db-scalability-guardian 1.0.0

package/README.md

@@ -0,0 +1,165 @@
+# DB Scalability Guardian
+
+A CLI tool for analyzing database migrations and schema changes for scalability and evolvability risks. Designed for PostgreSQL and Prisma, with optional LLM-powered architectural interpretation.
+
+## Overview
+
+DB Scalability Guardian performs deterministic analysis of database migrations to identify potential scalability issues, deployment blockers, and future feature blockers. It can optionally use LLM interpretation to provide architectural insights.
+
+## Features
+
+- **Deterministic Migration Analysis**: Detects risky patterns in SQL migrations (NOT NULL additions, type changes, drops, index creation, foreign keys, enums)
+- **Git Integration**: Automatically compares branches to identify changed migrations
+- **Prisma Support**: Works with Prisma migrations and schema files
+- **Configurable Gate Rules**: Fail CI/CD pipelines on HIGH or CRITICAL findings
+- **Optional LLM Interpretation**: Uses Mistral AI for architectural analysis (optional, never required)
+- **Multiple Report Formats**: Generates JSON and Markdown reports
+
+## Installation
+
+```bash
+npm install --save-dev db-scalability-guardian
+```
+
+Or use directly with npx:
+
+```bash
+npx db-scalability-guardian analyze
+```
+
+## Usage
+
+### Basic Usage
+
+Run the analysis from your repository root:
+
+```bash
+npx db-scalability-guardian analyze
+```
+
+This will:
+1. Compare `main` → `develop` branches (configurable)
+2. Analyze changed Prisma migrations
+3. Generate reports in `guardian-reports/`
+4. Exit with code 1 if blocking findings are detected
+
+### Configuration
+
+Create a `guardian.config.js` or `guardian.config.json` in your repository root:
+
+```javascript
+// guardian.config.js
+module.exports = {
+  baseBranch: "main",
+  headBranch: "develop",
+  database: {
+    engine: "postgres",
+    orm: "prisma",
+    migrationsPath: "prisma/migrations"
+  },
+  futureConstraints: [
+    "Multi-country deployment (currency, taxes, locale)",
+    "Machine-specific pricing and configuration"
+  ],
+  llm: {
+    provider: "mistral",
+    model: "mistral-medium-2508",
+    optional: true,
+    apiKey: process.env.MISTRAL_API_KEY
+  },
+  gate: {
+    failOn: ["HIGH", "CRITICAL"]
+  }
+};
+```
+
+Or as JSON:
+
+```json
+{
+  "baseBranch": "main",
+  "headBranch": "develop",
+  "database": {
+    "engine": "postgres",
+    "orm": "prisma",
+    "migrationsPath": "prisma/migrations"
+  },
+  "gate": {
+    "failOn": ["HIGH", "CRITICAL"]
+  }
+}
+```
+
+### GitHub Actions Integration
+
+```yaml
+name: DB Scalability Check
+
+on:
+  pull_request:
+    branches: [main]
+
+jobs:
+  guardian:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v3
+        with:
+          fetch-depth: 0  # Required for git diff
+        
+      - name: Setup Node.js
+        uses: actions/setup-node@v3
+        with:
+          node-version: '18'
+      
+      - name: Run DB Scalability Guardian
+        run: npx db-scalability-guardian analyze
+        env:
+          MISTRAL_API_KEY: ${{ secrets.MISTRAL_API_KEY }}  # Optional
+      
+      - name: Upload reports
+        uses: actions/upload-artifact@v3
+        if: always()
+        with:
+          name: guardian-reports
+          path: guardian-reports/
+```
+
+### LLM Integration (Optional)
+
+The tool supports optional LLM interpretation using Mistral AI. To enable:
+
+1. Set `MISTRAL_API_KEY` environment variable, or
+2. Configure `llm.apiKey` in your config file
+
+The LLM analysis is **never required** - the tool works fully without it. When enabled, it generates an additional `guardian-llm-analysis.md` report with architectural insights.
+
+## Report Output
+
+The tool generates reports in the `guardian-reports/` directory:
+
+- **guardian-report.json**: Machine-readable report with all findings
+- **guardian-report.md**: Human-readable Markdown report
+- **guardian-llm-analysis.md**: LLM-generated architectural analysis (if enabled)
+
+## Exit Codes
+
+- `0`: Success, no blocking findings
+- `1`: Blocking findings detected (based on `gate.failOn` configuration)
+
+## Architecture
+
+The tool is structured as a modular library:
+
+- **Collectors**: Gather context (git diff, Prisma schema)
+- **Analyzers**: Perform deterministic analysis (migration heuristics)
+- **Reporters**: Generate output (JSON, Markdown)
+- **Gate**: Apply severity-based rules
+- **LLM**: Optional architectural interpretation
+
+All analysis is deterministic and does not require LLM. The LLM component is purely additive for enhanced insights.
+
+## License
+
+ISC
+

package/dist/analyzers/postgres/migrations.d.ts

@@ -0,0 +1,4 @@
+import { Finding } from "../../types/report.js";
+export declare function analyzeMigration(sql: string, file: string): Finding[];
+export declare function analyzeMigrations(migrationFiles: string[]): Finding[];
+//# sourceMappingURL=migrations.d.ts.map

