cursor-guard 4.5.6 → 4.5.8

package/ROADMAP.md

@@ -3,8 +3,8 @@
 > 本文档描述 cursor-guard 从 V2 到 V7 的长期演进方向。
 > 每一代向下兼容，低版本功能永远不废弃。
 >
-> **当前版本**：`V4.5.6`（V4 最终版）  
-> **文档状态**：`V2` ~ `V4.5.6` 已完成交付（含 V5 intent/audit 基础），`V5` 主体规划中
+> **当前版本**：`V4.5.8`（V4 最终版）  
+> **文档状态**：`V2` ~ `V4.5.8` 已完成交付（含 V5 intent/audit 基础），`V5` 主体规划中
 
 ## 阅读导航
 
@@ -463,6 +463,8 @@ V4 经过 4 轮系统性代码审查，修复了以下关键问题：
 | V4.5.3 | **告警历史 UX 优化 + 备份结构化文件表格**：见下方详细说明 | ✅ |
 | V4.5.4 | **Shadow 硬链接增量优化 + always_watch 强保护模式**：见下方详细说明 | ✅ |
 | V4.5.6 | **Bug 修复 + 告警 UX + init 优化**：见下方详细说明 | ✅ |
+| V4.5.7 | **文件详情 Modal 修复 + Dashboard 端口复用**：见下方详细说明 | ✅ |
+| V4.5.8 | **Dashboard 版本更新检测**：见下方详细说明 | ✅ |
 
 #### V4.4.1 详细内容
 
@@ -652,6 +654,35 @@ V4 经过 4 轮系统性代码审查，修复了以下关键问题：
 | `cursor-guard-init` 自动创建配置 | init 流程新增 Step 4/5：若 `.cursor-guard.json` 不存在，自动从 `cursor-guard.example.json` 复制为项目根默认配置。升级场景下保留现有配置 |
 | `backup_interval_seconds` 兼容别名 | `loadConfig` 支持 `backup_interval_seconds` 作为 `auto_backup_interval_seconds` 的别名（带 deprecation 警告） |
 
+#### V4.5.7 详细内容
+
+**Bug 修复**：
+
+| 问题 | 根因 | 修复 |
+|------|------|------|
+| 告警"查看文件详情"Modal 点不开 | 事件处理中 `state.pageData?.alerts` 路径错误，告警数据实际存储在 `state.pageData.dashboard.alerts` | 修正为 `state.pageData?.dashboard?.alerts`，同时修正 projectPath 取值路径 |
+
+**Dashboard 服务端口复用（单例模式）**：
+
+| 改进 | 说明 |
+|------|------|
+| 模块级单例 `_instance` | `startDashboardServer` 首次调用时创建 HTTP 服务并缓存到 `_instance`（含 server/port/registry/token） |
+| 热加载新项目 | 后续调用检测到 `_instance` 已存在时，不创建新服务，而是调用 `_mergeProjects` 将新路径合并到已有 registry 中 |
+| 去重机制 | `_mergeProjects` 按 `_path.toLowerCase()` 去重，相同项目不重复注册 |
+| 透明生效 | registry 是引用传递，已运行的 HTTP handler 闭包自动读取最新 registry，无需重启服务 |
+| 导出 `getInstance()` | 外部可通过 `getInstance()` 获取当前运行实例的 server/port/registry 信息 |
+
+#### V4.5.8 详细内容
+
+**Dashboard 版本更新检测**：
+
+| 组件 | 说明 |
+|------|------|
+| `/api/version` 端点 | 新增无需 project id 的公共 API。返回 `serverVersion`（进程启动时 require cache 锁定）和 `installedVersion`（实时从磁盘读取 `package.json`），以及 `updateAvailable` 布尔值 |
+| 前端版本检查 | `init()` 完成后异步调用 `checkServerVersion()`，非阻塞，失败静默 |
+| 升级横幅 | `updateAvailable === true` 时，在 topbar 下方滑入黄色横幅，显示版本差异和重启提示。带"如何重启"按钮（展开命令示例）和关闭按钮 |
+| 双语支持 | 新增 `upgrade.banner` / `upgrade.dismiss` / `upgrade.restart` / `upgrade.hint` 四组 i18n key |
+
 #### V4.5.x 新增配置参考
 
