corifeus-builder 2025.4.135 → 2026.4.138

package/README.md

@@ -5,7 +5,7 @@
 
 
 ---
-# 🏗️ Corifeus Builder v2025.4.135
+# 🏗️ Corifeus Builder v2026.4.138
 
 
   
@@ -21,7 +21,7 @@
 ### 🛠️ Built on NodeJs version
 
 ```txt
-v22.13.1
+v24.14.1
 ```
 
 
@@ -155,7 +155,7 @@ All my domains, including [patrikx3.com](https://patrikx3.com), [corifeus.eu](ht
 ---
 
 
-[**CORIFEUS-BUILDER**](https://corifeus.com/corifeus-builder) Build v2025.4.135
+[**CORIFEUS-BUILDER**](https://corifeus.com/corifeus-builder) Build v2026.4.138
 
  [![NPM](https://img.shields.io/npm/v/corifeus-builder.svg)](https://www.npmjs.com/package/corifeus-builder)  [![Donate for PatrikX3 / P3X](https://img.shields.io/badge/Donate-PatrikX3-003087.svg)](https://www.paypal.com/cgi-bin/webscr?cmd=_s-xclick&hosted_button_id=QZVM4V6HVZJW6)  [![Contact Corifeus / P3X](https://img.shields.io/badge/Contact-P3X-ff9900.svg)](https://www.patrikx3.com/en/front/contact) [![Like Corifeus @ Facebook](https://img.shields.io/badge/LIKE-Corifeus-3b5998.svg)](https://www.facebook.com/corifeus.software)
 

package/package.json

@@ -1,11 +1,11 @@
 {
     "name": "corifeus-builder",
-    "version": "2025.4.135",
+    "version": "2026.4.138",
     "corifeus": {
         "icon": "fas fa-gavel",
         "code": "Make",
         "publish": true,
-        "nodejs": "v22.13.1",
+        "nodejs": "v24.14.1",
         "reponame": "corifeus-builder",
         "opencollective": false,
         "build": true
@@ -33,10 +33,10 @@
     },
     "homepage": "https://corifeus.com/corifeus-builder",
     "dependencies": {
-        "corifeus-utils": "^2025.4.120",
+        "corifeus-utils": "^2025.4.123",
         "download": "^8.0.0",
         "extract-zip": "^2.0.1",
-        "fs-extra": "^11.3.0",
+        "fs-extra": "^11.3.4",
         "github-api": "^3.4.0",
         "glob": "^8.0.3",
         "glob-promise": "^6.0.7",
@@ -46,15 +46,15 @@
         "grunt-contrib-htmlmin": "^3.1.0",
         "grunt-contrib-watch": "^1.1.0",
         "jit-grunt": "^0.10.0",
-        "lodash": "^4.17.21",
+        "lodash": "^4.18.1",
         "mkdirp": "^3.0.1",
-        "mocha": "^11.1.0",
+        "mocha": "^11.7.5",
         "mz": "^2.7.0",
-        "npm": "^11.1.0",
-        "npm-check-updates": "^17.1.14",
+        "npm": "^11.12.1",
+        "npm-check-updates": "^20.0.0",
         "should": "^13.2.3",
         "time-grunt": "^2.0.0",
-        "yaml": "^2.7.0"
+        "yaml": "^2.8.3"
     },
     "devDependencies": {
         "twemoji": "^14.0.2"

package/src/loader.js

@@ -43,7 +43,11 @@ class loader {
         require('./replaces')(options, pkg);
 
         grunt.config.merge(config);
-        Object.keys(task).forEach((taskItem) => task[taskItem](grunt))
+        Object.keys(task).forEach((taskItem) => {
+            if (typeof task[taskItem] === 'function') {
+                task[taskItem](grunt)
+            }
+        })
 
         grunt.registerTask('cory:kill', function () {
             process.exit(1);