package/dist/analyzers/postgres/migrations.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"migrations.d.ts","sourceRoot":"","sources":["../../../src/analyzers/postgres/migrations.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,uBAAuB,CAAC;AAGhD,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,EAAE,CAmFrE;AAED,wBAAgB,iBAAiB,CAAC,cAAc,EAAE,MAAM,EAAE,GAAG,OAAO,EAAE,CAcrE"}

package/dist/analyzers/postgres/migrations.js

@@ -0,0 +1,96 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.analyzeMigration = analyzeMigration;
+exports.analyzeMigrations = analyzeMigrations;
+const prisma_js_1 = require("../../collectors/prisma.js");
+function analyzeMigration(sql, file) {
+    const s = sql.toLowerCase();
+    const findings = [];
+    // 1) Add NOT NULL column (high risk on existing table)
+    if (s.match(/alter\s+table[\s\S]*add\s+column[\s\S]*not\s+null/)) {
+        findings.push({
+            id: "MIG_NOT_NULL_ADD",
+            severity: "HIGH",
+            title: "ADD COLUMN ... NOT NULL (risk of failure / blocking on existing data)",
+            evidence: "Detected `ALTER TABLE ... ADD COLUMN ... NOT NULL`.",
+            impact: "On a table with existing rows, this can fail or require full table rewrite / locks, blocking deployments.",
+            mitigation: "Use a safe 3-step approach: (1) add nullable column, (2) backfill in batches, (3) add NOT NULL constraint.",
+            file,
+        });
+    }
+    // 2) Alter column type (often locking + risky)
+    if (s.match(/alter\s+table[\s\S]*alter\s+column[\s\S]*type/)) {
+        findings.push({
+            id: "MIG_ALTER_TYPE",
+            severity: "HIGH",
+            title: "ALTER COLUMN TYPE (often locks / rewrite)",
+            evidence: "Detected `ALTER TABLE ... ALTER COLUMN ... TYPE ...`.",
+            impact: "May rewrite the table and take long locks depending on the type change and table size.",
+            mitigation: "Prefer expand-and-contract migrations: add new column, dual-write, backfill, swap, then drop old column.",
+            file,
+        });
+    }
+    // 3) Drop column/table (data loss)
+    if (s.match(/drop\s+column/) || s.match(/drop\s+table/)) {
+        findings.push({
+            id: "MIG_DROP_DATA",
+            severity: "CRITICAL",
+            title: "DROP COLUMN/TABLE (data loss risk)",
+            evidence: "Detected DROP operation.",
+            impact: "Irreversible data loss unless you have backups and explicit migration strategy.",
+            mitigation: "Use deprecation: stop writes, archive data, keep column/table for at least one release cycle, then remove.",
+            file,
+        });
+    }
+    // 4) Create index without concurrently (can lock writes)
+    if (s.match(/create\s+index/) && !s.match(/concurrently/)) {
+        findings.push({
+            id: "MIG_INDEX_NOT_CONCURRENT",
+            severity: "MEDIUM",
+            title: "CREATE INDEX without CONCURRENTLY (potential write lock)",
+            evidence: "Detected CREATE INDEX without CONCURRENTLY.",
+            impact: "On large tables, index creation may block writes and extend deployment time.",
+            mitigation: "For production large tables, prefer `CREATE INDEX CONCURRENTLY` and run outside transaction if needed.",
+            file,
+        });
+    }
+    // 5) Add foreign key constraints (can lock / scan)
+    if (s.match(/add\s+constraint[\s\S]*foreign\s+key/)) {
+        findings.push({
+            id: "MIG_ADD_FK",
+            severity: "MEDIUM",
+            title: "ADD FOREIGN KEY constraint (locks / full scan)",
+            evidence: "Detected ADD CONSTRAINT ... FOREIGN KEY.",
+            impact: "Postgres may scan the table and lock rows; risky on large tables.",
+            mitigation: "Ensure supporting indexes exist; consider adding constraint as NOT VALID then VALIDATE in a later step.",
+            file,
+        });
+    }
+    // 6) Create enum / alter enum (can be tricky)
+    if (s.match(/create\s+type[\s\S]*as\s+enum/)) {
+        findings.push({
+            id: "MIG_ENUM_CREATE",
+            severity: "LOW",
+            title: "ENUM type created (evolvability considerations)",
+            evidence: "Detected CREATE TYPE ... AS ENUM.",
+            impact: "Enums are harder to evolve than lookup tables; future changes require careful migrations.",
+            mitigation: "Prefer lookup table for frequently changing values; if enum, plan a safe ALTER TYPE strategy.",
+            file,
+        });
+    }
+    return findings;
+}
+function analyzeMigrations(migrationFiles) {
+    const findings = [];
+    for (const mig of migrationFiles) {
+        // mig might be folder or file; normalize:
+        const isFolder = !mig.endsWith(".sql");
+        const sqlFile = isFolder ? `${mig}/migration.sql` : mig;
+        const sql = (0, prisma_js_1.loadMigrationSQL)(sqlFile);
+        if (!sql)
+            continue;
+        findings.push(...analyzeMigration(sql, sqlFile));
+    }
+    return findings;
+}
+//# sourceMappingURL=migrations.js.map

