npm - delimit-cli - Versions diffs - 1.0.0 → 2.1.1 - Mend

delimit-cli 1.0.0 → 2.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (95) hide show

package/.github/workflows/api-governance.yml +43 -0
package/README.md +70 -113
package/adapters/codex-skill.js +87 -0
package/adapters/cursor-extension.js +190 -0
package/adapters/gemini-action.js +93 -0
package/adapters/openai-function.js +112 -0
package/adapters/xai-plugin.js +151 -0
package/bin/delimit-cli.js +921 -0
package/bin/delimit.js +237 -1
package/delimit.yml +19 -0
package/hooks/evidence-status.sh +12 -0
package/hooks/git/commit-msg +4 -0
package/hooks/git/pre-commit +4 -0
package/hooks/git/pre-push +4 -0
package/hooks/install-hooks.sh +583 -0
package/hooks/message-auth-hook.js +9 -0
package/hooks/message-governance-hook.js +9 -0
package/hooks/models/claude-post.js +4 -0
package/hooks/models/claude-pre.js +4 -0
package/hooks/models/codex-post.js +4 -0
package/hooks/models/codex-pre.js +4 -0
package/hooks/models/cursor-post.js +4 -0
package/hooks/models/cursor-pre.js +4 -0
package/hooks/models/gemini-post.js +4 -0
package/hooks/models/gemini-pre.js +4 -0
package/hooks/models/openai-post.js +4 -0
package/hooks/models/openai-pre.js +4 -0
package/hooks/models/windsurf-post.js +4 -0
package/hooks/models/windsurf-pre.js +4 -0
package/hooks/models/xai-post.js +4 -0
package/hooks/models/xai-pre.js +4 -0
package/hooks/post-bash-hook.js +13 -0
package/hooks/post-mcp-hook.js +13 -0
package/hooks/post-response-hook.js +4 -0
package/hooks/post-tool-hook.js +126 -0
package/hooks/post-write-hook.js +13 -0
package/hooks/pre-bash-hook.js +30 -0
package/hooks/pre-mcp-hook.js +13 -0
package/hooks/pre-read-hook.js +13 -0
package/hooks/pre-search-hook.js +13 -0
package/hooks/pre-submit-hook.js +4 -0
package/hooks/pre-task-hook.js +13 -0
package/hooks/pre-tool-hook.js +121 -0
package/hooks/pre-web-hook.js +13 -0
package/hooks/pre-write-hook.js +31 -0
package/hooks/test-hooks.sh +12 -0
package/hooks/update-delimit.sh +6 -0
package/lib/agent.js +509 -0
package/lib/api-engine.js +156 -0
package/lib/auth-setup.js +891 -0
package/lib/decision-engine.js +474 -0
package/lib/hooks-installer.js +416 -0
package/lib/platform-adapters.js +353 -0
package/lib/proxy-handler.js +114 -0
package/package.json +38 -30
package/scripts/infect.js +128 -0
package/test-decision-engine.js +181 -0
package/test-hook.js +27 -0
package/dist/commands/validate.d.ts +0 -2
package/dist/commands/validate.d.ts.map +0 -1
package/dist/commands/validate.js +0 -106
package/dist/commands/validate.js.map +0 -1
package/dist/index.d.ts +0 -3
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -71
package/dist/index.js.map +0 -1
package/dist/types/index.d.ts +0 -39
package/dist/types/index.d.ts.map +0 -1
package/dist/types/index.js +0 -3
package/dist/types/index.js.map +0 -1
package/dist/utils/api.d.ts +0 -3
package/dist/utils/api.d.ts.map +0 -1
package/dist/utils/api.js +0 -64
package/dist/utils/api.js.map +0 -1
package/dist/utils/file.d.ts +0 -7
package/dist/utils/file.d.ts.map +0 -1
package/dist/utils/file.js +0 -69
package/dist/utils/file.js.map +0 -1
package/dist/utils/logger.d.ts +0 -14
package/dist/utils/logger.d.ts.map +0 -1
package/dist/utils/logger.js +0 -28
package/dist/utils/logger.js.map +0 -1
package/dist/utils/masker.d.ts +0 -14
package/dist/utils/masker.d.ts.map +0 -1
package/dist/utils/masker.js +0 -89
package/dist/utils/masker.js.map +0 -1
package/src/commands/validate.ts +0 -150
package/src/index.ts +0 -80
package/src/types/index.ts +0 -41
package/src/utils/api.ts +0 -68
package/src/utils/file.ts +0 -71
package/src/utils/logger.ts +0 -27
package/src/utils/masker.ts +0 -101
package/test-sensitive.yaml +0 -109
package/tsconfig.json +0 -23