package/src/task/changelog/changelog.js

@@ -0,0 +1,263 @@
+const fs = require('fs').promises
+const fsSync = require('fs')
+const path = require('path')
+const { execSync } = require('child_process')
+
+const getCommitsSinceLastBump = (repoDir) => {
+    try {
+        const bumps = execSync(
+            'git log --oneline --grep="bump version" --grep="chore: bump" --grep="chore(release):" --format="%H" -2',
+            { cwd: repoDir, encoding: 'utf-8' }
+        ).trim().split('\n').filter(Boolean)
+
+        if (bumps.length >= 1) {
+            const afterBump = execSync(
+                `git log --oneline --no-merges ${bumps[0]}..HEAD`,
+                { cwd: repoDir, encoding: 'utf-8' }
+            ).trim()
+            if (afterBump) return afterBump
+        }
+
+        if (bumps.length >= 2) {
+            const log = execSync(
+                `git log --oneline --no-merges ${bumps[1]}..${bumps[0]}`,
+                { cwd: repoDir, encoding: 'utf-8' }
+            ).trim()
+            if (log) return log
+        }
+    } catch (e) {}
+
+    try {
+        return execSync('git log --oneline --no-merges -20', { cwd: repoDir, encoding: 'utf-8' }).trim()
+    } catch (e) {
+        return ''
+    }
+}
+
+const getLastPublishedVersion = async (packageName, repoDir) => {
+    const nodeModulesPkgPath = path.resolve(repoDir, 'node_modules', packageName, 'package.json')
+    try {
+        const content = await fs.readFile(nodeModulesPkgPath, 'utf8')
+        return JSON.parse(content).version
+    } catch (e) {
+        return null
+    }
+}
+
+const getCommitForVersion = (repoDir, version) => {
+    try {
+        const commit = execSync(
+            `git log --all --oneline --grep="v${version}" --grep="${version}" --format="%H" -1`,
+            { cwd: repoDir, encoding: 'utf-8' }
+        ).trim()
+        if (commit) return commit
+    } catch (e) {}
+
+    try {
+        const commit = execSync(
+            `git log --all --oneline -S '"version": "${version}"' --format="%H" -- package.json | tail -1`,
+            { cwd: repoDir, encoding: 'utf-8' }
+        ).trim()
+        if (commit) return commit
+    } catch (e) {}
+
+    return null
+}
+
+/**
+ * Collect git logs from multiple repos.
+ *
+ * @param {Object} options
+ * @param {string} options.cwd - project root
+ * @param {Array<{dir: string, npmName?: string}>} [options.repos] - workspace repos (defaults to single repo)
+ */
+const collectLogs = async (options) => {
+    const { cwd, repos } = options
+
+    if (!repos || repos.length === 0) {
+        const log = getCommitsSinceLastBump(cwd)
+        return log ? [log] : []
+    }
+
+    const logs = []
+    for (const repoCfg of repos) {
+        const repoDir = path.resolve(cwd, repoCfg.dir)
+        try {
+            if (repoCfg.npmName) {
+                const bumpLog = getCommitsSinceLastBump(repoDir)
+                if (bumpLog) {
+                    logs.push(`## ${repoCfg.dir}\n${bumpLog}`)
+                    continue
+                }
+
+                const lastPublishedVersion = await getLastPublishedVersion(repoCfg.npmName, cwd)
+                let sinceCommit = null
+                if (lastPublishedVersion) {
+                    sinceCommit = getCommitForVersion(repoDir, lastPublishedVersion)
+                }
+
+                let logCmd
+                if (sinceCommit) {
+                    logCmd = `git log --oneline --no-merges ${sinceCommit}..HEAD`
+                } else {
+                    let lastTag = ''
+                    try {
+                        lastTag = execSync('git describe --tags --abbrev=0 2>/dev/null', { cwd: repoDir, encoding: 'utf-8' }).trim()
+                    } catch (e) {}
+                    logCmd = lastTag ? `git log --oneline --no-merges ${lastTag}..HEAD` : 'git log --oneline --no-merges -20'
+                }
+                const log = execSync(logCmd, { cwd: repoDir, encoding: 'utf-8' }).trim()
+                if (log) logs.push(`## ${repoCfg.dir}\n${log}`)
+            } else {
+                const bumpLog = getCommitsSinceLastBump(repoDir)
+                if (bumpLog) {
+                    logs.push(`## ${repoCfg.dir}\n${bumpLog}`)
+                    continue
+                }
+                let lastTag = ''
+                try {
+                    lastTag = execSync('git describe --tags --abbrev=0 2>/dev/null', { cwd: repoDir, encoding: 'utf-8' }).trim()
+                } catch (e) {}
+                const logCmd = lastTag ? `git log --oneline --no-merges ${lastTag}..HEAD` : 'git log --oneline --no-merges -20'
+                const log = execSync(logCmd, { cwd: repoDir, encoding: 'utf-8' }).trim()
+                if (log) logs.push(`## ${repoCfg.dir}\n${log}`)
+            }
+        } catch (e) {
+            console.error(`Failed to get git log for ${repoCfg.dir}:`, e.message)
+        }
+    }
+    return logs
+}
+
+/**
+ * Generate changelog entry using Claude AI and update change-log.md
+ *
+ * @param {Object} options
+ * @param {string} options.cwd - project root