package/dist/analyzers/postgres/migrations.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"migrations.js","sourceRoot":"","sources":["../../../src/analyzers/postgres/migrations.ts"],"names":[],"mappings":";;AAGA,4CAmFC;AAED,8CAcC;AArGD,0DAA8D;AAE9D,SAAgB,gBAAgB,CAAC,GAAW,EAAE,IAAY;IACxD,MAAM,CAAC,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;IAC5B,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,uDAAuD;IACvD,IAAI,CAAC,CAAC,KAAK,CAAC,mDAAmD,CAAC,EAAE,CAAC;QACjE,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,kBAAkB;YACtB,QAAQ,EAAE,MAAM;YAChB,KAAK,EAAE,uEAAuE;YAC9E,QAAQ,EAAE,qDAAqD;YAC/D,MAAM,EAAE,2GAA2G;YACnH,UAAU,EAAE,4GAA4G;YACxH,IAAI;SACL,CAAC,CAAC;IACL,CAAC;IAED,+CAA+C;IAC/C,IAAI,CAAC,CAAC,KAAK,CAAC,+CAA+C,CAAC,EAAE,CAAC;QAC7D,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,gBAAgB;YACpB,QAAQ,EAAE,MAAM;YAChB,KAAK,EAAE,2CAA2C;YAClD,QAAQ,EAAE,uDAAuD;YACjE,MAAM,EAAE,wFAAwF;YAChG,UAAU,EAAE,0GAA0G;YACtH,IAAI;SACL,CAAC,CAAC;IACL,CAAC;IAED,mCAAmC;IACnC,IAAI,CAAC,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,CAAC;QACxD,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,eAAe;YACnB,QAAQ,EAAE,UAAU;YACpB,KAAK,EAAE,oCAAoC;YAC3C,QAAQ,EAAE,0BAA0B;YACpC,MAAM,EAAE,iFAAiF;YACzF,UAAU,EAAE,4GAA4G;YACxH,IAAI;SACL,CAAC,CAAC;IACL,CAAC;IAED,yDAAyD;IACzD,IAAI,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,CAAC;QAC1D,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,0BAA0B;YAC9B,QAAQ,EAAE,QAAQ;YAClB,KAAK,EAAE,0DAA0D;YACjE,QAAQ,EAAE,6CAA6C;YACvD,MAAM,EAAE,8EAA8E;YACtF,UAAU,EAAE,wGAAwG;YACpH,IAAI;SACL,CAAC,CAAC;IACL,CAAC;IAED,mDAAmD;IACnD,IAAI,CAAC,CAAC,KAAK,CAAC,sCAAsC,CAAC,EAAE,CAAC;QACpD,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,YAAY;YAChB,QAAQ,EAAE,QAAQ;YAClB,KAAK,EAAE,gDAAgD;YACvD,QAAQ,EAAE,0CAA0C;YACpD,MAAM,EAAE,mEAAmE;YAC3E,UAAU,EAAE,yGAAyG;YACrH,IAAI;SACL,CAAC,CAAC;IACL,CAAC;IAED,8CAA8C;IAC9C,IAAI,CAAC,CAAC,KAAK,CAAC,+BAA+B,CAAC,EAAE,CAAC;QAC7C,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,iBAAiB;YACrB,QAAQ,EAAE,KAAK;YACf,KAAK,EAAE,iDAAiD;YACxD,QAAQ,EAAE,mCAAmC;YAC7C,MAAM,EAAE,2FAA2F;YACnG,UAAU,EAAE,+FAA+F;YAC3G,IAAI;SACL,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,SAAgB,iBAAiB,CAAC,cAAwB;IACxD,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,KAAK,MAAM,GAAG,IAAI,cAAc,EAAE,CAAC;QACjC,0CAA0C;QAC1C,MAAM,QAAQ,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,GAAG,GAAG,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC;QACxD,MAAM,GAAG,GAAG,IAAA,4BAAgB,EAAC,OAAO,CAAC,CAAC;QAEtC,IAAI,CAAC,GAAG;YAAE,SAAS;QACnB,QAAQ,CAAC,IAAI,CAAC,GAAG,gBAAgB,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,CAAC;IACnD,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/cli/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/cli/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":""}