 | 字段 | 类型 | 默认值 | 引入版本 | 说明 |

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cursor-guard",
-  "version": "4.5.6",
+  "version": "4.5.8",
   "description": "Protects code from accidental AI overwrite or deletion in Cursor IDE — mandatory pre-write snapshots, review-before-apply, local Git safety net, and deterministic recovery. | 保护代码免受 Cursor AI 代理意外覆写或删除——强制写前快照、预览再执行、本地 Git 安全网、确定性恢复。",
   "keywords": [
     "cursor",

package/references/dashboard/public/app.js

@@ -140,6 +140,11 @@ const I18N = {
     'error.sectionFailed':  'This section failed to load',
     'empty.noData':         'No data available',
 
+    'upgrade.banner':       'New version {installed} available (current server: {server}). Please restart the Dashboard service to load the latest features.',
+    'upgrade.dismiss':      'Dismiss',
+    'upgrade.restart':      'How to restart',
+    'upgrade.hint':         'Stop the current process (Ctrl+C), then run: cursor-guard-backup --path <dir> --dashboard',
+
     'strategy.git':    'Git',
     'strategy.shadow': 'Shadow',
     'strategy.both':   'Both',
@@ -355,6 +360,11 @@ const I18N = {
     'error.sectionFailed':  '此区块加载失败',
     'empty.noData':         '暂无数据',
 
+    'upgrade.banner':       '检测到新版本 {installed}（当前服务: {server}），请重启 Dashboard 服务以加载最新功能',
+    'upgrade.dismiss':      '关闭',
+    'upgrade.restart':      '如何重启',
+    'upgrade.hint':         '停止当前进程 (Ctrl+C)，然后运行: cursor-guard-backup --path <目录> --dashboard',
+
     'strategy.git':    'Git',
     'strategy.shadow': '影子',
     'strategy.both':   '双重',
@@ -1540,10 +1550,10 @@ function setupEvents() {
     }
     const modalBtn = e.target.closest('[data-alert-files-modal]');
     if (modalBtn) {
-      const alerts = state.pageData?.alerts;
+      const alerts = state.pageData?.dashboard?.alerts;
       const files = alerts?.latest?.files || [];
       if (files.length > 0) {
-        const proj = state.pageData?.status?.config?.path || '';
+        const proj = state.pageData?.dashboard?.watcher?.path || '';
         openFileModal(t('modal.alertFiles'), files, proj, '');
       }
       return;
@@ -1580,6 +1590,38 @@ function setupEvents() {
   });
 }
 
+/* ── Version Check ────────────────────────────────────────── */
+
+async function checkServerVersion() {
+  try {
+    const data = await fetchJson('/api/version');
+    if (data.updateAvailable) showUpgradeBanner(data);
+  } catch { /* non-critical */ }
+}
+
+function showUpgradeBanner(data) {
+  if ($('#upgrade-banner')) return;
+  const banner = document.createElement('div');
+  banner.id = 'upgrade-banner';
+  banner.className = 'upgrade-banner';
+  banner.innerHTML = `
+    <span class="upgrade-banner-text">${t('upgrade.banner', { installed: esc(data.installedVersion), server: esc(data.serverVersion) })}</span>
+    <button class="upgrade-banner-hint-btn" title="${t('upgrade.hint')}">${t('upgrade.restart')}</button>
+    <button class="upgrade-banner-close" aria-label="${t('upgrade.dismiss')}">&times;</button>
+  `;
+  const topbar = $('#topbar');
+  topbar.parentNode.insertBefore(banner, topbar.nextSibling);
+  banner.querySelector('.upgrade-banner-close').addEventListener('click', () => banner.remove());
+  banner.querySelector('.upgrade-banner-hint-btn').addEventListener('click', () => {
+    const hint = banner.querySelector('.upgrade-banner-hint');
+    if (hint) { hint.remove(); return; }
+    const el = document.createElement('div');
+    el.className = 'upgrade-banner-hint';
+    el.innerHTML = `<code>${t('upgrade.hint')}</code>`;
+    banner.appendChild(el);
+  });
+}
+
 /* ── Init ─────────────────────────────────────────────────── */
 
