deepdebug-local-agent 0.3.17 → 1.0.2

package/.dockerignore

@@ -1,25 +1,42 @@
-node_modules
-npm-debug.log
-.git
-.gitignore
+# Dependencies
+node_modules/
+
+# Build outputs
+dist/
+release/
+*.exe
+
+# Environment files
 .env
 .env.*
-*.md
+!.env.example
+
+# Logs
+*.log
+logs/
+npm-debug.log*
+yarn-debug.log
+yarn-error.log
+
+# OS files
 .DS_Store
+*/.DS_Store
+**/.DS_Store
 Thumbs.db
-.idea
-.vscode
-*.log
-coverage
-.nyc_output
-test
-tests
-__tests__
-*.test.js
-*.spec.js
-.idea/deepdebug-local-agent.iml
-.idea/modules.xml
-node_modules/
-package-lock.json
-src/.DS_Store
-src/analyzers/
+
+# IDE
+.idea/
+.vscode/
+*.swp
+*.swo
+*.sublime-*
+*.iml
+
+# Test coverage
+coverage/
+.nyc_output/
+
+# Temp files
+tmp/
+temp/
+*.tmp

package/.github/workflows/npm-publish.yml

@@ -0,0 +1,76 @@
+name: Publish NPM Package
+
+on:
+  push:
+    branches: [main]
+    paths:
+      - 'src/**'
+      - 'package.json'
+      - 'bin/**'
+
+jobs:
+  publish:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: write
+
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          token: ${{ secrets.GITHUB_TOKEN }}
+          fetch-depth: 0
+
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          registry-url: 'https://registry.npmjs.org'
+
+      - name: Install dependencies
+        run: npm install
+
+      - name: Configure git
+        run: |
+          git config user.email "ci@deepdebug.ai"
+          git config user.name "CI Bot"
+
+      - name: Commit lock file if changed
+        run: |
+          git add package-lock.json || true
+          git diff --staged --quiet || git commit -m "chore: update package-lock.json [skip ci]"
+
+      - name: Bump patch version
+        run: |
+          npm version patch -m "ci: auto bump to %s [skip ci]"
+          git push origin main --follow-tags
+
+      - name: Check if version exists
+        id: version_check
+        run: |
+          PACKAGE_NAME=$(node -p "require('./package.json').name")
+          PACKAGE_VERSION=$(node -p "require('./package.json').version")
+          echo "Checking if $PACKAGE_NAME@$PACKAGE_VERSION exists..."
+          
+          if npm view "$PACKAGE_NAME@$PACKAGE_VERSION" version 2>/dev/null; then
+            echo "Version $PACKAGE_VERSION already exists on NPM"
+            echo "exists=true" >> $GITHUB_OUTPUT
+          else
+            echo "Version $PACKAGE_VERSION is new"
+            echo "exists=false" >> $GITHUB_OUTPUT
+          fi
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+
+      - name: Publish to NPM
+        if: steps.version_check.outputs.exists == 'false'
+        run: npm publish --access public
+        env:
+          NODE_AUTH_TOKEN: ${{ secrets.NPM_TOKEN }}
+
+      - name: Skip publish (version exists)
+        if: steps.version_check.outputs.exists == 'true'
+        run: echo "⏭️ Skipping publish - version already exists on NPM"
+
+      - name: Show published version
+        run: echo "✅ Published $(node -p "require('./package.json').version")"

package/Dockerfile

@@ -1,46 +1,74 @@
-# ============================================
-# Dockerfile - InspTech Local Agent
-# Node.js Application for GCP Cloud Run
-# ============================================
+# ╔══════════════════════════════════════════════════════════════╗
+# ║          DeepDebug Local Agent - Enterprise Docker           ║
+# ║                                                              ║
+# ║  Security-hardened container for enterprise deployments      ║
+# ║  Supports: Kubernetes, OpenShift, Docker Compose             ║
+# ╚══════════════════════════════════════════════════════════════╝
 
-FROM node:20-alpine
+# ===========================================
+# Stage 1: Build
+# ===========================================
+FROM node:20-alpine AS builder
 
-# Set working directory
-WORKDIR /app
-
-# Install git (needed for some operations)
-RUN apk add --no-cache git bash
+WORKDIR /build
 
-# Copy package files first for better layer caching
+# Copy package files first (better cache)
 COPY package*.json ./
 
 # Install dependencies (production only)
-RUN npm ci --only=production
+# Using npm install instead of npm ci for repos without package-lock.json
+RUN npm install --omit=dev && npm cache clean --force
 
 # Copy source code
 COPY src/ ./src/
-COPY index.js ./
 
-# Create non-root user for security
-RUN addgroup -g 1001 -S nodejs && \
-    adduser -S deepdebug -u 1001 -G nodejs
+# ===========================================
+# Stage 2: Production
+# ===========================================
+FROM node:20-alpine AS production
+
+# Security: Add labels for compliance
+LABEL org.opencontainers.image.title="DeepDebug Local Agent"
+LABEL org.opencontainers.image.description="Enterprise debugging agent for code analysis"
+LABEL org.opencontainers.image.vendor="InspTech AI"
+LABEL org.opencontainers.image.version="1.0.0"
+LABEL org.opencontainers.image.licenses="Proprietary"
+LABEL security.scan.required="true"
 
