,EAAE,CAAC;AAChB,CAAC"}

package/dist/schema.d.ts

@@ -0,0 +1,23 @@
+/**
+ * Schema definitions for persistent data stores.
+ *
+ * Each store is a JSON file under ~/.crowcoder/.
+ * Schema versions are tracked to support future migrations.
+ */
+export declare const USERS_TABLE_VERSION = 1;
+export interface UserRow {
+    id: string;
+    name: string;
+    email?: string;
+    role?: string;
+    active: boolean;
+    createdAt: string;
+    updatedAt: string;
+    metadata: Record<string, string>;
+}
+export interface UsersTable {
+    version: number;
+    users: UserRow[];
+    activeUserId: string | null;
+}
+export declare function createEmptyUsersTable(): UsersTable;

package/dist/schema.js

@@ -0,0 +1,12 @@
+/**
+ * Schema definitions for persistent data stores.
+ *
+ * Each store is a JSON file under ~/.crowcoder/.
+ * Schema versions are tracked to support future migrations.
+ */
+// ── Users Table ──────────────────────────────────────────
+export const USERS_TABLE_VERSION = 1;
+export function createEmptyUsersTable() {
+    return { version: USERS_TABLE_VERSION, users: [], activeUserId: null };
+}
+//# sourceMappingURL=schema.js.map

package/dist/schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"schema.js","sourceRoot":"","sources":["../src/schema.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,4DAA4D;AAE5D,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,CAAC;AAmBrC,MAAM,UAAU,qBAAqB;IACnC,OAAO,EAAE,OAAO,EAAE,mBAAmB,EAAE,KAAK,EAAE,EAAE,EAAE,YAAY,EAAE,IAAI,EAAE,CAAC;AACzE,CAAC"}

package/dist/search-first.d.ts

@@ -0,0 +1,17 @@
+/**
+ * Search-First Workflow — Research before implementation.
+ * Builds prompts that force the AI to understand existing code patterns
+ * before proposing new implementations.
+ */
+/**
+ * Build a prompt that tells the AI to research existing code first
+ */
+export declare function buildSearchFirstPrompt(task: string, cwd: string): string;
+/**
+ * Build a prompt for looking up documentation
+ */
+export declare function buildDocsLookupPrompt(query: string, cwd: string): string;
+/**
+ * Print a summary of the research workflow
+ */
+export declare function printSearchFirstSummary(): void;