+ * @param {string} options.projectName - e.g. "P3X Network MCP" or "P3X Redis UI"
+ * @param {Array<{dir: string, npmName?: string}>} [options.repos] - workspace repos
+ */
+const generateChangelog = async (options) => {
+    const { cwd, projectName, repos } = options
+    const pkg = JSON.parse(await fs.readFile(path.resolve(cwd, 'package.json'), 'utf-8'))
+    const version = pkg.version
+    const today = new Date().toLocaleDateString('en-US', { month: '2-digit', day: '2-digit', year: 'numeric' })
+    const changelogPath = path.resolve(cwd, 'change-log.md')
+
+    const logs = await collectLogs({ cwd, repos })
+    const allLogs = logs.join('\n\n')
+    if (!allLogs) {
+        console.log('No new commits for changelog')
+        return
+    }
+
+    const existingChangelog = await fs.readFile(changelogPath, 'utf-8')
+    let previousEntry = ''
+    const prevMatch = existingChangelog.match(/### v[\d.]+\nReleased on [^\n]+\n([\s\S]*?)(?=\n### v|\n$)/)
+    if (prevMatch) {
+        previousEntry = prevMatch[0]
+    }
+
+    let changelogEntry = ''
+    try {
+        const repoNote = repos && repos.length > 1
+            ? `- The commits come from MULTIPLE repos (${repos.map(r => r.dir).join(', ')}) — include significant changes from ALL repos, not just the parent`
+            : ''
+
+        const prompt = `Generate a changelog entry for version v${version} of ${projectName}.
+Based on these recent git commits, write changelog bullet points.
+
+${allLogs}
+
+IMPORTANT: The following is the PREVIOUS version's changelog entry. Do NOT repeat any of these items. Only include changes that are NEW in this version:
+
+${previousEntry}
+
+Rules:
+- Use this EXACT format:
+### v${version}
+Released on ${today}
+* CATEGORY: Description.
+
+- Valid categories: FEATURE, BUGFIX, PERF, REFACTOR, DOCS, CHORE
+- Each bullet starts with "* CATEGORY: " (with the asterisk)
+- Only include user-facing or significant changes
+- SKIP these types of commits entirely:
+  - Version bumps, submodule updates, typo fixes, changelog updates
+  - Anything related to the secure/ folder
+  - Internal CI/CD, build pipeline, or release automation changes
+  - Co-Authored-By lines or merge commits
+- Keep descriptions concise (one line each)
+- Do NOT repeat anything from the previous changelog entry shown above
+- Do NOT use markdown code fences
+- Output ONLY the changelog entry starting with ### — absolutely NO extra text
+${repoNote}
+- If there are many feature commits, list each feature separately`
+
+        const tmpPrompt = path.resolve(cwd, '.changelog-prompt.tmp')
+        await fs.writeFile(tmpPrompt, prompt)
+        changelogEntry = execSync(
+            `cat ${JSON.stringify(tmpPrompt)} | claude -p - --no-session-persistence`,
+            { encoding: 'utf-8', timeout: 60000 }
+        ).trim()
+        try { await fs.unlink(tmpPrompt) } catch (e) {}
+
+        const headerIndex = changelogEntry.indexOf('### v')
+        if (headerIndex > 0) {
+            changelogEntry = changelogEntry.substring(headerIndex)
+        }
+
+        const lines = changelogEntry.split('\n')
+        const lastBulletIndex = lines.reduce((last, line, i) => line.startsWith('* ') ? i : last, -1)
+        if (lastBulletIndex >= 0) {
+            changelogEntry = lines.slice(0, lastBulletIndex + 1).join('\n')
+        }
+
+        console.log('Claude generated changelog:\n' + changelogEntry)
+    } catch (e) {
+        console.error('Claude changelog generation failed, using fallback:', e.message)
+        changelogEntry = `### v${version}\nReleased on ${today}\n* CHORE: Release v${version}.`
+    }
+
+    let changelog = await fs.readFile(changelogPath, 'utf-8')
+    const headerEnd = '[//]: #@corifeus-header:end'
+    const headerEndIndex = changelog.indexOf(headerEnd)
+    if (headerEndIndex !== -1) {
+        const insertPos = headerEndIndex + headerEnd.length
+        changelog = changelog.slice(0, insertPos) + '\n\n' + changelogEntry + '\n' + changelog.slice(insertPos).replace(/^\n+/, '\n')
+        await fs.writeFile(changelogPath, changelog)
+        console.log(`Changelog updated for v${version}`)
+    } else {
+        console.error('Could not find header end marker in change-log.md')
+    }
+
+    execSync(`git add change-log.md && git commit -m "chore: update changelog for v${version}"`, {
+        cwd,
+        stdio: 'inherit',
+    })
+
+    return changelogEntry
+}
+
+/**
+ * Get changelog entry for a specific version
+ */
+const getChangelogEntry = (changelogPath, version) => {
+    try {
+        const changelog = fsSync.readFileSync(changelogPath, 'utf-8')
+        const versionEscaped = version.replace(/\./g, '\\.')
+        const regex = new RegExp(`### v${versionEscaped}\\n([\\s\\S]*?)(?=\\n### v|\\n\\[//\\]|$)`)
+        const match = changelog.match(regex)
+        if (match) {
+            return `### v${version}\n${match[1].trim()}`
+        }
+    } catch (e) {}
+    return ''
+}
+
+module.exports = {
+    generateChangelog,
+    getChangelogEntry,
+    collectLogs,
+    getCommitsSinceLastBump,
+}

