cursor-guard 4.5.7 → 4.5.9

package/ROADMAP.md

@@ -3,8 +3,8 @@
 > 本文档描述 cursor-guard 从 V2 到 V7 的长期演进方向。
 > 每一代向下兼容，低版本功能永远不废弃。
 >
-> **当前版本**：`V4.5.7`（V4 最终版）  
-> **文档状态**：`V2` ~ `V4.5.7` 已完成交付（含 V5 intent/audit 基础），`V5` 主体规划中
+> **当前版本**：`V4.5.9`（V4 最终版）  
+> **文档状态**：`V2` ~ `V4.5.9` 已完成交付（含 V5 intent/audit 基础），`V5` 主体规划中
 
 ## 阅读导航
 
@@ -464,6 +464,7 @@ V4 经过 4 轮系统性代码审查，修复了以下关键问题：
 | V4.5.4 | **Shadow 硬链接增量优化 + always_watch 强保护模式**：见下方详细说明 | ✅ |
 | V4.5.6 | **Bug 修复 + 告警 UX + init 优化**：见下方详细说明 | ✅ |
 | V4.5.7 | **文件详情 Modal 修复 + Dashboard 端口复用**：见下方详细说明 | ✅ |
+| V4.5.8 | **Dashboard 版本更新检测 + 一键重启**：见下方详细说明 | ✅ |
 
 #### V4.4.1 详细内容
 
@@ -671,6 +672,19 @@ V4 经过 4 轮系统性代码审查，修复了以下关键问题：
 | 透明生效 | registry 是引用传递，已运行的 HTTP handler 闭包自动读取最新 registry，无需重启服务 |
 | 导出 `getInstance()` | 外部可通过 `getInstance()` 获取当前运行实例的 server/port/registry 信息 |
 
+#### V4.5.8 详细内容
+
+**Dashboard 版本更新检测 + 一键重启**：
+
+| 组件 | 说明 |
+|------|------|
+| `/api/version` 端点 | 返回 `serverVersion`（启动时 require cache）和 `installedVersion`（实时从磁盘读取），以及 `updateAvailable` 布尔值 |
+| `/api/restart` 端点 (POST) | 触发服务热重启：关闭旧 HTTP server → `clearGuardCache()` 清除所有 cursor-guard 模块的 require cache → 更新 `SERVER_VERSION` → 在同端口重启新 server |
+| 懒加载 core deps | `handleApi` 中 `getDashboard`/`runDiagnostics`/`listBackups`/`getBackupFiles` 改为通过 `coreDeps()` 懒加载，重启后自动加载新代码 |
+| 升级横幅 | `updateAvailable === true` 时显示黄色横幅。包含"一键重启"按钮（发送 POST → 轮询等待 → 自动 reload）、"手动重启"按钮（展开命令示例）、关闭按钮 |
+| 重启流程 | 前端发 POST `/api/restart` → 显示"正在重启..." → 每 500ms 轮询 `/api/version`（最多 10s）→ 服务就绪后 `location.reload()` 自动刷新页面 |
+| 双语支持 | 新增 `upgrade.*` 共 8 组 i18n key（banner/dismiss/restartNow/restart/hint/restarting/waiting/failed） |
+
 #### V4.5.x 新增配置参考
 
 | 字段 | 类型 | 默认值 | 引入版本 | 说明 |

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "cursor-guard",
-  "version": "4.5.7",
+  "version": "4.5.9",
   "description": "Protects code from accidental AI overwrite or deletion in Cursor IDE — mandatory pre-write snapshots, review-before-apply, local Git safety net, and deterministic recovery. | 保护代码免受 Cursor AI 代理意外覆写或删除——强制写前快照、预览再执行、本地 Git 安全网、确定性恢复。",
   "keywords": [
     "cursor",

package/references/dashboard/public/app.js

@@ -140,6 +140,15 @@ const I18N = {
     'error.sectionFailed':  'This section failed to load',
     'empty.noData':         'No data available',
 