package/dist/search-first.js

@@ -0,0 +1,301 @@
+/**
+ * Search-First Workflow — Research before implementation.
+ * Builds prompts that force the AI to understand existing code patterns
+ * before proposing new implementations.
+ */
+import { execSync } from 'node:child_process';
+import { existsSync, readFileSync, readdirSync } from 'node:fs';
+import { join } from 'node:path';
+import chalk from 'chalk';
+/**
+ * Escape special regex characters for safe usage in grep patterns
+ */
+function escapeRegex(str) {
+    return str.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}
+/**
+ * Safely run grep without throwing errors
+ */
+function safeGrep(pattern, path, filePattern = '*.ts') {
+    try {
+        const escaped = escapeRegex(pattern);
+        const result = execSync(`grep -r "${escaped}" "${path}" --include="${filePattern}" 2>/dev/null || echo ""`, {
+            encoding: 'utf-8',
+            cwd: path,
+            timeout: 10_000,
+        });
+        return result
+            .split('\n')
+            .filter((line) => line.trim())
+            .slice(0, 20); // Limit to first 20 matches
+    }
+    catch {
+        return [];
+    }
+}
+/**
+ * Find relevant files based on keywords
+ */
+function findRelevantFiles(keyword, cwd) {
+    try {
+        const result = execSync(`find "${cwd}/src" -name "*.ts" -type f 2>/dev/null | head -30`, { encoding: 'utf-8', timeout: 5_000 });
+        const files = result
+            .split('\n')
+            .filter((f) => f.trim())
+            .map((f) => f.replace(cwd + '/', ''));
+        // Filter by keyword relevance
+        return files.filter((f) => f.toLowerCase().includes(keyword.toLowerCase()) ||
+            f.includes('types') ||
+            f.includes('index'));
+    }
+    catch {
+        return [];
+    }
+}
+/**
+ * Read and summarize a file's key exports and patterns
+ */
+function summarizeFile(filePath, cwd) {
+    try {
+        const fullPath = join(cwd, filePath);
+        if (!existsSync(fullPath))
+            return '';
+        const content = readFileSync(fullPath, 'utf-8');
+        const lines = content.split('\n');
+        // Extract exports
+        const exports = lines
+            .filter((l) => l.includes('export '))
+            .slice(0, 10)
+            .map((l) => l.trim());
+        // Extract imports
+        const imports = lines
+            .filter((l) => l.includes('import '))
+            .slice(0, 5)
+            .map((l) => l.trim());
+        // Extract top-level function/class names
+        const definitions = lines
+            .filter((l) => /^(export\s+)?(function|class|interface|type|const)\s+\w+/.test(l))
+            .slice(0, 8)
+            .map((l) => l.trim());
+        let summary = `\n### ${filePath}\n`;
+        if (definitions.length > 0) {
+            summary += `**Definitions:**\n${definitions.map((d) => `- ${d}`).join('\n')}\n`;
+        }
+        if (exports.length > 0) {
+            summary += `**Key exports:**\n${exports.map((e) => `- ${e}`).join('\n')}\n`;
+        }
+        return summary;
+    }
+    catch {
+        return '';
+    }
+}
+/**
+ * Find documentation files (README, docs/, comments in code)
+ */
+function findDocs(cwd) {
+    const docFiles = [];
+    // Check for README
+    const readmeFiles = ['README.md', 'readme.md', 'docs/README.md'];
+    for (const f of readmeFiles) {
+        if (existsSync(join(cwd, f))) {
+            docFiles.push(f);
+        }
+    }
+    // Check for docs directory
+    const docsDir = join(cwd, 'docs');
+    if (existsSync(docsDir)) {
+        try {
+            const files = readdirSync(docsDir);
+            docFiles.push(...files.filter((f) => f.endsWith('.md')).map((f) => `docs/${f}`));
+        }
+        catch {
+            // Ignore errors
+        }
+    }
+    // Check for src/docs
+    const srcDocsDir = join(cwd, 'src', 'docs');
+    if (existsSync(srcDocsDir)) {
+        try {
+            const files = readdirSync(srcDocsDir);
+            docFiles.push(...files.filter((f) => f.endsWith('.md')).map((f) => `src/docs/${f}`));
+        }
+        catch {
+            // Ignore errors
+        }
+    }
+    return docFiles.slice(0, 10); // Limit to 10 docs
+}
+/**
+ * Extract JSDoc comments from a file
+ */
+function extractJSDoc(filePath, cwd) {
+    try {
+        const fullPath = join(cwd, filePath);
+        if (!existsSync(fullPath))
+            return [];
+        const content = readFileSync(fullPath, 'utf-8');
+        const jsdocs = [];
+        const lines = content.split('\n');
+        for (let i = 0; i < lines.length; i++) {
+            if (lines[i].includes('/**')) {
+                let doc = '';
+                for (let j = i; j < Math.min(i + 10, lines.length); j++) {
+                    doc += lines[j] + '\n';
+                    if (lines[j].includes('*/')) {
+                        jsdocs.push(doc);
+                        break;
+                    }
+                }
+            }
+        }
+        return jsdocs.slice(0, 5);
+    }
+    catch {
+        return [];
+    }
+}
+/**
+ * Build a prompt that tells the AI to research existing code first
+ */
+export function buildSearchFirstPrompt(task, cwd) {
+    const keyword = task.split(/\s+/)[0]; // Extract first word as search term