package/dist/cli/index.js

@@ -0,0 +1,125 @@
+#!/usr/bin/env node
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+const loader_js_1 = require("../config/loader.js");
+const git_js_1 = require("../collectors/git.js");
+const prisma_js_1 = require("../collectors/prisma.js");
+const migrations_js_1 = require("../analyzers/postgres/migrations.js");
+const markdown_js_1 = require("../reporters/markdown.js");
+const json_js_1 = require("../reporters/json.js");
+const gate_js_1 = require("../gate/gate.js");
+const prompts_js_1 = require("../llm/prompts.js");
+const mistral_js_1 = require("../llm/mistral.js");
+async function main() {
+    const cwd = process.cwd();
+    const config = (0, loader_js_1.loadConfig)(cwd);
+    console.log("🔍 DB Scalability Guardian");
+    console.log(`Comparing ${config.baseBranch} → ${config.headBranch}\n`);
+    // 1. Collect git diff context
+    console.log("📊 Collecting git diff...");
+    const diffResult = (0, git_js_1.diffFiles)(config.baseBranch, config.headBranch);
+    console.log(`   Found ${diffResult.files.length} changed files`);
+    // 2. Collect Prisma schema + migrations
+    console.log("🗄️  Collecting Prisma context...");
+    const migrationsPath = config.database.migrationsPath;
+    if (!migrationsPath) {
+        throw new Error("migrationsPath is required but not configured");
+    }
+    const prismaContext = (0, prisma_js_1.collectPrismaContext)(migrationsPath, diffResult.files);
+    console.log(`   Found ${prismaContext.migrationFiles.length} modified migrations`);
+    // 3. Build context
+    const meta = {
+        baseBranch: config.baseBranch,
+        headBranch: config.headBranch,
+        comparedRange: diffResult.range,
+        changedFilesCount: diffResult.files.length,
+        generatedAt: new Date().toISOString(),
+    };
+    const engine = config.database.engine;
+    const orm = config.database.orm;
+    if (!engine || !orm) {
+        throw new Error("database.engine and database.orm are required but not configured");
+    }
+    const context = {
+        meta,
+        database: {
+            engine,
+            orm,
+            migrationsPath,
+            modifiedMigrations: prismaContext.migrationFiles,
+        },
+        prisma: {
+            schemaPath: prismaContext.schemaPath,
+            schema: prismaContext.schema,
+        },
+        backendHints: diffResult.files.filter((f) => f.startsWith("src/") &&
+            (f.includes(".service.") ||
+                f.includes(".repository.") ||
+                f.includes(".module.") ||
+                f.includes(".controller."))),
+        changedFiles: diffResult.files,
+    };
+    // 4. Run Postgres migration analysis
+    console.log("🔬 Analyzing migrations...");
+    const findings = (0, migrations_js_1.analyzeMigrations)(prismaContext.migrationFiles);
+    console.log(`   Found ${findings.length} findings`);
+    // 5. Generate reports
+    console.log("📝 Generating reports...");
+    const report = {
+        meta,
+        findings,
+    };
+    const reportDir = path_1.default.join(cwd, "guardian-reports");
+    fs_1.default.mkdirSync(reportDir, { recursive: true });
+    const jsonReport = (0, json_js_1.renderJSON)(report);
+    const markdownReport = (0, markdown_js_1.renderMarkdown)(findings, meta);
+    fs_1.default.writeFileSync(path_1.default.join(reportDir, "guardian-report.json"), jsonReport);
+    fs_1.default.writeFileSync(path_1.default.join(reportDir, "guardian-report.md"), markdownReport);
+    console.log(`   ✓ guardian-report.json`);
+    console.log(`   ✓ guardian-report.md`);
+    // 6. Optional LLM interpretation
+    if (config.llm.optional && config.llm.apiKey) {
+        console.log("🤖 Running LLM interpretation...");
+        try {
+            const prompts = (0, prompts_js_1.buildLLMPrompt)(context, markdownReport);
+            const llmOutput = await (0, mistral_js_1.callMistral)({
+                apiKey: config.llm.apiKey,
+                model: config.llm.model,
+            }, prompts.system, prompts.user);
+            fs_1.default.writeFileSync(path_1.default.join(reportDir, "guardian-llm-analysis.md"), llmOutput);
+            console.log(`   ✓ guardian-llm-analysis.md`);
+        }
+        catch (error) {
+            console.warn("   ⚠️  LLM analysis failed:", error instanceof Error ? error.message : String(error));
+        }
+    }
+    else if (config.llm.optional) {
+        console.log("   ⏭️  Skipping LLM (no API key provided)");
+    }
+    // 7. Apply gate rules
+    console.log("\n🚦 Checking gate rules...");
+    const failOn = config.gate.failOn;
+    if (!failOn) {
+        throw new Error("gate.failOn is required but not configured");
+    }
+    const gateResult = (0, gate_js_1.checkGate)(findings, failOn);
+    if (!gateResult.passed) {
+        console.error(`\n❌ Blocking findings detected (${gateResult.blocking.length}):`);
+        for (const finding of gateResult.blocking) {
+            console.error(`   [${finding.severity}] ${finding.title} (${finding.file || "unknown"})`);
+        }
+        process.exit(1);
+    }
+    console.log("✅ No blocking findings");
+    process.exit(0);
+}
+main().catch((error) => {
+    console.error("Fatal error:", error);
+    process.exit(1);
+});
+//# sourceMappingURL=index.js.map