-# Create workspace directory for temporary files
-RUN mkdir -p /app/workspaces && chown -R deepdebug:nodejs /app
+# Security: Create non-root user
+RUN addgroup -g 1001 -S deepdebug && \
+    adduser -u 1001 -S deepdebug -G deepdebug
 
-# Switch to non-root user
+# Security: Install security updates
+RUN apk update && \
+    apk upgrade --no-cache && \
+    apk add --no-cache \
+        dumb-init \
+        git \
+        curl \
+    && rm -rf /var/cache/apk/*
+
+WORKDIR /app
+
+# Copy from builder with correct ownership
+COPY --from=builder --chown=deepdebug:deepdebug /build/node_modules ./node_modules
+COPY --from=builder --chown=deepdebug:deepdebug /build/src ./src
+COPY --chown=deepdebug:deepdebug package*.json ./
+
+# Security: Switch to non-root user
 USER deepdebug
 
-# Expose port (Cloud Run uses PORT env variable)
-EXPOSE 8080
+# Health check
+HEALTHCHECK --interval=30s --timeout=10s --start-period=5s --retries=3 \
+    CMD curl -f http://localhost:5055/health || exit 1
 
-# Set environment variables
+# Environment
 ENV NODE_ENV=production
-ENV PORT=8080
+ENV PORT=5055
 
-# Health check
-HEALTHCHECK --interval=30s --timeout=3s --start-period=10s --retries=3 \
-  CMD wget --no-verbose --tries=1 --spider http://localhost:8080/health || exit 1
+# Expose port
+EXPOSE 5055
 
-# Start the application (uses src/server.js as defined in package.json)
+# Security: Use dumb-init to handle signals properly
+ENTRYPOINT ["dumb-init", "--"]
 CMD ["node", "src/server.js"]

package/build.sh

@@ -0,0 +1,123 @@
+#!/bin/bash
+
+# ╔══════════════════════════════════════════════════════════════╗
+# ║       DeepDebug Local Agent - Build Script                   ║
+# ╚══════════════════════════════════════════════════════════════╝
+#
+# This script builds native executables for all platforms
+#
+# Usage:
+#   ./build.sh          # Build all platforms
+#   ./build.sh win      # Build Windows only
+#   ./build.sh mac      # Build macOS only
+#   ./build.sh linux    # Build Linux only
+#   ./build.sh docker   # Build Docker image
+#
+
+set -e
+
+VERSION=$(node -p "require('./package.json').version")
+DIST_DIR="dist"
+RELEASE_DIR="release"
+
+echo "╔══════════════════════════════════════════════════════════════╗"
+echo "║       Building DeepDebug Local Agent v${VERSION}                  ║"
+echo "╚══════════════════════════════════════════════════════════════╝"
+
+# Create directories
+mkdir -p $DIST_DIR
+mkdir -p $RELEASE_DIR
+
+# Install dependencies
+echo "📦 Installing dependencies..."
+npm ci
+
+build_windows() {
+    echo "🪟 Building Windows executable..."
+    npx pkg . --target node20-win-x64 --output $DIST_DIR/deepdebug-agent-win.exe
+    
+    # Create zip for release
+    cd $DIST_DIR
+    zip -j ../$RELEASE_DIR/deepdebug-agent-${VERSION}-windows-x64.zip deepdebug-agent-win.exe ../README.md ../LICENSE
+    cd ..
+    
+    echo "✅ Windows build complete: $DIST_DIR/deepdebug-agent-win.exe"
+}
+
+build_macos() {
+    echo "🍎 Building macOS executable (Intel)..."
+    npx pkg . --target node20-macos-x64 --output $DIST_DIR/deepdebug-agent-macos-x64
+    
+    echo "🍎 Building macOS executable (Apple Silicon)..."
+    npx pkg . --target node20-macos-arm64 --output $DIST_DIR/deepdebug-agent-macos-arm64
+    
+    # Create universal binary (optional, requires lipo)
+    if command -v lipo &> /dev/null; then
+        echo "🍎 Creating universal binary..."
+        lipo -create -output $DIST_DIR/deepdebug-agent-macos \
+            $DIST_DIR/deepdebug-agent-macos-x64 \
+            $DIST_DIR/deepdebug-agent-macos-arm64
+    fi
+    
+    # Create zip for release
+    cd $DIST_DIR
+    zip -j ../$RELEASE_DIR/deepdebug-agent-${VERSION}-macos-x64.zip deepdebug-agent-macos-x64 ../README.md ../LICENSE
+    zip -j ../$RELEASE_DIR/deepdebug-agent-${VERSION}-macos-arm64.zip deepdebug-agent-macos-arm64 ../README.md ../LICENSE
+    cd ..
+    
+    echo "✅ macOS build complete"
+}
+
+build_linux() {
+    echo "🐧 Building Linux executable..."
+    npx pkg . --target node20-linux-x64 --output $DIST_DIR/deepdebug-agent-linux
+    
+    # Create tar.gz for release
+    cd $DIST_DIR
+    tar -czvf ../$RELEASE_DIR/deepdebug-agent-${VERSION}-linux-x64.tar.gz deepdebug-agent-linux ../README.md ../LICENSE
+    cd ..
+    
+    echo "✅ Linux build complete: $DIST_DIR/deepdebug-agent-linux"
+}
+
+build_docker() {
+    echo "🐳 Building Docker image..."
+    docker build -t deepdebug/local-agent:${VERSION} -t deepdebug/local-agent:latest .
+    
+    echo "✅ Docker build complete: deepdebug/local-agent:${VERSION}"
+}
+
+# Main
+case "$1" in
+    win|windows)
+        build_windows
+        ;;
+    mac|macos)
+        build_macos
+        ;;
+    linux)
+        build_linux
+        ;;
+    docker)
+        build_docker
+        ;;
+    all|"")
+        build_windows
+        build_macos
+        build_linux
+        build_docker
+        ;;
+    *)
+        echo "Usage: $0 [win|mac|linux|docker|all]"
+        exit 1
+        ;;
+esac
+
+echo ""
+echo "╔══════════════════════════════════════════════════════════════╗"
+echo "║       Build Complete!                                        ║"
+echo "╚══════════════════════════════════════════════════════════════╝"
+echo ""
+echo "📁 Executables: $DIST_DIR/"
+echo "📦 Releases: $RELEASE_DIR/"
+ls -la $DIST_DIR/