+    'upgrade.banner':       'New version {installed} available (current server: {server}). Please restart the Dashboard service to load the latest features.',
+    'upgrade.dismiss':      'Dismiss',
+    'upgrade.restartNow':   'Restart Now',
+    'upgrade.restart':      'Manual restart',
+    'upgrade.hint':         'Stop the current process (Ctrl+C), then run: cursor-guard-backup --path <dir> --dashboard',
+    'upgrade.restarting':   'Restarting...',
+    'upgrade.waiting':      'Waiting for server...',
+    'upgrade.failed':       'Restart failed, try manually',
+
     'strategy.git':    'Git',
     'strategy.shadow': 'Shadow',
     'strategy.both':   'Both',
@@ -355,6 +364,15 @@ const I18N = {
     'error.sectionFailed':  '此区块加载失败',
     'empty.noData':         '暂无数据',
 
+    'upgrade.banner':       '检测到新版本 {installed}（当前服务: {server}），请重启 Dashboard 服务以加载最新功能',
+    'upgrade.dismiss':      '关闭',
+    'upgrade.restartNow':   '一键重启',
+    'upgrade.restart':      '手动重启',
+    'upgrade.hint':         '停止当前进程 (Ctrl+C)，然后运行: cursor-guard-backup --path <目录> --dashboard',
+    'upgrade.restarting':   '正在重启...',
+    'upgrade.waiting':      '等待服务就绪...',
+    'upgrade.failed':       '重启失败，请手动重启',
+
     'strategy.git':    'Git',
     'strategy.shadow': '影子',
     'strategy.both':   '双重',
@@ -1580,6 +1598,75 @@ function setupEvents() {
   });
 }
 
+/* ── Version Check ────────────────────────────────────────── */
+
+async function checkServerVersion() {
+  try {
+    const data = await fetchJson('/api/version');
+    if (data.updateAvailable) showUpgradeBanner(data);
+  } catch { /* non-critical */ }
+}
+
+function showUpgradeBanner(data) {
+  if ($('#upgrade-banner')) return;
+  const banner = document.createElement('div');
+  banner.id = 'upgrade-banner';
+  banner.className = 'upgrade-banner';
+  banner.innerHTML = `
+    <span class="upgrade-banner-text">${t('upgrade.banner', { installed: esc(data.installedVersion), server: esc(data.serverVersion) })}</span>
+    <button class="upgrade-banner-restart-btn">${t('upgrade.restartNow')}</button>
+    <button class="upgrade-banner-hint-btn">${t('upgrade.restart')}</button>
+    <button class="upgrade-banner-close" aria-label="${t('upgrade.dismiss')}">&times;</button>
+  `;
+  const topbar = $('#topbar');
+  topbar.parentNode.insertBefore(banner, topbar.nextSibling);
+  banner.querySelector('.upgrade-banner-close').addEventListener('click', () => banner.remove());
+  banner.querySelector('.upgrade-banner-hint-btn').addEventListener('click', () => {
+    const hint = banner.querySelector('.upgrade-banner-hint');
+    if (hint) { hint.remove(); return; }
+    const el = document.createElement('div');
+    el.className = 'upgrade-banner-hint';
+    el.innerHTML = `<code>${t('upgrade.hint')}</code>`;
+    banner.appendChild(el);
+  });
+  banner.querySelector('.upgrade-banner-restart-btn').addEventListener('click', () => {
+    restartServer(banner);
+  });
+}
+
+async function restartServer(banner) {
+  const btn = banner.querySelector('.upgrade-banner-restart-btn');
+  btn.disabled = true;
+  btn.textContent = t('upgrade.restarting');
+  banner.querySelector('.upgrade-banner-hint-btn').style.display = 'none';
+  banner.querySelector('.upgrade-banner-close').style.display = 'none';
+
+  try {
+    const sep = '/api/restart'.includes('?') ? '&' : '?';
+    const tokenParam = window.__GUARD_TOKEN__ ? `${sep}token=${window.__GUARD_TOKEN__}` : '';
+    await fetch('/api/restart' + tokenParam, { method: 'POST' });
+  } catch { /* server may close connection */ }
+
+  btn.textContent = t('upgrade.waiting');
+  let ready = false;
+  for (let i = 0; i < 20; i++) {
+    await new Promise(r => setTimeout(r, 500));
+    try {
+      const r = await fetch('/api/version' + (window.__GUARD_TOKEN__ ? '?token=' + window.__GUARD_TOKEN__ : ''));
+      if (r.ok) { ready = true; break; }
+    } catch { /* still restarting */ }
+  }
+
+  if (ready) {
+    location.reload();
+  } else {
+    btn.textContent = t('upgrade.failed');
+    btn.disabled = false;
+    banner.querySelector('.upgrade-banner-hint-btn').style.display = '';
+    banner.querySelector('.upgrade-banner-close').style.display = '';
+  }
+}
+
 /* ── Init ─────────────────────────────────────────────────── */
 