package/dist/cli/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":";;;;;;AAEA,4CAAoB;AACpB,gDAAwB;AACxB,mDAAiD;AACjD,iDAAiD;AACjD,uDAA+D;AAC/D,uEAAwE;AACxE,0DAA0D;AAC1D,kDAAkD;AAClD,6CAA4C;AAC5C,kDAAmD;AACnD,kDAAgD;AAGhD,KAAK,UAAU,IAAI;IACjB,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,EAAE,CAAC;IAC1B,MAAM,MAAM,GAAG,IAAA,sBAAU,EAAC,GAAG,CAAC,CAAC;IAE/B,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;IAC1C,OAAO,CAAC,GAAG,CAAC,aAAa,MAAM,CAAC,UAAU,MAAM,MAAM,CAAC,UAAU,IAAI,CAAC,CAAC;IAEvE,8BAA8B;IAC9B,OAAO,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC;IACzC,MAAM,UAAU,GAAG,IAAA,kBAAS,EAAC,MAAM,CAAC,UAAU,EAAE,MAAM,CAAC,UAAU,CAAC,CAAC;IACnE,OAAO,CAAC,GAAG,CAAC,YAAY,UAAU,CAAC,KAAK,CAAC,MAAM,gBAAgB,CAAC,CAAC;IAEjE,wCAAwC;IACxC,OAAO,CAAC,GAAG,CAAC,mCAAmC,CAAC,CAAC;IACjD,MAAM,cAAc,GAAG,MAAM,CAAC,QAAQ,CAAC,cAAc,CAAC;IACtD,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;IACnE,CAAC;IACD,MAAM,aAAa,GAAG,IAAA,gCAAoB,EAAC,cAAc,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC;IAC7E,OAAO,CAAC,GAAG,CAAC,YAAY,aAAa,CAAC,cAAc,CAAC,MAAM,sBAAsB,CAAC,CAAC;IAEnF,mBAAmB;IACnB,MAAM,IAAI,GAAe;QACvB,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,UAAU,EAAE,MAAM,CAAC,UAAU;QAC7B,aAAa,EAAE,UAAU,CAAC,KAAK;QAC/B,iBAAiB,EAAE,UAAU,CAAC,KAAK,CAAC,MAAM;QAC1C,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACtC,CAAC;IAEF,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC;IACtC,MAAM,GAAG,GAAG,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC;IAChC,IAAI,CAAC,MAAM,IAAI,CAAC,GAAG,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,kEAAkE,CAAC,CAAC;IACtF,CAAC;IAED,MAAM,OAAO,GAAY;QACvB,IAAI;QACJ,QAAQ,EAAE;YACR,MAAM;YACN,GAAG;YACH,cAAc;YACd,kBAAkB,EAAE,aAAa,CAAC,cAAc;SACjD;QACD,MAAM,EAAE;YACN,UAAU,EAAE,aAAa,CAAC,UAAU;YACpC,MAAM,EAAE,aAAa,CAAC,MAAM;SAC7B;QACD,YAAY,EAAE,UAAU,CAAC,KAAK,CAAC,MAAM,CACnC,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC;YACpB,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC;gBACtB,CAAC,CAAC,QAAQ,CAAC,cAAc,CAAC;gBAC1B,CAAC,CAAC,QAAQ,CAAC,UAAU,CAAC;gBACtB,CAAC,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC,CAChC;QACD,YAAY,EAAE,UAAU,CAAC,KAAK;KAC/B,CAAC;IAEF,qCAAqC;IACrC,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;IAC1C,MAAM,QAAQ,GAAG,IAAA,iCAAiB,EAAC,aAAa,CAAC,cAAc,CAAC,CAAC;IACjE,OAAO,CAAC,GAAG,CAAC,YAAY,QAAQ,CAAC,MAAM,WAAW,CAAC,CAAC;IAEpD,sBAAsB;IACtB,OAAO,CAAC,GAAG,CAAC,0BAA0B,CAAC,CAAC;IACxC,MAAM,MAAM,GAAoB;QAC9B,IAAI;QACJ,QAAQ;KACT,CAAC;IAEF,MAAM,SAAS,GAAG,cAAI,CAAC,IAAI,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC;IACrD,YAAE,CAAC,SAAS,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE7C,MAAM,UAAU,GAAG,IAAA,oBAAU,EAAC,MAAM,CAAC,CAAC;IACtC,MAAM,cAAc,GAAG,IAAA,4BAAc,EAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAEtD,YAAE,CAAC,aAAa,CAAC,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,sBAAsB,CAAC,EAAE,UAAU,CAAC,CAAC;IAC3E,YAAE,CAAC,aAAa,CAAC,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,oBAAoB,CAAC,EAAE,cAAc,CAAC,CAAC;IAE7E,OAAO,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAC;IACzC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;IAEvC,iCAAiC;IACjC,IAAI,MAAM,CAAC,GAAG,CAAC,QAAQ,IAAI,MAAM,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC;QAC7C,OAAO,CAAC,GAAG,CAAC,kCAAkC,CAAC,CAAC;QAChD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,IAAA,2BAAc,EAAC,OAAO,EAAE,cAAc,CAAC,CAAC;YACxD,MAAM,SAAS,GAAG,MAAM,IAAA,wBAAW,EACjC;gBACE,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,MAAM;gBACzB,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,KAAK;aACxB,EACD,OAAO,CAAC,MAAM,EACd,OAAO,CAAC,IAAI,CACb,CAAC;YAEF,YAAE,CAAC,aAAa,CACd,cAAI,CAAC,IAAI,CAAC,SAAS,EAAE,0BAA0B,CAAC,EAChD,SAAS,CACV,CAAC;YACF,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,CAAC;QAC/C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,IAAI,CAAC,6BAA6B,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;QACtG,CAAC;IACH,CAAC;SAAM,IAAI,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,CAAC;QAC/B,OAAO,CAAC,GAAG,CAAC,2CAA2C,CAAC,CAAC;IAC3D,CAAC;IAED,sBAAsB;IACtB,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAC3C,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC;IAClC,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IACD,MAAM,UAAU,GAAG,IAAA,mBAAS,EAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAE/C,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;QACvB,OAAO,CAAC,KAAK,CAAC,mCAAmC,UAAU,CAAC,QAAQ,CAAC,MAAM,IAAI,CAAC,CAAC;QACjF,KAAK,MAAM,OAAO,IAAI,UAAU,CAAC,QAAQ,EAAE,CAAC;YAC1C,OAAO,CAAC,KAAK,CAAC,OAAO,OAAO,CAAC,QAAQ,KAAK,OAAO,CAAC,KAAK,KAAK,OAAO,CAAC,IAAI,IAAI,SAAS,GAAG,CAAC,CAAC;QAC5F,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,wBAAwB,CAAC,CAAC;IACtC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,IAAI,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;IACrB,OAAO,CAAC,KAAK,CAAC,cAAc,EAAE,KAAK,CAAC,CAAC;IACrC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/collectors/git.d.ts