package/docker-compose.yml

@@ -0,0 +1,104 @@
+# ╔══════════════════════════════════════════════════════════════╗
+# ║       DeepDebug Local Agent - Docker Compose (Enterprise)    ║
+# ╚══════════════════════════════════════════════════════════════╝
+#
+# Usage:
+#   docker-compose up -d
+#
+# Configuration:
+#   Copy .env.example to .env and configure your settings
+#
+
+version: '3.8'
+
+services:
+  deepdebug-agent:
+    image: deepdebug/local-agent:${AGENT_VERSION:-latest}
+    container_name: deepdebug-agent
+    restart: unless-stopped
+
+    # ─────────────────────────────────────────
+    # Security Settings
+    # ─────────────────────────────────────────
+    security_opt:
+      - no-new-privileges:true
+    read_only: true
+    cap_drop:
+      - ALL
+    cap_add:
+      - NET_BIND_SERVICE
+
+    # ─────────────────────────────────────────
+    # Resource Limits
+    # ─────────────────────────────────────────
+    deploy:
+      resources:
+        limits:
+          cpus: '2'
+          memory: 2G
+        reservations:
+          cpus: '0.5'
+          memory: 512M
+
+    # ─────────────────────────────────────────
+    # Network
+    # ─────────────────────────────────────────
+    ports:
+      - "127.0.0.1:5055:5055"  # Only localhost access
+    networks:
+      - deepdebug-network
+
+    # ─────────────────────────────────────────
+    # Volumes
+    # ─────────────────────────────────────────
+    volumes:
+      # Project source code (read-only for security)
+      - ${PROJECT_PATH:-/path/to/projects}:/workspace:ro
+      # Temp directory for container writes
+      - agent-tmp:/tmp
+
+    # ─────────────────────────────────────────
+    # Environment
+    # ─────────────────────────────────────────
+    environment:
+      - NODE_ENV=production
+      - PORT=5055
+      - DEEPDEBUG_API_URL=${DEEPDEBUG_API_URL:-https://api.deepdebug.ai}
+      - DEEPDEBUG_TENANT_ID=${DEEPDEBUG_TENANT_ID}
+      - DEEPDEBUG_WORKSPACE_PATH=/workspace
+      - LOG_LEVEL=${LOG_LEVEL:-info}
+
+    # ─────────────────────────────────────────
+    # Health Check
+    # ─────────────────────────────────────────
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:5055/health"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+      start_period: 10s
+
+    # ─────────────────────────────────────────
+    # Logging
+    # ─────────────────────────────────────────
+    logging:
+      driver: "json-file"
+      options:
+        max-size: "10m"
+        max-file: "3"
+
+# ─────────────────────────────────────────
+# Networks
+# ─────────────────────────────────────────
+networks:
+  deepdebug-network:
+    driver: bridge
+    driver_opts:
+      com.docker.network.bridge.enable_icc: "false"
+
+# ─────────────────────────────────────────
+# Volumes
+# ─────────────────────────────────────────
+volumes:
+  agent-tmp:
+    driver: local