+    const relevantFiles = findRelevantFiles(keyword, cwd);
+    const relatedGreps = safeGrep(keyword, join(cwd, 'src'), '*.ts');
+    let research = '';
+    // Relevant file summaries
+    if (relevantFiles.length > 0) {
+        research += `\n## Relevant Existing Code\n`;
+        for (const file of relevantFiles.slice(0, 5)) {
+            research += summarizeFile(file, cwd);
+        }
+    }
+    // Pattern matches
+    if (relatedGreps.length > 0) {
+        research += `\n## Related Code Patterns\n`;
+        research += 'Found these related patterns in the codebase:\n';
+        research += relatedGreps.map((g) => `\`\`\`\n${g}\n\`\`\``).join('\n');
+    }
+    return `# Research-First Implementation
+
+## Task
+${task}
+
+## Before Writing Code: Research Phase
+
+Please follow this approach:
+
+1. **Analyze existing patterns** in the codebase
+   - Look at similar functions and modules
+   - Understand how the project structures code
+   - Check for established patterns we should follow
+
+2. **Review documentation and comments**
+   - Check relevant files for JSDoc and inline comments
+   - Look for design patterns in existing implementations
+   - Understand architectural decisions
+
+3. **Identify applicable patterns**
+   - What patterns from existing code apply here?
+   - Are there similar functions we should model after?
+   - What conventions does this project follow?
+
+4. **Reference existing code in your proposal**
+   - When proposing a solution, reference the existing code that informed it
+   - Explain how your implementation follows established patterns
+   - Point out if you're introducing a new pattern and why
+
+## Current Codebase Research
+${research || '(Run research to populate this section)'}
+
+## Implementation Guidelines
+- Follow the style and patterns of existing code
+- Use the same import structure and module organization
+- Match the error handling approach used elsewhere
+- Maintain consistency with project conventions
+- Reference specific files and functions that informed the design
+
+Now, please implement the task, but start by analyzing the codebase and then proposing your solution.`;
+}
+/**
+ * Build a prompt for looking up documentation
+ */
+export function buildDocsLookupPrompt(query, cwd) {
+    const docFiles = findDocs(cwd);
+    const grepResults = safeGrep(query, join(cwd, 'src'), '*.ts');
+    let docsContent = '';
+    // Read doc files
+    if (docFiles.length > 0) {
+        docsContent += `\n## Documentation Files Found\n`;
+        for (const docFile of docFiles) {
+            const fullPath = join(cwd, docFile);
+            if (existsSync(fullPath)) {
+                try {
+                    const content = readFileSync(fullPath, 'utf-8');
+                    docsContent += `\n### ${docFile}\n\`\`\`\n${content.slice(0, 1000)}\n\`\`\`\n`;
+                }
+                catch {
+                    docsContent += `\n### ${docFile} (could not read)\n`;
+                }
+            }
+        }
+    }
+    // JSDoc from relevant files
+    if (grepResults.length > 0) {
+        const srcFiles = findRelevantFiles(query, cwd).slice(0, 3);
+        docsContent += `\n## Code Documentation & Comments\n`;
+        for (const file of srcFiles) {
+            const jsDoc = extractJSDoc(file, cwd);
+            if (jsDoc.length > 0) {
+                docsContent += `\n### ${file}\n`;
+                docsContent += jsDoc.map((doc) => `\`\`\`typescript\n${doc}\n\`\`\``).join('\n');
+            }
+        }
+    }
+    return `# Documentation Lookup
+
+## Query
+${query}
+
+## Research Results
+
+### Step 1: Local Documentation
+- Searched docs/ directory
+- Searched README files
+- Searched for configuration files
+
+### Step 2: Code Comments & JSDoc
+- Extracted JSDoc from relevant files
+- Found inline documentation
+- Checked for examples in tests
+
+${docsContent || '(No documentation found - searching code patterns instead)'}
+
+### Step 3: Code Patterns
+${grepResults.length > 0
+        ? 'Found these implementations:\n' +
+            grepResults.slice(0, 10).map((g) => `- ${g}`).join('\n')
+        : 'No specific patterns found'}
+
+## Summary
+Based on the documentation and code patterns found, here are the key findings:
+
+1. **Documentation**: ${docFiles.length > 0 ? `Found ${docFiles.length} documentation files` : 'Limited documentation'}
+2. **Code Examples**: ${grepResults.length > 0 ? `Found ${grepResults.length} related code snippets` : 'No examples'}
+3. **Related Files**: ${findRelevantFiles(query, cwd).length} relevant source files
+
+Please use these findings to answer the query.`;
+}
+/**
+ * Print a summary of the research workflow
+ */
+export function printSearchFirstSummary() {
+    console.log(chalk.cyan('\n📚 Search-First Workflow'));
+    console.log(chalk.gray('Research existing code before implementation\n'));
+    console.log(chalk.blue('Available prompts:'));
+    console.log(chalk.gray('  buildSearchFirstPrompt(task, cwd)'));
+    console.log(chalk.gray('    → Forces research phase before coding'));
+    console.log(chalk.gray('  buildDocsLookupPrompt(query, cwd)'));
+    console.log(chalk.gray('    → Looks up relevant documentation & patterns\n'));
+}
+//# sourceMappingURL=search-first.js.map