package/src/task/changelog/github-release.js

@@ -0,0 +1,126 @@
+const https = require('https')
+const { getChangelogEntry } = require('./changelog')
+
+const githubRequest = (token, method, apiPath, body) => new Promise((resolve, reject) => {
+    const options = {
+        hostname: 'api.github.com',
+        path: apiPath,
+        method,
+        headers: {
+            'Authorization': `Bearer ${token}`,
+            'Accept': 'application/vnd.github+json',
+            'User-Agent': 'corifeus-builder',
+            'X-GitHub-Api-Version': '2022-11-28',
+        },
+    }
+    if (body) {
+        options.headers['Content-Type'] = 'application/json'
+    }
+    const req = https.request(options, (res) => {
+        let data = ''
+        res.on('data', chunk => data += chunk)
+        res.on('end', () => {
+            try { resolve({ status: res.statusCode, data: JSON.parse(data) }) }
+            catch { resolve({ status: res.statusCode, data }) }
+        })
+    })
+    req.on('error', reject)
+    if (body) req.write(JSON.stringify(body))
+    req.end()
+})
+
+/**
+ * Create or update a GitHub release with changelog.
+ *
+ * @param {Object} options
+ * @param {string} options.token - GitHub token
+ * @param {string} options.owner - GitHub owner (e.g. "patrikx3")
+ * @param {string} options.repo - GitHub repo name (e.g. "network-mcp")
+ * @param {string} options.version - version string (e.g. "2026.4.105")
+ * @param {string} options.projectName - display name (e.g. "P3X Network MCP")
+ * @param {string} options.changelogPath - path to change-log.md
+ * @param {string} [options.extraBody] - extra content to append to release body
+ */
+const createOrUpdateRelease = async (options) => {
+    const { token, owner, repo, version, projectName, changelogPath, extraBody } = options
+    const releaseTag = `v${version}`
+
+    try {
+        const changelogEntry = getChangelogEntry(changelogPath, version)
+        const bodyParts = [changelogEntry]
+        if (extraBody) bodyParts.push(extraBody)
+        const releaseBody = bodyParts.filter(Boolean).join('\n\n')
+
+        // Check if release exists
+        const listRes = await githubRequest(token, 'GET', `/repos/${owner}/${repo}/releases?per_page=10`)
+        if (listRes.status === 200) {
+            const existing = listRes.data.find(r => r.tag_name === releaseTag)
+            if (existing) {
+                if (existing.draft) {
+                    // Promote draft to published
+                    const patchRes = await githubRequest(token, 'PATCH', `/repos/${owner}/${repo}/releases/${existing.id}`, {
+                        tag_name: releaseTag,
+                        draft: false,
+                        body: releaseBody,
+                        name: `${projectName} ${releaseTag}`,
+                    })
+                    if (patchRes.status === 200) {
+                        console.log(`GitHub release ${releaseTag} promoted from draft to published`)
+                    } else {
+                        console.error(`Failed to promote release: ${patchRes.status}`, patchRes.data)
+                    }
+                } else {
+                    // Update existing
+                    const patchRes = await githubRequest(token, 'PATCH', `/repos/${owner}/${repo}/releases/${existing.id}`, {
+                        body: releaseBody,
+                        name: `${projectName} ${releaseTag}`,
+                    })
+                    if (patchRes.status === 200) {
+                        console.log(`GitHub release ${releaseTag} updated with changelog`)
+                    } else {
+                        console.error(`Failed to update release: ${patchRes.status}`, patchRes.data)
+                    }
+                }
+                return
+            }
+
+            // Check for untagged draft (electron-builder)
+            const untaggedDraft = listRes.data.find(r => r.draft === true && r.tag_name.startsWith('untagged'))
+            if (untaggedDraft) {
+                const patchRes = await githubRequest(token, 'PATCH', `/repos/${owner}/${repo}/releases/${untaggedDraft.id}`, {
+                    tag_name: releaseTag,
+                    draft: false,
+                    body: releaseBody,
+                    name: `${projectName} ${releaseTag}`,
+                })
+                if (patchRes.status === 200) {
+                    console.log(`GitHub untagged draft promoted to ${releaseTag}`)
+                } else {
+                    console.error(`Failed to promote untagged draft: ${patchRes.status}`, patchRes.data)
+                }
+                return
+            }
+        }
+
+        // Create new release
+        const createRes = await githubRequest(token, 'POST', `/repos/${owner}/${repo}/releases`, {
+            tag_name: releaseTag,
+            name: `${projectName} ${releaseTag}`,
+            body: releaseBody,
+            draft: false,
+            prerelease: false,
+        })
+        if (createRes.status === 201) {
+            console.log(`GitHub release ${releaseTag} created: ${createRes.data.html_url}`)
+        } else {
+            console.error(`Failed to create release: ${createRes.status}`, createRes.data)
+        }
+    } catch (e) {
+        console.error('Failed to manage GitHub release:', e.message)
+    }
+}
+
+module.exports = {
+    createOrUpdateRelease,
+    githubRequest,
+}