 async function init() {
@@ -1595,6 +1637,7 @@ async function init() {
     await loadPageData({ progressive: true });
     renderAll();
     startRefresh();
+    checkServerVersion();
   } catch (e) {
     showGlobalError(e.message);
   }

package/references/dashboard/public/style.css

@@ -118,6 +118,74 @@ body {
 
 #last-refresh { font-size: 12px; white-space: nowrap; opacity: .7; }
 
+/* ── Upgrade Banner ──────────────────────────────────────── */
+
+.upgrade-banner {
+  position: fixed;
+  top: var(--topbar-h);
+  left: 0; right: 0;
+  background: var(--yellow-bg);
+  border-bottom: 1px solid var(--yellow);
+  color: var(--yellow);
+  padding: 8px 24px;
+  font-size: 13px;
+  font-weight: 500;
+  display: flex;
+  align-items: center;
+  gap: 12px;
+  z-index: 49;
+  animation: slideDown 0.3s ease;
+}
+@keyframes slideDown {
+  from { transform: translateY(-100%); opacity: 0; }
+  to   { transform: translateY(0); opacity: 1; }
+}
+.upgrade-banner-text {
+  flex: 1;
+}
+.upgrade-banner-hint-btn {
+  padding: 3px 10px;
+  font-size: 11px;
+  border: 1px solid var(--yellow);
+  border-radius: var(--radius-sm);
+  background: transparent;
+  color: var(--yellow);
+  cursor: pointer;
+  white-space: nowrap;
+  transition: all 0.15s;
+}
+.upgrade-banner-hint-btn:hover {
+  background: var(--yellow);
+  color: var(--bg);
+}
+.upgrade-banner-close {
+  background: none;
+  border: none;
+  color: var(--yellow);
+  font-size: 18px;
+  cursor: pointer;
+  padding: 0 4px;
+  opacity: 0.7;
+  transition: opacity 0.15s;
+}
+.upgrade-banner-close:hover { opacity: 1; }
+.upgrade-banner-hint {
+  width: 100%;
+  margin-top: 6px;
+  padding: 6px 10px;
+  background: rgba(0,0,0,0.2);
+  border-radius: var(--radius-sm);
+  font-size: 12px;
+}
+.upgrade-banner-hint code {
+  font-family: var(--font-mono);
+  font-size: 11px;
+  color: var(--text-primary);
+}
+.upgrade-banner + main {
+  margin-top: 38px;
+}
+
 /* ── Buttons ──────────────────────────────────────────────── */
 
 .btn {

package/references/dashboard/server.js

@@ -11,6 +11,8 @@ const { runDiagnostics } = require('../lib/core/doctor');
 const { listBackups, getBackupFiles } = require('../lib/core/backups');
 
 const PUBLIC_DIR = path.join(__dirname, 'public');
+const PKG_PATH = path.resolve(__dirname, '..', '..', 'package.json');
+const SERVER_VERSION = require('../../package.json').version;
 const DEFAULT_PORT = 3120;
 const MAX_PORT_RETRIES = 10;
 const ALLOWED_HOSTS = /^(127\.0\.0\.1|localhost)(:\d+)?$/;
@@ -125,6 +127,19 @@ function serveStatic(reqUrl, res, serverToken) {
 /* ── API routes ─────────────────────────────────────────────── */
 
 function handleApi(pathname, query, registry, res) {
+  if (pathname === '/api/version') {
+    let installedVersion = SERVER_VERSION;
+    try {
+      const pkg = JSON.parse(fs.readFileSync(PKG_PATH, 'utf-8'));
+      installedVersion = pkg.version;
+    } catch { /* fallback to server version */ }
+    return json(res, {
+      serverVersion: SERVER_VERSION,
+      installedVersion,
+      updateAvailable: SERVER_VERSION !== installedVersion,
+    });
+  }
+
   if (pathname === '/api/projects') {
     const list = [...registry.values()].map(({ id, name, pathLabel }) => ({ id, name, pathLabel }));
     return json(res, list);
@@ -186,19 +201,47 @@ function handleApi(pathname, query, registry, res) {
   return notFound(res);
 }
 