package/dist/search-first.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"search-first.js","sourceRoot":"","sources":["../src/search-first.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAChE,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B;;GAEG;AACH,SAAS,WAAW,CAAC,GAAW;IAC9B,OAAO,GAAG,CAAC,OAAO,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAC;AACpD,CAAC;AAED;;GAEG;AACH,SAAS,QAAQ,CAAC,OAAe,EAAE,IAAY,EAAE,WAAW,GAAG,MAAM;IACnE,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;QACrC,MAAM,MAAM,GAAG,QAAQ,CACrB,YAAY,OAAO,MAAM,IAAI,gBAAgB,WAAW,0BAA0B,EAClF;YACE,QAAQ,EAAE,OAAO;YACjB,GAAG,EAAE,IAAI;YACT,OAAO,EAAE,MAAM;SAChB,CACF,CAAC;QACF,OAAO,MAAM;aACV,KAAK,CAAC,IAAI,CAAC;aACX,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;aAC7B,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,4BAA4B;IAC/C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,iBAAiB,CAAC,OAAe,EAAE,GAAW;IACrD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,QAAQ,CACrB,SAAS,GAAG,mDAAmD,EAC/D,EAAE,QAAQ,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,CACtC,CAAC;QACF,MAAM,KAAK,GAAG,MAAM;aACjB,KAAK,CAAC,IAAI,CAAC;aACX,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;aACvB,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,GAAG,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC;QAExC,8BAA8B;QAC9B,OAAO,KAAK,CAAC,MAAM,CACjB,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;YAC/C,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC;YACnB,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CACtB,CAAC;IACJ,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CAAC,QAAgB,EAAE,GAAW;IAClD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QACrC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,OAAO,EAAE,CAAC;QAErC,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAElC,kBAAkB;QAClB,MAAM,OAAO,GAAG,KAAK;aAClB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;aACpC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC;aACZ,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAExB,kBAAkB;QAClB,MAAM,OAAO,GAAG,KAAK;aAClB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;aACpC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;aACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAExB,yCAAyC;QACzC,MAAM,WAAW,GAAG,KAAK;aACtB,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,0DAA0D,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;aACjF,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC;aACX,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QAExB,IAAI,OAAO,GAAG,SAAS,QAAQ,IAAI,CAAC;QACpC,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,OAAO,IAAI,qBAAqB,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC;QAClF,CAAC;QACD,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvB,OAAO,IAAI,qBAAqB,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC;QAC9E,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,QAAQ,CAAC,GAAW;IAC3B,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,mBAAmB;IACnB,MAAM,WAAW,GAAG,CAAC,WAAW,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC;IACjE,KAAK,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;QAC5B,IAAI,UAAU,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC7B,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACnB,CAAC;IACH,CAAC;IAED,2BAA2B;IAC3B,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,MAAM,CAAC,CAAC;IAClC,IAAI,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACxB,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;YACnC,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC;QACnF,CAAC;QAAC,MAAM,CAAC;YACP,gBAAgB;QAClB,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;IAC5C,IAAI,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,WAAW,CAAC,UAAU,CAAC,CAAC;YACtC,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC,CAAC;QACvF,CAAC;QAAC,MAAM,CAAC;YACP,gBAAgB;QAClB,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,mBAAmB;AACnD,CAAC;AAED;;GAEG;AACH,SAAS,YAAY,CAAC,QAAgB,EAAE,GAAW;IACjD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QACrC,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,OAAO,EAAE,CAAC;QAErC,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAElC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC7B,IAAI,GAAG,GAAG,EAAE,CAAC;gBACb,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;oBACxD,GAAG,IAAI,KAAK,CAAC,CAAC,CAAC,GAAG,IAAI,CAAC;oBACvB,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;wBAC5B,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;wBACjB,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,IAAY,EAAE,GAAW;IAC9D,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,oCAAoC;IAC1E,MAAM,aAAa,GAAG,iBAAiB,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IACtD,MAAM,YAAY,GAAG,QAAQ,CAAC,OAAO,EAAE,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,CAAC;IAEjE,IAAI,QAAQ,GAAG,EAAE,CAAC;IAElB,0BAA0B;IAC1B,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC7B,QAAQ,IAAI,+BAA+B,CAAC;QAC5C,KAAK,MAAM,IAAI,IAAI,aAAa,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YAC7C,QAAQ,IAAI,aAAa,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;IAED,kBAAkB;IAClB,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC5B,QAAQ,IAAI,8BAA8B,CAAC;QAC3C,QAAQ,IAAI,iDAAiD,CAAC;QAC9D,QAAQ,IAAI,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACzE,CAAC;IAED,OAAO;;;EAGP,IAAI;;;;;;;;;;;;;;;;;;;;;;;;;;;EA2BJ,QAAQ,IAAI,yCAAyC;;;;;;;;;sGAS+C,CAAC;AACvG,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,KAAa,EAAE,GAAW;IAC9D,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC;IAC/B,MAAM,WAAW,GAAG,QAAQ,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,MAAM,CAAC,CAAC;IAE9D,IAAI,WAAW,GAAG,EAAE,CAAC;IAErB,iBAAiB;IACjB,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACxB,WAAW,IAAI,kCAAkC,CAAC;QAClD,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;YACpC,IAAI,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACzB,IAAI,CAAC;oBACH,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;oBAChD,WAAW,IAAI,SAAS,OAAO,aAAa,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,YAAY,CAAC;gBACjF,CAAC;gBAAC,MAAM,CAAC;oBACP,WAAW,IAAI,SAAS,OAAO,qBAAqB,CAAC;gBACvD,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,4BAA4B;IAC5B,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,MAAM,QAAQ,GAAG,iBAAiB,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAC3D,WAAW,IAAI,sCAAsC,CAAC;QACtD,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;YAC5B,MAAM,KAAK,GAAG,YAAY,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;YACtC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACrB,WAAW,IAAI,SAAS,IAAI,IAAI,CAAC;gBACjC,WAAW,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,qBAAqB,GAAG,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACnF,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;;;EAGP,KAAK;;;;;;;;;;;;;;EAcL,WAAW,IAAI,4DAA4D;;;EAI3E,WAAW,CAAC,MAAM,GAAG,CAAC;QACpB,CAAC,CAAC,gCAAgC;YAChC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC;QAC1D,CAAC,CAAC,4BACN;;;;;wBAKwB,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,QAAQ,CAAC,MAAM,sBAAsB,CAAC,CAAC,CAAC,uBAAuB;wBAC9F,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,WAAW,CAAC,MAAM,wBAAwB,CAAC,CAAC,CAAC,aAAa;wBAC5F,iBAAiB,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,MAAM;;+CAEb,CAAC;AAChD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB;IACrC,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC;IACtD,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAC,CAAC;IAC1E,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC,CAAC;IAC9C,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC,CAAC;IAC/D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAC,CAAC;IACrE,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC,CAAC;IAC/D,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC,CAAC;AAChF,CAAC"}