package/adapters/openai-function.js ADDED Viewed

@@ -0,0 +1,112 @@
+#!/usr/bin/env node
+/**
+ * Delimit™ OpenAI Function Adapter
+ * Implements OpenAI Functions/Tools interface
+ */
+const axios = require('axios');
+const AGENT_URL = `http://127.0.0.1:${process.env.DELIMIT_AGENT_PORT || 7823}`;
+class DelimitOpenAIFunction {
+    constructor() {
+        this.name = 'delimit_governance_check';
+        this.description = 'Check governance compliance for code operations';
+    }
+    /**
+     * OpenAI Functions are called as tools
+     */
+    async execute(args) {
+        console.log('[DELIMIT OPENAI] Function called with:', args);
+        try {
+            const { action, context } = args;
+            // Validate the action
+            const response = await axios.post(`${AGENT_URL}/evaluate`, {
+                action: action || 'openai_function',
+                context: context,
+                tool: 'openai'
+            });
+            return {
+                allowed: response.data.action !== 'block',
+                action: response.data.action,
+                message: response.data.message || 'Check complete',
+                rule: response.data.rule
+            };
+        } catch (error) {
+            console.warn('[DELIMIT OPENAI] Governance check failed:', error.message);
+            return {
+                allowed: true,
+                message: 'Governance unavailable, proceeding with caution'
+            };
+        }
+    }
+    /**
+     * OpenAI Plugins interface
+     */
+    async handleRequest(request) {
+        const { method, path, body } = request;
+        if (path === '/governance/check') {
+            return await this.execute(body);
+        }
+        if (path === '/governance/status') {
+            const { execSync } = require('child_process');
+            const status = execSync('delimit status --json').toString();
+            return JSON.parse(status);
+        }
+        if (path === '/governance/audit') {
+            const { execSync } = require('child_process');
+            const audit = execSync('delimit audit --json').toString();
+            return JSON.parse(audit);
+        }
+        return { error: 'Unknown endpoint' };
+    }
+    /**
+     * Tool definition for OpenAI
+     */
+    toToolDefinition() {
+        return {
+            type: 'function',
+            function: {
+                name: this.name,
+                description: this.description,
+                parameters: {
+                    type: 'object',
+                    properties: {
+                        action: {
+                            type: 'string',
+                            description: 'The action to validate'
+                        },
+                        context: {
+                            type: 'object',
+                            description: 'Context for validation',
+                            properties: {
+                                code: { type: 'string' },
+                                language: { type: 'string' },
+                                file: { type: 'string' },
+                                operation: { type: 'string' }
+                            }
+                        }
+                    },
+                    required: ['action']
+                }
+            }
+        };
+    }
+}
+// Export for OpenAI
+module.exports = new DelimitOpenAIFunction();
+// OpenAI registration (if available)
+if (typeof registerFunction === 'function') {
+    registerFunction(new DelimitOpenAIFunction());
+}