@@ -0,0 +1,6 @@
+export interface DiffResult {
+    files: string[];
+    range: string;
+}
+export declare function diffFiles(base: string, head: string): DiffResult;
+//# sourceMappingURL=git.d.ts.map

package/dist/collectors/git.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"git.d.ts","sourceRoot":"","sources":["../../src/collectors/git.ts"],"names":[],"mappings":"AAaA,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;CACf;AAED,wBAAgB,SAAS,CAAC,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,UAAU,CA+BhE"}

package/dist/collectors/git.js

@@ -0,0 +1,51 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.diffFiles = diffFiles;
+const child_process_1 = require("child_process");
+function sh(cmd) {
+    try {
+        return (0, child_process_1.execSync)(cmd, { stdio: ["ignore", "pipe", "pipe"] }).toString().trim();
+    }
+    catch (error) {
+        const stderr = error && typeof error === "object" && "stderr" in error
+            ? error.stderr.toString()
+            : "";
+        throw new Error(`Command failed: ${cmd}\n${stderr}`);
+    }
+}
+function diffFiles(base, head) {
+    // Try to fetch remote refs first
+    try {
+        sh("git fetch origin --prune");
+    }
+    catch {
+        // Ignore fetch errors
+    }
+    try {
+        // Compare origin/base..origin/head
+        const range = `origin/${base}...origin/${head}`;
+        const out = sh(`git diff --name-only ${range}`);
+        return { files: out.split("\n").filter(Boolean), range };
+    }
+    catch {
+        // Fallback to local branch comparison
+        try {
+            const range = `${base}...${head}`;
+            const out = sh(`git diff --name-only ${range}`);
+            return { files: out.split("\n").filter(Boolean), range };
+        }
+        catch {
+            // Last resort: compare current HEAD with base
+            try {
+                const range = `${base}...HEAD`;
+                const out = sh(`git diff --name-only ${range}`);
+                return { files: out.split("\n").filter(Boolean), range };
+            }
+            catch {
+                console.warn("Could not determine changed files. Returning empty array.");
+                return { files: [], range: "unknown" };
+            }
+        }
+    }
+}
+//# sourceMappingURL=git.js.map

package/dist/collectors/git.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"git.js","sourceRoot":"","sources":["../../src/collectors/git.ts"],"names":[],"mappings":";;AAkBA,8BA+BC;AAjDD,iDAAyC;AAEzC,SAAS,EAAE,CAAC,GAAW;IACrB,IAAI,CAAC;QACH,OAAO,IAAA,wBAAQ,EAAC,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC,CAAC,QAAQ,EAAE,CAAC,IAAI,EAAE,CAAC;IAChF,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,MAAM,MAAM,GAAG,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,QAAQ,IAAI,KAAK;YACpE,CAAC,CAAE,KAAK,CAAC,MAAiC,CAAC,QAAQ,EAAE;YACrD,CAAC,CAAC,EAAE,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,KAAK,MAAM,EAAE,CAAC,CAAC;IACvD,CAAC;AACH,CAAC;AAOD,SAAgB,SAAS,CAAC,IAAY,EAAE,IAAY;IAClD,iCAAiC;IACjC,IAAI,CAAC;QACH,EAAE,CAAC,0BAA0B,CAAC,CAAC;IACjC,CAAC;IAAC,MAAM,CAAC;QACP,sBAAsB;IACxB,CAAC;IAED,IAAI,CAAC;QACH,mCAAmC;QACnC,MAAM,KAAK,GAAG,UAAU,IAAI,aAAa,IAAI,EAAE,CAAC;QAChD,MAAM,GAAG,GAAG,EAAE,CAAC,wBAAwB,KAAK,EAAE,CAAC,CAAC;QAChD,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,CAAC;IAC3D,CAAC;IAAC,MAAM,CAAC;QACP,sCAAsC;QACtC,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,GAAG,IAAI,MAAM,IAAI,EAAE,CAAC;YAClC,MAAM,GAAG,GAAG,EAAE,CAAC,wBAAwB,KAAK,EAAE,CAAC,CAAC;YAChD,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,CAAC;QAC3D,CAAC;QAAC,MAAM,CAAC;YACP,8CAA8C;YAC9C,IAAI,CAAC;gBACH,MAAM,KAAK,GAAG,GAAG,IAAI,SAAS,CAAC;gBAC/B,MAAM,GAAG,GAAG,EAAE,CAAC,wBAAwB,KAAK,EAAE,CAAC,CAAC;gBAChD,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,CAAC;YAC3D,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC;gBAC1E,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC;YACzC,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC"}

package/dist/collectors/prisma.d.ts

@@ -0,0 +1,8 @@
+export interface PrismaContext {
+    schemaPath: string;
+    schema: string | null;
+    migrationFiles: string[];
+}
+export declare function collectPrismaContext(migrationsPath: string, changedFiles: string[]): PrismaContext;
+export declare function loadMigrationSQL(migrationPath: string): string | null;
+//# sourceMappingURL=prisma.d.ts.map

package/dist/collectors/prisma.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"prisma.d.ts","sourceRoot":"","sources":["../../src/collectors/prisma.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,aAAa;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,cAAc,EAAE,MAAM,EAAE,CAAC;CAC1B;AAED,wBAAgB,oBAAoB,CAClC,cAAc,EAAE,MAAM,EACtB,YAAY,EAAE,MAAM,EAAE,GACrB,aAAa,CAWf;AAED,wBAAgB,gBAAgB,CAAC,aAAa,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAQrE"}