package/dist/security.d.ts

@@ -0,0 +1,10 @@
+export type ThreatLevel = 'critical' | 'high' | 'medium' | 'low' | 'safe';
+export interface SecurityScanResult {
+    level: ThreatLevel;
+    threats: string[];
+    blocked: boolean;
+}
+export declare function scanCommand(command: string): SecurityScanResult;
+export declare function scanContent(content: string): SecurityScanResult;
+export declare function scanToolCall(toolName: string, input: Record<string, unknown>): SecurityScanResult;
+export declare function printSecurityWarning(result: SecurityScanResult): void;

package/dist/security.js

@@ -0,0 +1,145 @@
+/**
+ * Security scanner — detect dangerous commands, secrets, and risky operations.
+ * Runs before tool execution to catch threats.
+ */
+import chalk from 'chalk';
+// ── Dangerous command patterns ────────────────────────────
+const DANGEROUS_COMMANDS = [
+    // Destructive filesystem
+    { pattern: /\brm\s+(-[a-zA-Z]*f[a-zA-Z]*\s+|--force\s+).*(\*|\/|\~)/i, level: 'critical', description: 'Recursive force delete with wildcard/root path' },
+    { pattern: /\brm\s+-[a-zA-Z]*r[a-zA-Z]*f/i, level: 'critical', description: 'rm -rf detected' },
+    { pattern: /\brmdir\s+\/s\s+\/q/i, level: 'critical', description: 'Windows recursive delete' },
+    { pattern: /\bformat\s+[a-zA-Z]:/i, level: 'critical', description: 'Disk format command' },
+    { pattern: /\bmkfs\b/i, level: 'critical', description: 'Filesystem format command' },
+    { pattern: />\s*\/dev\/sda/i, level: 'critical', description: 'Direct write to disk device' },
+    { pattern: /\bdd\s+.*of=\/dev\//i, level: 'critical', description: 'dd write to device' },
+    // Destructive git
+    { pattern: /\bgit\s+push\s+.*--force/i, level: 'high', description: 'Git force push' },
+    { pattern: /\bgit\s+push\s+-f\b/i, level: 'high', description: 'Git force push (-f)' },
+    { pattern: /\bgit\s+reset\s+--hard/i, level: 'high', description: 'Git hard reset (destroys uncommitted changes)' },
+    { pattern: /\bgit\s+clean\s+-[a-zA-Z]*f/i, level: 'high', description: 'Git clean -f (deletes untracked files)' },
+    { pattern: /\bgit\s+checkout\s+--\s+\./i, level: 'high', description: 'Git checkout -- . (discard all changes)' },
+    { pattern: /\bgit\s+branch\s+-D/i, level: 'medium', description: 'Force delete git branch' },
+    // Database destruction
+    { pattern: /\bDROP\s+(TABLE|DATABASE|SCHEMA)\b/i, level: 'critical', description: 'SQL DROP statement' },
+    { pattern: /\bTRUNCATE\s+TABLE\b/i, level: 'high', description: 'SQL TRUNCATE table' },
+    { pattern: /\bDELETE\s+FROM\s+\w+\s*(;|$)/i, level: 'high', description: 'DELETE without WHERE clause' },
+    { pattern: /\bALTER\s+TABLE\s+.*DROP\s+COLUMN/i, level: 'medium', description: 'Drop column from table' },
+    // System/privilege escalation
+    { pattern: /\bchmod\s+777\b/i, level: 'high', description: 'chmod 777 (world-writable)' },
+    { pattern: /\bchmod\s+.*\+s\b/i, level: 'high', description: 'Set SUID/SGID bit' },
+    { pattern: /\bcurl\s+.*\|\s*(sudo\s+)?bash/i, level: 'critical', description: 'Pipe curl to bash (remote code execution)' },
+    { pattern: /\bwget\s+.*\|\s*(sudo\s+)?bash/i, level: 'critical', description: 'Pipe wget to bash (remote code execution)' },
+    { pattern: /\beval\s*\(/i, level: 'medium', description: 'eval() usage (code injection risk)' },
+    // Process/network
+    { pattern: /\bkill\s+-9\s+1\b/i, level: 'critical', description: 'Kill init process' },
+    { pattern: /\bkillall\b/i, level: 'medium', description: 'Kill all processes by name' },
+    { pattern: /\b:(){ :|:& };:/i, level: 'critical', description: 'Fork bomb detected' },
+    // Environment/config destruction
+    { pattern: /\bunset\s+(PATH|HOME|USER)\b/i, level: 'high', description: 'Unsetting critical env var' },
+    { pattern: /\bexport\s+PATH\s*=\s*$/i, level: 'high', description: 'Clearing PATH variable' },
+    // Crypto/ransomware patterns
+    { pattern: /\bopenssl\s+enc\s+.*-aes/i, level: 'medium', description: 'File encryption command' },
+    { pattern: /\bgpg\s+.*--encrypt\b/i, level: 'low', description: 'GPG encryption' },