package/src/task/changelog/index.js

@@ -0,0 +1,10 @@
+const { generateChangelog, getChangelogEntry } = require('./changelog')
+const { createOrUpdateRelease, githubRequest } = require('./github-release')
+
+// Export as a library (not a grunt task) — tokens must come from secure/ in each project
+module.exports = {
+    generateChangelog,
+    getChangelogEntry,
+    createOrUpdateRelease,
+    githubRequest,
+}

package/src/task/index.js

@@ -6,4 +6,5 @@ module.exports = {
     "generate-tasks": require('./generate-tasks'),
     "raw-npm-angular": require('./raw-npm-angular'),
     "inject": require('./inject'),
+    "changelog": require('./changelog'),
 }

package/src/task/npm/npm.js

@@ -84,6 +84,32 @@ module.exports = async (pkgFile) => {
 
     const newPkgFile = JSON.stringify(pkg, null, 4);
     await fs.writeFile(pkgFile, newPkgFile)
+
+    // Auto-ensure .npmignore protects sensitive directories
+    const cwd = require('path').dirname(pkgFile)
+    const npmignorePath = require('path').join(cwd, '.npmignore')
+    const protectedDirs = ['secure/', 'agents/', '.claude/', '.vscode/', '.codex/']
+    const existingDirs = []
+    for (const dir of protectedDirs) {
+        try {
+            await fs.access(require('path').join(cwd, dir.replace('/', '')))
+            existingDirs.push(dir)
+        } catch (e) {}
+    }
+    if (existingDirs.length > 0) {
+        let npmignore = ''
+        try {
+            npmignore = await fs.readFile(npmignorePath, 'utf-8')
+        } catch (e) {}
+        const missing = existingDirs.filter(dir => !npmignore.split('\n').some(line => line.trim() === dir || line.trim() === dir.replace('/', '')))
+        if (missing.length > 0) {
+            const addition = missing.join('\n')
+            npmignore = npmignore ? npmignore.trimEnd() + '\n' + addition + '\n' : addition + '\n'
+            await fs.writeFile(npmignorePath, npmignore)
+            console.log(`Auto-added to .npmignore: ${missing.join(', ')}`)
+        }
+    }
+
     return pkg;
 }