package/dist/collectors/prisma.js

@@ -0,0 +1,29 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.collectPrismaContext = collectPrismaContext;
+exports.loadMigrationSQL = loadMigrationSQL;
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+function collectPrismaContext(migrationsPath, changedFiles) {
+    const schemaPath = "prisma/schema.prisma";
+    const schema = fs_1.default.existsSync(schemaPath) ? fs_1.default.readFileSync(schemaPath, "utf-8") : null;
+    const migrationFiles = changedFiles.filter((f) => f.startsWith(`${migrationsPath}/`));
+    return {
+        schemaPath,
+        schema,
+        migrationFiles,
+    };
+}
+function loadMigrationSQL(migrationPath) {
+    // If migrationPath is already the sql file, load it; if folder, load migration.sql
+    const full = migrationPath.endsWith(".sql")
+        ? migrationPath
+        : path_1.default.join(migrationPath, "migration.sql");
+    if (!fs_1.default.existsSync(full))
+        return null;
+    return fs_1.default.readFileSync(full, "utf-8");
+}
+//# sourceMappingURL=prisma.js.map

package/dist/collectors/prisma.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"prisma.js","sourceRoot":"","sources":["../../src/collectors/prisma.ts"],"names":[],"mappings":";;;;;AASA,oDAcC;AAED,4CAQC;AAjCD,4CAAoB;AACpB,gDAAwB;AAQxB,SAAgB,oBAAoB,CAClC,cAAsB,EACtB,YAAsB;IAEtB,MAAM,UAAU,GAAG,sBAAsB,CAAC;IAC1C,MAAM,MAAM,GAAG,YAAE,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,YAAE,CAAC,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAEvF,MAAM,cAAc,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,UAAU,CAAC,GAAG,cAAc,GAAG,CAAC,CAAC,CAAC;IAEtF,OAAO;QACL,UAAU;QACV,MAAM;QACN,cAAc;KACf,CAAC;AACJ,CAAC;AAED,SAAgB,gBAAgB,CAAC,aAAqB;IACpD,mFAAmF;IACnF,MAAM,IAAI,GAAG,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC;QACzC,CAAC,CAAC,aAAa;QACf,CAAC,CAAC,cAAI,CAAC,IAAI,CAAC,aAAa,EAAE,eAAe,CAAC,CAAC;IAE9C,IAAI,CAAC,YAAE,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,IAAI,CAAC;IACtC,OAAO,YAAE,CAAC,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;AACxC,CAAC"}

package/dist/config/defaults.d.ts

@@ -0,0 +1,24 @@
+export declare const DEFAULT_CONFIG: {
+    baseBranch: string;
+    headBranch: string;
+    database: {
+        engine: string;
+        orm: string;
+        migrationsPath: string;
+    };
+    futureConstraints: never[];
+    llm: {
+        provider: string;
+        model: string;
+        optional: boolean;
+        apiKey: undefined;
+    };
+    gate: {
+        failOn: string[];
+    };
+};
+export declare const DEFAULT_DB_RULES = "DB Architecture Rules (baseline):\n1. No migration adds a NOT NULL column on an existing table without a safe backfill strategy.\n2. High-cardinality tables must have appropriate indexes for expected access patterns.\n3. Foreign keys must not prevent soft delete or archival strategies.\n4. Pricing/config/business rules must not be hardcoded at entity level; must be contextual (tenant/machine/country).\n5. Entities that represent business concepts should support future versioning (history, effective dates).\n6. Avoid blocking DDL on large tables (Postgres: rewrite/locks).\n7. Many-to-many relations must be extensible (join table supports metadata).\n8. JSON/JSONB usage must be justified and versioned (schema evolution plan).";
+export declare const DEFAULT_FUTURE_CONSTRAINTS = "Known future directions:\n- Multi-country deployment (currency, taxes, locale)\n- Machine-specific pricing and configuration\n- Feature flags per tenant / per machine\n- Audit history and long-term retention\n- Potential white-label / multi-tenant clients";
+export declare const DEFAULT_SYSTEM_PROMPT = "You are a senior database and backend architect.\nYou audit schemas, migrations and backend code for scalability and evolvability risks.\nYou do not modify code. You only report risks and mitigations.\nYou must be conservative: if unsure, raise a warning.\nYou must output a structured report with severities: LOW, MEDIUM, HIGH, CRITICAL.\nFocus on: migration safety, future feature blockers, indexing, coupling, data model rigidity.";
+export declare const DEFAULT_ANALYSIS_PROMPT = "Analyze the repository context provided below.\n\nTasks:\n1) Review migrations for risks: locking, table rewrites, irreversible changes, data loss, unsafe NOT NULL.\n2) Review schema/ORM model for scalability & evolvability: indexes, cardinalities, versioning, soft delete, multitenancy.\n3) Identify \"future feature blockers\" based on future-constraints.md.\n4) Output a report in Markdown with:\n   - Executive summary\n   - Detected issues (with severity)\n   - Evidence (file + snippet or explanation)\n   - Impact (what feature becomes hard)\n   - Mitigation (safe path)";
+//# sourceMappingURL=defaults.d.ts.map