+];
+// ── Secret patterns ───────────────────────────────────────
+const SECRET_PATTERNS = [
+    { pattern: /(?:api[_-]?key|apikey)\s*[:=]\s*['"][a-zA-Z0-9_\-]{20,}/i, description: 'API key detected' },
+    { pattern: /(?:secret|token|password|passwd|pwd)\s*[:=]\s*['"][^'"]{8,}/i, description: 'Secret/password in code' },
+    { pattern: /(?:aws_access_key_id|aws_secret_access_key)\s*[:=]/i, description: 'AWS credentials' },
+    { pattern: /(?:AKIA|ASIA)[A-Z0-9]{16}/i, description: 'AWS access key ID' },
+    { pattern: /-----BEGIN\s+(RSA |DSA |EC )?PRIVATE KEY-----/i, description: 'Private key detected' },
+    { pattern: /ghp_[a-zA-Z0-9]{36}/i, description: 'GitHub personal access token' },
+    { pattern: /sk-[a-zA-Z0-9]{40,}/i, description: 'OpenAI/Stripe secret key' },
+    { pattern: /xox[bpoas]-[a-zA-Z0-9\-]+/i, description: 'Slack token' },
+    { pattern: /eyJ[a-zA-Z0-9_-]{10,}\.[a-zA-Z0-9_-]{10,}/i, description: 'JWT token' },
+];
+export function scanCommand(command) {
+    const threats = [];
+    let maxLevel = 'safe';
+    for (const rule of DANGEROUS_COMMANDS) {
+        if (rule.pattern.test(command)) {
+            threats.push(`[${rule.level.toUpperCase()}] ${rule.description}`);
+            if (severityRank(rule.level) > severityRank(maxLevel)) {
+                maxLevel = rule.level;
+            }
+        }
+    }
+    return {
+        level: maxLevel,
+        threats,
+        blocked: maxLevel === 'critical',
+    };
+}
+export function scanContent(content) {
+    const threats = [];
+    let maxLevel = 'safe';
+    for (const rule of SECRET_PATTERNS) {
+        if (rule.pattern.test(content)) {
+            threats.push(`[SECRET] ${rule.description}`);
+            if (severityRank('high') > severityRank(maxLevel)) {
+                maxLevel = 'high';
+            }
+        }
+    }
+    return {
+        level: maxLevel,
+        threats,
+        blocked: false,
+    };
+}
+export function scanToolCall(toolName, input) {
+    const allThreats = [];
+    let maxLevel = 'safe';
+    // Scan bash commands
+    if (toolName === 'bash' && typeof input.command === 'string') {
+        const cmdScan = scanCommand(input.command);
+        allThreats.push(...cmdScan.threats);
+        if (severityRank(cmdScan.level) > severityRank(maxLevel))
+            maxLevel = cmdScan.level;
+    }
+    // Scan file content for secrets
+    if (toolName === 'write_file' && typeof input.content === 'string') {
+        const contentScan = scanContent(input.content);
+        allThreats.push(...contentScan.threats);
+        if (severityRank(contentScan.level) > severityRank(maxLevel))
+            maxLevel = contentScan.level;
+    }
+    // Scan file paths for sensitive locations
+    const filePath = input.file_path;
+    if (filePath) {
+        if (/\.(env|pem|key|p12|pfx)$/i.test(filePath)) {
+            allThreats.push('[MEDIUM] Accessing sensitive file type');
+            if (severityRank('medium') > severityRank(maxLevel))
+                maxLevel = 'medium';
+        }
+        if (/\/etc\/(passwd|shadow|sudoers)/i.test(filePath)) {
+            allThreats.push('[HIGH] Accessing system security file');
+            if (severityRank('high') > severityRank(maxLevel))
+                maxLevel = 'high';
+        }
+    }
+    return { level: maxLevel, threats: allThreats, blocked: maxLevel === 'critical' };
+}
+export function printSecurityWarning(result) {
+    if (result.threats.length === 0)
+        return;
+    const levelColor = {
+        critical: chalk.bgRed.white.bold,
+        high: chalk.red.bold,
+        medium: chalk.yellow,
+        low: chalk.dim,
+        safe: chalk.green,
+    };
+    console.log(levelColor[result.level](`  ⚠ Security: ${result.level.toUpperCase()}`));
+    for (const t of result.threats) {
+        console.log(chalk.yellow(`    ${t}`));
+    }
+    if (result.blocked) {
+        console.log(chalk.bgRed.white('    BLOCKED — this operation was prevented.'));
+    }
+}
+function severityRank(level) {
+    return { safe: 0, low: 1, medium: 2, high: 3, critical: 4 }[level];
+}
+//# sourceMappingURL=security.js.map