package/adapters/xai-plugin.js ADDED Viewed

@@ -0,0 +1,151 @@
+#!/usr/bin/env node
+/**
+ * Delimit™ xAI Grok Plugin Adapter
+ * Implements xAI Plugin interface
+ */
+const axios = require('axios');
+const AGENT_URL = `http://127.0.0.1:${process.env.DELIMIT_AGENT_PORT || 7823}`;
+class DelimitXAIPlugin {
+    constructor() {
+        this.name = 'delimit-governance';
+        this.version = '2.0.0';
+        this.capabilities = ['code_validation', 'security_check', 'audit_logging'];
+    }
+    /**
+     * xAI Plugins use hooks for different stages
+     */
+    async prePrompt(context) {
+        console.log('[DELIMIT XAI] Pre-prompt validation...');
+        try {
+            const { prompt, session, user } = context;
+            // Check for risky prompts
+            const riskyPatterns = [
+                /sudo/i,
+                /rm\s+-rf/i,
+                /password/i,
+                /credential/i,
+                /secret/i
+            ];
+            const isRisky = riskyPatterns.some(pattern => pattern.test(prompt));
+            if (isRisky) {
+                const response = await axios.post(`${AGENT_URL}/evaluate`, {
+                    action: 'xai_prompt',
+                    prompt: prompt,
+                    riskLevel: 'high',
+                    session: session,
+                    tool: 'xai'
+                });
+                if (response.data.action === 'block') {
+                    return {
+                        block: true,
+                        message: `[DELIMIT] Prompt blocked: ${response.data.reason}`
+                    };
+                }
+                if (response.data.action === 'prompt') {
+                    return {
+                        warning: response.data.message
+                    };
+                }
+            }
+            return { allow: true };
+        } catch (error) {
+            console.warn('[DELIMIT XAI] Governance check failed:', error.message);
+            return { allow: true }; // Fail open
+        }
+    }
+    async postResponse(context) {
+        console.log('[DELIMIT XAI] Post-response processing...');
+        try {
+            const { response, session, metrics } = context;
+            // Collect evidence
+            await axios.post(`${AGENT_URL}/audit`, {
+                action: 'xai_response',
+                session: session,
+                metrics: metrics,
+                timestamp: new Date().toISOString()
+            });
+            // Check for sensitive data in response
+            const sensitivePatterns = [
+                /\b[A-Z0-9]{20,}\b/g, // API keys
+                /-----BEGIN.*KEY-----/g, // Private keys
+                /Bearer\s+[A-Za-z0-9\-._~+\/]+=*/g // Bearer tokens
+            ];
+            for (const pattern of sensitivePatterns) {
+                if (pattern.test(response)) {
+                    console.warn('[DELIMIT XAI] ⚠️  Sensitive data detected in response');
+                    // Could redact or block here
+                }
+            }
+        } catch (error) {
+            // Silent fail for audit
+        }
+        return context;
+    }
+    async validateCode(code, language) {
+        console.log('[DELIMIT XAI] Validating code...');
+        try {
+            const response = await axios.post(`${AGENT_URL}/evaluate`, {
+                action: 'code_validation',
+                code: code,
+                language: language,
+                tool: 'xai'
+            });
+            return {
+                valid: response.data.action !== 'block',
+                issues: response.data.issues || [],
+                message: response.data.message
+            };
+        } catch (error) {
+            return { valid: true, message: 'Validation unavailable' };
+        }
+    }
+    // xAI command interface
+    async executeCommand(command, args) {
+        const commands = {
+            'governance': () => this.runCLI('status'),
+            'audit': () => this.runCLI('audit'),
+            'mode': () => this.runCLI('mode', args),
+            'policy': () => this.runCLI('policy')
+        };
+        if (commands[command]) {
+            return await commands[command]();
+        }
+        return `Unknown command: ${command}`;
+    }
+    runCLI(command, args = []) {
+        const { execSync } = require('child_process');
+        const cmd = `delimit ${command} ${args.join(' ')}`.trim();
+        return execSync(cmd).toString();
+    }
+}
+// Export for xAI
+module.exports = new DelimitXAIPlugin();
+// xAI registration
+if (typeof registerPlugin === 'function') {
+    registerPlugin(new DelimitXAIPlugin());
+}