 async function init() {
@@ -1595,6 +1682,7 @@ async function init() {
     await loadPageData({ progressive: true });
     renderAll();
     startRefresh();
+    checkServerVersion();
   } catch (e) {
     showGlobalError(e.message);
   }

package/references/dashboard/public/style.css

@@ -118,6 +118,93 @@ body {
 
 #last-refresh { font-size: 12px; white-space: nowrap; opacity: .7; }
 
+/* ── Upgrade Banner ──────────────────────────────────────── */
+
+.upgrade-banner {
+  position: fixed;
+  top: var(--topbar-h);
+  left: 0; right: 0;
+  background: var(--yellow-bg);
+  border-bottom: 1px solid var(--yellow);
+  color: var(--yellow);
+  padding: 8px 24px;
+  font-size: 13px;
+  font-weight: 500;
+  display: flex;
+  align-items: center;
+  gap: 12px;
+  z-index: 49;
+  animation: slideDown 0.3s ease;
+}
+@keyframes slideDown {
+  from { transform: translateY(-100%); opacity: 0; }
+  to   { transform: translateY(0); opacity: 1; }
+}
+.upgrade-banner-text {
+  flex: 1;
+}
+.upgrade-banner-restart-btn {
+  padding: 4px 14px;
+  font-size: 12px;
+  font-weight: 600;
+  border: 1px solid var(--yellow);
+  border-radius: var(--radius-sm);
+  background: var(--yellow);
+  color: var(--bg);
+  cursor: pointer;
+  white-space: nowrap;
+  transition: all 0.15s;
+}
+.upgrade-banner-restart-btn:hover {
+  filter: brightness(1.1);
+}
+.upgrade-banner-restart-btn:disabled {
+  opacity: 0.7;
+  cursor: wait;
+}
+.upgrade-banner-hint-btn {
+  padding: 3px 10px;
+  font-size: 11px;
+  border: 1px solid var(--yellow);
+  border-radius: var(--radius-sm);
+  background: transparent;
+  color: var(--yellow);
+  cursor: pointer;
+  white-space: nowrap;
+  transition: all 0.15s;
+}
+.upgrade-banner-hint-btn:hover {
+  background: var(--yellow);
+  color: var(--bg);
+}
+.upgrade-banner-close {
+  background: none;
+  border: none;
+  color: var(--yellow);
+  font-size: 18px;
+  cursor: pointer;
+  padding: 0 4px;
+  opacity: 0.7;
+  transition: opacity 0.15s;
+}
+.upgrade-banner-close:hover { opacity: 1; }
+.upgrade-banner-hint {
+  width: 100%;
+  margin-top: 6px;
+  padding: 6px 10px;
+  background: rgba(0,0,0,0.2);
+  border-radius: var(--radius-sm);
+  font-size: 12px;
+}
+.upgrade-banner-hint code {
+  font-family: var(--font-mono);
+  font-size: 11px;
+  color: var(--text-primary);
+}
+.upgrade-banner + main {
+  margin-top: 38px;
+}
+
 /* ── Buttons ──────────────────────────────────────────────── */
 
 .btn {

package/references/dashboard/server.js

@@ -6,11 +6,26 @@ const crypto = require('crypto');
 const fs = require('fs');
 const path = require('path');
 