package/dist/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,OAAO,KAAK,MAAM,OAAO,CAAC;AAU1B,6DAA6D;AAC7D,MAAM,kBAAkB,GAAmE;IACzF,yBAAyB;IACzB,EAAE,OAAO,EAAE,0DAA0D,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,gDAAgD,EAAE;IACzJ,EAAE,OAAO,EAAE,+BAA+B,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,iBAAiB,EAAE;IAC/F,EAAE,OAAO,EAAE,sBAAsB,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,0BAA0B,EAAE;IAC/F,EAAE,OAAO,EAAE,uBAAuB,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,qBAAqB,EAAE;IAC3F,EAAE,OAAO,EAAE,WAAW,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,2BAA2B,EAAE;IACrF,EAAE,OAAO,EAAE,iBAAiB,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,6BAA6B,EAAE;IAC7F,EAAE,OAAO,EAAE,sBAAsB,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,oBAAoB,EAAE;IAEzF,kBAAkB;IAClB,EAAE,OAAO,EAAE,2BAA2B,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,gBAAgB,EAAE;IACtF,EAAE,OAAO,EAAE,sBAAsB,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,qBAAqB,EAAE;IACtF,EAAE,OAAO,EAAE,yBAAyB,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,+CAA+C,EAAE;IACnH,EAAE,OAAO,EAAE,8BAA8B,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,wCAAwC,EAAE;IACjH,EAAE,OAAO,EAAE,6BAA6B,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,yCAAyC,EAAE;IACjH,EAAE,OAAO,EAAE,sBAAsB,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,EAAE;IAE5F,uBAAuB;IACvB,EAAE,OAAO,EAAE,qCAAqC,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,oBAAoB,EAAE;IACxG,EAAE,OAAO,EAAE,uBAAuB,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,oBAAoB,EAAE;IACtF,EAAE,OAAO,EAAE,gCAAgC,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,6BAA6B,EAAE;IACxG,EAAE,OAAO,EAAE,oCAAoC,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,wBAAwB,EAAE;IAEzG,8BAA8B;IAC9B,EAAE,OAAO,EAAE,kBAAkB,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,4BAA4B,EAAE;IACzF,EAAE,OAAO,EAAE,oBAAoB,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,mBAAmB,EAAE;IAClF,EAAE,OAAO,EAAE,iCAAiC,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,2CAA2C,EAAE;IAC3H,EAAE,OAAO,EAAE,iCAAiC,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,2CAA2C,EAAE;IAC3H,EAAE,OAAO,EAAE,cAAc,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,oCAAoC,EAAE;IAE/F,kBAAkB;IAClB,EAAE,OAAO,EAAE,oBAAoB,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,mBAAmB,EAAE;IACtF,EAAE,OAAO,EAAE,cAAc,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,4BAA4B,EAAE;IACvF,EAAE,OAAO,EAAE,kBAAkB,EAAE,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,oBAAoB,EAAE;IAErF,iCAAiC;IACjC,EAAE,OAAO,EAAE,+BAA+B,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,4BAA4B,EAAE;IACtG,EAAE,OAAO,EAAE,0BAA0B,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,wBAAwB,EAAE;IAE7F,6BAA6B;IAC7B,EAAE,OAAO,EAAE,2BAA2B,EAAE,KAAK,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,EAAE;IACjG,EAAE,OAAO,EAAE,wBAAwB,EAAE,KAAK,EAAE,KAAK,EAAE,WAAW,EAAE,gBAAgB,EAAE;CACnF,CAAC;AAEF,6DAA6D;AAC7D,MAAM,eAAe,GAA+C;IAClE,EAAE,OAAO,EAAE,0DAA0D,EAAE,WAAW,EAAE,kBAAkB,EAAE;IACxG,EAAE,OAAO,EAAE,8DAA8D,EAAE,WAAW,EAAE,yBAAyB,EAAE;IACnH,EAAE,OAAO,EAAE,qDAAqD,EAAE,WAAW,EAAE,iBAAiB,EAAE;IAClG,EAAE,OAAO,EAAE,4BAA4B,EAAE,WAAW,EAAE,mBAAmB,EAAE;IAC3E,EAAE,OAAO,EAAE,gDAAgD,EAAE,WAAW,EAAE,sBAAsB,EAAE;IAClG,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,8BAA8B,EAAE;IAChF,EAAE,OAAO,EAAE,sBAAsB,EAAE,WAAW,EAAE,0BAA0B,EAAE;IAC5E,EAAE,OAAO,EAAE,4BAA4B,EAAE,WAAW,EAAE,aAAa,EAAE;IACrE,EAAE,OAAO,EAAE,4CAA4C,EAAE,WAAW,EAAE,WAAW,EAAE;CACpF,CAAC;AAEF,MAAM,UAAU,WAAW,CAAC,OAAe;IACzC,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,IAAI,QAAQ,GAAgB,MAAM,CAAC;IAEnC,KAAK,MAAM,IAAI,IAAI,kBAAkB,EAAE,CAAC;QACtC,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,EAAE,KAAK,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;YAClE,IAAI,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACtD,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC;YACxB,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