package/dist/config/defaults.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"defaults.d.ts","sourceRoot":"","sources":["../../src/config/defaults.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;CAkB1B,CAAC;AAEF,eAAO,MAAM,gBAAgB,kuBAQgD,CAAC;AAE9E,eAAO,MAAM,0BAA0B,oQAKQ,CAAC;AAEhD,eAAO,MAAM,qBAAqB,sbAK4D,CAAC;AAE/F,eAAO,MAAM,uBAAuB,skBAWR,CAAC"}

package/dist/config/defaults.js

@@ -0,0 +1,56 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.DEFAULT_ANALYSIS_PROMPT = exports.DEFAULT_SYSTEM_PROMPT = exports.DEFAULT_FUTURE_CONSTRAINTS = exports.DEFAULT_DB_RULES = exports.DEFAULT_CONFIG = void 0;
+exports.DEFAULT_CONFIG = {
+    baseBranch: "main",
+    headBranch: "develop",
+    database: {
+        engine: "postgres",
+        orm: "prisma",
+        migrationsPath: "prisma/migrations",
+    },
+    futureConstraints: [],
+    llm: {
+        provider: "mistral",
+        model: "mistral-medium-2508",
+        optional: true,
+        apiKey: undefined,
+    },
+    gate: {
+        failOn: ["HIGH", "CRITICAL"],
+    },
+};
+exports.DEFAULT_DB_RULES = `DB Architecture Rules (baseline):
+1. No migration adds a NOT NULL column on an existing table without a safe backfill strategy.
+2. High-cardinality tables must have appropriate indexes for expected access patterns.
+3. Foreign keys must not prevent soft delete or archival strategies.
+4. Pricing/config/business rules must not be hardcoded at entity level; must be contextual (tenant/machine/country).
+5. Entities that represent business concepts should support future versioning (history, effective dates).
+6. Avoid blocking DDL on large tables (Postgres: rewrite/locks).
+7. Many-to-many relations must be extensible (join table supports metadata).
+8. JSON/JSONB usage must be justified and versioned (schema evolution plan).`;
+exports.DEFAULT_FUTURE_CONSTRAINTS = `Known future directions:
+- Multi-country deployment (currency, taxes, locale)
+- Machine-specific pricing and configuration
+- Feature flags per tenant / per machine
+- Audit history and long-term retention
+- Potential white-label / multi-tenant clients`;
+exports.DEFAULT_SYSTEM_PROMPT = `You are a senior database and backend architect.
+You audit schemas, migrations and backend code for scalability and evolvability risks.
+You do not modify code. You only report risks and mitigations.
+You must be conservative: if unsure, raise a warning.
+You must output a structured report with severities: LOW, MEDIUM, HIGH, CRITICAL.
+Focus on: migration safety, future feature blockers, indexing, coupling, data model rigidity.`;
+exports.DEFAULT_ANALYSIS_PROMPT = `Analyze the repository context provided below.
+
+Tasks:
+1) Review migrations for risks: locking, table rewrites, irreversible changes, data loss, unsafe NOT NULL.
+2) Review schema/ORM model for scalability & evolvability: indexes, cardinalities, versioning, soft delete, multitenancy.
+3) Identify "future feature blockers" based on future-constraints.md.
+4) Output a report in Markdown with:
+   - Executive summary
+   - Detected issues (with severity)
+   - Evidence (file + snippet or explanation)
+   - Impact (what feature becomes hard)
+   - Mitigation (safe path)`;
+//# sourceMappingURL=defaults.js.map

package/dist/config/defaults.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"defaults.js","sourceRoot":"","sources":["../../src/config/defaults.ts"],"names":[],"mappings":";;;AAGa,QAAA,cAAc,GAAG;IAC5B,UAAU,EAAE,MAAM;IAClB,UAAU,EAAE,SAAS;IACrB,QAAQ,EAAE;QACR,MAAM,EAAE,UAAU;QAClB,GAAG,EAAE,QAAQ;QACb,cAAc,EAAE,mBAAmB;KACpC;IACD,iBAAiB,EAAE,EAAE;IACrB,GAAG,EAAE;QACH,QAAQ,EAAE,SAAS;QACnB,KAAK,EAAE,qBAAqB;QAC5B,QAAQ,EAAE,IAAI;QACd,MAAM,EAAE,SAAS;KAClB;IACD,IAAI,EAAE;QACJ,MAAM,EAAE,CAAC,MAAM,EAAE,UAAU,CAAC;KAC7B;CACF,CAAC;AAEW,QAAA,gBAAgB,GAAG;;;;;;;;6EAQ6C,CAAC;AAEjE,QAAA,0BAA0B,GAAG;;;;;+CAKK,CAAC;AAEnC,QAAA,qBAAqB,GAAG;;;;;8FAKyD,CAAC;AAElF,QAAA,uBAAuB,GAAG;;;;;;;;;;;4BAWX,CAAC"}

package/dist/config/loader.d.ts

@@ -0,0 +1,3 @@
+import { GuardianConfig } from "../types/config.js";
+export declare function loadConfig(cwd?: string): Required<GuardianConfig>;
+//# sourceMappingURL=loader.d.ts.map

package/dist/config/loader.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"loader.d.ts","sourceRoot":"","sources":["../../src/config/loader.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,wBAAgB,UAAU,CAAC,GAAG,GAAE,MAAsB,GAAG,QAAQ,CAAC,cAAc,CAAC,CA2DhF"}