-const { getDashboard } = require('../lib/core/dashboard');
-const { runDiagnostics } = require('../lib/core/doctor');
-const { listBackups, getBackupFiles } = require('../lib/core/backups');
+const GUARD_ROOT = path.resolve(__dirname, '..');
+
+function coreDeps() {
+  return {
+    getDashboard: require('../lib/core/dashboard').getDashboard,
+    runDiagnostics: require('../lib/core/doctor').runDiagnostics,
+    listBackups: require('../lib/core/backups').listBackups,
+    getBackupFiles: require('../lib/core/backups').getBackupFiles,
+  };
+}
+
+function clearGuardCache() {
+  Object.keys(require.cache).forEach(key => {
+    if (key.startsWith(GUARD_ROOT)) delete require.cache[key];
+  });
+}
 
 const PUBLIC_DIR = path.join(__dirname, 'public');
+const PKG_PATH = path.resolve(__dirname, '..', '..', 'package.json');
+let SERVER_VERSION = require('../../package.json').version;
 const DEFAULT_PORT = 3120;
 const MAX_PORT_RETRIES = 10;
 const ALLOWED_HOSTS = /^(127\.0\.0\.1|localhost)(:\d+)?$/;
@@ -124,7 +139,31 @@ function serveStatic(reqUrl, res, serverToken) {
 
 /* ── API routes ─────────────────────────────────────────────── */
 
-function handleApi(pathname, query, registry, res) {
+function handleApi(pathname, query, registry, res, req) {
+  if (pathname === '/api/version') {
+    let installedVersion = SERVER_VERSION;
+    try {
+      const pkg = JSON.parse(fs.readFileSync(PKG_PATH, 'utf-8'));
+      installedVersion = pkg.version;
+    } catch { /* fallback to server version */ }
+    return json(res, {
+      serverVersion: SERVER_VERSION,
+      installedVersion,
+      updateAvailable: SERVER_VERSION !== installedVersion,
+    });
+  }
+
+  if (pathname === '/api/restart') {
+    if (req.method !== 'POST') {
+      res.writeHead(405);
+      return res.end('Method Not Allowed');
+    }
+    if (!_instance) return json(res, { error: 'No running instance' }, 500);
+    json(res, { restarting: true });
+    setTimeout(() => restartDashboard(), 300);
+    return;
+  }
+
   if (pathname === '/api/projects') {
     const list = [...registry.values()].map(({ id, name, pathLabel }) => ({ id, name, pathLabel }));
     return json(res, list);
@@ -139,6 +178,8 @@ function handleApi(pathname, query, registry, res) {
     return json(res, { error: `Project directory not accessible: ${project.pathLabel}` }, 500);
   }
 
+  const { getDashboard, runDiagnostics, listBackups, getBackupFiles } = coreDeps();
+
   if (pathname === '/api/page-data') {
     const scope = query.get('scope');
     const result = { timestamp: new Date().toISOString() };
@@ -243,7 +284,7 @@ function startDashboardServer(paths, opts = {}) {
         return res.end('Forbidden: invalid host');
       }
 
-      if (req.method !== 'GET') {
+      if (req.method !== 'GET' && req.method !== 'POST') {
         res.writeHead(405);
         return res.end('Method Not Allowed');
       }
@@ -257,8 +298,9 @@ function startDashboardServer(paths, opts = {}) {
           res.writeHead(403);
           return res.end('Forbidden: invalid token');
         }
-        handleApi(parsed.pathname, parsed.searchParams, registry, res);
+        handleApi(parsed.pathname, parsed.searchParams, registry, res, req);
       } else {
+        if (req.method !== 'GET') { res.writeHead(405); return res.end('Method Not Allowed'); }
         serveStatic(req.url, res, token);
       }
     });
@@ -294,6 +336,26 @@ function startDashboardServer(paths, opts = {}) {
   });
 }
 
+/* ── Hot Restart ───────────────────────────────────────────── */
+
+async function restartDashboard() {
+  if (!_instance) return;
+  const paths = [..._instance.registry.values()].map(p => p._path);
+  const port = _instance.port;
+
+  _instance.server.close();
+  _instance = null;
+
+  clearGuardCache();
+  try {
+    const pkg = JSON.parse(fs.readFileSync(PKG_PATH, 'utf-8'));
+    SERVER_VERSION = pkg.version;
+  } catch { /* keep old version */ }
+
+  console.log(`  [dashboard] Restarting on port ${port}...`);
+  await startDashboardServer(paths, { port, silent: false });
+}
+
 /* ── CLI entry ─────────────────────────────────────────────── */
 
 if (require.main === module) {