;QACL,KAAK,EAAE,QAAQ;QACf,OAAO;QACP,OAAO,EAAE,QAAQ,KAAK,UAAU;KACjC,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,OAAe;IACzC,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,IAAI,QAAQ,GAAgB,MAAM,CAAC;IAEnC,KAAK,MAAM,IAAI,IAAI,eAAe,EAAE,CAAC;QACnC,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,YAAY,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;YAC7C,IAAI,YAAY,CAAC,MAAM,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAClD,QAAQ,GAAG,MAAM,CAAC;YACpB,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;QACL,KAAK,EAAE,QAAQ;QACf,OAAO;QACP,OAAO,EAAE,KAAK;KACf,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,YAAY,CAC1B,QAAgB,EAChB,KAA8B;IAE9B,MAAM,UAAU,GAAa,EAAE,CAAC;IAChC,IAAI,QAAQ,GAAgB,MAAM,CAAC;IAEnC,qBAAqB;IACrB,IAAI,QAAQ,KAAK,MAAM,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QAC7D,MAAM,OAAO,GAAG,WAAW,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC3C,UAAU,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;QACpC,IAAI,YAAY,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC;YAAE,QAAQ,GAAG,OAAO,CAAC,KAAK,CAAC;IACrF,CAAC;IAED,gCAAgC;IAChC,IAAI,QAAQ,KAAK,YAAY,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QACnE,MAAM,WAAW,GAAG,WAAW,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC/C,UAAU,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,OAAO,CAAC,CAAC;QACxC,IAAI,YAAY,CAAC,WAAW,CAAC,KAAK,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC;YAAE,QAAQ,GAAG,WAAW,CAAC,KAAK,CAAC;IAC7F,CAAC;IAED,0CAA0C;IAC1C,MAAM,QAAQ,GAAG,KAAK,CAAC,SAA+B,CAAC;IACvD,IAAI,QAAQ,EAAE,CAAC;QACb,IAAI,2BAA2B,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC/C,UAAU,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;YAC1D,IAAI,YAAY,CAAC,QAAQ,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC;gBAAE,QAAQ,GAAG,QAAQ,CAAC;QAC3E,CAAC;QACD,IAAI,iCAAiC,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACrD,UAAU,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;YACzD,IAAI,YAAY,CAAC,MAAM,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC;gBAAE,QAAQ,GAAG,MAAM,CAAC;QACvE,CAAC;IACH,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,EAAE,QAAQ,KAAK,UAAU,EAAE,CAAC;AACpF,CAAC;AAED,MAAM,UAAU,oBAAoB,CAAC,MAA0B;IAC7D,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO;IAExC,MAAM,UAAU,GAAG;QACjB,QAAQ,EAAE,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI;QAChC,IAAI,EAAE,KAAK,CAAC,GAAG,CAAC,IAAI;QACpB,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,GAAG,EAAE,KAAK,CAAC,GAAG;QACd,IAAI,EAAE,KAAK,CAAC,KAAK;KAClB,CAAC;IAEF,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,iBAAiB,MAAM,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,CAAC;IACrF,KAAK,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QAC/B,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;IACxC,CAAC;IACD,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,6CAA6C,CAAC,CAAC,CAAC;IAChF,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,KAAkB;IACtC,OAAO,EAAE,IAAI,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC;AACrE,CAAC"}

package/dist/sessions.d.ts

@@ -0,0 +1,21 @@
+import type { Message } from './types.js';
+export interface Session {
+    id: string;
+    name: string;
+    cwd: string;
+    model: string;
+    provider: string;
+    messages: Message[];
+    createdAt: string;
+    updatedAt: string;
+    tokenCount: number;
+    turnCount: number;
+    mode: string;
+}
+export declare function generateSessionId(): string;
+export declare function saveSession(session: Session): Promise<void>;
+export declare function loadSession(id: string): Session | null;
+export declare function listSessions(): Pick<Session, 'id' | 'name' | 'cwd' | 'model' | 'createdAt' | 'updatedAt' | 'turnCount'>[];
+export declare function deleteSession(id: string): boolean;
+export declare function createSession(cwd: string, model: string, provider: string, mode: string): Session;
+export declare function autoSave(session: Session, messages: Message[]): Promise<void>;