-/* ── Server ─────────────────────────────────────────────────── */
+/* ── Server (singleton) ─────────────────────────────────────── */
+
+let _instance = null;
+
+function _mergeProjects(registry, paths) {
+  const seen = new Set([...registry.values()].map(p => p._path.toLowerCase()));
+  let maxIdx = registry.size;
+  let added = 0;
+  for (const raw of paths) {
+    const resolved = path.resolve(raw);
+    if (seen.has(resolved.toLowerCase())) continue;
+    seen.add(resolved.toLowerCase());
+    const id = `p${maxIdx++}`;
+    const name = path.basename(resolved) || resolved;
+    const label = resolved.length > 50 ? '...' + resolved.slice(-47) : resolved;
+    registry.set(id, { id, name, pathLabel: label, _path: resolved });
+    added++;
+  }
+  return added;
+}
 
 /**
- * Start the dashboard HTTP server.
- * Can be called standalone (CLI) or embedded (from watcher).
+ * Start the dashboard HTTP server, or hot-add projects to an existing instance.
+ * Uses a module-level singleton: subsequent calls reuse the same port and server,
+ * merging new project paths into the live registry.
  *
  * @param {string[]} paths - Project directories to serve
  * @param {object} [opts]
- * @param {number} [opts.port=3120] - Starting port
+ * @param {number} [opts.port=3120] - Starting port (ignored if server already running)
  * @param {boolean} [opts.silent=false] - Suppress banner output
  * @returns {Promise<{server: http.Server, port: number, registry: Map}>}
  */
 function startDashboardServer(paths, opts = {}) {
+  if (_instance) {
+    const added = _mergeProjects(_instance.registry, paths);
+    if (added > 0 && !opts.silent) {
+      console.log(`  [dashboard] Hot-added ${added} project(s) — total: ${_instance.registry.size} on port ${_instance.port}`);
+    }
+    return Promise.resolve(_instance);
+  }
+
   const port = opts.port || DEFAULT_PORT;
   const silent = opts.silent || false;
   const registry = buildRegistry(paths);
@@ -209,7 +252,6 @@ function startDashboardServer(paths, opts = {}) {
     let retries = 0;
 
     const server = http.createServer((req, res) => {
-      // DNS rebinding protection: reject unexpected Host headers
       const host = req.headers.host || '';
       if (!ALLOWED_HOSTS.test(host)) {
         res.writeHead(403);
@@ -224,7 +266,6 @@ function startDashboardServer(paths, opts = {}) {
       try { parsed = new URL(req.url, `http://${host}`); }
       catch { return notFound(res); }
 
-      // API endpoints require per-process token
       if (parsed.pathname.startsWith('/api/')) {
         const reqToken = parsed.searchParams.get('token');
         if (reqToken !== token) {
@@ -249,6 +290,7 @@ function startDashboardServer(paths, opts = {}) {
 
     server.on('listening', () => {
       const addr = server.address();
+      _instance = { server, port: addr.port, registry, token };
       if (!silent) {
         console.log('');
         console.log('  Cursor Guard Dashboard');
@@ -260,7 +302,7 @@ function startDashboardServer(paths, opts = {}) {
         }
         console.log('');
       }
-      resolve({ server, port: addr.port, registry });
+      resolve(_instance);
     });
 
     server.listen(currentPort, '127.0.0.1');
@@ -277,4 +319,4 @@ if (require.main === module) {
   });
 }
 
-module.exports = { startDashboardServer };
+module.exports = { startDashboardServer, getInstance: () => _instance };